[Last Call] Learn how to a build a cloud-first strategyRegister Now

x
?
Solved

Windows cannot access the specified device, path, or file.

Posted on 2006-06-07
43
Medium Priority
?
26,772 Views
Last Modified: 2011-08-18
I have a an exe. file that won't open normal mode, but will open in safe mode. In normal mode i get this error "Windows cannot access the specified device, path, or file. You may not have the  appropriate permission to access the item."

I already followed instructions on how to take ownership, still won't open in normal mode.
0
Comment
Question by:Vast41
  • 21
  • 12
  • 3
  • +5
41 Comments
 
LVL 32

Expert Comment

by:r-k
ID: 16857190
Taking ownership may not be enough. You also have to give yourself read/execute permissions.
0
 

Author Comment

by:Vast41
ID: 16857521
I think i did it properly (read/execute permissions, it still does not work, just in case can somebody give me the precedure anyways?
0
 
LVL 32

Expert Comment

by:r-k
ID: 16857537
If you right-click on the .exe file, select Properties -> Security
you should see your name in the "Users and Groups" box, and when you click on your name to highlight it, in the lower part of the window you should see that the various permissions that are highlighted. If your name is not there then click on "Add" and add it.

Another possibility is that the executable might need some dll that is missing. Does the error message mention anything like that, e.g. in the title bar of the error message window?
0
Technology Partners: We Want Your Opinion!

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

 

Author Comment

by:Vast41
ID: 16857559
Ok as per your instructions it is set, and no, the file may need some dll file but the the complete error message is as follows "Windows cannot access the specified device, path, or file. You may not have the  appropriate permission to access the item."

Be advised it works perfect in safe mode, and on my other machine perfectly all together. Thank you for quick response!
0
 
LVL 32

Expert Comment

by:r-k
ID: 16857584
Maybe you can create another username with Admin permissions, login as that user, and see if you can then run that file (but first add that new user in the Security properties for the file).
0
 

Author Comment

by:Vast41
ID: 16857748
I did exactly as per your instructions, it still will only work's in safe mode. This is becoming increasingly difficult.
0
 
LVL 32

Expert Comment

by:r-k
ID: 16857771
Interesting. I will post if I think of anything new. Hopefully someone with better insight will post in the meantime.
(I assume the exe file is just a single file, not part of some elaborate framework with multiple files).
0
 

Author Comment

by:Vast41
ID: 16857782
There are four files in this folder, one of them are a notepad, two dll files, and the exe, i will look forward to your help.
0
 
LVL 32

Expert Comment

by:r-k
ID: 16857795
To be on the safe side, check the Security Permissions on the two dll files, and make sure you have read/execute permissions there.
0
 

Author Comment

by:Vast41
ID: 16857803
OK
0
 

Author Comment

by:Vast41
ID: 16857833
Ok, done the two dll files have permission.
0
 

Author Comment

by:Vast41
ID: 16858610
Haven't heard anything about my issue in 7 hours please help!
0
 
LVL 3

Expert Comment

by:sundeepgopal
ID: 16858703
use this command in dos mode ..to get access and change permissions of any file

  CACLS "path to file" /T /P Administrators:F

Also read this link ..you'll understand how to use the above command accordingly

http://www.netadmintools.com/art18.html
0
 

Author Comment

by:Vast41
ID: 16858799
Tries several times and read the link you sent...it says when i tried  "The ACE does not apply to the current file/directory  "
0
 

Author Comment

by:Vast41
ID: 16859004
I tried system restore as a last resort, it did not work, would not let me restore. Do i need to repair my registry? I mean the file works in safe mode, so something, is preventing it from working in normal mode i would assume!
0
 

Author Comment

by:Vast41
ID: 16859087
Anyone out there?
0
 
LVL 32

Expert Comment

by:r-k
ID: 16859124
I am here :)
but just for a few minutes, and not with any great new ideas :(

Just a thought, but is that the only program that you are having trouble with?
Do all other programs launch OK?

You could try making a fresh copy of that program in a whole new folder and see if that helps.
0
 
LVL 32

Expert Comment

by:r-k
ID: 16859128
And by fresh copy, I means from the network or via CD, not from the copy that is currently giving you the error.
0
 

Author Comment

by:Vast41
ID: 16859138
Yes this particular file is the only file i am having an issue with, and yes i reinstalled it into it's own brand new folder already, it is still not working.
0
 
LVL 3

Expert Comment

by:sundeepgopal
ID: 16859144
what it says when u try to do system restore??...have you tried system restore by start ->run->msconfig -> launch system restore

Did u install any software before this problem occured ??..
 It's possible this problem can happen with any program attempting to load twice. Microsoft recognizes this problem as well

http://support.microsoft.com/default.aspx?scid=kb;en-us;264481
0
 

Author Comment

by:Vast41
ID: 16859150
No, there is only one source of this file, and i remind you it works fine on my other machine in normal mode. Please answer this question before you go...the fact that it works in safe mode, does that exclude a registry problem?
0
 

Author Comment

by:Vast41
ID: 16859160
I know your trying to go, i will read the link, i installed Spysweeper shortly before it happened, or around the time it happened. But i uninstalled it today, still have the same problem.
0
 
LVL 32

Expert Comment

by:r-k
ID: 16859166
Can you tell us in general terms what this exe file does? is it an anti-spyware program, e.g.

It might be useful to know what else is active on your system. Close all unnecessary windows, then open a command prompt and type:

 > tasklist /svc > list.txt

and copy-and-paste the contents of list.txt here.
0
 

Author Comment

by:Vast41
ID: 16859202
It loads multiple accounts/screen names. I really can't expound more. I don't know why but in command prompt the command  tasklist /svc > list.txt does not respond, can you please answer my regisrty question above?
0
 
LVL 3

Expert Comment

by:sundeepgopal
ID: 16859218

check this out ..this guy got the similar problem (go to the end of the page)...

http://www.computing.net/windowsxp/wwwboard/forum/135802.html

hope this helps
0
 
LVL 32

Expert Comment

by:r-k
ID: 16859225
"the fact that it works in safe mode, does that exclude a registry problem?"

That is a hard one to answer since I don't know what the root cause of the problem is. In general terms, safe mode means that the system leaves out non-essential drivers, services, startups etc. Any one of those extra items could be causing a problem. But, the information about what to start in normal mode is also saved in the Registry itself, so a problem with the Registry could in principle cause the problem.

So the short answer is, most likely the Registry is not to blame, but it can't be ruled out.
0
 

Author Comment

by:Vast41
ID: 16859240
Thanks i will be here waiting for more suggestions when you get back here :-)
0
 
LVL 32

Expert Comment

by:r-k
ID: 16859261
That last link by sundeepgopal is very interesting. I had never heard of something like that causing this problem, so please do check if that applies here.

A quick way to see what is starting from the Registry is with Autoruns:

(1) Download Autoruns from: http://www.sysinternals.com/Utilities/Autoruns.html

(2) Run the program. It lists a bunch of things that start when Windows starts.

(3) From the menu bar, select Options, and uncheck "Include Empty Locations" and "check" "Hide Microsoft Entries"
     then click on the Refresh icon.

(4) This will give you a shorter, more meaningful list.

(5) Examine that list and disable anything suspicious by un-checking it. Then reboot and see if it helped.

(6) If not, or if not sure, you can use the File -> Save as.. option in Autoruns to save the list to a text file and then copy and paste it here.
0
 

Author Comment

by:Vast41
ID: 16859305
Thanks Sundeepgopal  tried the Fixswen Toolat  went to the end of the page i downloaded it, and installed it, does not fix the problem. As far as Spysweeper is concerned i uninstalled it.
0
 

Author Comment

by:Vast41
ID: 16859339
Autorun results, i have no idea what this stuff is, please help.

HKLM\System\CurrentControlSet\Control\Terminal Server\Wds\rdpwd\StartupPrograms                  

+ rdpclip      RDP Clip Monitor      Microsoft Corporation      c:\windows\system32\rdpclip.exe

HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Userinit                  

+ C:\WINDOWS\system32\userinit.exe      Userinit Logon Application      Microsoft Corporation      c:\windows\system32\userinit.exe

HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Shell                  

+ Explorer.exe      Windows Explorer      Microsoft Corporation      c:\windows\explorer.exe

HKLM\SOFTWARE\Classes\Protocols\Filter                  

+ application/octet-stream      Microsoft .NET Runtime Execution Engine      Microsoft Corporation      c:\windows\system32\mscoree.dll

+ application/x-complus      Microsoft .NET Runtime Execution Engine      Microsoft Corporation      c:\windows\system32\mscoree.dll

+ application/x-msdownload      Microsoft .NET Runtime Execution Engine      Microsoft Corporation      c:\windows\system32\mscoree.dll

+ Class Install Handler      OLE32 Extensions for Win32      Microsoft Corporation      c:\windows\system32\urlmon.dll

+ deflate      OLE32 Extensions for Win32      Microsoft Corporation      c:\windows\system32\urlmon.dll

+ gzip      OLE32 Extensions for Win32      Microsoft Corporation      c:\windows\system32\urlmon.dll

+ lzdhtml      OLE32 Extensions for Win32      Microsoft Corporation      c:\windows\system32\urlmon.dll

+ text/webviewhtml      Windows Shell Common Dll      Microsoft Corporation      c:\windows\system32\shell32.dll

HKLM\SOFTWARE\Classes\Protocols\Handler                  

+ about      Microsoft (R) HTML Viewer      Microsoft Corporation      c:\windows\system32\mshtml.dll

+ cdl      OLE32 Extensions for Win32      Microsoft Corporation      c:\windows\system32\urlmon.dll

+ dvd      ActiveX control for streaming video      Microsoft Corporation      c:\windows\system32\msvidctl.dll

+ file      OLE32 Extensions for Win32      Microsoft Corporation      c:\windows\system32\urlmon.dll

+ ftp      OLE32 Extensions for Win32      Microsoft Corporation      c:\windows\system32\urlmon.dll

+ gopher      OLE32 Extensions for Win32      Microsoft Corporation      c:\windows\system32\urlmon.dll

+ http      OLE32 Extensions for Win32      Microsoft Corporation      c:\windows\system32\urlmon.dll

+ https      OLE32 Extensions for Win32      Microsoft Corporation      c:\windows\system32\urlmon.dll

+ its      Microsoft® InfoTech Storage System Library      Microsoft Corporation      c:\windows\system32\itss.dll

+ javascript      Microsoft (R) HTML Viewer      Microsoft Corporation      c:\windows\system32\mshtml.dll

+ local      OLE32 Extensions for Win32      Microsoft Corporation      c:\windows\system32\urlmon.dll

+ mailto      Microsoft (R) HTML Viewer      Microsoft Corporation      c:\windows\system32\mshtml.dll

+ mhtml      Microsoft Internet Messaging API      Microsoft Corporation      c:\windows\system32\inetcomm.dll

+ mk      OLE32 Extensions for Win32      Microsoft Corporation      c:\windows\system32\urlmon.dll

+ ms-its      Microsoft® InfoTech Storage System Library      Microsoft Corporation      c:\windows\system32\itss.dll

+ res      Microsoft (R) HTML Viewer      Microsoft Corporation      c:\windows\system32\mshtml.dll

+ sysimage      Microsoft (R) HTML Viewer      Microsoft Corporation      c:\windows\system32\mshtml.dll

+ tv      ActiveX control for streaming video      Microsoft Corporation      c:\windows\system32\msvidctl.dll

+ vbscript      Microsoft (R) HTML Viewer      Microsoft Corporation      c:\windows\system32\mshtml.dll

+ wia      WIA Scripting Layer      Microsoft Corporation      c:\windows\system32\wiascr.dll

HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components                  

+ Address Book 6      Outlook Express Setup Library      Microsoft Corporation      c:\program files\outlook express\setup50.exe

+ Browser Customizations      Microsoft Internet Explorer Customization DLL      Microsoft Corporation      c:\windows\system32\iedkcs32.dll

+ Internet Explorer      Windows NT User Data Migration Tool      Microsoft Corporation      c:\windows\system32\shmgrate.exe

+ Internet Explorer      Windows Setup API      Microsoft Corporation      c:\windows\system32\setupapi.dll

+ Internet Explorer 6      IE 5.0 Per-User Install Utility      Microsoft Corporation      c:\windows\system32\ie4uinit.exe

+ Microsoft Outlook Express 6      Outlook Express Setup Library      Microsoft Corporation      c:\program files\outlook express\setup50.exe

+ Microsoft Windows Media Player      ADVPACK      Microsoft Corporation      c:\windows\system32\advpack.dll

+ NetMeeting 3.01      ADVPACK      Microsoft Corporation      c:\windows\system32\advpack.dll

+ Outlook Express      Windows NT User Data Migration Tool      Microsoft Corporation      c:\windows\system32\shmgrate.exe

+ Themes Setup      Microsoft(C) Register Server      Microsoft Corporation      c:\windows\system32\regsvr32.exe

+ Windows Desktop Update      Microsoft(C) Register Server      Microsoft Corporation      c:\windows\system32\regsvr32.exe

+ Windows Media Player      Microsoft Windows Media Player Setup Utility      Microsoft Corporation      c:\windows\inf\unregmp2.exe

+ Windows Messenger 4.7      ADVPACK      Microsoft Corporation      c:\windows\system32\advpack.dll

HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SharedTaskScheduler                  

+ Browseui preloader      Shell Browser UI Library      Microsoft Corporation      c:\windows\system32\browseui.dll

+ Component Categories cache daemon      Shell Browser UI Library      Microsoft Corporation      c:\windows\system32\browseui.dll

HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad                  

+ CDBurn      Windows Shell Common Dll      Microsoft Corporation      c:\windows\system32\shell32.dll

+ PostBootReminder      Windows Shell Common Dll      Microsoft Corporation      c:\windows\system32\shell32.dll

+ SysTray      Systray shell service object      Microsoft Corporation      c:\windows\system32\stobject.dll

+ WebCheck      Web Site Monitor      Microsoft Corporation      c:\windows\system32\webcheck.dll

HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks                  

+ shell32.dll      Windows Shell Common Dll      Microsoft Corporation      c:\windows\system32\shell32.dll

HKLM\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved                  

+ %DESC_PublishDropTarget%      Photo Printing Wizard      Microsoft Corporation      c:\windows\system32\photowiz.dll

+ &Address      Shell Browser UI Library      Microsoft Corporation      c:\windows\system32\browseui.dll

+ .CAB file viewer      Cabinet File Viewer Shell Extension      Microsoft Corporation      c:\windows\system32\cabview.dll

+ Accessible      Shell Browser UI Library      Microsoft Corporation      c:\windows\system32\browseui.dll

+ ActiveX Cache Folder      Object Control Viewer      Microsoft Corporation      c:\windows\system32\occache.dll

+ Address Bar Parser      Shell Browser UI Library      Microsoft Corporation      c:\windows\system32\browseui.dll

+ Address EditBox      Shell Browser UI Library      Microsoft Corporation      c:\windows\system32\browseui.dll

+ Administrative Tools      Shell Doc Object and Control Library      Microsoft Corporation      c:\windows\system32\shdocvw.dll

+ America Online      AOL Shell Extension      America Online, Inc.      c:\program files\common files\aolshare\shell\us\shellext.dll

+ AOL Broadband      AOL Shell Extension      America Online, Inc.      c:\program files\common files\aolshare\shell\shellext_aolbroadband.dll

+ Audio Media Properties Handler      Media File Property Extractor Shell Extension      Microsoft Corporation      c:\windows\system32\shmedia.dll

+ Augmented Shell Folder      Shell Browser UI Library      Microsoft Corporation      c:\windows\system32\browseui.dll

+ Augmented Shell Folder 2      Shell Browser UI Library      Microsoft Corporation      c:\windows\system32\browseui.dll

+ Auto Update Property Sheet Extension      Automatic Updates Control Panel      Microsoft Corporation      c:\windows\system32\wuaucpl.cpl

+ AVG7 Find Extension      AVG Shell Extension      GRISOFT, s.r.o.      c:\program files\grisoft\avg free\avgse.dll

+ AVG7 Shell Extension      AVG Shell Extension      GRISOFT, s.r.o.      c:\program files\grisoft\avg free\avgse.dll

+ Avi Properties Handler      Media File Property Extractor Shell Extension      Microsoft Corporation      c:\windows\system32\shmedia.dll

+ BandProxy      Shell Browser UI Library      Microsoft Corporation      c:\windows\system32\browseui.dll

+ Briefcase      Windows Briefcase      Microsoft Corporation      c:\windows\system32\syncui.dll

+ CD Copy Shell Extension      IDisc Shellextension      Pinnacle Systems, Inc.      c:\windows\system32\shellext\cdwshext.dll

+ CD Wizard Shell Extension      IDisc Shellextension      Pinnacle Systems, Inc.      c:\windows\system32\shellext\cdwshext.dll

+ CDF Extension Copy Hook      Shell Doc Object and Control Library      Microsoft Corporation      c:\windows\system32\shdocvw.dll

+ Channel File      Channel Definition File Viewer      Microsoft Corporation      c:\windows\system32\cdfview.dll

+ Channel Handler Object      Channel Definition File Viewer      Microsoft Corporation      c:\windows\system32\cdfview.dll

+ Channel Menu      Channel Definition File Viewer      Microsoft Corporation      c:\windows\system32\cdfview.dll

+ Channel Properties      Channel Definition File Viewer      Microsoft Corporation      c:\windows\system32\cdfview.dll

+ Channel Shortcut      Channel Definition File Viewer      Microsoft Corporation      c:\windows\system32\cdfview.dll

+ Code Download Agent      Web Site Monitor      Microsoft Corporation      c:\windows\system32\webcheck.dll

+ Compatibility Page      Compatibility Tab Shell Extension DLL      Microsoft Corporation      c:\windows\system32\slayerxp.dll

+ Compressed (zipped) Folder      Compressed (zipped) Folders      Microsoft Corporation      c:\windows\system32\zipfldr.dll

+ Compressed (zipped) Folder Right Drag Handler      Compressed (zipped) Folders      Microsoft Corporation      c:\windows\system32\zipfldr.dll

+ Compressed (zipped) Folder SendTo Target      Compressed (zipped) Folders      Microsoft Corporation      c:\windows\system32\zipfldr.dll

+ ConnectionAgent      Web Site Monitor      Microsoft Corporation      c:\windows\system32\webcheck.dll

+ Crypto PKO Extension      Crypto Shell Extensions      Microsoft Corporation      c:\windows\system32\cryptext.dll

+ Crypto Sign Extension      Crypto Shell Extensions      Microsoft Corporation      c:\windows\system32\cryptext.dll

+ Custom MRU AutoCompleted List      Shell Browser UI Library      Microsoft Corporation      c:\windows\system32\browseui.dll

+ Darwin App Publisher      Shell Application Manager      Microsoft Corporation      c:\windows\system32\appwiz.cpl

+ DfsShell      Distributed File System shell extension      Microsoft Corporation      c:\windows\system32\dfsshlex.dll

+ Directory Context Menu Verbs      Directory Service Common UI      Microsoft Corporation      c:\windows\system32\dsuiext.dll

+ Directory Object Find      Directory Service Find      Microsoft Corporation      c:\windows\system32\dsquery.dll

+ Directory Property UI      Directory Service Common UI      Microsoft Corporation      c:\windows\system32\dsuiext.dll

+ Directory Query UI      Directory Service Find      Microsoft Corporation      c:\windows\system32\dsquery.dll

+ Directory Start/Search Find      Directory Service Find      Microsoft Corporation      c:\windows\system32\dsquery.dll

+ Disk Copy Extension      Windows DiskCopy      Microsoft Corporation      c:\windows\system32\diskcopy.dll

+ Disk Quota UI      Windows Shell Disk Quota UI DLL      Microsoft Corporation      c:\windows\system32\dskquoui.dll

+ Display Adapter CPL Extension      Advanced display adapter properties      Microsoft Corporation      c:\windows\system32\deskadp.dll

+ Display Monitor CPL Extension      Advanced display monitor properties      Microsoft Corporation      c:\windows\system32\deskmon.dll

+ Display TroubleShoot CPL Extension      Advanced display performance properties      Microsoft Corporation      c:\windows\system32\deskperf.dll

+ Download Status      Shell Browser UI Library      Microsoft Corporation      c:\windows\system32\browseui.dll

+ DS Security Page      Directory Service Security UI      Microsoft Corporation      c:\windows\system32\dssec.dll

+ E-mail      Shell Doc Object and Control Library      Microsoft Corporation      c:\windows\system32\shdocvw.dll

+ Explorer Band      Shell Doc Object and Control Library      Microsoft Corporation      c:\windows\system32\shdocvw.dll

+ Extensions Manager Folder      Extensions Manager      Microsoft Corporation      c:\windows\system32\extmgr.dll

+ Favorites Band      Shell Doc Object and Control Library      Microsoft Corporation      c:\windows\system32\shdocvw.dll

+ Fonts      Windows Font Folder      Microsoft Corporation      c:\windows\system32\fontext.dll

+ Fonts      Shell Doc Object and Control Library      Microsoft Corporation      c:\windows\system32\shdocvw.dll

+ For &People...      Find People      Microsoft Corporation      c:\program files\outlook express\wabfind.dll

+ FTP Folders Webview      Microsoft Internet Explorer FTP Folder Shell Extension      Microsoft Corporation      c:\windows\system32\msieftp.dll

+ Fusion Cache      Microsoft .NET Runtime Execution Engine      Microsoft Corporation      c:\windows\system32\mscoree.dll

+ GDI+ file thumbnail extractor      Windows Picture and Fax Viewer      Microsoft Corporation      c:\windows\system32\shimgvw.dll

+ Get a Passport Wizard      Map Network Drives/Network Places Wizard      Microsoft Corporation      c:\windows\system32\netplwiz.dll

+ Global Folder Settings      Shell Browser UI Library      Microsoft Corporation      c:\windows\system32\browseui.dll

+ Help and Support      Shell Doc Object and Control Library      Microsoft Corporation      c:\windows\system32\shdocvw.dll

+ Help and Support      Shell Doc Object and Control Library      Microsoft Corporation      c:\windows\system32\shdocvw.dll

+ History      Shell Doc Object and Control Library      Microsoft Corporation      c:\windows\system32\shdocvw.dll

+ HTML Thumbnail Extractor      Windows Picture and Fax Viewer      Microsoft Corporation      c:\windows\system32\shimgvw.dll

+ HyperTerminal Icon Ext      HyperTerminal Applet Library      Hilgraeve, Inc.      c:\windows\system32\hticons.dll

+ ICC Profile      Microsoft Color Matching System User Interface DLL      Microsoft Corporation      c:\windows\system32\icmui.dll

+ ICM Monitor Management      Microsoft Color Matching System User Interface DLL      Microsoft Corporation      c:\windows\system32\icmui.dll

+ ICM Printer Management      Microsoft Color Matching System User Interface DLL      Microsoft Corporation      c:\windows\system32\icmui.dll

+ ICM Scanner Management      Microsoft Color Matching System User Interface DLL      Microsoft Corporation      c:\windows\system32\icmui.dll

+ IE4 Suite Splash Screen      Shell Doc Object and Control Library      Microsoft Corporation      c:\windows\system32\shdocvw.dll

+ In-pane search      Shell Browser UI Library      Microsoft Corporation      c:\windows\system32\browseui.dll

+ Installed Apps Enumerator      Shell Application Manager      Microsoft Corporation      c:\windows\system32\appwiz.cpl

+ InstantWrite Shellextension      InstantWrite Shellextension      VOB Computersysteme GmbH      c:\windows\system32\shellext\iwshex.dll

+ Internet      Shell Doc Object and Control Library      Microsoft Corporation      c:\windows\system32\shdocvw.dll

+ Internet Name Space      Shell Doc Object and Control Library      Microsoft Corporation      c:\windows\system32\shdocvw.dll

+ InternetShortcut      Shell Doc Object and Control Library      Microsoft Corporation      c:\windows\system32\shdocvw.dll

+ ISFBand OC      Shell Doc Object and Control Library      Microsoft Corporation      c:\windows\system32\shdocvw.dll

+ Microsoft Agent Character Property Sheet Handler      Microsoft Agent Property Sheet Handler      Microsoft Corporation      c:\windows\msagent\agentpsh.dll

+ Microsoft AutoComplete      Shell Browser UI Library      Microsoft Corporation      c:\windows\system32\browseui.dll

+ Microsoft Browser Architecture      Shell Doc Object and Control Library      Microsoft Corporation      c:\windows\system32\shdocvw.dll

+ Microsoft BrowserBand      Shell Browser UI Library      Microsoft Corporation      c:\windows\system32\browseui.dll

+ Microsoft Data Link      Microsoft Data Access - OLE DB Core Services      Microsoft Corporation      c:\program files\common files\system\ole db\oledb32.dll

+ Microsoft DocProp Inplace Calendar Control      Microsoft DocProp Shell Ext      Microsoft Corporation      c:\windows\system32\docprop2.dll

+ Microsoft DocProp Inplace Droplist Combo Control      Microsoft DocProp Shell Ext      Microsoft Corporation      c:\windows\system32\docprop2.dll

+ Microsoft DocProp Inplace Edit Box Control      Microsoft DocProp Shell Ext      Microsoft Corporation      c:\windows\system32\docprop2.dll

+ Microsoft DocProp Inplace ML Edit Box Control      Microsoft DocProp Shell Ext      Microsoft Corporation      c:\windows\system32\docprop2.dll

+ Microsoft DocProp Inplace Time Control      Microsoft DocProp Shell Ext      Microsoft Corporation      c:\windows\system32\docprop2.dll

+ Microsoft DocProp Shell Ext      Microsoft DocProp Shell Ext      Microsoft Corporation      c:\windows\system32\docprop2.dll

+ Microsoft History AutoComplete List      Shell Browser UI Library      Microsoft Corporation      c:\windows\system32\browseui.dll

+ Microsoft Internet Toolbar      Shell Browser UI Library      Microsoft Corporation      c:\windows\system32\browseui.dll

+ Microsoft Multiple AutoComplete List Container      Shell Browser UI Library      Microsoft Corporation      c:\windows\system32\browseui.dll

+ Microsoft Shell Folder AutoComplete List      Shell Browser UI Library      Microsoft Corporation      c:\windows\system32\browseui.dll

+ Microsoft Url History Service      Shell Doc Object and Control Library      Microsoft Corporation      c:\windows\system32\shdocvw.dll

+ Microsoft Url Search Hook      Shell Doc Object and Control Library      Microsoft Corporation      c:\windows\system32\shdocvw.dll

+ Midi Properties Handler      Media File Property Extractor Shell Extension      Microsoft Corporation      c:\windows\system32\shmedia.dll

+ MMC Icon Handler      MMC Shell Extension DLL      Microsoft Corporation      c:\windows\system32\mmcshext.dll

+ MRU AutoComplete List      Shell Browser UI Library      Microsoft Corporation      c:\windows\system32\browseui.dll

+ Multimedia File Property Sheet      Control Panel Drivers Applet      Microsoft Corporation      c:\windows\system32\mmsys.cpl

+ MyDocs Copy Hook      My Documents Folder UI      Microsoft Corporation      c:\windows\system32\mydocs.dll

+ MyDocs Drop Target      My Documents Folder UI      Microsoft Corporation      c:\windows\system32\mydocs.dll

+ MyDocs Properties      My Documents Folder UI      Microsoft Corporation      c:\windows\system32\mydocs.dll

+ Network Connections      Network Connections Shell      Microsoft Corporation      c:\windows\system32\netshell.dll

+ Network Connections      Network Connections Shell      Microsoft Corporation      c:\windows\system32\netshell.dll

+ NTFS Security Page      Security Shell Extension      Microsoft Corporation      c:\windows\system32\rshx32.dll

+ Offline Files Folder      Client Side Caching UI      Microsoft Corporation      c:\windows\system32\cscui.dll

+ Offline Files Folder Options      Client Side Caching UI      Microsoft Corporation      c:\windows\system32\cscui.dll

+ Offline Files Menu      Client Side Caching UI      Microsoft Corporation      c:\windows\system32\cscui.dll

+ OLE Docfile Property Page      OLE DocFile Property Page      Microsoft Corporation      c:\windows\system32\docprop.dll

+ PlusPack CPL Extension      Windows Theme API      Microsoft Corporation      c:\windows\system32\themeui.dll

+ PostAgent      Web Site Monitor      Microsoft Corporation      c:\windows\system32\webcheck.dll

+ Previous Versions      Previous Versions property page      Microsoft Corporation      c:\windows\system32\twext.dll

+ Previous Versions Property Page      Previous Versions property page      Microsoft Corporation      c:\windows\system32\twext.dll

+ Print Ordering via the Web      Map Network Drives/Network Places Wizard      Microsoft Corporation      c:\windows\system32\netplwiz.dll

+ Printers Security Page      Security Shell Extension      Microsoft Corporation      c:\windows\system32\rshx32.dll

+ Registry Tree Options Utility      Shell Browser UI Library      Microsoft Corporation      c:\windows\system32\browseui.dll

+ Remote Sessions CPL Extension      Remote Sessions CPL Extension      Microsoft Corporation      c:\windows\system32\remotepg.dll

+ Run...      Shell Doc Object and Control Library      Microsoft Corporation      c:\windows\system32\shdocvw.dll

+ Scanners & Cameras      Imaging Devices Shell Folder UI      Microsoft Corporation      c:\windows\system32\wiashext.dll

+ Scanners & Cameras      Imaging Devices Shell Folder UI      Microsoft Corporation      c:\windows\system32\wiashext.dll

+ Scanners & Cameras      Imaging Devices Shell Folder UI      Microsoft Corporation      c:\windows\system32\wiashext.dll

+ Scanners & Cameras      Imaging Devices Shell Folder UI      Microsoft Corporation      c:\windows\system32\wiashext.dll

+ Scanners & Cameras      Imaging Devices Shell Folder UI      Microsoft Corporation      c:\windows\system32\wiashext.dll

+ Scheduled Tasks      Task Scheduler interface DLL      Microsoft Corporation      c:\windows\system32\mstask.dll

+ Search      Shell Doc Object and Control Library      Microsoft Corporation      c:\windows\system32\shdocvw.dll

+ Search Assistant OC      Shell Doc Object and Control Library      Microsoft Corporation      c:\windows\system32\shdocvw.dll

+ Search Band      Shell Browser UI Library      Microsoft Corporation      c:\windows\system32\browseui.dll

+ Sendmail service      Send Mail      Microsoft Corporation      c:\windows\system32\sendmail.dll

+ Sendmail service      Send Mail      Microsoft Corporation      c:\windows\system32\sendmail.dll

+ Set Program Access and Defaults      Shell Doc Object and Control Library      Microsoft Corporation      c:\windows\system32\shdocvw.dll

+ Shell Application Manager      Shell Application Manager      Microsoft Corporation      c:\windows\system32\appwiz.cpl

+ Shell Automation Inproc Service      Shell Doc Object and Control Library      Microsoft Corporation      c:\windows\system32\shdocvw.dll

+ Shell Band Site Menu      Shell Browser UI Library      Microsoft Corporation      c:\windows\system32\browseui.dll

+ Shell DeskBar      Shell Browser UI Library      Microsoft Corporation      c:\windows\system32\browseui.dll

+ Shell DeskBarApp      Shell Browser UI Library      Microsoft Corporation      c:\windows\system32\browseui.dll

+ Shell DocObject Viewer      Shell Doc Object and Control Library      Microsoft Corporation      c:\windows\system32\shdocvw.dll

+ Shell extensions for Microsoft Windows Network objects      Network object shell UI      Microsoft Corporation      c:\windows\system32\ntlanui2.dll

+ Shell Extensions for RealOne Player      RealPlayer Shell Extensions      RealNetworks, Inc.      c:\program files\real\realplayer\rpshell.dll

+ Shell extensions for sharing      Shell extensions for sharing      Microsoft Corporation      c:\windows\system32\ntshrui.dll

+ Shell extensions for sharing      Shell extensions for sharing      Microsoft Corporation      c:\windows\system32\ntshrui.dll

+ Shell extensions for Windows Script Host      Microsoft (r) Shell Extension for Windows Script Host      Microsoft Corporation      c:\windows\system32\wshext.dll

+ Shell Image Data Factory      Windows Picture and Fax Viewer      Microsoft Corporation      c:\windows\system32\shimgvw.dll

+ Shell Image Property Handler      Windows Picture and Fax Viewer      Microsoft Corporation      c:\windows\system32\shimgvw.dll

+ Shell Image Verbs      Windows Picture and Fax Viewer      Microsoft Corporation      c:\windows\system32\shimgvw.dll

+ Shell properties for a DS object      Directory Service Find      Microsoft Corporation      c:\windows\system32\dsquery.dll

+ Shell Publishing Wizard Object      Map Network Drives/Network Places Wizard      Microsoft Corporation      c:\windows\system32\netplwiz.dll

+ Shell Rebar BandSite      Shell Browser UI Library      Microsoft Corporation      c:\windows\system32\browseui.dll

+ Shell Scrap DataHandler      Shell scrap object handler      Microsoft Corporation      c:\windows\system32\shscrap.dll

+ Subscription Folder      Web Site Monitor      Microsoft Corporation      c:\windows\system32\webcheck.dll

+ Subscription Mgr      Web Site Monitor      Microsoft Corporation      c:\windows\system32\webcheck.dll

+ Summary Info Thumbnail handler (DOCFILES)      Windows Picture and Fax Viewer      Microsoft Corporation      c:\windows\system32\shimgvw.dll

+ Taskbar and Start Menu      Windows Shell Common Dll      Microsoft Corporation      c:\windows\system32\shell32.dll

+ Tasks Folder Icon Handler      Task Scheduler interface DLL      Microsoft Corporation      c:\windows\system32\mstask.dll

+ Tasks Folder Shell Extension      Task Scheduler interface DLL      Microsoft Corporation      c:\windows\system32\mstask.dll

+ Temporary Internet Files      Shell Doc Object and Control Library      Microsoft Corporation      c:\windows\system32\shdocvw.dll

+ Temporary Internet Files      Shell Doc Object and Control Library      Microsoft Corporation      c:\windows\system32\shdocvw.dll

+ The Internet      Shell Doc Object and Control Library      Microsoft Corporation      c:\windows\system32\shdocvw.dll

+ Track Popup Bar      Shell Browser UI Library      Microsoft Corporation      c:\windows\system32\browseui.dll

+ TrayAgent      Web Site Monitor      Microsoft Corporation      c:\windows\system32\webcheck.dll

+ TridentImageExtractor      Shell Browser UI Library      Microsoft Corporation      c:\windows\system32\browseui.dll

+ Trojan Remover Shell Extension      Trojan Remover Shell Extension      Simply Super Software      c:\program files\trojan remover\trshlex.dll

+ User Accounts      Map Network Drives/Network Places Wizard      Microsoft Corporation      c:\windows\system32\netplwiz.dll

+ User Assist      Shell Browser UI Library      Microsoft Corporation      c:\windows\system32\browseui.dll

+ Video Media Properties Handler      Media File Property Extractor Shell Extension      Microsoft Corporation      c:\windows\system32\shmedia.dll

+ Video Thumbnail Extractor      Media File Property Extractor Shell Extension      Microsoft Corporation      c:\windows\system32\shmedia.dll

+ Wav Properties Handler      Media File Property Extractor Shell Extension      Microsoft Corporation      c:\windows\system32\shmedia.dll

+ Web Printer Shell Extension      Print UI DLL      Microsoft Corporation      c:\windows\system32\printui.dll

+ Web Publishing Wizard      Map Network Drives/Network Places Wizard      Microsoft Corporation      c:\windows\system32\netplwiz.dll

+ Web Search      Shell Browser UI Library      Microsoft Corporation      c:\windows\system32\browseui.dll

+ WebCheck      Web Site Monitor      Microsoft Corporation      c:\windows\system32\webcheck.dll

+ WebCheck SyncMgr Handler      Web Site Monitor      Microsoft Corporation      c:\windows\system32\webcheck.dll

+ WebCheckChannelAgent      Web Site Monitor      Microsoft Corporation      c:\windows\system32\webcheck.dll

+ WebCheckWebCrawler      Web Site Monitor      Microsoft Corporation      c:\windows\system32\webcheck.dll

+ Windows Media Player Add to Playlist Context Menu Handler      Windows Media Player Launcher      Microsoft Corporation      c:\windows\system32\wmpshell.dll

+ Windows Media Player Burn Audio CD Context Menu Handler      Windows Media Player Launcher      Microsoft Corporation      c:\windows\system32\wmpshell.dll

+ Windows Media Player Play as Playlist Context Menu Handler      Windows Media Player Launcher      Microsoft Corporation      c:\windows\system32\wmpshell.dll

HKLM\Software\Classes\Folder\Shellex\ColumnHandlers                  

+ {0D2E74C4-3C34-11d2-A27E-00C04FC30871}      Windows Shell Common Dll      Microsoft Corporation      c:\windows\system32\shell32.dll

+ {24F14F01-7B1C-11d1-838f-0000F80461CF}      Windows Shell Common Dll      Microsoft Corporation      c:\windows\system32\shell32.dll

+ {24F14F02-7B1C-11d1-838f-0000F80461CF}      Windows Shell Common Dll      Microsoft Corporation      c:\windows\system32\shell32.dll

+ {66742402-F9B9-11D1-A202-0000F81FEDEE}      Windows Shell Common Dll      Microsoft Corporation      c:\windows\system32\shell32.dll

HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects                  

+ AcroIEHlprObj Class      AcroIEHelper Module            c:\program files\adobe\acrobat 5.0\reader\activex\acroiehelper.ocx

+ Google Toolbar Helper      Google IE Client Toolbar      Google Inc.      c:\program files\google\googletoolbar2.dll

+ SSVHelper Class      Java(TM) 2 Platform Standard Edition binary      Sun Microsystems, Inc.      c:\program files\java\jre1.5.0_06\bin\ssv.dll

+ {53707962-6F74-2D53-2644-206D7942484F}      Bad download blocker      Safer Networking Limited      c:\program files\spybot - search & destroy\sdhelper.dll

HKCU\Software\Microsoft\Internet Explorer\UrlSearchHooks                  

+ shdocvw.dll      Shell Doc Object and Control Library      Microsoft Corporation      c:\windows\system32\shdocvw.dll

HKLM\Software\Microsoft\Internet Explorer\Toolbar                  

+ googletoolbar2.dll      Google IE Client Toolbar      Google Inc.      c:\program files\google\googletoolbar2.dll

+ yt.dll      Yahoo! Toolbar      Yahoo! Inc.      c:\program files\yahoo!\companion\installs\cpn\yt.dll

HKLM\Software\Microsoft\Internet Explorer\Extensions                  

+ Uninstall BitDefender Online Scanner v8                  c:\windows\bdoscandel.exe

+ Windows Messenger      Windows Messenger      Microsoft Corporation      c:\program files\messenger\msmsgs.exe

HKLM\System\CurrentControlSet\Services                  

+ AOL ACS      AOL Connectivity Service      America Online, Inc.      c:\program files\common files\aol\acs\aolacsd.exe

+ Ati HotKey Poller                  c:\windows\system32\ati2evxx.exe

+ ATI Smart      ATI Smart            c:\windows\system32\ati2sgag.exe

+ AudioSrv      Manages audio devices for Windows-based programs. If this service is stopped, audio devices and effects will not function properly. If this service is disabled, any services that explicitly depend on it will fail to start.      Microsoft Corporation      c:\windows\system32\svchost.exe

+ Avg7Alrt      AVG Alert Manager      GRISOFT, s.r.o.      c:\program files\grisoft\avg free\avgamsvr.exe

+ Avg7UpdSvc      AVG Update Service      GRISOFT, s.r.o.      c:\program files\grisoft\avg free\avgupsvc.exe

+ Browser      Maintains an updated list of computers on the network and supplies this list to computers designated as browsers. If this service is stopped, this list will not be updated or maintained. If this service is disabled, any services that explicitly depend on it will fail to start.      Microsoft Corporation      c:\windows\system32\svchost.exe

+ CryptSvc      Provides three management services: Catalog Database Service, which confirms the signatures of Windows files; Protected Root Service, which adds and removes Trusted Root Certification Authority certificates from this computer; and Key Service, which helps enroll this computer for certificates. If this service is stopped, these management services will not function properly. If this service is disabled, any services that explicitly depend on it will fail to start.      Microsoft Corporation      c:\windows\system32\svchost.exe

+ DcomLaunch      Provides launch functionality for DCOM services.      Microsoft Corporation      c:\windows\system32\svchost.exe

+ Dhcp      Manages network configuration by registering and updating IP addresses and DNS names.      Microsoft Corporation      c:\windows\system32\svchost.exe

+ dmserver      Detects and monitors new hard disk drives and sends disk volume information to Logical Disk Manager Administrative Service for configuration. If this service is stopped, dynamic disk status and configuration information may become out of date. If this service is disabled, any services that explicitly depend on it will fail to start.      Microsoft Corporation      c:\windows\system32\svchost.exe

+ Dnscache      Resolves and caches Domain Name System (DNS) names for this computer. If this service is stopped, this computer will not be able to resolve DNS names and locate Active Directory domain controllers. If this service is disabled, any services that explicitly depend on it will fail to start.      Microsoft Corporation      c:\windows\system32\svchost.exe

+ ERSvc      Allows error reporting for services and applictions running in non-standard environments.      Microsoft Corporation      c:\windows\system32\svchost.exe

+ Eventlog      Enables event log messages issued by Windows-based programs and components to be viewed in Event Viewer. This service cannot be stopped.      Microsoft Corporation      c:\windows\system32\services.exe

+ helpsvc      Enables Help and Support Center to run on this computer. If this service is stopped, Help and Support Center will be unavailable. If this service is disabled, any services that explicitly depend on it will fail to start.      Microsoft Corporation      c:\windows\system32\svchost.exe

+ lanmanserver      Supports file, print, and named-pipe sharing over the network for this computer. If this service is stopped, these functions will be unavailable. If this service is disabled, any services that explicitly depend on it will fail to start.      Microsoft Corporation      c:\windows\system32\svchost.exe

+ lanmanworkstation      Creates and maintains client network connections to remote servers. If this service is stopped, these connections will be unavailable. If this service is disabled, any services that explicitly depend on it will fail to start.      Microsoft Corporation      c:\windows\system32\svchost.exe

+ LmHosts      Enables support for NetBIOS over TCP/IP (NetBT) service and NetBIOS name resolution.      Microsoft Corporation      c:\windows\system32\svchost.exe

+ PlugPlay      Enables a computer to recognize and adapt to hardware changes with little or no user input. Stopping or disabling this service will result in system instability.      Microsoft Corporation      c:\windows\system32\services.exe

+ PolicyAgent      Manages IP security policy and starts the ISAKMP/Oakley (IKE) and the IP security driver.      Microsoft Corporation      c:\windows\system32\lsass.exe

+ ProtectedStorage      Provides protected storage for sensitive data, such as private keys, to prevent access by unauthorized services, processes, or users.      Microsoft Corporation      c:\windows\system32\lsass.exe

+ RemoteRegistry      Enables remote users to modify registry settings on this computer. If this service is stopped, the registry can be modified only by users on this computer. If this service is disabled, any services that explicitly depend on it will fail to start.      Microsoft Corporation      c:\windows\system32\svchost.exe

+ RpcSs      Provides the endpoint mapper and other miscellaneous RPC services.      Microsoft Corporation      c:\windows\system32\svchost.exe

+ SamSs      Stores security information for local user accounts.      Microsoft Corporation      c:\windows\system32\lsass.exe

+ Schedule      Enables a user to configure and schedule automated tasks on this computer. If this service is stopped, these tasks will not be run at their scheduled times. If this service is disabled, any services that explicitly depend on it will fail to start.      Microsoft Corporation      c:\windows\system32\svchost.exe

+ seclogon      Enables starting processes under alternate credentials. If this service is stopped, this type of logon access will be unavailable. If this service is disabled, any services that explicitly depend on it will fail to start.      Microsoft Corporation      c:\windows\system32\svchost.exe

+ SENS      Tracks system events such as Windows logon, network, and power events.  Notifies COM+ Event System subscribers of these events.      Microsoft Corporation      c:\windows\system32\svchost.exe

+ SharedAccess      Provides network address translation, addressing, name resolution and/or intrusion prevention services for a home or small office network.      Microsoft Corporation      c:\windows\system32\svchost.exe

+ ShellHWDetection      Generic Host Process for Win32 Services      Microsoft Corporation      c:\windows\system32\svchost.exe

+ Spooler      Loads files to memory for later printing.      Microsoft Corporation      c:\windows\system32\spoolsv.exe

+ srservice      Performs system restore functions. To stop service, turn off System Restore from the System Restore tab in My Computer->Properties      Microsoft Corporation      c:\windows\system32\svchost.exe

+ Themes      Provides user experience theme management.      Microsoft Corporation      c:\windows\system32\svchost.exe

+ TrkWks      Maintains links between NTFS files within a computer or across computers in a network domain.      Microsoft Corporation      c:\windows\system32\svchost.exe

+ W32Time      Maintains date and time synchronization on all clients and servers in the network. If this service is stopped, date and time synchronization will be unavailable. If this service is disabled, any services that explicitly depend on it will fail to start.

      Microsoft Corporation      c:\windows\system32\svchost.exe

+ WANMiniportService      Wan Miniport (ATW) Service      America Online, Inc.      c:\windows\wanmpsvc.exe

+ WebClient      Enables Windows-based programs to create, access, and modify Internet-based files. If this service is stopped, these functions will not be available. If this service is disabled, any services that explicitly depend on it will fail to start.      Microsoft Corporation      c:\windows\system32\svchost.exe

+ winmgmt      Provides a common interface and object model to access management information about operating system, devices, applications and services. If this service is stopped, most Windows-based software will not function properly. If this service is disabled, any services that explicitly depend on it will fail to start.      Microsoft Corporation      c:\windows\system32\svchost.exe

+ wscsvc      Monitors system security settings and configurations.      Microsoft Corporation      c:\windows\system32\svchost.exe

+ wuauserv      Enables the download and installation of Windows updates. If this service is disabled, this computer will not be able to use the Automatic Updates feature or the Windows Update Web site.      Microsoft Corporation      c:\windows\system32\svchost.exe

+ WZCSVC      Provides automatic configuration for the 802.11 adapters      Microsoft Corporation      c:\windows\system32\svchost.exe

HKLM\System\CurrentControlSet\Services                  

+ ACPI      ACPI Driver for NT      Microsoft Corporation      c:\windows\system32\drivers\acpi.sys

+ aec      Microsoft Acoustic Echo Canceller      Microsoft Corporation      c:\windows\system32\drivers\aec.sys

+ AFD      AFD Networking Support Environment      Microsoft Corporation      c:\windows\system32\drivers\afd.sys

+ agp440      440 NT AGP Filter      Microsoft Corporation      c:\windows\system32\drivers\agp440.sys

+ ASAPIW2K      ASAPI      Pinnacle Systems GmbH      c:\windows\system32\drivers\asapiw2k.sys

+ AsyncMac      RAS Asynchronous Media Driver      Microsoft Corporation      c:\windows\system32\drivers\asyncmac.sys

+ atapi      IDE/ATAPI Port Driver      Microsoft Corporation      c:\windows\system32\drivers\atapi.sys

+ ati2mtag      ATI Radeon WindowsNT Miniport Driver      ATI Technologies Inc.      c:\windows\system32\drivers\ati2mtag.sys

+ Atmarpc      ATM ARP Client Protocol      Microsoft Corporation      c:\windows\system32\drivers\atmarpc.sys

+ audstub      AudStub Driver      Microsoft Corporation      c:\windows\system32\drivers\audstub.sys

+ Avg7Core      AVG Scanning Engine      GRISOFT, s.r.o.      c:\windows\system32\drivers\avg7core.sys

+ Avg7RsW      AVG Resident Shield Unload Helper      GRISOFT, s.r.o.      c:\windows\system32\drivers\avg7rsw.sys

+ Avg7RsXP      AVG Resident Anti-Virus Shield      GRISOFT, s.r.o.      c:\windows\system32\drivers\avg7rsxp.sys

+ AvgTdi      AVG Network connection watcher      GRISOFT, s.r.o.      c:\windows\system32\drivers\avgtdi.sys

+ cdrdrv      InstantWrite Recorder driver      Pinnacle Systems GmbH      c:\windows\system32\drivers\cdrdrv.sys

+ Cdrom      SCSI CD-ROM Driver      Microsoft Corporation      c:\windows\system32\drivers\cdrom.sys

+ CO_Mon                  c:\windows\system32\drivers\co_mon.sys

+ ctac32k      Creative AC3 SW Decoder Device Driver (WDM)      Creative Technology Ltd      c:\windows\system32\drivers\ctac32k.sys

+ ctaud2k      Creative WDM Audio Device Driver      Creative Technology Ltd      c:\windows\system32\drivers\ctaud2k.sys

+ ctljystk      Creative Joyport Enabler      Creative Technology Ltd.      c:\windows\system32\drivers\ctljystk.sys

+ ctprxy2k      Creative Proxy Device Driver (WDM)      Creative Technology Ltd      c:\windows\system32\drivers\ctprxy2k.sys

+ ctsfm2k      SoundFont(R) Manager (WDM)      Creative Technology Ltd      c:\windows\system32\drivers\ctsfm2k.sys

+ Disk      PnP Disk Driver      Microsoft Corporation      c:\windows\system32\drivers\disk.sys

+ dmio      NT Disk Manager I/O Driver      Microsoft Corp., Veritas Software      c:\windows\system32\drivers\dmio.sys

+ dmload      NT Disk Manager Startup Driver      Microsoft Corp., Veritas Software.      c:\windows\system32\drivers\dmload.sys

+ DMusic      Microsoft Kernel DLS Synthesizer      Microsoft Corporation      c:\windows\system32\drivers\dmusic.sys

+ drmkaud      Microsoft Kernel DRM Audio Descrambler Filter      Microsoft Corporation      c:\windows\system32\drivers\drmkaud.sys

+ EL90XBC      3Com EtherLink PCI Driver      3Com Corporation      c:\windows\system32\drivers\el90xbc5.sys

+ emu10k      Creative SB Live! Adapter Driver      Creative Technology Ltd.      c:\windows\system32\drivers\emu10k1m.sys

+ emu10k1      Creative SB Live! Interface Driver      Creative Technology Ltd.      c:\windows\system32\drivers\ctlfacem.sys

+ emupia      E-mu Plug-in Architecture Driver (WDM)      Creative Technology Ltd      c:\windows\system32\drivers\emupia2k.sys

+ Fdc      Floppy Disk Controller Driver      Microsoft Corporation      c:\windows\system32\drivers\fdc.sys

+ Flpydisk      Floppy Driver      Microsoft Corporation      c:\windows\system32\drivers\flpydisk.sys

+ Ftdisk      FT Disk Driver      Microsoft Corporation      c:\windows\system32\drivers\ftdisk.sys

+ gameenum      Game Port Enumerator      Microsoft Corporation      c:\windows\system32\drivers\gameenum.sys

+ Gpc      Generic Packet Classifier      Microsoft Corporation      c:\windows\system32\drivers\msgpc.sys

+ ha10kx2k      Creative EMU10KX HAL (WDM)      Creative Technology Ltd      c:\windows\system32\drivers\ha10kx2k.sys

+ HCF_MSFT      Modem      Conexant      c:\windows\system32\drivers\hcf_msft.sys

+ HTTP      This service implements the hypertext transfer protocol (HTTP). If this service is disabled, any services that explicitly depend on it will fail to start.      Microsoft Corporation      c:\windows\system32\drivers\http.sys

+ i8042prt      i8042 Port Driver      Microsoft Corporation      c:\windows\system32\drivers\i8042prt.sys

+ i81x      Miniport Driver for Intel Graphics Driver      Intel(R) Corporation      c:\windows\system32\drivers\i81xnt5.sys

+ iAimFP0      Digital Display Minidriver for Intel(R) Graphics Driver      Intel(R) Corporation      c:\windows\system32\drivers\wadv01nt.sys

+ iAimFP1      Digital Display Minidriver for Intel(R) Graphics Driver      Intel(R) Corporation      c:\windows\system32\drivers\wadv02nt.sys

+ iAimFP2      Digital Display Minidriver for Intel(R) Graphics Driver      Intel(R) Corporation      c:\windows\system32\drivers\wadv05nt.sys

+ iAimFP3      Digital Display Minidriver for Intel(R) Graphics Driver      Intel(R) Corporation      c:\windows\system32\drivers\wsiintxx.sys

+ iAimFP4      Local Flat Panel Display Minidriver for Intel(R) Graphics Driver      Intel(R) Corporation      c:\windows\system32\drivers\wvchntxx.sys

+ iAimTV0      Digital Display Minidriver for Intel(R) Graphics Driver      Intel(R) Corporation      c:\windows\system32\drivers\watv01nt.sys

+ iAimTV1      Digital Display Minidriver for Intel(R) Graphics Driver      Intel(R) Corporation      c:\windows\system32\drivers\watv02nt.sys

+ iAimTV3      Digital Display Minidriver for Intel(R) Graphics Driver      Intel(R) Corporation      c:\windows\system32\drivers\watv04nt.sys

+ iAimTV4      Digital Display Minidriver for Intel(R) Graphics Driver      Intel(R) Corporation      c:\windows\system32\drivers\wch7xxnt.sys

+ Imapi      IMAPI Kernel Driver      Microsoft Corporation      c:\windows\system32\drivers\imapi.sys

+ IntelIde      Intel PCI IDE Driver      Microsoft Corporation      c:\windows\system32\drivers\intelide.sys

+ ip6fw      Provides intrusion prevention service for a home or small office network.      Microsoft Corporation      c:\windows\system32\drivers\ip6fw.sys

+ IpFilterDriver      IP Traffic Filter Driver      Microsoft Corporation      c:\windows\system32\drivers\ipfltdrv.sys

+ IpInIp      IP in IP Tunnel Driver      Microsoft Corporation      c:\windows\system32\drivers\ipinip.sys

+ IpNat      IP Network Address Translator      Microsoft Corporation      c:\windows\system32\drivers\ipnat.sys

+ IPSec      IPSEC driver      Microsoft Corporation      c:\windows\system32\drivers\ipsec.sys

+ IRENUM      Infra-Red Bus Enumerator      Microsoft Corporation      c:\windows\system32\drivers\irenum.sys

+ isapnp      PNP ISA Bus Driver      Microsoft Corporation      c:\windows\system32\drivers\isapnp.sys

+ Kbdclass      Keyboard Class Driver      Microsoft Corporation      c:\windows\system32\drivers\kbdclass.sys

+ kmixer      Kernel Mode Audio Mixer      Microsoft Corporation      c:\windows\system32\drivers\kmixer.sys

+ Mouclass      Mouse Class Driver      Microsoft Corporation      c:\windows\system32\drivers\mouclass.sys

+ MSKSSRV      MS KS Server      Microsoft Corporation      c:\windows\system32\drivers\mskssrv.sys

+ MSPCLOCK      MS Proxy Clock      Microsoft Corporation      c:\windows\system32\drivers\mspclock.sys

+ MSPQM      MS Proxy Quality Manager      Microsoft Corporation      c:\windows\system32\drivers\mspqm.sys

+ mssmbios      System Management BIOS Driver      Microsoft Corporation      c:\windows\system32\drivers\mssmbios.sys

+ NdisTapi      Remote Access NDIS TAPI Driver      Microsoft Corporation      c:\windows\system32\drivers\ndistapi.sys

+ Ndisuio      NDIS Usermode I/O Protocol      Microsoft Corporation      c:\windows\system32\drivers\ndisuio.sys

+ NdisWan      Remote Access NDIS WAN Driver      Microsoft Corporation      c:\windows\system32\drivers\ndiswan.sys

+ NetBT      NetBios over Tcpip      Microsoft Corporation      c:\windows\system32\drivers\netbt.sys

+ NwlnkFlt      IPX Traffic Filter Driver      Microsoft Corporation      c:\windows\system32\drivers\nwlnkflt.sys

+ NwlnkFwd      IPX Traffic Forwarder Driver      Microsoft Corporation      c:\windows\system32\drivers\nwlnkfwd.sys

+ ossrv      Creative OS Services Driver (WDM)      Creative Technology Ltd.      c:\windows\system32\drivers\ctoss2k.sys

+ P3      Processor Device Driver      Microsoft Corporation      c:\windows\system32\drivers\p3.sys

+ Parport      Parallel Port Driver      Microsoft Corporation      c:\windows\system32\drivers\parport.sys

+ PCI      NT Plug and Play PCI Enumerator      Microsoft Corporation      c:\windows\system32\drivers\pci.sys

+ PptpMiniport      WAN Miniport (PPTP)      Microsoft Corporation      c:\windows\system32\drivers\raspptp.sys

+ PSched      QoS Packet Scheduler      Microsoft Corporation      c:\windows\system32\drivers\psched.sys

+ Ptilink      Direct Parallel Link Driver      Parallel Technologies, Inc.      c:\windows\system32\drivers\ptilink.sys

+ RasAcd      Remote Access Auto Connection Driver      Microsoft Corporation      c:\windows\system32\drivers\rasacd.sys

+ Rasl2tp      WAN Miniport (L2TP)      Microsoft Corporation      c:\windows\system32\drivers\rasl2tp.sys

+ RasPppoe      Remote Access PPPOE Driver      Microsoft Corporation      c:\windows\system32\drivers\raspppoe.sys

+ Raspti      Direct Parallel      Microsoft Corporation      c:\windows\system32\drivers\raspti.sys

+ RDPCDD      RDP Miniport      Microsoft Corporation      c:\windows\system32\drivers\rdpcdd.sys

+ rdpdr      Microsoft RDP Device redirector      Microsoft Corporation      c:\windows\system32\drivers\rdpdr.sys

+ redbook      Redbook Audio Filter Driver      Microsoft Corporation      c:\windows\system32\drivers\redbook.sys

+ Secdrv      SafeDisc driver            c:\windows\system32\drivers\secdrv.sys

+ serenum      Serial Port Enumerator      Microsoft Corporation      c:\windows\system32\drivers\serenum.sys

+ Serial      Serial Device Driver      Microsoft Corporation      c:\windows\system32\drivers\serial.sys

+ sfman      SoundFont(R) Manager      Creative Technology Ltd.      c:\windows\system32\drivers\sfmanm.sys

+ splitter      Microsoft Kernel Audio Splitter      Microsoft Corporation      c:\windows\system32\drivers\splitter.sys

+ swenum      Plug and Play Software Device Enumerator      Microsoft Corporation      c:\windows\system32\drivers\swenum.sys

+ swmidi      Microsoft GS Wavetable Synthesizer      Microsoft Corporation      c:\windows\system32\drivers\swmidi.sys

+ sysaudio      System Audio WDM Filter      Microsoft Corporation      c:\windows\system32\drivers\sysaudio.sys

+ Tcpip      TCP/IP Protocol Driver      Microsoft Corporation      c:\windows\system32\drivers\tcpip.sys

+ TermDD      Terminal Server Driver      Microsoft Corporation      c:\windows\system32\drivers\termdd.sys

+ Update      Update Driver      Microsoft Corporation      c:\windows\system32\drivers\update.sys

+ usbhub      Default Hub Driver for USB      Microsoft Corporation      c:\windows\system32\drivers\usbhub.sys

+ usbprint      USB Printer driver      Microsoft Corporation      c:\windows\system32\drivers\usbprint.sys

+ usbuhci      UHCI USB Miniport Driver      Microsoft Corporation      c:\windows\system32\drivers\usbuhci.sys

+ VgaSave      Controls the VGA display adapter to provide basic display capabilities.      Microsoft Corporation      c:\windows\system32\drivers\vga.sys

+ VOBID      InstantDrive      Pinnacle Systems      c:\windows\system32\drivers\vobid.sys

+ Wanarp      Remote Access IP ARP Driver      Microsoft Corporation      c:\windows\system32\drivers\wanarp.sys

+ wanatw      Wan Miniport (ATW)      America Online, Inc.      c:\windows\system32\drivers\wanatw4.sys

+ wdmaud      MMSYSTEM Wave/Midi API mapper      Microsoft Corporation      c:\windows\system32\drivers\wdmaud.sys

HKLM\System\CurrentControlSet\Control\Session Manager\BootExecute                  

+                   File not found: 

+ autocheck autochk *      Auto Check Utility      Microsoft Corporation      c:\windows\system32\autochk.exe

+ SsiEfr.e                  File not found: SsiEfr.e

+ SsiEfr.e                  File not found: SsiEfr.e

HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options                  

+ Your Image File Name Here without a path      Symbolic Debugger for Windows 2000      Microsoft Corporation      c:\windows\system32\ntsd.exe

HKLM\System\CurrentControlSet\Control\Session Manager\KnownDlls                  

+ advapi32      Advanced Windows 32 Base API      Microsoft Corporation      c:\windows\system32\advapi32.dll

+ comdlg32      Common Dialogs DLL      Microsoft Corporation      c:\windows\system32\comdlg32.dll

+ gdi32      GDI Client DLL      Microsoft Corporation      c:\windows\system32\gdi32.dll

+ imagehlp      Windows NT Image Helper      Microsoft Corporation      c:\windows\system32\imagehlp.dll

+ kernel32      Windows NT BASE API Client DLL      Microsoft Corporation      c:\windows\system32\kernel32.dll

+ lz32      LZ Expand/Compress API DLL      Microsoft Corporation      c:\windows\system32\lz32.dll

+ ole32      Microsoft OLE for Windows      Microsoft Corporation      c:\windows\system32\ole32.dll

+ oleaut32            Microsoft Corporation      c:\windows\system32\oleaut32.dll

+ olecli32      Object Linking and Embedding Client Library      Microsoft Corporation      c:\windows\system32\olecli32.dll

+ olecnv32      Microsoft OLE for Windows      Microsoft Corporation      c:\windows\system32\olecnv32.dll

+ olesvr32      Object Linking and Embedding Server Library      Microsoft Corporation      c:\windows\system32\olesvr32.dll

+ olethk32      Microsoft OLE for Windows      Microsoft Corporation      c:\windows\system32\olethk32.dll

+ rpcrt4      Remote Procedure Call Runtime      Microsoft Corporation      c:\windows\system32\rpcrt4.dll

+ shell32      Windows Shell Common Dll      Microsoft Corporation      c:\windows\system32\shell32.dll

+ url      Internet Shortcut Shell Extension DLL      Microsoft Corporation      c:\windows\system32\url.dll

+ urlmon      OLE32 Extensions for Win32      Microsoft Corporation      c:\windows\system32\urlmon.dll

+ user32      Windows XP USER API Client DLL      Microsoft Corporation      c:\windows\system32\user32.dll

+ version      Version Checking and File Installation Libraries      Microsoft Corporation      c:\windows\system32\version.dll

+ wininet      Internet Extensions for Win32      Microsoft Corporation      c:\windows\system32\wininet.dll

+ wldap32      Win32 LDAP API DLL      Microsoft Corporation      c:\windows\system32\wldap32.dll

HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\UIHost                  

+ logonui.exe      Windows Logon UI      Microsoft Corporation      c:\windows\system32\logonui.exe

HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify                  

+ AtiExtEvent                  c:\windows\system32\ati2evxx.dll

+ crypt32chain      Crypto API32      Microsoft Corporation      c:\windows\system32\crypt32.dll

+ cryptnet      Crypto Network Related API      Microsoft Corporation      c:\windows\system32\cryptnet.dll

+ cscdll      Offline Network Agent      Microsoft Corporation      c:\windows\system32\cscdll.dll

+ ScCertProp      Common DLL to receive Winlogon notifications      Microsoft Corporation      c:\windows\system32\wlnotify.dll

+ Schedule      Common DLL to receive Winlogon notifications      Microsoft Corporation      c:\windows\system32\wlnotify.dll

+ sclgntfy      Secondary Logon Service Notification DLL      Microsoft Corporation      c:\windows\system32\sclgntfy.dll

+ SensLogn      Common DLL to receive Winlogon notifications      Microsoft Corporation      c:\windows\system32\wlnotify.dll

+ termsrv      Common DLL to receive Winlogon notifications      Microsoft Corporation      c:\windows\system32\wlnotify.dll

+ wlballoon      Common DLL to receive Winlogon notifications      Microsoft Corporation      c:\windows\system32\wlnotify.dll

+ WRNotifier      Spy Sweeper SDK      Webroot Software, Inc.      c:\windows\system32\wrlogonntf.dll

HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9                  

+ MSAFD NetBIOS [\Device\NetBT_Tcpip_{3CA07CC2-EAC0-410D-A5C9-A16BF8CFFF51}] DATAGRAM 4      Microsoft Windows Sockets 2.0 Service Provider      Microsoft Corporation      c:\windows\system32\mswsock.dll

+ MSAFD NetBIOS [\Device\NetBT_Tcpip_{3CA07CC2-EAC0-410D-A5C9-A16BF8CFFF51}] SEQPACKET 4      Microsoft Windows Sockets 2.0 Service Provider      Microsoft Corporation      c:\windows\system32\mswsock.dll

+ MSAFD NetBIOS [\Device\NetBT_Tcpip_{73890470-398F-478E-BE6B-3FA9CAE7CD6E}] DATAGRAM 1      Microsoft Windows Sockets 2.0 Service Provider      Microsoft Corporation      c:\windows\system32\mswsock.dll

+ MSAFD NetBIOS [\Device\NetBT_Tcpip_{73890470-398F-478E-BE6B-3FA9CAE7CD6E}] SEQPACKET 1      Microsoft Windows Sockets 2.0 Service Provider      Microsoft Corporation      c:\windows\system32\mswsock.dll

+ MSAFD NetBIOS [\Device\NetBT_Tcpip_{79739402-F082-40F0-9B35-001DDA4D231E}] DATAGRAM 3      Microsoft Windows Sockets 2.0 Service Provider      Microsoft Corporation      c:\windows\system32\mswsock.dll

+ MSAFD NetBIOS [\Device\NetBT_Tcpip_{79739402-F082-40F0-9B35-001DDA4D231E}] SEQPACKET 3      Microsoft Windows Sockets 2.0 Service Provider      Microsoft Corporation      c:\windows\system32\mswsock.dll

+ MSAFD NetBIOS [\Device\NetBT_Tcpip_{CC6101E5-C9EF-45CC-84FD-FF7BEF102914}] DATAGRAM 0      Microsoft Windows Sockets 2.0 Service Provider      Microsoft Corporation      c:\windows\system32\mswsock.dll

+ MSAFD NetBIOS [\Device\NetBT_Tcpip_{CC6101E5-C9EF-45CC-84FD-FF7BEF102914}] SEQPACKET 0      Microsoft Windows Sockets 2.0 Service Provider      Microsoft Corporation      c:\windows\system32\mswsock.dll

+ MSAFD NetBIOS [\Device\NetBT_Tcpip_{E17B8747-E7D1-4C4F-82D4-77F596AE581C}] DATAGRAM 2      Microsoft Windows Sockets 2.0 Service Provider      Microsoft Corporation      c:\windows\system32\mswsock.dll

+ MSAFD NetBIOS [\Device\NetBT_Tcpip_{E17B8747-E7D1-4C4F-82D4-77F596AE581C}] SEQPACKET 2      Microsoft Windows Sockets 2.0 Service Provider      Microsoft Corporation      c:\windows\system32\mswsock.dll

+ MSAFD Tcpip [RAW/IP]      Microsoft Windows Sockets 2.0 Service Provider      Microsoft Corporation      c:\windows\system32\mswsock.dll

+ MSAFD Tcpip [TCP/IP]      Microsoft Windows Sockets 2.0 Service Provider      Microsoft Corporation      c:\windows\system32\mswsock.dll

+ MSAFD Tcpip [UDP/IP]      Microsoft Windows Sockets 2.0 Service Provider      Microsoft Corporation      c:\windows\system32\mswsock.dll

+ RSVP TCP Service Provider      Microsoft Windows Rsvp 1.0 Service Provider      Microsoft Corporation      c:\windows\system32\rsvpsp.dll

+ RSVP UDP Service Provider      Microsoft Windows Rsvp 1.0 Service Provider      Microsoft Corporation      c:\windows\system32\rsvpsp.dll

HKLM\SYSTEM\CurrentControlSet\Control\Print\Monitors                  

+ BJ Language Monitor      Langage Monitor for Canon Bubble-Jet Printer      Microsoft Corporation      c:\windows\system32\cnbjmon.dll

+ hpzlnt04            HP      c:\windows\system32\hpzlnt04.dll

+ Local Port      Local Spooler DLL      Microsoft Corporation      c:\windows\system32\localspl.dll

+ PJL Language Monitor      PJL Language monitor      Microsoft Corporation      c:\windows\system32\pjlmon.dll

+ Standard TCP/IP Port      Standard TCP/IP Port Monitor DLL      Microsoft Corporation      c:\windows\system32\tcpmon.dll

+ USB Monitor      Standard Dynamic Printing Port Monitor DLL      Microsoft Corporation      c:\windows\system32\usbmon.dll

HKLM\SYSTEM\CurrentControlSet\Control\Lsa\Authentication Packages                  

+ msv1_0      Microsoft Authentication Package v1.0      Microsoft Corporation      c:\windows\system32\msv1_0.dll

HKLM\SYSTEM\CurrentControlSet\Control\Lsa\Notification Packages                  

+ scecli      Windows Security Configuration Editor Client Engine      Microsoft Corporation      c:\windows\system32\scecli.dll

HKLM\SYSTEM\CurrentControlSet\Control\Lsa\Security Packages                  

+ kerberos      Kerberos Security Package      Microsoft Corporation      c:\windows\system32\kerberos.dll

+ msv1_0      Microsoft Authentication Package v1.0      Microsoft Corporation      c:\windows\system32\msv1_0.dll

+ schannel      TLS / SSL Security Provider      Microsoft Corporation      c:\windows\system32\schannel.dll

+ wdigest      Microsoft Digest Access      Microsoft Corporation      c:\windows\system32\wdigest.dll

0
 
LVL 47

Expert Comment

by:rpggamergirl
ID: 16859360
What file exactly is it? can you please let us know where it is located? just curious.

I'm also curious what the entries in your hijackthis log would show, probably a very long shot.

Please download HijackThis 1.99.1
http://www.cyberanswers.org/forum/uploads/HijackThis1991.exe
Open Hijackthis, click "Do a system scan and save a logfile" don't fix anything.
Notepad will also open, copy its contents and paste it to either these sites:
http://www.rafb.net/paste/
then at the bottom left corner click "paste"
Copy the address/url and post it here:

Or paste the log at --> http://www.hijackthis.de/ 
and click "Analyse", click "Save".  Post the link to the saved list here.
0
 

Author Comment

by:Vast41
ID: 16859370
The file did not appear on the auotrun log, it is located in my local disk D: cyClone.
0
 

Author Comment

by:Vast41
ID: 16859407
Hijackthis log...


Logfile of HijackThis v1.99.1
Scan saved at 4:08:01 AM, on 6/8/2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\System32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\PROGRA~1\COMMON~1\AOL\ACS\AOLACSD.EXE
C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe
C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe
C:\WINDOWS\wanmpsvc.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\CTHELPER.EXE
C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
C:\Program Files\Real\RealPlayer\RealPlay.exe
C:\Program Files\QuickTime\qttask.exe
C:\WINDOWS\system32\devldr32.exe
C:\WINDOWS\System32\spool\drivers\w32x86\3\hpztsb04.exe
C:\Program Files\Error Nuker\bin\ErrorNuker.exe
C:\PROGRA~1\Grisoft\AVGFRE~1\avgemc.exe
C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe
C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
C:\Program Files\Common Files\AOL\ACS\AOLDial.exe
C:\PROGRA~1\COMMON~1\AOL\AOLSPY~1\AOLSP Scheduler.exe
C:\Program Files\Yahoo!\Messenger\ypager.exe
C:\Program Files\ProxyWay\proxyway.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\Pinnacle\InstantCDDVD\InstantWrite\iwctrl.exe
C:\Program Files\Pinnacle\Shared Files\InstantCDDVD\PCLETray.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\hijackthis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.rr.com/
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O4 - HKLM\..\Run: [Zone Labs Client] C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
O4 - HKLM\..\Run: [WINDVDPatch] CTHELPER.EXE
O4 - HKLM\..\Run: [UpdReg] C:\WINDOWS\UpdReg.EXE
O4 - HKLM\..\Run: [TrojanScanner] C:\Program Files\Trojan Remover\Trjscan.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
O4 - HKLM\..\Run: [SpySweeper] "C:\Program Files\Webroot\Spy Sweeper\SpySweeper.exe" /startintray
O4 - HKLM\..\Run: [RealTray] C:\Program Files\Real\RealPlayer\RealPlay.exe SYSTEMBOOTHIDEPLAYER
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [Pure Networks Port Magic] "C:\PROGRA~1\PURENE~1\PORTMA~1\PortAOL.exe" -Run
O4 - HKLM\..\Run: [PinnacleDriverCheck] C:\WINDOWS\system32\PSDrvCheck.exe
O4 - HKLM\..\Run: [PHIME2002ASync] C:\WINDOWS\System32\IME\TINTLGNT\TINTSETP.EXE /SYNC
O4 - HKLM\..\Run: [PHIME2002A] C:\WINDOWS\System32\IME\TINTLGNT\TINTSETP.EXE /IMEName
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [MSPY2002] C:\WINDOWS\System32\IME\PINTLGNT\ImScInst.exe /SYNC
O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
O4 - HKLM\..\Run: [Jet Detection] "C:\Program Files\Creative\SBLive\PROGRAM\ADGJDet.exe"
O4 - HKLM\..\Run: [IMJPMIG8.1] "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32
O4 - HKLM\..\Run: [HPDJ Taskbar Utility] C:\WINDOWS\System32\spool\drivers\w32x86\3\hpztsb04.exe
O4 - HKLM\..\Run: [Error Nuker] C:\Program Files\Error Nuker\bin\ErrorNuker.exe autostart
O4 - HKLM\..\Run: [AVG7_EMC] C:\PROGRA~1\Grisoft\AVGFRE~1\avgemc.exe
O4 - HKLM\..\Run: [AVG7_CC] C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe /STARTUP
O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
O4 - HKLM\..\Run: [AOLDialer] C:\Program Files\Common Files\AOL\ACS\AOLDial.exe
O4 - HKLM\..\Run: [AOL Spyware Protection] "C:\PROGRA~1\COMMON~1\AOL\AOLSPY~1\AOLSP Scheduler.exe"
O4 - HKCU\..\Run: [Yahoo! Pager] "C:\Program Files\Yahoo!\Messenger\ypager.exe" -quiet
O4 - HKCU\..\Run: [ProxyWay] C:\Program Files\ProxyWay\proxyway.exe
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [IW_Drop_Icon] C:\Program Files\Pinnacle\InstantCDDVD\InstantWrite\iwctrl.exe /DropDisc
O4 - HKCU\..\Run: [InstantTray] C:\Program Files\Pinnacle\Shared Files\InstantCDDVD\PCLETray.exe
O4 - Global Startup: America Online 9.0 Tray Icon.lnk = C:\Program Files\America Online 9.0b\aoltray.exe
O4 - Global Startup: America Online 8.0 Tray Icon.lnk = C:\Program Files\America Online 8.0\aoltray.exe
O8 - Extra context menu item: &Google Search - res://c:\program files\google\GoogleToolbar2.dll/cmsearch.html
O8 - Extra context menu item: &Translate English Word - res://c:\program files\google\GoogleToolbar2.dll/cmwordtrans.html
O8 - Extra context menu item: Backward Links - res://c:\program files\google\GoogleToolbar2.dll/cmbacklinks.html
O8 - Extra context menu item: Cached Snapshot of Page - res://c:\program files\google\GoogleToolbar2.dll/cmcache.html
O8 - Extra context menu item: Similar Pages - res://c:\program files\google\GoogleToolbar2.dll/cmsimilar.html
O8 - Extra context menu item: Translate Page into English - res://c:\program files\google\GoogleToolbar2.dll/cmtrans.html
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O9 - Extra button: (no name) - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - (no file)
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O12 - Plugin for .spop: C:\Program Files\Internet Explorer\Plugins\NPDocBox.dll
O12 - Plugin for .wav: C:\Program Files\Internet Explorer\PLUGINS\npqtplugin2.dll
O16 - DPF: {0EB0E74A-2A76-4AB3-A7FB-9BD8C29F7F75} (CKAVWebScan Object) - http://www.kaspersky.com/kos/english/kavwebscan_unicode.cab
O16 - DPF: {15589FA1-C456-11CE-BF01-000000000000} - http://www.errornuker.com/products/errn2004/installers/default/ErrorNukerInstaller.exe
O16 - DPF: {2BC66F54-93A8-11D3-BEB6-00105AA9B6AE} (Symantec AntiVirus scanner) - http://security.symantec.com/sscv6/SharedContent/vc/bin/AvSniff.cab
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://download.bitdefender.com/resources/scan8/oscan8.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1123794645560
O16 - DPF: {644E432F-49D3-41A1-8DD5-E099162EEEC5} (Symantec RuFSI Utility Class) - http://security.symantec.com/sscv6/SharedContent/common/bin/cabsa.cab
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1141632629101
O16 - DPF: {6E5A37BF-FD42-463A-877C-4EB7002E68AE} (Housecall ActiveX 6.5) - http://housecall65.trendmicro.com/housecall/applet/html/native/x86/win32/activex/hcImpl.cab
O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) - http://acs.pandasoftware.com/activescan/as5free/asinst.cab
O16 - DPF: {EF791A6B-FC12-4C68-99EF-FB9E207A39E6} (McFreeScan Class) - http://download.mcafee.com/molbin/iss-loc/mcfscan/2,1,0,4759/mcfscan.cab
O20 - Winlogon Notify: WRNotifier - C:\WINDOWS\SYSTEM32\WRLogonNTF.dll
O23 - Service: AOL Connectivity Service (AOL ACS) - America Online, Inc. - C:\PROGRA~1\COMMON~1\AOL\ACS\AOLACSD.EXE
O23 - Service: Ati HotKey Poller - Unknown owner - C:\WINDOWS\System32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe
O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe
O23 - Service: WAN Miniport (ATW) Service (WANMiniportService) - America Online, Inc. - C:\WINDOWS\wanmpsvc.exe

0
 

Author Comment

by:Vast41
ID: 16864822
I solved the issue, when I downloaded the file, I scanned
the file with AVG a Virus was shown but I ignored it and I did not take any action against the file, I let it be. Apparently it did something not allowing me to access it. I didn't know how to disable AVG other then, going through System Configuration Utility, so I uninstalled it, and guess what it works now. Now my question is, can I reinstall AVG if I want to keep
running this file? It's really not harmful to my machine, but I am gonna check with some experts on that shortly. So in recapping, I could not get this file to run with the exception of running it in safe mode which meant some file in normal mode was preventing the execution of this file, it basically was a process of elimination. I uninstalled the following AVG Free Edition, Spysweeper, and Zone Alarm, but it was AVG Free Edition that was the culprit.

So, now my question is, can I reinstall AVG Free edition, and if so, what if it disables my exe file again, how can I disable or prevent that? Also where can I send this file to expert for analizing, and get a quick response?

0
 
LVL 32

Accepted Solution

by:
r-k earned 1000 total points
ID: 16864875
That's good news. I think it makes sense now that you explained it. The AV program was the one denying access to the file.

If you reinstall AVG you will have the same problem, but most AV programs have an "exclude" option in the settings where you can exclude specific files/folders from being scanned. Not sure where that setting is in AVG but you should be able to find it.

But first, you should make sure the AVG warning really is a false positive. One way is to submit your file to: http://www.virustotal.com/en/indexf.html (use the browse button at the top-right, followed by Send) and they will analyze it with the top-20 or so AV programs. You get the results back in a minute or two.
0
 

Author Comment

by:Vast41
ID: 16864902
r-k your the best, thank you so much, now if i see this problem again with another member you will be able to assist them very quickly hopefully, thanks again.
0
 
LVL 32

Expert Comment

by:r-k
ID: 16864971
Yes, thanks. I will not forget this possibility next time for sure!
0
 
LVL 12

Expert Comment

by:rionroc
ID: 20522609
HE-HE-HE, PROBABLY THE FILE YOUR OPENING HAS A VIRUS, BUT IF YOU ARE SURE THAT THE FILE IS NOT A VIRUS OR NOT INFECTED,  JUST TURN OFF OR DISABLE THE MEMORY/RESIDENT SHIELD OF THE ANTI VIRUS YOU ARE USING, THEN OPEN THE FILE AGAIN. (^_~,,,,,,,,,,,,,FORGIVE ME, I'M JUST A NEWBIE ON THIS SITE,,,,,HELLO GURU AND GENIUSES. (~_^)
0
 
LVL 2

Expert Comment

by:AndrewKeim
ID: 22490058
This comment is for the last persons comment... you've obviously very immature, please grow up. Stop talking in caps.. and stop using stupid annoying animal faces. Thank you.
0
 

Expert Comment

by:InvestecPrivateBank
ID: 23334972
I know this has already been closed but I found the Solution to my problem.

Right Click on the file, go to properties, general tab. It will probably
say "file has come from another computer and is being blocked". Click the
unblock button and you should be ok.

Ive never seen this before, looks like something new.
0
 

Expert Comment

by:itvizion
ID: 24898183
"InvestecPrivateBank
01.09.2009 at 04:54AM PST, ID: 23334972
I know this has already been closed but I found the Solution to my problem.

Right Click on the file, go to properties, general tab. It will probably
say "file has come from another computer and is being blocked". Click the
unblock button and you should be ok.

Ive never seen this before, looks like something new. "
       

This is what fixed my problem..
Blocked File Protection Control is what it is called.

Thanks for this additional comment in this forum.
0

Featured Post

Free Tool: IP Lookup

Get more info about an IP address or domain name, such as organization, abuse contacts and geolocation.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

If you build your web application in Visual Studio you'll get at least a few binaries, or .DLL, files in your bin folder. However, there is more compiling to be done. Normally this would happen when an ASP.NET resource within the web site is request…
Today, still in the boom of Apple, PC's and products, nearly 50% of the computer users use Windows as graphical operating systems. If you are among those users who love windows, but are grappling to keep the system's hard drive optimized, then you s…
Two types of users will appreciate AOMEI Backupper Pro: 1 - Those with PCIe drives (and haven't found cloning software that works on them). 2 - Those who want a fast clone of their boot drive (no re-boots needed) and it can clone your drive wh…
Is your OST file inaccessible, Need to transfer OST file from one computer to another? Want to convert OST file to PST? If the answer to any of the above question is yes, then look no further. With the help of Stellar OST to PST Converter, you can e…
Suggested Courses
Course of the Month17 days, 17 hours left to enroll

830 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question