Here is the DDS text
DDS (Version 1.1.0) - NTFSx86
Run by Deepa at 19:41:02.73 on Tue 01/06/2009
Internet Explorer: 6.0.2900.2180
Microsoft Windows XP Professional 5.1.2600.2.1252.1.1033.18.959.581 [GMT -6:00]
AV: ZoneAlarm Security Suite Antivirus *On-access scanning disabled* (Outdated)
============== Running Processes ===============
C:\WINDOWS\system32\svchost -k DcomLaunch
svchost.exe
C:\WINDOWS\System32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k WudfServiceGroup
svchost.exe
svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\eHome\ehRecvr.exe
C:\WINDOWS\eHome\ehSched.exe
C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
C:\Program Files\Common Files\Microsoft Shared\VS7Debug\mdm.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\o2flash.exe
C:\WINDOWS\system32\PSIService.exe
svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\wscntfy.exe
C:\Program Files\Corel\Corel Paint Shop Pro Photo X2\CorelIOMonitor.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\Program Files\Common Files\Corel\Corel PhotoDownloader\Corel Photo Downloader.exe
C:\Program Files\Google\Google Talk\googletalk.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\2Wire Wireless\Client Manager\CMTWO.EXE
C:\Program Files\RALINK\Common\RaUI.exe
C:\WINDOWS\system32\svchost.exe -k imgsvc
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Yahoo!\Messenger\ymsgr_tray.exe
F:\dds.com
============== Pseudo HJT Report ===============
uStart Page = hxxp://www.google.com/
uSearch Bar = hxxp://www.yahoo.com
uInternet Connection Wizard,ShellNext = hxxp://www.averatec.com/
uInternet Settings,ProxyOverride = *.local
BHO: Adobe PDF Reader Link Helper: {06849e9f-c8d7-4d59-b87d-784b7d6be0b3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelper.dll
BHO: RealPlayer Download and Record Plugin for Internet Explorer: {3049c3e9-b461-4bc5-8870-4c09146192ca} - c:\program files\real\realplayer\rpbrowserrecordplugin.dll
BHO: Spybot-S&D IE Protection: {53707962-6f74-2d53-2644-206d7942484f} - c:\progra~1\spybot~1\SDHelper.dll
BHO: Yahoo! IE Services Button: {5bab4b5b-68bc-4b02-94d6-2fc0de4a7897} - c:\program files\yahoo!\common\yiesrvc.dll
BHO: Google Toolbar Notifier BHO: {af69de43-7d58-4638-b6fa-ce66b5ad205d} - c:\program files\google\googletoolbarnotifier\5.0.926.3450\swg.dll
TB: Yahoo! Toolbar: {ef99bd32-c1fb-11d2-892f-0090271d4f88} - c:\progra~1\yahoo!\companion\installs\cpn0\yt.dll
uRun: [Power2GoExpress] "c:\program files\cyberlink\power2go\Power2GoExpress.exe" /Startup
uRun: [googletalk] c:\program files\google\google talk\googletalk.exe /autostart
uRun: [Messenger (Yahoo!)] "c:\program files\yahoo!\messenger\YahooMessenger.exe" -quiet
uRun: [Yahoo! Pager] "c:\program files\yahoo!\messenger\YahooMessenger.exe" -quiet
uRun: [AdobeUpdater] c:\program files\common files\adobe\updater5\AdobeUpdater.exe
uRun: [ctfmon.exe] c:\windows\system32\ctfmon.exe
mRun: [QuickTime Task] "c:\program files\quicktime\qttask.exe" -atboottime
mRun: [PRISMSVR.EXE] "c:\windows\system32\PRISMSVR.EXE" /APPLY
mRun: [NvCplDaemon] RUNDLL32.EXE c:\windows\system32\NvCpl.dll,NvStartup
mRun: [NeroFilterCheck] c:\windows\system32\NeroCheck.exe
mRun: [Adobe Reader Speed Launcher] "c:\program files\adobe\reader 8.0\reader\Reader_sl.exe"
mRun: [Corel File Shell Monitor] c:\program files\corel\corel paint shop pro photo x2\CorelIOMonitor.exe
mRun: [TkBellExe] "c:\program files\common files\real\update_ob\realsched.exe" -osboot
mRun: [vinclock] "c:\documents and settings\deepa\application data\google\ocboo1892823.exe" 2
mRun: [Corel Photo Downloader] "c:\program files\common files\corel\corel photodownloader\Corel Photo Downloader.exe" -startup
StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\2wirew~1.lnk - c:\program files\2wire wireless\client manager\CMTWO.EXE
StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\ralink~1.lnk - c:\program files\ralink\common\RaUI.exe
IE: {5BAB4B5B-68BC-4B02-94D6-2FC0DE4A7897} - {5BAB4B5B-68BC-4B02-94D6-2FC0DE4A7897} - c:\program files\yahoo!\common\yiesrvc.dll
IE: {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - {53707962-6F74-2D53-2644-206D7942484F} - c:\progra~1\spybot~1\SDHelper.dll
LSP: c:\windows\system32\imslsp.dll
LSP: c:\windows\system32\zonelabs\vetredir.dll
Handler: cdo - {CD00020A-8B95-11D1-82DB-00C04FB1625D} - c:\program files\common files\microsoft shared\web folders\PKMCDO.DLL
SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - c:\windows\system32\WPDShServiceObj.dll
============= SERVICES / DRIVERS ===============
R0 O2MDRDR;O2MDRDR;c:\windows\system32\drivers\o2media.sys [2006-2-27 34880]
R0 O2SDRDR;O2SDRDR;c:\windows\system32\drivers\o2sd.sys [2006-2-20 29056]
R1 NEOFLTR_600_12507;Juniper Networks TDI Filter Driver (NEOFLTR_600_12507);c:\windows\system32\drivers\NEOFLTR_600_12507.sys [2007-12-27 64160]
R1 vsdatant;vsdatant;c:\windows\system32\vsdatant.sys [2006-6-20 372816]
R4 Machnm32;Machnm32 Driver;c:\windows\system32\Machnm32.sys [2006-6-20 2304]
S3 CAISafe;CA ISafe;c:\windows\system32\zonelabs\isafe.exe [2006-6-20 188416]
S3 PhnxVcd;PhnxVcd;c:\windows\system32\drivers\phnxvcd.sys [2006-6-20 45056]
S3 VET-FILT;VET File System Filter;c:\windows\system32\drivers\vet-filt.sys [2006-6-20 21605]
S3 VET-REC;VET File System Recognizer;c:\windows\system32\drivers\vet-rec.sys [2006-6-20 15668]
S3 VETFDDNT;VET Floppy Boot Sector Monitor;c:\windows\system32\drivers\vetfddnt.sys [2006-6-20 108453]
S3 VETMONNT;VET File and Macro Monitor;c:\windows\system32\drivers\vetmonnt.sys [2006-6-20 541733]
S3 vsmon;TrueVector Internet Monitor;c:\windows\system32\zonelabs\vsmon.exe -service --> c:\windows\system32\zonelabs\vsmon.exe -service [?]
S4 Bscrr_lmn;Bscrr_lmn;c:\windows\system32\drivers\AegisP.sys [2006-6-20 20747]
S4 McrdSvc;Media Center Extender Service;c:\windows\ehome\mcrdsvc.exe [2005-8-5 99328]
=============== Created Last 30 ================
2009-01-06 18:45 --d----- c:\docume~1\deepa\applic~1\Malwarebytes
2009-01-06 18:45 15,504 a------- c:\windows\system32\drivers\mbam.sys
2009-01-06 18:45 38,496 a------- c:\windows\system32\drivers\mbamswissarmy.sys
2009-01-06 18:45 --d----- c:\docume~1\alluse~1\applic~1\Malwarebytes
2009-01-06 18:45 --d----- c:\program files\Malwarebytes' Anti-Malware
2009-01-06 15:18 --d----- C:\RealPlayer Downloads
2009-01-06 15:18 --d----- C:\FFs
2009-01-06 14:09 --d----- C:\Downloads
2009-01-05 17:25 54,156 a---h--- c:\windows\QTFont.qfn
2009-01-05 17:25 1,409 a------- c:\windows\QTFont.for
2009-01-04 13:20 4,715,008 a------- C:\Ram's Wishes 3.ppt
2009-01-03 22:49 685,112 a------- c:\windows\system32\rn.tmp
2009-01-03 22:04 192,021 a------- C:\TN15264_Ram-Kapoor.jpg
2009-01-02 10:56 4,931,584 a------- C:\Prachi's Wishes.ppt
2009-01-01 21:19 14,184 a------- C:\[bwtorrents_com] Kasam Se 11 Dec iND BwTv.ASF.torrent
2009-01-01 09:25 29,251 a------- C:\ram_kapoor_111.jpg
2009-01-01 09:24 26,942 a------- C:\ram_kapoor_11.jpg
2008-12-29 08:46 3,354,112 a------- C:\Ram's Wishes 2.ppt
2008-12-28 19:04 --d----- c:\program files\common files\xing shared
2008-12-27 08:54 15,661 a------- C:\black-rainbow-accents-screen.png
2008-12-26 11:56 --d----- C:\episodepicsfolder
2008-12-24 15:20 --d----- C:\Corel Auto-Preserve
2008-12-14 20:58 748,388 a------- C:\25rj9j7.jpg
2008-12-13 11:09 --d----- C:\christmaspattern psp
2008-12-07 19:57 11,098,032 a------- C:\ani311en.exe
==================== Find3M ====================
2009-01-06 12:50 2,828 a--sh--- c:\windows\system32\KGyGaAvL.sys
2008-12-29 15:03 7,168 a--sh--- c:\program files\Thumbs.db
2008-12-28 19:04 499,712 a------- c:\windows\system32\msvcp71.dll
2008-12-28 19:04 348,160 a------- c:\windows\system32\msvcr71.dll
2008-12-13 11:23 44,944 -------- c:\windows\system32\drivers\pxhelp20.sys
2008-11-27 18:56 3,621,472 a------- C:\Winzip.zip
2008-11-20 17:05 158,456 -------- c:\windows\system32\pxwma.dll
2008-11-16 17:52 30,616 a------- c:\docume~1\deepa\applic~1\GDIPFONTCACHEV1.DAT
2008-10-23 07:01 283,648 a------- c:\windows\system32\gdi32.dll
2008-10-16 04:37 659,456 a------- c:\windows\system32\wininet.dll
2008-07-29 18:48 88 ---shr-- c:\windows\system32\96BED014D3.sys
============= FINISH: 19:41:53.12 ===============
DDS (Version 1.1.0) - NTFSx86
Run by Deepa at 19:41:02.73 on Tue 01/06/2009
Internet Explorer: 6.0.2900.2180
Microsoft Windows XP Professional 5.1.2600.2.1252.1.1033.18.959.581 [GMT -6:00]
AV: ZoneAlarm Security Suite Antivirus *On-access scanning disabled* (Outdated)
============== Running Processes ===============
C:\WINDOWS\system32\svchost -k DcomLaunch
svchost.exe
C:\WINDOWS\System32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k WudfServiceGroup
svchost.exe
svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\eHome\ehRecvr.exe
C:\WINDOWS\eHome\ehSched.exe
C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
C:\Program Files\Common Files\Microsoft Shared\VS7Debug\mdm.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\o2flash.exe
C:\WINDOWS\system32\PSIService.exe
svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\wscntfy.exe
C:\Program Files\Corel\Corel Paint Shop Pro Photo X2\CorelIOMonitor.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\Program Files\Common Files\Corel\Corel PhotoDownloader\Corel Photo Downloader.exe
C:\Program Files\Google\Google Talk\googletalk.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\2Wire Wireless\Client Manager\CMTWO.EXE
C:\Program Files\RALINK\Common\RaUI.exe
C:\WINDOWS\system32\svchost.exe -k imgsvc
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Yahoo!\Messenger\ymsgr_tray.exe
F:\dds.com
============== Pseudo HJT Report ===============
uStart Page = hxxp://www.google.com/
uSearch Bar = hxxp://www.yahoo.com
uInternet Connection Wizard,ShellNext = hxxp://www.averatec.com/
uInternet Settings,ProxyOverride = *.local
BHO: Adobe PDF Reader Link Helper: {06849e9f-c8d7-4d59-b87d-784b7d6be0b3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelper.dll
BHO: RealPlayer Download and Record Plugin for Internet Explorer: {3049c3e9-b461-4bc5-8870-4c09146192ca} - c:\program files\real\realplayer\rpbrowserrecordplugin.dll
BHO: Spybot-S&D IE Protection: {53707962-6f74-2d53-2644-206d7942484f} - c:\progra~1\spybot~1\SDHelper.dll
BHO: Yahoo! IE Services Button: {5bab4b5b-68bc-4b02-94d6-2fc0de4a7897} - c:\program files\yahoo!\common\yiesrvc.dll
BHO: Google Toolbar Notifier BHO: {af69de43-7d58-4638-b6fa-ce66b5ad205d} - c:\program files\google\googletoolbarnotifier\5.0.926.3450\swg.dll
TB: Yahoo! Toolbar: {ef99bd32-c1fb-11d2-892f-0090271d4f88} - c:\progra~1\yahoo!\companion\installs\cpn0\yt.dll
uRun: [Power2GoExpress] "c:\program files\cyberlink\power2go\Power2GoExpress.exe" /Startup
uRun: [googletalk] c:\program files\google\google talk\googletalk.exe /autostart
uRun: [Messenger (Yahoo!)] "c:\program files\yahoo!\messenger\YahooMessenger.exe" -quiet
uRun: [Yahoo! Pager] "c:\program files\yahoo!\messenger\YahooMessenger.exe" -quiet
uRun: [AdobeUpdater] c:\program files\common files\adobe\updater5\AdobeUpdater.exe
uRun: [ctfmon.exe] c:\windows\system32\ctfmon.exe
mRun: [QuickTime Task] "c:\program files\quicktime\qttask.exe" -atboottime
mRun: [PRISMSVR.EXE] "c:\windows\system32\PRISMSVR.EXE" /APPLY
mRun: [NvCplDaemon] RUNDLL32.EXE c:\windows\system32\NvCpl.dll,NvStartup
mRun: [NeroFilterCheck] c:\windows\system32\NeroCheck.exe
mRun: [Adobe Reader Speed Launcher] "c:\program files\adobe\reader 8.0\reader\Reader_sl.exe"
mRun: [Corel File Shell Monitor] c:\program files\corel\corel paint shop pro photo x2\CorelIOMonitor.exe
mRun: [TkBellExe] "c:\program files\common files\real\update_ob\realsched.exe" -osboot
mRun: [vinclock] "c:\documents and settings\deepa\application data\google\ocboo1892823.exe" 2
mRun: [Corel Photo Downloader] "c:\program files\common files\corel\corel photodownloader\Corel Photo Downloader.exe" -startup
StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\2wirew~1.lnk - c:\program files\2wire wireless\client manager\CMTWO.EXE
StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\ralink~1.lnk - c:\program files\ralink\common\RaUI.exe
IE: {5BAB4B5B-68BC-4B02-94D6-2FC0DE4A7897} - {5BAB4B5B-68BC-4B02-94D6-2FC0DE4A7897} - c:\program files\yahoo!\common\yiesrvc.dll
IE: {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - {53707962-6F74-2D53-2644-206D7942484F} - c:\progra~1\spybot~1\SDHelper.dll
LSP: c:\windows\system32\imslsp.dll
LSP: c:\windows\system32\zonelabs\vetredir.dll
Handler: cdo - {CD00020A-8B95-11D1-82DB-00C04FB1625D} - c:\program files\common files\microsoft shared\web folders\PKMCDO.DLL
SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - c:\windows\system32\WPDShServiceObj.dll
============= SERVICES / DRIVERS ===============
R0 O2MDRDR;O2MDRDR;c:\windows\system32\drivers\o2media.sys [2006-2-27 34880]
R0 O2SDRDR;O2SDRDR;c:\windows\system32\drivers\o2sd.sys [2006-2-20 29056]
R1 NEOFLTR_600_12507;Juniper Networks TDI Filter Driver (NEOFLTR_600_12507);c:\windows\system32\drivers\NEOFLTR_600_12507.sys [2007-12-27 64160]
R1 vsdatant;vsdatant;c:\windows\system32\vsdatant.sys [2006-6-20 372816]
R4 Machnm32;Machnm32 Driver;c:\windows\system32\Machnm32.sys [2006-6-20 2304]
S3 CAISafe;CA ISafe;c:\windows\system32\zonelabs\isafe.exe [2006-6-20 188416]
S3 PhnxVcd;PhnxVcd;c:\windows\system32\drivers\phnxvcd.sys [2006-6-20 45056]
S3 VET-FILT;VET File System Filter;c:\windows\system32\drivers\vet-filt.sys [2006-6-20 21605]
S3 VET-REC;VET File System Recognizer;c:\windows\system32\drivers\vet-rec.sys [2006-6-20 15668]
S3 VETFDDNT;VET Floppy Boot Sector Monitor;c:\windows\system32\drivers\vetfddnt.sys [2006-6-20 108453]
S3 VETMONNT;VET File and Macro Monitor;c:\windows\system32\drivers\vetmonnt.sys [2006-6-20 541733]
S3 vsmon;TrueVector Internet Monitor;c:\windows\system32\zonelabs\vsmon.exe -service --> c:\windows\system32\zonelabs\vsmon.exe -service [?]
S4 Bscrr_lmn;Bscrr_lmn;c:\windows\system32\drivers\AegisP.sys [2006-6-20 20747]
S4 McrdSvc;Media Center Extender Service;c:\windows\ehome\mcrdsvc.exe [2005-8-5 99328]
=============== Created Last 30 ================
2009-01-06 18:45
2009-01-06 18:45 15,504 a------- c:\windows\system32\drivers\mbam.sys
2009-01-06 18:45 38,496 a------- c:\windows\system32\drivers\mbamswissarmy.sys
2009-01-06 18:45
2009-01-06 18:45
2009-01-06 15:18
2009-01-06 15:18
2009-01-06 14:09
2009-01-05 17:25 54,156 a---h--- c:\windows\QTFont.qfn
2009-01-05 17:25 1,409 a------- c:\windows\QTFont.for
2009-01-04 13:20 4,715,008 a------- C:\Ram's Wishes 3.ppt
2009-01-03 22:49 685,112 a------- c:\windows\system32\rn.tmp
2009-01-03 22:04 192,021 a------- C:\TN15264_Ram-Kapoor.jpg
2009-01-02 10:56 4,931,584 a------- C:\Prachi's Wishes.ppt
2009-01-01 21:19 14,184 a------- C:\[bwtorrents_com] Kasam Se 11 Dec iND BwTv.ASF.torrent
2009-01-01 09:25 29,251 a------- C:\ram_kapoor_111.jpg
2009-01-01 09:24 26,942 a------- C:\ram_kapoor_11.jpg
2008-12-29 08:46 3,354,112 a------- C:\Ram's Wishes 2.ppt
2008-12-28 19:04
2008-12-27 08:54 15,661 a------- C:\black-rainbow-accents-screen.png
2008-12-26 11:56
2008-12-24 15:20
2008-12-14 20:58 748,388 a------- C:\25rj9j7.jpg
2008-12-13 11:09
2008-12-07 19:57 11,098,032 a------- C:\ani311en.exe
==================== Find3M ====================
2009-01-06 12:50 2,828 a--sh--- c:\windows\system32\KGyGaAvL.sys
2008-12-29 15:03 7,168 a--sh--- c:\program files\Thumbs.db
2008-12-28 19:04 499,712 a------- c:\windows\system32\msvcp71.dll
2008-12-28 19:04 348,160 a------- c:\windows\system32\msvcr71.dll
2008-12-13 11:23 44,944 -------- c:\windows\system32\drivers\pxhelp20.sys
2008-11-27 18:56 3,621,472 a------- C:\Winzip.zip
2008-11-20 17:05 158,456 -------- c:\windows\system32\pxwma.dll
2008-11-16 17:52 30,616 a------- c:\docume~1\deepa\applic~1\GDIPFONTCACHEV1.DAT
2008-10-23 07:01 283,648 a------- c:\windows\system32\gdi32.dll
2008-10-16 04:37 659,456 a------- c:\windows\system32\wininet.dll
2008-07-29 18:48 88 ---shr-- c:\windows\system32\96BED014D3.sys
============= FINISH: 19:41:53.12 ===============