maryamian Posted August 11, 2009 ID:108623 Share Posted August 11, 2009 I know i have gotten a virus because random websites start to pop every few minutes even when im not using ie...i already have malwarebytes installed but every time i run it, it gets shut down on task manager or it wont run at all. i already tried changing the file name, working on safe mode and it still does not work. can you please help me find what the problem is and how to get rid of this virus? thank you very muchDaniel Link to post Share on other sites More sharing options...
Maurice Naggar Posted August 11, 2009 ID:108860 Share Posted August 11, 2009 Hello Daniel,What is the Windows version? XP or Vista or ??See about at least getting a log from HijackThissee this topic about getting & running HijackThis.Then copy and paste that log in a reply hereDoes this pc have an antvirus program that is up-to-date? which one ? Has the pc ever been without an antvirus? Link to post Share on other sites More sharing options...
maryamian Posted August 11, 2009 Author ID:108873 Share Posted August 11, 2009 it is windows xpi have installed hijack this but when i click to run it, it also gets shut down like malwarebytes.i have mcafee anti virus which is up to date. is there anything i need t o shut down or do to bypass the virus to run the program? every time i run the malware or hijackthis, i see it for a second on task manager then it disappears. im assuming the virus keeps on shutting it down Link to post Share on other sites More sharing options...
maryamian Posted August 11, 2009 Author ID:108875 Share Posted August 11, 2009 also my add/remove will open, but will not show any of the programs on there anymore, in other words it does not work Link to post Share on other sites More sharing options...
Maurice Naggar Posted August 11, 2009 ID:108883 Share Posted August 11, 2009 It is most likely something more like a rootkit --- not a virus. A malicious devilish, evil thing.Download this INF repair file by MS-MVP Miekiemoes: http://users.telenet.be/bluepatchy/miekiem...orepolicies.zipUnzip the download. Open the folder VArestorepolicies and Right-click the file inside, VArestorepolicies.INF and choose Install.Delete the download, the unzipped folder and all contents.=Download to your Desktop FixPolicies.exe, by Bill Castner, MS-MVP, a self-extracting ZIP archive from >>> here <<< [*] Double-click FixPolicies.exe.[*] Click the "Install" button on the bottom toolbar of the box that will open.[*] The program will create a new Folder called FixPolicies.[*] Double-click to Open the new Folder, and then double-click the file within: Fix_Policies.cmd.[*] A black box will briefly appear and then close. [*] This fix may prove temporary. Active malware may revert these changes at your next startup. You can safely run the utility again.=HijackThis (HJT) "should" be installed in the C:\Program Files\Trend Micro\HijackThis folder by default .Using My Computer {Windows Explorer} locate C:\Program Files\Trend Micro\HijackThis\hijackthis.exe <<--- this fileNow, do a right-click on the exe and RENAME it to findem.exeThen start Findem. Do a Scan, and save log. Copy the contents of Hijackthis log into your next reply.Go here and download Silent Runners.vbs (use IE to download it) to a new folder on your drive and run it. It generates a log too. It takes a minute or two and it will notify you with a popup when your log is ready (it will be in the new folder you created). Please post the information back in this thread. If your AV queries the script, allow it to run. It's not malicious. Reply with a copy of the Hijackthis.log andthe Silent Runners log Link to post Share on other sites More sharing options...
maryamian Posted August 11, 2009 Author ID:108920 Share Posted August 11, 2009 then i downloaded FixPolicies.exe and did everything you asked but the program would still not start. then i did the silent runners and this is the log i got from themmy bad i did the silent runners wrong sorry for the unnecessary posts. here is what the log said once it finished"Silent Runners.vbs", revision 59, http://www.silentrunners.org/Operating System: Windows XPOutput limited to non-default values, except where indicated by "{++}"Startup items buried in registry:---------------------------------HKCU\Software\Microsoft\Windows\CurrentVersion\Run\ {++}"ctfmon.exe" = "C:\WINDOWS\system32\ctfmon.exe" [MS]"Aim6" = ""C:\Program Files\AIM6\aim6.exe" /d locale=en-US ee://aol/imApp" ["AOL LLC"]"A00F1CB98.exe" = "C:\DOCUME~1\user\LOCALS~1\Temp\_A00F1CB98.exe" [null data]HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\ {++}"NvCplDaemon" = "RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup" [MS]"mcagent_exe" = ""C:\Program Files\McAfee.com\Agent\mcagent.exe" /runkey" ["McAfee, Inc."]"McENUI" = "C:\PROGRA~1\McAfee\MHN\McENUI.exe /hide" ["McAfee, Inc."]HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components\<{12d0ed0d-0ee0-4f90-8827-78cefb8f4988}\(Default) = "Internet Explorer Version Update" \StubPath = "C:\WINDOWS\system32\ieudinit.exe" [MS]HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{02478D38-C3F9-4EFB-9B51-7695ECA05670}\(Default) = (no title provided) -> {HKLM...CLSID} = "&Yahoo! Toolbar Helper" \InProcServer32\(Default) = "C:\Program Files\Yahoo!\Companion\Installs\cpn3\yt.dll" ["Yahoo! Inc."]{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}\(Default) = (no title provided) -> {HKLM...CLSID} = "AcroIEHlprObj Class" \InProcServer32\(Default) = "c:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll" ["Adobe Systems Incorporated"]{5BAB4B5B-68BC-4B02-94D6-2FC0DE4A7897}\(Default) = (no title provided) -> {HKLM...CLSID} = "UberButton Class" \InProcServer32\(Default) = "C:\PROGRA~1\Yahoo!\Common\yiesrvc.dll" ["Yahoo! Inc."]{5C8B2A36-3DB1-42A4-A3CB-D426709BBFEB}\(Default) = (no title provided) -> {HKLM...CLSID} = "PCTools Site Guard" \InProcServer32\(Default) = "C:\PROGRA~1\SPYWAR~1\tools\iesdsg.dll" ["PC Tools"]{65D886A2-7CA7-479B-BB95-14D1EFB7946A}\(Default) = (no title provided) -> {HKLM...CLSID} = "YahooTaggedBM Class" \InProcServer32\(Default) = "C:\PROGRA~1\Yahoo!\Common\YIeTagBm.dll" ["Yahoo! Inc."]{7DB2D5A0-7241-4E79-B68D-6309F01C5231}\(Default) = "scriptproxy" -> {HKLM...CLSID} = "scriptproxy" \InProcServer32\(Default) = "c:\PROGRA~1\mcafee\VIRUSS~1\scriptsn.dll" ["McAfee, Inc."]{B164E929-A1B6-4A06-B104-2CD0E90A88FF}\(Default) = (no title provided) -> {HKLM...CLSID} = "McAfee SiteAdvisor BHO" \InProcServer32\(Default) = "c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll" ["McAfee, Inc."]{B56A7D7D-6927-48C8-A975-17DF180C71AC}\(Default) = (no title provided) -> {HKLM...CLSID} = "PCTools Browser Monitor" \InProcServer32\(Default) = "C:\PROGRA~1\SPYWAR~1\tools\iesdpb.dll" ["PC Tools"]{F2AA9440-6328-4933-B7C9-A6CCDF9CBF6D}\(Default) = (no title provided) -> {HKLM...CLSID} = "SidebarAutoLaunch Class" \InProcServer32\(Default) = "C:\Program Files\Yahoo!\browser\YSidebarIEBHO.dll" ["Yahoo! Inc."]{FDAD4DA1-61A2-4FD8-9C17-86F7AC245081}\(Default) = (no title provided) -> {HKLM...CLSID} = "SingleInstance Class" \InProcServer32\(Default) = "C:\Program Files\Yahoo!\Companion\Installs\cpn3\YTSingleInstance.dll" ["Yahoo! Inc"]HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\"{42071714-76d4-11d1-8b24-00a0c9068ff3}" = "Display Panning CPL Extension" -> {HKLM...CLSID} = "Display Panning CPL Extension" \InProcServer32\(Default) = "deskpan.dll" [file not found]"{88895560-9AA2-1069-930E-00AA0030EBC8}" = "HyperTerminal Icon Ext" -> {HKLM...CLSID} = "HyperTerminal Icon Ext" \InProcServer32\(Default) = "C:\WINDOWS\system32\hticons.dll" ["Hilgraeve, Inc."]"{cc86590a-b60a-48e6-996b-41d25ed39a1e}" = "Portable Media Devices Menu" -> {HKLM...CLSID} = "Portable Media Devices Menu" \InProcServer32\(Default) = "C:\WINDOWS\system32\audiodev.dll" [MS]"{A70C977A-BF00-412C-90B7-034C51DA2439}" = "NvCpl DesktopContext Class" -> {HKLM...CLSID} = "DesktopContext Class" \InProcServer32\(Default) = "C:\WINDOWS\system32\nvcpl.dll" ["NVIDIA Corporation"]"{FFB699E0-306A-11d3-8BD1-00104B6F7516}" = "Play on my TV helper" -> {HKLM...CLSID} = "NVIDIA CPL Extension" \InProcServer32\(Default) = "C:\WINDOWS\system32\nvcpl.dll" ["NVIDIA Corporation"]"{1CDB2949-8F65-4355-8456-263E7C208A5D}" = "Desktop Explorer" -> {HKLM...CLSID} = "Desktop Explorer" \InProcServer32\(Default) = "C:\WINDOWS\system32\nvshell.dll" ["NVIDIA Corporation"]"{1E9B04FB-F9E5-4718-997B-B8DA88302A47}" = "Desktop Explorer Menu" -> {HKLM...CLSID} = (no title provided) \InProcServer32\(Default) = "C:\WINDOWS\system32\nvshell.dll" ["NVIDIA Corporation"]"{1E9B04FB-F9E5-4718-997B-B8DA88302A48}" = "nView Desktop Context Menu" -> {HKLM...CLSID} = "nView Desktop Context Menu" \InProcServer32\(Default) = "C:\WINDOWS\system32\nvshell.dll" ["NVIDIA Corporation"]"{BB7DF450-F119-11CD-8465-00AA00425D90}" = "Microsoft Access Custom Icon Handler" -> {HKLM...CLSID} = (no title provided) \InProcServer32\(Default) = "C:\Program Files\Microsoft Office\Office\soa800.dll" [MS]"{59850401-6664-101B-B21C-00AA004BA90B}" = "Microsoft Office Binder Explode" -> {HKLM...CLSID} = "Microsoft Office Binder Explode" \InProcServer32\(Default) = "C:\Program Files\Microsoft Office\Office\UNBIND.DLL" [MS]"{0006F045-0000-0000-C000-000000000046}" = "Microsoft Outlook Custom Icon Handler" -> {HKLM...CLSID} = "Outlook File Icon Extension" \InProcServer32\(Default) = "C:\Program Files\Microsoft Office\Office10\OLKFSTUB.DLL" [MS]"{42042206-2D85-11D3-8CFF-005004838597}" = "Microsoft Office HTML Icon Handler" -> {HKLM...CLSID} = (no title provided) \InProcServer32\(Default) = "C:\Program Files\Microsoft Office\Office10\msohev.dll" [MS]"{73B24247-042E-4EF5-ADC2-42F62E6FD654}" = "ICQ Lite Shell Extension" -> {HKLM...CLSID} = "MCLiteShellExt Class" \InProcServer32\(Default) = "C:\Program Files\ICQLite\ICQLiteShell.dll" [empty string]"{F0CB00CD-5A07-4D91-97F5-A8C92CDA93E4}" = "Shell Extensions for RealOne Player" -> {HKLM...CLSID} = "RealOne Player Context Menu Class" \InProcServer32\(Default) = "C:\Program Files\Real\RealPlayer\rpshell.dll" ["RealNetworks, Inc."]"{5464D816-CF16-4784-B9F3-75C0DB52B499}" = "Yahoo! Mail" -> {HKLM...CLSID} = "YMailShellExt Class" \InProcServer32\(Default) = "C:\PROGRA~1\Yahoo!\Common\ymmapi.dll" ["Yahoo! Inc."]"{3DE5DB7C-0EA5-4337-8A5C-D0AC6D154C1B}" = "SFS_CONTEXT" -> {HKLM...CLSID} = "Simple File Shredder Shell Context Menu" \InProcServer32\(Default) = "C:\PROGRA~1\scar5\SIMPLE~1\sfsshell.dll" ["scar5 Software"]"{B9E1D2CB-CCFF-4AA6-9579-D7A4754030EF}" = "iTunes" -> {HKLM...CLSID} = "iTunes" \InProcServer32\(Default) = "C:\Program Files\iTunes\iTunesMiniPlayer.dll" ["Apple Inc."]HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\<<!>> 6074df77654\DLLName = "C:\WINDOWS\System32\dpv1132.dll" [null data]<<!>> __c00BB40C\DLLName = "C:\WINDOWS\system32\__c00BB40C.dat" [null data]HKLM\SOFTWARE\Classes\Folder\shellex\ColumnHandlers\{F9DB5320-233E-11D1-9F84-707F02C10627}\(Default) = "PDF Column Info" -> {HKLM...CLSID} = "PDF Shell Extension" \InProcServer32\(Default) = "c:\Program Files\Adobe\Acrobat 7.0\ActiveX\PDFShell.dll" ["Adobe Systems, Inc."]HKLM\SOFTWARE\Classes\*\shellex\ContextMenuHandlers\ICQLiteMenu\(Default) = "{73B24247-042E-4EF5-ADC2-42F62E6FD654}" -> {HKLM...CLSID} = "MCLiteShellExt Class" \InProcServer32\(Default) = "C:\Program Files\ICQLite\ICQLiteShell.dll" [empty string]McCtxMenu\(Default) = "{01576F39-90DE-4D6E-A068-5B20C22BAAEE}" -> {HKLM...CLSID} = "CtxMenu Class" \InProcServer32\(Default) = "c:\PROGRA~1\mcafee\VIRUSS~1\mcctxmnu.dll" ["McAfee, Inc."]SFS_CONTEXT\(Default) = "{3DE5DB7C-0EA5-4337-8A5C-D0AC6D154C1B}" -> {HKLM...CLSID} = "Simple File Shredder Shell Context Menu" \InProcServer32\(Default) = "C:\PROGRA~1\scar5\SIMPLE~1\sfsshell.dll" ["scar5 Software"]Yahoo! Mail\(Default) = "{5464D816-CF16-4784-B9F3-75C0DB52B499}" -> {HKLM...CLSID} = "YMailShellExt Class" \InProcServer32\(Default) = "C:\PROGRA~1\Yahoo!\Common\ymmapi.dll" ["Yahoo! Inc."]HKLM\SOFTWARE\Classes\Directory\shellex\ContextMenuHandlers\ICQLiteMenu\(Default) = "{73B24247-042E-4EF5-ADC2-42F62E6FD654}" -> {HKLM...CLSID} = "MCLiteShellExt Class" \InProcServer32\(Default) = "C:\Program Files\ICQLite\ICQLiteShell.dll" [empty string]SFS_CONTEXT\(Default) = "{3DE5DB7C-0EA5-4337-8A5C-D0AC6D154C1B}" -> {HKLM...CLSID} = "Simple File Shredder Shell Context Menu" \InProcServer32\(Default) = "C:\PROGRA~1\scar5\SIMPLE~1\sfsshell.dll" ["scar5 Software"]HKLM\SOFTWARE\Classes\Folder\shellex\ContextMenuHandlers\MBAMShlExt\(Default) = "{57CE581A-0CB6-4266-9CA0-19364C90A0B3}" -> {HKLM...CLSID} = "MBAMShlExt Class" \InProcServer32\(Default) = "C:\Documents and Settings\user\Desktop\myshit\dann\mbamext.dll" ["Malwarebytes Corporation"]McCtxMenu\(Default) = "{01576F39-90DE-4D6E-A068-5B20C22BAAEE}" -> {HKLM...CLSID} = "CtxMenu Class" \InProcServer32\(Default) = "c:\PROGRA~1\mcafee\VIRUSS~1\mcctxmnu.dll" ["McAfee, Inc."]HKLM\SOFTWARE\Classes\AllFilesystemObjects\shellex\ContextMenuHandlers\MBAMShlExt\(Default) = "{57CE581A-0CB6-4266-9CA0-19364C90A0B3}" -> {HKLM...CLSID} = "MBAMShlExt Class" \InProcServer32\(Default) = "C:\Documents and Settings\user\Desktop\myshit\dann\mbamext.dll" ["Malwarebytes Corporation"]Group Policies {GPedit.msc branch and setting}:-----------------------------------------------Note: detected settings may not have any effect.HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\"NoSetActiveDesktop" = (REG_DWORD) dword:0x00000000{unrecognized setting}"NoActiveDesktopChanges" = (REG_DWORD) dword:0x00000000{User Configuration|Administrative Templates|Desktop|Desktop / Active Desktop|Prohibit changes}HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\"HonorAutoRunSetting" = (REG_DWORD) dword:0x00000001{unrecognized setting}"NoSetActiveDesktop" = (REG_DWORD) dword:0x00000000{unrecognized setting}"NoActiveDesktopChanges" = (REG_DWORD) dword:0x00000000{unrecognized setting}"NoCDBurning" = (REG_DWORD) dword:0x00000000{unrecognized setting}HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System\"shutdownwithoutlogon" = (REG_DWORD) dword:0x00000001{Computer Configuration|Windows Settings|Security Settings|Local Policies|Security Options|Shutdown: Allow system to be shut down without having to log on}"undockwithoutlogon" = (REG_DWORD) dword:0x00000001{Computer Configuration|Windows Settings|Security Settings|Local Policies|Security Options|Devices: Allow undock without having to log on}"InstallVisualStyle" = (REG_EXPAND_SZ) C:\WINDOWS\Resources\Themes\Royale\Royale.msstyles{unrecognized setting}"InstallTheme" = (REG_EXPAND_SZ) C:\WINDOWS\Resources\Themes\Royale.theme{unrecognized setting}Active Desktop and Wallpaper:-----------------------------Active Desktop may be disabled at this entry:HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellStateDisplayed if Active Desktop enabled and wallpaper not set by Group Policy:HKCU\Software\Microsoft\Internet Explorer\Desktop\General\"Wallpaper" = "C:\WINDOWS\system32\config\systemprofile\Local Settings\Application Data\Microsoft\Wallpaper1.bmp"Displayed if Active Desktop disabled and wallpaper not set by Group Policy:HKCU\Control Panel\Desktop\"Wallpaper" = "C:\Documents and Settings\user\Local Settings\Application Data\Microsoft\Wallpaper1.bmp"Windows Portable Device AutoPlay Handlers-----------------------------------------HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\AutoplayHandlers\Handlers\CanonCW50PicturesOnArrival\"Provider" = "Canon CameraWindow""InvokeProgID" = "Cw50.AutoplayHandler""InvokeVerb" = "open"HKLM\SOFTWARE\Classes\Cw50.AutoplayHandler\shell\open\command\(Default) = "C:\Program Files\Canon\CameraWindow\CameraWindowMC\CameraLauncher.exe" [empty string]CanonZB4PicturesOnArrival\"Provider" = "ZoomBrowser EX""InvokeProgID" = "Zb.AutoplayHandler""InvokeVerb" = "open"HKLM\SOFTWARE\Classes\Zb.AutoplayHandler\shell\open\command\(Default) = "C:\Program Files\Canon\ZoomBrowser EX\Program\ZoomBrowser.exe /AUTOPLAY "%1"" [empty string]EHomeMusicDropTarget\"Provider" = "Media Center""InvokeProgID" = "EHomeDropTarget.EHomeMusicDropTarget""InvokeVerb" = "play"HKLM\SOFTWARE\Classes\EHomeDropTarget.EHomeMusicDropTarget\shell\play\DropTarget\CLSID = "{ED87EFF3-FF22-404E-B2BD-BC3841BDCB2C}" -> {HKLM...CLSID} = "EHomeMusicDropTarget Class" \InProcServer32\(Default) = "C:\WINDOWS\eHome\ehdrop.dll" [MS]EHomePhotosHandler\"Provider" = "Media Center""InvokeProgID" = "EHomeDropTarget.EHomePhotosHandler""InvokeVerb" = "play"HKLM\SOFTWARE\Classes\EHomeDropTarget.EHomePhotosHandler\shell\play\DropTarget\CLSID = "{4b7601c1-d292-4902-89f4-583a5ce0c535}" -> {HKLM...CLSID} = "EHomePhotosHandler Class" \InProcServer32\(Default) = "C:\WINDOWS\eHome\ehdrop.dll" [MS]EHomeVideoDropTarget\"Provider" = "Media Center""InvokeProgID" = "EHomeDropTarget.EHomeVideoDropTarget""InvokeVerb" = "play"HKLM\SOFTWARE\Classes\EHomeDropTarget.EHomeVideoDropTarget\shell\play\DropTarget\CLSID = "{A48E70A4-8E15-4465-9D85-CCE9E63F8AAB}" -> {HKLM...CLSID} = "EHomeVideoDropTarget Class" \InProcServer32\(Default) = "C:\WINDOWS\eHome\ehdrop.dll" [MS]EHomeVideosHandler\"Provider" = "Media Center""InvokeProgID" = "EHomeDropTarget.EHomeVideosHandler""InvokeVerb" = "play"HKLM\SOFTWARE\Classes\EHomeDropTarget.EHomeVideosHandler\shell\play\DropTarget\CLSID = "{4f61ec50-acef-4ae7-b4c6-b19bddc0f745}" -> {HKLM...CLSID} = "EHomeVideosHandler Class" \InProcServer32\(Default) = "C:\WINDOWS\eHome\ehdrop.dll" [MS]iTunesBurnCDOnArrival\"Provider" = "iTunes""InvokeProgID" = "iTunes.BurnCD""InvokeVerb" = "burn"HKLM\SOFTWARE\Classes\iTunes.BurnCD\shell\burn\command\(Default) = ""C:\Program Files\iTunes\iTunes.exe" /AutoPlayBurn "%L"" ["Apple Inc."]iTunesImportSongsOnArrival\"Provider" = "iTunes""InvokeProgID" = "iTunes.ImportSongsOnCD""InvokeVerb" = "import"HKLM\SOFTWARE\Classes\iTunes.ImportSongsOnCD\shell\import\command\(Default) = ""C:\Program Files\iTunes\iTunes.exe" /AutoPlayImportSongs "%L"" ["Apple Inc."]iTunesPlaySongsOnArrival\"Provider" = "iTunes""InvokeProgID" = "iTunes.PlaySongsOnCD""InvokeVerb" = "play"HKLM\SOFTWARE\Classes\iTunes.PlaySongsOnCD\shell\play\command\(Default) = ""C:\Program Files\iTunes\iTunes.exe" /playCD "%L"" ["Apple Inc."]iTunesShowSongsOnArrival\"Provider" = "iTunes""InvokeProgID" = "iTunes.ShowSongsOnCD""InvokeVerb" = "showsongs"HKLM\SOFTWARE\Classes\iTunes.ShowSongsOnCD\shell\showsongs\command\(Default) = ""C:\Program Files\iTunes\iTunes.exe" /AutoPlayShowSongs "%L"" ["Apple Inc."]MediaCapture9Music\"Provider" = "Media Import""InvokeProgID" = "RoxioMediaCapture9""InvokeVerb" = "Audio"HKLM\SOFTWARE\Classes\RoxioMediaCapture9\shell\Audio\command\(Default) = "C:\Program Files\Roxio\Media Import 9\MediaCapture9.exe -audio %L" ["Sonic Solutions"]MediaCapture9Photos\"Provider" = "Media Import""InvokeProgID" = "RoxioMediaCapture9""InvokeVerb" = "Photo"HKLM\SOFTWARE\Classes\RoxioMediaCapture9\shell\Photo\command\(Default) = "C:\Program Files\Roxio\Media Import 9\MediaCapture9.exe -photo %L" ["Sonic Solutions"]MediaCapture9VideoCamera\"Provider" = "Media Import""ProgID" = "Shell.HWEventHandlerShellExecute""InitCmdLine" = "C:\Program Files\Roxio\Media Import 9\MediaCapture9.exe"HKLM\SOFTWARE\Classes\Shell.HWEventHandlerShellExecute\CLSID\(Default) = "{FFB8655F-81B9-4fce-B89C-9A6BA76D13E7}" -> {HKLM...CLSID} = "ShellExecute HW Event Handler" \LocalServer32\(Default) = "rundll32.exe shell32.dll,SHCreateLocalServerRunDll {FFB8655F-81B9-4fce-B89C-9A6BA76D13E7}" [MS]MediaCapture9Videos\"Provider" = "Media Import""InvokeProgID" = "RoxioMediaCapture9""InvokeVerb" = "Video"HKLM\SOFTWARE\Classes\RoxioMediaCapture9\shell\Video\command\(Default) = "C:\Program Files\Roxio\Media Import 9\MediaCapture9.exe -video %L" ["Sonic Solutions"]NTIBurner\"Provider" = "NTI CD-Maker""InvokeProgID" = "NTIBurnerOpen""InvokeVerb" = "open"HKLM\SOFTWARE\Classes\NTIBurnerOpen\shell\open\command\(Default) = ""c:\Program Files\NewTech Infosystems\NTI CD & DVD-Maker 7\Cdmkr32.exe"" ["NewTech Infosystems, Inc."]PDVDPlayCDAudioOnArrival\"Provider" = "PowerDVD""InvokeProgID" = "AudioCD""InvokeVerb" = "PlayWithPowerDVD"HKLM\SOFTWARE\Classes\AudioCD\shell\PlayWithPowerDVD\Command\(Default) = ""C:\Program Files\CyberLink\PowerDVD\PowerDVD.exe" "%L"" ["CyberLink Corp."]PDVDPlayDVDMovieOnArrival\"Provider" = "PowerDVD""InvokeProgID" = "DVD""InvokeVerb" = "PlayWithPowerDVD"HKLM\SOFTWARE\Classes\DVD\shell\PlayWithPowerDVD\Command\(Default) = ""C:\Program Files\CyberLink\PowerDVD\PowerDVD.exe" "%l"" ["CyberLink Corp."]PDVDPlayVCDMovieOnArrival\"Provider" = "PowerDVD""InvokeProgID" = "VCD""InvokeVerb" = "PlayWithPowerDVD"HKLM\SOFTWARE\Classes\VCD\shell\PlayWithPowerDVD\Command\(Default) = ""C:\Program Files\CyberLink\PowerDVD\PowerDVD.exe" "%l"" ["CyberLink Corp."]RoxioSCAudioCDTask33\"Provider" = "Roxio Creator Audio""InvokeProgID" = "Roxio.RoxioCentral33""InvokeVerb" = "AudioCDTask"HKLM\SOFTWARE\Classes\Roxio.RoxioCentral33\shell\AudioCDTask\Command\(Default) = ""C:\Program Files\Common Files\Roxio Shared\9.0\Roxio Central33\Main\Roxio_Central33.exe" /Launch {8E376824-EA6C-4CB7-AA05-A30CB84D359B}" [null data]RoxioSCCopyCD33\"Provider" = "Sonic Creator Copy""InvokeProgID" = "Roxio.RoxioCentral33""InvokeVerb" = "ExactCopyJob"HKLM\SOFTWARE\Classes\Roxio.RoxioCentral33\shell\ExactCopyJob\Command\(Default) = ""C:\Program Files\Common Files\Roxio Shared\9.0\Roxio Central33\Main\Roxio_Central33.exe" /Launch {6123D5C0-0B6A-4B67-A692-C0863AB98CDA}" [null data]RoxioSCCopyDisc33\"Provider" = "Sonic Creator Copy""InvokeProgID" = "Roxio.RoxioCentral33""InvokeVerb" = "ExactCopyJob"HKLM\SOFTWARE\Classes\Roxio.RoxioCentral33\shell\ExactCopyJob\Command\(Default) = ""C:\Program Files\Common Files\Roxio Shared\9.0\Roxio Central33\Main\Roxio_Central33.exe" /Launch {6123D5C0-0B6A-4B67-A692-C0863AB98CDA}" [null data]RoxioSCDataProject33\"Provider" = "Roxio Creator Data""InvokeProgID" = "Roxio.RoxioCentral33""InvokeVerb" = "DataGuide"HKLM\SOFTWARE\Classes\Roxio.RoxioCentral33\shell\DataGuide\Command\(Default) = ""C:\Program Files\Common Files\Roxio Shared\9.0\Roxio Central33\Main\Roxio_Central33.exe" /Launch Data" [null data]RoxioSCDataTask33\"Provider" = "Roxio Creator Data""InvokeProgID" = "Roxio.RoxioCentral33""InvokeVerb" = "DataTask"HKLM\SOFTWARE\Classes\Roxio.RoxioCentral33\shell\DataTask\Command\(Default) = ""C:\Program Files\Common Files\Roxio Shared\9.0\Roxio Central33\Main\Roxio_Central33.exe" /Launch {D085B12D-4D9B-49C2-8323-5053831CBD54}" [null data]RPCDBurningOnArrival\"Provider" = "RealPlayer""InvokeProgID" = "RealPlayer.CDBurn.6""InvokeVerb" = "open"HKLM\SOFTWARE\Classes\RealPlayer.CDBurn.6\shell\open\command\(Default) = ""C:\Program Files\Real\RealPlayer\RealPlay.exe" /burn "%1"" ["RealNetworks, Inc."]RPDeviceOnArrival\"Provider" = "RealPlayer""ProgID" = "RealPlayer.HWEventHandler"HKLM\SOFTWARE\Classes\RealPlayer.HWEventHandler\CLSID\(Default) = "{67E76F1D-BDE2-4052-913C-2752366192D2}" -> {HKLM...CLSID} = "RealNetworks Scheduler" \LocalServer32\(Default) = ""C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -autoplay" ["RealNetworks, Inc."]RPPlayCDAudioOnArrival\"Provider" = "RealPlayer""InvokeProgID" = "RealPlayer.AudioCD.6""InvokeVerb" = "play"HKLM\SOFTWARE\Classes\RealPlayer.AudioCD.6\shell\play\command\(Default) = ""C:\Program Files\Real\RealPlayer\RealPlay.exe" /play %1 " ["RealNetworks, Inc."]RPPlayDVDMovieOnArrival\"Provider" = "RealPlayer""InvokeProgID" = "RealPlayer.DVD.6""InvokeVerb" = "play"HKLM\SOFTWARE\Classes\RealPlayer.DVD.6\shell\play\command\(Default) = ""C:\Program Files\Real\RealPlayer\RealPlay.exe" /dvd %1 " ["RealNetworks, Inc."]RPPlayMediaOnArrival\"Provider" = "RealPlayer""InvokeProgID" = "RealPlayer.AutoPlay.6""InvokeVerb" = "open"HKLM\SOFTWARE\Classes\RealPlayer.AutoPlay.6\shell\open\command\(Default) = ""C:\Program Files\Real\RealPlayer\RealPlay.exe" /autoplay "%1"" ["RealNetworks, Inc."]WinampMTPHandler\"Provider" = "Winamp""ProgID" = "Shell.HWEventHandlerShellExecute""InitCmdLine" = "C:\Program Files\Winamp\winamp.exe"HKLM\SOFTWARE\Classes\Shell.HWEventHandlerShellExecute\CLSID\(Default) = "{FFB8655F-81B9-4fce-B89C-9A6BA76D13E7}" -> {HKLM...CLSID} = "ShellExecute HW Event Handler" \LocalServer32\(Default) = "rundll32.exe shell32.dll,SHCreateLocalServerRunDll {FFB8655F-81B9-4fce-B89C-9A6BA76D13E7}" [MS]WinampPlayMediaOnArrival\"Provider" = "Winamp""InvokeProgID" = "Winamp.File""InvokeVerb" = "Play"HKLM\SOFTWARE\Classes\Winamp.File\shell\Play\command\(Default) = ""C:\Program Files\Winamp\winamp.exe" "%1"" ["Nullsoft"]HKLM\SOFTWARE\Classes\Winamp.File\shell\Play\DropTarget\CLSID = "{46986115-84D6-459c-8F95-52DD653E532E}" -> {HKLM...CLSID} = (no title provided) \LocalServer32\(Default) = ""C:\Program Files\Winamp\winamp.exe"" ["Nullsoft"]Enabled Scheduled Tasks:------------------------"McDefragTask" -> launches: "c:\PROGRA~1\mcafee\mqc\QcConsol.exe "C:\WINDOWS\system32\defrag.exe" C: -f" ["McAfee, Inc."]"McQcTask" -> launches: "c:\PROGRA~1\mcafee\mqc\QcConsol.exe 14 0" ["McAfee, Inc."]"wpczbjnn" -> launches: "C:\WINDOWS\system32\rundll32.exe "C:\WINDOWS\system32\tuvssSjk.dll",d" [MS]Winsock2 Service Provider DLLs:-------------------------------Namespace Service ProvidersHKLM\SYSTEM\CurrentControlSet\Services\Winsock2\Parameters\NameSpace_Catalog5\Catalog_Entries\ {++}000000000001\LibraryPath = "%SystemRoot%\System32\mswsock.dll" [MS]000000000002\LibraryPath = "%SystemRoot%\System32\winrnr.dll" [MS]000000000003\LibraryPath = "%SystemRoot%\System32\mswsock.dll" [MS]Transport Service ProvidersHKLM\SYSTEM\CurrentControlSet\Services\Winsock2\Parameters\Protocol_Catalog9\Catalog_Entries\ {++}0000000000##\PackedCatalogItem (contains) DLL [Company Name], (at) ## range:%SystemRoot%\system32\mswsock.dll [MS], 01 - 04, 07 - 28%SystemRoot%\system32\rsvpsp.dll [MS], 05 - 06Toolbars, Explorer Bars, Extensions:------------------------------------ToolbarsHKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\"{EF99BD32-C1FB-11D2-892F-0090271D4F88}" -> {HKLM...CLSID} = "Yahoo! Toolbar" \InProcServer32\(Default) = "C:\Program Files\Yahoo!\Companion\Installs\cpn3\yt.dll" ["Yahoo! Inc."]"{F2CF5485-4E02-4F68-819C-B92DE9277049}" -> {HKLM...CLSID} = "&Links" \InProcServer32\(Default) = "C:\WINDOWS\system32\ieframe.dll" [MS]HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar\"{EF99BD32-C1FB-11D2-892F-0090271D4F88}" = (no title provided) -> {HKLM...CLSID} = "Yahoo! Toolbar" \InProcServer32\(Default) = "C:\Program Files\Yahoo!\Companion\Installs\cpn3\yt.dll" ["Yahoo! Inc."]"{0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064}" = "McAfee SiteAdvisor" -> {HKLM...CLSID} = "McAfee SiteAdvisor Toolbar" \InProcServer32\(Default) = "c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll" ["McAfee, Inc."]"{0FBB9689-D3D7-4F7A-A2E2-585B10099BFC}" = "Veoh Web Player Video Finder" -> {HKLM...CLSID} = "Veoh Web Player Video Finder" \InProcServer32\(Default) = "C:\Program Files\Veoh Networks\VeohWebPlayer\VeohIEToolbar.dll" ["Veoh Networks Inc"]"{52836EB0-631A-47B1-94A6-61F9D9112DAE}" = "Veoh Video Compass" -> {HKLM...CLSID} = "Veoh Video Compass" \InProcServer32\(Default) = "C:\Program Files\Veoh Networks\Veoh Video Compass\SearchRecsPlugin.dll" ["Veoh Networks"]Explorer BarsHKLM\SOFTWARE\Microsoft\Internet Explorer\Explorer Bars\HKLM\SOFTWARE\Classes\CLSID\{51085E3D-A958-42A2-A6BE-A6A9B0BAF276}\(Default) = "AT&T Yahoo! Sidebar"Implemented Categories\{00021493-0000-0000-C000-000000000046}\ [vertical bar]InProcServer32\(Default) = "C:\Program Files\Yahoo!\browser\ysidebarIE.dll" ["Yahoo! Inc."]Extensions (Tools menu items, main toolbar menu buttons)HKCU\Software\Microsoft\Internet Explorer\Extensions\{13C1DBF6-7535-495C-91F6-8C13714ED485}\"ButtonText" = "Absolute Poker""MenuText" = "Absolute Poker""Exec" = "C:\Documents and Settings\user\Start Menu\Programs\Absolute Poker\Absolute Poker.lnk" [file not found]HKLM\SOFTWARE\Microsoft\Internet Explorer\Extensions\{2D663D1A-8670-49D9-A1A5-4C56B4E14E84}\"ButtonText" = "Spyware Doctor""CLSIDExtension" = "{A1EDC4A1-940F-48E0-8DFD-E38F1D501021}" -> {HKLM...CLSID} = "PCTools Browser Monitor" \InProcServer32\(Default) = "C:\PROGRA~1\SPYWAR~1\tools\iesdpb.dll" ["PC Tools"]{5BAB4B5B-68BC-4B02-94D6-2FC0DE4A7897}\"ButtonText" = "AT&T Yahoo! Services""CLSIDExtension" = "{5BAB4B5B-68BC-4B02-94D6-2FC0DE4A7897}" -> {HKLM...CLSID} = "UberButton Class" \InProcServer32\(Default) = "C:\PROGRA~1\Yahoo!\Common\yiesrvc.dll" ["Yahoo! Inc."]{AC9E2541-2814-11D5-BC6D-00B0D0A1DE45}\"ButtonText" = "AIM""Exec" = "C:\Program Files\AIM\aim.exe" ["America Online, Inc."]{B863453A-26C3-4E1F-A54D-A2CD196348E9}\"ButtonText" = "ICQ Lite""MenuText" = "ICQ Lite""Exec" = "C:\Program Files\ICQLite\ICQLite.exe" ["ICQ Ltd."]{E2E2DD38-D088-4134-82B7-F2BA38496583}\"MenuText" = "@xpsp3res.dll,-20001""Exec" = "%windir%\Network Diagnostic\xpnetdiag.exe" [MS]{FB5F1910-F110-11D2-BB9E-00C04F795683}\"ButtonText" = "Messenger""MenuText" = "Windows Messenger""Exec" = "C:\Program Files\Messenger\msmsgs.exe" [MS]Miscellaneous IE Hijack Points------------------------------HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks\<<H>> "{EF99BD32-C1FB-11D2-892F-0090271D4F88}" = (no title provided) -> {HKLM...CLSID} = "Yahoo! Toolbar" \InProcServer32\(Default) = "C:\Program Files\Yahoo!\Companion\Installs\cpn3\yt.dll" ["Yahoo! Inc."]Running Services (Display Name, Service Name, Path {Service DLL}):------------------------------------------------------------------McAfee Network Agent, McNASvc, ""c:\PROGRA~1\COMMON~1\mcafee\mna\mcnasvc.exe"" ["McAfee, Inc."]McAfee Personal Firewall Service, MpfService, ""C:\Program Files\McAfee\MPF\MPFSrv.exe"" ["McAfee, Inc."]McAfee Proxy Service, McProxy, "c:\PROGRA~1\COMMON~1\mcafee\mcproxy\mcproxy.exe" ["McAfee, Inc."]McAfee Real-time Scanner, McShield, "C:\PROGRA~1\McAfee\VIRUSS~1\mcshield.exe" ["McAfee, Inc."]McAfee Services, mcmscsvc, "C:\PROGRA~1\McAfee\MSC\mcmscsvc.exe" ["McAfee, Inc."]McAfee SiteAdvisor Service, McAfee SiteAdvisor Service, ""C:\Program Files\McAfee\SiteAdvisor\McSACore.exe"" ["McAfee, Inc."]McAfee SystemGuards, McSysmon, "C:\PROGRA~1\McAfee\VIRUSS~1\mcsysmon.exe" ["McAfee, Inc."]Media Center Receiver Service, ehRecvr, "C:\WINDOWS\eHome\ehRecvr.exe" [MS]NVIDIA Display Driver Service, NVSvc, "C:\WINDOWS\system32\nvsvc32.exe" ["NVIDIA Corporation"]PC Tools Spyware Doctor, SDhelper, "C:\Program Files\Spyware Doctor\sdhelp.exe" ["PC Tools Research Pty Ltd"]Pml Driver HPZ12, Pml Driver HPZ12, "C:\WINDOWS\system32\HPZipm12.exe" ["HP"]Yahoo! Updater, YahooAUService, ""C:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe"" ["Yahoo! Inc."]Print Monitors:---------------HKLM\SYSTEM\CurrentControlSet\Control\Print\Monitors\BJ Language Monitor2\Driver = "CNBJMON2.DLL" [MS]HP Standard TCP/IP Port\Driver = "HpTcpMon.dll" ["Hewlett Packard"]LIDIL hpzll054\Driver = "hpzll054.dll" ["Hewlett-Packard Company"]Microsoft Shared Fax Monitor\Driver = "FXSMON.DLL" [MS]---------- (launch time: 2009-08-11 13:36:05)<<!>>: Suspicious data at a malware launch point.<<H>>: Suspicious data at a browser hijack point.+ This report excludes default entries except where indicated.+ To see *everywhere* the script checks and *everything* it finds, launch it from a command prompt or a shortcut with the -all parameter.+ To search all directories of local fixed drives for DESKTOP.INI DLL launch points, use the -supp parameter or answer "No" at the first message box and "Yes" at the second message box.---------- (total run time: 68 seconds, including 25 seconds for message boxes) Link to post Share on other sites More sharing options...
Maurice Naggar Posted August 11, 2009 ID:108953 Share Posted August 11, 2009 Hello Daniel,I have deleted several of your replies that just had unwanted copies.As we go further along, if you run into a similar problem, just ask here on the forum before going further.Ask first.I'm going to have you run some other tools that may have better luck.You will want to print out or copy these instructions to Notepad for offline reference!If you are a casual viewer, do NOT try this on your system! If you are not maryamian/Daniel and have a similar problem, do NOT post here; start your own topicDo not run or start any other programs while these utilities and tools are in use! Do NOT run any other tools on your own or do any fixes other than what is listed here.If you have questions, please ask before you do something on your own.But it is important that you get going on these following steps.=Close any of your open programs while you run these tools.=1. Set Windows to show all files and all folders. On your Desktop, double click My Computer, from the menu options, select tools, then Folder Options, and then select VIEW Tab and look at all of settings listed. "CHECK" (turn on) Display the contents of system folders. Under column, Hidden files and folders----choose ( *select* ) Show hidden files and folders. Next, un-check Hide extensions for known file types. Next un-check Hide protected operating system files. 2. Take out the trash (temporary files & temporary internet files) Please download ATF Cleaner by Atribune, saving it to your desktop. It is used to cleanout temporary files & temp areas used by internet browsers.Start ATF-Cleaner.exe to run the program. Under Main choose: Select All Click the Empty Selected button. If you use Firefox browser, do this also:Click Firefox at the top and choose: Select All Click the Empty Selected button. NOTE: If you would like to keep your saved passwords, please click No at the prompt.If you use Opera browser, do this also:Click Opera at the top and choose: Select All Click the Empty Selected button. NOTE: If you would like to keep your saved passwords, please click No at the prompt.Click Exit on the Main menu to close the program. ATF-Cleaner should be run per the above in every user-login account {User Profile} =Next, also do this:1. Go >> Here << and download ERUNT (ERUNT (Emergency Recovery Utility NT) is a free program that allows you to keep a complete backup of your registry and restore it when needed.)2. Install ERUNT by following the prompts (use the default install settings but say no to the portion that asks you to add ERUNT to the start-up folder, if you like you can enable this option later)3. Start ERUNT (either by double clicking on the desktop icon or choosing to start the program at the end of the setup)4. Choose a location for the backup (the default location is C:\WINDOWS\ERDNT which is acceptable).5. Make sure that at least the first two check boxes are ticked 6. Press OK7. Press YES to create the folder.=Disable your AntiVirus and AntiSpyware applications, usually via a right click on the System Tray icon. They may otherwise interfere with our toolsIf you have a prior copy of Combofix, delete it now !Download Combofix from any of the links below. You must rename it before saving it. Save it to your Desktop. Link 1 Link 2 Link 3 * IMPORTANT !!! SAVE AS Combo-Fix.exe to your DesktopIf your I.E. browser shows a warning message at the top, do a Right-Click on the bar and select Download, saving it to the Desktop. Disable your AntiVirus and AntiSpyware applications, usually via a right click on the System Tray icon. They may otherwise interfere with our toolsDouble click on Combo-Fix.exe & follow the prompts.As part of it's process, ComboFix will check to see if the Microsoft Windows Recovery Console is installed. With malware infections being as they are today, it's strongly recommended to have this pre-installed on your machine before doing any malware removal. It will allow you to boot up into a special recovery/repair mode that will allow us to more easily help you should your computer have a problem after an attempted removal of malware. Follow the prompts to allow ComboFix to download and install the Microsoft Windows Recovery Console, and when prompted, agree to the End-User License Agreement to install the Microsoft Windows Recovery Console.**Please note: If the Microsoft Windows Recovery Console is already installed, ComboFix will continue it's malware removal procedures.Once the Microsoft Windows Recovery Console is installed using ComboFix, you should see the following message:Click on Yes, to continue scanning for malware.Please watch Combofix as it runs, as you may see messages which require your response, or the pressing of OK button.IF you should see a message like this: then, be sure to write down fully and also copy that into your next reply here and then await for my response.When finished, it shall produce a log for you. Please include the C:\ComboFix.txt in your next reply.------------------------------------------------------- A caution - Do not run Combofix more than once. Do not touch your mouse/keyboard until the scan has completed, as this may cause the process to stall or your computer to lock. The scan will temporarily disable your desktop, and if interrupted may leave your desktop disabled. If this occurs, please reboot to restore the desktop. Even when ComboFix appears to be doing nothing, look at your Drive light. If it is flashing, Combofix is still at work.=RE-Enable your AntiVirus and AntiSpyware applications.=Download Random's System Information Tool (RSIT) by random/random from here and save it to your desktop.Double click on RSIT.exe to run RSIT.Click Continue at the disclaimer screen.Once it has finished, two logs will open. Please post the contents of both log.txt (<<will be maximized) and info.txt (<<will be minimized)Reply with copy of C:\Combofix.txtLog.txtInfo.txtand advise, How is your system now ? Link to post Share on other sites More sharing options...
maryamian Posted August 12, 2009 Author ID:109054 Share Posted August 12, 2009 ATF-Cleaner was not able to run when i first installed itHere is the C:\ComboFix.tx:C:\Windows\system32\drivers\UACbrovdhosdp.sysC:\Windows\system32\UACmyrgopyowf.dllC:\Windows\system32\UACpktkipjeqy.dllC:\Windows\system32\UACavbrpbiqqj.datC:\Windows\system32\UACkvxewpbkct.dbC:\Windows\system32\UACtxvbvtfhvw.dllC:\Windows\system32\UACwutuwylkmy.dllHere is the log from combofix:ComboFix 09-08-10.06 - user 08/11/2009 18:48.1.1 - NTFSx86Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.958.566 [GMT -7:00]Running from: c:\documents and settings\user\Desktop\Combo-fix.exeAV: McAfee VirusScan *On-access scanning disabled* (Updated) {84B5EE75-6421-4CDE-A33A-DD43BA9FAD83}FW: McAfee Personal Firewall *enabled* {94894B63-8C7F-4050-BDA4-813CA00DA3E8}.((((((((((((((((((((((((((((((((((((((( Other Deletions ))))))))))))))))))))))))))))))))))))))))))))))))).c:\docume~1\user\APPLIC~1\020000009c5f7433654C.manifestc:\docume~1\user\APPLIC~1\020000009c5f7433654O.manifestc:\docume~1\user\APPLIC~1\020000009c5f7433654P.manifestc:\docume~1\user\APPLIC~1\020000009c5f7433654S.manifestc:\documents and settings\Administrator\Application Data\020000009c5f7433654C.manifestc:\documents and settings\Administrator\Application Data\020000009c5f7433654O.manifestc:\documents and settings\Administrator\Application Data\020000009c5f7433654P.manifestc:\documents and settings\Administrator\Application Data\020000009c5f7433654S.manifestc:\program files\Commonc:\temp\1cbc:\temp\1cb\syscheck.logc:\temp\DIV55c:\temp\DIV55\xDb.logc:\temp\tn3c:\windows\GnuHashes.inic:\windows\kb913800.exec:\windows\run.logc:\windows\system32\__c0027212.datc:\windows\system32\__c0062B4F.datc:\windows\system32\__c0083900.datc:\windows\system32\__c00899FC.datc:\windows\system32\__c008AAAC.datc:\windows\system32\__c00BB40C.datc:\windows\system32\__c00E8A84.datc:\windows\system32\binc:\windows\system32\drivers\UACbrovdhosdp.sysc:\windows\system32\drivers\vsfocevbxxukrq.sysc:\windows\system32\GroupPolicy000.datc:\windows\system32\ki3c:\windows\system32\kn8Tb3oSKRAKbcE.vbsc:\windows\system32\SystemX86c:\windows\system32\SystemX86\245.crack.zipc:\windows\system32\SystemX86\245.crack.zip.kwdc:\windows\system32\SystemX86\246.keygen.zipc:\windows\system32\SystemX86\246.keygen.zip.kwdc:\windows\system32\SystemX86\247.serial.zipc:\windows\system32\SystemX86\247.serial.zip.kwdc:\windows\system32\SystemX86\248.setup.zipc:\windows\system32\SystemX86\248.setup.zip.kwdc:\windows\system32\SystemX86\249.music.auc:\windows\system32\SystemX86\249.music.au.kwdc:\windows\system32\SystemX86\250.music2.auc:\windows\system32\SystemX86\250.music2.au.kwdc:\windows\system32\SystemX86\251.music3.auc:\windows\system32\SystemX86\251.music3.au.kwdc:\windows\system32\SystemX86\252.music.sndc:\windows\system32\SystemX86\252.music.snd.kwdc:\windows\system32\UACavbrpbiqqj.datc:\windows\system32\uacinit.dllc:\windows\system32\UACkvxewpbkct.dbc:\windows\system32\UACmyrgopyowf.dllc:\windows\system32\UACpktkipjeqy.dllc:\windows\system32\UACrqhrkgudup.dllc:\windows\system32\UACtxvbvtfhvw.dllc:\windows\system32\UACwutuwylkmy.dllc:\windows\system32\uniq.tllc:\windows\system32\uv9c:\windows\system32\VC.((((((((((((((((((((((((((((((((((((((( Drivers/Services ))))))))))))))))))))))))))))))))))))))))))))))))).-------\Service_UACd.sys-------\Legacy_UACd.sys-------\Legacy_OREANS32-------\Service_oreans32((((((((((((((((((((((((( Files Created from 2009-07-12 to 2009-08-12 ))))))))))))))))))))))))))))))).2009-08-12 01:26 . 2009-08-12 01:26 -------- d-----w- c:\program files\ERUNT2009-08-11 20:08 . 2009-08-11 20:08 -------- d-----w- c:\program files\Trend Micro2009-08-11 19:10 . 2009-08-11 19:10 -------- d--h--w- c:\windows\PIF2009-08-11 18:45 . 2009-08-03 20:36 38160 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys2009-08-11 18:45 . 2009-08-03 20:36 19096 ----a-w- c:\windows\system32\drivers\mbam.sys2009-08-11 18:28 . 2008-04-14 00:12 116224 ----a-w- c:\windows\system32\dllcache\xrxwiadr.dll2009-08-11 18:28 . 2001-08-18 05:36 23040 ----a-w- c:\windows\system32\dllcache\xrxwbtmp.dll2009-08-11 18:28 . 2008-04-14 00:12 18944 ----a-w- c:\windows\system32\dllcache\xrxscnui.dll2009-08-11 18:28 . 2001-08-18 05:37 27648 ----a-w- c:\windows\system32\dllcache\xrxftplt.exe2009-08-11 18:28 . 2001-08-18 05:37 4608 ----a-w- c:\windows\system32\dllcache\xrxflnch.exe2009-08-11 18:28 . 2001-08-18 05:37 99865 ----a-w- c:\windows\system32\dllcache\xlog.exe2009-08-11 18:28 . 2001-08-17 19:11 16970 ----a-w- c:\windows\system32\dllcache\xem336n5.sys2009-08-11 18:28 . 2004-08-04 05:29 19455 ----a-w- c:\windows\system32\dllcache\wvchntxx.sys2009-08-11 18:28 . 2004-08-04 05:29 12063 ----a-w- c:\windows\system32\dllcache\wsiintxx.sys2009-08-11 18:26 . 2004-08-10 20:00 5376 ----a-w- c:\windows\system32\dllcache\viaide.sys2009-08-11 18:25 . 2001-08-18 05:36 47616 ----a-w- c:\windows\system32\dllcache\umaxcam.dll2009-08-11 18:24 . 2001-08-17 19:14 123995 ----a-w- c:\windows\system32\dllcache\tjisdn.sys2009-08-11 18:23 . 2001-08-17 20:51 16896 ----a-w- c:\windows\system32\dllcache\stcusb.sys2009-08-11 18:22 . 2008-04-13 18:36 16000 ----a-w- c:\windows\system32\dllcache\smbbatt.sys2009-08-11 18:21 . 2001-08-17 19:19 36480 ----a-w- c:\windows\system32\dllcache\sfmanm.sys2009-08-11 18:20 . 2001-08-17 20:57 65664 ----a-w- c:\windows\system32\dllcache\s3legacy.sys2009-08-11 18:19 . 2001-08-18 05:36 35328 ----a-w- c:\windows\system32\dllcache\psisload.dll2009-08-11 18:18 . 2001-08-18 05:36 44544 ----a-w- c:\windows\system32\dllcache\ovui2.dll2009-08-11 18:17 . 2001-08-17 19:20 87040 ----a-w- c:\windows\system32\dllcache\nm6wdm.sys2009-08-11 18:16 . 2008-04-13 18:46 49024 ----a-w- c:\windows\system32\dllcache\mstape.sys2009-08-11 18:15 . 2001-08-18 05:36 58880 ----a-w- c:\windows\system32\dllcache\m3092dc.dll2009-08-11 18:14 . 2001-08-17 20:50 38784 ----a-w- c:\windows\system32\dllcache\io8.sys2009-08-11 18:13 . 2001-08-17 20:28 488383 ----a-w- c:\windows\system32\dllcache\hsf_v124.sys2009-08-11 18:12 . 2001-08-18 05:36 119296 ----a-w- c:\windows\system32\dllcache\hpdigwia.dll2009-08-11 18:11 . 2001-08-18 05:36 45568 ----a-w- c:\windows\system32\dllcache\esuni.dll2009-08-11 18:10 . 2004-08-10 20:00 20192 ----a-w- c:\windows\system32\dllcache\dpti2o.sys2009-08-11 18:09 . 2001-08-17 19:19 3072 ----a-w- c:\windows\system32\dllcache\cwbmidi.sys2009-08-11 18:08 . 2001-08-17 19:11 31529 ----a-w- c:\windows\system32\dllcache\brzwlan.sys2009-08-11 18:07 . 2001-08-17 21:56 66048 ----a-w- c:\windows\system32\dllcache\s3legacy.dll2009-08-11 04:15 . 2009-08-11 04:15 0 ----a-w- c:\documents and settings\user\settings.dat2009-08-10 09:45 . 2009-08-10 09:45 -------- d-----w- c:\documents and settings\Administrator\Local Settings\Application Data\Mozilla2009-08-10 09:39 . 2009-08-10 09:39 -------- d-sh--w- c:\documents and settings\Administrator\PrivacIE2009-08-10 09:39 . 2009-08-10 09:39 -------- d-sh--w- c:\documents and settings\Administrator\IETldCache2009-08-10 05:18 . 2009-08-10 05:18 122368 ----a-w- c:\windows\system32\dpv1132.dll2009-08-08 10:03 . 2009-08-08 10:03 -------- d-sh--w- c:\documents and settings\Default User\IETldCache2009-08-08 10:03 . 2009-08-08 10:03 -------- d-----w- c:\windows\system32\XPSViewer2009-08-08 10:03 . 2009-08-08 10:03 -------- d-----w- c:\program files\MSBuild2009-08-08 10:03 . 2009-08-08 10:03 -------- d-----w- c:\program files\Reference Assemblies2009-08-08 10:02 . 2008-07-06 12:06 89088 ------w- c:\windows\system32\dllcache\filterpipelineprintproc.dll2009-08-08 10:02 . 2008-07-06 12:06 575488 ------w- c:\windows\system32\xpsshhdr.dll2009-08-08 10:02 . 2008-07-06 12:06 575488 ------w- c:\windows\system32\dllcache\xpsshhdr.dll2009-08-08 10:02 . 2008-07-06 12:06 117760 ------w- c:\windows\system32\prntvpt.dll2009-08-08 10:02 . 2008-07-06 10:50 597504 ------w- c:\windows\system32\dllcache\printfilterpipelinesvc.exe2009-08-08 10:02 . 2009-08-08 10:03 -------- d-----w- C:\cd0d44575f881c8ea98d12d804cf2009-08-08 10:02 . 2008-07-06 12:06 1676288 ------w- c:\windows\system32\xpssvcs.dll2009-08-08 10:02 . 2008-07-06 12:06 1676288 ------w- c:\windows\system32\dllcache\xpssvcs.dll2009-08-08 10:00 . 2009-08-08 10:00 -------- d-sh--w- c:\documents and settings\NetworkService\IETldCache2009-08-05 10:16 . 2009-08-05 10:16 -------- d-----w- C:\Cache2009-07-21 04:03 . 2009-07-21 04:03 -------- d-----w- c:\program files\ASIO4ALL v22009-07-21 02:13 . 2009-07-21 04:03 -------- d-----w- c:\program files\VstPlugins2009-07-21 02:13 . 2006-06-20 08:56 225280 ----a-w- c:\windows\system32\rewire.dll2009-07-21 02:13 . 2009-07-21 02:13 -------- d-----w- c:\program files\Outsim2009-07-21 02:11 . 2009-08-11 08:24 -------- d-----w- c:\program files\Image-Line.(((((((((((((((((((((((((((((((((((((((( Find3M Report )))))))))))))))))))))))))))))))))))))))))))))))))))).2009-08-12 01:56 . 2009-08-12 01:56 518144 --sha-w- c:\windows\system32\9.tmp2009-08-12 01:20 . 2007-11-07 20:40 56 ----a-w- c:\windows\sfshell.tmp2009-08-11 18:43 . 2009-08-10 06:36 122 ----a-w- c:\documents and settings\user\udpcrawl.tmp2009-08-11 07:33 . 2006-05-12 06:59 -------- d-----w- c:\program files\Steam2009-08-11 04:47 . 2008-02-10 02:22 -------- d---a-w- c:\docume~1\ALLUSE~1\APPLIC~1\TEMP2009-08-10 05:18 . 2009-08-10 05:18 518144 --sha-w- c:\windows\system32\2A.tmp2009-08-10 05:05 . 2007-06-11 10:03 -------- d-----w- c:\docume~1\user\APPLIC~1\Azureus2009-08-10 05:04 . 2006-02-05 22:37 57984 -c--a-w- c:\documents and settings\user\Local Settings\Application Data\GDIPFONTCACHEV1.DAT2009-08-10 04:20 . 2006-10-13 21:08 -------- d-----w- c:\docume~1\user\APPLIC~1\Skype2009-08-10 01:25 . 2009-02-27 23:35 -------- d-----w- c:\documents and settings\LocalService\Application Data\SACore2009-08-05 05:39 . 2009-04-05 00:31 -------- d-----w- c:\program files\Vuze2009-08-04 00:31 . 2009-08-04 00:31 1215513 ----a-w- c:\windows\system32\xa.tmp2009-07-31 18:27 . 2009-02-27 22:33 -------- d-----w- c:\program files\McAfee2009-07-31 04:46 . 2009-02-27 22:11 -------- d-----w- c:\docume~1\ALLUSE~1\APPLIC~1\McAfee2009-06-25 04:12 . 2008-03-03 07:37 256 ----a-w- c:\windows\system32\pool.bin2009-06-19 00:58 . 2007-06-06 22:39 -------- d-----w- c:\program files\DivX2009-06-16 14:36 . 2004-08-10 20:00 81920 ----a-w- c:\windows\system32\fontsub.dll2009-06-16 14:36 . 2004-08-10 20:00 119808 ----a-w- c:\windows\system32\t2embed.dll2009-06-13 22:56 . 2006-12-18 03:32 -------- d-----w- c:\program files\AIM62009-06-13 22:56 . 2006-05-12 04:55 -------- d-----w- c:\docume~1\ALLUSE~1\APPLIC~1\Viewpoint2009-06-13 22:55 . 2006-05-12 04:48 -------- d-----w- c:\docume~1\ALLUSE~1\APPLIC~1\AOL Downloads2009-06-03 19:09 . 2005-06-29 01:55 1291264 ----a-w- c:\windows\system32\quartz.dll2009-05-14 06:25 . 2009-02-27 22:34 79816 ----a-w- c:\windows\system32\drivers\mfeavfk.sys2009-05-14 06:25 . 2009-02-27 22:34 40552 ----a-w- c:\windows\system32\drivers\mfesmfk.sys2009-05-14 06:25 . 2009-02-27 22:34 35272 ----a-w- c:\windows\system32\drivers\mfebopk.sys2009-05-14 06:25 . 2009-02-27 22:34 214024 ----a-w- c:\windows\system32\drivers\mfehidk.sys2009-05-14 06:24 . 2009-02-27 22:34 34248 ----a-w- c:\windows\system32\drivers\mferkdk.sys2009-05-01 21:02 . 2009-05-01 21:02 1044480 ----a-w- c:\program files\mozilla firefox\plugins\libdivx.dll2009-05-01 21:02 . 2009-05-01 21:02 200704 ----a-w- c:\program files\mozilla firefox\plugins\ssldivx.dll.((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))..*Note* empty entries & legit default entries are not shown REGEDIT4[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]"Aim6"="c:\program files\AIM6\aim6.exe" [2009-05-19 49968][HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2005-11-15 7307264]"mcagent_exe"="c:\program files\McAfee.com\Agent\mcagent.exe" [2009-05-01 645328]"McENUI"="c:\progra~1\McAfee\MHN\McENUI.exe" [2009-04-10 1176808][HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\6074df77654]2009-08-10 05:18 122368 ----a-w- c:\windows\system32\dpv1132.dll[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcmscsvc]@=""[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]@=""[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^Adobe Reader Speed Launch.lnk]path=c:\documents and settings\All Users\Start Menu\Programs\Startup\Adobe Reader Speed Launch.lnkbackup=c:\windows\pss\Adobe Reader Speed Launch.lnkCommon Startup[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^HP Digital Imaging Monitor.lnk]path=c:\documents and settings\All Users\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnkbackup=c:\windows\pss\HP Digital Imaging Monitor.lnkCommon Startup[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^Kodak EasyShare software.lnk]path=c:\documents and settings\All Users\Start Menu\Programs\Startup\Kodak EasyShare software.lnkbackup=c:\windows\pss\Kodak EasyShare software.lnkCommon Startup[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^Microsoft Office.lnk]path=c:\documents and settings\All Users\Start Menu\Programs\Startup\Microsoft Office.lnkbackup=c:\windows\pss\Microsoft Office.lnkCommon Startup[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^SBC Self Support Tool.lnk]path=c:\documents and settings\All Users\Start Menu\Programs\Startup\SBC Self Support Tool.lnkbackup=c:\windows\pss\SBC Self Support Tool.lnkCommon Startup[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^Wireless 802.11g USB Adapter.lnk]path=c:\documents and settings\All Users\Start Menu\Programs\Startup\Wireless 802.11g USB Adapter.lnkbackup=c:\windows\pss\Wireless 802.11g USB Adapter.lnkCommon Startup[HKLM\~\startupfolder\C:^Documents and Settings^user^Start Menu^Programs^Startup^Microsoft Find Fast.lnk]path=c:\documents and settings\user\Start Menu\Programs\Startup\Microsoft Find Fast.lnkbackup=c:\windows\pss\Microsoft Find Fast.lnkStartup[HKLM\~\startupfolder\C:^Documents and Settings^user^Start Menu^Programs^Startup^Office Startup.lnk]path=c:\documents and settings\user\Start Menu\Programs\Startup\Office Startup.lnkbackup=c:\windows\pss\Office Startup.lnkStartup[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services]"SPBBCSvc"=3 (0x3)"SNDSrvc"=3 (0x3)"SBService"=2 (0x2)"SAVScan"=3 (0x3)"NPFMntor"=2 (0x2)"navapsvc"=2 (0x2)"ccSetMgr"=2 (0x2)"ccPwdSvc"=3 (0x3)"ccEvtMgr"=2 (0x2)[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\McAfeeAntiVirus]"DisableMonitoring"=dword:00000001[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\McAfeeFirewall]"DisableMonitoring"=dword:00000001[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecAntiVirus]"DisableMonitoring"=dword:00000001[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]"EnableFirewall"= 0 (0x0)[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]"%windir%\\system32\\sessmgr.exe"="c:\\Program Files\\Messenger\\msmsgs.exe"="c:\\Program Files\\AIM\\aim.exe"="c:\\Program Files\\LimeWire\\LimeWire.exe"="c:\\Program Files\\EA GAMES\\Need for Speed Most Wanted PC Demo\\speedDemo.exe"="c:\\Program Files\\ICQLite\\ICQLite.exe"="c:\\Program Files\\Steam\\SteamApps\\prsnstowart987@sbcglobal.net\\counter-strike\\hl.exe"="%windir%\\Network Diagnostic\\xpnetdiag.exe"="c:\\Program Files\\Common Files\\AOL\\Loader\\aolload.exe"="c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqtra08.exe"="c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqste08.exe"="c:\\Program Files\\HP\\Digital Imaging\\bin\\hposid01.exe"="c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqscnvw.exe"="c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqkygrp.exe"="c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqCopy.exe"="c:\\Program Files\\HP\\Digital Imaging\\bin\\hpfccopy.exe"="c:\\Program Files\\HP\\Digital Imaging\\bin\\hpoews01.exe"="c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqnrs08.exe"="c:\\Program Files\\Yahoo!\\Messenger\\YServer.exe"="c:\\Program Files\\Roxio\\Media Manager 9\\MediaManager9.exe"="c:\\Program Files\\iTunes\\iTunes.exe"="c:\\Program Files\\Roxio\\Digital Home 9\\RoxioUPnPRenderer9.exe"="c:\\Program Files\\AIM6\\aim6.exe"="c:\\Program Files\\Veoh Networks\\VeohWebPlayer\\veohwebplayer.exe"="c:\\Program Files\\Vuze\\Azureus.exe"="c:\\Program Files\\Common Files\\McAfee\\MNA\\McNASvc.exe"="c:\\Program Files\\Skype\\Phone\\Skype.exe"=[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]"443:TCP"= 443:TCP:*:Disabled:ooVoo TCP port 443"443:UDP"= 443:UDP:*:Disabled:ooVoo UDP port 443"37674:TCP"= 37674:TCP:*:Disabled:ooVoo TCP port 37674"37674:UDP"= 37674:UDP:*:Disabled:ooVoo UDP port 37674"37675:UDP"= 37675:UDP:*:Disabled:ooVoo UDP port 37675R2 McAfee SiteAdvisor Service;McAfee SiteAdvisor Service;c:\program files\McAfee\SiteAdvisor\McSACore.exe [2/27/2009 3:37 PM 203280]R2 Viewpoint Manager Service;Viewpoint Manager Service;c:\program files\Viewpoint\Common\ViewpointService.exe [10/23/2007 4:46 PM 24652]S1 viaagpp;viaagpp;c:\windows\system32\drivers\viaagpp.sys --> c:\windows\system32\drivers\viaagpp.sys [?]S3 VM30xx86;Vimicro USB PC Camera (ZC030x);c:\windows\system32\drivers\vm30xx86.sys [1/31/2008 11:03 PM 1294336][HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{A509B1FF-37FF-4bFF-8CFF-4F3A747040FF}]c:\windows\system32\rundll32.exe c:\windows\system32\advpack.dll,LaunchINFSectionEx c:\program files\Internet Explorer\clrtour.inf,DefaultInstall.ResetTour,,12.- - - - ORPHANS REMOVED - - - -HKU-Default-Run-Spyware Doctor - (no file).------- Supplementary Scan -------.uStart Page = hxxp://www.yahoo.com/?fr=fp-yie8uSearchMigratedDefaultURL = hxxp://www.google.com/search?q={searchTerms}&sourceid=ie7&rls=com.microsoft:en-US&ie=utf8&oe=utf8mStart Page = hxxp://www.yahoo.commSearch Bar = hxxp://red.clientapps.yahoo.com/customize/ie/defaults/sb/sbcydsl/*http://www.yahoo.com/search/ie.htmluInternet Connection Wizard,ShellNext = iexploreuInternet Settings,ProxyOverride = 127.0.0.1uSearchURL,(Default) = hxxp://red.clientapps.yahoo.com/customize/ie/defaults/su/sbcydsl/*http://www.yahoo.comTrusted Zone: amaena.comTrusted Zone: avsystemcare.comTrusted Zone: onerateld.comTrusted Zone: safetydownload.comTrusted Zone: trustedantivirus.comTrusted Zone: virusschlacht.comTrusted Zone: amaena.comTrusted Zone: avsystemcare.comTrusted Zone: onerateld.comTrusted Zone: safetydownload.comTrusted Zone: trustedantivirus.comTrusted Zone: virusschlacht.comDPF: Microsoft XML Parser for Java - file:///C:/WINDOWS/Java/classes/xmldso.cabFF - ProfilePath - c:\docume~1\user\APPLIC~1\Mozilla\Firefox\Profiles\6xjsuede.default\FF - prefs.js: browser.startup.homepage - hxxp://www.yahoo.com/FF - component: c:\program files\McAfee\SiteAdvisor\components\McFFPlg.dllFF - plugin: c:\program files\Java\jre1.5.0_05\bin\NPJava11.dllFF - plugin: c:\program files\Java\jre1.5.0_05\bin\NPJava12.dllFF - plugin: c:\program files\Java\jre1.5.0_05\bin\NPJava13.dllFF - plugin: c:\program files\Java\jre1.5.0_05\bin\NPJava14.dllFF - plugin: c:\program files\Java\jre1.5.0_05\bin\NPJava32.dllFF - plugin: c:\program files\Java\jre1.5.0_05\bin\NPJPI150_05.dllFF - plugin: c:\program files\Java\jre1.5.0_05\bin\NPOJI610.dllFF - plugin: c:\program files\Mozilla Firefox\plugins\npViewpoint.dllFF - plugin: c:\program files\Veoh Networks\VeohWebPlayer\NPVeohTVPlugin.dllFF - plugin: c:\program files\Veoh Networks\VeohWebPlayer\npWebPlayerVideoPluginATL.dllFF - plugin: c:\program files\Viewpoint\Viewpoint Media Player\npViewpoint.dll.**************************************************************************catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.netRootkit scan 2009-08-11 18:56Windows 5.1.2600 Service Pack 3 NTFSscanning hidden processes ... scanning hidden autostart entries ... scanning hidden files ... c:\windows\system32\GroupPolicy000.dat 0 bytesc:\windows\system32\SystemX86scan completed successfullyhidden files: 2**************************************************************************.--------------------- DLLs Loaded Under Running Processes ---------------------- - - - - - - > 'winlogon.exe'(756)c:\windows\System32\dpv1132.dll- - - - - - - > 'explorer.exe'(6112)c:\program files\McAfee\SiteAdvisor\saHook.dllc:\windows\System32\dpv1132.dllc:\windows\system32\9.tmp.------------------------ Other Running Processes ------------------------.c:\windows\ehome\ehrecvr.exec:\windows\ehome\ehSched.exec:\progra~1\McAfee\MSC\mcmscsvc.exec:\progra~1\COMMON~1\McAfee\MNA\McNASvc.exec:\progra~1\COMMON~1\McAfee\McProxy\McProxy.exec:\progra~1\McAfee\VIRUSS~1\Mcshield.exec:\windows\system32\nvsvc32.exec:\windows\system32\HPZipm12.exec:\program files\AIM6\aolsoftware.exec:\program files\Spyware Doctor\sdhelp.exec:\program files\Yahoo!\SoftwareUpdate\YahooAUService.exec:\windows\ehome\mcrdsvc.exec:\windows\system32\wscntfy.exec:\windows\system32\dllhost.exec:\program files\Viewpoint\Viewpoint Manager\ViewMgr.exec:\program files\McAfee\MPF\MpfSrv.exec:\windows\system32\rundll32.exe.**************************************************************************.Completion time: 2009-08-12 19:00 - machine was rebootedComboFix-quarantined-files.txt 2009-08-12 02:00Pre-Run: 17,978,167,296 bytes freePost-Run: 18,056,204,288 bytes freeWindowsXP-KB310994-SP2-Pro-BootDisk-ENU.exe[boot loader]timeout=2default=multi(0)disk(0)rdisk(0)partition(2)\WINDOWS[operating systems]c:\cmdcons\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdconsmulti(0)disk(0)rdisk(0)partition(2)\WINDOWS="Windows XP Media Center Edition" /noexecute=optin /fastdetectHere is the Log.txt:Logfile of random's system information tool 1.06 (written by random/random)Run by user at 2009-08-11 19:07:06Microsoft Windows XP Professional Service Pack 3System drive C: has 17 GB (27%) free of 63 GBTotal RAM: 958 MB (50% free)Logfile of Trend Micro HijackThis v2.0.2Scan saved at 7:07:31 PM, on 8/11/2009Platform: Windows XP SP3 (WinNT 5.01.2600)MSIE: Internet Explorer v7.00 (7.00.6000.16791)Boot mode: NormalRunning processes:C:\WINDOWS\System32\smss.exeC:\WINDOWS\system32\winlogon.exeC:\WINDOWS\system32\services.exeC:\WINDOWS\system32\lsass.exeC:\WINDOWS\system32\svchost.exeC:\WINDOWS\System32\svchost.exeC:\WINDOWS\system32\spoolsv.exeC:\WINDOWS\eHome\ehRecvr.exeC:\WINDOWS\eHome\ehSched.exeC:\Program Files\McAfee\SiteAdvisor\McSACore.exeC:\PROGRA~1\McAfee\MSC\mcmscsvc.exeC:\Program Files\McAfee.com\Agent\mcagent.exeC:\Program Files\AIM6\aim6.exec:\PROGRA~1\COMMON~1\mcafee\mna\mcnasvc.exec:\PROGRA~1\COMMON~1\mcafee\mcproxy\mcproxy.exeC:\PROGRA~1\McAfee\VIRUSS~1\mcshield.exeC:\WINDOWS\system32\nvsvc32.exeC:\WINDOWS\system32\HPZipm12.exeC:\Program Files\AIM6\aolsoftware.exeC:\Program Files\Spyware Doctor\sdhelp.exeC:\WINDOWS\system32\svchost.exeC:\Program Files\Viewpoint\Common\ViewpointService.exeC:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exeC:\WINDOWS\system32\dllhost.exeC:\Program Files\Viewpoint\Viewpoint Manager\ViewMgr.exeC:\Program Files\McAfee\MPF\MPFSrv.exeC:\WINDOWS\explorer.exeC:\WINDOWS\system32\rundll32.exeC:\WINDOWS\system32\notepad.exeC:\WINDOWS\system32\ctfmon.exeC:\PROGRA~1\McAfee\VIRUSS~1\mcsysmon.exeC:\Program Files\Mozilla Firefox\firefox.exeC:\WINDOWS\system32\rundll32.exec:\PROGRA~1\mcafee\VIRUSS~1\mcvsshld.exeC:\Documents and Settings\user\Desktop\RSIT.exeC:\Program Files\trend micro\user.exeR0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.yahoo.com/?fr=fp-yie8R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://red.clientapps.yahoo.com/customize/.../search/ie.htmlR1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.yahoo.comR1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://red.clientapps.yahoo.com/customize/...//www.yahoo.comR1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = 127.0.0.1R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn3\yt.dllO2 - BHO: &Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn3\yt.dllO2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - c:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dllO2 - BHO: UberButton Class - {5BAB4B5B-68BC-4B02-94D6-2FC0DE4A7897} - C:\PROGRA~1\Yahoo!\Common\yiesrvc.dllO2 - BHO: PCTools Site Guard - {5C8B2A36-3DB1-42A4-A3CB-D426709BBFEB} - C:\PROGRA~1\SPYWAR~1\tools\iesdsg.dllO2 - BHO: YahooTaggedBM Class - {65D886A2-7CA7-479B-BB95-14D1EFB7946A} - C:\PROGRA~1\Yahoo!\Common\YIeTagBm.dllO2 - BHO: scriptproxy - {7DB2D5A0-7241-4E79-B68D-6309F01C5231} - c:\PROGRA~1\mcafee\VIRUSS~1\scriptsn.dllO2 - BHO: McAfee SiteAdvisor BHO - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dllO2 - BHO: PCTools Browser Monitor - {B56A7D7D-6927-48C8-A975-17DF180C71AC} - C:\PROGRA~1\SPYWAR~1\tools\iesdpb.dllO2 - BHO: SidebarAutoLaunch Class - {F2AA9440-6328-4933-B7C9-A6CCDF9CBF6D} - C:\Program Files\Yahoo!\browser\YSidebarIEBHO.dllO2 - BHO: SingleInstance Class - {FDAD4DA1-61A2-4FD8-9C17-86F7AC245081} - C:\Program Files\Yahoo!\Companion\Installs\cpn3\YTSingleInstance.dllO3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn3\yt.dllO3 - Toolbar: McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dllO3 - Toolbar: Veoh Web Player Video Finder - {0FBB9689-D3D7-4f7a-A2E2-585B10099BFC} - C:\Program Files\Veoh Networks\VeohWebPlayer\VeohIEToolbar.dllO3 - Toolbar: Veoh Video Compass - {52836EB0-631A-47B1-94A6-61F9D9112DAE} - C:\Program Files\Veoh Networks\Veoh Video Compass\SearchRecsPlugin.dllO4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartupO4 - HKLM\..\Run: [mcagent_exe] "C:\Program Files\McAfee.com\Agent\mcagent.exe" /runkeyO4 - HKLM\..\Run: [McENUI] C:\PROGRA~1\McAfee\MHN\McENUI.exe /hideO4 - HKCU\..\Run: [Aim6] "C:\Program Files\AIM6\aim6.exe" /d locale=en-US ee://aol/imAppO4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exeO9 - Extra button: Spyware Doctor - {2D663D1A-8670-49D9-A1A5-4C56B4E14E84} - C:\PROGRA~1\SPYWAR~1\tools\iesdpb.dllO9 - Extra button: AT&T Yahoo! Services - {5BAB4B5B-68BC-4B02-94D6-2FC0DE4A7897} - C:\PROGRA~1\Yahoo!\Common\yiesrvc.dllO9 - Extra button: AIM - {AC9E2541-2814-11d5-BC6D-00B0D0A1DE45} - C:\Program Files\AIM\aim.exeO9 - Extra button: ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - C:\Program Files\ICQLite\ICQLite.exeO9 - Extra 'Tools' menuitem: ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - C:\Program Files\ICQLite\ICQLite.exeO9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exeO9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exeO9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exeO9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exeO9 - Extra button: Absolute Poker - {13C1DBF6-7535-495c-91F6-8C13714ED485} - C:\Documents and Settings\user\Start Menu\Programs\Absolute Poker\Absolute Poker.lnk (file missing) (HKCU)O9 - Extra 'Tools' menuitem: Absolute Poker - {13C1DBF6-7535-495c-91F6-8C13714ED485} - C:\Documents and Settings\user\Start Menu\Programs\Absolute Poker\Absolute Poker.lnk (file missing) (HKCU)O15 - Trusted Zone: *.amaena.comO15 - Trusted Zone: *.avsystemcare.comO15 - Trusted Zone: *.onerateld.comO15 - Trusted Zone: *.safetydownload.comO15 - Trusted Zone: *.trustedantivirus.comO15 - Trusted Zone: *.virusschlacht.comO15 - Trusted Zone: *.amaena.com (HKLM)O15 - Trusted Zone: *.avsystemcare.com (HKLM)O15 - Trusted Zone: *.onerateld.com (HKLM)O15 - Trusted Zone: *.safetydownload.com (HKLM)O15 - Trusted Zone: *.trustedantivirus.com (HKLM)O15 - Trusted Zone: *.virusschlacht.com (HKLM)O16 - DPF: Yahoo! Pool 2 - http://download2.games.yahoo.com/games/clients/y/poti_x.cabO16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (Installation Support) - C:\Program Files\Yahoo!\Common\Yinsthelper200711281.dllO16 - DPF: {459E93B6-150E-45D5-8D4B-45C66FC035FE} (get_atlcom Class) - http://apps.corel.com/nos_dl_manager_dev/p...IEGetPlugin.ocxO16 - DPF: {4788DE0A-3552-49EA-AC8C-233DA52523B9} (AxLoaderPassword Class) - http://www.blackberry.com/devicesoftware/AxLoader.cabO16 - DPF: {77E32299-629F-43C6-AB77-6A1E6D7663F6} - http://atv.disney.go.com/global/download/otoy/OTOYAX29b.cabO16 - DPF: {E473A65C-8087-49A3-AFFD-C5BC4A10669B} (Quantum Streaming IE Player Class) - http://mvnet.xlontech.net/qm/fox/06071909/qsp2ie06071909.cabO18 - Protocol: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dllO20 - Winlogon Notify: 6074df77654 - C:\WINDOWS\System32\dpv1132.dllO23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exeO23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exeO23 - Service: McAfee SiteAdvisor Service - Unknown owner - C:\Program Files\McAfee\SiteAdvisor\McSACore.exeO23 - Service: McAfee Services (mcmscsvc) - McAfee, Inc. - C:\PROGRA~1\McAfee\MSC\mcmscsvc.exeO23 - Service: McAfee Network Agent (McNASvc) - McAfee, Inc. - c:\PROGRA~1\COMMON~1\mcafee\mna\mcnasvc.exeO23 - Service: McAfee Scanner (McODS) - McAfee, Inc. - C:\PROGRA~1\McAfee\VIRUSS~1\mcods.exeO23 - Service: McAfee Proxy Service (McProxy) - McAfee, Inc. - c:\PROGRA~1\COMMON~1\mcafee\mcproxy\mcproxy.exeO23 - Service: McAfee Real-time Scanner (McShield) - McAfee, Inc. - C:\PROGRA~1\McAfee\VIRUSS~1\mcshield.exeO23 - Service: McAfee SystemGuards (McSysmon) - McAfee, Inc. - C:\PROGRA~1\McAfee\VIRUSS~1\mcsysmon.exeO23 - Service: McAfee Personal Firewall Service (MpfService) - McAfee, Inc. - C:\Program Files\McAfee\MPF\MPFSrv.exeO23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exeO23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exeO23 - Service: Roxio UPnP Renderer 9 - Sonic Solutions - C:\Program Files\Roxio\Digital Home 9\RoxioUPnPRenderer9.exeO23 - Service: Roxio Upnp Server 9 - Sonic Solutions - C:\Program Files\Roxio\Digital Home 9\RoxioUpnpService9.exeO23 - Service: LiveShare P2P Server 9 (RoxLiveShare9) - Sonic Solutions - C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxLiveShare9.exeO23 - Service: RoxMediaDB9 - Sonic Solutions - C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxMediaDB9.exeO23 - Service: Roxio Hard Drive Watcher 9 (RoxWatch9) - Sonic Solutions - C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatch9.exeO23 - Service: PC Tools Spyware Doctor (SDhelper) - PC Tools Research Pty Ltd - C:\Program Files\Spyware Doctor\sdhelp.exeO23 - Service: Viewpoint Manager Service - Viewpoint Corporation - C:\Program Files\Viewpoint\Common\ViewpointService.exeO23 - Service: Yahoo! Updater (YahooAUService) - Yahoo! Inc. - C:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe--End of file - 10078 bytes======Scheduled tasks folder======C:\WINDOWS\tasks\McDefragTask.jobC:\WINDOWS\tasks\McQcTask.jobC:\WINDOWS\tasks\wpczbjnn.job======Registry dump======[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{02478D38-C3F9-4EFB-9B51-7695ECA05670}]&Yahoo! Toolbar Helper - C:\Program Files\Yahoo!\Companion\Installs\cpn3\yt.dll [2008-11-20 911600][HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]AcroIEHlprObj Class - c:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll [2004-12-14 63136][HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5BAB4B5B-68BC-4B02-94D6-2FC0DE4A7897}]UberButton Class - C:\PROGRA~1\Yahoo!\Common\yiesrvc.dll [2006-10-31 198136][HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5C8B2A36-3DB1-42A4-A3CB-D426709BBFEB}]PCTools Site Guard - C:\PROGRA~1\SPYWAR~1\tools\iesdsg.dll [2006-03-21 788664][HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{65D886A2-7CA7-479B-BB95-14D1EFB7946A}]YahooTaggedBM Class - C:\PROGRA~1\Yahoo!\Common\YIeTagBm.dll [2006-07-28 120312][HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7DB2D5A0-7241-4E79-B68D-6309F01C5231}]scriptproxy - c:\PROGRA~1\mcafee\VIRUSS~1\scriptsn.dll [2009-05-13 62784][HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B164E929-A1B6-4A06-B104-2CD0E90A88FF}]McAfee SiteAdvisor BHO - c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll [2009-01-29 145424][HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B56A7D7D-6927-48C8-A975-17DF180C71AC}]PCTools Browser Monitor - C:\PROGRA~1\SPYWAR~1\tools\iesdpb.dll [2006-03-01 833240][HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{F2AA9440-6328-4933-B7C9-A6CCDF9CBF6D}]SidebarAutoLaunch Class - C:\Program Files\Yahoo!\browser\YSidebarIEBHO.dll [2005-02-03 124032][HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FDAD4DA1-61A2-4FD8-9C17-86F7AC245081}]SingleInstance Class - C:\Program Files\Yahoo!\Companion\Installs\cpn3\YTSingleInstance.dll [2008-11-20 160496][HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]{EF99BD32-C1FB-11D2-892F-0090271D4F88} - Yahoo! Toolbar - C:\Program Files\Yahoo!\Companion\Installs\cpn3\yt.dll [2008-11-20 911600]{0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - McAfee SiteAdvisor Toolbar - c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll [2009-01-29 145424]{0FBB9689-D3D7-4f7a-A2E2-585B10099BFC} - Veoh Web Player Video Finder - C:\Program Files\Veoh Networks\VeohWebPlayer\VeohIEToolbar.dll [2009-02-24 429816]{52836EB0-631A-47B1-94A6-61F9D9112DAE} - Veoh Video Compass - C:\Program Files\Veoh Networks\Veoh Video Compass\SearchRecsPlugin.dll [2009-02-13 404216][HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]"NvCplDaemon"=C:\WINDOWS\system32\NvCpl.dll [2005-11-14 7307264]"mcagent_exe"=C:\Program Files\McAfee.com\Agent\mcagent.exe [2009-05-01 645328]"McENUI"=C:\PROGRA~1\McAfee\MHN\McENUI.exe [2009-04-09 1176808][HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]"Aim6"=C:\Program Files\AIM6\aim6.exe [2009-05-18 49968]"ctfmon.exe"=C:\WINDOWS\system32\ctfmon.exe [2008-04-13 15360][HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\6074dfd8]C:\WINDOWS\system32\uwjhrori.dll,b [][HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\A00F275F1.exe]C:\DOCUME~1\user\LOCALS~1\Temp\_A00F275F1.exe [][HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AIM]C:\Program Files\AIM\aim.exe [2005-08-05 67160][HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Aim6]C:\Program Files\AIM6\aim6.exe [2009-05-18 49968][HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ehTray]C:\WINDOWS\ehome\ehtray.exe [2005-08-05 64512][HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\eRecoveryService]C:\Acer\Empowering Technology\eRecovery\Monitor.exe [2005-10-31 393216][HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Framework Windows]frmwrk32.exe [][HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\H/PC Connection Agent]C:\Program Files\Microsoft ActiveSync\wcescomm.exe [][HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HP Software Update]C:\Program Files\HP\HP Software Update\HPWuSchd2.exe [2006-02-19 49152][HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ICQ Lite]C:\Program Files\ICQLite\ICQLite.exe [2006-07-11 3144800][HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IMJPMIG8.1]C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE [2004-08-10 208952][HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper]C:\Program Files\iTunes\iTunesHelper.exe [2008-06-02 267048][HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LaunchApp]Alaunch [][HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Load]??z? [][HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Monopod]C:\DOCUME~1\user\LOCALS~1\Temp\b.exe [][HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Motive SmartBridge]C:\PROGRA~1\SBCLIG~1\SMARTB~1\MotiveSB.exe [2003-12-10 380928][HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MSMSGS]C:\Program Files\Messenger\msmsgs.exe [2008-04-13 1695232][HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MSPY2002]C:\WINDOWS\system32\IME\PINTLGNT\ImScInst.exe [2004-08-10 59392][HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NAV CfgWiz]C:\Program Files\Norton AntiVirus\CfgWiz.exe /GUID {0D7956A2-5A08-4ec2-A72C-DF8495A66016} /MODE CfgWiz /CMDLINE REBOOT [][HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\net]C:\WINDOWS\system32\net.net [][HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ntiMUI]c:\Program Files\NewTech Infosystems\NTI CD & DVD-Maker 7\ntiMUI.exe [2005-05-11 45056][HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvCplDaemon]C:\WINDOWS\system32\NvCpl.dll [2005-11-14 7307264][HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvMediaCenter]C:\WINDOWS\system32\NvMcTray.dll [2005-11-14 86016][HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\nwiz]nwiz.exe /install [][HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PHIME2002A]C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE [2004-08-10 455168][HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PHIME2002ASync]C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE [2004-08-10 455168][HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\prunnet]C:\WINDOWS\system32\prunnet.exe [][HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]C:\Program Files\QuickTime\qttask.exe [2008-05-27 413696][HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RemoteControl]C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe [2004-11-02 32768][HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RoxWatchTray]C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatchTray9.exe [2007-04-23 228088][HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Run]??z? [][HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Skype]C:\Program Files\Skype\Phone\Skype.exe [2006-09-25 20053544][HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SoundMan]C:\WINDOWS\SOUNDMAN.EXE [2005-09-22 90112][HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SSC_UserPrompt]C:\Program Files\Common Files\Symantec Shared\Security Center\UsrPrmpt.exe [][HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]C:\Program Files\Java\jre1.5.0_05\bin\jusched.exe [2005-08-26 36975][HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TkBellExe]C:\Program Files\Common Files\Real\Update_OB\realsched.exe [2006-07-01 180269][HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\VeohPlugin]C:\Program Files\Veoh Networks\VeohWebPlayer\veohwebplayer.exe [2009-02-24 3558136][HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ViewMgr]C:\Program Files\Viewpoint\Viewpoint Manager\ViewMgr.exe [2007-01-04 112336][HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\VM30xSnap]VM30xSnap.exe Vimicro USB PC Camera (ZC030x) [][HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Yahoo! Pager]C:\PROGRA~1\Yahoo!\MESSEN~1\YAHOOM~1.EXE [2006-10-26 4662776][HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\YBrowser]C:\PROGRA~1\Yahoo!\browser\ybrwicon.exe [2006-07-21 129536][HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^Adobe Reader Speed Launch.lnk]C:\PROGRA~1\Adobe\ACROBA~1.0\Reader\READER~1.EXE [2004-12-14 29696][HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^HP Digital Imaging Monitor.lnk]C:\PROGRA~1\HP\DIGITA~1\bin\hpqtra08.exe [2006-02-19 288472][HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^Kodak EasyShare software.lnk]C:\PROGRA~1\Kodak\KODAKE~1\bin\EASYSH~1.EXE -hx [][HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^Microsoft Office.lnk]C:\PROGRA~1\MICROS~2\Office10\OSA.EXE [2001-02-13 83360][HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^SBC Self Support Tool.lnk]C:\PROGRA~1\SBCLIG~1\bin\matcli.exe [2003-10-10 217088][HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^Wireless 802.11g USB Adapter.lnk]C:\PROGRA~1\WIRELE~1.11~\ZDWlan.exe [2004-11-19 425984][HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^user^Start Menu^Programs^Startup^Microsoft Find Fast.lnk]C:\PROGRA~1\MICROS~2\Office\FINDFAST.EXE [1996-11-17 111376][HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^user^Start Menu^Programs^Startup^Office Startup.lnk]C:\PROGRA~1\MICROS~2\Office\OSA.EXE [1996-11-17 51984][HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services]"SPBBCSvc"=3"SNDSrvc"=3"SBService"=2"SAVScan"=3"NPFMntor"=2"navapsvc"=2"ccSetMgr"=2"ccPwdSvc"=3"ccEvtMgr"=2[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\6074df77654]C:\WINDOWS\System32\dpv1132.dll [2009-08-09 122368][HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]C:\WINDOWS\system32\WgaLogon.dll [2007-03-15 236928][HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcmscsvc][HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS][HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mcmscsvc][HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MCODS][HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MpfService][HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{1a3e09be-1e45-494b-9174-d7385b45bbf5}][HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]"dontdisplaylastusername"=0"legalnoticecaption"="legalnoticetext"="shutdownwithoutlogon"=1"undockwithoutlogon"=1"InstallVisualStyle"=C:\WINDOWS\Resources\Themes\Royale\Royale.msstyles"InstallTheme"=C:\WINDOWS\Resources\Themes\Royale.theme[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]"NoDriveTypeAutoRun"=323"NoDriveAutoRun"=67108863"NoDrives"=0[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]"HonorAutoRunSetting"="NoDriveAutoRun"="NoDriveTypeAutoRun"="NoDrives"=[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019""C:\Program Files\Messenger\msmsgs.exe"="C:\Program Files\Messenger\msmsgs.exe:*:Enabled:Windows Messenger""C:\Program Files\AIM\aim.exe"="C:\Program Files\AIM\aim.exe:*:Enabled:AOL Instant Messenger""C:\Program Files\LimeWire\LimeWire.exe"="C:\Program Files\LimeWire\LimeWire.exe:*:Enabled:LimeWire""C:\Program Files\EA GAMES\Need for Speed Most Wanted PC Demo\speedDemo.exe"="C:\Program Files\EA GAMES\Need for Speed Most Wanted PC Demo\speedDemo.exe:*:Enabled:speedDemo""C:\Program Files\ICQLite\ICQLite.exe"="C:\Program Files\ICQLite\ICQLite.exe:*:Enabled:ICQ Lite""C:\Program Files\Steam\SteamApps\prsnstowart987@sbcglobal.net\counter-strike\hl.exe"="C:\Program Files\Steam\SteamApps\prsnstowart987@sbcglobal.net\counter-strike\hl.exe:*:Enabled:Half-Life Launcher""%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000""C:\Program Files\Common Files\AOL\Loader\aolload.exe"="C:\Program Files\Common Files\AOL\Loader\aolload.exe:*:Enabled:AOL Loader""C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe"="C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe:*:Enabled:hpqtra08.exe""C:\Program Files\HP\Digital Imaging\bin\hpqste08.exe"="C:\Program Files\HP\Digital Imaging\bin\hpqste08.exe:*:Enabled:hpqste08.exe""C:\Program Files\HP\Digital Imaging\bin\hposid01.exe"="C:\Program Files\HP\Digital Imaging\bin\hposid01.exe:*:Enabled:hposid01.exe""C:\Program Files\HP\Digital Imaging\bin\hpqscnvw.exe"="C:\Program Files\HP\Digital Imaging\bin\hpqscnvw.exe:*:Enabled:hpqscnvw.exe""C:\Program Files\HP\Digital Imaging\bin\hpqkygrp.exe"="C:\Program Files\HP\Digital Imaging\bin\hpqkygrp.exe:*:Enabled:hpqkygrp.exe""C:\Program Files\HP\Digital Imaging\bin\hpqCopy.exe"="C:\Program Files\HP\Digital Imaging\bin\hpqCopy.exe:*:Enabled:hpqcopy.exe""C:\Program Files\HP\Digital Imaging\bin\hpfccopy.exe"="C:\Program Files\HP\Digital Imaging\bin\hpfccopy.exe:*:Enabled:hpfccopy.exe""C:\Program Files\HP\Digital Imaging\bin\hpoews01.exe"="C:\Program Files\HP\Digital Imaging\bin\hpoews01.exe:*:Enabled:hpoews01.exe""C:\Program Files\HP\Digital Imaging\bin\hpqnrs08.exe"="C:\Program Files\HP\Digital Imaging\bin\hpqnrs08.exe:*:Enabled:hpqnrs08.exe""C:\Program Files\Yahoo!\Messenger\YServer.exe"="C:\Program Files\Yahoo!\Messenger\YServer.exe:*:Enabled:Yahoo! FT Server""C:\Program Files\Roxio\Media Manager 9\MediaManager9.exe"="C:\Program Files\Roxio\Media Manager 9\MediaManager9.exe:*:Enabled:MediaManager9 Module""C:\Program Files\iTunes\iTunes.exe"="C:\Program Files\iTunes\iTunes.exe:*:Enabled:iTunes""C:\Program Files\Roxio\Digital Home 9\RoxioUPnPRenderer9.exe"="C:\Program Files\Roxio\Digital Home 9\RoxioUPnPRenderer9.exe:*:Enabled:RoxioUPnPRenderer9""C:\Program Files\AIM6\aim6.exe"="C:\Program Files\AIM6\aim6.exe:*:Enabled:AIM""C:\Program Files\Veoh Networks\VeohWebPlayer\veohwebplayer.exe"="C:\Program Files\Veoh Networks\VeohWebPlayer\veohwebplayer.exe:*:Enabled:Veoh Web Player ""C:\Program Files\Vuze\Azureus.exe"="C:\Program Files\Vuze\Azureus.exe:*:Enabled:Azureus""C:\Program Files\Common Files\McAfee\MNA\McNASvc.exe"="C:\Program Files\Common Files\McAfee\MNA\McNASvc.exe:*:Enabled:McAfee Network Agent""C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019""%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000""C:\Program Files\Roxio\Digital Home 9\RoxioUPnPRenderer9.exe"="C:\Program Files\Roxio\Digital Home 9\RoxioUPnPRenderer9.exe:*:Enabled:RoxioUPnPRenderer9"======List of files/folders created in the last 1 months======2009-08-11 19:07:16 ----A---- C:\WINDOWS\GnuHashes.ini2009-08-11 19:07:06 ----D---- C:\rsit2009-08-11 19:00:41 ----A---- C:\ComboFix.txt2009-08-11 18:56:49 ----SHD---- C:\WINDOWS\system32\SystemX862009-08-11 18:56:46 ----ASH---- C:\WINDOWS\system32\9.tmp2009-08-11 18:39:04 ----A---- C:\Boot.bak2009-08-11 18:38:58 ----RASHD---- C:\cmdcons2009-08-11 18:36:41 ----A---- C:\WINDOWS\zip.exe2009-08-11 18:36:41 ----A---- C:\WINDOWS\SWXCACLS.exe2009-08-11 18:36:41 ----A---- C:\WINDOWS\SWSC.exe2009-08-11 18:36:41 ----A---- C:\WINDOWS\SWREG.exe2009-08-11 18:36:41 ----A---- C:\WINDOWS\sed.exe2009-08-11 18:36:41 ----A---- C:\WINDOWS\PEV.exe2009-08-11 18:36:41 ----A---- C:\WINDOWS\NIRCMD.exe2009-08-11 18:36:41 ----A---- C:\WINDOWS\grep.exe2009-08-11 18:36:12 ----SD---- C:\Combo-fix2009-08-11 18:35:04 ----D---- C:\Qoobox2009-08-11 18:27:18 ----D---- C:\WINDOWS\ERDNT2009-08-11 18:26:27 ----D---- C:\Program Files\ERUNT2009-08-11 13:08:41 ----D---- C:\Program Files\Trend Micro2009-08-11 12:10:49 ----HD---- C:\WINDOWS\PIF2009-08-10 02:37:38 ----A---- C:\WINDOWS\ntbtlog.txt2009-08-09 22:18:49 ----ASH---- C:\WINDOWS\system32\2A.tmp2009-08-09 22:18:48 ----A---- C:\WINDOWS\system32\dpv1132.dll2009-08-09 03:00:27 ----HDC---- C:\WINDOWS\$NtUninstallKB961118$2009-08-08 03:05:04 ----SHD---- C:\Config.Msi2009-08-08 03:03:26 ----D---- C:\WINDOWS\system32\XPSViewer2009-08-08 03:03:23 ----D---- C:\Program Files\MSBuild2009-08-08 03:03:17 ----D---- C:\Program Files\Reference Assemblies2009-08-08 03:02:49 ----N---- C:\WINDOWS\system32\xpsshhdr.dll2009-08-08 03:02:49 ----N---- C:\WINDOWS\system32\prntvpt.dll2009-08-08 03:02:48 ----N---- C:\WINDOWS\system32\xpssvcs.dll2009-08-08 03:02:48 ----D---- C:\cd0d44575f881c8ea98d12d804cf2009-08-05 03:16:20 ----D---- C:\Cache2009-08-04 23:37:03 ----A---- C:\MYSERVICES.TXT2009-08-03 17:31:24 ----A---- C:\WINDOWS\system32\xa.tmp2009-07-20 21:03:47 ----D---- C:\Program Files\ASIO4ALL v22009-07-20 19:13:51 ----D---- C:\Program Files\VstPlugins2009-07-20 19:13:51 ----A---- C:\WINDOWS\system32\rewire.dll2009-07-20 19:13:18 ----D---- C:\Program Files\Outsim2009-07-20 19:11:07 ----D---- C:\Program Files\Image-Line2009-07-14 20:22:20 ----HDC---- C:\WINDOWS\$NtUninstallKB973346$2009-07-14 20:21:58 ----HDC---- C:\WINDOWS\$NtUninstallKB971633$2009-07-14 20:17:09 ----HDC---- C:\WINDOWS\$NtUninstallKB961371$======List of files/folders modified in the last 1 months======2009-08-11 19:07:17 ----D---- C:\WINDOWS\temp2009-08-11 19:07:16 ----AD---- C:\WINDOWS2009-08-11 19:07:09 ----D---- C:\WINDOWS\Prefetch2009-08-11 19:05:13 ----D---- C:\Program Files\Mozilla Firefox2009-08-11 19:00:43 ----AD---- C:\WINDOWS\system32\drivers2009-08-11 19:00:43 ----AD---- C:\WINDOWS\system322009-08-11 18:58:48 ----D---- C:\WINDOWS\system32\CatRoot22009-08-11 18:56:52 ----A---- C:\WINDOWS\system.ini2009-08-11 18:56:43 ----D---- C:\WINDOWS\Registration2009-08-11 18:56:39 ----AC---- C:\WINDOWS\ModemLog_Standard Modem.txt2009-08-11 18:54:26 ----D---- C:\WINDOWS\system32\config2009-08-11 18:53:44 ----D---- C:\Temp2009-08-11 18:53:43 ----D---- C:\Program Files2009-08-11 18:52:30 ----D---- C:\WINDOWS\AppPatch2009-08-11 18:52:26 ----D---- C:\Program Files\Common Files2009-08-11 18:48:20 ----A---- C:\WINDOWS\SchedLgU.Txt2009-08-11 18:39:04 ----RASH---- C:\boot.ini2009-08-11 18:20:47 ----A---- C:\WINDOWS\sfshell.tmp2009-08-11 16:00:10 ----HD---- C:\WINDOWS\inf2009-08-11 15:59:20 ----HD---- C:\WINDOWS\$hf_mig$2009-08-11 11:34:22 ----RSHD---- C:\WINDOWS\system32\dllcache2009-08-11 10:55:54 ----A---- C:\WINDOWS\win.ini2009-08-11 01:33:20 ----D---- C:\WINDOWS\system32\en-US2009-08-11 01:33:20 ----D---- C:\WINDOWS\Media2009-08-11 01:33:20 ----D---- C:\WINDOWS\Help2009-08-11 01:33:20 ----D---- C:\Program Files\Internet Explorer2009-08-11 01:29:44 ----D---- C:\WINDOWS\ie8updates2009-08-11 00:33:50 ----D---- C:\Program Files\Steam2009-08-10 21:47:50 ----AD---- C:\Documents and Settings\All Users\Application Data\TEMP2009-08-09 23:12:02 ----D---- C:\WINDOWS\Minidump2009-08-09 22:05:25 ----D---- C:\Documents and Settings\user\Application Data\Azureus2009-08-09 21:20:26 ----D---- C:\Documents and Settings\user\Application Data\Skype2009-08-09 03:00:50 ----A---- C:\WINDOWS\imsins.BAK2009-08-09 03:00:47 ----D---- C:\WINDOWS\system32\CatRoot2009-08-08 16:39:08 ----SD---- C:\WINDOWS\Tasks2009-08-08 14:12:40 ----D---- C:\WINDOWS\Microsoft.NET2009-08-08 03:11:41 ----RSD---- C:\WINDOWS\assembly2009-08-08 03:06:30 ----SHD---- C:\WINDOWS\Installer2009-08-08 03:05:48 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI2009-08-08 03:05:39 ----D---- C:\WINDOWS\WinSxS2009-08-08 03:03:20 ----RSD---- C:\WINDOWS\Fonts2009-08-08 03:03:07 ----D---- C:\WINDOWS\system32\spool2009-08-08 03:03:01 ----AD---- C:\I3862009-08-04 22:39:26 ----D---- C:\Program Files\Vuze2009-08-03 17:43:34 ----A---- C:\WINDOWS\system32\MPFServiceFailureCount.txt2009-07-31 11:27:26 ----D---- C:\Program Files\McAfee2009-07-30 21:46:57 ----D---- C:\Documents and Settings\All Users\Application Data\McAfee======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======R1 AmdK8;AMD Processor Driver; C:\WINDOWS\system32\DRIVERS\AmdK8.sys [2005-03-09 36352]R1 ikhfile;File Security Kernel Anti-Spyware Driver; \??\C:\WINDOWS\system32\drivers\ikhfile.sys []R1 ikhlayer;Kernel Anti-Spyware Driver; \??\C:\WINDOWS\system32\drivers\ikhlayer.sys []R1 kbdhid;Keyboard HID Driver; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2008-04-13 14592]R1 mfehidk;McAfee Inc. mfehidk; C:\WINDOWS\system32\drivers\mfehidk.sys [2009-05-13 214024]R1 MPFP;MPFP; C:\WINDOWS\System32\Drivers\Mpfp.sys [2009-04-09 120136]R1 UBHelper;UBHelper; C:\WINDOWS\system32\drivers\UBHelper.sys [2004-12-17 13952]R1 WS2IFSL;Windows Socket 2.0 Non-IFS Service Provider Support Environment; C:\WINDOWS\System32\drivers\ws2ifsl.sys [2004-08-10 12032]R2 int15.sys;int15.sys; \??\C:\Acer\Empowering Technology\eRecovery\int15.sys []R2 irda;IrDA Protocol; C:\WINDOWS\system32\DRIVERS\irda.sys [2008-04-13 88192]R3 ALCXWDM;Service for Realtek AC97 Audio (WDM); C:\WINDOWS\system32\drivers\ALCXWDM.SYS [2005-09-22 3727680]R3 Arp1394;1394 ARP Client Protocol; C:\WINDOWS\system32\DRIVERS\arp1394.sys [2008-04-13 60800]R3 catchme;catchme; \??\C:\Combo-fix\catchme.sys []R3 GEARAspiWDM;GEARAspiWDM; C:\WINDOWS\System32\Drivers\GEARAspiWDM.sys [2008-01-29 16168]R3 hidusb;Microsoft HID Class Driver; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368]R3 irsir;Microsoft Serial Infrared Driver; C:\WINDOWS\system32\DRIVERS\irsir.sys [2001-08-17 18688]R3 mfeavfk;McAfee Inc. mfeavfk; C:\WINDOWS\system32\drivers\mfeavfk.sys [2009-05-13 79816]R3 mfebopk;McAfee Inc. mfebopk; C:\WINDOWS\system32\drivers\mfebopk.sys [2009-05-13 35272]R3 mfesmfk;McAfee Inc. mfesmfk; C:\WINDOWS\system32\drivers\mfesmfk.sys [2009-05-13 40552]R3 mouhid;Mouse HID Driver; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2004-08-10 12160]R3 NIC1394;1394 Net Driver; C:\WINDOWS\system32\DRIVERS\nic1394.sys [2008-04-13 61824]R3 NTIDrvr;Upper Class Filter Driver; C:\WINDOWS\system32\DRIVERS\NTIDrvr.sys [2005-01-15 6144]R3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2005-11-14 3530880]R3 NVENETFD;NVIDIA nForce Networking Controller Driver; C:\WINDOWS\system32\DRIVERS\NVENETFD.sys [2005-07-29 34048]R3 nvnetbus;NVIDIA Network Bus Enumerator; C:\WINDOWS\system32\DRIVERS\nvnetbus.sys [2005-07-29 12928]R3 Rasirda;WAN Miniport (IrDA); C:\WINDOWS\system32\DRIVERS\rasirda.sys [2001-08-17 19584]R3 RimVSerPort;RIM Virtual Serial Port v2; C:\WINDOWS\system32\DRIVERS\RimSerial.sys [2007-01-18 26496]R3 ROOTMODEM;Microsoft Legacy Modem Driver; C:\WINDOWS\System32\Drivers\RootMdm.sys [2004-08-10 5888]R3 usbccgp;Microsoft USB Generic Parent Driver; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-13 32128]R3 usbehci;Microsoft USB 2.0 Enhanced Host Controller Miniport Driver; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2008-04-13 30208]R3 usbhub;USB2 Enabled Hub; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2008-04-13 59520]R3 usbohci;Microsoft USB Open Host Controller Miniport Driver; C:\WINDOWS\system32\DRIVERS\usbohci.sys [2008-04-13 17152]R3 USBSTOR;USB Mass Storage Driver; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]S1 viaagpp;viaagpp; C:\WINDOWS\System32\drivers\viaagpp.sys []S3 CCDECODE;Closed Caption Decoder; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-13 17024]S3 HPZid412;IEEE-1284.4 Driver HPZid412; C:\WINDOWS\system32\DRIVERS\HPZid412.sys [2006-04-12 49664]S3 HPZipr12;Print Class Driver for IEEE-1284.4 HPZipr12; C:\WINDOWS\system32\DRIVERS\HPZipr12.sys [2006-04-12 16496]S3 HPZius12;USB to IEEE-1284.4 Translation Driver HPZius12; C:\WINDOWS\system32\DRIVERS\HPZius12.sys [2006-04-12 21568]S3 KLIF;KLIF; \??\C:\PROGRA~1\PCTOOL~1\KLIF.SYS []S3 mferkdk;McAfee Inc. mferkdk; C:\WINDOWS\system32\drivers\mferkdk.sys [2009-05-13 34248]S3 MHNDRV;MHN driver; C:\WINDOWS\system32\DRIVERS\mhndrv.sys [2004-08-10 11008]S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-13 5504]S3 NABTSFEC;NABTS/FEC VBI Codec; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-13 85248]S3 NdisIP;Microsoft TV/Video Connection; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-13 10880]S3 RimSerPort;RIM Virtual Serial Port; C:\WINDOWS\system32\DRIVERS\RimSerial.sys [2007-01-18 26496]S3 RimUsb;BlackBerry Smartphone; C:\WINDOWS\System32\Drivers\RimUsb.sys [2008-04-16 22784]S3 rtl8139;Realtek RTL8139(A/B/C)-based PCI Fast Ethernet Adapter NT Driver; C:\WINDOWS\system32\DRIVERS\RTL8139.SYS [2004-08-03 20992]S3 SLIP;BDA Slip De-Framer; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-13 11136]S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-13 15232]S3 usb_rndisx;USB RNDIS Adapter; C:\WINDOWS\system32\DRIVERS\usb8023x.sys [2008-04-13 12800]S3 USBAAPL;Apple Mobile USB Driver; C:\WINDOWS\System32\Drivers\usbaapl.sys []S3 usbprint;Microsoft USB PRINTER Class; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-13 25856]S3 usbscan;USB Scanner Driver; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-13 15104]S3 VM30xx86;Vimicro USB PC Camera (ZC030x); C:\WINDOWS\System32\Drivers\vm30xx86.sys [2007-01-29 1294336]S3 WSTCODEC;World Standard Teletext Codec; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-13 19200]S3 ZD1211U(ZyDAS);ZyDAS ZD1211 IEEE 802.11b+g Wireless LAN Driver (USB)(ZyDAS); C:\WINDOWS\system32\DRIVERS\zd1211u.sys [2004-09-29 247296]S4 IntelIde;IntelIde; C:\WINDOWS\system32\drivers\IntelIde.sys []======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======R2 ehRecvr;Media Center Receiver Service; C:\WINDOWS\eHome\ehRecvr.exe [2005-10-11 237568]R2 ehSched;Media Center Scheduler Service; C:\WINDOWS\eHome\ehSched.exe [2005-08-05 102912]R2 Irmon;Infrared Monitor; C:\WINDOWS\system32\svchost.exe [2008-04-13 14336]R2 McAfee SiteAdvisor Service;McAfee SiteAdvisor Service; C:\Program Files\McAfee\SiteAdvisor\McSACore.exe [2009-01-23 203280]R2 mcmscsvc;McAfee Services; C:\PROGRA~1\McAfee\MSC\mcmscsvc.exe [2009-05-01 865832]R2 McNASvc;McAfee Network Agent; c:\PROGRA~1\COMMON~1\mcafee\mna\mcnasvc.exe [2009-04-09 2482848]R2 McProxy;McAfee Proxy Service; c:\PROGRA~1\COMMON~1\mcafee\mcproxy\mcproxy.exe [2009-04-09 359952]R2 McrdSvc;Media Center Extender Service; C:\WINDOWS\ehome\mcrdsvc.exe [2005-08-05 99328]R2 McShield;McAfee Real-time Scanner; C:\PROGRA~1\McAfee\VIRUSS~1\mcshield.exe [2009-05-13 144704]R2 NVSvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvsvc32.exe [2005-11-14 131139]R2 Pml Driver HPZ12;Pml Driver HPZ12; C:\WINDOWS\system32\HPZipm12.exe [2006-03-03 69632]R2 SDhelper;PC Tools Spyware Doctor; C:\Program Files\Spyware Doctor\sdhelp.exe [2006-03-01 869048]R2 Viewpoint Manager Service;Viewpoint Manager Service; C:\Program Files\Viewpoint\Common\ViewpointService.exe [2007-01-04 24652]R2 YahooAUService;Yahoo! Updater; C:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe [2008-11-09 602392]R3 McSysmon;McAfee SystemGuards; C:\PROGRA~1\McAfee\VIRUSS~1\mcsysmon.exe [2009-05-08 606736]R3 MpfService;McAfee Personal Firewall Service; C:\Program Files\McAfee\MPF\MPFSrv.exe [2009-05-08 893112]S2 Fax;Fax; C:\WINDOWS\system32\fxssvc.exe [2008-04-13 267776]S2 Roxio Upnp Server 9;Roxio Upnp Server 9; C:\Program Files\Roxio\Digital Home 9\RoxioUpnpService9.exe [2007-04-22 359160]S2 RoxLiveShare9;LiveShare P2P Server 9; C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxLiveShare9.exe [2007-04-23 310008]S2 RoxWatch9;Roxio Hard Drive Watcher 9; C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatch9.exe [2007-04-23 166648]S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe [2004-10-22 73728]S3 idsvc;Windows CardSpace; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]S3 iPod Service;iPod Service; C:\Program Files\iPod\bin\iPodService.exe [2008-06-02 504104]S3 McODS;McAfee Scanner; C:\PROGRA~1\McAfee\VIRUSS~1\mcods.exe [2009-05-08 365072]S3 MHN;MHN; C:\WINDOWS\System32\svchost.exe [2008-04-13 14336]S3 Roxio UPnP Renderer 9;Roxio UPnP Renderer 9; C:\Program Files\Roxio\Digital Home 9\RoxioUPnPRenderer9.exe [2007-04-22 88824]S3 RoxMediaDB9;RoxMediaDB9; C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxMediaDB9.exe [2007-04-23 1010424]S3 UMWdf;Windows User Mode Driver Framework; C:\WINDOWS\system32\wdfmgr.exe [2005-08-03 38912]S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]-----------------EOF-----------------Here is the Info.txt:info.txt logfile of random's system information tool 1.06 2009-08-11 19:07:33======Uninstall list======-->C:\PROGRA~1\Yahoo!\Common\UNYT_W~1.EXE-->C:\Program Files\Common Files\Real\Update_OB\r1puninst.exe RealNetworks|RealPlayer|6.0-->C:\Program Files\DivX\ConverterUninstall.exe /CONVERTER-->C:\Program Files\SBC LightSpeed Self Support Tool\CustomUninstall.exe SBC-->MsiExec.exe /I{07159635-9DFE-4105-BFC0-2817DB540C68}-->MsiExec.exe /I{0D397393-9B50-4C52-84D5-77E344289F87}-->MsiExec.exe /I{619CDD8A-14B6-43A1-AB6C-0F4EE48CE048}-->MsiExec.exe /I{83FFCFC7-88C6-41C6-8752-958A45325C82}-->MsiExec.exe /I{C8B0680B-CDAE-4809-9F91-387B6DE00F7C}-->MsiExec.exe /X{11F93B4B-48F0-4A4E-AE77-DFA96A99664B}-->rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:\WINDOWS\INF\PCHealth.infAd-aware 6 Personal-->C:\PROGRA~1\Lavasoft\AD-AWA~1\UNWISE.EXE C:\PROGRA~1\Lavasoft\AD-AWA~1\INSTALL.LOGAdobe Flash Player 10 ActiveX-->C:\WINDOWS\system32\Macromed\Flash\uninstall_activeX.exeAdobe Flash Player 10 Plugin-->C:\WINDOWS\system32\Macromed\Flash\uninstall_plugin.exeAdobe Reader 7.0-->MsiExec.exe /I{AC76BA86-7AD7-1033-7B44-A70000000000}AIM 6-->C:\Program Files\AIM6\uninst.exeAOL Instant Messenger-->C:\Program Files\AIM\uninstll.exe -LOG= C:\Program Files\AIM\install.log -OEM=ASIO4ALL-->C:\Program Files\ASIO4ALL v2\uninstall.exeAT&T Yahoo! Applications-->C:\PROGRA~1\Yahoo!\Common\uninstall.exeAthlon 64 Processor Driver-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{C151CE54-E7EA-4804-854B-F515368B0798}\setup.exe" -l0x9 Audacity 1.2.4-->"C:\Program Files\Audacity\unins000.exe"AVS DVDMenu Editor 1.2.1.19-->"C:\Program Files\Common Files\AVSMedia\AVS DVDMenu Editor\unins000.exe"AVS Video Converter 5.6-->"C:\Program Files\AVS4YOU\AVSVideoConverter\unins000.exe"BlackBerry Desktop Software 4.2.2-->MsiExec.exe /I{9B449C1A-4F64-4ED4-8C96-31B222E8377F}BlackBerry Desktop Software 4.2.2-->MsiExec.exe /i{9B449C1A-4F64-4ED4-8C96-31B222E8377F}BlackBerry v4.2.1 for the 8800 Series Wireless Handheld-->MsiExec.exe /X{596F2287-ACD9-4E5F-978C-43A00A7A98B8}Canon Camera Support Core Library-->C:\Program Files\Common Files\InstallShield\Driver\8\Intel 32\IDriver.exe /M{A1D0D14A-B776-4907-BC00-5149F2298086} /l1033 Canon Camera Window DC_DV 5 for ZoomBrowser EX-->C:\Program Files\Common Files\InstallShield\Driver\8\Intel 32\IDriver.exe /M{001AB29C-5468-4972-8D24-2EBDB2B12133} Canon Camera Window DS for ZoomBrowser EX-->C:\Program Files\Common Files\InstallShield\Driver\8\Intel 32\IDriver.exe /M{6B8BDABA-6737-4998-AEE4-E218EDE5FC7A} Canon Camera Window MC 5 for ZoomBrowser EX-->C:\Program Files\Common Files\InstallShield\Driver\8\Intel 32\IDriver.exe /M{89EB3ED7-225A-412E-B048-623D502C000F} Canon MovieEdit Task for ZoomBrowser EX-->C:\Program Files\Common Files\InstallShield\Driver\8\Intel 32\IDriver.exe /M{68D27126-BF6A-457D-8DD0-5F35E8D41310} Canon PhotoRecord-->MsiExec.exe /X{6693BD7C-CB4E-43AC-A0D6-10D1A1B88DCF}Canon RAW Image Task for ZoomBrowser EX-->C:\Program Files\Common Files\InstallShield\Driver\8\Intel 32\IDriver.exe /M{001EB665-D9EC-415E-9E13-AD2125B2B992} Canon Utilities PhotoStitch 3.1-->C:\Program Files\Common Files\InstallShield\Driver\8\Intel 32\IDriver.exe /M{218BBBE3-FE63-4BB2-81A8-7435575A84FA} Canon ZoomBrowser EX-->MsiExec.exe /X{C1D76D7A-F3BB-47EA-A746-5B1E2FFC1DF2}CCleaner (remove only)-->"C:\Program Files\CCleaner\uninst.exe"DivX Codec-->C:\Program Files\DivX\DivXCodecUninstall.exe /CODECDivX Converter-->C:\Program Files\DivX\ConverterUninstall.exe /CONVERTERDivX Player-->C:\Program Files\DivX\DivXPlayerUninstall.exe /PLAYERDivX Web Player-->C:\Program Files\DivX\DivXWebPlayerUninstall.exe /PLUGINERUNT 1.1j-->"C:\Program Files\ERUNT\unins000.exe"FL Studio 8-->C:\Program Files\Image-Line\FL Studio 8\uninstall.exeGoogle Earth-->MsiExec.exe /I{1E04F83B-2AB9-4301-9EF7-E86307F79C72}HijackThis 2.0.2-->"C:\Program Files\trend micro\HijackThis.exe" /uninstallHotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)-->C:\WINDOWS\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall /qb+ REBOOTPROMPT=""Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)-->C:\WINDOWS\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall {A7EEA2F2-BFCD-4A54-A575-7B81A786E658} /qb+ REBOOTPROMPT=""Hotfix for Windows Internet Explorer 7 (KB947864)-->"C:\WINDOWS\ie7updates\KB947864-IE7\spuninst\spuninst.exe"Hotfix for Windows Media Player 10 (KB903157)-->"C:\WINDOWS\$NtUninstallKB903157$\spuninst\spuninst.exe"Hotfix for Windows XP (KB952287)-->"C:\WINDOWS\$NtUninstallKB952287$\spuninst\spuninst.exe"Hotfix for Windows XP (KB961118)-->"C:\WINDOWS\$NtUninstallKB961118$\spuninst\spuninst.exe"HP Customer Participation Program 7.0-->C:\Program Files\HP\Digital Imaging\ExtCapUninstall\hpzscr01.exe -datfile hpqhsc01.datHP Imaging Device Functions 7.0-->C:\Program Files\HP\Digital Imaging\DeviceManagement\hpzscr01.exe -datfile hpqbud01.datHP Photosmart Essential-->MsiExec.exe /X{6994491D-D491-48F1-AE1F-E179C1FFFC2F}HP Photosmart, Officejet and Deskjet 7.0.A-->C:\Program Files\HP\Digital Imaging\{BDBE2F3E-42DB-4d4a-8CB1-19BA765DBC6C}\setup\hpzscr01.exe -datfile hposcr11.datHP Software Update-->MsiExec.exe /X{BB85ED9C-AFC9-43BD-B8DC-258C3C7DF72E}HP Solution Center 7.0-->C:\Program Files\HP\Digital Imaging\eSupport\hpzscr01.exe -datfile hpqbud05.datICQ 5.1-->C:\Program Files\ICQLite\ICQLiteUninstall.EXEIL Download Manager-->C:\Program Files\Image-Line\Downloader\uninstall.exeInterActual Player-->C:\Program Files\InterActual\InterActual Player\inuninst.exeIrfanView (remove only)-->C:\Program Files\IrfanView\iv_uninstall.exeiTunes-->MsiExec.exe /I{9F70BF98-003C-491D-81FC-FF9792206AF0}J2SE Runtime Environment 5.0 Update 5-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0150050}LimeWire PRO 4.10.9-->"C:\Program Files\LimeWire\uninstall.exe"Macromedia Shockwave Player-->C:\WINDOWS\system32\Macromed\SHOCKW~1\UNWISE.EXE C:\WINDOWS\system32\Macromed\SHOCKW~1\Install.logMalwarebytes' Anti-Malware-->"C:\Documents and Settings\user\Desktop\myshit\dann\unins000.exe"McAfee SecurityCenter-->C:\Program Files\McAfee\MSC\mcuninst.exeMicrosoft .NET Framework 1.1 Hotfix (KB928366)-->"C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\Updates\hotfix.exe" "C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\Updates\M928366\M928366Uninstall.msp"Microsoft .NET Framework 1.1-->msiexec.exe /X {CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}Microsoft .NET Framework 1.1-->MsiExec.exe /X{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}Microsoft .NET Framework 2.0 Service Pack 2-->MsiExec.exe /I{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}Microsoft .NET Framework 3.0 Service Pack 2-->MsiExec.exe /I{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}Microsoft .NET Framework 3.5 SP1-->C:\WINDOWS\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\setup.exeMicrosoft .NET Framework 3.5 SP1-->MsiExec.exe /I{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}Microsoft Internationalized Domain Names Mitigation APIs-->"C:\WINDOWS\$NtServicePackUninstallIDNMitigationAPIs$\spuninst\spuninst.exe"Microsoft National Language Support Downlevel APIs-->"C:\WINDOWS\$NtServicePackUninstallNLSDownlevelMapping$\spuninst\spuninst.exe"Microsoft Office 97, Professional Edition-->C:\Program Files\Microsoft Office\Office\Setup\Acme.exe /w Off97Pro.STFMicrosoft Outlook 2002-->MsiExec.exe /I{911A0409-6000-11D3-8CFE-0050048383C9}Microsoft VC9 runtime libraries-->MsiExec.exe /I{C4124E95-5061-4776-8D5D-E3D931C778E1}Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{A49F249F-0C91-497F-86DF-B2585E8E76B7}Movavi Video Converter 5.5-->C:\Program Files\Movavi Video Converter 5.5\uninst.exeMozilla Firefox (3.0.13)-->C:\Program Files\Mozilla Firefox\uninstall\helper.exeMSN-->C:\Program Files\MSN\MsnInstaller\msninst.exe /Action:ARPMSXML 4.0 SP2 (KB927978)-->MsiExec.exe /I{37477865-A3F1-4772-AD43-AAFC6BCFF99F}MSXML 4.0 SP2 (KB936181)-->MsiExec.exe /I{C04E32E0-0416-434D-AFB9-6969D703A9EF}MSXML 4.0 SP2 (KB954430)-->MsiExec.exe /I{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}Need for Speed Link to post Share on other sites More sharing options...
maryamian Posted August 12, 2009 Author ID:109055 Share Posted August 12, 2009 for now the computer seems to be working fine the way it was before. from what i have noticed, while i had the virus, many of the programs in my task manager was missing but now they are back. malwarebytes works now along with highjack this. THANK YOU SO MUCH FOR YOUR HELP you are a GENIOUS my friend. do you want me to run malware and hijack this and give you the logs or is everything ok now? Link to post Share on other sites More sharing options...
maryamian Posted August 12, 2009 Author ID:109060 Share Posted August 12, 2009 I am still getting pop ups from iexplore.exe even though it is not running. the virus is disguising itself under iexplre.exe and ycommon.exe. right now i am running malwarebytes so when that finishing running, i will send you the log. hopefully malware will find these viruses and remove them for me. Link to post Share on other sites More sharing options...
maryamian Posted August 12, 2009 Author ID:109062 Share Posted August 12, 2009 here is my logfile for hijackthis. malwarebytes is still in the process of running.Logfile of Trend Micro HijackThis v2.0.2Scan saved at 7:41:06 PM, on 8/11/2009Platform: Windows XP SP3 (WinNT 5.01.2600)MSIE: Internet Explorer v7.00 (7.00.6000.16791)Boot mode: NormalRunning processes:C:\WINDOWS\System32\smss.exeC:\WINDOWS\system32\csrss.exeC:\WINDOWS\system32\winlogon.exeC:\WINDOWS\system32\services.exeC:\WINDOWS\system32\lsass.exeC:\WINDOWS\system32\svchost.exeC:\WINDOWS\system32\svchost.exeC:\WINDOWS\System32\svchost.exeC:\WINDOWS\system32\svchost.exeC:\WINDOWS\system32\svchost.exeC:\WINDOWS\system32\spoolsv.exeC:\WINDOWS\system32\svchost.exeC:\WINDOWS\eHome\ehRecvr.exeC:\WINDOWS\eHome\ehSched.exeC:\Program Files\McAfee\SiteAdvisor\McSACore.exeC:\PROGRA~1\McAfee\MSC\mcmscsvc.exeC:\Program Files\McAfee.com\Agent\mcagent.exec:\PROGRA~1\COMMON~1\mcafee\mna\mcnasvc.exec:\PROGRA~1\COMMON~1\mcafee\mcproxy\mcproxy.exeC:\PROGRA~1\McAfee\VIRUSS~1\mcshield.exeC:\WINDOWS\system32\nvsvc32.exeC:\WINDOWS\system32\HPZipm12.exeC:\Program Files\Spyware Doctor\sdhelp.exeC:\WINDOWS\system32\svchost.exeC:\WINDOWS\system32\svchost.exeC:\Program Files\Viewpoint\Common\ViewpointService.exeC:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exeC:\WINDOWS\ehome\mcrdsvc.exeC:\WINDOWS\system32\dllhost.exeC:\WINDOWS\System32\alg.exeC:\Program Files\Viewpoint\Viewpoint Manager\ViewMgr.exeC:\Program Files\McAfee\MPF\MPFSrv.exeC:\WINDOWS\explorer.exeC:\WINDOWS\system32\rundll32.exeC:\WINDOWS\system32\ctfmon.exeC:\PROGRA~1\McAfee\VIRUSS~1\mcsysmon.exeC:\Program Files\Mozilla Firefox\firefox.exeC:\WINDOWS\system32\rundll32.exeC:\Program Files\Malwarebytes' Anti-Malware\mbam.exeC:\Program Files\Trend Micro\HijackThis\HijackThis.exeC:\WINDOWS\system32\wbem\wmiprvse.exeR0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.yahoo.com/?fr=fp-yie8R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://red.clientapps.yahoo.com/customize/.../search/ie.htmlR1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.yahoo.comR1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://red.clientapps.yahoo.com/customize/...//www.yahoo.comR1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = 127.0.0.1R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn3\yt.dllO2 - BHO: &Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn3\yt.dllO2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - c:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dllO2 - BHO: UberButton Class - {5BAB4B5B-68BC-4B02-94D6-2FC0DE4A7897} - C:\PROGRA~1\Yahoo!\Common\yiesrvc.dllO2 - BHO: PCTools Site Guard - {5C8B2A36-3DB1-42A4-A3CB-D426709BBFEB} - C:\PROGRA~1\SPYWAR~1\tools\iesdsg.dllO2 - BHO: YahooTaggedBM Class - {65D886A2-7CA7-479B-BB95-14D1EFB7946A} - C:\PROGRA~1\Yahoo!\Common\YIeTagBm.dllO2 - BHO: scriptproxy - {7DB2D5A0-7241-4E79-B68D-6309F01C5231} - c:\PROGRA~1\mcafee\VIRUSS~1\scriptsn.dllO2 - BHO: McAfee SiteAdvisor BHO - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dllO2 - BHO: PCTools Browser Monitor - {B56A7D7D-6927-48C8-A975-17DF180C71AC} - C:\PROGRA~1\SPYWAR~1\tools\iesdpb.dllO2 - BHO: SidebarAutoLaunch Class - {F2AA9440-6328-4933-B7C9-A6CCDF9CBF6D} - C:\Program Files\Yahoo!\browser\YSidebarIEBHO.dllO2 - BHO: SingleInstance Class - {FDAD4DA1-61A2-4FD8-9C17-86F7AC245081} - C:\Program Files\Yahoo!\Companion\Installs\cpn3\YTSingleInstance.dllO3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn3\yt.dllO3 - Toolbar: McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dllO3 - Toolbar: Veoh Web Player Video Finder - {0FBB9689-D3D7-4f7a-A2E2-585B10099BFC} - C:\Program Files\Veoh Networks\VeohWebPlayer\VeohIEToolbar.dllO3 - Toolbar: Veoh Video Compass - {52836EB0-631A-47B1-94A6-61F9D9112DAE} - C:\Program Files\Veoh Networks\Veoh Video Compass\SearchRecsPlugin.dllO4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartupO4 - HKLM\..\Run: [mcagent_exe] "C:\Program Files\McAfee.com\Agent\mcagent.exe" /runkeyO4 - HKLM\..\Run: [McENUI] C:\PROGRA~1\McAfee\MHN\McENUI.exe /hideO4 - HKLM\..\RunOnce: [Malwarebytes' Anti-Malware] C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe /install /silentO4 - HKCU\..\Run: [Aim6] "C:\Program Files\AIM6\aim6.exe" /d locale=en-US ee://aol/imAppO4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exeO9 - Extra button: Spyware Doctor - {2D663D1A-8670-49D9-A1A5-4C56B4E14E84} - C:\PROGRA~1\SPYWAR~1\tools\iesdpb.dllO9 - Extra button: AT&T Yahoo! Services - {5BAB4B5B-68BC-4B02-94D6-2FC0DE4A7897} - C:\PROGRA~1\Yahoo!\Common\yiesrvc.dllO9 - Extra button: AIM - {AC9E2541-2814-11d5-BC6D-00B0D0A1DE45} - C:\Program Files\AIM\aim.exeO9 - Extra button: ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - C:\Program Files\ICQLite\ICQLite.exeO9 - Extra 'Tools' menuitem: ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - C:\Program Files\ICQLite\ICQLite.exeO9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exeO9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exeO9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exeO9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exeO9 - Extra button: Absolute Poker - {13C1DBF6-7535-495c-91F6-8C13714ED485} - C:\Documents and Settings\user\Start Menu\Programs\Absolute Poker\Absolute Poker.lnk (file missing) (HKCU)O9 - Extra 'Tools' menuitem: Absolute Poker - {13C1DBF6-7535-495c-91F6-8C13714ED485} - C:\Documents and Settings\user\Start Menu\Programs\Absolute Poker\Absolute Poker.lnk (file missing) (HKCU)O15 - Trusted Zone: *.amaena.comO15 - Trusted Zone: *.avsystemcare.comO15 - Trusted Zone: *.onerateld.comO15 - Trusted Zone: *.safetydownload.comO15 - Trusted Zone: *.trustedantivirus.comO15 - Trusted Zone: *.virusschlacht.comO15 - Trusted Zone: *.amaena.com (HKLM)O15 - Trusted Zone: *.avsystemcare.com (HKLM)O15 - Trusted Zone: *.onerateld.com (HKLM)O15 - Trusted Zone: *.safetydownload.com (HKLM)O15 - Trusted Zone: *.trustedantivirus.com (HKLM)O15 - Trusted Zone: *.virusschlacht.com (HKLM)O16 - DPF: Yahoo! Pool 2 - http://download2.games.yahoo.com/games/clients/y/poti_x.cabO16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (Installation Support) - C:\Program Files\Yahoo!\Common\Yinsthelper200711281.dllO16 - DPF: {459E93B6-150E-45D5-8D4B-45C66FC035FE} (get_atlcom Class) - http://apps.corel.com/nos_dl_manager_dev/p...IEGetPlugin.ocxO16 - DPF: {4788DE0A-3552-49EA-AC8C-233DA52523B9} (AxLoaderPassword Class) - http://www.blackberry.com/devicesoftware/AxLoader.cabO16 - DPF: {77E32299-629F-43C6-AB77-6A1E6D7663F6} - http://atv.disney.go.com/global/download/otoy/OTOYAX29b.cabO16 - DPF: {E473A65C-8087-49A3-AFFD-C5BC4A10669B} (Quantum Streaming IE Player Class) - http://mvnet.xlontech.net/qm/fox/06071909/qsp2ie06071909.cabO18 - Protocol: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dllO20 - Winlogon Notify: 6074df77654 - C:\WINDOWS\System32\dpv1132.dllO23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exeO23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exeO23 - Service: McAfee SiteAdvisor Service - Unknown owner - C:\Program Files\McAfee\SiteAdvisor\McSACore.exeO23 - Service: McAfee Services (mcmscsvc) - McAfee, Inc. - C:\PROGRA~1\McAfee\MSC\mcmscsvc.exeO23 - Service: McAfee Network Agent (McNASvc) - McAfee, Inc. - c:\PROGRA~1\COMMON~1\mcafee\mna\mcnasvc.exeO23 - Service: McAfee Scanner (McODS) - McAfee, Inc. - C:\PROGRA~1\McAfee\VIRUSS~1\mcods.exeO23 - Service: McAfee Proxy Service (McProxy) - McAfee, Inc. - c:\PROGRA~1\COMMON~1\mcafee\mcproxy\mcproxy.exeO23 - Service: McAfee Real-time Scanner (McShield) - McAfee, Inc. - C:\PROGRA~1\McAfee\VIRUSS~1\mcshield.exeO23 - Service: McAfee SystemGuards (McSysmon) - McAfee, Inc. - C:\PROGRA~1\McAfee\VIRUSS~1\mcsysmon.exeO23 - Service: McAfee Personal Firewall Service (MpfService) - McAfee, Inc. - C:\Program Files\McAfee\MPF\MPFSrv.exeO23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exeO23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exeO23 - Service: Roxio UPnP Renderer 9 - Sonic Solutions - C:\Program Files\Roxio\Digital Home 9\RoxioUPnPRenderer9.exeO23 - Service: Roxio Upnp Server 9 - Sonic Solutions - C:\Program Files\Roxio\Digital Home 9\RoxioUpnpService9.exeO23 - Service: LiveShare P2P Server 9 (RoxLiveShare9) - Sonic Solutions - C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxLiveShare9.exeO23 - Service: RoxMediaDB9 - Sonic Solutions - C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxMediaDB9.exeO23 - Service: Roxio Hard Drive Watcher 9 (RoxWatch9) - Sonic Solutions - C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatch9.exeO23 - Service: PC Tools Spyware Doctor (SDhelper) - PC Tools Research Pty Ltd - C:\Program Files\Spyware Doctor\sdhelp.exeO23 - Service: Viewpoint Manager Service - Viewpoint Corporation - C:\Program Files\Viewpoint\Common\ViewpointService.exeO23 - Service: Yahoo! Updater (YahooAUService) - Yahoo! Inc. - C:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe--End of file - 10373 bytes Link to post Share on other sites More sharing options...
maryamian Posted August 12, 2009 Author ID:109067 Share Posted August 12, 2009 Here is my log file for malwarebytes. should i delete any of the programs you told me to download?Malwarebytes' Anti-Malware 1.40Database version: 2608Windows 5.1.2600 Service Pack 38/11/2009 8:20:39 PMmbam-log-2009-08-11 (20-20-27).txtScan type: Full Scan (C:\|D:\|)Objects scanned: 200598Time elapsed: 58 minute(s), 48 second(s)Memory Processes Infected: 0Memory Modules Infected: 3Registry Keys Infected: 2Registry Values Infected: 0Registry Data Items Infected: 0Folders Infected: 1Files Infected: 41Memory Processes Infected:(No malicious items detected)Memory Modules Infected:C:\WINDOWS\system32\dpv1132.dll (Trojan.Tracur) -> No action taken.C:\WINDOWS\system32\9.tmp (Trojan.Tracur) -> No action taken.C:\Documents and Settings\user\Local Settings\temp\17.tmp (Trojan.Agent) -> No action taken.Registry Keys Infected:HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\6074df77654 (Trojan.Tracur) -> No action taken.HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\setup.exe (Trojan.Tracur) -> No action taken.Registry Values Infected:(No malicious items detected)Registry Data Items Infected:(No malicious items detected)Folders Infected:C:\WINDOWS\system32\SystemX86 (Worm.Archive) -> No action taken.Files Infected:C:\WINDOWS\system32\dpv1132.dll (Trojan.Tracur) -> No action taken.C:\WINDOWS\system32\9.tmp (Trojan.Tracur) -> No action taken.C:\Documents and Settings\user\Local Settings\temp\17.tmp (Trojan.Agent) -> No action taken.C:\Documents and Settings\user\Shared\blackberry 8310 unlock code including crack\CORE10k.exe (Trojan.Tracur) -> No action taken.C:\Documents and Settings\user\Shared\blackberry 8310 unlock code including crack\CRACK_BY_CORE.exe (Trojan.Tracur) -> No action taken.C:\Documents and Settings\user\Shared\blackberry 8310 unlock code including crack\setup.exe (Trojan.Tracur) -> No action taken.C:\Qoobox\Quarantine\C\WINDOWS\system32\UACtxvbvtfhvw.dll.vir (Trojan.TDSS) -> No action taken.C:\Qoobox\Quarantine\C\WINDOWS\system32\UACmyrgopyowf.dll.vir (Trojan.TDSS) -> No action taken.C:\Qoobox\Quarantine\C\WINDOWS\system32\UACpktkipjeqy.dll.vir (Rogue.Agent) -> No action taken.C:\Qoobox\Quarantine\C\WINDOWS\system32\UACwutuwylkmy.dll.vir (Trojan.TDSS) -> No action taken.C:\Qoobox\Quarantine\C\WINDOWS\system32\__c0027212.dat.vir (Trojan.Downloader) -> No action taken.C:\Qoobox\Quarantine\C\WINDOWS\system32\__c0062B4F.dat.vir (Trojan.Downloader) -> No action taken.C:\Qoobox\Quarantine\C\WINDOWS\system32\__c0083900.dat.vir (Trojan.Downloader) -> No action taken.C:\Qoobox\Quarantine\C\WINDOWS\system32\__c00899FC.dat.vir (Trojan.Downloader) -> No action taken.C:\Qoobox\Quarantine\C\WINDOWS\system32\__c008AAAC.dat.vir (Trojan.Downloader) -> No action taken.C:\Qoobox\Quarantine\C\WINDOWS\system32\__c00BB40C.dat.vir (Trojan.Downloader) -> No action taken.C:\Qoobox\Quarantine\C\WINDOWS\system32\__c00E8A84.dat.vir (Trojan.Downloader) -> No action taken.C:\Qoobox\Quarantine\C\WINDOWS\system32\drivers\UACbrovdhosdp.sys.vir (Trojan.TDSS) -> No action taken.C:\System Volume Information\_restore{8D077847-2814-437C-9117-EA7A694B02FC}\RP1222\A0147608.sys (Trojan.TDSS) -> No action taken.C:\System Volume Information\_restore{8D077847-2814-437C-9117-EA7A694B02FC}\RP1222\A0147609.dll (Trojan.TDSS) -> No action taken.C:\System Volume Information\_restore{8D077847-2814-437C-9117-EA7A694B02FC}\RP1222\A0147610.dll (Rogue.Agent) -> No action taken.C:\System Volume Information\_restore{8D077847-2814-437C-9117-EA7A694B02FC}\RP1222\A0147612.dll (Trojan.TDSS) -> No action taken.C:\System Volume Information\_restore{8D077847-2814-437C-9117-EA7A694B02FC}\RP1222\A0147613.dll (Trojan.TDSS) -> No action taken.C:\WINDOWS\system32\2A.tmp (Trojan.Tracur) -> No action taken.C:\WINDOWS\system32\xa.tmp (Trojan.Downloader) -> No action taken.C:\WINDOWS\system32\SystemX86\245.crack.zip (Worm.Archive) -> No action taken.C:\WINDOWS\system32\SystemX86\245.crack.zip.kwd (Worm.Archive) -> No action taken.C:\WINDOWS\system32\SystemX86\246.keygen.zip (Worm.Archive) -> No action taken.C:\WINDOWS\system32\SystemX86\246.keygen.zip.kwd (Worm.Archive) -> No action taken.C:\WINDOWS\system32\SystemX86\247.serial.zip (Worm.Archive) -> No action taken.C:\WINDOWS\system32\SystemX86\247.serial.zip.kwd (Worm.Archive) -> No action taken.C:\WINDOWS\system32\SystemX86\248.setup.zip (Worm.Archive) -> No action taken.C:\WINDOWS\system32\SystemX86\248.setup.zip.kwd (Worm.Archive) -> No action taken.C:\WINDOWS\system32\SystemX86\249.music.au (Worm.Archive) -> No action taken.C:\WINDOWS\system32\SystemX86\249.music.au.kwd (Worm.Archive) -> No action taken.C:\WINDOWS\system32\SystemX86\250.music2.au (Worm.Archive) -> No action taken.C:\WINDOWS\system32\SystemX86\250.music2.au.kwd (Worm.Archive) -> No action taken.C:\WINDOWS\system32\SystemX86\251.music3.au (Worm.Archive) -> No action taken.C:\WINDOWS\system32\SystemX86\251.music3.au.kwd (Worm.Archive) -> No action taken.C:\WINDOWS\system32\SystemX86\252.music.snd (Worm.Archive) -> No action taken.C:\WINDOWS\system32\SystemX86\252.music.snd.kwd (Worm.Archive) -> No action taken. Link to post Share on other sites More sharing options...
Maurice Naggar Posted August 12, 2009 ID:109068 Share Posted August 12, 2009 You are not out of the woods ! When MBAM has completed it's scan, go ahead and make a new reply with that log !and then do the following things:You will want to print out or copy these instructions to Notepad for Safe Mode/offline reference!If you are a casual viewer, do NOT try this on your system! If you are not maryamian and have a similar problem, do NOT post here; start your own topicDo not run or start any other programs while these utilities and tools are in use! Do NOT run any other tools on your own or do any fixes other than what is listed here.If you have questions, please ask before you do something on your own.But it is important that you get going on these following steps.=Close any of your open programs while you run these tools.Start HijackThis. Look for these lines and place a checkmark against each of the following, if still presentO15 - Trusted Zone: *.amaena.comO15 - Trusted Zone: *.avsystemcare.comO15 - Trusted Zone: *.onerateld.comO15 - Trusted Zone: *.safetydownload.comO15 - Trusted Zone: *.trustedantivirus.comO15 - Trusted Zone: *.virusschlacht.comO15 - Trusted Zone: *.amaena.com (HKLM)O15 - Trusted Zone: *.avsystemcare.com (HKLM)O15 - Trusted Zone: *.onerateld.com (HKLM)O15 - Trusted Zone: *.safetydownload.com (HKLM)O15 - Trusted Zone: *.trustedantivirus.com (HKLM)O15 - Trusted Zone: *.virusschlacht.com (HKLM)O20 - Winlogon Notify: 6074df77654 - C:\WINDOWS\System32\dpv1132.dllClick on Fix Checked when finished and exit HijackThis. Make sure your Internet Explorer (& or any other window) is closed when you click Fix Checked! =Download OTL by OldTimer to your desktop: http://oldtimer.geekstogo.com/OTL.exe Please double-click OTL.exe to run it. (Note: If you are running on Vista, right-click on the file and choose Run As Administrator).Copy all the lines in the codebox below to the clipboard by highlighting ALL of them and pressing CTRL + C (or, after highlighting, right-click and choose Copy)::filesc:\windows\System32\dpv1132.dllc:\windows\system32\*.tmpc:\windows\system32\GroupPolicy000.datc:\windows\system32\SystemX86C:\recyclerD:\recyclere:\recyclerf:\recyclerg:\recyclerh:\recycler:Commands[purity][emptytemp][reboot]Return to OTL. Right click in the "Custom Scans/Fixes" window (under the aqua-blue bar) and choose Paste.Close any browser(s) windows that may be open.Using your mouse, click on the red-lettered button Run Fix.Once you see a message box "Fix complete! Click OK to open the fix log."Click the OK buttonThe log will open in Notepad (your default text editor).Save the log. Post a copy of that log in your next reply.Note: If a file or folder cannot be moved immediately you may be asked to reboot the machine to finish the move process. If you are asked to reboot the machine choose Yes. In this case, after the reboot, open Notepad (Start->All Programs->Accessories->Notepad), click File->Open, in the File Name box enter *.log and press the Enter key, navigate to the C:\_OTL\MovedFiles folder, and open the newest .log file present, and copy/paste the contents of that document back here in your next post.=Download and save to your Dekstop: PrevX CSI: http://www.prevx.com/freescan.aspRun Prevx CSI. If it wants to reboot when finished, do so.=Please download and run the Trend Micro Sysclean Package on your computer.NOTE! This scan will probably take a long time to run on your computer so be patient and don't use it while it's scanning.Trend Micro Damage Cleanup EngineMake sure you read this document to understand how to use the program. Trend Micro Sysclean Package README 1stBasically there are 3 parts that need to be downloaded from these links:Sysclean PackageVirus Pattern FilesSpyware Pattern FilesCreate a brand new folder to copy these files to.As an example: C:\DCEThen open each of the zipped archive files and copy their contents to C:\DCECopy the file sysclean.com to the new folder C:\DCE as well.Double-click on the file sysclean.com that is in the C:\DCE folder and follow the on-screen instructions.After doing all of this, please post back your results, including the log file sysclean.log that will be left behind by sysclean.How To Use Compressed (Zipped) Folders in Windows XPCompress and uncompress files (zip files) in VistaReply with copy of OTL MovedFiles log,the Sysclean logand tell me, How is your system now ? Link to post Share on other sites More sharing options...
maryamian Posted August 12, 2009 Author ID:109069 Share Posted August 12, 2009 before my computer restarted, it said some files could not be removed until i restart but when i look at the log file it says no action has been taken. does that really matter or did it delelte everything? Link to post Share on other sites More sharing options...
Maurice Naggar Posted August 12, 2009 ID:109075 Share Posted August 12, 2009 You did not tell MBAM to remove items it tagged as malware.Please follow these directions very carefully.Start your MBAM MalwareBytes' Anti-Malware. Click the Settings Tab. Make sure all option lines have a checkmark.Next, Click the Update tab. Press the "Check for Updates" button. When done, click the Scanner tab.Do a Quick Scan. When the scan is complete, click OK, then Show Results to view the results. Make sure that everything is checked, and click Remove Selected. When disinfection is completed, a log will open in Notepad and you may be prompted to Restart.(Allow the restart if so prompted !)The log is automatically saved by MBAM and can be viewed by clicking the Logs tab in MBAM. Then post the new log when done and then (providing items are removed) you can proceed and do the items in my previous reply. Link to post Share on other sites More sharing options...
maryamian Posted August 12, 2009 Author ID:109078 Share Posted August 12, 2009 ok i will do that with mbam. but the prev found 8 threats and wants me to buy the program to remove them. do i need to do this or should i write down the problems and show it to you Link to post Share on other sites More sharing options...
Maurice Naggar Posted August 12, 2009 ID:109084 Share Posted August 12, 2009 No, don't buy it. Get and post a copy of the PREVX reportand proceed with my suggestions. Link to post Share on other sites More sharing options...
maryamian Posted August 12, 2009 Author ID:109087 Share Posted August 12, 2009 Prevx Scan Log - Version v3.0.1.65Log Generated: 11/8/2009 20:58, Type: 0,1Windows XP Professional Service Pack 3 (Build 2600) 32bit|1033Some non-malicious files are not included in this log.Heuristics Settings: Age: 1, Pop: 1, Heu: 2 (Dir: 1)Last Scan: Tue 2009-08-11 20:53:56 Pacific Daylight Time. Number of Scans: 1. Last Scan Duration: 5 minutes 16 seconds.[bP] c:\program files\seabyrd technologies\video converter\bbvc_uninstaller.exe [PX5: 02116512ADF1406B33A00412954EA2007BCDFA49] Malware Group: Medium Risk Malware[bP] c:\program files\seabyrd technologies\video converter\sd finder.exe [PX5: 02116512B4E9A0160872050A8C116D0013C7BD6D] Malware Group: Medium Risk Malware[bP] c:\program files\avs4you\registration.exe [PX5: D90235D00047B029C22629BF64F76300F4340587] Malware Group: Medium Risk Malware[bP] c:\program files\movavi video converter 5.5\videoconverter.exe [PX5: 3DAFE8A900C831E090585701FC745C0028E4DFF7] Malware Group: High Risk Worm[uPN] c:\documents and settings\user\desktop\otl.exe [PX5: E6365D18004DE0B9D66B077DE882D400282A9B77][uP] c:\documents and settings\user\desktop\avast_pro_setup.exe [PX5: 9EC0905FC0604A4BB3FC0486A0278000140F4631] c:\program files\malwarebytes' anti-malware\unins000.exe [PX5: 57C587C410E2A48B914D0AA72B9B40003AAAB309] c:\program files\malwarebytes' anti-malware\ssubtmr6.dll [PX5: 98897C80105A5F79B5280051E4E68100822B1660] c:\program files\aim6\services\compression\ver4_1_1_1\zipper.dll [PX5: 5AEA4EC1009069E558C801229FE68000839D4843] c:\program files\aim6\services\htmlrenderer\ver3_1_3_1\htmlrenderer.dll [PX5: A2481D380065B0D1BA3501170A04D800BB040593] c:\program files\aim6\services\imapp\ver6_9_15_1\aimbrowser.dll [PX5: 9843F4150050F0338656017636544A00B280452B] c:\program files\aim6\services\imapp\ver6_9_15_1\isaim.dll [PX5: ED29747430E99C38F3F200D6D6F23400287E3033] c:\program files\aim6\services\osinfo\ver2_1_1_1\aolidlemon.dll [PX5: F52944E100EE46CE2614000428C609006509BB3A] c:\program files\aim6\aolsoftware.exe [PX5: 4C721B44306FA703A17B003B3C2E07005809D66F] c:\program files\aim6\uninst.exe [PX5: 9D2AF9B3F80F6DF3F04E014210826D00BC28D582] c:\program files\aim6\services\notification\ver7_1_1_1\notify.dll [PX5: CD520A6600057D87FED101F4990DAD00DD556689] c:\program files\aim6\services\preferences\ver6_1_1_1\preferences.dll [PX5: 87AFDA1D00DA53427260018924EDB2005E4B6840] c:\program files\aim6\services\osinfo\ver2_1_1_1\osinfo.dll [PX5: 0E85FDD500AFA258802B02324E371500BC85F66A] c:\program files\aim6\services\http\ver3_1_10_1\http.dll [PX5: 0F42B26700F9111B68910122AC777A0060FEC075] c:\program files\aim6\xprt6.dll [PX5: 83E3A38C00A8B70ACADA03C200EAE400906D11D3] c:\program files\coolsoft\vasa video converter v5.0\vasavideoconverter.exe [PX5: FD3265E000A79AD940860424B88F72000E4A1C6A] c:\program files\aim6\image.dll [PX5: 83384CC1004458D4C853042188121A00C7866A00] c:\program files\aim6\services\localstorage\ver8_1_1_1\clssvc.dll [PX5: C82439CD00CBC665D88504B873FE74009F3E7774] c:\program files\divx\divxwebplayeruninstall.exe [PX5: 6F68B2ECB05BE6A0A2940785E64EAB00588B028B] c:\program files\aim6\services\sync\ver5_1_1_1\sync.dll [PX5: 1BB63B73002E956ACAC404CBB65E9A000ED12D5B] c:\program files\aim6\services\addressbook\ver1_12_1_1\absvc.dll [PX5: 5E2F29820068632548160560B29CF50008F3579D] c:\program files\aim6\services\bfts\ver3_1_1_1\bfts.dll [PX5: 8C4ABD6D00C2EE63E245025327B50D004CDE4BBD] c:\program files\aim6\aolsvcmgr.dll [PX5: 180307C40033CA4BD2BC08B7FA9451009066381D] c:\program files\aim6\services\softwareupdate\ver2_14_16_3\stic.dll [PX5: 89953EB500C6F9B1205809590771F700ABD2DC10] c:\program files\microsoft office\office\powerpnt.exe [PX5: 5BC47B2510A90FCB491C35137C1D03000B253A44] c:\program files\microsoft office\office\excel.exe [PX5: 90026B7F10E4BB9F71B955D1DE8EC6006AC516CB] c:\program files\aim6\acccore.dll [PX5: 219EA9C6005D8A618EFA0B1A6965E300D964DFAB] c:\program files\aim6\coolcore57.dll [PX5: 5D0E9E8C0044AE5A5CE21186FCA64400CC2146C8] c:\program files\veoh networks\veoh video compass\searchrecsplugin.dll [PX5: 44614563F8C6EBD72A5F06F42EACEC00D9470592] c:\program files\aim6\services\imapp\ver6_9_15_1\imappservice.dll [PX5: 1D6F38D8002DE8EA28D3372390F6EE00A97A15A9] c:\program files\veoh networks\veohwebplayer\veohwebplayer.exe [PX5: FFCAD143F8FFA3574A6A36239313C300C6500B4A][uP] c:\windows\pev.exe [PX5: 9E58577300E2CE714CD603E556919C00E82AA77C] c:\program files\malwarebytes' anti-malware\vbalsgrid6.ocx [PX5: 928AD74810B32EA3952A072600C60C009BD30A2A][G] (ACTIVE) c:\program files\mozilla firefox\js3250.dll [PX5: 2F8C1524F81FAD5AB1C40A7C6117CD00B9B182DF][G] (ACTIVE) c:\program files\mozilla firefox\ssl3.dll [PX5: 0A70A7D7F884DA43152402424201E4004B91715B][G] (ACTIVE) c:\program files\mozilla firefox\softokn3.dll [PX5: CCCDFA4500FE9B93607A02228B24730060AFDF0E][G] (ACTIVE) c:\program files\mozilla firefox\nssutil3.dll [PX5: 7FCC206DF85FE34E5596016A522A8900591F3428][G] (ACTIVE) c:\program files\mozilla firefox\nssdbm3.dll [PX5: EECD9263F82971C495D60181C65F11000E9D29FE][G] (ACTIVE) c:\program files\mozilla firefox\nss3.dll [PX5: 6B3B93C6F86EA480A576096AF09C26002C9C7C28][G] (ACTIVE) c:\program files\mozilla firefox\freebl3.dll [PX5: 87E49BD000F93D18D0E8038C441ED9006AD7FADE][G] (ACTIVE) c:\program files\mozilla firefox\xul.dll [PX5: E198DC7EF8C1FB2EBD2994846E9777009F795536][G] (ACTIVE) c:\program files\mozilla firefox\nspr4.dll [PX5: DBDBEEA8F8B81B3C05FB03D85761F5006ACCA03A][G] (ACTIVE) c:\windows\system32\ntlsapi.dll [PX5: E94C126B006C52E520B8003B3C2E0700D3595FCB][G] (ACTIVE) c:\program files\mozilla firefox\components\browserdirprovider.dll [PX5: 4CA52185F8ED930E592E007E1958B700C45BF09D][G] (ACTIVE) c:\program files\mozilla firefox\components\brwsrcmp.dll [PX5: 7B8BD5B6F8BE82A90D13027F812F8200B790A199][G] (ACTIVE) c:\program files\mozilla firefox\plc4.dll [PX5: 03C54E79F89501F44F4700A3EF63E5002701F8BB][G] (ACTIVE) c:\program files\mozilla firefox\plds4.dll [PX5: 506855D6F89590BB431100FD8AD9860028813A3E][G] (ACTIVE) c:\program files\mcafee\virusscan\1033\vscobres.dll [PX5: 74FE183110ED3B732C39008F67756A00F465D7CB][G] (ACTIVE) c:\windows\system32\rsaenh.dll [PX5: 47100BA200180DA62E1F0385EB4B3E0076D11132][G] (ACTIVE) c:\program files\mozilla firefox\xpcom.dll [PX5: C873BC0DF8F4D88B45A6003AE2DAF9005F57E7B0][G] (ACTIVE) c:\windows\system32\iertutil.dll [PX5: 0A5246410061B91F1684049BF2D840000BB02909][G] (ACTIVE) c:\windows\system32\wininet.dll [PX5: CE4A527000E60CFA9C170CEF2F1462001AD5E095][G] (ACTIVE) c:\windows\system32\wmi.dll [PX5: AB9E5BB400093C6E16D600F942A73D00BF48C748][G] (ACTIVE) c:\windows\system32\nddeapi.dll [PX5: 1F889ACE00FDB4F1464D00C8C0361800BA0B183D][G] (ACTIVE) c:\windows\system32\msimg32.dll [PX5: 7936975300B67C53127B00CC1C82B700B87DA746][G] (ACTIVE) c:\windows\system32\msidle.dll [PX5: CD94EA0F00806EB01A5E00B55B042C009D2639B2][G] (ACTIVE) c:\windows\system32\csrss.exe [PX5: B4E7351200C6D8C218E800665DD0AE001975146F][G] (ACTIVE) c:\windows\system32\lz32.dll [PX5: 93670382006E627E0AA70031FB056300B79BCD14][G] (ACTIVE) c:\windows\system32\icaapi.dll [PX5: 1377036700F33C1F2CA9008DAB5E160066A70D7F][G] (ACTIVE) c:\windows\system32\sfc.dll [PX5: 9285BE2900B7F5311459004526F09B00691446CB][G] (ACTIVE) c:\windows\system32\rasadhlp.dll [PX5: F1677B420035502F1E80003B3C2E0700C67CDEEC][G] (ACTIVE) c:\windows\system32\version.dll [PX5: 2B3AB81700228B634AAF00E471314F00A12E463A][G] (ACTIVE) c:\windows\system32\dot3dlg.dll [PX5: 19C48D3D00EA4C57243000DE440E5B0082F3E0CE][G] (ACTIVE) c:\windows\system32\sensapi.dll [PX5: A280DCE6008648A41C56005F0987030072A5722E][G] (ACTIVE) c:\windows\system32\ncobjapi.dll [PX5: 7640139B002380818EC8000E5676E10095BE0EDC][G] (ACTIVE) c:\windows\system32\smss.exe [PX5: 33A0AB030064EFA6C69B00AD18ED030054CE3826][G] (ACTIVE) c:\windows\system32\linkinfo.dll [PX5: 9CCAFD8B005FA0244E9300D512676900AD9C6499][G] (ACTIVE) c:\windows\system32\pjlmon.dll [PX5: E895C65E004DC4E63C0D006993AF9900188921D5][G] (ACTIVE) c:\windows\system32\powrprof.dll [PX5: 9669CD6C0025AF4D446300FD98850E00C88125E5][G] (ACTIVE) c:\windows\system32\netrap.dll [PX5: 3FB35879001E3A272E4A00D57DDC3B0040450EC8][G] (ACTIVE) c:\windows\system32\csrsrv.dll [PX5: 1323B5FE00AD22857E9100EE191F3F00678CCCC3][G] (ACTIVE) c:\windows\system32\dot3api.dll [PX5: 7322E26700CA9A7666B30041C98D4200B6F179C9][G] (ACTIVE) c:\windows\system32\normaliz.dll [PX5: E3FC1A7000BA1C775C420052AC60C600F74EBAFC][G] (ACTIVE) c:\windows\system32\msacm32.drv [PX5: 0A0C500500C4AB055058007FB94555005B041DD7][G] (ACTIVE) c:\windows\system32\mgmtapi.dll [PX5: FA5916D1006439163AED00A665C11400A282C57D][G] (ACTIVE) c:\windows\system32\profmap.dll [PX5: 8DA95D26004F34626CB90056026C360040388648][G] (ACTIVE) c:\windows\system32\wdmaud.drv [PX5: 53B9674D00E00AB25C2E00EE5C271D00F0BBC4E1][G] (ACTIVE) c:\windows\system32\midimap.dll [PX5: FC9F81460008E4CA4A4F00CEA87CE90019904742][G] (ACTIVE) c:\windows\system32\winrnr.dll [PX5: 35A5FD3400F7119E42F2002D05D06500AAF4825B][G] (ACTIVE) c:\windows\system32\cryptdll.dll [PX5: F7FBE72E008D42C3823B00473FC2D70080D5C759][G] (ACTIVE) c:\windows\system32\msdmo.dll [PX5: 2D62F1D800E7C90538CA00576A37520084135DD0][G] (ACTIVE) c:\windows\system32\wtsapi32.dll [PX5: 0C5CF72C00D5C1E74887004CE4E82E0016E7B472][G] (ACTIVE) c:\windows\ehome\ehtrace.dll [PX5: 966589BF002C17602E35003B796DBA005CC8A4D4][G] (ACTIVE) c:\windows\system32\ws2help.dll [PX5: 44EDFBA3006D72BC4E23001F9EE8E1002956FA49][G] (ACTIVE) c:\windows\system32\psapi.dll [PX5: 1649B70C004458CC5A7000857EF83A00C6E43596][G] (ACTIVE) c:\windows\system32\imagehlp.dll [PX5: 644C11D300AAA0373406022D62D77000BFA64399][G] (ACTIVE) c:\windows\system32\lpk.dll [PX5: 072C9387008AE8E956740015327150004F788390][G] (ACTIVE) c:\windows\system32\usbmon.dll [PX5: 6E436BC30057E17A42BE00DDE9919000CEA0FA84][G] (ACTIVE) c:\windows\system32\eappprxy.dll [PX5: 42C0A48600A0143FA0B8008B339D67001A5CC348][G] (ACTIVE) c:\windows\system32\imm32.dll [PX5: 17B0B838000EEB5CAEB601E0A6755C00267C07A3][G] (ACTIVE) c:\windows\system32\wsock32.dll [PX5: 78B41EAA007169C958BA00EE43B42D00EA47D3DB][G] (ACTIVE) c:\windows\system32\odbcint.dll [PX5: 617A1828003E9ABB70E501C15CEA1600DC317E51][G] (ACTIVE) c:\windows\apppatch\acadproc.dll [PX5: 6D9EEAA2006BDDB69ABC00C90F1324000FA995A8][G] (ACTIVE) c:\windows\system32\rasman.dll [PX5: 8D664DFC009B896EF0DC00924F4584008B40D1EA][G] (ACTIVE) c:\windows\system32\eventlog.dll [PX5: A5A8F21C00F0F057DC940002CD277900CD5740D6][G] (ACTIVE) c:\windows\system32\wldap32.dll [PX5: E92F0F5D003C9B62A08D0226C715E0006614504A][G] (ACTIVE) c:\program files\mcafee\siteadvisor\sahook.dll [PX5: 8DE85FB6100CE2BC36940055D102EA007FAB3965][G] (ACTIVE) c:\windows\system32\ipconf.tsp [PX5: 9B300F8900FFAA6244E600B9204CC700E80BC907][G] (ACTIVE) c:\windows\system32\samlib.dll [PX5: 9C1CF90F00588916FA930022FC33800072D652F6][G] (ACTIVE) c:\windows\system32\msacm32.dll [PX5: 87FEA7590077112018D0018EF5F1B800B276D5CF][G] (ACTIVE) c:\windows\system32\basesrv.dll [PX5: 2CCD9FEA004A46C5CEA900EC02AA35007486F19E][G] (ACTIVE) c:\windows\system32\rtutils.dll [PX5: 008AAE06003EF165ACFF003CE3C8FC00536BF026][G] (ACTIVE) c:\windows\system32\msasn1.dll [PX5: 3C2F4D7B006DCF40E05B00B5DF44490036D1D805][G] (ACTIVE) c:\windows\system32\authz.dll [PX5: 8CDA23570030FC32F4AC0081A658E900C21FE849][G] (ACTIVE) c:\windows\system32\ntdsapi.dll [PX5: 891FACAC009EE2EA0630018A299F19001F34C040][G] (ACTIVE) c:\windows\system32\cfgmgr32.dll [PX5: A2A1178400414DC342DE0050939AA300D9C5C9B1][G] (ACTIVE) c:\windows\system32\uniplat.dll [PX5: E6B6557600025D9136BC002562779F0066CA2BB7][G] (ACTIVE) c:\windows\system32\msprivs.dll [PX5: 10CAD90A00073085BC3600D4B298BF0006BB0264][G] (ACTIVE) c:\windows\system32\shfolder.dll [PX5: 165E12EC008B0A27624000373F970B00A89ADFDD][G] (ACTIVE) c:\windows\system32\fxsmon.dll [PX5: 4F5EAD0700EBD6015CEE00B188340500B578D018][G] (ACTIVE) c:\windows\system32\ws2_32.dll [PX5: BF73F5650083E24D42E501BC97875F00BAB7518E][G] (ACTIVE) c:\windows\system32\regapi.dll [PX5: DDC2012900E4A3ABC2F9004C2BFF28003994A545][G] (ACTIVE) c:\windows\system32\mpr.dll [PX5: 78EE1189004B3C31EAD0007F26A69F002230F807][G] (ACTIVE) c:\windows\system32\shimeng.dll [PX5: E6FD0BE50018B651FE5F004505CE8A00106D091D][G] (ACTIVE) c:\windows\system32\hid.dll [PX5: 719A477A007AC63652A600216DCC8700D238C655][G] (ACTIVE) c:\windows\system32\wdigest.dll [PX5: BFAF2ADA00595713C0E50063E912B4006485D7D5][G] (ACTIVE) c:\windows\system32\snmpapi.dll [PX5: 2499C5E800BA58274A0B0035941AE20065B5D6E7][G] (ACTIVE) c:\windows\system32\apphelp.dll [PX5: 2345C476004DED8CEC91015CCE991500270F7866][G] (ACTIVE) c:\windows\system32\winsta.dll [PX5: 67E2CDE0000B4FE0D27A00A2C01AC8008298ADA8][G] (ACTIVE) c:\windows\system32\winipsec.dll [PX5: A7480DD800FA4B3B7E990047A702A400CAB9AA7B][G] (ACTIVE) c:\windows\system32\batmeter.dll [PX5: 6C7D745F0073ED4972A600EE3311DE007F7013A8][G] (ACTIVE) c:\windows\system32\comdlg32.dll [PX5: 079F762300203CBA3A7004F64B0EED00195BCD74][G] (ACTIVE) c:\windows\system32\secur32.dll [PX5: 6516C22700ADC6EDDEED00A41A9DEC0070E6DE41][G] (ACTIVE) c:\windows\system32\sfc_os.dll [PX5: 488FA7A000B052FC24AA022F015E2200B67E7BD2][G] (ACTIVE) c:\windows\system32\winsrv.dll [PX5: 28B9CD02007540A07ACD04E0F391B40017AB20E4][G] (ACTIVE) c:\windows\system32\user32.dll [PX5: 083DA59600CA3828D49208485E7D7A00EDE72044][G] (ACTIVE) c:\windows\system32\msctfime.ime [PX5: E6BF2D0A00836C5FB4DF0239B19F4F00DDAD7FE0][G] (ACTIVE) c:\program files\mcafee\virusscan\1033\esplgres.dll [PX5: 14F87178105D25033EB3009B6073C400455B4B30][G] (ACTIVE) c:\windows\system32\wintrust.dll [PX5: 210B888E00EFA348B23C023EB915930042A02D1C][G] (ACTIVE) c:\windows\system32\iphlpapi.dll [PX5: 1F0BA6E600DB457772C6018676EAF0001523276F][G] (ACTIVE) c:\windows\system32\odbc32.dll [PX5: 47D3E10900BE753CD06C03BF86F9EE0027AB06A6][G] (ACTIVE) c:\windows\system32\cryptui.dll [PX5: 997BF201004C8F65D2C607F50DB55E005C5EEDF6][G] (ACTIVE) c:\windows\system32\cnbjmon.dll [PX5: 5E5C3D8D00970E77B83E00A93E8C1500DD7C5B87][G] (ACTIVE) c:\windows\system32\schannel.dll [PX5: C3CEE21900631D57369002FAC3C08D00F389A741][G] (ACTIVE) c:\windows\system32\wsnmp32.dll [PX5: 2E57D04E00F0FB19A44A001F02B24500386041EC][G] (ACTIVE) c:\windows\system32\kmddsp.tsp [PX5: 76B73C01002B5E47827E002FD5F94400F0CCD23A][G] (ACTIVE) c:\windows\system32\mspatcha.dll [PX5: 88299E89007F579A74DF005613930A004DC4A0F4][GP] (ACTIVE) c:\windows\system32\shlwapi.dll [PX5: FF089D24007AF8693C7A07111CD799009A369BD5][G] (ACTIVE) c:\windows\system32\msv1_0.dll [PX5: 4ECE25A7003C4DB606FD02E5BC440A00456DC60A][G] (ACTIVE) c:\windows\system32\ntmarta.dll [PX5: 5164AB0B00C5C8E8D017010B1AF3730057BA199E][G] (ACTIVE) c:\windows\system32\umpnpmgr.dll [PX5: 921D3CA30081FB7BE213017131F60A0036E2766F][G] (ACTIVE) c:\windows\system32\gdi32.dll [PX5: C6E052840056C091602B041594E09600E270F7EE][G] (ACTIVE) c:\windows\system32\hpzll054.dll [PX5: C24C4427004612FBBCE9007A03C2DD00159E32CE][G] (ACTIVE) c:\windows\system32\winmm.dll [PX5: 7711891700D1E137B05D0251B7723200CF875BAF][G] (ACTIVE) c:\windows\system32\netapi32.dll [PX5: 7462A9A4006191F4267805A32CF9030033B5E5E4][G] (ACTIVE) c:\windows\system32\usp10.dll [PX5: 6F63F249001BEF843217069E761587001C6AFE14][G] (ACTIVE) c:\windows\system32\comctl32.dll [PX5: 42924BDF0031D0D66C9109620812280022B97561][G] (ACTIVE) c:\windows\system32\msvcrt.dll [PX5: 0E02682700F2B5393C40053E754F9C0067E6BFFA][G] (ACTIVE) c:\windows\system32\uxtheme.dll [PX5: 98E86A6600484E9056CE030D3745ED002AD188ED][G] (ACTIVE) c:\windows\system32\hidphone.tsp [PX5: D33AF4B000A508A5743B0021F0E45E00053AFD5B][G] (ACTIVE) c:\windows\system32\cabinet.dll [PX5: 5373CB4000D95514ECB900DF7CCBA30003CA272F][G] (ACTIVE) c:\windows\system32\ssdpapi.dll [PX5: F2D6764000C1749D88B800335BE70A009FEC7F6E][G] (ACTIVE) c:\windows\system32\pstorsvc.dll [PX5: 312171EF00638D4D861A00929045E30032C004C9][G] (ACTIVE) c:\windows\system32\winscard.dll [PX5: CFCED1C2006C53F18428018F23FF5C006DEDACF6][G] (ACTIVE) c:\windows\system32\dnsapi.dll [PX5: AAB816C7003A92D74260022E29C3560009ED9F00][G] (ACTIVE) c:\windows\system32\tcpmon.dll [PX5: 91A6811F0001B79FB2A100B552D5300050AC7B1C][G] (ACTIVE) c:\windows\system32\mprapi.dll [PX5: F4A20A9A007FE40754A301CEF32463001343BBCB][G] (ACTIVE) c:\windows\system32\wzcsapi.dll [PX5: F56B769000DCF7FECE510026781581007EB40694][G] (ACTIVE) c:\windows\system32\netlogon.dll [PX5: 13AF74A80003231C363A06158CAD1E0090DC0800][G] (ACTIVE) c:\windows\system32\eappcfg.dll [PX5: 54892FCE000A6984F079014F92793C001507210A][G] (ACTIVE) c:\windows\system32\wuauclt.exe [PX5: 84E432BC180DA03EC8AE001EFB581900EB96F5B8][G] (ACTIVE) c:\windows\system32\adsldpc.dll [PX5: A9ACA9570058C222305C0252D2DAE2001D0B4E68][G] (ACTIVE) c:\windows\system32\scesrv.dll [PX5: A1150DAC00354295CEEB046249624900F4DFB11C][G] (ACTIVE) c:\windows\system32\ndptsp.tsp [PX5: 3AC2EF3C00CF81F2DE3300525E11A500C51D7406][G] (ACTIVE) c:\windows\system32\setupapi.dll [PX5: 6E709DCD00EA594108E00F17F5EDD700E9776A0A][G] (ACTIVE) c:\windows\system32\mstlsapi.dll [PX5: C312D12500688D74C69101D9BEB3C70090E3736F][G] (ACTIVE) c:\windows\system32\spoolss.dll [PX5: 432879260090B7932633016C8D8F91000134FAC5][G] (ACTIVE) c:\windows\system32\msvcp60.dll [PX5: 6D4034BC004D251950C90628350BD700E2A3D8E6][G] (ACTIVE) c:\program files\mcafee\virusscan\lockdown.dll [PX5: 3DCFA71B404A5C7D612E008FA6D80400FE4DEA70][G] (ACTIVE) c:\windows\system32\faultrep.dll [PX5: 1323660700F761883A750104BD2955004B210B39][G] (ACTIVE) c:\windows\system32\samsrv.dll [PX5: 8866413D0091FC7458A606C8DAAABB00286B4E9F][G] (ACTIVE) c:\windows\system32\winlogon.exe [PX5: 65AC26F6009EAAB8C01307D21BFA850005C731B9][G] (ACTIVE) c:\windows\system32\fxsevent.dll [PX5: 2D1306DE003EBC66D8B100C14BD5DE008D5C7B43][G] (ACTIVE) c:\windows\system32\kerberos.dll [PX5: CA8A0C320080D5F99268045016144700460C98AB][G] (ACTIVE) c:\windows\system32\cnbjmon2.dll [PX5: 3A7F1EED00B512153621015C7F6E220095378DB5][G] (ACTIVE) c:\windows\system32\clusapi.dll [PX5: 1128ADB700BF51BAE46A00703E384E00561FED2D][G] (ACTIVE) c:\program files\mcafee\virusscan\res00\mcshield.dll [PX5: F543CB9F4075A4825F3200E908134C001C388BD8][G] (ACTIVE) c:\windows\system32\sxs.dll [PX5: 50AB6DF50017FAE1E2E40A177C972F009DD89314][G] (ACTIVE) c:\windows\system32\tapi32.dll [PX5: D2BF1D0C009262E8C6D9028DDB1C650047862C81][G] (ACTIVE) c:\windows\system32\onex.dll [PX5: 5AFACAD200BF41FB34CB02CC0942180089FBDE01][G] (ACTIVE) c:\windows\system32\resutils.dll [PX5: 46543F1C00FF3F35E6E8009E05882600FC91AFBF][G] (ACTIVE) c:\windows\system32\inetpp.dll [PX5: 5F1467940072FFD8265C01DD774B6F00B4C3087B][G] (ACTIVE) c:\windows\system32\hptcpmib.dll [PX5: FABC547C00CDCA7A90FE012000F777004AE7D6F2][G] (ACTIVE) c:\windows\system32\psbase.dll [PX5: 0D18F97100F22AEC7AA1014CA775E400DB4ABD6A][G] (ACTIVE) c:\windows\system32\ntdll.dll [PX5: BFF0A5040004C56CE81D0A27D3450300FB95E5BB][G] (ACTIVE) c:\program files\mcafee\virusscan\mfehida.dll [PX5: 885DB626406CEE61495200E7C2741E0034560005][G] (ACTIVE) c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.5512_x-ww_35d4ce83\comctl32.dll [PX5: DF4164EC0065A0631618103EA2670100E1A772AD][G] (ACTIVE) c:\windows\system32\rasapi32.dll [PX5: 4E2039BD006AD00B9E3003FB8628D900DE5D9DE9][G] (ACTIVE) c:\windows\system32\mscms.dll [PX5: 8AB6A2A40028E8F6225F0154EEAF9000B3FC8030][G] (ACTIVE) c:\windows\system32\riched20.dll [PX5: 7BD357FB00BF177A9EE0061494AB16002FBE633E][G] (ACTIVE) c:\windows\system32\spool\prtprocs\w32x86\hpzpp054.dll [PX5: 33017B51004F2A57228901FA8D50140014152227][G] (ACTIVE) c:\windows\system32\msgina.dll [PX5: 546E05D100C223D438C70F85419DF800BF79C294][G] (ACTIVE) c:\program files\mcafee\siteadvisor\mcfrmwk.dll [PX5: F5137A6E10D3E6D718400178616F1900703730E6][G] (ACTIVE) c:\windows\system32\win32spl.dll [PX5: 40F9ACC500D7A9429036016B941F080016DF48CB][G] (ACTIVE) c:\windows\system32\unimdmat.dll [PX5: BFF755E500EF2033227A01D6D2A0D40067D2FDCF][G] (ACTIVE) c:\program files\mcafee\virusscan\ftl.dll [PX5: 53A5731D4006CD5B9F8E00E3B1C02F001B735D1A][G] (ACTIVE) c:\windows\system32\hpzjrd01.dll [PX5: F739C899006B2CD520BF0287321092009C2DDE99][G] (ACTIVE) c:\windows\system32\mtxclu.dll [PX5: C6F8F7E30048B22E046E01D1E5E7A6007E308EEC][G] (ACTIVE) c:\program files\mcafee\msc\1033\mclocres.dll [PX5: F38FCDDC984B469AFBCA00F554B03700AF0BAD95][G] (ACTIVE) c:\windows\system32\hptcpmon.dll [PX5: A070A0DD0087C241605702D031C10A0066B62915][G] (ACTIVE) c:\windows\apppatch\acgenral.dll [PX5: 8295E35200ADB32B46FF1C01C3955A00FA8A3436][G] (ACTIVE) c:\windows\system32\comres.dll [PX5: 6E4AE11200670C76165D0C7CE8FD780090DCA30A][G] (ACTIVE) c:\windows\system32\wbem\wbemcomn.dll [PX5: 41E5ACAE00006F34465003A6F1AEDB009EB17686][G] (ACTIVE) c:\windows\system32\drprov.dll [PX5: 9B0C675A00AB92BA389C004B1301B0005B106E54][G] (ACTIVE) c:\windows\system32\lsasrv.dll [PX5: A15C11B80014E77B20A00B4C549A00009F445C59][G] (ACTIVE) c:\program files\mcafee\siteadvisor\apengine.dll [PX5: 2456F05210A587A5CA0901BC36D23B006BF89DE7][G] (ACTIVE) c:\windows\system32\kernel32.dll [PX5: 42F001390017180D1A8B0FA067FDD9005283DD8F][G] (ACTIVE) c:\windows\system32\dssenh.dll [PX5: 852136D500ADC2641E2C02C25D98CE00E20035FE][G] (ACTIVE) c:\program files\mcafee\virusscan\mfesmfa.dll [PX5: 76F251EC4027626A4338005DBD758A004692D892][G] (ACTIVE) c:\windows\system32\xpsp2res.dll [PX5: 66C3AF8100DC548438832C4BE2FCEB004115A816][G] (ACTIVE) c:\windows\system32\unimdm.tsp [PX5: 17C5A25F00F7BC682870039282340C00382EC701][G] (ACTIVE) c:\program files\mcafee\virusscan\mytilus3.dll [PX5: 91873E7140343D8205500109F6774100924165B5][G] (ACTIVE) c:\windows\system32\ntlanman.dll [PX5: 8B6B34E000D098FAAC53008EEB9785008022393A][G] (ACTIVE) c:\windows\system32\modemui.dll [PX5: A18DE3B400B0456B588C02D015D10300BDE0F871][G] (ACTIVE) c:\windows\system32\hptcpmui.dll [PX5: 35010B9D007A5B0B908E03231A9FBC0001422426][G] (ACTIVE) c:\windows\system32\esent.dll [PX5: 132034B40018AF1D841110D2E2E01D00C42F068A][G] (ACTIVE) c:\program files\mcafee\siteadvisor\cntscan.dll [PX5: C63A543B10339C8C2A6203D44A2D98001C9A1036][G] (ACTIVE) c:\program files\mcafee\msc\mcres.dll [PX5: E6D32CA388C1B0277E5901F814D0BD0076336D3C][G] (ACTIVE) c:\program files\mcafee\virusscan\mfebopa.dll [PX5: 5A26E64B40A63A06E5BA006E2633CA00E52322B6][G] (ACTIVE) c:\windows\system32\ipsecsvc.dll [PX5: 0313FB940089A677CE1702A52C835000A0C53FDE][G] (ACTIVE) c:\program files\viewpoint\viewpoint manager\viewmgr.exe [PX5: 1B9F87F0D07EEF30B691016AADD4F1006809A45B][G] (ACTIVE) c:\program files\mcafee\siteadvisor\saset.dll [PX5: 36CEA18610191A08BE9204E819944300CEDFC4BC][G] (ACTIVE) c:\windows\system32\oakley.dll [PX5: 58778CA400660B082003048E0F4DD200D44BEEFB][G] (ACTIVE) c:\windows\system32\h323.tsp [PX5: 911697ED005613530E940424D8467B0074B2BC02][G] (ACTIVE) c:\program files\viewpoint\viewpoint manager\viewmgrcore.dll [PX5: 54EB9D7AD028D164364D06E4D3C767000302613C][G] (ACTIVE) c:\program files\mcafee\virusscan\mfeavfa.dll [PX5: F8D3E7CD407BDA17E56900FD7FC72E00551B8FEA][G] (ACTIVE) c:\program files\mcafee\virusscan\mytilus3_server.dll [PX5: A7CBC20040E1B3E285AB01CE6D53B20017699F13][G] (ACTIVE) c:\windows\system32\rastapi.dll [PX5: 90C89BF2005A7060E41900BE4D5BC400BF7D06FD][G] (ACTIVE) c:\program files\mcafee\siteadvisor\components\mcffplg.dll [PX5: 52E827C71004689D2EE8015C19238100479CB735][G] (ACTIVE) c:\windows\system32\fxsapi.dll [PX5: 8A22D5CA00AF5E05E4330686EA231C0074C91EEA][G] (ACTIVE) c:\windows\system32\vssapi.dll [PX5: 75531871008C21C9922C066BE643B9008C81E820][G] (ACTIVE) c:\windows\system32\netui0.dll [PX5: 5B901A6D009B39813C2B0174887590001B6940C6][G] (ACTIVE) c:\program files\mcafee\siteadvisor\mcbrwctl.dll [PX5: B5B2B1DB10A90C5EDE66038FE20F160058D35CE0][G] (ACTIVE) c:\windows\system32\localspl.dll [PX5: 440975410070B4E446F005BA48BDA9006894B82B][G] (ACTIVE) c:\program files\common files\mcafee\msc\mcutil\9,11,100,0\mcutil.dll [PX5: D0624B5440615BB24B8D0341BBD30800BA63B75D][G] (ACTIVE) c:\program files\common files\mcafee\msc\sqlite3.dll [PX5: 341AE3A6D82819F2412306B7B842760088601606][G] (ACTIVE) c:\program files\mcafee\siteadvisor\sacore.dll [PX5: C052889010C6F1BEF41509739CD953000D795413][G] (ACTIVE) c:\program files\common files\mcafee\msc\misplf.dll [PX5: 8DED823170260A168FF903B88EA796001722F795][G] (ACTIVE) c:\program files\mcafee\virusscan\naiann.dll [PX5: 3F6D5EAA10249552C2F80477A2EFE100732E9C5C][G] (ACTIVE) c:\program files\mcafee\virusscan\mytilus3_worker.dll [PX5: 3C624E0F40FCE5ABE5B8038EE732E000FC826B98][G] (ACTIVE) c:\program files\mcafee\mpf\1033\l10n.dll [PX5: 172DAD7528C6F1915F94033B9841A600B3B1315C][G] (ACTIVE) c:\program files\mcafee\msc\oem\679\mccobres.dll [PX5: F4FE97F2401EDC72F5000FCCB18B6C0032C79745][G] (ACTIVE) c:\program files\mcafee\msc\mcaltlib.dll [PX5: D7823DADC85F8B72FD0108C8FA0CA100AE255E90][G] (ACTIVE) c:\program files\mcafee\virusscan\engine\5301.4018\mc5300up.001 [PX5: 5C50D1CA956C6BC7C0560BED0D320D00CE30EF05][G] (ACTIVE) c:\windows\system32\netui1.dll [PX5: D526E081009DAFF6C09A0359E24F19007CE88265][G] (ACTIVE) c:\windows\system32\dbghelp.dll [PX5: 9DBDF8E600811E7DC46609F4E5DD6200BA037578][G] (ACTIVE) c:\windows\system32\fxsst.dll [PX5: A322214000D13C5394EB08454DA08A00F3A986D7][G] (ACTIVE) c:\program files\mozilla firefox\sqlite3.dll [PX5: 36F69B11F877F7A5C3ED06A8E9153200CAD25E85][G] (ACTIVE) c:\windows\system32\rasdlg.dll [PX5: F93B2BCE00049C010CB70AD823CB9700B6A9FB8E][G] (ACTIVE) c:\program files\mcafee\msc\mcprohlp.dll [PX5: 88E7B1E500FBD479B21C03312C67F6009621F759][G] (ACTIVE) c:\windows\system32\wuaueng.dll [PX5: 96A8FDF31820FD8A9E1D1B88260572006ACE6A58][G] (ACTIVE) c:\program files\mozilla firefox\smime3.dll [PX5: 62C2F9C7F81243EA95B3014D3E4A9D000A62BFD4][G] (ACTIVE) c:\program files\mozilla firefox\nssckbi.dll [PX5: 1ECCD08BF8FA4CF2D5AA046588B56900FFE5CA16][G] (ACTIVE) c:\program files\mcafee\virusscan\engine\5301.4018\mcscan32.dll [PX5: A681E398A607FBEE303A2F7A29498D000CE23A46][G] (ACTIVE) c:\program files\mcafee\msc\mccobres.dll [PX5: A318EBF2001E5A3E024F10FA97FBB60038BA7A20][G] (ACTIVE) c:\program files\mozilla firefox\mozcrt19.dll [PX5: 7FE9272DF8C862D3D5D40A7D01277700AE2CB7EC][G] (ACTIVE) c:\windows\system32\advpack.dll [PX5: 9CD77958005FA759E8DD017794AFFB00B4D21B21][G] c:\windows\microsoft.net\framework\v1.0.3705\mscormmc.dll [PX5: 6DDD55D100FAF4747A840120C6C73800BEF6C2E4][G] c:\windows\system32\presentationhostproxy.dll [PX5: A525716F1890B6DFAA980078FB229600016ED455][G] c:\windows\system32\icardagt.exe [PX5: 9985BCE100D800A47E920973E6923E0059F70C36][GP] c:\windows\system32\icardres.dll [PX5: 89266B3C00053A422C4B008EEE6E5600AD363456][GP] c:\documents and settings\user\desktop\prevxcsifree.exe [PX5: 63FE75A53822E6D202F00CE455A0B500FABBA26D][G] c:\program files\mcafee\virusscan\mcvsqt.dll [PX5: 0F3D8F5C10E47E459A48028546D794007803EC31][G] c:\windows\system32\dswave.dll [PX5: 90F00E070024781C4C5D00C71FE32700C22187D4][G] c:\documents and settings\user\desktop\procexp.exe [PX5: 3EC508198060D3EA2D5C36FD5B3C6000DF1706F5][G] c:\program files\mcafee\mpf\mc\mpfmisp.dll [PX5: E614717C40CF58ED4CE2117B0DEFBD002B742031][G] c:\windows\microsoft.net\framework\v3.0\wpf\penimc.dll [PX5: EB95EB17F83ED520150C016B6772E600B7E30565][GP] c:\documents and settings\user\desktop\atf-cleaner.exe [PX5: 3A5DF082003D80E6C67600375B5B0300CB41E90D][G] c:\windows\microsoft.net\framework\v2.0.50727\mmcaspext.dll [PX5: D28A207200910B087E7501628CBD10009AA53C7D][G] c:\windows\system32\infocardapi.dll [PX5: 804AEDB2087D08137E110101DC45C6003F9E08DD][G] c:\program files\mcafee\mpf\mc\mpfaltps.dll [PX5: 632BD9EF986F215BC7F700E1E8ED39001DFF8889][G] c:\windows\system32\rgb9rast_2.dll [PX5: B0E13BA918A5248D4DE1026ED757E7006107C237][G] c:\program files\common files\microsoft shared\dw\dwdcw20.dll [PX5: 359A0181600DE0F9A974000696030C00D0D95251][G] c:\program files\mcafee\msc\mcnmccps.dll [PX5: 244533B5E024E39F2B1A0102A11F3900AF651088][G] c:\windows\system32\presentationcffrasterizernative_v0300.dll [PX5: C224A78D380F90049A6401ACFA30C800124C99F5][G] c:\program files\real\realplayer\ierjplug.dll [PX5: 50730D062D24AA85C071006F0237AA00B5D256A0][G] c:\program files\mcafee\msc\mcnmcsrv.dll [PX5: 9CE5701F4091D434877F13D6933D5A00DA621800][G] c:\program files\mozilla firefox\firefox.exe [PX5: 4CD34118F804ECBBB11C04523CB55200B53D9A1F][GP] c:\documents and settings\user\desktop\rsit.exe [PX5: FDC2281D555504A8EE310BB4DA1E8F00474DC338][G] c:\program files\common files\microsoft shared\dw\dwtrig20.exe [PX5: 557AD59760821403993000D277F522007EFA78FC][G] c:\program files\mcafee\mhn\mcenuips.dll [PX5: 8C962C42B0369DB60B4D014565EA9900200F0911][G] c:\program files\mcafee\msc\mcndsv.dll [PX5: F5470082C85AFDF33C4B1724BFC5D6001F1AEDF5][G] c:\windows\system32\presentationnative_v0300.dll [PX5: 0AE5562920164D98EC3C0B203450C800F7F2E667][G] c:\windows\system32\mscories.dll [PX5: 76E8FF6200CD84AC4813010C0827BE0001C979DD][G] c:\program files\common files\mcafee\mna\mcujguips.dll [PX5: 72DA035EB05E73880B3A018176EE5D0096C2D7F1][G] c:\windows\system32\drivers\atinmdxx.sys [PX5: F01147EA00BE7AB736CC00E44C302A00BEEA352D][G] c:\windows\microsoft.net\framework\v2.0.50727\aspnet_state.exe [PX5: A1641FCD08C637E48661006025BFA10083500E28][GP] c:\program files\trend micro\hijackthis\hijackthis.exe [PX5: 3DF7D3A40061C4A70C8E069553313F002B40F674][G] c:\windows\microsoft.net\framework\v2.0.50727\aspnet_perf.dll [PX5: 2DC76008087C526684F300F0609C29000BE32C80][GP] c:\program files\erunt\erunt.exe [PX5: FE61AD1600E06F3E686D0279B8F7850086E0CE56][G] c:\windows\system32\drivers\ati1pdxx.sys [PX5: E991404B0FFD6FF82F7000461A312B002816CEC0][G] c:\program files\mcafee\msc\mcmnumgr.dll [PX5: 3327B9D200701AD2D35C092AA410ED00E25FA050][G] c:\documents and settings\user\desktop\erunt-setup.exe [PX5: 8B98308C616F7D7B13CB0CB7AACF7200EC7DC6F7][G] c:\windows\system32\drivers\mdmxsdk.sys [PX5: F550CBF45C4DEEBE2EDE0064049C6200A1C01EF8][G] c:\program files\mcafee\msc\mcuihost.exe [PX5: 931EBCAD0068F047C4130B1730AA0B00CB7B6B1F][G] c:\program files\erunt\unins000.exe [PX5: D08D2DF2C94053ED2D1601DB2936D30005577CF7][G] c:\windows\system32\infocardcpl.cpl [PX5: 91A1D9E708ACE0D1923C0090491112002077AECD][G] c:\program files\mcafee\mhn\mcensrv.dll [PX5: DF2F177FF067AF36B4211CC2E631EC009CAB93C6][G] c:\program files\mcafee\virusscan\mcctxmnu.dll [PX5: 5B4D8C9F10BE5E405C5402A08D7B0F0032AA7668][G] c:\documents and settings\user\desktop\hijackthis-setup.exe [PX5: 4BE7F08838A9D813655F0CD02AF298007E0371EB][G] c:\program files\mcafee\mhn\mcenuiex.dll [PX5: EF5D544EE87C8A6BDC84010BF6C4D2008DF251A1][G] c:\windows\system32\tswpfwrp.exe [PX5: 1BCEB8EF00643FC566A200A7E2BFB5004DD2A429][G] c:\windows\system32\dfshim.dll [PX5: B61F8E51F89DD20A79E601F7468B08006786AAC7][G] c:\program files\mcafee\virusscan\mvsmp.dll [PX5: F2E287A9105357849AAA01F4B207F600CF4FBDB9][G] c:\windows\system32\icardres.dll.mui [PX5: 48466EBB00CC5289F23508EF25D43500AC067FD1][G] c:\windows\microsoft.net\framework\v3.0\wpf\presentationfontcache.exe [PX5: 29E1613918B5437BB4A000056BA30D0085A65364][G] c:\program files\mcafee\mshr\shrmisp.dll [PX5: FF96C5F110224E9C0A4906EDAA509C00AF982478][G] c:\program files\mcafee\virusscan\mcqtax.dll [PX5: E384E0BB109F96FCDEFA03291954670065C3C2B7][G] c:\windows\system32\xpsviewer\xpsviewer.exe [PX5: E3466D93004C1C249A42040AC5B56A00FD25CD70][G] c:\windows\microsoft.net\framework\v2.0.50727\mscorsvw.exe [PX5: 5A664CB900910961108801DCD8DC6C004AAB9DEB][G] c:\windows\system32\mscorier.dll [PX5: E5D51D8800E97BDB6C8702202F4574001A474FEB][GP] c:\program files\erunt\ntregopt.exe [PX5: B8EA9DDA0068DC4324FA029114B8C900E19015CA][G] c:\windows\microsoft.net\framework\v2.0.50727\mscordacwks.dll [PX5: AEF636A35084D0A01B8B0FF6DE872B00303F4E15][G] c:\program files\mcafee\msc\mcnduips.dll [PX5: CA3DD027B04375240B93018C5DBA600067351FBB][G] c:\windows\microsoft.net\framework\v3.0\windows communication foundation\infocard.exe [PX5: EFD4B4BE00BDA0EE74510DC9EBC32100DBF077F7][G] c:\windows\system32\mscoree.dll [PX5: DC4D775C0056291E4EAA0496E6A5F900E88DF2B5][G] c:\windows\system32\drivers\pxsec.sys [PX5: 449EE65D0816D5746CFC004B8A039C005B1D0006][G] c:\windows\system32\evr.dll [PX5: 0CA3DDE7F893D5B5852A0794D255080043C70B3F][G] c:\windows\system32\drivers\atv02nt5.dll [PX5: 0547BD6E5FAE64642CF900D76F6FC700000CC411][G] c:\program files\mcafee\virusscan\mcavtsub.dll [PX5: 6A06043310B341708E3B02DBFB00CE00BF204F75][G] c:\program files\mcafee\virusscan\mvsver.dll [PX5: C703A54C10DFDAAC00B40392A2A47500F24679E1][G] c:\windows\system32\presentationhost.exe [PX5: FDA30DF510C3E58AFAB404856C12820068E770BB][G] c:\windows\system32\uiautomationcore.dll [PX5: 0503791610B5D9DB76C4029D7BAB0A0032329ADE][G] c:\windows\system32\dxva2.dll [PX5: 1432CF7DF83D0C541F930155CFD86800FC364FA8][G] c:\windows\system32\ipsink.ax [PX5: 6436F75000915F1C405500E54F79660058572CD6][G] c:\windows\system32\comaddin.dll [PX5: FE3F35B40049F1456E26008A21001B0090C1AA68][G] c:\program files\common files\roxio shared\9.0\sharedcom\cpslistctrl.dll [PX5: 7E9E96E7F80D76F3EA69036A9B647A009DA087E7][G] c:\windows\system32\drivers\recagent.sys [PX5: 8230DA32D0FF3CCB359200458A49D1005077BCC7][G] c:\program files\common files\roxio shared\9.0\dllshared\fxwrapper.dll [PX5: E2711057F89B17175E330087835EB60018372149][G] c:\windows\system32\msfeedsbs.dll [PX5: 235FA809009FDBDDCC60004020553200B3D22C65][G] c:\program files\common files\motive\bjaxsecuritymanager.dll [PX5: EB3BCF9200AB67C39EA8003D5E79430066CDABB6][G] c:\windows\system32\tlntsvrp.dll [PX5: D377AD150099D4801C8000847CEFFF00616307CF][G] c:\program files\common files\avsmedia\activex\avsimageview2.dll [PX5: 1C65963F003435E6600E020B3AB8FF00EE7D529E][G] c:\program files\common files\roxio shared\9.0\dllshared\alien.fxu [PX5: C2677AB3006C3CE2B0B00004C08E47001D006615][G] c:\windows\system32\winfxdocobj.exe [PX5: 6D28E5110049742E26AE03B5F40E5B00008E2C4D][G] c:\windows\system32\bidispl.dll [PX5: 65AA183400854926447000036B67CE00467E45A4][G] c:\program files\roxio\photosuite 9\ppscutoutobject.dll [PX5: AAA438E6F88889CC6ABB041DDF47E700C2750D54][G] c:\windows\system32\drivers\atinttxx.sys [PX5: 4D021E9A00CC1BA9364D00987AB05B00A6802140][G] c:\windows\system32\dskquoui.dll [PX5: 4EB7040B003A9C03609702A80D7EE700B54E0632][G] c:\program files\movavi\nctrmfile.dll [PX5: 46DDDFC2008812C400B1130BB1E6F4009ABBBE5A][G] c:\windows\downloaded program files\dwusplay.dll [PX5: 27582087B0BA5B7B7391002DDDE82A00A0F4BF41][G] c:\windows\system32\drivers\usb8023x.sys [PX5: 3E77E626002C4E4732F6001737A36500BD2ED064][G] c:\windows\system32\drivers\mbamswissarmy.sys [PX5: 4D74F1F510F54E2D95AC00A74509B200FBDEEB6D][G] c:\windows\system32\bitsprx3.dll [PX5: 9A8279C400A3C9851C51009A07D4D70071444616][G] c:\windows\system32\drivers\nwlnkflt.sys [PX5: A826BA3A803B83AE30C000488911C200DC3CA878][G] c:\program files\microsoft office\office10\outlook.exe [PX5: 1C0BBDE0A029D7AFB5F8002DDDE82A0001628F21][G] c:\windows\system32\drivers\mfebopk.sys [PX5: 574CD99AC87672DE895900B3B762CC00D126FA6C][G] c:\windows\system32\drivers\wacompen.sys [PX5: BD7D24B780B23628379400D942852C00086B47B3][G] c:\windows\system32\encapi.dll [PX5: 81D7253E00136A92501200F9205E7E00CD334B8F][G] c:\windows\system32\iernonce.dll [PX5: 443F3F3A007E8307AEE3007C4F2A5300F933493B][G] c:\windows\system32\drivers\sffp_mmc.sys [PX5: 0D9613CE000C9FDF284300164391810062DCB727][G] c:\windows\system32\hpovst09.dll [PX5: 602BA4BD4AE63EC7E045031C6FD56700C853DD8C][G] c:\program files\itunes\itunesminiplayer.dll [PX5: 5DA5ED822893063105D202DCC9B18900FF6D0754][G] c:\windows\system32\bitsprx4.dll [PX5: 74CDB8E800453C7F1C8E0052233B3F00C5B89B57][G] c:\windows\system32\drivers\pxscan.sys [PX5: CF322FCA08A3C93D56F800E77649BD00AEA6F0AF][G] c:\program files\common files\avsmedia\activex\avsvideoisofile.dll [PX5: 86198F9200278559A0C8068A0E1658005522C594][G] c:\program files\common files\mcafee\mna\mcnasvc.exe [PX5: BAFCE5D6A056E9B3E29225D075043F0006D97A7B][G] c:\windows\system32\drivers\wadv08nt.sys [PX5: 4CF103A01F6123B62CFA0037B0C1FD00836A25AA][G] c:\windows\msagent\agentpsh.dll [PX5: 9E1E0E620066EF825E5100F8065C3600A4817E93][G] c:\program files\roxio\photosuite 9\ppsprojectserverobjects.dll [PX5: BBC0CED4F89F549C6A2D02C04B6913002420669E][G] c:\program files\common files\roxio shared\9.0\sharedcom\cpsformatloaderbmp.dll [PX5: 089D7DF0F839919F4AA901DB43FB2E00DAA6A79F][G] c:\program files\common files\avsmedia\activex\avsdatawriter3.dll [PX5: 53C148790074F8DEE08301664885510080DB2C8C][G] c:\windows\system32\imgutil.dll [PX5: CAF7E19500E00DD38E9300C38F63CD008472484B][G] c:\program files\microsoft office\office10\outlacct.dll [PX5: B95333A8A05655F285E9003724A6EB0082A9ABF1][G] c:\windows\system32\drivers\rtl8139.sys [PX5: 0D1CF5B000B2C8EA5211002E76778C00F4B2E39E][G] c:\windows\system32\drivers\mbam.sys [PX5: 14052C179834FA4B4A900016A99D6D00B7342BA0][G] c:\windows\system32\drivers\ch7xxnt5.dll [PX5: C47D2B603FEF266C3C94003BB98DAC00A57B50D7][G] c:\windows\system32\wbem\xml\wmi2xml.dll [PX5: EF7CB8DC0057DB54B28000BD0D18CF0084A9FD9D][G] c:\windows\system32\drivers\atv06nt5.dll [PX5: 3D87D53E3F81C4A7370C0069B976F60024A0A192][G] c:\windows\system32\drivers\mhndrv.sys [PX5: 885FC12400EABD9E2B48002BFABEBE006F993DD3][G] c:\windows\system32\pngfilt.dll [PX5: 544A9DC200ADC643AE1B003F3D4D7500CCBA23D8][G] c:\program files\common files\research in motion\rimdevicemanager\devicemanagerres1055.dll [PX5: AE8BDC0818AF5376B62402614E9DEA004704EFC4][G] c:\program files\common files\roxio shared\9.0\dllshared\stereo.fxu [PX5: 703DE9B600B3FF7F6E79002463266B00EBA7CA50][G] c:\windows\system32\bitsprx2.dll [PX5: C0BD3B4400373FA6201800D1F7251F004100DACC][GP] c:\windows\downloaded program files\iegetplugin.ocx [PX5: B1859DB978B47982649D018E29C83E0021F73FE9][G] c:\windows\system32\drivers\wadv09nt.sys [PX5: 5DB73A5C5FAB7A1D2EB000A4DD02C800BA660E95][G] c:\windows\system32\drivers\nwlnkfwd.sys [PX5: B9B73139006979BB7FBC0031EA7E320032D237D0][G] c:\windows\system32\drivers\irbus.sys [PX5: F2826D6200C57828B62F004A2636B3005BFDCEA1][G] c:\windows\system32\drivers\secdrv.sys [PX5: 84A9A7CB006F9ECC508100883E7135006D51A95C][G] c:\windows\system32\drivers\mfesmfk.sys [PX5: 0C5BF60968A2A8679E4F000119307A00EEF8DD95][G] c:\windows\system32\licmgr10.dll [PX5: 5A13277B0017F6B9A0CA004ADFB08C00B692A7DA][G] c:\windows\alcfdrtm.ver [PX5: 90C6C498005B6BEEEC6000D771795800A05DC029][G] c:\windows\system32\drivers\mutohpen.sys [PX5: F0516BDE807DC7ED312D00118D1A3F00F3D76BCF][G] c:\program files\roxio\photosuite 9\ppsrenderctrl.dll [PX5: 5A97C996F83931699AAB01920CB68C00E84339D4][G] c:\windows\system32\keyboard.drv [PX5: 159F7A82D0C5E0D3077700FE801B1000B79BCD14][G] c:\windows\system32\advpack.dll.mui [PX5: 5759F042004C922C28E200CBF7A4B300129175F0][G] c:\windows\system32\drivers\tunmp.sys [PX5: CBD0AEE30035D6A5300B00CF5C41910059532CD5][G] c:\windows\system32\bthci.dll [PX5: E5EC98AA00A71521523900B9F4F48A00F94E7A2D][G] c:\windows\system32\drivers\slwdmsup.sys [PX5: 16863D5CB8EACC283314005DED01E500658864AF][G] c:\windows\system32\iepeers.dll [PX5: 203CA2AC005F4E41EC6702AB4F31CE0082490795][G] c:\windows\system32\btpanui.dll [PX5: 2A99ABA400A87647C657002491CC4D00E0E07283][G] c:\windows\system32\drivers\sffp_sd.sys [PX5: 2962F907000470602BFC005958959E005F3F9EDD][G] c:\windows\system32\drivers\asyncmac.sys [PX5: 8BD45D2B002F3B40389D007E91CC5900FB93CEA1][G] c:\windows\system32\drivers\vchnt5.dll [PX5: 90C917F63D77D7732C8600DDE70E9900457D367E][G] c:\program files\roxio\photosuite 9\ppsformatloaderpzp.dll [PX5: 62A7D49DF8DCB299DAA2000AA630ED00E23FC0A3][G] c:\windows\system32\drivers\wadv11nt.sys [PX5: 3270838B9F1CA4BC2ECD00F52065DC007F926E55][G] c:\windows\system32\drivers\wadv07nt.sys [PX5: 1E0FE3D21FE339D22E2B008596227200617F8D26][G] c:\windows\system32\drivers\atinpdxx.sys [PX5: 56DABC9E00199F9D38D000631CEE050045090A25][G] c:\windows\system32\drivers\sffdisk.sys [PX5: BCD0F07C80BDA6002E68000865B1AD002DF173D8][G] c:\windows\alcfdrtm.exe [PX5: 90C6C498005B6BEEEC6000D771795800A05DC029][G] c:\windows\system32\macromed\director\swdir.dll [PX5: BB605D6EC0C66D0CD61800A9219F5C00D152940A][G] c:\windows\twunk_32.dll [PX5: ECEB6A80C0A46237045E00689933D600B79BCD14][G] c:\windows\twunk_16.dll [PX5: ECEB6A80C0A46237045E00689933D600B79BCD14][G] c:\windows\vm30xsnap.exe [PX5: DCA7F57A0012D6EAD09A00C86205C600D0053031][G] c:\windows\system32\w3ssl.dll [PX5: F1358BF300977CA93E69002E33D2730074EB3E68][G] c:\program files\microsoft office\office10\outlrpc.dll [PX5: 13EC356CA0642B091557015233BE3800D7415555][G] c:\program files\common files\roxio shared\9.0\dllshared\mono.fxu [PX5: 884770C700C9B7B8A0A6008852EB2100510273C4][G] c:\program files\roxio\videocore 9\rxsimpledump.ax [PX5: A6F45185F84DBEDE3ABA022CF5F979005DBD1139][G] c:\windows\system32\drivers\tape.sys [PX5: 1278B1EF80B32A683A3F0096934CD200CD93C3A7][G] c:\windows\system32\jdbgmgr.exe [PX5: 19BA11ED10D2D00E3B7400494D3A6800718D1DFC][G] c:\program files\google\google earth\earthps.dll [PX5: 098A802E0061205D388900CD33D49900E92DB5CD][GP] c:\program files\common files\roxio shared\9.0\dllshared\roxio_vwerror9.dll [PX5: E6EB8228F82DB361264D005CD0AAFF006BE70E7D][G] c:\windows\system32\drivers\streamip.sys [PX5: 37C869AE80A1D1423BD000F9D6694800DEF3C0AC][G] c:\windows\system32\more.com [PX5: 2A1E263300912B7542E2005C7E1CE1000F17AADC][G] c:\windows\system32\dpv11.dll [PX5: 88D410D600D3F4D1E02000E2854E3000BEC7CEBF][G] c:\program files\common files\sonic shared\sonicmc01\sonicm4vd.ax [PX5: 914EDCE3F8E8868A3AF70E20B0CC3F006374875D][G] c:\windows\system32\perfctrs.dll [PX5: 4B7420CC00BFF0F99CBD00E55E999300485DEED9][G] c:\windows\system32\drivers\gagp30kx.sys [PX5: 642F878C801E7D44B50600016FDC9C0046817CE7][G] c:\windows\system32\rsmps.dll [PX5: 0613D75F005353064A4B00CBE9C80E0091F2127F][G] c:\windows\system32\drivers\cdralw2k.sys [PX5: 4518F26FF8DED74324DE0027365E6D0072F3B365][G] c:\program files\yahoo!\browser\ygarcon.dll [PX5: E0EF47C5F8A26BD0116A010396402E006F936E9C][G] c:\program files\yahoo!\messenger\ypagerps1.dll [PX5: A708E0F400D985BC9EC700B0DBC94F00D83A85D0][G] c:\program files\microsoft office\office10\outlmime.dll [PX5: 3EA9A08CA02A9308656D015A7D6EC2005A5F2863][G] c:\windows\system32\ping.exe [PX5: 6622DF2900ED600346EE00A9DBB6CD00072159A7][G] c:\program files\roxio\videocore 9\roxioinftee.ax [PX5: C6ACB35FF8127E820A1E02D1A1D7D100D16E7446][G] c:\windows\system32\pcandis5.sys [PX5: 8015BAFD0AB22D8543ED0028528BDF0097C2A15C][G] c:\windows\system32\savedump.exe [PX5: 0993AA8400E185B0349600853F7206008A15C12D][G] c:\windows\system32\drivers\tdpipe.sys [PX5: 3FCBC6C1086354332FFD003DE3512D00E0553E49][G] c:\program files\roxio\videocore 9\vcuselect.dll [PX5: CA3C0D8BF84256344A6B01287E4C94009E9E6AB5][G] c:\windows\system32\clipsrv.exe [PX5: A977CDE400FC51CC827400A5E8550500782AFAEE][G] c:\windows\system32\dllcache\admwprox.dll [PX5: E9E9049C00F024F3AA4800C30E00440068AB739E][G] c:\windows\system32\sendcmsg.dll [PX5: 4BFA3CBA00928E36725F002749A10600A7F056E1][G] c:\program files\common files\system\msadc\msdarem.dll [PX5: 96B74988007B2E08D02801A2AB0BFA000BD51FA0][G] c:\program files\roxio\videocore 9\chunker.ax [PX5: 29958842F8F70A358A5001BC64EE640009FF735F][G] c:\windows\slrundll.exe [PX5: 220B58C8621C1633808300BE70965D00640A1FE1][G] c:\windows\system32\drivers\diskdump.sys [PX5: 6D7A5F848072A37B37EB00C342763700A71B4DD2][G] c:\windows\system32\sclgntfy.dll [PX5: 7A89F88500098A01503F00E5B243D3001A0BE2A3][G] c:\windows\system32\l3codecx.ax [PX5: 5EE6C3BC0022166C80A701337C7DF0002DC5AFF3][G] c:\windows\system32\drivers\wpdusb.sys [PX5: A638B0C8000D268C4AED005D86936200F68D3FC5][G] c:\program files\windows plus\audio converter\acshellext3.dll [PX5: 925FD3A10050ED848ECC004264910100BFA12C07][G] c:\windows\system32\javasup.vxd [PX5: 99B75F2393917E501C450098C8A2BA0043E75EB1][G] c:\program files\quicktime\qtsystem\exportcontrollerps.dll [PX5: 8BFE326F006FB61FF07600BC4C51C100E42D60B0][G] c:\windows\system32\msdbg2.dll [PX5: 83ED520BF8C007220DF904A44A471100AA4ABBBA][G] c:\windows\system32\drivers\usbintel.sys [PX5: 46A2709400A8B9863E99007B5ED70B00A3584D07][G] c:\windows\system32\drivers\slip.sys [PX5: C05453A580D50DE62B1A00E6C96F3800A046263E][G] c:\program files\quicktime\qtsystem\exportcontroller.exe [PX5: EC29329A00749DD4A08202CB7B2BC9007EEA34A5][G] c:\windows\system32\wuaueng.dll.mui [PX5: B54FEF2518727813486F0092B50629001A3BEAE3][G] c:\windows\system32\wbem\evntrprv.dll [PX5: C4EED6EF00658967542F007BCC683E009E7C16FA][G] c:\program files\yahoo!\browser\yurl.dll [PX5: EC38015D4058D286744701DC002BFC009A82A77F][G] c:\windows\system32\sdhcinst.dll [PX5: A915DE1A00E8EADB72E700E622202800ECD785AD][G] c:\windows\system32\slayerxp.dll [PX5: B5EF52880082777862B40009A02CC80066B727DD][G] c:\program files\common files\motive\csshim.dll [PX5: 536200CD00F75F0F904002B80AD6B10088D16C58][G] c:\program files\roxio\videocore 9\listimagesource.ax [PX5: C60046CAF86D671A2A6203B842CCED00734CA60B][G] c:\program files\mozilla firefox\accessiblemarshal.dll [PX5: F34071A9F8C16FD8433B006F164E6500AA739C85][G] c:\windows\system32\idndl.dll [PX5: 61E0320500ECAE9B66FE004F233969009BE70567][G] c:\windows\system32\adsmsext.dll [PX5: 073A77E60003DA550AEE010875694900EEEB97F3][G] c:\windows\system32\drivers\usb8023.sys [PX5: 3E77E626002C4E4732F6001737A36500DF1D4C45][G] c:\program files\microsoft office\office\osa.exe [PX5: B735358310B44C10CB80006851EF1E00B94DDC4A][G] c:\windows\system32\fxsperf.dll [PX5: 5458503400E8129A227F003B3C2E0700DCBA6D3F][G] c:\windows\system32\shscrap.dll [PX5: 5AF31D2B00BB78776C3A002D43C9000088330B48][G] c:\windows\system32\pcandis4.sys [PX5: 8C6159BCD0A1F9CD41E400C736D6EE00E6043FCA][G] c:\program files\common files\installshield\driver\1050\intel 32\objpscnv.dll [PX5: 4ACDE0C900B3D8AD800B002DDDE82A009D8A3B40][G] c:\windows\system32\vidcap.ax [PX5: B04AE1BE0047BF4870410090056767003A390D28][G] c:\program files\canon\raw image task\rawimagecommand.dll [PX5: 822EF1DE00A4DBE080F900522C4AC200360CE58F][G] c:\windows\system32\mimefilt.dll [PX5: 948DDC4500095CD8749D00E36F04AD0064E46715][G] c:\program files\internet explorer\connection wizard\trialoc.dll [PX5: 333E5F5F00B1B2DFA0D4003BF55FF4008D19D348][G] c:\windows\system32\vbisurf.ax [PX5: 2F77251F001C613F76B90071522DF9007213F171][G] c:\windows\system32\dllcache\bdaplgin.ax [PX5: 7366834D009FBB24489C0080A216A7002386095C][G] c:\windows\system32\msdtclog.dll [PX5: 20B3721000D12229E6FE00F74EA88900A5AF46B6][G] c:\windows\system32\drivers\mfeavfk.sys [PX5: F30A15F1C89503AF374F01EE775530000B19E586][G] c:\windows\system32\ie4uinit.exe [PX5: F764EB4C006B753B140901425FEA5D00B7778398][G] c:\windows\system32\drivers\ndisip.sys [PX5: 92D82929807F4CDE2A6000D7EF7E8C00B62E081D][G] c:\program files\roxio\videocore 9\genericipe.dll [PX5: 59539995F82B777EEA5103CA47F90600C2D394B2][G] c:\program files\yahoo!\messenger\proxy.dll [PX5: 6C2626C6000AE5781E3E0014B3464A009F4F8739][G] c:\windows\system32\qagentrt.dll [PX5: 080FD9EC00670BCF723104909B415700C1926B6B][G] c:\program files\common files\roxio shared\9.0\sharedcom\cpsalbumbrowser.dll [PX5: 2C7A82B6F89BF081BA6307EC471D2D00CC6175D5][G] c:\windows\msagent\agtintl.dll [PX5: F13D4FEF00BE11075E92009AD450610040EB30F5][G] c:\windows\system32\eapqec.dll [PX5: 3D435431005736F0E864000DE59D690010BB63E2][G] c:\windows\system32\upnpcont.exe [PX5: 927F0E05009AE47342160064F701DF006EBBA27F][G] c:\windows\system32\msconf.dll [PX5: FF5B035100281D2610BA01FDEA35E90076F4FA70][G] c:\windows\system32\ieudinit.exe [PX5: B0A5487B008C702190C300DC669E4F00D4257B51][G] c:\program files\yahoo!\common\yinstbroker_exeps.dll [PX5: CFA06030180F25DFF5F1006DE912C3004D384D12][G] c:\program files\common files\roxio shared\sharedcom\rxdsaudiosource.ax [PX5: DABE9740F894B523EA1E0042B82355008C4F2FF7][G] c:\program files\common files\roxio shared\sharedcom\rxdsaudiostreamwriter.ax [PX5: 6C816259F8F870789A8901EC0EC2BF00970BE0DC][G] c:\program files\hp\digital imaging\bin\hpiscnps.dll [PX5: 619C5EE300B44AD0A083002DDDE82A00B8EE85EF][G] c:\program files\common files\roxio shared\9.0\dllshared\internetradio.dll [PX5: E15CB5E3F83B364C680F002A13D4FB00B1F50D50][G] c:\windows\system32\mtxoci.dll [PX5: F8646C9D00701DC466480137A1E4C1006F93228C][G] c:\windows\system32\wscntfy.exe [PX5: 8FBFA6FA00E6E09B3694001AFC0EFA001CA5DA83][G] c:\windows\system32\drivers\hsfdpsp2.sys [PX5: 8779C2C980FAE868E48B0FB35EB4640037393C0C][G] c:\program files\common files\roxio shared\9.0\mpeg\subpictenc.dll [PX5: 32539BFDF89C7D998A6D016186CBA000695A555F][G] c:\program files\sbc self support tool\asstcommon\motiveplugin_5.02.00.dll [PX5: 54257DC8002B309D809902E3024865003408D424][G] c:\program files\common files\roxio shared\9.0\sharedcom\cpsemailobject.dll [PX5: F151C048F846034A6AC001A5A6DE3900F03A8D68][G] c:\windows\system32\drivers\adv02nt5.dll [PX5: A7E664B87F8342F60F450059A31F6A00B79BCD14][G] c:\windows\system32\perfnet.dll [PX5: 77E37D9D0082BD4F46D300445877F800651D0F0C][G] c:\program files\hp\digital imaging\bin\fwupdateedo.dll [PX5: D1057BFA007FAB12105C02A0B971D100AA0DD068][G] c:\windows\system32\drivers\adv07nt5.dll [PX5: B31C5DEA3F6399F70ECB0074E4EAAB00B79BCD14][G] c:\program files\movavi\nctwmafile2.dll [PX5: D0F6F04200DF48D400B103ADC56B02008AC36952][G] c:\windows\twain_32.dll [PX5: 663EA21400AE30BCC6480084C5F353009B3DFF9A][G] c:\windows\system32\cdxareader.ax [PX5: B8CE2EC20072986F2046035BB47ACC004307F6A6][G] c:\windows\msagent\mslwvtts.dll [PX5: 959280A700B7E2579CAC0094483B6A0097DF52E3][G] c:\program files\hp\digital imaging\bin\hpqeps.dll [PX5: 61172F9A0045BCEF9097002DDDE82A0034B36ECC][G] c:\windows\system32\dot3gpclnt.dll [PX5: 63D3CD17009398C49C9D00606005BE0013528F51][G] c:\program files\roxio\videocore 9\mediagraphbuilderobjects.dll [PX5: E3F516A4F88C52C75A1C02762852DD00ACB7CEA6][G] c:\windows\system32\dhcpqec.dll [PX5: 694714EB00CA416CBE9200918D7D7F0089435C3E][G] c:\program files\common files\roxio shared\9.0\sharedcom\cpsimagedeviceprotocolhandler.dll [PX5: 96CCD32EF8E3DF969EC800F708533D003C9B0A17][G] c:\program files\roxio\videocore 9\peakmeterax.dll [PX5: 16A5C57CF8D654008A26018E63810E00C8EBA82E][G] c:\program files\roxio\photosuite 9\ppsimageobject.dll [PX5: 2342293FF8DF5591EA4501D8C1FE0C00F426B670][G] c:\program files\common files\avsmedia\activex\avsmobiledevice2wireless.dll [PX5: 2F4239A0004603CAA0B601C7FE4C8B00FE975A11][G] c:\windows\system32\msscds32.ax [PX5: 40EDAAC900B8541C10190169AEDC0500FF2E1805][G] c:\windows\vm303uninstnt.exe [PX5: 3E815C980048D810A065006C5D65F700D7244A63][G] c:\windows\help\sniffpol.dll [PX5: D29ECD49009E90B988FE00BDEFE1A30022489C20][G] c:\program files\hp\digital imaging\bin\hposva08.dll [PX5: 9404EA3B002C7A1BA0A40182B9CCD60067EBAA29][G] c:\windows\system32\twext.dll [PX5: C8CC8B3B000F2D42E2C200A53E0E5E001494F3BF][G] c:\program files\common files\roxio shared\9.0\dllshared\eq.fxu [PX5: 6E5A4B1E001B48EDF0C00034F46F1400ECBB9F2D][G] c:\windows\system32\drivers\smbali.sys [PX5: 12482C94000568C617170054DB39780005417B03][G] c:\program files\internet explorer\custsat.dll [PX5: 4BE7EAAB0029E5D78400004958538600DB630243][G] c:\windows\system32\drivers\rndismp.sys [PX5: 120F9F0E8086D8327795009508457100EA4A9887][G] c:\program files\common files\roxio shared\9.0\dllshared\normalize.fxu [PX5: CD37F24100DE188DA07D00DF4FDC6600B02CD679][G] c:\windows\system32\drivers\adv08nt5.dll [PX5: 013C1FD73FEEE4020CB1004C26F6C200B79BCD14][G] c:\program files\roxio\photosuite 9\ppsaffine.dll [PX5: B10E0409F88512E91A9903297C00E00017F53232][G] c:\windows\system32\ixsso.dll [PX5: 9D07EEEB0029F161D4E500588F29CB00F173AB66][G] c:\program files\common files\sonic shared\sonicmc01\sonicaacdec.ax [PX5: 4B50600AF807AAB59A3A038A293EC800D0671629][G] c:\program files\roxio\photosuite 9\ppspzpimporter.dll [PX5: 15C8AF14F85B18BB5AB501E4BD53F0004E12C6CA][G] c:\program files\common files\research in motion\rimdevicemanager\devicemanagerres2052.dll [PX5: AE8BDC0818AF5376962402614E9DEA0002C68A1E][G] c:\windows\system32\drivers\p3.sys [PX5: BBAD548C00B89633A7F100DD557C7000F0B3360C][G] c:\windows\system32\spmsg.dll [PX5: 0C997CA720A944BC42B5001ACA6BC000F8E8791D][G] c:\windows\system32\safrdm.dll [PX5: C71A5BFE004E005274C000164D5A3600E377D870][G] c:\program files\roxio\photosuite 9\ppsgroupobject.dll [PX5: FFBC2EBAF8C452620A5C02E01D202D0050FC658D][G] c:\windows\system32\qmgrprxy.dll [PX5: AEEC4D5D001855564AE00089362F3600D4885061][G] c:\program files\common files\roxio shared\9.0\sharedcom\spaceindicator.dll [PX5: 435E1388F8E9BDC11A6F0361F561F5004DC8212A][G] c:\program files\hp\digital imaging\bin\hpqtraps.dll [PX5: C9E74F670068624570BC002DDDE82A00C3FAB351][G] c:\program files\roxio\photosuite 9\ppsshapemanager.dll [PX5: 1BAFF9ECF828131B4A9D01E876EE8C0075A265FB][G] c:\program files\common files\hp\digital imaging\bin\hpqpsb01.dll [PX5: A593DF1F001F068270230423060A9A0089E8CF5E][G] c:\windows\system32\amstream.dll [PX5: 414D11230073E8E414B701C06A374E0059A4317A][G] c:\program files\itunes\itunesphotosupport.dll [PX5: 5C92206B00DC593E9E7C026B520CF8000D008D01][G] c:\windows\system32\drivers\adv09nt5.dll [PX5: 6CFBB2557F52FDA40E8100F7B8FF1900B79BCD14][G] c:\program files\common files\avsmedia\activex\avsmjpegfile.dll [PX5: 2A7725B8000D3F2260AC0505A9029400DD552A0B][G] c:\program files\hp\digital imaging\bin\twainctrl.dll [PX5: 3235BD9600C62C07A0BD00B36CA932005AB8022E][G] c:\program files\hp\digital imaging\product assistant\bin\hprbxml.dll [PX5: 92A2C0640069A148C01A009BFA214B0064E67619][G] c:\windows\system32\camocx.dll [PX5: 8325AC3B000889BCC6D8008577F34A00B98E4228][G] c:\windows\system32\drivers\adv05nt5.dll [PX5: 1EF4C56B1FF6A91F0E9E004ED0DF7D00B79BCD14][G] c:\windows\system32\rdpsnd.dll [PX5: B9ED62E400977AA34EB000290CA1A500B5AD945A][G] c:\program files\common files\roxio shared\9.0\dllshared\gracenote.dll [PX5: AA8F709BF846AF9AD48500445137C40003FF9E64][G] c:\program files\hp\digital imaging\product assistant\bin\hprbeh.dll [PX5: 4260640600F25263109001B0C7C1810004010563][G] c:\windows\system32\drivers\siint5.dll [PX5: AFE7FF023D1CFF0E0F8C006500DB9A00B79BCD14][G] c:\program files\common files\roxio shared\9.0\sharedcom\leresourceidgenerator.dll [PX5: 8060B7E7F81D91166A9001BB377A13004ABF63F7][G] c:\windows\system32\mprdim.dll [PX5: C1B4240300856D85D0EE00272296B4005D10C4FB][G] c:\windows\system32\drivers\adv11nt5.dll [PX5: E9AE750BBFE93ABD0E0400CC09D68200B79BCD14][G] c:\windows\system32\eapsvc.dll [PX5: C332610F0093B5B4840600BED308CD001E3B5775][G] c:\windows\system32\drivers\cdr4_xp.sys [PX5: AA25D71B78C8E829247500E1DF1CD700586B4A7B][G] c:\program files\malwarebytes' anti-malware\zlib.dll [PX5: 8F36527A1020809D372101DB0E9EC800310BDA2D][G] c:\windows\system32\msctfp.dll [PX5: C98D9CBA00901B960CA101492F532500931A335B][G] c:\program files\common files\roxio shared\9.0\dllshared\pitch.fxu [PX5: E4C4E9B400581185787E009433CB72001A37231B][G] c:\program files\yahoo!\browser\sidebarsynch.dll [PX5: B39E7FEE00917EE7764C016AC9CD6900FCC098A2][G] c:\windows\system32\wbem\krnlprov.dll [PX5: C13EE85E002751BB60BF00ABB2FA2A00341C1E9B][G] c:\windows\system32\wbem\cmdevtgprov.dll [PX5: E2FE7C7100BCACD7B0CC00639A8F02004F12FFCC][G] c:\program files\hp\digital imaging\bin\hpqnrsps.dll [PX5: 063C093400DF0424600E002DDDE82A008A74AE8D][G] c:\program files\outlook express\wabfind.dll [PX5: 87D6BBE500C19A9380580042741F6000B458F959][G] c:\program files\roxio\videocore 9\scenedetector.ax [PX5: D490AAFDF852CE3EEAF8021B442E6B00C095543E][G] c:\program files\hp\digital imaging\bin\hpodev08.dll [PX5: AFDCF5300072EBAF20E801722E876A0066451227][G] c:\program files\yahoo!\browser\yregstart.dll [PX5: 52A7D21C529B0D23E0360049D3D7C60095A89601][G] c:\program files\hp\digital imaging\ncpmlinst.dll [PX5: 95AD39D1006D3B43C07701243B56BF00672B904F][G] c:\windows\system32\drivers\mspclock.sys [PX5: E3D3244C00A7CE72157A001337247B008F8E8497][G] c:\windows\system32\rshx32.dll [PX5: 79353CB000CDA77E9CF60030E3B39600977555FC][G] c:\windows\system32\drivers\mspqm.sys [PX5: E79874108063B1F513260078C414AC00D0AB678F][G] c:\program files\common files\motive\rgwlib_2-0-0_dsr.dll [PX5: BE392F5800A567059098023314CED000E8CD3E6A][G] c:\windows\system32\format.com [PX5: 25EDABA300A7F67D74C700F808956B004F42D3D9][G] c:\program files\roxio\videocore 9\cgactivator.dll [PX5: FA39EE70F8D557C47AFF02C2B552140057ABD59B][G] c:\windows\system32\shmgrate.exe [PX5: 3450CE85009C16D4B07100FE5B2A6100ABCA99D2][G] c:\program files\roxio\videocore 9\crossgraphex.ax [PX5: DD382835F80893852AC80292AB48C800F443A3F5][G] c:\program files\microsoft office\office10\mlshext.dll [PX5: 8CD0FBBFA0D37997859C002DDDE82A007AB6F1BD][G] c:\program files\common files\avsmedia\activex\avsaudiosmoothtransform3.dll [PX5: D37AE8B6009397C9E0C90102C9D47200D4DDB597][G] c:\program files\common files\installshield\updateservice\isdm.exe [PX5: 9E500D75B00CF356535E04D3C4F19C00B34A1B0E][G] c:\program files\roxio\videocore 9\audmf.ax [PX5: 0F865E14F898118DFA8902BBFDB73800BACAA6DC][G] c:\program files\roxio\photosuite 9\ppsremoveredeye.dll [PX5: 607D2D35F89514BF8A99029150303E0040ECEB9F][G] c:\program files\common files\roxio shared\9.0\dllshared\maturize.fxu [PX5: 0918041400CCC044D0F200FE2CABEB0008C19B3E][G] c:\windows\system32\drivers\usbcamd2.sys [PX5: 2C68E76080C0840A6439007754862A00AB77FF15][G] c:\program files\roxio\videocore 9\vcgoutput.dll [PX5: 6859811CF8D63EFFAACB0400C74A7F006EF748BC][G] c:\program files\adobe\acrobat 7.0\activex\acropdf.dll [PX5: 028CDBFD8834955EE63A03EF4C6E90004E46C566][G] c:\program files\common files\motive\bjinstaller.dll [PX5: 04C52F3F00187D0B50C601EE501F0300EE164A46][G] c:\program files\common files\hp\instantshare\hpodcpxe.dll [PX5: 2C2B68430000A955D0E70221587ED300DC95A8DD][G] c:\program files\hp\photosmart essential\hpqishtm.dll [PX5: DD8A513D00BA3F91B02201C6EFBB29009BA48CA6][G] c:\program files\common files\motive\encmnsvr.exe [PX5: FEDD176000E16615404802FF893D5B00BB9F6B9B][G] c:\program files\outlook express\oemiglib.dll [PX5: 8AAFC1EA00F00FBB8A140015D6CF0400825C3AB1][G] c:\program files\common files\roxio shared\9.0\sharedcom\rxanalogcapture9.dll [PX5: 50301837F8E18B65EAE80281065A9E005AA14BFC][G] c:\program files\common files\roxio shared\9.0\sharedcom\btwsupport.dll [PX5: C7B61C60F8B5C7613A1E01B6B0D52D0048E1A662][G] c:\windows\system32\stclient.dll [PX5: 7DBDF9030047EDD0E8C7003EDFD5150040F17FFA][G] c:\program files\common files\roxio shared\dllshared\cddbmusicidroxio.dll [PX5: 93BF7E94F8B14E38153A09ADE889FE000CB38AF1][G] c:\program files\roxio\videocore 9\audiosrc.ax [PX5: 972D09B9F8F36EA3AA1B025257634C0068B787F2][G] c:\program files\common files\roxio shared\9.0\dllshared\devoice.fxu [PX5: 8F1FD1B6007B6C38D0E400B2416F5C0038AF3ADB][G] c:\program files\common files\roxio shared\9.0\dllshared\robo.fxu [PX5: C45398D00005A343C09200D7C5F7BC00248E45F5][G] c:\program files\roxio\photosuite 9\pseditview.dll [PX5: 3E2E3E38F88A2E598A8504E30E1B6300F0A9D57B][G] c:\windows\system32\wpd_ci.dll [PX5: 6630D0E100697184985A0044EE01FA00B99D4AD6][G] c:\windows\system32\nlsdl.dll [PX5: A241FEE800B5407C605300CCC4620600715D2FFE][G] c:\program files\roxio\videocore 9\wavhead.ax [PX5: 1594999EF8BDD8401A15026018EFCC00C44A315E][G] c:\program files\common files\sonic shared\audioplayer.dll [PX5: 1E4866DBF86C83A3AAF8035A86B3D900B719447F][G] c:\windows\system32\drivers\tdtcp.sys [PX5: 8942980688A6EF76558200032BC6D800DD26DD28][G] c:\windows\system32\xmlprovi.dll [PX5: 314399F7006D779EC40700DE080A1B00A1D38DF2][G] c:\windows\system32\drivers\mskssrv.sys [PX5: 1206502B8070367E1DC0005B0E279D003A9EE63B][G] c:\program files\roxio\photosuite 9\stitchwizard.dll [PX5: D6E2FC41F8C26C7C3AF80653BC71AC009BA8C5B3][G] c:\windows\system32\ciodm.dll [PX5: 5753CEF5006AE3020E62012EA42663006DD6F5CF][G] c:\program files\roxio\videocore 9\imagesource.ax [PX5: 6B4BA1B9F80DC5DE2A390326BE073900D286BA23][G] c:\program files\roxio\videocore 9\deinter.ax [PX5: FFC9E9DAF80924338A36029AD695DA00A2377681][G] c:\program files\roxio\photosuite 9\ppsprojectobject.dll [PX5: 26B53821F8524A9D0A5A020A10AF4A000A0A83D3][G] c:\program files\cyberlink\powerdvd\videofilter\clvsd.ax [PX5: 5FB5CD2C00D709A780C9072E477400002A2B7C72][G] c:\program files\hp\digital imaging\bin\hpotradd.dll [PX5: 575EBEDA002BAA62D0B0009F46FBF700A5F00C85][G] c:\windows\system32\drivers\wstcodec.sys [PX5: B2CFBF060074D4084BB4001A2B9A350050720EA5][G] c:\program files\common files\avsmedia\activex\avsdvfile.dll [PX5: 9874753200CE02EE80A30190FBBFDA00882CB557][G] c:\program files\common files\roxio shared\9.0\sharedcom\rxdvdcapture9.dll [PX5: A025FAEDF88FC33C3ADE07E91ECBE0007DFE7359][G] c:\windows\system32\batt.dll [PX5: F6459A6F007DB01922A4007CB7863C00855954BB][G] c:\program files\common files\roxio shared\9.0\dllshared\enhance.fxu [PX5: 1A8F49490013A922D01800F5352318007B119FE0][G] c:\windows\system32\msident.dll [PX5: 54C550DB0035701DCA3700FA600E7B0086886554][G] c:\windows\system32\drivers\amdk6.sys [PX5: D629DD7000980835920200E8789C9F00E3D15092][G] c:\program files\common files\research in motion\rimdevicemanager\devicemanagerres1049.dll [PX5: AE8BDC0818AF5376C62402614E9DEA006DDA01C0][G] c:\windows\setdebug.exe [PX5: 61935D3B10094915B5A60093CCFE91009A51570D][G] c:\program files\sbc self support tool\asstcommon\actl_5.01.00.dll [PX5: 4DB2C9F3008743E980CF03C61E72C20086B05CDF][G] c:\windows\system32\findstr.exe [PX5: 89F4DAB400FA59EE6A3A007DCD0C1D00E4A2CADE][G] c:\program files\canon\zoombrowser ex\program\zbsearchresults.dll [PX5: E47A5AF0646F1DB9B01000B589033D0004FF3B9B][G] c:\program files\common files\roxio shared\9.0\sharedcom\apstagmanagementpane.dll [PX5: 7E069AE1F89844E47A4D0301CACF300044155C66][G] c:\windows\system32\mshta.exe [PX5: 718367AA002A4EB4B2EB00A2C177ED00FAF63606][G] c:\program files\common files\roxio shared\9.0\dllshared\sndappdll9.dll [PX5: 5521B273F818BCEA6A3E0D263F885F00AC5859E0][G] c:\windows\system32\ipconfig.exe [PX5: E7D9ED6200F6C0ACDAB60057F0E4980070F286F9][G] c:\program files\yahoo!\browser\ypub.dll [PX5: 4B6353FD00F4043C007D02C0ED4767001B04C71B][G] c:\windows\system32\drivers\ipinip.sys [PX5: 9655BFAF8030F62E513A00C352D24800CFB42084][G] c:\program files\common files\roxio shared\9.0\sharedcom\cpsskinprotocolhandler.dll [PX5: 4BDD9734F8640174CA650087061964001FC91691][G] c:\windows\system32\drivers\nmnt.sys [PX5: 4F6E51DE803D5E299DD30090E390240049FFAF2D][G] c:\program files\common files\roxio shared\9.0\sharedcom\cpsresourceprotocolhandler.dll [PX5: C80F6525F8C42B7FCA290041A4D95900E7A80C9B][G] c:\windows\system32\dx3j.dll [PX5: E236DCE400B9BF17CA44046EF021CD00B1E64521][G] c:\program files\common files\roxio shared\9.0\dllshared\rxplst.dll [PX5: 0ADE72A6F8583319BAF1016185BD40000FBC698D][G] c:\windows\system32\kmsvc.dll [PX5: 9D1177DE007ACA4CF0BB008A891C9700D4CBDBCE][G] c:\program files\hp\digital imaging\bin\hpodeb08.dll [PX5: 7B5E49AC0026D8EE209103FE1A07BA007E0673E6][G] c:\program files\roxio\videocore 9\inputselector.ax [PX5: 61EAE5EEF88A06292AD703C148DB3B00E11EFFA6][G] c:\program files\common files\avsmedia\activex\avsimagepaint3.dll [PX5: 290D6A9800239A8D80730A2017DAE7008EF12053][G] c:\windows\msagent\agentdpv.dll [PX5: 77D43C7800E047AFE0D70048A03B1500965D6F8C][G] c:\windows\system32\vfwwdm32.dll [PX5: A80966C60029B5B8D23900EC6914FB0099D2E652][G] c:\windows\system32\findfast.cpl [PX5: 99BF5FA00061F7EB585600685D719B0079500862][G] c:\windows\system32\netsetup.cpl [PX5: 495555C5008D84BE644800FDF42C6C0001619E92][G] c:\program files\common files\motive\mccismx.dll [PX5: C13411C20031F6BD887105781C67AB00D1305D94][G] c:\windows\system32\dpnhupnp.dll [PX5: 5FFAA7EE0008D5DAEE840032D5DFF5006B44719B][G] c:\windows\system32\dsdmoprp.dll [PX5: D26BE76A00D59A8D186601B68FEA9F00B54CB416][G] c:\windows\system32\msrating.dll [PX5: 358199FC0042618FF204027B3892ED00B127C00A][G] c:\windows\system32\dsprop.dll [PX5: CEE55D630016816C2EF202EC8CC05000CD5753D9][G] c:\program files\common files\system\ole db\msxactps.dll [PX5: 95C81E36002DB80B606C002DDDE82A004C06D21F][G] c:\windows\vminstnt.exe [PX5: F2397ADF0058D1F820B801C47089570065283D21][G] c:\windows\system32\wbem\scrcons.exe [PX5: FDEB542C0002FE1A8EFA008B567C2400447773BF][G] c:\program files\roxio\videocore 9\waveform.ax [PX5: 3ED526FFF8246C6CBA5702FD65110100BD170CFA][G] c:\program files\canon\zoombrowser ex\program\zbvirtualfolder.dll [PX5: 57D7D89260FA95EDE063008F0EB2ED0010B7370A][G] c:\windows\system32\drivers\sdbus.sys [PX5: 12F9511E8033D35E354601CEF3B0FF0072197919][G] c:\windows\system32\drivers\rndismpx.sys [PX5: 120F9F0E8086D832779500950845710052090A7D][G] c:\windows\system32\perfproc.dll [PX5: BB9EB7CE00D1130B88D40020508C7500AD4E17DA][G] c:\program files\common files\roxio shared\9.0\dllshared\rxdvdaudioreader9.dll [PX5: DC801EACF81F9F081A1E010EB7DA3200AE7D1E9B][G] c:\program files\research in motion\blackberry\connectors\ms outlook connector\ilxolkcompanion.fil [PX5: BD9E787E6A3FA9807016058B214E1D00E6B32ABB][G] c:\windows\msagent\agentdp2.dll [PX5: 6B437D35001F5EA4A61200C2D967270010E5C60B][G] c:\program files\java\jre1.5.0_05\bin\npjpi150_05.dll [PX5: CFCEF49072072B841029015CFB425100F0A5CC4A][G] c:\program files\hp\digital imaging\bin\hpqxml.dll [PX5: 0A07F1870033F498E0040134CFAF2800D323506C][G] c:\windows\system32\dfsshlex.dll [PX5: FB9543A300DEC10C7043001E320E2600B610A89A][G] c:\windows\system32\drivers\watv06nt.sys [PX5: D04CA646FF640CF256F2007383ABD9003A191E15][G] c:\program files\roxio\videocore 9\audconv.ax [PX5: 9B358566F81A791E7AA7031D3F4A230017CC8BF6][G] c:\windows\system32\wuapi.dll.mui [PX5: 6D20A55318677DA85C67007386471800CAE711B8][G] c:\windows\system32\qcliprov.dll [PX5: 8BEFF36D00109F38F49000D604E8480049DDB081][G] c:\windows\system32\drivers\mstee.sys [PX5: EF9F4FE18003FE44154E00AC0DDE680015F5CFF9][G] c:\program files\common files\roxio shared\9.0\dllshared\cdral.dll [PX5: 0900B160F8B5BA328AB3018FC2534A00CF009A86][G] c:\windows\system32\drivers\viaagp.sys [PX5: D6E79603001AC593A55800BA66876F00A4E86821][G] c:\program files\sbc lightspeed self support tool\bin\matcli.exe [PX5: BF0BD8C2000E215B50F9030E92F8EA00EBF0E3C4][G] c:\program files\common files\roxio shared\9.0\sharedcom\rawjpegeditor.dll [PX5: 9B95EEB5F82E87906A7403E3A712D2008CC28C17][G] c:\windows\system32\remotepg.dll [PX5: 94126969006BE2BDEC330055D38D710036EE8170][G] c:\program files\roxio\photosuite 9\ppsedgefading.dll [PX5: 0B6D37EEF8879C0E0A0E027BB410F8000E8430AE][G] c:\program files\roxio\videocore 9\dvdcrossgraphex.ax [PX5: 9AA6ABEFF8D652DCDA6501732678F4002B4EBCA7][G] c:\program files\yahoo!\shared\yalertcenter.dll [PX5: 8E85A49EF85DE8AD655B02D82CCA2200F7EA4303][G] c:\windows\system32\drivers\ati1ttxx.sys [PX5: 9031E7695FDBA0F15365004FF9F694004110881D][G] c:\program files\malwarebytes' anti-malware\mbamext.dll [PX5: F4F1F6E91022A0F0152B012CBACEBD007FADD892][G] c:\windows\system32\drivers\atv01nt5.dll [PX5: F007178ABF6F1EF5520500E158C9C300E7719113][G] c:\program files\yahoo!\messenger\yacsui.dll [PX5: AB8E780A0071550010FE038D70165200C509E54C][G] c:\windows\system32\servdeps.dll [PX5: FB9B5B7500697F03DC9C00C263ED9B004EA6184C][G] c:\windows\system32\capesnpn.dll [PX5: E3FD4E4A00C665894AD102A0D010E1009C3F71AE][G] c:\windows\system32\xvid.ax [PX5: CC1D88F5008E1DAAF04400468BD689002EE19404][G] c:\windows\system32\wuaucpl.cpl.mui [PX5: 868763E218AFA6CD5C350033B9A80900E03DC385][G] c:\windows\system32\drivers\uagp35.sys [PX5: 9D095C07801C22E3AE6600D63D61E600782D745D][G] c:\program files\common files\motive\prox.dll [PX5: 1FD5488F006BE5FF604103AEAA039300429C4040][G] c:\windows\system32\oobe\msoobe.exe [PX5: 5AA2659A001C014172250037D7F932004C314D3B][G] c:\windows\system32\dataclen.dll [PX5: 62564E9D00927ED0D44D00E4E4CAD20080F0D6A1][G] c:\windows\system32\drivers\alim1541.sys [PX5: 9F57E1E200726D99A7A3005976AF0500D3B95DEC][G] c:\program files\common files\roxio shared\9.0\sharedcom\cpsstorageprotocolhandler.dll [PX5: 920DCA75F899633EFAF900AD5E7AA4005F210EFF][G] c:\program files\roxio\audiocodeccommon 9\dsfnativeflacsource.dll [PX5: EB2FDAFAF80C2F301A4C01793A2F4D0088961182][G] c:\program files\common files\roxio shared\9.0\sharedcom\cpsthumbcache.dll [PX5: F733E31EF827094A2A7901E91AB37D003A325737][G] c:\program files\yahoo!\browser\yscrawn.dll [PX5: B70DD18A480C601F7054024278157E00D5EDD8FE][G] c:\windows\system32\perfdisk.dll [PX5: 5DE898AC007D0C6E688D00FD6D1A9500D14C6E45][G] c:\windows\system32\fxsclnt.exe [PX5: 7F3554D800586B2E2E8C02C064D81600E2EF50AF][G] c:\program files\roxio\photosuite 9\ppseffectholder.dll [PX5: 7E2F155CF8E38F011A0E02562F00C6007D8143EF][G] c:\windows\system32\drivers\amdagp.sys [PX5: E6EB08360057179FA86C00430CC301004CB71E2C][G] c:\program files\common files\roxio shared\9.0\dllshared\dshowencodemanager9.dll [PX5: 879BEA96F85F1A683ACA05AA0D92A6002A11480E][G] c:\program files\itunes\itunesadmin.dll [PX5: A2876B9928B3F086A78F01D91BC329006CDBE4CC][G] c:\program files\yahoo!\messenger\ywcupl.dll [PX5: 38435AE000702B64E0430205BF11EF001D1C58C6][G] c:\windows\msagent\agentsr.dll [PX5: 18D87CB900C210EAAC9E0078AAF71C00D026F33E][G] c:\windows\system32\drivers\usbcamd.sys [PX5: 2C68E76000C0840A6439007754862A00090E71FE][G] c:\program files\roxio\photosuite 9\ppswarp.dll [PX5: B439B749F8A9B6B16A12023D852A7800BFE14C10][G] c:\program files\yahoo!\companion\installs\cpn3\ypubc.dll [PX5: 33B3AB9300B40EF4FEA402DB112CCA005E70BB7F][G] c:\windows\system32\drivers\ati1mdxx.sys [PX5: 9A0348305FAB82F42D270060B8503E0045CF641B][G] c:\program files\sbc lightspeed self support tool\smartbridge\sbiqwin32.dll [PX5: 1091F0DA008CA962B0CC01ED8FB817004B02929F][G] c:\program files\sbc self support tool\asstcommon\motivedirectory.exe [PX5: 2ECBB2390039F80CC0B703255CABAA0009A5CB42][G] c:\program files\yahoo!\browser\ysbtoolbar.dll [PX5: A7F5763D70A3B34D845D021823765A008757DA92][G] c:\program files\real\realplayer\rdsf3260.dll [PX5: 88A69835338ACCA5E06000518C05A100E4E5D83F][G] c:\program files\roxio\videocore 9\vlooper.ax [PX5: 36C3A1D3F8D32064EA02026DDB06EF00D7F9721A][G] c:\windows\help\sstub.dll [PX5: 9325406300FB0A4482EF00387B319400FB31352E][G] c:\program files\common files\roxio shared\9.0\dllshared\sndedit9.dll [PX5: 26B4E984F8F31CE4BAA6083001FC51006779D125][G] c:\program files\itunes\itdetector.ocx [PX5: 73E5533F2847F961C53301EFE0BB8800947F2DED][G] c:\program files\yahoo!\browser\ybconvfav.dll [PX5: C610980D00AD3931A485015970A47C00DEBD3233][G] c:\program files\common files\roxio shared\9.0\dllshared\cdrtc.dll [PX5: D52CB8E7F819D6EDBA610119A42A230021D6D13A][G] c:\windows\system32\dmband.dll [PX5: 15CA57D4004B02A6707A00210E056B00D406BC87][G] c:\windows\msagent\agentmpx.dll [PX5: F85E76DC0043DD9CC009004F205744004B7DD3B9][G] c:\windows\system32\drivers\amdk7.sys [PX5: 0601E31D804CB08593E4003936D92B0094BBCC5F][G] c:\program files\msn gaming zone\windows\zclientm.exe [PX5: 484AFA9C4901D7FD901900C56DBD8D00A42075D0][G] c:\program files\common files\roxio shared\9.0\sharedcom\cpsformatloadertiff.dll [PX5: B96C9A47F81B3FAC9AB901CB4E0C49008D4D0503][G] c:\program files\netmeeting\rrcm.dll [PX5: 87E8F3C1001C0FA9F0C900BAE5EB3C005E5D26A8][G] c:\windows\system32\dllcache\rrcm.dll [PX5: 87E8F3C1001C0FA9F0C900BAE5EB3C005E5D26A8][G] c:\windows\system32\drivers\bthmodem.sys [PX5: C7B309490098C8E694F000B44D666B00097E910F][G] c:\program files\hp\digital imaging\bin\hpqtra08.exe [PX5: A101F88ED8796952669D048FA5697B00D13DBAA5][G] c:\program files\roxio\videocore 9\vresamfilt.ax [PX5: C7357588F87708BAFAC7027F2892E80006C4CB66][G] c:\program files\roxio\audiocodeccommon 9\dsfvorbisdecoder.dll [PX5: 0E400E38F867EABB24750153E39C6F00A0A5420A][G] c:\program files\roxio\audiocodeccommon 9\dsfflacdecoder.dll [PX5: 290B5D9BF8C513BA2AAE0152C2595100E1FC6E85][G] c:\program files\common files\avsmedia\activex\avsvideofile.dll [PX5: 7213EC8400B8B36FD0990227505F620096BB1F6C][G] c:\program files\canon\g726decoder\canong726decoder.ax [PX5: 34161EAA93B88F0A106E0166C1266B008D373715][G] c:\program files\common files\avsmedia\activex\avsswffile.dll [PX5: 16C9C481007C4F03404501B56DD68300369573A0][G] c:\program files\hp\digital imaging\bin\hpqtao08.dll [PX5: FAFF4CAD002816580081015726F6AB004412F1CF][G] c:\program files\common files\avsmedia\activex\avscoresvcd.dll [PX5: 084F50ED00F9D08850A00105EFD81C0060EA685D][G] c:\program files\roxio\photosuite 9\ppspainterlyeffect.dll [PX5: 5B1B83D1F8FC425F1A4C075937C00100761C6A83][G] c:\program files\netmeeting\confmrsl.dll [PX5: A66392FC00364E25B0E400BEAC96EC00BA524444][G] c:\windows\system32\drivers\ip6fw.sys [PX5: 93047826004370A18F5A0004B987DC008A8F55C7][G] c:\program files\quicktime\qtuipanelcontrol.dll [PX5: 8F125C0C006E43D1901A05C199F84B0052DECC2A][G] c:\windows\system32\drivers\flpydisk.sys [PX5: 60E1171000EEA79E50BF00391F7EE0003B4C37EA][G] c:\program files\roxio\videocore 9\vcptranslouver3d.dll [PX5: 92A642E7F8F466C6BAAE0309230FCE00C515451A][G] c:\program files\roxio\videocore 9\vcpvw3effects.dll [PX5: 9C8BFAD1F82505AEAA5503F071748B00873CBEF9][G] c:\program files\roxio\videocore 9\qtsource.ax [PX5: 88D78ABEF8E607D5EACE01C31093BB0006161054][G] c:\program files\common files\roxio shared\dllshared\apm.dll [PX5: BD75B29CF8312C74AC160095A40DC600680271B5][G] c:\windows\system32\drivers\ati1raxx.sys [PX5: D7E83838CFFBCC21778E006C6ECA69008610B277][G] c:\program files\common files\avsmedia\activex\avslangutil.dll [PX5: AB5D24F90026C340509301CC2FF9340043E45155][G] c:\program files\common files\roxio shared\9.0\sharedcom\cpsformatloadergif.dll [PX5: 8F2D4EE5F8E54D316A85011E843B4200C6F2DEC0][G] c:\windows\system32\drivers\agpcpq.sys [PX5: 3C2A452B80CBBE67AF240060110ED70068FEC41D][G] c:\windows\ime\chtime\applets\chtskdic.dll [PX5: 0CB6BDF7004FF30FDC97008875DF8B00C7ECFF76][G] c:\program files\roxio\videocore 9\videocombine.ax [PX5: EAC0CB8FF85925A15A31039FD7B54C0020BE2D03][G] c:\windows\system32\attrib.exe [PX5: 0CFB52D90035DF26300D000185642600ABA325E9][G] c:\windows\system32\drivers\atinxbxx.sys [PX5: D3D6841600E9C8A17C9D00EE54392C008BFD8C61][G] c:\windows\system32\tree.com [PX5: D42250EB006AF7FF3248003E203A1100299CF2D4][G] c:\windows\vminst64.exe [64] [PX5: D94A75E70015C6DE10FE014A4301F30069013170][G] c:\program files\roxio\videocore 9\vcpsimpleoverlay.dll [PX5: F431F776F89949D4BA9A03D9C729CB0050776D1F][G] c:\windows\ime\imkr6_1\applets\imekrmbx.dll [PX5: 7F59F8BB00A3BBBE50F70143EA86D7003FB94FBA][G] c:\windows\system32\drivers\sonydcam.sys [PX5: 7C98490200F27A6F636900C11EF4E300DD4774BE][G] c:\windows\system32\pid.dll [PX5: 9377832900E1E3938A53009F21AC1800769367CE][G] c:\windows\system32\drivers\agp440.sys [PX5: 92796BB0806349F8A56F00F55D76CD005A64789A][G] c:\program files\common files\roxio shared\9.0\sharedcom\cpstreectrl.dll [PX5: 5B528FFDF882CF586A0C034C6097200000AE8E61][G] c:\program files\common files\system\ado\msadrh15.dll [PX5: 6B4543FC00E88ADBE0A600BA16DFE40065F945A9][G] c:\windows\system32\drivers\adv01nt5.dll [PX5: AB2F0A119F80806710990026B9058E0061ED18E0][G] c:\windows\system32\dpvacm.dll [PX5: 6F60F251002381FA5407000E4EB3DF00BA4CD7E1][G] c:\program files\common files\roxio shared\9.0\sharedcom\apssearchpane.dll [PX5: CFB9F158F83FC8C29A8905FBB092E7005C298BE4][G] c:\windows\system32\wbem\wbemperf.dll [PX5: 5DB126E400A748EAA87E00274922C900BDA4C3E5][G] c:\program files\yahoo!\browser\ybclip.dll [PX5: A485B74340594F28B6C501FA6765F3004EAD1E97][G] c:\program files\roxio\videocore 9\vcutlist.ax [PX5: 6C3D1EB9F8EB71ACFABD02FB65A8C2004E5CB34D][G] c:\program files\common files\avsmedia\activex\avsmatroskafile.dll [PX5: 1F8C972B005AC649B0FD0D2A86E68C00130CA828][G] c:\program files\hp\digital imaging\bin\hpqscnvw.exe [PX5: 950139CB00316229F0B902B00A72AD00D77FB5D9][G] c:\program files\roxio\videocore 9\vcptranswarp3d.dll [PX5: 0D820198F8419949CA8E03145A553E00AB56D549][G] c:\windows\system32\dmremote.exe [PX5: D471B83200C3F3693E470039C5A9A60053F047A2][G] c:\windows\system32\drivers\sisagp.sys [PX5: 67D98FA600CA352AA02400A357FF240007CD1A59][G] c:\program files\movavi\nctvideofile.dll [PX5: 66D3E56100D6369520BB02E5AD59FB002AEE265B][G] c:\program files\common files\roxio shared\9.0\sharedcom\cpsimagepreview.dll [PX5: 65C0374DF85CE271BA3B0213BF542000FA2E4900][G] c:\program files\hp\digital imaging\bin\hpqnrs08.exe [PX5: 7D5C36C600DD4CB1209E026CCBDF9A009F89012E][G] c:\program files\roxio\audiocodeccommon 9\dsfcmmlrawsource.dll [PX5: 4E995B77F8BDC9E13AD60118F5A176009742254F][G] c:\program files\common files\avsmedia\activex\avsimagefile.dll [PX5: FB50238900D0E23B80FF0599570A2500B8561DD3][G] c:\windows\system32\fxscom.dll [PX5: 53EC876C0068C7811AD301F75DD450007CDE2673][G] c:\windows\system32\drivers\crusoe.sys [PX5: DD5C92A780A171378F24001BB46BB9001C664174][G] c:\windows\system32\wbem\wmipsess.dll [PX5: 1A78F42000A76009A234001D9CAF4400D67F44D8][G] c:\windows\vm303uninst64.exe [64] [PX5: D381D1F50019E10C1EF002D1A2926C00D4EC33B8][G] c:\program files\roxio\videocore 9\scenerecorderfilt.ax [PX5: 51E815C9F8855FC53A4602C2F075720091DD3BFB][G] c:\windows\system32\msgsvc.dll [PX5: D6EC740000812FBA84FE004445B63400C0AA88C2][G] c:\program files\common files\sonic shared\sonicmc01\sonich264dec_dmo.dll [PX5: B2A8FACFF86A604E4AA703427E641B000D5DFD03][G] c:\program files\roxio\videocore 9\vcptransparticles3d.dll [PX5: 0CD0D8EEF8758E63BA8703734DC0EC006ABA3BF5][G] c:\windows\system32\safrcdlg.dll [PX5: 74565BF5002BA0CFAAA600A080BD9F00616F1EB8][G] c:\windows\system32\dpnhpast.dll [PX5: C609B75800E80C688A200063BCA93F00DFFB011F][G] c:\program files\common files\roxio shared\9.0\dllshared\aacaenc.dll [PX5: D829E25AF850C5378AE4026AE893BC008C6E49C4][G] c:\windows\system32\wstdecod.dll [PX5: B39036B9000E06A6C62D0084E8C29500C13B76B0][G] c:\program files\movavi\nctaudioformatsettings3.dll [PX5: 44C9977400604D81607C01192C909600FDF0B45E][G] c:\windows\system32\drivers\ati1xbxx.sys [PX5: 50BEFAA40FC66AE3731C0014DEE71F00327B8872][G] c:\windows\system32\dmloader.dll [PX5: 6DA7ABB20043283D8CBF00DFB395190096662BCC][G] c:\windows\system32\alrsvc.dll [PX5: 2E7486C1009E4A22442100261F348B005F30C113][G] c:\program files\common files\avsmedia\activex\avsaudiodxplayer3.dll [PX5: 834AFBF300985DE560EA01848292A5009AB1FBCD][G] c:\windows\system32\drivers\ccdecode.sys [PX5: 4E4CADF380552430426F00BC05FF9D002AA63938][G] c:\program files\roxio\videocore 9\mginullip.ax [PX5: 46AEECF2F81FD1D66AE30180DF576700550EE626][G] c:\windows\system32\drivers\ati1tuxx.sys [PX5: 6F56F7AF6FA57A868E0B00B0DBF03B006604A40C][G] c:\program files\yahoo!\browser\yextshortcuts.dll [PX5: 5D07181078CC917B244B018BF03BD400CEB53A1F][G] c:\windows\system32\quicktime.ax [PX5: 5B78CE40007B341E50BA01E70A429600CA6C6412][G] c:\program files\roxio\audiocodeccommon 9\dsfcmmldecoder.dll [PX5: 5D7E2FC8F84F3A0DE48200EA66F18500115E4AF1][G] c:\program files\common files\system\ole db\msdaora.dll [PX5: F24476D600F6D33B908203D8EED61200D619B757][G] c:\program files\sbc lightspeed self support tool\smartbridge\sbiqoe.dll [PX5: F666F7A600D656ADC064013EA83CBE007D458816][G] c:\program files\roxio\photosuite 9\ppsblureffect.dll [PX5: 4EFFFED6F849C66E0AC10333BD81BE002832AA2B][G] c:\program files\roxio\photosuite 9\ppsartistic.dll [PX5: 44014470F8FEBFB5EA8505589B4F1600F1FD0280][G] c:\program files\roxio\videocore 9\videoqualitycontrol.dll [PX5: 8462A0B8F8614A940A4C012FADDD6300E0338438][G] c:\program files\common files\motive\mccilogx.dll [PX5: 4838F73700717059547E02A1B1DF4600DEFBA709][G] c:\program files\common files\motive\enicommon.dll [PX5: 991D0F0D0091393960A002A93CF58100D0E31BFB][G] c:\windows\ime\softkbd.dll [PX5: E1EF765500D3927BFC2C01789AB31E00373E0B8F][G] c:\program files\common files\roxio shared\9.0\dllshared\mceaac.ax [PX5: 44193AF0F8FEB09E1A8B01AAE065E700F7B28B94][G] c:\program files\hp\digital imaging\bin\hpquio08.dll [PX5: C8F452760000D861906F01046A064E003F492691][G] c:\windows\system32\ksxbar.ax [PX5: 61D01DB600D9C2BAA86700267FAC4000A3417B38][G] c:\program files\roxio\photosuite 9\ppspimsupport.dll [PX5: 1AAAA1AEF894E5F60AF8019756BE0300C7EAAED9][G] c:\program files\common files\microsoft shared\triedit\dhtmled.ocx [PX5: 821E63A600B29E6CF6E0012E206F5B00B388C369][G] c:\program files\common files\roxio shared\9.0\sharedcom\audiocapture9.dll [PX5: D768B33BF846C6876A510205D3B3F60067C9E322][G] c:\program files\common files\roxio shared\9.0\sharedcom\cpsformatloadermdc.dll [PX5: 9E9AE313F88FD4781ADF01D46EC4D2007E597EF4][G] c:\windows\system32\wbem\wmicookr.dll [PX5: 8124E48400DE2D36EE16003F6E17EA005226262F][G] c:\program files\roxio\photosuite 9\ppscropping.dll [PX5: 734BC405F866725EAA5A02BE42C1DA00E55E30E3][G] c:\program files\yahoo!\browser\yextlookups.dll [PX5: 73776A10882EC7384421013D5729D100DA6880B2][G] c:\program files\roxio\audiocodeccommon 9\dsfflacencoder.dll [PX5: 13CF3E3EF82EC6B73AED0117D01C5C000C0CBB1B][G] c:\program files\common files\roxio shared\9.0\dllshared\dsconfig9.dll [PX5: F56D481DF82E1236FA89007C2378B6004B6F260D][G] c:\windows\system32\drivers\rfcomm.sys [PX5: 0E12D86100621870E7AC00D7154E22001793DABF][G] c:\program files\roxio\videocore 9\vcptranspredefined3d.dll [PX5: 96D7DDD1F8683F49EA9903913ECDD2003E08B8B8][G] c:\windows\system32\drivers\bthprint.sys [PX5: 15F50C358083D21A8E0C007F137244008C573A12][G] c:\program files\roxio\audiocodeccommon 9\dsfanxmux.dll [PX5: 5CE520F5F812E7624A8601764383BB009D99DE00][G] c:\windows\system32\drivers\atv10nt5.dll [PX5: C3154D587F77EBFA43200082B17FC000E878AF87][G] c:\program files\roxio\videocore 9\rxpathsresolver.dll [PX5: 40A304A8F809E0763A5801383104BC00073F1E0B][G] c:\windows\system32\prntvpt.dll [PX5: 18D176DE0064A77ECC9D01CE1B9A1A00A1EBDBF1][G] c:\windows\system32\drivers\hidir.sys [PX5: 385910E500491C2A4B2500B2238855006E25FC7E][G] c:\windows\system32\dshowext.ax [PX5: 5988901F0020D7805237000BCCA98000F5CD1151][G] c:\windows\system32\docprop2.dll [PX5: 30F8D0F000097521BCDC005069B272001D4235BA][G] c:\program files\common files\roxio shared\9.0\sharedcom\cpsformatloaderecdc.dll [PX5: 069BF947F84428641AD801A1C26EE100C9F75F41][G] c:\windows\system32\drivers\ati1xsxx.sys [PX5: 725DA013AF89D09387CF00DFF7253B006BDDF179][G] c:\program files\common files\roxio shared\9.0\sharedcom\cpsmemoryprotocolhandler.dll [PX5: DB33ADE7F8C76DD5BAA50014A11C4A00055A336E][G] c:\program files\roxio\photosuite 9\ppsbrightandcontrast.dll [PX5: AA4641EDF8A83C6C1A15065973F2FC002A4B7096][G] c:\program files\hp\digital imaging\bin\hpqeaio.dll [PX5: C1ECE4C00082E51E60A40249ED3F470048CDADE4][G] c:\program files\roxio\videocore 9\dvscenedetectfilt.ax [PX5: 49059A84F8F7B0937A76023313A8F50009DB6037][G] c:\windows\system32\drivers\atinraxx.sys [PX5: FEA5AA1600EC2AE1CC0900185C854A00422223CC][G] c:\windows\system32\drivers\atinbtxx.sys [PX5: 734A4454007FFA55E29F00FF52B7680047F5F3B1][G] c:\program files\common files\roxio shared\dllshared\cddbcleanroxio.dll [PX5: 42CBB657F899C9FD55D202A69C2424002D150828][G] c:\windows\system32\dfrgsnap.dll [PX5: 5429C1F1000242FB9A5A006F91A80C00113207C7][G] c:\windows\system32\fdeploy.dll [PX5: 2F48412C006ADC6F208B0145528109006BFC4A67][G] c:\program files\roxio\videocore 9\cmddispatcher.dll [PX5: E2C7988DF8D30D6F1A0801689090C2000FAA8178][G] c:\windows\system32\drivers\stream.sys [PX5: FDEA7CEA00E734D3C1DE0004BF4241007DE59088][G] c:\program files\roxio\videocore 9\vcgproxyfilemanager9.exe [PX5: DD772C74F870CDCA9A5B016E6EA67C0066081245][G] c:\program files\roxio\audiocodeccommon 9\dsftheoraencoder.dll [PX5: A811710FF832E5A6861C01D6E8385F0028F4ECD4][G] c:\program files\roxio\audiocodeccommon 9\dsfogmdecoder.dll [PX5: 461E2F08F8E458DE1A49017F0ADCAA0035B80AF5][G] c:\program files\roxio\audiocodeccommon 9\dsfvorbisencoder.dll [PX5: 240BA951F8552566325101D2FA70450055CF0750][G] c:\program files\roxio\videocore 9\vcpleveltransform2d.dll [PX5: 1E06EF18F8E40D2F8AF103454AE4CA00D5803D02][G] c:\windows\system32\drivers\intelppm.sys [PX5: 39699AD400D9AE558E810028B2FB850004ABAB09][G] c:\program files\hp\digital imaging\ncuiapi.dll [PX5: 387F424C003660B8608801709F1712008BD3224C][G] c:\program files\common files\system\msadc\msadcf.dll [PX5: 6F45240C002D363DF0D00046105A40000BE43D65][G] c:\windows\system32\dsdmo.dll [PX5: 01CC77FE00230A27C4AE02E16C9F5A005BBC6C38][G] c:\windows\system32\drivers\ati1btxx.sys [PX5: 9CA86B132F837EAADD9A003E210F24004C5E2C40][G] c:\program files\yahoo!\messenger\yahoobridgelib.dll [PX5: 10B2F7D600267FCA104701D349CEC900C742D0FC][G] c:\windows\system32\mpg4ds32.ax [PX5: 3982F4240053AF5400CA0437698577008781321D][G] c:\program files\hp\digital imaging\bin\hpqcxm08.dll [PX5: E2CCE7D300C99D2140CE0262BCE8110054284C3F][G] c:\windows\system32\drivers\bthusb.sys [PX5: 44B073E300227E634AF300C25065D300C03386E0][G] c:\program files\yahoo!\browser\ysbpropbag.dll [PX5: 396EA01280D0006F441101F8AE42540081BA4887][G] c:\program files\sbc lightspeed self support tool\smartbridge\motivesb.exe [PX5: 5BF54FBC00B9868ED08B05DC3E6A74001AFBF1E7][G] c:\program files\yahoo!\browser\ytbctl.dll [PX5: D1E134293666CCB420A701A8DBE4AC009CE73ADD][G] c:\windows\system32\dssec.dll [PX5: EC9FBD2D000EA8CDC84F003077D9300015F5015A][G] c:\program files\yahoo!\browser\ypubui.dll [PX5: EF2E5C5C000ABFBF9AB4011DD10A28007AAF361A][G] c:\program files\yahoo!\common\yucconfig.dll [PX5: 899FF2E4588D576624FB0135E96B0100B6D95159][G] c:\windows\system32\dmime.dll [PX5: BF24EA65004A1941C47F027E680B23007D587DB9][G] c:\windows\system32\drivers\mf.sys [PX5: 3D97E98E00A086C1F9650053183C0E004DCD4DB3][G] c:\program files\roxio\videocore 9\vcpinsideshape3d.dll [PX5: 9DD6B08EF8074003DAC203CC6BFA8D00A56A61E1][G] c:\program files\roxio\photosuite 9\formatloadermps.dll [PX5: 0D5AC161F814834AEAB000B9369E68000440A93F][G] c:\windows\system32\safrslv.dll [PX5: D0557EE10028FFCDB2EB00A267CAB80082E6DEE8][G] c:\program files\common files\motive\rgwinterfaces_dsr.dll [PX5: F1C8F9C9005F72FEE0E10569692FD2003213DC96][G] c:\windows\system32\drivers\bthenum.sys [PX5: 67DA124780F37F2D4207001BE7C4FB00803D6E14][G] c:\program files\roxio\audiocodeccommon 9\dsfspeexdecoder.dll [PX5: 30959D8CF8CF0D9E46CE020940904100373F7B55][G] c:\windows\system32\dmcompos.dll [PX5: 3A020849005C825AF0C000B8BF327800DBA4C656][G] c:\program files\roxio\photosuite 9\ppsunsharpmask.dll [PX5: 4E1FF2E0F82A5A313A3B02D9C59D35003B44A732][G] c:\program files\common files\roxio shared\9.0\sharedcom\cpssaveoptions.dll [PX5: E62E1000F8EE5AD93A68058CF63DBB00CD0A2A41][G] c:\program files\roxio\videocore 9\vcfgraphdistributor.dll [PX5: 34F76C05F8FD4B8FFAA800D20FA411000EFC31D8][G] c:\program files\msn gaming zone\windows\bckgzm.exe [PX5: 07B1F690512091ACA65800E4BD934800E50EFF4C][G] c:\program files\common files\system\ado\msjro.dll [PX5: 87DCF90100068FAD900501AF6CAC700046FF73CE][G] c:\program files\yahoo!\companion\installs\cpn3\ytmsgr.dll [PX5: AE90AD9CF0164466DE5B0215AD2708007ABD3960][G] c:\program files\common files\avsmedia\activex\avsquicktimefile.dll [PX5: 328C4F9800729B00E0D40486BE25850058CF3A1E][G] c:\windows\system32\wbem\wbemdisp.dll [PX5: 1A2743D2007507AEB8F50202D794910063655AA2][G] c:\windows\system32\javaprxy.dll [PX5: 97F1745F10ADC1D2F7A000A0431343006E45B02E][G] c:\windows\system32\sort.exe [PX5: 2C7433DF000B47A6608500F45BE8C300AB803344][G] c:\windows\system32\wmvdmoe.dll [PX5: 31989B8410725C26D1EB06E2EF4DA4004505EE43][G] c:\program files\common files\avsmedia\activex\avsflashbuilder.dll [PX5: 41B7CA5C00CFB78A10F2022CA5CBAF00CEE380E9][G] c:\program files\common files\roxio shared\9.0\sharedcom\cpsthumbnailctrl.dll [PX5: A05F06FCF86CACD6AA270740142C0F00AA98CF57][G] c:\program files\common files\avsmedia\activex\avsimageview3.dll [PX5: E94E52C3003904C8D07404D3FE986E00CF3EAC1E][G] c:\program files\real\realplayer\rpshell.dll [PX5: 1193B8892E1A10E2C00C003EE8F72000F2ABE0F2][G] c:\program files\common files\system\msadc\msdfmap.dll [PX5: 3A4FE85D002AF5A4901C00743A933300AED8DC63][G] c:\program files\roxio\audiocodeccommon 9\dsftheoradecoder.dll [PX5: F18C3A2EF8F400CD2E8901775A7D5F00F211C1F1][G] c:\windows\system32\drivers\scsiport.sys [PX5: 5DC8AF70801E084478BD01B28E7A760029179ED8][G] c:\program files\roxio\photosuite 9\ppsbrushshapecollection.dll [PX5: 9040F59BF841FB7E1A3F034EECABE300A1940E62][G] c:\program files\common files\roxio shared\9.0\dllshared\rxassetviewdll.dll [PX5: 4B7DDA43F8FA7BC74A1F03AB034A3A00880B2909][G] c:\program files\roxio\videocore 9\dvrsupportfilt.ax [PX5: 6011ABC0F87B6FE6AABF020AF95921009453DC99][G] c:\windows\system32\wshcon.dll [PX5: D34751A30039F6BD90050040370CF2009D89AB8F][G] c:\program files\common files\roxio shared\9.0\mpeg\mpeganalyzermgr.dll [PX5: C4D6FD0DF8317143FA220069DCAAA800E49F38A6][G] c:\windows\system32\dot3svc.dll [PX5: C07F9B9D00C2E56504F90208BDB40F00AE959D4F][G] c:\program files\quicktime\qtolibrary.dll [PX5: 209C04850045F89680C60CC74139170001C7849B][G] c:\program files\common files\avsmedia\activex\avsifofiles.dll [PX5: 61CDDA2200CE2D38A0E5039CC56C12006245CCFE][G] c:\program files\roxio\photosuite 9\pssourcepanes.dll [PX5: 9DC9A005F8F665189A5A04A66F09AF00CD8891FC] Link to post Share on other sites More sharing options...
maryamian Posted August 12, 2009 Author ID:109088 Share Posted August 12, 2009 [G] c:\program files\hp\digital imaging\product assistant\bin\hprbevst.dll [PX5: FB2EF58300170AD1A02106C3E86BA500145EB0CA][G] c:\windows\system32\comrepl.dll [PX5: BDC4C55D00B406E47EC9017C2AA37E00FE4977D2][G] c:\program files\roxio\audiocodeccommon 9\dsfoggmux.dll [PX5: 1A45DD27F8BB0450203401CE1D7A5F000C914BFC][G] c:\program files\roxio\videocore 9\mediaanalyser.ax [PX5: A54C8F0FF800E0A46AC00234CBC70B00121BEE00][G] c:\program files\hp\digital imaging\bin\hpqsti08.dll [PX5: 60D976AE002C2BC740D902570FB1F200CEF10985][G] c:\windows\ime\chtime\applets\chtmbx.dll [PX5: E87275EA0029C72B7E3501A9445C8D0038B648DB][G] c:\windows\system32\drivers\ati1snxx.sys [PX5: B555A9DCFFB1FA6F666D00BC1653D600EE3B9E3F][G] c:\program files\common files\roxio shared\9.0\roxio central33\engine\pxwrap.dll [PX5: 468BDA67F81E680C0A0209E7841CED009FF726ED][G] c:\windows\system32\drivers\pcmcia.sys [PX5: E57DBA648058975ED5770102708098008DF1E990][G] c:\program files\hp\digital imaging\bin\hpqcob08.dll [PX5: 836A9E440028BBBB602F011ACF633300AE9C576A][G] c:\program files\roxio\videocore 9\errorstack.dll [PX5: 66709084F8908673B03900531E3BA000CC00F2A3][G] c:\windows\system32\drivers\atmarpc.sys [PX5: C41A09F600246E0AEA81009B2DE4BF0010DB722C][G] c:\program files\yahoo!\messenger\yserver.exe [PX5: 91AABC58F8A49742657B0148A8AA0E0087831FC6][G] c:\windows\system32\asctrls.ocx [PX5: 6F146DCF000B5D82C0D5012D4FC70400B0453BA6][G] c:\program files\roxio\digital home 9\roxiolocalserver.dll [PX5: 2C9A8091F84682958AAA02088B119A00098BF8ED][G] c:\windows\system32\cfgbkend.dll [PX5: 85C0205C00D27D7D986B0072929CD1005443EC0B][G] c:\program files\common files\avsmedia\activex\avsaudioformatsettings3.dll [PX5: AAB2AC5A00783ADF806F015604EE9200DA8381A1][G] c:\program files\roxio\videocore 9\mvwcdsutil.dll [PX5: E1EC65B8F8A7B8131A800247B8D0E30043730B98][G] c:\windows\system32\drivers\nwrdr.sys [PX5: 1CC957CA005466707FF2024CA9B3BA00D89CE518][G] c:\windows\system32\appmgmts.dll [PX5: F0C30AA40071357F90C002951FD27E002A1B8501][G] c:\program files\roxio\photosuite 9\ppslenswarp.dll [PX5: B2288A52F89A96E93A40047155257700901C2248][G] c:\windows\system32\drivers\atinxsxx.sys [PX5: CEDD5F03008A5FA5F8E5006BA33674000902F33E][G] c:\program files\common files\roxio shared\9.0\mpeg\lpcmsyncfilter.dll [PX5: 4199600CF847757FDA6902BFB7BD4B0000A2A9F8][G] c:\program files\common files\roxio shared\9.0\sharedcom\apsprevcontrols.dll [PX5: 36855277F8196FDE9A0B0465518F0A00253AE123][G] c:\program files\netmeeting\nmcom.dll [PX5: E90EEC8400F50A2F307701652B7E5000747CCD21][G] c:\windows\system32\drivers\watv10nt.sys [PX5: BC7A9CF57F55E4C36384008A4A3A0700A414BF9F][G] c:\windows\system32\cic.dll [PX5: 33C16A060030F58B44D90210554F65004D08557E][G] c:\windows\system32\msieftp.dll [PX5: E7EFB80C006040C0CCFA034AB329B000A3857B6F][G] c:\windows\system32\racpldlg.dll [PX5: 8C15C5720092A0C4AA8100669E1C1F00771E7DCC][G] c:\program files\common files\roxio shared\9.0\dllshared\dvdtranscode9.dll [PX5: B33998B7F89344109AB80BB2875975008F82D3E4][G] c:\program files\roxio\audiocodeccommon 9\dsfsubtitlevmr9.dll [PX5: 71D3666EF890F5B104B2016980D65B00CDF05EA3][G] c:\windows\system32\drivers\hidbth.sys [PX5: C468F04A00AB923164CD0019D9EDE7004651238D][G] c:\program files\roxio\videocore 9\mgiresourcemanager.dll [PX5: AE916849F8A772830A9002B103EA2400658BE7E4][G] c:\windows\system32\msdtcuiu.dll [PX5: 32C54C6800B28A93781F026FE78B5E00F770CA44][G] c:\program files\yahoo!\companion\installs\cpn3\ytantispy.dll [PX5: 8743FEEBF84624D1C527000D13F53A00A1CD10A4][G] c:\windows\system32\divxsm.exe [PX5: D7B3B29D00FBE14D00BC084C3F882100A6714C60][G] c:\program files\real\realplayer\rpshellsearch.dll [PX5: C35836E03701F73FC01F00097F2276003786057D][G] c:\windows\system32\dmdskmgr.dll [PX5: 44B62BFE00961DA410BA037FF7998800AED71738][G] c:\windows\system32\drivers\ati1rvxx.sys [PX5: 791DC4AAAF43CE30F814008CD5B52900B5EE141F][G] c:\windows\system32\sendmail.dll [PX5: E91F97AE0000A9A4D65D00B720D63D00B7A914C0][G] c:\windows\system32\ieaksie.dll [PX5: 153A27AE00E152E984AB03437A22110089B8FD7D][G] c:\windows\system32\drivers\ati2mtaa.sys [PX5: 0FF8649180F26F76FDF504C73380B90092C4F297][G] c:\program files\yahoo!\browser\ysbwindow.dll [PX5: 3A162648281FD455E68703BF2DF90300731EF11F][G] c:\windows\system32\drivers\mtlmnt5.sys [PX5: FE91AA0DDE37188CEE5701B0C30E4C00F5593D00][G] c:\program files\common files\roxio shared\9.0\dllshared\dvdcheck9.dll [PX5: A90B5C12F8D2F0D84AFC0290B458BB005B212B1F][G] c:\program files\roxio\videocore 9\thumbnailgraber.ax [PX5: 47A1169BF8D440F16A440299CB0656001FC30B25][G] c:\windows\system32\drivers\slnt7554.sys [PX5: 7E3AB854FF177A8EF97F01B5C9799B0044CD1C46][G] c:\windows\system32\cryptext.dll [PX5: 7245C0F100BE8929D29F006DE54FFC009F767245][G] c:\program files\common files\roxio shared\9.0\dllshared\roomsim.fxu [PX5: 4CD24E4D00BA3F84F089003ACF1C0E0093D8861A][G] c:\windows\system32\eapp3hst.dll [PX5: 1A81935A000D1011D2890214EB1D0A002B20929E][G] c:\windows\system32\drivers\atmlane.sys [PX5: 0680DC6000035655DA6F006BFFA72D00CBE1BD17][G] c:\windows\system32\drivers\atinsnxx.sys [PX5: B12DD4A0005F1C4B7090009378B5920090FEE997][G] c:\windows\system32\photowiz.dll [PX5: 34804137000DF409B0910205E61CBC007B051E0D][G] c:\windows\system32\drivers\atv04nt5.dll [PX5: 33EFC9807F19D7EA639C00AF5CC19A00C2C9E07A][G] c:\windows\sed.exe [PX5: 32B63D37005C3986820E013B062ED9007A77AC9C][G] c:\windows\system32\dpvoice.dll [PX5: 164D9B7E006E19E93EB503A3B5885800255CA19E][G] c:\windows\system32\hotplug.dll [PX5: 37B5C0FA00C2321C3611025E7BC2CA00695B1080][G] c:\windows\system32\drivers\atintuxx.sys [PX5: 9CDDA52F00E9E7A81E4101F1C5DBF60019525D37][G] c:\program files\common files\system\ole db\sqlxmlx.dll [PX5: 2C09144400D9D90B50EA0331C5014D00AB587D9B][G] c:\program files\roxio\photosuite 9\gdishapeobject.dll [PX5: A9A827FFF82618E9BA9C06F75A4ADE00F7A5FB31][G] c:\windows\system32\wbem\mofd.dll [PX5: DEE7FE5A009F12BFE42701A3AD861D000B948457][G] c:\program files\hp\digital imaging\bin\hpqstv08.dll [PX5: FC067B250062152660F40238946F190011698C05][G] c:\windows\system32\dgnet.dll [PX5: 86983DA70034AB38B25001ACBAF0150073BDE9FE][G] c:\windows\system32\wbem\wmidcprv.dll [PX5: 7D04A9EE00C4F064269802184862740035E2A6C6][G] c:\program files\common files\roxio shared\9.0\dllshared\dcdevicemanager9.dll [PX5: A23BCC86F81600604A4A04A76A214F00357344ED][G] c:\windows\system32\wmsdmoe.dll [PX5: 5E2A40140080DC31C2FF01E6C5FF7700C886BD34][G] c:\windows\system32\osuninst.dll [PX5: 516127F20057E7DD08AD0127F1427C00CC7E3A34][G] c:\program files\common files\microsoft shared\speech\sapi.cpl [PX5: A7F5008C00DD691F604F026346CBE600B9D860A5][G] c:\windows\system32\iprtrmgr.dll [PX5: 89C2630B0054A751B42A0287D30F1B009FBA46D4][G] c:\program files\common files\microsoft shared\triedit\triedit.dll [PX5: 398B62400081059E560B02D7E331B100279723E5][G] c:\windows\system32\kswdmcap.ax [PX5: F992FCC20024415B64CB01B2DC76E600B79AEE10][G] c:\program files\roxio\digital home 9\roxioupnprenderer9.exe [PX5: 99376EC6F80252F85A3A017586A7DA00EB5A7641][G] c:\windows\system32\drivers\usbvideo.sys [PX5: FA7006EB805F52DBDCF201809943FE006A5457D5][G] c:\program files\hp\digital imaging\bin\hpqvwocx.dll [PX5: F67EC6DC46EDEFD2B0F80215EC12A700CEFA371C][G] c:\windows\system32\msscript.ocx [PX5: EFF0ADD1006D44A4B090013805FAE5000059EF75][G] c:\program files\movavi\nctaudiocompress2.dll [PX5: CA72D60A00F220A0A0821B2D73880C0036DEFF15][G] c:\program files\common files\hp\instantshare\hpisdownsampler.dll [PX5: 21D854C80084CC21A0A40276441BA9001E6EAB40][G] c:\windows\system32\drivers\nwlnkipx.sys [PX5: B455E8AE00B6DCC159C401E18C4FD600E4472A6B][G] c:\program files\common files\roxio shared\9.0\sharedcom\cpshelpercontrols.dll [PX5: 036FE9ABF81D18EB4A35010D34BDD0004020BCF5][G] c:\program files\common files\roxio shared\9.0\mpeg\repackfilter.dll [PX5: 2E3278C1F8B5F0C43AB20385FD431400836117B5][G] c:\program files\common files\research in motion\rimdevicemanager\devicemanagerproperties.dll [PX5: BDC9DC661896D09CE612090E6592DA0003B8B670][G] c:\program files\movavi\nctwmvfile.dll [PX5: ECF79B460014281B00900335A0ADB7005E01E4A7][G] c:\windows\system32\drivers\atinrvxx.sys [PX5: B2CFA5AF0036DB7A9A1C01285BA8AA00C6DEC091][G] c:\program files\common files\roxio shared\9.0\mpeg\mpegstreamanalyzer.dll [PX5: 62BB82DDF836A1D73A9D03C943AFB10021E59EB9][G] c:\program files\common files\avsmedia\activex\avsprofiles2.dll [PX5: 6CA2AB5200B2B22FC01203599FC5FF00933E251B][G] c:\windows\system32\drivers\udfs.sys [PX5: 988B7E82003617020237016FD9022800564BB7C4][G] c:\program files\outlook express\oeimport.dll [PX5: DBF590040004B34D983B01391778E80082591C25][G] c:\windows\system32\progman.exe [PX5: C3F8520100ACEF90ACA401B82CBC63006A27DCB5][G] c:\program files\roxio\videocore 9\colorspconv.dll [PX5: 005B129EF8E571DCBAED02ED456A4F00DC284A92][G] c:\program files\common files\system\msadc\msdaprst.dll [PX5: 3A2945410000E2CF101A034DE527BA00DF7B1B77][G] c:\windows\system32\dxtrans.dll [PX5: 1771EEDB006CA94346D303235D13BE00D4BB6448][G] c:\windows\system32\dfrgfat.exe [PX5: 9601E6CF0043E6DE445001ECBE9E2300CBC17E38][G] c:\program files\common files\motive\enisnmp.dll [PX5: 32AE2297009AD5A8B0CB02ED45007100F86AEDFA][G] c:\program files\common files\roxio shared\dllshared\cddbcontrolroxio.dll [PX5: 22DD6BF4F8A4CF1015230A177FF7DB00C8922D69][G] c:\windows\system32\mssha.dll [PX5: 4F1FCBCB00A346295E6702B76F8019001565604C][G] c:\windows\system32\mplay32.exe [PX5: 76F8844D00B98744E26F01AF12693000E9ED218B][G] c:\windows\system32\drivers\s3gnbm.sys [PX5: 61E69E1D00FCADE18C3D02DB5DBD000075CEE0EF][G] c:\program files\common files\system\msadc\msadco.dll [PX5: C3C04D2C00E649B2306D02AA25728D008A4456ED][G] c:\program files\movavi\nctaudiofile2.dll [PX5: A04BA5E6009073FC20851C8D89AA72001AF5BEF8][G] c:\windows\ime\chsime\applets\pintlcsa.dll [PX5: 6786FABF00993974ACAA02C7B86CF200C2741A75][G] c:\windows\system32\eapphost.dll [PX5: DFFF554500056DAFC03E029D79FFE4004272CCB7][G] c:\program files\roxio\photosuite 9\pseditdocument.dll [PX5: 5783CB61F89030160AA804C7F6C67500C208D68B][G] c:\program files\yahoo!\messenger\ywcvwr.dll [PX5: 5905AC0C00400A0A30600247491009005455DC58][G] c:\windows\system32\oleprn.dll [PX5: 3803502D00BDBD6FA2BB01E8AD849F00DCC53BEE][G] c:\windows\system32\netdde.exe [PX5: 4CDE7CCF00C79A35B2D30180B0E27000D6408CCE][G] c:\program files\yahoo!\common\yinstbroker.exe [PX5: 70C1A20B10198C75DF14016A7E599C00735F5B94][G] c:\windows\system32\wmidx.ocx [PX5: 45873B6800A69FE35E8E0108F80E7300552874AC][G] c:\program files\common files\avsmedia\activex\avsaudiofile3.dll [PX5: 7BBD59B500858527C0A5088B4C5B9400B164FB33][G] c:\windows\system32\tscfgwmi.dll [PX5: E6E5EB5A00128CFC6EDE015DA9A1B80045EAE405][G] c:\program files\yahoo!\browser\ysbhistory.dll [PX5: 51B06F5E485F1903A25B02F6F5E391009DDE4BD9][G] c:\program files\common files\avsmedia\activex\avsaudiovisualizationex2.dll [PX5: E541627B004B219E507A031B2BF9E5009A108111][G] c:\program files\yahoo!\common\uninstall.exe [PX5: F7C9D5AC0028009DA85001AB9F217600CD0C65C6][G] c:\windows\system32\webcheck.dll [PX5: 6B4D4584001551F3903F03CD18327600DD5205B7][G] c:\program files\roxio\videocore 9\vcptranspanel3d.dll [PX5: 9634A5D1F88F29934ABC0417A07E6F00D6E56F80][G] c:\windows\system32\accwiz.dll [PX5: 9667467E00AF6767E246019E4830DA00001320FE][G] c:\program files\common files\avsmedia\activex\avsvideodvdmenu3.dll [PX5: C2CF159400F24E40201205751BEC6700A3E93AFF][G] c:\program files\yahoo!\browser\yhyab.dll [PX5: 9603829550A283A9F47202F58A021000D8953120][G] c:\windows\system32\t2embed.dll [PX5: B1DCC7D600B11EEBD430011C81568600E86AC24A][G] c:\program files\common files\roxio shared\9.0\mpeg\roxiompegprop.dll [PX5: 6BA61119F81E602E9A72023B484D050037CB793E][G] c:\windows\system32\dmscript.dll [PX5: A92D9790001410B3427F017AD88A8B00D8DF29B7][G] c:\program files\common files\hewlett-packard\scanjet\hpgscnsv.dll [PX5: 14060ACE00A6C0B360DB023C9CFB29006CFC47FC][G] c:\windows\system32\offfilt.dll [PX5: 0CC21693005AC576EEE502EC52DA980003C17582][G] c:\program files\common files\system\ole db\msdaps.dll [PX5: 2386787A0075A32020840321D9BC80008F071EA4][G] c:\windows\system32\dxtmsft.dll [PX5: E54EF19600BE4CF54C1E055B57870900AD2F8366][G] c:\program files\common files\roxio shared\9.0\mpeg\roxiompegdemuxer.dll [PX5: 296DFC74F86B8C5A7AD0033CC80EE500FA2681FF][G] c:\program files\yahoo!\browser\sidebarcontainer.dll [PX5: E8FD67D97885FA48FA610225711F5F00B9F5DC51][G] c:\program files\outlook express\setup50.exe [PX5: 8B5AA68F002F8D141E6B013110FA450039F230BA][G] c:\windows\system32\drivers\nabtsfec.sys [PX5: 37E661E8003A144B4DFD01732787D60045EBBBCB][G] c:\windows\system32\tlntsvr.exe [PX5: 135A88B500824DEE1E2A010FD6E8000048DFCD25][G] c:\windows\system32\drivers\hsfbs2s2.sys [PX5: AF892C8C80AD05195B84032B43A9B8008B0F4B6A][G] c:\windows\system32\dpvvox.dll [PX5: 2E791E36002A9EFDC87A013E98DA930072E6A8D4][G] c:\program files\common files\avsmedia\activex\avscorecdfs.dll [PX5: 95BA6D54000AAF0FE0FC037AA77FD100912424B4][G] c:\program files\roxio\videocore 9\vcpmorph3d.dll [PX5: E14716E4F8456ECCAAB004F5DE0E6F00B289B418][G] c:\program files\veoh networks\veohwebplayer\veohflashplayer.exe [PX5: 3D59762070B96CA287BE02294D786C002883B1FE][G] c:\windows\downloaded program files\dwusplay.exe [PX5: 3A28CCDAB0D0922113A003924C0F17008CA10C04][G] c:\program files\common files\hp\digital imaging\bin\hpqcc3.dll [PX5: D3BAEFAE00B27D39A0790B309115A0001F843B7D][G] c:\windows\system32\wbem\viewprov.dll [PX5: 96C6472400EB5D6202B3029596B30800047B749B][G] c:\program files\hp\digital imaging\bin\hpqstp08.dll [PX5: B07F16960074872B20970261E1E152002B3125AA][G] c:\windows\system32\qcap.dll [PX5: DF015D16004D28EEF0C002EDE7506C0000A1A1B4][G] c:\windows\system32\clbcatex.dll [PX5: C95BBDCB0001739AB0290145DD678C00E94AFF05][G] c:\program files\roxio\photosuite 9\simpleshapeobject.dll [PX5: B7FA5566F86A85911A5403C6A013F1005BB94D74][G] c:\windows\system32\rdpclip.exe [PX5: B0D2DF95009AF4A4F6E6004A66FE4E00CD91F9AF][G] c:\program files\common files\roxio shared\9.0\dllshared\cxcore096.dll [PX5: 204352ACF8C9BBFBAA650CDCADDC5300F7A07AE0][G] c:\program files\roxio\videocore 9\vcptransphysicalmask2d.dll [PX5: 57A8258FF87F9B3FAA42070509942D00501B1011][G] c:\windows\system32\wiavideo.dll [PX5: EC462F1500C46931B26F01BC21AB950051F5C97D][G] c:\windows\system32\wbem\wmipdskq.dll [PX5: 66B1ED5C00C6300804B70225ABCE18000296852F][G] c:\program files\common files\system\directdb.dll [PX5: 8E3B5D9800D8BDD1526E01955A382E0075386D01][G] c:\program files\common files\roxio shared\9.0\roxio central33\copy\copynow.dll [PX5: D2D2EE6EF81AEA1CCA69040593393600E15CCED3][G] c:\windows\system32\qagent.dll [PX5: 987DF6B2008BA3734CA7023DAA81710044A81DBF][G] c:\program files\common files\roxio shared\9.0\roxio central33\engine\rcengine.dll [PX5: C6BC72EEF820F3293A010B8D1D3B9100980326F7][G] c:\windows\system32\setup\fxsocm.dll [PX5: 16D937AF000B91B506D4022A32C5B100F2475D5E][G] c:\program files\yahoo!\companion\installs\cpn3\ytabbar.dll [PX5: 6C6AC635F08455A0422803368A6478003E71776D][G] c:\windows\system32\dfrgui.dll [PX5: 2CA7B89100889FFDE63B01AB1FC824004028699F][G] c:\windows\system32\ksproxy.ax [PX5: 536F1CBC00A079A5FA5201FD880B63003D67CDF3][G] c:\windows\system32\wbem\wmiaprpl.dll [PX5: E44EAF2500D2C5715A4A01CED5FD1900670C49EF][G] c:\windows\system32\wiascr.dll [PX5: 54EA3E48000CDAE128EA016C38088B00FBD8508D][G] c:\program files\yahoo!\browser\yuc.dll [PX5: 7235270200040FC9F07305220A956C0058288B5B][G] c:\program files\canon\zoombrowser ex\program\zoombrowser.exe [PX5: 12C5A6B25C23E602B0010117F3442D0002430F8A][G] c:\windows\system32\comct232.ocx [PX5: C2AD9C12306C683381AD0212F42E41005A7517A6][G] c:\windows\system32\dinput8.dll [PX5: EC9248F500CDA6EDC69D02893FDE7800512C5E69][G] c:\windows\system32\dmusic.dll [PX5: 48AF0F30003314C998620187534B4B00F3C79975][G] c:\windows\system32\dmsynth.dll [PX5: 745C8E0000A49781941E01E730A85400A33B592F][G] c:\windows\system32\cabview.dll [PX5: DE52BE2F0041A81F4A3301B594E71B00D9FEE7BD][G] c:\windows\system32\wbem\wmipjobj.dll [PX5: 0DB916BC007F6442F48C00E737A6A40037032F66][G] c:\program files\roxio\photosuite 9\ppsdropshadow.dll [PX5: F32773F8F87CDE4DFAE501E6C1F25900A371791F][G] c:\windows\system32\xmlprov.dll [PX5: 0A5CF3620023BFC5F8CD018F5F0269008E47F638][G] c:\program files\common files\roxio shared\9.0\sharedcom\cpsformatloaderjpg2.dll [PX5: 04F51BAAF8F7B51B1AD2037428276E00A10DE449][G] c:\windows\system32\divxdec.ax [PX5: 9376D84800AA2292A0C808FDDC6A02009754FA01][G] c:\program files\roxio\photosuite 9\ppsframeobject.dll [PX5: F8C8A782F807E7806A74039AD1E1F20042F0CC03][G] c:\windows\system32\msdtcprx.dll [PX5: B1BDA93700F95B8088F7064C6DD165006A0BC717][G] c:\program files\canon\zoombrowser ex\program\zbui_imagectrl.dll [PX5: 6BF34AE575187424F028002223752D00610709CD][G] c:\program files\yahoo!\browser\yuploadhelper.dll [PX5: 114F2FCB70EC0F5694CE028EFC80840044F5C2D8][G] c:\windows\system32\wbem\wmipiprt.dll [PX5: 43DD6C160071094AF24400EE3F11D600D36058B8][G] c:\program files\common files\roxio shared\9.0\roxio central33\audio\audioplugin.dll [PX5: 93AB62DCF86C77CBFA5D0582D4792800EE8C61E7][G] c:\program files\veoh networks\veohwebplayer\veohtv2version.dll [PX5: BECF545970CAA19B753D0220957E6400DB22396B][G] c:\program files\movie maker\wmm2ae.dll [PX5: A2A7797200F2AD9990750273614FEF00B7292887][G] c:\program files\hp\digital imaging\bin\crm\hpqcrmcm.dll [PX5: 93B44A6F00C167C420260334D6504100C2BAE26A][G] c:\windows\system32\com\comadmin.dll [PX5: F712B1C5008F02A5FA5A02819E09BF000DA986B9][G] c:\windows\system32\iasrad.dll [PX5: 2797C0AA002C53EED4870132E3ABF8009DC22740][G] c:\program files\common files\microsoft shared\vc\msdia80.dll [PX5: 39899C2E0048E1CB7A1609CB9402E2007A4BE9E7][G] c:\program files\common files\roxio shared\9.0\mpeg\mgirawwriter.dll [PX5: EB2D6553F86216ED2AB4027FACA07300F4C0980C][G] c:\program files\common files\roxio shared\9.0\roxio central33\data\dataplugin.dll [PX5: 3C9FD1E9F826458C6A79075EA8C70A001C510F63][G] c:\program files\roxio\videocore 9\vcptranscurl3d.dll [PX5: 0010D300F815C1C53AD905D7F5E6BA004B62D278][G] c:\windows\system32\rsvpsp.dll [PX5: D027F30D005019476A21012BC5CCB4006407D92F][G] c:\windows\system32\dllcache\rsvpsp.dll [PX5: D027F30D005019476A21012BC5CCB4006407D92F][G] c:\program files\roxio\videocore 9\filters\sonicsf.ax [PX5: 2156C2CEF81D83359A8D0509479B0800DE3460AA][G] c:\program files\common files\installshield\driver\1050\intel 32\idrivert.exe [PX5: 1E443CCB008E17AA203B0161FA63D50008F6D6DF][G] c:\program files\yahoo!\companion\installs\cpn3\pubmod.dll [PX5: 42652F81F06CF2965CF003357FB75E000EDD03BF][G] c:\windows\system32\wbem\ntevt.dll [PX5: A7C2882600BD0C6E40CD03D6FF1C6900DF4ED70C][G] c:\windows\ctpu.exe [PX5: EFDC977C009B7BE7F0E501DCD41F6A009CC0A0D2][G] c:\program files\yahoo!\messenger\photoshare.dll [PX5: 1C684C88005B42E8503807AB6350350057BFCFA0][G] c:\windows\system32\comsnap.dll [PX5: 7742D59D00152B478E0C02C943548E00298A21C4][G] c:\program files\roxio\videocore 9\looper.ax [PX5: 913A4F0BF886233BFA7A02D948053F002BD455DC][G] c:\windows\ime\chtime\applets\chtskf.dll [PX5: 28C35B8100B05978A69E02B0E38DDB00834E77B4][G] c:\program files\roxio\photosuite 9\batchwizard.dll [PX5: B0037A4DF8A3F30BAAE806B173F40600D25C052A][G] c:\program files\roxio\videocore 9\vcpsearchlights2d.dll [PX5: 5128513AF8839C193A2406D3F141970060FBDD25][G] c:\windows\system32\rsnotify.exe [PX5: 3A1C23F80093B06EA4DC01C79FAA85002CE92FBB][G] c:\windows\system32\dllcache\rsnotify.exe [PX5: 3A1C23F80093B06EA4DC01C79FAA85002CE92FBB][G] c:\windows\system32\wmpasf.dll [PX5: 722038D400BD87F100FB02EA06ECD2007F720F3C][G] c:\program files\common files\roxio shared\9.0\dllshared\cv096.dll [PX5: EACD65F4F8AE18E6AA12090AB228550070FD1962][G] c:\windows\system32\firewall.cpl [PX5: F75D49F10043AA2A3C2B0158C66CDE006EB57E4A][G] c:\program files\common files\avsmedia\activex\avsflvfile.dll [PX5: 526019960028A598808C017A0607C1002DABFAB4][G] c:\windows\system32\extmgr.dll [PX5: 1AC5A562000E077308720222E00639004D306185][G] c:\program files\canon\zoombrowser ex\program\zbui_treeview.dll [PX5: 8667B9755EE85673504B01A199C796001945A1AF][G] c:\program files\roxio\photosuite 9\ppsnatural.dll [PX5: C22C3E66F8909630BA18044D6F7C7E00F80825FC][G] c:\program files\roxio\videocore 9\texteditoragent.dll [PX5: 46BE56A5F8D3397C2AEB04B42AD1800040B33348][G] c:\windows\system32\drivers\mtlstrm.sys [PX5: 5C03650C006804A7FAD51340E559B800B2F2DF69][G] c:\windows\system32\catsrvps.dll [PX5: D2AA6B9200F04F544EDD01E97ADD5700EB942E2B][G] c:\program files\common files\roxio shared\9.0\sharedcom\rxdsmp3encoder.ax [PX5: 97C1F811F8C596F42AAC014EA7191B00256EE997][G] c:\program files\common files\roxio shared\sharedcom\rxdsaudiostreamreader.ax [PX5: D1616E5EF82CB2818AE5013B337EFC00BE3F8A5B][G] c:\program files\sbc lightspeed self support tool\smartbridge\sbexthost.dll [PX5: 32C168E300D3AB19505C03DD9BC67000B6380F85][G] c:\program files\common files\avsmedia\activex\avsvrmifofiles.dll [PX5: E43D234B0098B880E04C047C244C6900F19CE99C][G] c:\program files\roxio\videocore 9\vcplensflare2d.dll [PX5: A6FC8F9FF88985E40A5B0E3FDABDD9000ED4EB44][G] c:\windows\ehome\sqlse20.dll [PX5: 644B35B400D6019EB039017787A907008650A197][G] c:\windows\system32\adsnw.dll [PX5: 07D8F0DB00672CACE2B801A1BDC00C00D5323693][G] c:\program files\canon\zoombrowser ex\program\zbui_taskview.dll [PX5: E3CE594C620DE72F4089028984C28C00CAFAB3D4][G] c:\windows\system32\drivers\ntmtlfax.sys [PX5: F44616B18898348BC05502B7489AC100042E0B8E][G] c:\acer\empowering technology\erecovery\erecovery.exe [PX5: 49FD7C4B0028BE03D088075E45BD7C0002376F3D][G] c:\program files\common files\roxio shared\9.0\sharedcom\upnpui.dll [PX5: 26822D23F8E1CCC26A350C46A8ADE90013ECEB2D][G] c:\program files\adobe\acrobat 7.0\activex\acroiehelper.dll [PX5: 72C99272A0F1D00EF61700C020CDC50072297340][G] c:\program files\canon\zoombrowser ex\program\zbui_toolbar.dll [PX5: AA974D95615ACD98005002F5507D1A00B519F672][G] c:\program files\yahoo!\messenger\yacscom.dll [PX5: DCCC7A2D005A908A90A20344CD13870082CBC5ED][G] c:\program files\hp\digital imaging\bin\hpqrif08.dll [PX5: 56714389009C23FEA0A103B2601B5800914D500E][G] c:\program files\roxio\videocore 9\vcpdisplacemask2d.dll [PX5: 1876AC62F8EA41EDAA9C07295582D40029EB38D5][G] c:\program files\common files\roxio shared\dllshared\cddbplaylist2roxio.dll [PX5: 27FE6481F8BBAC32351908F8EB257A004D7B48BB][G] c:\program files\roxio\videocore 9\peakmeter.ax [PX5: 03BCA76CF8E0C18F5A0B02EB8C221800A42C7DCA][G] c:\program files\hp\digital imaging\bin\hpotra08.dll [PX5: F58CB48E00A0FF6C40D403D5BE79700031819F76][G] c:\windows\system32\wpdconns.dll [PX5: 69D993EE00E9EABCF2130026041CD50086449D18][G] c:\program files\roxio\videocore 9\vcpvideoadjust.dll [PX5: 375D21EDF8467E43CA5C0D07A5A20900BD86FE80][G] c:\program files\common files\motive\installhelper.exe [PX5: B0F6B6D3007C7B02B0270462DEF82D00E6A6B288][G] c:\windows\system32\wbem\policman.dll [PX5: 5FEF0EDE00EB61176A4E010C0C0E180048C40525][G] c:\windows\help\tshoot.dll [PX5: 3EE7FD760083DE4D426404941F1E020017251E00][G] c:\program files\hp\digital imaging\bin\hpqss002.dll [PX5: 1C3C457E00A8C82BB0C903E5BB247C00CE72255C][G] c:\windows\system32\wscript.exe [PX5: CE0E9EB100A54CB560AF0200882A3D0036934A94][G] c:\windows\system32\wbem\wmiprov.dll [PX5: 5DB630220084338D36BE020A4C8487000BD4F79D][G] c:\windows\system32\microsoft.managementconsole.dll [PX5: F33B901100E23444D070026436120F006D885548][G] c:\documents and settings\all users\application data\move networks\qmpupgrade.dll [PX5: 13344A3C009B314900C40518F5095F00AE63BABD][G] c:\program files\hp\digital imaging\bin\hpqss001.dll [PX5: 8A13447C00AA7490A08903D5DCF13A00BAFD0FA3][G] c:\program files\roxio\videocore 9\vcu3dcheck.dll [PX5: FCE65DF6F84236654AFC0B9E54414100FF0B5E80][G] c:\program files\canon\zoombrowser ex\program\zbcommands2.dll [PX5: 54F2987C719B1E5C904502D6D3BD5D007F28818E][G] c:\windows\system32\syncui.dll [PX5: 1B256A3C00AAE5E4EC81022FE2B6AA00E28C8740][G] c:\program files\yahoo!\common\ylogin.dll [PX5: 60180D65D8991CEAF4C2012BB5EE8D00D6D86671][G] c:\windows\system32\webvw.dll [PX5: 49F600160046E7F6127302CC210C8F00E062FA50][G] c:\windows\system32\rasauto.dll [PX5: 697C6C1F00AAC7285A3601D451E257000A039F45][G] c:\program files\roxio\photosuite 9\ppspaper.dll [PX5: 28B8F1C9F8DB1720FA5001257C659500530C870B][G] c:\windows\system32\comdlg32.ocx [PX5: 12216787006C832E240502FA343A3C00B63EEB06][G] c:\windows\system32\dllcache\rvseres.dll [PX5: 97A0669B549066B17EC70B3B3C2E070070852586][G] c:\program files\roxio\videocore 9\vcptransanimated3d.dll [PX5: 4019CCF4F86F4F8DEAEE0998F549E400A58BA9D7][G] c:\windows\system32\rdshost.exe [PX5: BDDE14BD0071E54D06C7013147755E0097583493][G] c:\program files\hp\digital imaging\bin\hpiscn.dll [PX5: DC0AE3964424F3B7F0430E457EADA700FE2BF632][G] c:\windows\system32\hlink.dll [PX5: C8F5C5CA008F66301C5601C36943480031AB3FF5][G] c:\windows\system32\drivers\mtxparhm.sys [PX5: 58EEB961806700F0E8150672FF705700E15F3A2C][G] c:\program files\yahoo!\messenger\ypagerchecker.dll [PX5: 5A38156DF87AE02B65AF01C830B28700EEDDA34D][G] c:\program files\common files\roxio shared\9.0\dllshared\pareq.fxu [PX5: 8303B5A800723A653065014A0A75CB004752B234][G] c:\windows\system32\cscript.exe [PX5: 7F1834180046DC03102702014B062F003798D896][G] c:\windows\system32\rdpwsx.dll [PX5: EF74529F884F68D4543F012785E3EC00D8D8C3CD][G] c:\windows\system32\drivers\slnthal.sys [PX5: 4125157DC0CA9DDC747D01DF9E13BE000301B563][G] c:\windows\system32\drivers\mqac.sys [PX5: EAEA039A80F16E11699801DE4E83680080DEFF6E][G] c:\program files\roxio\photosuite 9\printwizard.dll [PX5: 88F0C31DF8AC9E7C3AE0099B8C40830098060FB3][G] c:\program files\canon\zoombrowser ex\program\zbui_utils.dll [PX5: 342795815FA58FC310CE02E74203BD007D49689D][G] c:\program files\yahoo!\common\yverinfo.dll [PX5: 9D8D80551853075E3500015DA186F80007CDEB02][G] c:\windows\system32\cmprops.dll [PX5: 0B0F041200421730D4C602DCE3620B00E11FB491][G] c:\program files\real\realplayer\rpplugprot.dll [PX5: 981E838D312B4F4050A701551909350063FE8638][G] c:\program files\roxio\videocore 9\vcpdistortion2d.dll [PX5: FCCF18F6F82E107F9AA50BC539A98E00AB82AAFE][G] c:\program files\yahoo!\ypsr\ypsrmaven.dll [PX5: 09F0A7C50020BADB306101FBEBE3D000028FAA4E][G] c:\program files\hp\digital imaging\bin\hpodio08.dll [PX5: F6C891573583D837A02A0C253C1D0B0036048805][G] c:\program files\common files\roxio shared\9.0\sharedcom\albumcommonplugins.dll [PX5: BE3826A1F84422FBDAF802FC84F59D0024DCABCD][G] c:\windows\system32\wscui.cpl [PX5: 95C70CFE009F64DA44DD028346461300BAEC1992][G] c:\program files\common files\roxio shared\dllshared\cddbuiroxio.dll [PX5: A8B3EE09F8B8C439D58E0B10C61AED0035523E98][G] c:\program files\roxio\videocore 9\vcptransimagemask2d.dll [PX5: B96568DFF874C051BA320714D0458200722F8159][G] c:\program files\common files\roxio shared\9.0\dllshared\denoise.fxu [PX5: C102EBEE00EFB78300F501DFD1F82B00EC5102EA][G] c:\program files\yahoo!\browser\ysbbookmarks.dll [PX5: 5B702F2C00738AD3AA6C03E3CBCC2A00A4D702DF][G] c:\windows\system32\wpdmtpus.dll [PX5: 52557E4B00D890C6045401E37BE20200D88D43E8][G] c:\program files\winamp\plugins\gracenote\cddbuiwinamp.dll [PX5: 910A2978F0B0A0BCF4F00F021FAA58009E1CC541][G] c:\program files\hp\digital imaging\product assistant\bin\hprblog.exe [PX5: 76E037D5009A75AE30A601A31AE9F300BA21802A][G] c:\windows\system32\mobsync.dll [PX5: 91C86B2800F61D482ABB0362920E7700559D17EA][G] c:\windows\system32\srclient.dll [PX5: 83FC913A0027A88D08D201FD0B93D1008BBF81A0][G] c:\windows\system32\wpdmtp.dll [PX5: DE0C51A50049509ABEF60143A7E1990060513185][G] c:\windows\system32\dmstyle.dll [PX5: CB665622005900C99E740166259D8D009D838670][G] c:\program files\common files\roxio shared\9.0\roxio central33\easy archive\easyarchiveplugin.dll [PX5: 138165B8F8CB91751AC107B9CC093A00C9282A5C][G] c:\program files\common files\roxio shared\9.0\dllshared\mgidiagnostics9.dll [PX5: 480BD719F8F875528ACE011FAF642D00E1FD18AC][G] c:\windows\system32\wbem\wbemcntl.dll [PX5: 41E142CA00F2F5CF007D03D99786020081BAD919][G] c:\program files\microsoft office\office10\msohev.dll [PX5: 131D104EA043137C350C01DA7538A900EA1A19DB][G] c:\program files\common files\roxio shared\9.0\sharedcom\onlinesharewizard.dll [PX5: 2915D550F83348FECAA703D5DE196D000D632E6D][G] c:\windows\system32\dsuiext.dll [PX5: BAC24D83009D75C7BA590190BD445100E8D05FB0][G] c:\windows\system32\wbem\wmipcima.dll [PX5: 78A1F5B200ED49726422025174B44E00AF2BE0D1][G] c:\windows\system32\drivers\zd1211u.sys [PX5: 689B7F1B00F76448C60203C4B53EBD00EEAB0561][G] c:\program files\common files\avsmedia\activex\avsvideocorem.dll [PX5: 115CD60D00C08272606F11EDFB888D00EFC45CA3][G] c:\program files\roxio\videocore 9\vcptextoverlay.dll [PX5: 3742A3B4F8C4522AFA2809334B1E9E00A70B4344][G] c:\program files\roxio\photosuite 9\ppslens.dll [PX5: D8D31A27F89619A51ADD03D58ABD89007E4F9256][G] c:\program files\roxio\videocore 9\vcpcrossparameters2d.dll [PX5: D6A288EDF8C837C68AFF0B473664CB002EBBA266][G] c:\windows\system32\rmoc3260.dll [PX5: 0EDFD32A27F01D0EB055028064211E000E8C5B83][G] c:\windows\system32\upnphost.dll [PX5: 24D11C3B00CABA1DD6C80295FF2D0E00C5C5399B][G] c:\windows\system32\mpg2splt.ax [PX5: 08D58BFA003DDB228613023ABA08DE0066FE067F][G] c:\program files\canon\zoombrowser ex\program\zbui_imageviewer.dll [PX5: 3F13316965E4A47C907A038FBA6218002D8E1885][G] c:\program files\common files\system\ole db\msdaosp.dll [PX5: 8CFB154200CB5C4F301B013D4B2D76002E11EA32][G] c:\program files\roxio\videocore 9\vcpoverlays.dll [PX5: 35834F39F88E4F734AB0105C2C503A00F585392B][G] c:\windows\system32\wavemsp.dll [PX5: 05527B2900B423C14AFC030B210704009F6716D3][G] c:\windows\ehome\sqldb20.dll [PX5: 2A470A1500A0FEA7509502CA063FC4007731E0CB][G] c:\windows\system32\dllcache\rsaenh.dll [PX5: 47100BA200180DA62E1F0385EB4B3E0076D11132][G] c:\windows\system32\kstvtune.ax [PX5: 040478C2006D9BC6F2F800A586526600527B3FB6][G] c:\program files\aim\rtvideo.dll [PX5: 5029FE1B002C668DC0D4021F32532700B25104AC][G] c:\windows\ime\shared\imlang.dll [PX5: 2D0D1FC338390609905C01B1AA2B06000216C24C][G] c:\windows\system32\rcbdyctl.dll [PX5: EA00D005007F785A903D01727D12C2005532984B][G] c:\program files\microsoft office\office10\outlcm.dll [PX5: DF96DDB8A0DAFF7915170871E8FE27008D179554][G] c:\program files\common files\roxio shared\9.0\sharedcom\rxdmrassist.dll [PX5: B7A7151BF84168358AAA02A3D27313009D496CB4][G] c:\windows\system32\tintlgnt.ime [PX5: 544E44970057D6D1B82E0899C2D147005046E458][G] c:\windows\system32\mpg4dmod.dll [PX5: C70C0770007BCAE4ACEA03C6FCF4CC00FC83569D][G] c:\program files\common files\roxio shared\9.0\sharedcom\cpsnavigationbarcontrol.dll [PX5: A0B94DC5F87CE1F76AE20379B97FC800D8EB4E06][G] c:\program files\common files\roxio shared\9.0\mpeg\tsmpegsource.dll [PX5: D3EE2259F8EEB5E95A3E027598E46100F3BBF435][G] c:\program files\internet explorer\ieproxy.dll [PX5: 34FDA5BC00E33FFA64210444AC259B009BB8F954][G] c:\windows\system32\odbcconf.dll [PX5: B33B0ECC00EAC65B1024023E5CA021008A6225C6][G] c:\program files\common files\roxio shared\9.0\dllshared\dvdmusicbuilder.dll [PX5: 929E22DEF88438E74A4B05D33A21860006161D56][G] c:\windows\system32\adsldp.dll [PX5: 09291C8D00EB0E20AEE102F8C5D093003FF13D4F][G] c:\windows\system32\logon.scr [PX5: 165A9C30006933485E7103A2253C2100E2B1B9C6][G] c:\windows\system32\nlhtml.dll [PX5: 7025B52400980AFA807601C8ADC0FA000BA34C50][GP] c:\documents and settings\all users\application data\move networks\qsp2ie06101001.dll [PX5: 04591E844054AFF95DE50A8C4FE8FF006FC43042][G] c:\program files\common files\roxio shared\9.0\dllshared\audiodll9.dll [PX5: 05A09106F86F6C3F4AA3033E419448005734EA27][G] c:\program files\malwarebytes' anti-malware\mbam.dll [PX5: 3F0FA1B010336C88652201F9E2A1FB00096BDEE8][G] c:\program files\common files\roxio shared\9.0\dllshared\fakeavrenderer.dll [PX5: DD0EB0ECF84A2F51FA7602EDD670A600103D5334][G] c:\program files\movavi\nctaudiotransform2.dll [PX5: F95EF6C600002A52306409E1BC6987003218F05F][G] c:\program files\common files\roxio shared\dllshared\soniclicensemanager9.dll [PX5: 63517C5AF89769DA0A2605732DEDD4006B04408D][G] c:\program files\roxio\videocore 9\panzoom.ax [PX5: BB3992F9F8D7E4507A17031161D049001A972ED3][G] c:\windows\system32\hpotscl2.dll [PX5: B4D97E5000C82CE4208E099FAF99DF002F880A94][G] c:\program files\roxio\videocore 9\vcgtemplatemngr.dll [PX5: 7394E3B8F8214BDA1A6F03359FD8E000E368F1C9][G] c:\windows\system32\snmpsnap.dll [PX5: CFEFD84B00732270C886027C31D59E0078B06655][G] c:\program files\aim\sb.dll [PX5: 5957BBBC002B1CAE80000182FEC1BD00A2FE44FD][G] c:\program files\sbc lightspeed self support tool\bin\motivebrowser.exe [PX5: 0B941CCD00BB17F8305B02DA4CBEB500CAE01F3A][G] c:\windows\system32\wbem\stdprov.dll [PX5: AE840C06001EC32452500107A546E10010284023][G] c:\program files\yahoo!\companion\installs\cpn2\ymeremote.dll [PX5: 18900C59F8986FDDC5C8016725736400D69575BC][G] c:\program files\roxio\videocore 9\vcpalphatrans.dll [PX5: B2FD8530F867F4B5AAAB0B4669818A00E52C2F29][G] c:\windows\system32\scrobj.dll [PX5: 04F1A64B009FA2CDC05F02863D873000D7D0116D][G] c:\program files\common files\avsmedia\activex\avsvideoview.dll [PX5: B809DAC40023C86BC051084BC5FC37003B549ED6][G] c:\windows\system32\dinput.dll [PX5: 32310EC200BBAE9C6C96028B0C64F000983AFE3E][G] c:\windows\system32\drivers\bthpan.sys [PX5: 5BE273B80025E0C98B4301B3B287960093A3D165][G] c:\windows\system32\sti_ci.dll [PX5: FD674B03005DCF7D168002E9878B2200D3A02F58][G] c:\program files\common files\roxio shared\9.0\dllshared\divxhelper9.dll [PX5: F37A9CC1F8B786911A250AAB12606B003D5375E2][G] c:\windows\system32\drivers\hdaudbus.sys [PX5: 73D184090042DDE5345C02650DBE220005836311][G] c:\windows\system32\localsec.dll [PX5: B3C1EFFC00917B4C62E903287F18810057A764F4][G] c:\windows\ime\imkr6_1\imekrcic.dll [PX5: 259D8ADF00B2E1E5A0EB01F4C4F939006C7E3ED0][G] c:\program files\roxio\audiocodeccommon 9\dsfspeexencoder.dll [PX5: 65AE7543F8F3C84BFAF102EABBA614009A88AB24][G] c:\program files\yahoo!\browser\ysbab.dll [PX5: B82AC57F8017B71A105905E2B51C5700722EA907][G] c:\program files\yahoo!\browser\ysbfriends.dll [PX5: 56BC0300108E93172026064831ED24000BA915BD][G] c:\program files\hp\digital imaging\bin\hpocxi08.dll [PX5: 6FE9198D003F143C600E04C149571F007E4C9749][G] c:\program files\common files\motive\mccisysx.dll [PX5: AA3227A30023AD1C00761289C8655700F685B4DA][G] c:\windows\system32\msadds32.ax [PX5: F36D276F000228CE60EA03A47665010059898137][G] c:\program files\roxio\digital home 9\assetsmngrcontrol.dll [PX5: E0AFB295F897AB93CAF10AEA04671E0070355B14][G] c:\windows\system32\drivers\bridge.sys [PX5: 5952BE348035D33F17AC01C9641C24008927A6E8][G] c:\windows\system32\rdchost.dll [PX5: 5635C6470016ABAE424002A39403890009C9EC02][G] c:\program files\canon\zoombrowser ex\program\zbtaskcamerawindow.dll [PX5: E2B0DD7667A1C997A085025387159D00E9D610FA][G] c:\program files\common files\roxio shared\9.0\dllshared\fileserver9.dll [PX5: 2FED9573F870CB74AA100361100DC5002A39BE1A][G] c:\program files\common files\avsmedia\activex\avscoredw.dll [PX5: 6AD8E26100D2B21D102803F8FEC6030046028CDD][G] c:\windows\system32\strmdll.dll [PX5: 7AC7E0751EC546FBC681034154271C00A2A5969E][G] c:\windows\system32\gptext.dll [PX5: 2D97D7F6005077130C0103484315E7008A3D8C20][G] c:\program files\internet explorer\connection wizard\icwconn1.exe [PX5: 113CB242001F453446AC035051E85C0087B6EE6C][G] c:\windows\system32\diskcopy.dll [PX5: 2C5D31BF00D8A183F44B16A8962D8200D304BCCF][G] c:\program files\quicktime\qtsystem\quicktimecheck.ocx [PX5: 7C71C6F6304A7141F54301606C130F008FA94C17][G] c:\windows\downloaded program files\isusweb.dll [PX5: 23CDD592B0CE257D630E073E6385B3004650D7F7][G] c:\windows\system32\ils.dll [PX5: 8AFEC2BA00C8890D40AD01E23209470006A003AD][G] c:\program files\common files\system\ole db\msdasql.dll [PX5: B6AA2DCA00E27DFED0000432336DAF006A8B16B9][G] c:\windows\system32\rasqec.dll [PX5: 9DE8F9EA002D6F29F29100D5584D0800D2994BED][G] c:\windows\system32\dllcache\rpcrt4.dll [PX5: 429DAB1A0020D087EE5C0816FA4C64006A6851CC][G] c:\windows\system32\rpcrt4.dll [PX5: 429DAB1A0020D087EE5C0816FA4C64006A6851CC][G] c:\windows\ime\mscandui.dll [PX5: A74B55360015E79C5CA003C9A2331400CA75D4C5][G] c:\windows\system32\ieapfltr.dll [PX5: D3EEFEF60027232FDA1F056E5A8F2600C33FDB04][G] c:\program files\aim\aimapi.dll [PX5: 73FB29AF00979F2CC0BD017A43177A00F208F490][G] c:\program files\roxio\photosuite 9\simplecalendarobject.dll [PX5: CDC24AF4F826C5F3FA190314C1E15500CA9C9061][G] c:\program files\roxio\photosuite 9\ppsgeometric.dll [PX5: 700B32D0F8D645DAFA4E0245AC961800DFEB876D][G] c:\windows\system32\wmvds32.ax [PX5: 7C19DFE30029C4CCF08D036E1EE1530093067A39][G] c:\windows\system32\ipsecsnp.dll [PX5: 84469E2D00C3552F5677059B3B46CE00027758A8][G] c:\program files\common files\system\ado\msado15.dll [PX5: 04F5F7B300DAB27730F1082E3FEB9300A79D5BE7][G] c:\program files\common files\motive\mccwrapper_dsr.dll [PX5: E8A2FDD400A9717F9E8D0DB40676B4006DE1D520][G] c:\program files\netmeeting\nac.dll [PX5: 270A97FA006576F9604803EB53ABC90091EA9BF3][G] c:\program files\yahoo!\yum\yum.exe [PX5: 1D16F5C100EDFF368A7603F29BFE46004A8464F4][G] c:\windows\system32\vm30xprp.ax [PX5: 5208C3A8005B0DD5D09703F5D3C62A00B10081A2][G] c:\windows\system32\dplayx.dll [PX5: 3799AE4C005CBA9E823603B5E5FCB400E27F6F8A][G] c:\windows\ime\imjp8_1\applets\imskf.dll [PX5: D31158D33F814ED2D0FB04F3620E440088E1B5F9][G] c:\windows\system32\drivers\hsfcxts2.sys [PX5: B01E5EF200315B7474880AC61620FE005A82CE5F][G] c:\windows\inf\unregmp2.exe [PX5: 749EEFF600F22757F0FA0217DF076A002E4516E0][G] c:\program files\yahoo!\common\yinsthelper200711281.dll [PX5: EE70C27C20145BD63B4203F8501A7A00D3FE1962][G] c:\windows\system32\catsrv.dll [PX5: 4C5D9E2E002AEF5E741B033EDDB394003578A336][G] c:\program files\hp\digital imaging\{bdbe2f3e-42db-4d4a-8cb1-19ba765dbc6c}\setup\hpzscr01.exe [PX5: 7AA204650037F8E5F0930EFE16B9F400128BF41D][G] c:\program files\common files\motive\activeutils.dll [PX5: FB295A5500CF215C608E100A3B0D0000F39A2B9B][G] c:\program files\common files\real\update_ob\realsched.exe [PX5: 3B47699A2D57E2D0C08E02F377D6BD00C9A564A4][G] c:\windows\system32\drivers\rdpwd.sys [PX5: DECD2AFD8815523621B402D8A9AF870061A5ECED][G] c:\windows\system32\mswebdvd.dll [PX5: 35036F8100DE2D201C1503975B830000F7FDEB6E][G] c:\program files\yahoo!\messenger\ft60.dll [PX5: 95E9C5470000804F8096022B3649D80090E70678][G] c:\windows\system32\smlogcfg.dll [PX5: 501E9E90001B2C8B88BB054E896EBF007C06C33C][G] c:\windows\system32\rasppp.dll [PX5: FEC797B90033436738C703F9A1D1E70055A4A8EF][G] c:\windows\isuninst.exe [PX5: E4A984D4009E6674AE60043BB74BCC00D1649AF5][G] c:\program files\roxio\audiocodeccommon 9\dsfoggdemux2.dll [PX5: B69CC06FF891AB6E0AA00298DFCB720023B114AD][G] c:\windows\system32\drivers\rmcast.sys [PX5: 21049E93803BC45319AC033F5C8921009305ED5B][G] c:\program files\common files\motive\mccihttpx.dll [PX5: 84EC572300EF1749109004ADE246EF00A1228211][G] c:\program files\itunes\ituneshelper.exe [PX5: 6C58C4242860037D131204760D35AD00BE417340][G] c:\windows\msagent\agentctl.dll [PX5: ED7B640900EB9CCC44DC03F69070020022B50173][G] c:\windows\system32\dllcache\rtm.dll [PX5: CEE8E44D000C59C6806E011BD6A1CF006AEC084D][G] c:\program files\roxio\videocore 9\graphbuilder.dll [PX5: 752F0928F833C6476ABA0DF7986B2C00D9146B37][G] c:\program files\common files\avsmedia\activex\avsogmfile.dll [PX5: 76E47D8E007AC4E9609A0CB58776470075615845][G] c:\windows\system32\dllcache\rsopprov.exe [PX5: B024E59500A753C7F64A00BC5F3FED003D6C5422][G] c:\program files\common files\motive\mcciutilsx.dll [PX5: 996D9F7D004805E64EAC1146BA0A4600016E7586][G] c:\program files\yahoo!\browser\ybcomp.dll [PX5: 6D8CBCA859E14FB3A8D70578622E6600B82D16AA][G] c:\program files\common files\motive\mccicpex.dll [PX5: 1487825876F817FF10EA105D5671D900E549E23F][G] c:\program files\roxio\videoui 9\vwuicontrols.dll [PX5: ED957BB7F8800F242A873B0072F11C0076AD8B6B][G] c:\windows\system32\wuaucpl.cpl [PX5: 5BC9525C1882B33F42BE0377DB07C0000DBA11FB][G] c:\windows\system32\nusrmgr.cpl [PX5: F6BA81CF0005ED75EC44033D4A6F550053BE9281][G] c:\windows\system32\drivers\tcpip6.sys [PX5: D4E30D4B407CD59972E20360C1250500064EC71A][G] c:\program files\yahoo!\common\yshortcut.dll [PX5: 6CDE37C6F8FB7316A56403453DAD3000B022C542][G] c:\windows\system32\jscript.dll [PX5: 5D90536A00F4B118D08E0790CAA14A00188AC7C1][G] c:\program files\itunes\ipodupdaterext.dll [PX5: 61D054B800EB87B0D0B60965EC73F70035EC314D][G] c:\windows\system32\comctl32.ocx [PX5: B338A671C024B20F48A80970D3818A00AFB0346E][G] c:\windows\microsoft.net\framework\v1.1.4322\aspnet_isapi.dll [PX5: 68F54D71008E0F61F0FF0363D9DC6C000D0BDC3D][G] c:\program files\hp\digital imaging\product assistant\bin\rbsdb.dll [PX5: CBDA794C0054F8FAA0DF05B676CF8200127FA2D4][G] c:\windows\system32\wuweb.dll [PX5: B70C370B1871990B18D503222983DB00213A4E42][G] c:\program files\roxio\media import 9\mediacapturecontrols.dll [PX5: 1E2F27AAF851D9C03AE5048B72677800C8620BC1][G] c:\program files\yahoo!\browser\ybcal.dll [PX5: A8C1665678B2B3E6644F0658534B170046F016C6][G] c:\windows\srchasst\srchui.dll [PX5: 26A5852E3E35D39414F90BDFFE197A005997B264][G] c:\windows\system32\ieui.dll [PX5: D0F6CF36001F9714C22802861E743B00B6F17F3A][G] c:\windows\system32\dllcache\rtcshare.exe [PX5: 4527786300B62C082E3F015D1718F000A68C1B82][G] c:\program files\common files\system\ado\msadox.dll [PX5: 542D172C00BA0E82104C0375C7F33B00C69C88A1][G] c:\program files\common files\roxio shared\9.0\sharedcom\roxshellviewbrowser.dll [PX5: 4ED519B1F8F3A2824A6C0A4B9237CB006A42F78A][G] c:\windows\system32\oggds.dll [PX5: 7C4754F900AB2C56A0F703890D05640072416B43][G] c:\windows\system32\iedkcs32.dll [PX5: 2F6852FC00279357DE70058A2D4B05007EDCDF58][G] c:\program files\hp\digital imaging\bin\hposvi08.dll [PX5: D7357866005ED63D806105F78E3DD5008A49C4AA][G] c:\windows\resenu.rim.dll [PX5: 071F6FDD0003F80000FB038E33789B00320D05AD][G] c:\program files\common files\motive\mcciappsx.dll [PX5: 8893004F00101EBA60770C4B0F7477007E5E0F5D][G] c:\program files\canon\zoombrowser ex\program\zbdmv.dll [PX5: 813C096556BADAF4B06C03C16F76EC007046801E][G] c:\windows\system32\fde.dll [PX5: 400DC7AC00047B7BE83C01FDEC8AF000B99EDEDA][G] c:\program files\common files\avsmedia\activex\avsavifile.dll [PX5: 0097244F001F88E970B10D42D1DF5D00A04690CF][G] c:\program files\roxio\photosuite 9\psactivitypanes.dll [PX5: CE14800CF8BD32006AB8101CAD362E00814AF3EF][G] c:\program files\common files\sonic shared\sonicmc01\sonicamrd.ax [PX5: 485C31E9F870672CDAD1058EF6EDE7008A8385D4][G] c:\windows\system32\qmgr.dll [PX5: 578DD738009695A13E5006510BD7BB0098E40494][G] c:\program files\roxio\videocore 9\latency.ax [PX5: 02414A12F84FD2545ADC025C157C5200A593F486][G] c:\program files\common files\microsoft shared\web server extensions\40\bin\fp4autl.dll [PX5: AC6F9F6A6DCB46BE70660927B0114F003DB27012][G] c:\windows\ehome\ehglid.dll [PX5: 8250FC450026C8F312F405608EE04100833A27E0][G] c:\windows\msagent\agentsvr.exe [PX5: 2FEBF95200746E93EA3A03D296EC17008BF38BC5][G] c:\windows\system32\itircl.dll [PX5: 35A7432F001BDBF55E860207FB61CA0008FF9E2E][G] c:\windows\system32\msoeacct.dll [PX5: 7F007CF5005217F5DCD5032A176F37004729C6AA][G] c:\windows\system32\dsquery.dll [PX5: C17EB4EF00DF5990A6A903738D034F00B77DDC9F][G] c:\program files\common files\system\ado\msadomd.dll [PX5: CBE02CCD00E612EFC0FE024335041700279D9D3F][G] c:\program files\roxio\media import 9\photocapture.dll [PX5: FE35B723F8F573726A6D05E7AD0ED800829753E1][G] c:\program files\common files\system\msadc\msadds.dll [PX5: 066BBA64001ADE6D602B02563EE963001A3601B1][G] c:\program files\common files\roxio shared\9.0\dllshared\previewdlg9.dll [PX5: 17B0EC10F8C3E8677A6C07249DAC1800EEDA9975][G] c:\windows\system32\tdc.ocx [PX5: 5B683F9E003AB5EC04FF01F7031A4500717F1821][G] c:\program files\common files\roxio shared\9.0\dllshared\dcfilters9.dll [PX5: 3AD79BCAF8000B2D5A45055903493400419731C4][G] c:\windows\system32\catsrvut.dll [PX5: D324955E00EE7ACB8CD409005F4A3200206EAA1E][G] c:\program files\movie maker\wmm2filt.dll [PX5: DA9CD503004DA7E824FB06745F558B00840CF7FD][G] c:\windows\system32\drivers\partmgr.sys [PX5: 08883A9F007E19614D7C0086612781001871B4FA][G] c:\windows\system32\vbscript.dll [PX5: 900AA9B500E0E5D290BF064EFD1FF000CC25E90E][G] c:\windows\system32\dllcache\rsvp.exe [PX5: 42F8162B00E163D906880231F30F2D00947BFF3C][G] c:\windows\system32\adsnt.dll [PX5: 272E686E00E46F3B06BA04CF677A9700109295D7][G] c:\program files\roxio\media import 9\capturetools.dll [PX5: 6DF058C9F8E9C1426A23059055FB4200D0B06911][G] c:\program files\common files\roxio shared\9.0\dllshared\dsprojectutilities91.dll [PX5: 509CEF60F88FFBD96ABB13F8B4095600BFFC6F4C][G] c:\program files\roxio\photosuite 9\ppskernel.dll [PX5: 784D84AFF867C661EACE04919B16F100844903C7][G] c:\windows\system32\drivers\disk.sys [PX5: BABEC76A00F1DE6C8E6B006300D7C000C740F7FB][G] c:\windows\system32\wmstream.dll [PX5: 203C2A720032B6E8A2FE0476728F0F00EF920937][G] c:\program files\common files\microsoft shared\speech\sapi.dll [PX5: 6ED5BCA600FA945350240BCBCA0A0F00AAC1F277][G] c:\windows\system32\drivers\tdi.sys [PX5: 336A5FFA806BA4D04A25002F94650D00FA2EE7F1][G] c:\windows\system32\photometadatahandler.dll [PX5: 45A301850018CA264A42067DCD3E3000DED4DFCA][G] c:\windows\ime\imjp8_1\applets\voicepad.dll [PX5: 91E9ECF139B9F82B80D1065082FF9800C84B3A47][G] c:\windows\system32\drivers\cdfs.sys [PX5: 32BC87EC00259579F9BB00FE0592C600D2487863][G] c:\windows\system32\drivers\ikhfile.sys [PX5: 54D68DC9C013B32477340008438D4400D38AC201][G] c:\windows\system32\drivers\acpi.sys [PX5: 6EB7D7248014C2CFDD6D029EF0BB70001C8AD0E8][G] c:\program files\itunes\itunesoutlookaddin.dll [PX5: 146CF13F002D944A52CD047210D7C900CE7FB7B4][G] c:\windows\system32\drivers\mountmgr.sys [PX5: F625E60D80ACD1DFA5CD0007C352D300C526628E][G] c:\program files\canon\photorecord\program\photorecord.exe [PX5: 7D5AC92E00ECAF6A002D62F95A08C600E7CA1C5D][G] c:\windows\system32\icardie.dll [PX5: 00F7F9890009552CF8490076E0FA1A00B79C51FE][G] c:\windows\fonts\vgaoem.fon [PX5: 6CA95C4D3080777B140100C1C8350800A078F465][G] c:\program files\roxio\photosuite 9\ppsshapecollection.dll [PX5: D117638BF8DB11B93A6C05DE6DF27300107011C7][G] c:\windows\system32\drivers\wmilib.sys [PX5: 7A1B707D0098974111DB00C8E2E10C00FCC422B3][G] c:\program files\cyberlink\powerdvd\audiofilter\claud.ax [PX5: F2FEF8CF001720DB302810C77515AE000E596DD3][G] c:\program files\common files\avsmedia\activex\avscommercialdetection.dll [PX5: E87BCC1F00749A2490EE0739024BE50015E4B110][G] c:\windows\system32\drivers\sfhlp02.sys [PX5: 8FAE11AB0025B1E21AF9003B3C2E0700F50DD5F3][G] c:\windows\system32\drivers\atapi.sys [PX5: 7EFDCA54002458B979D801FAFEE1BA00D9C1C0F3][G] c:\windows\system32\occache.dll [PX5: 5E78274E00A482AD9219018CC68FEC004627988E][G] c:\program files\common files\roxio shared\9.0\sharedcom\p2pdialogs.dll [PX5: 7B767948F847E4893A1F06EB725BC700AEF37350][G] c:\windows\system32\drivers\pciide.sys [PX5: 826808EE00CFD8500D55002AE8E7E200B79BCD14][G] c:\windows\system32\appmgr.dll [PX5: 3C6A0EB9003ED90C844C041EAC29B100CDA08A70][G] c:\windows\system32\qedit.dll [PX5: 27A347E1006CEA8C949D08DB659C61007D1D60E8][G] c:\program files\msn\msncorefiles\oobe\obemetal.dll [PX5: C430844700469150C0FA0E753D22500081E26FFE][G] c:\windows\system32\ieframe.dll.mui [PX5: 9CD6813500FD1D1020170FDB40B84C005F91026A][G] c:\windows\system32\drivers\isapnp.sys [PX5: 058FA73D8024005F9113009604518D005E85A9F3][G] c:\windows\system32\qdv.dll [PX5: ECE85A4900D284DD4255047C5252E4006F7497EB][G] c:\windows\system32\ipsmsnap.dll [PX5: F969F00000FE1BF0DC06051DC3E1300076BFCDAA][G] c:\windows\system32\dmdlgs.dll [PX5: 102D16CA007EB17D5AE604E69AA009009C829B00][G] c:\windows\system32\ndparser.ax [PX5: D14B55F400B8C2E230C2050100E18500BA6649B0][G] c:\windows\system32\dxmasf.dll [PX5: 60BFB4943613DD4A9C16078D35A40800DE0B8508][G] c:\windows\winhlp32.exe [PX5: C39481B800BE270F54D404F5E0AC170014FE54C9][G] c:\program files\common files\roxio shared\9.0\sharedcom\cpsextendedcontrols.dll [PX5: CF2A99DEF81330FCEA0C0D79F84F2C002EE698A2][G] c:\program files\roxio\photosuite 9\createprojectwizard.dll [PX5: 8360D217F840CF1D8AA10830BBCA540071D1E6A9][G] c:\windows\system32\qdvd.dll [PX5: 10F5BBC5009FA60AE48205ADAC3DBE00FE6B668E][G] c:\program files\common files\system\ole db\oledb32.dll [PX5: 75F2865C00F5ABBF706007D188783600632BDEF7][G] c:\windows\system32\dx7vb.dll [PX5: 82D50303009866E672C00992B1FD7C009752883A][G] c:\program files\roxio\media manager 9\emailwizard.dll [PX5: A325F457F81635983A6205684AC6A4005E14CA78][G] c:\program files\roxio\photosuite 9\ppstouchuptools.dll [PX5: DAB9E694F863A009FA6C05737FF6440075A276E7][G] c:\program files\hp\hp software update\hpwucli.exe [PX5: CAFC157200B281A5D0A209C99C470800B2F6864A][G] c:\windows\installer\{bb85ed9c-afc9-43bd-b8dc-258c3c7df72e}\hpsushortcut_bb85ed9cafc943bdb8dc258c3c7df72e.exe [PX5: CAFC157200B281A5D0A209C99C470800B2F6864A][G] c:\program files\quicktime\qtocontrol.dll [PX5: E40BDCF100D9F1AAA04E0D24B3D6D3004A8AAC80][G] c:\program files\installshield installation information\{133ee96d-dba6-4644-84a4-b2794505d669}\setup.exe [PX5: 666CA4FDB01F866BF38606EC9CB9A3004D6F5C12][G] c:\program files\quicktime\qtsystem\quicktime.cpl [PX5: B0122D6500257151204B1725AF2250009B177C11][G] c:\windows\system32\urlmon.dll [PX5: 9D08CDE100EC33ADB4A711E0BADDE20043C60878][G] c:\windows\system32\objsel.dll [PX5: CBAF7DCB002467B25E9A04FB0EBDCA007B39E06A][G] c:\windows\system32\drivers\netbios.sys [PX5: 23DB0EFF80B83ECF873100DB571168001F4F3EBE][G] c:\program files\roxio\videoui 9\vwcommmondlgs.dll [PX5: 8D98AA07F8D843973A4D1CBB0E1A1F007664A303][G] c:\program files\veoh networks\veohwebplayer\npwebplayervideopluginatl.dll [PX5: D9272DCA680AF2AF6D9D09D82049590001A8EA4E][G] c:\windows\system32\wmv8ds32.ax [PX5: B066CB321F0A8428402A046967F333005C007235][GP] c:\program files\common files\avsmedia\burnerservice\avsvideoburner.exe [PX5: 9EC511A60058FDF51E7E2A7D5C99CE00E93C56B3][G] c:\program files\common files\installshield\driver\1050\intel 32\idriver2.exe [PX5: 1243052C00FFE030D0360BDFC20A2E007526260B][G] c:\program files\common files\installshield\driver\1050\intel 32\idriver.exe [PX5: 1243052C00FFE030D0360BDFC20A2E007526260B][G] c:\program files\movie maker\wmm2fxb.dll [PX5: 72782B20006499C8F8170497B77209004D019620][G] c:\windows\system32\fxscomex.dll [PX5: 200853D500BB45F75A0D049B2C6772007E6809A3][G] c:\windows\system32\drivers\npfs.sys [PX5: B43BD59880189C23783E008E44C90300668CF774][G] c:\program files\roxio\photosuite 9\ppsuniversalbrush.dll [PX5: 8FB3666DF864AC3DFA9F07C161AAD500E469CAEB][G] c:\program files\winamp\plugins\gracenote\cddbplaylist2winamp.dll [PX5: 38845047F09D28FE54920FD0F04C74007346C325][G] c:\windows\system32\ntmsmgr.dll [PX5: D5865D6000931CF274360758F01B2F008F3BEB4C][G] c:\windows\system32\drivers\slntamr.sys [PX5: 2D73A613FED6C4502D2F0603BB1BA000441F5C5B][G] c:\windows\system32\drivers\classpnp.sys [PX5: DABB94D3808B9CD2C1E700433F343C002A376870][G] c:\program files\winamp\plugins\gracenote\cddbmusicidwinamp.dll [PX5: 3F34C473F0064FD1C4320D6B81BD6500327FFEEF][G] c:\windows\system32\drivers\dmload.sys [PX5: FC216AA0003B46A9171D00359F9C1600E909FEB4][G] c:\program files\movie maker\wmm2fxa.dll [PX5: 0399602E0080B38EAA1F071BB07EDA00A15C61F6][G] c:\windows\system32\spool\prtprocs\w32x86\filterpipelineprintproc.dll [PX5: 04773E590097055F5C8901B07F85CB00506855E6][G] c:\program files\common files\microsoft shared\vgx\vgx.dll [PX5: 0AF438760035D644B0DB0B528B5A22005FAB0C07][G] c:\program files\common files\roxio shared\9.0\sharedcom\device_file_access_dll.dll [PX5: 8899528B18DD4090F62D0BFF57DC84008ADE960E][G] c:\windows\system32\msdtctm.dll [PX5: 6139BBEF00D2B5DF9A900E52234712001787B3A3][G] c:\program files\roxio\videoui 9\vuiproddatammplugin.dll [PX5: 3D40B189F8D1AF066A67070B0484150075D542BB][G] c:\windows\system32\drivers\msfs.sys [PX5: 075BA4B3803111464A9700E6E20263002BA4C5C1][G] c:\windows\system32\drivers\rdpcdd.sys [PX5: 14FCFAAE80A686EB103300CFAE183900CB624D74][G] c:\windows\system32\drivers\ndistapi.sys [PX5: C3A695B380E30CC02755009BF4479D00BD860124][G] c:\windows\system32\drivers\mouclass.sys [PX5: 3C924CE100C24F275A2F002C47B756008619C739][G] c:\windows\system32\drivers\serenum.sys [PX5: 8F9437AF80598D773D59000B93D44F00C050B469][G] c:\windows\system32\drivers\usbd.sys [PX5: F328D8568037A02F12FA00A0B0E095005A1BACA9][G] c:\windows\system32\drivers\rimserial.sys [PX5: 3918BCF08093081E677600864444B9009F3D759D][G] c:\windows\system32\lsass.exe [PX5: 09DB5EC900AF6D2D3445003B3C2E07008DAECC19][G] c:\windows\system32\drivers\pxhelp20.sys [PX5: CEED5A5408FE9DE2AA3300585AD0A300BEEAAC3B][G] c:\windows\system32\drivers\mouhid.sys [PX5: 2301F35080287EAB2F80000FDBBFFD0097D85869][G] c:\windows\system32\drivers\cdaudio.sys [PX5: 7D0D30B9001A5352491B006D9C79D000079079B1][G] c:\windows\system32\wshirda.dll [PX5: 08C965CE008D07A62013003B3C2E07005FC83DEF][G] c:\windows\system32\drivers\fastfat.sys [PX5: F0856C7A80397A29311C02813B3DA50014641845][G] c:\windows\system32\drivers\audstub.sys [PX5: C910D030000E35B30CDC00441BDEF300B79BCD14][G] c:\windows\system32\drivers\mssmbios.sys [PX5: C55BF06D80F019CA3C16000D43776900152A33A1][G] c:\windows\system32\watchdog.sys [PX5: A5490EC7005C2AF84570001E79455E00E3F49155][G] c:\windows\system32\drivers\kbdclass.sys [PX5: 294697E800A9284060B000EC87665B00DCC02CC5][G] c:\windows\system32\kbdus.dll [PX5: 1C8DFBD6007B7263161C00B564992B00403FEB69][G] c:\windows\fonts\vgafix.fon [PX5: 91E18BC7F0A0037314FB006B55157F001FC9364C][G] c:\windows\system32\drivers\kbdhid.sys [PX5: D1AB5E15001AC284397900717ACFCA00BB6039C5][G] c:\windows\system32\drivers\beep.sys [PX5: F62FA4F780D77A5110B2005CD7507900637E04C1][G] c:\windows\system32\drivers\fs_rec.sys [PX5: 2E3179C900CB71741FBA004F645EEB00865149D3][G] c:\windows\system32\drivers\ksecdd.sys [PX5: E4281EC0805FE5A768F601501D293C0073A2B968][G] c:\windows\system32\drivers\sfloppy.sys [PX5: 7E9124058071CAC72C6F00EC709F9800B81B6135][G] c:\windows\system32\drivers\msgpc.sys [PX5: A6DC8C520088C979894600B57B2B1A003DB240E9][G] c:\windows\system32\drivers\drmkaud.sys [PX5: E77F06BC803B27C80BA600EB22B53D00B79BCD14][G] c:\windows\system32\drivers\rasirda.sys [PX5: 8CCCA2B7808E55A34CD8006092BBF6006631AD45][G] c:\windows\system32\drivers\hidusb.sys [PX5: 0884A76A809785C2288500710D0CA8002206DE99][G] c:\windows\system32\drivers\pciidex.sys [PX5: DD4713DB80668128615F00A6F0879B00ABFB7BA6][G] c:\windows\system32\drivers\irsir.sys [PX5: CD0AA83F00CE652D49890012E098340084B8F17C][G] c:\windows\system32\drivers\irenum.sys [PX5: EFF123FF009559F82C9800EF91504100B6FCDE09][G] c:\windows\system32\drivers\mup.sys [PX5: 82B83CA280B2FE349BD401F92F115C0088A9D676][G] c:\windows\system32\drivers\ohci1394.sys [PX5: B4CDAC75004FF4C3F150000F7B21070091FFEA81][G] c:\windows\system32\drivers\rasacd.sys [PX5: EF519CA180B540A42200002C4F06E3005372DD33][G] c:\windows\system32\drivers\splitter.sys [PX5: 249A00638095166C184E008C6AC358001B15C957][G] c:\windows\system32\drivers\pci.sys [PX5: 70ABBFD580C14EBE0A2401AA543AE4009F801E3C][G] c:\windows\system32\drivers\ntfs.sys [PX5: 68B8CB9A00DB8C31C6650828ECB5D000D907D29A][G] c:\windows\fonts\vgasys.fon [PX5: 374F9840707DD0451C8100F3EB938400C3FB24D8][G] c:\windows\system32\drivers\rootmdm.sys [PX5: F3E7979300A8EEA3177100743639FF0080591A18][G] c:\windows\system32\drivers\vga.sys [PX5: 14B18202007EA0B752C8003693833D008EAD2108][G] c:\windows\system32\svchost.exe [PX5: 52BDB1F1005527D0384D00B1B6718300527EEB16][G] c:\windows\system32\drivers\usbohci.sys [PX5: FFC6A1880085CDB043890072FE7BF30079BAA707][G] c:\windows\system32\vga.dll [PX5: EA5C65F680EA04662480004AB7EE0A00F84220A7][G] c:\windows\system32\drivers\fdc.sys [PX5: 030113CC009ED3836B77000B64308F00665FD179][G] c:\windows\system32\drivers\ptilink.sys [PX5: F96F182D805891FA452B007EBD870E004C25BA07][G] c:\windows\system32\drivers\mnmdd.sys [PX5: 33A41DEC8064684210700001C4EA1400320E2D4F][G] c:\windows\system32\drivers\gearaspiwdm.sys [PX5: AFAB540028C51F8D3F8C00462ED662001B4ADE66][G] c:\windows\system32\drivers\null.sys [PX5: 7047032880E19D2B0B4300F23A496700B79BCD14][G] c:\windows\system32\drivers\ndis.sys [PX5: 66FD69E280C0307CC99502059A6E1F00A3DC5047][G] c:\windows\system32\drivers\nvnetbus.sys [PX5: 7F87FA4380611418320200C6650E99003074DF79][G] c:\windows\system32\drivers\amdk8.sys [PX5: 4E3BBE7000341D308E7A00AB60955600D7F1B42E][G] c:\windows\system32\drivers\rdbss.sys [PX5: DDFA4CB7805D697DAE6F022E35C3740009720658][G] c:\windows\system32\drivers\modem.sys [PX5: F22F2ACE8067686F7517004AA04CD4002AC18987][G] c:\windows\system32\drivers\volsnap.sys [PX5: AC3AFD0E80294768CC3200EE1153E400B29E4494][G] c:\windows\system32\drivers\dxapi.sys [PX5: D0E069F50027643C29470029619BD400B7B7054A][G] c:\windows\system32\drivers\dmio.sys [PX5: 33A7916100B2EE7E57C702A49AA6DC001EA71A6A][G] c:\windows\system32\drivers\sr.sys [PX5: 4D90659E00D8A4771F1A013E6E421F00447C9418][G] c:\windows\system32\drivers\ubhelper.sys [PX5: F1A55EE78048A5C4367600DA3DBB5100B0647809][G] c:\windows\system32\drivers\ftdisk.sys [PX5: D543638280F1FAF5E8A30154BD3E77003ECEED80][G] c:\windows\system32\drivers\ntidrvr.sys [PX5: 0414F7440053249A18E70036369F26005B1FF032][G] c:\windows\system32\drivers\1394bus.sys [PX5: 42C53E4180643C55D0980087FF351E009BCFED81][G] c:\windows\system32\drivers\usbehci.sys [PX5: B7CF4A1F000610EE76A700C59AB11800317C3739][G] c:\windows\system32\drivers\swenum.sys [PX5: FDB253C8004ADC8E110200CB82EF3C007DFF1D3C][G] c:\windows\system32\drivers\fltmgr.sys [PX5: D4102B44002D99F7FBD9017938FF2E006FE1A407][G] c:\windows\system32\drivers\mrxdav.sys [PX5: 86A7BD6A80472829C1AA02C410774F00921E43D8][G] c:\windows\system32\drivers\raspti.sys [PX5: 506F10F380FEE57C406900BE351741009F00F0DE][G] c:\windows\system32\drivers\sfdrv01.sys [PX5: B360579F00127EB2BA9800F33C80FB0080338C7F][G] c:\windows\system32\drivers\dxgthk.sys [PX5: 0164AB8900598A330DE900E4FEF37900B79BCD14][G] c:\windows\system32\rsvp.exe [PX5: 42F8162B00E163D906880231F30F2D00947BFF3C][G] c:\program files\msn gaming zone\windows\rvseres.dll [PX5: 97A0669B549066B17EC70B3B3C2E070070852586][G] c:\windows\system32\drivers\ipfltdrv.sys [PX5: E130718C809C039180F700DA0AC8EE00F2B31814][G] c:\windows\system32\wshtcpip.dll [PX5: 292C0125007FA4754C7F00321345BC00D90FAC5D][G] c:\windows\system32\eapolqec.dll [PX5: B2F3CB6A00088D26789300FBCE3D5000BC4124A0][G] c:\windows\system32\drivers\usbccgp.sys [PX5: D222D7908042C86E7D3300BF92539B00369250E9][G] c:\windows\system32\olecnv32.dll [PX5: 6FDF8A83002F6B069269009717D0FA00C655DDD5][G] c:\windows\system32\drivers\drmk.sys [PX5: 73B664550055CFD9EB9800CC44976A00817D1F0B][G] c:\windows\system32\drivers\ndiswan.sys [PX5: 8EBDB6FD80F9F2E2651A01DE3D64ED007AF52054][G] c:\windows\system32\drivers\termdd.sys [PX5: A51ACDC18840AF6D9F64006193DC6900F22BC047][G] c:\windows\installer\{911a0409-6000-11d3-8cfe-0050048383c9}\cagicon.exe [PX5: 596308E9002398900A89003B3C2E0700B79BCD14][G] c:\windows\system32\drivers\hidparse.sys [PX5: 202AE5AF805FDB4161470039E900C000FE5D1DA2][G] c:\windows\system32\drivers\processr.sys [PX5: BB2A3C640003321C8C3A006C7B5F3B00C23EFB4D][G] c:\windows\system32\drivers\arp1394.sys [PX5: 7E81EB6A803135EBEDB20074BBAF54000B42EB7B][G] c:\windows\system32\drivers\usbstor.sys [PX5: ABA065AC00509344675C00C0C2499A00F9776F56][G] c:\windows\system32\drivers\fips.sys [PX5: 744A974700158591AEE700FCB47CB000D75B8911][G] c:\windows\system32\drivers\rasl2tp.sys [PX5: 04361C2480BC21BEC86000FE8376D300F6D5AE51][G] c:\windows\system32\drivers\i8042prt.sys [PX5: DA98A4B800100080CD5600D07A196E00FE352846][G] c:\windows\system32\wuauserv.dll [PX5: D655E2BD006B6C121A3600AA1DD8A100BDD22212][G] c:\windows\system32\drivers\videoprt.sys [PX5: 377F3A12008678163F89010948A33F00D705246B][G] c:\windows\system32\drivers\cdrom.sys [PX5: C199071200DE4547F6A400CF6EE9C000D563E181][G] c:\windows\system32\drivers\hidclass.sys [PX5: 58962C52003149AD90AA00A3D0DBC5000F414D33][G] c:\windows\system32\drivers\serial.sys [PX5: 00865C28000F2474FC1F00FA0520250061ECD21F][G] c:\windows\system32\drivers\rdpdr.sys [PX5: 82D5CECB80D432D9FE04025BA4D770006B8DDA66][G] c:\windows\system32\drivers\netbt.sys [PX5: 10240F6500B6E3837C9E02C94F390000DA1650D3][G] c:\windows\installer\{911a0409-6000-11d3-8cfe-0050048383c9}\mspicons.exe [PX5: 596308E9002398902089003B3C2E070007F54D58][G] c:\windows\system32\drivers\ikhlayer.sys [PX5: 36D9FFC0005153FFC9ED0074F3BC8E00BDEBA73F][G] c:\windows\system32\wbem\wbemprox.dll [PX5: 132047FE004FD6A84A32001417B63E00A65F092C][G] c:\windows\system32\lmhsvc.dll [PX5: 753D3DF80004F10836A8001631F3D40003C7E48B][G] c:\windows\installer\{911a0409-6000-11d3-8cfe-0050048383c9}\opwicon.exe [PX5: 596308E9002398900E89003B3C2E0700B79BCD14][G] c:\windows\system32\drivers\oreans32.sys [PX5: D35AA6F220D475E8841500DDDDB2F900F399BC9A][G] c:\program files\adobe\acrobat 7.0\reader\acrord32.exe [PX5: E51AA1D3001DE27000F30154D51228009A39C9EC][G] c:\windows\system32\drivers\redbook.sys [PX5: B8EFDA0A00279C0DE1A3008649095C008BB996EC][G] c:\windows\system32\ctfmon.exe [PX5: CB94C76000E5509F3C0D00C310E23300C6DC8A05][G] c:\windows\system32\drivers\nvsnpu.sys [PX5: 13CB953380EC5BE6629903BF1CB49A00CB98F4D5][G] c:\windows\system32\drivers\usbhub.sys [PX5: 028A9D718013183EE8C20091B9A9DF00B4FA14E0][G] c:\windows\system32\drivers\portcls.sys [PX5: 4063DAA88063A56E3A31026918DD9D00E5A06C42][G] c:\windows\system32\drivers\ndproxy.sys [PX5: 0529FE4980554C459E7D0017155F0300464A72C9][G] c:\windows\system32\drivers\wanarp.sys [PX5: D61BDDFF00BF41D487E5002B87E949000AB1F829][G] c:\windows\system32\drivers\ipnat.sys [PX5: 1F7F2BD10003DE0655BE02D5B028F400DFB3DD71][G] c:\windows\system32\irmon.dll [PX5: 480A72BD00C001756E3500176AC4E10090849739][G] c:\program files\aim\aim.exe [PX5: 81F28CDF58AC62240600014B15F20600B2ABEA6D][G] c:\windows\system32\drivers\ndisuio.sys [PX5: 2EA05445002F5FBA39F20007FCC82A00618DCF3E][G] c:\windows\system32\drivers\ipsec.sys [PX5: 79A0224700FAFF4326830149CF7DA0000DFE2E8B][G] c:\windows\system32\drivers\psched.sys [PX5: C7C1320E008655110E77011715C66E007F5FF524][G] c:\windows\system32\drivers\nvenetfd.sys [PX5: C386085400B9171F8523009217A753009EA857F1][G] c:\windows\system32\drivers\raspppoe.sys [PX5: A8F2C94800B2E031A21A00F0EC682E00315F4F25][G] c:\windows\system32\drivers\nic1394.sys [PX5: 6A6B604D8063736BF1A600F2F0678F005B5068A6][G] c:\windows\system32\drivers\raspptp.sys [PX5: B1A119FE00E7C604BDD8000AFFA89E000AC425E1][G] c:\windows\system32\drivers\ks.sys [PX5: 87503DB3004DD623274B02500D0F0100F925AF13][G] c:\windows\system32\drivers\imapi.sys [PX5: 3B4CF15D80843BB7A4700016353E4C009D72AA2C][G] c:\windows\system32\drivers\parport.sys [PX5: F776B5280062C95539840181DB20C800A77BAF7E][G] c:\windows\system32\olesvr32.dll [PX5: 7E62B1ED007B08F8568600C754444A00560D8BDA][G] c:\windows\system32\dllhost.exe [PX5: 2F69F593009D1EFC149C00811EF228005C6CA1AE][G] c:\windows\system32\drivers\usbport.sys [PX5: 2DE2E261000BE51B321102D489119600D037C29D][G] c:\windows\system32\dimsntfy.dll [PX5: 7EB5DB340088A1FC4C3E0095F003C30032DE978C][G] c:\windows\system32\drivers\nvnrm.sys [PX5: DEDE0F590044C19E99680419984F3100F1EDD14C][G] c:\program files\aim6\services\os\ver5_2_1_1\aolidlemon.dll [PX5: 2702B6410061A3B516C400016CDD9800839564D8][G] c:\windows\system32\dnsrslvr.dll [PX5: 327B6B0A00BF13C3B24D007BB049370088CEB624][G] c:\windows\system32\hidserv.dll [PX5: E61B40500047D176543600AE3884340067E3CEB6][G] c:\windows\system32\ersvc.dll [PX5: A5777AB200BD22FA5A0E00A00E08AD000600030C][G] c:\windows\system32\autochk.exe [PX5: D4D8D70000F62E74FC7B081CADAC9C002A5BD1C7][G] c:\windows\system32\vct3216.acm [PX5: A8B5CFD700A70B57440E012658B30500CBDE42E1][G] c:\windows\system32\drivers\mrxsmb.sys [PX5: 24D415A780CEFA02F2BA06AE34390000BAECA386][G] c:\windows\system32\drivers\dxg.sys [PX5: 44B3ED82006E893D169701DEBB322F00F12E58E5][G] c:\windows\system32\drivers\tcpip.sys [PX5: 7425FFD4801F976C845E057FA12DE300FB2DB5ED][G] c:\windows\ehome\ehdebug.dll [PX5: E8938C87009E02FF502E000B3E8C100025749205][G] c:\windows\system32\digest.dll [PX5: A00C1B6600F0C5040C3801815EAE14006EED8AFB][G] c:\windows\system32\olethk32.dll [PX5: CEC8999C003288860E0C0128F5CE08009A1EC821][G] c:\windows\system32\verclsid.exe [PX5: 8A73606F001ADF15700B00AB40E4BA00C4164171][G] c:\program files\viewpoint\common\viewpointservice.exe [PX5: B47E2B294C18F12860E9002DDDE82A00BF0A4851][G] c:\windows\system32\seclogon.dll [PX5: CDB152E60063EECA4A1500ECCEADA500BB03B0F7][G] c:\windows\ehome\custsat.dll [PX5: C2BF4F7000712E1070FF007CA62306008D656C46][G] c:\windows\installer\{c8b0680b-cdae-4809-9f91-387b6de00f7c}\roxiocentral.exe [PX5: 7EDF4D1B00FE75A296D0009F080D4400CE0512AC][G] c:\windows\system32\olecli32.dll [PX5: 30D77973002FE5922483014453F04300B784087C][G] c:\windows\system32\atl.dll [PX5: 854E1742002CA8F7E6AD00F6BFE6E50029333F0D][G] c:\windows\system32\drivers\afd.sys [PX5: D0DAC555003648FC1D6402AEB1A30300B6AA81C4][G] c:\windows\system32\drivers\usbscan.sys [PX5: A345B33E004758873B29000DE02C9B00FEA79BC2][G] c:\windows\system32\audiosrv.dll [PX5: D7DB4C9200AB40CAA62C006B35719B00FD85488A][G] c:\windows\system32\oleaut32.dll [PX5: F1BF671F00A3B5FD6CFD0811188D0100439FD04E][G] c:\windows\system32\regsvr32.exe [PX5: C5FE226D008691252EFD002A160A72003C8DB9B3][G] c:\windows\system32\spoolsv.exe [PX5: 2C3E540B00AFB573E240000320EF83001114DA67][G] c:\windows\system32\msvcrt40.dll [PX5: 4C466E63000D1FD5F04B00840DBA480010420A33][G] c:\windows\system32\msvcr71.dll [PX5: 3FEE1145002F2EB8504E05ED76DA9100776D97E7] Link to post Share on other sites More sharing options...
maryamian Posted August 12, 2009 Author ID:109089 Share Posted August 12, 2009 [G] c:\windows\microsoft.net\framework\v1.1.4322\msvcr71.dll [PX5: 3FEE1145002F2EB8504E05ED76DA9100776D97E7][G] c:\windows\system32\drivers\nv4_mini.sys [PX5: 7A0B670D809E0D92E09E35CD10B28B000A5DF00E][G] c:\windows\system32\userinit.exe [PX5: 0613A90800B667846685004BBE2CC4001B48D183][G] c:\windows\system32\wow32.dll [PX5: C25D06E1001FD52408B904A3F3DF2400AA0C210F][G] c:\windows\system32\drivers\update.sys [PX5: 355F58320023AEC7DF8C05CE3C3D20001B8BA7AA][G] c:\windows\pchealth\helpctr\binaries\pchsvc.dll [PX5: 27F0DA3A0030E84B960000162B2B1A00EBEB053D][G] c:\windows\system32\shsvcs.dll [PX5: D166130200C438E410B102D283C4830010B23EEE][G] c:\windows\system32\riched32.dll [PX5: 0785233100BF81190E9500044BCB3C00B79BCD14][G] c:\windows\system32\rundll32.exe [PX5: 8F5576C400BCA32982A2003396ABA600A90A8D28][G] c:\windows\system32\dmserver.dll [PX5: 664879EF004873EA5CD80090469AD500A8DE32C5][G] c:\windows\system32\wups.dll [PX5: 6C3A0D501835396B866D00A4D094600028D4A328][G] c:\windows\system32\msxml3r.dll [PX5: 05EF1A3B0006749EAC170053C6162C00E97C751A][G] c:\windows\installer\{911a0409-6000-11d3-8cfe-0050048383c9}\misc.exe [PX5: 596308E9002398908689003B3C2E0700AC9364B5][G] c:\windows\system32\drivers\srv.sys [PX5: DF17B993808FD02718F5050A355CBF00DBE6CD38][G] c:\windows\system32\shgina.dll [PX5: DA29534A00E65D910A3A0170F071ED006448135D][G] c:\program files\msn gaming zone\windows\chkrzm.exe [PX5: D2F98FB44F2091ACA65800E4BD934800E1EEBDD3][G] c:\windows\system32\tssoft32.acm [PX5: 597C225A00229E5420CD00D6CE33FD0070CD831A][G] c:\windows\system32\raschap.dll [PX5: 0508ADD300CA923E3853013F40B16500374391EA][G] c:\windows\system32\cscdll.dll [PX5: 6AB5781A004A38778E4F0194656CA000B3561D3A][G] c:\windows\system32\rcimlby.exe [PX5: 912158E000C4E8218CF9005304D1CF00B66DC8C0][G] c:\windows\system32\drivers\wdmaud.sys [PX5: E126BB778045B8DA444001D16C1BB100FFD9144B][G] c:\windows\system32\services.exe [PX5: 9AEBA78900306725B02501CDF5F5F9000449B6FD][G] c:\program files\aim6\aim6.exe [PX5: DFAAC2EB301BBFCCC34700019B419F0091D01FA9][G] c:\windows\amcap.exe [PX5: 5067C5560021181BC087006B4FC02800393A94F0][G] c:\windows\system32\ntvdm.exe [PX5: 8E84EEF50012DE386C3C06242FF6B2009EF98CFB][G] c:\windows\system32\drivers\swmidi.sys [PX5: 2892580B00DCE1F2DD42008A125D7D002F2F9BB3][G] c:\windows\system32\sens.dll [PX5: B0F2A844000077599AF400C849E81F004EA36845][G] c:\windows\system32\drivers\irda.sys [PX5: 6E9CFA0F80CAB40C582701B8BD9C2A00A3251492][G] c:\program files\outlook express\wab.exe [PX5: 147E31F000814DFFB49D004825D9CA00992AC238][G] c:\windows\system32\qutil.dll [PX5: D4E896C000DB078C2C86016576B90500AC34262F][G] c:\windows\system32\freecell.exe [PX5: 403AAAC000A89970D8BA0061D34EDA00F3566931][G] c:\windows\system32\cisvc.exe [PX5: D5D1B1490056D51B1622004596EDB600245D3C9A][G] c:\windows\hh.exe [PX5: 712F786F00A85F102A74001DD3E7A500A5652C16][G] c:\windows\system32\drivers\sysaudio.sys [PX5: 2926AFDF803A44F7ED6500393AED6500DE71464F][G] c:\windows\system32\drivers\dmusic.sys [PX5: 64B493018066E6FACEE6008D21636D0042F7754A][G] c:\windows\system32\wlnotify.dll [PX5: D242426E0025CDC66A240113BC59EF00384EFF7C][G] c:\windows\system32\regsvc.dll [PX5: B4C8481E00926B15EA8700E228BD2D00705B47FD][G] c:\windows\system32\fxsroute.dll [PX5: C41F1C2B0022ADCF7C6A00FA3F4FBF002C446112][G] c:\windows\system32\userenv.dll [PX5: 7D0C54FC00D558AF18FD0B98F15F2400E7DD2C29][GP] c:\program files\irfanview\iv_uninstall.exe [PX5: 3FDDD87F00797F3F7E2F008635F63000D40C7BF5][G] c:\program files\common files\research in motion\rimdevicemanager\rimdevicemanagerps.dll [PX5: 21BA2EBB18C7C7FF466900A29BD7F300BD024492][G] c:\windows\system32\ntoskrnl.exe [PX5: E59770C3005E5A34679B21E4CB1EAF00D0F80B9A][G] c:\windows\system32\dfrgres.dll [PX5: 2A4660C100D15103C87100F0EAC2A500680BC1BA][G] c:\program files\msn gaming zone\windows\hrtzzm.exe [PX5: A120241B4D2091ACA65800E4BD934800F30BCC30][G] c:\windows\system32\msapsspc.dll [PX5: D8E201FA000FF52050DB0141C2F66200C9E004B0][G] c:\windows\system32\dciman32.dll [PX5: EEFA5886009D95C822CD00023FA00800BF0CDB28][G] c:\windows\system32\crypt32.dll [PX5: AD998D3200402CF424EA09AC1C725E00ED7D609D][G] c:\program files\outlook express\msimn.exe [PX5: BADD420800B66EAEEC1A0098F08022006BF3A5A9][G] c:\windows\system32\ole32.dll [PX5: 86990610000029A0A4D013399F311F003975581D][G] c:\program files\scar5\simple file shredder\unwise.exe [PX5: 76534BB934B12F307F6600CB7BC79600E17841A2][G] c:\windows\system32\advapi32.dll [PX5: 108EDF9D00560DAB6C91097FF5C5DE00DFD01D4C][G] c:\program files\msn gaming zone\windows\rvsezm.exe [PX5: 07B1F6904E2091ACA65800E4BD9348007BE2F35E][G] c:\windows\system32\defrag.exe [PX5: 56453841008F9E9E6206004B549BE0001BED168F][G] c:\program files\common files\real\update_ob\rnxproc.exe [PX5: 54F7ACC52B7577A1D0FC001F1379D4008FBAC749][G] c:\windows\system32\dumprep.exe [PX5: 3CD7A83900FE0E962AD30017414DC1005454D297][G] c:\windows\system32\cryptnet.dll [PX5: F876046E0017B9B3FC73009B9C2E1600A88C4CCE][G] c:\program files\msn gaming zone\windows\shvlzm.exe [PX5: D11A9C8E4D2091ACA65800E4BD93480039A9A1E4][G] c:\windows\system32\w32time.dll [PX5: 150FF7C200B6FB7DACEE024C89D9290051B2E38D][G] c:\windows\system32\tsbyuv.dll [PX5: 020E89D8009F301B205E00B4BB4D90004F05B8D0][G] c:\windows\system32\utilman.exe [PX5: 772422F0005C0FE1C43100A2BB0565004676E429][G] c:\program files\yahoo!\browser\ycommonps.dll [PX5: 196CB6810089472D98CF0073DEAC4200EF96BA55][G] c:\program files\common files\roxio shared\9.0\roxio central33\main\msvcr71.dll [PX5: 3FEE1145002F2EB8504E05ED76DA9100776D97E7][G] c:\windows\system32\scecli.dll [PX5: 7679900B009D4AC2C4D202E7656B9C003BB22588][G] c:\windows\system32\hpzipm12.exe [PX5: 7A78994B00CB7ED810E801BB922DBD00B7232CAF][G] c:\acer\empowering technology\erecovery\int15.sys [PX5: 23CA444F007FA10A1067018EEAD1C40040072CC2][G] c:\program files\divx\divx codec\config.exe [PX5: EB747D0200BE07A510450124E9C50000C5D51B63][G] c:\windows\assembly\nativeimages1_v1.1.4322\system\1.0.5000.0__b77a5c561934e089_1fbc227c\system.dll [PX5: 0510C38700266CC600AE1EB9AE2D3300FB58F54C][G] c:\windows\system32\alf2cd.acm [PX5: CC3B55D5003C64F0984800E0ABECCF009D0F31C1][G] c:\windows\system32\alg.exe [PX5: B789899500A84BB2AEC2005EDE65FA004F6B7ADA][G] c:\windows\system32\dpcdll.dll [PX5: E3DBC12D00CDD471923801140340FC00568FD586][G] c:\program files\windows media player\wmplayer.exe [PX5: BC26C9AA0083E80D20C9012DDDE82A00EFD2DABF][G] c:\windows\system32\ddrawex.dll [PX5: C3FD577200B283256A6600138BE67A00E0BD7D61][G] c:\windows\system32\wbem\wbemsvc.dll [PX5: 6568ADE8003B1D86AA8E0003FEA82A00E155B695][G] c:\program files\asio4all v2\uninstall.exe [PX5: 9D73734254BD45F291ED00D9B9B24E00F72FA83A][G] c:\windows\system32\wups2.dll [PX5: C42F62EC18C4806CAA68006E7A0A2200A2691D5B][G] c:\windows\system32\actxprxy.dll [PX5: 7598919E0068D36880CC0160E5FE09005D32E2CD][G] c:\windows\system32\msiexec.exe [PX5: 9DB9C50B0024726334560107FE07E90063E9AF4B][G] c:\program files\divx\divxbundleuninstall.exe [PX5: E33A5E11A2D0FE9AD21501462629D000E76E885B][G] c:\program files\divx\divxcodecuninstall.exe [PX5: E33A5E11A2D0FE9AD21501462629D000E76E885B][G] c:\program files\divx\converteruninstall.exe [PX5: E33A5E11A2D0FE9AD21501462629D000E76E885B][G] c:\program files\divx\divxplayeruninstall.exe [PX5: E33A5E11A2D0FE9AD21501462629D000E76E885B][G] c:\windows\system32\msvcp71.dll [PX5: F133D4F000B92F08A0E107FD67B66E0015498C05][G] c:\windows\system32\wgalogon.dll [PX5: 89BDBABD808784849D2F0353EC03460054184949][G] c:\windows\system32\wmdmlog.dll [PX5: 2DE0CF530028634E721600885027F300C4905E59][G] c:\program files\windows nt\hypertrm.exe [PX5: B1DC079C00042D126E91004E483784006179C6DE][G] c:\windows\ehome\ehrec.exe [PX5: 3870FD5100242A58008201A6C8446F006E4F4E64][G] c:\windows\system32\msdtc.exe [PX5: D735FD5500DFAC041825006A47ED380003F21379][G] c:\program files\common files\research in motion\usb drivers\bbdevmgrps.dll [PX5: 9B70FFDC00C997CD905C00B1E07907000849884B][G] c:\windows\system32\cryptsvc.dll [PX5: 0CF0D5DA008D33B5F44700CE2F16B1004455F22C][G] c:\program files\adobe\acrobat 7.0\reader\plug_ins\accessibility.api [PX5: 78E123096345EE5B62B00412C0B607003472755E][G] c:\windows\system32\credui.dll [PX5: F6D4141D00A0D7EA800D028F78037800E82BB486][G] c:\windows\system32\devenum.dll [PX5: EC5E7929005F694AEAA300CDDC67AE0036A46253][G] c:\windows\system32\winspool.drv [PX5: 17029B7800279B203C95024FF9397B00387A281B][G] c:\program files\common files\roxio shared\dllshared\rsl.dll [PX5: 58AF63A9F81119F2EA6F026D6D6933003168168E][G] c:\windows\system32\wrkgadm.exe [PX5: 5C132AD600FF88C4B8120007CC9E510078165D6F][G] c:\windows\system32\ups.exe [PX5: 4DEFCBFD000750CB4840003FB8388C006598A745][G] c:\windows\system32\mfc71enu.dll [PX5: 54BFB26A00BC1407E09D0097B52AC40032F2553C][G] c:\windows\system32\narrator.exe [PX5: F4D57AE500F53615D267008D00B6ED007F54A0C1][G] c:\program files\mcafee\siteadvisor\mcsacoreps.dll [PX5: B6D3586F10905A68DC5F00CD5B75F7005C6E7713][G] c:\program files\common files\microsoft shared\msinfo\msinfo32.exe [PX5: 3B22421A0036A3BB9CFA00953DF8F2007A286172][G] c:\program files\aim6\xprt5.dll [PX5: 71207A5600286E5BD01803BC88699C008E222ECE][G] c:\windows\microsoft.net\framework\v1.1.4322\diasymreader.dll [PX5: 476E85BC00EE9AA8000208C8426E49002D0AD3DD][G] c:\windows\system32\msrle32.dll [PX5: 1420D17D00CC99E82CC4007CCA44AA00259EBF0E][GP] c:\program files\divx\divx codec\divx ekg.exe [PX5: 3E0A4A4B0037E57F36C9058C2BCAED007B640969][G] c:\windows\assembly\gac\system.enterpriseservices\1.0.5000.0__b03f5f7f11d50a3a\system.enterpriseservices.thunk.dll [PX5: 604B322B00D214B2046E016DE41120004B698180][G] c:\windows\system32\wbem\ncprov.dll [PX5: 8BE428060018C3A6B854006922DCA8005FBA3C8B][GP] c:\program files\divx\divx player\divx player.exe [PX5: 1BB9EFDB00364900DAFE1B41EC981D001D81FA9B][G] c:\windows\system32\oleacc.dll [PX5: FAA4AC3F0002ADDD7E28028782D31F00A80D6E36][G] c:\windows\system32\drivers\hpzipr12.sys [PX5: 5B17F3C870C51706409F00F8541152007F74EC60][G] c:\windows\system32\mswsock.dll [PX5: FD2E191F002FA312BE48031E2CCECC00A5996271][G] c:\windows\system32\colbact.dll [PX5: F04EE84000CE684BECF500333682E40081A525C3][G] c:\windows\system32\drivers\alcxwdm.sys [PX5: BCEF9F1440462E69E1733868CECDB90084FD2300][G] c:\windows\ehome\ehui.dll [PX5: F74332270069FC95828E0707613E76001179C79B][G] c:\program files\common files\aol\aoldiag\tbdiag.dll [PX5: 7500DAAB00FCF767A67F015FB6CCD900C2A492DD][G] c:\program files\canon\camerawindow\camerawindowmc\cameralauncher.exe [PX5: ADFFF237007E0B2F00B9017573021800F70FA575][G] c:\windows\notepad.exe [PX5: FD8DC2910094FF110E8201400A0F9A003EC28B26][G] c:\windows\system32\notepad.exe [PX5: FD8DC2910094FF110E8201400A0F9A003EC28B26][G] c:\windows\system32\msnsspc.dll [PX5: 4E787F7C007125B870270457B93FE30029382DDE][G] c:\windows\system32\dhcpcsvc.dll [PX5: 40D6F23F00F5F1B8F09801A4C901440083D483E7][G] c:\windows\system32\webclnt.dll [PX5: C75854BE0039755D0A7301A04CD40600314CB558][G] c:\windows\system32\msctf.dll [PX5: C3B0B12D004CE2818C4B04F7767687008FB6F6D5][G] c:\program files\hp\digital imaging\devicemanagement\hpzscr01.exe [PX5: 7AA204650037F8E5F0930EFE16B9F400128BF41D][G] c:\program files\hp\digital imaging\esupport\hpzscr01.exe [PX5: 7AA204650037F8E5F0930EFE16B9F400128BF41D][G] c:\program files\hp\digital imaging\extcapuninstall\hpzscr01.exe [PX5: 7AA204650037F8E5F0930EFE16B9F400128BF41D][G] c:\windows\system32\activeds.dll [PX5: EA491D60001D00B9F42602688B0BCE00C61B5E26][G] c:\windows\system32\ssdpsrv.dll [PX5: AF75BF8E0025D5D3188E01AB32886C00DACF9746][G] c:\windows\system32\hhsetup.dll [PX5: C6CDFE5D005A2042A2AA0032A3BF9900BA7A29FC][G] c:\windows\system32\magnify.exe [PX5: DE0567A30076E05F1C9601635E5A01005E42688B][G] c:\program files\research in motion\blackberry\connectors\lotus notes5.0\ptstatefile.dll [PX5: E5DA60C25C6CDA34B05500E1CBC3CE00D22086FE][G] c:\program files\research in motion\blackberry\transaction manager\ptsps.dll [PX5: 0BFC39A6000870C58012002DDDE82A004EAEF360][G] c:\windows\system32\vdmdbg.dll [PX5: EB59BC9600BE3CB66628001B22228E00DEF5ED30][G] c:\program files\divx\divx converter\converter.exe [PX5: 3490454300A577BE707023957B8013004141E69A][G] c:\windows\system32\sfcfiles.dll [PX5: 7CD1653B00D166EDA45A1818D5EA0600CFD51303][G] c:\windows\system32\msg711.acm [PX5: DC7633F80078CFD524560012D62AF30041BAFEED][G] c:\program files\interactual\interactual player\inuninst.exe [PX5: 294FE0DD0079BDBB06250282B40077007C4DD3E5][G] c:\program files\spyware doctor\tools\iesdsg.dll [PX5: E7A9BD1DB82ED32D08E30CA7861335005A30B243][G] c:\windows\system32\mshearts.exe [PX5: E5A701F300435440F07E0185465A09006C8CFB7F][G] c:\windows\system32\msvfw32.dll [PX5: 48A5C919001ACDE3DADB0151869B9E00D9DA3C2B][G] c:\windows\system32\dispex.dll [PX5: 249B0EDF00B33B56801400CF7105110026C02D66][G] c:\windows\system32\odbcad32.exe [PX5: F92393A000E9D72D8056002DDDE82A004D5EA0EA][G] c:\program files\spyware doctor\tools\iesdpb.dll [PX5: DA4C462FD8D0FB75B6270C4319142400E5F6CC0A][G] c:\windows\system32\termsrv.dll [PX5: 30BAF65500E4A7EC826904068FDE7300EDFC2450][G] c:\windows\system32\drivers\aec.sys [PX5: E884BE24008C5EEB2D92028B46462900B520927C][G] c:\windows\system32\hnetcfg.dll [PX5: 989AB4C7000387E440C2051970E9AD0034A1D25A][G] c:\windows\microsoft.net\framework\v1.1.4322\mscorsn.dll [PX5: 17792AC6001E46E4309501ADD189730029C88BC1][G] c:\windows\system32\drivers\hpzius12.sys [PX5: C38FC9C8406EC10C549F00F5B3743B0010437A65][G] c:\program files\aim6\services\os\ver5_2_1_1\os.dll [PX5: F7F2CFC30069DFEDC27B02B4D8773A000261B8E4][G] c:\windows\system32\winmine.exe [PX5: 52F0627C0031322CD40D0193E78B8A0077E0877B][G] c:\windows\system32\ntshrui.dll [PX5: 29BDD5AC0009150A3035021BF8E9EF00AF58C1CF][G] c:\windows\system32\srvsvc.dll [PX5: 183E11970045D42D7A4D01E50F626200F0A0187C][G] c:\program files\research in motion\blackberry\connectors\lotus notes5.0\lnapisn.dll [PX5: 1D1457E654AAB329A062007F81AF4E00F9C92374][G] c:\program files\cyberlink\powerdvd\olrsubmission\olrsubmission.exe [PX5: D29F5DD30013256870CE01DBA5ECA90017304BAB][G] c:\windows\system32\shdocvw.dll [PX5: EAF57A5200D0283CE05A16ECF6095800EE5816B1][G] c:\windows\system32\msgsm32.acm [PX5: 9A33DFDB007F6CC14E65006C65CF6C0089503DD3][G] c:\windows\system32\mnmsrvc.exe [PX5: 22C414FA00D71BFC80AE005F190EAC0038C2BD4F][G] c:\windows\system32\msadp32.acm [PX5: 43EA9641003A7B4A3AD6006C04773700C40FC867][GP] c:\program files\lavasoft\ad-aware 6\unwise.exe [PX5: DB85556700D403500EE6015B4DF38700248CAB09][G] c:\windows\system32\drivers\usbprint.sys [PX5: 7960B0440094064A6580004CDAAF0B00A19B6FCE][G] c:\program files\yahoo!\browser\ycommon.dll [PX5: 1E2DC3BD00363E93B0A702BF73143B0094AAA84C][G] c:\program files\research in motion\blackberry\connectors\lotus notes5.0\crypto.dll [PX5: 4E5E045352E6B7FDB0FB0040C517970042CCDA58][G] c:\program files\research in motion\blackberry\connectors\lotus notes5.0\lnerror.dll [PX5: F377710854592235D01300B307787D00E6570DAC][G] c:\windows\system32\rpcss.dll [PX5: 65603941001D5273209C06D8028BF70032E3E3F7][G] c:\windows\ehome\ehsched.exe [PX5: F8DBABEF0007C1FF9283018C93ADBB0061DA7B4E][G] c:\program files\canon\photostitch\launcher.exe [PX5: 2649180900C616DCD0F601F2F6E40900B92B5FEC][G] c:\windows\system32\utildll.dll [PX5: 2A725311003C1D68641F00A68CE468009E6B2478][G] c:\program files\asio4all v2\a4apanel.exe [PX5: 176AF2C50085FE762034000E7D2CA80053F06594][G] c:\program files\yahoo!\browser\ysidebariebho.dll [PX5: 65F1CBFF80E52AC9E47A0171F6D5340014E0E83E][G] c:\program files\hp\digital imaging\product assistant\bin\hprbui.exe [PX5: 2382930A0036385C80D30264F678F1007FB7496C][G] c:\windows\assembly\gac\ehcir\6.0.3000.0__31bf3856ad364e35\ehcir.dll [PX5: E9C6853A00B78CC190EA01F36554F0003AA86A5D][G] c:\program files\mcafee\virusscan\naiannps.dll [PX5: EE762CA010F314F4646E00D108326D0086C9E5D2][G] c:\windows\system32\imaadp32.acm [PX5: 670F72DB00745872405A00EDAAA42A00826F0F26][G] c:\windows\assembly\gac\system.xml\1.0.5000.0__b77a5c561934e089\system.xml.dll [PX5: 37B936D600E9E0A0704814170B365B00E2A3106F][G] c:\program files\yahoo!\common\yiesrvc.dll [PX5: C852B6FDF82E471B056A0383DB943D007714E3E6][G] c:\windows\system32\wkssvc.dll [PX5: 3C2DA6C800926FB7044C0255C1DD3B00E3AAA277][G] c:\windows\system32\scg726.acm [PX5: 5F44D1F8B7CE296F337E00A5C951FE007B5C9F1A][G] c:\windows\system32\rastls.dll [PX5: 9B9DADD8004A8CF24A260241116EE200FB68B7B6][G] c:\windows\system32\mydocs.dll [PX5: D9448968002226C862D501419FE6E2009422A2A6][G] c:\windows\system32\browser.dll [PX5: 9E4E3AC30059840230140128590AD900F4248273][G] c:\windows\installer\{6994491d-d491-48f1-ae1f-e179c1fffc2f}\newshortcut2_d7cae58e26de49b7a75deaedf76726be.exe [PX5: 83175BBA00EE75820029017EABC63200935E7758][G] c:\windows\installer\{6994491d-d491-48f1-ae1f-e179c1fffc2f}\newshortcut3_d7cae58e26de49b7a75deaedf76726be_3.exe [PX5: 83175BBA00EE75820029017EABC63200935E7758][G] c:\windows\installer\{6994491d-d491-48f1-ae1f-e179c1fffc2f}\newshortcut7_856d48883b484d0c99d439aa7cf9db2e.exe [PX5: 83175BBA00EE75820029017EABC63200935E7758][G] c:\program files\newtech infosystems\nti backup now! 4\schdlr32.exe [PX5: 4E2B482300262B36501201E42CE41500CA86B75A][G] c:\windows\system32\msimtf.dll [PX5: E2DD118E000F55CA6EC8021E4FB48B000F3BD71F][G] c:\windows\system32\trkwks.dll [PX5: 4B9397CA00819F9D60D5011C8E194300091B88BC][G] c:\windows\installer\{9f70bf98-003c-491d-81fc-ff9792206af0}\itunesico.exe [PX5: 33E4300B00A59BF490E70159196C830030AF516C][G] c:\windows\system32\msxml4r.dll [PX5: C82EFC7600CA883242FC01997ED3CB0007986FEA][G] c:\windows\system32\duser.dll [PX5: AEABDC1800DBB5B7A4D70463ACEEAB00E39D7EA5][G] c:\windows\installer\{1e04f83b-2ab9-4301-9ef7-e86307f79c72}\newshortcut1_407b9b5cdac54f44a756b57cab4e6a8b.exe [PX5: 83175BBA00EE75820029017EABC632000C177935][G] c:\windows\installer\{1e04f83b-2ab9-4301-9ef7-e86307f79c72}\newshortcut2_407b9b5cdac54f44a756b57cab4e6a8b.exe [PX5: 83175BBA00EE75820029017EABC632000C177935][G] c:\windows\system32\drivers\rimusb.sys [PX5: 9BE3EA0100C1D93E5924006346088A0099C0F9F6][G] c:\windows\ehome\ehproxy.dll [PX5: 26ACCE3000106D157CDC01B0DF89D600BCA2FC95][G] c:\windows\system32\logonui.exe [PX5: BF1102EF00DFE871DAC607CB179E3F00C65083F4][G] c:\program files\vuze\azureus.exe [PX5: 4E6BC4E8B87C18270B3403A7DE45BE00A531961C][G] c:\windows\ehome\bdatunepia.dll [PX5: F05910F5009C19EFCA4201F01A343C006C804DC0][G] c:\windows\system32\wbem\wbemcons.dll [PX5: 29A0C35900DF4AAF186E01373F431300B5FB3F58][G] c:\windows\system32\drivers\mpfp.sys [PX5: 20F0355248A6861BD57801F686B34F008AC3FEBB][G] c:\windows\system32\sol.exe [PX5: 744E2F240079E79BDE49002FD274C40091B63639][G] c:\windows\microsoft.net\framework\v1.1.4322\mscorrc.dll [PX5: 15A57D3200E00F8730DE022DDDE82A006AC7EF6A][G] c:\windows\system32\syssetup.dll [PX5: EF772350005B02DE1C7C0FFF6FACEE00E29FA887][G] c:\windows\system32\wgatray.exe [PX5: 89834356806401A8239905F4B9B53D0050E4440B][G] c:\windows\system32\msyuv.dll [PX5: 554DF4EE009C57AC426300B7F28F900002B07C35][G] c:\windows\system32\grpconv.exe [PX5: B26B792A00A967DD9AE400D62E1982008B903D69][G] c:\windows\system32\wbem\wmiutils.dll [PX5: EDBF77E800B33E1B74C0011987149F004B6BBC22][G] c:\windows\system32\msvidc32.dll [PX5: 3BCEDE7A00AD9815642A00A6E14FCB00635E3B9B][G] c:\windows\assembly\gac\ehepgdat\6.0.3000.0__31bf3856ad364e35\ehepgdat.dll [PX5: AC6EC9C5006AE2BAF00301950F0F5D00F9CC6D81][G] c:\windows\ehome\mcrdsvc.exe [PX5: EAD885DD00465B78846C01CD3B9560006BD12DE6][G] c:\windows\system32\netmsg.dll [PX5: 8D21325B000692149C5102AAEAB7370028A0AAA8][G] c:\windows\system32\clbcatq.dll [PX5: 35958F7D002E27A79C0407A517406300FAA57590][G] c:\program files\windows plus\dancer\dancer.exe [PX5: 96F2ACB400AEE7C1E05602454B2EFE00DF6D6733][G] c:\program files\research in motion\blackberry\connectors\lotus notes5.0\lntrace.dll [PX5: ADDC2D0554C80DF0D04600F7BC021E0000596DB6][G] c:\windows\system32\drivers\kmixer.sys [PX5: 1C3250A68067C4B7A11302D8512D9900630738EA][G] c:\windows\system32\moricons.dll [PX5: E56926A30036FA024CDE03D68DFCC300DDCA92A9][G] c:\program files\icqlite\icqliteuninstall.exe [PX5: B994A96488ECEA07E2300083BD4CFC001D4BAE16][G] c:\windows\system32\mobsync.exe [PX5: 1EBBEF6600CB46B7300C020A24EABF000DEF5353][G] c:\windows\system32\nvsvc32.exe [PX5: DEB22A6F43B4CA5100CE022E0F1228003DD41C46][G] c:\windows\system32\upnp.dll [PX5: E3BF8D3700F4E8D60A6702940B6910003C25A5C4][G] c:\windows\assembly\nativeimages1_v1.1.4322\ehcir\6.0.3000.0__31bf3856ad364e35_88687002\ehcir.dll [PX5: 6F41768200F38C14706F02A84C98AB001D06E13E][G] c:\windows\system32\wmasf.dll [PX5: E089FC19004C2A3F7E1903BA7E86F1001EAA66CE][G] c:\windows\system32\cscui.dll [PX5: DEEE6D6A0038DE9BFC550450E0237200D75A942E][G] c:\program files\common files\roxio shared\9.0\sharedcom\leresourceloader.dll [PX5: 6002D3E3F83E1F554AF1025FA1FCF7009BC29757][G] c:\windows\system32\mmcshext.dll [PX5: 3D31D796006974CBF01F0017BA1272002D1CBB34][G] c:\windows\system32\msutb.dll [PX5: 271C5197004C3CBBFA2902C6E6D60C00D6FB9860][G] c:\windows\system32\stobject.dll [PX5: D02B2DF0006D0BB4DC3901FE033F14003F0DC410][G] c:\program files\research in motion\blackberry\connectors\lotus notes5.0\lnsessioninfo.dll [PX5: 7E938BDE60DD9E92D0030004F92F5E00D3CBBA95][G] c:\windows\system32\mycomput.dll [PX5: AD56BA03005FAA986015012A75E0D4000CD93E86][G] c:\program files\windows plus\audio converter\audioconverter.exe [PX5: E6DFA32900F20DC0580B03454A75E70017CCC57B][G] c:\windows\system32\schedsvc.dll [PX5: 9444E0060086DBBDF05802BD50A2940088BB3C41][G] c:\program files\common files\real\update_ob\r1puninst.exe [PX5: 8A4187E62EB8EE64D0E30210F8434700A9DFF726][G] c:\program files\common files\roxio shared\9.0\sharedcom\cpscommonenglish.dll [PX5: 784529C9F85736DB1AF6022DDDE82A001C89121F][G] c:\program files\limewire\uninstall.exe [PX5: 0D0D749AD2DFF216975601D43B0C470001D7D0A9][G] c:\windows\system32\mdminst.dll [PX5: 85A1669F00F7068FCE11013FDF01E0006C2DCCEB][G] c:\windows\system32\wdfmgr.exe [PX5: 1BD6524000DFAD65989E0037D087BF00E9DEFBEB][G] c:\windows\system32\cleanmgr.exe [PX5: C051518D00389E7FFA100005A3F0220050DB3D39][G] c:\windows\system32\msxml6r.dll [PX5: 67441D7C00AF050838D2010D63D210002E51D46D][G] c:\windows\system32\netman.dll [PX5: 4E1944A20015947A060103C9FE774900B4EA626D][G] c:\windows\system32\ac3acm.acm [PX5: 6732A8410031C4E5408A010540795E00978E7D0E][G] c:\program files\yahoo!\browser\ycommon.exe [PX5: D30CC9DE006832C61069039CD892F100A10A379C][G] c:\program files\microsoft office\office\setup\acme.exe [PX5: 29F1CBDCD040133221D001CAA1945B00174F73A0][G] c:\program files\windows plus\cdlm\cdlm.exe [PX5: 22D8107E002DAE526ABC024192FB7C0000486FD1][G] c:\program files\icqlite\icqlite.exe [PX5: 0D464CA6609A1995FC232F3828B380002F3B2FF5][G] c:\windows\assembly\nativeimages1_v1.1.4322\ehepgdat\6.0.3000.0__31bf3856ad364e35_51373e3b\ehepgdat.dll [PX5: B295215200A3EFF4901502F71D1C40005C5003B0][G] c:\windows\system32\wscsvc.dll [PX5: 72FC485F0019049B3C1E018CC4ED45002A0978B3][G] c:\windows\system32\drivers\hpzid412.sys [PX5: 09FFD89F0041E3B2C2F30002258347006065E52B][G] c:\windows\system32\icmp.dll [PX5: 24D53AD7008296AF0EE500046D93AE00B79BCD14][G] c:\windows\system32\certcli.dll [PX5: 0D679EC600C87583F8ED024F64A2BA009D8C7764][G] c:\windows\system32\davclnt.dll [PX5: 11B60FBE00C59DDE62E50077215C9A0010E6D32A][G] c:\program files\windows plus\party mode\partymode.exe [PX5: D1A026790097FEC444F8020E545CDA0012B05DEC][G] c:\program files\winamp\uninstwa.exe [PX5: 4E12924CFC4BC4B4326002F012833A00CE7F9112][G] c:\windows\system32\winhttp.dll [PX5: 5AAD54B800C2C306687605282D69D50055EA8FC2][G] c:\windows\system32\dllcache\rpcss.dll [PX5: 65603941001D5273209C06D8028BF70032E3E3F7][GP] c:\windows\system32\licdll.dll [PX5: 3DAD626500C1A85B788906BC17A1BA0065E1F3DE][G] c:\windows\ehome\ehrecvr.exe [PX5: DD461BEA00D731FBA0B60301CC6D6F00225CC0CF][G] c:\windows\installer\{911a0409-6000-11d3-8cfe-0050048383c9}\outicon.exe [PX5: C71AFF7200E4C034C07F012DDDE82A00F458FA10][G] c:\windows\assembly\gac\system.enterpriseservices\1.0.5000.0__b03f5f7f11d50a3a\system.enterpriseservices.dll [PX5: 6EABE2F800EAF3B6B0AF03FA009D88005268F0FA][G] c:\program files\common files\roxio shared\9.0\sharedcom\cpscommonobjects.dll [PX5: E48C63B4F895595EFAA603FD69A11F00DF8BFDB4][G] c:\windows\system32\wbem\wmisvc.dll [PX5: 3B07B08300577B6A368202367BA21C000BB08031][G] c:\program files\common files\roxio shared\9.0\sharedcom\roxwatch9.exe [PX5: 9208A888F86B3CBD8AE502D1DFBC9F000DA5AFB2][G] c:\program files\windows nt\pinball\pinball.exe [PX5: 2BF7EF2500E473C54A4E04A5A0555A0021EAC41D][G] c:\windows\system32\rasmans.dll [PX5: 39589AF50093F477D80C0200E9CBDE00EAE5AB72][G] c:\windows\explorer.exe [PX5: 7BA51796002B8BEEC6F00FDC583A42008EE45077][G] c:\program files\research in motion\blackberry\connectors\lotus notes5.0\ilxlnic.dll [PX5: D0332304544D800CC02A01BDD4548600DA0E23FF][G] c:\program files\common files\roxio shared\dllshared\homeutils9.dll [PX5: 4528554BF80DEA77DACB06E974BEB70076FAAEE6][G] c:\program files\mcafee\virusscan\scriptsn.dll [PX5: 234F351E40897A51F52500FD312090001A096FD3][G] c:\windows\system32\xvidvfw.dll [PX5: 4B712563004874CD60CC027A4B73D3006E1D7603][G] c:\windows\assembly\nativeimages1_v1.1.4322\system.xml\1.0.5000.0__b77a5c561934e089_adbe0d53\system.xml.dll [PX5: 53214FEE00188170E02D1FAD8D304200A3ADCE8F][G] c:\windows\system32\avifil32.dll [PX5: 71D8D91300D3C7CF4C530176583194008DDBC439][G] c:\program files\yahoo!\common\yloginids.dll [PX5: B1B9DA1BF80E9AD6B5C901E1B18994004D51A3B3][G] c:\windows\system32\mlang.dll [PX5: AFC18083003255DBF2A908B3E0475200D4A898C0][G] c:\program files\yahoo!\common\yietagbm.dll [PX5: 578749ECF8B99F0AD52701F21F872D001713749D][G] c:\windows\system32\iccvid.dll [PX5: A27A2BC700B613C43AD801C8860B8A00BA38D1F0][G] c:\windows\system32\es.dll [PX5: 8E891A9B00B4C50BE0500394EBDFDB002A4F5639][G] c:\windows\system32\netshell.dll [PX5: 61AA3067007FDDFC00561A3DDD219400741E7429][G] c:\program files\real\realplayer\realplay.exe [PX5: 54FAA4342D9B2EF230AB039E2EE57500F68E268F][G] c:\windows\system32\srsvc.dll [PX5: 2364DCDC00CD339A9C7C02203257E4006FC3E354][G] c:\windows\system32\wmdmps.dll [PX5: 4F7AF4BB005C5475923D00EA0C6308000725DB79][G] c:\program files\common files\roxio shared\dllshared\rcsl.dll [PX5: 3038E478F8EECF6EDA080291310F290099A9E3ED][G] c:\windows\system32\iyuv_32.dll [PX5: 745B2CD80029E821BA4400CC83B7B2009C63EECA][G] c:\program files\research in motion\blackberry\connectors\lotus notes5.0\lnresobjecteng.dll [PX5: 643760E2592DD5F14010017EDD4DCC0071F7FDCD][G] c:\program files\microsoft office\office10\outllib.dll [PX5: 7D9D30B1A0A5D0770526609A797B3800919F4D9B][G] c:\windows\system32\sl_anet.acm [PX5: 4646043E00FBDA8450F9011B81A8D9001C6972A9][G] c:\windows\system32\txflog.dll [PX5: 5440E77100D7B76F8C7A016AC4B8A100CF430F73][G] c:\windows\ime\sptip.dll [PX5: 34936A3500949EB6D23B03B28653CB00E8E1CF32][G] c:\windows\system32\msisip.dll [PX5: ECD3B1D800E6A7983CDA00878406CB007024DA0F][G] c:\program files\mcafee\siteadvisor\mcsacore.exe [PX5: 20E5080A10DCEB5A1A29031F0F0C1C00A488E41C][G] c:\windows\system32\wzcsvc.dll [PX5: E340E03A00BD758F624B07C2CB1ABF00E16A0B00][G] c:\program files\mcafee\virusscan\mcodsps.dll [PX5: 260BFE6710F314F45E6E00D108326D002206DFB6][G] c:\windows\system32\dfrgntfs.exe [PX5: 812BD95000F634F29CBA0103CCF3BF009D5EB97B][G] c:\windows\system32\runonce.exe [PX5: C0C9FD6C0022701938CD007932836500D6B9DD94][G] c:\program files\common files\roxio shared\9.0\sharedcom\cpsfileloader.dll [PX5: 530F6C43F884A46C4A360388F3D4D70065F40DFB][G] c:\program files\coolsoft\vasa video converter v5.0\unins000.exe [PX5: 5489F07220F006526FD10A4FA41059003DE5EC91][G] c:\windows\system32\wucltui.dll [PX5: F30CBD881889C2ADF0E6042AF42051003FFB5A8B][G] c:\program files\aim\uninstll.exe [PX5: 3F725D7FF00B04F4C867016C83852300D414589F][G] c:\program files\asio4all v2\asio4all.dll [PX5: 5A7A77BD00EDBBA170A1011E89F206004FE2A836][G] c:\windows\assembly\gac\system.data\1.0.5000.0__b77a5c561934e089\system.data.dll [PX5: 83CEF94200F83601C05513E718DA420046206FAB][G] c:\windows\system32\themeui.dll [PX5: 566F7DB00036536FE29E0555E8538F002F3E98AD][G] c:\windows\system32\asycfilt.dll [PX5: 008B987B00586B00FE17009A834A0C00F51C639B][G] c:\program files\yahoo!\common\yas.dll [PX5: 1AABD07168C5EBC484A101A85D7DE50079EC4E09][G] c:\windows\system32\mapi32.dll [PX5: 7019010400D9BA25B633012843A383002F7E88CB][G] c:\windows\system32\tourstart.exe [PX5: 20BA0757007AE77D4C8205932D0D340066E8E8A1][G] c:\program files\cyberlink\powerdvd\cldma.exe [PX5: 78A3D0C6005D3750302204E78E07AF005E6A30A3][G] c:\windows\system32\imapi.exe [PX5: 774C32E700347E794C9A0292036390005C9D5129][G] c:\windows\system32\wbem\repdrvfs.dll [PX5: 2D955AA40091E20CB81D0283B7B36900DBF92EA2][G] c:\windows\system32\compatui.dll [PX5: 9EACB92500AB2B81DC8503F70AFC2700BD44A15E][G] c:\program files\ccleaner\uninst.exe [PX5: 8BBFD997E2C3D6E0BF1501CEBA5295000562AE2A][G] c:\windows\system32\msxml3.dll [PX5: B6806A6D00D62206E43C10D1810489007961F1FE][G] c:\windows\system32\olepro32.dll [PX5: 445E081E0071A7974C8D017AFB8ED8009D2F7F3E][G] c:\program files\common files\roxio shared\9.0\dllshared\cpscommontools9.dll [PX5: A9CB75E7F8127E27AA5E055E71452400198B6DDC][G] c:\program files\yahoo!\browser\ysidebarie.dll [PX5: 6C367957202A66A9E6C701492FE93C00F3EA3451][G] c:\windows\system32\drivers\http.sys [PX5: EA3626FB80ABE84E0A0C04584B61880071DF8746][G] c:\windows\system32\licwmi.dll [PX5: FBB7E28E00041031E6B20005B42E560027585E96][G] c:\program files\common files\roxio shared\9.0\dllshared\roxipp41.dll [PX5: 576CAF3BF839E53B2AD446F89686D5008F6E3B66][G] c:\program files\spyware doctor\sdhelp.exe [PX5: C9966611B8F5E58142990D381FABD000405D2CDB][G] c:\windows\system32\nvcpl.dll [PX5: BEE73870005479EF80886F676289DF00218A02F6][G] c:\windows\system32\zipfldr.dll [PX5: 3A646E9F00F1B8C52AC805D3498A1800A14D9E03][G] c:\program files\yahoo!\companion\installs\cpn3\ytnavassist.dll [PX5: 0979A90CF061FD43DA4702F88BFADD00A10F78B1][G] c:\windows\system32\sndrec32.exe [PX5: 2B22BAD400829EAD02FB02808424930093791F01][G] c:\windows\microsoft.net\framework\v1.1.4322\mscorjit.dll [PX5: 2F4601B300158762D00C041754821C006CBBBB16][G] c:\program files\windows nt\accessories\wordpad.exe [PX5: 540C5F3900DE0D2A4A2B0391BEF3A10063054833][G] c:\windows\system32\msh261.drv [PX5: AF729CB500B66CB0E0A3025795237A00A7821902][G] c:\program files\research in motion\blackberry\connectors\lotus notes5.0\ptcollection.dll [PX5: C48AB0195EA4908A409001DC4B348000227C702B][G] c:\windows\system32\ir32_32.dll [PX5: 09D3470B00BA2D800A35030E86711E00012418EC][G] c:\program files\common files\roxio shared\9.0\sharedcom\roxliveshare9.exe [PX5: E23AC06AF8054AFEBAFF041DEB8BB40051A15487][G] c:\windows\ehome\ehdrop.dll [PX5: 66859BC2007B4BA9FA6E017BBB085A007837A32A][G] c:\program files\mcafee\msc\mcuicfg.dll [PX5: 5AB56022D06DF703CCF30179EBC176009685677B][G] c:\windows\system32\restore\rstrui.exe [PX5: 1897E9D7000EC472CEA60574F928F500B85662BE][G] c:\windows\system32\dllcache\rstrui.exe [PX5: 1897E9D7000EC472CEA60574F928F500B85662BE][G] c:\windows\system32\wbem\wmiprvse.exe [PX5: AD4E9CB9007DAC237AE50322C47B0800B7C8934E][G] c:\windows\system32\exts.dll [PX5: 7251A14D00C8BD36ECFB015214CBB0008C35FE5A][G] c:\windows\system32\iac25_32.ax [PX5: 3049DB140089A97F0CEE03E4B74399003F72101B][G] c:\windows\pchealth\helpctr\binaries\msconfig.exe [PX5: 2E38476600058851984B026AED41B60004CF8975][G] c:\windows\system32\cmd.exe [PX5: 2751DD6A00570674F0080506F4B6C600B64FDB50][G] c:\windows\assembly\gac\system\1.0.5000.0__b77a5c561934e089\system.dll [PX5: 4DA3EA4A003CBC77D0DB1288759A96005E9C967B][G] c:\program files\common files\research in motion\rimdevicemanager\rim_serial.dll [PX5: 5541402A003EEE2D90C7026CE5470E004907CF84][G] c:\windows\system32\hnetwiz.dll [PX5: EEFF5AAC008C8EB60CAD05F60C1B480096E0AFD4][G] c:\program files\steam\unwise.exe [PX5: F5727F6700885CFE56280297A0F939003474908A][G] c:\program files\mcafee\siteadvisor\saupkeep.dll [PX5: 205071A5109DEB6E5C0905DA6B4B340007B87CC5][G] c:\windows\system32\wbem\esscli.dll [PX5: C8F54633007623F3C87E0321AA3A9D009852790A][G] c:\windows\assembly\gac\ehiproxy\6.0.3000.0__31bf3856ad364e35\ehiproxy.dll [PX5: 1E118F900046B883F0FA051ACEC68F00F5D5A135][G] c:\windows\system32\msg723.acm [PX5: 90CED65100D50D35D03C015E1E73F000BBB3F186][G] c:\windows\microsoft.net\framework\v1.1.4322\fusion.dll [PX5: 2123929800EC6BF8507B04CB6847AA005FCEF14A][G] c:\windows\system32\dpugui11.dll [PX5: 4F8A2DBA000236EA109809A22A66A30043DCD31E][G] c:\program files\research in motion\blackberry\data migration wizard\connectors\palm desktop\pdapi2.dll [PX5: A5991315531D320370D301D15CA0DD00C914AFED][G] c:\program files\wav to mp3 encoder\unwise.exe [PX5: D21CA68C00627EE1483902FFBB25A400AEFFDFAE][G] c:\windows\system32\wiaservc.dll [PX5: 2201E7040085309E18A705FF5DC0070073697915][G] c:\program files\common files\mcafee\core\mccoreps.dll [PX5: 22D80007100065106A9A0175823F26005AF495E4][G] c:\windows\system32\wbem\wbemess.dll [PX5: 29B9DA6600A092A22EE3046FC6284D000BB9A9B8][G] c:\program files\hp\digital imaging\bin\hpqdirec.exe [PX5: 0172C21A00767500A0AE0CCFBACE3500AE7E87ED][G] c:\program files\icqlite\icqliteshell.dll [PX5: B66D3F4A6B64D30FE0860004582ABC0040C2F17D][G] c:\program files\research in motion\blackberry\connectors\lotus notes5.0\lnoptions.dll [PX5: CCE2E94256C9CF4B108102E7CFD5DD002A44539D][G] c:\program files\common files\nullsoft\activex\2.6\ampx.dll [PX5: 3F9D23AFB8B00FC435D2021C766CE700434498AF][G] c:\windows\system32\cards.dll [PX5: 6AE2A02400D5EFD37E3C0581D18B9E00BA668563][GP] c:\windows\system32\divx.dll [PX5: 724935205A81D9D34CF60B56A8915100614C1406][G] c:\program files\common files\research in motion\usb drivers\bbdevmgr.exe [PX5: 57D2FDF06B2EB00130C40348B9AA9D00F7854B5E][G] c:\program files\common files\installshield\updateservice\isuspm.exe [PX5: C1C26DE5B0F9311D538203E0AE3F420077746DA3][G] c:\windows\assembly\gac\ehrecobj\6.0.3000.0__31bf3856ad364e35\ehrecobj.dll [PX5: EAD8C2C000D45902F0FD05DD75E0C800F657747F][G] c:\program files\mcafee\msc\mcnmcsps.dll [PX5: 4890A6AAB0F6BABD0BA90128E1D06E00F554EAD1][G] c:\windows\system32\mpg4c32.dll [PX5: 05FD8AD84072E10450C106E8D49CCF005E072D5B][G] c:\program files\yahoo!\shared\ybskin2.dll [PX5: 42A6BA44505890BE6A26075563F837009FCE5397][G] c:\windows\system32\mstask.dll [PX5: 2A718F8900F5F03432DC044FDC017A005A825138][G] c:\windows\system32\sbe.dll [PX5: 91ED9D4400CCC0604EEE042F666E8500E2C51868][G] c:\windows\system32\osk.exe [PX5: 38AEA09F003F814F4A8B03D4BA13D20052088685][G] c:\program files\yahoo!\companion\installs\cpn3\ycaplugin.dll [PX5: F96308BCF07AB988B61801BC6DE219001A18D87B][G] c:\program files\mcafee.com\agent\mcagntps.dll [PX5: 96E70105B041603C0B2F01B5C0BBC1009B81F361][G] c:\windows\system32\xmllite.dll [PX5: EC0D44A9006BAFEDDC1F01F8C226B700BDB8EEA0][G] c:\windows\system32\mcdvd_32.dll [PX5: 8A83029A009C0AD6FE2403290B03B700D71B25C4][G] c:\program files\wireless 802.11g usb adapter\zdwlan.exe [PX5: 08B24A0500DFBBCA80EA06169F3CEB00CC5F8339][G] c:\program files\mcafee\msc\mcsubmgr\8,1,133,0\mcsubmgr.dll [PX5: 9A71945550F8934E854E07CC28FDE000D61EFD34][G] c:\program files\limewire\limewire.exe [PX5: A7FE1CDD0003B081407601D916C8FD00D707309A][G] c:\program files\cyberlink\powerdvd\powerdvd.exe [PX5: 5D80E5D6000CB067E00B07E856A661005DBF74EF][G] c:\windows\system32\browseui.dll [PX5: 6CEF03C00046D768A4F70FE6C89B4D0025B01146][G] c:\windows\system32\filemgmt.dll [PX5: 8270DD2C007E3D902837050D22033C0026A5C92B][G] c:\program files\research in motion\blackberry\connectors\lotus organizer 6.0 connector\org6api.dll [PX5: 5A6EDFDE594E163C202602B98D97BE00B78CA5E3][G] c:\windows\system32\fxssvc.exe [PX5: 9D5FB828004693BA163E04E0474BEC0019B655B7][G] c:\program files\yahoo!\companion\installs\cpn3\ytsingleinstance.dll [PX5: 7A1A716AF086B3AD7219021AB86D7600917A043E][G] c:\windows\system32\tapisrv.dll [PX5: 26220FE200F48038D06D0338B53A5400212C32AA][G] c:\windows\system32\wucltui.dll.mui [PX5: E8C30DA618D0183F7C8D003B7FBBBA0014DFEF7C][G] c:\program files\microsoft office\office\binder.exe [PX5: 8CC1A883006C2265FA68030E3A9E140032FD9E0A][G] c:\windows\system32\fxst30.dll [PX5: 92F1A67F0012D79DC25F0315C39AB400A391FCA7][G] c:\windows\system32\perfos.dll [PX5: ABE9489F0057FC99623800BC3C0C38006A3F6580][G] c:\program files\research in motion\blackberry\connectors\yahoo connector\yahooxlator.dll [PX5: 2E45BE6F00E31CF0C0160283C9E2E900A74707BA][G] c:\program files\roxio\digital home 9\roxioupnpservice9.exe [PX5: A9B4F079F8B49BE47AAF059E98197600E2BAAEA0][G] c:\windows\system32\wuapi.dll [PX5: F7F6BE5E18EF17EC92E008D28B77C3002AC9D47D][G] c:\program files\mcafee\siteadvisor\mcieplg.dll [PX5: 9ED44E7D10949937383302A0A264EA001C6AFC25][G] c:\windows\system32\accwiz.exe [PX5: 402E27C500F3F849D00702DA3117EF007510BF11][G] c:\program files\research in motion\blackberry\rim_asci.dll [PX5: 23DA9AF6A8EEF81DA65C05AC8941AD00163BC0C5][G] c:\program files\research in motion\blackberry\connectors\lotus notes5.0\lnmemo.dll [PX5: 0B4670CA52F5DC86404702EA00973600C96E2822][G] c:\program files\roxio\media import 9\mediacapture9.exe [PX5: 3B9C4706F858D9035A2205001502A10086C84374][G] c:\program files\mcafee\virusscan\mcshield.exe [PX5: 7D7CC5F8402DAE8F359302C1A81A8B00FA095A1D][G] c:\program files\yahoo!\common\ymmapi.dll [PX5: 6D1B00EA20EADA99E8B6022FCF2D20000ABABF63][G] c:\program files\research in motion\blackberry\connectors\groupwise 6.5\ilxgwisecompanion.fil [PX5: 9B820291705228AF40B90559D2741B00F59D3CAA][G] c:\program files\common files\roxio shared\9.0\sharedcom\cpsaboutdlg.dll [PX5: 64BF0E9AF89A53CCFA5D03B22D980E00DE12B99E][G] c:\program files\research in motion\blackberry\connectors\lotus notes5.0\lnaddress.dll [PX5: 89C446F65841E1A0F01102ADB3569400AB4630EC][G] c:\windows\system32\locator.exe [PX5: EAEDF35D00F74D3F26E60100761A43005DE235E7][G] c:\program files\messenger\msgsc.dll [PX5: 6A8E7CCE0037B5D7485E01170A5A03006744554D][G] c:\program files\yahoo!\companion\installs\cpn3\ytbb.exe [PX5: BDC4BE26F0FDA7C664CA0240EF78F900F73888D6][G] c:\windows\system32\shimgvw.dll [PX5: E5C7813A00E8FF7FB0CC067BDE91B7005761A27E][G] c:\windows\system32\taskmgr.exe [PX5: 6CD539F900E87B211271021C5F1FC20045982579][GP] c:\windows\system32\secdel.dll [PX5: 3A4E4A1A008D7E45180C02E65DB7EB009A4D6B9C][G] c:\program files\microsoft office\office10\mcps.dll [PX5: 2EC70219A06FDE7C655301F6D959E700C7A246A6][G] c:\program files\mcafee\mpf\mc\mpfpps.dll [PX5: DD816167C8348A32E1E3000D7D823800B342B873][G] c:\windows\zip.exe [PX5: 6A67689000B47A4A0A0D017314D3030032CE2915][G] c:\program files\adobe\acrobat 7.0\activex\pdfshell.dll [PX5: 066EC4DE00858605B060015F10D3790055C4D630][G] c:\program files\image-line\fl studio 8\fl_3gb.exe [PX5: 84D004D400A7BA33BC14050210332F0038744B08][G] c:\program files\research in motion\blackberry\pumatech desktop setup\ptdesktopsetup_pb.dll [PX5: D690250578EF8A93B0A104350AFAD10097DF4BA2][G] c:\program files\google\google earth\googleearth.exe [PX5: 353E289800A3013D10F6012DDDE82A00A2B9DECA][G] c:\windows\system32\macromed\flash\uninstall_plugin.exe [PX5: 17375696B5BACDB44A0E01A0FB5C23001BF2EBD3][G] c:\windows\system32\msh263.drv [PX5: 0A0206D10009C84680AE0471694AB200CAA7A84D][G] c:\windows\system32\wbem\framedyn.dll [PX5: B141D8E2001F424CD46302A8303EE40043917F4F][G] c:\program files\common files\roxio shared\9.0\dllshared\vcupermits9.dll [PX5: F5BDFA43F8568D2EFA290087AAB91B00CD92104D][G] c:\windows\system32\usmt\migwiz.exe [PX5: 8EE0F59C00D631AFBEA3039B3B684F00681D91AB][G] c:\program files\roxio\audio capture 9\analogrec9.exe [PX5: 0B362572F8F61579EA9C002DDDE82A000F960FC8][G] c:\windows\system32\msaud32.acm [PX5: 642632CB00A54DE480D004F5779ADD003F8AF71D][G] c:\windows\system32\dsound.dll [PX5: 6FD715D700796B0A9C9105D2A1194200192D0BFD][G] c:\windows\system32\els.dll [PX5: DFDDE7C4005509B2CC3D0288EF459E00ACCDA9A1][G] c:\program files\yahoo!\companion\installs\cpn3\ytbm.dll [PX5: 9C072F67F045F9D11E37057A40572A00FB45CB72][G] c:\windows\system32\mspmsp.dll [PX5: 516DB64700FD5925A60602BEA364190085BDDBD5][G] c:\program files\mcafee\virusscan\1033\ashldres.dll [PX5: 2787AB6F10CA6DEFD4FD00E3B45929002D9B9EDF][G] c:\windows\system32\drivers\mferkdk.sys [PX5: 73C82BF9C80F4CCB8517008B33DB0F00C7102D10][G] c:\windows\system32\ddraw.dll [PX5: B5845CC80053990D446A047F68203800C07A5A7F][G] c:\windows\system32\dwwin.exe [PX5: E9B24CDF002D6A3DC06802B62E989F00335129CA][G] c:\program files\yahoo!\browser\ybrowser.exe [PX5: 2124387E180D94E5329E0AAA7429AB00A36E480E][G] c:\windows\system32\sti.dll [PX5: 120CC41B00E6F9DC0A0C01DAF74C0600B6FDF3E7][G] c:\windows\system32\cewmdm.dll [PX5: 688D0D88008123822CE303CE99624F0067B5DD1A][G] c:\windows\system32\aaclient.dll [PX5: 8C451F89001026D114270267D2FDEA0024A3BA0B][G] c:\program files\mcafee.com\agent\mcpatch.dll [PX5: 803808FE3089BEDE6AFC0152C690F800888F64BE][GP] c:\program files\irfanview\i_view32.exe [PX5: 122088E100840860B83D06EB0F610C00BDC3F138][G] c:\windows\system32\rewire.dll [PX5: C9CB775700D57E2B70D303CA503BC400B3533BF0][G] c:\windows\resources\themes\royale\shell\normalcolor\shellstyle.dll [PX5: AB914D9D0031F427B05B059C1971A300CB2AE4C5][G] c:\windows\system32\macromed\flash\uninstall_activex.exe [PX5: 173756960EBACDB45A0E01A0FB5C2300E6808F07][G] c:\windows\system32\wmnetmgr.dll [PX5: 465B2C4C0025AF22162F0F60D8177500588C1A3C][G] c:\windows\system32\l3codeca.acm [PX5: 3307C17D0023D63F70D804756DFEAC00466D026B][G] c:\program files\common files\avsmedia\activex\repairing.exe [PX5: 3BA488E200320053F0D30E4FE1096F0055AF5835][G] c:\program files\common files\roxio shared\9.0\dllshared\layoutdll9.dll [PX5: 3681DFCFF82210750A8A081623C9AD00A2E9415C][G] c:\windows\system32\dskquota.dll [PX5: 20F2061D0045EC8E6AE70197C1F58F006AEA2524][G] c:\windows\system32\aclui.dll [PX5: B6C58F4A006C5DD4C4730196AF4F8900F6AB72AD][G] c:\windows\system32\fxscover.exe [PX5: 2CC7F515007AD3AA80C00320C0A685004768B316][G] c:\windows\system32\smlogsvc.exe [PX5: FCEE3ECF000D24825EC601BE77827C005E0AE492][G] c:\windows\system32\ipnathlp.dll [PX5: BD73E1450055ABD10EAF055C3A0F8E007C420CFF][G] c:\program files\mcafee\msc\mcshllps.dll [PX5: 0116EF43585B7ABD7C33011E76DED000D4F52F65][G] c:\windows\system32\msftedit.dll [PX5: E38EBBA30034F7913AD7082CF6E3E70000FB07CA][G] c:\windows\system32\wiaacmgr.exe [PX5: 1AF2B01F00EA98AB9EC6062E4D77BF004306DC21][G] c:\program files\common files\installshield\updateservice\agent.exe [PX5: 9D29B887B00C1D0723370F849117E700B7C50143][G] c:\windows\system32\scardsvr.exe [PX5: 01113B68002A2A51764701B248357200CF9ED9CC][G] c:\windows\system32\wbem\wmiprvsd.dll [PX5: AEAB97A000A70CC6EA0C069911FB1500032BB054][G] c:\windows\system32\itss.dll [PX5: 7DC1B44A00401D061C37027982B731007395700F][G] c:\program files\research in motion\blackberry\rimcxlserver.dll [PX5: 0B04B6E7A88DEF6CA60803BE8D6CF0005F77ECED][G] c:\windows\system32\atmfd.dll [PX5: 800CFF5E00D3608C5C6D04FC7604280072EA4128][G] c:\program files\research in motion\blackberry\data migration wizard\connectors\palm desktop\pdapi.dll [PX5: F33C219951E34712C07B0220928986008BED41B1][G] c:\windows\assembly\nativeimages1_v1.1.4322\ehiproxy\6.0.3000.0__31bf3856ad364e35_9cb0c373\ehiproxy.dll [PX5: 2C53A445002DFFA7A066082680F1B00072FAF188][G] c:\program files\common files\research in motion\rimdevicemanager\rimdevicemanager.exe [PX5: 55B3A7A118123F82266A140B237B7300FDDF54CD][G] c:\windows\system32\fxstiff.dll [PX5: 3D200CFC0025493A1067064815A58D00A9A565E2][G] c:\program files\common files\mcafee\mna\mcnasvcps.dll [PX5: BBA4480810EC6E864CE401DF4D71E2009D2C01CF][GP] c:\program files\scar5\simple file shredder\sfsshell.dll [PX5: 0AECE17700E013CDB6BB03DBED5D500032DB6176][G] c:\windows\system32\xpsp1res.dll [PX5: 5FA524BB00E47DFDDC85021116676F003EED2BBD][G] c:\windows\system32\msjetoledb40.dll [PX5: 91C9C38728AA3A0A6BBA0505730D38003E1CEEAB][G] c:\program files\mcafee\virusscan\mvslog.dll [PX5: 046EF07E10B5A6643A3804BBC9C2A500C0F912C8][G] c:\windows\ehome\ehepg.dll [PX5: 10E071C8002686B530490DC823AC1C00E7494524][G] c:\windows\assembly\gac\ehepg\6.0.3000.0__31bf3856ad364e35\ehepg.dll [PX5: 10E071C8002686B530490DC823AC1C00E7494524][G] c:\program files\mcafee\virusscan\mcvsps.dll [PX5: F4632EC710528E97788D022EF928EA0031BBF5FC][G] c:\windows\system32\wbem\fastprox.dll [PX5: AA657EF2002591C33A0F0747CEEA2C006662E0F7][G] c:\program files\common files\roxio shared\9.0\sharedcom\cpsbasiccontrols.dll [PX5: A6DF9EC0F82B90083AAF0D9994308500481F40A6][G] c:\windows\system32\legitcheckcontrol.dll [PX5: 977059CA80CE3CD2893116A74008AB00B1ED761C][G] c:\windows\system32\audiodev.dll [PX5: 247DC6D3003DCF4E56AF07C172928C00FFD3C2C8][G] c:\program files\common files\roxio shared\9.0\sharedcom\cpsfileprotocolhandler.dll [PX5: F76D8219F81C4B9CCAE601E9202BB0007613B184][G] c:\program files\common files\system\msadc\msadce.dll [PX5: AD4BAE80003745F41032059082A642008E6CCD68][G] c:\windows\system32\shmedia.dll [PX5: F77F129C00C58E4A52AE029BF2F05B00ECB7B944][G] c:\program files\common files\roxio shared\dllshared\sonichttpclient9.dll [PX5: B5077F08F874ED173ADA0DC2C311EB0034E2E1EA][G] c:\program files\microsoft office\office\mso97.dll [PX5: CE59E64910718AE197E53929B58BEC006568956F][G] c:\program files\common files\mcafee\mcproxy\mcproxy.exe [PX5: E63640C31026382D7E89052F7BA96400B78894E2][G] c:\program files\yahoo!\softwareupdate\yahooauservice.exe [PX5: 184BB63318FECAFE310F09E4463FB600E895A864][G] c:\program files\research in motion\blackberry\desktopmgr.exe [PX5: 452CFAC818990363965713904E3AC400A27D7AA8][G] c:\program files\microsoft office\office\msaccess.exe [PX5: 37A7CA2D1051AD7CC1182D816F1ED400B0128FF3][G] c:\windows\system32\sysmon.ocx [PX5: 3519BA84009ED05E563703F53E0D8300D5073F97][G] c:\program files\research in motion\blackberry\connectors\lotus notes5.0\lnemail.dll [PX5: 634083C454E8B8D320EA058716A07100EF1940CB][G] c:\program files\mcafee\msc\mcnmcver.dll [PX5: 351BD01868360BB2DE7A02E04A1CB000AD1C84DA][G] c:\windows\system32\spool\drivers\w32x86\3\hpcdmc32.dll [PX5: B51C0B064875B01510480AB27FC98400BB0021E1][G] c:\program files\common files\mcafee\mna\mcuj.dll [PX5: 0F771582C88AAC1E21EA05626D171400759D9A1F][G] c:\windows\system32\mswmdm.dll [PX5: 77F629E400C5C8DED2CD04240FACC4009955A306][G] c:\program files\mcafee\mhn\mcensvps.dll [PX5: 66CE44CDC823CCC71B1D01618B75840043CD771D][G] c:\windows\system32\mspaint.exe [PX5: 13A895AD00DE6E433C4605477AA95800060829A2][G] c:\program files\msn gaming zone\windows\chkrres.dll [PX5: 5438734E55B3D427EAA50B3B3C2E0700FD0206EA][G] c:\windows\system32\pintlgnt.ime [PX5: 9F77EAC1004992865CAC072D042FD4007B96B17B][G] c:\windows\microsoft.net\framework\v1.0.3705\system.web.dll [PX5: D0F9E3710060669F5035122D12C72400B151E395][G] c:\windows\system32\macromed\flash\flashutil10b.exe [PX5: 35B983CEA07D563DABD0037097283400479D7BC4][G] c:\program files\mcafee\msc\mcregobj\9,11,100,0\mcregobj.dll [PX5: 801BBEF7983AD604E32A041472F2FA00114531A3][G] c:\windows\system32\inetcfg.dll [PX5: BB60F52300B0C18E30290492EF9C9C00729DB1E4][G] c:\windows\system32\sessmgr.exe [PX5: 680F69B00018B69A284A02603F6C7D00C3A8F088][G] c:\windows\system32\wshext.dll [PX5: 359D31DA002B5E8B60A1014D5036EF00C2265B70][G] c:\windows\regedit.exe [PX5: A039A23100D84AF83C17024643E276005B3F7051][G] c:\program files\mcafee\virusscan\mvsap.dll [PX5: F9895B631027B30B9A4B024F3F9EDF006A41FDF4][G] c:\program files\mcafee\virusscan\mcodsax.dll [PX5: 34301CC610C219A4308F039B9EF40A00C61328E6][G] c:\program files\common files\roxio shared\9.0\sharedcom\roxmediadb9.exe [PX5: C4CC17FCF8751E856AC50F0251B59F00DC158683][G] c:\program files\mcafee\virusscan\mvscfg.dll [PX5: 9F05896710C6A9FAE4AF0464BF4D3F00EE398E1F][G] c:\windows\system32\wbem\wbemcore.dll [PX5: 62BDDD4E0021AF3E1C61089AB52F2500B6F22AE5][G] c:\program files\common files\installshield\driver\8\intel 32\idriver.exe [PX5: 1B3DBBE6001A1B43E0140926B23A5E00D005B047][G] c:\program files\quicktime\quicktimeplayer.exe [PX5: B712FA6230C65CD5255475EF07CDD2005DC5CAE8][GP] c:\program files\scar5\simple file shredder\simplefleshrd.exe [PX5: 18F5C54F001D8D5C846A096957AA9E00EE7BE034][G] c:\program files\research in motion\blackberry\transaction manager\ptcxd.dll [PX5: 86B481328022AC34409F049A28E0CE006D13A599][G] c:\program files\common files\roxio shared\9.0\sharedcom\cpsalbumobjects.dll [PX5: B0B922E8F86D856A4A8D01EFEC9C56007B73873D][G] c:\program files\mcafee\siteadvisor\saplugin.dll [PX5: A322B241104713180AB003B119B59D0072A4E070][G] c:\windows\system32\ulib.dll [PX5: 28A0A98F00F15AC634DE040C36D4D2008BE59B0F][G] c:\windows\assembly\nativeimages1_v1.1.4322\ehrecobj\6.0.3000.0__31bf3856ad364e35_6a118cf7\ehrecobj.dll [PX5: 09D9801C00D7B9AB70650A9CBD60BD008F9839E3][G] c:\windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.1_x-ww_6f74963e\msvcp90.dll [PX5: AC5C497F0055FC0ABE1908A65B418300E537E4DE][G] c:\windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.1_x-ww_6f74963e\msvcr90.dll [PX5: 03159C9A00BD1DFF02E50A2E72C589000A8187C0][G] c:\program files\research in motion\blackberry\transaction manager\ptbs.dll [PX5: DABC5EBF00990677D09603D42EA3FC00C01D0B56][G] c:\windows\system32\wbem\wmiapsrv.exe [PX5: A37B130E00996F52EED70198F51E95003E754FAC][G] c:\program files\mcafee.com\agent\mcuilib.dll [PX5: 8B4E7B3C301F57D3E64204807DD004006172F679][G] c:\program files\common files\mcafee\core\mcevtbrk.dll [PX5: D3C3036710B0670A1A0B04568AC85E00706D2734][G] c:\program files\research in motion\blackberry\data migration wizard\connectors\palm desktop\syncproxy.dll [PX5: 1B73A88D59C179C550EE0419D5ACE5006233AF35][G] c:\windows\system32\logagent.exe [PX5: 6B59716A00703A057ACA01B7EECF7F00BE64E310][G] c:\windows\system32\vbicodec.ax [PX5: F33C67DD0060A5EA70E602E04E394C003FB043AF][G] c:\program files\common files\roxio shared\9.0\sharedcom\cpssupporttwain.dll [PX5: 841B4E2FF8E2195F4AC901488D0C71002EC485D1][G] c:\program files\common files\microsoft shared\dao\dao360.dll [PX5: B35BB10B18DB0A8E744208F227CA2A000F687D80][G] c:\program files\mcafee\msc\mcmispps.dll [PX5: 450E1B81682085919C4502A51C3443008E45F490][G] c:\windows\system32\wmp.dll [PX5: 7F22CBB6000143E580F354A27B5D780071921B83][G] c:\program files\spyware doctor\unins000.exe [PX5: 95E08715755EB9E185270A70045F1C0064C9BACE][G] c:\program files\common files\roxio shared\9.0\roxio central33\main\roxio_central33.exe [PX5: 6436F92EF880687B6ABF2430C0552800BBB3B2EE][G] c:\windows\system32\spider.exe [PX5: 87499F9C00997221383E08A1DAEB4900B45323BE][G] c:\program files\research in motion\blackberry\connectors\act3 companion connector v3\ilxact3companion.fil [PX5: 8795858A68FF1935602E074D71D7BD0040D6A6F5][G] c:\program files\common files\roxio shared\9.0\dllshared\vcuerror9.dll [PX5: 8D309E88F87F753E4A2C012ADB5FD400B487FD2F][G] c:\windows\system32\3ivxdsmediasplitter.ax [PX5: 8476D7550039A6417075045AF3B9E20033357469][G] c:\windows\system32\mstsc.exe [PX5: 341CF27200AC91D6584F0A837C7C59004E18ED87][G] c:\windows\system32\drivers\bthport.sys [PX5: ADE8AA1800E8EAFB2708044988134B00F40ACD12][G] c:\windows\system32\msvbvm60.dll [PX5: 2FE8C56A1FAE2AB0206E1594DDAC29008606F56D][G] c:\windows\system32\comsvcs.dll [PX5: DC2D73A100C699B0560E13ADA15D5E00B083FC1B][G] c:\windows\system32\certmgr.dll [PX5: 57C568FF003A7964FC360634B984A300083EE2E2][G] c:\windows\system32\wsecedit.dll [PX5: 2117EB020009900B38FF09D509DF7B00856D0EFF][G] c:\program files\msn gaming zone\windows\hrtzres.dll [PX5: 24C2A9E553F8A6B9F04A113B3C2E07008B77E0A1][G] c:\windows\assembly\nativeimages1_v1.1.4322\ehepg\6.0.3000.0__31bf3856ad364e35_413c7ca8\ehepg.dll [PX5: 2A29DF6E00E4F8E5E0DC131B8A8A5A0091E1B53E][G] c:\program files\mcafee\virusscan\mcinsupd.exe [PX5: 8B6D5716106752FEEE1802DAC675350043A04C41][G] c:\program files\common files\mcafee\hackerwatch\hwapi.dll [PX5: 0904F75B107348E5C220091E39BFF700F2A428CA][G] c:\program files\mcafee\virusscan\mvscp.dll [PX5: BB4DA88810974C198CB7023C94D8DD0045BC52FC][G] c:\windows\system32\wshom.ocx [PX5: AFABE9D4006610F7107C027F99CEF60046AD05AE][G] c:\program files\mcafee\mqc\mcpadmin.exe [PX5: 2914090D10B181F53AAC0323F0C12200FDB19B91][G] c:\windows\system32\netcfgx.dll [PX5: BB79FC4800271D04806809B486EB5500ECD0DDF9][G] c:\program files\common files\roxio shared\9.0\sharedcom\roxwizardlauncher9.exe [PX5: BB7E907DF829C62F1A0F02F2708C4C002497F26D][G] c:\windows\system32\mfc42u.dll [PX5: 74A4697B00B6ECC7FB5E0E2428CECF00BE23B318][G] c:\program files\research in motion\blackberry\data migration wizard\connectors\palm desktop\pdxlator.dll [PX5: 94D0F69257BA1777A07D0729476EEC00F14A5AEB][G] c:\program files\mcafee\msc\mcsvrcnt.exe [PX5: 25F3831D18FC23020028048C92CA01001987FF45][G] c:\program files\mcafee\virusscan\mcvspp.dll [PX5: 6161D64F10E0445D062B03A548F1A000E2B2F0D0][G] c:\program files\mcafee.com\agent\mcagent.exe [PX5: CEE7AD09D09BEEEBD8AF0946BA96E8000F7ED5C9][G] c:\windows\system32\winbrand.dll [PX5: 42CC1DDC009712FA24BE198D036A30007FAB902E][G] c:\program files\microsoft office\office\winword.exe [PX5: BDE4BAF1104453B825A051BBED5D7000E534A0B2][G] c:\program files\mcafee\mpf\mc\mpfoem.dll [PX5: 89F2DCF2086EAF6DA12F04B739BECB003FC5E458][G] c:\windows\assembly\nativeimages1_v1.1.4322\mscorlib\1.0.5000.0__b77a5c561934e089_18e2b4b6\mscorlib.dll [PX5: B28E640C00364FADC08C33C670CF4600FE23A8AD][G] c:\windows\system32\wmvcore.dll [PX5: 052323CC00A5CEB2909523325C0C3E00527E4B69][G] c:\windows\assembly\gac\ehcm\6.0.3000.0__31bf3856ad364e35\ehcm.dll [PX5: D075380800EFD97E70D41C866FAAF40071D21F1F][G] c:\windows\system32\nv4_disp.dll [PX5: F91F547200AD3962D7DC3B50AF9834001A5FD654][G] c:\program files\mcafee\msc\mcnmcres.dll [PX5: F5F130CF08AC87409E0002BC72556600201CA9F5][G] c:\windows\system32\msfeeds.dll [PX5: A5CC51E500381EA002A6070A0D5A5E00D2C6290A][G] c:\windows\system32\hhctrl.ocx [PX5: 5457D4A100998626527F08BB5A1F85004ADAE2A1][G] c:\program files\research in motion\blackberry\connectors\lotus organizer 6.0 connector\ilxorg6.dll [PX5: 5E4CA23A5900A79EA01D077794E41A00B236937B][G] c:\program files\common files\mcafee\fwdriver\fwdrvver.dll [PX5: B921DEC8309A44FF0D960243A895B100526A349E][G] c:\windows\system32\wpdsp.dll [PX5: 0E976B98001A5E6A082605C3CCCA710015BFC9AD][G] c:\program files\common files\sonic shared\sonicmc01\sonicmp4demux.ax [PX5: 73446B5FF8C6B6E02A4306EA743E0300D5BC6C7C][G] c:\windows\system32\nvshell.dll [PX5: 2371381B0051C449206907CC2BD46700241D7E4F][G] c:\program files\winamp\winamp.exe [PX5: 351C760B60546760E7F315A030287200B5C001EF][G] c:\windows\system32\dmadmin.exe [PX5: D0F62A77005F631F6E3403FC17FDD1000CC4A88D][G] c:\windows\system32\msi.dll [PX5: 2B2332E400C325C662612B270B9C1B002A75A833][G] c:\program files\image-line\fl studio 8\plugins\fruity\generators\chrome\graphicstester.exe [PX5: 3F6318AB0045D84F2EAC0B6BD50CEC00731828D6][G] c:\windows\system32\wmadmod.dll [PX5: 3B906E8700ED807C7E7805BCEBC9B30057D71300][G] c:\windows\system32\wmvdmod.dll [PX5: 77C1835100C598E79CE10CA7EC482900CB5E27ED][G] c:\program files\mcafee\msc\mcmismgr.dll [PX5: 1353A383E07146C4085A07C7F27EA80015DC670D][G] c:\program files\image-line\fl studio 8\fl.exe [PX5: 84D004D400A7BA33BC14050210332F007DD6CBC4][G] c:\program files\common files\roxio shared\9.0\sharedcom\cpssupportwia.dll [PX5: C1BE11ADF821D42EBAFF01BF6828EF007AD08AA5][G] c:\windows\system32\msxml4.dll [PX5: EABA86F708DA1BE5A07B13076693B200CA2D7643][G] c:\program files\audacity\audacity.exe [PX5: 756E727700052E753030505BE1425D00F116AB8A][G] c:\program files\mcafee\msc\mcmscsvc.exe [PX5: 85C9D78B283A4566360C0D9A0CA026001CD3C48D][G] c:\windows\system32\shdoclc.dll [PX5: 541BA524007003A3622F0865034B72006EDF5D23][G] c:\program files\mcafee\virusscan\escnplug.dll [PX5: A42100A9109DB1F5A4360612DF82EC007C0F4FB2][G] c:\program files\viewpoint\viewpoint media player\axmetastream.dll [PX5: C3A4EC6046D35772004C04C184773900A38C54BB][G] c:\windows\microsoft.net\framework\v1.1.4322\mscorwks.dll [PX5: 43D5E03F00BFAAD2601C26EA2A0194008FF90ECC][G] c:\program files\mcafee\msc\mcsubmgr\9,11,100,0\mcsubmgr.dll [PX5: D59D0E43A02E07D5B80409C29B4812001C899715][G] c:\program files\interactual\interactual player\iplayer.exe [PX5: 79F358350056C2FD00CC0C0D7F4D370062B4451F][G] c:\program files\mcafee\msc\mccfgpv.dll [PX5: 707DA7A6B081F326C612060DD39721002C81D7C4][G] c:\program files\common files\roxio shared\9.0\sharedcom\cpsformatloaderpng.dll [PX5: 490DDE04F8838B230AD70284A80D1D00EE93B038][G] c:\program files\mcafee\msc\mcupdui.exe [PX5: 5D2E6A87E8DF1C06C41A0521D7F7F6001E769AB4][G] c:\program files\common files\mcafee\mna\mcnareg.dll [PX5: 8830BD4A608C67E33039041409096900EA8849EB][G] c:\windows\microsoft.net\framework\v1.1.4322\mscorlib.dll [PX5: E65D52060042C450B08520DCA2642C00328CC46F][G] c:\windows\system32\newdev.dll [PX5: 9DEE294400F2F296C8F403E4A7DF2000CBE5585C][G] c:\program files\mcafee.com\shared\mcappins.exe [PX5: 37F2012B409EDE89155902E2B7FFE100204A16FF][G] c:\windows\system32\msvidctl.dll [PX5: 4EA0058A00CBCAAC7829190D71A46F003A65C09A][G] c:\windows\system32\vssvc.exe [PX5: BCB07B760063B2506C510467CE78500082892A65][G] c:\windows\ehome\ehshell.exe [PX5: 83CC695E00B829E720CC3170EC8F7900A7C75773][G] c:\program files\mcafee\mhn\mcmhnver.dll [PX5: D1FDB557009BB979F0BE03179F54E900C99D4E8C][G] c:\program files\hp\photosmart essential\hp_ize.exe [PX5: 504EC2AA009967C6ACB80CE24BFA6B009748A7DE][G] c:\windows\microsoft.net\framework\v1.1.4322\system.web.dll [PX5: E03D73E900A0E1C4508D1391DC74F6003F16E0CD][G] c:\program files\mcafee.com\shared\dunzip32.dll [PX5: 3B0728D53047580F46DE0206AD633D0030111869][G] c:\program files\wav to mp3 encoder\wav to mp3 encoder.exe [PX5: 17F95AFF0091190CA01B0F277C9EED00F6FC734D][GP] c:\program files\lavasoft\ad-aware 6\ad-aware.exe [PX5: E0DE181700351D0272110A8912D3B500F2DDAE06][G] c:\program files\research in motion\blackberry\connectors\isgroupwise6.5.x\gwemailconn.dll [PX5: E940629E6DA67924A092070193A7FF002B88A777][G] c:\program files\mcafee\msc\mcmscver.dll [PX5: 4A05A57EC8070D502145056300CA2300424E5CAB][G] c:\program files\mcafee\mqc\qcmisp.dll [PX5: 2DE05229103C337E4AB109252C5B0100944F5C95][G] c:\program files\roxio\photosuite 9\psnavigationpanes.dll [PX5: B887A8C4F87ED622BA67049C8C9056002EF6F7BB][G] c:\windows\system32\hpowiax2.dll [PX5: 4DAF5C6F00526977102B0A275ADC2E00415E2036][G] c:\windows\system32\realsplitter.ax [PX5: 64351D450087ADCF70680559E137A1008A41F9E4][G] c:\program files\mcafee\mpf\mc\mpfp.dll [PX5: 8F3CAC9600D89F8ACE3D0B4B10D8550017923E81][G] c:\program files\mcafee\mqc\qcconsol.exe [PX5: 49D70581108B51B56AD303FC21728F0035B2991E][GP] c:\program files\avs4you\avsvideoconverter\avsvideoconverter.exe [PX5: 0A541B9A009DA4A0DA2B3E3AFCAAC8007EDCBCEB][G] c:\windows\system32\dpnet.dll [PX5: 3FB02C8200EB2BC1BA4605FB60374100FAAF9583][G] c:\windows\system32\mshtmled.dll [PX5: 9263266000740D9E4A490704DF63200025B5F29B][G] c:\program files\mcafee\virusscan\mvsscan.dll [PX5: E39181E3106FE35C1CEA07F517EF56008012CED6][G] c:\windows\system32\ir50_32.dll [PX5: 4CEA49F7001AA56586130B63128157004C99E50B][G] c:\program files\mcafee\msc\mcoemmgr.exe [PX5: FE7D6E59A8A1D2E763A406FB921E5A002F93575A][G] c:\program files\mcafee\msc\mcprtcnt.dll [PX5: AD978E6340BFBA0C2A090519A538D900190822EB][G] c:\windows\system32\ntbackup.exe [PX5: 1BC195D600156F6152E612529D4ED500470563B1][G] c:\program files\mcafee\virusscan\mcvsmap.exe [PX5: 5B5D267310ABAB6E02910428A1D85B00285C9B6C][G] c:\windows\system32\ir41_32.ax [PX5: A7B0F4470071816BF2740C5AB256BE00D3DE1AC0][G] c:\program files\common files\mcafee\msc\mcscrhlp.dll [PX5: 7AF02539D88780DD7DD0021C7FE9DC0057F290C6][G] c:\program files\msn gaming zone\windows\shvlres.dll [PX5: 84C2AF2953C143DE3CB0213B3C2E0700C4AB60F4][G] c:\program files\veoh networks\veohwebplayer\veohietoolbar.dll [PX5: 880B5566F8635F2D8EB006A3809027002602CEC3][G] c:\program files\common files\mcafee\mcproxy\proxyver.dll [PX5: ABA12CEB10C1B98748F102260A5C9000A9874107][G] c:\windows\ehome\sqlqp20.dll [PX5: 0F20FA4800556D60100407BA39CF5900D1AD9032][G] c:\windows\system32\netui2.dll [PX5: 2694C36800173588B47C043A1F03650097B89A6A][G] c:\program files\mcafee\mpf\mpfsrv.exe [PX5: 4B07A21CB82A44BEA0E80D7441ADC60015663BF9][G] c:\program files\real\realplayer\rpplugins\ierpplug.dll [PX5: 2CB259F42D9A9F04409B041B6183CA00CF193D26][G] c:\windows\resources\themes\luna\luna.msstyles [PX5: 336012EC90FEB2B0F0EE3F7D42FFFF00069F49F9][G] c:\windows\system32\printui.dll [PX5: 9CF21EF50032FD548E58080A211B6D00A8892DF8][G] c:\windows\system32\ntkrnlpa.exe [PX5: D1ADC95280A0A67986221F01C565DE005333DE2E][G] c:\program files\mcafee\msc\mcdbmgr.dll [PX5: 7857381A60878888FED50375CCB26900E7284C21][G] c:\program files\ipod\bin\ipodservice.exe [PX5: BCCCF93328A7B575B1D8072A5DFB44001FE40A08][G] c:\program files\image-line\fl studio 8\system\plugin\dxi\fl studio dxi.dll [PX5: 76D1DD3900E115031CEC0B44AF69AF00FDE26667][G] c:\program files\mcafee\msc\mclogcnt.dll [PX5: C889647B20FEA73C747802BEDAF2A800687215CC][G] c:\windows\system32\wiashext.dll [PX5: 2ABB37EE00C209A0FEB808E39C8B11003433A514][G] c:\program files\mcafee\virusscan\mcvsshld.exe [PX5: 06CDBA0C108E9CD400AD04EC86ABDB00D6022EC4][G] c:\program files\mcafee\msc\mispreg.exe [PX5: 32B422FB30D2B0A510E804EA90D84A00924455FC][G] c:\windows\system32\termmgr.dll [PX5: C44CC70D005B6B2678E905697B773600805E39A4][G] c:\windows\system32\devmgr.dll [PX5: 20271DC3004E78BE5019042B49A51B0008EEFA7B][G] c:\windows\system32\msjtes40.dll [PX5: 988F401E20024FC6CB16038560D45A0056BC5B88][G] c:\windows\system32\wiadefui.dll [PX5: 1C095E7E00B831D0125807D83560CE00123B822C][G] c:\program files\mcafee\msc\mcupdmgr.exe [PX5: C13A87EBE8A656D6EBBD0B95A5A63500231AA94F][G] c:\program files\research in motion\blackberry\connectors\oe connector\olkexpress5.dll [PX5: FA88CBBA5D897C22F05B0B9440F3B000C12E9B91][G] c:\program files\mcafee\virusscan\mcods.exe [PX5: CB3B655510845D5B922A05604CF2D80030485164][G] c:\program files\internet explorer\iexplore.exe [PX5: D0519300A8C3C667AC930990A6A5100012E5A659][G] c:\program files\yahoo!\ypsr\ypsr.dll [PX5: E7A99BD600528055CA4B0407F915D10045C4D2BF][G] c:\program files\mcafee.com\shared\mghtml.exe [PX5: D250697928FAF35395E902671B263E00D29C453F][G] c:\windows\system32\msxml6.dll [PX5: 5885FD5C0024C3FCF48A13CCF02B0E0072BC7D8E][G] c:\program files\research in motion\blackberry\transaction manager\ptms.exe [PX5: 9A341D427EF5BB6350B409EA0E707200062485A6][G] c:\program files\research in motion\blackberry\action engine\syncae_pb.dll [PX5: 3E41787D7792E3C5501A09D834814E004F0A3AD3][G] c:\windows\pchealth\helpctr\binaries\msinfo.dll [PX5: B69F614700E4FB42C09F058CDB6CAD00B3D47792][G] c:\program files\common files\mcafee\hackerwatch\hwupdchk.exe [PX5: F6E8569C10B1463D521207A883F67D00AC723F7B][G] c:\windows\system32\scrrun.dll [PX5: F50E625D009FD87AA0AC024258F972001081058B][G] c:\program files\avs4you\uninstall.exe [PX5: CFAA115E0093286B506B24E74FFCD400B49EDFC7][G] c:\windows\system32\dbgeng.dll [PX5: CE5A87CC009E75A0F0770C41511D9E005100D6F3][G] c:\program files\real\realplayer\cddbrealcontrol.dll [PX5: 53B76AA700F5D9DF10DB05E577BC4200BA34511E][G] c:\program files\mcafee\msc\mcndui.exe [PX5: 89C9346D409BF78872FE05ED3421DD009F9881E9][G] c:\program files\roxio\media manager 9\mediamanager9.exe [PX5: 46922FE3F87AE0F76A2209C9B3912700717F7E51][G] c:\documents and settings\user\desktop\install_flash_player.exe [PX5: 1737569668BACDB4AB0E1CA0FB5C23000AAE93F5][G] c:\program files\common files\roxio shared\9.0\sharedcom\cpsnavigationcontrol.dll [PX5: 1FD4FB98F816D6A11AE504C9EC9A3100E1D8486F][G] c:\windows\system32\wbem\cimwin32.dll [PX5: 2375D5AE00932B37BC52148525C02900429924D9][G] c:\windows\system32\appwiz.cpl [PX5: 8ED2352E0075137D641008E833EB2B0057A7B344][G] c:\windows\assembly\nativeimages1_v1.1.4322\ehcm\6.0.3000.0__31bf3856ad364e35_0694a7c1\ehcm.dll [PX5: 18C9D03100E58C508051238CB7729A0042D7C781][G] c:\program files\common files\avsmedia\avs dvdmenu editor\unins000.exe [PX5: 5489F07222D2E11E75650A547940B000A01862EA][G] c:\program files\mcafee\msc\mcprotpv.dll [PX5: F88BD0CF70DB768E92F40530A10F210021CD2C15][G] c:\program files\messenger\msmsgs.exe [PX5: 2AC9751E00467CB2DEE5194C868B040012D12CA7][G] c:\windows\system32\inetcomm.dll [PX5: 7C8B29AF00CDA9408E650A70816B2F004A337C3E][G] c:\windows\system32\wmpdxm.dll [PX5: 2DC6A61D001B7478401C04EC0DE02E00FCE73BE5][GP] c:\windows\nircmd.exe [PX5: 7A13E04900C503117A1800DBA8E1990091A6F065][G] c:\windows\system32\coreaac.ax [PX5: 7B49D3AE00ADEE3F4046046BDB179C005EA4C70E][G] c:\windows\system32\vmhelper.dll [PX5: C56AE21C101E35B761A60467AE6A7B00AF811E24][G] c:\program files\itunes\cddbcontrolapple.dll [PX5: 81F52D36001E465BB06F066A25A6B500DD825E4D][G] c:\program files\research in motion\blackberry\rim_hh.dll [PX5: 28F173FFA882A34EE62609FF3F16260073FBED32][G] c:\program files\image-line\fl studio 8\system\plugin\dxi\fl studio dxi (multi).dll [PX5: 76D1DD3900E115031CEC0B694EE2CA001E66550C][GP] c:\program files\spyware doctor\swdoctor.exe [PX5: 9708D6F2E0E5BC3DA84E1F1DC752400041E610CE][G] c:\windows\system32\win32k.sys [PX5: 3DCAA82D80C1FD202F3B1C60DB2FD2005AAD27E1][G] c:\windows\system32\mmsys.cpl [PX5: 9F4BB300005D740570330978069515005A4D7027][G] c:\program files\common files\scanner\ppctl.dll [PX5: 7526544D4073CB0D44420AF932068100290E3545][G] c:\program files\common files\mcafee\msc\mcuicnt.exe [PX5: F3346DC110F96115AAA1068CB3931600715A82C7][G] c:\program files\netmeeting\conf.exe [PX5: C193D710002472FFC0420F147111C6009B0D3C63][G] c:\program files\common files\roxio shared\9.0\sharedcom\apsbrowsepanes.dll [PX5: 7ADF2E72F82FFB7D4A9B07171A61D800E132D86A][G] c:\windows\system32\confmsp.dll [PX5: 27C6988500935A59762B05D509AA100016DC1840][G] c:\program files\common files\roxio shared\9.0\sharedcom\albumuniversalview.dll [PX5: 292E1884F85CEC89EA20080D6AC1A00009C14C8B][G] c:\program files\common files\mcafee\msc\mcbrwsr2.dll [PX5: 89118351D890B3EA83B3069285FD78009766E050][G] c:\program files\outlook express\msoe.dll [PX5: 3CF0D7D900782FE610E214A010610D00392146ED][G] c:\program files\canon\zoombrowser ex\program\zblocalvolumedevice.dll [PX5: 9A8573BF641A2BF020ED073482FD2A00F945A8B9][G] c:\windows\system32\shell32.dll [PX5: 549254A1004030351CE281A70B1F5200D7CF5B82][G] c:\program files\roxio\photosuite 9\photosuite9.exe [PX5: 42668F1EF831EA40FAB4103BAF1AF100A06F2B93][G] c:\windows\system32\msdxm.ocx [PX5: 8F3E5E321AF52AD9E2550CE1F420FB008F2D60F0][G] c:\program files\internet explorer\plugins\richfx\player\nprfxins.dll [PX5: C5EB16B8353C645AB0680876828650004945B124][G] c:\windows\system32\gpedit.dll [PX5: 4BE8C41000A100C0A68E08DD4A99AA008FECAFB6][G] c:\windows\system32\hypertrm.dll [PX5: 47F95D3500770C2D4C1B058EB8AD2D00531A4E6A][G] c:\program files\ccleaner\ccleaner.exe [PX5: 88AAE4A5F04548B0247716AD62E30A00D2E71B40][G] c:\program files\movie maker\moviemk.exe [PX5: 2655B3E500FAE99A4EB336E8ADA45B00F3B808C3][G] c:\program files\movavi\nctaudiocompress3.dll [PX5: A746700900852EB3100127BDB96480001A31ECDA][G] c:\windows\pchealth\helpctr\binaries\helpctr.exe [PX5: BC2D9525002D21C1BC170B350325AE00BF3C1C56][G] c:\program files\roxio\videocore 9\cpsvideoobjects.dll [PX5: 7665E761F8AB5B709ACE068E81E3580075971BC5][G] c:\windows\system32\mscomct2.ocx [PX5: 482C38FAC073C39FE2390994E4D8F0002D1899C5][G] c:\program files\common files\roxio shared\9.0\sharedcom\mediaselector.dll [PX5: EEB45BF4F85F244A4AD204DAAC14E000033DB15D][G] c:\program files\quicktime\qtplugin.ocx [PX5: C229D04730E8E012E5EF0BC64EE8270043C7A387][G] c:\program files\canon\zoombrowser ex\program\zbui_controls.dll [PX5: 72A490795EEBEC32F06D06597B4B95006C007E29][G] c:\program files\research in motion\blackberry\connectors\isgroupwise6.5.x\gwemailconnapi.dll [PX5: 7DFC6B5F6A57C17690840FB65B995F00422B871D][G] c:\windows\system32\windowscodecsext.dll [PX5: EF8C9E8400FFBB8A48250546325EBA008A5733FE][G] c:\windows\system32\dxdiagn.dll [PX5: 364CB0F10079E29540C220473C12C800AB9305A8][G] c:\program files\mcafee\msc\mclgview.exe [PX5: FC0A6B03F8D9FD67281907703C349E00A04961D2][G] c:\program files\mcafee\mhn\mcenui.exe [PX5: 96ADDDA1E86C6A98F43611F69C9AED000F9C22C2][G] c:\program files\mcafee\mpf\mc\mpfalert.exe [PX5: 4D40245730C81A41EC3F07D534D8ED00DA093675][G] c:\windows\system32\query.dll [PX5: 2999857200E7E1E8E8A815D7DDF89400F08569A9][G] c:\windows\system32\mstime.dll [PX5: F1946430002572513E260A5C9D47D9007DCAA30A][G] c:\program files\canon\zoombrowser ex\program\zbui_commands.dll [PX5: 6A1D39585E0E962520DB0FB53257A000445955B1][G] c:\program files\mcafee\virusscan\1033\sysmondt.dll [PX5: BBAFAB76107381C94ACB0AF134150F007658DE0E][GP] c:\windows\system32\ffdshow.ax [PX5: 3F63EA2400C65D0D8A620F713C187800DF1EC26B][G] c:\windows\system32\windowscodecs.dll [PX5: CB25D6200030730BE0660A631E045C00D69B703F][G] c:\stubinstaller.exe [PX5: 5DEB9A3700C45478B0080AA906E94300DE42DC92][G] c:\program files\common files\xing shared\mpeg encode\xmencmp3.dll [PX5: EE0877B300ACE2D360780571DD79DE004588693F][G] c:\program files\mcafee\msc\mcactwiz.dll [PX5: 69762E8B104406765C5F073DB7438C0048F1866D][G] c:\program files\mcafee\virusscan\mcsysmon.exe [PX5: 4AD53AAB1087ED52428509E74079380016356461][G] c:\program files\mcafee\siteadvisor\sares.dll [PX5: 6FB9D1391044723FD6871A9EC6235200D4C73F6D][G] c:\windows\system32\ntmssvc.dll [PX5: 749B06F2001193C0A41506695141A6009C7283E7][G] c:\windows\system32\fontext.dll [PX5: 9F145E4A00E0ED94D86005FE72B98400141EAA06][G] c:\windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.2600.5581_x-ww_dfbc4fc4\gdiplus.dll [PX5: 7344EDD9009E7F8650861A0B3D562B00418A0684][G] c:\program files\canon\zoombrowser ex\program\zbcoremanagers.dll [PX5: 3302470D5FD7743CD06704D20DFCD00018B17D39][G] c:\windows\downloaded program files\ampax3.0.84.2.dll [PX5: A1457B6558520179D6DE0CA8AC59DD00E6F195D9][G] c:\windows\system32\regwizc.dll [PX5: DD2C140300F8B2F112C606D237955A0057FA00CA][G] c:\program files\common files\roxio shared\9.0\sharedcom\cpssmartviewbrowser.dll [PX5: 90117CEDF8716898CA4E07C060EC62009CDC7006][G] c:\windows\system32\h323msp.dll [PX5: 44CD3F4200C1ABE6627B0958582F0600A5472BB0][G] c:\windows\system32\divxmedia.ax [PX5: E2CB3C2891578685600505BAD0C4FF001398A24E][G] c:\windows\system32\msjava.dll [PX5: 01A2D955103896C5756F0E58E5337C005E03C8EE][G] c:\program files\common files\roxio shared\9.0\sharedcom\obexdevice.dll [PX5: E17B35A2F8F537E76A8D04FDA04F2000710DC7ED][G] c:\program files\common files\roxio shared\9.0\sharedcom\roxshellview.dll [PX5: 7DC4D66CF81D3517FA6806AE11537400E3103AA6][G] c:\program files\yahoo!\messenger\myyahoo.dll [PX5: AD0FB6F300C3D5CF20A90766C99675001B1561D4][G] c:\program files\research in motion\blackberry\connectors\lotus notes5.0\lnrepeatsections.dll [PX5: C8CA7E7E6652D39AB05810862D232F0039466BFB][G] c:\program files\canon\photostitch\stitch.exe [PX5: DB18B641009BD064E0E00E709B69E7001B8B51D4][G] c:\program files\mcafee\msc\mcinfo.exe [PX5: 426A67F3F8F49A1723B409B585641600A94A1855][G] c:\windows\system32\tapi3.dll [PX5: 8AA9CF6A00450F1E1A870DDB415F0B001B63F4AB][G] c:\windows\system32\wmphoto.dll [PX5: E9712B7E007E9A553A85049B2B5C23009E49C97A][G] c:\program files\mcafee\msc\mcdemenu.dll [PX5: CFAC4673E08E7DCB022E07DF3FAB4E008DF9CEDA][G] c:\program files\mcafee\msc\mccfgmgr.dll [PX5: 48D45528E8A5D73FC74507B331307200706272AA][G] c:\program files\canon\zoombrowser ex\program\zbcommands.dll [PX5: 12C3E8D35BD76CF9906307B7890CE000C425C248][G] c:\program files\mcafee\msc\mcnmcprv.dll [PX5: 32F35B2890431F39530106B281032C006E15E6D7][G] c:\program files\mcafee\msc\mcshell.exe [PX5: 617075D6609591D817210EDF048A5F001667C291][G] c:\program files\common files\mcafee\msc\mccomctl.dll [PX5: 1A9DF732300AB5CB13AE06EE3357930031A305D0][G] c:\program files\canon\zoombrowser ex\program\zb_ui.dll [PX5: EE608C5D5652E0E750020F1FE4CFE50070C86A53][G] c:\windows\system32\quartz.dll [PX5: 30866D0A0034AB1DB464138AE3B113003362BFF4][G] c:\windows\system32\drivers\ati2mtag.sys [PX5: C185A3E2009B7986B4DD0A998E71E70092C17F35][G] c:\program files\common files\mcafee\mna\mcujgui.exe [PX5: 19CBDDC0E830CAF5E549071C705851004F8D3346][G] c:\program files\yahoo!\companion\installs\cpn3\yt.dll [PX5: 79E40D5FF02F540CE86A0D93E15AF1000FE84E09][G] c:\program files\mcafee\msc\mcsync.exe [PX5: 0142944FE0500B6934CB07258B9ADC0024D4788E][G] c:\windows\grep.exe [PX5: 3135F7601CE57F623A270192F3A51400FAF55654][G] c:\windows\network diagnostic\xpnetdiag.exe [PX5: 316B099D00042E5F84FB08EFB197E400B8631058][G] c:\windows\system32\vorbis.acm [PX5: 4EBE022700ECF49DC0C213C079C9BA0030755AE5][G] c:\windows\system32\comct332.ocx [PX5: 1EEDD72EC88E95AB557406B29F6975002E00559F][G] c:\windows\system32\mscomctl.ocx [PX5: 4C94DAAA103F07B681A910D86FF4A0002647D282][G] c:\program files\common files\roxio shared\9.0\sharedcom\apsviewpanes.dll [PX5: 40CE325CF8BE872D8AD509D843653000232974E9][G] c:\program files\image-line\fl studio 8\system\tools\flinstaller\flinstaller.exe [PX5: CCCA688100F44AADE81309BCB040E2005276420B][G] c:\windows\ime\imjp8_1\imjpcic.dll [PX5: 9741340E38110ABFA0F605D01936E7003296B742][G] c:\program files\common files\roxio shared\9.0\dllshared\dccctrl9.dll [PX5: 70311EE6F85F4D308A0F0C2F50D1D7005C1DCB1C][G] c:\program files\winamp\plugins\gracenote\cddbcontrolwinamp.dll [PX5: E1C731B3F0B6C3F184FE146C21AFF9007B36A40E][G] c:\program files\roxio\videoui 9\vuiaudiovideommplugin.dll [PX5: 6C9C8F39F8996521DA4C097264B03D003CB34F18][G] c:\program files\roxio\videocore 9\videocompositing.ax [PX5: F31F403FF80543E23A8A0D10C95DDC006FD5D927][G] c:\windows\system32\ieframe.dll [PX5: E76BA44D0079261892D55C0EE4F24500136D9E4B][G] c:\program files\common files\roxio shared\9.0\dllshared\captureframework9.dll [PX5: 8E253D64F81F8AB14AC40FF9452B3B00A6965DC0][G] c:\windows\system32\imjp81k.dll [PX5: 0DFB9B6938FA88D360B40C10F674AE00C5884686][G] c:\program files\mcafee.com\agent\mcupdate.exe [PX5: 258855E7F017C47C963E08BAEE2A7600E601A865][G] c:\windows\system32\drivers\mfehidk.sys [PX5: C78C1C7A088E9DED4461035D3C3B2F003A42D4CB][G] c:\windows\system32\mshtml.dll [PX5: D078C6B500000050DA1536E2C0A9CB00E3B407A7][G] c:\program files\mcafee\msc\mcuninst.exe [PX5: 8AA10CECC0FC288479650AD1DA09210054B314D1][G] c:\windows\system32\mmc.exe [PX5: 4984447900286F8B961115CD595BC9004ADA15DA][G] c:\windows\system32\comuid.dll [PX5: B623C17E004FD6F73C3F080CFCE2840088375A1C][G] c:\program files\common files\avsmedia\activex\avsvideocompress.dll [PX5: 5A0CFDA900B1D7AAB0AF6181126FB5008EBE7D6B][G] c:\documents and settings\user\local settings\temp\pxinstall781.exe [PX5: 0418016438820A3DAA8842C335276F00FC6A1BE9][G] c:\program files\prevx\prevx.exe [PX5: 0418016438820A3DAA8842C335276F00FC6A1BE9][G] c:\windows\system32\msxml2.dll [PX5: 048FDC5E00384D39B4480AF58E5558008CCE94D5][G] c:\windows\system32\inseng.dll [PX5: 13C9C990003EE4726A54019461DE5000DE447C4C][G] c:\program files\common files\mcafee\mna\mcnaregps.dll [PX5: 4337D7F298D45CB0FB38006EE183DE0087D78525][G] c:\program files\movavi\nctvideotransform.dll [PX5: 9D4C23D900E0C24240EC2E1685EA6900D5E469E0][G] c:\program files\roxio\videocore 9\sbddata.dll [PX5: 7E5BDB1AF898B5AB4A9A18B92AF48F0036BC0C4B][G] c:\program files\common files\avsmedia\activex\avsaudiocompress3.dll [PX5: 832B7BE40043AB48E09A291B33114300627D007F][G] c:\windows\system32\mstscax.dll [PX5: 77A9D459009AA3C676FE1F16A8A19F00715BE5B6][G] c:\program files\steam\steam.exe [PX5: 37A153BEF8C4F6659486122B94799000AD4FEDF5][G] c:\windows\system32\url.dll [PX5: F329D765007A2F949E61015CCC77CE003D36A8E5][GP] c:\program files\common files\avsmedia\mobileuploader\avsmobileuploader.exe [PX5: AD852791001F231634EA2A982BE9F000DAD84B58][G] c:\program files\newtech infosystems\nti cd & dvd-maker 7\cdmkr32.exe [PX5: 76F8552600077A12802E17CBF9F55B0051F738A0][GP] c:\windows\swsc.exe [PX5: 9AD6007400EF58FB16FD02C93D5A11007C587A2D][G] c:\windows\system32\mmcndmgr.dll [PX5: 8E76A85900734604947C1CA3DD9D6900AF6956D9][G] c:\program files\malwarebytes' anti-malware\mbamgui.exe [PX5: 101BD9B810D8A746655D06793D82C600D45DACFD][G] c:\program files\avrack\rtlrack.exe [PX5: 556EF1C800E61FB4A2E2379F6D3E3800AD3BF4E8][G] c:\windows\system32\macromed\flash\npswf32.dll [PX5: C5E9EE9FA01B5E5B8B2B39845DA587009D854176][G] c:\program files\canon\zoombrowser ex\program\zbdmu.dll [PX5: B622F69F5654E417E00013FF22B80A00C9398F12][G] c:\windows\system32\xpsshhdr.dll [PX5: D3BEB1E7007B16EFC8D3083A711380009D107221][G] c:\program files\mcafee\msc\mcndsvps.dll [PX5: DD948F72B04A960A0B6E01F111D5F00045990267][G] c:\program files\common files\system\ole db\sqloledb.dll [PX5: A43545E90052053210DD0858558E880087EE12B5][G] c:\windows\microsoft.net\framework\v3.0\windows communication foundation\smsvchost.exe [PX5: 63E406DD008652AF04CE02DAA5163B002D388FD7][G] c:\windows\swxcacls.exe [PX5: A88EC77C004D09AD3EAD03886C024100562C6F9B][G] c:\program files\common files\roxio shared\9.0\sharedcom\apsplugindialogs.dll [PX5: 707BD1D0F8609F286A1A097486759000ABB555DF][G] c:\windows\system32\dx8vb.dll [PX5: 0AB83F0000B8235DBA5712C99AD8D3007BEA1E4F][G] c:\program files\mcafee\msc\mcndcp.dll [PX5: 67C090AC08C781A2A16F04E22C762800C0BDD5C0][GP] c:\windows\swreg.exe [PX5: F583C28B008EFEE4785C023A5217460062E7F95F][G] c:\program files\movavi\nctvideocompress.dll [PX5: E8E4E9FD002E2C138099226DA28F2D006B4F7018][G] c:\program files\mcafee\msc\mcndcpps.dll [PX5: 88C051EF98B1357DFBF9009A1707C8003C92D86C][G] c:\program files\divx\divx content uploader\npupload.dll [PX5: 12444AD600863825C03114519CBB5200B9AB5E3B][G] c:\program files\ea games\need for speed most wanted pc demo\speeddemo.exe [PX5: E82AE0F30084FF6FB0CF5BE88C487100BAE6C065][G] c:\program files\research in motion\blackberry\data migration wizard\connectors\wince\winceconnector.dll [PX5: C2177A9E90E54652D09122313C05E900180AFA65][G] c:\program files\mcafee\mshr\shrcore.dll [PX5: 887ED727109F2E6A0A9803B24B2BA5006000B27C][G] c:\program files\common files\avsmedia\activex\avsrmfile.dll [PX5: AA043F0100F8131BB09F1A1B493524005B14F908][G] c:\program files\mcafee\msc\mcshlui.dll [PX5: B156E46BC0C05E1B5BC10A54B6073600F6A74184][G] c:\windows\system32\spool\prtprocs\w32x86\printfilterpipelinesvc.exe [PX5: 511D1871005FC25C1E36092DF4863600B14AAE89][G] c:\windows\srchasst\msgr3en.dll [PX5: 0E1B1F0900B901CE50473062028D3800582E7576][G] c:\program files\mcafee\msc\mcnmccnt.dll [PX5: 9C4FBFC72810D27A6B810BE1DDB54F00672D092E][G] c:\program files\roxio\videocore 9\rmfmediaobjects.dll [PX5: 9318CE80F88C631FFA690E677F20AE0064234CCB][G] c:\program files\malwarebytes' anti-malware\mbam.exe [PX5: 4AFFFACD103789A8C57D1343C2FCDE00272841CB][G] c:\windows\system32\netplwiz.dll [PX5: 5D6E05A400BE9D695AED0D97A0856300688ADA99][G] c:\program files\yahoo!\messenger\yahoomessenger.exe [PX5: 05F7B77EF83E4212255847BDF928DB0076D70643][G] c:\windows\system32\drivers\dmboot.sys [PX5: 917F15200042015F34C20C36223938009B348E97][G] c:\program files\research in motion\blackberry\connectors\lotus notes5.0\reciphelp.dll [PX5: C15FA1C65AACA1BD601C148A02E6D3005EEE5EC1][G] c:\windows\system32\macromed\flash\flash10b.ocx [PX5: 606E30D7A0B4DAD2FF873A827E942F00EC058CF5][GP] c:\program files\divx\divx web player\npdivx32.dll [PX5: CA47E92F30B72B0731EB19D1DF5D0600FEE5BCCE][G] c:\windows\system32\xpssvcs.dll [PX5: 8CA750FA00D9A6EE94E319A706E91900303B4951][G] c:\program files\common files\avsmedia\activex\avsvideotransform2.dll [PX5: D38952C7008C1946E0F22DE208520E00E5D5097E][G] c:\program files\mcafee\mqc\mcpsched.dll [PX5: 8BCBD97E10818ACF6A0C0310110C07002D39155C][G] c:\program files\common files\microsoft shared\office10\mso.dll [PX5: 87A03972A0CD498B85AA988A9009CF0030627EF2][G] c:\windows\system32\ccr_web\pushsourcempeg4.ax [PX5: DD47A79D00564738700401A41AE585008404856D][G] c:\documents and settings\user\desktop\fixpolicies.exe [PX5: 1C0494ADE9E7C653D297027611B984008E8CE8FA][G] c:\program files\image-line\fl studio 8\uninstall.exe [PX5: 135503974FC62AA4CE560646E6D56D00537A06C4][G] c:\windows\system32\ccr_web\multichn.ocx [PX5: 5420B1AC00013C03604001C880A4BA0038B0BB4F][G] c:\program files\movavi video converter 5.5\uninst.exe [PX5: 3C0002452B7C3F7825CB0102418C8C00434514E7][G] c:\windows\system32\ccr_web\webclient.ocx [PX5: 2D14CEE60042392860E50AC06783F7009DA41F53][G] c:\windows\vm30xcap.exe [PX5: FC18AB0900D000A4E04F00ECB5E4A5000B923F8C][G] c:\windows\system32\ccr_web\multicht.ocx [PX5: 5420B1AC00ECCD236030018DB193FC00FD4D6337][G] c:\windows\downloaded program files\axloader.dll [PX5: 5F0D2AAE0034D77E309A02431A9B25009ED11E71][GP] c:\program files\seabyrd technologies\video converter\blackberry_video.exe [PX5: 8BF35577DEB228125C8004EB42770400529D18BC][G] c:\windows\system32\ccr_web\webenclt.ocx [PX5: 11C721CD008DC40B605C0AEDF59F84000E76FEA0][G] c:\program files\common files\avsmedia\activex\avsmobiledevice2wire.dll [PX5: 8FB9A8D7003D5977704702AF701E6A000617AA83][G] c:\windows\system32\ccr_web\multien.ocx [PX5: 5420B1AC00ECCD2360300137EE504A00D668F9E1][G] c:\windows\system32\drivers\vm30xx86.sys [PX5: 6CD061B100A21BCEC06D13159E756800198668A9]End of Prevx Scan Log - http://www.prevx.com Link to post Share on other sites More sharing options...
maryamian Posted August 12, 2009 Author ID:109090 Share Posted August 12, 2009 i am running malware quick scan then i will do the trendmicro process Link to post Share on other sites More sharing options...
maryamian Posted August 12, 2009 Author ID:109095 Share Posted August 12, 2009 here is my malware log. i think there was a glitch on the previous log because before my comp restarted, it said the infected files have been deleted. Malwarebytes' Anti-Malware 1.40Database version: 2608Windows 5.1.2600 Service Pack 38/11/2009 9:50:16 PMmbam-log-2009-08-11 (21-50-16).txtScan type: Quick ScanObjects scanned: 101367Time elapsed: 42 minute(s), 0 second(s)Memory Processes Infected: 0Memory Modules Infected: 0Registry Keys Infected: 0Registry Values Infected: 0Registry Data Items Infected: 0Folders Infected: 0Files Infected: 0Memory Processes Infected:(No malicious items detected)Memory Modules Infected:(No malicious items detected)Registry Keys Infected:(No malicious items detected)Registry Values Infected:(No malicious items detected)Registry Data Items Infected:(No malicious items detected)Folders Infected:(No malicious items detected)Files Infected:(No malicious items detected) Link to post Share on other sites More sharing options...
maryamian Posted August 12, 2009 Author ID:109101 Share Posted August 12, 2009 here is my otl log:All processes killed========== FILES ==========File\Folder c:\windows\System32\dpv1132.dll not found.c:\windows\system32\CONFIG.TMP moved successfully.c:\windows\system32\rn.tmp moved successfully.c:\windows\system32\GroupPolicy000.dat moved successfully.File\Folder c:\windows\system32\SystemX86 not found.File\Folder C:\recycler not found.File\Folder D:\recycler not found.File\Folder e:\recycler not found.File\Folder f:\recycler not found.File\Folder g:\recycler not found.File\Folder h:\recycler not found.========== COMMANDS ==========[EMPTYTEMP]User: Administrator->Temp folder emptied: 0 bytes->Temporary Internet Files folder emptied: 67 bytes->FireFox cache emptied: 2935907 bytesUser: All UsersUser: David BlockUser: Default User->Temp folder emptied: 0 bytes->Temporary Internet Files folder emptied: 32902 bytesUser: LocalServiceFile delete failed. C:\Documents and Settings\LocalService\Local Settings\Temp\Temporary Internet Files\Content.IE5\index.dat scheduled to be deleted on reboot.File delete failed. C:\Documents and Settings\LocalService\Local Settings\Temp\History\History.IE5\index.dat scheduled to be deleted on reboot.File delete failed. C:\Documents and Settings\LocalService\Local Settings\Temp\Cookies\index.dat scheduled to be deleted on reboot.->Temp folder emptied: 65748 bytes->Temporary Internet Files folder emptied: 33213 bytesUser: NetworkService->Temp folder emptied: 0 bytes->Temporary Internet Files folder emptied: 67 bytesUser: user->Temp folder emptied: 37142626 bytes->Temporary Internet Files folder emptied: 3357653 bytes->Java cache emptied: 0 bytes->FireFox cache emptied: 47377294 bytes%systemdrive% .tmp files removed: 0 bytesC:\WINDOWS\msdownld.tmp folder deleted successfully.%systemroot% .tmp files removed: 19748 bytes%systemroot%\System32 .tmp files removed: 0 bytesFile delete failed. C:\WINDOWS\temp\Perflib_Perfdata_744.dat scheduled to be deleted on reboot.Windows Temp folder emptied: 19096 bytesRecycleBin emptied: 0 bytesTotal Files Cleaned = 86.77 mbOTL by OldTimer - Version 3.0.10.6 log created on 08112009_204200Files\Folders moved on Reboot...C:\WINDOWS\temp\Perflib_Perfdata_744.dat moved successfully.Registry entries deleted on Reboot... Link to post Share on other sites More sharing options...
maryamian Posted August 12, 2009 Author ID:109103 Share Posted August 12, 2009 here is the Sysclean log:Copyright © 1990 - 2006 Trend Micro Inc.Report Date : 8/11/2009 23:03:08VSAPI Engine Version : 8.950-1092VSCANTM Version : 3.00-1018 (Official Build)VSGetVirusPatternInformation is invokedVirus Pattern Version : 355 (463124/463124 Patterns) (2009/08/10) (635500)Command Line: C:\Documents and Settings\user\Desktop\temp folder\VSCANTM.BIN /NBPM /S /CLEANALL /LD /LC /LCF /NM /NB /DCEGENCLEAN /HIDEDCECONSOLE /C /ACTIVEACTION=5 /VSBKENC+ /BK /LR D:\*.* /P=C:\Documents and Settings\user\Desktop\temp folder\lpt$vpn.355 Undet [ ]( ) in D:\System Volume Information\_restore{8D077847-2814-437C-9117-EA7A694B02FC}\RP1151\RestorePointSizeUndet [ ]( ) in D:\System Volume Information\_restore{8D077847-2814-437C-9117-EA7A694B02FC}\RP1151\change.log.1Undet [ ]( ) in D:\System Volume Information\_restore{8D077847-2814-437C-9117-EA7A694B02FC}\RP1161\A0139890.iniUndet [ ]( ) in D:\System Volume Information\_restore{8D077847-2814-437C-9117-EA7A694B02FC}\RP1161\change.log.1Undet [ ]( ) in D:\System Volume Information\_restore{8D077847-2814-437C-9117-EA7A694B02FC}\RP1161\RestorePointSizeUndet [ ]( ) in D:\System Volume Information\_restore{8D077847-2814-437C-9117-EA7A694B02FC}\RP1175\change.log.1Undet [ ]( ) in D:\System Volume Information\_restore{8D077847-2814-437C-9117-EA7A694B02FC}\RP1175\RestorePointSizeUndet [ ]( ) in D:\System Volume Information\_restore{8D077847-2814-437C-9117-EA7A694B02FC}\RP1176\change.log.1Undet [ ]( ) in D:\System Volume Information\_restore{8D077847-2814-437C-9117-EA7A694B02FC}\RP1176\RestorePointSizeUndet [ ]( ) in D:\System Volume Information\_restore{8D077847-2814-437C-9117-EA7A694B02FC}\RP1180\change.log.1Undet [ ]( ) in D:\System Volume Information\_restore{8D077847-2814-437C-9117-EA7A694B02FC}\RP1180\RestorePointSizeUndet [ ]( ) in D:\System Volume Information\_restore{8D077847-2814-437C-9117-EA7A694B02FC}\RP1201\change.log.1Undet [ ]( ) in D:\System Volume Information\_restore{8D077847-2814-437C-9117-EA7A694B02FC}\RP1201\RestorePointSizeUndet [ ]( ) in D:\System Volume Information\_restore{8D077847-2814-437C-9117-EA7A694B02FC}\RP1222\A0147633.iniUndet [ ]( ) in D:\System Volume Information\_restore{8D077847-2814-437C-9117-EA7A694B02FC}\RP1222\change.log.1Undet [ ]( ) in D:\System Volume Information\_restore{8D077847-2814-437C-9117-EA7A694B02FC}\RP1222\change.log.2Undet [ ]( ) in D:\System Volume Information\_restore{8D077847-2814-437C-9117-EA7A694B02FC}\RP1222\change.logUndet [ ]( ) in D:\System Volume Information\_restore{8D077847-2814-437C-9117-EA7A694B02FC}\RP1222\A0147840.INIUndet [ ]( ) in D:\Recycled\INFO2Undet [ ]( ) in D:\Recycled\desktop.iniUndet [ ]( ) in D:\ffastun0.ffxUndet [ ]( ) in D:\ffastun.ffoUndet [ ]( ) in D:\ffastun.fflUndet [ ]( ) in D:\ffastun.ffaUndet [ ]( ) in D:\2e6415eda52ae7a8ea8b82d5cc2497\msxml4-KB927978-enu.logUndet [ ]( ) in D:\PFiles\Plugins\np-mswmp.dllUndet [ ]( ) in D:\PFiles\Plugins\WMP Firefox Plugin License.rtfUndet [ ]( ) in D:\PFiles\Plugins\WMP Firefox Plugin RelNotes.txt28 files have been read.28 files have been checked.28 files have been scanned.28 files have been scanned. (including files in archived)0 files containing viruses.Found 0 viruses totally.Maybe 0 viruses totally.Stop At: 8/11/2009 23:03:09 0.28 seconds has elapsed.(10.036 msec/file)---------*---------*---------*---------*---------*---------*---------*---------*Copyright © 1990 - 2006 Trend Micro Inc.Report Date : 8/11/2009 23:03:08VSAPI Engine Version : 8.950-1092VSCANTM Version : 3.00-1018 (Official Build)VSGetVirusPatternInformation is invokedVirus Pattern Version : 355 (463124/463124 Patterns) (2009/08/10) (635500)Command Line: C:\Documents and Settings\user\Desktop\temp folder\VSCANTM.BIN /NBPM /S /CLEANALL /LD /LC /LCF /NM /NB /DCEGENCLEAN /HIDEDCECONSOLE /C /ACTIVEACTION=5 /VSBKENC+ /BK /LR D:\*.* /P=C:\Documents and Settings\user\Desktop\temp folder\lpt$vpn.355 Undet [ ]( ) in D:\System Volume Information\_restore{8D077847-2814-437C-9117-EA7A694B02FC}\RP1151\RestorePointSizeUndet [ ]( ) in D:\System Volume Information\_restore{8D077847-2814-437C-9117-EA7A694B02FC}\RP1151\change.log.1Undet [ ]( ) in D:\System Volume Information\_restore{8D077847-2814-437C-9117-EA7A694B02FC}\RP1161\A0139890.iniUndet [ ]( ) in D:\System Volume Information\_restore{8D077847-2814-437C-9117-EA7A694B02FC}\RP1161\change.log.1Undet [ ]( ) in D:\System Volume Information\_restore{8D077847-2814-437C-9117-EA7A694B02FC}\RP1161\RestorePointSizeUndet [ ]( ) in D:\System Volume Information\_restore{8D077847-2814-437C-9117-EA7A694B02FC}\RP1175\change.log.1Undet [ ]( ) in D:\System Volume Information\_restore{8D077847-2814-437C-9117-EA7A694B02FC}\RP1175\RestorePointSizeUndet [ ]( ) in D:\System Volume Information\_restore{8D077847-2814-437C-9117-EA7A694B02FC}\RP1176\change.log.1Undet [ ]( ) in D:\System Volume Information\_restore{8D077847-2814-437C-9117-EA7A694B02FC}\RP1176\RestorePointSizeUndet [ ]( ) in D:\System Volume Information\_restore{8D077847-2814-437C-9117-EA7A694B02FC}\RP1180\change.log.1Undet [ ]( ) in D:\System Volume Information\_restore{8D077847-2814-437C-9117-EA7A694B02FC}\RP1180\RestorePointSizeUndet [ ]( ) in D:\System Volume Information\_restore{8D077847-2814-437C-9117-EA7A694B02FC}\RP1201\change.log.1Undet [ ]( ) in D:\System Volume Information\_restore{8D077847-2814-437C-9117-EA7A694B02FC}\RP1201\RestorePointSizeUndet [ ]( ) in D:\System Volume Information\_restore{8D077847-2814-437C-9117-EA7A694B02FC}\RP1222\A0147633.iniUndet [ ]( ) in D:\System Volume Information\_restore{8D077847-2814-437C-9117-EA7A694B02FC}\RP1222\change.log.1Undet [ ]( ) in D:\System Volume Information\_restore{8D077847-2814-437C-9117-EA7A694B02FC}\RP1222\change.log.2Undet [ ]( ) in D:\System Volume Information\_restore{8D077847-2814-437C-9117-EA7A694B02FC}\RP1222\change.logUndet [ ]( ) in D:\System Volume Information\_restore{8D077847-2814-437C-9117-EA7A694B02FC}\RP1222\A0147840.INIUndet [ ]( ) in D:\Recycled\INFO2Undet [ ]( ) in D:\Recycled\desktop.iniUndet [ ]( ) in D:\ffastun0.ffxUndet [ ]( ) in D:\ffastun.ffoUndet [ ]( ) in D:\ffastun.fflUndet [ ]( ) in D:\ffastun.ffaUndet [ ]( ) in D:\2e6415eda52ae7a8ea8b82d5cc2497\msxml4-KB927978-enu.logUndet [ ]( ) in D:\PFiles\Plugins\np-mswmp.dllUndet [ ]( ) in D:\PFiles\Plugins\WMP Firefox Plugin License.rtfUndet [ ]( ) in D:\PFiles\Plugins\WMP Firefox Plugin RelNotes.txt28 files have been read.28 files have been checked.28 files have been scanned.28 files have been scanned. (including files in archived)0 files containing viruses.Found 0 viruses totally.Maybe 0 viruses totally.Stop At: 8/11/2009 23:03:09 0.28 seconds has elapsed.(10.036 msec/file)---------*---------*---------*---------*---------*---------*---------*---------* Link to post Share on other sites More sharing options...
maryamian Posted August 12, 2009 Author ID:109104 Share Posted August 12, 2009 Copyright © 1990 - 2006 Trend Micro Inc.Report Date : 8/11/2009 23:03:08VSAPI Engine Version : 8.950-1092VSCANTM Version : 3.00-1018 (Official Build)VSGetVirusPatternInformation is invokedVirus Pattern Version : 355 (463124/463124 Patterns) (2009/08/10) (635500)Command Line: C:\Documents and Settings\user\Desktop\temp folder\VSCANTM.BIN /NBPM /S /CLEANALL /LD /LC /LCF /NM /NB /DCEGENCLEAN /HIDEDCECONSOLE /C /ACTIVEACTION=5 /VSBKENC+ /BK /LR D:\*.* /P=C:\Documents and Settings\user\Desktop\temp folder\lpt$vpn.355 Undet [ ]( ) in D:\System Volume Information\_restore{8D077847-2814-437C-9117-EA7A694B02FC}\RP1151\RestorePointSizeUndet [ ]( ) in D:\System Volume Information\_restore{8D077847-2814-437C-9117-EA7A694B02FC}\RP1151\change.log.1Undet [ ]( ) in D:\System Volume Information\_restore{8D077847-2814-437C-9117-EA7A694B02FC}\RP1161\A0139890.iniUndet [ ]( ) in D:\System Volume Information\_restore{8D077847-2814-437C-9117-EA7A694B02FC}\RP1161\change.log.1Undet [ ]( ) in D:\System Volume Information\_restore{8D077847-2814-437C-9117-EA7A694B02FC}\RP1161\RestorePointSizeUndet [ ]( ) in D:\System Volume Information\_restore{8D077847-2814-437C-9117-EA7A694B02FC}\RP1175\change.log.1Undet [ ]( ) in D:\System Volume Information\_restore{8D077847-2814-437C-9117-EA7A694B02FC}\RP1175\RestorePointSizeUndet [ ]( ) in D:\System Volume Information\_restore{8D077847-2814-437C-9117-EA7A694B02FC}\RP1176\change.log.1Undet [ ]( ) in D:\System Volume Information\_restore{8D077847-2814-437C-9117-EA7A694B02FC}\RP1176\RestorePointSizeUndet [ ]( ) in D:\System Volume Information\_restore{8D077847-2814-437C-9117-EA7A694B02FC}\RP1180\change.log.1Undet [ ]( ) in D:\System Volume Information\_restore{8D077847-2814-437C-9117-EA7A694B02FC}\RP1180\RestorePointSizeUndet [ ]( ) in D:\System Volume Information\_restore{8D077847-2814-437C-9117-EA7A694B02FC}\RP1201\change.log.1Undet [ ]( ) in D:\System Volume Information\_restore{8D077847-2814-437C-9117-EA7A694B02FC}\RP1201\RestorePointSizeUndet [ ]( ) in D:\System Volume Information\_restore{8D077847-2814-437C-9117-EA7A694B02FC}\RP1222\A0147633.iniUndet [ ]( ) in D:\System Volume Information\_restore{8D077847-2814-437C-9117-EA7A694B02FC}\RP1222\change.log.1Undet [ ]( ) in D:\System Volume Information\_restore{8D077847-2814-437C-9117-EA7A694B02FC}\RP1222\change.log.2Undet [ ]( ) in D:\System Volume Information\_restore{8D077847-2814-437C-9117-EA7A694B02FC}\RP1222\change.logUndet [ ]( ) in D:\System Volume Information\_restore{8D077847-2814-437C-9117-EA7A694B02FC}\RP1222\A0147840.INIUndet [ ]( ) in D:\Recycled\INFO2Undet [ ]( ) in D:\Recycled\desktop.iniUndet [ ]( ) in D:\ffastun0.ffxUndet [ ]( ) in D:\ffastun.ffoUndet [ ]( ) in D:\ffastun.fflUndet [ ]( ) in D:\ffastun.ffaUndet [ ]( ) in D:\2e6415eda52ae7a8ea8b82d5cc2497\msxml4-KB927978-enu.logUndet [ ]( ) in D:\PFiles\Plugins\np-mswmp.dllUndet [ ]( ) in D:\PFiles\Plugins\WMP Firefox Plugin License.rtfUndet [ ]( ) in D:\PFiles\Plugins\WMP Firefox Plugin RelNotes.txt28 files have been read.28 files have been checked.28 files have been scanned.28 files have been scanned. (including files in archived)0 files containing viruses.Found 0 viruses totally.Maybe 0 viruses totally.Stop At: 8/11/2009 23:03:09 0.28 seconds has elapsed.(10.036 msec/file)---------*---------*---------*---------*---------*---------*---------*---------* Link to post Share on other sites More sharing options...
Recommended Posts