Recently, my brother installed a game on our computer. With that game came My Fast Web Search. It launches every time anyone runs IE8, and I have no idea how to get rid of it. Here is a log from HijackThis. Please help!

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 5:24:13 PM, on 28/02/2012
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Symantec\Symantec Endpoint Protection\Smc.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
C:\Program Files\Microsoft\BingBar\BBSvc.EXE
C:\Program Files\Microsoft\BingBar\SeaPort.EXE
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Documents and Settings\All Users\Application Data\EPSON\EPW!3 SSRP\E_S40RP7.EXE
C:\Program Files\Google\Update\GoogleUpdate.exe
C:\Program Files\Common Files\LightScribe\LSSrvc.exe
C:\Program Files\Common Files\Microsoft Shared\VS7Debug\mdm.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Symantec\Symantec Endpoint Protection\Rtvscan.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
C:\Program Files\ASUS\GamerOSD\GamerOSD.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.EXE
C:\Program Files\Keyboard Driver\OEMDriver.exe
C:\WINDOWS\RTHDCPL.EXE
C:\Program Files\CyberLink\PowerDVD SE\PDVDServ.exe
C:\Program Files\Common Files\Symantec Shared\ccApp.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\ccc.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\SweetIM\Messenger\SweetIM.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
C:\Program Files\Symantec\Symantec Endpoint Protection\SmcGui.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\Microsoft Office\Office10\WINWORD.EXE
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Adobe\Reader 8.0\Reader\AcroRd32.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://myfastwebsearch.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://home.sweetim.com/?st=1&barid={344B68E3-6A43-4504-B595-B02835292BCA}
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R3 - URLSearchHook: SweetIM ToolbarURLSearchHook Class - {EEE6C35D-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgHelper.dll
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.7.7018.1622\swg.dll
O2 - BHO: Bing Bar Helper - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - "C:\Program Files\Microsoft\BingBar\BingExt.dll" (file missing)
O2 - BHO: EpsonToolBandKicker Class - {E99421FB-68DD-40F0-B4AC-B7027CAE2F1A} - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll
O2 - BHO: SWEETIE - {EEE6C35C-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll
O3 - Toolbar: EPSON Web-To-Page - {EE5D279F-081B-4404-994D-C6B60AAEBA6D} - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O3 - Toolbar: Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - "C:\Program Files\Microsoft\BingBar\BingExt.dll" (file missing)
O3 - Toolbar: SweetPacks Toolbar for Internet Explorer - {EEE6C35B-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll
O4 - HKLM\..\Run: [SkyTel] SkyTel.EXE
O4 - HKLM\..\Run: [StartCCC] C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe
O4 - HKLM\..\Run: [ASUSGamerOSD] C:\Program Files\ASUS\GamerOSD\GamerOSD.exe
O4 - HKLM\..\Run: [KBDriver] C:\Program Files\Keyboard Driver\OEMDriver.exe
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe
O4 - HKLM\..\Run: [RemoteControl] "C:\Program Files\CyberLink\PowerDVD SE\PDVDServ.exe"
O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Common Files\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [Google Quick Search Box] "C:\Program Files\Google\Quick Search Box\GoogleQuickSearchBox.exe" /autorun
O4 - HKLM\..\Run: [AppleSyncNotifier] C:\Program Files\Common Files\Apple\Mobile Device Support\AppleSyncNotifier.exe
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [SweetIM] C:\Program Files\SweetIM\Messenger\SweetIM.exe
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [EPSON Stylus CX5500 Series] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATICAP.EXE /FU "C:\WINDOWS\TEMP\E_SAE.tmp" /EF "HKCU"
O4 - HKCU\..\Run: [swg] "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
O4 - HKCU\..\Run: [Facebook Update] "C:\Documents and Settings\Nathan\Local Settings\Application Data\Facebook\Update\FacebookUpdate.exe" /c /nocrashserver
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Startup: homepg.cmd
O4 - Startup: PowerReg Scheduler V3.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O8 - Extra context menu item: Search the Web - C:\Program Files\SweetIM\Toolbars\Internet Explorer\resources\menuext.html
O9 - Extra button: Blog This - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Blog This in Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://www.update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1304849120453
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATK Keyboard Service (ATKKeyboardService) - ASUSTeK COMPUTER INC. - C:\WINDOWS\ATKKBService.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: EPSON V3 Service4(01) (EPSON_PM_RPCV4_01) - SEIKO EPSON CORPORATION - C:\Documents and Settings\All Users\Application Data\EPSON\EPW!3 SSRP\E_S40RP7.EXE
O23 - Service: Google Update Service (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Update Service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
O23 - Service: McAfee Security Scan Component Host Service (McComponentHostService) - Unknown owner - C:\Program Files\McAfee Security Scan\2.0.181\McCHSvc.exe (file missing)
O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe
O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe
O23 - Service: QuestScan Service - Unknown owner - C:\Documents and Settings\All Users\Application Data\QuestScan\questscan151.exe (file missing)
O23 - Service: Symantec Management Client (SmcService) - Symantec Corporation - C:\Program Files\Symantec\Symantec Endpoint Protection\Smc.exe
O23 - Service: Symantec Network Access Control (SNAC) - Symantec Corporation - C:\Program Files\Symantec\Symantec Endpoint Protection\SNAC.EXE
O23 - Service: Symantec Endpoint Protection (Symantec AntiVirus) - Symantec Corporation - C:\Program Files\Symantec\Symantec Endpoint Protection\Rtvscan.exe

Sorry for delay. Welcome to the forums!

Please visit this webpage for a tutorial on downloading and running ComboFix:

http://www.bleepingcomputer.com/combofix/how-to-use-combofix

See the area: Using ComboFix, and when done, post the log back here.

ComboFix 12-03-01.02 - Nathan 02/03/2012 16:47:10.1.2 - x86
Microsoft Windows XP Home Edition 5.1.2600.3.1252.1.1033.18.2047.1426 [GMT 10.5:30]
Running from: c:\documents and settings\Nathan\Desktop\ComboFix.exe
AV: Symantec Endpoint Protection *Disabled/Updated* {FB06448E-52B8-493A-90F3-E43226D3305C}
FW: Symantec Endpoint Protection *Disabled* {BE898FE3-CD0B-4014-85A9-03DB9923DDB6}
.
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\documents and settings\All Users\Application Data\TEMP
c:\documents and settings\All Users\Start Menu\Programs\FLV Direct Player
c:\documents and settings\All Users\Start Menu\Programs\FLV Direct Player\FLV Direct Player.lnk
c:\documents and settings\All Users\Start Menu\Programs\FLV Direct Player\Uninstall FLV Direct Player.lnk
c:\documents and settings\Nathan\Local Settings\Temporary Internet Files\9-3Ez-o-QnoY-
c:\documents and settings\Nathan\Local Settings\Temporary Internet Files\nNZz2p9-pW_-z-6
c:\documents and settings\Nathan\Local Settings\Temporary Internet Files\u_BOHv8
c:\documents and settings\Nathan\WINDOWS
c:\program files\FLV Direct Player
c:\program files\FLV Direct Player\downloading.swf
c:\program files\FLV Direct Player\FLVPlayer.exe
c:\program files\FLV Direct Player\player.swf
c:\program files\FLV Direct Player\preload.swf
c:\program files\FLV Direct Player\Skin\DirectFLV\Button.bmp
c:\program files\FLV Direct Player\Skin\DirectFLV\Logo.bmp
c:\program files\FLV Direct Player\Skin\DirectFLV\skin.xml
c:\program files\FLV Direct Player\Skin\DirectFLV\SysCloseButton.bmp
c:\program files\FLV Direct Player\Skin\DirectFLV\SysMaxButton.bmp
c:\program files\FLV Direct Player\Skin\DirectFLV\SysMinButton.bmp
c:\program files\FLV Direct Player\Skin\DirectFLV\Window.bmp
c:\program files\FLV Direct Player\uninstall.exe
c:\program files\PowerPacks_2004_2027.exe
c:\program files\QuestScan
c:\program files\QuestScan\questscan.exe
c:\windows\iun6002.exe
c:\windows\jestertb.dll
.
.
((((((((((((((((((((((((((((((((((((((( Drivers/Services )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
-------\Legacy_QUESTSCAN_SERVICE
-------\Service_QuestScan Service
.
.
((((((((((((((((((((((((( Files Created from 2012-02-02 to 2012-03-02 )))))))))))))))))))))))))))))))
.
.
2012-02-22 08:42 . 2008-02-22 05:03 14976 ----a-w- c:\windows\system32\drivers\sscdmdfl.sys
2012-02-22 08:42 . 2008-02-22 05:03 12160 ----a-w- c:\windows\system32\drivers\sscdwhnt.sys
2012-02-22 08:42 . 2008-02-22 05:03 12160 ----a-w- c:\windows\system32\drivers\sscdwh.sys
2012-02-22 08:42 . 2008-02-22 05:03 114304 ----a-w- c:\windows\system32\drivers\sscdmdm.sys
2012-02-22 08:42 . 2008-02-22 05:03 87936 ----a-w- c:\windows\system32\drivers\sscdbus.sys
2012-02-22 08:42 . 2008-02-22 05:03 12160 ----a-w- c:\windows\system32\drivers\sscdcmnt.sys
2012-02-22 08:42 . 2008-02-22 05:03 12160 ----a-w- c:\windows\system32\drivers\sscdcm.sys
2012-02-22 08:41 . 2012-02-22 08:41 -------- d-----w- c:\program files\Samsung
2012-02-18 09:46 . 2012-02-18 09:46 -------- d-----w- c:\program files\Trend Micro
2012-02-18 09:17 . 2012-02-18 09:18 -------- d-----w- c:\documents and settings\All Users\Application Data\SweetIM
2012-02-18 09:17 . 2012-02-18 09:17 -------- d-----w- c:\program files\SweetIM
2012-02-18 07:40 . 2012-02-18 07:40 -------- d-----w- c:\documents and settings\Nathan\Application Data\Unity
2012-02-18 06:21 . 2012-02-18 06:21 -------- d-----w- c:\documents and settings\Nathan\Local Settings\Application Data\Deployment
2012-02-15 07:47 . 2012-01-11 19:06 3072 -c----w- c:\windows\system32\dllcache\iacenc.dll
2012-02-15 07:47 . 2012-01-11 19:06 3072 ------w- c:\windows\system32\iacenc.dll
2012-02-10 07:01 . 2012-02-15 10:00 -------- d-----w- C:\found.001
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-02-09 07:22 . 2011-07-02 09:55 414368 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2012-01-12 16:53 . 2006-02-28 12:00 1859968 ------w- c:\windows\system32\win32k.sys
2011-12-17 19:46 . 2006-02-28 12:00 916992 ----a-w- c:\windows\system32\wininet.dll
2011-12-17 19:46 . 2006-02-28 12:00 43520 ------w- c:\windows\system32\licmgr10.dll
2011-12-17 19:46 . 2006-02-28 12:00 1469440 ------w- c:\windows\system32\inetcpl.cpl
2011-12-16 12:22 . 2006-02-28 12:00 385024 ------w- c:\windows\system32\html.iec
2011-12-08 09:03 . 2011-12-08 09:03 2060760 ----a-w- c:\documents and settings\iLividSetupV1.exe
2005-12-21 13:44 . 2008-05-03 08:11 20921040 ----a-w- c:\program files\acroreader51_enu.exe
.
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\URLSearchHooks]
"{EEE6C35D-6118-11DC-9C72-001320C79847}"= "c:\program files\SweetIM\Toolbars\Internet Explorer\mgHelper.dll" [2012-01-15 130864]
.
[HKEY_CLASSES_ROOT\clsid\{eee6c35d-6118-11dc-9c72-001320c79847}]
[HKEY_CLASSES_ROOT\SweetIM_URLSearchHook.ToolbarURLSearchHook.1]
[HKEY_CLASSES_ROOT\TypeLib\{EEE6C35F-6118-11DC-9C72-001320C79847}]
[HKEY_CLASSES_ROOT\SweetIM_URLSearchHook.ToolbarURLSearchHook]
.
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{EEE6C35C-6118-11DC-9C72-001320C79847}]
2012-01-15 01:57 1330480 ----a-w- c:\program files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
"{EEE6C35B-6118-11DC-9C72-001320C79847}"= "c:\program files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll" [2012-01-15 1330480]
.
[HKEY_CLASSES_ROOT\clsid\{eee6c35b-6118-11dc-9c72-001320c79847}]
[HKEY_CLASSES_ROOT\SWEETIE.IEToolbar.1]
[HKEY_CLASSES_ROOT\TypeLib\{EEE6C35E-6118-11DC-9C72-001320C79847}]
[HKEY_CLASSES_ROOT\SWEETIE.IEToolbar]
.
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\Webbrowser]
"{EEE6C35B-6118-11DC-9C72-001320C79847}"= "c:\program files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll" [2012-01-15 1330480]
.
[HKEY_CLASSES_ROOT\clsid\{eee6c35b-6118-11dc-9c72-001320c79847}]
[HKEY_CLASSES_ROOT\SWEETIE.IEToolbar.1]
[HKEY_CLASSES_ROOT\TypeLib\{EEE6C35E-6118-11DC-9C72-001320C79847}]
[HKEY_CLASSES_ROOT\SWEETIE.IEToolbar]
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"swg"="c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2009-06-17 39408]
"Facebook Update"="c:\documents and settings\Nathan\Local Settings\Application Data\Facebook\Update\FacebookUpdate.exe" [2011-11-22 137536]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SkyTel"="SkyTel.EXE" [2007-04-04 1822720]
"StartCCC"="c:\program files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2006-11-10 90112]
"ASUSGamerOSD"="c:\program files\ASUS\GamerOSD\GamerOSD.exe" [2007-07-11 380928]
"KBDriver"="c:\program files\Keyboard Driver\OEMDriver.exe" [2006-07-25 151552]
"RTHDCPL"="RTHDCPL.EXE" [2007-04-10 16126464]
"NeroFilterCheck"="c:\program files\Common Files\Ahead\Lib\NeroCheck.exe" [2006-01-12 155648]
"RemoteControl"="c:\program files\CyberLink\PowerDVD SE\PDVDServ.exe" [2004-07-14 32768]
"ccApp"="c:\program files\Common Files\Symantec Shared\ccApp.exe" [2008-08-14 115560]
"Google Quick Search Box"="c:\program files\Google\Quick Search Box\GoogleQuickSearchBox.exe" [2009-06-17 68592]
"AppleSyncNotifier"="c:\program files\Common Files\Apple\Mobile Device Support\AppleSyncNotifier.exe" [2011-10-05 59240]
"iTunesHelper"="c:\program files\iTunes\iTunesHelper.exe" [2011-04-14 421160]
"Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 8.0\Reader\Reader_sl.exe" [2008-01-11 39792]
"APSDaemon"="c:\program files\Common Files\Apple\Apple Application Support\APSDaemon.exe" [2011-11-01 59240]
"QuickTime Task"="c:\program files\QuickTime\qttask.exe" [2011-10-24 421888]
"SweetIM"="c:\program files\SweetIM\Messenger\SweetIM.exe" [2012-01-19 114992]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]
.
c:\documents and settings\Nathan\Start Menu\Programs\Startup\
homepg.cmd [2010-2-10 377]
PowerReg Scheduler V3.exe [2008-2-3 225280]
.
c:\documents and settings\All Users\Start Menu\Programs\Startup\
Microsoft Office.lnk - c:\program files\Microsoft Office\Office10\OSA.EXE [2001-2-13 83360]
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\ccEvtMgr]
@="Service"
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\ccSetMgr]
@="Service"
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Symantec Antivirus]
@="Service"
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecAntiVirus]
"DisableMonitoring"=dword:00000001
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\Nero\\Nero 7\\Nero Home\\NeroHome.exe"=
"c:\\Program Files\\Symantec\\Symantec Endpoint Protection\\Smc.exe"=
"c:\\Program Files\\Symantec\\Symantec Endpoint Protection\\SNAC.EXE"=
"c:\\Program Files\\Common Files\\Symantec Shared\\ccApp.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\Program Files\\Bonjour\\mDNSResponder.exe"=
"c:\\Program Files\\Eidos\\Batman Arkham Asylum\\Binaries\\ShippingPC-BmGame.exe"=
"c:\\Program Files\\Windows Live\\Sync\\WindowsLiveSync.exe"=
"c:\\Program Files\\Common Files\\Apple\\Apple Application Support\\WebKit2WebProcess.exe"=
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"1089:UDP"= 1089:UDP:Windows Media Format SDK (IEXPLORE.EXE)
"1088:UDP"= 1088:UDP:Windows Media Format SDK (IEXPLORE.EXE)
"1213:UDP"= 1213:UDP:Windows Media Format SDK (IEXPLORE.EXE)
"1212:UDP"= 1212:UDP:Windows Media Format SDK (IEXPLORE.EXE)
.
R2 BBSvc;Bing Bar Update Service;c:\program files\Microsoft\BingBar\BBSvc.EXE [21/10/2011 3:23 PM 196176]
R2 BBUpdate;BBUpdate;c:\program files\Microsoft\BingBar\SeaPort.EXE [13/10/2011 5:21 PM 249648]
R3 EraserUtilRebootDrv;EraserUtilRebootDrv;c:\program files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [15/02/2012 4:22 PM 106104]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [18/03/2010 1:16 PM 130384]
S2 gupdate;Google Update Service (gupdate);c:\program files\Google\Update\GoogleUpdate.exe [31/01/2010 12:54 PM 135664]
S3 COH_Mon;COH_Mon;c:\windows\system32\drivers\COH_Mon.sys [18/11/2008 7:17 PM 23888]
S3 gupdatem;Google Update Service (gupdatem);c:\program files\Google\Update\GoogleUpdate.exe [31/01/2010 12:54 PM 135664]
S3 McComponentHostService;McAfee Security Scan Component Host Service;"c:\program files\McAfee Security Scan\2.0.181\McCHSvc.exe" --> c:\program files\McAfee Security Scan\2.0.181\McCHSvc.exe [?]
S3 nosGetPlusHelper;getPlus(R) Helper 3004;c:\windows\System32\svchost.exe -k nosGetPlusHelper [28/02/2006 10:30 PM 14336]
S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0;c:\windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [18/03/2010 1:16 PM 753504]
.
--- Other Services/Drivers In Memory ---
.
*NewlyCreated* - WS2IFSL
.
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{969B3B70-8765-11D5-9809-0050BACBF861}]
2009-03-07 18:02 128512 ----a-w- c:\windows\system32\advpack.dll
.
Contents of the 'Scheduled Tasks' folder
.
2012-02-25 c:\windows\Tasks\AppleSoftwareUpdate.job
- c:\program files\Apple Software Update\SoftwareUpdate.exe [2011-06-01 08:27]
.
2012-03-01 c:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1078081533-602609370-839522115-1004Core.job
- c:\documents and settings\Nathan\Local Settings\Application Data\Facebook\Update\FacebookUpdate.exe [2011-11-22 10:04]
.
2012-03-01 c:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1078081533-602609370-839522115-1004UA.job
- c:\documents and settings\Nathan\Local Settings\Application Data\Facebook\Update\FacebookUpdate.exe [2011-11-22 10:04]
.
2012-02-26 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2010-01-31 02:24]
.
2012-03-01 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2010-01-31 02:24]
.
.
------- Supplementary Scan -------
.
uStart Page = hxxp://myfastwebsearch.com/
mStart Page = hxxp://home.sweetim.com/?st=1&barid={344B68E3-6A43-4504-B595-B02835292BCA}
uInternet Settings,ProxyOverride = *.local
IE: Search the Web - c:\program files\SweetIM\Toolbars\Internet Explorer\resources\menuext.html
TCP: DhcpNameServer = 61.9.226.33 61.9.242.33
.
- - - - ORPHANS REMOVED - - - -
.
Toolbar-Locked - (no file)
SafeBoot-Symantec Antvirus
AddRemove-QuestScan - c:\program files\QuestScan\uninstall.exe
AddRemove-{A9E27FF5-6294-46A8-B8FD-77B1DECA3021} - c:\program files\InstallShield Installation Information\{A9E27FF5-6294-46A8-B8FD-77B1DECA3021}\setup.exe
.
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2012-03-02 16:55
Windows 5.1.2600 Service Pack 3 NTFS
.
scanning hidden processes ...
.
scanning hidden autostart entries ...
.
scanning hidden files ...
.
scan completed successfully
hidden files: 0
.
**************************************************************************
.
--------------------- LOCKED REGISTRY KEYS ---------------------
.
[HKEY_USERS\S-1-5-21-1078081533-602609370-839522115-1004\Software\Microsoft\SystemCertificates\AddressBook*]
@Allowed: (Read) (RestrictedCode)
@Allowed: (Read) (RestrictedCode)
.
[HKEY_USERS\S-1-5-21-1078081533-602609370-839522115-1004\Software\SecuROM\!CAUTION! NEVER A OR CHANGE ANY KEY*]
"??"=hex:cf,2b,ce,ce,ed,55,22,ca,9b,d2,5e,ae,54,17,09,dc,89,b7,8a,d2,3d,89,9c,
95,aa,66,af,c4,3b,d1,69,86,8f,14,a7,12,83,5e,0c,ea,a8,1b,06,17,a7,13,99,40,\
"??"=hex:40,df,fc,26,d5,30,16,f0,71,af,e5,e3,b8,bc,55,0c
.
[HKEY_USERS\S-1-5-21-1078081533-602609370-839522115-1004\Software\SecuROM\License information*]
"datasecu"=hex:9a,d2,33,fd,41,0b,73,93,62,ac,eb,89,6d,a2,1c,cb,97,3e,08,3b,db,
55,4c,e8,09,8f,1a,d1,30,76,a1,35,df,ac,27,48,39,e0,62,c7,bc,7b,3b,4b,33,d4,\
"rkeysecu"=hex:62,5a,2b,fc,6a,6b,b9,4a,d8,5b,7a,98,7a,11,c4,b6
.
--------------------- DLLs Loaded Under Running Processes ---------------------
.
- - - - - - - > 'winlogon.exe'(760)
c:\windows\system32\Ati2evxx.dll
c:\windows\system32\atiadlxx.dll
.
- - - - - - - > 'explorer.exe'(2868)
c:\windows\system32\WININET.dll
c:\program files\SweetIM\Messenger\mgAdaptersProxy.dll
c:\windows\system32\ieframe.dll
c:\windows\system32\webcheck.dll
c:\windows\system32\WPDShServiceObj.dll
c:\windows\system32\PortableDeviceTypes.dll
c:\windows\system32\PortableDeviceApi.dll
.
------------------------ Other Running Processes ------------------------
.
c:\windows\system32\Ati2evxx.exe
c:\windows\system32\Ati2evxx.exe
c:\program files\Symantec\Symantec Endpoint Protection\Smc.exe
c:\program files\Common Files\Symantec Shared\ccSvcHst.exe
c:\program files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
c:\program files\Bonjour\mDNSResponder.exe
c:\documents and settings\All Users\Application Data\EPSON\EPW!3 SSRP\E_S40RP7.EXE
c:\program files\Common Files\LightScribe\LSSrvc.exe
c:\program files\Common Files\Microsoft Shared\VS7Debug\mdm.exe
c:\program files\Symantec\Symantec Endpoint Protection\Rtvscan.exe
c:\program files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
c:\program files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
c:\program files\ATI Technologies\ATI.ACE\Core-Static\MOM.EXE
c:\program files\ATI Technologies\ATI.ACE\Core-Static\ccc.exe
c:\windows\RTHDCPL.EXE
c:\program files\Symantec\Symantec Endpoint Protection\SmcGui.exe
c:\windows\system32\wscntfy.exe
c:\program files\iPod\bin\iPodService.exe
.
**************************************************************************
.
Completion time: 2012-03-02 17:00:19 - machine was rebooted
ComboFix-quarantined-files.txt 2012-03-02 06:30
.
Pre-Run: 190,727,663,616 bytes free
Post-Run: 193,340,600,320 bytes free
.
WindowsXP-KB310994-SP2-Home-BootDisk-ENU.exe
[boot loader]
timeout=2
default=multi(0)disk(0)rdisk(0)partition(1)\WINDOWS
[operating systems]
c:\cmdcons\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons
UnsupportedDebug="do not select this" /debug
multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="Microsoft Windows XP Home Edition" /noexecute=optin /fastdetect
.
- - End Of File - - F1903D9AE002857A67893DC10F4F7350

That cleaned most of it. Let's finish up...

Scan for malware

Please download Malwarebytes Anti-Malware from Download.CNET.com.
Alternate link: BleepingComputer.com.
(Note: if you already have the program installed, just follow the directions. No need to re-download or re-install!)

Double Click mbam-setup.exe to install the application.

(Note: if you already have the program installed, open Malwarebytes from the Start Menu or Desktop shortcut, click the Update tab, and click Check for Updates, before doing the scan as instructed below!)

• Make sure a checkmark is placed next to Update Malwarebytes' Anti-Malware and Launch Malwarebytes Anti-Malware, then click Finish.
  
• If an update is found, it will download and install the latest version.
  
• Once the program has loaded, select "Perform Quick Scan", then click Scan.
  
• The scan may take some time to finish,so please be patient.
  
• When the scan is complete, click OK, then Show Results to view the results.
  
• Make sure that everything is checked, and click Remove Selected.
  
• When disinfection is completed, a log will open in Notepad and you may be prompted to Restart. If you are prompted to restart, please allow it to restart your computer. Failure to do this, will cause the infection to still be active on the computer.
  
• Please save the log to a location you will remember.
  
• The log is automatically saved by MBAM and can be viewed by clicking the Logs tab in MBAM.
  
• The log can also be found at C:\Documents and Settings\Username\Application Data\Malwarebytes\Malwarebytes' Anti-Malware\Logs\log-date.txt or at C:\Program Files\Malwarebytes' Anti-Malware\Logs\log-date.txt
  
• Copy and paste the entire report in your next reply.

AND

ESET Online Scan

Please run a free online scan with the ESET Online Scanner

• Tick the box next to YES, I accept the Terms of Use
  
• Click Start
  
• When asked, allow the ActiveX control to install
  
• Click Start
  
• Make sure that the options Remove found threats and the option Scan unwanted applications is checked
  
• Click Scan (This scan can take several hours, so please be patient)
  
• Once the scan is completed, you may close the window
  
• Use Notepad to open the logfile located at C:\Program Files\EsetOnlineScanner\log.txt
  
• Copy and paste that log as a reply to this topic

the ESET Online Scan isn't working.
I tick the box and then I click on start but then nothing happens.

Okay...let's try something else...

Please run the BitDefender QuickScan Beta, and once done, press the View Report link. Post that log in your next reply.

Malwarebytes Anti-Malware 1.60.1.1000
www.malwarebytes.org

Database version: v2012.03.03.01

Windows XP Service Pack 3 x86 NTFS
Internet Explorer 8.0.6001.18702
Nathan :: NATHANS [administrator]

3/03/2012 11:55:59 AM
mbam-log-2012-03-03 (11-55-59).txt

Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 200394
Time elapsed: 7 minute(s), 44 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 2
HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{4B8C28A7-A9BC-45F8-990D-21499EED643C} (Adware.QuestScan) -> Quarantined and deleted successfully.
HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\QUESTSCAN (Adware.QuestScan) -> Quarantined and deleted successfully.

Registry Values Detected: 1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\QuestScan|DisplayName (Adware.QuestScan) -> Data: QuestScan 1.0 build 149 powered by FIRST SEARCHBAR -> Quarantined and deleted successfully.

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

(end)


QuickScan 32-bit v0.9.9.105
---------------------------
Scan date: Sun Mar 04 11:49:31 2012
Machine ID: B097735F



No infection found.
-------------------



Processes
---------
ASUS GamerOSD 3260 C:\Program Files\ASUS\GamerOSD\GamerOSD.exe
ATI External Event Utility for Windows 1292 C:\WINDOWS\system32\ati2evxx.exe
ATI External Event Utility for Windows 972 C:\WINDOWS\system32\ati2evxx.exe
Bing Bar 1368 C:\Program Files\Microsoft\BingBar\SeaPort.EXE
Bonjour 1540 C:\Program Files\Bonjour\mDNSResponder.exe
Catalyst Control Centre 4084 C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
Catalyst Control Centre 3392 C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
EPSON Status Monitor 3 260 C:\Documents and Settings\All Users\Application Data\EPSON\EPW!3 SSRP\E_S40RP7.EXE
iTunes 2036 C:\Program Files\iPod\bin\iPodService.exe
iTunes 3632 C:\Program Files\iTunes\iTunesHelper.exe
Java(TM) Platform SE 6 U31 1908 C:\Program Files\Java\jre6\bin\jqs.exe
LightScribe 2100 C:\Program Files\Common Files\LightScribe\LSSrvc.exe
Microsoft® Windows Live ID 2988 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
Microsoft® Windows Live ID 3576 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
Microsoft® Windows® Operating System 1736 C:\WINDOWS\system32\spoolsv.exe
MobileDeviceService 284 C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
OEMDriver Application 3268 C:\Program Files\Keyboard Driver\OEMDriver.exe
PowerDVD 3548 C:\Program Files\CyberLink\PowerDVD SE\PDVDServ.exe
Realtek HD Audio Sound Effect Manager 3372 C:\WINDOWS\RTHDCPL.exe
SweetIM 3772 C:\Program Files\SweetIM\Messenger\SweetIM.exe
Symantec AntiVirus 2676 C:\Program Files\Symantec\Symantec Endpoint Protection\Rtvscan.exe
Symantec Client Management Component 1284 C:\Program Files\Symantec\Symantec Endpoint Protection\Smc.exe
Symantec Client Management Component 712 C:\Program Files\Symantec\Symantec Endpoint Protection\SmcGui.exe
Symantec Security Technologies 3604 C:\Program Files\Common Files\Symantec Shared\ccApp.exe
Symantec Security Technologies 1628 C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
(verified) Google Update 1456 C:\Program Files\Google\Update\GoogleUpdate.exe
(verified) GoogleToolbarNotifier 3780 C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
(verified) Microsoft® Visual Studio .NET 2248 C:\Program Files\Common Files\Microsoft Shared\VS7Debug\mdm.exe
(verified) Microsoft® Windows® Operating System 2612 C:\WINDOWS\explorer.exe
(verified) Microsoft® Windows® Operating System 2692 C:\WINDOWS\system32\alg.exe
(verified) Microsoft® Windows® Operating System 708 C:\WINDOWS\system32\csrss.exe
(verified) Microsoft® Windows® Operating System 3868 C:\WINDOWS\system32\ctfmon.exe
(verified) Microsoft® Windows® Operating System 812 C:\WINDOWS\system32\lsass.exe
(verified) Microsoft® Windows® Operating System 800 C:\WINDOWS\system32\services.exe
(verified) Microsoft® Windows® Operating System 660 C:\WINDOWS\system32\smss.exe
(verified) Microsoft® Windows® Operating System 988 C:\WINDOWS\system32\svchost.exe
(verified) Microsoft® Windows® Operating System 1400 C:\WINDOWS\system32\svchost.exe
(verified) Microsoft® Windows® Operating System 2536 C:\WINDOWS\system32\svchost.exe
(verified) Microsoft® Windows® Operating System 1204 C:\WINDOWS\system32\svchost.exe
(verified) Microsoft® Windows® Operating System 1464 C:\WINDOWS\system32\svchost.exe
(verified) Microsoft® Windows® Operating System 1156 C:\WINDOWS\system32\svchost.exe
(verified) Microsoft® Windows® Operating System 208 C:\WINDOWS\system32\svchost.exe
(verified) Microsoft® Windows® Operating System 1096 C:\WINDOWS\system32\svchost.exe
(verified) Microsoft® Windows® Operating System 756 C:\WINDOWS\system32\winlogon.exe
(verified) Windows® Internet Explorer 600 C:\Program Files\Internet Explorer\iexplore.exe
(verified) Windows® Internet Explorer 1072 C:\Program Files\Internet Explorer\iexplore.exe
(verified) Windows® Internet Explorer 3900 C:\Program Files\Internet Explorer\iexplore.exe
(verified) Windows® Internet Explorer 2636 C:\Program Files\Internet Explorer\iexplore.exe


Network activity
----------------
Process iexplore.exe (600) connected on port 80 (HTTP) --> 75.126.156.14
Process iexplore.exe (600) connected on port 80 (HTTP) --> 67.228.47.102
Process iexplore.exe (600) connected on port 80 (HTTP) --> 67.228.47.102
Process iexplore.exe (600) connected on port 80 (HTTP) --> 67.228.47.102
Process iexplore.exe (600) connected on port 80 (HTTP) --> 67.228.47.102
Process iexplore.exe (600) connected on port 80 (HTTP) --> 67.228.47.102
Process iexplore.exe (600) connected on port 80 (HTTP) --> 67.228.47.102
Process iexplore.exe (1072) connected on port 80 (HTTP) --> 203.42.8.210
Process iexplore.exe (1072) connected on port 80 (HTTP) --> 74.125.237.7
Process iexplore.exe (3900) connected on port 80 (HTTP) --> 118.215.119.139
Process iexplore.exe (3900) connected on port 80 (HTTP) --> 66.235.143.118
Process iexplore.exe (3900) connected on port 80 (HTTP) --> 61.9.225.166
Process iexplore.exe (3900) connected on port 80 (HTTP) --> 188.165.220.204
Process iexplore.exe (3900) connected on port 80 (HTTP) --> 74.125.237.6
Process iexplore.exe (3900) connected on port 80 (HTTP) --> 61.9.225.144

Process svchost.exe (1096) listens on ports: 135 (RPC)


Autoruns and critical files
---------------------------
Apple Push C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe
Apple Software Update C:\Program Files\Apple Software Update\SoftwareUpdate.exe
ASUS GamerOSD C:\Program Files\ASUS\GamerOSD\GamerOSD.exe
ATI External Event Utility for Windows C:\WINDOWS\system32\Ati2evxx.dll
CLIStart.exe C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe
Facebook Update C:\Documents and Settings\Nathan\Local Settings\Application Data\Facebook\Update\FacebookUpdate.exe
Google Updater C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
homepg.cmd C:\Documents and Settings\Nathan\Start Menu\Programs\Startup\homepg.cmd
iTunes C:\Program Files\iTunes\iTunesHelper.exe
Microsoft Office XP C:\Program Files\Microsoft Office\Office10\OSA.EXE
Microsoft® Windows® Operating System C:\WINDOWS\system32\CRYPT32.dll
Microsoft® Windows® Operating System C:\WINDOWS\system32\cryptnet.dll
Microsoft® Windows® Operating System C:\WINDOWS\system32\cscdll.dll
Microsoft® Windows® Operating System C:\WINDOWS\System32\dimsntfy.dll
Microsoft® Windows® Operating System C:\WINDOWS\system32\logon.scr
Microsoft® Windows® Operating System C:\WINDOWS\system32\SHELL32.dll
Microsoft® Windows® Operating System c:\windows\system32\userinit.exe
Microsoft® Windows® Operating System C:\WINDOWS\system32\WlNotify.dll
MobileMe C:\Program Files\Common Files\Apple\Mobile Device Support\AppleSyncNotifier.exe
Nero AG NeroCheck C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe
OEMDriver Application C:\Program Files\Keyboard Driver\OEMDriver.exe
PowerDVD C:\Program Files\CyberLink\PowerDVD SE\PDVDServ.exe
PowerReg Scheduler C:\Documents and Settings\Nathan\Start Menu\Programs\Startup\PowerReg Scheduler V3.exe
Quick Search Box C:\Program Files\Google\Quick Search Box\GoogleQuickSearchBox.exe
QuickTime C:\Program Files\QuickTime\qttask.exe
Realtek HD Audio Sound Effect Manager C:\WINDOWS\RTHDCPL.exe
Realtek Voice Manager C:\WINDOWS\SkyTel.EXE
SweetIM C:\Program Files\SweetIM\Messenger\SweetIM.exe
Symantec Security Technologies C:\Program Files\Common Files\Symantec Shared\ccApp.exe
(verified) Adobe Acrobat C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe
(verified) Google Update C:\Program Files\Google\Update\GoogleUpdate.exe
(verified) GoogleToolbarNotifier C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
(verified) Microsoft® Windows® Operating System C:\WINDOWS\system32\BROWSEUI.dll
(verified) Microsoft® Windows® Operating System C:\WINDOWS\system32\ctfmon.exe
(verified) Microsoft® Windows® Operating System C:\WINDOWS\system32\logonui.exe
(verified) Microsoft® Windows® Operating System C:\WINDOWS\system32\sclgntfy.dll
(verified) Microsoft® Windows® Operating System C:\WINDOWS\system32\stobject.dll
(verified) Microsoft® Windows® Operating System C:\WINDOWS\system32\WPDShServiceObj.dll
(verified) Windows® Internet Explorer C:\WINDOWS\system32\webcheck.dll


Browser plugins
---------------
AcroIEHelper Library c:\program files\common files\adobe\acrobat\activex\acroiehelper.dll
Adobe Acrobat C:\Program Files\Internet Explorer\plugins\nppdf32.dll
BitDefender QuickScan C:\WINDOWS\Downloaded Program Files\qsax.dll
Bonjour C:\Program Files\Bonjour\mdnsNSP.dll
EPSON Web-To-Page c:\program files\epson\epson web-to-page\epson web-to-page.dll
ExpressIt Upload C:\Program Files\Internet Explorer\plugins\NPExpFTP.dll
getPlus+(R) C:\WINDOWS\Downloaded Program Files\gp.ocx
Google Toolbar for Internet Explorer C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
GoogleToolbarNotifier C:\Program Files\Google\GoogleToolbarNotifier\5.7.7018.1622\swg.dll
InstallShield Update Service C:\WINDOWS\Downloaded Program Files\isusweb.dll
Java(TM) Platform SE 6 U31 C:\Program Files\Java\jre6\bin\jp2ssv.dll
Java(TM) Platform SE 6 U31 C:\Program Files\Java\jre6\bin\plugin2\npjp2.dll
Java(TM) Platform SE 6 U31 C:\Program Files\Java\jre6\bin\ssv.dll
Java(TM) Platform SE 6 U31 C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
Messenger C:\Program Files\Messenger\msmsgs.exe
Microsoft® Windows Live ID c:\program files\common files\microsoft shared\windows live\windowslivelogin.dll
Microsoft® Windows® Operating System C:\WINDOWS\system32\mswsock.dll
Microsoft® Windows® Operating System C:\WINDOWS\system32\rsvpsp.dll
Microsoft® Windows® Operating System C:\WINDOWS\System32\winrnr.dll
NPSWF32.dll C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll
QuickTime Plug-in 7.7.1 C:\Program Files\Internet Explorer\plugins\npqtplugin.dll
QuickTime Plug-in 7.7.1 C:\Program Files\Internet Explorer\plugins\npqtplugin2.dll
QuickTime Plug-in 7.7.1 C:\Program Files\Internet Explorer\plugins\npqtplugin3.dll
QuickTime Plug-in 7.7.1 C:\Program Files\Internet Explorer\plugins\npqtplugin4.dll
QuickTime Plug-in 7.7.1 C:\Program Files\Internet Explorer\plugins\npqtplugin5.dll
QuickTime Plug-in 7.7.1 C:\Program Files\Internet Explorer\plugins\npqtplugin6.dll
QuickTime Plug-in 7.7.1 C:\Program Files\Internet Explorer\plugins\npqtplugin7.dll
Shockwave for Director C:\WINDOWS\system32\Adobe\Director\np32dsw.dll
Silverlight Plug-In c:\Program Files\Microsoft Silverlight\4.1.10111.0\npctrl.dll
SweetPacks Toolbar for Internet Explore c:\program files\sweetim\toolbars\internet explorer\mghelper.dll
SweetPacks Toolbar for Internet Explore c:\program files\sweetim\toolbars\internet explorer\mgtoolbarie.dll
Unity Player C:\Documents and Settings\Nathan\Local Settings\Application Data\Unity\WebPlayer\loader\npUnity3D32.dll
Windows Live® Photo Gallery C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll
Windows Presentation Foundation c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
Windows® Internet Explorer C:\WINDOWS\system32\IEFRAME.dll
(verified) InstallShield Update Service C:\WINDOWS\Downloaded Program Files\dwusplay.dll
(verified) InstallShield Update Service C:\WINDOWS\Downloaded Program Files\dwusplay.exe
(verified) Microsoft® Windows® Operating System C:\WINDOWS\Network Diagnostic\xpnetdiag.exe


Missing files
-------------
File not found: "c:\program files\microsoft\bingbar\bingext.dll"
--> HKLM\Software\Classes\CLSID\{d2ce3e00-f94a-4740-988e-03dc2f38c34f}\InprocServer32\"(default)"
--> HKLM\Software\Classes\CLSID\{8dcb7100-df86-4384-8842-8fa844297b3f}\InprocServer32\"(default)"


Scan
----
MD5: 8fe6ab59cab8f2c038fea9522a5eeba7 C:\Documents and Settings\All Users\Application Data\EPSON\EPW!3 SSRP\E_S40RP7.EXE
MD5: fcc7c432fbf465c38fd5d940580ef9b7 C:\Documents and Settings\Nathan\Local Settings\Application Data\Facebook\Update\FacebookUpdate.exe
MD5: aea6a7fd670c2d3c089603991107fb59 C:\Documents and Settings\Nathan\Local Settings\Application Data\Unity\WebPlayer\loader\npUnity3D32.dll
MD5: 0419b153fbcad8c197e2212ebb5a23db C:\Documents and Settings\Nathan\Start Menu\Programs\Startup\PowerReg Scheduler V3.exe
MD5: 34ebd4ff6a24d86bb4716d6afcc1a89b C:\Program Files\Apple Software Update\SoftwareUpdate.exe
MD5: 3986ff03f6c3dd063d05b6193ea360fa C:\Program Files\ASUS\GamerOSD\GamerOSD.exe
MD5: d0b19d74c924073a8326578bbd1877ce C:\Program Files\ASUS\GamerOSD\ImageTransform.dll
MD5: be9a6c91999c1fb796f980c794e7db9c C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
MD5: 033ff248550305ed52ed2d2844a8a11b C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe
MD5: 7c98599dc1b7c7103a52b2c0bf462c56 C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
MD5: 37bc9e0e4b3657b54037777135569d1e C:\Program Files\Bonjour\mdnsNSP.dll
MD5: f2060a34c8a75bc24a9222eb4f8c07bd C:\Program Files\Bonjour\mDNSResponder.exe
MD5: c11f6a1f61481e24be3fdc06ea6f7d2a c:\program files\common files\adobe\acrobat\activex\acroiehelper.dll
MD5: c93ab037a8c792d5f8a1a9fc88a7c7c5 C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe
MD5: c4ebbbd7165be535f0bfd06b80601d91 C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe
MD5: 60c079cb2150760263d1fe5ff6218961 C:\Program Files\Common Files\Apple\Apple Application Support\AppleVersions.dll
MD5: 1f3ff6c062b311fe410ec89f6bfac213 C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe
MD5: 37cf2461cb5e40c4cfab82c8fc79a2bc C:\Program Files\Common Files\Apple\Apple Application Support\ASL.dll
MD5: fc33cbbb9cadcec307da010fe763d04c C:\Program Files\Common Files\Apple\Apple Application Support\CFNetwork.dll
MD5: 054b87c872292a960b9b8a834b34dfa7 C:\Program Files\Common Files\Apple\Apple Application Support\CoreFoundation.dll
MD5: 149d74e1128a86dc9cfb2851fbea11eb C:\Program Files\Common Files\Apple\Apple Application Support\icudt46.dll
MD5: 250bf888ddbe88d61eb19a9d4957c794 C:\Program Files\Common Files\Apple\Apple Application Support\libdispatch.dll
MD5: fd86c605fd7ad4a41c01ec7a4a1e1c5d C:\Program Files\Common Files\Apple\Apple Application Support\libicuin.dll
MD5: a3609397ef273b03295dbb10274be12c C:\Program Files\Common Files\Apple\Apple Application Support\libicuuc.dll
MD5: 18301b40411b2108076ab685b4e4b6dc C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
MD5: 794950db77aa590c2964eca0a5874a09 C:\Program Files\Common Files\Apple\Apple Application Support\objc.dll
MD5: df1c1cd0c7ee95cc00d71e9e415e7bcd C:\Program Files\Common Files\Apple\Apple Application Support\pthreadVC2.dll
MD5: c28fd3b37b6f18751c99e6022a2a9782 C:\Program Files\Common Files\Apple\Apple Application Support\SQLite3.dll
MD5: 2503287bd19ae52e36e9de42834a2ac0 C:\Program Files\Common Files\Apple\Apple Application Support\YSCrashDump.dll
MD5: a56ccbbfccedce2fd9c69fed24e035e3 C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
MD5: 3debbecf665dcdde3a95d9b902010817 C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
MD5: 1224bc6de919f8cd8c1c945280e63852 C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService_main.dll
MD5: 3417e5691ac9e5b6c3176d2b66dae82d C:\Program Files\Common Files\Apple\Mobile Device Support\AppleSyncNotifier.exe
MD5: 06a4250c9e3606cae3f68da45702f342 C:\Program Files\Common Files\Apple\Mobile Device Support\iTunesMobileDevice.dll
MD5: 905b5bf5be0a86e8412801bf20357195 C:\Program Files\Common Files\Apple\Mobile Device Support\MobileDevice.dll
MD5: c1a3af85dbfc67988fb71ce5e8f3b570 C:\Program Files\Common Files\LightScribe\LSLog.dll
MD5: f3918787f9d5f5ff2da57cdefb858ec5 C:\Program Files\Common Files\LightScribe\LSSProxy.dll
MD5: 6e5dac168d1ff9843e84a59d51d31107 C:\Program Files\Common Files\LightScribe\LSSrvc.exe
MD5: a7e8525fa8788ca52f728414a65ba349 C:\Program Files\Common Files\Microsoft Shared\Ink\SKCHUI.DLL
MD5: 5eb87ba0b93ca7e894fc8002e3ce4c2a C:\Program Files\Common Files\Microsoft Shared\Windows Live\sqmapi.dll
MD5: 72271edb7397d8850bee0896a15cdaa9 C:\Program Files\Common Files\Symantec Shared\ccAlert.dll
MD5: e00d4e32d46eb631538cdd87f457a67d C:\Program Files\Common Files\Symantec Shared\ccApp.exe
MD5: 3b421a2d225f956b0dda166ef7fada45 C:\Program Files\Common Files\Symantec Shared\ccEmlPxy.dll
MD5: 53cce9877dca9b5af83b67ed78149c99 C:\Program Files\Common Files\Symantec Shared\ccEvtCli.dll
MD5: 1530f915ed37d71dae6eeb9b9d8949eb C:\Program Files\Common Files\Symantec Shared\ccEvtPlg.dll
MD5: e409157b1208530aec2ab8e7e2e6edbf C:\Program Files\Common Files\Symantec Shared\ccL60.dll
MD5: d36c083486611ae77e01449124e9be54 C:\Program Files\Common Files\Symantec Shared\ccL608.dll
MD5: 9d7344e1ed7baaee3eadb328e3100d68 C:\Program Files\Common Files\Symantec Shared\ccL60U.dll
MD5: e5316bf919484fefed1f6663156f5e91 C:\Program Files\Common Files\Symantec Shared\ccL60U8.dll
MD5: 035ed9f37b30beed4c8055242cb157b5 C:\Program Files\Common Files\Symantec Shared\ccProSub.dll
MD5: c656bd42c3b9594d4453f268c5a80c8e C:\Program Files\Common Files\Symantec Shared\ccScanw.dll
MD5: 85164f595ee0225cd78a289b5a836201 C:\Program Files\Common Files\Symantec Shared\ccSet.dll
MD5: 04909e75a9fbdc69be1486fea6a2f36e C:\Program Files\Common Files\Symantec Shared\ccSetEvt.dll
MD5: ffbf2157bf5257db9cda81f14b94106a C:\Program Files\Common Files\Symantec Shared\ccSetPlg.dll
MD5: 9537061204d8cca677f34f849afe7491 C:\Program Files\Common Files\Symantec Shared\ccSvc.dll
MD5: 93a45b3f2403670a6d14a0b466d97698 C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
MD5: f4f251b85b421dcd19963cf44477315a C:\Program Files\Common Files\Symantec Shared\ccVrTrst.dll
MD5: 94204425623c2ee41695b82959abb859 C:\Program Files\Common Files\Symantec Shared\COH\sesHlp.dll
MD5: 2ee898b0b43fe6b68b69b82b19305e2d C:\Program Files\Common Files\Symantec Shared\COH\sh0000.dll
MD5: a4a692e71639b17628c48b5d0a6decce C:\Program Files\Common Files\Symantec Shared\dec_abi.dll
MD5: 25d7a040a493ab91052f9170d4db80d4 C:\Program Files\Common Files\Symantec Shared\ecmldr32.DLL
MD5: 579a6b6135d32b857faf0e3a974535d8 C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys
MD5: 028d50f059bd0d2ccb209e9011b9a9a4 C:\Program Files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys
MD5: c79bcd7b2176beb36752c2f3c28ae5c4 C:\Program Files\Common Files\Symantec Shared\Global Exceptions\GEDataStore.dll
MD5: 13ee4d9166be58df30761c362477da92 C:\Program Files\Common Files\Symantec Shared\rcEmlPxy.dll
MD5: 2639a3e630a7140889bf2d816ec0b0f7 C:\Program Files\Common Files\Symantec Shared\SAVSubmissionEngine\SUBCONN.dll
MD5: 2bbf5c314dc0e880c30b677248f9efac C:\Program Files\Common Files\Symantec Shared\SAVSubmissionEngine\SUBENG.dll
MD5: 3bb9e775542a2b453ef1613146a79a94 C:\Program Files\Common Files\Symantec Shared\SNDSvc.dll
MD5: 629fe981ad40a8ba147b98907520cc6e C:\Program Files\Common Files\Symantec Shared\SPBBC\bbRGen.dll
MD5: 77780509a16a1df7f2d8531d21ddb9b9 C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCDrv.sys
MD5: 9481b6adbe7f27e9f3f27f6a682f8c4b C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCEvt.dll
MD5: f30b3183a89bbd26cf1473c2e492ccb4 C:\Program Files\Common Files\Symantec Shared\SRTSP\SRTSP32.DLL
MD5: 7a011702c0aa86ad79efa86e66f411dc C:\Program Files\CyberLink\PowerDVD SE\PDVDServ.exe
MD5: dae211d3393343b2fad71c65b20ec562 C:\Program Files\CyberLink\Shared Files\CLRCEngine2.dll
MD5: 01319cf4030b3740ba8261e7024acad1 c:\program files\epson\epson web-to-page\epson web-to-page.dll
MD5: 408ddd80eede47175f6844817b90213e C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
MD5: 273c9862feed8630b218fddf99cb85c5 C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
MD5: d580f8888b4a538753ddd16e06fc641b C:\Program Files\Google\GoogleToolbarNotifier\5.7.7018.1622\gtn.dll
MD5: bbd2d60b8f0f0dc68d6211c81b755b6d C:\Program Files\Google\GoogleToolbarNotifier\5.7.7018.1622\swg.dll
MD5: 6d0bc5a3fd6c94e571e40218f10a319d C:\Program Files\Google\Quick Search Box\GoogleQuickSearchBox.exe
MD5: 2d418b822382723e4c931cc274d4a0bd C:\Program Files\Google\Update\1.3.21.65\goopdate.dll
MD5: 630a79b805ce654edb42d27ed0269a0e C:\Program Files\Internet Explorer\ieproxy.dll
MD5: f32b4406cef8cb0ac276f9a2affef92f C:\Program Files\Internet Explorer\plugins\NPExpFTP.dll
MD5: 04af8bc83a89d9b71f7e0bcaf9fdd768 C:\Program Files\Internet Explorer\plugins\nppdf32.dll
MD5: 3bceadd881be8f5c823acb8a94a37e0c C:\Program Files\Internet Explorer\plugins\npqtplugin.dll
MD5: 3bceadd881be8f5c823acb8a94a37e0c C:\Program Files\Internet Explorer\plugins\npqtplugin2.dll
MD5: 3bceadd881be8f5c823acb8a94a37e0c C:\Program Files\Internet Explorer\plugins\npqtplugin3.dll
MD5: 3bceadd881be8f5c823acb8a94a37e0c C:\Program Files\Internet Explorer\plugins\npqtplugin4.dll
MD5: 3bceadd881be8f5c823acb8a94a37e0c C:\Program Files\Internet Explorer\plugins\npqtplugin5.dll
MD5: 3bceadd881be8f5c823acb8a94a37e0c C:\Program Files\Internet Explorer\plugins\npqtplugin6.dll
MD5: 3bceadd881be8f5c823acb8a94a37e0c C:\Program Files\Internet Explorer\plugins\npqtplugin7.dll
MD5: d99e62c440b4a0463baa47b1256ff0a7 C:\Program Files\Internet Explorer\xpshims.dll
MD5: ca9d4b998bff311a539604ed87318fa0 C:\Program Files\iPod\bin\iPodService.exe
MD5: 6da534d9fdc60333572a45c8afb68026 C:\Program Files\iPod\bin\iPodService.Resources\en.lproj\iPodServiceLocalized.DLL
MD5: fb57256f11fbf2720c7b3c18aa93f488 C:\Program Files\iPod\bin\iPodService.Resources\iPodService.DLL
MD5: c37f4fa10f7468625e7acad98fab4465 C:\Program Files\iTunes\iTunesHelper.dll
MD5: 638c728f21ccc7ec4f8517a212c34353 C:\Program Files\iTunes\iTunesHelper.exe
MD5: f3d835ccc3db2083f09e7a1d2820407b C:\Program Files\iTunes\iTunesHelper.Resources\en.lproj\iTunesHelperLocalized.DLL
MD5: 64ee2e5ab46a27eeffeadb76b34dbc76 C:\Program Files\iTunes\iTunesHelper.Resources\iTunesHelper.DLL
MD5: a9770771b622a871643ea2a4a3983e95 C:\Program Files\Java\jre6\bin\jp2ssv.dll
MD5: 0a5709543986843d37a92290b7838340 C:\Program Files\Java\jre6\bin\jqs.exe
MD5: 34e3709244736b8976820f730e5a8815 C:\Program Files\Java\jre6\bin\plugin2\npjp2.dll
MD5: 8e6c86726b67d3faa3144849b9aac06c C:\Program Files\Java\jre6\bin\ssv.dll
MD5: 59b9f6abac6cbbc356e092c556ff8ea5 C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
MD5: 2c05c484817f7a816e92e98b25b1571f C:\Program Files\Keyboard Driver\OEMDriver.exe
MD5: bea5326fdde337d1319ce06ed5b67d2d C:\Program Files\Keyboard Driver\sckbd.dll
MD5: 3e930c641079443d4de036167a69caa2 C:\Program Files\Messenger\msmsgs.exe
MD5: 5bc65464354a9fd3beaa28e18839734a C:\Program Files\Microsoft Office\Office10\OSA.EXE
MD5: ed327201724ea05d509b7939abe49e98 c:\Program Files\Microsoft Silverlight\4.1.10111.0\npctrl.dll
MD5: 01a24b415926bb5f772dbe12459d97de C:\Program Files\Microsoft\BingBar\BBSvc.EXE
MD5: 785de7abda13309d6065305542829e76 C:\Program Files\Microsoft\BingBar\SeaPort.EXE
MD5: 0d01287d85b3715fa8270e8ec919b7f7 C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe
MD5: 1acf98d80e95add298832c7a8996b48c C:\Program Files\NOS\bin\getPlus_Helper_3004.dll
MD5: b4128e08c7fcb87f18c110728f326b88 C:\Program Files\QuickTime\QTSystem\QTCF.dll
MD5: e58ce86d472613a7b8b76a5b9efe51e5 C:\Program Files\QuickTime\QTSystem\QuickTime.qts
MD5: af43c4f7f3c8bc95dad95024f96cdc4a C:\Program Files\QuickTime\qttask.exe
MD5: 7bc5b26fa0bc100a9f5b2fd178e7e4e2 C:\Program Files\SweetIM\Messenger\mgAdaptersProxy.dll
MD5: ecd3f6f1ae3fee04e858538df4081b3b C:\Program Files\SweetIM\Messenger\mgcommon.dll
MD5: 7d41091ab70ca7bc11ecf152c0ef12c9 C:\Program Files\SweetIM\Messenger\mgcommunication.dll
MD5: 6500c8cad5bb6fc55e32b82d8df1f987 C:\Program Files\SweetIM\Messenger\mgconfig.dll
MD5: 10040468eee0283f7bd4065547f0448a C:\Program Files\SweetIM\Messenger\mghooking.dll
MD5: 63ff4b3bcf770c77272dde796b620895 C:\Program Files\SweetIM\Messenger\mgsimcommon.dll
MD5: 106bc82184bebbf6222d913c10705716 C:\Program Files\SweetIM\Messenger\mgUpdateSupport.dll
MD5: dd60555f651b16eeace2a74cd192d06f C:\Program Files\SweetIM\Messenger\mgxml_wrapper.dll
MD5: 92dccd7ad8fb9fb475a4f48086938838 C:\Program Files\SweetIM\Messenger\SweetIM.exe
MD5: 22dcd5620a99680db156b7ce8b6e6a9a c:\program files\sweetim\toolbars\internet explorer\mghelper.dll
MD5: f0501090aca0a6e146c53e91b1aff4a1 c:\program files\sweetim\toolbars\internet explorer\mgtoolbarie.dll
MD5: e09c71b34dd5233b5a49e1a6a63bb755 C:\Program Files\Symantec\Symantec Endpoint Protection\AVMan.plg
MD5: 1722919bf92009fd04ce6b475f8d8e57 C:\Program Files\Symantec\Symantec Endpoint Protection\AvPluginImpl.dll
MD5: fa4779ea2717f9e288a7275c689a62bb C:\Program Files\Symantec\Symantec Endpoint Protection\Cliproxy.dll
MD5: c1e7814078ba85fa55cdfd20b36165ca C:\Program Files\Symantec\Symantec Endpoint Protection\DataMan.dll
MD5: a15ba7063566d57ceec8d0f5562fcc0f C:\Program Files\Symantec\Symantec Endpoint Protection\deuParser.dll
MD5: 05d9eebfff9f4ef6074304c76895bc02 C:\Program Files\Symantec\Symantec Endpoint Protection\devman.plg
MD5: 3e77b941a9787a11500865e9d57e6ae0 C:\Program Files\Symantec\Symantec Endpoint Protection\GUProxy.plg
MD5: e96fe7c8f651124f9ecb51a7c19f598c C:\Program Files\Symantec\Symantec Endpoint Protection\HPPProtectionProviderUI.dll
MD5: 43f8f3e3591e683fe9c16fdb57fd8186 C:\Program Files\Symantec\Symantec Endpoint Protection\I2ldvp3.dll
MD5: 3956f179e9af2efb514ceca032562224 C:\Program Files\Symantec\Symantec Endpoint Protection\IdsTrafficPipe.dll
MD5: 592cabf912a1c2a3970191dc26a37f8d C:\Program Files\Symantec\Symantec Endpoint Protection\IMail.dll
MD5: 366f49034d6e3f67e1a5a3706b2ece9e C:\Program Files\Symantec\Symantec Endpoint Protection\LuMan.plg
MD5: d15e41cbdb248c8d664ea4c491837de1 C:\Program Files\Symantec\Symantec Endpoint Protection\ManagedUnloader.dll
MD5: 1313c18d6db78fdfd291016dc7f91964 C:\Program Files\Symantec\Symantec Endpoint Protection\NacManager.plg
MD5: 30295c924f1b97c55959bfd77131e7a7 C:\Program Files\Symantec\Symantec Endpoint Protection\NAVNTUTL.DLL
MD5: db1ecae17329449a21aa545b530a48d2 C:\Program Files\Symantec\Symantec Endpoint Protection\Netport.dll
MD5: 14bffba947e333a790e2520b3c63a10e C:\Program Files\Symantec\Symantec Endpoint Protection\ProtectionProviderPS.dll
MD5: ceedef9659ff0b52724158a3c3135801 C:\Program Files\Symantec\Symantec Endpoint Protection\ProtectionUtil.dll
MD5: 019e71c94a6e03e3003bdff9ba3d5b63 C:\Program Files\Symantec\Symantec Endpoint Protection\PSSensor.dll
MD5: 3c541ba447952a425f71789dbd704ba1 C:\Program Files\Symantec\Symantec Endpoint Protection\RasSymEap.dll
MD5: a63f7bc404d810eb387c8211e04baf9e C:\Program Files\Symantec\Symantec Endpoint Protection\res\1033\ActaRes.dll
MD5: 7c2f8bb268051bc037503ba04ceb1c16 C:\Program Files\Symantec\Symantec Endpoint Protection\res\1033\AvManRes.dll
MD5: 80ea57ad68a9361668c9f13601bfc34b C:\Program Files\Symantec\Symantec Endpoint Protection\res\1033\DevManRes.dll
MD5: 4814b9c26b69b59c724db9acbe71d696 C:\Program Files\Symantec\Symantec Endpoint Protection\res\1033\GUProxyRes.dll
MD5: a0eee56db77d67526d26e0e788127de1 C:\Program Files\Symantec\Symantec Endpoint Protection\res\1033\HPPProtectionproviderUIRes.dll
MD5: fc6f702a5908169f810eecac441c73dc C:\Program Files\Symantec\Symantec Endpoint Protection\res\1033\IMailRes.dll
MD5: 37326881178769f6ddc5b4f119ca36af C:\Program Files\Symantec\Symantec Endpoint Protection\res\1033\LUManRes.dll
MD5: 04e715beaeb9b2ba5a45549e96a59a17 C:\Program Files\Symantec\Symantec Endpoint Protection\res\1033\ProtectionUtilRes.dll
MD5: 7850b248a9030aaa422bec02354a16ff C:\Program Files\Symantec\Symantec Endpoint Protection\res\1033\PScanRes.dll
MD5: 796d19a99583f473b07b2e42f3cf9b33 C:\Program Files\Symantec\Symantec Endpoint Protection\res\1033\SavMainUIRes.dll
MD5: 997da273f32bb40cee902e2977c6016e C:\Program Files\Symantec\Symantec Endpoint Protection\res\1033\SAVSubmitterRes.dll
MD5: 5e0d41469160b04a774cfc789c963d1c C:\Program Files\Symantec\Symantec Endpoint Protection\res\1033\SgHIRes.dll
MD5: 7265db4d01fe19bf997c70520ba6f7e0 C:\Program Files\Symantec\Symantec Endpoint Protection\res\1033\SmcGuiRes.dll
MD5: 95de46da63d4308a33f9c2ad26c3524d C:\Program Files\Symantec\Symantec Endpoint Protection\res\1033\SmcRes.dll
MD5: 146730db276d233b03c9a04314d862d0 C:\Program Files\Symantec\Symantec Endpoint Protection\res\1033\SpNetRes.dll
MD5: 999b70d563c0020f0403c86e0c9b7200 C:\Program Files\Symantec\Symantec Endpoint Protection\res\1033\SUBRES.loc
MD5: 6b5e4432e3628f4e5042d83ce3182743 C:\Program Files\Symantec\Symantec Endpoint Protection\res\1033\TseRes.dll
MD5: ab135c5739d0ab8cbaaf1d4b23e3c259 C:\Program Files\Symantec\Symantec Endpoint Protection\Rtvscan.exe
MD5: 420859f909fee2a4955d4884328cf2ca C:\Program Files\Symantec\Symantec Endpoint Protection\RTVScanPS.dll
MD5: b8be6fe3cd2ae881fc62b60319c6aea4 C:\Program Files\Symantec\Symantec Endpoint Protection\SavEmail.dll
MD5: dbe8f061098f24021e4374934436359c C:\Program Files\Symantec\Symantec Endpoint Protection\SavMainUI.dll
MD5: c170def2381db22f46ed7f6570bbcb5d C:\Program Files\Symantec\Symantec Endpoint Protection\SAVSesHlp.dll
MD5: bcfccea493f2e483e210553c6b1b1a14 C:\Program Files\Symantec\Symantec Endpoint Protection\SAVSubmitter.dll
MD5: 459bbf9cba7d85f8d374b8478ee8ea2a C:\Program Files\Symantec\Symantec Endpoint Protection\SfConfig.dll
MD5: c5c8fcaa2134d5e0d3a733607667964b C:\Program Files\Symantec\Symantec Endpoint Protection\sfman.plg
MD5: e1aebebaa5574226cd9be654ade6683d C:\Program Files\Symantec\Symantec Endpoint Protection\SgConfig.dll
MD5: fb914b2f7419a22c4aff786c89f1b469 C:\Program Files\Symantec\Symantec Endpoint Protection\SgHI.dll
MD5: d0375ca98569065a51504187d22c1949 C:\Program Files\Symantec\Symantec Endpoint Protection\Smc.exe
MD5: 631f383e4192c053e52570d1e6f4ec84 C:\Program Files\Symantec\Symantec Endpoint Protection\SmcGui.exe
MD5: 612d1ecbf4f7351a29b9eb0fa6e5f56a C:\Program Files\Symantec\Symantec Endpoint Protection\SNAC.EXE
MD5: 2ce358fbf42cdf583e3ec005660d867f C:\Program Files\Symantec\Symantec Endpoint Protection\SnacNp.dll
MD5: 8a8f1872e1aa084602d36d8611aab128 C:\Program Files\Symantec\Symantec Endpoint Protection\SpNet.dll
MD5: c6b8b0e9726ce7e4b6331853edb9bc46 C:\Program Files\Symantec\Symantec Endpoint Protection\SSSensor.dll
MD5: fd7c7f22d0b87905a21d14de80784581 C:\Program Files\Symantec\Symantec Endpoint Protection\SyLink.dll
MD5: 4a1d9887cba0724155c58c35c1c364da C:\Program Files\Symantec\Symantec Endpoint Protection\SyLog.dll
MD5: 13e9071a7105bd4646199a6b85a73de9 C:\Program Files\Symantec\Symantec Endpoint Protection\SymProtectStorage.dll
MD5: 63f13404641cc766b84f105b0e36d840 C:\Program Files\Symantec\Symantec Endpoint Protection\SymRasMan.dll
MD5: 5dec8f2265cabd7a7f96f5891ddb2519 C:\Program Files\Symantec\Symantec Endpoint Protection\tfman.dll
MD5: 42535fb31d480144d4bf39ffbd120d46 C:\Program Files\Symantec\Symantec Endpoint Protection\Trident.dll
MD5: d1160d026c759b4ae539a26093cca8f2 C:\Program Files\Symantec\Symantec Endpoint Protection\tse.dll
MD5: 4a51b34bc816be7e8c63848ccab95c4f C:\Program Files\Symantec\Symantec Endpoint Protection\TseConfig.dll
MD5: 478d572aea160e4f21cb44c1de903562 C:\Program Files\Symantec\Symantec Endpoint Protection\TseConfigRes.dll
MD5: 645ded6487878226a09fd3b32cab8ba3 C:\Program Files\Symantec\Symantec Endpoint Protection\wpsman.dll
MD5: ce41e6add1886dcffb9ce10e5fdf8b7a C:\Program Files\Windows Live\Family Safety\fsapi.dll
MD5: 862f55824ac81295837b0ab63f91071f C:\PROGRA~1\COMMON~1\SYMANT~1\VIRUSD~1\20120302.017\NAVENG.SYS
MD5: 529d571b551cb9da44237389b936f1ae C:\PROGRA~1\COMMON~1\SYMANT~1\VIRUSD~1\20120302.017\NAVEX15.SYS
MD5: e553c4b4b7b4b86cd71a2dfee1b58131 C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
MD5: 310c15fd8358b2c4cd7a5b98a112883f C:\WINDOWS\AppPatch\AcGenral.DLL
MD5: 77e6673a112c98f99ef44776f4de2e4d C:\WINDOWS\AppPatch\AcLayers.DLL
MD5: 93d5b9634c4744fb115785081ecf9738 C:\WINDOWS\assembly\GAC_MSIL\ACE.Graphics.DisplaysManager.Shared\2.0.2573.17685__90ba9c70f846762e\ACE.Graphics.DisplaysManager.Shared.dll
MD5: 67dee75d1cbff9858c5150a9a7ba6d77 C:\WINDOWS\assembly\GAC_MSIL\AEM.Actions.CCAA.Shared\2.0.2700.34689__90ba9c70f846762e\AEM.Actions.CCAA.Shared.dll
MD5: 09f9a890c946fb4693bf8e3882253fbf C:\WINDOWS\assembly\GAC_MSIL\AEM.Foundation\2.0.2700.34672__90ba9c70f846762e\AEM.Foundation.dll
MD5: b092daf7551bb703b399d22dae91275a C:\WINDOWS\assembly\GAC_MSIL\AEM.Plugin.DPPE.Shared\2.0.2700.34739__90ba9c70f846762e\AEM.Plugin.DPPE.Shared.dll
MD5: 975585381d89fd1c64590657cf10efc1 C:\WINDOWS\assembly\GAC_MSIL\AEM.Plugin.EEU.Shared\2.0.2700.34706__90ba9c70f846762e\AEM.Plugin.EEU.Shared.dll
MD5: c6a8f2eea363ed357bc3fb37cceff959 C:\WINDOWS\assembly\GAC_MSIL\AEM.Plugin.Hotkeys.Shared\2.0.2700.34701__90ba9c70f846762e\AEM.Plugin.Hotkeys.Shared.dll
MD5: 2bd7a0a5de4c8290650053127efd8469 C:\WINDOWS\assembly\GAC_MSIL\AEM.Plugin.Source.Kit.Server\2.0.2736.38653__90ba9c70f846762e\AEM.Plugin.Source.Kit.Server.dll
MD5: e892bd887b49b07a258c11d946cc8668 C:\WINDOWS\assembly\GAC_MSIL\AEM.Server.Shared\2.0.2700.34697__90ba9c70f846762e\AEM.Server.Shared.dll
MD5: a5be9e16bbdb4ab2d9b40df9d56a341b C:\WINDOWS\assembly\GAC_MSIL\AEM.Server\2.0.2736.38316__90ba9c70f846762e\AEM.Server.dll
MD5: 9b7019dec7843126f678d3fe289f1727 C:\WINDOWS\assembly\GAC_MSIL\APM.Foundation\2.0.2700.34704__90ba9c70f846762e\APM.Foundation.dll
MD5: 111bafa96d076f81ec4361d6d15265bd C:\WINDOWS\assembly\GAC_MSIL\APM.Server\2.0.2736.38317__90ba9c70f846762e\APM.Server.dll
MD5: 886d6ae25653306ef5dc8e5b960f5740 C:\WINDOWS\assembly\GAC_MSIL\ATICCCom\2.0.0.0__90ba9c70f846762e\ATICCCom.dll
MD5: ea04970856065c5473529e4b4186f6bf C:\WINDOWS\assembly\GAC_MSIL\ATIDEMOS\2.0.2736.38318__90ba9c70f846762e\ATIDEMOS.dll
MD5: 74a97243ab81f912efb1e75c0233cbae C:\WINDOWS\assembly\GAC_MSIL\atixclib\1.0.0.0__90ba9c70f846762e\atixclib.dll
MD5: df1c2f0000fc189b52738ffa8c92ae38 C:\WINDOWS\assembly\GAC_MSIL\CCC.Implementation\2.0.2736.38608__90ba9c70f846762e\CCC.Implementation.dll
MD5: 69561e44b3a1564c0885c869af8752be C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DisplaysManager.Graphics.Dashboard\2.0.2736.38346__90ba9c70f846762e\CLI.Aspect.DisplaysManager.Graphics.Dashboard.dll
MD5: f099f4df500f8426e205f7d0f45699d1 C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DisplaysManager.Graphics.Wizard\2.0.2736.38368__90ba9c70f846762e\CLI.Aspect.DisplaysManager.Graphics.Wizard.dll
MD5: d4715bc2d901c0ec4a7be6a320032455 C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.HotkeysHandling.Graphics.Runtime\2.0.2736.38346__90ba9c70f846762e\CLI.Aspect.HotkeysHandling.Graphics.Runtime.dll
MD5: e5fded6330c4881f06e21f43eb29f2da C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.HotkeysHandling.Graphics.Shared\2.0.2700.34717__90ba9c70f846762e\CLI.Aspect.HotkeysHandling.Graphics.Shared.dll
MD5: 860f2915b8199486b1bbdecde4643597 C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.Radeon3D.Graphics.Shared\2.0.2700.34727__90ba9c70f846762e\CLI.Aspect.Radeon3D.Graphics.Shared.dll
MD5: 9835dd3349d77a4594769bdd5394e96e C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.Radeon3D.Graphics.Wizard\2.0.2736.38559__90ba9c70f846762e\CLI.Aspect.Radeon3D.Graphics.Wizard.dll
MD5: 1ab0597b97ae774c53e74380443df9b9 C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.TransCode.Graphics.Shared\2.0.2700.34759__90ba9c70f846762e\CLI.Aspect.TransCode.Graphics.Shared.dll
MD5: 7c74bc6afdfc1da7146acd45ed4cb119 C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.TransCode.Graphics.Wizard\2.0.2736.38622__90ba9c70f846762e\CLI.Aspect.TransCode.Graphics.Wizard.dll
MD5: 2f3ebb6ced2c1f78ab3bca433c4fcb93 C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.Welcome.Graphics.Dashboard\2.0.2736.38629__90ba9c70f846762e\CLI.Aspect.Welcome.Graphics.Dashboard.dll
MD5: d4fea319535f329277651a4280284916 C:\WINDOWS\assembly\GAC_MSIL\CLI.Caste.Graphics.Dashboard.Shared\2.0.2700.34729__90ba9c70f846762e\CLI.Caste.Graphics.Dashboard.Shared.dll
MD5: 7ada5477d46f9ee9f595acda7d9dd38d C:\WINDOWS\assembly\GAC_MSIL\CLI.Caste.Graphics.Dashboard\2.0.2736.38339__90ba9c70f846762e\CLI.Caste.Graphics.Dashboard.dll
MD5: 03ebfddbcf2d937152c92851368a947b C:\WINDOWS\assembly\GAC_MSIL\CLI.Caste.Graphics.Runtime\2.0.2736.38325__90ba9c70f846762e\CLI.Caste.Graphics.Runtime.dll
MD5: a0c33bb78668163a2214ed4e40f41e4d C:\WINDOWS\assembly\GAC_MSIL\CLI.Caste.Graphics.Shared\2.0.2700.34697__90ba9c70f846762e\CLI.Caste.Graphics.Shared.dll
MD5: 0120306617f27382cf3090ee1dca0667 C:\WINDOWS\assembly\GAC_MSIL\CLI.Caste.Graphics.Wizard.Shared\2.0.2700.34713__90ba9c70f846762e\CLI.Caste.Graphics.Wizard.Shared.dll
MD5: 57a5b746f466f682bf5bd484be6fd5b2 C:\WINDOWS\assembly\GAC_MSIL\CLI.Caste.Graphics.Wizard\2.0.2736.38360__90ba9c70f846762e\CLI.Caste.Graphics.Wizard.dll
MD5: ab67951db4e097598dff62a018415741 C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Client.Shared.Private\2.0.2700.34698__90ba9c70f846762e\CLI.Component.Client.Shared.Private.dll
MD5: 9e2200761404bfe086a47d465d37fdda C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Client.Shared\2.0.2700.34686__90ba9c70f846762e\CLI.Component.Client.Shared.dll
MD5: a52ab7697d18bd165098b4bb9cdade08 C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Dashboard.Shared.Private\2.0.2700.34711__90ba9c70f846762e\CLI.Component.Dashboard.Shared.Private.dll
MD5: c94f253189acedb7bd9e188efaec219f C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Dashboard.Shared\2.0.2700.34694__90ba9c70f846762e\CLI.Component.Dashboard.Shared.dll
MD5: 36d5173379728b8cd7b1661320d707d6 C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Dashboard\2.0.2736.38333__90ba9c70f846762e\CLI.Component.Dashboard.dll
MD5: 7d5f9b6a2c8f3bd6454207de6d45abf5 C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Runtime.Extension.EEU\2.0.2736.38316__90ba9c70f846762e\CLI.Component.Runtime.Extension.EEU.dll
MD5: edd4b1faa0583da8b8dbcd07998fcdb5 C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Runtime.Shared.Private\2.0.2700.34706__90ba9c70f846762e\CLI.Component.Runtime.Shared.Private.dll
MD5: b8200374eddfc28be0ee86162bbfaadf C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Runtime.Shared\2.0.2700.34702__90ba9c70f846762e\CLI.Component.Runtime.Shared.dll
MD5: 19a64fd93a10d8836e4462ab5910058a C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Runtime\2.0.2736.38317__90ba9c70f846762e\CLI.Component.Runtime.dll
MD5: 65a101fac15c9c756cd0e68e436a2976 C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Systemtray\2.0.2736.38600__90ba9c70f846762e\CLI.Component.Systemtray.dll
MD5: cb435531a6c75a4f2533224c1bbc795a C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Wizard.Shared.Private\2.0.2700.34752__90ba9c70f846762e\CLI.Component.Wizard.Shared.Private.dll
MD5: 6b5554251076f4a05035602d33f055e4 C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Wizard.Shared\2.0.2700.34705__90ba9c70f846762e\CLI.Component.Wizard.Shared.dll
MD5: 0277927613b61acc0d6cea7d2a590bd7 C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Wizard\2.0.2736.38354__90ba9c70f846762e\CLI.Component.Wizard.dll
MD5: b706ce681ccf7aaec2f9a63297a96de6 C:\WINDOWS\assembly\GAC_MSIL\CLI.Foundation.Private\2.0.2700.34690__90ba9c70f846762e\CLI.Foundation.Private.dll
MD5: d12bde4a42d18fa2c635a3513a0574f1 C:\WINDOWS\assembly\GAC_MSIL\CLI.Foundation.XManifest\2.0.2700.34808__90ba9c70f846762e\CLI.Foundation.XManifest.dll
MD5: 75d43b9aefd1c3e6356f34a221c751a6 C:\WINDOWS\assembly\GAC_MSIL\CLI.Foundation\2.0.2700.34674__90ba9c70f846762e\CLI.Foundation.dll
MD5: e48155b2057c14c3ad767070ab2141ad C:\WINDOWS\assembly\GAC_MSIL\DEM.Graphics\2.0.2700.34754__90ba9c70f846762e\DEM.Graphics.dll
MD5: 472208c532ce43a7a1aa7e318ff1e03b C:\WINDOWS\assembly\GAC_MSIL\DEM.OS.I0602\2.0.2700.34751__90ba9c70f846762e\DEM.OS.I0602.dll
MD5: b3a164e741165f23d9ce0f3a82d71b83 C:\WINDOWS\assembly\GAC_MSIL\DEM.OS\2.0.2700.34718__90ba9c70f846762e\DEM.OS.dll
MD5: d667052e6e2d703c112116b446e77cc9 C:\WINDOWS\assembly\GAC_MSIL\LOG.Foundation.Implementation.Private\2.0.2700.34708__90ba9c70f846762e\LOG.Foundation.Implementation.Private.dll
MD5: 23480656626a6adfe6676b8e47d3c456 C:\WINDOWS\assembly\GAC_MSIL\LOG.Foundation.Implementation\2.0.2736.38607__90ba9c70f846762e\LOG.Foundation.Implementation.dll
MD5: a487e899de84c0bf1f7583132fe513fe C:\WINDOWS\assembly\GAC_MSIL\LOG.Foundation.Private\2.0.2700.34681__90ba9c70f846762e\LOG.Foundation.Private.dll
MD5: 3eb1c985ca15f3d8fb2d913dfdc574cb C:\WINDOWS\assembly\GAC_MSIL\LOG.Foundation\2.0.2700.34671__90ba9c70f846762e\LOG.Foundation.dll
MD5: 008ec7c22eb12cb3676ba3dffad19844 C:\WINDOWS\assembly\GAC_MSIL\MOM.Foundation\2.0.2700.34703__90ba9c70f846762e\MOM.Foundation.dll
MD5: 1927b14f4da5df8b986b5e38d1e4f951 C:\WINDOWS\assembly\GAC_MSIL\MOM.Implementation\2.0.2736.38608__90ba9c70f846762e\MOM.Implementation.dll
MD5: bbfd1c236938a41e686839cdb984e160 C:\WINDOWS\assembly\GAC_MSIL\NEWAEM.Foundation\2.0.2700.34680__90ba9c70f846762e\NEWAEM.Foundation.dll
MD5: ebaadbbfb6c455e54eb6a0e47267d33c C:\WINDOWS\assembly\GAC_MSIL\System.Management\2.0.0.0__b03f5f7f11d50a3a\System.Management.dll
MD5: 516fd7927172bbbe2d335ea94d816b9e C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\mscorlib\ca87ba84221991839abbe7d4bc9c6721\mscorlib.ni.dll
MD5: 03268a21932cbfe164e750944f63c63a C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Configuration\94a40f415bfa947e251888bbe88bb973\System.Configuration.ni.dll
MD5: 8fc17e5976b61b9d242cbeea53c11874 C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Drawing\9351cf29bb1ba951e45a9b3b0edab937\System.Drawing.ni.dll
MD5: 463d14a1dfd16282844c7d40744209c9 C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Runtime.Remo#\c14e58265386feb509cc61bb5e8dd296\System.Runtime.Remoting.ni.dll
MD5: 140929970bb7c4aadf533a4a8d617b27 C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Web\29bdc8352d3c26e3c572ea60639dec3b\System.Web.ni.dll
MD5: 3acca88c9e2807f5098bd21d17e2099d C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\ad99ac6b5666edb8ee742dd64f9578af\System.Windows.Forms.ni.dll
MD5: 88c9e5d6f9b601ff8f611a228912d358 C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Xml\77e1279cbf4eecfb0284b63316fe43fe\System.Xml.ni.dll
MD5: 3943907a519731f925511e75db92e6f4 C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System\9e3803cd2a11f056291862e306a8e2b2\System.ni.dll
MD5: b453700b9eb83fef29811b28dae27d29 C:\WINDOWS\ATKKBService.exe
MD5: 754536f878d5b4255b991bc0f25e5308 C:\WINDOWS\Downloaded Program Files\gp.ocx
MD5: 0c78701c6f42345dff2b2b6c3c3d01ef C:\WINDOWS\Downloaded Program Files\isusweb.dll
MD5: bb7fcdcd4de287340b5c1bb1949ad3c6 C:\WINDOWS\Downloaded Program Files\qsax.dll
MD5: d43637f8e835ddf2fe95fbe6242494b0 C:\WINDOWS\IME\SPGRMR.DLL
MD5: f6faec07446a78a9c5af4558ff5bd118 C:\WINDOWS\ime\sptip.dll
MD5: 860fad57b4668a9f5f350a9d5444ae89 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\diasymreader.dll
MD5: 2bac92e8ac5e16ed60062e9141b8d5f6 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorjit.dll
MD5: bf88feadc7786ea328bdcc5cb116de89 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorwks.dll
MD5: 35a936c7c029a5b705d3ffd40518d660 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\WMINet_Utils.dll
MD5: ab87eeffd18f2baafc274e7075ea6c67 c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
MD5: f5df6846f30e9f54ea60ccaeb3fb2055 C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscoreei.dll
MD5: 14d7a3545cc1de3e3ec6dc900b96add2 C:\WINDOWS\RTHDCPL.exe
MD5: 91d24356b3b549075d9d96f73a463eda C:\WINDOWS\SkyTel.EXE
MD5: f475daa3cf6d19da49be7bac0a966db3 C:\WINDOWS\system32\Adobe\Director\np32dsw.dll
MD5: fd62e257bf1a940415197fb964315ba6 C:\WINDOWS\system32\Ati2edxx.dll
MD5: 50d2bedfef6800a3b64f032a67053738 C:\WINDOWS\system32\Ati2evxx.dll
MD5: 281d26df656e53dab568214ee282ec46 C:\WINDOWS\system32\ati2evxx.exe
MD5: 6110008ab366b98c4c364dd155d8ff55 C:\WINDOWS\system32\atiadlxx.dll
MD5: ce27070aebdd320a6d30bc077c9a34ca C:\WINDOWS\system32\ATIDEMGX.dll
MD5: f90349d713ff9da761465ea5fac105e0 C:\WINDOWS\system32\atipdlxx.dll
MD5: 8fb59cdd3a7f314d320b4ec2d7fbdf8e C:\WINDOWS\system32\ATL71.DLL
MD5: 93afb83fbc1f9443cac722fca63d73bf C:\WINDOWS\system32\comctl32.dll
MD5: ed0c0df222209e43ad9afbf3fe87dde0 C:\WINDOWS\system32\comsvcs.dll
MD5: 8fcf03e4d7be9b5587ccf11719959006 C:\WINDOWS\system32\corpol.dll
MD5: a90e118f12d355f9946dfb30a8f94609 C:\WINDOWS\system32\CRYPT32.dll
MD5: c14350fc0d47d806699c4f907fc6785b C:\WINDOWS\system32\cryptnet.dll
MD5: 515a7fae2070c2b0242b2353443e2f11 C:\WINDOWS\system32\cscdll.dll
MD5: dd40363abad230a84c5e2178b11efa88 C:\WINDOWS\system32\CSRSRV.dll
MD5: 0607cbc6fa20114cb491efe4b2f9efad C:\WINDOWS\system32\d3d9.dll
MD5: 56adb11f7d4d0816c0be1e701c1b5e52 C:\WINDOWS\system32\D3DIM700.DLL
MD5: e2092f0a1d7abc243f9c2362483d150d C:\WINDOWS\System32\dimsntfy.dll
MD5: 389496118b3b03c2328024af320132ac C:\WINDOWS\system32\DNSAPI.dll
MD5: 5f7e24fa9eab896051ffb87f840730d2 c:\windows\system32\dnsrslvr.dll
MD5: c373ef6e2a25ba99598ca64abc797469 C:\WINDOWS\system32\dnssd.dll
MD5: 1e44bc1e83d8fd2305f8d452db109cf9 C:\WINDOWS\System32\drivers\afd.sys
MD5: d320732bcf5ff856120bd06855c66867 C:\WINDOWS\system32\drivers\asusgsb.sys
MD5: c2b6f2161abd498d2b453050ffc81812 C:\WINDOWS\system32\DRIVERS\ati2mtag.sys
MD5: 56bf27d7a539f9e6bbc1de201aba0edf C:\WINDOWS\system32\drivers\AtiHdAud.sys
MD5: dc6957811ff95f2dd3004361b20d8d3f C:\WINDOWS\system32\drivers\AtiHdmi.sys
MD5: b3b881eb81013aac11594a5400ada47a C:\WINDOWS\system32\drivers\atkkbnt.sys
MD5: 86a22dff16e8ca67601044efe6825537 C:\WINDOWS\system32\Drivers\COH_Mon.sys
MD5: 0daf3544804650526751c478aeccce63 C:\WINDOWS\system32\drivers\EIO.sys
MD5: cba10ed5a5981fe6122b6e7460df939b C:\WINDOWS\system32\DRIVERS\l251x86.sys
MD5: 7d304a5eb4344ebeeab53a2fe3ffb9f0 C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
MD5: 0109c4f3850dfbab279542515386ae22 C:\WINDOWS\system32\DRIVERS\ndistapi.sys
MD5: 57f390bf7af0f68bb804387cbc3a4f0d C:\WINDOWS\system32\DRIVERS\RT61.sys
MD5: cdfd5a68a2e1caa89c5c0e0b3cb98731 C:\WINDOWS\system32\drivers\RtkHDAud.sys
MD5: e217480cc878061d7603a8cdca06c188 C:\WINDOWS\System32\Drivers\SRTSP.SYS
MD5: cae71704badde6b0d5818acce20673ca C:\WINDOWS\System32\Drivers\SRTSPL.SYS
MD5: be6f1ddde2ddab75225d83e6b03a2348 C:\WINDOWS\System32\Drivers\SRTSPX.SYS
MD5: 47ddfc2f003f7f9f0592c6874962a2e7 C:\WINDOWS\system32\DRIVERS\srv.sys
MD5: 92b69020fc480219683d429dca068d71 C:\WINDOWS\system32\DRIVERS\sscdbus.sys
MD5: 77a2869d40cc84af711c321f9b0c7a78 C:\WINDOWS\system32\DRIVERS\sscdmdfl.sys
MD5: b4255635195a8413fcde7af5b7c4e382 C:\WINDOWS\system32\DRIVERS\sscdmdm.sys
MD5: e03ee3ef1037099554d17bed99545a5e C:\WINDOWS\system32\Drivers\SYMEVENT.SYS
MD5: be3c117150c055e50a4caf23e548c856 C:\WINDOWS\System32\Drivers\SYMREDRV.SYS
MD5: 7b0af4e22b32f8c5bfba5a5d53522160 C:\WINDOWS\System32\Drivers\SYMTDI.SYS
MD5: 835ac2478eda93c43a3066a246251eda C:\WINDOWS\SYSTEM32\Drivers\SysPlant.sys
MD5: 0dc098cc18a974e7c1e96e6846bd06e4 C:\WINDOWS\system32\DRIVERS\teefer2.sys
MD5: 83cafcb53201bbac04d822f32438e244 C:\WINDOWS\System32\Drivers\usbaapl.sys
MD5: 8643da4a6c83da6c10fcab1e5ab6632d C:\WINDOWS\System32\Drivers\Video3D32.sys
MD5: 94e4312d546048bf31604a8b2ad13fc0 C:\WINDOWS\system32\drivers\windrvr6.sys
MD5: 4017e55ea0c71aff4f0f90fa97eb199f C:\WINDOWS\system32\drivers\wpsdrvnt.sys
MD5: ff983a25ae6f7d3f87f26bf51f02a201 C:\WINDOWS\system32\drivers\WpsHelper.sys
MD5: a4ec6b9766e2a7faa77283697bc5c307 C:\WINDOWS\system32\E_FLBCAP.DLL
MD5: f5b754cdea20bbb3a31e16a776ede6d6 c:\windows\system32\ESENT.dll
MD5: 877c90686858d899b042bba45e9b7f2c C:\WINDOWS\system32\iac25_32.ax
MD5: 2c849ef63c0086287e427bf65fc64d09 C:\WINDOWS\system32\IEFRAME.dll
MD5: b43140c2edc49c4b7c140f1f4e3f6877 C:\WINDOWS\system32\iepeers.dll
MD5: e236ecb439a9e824fab18c49d6526136 C:\WINDOWS\system32\iertutil.dll
MD5: 577e496f0d41411bf149394d80959d53 C:\WINDOWS\system32\imaadp32.acm
MD5: 63e8d944afbeebb243f25c4ed07e74c5 C:\WINDOWS\system32\inetmib1.dll
MD5: 1e6c47b63cd2f812de0f4a9f610fabb4 C:\WINDOWS\system32\jscript.dll
MD5: a525c96c51d55111fdf3bea9ffffc7ae C:\WINDOWS\system32\kerberos.dll
MD5: f1941197a42f9f373cc70042fc82c950 C:\WINDOWS\system32\ksproxy.ax
MD5: 20fa028cb6506591a99c51432a3c0174 C:\WINDOWS\system32\LangWrbk.dll
MD5: 9fad7dff67555ff1e06bc4a3893024a7 C:\WINDOWS\system32\logon.scr
MD5: bd31dc6dbe9333c4fbd4bdf0899f2160 C:\WINDOWS\system32\LSASRV.dll
MD5: e9f427ef46965d33e878a507a2f5ccb6 C:\WINDOWS\system32\Macromed\Flash\Flash11e.ocx
MD5: ff6b64ef739fe6fb3ff21457e2012c89 C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll
MD5: 76848cb1aa5818db47d5f5986e0a7485 C:\WINDOWS\system32\MFC42.DLL
MD5: c5648be5409e0aabda8c9047bac8f603 C:\WINDOWS\system32\msadp32.acm
MD5: 55aeea66c5e84e3fd6cd3e933397d478 C:\WINDOWS\system32\msaud32.acm
MD5: 2aee8855ac827608803bb0dee9995c32 C:\WINDOWS\system32\msfeeds.dll
MD5: 33271a2667334b9a8842c65a079ef375 C:\WINDOWS\system32\msg711.acm
MD5: b87f759738c52e8d6fbcdaaa84c6486f C:\WINDOWS\system32\msg723.acm
MD5: 3a9846e207dafc13009c048a2f6f8c2a C:\WINDOWS\system32\msgsm32.acm
MD5: a9259cd226283cd4f798c00909754a94 C:\WINDOWS\system32\mshtml.dll
MD5: d3f72d50de53f9f1f55240115af4d42e C:\WINDOWS\system32\msi.dll
MD5: 98e53ca00d3c0a2e9faa4e59c101aeba C:\WINDOWS\system32\mslbui.dll
MD5: 943337d786a56729263071623bbb9de5 C:\WINDOWS\system32\mswsock.dll
MD5: 062f837c1fbdb6a0a75f82efc2ee8e74 C:\WINDOWS\System32\netshell.dll
MD5: f8f0d25ca553e39dde485d8fc7fcce89 C:\WINDOWS\system32\ntdll.dll
MD5: 40b0f98bad16ad5def894e88c3ef8014 C:\WINDOWS\system32\ODBC32.dll
MD5: 6bad1bed9872e62049e487fb91ae2f3a C:\WINDOWS\system32\ole32.dll
MD5: 20200ee3cfe10e9f0c028d8653be11c6 C:\WINDOWS\system32\oleacc.dll
MD5: 1b2be5777f69a71778f52ffee1c798d6 C:\WINDOWS\system32\OLEAUT32.dll
MD5: 54b0324241bbf3642159918f9a4f16fb C:\WINDOWS\system32\qcap.dll
MD5: 34ffb6aba2da398bb33422e1e9275ba9 C:\WINDOWS\system32\quartz.dll
MD5: d17453539d0bfd2df8539e8b0d393684 C:\WINDOWS\system32\RPCNS4.dll
MD5: d4502f124289a31976130cccb014c9aa C:\WINDOWS\system32\RPCRT4.dll
MD5: 72451fd61ddbb0a1fb071b7c3cde5594 C:\WINDOWS\system32\rsvpsp.dll
MD5: a645a78fcdabad67067324d7e6cd9f79 C:\WINDOWS\system32\schannel.dll
MD5: 056ef846cbfd487a5f56f27db400bdee C:\WINDOWS\system32\SHDOCVW.dll
MD5: e86423aa9aa8c382af02b94a058dc2aa C:\WINDOWS\system32\SHELL32.dll
MD5: 99bc0b50f511924348be19c7c7313bbf C:\WINDOWS\system32\SHSVCS.dll
MD5: 0dbb250a89e2e1c9281009ac269f0805 C:\WINDOWS\system32\sl_anet.acm
MD5: 60784f891563fb1b767f70117fc2428f C:\WINDOWS\system32\spoolsv.exe
MD5: 3a7c3cbe5d96b8ae96ce81f0b22fb527 c:\windows\system32\srvsvc.dll
MD5: 2d0c6968f452aa86846cfca4f7ccbe04 C:\WINDOWS\system32\SymNeti.dll
MD5: 974b764015b037a5c54b6e1afaf44708 C:\WINDOWS\system32\SymRedir.dll
MD5: 735f504deefe4e2ad06360fce2842dd4 C:\WINDOWS\system32\tsd32.dll
MD5: e8cd0d7e169ecce2d4fd829daab786ed C:\WINDOWS\system32\tssoft32.acm
MD5: 407bc2813b30bc2f8a341d5091828caa C:\WINDOWS\system32\urlmon.dll
MD5: a93aee1928a9d7ce3e16d24ec7380f89 c:\windows\system32\userinit.exe
MD5: 9e03dc5ab51cfd0190541ce2038d819d C:\WINDOWS\system32\USP10.dll
MD5: 31cf51dcda1424b813cc97b20f71b431 C:\WINDOWS\system32\vbscript.dll
MD5: 0dfa4d5e8205614eda53394e637812e4 C:\WINDOWS\system32\VDMDBG.DLL
MD5: 94ba90c6af5c50ff5f7a6392514c4642 C:\WINDOWS\system32\vidcap.ax
MD5: 6404807abc7af52fa3792697ae638b50 C:\WINDOWS\system32\wbem\wbemcons.dll
MD5: 684559a03cbc1d05ba120a18b0d8ba5d c:\windows\system32\WINHTTP.dll
MD5: f362d50fbdc6e34918df41bde1770e5c C:\WINDOWS\system32\WININET.dll
MD5: 4a953f13942867ba8fb41f141ec1b80c C:\WINDOWS\system32\WINMM.dll
MD5: d72b9ec3337b247a666f098f3d6b43de C:\WINDOWS\System32\winrnr.dll
MD5: 8c7dca4b158bf16894120786a7a5f366 C:\WINDOWS\system32\winsrv.dll
MD5: 2cc34e8bb667eef78899546e12649196 C:\WINDOWS\system32\WlNotify.dll
MD5: 5caf91e865fe0c85048a233e594544d2 c:\windows\system32\WUDFPlatform.dll
MD5: 16403217ab6fc5c30c14c6b12098ad4b C:\WINDOWS\system32\xpsp2res.dll
MD5: d5e459bed3db9cf7fc6cc1455f177d2d C:\WINDOWS\WinSxS\x86_Microsoft.VC80.ATL_1fc8b3b9a1e18e3b_8.0.50727.6195_x-ww_a4c618fa\ATL80.DLL
MD5: 0b3595a4ff0b36d68e5fc67fd7d70fdc C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.6195_x-ww_44262b86\MSVCP80.dll
MD5: c9564cf4976e7e96b4052737aa2492b4 C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.6195_x-ww_44262b86\MSVCR80.dll
MD5: 1f5afd468eb5e09e9ed75a087529eab5 C:\WINDOWS\WinSxS\x86_Microsoft.VC80.MFC_1fc8b3b9a1e18e3b_8.0.50727.6195_x-ww_150c9e8b\MFC80.DLL
MD5: e2c48cd0132d4d1dc7d0df9a6bef686a C:\WINDOWS\WinSxS\x86_Microsoft.VC80.MFC_1fc8b3b9a1e18e3b_8.0.50727.6195_x-ww_150c9e8b\MFC80U.DLL
MD5: 28a09777d2d952122567a8a82f1a2c7b C:\WINDOWS\WinSxS\x86_Microsoft.VC80.MFCLOC_1fc8b3b9a1e18e3b_8.0.50727.6195_x-ww_6a5bb789\MFC80ENU.DLL
MD5: 736b12b725aeb2b07f0241a9f680cb10 C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.6028_x-ww_61e65202\comctl32.dll
MD5: 33d9b7bb7ba323bafe489df033dac824 C:\WINDOWS\WinSxS\x86_Microsoft.Windows.GdiPlus_6595b64144ccf1df_1.0.6002.22509_x-ww_c7dad023\gdiplus.dll


No file uploaded.

Scan finished - communication took 8 sec
Total traffic - 0.01 MB sent, 1.49 KB recvd
Scanned 805 files and modules - 40 seconds

==============================================================================

What other problems are there?

that's pretty much it.

How's the computer running overall?

same as before

Please download DrWeb-CureIt and save it to your Desktop. Do NOT perform a scan yet

• Double-click on drweb-cureit.exe to start the program.
  An Express Scan of your PC notice will appear.
  
• Under Start the Express Scan Now, Click OK to start the scan.
  This is a short scan that will scan the files currently running in memory.
  If something is found, click the Yes button when it asks you if you want to cure it.
  
• Once the short scan has finished, Click Options > Change settings
  
• Choose the Scan tab and UNcheck Heuristic analysis
  
• Back at the main window, click Custom Scan, then Select drives (a red dot will show which drives have been chosen).
  
• Then click the Start/Stop Scanning button (green arrow on the right, and the scan will start.
  
• When finished, a message will be displayed at the bottom advising if any viruses were found.
  
• Click Yes to all if it asks if you want to cure/move the file.
  
• When the scan has finished, look if you can see the icon next to the files found.
  If so, click it, then click the next icon right below and select Move incurable.
  (This will move it to the C:\Documents and Settings\userprofile\DoctorWeb\Quarantine folder if it can't be cured)
  
• Next, in the Dr.Web CureIt menu on top, click file and choose save report list.
  
• Save the DrWeb.csv report to your Desktop.
  
• Exit Dr.Web Cureit when you have finished.
  
• Important! Reboot your computer because it could be possible that files in use will be moved/deleted during reboot.
  
• After reboot, post the contents of the log from Dr.Web in your next reply. (You can use Notepad to open the DrWeb.cvs report)