Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Infected and nothing seems to work


  • This topic is locked This topic is locked
6 replies to this topic

#1 ivan_augusto

ivan_augusto

  • Members
  • 3 posts
  • OFFLINE
  •  
  • Local time:01:50 AM

Posted 25 October 2009 - 02:26 PM

Hi,
My PC was infected with virus pro 2010. I have deleted the program virus pro but as soon as I connect to the internet it gets automatically installed again. I have tried several software/anti-malware/spy ware removal but these programs don't run. They become innactivated as soon as I click on them. I have McCafe and it inactivates microsoft programs such as excel, word as infected. Of course, I cannot run my antivirus either. The only program I was able to run was SRE. I am posting the log below as instructed in previous forums. I would greatly appreciate your help. Thank you.


System Repair Engineer 2.8.1.1279 Emergency Scan Mode
Smallfrogs (http://www.KZTechs.com)

Windows XP Home Edition Service Pack 2 (Build 2600)

Follow item(s) have been selected:
All Boot Items (Including Registry, Startup Folders, Services and so on)
Browser Add-ons
Running Processes (Including process model information)
File Associations
Winsock Provider
Autorun.Inf
HOSTS File
Process Privileges Scan
Scheduled Tasks
Windows Security Update Check



Boot Items
Registry
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] <ModemOnHold><C:\Program Files\NetWaiting\netWaiting.exe> [] <MsnMsgr><"C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background> [(Verified)Microsoft Corporation] <WebCamRT.exe><> [N/A] <ctfmon.exe><C:\WINDOWS\system32\ctfmon.exe> [(Verified)Microsoft Windows Publisher] <DellSupport><"C:\Program Files\DellSupport\DSAgnt.exe" /startup> [(Verified)Dell Inc.] <DellTransferAgent><"C:\Documents and Settings\All Users\Application Data\Dell\TransferAgent\TransferAgent.exe"> [ ] <Skype><"C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized> [(Verified)Skype Technologies SA] <PronunciationPatterns><> [N/A] <Messenger (Yahoo!)><"C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe" -quiet> [(Verified)Yahoo! Inc.] <Search Protection><C:\Program Files\Yahoo!\Search Protection\SearchProtection.exe> [File is missing][HKEY_CURRENT_USER\Software\Microsoft\Windows NT\CurrentVersion\Windows] <load><> [N/A][HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run] <igfxtray><C:\WINDOWS\system32\igfxtray.exe> [(Verified)Microsoft Windows Hardware Compatibility Publisher] <igfxhkcmd><C:\WINDOWS\system32\hkcmd.exe> [(Verified)Microsoft Windows Hardware Compatibility Publisher] <igfxpers><C:\WINDOWS\system32\igfxpers.exe> [(Verified)Microsoft Windows Hardware Compatibility Publisher] <SunJavaUpdateSched><"C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe"> [(Verified)"Sun Microsystems, Inc."] <SynTPEnh><C:\Program Files\Synaptics\SynTP\SynTPEnh.exe> [(Verified)Microsoft Windows Hardware Compatibility Publisher] <IntelWireless><C:\Program Files\Intel\Wireless\Bin\ifrmewrk.exe /tf Intel PROSet/Wireless> [Intel Corporation] <SigmatelSysTrayApp><stsystra.exe> [SigmaTel, Inc.] <Dell QuickSet><C:\Program Files\Dell\QuickSet\quickset.exe> [Dell Inc] <ShowLOMControl><> [N/A] <DVDLauncher><"C:\Program Files\CyberLink\PowerDVD\DVDLauncher.exe"> [CyberLink Corp.] <RealTray><C:\Program Files\Real\RealPlayer\RealPlay.exe SYSTEMBOOTHIDEPLAYER> [File is missing] <dla><C:\WINDOWS\system32\dla\tfswctrl.exe> [Sonic Solutions] <ISUSPM Startup><"C:\Program Files\Common Files\InstallShield\UpdateService\isuspm.exe" -startup> [InstallShield Software Corporation] <ISUSScheduler><"C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe" -start> [InstallShield Software Corporation] <Corel Photo Downloader><C:\Program Files\Corel\Corel Photo Album 6\MediaDetect.exe> [Corel, Inc.] <iTunesHelper><"C:\Program Files\iTunes\iTunesHelper.exe"> [(Verified)"Apple Computer, Inc."] <LVCOMS><C:\Program Files\Common Files\Logitech\QCDriver3\LVCOMS.EXE> [(Verified)Microsoft Windows Hardware Compatibility Publisher] <LogitechGalleryRepair><C:\Program Files\Logitech\ImageStudio\ISStart.exe> [Logitech Inc.] <LogitechImageStudioTray><C:\Program Files\Logitech\ImageStudio\LogiTray.exe> [Logitech Inc.] <MSKDetectorExe><C:\Program Files\McAfee\SpamKiller\MSKDetct.exe /uninstall> [McAfee, Inc.] <ShStatEXE><"C:\Program Files\Network Associates\VirusScan\SHSTAT.EXE" /STANDALONE> [Network Associates, Inc.] <McAfeeUpdaterUI><"C:\Program Files\Network Associates\Common Framework\UpdaterUI.exe" /StartedFromRunKey> [McAfee, Inc.] <Network Associates Error Reporting Service><"C:\Program Files\Common Files\Network Associates\TalkBack\tbmon.exe"> [Network Associates, Inc.] <HP Software Update><C:\Program Files\HP\HP Software Update\HPWuSchd2.exe> [Hewlett-Packard Co.] <Antivirus Pro 2010><"C:\Program Files\AntivirusPro_2010\AntivirusPro_2010.exe" /hide> [File is missing] <KernelFaultCheck><%systemroot%\system32\dumprep 0 -k> [File is missing] <dohoyerim><Rundll32.exe "c:\windows\system32\zowenuri.dll",a> [][HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon] <shell><Explorer.exe> [(Verified)Microsoft Windows Component Publisher] <Userinit><C:\WINDOWS\system32\userinit.exe,> [(Verified)Microsoft Windows Publisher][HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows] <AppInit_DLLs><satukivu.dll c:\windows\system32\zowenuri.dll> [][HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon] <UIHost><logonui.exe> [(Verified)Microsoft Windows Publisher][HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks] <{AEB6717E-7E19-11d0-97EE-00C04FD91972}><shell32.dll> [(Verified)Microsoft Windows Component Publisher][HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad] <PostBootReminder><%SystemRoot%\system32\SHELL32.dll> [(Verified)Microsoft Windows Component Publisher] <CDBurn><%SystemRoot%\system32\SHELL32.dll> [(Verified)Microsoft Windows Component Publisher] <WebCheck><C:\WINDOWS\system32\webcheck.dll> [(Verified)Microsoft Windows] <SysTray><C:\WINDOWS\system32\stobject.dll> [(Verified)Microsoft Windows Publisher] <vapebalug><c:\windows\system32\zowenuri.dll> [][HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\crypt32chain] <WinlogonNotify: crypt32chain><crypt32.dll> [(Verified)Microsoft Windows Publisher][HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\cryptnet] <WinlogonNotify: cryptnet><cryptnet.dll> [(Verified)Microsoft Windows Publisher][HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\cscdll] <WinlogonNotify: cscdll><cscdll.dll> [(Verified)Microsoft Windows Publisher][HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui] <WinlogonNotify: igfxcui><igfxdev.dll> [(Verified)Microsoft Windows Hardware Compatibility Publisher][HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\IntelWireless] <WinlogonNotify: IntelWireless><C:\Program Files\Intel\Wireless\Bin\LgNotify.dll> [Intel Corporation][HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\ScCertProp] <WinlogonNotify: ScCertProp><wlnotify.dll> [(Verified)Microsoft Windows Publisher][HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\Schedule] <WinlogonNotify: Schedule><wlnotify.dll> [(Verified)Microsoft Windows Publisher][HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\sclgntfy] <WinlogonNotify: sclgntfy><sclgntfy.dll> [(Verified)Microsoft Windows Publisher][HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\SensLogn] <WinlogonNotify: SensLogn><WlNotify.dll> [(Verified)Microsoft Windows Publisher][HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\termsrv] <WinlogonNotify: termsrv><wlnotify.dll> [(Verified)Microsoft Windows Publisher][HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon] <WinlogonNotify: WgaLogon><WgaLogon.dll> [(Verified)Microsoft Corporation][HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\wlballoon] <WinlogonNotify: wlballoon><wlnotify.dll> [(Verified)Microsoft Windows Publisher][HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SharedTaskScheduler] <{438755C2-A8BA-11D1-B96B-00A0C90312E1}><%SystemRoot%\system32\browseui.dll> [(Verified)Microsoft Windows Component Publisher] <{8C7461EF-2B13-11d2-BE35-3078302C2030}><%SystemRoot%\system32\browseui.dll> [(Verified)Microsoft Windows Component Publisher] <{BA603215-23F2-42AD-F4E4-00AAC39CAA53}><C:\WINDOWS\system32\nzfiu3h78di.dll> [] <{a346f172-e312-423b-8241-e46f66005857}><c:\windows\system32\zowenuri.dll> [][HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\<{12d0ed0d-0ee0-4f90-8827-78cefb8f4988}] <Internet Explorer Version Update><C:\WINDOWS\system32\ieudinit.exe> [(Verified)Microsoft Windows][HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\>{22d6f312-b0f6-11d0-94ab-0080c74c7e95}] <Microsoft Windows Media Player><C:\WINDOWS\inf\unregmp2.exe /ShowWMP> [(Verified)Microsoft Windows Component Publisher][HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\>{26923b43-4d38-484f-9b9e-de460746276c}] <Internet Explorer><C:\WINDOWS\system32\ie4uinit.exe -UserIconConfig> [(Verified)Microsoft Windows Component Publisher][HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\>{60B49E34-C7CC-11D0-8953-00A0C90347FF}] <Browser Customizations><"C:\WINDOWS\system32\rundll32.exe" "C:\WINDOWS\system32\iedkcs32.dll",BrandIEActiveSetup SIGNUP> [(Verified)Microsoft Windows Component Publisher][HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\>{7715C0A7-4389-4AC6-9944-131E9822270F}] <Browser Customizations><RunDLL32 IEDKCS32.DLL,BrandIE4 SIGNUP> [(Verified)Microsoft Windows Component Publisher][HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\>{881dd1c5-3dcf-431b-b061-f3f88e8be88a}] <Outlook Express><%systemroot%\system32\shmgrate.exe OCInstallUserConfigOE> [File is missing][HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{22d6f312-b0f6-11d0-94ab-0080c74c7e95}] <Microsoft Windows Media Player 6.4><rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\mswmp.inf,PerUserStub> [][HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{28ABC5C0-4FCB-11CF-AAX5-81CX1C635612}] <N/A><C:\RESTORE\S-1-5-21-1482476501-1644491937-682003330-1013\ise32.exe> [File is missing][HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{2C7339CF-2B09-4501-B3F3-F3508C9228ED}] <Themes Setup><%SystemRoot%\system32\regsvr32.exe /s /n /i:/UserInstall %SystemRoot%\system32\themeui.dll> [File is missing][HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{44BBA840-CC51-11CF-AAFA-00AA00B6015C}] <Microsoft Outlook Express 6><"%ProgramFiles%\Outlook Express\setup50.exe" /APP:OE /CALLER:WINNT /user /install> [File is missing][HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{44BBA842-CC51-11CF-AAFA-00AA00B6015B}] <NetMeeting 3.01><rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\msnetmtg.inf,NetMtg.Install.PerUser.NT> [(Verified)Microsoft Windows Publisher][HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{5945c046-1e7d-11d1-bc44-00c04fd912be}] <Windows Messenger 4.7><rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\msmsgs.inf,BLC.QuietInstall.PerUser> [(Verified)Microsoft Windows Publisher][HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{6BF52A52-394A-11d3-B153-00C04F79FAA6}] <Microsoft Windows Media Player><rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\wmp10.inf,PerUserStub> [(Verified)Microsoft Windows Component Publisher][HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{7790769C-0471-11d2-AF11-00C04FA35D02}] <Address Book 6><"%ProgramFiles%\Outlook Express\setup50.exe" /APP:WAB /CALLER:WINNT /user /install> [File is missing][HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{89820200-ECBD-11cf-8B85-00AA005B4340}] <Windows Desktop Update><regsvr32.exe /s /n /i:U shell32.dll> [(Verified)Microsoft Windows Publisher][HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{89820200-ECBD-11cf-8B85-00AA005B4383}] <Internet Explorer><C:\WINDOWS\system32\ie4uinit.exe -BaseSettings> [(Verified)Microsoft Windows Component Publisher][HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{89B4C1CD-B018-4511-B0A1-5476DBF70820}] <N/A><C:\WINDOWS\system32\Rundll32.exe C:\WINDOWS\system32\mscories.dll,Install> [Microsoft Corporation][HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{8b15971b-5355-4c82-8c07-7e181ea07608}] <Fax><rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\fxsocm.inf,Fax.Install.PerUser> [(Verified)Microsoft Windows Publisher][HKEY_CURRENT_USER\Control Panel\Desktop] <SCRNSAVE.EXE><C:\WINDOWS\System32\logon.scr> [(Verified)Microsoft Windows Publisher]

==================================
Startup Folders
[Digital Line Detect]
<C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Digital Line Detect.lnk --> C:\PROGRA~1\DIGITA~1\DLG.exe [BVRP Software]><N>
[Logitech Desktop Messenger]
<C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Logitech Desktop Messenger.lnk --> C:\PROGRA~1\Logitech\DESKTO~1\8876480\Program\LDMConf.exe [Logitech]><N>
[Microsoft Office]
<C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Microsoft Office.lnk --> C:\PROGRA~1\MICROS~4\Office\OSA9.EXE [Microsoft Corporation]><N>


==================================
Services
[Application Management / AppMgmt][Stopped/Manual Start] <C:\WINDOWS\system32\svchost.exe -k netsvcs-->%SystemRoot%\System32\appmgmts.dll><N/A>[ASP.NET State Service / aspnet_state][Stopped/Manual Start] <C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\aspnet_state.exe><Microsoft Corporation>[##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762## / Bonjour Service][Running/Auto Start] <"C:\Program Files\Bonjour\mDNSResponder.exe"><Apple Computer, Inc.>[DSBrokerService / DSBrokerService][Stopped/Manual Start] <"C:\Program Files\DellSupport\brkrsvc.exe"><>[EvtEng / EvtEng][Running/Auto Start] <C:\Program Files\Intel\Wireless\Bin\EvtEng.exe><Intel Corporation>[FLEXnet Licensing Service / FLEXnet Licensing Service][Stopped/Manual Start] <"C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe"><Macrovision Europe Ltd.>[InstallDriver Table Manager / IDriverT][Stopped/Manual Start] <"C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe"><Macrovision Corporation>[iPod Service / iPod Service][Stopped/Manual Start] <"C:\Program Files\iPod\bin\iPodService.exe"><Apple Computer, Inc.>[McAfee Framework Service / McAfeeFramework][Running/Auto Start] <"C:\Program Files\Network Associates\Common Framework\FrameworkService.exe" /ServiceStart><McAfee, Inc.>[Network Associates McShield / McShield][Running/Auto Start] <"C:\Program Files\Network Associates\VirusScan\mcshield.exe"><Network Associates, Inc.>[Network Associates Task Manager / McTaskManager][Running/Auto Start] <"C:\Program Files\Network Associates\VirusScan\vstskmgr.exe"><Network Associates, Inc.>[NICCONFIGSVC / NICCONFIGSVC][Running/Auto Start] <C:\Program Files\Dell\NICCONFIGSVC\NICCONFIGSVC.exe><Dell Inc.>[Pml Driver HPZ12 / Pml Driver HPZ12][Running/Auto Start] <C:\WINDOWS\system32\HPZipm12.exe><HP>[RegSrvc / RegSrvc][Running/Auto Start] <C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe><Intel Corporation>[Spectrum24 Event Monitor / S24EventMonitor][Running/Auto Start] <C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe><Intel Corporation>[WLANKEEPER / WLANKEEPER][Running/Auto Start] <C:\Program Files\Intel\Wireless\Bin\WLKeeper.exe><Intel® Corporation>

==================================
Drivers
[AEGIS Protocol (IEEE 802.1x) v3.1.0.1 / AegisP][Running/Auto Start] <system32\DRIVERS\AegisP.sys><Meetinghouse Data Communications>[AliIde / AliIde][Stopped/Disabled] <\SystemRoot\system32\DRIVERS\aliide.sys><Acer Laboratories Inc.>[AMD AGP Bus Filter Driver / amdagp][Stopped/Disabled] <\SystemRoot\system32\DRIVERS\amdagp.sys><Advanced Micro Devices, Inc.>[APPDRV / APPDRV][Running/System Start] <\SystemRoot\SYSTEM32\DRIVERS\APPDRV.SYS><Dell Inc>[asc / asc][Stopped/Disabled] <\SystemRoot\system32\DRIVERS\asc.sys><Advanced System Products, Inc.>[asc3550 / asc3550][Stopped/Disabled] <\SystemRoot\system32\DRIVERS\asc3550.sys><Advanced System Products, Inc.>[Broadcom 440x 10/100 Integrated Controller XP Driver / bcm4sbxp][Running/Manual Start] <system32\DRIVERS\bcm4sbxp.sys><Broadcom Corporation>[CmdIde / CmdIde][Stopped/Disabled] <\SystemRoot\system32\DRIVERS\cmdide.sys><CMD Technology, Inc.>[dac2w2k / dac2w2k][Stopped/Disabled] <\SystemRoot\system32\DRIVERS\dac2w2k.sys><Mylex Corporation>[drvmcdb / drvmcdb][Running/Boot Start] <\SystemRoot\system32\drivers\drvmcdb.sys><Sonic Solutions>[drvnddm / drvnddm][Running/Auto Start] <system32\drivers\drvnddm.sys><Sonic Solutions>[DSproct / DSproct][Running/Manual Start] <\??\C:\Program Files\DellSupport\GTAction\triggers\DSproct.sys><Gteko Ltd.>[DellSupport UniDriver / dsunidrv][Running/Auto Start] <system32\DRIVERS\dsunidrv.sys><Gteko Ltd.>[Intel® PRO Adapter Driver / E100B][Stopped/Manual Start] <system32\DRIVERS\e100b325.sys><Intel Corporation>[GEARAspiWDM / GEARAspiWDM][Running/Manual Start] <System32\Drivers\GEARAspiWDM.sys><GEAR Software Inc.>[Microsoft UAA Bus Driver for High Definition Audio / HDAudBus][Running/Manual Start] <system32\DRIVERS\HDAudBus.sys><Windows ® Server 2003 DDK provider>[IEEE-1284.4 Driver HPZid412 / HPZid412][Stopped/Manual Start] <system32\DRIVERS\HPZid412.sys><HP>[Print Class Driver for IEEE-1284.4 HPZipr12 / HPZipr12][Stopped/Manual Start] <system32\DRIVERS\HPZipr12.sys><HP>[USB to IEEE-1284.4 Translation Driver HPZius12 / HPZius12][Stopped/Manual Start] <system32\DRIVERS\HPZius12.sys><HP>[HSFHWAZL / HSFHWAZL][Running/Manual Start] <system32\DRIVERS\HSFHWAZL.sys><Conexant Systems, Inc.>[HSF_DPV / HSF_DPV][Running/Manual Start] <system32\DRIVERS\HSF_DPV.sys><Conexant Systems, Inc.>[ialm / ialm][Running/Manual Start] <system32\DRIVERS\ialmnt5.sys><Intel Corporation>[Intel Wireless Connection Agent Miniport for Win XP / IWCA][Running/Manual Start] <system32\DRIVERS\iwca.sys><Intel Corporation>[LVBulk Service / LVBulk][Stopped/Manual Start] <system32\DRIVERS\LVBulk.sys><Logitech Inc.>[mdmxsdk / mdmxsdk][Running/Auto Start] <system32\DRIVERS\mdmxsdk.sys><Conexant>[mraid35x / mraid35x][Stopped/Disabled] <\SystemRoot\system32\DRIVERS\mraid35x.sys><American Megatrends Inc.>[NaiAvFilter1 / NaiAvFilter1][Running/Manual Start] <system32\drivers\naiavf5x.sys><McAfee Inc.>[NaiAvTdi1 / NaiAvTdi1][Running/System Start] <system32\drivers\mvstdi5x.sys><Network Associates, Inc.>[nv / nv][Stopped/Manual Start] <system32\DRIVERS\nv4_mini.sys><NVIDIA Corporation>[Logitech ClickSmart 310(PID_0900_V) / PID_0900_V][Stopped/Manual Start] <system32\DRIVERS\LV551AV.sys><Logitech Inc.>[Protector Plus Driver (UnRegistered) / PPDrv][Stopped/Manual Start] <\??\C:\Protector Plus\PPDrv.sys><N/A>[Protector Plus Email Scan Driver / PPEMSCAN][Stopped/Manual Start] <\??\C:\Protector Plus\PPEMSCAN.sys><N/A>[Direct Parallel Link Driver / Ptilink][Running/Manual Start] <system32\DRIVERS\ptilink.sys><Parallel Technologies, Inc.>[PxHelp20 / PxHelp20][Running/Boot Start] <\SystemRoot\System32\Drivers\PxHelp20.sys><Sonic Solutions>[ql1080 / ql1080][Stopped/Disabled] <\SystemRoot\system32\DRIVERS\ql1080.sys><QLogic Corporation>[ql12160 / ql12160][Stopped/Disabled] <\SystemRoot\system32\DRIVERS\ql12160.sys><QLogic Corporation>[ql1280 / ql1280][Stopped/Disabled] <\SystemRoot\system32\DRIVERS\ql1280.sys><QLogic Corporation>[WLAN Transport / s24trans][Running/Auto Start] <system32\DRIVERS\s24trans.sys><Intel Corporation>[Secdrv / Secdrv][Stopped/Manual Start] <system32\DRIVERS\secdrv.sys><Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.>[SIS AGP Bus Filter / sisagp][Stopped/Disabled] <\SystemRoot\system32\DRIVERS\sisagp.sys><Silicon Integrated Systems Corporation>[Sony USB Filter Driver (SONYPVU1) / SONYPVU1][Stopped/Manual Start] <system32\DRIVERS\SONYPVU1.SYS><Sony Corporation>[Sparrow / Sparrow][Stopped/Disabled] <\SystemRoot\system32\DRIVERS\sparrow.sys><Adaptec, Inc.>[sscdbhk5 / sscdbhk5][Running/System Start] <system32\drivers\sscdbhk5.sys><Sonic Solutions>[ssrtln / ssrtln][Running/System Start] <system32\drivers\ssrtln.sys><Sonic Solutions>[SigmaTel High Definition Audio CODEC / STHDA][Running/Manual Start] <system32\drivers\sthda.sys><SigmaTel, Inc.>[symc810 / symc810][Stopped/Disabled] <\SystemRoot\system32\DRIVERS\symc810.sys><Symbios Logic Inc.>[symc8xx / symc8xx][Stopped/Disabled] <\SystemRoot\system32\DRIVERS\symc8xx.sys><LSI Logic>[sym_hi / sym_hi][Stopped/Disabled] <\SystemRoot\system32\DRIVERS\sym_hi.sys><LSI Logic>[sym_u3 / sym_u3][Stopped/Disabled] <\SystemRoot\system32\DRIVERS\sym_u3.sys><LSI Logic>[Synaptics TouchPad Driver / SynTP][Running/Manual Start] <system32\DRIVERS\SynTP.sys><Synaptics, Inc.>[tfsnboio / tfsnboio][Running/Auto Start] <system32\dla\tfsnboio.sys><Sonic Solutions>[tfsncofs / tfsncofs][Running/Auto Start] <system32\dla\tfsncofs.sys><Sonic Solutions>[tfsndrct / tfsndrct][Running/Auto Start] <system32\dla\tfsndrct.sys><Sonic Solutions>[tfsndres / tfsndres][Running/Auto Start] <system32\dla\tfsndres.sys><Sonic Solutions>[tfsnifs / tfsnifs][Running/Auto Start] <system32\dla\tfsnifs.sys><Sonic Solutions>[tfsnopio / tfsnopio][Running/Auto Start] <system32\dla\tfsnopio.sys><Sonic Solutions>[tfsnpool / tfsnpool][Running/Auto Start] <system32\dla\tfsnpool.sys><Sonic Solutions>[tfsnudf / tfsnudf][Running/Auto Start] <system32\dla\tfsnudf.sys><Sonic Solutions>[tfsnudfa / tfsnudfa][Running/Auto Start] <system32\dla\tfsnudfa.sys><Sonic Solutions>[ultra / ultra][Stopped/Disabled] <\SystemRoot\system32\DRIVERS\ultra.sys><Promise Technology, Inc.>[Intel® PRO/Wireless 2915ABG Network Connection Driver for Windows XP / w29n51][Stopped/Manual Start] <system32\DRIVERS\w29n51.sys><Intel® Corporation>[WAN Miniport (ATW) / wanatw][Stopped/Manual Start] <system32\DRIVERS\wanatw4.sys><N/A>[winachsf / winachsf][Running/Manual Start] <system32\DRIVERS\HSF_CNXT.sys><Conexant Systems, Inc.>[EntDrv51 / EntDrv51][Running/Manual Start] <\??\C:\WINDOWS\system32\drivers\EntDrv51.sys><Network Associates, Inc>

==================================
Browser Add-ons
[] {02478D38-C3F9-4EFB-9B51-7695ECA05670} <, >[C:\WINDOWS\system32\nzfiu3h78di.dll] {BA603215-23F2-42AD-F4E4-00AAC39CAA53} <C:\WINDOWS\system32\nzfiu3h78di.dll, N/A>[Java Plug-in 1.6.0_03] {08B0E5C0-4FCB-11CF-AAA5-00401C608501} <C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll, (Signed) Sun Microsystems, Inc.>[Skype add-on (button)] {77BF5300-1474-4EC7-9980-D32B190E9B07} <C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll, (Signed) Skype Technologies S.A.>[Real.com] {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} <C:\WINDOWS\system32\Shdocvw.dll, (Signed) Microsoft Corporation>[] {e2e2dd38-d088-4134-82b7-f2ba38496583} <%windir%\Network Diagnostic\xpnetdiag.exe, (Signed) N/A>[Yahoo! Messenger] {E5D12C4E-7B4F-11D3-B5C9-0050045C3C96} <C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe, (Signed) Yahoo! Inc.>[Messenger] {FB5F1910-F110-11d2-BB9E-00C04F795683} <C:\Program Files\Messenger\msmsgs.exe, (Signed) Microsoft Corporation>[&Windows Live Toolbar] {21FA44EF-376D-4D53-9B0F-8A89D3229068} <C:\Program Files\Windows Live\Toolbar\wltcore.dll, (Signed) Microsoft Corporation>[Facebook Photo Uploader 5 Control] {0CCA191D-13A6-4E29-B746-314DEE697D83} <C:\WINDOWS\Downloaded Program Files\CONFLICT.1\PhotoUploader5.ocx, (Signed) The Facebook>[] {31435657-9980-0010-8000-00AA00389B71} <, >[Facebook Photo Uploader 4 Control] {5C6698D9-7BE4-4122-8EC5-291D84DBD4A0} <C:\WINDOWS\Downloaded Program Files\ImageUploader4.ocx, N/A>[Facebook Photo Uploader 5 Control] {8100D56A-5661-482C-BEE8-AFECE305D968} <C:\WINDOWS\Downloaded Program Files\PhotoUploader55.ocx, (Signed) The Facebook>[Java Plug-in 1.6.0_03] {8AD9C840-044E-11D1-B3E9-00805F499D93} <C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll, (Signed) Sun Microsystems, Inc.>[] {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} <, >[Java Plug-in 1.6.0_03] {CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA} <C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll, (Signed) Sun Microsystems, Inc.>[Java Plug-in 1.6.0_03] {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} <C:\Program Files\Java\jre1.6.0_03\bin\npjpi160_03.dll, (Signed) Sun Microsystems, Inc.>[ActiveID Control] {FA30EC32-668B-4B60-B13C-4C84EB90C3C9} <C:\WINDOWS\DOWNLO~1\ActiveID.ocx, (Signed) MeetStream>[] {00EF2092-6AC5-47C0-BD25-CF2D5D657FEB} <, >[] {0246ECA8-996F-11D1-BE2F-00A0C9037DFE} <, >[] {02478D38-C3F9-4EFB-9B51-7695ECA05670} <, >[] {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} <, >[AcroIEHlprObj Class] {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} <C:\Program Files\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll, (Signed) Adobe Systems Incorporated>[] {08B0E5C0-4FCB-11CF-AAA5-00401C608501} <, >[Facebook Photo Uploader 5 Control] {0CCA191D-13A6-4E29-B746-314DEE697D83} <C:\WINDOWS\Downloaded Program Files\CONFLICT.1\PhotoUploader5.ocx, (Signed) The Facebook>[SuperBuddy Class] {189504B8-50D1-4AA8-B4D6-95C8F58A6414} <C:\Program Files\AOL 9.0\sb.dll, N/A>[InformationCardSigninHelper Class] {19916E01-B44E-4E31-94A4-4696DF46157B} <C:\WINDOWS\system32\icardie.dll, (Signed) Microsoft Corporation>[] {1FC80E00-41B0-4F74-BC16-2C83ED49CAC9} <C:\Program Files\Video AX Object\bpvol.dll, N/A>[&Windows Live Toolbar] {21FA44EF-376D-4D53-9B0F-8A89D3229068} <C:\Program Files\Windows Live\Toolbar\wltcore.dll, (Signed) Microsoft Corporation>[] {227B8AA8-DAF2-4892-BD1D-73F568BCB24E} <, >[Skype add-on (mastermind)] {22BF413B-C6D2-4D91-82A9-A0F997BA588C} <C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll, (Signed) Skype Technologies S.A.>[Windows Media Player] {22D6F312-B0F6-11D0-94AB-0080C74C7E95} <C:\WINDOWS\system32\wmpdxm.dll, (Signed) Microsoft Corporation>[] {2318C2B1-4965-11D4-9B18-009027A5CD4F} <, >[Citrix ICA Client] {238F6F83-B8B4-11CF-8771-00A024541EE3} <C:\Program Files\Citrix\ICA Client\Wfica.ocx, Citrix Systems, Inc.>[HTML Document] {25336920-03F9-11CF-8FD0-00AA00686F13} <C:\WINDOWS\system32\mshtml.dll, (Signed) Microsoft Corporation>[XML DOM Document] {2933BF90-7B36-11D2-B20E-00C04F983E60} <%SystemRoot%\system32\msxml3.dll, (Signed) N/A>[XSL Template] {2933BF94-7B36-11D2-B20E-00C04F983E60} <%SystemRoot%\system32\msxml3.dll, (Signed) N/A>[DHTML Edit Control Safe for Scripting] {2D360201-FFF5-11D1-8D03-00A0C959BC0A} <C:\WINDOWS\system32\dhtmled.ocx, (Signed) Microsoft Corporation>[HtmlDlgSafeHelper Class] {3050F819-98B5-11CF-BB82-00AA00BDCE0B} <C:\WINDOWS\system32\mshtmled.dll, (Signed) Microsoft Corporation>[] {31435657-9980-0010-8000-00AA00389B71} <, >[Tabular Data Control] {333C7BC4-460F-11D0-BC04-0080C7055A83} <C:\WINDOWS\system32\tdc.ocx, (Signed) Microsoft Corporation>[] {39FD89BF-D3F1-45B6-BB56-3582CCF489E1} <, >[] {3EC8255F-E043-4CAE-8B3B-B191550C2A22} <, >[] {4063BE15-3B08-470D-A0D5-B37161CFFD69} <, >[] {41D68ED8-4CFF-4115-88A6-6EBB8AF19000} <, >[XML Document] {48123BC4-99D9-11D1-A6B3-00C04FD91555} <%SystemRoot%\system32\msxml3.dll, (Signed) N/A>[] {4D25F921-B9FE-4682-BF72-8AB8210D6D75} <, >[Shell Name Space] {55136805-B2DE-11D1-B9F2-00A0C98BC547} <C:\WINDOWS\system32\ieframe.dll, (Signed) Microsoft Corporation>[isInstalled Class] {5852F5ED-8BF4-11D4-A245-0080C6F74284} <C:\Program Files\Java\jre1.6.0_03\bin\wsdetect.dll, Sun Microsystems, Inc.>[] {597F9140-0DC6-4657-A162-76EC0E7AEE81} <, >[] {5BAB4B5B-68BC-4B02-94D6-2FC0DE4A7897} <, >[] {5C255C8A-E604-49B4-9D64-90988571CECB} <, >[Facebook Photo Uploader 4 Control] {5C6698D9-7BE4-4122-8EC5-291D84DBD4A0} <C:\WINDOWS\Downloaded Program Files\ImageUploader4.ocx, N/A>[DriveLetterAccess] {5CA3D70E-1895-11CF-8E15-001234567890} <C:\WINDOWS\system32\dla\tfswshx.dll, Sonic Solutions>[WUWebControl Class] {6414512B-B978-451D-A0D8-FCFDF33E833C} <C:\WINDOWS\system32\wuweb.dll, (Signed) Microsoft Corporation>[Windows Media Player] {6BF52A52-394A-11D3-B153-00C04F79FAA6} <C:\WINDOWS\system32\wmp.dll, (Signed) Microsoft Corporation>[MUWebControl Class] {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} <C:\WINDOWS\system32\muweb.dll, (Signed) Microsoft Corporation>[Search Helper] {6EBF7485-159F-4BFF-A14F-B9E3AAC4465B} <C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll, (Signed) Microsoft Corporation>[SSVHelper Class] {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} <C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll, (Signed) Sun Microsystems, Inc.>[Skype add-on (button)] {77BF5300-1474-4EC7-9980-D32B190E9B07} <C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll, (Signed) Skype Technologies S.A.>[] {7E853D72-626A-48EC-A868-BA8D5E23E045} <, >[Facebook Photo Uploader 5 Control] {8100D56A-5661-482C-BEE8-AFECE305D968} <C:\WINDOWS\Downloaded Program Files\PhotoUploader55.ocx, (Signed) The Facebook>[Microsoft Web Browser] {8856F961-340A-11D0-A96B-00C04FD705A2} <C:\WINDOWS\system32\ieframe.dll, (Signed) Microsoft Corporation>[XML DOM Document 4.0] {88D969C0-F192-11D4-A65F-0040963251E5} <c:\WINDOWS\system32\msxml4.dll, (Signed) Microsoft Corporation>[Free Threaded XML DOM Document 4.0] {88D969C1-F192-11D4-A65F-0040963251E5} <c:\WINDOWS\system32\msxml4.dll, (Signed) Microsoft Corporation>[XSL Template 4.0] {88D969C3-F192-11D4-A65F-0040963251E5} <c:\WINDOWS\system32\msxml4.dll, (Signed) Microsoft Corporation>[XML HTTP 4.0] {88D969C5-F192-11D4-A65F-0040963251E5} <c:\WINDOWS\system32\msxml4.dll, (Signed) Microsoft Corporation>[XML HTTP 5.0] {88D969EA-F192-11D4-A65F-0040963251E5} <C:\Program Files\Common Files\Microsoft Shared\OFFICE11\msxml5.dll, (Signed) Microsoft Corporation>[Java Plug-in 1.6.0_03] {8AD9C840-044E-11D1-B3E9-00805F499D93} <C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll, (Signed) Sun Microsystems, Inc.>[] {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} <, >[Windows Live Sign-in Helper] {9030D464-4C02-4ABF-8ECC-5164760863C6} <C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll, (Signed) Microsoft Corporation>[] {A4639D2F-774E-11D3-A490-00C04F6843FB} <, >[] {AA58ED58-01DD-4D91-8333-CF10577473F7} <, >[Microsoft Scriptlet Component] {AE24FDAE-03C6-11D1-8B76-0080C744F389} <C:\WINDOWS\system32\mshtml.dll, (Signed) Microsoft Corporation>[] {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} <, >[SearchAssistantOC] {B45FF030-4447-11D2-85DE-00C04FA35C89} <%SystemRoot%\system32\shdocvw.dll, (Signed) N/A>[] {BA52B914-B692-46C4-B683-905236F6F655} <, >[C:\WINDOWS\system32\nzfiu3h78di.dll] {BA603215-23F2-42AD-F4E4-00AAC39CAA53} <C:\WINDOWS\system32\nzfiu3h78di.dll, N/A>[] {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} <, >[] {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} <, >[] {BFD90062-6B5E-4F8F-87B1-5F022C14E32F} <, >[] {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} <, >[ITSAB Installation Detect Control] {C95B2C3A-FA9C-4D0D-A421-7F5F31D60987} <C:\Program Files\ITS\Audio Browser\ITSAB.dll, >[Adobe Acrobat Control for ActiveX] {CA8A9780-280D-11CF-A24D-444553540000} <C:\PROGRA~1\Adobe\ACROBA~1.0\Reader\ActiveX\pdf.ocx, (Signed) Adobe Systems Incorporated>[AUDIO__WAV Moniker Class] {CD3AFA7B-B84F-48F0-9393-7EDC34128127} <C:\WINDOWS\system32\wmp.dll, (Signed) Microsoft Corporation>[VIDEO__X_MS_ASF Moniker Class] {CD3AFA8F-B84F-48F0-9393-7EDC34128127} <C:\WINDOWS\system32\wmp.dll, (Signed) Microsoft Corporation>[VIDEO__X_MS_WMV Moniker Class] {CD3AFA94-B84F-48F0-9393-7EDC34128127} <C:\WINDOWS\system32\wmp.dll, (Signed) Microsoft Corporation>[] {CD67F990-D8E9-11D2-98FE-00C0F0318AFE} <, >[RealPlayer G2 Control] {CFCDAA03-8BE4-11CF-B84B-0020AFBBCCFA} <C:\WINDOWS\system32\rmoc3260.dll, RealNetworks>[Windows Live Sign-in Control] {D2517915-48CE-4286-970F-921E881B8C5C} <C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll, (Signed) Microsoft Corporation>[Shockwave Flash Object] {D27CDB6E-AE6D-11CF-96B8-444553540000} <C:\WINDOWS\system32\Macromed\Flash\Flash9f.ocx, (Signed) Adobe Systems, Inc.>[OfficeObj Class] {D2BD7935-05FC-11D2-9059-00C04FD7A1BD} <, >[Yahoo! VersionInfo] {D5184A39-CBDF-4A4F-AC1A-7A45A852C883} <C:\Program Files\Yahoo!\Common\Yverinfo.dll, (Signed) Yahoo! Inc.>[] {D6E7CFB5-C074-4D1C-B647-663D1A8D96BF} <, >[MessengerChecker Class] {DA4F543C-C8A9-4E88-9A79-548CBB46F18F} <C:\Program Files\Yahoo!\Messenger\YPagerChecker.dll, (Signed) Yahoo! Inc.>[] {DE4AF3B0-F4D4-11D3-B41A-0050DA2E6C21} <, >[Windows Live Toolbar Helper] {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} <C:\Program Files\Windows Live\Toolbar\wltcore.dll, (Signed) Microsoft Corporation>[] {E1771B7F-98BE-407F-BA67-AA16ADA5D0C5} <C:\PROGRA~1\WI1F86~1\MESSEN~1\MSGSC1~1.DLL, (Signed) Microsoft Corporation>[] {E2E2DD38-D088-4134-82B7-F2BA38496583} <, >[Messenger Class] {E5D12C4E-7B4F-11D3-B5C9-0050045C3C96} <, >[XML HTTP Request] {ED8C108E-4349-11D2-91A4-00C04F7969E8} <%SystemRoot%\system32\msxml3.dll, (Signed) N/A>[Scripting.Dictionary] {EE09B103-97E0-11CF-978F-00A02463E06F} <C:\WINDOWS\system32\scrrun.dll, (Signed) Microsoft Corporation>[] {EF99BD32-C1FB-11D2-892F-0090271D4F88} <, >[Microsoft Slider Control 6.0 (SP4)] {F08DF954-8592-11D1-B16A-00C0F0283628} <C:\WINDOWS\system32\MSComctl.ocx, (Signed) Microsoft Corporation>[] {F0993251-2512-4710-AF6E-0A13EA199D02} <, >[XML DOM Document 3.0] {F5078F32-C551-11D3-89B9-0000F81FE221} <%SystemRoot%\system32\msxml3.dll, (Signed) N/A>[Free Threaded XML DOM Document 3.0] {F5078F33-C551-11D3-89B9-0000F81FE221} <%SystemRoot%\system32\msxml3.dll, (Signed) N/A>[XML HTTP 3.0] {F5078F35-C551-11D3-89B9-0000F81FE221} <%SystemRoot%\system32\msxml3.dll, (Signed) N/A>[XML DOM Document] {F6D90F11-9C73-11D3-B32E-00C04F990BB4} <%SystemRoot%\system32\msxml3.dll, (Signed) N/A>[Free Threaded XML DOM Document] {F6D90F12-9C73-11D3-B32E-00C04F990BB4} <%SystemRoot%\system32\msxml3.dll, (Signed) N/A>[XML HTTP] {F6D90F16-9C73-11D3-B32E-00C04F990BB4} <%SystemRoot%\system32\msxml3.dll, (Signed) N/A>[ActiveID Control] {FA30EC32-668B-4B60-B13C-4C84EB90C3C9} <C:\WINDOWS\DOWNLO~1\ActiveID.ocx, (Signed) MeetStream>[] {FB5F1910-F110-11D2-BB9E-00C04F795683} <, >[] {FDAD4DA1-61A2-4FD8-9C17-86F7AC245081} <, >[Add to Windows &Live Favorites] <http://favorites.live.com/quickadd.aspx, N/A>[Open in new background tab] <res://C:\Program Files\Windows Live Toolbar\Components\en-ca\msntabres.dll.mui/229?9286ab0c248842f18fa5e0b3e1cd92a9, N/A>[Open in new foreground tab] <res://C:\Program Files\Windows Live Toolbar\Components\en-ca\msntabres.dll.mui/230?9286ab0c248842f18fa5e0b3e1cd92a9, N/A>

==================================
Running Processes
[PID: 512 / SYSTEM][\SystemRoot\System32\smss.exe] [(Verified) Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)][PID: 576 / SYSTEM][\??\C:\WINDOWS\system32\csrss.exe] [(Verified) Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)][PID: 600 / SYSTEM][\??\C:\WINDOWS\system32\winlogon.exe] [(Verified) Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)] [c:\windows\system32\zowenuri.dll] [N/A, ] [C:\WINDOWS\system32\satukivu.dll] [N/A, ] [C:\Program Files\Intel\Wireless\Bin\LgNotify.dll] [Intel Corporation, 9, 0, 1, 0][PID: 648 / SYSTEM][C:\WINDOWS\system32\services.exe] [(Verified) Microsoft Corporation, 5.1.2600.3520 (xpsp_sp2_qfe.090206-1239)] [c:\windows\system32\zowenuri.dll] [N/A, ] [C:\WINDOWS\system32\satukivu.dll] [N/A, ] [C:\WINDOWS\system32\EntApi.dll] [Network Associates, Inc, 8.0.0.448][PID: 660 / SYSTEM][C:\WINDOWS\system32\lsass.exe] [(Verified) Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)] [C:\WINDOWS\system32\satukivu.dll] [N/A, ] [C:\WINDOWS\system32\dararudi.dll] [N/A, ] [C:\WINDOWS\icow32.dll] [N/A, ] [C:\WINDOWS\system32\EntApi.dll] [Network Associates, Inc, 8.0.0.448] [C:\Program Files\Bonjour\mdnsNSP.dll] [Apple Computer, Inc., 1,0,3,1][PID: 860 / SYSTEM][C:\WINDOWS\system32\svchost.exe] [(Verified) Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)] [C:\WINDOWS\system32\satukivu.dll] [N/A, ] [C:\WINDOWS\system32\EntApi.dll] [Network Associates, Inc, 8.0.0.448] [\\?\globalroot\Device\__max++>\E7444BC8.x86.dll] [N/A, ] [C:\Program Files\Bonjour\mdnsNSP.dll] [Apple Computer, Inc., 1,0,3,1] [C:\Program Files\Network Associates\VirusScan\scriptproxy.dll] [Network Associates, Inc., 8.0.0.992] [C:\Program Files\Network Associates\VirusScan\mytilus.dll] [Network Associates, Inc., 8.0.0.325] [C:\Program Files\Network Associates\VirusScan\Res09\McShield.dll] [Network Associates, Inc., 8.0.0.251] [C:\Program Files\Common Files\Network Associates\Engine\mcscan32.dll] [McAfee, Inc., 5.3.00][PID: 996 / NETWORK SERVICE][C:\WINDOWS\system32\svchost.exe] [(Verified) Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)] [C:\WINDOWS\system32\satukivu.dll] [N/A, ] [\\?\globalroot\Device\__max++>\E7444BC8.x86.dll] [N/A, ] [C:\Program Files\Bonjour\mdnsNSP.dll] [Apple Computer, Inc., 1,0,3,1] [C:\WINDOWS\system32\EntApi.dll] [Network Associates, Inc, 8.0.0.448][PID: 1052 / SYSTEM][C:\WINDOWS\System32\svchost.exe] [(Verified) Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)] [C:\WINDOWS\System32\satukivu.dll] [N/A, ] [\\?\globalroot\Device\__max++>\E7444BC8.x86.dll] [N/A, ] [C:\Program Files\Network Associates\VirusScan\scriptproxy.dll] [Network Associates, Inc., 8.0.0.992] [C:\Program Files\Network Associates\VirusScan\mytilus.dll] [Network Associates, Inc., 8.0.0.325] [C:\Program Files\Network Associates\VirusScan\Res09\McShield.dll] [Network Associates, Inc., 8.0.0.251] [C:\Program Files\Common Files\Network Associates\Engine\mcscan32.dll] [McAfee, Inc., 5.3.00] [C:\WINDOWS\system32\EntApi.dll] [Network Associates, Inc, 8.0.0.448] [C:\Program Files\Bonjour\mdnsNSP.dll] [Apple Computer, Inc., 1,0,3,1][PID: 1108 / SYSTEM][C:\Program Files\Intel\Wireless\Bin\EvtEng.exe] [Intel Corporation, 9, 0, 1, 12] [C:\Program Files\Intel\Wireless\Bin\PsRegApi.dll] [Intel Corporation, 9, 0, 1, 14] [C:\Program Files\Intel\Wireless\Bin\TraceAPI.DLL] [Intel Corporation, 9, 0, 1, 22] [c:\windows\system32\zowenuri.dll] [N/A, ] [C:\WINDOWS\system32\satukivu.dll] [N/A, ][PID: 1208 / Ivan Arenas][C:\Program Files\Intel\Wireless\Bin\ZcfgSvc.exe] [Intel Corporation, 9, 0, 1, 45] [C:\Program Files\Intel\Wireless\Bin\PfMgrApi.dll] [Intel Corporation, 9, 0, 1, 45] [C:\Program Files\Intel\Wireless\Bin\TraceAPI.DLL] [Intel Corporation, 9, 0, 1, 22] [C:\Program Files\Intel\Wireless\Bin\PsRegApi.dll] [Intel Corporation, 9, 0, 1, 14] [C:\Program Files\Intel\Wireless\Bin\MurocApi.dll] [Intel Corporation, 9, 0, 1, 54] [C:\Program Files\Intel\Wireless\Bin\S24MUDLL.dll] [Intel Corporation, 9, 0, 1, 7] [C:\Program Files\Intel\Wireless\Bin\C1XStngs.dll] [Intel Corporation, 9, 0, 1, 31] [c:\windows\system32\zowenuri.dll] [N/A, ] [C:\WINDOWS\system32\satukivu.dll] [N/A, ] [C:\Program Files\Intel\Wireless\Bin\LSAWRAPI.dll] [Intel Corporation, 9, 0, 1, 1] [C:\WINDOWS\icow32.dll] [N/A, ][PID: 1280 / SYSTEM][C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe] [Intel Corporation , 9, 0, 1, 41] [C:\Program Files\Intel\Wireless\Bin\TraceAPI.DLL] [Intel Corporation, 9, 0, 1, 22] [C:\Program Files\Intel\Wireless\Bin\PsRegApi.dll] [Intel Corporation, 9, 0, 1, 14] [c:\windows\system32\zowenuri.dll] [N/A, ] [C:\WINDOWS\system32\satukivu.dll] [N/A, ][PID: 1376 / SYSTEM][C:\Program Files\Intel\Wireless\Bin\WLKeeper.exe] [Intel® Corporation, 9, 0, 1, 14] [C:\Program Files\Intel\Wireless\Bin\PfMgrApi.dll] [Intel Corporation, 9, 0, 1, 45] [C:\Program Files\Intel\Wireless\Bin\TraceAPI.DLL] [Intel Corporation, 9, 0, 1, 22] [C:\Program Files\Intel\Wireless\Bin\PsRegApi.dll] [Intel Corporation, 9, 0, 1, 14] [C:\Program Files\Intel\Wireless\Bin\MurocApi.dll] [Intel Corporation, 9, 0, 1, 54] [C:\Program Files\Intel\Wireless\Bin\S24MUDLL.dll] [Intel Corporation, 9, 0, 1, 7] [C:\Program Files\Intel\Wireless\Bin\C1XStngs.dll] [Intel Corporation, 9, 0, 1, 31] [c:\windows\system32\zowenuri.dll] [N/A, ] [C:\WINDOWS\system32\satukivu.dll] [N/A, ] [C:\Program Files\Intel\Wireless\Bin\LSAWRAPI.dll] [Intel Corporation, 9, 0, 1, 1][PID: 1400 / Ivan Arenas][C:\WINDOWS\Explorer.EXE] [(Verified) Microsoft Corporation, 6.00.2900.3156 (xpsp_sp2_gdr.070613-1234)] [C:\WINDOWS\system32\satukivu.dll] [N/A, ] [\\?\globalroot\systemroot\system32\gasfkydwehxllr.dll] [N/A, ] [\\?\globalroot\Device\__max++>\E7444BC8.x86.dll] [N/A, ] [c:\windows\system32\zowenuri.dll] [N/A, ] [C:\Program Files\Network Associates\VirusScan\scriptproxy.dll] [Network Associates, Inc., 8.0.0.992] [C:\Program Files\Network Associates\VirusScan\mytilus.dll] [Network Associates, Inc., 8.0.0.325] [C:\Program Files\Network Associates\VirusScan\Res09\McShield.dll] [Network Associates, Inc., 8.0.0.251] [C:\Program Files\Common Files\Network Associates\Engine\mcscan32.dll] [McAfee, Inc., 5.3.00] [C:\Program Files\Bonjour\mdnsNSP.dll] [Apple Computer, Inc., 1,0,3,1] [C:\WINDOWS\icow32.dll] [N/A, ] [C:\WINDOWS\system32\EntApi.dll] [Network Associates, Inc, 8.0.0.448] [C:\WINDOWS\system32\nzfiu3h78di.dll] [N/A, ] [C:\Program Files\Dell\QuickSet\dadkeyb.dll] [N/A, ] [C:\PROGRA~1\WinZip\wzshlext.dll] [, ] [C:\Program Files\WinRAR\rarext.dll] [N/A, ] [C:\Program Files\Network Associates\VirusScan\shext.dll] [Network Associates, Inc., 8.0.0.912] [C:\Program Files\Network Associates\VirusScan\RES09\ShExtRes.dll] [Network Associates, Inc., 8.0.0.912][PID: 1472 / NETWORK SERVICE][C:\WINDOWS\system32\svchost.exe] [(Verified) Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)] [C:\WINDOWS\system32\satukivu.dll] [N/A, ] [C:\WINDOWS\system32\EntApi.dll] [Network Associates, Inc, 8.0.0.448][PID: 1548 / LOCAL SERVICE][C:\WINDOWS\system32\svchost.exe] [(Verified) Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)] [C:\WINDOWS\system32\satukivu.dll] [N/A, ] [C:\WINDOWS\system32\EntApi.dll] [Network Associates, Inc, 8.0.0.448] [\\?\globalroot\Device\__max++>\E7444BC8.x86.dll] [N/A, ] [C:\Program Files\Network Associates\VirusScan\scriptproxy.dll] [Network Associates, Inc., 8.0.0.992] [C:\Program Files\Network Associates\VirusScan\mytilus.dll] [Network Associates, Inc., 8.0.0.325] [C:\Program Files\Network Associates\VirusScan\Res09\McShield.dll] [Network Associates, Inc., 8.0.0.251] [C:\Program Files\Common Files\Network Associates\Engine\mcscan32.dll] [McAfee, Inc., 5.3.00] [C:\Program Files\Bonjour\mdnsNSP.dll] [Apple Computer, Inc., 1,0,3,1][PID: 1712 / SYSTEM][C:\WINDOWS\system32\spoolsv.exe] [(Verified) Microsoft Corporation, 5.1.2600.2696 (xpsp_sp2_gdr.050610-1519)] [C:\WINDOWS\system32\satukivu.dll] [N/A, ] [\\?\globalroot\Device\__max++>\E7444BC8.x86.dll] [N/A, ] [C:\Program Files\Bonjour\mdnsNSP.dll] [Apple Computer, Inc., 1,0,3,1] [C:\Program Files\Network Associates\VirusScan\scriptproxy.dll] [Network Associates, Inc., 8.0.0.992] [C:\Program Files\Network Associates\VirusScan\mytilus.dll] [Network Associates, Inc., 8.0.0.325] [C:\Program Files\Network Associates\VirusScan\Res09\McShield.dll] [Network Associates, Inc., 8.0.0.251] [C:\Program Files\Common Files\Network Associates\Engine\mcscan32.dll] [McAfee, Inc., 5.3.00] [C:\WINDOWS\system32\hpz3l3xu.dll] [Hewlett-Packard Company, 60.051.645.00] [C:\WINDOWS\System32\spool\PRTPROCS\W32X86\hpzpp3xu.dll] [Hewlett-Packard Corporation, 60.051.645.00][PID: 1816 / LOCAL SERVICE][C:\WINDOWS\system32\svchost.exe] [(Verified) Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)] [C:\WINDOWS\system32\satukivu.dll] [N/A, ] [C:\WINDOWS\system32\EntApi.dll] [Network Associates, Inc, 8.0.0.448][PID: 1896 / SYSTEM][C:\Program Files\Bonjour\mDNSResponder.exe] [Apple Computer, Inc., 1,0,3,1] [c:\windows\system32\zowenuri.dll] [N/A, ] [C:\WINDOWS\system32\satukivu.dll] [N/A, ] [\\?\globalroot\Device\__max++>\E7444BC8.x86.dll] [N/A, ] [C:\Program Files\Network Associates\VirusScan\scriptproxy.dll] [Network Associates, Inc., 8.0.0.992] [C:\Program Files\Network Associates\VirusScan\mytilus.dll] [Network Associates, Inc., 8.0.0.325] [C:\Program Files\Network Associates\VirusScan\Res09\McShield.dll] [Network Associates, Inc., 8.0.0.251] [C:\Program Files\Common Files\Network Associates\Engine\mcscan32.dll] [McAfee, Inc., 5.3.00] [C:\Program Files\Bonjour\mdnsNSP.dll] [Apple Computer, Inc., 1,0,3,1][PID: 1980 / SYSTEM][C:\Program Files\Network Associates\Common Framework\FrameworkService.exe] [McAfee, Inc., 3.5.5.438] [C:\Program Files\Network Associates\Common Framework\nailog.dll] [McAfee, Inc., 3.5.5.438] [C:\Program Files\Network Associates\Common Framework\MSVCR71.dll] [Microsoft Corporation, 7.10.3052.4] [C:\Program Files\Network Associates\Common Framework\naXML71.dll] [N/A, ] [C:\Program Files\Network Associates\Common Framework\MSVCP71.dll] [Microsoft Corporation, 7.10.3077.0] [C:\Program Files\Network Associates\Common Framework\naCmnLib71.dll] [McAfee, Inc., 3.5.5.438] [C:\Program Files\Network Associates\Common Framework\applib.dll] [McAfee, Inc., 3.5.5.438] [C:\WINDOWS\system32\satukivu.dll] [N/A, ] [C:\Program Files\Network Associates\Common Framework\0409\AgentRes.dll] [McAfee, Inc., 3.5.5.438] [C:\Program Files\Network Associates\Common Framework\Logging.dll] [McAfee, Inc., 3.5.5.438] [C:\Program Files\Network Associates\Common Framework\InternetManager.dll] [McAfee, Inc., 3.5.5.438] [C:\Program Files\Network Associates\Common Framework\naInet.dll] [McAfee, Inc., 3.5.5.438] [C:\Program Files\Network Associates\Common Framework\UserSpace.dll] [McAfee, Inc., 3.5.5.438] [C:\Program Files\Network Associates\Common Framework\SecureFrameworkFactory.dll] [McAfee, Inc., 3.5.5.438] [C:\Program Files\Network Associates\Common Framework\Management.dll] [McAfee, Inc., 3.5.5.438] [C:\Program Files\Network Associates\Common Framework\cmalib.dll] [McAfee, Inc., 3.5.5.438] [C:\Program Files\Network Associates\Common Framework\naPolicyManager.dll] [McAfee, Inc., 3.5.5.438] [C:\Program Files\Network Associates\Common Framework\PsApi.dll] [Microsoft Corporation, 4.00] [C:\Program Files\Network Associates\Common Framework\ScriptSubSys.dll] [McAfee, Inc., 3.5.5.438] [C:\Program Files\Network Associates\Common Framework\UpdateSubSys.dll] [McAfee, Inc., 3.5.5.438] [C:\Program Files\Network Associates\Common Framework\Scheduler.dll] [McAfee, Inc., 3.5.5.438] [C:\Program Files\Network Associates\Common Framework\TCSubSys.dll] [McAfee, Inc., 3.5.5.438] [C:\WINDOWS\system32\EntApi.dll] [Network Associates, Inc, 8.0.0.448] [C:\Program Files\Network Associates\Common Framework\GenEvtInf.dll] [McAfee, Inc., 3.5.5.438] [\\?\globalroot\Device\__max++>\E7444BC8.x86.dll] [N/A, ] [C:\Program Files\Bonjour\mdnsNSP.dll] [Apple Computer, Inc., 1,0,3,1] [C:\Program Files\Network Associates\VirusScan\scriptproxy.dll] [Network Associates, Inc., 8.0.0.992] [C:\Program Files\Network Associates\VirusScan\mytilus.dll] [Network Associates, Inc., 8.0.0.325] [C:\Program Files\Network Associates\VirusScan\Res09\McShield.dll] [Network Associates, Inc., 8.0.0.251] [C:\Program Files\Common Files\Network Associates\Engine\mcscan32.dll] [McAfee, Inc., 5.3.00][PID: 176 / SYSTEM][C:\Program Files\Network Associates\VirusScan\mcshield.exe] [Network Associates, Inc., 8.0.0.318] [c:\windows\system32\zowenuri.dll] [N/A, ] [C:\WINDOWS\system32\satukivu.dll] [N/A, ] [C:\Program Files\Network Associates\VirusScan\Res09\McShield.DLL] [Network Associates, Inc., 8.0.0.251] [C:\Program Files\Network Associates\VirusScan\FTL.Dll] [Network Associates, Inc., 8.0.0.135] [C:\Program Files\Network Associates\VirusScan\naiann.dll] [Network Associates, Inc., 8.0.0.308] [C:\Program Files\Network Associates\VirusScan\mytilus.dll] [Network Associates, Inc., 8.0.0.325] [C:\Program Files\Network Associates\Common Framework\GenEvtInf.dll] [McAfee, Inc., 3.5.5.438] [C:\Program Files\Network Associates\Common Framework\MSVCP71.dll] [Microsoft Corporation, 7.10.3077.0] [C:\Program Files\Network Associates\Common Framework\MSVCR71.dll] [Microsoft Corporation, 7.10.3052.4] [C:\Program Files\Network Associates\VirusScan\NaEventU.DLL] [Network Associates, Inc., 8.0.0.342] [\\?\globalroot\Device\__max++>\E7444BC8.x86.dll] [N/A, ] [C:\Program Files\Network Associates\VirusScan\Res09\naEvtRes.dll] [Network Associates, Inc., 8.0.0.342] [C:\Program Files\Network Associates\VirusScan\VSIDSvr.dll] [Network Associates, Inc., 8.0.0.291] [C:\Program Files\Network Associates\VirusScan\scriptproxy.dll] [Network Associates, Inc., 8.0.0.992] [C:\Program Files\Common Files\Network Associates\Engine\MCSCAN32.DLL] [McAfee, Inc., 5.3.00] [C:\Program Files\Bonjour\mdnsNSP.dll] [Apple Computer, Inc., 1,0,3,1] [C:\Program Files\Network Associates\Common Framework\SecureFrameworkFactory.dll] [McAfee, Inc., 3.5.5.438] [C:\Program Files\Network Associates\VirusScan\EntSrv.Dll] [Network Associates, Inc, 8.0.0.448][PID: 216 / SYSTEM][C:\Program Files\Network Associates\Common Framework\naPrdMgr.exe] [McAfee, Inc., 3.5.5.438] [C:\Program Files\Network Associates\Common Framework\naXML71.dll] [N/A, ] [C:\Program Files\Network Associates\Common Framework\MSVCP71.dll] [Microsoft Corporation, 7.10.3077.0] [C:\Program Files\Network Associates\Common Framework\MSVCR71.dll] [Microsoft Corporation, 7.10.3052.4] [C:\Program Files\Network Associates\Common Framework\nailog.dll] [McAfee, Inc., 3.5.5.438] [C:\Program Files\Network Associates\Common Framework\naCmnLib71.dll] [McAfee, Inc., 3.5.5.438] [C:\Program Files\Network Associates\Common Framework\applib.dll] [McAfee, Inc., 3.5.5.438] [C:\WINDOWS\system32\satukivu.dll] [N/A, ] [C:\Program Files\Network Associates\Common Framework\0409\AgentRes.dll] [McAfee, Inc., 3.5.5.438] [C:\Program Files\Network Associates\VirusScan\VsPlugin.dll] [Network Associates, Inc., 8.0.0.1009] [C:\WINDOWS\system32\EntApi.dll] [Network Associates, Inc, 8.0.0.448][PID: 240 / SYSTEM][C:\Program Files\Network Associates\VirusScan\vstskmgr.exe] [Network Associates, Inc., 8.0.0.1004] [C:\Program Files\Network Associates\VirusScan\SHUTIL.dll] [Network Associates, Inc., 8.0.0.1011] [C:\Program Files\Network Associates\VirusScan\naiwmain.dll] [Network Associates, Inc., 8.0.0.912] [C:\Program Files\Network Associates\VirusScan\naicondl.dll] [Network Associates, Inc., 8.0.0.912] [c:\windows\system32\zowenuri.dll] [N/A, ] [C:\WINDOWS\system32\satukivu.dll] [N/A, ] [C:\Program Files\Network Associates\VirusScan\RES09\VsTskMgr.dll] [Network Associates, Inc., 8.0.0.912] [C:\Program Files\Network Associates\VirusScan\MIDUtil.Dll] [McAfee, Inc., 8.0.0.155] [C:\Program Files\Network Associates\VirusScan\bbcpl.dll] [Network Associates, Inc., 8.0.0.912] [C:\Program Files\Network Associates\VirusScan\coptcpl.dll] [Network Associates, Inc., 8.0.0.912] [C:\Program Files\Network Associates\VirusScan\emcfgcpl.dll] [Network Associates, Inc., 8.0.0.912] [C:\Program Files\Network Associates\VirusScan\RES09\SEmalRes.dll] [Network Associates, Inc., 8.0.0.912] [C:\Program Files\Network Associates\VirusScan\RES09\Product.dll] [Network Associates, Inc., 8.0.0.912] [C:\Program Files\Network Associates\VirusScan\nvpcpl.dll] [Network Associates, Inc., 8.0.0.912] [C:\Program Files\Network Associates\VirusScan\ftcfg.dll] [Network Associates, Inc., 8.0.0.912] [C:\Program Files\Network Associates\VirusScan\mytilus.dll] [Network Associates, Inc., 8.0.0.325] [C:\Program Files\Network Associates\VirusScan\Res09\McShield.dll] [Network Associates, Inc., 8.0.0.251] [C:\Program Files\Network Associates\VirusScan\oascpl.dll] [Network Associates, Inc., 8.0.0.912] [C:\Program Files\Network Associates\VirusScan\vsodscpl.dll] [Network Associates, Inc., 8.0.0.1011] [C:\Program Files\Network Associates\VirusScan\ftl.dll] [Network Associates, Inc., 8.0.0.135] [C:\Program Files\Network Associates\VirusScan\vsupdcpl.dll] [Network Associates, Inc., 8.0.0.912][PID: 384 / SYSTEM][C:\Program Files\Dell\NICCONFIGSVC\NICCONFIGSVC.exe] [Dell Inc., 7, 0, 10, 0] [c:\windows\system32\zowenuri.dll] [N/A, ] [C:\WINDOWS\system32\satukivu.dll] [N/A, ][PID: 424 / SYSTEM][C:\WINDOWS\system32\HPZipm12.exe] [HP, 9, 0, 0, 0] [c:\windows\system32\zowenuri.dll] [N/A, ] [C:\WINDOWS\system32\satukivu.dll] [N/A, ][PID: 472 / SYSTEM][C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe] [Intel Corporation, 9, 0, 1, 10] [c:\windows\system32\zowenuri.dll] [N/A, ] [C:\WINDOWS\system32\satukivu.dll] [N/A, ][PID: 492 / SYSTEM][C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe] [Microsoft Corporation, 1.3.59.0] [C:\WINDOWS\system32\satukivu.dll] [N/A, ][PID: 568 / SYSTEM][C:\WINDOWS\system32\svchost.exe] [(Verified) Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)] [C:\WINDOWS\system32\satukivu.dll] [N/A, ] [C:\WINDOWS\system32\EntApi.dll] [Network Associates, Inc, 8.0.0.448][PID: 912 / LOCAL SERVICE][C:\WINDOWS\system32\wdfmgr.exe] [Microsoft Corporation, 5.2.3790.1230 built by: DNSRV(bld4act)] [c:\windows\system32\zowenuri.dll] [N/A, ] [C:\WINDOWS\system32\satukivu.dll] [N/A, ][PID: 1488 / Ivan Arenas][C:\WINDOWS\system32\rundll32.exe] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)] [c:\windows\system32\zowenuri.dll] [N/A, ] [C:\WINDOWS\system32\satukivu.dll] [N/A, ] [C:\WINDOWS\icow32.dll] [N/A, ] [\\?\globalroot\Device\__max++>\E7444BC8.x86.dll] [N/A, ] [C:\Program Files\Network Associates\VirusScan\scriptproxy.dll] [Network Associates, Inc., 8.0.0.992] [C:\Program Files\Network Associates\VirusScan\mytilus.dll] [Network Associates, Inc., 8.0.0.325] [C:\Program Files\Network Associates\VirusScan\Res09\McShield.dll] [Network Associates, Inc., 8.0.0.251] [C:\Program Files\Bonjour\mdnsNSP.dll] [Apple Computer, Inc., 1,0,3,1] [C:\Program Files\Common Files\Network Associates\Engine\mcscan32.dll] [McAfee, Inc., 5.3.00][PID: 2332 / Ivan Arenas][C:\WINDOWS\system32\svchost.exe] [(Verified) Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)] [C:\WINDOWS\system32\satukivu.dll] [N/A, ] [\\?\globalroot\Device\__max++>\E7444BC8.x86.dll] [N/A, ] [c:\windows\system32\zowenuri.dll] [N/A, ] [C:\Program Files\Bonjour\mdnsNSP.dll] [Apple Computer, Inc., 1,0,3,1] [C:\WINDOWS\system32\EntApi.dll] [Network Associates, Inc, 8.0.0.448] [C:\Program Files\Network Associates\VirusScan\scriptproxy.dll] [Network Associates, Inc., 8.0.0.992] [C:\Program Files\Network Associates\VirusScan\mytilus.dll] [Network Associates, Inc., 8.0.0.325] [C:\Program Files\Network Associates\VirusScan\Res09\McShield.dll] [Network Associates, Inc., 8.0.0.251] [C:\Program Files\Common Files\Network Associates\Engine\mcscan32.dll] [McAfee, Inc., 5.3.00][PID: 2676 / SYSTEM][C:\WINDOWS\system32\wbem\wmiprvse.exe] [(Verified) Microsoft Corporation, 5.1.2600.3520 (xpsp_sp2_qfe.090206-1239)] [c:\windows\system32\zowenuri.dll] [N/A, ] [C:\WINDOWS\system32\satukivu.dll] [N/A, ][PID: 3352 / Ivan Arenas][C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe] [Sun Microsystems, Inc., 6.0.30.5] [C:\WINDOWS\system32\satukivu.dll] [N/A, ] [c:\windows\system32\zowenuri.dll] [N/A, ] [C:\WINDOWS\icow32.dll] [N/A, ][PID: 3372 / Ivan Arenas][C:\Program Files\Synaptics\SynTP\SynTPEnh.exe] [Synaptics, Inc., 8.2.4.3 29Nov05] [C:\WINDOWS\system32\satukivu.dll] [N/A, ] [c:\windows\system32\zowenuri.dll] [N/A, ] [C:\WINDOWS\system32\SynCOM.dll] [Synaptics, Inc., 8.2.4.3 29Nov05] [C:\WINDOWS\icow32.dll] [N/A, ] [C:\WINDOWS\system32\SynTPAPI.dll] [Synaptics, Inc., 8.2.4.3 29Nov05][PID: 3392 / Ivan Arenas][C:\Program Files\Intel\Wireless\Bin\ifrmewrk.exe] [Intel Corporation, 9, 0, 1, 19] [C:\Program Files\Intel\Wireless\Bin\PsRegApi.dll] [Intel Corporation, 9, 0, 1, 14] [c:\windows\system32\zowenuri.dll] [N/A, ] [C:\WINDOWS\system32\satukivu.dll] [N/A, ] [C:\Program Files\Intel\Wireless\Bin\FrameworkPlugins\ConnMgr.dll] [Intel Corporation, 9, 0, 1, 57] [C:\Program Files\Intel\Wireless\Bin\MurocApi.dll] [Intel Corporation, 9, 0, 1, 54] [C:\Program Files\Intel\Wireless\Bin\S24MUDLL.dll] [Intel Corporation, 9, 0, 1, 7] [C:\Program Files\Intel\Wireless\Bin\C1XStngs.dll] [Intel Corporation, 9, 0, 1, 31] [C:\Program Files\Intel\Wireless\Bin\TraceAPI.DLL] [Intel Corporation, 9, 0, 1, 22] [C:\Program Files\Intel\Wireless\Bin\PfMgrApi.dll] [Intel Corporation, 9, 0, 1, 45] [C:\Program Files\Intel\Wireless\Bin\LSAWRAPI.dll] [Intel Corporation, 9, 0, 1, 1] [C:\WINDOWS\icow32.dll] [N/A, ][PID: 3416 / Ivan Arenas][C:\WINDOWS\stsystra.exe] [SigmaTel, Inc., 1.0.4717.0 nd286 cp1] [C:\WINDOWS\system32\satukivu.dll] [N/A, ] [c:\windows\system32\zowenuri.dll] [N/A, ] [C:\WINDOWS\system32\stacapi.dll] [SigmaTel, Inc., 1.0.4717.0 nd286 cp1] [C:\WINDOWS\icow32.dll] [N/A, ][PID: 3432 / Ivan Arenas][C:\Program Files\Dell\QuickSet\quickset.exe] [Dell Inc, 7, 0, 10, 0] [C:\Program Files\Dell\QuickSet\IWH9.dll] [Dell Inc, 7, 0, 10, 0] [C:\Program Files\Dell\QuickSet\IWH10.dll] [Dell Inc, 7, 0, 10, 0] [C:\WINDOWS\system32\satukivu.dll] [N/A, ] [c:\windows\system32\zowenuri.dll] [N/A, ] [C:\Program Files\Dell\QuickSet\dadkeyb.dll] [N/A, ] [C:\WINDOWS\icow32.dll] [N/A, ][PID: 3468 / Ivan Arenas][C:\Program Files\CyberLink\PowerDVD\DVDLauncher.exe] [CyberLink Corp., 3.00.0000] [C:\WINDOWS\system32\satukivu.dll] [N/A, ] [c:\windows\system32\zowenuri.dll] [N/A, ] [C:\WINDOWS\icow32.dll] [N/A, ][PID: 3504 / Ivan Arenas][C:\Program Files\Real\RealPlayer\RealPlay.exe] [RealNetworks, Inc., 6.0.9.584] [C:\WINDOWS\system32\PNCRT.dll] [Real Networks, Inc, 6.0.0.0] [C:\WINDOWS\system32\satukivu.dll] [N/A, ] [C:\Program Files\Real\RealPlayer\rpap3260.dll] [RealNetworks, Inc., 6.0.9.657] [C:\Program Files\Common Files\Real\Common\pngu3266.dll] [RealNetworks, Inc., 6.6.0.556] [C:\Program Files\Common Files\Real\Common\pnrs3260.dll] [RealNetworks, Inc., 6.0.9.852] [c:\windows\system32\zowenuri.dll] [N/A, ] [C:\Program Files\Common Files\Real\Common\rpcl3260.dll] [RealNetworks, Inc., 6.0.9.724] [C:\Program Files\Common Files\Real\Common\pnen3260.dll] [RealNetworks, Inc., 6.0.8.1660] [C:\WINDOWS\icow32.dll] [N/A, ] [C:\Program Files\Common Files\Real\Plugins\pnxr3260.dll] [RealNetworks, Inc., 6.0.8.1780] [C:\Program Files\Real\RealPlayer\rnms3260.dll] [RealNetworks, Inc., 6.0.8.692] [C:\Program Files\Common Files\Real\Update\rnqu3260.dll] [RealNetworks, Inc., 6.0.9.262] [C:\Program Files\Common Files\Real\Update\rpup3260.dll] [RealNetworks, Inc., 6.0.9.636] [C:\Program Files\Common Files\Real\Update\upgr3260.dll] [RealNetworks, Inc., 6.0.9.621] [C:\Program Files\Common Files\Real\Update\setu3260.dll] [RealNetworks, Inc., 6.0.9.753][PID: 3556 / Ivan Arenas][C:\WINDOWS\system32\dla\tfswctrl.exe] [Sonic Solutions, 1.04.08a] [C:\WINDOWS\system32\tfswapi.dll] [Sonic Solutions, 1.04.08a] [C:\WINDOWS\system32\dla\tfswcres.dll] [Sonic Solutions, 1.04.08a] [C:\WINDOWS\system32\satukivu.dll] [N/A, ] [c:\windows\system32\zowenuri.dll] [N/A, ] [C:\WINDOWS\icow32.dll] [N/A, ][PID: 3676 / Ivan Arenas][C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe] [InstallShield Software Corporation, 4, 50, 100, 33433] [C:\WINDOWS\icow32.dll] [N/A, ][PID: 3716 / Ivan Arenas][C:\Program Files\Corel\Corel Photo Album 6\MediaDetect.exe] [Corel, Inc., 6.3.3 (20060209.16)] [C:\Program Files\Corel\Corel Photo Album 6\MFC71.DLL] [Microsoft Corporation, 7.10.3077.0] [C:\Program Files\Corel\Corel Photo Album 6\MSVCR71.dll] [Microsoft Corporation, 7.10.3052.4] [C:\WINDOWS\system32\satukivu.dll] [N/A, ] [C:\WINDOWS\system32\MFC71ENU.DLL] [Microsoft Corporation, 7.10.3077.0] [C:\Program Files\Corel\Corel Photo Album 6\LangDLLs\MediaDetectRC.dll] [Corel, Inc., 6.3.3 (20060209.16)] [c:\windows\system32\zowenuri.dll] [N/A, ] [C:\WINDOWS\icow32.dll] [N/A, ][PID: 3860 / Ivan Arenas][C:\Program Files\Common Files\Logitech\QCDriver3\LVCOMS.EXE] [Logitech Inc., 7.3.0.1113] [C:\WINDOWS\system32\satukivu.dll] [N/A, ] [c:\windows\system32\zowenuri.dll] [N/A, ] [C:\WINDOWS\icow32.dll] [N/A, ] [C:\WINDOWS\system32\LVComC.dll] [Logitech Inc., 7.0.0.1221][PID: 4024 / Ivan Arenas][C:\Program Files\Logitech\ImageStudio\LogiTray.exe] [Logitech Inc., 7.3.0.1113] [C:\Program Files\Logitech\ImageStudio\QCUI.dll] [Logitech Inc., 7.3.0.1113] [C:\Program Files\Logitech\ImageStudio\LTWVC12n.dll] [LEAD Technologies, Inc., 12.1.0.011] [c:\windows\system32\zowenuri.dll] [N/A, ] [C:\WINDOWS\system32\satukivu.dll] [N/A, ] [C:\Program Files\Logitech\ImageStudio\LQCUI.dll] [Logitech Inc., 7.3.0.1113] [C:\Program Files\Logitech\ImageStudio\LLogTray.dll] [Logitech Inc., 7.3.0.1113] [C:\WINDOWS\Twain_32\QuickCam\HPortal.dll] [Logitech Inc., 7.0.0.1221] [C:\WINDOWS\Twain_32\QuickCam\LHPortal.dll] [Logitech Inc., 7.0.0.1221] [C:\WINDOWS\icow32.dll] [N/A, ] [C:\WINDOWS\system32\LVComC.dll] [Logitech Inc., 7.0.0.1221][PID: 4092 / Ivan Arenas][C:\Program Files\Network Associates\VirusScan\SHSTAT.EXE] [Network Associates, Inc., 8.0.0.912] [C:\Program Files\Network Associates\VirusScan\SHUTIL.dll] [Network Associates, Inc., 8.0.0.1011] [C:\Program Files\Network Associates\VirusScan\naiwmain.dll] [Network Associates, Inc., 8.0.0.912] [c:\windows\system32\zowenuri.dll] [N/A, ] [C:\WINDOWS\system32\satukivu.dll] [N/A, ] [C:\Program Files\Network Associates\VirusScan\RES09\shstat.dll] [Network Associates, Inc., 8.0.0.912] [C:\Program Files\Network Associates\VirusScan\RES09\Product.dll] [Network Associates, Inc., 8.0.0.912] [C:\Program Files\Network Associates\VirusScan\RES09\McShield.dll] [Network Associates, Inc., 8.0.0.251] [C:\Program Files\Network Associates\VirusScan\RES09\Shutilrc.dll] [Network Associates, Inc., 8.0.0.912] [C:\Program Files\Network Associates\VirusScan\Graphics.dll] [Network Associates, Inc., 8.0.0.912] [C:\WINDOWS\icow32.dll] [N/A, ][PID: 124 / Ivan Arenas][C:\Program Files\Network Associates\Common Framework\UpdaterUI.exe] [McAfee, Inc., 3.5.5.438] [C:\Program Files\Network Associates\Common Framework\nailog.dll] [McAfee, Inc., 3.5.5.438] [C:\Program Files\Network Associates\Common Framework\MSVCR71.dll] [Microsoft Corporation, 7.10.3052.4] [C:\Program Files\Network Associates\Common Framework\naCmnLib71.dll] [McAfee, Inc., 3.5.5.438] [C:\Program Files\Network Associates\Common Framework\naXML71.dll] [N/A, ] [C:\Program Files\Network Associates\Common Framework\MSVCP71.dll] [Microsoft Corporation, 7.10.3077.0] [C:\Program Files\Network Associates\Common Framework\cmalib.dll] [McAfee, Inc., 3.5.5.438] [C:\Program Files\Network Associates\Common Framework\applib.dll] [McAfee, Inc., 3.5.5.438] [C:\WINDOWS\system32\satukivu.dll] [N/A, ] [C:\Program Files\Network Associates\Common Framework\0409\UpdRes.dll] [McAfee, Inc., 3.5.5.438] [C:\Program Files\Network Associates\Common Framework\0409\AgentRes.dll] [McAfee, Inc., 3.5.5.438] [c:\windows\system32\zowenuri.dll] [N/A, ] [C:\Program Files\Network Associates\Common Framework\SecureFrameworkFactory.dll] [McAfee, Inc., 3.5.5.438] [C:\WINDOWS\icow32.dll] [N/A, ][PID: 148 / Ivan Arenas][C:\Program Files\Common Files\Network Associates\TalkBack\tbmon.exe] [Network Associates, Inc., 2.0.275.0] [C:\WINDOWS\system32\satukivu.dll] [N/A, ] [c:\windows\system32\zowenuri.dll] [N/A, ] [C:\WINDOWS\icow32.dll] [N/A, ][PID: 572 / Ivan Arenas][C:\Program Files\HP\HP Software Update\HPWuSchd2.exe] [Hewlett-Packard Co., 53.0.13.000] [C:\WINDOWS\system32\satukivu.dll] [N/A, ] [c:\windows\system32\zowenuri.dll] [N/A, ] [C:\WINDOWS\icow32.dll] [N/A, ][PID: 1116 / Ivan Arenas][C:\Program Files\NetWaiting\netWaiting.exe] [N/A, ] [C:\Program Files\NetWaiting\BVRPDIAG.dll] [BVRP Software, 1.0] [C:\Program Files\NetWaiting\MODEMMOH.dll] [BVRP Software, 1.0] [C:\Program Files\NetWaiting\bvrpctln.dll] [BVRP Software, 6.00] [c:\windows\system32\zowenuri.dll] [N/A, ] [C:\WINDOWS\system32\satukivu.dll] [N/A, ] [C:\WINDOWS\system32\MdmXSdk.dll] [Conexant, 1.0.2.006] [C:\Program Files\NetWaiting\mohrc.dll] [BVRP Software, 1.0] [C:\WINDOWS\icow32.dll] [N/A, ][PID: 2488 / Ivan Arenas][C:\WINDOWS\system32\ctfmon.exe] [(Verified) Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)] [c:\windows\system32\zowenuri.dll] [N/A, ] [C:\WINDOWS\system32\satukivu.dll] [N/A, ] [C:\WINDOWS\icow32.dll] [N/A, ][PID: 2540 / Ivan Arenas][C:\Program Files\DellSupport\DSAgnt.exe] [Gteko Ltd., 3, 0, 0, 197] [C:\WINDOWS\system32\satukivu.dll] [N/A, ] [c:\windows\system32\zowenuri.dll] [N/A, ] [C:\Program Files\DellSupport\GTAgnt.dll] [Gteko Ltd., 2, 0, 0, 28] [C:\Program Files\DellSupport\CfgData.DLL] [Gteko Ltd., 2, 0, 0, 59] [C:\Program Files\DellSupport\ActMgr.dll] [Gteko Ltd., 2, 0, 0, 22] [C:\WINDOWS\icow32.dll] [N/A, ] [c:\progra~1\dellsu~1\gtaction\handlers\brkrsvch.dll] [Gteko Ltd., 2, 0, 0, 46] [c:\progra~1\dellsu~1\gtaction\handlers\grouph.dll] [Gteko Ltd., 2, 0, 0, 35] [c:\progra~1\dellsu~1\gtaction\handlers\pnph.dll] [Gteko Ltd., 2, 0, 0, 50] [c:\progra~1\dellsu~1\gtaction\handlers\qdiagh.dll] [Gteko Ltd., 2, 0, 0, 35] [c:\progra~1\dellsu~1\gtaction\handlers\trgloadh.dll] [Gteko Ltd., 2, 0, 0, 35] [c:\progra~1\dellsu~1\gtaction\handlers\trgregh.dll] [Gteko Ltd., 2, 0, 0, 35] [C:\Program Files\DellSupport\TrgMgr.DLL] [Gteko Ltd., 2, 0, 0, 22] [C:\PROGRA~1\DELLSU~1\gdql_d.dll] [Gteko Ltd., 1, 0, 1, 150] [C:\PROGRA~1\DELLSU~1\GTACTION\TRIGGERS\TIMERT.DLL] [Gteko Ltd., 2, 0, 0, 11] [C:\PROGRA~1\DELLSU~1\GTACTION\TRIGGERS\DSPROCT.DLL] [Gteko Ltd., 2, 0, 0, 50] [C:\PROGRA~1\DELLSU~1\GTACTION\TRIGGERS\DSWNHNT.DLL] [Gteko Ltd., 2, 0, 0, 34][PID: 2644 / Ivan Arenas][C:\Documents and Settings\All Users\Application Data\Dell\TransferAgent\TransferAgent.exe] [ , 1.0.2873.20447] [C:\WINDOWS\system32\mscoree.dll] [Microsoft Corporation, 2.0.50727.253 (QFE.050727-2500)] [c:\windows\system32\zowenuri.dll] [N/A, ] [C:\WINDOWS\system32\satukivu.dll] [N/A, ] [C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\mscorwks.dll] [Microsoft Corporation, 1.1.4322.2407] [C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\MSVCR71.dll] [Microsoft Corporation, 7.10.3052.4] [C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\fusion.dll] [Microsoft Corporation, 1.1.4322.2032] [c:\windows\microsoft.net\framework\v1.1.4322\mscorlib.dll] [Microsoft Corporation, 1.1.4322.2407] [c:\windows\assembly\nativeimages1_v1.1.4322\mscorlib\1.0.5000.0__b77a5c561934e089_08d355bb\mscorlib.dll] [N/A, ] [C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\mscorsn.dll] [Microsoft Corporation, 1.1.4322.2407] [c:\windows\assembly\gac\system.windows.forms\1.0.5000.0__b77a5c561934e089\system.windows.forms.dll] [Microsoft Corporation, 1.1.4322.2032] [c:\windows\assembly\nativeimages1_v1.1.4322\system.windows.forms\1.0.5000.0__b77a5c561934e089_e276d55f\system.windows.forms.dll] [N/A, ] [c:\windows\assembly\gac\system\1.0.5000.0__b77a5c561934e089\system.dll] [Microsoft Corporation, 1.1.4322.2407] [c:\windows\assembly\nativeimages1_v1.1.4322\system\1.0.5000.0__b77a5c561934e089_1d2998e1\system.dll] [N/A, ] [C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\MSCORJIT.DLL] [Microsoft Corporation, 1.1.4322.2407] [c:\windows\assembly\gac\system.drawing\1.0.5000.0__b03f5f7f11d50a3a\system.drawing.dll] [Microsoft Corporation, 1.1.4322.2032] [c:\windows\assembly\nativeimages1_v1.1.4322\system.drawing\1.0.5000.0__b03f5f7f11d50a3a_d2b93c31\system.drawing.dll] [N/A, ] [c:\windows\assembly\gac\system.xml\1.0.5000.0__b77a5c561934e089\system.xml.dll] [Microsoft Corporation, 1.1.4322.2032] [c:\windows\assembly\nativeimages1_v1.1.4322\system.xml\1.0.5000.0__b77a5c561934e089_b7a33f4c\system.xml.dll] [N/A, ] [c:\documents and settings\all users\application data\dell\transferagent\en-us\transferagent.resources.dll] [ , 1.0.2873.20447] [c:\documents and settings\all users\application data\dell\transferagent\en\transferagent.resources.dll] [ , 1.0.2873.20447] [C:\WINDOWS\icow32.dll] [N/A, ] [c:\documents and settings\all users\application data\dell\transferagent\microsoft.msdn.samples.bits.dll] [Microsoft Developer Network, 1.1.0.0] [c:\documents and settings\all users\application data\dell\transferagent\backgroundcopymanager.dll] [ , 1.0.0.0] [c:\windows\assembly\gac\microsoft.visualbasic\7.0.5000.0__b03f5f7f11d50a3a\microsoft.visualbasic.dll] [Microsoft Corporation, 7.10.6001.4][PID: 3428 / Ivan Arenas][C:\Program Files\Digital Line Detect\DLG.exe] [BVRP Software, 1, 0, 0, 1] [C:\Program Files\Digital Line Detect\BVRPDIAG.dll] [BVRP Software, 1.0] [C:\WINDOWS\system32\satukivu.dll] [N/A, ] [C:\WINDOWS\system32\MdmXSdk.dll] [Conexant, 1.0.2.006] [c:\windows\system32\zowenuri.dll] [N/A, ] [C:\WINDOWS\icow32.dll] [N/A, ][PID: 1928 / Ivan Arenas][C:\Program Files\Yahoo!\Messenger\ymsgr_tray.exe] [Yahoo! Inc., 8,1,0,0] [C:\Program Files\Yahoo!\Messenger\yui.dll] [, 2008, 2, 1, 1] [c:\windows\system32\zowenuri.dll] [N/A, ] [C:\WINDOWS\system32\satukivu.dll] [N/A, ] [C:\Program Files\Yahoo!\Messenger\res_msgr.dll] [Yahoo! Inc., 9, 0, 0, 1000] [C:\WINDOWS\icow32.dll] [N/A, ][PID: 2748 / Ivan Arenas][C:\Documents and Settings\Ivan Arenas\Desktop\SREngLdr.EXE] [Smallfrogs Studio, 2.8.1.1279] [c:\windows\system32\zowenuri.dll] [N/A, ] [C:\WINDOWS\system32\satukivu.dll] [N/A, ][PID: 3980 / Ivan Arenas][C:\Documents and Settings\Ivan Arenas\Desktop\SRE21168560.EXE] [Smallfrogs Studio, 2.8.1.1279] [C:\WINDOWS\system32\satukivu.dll] [N/A, ] [c:\windows\system32\zowenuri.dll] [N/A, ] [C:\WINDOWS\icow32.dll] [N/A, ] [\\?\globalroot\Device\__max++>\E7444BC8.x86.dll] [N/A, ] [C:\Program Files\Network Associates\VirusScan\scriptproxy.dll] [Network Associates, Inc., 8.0.0.992] [C:\Program Files\Network Associates\VirusScan\mytilus.dll] [Network Associates, Inc., 8.0.0.325] [C:\Program Files\Network Associates\VirusScan\Res09\McShield.dll] [Network Associates, Inc., 8.0.0.251] [C:\Program Files\Common Files\Network Associates\Engine\mcscan32.dll] [McAfee, Inc., 5.3.00] [C:\Program Files\Bonjour\mdnsNSP.dll] [Apple Computer, Inc., 1,0,3,1]

==================================
File Associations
.TXT OK. [%SystemRoot%\system32\NOTEPAD.EXE %1]
.EXE OK. ["%1" %*]
.COM OK. ["%1" %*]
.PIF OK. ["%1" %*]
.REG OK. [regedit.exe "%1"]
.BAT OK. ["%1" %*]
.SCR OK. ["%1" /S]
.CHM OK. ["C:\WINDOWS\hh.exe" %1]
.HLP OK. [%SystemRoot%\System32\winhlp32.exe %1]
.INI OK. [%SystemRoot%\System32\NOTEPAD.EXE %1]
.INF OK. [%SystemRoot%\System32\NOTEPAD.EXE %1]
.VBS OK. [%SystemRoot%\System32\WScript.exe "%1" %*]
.JS OK. [%SystemRoot%\System32\WScript.exe "%1" %*]
.LNK OK. [{00021401-0000-0000-C000-000000000046}]


==================================
Winsock Provider
N/A

==================================
Autorun.Inf
N/A

==================================
HOSTS File
127.0.0.1 localhost


==================================
Process Privileges Scan
Special Privileges Enabled: SeLoadDriverPrivilege [PID = 1108, C:\PROGRAM FILES\INTEL\WIRELESS\BIN\EVTENG.EXE]
Special Privileges Enabled: SeLoadDriverPrivilege [PID = 1280, C:\PROGRAM FILES\INTEL\WIRELESS\BIN\S24EVMON.EXE]
Special Privileges Enabled: SeLoadDriverPrivilege [PID = 1376, C:\PROGRAM FILES\INTEL\WIRELESS\BIN\WLKEEPER.EXE]
Special Privileges Enabled: SeLoadDriverPrivilege [PID = 1896, C:\PROGRAM FILES\BONJOUR\MDNSRESPONDER.EXE]
Special Privileges Enabled: SeLoadDriverPrivilege [PID = 1980, C:\PROGRAM FILES\NETWORK ASSOCIATES\COMMON FRAMEWORK\FRAMEWORKSERVICE.EXE]
Special Privileges Enabled: SeLoadDriverPrivilege [PID = 176, C:\PROGRAM FILES\NETWORK ASSOCIATES\VIRUSSCAN\MCSHIELD.EXE]
Special Privileges Enabled: SeLoadDriverPrivilege [PID = 216, C:\PROGRAM FILES\NETWORK ASSOCIATES\COMMON FRAMEWORK\NAPRDMGR.EXE]
Special Privileges Enabled: SeLoadDriverPrivilege [PID = 240, C:\PROGRAM FILES\NETWORK ASSOCIATES\VIRUSSCAN\VSTSKMGR.EXE]
Special Privileges Enabled: SeLoadDriverPrivilege [PID = 384, C:\PROGRAM FILES\DELL\NICCONFIGSVC\NICCONFIGSVC.EXE]
Special Privileges Enabled: SeLoadDriverPrivilege [PID = 424, C:\WINDOWS\SYSTEM32\HPZIPM12.EXE]
Special Privileges Enabled: SeLoadDriverPrivilege [PID = 472, C:\PROGRAM FILES\INTEL\WIRELESS\BIN\REGSRVC.EXE]
Special Privileges Enabled: SeLoadDriverPrivilege [PID = 3392, C:\PROGRAM FILES\INTEL\WIRELESS\BIN\IFRMEWRK.EXE]
Special Privileges Enabled: SeLoadDriverPrivilege [PID = 3416, C:\WINDOWS\STSYSTRA.EXE]
Special Privileges Enabled: SeLoadDriverPrivilege [PID = 3432, C:\PROGRAM FILES\DELL\QUICKSET\QUICKSET.EXE]
Special Privileges Enabled: SeLoadDriverPrivilege [PID = 3468, C:\PROGRAM FILES\CYBERLINK\POWERDVD\DVDLAUNCHER.EXE]
Special Privileges Enabled: SeLoadDriverPrivilege [PID = 3504, C:\PROGRAM FILES\REAL\REALPLAYER\REALPLAY.EXE]
Special Privileges Enabled: SeLoadDriverPrivilege [PID = 3556, C:\WINDOWS\SYSTEM32\DLA\TFSWCTRL.EXE]
Special Privileges Enabled: SeLoadDriverPrivilege [PID = 3676, C:\PROGRAM FILES\COMMON FILES\INSTALLSHIELD\UPDATESERVICE\ISSCH.EXE]
Special Privileges Enabled: SeLoadDriverPrivilege [PID = 3716, C:\PROGRAM FILES\COREL\COREL PHOTO ALBUM 6\MEDIADETECT.EXE]
Special Privileges Enabled: SeLoadDriverPrivilege [PID = 4024, C:\PROGRAM FILES\LOGITECH\IMAGESTUDIO\LOGITRAY.EXE]
Special Privileges Enabled: SeLoadDriverPrivilege [PID = 4092, C:\PROGRAM FILES\NETWORK ASSOCIATES\VIRUSSCAN\SHSTAT.EXE]
Special Privileges Enabled: SeLoadDriverPrivilege [PID = 124, C:\PROGRAM FILES\NETWORK ASSOCIATES\COMMON FRAMEWORK\UPDATERUI.EXE]
Special Privileges Enabled: SeLoadDriverPrivilege [PID = 148, C:\PROGRAM FILES\COMMON FILES\NETWORK ASSOCIATES\TALKBACK\TBMON.EXE]
Special Privileges Enabled: SeLoadDriverPrivilege [PID = 572, C:\PROGRAM FILES\HP\HP SOFTWARE UPDATE\HPWUSCHD2.EXE]
Special Privileges Enabled: SeLoadDriverPrivilege [PID = 1116, C:\PROGRAM FILES\NETWAITING\NETWAITING.EXE]
Special Privileges Enabled: SeLoadDriverPrivilege [PID = 2644, C:\DOCUMENTS AND SETTINGS\ALL USERS\APPLICATION DATA\DELL\TRANSFERAGENT\TRANSFERAGENT.EXE]
Special Privileges Enabled: SeLoadDriverPrivilege [PID = 3428, C:\PROGRAM FILES\DIGITAL LINE DETECT\DLG.EXE]
Special Privileges Enabled: SeLoadDriverPrivilege [PID = 2748, C:\DOCUMENTS AND SETTINGS\IVAN ARENAS\DESKTOP\SRENGLDR.EXE]


==================================
Scheduled Tasks
[Enabled] ISP signup reminder 1.job C:\WINDOWS\system32\OOBE\oobebaln.exe [Enabled] AppleSoftwareUpdate.job C:\Program Files\Apple Software Update\SoftwareUpdate.exe

==================================
Windows Security Update Check


==================================
API HOOK
N/A

==================================
Hidden Process
N/A

[/CODE]

Attached Files


Edited by ivan_augusto, 25 October 2009 - 02:35 PM.


BC AdBot (Login to Remove)

 


#2 myrti

myrti

    Sillyberry


  • Malware Study Hall Admin
  • 33,771 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:At home
  • Local time:08:50 AM

Posted 01 November 2009 - 03:49 PM

Hello and welcome to Bleeping Computer

We apologize for the delay in responding to your request for help. Here at Bleeping Computer we get overwhelmed at times, and we are trying our best to keep up. Please note that your topic was not intentionally overlooked. Our mission is to help everyone in need, but sometimes it takes just a little longer to get to every request for help. No one is ignored here.

If you have since resolved the original problem you were having, we would appreciate you letting us know. If not please perform the following steps below so we can have a look at the current condition of your machine.

Please include a clear description of the problems you're having, along with any steps you may have performed so far.

Please refrain from running tools or applying updates other than those we suggest while we are cleaning up your computer. The reason for this is so we know what is going on with the machine at any time. Some programs can interfere with others and hamper the recovery process.

Even if you have already provided information about your PC, we need a new log to see what has changed since you originally posted your problem.
  • Please download OTL from following mirror:
  • Save it to your desktop.
  • Double click on the Posted Image icon on your desktop.
  • Click the "Scan All Users" checkbox.
  • Push the Posted Image button.
  • Two reports will open, copy and paste them in a reply here:
    • OTL.txt <-- Will be opened
    • Extra.txt <-- Will be minimized
In the upper right hand corner of the topic you will see a button called Options. If you click on this in the drop-down menu you can choose Track this topic. I suggest you do this and select Immediate E-Mail notification and click on Proceed. This way you will be advised when we respond to your topic and facilitate the cleaning of your machine.

After 5 days if a topic is not replied to we assume it has been abandoned and it is closed.

regards _temp_

is that a bird?  a plane? nooo it's the flying blueberry!

If I have been helping you and haven't replied in 2 days, feel free to shoot me a PM! Please don't send help request via PM, unless I am already helping you. Use the forums!

 

Follow BleepingComputer on: Facebook | Twitter | Google+


#3 myrti

myrti

    Sillyberry


  • Malware Study Hall Admin
  • 33,771 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:At home
  • Local time:08:50 AM

Posted 08 November 2009 - 11:18 AM

Due to lack of feedback, this topic is now Closed

If you need this topic reopened, please send me a PM.
Please include the address of this thread in your request.
This applies only to the original topic starter.

Everyone else please start a new topic.

With Regards,
_temp_

is that a bird?  a plane? nooo it's the flying blueberry!

If I have been helping you and haven't replied in 2 days, feel free to shoot me a PM! Please don't send help request via PM, unless I am already helping you. Use the forums!

 

Follow BleepingComputer on: Facebook | Twitter | Google+


#4 myrti

myrti

    Sillyberry


  • Malware Study Hall Admin
  • 33,771 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:At home
  • Local time:08:50 AM

Posted 24 November 2009 - 04:53 PM

Hi,

topic has been reopened please post your OTL logs.

regards myrti

is that a bird?  a plane? nooo it's the flying blueberry!

If I have been helping you and haven't replied in 2 days, feel free to shoot me a PM! Please don't send help request via PM, unless I am already helping you. Use the forums!

 

Follow BleepingComputer on: Facebook | Twitter | Google+


#5 myrti

myrti

    Sillyberry


  • Malware Study Hall Admin
  • 33,771 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:At home
  • Local time:08:50 AM

Posted 29 November 2009 - 03:38 PM

Due to lack of feedback, this topic is now Closed

If you need this topic reopened, please send me a PM.
Please include the address of this thread in your request.
This applies only to the original topic starter.

Everyone else please start a new topic.

With Regards,
myrti

is that a bird?  a plane? nooo it's the flying blueberry!

If I have been helping you and haven't replied in 2 days, feel free to shoot me a PM! Please don't send help request via PM, unless I am already helping you. Use the forums!

 

Follow BleepingComputer on: Facebook | Twitter | Google+


#6 myrti

myrti

    Sillyberry


  • Malware Study Hall Admin
  • 33,771 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:At home
  • Local time:08:50 AM

Posted 11 December 2009 - 12:34 PM

Topic reopened, sorry for the delay.

regards myrti

is that a bird?  a plane? nooo it's the flying blueberry!

If I have been helping you and haven't replied in 2 days, feel free to shoot me a PM! Please don't send help request via PM, unless I am already helping you. Use the forums!

 

Follow BleepingComputer on: Facebook | Twitter | Google+


#7 myrti

myrti

    Sillyberry


  • Malware Study Hall Admin
  • 33,771 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:At home
  • Local time:08:50 AM

Posted 21 December 2009 - 08:39 AM

Due to lack of feedback, this topic is now Closed definitely.

Everyone please start a new topic.

With Regards,
myrti

is that a bird?  a plane? nooo it's the flying blueberry!

If I have been helping you and haven't replied in 2 days, feel free to shoot me a PM! Please don't send help request via PM, unless I am already helping you. Use the forums!

 

Follow BleepingComputer on: Facebook | Twitter | Google+





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users