Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

You are infected with a pretty nasty piece of malware


  • This topic is locked This topic is locked
3 replies to this topic

#1 LostMyMind

LostMyMind

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:03:11 PM

Posted 06 September 2009 - 12:19 AM

O.K. guys, I am posting this log here as directed. Please Help.

2007-09-06,01:15:17

System Repair Engineer 2.8.1.1279
Smallfrogs (http://www.KZTechs.com)

Windows XP Professional Service Pack 3 (Build 2600) - Administrative User - Completed Functions Allowed

Follow item(s) have been selected:
	All Boot Items (Including Registry, Startup Folders, Services and so on)
	Browser Add-ons
	Running Processes (Including process model information)
	File Associations
	Winsock Provider
	Autorun.Inf
	HOSTS File
	Process Privileges Scan
	Scheduled Tasks
	Windows Security Update Check
	API HOOK
	Hidden Process


Boot Items
Registry
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
	<ctfmon.exe><C:\WINDOWS\system32\ctfmon.exe>  [(Verified)Microsoft Windows Component Publisher]
	<MSMSGS><"C:\Program Files\Messenger\msmsgs.exe" /background>  [(Verified)Microsoft Windows Component Publisher]
	<RGSC><C:\Program Files\Games\Rockstar Games Social Club\RGSCLauncher.exe /silent>  [(Verified)"Take-Two Interactive Software, Inc."]
	<braviax><C:\WINDOWS\system32\braviax.exe>  []
	<Protection System><"C:\Program Files\Protection System\psystem.exe" -noscan>  []
[HKEY_CURRENT_USER\Software\Microsoft\Windows NT\CurrentVersion\Windows]
	<load><>  [N/A]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
	<ehTray><C:\WINDOWS\ehome\ehtray.exe>  [(Verified)Microsoft Windows Publisher]
	<AlwaysReady Power Message APP><ARPWRMSG.EXE>  [(Verified)Microsoft Windows Publisher]
	<DMAScheduler><c:\Program Files\Sonic\DigitalMedia Plus\DigitalMedia Archive\DMAScheduler.exe>  [Sonic Solutions]
	<Recguard><C:\WINDOWS\SMINST\RECGUARD.EXE>  []
	<PCDrProfiler><>  [N/A]
	<HPBootOp><"C:\Program Files\Hewlett-Packard\HP Boot Optimizer\HPBootOp.exe" /run>  [Hewlett-Packard Company]
	<Reminder><"C:\Windows\Creator\Remind_XP.exe">  [SoftThinks]
	<HP Software Update><C:\Program Files\HP\HP Software Update\HPWuSchd2.exe>  [(Verified)Hewlett-Packard Company]
	<avast!><C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe>  [(Verified)ALWIL Software]
	<Kernel and Hardware Abstraction Layer><KHALMNPR.EXE>  [(Verified)Microsoft Windows Hardware Compatibility Publisher]
	<StartCCC><"C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun>  [File is missing]
	<Bluetooth Connection Assistant><LBTWIZ.EXE -silent>  [N/A]
	<QuickTime Task><"C:\Program Files\QuickTime\qttask.exe" -atboottime>  [Apple Inc.]
	<iTunesHelper><"C:\Program Files\iTunes\iTunesHelper.exe">  [(Verified)Apple Inc.]
	<SunJavaUpdateSched><"C:\Program Files\Java\jre6\bin\jusched.exe">  [(Verified)"Sun Microsystems, Inc."]
	<braviax><C:\WINDOWS\system32\braviax.exe>  []
	<PS2><C:\WINDOWS\system32\ps2.exe>  [(Verified)Microsoft Windows Hardware Compatibility Publisher]
	<winupdate.exe><C:\WINDOWS\system32\winupdate.exe>  []
	<siwomefoy><Rundll32.exe "c:\windows\system32\ginuzefa.dll",a>  []
	<fidikujeki><Rundll32.exe "C:\WINDOWS\system32\neyuvena.dll",s>  []
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]
	<shell><Explorer.exe>  [(Verified)Microsoft Windows Component Publisher]
	<Userinit><C:\WINDOWS\system32\userinit.exe,>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows]
	<AppInit_DLLs><c:\windows\system32\ginuzefa.dll,C:\WINDOWS\system32\rezakaju.dll>  [File is missing]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]
	<UIHost><logonui.exe>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
	<{AEB6717E-7E19-11d0-97EE-00C04FD91972}><shell32.dll>  [(Verified)Microsoft Windows Component Publisher]
	<{56F9679E-7826-4C84-81F3-532071A8BCC5}><C:\Program Files\Windows Desktop Search\MSNLNamespaceMgr.dll>  [Microsoft Corporation]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
	<PostBootReminder><%SystemRoot%\system32\SHELL32.dll>  [(Verified)Microsoft Windows Component Publisher]
	<CDBurn><%SystemRoot%\system32\SHELL32.dll>  [(Verified)Microsoft Windows Component Publisher]
	<WebCheck><C:\WINDOWS\system32\webcheck.dll>  [(Verified)Microsoft Windows]
	<SysTray><C:\WINDOWS\system32\stobject.dll>  [(Verified)Microsoft Windows Component Publisher]
	<WPDShServiceObj><C:\WINDOWS\system32\WPDShServiceObj.dll>  [(Verified)Microsoft Windows Component Publisher]
	<vepulizan><c:\windows\system32\ginuzefa.dll>  []
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\crypt32chain]
	<WinlogonNotify: crypt32chain><crypt32.dll>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\cryptnet]
	<WinlogonNotify: cryptnet><cryptnet.dll>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\cscdll]
	<WinlogonNotify: cscdll><cscdll.dll>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\dimsntfy]
	<WinlogonNotify: dimsntfy><%SystemRoot%\System32\dimsntfy.dll>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\LBTWlgn]
	<WinlogonNotify: LBTWlgn><c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll>  [(Verified)Logitech]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\ScCertProp]
	<WinlogonNotify: ScCertProp><wlnotify.dll>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\Schedule]
	<WinlogonNotify: Schedule><wlnotify.dll>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\sclgntfy]
	<WinlogonNotify: sclgntfy><sclgntfy.dll>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\SensLogn]
	<WinlogonNotify: SensLogn><WlNotify.dll>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\termsrv]
	<WinlogonNotify: termsrv><wlnotify.dll>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\wlballoon]
	<WinlogonNotify: wlballoon><wlnotify.dll>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SharedTaskScheduler]
	<{438755C2-A8BA-11D1-B96B-00A0C90312E1}><%SystemRoot%\system32\browseui.dll>  [(Verified)Microsoft Windows Component Publisher]
	<{8C7461EF-2B13-11d2-BE35-3078302C2030}><%SystemRoot%\system32\browseui.dll>  [(Verified)Microsoft Windows Component Publisher]
	<{5899d15d-8909-4948-b5a1-460eb953a437}><c:\windows\system32\ginuzefa.dll>  []
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\<{12d0ed0d-0ee0-4f90-8827-78cefb8f4988}]
	<Internet Explorer Version Update><C:\WINDOWS\system32\ieudinit.exe>  [(Verified)Microsoft Windows]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\>{22d6f312-b0f6-11d0-94ab-0080c74c7e95}]
	<Microsoft Windows Media Player><C:\WINDOWS\inf\unregmp2.exe /ShowWMP>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\>{26923b43-4d38-484f-9b9e-de460746276c}]
	<Internet Explorer><C:\WINDOWS\system32\ie4uinit.exe -UserIconConfig>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\>{60B49E34-C7CC-11D0-8953-00A0C90347FF}]
	<Browser Customizations><"C:\WINDOWS\system32\rundll32.exe" "C:\WINDOWS\system32\iedkcs32.dll",BrandIEActiveSetup SIGNUP>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\>{881dd1c5-3dcf-431b-b061-f3f88e8be88a}]
	<Outlook Express><%systemroot%\system32\shmgrate.exe OCInstallUserConfigOE>  [File is missing]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\KB910393]
	<KB910393><rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\EasyCDBlock.inf,PerUserInstall>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{10880D85-AAD9-4558-ABDC-2AB1552D831F}]
	<LightScribe Control Panel><"C:\Program Files\Common Files\LightScribe\LSRunOnce.exe">  [(Verified)Hewlett-Packard Company]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{2C7339CF-2B09-4501-B3F3-F3508C9228ED}]
	<Themes Setup><%SystemRoot%\system32\regsvr32.exe /s /n /i:/UserInstall %SystemRoot%\system32\themeui.dll>  [File is missing]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{407408d4-94ed-4d86-ab69-a7f649d112ee}]
	<Media Center><%SystemRoot%\System32\rundll32.exe setupapi,InstallHinfSection QuickLaunchShortcut 640 %systemroot%\inf\mcdftreg.inf>  [File is missing]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{44BBA840-CC51-11CF-AAFA-00AA00B6015C}]
	<Microsoft Outlook Express 6><"%ProgramFiles%\Outlook Express\setup50.exe" /APP:OE /CALLER:WINNT /user /install>  [File is missing]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{44BBA842-CC51-11CF-AAFA-00AA00B6015B}]
	<NetMeeting 3.01><rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\msnetmtg.inf,NetMtg.Install.PerUser.NT>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{5945c046-1e7d-11d1-bc44-00c04fd912be}]
	<Windows Messenger 4.7><rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\msmsgs.inf,BLC.QuietInstall.PerUser>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{6BF52A52-394A-11d3-B153-00C04F79FAA6}]
	<Microsoft Windows Media Player><rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\wmp11.inf,PerUserStub>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{7790769C-0471-11d2-AF11-00C04FA35D02}]
	<Address Book 6><"%ProgramFiles%\Outlook Express\setup50.exe" /APP:WAB /CALLER:WINNT /user /install>  [File is missing]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{89820200-ECBD-11cf-8B85-00AA005B4340}]
	<Windows Desktop Update><regsvr32.exe /s /n /i:U shell32.dll>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{89820200-ECBD-11cf-8B85-00AA005B4383}]
	<Internet Explorer><C:\WINDOWS\system32\ie4uinit.exe -BaseSettings>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{89B4C1CD-B018-4511-B0A1-5476DBF70820}]
	<N/A><c:\WINDOWS\system32\Rundll32.exe c:\WINDOWS\system32\mscories.dll,Install>  [(Verified)Microsoft Corporation]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{8b15971b-5355-4c82-8c07-7e181ea07608}]
	<Fax><rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\fxsocm.inf,Fax.Install.PerUser>  [(Verified)Microsoft Windows Component Publisher]

==================================
Startup Folders
[Bluetooth]
  <C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Bluetooth.lnk --> C:\PROGRA~1\WIDCOMM\BLUETO~1\BTTray.exe [Broadcom Corporation.]><N>
[Logitech SetPoint]
  <C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Logitech SetPoint.lnk --> C:\PROGRA~1\Logitech\SetPoint\SetPoint.exe [Logitech, Inc.]><N>
[SetPointII]
  <C:\Documents and Settings\All Users\Start Menu\Programs\Startup\SetPointII.lnk --> C:\PROGRA~1\Logitech\SETPOI~1\SETPOI~1.EXE [Logitech Inc.]><N>

==================================
Services
[Apple Mobile Device / Apple Mobile Device][Running/Auto Start]
  <"C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe"><Apple Inc.>
[avast! iAVS4 Control Service / aswUpdSv][Running/Auto Start]
  <"C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe"><ALWIL Software>
[Ati HotKey Poller / Ati HotKey Poller][Running/Auto Start]
  <C:\WINDOWS\system32\Ati2evxx.exe><ATI Technologies Inc.>
[ATI Smart / ATI Smart][Stopped/Auto Start]
  <C:\WINDOWS\system32\ati2sgag.exe><>
[avast! Antivirus / avast! Antivirus][Stopped/Auto Start]
  <"C:\Program Files\Alwil Software\Avast4\ashServ.exe"><N/A>
[avast! Mail Scanner / avast! Mail Scanner][Stopped/Manual Start]
  <"C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service><ALWIL Software>
[avast! Web Scanner / avast! Web Scanner][Stopped/Manual Start]
  <"C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service><ALWIL Software>
[Bonjour Service / Bonjour Service][Running/Auto Start]
  <"C:\Program Files\Bonjour\mDNSResponder.exe"><Apple Inc.>
[Bluetooth Service / btwdins][Running/Auto Start]
  <C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe><Broadcom Corporation.>
[InstallDriver Table Manager / IDriverT][Stopped/Manual Start]
  <"C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe"><Macrovision Corporation>
[iPod Service / iPod Service][Running/Manual Start]
  <"C:\Program Files\iPod\bin\iPodService.exe"><Apple Inc.>
[Java Quick Starter / JavaQuickStarterService][Running/Auto Start]
  <"C:\Program Files\Java\jre6\bin\jqs.exe" -service -config "C:\Program Files\Java\jre6\lib\deploy\jqs\jqs.conf"><Sun Microsystems, Inc.>
[Logitech Bluetooth Service / LBTServ][Running/Auto Start]
  <C:\Program Files\Common Files\Logishrd\Bluetooth\LBTServ.exe><Logitech, Inc.>
[LightScribeService Direct Disc Labeling Service / LightScribeService][Running/Auto Start]
  <"C:\Program Files\Common Files\LightScribe\LSSrvc.exe"><Hewlett-Packard Company>
[MHN / MHN][Stopped/Manual Start]
  <C:\WINDOWS\System32\svchost.exe -k netsvcs-->%SystemRoot%\System32\mhn.dll><Microsoft Corporation>
[Pml Driver HPZ12 / Pml Driver HPZ12][Running/Auto Start]
  <C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\HPZIPM12.EXE><HP>
[PC Tools Auxiliary Service / sdAuxService][Stopped/Manual Start]
  <C:\Program Files\Spyware Doctor\pctsAuxs.exe><PC Tools>
[PC Tools Security Service / sdCoreService][Stopped/Manual Start]
  <C:\Program Files\Spyware Doctor\pctsSvc.exe><N/A>
[StarWind AE Service / StarWindServiceAE][Running/Auto Start]
  <C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe><Rocket Division Software>
[TunngleService / TunngleService][Running/Auto Start]
  <C:\Program Files\Tunngle\TnglCtrl.exe><Tunngle.net GmbH>

==================================
Drivers
[Agere Systems Soft Modem / AgereSoftModem][Stopped/Manual Start]
  <system32\DRIVERS\AGRSM.sys><Agere Systems>
[Service for Realtek AC97 Audio (WDM) / ALCXWDM][Running/Manual Start]
  <system32\drivers\ALCXWDM.SYS><Realtek Semiconductor Corp.>
[AMD Processor Driver / AmdK8][Running/System Start]
  <system32\DRIVERS\AmdK8.sys><Advanced Micro Devices>
[aswFsBlk / aswFsBlk][Running/Auto Start]
  <system32\DRIVERS\aswFsBlk.sys><ALWIL Software>
[ati2mtag / ati2mtag][Running/Manual Start]
  <system32\DRIVERS\ati2mtag.sys><ATI Technologies Inc.>
[Promise driver accelerator / bb-run][Running/Boot Start]
  <\SystemRoot\system32\DRIVERS\bb-run.sys><Promise Technology, Inc.>
[Bluetooth Audio Device / btaudio][Running/Manual Start]
  <system32\drivers\btaudio.sys><Broadcom Corporation.>
[Bluetooth Virtual Communications Driver / BTDriver][Stopped/Manual Start]
  <system32\DRIVERS\btport.sys><Broadcom Corporation.>
[Bluetooth Bus Enumerator / BTKRNL][Running/Manual Start]
  <system32\DRIVERS\btkrnl.sys><Broadcom Corporation.>
[btwhid / btwhid][Stopped/Manual Start]
  <system32\DRIVERS\btwhid.sys><Broadcom Corporation.>
[Bluetooth Modem / btwmodem][Stopped/Manual Start]
  <system32\DRIVERS\btwmodem.sys><Broadcom Corporation.>
[WIDCOMM USB Bluetooth Driver / BTWUSB][Stopped/Manual Start]
  <System32\Drivers\btwusb.sys><Broadcom Corporation.>
[WIDCOMM USB Bluetooth Driver in DFU State / DFUBTUSB][Stopped/Manual Start]
  <System32\Drivers\frmupgr.sys><Broadcom Corporation.>
[ftsata2 / ftsata2][Running/Boot Start]
  <\SystemRoot\system32\DRIVERS\ftsata2.sys><Promise Technology, Inc.>
[GEAR ASPI Filter Driver / GEARAspiWDM][Running/Manual Start]
  <system32\DRIVERS\GEARAspiWDM.sys><GEAR Software Inc.>
[Hauppauge WinTV PVR PCI II ([23|25|26]xxx) / hcwPP2][Running/Manual Start]
  <system32\DRIVERS\hcwPP2.sys><Hauppauge Computer Works, Inc.>
[Microsoft UAA Bus Driver for High Definition Audio / HDAudBus][Running/Manual Start]
  <system32\DRIVERS\HDAudBus.sys><Windows (R) Server 2003 DDK provider>
[Intel RAID Controller / iaStor][Running/Boot Start]
  <\SystemRoot\system32\DRIVERS\iaStor.sys><Intel Corporation>
[LBeepKE / LBeepKE][Running/Auto Start]
  <System32\Drivers\LBeepKE.sys><Logitech, Inc.>
[Logitech SetPoint KMDF HID Filter Driver / LHidFilt][Running/Manual Start]
  <system32\DRIVERS\LHidFilt.Sys><Logitech, Inc.>
[Logitech SetPoint KMDF Mouse Filter Driver / LMouFilt][Running/Manual Start]
  <system32\DRIVERS\LMouFilt.Sys><Logitech, Inc.>
[MHN driver / MHNDRV][Stopped/Manual Start]
  <system32\DRIVERS\mhndrv.sys><Microsoft Corporation>
[PCTools KDS / PCTCore][Running/Boot Start]
  <\SystemRoot\system32\drivers\PCTCore.sys><PC Tools>
[StarForce Protection Environment Driver v6 / prodrv06][Running/System Start]
  <\SystemRoot\System32\drivers\prodrv06.sys><Protection Technology>
[StarForce Protection Helper Driver v2 / prohlp02][Running/Boot Start]
  <\SystemRoot\System32\drivers\prohlp02.sys><Protection Technology>
[StarForce Protection Synchronization Driver v1 / prosync1][Running/Boot Start]
  <\SystemRoot\System32\drivers\prosync1.sys><Protection Technology>
[Ps2 / Ps2][Running/Manual Start]
  <system32\DRIVERS\PS2.sys><Hewlett-Packard Company>
[Direct Parallel Link Driver / Ptilink][Running/Manual Start]
  <system32\DRIVERS\ptilink.sys><Parallel Technologies, Inc.>
[PxHelp20 / PxHelp20][Running/Boot Start]
  <\SystemRoot\System32\Drivers\PxHelp20.sys><Sonic Solutions>
[Realtek 10/100/1000 NIC Family all in one NDIS XP Driver / RTL8023xp][Running/Manual Start]
  <system32\DRIVERS\Rtnicxp.sys><Realtek Semiconductor Corporation>
[Realtek RTL8139(A/B/C)-based PCI Fast Ethernet Adapter NT Driver / rtl8139][Stopped/Manual Start]
  <system32\DRIVERS\RTL8139.SYS><Realtek Semiconductor Corporation>
[Secdrv / Secdrv][Stopped/Manual Start]
  <system32\DRIVERS\secdrv.sys><Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.>
[StarForce Protection Helper Driver / sfhlp01][Running/Boot Start]
  <\SystemRoot\System32\drivers\sfhlp01.sys><Protection Technology>
[sptd / sptd][Running/Boot Start]
  <\SystemRoot\System32\Drivers\sptd.sys><N/A>
[TAP-Win32 Adapter V9 (Tunngle) / tap0901t][Running/Manual Start]
  <system32\DRIVERS\tap0901t.sys><Tunngle.net>
[Virtual Serial Bus Enumerator / vsbus][Running/Manual Start]
  <system32\DRIVERS\vsb.sys><ELTIMA Software>
[ELTIMA Virtual Serial Ports Driver / vserial][Stopped/Manual Start]
  <System32\DRIVERS\vserial.sys><ELTIMA Software>

==================================
Browser Add-ons
[]
  {97099657-4a8d-4fa8-81a8-4664682cfab3} <C:\WINDOWS\system32\fupipivo.dll, N/A>
[@btrez.dll,-4015]
  {CCA281CA-C863-46ef-9331-5C8D4460577F} <, >
[Internet Connection Help]
  {E2D4D26B-0180-43a4-B05F-462D6D54C789} <, >
[]
  {e2e2dd38-d088-4134-82b7-f2ba38496583} <%windir%\Network Diagnostic\xpnetdiag.exe, (Signed) N/A>
[Messenger]
  {FB5F1910-F110-11d2-BB9E-00C04F795683} <C:\Program Files\Messenger\msmsgs.exe, (Signed) Microsoft Corporation>
[WUWebControl Class]
  {6414512B-B978-451D-A0D8-FCFDF33E833C} <C:\WINDOWS\system32\wuweb.dll, (Signed) Microsoft Corporation>
[Java Plug-in 1.6.0_15]
  {8AD9C840-044E-11D1-B3E9-00805F499D93} <C:\Program Files\Java\jre6\bin\jp2iexp.dll, (Signed) >
[]
  {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} <, >
[Java Plug-in 1.5.0_05]
  {CAFEEFAC-0015-0000-0005-ABCDEFFEDCBA} <C:\Program Files\Java\jre6\bin\jp2iexp.dll, (Signed) >
[Java Plug-in 1.6.0_15]
  {CAFEEFAC-0016-0000-0015-ABCDEFFEDCBA} <C:\Program Files\Java\jre6\bin\jp2iexp.dll, (Signed) >
[Java Plug-in 1.6.0_15]
  {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} <C:\Program Files\Java\jre6\bin\npjpi160_15.dll, (Signed) Sun Microsystems, Inc.>
[AcroIEHlprObj Class]
  {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} <C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll, (Signed) Adobe Systems Incorporated>
[]
  {2318C2B1-4965-11D4-9B18-009027A5CD4F} <, >
[DHTML Edit Control Safe for Scripting for IE5]
  {2D360201-FFF5-11D1-8D03-00A0C959BC0A} <C:\Program Files\Common Files\Microsoft Shared\Triedit\dhtmled.ocx, (Signed) Microsoft Corporation>
[HtmlDlgSafeHelper Class]
  {3050F819-98B5-11CF-BB82-00AA00BDCE0B} <C:\WINDOWS\system32\mshtmled.dll, (Signed) Microsoft Corporation>
[QuickTime Object]
  {4063BE15-3B08-470D-A0D5-B37161CFFD69} <C:\Program Files\QuickTime\QTPlugin.ocx, (Signed) Apple Inc.>
[XML Document]
  {48123BC4-99D9-11D1-A6B3-00C04FD91555} <C:\WINDOWS\system32\msxml3.dll, (Signed) Microsoft Corporation>
[Windows Desktop Search Combo Control]
  {4E430174-1673-4FF3-BF28-A3B37F6573E7} <C:\Program Files\Windows Desktop Search\wdsShell.dll, (Signed) Microsoft Corporation>
[Microsoft Terminal Services Client Control (redist)]
  {4eb89ff4-7f78-4a0f-8b8d-2bf02e94e4b2} <%systemroot%\system32\mstscax.dll, (Signed) N/A>
[Microsoft Terminal Services Client Control (redist)]
  {4EDCB26C-D24C-4e72-AF07-B576699AC0DE} <%systemroot%\system32\mstscax.dll, (Signed) N/A>
[Windows Media Player]
  {6BF52A52-394A-11D3-B153-00C04F79FAA6} <C:\WINDOWS\system32\wmp.dll, (Signed) Microsoft Corporation>
[Active Desktop Mover]
  {72267F6A-A6F9-11D0-BC94-00C04FB67863} <%SystemRoot%\system32\SHELL32.dll, (Signed) N/A>
[Microsoft Terminal Services Client Control (redist)]
  {7390f3d8-0439-4c05-91e3-cf5cb290c3d0} <%systemroot%\system32\mstscax.dll, (Signed) N/A>
[Microsoft Terminal Services Client Control (redist)]
  {7584c670-2274-4efb-b00b-d6aaba6d3850} <%systemroot%\system32\mstscax.dll, (Signed) N/A>
[Microsoft Terminal Services Client Control (redist)]
  {9059f30f-4eb1-4bd2-9fdc-36f43a218f4a} <%systemroot%\system32\mstscax.dll, (Signed) N/A>
[]
  {97099657-4A8D-4FA8-81A8-4664682CFAB3} <C:\WINDOWS\system32\fupipivo.dll, N/A>
[]
  {AA58ED58-01DD-4D91-8333-CF10577473F7} <, >
[]
  {AAAE832A-5FFF-4661-9C8F-369692D1DCB9} <, >
[Helper Class]
  {BF0118D4-63FF-4138-9327-F3028FB1A578} <C:\WINDOWS\web\wallpaper\welcome\AWhelper.dll, >
[]
  {CCA281CA-C863-46EF-9331-5C8D4460577F} <, >
[Microsoft Url Search Hook]
  {CFBFAE00-17A6-11D0-99CB-00C04FD64497} <C:\WINDOWS\system32\ieframe.dll, (Signed) Microsoft Corporation>
[Shockwave Flash Object]
  {D27CDB6E-AE6D-11CF-96B8-444553540000} <C:\WINDOWS\system32\Macromed\Flash\Flash10b.ocx, (Signed) Adobe Systems, Inc.>
[Java(tm) Plug-In 2 SSV Helper]
  {DBC80044-A445-435B-BC74-9C25C1C588A9} <C:\Program Files\Java\jre6\bin\jp2ssv.dll, (Signed) Sun Microsystems, Inc.>
[Microsoft Silverlight]
  {DFEAF541-F3E1-4C24-ACAC-99C30715084A} <c:\Program Files\Microsoft Silverlight\3.0.40723.0\npctrl.dll, (Signed)  Microsoft Corporation>
[]
  {E2D4D26B-0180-43A4-B05F-462D6D54C789} <, >
[]
  {E2E2DD38-D088-4134-82B7-F2BA38496583} <, >
[JQSIEStartDetectorImpl Class]
  {E7E6F031-17CE-4C07-BC86-EABFE594F69C} <C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll, Sun Microsystems, Inc.>
[XML HTTP Request]
  {ED8C108E-4349-11D2-91A4-00C04F7969E8} <C:\WINDOWS\system32\msxml3.dll, (Signed) Microsoft Corporation>
[Runclose Control]
  {F31D1897-7EFD-4647-8687-E05894E382AB} <C:\WINDOWS\system32\runclose.ocx, Hewlett-Packard Company>
[XML DOM Document]
  {F6D90F11-9C73-11D3-B32E-00C04F990BB4} <C:\WINDOWS\system32\msxml3.dll, (Signed) Microsoft Corporation>
[XML HTTP]
  {F6D90F16-9C73-11D3-B32E-00C04F990BB4} <C:\WINDOWS\system32\msxml3.dll, (Signed) Microsoft Corporation>
[]
  {FB5F1910-F110-11D2-BB9E-00C04F795683} <, >
[&Google Search]
  <res://C:\Program Files\Google\GoogleToolbar1.dll/cmsearch.html, N/A>
[&Translate English Word]
  <res://C:\Program Files\Google\GoogleToolbar1.dll/cmwordtrans.html, N/A>
[Backward Links]
  <res://C:\Program Files\Google\GoogleToolbar1.dll/cmbacklinks.html, N/A>
[Cached Snapshot of Page]
  <res://C:\Program Files\Google\GoogleToolbar1.dll/cmcache.html, N/A>
[E&xport to Microsoft Excel]
  <res://C:\PROGRA~1\MICROS~4\OFFICE11\EXCEL.EXE/3000, N/A>
[Send to &Bluetooth Device...]
  <C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm, N/A>
[Similar Pages]
  <res://C:\Program Files\Google\GoogleToolbar1.dll/cmsimilar.html, N/A>
[Translate Page into English]
  <res://C:\Program Files\Google\GoogleToolbar1.dll/cmtrans.html, N/A>

==================================
Running Processes
[PID: 680 / SYSTEM][\SystemRoot\System32\smss.exe]  [(Verified) Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)]
[PID: 760 / SYSTEM][\??\C:\WINDOWS\system32\csrss.exe]  [(Verified) Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)]
[PID: 792 / SYSTEM][\??\C:\WINDOWS\system32\winlogon.exe]  [(Verified) Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2113)]
	[c:\windows\system32\ginuzefa.dll]  [N/A, ]
	[C:\WINDOWS\system32\rezakaju.dll]  [N/A, ]
	[C:\WINDOWS\system32\Ati2evxx.dll]  [ATI Technologies Inc., 6.14.10.4178]
	[c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll]  [Logitech, Inc., 4.70.213]
	[c:\program files\common files\logishrd\bluetooth\LBTServ.dll]  [Logitech, Inc., 4.70.213]
	[\\?\globalroot\Device\__max++>\90D5DA08.x86.dll]  [N/A, ]
	[C:\Program Files\Bonjour\mdnsNSP.dll]  [Apple Inc., 1,0,6,2]
[PID: 848 / SYSTEM][C:\WINDOWS\system32\services.exe]  [(Verified) Microsoft Corporation, 5.1.2600.5755 (xpsp_sp3_gdr.090206-1234)]
	[c:\windows\system32\ginuzefa.dll]  [N/A, ]
	[C:\WINDOWS\system32\rezakaju.dll]  [N/A, ]
[PID: 860 / SYSTEM][C:\WINDOWS\system32\lsass.exe]  [(Verified) Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2113)]
	[C:\WINDOWS\system32\rezakaju.dll]  [N/A, ]
[PID: 1044 / SYSTEM][C:\WINDOWS\system32\Ati2evxx.exe]  [ATI Technologies Inc., 6.14.10.4223]
	[C:\WINDOWS\system32\Ati2edxx.dll]  [ATI Technologies, Inc., 6, 14, 10, 2514]
	[C:\WINDOWS\system32\atipdlxx.dll]  [ATI Technologies, Inc., 6, 14, 10, 2551]
[PID: 1064 / SYSTEM][C:\WINDOWS\system32\svchost.exe]  [(Verified) Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)]
	[C:\WINDOWS\system32\rezakaju.dll]  [N/A, ]
	[\\?\globalroot\Device\__max++>\90D5DA08.x86.dll]  [N/A, ]
	[C:\Program Files\Bonjour\mdnsNSP.dll]  [Apple Inc., 1,0,6,2]
[PID: 1156 / NETWORK SERVICE][C:\WINDOWS\system32\svchost.exe]  [(Verified) Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)]
	[C:\WINDOWS\system32\rezakaju.dll]  [N/A, ]
	[\\?\globalroot\systemroot\system32\UACyoubqodaff.dll]  [N/A, ]
	[\\?\globalroot\Device\__max++>\90D5DA08.x86.dll]  [N/A, ]
	[C:\Program Files\Bonjour\mdnsNSP.dll]  [Apple Inc., 1,0,6,2]
[PID: 1212 / SYSTEM][C:\WINDOWS\System32\svchost.exe]  [(Verified) Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)]
	[C:\WINDOWS\system32\rezakaju.dll]  [N/A, ]
	[\\?\globalroot\systemroot\system32\UACyoubqodaff.dll]  [N/A, ]
	[\\?\globalroot\Device\__max++>\90D5DA08.x86.dll]  [N/A, ]
	[C:\Program Files\Bonjour\mdnsNSP.dll]  [Apple Inc., 1,0,6,2]
[PID: 1244 / SYSTEM][C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe]  [Broadcom Corporation., 5.1.0.2700]
	[c:\windows\system32\ginuzefa.dll]  [N/A, ]
	[C:\WINDOWS\system32\rezakaju.dll]  [N/A, ]
[PID: 1276 / SYSTEM][C:\Program Files\Common Files\Logishrd\Bluetooth\LBTServ.exe]  [Logitech, Inc., 4.70.213]
	[c:\windows\system32\ginuzefa.dll]  [N/A, ]
	[C:\WINDOWS\system32\rezakaju.dll]  [N/A, ]
[PID: 1332 / NETWORK SERVICE][C:\WINDOWS\system32\svchost.exe]  [(Verified) Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)]
	[C:\WINDOWS\system32\rezakaju.dll]  [N/A, ]
	[\\?\globalroot\systemroot\system32\UACyoubqodaff.dll]  [N/A, ]
[PID: 1444 / SYSTEM][C:\WINDOWS\system32\Ati2evxx.exe]  [ATI Technologies Inc., 6.14.10.4223]
	[C:\WINDOWS\system32\Ati2edxx.dll]  [ATI Technologies, Inc., 6, 14, 10, 2514]
	[C:\WINDOWS\system32\atipdlxx.dll]  [ATI Technologies, Inc., 6, 14, 10, 2551]
	[C:\WINDOWS\system32\ati2evxx.dll]  [ATI Technologies Inc., 6.14.10.4178]
[PID: 1516 / LOCAL SERVICE][C:\WINDOWS\system32\svchost.exe]  [(Verified) Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)]
	[C:\WINDOWS\system32\rezakaju.dll]  [N/A, ]
	[\\?\globalroot\systemroot\system32\UACyoubqodaff.dll]  [N/A, ]
[PID: 1600 / SYSTEM][C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe]  [ALWIL Software, 4, 8, 1351, 0]
	[C:\Program Files\Alwil Software\Avast4\aswCmnS.dll]  [ALWIL Software, 4, 8, 1351, 0]
	[C:\Program Files\Alwil Software\Avast4\aswCmnOS.dll]  [ALWIL Software, 4, 8, 1351, 0]
	[C:\Program Files\Alwil Software\Avast4\aswCmnB.dll]  [ALWIL Software, 4, 8, 1351, 0]
[PID: 1696 / SYSTEM][C:\WINDOWS\system32\spoolsv.exe]  [(Verified) Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-0852)]
	[C:\WINDOWS\system32\rezakaju.dll]  [N/A, ]
	[\\?\globalroot\Device\__max++>\90D5DA08.x86.dll]  [N/A, ]
	[C:\Program Files\Bonjour\mdnsNSP.dll]  [Apple Inc., 1,0,6,2]
	[C:\WINDOWS\system32\bthcrp.dll]  [Broadcom Corporation., 5.1.0.2700]
	[C:\WINDOWS\system32\WidcommSdk.dll]  [Broadcom Corporation., 5.1.0.2700]
	[C:\WINDOWS\system32\wbtapi.dll]  [Broadcom Corporation., 5.1.0.2700]
	[C:\WINDOWS\system32\HpTcpMon.dll]  [Hewlett Packard, 5.01.00.011]
	[C:\WINDOWS\system32\hpzjrd01.dll]  [Hewlett Packard, 2.01.00.001]
	[C:\WINDOWS\system32\HPTcpMUI.dll]  [Microsoft Corporation, 5.01.00.011]
	[C:\WINDOWS\system32\hptcpmib.dll]  [Hewlett Packard, 5.01.00.011]
	[C:\WINDOWS\System32\spool\PRTPROCS\W32X86\mdippr.dll]  [Microsoft Corporation, 11.3.1897.0]
[PID: 1796 / LOCAL SERVICE][C:\WINDOWS\system32\svchost.exe]  [(Verified) Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)]
	[C:\WINDOWS\system32\rezakaju.dll]  [N/A, ]
	[\\?\globalroot\systemroot\system32\UACyoubqodaff.dll]  [N/A, ]
[PID: 1936 / SYSTEM][C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe]  [Apple Inc., 2.50.39.0]
	[c:\windows\system32\ginuzefa.dll]  [N/A, ]
	[C:\WINDOWS\system32\rezakaju.dll]  [N/A, ]
	[\\?\globalroot\Device\__max++>\90D5DA08.x86.dll]  [N/A, ]
	[C:\Program Files\Bonjour\mdnsNSP.dll]  [Apple Inc., 1,0,6,2]
[PID: 1960 / SYSTEM][C:\WINDOWS\arservice.exe]  [Microsoft, 6.0.0160.0]
	[C:\WINDOWS\system32\rezakaju.dll]  [N/A, ]
[PID: 188 / SYSTEM][C:\Program Files\Bonjour\mDNSResponder.exe]  [Apple Inc., 1,0,6,2]
	[c:\windows\system32\ginuzefa.dll]  [N/A, ]
	[C:\WINDOWS\system32\rezakaju.dll]  [N/A, ]
	[\\?\globalroot\Device\__max++>\90D5DA08.x86.dll]  [N/A, ]
	[C:\Program Files\Bonjour\mdnsNSP.dll]  [Apple Inc., 1,0,6,2]
[PID: 268 / SYSTEM][C:\WINDOWS\eHome\ehRecvr.exe]  [Microsoft Corporation, 5.1.2715.3011 (xpsp(wmbla).061009-1511)]
	[C:\WINDOWS\system32\sbe.dll]  [, ]
	[C:\WINDOWS\system32\quartz.dll]  [, ]
	[C:\WINDOWS\system32\devenum.dll]  [, ]
	[C:\WINDOWS\system32\msdmo.dll]  [, ]
	[C:\WINDOWS\system32\hcwCP.ax]  [Hauppauge Computer Works, Inc., 2.0.24251.0]
	[C:\WINDOWS\system32\mpg2splt.ax]  [, ]
	[C:\WINDOWS\system32\VBICodec.ax]  [, ]
	[C:\WINDOWS\system32\encdec.dll]  [, ]
	[C:\WINDOWS\system32\hcwXDS.dll]  [, 1, 6, 0, 24201]
	[C:\WINDOWS\system32\hcwCCnv2.ax]  [Hauppauge Computer Works, Inc., 2.0.48.25008]
[PID: 460 / SYSTEM][C:\WINDOWS\eHome\ehSched.exe]  [(Verified) Microsoft Corporation, 5.1.2710.2732 (xpsp(wmbla).050805-1239)]
[PID: 572 / HP_Administrator][C:\WINDOWS\Explorer.EXE]  [(Verified) Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
	[C:\WINDOWS\system32\rezakaju.dll]  [N/A, ]
	[C:\Program Files\Windows Desktop Search\MSNLNamespaceMgr.dll]  [Microsoft Corporation, 7.00.6001.18260 (vistasp1_gdr_oobsvc.090524-1500)]
	[c:\windows\system32\ginuzefa.dll]  [N/A, ]
	[C:\WINDOWS\system32\btncopy.dll]  [Broadcom Corporation., 5.1.0.2700]
	[C:\WINDOWS\system32\neyuvena.dll]  [N/A, ]
	[C:\WINDOWS\system32\fupipivo.dll]  [N/A, ]
	[C:\Program Files\Logitech\SetPoint\lgscroll.dll]  [Logitech, Inc., 4.70.213]
	[C:\WINDOWS\system32\btmmhook.dll]  [Broadcom Corporation., 5.1.0.2700]
	[C:\Program Files\Adobe\Acrobat 7.0\ActiveX\PDFShell.dll]  [Adobe Systems, Inc., 7.0.0.0]
	[C:\Program Files\WinRAR\rarext.dll]  [N/A, ]
	[C:\PROGRA~1\SPYWAR~1\SDCONT~1.DLL]  [PC Tools, 6.1.0.4]
	[C:\Program Files\Malwarebytes' Anti-Malware\mbamext.dll]  [Malwarebytes Corporation, 1, 2, 0, 0]
	[C:\Program Files\Alwil Software\Avast4\ashShell.dll]  [ALWIL Software, 4, 8, 1351, 0]
[PID: 656 / SYSTEM][C:\Program Files\Java\jre6\bin\jqs.exe]  [Sun Microsystems, Inc., 6.0.150.3]
	[c:\windows\system32\ginuzefa.dll]  [N/A, ]
	[C:\WINDOWS\system32\rezakaju.dll]  [N/A, ]
	[\\?\globalroot\Device\__max++>\90D5DA08.x86.dll]  [N/A, ]
	[C:\Program Files\Bonjour\mdnsNSP.dll]  [Apple Inc., 1,0,6,2]
[PID: 816 / SYSTEM][C:\Program Files\Common Files\LightScribe\LSSrvc.exe]  [Hewlett-Packard Company, 1.18.6.1]
	[C:\Program Files\Common Files\LightScribe\LSSProxy.dll]  [Hewlett-Packard Company, 1.18.6.1]
	[C:\Program Files\Common Files\LightScribe\LSLog.dll]  [Hewlett-Packard Company, 1.18.6.1]
	[C:\WINDOWS\system32\rezakaju.dll]  [N/A, ]
[PID: 1412 / SYSTEM][C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE]  [Microsoft Corporation, 7.00.9466]
	[C:\WINDOWS\system32\rezakaju.dll]  [N/A, ]
[PID: 1792 / SYSTEM][C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\HPZIPM12.EXE]  [HP, 10, 1, 1, 6]
	[c:\windows\system32\ginuzefa.dll]  [N/A, ]
	[C:\WINDOWS\system32\rezakaju.dll]  [N/A, ]
[PID: 2080 / LOCAL SERVICE][C:\WINDOWS\system32\svchost.exe]  [(Verified) Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)]
	[C:\WINDOWS\system32\rezakaju.dll]  [N/A, ]
	[\\?\globalroot\systemroot\system32\UACyoubqodaff.dll]  [N/A, ]
	[\\?\globalroot\Device\__max++>\90D5DA08.x86.dll]  [N/A, ]
	[C:\Program Files\Bonjour\mdnsNSP.dll]  [Apple Inc., 1,0,6,2]
[PID: 2136 / SYSTEM][C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe]  [Rocket Division Software, 3.2.3 Build 20070527]
	[c:\windows\system32\ginuzefa.dll]  [N/A, ]
	[C:\WINDOWS\system32\rezakaju.dll]  [N/A, ]
	[\\?\globalroot\Device\__max++>\90D5DA08.x86.dll]  [N/A, ]
	[C:\Program Files\Bonjour\mdnsNSP.dll]  [Apple Inc., 1,0,6,2]
[PID: 2204 / SYSTEM][C:\Program Files\Tunngle\TnglCtrl.exe]  [Tunngle.net GmbH, 4.2.2.4]
	[C:\WINDOWS\system32\rezakaju.dll]  [N/A, ]
	[C:\Program Files\Tunngle\libeay32.dll]  [N/A, ]
	[\\?\globalroot\Device\__max++>\90D5DA08.x86.dll]  [N/A, ]
	[C:\Program Files\Bonjour\mdnsNSP.dll]  [Apple Inc., 1,0,6,2]
	[C:\Program Files\Tunngle\tZIP.dll]  [Tunngle.net GmbH, 1.0.0.0]
	[C:\Program Files\Tunngle\tNetRaw.dll]  [Tunngle.net GmbH, 1.0.0.0]
	[C:\Program Files\Tunngle\tNetFilter.dll]  [Tunngle.net GmbH, 1.1.0.1]
[PID: 2484 / SYSTEM][C:\WINDOWS\system32\SearchIndexer.exe]  [Microsoft Corporation, 7.0.6001.16503 (longhorn(wmbla).080526-2159)]
	[C:\WINDOWS\system32\rezakaju.dll]  [N/A, ]
[PID: 2548 / LOCAL SERVICE][C:\WINDOWS\ehome\mcrdsvc.exe]  [Microsoft Corporation, 4.1.2710.2732 (xpsp(wmbla).050805-1239)]
	[C:\WINDOWS\system32\rezakaju.dll]  [N/A, ]
	[\\?\globalroot\Device\__max++>\90D5DA08.x86.dll]  [N/A, ]
	[C:\Program Files\Bonjour\mdnsNSP.dll]  [Apple Inc., 1,0,6,2]
[PID: 2744 / HP_Administrator][C:\WINDOWS\ehome\ehtray.exe]  [(Verified) Microsoft Corporation, 5.1.2710.2732 (xpsp(wmbla).050805-1239)]
	[c:\windows\system32\ginuzefa.dll]  [N/A, ]
	[C:\WINDOWS\system32\rezakaju.dll]  [N/A, ]
	[C:\WINDOWS\system32\neyuvena.dll]  [N/A, ]
	[C:\Program Files\Logitech\SetPoint\lgscroll.dll]  [Logitech, Inc., 4.70.213]
	[C:\WINDOWS\system32\fupipivo.dll]  [N/A, ]
[PID: 2764 / HP_Administrator][C:\WINDOWS\ARPWRMSG.EXE]  [Microsoft, 6.0.0160.0]
	[C:\WINDOWS\system32\rezakaju.dll]  [N/A, ]
	[c:\windows\system32\ginuzefa.dll]  [N/A, ]
	[C:\WINDOWS\system32\neyuvena.dll]  [N/A, ]
	[C:\Program Files\Logitech\SetPoint\lgscroll.dll]  [Logitech, Inc., 4.70.213]
	[C:\WINDOWS\system32\fupipivo.dll]  [N/A, ]
[PID: 2792 / HP_Administrator][C:\Program Files\Sonic\DigitalMedia Plus\DigitalMedia Archive\DMAScheduler.exe]  [Sonic Solutions, 1.0.0.1]
	[C:\WINDOWS\system32\rezakaju.dll]  [N/A, ]
	[c:\windows\system32\ginuzefa.dll]  [N/A, ]
	[c:\Program Files\Common Files\Sonic Shared\Sonic Central\Engine\PxWrap.dll]  [Sonic Solutions, 2.06.13B]
	[C:\WINDOWS\system32\PX.dll]  [Sonic Solutions, 4.0.36.500]
	[C:\WINDOWS\system32\neyuvena.dll]  [N/A, ]
	[C:\WINDOWS\system32\PXDRV.DLL]  [Sonic Solutions, 1.02.09a]
	[C:\WINDOWS\system32\PXMAS.DLL]  [Sonic Solutions, 4.0.36.500]
	[C:\WINDOWS\system32\PXSFS.DLL]  [Sonic Solutions, 4.0.36.500]
	[C:\Program Files\Logitech\SetPoint\lgscroll.dll]  [Logitech, Inc., 4.70.213]
	[C:\WINDOWS\system32\PXAFS.DLL]  [Sonic Solutions, 4.0.36.500]
	[C:\WINDOWS\system32\PxWave.dll]  [Sonic Solutions, 4.0.36.500]
	[C:\WINDOWS\system32\VXBLOCK.DLL]  [Sonic Solutions, 1.00.83a]
	[C:\WINDOWS\system32\fupipivo.dll]  [N/A, ]
	[C:\WINDOWS\system32\btmmhook.dll]  [Broadcom Corporation., 5.1.0.2700]
	[c:\Program Files\Sonic\DigitalMedia Plus\DigitalMedia Archive\EAFunctions.dll]  [Sonic Solutions, 1.1.0.0]
[PID: 2896 / HP_Administrator][C:\Program Files\HP\HP Software Update\HPWuSchd2.exe]  [Hewlett-Packard, 80, 1, 0, 0]
	[C:\WINDOWS\system32\rezakaju.dll]  [N/A, ]
	[c:\windows\system32\ginuzefa.dll]  [N/A, ]
	[C:\Program Files\Logitech\SetPoint\lgscroll.dll]  [Logitech, Inc., 4.70.213]
	[C:\WINDOWS\system32\fupipivo.dll]  [N/A, ]
	[C:\WINDOWS\system32\neyuvena.dll]  [N/A, ]
[PID: 2912 / HP_Administrator][C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe]  [ALWIL Software, 4, 8, 1351, 0]
	[C:\PROGRA~1\ALWILS~1\Avast4\aswCmnOS.dll]  [ALWIL Software, 4, 8, 1351, 0]
	[C:\PROGRA~1\ALWILS~1\Avast4\ashBase.dll]  [ALWIL Software, 4, 8, 1351, 0]
	[C:\PROGRA~1\ALWILS~1\Avast4\aswCmnB.dll]  [ALWIL Software, 4, 8, 1351, 0]
	[C:\PROGRA~1\ALWILS~1\Avast4\aswCmnS.dll]  [ALWIL Software, 4, 8, 1351, 0]
	[C:\PROGRA~1\ALWILS~1\Avast4\ashTask.dll]  [ALWIL Software, 4, 8, 1351, 0]
	[C:\PROGRA~1\ALWILS~1\Avast4\aswAux.dll]  [ALWIL Software, 4, 8, 1351, 0]
	[C:\PROGRA~1\ALWILS~1\Avast4\Aavm4h.dll]  [ALWIL Software, 4, 8, 1351, 0]
	[C:\PROGRA~1\ALWILS~1\Avast4\AavmRpch.dll]  [ALWIL Software, 4, 8, 1351, 0]
	[C:\WINDOWS\system32\rezakaju.dll]  [N/A, ]
	[C:\Program Files\Alwil Software\Avast4\English\Base.dll]  [ALWIL Software, 4, 8, 1351, 0]
	[C:\Program Files\Alwil Software\Avast4\English\Lang.dll]  [ALWIL Software, 4, 8, 1351, 0]
	[C:\WINDOWS\system32\MFC71.DLL]  [Microsoft Corporation, 7.10.3077.0]
	[C:\WINDOWS\system32\MFC71ENU.DLL]  [Microsoft Corporation, 7.10.3077.0]
	[c:\windows\system32\ginuzefa.dll]  [N/A, ]
	[C:\Program Files\Logitech\SetPoint\lgscroll.dll]  [Logitech, Inc., 4.70.213]
	[C:\WINDOWS\system32\fupipivo.dll]  [N/A, ]
	[C:\WINDOWS\system32\neyuvena.dll]  [N/A, ]
[PID: 3044 / HP_Administrator][C:\Program Files\Logitech\SetPoint\LBTWiz.exe]  [Logitech Inc., 1.0.0.1]
	[c:\windows\system32\ginuzefa.dll]  [N/A, ]
	[C:\WINDOWS\system32\rezakaju.dll]  [N/A, ]
	[C:\Program Files\Common Files\LogiShrd\Bluetooth\LBTServ.dll]  [Logitech, Inc., 4.70.213]
[PID: 3104 / HP_Administrator][C:\Program Files\iTunes\iTunesHelper.exe]  [Apple Inc., 8.2.1.6]
	[c:\windows\system32\ginuzefa.dll]  [N/A, ]
	[C:\WINDOWS\system32\rezakaju.dll]  [N/A, ]
	[C:\Program Files\iTunes\iTunesHelper.Resources\en.lproj\iTunesHelperLocalized.DLL]  [Apple Inc., 8.2.1.6]
	[C:\Program Files\iTunes\iTunesHelper.Resources\iTunesHelper.DLL]  [Apple Inc., 8.2.1.6]
	[C:\Program Files\QuickTime\QTSystem\QuickTime.qts]  [Apple Inc., 7.6.2 (1324)]
	[C:\WINDOWS\system32\neyuvena.dll]  [N/A, ]
	[C:\Program Files\Common Files\Apple\Mobile Device Support\bin\iTunesMobileDevice.dll]  [Apple Inc., 238.0.0.43]
	[\\?\globalroot\Device\__max++>\90D5DA08.x86.dll]  [N/A, ]
	[C:\Program Files\Bonjour\mdnsNSP.dll]  [Apple Inc., 1,0,6,2]
	[C:\WINDOWS\system32\fupipivo.dll]  [N/A, ]
	[C:\Program Files\Logitech\SetPoint\lgscroll.dll]  [Logitech, Inc., 4.70.213]
[PID: 3128 / HP_Administrator][C:\Program Files\Java\jre6\bin\jusched.exe]  [Sun Microsystems, Inc., 6.0.150.3]
	[C:\WINDOWS\system32\rezakaju.dll]  [N/A, ]
	[c:\windows\system32\ginuzefa.dll]  [N/A, ]
	[\\?\globalroot\Device\__max++>\90D5DA08.x86.dll]  [N/A, ]
	[C:\WINDOWS\system32\fupipivo.dll]  [N/A, ]
	[C:\Program Files\Bonjour\mdnsNSP.dll]  [Apple Inc., 1,0,6,2]
	[C:\WINDOWS\system32\neyuvena.dll]  [N/A, ]
[PID: 3144 / HP_Administrator][C:\WINDOWS\system32\braviax.exe]  [N/A, ]
	[C:\WINDOWS\system32\rezakaju.dll]  [N/A, ]
	[c:\windows\system32\ginuzefa.dll]  [N/A, ]
	[C:\WINDOWS\system32\neyuvena.dll]  [N/A, ]
	[C:\Program Files\Logitech\SetPoint\lgscroll.dll]  [Logitech, Inc., 4.70.213]
	[C:\WINDOWS\system32\fupipivo.dll]  [N/A, ]
[PID: 3196 / HP_Administrator][C:\WINDOWS\system32\ps2.exe]  [Hewlett-Packard Company, 1.0.2.2.112404]
	[C:\WINDOWS\system32\rezakaju.dll]  [N/A, ]
	[c:\windows\system32\ginuzefa.dll]  [N/A, ]
	[C:\Program Files\Logitech\SetPoint\lgscroll.dll]  [Logitech, Inc., 4.70.213]
	[C:\WINDOWS\system32\fupipivo.dll]  [N/A, ]
	[C:\WINDOWS\system32\neyuvena.dll]  [N/A, ]
[PID: 3232 / HP_Administrator][C:\WINDOWS\system32\winupdate.exe]  [N/A, ]
	[C:\WINDOWS\system32\neyuvena.dll]  [N/A, ]
	[c:\windows\system32\ginuzefa.dll]  [N/A, ]
	[C:\WINDOWS\system32\rezakaju.dll]  [N/A, ]
	[\\?\globalroot\Device\__max++>\90D5DA08.x86.dll]  [N/A, ]
	[C:\Program Files\Bonjour\mdnsNSP.dll]  [Apple Inc., 1,0,6,2]
	[C:\Program Files\Logitech\SetPoint\lgscroll.dll]  [Logitech, Inc., 4.70.213]
	[C:\WINDOWS\system32\fupipivo.dll]  [N/A, ]
[PID: 3268 / HP_Administrator][C:\WINDOWS\system32\ctfmon.exe]  [(Verified) Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2105)]
	[c:\windows\system32\ginuzefa.dll]  [N/A, ]
	[C:\WINDOWS\system32\rezakaju.dll]  [N/A, ]
	[C:\WINDOWS\system32\neyuvena.dll]  [N/A, ]
	[C:\Program Files\Logitech\SetPoint\lgscroll.dll]  [Logitech, Inc., 4.70.213]
	[C:\WINDOWS\system32\fupipivo.dll]  [N/A, ]
[PID: 3652 / HP_Administrator][C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe]  [Advanced Micro Devices Inc., 2.0.0.0]
	[c:\windows\system32\ginuzefa.dll]  [N/A, ]
	[C:\WINDOWS\system32\rezakaju.dll]  [N/A, ]
	[C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\mscorlib\6d667f19d687361886990f3ca0f49816\mscorlib.ni.dll]  [Microsoft Corporation, 2.0.50727.3082 (QFE.050727-3000)]
	[C:\WINDOWS\system32\neyuvena.dll]  [N/A, ]
	[C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System\80978a322d7dd39f0a71be1251ae395a\System.ni.dll]  [Microsoft Corporation, 2.0.50727.3053 (netfxsp.050727-3000)]
	[C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Drawing\3da96ee075bab9202626ae44c18d226c\System.Drawing.ni.dll]  [Microsoft Corporation, 2.0.50727.3053 (netfxsp.050727-3000)]
	[C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\63406259e94d5c0ff5b79401dfe113ce\System.Windows.Forms.ni.dll]  [Microsoft Corporation, 2.0.50727.3053 (netfxsp.050727-3000)]
	[C:\WINDOWS\assembly\GAC_MSIL\MOM.Implementation\2.0.3363.36872__90ba9c70f846762e\MOM.Implementation.dll]  [Advanced Micro Devices Inc., 2.0.3363.36872]
	[C:\WINDOWS\assembly\GAC_MSIL\LOG.Foundation\2.0.3363.26465__90ba9c70f846762e\LOG.Foundation.dll]  [Advanced Micro Devices Inc., 2.0.3363.26465]
	[C:\WINDOWS\assembly\GAC_MSIL\LOG.Foundation.Private\2.0.3363.26474__90ba9c70f846762e\LOG.Foundation.Private.dll]  [Advanced Micro Devices Inc., 2.0.3363.26474]
	[C:\WINDOWS\assembly\GAC_MSIL\LOG.Foundation.Implementation\2.0.3363.36870__90ba9c70f846762e\LOG.Foundation.Implementation.dll]  [Advanced Micro Devices Inc., 2.0.3363.36870]
	[C:\WINDOWS\assembly\GAC_MSIL\MOM.Foundation\2.0.3363.26485__90ba9c70f846762e\MOM.Foundation.dll]  [Advanced Micro Devices Inc., 2.0.3363.26485]
	[C:\WINDOWS\system32\fupipivo.dll]  [N/A, ]
	[C:\Program Files\Logitech\SetPoint\lgscroll.dll]  [Logitech, Inc., 4.70.213]
	[C:\WINDOWS\assembly\GAC_MSIL\LOG.Foundation.Implementation.Private\2.0.3363.26485__90ba9c70f846762e\LOG.Foundation.Implementation.Private.dll]  [Advanced Micro Devices Inc., 2.0.3363.26485]
	[C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Runtime.Remo#\2abd876a3c8a6b088fa6d8d39d901e3c\System.Runtime.Remoting.ni.dll]  [Microsoft Corporation, 2.0.50727.3053 (netfxsp.050727-3000)]
	[C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Web\3963ce03d445a8619abbf388d590134b\System.Web.ni.dll]  [Microsoft Corporation, 2.0.50727.3082 (QFE.050727-3000)]
	[C:\WINDOWS\assembly\GAC_MSIL\CCC.Implementation\2.0.3363.36872__90ba9c70f846762e\CCC.Implementation.dll]  [Advanced Micro Devices Inc., 2.0.3363.36872]
	[C:\WINDOWS\assembly\GAC_MSIL\NEWAEM.Foundation\2.0.3363.26466__90ba9c70f846762e\NEWAEM.Foundation.dll]  [Advanced Micro Devices Inc., 2.0.3363.26466]
[PID: 3860 / HP_Administrator][C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe]  [Broadcom Corporation., 5.1.0.2700]
	[C:\WINDOWS\system32\wbtapi.dll]  [Broadcom Corporation., 5.1.0.2700]
	[C:\WINDOWS\system32\btosif.dll]  [Broadcom Corporation., 5.1.0.2700]
	[C:\WINDOWS\system32\btwhidcs.DLL]  [Broadcom Corporation., 5.1.0.2700]
	[C:\Program Files\WIDCOMM\Bluetooth Software\BtBalloon.dll]  [Broadcom Corporation., 5.1.0.2700]
	[C:\WINDOWS\system32\rezakaju.dll]  [N/A, ]
	[C:\WINDOWS\system32\btrez.dll]  [Broadcom Corporation., 5.1.0.2700]
	[c:\windows\system32\ginuzefa.dll]  [N/A, ]
	[C:\WINDOWS\system32\neyuvena.dll]  [N/A, ]
	[C:\WINDOWS\system32\fupipivo.dll]  [N/A, ]
	[C:\WINDOWS\system32\btmmhook.dll]  [Broadcom Corporation., 5.1.0.2700]
	[C:\Program Files\Logitech\SetPoint\lgscroll.dll]  [Logitech, Inc., 4.70.213]
[PID: 3916 / HP_Administrator][C:\Program Files\Logitech\SetPoint\SetPoint.exe]  [Logitech, Inc., 4.70.213]
	[C:\WINDOWS\system32\KemUtil.dll]  [Logitech, Inc., 4.70.213]
	[C:\WINDOWS\WinSxS\x86_Microsoft.VC80.MFC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_3bf8fa05\MFC80U.DLL]  [Microsoft Corporation, 8.00.50727.762]
	[C:\Program Files\Logitech\SetPoint\SetPointCOM.dll]  [Logitech, Inc., 4.70.213]
	[C:\WINDOWS\system32\kemutb.dll]  [Logitech, Inc., 4.70.213]
	[C:\WINDOWS\system32\KemWnd.dll]  [Logitech, Inc., 4.70.213]
	[C:\WINDOWS\system32\KemXML.dll]  [Logitech, Inc., 4.70.213]
	[C:\Program Files\Logitech\SetPoint\lgscroll.dll]  [Logitech, Inc., 4.70.213]
	[C:\WINDOWS\system32\rezakaju.dll]  [N/A, ]
	[C:\WINDOWS\WinSxS\x86_Microsoft.VC80.MFCLOC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_91481303\MFC80ENU.DLL]  [Microsoft Corporation, 8.00.50727.762]
	[C:\WINDOWS\system32\fupipivo.dll]  [N/A, ]
	[C:\WINDOWS\system32\neyuvena.dll]  [N/A, ]
	[c:\windows\system32\ginuzefa.dll]  [N/A, ]
	[C:\Program Files\Logitech\SetPoint\Macros\MacroCore.dll]  [Logitech, Inc., 4.70.213]
	[C:\Program Files\Logitech\SetPoint\WebBrowserSupport.dll]  [Logitech, Inc., 4.70.213]
	[C:\Program Files\Logitech\SetPoint\IMHook.dll]  [Logitech, Inc., 4.70.213]
	[C:\WINDOWS\WinSxS\x86_Microsoft.VC80.ATL_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_cbb27474\ATL80.DLL]  [Microsoft Corporation, 8.00.50727.762]
	[C:\Program Files\Logitech\SetPoint\Macros\MacroAppSwitch.dll]  [Logitech, Inc., 4.70.26]
	[C:\Program Files\Common Files\Logishrd\KHAL2\KhalApi.dll]  [Logitech, Inc., 4.70.213]
	[C:\Program Files\Common Files\LogiShrd\bluetooth\LBTServ.dll]  [Logitech, Inc., 4.70.213]
	[C:\Program Files\Logitech\SetPoint\kgame.dll]  [Logitech, Inc., 4.70.213]
	[C:\Program Files\Logitech\SetPoint\GameHook.dll]  [Logitech, Inc., 4.70.213]
	[C:\Program Files\Common Files\LogiShrd\bluetooth\lbtintw.dll]  [Logitech, Inc., 4.70.213]
	[C:\WINDOWS\system32\BtCoreIf.dll]  [Broadcom Corporation., 5.1.0.3600]
	[C:\Program Files\Logitech\SetPoint\LCabHandler.dll]  [Logitech, Inc., 4.70.213]
[PID: 3948 / SYSTEM][C:\Program Files\iPod\bin\iPodService.exe]  [Apple Inc., 8.2.1.6]
	[C:\WINDOWS\system32\rezakaju.dll]  [N/A, ]
	[C:\Program Files\iPod\bin\iPodService.Resources\en.lproj\iPodServiceLocalized.DLL]  [Apple Inc., 8.2.1.6]
	[C:\Program Files\iPod\bin\iPodService.Resources\iPodService.DLL]  [Apple Inc., 8.2.1.6]
[PID: 212 / HP_Administrator][C:\Program Files\Logitech\SetPoint II\SetpointII.exe]  [Logitech Inc., 5.00.175]
	[C:\Program Files\Logitech\SetPoint II\ProfileManager.dll]  [Logitech Inc., 5.00.175]
	[C:\WINDOWS\system32\rezakaju.dll]  [N/A, ]
	[C:\WINDOWS\system32\fupipivo.dll]  [N/A, ]
	[C:\WINDOWS\system32\neyuvena.dll]  [N/A, ]
	[c:\windows\system32\ginuzefa.dll]  [N/A, ]
	[C:\Program Files\Common Files\Logishrd\KHAL2\KhalApi.dll]  [Logitech, Inc., 4.70.213]
	[C:\Program Files\Logitech\SetPoint\lgscroll.dll]  [Logitech, Inc., 4.70.213]
[PID: 304 / HP_Administrator][C:\Program Files\Common Files\Logishrd\KHAL2\KHALMNPR.EXE]  [Logitech, Inc., 4.70.180]
	[C:\Program Files\Common Files\Logishrd\KHAL2\KHALAPI.DLL]  [Logitech, Inc., 4.70.213]
	[C:\Program Files\Logitech\SetPoint\lgscroll.dll]  [Logitech, Inc., 4.70.213]
	[C:\WINDOWS\system32\fupipivo.dll]  [N/A, ]
	[c:\windows\system32\ginuzefa.dll]  [N/A, ]
	[C:\WINDOWS\system32\neyuvena.dll]  [N/A, ]
	[C:\WINDOWS\system32\rezakaju.dll]  [N/A, ]
	[C:\Program Files\Common Files\LogiShrd\bluetooth\LBTServ.dll]  [Logitech, Inc., 4.70.213]
	[C:\Program Files\Common Files\Logishrd\KHAL2\KHALITCH.DLL]  [Logitech, Inc., 4.70.213]
	[C:\Program Files\Common Files\Logishrd\KHAL2\KHALMW.DLL]  [Logitech, Inc., 4.70.213]
	[C:\Program Files\Common Files\Logishrd\KHAL2\KHALHPP.DLL]  [Logitech, Inc., 4.70.213]
	[C:\Program Files\Common Files\Logishrd\KHAL2\KHALMOU.DLL]  [Logitech, Inc., 4.70.213]
	[C:\Program Files\Common Files\Logishrd\KHAL2\KHALHID.DLL]  [Logitech, Inc., 4.70.213]
	[C:\Program Files\Common Files\Logishrd\KHAL2\KHALUSB.DLL]  [Logitech, Inc., 4.70.213]
	[C:\Program Files\Common Files\LogiShrd\bluetooth\lbtintw.dll]  [Logitech, Inc., 4.70.213]
	[C:\WINDOWS\system32\BtCoreIf.dll]  [Broadcom Corporation., 5.1.0.3600]
[PID: 3244 / HP_Administrator][C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\ccc.exe]  [ATI Technologies Inc., 2.0.0.0]
	[c:\windows\system32\ginuzefa.dll]  [N/A, ]
	[C:\WINDOWS\system32\rezakaju.dll]  [N/A, ]
	[C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\mscorlib\6d667f19d687361886990f3ca0f49816\mscorlib.ni.dll]  [Microsoft Corporation, 2.0.50727.3082 (QFE.050727-3000)]
	[C:\WINDOWS\system32\fupipivo.dll]  [N/A, ]
	[C:\WINDOWS\system32\neyuvena.dll]  [N/A, ]
	[C:\Program Files\Logitech\SetPoint\lgscroll.dll]  [Logitech, Inc., 4.70.213]
	[C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System\80978a322d7dd39f0a71be1251ae395a\System.ni.dll]  [Microsoft Corporation, 2.0.50727.3053 (netfxsp.050727-3000)]
	[C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Drawing\3da96ee075bab9202626ae44c18d226c\System.Drawing.ni.dll]  [Microsoft Corporation, 2.0.50727.3053 (netfxsp.050727-3000)]
	[C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\63406259e94d5c0ff5b79401dfe113ce\System.Windows.Forms.ni.dll]  [Microsoft Corporation, 2.0.50727.3053 (netfxsp.050727-3000)]
	[C:\WINDOWS\assembly\GAC_MSIL\CCC.Implementation\2.0.3363.36872__90ba9c70f846762e\CCC.Implementation.dll]  [Advanced Micro Devices Inc., 2.0.3363.36872]
	[C:\WINDOWS\assembly\GAC_MSIL\LOG.Foundation\2.0.3363.26465__90ba9c70f846762e\LOG.Foundation.dll]  [Advanced Micro Devices Inc., 2.0.3363.26465]
	[C:\WINDOWS\assembly\GAC_MSIL\MOM.Foundation\2.0.3363.26485__90ba9c70f846762e\MOM.Foundation.dll]  [Advanced Micro Devices Inc., 2.0.3363.26485]
	[C:\WINDOWS\assembly\GAC_MSIL\CLI.Foundation\2.0.3363.26467__90ba9c70f846762e\CLI.Foundation.dll]  [Advanced Micro Devices Inc., 2.0.3363.26467]
	[C:\WINDOWS\assembly\GAC_MSIL\LOG.Foundation.Implementation.Private\2.0.3363.26485__90ba9c70f846762e\LOG.Foundation.Implementation.Private.dll]  [Advanced Micro Devices Inc., 2.0.3363.26485]
	[C:\WINDOWS\assembly\GAC_MSIL\LOG.Foundation.Implementation\2.0.3363.36870__90ba9c70f846762e\LOG.Foundation.Implementation.dll]  [Advanced Micro Devices Inc., 2.0.3363.36870]
	[C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Runtime.Remo#\2abd876a3c8a6b088fa6d8d39d901e3c\System.Runtime.Remoting.ni.dll]  [Microsoft Corporation, 2.0.50727.3053 (netfxsp.050727-3000)]
	[C:\WINDOWS\assembly\GAC_MSIL\LOG.Foundation.Private\2.0.3363.26474__90ba9c70f846762e\LOG.Foundation.Private.dll]  [Advanced Micro Devices Inc., 2.0.3363.26474]
	[C:\WINDOWS\assembly\GAC_MSIL\MOM.Implementation\2.0.3363.36872__90ba9c70f846762e\MOM.Implementation.dll]  [Advanced Micro Devices Inc., 2.0.3363.36872]
	[C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.SkinFactory\2.0.3363.36788__90ba9c70f846762e\CLI.Component.SkinFactory.dll]  [Advanced Micro Devices Inc., 2.0.3363.36788]
	[C:\WINDOWS\assembly\GAC_MSIL\CLI.Foundation.XManifest\2.0.3363.26525__90ba9c70f846762e\CLI.Foundation.XManifest.dll]  [Advanced Micro Devices Inc., 2.0.3363.26525]
	[C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Xml\773a9786013451d3baaeff003dc4230f\System.Xml.ni.dll]  [Microsoft Corporation, 2.0.50727.3082 (QFE.050727-3000)]
	[C:\WINDOWS\assembly\GAC_MSIL\AxInterop.WBOCXLib\1.0.0.0__90ba9c70f846762e\AxInterop.WBOCXLib.dll]  [, 1.0.0.0]
	[C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Runtime\2.0.3363.36787__90ba9c70f846762e\CLI.Component.Runtime.dll]  [Advanced Micro Devices, Inc., 2.0.3363.36787]
	[C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Runtime.Shared.Private\2.0.3363.26487__90ba9c70f846762e\CLI.Component.Runtime.Shared.Private.dll]  [Advanced Micro Devices Inc., 2.0.3363.26487]
	[C:\WINDOWS\assembly\GAC_MSIL\CLI.Foundation.Private\2.0.3363.26470__90ba9c70f846762e\CLI.Foundation.Private.dll]  [Advanced Micro Devices Inc., 2.0.3363.26470]
	[C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Runtime.Shared\2.0.3363.26477__90ba9c70f846762e\CLI.Component.Runtime.Shared.dll]  [Advanced Micro Devices Inc., 2.0.3363.26477]
	[C:\WINDOWS\assembly\GAC_MSIL\ATICCCom\2.0.0.0__90ba9c70f846762e\ATICCCom.dll]  [Advanced Micro Devices Inc., 2.0.0.0]
	[C:\WINDOWS\assembly\GAC_MSIL\AEM.Server\2.0.3363.36785__90ba9c70f846762e\AEM.Server.dll]  [Advanced Micro Devices Inc., 2.0.3363.36785]
	[C:\WINDOWS\assembly\GAC_MSIL\NEWAEM.Foundation\2.0.3363.26466__90ba9c70f846762e\NEWAEM.Foundation.dll]  [Advanced Micro Devices Inc., 2.0.3363.26466]
	[C:\WINDOWS\system32\atiadlxx.dll]  [Advanced Micro Devices, Inc., 6.14.10.1040]
	[C:\PROGRA~1\ATITEC~1\ATI.ACE\CORE-I~1\32\wbocx.ocx]  [Stardock Corporation, 5.0.5.1]
	[C:\WINDOWS\assembly\GAC\Interop.WBOCXLib\1.0.0.0__90ba9c70f846762e\Interop.WBOCXLib.dll]  [ , 1.0.0.0]
	[C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Accessibility\11eb4f6606ba01e5128805759121ea6c\Accessibility.ni.dll]  [Microsoft Corporation, 2.0.50727.3053 (netfxsp.050727-3000)]
	[C:\WINDOWS\assembly\GAC_MSIL\AEM.Server.Shared\2.0.3363.26478__90ba9c70f846762e\AEM.Server.Shared.dll]  [Advanced Micro Devices Inc., 2.0.3363.26478]
	[C:\WINDOWS\assembly\GAC_MSIL\AEM.Plugin.Source.Kit.Server\2.0.3363.36886__90ba9c70f846762e\AEM.Plugin.Source.Kit.Server.dll]  [Advanced Micro Devices Inc., 2.0.3363.36886]
	[C:\WINDOWS\assembly\GAC_MSIL\AEM.Plugin.DPPE.Shared\2.0.3363.26504__90ba9c70f846762e\AEM.Plugin.DPPE.Shared.dll]  [Advanced Micro Devices Inc., 2.0.3363.26504]
	[C:\WINDOWS\assembly\GAC_MSIL\AEM.Plugin.Hotkeys.Shared\2.0.3363.26478__90ba9c70f846762e\AEM.Plugin.Hotkeys.Shared.dll]  [Advanced Micro Devices Inc., 2.0.3363.26478]
	[C:\WINDOWS\assembly\GAC_MSIL\AEM.Plugin.WinMessages.Shared\2.0.3363.26488__90ba9c70f846762e\AEM.Plugin.WinMessages.Shared.dll]  [Advanced Micro Devices Inc., 2.0.3363.26488]
	[C:\WINDOWS\assembly\GAC_MSIL\DEM.Graphics.I0601\2.0.2573.17685__90ba9c70f846762e\DEM.Graphics.I0601.dll]  [ATI Technologies Inc., 2.0.2573.17685]
	[C:\WINDOWS\system32\btmmhook.dll]  [Broadcom Corporation., 5.1.0.2700]
	[C:\WINDOWS\assembly\GAC_MSIL\DEM.Foundation\2.0.2573.17684__90ba9c70f846762e\DEM.Foundation.dll]  [ATI Technologies Inc., 2.0.2573.17684]
	[C:\WINDOWS\assembly\GAC_MSIL\DEM.Graphics\2.0.3363.26489__90ba9c70f846762e\DEM.Graphics.dll]  [Advanced Micro Devices Inc., 2.0.3363.26489]
	[C:\Program Files\ATI Technologies\ATI.ACE\Core-Implementation\32\wbhelp2.dll]  [Stardock.Net, Inc, 1.5]
	[C:\WINDOWS\system32\ATIDEMGX.dll]  [Advanced Micro Devices, Inc., 2.0.3362.27817]
	[C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Configuration\b82c00e2d24305ad6cb08556e3779b75\System.Configuration.ni.dll]  [Microsoft Corporation, 2.0.50727.3053 (netfxsp.050727-3000)]
	[C:\WINDOWS\assembly\GAC_MSIL\CLI.Caste.HydraVision.Runtime\2.0.3363.36893__90ba9c70f846762e\CLI.Caste.HydraVision.Runtime.dll]  [Advanced Micro Devices Inc., 2.0.3363.36893]
	[C:\WINDOWS\assembly\GAC_MSIL\CLI.Caste.HydraVision.Shared\2.0.3363.36892__90ba9c70f846762e\CLI.Caste.HydraVision.Shared.dll]  [Advanced Micro Devices Inc., 2.0.3363.36892]
	[C:\WINDOWS\assembly\GAC_MSIL\AEM.Actions.CCAA.Shared\2.0.3363.26472__90ba9c70f846762e\AEM.Actions.CCAA.Shared.dll]  [Advanced Micro Devices Inc., 2.0.3363.26472]
	[C:\WINDOWS\assembly\GAC_MSIL\CLI.Caste.Graphics.Shared\2.0.3363.26480__90ba9c70f846762e\CLI.Caste.Graphics.Shared.dll]  [Advanced Mirco Devices, Inc., 2.0.3363.26480]
	[C:\WINDOWS\assembly\GAC_MSIL\CLI.Caste.Graphics.Runtime\2.0.3363.36789__90ba9c70f846762e\CLI.Caste.Graphics.Runtime.dll]  [Advanced Mirco Devices, Inc., 2.0.3363.36789]
	[C:\WINDOWS\assembly\GAC_MSIL\ACE.Graphics.DisplaysManager.Shared\2.0.2573.17685__90ba9c70f846762e\ACE.Graphics.DisplaysManager.Shared.dll]  [ATI Technologies Inc., 2.0.2573.17685]
	[C:\WINDOWS\assembly\GAC_MSIL\DEM.OS.I0602\2.0.3363.26488__90ba9c70f846762e\DEM.OS.I0602.dll]  [Advanced Micro Devices Inc., 2.0.3363.26488]
	[C:\WINDOWS\assembly\GAC_MSIL\DEM.OS\2.0.3363.26502__90ba9c70f846762e\DEM.OS.dll]  [Advanced Micro Devices Inc., 2.0.3363.26502]
	[C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\DEM.Graphics.I0709.dll]  [Advanced Micro Devices, Inc., 2.0.2743.23304]
	[C:\WINDOWS\assembly\GAC_MSIL\AEM.Plugin.GD.Shared\2.0.3363.26504__90ba9c70f846762e\AEM.Plugin.GD.Shared.dll]  [Advanced Micro Devices Inc., 2.0.3363.26504]
	[C:\WINDOWS\assembly\GAC_MSIL\ATIDEMOS\2.0.3363.36787__90ba9c70f846762e\ATIDEMOS.dll]  [Advanced Micro Devices, Inc., 2.0.3363.36787]
	[C:\WINDOWS\assembly\GAC_MSIL\ResourceManagement.Foundation.Private\2.0.3363.26476__90ba9c70f846762e\ResourceManagement.Foundation.Private.dll]  [Advanced Micro Devices, Inc., 2.0.3363.26476]
	[C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\DEM.Graphics.I0804.dll]  [Advanced Micro Devices, Inc., 2.0.3015.27871]
	[C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceCV.Graphics.Runtime\2.0.3363.36840__90ba9c70f846762e\CLI.Aspect.DeviceCV.Graphics.Runtime.dll]  [Advanced Micro Devices Inc., 2.0.3363.36840]
	[C:\WINDOWS\assembly\GAC_MSIL\CLI.Caste.Graphics.Runtime.Shared.Private\2.0.3363.26495__90ba9c70f846762e\CLI.Caste.Graphics.Runtime.Shared.Private.dll]  [Advanced Micro Devices Inc., 2.0.3363.26495]
	[C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceCV.Graphics.Shared\2.0.3363.26494__90ba9c70f846762e\CLI.Aspect.DeviceCV.Graphics.Shared.dll]  [Advanced Micro Devices Inc., 2.0.3363.26494]
	[C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.CustomFormats.Graphics.Shared\2.0.3363.26487__90ba9c70f846762e\CLI.Aspect.CustomFormats.Graphics.Shared.dll]  [Advanced Micro Devices Inc., 2.0.3363.26487]
	[C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\DEM.Graphics.I0805.dll]  [Advanced Micro Devices, Inc., 2.0.3057.24943]
	[C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceTV.Graphics.Runtime\2.0.3363.36858__90ba9c70f846762e\CLI.Aspect.DeviceTV.Graphics.Runtime.dll]  [Advanced Micro Devices Inc., 2.0.3363.36858]
	[C:\WINDOWS\assembly\GAC_MSIL\DEM.Graphics.I0706\2.0.2743.23304__90ba9c70f846762e\DEM.Graphics.I0706.dll]  [Advanced Micro Devices, Inc., 2.0.2743.23304]
	[C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceProperty.Graphics.Shared\2.0.3363.26484__90ba9c70f846762e\CLI.Aspect.DeviceProperty.Graphics.Shared.dll]  [Advanced Micro Devices Inc., 2.0.3363.26484]
	[C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceTV.Graphics.Shared\2.0.3363.26495__90ba9c70f846762e\CLI.Aspect.DeviceTV.Graphics.Shared.dll]  [Advanced Micro Devices Inc., 2.0.3363.26495]
	[C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.HotkeysHandling.Graphics.Runtime\2.0.3363.36797__90ba9c70f846762e\CLI.Aspect.HotkeysHandling.Graphics.Runtime.dll]  [Advanced Micro Devices Inc., 2.0.3363.36797]
	[C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.HotkeysHandling.Graphics.Shared\2.0.3363.26490__90ba9c70f846762e\CLI.Aspect.HotkeysHandling.Graphics.Shared.dll]  [Advanced Micro Devices Inc., 2.0.3363.26490]
	[C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceProperty.Graphics.Runtime\2.0.3363.36831__90ba9c70f846762e\CLI.Aspect.DeviceProperty.Graphics.Runtime.dll]  [Advanced Micro Devices, Inc., 2.0.3363.36831]
	[C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DisplaysColour2.Graphics.Runtime\2.0.3363.36812__90ba9c70f846762e\CLI.Aspect.DisplaysColour2.Graphics.Runtime.dll]  [Advanced Micro Devices Inc., 2.0.3363.36812]
	[C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DisplaysColour2.Graphics.Shared\2.0.3363.26491__90ba9c70f846762e\CLI.Aspect.DisplaysColour2.Graphics.Shared.dll]  [Advanced Micro Devices Inc., 2.0.3363.26491]
	[C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DisplaysOptions.Graphics.Runtime\2.0.3363.36838__90ba9c70f846762e\CLI.Aspect.DisplaysOptions.Graphics.Runtime.dll]  [Advanced Micro Devices Inc., 2.0.3363.36838]
	[C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DisplaysOptions.Graphics.Shared\2.0.3363.26493__90ba9c70f846762e\CLI.Aspect.DisplaysOptions.Graphics.Shared.dll]  [Advanced Micro Devices Inc., 2.0.3363.26493]
	[C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceCRT.Graphics.Runtime\2.0.3363.36832__90ba9c70f846762e\CLI.Aspect.DeviceCRT.Graphics.Runtime.dll]  [Advanced Micro Devices Inc., 2.0.3363.36832]
	[C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceCRT.Graphics.Shared\2.0.3363.26492__90ba9c70f846762e\CLI.Aspect.DeviceCRT.Graphics.Shared.dll]  [Advanced Micro Devices Inc., 2.0.3363.26492]
	[C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceLCD.Graphics.Runtime\2.0.3363.36839__90ba9c70f846762e\CLI.Aspect.DeviceLCD.Graphics.Runtime.dll]  [Advanced Micro Devices, Inc., 2.0.3363.36839]
	[C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceLCD.Graphics.Shared\2.0.3363.26490__90ba9c70f846762e\CLI.Aspect.DeviceLCD.Graphics.Shared.dll]  [Advanced Micro Devices Inc., 2.0.3363.26490]
	[C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceDFP.Graphics.Runtime\2.0.3363.36832__90ba9c70f846762e\CLI.Aspect.DeviceDFP.Graphics.Runtime.dll]  [Advanced Micro Devices, Inc., 2.0.3363.36832]
	[C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceDFP.Graphics.Shared\2.0.3363.26492__90ba9c70f846762e\CLI.Aspect.DeviceDFP.Graphics.Shared.dll]  [Advanced Micro Devices Inc., 2.0.3363.26492]
	[C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.VPURecover.Graphics.Runtime\2.0.3363.36807__90ba9c70f846762e\CLI.Aspect.VPURecover.Graphics.Runtime.dll]  [Advanced Micro Devices Inc., 2.0.3363.36807]
	[C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.VPURecover.Graphics.Shared\2.0.3363.26491__90ba9c70f846762e\CLI.Aspect.VPURecover.Graphics.Shared.dll]  [Advanced Micro Devices Inc., 2.0.3363.26491]
	[C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.OverDrive5.Graphics.Runtime\2.0.3363.36891__90ba9c70f846762e\CLI.Aspect.OverDrive5.Graphics.Runtime.dll]  [Advanced Micro Devices Inc., 2.0.3363.36891]
	[C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.OverDrive5.Graphics.Shared\2.0.3363.26505__90ba9c70f846762e\CLI.Aspect.OverDrive5.Graphics.Shared.dll]  [Advanced Micro Devices Inc., 2.0.3363.26505]
	[C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.Radeon3D.Graphics.Runtime\2.0.3363.36845__90ba9c70f846762e\CLI.Aspect.Radeon3D.Graphics.Runtime.dll]  [Advanced Micro Devices Inc., 2.0.3363.36845]
	[C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.Radeon3D.Graphics.Shared\2.0.3363.26494__90ba9c70f846762e\CLI.Aspect.Radeon3D.Graphics.Shared.dll]  [Advanced Micro Devices Inc., 2.0.3363.26494]
	[C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.MMVideo.Graphics.Runtime\2.0.3363.36833__90ba9c70f846762e\CLI.Aspect.MMVideo.Graphics.Runtime.dll]  [Advanced Micro Devices Inc., 2.0.3363.36833]
	[C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.MMVideo.Graphics.Shared\2.0.3363.26493__90ba9c70f846762e\CLI.Aspect.MMVideo.Graphics.Shared.dll]  [Advanced Micro Devices Inc., 2.0.3363.26493]
	[C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\DEM.Graphics.I0712.dll]  [Advanced Micro Devices, Inc., 2.0.2939.20866]
	[C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\DEM.Graphics.I0812.dll]  [Advanced Micro Devices, Inc., 2.0.3286.19924]
	[C:\WINDOWS\assembly\GAC_MSIL\DEM.Graphics.I0703\2.0.2651.18802__90ba9c70f846762e\DEM.Graphics.I0703.dll]  [Advanced Micro Devices, Inc., 2.0.2651.18802]
	[C:\WINDOWS\assembly\GAC_MSIL\APM.Server\2.0.3363.36786__90ba9c70f846762e\APM.Server.dll]  [Advanced Micro Devices, Inc., 2.0.3363.36786]
	[C:\WINDOWS\assembly\GAC_MSIL\APM.Foundation\2.0.3363.26486__90ba9c70f846762e\APM.Foundation.dll]  [Advanced Micro Devices Inc., 2.0.3363.26486]
	[C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Web\3963ce03d445a8619abbf388d590134b\System.Web.ni.dll]  [Microsoft Corporation, 2.0.50727.3082 (QFE.050727-3000)]
	[C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Runtime.Extension.EEU\2.0.3363.36785__90ba9c70f846762e\CLI.Component.Runtime.Extension.EEU.dll]  [Advanced Micro Devices Inc., 2.0.3363.36785]
	[C:\WINDOWS\assembly\GAC_MSIL\AEM.Plugin.REG.Shared\2.0.3363.26504__90ba9c70f846762e\AEM.Plugin.REG.Shared.dll]  [Advanced Micro Devices Inc., 2.0.3363.26504]
	[C:\WINDOWS\assembly\GAC_MSIL\AEM.Plugin.EEU.Shared\2.0.3363.26486__90ba9c70f846762e\AEM.Plugin.EEU.Shared.dll]  [Advanced Micro Devices Inc., 2.0.3363.26486]
	[C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Systemtray\2.0.3363.36867__90ba9c70f846762e\CLI.Component.Systemtray.dll]  [Advanced Micro Devices Inc., 2.0.3363.36867]
	[C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Client.Shared.Private\2.0.3363.26482__90ba9c70f846762e\CLI.Component.Client.Shared.Private.dll]  [Advanced Micro Devices, Inc., 2.0.3363.26482]
	[C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Wizard\2.0.3363.36802__90ba9c70f846762e\CLI.Component.Wizard.dll]  [Advanced Micro Devices, Inc., 2.0.3363.36802]
	[C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Client.Shared\2.0.3363.26472__90ba9c70f846762e\CLI.Component.Client.Shared.dll]  [Advanced Micro Devices Inc., 2.0.3363.26472]
	[C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Wizard.Shared\2.0.3363.26482__90ba9c70f846762e\CLI.Component.Wizard.Shared.dll]  [Advanced Micro Devices Inc., 2.0.3363.26482]
	[C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Wizard.Shared.Private\2.0.3363.26486__90ba9c70f846762e\CLI.Component.Wizard.Shared.Private.dll]  [Advanced Micro Devices Inc., 2.0.3363.26486]
	[C:\WINDOWS\assembly\GAC_MSIL\CLI.Caste.Graphics.Wizard\2.0.3363.36802__90ba9c70f846762e\CLI.Caste.Graphics.Wizard.dll]  [Advanced Micro Devices Inc., 2.0.3363.36802]
	[C:\WINDOWS\assembly\GAC_MSIL\CLI.Caste.Graphics.Wizard.Shared\2.0.3363.26491__90ba9c70f846762e\CLI.Caste.Graphics.Wizard.Shared.dll]  [Advanced Micro Devices Inc., 2.0.3363.26491]
	[C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.TransCode.Graphics.Wizard\2.0.3363.36877__90ba9c70f846762e\CLI.Aspect.TransCode.Graphics.Wizard.dll]  [Advanced Micro Devices Inc., 2.0.3363.36877]
	[C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.TransCode.Graphics.Shared\2.0.3363.26501__90ba9c70f846762e\CLI.Aspect.TransCode.Graphics.Shared.dll]  [Advanced Micro Devices Inc., 2.0.3363.26501]
	[C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.Radeon3D.Graphics.Wizard\2.0.3363.36846__90ba9c70f846762e\CLI.Aspect.Radeon3D.Graphics.Wizard.dll]  [Advanced Micro Devices Inc., 2.0.3363.36846]
	[C:\WINDOWS\assembly\GAC_MSIL\atixclib\1.0.0.0__90ba9c70f846762e\atixclib.dll]  [ , 1.0.0.0]
	[C:\WINDOWS\assembly\GAC_MSIL\ResourceManagement.Foundation.Implementation\2.0.3363.36904__90ba9c70f846762e\ResourceManagement.Foundation.Implementation.dll]  [Advanced Micro Devices, Inc., 2.0.3363.36904]
	[C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.MMVideo.Graphics.Wizard\2.0.3363.36853__90ba9c70f846762e\CLI.Aspect.MMVideo.Graphics.Wizard.dll]  [Advanced Micro Devices Inc., 2.0.3363.36853]
	[C:\Program Files\ATI Technologies\ATI.ACE\Branding\Branding.dll]  [, 2.0.2477.16262]
	[C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DisplaysManager.Graphics.Wizard\2.0.3363.36806__90ba9c70f846762e\CLI.Aspect.DisplaysManager.Graphics.Wizard.dll]  [Advanced Micro Devices Inc., 2.0.3363.36806]
	[C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.InfoCentre.Graphics.Wizard\2.0.3363.36808__90ba9c70f846762e\CLI.Aspect.InfoCentre.Graphics.Wizard.dll]  [Advanced Micro Devices Inc., 2.0.3363.36808]
	[C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceTV.Graphics.Wizard\2.0.3363.36863__90ba9c70f846762e\CLI.Aspect.DeviceTV.Graphics.Wizard.dll]  [Advanced Micro Devices Inc., 2.0.3363.36863]
	[C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceCV.Graphics.Wizard\2.0.3363.36850__90ba9c70f846762e\CLI.Aspect.DeviceCV.Graphics.Wizard.dll]  [Advanced Micro Devices Inc., 2.0.3363.36850]
	[C:\WINDOWS\assembly\GAC_MSIL\CLI.Caste.HydraVision.Wizard\2.0.3363.36896__90ba9c70f846762e\CLI.Caste.HydraVision.Wizard.dll]  [Advanced Micro Devices Inc., 2.0.3363.36896]
	[C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Dashboard\2.0.3363.36793__90ba9c70f846762e\CLI.Component.Dashboard.dll]  [Advanced Micro Devices, Inc., 2.0.3363.36793]
	[C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Dashboard.Shared\2.0.3363.26479__90ba9c70f846762e\CLI.Component.Dashboard.Shared.dll]  [Advanced Micro Devices Inc., 2.0.3363.26479]
	[C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Dashboard.Shared.Private\2.0.3363.26484__90ba9c70f846762e\CLI.Component.Dashboard.Shared.Private.dll]  [Advanced Micro Devices Inc., 2.0.3363.26484]
	[C:\WINDOWS\assembly\GAC_MSIL\CLI.Caste.Graphics.Dashboard\2.0.3363.36797__90ba9c70f846762e\CLI.Caste.Graphics.Dashboard.dll]  [Advanced Micro Devices Inc., 2.0.3363.36797]
	[C:\WINDOWS\assembly\GAC_MSIL\CLI.Caste.Graphics.Dashboard.Shared\2.0.3363.26489__90ba9c70f846762e\CLI.Caste.Graphics.Dashboard.Shared.dll]  [Advanced Micro Devices Inc., 2.0.3363.26489]
	[C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.Welcome.Graphics.Dashboard\2.0.3363.36878__90ba9c70f846762e\CLI.Aspect.Welcome.Graphics.Dashboard.dll]  [Advanced Mirco Devices, Inc., 2.0.3363.36878]
	[C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.InfoCentre.Graphics.Dashboard\2.0.3363.36808__90ba9c70f846762e\CLI.Aspect.InfoCentre.Graphics.Dashboard.dll]  [Advanced Micro Devices Inc., 2.0.3363.36808]
	[C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DisplaysManager.Graphics.Dashboard\2.0.3363.36798__90ba9c70f846762e\CLI.Aspect.DisplaysManager.Graphics.Dashboard.dll]  [Advanced Micro Devices Inc., 2.0.3363.36798]
	[C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DisplaysOptions.Graphics.Dashboard\2.0.3363.36838__90ba9c70f846762e\CLI.Aspect.DisplaysOptions.Graphics.Dashboard.dll]  [Advanced Micro Devices Inc., 2.0.3363.36838]
	[C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceCRT.Graphics.Dashboard\2.0.3363.36832__90ba9c70f846762e\CLI.Aspect.DeviceCRT.Graphics.Dashboard.dll]  [Advanced Micro Devices Inc., 2.0.3363.36832]
	[C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceCV.Graphics.Dashboard\2.0.3363.36841__90ba9c70f846762e\CLI.Aspect.DeviceCV.Graphics.Dashboard.dll]  [Advanced Micro Devices Inc., 2.0.3363.36841]
	[C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceTV.Graphics.Dashboard\2.0.3363.36859__90ba9c70f846762e\CLI.Aspect.DeviceTV.Graphics.Dashboard.dll]  [Advanced Micro Devices Inc., 2.0.3363.36859]
	[C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceDFP.Graphics.Dashboard\2.0.3363.36828__90ba9c70f846762e\CLI.Aspect.DeviceDFP.Graphics.Dashboard.dll]  [Advanced Micro Devices, Inc., 2.0.3363.36828]
	[C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.Radeon3D.Graphics.Dashboard\2.0.3363.36845__90ba9c70f846762e\CLI.Aspect.Radeon3D.Graphics.Dashboard.dll]  [Advanced Micro Devices Inc., 2.0.3363.36845]
	[C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DisplaysColour2.Graphics.Dashboard\2.0.3363.36808__90ba9c70f846762e\CLI.Aspect.DisplaysColour2.Graphics.Dashboard.dll]  [Advanced Micro Devices Inc., 2.0.3363.36808]
	[C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.MMVideo.Graphics.Dashboard\2.0.3363.36833__90ba9c70f846762e\CLI.Aspect.MMVideo.Graphics.Dashboard.dll]  [Advanced Micro Devices Inc., 2.0.3363.36833]
	[C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.VPURecover.Graphics.Dashboard\2.0.3363.36807__90ba9c70f846762e\CLI.Aspect.VPURecover.Graphics.Dashboard.dll]  [Advanced Micro Devices Inc., 2.0.3363.36807]
	[C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.OverDrive5.Graphics.Dashboard\2.0.3363.36891__90ba9c70f846762e\CLI.Aspect.OverDrive5.Graphics.Dashboard.dll]  [Advanced Micro Devices Inc., 2.0.3363.36891]
	[C:\WINDOWS\assembly\GAC_MSIL\CLI.Caste.HydraVision.Dashboard\2.0.3363.36892__90ba9c70f846762e\CLI.Caste.HydraVision.Dashboard.dll]  [Advanced Micro Devices Inc., 2.0.3363.36892]
[PID: 4864 / HP_Administrator][C:\WINDOWS\ALCXMNTR.EXE]  [Realtek Semiconductor Corp., 1.5]
	[c:\windows\system32\ginuzefa.dll]  [N/A, ]
	[C:\WINDOWS\system32\rezakaju.dll]  [N/A, ]
	[C:\WINDOWS\system32\neyuvena.dll]  [N/A, ]
	[C:\WINDOWS\system32\fupipivo.dll]  [N/A, ]
	[C:\Program Files\Logitech\SetPoint\lgscroll.dll]  [Logitech, Inc., 4.70.213]
[PID: 4996 / HP_Administrator][c:\windows\system\hpsysdrv.exe]  [Hewlett-Packard Company, 1, 7, 0, 0]
	[c:\windows\system32\ginuzefa.dll]  [N/A, ]
	[C:\WINDOWS\system32\rezakaju.dll]  [N/A, ]
	[C:\WINDOWS\system32\fupipivo.dll]  [N/A, ]
	[C:\WINDOWS\system32\neyuvena.dll]  [N/A, ]
	[C:\Program Files\Logitech\SetPoint\lgscroll.dll]  [Logitech, Inc., 4.70.213]
[PID: 828 / HP_Administrator][C:\Program Files\Internet Explorer\Iexplore.exe]  [Microsoft Corporation, 8.00.6001.18702 (longhorn_ie8_rtm(wmbla).090308-0339)]
	[C:\WINDOWS\system32\rezakaju.dll]  [N/A, ]
	[\\?\globalroot\systemroot\system32\UACjrunucguse.dll]  [N/A, ]
	[\\?\globalroot\Device\__max++>\90D5DA08.x86.dll]  [N/A, ]
	[C:\Program Files\Bonjour\mdnsNSP.dll]  [Apple Inc., 1,0,6,2]
	[C:\WINDOWS\system32\neyuvena.dll]  [N/A, ]
	[C:\WINDOWS\system32\fupipivo.dll]  [N/A, ]
	[c:\windows\system32\ginuzefa.dll]  [N/A, ]
	[C:\WINDOWS\system32\btmmhook.dll]  [Broadcom Corporation., 5.1.0.2700]
	[C:\Program Files\Logitech\SetPoint\lgscroll.dll]  [Logitech, Inc., 4.70.213]
[PID: 2868 / HP_Administrator][C:\Program Files\Internet Explorer\Iexplore.exe]  [Microsoft Corporation, 8.00.6001.18702 (longhorn_ie8_rtm(wmbla).090308-0339)]
	[C:\WINDOWS\system32\rezakaju.dll]  [N/A, ]
	[\\?\globalroot\systemroot\system32\UACjrunucguse.dll]  [N/A, ]
	[\\?\globalroot\Device\__max++>\90D5DA08.x86.dll]  [N/A, ]
	[c:\windows\system32\ginuzefa.dll]  [N/A, ]
	[C:\WINDOWS\system32\fupipivo.dll]  [N/A, ]
	[C:\WINDOWS\system32\neyuvena.dll]  [N/A, ]
	[C:\Program Files\Bonjour\mdnsNSP.dll]  [Apple Inc., 1,0,6,2]
	[C:\Program Files\Logitech\SetPoint\lgscroll.dll]  [Logitech, Inc., 4.70.213]
[PID: 4100 / HP_Administrator][C:\Program Files\Internet Explorer\Iexplore.exe]  [Microsoft Corporation, 8.00.6001.18702 (longhorn_ie8_rtm(wmbla).090308-0339)]
	[C:\WINDOWS\system32\rezakaju.dll]  [N/A, ]
	[\\?\globalroot\systemroot\system32\UACjrunucguse.dll]  [N/A, ]
	[\\?\globalroot\Device\__max++>\90D5DA08.x86.dll]  [N/A, ]
	[C:\Program Files\Bonjour\mdnsNSP.dll]  [Apple Inc., 1,0,6,2]
	[C:\WINDOWS\system32\neyuvena.dll]  [N/A, ]
	[C:\WINDOWS\system32\fupipivo.dll]  [N/A, ]
	[c:\windows\system32\ginuzefa.dll]  [N/A, ]
	[C:\WINDOWS\system32\btmmhook.dll]  [Broadcom Corporation., 5.1.0.2700]
	[C:\Program Files\Logitech\SetPoint\lgscroll.dll]  [Logitech, Inc., 4.70.213]
[PID: 3136 / HP_Administrator][C:\Program Files\Internet Explorer\Iexplore.exe]  [Microsoft Corporation, 8.00.6001.18702 (longhorn_ie8_rtm(wmbla).090308-0339)]
	[C:\WINDOWS\system32\rezakaju.dll]  [N/A, ]
	[\\?\globalroot\systemroot\system32\UACjrunucguse.dll]  [N/A, ]
	[\\?\globalroot\Device\__max++>\90D5DA08.x86.dll]  [N/A, ]
	[c:\windows\system32\ginuzefa.dll]  [N/A, ]
	[C:\WINDOWS\system32\fupipivo.dll]  [N/A, ]
	[C:\Program Files\Bonjour\mdnsNSP.dll]  [Apple Inc., 1,0,6,2]
	[C:\WINDOWS\system32\neyuvena.dll]  [N/A, ]
	[C:\Program Files\Logitech\SetPoint\lgscroll.dll]  [Logitech, Inc., 4.70.213]
[PID: 4080 / SYSTEM][C:\WINDOWS\system32\svchost.exe]  [(Verified) Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)]
	[C:\WINDOWS\system32\rezakaju.dll]  [N/A, ]
	[\\?\globalroot\systemroot\system32\UACyoubqodaff.dll]  [N/A, ]
[PID: 5192 / HP_Administrator][C:\Program Files\Internet Explorer\Iexplore.exe]  [Microsoft Corporation, 8.00.6001.18702 (longhorn_ie8_rtm(wmbla).090308-0339)]
	[C:\WINDOWS\system32\rezakaju.dll]  [N/A, ]
	[\\?\globalroot\systemroot\system32\UACjrunucguse.dll]  [N/A, ]
	[\\?\globalroot\Device\__max++>\90D5DA08.x86.dll]  [N/A, ]
	[C:\Program Files\Bonjour\mdnsNSP.dll]  [Apple Inc., 1,0,6,2]
	[C:\WINDOWS\system32\neyuvena.dll]  [N/A, ]
	[C:\WINDOWS\system32\fupipivo.dll]  [N/A, ]
	[c:\windows\system32\ginuzefa.dll]  [N/A, ]
	[C:\WINDOWS\system32\btmmhook.dll]  [Broadcom Corporation., 5.1.0.2700]
	[C:\Program Files\Logitech\SetPoint\lgscroll.dll]  [Logitech, Inc., 4.70.213]
[PID: 4268 / HP_Administrator][C:\Program Files\Internet Explorer\Iexplore.exe]  [Microsoft Corporation, 8.00.6001.18702 (longhorn_ie8_rtm(wmbla).090308-0339)]
	[C:\WINDOWS\system32\rezakaju.dll]  [N/A, ]
	[\\?\globalroot\systemroot\system32\UACjrunucguse.dll]  [N/A, ]
	[\\?\globalroot\Device\__max++>\90D5DA08.x86.dll]  [N/A, ]
	[C:\Program Files\Bonjour\mdnsNSP.dll]  [Apple Inc., 1,0,6,2]
	[c:\windows\system32\ginuzefa.dll]  [N/A, ]
	[C:\WINDOWS\system32\fupipivo.dll]  [N/A, ]
	[C:\WINDOWS\system32\neyuvena.dll]  [N/A, ]
	[C:\Program Files\Logitech\SetPoint\lgscroll.dll]  [Logitech, Inc., 4.70.213]
[PID: 3632 / HP_Administrator][C:\Documents and Settings\TEMP\Desktop\sreng2\SREngLdr.EXE]  [Smallfrogs Studio, 2.8.1.1279]
	[c:\windows\system32\ginuzefa.dll]  [N/A, ]
	[C:\WINDOWS\system32\rezakaju.dll]  [N/A, ]
[PID: 484 / HP_Administrator][C:\Documents and Settings\TEMP\Desktop\sreng2\SRE2a2735eb.EXE]  [Smallfrogs Studio, 2.8.1.1279]
	[C:\WINDOWS\system32\rezakaju.dll]  [N/A, ]
	[c:\windows\system32\ginuzefa.dll]  [N/A, ]
	[C:\WINDOWS\system32\fupipivo.dll]  [N/A, ]
	[C:\WINDOWS\system32\neyuvena.dll]  [N/A, ]
	[C:\WINDOWS\system32\btmmhook.dll]  [Broadcom Corporation., 5.1.0.2700]
	[C:\Program Files\Logitech\SetPoint\lgscroll.dll]  [Logitech, Inc., 4.70.213]
	[C:\Documents and Settings\TEMP\Desktop\sreng2\Upload\3rdUpd.DLL]  [Smallfrogs Studio, 2, 1, 0, 15]
	[\\?\globalroot\Device\__max++>\90D5DA08.x86.dll]  [N/A, ]
	[C:\Program Files\Bonjour\mdnsNSP.dll]  [Apple Inc., 1,0,6,2]
[PID: 3316 / HP_Administrator][C:\Program Files\Internet Explorer\Iexplore.exe]  [Microsoft Corporation, 8.00.6001.18702 (longhorn_ie8_rtm(wmbla).090308-0339)]
	[C:\WINDOWS\system32\rezakaju.dll]  [N/A, ]
	[\\?\globalroot\systemroot\system32\UACjrunucguse.dll]  [N/A, ]
	[\\?\globalroot\Device\__max++>\90D5DA08.x86.dll]  [N/A, ]
	[C:\WINDOWS\system32\neyuvena.dll]  [N/A, ]
	[C:\WINDOWS\system32\fupipivo.dll]  [N/A, ]
	[c:\windows\system32\ginuzefa.dll]  [N/A, ]
	[C:\Program Files\Bonjour\mdnsNSP.dll]  [Apple Inc., 1,0,6,2]
	[C:\WINDOWS\system32\btmmhook.dll]  [Broadcom Corporation., 5.1.0.2700]
	[C:\Program Files\Logitech\SetPoint\lgscroll.dll]  [Logitech, Inc., 4.70.213]
[PID: 2512 / HP_Administrator][C:\Program Files\Internet Explorer\Iexplore.exe]  [Microsoft Corporation, 8.00.6001.18702 (longhorn_ie8_rtm(wmbla).090308-0339)]
	[C:\WINDOWS\system32\rezakaju.dll]  [N/A, ]
	[\\?\globalroot\systemroot\system32\UACjrunucguse.dll]  [N/A, ]
	[\\?\globalroot\Device\__max++>\90D5DA08.x86.dll]  [N/A, ]
	[C:\Program Files\Bonjour\mdnsNSP.dll]  [Apple Inc., 1,0,6,2]
	[c:\windows\system32\ginuzefa.dll]  [N/A, ]
	[C:\WINDOWS\system32\fupipivo.dll]  [N/A, ]
	[C:\WINDOWS\system32\neyuvena.dll]  [N/A, ]
	[C:\Program Files\Logitech\SetPoint\lgscroll.dll]  [Logitech, Inc., 4.70.213]

==================================
File Associations
.TXT  OK. [%SystemRoot%\system32\NOTEPAD.EXE %1]
.EXE  OK. ["%1" %*]
.COM  OK. ["%1" %*]
.PIF  OK. ["%1" %*]
.REG  OK. [regedit.exe "%1"]
.BAT  OK. ["%1" %*]
.SCR  OK. ["%1" /S]
.CHM  OK. ["C:\WINDOWS\hh.exe" %1]
.HLP  OK. [%SystemRoot%\System32\winhlp32.exe %1]
.INI  OK. [%SystemRoot%\System32\NOTEPAD.EXE %1]
.INF  OK. [%SystemRoot%\System32\NOTEPAD.EXE %1]
.VBS  OK. [%SystemRoot%\System32\WScript.exe "%1" %*]
.JS   OK. [%SystemRoot%\System32\WScript.exe "%1" %*]
.LNK  OK. [{00021401-0000-0000-C000-000000000046}]

==================================
Winsock Provider
N/A

==================================
Autorun.Inf
[D:\]
[AUTORUN]
ShellExecute=Info.exe protect.ed 480 480

==================================
HOSTS File
127.0.0.1	   localhost

==================================
Process Privileges Scan
Special Privileges Enabled: SeLoadDriverPrivilege [PID = 1244, C:\PROGRAM FILES\WIDCOMM\BLUETOOTH SOFTWARE\BIN\BTWDINS.EXE]
Special Privileges Enabled: SeLoadDriverPrivilege [PID = 816, C:\PROGRAM FILES\COMMON FILES\LIGHTSCRIBE\LSSRVC.EXE]
Special Privileges Enabled: SeLoadDriverPrivilege [PID = 1792, C:\WINDOWS\SYSTEM32\SPOOL\DRIVERS\W32X86\3\HPZIPM12.EXE]
Special Privileges Enabled: SeLoadDriverPrivilege [PID = 2136, C:\PROGRAM FILES\ALCOHOL SOFT\ALCOHOL 120\STARWIND\STARWINDSERVICEAE.EXE]
Special Privileges Enabled: SeLoadDriverPrivilege [PID = 2204, C:\PROGRAM FILES\TUNNGLE\TNGLCTRL.EXE]
Special Privileges Enabled: SeLoadDriverPrivilege [PID = 2792, C:\PROGRAM FILES\SONIC\DIGITALMEDIA PLUS\DIGITALMEDIA ARCHIVE\DMASCHEDULER.EXE]
Special Privileges Enabled: SeLoadDriverPrivilege [PID = 3144, C:\WINDOWS\SYSTEM32\BRAVIAX.EXE]
Special Privileges Enabled: SeLoadDriverPrivilege [PID = 3232, C:\WINDOWS\SYSTEM32\WINUPDATE.EXE]
Special Privileges Enabled: SeDebugPrivilege [PID = 3652, C:\PROGRAM FILES\ATI TECHNOLOGIES\ATI.ACE\CORE-STATIC\MOM.EXE]
Special Privileges Enabled: SeLoadDriverPrivilege [PID = 3652, C:\PROGRAM FILES\ATI TECHNOLOGIES\ATI.ACE\CORE-STATIC\MOM.EXE]
Special Privileges Enabled: SeLoadDriverPrivilege [PID = 3860, C:\PROGRAM FILES\WIDCOMM\BLUETOOTH SOFTWARE\BTTRAY.EXE]
Special Privileges Enabled: SeLoadDriverPrivilege [PID = 212, C:\PROGRAM FILES\LOGITECH\SETPOINT II\SETPOINTII.EXE]
Special Privileges Enabled: SeDebugPrivilege [PID = 3244, C:\PROGRAM FILES\ATI TECHNOLOGIES\ATI.ACE\CORE-STATIC\CCC.EXE]
Special Privileges Enabled: SeLoadDriverPrivilege [PID = 3244, C:\PROGRAM FILES\ATI TECHNOLOGIES\ATI.ACE\CORE-STATIC\CCC.EXE]
Special Privileges Enabled: SeLoadDriverPrivilege [PID = 4996, C:\WINDOWS\SYSTEM\HPSYSDRV.EXE]
Special Privileges Enabled: SeLoadDriverPrivilege [PID = 3632, C:\DOCUMENTS AND SETTINGS\TEMP\DESKTOP\SRENG2\SRENGLDR.EXE]

==================================
Scheduled Tasks
N/A

==================================
Windows Security Update Check
N/A

==================================
API HOOK
N/A

==================================
Hidden Process
N/A

==================================

Mike.

Pasting in log below from another topic. ~ OB

P.S. here is the Win32Diag results. I hope it helps.


Log file is located at: C:\Documents and Settings\TEMP\Desktop\Win32kDiag.txt

WARNING: Could not get backup privileges!

Searching 'C:\WINDOWS'...



Found mount point : C:\WINDOWS\$hf_mig$\KB904706\KB904706

Mount point destination : \Device\__max++>\^

Found mount point : C:\WINDOWS\$hf_mig$\KB920213\KB920213

Mount point destination : \Device\__max++>\^

Found mount point : C:\WINDOWS\$hf_mig$\KB932168\KB932168

Mount point destination : \Device\__max++>\^

Found mount point : C:\WINDOWS\$hf_mig$\KB933729\KB933729

Mount point destination : \Device\__max++>\^

Found mount point : C:\WINDOWS\$hf_mig$\KB943460\KB943460

Mount point destination : \Device\__max++>\^

Found mount point : C:\WINDOWS\assembly\NativeImages1_v1.1.4322\BDATunePIA\BDATunePIA

Mount point destination : \Device\__max++>\^

Found mount point : C:\WINDOWS\assembly\NativeImages1_v1.1.4322\EhCM\EhCM

Mount point destination : \Device\__max++>\^

Found mount point : C:\WINDOWS\assembly\NativeImages1_v1.1.4322\ehcommon\ehcommon

Mount point destination : \Device\__max++>\^

Found mount point : C:\WINDOWS\assembly\NativeImages1_v1.1.4322\ehepg\ehepg

Mount point destination : \Device\__max++>\^

Found mount point : C:\WINDOWS\assembly\NativeImages1_v1.1.4322\ehExtHost\ehExtHost

Mount point destination : \Device\__max++>\^

Found mount point : C:\WINDOWS\assembly\NativeImages1_v1.1.4322\ehiExtCOM\ehiExtCOM

Mount point destination : \Device\__max++>\^

Found mount point : C:\WINDOWS\assembly\NativeImages1_v1.1.4322\ehiExtens\ehiExtens

Mount point destination : \Device\__max++>\^

Found mount point : C:\WINDOWS\assembly\NativeImages1_v1.1.4322\ehiMsgr\ehiMsgr

Mount point destination : \Device\__max++>\^

Found mount point : C:\WINDOWS\assembly\NativeImages1_v1.1.4322\ehiPlay\ehiPlay

Mount point destination : \Device\__max++>\^

Found mount point : C:\WINDOWS\assembly\NativeImages1_v1.1.4322\ehiProxy\ehiProxy

Mount point destination : \Device\__max++>\^

Found mount point : C:\WINDOWS\assembly\NativeImages1_v1.1.4322\ehiUserXp\ehiUserXp

Mount point destination : \Device\__max++>\^

Found mount point : C:\WINDOWS\assembly\NativeImages1_v1.1.4322\ehiVidCtl\ehiVidCtl

Mount point destination : \Device\__max++>\^

Found mount point : C:\WINDOWS\assembly\NativeImages1_v1.1.4322\ehiWUapi\ehiWUapi

Mount point destination : \Device\__max++>\^

Found mount point : C:\WINDOWS\assembly\NativeImages1_v1.1.4322\ehRecObj\ehRecObj

Mount point destination : \Device\__max++>\^

Found mount point : C:\WINDOWS\assembly\NativeImages1_v1.1.4322\ehshell\ehshell

Mount point destination : \Device\__max++>\^

Found mount point : C:\WINDOWS\assembly\NativeImages1_v1.1.4322\Microsoft.MediaCenter\Microsoft.MediaCenter

Mount point destination : \Device\__max++>\^

Found mount point : C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP3B9.tmp\ZAP3B9.tmp

Mount point destination : \Device\__max++>\^

Found mount point : C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Temp\ZAP3D6.tmp\ZAP3D6.tmp

Mount point destination : \Device\__max++>\^

Found mount point : C:\WINDOWS\assembly\temp\temp

Mount point destination : \Device\__max++>\^

Found mount point : C:\WINDOWS\assembly\tmp\tmp

Mount point destination : \Device\__max++>\^

Found mount point : C:\WINDOWS\Config\Config

Mount point destination : \Device\__max++>\^

Found mount point : C:\WINDOWS\Connection Wizard\Connection Wizard

Mount point destination : \Device\__max++>\^

Found mount point : C:\WINDOWS\CSC\d1\d1

Mount point destination : \Device\__max++>\^

Found mount point : C:\WINDOWS\CSC\d2\d2

Mount point destination : \Device\__max++>\^

Found mount point : C:\WINDOWS\CSC\d3\d3

Mount point destination : \Device\__max++>\^

Found mount point : C:\WINDOWS\CSC\d4\d4

Mount point destination : \Device\__max++>\^

Found mount point : C:\WINDOWS\CSC\d5\d5

Mount point destination : \Device\__max++>\^

Found mount point : C:\WINDOWS\CSC\d6\d6

Mount point destination : \Device\__max++>\^

Found mount point : C:\WINDOWS\CSC\d7\d7

Mount point destination : \Device\__max++>\^

Found mount point : C:\WINDOWS\CSC\d8\d8

Mount point destination : \Device\__max++>\^

Found mount point : C:\WINDOWS\ftpcache\ftpcache

Mount point destination : \Device\__max++>\^

Found mount point : C:\WINDOWS\Help\SBSI\Training\WXPPRO\Cbz\Cbz

Mount point destination : \Device\__max++>\^

Found mount point : C:\WINDOWS\Help\SBSI\Training\WXPPRO\Lib\Lib

Mount point destination : \Device\__max++>\^

Found mount point : C:\WINDOWS\Help\SBSI\Training\WXPPRO\Wave\Wave

Mount point destination : \Device\__max++>\^

Found mount point : C:\WINDOWS\ime\chsime\applets\applets

Mount point destination : \Device\__max++>\^

Found mount point : C:\WINDOWS\ime\CHTIME\Applets\Applets

Mount point destination : \Device\__max++>\^

Found mount point : C:\WINDOWS\ime\imejp\applets\applets

Mount point destination : \Device\__max++>\^

Found mount point : C:\WINDOWS\ime\imejp98\imejp98

Mount point destination : \Device\__max++>\^

Found mount point : C:\WINDOWS\ime\imjp8_1\applets\applets

Mount point destination : \Device\__max++>\^

Found mount point : C:\WINDOWS\ime\imkr6_1\applets\applets

Mount point destination : \Device\__max++>\^

Found mount point : C:\WINDOWS\ime\imkr6_1\dicts\dicts

Mount point destination : \Device\__max++>\^

Found mount point : C:\WINDOWS\ime\shared\res\res

Mount point destination : \Device\__max++>\^

Found mount point : C:\WINDOWS\Installer\$PatchCache$\Managed\0DC1503A46F231838AD88BCDDC8E8F7C\3.2.30729\3.2.30729

Mount point destination : \Device\__max++>\^

Found mount point : C:\WINDOWS\Installer\$PatchCache$\Managed\D7314F9862C648A4DB8BE2A5B47BE100\1.0.0\1.0.0

Mount point destination : \Device\__max++>\^

Found mount point : C:\WINDOWS\Installer\$PatchCache$\Managed\DC3BF90CC0D3D2F398A9A6D1762F70F3\2.2.30729\2.2.30729

Mount point destination : \Device\__max++>\^

Found mount point : C:\WINDOWS\java\classes\classes

Mount point destination : \Device\__max++>\^

Found mount point : C:\WINDOWS\java\trustlib\trustlib

Mount point destination : \Device\__max++>\^

Found mount point : C:\WINDOWS\Microsoft.NET\Framework\v1.0.3705\Temporary ASP.NET Files\Bind Logs\Bind Logs

Mount point destination : \Device\__max++>\^

Found mount point : C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\Temporary ASP.NET Files\Bind Logs\Bind Logs

Mount point destination : \Device\__max++>\^

Found mount point : C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\Temporary ASP.NET Files\Temporary ASP.NET Files

Mount point destination : \Device\__max++>\^

Found mount point : C:\WINDOWS\msapps\msinfo\msinfo

Mount point destination : \Device\__max++>\^

Found mount point : C:\WINDOWS\pchealth\ERRORREP\ERRORREP

Mount point destination : \Device\__max++>\^

Found mount point : C:\WINDOWS\pchealth\helpctr\batch\batch

Mount point destination : \Device\__max++>\^

Cannot access: C:\WINDOWS\pchealth\helpctr\binaries\helpsvc.exe

[1] 2004-08-10 00:00:00 743936 C:\WINDOWS\$NtServicePackUninstall$\helpsvc.exe (Microsoft Corporation)

Edited by Orange Blossom, 06 September 2009 - 07:56 PM.


BC AdBot (Login to Remove)

 


#2 thcbytes

thcbytes

  • Malware Response Team
  • 14,790 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:02:11 PM

Posted 21 September 2009 - 07:36 PM

Hello and welcome to Bleeping Computer

We apologize for the delay in responding to your request for help. Here at Bleeping Computer we get overwhelmed at times, and we are trying our best to keep up. Please note that your topic was not intentionally overlooked. Our mission is to help everyone in need, but sometimes it takes just a little longer to get to every request for help. No one is ignored here.

If you have since resolved the original problem you were having, we would appreciate you letting us know. If not please perform the following steps below so we can have a look at the current condition of your machine.

If you have not done so, include a clear description of the problems you're having, along with any steps you may have performed so far.

Upon completing the steps below another staff member will review and take the steps necessary with you to get your machine back in working order clean and free of malware.

If you have already posted a DDS log, please do so again, as your situation may have changed.
Use the 'Add Reply' and add the new log to this thread.


Thanks and again sorry for the delay.

We need to see some information about what is happening in your machine. Please perform the following scan:
  • Download DDS by sUBs from one of the following links. Save it to your desktop.
  • Double click on the DDS icon, allow it to run.
  • A small box will open, with an explaination about the tool. No input is needed, the scan is running.
  • Notepad will open with the results.
  • Follow the instructions that pop up for posting the results.
  • Close the program window, and delete the program from your desktop.
Please note: You may have to disable any script protection running if the scan fails to run. After downloading the tool, disconnect from the internet and disable all antivirus protection. Run the scan, enable your A/V and reconnect to the internet.

Information on A/V control HERE
Proud member - Unified Network of Instructors and Trained Eliminators
Posted Image

I do not accept personal donations for assistance provided. I would ask that you instead consider donating the greatest gift - Organ Donation. Your organs are of no use to you when your gone. You will save a life that would otherwise be lost!

http://donatelife.net/register-now/

#3 LostMyMind

LostMyMind
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:03:11 PM

Posted 22 September 2009 - 05:45 AM

I am Sorry to say that I just reformated and did a fresh install last week. I do thankyou guys for getting back to me and understand that there is a wait. I am sure I will have to use you guys again in the future. So, Thanks and I look forward to working with you soon.

#4 teacup61

teacup61

    Bleepin' Texan!


  • Malware Response Team
  • 17,075 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:Wills Point, Texas
  • Local time:02:11 PM

Posted 22 September 2009 - 11:52 AM

Thanks for letting us know. :(

Since this issue appears resolved ... this Topic is closed.

If you need this topic reopened, please request this by sending the moderating team a PM with the address of the thread. This applies only to the original topic starter.

Everyone else please begin a New Topic.
Please make a donation so I can keep helping people just like you.
Every little bit helps! :)
You can even use your credit card! Thank you!

Posted Image


Error reading poptart in Drive A: Delete kids y/n?




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users