Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Infected with Antivirus Pro 2010


  • This topic is locked This topic is locked
2 replies to this topic

#1 en455

en455

  • Members
  • 2 posts
  • OFFLINE
  •  
  • Local time:12:38 PM

Posted 21 September 2009 - 10:20 AM

Hello, I've been having some problems with a couple viruses since yesterday. I also had problems with the "total security" virus but was able to use Spyware Doctor to get that removed (hopefully)...but, Spyware Doctor is not removing Antivirus Pro 2010. I also have some icons labled "Protection System" and "Protection System Support" that I believe are related or yet another virus.

I have tried to use Malwarebytes but it shuts down after running for a few seconds. I tried to rename the file before downloading and installing and doing the same in safemode but no luck.

Below are logs from Root Repeal and SREngLOG. I was unable to get a log from DDS because it was also crashing. I attached the SREngLOG becuase I was doing some sniffing around looking for a solution and a admin asked another user who was having problems with Antivirus Pro 2010 to include it.

Any help is greatly appreciated.


ROOTREPEAL © AD, 2007-2009
==================================================
Scan Start Time: 2009/09/21 00:50
Program Version: Version 1.3.5.0
Windows Version: Windows XP SP3
==================================================

Drivers
-------------------
Name: dump_atapi.sys
Image Path: C:\WINDOWS\System32\Drivers\dump_atapi.sys
Address: 0xB5C99000 Size: 98304 File Visible: No Signed: -
Status: -

Name: dump_WMILIB.SYS
Image Path: C:\WINDOWS\System32\Drivers\dump_WMILIB.SYS
Address: 0xF79A5000 Size: 8192 File Visible: No Signed: -
Status: -

Name: mchInjDrv.sys
Image Path: C:\WINDOWS\system32\Drivers\mchInjDrv.sys
Address: 0xB99E3000 Size: 2560 File Visible: No Signed: -
Status: -

Name: rootrepeal.sys
Image Path: C:\WINDOWS\system32\drivers\rootrepeal.sys
Address: 0xB35D5000 Size: 49152 File Visible: No Signed: -
Status: -

Name: sUBs:1
Image Path: C:\WINDOWS\sUBs:1
Address: 0xB5D92000 Size: 20480 File Visible: No Signed: -
Status: -

Name: sUBs:2
Image Path: C:\WINDOWS\sUBs:2
Address: 0xBA4AF000 Size: 61440 File Visible: No Signed: -
Status: -

Hidden/Locked Files
-------------------
Path: C:\hiberfil.sys
Status: Locked to the Windows API!

Path: C:\WINDOWS\imsins.log
Status: Visible to the Windows API, but not on disk.

SSDT
-------------------
#: 041 Function Name: NtCreateKey
Status: Hooked by "PCTCore.sys" at address 0xf7491d72

#: 047 Function Name: NtCreateProcess
Status: Hooked by "PCTCore.sys" at address 0xf74729a6

#: 048 Function Name: NtCreateProcessEx
Status: Hooked by "PCTCore.sys" at address 0xf7472b98

#: 063 Function Name: NtDeleteKey
Status: Hooked by "PCTCore.sys" at address 0xf7492568

#: 065 Function Name: NtDeleteValueKey
Status: Hooked by "PCTCore.sys" at address 0xf7492820

#: 119 Function Name: NtOpenKey
Status: Hooked by "PCTCore.sys" at address 0xf7490a80

#: 192 Function Name: NtRenameKey
Status: Hooked by "PCTCore.sys" at address 0xf7492c8a

#: 247 Function Name: NtSetValueKey
Status: Hooked by "PCTCore.sys" at address 0xf7492036

#: 257 Function Name: NtTerminateProcess
Status: Hooked by "PCTCore.sys" at address 0xf7472656

==EOF==


2009-09-21,01:10:49

System Repair Engineer 2.8.1.1279
Smallfrogs (http://www.KZTechs.com)

Windows XP Home Edition Service Pack 3 (Build 2600) - Administrative User - Completed Functions Allowed

Follow item(s) have been selected:
	All Boot Items (Including Registry, Startup Folders, Services and so on)
	Browser Add-ons
	Running Processes (Including process model information)
	File Associations
	Winsock Provider
	Autorun.Inf
	HOSTS File
	Process Privileges Scan
	Scheduled Tasks
	Windows Security Update Check
	API HOOK
	Hidden Process


Boot Items
Registry
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
	<DellSupport><"C:\Program Files\DellSupport\DSAgnt.exe" /startup>  [(Verified)Dell Inc.]
	<ctfmon.exe><C:\WINDOWS\system32\ctfmon.exe>  [(Verified)Microsoft Windows Component Publisher]
	<YSearchProtection><C:\Program Files\Yahoo!\Search Protection\SearchProtection.exe>  [(Verified)Yahoo! Inc.]
	<H/PC Connection Agent><"C:\Program Files\Microsoft ActiveSync\wcescomm.exe">  [(Verified)Microsoft Corporation]
	<Microsoft Works Update Detection><C:\Program Files\Microsoft Works\WkDetect.exe>  [File is missing]
	<BitTorrent DNA><"C:\Program Files\DNA\btdna.exe">  [(Verified)BitTorrent Inc]
	<Search Protection><C:\Program Files\Yahoo!\Search Protection\SearchProtection.exe>  [(Verified)Yahoo! Inc.]
	<SUPERAntiSpyware><C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe>  [File is missing]
	<Protection System><"C:\Program Files\Protection System\psystem.exe" -noscan>  [Protection System Software]
	<WIndows Rescue Disk><C:\DOCUME~1\Tim\LOCALS~1\Temp\winamp.exe>  []
[HKEY_CURRENT_USER\Software\Microsoft\Windows NT\CurrentVersion\Windows]
	<load><>  [N/A]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
	<ShStatEXE><"C:\Program Files\Network Associates\VirusScan\SHSTAT.EXE" /STANDALONE>  [Network Associates, Inc.]
	<McAfeeUpdaterUI><"C:\Program Files\Network Associates\Common Framework\UpdaterUI.exe" /StartedFromRunKey>  [Network Associates, Inc.]
	<AdaptecDirectCD><"C:\Program Files\Roxio\Easy CD Creator 5\DirectCD\DirectCD.exe">  [Roxio]
	<CamMonitor><C:\Program Files\Hewlett-Packard\Digital Imaging\\Unload\hpqcmon.exe>  []
	<Share-to-Web Namespace Daemon><C:\Program Files\Hewlett-Packard\HP Share-to-Web\hpgs2wnd.exe>  [Hewlett-Packard]
	<HPDJ Taskbar Utility><C:\WINDOWS\System32\spool\drivers\w32x86\3\hpztsb04.exe>  [(Verified)Microsoft Windows Hardware Compatibility Publisher, E=""]
	<MXO Auto Loader><C:\WINDOWS\MXOALDR.EXE>  [(Verified)Microsoft Windows Hardware Compatibility Publisher]
	<kmw_run.exe><kmw_run.exe>  [Kensington Technology Group]
	<MSWheel><>  [N/A]
	<NapsterShell><C:\Program Files\Napster\napster.exe /systray>  [File is missing]
	<YSearchProtection><"C:\Program Files\Yahoo!\Search Protection\SearchProtection.exe">  [(Verified)Yahoo! Inc.]
	<Adobe Reader Speed Launcher><"C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe">  [(Verified)"Adobe Systems, Incorporated"]
	<AppleSyncNotifier><C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleSyncNotifier.exe>  [(Verified)Apple Inc.]
	<SunJavaUpdateSched><"C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe">  [(Verified)"Sun Microsystems, Inc."]
	<TkBellExe><"C:\Program Files\Common Files\Real\Update_OB\realsched.exe"  -osboot>  [(Verified)"RealNetworks, Inc."]
	<QuickTime Task><"C:\Program Files\QuickTime\QTTask.exe" -atboottime>  [Apple Inc.]
	<iTunesHelper><"F:\iTunesHelper.exe">  [(Verified)Apple Inc.]
	<11888434><C:\Documents and Settings\All Users\Application Data\11888434\11888434.exe>  [File is missing]
	<Antivirus Pro 2010><"C:\Program Files\AntivirusPro_2010\AntivirusPro_2010.exe" /hide>  [Unknown Corporation]
	<ISTray><"C:\Program Files\Spyware Doctor\pctsTray.exe">  [(Verified)PC Tools]
	<hazadatot><Rundll32.exe "c:\windows\system32\pavelaro.dll",a>  [File is missing]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]
	<shell><Explorer.exe>  [(Verified)Microsoft Windows Component Publisher]
	<Userinit><C:\WINDOWS\SYSTEM32\userinit.exe,>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows]
	<AppInit_DLLs><gakuyama.dll c:\windows\system32\pavelaro.dll>  [File is missing]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]
	<UIHost><logonui.exe>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
	<{AEB6717E-7E19-11d0-97EE-00C04FD91972}><shell32.dll>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
	<PostBootReminder><%SystemRoot%\system32\SHELL32.dll>  [(Verified)Microsoft Windows Component Publisher]
	<CDBurn><%SystemRoot%\system32\SHELL32.dll>  [(Verified)Microsoft Windows Component Publisher]
	<WebCheck><C:\WINDOWS\system32\webcheck.dll>  [(Verified)Microsoft Windows Component Publisher]
	<SysTray><C:\WINDOWS\System32\stobject.dll>  [(Verified)Microsoft Windows Component Publisher]
	<WinRAR archiver><C:\Program Files\WinRAR\RarExtv.dll>  [File is missing]
	<WPDShServiceObj><C:\WINDOWS\system32\WPDShServiceObj.dll>  [(Verified)Microsoft Windows Component Publisher]
	<piyenazem><c:\windows\system32\pavelaro.dll>  [File is missing]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\crypt32chain]
	<WinlogonNotify: crypt32chain><crypt32.dll>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\cryptnet]
	<WinlogonNotify: cryptnet><cryptnet.dll>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\cscdll]
	<WinlogonNotify: cscdll><cscdll.dll>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\dimsntfy]
	<WinlogonNotify: dimsntfy><%SystemRoot%\System32\dimsntfy.dll>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\ScCertProp]
	<WinlogonNotify: ScCertProp><wlnotify.dll>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\Schedule]
	<WinlogonNotify: Schedule><wlnotify.dll>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\sclgntfy]
	<WinlogonNotify: sclgntfy><sclgntfy.dll>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\SensLogn]
	<WinlogonNotify: SensLogn><WlNotify.dll>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\termsrv]
	<WinlogonNotify: termsrv><wlnotify.dll>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
	<WinlogonNotify: WgaLogon><WgaLogon.dll>  [(Verified)Microsoft Corporation]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\wlballoon]
	<WinlogonNotify: wlballoon><wlnotify.dll>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SharedTaskScheduler]
	<{438755C2-A8BA-11D1-B96B-00A0C90312E1}><%SystemRoot%\System32\browseui.dll>  [(Verified)Microsoft Windows Component Publisher]
	<{8C7461EF-2B13-11d2-BE35-3078302C2030}><%SystemRoot%\System32\browseui.dll>  [(Verified)Microsoft Windows Component Publisher]
	<{BA603215-23F2-42AD-F4E4-00AAC39CAA53}><C:\WINDOWS\system32\nzfiu3h78di.dll>  []
	<{d1a39431-16c0-4546-867e-8499358581c9}><c:\windows\system32\pavelaro.dll>  [File is missing]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\<{12d0ed0d-0ee0-4f90-8827-78cefb8f4988}]
	<IE7 Uninstall Stub><C:\WINDOWS\system32\ieudinit.exe>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\>{22d6f312-b0f6-11d0-94ab-0080c74c7e95}]
	<Windows Media Player><C:\WINDOWS\inf\unregmp2.exe /ShowWMP>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\>{26923b43-4d38-484f-9b9e-de460746276c}]
	<Internet Explorer><%systemroot%\system32\shmgrate.exe OCInstallUserConfigIE>  [File is missing]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\>{60B49E34-C7CC-11D0-8953-00A0C90347FF}]
	<Browser Customizations><RunDLL32 IEDKCS32.DLL,BrandIE4 SIGNUP>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\>{60B49E34-C7CC-11D0-8953-00A0C90347FF}MICROS]
	<Browser Customizations><RunDLL32 IEDKCS32.DLL,BrandIE4 SIGNUP>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\>{881dd1c5-3dcf-431b-b061-f3f88e8be88a}]
	<Outlook Express><%systemroot%\system32\shmgrate.exe OCInstallUserConfigOE>  [File is missing]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{2C7339CF-2B09-4501-B3F3-F3508C9228ED}]
	<Themes Setup><%SystemRoot%\system32\regsvr32.exe /s /n /i:/UserInstall %SystemRoot%\system32\themeui.dll>  [File is missing]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{44BBA840-CC51-11CF-AAFA-00AA00B6015C}]
	<Microsoft Outlook Express 6><"%ProgramFiles%\Outlook Express\setup50.exe" /APP:OE /CALLER:WINNT /user /install>  [File is missing]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{44BBA842-CC51-11CF-AAFA-00AA00B6015B}]
	<NetMeeting 3.01><rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\msnetmtg.inf,NetMtg.Install.PerUser.NT>  [(Verified)Microsoft Windows Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{5945c046-1e7d-11d1-bc44-00c04fd912be}]
	<Windows Messenger 4.7><rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\msmsgs.inf,BLC.QuietInstall.PerUser>  [(Verified)Microsoft Windows Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{6BF52A52-394A-11d3-B153-00C04F79FAA6}]
	<Microsoft Windows Media Player><rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\wmp11.inf,PerUserStub>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{7790769C-0471-11d2-AF11-00C04FA35D02}]
	<Address Book 6><"%ProgramFiles%\Outlook Express\setup50.exe" /APP:WAB /CALLER:WINNT /user /install>  [File is missing]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{89820200-ECBD-11cf-8B85-00AA005B4340}]
	<Windows Desktop Update><regsvr32.exe /s /n /i:U shell32.dll>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{89820200-ECBD-11cf-8B85-00AA005B4383}]
	<Internet Explorer><C:\WINDOWS\system32\ie4uinit.exe -BaseSettings>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{89B4C1CD-B018-4511-B0A1-5476DBF70820}]
	<N/A><C:\WINDOWS\system32\Rundll32.exe C:\WINDOWS\system32\mscories.dll,Install>  [(Verified)Microsoft Corporation]
[HKEY_CURRENT_USER\Control Panel\Desktop]
	<SCRNSAVE.EXE><C:\WINDOWS\System32\logon.scr>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
	<AdaptecDirectCD><; "C:\Program Files\Roxio\Easy CD Creator 5\DirectCD\DirectCD.exe">  [Roxio]
	<AltnetPointsManager><; c:\program files\altnet\points manager\points manager.exe -s>  [File is missing]
	<AutoUpdater><; "C:\Program Files\AutoUpdate\AutoUpdate.exe">  [File is missing]
	<BCMSMMSG><; BCMSMMSG.exe>  [(Verified)Microsoft Windows Hardware Compatibility Publisher]
	<DIGStream><; C:\Program Files\DIGStream\digstream.exe>  [File is missing]
	<KAZAA><; C:\Program Files\Kazaa\kazaa.exe /SYSTRAY>  [File is missing]
	<less meal><; C:\PROGRA~1\FLAGLO~1\Bird Soap.exe>  [File is missing]
	<MediaLoads Installer><; "C:\Program Files\DownloadWare\dw.exe" /H>  [File is missing]
	<Microsoft Works Update Detection><; C:\Program Files\Common Files\Microsoft Shared\Works Shared\WkUFind.exe>  [Microsoft® Corporation]
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
	<MSMSGS><; "C:\Program Files\Messenger\msmsgs.exe" /background>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
	<P2P Networking><; C:\WINDOWS\System32\P2P Networking\P2P Networking.exe /AUTOSTART>  [File is missing]
	<Pop-Up Stopper><; >  [N/A]
	<QuickTime Task><; "C:\Program Files\QuickTime\qttask.exe" -atboottime>  [Apple Inc.]
	<RealTray><; C:\Program Files\Real\RealPlayer\RealPlay.exe SYSTEMBOOTHIDEPLAYER>  [File is missing]
	<SpecialOffers><; C:\WINDOWS\specialoffers4.exe>  [File is missing]
	<tgcmd><; "C:\Program Files\support.com\bin\tgcmd.exe" /server /startmonitor /deaf>  [Support.com, Inc.]
	<TV Media><; C:\Program Files\TV Media\Tvm.exe>  [File is missing]
	<updater><; C:\Program Files\Common files\updater\wupdater.exe>  [File is missing]
	<WinampAgent><; "C:\Program Files\Winamp3\winampa.exe">  [File is missing]
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
	<Xifrosv><; C:\WINDOWS\System32\jkffrlm.exe>  [File is missing]
	<Yahoo! Pager><; C:\Program Files\Yahoo!\Messenger\ypager.exe -quiet>  [File is missing]

==================================
Startup Folders
[HotSync Manager]
  <C:\Documents and Settings\All Users\Start Menu\Programs\Startup\HotSync Manager.lnk --> C:\Program Files\Palm\Hotsync.exe -logon [File is missing]><N>

==================================
Services
[Apple Mobile Device / Apple Mobile Device][Running/Auto Start]
  <"C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe"><Apple Inc.>
[Application Management / AppMgmt][Stopped/Manual Start]
  <C:\WINDOWS\system32\svchost.exe -k netsvcs-->%SystemRoot%\System32\appmgmts.dll><N/A>
[Bonjour Service / Bonjour Service][Running/Auto Start]
  <"C:\Program Files\Bonjour\mDNSResponder.exe"><Apple Inc.>
[DSBrokerService / DSBrokerService][Stopped/Manual Start]
  <"C:\Program Files\DellSupport\brkrsvc.exe"><>
[Google Update Service (gupdate1ca2fdca8ef12d2) / gupdate1ca2fdca8ef12d2][Stopped/Auto Start]
  <"C:\Program Files\Google\Update\GoogleUpdate.exe" /svc><Google Inc.>
[Google Updater Service / gusvc][Stopped/Manual Start]
  <"C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe"><Google>
[Human Interface Device Access / HidServ][Stopped/Disabled]
  <C:\WINDOWS\System32\svchost.exe -k netsvcs-->%SystemRoot%\System32\hidserv.dll><N/A>
[InstallDriver Table Manager / IDriverT][Stopped/Manual Start]
  <"C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe"><Macrovision Corporation>
[iPod Service / iPod Service][Stopped/Manual Start]
  <"C:\Program Files\iPod\bin\iPodService.exe"><Apple Inc.>
[McAfee Framework Service / McAfeeFramework][Running/Auto Start]
  <C:\Program Files\Network Associates\Common Framework\FrameworkService.exe /ServiceStart><Network Associates, Inc.>
[Network Associates McShield / McShield][Running/Auto Start]
  <"C:\Program Files\Network Associates\VirusScan\Mcshield.exe"><Network Associates, Inc.>
[Network Associates Task Manager / McTaskManager][Running/Auto Start]
  <"C:\Program Files\Network Associates\VirusScan\VsTskMgr.exe"><Network Associates, Inc.>
[Intel(R) NMS / NMSSvc][Stopped/Manual Start]
  <C:\WINDOWS\System32\NMSSvc.exe><Intel Corporation>
[PC Tools Auxiliary Service / sdAuxService][Running/Auto Start]
  <C:\Program Files\Spyware Doctor\pctsAuxs.exe><PC Tools>
[PC Tools Security Service / sdCoreService][Running/Auto Start]
  <C:\Program Files\Spyware Doctor\pctsSvc.exe><PC Tools>
[Viewpoint Manager Service / Viewpoint Manager Service][Running/Auto Start]
  <"C:\Program Files\Viewpoint\Common\ViewpointService.exe"><Viewpoint Corporation>
[XoftSpyService / XoftSpyService][Stopped/Manual Start]
  <"C:\Program Files\Common Files\XoftSpySE\6\xoftspyservice.exe"><(File is missing)>

==================================
Drivers
[D-Link USB Wireless Network Adapter Service / A5AGU][Running/Manual Start]
  <system32\DRIVERS\A5AGU.sys><D-Link Corporation>
[aeaudio / aeaudio][Running/Manual Start]
  <system32\drivers\aeaudio.sys><Andrea Electronics Corporation>
[AliIde / AliIde][Stopped/Disabled]
  <\SystemRoot\System32\DRIVERS\aliide.sys><Acer Laboratories Inc.>
[AMD AGP Bus Filter Driver / amdagp][Stopped/Disabled]
  <\SystemRoot\System32\DRIVERS\amdagp.sys><Advanced Micro Devices, Inc.>
[asc / asc][Stopped/Disabled]
  <\SystemRoot\System32\DRIVERS\asc.sys><Advanced System Products, Inc.>
[asc3550 / asc3550][Stopped/Disabled]
  <\SystemRoot\System32\DRIVERS\asc3550.sys><Advanced System Products, Inc.>
[D-Link predator Bootloader driver / ATHFMWDL][Stopped/Manual Start]
  <System32\Drivers\ATHFMWDL.sys><Windows (R) 2000 DDK provider>
[ati2mtaa / ati2mtaa][Running/Manual Start]
  <System32\DRIVERS\ati2mtaa.sys><ATI Technologies Inc.>
[BCM V.92 56K Modem / BCMModem][Running/Manual Start]
  <System32\DRIVERS\BCMSM.sys><Broadcom Corporation>
[CmdIde / CmdIde][Stopped/Disabled]
  <\SystemRoot\System32\DRIVERS\cmdide.sys><CMD Technology, Inc.>
[dac2w2k / dac2w2k][Stopped/Disabled]
  <\SystemRoot\System32\DRIVERS\dac2w2k.sys><Mylex Corporation>
[DSproct / DSproct][Stopped/Manual Start]
  <\??\C:\Program Files\DellSupport\GTAction\triggers\DSproct.sys><Gteko Ltd.>
[DellSupport UniDriver / dsunidrv][Running/Auto Start]
  <system32\DRIVERS\dsunidrv.sys><Gteko Ltd.>
[Intel(R) PRO Adapter Driver / E100B][Running/Manual Start]
  <System32\DRIVERS\e100b325.sys><Intel Corporation>
[3Com EtherLink XL 90XB/C Adapter Driver / EL90XBC][Stopped/Manual Start]
  <System32\DRIVERS\el90xbc5.sys><3Com Corporation>
[GEAR ASPI Filter Driver / GEARAspiWDM][Running/Manual Start]
  <System32\Drivers\GEARAspiWDM.sys><GEAR Software Inc.>
[i81x / i81x][Stopped/Manual Start]
  <System32\DRIVERS\i81xnt5.sys><Intel(R) Corporation>
[iAimFP0 / iAimFP0][Stopped/Manual Start]
  <System32\DRIVERS\wADV01nt.sys><Intel(R) Corporation>
[iAimFP1 / iAimFP1][Stopped/Manual Start]
  <System32\DRIVERS\wADV02NT.sys><Intel(R) Corporation>
[iAimFP2 / iAimFP2][Stopped/Manual Start]
  <System32\DRIVERS\wADV05NT.sys><Intel(R) Corporation>
[iAimFP3 / iAimFP3][Stopped/Manual Start]
  <System32\DRIVERS\wSiINTxx.sys><Intel(R) Corporation>
[iAimFP4 / iAimFP4][Stopped/Manual Start]
  <System32\DRIVERS\wVchNTxx.sys><Intel(R) Corporation>
[iAimTV0 / iAimTV0][Stopped/Manual Start]
  <System32\DRIVERS\wATV01nt.sys><Intel(R) Corporation>
[iAimTV1 / iAimTV1][Stopped/Manual Start]
  <System32\DRIVERS\wATV02NT.sys><Intel(R) Corporation>
[iAimTV2 / iAimTV2][Stopped/Manual Start]
  <System32\DRIVERS\wATV03nt.sys><N/A>
[iAimTV3 / iAimTV3][Stopped/Manual Start]
  <System32\DRIVERS\wATV04nt.sys><Intel(R) Corporation>
[iAimTV4 / iAimTV4][Stopped/Manual Start]
  <System32\DRIVERS\wCh7xxNT.sys><Intel(R) Corporation>
[Jukebox / Jukebox][Stopped/Manual Start]
  <System32\DRIVERS\ctpdusb2.sys><Creative Technology Ltd.>
[Kensington Input Devices Class filter driver / KMW_KBD][Running/Manual Start]
  <System32\DRIVERS\KMW_KBD.sys><Kensington Technology Group>
[Kensington MouseWorks Mouse filter driver / KMW_SYS][Stopped/Manual Start]
  <system32\DRIVERS\KMW_SYS.sys><Kensington Technology Group>
[Kensington MouseWorks USB filter driver / KMW_USB][Stopped/Manual Start]
  <system32\DRIVERS\KMW_USB.sys><Kensington Technology Group>
[LMImirr / LMImirr][Stopped/Manual Start]
  <system32\DRIVERS\LMImirr.sys><N/A>
[mraid35x / mraid35x][Stopped/Disabled]
  <\SystemRoot\System32\DRIVERS\mraid35x.sys><American Megatrends Inc.>
[USB Storage Adapter FX (MXO) / MXOFX][Stopped/Manual Start]
  <system32\DRIVERS\MXOFX.SYS><Cypress Semiconductor>
[NaiAvFilter1 / NaiAvFilter1][Running/Manual Start]
  <system32\drivers\naiavf5x.sys><Network Associates, Inc.>
[NIC Management Service Configuration Driver / NMSCFG][Stopped/Manual Start]
  <\??\C:\WINDOWS\System32\drivers\NMSCFG.SYS><Intel Corporation>
[nv / nv][Stopped/Manual Start]
  <System32\DRIVERS\nv4_mini.sys><NVIDIA Corporation>
[OMCI WDM Device Driver / omci][Running/System Start]
  <System32\DRIVERS\omci.sys><Dell Computer Corporation>
[PalmUSBD / PalmUSBD][Stopped/Manual Start]
  <system32\drivers\PalmUSBD.sys><PalmSource, Inc.>
[PCTools KDS / PCTCore][Running/Boot Start]
  <\SystemRoot\system32\drivers\PCTCore.sys><PC Tools>
[Direct Parallel Link Driver / Ptilink][Running/Manual Start]
  <System32\DRIVERS\ptilink.sys><Parallel Technologies, Inc.>
[PxHelp20 / PxHelp20][Running/Boot Start]
  <\SystemRoot\System32\Drivers\PxHelp20.sys><Sonic Solutions>
[ql1080 / ql1080][Stopped/Disabled]
  <\SystemRoot\System32\DRIVERS\ql1080.sys><QLogic Corporation>
[ql12160 / ql12160][Stopped/Disabled]
  <\SystemRoot\System32\DRIVERS\ql12160.sys><QLogic Corporation>
[ql1280 / ql1280][Stopped/Disabled]
  <\SystemRoot\System32\DRIVERS\ql1280.sys><QLogic Corporation>
[SASKUTIL / SASKUTIL][Stopped/System Start]
  <\??\C:\Program Files\SUPERAntiSpyware\SASKUTIL.sys><N/A>
[Secdrv / Secdrv][Stopped/Manual Start]
  <System32\DRIVERS\secdrv.sys><Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.>
[SIS AGP Bus Filter / sisagp][Stopped/Disabled]
  <\SystemRoot\System32\DRIVERS\sisagp.sys><Silicon Integrated Systems Corporation>
[smwdm / smwdm][Running/Manual Start]
  <system32\drivers\smwdm.sys><Analog Devices, Inc.>
[Sparrow / Sparrow][Stopped/Disabled]
  <\SystemRoot\System32\DRIVERS\sparrow.sys><Adaptec, Inc.>
[symc810 / symc810][Stopped/Disabled]
  <\SystemRoot\System32\DRIVERS\symc810.sys><Symbios Logic Inc.>
[symc8xx / symc8xx][Stopped/Disabled]
  <\SystemRoot\System32\DRIVERS\symc8xx.sys><LSI Logic>
[sym_hi / sym_hi][Stopped/Disabled]
  <\SystemRoot\System32\DRIVERS\sym_hi.sys><LSI Logic>
[sym_u3 / sym_u3][Stopped/Disabled]
  <\SystemRoot\System32\DRIVERS\sym_u3.sys><LSI Logic>
[Tunebite High-Speed Dubbing / tbhsd][Stopped/Manual Start]
  <system32\drivers\tbhsd.sys><RapidSolution Software AG>
[ultra / ultra][Stopped/Disabled]
  <\SystemRoot\System32\DRIVERS\ultra.sys><Promise Technology, Inc.>
[Apple Mobile USB Driver / USBAAPL][Stopped/Manual Start]
  <System32\Drivers\usbaapl.sys><Apple, Inc.>

==================================
Browser Add-ons
[&Yahoo! Toolbar Helper]
  {02478D38-C3F9-4efb-9B51-7695ECA05670} <C:\PROGRA~1\Yahoo!\Companion\Installs\cpn1\yt.dll, (Signed) Yahoo! Inc.>
[C:\WINDOWS\system32\nzfiu3h78di.dll]
  {BA603215-23F2-42AD-F4E4-00AAC39CAA53} <C:\WINDOWS\system32\nzfiu3h78di.dll, N/A>
[Java Plug-in 1.6.0_07]
  {08B0E5C0-4FCB-11CF-AAA5-00401C608501} <C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll, (Signed) Sun Microsystems, Inc.>
[Create Mobile Favorite]
  {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} <C:\PROGRA~1\MICROS~4\INetRepl.dll, (Signed) Microsoft Corporation>
[Create Mobile Favorite]
  {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} <C:\PROGRA~1\MICROS~4\INetRepl.dll, (Signed) Microsoft Corporation>
[Yahoo! IE Services Button]
  {5BAB4B5B-68BC-4B02-94D6-2FC0DE4A7897} <C:\Program Files\Yahoo!\Common\yiesrvc.dll, (Signed) Yahoo! Inc.>
[]
  {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} <, >
[]
  {E023F504-0C5A-4750-A1E7-A9046DEA8A21} <C:\Program Files\Microsoft Money\System\mnyviewer.dll, Microsoft Corporation>
[]
  {e2e2dd38-d088-4134-82b7-f2ba38496583} <%windir%\Network Diagnostic\xpnetdiag.exe, (Signed) N/A>
[Messenger]
  {FB5F1910-F110-11d2-BB9E-00C04F795683} <C:\Program Files\Messenger\msmsgs.exe, (Signed) Microsoft Corporation>
[Admin About]
  {FCA9826E-3AD7-52E7-ECF8-F78087FDA96B} <C:\PROGRA~1\GlueData\creative store.dll, N/A>
[Yahoo! Toolbar]
  {EF99BD32-C1FB-11D2-892F-0090271D4F88} <C:\PROGRA~1\Yahoo!\Companion\Installs\cpn1\yt.dll, (Signed) Yahoo! Inc.>
[&Google]
  {2318C2B1-4965-11d4-9B18-009027A5CD4F} <c:\program files\google\googletoolbar1.dll, N/A>
[Ask Toolbar]
  {3041d03e-fd4b-44e0-b742-2d9b88305f98} <C:\Program Files\AskBarDis\bar\bin\askBar.dll, (Signed) Ask.com>
[]
  {00000075-9980-0010-8000-00AA00389B71} <, >
[Support.com Configuration Class]
  {01113300-3E00-11D2-8470-0060089874ED} <C:\WINDOWS\Downloaded Program Files\tgctlcm.dll, (Signed) SupportSoft, Inc.>
[QuickTime Object]
  {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} <C:\Program Files\QuickTime\QTPlugin.ocx, (Signed) Apple Inc.>
[]
  {33564D57-0000-0010-8000-00AA00389B71} <, >
[]
  {33564D57-9980-0010-8000-00AA00389B71} <, >
[]
  {41F17733-B041-4099-A042-B518BB6A408C} <, >
[Java Plug-in 1.6.0_07]
  {8AD9C840-044E-11D1-B3E9-00805F499D93} <C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll, (Signed) Sun Microsystems, Inc.>
[Shutterfly Picture Upload Plugin]
  {9600F64D-755F-11D4-A47F-0001023E6D5A} <C:\WINDOWS\Downloaded Program Files\sfuploadplugin.ocx, (Signed) Shutterfly, Inc.>
[MSN Games - Installer]
  {B8BE5E93-A60C-4D26-A2DC-220313175592} <C:\WINDOWS\Downloaded Program Files\ZIntro.ocx, (Signed) Microsoft Corporation>
[Java Plug-in 1.5.0_12]
  {CAFEEFAC-0015-0000-0012-ABCDEFFEDCBA} <C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll, (Signed) Sun Microsystems, Inc.>
[Java Plug-in 1.6.0_07]
  {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA} <C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll, (Signed) Sun Microsystems, Inc.>
[Java Plug-in 1.6.0_07]
  {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} <C:\Program Files\Java\jre1.6.0_07\bin\npjpi160_07.dll, (Signed) Sun Microsystems, Inc.>
[Shockwave Flash Object]
  {D27CDB6E-AE6D-11CF-96B8-444553540000} <C:\WINDOWS\system32\Macromed\Flash\Flash10b.ocx, (Signed) Adobe Systems, Inc.>
[]
  {00000000-0000-0000-0000-000000000000} <, >
[Google Script Object]
  {00EF2092-6AC5-47C0-BD25-CF2D5D657FEB} <c:\program files\google\googletoolbar1.dll, N/A>
[Support.com Configuration Class]
  {01113300-3E00-11D2-8470-0060089874ED} <C:\WINDOWS\Downloaded Program Files\tgctlcm.dll, (Signed) SupportSoft, Inc.>
[]
  {01A88BB1-1174-41EC-ACCB-963509EAE56B} <, >
[&Yahoo! Toolbar Helper]
  {02478D38-C3F9-4EFB-9B51-7695ECA05670} <C:\PROGRA~1\Yahoo!\Companion\Installs\cpn1\yt.dll, (Signed) Yahoo! Inc.>
[QuickTime Object]
  {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} <C:\Program Files\QuickTime\QTPlugin.ocx, (Signed) Apple Inc.>
[]
  {03D19749-C5FA-4CCC-99AB-00AB2AF45ACD} <, >
[MetaStreamCtl Class]
  {03F998B2-0E00-11D3-A498-00104B6EB52E} <C:\Program Files\Viewpoint\Viewpoint Experience Technology\AxMetaStream_0305000D.dll, Viewpoint Corporation>
[Adobe PDF Reader Link Helper]
  {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} <C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll, (Signed) Adobe Systems Incorporated>
[Web Browser Applet Control]
  {08B0E5C0-4FCB-11CF-AAA5-00401C608501} <C:\WINDOWS\System32\msjava.dll, Microsoft Corporation>
[tons list]
  {0D35B223-638D-E191-9309-B76B473E63C2} <C:\PROGRA~1\GlueData\creative store.dll, N/A>
[PeerDraw Class]
  {10072CEC-8CC1-11D1-986E-00A0C955B42E} <%CommonProgramFiles%\Microsoft Shared\VGX\vgx.dll, (Signed) N/A>
[]
  {15589FA1-C456-11CE-BF01-00AA0055595A} <, >
[Shockwave ActiveX Control]
  {166B1BCA-3F9C-11CF-8075-444553540000} <, >
[InformationCardSigninHelper Class]
  {19916E01-B44E-4E31-94A4-4696DF46157B} <C:\WINDOWS\system32\icardie.dll, (Signed) Microsoft Corporation>
[AskBar BHO]
  {201F27D4-3704-41D6-89C1-AA35E39143ED} <C:\Program Files\AskBarDis\bar\bin\askBar.dll, (Signed) Ask.com>
[BitTorrent Control]
  {21C4E4B2-40F7-4E77-BF19-8BED7187BB55} <C:\Program Files\BitTorrent\BitTorrentIE.2.dll, (Signed) BitTorrent, Inc.>
[Windows Media Player]
  {22D6F312-B0F6-11D0-94AB-0080C74C7E95} <C:\WINDOWS\system32\wmpdxm.dll, (Signed) Microsoft Corporation>
[&Google]
  {2318C2B1-4965-11D4-9B18-009027A5CD4F} <c:\program files\google\googletoolbar1.dll, N/A>
[HTML Document]
  {25336920-03F9-11CF-8FD0-00AA00686F13} <C:\WINDOWS\system32\mshtml.dll, (Signed) Microsoft Corporation>
[Microsoft HTML Document 6.0]
  {25336921-03F9-11CF-8FD0-00AA00686F13} <C:\WINDOWS\system32\mshtml.dll, (Signed) Microsoft Corporation>
[]
  {2871FC9B-5E34-4AAE-9E9C-EBD1652D5C92} <, >
[XML DOM Document]
  {2933BF90-7B36-11D2-B20E-00C04F983E60} <%SystemRoot%\System32\MSXML3.DLL, (Signed) N/A>
[XSL Template]
  {2933BF94-7B36-11D2-B20E-00C04F983E60} <%SystemRoot%\System32\MSXML3.DLL, (Signed) N/A>
[DHTML Edit Control Safe for Scripting for IE5]
  {2D360201-FFF5-11D1-8D03-00A0C959BC0A} <C:\Program Files\Common Files\Microsoft Shared\Triedit\dhtmled.ocx, (Signed) Microsoft Corporation>
[]
  {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} <, >
[]
  {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} <, >
[RealPlayer RAM Download Handler]
  {2F542A2E-EDC9-4BF7-8CB1-87C9919F7F93} <C:\WINDOWS\system32\rmoc3260.dll, (Signed) RealNetworks, Inc.>
[Ask Toolbar]
  {3041D03E-FD4B-44E0-B742-2D9B88305F98} <C:\Program Files\AskBarDis\bar\bin\askBar.dll, (Signed) Ask.com>
[RealPlayer Download and Record Plugin for Internet Explorer]
  {3049C3E9-B461-4BC5-8870-4C09146192CA} <c:\program files\real\realplayer\rpbrowserrecordplugin.dll, (Signed) RealPlayer>
[Tabular Data Control]
  {333C7BC4-460F-11D0-BC04-0080C7055A83} <C:\WINDOWS\system32\tdc.ocx, (Signed) Microsoft Corporation>
[IETag Factory]
  {38481807-CA0E-42D2-BF39-B33AF135CC4D} <C:\PROGRA~1\COMMON~1\MICROS~1\SMARTT~1\IETAG.DLL, (Signed) Microsoft Corporation>
[QuickTime Object]
  {4063BE15-3B08-470D-A0D5-B37161CFFD69} <C:\Program Files\QuickTime\QTPlugin.ocx, (Signed) Apple Inc.>
[HHCtrl Object]
  {41B23C28-488E-4E5C-ACE2-BB0BBABE99E8} <C:\WINDOWS\system32\hhctrl.ocx, (Signed) Microsoft Corporation>
[XML Document]
  {48123BC4-99D9-11D1-A6B3-00C04FD91555} <%SystemRoot%\System32\MSXML3.DLL, (Signed) N/A>
[]
  {48DD0448-9209-4F81-9F6D-D83562940134} <, >
[]
  {48FF3953-E112-0792-8623-6D550EA82F6F} <, >
[Microsoft Terminal Services Client Control (redist)]
  {4eb89ff4-7f78-4a0f-8b8d-2bf02e94e4b2} <%systemroot%\system32\mstscax.dll, (Signed) N/A>
[Microsoft Terminal Services Client Control (redist)]
  {4EDCB26C-D24C-4e72-AF07-B576699AC0DE} <%systemroot%\system32\mstscax.dll, (Signed) N/A>
[]
  {4F1E5B1A-2A80-42CA-8532-2D05CB959537} <, >
[]
  {55027008-315F-4F45-BBC3-8BE119764741} <, >
[Shell Name Space]
  {55136805-B2DE-11D1-B9F2-00A0C98BC547} <C:\WINDOWS\system32\ieframe.dll, (Signed) Microsoft Corporation>
[isInstalled Class]
  {5852F5ED-8BF4-11D4-A245-0080C6F74284} <C:\Program Files\Java\jre1.6.0_07\bin\wsdetect.dll, Sun Microsystems, Inc.>
[Yahoo! IE Services Button]
  {5BAB4B5B-68BC-4B02-94D6-2FC0DE4A7897} <C:\Program Files\Yahoo!\Common\yiesrvc.dll, (Signed) Yahoo! Inc.>
[]
  {5F3B3060-09E0-44C6-86F7-BC7B02B57BEE} <, >
[YMP Datagrid]
  {5F810AFC-BB5F-4416-BE63-E01DD117BD6C} <"C:\Program Files\Yahoo!\Yahoo! Music Jukebox\Support\datagrid.dll", N/A>
[WUWebControl Class]
  {6414512B-B978-451D-A0D8-FCFDF33E833C} <C:\WINDOWS\system32\wuweb.dll, (Signed) Microsoft Corporation>
[Windows Media Player]
  {6BF52A52-394A-11D3-B153-00C04F79FAA6} <C:\WINDOWS\system32\wmp.dll, (Signed) Microsoft Corporation>
[Active Desktop Mover]
  {72267F6A-A6F9-11D0-BC94-00C04FB67863} <%SystemRoot%\system32\SHELL32.dll, (Signed) N/A>
[Microsoft Terminal Services Client Control (redist)]
  {7390f3d8-0439-4c05-91e3-cf5cb290c3d0} <%systemroot%\system32\mstscax.dll, (Signed) N/A>
[Microsoft Terminal Services Client Control (redist)]
  {7584c670-2274-4efb-b00b-d6aaba6d3850} <%systemroot%\system32\mstscax.dll, (Signed) N/A>
[SSVHelper Class]
  {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} <C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll, (Signed) Sun Microsystems, Inc.>
[]
  {77980A0F-9360-442F-9942-74FE3DC13BC8} <, >
[]
  {78FAE917-35E2-4A6B-9B40-000AD226482B} <, >
[Microsoft Web Browser]
  {8856F961-340A-11D0-A96B-00C04FD705A2} <C:\WINDOWS\system32\ieframe.dll, (Signed) Microsoft Corporation>
[]
  {88D758A3-D33B-45FD-91E3-67749B4057FA} <, >
[XML DOM Document 6.0]
  {88D96A05-F192-11D4-A65F-0040963251E5} <C:\WINDOWS\system32\msxml6.dll, (Signed) Microsoft Corporation>
[Free Threaded XML DOM Document 6.0]
  {88D96A06-F192-11D4-A65F-0040963251E5} <C:\WINDOWS\system32\msxml6.dll, (Signed) Microsoft Corporation>
[XSL Template 6.0]
  {88D96A08-F192-11D4-A65F-0040963251E5} <C:\WINDOWS\system32\msxml6.dll, (Signed) Microsoft Corporation>
[XML HTTP 6.0]
  {88D96A0A-F192-11D4-A65F-0040963251E5} <C:\WINDOWS\system32\msxml6.dll, (Signed) Microsoft Corporation>
[Java Plug-in 1.6.0_07]
  {8AD9C840-044E-11D1-B3E9-00805F499D93} <C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll, (Signed) Sun Microsystems, Inc.>
[]
  {8FEFF364-6A5F-4966-A917-A3AC28411659} <, >
[Microsoft Terminal Services Client Control (redist)]
  {9059f30f-4eb1-4bd2-9fdc-36f43a218f4a} <%systemroot%\system32\mstscax.dll, (Signed) N/A>
[Shutterfly Picture Upload Plugin]
  {9600F64D-755F-11D4-A47F-0001023E6D5A} <C:\WINDOWS\Downloaded Program Files\sfuploadplugin.ocx, (Signed) Shutterfly, Inc.>
[]
  {9D39223E-AE8E-11D4-8FD3-00D0B7730277} <, >
[BitTorrentDNA Class]
  {A3C6DAFC-E193-42FC-ADCA-5316B5D6D653} <C:\Program Files\DNA\plugins\npbtdna.dll, BitTorrent, Inc.>
[RMGetLicense Class]
  {A9FC132B-096D-460B-B7D5-1DB0FAE0C062} <C:\WINDOWS\system32\msnetobj.dll, (Signed) Microsoft Corporation>
[Google Toolbar Helper]
  {AA58ED58-01DD-4D91-8333-CF10577473F7} <c:\program files\google\googletoolbar1.dll, N/A>
[]
  {AAF15A90-F3EC-4FEE-9A00-F65B25B83D05} <, >
[]
  {AB0E6E3B-4C96-48D8-A3FF-3235B524B7F9} <, >
[Microsoft Scriptlet Component]
  {AE24FDAE-03C6-11D1-8B76-0080C744F389} <C:\WINDOWS\system32\mshtml.dll, (Signed) Microsoft Corporation>
[Google Toolbar Notifier BHO]
  {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} <C:\Program Files\Google\GoogleToolbarNotifier\2.1.615.5858\swg.dll, (Signed) Google Inc.>
[SearchAssistantOC]
  {B45FF030-4447-11D2-85DE-00C04FA35C89} <%SystemRoot%\System32\shdocvw.dll, (Signed) N/A>
[MSN Games - Installer]
  {B8BE5E93-A60C-4D26-A2DC-220313175592} <C:\WINDOWS\Downloaded Program Files\ZIntro.ocx, (Signed) Microsoft Corporation>
[C:\WINDOWS\system32\nzfiu3h78di.dll]
  {BA603215-23F2-42AD-F4E4-00AAC39CAA53} <C:\WINDOWS\system32\nzfiu3h78di.dll, N/A>
[RDS.DataSpace]
  {BD96C556-65A3-11D0-983A-00C04FC29E36} <C:\Program Files\Common Files\System\msadc\msadco.dll, (Signed) Microsoft Corporation>
[Adobe PDF Reader]
  {CA8A9780-280D-11CF-A24D-444553540000} <C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroPDF.dll, (Signed) Adobe Systems, Inc.>
[AUDIO__MID Moniker Class]
  {CD3AFA74-B84F-48F0-9393-7EDC34128127} <C:\WINDOWS\system32\wmp.dll, (Signed) Microsoft Corporation>
[AUDIO__WAV Moniker Class]
  {CD3AFA7B-B84F-48F0-9393-7EDC34128127} <C:\WINDOWS\system32\wmp.dll, (Signed) Microsoft Corporation>
[VIDEO__X_MS_ASF Moniker Class]
  {CD3AFA8F-B84F-48F0-9393-7EDC34128127} <C:\WINDOWS\system32\wmp.dll, (Signed) Microsoft Corporation>
[]
  {CD67F990-D8E9-11D2-98FE-00C0F0318AFE} <, >
[Msxml]
  {CFC399AF-D876-11D0-9C10-00C04FC99C8E} <%SystemRoot%\System32\MSXML3.DLL, (Signed) N/A>
[RealPlayer G2 Control]
  {CFCDAA03-8BE4-11CF-B84B-0020AFBBCCFA} <C:\WINDOWS\system32\rmoc3260.dll, (Signed) RealNetworks, Inc.>
[Shockwave Flash Object]
  {D27CDB6E-AE6D-11CF-96B8-444553540000} <C:\WINDOWS\system32\Macromed\Flash\Flash10b.ocx, (Signed) Adobe Systems, Inc.>
[OfficeObj Class]
  {D2BD7935-05FC-11D2-9059-00C04FD7A1BD} <, >
[iTunesDetector Class]
  {D719897A-B07A-4C0C-AEA9-9B663A28DFCB} <F:\ITDetector.ocx, (Signed) Apple Inc.>
[]
  {DA4F543C-C8A9-4E88-9A79-548CBB46F18F} <, >
[]
  {DCE2F8B1-A520-11D4-8FD0-00D0B7730277} <, >
[QuickTimeCheck Class]
  {DE4AF3B0-F4D4-11D3-B41A-0050DA2E6C21} <C:\Program Files\QuickTime\QTSystem\QuickTimeCheck.ocx, (Signed) Apple Inc.>
[Microsoft Silverlight]
  {DFEAF541-F3E1-4C24-ACAC-99C30715084A} <C:\Program Files\Microsoft Silverlight\2.0.40115.0\npctrl.dll, N/A>
[]
  {E023F504-0C5A-4750-A1E7-A9046DEA8A21} <, >
[]
  {E2E2DD38-D088-4134-82B7-F2BA38496583} <, >
[WebViewFolderIcon Class]
  {E5DF9D10-3B52-11D1-83E8-00A0C90DC849} <C:\WINDOWS\System32\webvw.dll, (Signed) Microsoft Corporation>
[]
  {E9670165-86FE-4C34-8C4B-D3158DDC5D92} <, >
[]
  {EBF9B040-94C9-11D4-9064-00C04F78ACF9} <, >
[XML HTTP Request]
  {ED8C108E-4349-11D2-91A4-00C04F7969E8} <%SystemRoot%\System32\MSXML3.DLL, (Signed) N/A>
[Yahoo! Toolbar]
  {EF99BD32-C1FB-11D2-892F-0090271D4F88} <C:\PROGRA~1\Yahoo!\Companion\Installs\cpn1\yt.dll, (Signed) Yahoo! Inc.>
[XML DOM Document 3.0]
  {F5078F32-C551-11D3-89B9-0000F81FE221} <%SystemRoot%\System32\MSXML3.DLL, (Signed) N/A>
[Free Threaded XML DOM Document 3.0]
  {F5078F33-C551-11D3-89B9-0000F81FE221} <%SystemRoot%\System32\MSXML3.DLL, (Signed) N/A>
[XML HTTP 3.0]
  {F5078F35-C551-11D3-89B9-0000F81FE221} <%SystemRoot%\System32\MSXML3.DLL, (Signed) N/A>
[XSL Template 3.0]
  {F5078F36-C551-11D3-89B9-0000F81FE221} <%SystemRoot%\System32\MSXML3.DLL, (Signed) N/A>
[XML DOM Document]
  {F6D90F11-9C73-11D3-B32E-00C04F990BB4} <%SystemRoot%\System32\MSXML3.DLL, (Signed) N/A>
[Free Threaded XML DOM Document]
  {F6D90F12-9C73-11D3-B32E-00C04F990BB4} <%SystemRoot%\System32\MSXML3.DLL, (Signed) N/A>
[XML HTTP]
  {F6D90F16-9C73-11D3-B32E-00C04F990BB4} <%SystemRoot%\System32\MSXML3.DLL, (Signed) N/A>
[YMP Datagrid]
  {FABB4B08-BA28-419F-A330-DF7C9A79DCB2} <"C:\Program Files\Yahoo!\Yahoo! Music Jukebox\Support\datagrid.dll", N/A>
[]
  {FB5F1910-F110-11D2-BB9E-00C04F795683} <, >
[Admin About]
  {FCA9826E-3AD7-52E7-ECF8-F78087FDA96B} <C:\PROGRA~1\GlueData\creative store.dll, N/A>
[]
  {FD0B6769-6490-4A91-AA0A-B5AE0DC75AC9} <, >
[IERPCtl Class]
  {FDC7A535-4070-4B92-A0EA-D9994BCC0DC5} <c:\program files\real\realplayer\rpplugins\ierpplug.dll, (Signed) RealNetworks, Inc.>
[]
  {FDD3B846-8D59-4FFB-8758-209B6AD74ACC} <C:\Program Files\Microsoft Money\System\mnyviewer.dll, Microsoft Corporation>

==================================
Running Processes
[PID: 576 / SYSTEM][\SystemRoot\System32\smss.exe]  [(Verified) Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)]
[PID: 792 / SYSTEM][\??\C:\WINDOWS\system32\csrss.exe]  [(Verified) Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)]
	[C:\Program Files\Spyware Doctor\smum32.dll]  [PC Tools, 6.1.0.2]
	[C:\Program Files\Spyware Doctor\klg.dat]  [PC Tools, 6.1.0.1]
[PID: 816 / SYSTEM][\??\C:\WINDOWS\system32\winlogon.exe]  [(Verified) Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2113)]
	[C:\WINDOWS\system32\gakuyama.dll]  [N/A, ]
	[C:\Program Files\Spyware Doctor\smum32.dll]  [PC Tools, 6.1.0.2]
	[C:\Program Files\Spyware Doctor\klg.dat]  [PC Tools, 6.1.0.1]
[PID: 864 / SYSTEM][C:\WINDOWS\system32\services.exe]  [(Verified) Microsoft Corporation, 5.1.2600.5755 (xpsp_sp3_gdr.090206-1234)]
	[C:\WINDOWS\system32\gakuyama.dll]  [N/A, ]
	[C:\Program Files\Spyware Doctor\smum32.dll]  [PC Tools, 6.1.0.2]
	[C:\Program Files\Spyware Doctor\klg.dat]  [PC Tools, 6.1.0.1]
[PID: 876 / SYSTEM][C:\WINDOWS\system32\lsass.exe]  [(Verified) Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2113)]
	[C:\WINDOWS\system32\gakuyama.dll]  [N/A, ]
	[C:\WINDOWS\system32\mozerado.dll]  [N/A, ]
	[C:\WINDOWS\wmslim.dll]  [user, 1, 0, 0, 9]
	[C:\Program Files\Spyware Doctor\smum32.dll]  [PC Tools, 6.1.0.2]
	[C:\Program Files\Spyware Doctor\klg.dat]  [PC Tools, 6.1.0.1]
[PID: 1048 / SYSTEM][C:\WINDOWS\system32\svchost.exe]  [(Verified) Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)]
	[C:\WINDOWS\system32\gakuyama.dll]  [N/A, ]
	[C:\Program Files\Spyware Doctor\smum32.dll]  [PC Tools, 6.1.0.2]
	[C:\Program Files\Spyware Doctor\klg.dat]  [PC Tools, 6.1.0.1]
[PID: 1100 / NETWORK SERVICE][C:\WINDOWS\system32\svchost.exe]  [(Verified) Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)]
	[C:\WINDOWS\system32\gakuyama.dll]  [N/A, ]
	[\\?\globalroot\Device\__max++>\A45B2F2A.x86.dll]  [N/A, ]
	[C:\Program Files\Bonjour\mdnsNSP.dll]  [Apple Inc., 1,0,6,2]
	[C:\Program Files\Spyware Doctor\smum32.dll]  [PC Tools, 6.1.0.2]
	[C:\Program Files\Spyware Doctor\klg.dat]  [PC Tools, 6.1.0.1]
[PID: 1172 / SYSTEM][C:\WINDOWS\System32\svchost.exe]  [(Verified) Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)]
	[C:\WINDOWS\System32\gakuyama.dll]  [N/A, ]
	[\\?\globalroot\Device\__max++>\A45B2F2A.x86.dll]  [N/A, ]
	[C:\Program Files\Bonjour\mdnsNSP.dll]  [Apple Inc., 1,0,6,2]
	[C:\Program Files\Spyware Doctor\smum32.dll]  [PC Tools, 6.1.0.2]
	[C:\Program Files\Spyware Doctor\klg.dat]  [PC Tools, 6.1.0.1]
[PID: 1260 / SYSTEM][C:\WINDOWS\system32\svchost.exe]  [(Verified) Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)]
	[C:\WINDOWS\system32\gakuyama.dll]  [N/A, ]
	[C:\Program Files\Spyware Doctor\smum32.dll]  [PC Tools, 6.1.0.2]
	[C:\Program Files\Spyware Doctor\klg.dat]  [PC Tools, 6.1.0.1]
[PID: 1388 / NETWORK SERVICE][C:\WINDOWS\System32\svchost.exe]  [(Verified) Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)]
	[C:\WINDOWS\System32\gakuyama.dll]  [N/A, ]
	[\\?\globalroot\Device\__max++>\A45B2F2A.x86.dll]  [N/A, ]
	[C:\Program Files\Spyware Doctor\smum32.dll]  [PC Tools, 6.1.0.2]
	[C:\Program Files\Spyware Doctor\klg.dat]  [PC Tools, 6.1.0.1]
[PID: 1416 / LOCAL SERVICE][C:\WINDOWS\System32\svchost.exe]  [(Verified) Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)]
	[C:\WINDOWS\System32\gakuyama.dll]  [N/A, ]
	[\\?\globalroot\Device\__max++>\A45B2F2A.x86.dll]  [N/A, ]
	[C:\Program Files\Spyware Doctor\smum32.dll]  [PC Tools, 6.1.0.2]
	[C:\Program Files\Spyware Doctor\klg.dat]  [PC Tools, 6.1.0.1]
[PID: 1636 / SYSTEM][C:\WINDOWS\system32\spoolsv.exe]  [(Verified) Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-0852)]
	[C:\WINDOWS\system32\gakuyama.dll]  [N/A, ]
	[\\?\globalroot\Device\__max++>\A45B2F2A.x86.dll]  [N/A, ]
	[C:\WINDOWS\system32\hpzlnt04.dll]  [HP, 2,80,0,0]
	[C:\Program Files\Bonjour\mdnsNSP.dll]  [Apple Inc., 1,0,6,2]
	[C:\Program Files\Spyware Doctor\smum32.dll]  [PC Tools, 6.1.0.2]
	[C:\Program Files\Spyware Doctor\klg.dat]  [PC Tools, 6.1.0.1]
[PID: 1704 / LOCAL SERVICE][C:\WINDOWS\System32\svchost.exe]  [(Verified) Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)]
	[C:\WINDOWS\System32\gakuyama.dll]  [N/A, ]
	[C:\Program Files\Spyware Doctor\smum32.dll]  [PC Tools, 6.1.0.2]
	[C:\Program Files\Spyware Doctor\klg.dat]  [PC Tools, 6.1.0.1]
	[\\?\globalroot\Device\__max++>\A45B2F2A.x86.dll]  [N/A, ]
	[C:\Program Files\Bonjour\mdnsNSP.dll]  [Apple Inc., 1,0,6,2]
[PID: 1740 / SYSTEM][C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe]  [Apple Inc., 2.50.39.0]
	[C:\WINDOWS\system32\gakuyama.dll]  [N/A, ]
	[\\?\globalroot\Device\__max++>\A45B2F2A.x86.dll]  [N/A, ]
	[C:\Program Files\Spyware Doctor\smum32.dll]  [PC Tools, 6.1.0.2]
	[C:\Program Files\Spyware Doctor\klg.dat]  [PC Tools, 6.1.0.1]
[PID: 1760 / SYSTEM][C:\Program Files\Bonjour\mDNSResponder.exe]  [Apple Inc., 1,0,6,2]
	[C:\WINDOWS\system32\gakuyama.dll]  [N/A, ]
	[\\?\globalroot\Device\__max++>\A45B2F2A.x86.dll]  [N/A, ]
	[C:\Program Files\Spyware Doctor\smum32.dll]  [PC Tools, 6.1.0.2]
	[C:\Program Files\Spyware Doctor\klg.dat]  [PC Tools, 6.1.0.1]
[PID: 1816 / SYSTEM][C:\WINDOWS\system32\cisvc.exe]  [(Verified) Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-0852)]
	[C:\WINDOWS\system32\gakuyama.dll]  [N/A, ]
	[C:\Program Files\Spyware Doctor\smum32.dll]  [PC Tools, 6.1.0.2]
	[C:\Program Files\Spyware Doctor\klg.dat]  [PC Tools, 6.1.0.1]
[PID: 500 / SYSTEM][C:\Program Files\Network Associates\Common Framework\FrameworkService.exe]  [Network Associates, Inc., 3.1.1.184]
	[C:\Program Files\Network Associates\Common Framework\nailog.dll]  [Network Associates, Inc., 3.1.1.159]
	[C:\Program Files\Network Associates\Common Framework\naXML.dll]  [Network Associates, Inc., 3.1.1.159]
	[C:\Program Files\Network Associates\Common Framework\NaiSign.dll]  [Network Associates, Inc., 3.1.0.197]
	[C:\Program Files\Network Associates\Common Framework\naCmnLib.dll]  [Network Associates, Inc., 3.1.1.159]
	[C:\WINDOWS\system32\gakuyama.dll]  [N/A, ]
	[C:\Program Files\Network Associates\Common Framework\0409\AgentRes.dll]  [Network Associates, Inc., 3.1.1.184]
	[C:\Program Files\Network Associates\Common Framework\Logging.dll]  [Network Associates, Inc., 3.1.1.184]
	[C:\Program Files\Network Associates\Common Framework\InternetManager.dll]  [Network Associates, Inc., 3.1.1.184]
	[C:\Program Files\Network Associates\Common Framework\naInet.dll]  [Network Associates, Inc., 3.1.1.159]
	[C:\Program Files\Network Associates\Common Framework\UserSpace.dll]  [Network Associates, Inc., 3.1.1.184]
	[C:\Program Files\Network Associates\Common Framework\SecureFrameworkFactory.dll]  [Network Associates, Inc., 3.1.1.184]
	[C:\Program Files\Network Associates\Common Framework\Management.dll]  [Network Associates, Inc., 3.1.1.184]
	[C:\Program Files\Network Associates\Common Framework\naPolicyManager.dll]  [Network Associates, Inc., 3.1.1.184]
	[C:\Program Files\Network Associates\Common Framework\PsApi.dll]  [Microsoft Corporation, 4.00]
	[C:\Program Files\Network Associates\Common Framework\ScriptSubSys.dll]  [Network Associates, Inc., 3.1.1.184]
	[C:\Program Files\Network Associates\Common Framework\UpdateSubSys.dll]  [Network Associates, Inc., 3.1.1.184]
	[C:\Program Files\Network Associates\Common Framework\Scheduler.dll]  [Network Associates, Inc., 3.1.1.184]
	[C:\Program Files\Spyware Doctor\smum32.dll]  [PC Tools, 6.1.0.2]
	[C:\Program Files\Spyware Doctor\klg.dat]  [PC Tools, 6.1.0.1]
[PID: 684 / SYSTEM][C:\Program Files\Network Associates\VirusScan\Mcshield.exe]  [Network Associates, Inc., 7.1.0.116]
	[C:\Program Files\Network Associates\VirusScan\Res09\McShield.DLL]  [Network Associates, Inc., 7.1.0.116]
	[C:\Program Files\Network Associates\VirusScan\FTL.Dll]  [Network Associates, Inc., 7.1.0.116]
	[C:\Program Files\Network Associates\VirusScan\naiann.dll]  [Network Associates, Inc., 7.1.0.116]
	[C:\Program Files\Network Associates\VirusScan\NAEVENTU.DLL]  [Network Associates, Inc., 7.1.0.289]
	[\\?\globalroot\Device\__max++>\A45B2F2A.x86.dll]  [N/A, ]
	[C:\Program Files\Network Associates\VirusScan\Res09\naEvtRes.dll]  [Network Associates, Inc., 7.1.0.289]
	[C:\Program Files\Common Files\Network Associates\Engine\MCSCAN32.DLL]  [McAfee, Inc., 5.3.00]
	[C:\Program Files\Spyware Doctor\smum32.dll]  [PC Tools, 6.1.0.2]
	[C:\Program Files\Spyware Doctor\klg.dat]  [PC Tools, 6.1.0.1]
[PID: 1368 / SYSTEM][C:\Program Files\Network Associates\VirusScan\VsTskMgr.exe]  [Network Associates, Inc., 7.1.0.187]
	[C:\Program Files\Network Associates\VirusScan\SHUTIL.dll]  [Network Associates, Inc., 7.1.0.187]
	[C:\Program Files\Network Associates\VirusScan\FTL.dll]  [Network Associates, Inc., 7.1.0.116]
	[C:\WINDOWS\system32\gakuyama.dll]  [N/A, ]
	[C:\Program Files\Network Associates\VirusScan\Res09\VsTskMgr.dll]  [Network Associates, Inc., 7.1.0.187]
	[C:\Program Files\Network Associates\VirusScan\Res09\Product.dll]  [Network Associates, Inc., 7.1.0.187]
	[C:\Program Files\Network Associates\VirusScan\NAKRNLU.DLL]  [Network Associates, Inc., 7.1.0.289]
	[C:\Program Files\Network Associates\VirusScan\NAUTILU.DLL]  [Network Associates, Inc., 7.1.0.289]
	[C:\Program Files\Network Associates\VirusScan\Res09\naUtlRes.dll]  [Network Associates, Inc., 7.1.0.289]
	[C:\Program Files\Network Associates\VirusScan\NAEVENTU.DLL]  [Network Associates, Inc., 7.1.0.289]
	[\\?\globalroot\Device\__max++>\A45B2F2A.x86.dll]  [N/A, ]
	[C:\Program Files\Network Associates\VirusScan\Res09\naEvtRes.dll]  [Network Associates, Inc., 7.1.0.289]
	[C:\Program Files\Network Associates\VirusScan\Res09\Shutilrc.dll]  [Network Associates, Inc., 7.1.0.187]
	[C:\Program Files\Network Associates\VirusScan\MIDUtil.Dll]  [Network Associates, Inc., 7.1.0.147]
	[C:\Program Files\Spyware Doctor\smum32.dll]  [PC Tools, 6.1.0.2]
	[C:\Program Files\Spyware Doctor\klg.dat]  [PC Tools, 6.1.0.1]
[PID: 928 / SYSTEM][C:\PROGRA~1\NETWOR~1\COMMON~1\naPrdMgr.exe]  [Network Associates, Inc., 3.1.1.184]
	[C:\PROGRA~1\NETWOR~1\COMMON~1\nailog.dll]  [Network Associates, Inc., 3.1.1.159]
	[C:\PROGRA~1\NETWOR~1\COMMON~1\naCmnLib.dll]  [Network Associates, Inc., 3.1.1.159]
	[C:\PROGRA~1\NETWOR~1\COMMON~1\naXML.dll]  [Network Associates, Inc., 3.1.1.159]
	[C:\PROGRA~1\NETWOR~1\COMMON~1\NaiSign.dll]  [Network Associates, Inc., 3.1.0.197]
	[C:\WINDOWS\system32\gakuyama.dll]  [N/A, ]
	[C:\PROGRA~1\NETWOR~1\COMMON~1\0409\AgentRes.dll]  [Network Associates, Inc., 3.1.1.184]
	[C:\Program Files\Network Associates\VirusScan\VsPlugin.dll]  [Network Associates, Inc., 7.1.0.187]
	[C:\Program Files\Network Associates\VirusScan\SHUTIL.dll]  [Network Associates, Inc., 7.1.0.187]
	[C:\Program Files\Network Associates\VirusScan\FTL.dll]  [Network Associates, Inc., 7.1.0.116]
	[C:\Program Files\Network Associates\VirusScan\Res09\Product.dll]  [Network Associates, Inc., 7.1.0.187]
	[C:\Program Files\Network Associates\VirusScan\Res09\Shutilrc.dll]  [Network Associates, Inc., 7.1.0.187]
	[C:\Program Files\Network Associates\VirusScan\NAKRNLU.DLL]  [Network Associates, Inc., 7.1.0.289]
	[C:\Program Files\Network Associates\VirusScan\NAUTILU.DLL]  [Network Associates, Inc., 7.1.0.289]
	[C:\Program Files\Network Associates\VirusScan\Res09\naUtlRes.dll]  [Network Associates, Inc., 7.1.0.289]
	[C:\Program Files\Spyware Doctor\smum32.dll]  [PC Tools, 6.1.0.2]
	[C:\Program Files\Spyware Doctor\klg.dat]  [PC Tools, 6.1.0.1]
[PID: 260 / SYSTEM][C:\Program Files\Spyware Doctor\pctsAuxs.exe]  [PC Tools, 6, 1, 0, 12]
	[C:\WINDOWS\system32\gakuyama.dll]  [N/A, ]
	[C:\Program Files\Spyware Doctor\PCTWSC.dll]  [PC Tools, 2, 0, 1, 6]
	[C:\Program Files\Spyware Doctor\smum32.dll]  [PC Tools, 6.1.0.2]
	[C:\Program Files\Spyware Doctor\klg.dat]  [PC Tools, 6.1.0.1]
[PID: 1232 / Tim][C:\Program Files\Network Associates\VirusScan\SHSTAT.EXE]  [Network Associates, Inc., 7.1.0.187]
	[C:\Program Files\Network Associates\VirusScan\SHUTIL.dll]  [Network Associates, Inc., 7.1.0.187]
	[C:\Program Files\Network Associates\VirusScan\FTL.dll]  [Network Associates, Inc., 7.1.0.116]
	[C:\WINDOWS\system32\gakuyama.dll]  [N/A, ]
	[C:\Program Files\Network Associates\VirusScan\Res09\shstat.dll]  [Network Associates, Inc., 7.1.0.187]
	[C:\Program Files\Network Associates\VirusScan\Res09\Product.dll]  [Network Associates, Inc., 7.1.0.187]
	[C:\Program Files\Network Associates\VirusScan\Res09\McShield.dll]  [Network Associates, Inc., 7.1.0.116]
	[C:\Program Files\Network Associates\VirusScan\NAKRNLU.DLL]  [Network Associates, Inc., 7.1.0.289]
	[C:\Program Files\Network Associates\VirusScan\NAUTILU.DLL]  [Network Associates, Inc., 7.1.0.289]
	[C:\Program Files\Network Associates\VirusScan\Res09\naUtlRes.dll]  [Network Associates, Inc., 7.1.0.289]
	[C:\Program Files\Network Associates\VirusScan\Res09\Shutilrc.dll]  [Network Associates, Inc., 7.1.0.187]
	[C:\Program Files\Spyware Doctor\smum32.dll]  [PC Tools, 6.1.0.2]
	[C:\Program Files\Spyware Doctor\klg.dat]  [PC Tools, 6.1.0.1]
	[C:\Program Files\Spyware Doctor\pctgmhk.dll]  [PC Tools, 6.1.0.9]
[PID: 1336 / Tim][C:\Program Files\Network Associates\Common Framework\UpdaterUI.exe]  [Network Associates, Inc., 3.1.1.184]
	[C:\Program Files\Network Associates\Common Framework\nailog.dll]  [Network Associates, Inc., 3.1.1.159]
	[C:\Program Files\Network Associates\Common Framework\naCmnLib.dll]  [Network Associates, Inc., 3.1.1.159]
	[C:\Program Files\Network Associates\Common Framework\naXML.dll]  [Network Associates, Inc., 3.1.1.159]
	[C:\Program Files\Network Associates\Common Framework\NaiSign.dll]  [Network Associates, Inc., 3.1.0.197]
	[C:\WINDOWS\system32\gakuyama.dll]  [N/A, ]
	[C:\Program Files\Network Associates\Common Framework\0409\UpdRes.dll]  [Network Associates, Inc., 3.1.1.184]
	[C:\Program Files\Network Associates\Common Framework\0409\AgentRes.dll]  [Network Associates, Inc., 3.1.1.184]
	[C:\Program Files\Network Associates\Common Framework\SecureFrameworkFactory.dll]  [Network Associates, Inc., 3.1.1.184]
	[C:\Program Files\Spyware Doctor\smum32.dll]  [PC Tools, 6.1.0.2]
	[C:\Program Files\Spyware Doctor\klg.dat]  [PC Tools, 6.1.0.1]
	[C:\Program Files\Spyware Doctor\pctgmhk.dll]  [PC Tools, 6.1.0.9]
[PID: 1384 / Tim][C:\Program Files\Roxio\Easy CD Creator 5\DirectCD\DirectCD.exe]  [Roxio, 5.2.0.91]
	[C:\Program Files\Roxio\Easy CD Creator 5\DirectCD\CDUDFLIB.dll]  [Roxio, 5.2.0.91]
	[C:\Program Files\Roxio\Easy CD Creator 5\DirectCD\UDFRWLIB.dll]  [Roxio, 5.2.0.91]
	[C:\WINDOWS\system32\gakuyama.dll]  [N/A, ]
	[C:\Program Files\Spyware Doctor\smum32.dll]  [PC Tools, 6.1.0.2]
	[C:\Program Files\Spyware Doctor\klg.dat]  [PC Tools, 6.1.0.1]
	[C:\Program Files\Spyware Doctor\pctgmhk.dll]  [PC Tools, 6.1.0.9]
[PID: 1456 / Tim][C:\Program Files\Hewlett-Packard\Digital Imaging\Unload\hpqcmon.exe]  [, 2.0.0.133]
	[C:\Program Files\Hewlett-Packard\Digital Imaging\Unload\HpqUnRes.dll]  [Hewlett-Packard, 2.0.0.133]
	[C:\WINDOWS\system32\gakuyama.dll]  [N/A, ]
	[C:\Program Files\Hewlett-Packard\Digital Imaging\bin\HpqUtil.dll]  [, 2.0.0.138]
	[C:\Program Files\Spyware Doctor\smum32.dll]  [PC Tools, 6.1.0.2]
	[C:\Program Files\Spyware Doctor\klg.dat]  [PC Tools, 6.1.0.1]
	[C:\Program Files\Spyware Doctor\pctgmhk.dll]  [PC Tools, 6.1.0.9]
[PID: 1468 / Tim][C:\Program Files\Hewlett-Packard\HP Share-to-Web\hpgs2wnd.exe]  [Hewlett-Packard, 2,3,0,0\ 162]
	[C:\WINDOWS\system32\gakuyama.dll]  [N/A, ]
	[C:\Program Files\Hewlett-Packard\HP Share-to-Web\S2WNSRES.DLL]  [Hewlett-Packard, 2, 6, 0, 162]
	[C:\Program Files\Hewlett-Packard\HP Share-to-Web\hpgs2wnfps.dll]  [N/A, ]
	[C:\Program Files\Spyware Doctor\smum32.dll]  [PC Tools, 6.1.0.2]
	[C:\Program Files\Spyware Doctor\klg.dat]  [PC Tools, 6.1.0.1]
	[C:\Program Files\Spyware Doctor\pctgmhk.dll]  [PC Tools, 6.1.0.9]
[PID: 1184 / Tim][C:\WINDOWS\System32\spool\drivers\w32x86\3\hpztsb04.exe]  [HP, 2,80,0,0]
	[C:\WINDOWS\System32\spool\drivers\w32x86\3\HPZR3204.DLL]  [HP, 2,80,0,0]
	[C:\WINDOWS\system32\gakuyama.dll]  [N/A, ]
	[C:\Program Files\Spyware Doctor\smum32.dll]  [PC Tools, 6.1.0.2]
	[C:\Program Files\Spyware Doctor\klg.dat]  [PC Tools, 6.1.0.1]
	[C:\Program Files\Spyware Doctor\pctgmhk.dll]  [PC Tools, 6.1.0.9]
[PID: 1124 / Tim][C:\WINDOWS\MXOALDR.EXE]  [Cypress Semiconductor, 6.00.1010.0 ]
	[C:\WINDOWS\system32\gakuyama.dll]  [N/A, ]
	[C:\Program Files\Spyware Doctor\smum32.dll]  [PC Tools, 6.1.0.2]
	[C:\Program Files\Spyware Doctor\klg.dat]  [PC Tools, 6.1.0.1]
	[C:\Program Files\Spyware Doctor\pctgmhk.dll]  [PC Tools, 6.1.0.9]
[PID: 1580 / Tim][C:\WINDOWS\system32\kmw_run.exe]  [Kensington Technology Group, 6.22.4.1]
	[C:\Program Files\Kensington\MouseWorks\KMW_LOC.DLL]  [Kensington Technology Group, 6.22.4.1]
	[C:\WINDOWS\system32\gakuyama.dll]  [N/A, ]
	[C:\Program Files\Spyware Doctor\smum32.dll]  [PC Tools, 6.1.0.2]
	[C:\Program Files\Spyware Doctor\klg.dat]  [PC Tools, 6.1.0.1]
	[C:\Program Files\Spyware Doctor\pctgmhk.dll]  [PC Tools, 6.1.0.9]
[PID: 276 / Tim][C:\Program Files\Hewlett-Packard\HP Share-to-Web\hpgs2wnf.exe]  [, 2, 6, 0, 162]
	[C:\WINDOWS\system32\gakuyama.dll]  [N/A, ]
	[C:\Program Files\Hewlett-Packard\HP Share-to-Web\S2WNSRES.DLL]  [Hewlett-Packard, 2, 6, 0, 162]
	[C:\Program Files\Hewlett-Packard\HP Share-to-Web\hpgs2wnfps.dll]  [N/A, ]
	[C:\Program Files\Spyware Doctor\smum32.dll]  [PC Tools, 6.1.0.2]
	[C:\Program Files\Spyware Doctor\klg.dat]  [PC Tools, 6.1.0.1]
	[C:\Program Files\Spyware Doctor\pctgmhk.dll]  [PC Tools, 6.1.0.9]
[PID: 416 / Tim][C:\WINDOWS\explorer.exe]  [(Verified) Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
	[C:\WINDOWS\system32\gakuyama.dll]  [N/A, ]
	[C:\WINDOWS\system32\nzfiu3h78di.dll]  [N/A, ]
	[C:\WINDOWS\wmslim.dll]  [user, 1, 0, 0, 9]
	[\\?\globalroot\Device\__max++>\A45B2F2A.x86.dll]  [N/A, ]
	[C:\Program Files\Bonjour\mdnsNSP.dll]  [Apple Inc., 1,0,6,2]
	[C:\Program Files\Spyware Doctor\smum32.dll]  [PC Tools, 6.1.0.2]
	[C:\Program Files\Spyware Doctor\klg.dat]  [PC Tools, 6.1.0.1]
	[C:\Program Files\Spyware Doctor\pctgmhk.dll]  [PC Tools, 6.1.0.9]
	[C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\PDFShell.dll]  [Adobe Systems, Inc., 8.1.0.0]
	[C:\Program Files\Illustrate\dBpowerAMP\dBShell.dll]  [, 6, 4, 0, 1]
[PID: 2208 / SYSTEM][C:\WINDOWS\System32\svchost.exe]  [(Verified) Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)]
	[C:\WINDOWS\System32\gakuyama.dll]  [N/A, ]
	[C:\Program Files\Spyware Doctor\smum32.dll]  [PC Tools, 6.1.0.2]
	[C:\Program Files\Spyware Doctor\klg.dat]  [PC Tools, 6.1.0.1]
[PID: 2316 / SYSTEM][C:\Program Files\Viewpoint\Common\ViewpointService.exe]  [Viewpoint Corporation, 2, 0, 0, 54]
	[C:\Program Files\Spyware Doctor\smum32.dll]  [PC Tools, 6.1.0.2]
	[C:\Program Files\Spyware Doctor\klg.dat]  [PC Tools, 6.1.0.1]
[PID: 2944 / LOCAL SERVICE][C:\WINDOWS\System32\alg.exe]  [(Verified) Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-0852)]
	[\\?\globalroot\Device\__max++>\A45B2F2A.x86.dll]  [N/A, ]
	[C:\WINDOWS\System32\gakuyama.dll]  [N/A, ]
	[C:\Program Files\Spyware Doctor\smum32.dll]  [PC Tools, 6.1.0.2]
	[C:\Program Files\Spyware Doctor\klg.dat]  [PC Tools, 6.1.0.1]
[PID: 3264 / SYSTEM][C:\Program Files\Spyware Doctor\pctsSvc.exe]  [PC Tools, 6.1.0.58]
	[C:\Program Files\Spyware Doctor\rtl100.bpl]  [CodeGear, 11.0.2902.10471]
	[C:\Program Files\Spyware Doctor\vcl100.bpl]  [CodeGear, 11.0.2902.10471]
	[C:\Program Files\Spyware Doctor\SysAccess.dll]  [PC Tools, 6.1.0.9]
	[C:\Program Files\Spyware Doctor\CommOM.dll]  [PC Tools, 6.1.0.23]
	[C:\Program Files\Spyware Doctor\CommLib.dll]  [PC Tools, 6.1.0.0]
	[C:\Program Files\Spyware Doctor\sdcore.dll]  [PC Tools, 6.1.0.10]
	[C:\Program Files\Spyware Doctor\commhlpr.dll]  [PC Tools, 6.1.0.4]
	[C:\Program Files\Spyware Doctor\RegHelper.dll]  [PC Tools, 6.1.0.2]
	[C:\Program Files\Spyware Doctor\inethlpr.dll]  [PC Tools, 6.1.0.27]
	[C:\Program Files\Spyware Doctor\filehlpr.dll]  [PC Tools, 6.1.0.15]
	[C:\WINDOWS\system32\gakuyama.dll]  [N/A, ]
	[C:\Program Files\Common Files\PC Tools\KDS\KDSInterface.dll]  [PC Tools, 2, 0, 0, 56]
	[C:\Program Files\Spyware Doctor\FileStorage.sdp]  [PC Tools, 6.1.0.1]
	[C:\Program Files\Spyware Doctor\Settings.sdp]  [PC Tools, 6.1.0.1]
	[C:\Program Files\Spyware Doctor\IDBLib.sdp]  [PC Tools, 6.1.0.9]
	[C:\Program Files\Spyware Doctor\SDInfo.sdp]  [PC Tools, 6.1.0.24]
	[C:\Program Files\Spyware Doctor\SDExtra.sdp]  [PC Tools, 6.1.0.29]
	[C:\Program Files\Spyware Doctor\Immunizer.sdp]  [PC Tools, 6.1.0.5]
	[C:\Program Files\Spyware Doctor\Localizer.sdp]  [PC Tools, 6.1.0.5]
	[C:\Program Files\Spyware Doctor\NfyMan.sdp]  [PC Tools, 6.1.0.7]
	[C:\Program Files\Spyware Doctor\quarantine.sdp]  [PC Tools, 6.1.0.6]
	[C:\Program Files\Spyware Doctor\BH.dll]  [PC Tools, 6.1.0.12]
	[C:\Program Files\Spyware Doctor\RebootManager.sdp]  [PC Tools, 6.1.0.2]
	[C:\Program Files\Spyware Doctor\scaneng.sdp]  [PC Tools, 6.1.0.15]
	[C:\Program Files\Spyware Doctor\SOFactory.sdp]  [PC Tools, 6.1.0.8]
	[C:\Program Files\Spyware Doctor\stasks.sdp]  [PC Tools, 6.1.0.2]
	[C:\Program Files\Spyware Doctor\SystemMonitor.sdp]  [PC Tools, 6.1.0.72]
	[C:\Program Files\Spyware Doctor\whitelist.sdp]  [PC Tools, 6.1.0.1]
	[C:\Program Files\Spyware Doctor\plugins\Behavior.sdp]  [PC Tools, 6.1.0.22]
	[C:\Program Files\Spyware Doctor\plugins\Browsers.SDP]  [PC Tools, 6.1.0.16]
	[C:\Program Files\Spyware Doctor\plugins\cookie.sdp]  [PC Tools, 6.1.0.4]
	[\\?\globalroot\Device\__max++>\A45B2F2A.x86.dll]  [N/A, ]
	[C:\Program Files\Bonjour\mdnsNSP.dll]  [Apple Inc., 1,0,6,2]
	[C:\Program Files\Spyware Doctor\plugins\grAV.sdp]  [PC Tools, 6.1.0.50]
	[C:\Program Files\Spyware Doctor\plugins\grfiles.SDP]  [PC Tools, 6.1.0.20]
	[C:\Program Files\Spyware Doctor\plugins\grImmunizer.SDP]  [PC Tools, 6.1.0.0]
	[C:\Program Files\Spyware Doctor\plugins\grregistry.SDP]  [PC Tools, 6.1.0.6]
	[C:\Program Files\Spyware Doctor\PCToolsComponents.bpl]  [PC Tools, 6.1.0.0]
	[C:\Program Files\Spyware Doctor\SH.dll]  [PC Tools, 6.1.0.8]
	[C:\Program Files\Spyware Doctor\plugins\KLGuard.SDP]  [PC Tools, 6.1.0.4]
	[C:\Program Files\Spyware Doctor\plugins\Network.SDP]  [PC Tools, 6.1.0.7]
	[C:\Program Files\Spyware Doctor\plugins\Process.SDP]  [PC Tools, 6.1.0.7]
	[C:\Program Files\Spyware Doctor\plugins\ScriptEngine.SDP]  [PC Tools, 6.1.0.5]
	[C:\Program Files\Spyware Doctor\plugins\SDNET.SDP]  [PC Tools, 6.1.0.5]
	[C:\Program Files\Spyware Doctor\plugins\StartUp.SDP]  [PC Tools, 6.1.0.11]
	[C:\Program Files\Spyware Doctor\TFEngine\TFExtCli.dll]  [PC Tools, 6.1.0.1]
	[C:\Program Files\Spyware Doctor\avengine\SDAVgate.dll]  [PC Tools Research, 6, 5, 3, 58]
	[C:\Program Files\Spyware Doctor\avengine\PCTAVEng.dll]  [PC Tools Research Pty Ltd, 4.5.11.103]
	[C:\Program Files\Spyware Doctor\NetworkLayer\PCTCFHook.dll]  [, 1, 0, 15, 0]
[PID: 3416 / Tim][C:\Program Files\Spyware Doctor\pctsTray.exe]  [PC Tools, 6.1.0.26]
	[C:\Program Files\Spyware Doctor\rtl100.bpl]  [CodeGear, 11.0.2902.10471]
	[C:\Program Files\Spyware Doctor\vcl100.bpl]  [CodeGear, 11.0.2902.10471]
	[C:\Program Files\Spyware Doctor\SysAccess.dll]  [PC Tools, 6.1.0.9]
	[C:\Program Files\Spyware Doctor\CommOM.dll]  [PC Tools, 6.1.0.23]
	[C:\Program Files\Spyware Doctor\CommLib.dll]  [PC Tools, 6.1.0.0]
	[C:\Program Files\Spyware Doctor\PCToolsComponents.bpl]  [PC Tools, 6.1.0.0]
	[C:\Program Files\Spyware Doctor\sdinfo.sdp]  [PC Tools, 6.1.0.24]
	[C:\Program Files\Spyware Doctor\cdialogs.dll]  [PC Tools, 6.1.0.24]
	[C:\Program Files\Spyware Doctor\pwindow.dll]  [PC Tools, 6.1.0.4]
	[C:\WINDOWS\system32\gakuyama.dll]  [N/A, ]
	[C:\Program Files\Common Files\PC Tools\KDS\KDSInterface.dll]  [PC Tools, 2, 0, 0, 56]
	[C:\Program Files\Spyware Doctor\smum32.dll]  [PC Tools, 6.1.0.2]
	[C:\Program Files\Spyware Doctor\klg.dat]  [PC Tools, 6.1.0.1]
	[C:\Program Files\Spyware Doctor\pctgmhk.dll]  [PC Tools, 6.1.0.9]
[PID: 728 / SYSTEM][C:\Program Files\Viewpoint\Viewpoint Manager\ViewMgr.exe]  [Viewpoint Corporation, 2, 0, 0, 54]
	[C:\Program Files\Spyware Doctor\smum32.dll]  [PC Tools, 6.1.0.2]
	[C:\Program Files\Viewpoint\Viewpoint Manager\ViewMgrCore.dll]  [Viewpoint Corporation, 2, 0, 0, 54]
	[C:\Program Files\Spyware Doctor\klg.dat]  [PC Tools, 6.1.0.1]
	[\\?\globalroot\Device\__max++>\A45B2F2A.x86.dll]  [N/A, ]
	[C:\Program Files\Bonjour\mdnsNSP.dll]  [Apple Inc., 1,0,6,2]
	[C:\Program Files\Viewpoint\Viewpoint Manager\VETScriptInterpreter.dll]  [Viewpoint Corporation, 3, 3, 0, 10]
[PID: 2920 / SYSTEM][C:\WINDOWS\system32\cidaemon.exe]  [(Verified) Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)]
	[C:\WINDOWS\system32\gakuyama.dll]  [N/A, ]
	[C:\Program Files\Spyware Doctor\smum32.dll]  [PC Tools, 6.1.0.2]
	[C:\Program Files\Spyware Doctor\klg.dat]  [PC Tools, 6.1.0.1]
[PID: 3528 / Tim][C:\Program Files\WinRAR\WinRAR.exe]  [N/A, ]
	[C:\WINDOWS\system32\gakuyama.dll]  [N/A, ]
	[C:\Program Files\Spyware Doctor\smum32.dll]  [PC Tools, 6.1.0.2]
	[C:\Program Files\Spyware Doctor\klg.dat]  [PC Tools, 6.1.0.1]
	[C:\Program Files\Spyware Doctor\pctgmhk.dll]  [PC Tools, 6.1.0.9]
[PID: 3620 / Tim][C:\DOCUME~1\Tim\LOCALS~1\Temp\Rar$EX05.515\SREngLdr.EXE]  [Smallfrogs Studio, 2.8.1.1279]
	[C:\Program Files\Spyware Doctor\smum32.dll]  [PC Tools, 6.1.0.2]
	[C:\WINDOWS\system32\gakuyama.dll]  [N/A, ]
	[C:\Program Files\Spyware Doctor\klg.dat]  [PC Tools, 6.1.0.1]
	[C:\Program Files\Spyware Doctor\pctgmhk.dll]  [PC Tools, 6.1.0.9]
[PID: 3632 / Tim][C:\DOCUME~1\Tim\LOCALS~1\Temp\Rar$EX05.515\SREca843a4e.EXE]  [Smallfrogs Studio, 2.8.1.1279]
	[C:\Program Files\Spyware Doctor\smum32.dll]  [PC Tools, 6.1.0.2]
	[C:\Program Files\Spyware Doctor\klg.dat]  [PC Tools, 6.1.0.1]
	[C:\Program Files\Spyware Doctor\pctgmhk.dll]  [PC Tools, 6.1.0.9]
	[C:\WINDOWS\system32\gakuyama.dll]  [N/A, ]
	[C:\DOCUME~1\Tim\LOCALS~1\Temp\Rar$EX05.515\Upload\3rdUpd.DLL]  [Smallfrogs Studio, 2, 1, 0, 15]
	[\\?\globalroot\Device\__max++>\A45B2F2A.x86.dll]  [N/A, ]
	[C:\Program Files\Bonjour\mdnsNSP.dll]  [Apple Inc., 1,0,6,2]

==================================
File Associations
N/A

==================================
Winsock Provider
N/A

==================================
Autorun.Inf
N/A

==================================
HOSTS File
N/A

==================================
Process Privileges Scan
Special Privileges Enabled: SeLoadDriverPrivilege [PID = 500, C:\PROGRAM FILES\NETWORK ASSOCIATES\COMMON FRAMEWORK\FRAMEWORKSERVICE.EXE]
Special Privileges Enabled: SeSystemtimePrivilege [PID = 928, C:\PROGRA~1\NETWOR~1\COMMON~1\NAPRDMGR.EXE]
Special Privileges Enabled: SeSystemtimePrivilege [PID = 1232, C:\PROGRAM FILES\NETWORK ASSOCIATES\VIRUSSCAN\SHSTAT.EXE]
Special Privileges Enabled: SeDebugPrivilege [PID = 1232, C:\PROGRAM FILES\NETWORK ASSOCIATES\VIRUSSCAN\SHSTAT.EXE]
Special Privileges Enabled: SeLoadDriverPrivilege [PID = 1232, C:\PROGRAM FILES\NETWORK ASSOCIATES\VIRUSSCAN\SHSTAT.EXE]
Special Privileges Enabled: SeSystemtimePrivilege [PID = 1336, C:\PROGRAM FILES\NETWORK ASSOCIATES\COMMON FRAMEWORK\UPDATERUI.EXE]
Special Privileges Enabled: SeDebugPrivilege [PID = 1336, C:\PROGRAM FILES\NETWORK ASSOCIATES\COMMON FRAMEWORK\UPDATERUI.EXE]
Special Privileges Enabled: SeLoadDriverPrivilege [PID = 1336, C:\PROGRAM FILES\NETWORK ASSOCIATES\COMMON FRAMEWORK\UPDATERUI.EXE]
Special Privileges Enabled: SeSystemtimePrivilege [PID = 1384, C:\PROGRAM FILES\ROXIO\EASY CD CREATOR 5\DIRECTCD\DIRECTCD.EXE]
Special Privileges Enabled: SeDebugPrivilege [PID = 1384, C:\PROGRAM FILES\ROXIO\EASY CD CREATOR 5\DIRECTCD\DIRECTCD.EXE]
Special Privileges Enabled: SeLoadDriverPrivilege [PID = 1384, C:\PROGRAM FILES\ROXIO\EASY CD CREATOR 5\DIRECTCD\DIRECTCD.EXE]
Special Privileges Enabled: SeSystemtimePrivilege [PID = 1456, C:\PROGRAM FILES\HEWLETT-PACKARD\DIGITAL IMAGING\UNLOAD\HPQCMON.EXE]
Special Privileges Enabled: SeDebugPrivilege [PID = 1456, C:\PROGRAM FILES\HEWLETT-PACKARD\DIGITAL IMAGING\UNLOAD\HPQCMON.EXE]
Special Privileges Enabled: SeLoadDriverPrivilege [PID = 1456, C:\PROGRAM FILES\HEWLETT-PACKARD\DIGITAL IMAGING\UNLOAD\HPQCMON.EXE]
Special Privileges Enabled: SeSystemtimePrivilege [PID = 1468, C:\PROGRAM FILES\HEWLETT-PACKARD\HP SHARE-TO-WEB\HPGS2WND.EXE]
Special Privileges Enabled: SeDebugPrivilege [PID = 1468, C:\PROGRAM FILES\HEWLETT-PACKARD\HP SHARE-TO-WEB\HPGS2WND.EXE]
Special Privileges Enabled: SeLoadDriverPrivilege [PID = 1468, C:\PROGRAM FILES\HEWLETT-PACKARD\HP SHARE-TO-WEB\HPGS2WND.EXE]
Special Privileges Enabled: SeSystemtimePrivilege [PID = 1580, C:\WINDOWS\SYSTEM32\KMW_RUN.EXE]
Special Privileges Enabled: SeDebugPrivilege [PID = 1580, C:\WINDOWS\SYSTEM32\KMW_RUN.EXE]
Special Privileges Enabled: SeLoadDriverPrivilege [PID = 1580, C:\WINDOWS\SYSTEM32\KMW_RUN.EXE]
Special Privileges Enabled: SeSystemtimePrivilege [PID = 276, C:\PROGRAM FILES\HEWLETT-PACKARD\HP SHARE-TO-WEB\HPGS2WNF.EXE]
Special Privileges Enabled: SeDebugPrivilege [PID = 276, C:\PROGRAM FILES\HEWLETT-PACKARD\HP SHARE-TO-WEB\HPGS2WNF.EXE]
Special Privileges Enabled: SeLoadDriverPrivilege [PID = 276, C:\PROGRAM FILES\HEWLETT-PACKARD\HP SHARE-TO-WEB\HPGS2WNF.EXE]
Special Privileges Enabled: SeLoadDriverPrivilege [PID = 2316, C:\PROGRAM FILES\VIEWPOINT\COMMON\VIEWPOINTSERVICE.EXE]
Special Privileges Enabled: SeSystemtimePrivilege [PID = 2316, C:\PROGRAM FILES\VIEWPOINT\COMMON\VIEWPOINTSERVICE.EXE]
Special Privileges Enabled: SeSystemtimePrivilege [PID = 3528, C:\PROGRAM FILES\WINRAR\WINRAR.EXE]
Special Privileges Enabled: SeDebugPrivilege [PID = 3528, C:\PROGRAM FILES\WINRAR\WINRAR.EXE]
Special Privileges Enabled: SeLoadDriverPrivilege [PID = 3528, C:\PROGRAM FILES\WINRAR\WINRAR.EXE]
Special Privileges Enabled: SeSystemtimePrivilege [PID = 3620, C:\DOCUME~1\TIM\LOCALS~1\TEMP\RAR$EX05.515\SRENGLDR.EXE]
Special Privileges Enabled: SeDebugPrivilege [PID = 3620, C:\DOCUME~1\TIM\LOCALS~1\TEMP\RAR$EX05.515\SRENGLDR.EXE]
Special Privileges Enabled: SeLoadDriverPrivilege [PID = 3620, C:\DOCUME~1\TIM\LOCALS~1\TEMP\RAR$EX05.515\SRENGLDR.EXE]

==================================
Scheduled Tasks
[Enabled] ISP signup reminder 1.job
		C:\WINDOWS\System32\OOBE\OOBEBALN.EXE 
[Enabled] GoogleUpdateTaskMachineUA.job
		C:\Program Files\Google\Update\GoogleUpdate.exe 
[Enabled] GoogleUpdateTaskMachineCore.job
		C:\Program Files\Google\Update\GoogleUpdate.exe 
[Enabled] AppleSoftwareUpdate.job
		C:\Program Files\Apple Software Update\SoftwareUpdate.exe 

==================================
Windows Security Update Check
N/A

==================================
API HOOK
N/A

==================================
Hidden Process
N/A

==================================

Attached Files


Edited by en455, 21 September 2009 - 10:24 AM.


BC AdBot (Login to Remove)

 


#2 en455

en455
  • Topic Starter

  • Members
  • 2 posts
  • OFFLINE
  •  
  • Local time:12:38 PM

Posted 23 September 2009 - 01:40 PM

Wanted to give a heads up that I took my PC to a shop before anyone spent any time on my problem. Hopefully they will be able to resolve my issues.

#3 Orange Blossom

Orange Blossom

    OBleepin Investigator


  • Moderator
  • 36,801 posts
  • OFFLINE
  •  
  • Gender:Not Telling
  • Location:Bloomington, IN
  • Local time:02:38 PM

Posted 24 September 2009 - 09:18 PM

Thank you for letting us know. This topic shall now be closed. I hope your computer issues get resolved. In case you experience computer issues, please start a new topic.

Orange Blossom :(
Help us help you. If HelpBot replies, you MUST follow step 1 in its reply so we know you need help.

Orange Blossom

An ounce of prevention is worth a pound of cure

SpywareBlaster, WinPatrol Plus, ESET Smart Security, Malwarebytes' Anti-Malware, NoScript Firefox ext., Norton noscript




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users