Deckard's System Scanner v20071014.68
Run by Administrator on 2008-02-08 22:38:19
Computer is in Normal Mode.
--------------------------------------------------------------------------------

Backed up registry hives.
Performed disk cleanup.

[color=red]System Drive F: has 4.2 GiB (less than 15%) free.[/color]


-- HijackThis (run as Administrator.exe) ---------------------------------------

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 23:22:23, on 08.02.2008
Platform: Windows 2003 SP2 (WinNT 5.02.3790)
MSIE: Internet Explorer v7.00 (7.00.6000.16574)
Boot mode: Normal

Running processes:
F:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
F:\Program Files\Alwil Software\Avast4\ashServ.exe
F:\WINDOWS\SOUNDMAN.EXE
F:\Program Files (x86)\DAEMON Tools\daemon.exe
F:\WINDOWS\SysWOW64\ctfmon.exe
F:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
F:\Program Files (x86)\ABBYY Lingvo 10 First Step\Lvagent.exe
F:\Program Files (x86)\PowerCheck\PowerCheck.exe
F:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
F:\Program Files (x86)\GoTView\remote.exe
F:\Program Files (x86)\EPoX\EPTP\EPTP.EXE
F:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe
F:\Program Files (x86)\Java\jre1.6.0_03\bin\jusched.exe
F:\Program Files (x86)\Common Files\Microsoft Shared\VS7Debug\mdm.exe
F:\WINDOWS\SysWOW64\HPZipm12.exe
F:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
F:\Program Files (x86)\HP\Digital Imaging\bin\hpqSTE08.exe
F:\Program Files\Alwil Software\Avast4\ashWebSv.exe
F:\Documents and Settings\Administrator\Desktop\Antivir\dss.exe
F:\DOCUME~1\ADMINI~1\Desktop\Antivir\HIJACK~1\Administrator.exe

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - F:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\yt.dll
F2 - REG:system.ini: UserInit=userinit
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - F:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - F:\Program Files (x86)\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: flashget urlcatch - {2F364306-AA45-47B5-9F9D-39A8B94E7EF7} - F:\Program Files (x86)\FlashGet\jccatch.dll
O2 - BHO: Yahoo! IE Services Button - {5BAB4B5B-68BC-4B02-94D6-2FC0DE4A7897} - F:\Program Files (x86)\Yahoo!\Common\yiesrvc.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - F:\Program Files (x86)\Java\jre1.6.0_03\bin\ssv.dll
O2 - BHO: FlashGet GetFlash Class - {F156768E-81EF-470C-9057-481BA8380DBA} - F:\Program Files (x86)\FlashGet\getflash.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - F:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\yt.dll
O3 - Toolbar: Rambler- - {468CD8A9-7C25-45FA-969E-3D925C689DC4} - F:\Program Files (x86)\Rambler Assistant\ramblertoolbarU2970.dll
O4 - HKLM\..\Run: [IMJPMIG8.1] "F:\WINDOWS\IME (x86)\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32
O4 - HKLM\..\Run: [PHIME2002ASync] F:\WINDOWS\SysWow64\IME\TINTLGNT\TINTSETP.EXE /SYNC
O4 - HKLM\..\Run: [PHIME2002A] F:\WINDOWS\SysWow64\IME\TINTLGNT\TINTSETP.EXE /IMEName
O4 - HKLM\..\Run: [NeroFilterCheck] F:\WINDOWS\SysWow64\NeroCheck.exe
O4 - HKLM\..\Run: [Lingvo Launcher] "F:\Program Files (x86)\ABBYY Lingvo 10 First Step\Lvagent.exe" /STARTUP
O4 - HKLM\..\Run: [avast!] F:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [hwmdr] "F:\Program Files (x86)\EPoX\EPTP\EPTP.EXE" "5000"
O4 - HKLM\..\Run: [HP Software Update] F:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "F:\Program Files (x86)\Java\jre1.6.0_03\bin\jusched.exe"
O4 - HKLM\..\Run: [amd_dc_opt] F:\Program Files (x86)\AMD\Dual-Core Optimizer\amd_dc_opt.exe
O4 - HKLM\..\Run: [AVP] "F:\Documents and Settings\All Users\Desktop\Kaspersky Lab Tool\setup_7.0.0.180_04.02.2008_22-02.exe"
O4 - HKCU\..\Run: [ctfmon.exe] F:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [DAEMON Tools] "F:\Program Files (x86)\DAEMON Tools\daemon.exe" -lang 1033
O4 - HKCU\..\RunOnce: [FFTI] F:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\n8c90c9t.default\extensions\{B13721C7-F507-4982-B2E5-502A71474FED}\ffti.exe /VERYSILENT /SUPPRESSMSGBOXES /NORESTART /DestPath="F:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles/n8c90c9t.default\extensions\{B13721C7-F507-4982-B2E5-502A71474FED}"
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] F:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [tscuninstall] %systemroot%\system32\tscupgrd.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] F:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [tscuninstall] %systemroot%\system32\tscupgrd.exe (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] F:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\RunOnce: [tscuninstall] %systemroot%\system32\tscupgrd.exe (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] F:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - HKUS\.DEFAULT\..\RunOnce: [tscuninstall] %systemroot%\system32\tscupgrd.exe (User 'Default user')
O4 - Startup: Remote.lnk = F:\Program Files (x86)\GoTView\remote.exe
O4 - Global Startup: Adobe Reader Speed Launch.lnk = F:\Program Files (x86)\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: HP Digital Imaging Monitor.lnk = F:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
O4 - Global Startup: Microsoft Office.lnk = F:\Program Files (x86)\Microsoft Office\Office10\OSA.EXE
O4 - Global Startup: PowerCheck.lnk = F:\Program Files (x86)\PowerCheck\PowerCheck.exe
O8 - Extra context menu item: &Yahoo! Search - file:///F:\Program Files (x86)\Yahoo!\Common/ycsrch.htm
O8 - Extra context menu item: &    FlashGet - F:\Program Files (x86)\FlashGet\jc_all.htm
O8 - Extra context menu item: &   FlashGet - F:\Program Files (x86)\FlashGet\jc_link.htm
O8 - Extra context menu item: &  Microsoft Excel - res://F:\PROGRA~2\MICROS~2\Office10\EXCEL.EXE/3000
O8 - Extra context menu item: Yahoo! &Dictionary - file:///F:\Program Files (x86)\Yahoo!\Common/ycdict.htm
O8 - Extra context menu item: Yahoo! &Maps - file:///F:\Program Files (x86)\Yahoo!\Common/ycmap.htm
O8 - Extra context menu item: Yahoo! &SMS - file:///F:\Program Files (x86)\Yahoo!\Common/ycsms.htm
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - F:\Program Files (x86)\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - F:\Program Files (x86)\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra button: Yahoo! Services - {5BAB4B5B-68BC-4B02-94D6-2FC0DE4A7897} - F:\Program Files (x86)\Yahoo!\Common\yiesrvc.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - F:\PROGRA~2\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - F:\Program Files (x86)\FlashGet\FlashGet.exe
O9 - Extra 'Tools' menuitem: FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - F:\Program Files (x86)\FlashGet\FlashGet.exe
O9 - Extra button: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - F:\Program Files (x86)\ICQ6\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - F:\Program Files (x86)\ICQ6\ICQ.exe
O9 - Extra button: Yahoo! Messenger - {E5D12C4E-7B4F-11D3-B5C9-0050045C3C96} - F:\Program Files (x86)\Yahoo!\Messenger\YahooMessenger.exe
O9 - Extra 'Tools' menuitem: Yahoo! Messenger - {E5D12C4E-7B4F-11D3-B5C9-0050045C3C96} - F:\Program Files (x86)\Yahoo!\Messenger\YahooMessenger.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - F:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - F:\Program Files\Messenger\msmsgs.exe
O15 - ESC Trusted Zone: http://runonce.msn.com
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - F:\Program Files (x86)\Yahoo!\Common\yinsthelper.dll
O17 - HKLM\System\CCS\Services\Tcpip\..\{157A5471-7E57-4C4A-B5B8-2EE68863B893}: NameServer = 172.20.20.20,172.30.30.30
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - F:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - F:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: Ati HotKey Poller - Unknown owner - F:\WINDOWS\system32\Ati2evxx.exe (file missing)
O23 - Service: ATI Smart - Unknown owner - F:\WINDOWS\system32\ati2saag.exe
O23 - Service: avast! Antivirus - ALWIL Software - F:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - F:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - F:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: Logical Disk Manager Administrative Service (dmadmin) - Unknown owner - F:\WINDOWS\System32\dmadmin.exe (file missing)
O23 - Service: Event Log (Eventlog) - Unknown owner - F:\WINDOWS\system32\services.exe (file missing)
O23 - Service: HTTP SSL (HTTPFilter) - Unknown owner - F:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: IMAPI CD-Burning COM Service (ImapiService) - Unknown owner - F:\WINDOWS\system32\imapi.exe (file missing)
O23 - Service: Distributed Transaction Coordinator (MSDTC) - Unknown owner - F:\WINDOWS\system32\msdtc.exe (file missing)
O23 - Service: Net Logon (Netlogon) - Unknown owner - F:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: NT LM Security Support Provider (NtLmSsp) - Unknown owner - F:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Plug and Play (PlugPlay) - Unknown owner - F:\WINDOWS\system32\services.exe (file missing)
O23 - Service: Pml Driver HPZ12 - HP - F:\WINDOWS\system32\HPZipm12.exe
O23 - Service: IPSEC Services (PolicyAgent) - Unknown owner - F:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Protected Storage (ProtectedStorage) - Unknown owner - F:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Remote Desktop Help Session Manager (RDSessMgr) - Unknown owner - F:\WINDOWS\system32\sessmgr.exe (file missing)
O23 - Service: Security Accounts Manager (SamSs) - Unknown owner - F:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: setup_7.0.0.180_04.02.2008_22-02 - Kaspersky Lab - F:\Documents and Settings\All Users\Desktop\Kaspersky Lab Tool\setup_7.0.0.180_04.02.2008_22-02.exe
O23 - Service: Virtual Disk Service (vds) - Unknown owner - F:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: Volume Shadow Copy (VSS) - Unknown owner - F:\WINDOWS\System32\vssvc.exe (file missing)
O23 - Service: WMI Performance Adapter (WmiApSrv) - Unknown owner - F:\WINDOWS\system32\wbem\wmiapsrv.exe (file missing)

--
End of file - 11031 bytes

-- File Associations -----------------------------------------------------------

[COLOR=red].cpl - cplfile - shell\runas\command - rundll32.exe shell32.dll,Control_RunDLLAsUser "%1",%*[/COLOR]


-- Drivers: 0-Boot, 1-System, 2-Auto, 3-Demand, 4-Disabled ---------------------

R0 ACPI (Microsoft ACPI Driver) - f:\windows\system32\drivers\acpi.sys (file missing)
R0 atapi (Standard IDE/ESDI Hard Disk Controller) - f:\windows\system32\drivers\atapi.sys (file missing)
R0 crcdisk (CRC Disk Filter Driver) - f:\windows\system32\drivers\crcdisk.sys (file missing)
R0 Disk (Disk Driver) - f:\windows\system32\drivers\disk.sys (file missing)
R0 dmio (Logical Disk Manager Driver) - f:\windows\system32\drivers\dmio.sys (file missing)
R0 dmload - f:\windows\system32\drivers\dmload.sys (file missing)
R0 FltMgr - f:\windows\system32\drivers\fltmgr.sys (file missing)
R0 Ftdisk (Volume Manager Driver) - f:\windows\system32\drivers\ftdisk.sys (file missing)
R0 isapnp (PnP ISA/EISA Bus Driver) - f:\windows\system32\drivers\isapnp.sys (file missing)
R0 KSecDD - f:\windows\system32\drivers\ksecdd.sys (file missing)
R0 MountMgr (Mount Point Manager) - f:\windows\system32\drivers\mountmgr.sys (file missing)
R0 Mup - f:\windows\system32\drivers\mup.sys (file missing)
R0 NDIS (NDIS System Driver) - f:\windows\system32\drivers\ndis.sys (file missing)
R0 ohci1394 (VIA OHCI Compliant IEEE 1394 Host Controller) - f:\windows\system32\drivers\ohci1394.sys (file missing)
R0 PartMgr (Partition Manager) - f:\windows\system32\drivers\partmgr.sys (file missing)
R0 PCI (PCI Bus Driver) - f:\windows\system32\drivers\pci.sys (file missing)
R0 PCIIde - f:\windows\system32\drivers\pciide.sys (file missing)
R0 PxHlpa64 - f:\windows\system32\drivers\pxhlpa64.sys (file missing)
R0 sfdrv01 (StarForce Protection Environment Driver (version 1.x)) - f:\windows\system32\drivers\sfdrv01.sys (file missing)
R0 sfhlp02 (StarForce Protection Helper Driver (version 2.x)) - f:\windows\system32\drivers\sfhlp02.sys (file missing)
R0 sptd - f:\windows\system32\drivers\sptd.sys (file missing)
R0 sr (System Restore Filter Driver) - f:\windows\system32\drivers\sr.sys (file missing)
R0 VolSnap (Storage volumes) - f:\windows\system32\drivers\volsnap.sys (file missing)
R1 AFD - f:\windows\system32\drivers\afd.sys (file missing)
R1 AmdK8 (AMD Processor Driver) - f:\windows\system32\drivers\amdk8.sys (file missing)
R1 aswTdi (avast! Network Shield Support) - f:\windows\system32\drivers\aswtdi.sys (file missing)
R1 Beep - f:\windows\system32\drivers\beep.sys (file missing)
R1 Cdrom (CD-ROM Driver) - f:\windows\system32\drivers\cdrom.sys (file missing)
R1 Fips - f:\windows\system32\drivers\fips.sys (file missing)
R1 i8042prt (i8042 Keyboard and PS/2 Mouse Port Driver) - f:\windows\system32\drivers\i8042prt.sys (file missing)
R1 imapi (CD-Burning Filter Driver) - f:\windows\system32\drivers\imapi.sys (file missing)
R1 IPSec (IPSEC driver) - f:\windows\system32\drivers\ipsec.sys (file missing)
R1 Kbdclass (Keyboard Class Driver) - f:\windows\system32\drivers\kbdclass.sys (file missing)
R1 kbdhid (Keyboard HID Driver) - f:\windows\system32\drivers\kbdhid.sys (file missing)
R1 mnmdd - f:\windows\system32\drivers\mnmdd.sys (file missing)
R1 Mouclass (Mouse Class Driver) - f:\windows\system32\drivers\mouclass.sys (file missing)
R1 MRxSmb - f:\windows\system32\drivers\mrxsmb.sys (file missing)
R1 Msfs - f:\windows\system32\drivers\msfs.sys (file missing)
R1 NetBIOS (NetBIOS Interface) - f:\windows\system32\drivers\netbios.sys (file missing)
R1 NetBT (NetBios over Tcpip) - f:\windows\system32\drivers\netbt.sys (file missing)
R1 Npfs - f:\windows\system32\drivers\npfs.sys (file missing)
R1 Null - f:\windows\system32\drivers\null.sys (file missing)
R1 RasAcd (Remote Access Auto Connection Driver) - f:\windows\system32\drivers\rasacd.sys (file missing)
R1 Rdbss - f:\windows\system32\drivers\rdbss.sys (file missing)
R1 RDPCDD - f:\windows\system32\drivers\rdpcdd.sys (file missing)
R1 redbook (Digital CD Audio Playback Filter Driver) - f:\windows\system32\drivers\redbook.sys (file missing)
R1 Serial (Serial port driver) - f:\windows\system32\drivers\serial.sys (file missing)
R1 Tcpip (TCP/IP Protocol Driver) - f:\windows\system32\drivers\tcpip.sys (file missing)
R1 TermDD (Terminal Device Driver) - f:\windows\system32\drivers\termdd.sys (file missing)
R1 VgaSave (VGA Display Controller.) - f:\windows\system32\drivers\vga.sys (file missing)
R1 WS2IFSL (Windows Socket 2.0 Non-IFS Service Provider Support Environment) - f:\windows\system32\drivers\ws2ifsl.sys (file missing)
R2 aswMonFlt - f:\windows\system32\drivers\aswmonflt.sys (file missing)
R2 CdaC15BA - f:\windows\system32\drivers\cdac15ba.sys (file missing)
R2 CdaD10BA - f:\windows\system32\drivers\cdad10ba.sys (file missing)
R2 epcpuid - f:\windows\syswow64\drivers\epcpuid64.sys
R2 GetBINFile - f:\windows\syswow64\drivers\getbinfile64.sys
R2 hwmdr - f:\windows\syswow64\drivers\hwmdr64.sys <Not Verified; EPoX Computer CO., LTD.; HardwareMonitor>
R2 Secdrv (Security Driver) - f:\windows\system32\drivers\secdrv.sys (file missing)
R3 ALCXWDM (Service for Realtek AC97 Audio (WDM)) - f:\windows\system32\drivers\alcwdm64.sys (file missing)
R3 AmdLLD64 (AMD Low Level Device Driver) - f:\windows\system32\drivers\amdlld64.sys (file missing)
R3 amdtools (%AmdToolsDriverDesc%) - f:\windows\system32\drivers\amdtools64.sys (file missing)
R3 aswRdr - f:\windows\system32\drivers\aswrdr.sys (file missing)
R3 ati2mtag - f:\windows\system32\drivers\ati2mtag.sys (file missing)
R3 audstub (Audio Stub Driver) - f:\windows\system32\drivers\audstub.sys (file missing)
R3 CXFALCON (GOTVIEW DVD2 Deluxe PCI Video Encoder) - f:\windows\system32\drivers\cxfalcon.sys (file missing)
R3 EPScanMemory - f:\program files (x86)\epox\eptp\scanmemory64.sys
R3 Fdc (Floppy Disk Controller Driver) - f:\windows\system32\drivers\fdc.sys (file missing)
R3 Flpydisk (Floppy Disk Driver) - f:\windows\system32\drivers\flpydisk.sys (file missing)
R3 Gpc (Generic Packet Classifier) - f:\windows\system32\drivers\msgpc.sys (file missing)
R3 HidUsb (Microsoft HID Class Driver) - f:\windows\system32\drivers\hidusb.sys (file missing)
R3 HTTP - f:\windows\system32\drivers\http.sys (file missing)
R3 IpNat (IP Network Address Translator) - f:\windows\system32\drivers\ipnat.sys (file missing)
R3 ksthunk (Kernel Streaming WOW64 Thunk Service) - f:\windows\system32\drivers\ksthunk.sys (file missing)
R3 Modem - f:\windows\system32\drivers\modem.sys (file missing)
R3 MRxDAV (WebDav Client Redirector) - f:\windows\system32\drivers\mrxdav.sys (file missing)
R3 mssmbios (Microsoft System Management BIOS Driver) - f:\windows\system32\drivers\mssmbios.sys (file missing)
R3 NdisTapi (Remote Access NDIS TAPI Driver) - f:\windows\system32\drivers\ndistapi.sys (file missing)
R3 Ndisuio (NDIS Usermode I/O Protocol) - f:\windows\system32\drivers\ndisuio.sys (file missing)
R3 NdisWan (Remote Access NDIS WAN Driver) - f:\windows\system32\drivers\ndiswan.sys (file missing)
R3 NDProxy (NDIS Proxy) - f:\windows\system32\drivers\ndproxy.sys (file missing)
R3 NVENETFD (NVIDIA nForce Networking Controller Driver) - f:\windows\system32\drivers\nvenetfd.sys (file missing)
R3 nvnetbus (NVIDIA Network Bus Enumerator) - f:\windows\system32\drivers\nvnetbus.sys (file missing)
R3 Parport (Parallel port driver) - f:\windows\system32\drivers\parport.sys (file missing)
R3 PptpMiniport (WAN Miniport (PPTP)) - f:\windows\system32\drivers\raspptp.sys (file missing)
R3 PSched (QoS Packet Scheduler) - f:\windows\system32\drivers\psched.sys (file missing)
R3 Ptilink (Direct Parallel Link Driver) - f:\windows\system32\drivers\ptilink.sys (file missing)
R3 Rasl2tp (WAN Miniport (L2TP)) - f:\windows\system32\drivers\rasl2tp.sys (file missing)
R3 RasPppoe (Remote Access PPPOE Driver) - f:\windows\system32\drivers\raspppoe.sys (file missing)
R3 Raspti (Direct Parallel) - f:\windows\system32\drivers\raspti.sys (file missing)
R3 rdpdr (Terminal Server Device Redirector Driver) - f:\windows\system32\drivers\rdpdr.sys (file missing)
R3 ROOTMODEM (Microsoft Legacy Modem Driver) - f:\windows\system32\drivers\rootmdm.sys (file missing)
R3 serenum (Serenum Filter Driver) - f:\windows\system32\drivers\serenum.sys (file missing)
R3 Srv - f:\windows\system32\drivers\srv.sys (file missing)
R3 swenum (Software Bus Driver) - f:\windows\system32\drivers\swenum.sys (file missing)
R3 sysaudio (Microsoft Kernel System Audio Device) - f:\windows\system32\drivers\sysaudio.sys (file missing)
R3 Update (Microcode Update Driver) - f:\windows\system32\drivers\update.sys (file missing)
R3 usbccgp (Microsoft USB Generic Parent Driver) - f:\windows\system32\drivers\usbccgp.sys (file missing)
R3 usbehci (Microsoft USB 2.0 Enhanced Host Controller Miniport Driver) - f:\windows\system32\drivers\usbehci.sys (file missing)
R3 usbhub (USB2 Enabled Hub) - f:\windows\system32\drivers\usbhub.sys (file missing)
R3 usbohci (Microsoft USB Open Host Controller Miniport Driver) - f:\windows\system32\drivers\usbohci.sys (file missing)
R3 Wanarp (Remote Access IP ARP Driver) - f:\windows\system32\drivers\wanarp.sys (file missing)
R3 wdmaud (Microsoft WINMM WDM Audio Compatibility Driver) - f:\windows\system32\drivers\wdmaud.sys (file missing)
R4 Cdfs - f:\windows\system32\drivers\cdfs.sys (file missing)
R4 Fastfat - f:\windows\system32\drivers\fastfat.sys (file missing)
R4 Ntfs - f:\windows\system32\drivers\ntfs.sys (file missing)

S1 Sfloppy - f:\windows\system32\drivers\sfloppy.sys (file missing)
S1 uzqyodyw (AVZ-RK Kernel Driver) - f:\windows\system32\drivers\uzqyodyw.sys <Not Verified; ; AVZ Monitoring Driver>
S2 pciinfo - f:\windows\system32\drivers\pciinfo.sys
S3 aec (Microsoft Kernel Acoustic Echo Canceller) - f:\windows\system32\drivers\aec.sys (file missing)
S3 Arp1394 (1394 ARP Client Protocol) - f:\windows\system32\drivers\arp1394.sys (file missing)
S3 AsyncMac (RAS Asynchronous Media Driver) - f:\windows\system32\drivers\asyncmac.sys (file missing)
S3 Atmarpc (ATM ARP Client Protocol) - f:\windows\system32\drivers\atmarpc.sys (file missing)
S3 BthEnum (Bluetooth Request Block Driver) - f:\windows\system32\drivers\bthenum.sys (file missing)
S3 BTHMODEM (Bluetooth Modem Communications Driver) - f:\windows\system32\drivers\bthmodem.sys (file missing)
S3 BthPan (Bluetooth Device (Personal Area Network)) - f:\windows\system32\drivers\bthpan.sys (file missing)
S3 BTHPORT (Bluetooth Port Driver) - f:\windows\system32\drivers\bthport.sys (file missing)
S3 BTHUSB (Bluetooth Radio USB Driver) - f:\windows\system32\drivers\bthusb.sys (file missing)
S3 CCDECODE (Closed Caption Decoder) - f:\windows\system32\drivers\ccdecode.sys (file missing)
S3 Ip6Fw (IPv6 Windows Firewall Driver) - f:\windows\system32\drivers\ip6fw.sys (file missing)
S3 IpFilterDriver (IP Traffic Filter Driver) - f:\windows\system32\drivers\ipfltdrv.sys (file missing)
S3 IpInIp (IP in IP Tunnel Driver) - f:\windows\system32\drivers\ipinip.sys (file missing)
S3 IRENUM (IR Enumerator Service) - f:\windows\system32\drivers\irenum.sys (file missing)
S3 kmixer (Microsoft Kernel Wave Audio Mixer) - f:\windows\system32\drivers\kmixer.sys (file missing)
S3 mouhid (Mouse HID Driver) - f:\windows\system32\drivers\mouhid.sys (file missing)
S3 MSKSSRV (Microsoft Streaming Service Proxy) - f:\windows\system32\drivers\mskssrv.sys (file missing)
S3 MSPCLOCK (Microsoft Streaming Clock Proxy) - f:\windows\system32\drivers\mspclock.sys (file missing)
S3 MSPQM (Microsoft Streaming Quality Manager Proxy) - f:\windows\system32\drivers\mspqm.sys (file missing)
S3 MSTEE (Microsoft Streaming Tee/Sink-to-Sink Converter) - f:\windows\system32\drivers\mstee.sys (file missing)
S3 NABTSFEC (NABTS/FEC VBI Codec) - f:\windows\system32\drivers\nabtsfec.sys (file missing)
S3 NdisIP (Microsoft TV/Video Connection) - f:\windows\system32\drivers\ndisip.sys (file missing)
S3 NIC1394 (1394 Net Driver) - f:\windows\system32\drivers\nic1394.sys (file missing)
S3 Pfc (Padus ASPI Shell) - f:\windows\system32\drivers\pfc.sys <Not Verified; Padus, Inc.; Padus(R) ASPI Shell>
S3 RDPWD - f:\windows\system32\drivers\rdpwd.sys (file missing)
S3 RFCOMM (Bluetooth Device (RFCOMM Protocol TDI)) - f:\windows\system32\drivers\rfcomm.sys (file missing)
S3 SLIP (BDA Slip De-Framer) - f:\windows\system32\drivers\slip.sys (file missing)
S3 splitter (Microsoft Kernel Audio Splitter) - f:\windows\system32\drivers\splitter.sys (file missing)
S3 streamip (BDA IPSink) - f:\windows\system32\drivers\streamip.sys (file missing)
S3 swmidi (Microsoft Kernel GS Wavetable Synthesizer) - f:\windows\system32\drivers\swmidi.sys (file missing)
S3 TDPIPE - f:\windows\system32\drivers\tdpipe.sys (file missing)
S3 TDTCP - f:\windows\system32\drivers\tdtcp.sys (file missing)
S3 usbprint (Microsoft USB PRINTER Class) - f:\windows\system32\drivers\usbprint.sys (file missing)
S3 USBSTOR (USB Mass Storage Driver) - f:\windows\system32\drivers\usbstor.sys (file missing)
S3 WSTCODEC (World Standard Teletext Codec) - f:\windows\system32\drivers\wstcodec.sys (file missing)
S3 WudfPf (Windows Driver Foundation - User-mode Driver Framework Platform Driver) - f:\windows\system32\drivers\wudfpf.sys (file missing)
S3 WudfRd (Windows Driver Foundation - User-mode Driver Framework Reflector) - f:\windows\system32\drivers\wudfrd.sys (file missing)
S4 ACPIEC - f:\windows\system32\drivers\acpiec.sys (file missing)
S4 dmboot - f:\windows\system32\drivers\dmboot.sys (file missing)
S4 Pcmcia - f:\windows\system32\drivers\pcmcia.sys (file missing)
S4 Udfs - f:\windows\system32\drivers\udfs.sys (file missing)


-- Services: 0-Boot, 1-System, 2-Auto, 3-Demand, 4-Disabled --------------------

R2 Ati HotKey Poller - f:\windows\system32\ati2evxx.exe (file missing)
R2 Eventlog (Event Log) - f:\windows\system32\services.exe (file missing)
R2 PlugPlay (Plug and Play) - f:\windows\system32\services.exe (file missing)
R2 PolicyAgent (IPSEC Services) - f:\windows\system32\lsass.exe (file missing)
R2 ProtectedStorage (Protected Storage) - f:\windows\system32\lsass.exe (file missing)
R2 SamSs (Security Accounts Manager) - f:\windows\system32\lsass.exe (file missing)

S3 dmadmin (Logical Disk Manager Administrative Service) - f:\windows\system32\dmadmin.exe /com (file missing)
S3 HTTPFilter (HTTP SSL) - f:\windows\system32\lsass.exe (file missing)
S3 ImapiService (IMAPI CD-Burning COM Service) - f:\windows\system32\imapi.exe (file missing)
S3 MSDTC (Distributed Transaction Coordinator) - f:\windows\system32\msdtc.exe (file missing)
S3 Netlogon (Net Logon) - f:\windows\system32\lsass.exe (file missing)
S3 NtLmSsp (NT LM Security Support Provider) - f:\windows\system32\lsass.exe (file missing)
S3 RDSessMgr (Remote Desktop Help Session Manager) - f:\windows\system32\sessmgr.exe (file missing)
S3 vds (Virtual Disk Service) - f:\windows\system32\vds.exe (file missing)
S3 VSS (Volume Shadow Copy) - f:\windows\system32\vssvc.exe (file missing)
S3 WmiApSrv (WMI Performance Adapter) - f:\windows\system32\wbem\wmiapsrv.exe (file missing)
S4 TlntSvr (Telnet) - f:\windows\system32\tlntsvr.exe (file missing)


-- Device Manager: Disabled ----------------------------------------------------

Class GUID: {4D36E972-E325-11CE-BFC1-08002BE10318}
Description: 1394 Net Adapter
Device ID: V1394\NIC1394\B8B9B46100
Manufacturer: Microsoft
Name: 1394 Net Adapter
PNP Device ID: V1394\NIC1394\B8B9B46100
Service: NIC1394


-- Files created between 2008-01-08 and 2008-02-08 -----------------------------

2008-02-04 22:56:17         0 d-------- F:\Documents and Settings\Administrator\DoctorWeb
2008-02-03 00:04:01     11264 --a------ F:\WINDOWS\system32\drivers\uzqyodyw.sys <Not Verified; ; AVZ Monitoring Driver>


-- Find3M Report ---------------------------------------------------------------

2008-02-08 22:31:27         0 d-------- F:\Program Files (x86)\GoTView
2008-02-08 21:16:35         0 d-------- F:\Documents and Settings\Administrator\Application Data\GoTView
2007-12-13 16:44:40         0 d-------- F:\Program Files (x86)\clock_1280x1024
2007-12-13 16:37:34         0 d-------- F:\Program Files (x86)\wave_800x600
2007-12-09 20:41:25         0 d-------- F:\Program Files (x86)\FlashGet
2007-11-20 01:41:38      2656 --a----c- F:\WINDOWS\system32\io02.sys


-- Registry Dump ---------------------------------------------------------------



-- End of Deckard's System Scanner: finished at 2008-02-08 23:23:51 ------------

