Welcome to MalwareRemoval.com,
What if we told you that you could get malware removal help from experts, and that it was 100% free? MalwareRemoval.com provides free support for people with infected computers. Our help, and the tools we use are always 100% free. No hidden catch. We simply enjoy helping others. You enjoy a clean, safe computer.

Malware Removal Instructions

computer freezes

MalwareRemoval.com provides free support for people with infected computers. Using plain language that anyone can understand, our community of volunteer experts will walk you through each step.

computer freezes

Unread postby neildush » June 30th, 2007, 9:36 am

Hi

I have a problem with my computer:

When I start up i get the following error message:

Windows cannot find 'LOGI_MWX.EXE'.Make sure you typed the name correctly, and then try again. To search for a file, click the Start button, and then click Search.

I used to have software for my Logitech click optical mouse installed but have removed it and now use a Microsoft mouse. The logi_mwx.exe is referring to my previous software. How can I stop this error message from appearing? Another problem is that occasionally my mouse stops being able to click on things, it can move around but cannot click/select anything and I need to reboot my computer. I guess you could say my computer 'freezes'

Here is my hijackthislog - i am not getting any pop ups however.

thank you

neildush


Logfile of HijackThis v1.99.1
Scan saved at 14:31:53, on 30/06/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16473)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\PROGRA~1\Grisoft\AVG7\avgamsvr.exe
C:\PROGRA~1\Grisoft\AVG7\avgupsvc.exe
C:\Program Files\Microsoft LifeCam\MSCamSvc.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\System32\HPZipm12.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\ZoneLabs\vsmon.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe
C:\Program Files\QuickTime\qttask.exe
C:\PROGRA~1\Grisoft\AVG7\avgcc.exe
C:\Program Files\BillP Studios\WinPatrol\winpatrol.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Microsoft IntelliPoint\ipoint.exe
C:\WINDOWS\system32\RUNDLL32.EXE
C:\Program Files\Adobe\Acrobat 8.0\Acrobat\Acrotray.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
C:\WINDOWS\soundman.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Common Files\Teleca Shared\Generic.exe
C:\Program Files\Sony Ericsson\Mobile2\Mobile Phone Monitor\epmworker.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
C:\Program Files\HijackThis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.co.uk/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common

Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MICROS~4\Office12\GRA8E1~1.DLL
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll
O2 - BHO: del.icio.us Toolbar Helper - {7AA07AE6-01EF-44EC-93CA-9D7CD41CCDB6} - C:\Program Files\del.icio.us\Internet Explorer

Buttons\dlcsIE.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll
O2 - BHO: Adobe PDF Conversion Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files\Adobe\Acrobat

8.0\Acrobat\AcroIEFavClient.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll
O3 - Toolbar: del.icio.us - {981FE6A8-260C-4930-960F-C3BC82746CB0} - C:\Program Files\del.icio.us\Internet Explorer Buttons\dlcsIE.dll
O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [ZoneAlarm Client] "C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe"
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [Sony Ericsson PC Suite] "C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe"

/startoptions
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [AVG7_CC] C:\PROGRA~1\Grisoft\AVG7\avgcc.exe /STARTUP
O4 - HKLM\..\Run: [WinPatrol] C:\Program Files\BillP Studios\WinPatrol\winpatrol.exe
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [IntelliPoint] "C:\Program Files\Microsoft IntelliPoint\ipoint.exe"
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [Acrobat Assistant 8.0] "C:\Program Files\Adobe\Acrobat 8.0\Acrobat\Acrotray.exe"
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKLM\..\Run: [Adobe_ID0EYTHM] C:\PROGRA~1\COMMON~1\Adobe\ADOBEV~1\Server\bin\VERSIO~2.EXE
O4 - Startup: Adobe Acrobat Speed Launcher.lnk = ?
O4 - Startup: Adobe Acrobat Synchronizer.lnk = C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AdobeCollabSync.exe
O4 - Startup: Adobe Gamma.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: Adobe Acrobat Speed Launcher.lnk = ?
O4 - Global Startup: Adobe Acrobat Synchronizer.lnk = C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AdobeCollabSync.exe
O4 - Global Startup: Adobe Gamma.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O8 - Extra context menu item: Append to existing PDF - res://C:\Program Files\Adobe\Acrobat

8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: Convert link target to Adobe PDF - res://C:\Program Files\Adobe\Acrobat

8.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: Convert link target to existing PDF - res://C:\Program Files\Adobe\Acrobat

8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: Convert selected links to Adobe PDF - res://C:\Program Files\Adobe\Acrobat

8.0\Acrobat\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
O8 - Extra context menu item: Convert selected links to existing PDF - res://C:\Program Files\Adobe\Acrobat

8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
O8 - Extra context menu item: Convert selection to Adobe PDF - res://C:\Program Files\Adobe\Acrobat

8.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: Convert selection to existing PDF - res://C:\Program Files\Adobe\Acrobat

8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: Convert to Adobe PDF - res://C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~4\Office12\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll
O10 - Broken Internet access because of LSP provider 'c:\program files\bonjour\mdnsnsp.dll' missing
O11 - Options group: [INTERNATIONAL] International*
O16 - DPF: {0E5F0222-96B9-11D3-8997-00104BD12D94} (PCPitstop Utility) - http://www.pcpitstop.com/pcpitstop/PCPitStop.CAB
O16 - DPF: {0EB0E74A-2A76-4AB3-A7FB-9BD8C29F7F75} (CKAVWebScan Object) - http://www.kaspersky.com/kos/english/ka ... nicode.cab
O16 - DPF: {5F8469B4-B055-49DD-83F7-62B522420ECC} (Facebook Photo Uploader Control) -

http://upload.facebook.com/controls/Fac ... loader.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) -

http://update.microsoft.com/microsoftup ... 6156297066
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) -

http://update.microsoft.com/microsoftup ... 6156286962
O17 - HKLM\System\CCS\Services\Tcpip\..\{47B3AD68-B70F-4A49-8CCC-129451DDDB52}: NameServer = 192.168.2.1
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\PROGRA~1\MICROS~4\Office12\GR99D3~1.DLL
O18 - Protocol: ms-help - {314111C7-A502-11D2-BBCA-00C04F8EC294} - C:\Program Files\Common Files\Microsoft Shared\Help\hxds.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Filter hijack: text/xml - {807563E5-5146-11D5-A672-00B0D022E945} - C:\PROGRA~1\COMMON~1\MICROS~1\OFFICE12\MSOXMLMF.DLL
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O20 - Winlogon Notify: windtv32 - windtv32.dll (file missing)
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
O23 - Service: a-squared Anti-Malware Service (a2AntiMalware) - Unknown owner - C:\PROGRAM FILES\A-SQUARED ANTI-MALWARE\a2service.exe (file

missing)
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: Adobe Version Cue CS3 - Unknown owner - C:\Program Files\Common Files\Adobe\Adobe Version Cue

CS3\Server\bin\VersionCueCS3.exe" -win32service (file missing)
O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgamsvr.exe
O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgupsvc.exe
O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet

Publisher\FNPLicensingService.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common

Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: InstallShield Licensing Service - Macrovision - C:\Program Files\Common

Files\InstallShield Shared\Service\InstallShield Licensing Service.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\System32\HPZipm12.exe
O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - C:\WINDOWS\system32\ZoneLabs\vsmon.exe
neildush
Regular Member
 
Posts: 34
Joined: April 9th, 2007, 7:46 pm
Location: London
Advertisement
Register to Remove

Unread postby random/random » June 30th, 2007, 12:04 pm

  • You have word wrap turned on, this is making your logs difficult to read
  • Run notepad
  • Goto Format and untick Word Wrap


Then post a new HijackThis log
User avatar
random/random
Developer
Developer
 
Posts: 7731
Joined: December 18th, 2005, 3:30 pm

hjt log

Unread postby neildush » June 30th, 2007, 2:41 pm

Logfile of HijackThis v1.99.1
Scan saved at 14:31:53, on 30/06/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16473)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\PROGRA~1\Grisoft\AVG7\avgamsvr.exe
C:\PROGRA~1\Grisoft\AVG7\avgupsvc.exe
C:\Program Files\Microsoft LifeCam\MSCamSvc.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\System32\HPZipm12.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\ZoneLabs\vsmon.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe
C:\Program Files\QuickTime\qttask.exe
C:\PROGRA~1\Grisoft\AVG7\avgcc.exe
C:\Program Files\BillP Studios\WinPatrol\winpatrol.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Microsoft IntelliPoint\ipoint.exe
C:\WINDOWS\system32\RUNDLL32.EXE
C:\Program Files\Adobe\Acrobat 8.0\Acrobat\Acrotray.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
C:\WINDOWS\soundman.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Common Files\Teleca Shared\Generic.exe
C:\Program Files\Sony Ericsson\Mobile2\Mobile Phone Monitor\epmworker.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
C:\Program Files\HijackThis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.co.uk/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MICROS~4\Office12\GRA8E1~1.DLL
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll
O2 - BHO: del.icio.us Toolbar Helper - {7AA07AE6-01EF-44EC-93CA-9D7CD41CCDB6} - C:\Program Files\del.icio.us\Internet Explorer Buttons\dlcsIE.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll
O2 - BHO: Adobe PDF Conversion Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll
O3 - Toolbar: del.icio.us - {981FE6A8-260C-4930-960F-C3BC82746CB0} - C:\Program Files\del.icio.us\Internet Explorer Buttons\dlcsIE.dll
O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [ZoneAlarm Client] "C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe"
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [Sony Ericsson PC Suite] "C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe" /startoptions
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [AVG7_CC] C:\PROGRA~1\Grisoft\AVG7\avgcc.exe /STARTUP
O4 - HKLM\..\Run: [WinPatrol] C:\Program Files\BillP Studios\WinPatrol\winpatrol.exe
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [IntelliPoint] "C:\Program Files\Microsoft IntelliPoint\ipoint.exe"
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [Acrobat Assistant 8.0] "C:\Program Files\Adobe\Acrobat 8.0\Acrobat\Acrotray.exe"
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKLM\..\Run: [Adobe_ID0EYTHM] C:\PROGRA~1\COMMON~1\Adobe\ADOBEV~1\Server\bin\VERSIO~2.EXE
O4 - Startup: Adobe Acrobat Speed Launcher.lnk = ?
O4 - Startup: Adobe Acrobat Synchronizer.lnk = C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AdobeCollabSync.exe
O4 - Startup: Adobe Gamma.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: Adobe Acrobat Speed Launcher.lnk = ?
O4 - Global Startup: Adobe Acrobat Synchronizer.lnk = C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AdobeCollabSync.exe
O4 - Global Startup: Adobe Gamma.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O8 - Extra context menu item: Append to existing PDF - res://C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: Convert link target to Adobe PDF - res://C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: Convert link target to existing PDF - res://C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: Convert selected links to Adobe PDF - res://C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
O8 - Extra context menu item: Convert selected links to existing PDF - res://C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
O8 - Extra context menu item: Convert selection to Adobe PDF - res://C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: Convert selection to existing PDF - res://C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: Convert to Adobe PDF - res://C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~4\Office12\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll
O10 - Broken Internet access because of LSP provider 'c:\program files\bonjour\mdnsnsp.dll' missing
O11 - Options group: [INTERNATIONAL] International*
O16 - DPF: {0E5F0222-96B9-11D3-8997-00104BD12D94} (PCPitstop Utility) - http://www.pcpitstop.com/pcpitstop/PCPitStop.CAB
O16 - DPF: {0EB0E74A-2A76-4AB3-A7FB-9BD8C29F7F75} (CKAVWebScan Object) - http://www.kaspersky.com/kos/english/ka ... nicode.cab
O16 - DPF: {5F8469B4-B055-49DD-83F7-62B522420ECC} (Facebook Photo Uploader Control) - http://upload.facebook.com/controls/Fac ... loader.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/microsoftup ... 6156297066
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftup ... 6156286962
O17 - HKLM\System\CCS\Services\Tcpip\..\{47B3AD68-B70F-4A49-8CCC-129451DDDB52}: NameServer = 192.168.2.1
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\PROGRA~1\MICROS~4\Office12\GR99D3~1.DLL
O18 - Protocol: ms-help - {314111C7-A502-11D2-BBCA-00C04F8EC294} - C:\Program Files\Common Files\Microsoft Shared\Help\hxds.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Filter hijack: text/xml - {807563E5-5146-11D5-A672-00B0D022E945} - C:\PROGRA~1\COMMON~1\MICROS~1\OFFICE12\MSOXMLMF.DLL
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O20 - Winlogon Notify: windtv32 - windtv32.dll (file missing)
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
O23 - Service: a-squared Anti-Malware Service (a2AntiMalware) - Unknown owner - C:\PROGRAM FILES\A-SQUARED ANTI-MALWARE\a2service.exe (file missing)
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: Adobe Version Cue CS3 - Unknown owner - C:\Program Files\Common Files\Adobe\Adobe Version Cue CS3\Server\bin\VersionCueCS3.exe" -win32service (file missing)
O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgamsvr.exe
O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgupsvc.exe
O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: InstallShield Licensing Service - Macrovision - C:\Program Files\Common Files\InstallShield Shared\Service\InstallShield Licensing Service.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\System32\HPZipm12.exe
O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - C:\WINDOWS\system32\ZoneLabs\vsmon.exe
neildush
Regular Member
 
Posts: 34
Joined: April 9th, 2007, 7:46 pm
Location: London

Unread postby random/random » June 30th, 2007, 4:51 pm

Run HijackThis
Click on do a system scan only
Place a checkmark next to these lines(if still present)

O20 - Winlogon Notify: windtv32 - windtv32.dll (file missing)

Then close all windows except HijackThis and click Fix Checked

Download Regsearch by Bobbi Flekman.
  • Create a folder in your C: drive C:\Regsearch, and extract all the files from the zip archive into that folder.
  • Double click regsearch.exe to launch the programme.
  • Copy/Paste the following into the Search Box LOGI_MWX.EXE
  • Click OK.


Regsearch will now search your Registry for the required strings, when it is finished it will open a Notepad file RegSearch.txt, saved to the Regsearch folder.

Copy/Paste that file into your next post, along with a new HijackThis log.
User avatar
random/random
Developer
Developer
 
Posts: 7731
Joined: December 18th, 2005, 3:30 pm

reply and logs

Unread postby neildush » July 1st, 2007, 7:16 am

here is my hjt log:

Logfile of HijackThis v1.99.1
Scan saved at 12:13:40, on 01/07/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16473)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\PROGRA~1\Grisoft\AVG7\avgamsvr.exe
C:\PROGRA~1\Grisoft\AVG7\avgupsvc.exe
C:\Program Files\Microsoft LifeCam\MSCamSvc.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\System32\HPZipm12.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\ZoneLabs\vsmon.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe
C:\Program Files\QuickTime\qttask.exe
C:\PROGRA~1\Grisoft\AVG7\avgcc.exe
C:\Program Files\BillP Studios\WinPatrol\winpatrol.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Microsoft IntelliPoint\ipoint.exe
C:\Program Files\Adobe\Acrobat 8.0\Acrobat\Acrotray.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
C:\WINDOWS\soundman.exe
C:\Program Files\Common Files\Teleca Shared\Generic.exe
C:\Program Files\Sony Ericsson\Mobile2\Mobile Phone Monitor\epmworker.exe
C:\Program Files\HijackThis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.co.uk/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MICROS~4\Office12\GRA8E1~1.DLL
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll
O2 - BHO: del.icio.us Toolbar Helper - {7AA07AE6-01EF-44EC-93CA-9D7CD41CCDB6} - C:\Program Files\del.icio.us\Internet Explorer Buttons\dlcsIE.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll
O2 - BHO: Adobe PDF Conversion Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll
O3 - Toolbar: del.icio.us - {981FE6A8-260C-4930-960F-C3BC82746CB0} - C:\Program Files\del.icio.us\Internet Explorer Buttons\dlcsIE.dll
O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [ZoneAlarm Client] "C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe"
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [Sony Ericsson PC Suite] "C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe" /startoptions
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [AVG7_CC] C:\PROGRA~1\Grisoft\AVG7\avgcc.exe /STARTUP
O4 - HKLM\..\Run: [WinPatrol] C:\Program Files\BillP Studios\WinPatrol\winpatrol.exe
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [IntelliPoint] "C:\Program Files\Microsoft IntelliPoint\ipoint.exe"
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [Acrobat Assistant 8.0] "C:\Program Files\Adobe\Acrobat 8.0\Acrobat\Acrotray.exe"
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O8 - Extra context menu item: Append to existing PDF - res://C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: Convert link target to Adobe PDF - res://C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: Convert link target to existing PDF - res://C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: Convert selected links to Adobe PDF - res://C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
O8 - Extra context menu item: Convert selected links to existing PDF - res://C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
O8 - Extra context menu item: Convert selection to Adobe PDF - res://C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: Convert selection to existing PDF - res://C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: Convert to Adobe PDF - res://C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~4\Office12\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll
O10 - Broken Internet access because of LSP provider 'c:\program files\bonjour\mdnsnsp.dll' missing
O11 - Options group: [INTERNATIONAL] International*
O16 - DPF: {0E5F0222-96B9-11D3-8997-00104BD12D94} (PCPitstop Utility) - http://www.pcpitstop.com/pcpitstop/PCPitStop.CAB
O16 - DPF: {0EB0E74A-2A76-4AB3-A7FB-9BD8C29F7F75} (CKAVWebScan Object) - http://www.kaspersky.com/kos/english/ka ... nicode.cab
O16 - DPF: {5F8469B4-B055-49DD-83F7-62B522420ECC} (Facebook Photo Uploader Control) - http://upload.facebook.com/controls/Fac ... loader.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/microsoftup ... 6156297066
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftup ... 6156286962
O17 - HKLM\System\CCS\Services\Tcpip\..\{47B3AD68-B70F-4A49-8CCC-129451DDDB52}: NameServer = 192.168.2.1
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\PROGRA~1\MICROS~4\Office12\GR99D3~1.DLL
O18 - Protocol: ms-help - {314111C7-A502-11D2-BBCA-00C04F8EC294} - C:\Program Files\Common Files\Microsoft Shared\Help\hxds.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Filter hijack: text/xml - {807563E5-5146-11D5-A672-00B0D022E945} - C:\PROGRA~1\COMMON~1\MICROS~1\OFFICE12\MSOXMLMF.DLL
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
O23 - Service: a-squared Anti-Malware Service (a2AntiMalware) - Unknown owner - C:\PROGRAM FILES\A-SQUARED ANTI-MALWARE\a2service.exe (file missing)
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: Adobe Version Cue CS3 - Unknown owner - C:\Program Files\Common Files\Adobe\Adobe Version Cue CS3\Server\bin\VersionCueCS3.exe" -win32service (file missing)
O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgamsvr.exe
O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgupsvc.exe
O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: InstallShield Licensing Service - Macrovision - C:\Program Files\Common Files\InstallShield Shared\Service\InstallShield Licensing Service.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Macromedia Licensing Service - Unknown owner - C:\Program Files\Common Files\Macromedia Shared\Service\Macromedia Licensing.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\System32\HPZipm12.exe
O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - C:\WINDOWS\system32\ZoneLabs\vsmon.exe

here is my research log:

Windows Registry Editor Version 5.00

; Registry Search 2.0 by Bobbi Flekman © 2005
; Version: 2.0.5.0

; Results at 01/07/2007 11:44:58 for strings:
; 'logi_mwx.exe'
; Strings excluded from search:
; (None)
; Search in:
; Registry Keys Registry Values Registry Data
; HKEY_LOCAL_MACHINE HKEY_USERS


[HKEY_LOCAL_MACHINE\SOFTWARE\BillP Studios\WinPatrol\Delay]
"LOGI_MWX.EXE"="1"

[HKEY_LOCAL_MACHINE\SOFTWARE\BillP Studios\WinPatrol\Delay\Shortcuts]
"LOGI_MWX.EXE"=""

[HKEY_LOCAL_MACHINE\SOFTWARE\BillP Studios\WinPatrol\Delay\Time]
"LOGI_MWX.EXE"="30"

[HKEY_LOCAL_MACHINE\SOFTWARE\BillP Studios\WinPatrol\Delay\Title]
"LOGI_MWX.EXE"="Logitech Utility"

[HKEY_CURRENT_USER\Software\BillP Studios\Detected\ActiveTasks]
"C:\\WINDOWS\\LOGI_MWX.EXE"="05/26/2007 16:30"

[HKEY_CURRENT_USER\Software\BillP Studios\Detected\Startup]
"Logi_MwX.Exe"="04/16/2007 22:18"

[HKEY_CURRENT_USER\Software\BillP Studios\WinPatrol\Run]
"Logi_MwX.Exe"="1"

; End Of The Log...

problems:

after the regsearch my computer frooze and had to be restarted.

ta for your help. much appreciated!

neil
neildush
Regular Member
 
Posts: 34
Joined: April 9th, 2007, 7:46 pm
Location: London

by the way...

Unread postby neildush » July 1st, 2007, 7:18 am

my computer takes a very log time to start up from when i switch it on. sometimes around 10 mins which i assume is not good.

N
neildush
Regular Member
 
Posts: 34
Joined: April 9th, 2007, 7:46 pm
Location: London

Unread postby random/random » July 1st, 2007, 7:19 am

Open winpatrol
Go to the Delayed Start tab
Find the entry containing LOGI_MWX.EXE, and select it
Then right click on it and click remove
Let me know if this solves the problem
User avatar
random/random
Developer
Developer
 
Posts: 7731
Joined: December 18th, 2005, 3:30 pm

Unread postby neildush » July 1st, 2007, 8:56 am

hi

that msg has now gone thank you.

my computer still 'freezes' though and I can't click on any windows and my task manager doesn't allow me to 'end tasks or programs' so i have to switch computer off and on again.

also please could you take a look at the start up programs i have running, are there any i can remove?

WinPatrol Report Log
Report created by WinPatrol PLUS version 11.3.2007:11.3.2007 at 1:45:48 PM, on 7/01/2007


Platform: Windows XP Home Edition Service Pack 2 (Build 2600)
Browser: Firefox - Firefox version 2.0.0.4
Memory currently in use: 44%

MSIE: Internet Explorer (7.00.6000.16473)
IE Cookie Path: C:\Documents and Settings\Neil D\Cookies\
Firefox 2.0.0.4 installed in C:\Program Files\Mozilla Firefox

HKLM Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
HKCU Start Page = http://www.google.co.uk/
HKLM Start Page = http://go.microsoft.com/fwlink/?LinkId=69157

WinLogon DefaultUserName=Neil D
WinLogon DefaultDomainName=NEIL
WinLogon Shell=Explorer.exe
WinLogon UserInit=C:\WINDOWS\system32\userinit.exe,


Startup Programs
Active Tasks
Scheduled Tasks
IE Helpers
File Types
Services
• Startup Programs •
• NvCplDaemon
NvCpl.dll,NvStartup NVIDIA Display Properties Extension
Version: 6.14.10.9371 (C) NVIDIA Corporation. All rights reserved.
Location: HKLM\Software\Microsoft\Windows\CurrentVersion\Run
Path: C:\WINDOWS\system32\NvCpl.dll,NvStartup
First Detected by WinPatrol: 04/16/2007 22:18


• ZoneAlarm Client
zlclient.exe ZoneAlarm Client
Version: 7.0.337.000 Copyright © 1998-2006, Zone Labs, LLC
Location: HKLM\Software\Microsoft\Windows\CurrentVersion\Run
Path: C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
First Detected by WinPatrol: 04/16/2007 22:18


• NeroFilterCheck
NeroCheck.exe NeroCheck
Version: 1, 0, 0, 2 Copyright © 2001
Location: HKLM\Software\Microsoft\Windows\CurrentVersion\Run
Path: C:\WINDOWS\system32\NeroCheck.exe
First Detected by WinPatrol: 04/16/2007 22:18


• GrooveMonitor
GrooveMonitor.exe GrooveMonitor Utility
Version: 4.2.0.2623 © 2006 Microsoft Corporation. All rights reserved.
Location: HKLM\Software\Microsoft\Windows\CurrentVersion\Run
Path: C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
First Detected by WinPatrol: 04/30/2007 23:10


• Sony Ericsson PC Suite
Application Launcher.exe /startoptions Application Launcher
Version: 2.0.10.129 Copyright (c) 2005 Popwire AB. All rights reserved.
Location: HKLM\Software\Microsoft\Windows\CurrentVersion\Run
Path: C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe /startoptions
First Detected by WinPatrol: 05/26/2007 11:59


• QuickTime Task
qttask.exe -atboottime QuickTime Task
Version: QuickTime 7.1.6 Copyright Apple Inc. 1989-2007
Location: HKLM\Software\Microsoft\Windows\CurrentVersion\Run
Path: C:\PROGRAM FILES\QUICKTIME\qttask.exe -atboottime
First Detected by WinPatrol: 04/16/2007 22:18


• AVG7_CC
avgcc.exe /STARTUP AVG Control Center
Version: 7.5.0.460 Copyright © 2007 GRISOFT, s.r.o.
Location: HKLM\Software\Microsoft\Windows\CurrentVersion\Run
Path: C:\PROGRA~1\Grisoft\AVG7\avgcc.exe /STARTUP
First Detected by WinPatrol: 04/16/2007 22:18


• WinPatrol PLUS
winpatrol.exe WinPatrol System Monitor
Version: 11.3.2007 Copyright © 1997- 2007 BillP Studios
Location: HKLM\Software\Microsoft\Windows\CurrentVersion\Run
Path: C:\Program Files\BillP Studios\WinPatrol\winpatrol.exe
First Detected by WinPatrol: 04/16/2007 22:18


• iTunesHelper
ITUNESHELPER.EXE iTunesHelper Module
Version: 7.2.0.34 © 2003-2007 Apple Inc. All Rights Reserved.
Location: HKLM\Software\Microsoft\Windows\CurrentVersion\Run
Path: C:\PROGRAM FILES\iTunes\ITUNESHELPER.EXE
First Detected by WinPatrol: 04/16/2007 22:18


• IntelliPoint
ipoint.exe IPoint.exe
Version: 6.1 © Microsoft Corporation 1983-2006.
Location: HKLM\Software\Microsoft\Windows\CurrentVersion\Run
Path: C:\Program Files\Microsoft IntelliPoint\ipoint.exe
First Detected by WinPatrol: 06/17/2007 20:39


• nwiz
nwiz.exe /install
Location: HKLM\Software\Microsoft\Windows\CurrentVersion\Run
Path: nwiz.exe /install
First Detected by WinPatrol: 04/16/2007 22:18


• NvMediaCenter
NvMcTray.dll,NvTaskbarInit NVIDIA Media Center Library
Version: 6.14.10.9371 (C) NVIDIA Corporation. All rights reserved.
Location: HKLM\Software\Microsoft\Windows\CurrentVersion\Run
Path: C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
First Detected by WinPatrol: 04/16/2007 22:18


• Acrobat Assistant 8.0
acrotray.exe AcroTray
Version: 8.0,0.2006102200 Copyright 1984-2006 Adobe Systems Incorporated and its licensors. All rights reserved.
Location: HKLM\Software\Microsoft\Windows\CurrentVersion\Run
Path: C:\Program Files\Adobe\Acrobat 8.0\Acrobat\acrotray.exe
First Detected by WinPatrol: 06/24/2007 14:17


• !AVG Anti-Spyware
avgas.exe /minimized AVG Anti-Spyware
Version: 7, 5, 1, 43 Copyright © 2007 GRISOFT s.r.o.
Location: HKLM\Software\Microsoft\Windows\CurrentVersion\Run
Path: C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe /minimized
First Detected by WinPatrol: 04/16/2007 22:18


• LifeCam
LifeExp.exe LifeExp.exe
Version: 1.0 © Microsoft Corporation 2005.
Location: HKLM\Software\Microsoft\Windows\CurrentVersion\Run
Path: C:\PROGRAM FILES\MICROSOFT LIFECAM\LifeExp.exe
First Detected by WinPatrol: 04/16/2007 22:18


• SoundMan
SOUNDMAN.EXE Avance Sound Manager
Version: 5.0.10 Copyright (c) 2001-2002 Avance Logic, Inc.
Location: HKLM\Software\Microsoft\Windows\CurrentVersion\Run
Path: SOUNDMAN.EXE
First Detected by WinPatrol: 04/16/2007 22:18


• Microsoft Office StartUp
OSA.EXE Microsoft Office XP component
Version: 10.0.2609 Copyright© Microsoft Corporation 1994-2001. All rights reserved.
Location: Windows Startup Group
Path: C:\Program Files\Microsoft Office\Office10\OSA.EXE
First Detected by WinPatrol: 04/16/2007 22:18


• Microsoft Office StartUp
OSA.EXE Microsoft Office XP component
Version: 10.0.2609 Copyright© Microsoft Corporation 1994-2001. All rights reserved.
Location: Windows Startup Group
Path: C:\Program Files\Microsoft Office\Office10\OSA.EXE
First Detected by WinPatrol: 04/16/2007 22:18


• MSMSGS
MSMSGS.EXE /background
Location: * Disabled * HKCU\Software\Microsoft\Windows\CurrentVersion\Run
Path: C:\PROGRAM FILES\MESSENGER\MSMSGS.EXE /background
First Detected by WinPatrol: 04/16/2007 22:18


• Adobe_ID0EYTHM
VersionCueCS3Tray.exe Adobe Version Cue CS3
Version: 3, 0, 0, 0 Copyright © 2005 by Adobe Systems Inc.
Location: * Disabled * HKLM\Software\Microsoft\Windows\CurrentVersion\Run
Path: C:\Program Files\Common Files\Adobe\Adobe Version Cue CS3\Server\bin\VersionCueCS3Tray.exe
First Detected by WinPatrol: 06/24/2007 14:18


• ctfmon.exe
ctfmon.exe CTF Loader
Version: 5.1.2600.2180 © Microsoft Corporation. All rights reserved.
Location: * Disabled * HKCU\Software\Microsoft\Windows\CurrentVersion\Run
Path: C:\WINDOWS\system32\ctfmon.exe
First Detected by WinPatrol: 04/16/2007 22:18


• Adobe Collaboration Synchronizer 8.0
AdobeCollabSync.exe Adobe Collaboration Synchronizer 8.0
Version: 8.0.0.0 Copyright 2006 Adobe Systems Incorporated
Location: * Disabled * Windows Startup Group
Path: C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AdobeCollabSync.exe
First Detected by WinPatrol: 06/24/2007 14:20


• Winlogon Userinit
userinit.exe Userinit Logon Application
Version: 5.1.2600.2180 © Microsoft Corporation. All rights reserved.
Location: HKLM\Software\Microsoft\Windows NT\CurrentVersion\Winlogon Userinit
Path: C:\WINDOWS\system32\userinit.exe
First Detected by WinPatrol: 04/16/2007 22:18


• Winlogon Shell
Explorer.exe Windows Explorer
Version: 6.00.2900.2180 © Microsoft Corporation. All rights reserved.
Location: HKLM\Software\Microsoft\Windows NT\CurrentVersion\Winlogon Shell
Path: Explorer.exe
First Detected by WinPatrol: 04/16/2007 22:18


• PostBootReminder
shell32.dll Windows Shell Common Dll
Version: 6.00.2900.3051 © Microsoft Corporation. All rights reserved.
Location: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad
Path: C:\WINDOWS\system32\shell32.dll
First Detected by WinPatrol: 05/30/2007 23:21
6.00.2900.3051


• CDBurn
shell32.dll Windows Shell Common Dll
Version: 6.00.2900.3051 © Microsoft Corporation. All rights reserved.
Location: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad
Path: C:\WINDOWS\system32\shell32.dll
First Detected by WinPatrol: 05/30/2007 23:21
6.00.2900.3051


• WebCheck
webcheck.dll Web Site Monitor
Version: 7.00.6000.16473 © Microsoft Corporation. All rights reserved.
Location: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad
Path: C:\WINDOWS\system32\webcheck.dll
First Detected by WinPatrol: 05/30/2007 23:21
7.00.6000.16473


• SysTray
stobject.dll Systray shell service object
Version: 5.1.2600.2180 © Microsoft Corporation. All rights reserved.
Location: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad
Path: C:\WINDOWS\system32\stobject.dll
First Detected by WinPatrol: 05/30/2007 23:21
5.1.2600.2180


• WPDShServiceObj
WPDShServiceObj.dll Windows Portable Device Shell Service Object
Version: 5.2.5721.5145 © Microsoft Corporation. All rights reserved.
Location: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad
Path: C:\WINDOWS\system32\WPDShServiceObj.dll
First Detected by WinPatrol: 05/30/2007 23:21
5.2.5721.5145


• Browseui preloader
browseui.dll Shell Browser UI Library
Version: 6.00.2900.3059 © Microsoft Corporation. All rights reserved.
Location: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SharedTaskScheduler
Path: C:\WINDOWS\system32\browseui.dll
First Detected by WinPatrol: 05/30/2007 23:21
6.00.2900.3059


• Component Categories cache daemon
browseui.dll Shell Browser UI Library
Version: 6.00.2900.3059 © Microsoft Corporation. All rights reserved.
Location: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SharedTaskScheduler
Path: C:\WINDOWS\system32\browseui.dll
First Detected by WinPatrol: 05/30/2007 23:21
6.00.2900.3059


• Component Categories cache daemon
shell32.dll Windows Shell Common Dll
Version: 6.00.2900.3051 © Microsoft Corporation. All rights reserved.
Location: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks
Path: shell32.dll
6.00.2900.3051


• AVG Anti-Spyware 7.5
shellexecutehook.dll AVG Anti-Spyware shellexecutehook
Version: 7, 5, 1, 36 Copyright © 2007 GRISOFT s.r.o.
Location: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks
Path: C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\shellexecutehook.dll
First Detected by WinPatrol: 05/30/2007 23:21
7, 5, 1, 36


• Groove GFS Stub Execution Hook
GrooveShellExtensions.dll GrooveShellExtensions Module
Version: 4.2.0.2623 © 2006 Microsoft Corporation. All rights reserved.
Location: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks
Path: C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
First Detected by WinPatrol: 05/30/2007 23:21
4.2.0.2623


• crypt32chain
crypt32.dll Crypto API32
Version: 5.131.2600.2180 © Microsoft Corporation. All rights reserved.
Location: HKLM\Software\Microsoft\Windows NT\CurrentVersion\Winlogon Notify
Path: crypt32.dll
First Detected by WinPatrol: 05/30/2007 23:21
5.131.2600.2180


• cryptnet
cryptnet.dll Crypto Network Related API
Version: 5.131.2600.2180 © Microsoft Corporation. All rights reserved.
Location: HKLM\Software\Microsoft\Windows NT\CurrentVersion\Winlogon Notify
Path: cryptnet.dll
First Detected by WinPatrol: 05/30/2007 23:21
5.131.2600.2180


• cscdll
cscdll.dll Offline Network Agent
Version: 5.1.2600.2180 © Microsoft Corporation. All rights reserved.
Location: HKLM\Software\Microsoft\Windows NT\CurrentVersion\Winlogon Notify
Path: cscdll.dll
First Detected by WinPatrol: 05/30/2007 23:21
5.1.2600.2180


• ScCertProp
wlnotify.dll Common DLL to receive Winlogon notifications
Version: 5.1.2600.2180 © Microsoft Corporation. All rights reserved.
Location: HKLM\Software\Microsoft\Windows NT\CurrentVersion\Winlogon Notify
Path: wlnotify.dll
First Detected by WinPatrol: 05/30/2007 23:21
5.1.2600.2180


• Schedule
wlnotify.dll Common DLL to receive Winlogon notifications
Version: 5.1.2600.2180 © Microsoft Corporation. All rights reserved.
Location: HKLM\Software\Microsoft\Windows NT\CurrentVersion\Winlogon Notify
Path: wlnotify.dll
First Detected by WinPatrol: 05/30/2007 23:21
5.1.2600.2180


• sclgntfy
sclgntfy.dll Secondary Logon Service Notification DLL
Version: 5.1.2600.2180 © Microsoft Corporation. All rights reserved.
Location: HKLM\Software\Microsoft\Windows NT\CurrentVersion\Winlogon Notify
Path: sclgntfy.dll
First Detected by WinPatrol: 05/30/2007 23:21
5.1.2600.2180


• SensLogn
WlNotify.dll Common DLL to receive Winlogon notifications
Version: 5.1.2600.2180 © Microsoft Corporation. All rights reserved.
Location: HKLM\Software\Microsoft\Windows NT\CurrentVersion\Winlogon Notify
Path: WlNotify.dll
First Detected by WinPatrol: 05/30/2007 23:21
5.1.2600.2180


• termsrv
wlnotify.dll Common DLL to receive Winlogon notifications
Version: 5.1.2600.2180 © Microsoft Corporation. All rights reserved.
Location: HKLM\Software\Microsoft\Windows NT\CurrentVersion\Winlogon Notify
Path: wlnotify.dll
First Detected by WinPatrol: 05/30/2007 23:21
5.1.2600.2180


• WgaLogon
WgaLogon.dll Windows Genuine Advantage Notification
Version: 1.7.0018.5 © 1995-2007 Microsoft Corporation
Location: HKLM\Software\Microsoft\Windows NT\CurrentVersion\Winlogon Notify
Path: WgaLogon.dll
First Detected by WinPatrol: 05/30/2007 23:21
1.7.0018.5


• wlballoon
wlnotify.dll Common DLL to receive Winlogon notifications
Version: 5.1.2600.2180 © Microsoft Corporation. All rights reserved.
Location: HKLM\Software\Microsoft\Windows NT\CurrentVersion\Winlogon Notify
Path: wlnotify.dll
First Detected by WinPatrol: 05/30/2007 23:21
5.1.2600.2180


• Delayed Start •
• Active Tasks •
• Windows NT Session Manager
smss.exe Windows NT Session Manager
Version: 5.1.2600.2180 © Microsoft Corporation. All rights reserved.
Path: C:\WINDOWS\system32\smss.exe
First Detected by WinPatrol: 04/16/2007 22:18


• Windows NT Logon Application
winlogon.exe Windows NT Logon Application
Version: 5.1.2600.2180 © Microsoft Corporation. All rights reserved.
Path: C:\WINDOWS\system32\winlogon.exe
First Detected by WinPatrol: 04/16/2007 22:18


• Services and Controller app
services.exe Services and Controller app
Version: 5.1.2600.2180 © Microsoft Corporation. All rights reserved.
Path: C:\WINDOWS\system32\services.exe
First Detected by WinPatrol: 04/16/2007 22:18


• LSA Shell (Export Version)
lsass.exe LSA Shell (Export Version)
Version: 5.1.2600.2180 © Microsoft Corporation. All rights reserved.
Path: C:\WINDOWS\system32\lsass.exe
First Detected by WinPatrol: 04/16/2007 22:18


• Generic Host Process for Win32 Services
svchost.exe Generic Host Process for Win32 Services
Version: 5.1.2600.2180 © Microsoft Corporation. All rights reserved.
Path: C:\WINDOWS\system32\svchost.exe
First Detected by WinPatrol: 04/16/2007 22:18


• Spooler SubSystem App
spoolsv.exe Spooler SubSystem App
Version: 5.1.2600.2696 © Microsoft Corporation. All rights reserved.
Path: C:\WINDOWS\system32\spoolsv.exe
First Detected by WinPatrol: 04/16/2007 22:18


• AVG Anti-Spyware guard
guard.exe AVG Anti-Spyware guard
Version: 7, 5, 1, 22 Copyright © 2007 GRISOFT s.r.o.
Path: C:\PROGRAM FILES\Grisoft\AVG ANTI-SPYWARE 7.5\guard.exe
First Detected by WinPatrol: 04/16/2007 22:18


• AVG Alert Manager
avgamsvr.exe AVG Alert Manager
Version: 7.5.0.453 Copyright © 2007 GRISOFT, s.r.o.
Path: C:\Program Files\Grisoft\AVG7\avgamsvr.exe
First Detected by WinPatrol: 04/16/2007 22:18


• AVG Update Service
avgupsvc.exe AVG Update Service
Version: 7.5.0.420 Copyright © 2006 GRISOFT, s.r.o.
Path: C:\Program Files\Grisoft\AVG7\avgupsvc.exe
First Detected by WinPatrol: 04/16/2007 22:18


• MsCamSvc.exe
MSCamSvc.exe MsCamSvc.exe
Version: 1.0 © Microsoft Corporation 2005.
Path: C:\PROGRAM FILES\MICROSOFT LIFECAM\MSCamSvc.exe
First Detected by WinPatrol: 04/16/2007 22:18


• NVIDIA Driver Helper Service, Version 93.71
nvsvc32.exe NVIDIA Driver Helper Service, Version 93.71
Version: 6.14.10.9371 (C) NVIDIA Corporation. All rights reserved.
Path: C:\WINDOWS\system32\nvsvc32.exe
First Detected by WinPatrol: 04/16/2007 22:18


• PML Driver
HPZipm12.exe PML Driver
Version: 9, 0, 0, 0 Copyright © 1998, 1999 Hewlett-Packard Company
Path: C:\WINDOWS\system32\HPZipm12.exe
First Detected by WinPatrol: 04/16/2007 22:18


• Windows Explorer
explorer.exe Windows Explorer
Version: 6.00.2900.2180 © Microsoft Corporation. All rights reserved.
Path: C:\WINDOWS\explorer.exe
First Detected by WinPatrol: 04/16/2007 22:18


• GrooveMonitor Utility
GROOVEMONITOR.EXE GrooveMonitor Utility
Version: 4.2.0.2623 © 2006 Microsoft Corporation. All rights reserved.
Path: C:\PROGRAM FILES\MICROSOFT OFFICE\Office12\GROOVEMONITOR.EXE
First Detected by WinPatrol: 04/30/2007 23:22


• Application Launcher
APPLICATION LAUNCHER.EXE Application Launcher
Version: 2.0.10.129 Copyright (c) 2005 Popwire AB. All rights reserved.
Path: C:\PROGRAM FILES\SONY ERICSSON\Mobile2\APPLICATION LAUNCHER\APPLICATION LAUNCHER.EXE
First Detected by WinPatrol: 05/05/2007 15:06


• QuickTime Task
qttask.exe QuickTime Task
Version: QuickTime 7.1.6 Copyright Apple Inc. 1989-2007
Path: C:\PROGRAM FILES\QUICKTIME\qttask.exe
First Detected by WinPatrol: 04/16/2007 22:18


• AVG Control Center
avgcc.exe AVG Control Center
Version: 7.5.0.460 Copyright © 2007 GRISOFT, s.r.o.
Path: C:\Program Files\Grisoft\AVG7\avgcc.exe
First Detected by WinPatrol: 04/16/2007 22:18


• iTunesHelper Module
ITUNESHELPER.EXE iTunesHelper Module
Version: 7.2.0.34 © 2003-2007 Apple Inc. All Rights Reserved.
Path: C:\PROGRAM FILES\iTunes\ITUNESHELPER.EXE
First Detected by WinPatrol: 04/16/2007 22:18


• IPoint.exe
ipoint.exe IPoint.exe
Version: 6.1 © Microsoft Corporation 1983-2006.
Path: C:\PROGRAM FILES\MICROSOFT INTELLIPOINT\ipoint.exe
First Detected by WinPatrol: 06/17/2007 20:39


• Run a DLL as an App
rundll32.exe Run a DLL as an App
Version: 5.1.2600.2180 © Microsoft Corporation. All rights reserved.
Path: C:\WINDOWS\system32\rundll32.exe
First Detected by WinPatrol: 04/16/2007 22:18


• AcroTray
acrotray.exe AcroTray
Version: 8.0,0.2006102200 Copyright 1984-2006 Adobe Systems Incorporated and its licensors. All rights reserved.
Path: C:\PROGRAM FILES\Adobe\ACROBAT 8.0\Acrobat\acrotray.exe
First Detected by WinPatrol: 06/24/2007 14:18


• AVG Anti-Spyware
avgas.exe AVG Anti-Spyware
Version: 7, 5, 1, 43 Copyright © 2007 GRISOFT s.r.o.
Path: C:\PROGRAM FILES\Grisoft\AVG ANTI-SPYWARE 7.5\avgas.exe
First Detected by WinPatrol: 04/16/2007 22:18


• iPodService Module
IPODSERVICE.EXE iPodService Module
Version: 7.2.0.34 © 2003-2007 Apple Inc. All Rights Reserved.
Path: C:\PROGRAM FILES\iPod\bin\IPODSERVICE.EXE
First Detected by WinPatrol: 04/16/2007 22:18


• Windows Update Automatic Updates
wuauclt.exe Windows Update Automatic Updates
Version: 7.0.6000.374 © Microsoft Corporation. All rights reserved.
Path: C:\WINDOWS\system32\wuauclt.exe
First Detected by WinPatrol: 04/16/2007 22:18


• Activation Licensing Service
FNPLICENSINGSERVICE.EXE Activation Licensing Service
Copyright 2005-2006, Macrovision Europe Ltd. All rights reserved.
Path: C:\PROGRAM FILES\COMMON FILES\MACROVISION SHARED\FLEXNET PUBLISHER\FNPLICENSINGSERVICE.EXE
First Detected by WinPatrol: 06/24/2007 14:18


• Avance Sound Manager
SOUNDMAN.EXE Avance Sound Manager
Version: 5.0.10 Copyright (c) 2001-2002 Avance Logic, Inc.
Path: C:\WINDOWS\SOUNDMAN.EXE
First Detected by WinPatrol: 04/16/2007 22:18


• Internet Explorer
iexplore.exe Internet Explorer
Version: 7.00.6000.16473 © Microsoft Corporation. All rights reserved.
Path: C:\PROGRAM FILES\INTERNET EXPLORER\iexplore.exe
First Detected by WinPatrol: 04/16/2007 22:23


• CTF Loader
ctfmon.exe CTF Loader
Version: 5.1.2600.2180 © Microsoft Corporation. All rights reserved.
Path: C:\WINDOWS\system32\ctfmon.exe
First Detected by WinPatrol: 04/16/2007 22:18


• Generic Device Management Executable.
Generic.exe Generic Device Management Executable.
Version: 1, 4, 14, 0 (c) 2007 Teleca AB. All rights reserved.
Path: C:\PROGRAM FILES\COMMON FILES\TELECA SHARED\Generic.exe
First Detected by WinPatrol: 05/05/2007 15:06


• CAPI_Worker Module
EPMWORKER.EXE CAPI_Worker Module
Version: 1,4,0,27 Copyright © 2005 Popwire AB. All rights reserved.
Path: C:\PROGRAM FILES\SONY ERICSSON\Mobile2\MOBILE PHONE MONITOR\EPMWORKER.EXE
First Detected by WinPatrol: 05/05/2007 15:06


• Microsoft Office Outlook
OUTLOOK.EXE Microsoft Office Outlook
Version: 12.0.6014.5000 © 2006 Microsoft Corporation. All rights reserved.
Path: C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE
First Detected by WinPatrol: 04/30/2007 23:31


• WinPatrol PLUS
WINPATROL.EXE WinPatrol System Monitor
Version: 11.3.2007 Copyright © 1997- 2007 BillP Studios
Path: C:\PROGRAM FILES\BILLP STUDIOS\WINPATROL\WINPATROL.EXE
First Detected by WinPatrol: 04/16/2007 22:18


• WinPatrol PLUS
WINPATROLEX.EXE WinPatrol Explorer
Version: 11.3.2007 Copyright © 2004-2007 BillP Studios
Path: C:\PROGRAM FILES\BILLP STUDIOS\WINPATROL\WINPATROLEX.EXE
First Detected by WinPatrol: 04/16/2007 22:19


• Scheduled Tasks •
• IE Helpers •
• AcroIEHelper Library
AcroIEHelper.dll Adobe PDF Helper for Internet Explorer
Version: 8.0.0.2006102200 Copyright 1984-2006 Adobe Systems Incorporated and its licensors. All rights reserved.
Path: C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
First Detected by WinPatrol: 06/24/2007 18:37
8.0.0.2006102200


• GrooveShellExtensions Module
GrooveShellExtensions.dll GrooveShellExtensions Module
Version: 4.2.0.2623 © 2006 Microsoft Corporation. All rights reserved.
Path: C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
First Detected by WinPatrol: 04/30/2007 23:11
4.2.0.2623


• Java(TM) Platform SE 6 U1
ssv.dll Java(TM) Platform SE binary
Version: 6.0.10.6 Copyright © 2004
Path: C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll
First Detected by WinPatrol: 04/16/2007 22:18
6.0.10.6


• del.icio.us Buttons for Internet Explorer
dlcsIE.dll del.icio.us Buttons for Internet Explorer
Version: 1.0.0.8 Copyright 2006 Yahoo!, Inc.
Path: C:\Program Files\del.icio.us\Internet Explorer Buttons\dlcsIE.dll
First Detected by WinPatrol: 05/28/2007 22:32
1.0.0.8


• Google Toolbar for IE
googletoolbar2.dll Google IE Client Toolbar
Version: 4, 0, 1601, 4978 Copyright © 2000-2006
Path: c:\program files\Google\googletoolbar2.dll
First Detected by WinPatrol: 04/16/2007 22:18
4, 0, 1601, 4978


• Adobe PDF Toolbar for IE
AcroIEFavClient.dll Adobe PDF Toolbar for Internet Explorer
Version: 8.0.0.0 Copyright 1984-2006 Adobe Systems Incorporated
Path: C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll
First Detected by WinPatrol: 06/24/2007 14:11
8.0.0.0


• Google Toolbar for IE
googletoolbar2.dll Google IE Client Toolbar
Version: 4, 0, 1601, 4978 Copyright © 2000-2006
Path: c:\program files\Google\googletoolbar2.dll
First Detected by WinPatrol: 04/16/2007 22:18
4, 0, 1601, 4978


• del.icio.us Buttons for Internet Explorer
dlcsIE.dll del.icio.us Buttons for Internet Explorer
Version: 1.0.0.8 Copyright 2006 Yahoo!, Inc.
Path: C:\Program Files\del.icio.us\Internet Explorer Buttons\dlcsIE.dll
First Detected by WinPatrol: 05/28/2007 22:32
1.0.0.8


• Adobe PDF Toolbar for IE
AcroIEFavClient.dll Adobe PDF Toolbar for Internet Explorer
Version: 8.0.0.0 Copyright 1984-2006 Adobe Systems Incorporated
Path: C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll
First Detected by WinPatrol: 06/24/2007 14:11
8.0.0.0


• File Types •
• MS-DOS Batch File
%1 %*
Path: %1 %*
.BAT
Startup Type: batfile


• WinRAR archive
WinRAR.exe %1
Path: C:\Program Files\WinRAR\WinRAR.exe %1
.CAB
Startup Type: WinRAR


• Security Catalog
rundll32.exe cryptext.dll,CryptExtOpenCAT %1 Run a DLL as an App
Version: 5.1.2600.2180 © Microsoft Corporation. All rights reserved.
Path: rundll32.exe cryptext.dll,CryptExtOpenCAT %1
.CAT
Startup Type: CATFile


• Compiled HTML Help file
hh.exe %1 Microsoft® HTML Help Executable
Version: 5.2.3790.2453 © Microsoft Corporation. All rights reserved.
Path: C:\WINDOWS\hh.exe %1
.CHM
Startup Type: chm.file


• MS-DOS Application
%1 %*
Path: %1 %*
.COM
Startup Type: comfile


• Windows NT Command Script
%1 %*
Path: %1 %*
.CMD
Startup Type: cmdfile


• Cascading Style Sheet Document
FRONTPG.EXE %1
Path: C:\PROGRA~1\MICROS~4\Office10\FRONTPG.EXE %1
.CSS
Startup Type: CSSFile


• Microsoft Office Word 97 - 2003 Document
WINWORD.EXE /n /dde Microsoft Office Word
Version: 12.0.4518.1014 © 2006 Microsoft Corporation. All rights reserved.
Path: C:\Program Files\Microsoft Office\Office12\WINWORD.EXE /n /dde
.DOC
Startup Type: Word.Document.8


• Internet E-Mail Message
msimn.exe /eml:%1 Outlook Express
Version: 6.00.2900.2180 © 2004 Microsoft Corporation. All rights reserved.
Path: C:\Program Files\Outlook Express\msimn.exe /eml:%1
.EML
Startup Type: Microsoft Internet Mail Message


• Application
%1 %*
Path: %1 %*
.EXE
Startup Type: exefile


• Setup Information
NOTEPAD.EXE %1 Notepad
Version: 5.1.2600.2180 © Microsoft Corporation. All rights reserved.
Path: C:\WINDOWS\System32\NOTEPAD.EXE %1
.INF
Startup Type: inffile


• JavaScript Source Code
WScript.exe %1 %* Microsoft (r) Windows Based Script Host
Version: 5.6.0.8820 Copyright © Microsoft Corp. 2002
Path: C:\WINDOWS\System32\WScript.exe %1 %*
.JS
Startup Type: jsfile


• Text Document
NOTEPAD.EXE %1 Notepad
Version: 5.1.2600.2180 © Microsoft Corporation. All rights reserved.
Path: C:\WINDOWS\system32\NOTEPAD.EXE %1
.LOG
Startup Type: txtfile


• Windows Installer Package
msiexec.exe /i %1 %* Windows® installer
Version: 3.1.4000.1823 © Microsoft Corporation. All rights reserved.
Path: C:\WINDOWS\System32\msiexec.exe /i %1 %*
.MSI
Startup Type: Msi.Package


• Outlook Item
OUTLOOK.EXE /f %1 Microsoft Office Outlook
Version: 12.0.6014.5000 © 2006 Microsoft Corporation. All rights reserved.
Path: C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE /f %1
.MSG
Startup Type: Outlook.File.msg


• MPEG Layer 3 Audio
iTunes.exe /open %L iTunes
Version: 7.2.0.34 © 2003-2007 Apple Inc. All Rights Reserved.
Path: C:\Program Files\iTunes\iTunes.exe /open %L
.MP3
Startup Type: iTunes.mp3


• Shortcut to MS-DOS Program
%1 %*
Path: %1 %*
.PIF
Startup Type: piffile


• Registration Entries
regedit.exe %1 Registry Editor
Version: 5.1.2600.2180 © Microsoft Corporation. All rights reserved.
Path: regedit.exe %1
.REG
Startup Type: regfile


• Rich Text Format
WINWORD.EXE /n /dde Microsoft Office Word
Version: 12.0.4518.1014 © 2006 Microsoft Corporation. All rights reserved.
Path: C:\Program Files\Microsoft Office\Office12\WINWORD.EXE /n /dde
.RTF
Startup Type: Word.RTF.8


• Spyware supplemental file
SpybotSD.exe %1 Spybot - Search & Destroy
Version: 1, 4, 0, 3 © 2000-2005 Patrick M. Kolla / Safer Networking Limited. Alle Rechte vorbehalten.
Path: C:\Program Files\Spybot - Search & Destroy\SpybotSD.exe %1
.SBS
Startup Type: SpybotSD.SBSFile


• Screen Saver
%1 /S
Path: %1 /S
.SCR
Startup Type: scrfile


• Text Document
NOTEPAD.EXE %1 Notepad
Version: 5.1.2600.2180 © Microsoft Corporation. All rights reserved.
Path: C:\WINDOWS\system32\NOTEPAD.EXE %1
.TXT
Startup Type: txtfile


• Internet Shortcut
rundll32.exe ieframe.dll,OpenURL %l Run a DLL as an App
Version: 5.1.2600.2180 © Microsoft Corporation. All rights reserved.
Path: rundll32.exe ieframe.dll,OpenURL %l
.URL
Startup Type: InternetShortcut


• VBScript Script File
WScript.exe %1 %* Microsoft (r) Windows Based Script Host
Version: 5.6.0.8820 Copyright © Microsoft Corp. 2002
Path: C:\WINDOWS\System32\WScript.exe %1 %*
.VBS
Startup Type: VBSFile


• VBScript Encoded Script File
WScript.exe %1 %* Microsoft (r) Windows Based Script Host
Version: 5.6.0.8820 Copyright © Microsoft Corp. 2002
Path: C:\WINDOWS\System32\WScript.exe %1 %*
.VBE
Startup Type: VBEFile


• Windows Script File
WScript.exe %1 %* Microsoft (r) Windows Based Script Host
Version: 5.6.0.8820 Copyright © Microsoft Corp. 2002
Path: C:\WINDOWS\System32\WScript.exe %1 %*
.WSF
Startup Type: WSFFile


• Windows Script Host Settings File
WScript.exe %1 %* Microsoft (r) Windows Based Script Host
Version: 5.6.0.8820 Copyright © Microsoft Corp. 2002
Path: C:\WINDOWS\System32\WScript.exe %1 %*
.WSH
Startup Type: WSHFile


• Microsoft Office Excel 97-2003 Worksheet
EXCEL.EXE /e Microsoft Office Excel
Version: 12.0.6014.5000 © 2006 Microsoft Corporation. All rights reserved.
Path: C:\Program Files\Microsoft Office\Office12\EXCEL.EXE /e
.XLS
Startup Type: Excel.Sheet.8


• Services •
• a2service.exe

Path: C:\PROGRAM FILES\A-SQUARED ANTI-MALWARE\a2service.exe
First Detected by WinPatrol: 04/16/2007 22:18
Scans the PC for unwanted software and provides protection from malicious code
Created:
Accessed:
Written:
File Size: Bytes


• Adobelmsvc.exe
System Level Service Utility
Path: C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
First Detected by WinPatrol: 04/16/2007 22:18
AdobeLM Service
Created: 04/14/2007 21:26
Accessed: 07/01/2007 13:45
Written: 04/14/2007 21:26
File Size: 72,704 Bytes


• VersionCueCS3.exe -win32service
Adobe Version Cue CS3
Version: 3, 0, 0, 0 Copyright © 2005 by Adobe Systems Inc.
Path: C:\Program Files\Common Files\Adobe\Adobe Version Cue CS3\Server\bin\VersionCueCS3.exe -win32service
First Detected by WinPatrol: 06/24/2007 18:38
Adobe Version Cue CS3
Created: 03/20/2007 16:41
Accessed: 07/01/2007 13:45
Written: 03/20/2007 16:41
File Size: 153,792 Bytes


• alrsvc.dll
Alerter Service DLL
Version: 5.1.2600.2180 © Microsoft Corporation. All rights reserved.
Path: C:\WINDOWS\system32\alrsvc.dll
First Detected by WinPatrol: 04/16/2007 22:18
Notifies selected users and computers of administrative alerts. If the service is stopped, programs that use administrative alerts will not receive them. If this service is disabled, any services that explicitly depend on it will fail to start.
Created: 04/09/2007 19:42
Accessed: 07/01/2007 13:45
Written: 08/04/2004 00:56
File Size: 17,408 Bytes


• alg.exe
Application Layer Gateway Service
Version: 5.1.2600.2180 © Microsoft Corporation. All rights reserved.
Path: C:\WINDOWS\system32\alg.exe
First Detected by WinPatrol: 04/16/2007 22:18
Provides support for 3rd party protocol plug-ins for Internet Connection Sharing and the Windows Firewall.
Created: 04/09/2007 19:42
Accessed: 07/01/2007 13:45
Written: 08/04/2004 00:56
File Size: 44,544 Bytes


• appmgmts.dll

Path: C:\WINDOWS\System32\appmgmts.dll
First Detected by WinPatrol: 04/16/2007 22:18
Provides software installation services such as Assign, Publish, and Remove.
Created:
Accessed:
Written:
File Size: Bytes


• aspnet_state.exe
Microsoft ASP.NET State Server
Version: 2.0.50727.42 © Microsoft Corporation. All rights reserved.
Path: C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe
First Detected by WinPatrol: 04/17/2007 01:56
Provides support for out-of-process session states for ASP.NET. If this service is stopped, out-of-process requests will not be processed. If this service is disabled, any services that explicitly depend on it will fail to start.
Created: 09/23/2005 07:28
Accessed: 07/01/2007 13:45
Written: 09/23/2005 07:28
File Size: 29,896 Bytes


• audiosrv.dll
Windows Audio Service
Version: 5.1.2600.2180 © Microsoft Corporation. All rights reserved.
Path: C:\WINDOWS\system32\audiosrv.dll
First Detected by WinPatrol: 04/16/2007 22:18
Manages audio devices for Windows-based programs. If this service is stopped, audio devices and effects will not function properly. If this service is disabled, any services that explicitly depend on it will fail to start.
Created: 04/09/2007 19:42
Accessed: 07/01/2007 13:45
Written: 08/04/2004 00:56
File Size: 42,496 Bytes


• guard.exe
AVG Anti-Spyware guard
Version: 7, 5, 1, 22 Copyright © 2007 GRISOFT s.r.o.
Path: C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
First Detected by WinPatrol: 04/16/2007 22:18
Created: 09/28/2006 15:13
Accessed: 07/01/2007 13:45
Written: 06/28/2007 12:07
File Size: 312,880 Bytes


• avgamsvr.exe
AVG Alert Manager
Version: 7.5.0.453 Copyright © 2007 GRISOFT, s.r.o.
Path: C:\Program Files\Grisoft\AVG7\avgamsvr.exe
First Detected by WinPatrol: 04/16/2007 22:18
Created: 05/26/2007 12:17
Accessed: 07/01/2007 13:45
Written: 05/26/2007 12:17
File Size: 353,280 Bytes


• avgupsvc.exe
AVG Update Service
Version: 7.5.0.420 Copyright © 2006 GRISOFT, s.r.o.
Path: C:\Program Files\Grisoft\AVG7\avgupsvc.exe
First Detected by WinPatrol: 04/16/2007 22:18
Created: 05/26/2007 12:17
Accessed: 07/01/2007 13:45
Written: 05/26/2007 12:17
File Size: 49,664 Bytes


• qmgr.dll
Background Intelligent Transfer Service
Version: 6.6.2600.2180 © Microsoft Corporation. All rights reserved.
Path: C:\WINDOWS\system32\qmgr.dll
First Detected by WinPatrol: 04/16/2007 22:18
Transfers files in the background using idle network bandwidth. If the service is stopped, features such as Windows Update, and MSN Explorer will be unable to automatically download programs and other information. If this service is disabled, any services that explicitly depend on it may fail to transfer files if they do not have a fail safe mechanism to transfer files directly through IE in case BITS has been disabled.
Created: 04/09/2007 19:45
Accessed: 07/01/2007 13:45
Written: 08/04/2004 00:56
File Size: 382,464 Bytes


• browser.dll
Computer Browser Service DLL
Version: 5.1.2600.2180 © Microsoft Corporation. All rights reserved.
Path: C:\WINDOWS\system32\browser.dll
First Detected by WinPatrol: 04/16/2007 22:18
Maintains an updated list of computers on the network and supplies this list to computers designated as browsers. If this service is stopped, this list will not be updated or maintained. If this service is disabled, any services that explicitly depend on it will fail to start.
Created: 04/09/2007 19:42
Accessed: 07/01/2007 13:45
Written: 08/04/2004 00:56
File Size: 77,312 Bytes


• cisvc.exe
Content Index service
Version: 5.1.2600.2180 © Microsoft Corporation. All rights reserved.
Path: C:\WINDOWS\system32\cisvc.exe
First Detected by WinPatrol: 04/16/2007 22:18
Indexes contents and properties of files on local and remote computers; provides rapid access to files through flexible querying language.
Created: 04/09/2007 19:42
Accessed: 07/01/2007 13:45
Written: 08/04/2004 00:56
File Size: 5,632 Bytes


• clipsrv.exe
Windows NT DDE Server
Version: 5.1.2600.2180 © Microsoft Corporation. All rights reserved.
Path: C:\WINDOWS\system32\clipsrv.exe
First Detected by WinPatrol: 04/16/2007 22:18
Enables ClipBook Viewer to store information and share it with remote computers. If the service is stopped, ClipBook Viewer will not be able to share information with remote computers. If this service is disabled, any services that explicitly depend on it will fail to start.
Created: 04/09/2007 19:42
Accessed: 07/01/2007 13:45
Written: 08/04/2004 00:56
File Size: 33,280 Bytes


• mscorsvw.exe
.NET Runtime Optimization Service
Version: 2.0.50727.42 © Microsoft Corporation. All rights reserved.
Path: C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
First Detected by WinPatrol: 04/17/2007 08:54
Microsoft .NET Framework NGEN
Created: 09/23/2005 07:28
Accessed: 07/01/2007 13:45
Written: 09/23/2005 07:28
File Size: 66,240 Bytes


• dllhost.exe /Processid:{02D4B3F1-FD88-11D1-960D-00805FC79235}
COM Surrogate
Version: 5.1.2600.2180 © Microsoft Corporation. All rights reserved.
Path: C:\WINDOWS\System32\dllhost.exe /Processid:{02D4B3F1-FD88-11D1-960D-00805FC79235}
First Detected by WinPatrol: 04/16/2007 22:22
Manages the configuration and tracking of Component Object Model (COM)+-based components. If the service is stopped, most COM+-based components will not function properly. If this service is disabled, any services that explicitly depend on it will fail to start.
Created: 04/09/2007 19:42
Accessed: 07/01/2007 13:45
Written: 08/04/2004 00:56
File Size: 5,120 Bytes


• cryptsvc.dll
Cryptographic Services
Version: 5.1.2600.2180 © Microsoft Corporation. All rights reserved.
Path: C:\WINDOWS\system32\cryptsvc.dll
First Detected by WinPatrol: 04/16/2007 22:18
Provides three management services: Catalog Database Service, which confirms the signatures of Windows files; Protected Root Service, which adds and removes Trusted Root Certification Authority certificates from this computer; and Key Service, which helps enroll this computer for certificates. If this service is stopped, these management services will not function properly. If this service is disabled, any services that explicitly depend on it will fail to start.
Created: 04/09/2007 19:42
Accessed: 07/01/2007 13:45
Written: 08/04/2004 00:56
File Size: 60,416 Bytes


• rpcss.dll
Distributed COM Services
Version: 5.1.2600.2726 © Microsoft Corporation. All rights reserved.
Path: C:\WINDOWS\system32\rpcss.dll
First Detected by WinPatrol: 04/16/2007 22:18
Provides launch functionality for DCOM services.
Created: 04/09/2007 19:45
Accessed: 07/01/2007 13:45
Written: 07/26/2005 05:39
File Size: 397,824 Bytes


• dhcpcsvc.dll
DHCP Client Service
Version: 5.1.2600.2912 © Microsoft Corporation. All rights reserved.
Path: C:\WINDOWS\system32\dhcpcsvc.dll
First Detected by WinPatrol: 04/16/2007 22:18
Manages network configuration by registering and updating IP addresses and DNS names.
Created: 04/09/2007 19:42
Accessed: 07/01/2007 13:45
Written: 05/19/2006 13:59
File Size: 111,616 Bytes


• dmadmin.exe /com
Logical Disk Manager service process
Version: 1.0 Path: C:\WINDOWS\System32\dmadmin.exe /com
First Detected by WinPatrol: 04/16/2007 22:22
Configures hard disk drives and volumes. The service only runs for configuration processes and then stops.
Created: 04/09/2007 19:42
Accessed: 07/01/2007 13:45
Written: 08/04/2004 00:56
File Size: 224,768 Bytes


• dmserver.dll
Logical Disk Manager service dll
Version: 1.0 Copyright© 1985-2000 Microsoft Corp. All rights reserved.
Path: C:\WINDOWS\system32\dmserver.dll
First Detected by WinPatrol: 04/16/2007 22:18
Detects and monitors new hard disk drives and sends disk volume information to Logical Disk Manager Administrative Service for configuration. If this service is stopped, dynamic disk status and configuration information may become out of date. If this service is disabled, any services that explicitly depend on it will fail to start.
Created: 04/09/2007 19:42
Accessed: 07/01/2007 13:45
Written: 08/04/2004 00:56
File Size: 23,552 Bytes


• dnsrslvr.dll
DNS Caching Resolver Service
Version: 5.1.2600.2180 © Microsoft Corporation. All rights reserved.
Path: C:\WINDOWS\system32\dnsrslvr.dll
First Detected by WinPatrol: 04/16/2007 22:18
Resolves and caches Domain Name System (DNS) names for this computer. If this service is stopped, this computer will not be able to resolve DNS names and locate Active Directory domain controllers. If this service is disabled, any services that explicitly depend on it will fail to start.
Created: 04/09/2007 19:42
Accessed: 07/01/2007 13:45
Written: 08/04/2004 00:56
File Size: 45,568 Bytes


• ersvc.dll
Windows Error Reporting Service
Version: 5.1.2600.2180 © Microsoft Corporation. All rights reserved.
Path: C:\WINDOWS\system32\ersvc.dll
First Detected by WinPatrol: 04/16/2007 22:18
Allows error reporting for services and applictions running in non-standard environments.
Created: 04/09/2007 19:43
Accessed: 07/01/2007 13:45
Written: 08/04/2004 00:56
File Size: 23,040 Bytes


• services.exe
Services and Controller app
Version: 5.1.2600.2180 © Microsoft Corporation. All rights reserved.
Path: C:\WINDOWS\system32\services.exe
First Detected by WinPatrol: 04/16/2007 22:18
Enables event log messages issued by Windows-based programs and components to be viewed in Event Viewer. This service cannot be stopped.
Created: 04/09/2007 19:45
Accessed: 07/01/2007 13:45
Written: 08/04/2004 00:56
File Size: 108,032 Bytes


• es.dll
Version: 03.00.00.4414 Copyright (C) Microsoft Corp. 1995-1999
Path: C:\WINDOWS\system32\es.dll
First Detected by WinPatrol: 04/16/2007 22:18
Supports System Event Notification Service (SENS), which provides automatic distribution of events to subscribing Component Object Model (COM) components. If the service is stopped, SENS will close and will not be able to provide logon and logoff notifications. If this service is disabled, any services that explicitly depend on it will fail to start.
Created: 04/09/2007 19:43
Accessed: 07/01/2007 13:45
Written: 07/26/2005 05:39
File Size: 243,200 Bytes


• shsvcs.dll
Windows Shell Services Dll
Version: 6.00.2900.3051 © Microsoft Corporation. All rights reserved.
Path: C:\WINDOWS\system32\shsvcs.dll
First Detected by WinPatrol: 04/16/2007 22:18
Provides management for applications that require assistance in a multiple user environment.
Created: 04/09/2007 19:45
Accessed: 07/01/2007 13:45
Written: 12/19/2006 22:52
File Size: 134,656 Bytes


• FNPLicensingService.exe
Activation Licensing Service
Copyright 2005-2006, Macrovision Europe Ltd. All rights reserved.
Path: C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
First Detected by WinPatrol: 06/24/2007 12:38
This service performs licensing functions on behalf of FLEXnet enabled products.
Created: 06/24/2007 12:30
Accessed: 07/01/2007 13:45
Written: 06/24/2007 12:30
File Size: 654,848 Bytes


• GoogleUpdaterService.exe
gusvc
Version: 2.0.734.29932.beta ©2005-2006 Google. All Rights Reserved.
Path: C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
First Detected by WinPatrol: 04/16/2007 22:18
Created: 04/10/2007 00:29
Accessed: 07/01/2007 13:45
Written: 04/10/2007 00:29
File Size: 138,168 Bytes


• pchsvc.dll
Microsoft PCHealth Service Holder
Version: 5.1.2600.2180 © Microsoft Corporation. All rights reserved.
Path: C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
First Detected by WinPatrol: 04/16/2007 22:18
Enables Help and Support Center to run on this computer. If this service is stopped, Help and Support Center will be unavailable. If this service is disabled, any services that explicitly depend on it will fail to start.
Created: 04/09/2007 19:45
Accessed: 07/01/2007 13:45
Written: 08/04/2004 00:56
File Size: 38,912 Bytes


• hidserv.dll
HID Audio Service
Version: 5.1.2600.2180 © Microsoft Corporation. All rights reserved.
Path: C:\WINDOWS\system32\hidserv.dll
First Detected by WinPatrol: 04/16/2007 22:18
Enables generic input access to Human Interface Devices (HID), which activates and maintains the use of predefined hot buttons on keyboards, remote controls, and other multimedia devices. If this service is stopped, hot buttons controlled by this service will no longer function. If this service is disabled, any services that explicitly depend on it will fail to start.
Created: 04/09/2007 12:54
Accessed: 07/01/2007 13:45
Written: 08/04/2004 00:56
File Size: 21,504 Bytes


• w3ssl.dll
SSL service for HTTP
Version: 6.0.2600.2180 © Microsoft Corporation. All rights reserved.
Path: C:\WINDOWS\system32\w3ssl.dll
First Detected by WinPatrol: 04/16/2007 22:18
This service implements the secure hypertext transfer protocol (HTTPS) for the HTTP service, using the Secure Socket Layer (SSL). If this service is disabled, any services that explicitly depend on it will fail to start.
Created: 04/09/2007 23:56
Accessed: 07/01/2007 13:45
Written: 08/04/2004 00:56
File Size: 15,872 Bytes


• IDriverT.exe
IDriverT Module
Version: 11.00 Copyright (C) 2005 Macrovision Corporation
Path: C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
First Detected by WinPatrol: 06/24/2007 18:38
Provides support for the Running Object Table for InstallShield Drivers
Created: 04/04/2005 00:41
Accessed: 07/01/2007 13:45
Written: 04/04/2005 00:41
File Size: 69,632 Bytes


• imapi.exe
Image Mastering API
Version: 5.1.2600.2180 © Microsoft Corporation. All rights reserved.
Path: C:\WINDOWS\system32\imapi.exe
First Detected by WinPatrol: 04/16/2007 22:18
Manages CD recording using Image Mastering Applications Programming Interface (IMAPI). If this service is stopped, this computer will be unable to record CDs. If this service is disabled, any services that explicitly depend on it will fail to start.
Created: 04/09/2007 19:43
Accessed: 07/01/2007 13:45
Written: 08/04/2004 00:56
File Size: 150,016 Bytes


• InstallShield Licensing Service.exe
System Level Service Utility
Path: C:\Program Files\Common Files\InstallShield Shared\Service\InstallShield Licensing Service.exe
First Detected by WinPatrol: 05/26/2007 10:42
Provides authentication services for licensed software applications.
Created: 05/26/2007 10:40
Accessed: 07/01/2007 13:45
Written: 05/26/2007 10:40
File Size: 72,704 Bytes


• iPodService.exe
iPodService Module
Version: 7.2.0.34 © 2003-2007 Apple Inc. All Rights Reserved.
Path: C:\Program Files\iPod\bin\iPodService.exe
First Detected by WinPatrol: 04/16/2007 22:18
iPod hardware management services
Created: 05/26/2007 12:45
Accessed: 07/01/2007 13:45
Written: 05/26/2007 12:45
File Size: 501,312 Bytes


• srvsvc.dll
Server Service DLL
Version: 5.1.2600.2577 © Microsoft Corporation. All rights reserved.
Path: C:\WINDOWS\system32\srvsvc.dll
First Detected by WinPatrol: 04/16/2007 22:18
Supports file, print, and named-pipe sharing over the network for this computer. If this service is stopped, these functions will be unavailable. If this service is disabled, any services that explicitly depend on it will fail to start.
Created: 04/09/2007 19:45
Accessed: 07/01/2007 13:45
Written: 12/07/2004 20:32
File Size: 96,768 Bytes


• wkssvc.dll
Workstation Service DLL
Version: 5.1.2600.2976 © Microsoft Corporation. All rights reserved.
Path: C:\WINDOWS\system32\wkssvc.dll
First Detected by WinPatrol: 04/16/2007 22:18
Creates and maintains client network connections to remote servers. If this service is stopped, these connections will be unavailable. If this service is disabled, any services that explicitly depend on it will fail to start.
Created: 04/09/2007 19:45
Accessed: 07/01/2007 13:45
Written: 08/17/2006 13:28
File Size: 132,096 Bytes


• lmhsvc.dll
TCPIP NetBios Transport Services DLL
Version: 5.1.2600.2180 © Microsoft Corporation. All rights reserved.
Path: C:\WINDOWS\system32\lmhsvc.dll
First Detected by WinPatrol: 04/16/2007 22:18
Enables support for NetBIOS over TCP/IP (NetBT) service and NetBIOS name resolution.
Created: 04/09/2007 19:44
Accessed: 07/01/2007 13:45
Written: 08/04/2004 00:56
File Size: 13,824 Bytes


• Macromedia Licensing.exe

Path: C:\Program Files\Common Files\Macromedia Shared\Service\Macromedia Licensing.exe
First Detected by WinPatrol: 07/01/2007 11:31
Provides authentication services for Macromedia applications.
Created: 07/01/2007 11:24
Accessed: 07/01/2007 13:45
Written: 07/01/2007 11:24
File Size: 68,096 Bytes


• msgsvc.dll
NT Messenger Service
Version: 5.1.2600.2180 © Microsoft Corporation. All rights reserved.
Path: C:\WINDOWS\system32\msgsvc.dll
First Detected by WinPatrol: 04/16/2007 22:18
Transmits net send and Alerter service messages between clients and servers. This service is not related to Windows Messenger. If this service is stopped, Alerter messages will not be transmitted. If this service is disabled, any services that explicitly depend on it will fail to start.
Created: 04/09/2007 19:44
Accessed: 07/01/2007 13:45
Written: 08/04/2004 00:56
File Size: 33,792 Bytes


• GrooveAuditService.exe
Groove Audit Service
Version: 4.2.0.2623 © 2006 Microsoft Corporation. All rights reserved.
Path: C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe
First Detected by WinPatrol: 04/30/2007 23:18
Created: 10/27/2006 00:47
Accessed: 07/01/2007 13:45
Written: 10/27/2006 00:47
File Size: 65,824 Bytes


• mnmsrvc.exe
NetMeeting Remote Desktop Sharing
Version: 3.01 Copyright © Microsoft Corporation 1996-2001
Path: C:\WINDOWS\system32\mnmsrvc.exe
First Detected by WinPatrol: 04/16/2007 22:18
Enables an authorized user to access this computer remotely by using NetMeeting over a corporate intranet. If this service is stopped, remote desktop sharing will be unavailable. If this service is disabled, any services that explicitly depend on it will fail to start.
Created: 04/09/2007 19:44
Accessed: 07/01/2007 13:45
Written: 08/04/2004 00:56
File Size: 32,768 Bytes


• MSCamSvc.exe
MsCamSvc.exe
Version: 1.0 © Microsoft Corporation 2005.
Path: C:\Program Files\Microsoft LifeCam\MSCamSvc.exe
First Detected by WinPatrol: 04/16/2007 22:18
Created: 06/30/2006 00:54
Accessed: 07/01/2007 13:45
Written: 06/30/2006 00:54
File Size: 187,184 Bytes


• msdtc.exe
MS DTC console program
Version: 03.01.00.4414 Copyright (C) Microsoft Corp. 1995-1998
Path: C:\WINDOWS\system32\msdtc.exe
First Detected by WinPatrol: 04/16/2007 22:18
Coordinates transactions that span multiple resource managers, such as databases, message queues, and file systems. If this service is stopped, these transactions will not occur. If this service is disabled, any services that explicitly depend on it will fail to start.
Created: 04/09/2007 19:44
Accessed: 07/01/2007 13:45
Written: 08/04/2004 00:56
File Size: 6,144 Bytes


• msiexec.exe /V
Windows® installer
Version: 3.1.4000.1823 © Microsoft Corporation. All rights reserved.
Path: C:\WINDOWS\system32\msiexec.exe /V
First Detected by WinPatrol: 04/16/2007 22:22
Adds, modifies, and removes applications provided as a Windows Installer (*.msi) package. If this service is disabled, any services that explicitly depend on it will fail to start.
Created: 04/09/2007 19:44
Accessed: 07/01/2007 13:45
Written: 05/04/2005 14:45
File Size: 78,848 Bytes


• netdde.exe
Network DDE - DDE Communication
Version: 5.1.2600.2180 © Microsoft Corporation. All rights reserved.
Path: C:\WINDOWS\system32\netdde.exe
First Detected by WinPatrol: 04/16/2007 22:18
Provides network transport and security for Dynamic Data Exchange (DDE) for programs running on the same computer or on different computers. If this service is stopped, DDE transport and security will be unavailable. If this service is disabled, any services that explicitly depend on it will fail to start.
Created: 04/09/2007 19:44
Accessed: 07/01/2007 13:45
Written: 08/04/2004 00:56
File Size: 111,104 Bytes


• netdde.exe
Network DDE - DDE Communication
Version: 5.1.2600.2180 © Microsoft Corporation. All rights reserved.
Path: C:\WINDOWS\system32\netdde.exe
First Detected by WinPatrol: 04/16/2007 22:18
Manages Dynamic Data Exchange (DDE) network shares. If this service is stopped, DDE network shares will be unavailable. If this service is disabled, any services that explicitly depend on it will fail to start.
Created: 04/09/2007 19:44
Accessed: 07/01/2007 13:45
Written: 08/04/2004 00:56
File Size: 111,104 Bytes


• lsass.exe
LSA Shell (Export Version)
Version: 5.1.2600.2180 © Microsoft Corporation. All rights reserved.
Path: C:\WINDOWS\system32\lsass.exe
First Detected by WinPatrol: 04/16/2007 22:18
Supports pass-through authentication of account logon events for computers in a domain.
Created: 04/09/2007 19:44
Accessed: 07/01/2007 13:45
Written: 08/04/2004 00:56
File Size: 13,312 Bytes


• netman.dll
Network Connections Manager
Version: 5.1.2600.2743 © Microsoft Corporation. All rights reserved.
Path: C:\WINDOWS\system32\netman.dll
First Detected by WinPatrol: 04/16/2007 22:18
Manages objects in the Network and Dial-Up Connections folder, in which you can view both local area network and remote connections.
Created: 04/09/2007 19:44
Accessed: 07/01/2007 13:45
Written: 08/22/2005 19:29
File Size: 197,632 Bytes


• mswsock.dll
Microsoft Windows Sockets 2.0 Service Provider
Version: 5.1.2600.2180 © Microsoft Corporation. All rights reserved.
Path: C:\WINDOWS\system32\mswsock.dll
First Detected by WinPatrol: 04/16/2007 22:18
Collects and stores network configuration and location information, and notifies applications when this information changes.
Created: 04/09/2007 19:44
Accessed: 07/01/2007 13:45
Written: 08/04/2004 00:56
File Size: 245,248 Bytes


• lsass.exe
LSA Shell (Export Version)
Version: 5.1.2600.2180 © Microsoft Corporation. All rights reserved.
Path: C:\WINDOWS\system32\lsass.exe
First Detected by WinPatrol: 04/16/2007 22:18
Provides security to remote procedure call (RPC) programs that use transports other than named pipes.
Created: 04/09/2007 19:44
Accessed: 07/01/2007 13:45
Written: 08/04/2004 00:56
File Size: 13,312 Bytes


• ntmssvc.dll
Removable Storage Manager
Version: 5.1.2400.2180 Copyright © 2000 Microsoft Corporation
Path: C:\WINDOWS\system32\ntmssvc.dll
First Detected by WinPatrol: 04/16/2007 22:18
Created: 04/09/2007 19:44
Accessed: 07/01/2007 13:45
Written: 08/04/2004 00:56
File Size: 435,200 Bytes


• nvsvc32.exe
NVIDIA Driver Helper Service, Version 93.71
Version: 6.14.10.9371 (C) NVIDIA Corporation. All rights reserved.
Path: C:\WINDOWS\system32\nvsvc32.exe
First Detected by WinPatrol: 04/16/2007 22:18
Provides system and desktop level support to the NVIDIA display driver
Created: 10/06/2003 15:16
Accessed: 07/01/2007 13:45
Written: 10/22/2006 13:22
File Size: 159,810 Bytes


• ODSERV.EXE
Microsoft Office Diagnostics
Version: 12.0.4518.1014 © 2006 Microsoft Corporation. All rights reserved.
Path: C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
First Detected by WinPatrol: 04/30/2007 23:18
Run portions of Microsoft Office Diagnostics.
Created: 10/26/2006 19:49
Accessed: 07/01/2007 13:45
Written: 10/26/2006 19:49
File Size: 441,136 Bytes


• OSE.EXE
Office Source Engine
Version: 12.0.4518.1014 © 2006 Microsoft Corporation. All rights reserved.
Path: C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
First Detected by WinPatrol: 04/16/2007 22:18
Saves installation files used for updates and repairs and is required for the downloading of Setup updates and Watson error reports.
Created: 10/26/2006 14:03
Accessed: 07/01/2007 13:45
Written: 10/26/2006 14:03
File Size: 145,184 Bytes


• services.exe
Services and Controller app
Version: 5.1.2600.2180 © Microsoft Corporation. All rights reserved.
Path: C:\WINDOWS\system32\services.exe
First Detected by WinPatrol: 04/16/2007 22:18
Enables a computer to recognize and adapt to hardware changes with little or no user input. Stopping or disabling this service will result in system instability.
Created: 04/09/2007 19:45
Accessed: 07/01/2007 13:45
Written: 08/04/2004 00:56
File Size: 108,032 Bytes


• HPZipm12.exe
PML Driver
Version: 9, 0, 0, 0 Copyright © 1998, 1999 Hewlett-Packard Company
Path: C:\WINDOWS\system32\HPZipm12.exe
First Detected by WinPatrol: 04/16/2007 22:18
Created: 04/09/2007 22:37
Accessed: 07/01/2007 13:45
Written: 09/29/2004 12:14
File Size: 69,632 Bytes


• lsass.exe
LSA Shell (Export Version)
Version: 5.1.2600.2180 © Microsoft Corporation. All rights reserved.
Path: C:\WINDOWS\system32\lsass.exe
First Detected by WinPatrol: 04/16/2007 22:18
Manages IP security policy and starts the ISAKMP/Oakley (IKE) and the IP security driver.
Created: 04/09/2007 19:44
Accessed: 07/01/2007 13:45
Written: 08/04/2004 00:56
File Size: 13,312 Bytes


• lsass.exe
LSA Shell (Export Version)
Version: 5.1.2600.2180 © Microsoft Corporation. All rights reserved.
Path: C:\WINDOWS\system32\lsass.exe
First Detected by WinPatrol: 04/16/2007 22:18
Provides protected storage for sensitive data, such as private keys, to prevent access by unauthorized services, processes, or users.
Created: 04/09/2007 19:44
Accessed: 07/01/2007 13:45
Written: 08/04/2004 00:56
File Size: 13,312 Bytes


• rasauto.dll
Remote Access AutoDial Manager
Version: 5.1.2600.2180 © Microsoft Corporation. All rights reserved.
Path: C:\WINDOWS\system32\rasauto.dll
First Detected by WinPatrol: 04/16/2007 22:18
Creates a connection to a remote network whenever a program references a remote DNS or NetBIOS name or address.
Created: 04/09/2007 19:45
Accessed: 07/01/2007 13:45
Written: 08/04/2004 00:56
File Size: 89,088 Bytes


• rasmans.dll
Remote Access Connection Manager
Version: 5.1.2600.2936 © Microsoft Corporation. All rights reserved.
Path: C:\WINDOWS\system32\rasmans.dll
First Detected by WinPatrol: 04/16/2007 22:18
Creates a network connection.
Created: 04/09/2007 19:45
Accessed: 07/01/2007 13:45
Written: 06/22/2006 11:47
File Size: 181,248 Bytes


• sessmgr.exe
Microsoft® Remote Desktop Help Session Manager
Version: 5.1.2600.2180 © Microsoft Corporation. All rights reserved.
Path: C:\WINDOWS\system32\sessmgr.exe
First Detected by WinPatrol: 04/16/2007 22:18
Manages and controls Remote Assistance. If this service is stopped, Remote Assistance will be unavailable. Before stopping this service, see the Dependencies tab of the Properties dialog box.
Created: 04/09/2007 19:45
Accessed: 07/01/2007 13:45
Written: 08/04/2004 00:56
File Size: 140,800 Bytes


• mprdim.dll
Dynamic Interface Manager
Version: 5.1.2600.0 © Microsoft Corporation. All rights reserved.
Path: C:\WINDOWS\system32\mprdim.dll
First Detected by WinPatrol: 04/16/2007 22:18
Offers routing services to businesses in local area and wide area network environments.
Created: 04/09/2007 19:44
Accessed: 07/01/2007 13:45
Written: 08/29/2002 13:00
File Size: 49,152 Bytes


• locator.exe
Rpc Locator
Version: 5.1.2600.2180 © Microsoft Corporation. All rights reserved.
Path: C:\WINDOWS\system32\locator.exe
First Detected by WinPatrol: 04/16/2007 22:18
Manages the RPC name service database.
Created: 04/09/2007 19:44
Accessed: 07/01/2007 13:45
Written: 08/04/2004 00:56
File Size: 75,264 Bytes


• rpcss.dll
Distributed COM Services
Version: 5.1.2600.2726 © Microsoft Corporation. All rights reserved.
Path: C:\WINDOWS\system32\rpcss.dll
First Detected by WinPatrol: 04/16/2007 22:18
Provides the endpoint mapper and other miscellaneous RPC services.
Created: 04/09/2007 19:45
Accessed: 07/01/2007 13:45
Written: 07/26/2005 05:39
File Size: 397,824 Bytes


• rsvp.exe
Microsoft RSVP
Version: 5.1.2600.0 © Microsoft Corporation. All rights reserved.
Path: C:\WINDOWS\system32\rsvp.exe
First Detected by WinPatrol: 04/16/2007 22:18
Provides network signaling and local traffic control setup functionality for QoS-aware programs and control applets.
Created: 04/09/2007 19:45
Accessed: 07/01/2007 13:45
Written: 08/29/2002 13:00
File Size: 132,608 Bytes


• lsass.exe
LSA Shell (Export Version)
Version: 5.1.2600.2180 © Microsoft Corporation. All rights reserved.
Path: C:\WINDOWS\system32\lsass.exe
First Detected by WinPatrol: 04/16/2007 22:18
Stores security information for local user accounts.
Created: 04/09/2007 19:44
Accessed: 07/01/2007 13:45
Written: 08/04/2004 00:56
File Size: 13,312 Bytes


• scardsvr.exe
Smart Card Resource Management Server
Version: 5.1.2600.2180 © Microsoft Corporation. All rights reserved.
Path: C:\WINDOWS\system32\scardsvr.exe
First Detected by WinPatrol: 04/16/2007 22:18
Manages access to smart cards read by this computer. If this service is stopped, this computer will be unable to read smart cards. If this service is disabled, any services that explicitly depend on it will fail to start.
Created: 04/09/2007 19:45
Accessed: 07/01/2007 13:45
Written: 08/04/2004 00:56
File Size: 95,744 Bytes


• schedsvc.dll
Task Scheduler Engine
Version: 5.1.2600.2180 © Microsoft Corporation. All rights reserved.
Path: C:\WINDOWS\system32\schedsvc.dll
First Detected by WinPatrol: 04/16/2007 22:18
Enables a user to configure and schedule automated tasks on this computer. If this service is stopped, these tasks will not be run at their scheduled times. If this
neildush
Regular Member
 
Posts: 34
Joined: April 9th, 2007, 7:46 pm
Location: London

Unread postby random/random » July 3rd, 2007, 1:58 pm

This will take out some unnecessary startups:

Run HijackThis
Click on do a system scan only
Place a checkmark next to these lines(if still present)

O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - Startup: Adobe Acrobat Speed Launcher.lnk = ?
O4 - Startup: Adobe Acrobat Synchronizer.lnk = C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AdobeCollabSync.exe
O4 - Startup: Adobe Gamma.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: Adobe Acrobat Speed Launcher.lnk = ?
O4 - Global Startup: Adobe Acrobat Synchronizer.lnk = C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AdobeCollabSync.exe
O4 - Global Startup: Adobe Gamma.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe

Then close all windows except HijackThis and click Fix Checked
User avatar
random/random
Developer
Developer
 
Posts: 7731
Joined: December 18th, 2005, 3:30 pm

Unread postby NonSuch » July 13th, 2007, 5:10 am

This topic is now closed due to inactivity. If you wish it reopened, please send us an email to 'admin at malwareremoval.com' with a link to your thread.

You can help support this site from this link :
Donations For Malware Removal

Please do not contact us if you are not the topic starter. A valid, working link to the closed topic is required along with the user name used. If the user name does not match the one in the thread linked, the email will be deleted.
User avatar
NonSuch
Administrator
Administrator
 
Posts: 27302
Joined: February 23rd, 2005, 7:08 am
Location: California
Advertisement
Register to Remove


  • Similar Topics
    Replies
    Views
    Last post

Return to Infected? Virus, malware, adware, ransomware, oh my!



Who is online

Users browsing this forum: No registered users and 27 guests

Contact us:

Advertisements do not imply our endorsement of that product or service. Register to remove all ads. The forum is run by volunteers who donate their time and expertise. We make every attempt to ensure that the help and advice posted is accurate and will not cause harm to your computer. However, we do not guarantee that they are accurate and they are to be used at your own risk. All trademarks are the property of their respective owners.

Member site: UNITE Against Malware