Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Infected with Antivirus Pro 2010


  • This topic is locked This topic is locked
2 replies to this topic

#1 raindoghero

raindoghero

  • Members
  • 20 posts
  • OFFLINE
  •  
  • Local time:12:32 PM

Posted 03 October 2009 - 09:37 PM

My computer got infected with Antivirus Pro 2010 today. Fake windows are popping up and many programs do not run. I seem to have most of the same symptoms others have with this virus except that I cannot bring up the task manager. It says 'Task Manager has been disabled by your Administrator'. I've been reading other posts where some people are still able to run the Task Manager, so I'm not sure if I'm infected with something else as well.

I tried to follow the Prep Guide but was unable to get DDS to run. Also could not get the Rootrepeal log or Anti Malware to run. Here is the SREngLOG. I left out the HOSTS section as it was about 50 miles long.






[code=auto:0]

2009-10-03,21:02:27

System Repair Engineer 2.8.1.1279
Smallfrogs (http://www.KZTechs.com)

Windows XP Home Edition Service Pack 2 (Build 2600) - Administrative User - Completed Functions Allowed

Follow item(s) have been selected:
All Boot Items (Including Registry, Startup Folders, Services and so on)
Browser Add-ons
Running Processes (Including process model information)
File Associations
Winsock Provider
Autorun.Inf
HOSTS File
Process Privileges Scan
Scheduled Tasks
Windows Security Update Check
API HOOK
Hidden Process


Boot Items
Registry
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
<DellSupport><"C:\Program Files\Dell Support\DSAgnt.exe" /startup> [Gteko Ltd.]
<SpybotSD TeaTimer><C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe> [Safer-Networking Ltd.]
<swg><"C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"> [(Verified)Google Inc]
<EPSON NX100 Series><C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIEDA.EXE /FU "C:\WINDOWS\TEMP\E_S2D4.tmp" /EF "HKCU"> [File is missing]
<ctfmon.exe><C:\WINDOWS\system32\ctfmon.exe> [(Verified)Microsoft Windows Publisher]
<MSMSGS><"C:\Program Files\Messenger\msmsgs.exe" /background> [(Verified)Microsoft Windows Component Publisher]
<DW6><"C:\Program Files\The Weather Channel FW\Desktop\DesktopWeather.exe"> [(Verified)"The Weather Channel Interactive, Inc."]
<mserv><C:\Documents and Settings\KJ\Application Data\svcst.exe> []
<svchost><C:\Documents and Settings\KJ\Application Data\svcst.exe> []
<calc><rundll32.exe C:\DOCUME~1\KJ\ntuser.dll,_IWMPEvents@0> [Microsoft]
[HKEY_CURRENT_USER\Software\Microsoft\Windows NT\CurrentVersion\Windows]
<load><> [N/A]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
<SoundMAXPnP><C:\Program Files\Analog Devices\Core\smax4pnp.exe> [(Verified)Microsoft Windows Hardware Compatibility Publisher]
<IgfxTray><C:\WINDOWS\system32\igfxtray.exe> [(Verified)Microsoft Windows Hardware Compatibility Publisher]
<HotKeysCmds><C:\WINDOWS\system32\hkcmd.exe> [(Verified)Microsoft Windows Hardware Compatibility Publisher]
<Persistence><C:\WINDOWS\system32\igfxpers.exe> [(Verified)Microsoft Windows Hardware Compatibility Publisher]
<DMXLauncher><C:\Program Files\Dell\Media Experience\DMXLauncher.exe> [File is missing]
<ISUSPM Startup><"C:\Program Files\Common Files\InstallShield\UpdateService\isuspm.exe" -startup> [InstallShield Software Corporation]
<ISUSScheduler><"C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe" -start> [InstallShield Software Corporation]
<DLA><C:\WINDOWS\System32\DLA\DLACTRLW.EXE> [Sonic Solutions]
<REGSHAVE><C:\Program Files\REGSHAVE\REGSHAVE.EXE /AUTORUN> [FUJI PHOTO FILM CO., LTD.]
<AVG8_TRAY><C:\PROGRA~1\AVG\AVG8\avgtray.exe> [(Verified)AVG Technologies]
<QuickTime Task><"C:\Program Files\QuickTime\QTTask.exe" -atboottime> [Apple Inc.]
<iTunesHelper><"C:\Program Files\iTunes\iTunesHelper.exe"> [(Verified)Apple Inc.]
<ArcSoft Connection Service><C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe> [(Verified)"ArcSoft, Inc."]
<winupdate.exe><C:\WINDOWS\system32\winupdate.exe> [File is missing]
<calc><rundll32.exe C:\WINDOWS\system32\calc.dll,_IWMPEvents@0> [Microsoft]
<duwitabuv><Rundll32.exe "c:\windows\system32\zoyageze.dll",a> []
<Antivirus Pro 2010><"C:\Program Files\AntivirusPro_2010\AntivirusPro_2010.exe" /hide> [File is missing]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunOnce]
<Malwarebytes' Anti-Malware><C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe /install /silent> [(Verified)Malwarebytes Corporation]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]
<shell><Explorer.exe> [(Verified)Microsoft Windows Component Publisher]
<Userinit><C:\WINDOWS\system32\userinit.exe,> [(Verified)Microsoft Windows Publisher]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows]
<AppInit_DLLs><c:\windows\system32\zoyageze.dll,rutulivi.dll> []
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]
<UIHost><logonui.exe> [(Verified)Microsoft Windows Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
<PostBootReminder><%SystemRoot%\system32\SHELL32.dll> [(Verified)Microsoft Windows Component Publisher]
<CDBurn><%SystemRoot%\system32\SHELL32.dll> [(Verified)Microsoft Windows Component Publisher]
<WebCheck><C:\WINDOWS\system32\webcheck.dll> [(Verified)Microsoft Windows]
<SysTray><C:\WINDOWS\system32\stobject.dll> [(Verified)Microsoft Windows Publisher]
<WPDShServiceObj><C:\WINDOWS\system32\WPDShServiceObj.dll> [(Verified)Microsoft Windows Component Publisher]
<mirajerit><c:\windows\system32\zoyageze.dll> []
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\avgrsstarter]
<WinlogonNotify: avgrsstarter><avgrsstx.dll> [(Verified)AVG Technologies]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\crypt32chain]
<WinlogonNotify: crypt32chain><crypt32.dll> [(Verified)Microsoft Windows Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\cryptnet]
<WinlogonNotify: cryptnet><cryptnet.dll> [(Verified)Microsoft Windows Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\cscdll]
<WinlogonNotify: cscdll><cscdll.dll> [(Verified)Microsoft Windows Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
<WinlogonNotify: igfxcui><igfxdev.dll> [(Verified)Microsoft Windows Hardware Compatibility Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\ScCertProp]
<WinlogonNotify: ScCertProp><wlnotify.dll> [(Verified)Microsoft Windows Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\Schedule]
<WinlogonNotify: Schedule><wlnotify.dll> [(Verified)Microsoft Windows Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\sclgntfy]
<WinlogonNotify: sclgntfy><sclgntfy.dll> [(Verified)Microsoft Windows Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\SensLogn]
<WinlogonNotify: SensLogn><WlNotify.dll> [(Verified)Microsoft Windows Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\termsrv]
<WinlogonNotify: termsrv><wlnotify.dll> [(Verified)Microsoft Windows Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
<WinlogonNotify: WgaLogon><WgaLogon.dll> [(Verified)Microsoft Corporation]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\wlballoon]
<WinlogonNotify: wlballoon><wlnotify.dll> [(Verified)Microsoft Windows Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\yayvUNhg]
<WinlogonNotify: yayvUNhg><yayvUNhg.dll> [N/A]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SharedTaskScheduler]
<{438755C2-A8BA-11D1-B96B-00A0C90312E1}><%SystemRoot%\system32\browseui.dll> [(Verified)Microsoft Windows Component Publisher]
<{8C7461EF-2B13-11d2-BE35-3078302C2030}><%SystemRoot%\system32\browseui.dll> [(Verified)Microsoft Windows Component Publisher]
<{40f55bb2-fd51-421c-aeca-f1b7edaa5097}><c:\windows\system32\zoyageze.dll> []
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\<{12d0ed0d-0ee0-4f90-8827-78cefb8f4988}]
<Internet Explorer Version Update><C:\WINDOWS\system32\ieudinit.exe> [(Verified)Microsoft Windows]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\>{22d6f312-b0f6-11d0-94ab-0080c74c7e95}]
<Microsoft Windows Media Player><C:\WINDOWS\inf\unregmp2.exe /ShowWMP> [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\>{26923b43-4d38-484f-9b9e-de460746276c}]
<Internet Explorer><C:\WINDOWS\system32\ie4uinit.exe -UserIconConfig> [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\>{60B49E34-C7CC-11D0-8953-00A0C90347FF}]
<Browser Customizations><"C:\WINDOWS\system32\rundll32.exe" "C:\WINDOWS\system32\iedkcs32.dll",BrandIEActiveSetup SIGNUP> [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\>{60B49E34-C7CC-11D0-8953-00A0C90347FF}MICROS]
<Browser Customizations><RunDLL32 IEDKCS32.DLL,BrandIE4 SIGNUP> [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\>{881dd1c5-3dcf-431b-b061-f3f88e8be88a}]
<Outlook Express><%systemroot%\system32\shmgrate.exe OCInstallUserConfigOE> [File is missing]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\AcerVGA Drivers V1.2]
<N/A><C:\WINDOWS\initview32.exe> [File is missing]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\Legacy VGA Drivers V1.0]
<N/A><C:\WINDOWS\certproc32.exe> [File is missing]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\Legacy VGA Drivers V1.9x]
<N/A><C:\WINDOWS\cabview32.exe> [File is missing]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{2C7339CF-2B09-4501-B3F3-F3508C9228ED}]
<Themes Setup><%SystemRoot%\system32\regsvr32.exe /s /n /i:/UserInstall %SystemRoot%\system32\themeui.dll> [File is missing]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{44BBA840-CC51-11CF-AAFA-00AA00B6015C}]
<Microsoft Outlook Express 6><"%ProgramFiles%\Outlook Express\setup50.exe" /APP:OE /CALLER:WINNT /user /install> [File is missing]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{44BBA842-CC51-11CF-AAFA-00AA00B6015B}]
<NetMeeting 3.01><rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\msnetmtg.inf,NetMtg.Install.PerUser.NT> [(Verified)Microsoft Windows Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{5945c046-1e7d-11d1-bc44-00c04fd912be}]
<Windows Messenger 4.7><rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\msmsgs.inf,BLC.QuietInstall.PerUser> [(Verified)Microsoft Windows Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{6BF52A52-394A-11d3-B153-00C04F79FAA6}]
<Microsoft Windows Media Player><rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\wmp11.inf,PerUserStub> [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{7790769C-0471-11d2-AF11-00C04FA35D02}]
<Address Book 6><"%ProgramFiles%\Outlook Express\setup50.exe" /APP:WAB /CALLER:WINNT /user /install> [File is missing]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{89820200-ECBD-11cf-8B85-00AA005B4340}]
<Windows Desktop Update><regsvr32.exe /s /n /i:U shell32.dll> [(Verified)Microsoft Windows Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{89820200-ECBD-11cf-8B85-00AA005B4383}]
<Internet Explorer><C:\WINDOWS\system32\ie4uinit.exe -BaseSettings> [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{89B4C1CD-B018-4511-B0A1-5476DBF70820}]
<N/A><c:\WINDOWS\system32\Rundll32.exe c:\WINDOWS\system32\mscories.dll,Install> [(Verified)Microsoft Corporation]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{8b15971b-5355-4c82-8c07-7e181ea07608}]
<Fax><rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\fxsocm.inf,Fax.Install.PerUser> [(Verified)Microsoft Windows Publisher]
[HKEY_CURRENT_USER\Control Panel\Desktop]
<SCRNSAVE.EXE><C:\WINDOWS\system32\ssstars.scr> [(Verified)Microsoft Windows Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
<AOLDialer><; C:\Program Files\Common Files\AOL\ACS\AOLDial.exe> [File is missing]
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
<MSMSGS><; "C:\Program Files\Messenger\msmsgs.exe" /background> [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
<Norton Ghost 10.0><; "C:\Program Files\Norton Ghost\Agent\GhostTray.exe"> [File is missing]
<QuickTime Task><; "C:\Program Files\QuickTime\qttask.exe" -atboottime> [Apple Inc.]
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
<swg><; C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe> [(Verified)Google Inc]

==================================
Startup Folders
N/A

==================================
Services
[Lavasoft Ad-Aware Service / aawservice][Running/Auto Start]
<"C:\Program Files\Lavasoft\Ad-Aware\aawservice.exe"><Lavasoft>
[ArcSoft Connect Daemon / ACDaemon][Running/Auto Start]
<C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe><ArcSoft Inc.>
[Apple Mobile Device / Apple Mobile Device][Running/Auto Start]
<"C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe"><Apple Inc.>
[Application Management / AppMgmt][Stopped/Manual Start]
<C:\WINDOWS\system32\svchost.exe -k netsvcs-->%SystemRoot%\System32\appmgmts.dll><N/A>
[AVG8 E-mail Scanner / avg8emc][Running/Auto Start]
<C:\PROGRA~1\AVG\AVG8\avgemc.exe><AVG Technologies CZ, s.r.o.>
[AVG8 WatchDog / avg8wd][Running/Auto Start]
<C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe><AVG Technologies CZ, s.r.o.>
[Bonjour Service / Bonjour Service][Running/Auto Start]
<"C:\Program Files\Bonjour\mDNSResponder.exe"><Apple Inc.>
[getPlus® Helper / getPlus® Helper][Stopped/Manual Start]
<C:\Program Files\NOS\bin\getPlus_HelperSvc.exe><NOS Microsystems Ltd.>
[Google Update Service (gupdate1c9948d1b3f5126) / gupdate1c9948d1b3f5126][Stopped/Auto Start]
<"C:\Program Files\Google\Update\GoogleUpdate.exe" /svc><Google Inc.>
[Google Software Updater / gusvc][Stopped/Auto Start]
<"C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe"><Google>
[iPod Service / iPod Service][Running/Manual Start]
<"C:\Program Files\iPod\bin\iPodService.exe"><Apple Inc.>
[Intel NCS NetService / NetSvc][Stopped/Manual Start]
<C:\Program Files\Intel\PROSetWired\NCS\Sync\NetSvc.exe><Intel® Corporation>

==================================
Drivers
[PPdus ASPI Shell / Afc][Running/Manual Start]
<system32\drivers\Afc.sys><Arcsoft, Inc.>
[AliIde / AliIde][Stopped/Disabled]
<\SystemRoot\system32\DRIVERS\aliide.sys><Acer Laboratories Inc.>
[AMD AGP Bus Filter Driver / amdagp][Stopped/Disabled]
<\SystemRoot\system32\DRIVERS\amdagp.sys><Advanced Micro Devices, Inc.>
[asc / asc][Stopped/Disabled]
<\SystemRoot\system32\DRIVERS\asc.sys><Advanced System Products, Inc.>
[asc3550 / asc3550][Stopped/Disabled]
<\SystemRoot\system32\DRIVERS\asc3550.sys><Advanced System Products, Inc.>
[AVG AVI Loader Driver x86 / AvgLdx86][Running/System Start]
<\SystemRoot\System32\Drivers\avgldx86.sys><AVG Technologies CZ, s.r.o.>
[AVG On-access Scanner Minifilter Driver x86 / AvgMfx86][Running/System Start]
<\SystemRoot\System32\Drivers\avgmfx86.sys><AVG Technologies CZ, s.r.o.>
[AVG8 Network Redirector / AvgTdiX][Running/System Start]
<\SystemRoot\System32\Drivers\avgtdix.sys><AVG Technologies CZ, s.r.o.>
[CmdIde / CmdIde][Stopped/Disabled]
<\SystemRoot\system32\DRIVERS\cmdide.sys><CMD Technology, Inc.>
[dac2w2k / dac2w2k][Stopped/Disabled]
<\SystemRoot\system32\DRIVERS\dac2w2k.sys><Mylex Corporation>
[DLABOIOM / DLABOIOM][Running/Auto Start]
<System32\DLA\DLABOIOM.SYS><Sonic Solutions>
[DLACDBHM / DLACDBHM][Running/System Start]
<System32\Drivers\DLACDBHM.SYS><Sonic Solutions>
[DLADResN / DLADResN][Running/Auto Start]
<System32\DLA\DLADResN.SYS><Sonic Solutions>
[DLAIFS_M / DLAIFS_M][Running/Auto Start]
<System32\DLA\DLAIFS_M.SYS><Sonic Solutions>
[DLAOPIOM / DLAOPIOM][Running/Auto Start]
<System32\DLA\DLAOPIOM.SYS><Sonic Solutions>
[DLAPoolM / DLAPoolM][Running/Auto Start]
<System32\DLA\DLAPoolM.SYS><Sonic Solutions>
[DLARTL_N / DLARTL_N][Running/System Start]
<System32\Drivers\DLARTL_N.SYS><Sonic Solutions>
[DLAUDFAM / DLAUDFAM][Running/Auto Start]
<System32\DLA\DLAUDFAM.SYS><Sonic Solutions>
[DLAUDF_M / DLAUDF_M][Running/Auto Start]
<System32\DLA\DLAUDF_M.SYS><Sonic Solutions>
[DRVMCDB / DRVMCDB][Running/Boot Start]
<\SystemRoot\System32\Drivers\DRVMCDB.SYS><Sonic Solutions>
[DRVNDDM / DRVNDDM][Running/Auto Start]
<System32\Drivers\DRVNDDM.SYS><Sonic Solutions>
[DSproct / DSproct][Stopped/Manual Start]
<\??\C:\Program Files\Dell Support\GTAction\triggers\DSproct.sys><GTek Technologies Ltd.>
[Intel® PRO Adapter Driver / E100B][Running/Manual Start]
<system32\DRIVERS\e100b325.sys><Intel Corporation>
[GEAR ASPI Filter Driver / GearAspiWDM][Running/Manual Start]
<system32\DRIVERS\GEARAspiWDM.sys><GEAR Software Inc.>
[HSFHWBS2 / HSFHWBS2][Stopped/Manual Start]
<system32\DRIVERS\HSFHWBS2.sys><Conexant Systems, Inc.>
[HSF_DP / HSF_DP][Stopped/Manual Start]
<system32\DRIVERS\HSF_DP.sys><Conexant Systems, Inc.>
[ialm / ialm][Running/Manual Start]
<system32\DRIVERS\ialmnt5.sys><Intel Corporation>
[mdmxsdk / mdmxsdk][Running/Auto Start]
<system32\DRIVERS\mdmxsdk.sys><Conexant>
[mraid35x / mraid35x][Stopped/Disabled]
<\SystemRoot\system32\DRIVERS\mraid35x.sys><American Megatrends Inc.>
[Motorola SURFboard USB Cable Modem Windows Driver / ndiscm][Stopped/Manual Start]
<system32\DRIVERS\NetMotCM.sys><Motorola Inc.>
[npkcrypt / npkcrypt][Stopped/Auto Start]
<\??\C:\Program Files\Wizet\MapleStory\npkcrypt.sys><N/A>
[npkcusb / npkcusb][Stopped/Manual Start]
<\??\C:\Program Files\Wizet\MapleStory\npkcusb.sys><N/A>
[nv / nv][Stopped/Manual Start]
<system32\DRIVERS\nv4_mini.sys><NVIDIA Corporation>
[Direct Parallel Link Driver / Ptilink][Running/Manual Start]
<system32\DRIVERS\ptilink.sys><Parallel Technologies, Inc.>
[PxHelp20 / PxHelp20][Running/Boot Start]
<\SystemRoot\System32\Drivers\PxHelp20.sys><Sonic Solutions>
[ql1080 / ql1080][Stopped/Disabled]
<\SystemRoot\system32\DRIVERS\ql1080.sys><QLogic Corporation>
[ql12160 / ql12160][Stopped/Disabled]
<\SystemRoot\system32\DRIVERS\ql12160.sys><QLogic Corporation>
[ql1280 / ql1280][Stopped/Disabled]
<\SystemRoot\system32\DRIVERS\ql1280.sys><QLogic Corporation>
[Secdrv / Secdrv][Stopped/Manual Start]
<system32\DRIVERS\secdrv.sys><Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.>
[senfilt / senfilt][Running/Manual Start]
<system32\drivers\senfilt.sys><Creative Technology Ltd.>
[SIS AGP Bus Filter / sisagp][Stopped/Disabled]
<\SystemRoot\system32\DRIVERS\sisagp.sys><Silicon Integrated Systems Corporation>
[SMC Compact USB to Ethernet converter / SMC2208][Stopped/Manual Start]
<system32\DRIVERS\SMC2208.SYS><SMC2208USB/ETH>
[smwdm / smwdm][Running/Manual Start]
<system32\drivers\smwdm.sys><Analog Devices, Inc.>
[Sparrow / Sparrow][Stopped/Disabled]
<\SystemRoot\system32\DRIVERS\sparrow.sys><Adaptec, Inc.>
[symc810 / symc810][Stopped/Disabled]
<\SystemRoot\system32\DRIVERS\symc810.sys><Symbios Logic Inc.>
[symc8xx / symc8xx][Stopped/Disabled]
<\SystemRoot\system32\DRIVERS\symc8xx.sys><LSI Logic>
[sym_hi / sym_hi][Stopped/Disabled]
<\SystemRoot\system32\DRIVERS\sym_hi.sys><LSI Logic>
[sym_u3 / sym_u3][Stopped/Disabled]
<\SystemRoot\system32\DRIVERS\sym_u3.sys><LSI Logic>
[ultra / ultra][Stopped/Disabled]
<\SystemRoot\system32\DRIVERS\ultra.sys><Promise Technology, Inc.>
[Apple Mobile USB Driver / USBAAPL][Stopped/Manual Start]
<System32\Drivers\usbaapl.sys><N/A>
[WAN Miniport (ATW) / wanatw][Stopped/Manual Start]
<system32\DRIVERS\wanatw4.sys><N/A>
[winachsf / winachsf][Stopped/Manual Start]
<system32\DRIVERS\HSF_CNXT.sys><Conexant Systems, Inc.>

==================================
Browser Add-ons
[]
{02478D38-C3F9-4efb-9B51-7695ECA05670} <, >
[Adobe PDF Reader Link Helper]
{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} <C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll, (Signed) Adobe Systems Incorporated>
[]
{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} <, >
[Spybot-S&D IE Protection]
{53707962-6F74-2D53-2644-206D7942484F} <C:\PROGRA~1\SPYBOT~1\SDHelper.dll, (Signed) Safer Networking Limited>
[DriveLetterAccess]
{5CA3D70E-1895-11CF-8E15-001234567890} <C:\WINDOWS\System32\DLA\DLASHX_W.DLL, Sonic Solutions>
[]
{66654dcd-6304-486f-8cdd-c991c936a4ba} <, >
[SSVHelper Class]
{761497BB-D6F0-462C-B6EB-D4DAF1D92D43} <C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll, Sun Microsystems, Inc.>
[Easy Photo Print]
{9421DD08-935F-4701-A9CA-22DF90AC4EA6} <C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll, SEIKO EPSON CORPORATION / CyCom Technology Corp.>
[AVG Security Toolbar BHO]
{A3BC75A2-1F87-4686-AA43-5347D756017C} <C:\Program Files\AVG\AVG8\Toolbar\IEToolbar.dll, (Signed) >
[Google Toolbar Notifier BHO]
{AF69DE43-7D58-4638-B6FA-CE66B5AD205D} <C:\Program Files\Google\GoogleToolbarNotifier\5.2.4204.1700\swg.dll, (Signed) Google Inc.>
[]
{E246E762-EB8D-4EF0-AAC5-6C9F59C81ED9} <, >
[Java Plug-in]
{08B0E5C0-4FCB-11CF-AAA5-00401C608501} <C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll, Sun Microsystems, Inc.>
[Encarta Search Bar]
{B205A35E-1FC4-4CE3-818B-899DBBB3388C} <C:\Program Files\Common Files\Microsoft Shared\Encarta Search Bar\ENCSBAR.DLL, (Signed) Microsoft Corporation>
[]
{CD67F990-D8E9-11d2-98FE-00C0F0318AFE} <, >
[Spybot-S&D IE Protection]
{DFB852A3-47F8-48C4-A200-58CAB36FD2A2} <C:\PROGRA~1\SPYBOT~1\SDHelper.dll, (Signed) Safer Networking Limited>
[]
{e2e2dd38-d088-4134-82b7-f2ba38496583} <%windir%\Network Diagnostic\xpnetdiag.exe, (Signed) N/A>
[Messenger]
{FB5F1910-F110-11d2-BB9E-00C04F795683} <C:\Program Files\Messenger\msmsgs.exe, (Signed) Microsoft Corporation>
[Easy Photo Print]
{9421DD08-935F-4701-A9CA-22DF90AC4EA6} <C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll, SEIKO EPSON CORPORATION / CyCom Technology Corp.>
[AVG Security Toolbar]
{CCC7A320-B3CA-4199-B1A6-9F516DD69829} <C:\Program Files\AVG\AVG8\Toolbar\IEToolbar.dll, (Signed) >
[]
{00000000-0000-0000-0000-000000000000} <, >
[]
{00EF2092-6AC5-47C0-BD25-CF2D5D657FEB} <, >
[]
{01398B87-61AF-4FFB-9AB5-1A1C5FB39A9C} <, >
[]
{02478D38-C3F9-4EFB-9B51-7695ECA05670} <, >
[QuickTime Object]
{02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} <C:\Program Files\QuickTime\QTPlugin.ocx, (Signed) Apple Inc.>
[MetaStreamCtl Class]
{03F998B2-0E00-11D3-A498-00104B6EB52E} <C:\Program Files\Viewpoint\Viewpoint Experience Technology\AxMetaStream_0305000D.dll, Viewpoint Corporation>
[Adobe PDF Reader Link Helper]
{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} <C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll, (Signed) Adobe Systems Incorporated>
[]
{08B0E5C0-4FCB-11CF-AAA5-00401C608501} <, >
[PeerDraw Class]
{10072CEC-8CC1-11D1-986E-00A0C955B42E} <%CommonProgramFiles%\Microsoft Shared\VGX\vgx.dll, (Signed) N/A>
[]
{1239CC52-59EF-4DFA-8C61-90FFA846DF7E} <, >
[Shockwave ActiveX Control]
{166B1BCA-3F9C-11CF-8075-444553540000} <C:\WINDOWS\system32\Adobe\Director\SwDir.dll, (Signed) Adobe Systems, Inc.>
[InformationCardSigninHelper Class]
{19916E01-B44E-4E31-94A4-4696DF46157B} <C:\WINDOWS\system32\icardie.dll, (Signed) Microsoft Corporation>
[MetaStreamCtl Class]
{1B00725B-C455-4DE6-BFB6-AD540AD427CD} <C:\Program Files\Viewpoint\Viewpoint Experience Technology\AxMetaStream_0305000D.dll, Viewpoint Corporation>
[Windows Media Player]
{22D6F312-B0F6-11D0-94AB-0080C74C7E95} <C:\WINDOWS\system32\wmpdxm.dll, (Signed) Microsoft Corporation>
[]
{2318C2B1-4965-11D4-9B18-009027A5CD4F} <, >
[Shockwave ActiveX Control]
{233C1507-6A77-46A4-9443-F871F945D258} <C:\WINDOWS\system32\Adobe\Director\swdir.dll, (Signed) Adobe Systems, Inc.>
[HTML Document]
{25336920-03F9-11CF-8FD0-00AA00686F13} <C:\WINDOWS\system32\mshtml.dll, (Signed) Microsoft Corporation>
[XML DOM Document]
{2933BF90-7B36-11D2-B20E-00C04F983E60} <%SystemRoot%\system32\msxml3.dll, (Signed) N/A>
[]
{2C153C75-8476-434B-B3C3-57B63A3D1939} <, >
[DHTML Edit Control Safe for Scripting for IE5]
{2D360201-FFF5-11D1-8D03-00A0C959BC0A} <C:\Program Files\Common Files\Microsoft Shared\Triedit\dhtmled.ocx, (Signed) Microsoft Corporation>
[]
{2E5E800E-6AC0-411E-940A-369530A35E43} <, >
[HtmlDlgSafeHelper Class]
{3050F819-98B5-11CF-BB82-00AA00BDCE0B} <C:\WINDOWS\system32\mshtmled.dll, (Signed) Microsoft Corporation>
[Tabular Data Control]
{333C7BC4-460F-11D0-BC04-0080C7055A83} <C:\WINDOWS\system32\tdc.ocx, (Signed) Microsoft Corporation>
[IETag Factory]
{38481807-CA0E-42D2-BF39-B33AF135CC4D} <C:\PROGRA~1\COMMON~1\MICROS~1\SMARTT~1\IETAG.DLL, (Signed) Microsoft Corporation>
[]
{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} <, >
[]
{3DCEC959-378A-4922-AD7E-FD5C925D927F} <, >
[QuickTime Object]
{4063BE15-3B08-470D-A0D5-B37161CFFD69} <C:\Program Files\QuickTime\QTPlugin.ocx, (Signed) Apple Inc.>
[]
{406B5949-7190-4245-91A9-30A17DE16AD0} <, >
[]
{4481C2BF-0ED5-444E-B88F-F3F965916AFC} <, >
[XML Document]
{48123BC4-99D9-11D1-A6B3-00C04FD91555} <%SystemRoot%\system32\msxml3.dll, (Signed) N/A>
[]
{48DD0448-9209-4F81-9F6D-D83562940134} <, >
[Spybot-S&D IE Protection]
{53707962-6F74-2D53-2644-206D7942484F} <C:\PROGRA~1\SPYBOT~1\SDHelper.dll, (Signed) Safer Networking Limited>
[]
{549F957E-2F89-11D6-8CFE-00C04F52B225} <, >
[Shell Name Space]
{55136805-B2DE-11D1-B9F2-00A0C98BC547} <C:\WINDOWS\system32\ieframe.dll, (Signed) Microsoft Corporation>
[DriveLetterAccess]
{5CA3D70E-1895-11CF-8E15-001234567890} <C:\WINDOWS\System32\DLA\DLASHX_W.DLL, Sonic Solutions>
[WUWebControl Class]
{6414512B-B978-451D-A0D8-FCFDF33E833C} <C:\WINDOWS\system32\wuweb.dll, (Signed) Microsoft Corporation>
[]
{66654DCD-6304-486F-8CDD-C991C936A4BA} <, >
[]
{67DABFBF-D0AB-41FA-9C46-CC0F21721616} <, >
[Windows Media Player]
{6BF52A52-394A-11D3-B153-00C04F79FAA6} <C:\WINDOWS\system32\wmp.dll, (Signed) Microsoft Corporation>
[MUWebControl Class]
{6E32070A-766D-4EE6-879C-DC1FA91D2FC3} <C:\WINDOWS\system32\muweb.dll, (Signed) Microsoft Corporation>
[Active Desktop Mover]
{72267f6a-a6f9-11d0-bc94-00c04fb67863} <%SystemRoot%\system32\SHELL32.dll, (Signed) N/A>
[SSVHelper Class]
{761497BB-D6F0-462C-B6EB-D4DAF1D92D43} <C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll, Sun Microsystems, Inc.>
[]
{7EBD00AF-93F8-4F57-AF64-2F51544C74F2} <, >
[Microsoft Web Browser]
{8856F961-340A-11D0-A96B-00C04FD705A2} <C:\WINDOWS\system32\ieframe.dll, (Signed) Microsoft Corporation>
[XML DOM Document 4.0]
{88D969C0-F192-11D4-A65F-0040963251E5} <c:\WINDOWS\system32\msxml4.dll, (Signed) Microsoft Corporation>
[Free Threaded XML DOM Document 4.0]
{88D969C1-F192-11D4-A65F-0040963251E5} <c:\WINDOWS\system32\msxml4.dll, (Signed) Microsoft Corporation>
[XSL Template 4.0]
{88D969C3-F192-11D4-A65F-0040963251E5} <c:\WINDOWS\system32\msxml4.dll, (Signed) Microsoft Corporation>
[XML HTTP 4.0]
{88D969C5-F192-11D4-A65F-0040963251E5} <c:\WINDOWS\system32\msxml4.dll, (Signed) Microsoft Corporation>
[XML DOM Document 6.0]
{88D96A05-F192-11D4-A65F-0040963251E5} <c:\WINDOWS\system32\msxml6.dll, (Signed) Microsoft Corporation>
[Free Threaded XML DOM Document 6.0]
{88D96A06-F192-11D4-A65F-0040963251E5} <c:\WINDOWS\system32\msxml6.dll, (Signed) Microsoft Corporation>
[XSL Template 6.0]
{88D96A08-F192-11D4-A65F-0040963251E5} <c:\WINDOWS\system32\msxml6.dll, (Signed) Microsoft Corporation>
[XML HTTP 6.0]
{88D96A0A-F192-11D4-A65F-0040963251E5} <c:\WINDOWS\system32\msxml6.dll, (Signed) Microsoft Corporation>
[]
{8A0019EB-51FA-4AE5-A40B-C0496BBFC739} <, >
[]
{8A94C905-FF9D-43B6-8708-F0F22D22B1CB} <, >
[Java Plug-in]
{8AD9C840-044E-11D1-B3E9-00805F499D93} <C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll, Sun Microsystems, Inc.>
[Easy Photo Print]
{9421DD08-935F-4701-A9CA-22DF90AC4EA6} <C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll, SEIKO EPSON CORPORATION / CyCom Technology Corp.>
[]
{9C23D886-43CB-43DE-B2DB-112A68D7E10A} <, >
[]
{9D39223E-AE8E-11D4-8FD3-00D0B7730277} <, >
[]
{9D95E5DD-815E-4684-8C51-D721AFE6303A} <C:\PROGRA~1\EZFace\ActiveX\EZFace204.ocx, EZFace Ltd.>
[]
{A057A204-BACC-4D26-9990-79A187E2698E} <, >
[AVG Security Toolbar BHO]
{A3BC75A2-1F87-4686-AA43-5347D756017C} <C:\Program Files\AVG\AVG8\Toolbar\IEToolbar.dll, (Signed) >
[]
{AA1F9DDB-E605-4BA6-81D4-E427DEE012AD} <, >
[]
{AA58ED58-01DD-4D91-8333-CF10577473F7} <, >
[Google Toolbar Notifier BHO]
{AF69DE43-7D58-4638-B6FA-CE66B5AD205D} <C:\Program Files\Google\GoogleToolbarNotifier\5.2.4204.1700\swg.dll, (Signed) Google Inc.>
[SearchAssistantOC]
{B45FF030-4447-11D2-85DE-00C04FA35C89} <%SystemRoot%\system32\shdocvw.dll, (Signed) N/A>
[IWinAmpActiveX Class]
{B49C4597-8721-4789-9250-315DFBD9F525} <C:\Program Files\Common Files\Nullsoft\ActiveX\2.6\AmpX.dll, >
[RDS.DataSpace]
{BD96C556-65A3-11D0-983A-00C04FC29E36} <C:\Program Files\Common Files\System\msadc\msadco.dll, (Signed) Microsoft Corporation>
[]
{C84D72FE-E17D-4195-BB24-76C02E2E7C4E} <, >
[]
{CA6319C0-31B7-401E-A518-A07C3DB8F777} <, >
[Adobe PDF Reader]
{CA8A9780-280D-11CF-A24D-444553540000} <C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroPDF.dll, (Signed) Adobe Systems, Inc.>
[AVG Security Toolbar]
{CCC7A320-B3CA-4199-B1A6-9F516DD69829} <C:\Program Files\AVG\AVG8\Toolbar\IEToolbar.dll, (Signed) >
[AUDIO__MID Moniker Class]
{CD3AFA74-B84F-48F0-9393-7EDC34128127} <C:\WINDOWS\system32\wmp.dll, (Signed) Microsoft Corporation>
[AUDIO__MP3 Moniker Class]
{CD3AFA76-B84F-48F0-9393-7EDC34128127} <C:\WINDOWS\system32\wmp.dll, (Signed) Microsoft Corporation>
[AUDIO__WAV Moniker Class]
{CD3AFA7B-B84F-48F0-9393-7EDC34128127} <C:\WINDOWS\system32\wmp.dll, (Signed) Microsoft Corporation>
[VIDEO__AVI Moniker Class]
{CD3AFA88-B84F-48F0-9393-7EDC34128127} <C:\WINDOWS\system32\wmp.dll, (Signed) Microsoft Corporation>
[VIDEO__X_MS_ASF Moniker Class]
{CD3AFA8F-B84F-48F0-9393-7EDC34128127} <C:\WINDOWS\system32\wmp.dll, (Signed) Microsoft Corporation>
[VIDEO__X_MS_WMV Moniker Class]
{CD3AFA94-B84F-48F0-9393-7EDC34128127} <C:\WINDOWS\system32\wmp.dll, (Signed) Microsoft Corporation>
[]
{CD67F990-D8E9-11D2-98FE-00C0F0318AFE} <, >
[get_atlcom Class]
{CF40ACC5-E1BB-4AFF-AC72-04C2F616BCA7} <C:\WINDOWS\Downloaded Program Files\gp.ocx, (Signed) NOS Microsystems Ltd.>
[]
{CFCDAA03-8BE4-11CF-B84B-0020AFBBCCFA} <, >
[Shockwave Flash Object]
{D27CDB6E-AE6D-11CF-96B8-444553540000} <C:\WINDOWS\system32\Macromed\Flash\Flash10c.ocx, (Signed) Adobe Systems, Inc.>
[]
{D5184A39-CBDF-4A4F-AC1A-7A45A852C883} <, >
[iTunesDetector Class]
{D719897A-B07A-4C0C-AEA9-9B663A28DFCB} <C:\Program Files\iTunes\ITDetector.ocx, (Signed) Apple Inc.>
[Google Updater Class]
{D742F4EC-5D39-4294-8A17-11969A294512} <C:\Program Files\Google\Google Updater\2.4.1536.6592\ci.dll, (Signed) Google>
[]
{DA4F543C-C8A9-4E88-9A79-548CBB46F18F} <, >
[]
{DCE2F8B1-A520-11D4-8FD0-00D0B7730277} <, >
[]
{DDCF16DD-38C4-4678-9408-F855179A6383} <C:\PROGRA~1\EZFace\ActiveX\EZFace204.ocx, EZFace Ltd.>
[QuickTimeCheck Class]
{DE4AF3B0-F4D4-11D3-B41A-0050DA2E6C21} <C:\Program Files\QuickTime\QTSystem\QuickTimeCheck.ocx, (Signed) Apple Inc.>
[]
{DFB852A3-47F8-48C4-A200-58CAB36FD2A2} <, >
[]
{DFEAF541-F3E1-4C24-ACAC-99C30715084A} <, >
[]
{E246E762-EB8D-4EF0-AAC5-6C9F59C81ED9} <, >
[]
{E2E2DD38-D088-4134-82B7-F2BA38496583} <, >
[]
{E312764E-7706-43F1-8DAB-FCDD2B1E416D} <, >
[]
{E3E02F12-2ADB-478C-8742-5F0819F9F0F4} <"C:\Documents and Settings\KJ\Application Data\Move Networks\ie_bin\qsp2ie071301000019.dll", N/A>
[]
{e473a65c-8087-49a3-affd-c5bc4a10669b} <"C:\Documents and Settings\KJ\Application Data\Move Networks\ie_bin\qsp2ie071301000019.dll", N/A>
[XML HTTP Request]
{ED8C108E-4349-11D2-91A4-00C04F7969E8} <%SystemRoot%\system32\msxml3.dll, (Signed) N/A>
[]
{EF99BD32-C1FB-11D2-892F-0090271D4F88} <, >
[]
{F137B9BA-89EA-4B04-9C67-2074A9DF61FD} <, >
[XML DOM Document 3.0]
{F5078F32-C551-11D3-89B9-0000F81FE221} <%SystemRoot%\system32\msxml3.dll, (Signed) N/A>
[XML HTTP 3.0]
{F5078F35-C551-11D3-89B9-0000F81FE221} <%SystemRoot%\system32\msxml3.dll, (Signed) N/A>
[XML DOM Document]
{F6D90F11-9C73-11D3-B32E-00C04F990BB4} <%SystemRoot%\system32\msxml3.dll, (Signed) N/A>
[XML HTTP]
{F6D90F16-9C73-11D3-B32E-00C04F990BB4} <%SystemRoot%\system32\msxml3.dll, (Signed) N/A>
[]
{FB5F1910-F110-11D2-BB9E-00C04F795683} <, >
[]
{fc345d4c-b8f4-4674-bff7-3c37d2e535ee} <"C:\Documents and Settings\KJ\Application Data\Move Networks\ie_bin\qsp2ie071301000019.dll", N/A>
[]
{fd6484ed-ebe3-4c3d-938a-8238003b41b7} <"C:\Documents and Settings\KJ\Application Data\Move Networks\ie_bin\qsp2ie071301000019.dll", N/A>
[&Search]
<?p=ZJxdm090YYUS, N/A>

==================================
Running Processes
[PID: 540 / SYSTEM][\SystemRoot\System32\smss.exe] [(Verified) Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 604 / SYSTEM][\??\C:\WINDOWS\system32\csrss.exe] [(Verified) Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 628 / SYSTEM][\??\C:\WINDOWS\system32\winlogon.exe] [(Verified) Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[C:\WINDOWS\system32\avgrsstx.dll] [AVG Technologies CZ, s.r.o., 8.5.0.401]
[C:\WINDOWS\system32\rutulivi.dll] [N/A, ]
[C:\DOCUME~1\KJ\LOCALS~1\Temp\1939xxx.dll] [N/A, ]
[c:\windows\system32\zoyageze.dll] [N/A, ]
[PID: 728 / SYSTEM][C:\WINDOWS\system32\services.exe] [(Verified) Microsoft Corporation, 5.1.2600.3520 (xpsp_sp2_qfe.090206-1239)]
[C:\WINDOWS\system32\avgrsstx.dll] [AVG Technologies CZ, s.r.o., 8.5.0.401]
[C:\WINDOWS\system32\rutulivi.dll] [N/A, ]
[C:\DOCUME~1\KJ\LOCALS~1\Temp\1939xxx.dll] [N/A, ]
[c:\windows\system32\zoyageze.dll] [N/A, ]
[PID: 740 / SYSTEM][C:\WINDOWS\system32\lsass.exe] [(Verified) Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[C:\WINDOWS\system32\avgrsstx.dll] [AVG Technologies CZ, s.r.o., 8.5.0.401]
[C:\WINDOWS\system32\rutulivi.dll] [N/A, ]
[C:\DOCUME~1\KJ\LOCALS~1\Temp\1939xxx.dll] [N/A, ]
[C:\WINDOWS\system32\deseliwo.dll] [N/A, ]
[PID: 984 / SYSTEM][C:\WINDOWS\system32\svchost.exe] [(Verified) Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[C:\WINDOWS\system32\avgrsstx.dll] [AVG Technologies CZ, s.r.o., 8.5.0.401]
[C:\WINDOWS\system32\rutulivi.dll] [N/A, ]
[C:\DOCUME~1\KJ\LOCALS~1\Temp\1939xxx.dll] [N/A, ]
[PID: 1108 / NETWORK SERVICE][C:\WINDOWS\system32\svchost.exe] [(Verified) Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[C:\WINDOWS\system32\avgrsstx.dll] [AVG Technologies CZ, s.r.o., 8.5.0.401]
[C:\WINDOWS\system32\rutulivi.dll] [N/A, ]
[\\?\globalroot\Device\__max++>\CACE2D3A.x86.dll] [N/A, ]
[C:\Program Files\Bonjour\mdnsNSP.dll] [Apple Inc., 1,0,6,2]
[PID: 1208 / SYSTEM][C:\WINDOWS\System32\svchost.exe] [(Verified) Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[C:\WINDOWS\System32\avgrsstx.dll] [AVG Technologies CZ, s.r.o., 8.5.0.401]
[C:\WINDOWS\System32\rutulivi.dll] [N/A, ]
[C:\DOCUME~1\KJ\LOCALS~1\Temp\1939xxx.dll] [N/A, ]
[\\?\globalroot\Device\__max++>\CACE2D3A.x86.dll] [N/A, ]
[PID: 1308 / NETWORK SERVICE][C:\WINDOWS\system32\svchost.exe] [(Verified) Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[C:\WINDOWS\system32\avgrsstx.dll] [AVG Technologies CZ, s.r.o., 8.5.0.401]
[C:\WINDOWS\system32\rutulivi.dll] [N/A, ]
[\\?\globalroot\Device\__max++>\CACE2D3A.x86.dll] [N/A, ]
[PID: 1456 / LOCAL SERVICE][C:\WINDOWS\system32\svchost.exe] [(Verified) Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[C:\WINDOWS\system32\avgrsstx.dll] [AVG Technologies CZ, s.r.o., 8.5.0.401]
[C:\WINDOWS\system32\rutulivi.dll] [N/A, ]
[\\?\globalroot\Device\__max++>\CACE2D3A.x86.dll] [N/A, ]
[PID: 1664 / KJ][C:\WINDOWS\Explorer.EXE] [(Verified) Microsoft Corporation, 6.00.2900.3156 (xpsp_sp2_gdr.070613-1234)]
[C:\WINDOWS\system32\avgrsstx.dll] [AVG Technologies CZ, s.r.o., 8.5.0.401]
[C:\WINDOWS\system32\rutulivi.dll] [N/A, ]
[C:\DOCUME~1\KJ\LOCALS~1\Temp\1939xxx.dll] [N/A, ]
[C:\Program Files\iTunes\iTunesMiniPlayer.dll] [Apple Inc., 8.1.1.10]
[C:\Program Files\iTunes\iTunesMiniPlayer.Resources\en.lproj\iTunesMiniPlayerLocalized.dll] [Apple Inc., 8.1.1.10]
[C:\Program Files\iTunes\iTunesMiniPlayer.Resources\iTunesMiniPlayer.dll] [Apple Inc., 8.1.1.10]
[c:\windows\system32\zoyageze.dll] [N/A, ]
[C:\WINDOWS\system32\calc.dll] [Microsoft, 1, 0, 0, 1]
[C:\PROGRA~1\SPYBOT~1\SDHelper.dll] [Safer Networking Limited, 1, 6, 2, 14]
[C:\Program Files\Adobe\Acrobat 7.0\ActiveX\PDFShell.dll] [Adobe Systems, Inc., 7.0.0.0]
[\\?\globalroot\Device\__max++>\CACE2D3A.x86.dll] [N/A, ]
[C:\Program Files\Bonjour\mdnsNSP.dll] [Apple Inc., 1,0,6,2]
[C:\WINDOWS\system32\igfxpph.dll] [Intel Corporation, 3.0.0.4299]
[C:\WINDOWS\system32\hccutils.DLL] [Intel Corporation, 3.0.0.4299]
[C:\WINDOWS\system32\igfxres.dll] [Intel Corporation, 3.0.0.4299]
[C:\WINDOWS\system32\igfxress.dll] [Intel Corporation, 3.0.0.4299]
[C:\WINDOWS\system32\igfxsrvc.dll] [Intel Corporation, 3.0.0.4299]
[PID: 1700 / SYSTEM][C:\Program Files\Lavasoft\Ad-Aware\aawservice.exe] [Lavasoft, 7,1,0,12]
[C:\Program Files\Lavasoft\Ad-Aware\CEAPI.dll] [Lavasoft, 7,1,0,13]
[C:\Program Files\Lavasoft\Ad-Aware\PKArchive85u.dll] [PKWARE, Inc., 8.4.1045.0]
[C:\WINDOWS\system32\avgrsstx.dll] [AVG Technologies CZ, s.r.o., 8.5.0.401]
[C:\WINDOWS\system32\rutulivi.dll] [N/A, ]
[C:\DOCUME~1\KJ\LOCALS~1\Temp\1939xxx.dll] [N/A, ]
[c:\windows\system32\zoyageze.dll] [N/A, ]
[PID: 320 / SYSTEM][C:\WINDOWS\system32\spoolsv.exe] [(Verified) Microsoft Corporation, 5.1.2600.2696 (xpsp_sp2_gdr.050610-1519)]
[C:\WINDOWS\system32\avgrsstx.dll] [AVG Technologies CZ, s.r.o., 8.5.0.401]
[C:\WINDOWS\system32\rutulivi.dll] [N/A, ]
[C:\DOCUME~1\KJ\LOCALS~1\Temp\1939xxx.dll] [N/A, ]
[\\?\globalroot\Device\__max++>\CACE2D3A.x86.dll] [N/A, ]
[C:\WINDOWS\system32\E_FLBEDA.DLL] [SEIKO EPSON CORPORATION, 2, 8, 0, 0]
[C:\Program Files\Bonjour\mdnsNSP.dll] [Apple Inc., 1,0,6,2]
[PID: 556 / LOCAL SERVICE][C:\WINDOWS\system32\svchost.exe] [(Verified) Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[C:\WINDOWS\system32\avgrsstx.dll] [AVG Technologies CZ, s.r.o., 8.5.0.401]
[C:\WINDOWS\system32\rutulivi.dll] [N/A, ]
[PID: 592 / SYSTEM][C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe] [ArcSoft Inc., 1.1.0.35]
[C:\WINDOWS\system32\avgrsstx.dll] [AVG Technologies CZ, s.r.o., 8.5.0.401]
[C:\WINDOWS\system32\rutulivi.dll] [N/A, ]
[C:\DOCUME~1\KJ\LOCALS~1\Temp\1939xxx.dll] [N/A, ]
[PID: 748 / SYSTEM][C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe] [Apple Inc., 2.12.36.0]
[C:\WINDOWS\system32\avgrsstx.dll] [AVG Technologies CZ, s.r.o., 8.5.0.401]
[C:\WINDOWS\system32\rutulivi.dll] [N/A, ]
[C:\DOCUME~1\KJ\LOCALS~1\Temp\1939xxx.dll] [N/A, ]
[c:\windows\system32\zoyageze.dll] [N/A, ]
[\\?\globalroot\Device\__max++>\CACE2D3A.x86.dll] [N/A, ]
[C:\Program Files\Bonjour\mdnsNSP.dll] [Apple Inc., 1,0,6,2]
[PID: 836 / SYSTEM][C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe] [AVG Technologies CZ, s.r.o., 8.5.0.401]
[C:\WINDOWS\system32\avgrsstx.dll] [AVG Technologies CZ, s.r.o., 8.5.0.401]
[C:\WINDOWS\system32\rutulivi.dll] [N/A, ]
[C:\DOCUME~1\KJ\LOCALS~1\Temp\1939xxx.dll] [N/A, ]
[c:\windows\system32\zoyageze.dll] [N/A, ]
[C:\Program Files\AVG\AVG8\avglogx.dll] [AVG Technologies CZ, s.r.o., 8.5.0.401]
[C:\PROGRA~1\AVG\AVG8\avgwd.dll] [AVG Technologies CZ, s.r.o., 8.5.0.401]
[C:\PROGRA~1\AVG\AVG8\avgcfgx.dll] [AVG Technologies CZ, s.r.o., 8.5.0.401]
[C:\PROGRA~1\AVG\AVG8\avgamnot.dll] [AVG Technologies CZ, s.r.o., 8.5.0.401]
[C:\PROGRA~1\AVG\AVG8\avgsched.dll] [AVG Technologies CZ, s.r.o., 8.5.0.401]
[C:\PROGRA~1\AVG\AVG8\avgwdwsc.dll] [AVG Technologies CZ, s.r.o., 8.5.0.401]
[C:\PROGRA~1\AVG\AVG8\avglngx.dll] [AVG Technologies CZ, s.r.o., 8.5.0.401]
[PID: 1148 / SYSTEM][C:\Program Files\Bonjour\mDNSResponder.exe] [Apple Inc., 1,0,6,2]
[C:\WINDOWS\system32\avgrsstx.dll] [AVG Technologies CZ, s.r.o., 8.5.0.401]
[C:\WINDOWS\system32\rutulivi.dll] [N/A, ]
[C:\DOCUME~1\KJ\LOCALS~1\Temp\1939xxx.dll] [N/A, ]
[c:\windows\system32\zoyageze.dll] [N/A, ]
[\\?\globalroot\Device\__max++>\CACE2D3A.x86.dll] [N/A, ]
[PID: 1592 / SYSTEM][C:\WINDOWS\system32\svchost.exe] [(Verified) Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[C:\WINDOWS\system32\avgrsstx.dll] [AVG Technologies CZ, s.r.o., 8.5.0.401]
[C:\WINDOWS\system32\rutulivi.dll] [N/A, ]
[C:\DOCUME~1\KJ\LOCALS~1\Temp\1939xxx.dll] [N/A, ]
[PID: 460 / SYSTEM][C:\PROGRA~1\AVG\AVG8\avgemc.exe] [AVG Technologies CZ, s.r.o., 8.5.0.401]
[C:\PROGRA~1\AVG\AVG8\libsasl.dll] [AVG Technologies CZ, s.r.o., 8.5.0.401]
[C:\WINDOWS\system32\avgrsstx.dll] [AVG Technologies CZ, s.r.o., 8.5.0.401]
[C:\WINDOWS\system32\rutulivi.dll] [N/A, ]
[C:\DOCUME~1\KJ\LOCALS~1\Temp\1939xxx.dll] [N/A, ]
[C:\Program Files\AVG\AVG8\avglogx.dll] [AVG Technologies CZ, s.r.o., 8.5.0.401]
[C:\Program Files\AVG\AVG8\avgapix.dll] [AVG Technologies CZ, s.r.o., 8.5.0.401]
[C:\Program Files\AVG\AVG8\avgcfgx.dll] [AVG Technologies CZ, s.r.o., 8.5.0.401]
[C:\Program Files\AVG\AVG8\avglngx.dll] [AVG Technologies CZ, s.r.o., 8.5.0.401]
[C:\Program Files\AVG\AVG8\avgscanx.dll] [AVG Technologies CZ, s.r.o., 8.5.0.401]
[C:\Program Files\AVG\AVG8\avgsrmx.dll] [AVG Technologies CZ, s.r.o., 8.5.0.401]
[C:\Program Files\AVG\AVG8\avgvvx.dll] [AVG Technologies CZ, s.r.o., 8.5.0.401]
[C:\Program Files\AVG\AVG8\avgmvflx.dll] [AVG Technologies CZ, s.r.o., 8.5.0.401]
[C:\Program Files\AVG\AVG8\avgcclix.dll] [AVG Technologies CZ, s.r.o., 8.5.0.401]
[C:\PROGRA~1\AVG\AVG8\saslcrammd5.dll] [AVG Technologies CZ, s.r.o., 8.5.0.401]
[C:\PROGRA~1\AVG\AVG8\sasldigestmd5.dll] [AVG Technologies CZ, s.r.o., 8.5.0.401]
[C:\PROGRA~1\AVG\AVG8\sasllogin.dll] [AVG Technologies CZ, s.r.o., 8.5.0.401]
[C:\PROGRA~1\AVG\AVG8\saslplain.dll] [AVG Technologies CZ, s.r.o., 8.5.0.401]
[\\?\globalroot\Device\__max++>\CACE2D3A.x86.dll] [N/A, ]
[PID: 520 / SYSTEM][C:\PROGRA~1\AVG\AVG8\avgrsx.exe] [AVG Technologies CZ, s.r.o., 8.5.0.401]
[C:\Program Files\AVG\AVG8\avglogx.dll] [AVG Technologies CZ, s.r.o., 8.5.0.401]
[C:\PROGRA~1\AVG\AVG8\avgcorex.dll] [AVG Technologies CZ, s.r.o., 8.5.0.408]
[C:\PROGRA~1\AVG\AVG8\avgcrlpx.dll] [AVG Technologies CZ, s.r.o., 8.5.0.401]
[PID: 480 / SYSTEM][C:\PROGRA~1\AVG\AVG8\avgnsx.exe] [AVG Technologies CZ, s.r.o., 8.5.0.401]
[C:\Program Files\AVG\AVG8\avglogx.dll] [AVG Technologies CZ, s.r.o., 8.5.0.401]
[C:\PROGRA~1\AVG\AVG8\avgcfgx.dll] [AVG Technologies CZ, s.r.o., 8.5.0.401]
[C:\WINDOWS\system32\avgrsstx.dll] [AVG Technologies CZ, s.r.o., 8.5.0.401]
[C:\WINDOWS\system32\rutulivi.dll] [N/A, ]
[C:\DOCUME~1\KJ\LOCALS~1\Temp\1939xxx.dll] [N/A, ]
[c:\windows\system32\zoyageze.dll] [N/A, ]
[\\?\globalroot\Device\__max++>\CACE2D3A.x86.dll] [N/A, ]
[C:\Program Files\Bonjour\mdnsNSP.dll] [Apple Inc., 1,0,6,2]
[C:\PROGRA~1\AVG\AVG8\avgxpl.dll] [AVG Technologies CZ, s.r.o., 8.5.0.401]
[C:\Program Files\AVG\AVG8\avglvex.dll] [AVG Technologies CZ, s.r.o., 8.5.0.401]
[C:\WINDOWS\WinSxS\x86_Microsoft.VC80.MFC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_3bf8fa05\MFC80.DLL] [Microsoft Corporation, 8.00.50727.762]
[C:\WINDOWS\WinSxS\x86_Microsoft.VC80.MFCLOC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_91481303\MFC80ENU.DLL] [Microsoft Corporation, 8.00.50727.762]
[PID: 2004 / SYSTEM][C:\Program Files\AVG\AVG8\avgcsrvx.exe] [AVG Technologies CZ, s.r.o., 8.5.0.401]
[C:\Program Files\AVG\AVG8\avglogx.dll] [AVG Technologies CZ, s.r.o., 8.5.0.401]
[C:\Program Files\AVG\AVG8\avgcorex.dll] [AVG Technologies CZ, s.r.o., 8.5.0.408]
[C:\Program Files\AVG\AVG8\avgcrlpx.dll] [AVG Technologies CZ, s.r.o., 8.5.0.401]
[PID: 2392 / LOCAL SERVICE][C:\WINDOWS\System32\alg.exe] [(Verified) Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[\\?\globalroot\Device\__max++>\CACE2D3A.x86.dll] [N/A, ]
[C:\WINDOWS\System32\avgrsstx.dll] [AVG Technologies CZ, s.r.o., 8.5.0.401]
[C:\WINDOWS\System32\rutulivi.dll] [N/A, ]
[c:\windows\system32\zoyageze.dll] [N/A, ]
[PID: 2708 / KJ][C:\Program Files\Analog Devices\Core\smax4pnp.exe] [Analog Devices, Inc., 5, 2, 0, 5]
[C:\Program Files\Analog Devices\Core\SMWDMIF.dll] [Analog Devices, Inc., 5, 2, 4, 000]
[C:\WINDOWS\system32\EDCrypt.DLL] [Analog Devices Incorporated, 1.0.0.8]
[C:\WINDOWS\system32\avgrsstx.dll] [AVG Technologies CZ, s.r.o., 8.5.0.401]
[C:\WINDOWS\system32\rutulivi.dll] [N/A, ]
[C:\DOCUME~1\KJ\LOCALS~1\Temp\1939xxx.dll] [N/A, ]
[c:\windows\system32\zoyageze.dll] [N/A, ]
[C:\WINDOWS\system32\calc.dll] [Microsoft, 1, 0, 0, 1]
[PID: 2840 / KJ][C:\WINDOWS\system32\hkcmd.exe] [Intel Corporation, 3.0.0.4299]
[C:\WINDOWS\system32\hccutils.DLL] [Intel Corporation, 3.0.0.4299]
[C:\WINDOWS\system32\avgrsstx.dll] [AVG Technologies CZ, s.r.o., 8.5.0.401]
[C:\WINDOWS\system32\rutulivi.dll] [N/A, ]
[C:\DOCUME~1\KJ\LOCALS~1\Temp\1939xxx.dll] [N/A, ]
[C:\WINDOWS\system32\igfxsrvc.dll] [Intel Corporation, 3.0.0.4299]
[c:\windows\system32\zoyageze.dll] [N/A, ]
[C:\WINDOWS\system32\calc.dll] [Microsoft, 1, 0, 0, 1]
[PID: 2852 / KJ][C:\WINDOWS\system32\igfxpers.exe] [Intel Corporation, 3.0.0.4299]
[C:\WINDOWS\system32\avgrsstx.dll] [AVG Technologies CZ, s.r.o., 8.5.0.401]
[C:\WINDOWS\system32\rutulivi.dll] [N/A, ]
[C:\DOCUME~1\KJ\LOCALS~1\Temp\1939xxx.dll] [N/A, ]
[C:\WINDOWS\system32\igfxsrvc.dll] [Intel Corporation, 3.0.0.4299]
[c:\windows\system32\zoyageze.dll] [N/A, ]
[C:\WINDOWS\system32\calc.dll] [Microsoft, 1, 0, 0, 1]
[PID: 2972 / KJ][C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe] [InstallShield Software Corporation, 4, 50, 100, 33433]
[C:\WINDOWS\system32\avgrsstx.dll] [AVG Technologies CZ, s.r.o., 8.5.0.401]
[C:\WINDOWS\system32\rutulivi.dll] [N/A, ]
[C:\DOCUME~1\KJ\LOCALS~1\Temp\1939xxx.dll] [N/A, ]
[PID: 3064 / KJ][C:\WINDOWS\System32\DLA\DLACTRLW.EXE] [Sonic Solutions, 5.20.08a]
[C:\WINDOWS\system32\DLAAPI_W.DLL] [Sonic Solutions, 5.20.08a]
[C:\WINDOWS\System32\DLA\DLACResW.dll] [Sonic Solutions, 5.20.08a]
[C:\WINDOWS\system32\avgrsstx.dll] [AVG Technologies CZ, s.r.o., 8.5.0.401]
[C:\WINDOWS\system32\rutulivi.dll] [N/A, ]
[C:\DOCUME~1\KJ\LOCALS~1\Temp\1939xxx.dll] [N/A, ]
[c:\windows\system32\zoyageze.dll] [N/A, ]
[C:\WINDOWS\system32\VxBlock.dll] [Sonic Solutions, 1.00.64a]
[C:\WINDOWS\system32\calc.dll] [Microsoft, 1, 0, 0, 1]
[PID: 3188 / KJ][C:\WINDOWS\system32\ctfmon.exe] [(Verified) Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[C:\WINDOWS\system32\avgrsstx.dll] [AVG Technologies CZ, s.r.o., 8.5.0.401]
[C:\WINDOWS\system32\rutulivi.dll] [N/A, ]
[C:\DOCUME~1\KJ\LOCALS~1\Temp\1939xxx.dll] [N/A, ]
[c:\windows\system32\zoyageze.dll] [N/A, ]
[C:\WINDOWS\system32\calc.dll] [Microsoft, 1, 0, 0, 1]
[PID: 3292 / KJ][C:\PROGRA~1\AVG\AVG8\avgtray.exe] [AVG Technologies CZ, s.r.o., 8.5.0.408]
[C:\WINDOWS\WinSxS\x86_Microsoft.VC80.MFC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_3bf8fa05\MFC80U.DLL] [Microsoft Corporation, 8.00.50727.762]
[C:\WINDOWS\system32\avgrsstx.dll] [AVG Technologies CZ, s.r.o., 8.5.0.401]
[C:\WINDOWS\system32\rutulivi.dll] [N/A, ]
[C:\DOCUME~1\KJ\LOCALS~1\Temp\1939xxx.dll] [N/A, ]
[C:\WINDOWS\WinSxS\x86_Microsoft.VC80.MFCLOC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_91481303\MFC80ENU.DLL] [Microsoft Corporation, 8.00.50727.762]
[C:\Program Files\AVG\AVG8\avglogx.dll] [AVG Technologies CZ, s.r.o., 8.5.0.401]
[C:\Program Files\AVG\AVG8\avgcfgx.dll] [AVG Technologies CZ, s.r.o., 8.5.0.401]
[C:\Program Files\AVG\AVG8\avglngx.dll] [AVG Technologies CZ, s.r.o., 8.5.0.401]
[C:\Program Files\AVG\AVG8\AVGUIRES.DLL] [AVG Technologies CZ, s.r.o., 8.5.0.401]
[C:\WINDOWS\system32\calc.dll] [Microsoft, 1, 0, 0, 1]
[c:\windows\system32\zoyageze.dll] [N/A, ]
[C:\Program Files\AVG\AVG8\avgsrmx.dll] [AVG Technologies CZ, s.r.o., 8.5.0.401]
[C:\Program Files\AVG\AVG8\avgvvx.dll] [AVG Technologies CZ, s.r.o., 8.5.0.401]
[C:\Program Files\AVG\AVG8\avgscanx.dll] [AVG Technologies CZ, s.r.o., 8.5.0.401]
[C:\Program Files\AVG\AVG8\avgmvflx.dll] [AVG Technologies CZ, s.r.o., 8.5.0.401]
[C:\Program Files\AVG\AVG8\avgcclix.dll] [AVG Technologies CZ, s.r.o., 8.5.0.401]
[PID: 3524 / KJ][C:\Program Files\iTunes\iTunesHelper.exe] [Apple Inc., 8.1.1.10]
[C:\WINDOWS\system32\avgrsstx.dll] [AVG Technologies CZ, s.r.o., 8.5.0.401]
[C:\WINDOWS\system32\rutulivi.dll] [N/A, ]
[C:\DOCUME~1\KJ\LOCALS~1\Temp\1939xxx.dll] [N/A, ]
[c:\windows\system32\zoyageze.dll] [N/A, ]
[C:\Program Files\iTunes\iTunesHelper.Resources\en.lproj\iTunesHelperLocalized.DLL] [Apple Inc., 8.1.1.10]
[C:\Program Files\iTunes\iTunesHelper.Resources\iTunesHelper.DLL] [Apple Inc., 8.1.1.10]
[C:\Program Files\QuickTime\QTSystem\QuickTime.qts] [Apple Inc., 7.6 (1292)]
[C:\WINDOWS\system32\calc.dll] [Microsoft, 1, 0, 0, 1]
[C:\Program Files\Common Files\Apple\Mobile Device Support\bin\iTunesMobileDevice.dll] [Apple Inc., 205.7.0.19]
[\\?\globalroot\Device\__max++>\CACE2D3A.x86.dll] [N/A, ]
[C:\Program Files\Bonjour\mdnsNSP.dll] [Apple Inc., 1,0,6,2]
[PID: 3624 / SYSTEM][C:\WINDOWS\System32\svchost.exe] [(Verified) Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[C:\WINDOWS\System32\avgrsstx.dll] [AVG Technologies CZ, s.r.o., 8.5.0.401]
[C:\WINDOWS\System32\rutulivi.dll] [N/A, ]
[C:\DOCUME~1\KJ\LOCALS~1\Temp\1939xxx.dll] [N/A, ]
[PID: 3756 / KJ][C:\WINDOWS\system32\rundll32.exe] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[C:\WINDOWS\system32\avgrsstx.dll] [AVG Technologies CZ, s.r.o., 8.5.0.401]
[C:\WINDOWS\system32\rutulivi.dll] [N/A, ]
[C:\DOCUME~1\KJ\LOCALS~1\Temp\1939xxx.dll] [N/A, ]
[c:\windows\system32\zoyageze.dll] [N/A, ]
[C:\WINDOWS\system32\calc.dll] [Microsoft, 1, 0, 0, 1]
[PID: 3920 / KJ][C:\Program Files\Dell Support\DSAgnt.exe] [Gteko Ltd., 2, 1, 3, 173]
[C:\WINDOWS\system32\avgrsstx.dll] [AVG Technologies CZ, s.r.o., 8.5.0.401]
[C:\WINDOWS\system32\rutulivi.dll] [N/A, ]
[C:\DOCUME~1\KJ\LOCALS~1\Temp\1939xxx.dll] [N/A, ]
[C:\WINDOWS\system32\calc.dll] [Microsoft, 1, 0, 0, 1]
[c:\windows\system32\zoyageze.dll] [N/A, ]
[C:\Program Files\Dell Support\GTAgnt.dll] [Gteko Ltd., 1, 0, 0, 12]
[C:\Program Files\Dell Support\CfgData.DLL] [Gteko Ltd., 1, 0, 0, 41]
[C:\Program Files\Dell Support\ActMgr.dll] [Gteko Ltd., 1, 0, 0, 18]
[c:\progra~1\dellsu~1\gtaction\handlers\grouph.dll] [Gteko Ltd., 1, 0, 0, 38]
[c:\progra~1\dellsu~1\gtaction\handlers\qdiagh.dll] [Gteko Ltd., 1, 0, 0, 32]
[c:\progra~1\dellsu~1\gtaction\handlers\trgloadh.dll] [Gteko Ltd., 1, 0, 0, 12]
[c:\progra~1\dellsu~1\gtaction\handlers\trgregh.dll] [Gteko Ltd., 1, 0, 0, 32]
[C:\Program Files\Dell Support\TrgMgr.DLL] [Gteko Ltd., 1, 0, 0, 18]
[C:\Program Files\Dell Support\AUPNP.dll] [Gteko Ltd., 1, 0, 0, 27]
[C:\Program Files\Dell Support\AUReg.dll] [Gteko Ltd., 1, 1, 0, 12]
[\\?\globalroot\Device\__max++>\CACE2D3A.x86.dll] [N/A, ]
[C:\Program Files\Bonjour\mdnsNSP.dll] [Apple Inc., 1,0,6,2]
[PID: 908 / KJ][C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe] [Safer-Networking Ltd., 1, 6, 6, 32]
[C:\WINDOWS\system32\avgrsstx.dll] [AVG Technologies CZ, s.r.o., 8.5.0.401]
[C:\WINDOWS\system32\rutulivi.dll] [N/A, ]
[C:\DOCUME~1\KJ\LOCALS~1\Temp\1939xxx.dll] [N/A, ]
[C:\WINDOWS\system32\calc.dll] [Microsoft, 1, 0, 0, 1]
[c:\windows\system32\zoyageze.dll] [N/A, ]
[\\?\globalroot\Device\__max++>\CACE2D3A.x86.dll] [N/A, ]
[C:\Program Files\Bonjour\mdnsNSP.dll] [Apple Inc., 1,0,6,2]
[C:\Program Files\Spybot - Search & Destroy\advcheck.dll] [Safer-Networking Ltd., 1, 6, 4, 18]
[PID: 1048 / KJ][C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe] [Google Inc., 2, 0, 301, 1654]
[C:\Program Files\Google\GoogleToolbarNotifier\5.2.4204.1700\gtn.dll] [Google Inc., 5, 2, 4204, 1700]
[C:\WINDOWS\system32\avgrsstx.dll] [AVG Technologies CZ, s.r.o., 8.5.0.401]
[C:\WINDOWS\system32\rutulivi.dll] [N/A, ]
[C:\DOCUME~1\KJ\LOCALS~1\Temp\1939xxx.dll] [N/A, ]
[C:\WINDOWS\system32\calc.dll] [Microsoft, 1, 0, 0, 1]
[c:\windows\system32\zoyageze.dll] [N/A, ]
[C:\Program Files\Google\GoogleToolbarNotifier\5.2.4204.1700\swg.dll] [Google Inc., 5, 2, 4204, 1700]
[PID: 2116 / KJ][C:\Program Files\Messenger\msmsgs.exe] [Microsoft Corporation, 4.7.3001]
[C:\WINDOWS\system32\avgrsstx.dll] [AVG Technologies CZ, s.r.o., 8.5.0.401]
[C:\WINDOWS\system32\rutulivi.dll] [N/A, ]
[C:\DOCUME~1\KJ\LOCALS~1\Temp\1939xxx.dll] [N/A, ]
[c:\windows\system32\zoyageze.dll] [N/A, ]
[C:\WINDOWS\system32\calc.dll] [Microsoft, 1, 0, 0, 1]
[\\?\globalroot\Device\__max++>\CACE2D3A.x86.dll] [N/A, ]
[C:\Program Files\Bonjour\mdnsNSP.dll] [Apple Inc., 1,0,6,2]
[PID: 796 / KJ][C:\Program Files\The Weather Channel FW\Desktop\DesktopWeather.exe] [The Weather Channel Interactive, Inc., 6.0.0.11]
[C:\WINDOWS\system32\avgrsstx.dll] [AVG Technologies CZ, s.r.o., 8.5.0.401]
[C:\WINDOWS\system32\rutulivi.dll] [N/A, ]
[C:\DOCUME~1\KJ\LOCALS~1\Temp\1939xxx.dll] [N/A, ]
[c:\windows\system32\zoyageze.dll] [N/A, ]
[C:\WINDOWS\system32\calc.dll] [Microsoft, 1, 0, 0, 1]
[C:\Program Files\The Weather Channel FW\Desktop\wxfw.dll] [The Weather Channel Interactive, Inc., 6.0.0.2]
[\\?\globalroot\Device\__max++>\CACE2D3A.x86.dll] [N/A, ]
[C:\Program Files\Bonjour\mdnsNSP.dll] [Apple Inc., 1,0,6,2]
[PID: 2224 / KJ][C:\Documents and Settings\KJ\Application Data\svcst.exe] [N/A, ]
[C:\WINDOWS\system32\avgrsstx.dll] [AVG Technologies CZ, s.r.o., 8.5.0.401]
[C:\WINDOWS\system32\rutulivi.dll] [N/A, ]
[C:\DOCUME~1\KJ\LOCALS~1\Temp\1939xxx.dll] [N/A, ]
[c:\windows\system32\zoyageze.dll] [N/A, ]
[C:\WINDOWS\system32\calc.dll] [Microsoft, 1, 0, 0, 1]
[PID: 2380 / KJ][C:\Documents and Settings\KJ\Application Data\seres.exe] [N/A, ]
[C:\WINDOWS\system32\avgrsstx.dll] [AVG Technologies CZ, s.r.o., 8.5.0.401]
[C:\WINDOWS\system32\rutulivi.dll] [N/A, ]
[C:\DOCUME~1\KJ\LOCALS~1\Temp\1939xxx.dll] [N/A, ]
[c:\windows\system32\zoyageze.dll] [N/A, ]
[PID: 2028 / SYSTEM][C:\Program Files\iPod\bin\iPodService.exe] [Apple Inc., 8.1.1.10]
[C:\WINDOWS\system32\avgrsstx.dll] [AVG Technologies CZ, s.r.o., 8.5.0.401]
[C:\WINDOWS\system32\rutulivi.dll] [N/A, ]
[C:\DOCUME~1\KJ\LOCALS~1\Temp\1939xxx.dll] [N/A, ]
[c:\windows\system32\zoyageze.dll] [N/A, ]
[C:\Program Files\iPod\bin\iPodService.Resources\en.lproj\iPodServiceLocalized.DLL] [Apple Inc., 8.1.1.10]
[C:\Program Files\iPod\bin\iPodService.Resources\iPodService.DLL] [Apple Inc., 8.1.1.10]
[PID: 2372 / KJ][C:\Program Files\Internet Explorer\iexplore.exe] [Microsoft Corporation, 8.00.6001.18702 (longhorn_ie8_rtm(wmbla).090308-0339)]
[C:\WINDOWS\system32\avgrsstx.dll] [AVG Technologies CZ, s.r.o., 8.5.0.401]
[C:\WINDOWS\system32\rutulivi.dll] [N/A, ]
[C:\DOCUME~1\KJ\LOCALS~1\Temp\1939xxx.dll] [N/A, ]
[\\?\globalroot\Device\__max++>\CACE2D3A.x86.dll] [N/A, ]
[C:\Program Files\Bonjour\mdnsNSP.dll] [Apple Inc., 1,0,6,2]
[C:\WINDOWS\system32\calc.dll] [Microsoft, 1, 0, 0, 1]
[c:\windows\system32\zoyageze.dll] [N/A, ]
[PID: 3476 / KJ][C:\Program Files\Internet Explorer\iexplore.exe] [Microsoft Corporation, 8.00.6001.18702 (longhorn_ie8_rtm(wmbla).090308-0339)]
[C:\WINDOWS\system32\avgrsstx.dll] [AVG Technologies CZ, s.r.o., 8.5.0.401]
[C:\WINDOWS\system32\rutulivi.dll] [N/A, ]
[C:\DOCUME~1\KJ\LOCALS~1\Temp\1939xxx.dll] [N/A, ]
[C:\WINDOWS\system32\calc.dll] [Microsoft, 1, 0, 0, 1]
[c:\windows\system32\zoyageze.dll] [N/A, ]
[\\?\globalroot\Device\__max++>\CACE2D3A.x86.dll] [N/A, ]
[C:\Program Files\Bonjour\mdnsNSP.dll] [Apple Inc., 1,0,6,2]
[C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll] [Adobe Systems Incorporated, 7.0.7.2006011200]
[C:\WINDOWS\system32\MSVCR71.dll] [Microsoft Corporation, 7.10.6014.4]
[C:\PROGRA~1\SPYBOT~1\SDHelper.dll] [Safer Networking Limited, 1, 6, 2, 14]
[C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll] [Sun Microsystems, Inc., 5.0.60.5]
[C:\Program Files\Google\GoogleToolbarNotifier\5.2.4204.1700\swg.dll] [Google Inc., 5, 2, 4204, 1700]
[C:\WINDOWS\system32\Macromed\Flash\Flash10c.ocx] [Adobe Systems, Inc., 10,0,32,18]
[PID: 1812 / KJ][C:\Program Files\Internet Explorer\iexplore.exe] [Microsoft Corporation, 8.00.6001.18702 (longhorn_ie8_rtm(wmbla).090308-0339)]
[C:\WINDOWS\system32\avgrsstx.dll] [AVG Technologies CZ, s.r.o., 8.5.0.401]
[C:\WINDOWS\system32\rutulivi.dll] [N/A, ]
[C:\DOCUME~1\KJ\LOCALS~1\Temp\1939xxx.dll] [N/A, ]
[C:\WINDOWS\system32\calc.dll] [Microsoft, 1, 0, 0, 1]
[c:\windows\system32\zoyageze.dll] [N/A, ]
[C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll] [Adobe Systems Incorporated, 7.0.7.2006011200]
[C:\WINDOWS\system32\MSVCR71.dll] [Microsoft Corporation, 7.10.6014.4]
[C:\PROGRA~1\SPYBOT~1\SDHelper.dll] [Safer Networking Limited, 1, 6, 2, 14]
[\\?\globalroot\Device\__max++>\CACE2D3A.x86.dll] [N/A, ]
[C:\Program Files\Bonjour\mdnsNSP.dll] [Apple Inc., 1,0,6,2]
[C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll] [Sun Microsystems, Inc., 5.0.60.5]
[C:\Program Files\Google\GoogleToolbarNotifier\5.2.4204.1700\swg.dll] [Google Inc., 5, 2, 4204, 1700]
[C:\WINDOWS\system32\Macromed\Flash\Flash10c.ocx] [Adobe Systems, Inc., 10,0,32,18]
[PID: 608 / KJ][C:\Program Files\Internet Explorer\iexplore.exe] [Microsoft Corporation, 8.00.6001.18702 (longhorn_ie8_rtm(wmbla).090308-0339)]
[C:\WINDOWS\system32\avgrsstx.dll] [AVG Technologies CZ, s.r.o., 8.5.0.401]
[C:\WINDOWS\system32\rutulivi.dll] [N/A, ]
[C:\DOCUME~1\KJ\LOCALS~1\Temp\1939xxx.dll] [N/A, ]
[C:\WINDOWS\system32\calc.dll] [Microsoft, 1, 0, 0, 1]
[c:\windows\system32\zoyageze.dll] [N/A, ]
[C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll] [Adobe Systems Incorporated, 7.0.7.2006011200]
[C:\WINDOWS\system32\MSVCR71.dll] [Microsoft Corporation, 7.10.6014.4]
[C:\PROGRA~1\SPYBOT~1\SDHelper.dll] [Safer Networking Limited, 1, 6, 2, 14]
[\\?\globalroot\Device\__max++>\CACE2D3A.x86.dll] [N/A, ]
[C:\Program Files\Bonjour\mdnsNSP.dll] [Apple Inc., 1,0,6,2]
[C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll] [Sun Microsystems, Inc., 5.0.60.5]
[C:\Program Files\Google\GoogleToolbarNotifier\5.2.4204.1700\swg.dll] [Google Inc., 5, 2, 4204, 1700]
[C:\WINDOWS\system32\Macromed\Flash\Flash10c.ocx] [Adobe Systems, Inc., 10,0,32,18]
[PID: 5968 / KJ][C:\Program Files\AVG\AVG8\avgcsrvx.exe] [AVG Technologies CZ, s.r.o., 8.5.0.401]
[C:\Program Files\AVG\AVG8\avglogx.dll] [AVG Technologies CZ, s.r.o., 8.5.0.401]
[C:\Program Files\AVG\AVG8\avgcorex.dll] [AVG Technologies CZ, s.r.o., 8.5.0.408]
[C:\Program Files\AVG\AVG8\avgcrlpx.dll] [AVG Technologies CZ, s.r.o., 8.5.0.401]
[PID: 5100 / KJ][C:\Program Files\WinRAR\WinRAR.exe] [N/A, ]
[C:\WINDOWS\system32\avgrsstx.dll] [AVG Technologies CZ, s.r.o., 8.5.0.401]
[C:\WINDOWS\system32\rutulivi.dll] [N/A, ]
[C:\DOCUME~1\KJ\LOCALS~1\Temp\1939xxx.dll] [N/A, ]
[c:\windows\system32\zoyageze.dll] [N/A, ]
[C:\WINDOWS\system32\calc.dll] [Microsoft, 1, 0, 0, 1]
[PID: 5960 / KJ][C:\Program Files\WinRAR\WinRAR.exe] [N/A, ]
[C:\WINDOWS\system32\avgrsstx.dll] [AVG Technologies CZ, s.r.o., 8.5.0.401]
[C:\WINDOWS\system32\rutulivi.dll] [N/A, ]
[C:\DOCUME~1\KJ\LOCALS~1\Temp\1939xxx.dll] [N/A, ]
[c:\windows\system32\zoyageze.dll] [N/A, ]
[C:\WINDOWS\system32\calc.dll] [Microsoft, 1, 0, 0, 1]
[PID: 5712 / KJ][C:\Documents and Settings\KJ\Desktop\SREngLdr.EXE] [Smallfrogs Studio, 2.8.1.1279]
[PID: 4796 / KJ][C:\Documents and Settings\KJ\Desktop\SREb484b330.EXE] [Smallfrogs Studio, 2.8.1.1279]
[C:\WINDOWS\system32\calc.dll] [Microsoft, 1, 0, 0, 1]
[c:\windows\system32\zoyageze.dll] [N/A, ]
[C:\WINDOWS\system32\rutulivi.dll] [N/A, ]
[C:\Documents and Settings\KJ\Desktop\Upload\3rdUpd.DLL] [Smallfrogs Studio, 2, 1, 0, 15]
[\\?\globalroot\Device\__max++>\CACE2D3A.x86.dll] [N/A, ]
[C:\Program Files\Bonjour\mdnsNSP.dll] [Apple Inc., 1,0,6,2]
[PID: 1548 / KJ][C:\Documents and Settings\KJ\Desktop\SREngLdr.EXE] [Smallfrogs Studio, 2.8.1.1279]
[c:\windows\system32\zoyageze.dll] [N/A, ]
[C:\WINDOWS\system32\rutulivi.dll] [N/A, ]
[PID: 5172 / KJ][C:\DOCUME~1\KJ\LOCALS~1\Temp\SRE64.EXE] [Smallfrogs Studio, 2.8.1.1279]
[C:\WINDOWS\system32\rutulivi.dll] [N/A, ]
[C:\WINDOWS\system32\calc.dll] [Microsoft, 1, 0, 0, 1]
[c:\windows\system32\zoyageze.dll] [N/A, ]
[\\?\globalroot\Device\__max++>\CACE2D3A.x86.dll] [N/A, ]
[C:\Program Files\Bonjour\mdnsNSP.dll] [Apple Inc., 1,0,6,2]

==================================
File Associations
.TXT OK. [%SystemRoot%\system32\NOTEPAD.EXE %1]
.EXE OK. ["%1" %*]
.COM OK. ["%1" %*]
.PIF OK. ["%1" %*]
.REG OK. [regedit.exe "%1"]
.BAT OK. ["%1" %*]
.SCR OK. ["%1" /S]
.CHM OK. ["C:\WINDOWS\hh.exe" %1]
.HLP OK. [%SystemRoot%\System32\winhlp32.exe %1]
.INI OK. [%SystemRoot%\System32\NOTEPAD.EXE %1]
.INF OK. [%SystemRoot%\System32\NOTEPAD.EXE %1]
.VBS OK. [%SystemRoot%\System32\WScript.exe "%1" %*]
.JS OK. [%SystemRoot%\System32\WScript.exe "%1" %*]
.LNK OK. [{00021401-0000-0000-C000-000000000046}]

==================================
Winsock Provider
N/A

==================================
Autorun.Inf
[D:\]
[autorun]
OPEN=setupSNK.exe
ICON=\SMRTNTKY\fcw.ico
ACTION=Wireless Network Setup Wizard

BC AdBot (Login to Remove)

 


#2 Elise

Elise

    Bleepin' Blonde


  • Malware Study Hall Admin
  • 61,111 posts
  • ONLINE
  •  
  • Gender:Female
  • Location:Romania
  • Local time:08:32 PM

Posted 22 October 2009 - 03:48 AM

Hello ,
And :( to the Bleeping Computer Malware Removal Forum
. My name is Elise and I'll be glad to help you with your computer problems.


I will be working on your malware issues, this may or may not solve other issues you may have with your machine.

Please note that whatever repairs we make, are for fixing your computer problems only and by no means should be used on another computer.

You may want to keep the link to this topic in your favorites. Alternatively, you can click the button at the top bar of this topic and Track this Topic, where you can choose email notifications. The topics you are tracking are shown here.
-----------------------------------------------------------
If you have since resolved the original problem you were having, we would appreciate you letting us know. If not please perform the following steps below so we can have a look at the current condition of your machine.

If you have not done so, include a clear description of the problems you're having, along with any steps you may have performed so far.

If you have already posted a DDS log, please do so again, as your situation may have changed.
Use the 'Add Reply' and add the new log to this thread.

We need to see some information about what is happening in your machine. Please perform the following scan:
  • Download DDS by sUBs from one of the following links. Save it to your desktop.
  • Double click on the DDS icon, allow it to run.
  • A small box will open, with an explanation about the tool. No input is needed, the scan is running.
  • Notepad will open with the results.
  • Follow the instructions that pop up for posting the results.
  • Close the program window, and delete the program from your desktop.
Please note: You may have to disable any script protection running if the scan fails to run. After downloading the tool, disconnect from the internet and disable all antivirus protection. Run the scan, enable your A/V and reconnect to the internet.

Information on A/V control HERE


We need to check for rootkits with RootRepeal
  • Download RootRepeal from the following location and save it to your desktop.
    Direct Download
  • Open Posted Image on your desktop.
  • Click the Posted Image tab.
  • Click the Posted Image button.
  • Check all seven boxes: Posted Image
  • Push Ok
  • Check the box for your main system drive (Usually C:), and press Ok.
  • Allow RootRepeal to run a scan of your system. This may take some time.
  • Once the scan completes, push the Posted Image button. Save the log to your desktop, using a distinctive name, such as RootRepeal.txt. Include this report in your next reply, please.
-------------------------------------------------------------
Please be patient and I'd be grateful if you would note the following
  • The cleaning process is not instant. DDS logs can take some time to research, so please be patient with me. I know that you need your computer working as quickly as possible, and I will work hard to help see that happen.
  • Please reply using the Add/Reply button in the lower right hand corner of your screen. Do not start a new topic.
  • The logs that you post should be pasted directly into the reply. Only attach them if requested or if they do not fit into the post.
  • Unfortunately, if I do not hear back from you within 5 days, I will be forced to close your topic. If you still need help after I have closed your topic, send me or a moderator a personal message with the address of the thread or feel free to create a new one.
In the meantime please, do NOT install any new programs or update anything unless told to do so while we are fixing your problem

If you still need help, please include the following in your next reply
  • A detailed description of your problems
  • A new DDS log
  • RootRepeal log


Please give me some time to review your logs and take the steps necessary with you to get your machine back in working order clean and free of malware.

Thanks and again sorry for the delay
.

regards, Elise


"Now faith is the substance of things hoped for, the evidence of things not seen."

 

Follow BleepingComputer on: Facebook | Twitter | Google+ | lockerdome

 

Malware analyst @ Emsisoft


#3 Elise

Elise

    Bleepin' Blonde


  • Malware Study Hall Admin
  • 61,111 posts
  • ONLINE
  •  
  • Gender:Female
  • Location:Romania
  • Local time:08:32 PM

Posted 26 October 2009 - 01:27 PM

Due to lack of feedback, this topic is now closed.

If you are the original topic starter and you need this topic re-opened, please send me a PM.

Everyone else, please start a new topic.

regards, Elise


"Now faith is the substance of things hoped for, the evidence of things not seen."

 

Follow BleepingComputer on: Facebook | Twitter | Google+ | lockerdome

 

Malware analyst @ Emsisoft





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users