Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Help Virtumonde/win32trojan Clicker


  • This topic is locked This topic is locked
2 replies to this topic

#1 fsfong

fsfong

  • Members
  • 1 posts
  • OFFLINE
  •  
  • Local time:11:02 PM

Posted 06 May 2008 - 04:57 AM

Ad-Aware 2007 Build
Log File Created on: 2008-05-06 02:52:09
Using Definitions File: C:\Documents and Settings\All Users\Application Data\Lavasoft\Ad-Aware 2007\core.aawdef
Computer name: FELICIA
Name of user performing scan: SYSTEM

System information
===========================
Number of processors: 2
Processor type: Intel® Core™2 Duo CPU T5270 @ 1.40GHz
Memory Available: 60%
Total Physical Memory: 2136965120 Bytes
Available Physical Memory: 1281871872 Bytes
Total Page File Size: 4121165824 Bytes
Available On Page File: 3445202944 Bytes
Total Virtual Memory: 2147352576 Bytes
Available Virtual Memory: 1908867072 Bytes
OS: Microsoft Windows XP Service Pack 2 (Build 2600)

Ad-Aware 2007 Settings
===========================
Skipping files larger than 1048576 kB
Ignoring infections with lower TAI than: 3


Extended Ad-Aware 2007 Settings
===========================
Unloading known modules during scan
Ignoring spanned files when scanning cab archives
Reanalyzing results after scanning before displaying results
Trying to unload modules prior to removal
Let Windows remove files currently in use at next reboot
Removing quarantined objects after restore
Deactivating Ad-Watch during scans
Writeprotecting system files after repairs
Include info about ignored objects in log file
Including basic settings in log file
Including advanced settings in log file
Including user and computer name in log file
Create and save WebUpdate log file

Databaseinfo
===========================
Version number: 73
Build Number: 0
Build Date and Time: 2008/04/23 02:55:34

Scan Statistics
===========================
Method: Full
Scan tracking cookies.............................: On
Scan ADS filestreams..............................: Off

Item Scanned: 402325
Infections Detected: 127
Infections Ignored: 0

Scan detailed statistics
===========================
Type Critical Total
Process Scan....: 0 0
Registry Scan...: 20 20
Registry PE Scan: 0 0
Hosts File Scan.: 0 0
File Scan.......: 6 6
Folder Scan.....: 2 2
LSP Scan........: 0 0
ADS Scan........: 0 0
Cookie Scan.....: 94 94
File Hash Scan..: 5 5

Infections Found
===========================
Family Id: 265 Name: CoolWebSearch Category: Malware TAI:10
Item Id: 300006366 Value: Root: HKCR Path: clsid\{0e1230f8-ea50-42a9-983c-d22abc2eeb4c}
Item Id: 300006366 Value: Root: HKU Path: S-1-5-21-2939621179-827364850-1972385079-1006_Classes\clsid\{0e1230f8-ea50-42a9-983c-d22abc2eeb4c}
Item Id: 300006944 Value: Root: HKU Path: S-1-5-21-2939621179-827364850-1972385079-1006\software\microsoft\internet explorer\main Value: Use Search Asst Data: no
Item Id: 700001292 Value: File: C:\WINDOWS\downloaded program files\install.log
Family Id: 355 Name: Favoriteman Category: Malware TAI:8
Item Id: 300009265 Value: Root: HKCR Path: clsid\{000000da-0786-4633-87c6-1aa7a4429ef1}
Family Id: 404 Name: Holystic-Dialer Category: Malware TAI:5
Item Id: 300009969 Value: Root: HKCR Path: clsid\{0b682cc1-fb40-4006-a5dd-99edd3c9095d}
Item Id: 300009969 Value: Root: HKU Path: S-1-5-21-2939621179-827364850-1972385079-1006_Classes\clsid\{0b682cc1-fb40-4006-a5dd-99edd3c9095d}
Item Id: 300009970 Value: Root: HKU Path: S-1-5-21-2939621179-827364850-1972385079-1006_Classes\hol5_vxiewer.full.1
Family Id: 435 Name: InternetDelivery Category: DataMiner TAI:5
Item Id: 300010609 Value: Root: HKU Path: S-1-5-21-2939621179-827364850-1972385079-1006\software\inet delivery
Item Id: 700002468 Value: File: C:\Program Files\inet delivery\inetdl.exe
Item Id: 700002468 Value: File: C:\Program Files\inet delivery\intdel.exe
Item Id: 400000796 Value: Folder: C:\Program Files\inet delivery
Family Id: 437 Name: Invictus MediaUpdate Category: DataMiner TAI:6
Item Id: 300010623 Value: Root: HKCR Path: clsid\{b8c0220d-763d-49a4-95f4-61dfdec66ee6}
Item Id: 300010623 Value: Root: HKU Path: S-1-5-21-2939621179-827364850-1972385079-1006_Classes\clsid\{b8c0220d-763d-49a4-95f4-61dfdec66ee6}
Item Id: 300010627 Value: Root: HKU Path: S-1-5-21-2939621179-827364850-1972385079-1006\software\invictus
Item Id: 700002501 Value: File: C:\WINDOWS\system32\medup012.dll
Item Id: 700002501 Value: File: C:\WINDOWS\system32\medup020.dll
Family Id: 448 Name: JRaun Category: Malware TAI:6
Item Id: 300010826 Value: Root: HKCR Path: clsid\{5c7f15e1-f31a-44fd-aa1a-2ec63aaffd3a}
Family Id: 715 Name: TIB Browser Category: Dialer TAI:6
Item Id: 300015392 Value: Root: HKCR Path: clsid\{0656a137-b161-cadd-9777-e37a75727e78}
Item Id: 300015392 Value: Root: HKU Path: S-1-5-21-2939621179-827364850-1972385079-1006_Classes\clsid\{0656a137-b161-cadd-9777-e37a75727e78}
Item Id: 300015398 Value: Root: HKU Path: S-1-5-21-2939621179-827364850-1972385079-1006\software\classes\clsid\{0656a137-b161-cadd-9777-e37a75727e78}
Family Id: 993 Name: Win32.TrojanClicker Category: Malware TAI:10
Item Id: 300020749 Value: Root: HKCR Path: clsid\{54645654-2225-4455-44a1-9f4543d34545}
Family Id: 725 Name: Tracking Cookie Category: DataMiner TAI:3
Item Id: 600000190 Value: Browser: Internet Explorer Cookie: C:\Documents and Settings\Felicia Fong\Cookies\index.dat www.googleadservices.com Conversion /pagead/conversion/1057149204/
Item Id: 600000190 Value: Browser: Internet Explorer Cookie: C:\Documents and Settings\Felicia Fong\Cookies\index.dat www.googleadservices.com Conversion /pagead/conversion/1062684963/
Item Id: 600000578 Value: Browser: Internet Explorer Cookie: C:\Documents and Settings\Felicia Fong\Cookies\index.dat unicast.com VWCUK200 /
Item Id: 600000179 Value: Browser: Firefox Cookie: C:\Documents and Settings\Felicia Fong\Application Data\Mozilla\Firefox\Profiles/b72xtbxw.default\cookies.txt atdmt.com AA002 /
Item Id: 600000050 Value: Browser: Firefox Cookie: C:\Documents and Settings\Felicia Fong\Application Data\Mozilla\Firefox\Profiles/b72xtbxw.default\cookies.txt tribalfusion.com ANON_ID /
Item Id: 600000050 Value: Browser: Firefox Cookie: C:\Documents and Settings\Felicia Fong\Application Data\Mozilla\Firefox\Profiles/b72xtbxw.default\cookies.txt tribalfusion.com TfAdCountDate /
Item Id: 600000050 Value: Browser: Firefox Cookie: C:\Documents and Settings\Felicia Fong\Application Data\Mozilla\Firefox\Profiles/b72xtbxw.default\cookies.txt tribalfusion.com TfAdCountMap /
Item Id: 600000050 Value: Browser: Firefox Cookie: C:\Documents and Settings\Felicia Fong\Application Data\Mozilla\Firefox\Profiles/b72xtbxw.default\cookies.txt tribalfusion.com TfCtxtAdServer /
Item Id: 600000415 Value: Browser: Firefox Cookie: C:\Documents and Settings\Felicia Fong\Application Data\Mozilla\Firefox\Profiles/b72xtbxw.default\cookies.txt revsci.net rsi_cls_1000000 /
Item Id: 600000415 Value: Browser: Firefox Cookie: C:\Documents and Settings\Felicia Fong\Application Data\Mozilla\Firefox\Profiles/b72xtbxw.default\cookies.txt revsci.net NETSEGS_K05540 /
Item Id: 600000415 Value: Browser: Firefox Cookie: C:\Documents and Settings\Felicia Fong\Application Data\Mozilla\Firefox\Profiles/b72xtbxw.default\cookies.txt revsci.net rsi_segs_1000000 /
Item Id: 600000415 Value: Browser: Firefox Cookie: C:\Documents and Settings\Felicia Fong\Application Data\Mozilla\Firefox\Profiles/b72xtbxw.default\cookies.txt revsci.net NETID01 /
Item Id: 600000263 Value: Browser: Firefox Cookie: C:\Documents and Settings\Felicia Fong\Application Data\Mozilla\Firefox\Profiles/b72xtbxw.default\cookies.txt mediaplex.com svid /
Item Id: 600000144 Value: Browser: Firefox Cookie: C:\Documents and Settings\Felicia Fong\Application Data\Mozilla\Firefox\Profiles/b72xtbxw.default\cookies.txt doubleclick.net id /
Item Id: 600000212 Value: Browser: Firefox Cookie: C:\Documents and Settings\Felicia Fong\Application Data\Mozilla\Firefox\Profiles/b72xtbxw.default\cookies.txt 2o7.net s_vi_xxqbx60qbycx7Cqcfuwqc /
Item Id: 600000212 Value: Browser: Firefox Cookie: C:\Documents and Settings\Felicia Fong\Application Data\Mozilla\Firefox\Profiles/b72xtbxw.default\cookies.txt 2o7.net s_vi_elx7Fx7Flex7Ejabola /
Item Id: 600000212 Value: Browser: Firefox Cookie: C:\Documents and Settings\Felicia Fong\Application Data\Mozilla\Firefox\Profiles/b72xtbxw.default\cookies.txt 2o7.net s_vi_fox7Ccox7Cekzxxkiox7D /
Item Id: 600000212 Value: Browser: Firefox Cookie: C:\Documents and Settings\Felicia Fong\Application Data\Mozilla\Firefox\Profiles/b72xtbxw.default\cookies.txt 2o7.net s_vi_zsx60psx7Ex7Ex7Ekax7Esadwusa /
Item Id: 600000212 Value: Browser: Firefox Cookie: C:\Documents and Settings\Felicia Fong\Application Data\Mozilla\Firefox\Profiles/b72xtbxw.default\cookies.txt 2o7.net s_vi_fox7Cx7Cofx7Dkx7Ckx7Dmac /
Item Id: 600000212 Value: Browser: Firefox Cookie: C:\Documents and Settings\Felicia Fong\Application Data\Mozilla\Firefox\Profiles/b72xtbxw.default\cookies.txt 2o7.net s_vi_pyjx7Byx7Dkyjkhytyx7Bx7Dtyknx7Dx7Fyk /
Item Id: 600000073 Value: Browser: Firefox Cookie: C:\Documents and Settings\Felicia Fong\Application Data\Mozilla\Firefox\Profiles/b72xtbxw.default\cookies.txt specificclick.net dmp /
Item Id: 600000073 Value: Browser: Firefox Cookie: C:\Documents and Settings\Felicia Fong\Application Data\Mozilla\Firefox\Profiles/b72xtbxw.default\cookies.txt specificclick.net smdmp /
Item Id: 600000073 Value: Browser: Firefox Cookie: C:\Documents and Settings\Felicia Fong\Application Data\Mozilla\Firefox\Profiles/b72xtbxw.default\cookies.txt specificclick.net smk /
Item Id: 600000073 Value: Browser: Firefox Cookie: C:\Documents and Settings\Felicia Fong\Application Data\Mozilla\Firefox\Profiles/b72xtbxw.default\cookies.txt specificclick.net dmc /
Item Id: 600000073 Value: Browser: Firefox Cookie: C:\Documents and Settings\Felicia Fong\Application Data\Mozilla\Firefox\Profiles/b72xtbxw.default\cookies.txt specificclick.net dmk /
Item Id: 600000073 Value: Browser: Firefox Cookie: C:\Documents and Settings\Felicia Fong\Application Data\Mozilla\Firefox\Profiles/b72xtbxw.default\cookies.txt specificclick.net smc /
Item Id: 600000093 Value: Browser: Firefox Cookie: C:\Documents and Settings\Felicia Fong\Application Data\Mozilla\Firefox\Profiles/b72xtbxw.default\cookies.txt ads.pointroll.com PRpl /
Item Id: 600000093 Value: Browser: Firefox Cookie: C:\Documents and Settings\Felicia Fong\Application Data\Mozilla\Firefox\Profiles/b72xtbxw.default\cookies.txt ads.pointroll.com PRcp /
Item Id: 600000093 Value: Browser: Firefox Cookie: C:\Documents and Settings\Felicia Fong\Application Data\Mozilla\Firefox\Profiles/b72xtbxw.default\cookies.txt ads.pointroll.com PRimp /
Item Id: 600000093 Value: Browser: Firefox Cookie: C:\Documents and Settings\Felicia Fong\Application Data\Mozilla\Firefox\Profiles/b72xtbxw.default\cookies.txt ads.pointroll.com PRca /
Item Id: 600000093 Value: Browser: Firefox Cookie: C:\Documents and Settings\Felicia Fong\Application Data\Mozilla\Firefox\Profiles/b72xtbxw.default\cookies.txt ads.pointroll.com PRID /
Item Id: 600000073 Value: Browser: Firefox Cookie: C:\Documents and Settings\Felicia Fong\Application Data\Mozilla\Firefox\Profiles/b72xtbxw.default\cookies.txt specificclick.net smx /
Item Id: 600000073 Value: Browser: Firefox Cookie: C:\Documents and Settings\Felicia Fong\Application Data\Mozilla\Firefox\Profiles/b72xtbxw.default\cookies.txt specificclick.net apfe /
Item Id: 600000093 Value: Browser: Firefox Cookie: C:\Documents and Settings\Felicia Fong\Application Data\Mozilla\Firefox\Profiles/b72xtbxw.default\cookies.txt ads.pointroll.com PRpc /
Item Id: 600000093 Value: Browser: Firefox Cookie: C:\Documents and Settings\Felicia Fong\Application Data\Mozilla\Firefox\Profiles/b72xtbxw.default\cookies.txt ads.pointroll.com PRcr /
Item Id: 600000460 Value: Browser: Firefox Cookie: C:\Documents and Settings\Felicia Fong\Application Data\Mozilla\Firefox\Profiles/b72xtbxw.default\cookies.txt ad.yieldmanager.com pv1 /
Item Id: 600000460 Value: Browser: Firefox Cookie: C:\Documents and Settings\Felicia Fong\Application Data\Mozilla\Firefox\Profiles/b72xtbxw.default\cookies.txt ad.yieldmanager.com liday1 /
Item Id: 600000460 Value: Browser: Firefox Cookie: C:\Documents and Settings\Felicia Fong\Application Data\Mozilla\Firefox\Profiles/b72xtbxw.default\cookies.txt ad.yieldmanager.com uid /
Item Id: 600000460 Value: Browser: Firefox Cookie: C:\Documents and Settings\Felicia Fong\Application Data\Mozilla\Firefox\Profiles/b72xtbxw.default\cookies.txt ad.yieldmanager.com lifb /
Item Id: 600000460 Value: Browser: Firefox Cookie: C:\Documents and Settings\Felicia Fong\Application Data\Mozilla\Firefox\Profiles/b72xtbxw.default\cookies.txt ad.yieldmanager.com vuday1 /
Item Id: 600000460 Value: Browser: Firefox Cookie: C:\Documents and Settings\Felicia Fong\Application Data\Mozilla\Firefox\Profiles/b72xtbxw.default\cookies.txt ad.yieldmanager.com fl_inst /
Item Id: 600000460 Value: Browser: Firefox Cookie: C:\Documents and Settings\Felicia Fong\Application Data\Mozilla\Firefox\Profiles/b72xtbxw.default\cookies.txt ad.yieldmanager.com ih /
Item Id: 600000460 Value: Browser: Firefox Cookie: C:\Documents and Settings\Felicia Fong\Application Data\Mozilla\Firefox\Profiles/b72xtbxw.default\cookies.txt ad.yieldmanager.com bh /
Item Id: 600000400 Value: Browser: Firefox Cookie: C:\Documents and Settings\Felicia Fong\Application Data\Mozilla\Firefox\Profiles/b72xtbxw.default\cookies.txt tacoda.net Xsd /
Item Id: 600000187 Value: Browser: Firefox Cookie: C:\Documents and Settings\Felicia Fong\Application Data\Mozilla\Firefox\Profiles/b72xtbxw.default\cookies.txt advertising.com C2 /
Item Id: 600000400 Value: Browser: Firefox Cookie: C:\Documents and Settings\Felicia Fong\Application Data\Mozilla\Firefox\Profiles/b72xtbxw.default\cookies.txt tacoda.net Anxd /
Item Id: 600000400 Value: Browser: Firefox Cookie: C:\Documents and Settings\Felicia Fong\Application Data\Mozilla\Firefox\Profiles/b72xtbxw.default\cookies.txt tacoda.net Tcc /
Item Id: 600000400 Value: Browser: Firefox Cookie: C:\Documents and Settings\Felicia Fong\Application Data\Mozilla\Firefox\Profiles/b72xtbxw.default\cookies.txt tacoda.net TData /
Item Id: 600000400 Value: Browser: Firefox Cookie: C:\Documents and Settings\Felicia Fong\Application Data\Mozilla\Firefox\Profiles/b72xtbxw.default\cookies.txt tacoda.net ANRTT /
Item Id: 600000400 Value: Browser: Firefox Cookie: C:\Documents and Settings\Felicia Fong\Application Data\Mozilla\Firefox\Profiles/b72xtbxw.default\cookies.txt tacoda.net TID /
Item Id: 600000126 Value: Browser: Firefox Cookie: C:\Documents and Settings\Felicia Fong\Application Data\Mozilla\Firefox\Profiles/b72xtbxw.default\cookies.txt ehg-mgmmirageoperations.hitbox.com DM560713ABRDV6 /
Item Id: 600000126 Value: Browser: Firefox Cookie: C:\Documents and Settings\Felicia Fong\Application Data\Mozilla\Firefox\Profiles/b72xtbxw.default\cookies.txt hitbox.com WSS_GW /
Item Id: 600000126 Value: Browser: Firefox Cookie: C:\Documents and Settings\Felicia Fong\Application Data\Mozilla\Firefox\Profiles/b72xtbxw.default\cookies.txt hitbox.com CTG /
Item Id: 600000126 Value: Browser: Firefox Cookie: C:\Documents and Settings\Felicia Fong\Application Data\Mozilla\Firefox\Profiles/b72xtbxw.default\cookies.txt ehg-mgmmirageoperations.hitbox.com DM560713B5DFV6 /
Item Id: 600000126 Value: Browser: Firefox Cookie: C:\Documents and Settings\Felicia Fong\Application Data\Mozilla\Firefox\Profiles/b72xtbxw.default\cookies.txt ehg-mgmmirageoperations.hitbox.com DM560713AHCCV6 /
Item Id: 600000661 Value: Browser: Firefox Cookie: C:\Documents and Settings\Felicia Fong\Application Data\Mozilla\Firefox\Profiles/b72xtbxw.default\cookies.txt kontera.com cluid /
Item Id: 600000661 Value: Browser: Firefox Cookie: C:\Documents and Settings\Felicia Fong\Application Data\Mozilla\Firefox\Profiles/b72xtbxw.default\cookies.txt kontera.com imprs /
Item Id: 600000073 Value: Browser: Firefox Cookie: C:\Documents and Settings\Felicia Fong\Application Data\Mozilla\Firefox\Profiles/b72xtbxw.default\cookies.txt adopt.specificclick.net CTCI /
Item Id: 600000073 Value: Browser: Firefox Cookie: C:\Documents and Settings\Felicia Fong\Application Data\Mozilla\Firefox\Profiles/b72xtbxw.default\cookies.txt adopt.specificclick.net DMEXP /
Item Id: 600000073 Value: Browser: Firefox Cookie: C:\Documents and Settings\Felicia Fong\Application Data\Mozilla\Firefox\Profiles/b72xtbxw.default\cookies.txt adopt.specificclick.net UI /
Item Id: 600000073 Value: Browser: Firefox Cookie: C:\Documents and Settings\Felicia Fong\Application Data\Mozilla\Firefox\Profiles/b72xtbxw.default\cookies.txt adopt.specificclick.net DGI /
Item Id: 600000073 Value: Browser: Firefox Cookie: C:\Documents and Settings\Felicia Fong\Application Data\Mozilla\Firefox\Profiles/b72xtbxw.default\cookies.txt adopt.specificclick.net LO /
Item Id: 600000073 Value: Browser: Firefox Cookie: C:\Documents and Settings\Felicia Fong\Application Data\Mozilla\Firefox\Profiles/b72xtbxw.default\cookies.txt adopt.specificclick.net HS /
Item Id: 600000408 Value: Browser: Firefox Cookie: C:\Documents and Settings\Felicia Fong\Application Data\Mozilla\Firefox\Profiles/b72xtbxw.default\cookies.txt serving-sys.com A2 /
Item Id: 600000171 Value: Browser: Firefox Cookie: C:\Documents and Settings\Felicia Fong\Application Data\Mozilla\Firefox\Profiles/b72xtbxw.default\cookies.txt bs.serving-sys.com eyeblaster /
Item Id: 600000408 Value: Browser: Firefox Cookie: C:\Documents and Settings\Felicia Fong\Application Data\Mozilla\Firefox\Profiles/b72xtbxw.default\cookies.txt serving-sys.com E2 /
Item Id: 600000408 Value: Browser: Firefox Cookie: C:\Documents and Settings\Felicia Fong\Application Data\Mozilla\Firefox\Profiles/b72xtbxw.default\cookies.txt serving-sys.com C3 /
Item Id: 600000408 Value: Browser: Firefox Cookie: C:\Documents and Settings\Felicia Fong\Application Data\Mozilla\Firefox\Profiles/b72xtbxw.default\cookies.txt serving-sys.com U /
Item Id: 600000408 Value: Browser: Firefox Cookie: C:\Documents and Settings\Felicia Fong\Application Data\Mozilla\Firefox\Profiles/b72xtbxw.default\cookies.txt serving-sys.com B2 /
Item Id: 600000408 Value: Browser: Firefox Cookie: C:\Documents and Settings\Felicia Fong\Application Data\Mozilla\Firefox\Profiles/b72xtbxw.default\cookies.txt serving-sys.com D3 /
Item Id: 600000457 Value: Browser: Firefox Cookie: C:\Documents and Settings\Felicia Fong\Application Data\Mozilla\Firefox\Profiles/b72xtbxw.default\cookies.txt adopt.euroclick.com NSC_mc-bepqu.fvspdmjdl.dpn-iuuq /
Item Id: 600000457 Value: Browser: Firefox Cookie: C:\Documents and Settings\Felicia Fong\Application Data\Mozilla\Firefox\Profiles/b72xtbxw.default\cookies.txt adopt.euroclick.com UI /
Item Id: 600000457 Value: Browser: Firefox Cookie: C:\Documents and Settings\Felicia Fong\Application Data\Mozilla\Firefox\Profiles/b72xtbxw.default\cookies.txt adopt.euroclick.com DMEXP /
Item Id: 600000457 Value: Browser: Firefox Cookie: C:\Documents and Settings\Felicia Fong\Application Data\Mozilla\Firefox\Profiles/b72xtbxw.default\cookies.txt adopt.euroclick.com CTCI /
Item Id: 600000457 Value: Browser: Firefox Cookie: C:\Documents and Settings\Felicia Fong\Application Data\Mozilla\Firefox\Profiles/b72xtbxw.default\cookies.txt adopt.euroclick.com HS /
Item Id: 600000457 Value: Browser: Firefox Cookie: C:\Documents and Settings\Felicia Fong\Application Data\Mozilla\Firefox\Profiles/b72xtbxw.default\cookies.txt adopt.euroclick.com LO /
Item Id: 600000190 Value: Browser: Firefox Cookie: C:\Documents and Settings\Felicia Fong\Application Data\Mozilla\Firefox\Profiles/b72xtbxw.default\cookies.txt www.googleadservices.com Conversion /pagead/conversion/1072645447/
Item Id: 600000159 Value: Browser: Firefox Cookie: C:\Documents and Settings\Felicia Fong\Application Data\Mozilla\Firefox\Profiles/b72xtbxw.default\cookies.txt clickbank.net p /
Item Id: 600000052 Value: Browser: Firefox Cookie: C:\Documents and Settings\Felicia Fong\Application Data\Mozilla\Firefox\Profiles/b72xtbxw.default\cookies.txt trafficmp.com uid2 /
Item Id: 600000052 Value: Browser: Firefox Cookie: C:\Documents and Settings\Felicia Fong\Application Data\Mozilla\Firefox\Profiles/b72xtbxw.default\cookies.txt cache.trafficmp.com lp /adv/gadget/
Item Id: 600000052 Value: Browser: Firefox Cookie: C:\Documents and Settings\Felicia Fong\Application Data\Mozilla\Firefox\Profiles/b72xtbxw.default\cookies.txt cache.trafficmp.com lv /adv/gadget/
Item Id: 600000052 Value: Browser: Firefox Cookie: C:\Documents and Settings\Felicia Fong\Application Data\Mozilla\Firefox\Profiles/b72xtbxw.default\cookies.txt trafficmp.com rth /
Item Id: 600000052 Value: Browser: Firefox Cookie: C:\Documents and Settings\Felicia Fong\Application Data\Mozilla\Firefox\Profiles/b72xtbxw.default\cookies.txt trafficmp.com hst2 /
Item Id: 600000052 Value: Browser: Firefox Cookie: C:\Documents and Settings\Felicia Fong\Application Data\Mozilla\Firefox\Profiles/b72xtbxw.default\cookies.txt trafficmp.com dly2 /
Item Id: 600000052 Value: Browser: Firefox Cookie: C:\Documents and Settings\Felicia Fong\Application Data\Mozilla\Firefox\Profiles/b72xtbxw.default\cookies.txt trafficmp.com dmg2 /
Item Id: 600000083 Value: Browser: Firefox Cookie: C:\Documents and Settings\Felicia Fong\Application Data\Mozilla\Firefox\Profiles/b72xtbxw.default\cookies.txt realmedia.com RMID /
Item Id: 600000083 Value: Browser: Firefox Cookie: C:\Documents and Settings\Felicia Fong\Application Data\Mozilla\Firefox\Profiles/b72xtbxw.default\cookies.txt realmedia.com BCN2008040442_01_DIRECTV /
Item Id: 600000201 Value: Browser: Firefox Cookie: C:\Documents and Settings\Felicia Fong\Application Data\Mozilla\Firefox\Profiles/b72xtbxw.default\cookies.txt adrevolver.com adrev_adpath2 /
Item Id: 600000201 Value: Browser: Firefox Cookie: C:\Documents and Settings\Felicia Fong\Application Data\Mozilla\Firefox\Profiles/b72xtbxw.default\cookies.txt media.adrevolver.com BIGipServerar-slave /
Item Id: 600000201 Value: Browser: Firefox Cookie: C:\Documents and Settings\Felicia Fong\Application Data\Mozilla\Firefox\Profiles/b72xtbxw.default\cookies.txt adrevolver.com adrev_adpath /
Item Id: 600000449 Value: Browser: Firefox Cookie: C:\Documents and Settings\Felicia Fong\Application Data\Mozilla\Firefox\Profiles/b72xtbxw.default\cookies.txt adultfriendfinder.com ffadult_tr /
Item Id: 600000449 Value: Browser: Firefox Cookie: C:\Documents and Settings\Felicia Fong\Application Data\Mozilla\Firefox\Profiles/b72xtbxw.default\cookies.txt adultfriendfinder.com HISTORY /
Item Id: 600000190 Value: Browser: Firefox Cookie: C:\Documents and Settings\Felicia Fong\Application Data\Mozilla\Firefox\Profiles/b72xtbxw.default\cookies.txt www.googleadservices.com Conversion /pagead/conversion/1057149204/
Item Id: 600000190 Value: Browser: Firefox Cookie: C:\Documents and Settings\Felicia Fong\Application Data\Mozilla\Firefox\Profiles/b72xtbxw.default\cookies.txt www.googleadservices.com Conversion /pagead/conversion/1062684963/
Family Id: 763 Name: Virtumonde Category: Malware TAI:10
Item Id: 89052 Value: File: C:\Documents and Settings\Felicia Fong\Local Settings\Temp\removalfile.bat
Item Id: 300036915 Value: Root: HKLM Path: software\microsoft\aoprndtws
Item Id: 300037556 Value: Root: HKU Path: S-1-5-21-2939621179-827364850-1972385079-1006\software\microsoft\rdfa
Item Id: 300045403 Value: Root: HKLM Path: software\microsoft\videoplugin
Family Id: 1869 Name: SpywareStop Category: Misc TAI:3
Item Id: 119037 Value: File: C:\System Volume Information\_restore{202550A8-7A33-4BCA-9586-051D24DDBF8F}\RP10\A0000629.sys
Item Id: 119041 Value: File: C:\System Volume Information\_restore{202550A8-7A33-4BCA-9586-051D24DDBF8F}\RP10\A0000632.sys
Item Id: 119041 Value: File: C:\System Volume Information\_restore{202550A8-7A33-4BCA-9586-051D24DDBF8F}\RP12\A0000683.rbf
Item Id: 119037 Value: File: C:\System Volume Information\_restore{202550A8-7A33-4BCA-9586-051D24DDBF8F}\RP12\A0000684.rbf
Item Id: 300042721 Value: Root: HKU Path: S-1-5-21-2939621179-827364850-1972385079-1006\software\spywarestop
Item Id: 700007431 Value: File: C:\WINDOWS\Tasks\SpywareStop Scheduled Scan.job
Item Id: 400002799 Value: Folder: C:\Documents and Settings\Felicia Fong\Application Data\SpywareStop

Items Ignored During Scan
===========================


Listing of running processes
===========================
C:\WINDOWS\SYSTEM32\SMSS.EXE
c:\windows\system32\smss.exe

c:\windows\system32\ntdll.dll

C:\WINDOWS\SYSTEM32\CSRSS.EXE
c:\windows\system32\csrss.exe

c:\windows\system32\ntdll.dll

c:\windows\system32\csrsrv.dll

c:\windows\system32\basesrv.dll

c:\windows\system32\winsrv.dll

c:\windows\system32\gdi32.dll

c:\windows\system32\kernel32.dll

c:\windows\system32\user32.dll

c:\windows\system32\sxs.dll

c:\windows\system32\advapi32.dll

c:\windows\system32\rpcrt4.dll

c:\windows\system32\secur32.dll

c:\windows\system32\apphelp.dll

c:\windows\system32\version.dll

C:\WINDOWS\SYSTEM32\WINLOGON.EXE
c:\windows\system32\winlogon.exe

c:\windows\system32\ntdll.dll

c:\windows\system32\kernel32.dll

c:\windows\system32\advapi32.dll

c:\windows\system32\rpcrt4.dll

c:\windows\system32\secur32.dll

c:\windows\system32\authz.dll

c:\windows\system32\msvcrt.dll

c:\windows\system32\crypt32.dll

c:\windows\system32\user32.dll

c:\windows\system32\gdi32.dll

c:\windows\system32\msasn1.dll

c:\windows\system32\nddeapi.dll

c:\windows\system32\profmap.dll

c:\windows\system32\netapi32.dll

c:\windows\system32\userenv.dll

c:\windows\system32\psapi.dll

c:\windows\system32\regapi.dll

c:\windows\system32\setupapi.dll

c:\windows\system32\version.dll

c:\windows\system32\winsta.dll

c:\windows\system32\wintrust.dll

c:\windows\system32\imagehlp.dll

c:\windows\system32\ws2_32.dll

c:\windows\system32\ws2help.dll

c:\windows\system32\msgina.dll

c:\windows\system32\shell32.dll

c:\windows\system32\shlwapi.dll

c:\windows\system32\comctl32.dll

c:\windows\system32\odbc32.dll

c:\windows\system32\comdlg32.dll

c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2982_x-ww_ac3f9c03\comctl32.dll

c:\windows\system32\odbcint.dll

c:\windows\system32\shsvcs.dll

c:\windows\system32\sfc.dll

c:\windows\system32\sfc_os.dll

c:\windows\system32\ole32.dll

c:\windows\system32\apphelp.dll

c:\windows\system32\sxs.dll

c:\windows\system32\winscard.dll

c:\windows\system32\wtsapi32.dll

c:\windows\system32\winmm.dll

c:\windows\system32\uxtheme.dll

c:\windows\system32\cscdll.dll

c:\windows\system32\wlnotify.dll

c:\windows\system32\winspool.drv

c:\windows\system32\mpr.dll

c:\windows\system32\rsaenh.dll

c:\windows\system32\samlib.dll

c:\windows\system32\bcmlogon.dll

c:\windows\system32\iphlpapi.dll

c:\windows\winsxs\x86_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_3bf8fa05\mfc80.dll

c:\windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_6b128700\msvcr80.dll

c:\windows\system32\oleaut32.dll

c:\windows\winsxs\x86_microsoft.vc80.mfcloc_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_91481303\mfc80enu.dll

c:\windows\system32\nnnmlicy.dll

c:\windows\system32\urlmon.dll

c:\windows\system32\wininet.dll

c:\windows\system32\ntmarta.dll

c:\windows\system32\wldap32.dll

c:\windows\system32\msv1_0.dll

c:\windows\system32\cscui.dll

c:\windows\system32\xpsp2res.dll

c:\windows\system32\comres.dll

c:\windows\system32\clbcatq.dll

c:\windows\system32\wdmaud.drv

c:\windows\system32\msacm32.drv

c:\windows\system32\msacm32.dll

c:\windows\system32\midimap.dll

c:\windows\system32\cabinet.dll

c:\windows\system32\igfxdev.dll

C:\WINDOWS\SYSTEM32\SERVICES.EXE
c:\windows\system32\services.exe

c:\windows\system32\ntdll.dll

c:\windows\system32\kernel32.dll

c:\windows\system32\msvcrt.dll

c:\windows\system32\advapi32.dll

c:\windows\system32\rpcrt4.dll

c:\windows\system32\secur32.dll

c:\windows\system32\user32.dll

c:\windows\system32\gdi32.dll

c:\windows\system32\userenv.dll

c:\windows\system32\scesrv.dll

c:\windows\system32\authz.dll

c:\windows\system32\umpnpmgr.dll

c:\windows\system32\winsta.dll

c:\windows\system32\netapi32.dll

c:\windows\system32\ncobjapi.dll

c:\windows\system32\msvcp60.dll

c:\windows\system32\shimeng.dll

c:\windows\apppatch\acgenral.dll

c:\windows\system32\winmm.dll

c:\windows\system32\ole32.dll

c:\windows\system32\oleaut32.dll

c:\windows\system32\msacm32.dll

c:\windows\system32\version.dll

c:\windows\system32\shell32.dll

c:\windows\system32\shlwapi.dll

c:\windows\system32\uxtheme.dll

c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2982_x-ww_ac3f9c03\comctl32.dll

c:\windows\system32\comctl32.dll

c:\windows\system32\apphelp.dll

c:\windows\system32\eventlog.dll

c:\windows\system32\ws2_32.dll

c:\windows\system32\ws2help.dll

c:\windows\system32\psapi.dll

c:\windows\system32\wtsapi32.dll

c:\windows\system32\wintrust.dll

c:\windows\system32\crypt32.dll

c:\windows\system32\msasn1.dll

c:\windows\system32\imagehlp.dll

c:\windows\system32\cabinet.dll

c:\windows\system32\xpsp2res.dll

c:\windows\system32\rsaenh.dll

c:\windows\system32\imm32.dll

C:\WINDOWS\SYSTEM32\LSASS.EXE
c:\windows\system32\lsass.exe

c:\windows\system32\ntdll.dll

c:\windows\system32\kernel32.dll

c:\windows\system32\advapi32.dll

c:\windows\system32\rpcrt4.dll

c:\windows\system32\secur32.dll

c:\windows\system32\lsasrv.dll

c:\windows\system32\mpr.dll

c:\windows\system32\user32.dll

c:\windows\system32\gdi32.dll

c:\windows\system32\msasn1.dll

c:\windows\system32\msvcrt.dll

c:\windows\system32\netapi32.dll

c:\windows\system32\ntdsapi.dll

c:\windows\system32\dnsapi.dll

c:\windows\system32\ws2_32.dll

c:\windows\system32\ws2help.dll

c:\windows\system32\wldap32.dll

c:\windows\system32\samlib.dll

c:\windows\system32\samsrv.dll

c:\windows\system32\cryptdll.dll

c:\windows\system32\shimeng.dll

c:\windows\apppatch\acgenral.dll

c:\windows\system32\winmm.dll

c:\windows\system32\ole32.dll

c:\windows\system32\oleaut32.dll

c:\windows\system32\msacm32.dll

c:\windows\system32\version.dll

c:\windows\system32\shell32.dll

c:\windows\system32\shlwapi.dll

c:\windows\system32\userenv.dll

c:\windows\system32\uxtheme.dll

c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2982_x-ww_ac3f9c03\comctl32.dll

c:\windows\system32\comctl32.dll

c:\windows\system32\msprivs.dll

c:\windows\system32\kerberos.dll

c:\windows\system32\msv1_0.dll

c:\windows\system32\iphlpapi.dll

c:\windows\system32\netlogon.dll

c:\windows\system32\w32time.dll

c:\windows\system32\msvcp60.dll

c:\windows\system32\schannel.dll

c:\windows\system32\crypt32.dll

c:\windows\system32\wdigest.dll

c:\windows\system32\rsaenh.dll

c:\windows\system32\qomcyxxy.dll

c:\windows\system32\shfolder.dll

c:\windows\system32\urlmon.dll

c:\windows\system32\wininet.dll

c:\windows\system32\setupapi.dll

c:\windows\system32\scecli.dll

c:\windows\system32\ipsecsvc.dll

c:\windows\system32\authz.dll

c:\windows\system32\oakley.dll

c:\windows\system32\winipsec.dll

c:\windows\system32\pstorsvc.dll

c:\windows\system32\psbase.dll

c:\windows\system32\mswsock.dll

c:\windows\system32\hnetcfg.dll

c:\windows\system32\wshtcpip.dll

c:\windows\system32\dssenh.dll

C:\WINDOWS\SYSTEM32\SVCHOST.EXE
c:\windows\system32\svchost.exe

c:\windows\system32\ntdll.dll

c:\windows\system32\kernel32.dll

c:\windows\system32\advapi32.dll

c:\windows\system32\rpcrt4.dll

c:\windows\system32\secur32.dll

c:\windows\system32\shimeng.dll

c:\windows\apppatch\acgenral.dll

c:\windows\system32\user32.dll

c:\windows\system32\gdi32.dll

c:\windows\system32\winmm.dll

c:\windows\system32\ole32.dll

c:\windows\system32\msvcrt.dll

c:\windows\system32\oleaut32.dll

c:\windows\system32\msacm32.dll

c:\windows\system32\version.dll

c:\windows\system32\shell32.dll

c:\windows\system32\shlwapi.dll

c:\windows\system32\userenv.dll

c:\windows\system32\uxtheme.dll

c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2982_x-ww_ac3f9c03\comctl32.dll

c:\windows\system32\comctl32.dll

c:\windows\system32\ntmarta.dll

c:\windows\system32\wldap32.dll

c:\windows\system32\samlib.dll

c:\windows\system32\rpcss.dll

c:\windows\system32\ws2_32.dll

c:\windows\system32\ws2help.dll

c:\windows\system32\xpsp2res.dll

c:\windows\system32\clbcatq.dll

c:\windows\system32\comres.dll

c:\windows\system32\msi.dll

c:\windows\system32\apphelp.dll

c:\windows\system32\termsrv.dll

c:\windows\system32\icaapi.dll

c:\windows\system32\setupapi.dll

c:\windows\system32\wintrust.dll

c:\windows\system32\crypt32.dll

c:\windows\system32\msasn1.dll

c:\windows\system32\imagehlp.dll

c:\windows\system32\authz.dll

c:\windows\system32\mstlsapi.dll

c:\windows\system32\activeds.dll

c:\windows\system32\adsldpc.dll

c:\windows\system32\netapi32.dll

c:\windows\system32\atl.dll

c:\windows\system32\regapi.dll

c:\windows\system32\rsaenh.dll

c:\windows\system32\msv1_0.dll

c:\windows\system32\iphlpapi.dll

c:\windows\system32\wtsapi32.dll

c:\windows\system32\winsta.dll

c:\windows\system32\svchost.exe

c:\windows\system32\ntdll.dll

c:\windows\system32\kernel32.dll

c:\windows\system32\advapi32.dll

c:\windows\system32\rpcrt4.dll

c:\windows\system32\secur32.dll

c:\windows\system32\shimeng.dll

c:\windows\apppatch\acgenral.dll

c:\windows\system32\user32.dll

c:\windows\system32\gdi32.dll

c:\windows\system32\winmm.dll

c:\windows\system32\ole32.dll

c:\windows\system32\msvcrt.dll

c:\windows\system32\oleaut32.dll

c:\windows\system32\msacm32.dll

c:\windows\system32\version.dll

c:\windows\system32\shell32.dll

c:\windows\system32\shlwapi.dll

c:\windows\system32\userenv.dll

c:\windows\system32\uxtheme.dll

c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2982_x-ww_ac3f9c03\comctl32.dll

c:\windows\system32\comctl32.dll

c:\windows\system32\rpcss.dll

c:\windows\system32\ws2_32.dll

c:\windows\system32\ws2help.dll

c:\windows\system32\xpsp2res.dll

c:\windows\system32\rsaenh.dll

c:\windows\system32\mswsock.dll

c:\windows\system32\hnetcfg.dll

c:\windows\system32\wshtcpip.dll

c:\windows\system32\dnsapi.dll

c:\windows\system32\iphlpapi.dll

c:\windows\system32\winrnr.dll

c:\windows\system32\wldap32.dll

c:\windows\system32\rasadhlp.dll

c:\windows\system32\clbcatq.dll

c:\windows\system32\comres.dll

c:\windows\system32\msi.dll

c:\windows\system32\svchost.exe

c:\windows\system32\ntdll.dll

c:\windows\system32\kernel32.dll

c:\windows\system32\advapi32.dll

c:\windows\system32\rpcrt4.dll

c:\windows\system32\secur32.dll

c:\windows\system32\shimeng.dll

c:\windows\apppatch\acgenral.dll

c:\windows\system32\user32.dll

c:\windows\system32\gdi32.dll

c:\windows\system32\winmm.dll

c:\windows\system32\ole32.dll

c:\windows\system32\msvcrt.dll

c:\windows\system32\oleaut32.dll

c:\windows\system32\msacm32.dll

c:\windows\system32\version.dll

c:\windows\system32\shell32.dll

c:\windows\system32\shlwapi.dll

c:\windows\system32\userenv.dll

c:\windows\system32\uxtheme.dll

c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2982_x-ww_ac3f9c03\comctl32.dll

c:\windows\system32\comctl32.dll

c:\windows\system32\ntmarta.dll

c:\windows\system32\wldap32.dll

c:\windows\system32\samlib.dll

c:\windows\system32\xpsp2res.dll

c:\windows\system32\shsvcs.dll

c:\windows\system32\winsta.dll

c:\windows\system32\netapi32.dll

c:\windows\system32\dhcpcsvc.dll

c:\windows\system32\dnsapi.dll

c:\windows\system32\ws2_32.dll

c:\windows\system32\ws2help.dll

c:\windows\system32\iphlpapi.dll

c:\windows\system32\rsaenh.dll

c:\windows\system32\wzcsvc.dll

c:\windows\system32\rtutils.dll

c:\windows\system32\wmi.dll

c:\windows\system32\crypt32.dll

c:\windows\system32\msasn1.dll

c:\windows\system32\wtsapi32.dll

c:\windows\system32\esent.dll

c:\windows\system32\atl.dll

c:\windows\system32\rastls.dll

c:\windows\system32\cryptui.dll

c:\windows\system32\wintrust.dll

c:\windows\system32\imagehlp.dll

c:\windows\system32\wininet.dll

c:\windows\system32\mprapi.dll

c:\windows\system32\activeds.dll

c:\windows\system32\adsldpc.dll

c:\windows\system32\setupapi.dll

c:\windows\system32\rasapi32.dll

c:\windows\system32\rasman.dll

c:\windows\system32\tapi32.dll

c:\windows\system32\schannel.dll

c:\windows\system32\winscard.dll

c:\windows\system32\raschap.dll

c:\windows\system32\msv1_0.dll

c:\windows\system32\clbcatq.dll

c:\windows\system32\comres.dll

c:\windows\system32\schedsvc.dll

c:\windows\system32\ntdsapi.dll

c:\windows\system32\msidle.dll

c:\windows\system32\audiosrv.dll

c:\windows\system32\wkssvc.dll

c:\windows\system32\cryptsvc.dll

c:\windows\system32\certcli.dll

c:\windows\system32\ersvc.dll

c:\windows\system32\es.dll

c:\windows\pchealth\helpctr\binaries\pchsvc.dll

c:\windows\system32\srvsvc.dll

c:\windows\system32\netman.dll

c:\windows\system32\netshell.dll

c:\windows\system32\credui.dll

c:\windows\system32\wzcsapi.dll

c:\windows\system32\seclogon.dll

c:\windows\system32\hnetcfg.dll

c:\windows\system32\sens.dll

c:\windows\system32\sxs.dll

c:\windows\system32\srsvc.dll

c:\windows\system32\powrprof.dll

c:\windows\system32\mswsock.dll

c:\windows\system32\wshtcpip.dll

c:\windows\system32\upnp.dll

c:\windows\system32\winhttp.dll

c:\windows\system32\ssdpapi.dll

c:\windows\system32\tapisrv.dll

c:\windows\system32\psapi.dll

c:\windows\system32\trkwks.dll

c:\windows\system32\w32time.dll

c:\windows\system32\msvcp60.dll

c:\windows\system32\wbem\wmisvc.dll

c:\windows\system32\vssapi.dll

c:\windows\system32\wuauserv.dll

c:\windows\system32\wuaueng.dll

c:\windows\system32\winspool.drv

c:\windows\system32\cabinet.dll

c:\windows\system32\mspatcha.dll

c:\windows\system32\browser.dll

c:\windows\system32\ipnathlp.dll

c:\windows\system32\authz.dll

c:\windows\system32\wscsvc.dll

c:\windows\system32\msi.dll

c:\windows\system32\wbem\wbemcomn.dll

c:\windows\system32\wbem\wbemcore.dll

c:\windows\system32\wbem\esscli.dll

c:\windows\system32\wbem\fastprox.dll

c:\windows\system32\sfc.dll

c:\windows\system32\sfc_os.dll

c:\windows\system32\wbem\wbemsvc.dll

c:\windows\system32\wbem\wmiutils.dll

c:\windows\system32\wbem\repdrvfs.dll

c:\windows\system32\wbem\wmiprvsd.dll

c:\windows\system32\ncobjapi.dll

c:\windows\system32\wbem\wbemess.dll

c:\windows\system32\comsvcs.dll

c:\windows\system32\colbact.dll

c:\windows\system32\mtxclu.dll

c:\windows\system32\wsock32.dll

c:\windows\system32\clusapi.dll

c:\windows\system32\resutils.dll

c:\windows\system32\wbem\ncprov.dll

c:\windows\system32\netcfgx.dll

c:\windows\system32\rasmans.dll

c:\windows\system32\winipsec.dll

c:\windows\system32\qmgr.dll

c:\windows\system32\mpr.dll

c:\windows\system32\shfolder.dll

c:\windows\system32\qmgrprxy.dll

c:\windows\system32\rasadhlp.dll

c:\windows\system32\rastapi.dll

c:\windows\system32\unimdm.tsp

c:\windows\system32\uniplat.dll

c:\windows\system32\unimdmat.dll

c:\windows\system32\modemui.dll

c:\windows\system32\kmddsp.tsp

c:\windows\system32\ndptsp.tsp

c:\windows\system32\ipconf.tsp

c:\windows\system32\h323.tsp

c:\windows\system32\hidphone.tsp

c:\windows\system32\hid.dll

c:\windows\system32\rasppp.dll

c:\windows\system32\ntlsapi.dll

c:\windows\system32\kerberos.dll

c:\windows\system32\cryptdll.dll

c:\windows\system32\rasdlg.dll

c:\windows\system32\apphelp.dll

c:\windows\system32\wups2.dll

c:\windows\system32\catsrvut.dll

c:\windows\system32\catsrv.dll

c:\windows\system32\mfcsubs.dll

c:\windows\system32\urlmon.dll

c:\windows\system32\msxml3.dll

c:\windows\system32\winrnr.dll

c:\windows\system32\wbem\wbemcons.dll

c:\windows\system32\svchost.exe

c:\windows\system32\ntdll.dll

c:\windows\system32\kernel32.dll

c:\windows\system32\advapi32.dll

c:\windows\system32\rpcrt4.dll

c:\windows\system32\secur32.dll

c:\windows\system32\shimeng.dll

c:\windows\apppatch\acgenral.dll

c:\windows\system32\user32.dll

c:\windows\system32\gdi32.dll

c:\windows\system32\winmm.dll

c:\windows\system32\ole32.dll

c:\windows\system32\msvcrt.dll

c:\windows\system32\oleaut32.dll

c:\windows\system32\msacm32.dll

c:\windows\system32\version.dll

c:\windows\system32\shell32.dll

c:\windows\system32\shlwapi.dll

c:\windows\system32\userenv.dll

c:\windows\system32\uxtheme.dll

c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2982_x-ww_ac3f9c03\comctl32.dll

c:\windows\system32\comctl32.dll

c:\windows\system32\dnsrslvr.dll

c:\windows\system32\dnsapi.dll

c:\windows\system32\ws2_32.dll

c:\windows\system32\ws2help.dll

c:\windows\system32\iphlpapi.dll

c:\windows\system32\rsaenh.dll

c:\windows\system32\mswsock.dll

c:\windows\system32\hnetcfg.dll

c:\windows\system32\wshtcpip.dll

c:\windows\system32\svchost.exe

c:\windows\system32\ntdll.dll

c:\windows\system32\kernel32.dll

c:\windows\system32\advapi32.dll

c:\windows\system32\rpcrt4.dll

c:\windows\system32\secur32.dll

c:\windows\system32\shimeng.dll

c:\windows\apppatch\acgenral.dll

c:\windows\system32\user32.dll

c:\windows\system32\gdi32.dll

c:\windows\system32\winmm.dll

c:\windows\system32\ole32.dll

c:\windows\system32\msvcrt.dll

c:\windows\system32\oleaut32.dll

c:\windows\system32\msacm32.dll

c:\windows\system32\version.dll

c:\windows\system32\shell32.dll

c:\windows\system32\shlwapi.dll

c:\windows\system32\userenv.dll

c:\windows\system32\uxtheme.dll

c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2982_x-ww_ac3f9c03\comctl32.dll

c:\windows\system32\comctl32.dll

c:\windows\system32\ntmarta.dll

c:\windows\system32\wldap32.dll

c:\windows\system32\samlib.dll

c:\windows\system32\xpsp2res.dll

c:\windows\system32\lmhsvc.dll

c:\windows\system32\iphlpapi.dll

c:\windows\system32\ws2_32.dll

c:\windows\system32\ws2help.dll

c:\windows\system32\webclnt.dll

c:\windows\system32\wininet.dll

c:\windows\system32\crypt32.dll

c:\windows\system32\msasn1.dll

c:\windows\system32\wsock32.dll

c:\windows\system32\ssdpsrv.dll

c:\windows\system32\hnetcfg.dll

c:\windows\system32\clbcatq.dll

c:\windows\system32\comres.dll

c:\windows\system32\mswsock.dll

c:\windows\system32\wshtcpip.dll

C:\WINDOWS\SYSTEM32\WLTRYSVC.EXE
c:\windows\system32\wltrysvc.exe

c:\windows\system32\ntdll.dll

c:\windows\system32\kernel32.dll

c:\windows\system32\user32.dll

c:\windows\system32\gdi32.dll

c:\windows\system32\advapi32.dll

c:\windows\system32\rpcrt4.dll

c:\windows\system32\secur32.dll

c:\windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_6b128700\msvcr80.dll

c:\windows\system32\msvcrt.dll

C:\WINDOWS\SYSTEM32\BCMWLTRY.EXE
c:\windows\system32\bcmwltry.exe

c:\windows\system32\ntdll.dll

c:\windows\system32\kernel32.dll

c:\windows\system32\crypt32.dll

c:\windows\system32\advapi32.dll

c:\windows\system32\rpcrt4.dll

c:\windows\system32\secur32.dll

c:\windows\system32\msvcrt.dll

c:\windows\system32\user32.dll

c:\windows\system32\gdi32.dll

c:\windows\system32\msasn1.dll

c:\windows\system32\cfgmgr32.dll

c:\windows\system32\setupapi.dll

c:\windows\system32\iphlpapi.dll

c:\windows\system32\ws2_32.dll

c:\windows\system32\ws2help.dll

c:\windows\system32\powrprof.dll

c:\windows\system32\shlwapi.dll

c:\windows\system32\bcm1xsup.dll

c:\windows\system32\bcmwlpkt.dll

c:\windows\system32\version.dll

c:\windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_6b128700\msvcr80.dll

c:\windows\winsxs\x86_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_3bf8fa05\mfc80.dll

c:\windows\system32\ole32.dll

c:\windows\system32\oleaut32.dll

c:\windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_6b128700\msvcp80.dll

c:\windows\system32\wsock32.dll

c:\windows\system32\wininet.dll

c:\windows\system32\winscard.dll

c:\windows\system32\wtsapi32.dll

c:\windows\system32\winsta.dll

c:\windows\system32\netapi32.dll

c:\windows\winsxs\x86_microsoft.vc80.mfcloc_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_91481303\mfc80enu.dll

c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2982_x-ww_ac3f9c03\comctl32.dll

c:\windows\system32\uxtheme.dll

c:\windows\system32\wltrynt.dll

c:\windows\winsxs\x86_microsoft.vc80.atl_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_cbb27474\atl80.dll

c:\windows\system32\clbcatq.dll

c:\windows\system32\comres.dll

c:\windows\system32\es.dll

c:\windows\system32\xpsp2res.dll

c:\windows\system32\apphelp.dll

c:\windows\system32\rsaenh.dll

c:\windows\system32\shell32.dll

c:\windows\system32\comctl32.dll

c:\windows\system32\wintrust.dll

c:\windows\system32\imagehlp.dll

c:\windows\system32\sxs.dll

c:\windows\system32\msi.dll

C:\WINDOWS\SYSTEM32\SPOOLSV.EXE
c:\windows\system32\spoolsv.exe

c:\windows\system32\ntdll.dll

c:\windows\system32\kernel32.dll

c:\windows\system32\advapi32.dll

c:\windows\system32\rpcrt4.dll

c:\windows\system32\secur32.dll

c:\windows\system32\gdi32.dll

c:\windows\system32\user32.dll

c:\windows\system32\msvcrt.dll

c:\windows\system32\shimeng.dll

c:\windows\apppatch\acgenral.dll

c:\windows\system32\winmm.dll

c:\windows\system32\ole32.dll

c:\windows\system32\oleaut32.dll

c:\windows\system32\msacm32.dll

c:\windows\system32\version.dll

c:\windows\system32\shell32.dll

c:\windows\system32\shlwapi.dll

c:\windows\system32\userenv.dll

c:\windows\system32\uxtheme.dll

c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2982_x-ww_ac3f9c03\comctl32.dll

c:\windows\system32\comctl32.dll

c:\windows\system32\spoolss.dll

c:\windows\system32\ws2_32.dll

c:\windows\system32\ws2help.dll

c:\windows\system32\dnsapi.dll

c:\windows\system32\iphlpapi.dll

c:\windows\system32\rasadhlp.dll

c:\windows\system32\localspl.dll

c:\windows\system32\sfc_os.dll

c:\windows\system32\wintrust.dll

c:\windows\system32\crypt32.dll

c:\windows\system32\msasn1.dll

c:\windows\system32\imagehlp.dll

c:\windows\system32\winspool.drv

c:\windows\system32\netapi32.dll

c:\windows\system32\cnbjmon.dll

c:\windows\system32\cnmlm83.dll

c:\windows\system32\psapi.dll

c:\windows\system32\mdimon.dll

c:\windows\system32\msi.dll

c:\windows\system32\fxsmon.dll

c:\windows\system32\fxsevent.dll

c:\windows\system32\pjlmon.dll

c:\windows\system32\tcpmon.dll

c:\windows\system32\usbmon.dll

c:\windows\system32\spool\prtprocs\w32x86\cnmpd83.dll

c:\windows\system32\spool\prtprocs\w32x86\mdippr.dll

c:\windows\system32\mswsock.dll

c:\windows\system32\winrnr.dll

c:\windows\system32\wldap32.dll

c:\windows\system32\win32spl.dll

c:\windows\system32\netrap.dll

c:\windows\system32\ntdsapi.dll

c:\windows\system32\clbcatq.dll

c:\windows\system32\comres.dll

c:\windows\system32\xpsp2res.dll

c:\windows\system32\inetpp.dll

C:\WINDOWS\EXPLORER.EXE
c:\windows\explorer.exe

c:\windows\system32\ntdll.dll

c:\windows\system32\kernel32.dll

c:\windows\system32\advapi32.dll

c:\windows\system32\rpcrt4.dll

c:\windows\system32\secur32.dll

c:\windows\system32\browseui.dll

c:\windows\system32\gdi32.dll

c:\windows\system32\user32.dll

c:\windows\system32\msvcrt.dll

c:\windows\system32\ole32.dll

c:\windows\system32\shlwapi.dll

c:\windows\system32\oleaut32.dll

c:\windows\system32\shdocvw.dll

c:\windows\system32\crypt32.dll

c:\windows\system32\msasn1.dll

c:\windows\system32\cryptui.dll

c:\windows\system32\wintrust.dll

c:\windows\system32\imagehlp.dll

c:\windows\system32\netapi32.dll

c:\windows\system32\wininet.dll

c:\windows\system32\wldap32.dll

c:\windows\system32\version.dll

c:\windows\system32\shell32.dll

c:\windows\system32\uxtheme.dll

c:\windows\system32\shimeng.dll

c:\windows\apppatch\acgenral.dll

c:\windows\system32\winmm.dll

c:\windows\system32\msacm32.dll

c:\windows\system32\userenv.dll

c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2982_x-ww_ac3f9c03\comctl32.dll

c:\windows\system32\comctl32.dll

c:\windows\system32\apphelp.dll

c:\windows\system32\clbcatq.dll

c:\windows\system32\comres.dll

c:\windows\system32\cscui.dll

c:\windows\system32\cscdll.dll

c:\windows\system32\themeui.dll

c:\windows\system32\msimg32.dll

c:\windows\system32\xpsp2res.dll

c:\windows\system32\actxprxy.dll

c:\program files\google\google desktop search\googledesktopdeskbar2.dll

c:\windows\system32\imm32.dll

c:\program files\google\google desktop search\googledesktopresources_en.dll

c:\program files\google\google desktop search\googledesktopcommon.dll

c:\windows\system32\rsaenh.dll

c:\windows\system32\asycfilt.dll

c:\program files\google\google desktop search\googledesktophyper.dll

c:\windows\system32\samlib.dll

c:\windows\system32\qomcyxxy.dll

c:\windows\system32\shfolder.dll

c:\windows\system32\urlmon.dll

c:\windows\system32\ws2_32.dll

c:\windows\system32\ws2help.dll

c:\windows\system32\setupapi.dll

c:\windows\system32\msi.dll

c:\windows\system32\wsock32.dll

c:\windows\system32\sxs.dll

c:\windows\system32\netshell.dll

c:\windows\system32\rtutils.dll

c:\windows\system32\credui.dll

c:\windows\system32\atl.dll

c:\windows\system32\iphlpapi.dll

c:\windows\system32\nnnmlicy.dll

c:\windows\system32\linkinfo.dll

c:\windows\system32\ntshrui.dll

c:\windows\system32\comdlg32.dll

c:\windows\system32\winsta.dll

c:\windows\system32\webcheck.dll

c:\windows\system32\stobject.dll

c:\windows\system32\batmeter.dll

c:\windows\system32\powrprof.dll

c:\windows\system32\wtsapi32.dll

c:\windows\system32\wdmaud.drv

c:\windows\system32\msacm32.drv

c:\windows\system32\midimap.dll

c:\windows\system32\wzcsapi.dll

c:\windows\system32\wzcdlg.dll

c:\windows\system32\winhttp.dll

c:\windows\system32\browselc.dll

c:\windows\system32\mpr.dll

c:\windows\system32\drprov.dll

c:\windows\system32\ntlanman.dll

c:\windows\system32\netui0.dll

c:\windows\system32\netui1.dll

c:\windows\system32\netrap.dll

c:\windows\system32\davclnt.dll

c:\windows\system32\msgina.dll

c:\windows\system32\odbc32.dll

c:\windows\system32\odbcint.dll

c:\windows\system32\duser.dll

c:\windows\system32\mlang.dll

c:\windows\system32\fxsst.dll

c:\windows\system32\winspool.drv

c:\windows\system32\fxsapi.dll

c:\windows\system32\ntmarta.dll

c:\program files\spyware terminator\sptcontmenu.dll

c:\windows\system32\hccutils.dll

c:\program files\dell\quickset\dadkeyb.dll

c:\windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_6b128700\msvcr80.dll

c:\program files\common files\adobe\acrobat\activex\pdfshell.dll

c:\windows\system32\igfxpph.dll

c:\windows\system32\igfxres.dll

c:\windows\system32\igfxress.dll

c:\windows\system32\igfxsrvc.dll

c:\windows\system32\zipfldr.dll

c:\program files\roxio\drag-to-disc\shellex.dll

c:\windows\system32\dlaapi_w.dll

c:\windows\system32\cdrtc.dll

c:\program files\roxio\drag-to-disc\shellres.dll

c:\windows\system32\mydocs.dll

c:\windows\system32\rasapi32.dll

c:\windows\system32\rasman.dll

c:\windows\system32\tapi32.dll

c:\windows\system32\msv1_0.dll

c:\windows\system32\sensapi.dll

c:\windows\system32\mswsock.dll

c:\windows\system32\rasadhlp.dll

c:\windows\system32\dnsapi.dll

c:\windows\system32\winrnr.dll

c:\windows\system32\hnetcfg.dll

c:\windows\system32\wshtcpip.dll

c:\program files\mcafee\common framework\jrmac.dll

c:\program files\mcafee\virusscan enterprise\scriptcl.dll

c:\windows\system32\jscript.dll

c:\windows\system32\vbscript.dll

c:\windows\system32\mfc42.dll

c:\windows\system32\dsound.dll

c:\windows\system32\shdoclc.dll

c:\windows\system32\mshtml.dll

c:\windows\system32\msls31.dll

c:\windows\system32\psapi.dll

c:\windows\system32\wbem\wbemprox.dll

c:\windows\system32\wbem\wbemcomn.dll

c:\windows\system32\wbem\wbemsvc.dll

c:\windows\system32\wbem\fastprox.dll

c:\windows\system32\msvcp60.dll

c:\windows\system32\ntdsapi.dll

c:\windows\system32\mscoree.dll

c:\windows\microsoft.net\framework\v1.1.4322\mscorie.dll

c:\windows\microsoft.net\framework\v1.1.4322\msvcr71.dll

c:\windows\microsoft.net\framework\v1.1.4322\mscorld.dll

c:\windows\system32\piqdwyqg.dll

c:\program files\common files\autodesk shared\acshellex\acshellextension.dll

c:\windows\winsxs\x86_microsoft.vc80.atl_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_cbb27474\atl80.dll

c:\windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_6b128700\msvcp80.dll

c:\program files\mcafee\virusscan enterprise\shext.dll

c:\windows\system32\lz32.dll

c:\program files\common files\adobe\acrobat\activex\acroiehelper.dll

c:\program files\microsoft office\office11\msohev.dll

C:\PROGRAM FILES\DELL SUPPORT CENTER\BIN\SPRTSVC.EXE
c:\program files\dell support center\bin\sprtsvc.exe

c:\windows\system32\ntdll.dll

c:\windows\system32\kernel32.dll

c:\windows\system32\user32.dll

c:\windows\system32\gdi32.dll

c:\windows\system32\advapi32.dll

c:\windows\system32\rpcrt4.dll

c:\windows\system32\secur32.dll

c:\windows\system32\version.dll

c:\windows\system32\uxtheme.dll

c:\windows\system32\msvcrt.dll

c:\program files\dell support center\bin\sprtsched.dll

c:\windows\system32\shell32.dll

c:\windows\system32\shlwapi.dll

c:\windows\system32\ole32.dll

c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2982_x-ww_ac3f9c03\comctl32.dll

c:\windows\system32\comctl32.dll

c:\program files\dell support center\bin\sprtfod.dll

c:\windows\system32\wsock32.dll

c:\windows\system32\ws2_32.dll

c:\windows\system32\ws2help.dll

c:\program files\dell support center\bin\libeay32.dll

c:\windows\system32\netapi32.dll

c:\windows\system32\wininet.dll

c:\windows\system32\crypt32.dll

c:\windows\system32\msasn1.dll

c:\windows\system32\oleaut32.dll

c:\windows\system32\urlmon.dll

c:\program files\dell support center\bin\sprtsync.dll

c:\windows\system32\winspool.drv

c:\program files\dell support center\bin\sprtupdate.dll

c:\windows\system32\msi.dll

c:\windows\system32\mswsock.dll

c:\windows\system32\dnsapi.dll

c:\windows\system32\iphlpapi.dll

c:\windows\system32\winrnr.dll

c:\windows\system32\wldap32.dll

c:\windows\system32\rasadhlp.dll

c:\windows\system32\xpsp2res.dll

c:\windows\system32\clbcatq.dll

c:\windows\system32\comres.dll

c:\windows\system32\rasapi32.dll

c:\windows\system32\rasman.dll

c:\windows\system32\tapi32.dll

c:\windows\system32\rtutils.dll

c:\windows\system32\winmm.dll

c:\windows\system32\sensapi.dll

c:\windows\system32\qmgrprxy.dll

c:\windows\system32\psapi.dll

c:\windows\system32\wbem\wbemdisp.dll

c:\windows\system32\msvcp60.dll

c:\windows\system32\wbem\wbemprox.dll

c:\windows\system32\wbem\wbemcomn.dll

c:\windows\system32\wbem\wmiutils.dll

c:\windows\system32\wbem\wbemsvc.dll

c:\windows\system32\wbem\fastprox.dll

c:\windows\system32\ntdsapi.dll

c:\windows\system32\vbscript.dll

c:\windows\system32\mfc42.dll

c:\windows\system32\scrrun.dll

c:\windows\system32\sxs.dll

c:\windows\system32\wshom.ocx

c:\windows\system32\mpr.dll

c:\windows\system32\setupapi.dll

c:\windows\system32\msxml3.dll

c:\windows\system32\mlang.dll

c:\program files\common files\microsoft shared\office11\msoxmlmf.dll

c:\windows\system32\setup\fxsocm.dll

c:\windows\system32\atl.dll

c:\windows\system32\advpack.dll

C:\PROGRAM FILES\SPYWARE TERMINATOR\SP_RSSER.EXE
c:\program files\spyware terminator\sp_rsser.exe

c:\windows\system32\ntdll.dll

c:\windows\system32\kernel32.dll

c:\windows\system32\oleaut32.dll

c:\windows\system32\advapi32.dll

c:\windows\system32\rpcrt4.dll

c:\windows\system32\secur32.dll

c:\windows\system32\gdi32.dll

c:\windows\system32\user32.dll

c:\windows\system32\msvcrt.dll

c:\windows\system32\ole32.dll

c:\windows\system32\version.dll

c:\windows\system32\shell32.dll

c:\windows\system32\shlwapi.dll

c:\windows\system32\shfolder.dll

c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2982_x-ww_ac3f9c03\comctl32.dll

c:\windows\system32\comctl32.dll

c:\windows\system32\uxtheme.dll

c:\windows\system32\ntmarta.dll

c:\windows\system32\wldap32.dll

c:\windows\system32\samlib.dll

c:\windows\system32\psapi.dll

C:\WINDOWS\SYSTEM32\STACSV.EXE
c:\windows\system32\stacsv.exe

c:\windows\system32\ntdll.dll

c:\windows\system32\kernel32.dll

c:\windows\system32\advapi32.dll

c:\windows\system32\rpcrt4.dll

c:\windows\system32\secur32.dll

c:\windows\system32\user32.dll

c:\windows\system32\gdi32.dll

c:\windows\system32\ole32.dll

c:\windows\system32\msvcrt.dll

c:\windows\system32\oleaut32.dll

c:\windows\system32\setupapi.dll

c:\windows\system32\dsound.dll

c:\windows\system32\winmm.dll

c:\windows\system32\version.dll

c:\windows\system32\wintrust.dll

c:\windows\system32\crypt32.dll

c:\windows\system32\msasn1.dll

c:\windows\system32\imagehlp.dll

c:\windows\system32\wdmaud.drv

c:\windows\system32\msacm32.drv

c:\windows\system32\msacm32.dll

c:\windows\system32\midimap.dll

c:\windows\system32\uxtheme.dll

c:\windows\system32\clbcatq.dll

c:\windows\system32\comres.dll

c:\windows\system32\stacapi.dll

c:\windows\system32\xpsp2res.dll

C:\WINDOWS\SYSTEM32\SVCHOST.EXE
c:\windows\system32\svchost.exe

c:\windows\system32\ntdll.dll

c:\windows\system32\kernel32.dll

c:\windows\system32\advapi32.dll

c:\windows\system32\rpcrt4.dll

c:\windows\system32\secur32.dll

c:\windows\system32\shimeng.dll

c:\windows\apppatch\acgenral.dll

c:\windows\system32\user32.dll

c:\windows\system32\gdi32.dll

c:\windows\system32\winmm.dll

c:\windows\system32\ole32.dll

c:\windows\system32\msvcrt.dll

c:\windows\system32\oleaut32.dll

c:\windows\system32\msacm32.dll

c:\windows\system32\version.dll

c:\windows\system32\shell32.dll

c:\windows\system32\shlwapi.dll

c:\windows\system32\userenv.dll

c:\windows\system32\uxtheme.dll

c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2982_x-ww_ac3f9c03\comctl32.dll

c:\windows\system32\comctl32.dll

c:\windows\system32\wiaservc.dll

c:\windows\system32\cfgmgr32.dll

c:\windows\system32\setupapi.dll

c:\windows\system32\mscms.dll

c:\windows\system32\winspool.drv

c:\windows\system32\winsta.dll

c:\windows\system32\netapi32.dll

c:\windows\system32\xpsp2res.dll

c:\windows\system32\clbcatq.dll

c:\windows\system32\comres.dll

c:\windows\system32\wintrust.dll

c:\windows\system32\crypt32.dll

c:\windows\system32\msasn1.dll

c:\windows\system32\imagehlp.dll

c:\windows\system32\actxprxy.dll

c:\windows\system32\sti.dll

C:\PROGRAM FILES\VIEWPOINT\COMMON\VIEWPOINTSERVICE.EXE
c:\program files\viewpoint\common\viewpointservice.exe

c:\windows\system32\ntdll.dll

c:\windows\system32\kernel32.dll

c:\windows\system32\user32.dll

c:\windows\system32\gdi32.dll

c:\windows\system32\advapi32.dll

c:\windows\system32\rpcrt4.dll

c:\windows\system32\secur32.dll

c:\windows\system32\shell32.dll

c:\windows\system32\msvcrt.dll

c:\windows\system32\shlwapi.dll

c:\windows\system32\ole32.dll

c:\windows\system32\oleaut32.dll

c:\windows\system32\atl.dll

c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2982_x-ww_ac3f9c03\comctl32.dll

c:\windows\system32\comctl32.dll

c:\windows\system32\uxtheme.dll

c:\windows\system32\xpsp2res.dll

C:\DOCUMENTS AND SETTINGS\ALL USERS\APPLICATION DATA\YPEFSVAL\STYTGDCP.EXE
c:\documents and settings\all users\application data\ypefsval\stytgdcp.exe

c:\windows\system32\ntdll.dll

c:\windows\system32\kernel32.dll

c:\windows\system32\ole32.dll

c:\windows\system32\advapi32.dll

c:\windows\system32\rpcrt4.dll

c:\windows\system32\secur32.dll

c:\windows\system32\gdi32.dll

c:\windows\system32\user32.dll

c:\windows\system32\msvcrt.dll

c:\windows\system32\uxtheme.dll

c:\windows\system32\urlmon.dll

c:\windows\system32\shlwapi.dll

c:\windows\system32\version.dll

c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2982_x-ww_ac3f9c03\comctl32.dll

c:\windows\system32\oleaut32.dll

c:\windows\system32\mlang.dll

c:\windows\system32\wininet.dll

c:\windows\system32\crypt32.dll

c:\windows\system32\msasn1.dll

c:\windows\system32\shell32.dll

c:\windows\system32\comctl32.dll

c:\windows\system32\wsock32.dll

c:\windows\system32\ws2_32.dll

c:\windows\system32\ws2help.dll

c:\windows\system32\mswsock.dll

c:\windows\system32\hnetcfg.dll

c:\windows\system32\wshtcpip.dll

c:\windows\system32\rasapi32.dll

c:\windows\system32\rasman.dll

c:\windows\system32\netapi32.dll

c:\windows\system32\tapi32.dll

c:\windows\system32\rtutils.dll

c:\windows\system32\winmm.dll

c:\windows\system32\sensapi.dll

c:\windows\system32\userenv.dll

c:\windows\system32\msv1_0.dll

c:\windows\system32\iphlpapi.dll

c:\windows\system32\rasadhlp.dll

c:\windows\system32\dnsapi.dll

c:\windows\system32\winrnr.dll

c:\windows\system32\wldap32.dll

C:\PROGRAM FILES\DELLTPAD\APOINT.EXE
c:\program files\delltpad\apoint.exe

c:\windows\system32\ntdll.dll

c:\windows\system32\kernel32.dll

c:\windows\system32\user32.dll

c:\windows\system32\gdi32.dll

c:\windows\system32\advapi32.dll

c:\windows\system32\rpcrt4.dll

c:\windows\system32\secur32.dll

c:\windows\system32\shell32.dll

c:\windows\system32\msvcrt.dll

c:\windows\system32\shlwapi.dll

c:\windows\system32\psapi.dll

c:\windows\system32\winmm.dll

c:\windows\system32\setupapi.dll

c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2982_x-ww_ac3f9c03\comctl32.dll

c:\windows\system32\comctl32.dll

c:\windows\system32\uxtheme.dll

c:\program files\delltpad\apoint.dll

c:\windows\system32\ole32.dll

c:\windows\system32\vxdif.dll

c:\program files\delltpad\ezauto.dll

c:\windows\system32\netapi32.dll

c:\windows\system32\apphelp.dll

c:\windows\system32\clbcatq.dll

c:\windows\system32\comres.dll

c:\windows\system32\oleaut32.dll

c:\windows\system32\version.dll

c:\windows\system32\urlmon.dll

c:\windows\system32\wininet.dll

c:\windows\system32\crypt32.dll

c:\windows\system32\msasn1.dll

c:\windows\system32\piqdwyqg.dll

C:\WINDOWS\SYSTEM32\HKCMD.EXE
c:\windows\system32\hkcmd.exe

c:\windows\system32\ntdll.dll

c:\windows\system32\kernel32.dll

c:\windows\system32\hccutils.dll

c:\windows\system32\user32.dll

c:\windows\system32\gdi32.dll

c:\windows\system32\advapi32.dll

c:\windows\system32\rpcrt4.dll

c:\windows\system32\secur32.dll

c:\windows\system32\ole32.dll

c:\windows\system32\msvcrt.dll

c:\windows\system32\oleaut32.dll

c:\windows\system32\shell32.dll

c:\windows\system32\shlwapi.dll

c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2982_x-ww_ac3f9c03\comctl32.dll

c:\windows\system32\comctl32.dll

c:\windows\system32\uxtheme.dll

c:\windows\system32\clbcatq.dll

c:\windows\system32\comres.dll

c:\windows\system32\version.dll

c:\windows\system32\xpsp2res.dll

c:\windows\system32\igfxsrvc.dll

c:\windows\system32\igfxres.dll

c:\windows\system32\piqdwyqg.dll

c:\windows\system32\wininet.dll

c:\windows\system32\crypt32.dll

c:\windows\system32\msasn1.dll

C:\WINDOWS\SYSTEM32\IGFXPERS.EXE
c:\windows\system32\igfxpers.exe

c:\windows\system32\ntdll.dll

c:\windows\system32\kernel32.dll

c:\windows\system32\user32.dll

c:\windows\system32\gdi32.dll

c:\windows\system32\advapi32.dll

c:\windows\system32\rpcrt4.dll

c:\windows\system32\secur32.dll

c:\windows\system32\ole32.dll

c:\windows\system32\msvcrt.dll

c:\windows\system32\oleaut32.dll

c:\windows\system32\uxtheme.dll

c:\windows\system32\clbcatq.dll

c:\windows\system32\comres.dll

c:\windows\system32\version.dll

c:\windows\system32\xpsp2res.dll

c:\windows\system32\igfxsrvc.dll

c:\windows\system32\wtsapi32.dll

c:\windows\system32\winsta.dll

c:\windows\system32\netapi32.dll

c:\windows\system32\piqdwyqg.dll

c:\windows\system32\shlwapi.dll

c:\windows\system32\wininet.dll

c:\windows\system32\crypt32.dll

c:\windows\system32\msasn1.dll

c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2982_x-ww_ac3f9c03\comctl32.dll

c:\windows\system32\shell32.dll

c:\windows\system32\comctl32.dll

C:\PROGRAM FILES\JAVA\JRE1.5.0_06\BIN\JUSCHED.EXE
c:\program files\java\jre1.5.0_06\bin\jusched.exe

c:\windows\system32\ntdll.dll

c:\windows\system32\kernel32.dll

c:\windows\system32\advapi32.dll

c:\windows\system32\rpcrt4.dll

c:\windows\system32\secur32.dll

c:\windows\system32\wininet.dll

c:\windows\system32\crypt32.dll

c:\windows\system32\msvcrt.dll

c:\windows\system32\user32.dll

c:\windows\system32\gdi32.dll

c:\windows\system32\msasn1.dll

c:\windows\system32\oleaut32.dll

c:\windows\system32\ole32.dll

c:\windows\system32\shlwapi.dll

c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2982_x-ww_ac3f9c03\comctl32.dll

c:\windows\system32\uxtheme.dll

C:\PROGRAM FILES\DELL\QUICKSET\QUICKSET.EXE
c:\program files\dell\quickset\quickset.exe

c:\windows\system32\ntdll.dll

c:\windows\system32\kernel32.dll

c:\windows\system32\shlwapi.dll

c:\windows\system32\advapi32.dll

c:\windows\system32\rpcrt4.dll

c:\windows\system32\secur32.dll

c:\windows\system32\gdi32.dll

c:\windows\system32\user32.dll

c:\windows\system32\msvcrt.dll

c:\windows\system32\powrprof.dll

c:\windows\system32\setupapi.dll

c:\windows\system32\wininet.dll

c:\windows\system32\crypt32.dll

c:\windows\system32\msasn1.dll

c:\windows\system32\oleaut32.dll

c:\windows\system32\ole32.dll

c:\windows\system32\rasapi32.dll

c:\windows\system32\rasman.dll

c:\windows\system32\ws2_32.dll

c:\windows\system32\ws2help.dll

c:\windows\system32\netapi32.dll

c:\windows\system32\tapi32.dll

c:\windows\system32\rtutils.dll

c:\windows\system32\winmm.dll

c:\windows\system32\wtsapi32.dll

c:\windows\system32\winsta.dll

c:\windows\system32\psapi.dll

c:\windows\system32\rasdlg.dll

c:\windows\system32\mprapi.dll

c:\windows\system32\activeds.dll

c:\windows\system32\adsldpc.dll

c:\windows\system32\wldap32.dll

c:\windows\system32\atl.dll

c:\windows\system32\samlib.dll

c:\windows\system32\iphlpapi.dll

c:\program files\dell\quickset\iwh9.dll

c:\program files\dell\quickset\iwh10.dll

c:\windows\system32\comdlg32.dll

c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2982_x-ww_ac3f9c03\comctl32.dll

c:\windows\system32\shell32.dll

c:\windows\system32\winspool.drv

c:\windows\system32\oledlg.dll

c:\windows\system32\wintrust.dll

c:\windows\system32\imagehlp.dll

c:\program files\dell\quickset\preflibcl.dll

c:\windows\system32\preflib.dll

c:\windows\system32\uxtheme.dll

c:\program files\dell\quickset\dadkeyb.dll

c:\windows\system32\wdmaud.drv

c:\windows\system32\msacm32.drv

c:\windows\system32\msacm32.dll

c:\windows\system32\midimap.dll

c:\windows\system32\userenv.dll

c:\windows\system32\clbcatq.dll

c:\windows\system32\comres.dll

c:\windows\system32\version.dll

c:\windows\system32\rsaenh.dll

c:\windows\system32\xpsp2res.dll

c:\windows\system32\wbem\wbemprox.dll

c:\windows\system32\wbem\wbemcomn.dll

c:\windows\system32\wbem\wbemsvc.dll

c:\windows\system32\wbem\fastprox.dll

c:\windows\system32\msvcp60.dll

c:\windows\system32\ntdsapi.dll

c:\windows\system32\dnsapi.dll

c:\windows\system32\piqdwyqg.dll

C:\WINDOWS\SYSTEM32\WLTRAY.EXE
c:\windows\system32\wltray.exe

c:\windows\system32\ntdll.dll

c:\windows\system32\kernel32.dll

c:\windows\system32\preflib.dll

c:\windows\system32\advapi32.dll

c:\windows\system32\rpcrt4.dll

c:\windows\system32\secur32.dll

c:\windows\winsxs\x86_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_3bf8fa05\mfc80.dll

c:\windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_6b128700\msvcr80.dll

c:\windows\system32\msvcrt.dll

c:\windows\system32\gdi32.dll

c:\windows\system32\user32.dll

c:\windows\system32\shlwapi.dll

c:\windows\system32\msimg32.dll

c:\windows\system32\shell32.dll

c:\windows\system32\ole32.dll

c:\windows\system32\oleaut32.dll

c:\windows\system32\version.dll

c:\windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_6b128700\msvcp80.dll

c:\windows\system32\ws2_32.dll

c:\windows\system32\ws2help.dll

c:\windows\system32\crypt32.dll

c:\windows\system32\msasn1.dll

c:\windows\system32\wininet.dll

c:\windows\system32\iphlpapi.dll

c:\windows\system32\cfgmgr32.dll

c:\windows\system32\setupapi.dll

c:\windows\winsxs\x86_microsoft.vc80.mfcloc_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_91481303\mfc80enu.dll

c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2982_x-ww_ac3f9c03\comctl32.dll

c:\windows\system32\uxtheme.dll

c:\windows\system32\riched32.dll

c:\windows\system32\riched20.dll

c:\windows\system32\wtsapi32.dll

c:\windows\system32\winsta.dll

c:\windows\system32\netapi32.dll

c:\windows\system32\clbcatq.dll

c:\windows\system32\comres.dll

c:\windows\system32\xpsp2res.dll

c:\windows\system32\piqdwyqg.dll

c:\windows\system32\msi.dll

C:\WINDOWS\STSYSTRA.EXE
c:\windows\stsystra.exe

c:\windows\system32\ntdll.dll

c:\windows\system32\kernel32.dll

c:\windows\system32\stlang.dll

c:\windows\system32\mfc42u.dll

c:\windows\system32\msvcrt.dll

c:\windows\system32\gdi32.dll

c:\windows\system32\user32.dll

c:\windows\system32\shlwapi.dll

c:\windows\system32\advapi32.dll

c:\windows\system32\rpcrt4.dll

c:\windows\system32\secur32.dll

c:\windows\system32\shell32.dll

c:\windows\system32\comctl32.dll

c:\windows\system32\ole32.dll

c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2982_x-ww_ac3f9c03\comctl32.dll

c:\windows\system32\uxtheme.dll

c:\windows\system32\clbcatq.dll

c:\windows\system32\comres.dll

c:\windows\system32\oleaut32.dll

c:\windows\system32\version.dll

c:\windows\system32\xpsp2res.dll

c:\windows\system32\stacapi.dll

c:\windows\system32\setupapi.dll

c:\windows\system32\winmm.dll

c:\windows\system32\wintrust.dll

c:\windows\system32\crypt32.dll

c:\windows\system32\msasn1.dll

c:\windows\system32\imagehlp.dll

c:\windows\system32\wdmaud.drv

c:\windows\system32\msacm32.drv

c:\windows\system32\msacm32.dll

c:\windows\system32\midimap.dll

c:\windows\system32\piqdwyqg.dll

c:\windows\system32\wininet.dll

C:\WINDOWS\SYSTEM32\KADXMAIN.EXE
c:\windows\system32\kadxmain.exe

c:\windows\system32\ntdll.dll

c:\windows\system32\kernel32.dll

c:\windows\system32\kadxctl.dll

c:\windows\system32\shlwapi.dll

c:\windows\system32\advapi32.dll

c:\windows\system32\rpcrt4.dll

c:\windows\system32\secur32.dll

c:\windows\system32\gdi32.dll

c:\windows\system32\user32.dll

c:\windows\system32\msvcrt.dll

c:\windows\system32\setupapi.dll

c:\windows\system32\winmm.dll

c:\windows\system32\comdlg32.dll

c:\windows\system32\comctl32.dll

c:\windows\system32\shell32.dll

c:\windows\system32\ole32.dll

c:\windows\system32\oleaut32.dll

c:\windows\system32\winspool.drv

c:\windows\system32\oledlg.dll

c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2982_x-ww_ac3f9c03\comctl32.dll

c:\windows\system32\uxtheme.dll

c:\windows\system32\wintrust.dll

c:\windows\system32\crypt32.dll

c:\windows\system32\msasn1.dll

c:\windows\system32\imagehlp.dll

c:\windows\system32\wdmaud.drv

c:\windows\system32\msacm32.drv

c:\windows\system32\msacm32.dll

c:\windows\system32\midimap.dll

c:\windows\system32\xpsp2res.dll

c:\windows\system32\clbcatq.dll

c:\windows\system32\comres.dll

c:\windows\system32\version.dll

c:\windows\system32\piqdwyqg.dll

c:\windows\system32\wininet.dll

C:\PROGRAM FILES\COMMON FILES\INSTALLSHIELD\UPDATESERVICE\ISSCH.EXE
c:\program files\common files\installshield\updateservice\issch.exe

c:\windows\system32\ntdll.dll

c:\windows\system32\kernel32.dll

c:\windows\system32\user32.dll

c:\windows\system32\gdi32.dll

c:\windows\system32\advapi32.dll

c:\windows\system32\rpcrt4.dll

c:\windows\system32\secur32.dll

C:\PROGRAM FILES\ROXIO\DRAG-TO-DISC\DRGTODSC.EXE
c:\program files\roxio\drag-to-disc\drgtodsc.exe

c:\windows\system32\ntdll.dll

c:\windows\system32\kernel32.dll

c:\windows\system32\shfolder.dll

c:\windows\system32\msvcrt.dll

c:\windows\system32\advapi32.dll

c:\windows\system32\rpcrt4.dll

c:\windows\system32\secur32.dll

c:\program files\roxio\drag-to-disc\as_storage.dll

c:\windows\system32\version.dll

c:\windows\system32\shlwapi.dll

c:\windows\system32\gdi32.dll

c:\windows\system32\user32.dll

c:\windows\system32\ole32.dll

c:\windows\system32\oleaut32.dll

c:\windows\system32\comdlg32.dll

c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2982_x-ww_ac3f9c03\comctl32.dll

c:\windows\system32\shell32.dll

c:\windows\system32\winspool.drv

c:\windows\system32\oledlg.dll

c:\windows\system32\uxtheme.dll

c:\windows\system32\clbcatq.dll

c:\windows\system32\comres.dll

c:\program files\roxio\drag-to-disc\d2dres.dll

c:\windows\system32\ntmarta.dll

c:\windows\system32\wldap32.dll

c:\windows\system32\samlib.dll

c:\windows\system32\xpsp2res.dll

c:\windows\system32\dlaapi_w.dll

c:\windows\system32\cdrtc.dll

c:\windows\system32\cdral.dll

c:\windows\system32\setupapi.dll

c:\windows\system32\linkinfo.dll

c:\windows\system32\ntshrui.dll

c:\windows\system32\atl.dll

c:\windows\system32\netapi32.dll

c:\windows\system32\userenv.dll

c:\windows\system32\piqdwyqg.dll

c:\windows\system32\wininet.dll

c:\windows\system32\crypt32.dll

c:\windows\system32\msasn1.dll

C:\PROGRAM FILES\GOOGLE\GOOGLE DESKTOP SEARCH\GOOGLEDESKTOP.EXE
c:\program files\google\google desktop search\googledesktop.exe

c:\windows\system32\ntdll.dll

c:\windows\system32\kernel32.dll

c:\program files\google\google desktop search\googleservices.dll

c:\program files\google\google desktop search\googledesktopcommon.dll

c:\windows\system32\ole32.dll

c:\windows\system32\advapi32.dll

c:\windows\system32\rpcrt4.dll

c:\windows\system32\secur32.dll

c:\windows\system32\gdi32.dll

c:\windows\system32\user32.dll

c:\windows\system32\msvcrt.dll

c:\windows\system32\oleaut32.dll

c:\windows\system32\wininet.dll

c:\windows\system32\crypt32.dll

c:\windows\system32\msasn1.dll

c:\windows\system32\shlwapi.dll

c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2982_x-ww_ac3f9c03\comctl32.dll

c:\windows\system32\imm32.dll

c:\windows\system32\ws2_32.dll

c:\windows\system32\ws2help.dll

c:\windows\system32\userenv.dll

c:\windows\system32\psapi.dll

c:\program files\google\google desktop search\googledesktopresources_en.dll

c:\windows\system32\uxtheme.dll

c:\windows\system32\wtsapi32.dll

c:\windows\system32\winsta.dll

c:\windows\system32\netapi32.dll

c:\windows\system32\shell32.dll

c:\windows\system32\setupapi.dll

c:\windows\system32\mswsock.dll

c:\windows\system32\hnetcfg.dll

c:\windows\system32\wshtcpip.dll

c:\windows\system32\clbcatq.dll

c:\windows\system32\comres.dll

c:\windows\system32\version.dll

c:\windows\system32\msxml3.dll

c:\windows\system32\rsaenh.dll

c:\program files\google\google desktop search\googledesktophyper.dll

c:\windows\system32\asycfilt.dll

c:\windows\system32\piqdwyqg.dll

C:\WINDOWS\SYSTEM32\IGFXSRVC.EXE
c:\windows\system32\igfxsrvc.exe

c:\windows\system32\ntdll.dll

c:\windows\system32\kernel32.dll

c:\windows\system32\user32.dll

c:\windows\system32\gdi32.dll

c:\windows\system32\advapi32.dll

c:\windows\system32\rpcrt4.dll

c:\windows\system32\secur32.dll

c:\windows\system32\ole32.dll

c:\windows\system32\msvcrt.dll

c:\windows\system32\oleaut32.dll

c:\windows\system32\uxtheme.dll

c:\windows\system32\clbcatq.dll

c:\windows\system32\comres.dll

c:\windows\system32\version.dll

c:\windows\system32\xpsp2res.dll

c:\windows\system32\igfxsrvc.dll

c:\windows\system32\igfxdev.dll

c:\windows\system32\ntmarta.dll

c:\windows\system32\wldap32.dll

c:\windows\system32\samlib.dll

C:\PROGRAM FILES\DELL\MEDIADIRECT\PCMSERVICE.EXE
c:\program files\dell\mediadirect\pcmservice.exe

c:\windows\system32\ntdll.dll

c:\windows\system32\kernel32.dll

c:\windows\system32\wininet.dll

c:\windows\system32\advapi32.dll

c:\windows\system32\rpcrt4.dll

c:\windows\system32\secur32.dll

c:\windows\system32\crypt32.dll

c:\windows\system32\msvcrt.dll

c:\windows\system32\user32.dll

c:\windows\system32\gdi32.dll

c:\windows\system32\msasn1.dll

c:\windows\system32\oleaut32.dll

c:\windows\system32\ole32.dll

c:\windows\system32\shlwapi.dll

c:\windows\system32\ddraw.dll

c:\windows\system32\dciman32.dll

c:\windows\system32\d3d9.dll

c:\windows\system32\d3d8thk.dll

c:\windows\system32\version.dll

c:\windows\system32\winmm.dll

c:\program files\dell\mediadirect\mfc71.dll

c:\program files\dell\mediadirect\msvcr71.dll

c:\windows\system32\shell32.dll

c:\program files\dell\mediadirect\msvcp71.dll

c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2982_x-ww_ac3f9c03\comctl32.dll

c:\windows\system32\comctl32.dll

c:\windows\system32\uxtheme.dll

c:\windows\system32\clbcatq.dll

c:\windows\system32\comres.dll

c:\windows\system32\xpsp2res.dll

c:\program files\common files\system\wab32.dll

c:\windows\system32\msoert2.dll

c:\program files\common files\system\wab32res.dll

c:\windows\system32\msident.dll

c:\windows\system32\msidntld.dll

c:\windows\system32\pstorec.dll

c:\windows\system32\atl.dll

c:\program files\dell\mediadirect\kernel\common\clrcengine3.dll

c:\windows\system32\msxml3.dll

c:\windows\system32\urlmon.dll

c:\windows\system32\mlang.dll

c:\program files\dell\mediadirect\kernel\movie\clnavx.ax

c:\windows\system32\setupapi.dll

c:\windows\system32\comdlg32.dll

c:\windows\system32\piqdwyqg.dll

C:\PROGRAM FILES\CANON\MYPRINTER\BJMYPRT.EXE
c:\program files\canon\myprinter\bjmyprt.exe

c:\windows\system32\ntdll.dll

c:\windows\system32\kernel32.dll

c:\windows\system32\user32.dll

c:\windows\system32\gdi32.dll

c:\windows\system32\winspool.drv

c:\windows\system32\msvcrt.dll

c:\windows\system32\rpcrt4.dll

c:\windows\system32\advapi32.dll

c:\windows\system32\secur32.dll

c:\windows\system32\shell32.dll

c:\windows\system32\shlwapi.dll

c:\windows\system32\comctl32.dll

c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2982_x-ww_ac3f9c03\comctl32.dll

c:\windows\system32\uxtheme.dll

c:\program files\canon\myprinter\bjmyres.dll

c:\windows\system32\piqdwyqg.dll

c:\windows\system32\oleaut32.dll

c:\windows\system32\ole32.dll

c:\windows\system32\wininet.dll

c:\windows\system32\crypt32.dll

c:\windows\system32\msasn1.dll

C:\PROGRAM FILES\DELLAUTOMATEDPCTUNEUP\PTAGNT.EXE
c:\program files\dellautomatedpctuneup\ptagnt.exe

c:\windows\system32\ntdll.dll

c:\windows\system32\kernel32.dll

c:\windows\system32\shell32.dll

c:\windows\system32\advapi32.dll

c:\windows\system32\rpcrt4.dll

c:\windows\system32\secur32.dll

c:\windows\system32\gdi32.dll

c:\windows\system32\user32.dll

c:\windows\system32\msvcrt.dll

c:\windows\system32\shlwapi.dll

c:\windows\system32\wininet.dll

c:\windows\system32\crypt32.dll

c:\windows\system32\msasn1.dll

c:\windows\system32\oleaut32.dll

c:\windows\system32\ole32.dll

c:\windows\system32\version.dll

c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2982_x-ww_ac3f9c03\comctl32.dll

c:\windows\system32\uxtheme.dll

c:\windows\system32\ntmarta.dll

c:\windows\system32\wldap32.dll

c:\windows\system32\samlib.dll

c:\windows\system32\ws2_32.dll

c:\windows\system32\ws2help.dll

c:\program files\dellautomatedpctuneup\gtagnt.dll

c:\program files\dellautomatedpctuneup\cfgdata.dll

c:\program files\dellautomatedpctuneup\actmgr.dll

c:\windows\system32\clbcatq.dll

c:\windows\system32\comres.dll

c:\windows\system32\msxml3.dll

c:\windows\system32\urlmon.dll

c:\windows\system32\mlang.dll

c:\program files\common files\microsoft shared\office11\msoxmlmf.dll

c:\progra~1\dellau~1\gtaction\handlers\brkrsvch.dll

c:\progra~1\dellau~1\gtaction\handlers\grouph.dll

c:\progra~1\dellau~1\gtaction\handlers\pnph.dll

c:\progra~1\dellau~1\gtaction\handlers\qdiagh.dll

c:\progra~1\dellau~1\gtaction\handlers\trgloadh.dll

c:\progra~1\dellau~1\gtaction\handlers\trgregh.dll

c:\program files\dellautomatedpctuneup\trgmgr.dll

c:\windows\system32\oleacc.dll

c:\windows\system32\msvcp60.dll

c:\windows\system32\winspool.drv

c:\windows\system32\rasapi32.dll

c:\windows\system32\rasman.dll

c:\windows\system32\netapi32.dll

c:\windows\system32\tapi32.dll

c:\windows\system32\rtutils.dll

c:\windows\system32\winmm.dll

c:\progra~1\dellau~1\gdql_d.dll

c:\windows\system32\comdlg32.dll

c:\windows\system32\mpr.dll

c:\windows\system32\msacm32.dll

c:\windows\system32\msvfw32.dll

c:\windows\system32\avicap32.dll

c:\windows\system32\sxs.dll

c:\windows\system32\iphlpapi.dll

c:\windows\system32\setupapi.dll

c:\windows\system32\cabinet.dll

c:\windows\system32\msv1_0.dll

c:\windows\system32\userenv.dll

c:\windows\system32\sensapi.dll

c:\windows\system32\piqdwyqg.dll

c:\progra~1\dellau~1\gtaction\triggers\timert.dll

c:\progra~1\dellau~1\gtaction\triggers\ptproct.dll

c:\windows\system32\psapi.dll

c:\progra~1\dellau~1\gtaction\triggers\ptwnhnt.dll

C:\PROGRAM FILES\DELL SUPPORT CENTER\BIN\SPRTCMD.EXE
c:\program files\dell support center\bin\sprtcmd.exe

c:\windows\system32\ntdll.dll

c:\windows\system32\kernel32.dll

c:\windows\system32\user32.dll

c:\windows\system32\gdi32.dll

c:\windows\system32\advapi32.dll

c:\windows\system32\rpcrt4.dll

c:\windows\system32\secur32.dll

c:\windows\system32\shlwapi.dll

c:\windows\system32\msvcrt.dll

c:\windows\system32\shell32.dll

c:\windows\system32\version.dll

c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2982_x-ww_ac3f9c03\comctl32.dll

c:\windows\system32\comctl32.dll

c:\windows\system32\uxtheme.dll

c:\program files\dell support center\bin\sprtmessage.dll

c:\windows\system32\mscoree.dll

c:\windows\microsoft.net\framework\v1.1.4322\mscorwks.dll

c:\windows\microsoft.net\framework\v1.1.4322\msvcr71.dll

c:\windows\microsoft.net\framework\v1.1.4322\fusion.dll

c:\windows\system32\ole32.dll

c:\windows\microsoft.net\framework\v1.1.4322\mscorlib.dll

c:\windows\assembly\nativeimages1_v1.1.4322\mscorlib\1.0.5000.0__b77a5c561934e089_149cb37f\mscorlib.dll

c:\windows\microsoft.net\framework\v1.1.4322\mscorjit.dll

c:\program files\dell support center\bin\sprtsched.dll

c:\program files\dell support center\bin\sprtevent.dll

c:\windows\system32\oleaut32.dll

c:\program files\dell support center\bin\sprtfod.dll

c:\windows\system32\wsock32.dll

c:\windows\system32\ws2_32.dll

c:\windows\system32\ws2help.dll

c:\program files\dell support center\bin\libeay32.dll

c:\windows\system32\netapi32.dll

c:\windows\system32\wininet.dll

c:\windows\system32\crypt32.dll

c:\windows\system32\msasn1.dll

c:\windows\system32\urlmon.dll

c:\program files\dell support center\bin\sprtsync.dll

c:\windows\system32\winspool.drv

c:\program files\dell support center\bin\sprtui.dll

c:\windows\microsoft.net\framework\v1.1.4322\mscorsn.dll

c:\program files\dell support center\bin\supportsoft.agent.sprocket.dll

c:\program files\dell support center\bin\supportsoft.agent.sprocket.supportmessage.dll

c:\windows\system32\mswsock.dll

c:\windows\assembly\gac\system.xml\1.0.5000.0__b77a5c561934e089\system.xml.dll

c:\windows\system32\dnsapi.dll

c:\windows\assembly\nativeimages1_v1.1.4322\system.xml\1.0.5000.0__b77a5c561934e089_b55aaf8f\system.xml.dll

c:\windows\system32\iphlpapi.dll

c:\windows\assembly\gac\system\1.0.5000.0__b77a5c561934e089\system.dll

c:\windows\assembly\nativeimages1_v1.1.4322\system\1.0.5000.0__b77a5c561934e089_8e32fb2f\system.dll

c:\windows\system32\winrnr.dll

c:\windows\system32\wldap32.dll

c:\windows\system32\rasadhlp.dll

c:\windows\system32\xpsp2res.dll

c:\windows\system32\clbcatq.dll

c:\windows\system32\comres.dll

c:\windows\system32\qmgrprxy.dll

c:\windows\system32\psapi.dll

c:\windows\system32\wbem\wbemdisp.dll

c:\windows\system32\msvcp60.dll

c:\windows\system32\wbem\wbemprox.dll

c:\windows\system32\wbem\wbemcomn.dll

c:\windows\system32\wbem\wmiutils.dll

c:\windows\system32\wbem\wbemsvc.dll

c:\windows\system32\wbem\fastprox.dll

c:\windows\system32\ntdsapi.dll

c:\windows\system32\vbscript.dll

c:\windows\system32\mfc42.dll

c:\windows\system32\scrrun.dll

c:\windows\system32\sxs.dll

c:\windows\system32\wshom.ocx

c:\windows\system32\mpr.dll

c:\windows\system32\setupapi.dll

c:\windows\system32\msxml3.dll

c:\windows\system32\mlang.dll

c:\program files\common files\microsoft shared\office11\msoxmlmf.dll

c:\windows\system32\setup\fxsocm.dll

c:\windows\system32\atl.dll

c:\windows\system32\tapi32.dll

c:\windows\system32\rtutils.dll

c:\windows\system32\winmm.dll

c:\windows\system32\advpack.dll

c:\windows\system32\linkinfo.dll

c:\windows\system32\ntshrui.dll

c:\windows\system32\userenv.dll

c:\windows\system32\piqdwyqg.dll

C:\WINDOWS\SYSTEM32\IDGRUXSJ.EXE
c:\windows\system32\idgruxsj.exe

c:\windows\system32\ntdll.dll

c:\windows\system32\kernel32.dll

c:\windows\system32\shlwapi.dll

c:\windows\system32\advapi32.dll

c:\windows\system32\rpcrt4.dll

c:\windows\system32\secur32.dll

c:\windows\system32\gdi32.dll

c:\windows\system32\user32.dll

c:\windows\system32\msvcrt.dll

c:\windows\system32\uxtheme.dll

c:\windows\system32\shell32.dll

c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2982_x-ww_ac3f9c03\comctl32.dll

c:\windows\system32\comctl32.dll

c:\windows\system32\piqdwyqg.dll

c:\windows\system32\oleaut32.dll

c:\windows\system32\ole32.dll

c:\windows\system32\wininet.dll

c:\windows\system32\crypt32.dll

c:\windows\system32\msasn1.dll

C:\PROGRAM FILES\DELLTPAD\APMSGFWD.EXE
c:\program files\delltpad\apmsgfwd.exe

c:\windows\system32\ntdll.dll

c:\windows\system32\kernel32.dll

c:\windows\system32\shlwapi.dll

c:\windows\system32\advapi32.dll

c:\windows\system32\rpcrt4.dll

c:\windows\system32\secur32.dll

c:\windows\system32\gdi32.dll

c:\windows\system32\user32.dll

c:\windows\system32\msvcrt.dll

c:\windows\system32\psapi.dll

c:\windows\system32\uxtheme.dll

c:\windows\system32\piqdwyqg.dll

c:\windows\system32\oleaut32.dll

c:\windows\system32\ole32.dll

c:\windows\system32\wininet.dll

c:\windows\system32\crypt32.dll

c:\windows\system32\msasn1.dll

c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2982_x-ww_ac3f9c03\comctl32.dll

c:\windows\system32\shell32.dll

C:\PROGRAM FILES\DIGITAL LINE DETECT\DLG.EXE
c:\program files\digital line detect\dlg.exe

c:\windows\system32\ntdll.dll

c:\windows\system32\kernel32.dll

c:\windows\system32\user32.dll

c:\windows\system32\gdi32.dll

c:\windows\system32\shell32.dll

c:\windows\system32\advapi32.dll

c:\windows\system32\rpcrt4.dll

c:\windows\system32\secur32.dll

c:\windows\system32\msvcrt.dll

c:\windows\system32\shlwapi.dll

c:\program files\digital line detect\bvrpdiag.dll

c:\windows\system32\shfolder.dll

c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2982_x-ww_ac3f9c03\comctl32.dll

c:\windows\system32\comctl32.dll

c:\windows\system32\mdmxsdk.dll

c:\windows\system32\ws2_32.dll

c:\windows\system32\ws2help.dll

c:\windows\system32\uxtheme.dll

c:\windows\system32\piqdwyqg.dll

c:\windows\system32\oleaut32.dll

c:\windows\system32\ole32.dll

c:\windows\system32\wininet.dll

c:\windows\system32\crypt32.dll

c:\windows\system32\msasn1.dll

C:\PROGRAM FILES\GOOGLE\GOOGLE DESKTOP SEARCH\GOOGLEDESKTOP.EXE
c:\program files\google\google desktop search\googledesktop.exe

c:\windows\system32\ntdll.dll

c:\windows\system32\kernel32.dll

c:\program files\google\google desktop search\googleservices.dll

c:\program files\google\google desktop search\googledesktopcommon.dll

c:\windows\system32\ole32.dll

c:\windows\system32\advapi32.dll

c:\windows\system32\rpcrt4.dll

c:\windows\system32\secur32.dll

c:\windows\system32\gdi32.dll

c:\windows\system32\user32.dll

c:\windows\system32\msvcrt.dll

c:\windows\system32\oleaut32.dll

c:\windows\system32\wininet.dll

c:\windows\system32\crypt32.dll

c:\windows\system32\msasn1.dll

c:\windows\system32\shlwapi.dll

c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2982_x-ww_ac3f9c03\comctl32.dll

c:\windows\system32\imm32.dll

c:\windows\system32\ws2_32.dll

c:\windows\system32\ws2help.dll

c:\windows\system32\userenv.dll

c:\windows\system32\psapi.dll

c:\progra~1\google\google~2\goec62~1.dll

c:\program files\google\google desktop search\googledesktopresources_en.dll

c:\windows\system32\mswsock.dll

c:\windows\system32\uxtheme.dll

c:\windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.2600.2180_x-ww_522f9f82\gdiplus.dll

c:\windows\system32\clbcatq.dll

c:\windows\system32\comres.dll

c:\windows\system32\version.dll

c:\windows\system32\xpsp2res.dll

c:\program files\google\google desktop search\googleuiengine.dll

c:\windows\system32\comdlg32.dll

c:\windows\system32\shell32.dll

c:\windows\system32\msimg32.dll

c:\windows\system32\oleacc.dll

c:\windows\system32\msvcp60.dll

c:\windows\system32\riched20.dll

c:\windows\system32\asycfilt.dll

c:\program files\google\google desktop search\googledesktopdeskbar2.dll

c:\windows\system32\piqdwyqg.dll

C:\WINDOWS\SYSTEM32\WBEM\WMIPRVSE.EXE
c:\windows\system32\wbem\wmiprvse.exe

c:\windows\system32\ntdll.dll

c:\windows\system32\kernel32.dll

c:\windows\system32\msvcrt.dll

c:\windows\system32\advapi32.dll

c:\windows\system32\rpcrt4.dll

c:\windows\system32\secur32.dll

c:\windows\system32\user32.dll

c:\windows\system32\gdi32.dll

c:\windows\system32\wbem\wbemcomn.dll

c:\windows\system32\oleaut32.dll

c:\windows\system32\ole32.dll

c:\windows\system32\wbem\fastprox.dll

c:\windows\system32\msvcp60.dll

c:\windows\system32\ntdsapi.dll

c:\windows\system32\dnsapi.dll

c:\windows\system32\ws2_32.dll

c:\windows\system32\ws2help.dll

c:\windows\system32\wldap32.dll

c:\windows\system32\netapi32.dll

c:\windows\system32\ncobjapi.dll

c:\windows\system32\shimeng.dll

c:\windows\apppatch\acgenral.dll

c:\windows\system32\winmm.dll

c:\windows\system32\msacm32.dll

c:\windows\system32\version.dll

c:\windows\system32\shell32.dll

c:\windows\system32\shlwapi.dll

c:\windows\system32\userenv.dll

c:\windows\system32\uxtheme.dll

c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2982_x-ww_ac3f9c03\comctl32.dll

c:\windows\system32\comctl32.dll

c:\windows\system32\xpsp2res.dll

c:\windows\system32\clbcatq.dll

c:\windows\system32\comres.dll

c:\windows\system32\wbem\wbemsvc.dll

c:\windows\system32\wbem\wmiutils.dll

c:\windows\system32\wbem\wmiprov.dll

c:\windows\system32\wmi.dll

c:\windows\system32\wbem\esscli.dll

C:\PROGRAM FILES\DELLTPAD\HIDFIND.EXE
c:\program files\delltpad\hidfind.exe

c:\windows\system32\ntdll.dll

c:\windows\system32\kernel32.dll

c:\windows\system32\user32.dll

c:\windows\system32\gdi32.dll

c:\windows\system32\advapi32.dll

c:\windows\system32\rpcrt4.dll

c:\windows\system32\secur32.dll

c:\windows\system32\hid.dll

c:\windows\system32\msvcrt.dll

c:\windows\system32\setupapi.dll

c:\windows\system32\uxtheme.dll

c:\windows\system32\wintrust.dll

c:\windows\system32\crypt32.dll

c:\windows\system32\msasn1.dll

c:\windows\system32\imagehlp.dll

c:\windows\system32\piqdwyqg.dll

c:\windows\system32\oleaut32.dll

c:\windows\system32\ole32.dll

c:\windows\system32\shlwapi.dll

c:\windows\system32\wininet.dll

c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2982_x-ww_ac3f9c03\comctl32.dll

c:\windows\system32\shell32.dll

c:\windows\system32\comctl32.dll

C:\PROGRAM FILES\DELLTPAD\APNTEX.EXE
c:\program files\delltpad\apntex.exe

c:\windows\system32\ntdll.dll

c:\windows\system32\kernel32.dll

c:\windows\system32\user32.dll

c:\windows\system32\gdi32.dll

c:\windows\system32\advapi32.dll

c:\windows\system32\rpcrt4.dll

c:\windows\system32\secur32.dll

c:\windows\system32\vxdif.dll

c:\program files\delltpad\apoint.dll

c:\windows\system32\shell32.dll

c:\windows\system32\msvcrt.dll

c:\windows\system32\shlwapi.dll

c:\windows\system32\ole32.dll

c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2982_x-ww_ac3f9c03\comctl32.dll

c:\windows\system32\comctl32.dll

c:\windows\system32\uxtheme.dll

c:\windows\system32\piqdwyqg.dll

c:\windows\system32\oleaut32.dll

c:\windows\system32\wininet.dll

c:\windows\system32\crypt32.dll

c:\windows\system32\msasn1.dll

C:\WINDOWS\SYSTEM32\ALG.EXE
c:\windows\system32\alg.exe

c:\windows\system32\ntdll.dll

c:\windows\system32\kernel32.dll

c:\windows\system32\msvcrt.dll

c:\windows\system32\atl.dll

c:\windows\system32\user32.dll

c:\windows\system32\gdi32.dll

c:\windows\system32\advapi32.dll

c:\windows\system32\rpcrt4.dll

c:\windows\system32\secur32.dll

c:\windows\system32\ole32.dll

c:\windows\system32\oleaut32.dll

c:\windows\system32\wsock32.dll

c:\windows\system32\ws2_32.dll

c:\windows\system32\ws2help.dll

c:\windows\system32\mswsock.dll

c:\windows\system32\shimeng.dll

c:\windows\apppatch\acgenral.dll

c:\windows\system32\winmm.dll

c:\windows\system32\msacm32.dll

c:\windows\system32\version.dll

c:\windows\system32\shell32.dll

c:\windows\system32\shlwapi.dll

c:\windows\system32\userenv.dll

c:\windows\system32\uxtheme.dll

c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2982_x-ww_ac3f9c03\comctl32.dll

c:\windows\system32\comctl32.dll

c:\windows\system32\clbcatq.dll

c:\windows\system32\comres.dll

c:\windows\system32\xpsp2res.dll

c:\windows\system32\hnetcfg.dll

c:\windows\system32\wshtcpip.dll

C:\WINDOWS\SYSTEM32\WUAUCLT.EXE
c:\windows\system32\wuauclt.exe

c:\windows\system32\ntdll.dll

c:\windows\system32\kernel32.dll

c:\windows\system32\msvcrt.dll

c:\windows\system32\ole32.dll

c:\windows\system32\advapi32.dll

c:\windows\system32\rpcrt4.dll

c:\windows\system32\secur32.dll

c:\windows\system32\gdi32.dll

c:\windows\system32\user32.dll

c:\windows\system32\oleaut32.dll

c:\windows\system32\shlwapi.dll

c:\windows\system32\shimeng.dll

c:\windows\apppatch\acgenral.dll

c:\windows\system32\winmm.dll

c:\windows\system32\msacm32.dll

c:\windows\system32\version.dll

c:\windows\system32\shell32.dll

c:\windows\system32\userenv.dll

c:\windows\system32\uxtheme.dll

c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2982_x-ww_ac3f9c03\comctl32.dll

c:\windows\system32\wucltui.dll

c:\windows\system32\msimg32.dll

c:\windows\system32\cabinet.dll

c:\windows\system32\crypt32.dll

c:\windows\system32\msasn1.dll

c:\windows\system32\wintrust.dll

c:\windows\system32\imagehlp.dll

c:\windows\system32\clbcatq.dll

c:\windows\system32\comres.dll

c:\windows\system32\xpsp2res.dll

c:\windows\system32\wups2.dll

C:\PROGRAM FILES\MCAFEE\COMMON FRAMEWORK\FRAMEWORKSERVICE.EXE
c:\program files\mcafee\common framework\frameworkservice.exe

c:\windows\system32\ntdll.dll

c:\windows\system32\kernel32.dll

c:\windows\system32\ole32.dll

c:\windows\system32\advapi32.dll

c:\windows\system32\rpcrt4.dll

c:\windows\system32\secur32.dll

c:\windows\system32\gdi32.dll

c:\windows\system32\user32.dll

c:\windows\system32\msvcrt.dll

c:\windows\system32\oleaut32.dll

c:\program files\mcafee\common framework\nailog.dll

c:\program files\mcafee\common framework\msvcr71.dll

c:\program files\mcafee\common framework\naxml71.dll

c:\program files\mcafee\common framework\naisign.dll

c:\windows\system32\epopgpsdk.dll

c:\windows\system32\shell32.dll

c:\windows\system32\shlwapi.dll

c:\program files\mcafee\common framework\msvcp71.dll

c:\program files\mcafee\common framework\nacmnlib71.dll

c:\windows\system32\version.dll

c:\windows\system32\wsock32.dll

c:\windows\system32\ws2_32.dll

c:\windows\system32\ws2help.dll

c:\program files\mcafee\common framework\applib.dll

c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2982_x-ww_ac3f9c03\comctl32.dll

c:\windows\system32\comctl32.dll

c:\program files\mcafee\common framework\0409\agentres.dll

c:\windows\system32\xpsp2res.dll

c:\windows\system32\clbcatq.dll

c:\windows\system32\comres.dll

c:\program files\mcafee\common framework\logging.dll

c:\program files\mcafee\common framework\internetmanager.dll

c:\program files\mcafee\common framework\nainet.dll

c:\windows\system32\mpr.dll

c:\program files\mcafee\common framework\userspace.dll

c:\program files\mcafee\common framework\secureframeworkfactory.dll

c:\program files\mcafee\common framework\management.dll

c:\program files\mcafee\common framework\cmalib.dll

c:\program files\mcafee\common framework\napolicymanager.dll

c:\windows\system32\psapi.dll

c:\windows\system32\sxs.dll

c:\program files\mcafee\common framework\scriptsubsys.dll

c:\program files\mcafee\common framework\updatesubsys.dll

c:\program files\mcafee\common framework\scheduler.dll

c:\program files\mcafee\common framework\tcsubsys.dll

c:\windows\system32\userenv.dll

c:\windows\system32\netapi32.dll

c:\windows\system32\apphelp.dll

c:\program files\mcafee\common framework\genevtinf.dll

c:\windows\system32\mswsock.dll

c:\windows\system32\dnsapi.dll

c:\windows\system32\winrnr.dll

c:\windows\system32\wldap32.dll

c:\windows\system32\rasadhlp.dll

c:\windows\system32\mprapi.dll

c:\windows\system32\activeds.dll

c:\windows\system32\adsldpc.dll

c:\windows\system32\atl.dll

c:\windows\system32\rtutils.dll

c:\windows\system32\samlib.dll

c:\windows\system32\setupapi.dll

c:\windows\system32\rasapi32.dll

c:\windows\system32\rasman.dll

c:\windows\system32\tapi32.dll

c:\windows\system32\winmm.dll

c:\windows\system32\msv1_0.dll

c:\windows\system32\iphlpapi.dll

c:\windows\system32\wininet.dll

c:\windows\system32\crypt32.dll

c:\windows\system32\msasn1.dll

c:\windows\system32\sensapi.dll

c:\windows\system32\urlmon.dll

c:\windows\system32\hnetcfg.dll

c:\windows\system32\wshtcpip.dll

c:\windows\system32\msi.dll

C:\PROGRAM FILES\MCAFEE\COMMON FRAMEWORK\NAPRDMGR.EXE
c:\program files\mcafee\common framework\naprdmgr.exe

c:\windows\system32\ntdll.dll

c:\windows\system32\kernel32.dll

c:\program files\mcafee\common framework\naisign.dll

c:\windows\system32\epopgpsdk.dll

c:\windows\system32\rpcrt4.dll

c:\windows\system32\advapi32.dll

c:\windows\system32\secur32.dll

c:\windows\system32\user32.dll

c:\windows\system32\gdi32.dll

c:\windows\system32\shell32.dll

c:\windows\system32\msvcrt.dll

c:\windows\system32\shlwapi.dll

c:\program files\mcafee\common framework\msvcr71.dll

c:\windows\system32\ole32.dll

c:\windows\system32\oleaut32.dll

c:\program files\mcafee\common framework\naxml71.dll

c:\program files\mcafee\common framework\msvcp71.dll

c:\program files\mcafee\common framework\nailog.dll

c:\program files\mcafee\common framework\nacmnlib71.dll

c:\windows\system32\version.dll

c:\windows\system32\wsock32.dll

c:\windows\system32\ws2_32.dll

c:\windows\system32\ws2help.dll

c:\program files\mcafee\common framework\applib.dll

c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2982_x-ww_ac3f9c03\comctl32.dll

c:\windows\system32\comctl32.dll

c:\windows\system32\xpsp2res.dll

c:\program files\mcafee\common framework\0409\agentres.dll

c:\windows\system32\clbcatq.dll

c:\windows\system32\comres.dll

c:\windows\system32\sxs.dll

c:\program files\mcafee\virusscan enterprise\vsplugin.dll

C:\PROGRAM FILES\MCAFEE\VIRUSSCAN ENTERPRISE\VSTSKMGR.EXE
c:\program files\mcafee\virusscan enterprise\vstskmgr.exe

c:\windows\system32\ntdll.dll

c:\windows\system32\kernel32.dll

c:\program files\mcafee\virusscan enterprise\lockdown.dll

c:\windows\system32\user32.dll

c:\windows\system32\gdi32.dll

c:\windows\system32\msvcrt.dll

c:\program files\mcafee\virusscan enterprise\mytilus2.dll

c:\windows\system32\shfolder.dll

c:\windows\system32\advapi32.dll

c:\windows\system32\rpcrt4.dll

c:\windows\system32\secur32.dll

c:\program files\mcafee\virusscan enterprise\mytilus.dll

c:\windows\system32\ole32.dll

c:\windows\system32\oleaut32.dll

c:\windows\system32\shlwapi.dll

c:\program files\mcafee\virusscan enterprise\shutil.dll

c:\windows\system32\msi.dll

c:\windows\system32\version.dll

c:\program files\mcafee\virusscan enterprise\wmain.dll

c:\windows\system32\comctl32.dll

c:\windows\system32\comdlg32.dll

c:\windows\system32\shell32.dll

c:\windows\system32\lz32.dll

c:\program files\mcafee\virusscan enterprise\condl.dll

c:\windows\system32\crypt32.dll

c:\windows\system32\msasn1.dll

c:\program files\mcafee\virusscan enterprise\res0900\mcshield.dll

c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2982_x-ww_ac3f9c03\comctl32.dll

c:\windows\system32\ntmarta.dll

c:\windows\system32\wldap32.dll

c:\windows\system32\samlib.dll

c:\windows\system32\clbcatq.dll

c:\windows\system32\comres.dll

c:\windows\system32\xpsp2res.dll

c:\windows\system32\sxs.dll

c:\program files\mcafee\virusscan enterprise\midutil.dll

c:\windows\system32\setupapi.dll

c:\windows\system32\wbem\wbemprox.dll

c:\windows\system32\wbem\wbemcomn.dll

c:\windows\system32\ws2_32.dll

c:\windows\system32\ws2help.dll

c:\windows\system32\wbem\wbemsvc.dll

c:\windows\system32\wbem\fastprox.dll

c:\windows\system32\msvcp60.dll

c:\windows\system32\ntdsapi.dll

c:\windows\system32\dnsapi.dll

c:\windows\system32\netapi32.dll

c:\windows\system32\rsaenh.dll

c:\windows\system32\uxtheme.dll

c:\windows\system32\userenv.dll

c:\windows\system32\cryptnet.dll

c:\windows\system32\winhttp.dll

c:\windows\system32\sensapi.dll

c:\program files\mcafee\virusscan enterprise\bbcpl.dll

c:\program files\mcafee\virusscan enterprise\coptcpl.dll

c:\program files\mcafee\virusscan enterprise\emcfgcpl.dll

c:\program files\mcafee\virusscan enterprise\nvpcpl.dll

c:\program files\mcafee\virusscan enterprise\ftcfg.dll

c:\program files\mcafee\virusscan enterprise\oascpl.dll

c:\program files\mcafee\virusscan enterprise\quarcpl.dll

c:\program files\mcafee\virusscan enterprise\vsodscpl.dll

c:\program files\mcafee\virusscan enterprise\vsevntui.dll

c:\program files\mcafee\virusscan enterprise\naevent.dll

c:\windows\system32\wsock32.dll

c:\windows\system32\mswsock.dll

c:\program files\mcafee\virusscan enterprise\ftl.dll

c:\program files\mcafee\virusscan enterprise\vsupdcpl.dll

C:\PROGRAM FILES\MCAFEE\VIRUSSCAN ENTERPRISE\MCSHIELD.EXE
c:\program files\mcafee\virusscan enterprise\mcshield.exe

c:\windows\system32\ntdll.dll

c:\windows\system32\kernel32.dll

c:\windows\system32\lz32.dll

c:\windows\system32\ws2_32.dll

c:\windows\system32\msvcrt.dll

c:\windows\system32\ws2help.dll

c:\windows\system32\advapi32.dll

c:\windows\system32\rpcrt4.dll

c:\windows\system32\secur32.dll

c:\program files\mcafee\virusscan enterprise\lockdown.dll

c:\windows\system32\user32.dll

c:\windows\system32\gdi32.dll

c:\program files\mcafee\virusscan enterprise\mytilus.dll

c:\windows\system32\ole32.dll

c:\windows\system32\oleaut32.dll

c:\program files\mcafee\virusscan enterprise\mytilus2.dll

c:\windows\system32\shfolder.dll

c:\windows\system32\shlwapi.dll

c:\program files\mcafee\virusscan enterprise\res0900\mcshield.dll

c:\program files\mcafee\virusscan enterprise\ftl.dll

c:\windows\system32\uxtheme.dll

c:\windows\system32\psapi.dll

c:\program files\mcafee\virusscan enterprise\naiann.dll

c:\windows\system32\netapi32.dll

c:\program files\mcafee\virusscan enterprise\vsevntui.dll

c:\program files\mcafee\virusscan enterprise\naevent.dll

c:\windows\system32\wsock32.dll

c:\windows\system32\mswsock.dll

c:\program files\mcafee\virusscan enterprise\shutil.dll

c:\windows\system32\msi.dll

c:\windows\system32\version.dll

c:\program files\mcafee\virusscan enterprise\wmain.dll

c:\windows\system32\comctl32.dll

c:\windows\system32\comdlg32.dll

c:\windows\system32\shell32.dll

c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2982_x-ww_ac3f9c03\comctl32.dll

c:\windows\system32\wtsapi32.dll

c:\windows\system32\winsta.dll

c:\windows\system32\clbcatq.dll

c:\windows\system32\comres.dll

c:\program files\mcafee\common framework\genevtinf.dll

c:\program files\mcafee\common framework\msvcp71.dll

c:\program files\mcafee\common framework\msvcr71.dll

c:\windows\system32\dnsapi.dll

c:\windows\system32\winrnr.dll

c:\windows\system32\wldap32.dll

c:\windows\system32\rasadhlp.dll

c:\windows\system32\mprapi.dll

c:\windows\system32\activeds.dll

c:\windows\system32\adsldpc.dll

c:\windows\system32\atl.dll

c:\windows\system32\rtutils.dll

c:\windows\system32\samlib.dll

c:\windows\system32\setupapi.dll

c:\program files\mcafee\common framework\secureframeworkfactory.dll

c:\windows\system32\xpsp2res.dll

c:\windows\system32\sxs.dll

c:\program files\mcafee\virusscan enterprise\scriptsv.dll

c:\program files\mcafee\virusscan enterprise\mfebopa.dll

c:\windows\system32\crypt32.dll

c:\windows\system32\msasn1.dll

c:\program files\mcafee\virusscan enterprise\mfehida.dll

c:\program files\mcafee\virusscan enterprise\mfeapfa.dll

c:\windows\system32\wininet.dll

c:\program files\mcafee\virusscan enterprise\mfeavfa.dll

c:\windows\system32\rsaenh.dll

c:\windows\system32\userenv.dll

c:\windows\system32\cryptnet.dll

c:\windows\system32\winhttp.dll

c:\windows\system32\sensapi.dll

c:\windows\system32\adsldp.dll

c:\program files\common files\mcafee\engine\mcscan32.dll

C:\PROGRAM FILES\MCAFEE\COMMON FRAMEWORK\UDATERUI.EXE
c:\program files\mcafee\common framework\udaterui.exe

c:\windows\system32\ntdll.dll

c:\windows\system32\kernel32.dll

c:\program files\mcafee\common framework\nailog.dll

c:\windows\system32\advapi32.dll

c:\windows\system32\rpcrt4.dll

c:\windows\system32\secur32.dll

c:\program files\mcafee\common framework\msvcr71.dll

c:\windows\system32\comctl32.dll

c:\windows\system32\gdi32.dll

c:\windows\system32\user32.dll

c:\program files\mcafee\common framework\nacmnlib71.dll

c:\windows\system32\version.dll

c:\windows\system32\wsock32.dll

c:\windows\system32\ws2_32.dll

c:\windows\system32\msvcrt.dll

c:\windows\system32\ws2help.dll

c:\windows\system32\ole32.dll

c:\windows\system32\oleaut32.dll

c:\program files\mcafee\common framework\naxml71.dll

c:\program files\mcafee\common framework\naisign.dll

c:\windows\system32\epopgpsdk.dll

c:\windows\system32\shell32.dll

c:\windows\system32\shlwapi.dll

c:\program files\mcafee\common framework\msvcp71.dll

c:\program files\mcafee\common framework\applib.dll

c:\program files\mcafee\common framework\cmalib.dll

c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2982_x-ww_ac3f9c03\comctl32.dll

c:\windows\system32\xpsp2res.dll

c:\windows\system32\apphelp.dll

c:\windows\system32\clbcatq.dll

c:\windows\system32\comres.dll

c:\program files\mcafee\common framework\0409\updres.dll

c:\program files\mcafee\common framework\0409\agentres.dll

c:\windows\system32\uxtheme.dll

c:\program files\mcafee\common framework\secureframeworkfactory.dll

c:\windows\system32\sxs.dll

c:\windows\system32\piqdwyqg.dll

c:\windows\system32\wininet.dll

c:\windows\system32\crypt32.dll

c:\windows\system32\msasn1.dll

C:\PROGRAM FILES\MCAFEE\COMMON FRAMEWORK\MCTRAY.EXE
c:\program files\mcafee\common framework\mctray.exe

c:\windows\system32\ntdll.dll

c:\windows\system32\kernel32.dll

c:\program files\mcafee\common framework\jrmac.dll

c:\windows\system32\comctl32.dll

c:\windows\system32\advapi32.dll

c:\windows\system32\rpcrt4.dll

c:\windows\system32\secur32.dll

c:\windows\system32\gdi32.dll

c:\windows\system32\user32.dll

c:\windows\system32\shell32.dll

c:\windows\system32\msvcrt.dll

c:\windows\system32\shlwapi.dll

c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2982_x-ww_ac3f9c03\comctl32.dll

c:\windows\system32\uxtheme.dll

c:\windows\system32\piqdwyqg.dll

c:\windows\system32\oleaut32.dll

c:\windows\system32\ole32.dll

c:\windows\system32\wininet.dll

c:\windows\system32\crypt32.dll

c:\windows\system32\msasn1.dll

C:\PROGRAM FILES\WEBROOT\ENTERPRISE\SPY SWEEPER\SPYSWEEPERUI.EXE
c:\program files\webroot\enterprise\spy sweeper\spysweeperui.exe

c:\windows\system32\ntdll.dll

c:\windows\system32\kernel32.dll

c:\windows\system32\advapi32.dll

c:\windows\system32\rpcrt4.dll

c:\windows\system32\secur32.dll

c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2982_x-ww_ac3f9c03\comctl32.dll

c:\windows\system32\msvcrt.dll

c:\windows\system32\gdi32.dll

c:\windows\system32\user32.dll

c:\windows\system32\shlwapi.dll

c:\windows\system32\comdlg32.dll

c:\windows\system32\shell32.dll

c:\windows\system32\mpr.dll

c:\windows\system32\ole32.dll

c:\windows\system32\oleaut32.dll

c:\windows\system32\version.dll

c:\windows\system32\winspool.drv

c:\program files\webroot\enterprise\spy sweeper\wrid.dll

c:\windows\system32\wsock32.dll

c:\windows\system32\ws2_32.dll

c:\windows\system32\ws2help.dll

c:\windows\system32\uxtheme.dll

c:\windows\system32\hhctrl.ocx

c:\program files\webroot\enterprise\spy sweeper\language.dll

c:\windows\system32\riched32.dll

c:\windows\system32\riched20.dll

c:\windows\system32\sxs.dll

c:\windows\system32\clbcatq.dll

c:\windows\system32\comres.dll

c:\windows\system32\xpsp2res.dll

c:\windows\system32\piqdwyqg.dll

c:\windows\system32\wininet.dll

c:\windows\system32\crypt32.dll

c:\windows\system32\msasn1.dll

C:\PROGRAM FILES\WEBROOT\ENTERPRISE\SPY SWEEPER\COMMAGENT.EXE
c:\program files\webroot\enterprise\spy sweeper\commagent.exe

c:\windows\system32\ntdll.dll

c:\windows\system32\kernel32.dll

c:\windows\system32\advapi32.dll

c:\windows\system32\rpcrt4.dll

c:\windows\system32\secur32.dll

c:\windows\system32\comctl32.dll

c:\windows\system32\gdi32.dll

c:\windows\system32\user32.dll

c:\windows\system32\iphlpapi.dll

c:\windows\system32\msvcrt.dll

c:\windows\system32\ws2_32.dll

c:\windows\system32\ws2help.dll

c:\windows\system32\mpr.dll

c:\windows\system32\ole32.dll

c:\windows\system32\oleaut32.dll

c:\windows\system32\version.dll

c:\program files\webroot\enterprise\spy sweeper\wrid.dll

c:\windows\system32\wsock32.dll

c:\windows\system32\uxtheme.dll

c:\windows\system32\olepro32.dll

c:\windows\system32\sxs.dll

c:\windows\system32\xpsp2res.dll

c:\program files\webroot\enterprise\spy sweeper\calanguage.dll

c:\windows\system32\clbcatq.dll

c:\windows\system32\comres.dll

c:\windows\system32\mswsock.dll

c:\windows\system32\dnsapi.dll

c:\windows\system32\winrnr.dll

c:\windows\system32\wldap32.dll

c:\windows\system32\rasadhlp.dll

c:\windows\system32\mprapi.dll

c:\windows\system32\activeds.dll

c:\windows\system32\adsldpc.dll

c:\windows\system32\netapi32.dll

c:\windows\system32\atl.dll

c:\windows\system32\rtutils.dll

c:\windows\system32\samlib.dll

c:\windows\system32\setupapi.dll

c:\windows\system32\hnetcfg.dll

c:\windows\system32\wshtcpip.dll

c:\windows\system32\psapi.dll

c:\windows\system32\scrrun.dll

c:\windows\system32\mfc42.dll

c:\windows\system32\ntmarta.dll

c:\windows\system32\msxml3.dll

c:\windows\system32\shlwapi.dll

C:\PROGRAM FILES\WEBROOT\ENTERPRISE\SPY SWEEPER\SPYSWEEPER.EXE
c:\program files\webroot\enterprise\spy sweeper\spysweeper.exe

c:\windows\system32\ntdll.dll

c:\windows\system32\kernel32.dll

c:\windows\system32\oleaut32.dll

c:\windows\system32\advapi32.dll

c:\windows\system32\rpcrt4.dll

c:\windows\system32\secur32.dll

c:\windows\system32\gdi32.dll

c:\windows\system32\user32.dll

c:\windows\system32\msvcrt.dll

c:\windows\system32\ole32.dll

c:\windows\system32\version.dll

c:\windows\system32\mpr.dll

c:\windows\system32\comctl32.dll

c:\windows\system32\wininet.dll

c:\windows\system32\crypt32.dll

c:\windows\system32\msasn1.dll

c:\windows\system32\shlwapi.dll

c:\windows\system32\shell32.dll

c:\windows\system32\comdlg32.dll

c:\windows\system32\wsock32.dll

c:\windows\system32\ws2_32.dll

c:\windows\system32\ws2help.dll

c:\windows\system32\imagehlp.dll

c:\windows\system32\winmm.dll

c:\windows\system32\iphlpapi.dll

c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2982_x-ww_ac3f9c03\comctl32.dll

c:\windows\system32\uxtheme.dll

c:\windows\system32\vdmdbg.dll

c:\windows\system32\psapi.dll

c:\windows\system32\setupapi.dll

c:\program files\webroot\enterprise\spy sweeper\pcre.dll

c:\program files\webroot\enterprise\spy sweeper\ztvcabinet.dll

c:\program files\webroot\enterprise\spy sweeper\ztvunrar3.dll

c:\windows\system32\dnsapi.dll

c:\windows\system32\olepro32.dll

c:\windows\system32\xpsp2res.dll

c:\windows\system32\sxs.dll

c:\windows\system32\clbcatq.dll

c:\windows\system32\comres.dll

c:\windows\system32\mswsock.dll

c:\windows\system32\hnetcfg.dll

c:\windows\system32\wshtcpip.dll

c:\windows\system32\netapi32.dll

c:\windows\system32\userenv.dll

c:\windows\system32\drprov.dll

c:\windows\system32\ntlanman.dll

c:\windows\system32\netui0.dll

c:\windows\system32\netui1.dll

c:\windows\system32\netrap.dll

c:\windows\system32\samlib.dll

c:\windows\system32\davclnt.dll

C:\PROGRAM FILES\MOZILLA FIREFOX\FIREFOX.EXE
c:\program files\mozilla firefox\firefox.exe

c:\windows\system32\ntdll.dll

c:\windows\system32\kernel32.dll

c:\program files\mozilla firefox\js3250.dll

c:\program files\mozilla firefox\nspr4.dll

c:\windows\system32\advapi32.dll

c:\windows\system32\rpcrt4.dll

c:\windows\system32\secur32.dll

c:\windows\system32\wsock32.dll

c:\windows\system32\ws2_32.dll

c:\windows\system32\msvcrt.dll

c:\windows\system32\ws2help.dll

c:\windows\system32\winmm.dll

c:\windows\system32\user32.dll

c:\windows\system32\gdi32.dll

c:\program files\mozilla firefox\xpcom_core.dll

c:\program files\mozilla firefox\plc4.dll

c:\program files\mozilla firefox\plds4.dll

c:\windows\system32\shell32.dll

c:\windows\system32\shlwapi.dll

c:\windows\system32\ole32.dll

c:\windows\system32\version.dll

c:\program files\mozilla firefox\smime3.dll

c:\program files\mozilla firefox\nss3.dll

c:\program files\mozilla firefox\softokn3.dll

c:\program files\mozilla firefox\ssl3.dll

c:\program files\mozilla firefox\xpcom_compat.dll

c:\windows\system32\comdlg32.dll

c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2982_x-ww_ac3f9c03\comctl32.dll

c:\windows\system32\oleaut32.dll

c:\windows\system32\winspool.drv

c:\progra~1\google\google~2\goec62~1.dll

c:\progra~1\google\google~2\googledesktopresources_en.dll

c:\windows\system32\mswsock.dll

c:\windows\system32\qomcyxxy.dll

c:\windows\system32\shfolder.dll

c:\windows\system32\urlmon.dll

c:\windows\system32\wininet.dll

c:\windows\system32\crypt32.dll

c:\windows\system32\msasn1.dll

c:\windows\system32\uxtheme.dll

c:\windows\system32\setupapi.dll

c:\windows\system32\clbcatq.dll

c:\windows\system32\comres.dll

c:\program files\mozilla firefox\components\myspell.dll

c:\windows\system32\hnetcfg.dll

c:\windows\system32\wshtcpip.dll

c:\windows\system32\iphlpapi.dll

c:\program files\mozilla firefox\components\jar50.dll

c:\windows\system32\dnsapi.dll

c:\windows\system32\winrnr.dll

c:\windows\system32\wldap32.dll

c:\windows\system32\msimtf.dll

c:\windows\system32\msctf.dll

c:\windows\system32\xpsp2res.dll

c:\program files\mozilla firefox\freebl3.dll

c:\program files\mozilla firefox\nssckbi.dll

c:\program files\mozilla firefox\components\spellchk.dll

c:\windows\system32\msimg32.dll

c:\windows\system32\rasadhlp.dll

c:\progra~1\google\google~2\googledesktopcommon.dll

c:\windows\system32\imm32.dll

c:\windows\system32\hccutils.dll

c:\program files\dell\quickset\dadkeyb.dll

c:\windows\system32\mlang.dll

c:\windows\system32\wintrust.dll

c:\windows\system32\imagehlp.dll

c:\windows\system32\wdmaud.drv

c:\windows\system32\msacm32.drv

c:\windows\system32\msacm32.dll

c:\windows\system32\midimap.dll

c:\windows\system32\schannel.dll

c:\windows\system32\netapi32.dll

c:\windows\system32\userenv.dll

c:\windows\system32\apphelp.dll

c:\windows\system32\cscui.dll

c:\windows\system32\cscdll.dll

c:\windows\system32\piqdwyqg.dll

c:\windows\system32\netman.dll

c:\windows\system32\mprapi.dll

c:\windows\system32\activeds.dll

c:\windows\system32\adsldpc.dll

c:\windows\system32\atl.dll

c:\windows\system32\rtutils.dll

c:\windows\system32\samlib.dll

c:\windows\system32\netshell.dll

c:\windows\system32\credui.dll

c:\windows\system32\rasapi32.dll

c:\windows\system32\rasman.dll

c:\windows\system32\tapi32.dll

c:\windows\system32\wzcsapi.dll

c:\windows\system32\wzcsvc.dll

c:\windows\system32\wmi.dll

c:\windows\system32\dhcpcsvc.dll

c:\windows\system32\wtsapi32.dll

c:\windows\system32\winsta.dll

c:\windows\system32\esent.dll

c:\windows\system32\nnnmlicy.dll

c:\windows\system32\msi.dll

c:\windows\system32\browseui.dll

c:\windows\system32\ntshrui.dll

c:\windows\system32\linkinfo.dll

c:\windows\system32\shdocvw.dll

c:\windows\system32\cryptui.dll

c:\program files\mozilla firefox\plugins\npswf32.dll

c:\windows\system32\msv1_0.dll

c:\windows\system32\sensapi.dll

C:\PROGRAM FILES\MCAFEE\VIRUSSCAN ENTERPRISE\SHSTAT.EXE
c:\program files\mcafee\virusscan enterprise\shstat.exe

c:\windows\system32\ntdll.dll

c:\windows\system32\kernel32.dll

c:\windows\system32\rpcrt4.dll

c:\windows\system32\advapi32.dll

c:\windows\system32\secur32.dll

c:\windows\system32\psapi.dll

c:\program files\mcafee\virusscan enterprise\lockdown.dll

c:\windows\system32\user32.dll

c:\windows\system32\gdi32.dll

c:\windows\system32\msvcrt.dll

c:\program files\mcafee\virusscan enterprise\ftcfg.dll

c:\program files\mcafee\virusscan enterprise\mytilus2.dll

c:\windows\system32\shfolder.dll

c:\program files\mcafee\virusscan enterprise\mytilus.dll

c:\windows\system32\ole32.dll

c:\windows\system32\oleaut32.dll

c:\windows\system32\shlwapi.dll

c:\program files\mcafee\virusscan enterprise\wmain.dll

c:\program files\mcafee\virusscan enterprise\shutil.dll

c:\windows\system32\msi.dll

c:\windows\system32\version.dll

c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2982_x-ww_ac3f9c03\comctl32.dll

c:\windows\system32\comdlg32.dll

c:\windows\system32\shell32.dll

c:\windows\system32\lz32.dll

c:\program files\mcafee\virusscan enterprise\res0900\mcshield.dll

c:\program files\mcafee\virusscan enterprise\graphics.dll

c:\windows\system32\ntmarta.dll

c:\windows\system32\wldap32.dll

c:\windows\system32\samlib.dll

c:\windows\system32\uxtheme.dll

c:\windows\system32\piqdwyqg.dll

c:\windows\system32\wininet.dll

c:\windows\system32\crypt32.dll

c:\windows\system32\msasn1.dll

C:\WINDOWS\SYSTEM32\RUNDLL32.EXE
c:\windows\system32\rundll32.exe

c:\windows\system32\ntdll.dll

c:\windows\system32\kernel32.dll

c:\windows\system32\msvcrt.dll

c:\windows\system32\gdi32.dll

c:\windows\system32\user32.dll

c:\windows\system32\imagehlp.dll

c:\windows\system32\shimeng.dll

c:\windows\apppatch\acgenral.dll

c:\windows\system32\advapi32.dll

c:\windows\system32\rpcrt4.dll

c:\windows\system32\secur32.dll

c:\windows\system32\winmm.dll

c:\windows\system32\ole32.dll

c:\windows\system32\oleaut32.dll

c:\windows\system32\msacm32.dll

c:\windows\system32\version.dll

c:\windows\system32\shell32.dll

c:\windows\system32\shlwapi.dll

c:\windows\system32\userenv.dll

c:\windows\system32\uxtheme.dll

c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2982_x-ww_ac3f9c03\comctl32.dll

c:\windows\system32\comctl32.dll

c:\windows\system32\piqdwyqg.dll

c:\windows\system32\wininet.dll

c:\windows\system32\crypt32.dll

c:\windows\system32\msasn1.dll

C:\WINDOWS\MICROSOFT.NET\FRAMEWORK\V2.0.50727\MSCORSVW.EXE
c:\windows\microsoft.net\framework\v2.0.50727\mscorsvw.exe

c:\windows\system32\ntdll.dll

c:\windows\system32\kernel32.dll

c:\windows\system32\mscoree.dll

c:\windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_6b128700\msvcr80.dll

c:\windows\system32\msvcrt.dll

c:\windows\system32\advapi32.dll

c:\windows\system32\rpcrt4.dll

c:\windows\system32\secur32.dll

c:\windows\system32\user32.dll

c:\windows\system32\gdi32.dll

c:\windows\system32\ole32.dll

c:\windows\system32\oleaut32.dll

c:\windows\microsoft.net\framework\v2.0.50727\mscorsvc.dll

c:\windows\system32\shlwapi.dll

c:\windows\system32\msidle.dll

c:\windows\system32\wtsapi32.dll

c:\windows\system32\winsta.dll

c:\windows\system32\netapi32.dll

c:\windows\system32\uxtheme.dll

c:\windows\system32\powrprof.dll

c:\windows\system32\clbcatq.dll

c:\windows\system32\comres.dll

c:\windows\system32\version.dll

c:\windows\system32\xpsp2res.dll

c:\windows\system32\msi.dll

c:\windows\system32\sxs.dll

C:\WINDOWS\SYSTEM32\MSIEXEC.EXE
c:\windows\system32\msiexec.exe

c:\windows\system32\ntdll.dll

c:\windows\system32\kernel32.dll

c:\windows\system32\msvcrt.dll

c:\windows\system32\advapi32.dll

c:\windows\system32\rpcrt4.dll

c:\windows\system32\secur32.dll

c:\windows\system32\user32.dll

c:\windows\system32\gdi32.dll

c:\windows\system32\ole32.dll

c:\windows\system32\msi.dll

c:\windows\system32\shimeng.dll

c:\windows\apppatch\acgenral.dll

c:\windows\system32\winmm.dll

c:\windows\system32\oleaut32.dll

c:\windows\system32\msacm32.dll

c:\windows\system32\version.dll

c:\windows\system32\shell32.dll

c:\windows\system32\shlwapi.dll

c:\windows\system32\userenv.dll

c:\windows\system32\uxtheme.dll

c:\progra~1\google\google~2\goec62~1.dll

c:\windows\system32\ws2_32.dll

c:\windows\system32\ws2help.dll

c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2982_x-ww_ac3f9c03\comctl32.dll

c:\windows\system32\xpsp2res.dll

c:\windows\system32\clbcatq.dll

c:\windows\system32\comres.dll

c:\windows\system32\netapi32.dll

c:\windows\system32\sfc_os.dll

c:\windows\system32\wintrust.dll

c:\windows\system32\crypt32.dll

c:\windows\system32\msasn1.dll

c:\windows\system32\imagehlp.dll

c:\windows\system32\apphelp.dll

c:\windows\system32\sxs.dll

c:\windows\system32\rsaenh.dll

c:\windows\system32\cryptnet.dll

c:\windows\system32\wldap32.dll

c:\windows\system32\winhttp.dll

c:\windows\system32\sensapi.dll

c:\windows\system32\setupapi.dll

c:\windows\system32\linkinfo.dll

c:\windows\system32\ntshrui.dll

c:\windows\system32\atl.dll

c:\windows\system32\mscoree.dll

c:\windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_6b128700\msvcr80.dll

c:\windows\microsoft.net\framework\v2.0.50727\mscorwks.dll

c:\windows\system32\srclient.dll

c:\windows\system32\wbem\framedyn.dll

C:\PROGRAM FILES\LAVASOFT\AD-AWARE 2007\AAWSERVICE.EXE
c:\program files\lavasoft\ad-aware 2007\aawservice.exe

c:\windows\system32\ntdll.dll

c:\windows\system32\kernel32.dll

c:\program files\lavasoft\ad-aware 2007\ceapi.dll

c:\windows\system32\advapi32.dll

c:\windows\system32\rpcrt4.dll

c:\windows\system32\secur32.dll

c:\windows\system32\shlwapi.dll

c:\windows\system32\gdi32.dll

c:\windows\system32\user32.dll

c:\windows\system32\msvcrt.dll

c:\windows\system32\ws2_32.dll

c:\windows\system32\ws2help.dll

c:\program files\lavasoft\ad-aware 2007\pkarchive85u.dll

c:\windows\system32\shell32.dll

c:\windows\system32\ole32.dll

c:\windows\system32\crypt32.dll

c:\windows\system32\msasn1.dll

c:\windows\system32\wldap32.dll

c:\windows\system32\psapi.dll

c:\windows\system32\version.dll

c:\windows\system32\wininet.dll

c:\windows\system32\oleaut32.dll

c:\windows\system32\userenv.dll

c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2982_x-ww_ac3f9c03\comctl32.dll

c:\windows\system32\comctl32.dll

c:\windows\system32\rsaenh.dll

c:\program files\lavasoft\ad-aware 2007\lavalicense.dll

c:\windows\system32\comdlg32.dll

c:\windows\system32\inetmib1.dll

c:\windows\system32\iphlpapi.dll

c:\windows\system32\snmpapi.dll

c:\windows\system32\wsock32.dll

c:\windows\system32\mprapi.dll

c:\windows\system32\activeds.dll

c:\windows\system32\adsldpc.dll

c:\windows\system32\netapi32.dll

c:\windows\system32\atl.dll

c:\windows\system32\rtutils.dll

c:\windows\system32\samlib.dll

c:\windows\system32\setupapi.dll

c:\windows\system32\ntmarta.dll

c:\windows\system32\uxtheme.dll

C:\PROGRAM FILES\LAVASOFT\AD-AWARE 2007\AD-AWARE2007.EXE
c:\program files\lavasoft\ad-aware 2007\ad-aware2007.exe

c:\windows\system32\ntdll.dll

c:\windows\system32\kernel32.dll

c:\windows\system32\oleaut32.dll

c:\windows\system32\advapi32.dll

c:\windows\system32\rpcrt4.dll

c:\windows\system32\secur32.dll

c:\windows\system32\gdi32.dll

c:\windows\system32\user32.dll

c:\windows\system32\msvcrt.dll

c:\windows\system32\ole32.dll

c:\windows\system32\version.dll

c:\windows\system32\mpr.dll

c:\windows\system32\comctl32.dll

c:\windows\system32\imm32.dll

c:\windows\system32\shell32.dll

c:\windows\system32\shlwapi.dll

c:\windows\system32\comdlg32.dll

c:\program files\lavasoft\ad-aware 2007\lavalicense.dll

c:\windows\system32\winmm.dll

c:\windows\system32\shfolder.dll

c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2982_x-ww_ac3f9c03\comctl32.dll

c:\windows\system32\ws2_32.dll

c:\windows\system32\ws2help.dll

c:\windows\system32\inetmib1.dll

c:\windows\system32\iphlpapi.dll

c:\windows\system32\snmpapi.dll

c:\windows\system32\wsock32.dll

c:\windows\system32\mprapi.dll

c:\windows\system32\activeds.dll

c:\windows\system32\adsldpc.dll

c:\windows\system32\netapi32.dll

c:\windows\system32\wldap32.dll

c:\windows\system32\atl.dll

c:\windows\system32\rtutils.dll

c:\windows\system32\samlib.dll

c:\windows\system32\setupapi.dll

c:\windows\system32\ntmarta.dll

c:\windows\system32\uxtheme.dll

c:\windows\system32\piqdwyqg.dll

c:\windows\system32\wininet.dll

c:\windows\system32\crypt32.dll

c:\windows\system32\msasn1.dll

c:\windows\system32\apphelp.dll

c:\windows\system32\clbcatq.dll

c:\windows\system32\comres.dll

c:\windows\system32\acsignicon.dll

c:\windows\winsxs\x86_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_3bf8fa05\mfc80u.dll

c:\windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_6b128700\msvcr80.dll

c:\windows\winsxs\x86_microsoft.vc80.mfcloc_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_91481303\mfc80enu.dll

c:\windows\system32\olepro32.dll

c:\program files\lavasoft\ad-aware 2007\lavamessage.dll

End of Scan Section
===========================

Quarantined Infections
===========================
Root: HKCR Path: clsid\{0e1230f8-ea50-42a9-983c-d22abc2eeb4c} belonging to CoolWebSearch
Root: HKU Path: S-1-5-21-2939621179-827364850-1972385079-1006_Classes\clsid\{0e1230f8-ea50-42a9-983c-d22abc2eeb4c} belonging to CoolWebSearch
Root: HKU Path: S-1-5-21-2939621179-827364850-1972385079-1006\software\microsoft\internet explorer\main Value: Use Search Asst Data: no belonging to CoolWebSearch
File: C:\WINDOWS\downloaded program files\install.log belonging to CoolWebSearch
Root: HKCR Path: clsid\{000000da-0786-4633-87c6-1aa7a4429ef1} belonging to Favoriteman
Root: HKCR Path: clsid\{0b682cc1-fb40-4006-a5dd-99edd3c9095d} belonging to Holystic-Dialer
Root: HKU Path: S-1-5-21-2939621179-827364850-1972385079-1006_Classes\clsid\{0b682cc1-fb40-4006-a5dd-99edd3c9095d} belonging to Holystic-Dialer
Root: HKU Path: S-1-5-21-2939621179-827364850-1972385079-1006_Classes\hol5_vxiewer.full.1 belonging to Holystic-Dialer
Root: HKU Path: S-1-5-21-2939621179-827364850-1972385079-1006\software\inet delivery belonging to InternetDelivery
File: C:\Program Files\inet delivery\inetdl.exe belonging to InternetDelivery
File: C:\Program Files\inet delivery\intdel.exe belonging to InternetDelivery
Folder: C:\Program Files\inet delivery belonging to InternetDelivery
Root: HKCR Path: clsid\{b8c0220d-763d-49a4-95f4-61dfdec66ee6} belonging to Invictus MediaUpdate
Root: HKU Path: S-1-5-21-2939621179-827364850-1972385079-1006_Classes\clsid\{b8c0220d-763d-49a4-95f4-61dfdec66ee6} belonging to Invictus MediaUpdate
Root: HKU Path: S-1-5-21-2939621179-827364850-1972385079-1006\software\invictus belonging to Invictus MediaUpdate
File: C:\WINDOWS\system32\medup012.dll belonging to Invictus MediaUpdate
File: C:\WINDOWS\system32\medup020.dll belonging to Invictus MediaUpdate
Root: HKCR Path: clsid\{5c7f15e1-f31a-44fd-aa1a-2ec63aaffd3a} belonging to JRaun
Root: HKCR Path: clsid\{0656a137-b161-cadd-9777-e37a75727e78} belonging to TIB Browser
Root: HKU Path: S-1-5-21-2939621179-827364850-1972385079-1006_Classes\clsid\{0656a137-b161-cadd-9777-e37a75727e78} belonging to TIB Browser
Root: HKU Path: S-1-5-21-2939621179-827364850-1972385079-1006\software\classes\clsid\{0656a137-b161-cadd-9777-e37a75727e78} belonging to TIB Browser
Root: HKCR Path: clsid\{54645654-2225-4455-44a1-9f4543d34545} belonging to Win32.TrojanClicker
File: C:\Documents and Settings\Felicia Fong\Local Settings\Temp\removalfile.bat belonging to Virtumonde
Root: HKLM Path: software\microsoft\aoprndtws belonging to Virtumonde
Root: HKU Path: S-1-5-21-2939621179-827364850-1972385079-1006\software\microsoft\rdfa belonging to Virtumonde
Root: HKLM Path: software\microsoft\videoplugin belonging to Virtumonde
File: C:\System Volume Information\_restore{202550A8-7A33-4BCA-9586-051D24DDBF8F}\RP10\A0000629.sys belonging to SpywareStop
File: C:\System Volume Information\_restore{202550A8-7A33-4BCA-9586-051D24DDBF8F}\RP10\A0000632.sys belonging to SpywareStop
File: C:\System Volume Information\_restore{202550A8-7A33-4BCA-9586-051D24DDBF8F}\RP12\A0000683.rbf belonging to SpywareStop
File: C:\System Volume Information\_restore{202550A8-7A33-4BCA-9586-051D24DDBF8F}\RP12\A0000684.rbf belonging to SpywareStop
Root: HKU Path: S-1-5-21-2939621179-827364850-1972385079-1006\software\spywarestop belonging to SpywareStop
File: C:\WINDOWS\Tasks\SpywareStop Scheduled Scan.job belonging to SpywareStop
Folder: C:\Documents and Settings\Felicia Fong\Application Data\SpywareStop belonging to SpywareStop
Root: HKCR Path: clsid\{0e1230f8-ea50-42a9-983c-d22abc2eeb4c}, Belonging to CoolWebSearch
Root: HKU Path: S-1-5-21-2939621179-827364850-1972385079-1006_Classes\clsid\{0e1230f8-ea50-42a9-983c-d22abc2eeb4c}, Belonging to CoolWebSearch
Root: HKU Path: S-1-5-21-2939621179-827364850-1972385079-1006\software\microsoft\internet explorer\main Value: Use Search Asst Data: no, Belonging to CoolWebSearch
File: C:\WINDOWS\downloaded program files\install.log, Belonging to CoolWebSearch
Root: HKCR Path: clsid\{000000da-0786-4633-87c6-1aa7a4429ef1}, Belonging to Favoriteman
Root: HKCR Path: clsid\{0b682cc1-fb40-4006-a5dd-99edd3c9095d}, Belonging to Holystic-Dialer
Root: HKU Path: S-1-5-21-2939621179-827364850-1972385079-1006_Classes\clsid\{0b682cc1-fb40-4006-a5dd-99edd3c9095d}, Belonging to Holystic-Dialer
Root: HKU Path: S-1-5-21-2939621179-827364850-1972385079-1006_Classes\hol5_vxiewer.full.1, Belonging to Holystic-Dialer
Root: HKU Path: S-1-5-21-2939621179-827364850-1972385079-1006\software\inet delivery, Belonging to InternetDelivery
File: C:\Program Files\inet delivery\inetdl.exe, Belonging to InternetDelivery
File: C:\Program Files\inet delivery\intdel.exe, Belonging to InternetDelivery
Folder: C:\Program Files\inet delivery, Belonging to InternetDelivery
Root: HKCR Path: clsid\{b8c0220d-763d-49a4-95f4-61dfdec66ee6}, Belonging to Invictus MediaUpdate
Root: HKU Path: S-1-5-21-2939621179-827364850-1972385079-1006_Classes\clsid\{b8c0220d-763d-49a4-95f4-61dfdec66ee6}, Belonging to Invictus MediaUpdate
Root: HKU Path: S-1-5-21-2939621179-827364850-1972385079-1006\software\invictus, Belonging to Invictus MediaUpdate
File: C:\WINDOWS\system32\medup012.dll, Belonging to Invictus MediaUpdate
File: C:\WINDOWS\system32\medup020.dll, Belonging to Invictus MediaUpdate
Root: HKCR Path: clsid\{5c7f15e1-f31a-44fd-aa1a-2ec63aaffd3a}, Belonging to JRaun
Root: HKCR Path: clsid\{0656a137-b161-cadd-9777-e37a75727e78}, Belonging to TIB Browser
Root: HKU Path: S-1-5-21-2939621179-827364850-1972385079-1006_Classes\clsid\{0656a137-b161-cadd-9777-e37a75727e78}, Belonging to TIB Browser
Root: HKCR Path: clsid\{54645654-2225-4455-44a1-9f4543d34545}, Belonging to Win32.TrojanClicker
Root: HKLM Path: software\microsoft\aoprndtws, Belonging to Virtumonde
Root: HKU Path: S-1-5-21-2939621179-827364850-1972385079-1006\software\microsoft\rdfa, Belonging to Virtumonde
Root: HKLM Path: software\microsoft\videoplugin, Belonging to Virtumonde
File: C:\Documents and Settings\Felicia Fong\Local Settings\Temp\removalfile.bat, Belonging to Virtumonde
Root: HKU Path: S-1-5-21-2939621179-827364850-1972385079-1006\software\spywarestop, Belonging to SpywareStop
File: C:\System Volume Information\_restore{202550A8-7A33-4BCA-9586-051D24DDBF8F}\RP10\A0000629.sys, Belonging to SpywareStop
File: C:\System Volume Information\_restore{202550A8-7A33-4BCA-9586-051D24DDBF8F}\RP10\A0000632.sys, Belonging to SpywareStop
File: C:\System Volume Information\_restore{202550A8-7A33-4BCA-9586-051D24DDBF8F}\RP12\A0000683.rbf, Belonging to SpywareStop
File: C:\System Volume Information\_restore{202550A8-7A33-4BCA-9586-051D24DDBF8F}\RP12\A0000684.rbf, Belonging to SpywareStop
File: C:\WINDOWS\Tasks\SpywareStop Scheduled Scan.job, Belonging to SpywareStop
Folder: C:\Documents and Settings\Felicia Fong\Application Data\SpywareStop, Belonging to SpywareStop

End Quarantine / Cleaned Infection Log
===========================


Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 2:32:18 AM, on 5/6/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\WLTRYSVC.EXE
C:\WINDOWS\System32\bcmwltry.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Dell Support Center\bin\sprtsvc.exe
C:\Program Files\Spyware Terminator\sp_rsser.exe
C:\WINDOWS\system32\STacSV.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Viewpoint\Common\ViewpointService.exe
C:\Documents and Settings\All Users\Application Data\ypefsval\stytgdcp.exe
C:\Program Files\DellTPad\Apoint.exe
C:\WINDOWS\system32\hkcmd.exe
C:\WINDOWS\system32\igfxpers.exe
C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
C:\Program Files\Dell\QuickSet\quickset.exe
C:\WINDOWS\system32\WLTRAY.exe
C:\WINDOWS\stsystra.exe
C:\WINDOWS\system32\KADxMain.exe
C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe
C:\Program Files\Roxio\Drag-to-Disc\DrgToDsc.exe
C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
C:\WINDOWS\system32\igfxsrvc.exe
C:\Program Files\Dell\MediaDirect\PCMService.exe
C:\Program Files\Canon\MyPrinter\BJMyPrt.exe
C:\Program Files\DellAutomatedPCTuneUp\PTAgnt.exe
C:\Program Files\Dell Support Center\bin\sprtcmd.exe
C:\WINDOWS\system32\idgruxsj.exe
C:\Program Files\DellTPad\ApMsgFwd.exe
C:\Program Files\Digital Line Detect\DLG.exe
C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
C:\Program Files\DellTPad\HidFind.exe
C:\Program Files\DellTPad\Apntex.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\McAfee\Common Framework\FrameworkService.exe
C:\Program Files\McAfee\VirusScan Enterprise\VsTskMgr.exe
C:\Program Files\McAfee\VirusScan Enterprise\Mcshield.exe
C:\Program Files\McAfee\Common Framework\UdaterUI.exe
C:\Program Files\McAfee\Common Framework\McTray.exe
C:\Program Files\Webroot\Enterprise\Spy Sweeper\spysweeperui.exe
C:\Program Files\Webroot\Enterprise\Spy Sweeper\commagent.exe
C:\Program Files\Webroot\Enterprise\Spy Sweeper\spysweeper.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\WINDOWS\system32\rundll32.exe
C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
C:\WINDOWS\system32\msiexec.exe
C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
C:\Program Files\Lavasoft\Ad-Aware 2007\Ad-Aware2007.exe
C:\Documents and Settings\Felicia Fong\Desktop\HiJackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = partnerpage.google.com/smallbiz.dell.com/en_us?hl=en&client=dell-usuk&channel=us-smb&ibd=4080427
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = partnerpage.google.com/smallbiz.dell.com/en_us?hl=en&client=dell-usuk&channel=us-smb&ibd=4080427
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.dell.com
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.dell.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Search,Default_Page_URL = partnerpage.google.com/smallbiz.dell.com/en_us?hl=en&client=dell-usuk&channel=us-smb&ibd=4080427
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O4 - HKLM\..\Run: [Apoint] C:\Program Files\DellTPad\Apoint.exe
O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\WINDOWS\system32\igfxpers.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
O4 - HKLM\..\Run: [Dell QuickSet] C:\Program Files\Dell\QuickSet\quickset.exe
O4 - HKLM\..\Run: [Broadcom Wireless Manager UI] C:\WINDOWS\system32\WLTRAY.exe
O4 - HKLM\..\Run: [SigmatelSysTrayApp] stsystra.exe
O4 - HKLM\..\Run: [KADxMain] C:\WINDOWS\system32\KADxMain.exe
O4 - HKLM\..\Run: [ISUSPM Startup] C:\PROGRA~1\COMMON~1\INSTAL~1\UPDATE~1\ISUSPM.exe -startup
O4 - HKLM\..\Run: [ISUSScheduler] "C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe" -start
O4 - HKLM\..\Run: [RoxioDragToDisc] "C:\Program Files\Roxio\Drag-to-Disc\DrgToDsc.exe"
O4 - HKLM\..\Run: [Google Desktop Search] "C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe" /startup
O4 - HKLM\..\Run: [ECenter] C:\Dell\E-Center\EULALauncher.exe
O4 - HKLM\..\Run: [dscactivate] "C:\Program Files\Dell Support Center\gs_agent\custom\dsca.exe"
O4 - HKLM\..\Run: [PCMService] "C:\Program Files\Dell\MediaDirect\PCMService.exe"
O4 - HKLM\..\Run: [CanonMyPrinter] C:\Program Files\Canon\MyPrinter\BJMyPrt.exe /logon
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [ShStatEXE] "C:\Program Files\McAfee\VirusScan Enterprise\SHSTAT.EXE" /STANDALONE
O4 - HKLM\..\Run: [McAfeeUpdaterUI] "C:\Program Files\McAfee\Common Framework\UdaterUI.exe" /StartedFromRunKey
O4 - HKLM\..\Run: [SpySweeperEnterprise] "C:\Program Files\Webroot\Enterprise\Spy Sweeper\\SpySweeperUI.exe"
O4 - HKLM\..\Run: [247d257c] rundll32.exe "C:\WINDOWS\system32\piqdwyqg.dll",b
O4 - HKLM\..\Run: [MSConfig] C:\WINDOWS\PCHealth\HelpCtr\Binaries\MSConfig.exe /auto
O4 - HKCU\..\Run: [DellAutomatedPCTuneUp] "C:\Program Files\DellAutomatedPCTuneUp\PTAgnt.exe" /startup
O4 - HKCU\..\Run: [DellSupportCenter] "C:\Program Files\Dell Support Center\bin\sprtcmd.exe" /P DellSupportCenter
O4 - HKLM\..\Policies\Explorer\Run: [6IZ84L5nNW] C:\Documents and Settings\All Users\Application Data\ypefsval\stytgdcp.exe
O4 - Global Startup: Digital Line Detect.lnk = C:\Program Files\Digital Line Detect\DLG.exe
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O20 - AppInit_DLLs: C:\PROGRA~1\Google\GOOGLE~2\GOEC62~1.DLL
O23 - Service: Ad-Aware 2007 Service (aawservice) - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
O23 - Service: Autodesk Licensing Service - Autodesk - C:\Program Files\Common Files\Autodesk Shared\Service\AdskScSrv.exe
O23 - Service: DellAMBrokerService - Unknown owner - C:\Program Files\DellAutomatedPCTuneUp\brkrsvc.exe
O23 - Service: Google Desktop Manager 5.7.801.7324 (GoogleDesktopManager-010708-104812) - Google - C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: McAfee Framework Service (McAfeeFramework) - McAfee, Inc. - C:\Program Files\McAfee\Common Framework\FrameworkService.exe
O23 - Service: McAfee McShield (McShield) - McAfee, Inc. - C:\Program Files\McAfee\VirusScan Enterprise\Mcshield.exe
O23 - Service: McAfee Task Manager (McTaskManager) - McAfee, Inc. - C:\Program Files\McAfee\VirusScan Enterprise\VsTskMgr.exe
O23 - Service: SupportSoft Sprocket Service (dellsupportcenter) (sprtsvc_dellsupportcenter) - SupportSoft, Inc. - C:\Program Files\Dell Support Center\bin\sprtsvc.exe
O23 - Service: Spyware Terminator Realtime Shield Service (sp_rssrv) - Crawler.com - C:\Program Files\Spyware Terminator\sp_rsser.exe
O23 - Service: SigmaTel Audio Service (STacSV) - SigmaTel, Inc. - C:\WINDOWS\system32\STacSV.exe
O23 - Service: stllssvr - MicroVision Development, Inc. - C:\Program Files\Common Files\SureThing Shared\stllssvr.exe
O23 - Service: Viewpoint Manager Service - Viewpoint Corporation - C:\Program Files\Viewpoint\Common\ViewpointService.exe
O23 - Service: Webroot CommAgent Service (WebrootCommAgentService) - Webroot Software, Inc. - C:\Program Files\Webroot\Enterprise\Spy Sweeper\commagent.exe
O23 - Service: Webroot Spy Sweeper Engine (WebrootSpySweeperService) - Webroot Software, Inc. - C:\Program Files\Webroot\Enterprise\Spy Sweeper\spysweeper.exe
O23 - Service: Dell Wireless WLAN Tray Service (wltrysvc) - Unknown owner - C:\WINDOWS\System32\WLTRYSVC.EXE

--
End of file - 8775 bytes

BC AdBot (Login to Remove)

 


m

#2 Thunder

Thunder

  • Members
  • 3,294 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Belgium
  • Local time:09:02 AM

Posted 16 May 2008 - 04:38 AM

Hello Fsfong and welcome to BleepingComputer,

1. * Clean your Cache and Cookies in IE:
  • Close all instances of Outlook Express and Internet Explorer
  • Go to Control Panel > Internet Options > General tab
  • Under Browsing History, click Delete.
  • Click Delete Files, Delete cookies and Delete history
  • Click Close below.
* Clean your Cache and Cookies in Firefox (In case you also have Firefox installed):
  • Go to Tools > Options.
  • Click Privacy in the menu..
  • Click the Clear now button below.. A new window will popup what to clear.
  • Select all and click the Clear button again.
  • Click OK to close the Options window
* Clean other Temporary files + Recycle bin
  • Go to start > run and type: cleanmgr and click ok.
  • Let it scan your system for files to remove.
  • Make sure Temporary Files, Temporary Internet Files, and Recycle Bin are the only things checked.
  • Press OK to remove them.
2. Please download Malwarebytes' Anti-Malware from Here or Here

Doubleclick mbam-setup.exe to install the application.
  • Make sure a checkmark is placed next to Update Malwarebytes' Anti-Malware and Launch Malwarebytes' Anti-Malware, then click Finish.
  • If an update is found, it will download and install the latest version.
  • Once the program has loaded, select "Perform Quick Scan", then click Scan.
  • The scan may take some time to finish,so please be patient.
  • When the scan is complete, click OK, then Show Results to view the results.
  • Make sure that everything is checked, and click Remove Selected.
  • When disinfection is completed, a log will open in Notepad and you may be prompted to Restart.(See Extra Note)
  • The log is automatically saved by MBAM and can be viewed by clicking the Logs tab in MBAM.
  • Copy&Paste the entire report in your next reply along with a fresh HijackThis log.
Extra Note:
If MBAM encounters a file that is difficult to remove,you will be presented with 1 of 2 prompts,click OK to either and let MBAM proceed with the disinfection process,if asked to restart the computer,please do so immediatly.

3. Please visit this webpage for instructions for downloading and running ComboFix:

http://www.bleepingcomputer.com/combofix/how-to-use-combofix

Please ensure you read this guide carefully and install the Recovery Console first.
The Windows Recovery Console will allow you to boot up into a special recovery mode, in case your computer has a problem after an attempted removal of malware. This allows us to help you .

In the event you already have Combofix, delete your current version and download the latest version as described in the tutorial.
It must be saved directly to your desktop.


Note: Make sure not to click ComboFix's window while it's running. That may cause it to stall or freeze.

Please post the log from ComboFix (can also be found as C:\ComboFix.txt) in your next reply. :thumbsup:

If you have any questions along the way, STOP and ask them before proceeding !!

Greetings,
Thunder
Whatever happens, make believe it was intended to ...
-----------------------------------------------------------------------
Posted Image - If I have helped you in any way, please consider a donation to help me continue the fight against malware.
-----------------------------------------------------------------------
Stand Up & Be Counted --> Posted Image <-- And make a difference

#3 Thunder

Thunder

  • Members
  • 3,294 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Belgium
  • Local time:09:02 AM

Posted 07 June 2008 - 05:59 AM

Since there is no feedback anymore, I assume this issue is resolved ... so, this Topic is closed.
If you need this topic reopened for continuations of existing problems, please request this by sending me a PM with the address of the thread. This applies only to the original topic starter.

Everyone else please begin a New Topic.
Whatever happens, make believe it was intended to ...
-----------------------------------------------------------------------
Posted Image - If I have helped you in any way, please consider a donation to help me continue the fight against malware.
-----------------------------------------------------------------------
Stand Up & Be Counted --> Posted Image <-- And make a difference




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users