WE'RE SURE THAT YOU'LL LOVE US!

Hey there! :wub: Looks like you're enjoying the discussion, but you're not signed up for an account. When you create an account, we remember exactly what you've read, so you always come right back where you left off. You also get notifications, here and via email, whenever new posts are made. You can like posts to share the love. Join 93104 other members! Anybody can ask, anybody can answer. Consistently helpful members may be invited to become staff. Here's how it works. Virus cleanup? Start here -> Malware Removal Forum.

Try What the Tech -- It's free!

Javascript Disabled Detected

You currently have javascript disabled. Several functions may not work. Please re-enable javascript to access full functionality.

Help Me With My Popup Problem Please

Started by acinder , Jul 07 2007 01:16 PM

This topic is locked

3 replies to this topic

#1 acinder

New Member

New Member
2 posts

Posted 07 July 2007 - 01:16 PM

Hello I am having a problem with random pop ups even when im not surfing the web. Po pups include myspace, drivecleaner, netflix, and winantivirus. I have ran avg, live one, spybot and even ad aware. Can you please tell me what program is causing this and how to remove it. Here are the logfiles from hijack this and adware

ThankYou in advance,
acinder

Logfile of HijackThis v1.99.1
Scan saved at 2:55:17 PM, on 7/7/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16473)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Windows Defender\MsMpEng.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe
C:\WINDOWS\system32\cisvc.exe
C:\WINDOWS\System32\GEARSec.exe
C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
C:\Program Files\Norton Ghost\Agent\VProSvc.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe
C:\WINDOWS\system32\ctfmon.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\Multimedia Card Reader\shwicon2k.exe
C:\Program Files\Java\jre1.6.0_01\bin\jusched.exe
C:\Program Files\Canon\MyPrinter\BJMyPrt.exe
C:\Program Files\NVIDIA Corporation\NvMixer\NVMixerTray.exe
C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe
C:\Program Files\Logitech\SetPoint\SetPoint.exe
C:\Program Files\Common Files\Logitech\KHAL\KHALMNPR.EXE
C:\Program Files\Common Files\Ahead\Lib\NMIndexStoreSvr.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\explorer.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Hijackthis\HijackThis.exe

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft....k/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft....k/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft....k/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft....k/?LinkId=69157
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [Sunkist2k] C:\Program Files\Multimedia Card Reader\shwicon2k.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.6.0_01\bin\jusched.exe
O4 - HKLM\..\Run: [CanonMyPrinter] C:\Program Files\Canon\MyPrinter\BJMyPrt.exe /logon
O4 - HKLM\..\Run: [NVMixerTray] "C:\Program Files\NVIDIA Corporation\NvMixer\NVMixerTray.exe"
O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [ABIT uGuruIII] C:\Program Files\U-ABIT\uGuru\uGuru.exe
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe"
O4 - HKCU\..\Run: [Spyware Begone] "c:\spywarebegone\SpywareBeGone.exe" -FastScan
O4 - Startup: Adobe Gamma.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: Logitech SetPoint.lnk = C:\Program Files\Logitech\SetPoint\SetPoint.exe
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll
O9 - Extra button: AIM - {AC9E2541-2814-11d5-BC6D-00B0D0A1DE45} - C:\Program Files\AIM\aim.exe
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O11 - Options group: [INTERNATIONAL] International*
O16 - DPF: {20AD521D-3A3E-11D4-BC32-0050040D952B} (SwIcdInstall Class) - file:///C:/DOCUME~1/Owner/LOCALS~1/Temp/WZS4.tmp/swicdad.cab
O16 - DPF: {39B0684F-D7BF-4743-B050-FDC3F48F7E3B} (CDownloadCtrl Object) - http://www.fileplane...C_2.3.6.108.cab
O16 - DPF: {5ED80217-570B-4DA9-BF44-BE107C0EC166} (Windows Live Safety Center Base Module) - http://cdn.scan.onec...lscbase8300.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.micros...b?1176242233093
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.micros...b?1176431054640
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
O23 - Service: Ad-Aware 2007 Service (aawservice) - Lavasoft AB - C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
O23 - Service: Atheros Configuration Service (ACS) - Unknown owner - C:\WINDOWS\system32\acs.exe (file missing)
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: Ares Chatroom server (AresChatServer) - Ares Development Group - C:\Program Files\Ares\chatServer.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe
O23 - Service: Symantec Password Validation (ccPwdSvc) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccPwdSvc.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe
O23 - Service: DomainService - Unknown owner - C:\WINDOWS\system32\bimnyanl.exe (file missing)
O23 - Service: GEARSecurity - GEAR Software - C:\WINDOWS\System32\GEARSec.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe
O23 - Service: Norton Ghost - Symantec Corporation - C:\Program Files\Norton Ghost\Agent\VProSvc.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: SiSoftware Database Agent Service (SandraDataSrv) - SiSoftware - C:\Program Files\SiSoftware\SiSoftware Sandra Lite XI.SP2\Win32\RpcDataSrv.exe
O23 - Service: SiSoftware Sandra Agent Service (SandraTheSrv) - SiSoftware - C:\Program Files\SiSoftware\SiSoftware Sandra Lite XI.SP2\RpcSandraSrv.exe
O23 - Service: Symantec Core LC - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe

StartupList report, 7/7/2007, 2:56:53 PM
StartupList version: 1.52.2
Started from : C:\Hijackthis\HijackThis.EXE
Detected: Windows XP SP2 (WinNT 5.01.2600)
Detected: Internet Explorer v7.00 (7.00.6000.16473)
* Using default options
* Including empty and uninteresting sections
* Showing rarely important sections
==================================================

Running processes:

C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Windows Defender\MsMpEng.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe
C:\WINDOWS\system32\cisvc.exe
C:\WINDOWS\System32\GEARSec.exe
C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
C:\Program Files\Norton Ghost\Agent\VProSvc.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe
C:\WINDOWS\system32\ctfmon.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\Multimedia Card Reader\shwicon2k.exe
C:\Program Files\Java\jre1.6.0_01\bin\jusched.exe
C:\Program Files\Canon\MyPrinter\BJMyPrt.exe
C:\Program Files\NVIDIA Corporation\NvMixer\NVMixerTray.exe
C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe
C:\Program Files\Logitech\SetPoint\SetPoint.exe
C:\Program Files\Common Files\Logitech\KHAL\KHALMNPR.EXE
C:\Program Files\Common Files\Ahead\Lib\NMIndexStoreSvr.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\explorer.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\WINDOWS\system32\cidaemon.exe
C:\Hijackthis\HijackThis.exe

--------------------------------------------------

Listing of startup folders:

Shell folders Startup:
[C:\Documents and Settings\Owner\Start Menu\Programs\Startup]
Adobe Gamma.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe

Shell folders AltStartup:
*Folder not found*

User shell folders Startup:
*Folder not found*

User shell folders AltStartup:
*Folder not found*

Shell folders Common Startup:
[C:\Documents and Settings\All Users\Start Menu\Programs\Startup]
Logitech SetPoint.lnk = C:\Program Files\Logitech\SetPoint\SetPoint.exe

Shell folders Common AltStartup:
*Folder not found*

User shell folders Common Startup:
*Folder not found*

User shell folders Alternate Common Startup:
*Folder not found*

--------------------------------------------------

Checking Windows NT UserInit:

[HKLM\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]
UserInit = C:\WINDOWS\system32\userinit.exe,

[HKLM\Software\Microsoft\Windows\CurrentVersion\Winlogon]
*Registry key not found*

[HKCU\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]
*Registry value not found*

[HKCU\Software\Microsoft\Windows\CurrentVersion\Winlogon]
*Registry key not found*

--------------------------------------------------

Autorun entries from Registry:
HKLM\Software\Microsoft\Windows\CurrentVersion\Run

NvCplDaemon = RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
avast! = C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
Sunkist2k = C:\Program Files\Multimedia Card Reader\shwicon2k.exe
SunJavaUpdateSched = C:\Program Files\Java\jre1.6.0_01\bin\jusched.exe
CanonMyPrinter = C:\Program Files\Canon\MyPrinter\BJMyPrt.exe /logon
NVMixerTray = "C:\Program Files\NVIDIA Corporation\NvMixer\NVMixerTray.exe"
NeroFilterCheck = C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe
nwiz = nwiz.exe /install

--------------------------------------------------

Autorun entries from Registry:
HKLM\Software\Microsoft\Windows\CurrentVersion\RunOnce

*No values found*

--------------------------------------------------

Autorun entries from Registry:
HKLM\Software\Microsoft\Windows\CurrentVersion\RunOnceEx

*No values found*

--------------------------------------------------

Autorun entries from Registry:
HKLM\Software\Microsoft\Windows\CurrentVersion\RunServices

*No values found*

--------------------------------------------------

Autorun entries from Registry:
HKLM\Software\Microsoft\Windows\CurrentVersion\RunServicesOnce

*No values found*

--------------------------------------------------

Autorun entries from Registry:
HKCU\Software\Microsoft\Windows\CurrentVersion\Run

ctfmon.exe = C:\WINDOWS\system32\ctfmon.exe
ABIT uGuruIII = C:\Program Files\U-ABIT\uGuru\uGuru.exe
SpybotSD TeaTimer = C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA} = "C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe"
Spyware Begone = "c:\spywarebegone\SpywareBeGone.exe" -FastScan

--------------------------------------------------

Autorun entries from Registry:
HKCU\Software\Microsoft\Windows\CurrentVersion\RunOnce

*No values found*

--------------------------------------------------

Autorun entries from Registry:
HKCU\Software\Microsoft\Windows\CurrentVersion\RunOnceEx

*Registry key not found*

--------------------------------------------------

Autorun entries from Registry:
HKCU\Software\Microsoft\Windows\CurrentVersion\RunServices

*No values found*

--------------------------------------------------

Autorun entries from Registry:
HKCU\Software\Microsoft\Windows\CurrentVersion\RunServicesOnce

*No values found*

--------------------------------------------------

Autorun entries from Registry:
HKLM\Software\Microsoft\Windows NT\CurrentVersion\Run

*Registry key not found*

--------------------------------------------------

Autorun entries from Registry:
HKCU\Software\Microsoft\Windows NT\CurrentVersion\Run

*Registry key not found*

--------------------------------------------------

Autorun entries in Registry subkeys of:
HKLM\Software\Microsoft\Windows\CurrentVersion\Run

[OptionalComponents]
*No values found*

--------------------------------------------------

Autorun entries in Registry subkeys of:
HKLM\Software\Microsoft\Windows\CurrentVersion\RunOnce
*No subkeys found*

--------------------------------------------------

Autorun entries in Registry subkeys of:
HKLM\Software\Microsoft\Windows\CurrentVersion\RunOnceEx
*No subkeys found*

--------------------------------------------------

Autorun entries in Registry subkeys of:
HKLM\Software\Microsoft\Windows\CurrentVersion\RunServices
*No subkeys found*

--------------------------------------------------

Autorun entries in Registry subkeys of:
HKLM\Software\Microsoft\Windows\CurrentVersion\RunServicesOnce
*No subkeys found*

--------------------------------------------------

Autorun entries in Registry subkeys of:
HKCU\Software\Microsoft\Windows\CurrentVersion\Run
*No subkeys found*

--------------------------------------------------

Autorun entries in Registry subkeys of:
HKCU\Software\Microsoft\Windows\CurrentVersion\RunOnce
*No subkeys found*

--------------------------------------------------

Autorun entries in Registry subkeys of:
HKCU\Software\Microsoft\Windows\CurrentVersion\RunOnceEx
*Registry key not found*

--------------------------------------------------

Autorun entries in Registry subkeys of:
HKCU\Software\Microsoft\Windows\CurrentVersion\RunServices
*No subkeys found*

--------------------------------------------------

Autorun entries in Registry subkeys of:
HKCU\Software\Microsoft\Windows\CurrentVersion\RunServicesOnce
*No subkeys found*

--------------------------------------------------

Autorun entries in Registry subkeys of:
HKLM\Software\Microsoft\Windows NT\CurrentVersion\Run
*Registry key not found*

--------------------------------------------------

Autorun entries in Registry subkeys of:
HKCU\Software\Microsoft\Windows NT\CurrentVersion\Run
*Registry key not found*

--------------------------------------------------

File association entry for .EXE:
HKEY_CLASSES_ROOT\exefile\shell\open\command

(Default) = "%1" %*

--------------------------------------------------

File association entry for .COM:
HKEY_CLASSES_ROOT\comfile\shell\open\command

(Default) = "%1" %*

--------------------------------------------------

File association entry for .BAT:
HKEY_CLASSES_ROOT\batfile\shell\open\command

(Default) = "%1" %*

--------------------------------------------------

File association entry for .PIF:
HKEY_CLASSES_ROOT\piffile\shell\open\command

(Default) = "%1" %*

--------------------------------------------------

File association entry for .SCR:
HKEY_CLASSES_ROOT\scrfile\shell\open\command

(Default) = "%1" /S

--------------------------------------------------

File association entry for .TXT:
HKEY_CLASSES_ROOT\txtfile\shell\open\command

(Default) = %SystemRoot%\system32\NOTEPAD.EXE %1

--------------------------------------------------

Enumerating Active Setup stub paths:
HKLM\Software\Microsoft\Active Setup\Installed Components
(* = disabled by HKCU twin)

[<{12d0ed0d-0ee0-4f90-8827-78cefb8f4988}] *
StubPath = C:\WINDOWS\system32\ieudinit.exe

[>{22d6f312-b0f6-11d0-94ab-0080c74c7e95}]
StubPath = C:\WINDOWS\inf\unregmp2.exe /ShowWMP

[>{26923b43-4d38-484f-9b9e-de460746276c}] *
StubPath = C:\WINDOWS\system32\ie4uinit.exe -UserIconConfig

[>{60B49E34-C7CC-11D0-8953-00A0C90347FF}] *
StubPath = RunDLL32 IEDKCS32.DLL,BrandIE4 SIGNUP

[>{60B49E34-C7CC-11D0-8953-00A0C90347FF}MICROS] *
StubPath = RunDLL32 IEDKCS32.DLL,BrandIE4 SIGNUP

[>{881dd1c5-3dcf-431b-b061-f3f88e8be88a}] *
StubPath = %systemroot%\system32\shmgrate.exe OCInstallUserConfigOE

[{2C7339CF-2B09-4501-B3F3-F3508C9228ED}] *
StubPath = %SystemRoot%\system32\regsvr32.exe /s /n /i:/UserInstall %SystemRoot%\system32\themeui.dll

[{44BBA840-CC51-11CF-AAFA-00AA00B6015C}] *
StubPath = "%ProgramFiles%\Outlook Express\setup50.exe" /APP:OE /CALLER:WINNT /user /install

[{44BBA842-CC51-11CF-AAFA-00AA00B6015B}] *
StubPath = rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\msnetmtg.inf,NetMtg.Install.PerUser.NT

[{5945c046-1e7d-11d1-bc44-00c04fd912be}] *
StubPath = rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\msmsgs.inf,BLC.QuietInstall.PerUser

[{6BF52A52-394A-11d3-B153-00C04F79FAA6}] *
StubPath = rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\wmp11.inf,PerUserStub

[{7790769C-0471-11d2-AF11-00C04FA35D02}] *
StubPath = "%ProgramFiles%\Outlook Express\setup50.exe" /APP:WAB /CALLER:WINNT /user /install

[{89820200-ECBD-11cf-8B85-00AA005B4340}] *
StubPath = regsvr32.exe /s /n /i:U shell32.dll

[{89820200-ECBD-11cf-8B85-00AA005B4383}] *
StubPath = C:\WINDOWS\system32\ie4uinit.exe -BaseSettings

[{89B4C1CD-B018-4511-B0A1-5476DBF70820}] *
StubPath = C:\WINDOWS\system32\Rundll32.exe C:\WINDOWS\system32\mscories.dll,Install

--------------------------------------------------

Enumerating ICQ Agent Autostart apps:
HKCU\Software\Mirabilis\ICQ\Agent\Apps

*Registry key not found*

--------------------------------------------------

Load/Run keys from C:\WINDOWS\WIN.INI:

load=*INI section not found*
run=*INI section not found*

Load/Run keys from Registry:

HKLM\..\Windows NT\CurrentVersion\WinLogon: load=*Registry value not found*
HKLM\..\Windows NT\CurrentVersion\WinLogon: run=*Registry value not found*
HKLM\..\Windows\CurrentVersion\WinLogon: load=*Registry key not found*
HKLM\..\Windows\CurrentVersion\WinLogon: run=*Registry key not found*
HKCU\..\Windows NT\CurrentVersion\WinLogon: load=*Registry value not found*
HKCU\..\Windows NT\CurrentVersion\WinLogon: run=*Registry value not found*
HKCU\..\Windows\CurrentVersion\WinLogon: load=*Registry key not found*
HKCU\..\Windows\CurrentVersion\WinLogon: run=*Registry key not found*
HKCU\..\Windows NT\CurrentVersion\Windows: load=
HKCU\..\Windows NT\CurrentVersion\Windows: run=*Registry value not found*
HKLM\..\Windows NT\CurrentVersion\Windows: load=*Registry value not found*
HKLM\..\Windows NT\CurrentVersion\Windows: run=*Registry value not found*
HKLM\..\Windows NT\CurrentVersion\Windows: AppInit_DLLs=

--------------------------------------------------

Shell & screensaver key from C:\WINDOWS\SYSTEM.INI:

Shell=*INI section not found*
SCRNSAVE.EXE=*INI section not found*
drivers=*INI section not found*

Shell & screensaver key from Registry:

Shell=Explorer.exe
SCRNSAVE.EXE=C:\WINDOWS\System32\logon.scr
drivers=*Registry value not found*

Policies Shell key:

HKCU\..\Policies: Shell=*Registry value not found*
HKLM\..\Policies: Shell=*Registry value not found*

--------------------------------------------------

Checking for EXPLORER.EXE instances:

C:\WINDOWS\Explorer.exe: PRESENT!

C:\Explorer.exe: not present
C:\WINDOWS\Explorer\Explorer.exe: not present
C:\WINDOWS\System\Explorer.exe: not present
C:\WINDOWS\System32\Explorer.exe: not present
C:\WINDOWS\Command\Explorer.exe: not present
C:\WINDOWS\Fonts\Explorer.exe: not present

--------------------------------------------------

Checking for superhidden extensions:

.lnk: HIDDEN! (arrow overlay: yes)
.pif: HIDDEN! (arrow overlay: yes)
.exe: not hidden
.com: not hidden
.bat: not hidden
.hta: not hidden
.scr: not hidden
.shs: HIDDEN!
.shb: HIDDEN!
.vbs: not hidden
.vbe: not hidden
.wsh: not hidden
.scf: HIDDEN! (arrow overlay: NO!)
.url: HIDDEN! (arrow overlay: yes)
.js: not hidden
.jse: not hidden

--------------------------------------------------

Verifying REGEDIT.EXE integrity:

- Regedit.exe found in C:\WINDOWS
- .reg open command is normal (regedit.exe %1)
- Company name OK: 'Microsoft Corporation'
- Original filename OK: 'REGEDIT.EXE'
- File description: 'Registry Editor'

Registry check passed

--------------------------------------------------

Enumerating Browser Helper Objects:

*No BHO's found*

--------------------------------------------------

Enumerating Task Scheduler jobs:

MP Scheduled Scan.job

--------------------------------------------------

Enumerating Download Program Files:

[Windows Genuine Advantage Validation Tool]
InProcServer32 = C:\WINDOWS\System32\LegitCheckControl.DLL
CODEBASE = http://download.micr...heckControl.cab

[SwIcdInstall Class]
InProcServer32 = C:\WINDOWS\Downloaded Program Files\swicdad.dll
CODEBASE = file:///C:/DOCUME~1/Owner/LOCALS~1/Temp/WZS4.tmp/swicdad.cab

[CDownloadCtrl Object]
InProcServer32 = C:\WINDOWS\Downloaded Program Files\DLMControl.dll
CODEBASE = http://www.fileplane...C_2.3.6.108.cab

[Windows Live Safety Center Base Module]
InProcServer32 = C:\WINDOWS\Downloaded Program Files\wlscBase.dll
CODEBASE = http://cdn.scan.onec...lscbase8300.cab

[WUWebControl Class]
InProcServer32 = C:\WINDOWS\system32\wuweb.dll
CODEBASE = http://update.micros...b?1176242233093

[MUWebControl Class]
InProcServer32 = C:\WINDOWS\system32\muweb.dll
CODEBASE = http://update.micros...b?1176431054640

[Java Plug-in 1.6.0_01]
InProcServer32 = C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll
CODEBASE = http://java.sun.com/...indows-i586.cab

[Java Plug-in 1.4.2_04]
InProcServer32 = C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll
CODEBASE = http://java.sun.com/...indows-i586.cab

[Java Plug-in 1.6.0_01]
InProcServer32 = C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll
CODEBASE = http://java.sun.com/...indows-i586.cab

[Java Plug-in 1.6.0_01]
InProcServer32 = C:\Program Files\Java\jre1.6.0_01\bin\npjpi160_01.dll
CODEBASE = http://java.sun.com/...indows-i586.cab

--------------------------------------------------

Enumerating Winsock LSP files:

NameSpace #1: C:\WINDOWS\System32\mswsock.dll
NameSpace #2: C:\WINDOWS\System32\winrnr.dll
NameSpace #3: C:\WINDOWS\System32\mswsock.dll
Protocol #1: C:\WINDOWS\system32\mswsock.dll
Protocol #2: C:\WINDOWS\system32\mswsock.dll
Protocol #3: C:\WINDOWS\system32\mswsock.dll
Protocol #4: C:\WINDOWS\system32\rsvpsp.dll
Protocol #5: C:\WINDOWS\system32\rsvpsp.dll
Protocol #6: C:\WINDOWS\system32\mswsock.dll
Protocol #7: C:\WINDOWS\system32\mswsock.dll
Protocol #8: C:\WINDOWS\system32\mswsock.dll
Protocol #9: C:\WINDOWS\system32\mswsock.dll
Protocol #10: C:\WINDOWS\system32\mswsock.dll
Protocol #11: C:\WINDOWS\system32\mswsock.dll
Protocol #12: C:\WINDOWS\system32\mswsock.dll
Protocol #13: C:\WINDOWS\system32\mswsock.dll

--------------------------------------------------

Enumerating Windows NT/2000/XP services

Ad-Aware 2007 Service: "C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe" (autostart)
Microsoft ACPI Driver: System32\DRIVERS\ACPI.sys (system)
Atheros Configuration Service: C:\WINDOWS\system32\acs.exe (autostart)
Adobe LM Service: "C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe" (manual start)
Microsoft Kernel Acoustic Echo Canceller: system32\drivers\aec.sys (manual start)
AEGIS Protocol (IEEE 802.1x) v3.2.0.3: System32\DRIVERS\AegisP.sys (autostart)
AFD Networking Support Environment: \SystemRoot\System32\drivers\afd.sys (system)
Service for Realtek AC97 Audio (WDM): system32\drivers\ALCXWDM.SYS (manual start)
Alerter: %SystemRoot%\System32\svchost.exe -k LocalService (disabled)
Application Layer Gateway Service: %SystemRoot%\System32\alg.exe (manual start)
AnyDVD: System32\Drivers\AnyDVD.sys (manual start)
Application Management: %SystemRoot%\system32\svchost.exe -k netsvcs (disabled)
Ares Chatroom server: C:\Program Files\Ares\chatServer.exe (manual start)
ASP.NET State Service: %SystemRoot%\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe (manual start)
avast! iAVS4 Control Service: "C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe" (autostart)
RAS Asynchronous Media Driver: System32\DRIVERS\asyncmac.sys (manual start)
Standard IDE/ESDI Hard Disk Controller: System32\DRIVERS\atapi.sys (system)
ATM ARP Client Protocol: System32\DRIVERS\atmarpc.sys (manual start)
Windows Audio: %SystemRoot%\System32\svchost.exe -k netsvcs (autostart)
Audio Stub Driver: System32\DRIVERS\audstub.sys (manual start)
avast! Antivirus: "C:\Program Files\Alwil Software\Avast4\ashServ.exe" (autostart)
avast! Mail Scanner: "C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (manual start)
avast! Web Scanner: "C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (manual start)
Nostromo HID Device Minidriver: system32\drivers\bcgame.sys (manual start)
Background Intelligent Transfer Service: %SystemRoot%\System32\svchost.exe -k netsvcs (manual start)
Belkin Wireless G Desktop Card Service: System32\DRIVERS\BLKWGD.sys (manual start)
Computer Browser: %SystemRoot%\System32\svchost.exe -k netsvcs (autostart)
Symantec Event Manager: "C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe" (autostart)
Symantec Password Validation: "C:\Program Files\Common Files\Symantec Shared\ccPwdSvc.exe" (manual start)
Symantec Settings Manager: "C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe" (autostart)
CD-ROM Driver: System32\DRIVERS\cdrom.sys (system)
Indexing Service: %SystemRoot%\system32\cisvc.exe (autostart)
ClipBook: %SystemRoot%\system32\clipsrv.exe (disabled)
.NET Runtime Optimization Service v2.0.50727_X86: C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe (manual start)
COM+ System Application: C:\WINDOWS\System32\dllhost.exe /Processid:{02D4B3F1-FD88-11D1-960D-00805FC79235} (manual start)
Cryptographic Services: %SystemRoot%\system32\svchost.exe -k netsvcs (autostart)
DCOM Server Process Launcher: %SystemRoot%\system32\svchost -k DcomLaunch (autostart)
DHCP Client: %SystemRoot%\System32\svchost.exe -k netsvcs (autostart)
Disk Driver: System32\DRIVERS\disk.sys (system)
Logical Disk Manager Administrative Service: %SystemRoot%\System32\dmadmin.exe /com (manual start)
dmboot: System32\drivers\dmboot.sys (disabled)
dmio: System32\drivers\dmio.sys (disabled)
dmload: System32\drivers\dmload.sys (disabled)
Logical Disk Manager: %SystemRoot%\System32\svchost.exe -k netsvcs (manual start)
Microsoft Kernel DLS Syntheiszer: system32\drivers\DMusic.sys (manual start)
DNS Client: %SystemRoot%\System32\svchost.exe -k NetworkService (autostart)
DomainService: C:\WINDOWS\system32\bimnyanl.exe /service (autostart)
Microsoft Kernel DRM Audio Descrambler: system32\drivers\drmkaud.sys (manual start)
ElbyCDIO Driver: System32\Drivers\ElbyCDIO.sys (autostart)
ElbyDelay: System32\Drivers\ElbyDelay.sys (manual start)
ENTECH: \??\C:\WINDOWS\system32\DRIVERS\ENTECH.sys (manual start)
Error Reporting Service: %SystemRoot%\System32\svchost.exe -k netsvcs (autostart)
Event Log: %SystemRoot%\system32\services.exe (autostart)
COM+ Event System: C:\WINDOWS\System32\svchost.exe -k netsvcs (manual start)
Fast User Switching Compatibility: %SystemRoot%\System32\svchost.exe -k netsvcs (manual start)
Floppy Disk Controller Driver: System32\DRIVERS\fdc.sys (manual start)
Floppy Disk Driver: System32\DRIVERS\flpydisk.sys (manual start)
FltMgr: system32\drivers\fltmgr.sys (system)
Windows Presentation Foundation Font Cache 3.0.0.0: c:\WINDOWS\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe (manual start)
Volume Manager Driver: System32\DRIVERS\ftdisk.sys (system)
GEARSecurity: %SystemRoot%\System32\GEARSec.exe (autostart)
Generic Packet Classifier: System32\DRIVERS\msgpc.sys (manual start)
Google Updater Service: "C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe" (autostart)
Help and Support: %SystemRoot%\System32\svchost.exe -k netsvcs (autostart)
HID Input Service: %SystemRoot%\System32\svchost.exe -k netsvcs (autostart)
Microsoft HID Class Driver: System32\DRIVERS\hidusb.sys (manual start)
HTTP: System32\Drivers\HTTP.sys (manual start)
HTTP SSL: %SystemRoot%\System32\svchost.exe -k HTTPFilter (manual start)
Windows CardSpace: "C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe" (manual start)
CD-Burning Filter Driver: System32\DRIVERS\imapi.sys (system)
IMAPI CD-Burning COM Service: C:\WINDOWS\System32\imapi.exe (manual start)
Intel Processor Driver: System32\DRIVERS\intelppm.sys (system)
IPv6 Windows Firewall Driver: system32\drivers\ip6fw.sys (manual start)
IP Traffic Filter Driver: System32\DRIVERS\ipfltdrv.sys (manual start)
IP in IP Tunnel Driver: System32\DRIVERS\ipinip.sys (manual start)
IP Network Address Translator: System32\DRIVERS\ipnat.sys (manual start)
IPSEC driver: System32\DRIVERS\ipsec.sys (system)
IR Enumerator Service: System32\DRIVERS\irenum.sys (manual start)
PnP ISA/EISA Bus Driver: System32\DRIVERS\isapnp.sys (system)
Keyboard Class Driver: System32\DRIVERS\kbdclass.sys (system)
Keyboard HID Driver: System32\DRIVERS\kbdhid.sys (system)
Microsoft Kernel Wave Audio Mixer: system32\drivers\kmixer.sys (manual start)
Server: %SystemRoot%\System32\svchost.exe -k netsvcs (autostart)
Workstation: %SystemRoot%\System32\svchost.exe -k netsvcs (autostart)
Logitech SetPoint HID Mouse Filter Driver: system32\DRIVERS\LHidKE.Sys (manual start)
TCP/IP NetBIOS Helper: %SystemRoot%\System32\svchost.exe -k LocalService (autostart)
Logitech SetPoint Mouse Filter Driver: system32\DRIVERS\LMouKE.Sys (manual start)
Memctl: \??\C:\Program Files\U-ABIT\FlashMenu\Memctl.sys (manual start)
Messenger: %SystemRoot%\System32\svchost.exe -k netsvcs (disabled)
NetMeeting Remote Desktop Sharing: C:\WINDOWS\System32\mnmsrvc.exe (manual start)
Mouse Class Driver: System32\DRIVERS\mouclass.sys (system)
Mouse HID Driver: System32\DRIVERS\mouhid.sys (manual start)
WebDav Client Redirector: System32\DRIVERS\mrxdav.sys (manual start)
MRXSMB: System32\DRIVERS\mrxsmb.sys (system)
Distributed Transaction Coordinator: C:\WINDOWS\System32\msdtc.exe (manual start)
Windows Installer: C:\WINDOWS\system32\msiexec.exe /V (manual start)
Microsoft Streaming Service Proxy: system32\drivers\MSKSSRV.sys (manual start)
Microsoft Streaming Clock Proxy: system32\drivers\MSPCLOCK.sys (manual start)
Microsoft Streaming Quality Manager Proxy: system32\drivers\MSPQM.sys (manual start)
Microsoft System Management BIOS Driver: System32\DRIVERS\mssmbios.sys (manual start)
NBService: C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe (manual start)
Remote Access NDIS TAPI Driver: System32\DRIVERS\ndistapi.sys (manual start)
NDIS Usermode I/O Protocol: System32\DRIVERS\ndisuio.sys (manual start)
Remote Access NDIS WAN Driver: System32\DRIVERS\ndiswan.sys (manual start)
NetBIOS Interface: System32\DRIVERS\netbios.sys (system)
NetBios over Tcpip: System32\DRIVERS\netbt.sys (system)
Network DDE: %SystemRoot%\system32\netdde.exe (disabled)
Network DDE DSDM: %SystemRoot%\system32\netdde.exe (disabled)
Net Logon: %SystemRoot%\System32\lsass.exe (manual start)
Network Connections: %SystemRoot%\System32\svchost.exe -k netsvcs (manual start)
Net.Tcp Port Sharing Service: "C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe" (disabled)
Network Location Awareness (NLA): %SystemRoot%\System32\svchost.exe -k netsvcs (manual start)
Norton Ghost: C:\Program Files\Norton Ghost\Agent\VProSvc.exe (autostart)
NT LM Security Support Provider: %SystemRoot%\System32\lsass.exe (manual start)
Removable Storage: %SystemRoot%\system32\svchost.exe -k netsvcs (manual start)
nv: System32\DRIVERS\nv4_mini.sys (manual start)
nvata: system32\DRIVERS\nvata.sys (system)
nvatabus: system32\DRIVERS\nvatabus.sys (system)
Service for NVIDIA® nForce™ Audio Enumerator: system32\drivers\nvax.sys (manual start)
NVIDIA nForce Networking Controller Driver: system32\DRIVERS\NVENETFD.sys (manual start)
NVIDIA Network Bus Enumerator: system32\DRIVERS\nvnetbus.sys (manual start)
Service for NVIDIA® nForce™ Audio: system32\drivers\nvapu.sys (manual start)
NVIDIA Display Driver Service: %SystemRoot%\system32\nvsvc32.exe (autostart)
IPX Traffic Filter Driver: System32\DRIVERS\nwlnkflt.sys (manual start)
IPX Traffic Forwarder Driver: System32\DRIVERS\nwlnkfwd.sys (manual start)
PCI Bus Driver: System32\DRIVERS\pci.sys (system)
PCIIde: System32\DRIVERS\pciide.sys (system)
Plug and Play: %SystemRoot%\system32\services.exe (autostart)
IPSEC Services: %SystemRoot%\System32\lsass.exe (autostart)
WAN Miniport (PPTP): System32\DRIVERS\raspptp.sys (manual start)
Processor Driver: System32\DRIVERS\processr.sys (system)
Protected Storage: %SystemRoot%\system32\lsass.exe (autostart)
QoS Packet Scheduler: System32\DRIVERS\psched.sys (manual start)
Direct Parallel Link Driver: System32\DRIVERS\ptilink.sys (manual start)
Remote Access Auto Connection Driver: System32\DRIVERS\rasacd.sys (system)
Remote Access Auto Connection Manager: %SystemRoot%\System32\svchost.exe -k netsvcs (manual start)
WAN Miniport (L2TP): System32\DRIVERS\rasl2tp.sys (manual start)
Remote Access Connection Manager: %SystemRoot%\System32\svchost.exe -k netsvcs (manual start)
Remote Access PPPOE Driver: System32\DRIVERS\raspppoe.sys (manual start)
Direct Parallel: System32\DRIVERS\raspti.sys (manual start)
Rdbss: System32\DRIVERS\rdbss.sys (system)
RDPCDD: System32\DRIVERS\RDPCDD.sys (system)
Remote Desktop Help Session Manager: C:\WINDOWS\system32\sessmgr.exe (manual start)
Digital CD Audio Playback Filter Driver: System32\DRIVERS\redbook.sys (system)
Routing and Remote Access: %SystemRoot%\System32\svchost.exe -k netsvcs (disabled)
Remote Procedure Call (RPC) Locator: %SystemRoot%\System32\locator.exe (manual start)
Remote Procedure Call (RPC): %SystemRoot%\system32\svchost -k rpcss (autostart)
QoS RSVP: %SystemRoot%\System32\rsvp.exe (manual start)
Security Accounts Manager: %SystemRoot%\system32\lsass.exe (autostart)
SiSoftware Database Agent Service: C:\Program Files\SiSoftware\SiSoftware Sandra Lite XI.SP2\Win32\RpcDataSrv.exe (manual start)
SiSoftware Sandra Agent Service: C:\Program Files\SiSoftware\SiSoftware Sandra Lite XI.SP2\RpcSandraSrv.exe (manual start)
Smart Card: %SystemRoot%\System32\SCardSvr.exe (manual start)
Task Scheduler: %SystemRoot%\System32\svchost.exe -k netsvcs (autostart)
Secdrv: System32\DRIVERS\secdrv.sys (manual start)
Secondary Logon: %SystemRoot%\System32\svchost.exe -k netsvcs (autostart)
System Event Notification: %SystemRoot%\system32\svchost.exe -k netsvcs (autostart)
Windows Firewall/Internet Connection Sharing (ICS): %SystemRoot%\System32\svchost.exe -k netsvcs (autostart)
Shell Hardware Detection: %SystemRoot%\System32\svchost.exe -k netsvcs (autostart)
SiI-3132 SATALink Controller: System32\DRIVERS\SI3132.sys (system)
SATALink driver accelerator: System32\DRIVERS\SiWinAcc.sys (system)
SATALink External Device Filter: System32\DRIVERS\SiRemFil.sys (system)
Microsoft Kernel Audio Splitter: system32\drivers\splitter.sys (manual start)
Print Spooler: %SystemRoot%\system32\spoolsv.exe (autostart)
System Restore Filter Driver: System32\DRIVERS\sr.sys (system)
System Restore Service: %SystemRoot%\System32\svchost.exe -k netsvcs (autostart)
Srv: System32\DRIVERS\srv.sys (manual start)
SSDP Discovery Service: %SystemRoot%\System32\svchost.exe -k LocalService (manual start)
Windows Image Acquisition (WIA): %SystemRoot%\System32\svchost.exe -k imgsvc (autostart)
Alcor Micro Corp Reader: \??\C:\WINDOWS\System32\Drivers\sunkfilt.sys (manual start)
Software Bus Driver: System32\DRIVERS\swenum.sys (manual start)
Microsoft Kernel GS Wavetable Synthesizer: system32\drivers\swmidi.sys (manual start)
MS Software Shadow Copy Provider: C:\WINDOWS\System32\dllhost.exe /Processid:{1271EF61-A5FA-4121-9199-8165A0EDBB3C} (manual start)
Symantec Core LC: C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe (manual start)
symlcbrd: \??\C:\WINDOWS\System32\drivers\symlcbrd.sys (autostart)
Microsoft Kernel System Audio Device: system32\drivers\sysaudio.sys (manual start)
Performance Logs and Alerts: %SystemRoot%\system32\smlogsvc.exe (manual start)
Telephony: %SystemRoot%\System32\svchost.exe -k netsvcs (manual start)
Tunebite High-Speed Dubbing: system32\drivers\tbhsd.sys (manual start)
TCP/IP Protocol Driver: System32\DRIVERS\tcpip.sys (system)
Terminal Device Driver: System32\DRIVERS\termdd.sys (system)
Terminal Services: %SystemRoot%\System32\svchost -k DComLaunch (manual start)
Themes: %SystemRoot%\System32\svchost.exe -k netsvcs (autostart)
Distributed Link Tracking Client: %SystemRoot%\system32\svchost.exe -k netsvcs (autostart)
UGURU: system32\drivers\uGuru.sys (system)
Microcode Update Driver: System32\DRIVERS\update.sys (manual start)
Universal Plug and Play Device Host: %SystemRoot%\System32\svchost.exe -k LocalService (manual start)
Uninterruptible Power Supply: %SystemRoot%\System32\ups.exe (manual start)
USB Audio Driver (WDM): system32\drivers\usbaudio.sys (manual start)
Microsoft USB Generic Parent Driver: System32\DRIVERS\usbccgp.sys (manual start)
Microsoft USB 2.0 Enhanced Host Controller Miniport Driver: System32\DRIVERS\usbehci.sys (manual start)
Microsoft USB Standard Hub Driver: System32\DRIVERS\usbhub.sys (manual start)
Microsoft USB Open Host Controller Miniport Driver: System32\DRIVERS\usbohci.sys (manual start)
Microsoft USB PRINTER Class: system32\DRIVERS\usbprint.sys (manual start)
USB Scanner Driver: system32\DRIVERS\usbscan.sys (manual start)
USB Mass Storage Driver: System32\DRIVERS\USBSTOR.SYS (manual start)
VGA Display Controller.: \SystemRoot\System32\drivers\vga.sys (system)
Volume Shadow Copy: %SystemRoot%\System32\vssvc.exe (manual start)
Windows Time: %SystemRoot%\System32\svchost.exe -k netsvcs (autostart)
Remote Access IP ARP Driver: System32\DRIVERS\wanarp.sys (manual start)
Microsoft WINMM WDM Audio Compatibility Driver: system32\drivers\wdmaud.sys (manual start)
WebClient: %SystemRoot%\System32\svchost.exe -k LocalService (autostart)
Windows Defender: "C:\Program Files\Windows Defender\MsMpEng.exe" (autostart)
WINFLASH: \??\C:\Program Files\U-ABIT\FlashMenu\WinFlash.sys (system)
Windows Management Instrumentation: %systemroot%\system32\svchost.exe -k netsvcs (autostart)
wlanndi5 NDIS Protocol Driver: \??\C:\WINDOWS\System32\wlanndi5.SYS (manual start)
Portable Media Serial Number Service: %SystemRoot%\System32\svchost.exe -k netsvcs (manual start)
WMI Performance Adapter: C:\WINDOWS\System32\wbem\wmiapsrv.exe (manual start)
Windows Media Player Network Sharing Service: "C:\Program Files\Windows Media Player\WMPNetwk.exe" (manual start)
Security Center: %SystemRoot%\System32\svchost.exe -k netsvcs (autostart)
Automatic Updates: %systemroot%\system32\svchost.exe -k netsvcs (autostart)
Windows Driver Foundation - User-mode Driver Framework Platform Driver: system32\DRIVERS\WudfPf.sys (manual start)
Windows Driver Foundation - User-mode Driver Framework Reflector: system32\DRIVERS\wudfrd.sys (manual start)
Windows Driver Foundation - User-mode Driver Framework: %SystemRoot%\system32\svchost.exe -k WudfServiceGroup (manual start)
Wireless Zero Configuration: %SystemRoot%\System32\svchost.exe -k netsvcs (autostart)
Network Provisioning Service: %SystemRoot%\System32\svchost.exe -k netsvcs (manual start)

--------------------------------------------------

Enumerating Windows NT logon/logoff scripts:
*No scripts set to run*

Windows NT checkdisk command:
BootExecute = autocheck autochk *

Windows NT 'Wininit.ini':
PendingFileRenameOperations: *Registry value not found*

--------------------------------------------------

Enumerating ShellServiceObjectDelayLoad items:

PostBootReminder: C:\WINDOWS\system32\SHELL32.dll
CDBurn: C:\WINDOWS\system32\SHELL32.dll
WebCheck: C:\WINDOWS\system32\webcheck.dll
SysTray: C:\WINDOWS\System32\stobject.dll
WPDShServiceObj: C:\WINDOWS\system32\WPDShServiceObj.dll

--------------------------------------------------
Autorun entries from Registry:
HKCU\Software\Microsoft\Windows\CurrentVersion\policies\Explorer\Run

*Registry key not found*

--------------------------------------------------

Autorun entries from Registry:
HKLM\Software\Microsoft\Windows\CurrentVersion\policies\Explorer\Run

*Registry key not found*

--------------------------------------------------

End of report, 36,149 bytes
Report generated in 0.110 seconds

Command line options:
/verbose - to add additional info on each section
/complete - to include empty sections and unsuspicious data
/full - to include several rarely-important sections
/force9x - to include Win9x-only startups even if running on WinNT
/forcent - to include WinNT-only startups even if running on Win9x
/forceall - to include all Win9x and WinNT startups, regardless of platform
/history - to list version history only

Advertisements

Register to Remove

#2 acinder

New Member

New Member
2 posts

Posted 07 July 2007 - 01:18 PM

as i was sending this avast warned me that Win32:Adware-gen. [Adw] was trying to connect to winantiviruspro :angry:

here is my adware scan results Scan Results Ad-Aware 2007 Free Edition Log File Created on:2007-07-0715:11:26 Using Definitions File:C:\Documents and Settings\All Users\Application Data\Lavasoft\Ad-Aware 2007\core.aawdef Computer name:JASON Name of user performing scan:SYSTEM Name of user ordering scan:Owner Scan completed successfully System Information File Verion Information Ad-Aware 2007 Settings Extended Ad-Aware 2007 Settings Database Information Scan Statistics Scan Detailed Statistics Infections Found Listing of running processes System Information Number of processors:2 Processor type:Intel® Pentium® 4 CPU 3.20GHz Memory Available:81% Total Physical Memory:3220680704 Bytes Available Physical Memory:2582548480 Bytes Total Page File Size:6278144000 Bytes Available On Page File:5765009408 Bytes Total Virtual Memory:2147352576 Bytes Available Virtual Memory:2000052224 Bytes OS:Microsoft Windows XP 5.1 (Build 2600) [to top] File Verion Information File Version CEAPI.dll 7, 0, 1, 4 aawservice.exe 7, 0, 1, 4 Ad-Aware2007.exe 7.0.1.4 [to top] Ad-Aware 2007 Settings Skipping files larger than:1048576 Bytes Ignoring infections with lower TAI than:3 Safe Mode:False [to top] Extended Ad-Aware 2007 Settings Unload malicious processes and modules Unload Modules Let Windows remove files at Start-Up Deactivate Ad-Watch Re-analyze Scan Result Update Definitions on startup Delete Restored Items Permanent Archive Caching Write Protect System Files Create Log file Include basic settings Include advanced settings Include user and computer name Environment information Running processes Running processes and modules Include info about ignored objects in log file Consider definitions File Outdated after x days Proxy URL Proxy Port [to top] Database Info Version number:6 Build Number:0 Build Date and Time:2007/06/2906:31:32 [to top] Scan Statistics Method:Smart Items Scanned:125753 Infections Detected:60 Infections Removed:0 Infections Quarantined:0 Infections Ignored:0 [to top] Scan Detailed Statistics Type Critical Total Process Scan 0 0 Registry Scan 0 0 Registry PE Scan 0 0 Hosts Scan 0 0 File Scan 0 0 Folder Scan 0 0 LSP Scan 0 0 ADS Scan 0 0 Cookie Scan 57 57 File Hash Scan 0 0 [to top] Infections Found Family Id Name Category TAI 725 Tracking Cookie DataMiner 3 [600000187] Browser: Internet Explorer Cookie: C:\Documents and Settings\Owner\Cookies\index.dat advertising.com ACID / [600000187] Browser: Internet Explorer Cookie: C:\Documents and Settings\Owner\Cookies\index.dat advertising.com C2 / [600000187] Browser: Internet Explorer Cookie: C:\Documents and Settings\Owner\Cookies\index.dat advertising.com F1 / [600000050] Browser: Internet Explorer Cookie: C:\Documents and Settings\Owner\Cookies\index.dat tribalfusion.com TfCtxtAdServer / [600000050] Browser: Internet Explorer Cookie: C:\Documents and Settings\Owner\Cookies\index.dat tribalfusion.com ANON_ID / [600000212] Browser: Internet Explorer Cookie: C:\Documents and Settings\Owner\Cookies\index.dat 2o7.net s_vi_igdx7Fxxiae / [600000212] Browser: Internet Explorer Cookie: C:\Documents and Settings\Owner\Cookies\index.dat 2o7.net s_vi_gijupe / [600000212] Browser: Internet Explorer Cookie: C:\Documents and Settings\Owner\Cookies\index.dat 2o7.net s_vi_mcx60x7Fbx7Fx7Fekbeb / [600000212] Browser: Internet Explorer Cookie: C:\Documents and Settings\Owner\Cookies\index.dat 2o7.net s_vi_kefkcggkcf / [600000212] Browser: Internet Explorer Cookie: C:\Documents and Settings\Owner\Cookies\index.dat 2o7.net s_vi_hx7Bttvsdx7Batx7Bx7Ewtx60x7Dx7Cf / [600000212] Browser: Internet Explorer Cookie: C:\Documents and Settings\Owner\Cookies\index.dat 2o7.net s_vi_kgzmdkge / [600000212] Browser: Internet Explorer Cookie: C:\Documents and Settings\Owner\Cookies\index.dat 2o7.net s_vi_x60x7Eczdcbchnlx7Fh / [600000212] Browser: Internet Explorer Cookie: C:\Documents and Settings\Owner\Cookies\index.dat 2o7.net s_vi_x7Dcx7Ex60x7Fbdqx7Cx60byfqsi / [600000212] Browser: Internet Explorer Cookie: C:\Documents and Settings\Owner\Cookies\index.dat 2o7.net s_vi_x60x7Eczax7Enjabola / [600000212] Browser: Internet Explorer Cookie: C:\Documents and Settings\Owner\Cookies\index.dat 2o7.net s_vi_ex7Bfi9kge / [600000212] Browser: Internet Explorer Cookie: C:\Documents and Settings\Owner\Cookies\index.dat pch.122.2o7.net s_vi / [600000201] Browser: Internet Explorer Cookie: C:\Documents and Settings\Owner\Cookies\index.dat adrevolver.com adrev_adpath / [600000095] Browser: Internet Explorer Cookie: C:\Documents and Settings\Owner\Cookies\index.dat perf.overture.com SYSTEM_USER_ID / [600000095] Browser: Internet Explorer Cookie: C:\Documents and Settings\Owner\Cookies\index.dat data1.perf.overture.com NSC_ebub1_hspvq / [600000415] Browser: Internet Explorer Cookie: C:\Documents and Settings\Owner\Cookies\index.dat revsci.net NETID01 / [600000415] Browser: Internet Explorer Cookie: C:\Documents and Settings\Owner\Cookies\index.dat revsci.net NETSEGS_K05540 / [600000085] Browser: Internet Explorer Cookie: C:\Documents and Settings\Owner\Cookies\index.dat questionmarket.com BS1 / [600000085] Browser: Internet Explorer Cookie: C:\Documents and Settings\Owner\Cookies\index.dat questionmarket.com ES / [600000263] Browser: Internet Explorer Cookie: C:\Documents and Settings\Owner\Cookies\index.dat mediaplex.com svid / [600000212] Browser: Internet Explorer Cookie: C:\Documents and Settings\Administrator\Cookies\index.dat msnportal.112.2o7.net s_vi / [600000212] Browser: Internet Explorer Cookie: C:\Documents and Settings\Administrator\Cookies\index.dat msnservices.112.2o7.net s_vi / [600000073] Browser: Internet Explorer Cookie: C:\Documents and Settings\Administrator\Cookies\index.dat adopt.specificclick.net DMEXP / [600000073] Browser: Internet Explorer Cookie: C:\Documents and Settings\Administrator\Cookies\index.dat adopt.specificclick.net CTCI / [600000073] Browser: Internet Explorer Cookie: C:\Documents and Settings\Administrator\Cookies\index.dat adopt.specificclick.net HS / [600000073] Browser: Internet Explorer Cookie: C:\Documents and Settings\Administrator\Cookies\index.dat adopt.specificclick.net LO / [600000073] Browser: Internet Explorer Cookie: C:\Documents and Settings\Administrator\Cookies\index.dat adopt.specificclick.net DGI / [600000073] Browser: Internet Explorer Cookie: C:\Documents and Settings\Administrator\Cookies\index.dat adopt.specificclick.net UI / [600000415] Browser: Internet Explorer Cookie: C:\Documents and Settings\Administrator\Cookies\index.dat revsci.net NETID01 / [600000415] Browser: Internet Explorer Cookie: C:\Documents and Settings\Administrator\Cookies\index.dat revsci.net NETSEGS_K05540 / [600000085] Browser: Internet Explorer Cookie: C:\Documents and Settings\Administrator\Cookies\index.dat questionmarket.com BS1 / [600000085] Browser: Internet Explorer Cookie: C:\Documents and Settings\Administrator\Cookies\index.dat questionmarket.com ES / [600000179] Browser: Internet Explorer Cookie: C:\Documents and Settings\Administrator\Cookies\index.dat atdmt.com AA002 / [600000102] Browser: Internet Explorer Cookie: C:\Documents and Settings\Administrator\Cookies\index.dat e-2dj6wjny-1kcjob.stats.esomniture.com s_vi_0xxx3Bx0Ax2Cx7Bxxdx26x0Ax3Dx0Ax2Fgx0Ax25x27x0A781x3Fcx22x0Ax23x3Bx0Ax2Cxxdx 6x0A0x0Ax2Fgx0Ax25x27x0A4g1x3Fcx22x0Ax3Fx3Bx0Ax2Cxxdx3Ex0A6x0Ax3Fx0Ax3Ax0A7x3A2x Ax221x3Fcx2Dlx3Bx0Ax2Cxxdx260x0Ax24xxgxxg / [600000073] Browser: Internet Explorer Cookie: C:\Documents and Settings\Administrator\Cookies\index.dat specificclick.net smx / [600000421] Browser: Internet Explorer Cookie: C:\Documents and Settings\Administrator\Cookies\index.dat overstock.com mxckefta / [600000421] Browser: Internet Explorer Cookie: C:\Documents and Settings\Administrator\Cookies\index.dat overstock.com mxclastvisit / [600000421] Browser: Internet Explorer Cookie: C:\Documents and Settings\Administrator\Cookies\index.dat overstock.com ostk_aggr_year / [600000421] Browser: Internet Explorer Cookie: C:\Documents and Settings\Administrator\Cookies\index.dat overstock.com mxcsitetestset / [600000421] Browser: Internet Explorer Cookie: C:\Documents and Settings\Administrator\Cookies\index.dat overstock.com KWSID-OSTK.1.1000.client / [600000000] Browser: Internet Explorer Cookie: C:\Documents and Settings\Administrator\Cookies\index.dat zedo.com ZEDOIDX / [600000000] Browser: Internet Explorer Cookie: C:\Documents and Settings\Administrator\Cookies\index.dat zedo.com FFcat / [600000000] Browser: Internet Explorer Cookie: C:\Documents and Settings\Administrator\Cookies\index.dat zedo.com FFad / [600000000] Browser: Internet Explorer Cookie: C:\Documents and Settings\Administrator\Cookies\index.dat zedo.com ZEDOIDA / [600000000] Browser: Internet Explorer Cookie: C:\Documents and Settings\Administrator\Cookies\index.dat zedo.com geo / [600000421] Browser: Internet Explorer Cookie: C:\Documents and Settings\Administrator\Cookies\index.dat www.overstock.com SSLB / [600000102] Browser: Internet Explorer Cookie: C:\Documents and Settings\Administrator\Cookies\index.dat e-2dj6wgk4siazokq.stats.esomniture.com s_vi_0xxx3Bx7Bx0Ax2Cxxdx26x0Ax3Dx0Ax2Fgx0Ax25x27x0A781x3Fcx22x0Ax23x3Bx0Ax2Cxxdx 6x0A0x0Ax2Fgx0Ax25x27x0A4g1x3Fcx22x0A2x3Eax0Ax26x3Cx0A4x0Ax2Fx0Ax3Ax0Ax3Ex24x0Ax 4x0Ax261x3Fcx2Dlx3Bx0Ax2Cxxdx260x0Ax24xxgxxg / [600000421] Browser: Internet Explorer Cookie: C:\Documents and Settings\Administrator\Cookies\index.dat kefta.overstock.com KWSID-OSTK.1.1000.client / [600000212] Browser: Internet Explorer Cookie: C:\Documents and Settings\Administrator\Cookies\index.dat 2o7.net s_vi_x60x7Eczdcbchnlx7Fh / [600000212] Browser: Internet Explorer Cookie: C:\Documents and Settings\Administrator\Cookies\index.dat 2o7.net s_vi_x7Dcx7Ex60x7Fbdqx7Cx60byfqsi / [600000212] Browser: Internet Explorer Cookie: C:\Documents and Settings\Administrator\Cookies\index.dat 2o7.net s_vi_bx7Bhx7Fx7Eybnfx23nbx60 / [600000425] Browser: Internet Explorer Cookie: C:\Documents and Settings\Administrator\Cookies\index.dat indexstats.com itvisitorid10001013288015 / [600000425] Browser: Internet Explorer Cookie: C:\Documents and Settings\Administrator\Cookies\index.dat indexstats.com itsessionid10001013288015 / 9999 MRU Object MRU Object 0 [1] MRU Path: C:\Documents and Settings\Owner\Recent Count: 76 [2] MRU Registry Key: S-1-5-21-725345543-790525478-2147208981-1003\Software\Microsoft\Search Assistant\ACMru\5603 Count: 3 [3] MRU Registry Key: S-1-5-21-725345543-790525478-2147208981-1003\Software\Microsoft\Internet Explorer\TypedURLs Count: 6 Quarantined Objects Family Id Name Category TAI Removed Objects Family Id Name Category TAI [to top] Listing of Running Processes C:\WINDOWS\SYSTEM32\SMSS.EXE c:\windows\system32\smss.exe c:\windows\system32\ntdll.dll C:\WINDOWS\SYSTEM32\CSRSS.EXE c:\windows\system32\csrss.exe c:\windows\system32\ntdll.dll c:\windows\system32\csrsrv.dll c:\windows\system32\basesrv.dll c:\windows\system32\winsrv.dll c:\windows\system32\gdi32.dll c:\windows\system32\kernel32.dll c:\windows\system32\user32.dll c:\windows\system32\sxs.dll c:\windows\system32\advapi32.dll c:\windows\system32\rpcrt4.dll c:\windows\system32\apphelp.dll c:\windows\system32\version.dll C:\WINDOWS\SYSTEM32\WINLOGON.EXE c:\windows\system32\winlogon.exe c:\windows\system32\ntdll.dll c:\windows\system32\kernel32.dll c:\windows\system32\advapi32.dll c:\windows\system32\rpcrt4.dll c:\windows\system32\authz.dll c:\windows\system32\msvcrt.dll c:\windows\system32\crypt32.dll c:\windows\system32\user32.dll c:\windows\system32\gdi32.dll c:\windows\system32\msasn1.dll c:\windows\system32\nddeapi.dll c:\windows\system32\profmap.dll c:\windows\system32\netapi32.dll c:\windows\system32\userenv.dll c:\windows\system32\psapi.dll c:\windows\system32\regapi.dll c:\windows\system32\secur32.dll c:\windows\system32\setupapi.dll c:\windows\system32\version.dll c:\windows\system32\winsta.dll c:\windows\system32\wintrust.dll c:\windows\system32\imagehlp.dll c:\windows\system32\ws2_32.dll c:\windows\system32\ws2help.dll c:\windows\system32\imm32.dll c:\windows\system32\msgina.dll c:\windows\system32\shell32.dll c:\windows\system32\shlwapi.dll c:\windows\system32\comctl32.dll c:\windows\system32\odbc32.dll c:\windows\system32\comdlg32.dll c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\comctl32.dll c:\windows\system32\odbcint.dll c:\windows\system32\shsvcs.dll c:\windows\system32\sfc.dll c:\windows\system32\sfc_os.dll c:\windows\system32\ole32.dll c:\windows\system32\apphelp.dll c:\windows\system32\msctfime.ime c:\windows\system32\winscard.dll c:\windows\system32\wtsapi32.dll c:\windows\system32\sxs.dll c:\windows\system32\uxtheme.dll c:\windows\system32\winmm.dll c:\windows\system32\cscdll.dll c:\windows\system32\wlnotify.dll c:\windows\system32\winspool.drv c:\windows\system32\mpr.dll c:\windows\system32\ssqpp.dll c:\windows\system32\shfolder.dll c:\windows\system32\oleaut32.dll c:\windows\system32\urlmon.dll c:\windows\system32\iertutil.dll c:\windows\system32\wgalogon.dll c:\windows\system32\rsaenh.dll c:\windows\system32\ntmarta.dll c:\windows\system32\wldap32.dll c:\windows\system32\samlib.dll c:\windows\system32\clbcatq.dll c:\windows\system32\comres.dll c:\windows\system32\msv1_0.dll c:\windows\system32\iphlpapi.dll c:\windows\system32\cscui.dll c:\windows\system32\ssqolkk.dll c:\windows\system32\wininet.dll c:\windows\system32\normaliz.dll c:\windows\system32\wdmaud.drv c:\windows\system32\msacm32.drv c:\windows\system32\msacm32.dll c:\windows\system32\midimap.dll c:\windows\system32\mprapi.dll c:\windows\system32\activeds.dll c:\windows\system32\adsldpc.dll c:\windows\system32\atl.dll c:\windows\system32\rtutils.dll c:\windows\system32\xpsp2res.dll C:\WINDOWS\SYSTEM32\SERVICES.EXE c:\windows\system32\services.exe c:\windows\system32\ntdll.dll c:\windows\system32\kernel32.dll c:\windows\system32\msvcrt.dll c:\windows\system32\advapi32.dll c:\windows\system32\rpcrt4.dll c:\windows\system32\user32.dll c:\windows\system32\gdi32.dll c:\windows\system32\userenv.dll c:\windows\system32\scesrv.dll c:\windows\system32\authz.dll c:\windows\system32\umpnpmgr.dll c:\windows\system32\winsta.dll c:\windows\system32\netapi32.dll c:\windows\system32\ncobjapi.dll c:\windows\system32\msvcp60.dll c:\windows\system32\shimeng.dll c:\windows\apppatch\acadproc.dll c:\windows\system32\imm32.dll c:\windows\system32\secur32.dll c:\windows\system32\apphelp.dll c:\windows\system32\version.dll c:\windows\system32\eventlog.dll c:\windows\system32\ws2_32.dll c:\windows\system32\ws2help.dll c:\windows\system32\psapi.dll c:\windows\system32\wtsapi32.dll C:\WINDOWS\SYSTEM32\LSASS.EXE c:\windows\system32\lsass.exe c:\windows\system32\ntdll.dll c:\windows\system32\kernel32.dll c:\windows\system32\advapi32.dll c:\windows\system32\rpcrt4.dll c:\windows\system32\lsasrv.dll c:\windows\system32\mpr.dll c:\windows\system32\user32.dll c:\windows\system32\gdi32.dll c:\windows\system32\msasn1.dll c:\windows\system32\msvcrt.dll c:\windows\system32\netapi32.dll c:\windows\system32\ntdsapi.dll c:\windows\system32\dnsapi.dll c:\windows\system32\ws2_32.dll c:\windows\system32\ws2help.dll c:\windows\system32\wldap32.dll c:\windows\system32\secur32.dll c:\windows\system32\samlib.dll c:\windows\system32\samsrv.dll c:\windows\system32\cryptdll.dll c:\windows\system32\shimeng.dll c:\windows\apppatch\acgenral.dll c:\windows\system32\winmm.dll c:\windows\system32\ole32.dll c:\windows\system32\oleaut32.dll c:\windows\system32\msacm32.dll c:\windows\system32\version.dll c:\windows\system32\shell32.dll c:\windows\system32\shlwapi.dll c:\windows\system32\userenv.dll c:\windows\system32\uxtheme.dll c:\windows\system32\imm32.dll c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\comctl32.dll c:\windows\system32\comctl32.dll c:\windows\system32\msprivs.dll c:\windows\system32\kerberos.dll c:\windows\system32\msv1_0.dll c:\windows\system32\iphlpapi.dll c:\windows\system32\netlogon.dll c:\windows\system32\w32time.dll c:\windows\system32\msvcp60.dll c:\windows\system32\schannel.dll c:\windows\system32\crypt32.dll c:\windows\system32\wdigest.dll c:\windows\system32\rsaenh.dll c:\windows\system32\setupapi.dll c:\windows\system32\scecli.dll c:\windows\system32\srrstr.dll c:\windows\system32\winsta.dll c:\windows\system32\wbem\framedyn.dll c:\windows\system32\srclient.dll c:\windows\system32\ipsecsvc.dll c:\windows\system32\authz.dll c:\windows\system32\oakley.dll c:\windows\system32\winipsec.dll c:\windows\system32\mswsock.dll c:\windows\system32\hnetcfg.dll c:\windows\system32\wshtcpip.dll c:\windows\system32\pstorsvc.dll c:\windows\system32\psbase.dll c:\windows\system32\dssenh.dll C:\WINDOWS\SYSTEM32\SVCHOST.EXE c:\windows\system32\svchost.exe c:\windows\system32\ntdll.dll c:\windows\system32\kernel32.dll c:\windows\system32\advapi32.dll c:\windows\system32\rpcrt4.dll c:\windows\system32\shimeng.dll c:\windows\apppatch\acgenral.dll c:\windows\system32\user32.dll c:\windows\system32\gdi32.dll c:\windows\system32\winmm.dll c:\windows\system32\ole32.dll c:\windows\system32\msvcrt.dll c:\windows\system32\oleaut32.dll c:\windows\system32\msacm32.dll c:\windows\system32\version.dll c:\windows\system32\shell32.dll c:\windows\system32\shlwapi.dll c:\windows\system32\userenv.dll c:\windows\system32\uxtheme.dll c:\windows\system32\imm32.dll c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\comctl32.dll c:\windows\system32\comctl32.dll c:\windows\system32\ntmarta.dll c:\windows\system32\wldap32.dll c:\windows\system32\samlib.dll c:\windows\system32\rpcss.dll c:\windows\system32\secur32.dll c:\windows\system32\ws2_32.dll c:\windows\system32\ws2help.dll c:\windows\system32\xpsp2res.dll c:\windows\system32\clbcatq.dll c:\windows\system32\comres.dll c:\windows\system32\termsrv.dll c:\windows\system32\icaapi.dll c:\windows\system32\setupapi.dll c:\windows\system32\wintrust.dll c:\windows\system32\crypt32.dll c:\windows\system32\msasn1.dll c:\windows\system32\imagehlp.dll c:\windows\system32\authz.dll c:\windows\system32\mstlsapi.dll c:\windows\system32\activeds.dll c:\windows\system32\adsldpc.dll c:\windows\system32\netapi32.dll c:\windows\system32\atl.dll c:\windows\system32\regapi.dll c:\windows\system32\rsaenh.dll c:\windows\system32\apphelp.dll c:\windows\system32\wtsapi32.dll c:\windows\system32\winsta.dll c:\windows\system32\msv1_0.dll c:\windows\system32\iphlpapi.dll c:\windows\system32\svchost.exe c:\windows\system32\ntdll.dll c:\windows\system32\kernel32.dll c:\windows\system32\advapi32.dll c:\windows\system32\rpcrt4.dll c:\windows\system32\shimeng.dll c:\windows\apppatch\acgenral.dll c:\windows\system32\user32.dll c:\windows\system32\gdi32.dll c:\windows\system32\winmm.dll c:\windows\system32\ole32.dll c:\windows\system32\msvcrt.dll c:\windows\system32\oleaut32.dll c:\windows\system32\msacm32.dll c:\windows\system32\version.dll c:\windows\system32\shell32.dll c:\windows\system32\shlwapi.dll c:\windows\system32\userenv.dll c:\windows\system32\uxtheme.dll c:\windows\system32\imm32.dll c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\comctl32.dll c:\windows\system32\comctl32.dll c:\windows\system32\rpcss.dll c:\windows\system32\secur32.dll c:\windows\system32\ws2_32.dll c:\windows\system32\ws2help.dll c:\windows\system32\xpsp2res.dll c:\windows\system32\rsaenh.dll c:\windows\system32\mswsock.dll c:\windows\system32\hnetcfg.dll c:\windows\system32\wshtcpip.dll c:\windows\system32\dnsapi.dll c:\windows\system32\iphlpapi.dll c:\windows\system32\winrnr.dll c:\windows\system32\wldap32.dll c:\windows\system32\rasadhlp.dll c:\windows\system32\clbcatq.dll c:\windows\system32\comres.dll C:\PROGRAM FILES\WINDOWS DEFENDER\MSMPENG.EXE c:\program files\windows defender\msmpeng.exe c:\windows\system32\ntdll.dll c:\windows\system32\kernel32.dll c:\windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.42_x-ww_0de06acd\msvcr80.dll c:\windows\system32\msvcrt.dll c:\program files\windows defender\mpsvc.dll c:\windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.42_x-ww_0de06acd\msvcp80.dll c:\windows\system32\advapi32.dll c:\windows\system32\rpcrt4.dll c:\windows\system32\version.dll c:\windows\system32\crypt32.dll c:\windows\system32\user32.dll c:\windows\system32\gdi32.dll c:\windows\system32\msasn1.dll c:\windows\system32\wintrust.dll c:\windows\system32\imagehlp.dll c:\program files\windows defender\mpclient.dll c:\windows\system32\shell32.dll c:\windows\system32\shlwapi.dll c:\windows\system32\ole32.dll c:\windows\system32\oleaut32.dll c:\windows\system32\userenv.dll c:\windows\system32\imm32.dll c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\comctl32.dll c:\windows\system32\comctl32.dll c:\windows\system32\rsaenh.dll c:\windows\system32\xpsp2res.dll c:\windows\system32\secur32.dll c:\windows\system32\netapi32.dll c:\documents and settings\all users\application data\microsoft\windows defender\definition updates\{e2042155-69da-4f5d-9cb6-95d435bd20b9}\mpengine.dll c:\windows\system32\ws2_32.dll c:\windows\system32\ws2help.dll c:\windows\system32\psapi.dll c:\windows\system32\iphlpapi.dll c:\program files\windows defender\mprtplug.dll c:\windows\system32\uxtheme.dll c:\windows\system32\clbcatq.dll c:\windows\system32\comres.dll C:\WINDOWS\SYSTEM32\SVCHOST.EXE c:\windows\system32\svchost.exe c:\windows\system32\ntdll.dll c:\windows\system32\kernel32.dll c:\windows\system32\advapi32.dll c:\windows\system32\rpcrt4.dll c:\windows\system32\shimeng.dll c:\windows\apppatch\acgenral.dll c:\windows\system32\user32.dll c:\windows\system32\gdi32.dll c:\windows\system32\winmm.dll c:\windows\system32\ole32.dll c:\windows\system32\msvcrt.dll c:\windows\system32\oleaut32.dll c:\windows\system32\msacm32.dll c:\windows\system32\version.dll c:\windows\system32\shell32.dll c:\windows\system32\shlwapi.dll c:\windows\system32\userenv.dll c:\windows\system32\uxtheme.dll c:\windows\system32\imm32.dll c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\comctl32.dll c:\windows\system32\comctl32.dll c:\windows\system32\ntmarta.dll c:\windows\system32\wldap32.dll c:\windows\system32\samlib.dll c:\windows\system32\xpsp2res.dll c:\windows\system32\shsvcs.dll c:\windows\system32\winsta.dll c:\windows\system32\netapi32.dll c:\windows\system32\dhcpcsvc.dll c:\windows\system32\dnsapi.dll c:\windows\system32\ws2_32.dll c:\windows\system32\ws2help.dll c:\windows\system32\iphlpapi.dll c:\windows\system32\secur32.dll c:\windows\system32\wzcsvc.dll c:\windows\system32\rtutils.dll c:\windows\system32\wmi.dll c:\windows\system32\crypt32.dll c:\windows\system32\msasn1.dll c:\windows\system32\wtsapi32.dll c:\windows\system32\esent.dll c:\windows\system32\atl.dll c:\windows\system32\rsaenh.dll c:\windows\system32\rastls.dll c:\windows\system32\cryptui.dll c:\windows\system32\wintrust.dll c:\windows\system32\imagehlp.dll c:\windows\system32\wininet.dll c:\windows\system32\normaliz.dll c:\windows\system32\iertutil.dll c:\windows\system32\mprapi.dll c:\windows\system32\activeds.dll c:\windows\system32\adsldpc.dll c:\windows\system32\setupapi.dll c:\windows\system32\rasapi32.dll c:\windows\system32\rasman.dll c:\windows\system32\tapi32.dll c:\windows\system32\schannel.dll c:\windows\system32\winscard.dll c:\windows\system32\raschap.dll c:\windows\system32\msv1_0.dll c:\windows\system32\clbcatq.dll c:\windows\system32\comres.dll c:\windows\system32\msvcp60.dll c:\windows\system32\wzcsapi.dll c:\windows\system32\schedsvc.dll c:\windows\system32\ntdsapi.dll c:\windows\system32\msidle.dll c:\windows\system32\audiosrv.dll c:\windows\system32\wkssvc.dll c:\windows\system32\cryptsvc.dll c:\windows\system32\certcli.dll c:\windows\system32\ersvc.dll c:\windows\system32\es.dll c:\windows\pchealth\helpctr\binaries\pchsvc.dll c:\windows\system32\hidserv.dll c:\windows\system32\hid.dll c:\windows\system32\srvsvc.dll c:\windows\system32\netman.dll c:\windows\system32\netshell.dll c:\windows\system32\credui.dll c:\windows\system32\hnetcfg.dll c:\windows\system32\winspool.drv c:\windows\system32\seclogon.dll c:\windows\system32\sens.dll c:\windows\system32\srsvc.dll c:\windows\system32\powrprof.dll c:\windows\system32\trkwks.dll c:\windows\system32\w32time.dll c:\windows\system32\wbem\wmisvc.dll c:\windows\system32\vssapi.dll c:\windows\system32\wuauserv.dll c:\windows\system32\wuaueng.dll c:\windows\system32\winhttp.dll c:\windows\system32\cabinet.dll c:\windows\system32\mspatcha.dll c:\windows\system32\mswsock.dll c:\windows\system32\wshtcpip.dll c:\windows\system32\sxs.dll c:\windows\system32\comsvcs.dll c:\windows\system32\colbact.dll c:\windows\system32\mtxclu.dll c:\windows\system32\wsock32.dll c:\windows\system32\clusapi.dll c:\windows\system32\resutils.dll c:\windows\system32\sfc.dll c:\windows\system32\sfc_os.dll c:\windows\system32\ipnathlp.dll c:\windows\system32\authz.dll c:\windows\system32\wscsvc.dll c:\windows\system32\msi.dll c:\windows\system32\wbem\wbemcomn.dll c:\windows\system32\wbem\wbemcore.dll c:\windows\system32\wbem\esscli.dll c:\windows\system32\wbem\fastprox.dll c:\windows\system32\wbem\wbemsvc.dll c:\windows\system32\wbem\wmiutils.dll c:\windows\system32\wbem\repdrvfs.dll c:\windows\system32\wbem\wmiprvsd.dll c:\windows\system32\ncobjapi.dll c:\windows\system32\wbem\wbemess.dll c:\windows\system32\wbem\ncprov.dll c:\windows\system32\browser.dll c:\windows\system32\rasadhlp.dll c:\windows\system32\netcfgx.dll c:\windows\system32\tapisrv.dll c:\windows\system32\psapi.dll c:\windows\system32\rasmans.dll c:\windows\system32\winipsec.dll c:\windows\system32\rastapi.dll c:\windows\system32\unimdm.tsp c:\windows\system32\uniplat.dll c:\windows\system32\kmddsp.tsp c:\windows\system32\ndptsp.tsp c:\windows\system32\ipconf.tsp c:\windows\system32\h323.tsp c:\windows\system32\hidphone.tsp c:\windows\system32\rasppp.dll c:\windows\system32\ntlsapi.dll c:\windows\system32\kerberos.dll c:\windows\system32\cryptdll.dll c:\windows\system32\apphelp.dll c:\windows\system32\msxml3.dll c:\windows\system32\upnp.dll c:\windows\system32\ssdpapi.dll c:\windows\system32\rasdlg.dll c:\windows\system32\urlmon.dll c:\windows\system32\mlang.dll c:\windows\system32\xmlprovi.dll c:\windows\system32\netrap.dll c:\windows\system32\svchost.exe c:\windows\system32\ntdll.dll c:\windows\system32\kernel32.dll c:\windows\system32\advapi32.dll c:\windows\system32\rpcrt4.dll c:\windows\system32\shimeng.dll c:\windows\apppatch\acgenral.dll c:\windows\system32\user32.dll c:\windows\system32\gdi32.dll c:\windows\system32\winmm.dll c:\windows\system32\ole32.dll c:\windows\system32\msvcrt.dll c:\windows\system32\oleaut32.dll c:\windows\system32\msacm32.dll c:\windows\system32\version.dll c:\windows\system32\shell32.dll c:\windows\system32\shlwapi.dll c:\windows\system32\userenv.dll c:\windows\system32\uxtheme.dll c:\windows\system32\imm32.dll c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\comctl32.dll c:\windows\system32\comctl32.dll c:\windows\system32\dnsrslvr.dll c:\windows\system32\dnsapi.dll c:\windows\system32\ws2_32.dll c:\windows\system32\ws2help.dll c:\windows\system32\iphlpapi.dll c:\windows\system32\mswsock.dll c:\windows\system32\hnetcfg.dll c:\windows\system32\wshtcpip.dll c:\windows\system32\svchost.exe c:\windows\system32\ntdll.dll c:\windows\system32\kernel32.dll c:\windows\system32\advapi32.dll c:\windows\system32\rpcrt4.dll c:\windows\system32\shimeng.dll c:\windows\apppatch\acgenral.dll c:\windows\system32\user32.dll c:\windows\system32\gdi32.dll c:\windows\system32\winmm.dll c:\windows\system32\ole32.dll c:\windows\system32\msvcrt.dll c:\windows\system32\oleaut32.dll c:\windows\system32\msacm32.dll c:\windows\system32\version.dll c:\windows\system32\shell32.dll c:\windows\system32\shlwapi.dll c:\windows\system32\userenv.dll c:\windows\system32\uxtheme.dll c:\windows\system32\imm32.dll c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\comctl32.dll c:\windows\system32\comctl32.dll c:\windows\system32\ntmarta.dll c:\windows\system32\wldap32.dll c:\windows\system32\samlib.dll c:\windows\system32\xpsp2res.dll c:\windows\system32\lmhsvc.dll c:\windows\system32\iphlpapi.dll c:\windows\system32\ws2_32.dll c:\windows\system32\ws2help.dll c:\windows\system32\webclnt.dll c:\windows\system32\wininet.dll c:\windows\system32\normaliz.dll c:\windows\system32\iertutil.dll c:\windows\system32\secur32.dll c:\windows\system32\rsaenh.dll c:\windows\system32\ssdpsrv.dll c:\windows\system32\hnetcfg.dll c:\windows\system32\clbcatq.dll c:\windows\system32\comres.dll c:\windows\system32\mswsock.dll c:\windows\system32\wshtcpip.dll c:\windows\system32\httpapi.dll c:\windows\system32\winhttp.dll c:\windows\system32\dnsapi.dll c:\windows\system32\rasadhlp.dll C:\PROGRAM FILES\ALWIL SOFTWARE\AVAST4\ASWUPDSV.EXE c:\program files\alwil software\avast4\aswupdsv.exe c:\windows\system32\ntdll.dll c:\windows\system32\kernel32.dll c:\program files\alwil software\avast4\aswcmns.dll c:\program files\alwil software\avast4\aswcmnos.dll c:\windows\system32\user32.dll c:\windows\system32\gdi32.dll c:\windows\system32\advapi32.dll c:\windows\system32\rpcrt4.dll c:\windows\system32\msvcp71.dll c:\windows\system32\msvcr71.dll c:\windows\system32\wsock32.dll c:\windows\system32\ws2_32.dll c:\windows\system32\msvcrt.dll c:\windows\system32\ws2help.dll c:\program files\alwil software\avast4\aswcmnb.dll c:\windows\system32\imm32.dll C:\PROGRAM FILES\ALWIL SOFTWARE\AVAST4\ASHSERV.EXE c:\program files\alwil software\avast4\ashserv.exe c:\windows\system32\ntdll.dll c:\windows\system32\kernel32.dll c:\windows\system32\rpcrt4.dll c:\windows\system32\advapi32.dll c:\program files\alwil software\avast4\aswaux.dll c:\windows\system32\msvcp71.dll c:\windows\system32\msvcr71.dll c:\program files\alwil software\avast4\aswcmnb.dll c:\program files\alwil software\avast4\aswcmnos.dll c:\windows\system32\user32.dll c:\windows\system32\gdi32.dll c:\windows\system32\wsock32.dll c:\windows\system32\ws2_32.dll c:\windows\system32\msvcrt.dll c:\windows\system32\ws2help.dll c:\program files\alwil software\avast4\aswengin.dll c:\windows\system32\shell32.dll c:\windows\system32\shlwapi.dll c:\windows\system32\ole32.dll c:\program files\alwil software\avast4\aswscan.dll c:\program files\alwil software\avast4\aswcmns.dll c:\windows\system32\oleaut32.dll c:\program files\alwil software\avast4\ashbase.dll c:\windows\system32\version.dll c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\comctl32.dll c:\program files\alwil software\avast4\ashtask.dll c:\program files\alwil software\avast4\aswinteg.dll c:\program files\alwil software\avast4\aswidle.dll c:\program files\alwil software\avast4\aavm4h.dll c:\windows\system32\imm32.dll c:\windows\system32\dbghelp.dll c:\program files\alwil software\avast4\english\base.dll c:\program files\alwil software\avast4\unacev2.dll c:\windows\system32\wtsapi32.dll c:\windows\system32\winsta.dll c:\windows\system32\netapi32.dll c:\program files\alwil software\avast4\ahresmai.dll c:\program files\alwil software\avast4\ahresmes.dll c:\program files\alwil software\avast4\ahresns.dll c:\program files\alwil software\avast4\ahresout.dll c:\program files\alwil software\avast4\ahresp2p.dll c:\program files\alwil software\avast4\ahresstd.dll c:\program files\alwil software\avast4\ahresws.dll c:\program files\alwil software\avast4\ashssqlt.dll c:\windows\system32\rasapi32.dll c:\windows\system32\rasman.dll c:\windows\system32\tapi32.dll c:\windows\system32\rtutils.dll c:\windows\system32\winmm.dll c:\windows\system32\uxtheme.dll c:\windows\system32\clbcatq.dll c:\windows\system32\comres.dll c:\windows\system32\xpsp2res.dll c:\windows\system32\msctfime.ime c:\windows\system32\perfos.dll C:\WINDOWS\SYSTEM32\SPOOLSV.EXE c:\windows\system32\spoolsv.exe c:\windows\system32\ntdll.dll c:\windows\system32\kernel32.dll c:\windows\system32\advapi32.dll c:\windows\system32\rpcrt4.dll c:\windows\system32\gdi32.dll c:\windows\system32\user32.dll c:\windows\system32\msvcrt.dll c:\windows\system32\shimeng.dll c:\windows\apppatch\acgenral.dll c:\windows\system32\winmm.dll c:\windows\system32\ole32.dll c:\windows\system32\oleaut32.dll c:\windows\system32\msacm32.dll c:\windows\system32\version.dll c:\windows\system32\shell32.dll c:\windows\system32\shlwapi.dll c:\windows\system32\userenv.dll c:\windows\system32\uxtheme.dll c:\windows\system32\imm32.dll c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\comctl32.dll c:\windows\system32\comctl32.dll c:\windows\system32\spoolss.dll c:\windows\system32\ws2_32.dll c:\windows\system32\ws2help.dll c:\windows\system32\dnsapi.dll c:\windows\system32\iphlpapi.dll c:\windows\system32\rasadhlp.dll c:\windows\system32\localspl.dll c:\windows\system32\secur32.dll c:\windows\system32\sfc_os.dll c:\windows\system32\wintrust.dll c:\windows\system32\crypt32.dll c:\windows\system32\msasn1.dll c:\windows\system32\imagehlp.dll c:\windows\system32\winspool.drv c:\windows\system32\netapi32.dll c:\windows\system32\cnbjmon.dll c:\windows\system32\ptql10l.dll c:\windows\system32\ptql5l.dll c:\windows\system32\ptql65l.dll c:\windows\system32\cnmlm87.dll c:\windows\system32\psapi.dll c:\windows\system32\ebpmon2.dll c:\windows\system32\pjlmon.dll c:\windows\system32\tcpmon.dll c:\windows\system32\usbmon.dll c:\windows\system32\spool\prtprocs\w32x86\cnmpd87.dll c:\windows\system32\spool\prtprocs\w32x86\filterpipelineprintproc.dll c:\windows\system32\mswsock.dll c:\windows\system32\winrnr.dll c:\windows\system32\wldap32.dll c:\windows\system32\win32spl.dll c:\windows\system32\netrap.dll c:\windows\system32\ntdsapi.dll c:\windows\system32\clbcatq.dll c:\windows\system32\comres.dll c:\windows\system32\xpsp2res.dll c:\windows\system32\inetpp.dll C:\PROGRAM FILES\LAVASOFT\AD-AWARE 2007\AAWSERVICE.EXE c:\program files\lavasoft\ad-aware 2007\aawservice.exe c:\windows\system32\ntdll.dll c:\windows\system32\kernel32.dll c:\program files\lavasoft\ad-aware 2007\ceapi.dll c:\windows\system32\advapi32.dll c:\windows\system32\rpcrt4.dll c:\program files\lavasoft\ad-aware 2007\pkarchive84cb.dll c:\windows\system32\shell32.dll c:\windows\system32\gdi32.dll c:\windows\system32\user32.dll c:\windows\system32\msvcrt.dll c:\windows\system32\shlwapi.dll c:\windows\system32\ole32.dll c:\windows\system32\crypt32.dll c:\windows\system32\msasn1.dll c:\windows\system32\wldap32.dll c:\windows\system32\psapi.dll c:\windows\system32\version.dll c:\windows\system32\wininet.dll c:\windows\system32\normaliz.dll c:\windows\system32\iertutil.dll c:\program files\lavasoft\ad-aware 2007\update.dll c:\windows\system32\wsock32.dll c:\windows\system32\ws2_32.dll c:\windows\system32\ws2help.dll c:\windows\system32\imm32.dll c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\comctl32.dll c:\windows\system32\comctl32.dll c:\windows\system32\rsaenh.dll c:\windows\system32\uxtheme.dll c:\windows\system32\msctfime.ime C:\PROGRAM FILES\COMMON FILES\SYMANTEC SHARED\CCSETMGR.EXE c:\program files\common files\symantec shared\ccsetmgr.exe c:\windows\system32\ntdll.dll c:\windows\system32\kernel32.dll c:\windows\system32\user32.dll c:\windows\system32\gdi32.dll c:\windows\system32\advapi32.dll c:\windows\system32\rpcrt4.dll c:\windows\system32\ole32.dll c:\windows\system32\msvcrt.dll c:\windows\system32\oleaut32.dll c:\windows\system32\shlwapi.dll c:\windows\system32\msvcp71.dll c:\windows\system32\msvcr71.dll c:\program files\common files\symantec shared\ccl30.dll c:\windows\system32\shell32.dll c:\windows\system32\ws2_32.dll c:\windows\system32\ws2help.dll c:\windows\system32\version.dll c:\windows\system32\imm32.dll c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\comctl32.dll c:\windows\system32\comctl32.dll c:\windows\system32\dbghelp.dll c:\windows\system32\secur32.dll c:\windows\system32\wtsapi32.dll c:\windows\system32\winsta.dll c:\windows\system32\netapi32.dll c:\program files\common files\symantec shared\ccvrtrst.dll c:\windows\system32\setupapi.dll c:\windows\system32\wsock32.dll c:\windows\system32\crypt32.dll c:\windows\system32\msasn1.dll c:\windows\system32\wintrust.dll c:\windows\system32\imagehlp.dll c:\windows\system32\xpsp2res.dll c:\windows\system32\clbcatq.dll c:\windows\system32\comres.dll c:\windows\system32\msi.dll c:\windows\system32\sxs.dll c:\windows\system32\rsaenh.dll c:\windows\system32\uxtheme.dll c:\windows\system32\userenv.dll c:\program files\common files\symantec shared\ccsetevt.dll C:\WINDOWS\SYSTEM32\CISVC.EXE c:\windows\system32\cisvc.exe c:\windows\system32\ntdll.dll c:\windows\system32\kernel32.dll c:\windows\system32\query.dll c:\windows\system32\msvcrt.dll c:\windows\system32\user32.dll c:\windows\system32\gdi32.dll c:\windows\system32\rpcrt4.dll c:\windows\system32\advapi32.dll c:\windows\system32\oleaut32.dll c:\windows\system32\ole32.dll c:\windows\system32\shell32.dll c:\windows\system32\shlwapi.dll c:\windows\system32\shimeng.dll c:\windows\apppatch\acgenral.dll c:\windows\system32\winmm.dll c:\windows\system32\msacm32.dll c:\windows\system32\version.dll c:\windows\system32\userenv.dll c:\windows\system32\uxtheme.dll c:\windows\system32\imm32.dll c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\comctl32.dll c:\windows\system32\comctl32.dll c:\windows\system32\clbcatq.dll c:\windows\system32\comres.dll c:\windows\system32\ntmarta.dll c:\windows\system32\wldap32.dll c:\windows\system32\samlib.dll c:\windows\system32\apphelp.dll C:\WINDOWS\SYSTEM32\GEARSEC.EXE c:\windows\system32\gearsec.exe c:\windows\system32\ntdll.dll c:\windows\system32\kernel32.dll c:\windows\system32\user32.dll c:\windows\system32\gdi32.dll c:\windows\system32\advapi32.dll c:\windows\system32\rpcrt4.dll c:\windows\system32\imm32.dll C:\PROGRAM FILES\GOOGLE\COMMON\GOOGLE UPDATER\GOOGLEUPDATERSERVICE.EXE c:\program files\google\common\google updater\googleupdaterservice.exe c:\windows\system32\ntdll.dll c:\windows\system32\kernel32.dll c:\windows\system32\user32.dll c:\windows\system32\gdi32.dll c:\windows\system32\ole32.dll c:\windows\system32\advapi32.dll c:\windows\system32\rpcrt4.dll c:\windows\system32\msvcrt.dll c:\windows\system32\oleaut32.dll c:\windows\system32\shlwapi.dll c:\windows\system32\crypt32.dll c:\windows\system32\msasn1.dll c:\windows\system32\shell32.dll c:\windows\system32\version.dll c:\windows\system32\wintrust.dll c:\windows\system32\imagehlp.dll c:\windows\system32\imm32.dll c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\comctl32.dll c:\windows\system32\comctl32.dll c:\windows\system32\uxtheme.dll c:\windows\system32\xpsp2res.dll c:\windows\system32\clbcatq.dll c:\windows\system32\comres.dll C:\PROGRAM FILES\NORTON GHOST\AGENT\VPROSVC.EXE c:\program files\norton ghost\agent\vprosvc.exe c:\windows\system32\ntdll.dll c:\windows\system32\kernel32.dll c:\windows\system32\shlwapi.dll c:\windows\system32\advapi32.dll c:\windows\system32\rpcrt4.dll c:\windows\system32\gdi32.dll c:\windows\system32\user32.dll c:\windows\system32\msvcrt.dll c:\windows\system32\version.dll c:\windows\system32\netapi32.dll c:\windows\system32\ws2_32.dll c:\windows\system32\ws2help.dll c:\windows\system32\psapi.dll c:\windows\system32\ole32.dll c:\windows\system32\oleaut32.dll c:\windows\system32\mpr.dll c:\windows\system32\dbghelp.dll c:\windows\system32\iphlpapi.dll c:\windows\system32\imm32.dll c:\windows\system32\xpsp2res.dll c:\windows\system32\clbcatq.dll c:\windows\system32\comres.dll c:\windows\system32\shfolder.dll c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\comctl32.dll c:\windows\system32\comctl32.dll c:\windows\system32\msvcr71.dll c:\windows\system32\shell32.dll c:\windows\system32\msvcp71.dll c:\windows\system32\setupapi.dll c:\program files\common files\symantec shared\ccl35.dll c:\windows\system32\crypt32.dll c:\windows\system32\msasn1.dll c:\windows\system32\wintrust.dll c:\windows\system32\imagehlp.dll c:\windows\system32\rsaenh.dll c:\windows\system32\uxtheme.dll c:\windows\system32\userenv.dll c:\windows\system32\secur32.dll c:\windows\system32\msi.dll c:\windows\system32\sxs.dll c:\windows\system32\apphelp.dll c:\windows\system32\msxml3.dll c:\windows\system32\urlmon.dll c:\windows\system32\iertutil.dll c:\program files\norton ghost\shared\vproobj.dll c:\program files\norton ghost\shared\notifyhandler.dll c:\program files\norton ghost\shared\errorgui.dll c:\windows\system32\winspool.drv c:\program files\norton ghost\shared\vproscheduler.dll c:\program files\norton ghost\agent\vproimaging.dll c:\program files\norton ghost\agent\vprosme.dll c:\program files\norton ghost\agent\gwrks32.dll c:\program files\norton ghost\agent\gearaw32.dll c:\windows\system32\winmm.dll c:\program files\norton ghost\agent\gwlangen.dll C:\WINDOWS\SYSTEM32\NVSVC32.EXE c:\windows\system32\nvsvc32.exe c:\windows\system32\ntdll.dll c:\windows\system32\kernel32.dll c:\windows\system32\user32.dll c:\windows\system32\gdi32.dll c:\windows\system32\advapi32.dll c:\windows\system32\rpcrt4.dll c:\windows\system32\userenv.dll c:\windows\system32\msvcrt.dll c:\windows\system32\powrprof.dll c:\windows\system32\imm32.dll c:\windows\system32\wtsapi32.dll c:\windows\system32\winsta.dll c:\windows\system32\netapi32.dll c:\windows\system32\shlwapi.dll c:\windows\system32\comctl32.dll c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\comctl32.dll c:\windows\system32\uxtheme.dll c:\windows\system32\msctfime.ime c:\windows\system32\ole32.dll c:\windows\system32\wintrust.dll c:\windows\system32\crypt32.dll c:\windows\system32\msasn1.dll c:\windows\system32\imagehlp.dll c:\windows\system32\secur32.dll c:\windows\system32\msv1_0.dll c:\windows\system32\ws2_32.dll c:\windows\system32\ws2help.dll c:\windows\system32\iphlpapi.dll c:\windows\system32\apphelp.dll c:\windows\system32\version.dll c:\windows\system32\ntmarta.dll c:\windows\system32\wldap32.dll c:\windows\system32\samlib.dll C:\WINDOWS\SYSTEM32\SVCHOST.EXE c:\windows\system32\svchost.exe c:\windows\system32\ntdll.dll c:\windows\system32\kernel32.dll c:\windows\system32\advapi32.dll c:\windows\system32\rpcrt4.dll c:\windows\system32\shimeng.dll c:\windows\apppatch\acgenral.dll c:\windows\system32\user32.dll c:\windows\system32\gdi32.dll c:\windows\system32\winmm.dll c:\windows\system32\ole32.dll c:\windows\system32\msvcrt.dll c:\windows\system32\oleaut32.dll c:\windows\system32\msacm32.dll c:\windows\system32\version.dll c:\windows\system32\shell32.dll c:\windows\system32\shlwapi.dll c:\windows\system32\userenv.dll c:\windows\system32\uxtheme.dll c:\windows\system32\imm32.dll c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\comctl32.dll c:\windows\system32\comctl32.dll c:\windows\system32\wiaservc.dll c:\windows\system32\cfgmgr32.dll c:\windows\system32\setupapi.dll c:\windows\system32\mscms.dll c:\windows\system32\winspool.drv c:\windows\system32\winsta.dll c:\windows\system32\netapi32.dll c:\windows\system32\xpsp2res.dll c:\windows\system32\clbcatq.dll c:\windows\system32\comres.dll c:\windows\system32\wintrust.dll c:\windows\system32\crypt32.dll c:\windows\system32\msasn1.dll c:\windows\system32\imagehlp.dll c:\windows\system32\cncc600.dll c:\windows\system32\cncl600.dll c:\windows\system32\actxprxy.dll c:\windows\system32\sti.dll C:\PROGRAM FILES\COMMON FILES\SYMANTEC SHARED\CCEVTMGR.EXE c:\program files\common files\symantec shared\ccevtmgr.exe c:\windows\system32\ntdll.dll c:\windows\system32\kernel32.dll c:\windows\system32\user32.dll c:\windows\system32\gdi32.dll c:\windows\system32\ole32.dll c:\windows\system32\advapi32.dll c:\windows\system32\rpcrt4.dll c:\windows\system32\msvcrt.dll c:\windows\system32\oleaut32.dll c:\windows\system32\shlwapi.dll c:\windows\system32\msvcp71.dll c:\windows\system32\msvcr71.dll c:\windows\system32\imm32.dll c:\program files\common files\symantec shared\ccl30.dll c:\windows\system32\shell32.dll c:\windows\system32\ws2_32.dll c:\windows\system32\ws2help.dll c:\windows\system32\version.dll c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\comctl32.dll c:\windows\system32\comctl32.dll c:\windows\system32\dbghelp.dll c:\windows\system32\secur32.dll c:\windows\system32\xpsp2res.dll c:\windows\system32\crypt32.dll c:\windows\system32\msasn1.dll c:\windows\system32\wintrust.dll c:\windows\system32\imagehlp.dll c:\windows\system32\rsaenh.dll c:\windows\system32\uxtheme.dll c:\windows\system32\userenv.dll c:\windows\system32\netapi32.dll c:\windows\system32\clbcatq.dll c:\windows\system32\comres.dll c:\windows\system32\msi.dll c:\windows\system32\sxs.dll c:\windows\system32\wtsapi32.dll c:\windows\system32\winsta.dll c:\program files\common files\symantec shared\ccvrtrst.dll c:\windows\system32\setupapi.dll c:\windows\system32\wsock32.dll c:\progra~1\common~1\symant~1\cclogin.dll c:\progra~1\common~1\symant~1\ccsetevt.dll C:\PROGRAM FILES\ALWIL SOFTWARE\AVAST4\ASHMAISV.EXE c:\program files\alwil software\avast4\ashmaisv.exe c:\windows\system32\ntdll.dll c:\windows\system32\kernel32.dll c:\windows\system32\wsock32.dll c:\windows\system32\ws2_32.dll c:\windows\system32\msvcrt.dll c:\windows\system32\ws2help.dll c:\windows\system32\advapi32.dll c:\windows\system32\rpcrt4.dll c:\program files\alwil software\avast4\ashbase.dll c:\windows\system32\version.dll c:\windows\system32\user32.dll c:\windows\system32\gdi32.dll c:\windows\system32\ole32.dll c:\windows\system32\oleaut32.dll c:\windows\system32\msvcp71.dll c:\windows\system32\msvcr71.dll c:\program files\alwil software\avast4\aswcmnos.dll c:\program files\alwil software\avast4\aswcmnb.dll c:\program files\alwil software\avast4\aswcmns.dll c:\windows\system32\comctl32.dll c:\program files\alwil software\avast4\aavm4h.dll c:\program files\alwil software\avast4\ashtask.dll c:\program files\alwil software\avast4\aswaux.dll c:\windows\system32\shell32.dll c:\windows\system32\shlwapi.dll c:\program files\alwil software\avast4\ahresmai.dll c:\windows\system32\imm32.dll c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\comctl32.dll c:\windows\system32\dbghelp.dll c:\program files\alwil software\avast4\english\base.dll c:\program files\alwil software\avast4\aswengin.dll c:\program files\alwil software\avast4\aswscan.dll c:\windows\system32\mswsock.dll c:\windows\system32\dnsapi.dll c:\windows\system32\iphlpapi.dll c:\windows\system32\winrnr.dll c:\windows\system32\wldap32.dll c:\windows\system32\rasadhlp.dll c:\program files\alwil software\avast4\ashuint.dll c:\program files\alwil software\avast4\xt1922.dll c:\windows\system32\mfc71.dll c:\windows\system32\riched20.dll c:\program files\alwil software\avast4\english\lang.dll c:\windows\system32\uxtheme.dll c:\program files\alwil software\avast4\english\langmai.dll c:\windows\system32\msctfime.ime c:\windows\system32\psapi.dll c:\windows\system32\hnetcfg.dll c:\windows\system32\wshtcpip.dll C:\PROGRAM FILES\ALWIL SOFTWARE\AVAST4\ASHWEBSV.EXE c:\program files\alwil software\avast4\ashwebsv.exe c:\windows\system32\ntdll.dll c:\windows\system32\kernel32.dll c:\windows\system32\ws2_32.dll c:\windows\system32\msvcrt.dll c:\windows\system32\ws2help.dll c:\windows\system32\advapi32.dll c:\windows\system32\rpcrt4.dll c:\program files\alwil software\avast4\ashbase.dll c:\windows\system32\wsock32.dll c:\windows\system32\version.dll c:\windows\system32\user32.dll c:\windows\system32\gdi32.dll c:\windows\system32\ole32.dll c:\windows\system32\oleaut32.dll c:\windows\system32\msvcp71.dll c:\windows\system32\msvcr71.dll c:\program files\alwil software\avast4\aswcmnos.dll c:\program files\alwil software\avast4\aswcmnb.dll c:\program files\alwil software\avast4\aswcmns.dll c:\windows\system32\comctl32.dll c:\program files\alwil software\avast4\aavm4h.dll c:\program files\alwil software\avast4\ashtask.dll c:\program files\alwil software\avast4\aswaux.dll c:\windows\system32\shell32.dll c:\windows\system32\shlwapi.dll c:\windows\system32\imm32.dll c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\comctl32.dll c:\windows\system32\dbghelp.dll c:\program files\alwil software\avast4\english\base.dll c:\windows\system32\psapi.dll c:\windows\system32\mswsock.dll c:\windows\system32\hnetcfg.dll c:\windows\system32\wshtcpip.dll c:\windows\system32\security.dll c:\windows\system32\secur32.dll c:\program files\alwil software\avast4\ashwsftr.dll c:\program files\alwil software\avast4\aswscan.dll c:\windows\system32\oleacc.dll c:\windows\system32\msvcp60.dll c:\windows\system32\winspool.drv c:\progra~1\alwils~1\avast4\ahresws.dll c:\program files\alwil software\avast4\aswengin.dll c:\windows\system32\rsvpsp.dll C:\PROGRAM FILES\COMMON FILES\SYMANTEC SHARED\CCPD-LC\SYMLCSVC.EXE c:\program files\common files\symantec shared\ccpd-lc\symlcsvc.exe c:\windows\system32\ntdll.dll c:\windows\system32\kernel32.dll c:\windows\system32\advapi32.dll c:\windows\system32\rpcrt4.dll c:\windows\system32\user32.dll c:\windows\system32\gdi32.dll c:\windows\system32\version.dll c:\windows\system32\ole32.dll c:\windows\system32\msvcrt.dll c:\windows\system32\oleaut32.dll c:\windows\system32\shlwapi.dll c:\windows\system32\imm32.dll c:\program files\common files\symantec shared\ccpd-lc\symlcnet.dll c:\windows\system32\msvcr71.dll c:\windows\system32\xpsp2res.dll c:\windows\system32\clbcatq.dll c:\windows\system32\comres.dll c:\windows\system32\msi.dll c:\windows\system32\sxs.dll C:\WINDOWS\SYSTEM32\ALG.EXE c:\windows\system32\alg.exe c:\windows\system32\ntdll.dll c:\windows\system32\kernel32.dll c:\windows\system32\msvcrt.dll c:\windows\system32\atl.dll c:\windows\system32\user32.dll c:\windows\system32\gdi32.dll c:\windows\system32\advapi32.dll c:\windows\system32\rpcrt4.dll c:\windows\system32\ole32.dll c:\windows\system32\oleaut32.dll c:\windows\system32\wsock32.dll c:\windows\system32\ws2_32.dll c:\windows\system32\ws2help.dll c:\windows\system32\mswsock.dll c:\windows\system32\shimeng.dll c:\windows\apppatch\acgenral.dll c:\windows\system32\winmm.dll c:\windows\system32\msacm32.dll c:\windows\system32\version.dll c:\windows\system32\shell32.dll c:\windows\system32\shlwapi.dll c:\windows\system32\userenv.dll c:\windows\system32\uxtheme.dll c:\windows\system32\imm32.dll c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\comctl32.dll c:\windows\system32\comctl32.dll c:\windows\system32\clbcatq.dll c:\windows\system32\comres.dll c:\windows\system32\xpsp2res.dll c:\windows\system32\hnetcfg.dll c:\windows\system32\wshtcpip.dll C:\WINDOWS\SYSTEM32\CTFMON.EXE c:\windows\system32\ctfmon.exe c:\windows\system32\ntdll.dll c:\windows\system32\kernel32.dll c:\windows\system32\msvcrt.dll c:\windows\system32\advapi32.dll c:\windows\system32\rpcrt4.dll c:\windows\system32\user32.dll c:\windows\system32\gdi32.dll c:\windows\system32\msctf.dll c:\windows\system32\msutb.dll c:\windows\system32\shimeng.dll c:\windows\apppatch\acgenral.dll c:\windows\system32\winmm.dll c:\windows\system32\ole32.dll c:\windows\system32\oleaut32.dll c:\windows\system32\msacm32.dll c:\windows\system32\version.dll c:\windows\system32\shell32.dll c:\windows\system32\shlwapi.dll c:\windows\system32\userenv.dll c:\windows\system32\uxtheme.dll c:\windows\system32\imm32.dll c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\comctl32.dll c:\windows\system32\msctfime.ime c:\program files\logitech\setpoint\lgscroll.dll c:\windows\system32\msvcr71.dll c:\windows\system32\msvcp71.dll c:\program files\logitech\setpoint\gamehook.dll C:\PROGRA~1\ALWILS~1\AVAST4\ASHDISP.EXE c:\progra~1\alwils~1\avast4\ashdisp.exe c:\windows\system32\ntdll.dll c:\windows\system32\kernel32.dll c:\windows\system32\rpcrt4.dll c:\windows\system32\advapi32.dll c:\progra~1\alwils~1\avast4\aswcmnos.dll c:\windows\system32\user32.dll c:\windows\system32\gdi32.dll c:\windows\system32\msvcp71.dll c:\windows\system32\msvcr71.dll c:\windows\system32\wsock32.dll c:\windows\system32\ws2_32.dll c:\windows\system32\msvcrt.dll c:\windows\system32\ws2help.dll c:\progra~1\alwils~1\avast4\ashbase.dll c:\windows\system32\version.dll c:\windows\system32\ole32.dll c:\windows\system32\oleaut32.dll c:\progra~1\alwils~1\avast4\aswcmnb.dll c:\progra~1\alwils~1\avast4\aswcmns.dll c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\comctl32.dll c:\windows\system32\shlwapi.dll c:\progra~1\alwils~1\avast4\ashtask.dll c:\progra~1\alwils~1\avast4\aswaux.dll c:\windows\system32\shell32.dll c:\progra~1\alwils~1\avast4\aavm4h.dll c:\windows\system32\imm32.dll c:\windows\system32\dbghelp.dll c:\program files\alwil software\avast4\english\base.dll c:\program files\alwil software\avast4\english\lang.dll c:\windows\system32\mfc71.dll c:\progra~1\alwils~1\avast4\aavmrpch.dll c:\program files\alwil software\avast4\ahruimai.dll c:\progra~1\alwils~1\avast4\ashuint.dll c:\progra~1\alwils~1\avast4\xt1922.dll c:\program files\alwil software\avast4\ahruimes.dll c:\program files\alwil software\avast4\ahruins.dll c:\program files\alwil software\avast4\ahruiout.dll c:\windows\system32\mapi32.dll c:\program files\alwil software\avast4\ahruip2p.dll c:\program files\alwil software\avast4\ahruistd.dll c:\program files\alwil software\avast4\ahruiws.dll c:\windows\system32\uxtheme.dll c:\windows\system32\msctf.dll c:\windows\system32\msctfime.ime c:\windows\system32\secur32.dll c:\program files\logitech\setpoint\lgscroll.dll c:\program files\logitech\setpoint\gamehook.dll C:\PROGRAM FILES\MULTIMEDIA CARD READER\SHWICON2K.EXE c:\program files\multimedia card reader\shwicon2k.exe c:\windows\system32\ntdll.dll c:\windows\system32\kernel32.dll c:\windows\system32\user32.dll c:\windows\system32\gdi32.dll c:\windows\system32\advapi32.dll c:\windows\system32\rpcrt4.dll c:\windows\system32\shell32.dll c:\windows\system32\msvcrt.dll c:\windows\system32\shlwapi.dll c:\windows\system32\ole32.dll c:\windows\system32\setupapi.dll c:\windows\system32\comctl32.dll c:\windows\system32\imm32.dll c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\comctl32.dll c:\windows\system32\uxtheme.dll c:\windows\system32\msctf.dll c:\windows\system32\msctfime.ime c:\windows\system32\wintrust.dll c:\windows\system32\crypt32.dll c:\windows\system32\msasn1.dll c:\windows\system32\imagehlp.dll c:\windows\system32\xpsp2res.dll c:\program files\logitech\setpoint\lgscroll.dll c:\windows\system32\msvcr71.dll c:\windows\system32\msvcp71.dll c:\program files\logitech\setpoint\gamehook.dll C:\PROGRAM FILES\JAVA\JRE1.6.0_01\BIN\JUSCHED.EXE c:\program files\java\jre1.6.0_01\bin\jusched.exe c:\windows\system32\ntdll.dll c:\windows\system32\kernel32.dll c:\windows\system32\advapi32.dll c:\windows\system32\rpcrt4.dll c:\windows\system32\gdi32.dll c:\windows\system32\user32.dll c:\windows\system32\wininet.dll c:\windows\system32\msvcrt.dll c:\windows\system32\shlwapi.dll c:\windows\system32\normaliz.dll c:\windows\system32\iertutil.dll c:\windows\system32\ole32.dll c:\windows\system32\shell32.dll c:\windows\system32\oleaut32.dll c:\program files\java\jre1.6.0_01\bin\msvcr71.dll c:\windows\system32\imm32.dll c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\comctl32.dll c:\windows\system32\comctl32.dll c:\windows\system32\uxtheme.dll c:\windows\system32\msctf.dll C:\PROGRAM FILES\CANON\MYPRINTER\BJMYPRT.EXE c:\program files\canon\myprinter\bjmyprt.exe c:\windows\system32\ntdll.dll c:\windows\system32\kernel32.dll c:\windows\system32\user32.dll c:\windows\system32\gdi32.dll c:\windows\system32\winspool.drv c:\windows\system32\msvcrt.dll c:\windows\system32\rpcrt4.dll c:\windows\system32\advapi32.dll c:\windows\system32\shell32.dll c:\windows\system32\shlwapi.dll c:\windows\system32\comctl32.dll c:\windows\system32\imm32.dll c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\comctl32.dll c:\windows\system32\uxtheme.dll c:\program files\canon\myprinter\bjmyres.dll c:\windows\system32\msctf.dll c:\windows\system32\msctfime.ime c:\windows\system32\ole32.dll c:\program files\logitech\setpoint\gamehook.dll c:\program files\logitech\setpoint\lgscroll.dll c:\windows\system32\msvcr71.dll c:\windows\system32\msvcp71.dll C:\PROGRAM FILES\NVIDIA CORPORATION\NVMIXER\NVMIXERTRAY.EXE c:\program files\nvidia corporation\nvmixer\nvmixertray.exe c:\windows\system32\ntdll.dll c:\windows\system32\kernel32.dll c:\windows\system32\winmm.dll c:\windows\system32\user32.dll c:\windows\system32\gdi32.dll c:\windows\system32\advapi32.dll c:\windows\system32\rpcrt4.dll c:\windows\system32\shell32.dll c:\windows\system32\msvcrt.dll c:\windows\system32\shlwapi.dll c:\windows\system32\ole32.dll c:\windows\system32\oleaut32.dll c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\comctl32.dll c:\windows\system32\imm32.dll c:\windows\system32\uxtheme.dll c:\windows\system32\msctf.dll c:\program files\nvidia corporation\nvmixer\nvmixerenu.dll c:\windows\system32\msctfime.ime c:\windows\system32\clbcatq.dll c:\windows\system32\comres.dll c:\windows\system32\version.dll c:\program files\common files\nvidia shared\audio\nvaudiomod.dll c:\windows\system32\dsound.dll c:\windows\system32\wintrust.dll c:\windows\system32\crypt32.dll c:\windows\system32\msasn1.dll c:\windows\system32\imagehlp.dll c:\windows\system32\wdmaud.drv c:\windows\system32\msacm32.drv c:\windows\system32\msacm32.dll c:\windows\system32\midimap.dll c:\windows\system32\ksuser.dll c:\windows\system32\wtsapi32.dll c:\windows\system32\winsta.dll c:\windows\system32\netapi32.dll c:\program files\logitech\setpoint\gamehook.dll c:\program files\logitech\setpoint\lgscroll.dll c:\windows\system32\msvcr71.dll c:\windows\system32\msvcp71.dll C:\PROGRAM FILES\COMMON FILES\AHEAD\LIB\NMBGMONITOR.EXE c:\program files\common files\ahead\lib\nmbgmonitor.exe c:\windows\system32\ntdll.dll c:\windows\system32\kernel32.dll c:\windows\system32\user32.dll c:\windows\system32\gdi32.dll c:\windows\system32\advapi32.dll c:\windows\system32\rpcrt4.dll c:\windows\system32\ole32.dll c:\windows\system32\msvcrt.dll c:\windows\system32\oleaut32.dll c:\windows\system32\ws2_32.dll c:\windows\system32\ws2help.dll c:\windows\system32\shlwapi.dll c:\program files\common files\ahead\lib\msvcp71.dll c:\program files\common files\ahead\lib\msvcr71.dll c:\windows\system32\imm32.dll c:\windows\system32\uxtheme.dll c:\windows\system32\msctf.dll c:\windows\system32\clbcatq.dll c:\windows\system32\comres.dll c:\windows\system32\version.dll c:\windows\system32\xpsp2res.dll c:\program files\common files\ahead\lib\advrcntr2.dll c:\windows\system32\wininet.dll c:\windows\system32\normaliz.dll c:\windows\system32\iertutil.dll c:\windows\system32\comdlg32.dll c:\windows\system32\comctl32.dll c:\windows\system32\shell32.dll c:\windows\system32\winspool.drv c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\comctl32.dll c:\windows\system32\faultrep.dll c:\windows\system32\userenv.dll c:\windows\system32\winsta.dll c:\windows\system32\netapi32.dll c:\windows\system32\wtsapi32.dll c:\windows\system32\setupapi.dll c:\program files\logitech\setpoint\gamehook.dll c:\program files\logitech\setpoint\lgscroll.dll c:\windows\system32\msctfime.ime c:\program files\common files\ahead\lib\nmindexstoresvrps.dll c:\program files\common files\ahead\lib\nmdataservices.dll c:\windows\system32\iprop.dll C:\PROGRAM FILES\LOGITECH\SETPOINT\SETPOINT.EXE c:\program files\logitech\setpoint\setpoint.exe c:\windows\system32\ntdll.dll c:\windows\system32\kernel32.dll c:\windows\system32\winmm.dll c:\windows\system32\user32.dll c:\windows\system32\gdi32.dll c:\windows\system32\advapi32.dll c:\windows\system32\rpcrt4.dll c:\program files\logitech\setpoint\kemutil.dll c:\windows\system32\version.dll c:\windows\system32\mfc71u.dll c:\windows\system32\msvcr71.dll c:\windows\system32\shlwapi.dll c:\windows\system32\msvcrt.dll c:\windows\system32\msvcp71.dll c:\program files\logitech\setpoint\setpointcom.dll c:\windows\system32\shell32.dll c:\windows\system32\ole32.dll c:\windows\system32\oleaut32.dll c:\program files\logitech\setpoint\kemutb.dll c:\program files\logitech\setpoint\kgame.dll c:\program files\logitech\setpoint\kemwnd.dll c:\windows\system32\msimg32.dll c:\windows\system32\comctl32.dll c:\windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.2600.2180_x-ww_522f9f82\gdiplus.dll c:\program files\logitech\setpoint\gamehook.dll c:\program files\logitech\setpoint\kemxml.dll c:\program files\logitech\setpoint\lgscroll.dll c:\windows\system32\imm32.dll c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\comctl32.dll c:\windows\system32\uxtheme.dll c:\windows\system32\msctf.dll c:\windows\system32\msctfime.ime c:\program files\logitech\setpoint\macros\macrocore.dll c:\windows\system32\comdlg32.dll c:\windows\system32\atl71.dll c:\program files\common files\logitech\khal\khalapi.dll c:\windows\system32\setupapi.dll c:\windows\system32\netapi32.dll c:\windows\system32\apphelp.dll c:\windows\system32\clbcatq.dll c:\windows\system32\comres.dll c:\windows\system32\iertutil.dll c:\windows\system32\wininet.dll c:\windows\system32\normaliz.dll c:\windows\system32\urlmon.dll c:\windows\system32\rsaenh.dll c:\windows\system32\secur32.dll c:\program files\logitech\setpoint\lcabhandler.dll C:\PROGRAM FILES\COMMON FILES\LOGITECH\KHAL\KHALMNPR.EXE c:\program files\common files\logitech\khal\khalmnpr.exe c:\windows\system32\ntdll.dll c:\windows\system32\kernel32.dll c:\windows\system32\user32.dll c:\windows\system32\gdi32.dll c:\windows\system32\advapi32.dll c:\windows\system32\rpcrt4.dll c:\windows\system32\imm32.dll c:\program files\common files\logitech\khal\khalapi.dll c:\windows\system32\setupapi.dll c:\windows\system32\msvcrt.dll c:\windows\system32\uxtheme.dll c:\windows\system32\msctf.dll c:\program files\logitech\setpoint\gamehook.dll c:\program files\logitech\setpoint\lgscroll.dll c:\windows\system32\msvcr71.dll c:\windows\system32\msvcp71.dll c:\windows\system32\msctfime.ime c:\windows\system32\ole32.dll c:\windows\system32\wtsapi32.dll c:\windows\system32\winsta.dll c:\windows\system32\netapi32.dll c:\windows\system32\cfgmgr32.dll c:\windows\system32\hid.dll c:\program files\common files\logitech\khal\khalitch.dll c:\program files\common files\logitech\khal\khalmw.dll c:\program files\common files\logitech\khal\khalhpp.dll c:\windows\system32\winmm.dll c:\windows\system32\wintrust.dll c:\windows\system32\crypt32.dll c:\windows\system32\msasn1.dll c:\windows\system32\imagehlp.dll C:\PROGRAM FILES\COMMON FILES\AHEAD\LIB\NMINDEXSTORESVR.EXE c:\program files\common files\ahead\lib\nmindexstoresvr.exe c:\windows\system32\ntdll.dll c:\windows\system32\kernel32.dll c:\windows\system32\shfolder.dll c:\windows\system32\msvcrt.dll c:\windows\system32\advapi32.dll c:\windows\system32\rpcrt4.dll c:\windows\system32\powrprof.dll c:\windows\system32\user32.dll c:\windows\system32\gdi32.dll c:\windows\system32\shell32.dll c:\windows\system32\shlwapi.dll c:\windows\system32\ole32.dll c:\windows\system32\oleaut32.dll c:\program files\common files\ahead\lib\nmsqldb.dll c:\program files\common files\ahead\lib\msvcp71.dll c:\program files\common files\ahead\lib\msvcr71.dll c:\windows\system32\ws2_32.dll c:\windows\system32\ws2help.dll c:\windows\system32\imm32.dll c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\comctl32.dll c:\windows\system32\comctl32.dll c:\windows\system32\uxtheme.dll c:\windows\system32\msctf.dll c:\program files\logitech\setpoint\gamehook.dll c:\program files\logitech\setpoint\lgscroll.dll c:\windows\system32\msctfime.ime c:\windows\system32\clbcatq.dll c:\windows\system32\comres.dll c:\windows\system32\version.dll c:\program files\common files\ahead\lib\nmlogcxx.dll c:\program files\common files\ahead\lib\log4cxx.dll c:\windows\system32\odbc32.dll c:\windows\system32\comdlg32.dll c:\windows\system32\odbcint.dll c:\windows\system32\xpsp2res.dll c:\program files\common files\ahead\lib\nmcofoundation.dll c:\program files\common files\ahead\lib\nmpluginbase.dll c:\program files\common files\ahead\lib\nmfulltextextraction.dll c:\windows\system32\urlmon.dll c:\windows\system32\iertutil.dll c:\windows\system32\query.dll c:\program files\common files\ahead\lib\nmsearchpluginsimilarimages.dll c:\program files\common files\ahead\lib\neroipp.dll c:\program files\common files\ahead\lib\nmindexstoresvrps.dll c:\program files\common files\ahead\lib\nmdataservices.dll c:\windows\system32\iprop.dll C:\WINDOWS\SYSTEM32\SVCHOST.EXE c:\windows\system32\svchost.exe c:\windows\system32\ntdll.dll c:\windows\system32\kernel32.dll c:\windows\system32\advapi32.dll c:\windows\system32\rpcrt4.dll c:\windows\system32\shimeng.dll c:\windows\apppatch\acgenral.dll c:\windows\system32\user32.dll c:\windows\system32\gdi32.dll c:\windows\system32\winmm.dll c:\windows\system32\ole32.dll c:\windows\system32\msvcrt.dll c:\windows\system32\oleaut32.dll c:\windows\system32\msacm32.dll c:\windows\system32\version.dll c:\windows\system32\shell32.dll c:\windows\system32\shlwapi.dll c:\windows\system32\userenv.dll c:\windows\system32\uxtheme.dll c:\windows\system32\imm32.dll c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\comctl32.dll c:\windows\system32\comctl32.dll c:\windows\system32\ntmarta.dll c:\windows\system32\wldap32.dll c:\windows\system32\samlib.dll c:\windows\system32\xpsp2res.dll c:\windows\system32\w3ssl.dll c:\windows\system32\strmfilt.dll c:\windows\system32\secur32.dll c:\windows\system32\crypt32.dll c:\windows\system32\msasn1.dll c:\windows\system32\httpapi.dll c:\windows\system32\ws2_32.dll c:\windows\system32\ws2help.dll C:\WINDOWS\EXPLORER.EXE c:\windows\explorer.exe c:\windows\system32\ntdll.dll c:\windows\system32\kernel32.dll c:\windows\system32\msvcrt.dll c:\windows\system32\advapi32.dll c:\windows\system32\rpcrt4.dll c:\windows\system32\gdi32.dll c:\windows\system32\user32.dll c:\windows\system32\shlwapi.dll c:\windows\system32\shell32.dll c:\windows\system32\ole32.dll c:\windows\system32\oleaut32.dll c:\windows\system32\browseui.dll c:\windows\system32\shdocvw.dll c:\windows\system32\crypt32.dll c:\windows\system32\msasn1.dll c:\windows\system32\cryptui.dll c:\windows\system32\wintrust.dll c:\windows\system32\imagehlp.dll c:\windows\system32\netapi32.dll c:\windows\system32\wininet.dll c:\windows\system32\normaliz.dll c:\windows\system32\iertutil.dll c:\windows\system32\wldap32.dll c:\windows\system32\version.dll c:\windows\system32\uxtheme.dll c:\windows\system32\shimeng.dll c:\windows\apppatch\acgenral.dll c:\windows\system32\winmm.dll c:\windows\system32\msacm32.dll c:\windows\system32\userenv.dll c:\windows\system32\imm32.dll c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\comctl32.dll c:\windows\system32\comctl32.dll c:\windows\system32\ssqpp.dll c:\windows\system32\shfolder.dll c:\windows\system32\ws2_32.dll c:\windows\system32\ws2help.dll c:\windows\system32\urlmon.dll c:\windows\system32\secur32.dll c:\windows\system32\msctf.dll c:\program files\logitech\setpoint\gamehook.dll c:\program files\logitech\setpoint\lgscroll.dll c:\windows\system32\msvcr71.dll c:\windows\system32\msvcp71.dll c:\windows\system32\xpsp2res.dll c:\windows\system32\msctfime.ime c:\windows\system32\apphelp.dll c:\windows\system32\clbcatq.dll c:\windows\system32\comres.dll c:\windows\system32\cscui.dll c:\windows\system32\cscdll.dll c:\windows\system32\themeui.dll c:\windows\system32\msimg32.dll c:\windows\system32\actxprxy.dll c:\windows\system32\linkinfo.dll c:\windows\system32\ntshrui.dll c:\windows\system32\atl.dll c:\windows\system32\msi.dll c:\windows\system32\ieframe.dll c:\windows\system32\psapi.dll c:\windows\system32\mlang.dll c:\windows\system32\mslbui.dll c:\windows\system32\sxs.dll c:\windows\system32\setupapi.dll c:\windows\system32\winsta.dll c:\windows\system32\webcheck.dll c:\windows\system32\stobject.dll c:\windows\system32\batmeter.dll c:\windows\system32\powrprof.dll c:\windows\system32\wtsapi32.dll c:\windows\system32\wpdshserviceobj.dll c:\windows\system32\winhttp.dll c:\windows\system32\mydocs.dll c:\windows\system32\portabledevicetypes.dll c:\windows\system32\portabledeviceapi.dll c:\windows\system32\wdmaud.drv c:\windows\system32\msacm32.drv c:\windows\system32\midimap.dll c:\windows\system32\netshell.dll c:\windows\system32\rtutils.dll c:\windows\system32\credui.dll c:\windows\system32\iphlpapi.dll c:\windows\system32\wzcsapi.dll c:\windows\system32\ssqolkk.dll c:\progra~1\wifd1f~1\mpshhook.dll c:\windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.42_x-ww_0de06acd\msvcr80.dll c:\windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.42_x-ww_0de06acd\msvcp80.dll c:\windows\system32\rsaenh.dll c:\windows\system32\mshtml.dll c:\windows\system32\msls31.dll c:\windows\system32\mpr.dll c:\windows\system32\drprov.dll c:\windows\system32\ntlanman.dll c:\windows\system32\netui0.dll c:\windows\system32\netui1.dll c:\windows\system32\netrap.dll c:\windows\system32\samlib.dll c:\windows\system32\davclnt.dll c:\windows\system32\rasapi32.dll c:\windows\system32\rasman.dll c:\windows\system32\tapi32.dll c:\windows\system32\msv1_0.dll c:\windows\system32\sensapi.dll c:\windows\system32\mswsock.dll c:\windows\system32\rasadhlp.dll c:\windows\system32\dnsapi.dll c:\windows\system32\winrnr.dll c:\windows\system32\mprapi.dll c:\windows\system32\activeds.dll c:\windows\system32\adsldpc.dll c:\windows\system32\hnetcfg.dll c:\windows\system32\wshtcpip.dll c:\windows\system32\msisip.dll c:\windows\system32\wshext.dll c:\windows\system32\mfc42.dll c:\windows\system32\comdlg32.dll c:\progra~1\micros~2\office10\mcps.dll c:\windows\system32\msvcp60.dll C:\PROGRAM FILES\INTERNET EXPLORER\IEXPLORE.EXE c:\program files\internet explorer\iexplore.exe c:\windows\system32\ntdll.dll c:\windows\system32\kernel32.dll c:\windows\system32\advapi32.dll c:\windows\system32\rpcrt4.dll c:\windows\system32\gdi32.dll c:\windows\system32\user32.dll c:\windows\system32\msvcrt.dll c:\windows\system32\shlwapi.dll c:\windows\system32\shell32.dll c:\windows\system32\ole32.dll c:\windows\system32\urlmon.dll c:\windows\system32\oleaut32.dll c:\windows\system32\iertutil.dll c:\windows\system32\version.dll c:\windows\system32\imm32.dll c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\comctl32.dll c:\windows\system32\comctl32.dll c:\windows\system32\ieframe.dll c:\windows\system32\psapi.dll c:\windows\system32\uxtheme.dll c:\windows\system32\msctf.dll c:\program files\logitech\setpoint\gamehook.dll c:\program files\logitech\setpoint\lgscroll.dll c:\windows\system32\msvcr71.dll c:\windows\system32\msvcp71.dll c:\windows\system32\xpsp2res.dll c:\windows\system32\msctfime.ime c:\windows\system32\ieui.dll c:\windows\system32\msimg32.dll c:\windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.2600.2180_x-ww_522f9f82\gdiplus.dll c:\windows\system32\xmllite.dll c:\windows\system32\apphelp.dll c:\windows\system32\clbcatq.dll c:\windows\system32\comres.dll c:\windows\system32\msimtf.dll c:\windows\system32\secur32.dll c:\windows\system32\mslbui.dll c:\windows\system32\cscui.dll c:\windows\system32\cscdll.dll c:\windows\system32\setupapi.dll c:\program files\microsoft office\office10\msohev.dll c:\windows\ime\sptip.dll c:\windows\system32\oleacc.dll c:\windows\system32\msvcp60.dll c:\windows\ime\spgrmr.dll c:\program files\internet explorer\ieproxy.dll c:\windows\system32\msi.dll c:\windows\system32\sxs.dll c:\windows\system32\wininet.dll c:\windows\system32\normaliz.dll c:\windows\system32\mlang.dll c:\windows\system32\ws2_32.dll c:\windows\system32\ws2help.dll c:\program files\google\googletoolbar2.dll c:\windows\system32\crypt32.dll c:\windows\system32\msasn1.dll c:\windows\system32\imagehlp.dll c:\windows\system32\winmm.dll c:\windows\system32\wintrust.dll c:\windows\system32\wsock32.dll c:\windows\system32\msxml3.dll c:\windows\system32\netapi32.dll c:\windows\system32\dbghelp.dll c:\windows\system32\ntshrui.dll c:\windows\system32\atl.dll c:\windows\system32\userenv.dll c:\windows\system32\mpr.dll c:\windows\system32\drprov.dll c:\windows\system32\ntlanman.dll c:\windows\system32\netui0.dll c:\windows\system32\netui1.dll c:\windows\system32\netrap.dll c:\windows\system32\samlib.dll c:\windows\system32\davclnt.dll c:\windows\system32\msgina.dll c:\windows\system32\winsta.dll c:\windows\system32\odbc32.dll c:\windows\system32\comdlg32.dll c:\windows\system32\odbcint.dll c:\windows\system32\rasapi32.dll c:\windows\system32\rasman.dll c:\windows\system32\tapi32.dll c:\windows\system32\rtutils.dll c:\windows\system32\sensapi.dll c:\windows\system32\msv1_0.dll c:\windows\system32\iphlpapi.dll c:\program files\adobe\acrobat 6.0\reader\activex\acroiehelper.dll c:\progra~1\spybot~1\sdhelper.dll c:\windows\system32\olepro32.dll c:\program files\java\jre1.6.0_01\bin\ssv.dll c:\windows\system32\ssqpp.dll c:\windows\system32\shfolder.dll c:\program files\google\googletoolbarnotifier\2.0.301.7164\swg.dll c:\windows\system32\mswsock.dll c:\windows\system32\hnetcfg.dll c:\windows\system32\wshtcpip.dll c:\windows\system32\rasadhlp.dll c:\windows\system32\dnsapi.dll c:\windows\system32\actxprxy.dll c:\windows\system32\mshtml.dll c:\windows\system32\msls31.dll c:\windows\system32\ieapfltr.dll c:\windows\system32\ntmarta.dll c:\windows\system32\wldap32.dll c:\windows\system32\jscript.dll c:\windows\system32\mshtmled.dll c:\windows\system32\iepeers.dll c:\windows\system32\winspool.drv c:\windows\system32\imgutil.dll c:\windows\system32\pngfilt.dll c:\windows\system32\rsaenh.dll c:\windows\system32\msfeeds.dll c:\windows\system32\wdmaud.drv c:\windows\system32\msacm32.drv c:\windows\system32\msacm32.dll c:\windows\system32\midimap.dll c:\windows\system32\msrating.dll c:\windows\system32\schannel.dll c:\windows\system32\dssenh.dll c:\windows\system32\macromed\flash\flash8c.ocx c:\windows\system32\usp10.dll c:\windows\system32\dxtrans.dll c:\windows\system32\ddrawex.dll c:\windows\system32\ddraw.dll c:\windows\system32\dciman32.dll c:\windows\system32\dxtmsft.dll c:\windows\system32\dispex.dll c:\windows\system32\mscms.dll c:\windows\system32\mscoree.dll c:\windows\microsoft.net\framework\v2.0.50727\mscorie.dll c:\windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.42_x-ww_0de06acd\msvcr80.dll c:\windows\system32\corpol.dll c:\windows\system32\winrnr.dll c:\windows\system32\mprapi.dll c:\windows\system32\activeds.dll c:\windows\system32\adsldpc.dll C:\WINDOWS\SYSTEM32\CIDAEMON.EXE c:\windows\system32\cidaemon.exe c:\windows\system32\ntdll.dll c:\windows\system32\kernel32.dll c:\windows\system32\msvcrt.dll c:\windows\system32\query.dll c:\windows\system32\user32.dll c:\windows\system32\gdi32.dll c:\windows\system32\rpcrt4.dll c:\windows\system32\advapi32.dll c:\windows\system32\oleaut32.dll c:\windows\system32\ole32.dll c:\windows\system32\shell32.dll c:\windows\system32\shlwapi.dll c:\windows\system32\shimeng.dll c:\windows\apppatch\acgenral.dll c:\windows\system32\winmm.dll c:\windows\system32\msacm32.dll c:\windows\system32\version.dll c:\windows\system32\userenv.dll c:\windows\system32\uxtheme.dll c:\windows\system32\imm32.dll c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\comctl32.dll c:\windows\system32\comctl32.dll c:\windows\system32\clbcatq.dll c:\windows\system32\comres.dll c:\windows\system32\ntmarta.dll c:\windows\system32\wldap32.dll c:\windows\system32\samlib.dll c:\windows\system32\setupapi.dll c:\windows\system32\langwrbk.dll c:\windows\system32\apphelp.dll c:\windows\system32\xpsp2res.dll c:\windows\system32\wininet.dll c:\windows\system32\normaliz.dll c:\windows\system32\iertutil.dll c:\windows\system32\shdocvw.dll c:\windows\system32\crypt32.dll c:\windows\system32\msasn1.dll c:\windows\system32\cryptui.dll c:\windows\system32\wintrust.dll c:\windows\system32\imagehlp.dll c:\windows\system32\netapi32.dll c:\windows\system32\actxprxy.dll c:\windows\system32\mstask.dll c:\windows\system32\ntdsapi.dll c:\windows\system32\dnsapi.dll c:\windows\system32\ws2_32.dll c:\windows\system32\ws2help.dll c:\windows\system32\secur32.dll c:\windows\system32\comdlg32.dll c:\windows\system32\mpr.dll c:\windows\system32\linkinfo.dll c:\windows\system32\ntshrui.dll c:\windows\system32\atl.dll c:\windows\system32\msctfime.ime C:\WINDOWS\SYSTEM32\NOTEPAD.EXE c:\windows\system32\notepad.exe c:\windows\system32\ntdll.dll c:\windows\system32\kernel32.dll c:\windows\system32\comdlg32.dll c:\windows\system32\shlwapi.dll c:\windows\system32\advapi32.dll c:\windows\system32\rpcrt4.dll c:\windows\system32\gdi32.dll c:\windows\system32\user32.dll c:\windows\system32\msvcrt.dll c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\comctl32.dll c:\windows\system32\shell32.dll c:\windows\system32\winspool.drv c:\windows\system32\shimeng.dll c:\windows\apppatch\acgenral.dll c:\windows\system32\winmm.dll c:\windows\system32\ole32.dll c:\windows\system32\oleaut32.dll c:\windows\system32\msacm32.dll c:\windows\system32\version.dll c:\windows\system32\userenv.dll c:\windows\system32\uxtheme.dll c:\windows\system32\imm32.dll c:\windows\system32\msctf.dll c:\program files\logitech\setpoint\gamehook.dll c:\program files\logitech\setpoint\lgscroll.dll c:\windows\system32\msvcr71.dll c:\windows\system32\msvcp71.dll c:\windows\system32\msctfime.ime c:\windows\system32\mslbui.dll C:\PROGRAM FILES\LAVASOFT\AD-AWARE 2007\AD-AWARE2007.EXE c:\program files\lavasoft\ad-aware 2007\ad-aware2007.exe c:\windows\system32\ntdll.dll c:\windows\system32\kernel32.dll c:\windows\system32\user32.dll c:\windows\system32\gdi32.dll c:\windows\system32\imm32.dll c:\windows\system32\advapi32.dll c:\windows\system32\rpcrt4.dll c:\windows\system32\comctl32.dll c:\windows\system32\comdlg32.dll c:\windows\system32\shlwapi.dll c:\windows\system32\msvcrt.dll c:\windows\system32\shell32.dll c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\comctl32.dll c:\windows\system32\oleaut32.dll c:\windows\system32\ole32.dll c:\windows\system32\ws2_32.dll c:\windows\system32\ws2help.dll c:\windows\system32\inetmib1.dll c:\windows\system32\iphlpapi.dll c:\windows\system32\snmpapi.dll c:\windows\system32\wsock32.dll c:\windows\system32\mprapi.dll c:\windows\system32\activeds.dll c:\windows\system32\adsldpc.dll c:\windows\system32\netapi32.dll c:\windows\system32\wldap32.dll c:\windows\system32\atl.dll c:\windows\system32\rtutils.dll c:\windows\system32\samlib.dll c:\windows\system32\setupapi.dll c:\windows\system32\version.dll c:\windows\system32\mpr.dll c:\windows\system32\winmm.dll c:\windows\system32\oleacc.dll c:\windows\system32\msvcp60.dll c:\windows\system32\uxtheme.dll c:\windows\system32\msctf.dll c:\program files\logitech\setpoint\gamehook.dll c:\program files\logitech\setpoint\lgscroll.dll c:\windows\system32\msvcr71.dll c:\windows\system32\msvcp71.dll c:\windows\system32\msctfime.ime c:\windows\system32\apphelp.dll c:\windows\system32\clbcatq.dll c:\windows\system32\comres.dll c:\windows\system32\olepro32.dll c:\windows\system32\secur32.dll c:\windows\system32\mslbui.dll [to top]

#3 LDTate

Grand Poobah

Root Admin
57,211 posts

Posted 13 July 2007 - 03:37 PM

Hello and welcome to the forum. Sorry about the delay in responding

If you still need help, Scan again with HijackThis, and copy/paste" a new log file into this thread. Also please describe how your computer behaves at the moment.

The forum is run by volunteers who donate their time and expertise.

Want to help others? Join the ClassRoom and learn how.

Logs will be closed if you haven't replied within 3 days

If you would like to for the help you received.

Proud graduate of TC/WTT Classroom

#4 LDTate

Grand Poobah

Root Admin
57,211 posts

Posted 15 July 2007 - 02:29 PM

Due to inactivity this topic will be closed. If you need help please start a new thread and post a new HJT log

The forum is run by volunteers who donate their time and expertise.

Want to help others? Join the ClassRoom and learn how.

Logs will be closed if you haven't replied within 3 days

If you would like to for the help you received.

Proud graduate of TC/WTT Classroom

Body Background

skin color theme