Hi

did an ad-aware scan and discovered I had attracted a registry entries and a 'file' entitled adware websearch, I instructed ad-aware to quarantine and delete, then re-booted and rescanned 1 registry entry had returned and the 'file'

most current log file posted below

Ad-Aware SE Build 1.06r1
Logfile Created on:01 August 2007 01:24:16
Created with Ad-Aware SE Personal, free for private use.
Using definitions file:SE1R182 23.07.2007
»»»»»»»»»»»»»»»»»»»»
»»»»»»»»»»»»»»»»»»»»

»»»»»»»»»»»

References detected during the scan:
»»»»»»»»»»»»»»»»»»»»
»»»»»»»»»»»»»»»»»»»
Adware.Websearch(TAC index:9):2 total references
MRU List(TAC index:0):3 total references
»»»»»»»»»»»»»»»»»»»»
»»»»»»»»»»»»»»»»»»»

Definition File:
=========================
Definitions File Loaded:
Reference Number : SE1R182 23.07.2007
Internal build : 223
File location : C:\Program Files\Lavasoft\Ad-Aware SE Personal\defs.ref
File size : 1366063 Bytes
Total size : 4614595 Bytes
Signature data size : 4572009 Bytes
Reference data size : 42074 Bytes
Signatures total : 117029
CSI Fingerprints total : 8686
CSI data size : 550522 Bytes
Target categories : 15
Target families : 1158


Memory + processor status:
==========================
Number of processors : 1
Processor architecture : Intel Pentium III
Memory available:24 %
Total physical memory:523760 kb
Available physical memory:121592 kb
Total page file size:1276904 kb
Available on page file:940068 kb
Total virtual memory:2097024 kb
Available virtual memory:2026720 kb
OS:Microsoft Windows XP Professional Service Pack 2 (Build 2600)

Ad-Aware SE Settings
===========================
Set : Search for negligible risk entries
Set : Search for low-risk threats
Set : Safe mode (always request confirmation)
Set : Scan active processes
Set : Scan registry
Set : Deep-scan registry
Set : Scan my IE Favorites for banned URLs
Set : Scan within archives
Set : Scan my Hosts file

Extended Ad-Aware SE Settings
===========================
Set : Unload recognized processes & modules during scan
Set : Obtain command line of scanned processes
Set : Scan registry for all users instead of current user only
Set : Always try to unload modules before deletion
Set : During removal, unload Explorer and IE if necessary
Set : Let Windows remove files in use at next reboot
Set : Delete quarantined objects after restoring
Set : Include basic Ad-Aware settings in log file
Set : Include additional Ad-Aware settings in log file
Set : Include reference summary in log file
Set : Include module list in log file
Set : Include alternate data stream details in log file
Set : Create and save WebUpdate log file
Set : Play sound at scan completion if scan locates critical objects


01-08-2007 01:24:16 - Scan started. (Full System Scan)

MRU List Object Recognized!
Location: : S-1-5-21-507921405-838170752-725345543-1003\software\microsoft\microsoft management console\recent file list
Description : list of recent snap-ins used in the microsoft management console


MRU List Object Recognized!
Location: : S-1-5-21-507921405-838170752-725345543-1003\software\microsoft\search assistant\acmru
Description : list of recent search terms used with the search assistant


MRU List Object Recognized!
Location: : S-1-5-21-507921405-838170752-725345543-1003\software\microsoft\windows\currentversion\explorer\runmru
Description : mru list for items opened in start | run


Listing running processes
»»»»»»»»»»»»»»»»»»»»
»»»»»»»»»»»»»»»»»»

#:1 [smss.exe]
ModuleName : \SystemRoot\System32\smss.exe
Command Line : n/a
ProcessID : 552
ThreadCreationTime : 01-08-2007 00:20:40
BasePriority : Normal

Scanning Module:\SystemRoot\System32\smss.exe...
Scanning Module:C:\WINDOWS\system32\ntdll.dll...

#:2 [csrss.exe]
ModuleName : \??\C:\WINDOWS\system32\csrss.exe
Command Line : C:\WINDOWS\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,3072,512 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ProfileControl=Off MaxRequestTh
ProcessID : 604
ThreadCreationTime : 01-08-2007 00:20:56
BasePriority : Normal

Scanning Module:\??\C:\WINDOWS\system32\csrss.exe...
Scanning Module:C:\WINDOWS\system32\CSRSRV.dll...
Scanning Module:C:\WINDOWS\system32\basesrv.dll...
Scanning Module:C:\WINDOWS\system32\winsrv.dll...
Scanning Module:C:\WINDOWS\system32\GDI32.dll...
Scanning Module:C:\WINDOWS\system32\KERNEL32.dll...
Scanning Module:C:\WINDOWS\system32\USER32.dll...
Scanning Module:C:\WINDOWS\system32\sxs.dll...
Scanning Module:C:\WINDOWS\system32\ADVAPI32.dll...
Scanning Module:C:\WINDOWS\system32\RPCRT4.dll...

#:3 [winlogon.exe]
ModuleName : \??\C:\WINDOWS\system32\winlogon.exe
Command Line : winlogon.exe
ProcessID : 628
ThreadCreationTime : 01-08-2007 00:21:00
BasePriority : High

Scanning Module:\??\C:\WINDOWS\system32\winlogon.exe...
Scanning Module:C:\WINDOWS\system32\AUTHZ.dll...
Scanning Module:C:\WINDOWS\system32\msvcrt.dll...
Scanning Module:C:\WINDOWS\system32\CRYPT32.dll...
Scanning Module:C:\WINDOWS\system32\MSASN1.dll...
Scanning Module:C:\WINDOWS\system32\NDdeApi.dll...
Scanning Module:C:\WINDOWS\system32\PROFMAP.dll...
Scanning Module:C:\WINDOWS\system32\NETAPI32.dll...
Scanning Module:C:\WINDOWS\system32\USERENV.dll...
Scanning Module:C:\WINDOWS\system32\PSAPI.DLL...
Scanning Module:C:\WINDOWS\system32\REGAPI.dll...
Scanning Module:C:\WINDOWS\system32\Secur32.dll...
Scanning Module:C:\WINDOWS\system32\SETUPAPI.dll...
Scanning Module:C:\WINDOWS\system32\VERSION.dll...
Scanning Module:C:\WINDOWS\system32\WINSTA.dll...
Scanning Module:C:\WINDOWS\system32\WINTRUST.dll...
Scanning Module:C:\WINDOWS\system32\IMAGEHLP.dll...
Scanning Module:C:\WINDOWS\system32\WS2_32.dll...
Scanning Module:C:\WINDOWS\system32\WS2HELP.dll...
Scanning Module:C:\WINDOWS\system32\MSGINA.dll...
Scanning Module:C:\WINDOWS\system32\SHELL32.dll...
Scanning Module:C:\WINDOWS\system32\SHLWAPI.dll...
Scanning Module:C:\WINDOWS\system32\COMCTL32.dll...
Scanning Module:C:\WINDOWS\system32\ODBC32.dll...
Scanning Module:C:\WINDOWS\system32\comdlg32.dll...
Scanning Module:C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\comctl32.dll...
Scanning Module:C:\WINDOWS\system32\odbcint.dll...
Scanning Module:C:\WINDOWS\system32\SHSVCS.dll...
Scanning Module:C:\WINDOWS\system32\sfc.dll...
Scanning Module:C:\WINDOWS\system32\sfc_os.dll...
Scanning Module:C:\WINDOWS\system32\ole32.dll...
Scanning Module:C:\WINDOWS\system32\Apphelp.dll...
Scanning Module:C:\WINDOWS\system32\WINSCARD.DLL...
Scanning Module:C:\WINDOWS\system32\WTSAPI32.dll...
Scanning Module:C:\WINDOWS\system32\WINMM.dll...
Scanning Module:C:\WINDOWS\system32\SYNCOR11.DLL...
Scanning Module:C:\WINDOWS\system32\uxtheme.dll...
Scanning Module:C:\WINDOWS\system32\cscdll.dll...
Scanning Module:C:\WINDOWS\system32\WlNotify.dll...
Scanning Module:C:\WINDOWS\system32\WINSPOOL.DRV...
Scanning Module:C:\WINDOWS\system32\MPR.dll...
Scanning Module:C:\WINDOWS\system32\rsaenh.dll...
Scanning Module:C:\WINDOWS\system32\WgaLogon.dll...
Scanning Module:C:\WINDOWS\system32\OLEAUT32.dll...
Scanning Module:C:\WINDOWS\system32\NTMARTA.DLL...
Scanning Module:C:\WINDOWS\system32\WLDAP32.dll...
Scanning Module:C:\WINDOWS\system32\SAMLIB.dll...
Scanning Module:C:\WINDOWS\system32\CLBCATQ.DLL...
Scanning Module:C:\WINDOWS\system32\COMRes.dll...
Scanning Module:C:\WINDOWS\system32\msv1_0.dll...
Scanning Module:C:\WINDOWS\system32\iphlpapi.dll...
Scanning Module:C:\WINDOWS\system32\cscui.dll...
Scanning Module:C:\WINDOWS\system32\MPRAPI.dll...
Scanning Module:C:\WINDOWS\system32\ACTIVEDS.dll...
Scanning Module:C:\WINDOWS\system32\adsldpc.dll...
Scanning Module:C:\WINDOWS\system32\ATL.DLL...
Scanning Module:C:\WINDOWS\system32\rtutils.dll...
Scanning Module:C:\WINDOWS\system32\wdmaud.drv...
Scanning Module:C:\WINDOWS\system32\msacm32.drv...
Scanning Module:C:\WINDOWS\system32\MSACM32.dll...
Scanning Module:C:\WINDOWS\system32\midimap.dll...
Scanning Module:C:\WINDOWS\system32\NavLogon.dll...
Scanning Module:C:\WINDOWS\system32\xpsp2res.dll...

#:4 [services.exe]
ModuleName : C:\WINDOWS\system32\services.exe
Command Line : C:\WINDOWS\system32\services.exe
ProcessID : 672
ThreadCreationTime : 01-08-2007 00:21:06
BasePriority : Normal
FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 5.1.2600.2180
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Services and Controller app
InternalName : services.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : services.exe
Scanning Module:C:\WINDOWS\system32\services.exe...
Scanning Module:C:\WINDOWS\system32\SCESRV.dll...
Scanning Module:C:\WINDOWS\system32\umpnpmgr.dll...
Scanning Module:C:\WINDOWS\system32\NCObjAPI.DLL...
Scanning Module:C:\WINDOWS\system32\MSVCP60.dll...
Scanning Module:C:\WINDOWS\system32\ShimEng.dll...
Scanning Module:C:\WINDOWS\AppPatch\AcAdProc.dll...
Scanning Module:C:\WINDOWS\system32\eventlog.dll...

#:5 [lsass.exe]
ModuleName : C:\WINDOWS\system32\lsass.exe
Command Line : C:\WINDOWS\system32\lsass.exe
ProcessID : 684
ThreadCreationTime : 01-08-2007 00:21:07
BasePriority : Normal
FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 5.1.2600.2180
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : LSA Shell (Export Version)
InternalName : lsass.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : lsass.exe
Scanning Module:C:\WINDOWS\system32\lsass.exe...
Scanning Module:C:\WINDOWS\system32\LSASRV.dll...
Scanning Module:C:\WINDOWS\system32\NTDSAPI.dll...
Scanning Module:C:\WINDOWS\system32\DNSAPI.dll...
Scanning Module:C:\WINDOWS\system32\SAMSRV.dll...
Scanning Module:C:\WINDOWS\system32\cryptdll.dll...
Scanning Module:C:\WINDOWS\AppPatch\AcGenral.DLL...
Scanning Module:C:\WINDOWS\system32\msprivs.dll...
Scanning Module:C:\WINDOWS\system32\kerberos.dll...
Scanning Module:C:\WINDOWS\system32\netlogon.dll...
Scanning Module:C:\WINDOWS\system32\w32time.dll...
Scanning Module:C:\WINDOWS\system32\schannel.dll...
Scanning Module:C:\WINDOWS\system32\wdigest.dll...
Scanning Module:C:\WINDOWS\system32\scecli.dll...
Scanning Module:C:\WINDOWS\system32\ipsecsvc.dll...
Scanning Module:C:\WINDOWS\system32\oakley.DLL...
Scanning Module:C:\WINDOWS\system32\WINIPSEC.DLL...
Scanning Module:C:\WINDOWS\system32\pstorsvc.dll...
Scanning Module:C:\WINDOWS\system32\mswsock.dll...
Scanning Module:C:\WINDOWS\system32\hnetcfg.dll...
Scanning Module:C:\WINDOWS\System32\wshtcpip.dll...
Scanning Module:C:\WINDOWS\system32\psbase.dll...
Scanning Module:C:\WINDOWS\system32\dssenh.dll...

#:6 [svchost.exe]
ModuleName : C:\WINDOWS\system32\svchost.exe
Command Line : C:\WINDOWS\system32\svchost -k DcomLaunch
ProcessID : 828
ThreadCreationTime : 01-08-2007 00:21:13
BasePriority : Normal
FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 5.1.2600.2180
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Generic Host Process for Win32 Services
InternalName : svchost.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : svchost.exe
Scanning Module:C:\WINDOWS\system32\svchost.exe...
Scanning Module:c:\windows\system32\rpcss.dll...
Scanning Module:c:\windows\system32\termsrv.dll...
Scanning Module:c:\windows\system32\ICAAPI.dll...
Scanning Module:c:\windows\system32\mstlsapi.dll...

#:7 [svchost.exe]
ModuleName : C:\WINDOWS\system32\svchost.exe
Command Line : C:\WINDOWS\system32\svchost -k rpcss
ProcessID : 916
ThreadCreationTime : 01-08-2007 00:21:15
BasePriority : Normal
FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 5.1.2600.2180
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Generic Host Process for Win32 Services
InternalName : svchost.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : svchost.exe
Scanning Module:C:\WINDOWS\System32\winrnr.dll...
Scanning Module:C:\WINDOWS\system32\rasadhlp.dll...

#:8 [svchost.exe]
ModuleName : C:\WINDOWS\System32\svchost.exe
Command Line : C:\WINDOWS\System32\svchost.exe -k netsvcs
ProcessID : 1000
ThreadCreationTime : 01-08-2007 00:21:17
BasePriority : Normal
FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 5.1.2600.2180
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Generic Host Process for Win32 Services
InternalName : svchost.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : svchost.exe
Scanning Module:c:\windows\system32\dhcpcsvc.dll...
Scanning Module:c:\windows\system32\wzcsvc.dll...
Scanning Module:c:\windows\system32\WMI.dll...
Scanning Module:c:\windows\system32\ESENT.dll...
Scanning Module:C:\WINDOWS\System32\rastls.dll...
Scanning Module:C:\WINDOWS\system32\CRYPTUI.dll...
Scanning Module:C:\WINDOWS\system32\WININET.dll...
Scanning Module:C:\WINDOWS\System32\RASAPI32.dll...
Scanning Module:C:\WINDOWS\System32\rasman.dll...
Scanning Module:C:\WINDOWS\System32\TAPI32.dll...
Scanning Module:C:\WINDOWS\System32\raschap.dll...
Scanning Module:c:\windows\system32\schedsvc.dll...
Scanning Module:C:\WINDOWS\System32\MSIDLE.DLL...
Scanning Module:c:\windows\system32\audiosrv.dll...
Scanning Module:c:\windows\system32\wkssvc.dll...
Scanning Module:c:\windows\system32\cryptsvc.dll...
Scanning Module:c:\windows\system32\certcli.dll...
Scanning Module:c:\windows\system32\es.dll...
Scanning Module:c:\windows\system32\ersvc.dll...
Scanning Module:c:\windows\system32\dmserver.dll...
Scanning Module:c:\windows\pchealth\helpctr\binaries\pchsvc.dll...
Scanning Module:c:\windows\system32\srvsvc.dll...
Scanning Module:c:\windows\system32\hidserv.dll...
Scanning Module:c:\windows\system32\HID.DLL...
Scanning Module:c:\windows\system32\netman.dll...
Scanning Module:c:\windows\system32\netshell.dll...
Scanning Module:c:\windows\system32\credui.dll...
Scanning Module:c:\windows\system32\WZCSAPI.DLL...
Scanning Module:c:\windows\system32\srsvc.dll...
Scanning Module:c:\windows\system32\POWRPROF.dll...
Scanning Module:c:\windows\system32\sens.dll...
Scanning Module:c:\windows\system32\seclogon.dll...
Scanning Module:c:\windows\system32\trkwks.dll...
Scanning Module:c:\windows\system32\wbem\wmisvc.dll...
Scanning Module:C:\WINDOWS\system32\VSSAPI.DLL...
Scanning Module:c:\windows\system32\browser.dll...
Scanning Module:c:\windows\system32\wuauserv.dll...
Scanning Module:c:\windows\system32\wscsvc.dll...
Scanning Module:c:\windows\system32\msi.dll...
Scanning Module:C:\WINDOWS\system32\wuaueng.dll...
Scanning Module:C:\WINDOWS\System32\WINHTTP.dll...
Scanning Module:C:\WINDOWS\System32\Cabinet.dll...
Scanning Module:C:\WINDOWS\System32\mspatcha.dll...
Scanning Module:c:\windows\system32\ipnathlp.dll...
Scanning Module:C:\WINDOWS\system32\comsvcs.dll...
Scanning Module:C:\WINDOWS\system32\colbact.DLL...
Scanning Module:C:\WINDOWS\system32\MTXCLU.DLL...
Scanning Module:C:\WINDOWS\system32\WSOCK32.dll...
Scanning Module:C:\WINDOWS\System32\CLUSAPI.DLL...
Scanning Module:C:\WINDOWS\System32\RESUTILS.DLL...
Scanning Module:C:\WINDOWS\System32\wbem\wbemcomn.dll...
Scanning Module:C:\WINDOWS\System32\Wbem\wbemcore.dll...
Scanning Module:C:\WINDOWS\System32\Wbem\esscli.dll...
Scanning Module:C:\WINDOWS\System32\Wbem\FastProx.dll...
Scanning Module:C:\WINDOWS\System32\wbem\wbemsvc.dll...
Scanning Module:C:\WINDOWS\System32\wbem\wmiutils.dll...
Scanning Module:C:\WINDOWS\System32\wbem\repdrvfs.dll...
Scanning Module:C:\WINDOWS\System32\wbem\wmiprvsd.dll...
Scanning Module:C:\WINDOWS\System32\wbem\wbemess.dll...
Scanning Module:C:\WINDOWS\System32\wbem\ncprov.dll...
Scanning Module:C:\WINDOWS\System32\wbem\wbemcons.dll...
Scanning Module:C:\WINDOWS\System32\upnp.dll...
Scanning Module:C:\WINDOWS\System32\SSDPAPI.dll...
Scanning Module:C:\WINDOWS\System32\RASDLG.dll...
Scanning Module:C:\WINDOWS\system32\wups2.dll...
Scanning Module:C:\WINDOWS\system32\advpack.dll...

#:9 [incdsrv.exe]
ModuleName : C:\Program Files\Ahead\InCD\InCDsrv.exe
Command Line : "C:\Program Files\Ahead\InCD\InCDsrv.exe"
ProcessID : 1024
ThreadCreationTime : 01-08-2007 00:21:18
BasePriority : Normal
FileVersion : 4, 3, 23, 2
ProductVersion : 4, 3, 23, 2
ProductName : Nero AG incdsrv
CompanyName : Nero AG
FileDescription : incdsrv
InternalName : incdsrv
LegalCopyright : Copyright 1995-2006 Nero AG and its licensors. All Rights Reserved.
LegalTrademarks : InCD is a trademark of Nero AG
OriginalFilename : incdsrv.exe
Scanning Module:C:\Program Files\Ahead\InCD\InCDsrv.exe...
Scanning Module:C:\Program Files\Common Files\Ahead\Lib\DriveLocker.dll...
Scanning Module:C:\Program Files\Ahead\InCD\incdshx.dll...

#:10 [svchost.exe]
ModuleName : C:\WINDOWS\system32\svchost.exe
Command Line : C:\WINDOWS\system32\svchost.exe -k WudfServiceGroup
ProcessID : 1128
ThreadCreationTime : 01-08-2007 00:21:25
BasePriority : Normal
FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 5.1.2600.2180
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Generic Host Process for Win32 Services
InternalName : svchost.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : svchost.exe
Scanning Module:c:\windows\system32\wudfsvc.dll...
Scanning Module:c:\windows\system32\WUDFPlatform.dll...

#:11 [svchost.exe]
ModuleName : C:\WINDOWS\System32\svchost.exe
Command Line : C:\WINDOWS\System32\svchost.exe -k NetworkService
ProcessID : 1200
ThreadCreationTime : 01-08-2007 00:21:30
BasePriority : Normal
FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 5.1.2600.2180
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Generic Host Process for Win32 Services
InternalName : svchost.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : svchost.exe
Scanning Module:c:\windows\system32\dnsrslvr.dll...

#:12 [svchost.exe]
ModuleName : C:\WINDOWS\System32\svchost.exe
Command Line : C:\WINDOWS\System32\svchost.exe -k LocalService
ProcessID : 1248
ThreadCreationTime : 01-08-2007 00:21:31
BasePriority : Normal
FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 5.1.2600.2180
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Generic Host Process for Win32 Services
InternalName : svchost.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : svchost.exe
Scanning Module:c:\windows\system32\lmhsvc.dll...
Scanning Module:c:\windows\system32\webclnt.dll...
Scanning Module:c:\windows\system32\regsvc.dll...
Scanning Module:c:\windows\system32\ssdpsrv.dll...

#:13 [ccsetmgr.exe]
ModuleName : C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe
Command Line : "C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe"
ProcessID : 1348
ThreadCreationTime : 01-08-2007 00:21:33
BasePriority : Normal
FileVersion : 2.2.0.577
ProductVersion : 2.2.0.577
ProductName : Common Client
CompanyName : Symantec Corporation
FileDescription : Common Client Settings Manager Service
InternalName : ccSetMgr
LegalCopyright : Copyright © 2000-2003 Symantec Corporation. All rights reserved.
OriginalFilename : ccSetMgr.exe
Scanning Module:C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe...
Scanning Module:C:\WINDOWS\system32\MSVCP70.dll...
Scanning Module:C:\WINDOWS\system32\MSVCR70.dll...
Scanning Module:C:\WINDOWS\system32\IMM32.DLL...
Scanning Module:C:\Program Files\Common Files\Symantec Shared\ccVrTrst.dll...

#:14 [ccevtmgr.exe]
ModuleName : C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe
Command Line : "C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe"
ProcessID : 1388
ThreadCreationTime : 01-08-2007 00:21:34
BasePriority : Normal
FileVersion : 2.2.0.577
ProductVersion : 2.2.0.577
ProductName : Common Client
CompanyName : Symantec Corporation
FileDescription : Common Client Event Manager Service
InternalName : ccEvtMgr
LegalCopyright : Copyright © 2000-2003 Symantec Corporation. All rights reserved.
OriginalFilename : ccEvtMgr.exe
Scanning Module:C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe...
Scanning Module:C:\PROGRA~1\COMMON~1\SYMANT~1\CCSETEVT.DLL...

#:15 [spoolsv.exe]
ModuleName : C:\WINDOWS\system32\spoolsv.exe
Command Line : C:\WINDOWS\system32\spoolsv.exe
ProcessID : 1508
ThreadCreationTime : 01-08-2007 00:21:35
BasePriority : Normal
FileVersion : 5.1.2600.2696 (xpsp_sp2_gdr.050610-1519)
ProductVersion : 5.1.2600.2696
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Spooler SubSystem App
InternalName : spoolsv.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : spoolsv.exe
Scanning Module:C:\WINDOWS\system32\spoolsv.exe...
Scanning Module:C:\WINDOWS\system32\SPOOLSS.DLL...
Scanning Module:C:\WINDOWS\system32\localspl.dll...
Scanning Module:C:\WINDOWS\system32\cnbjmon.dll...
Scanning Module:C:\WINDOWS\system32\hpzlnt07.dll...
Scanning Module:C:\WINDOWS\system32\pjlmon.dll...
Scanning Module:C:\WINDOWS\system32\tcpmon.dll...
Scanning Module:C:\WINDOWS\system32\usbmon.dll...
Scanning Module:C:\WINDOWS\System32\spool\PRTPROCS\W32X86\filterpipelineprintproc.dll...
Scanning Module:C:\WINDOWS\system32\win32spl.dll...
Scanning Module:C:\WINDOWS\system32\NETRAP.dll...
Scanning Module:C:\WINDOWS\system32\inetpp.dll...

#:16 [defwatch.exe]
ModuleName : C:\Program Files\Symantec AntiVirus\DefWatch.exe
Command Line : "C:\Program Files\Symantec AntiVirus\DefWatch.exe"
ProcessID : 1604
ThreadCreationTime : 01-08-2007 00:21:36
BasePriority : Normal
FileVersion : 9.0.0.338
ProductVersion : 9.0.0.338
ProductName : Symantec AntiVirus
CompanyName : Symantec Corporation
FileDescription : Virus Definition Daemon
InternalName : DefWatch
LegalCopyright : Copyright 1998 - 2004 Symantec Corporation. All rights reserved.
OriginalFilename : DefWatch.exe
Scanning Module:C:\Program Files\Symantec AntiVirus\DefWatch.exe...

#:17 [gearsec.exe]
ModuleName : C:\WINDOWS\System32\GEARSec.exe
Command Line : C:\WINDOWS\System32\GEARSec.exe
ProcessID : 1636
ThreadCreationTime : 01-08-2007 00:21:37
BasePriority : Normal
FileVersion : 1, 0, 0, 3
ProductVersion : 1, 0, 0, 3
ProductName : gearsec
CompanyName : GEAR Software
FileDescription : gearsec
InternalName : gearsec
LegalCopyright : Copyright © 2001 GEAR Software
OriginalFilename : gearsec.exe
Scanning Module:C:\WINDOWS\System32\GEARSec.exe...

#:18 [googleupdaterservice.exe]
ModuleName : C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
Command Line : "C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe"
ProcessID : 1648
ThreadCreationTime : 01-08-2007 00:21:38
BasePriority : Normal
FileVersion : 2.2.824.5515.beta
ProductVersion : 2.2.824.5515.beta
ProductName : Google Updater
CompanyName : Google
FileDescription : gusvc
InternalName : gusvc
LegalCopyright : ©2005-2006 Google. All Rights Reserved.
OriginalFilename : GoogleUpdaterService.exe
Comments : Google Updater
Scanning Module:C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe...

#:19 [lssrvc.exe]
ModuleName : C:\Program Files\Common Files\LightScribe\LSSrvc.exe
Command Line : "C:\Program Files\Common Files\LightScribe\LSSrvc.exe"
ProcessID : 1688
ThreadCreationTime : 01-08-2007 00:21:39
BasePriority : Normal
FileVersion : 1.4.136.1
ProductName : LightScribe
CompanyName : Hewlett-Packard Company
LegalCopyright : © Copyright 2003-2006 Hewlett-Packard Development Company, LP
OriginalFilename : LSSrvc.exe
Scanning Module:C:\Program Files\Common Files\LightScribe\LSSrvc.exe...
Scanning Module:C:\Program Files\Common Files\LightScribe\LSSProxy.dll...
Scanning Module:C:\Program Files\Common Files\LightScribe\LSLog.dll...
Scanning Module:C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.163_x-ww_681e29fb\MSVCR80.dll...
Scanning Module:C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.163_x-ww_681e29fb\MSVCP80.dll...

#:20 [mdm.exe]
ModuleName : C:\Program Files\Common Files\Microsoft Shared\VS7Debug\mdm.exe
Command Line : "C:\Program Files\Common Files\Microsoft Shared\VS7Debug\mdm.exe"
ProcessID : 1760
ThreadCreationTime : 01-08-2007 00:21:40
BasePriority : Normal
FileVersion : 7.00.9466
ProductVersion : 7.00.9466
ProductName : Microsoft® Visual Studio .NET
CompanyName : Microsoft Corporation
FileDescription : Machine Debug Manager
InternalName : mdm.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : mdm.exe
Scanning Module:C:\Program Files\Common Files\Microsoft Shared\VS7Debug\mdm.exe...

#:21 [mscams32.exe]
ModuleName : C:\Program Files\Microsoft LifeCam\MSCamS32.exe
Command Line : "C:\Program Files\Microsoft LifeCam\MSCamS32.exe"
ProcessID : 1776
ThreadCreationTime : 01-08-2007 00:21:40
BasePriority : Normal

Scanning Module:C:\Program Files\Microsoft LifeCam\MSCamS32.exe...

#:22 [olmntrservice.exe]
ModuleName : C:\Program Files\Olivetti\ANY_WAY\olMntrService.exe
Command Line : "C:\Program Files\Olivetti\ANY_WAY\olMntrService.exe"
ProcessID : 1812
ThreadCreationTime : 01-08-2007 00:21:41
BasePriority : Normal

Scanning Module:C:\Program Files\Olivetti\ANY_WAY\olMntrService.exe...
Scanning Module:C:\Program Files\Olivetti\ANY_WAY\olMntrHid.dll...
Scanning Module:C:\WINDOWS\system32\CFGMGR32.dll...

#:23 [smagent.exe]
ModuleName : C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
Command Line : "C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe"
ProcessID : 1848
ThreadCreationTime : 01-08-2007 00:21:42
BasePriority : Normal
FileVersion : 3, 2, 6, 0
ProductVersion : 3, 2, 6, 0
ProductName : SoundMAX service agent
CompanyName : Analog Devices, Inc.
FileDescription : SoundMAX service agent component
InternalName : SMAgent
LegalCopyright : Copyright © 2002
OriginalFilename : SMAgent.exe
Scanning Module:C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe...

#:24 [svchost.exe]
ModuleName : C:\WINDOWS\System32\svchost.exe
Command Line : C:\WINDOWS\System32\svchost.exe -k imgsvc
ProcessID : 1864
ThreadCreationTime : 01-08-2007 00:21:42
BasePriority : Normal
FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 5.1.2600.2180
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Generic Host Process for Win32 Services
InternalName : svchost.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : svchost.exe
Scanning Module:c:\windows\system32\wiaservc.dll...
Scanning Module:c:\windows\system32\mscms.dll...
Scanning Module:C:\WINDOWS\System32\wiavusd.dll...
Scanning Module:C:\WINDOWS\WinSxS\x86_Microsoft.Windows.GdiPlus_6595b64144ccf1df_1.0.2600.2180_x-ww_522f9f82\gdiplus.dll...
Scanning Module:C:\WINDOWS\System32\SHFOLDER.dll...
Scanning Module:C:\WINDOWS\System32\actxprxy.dll...

#:25 [rtvscan.exe]
ModuleName : C:\Program Files\Symantec AntiVirus\Rtvscan.exe
Command Line : "C:\Program Files\Symantec AntiVirus\Rtvscan.exe"
ProcessID : 1932
ThreadCreationTime : 01-08-2007 00:21:44
BasePriority : Normal
FileVersion : 9.0.0.338
ProductVersion : 9.0.0.338
ProductName : Symantec AntiVirus
CompanyName : Symantec Corporation
FileDescription : Symantec AntiVirus
LegalCopyright : Copyright 1991 - 2004 Symantec Corporation. All rights reserved.
Scanning Module:C:\Program Files\Symantec AntiVirus\Rtvscan.exe...
Scanning Module:C:\WINDOWS\system32\CBA.DLL...
Scanning Module:C:\WINDOWS\system32\MsgSys.dll...
Scanning Module:C:\WINDOWS\system32\NTS.dll...
Scanning Module:C:\WINDOWS\system32\PDS.DLL...
Scanning Module:C:\WINDOWS\system32\CTL3D32.dll...
Scanning Module:C:\Program Files\Symantec AntiVirus\NAVLU.dll...
Scanning Module:C:\WINDOWS\system32\MFC42.DLL...
Scanning Module:C:\Program Files\Symantec AntiVirus\I2ldvp3.dll...
Scanning Module:C:\Program Files\Symantec AntiVirus\ecmldr32.DLL...
Scanning Module:C:\Program Files\Symantec AntiVirus\SAVRT32.DLL...
Scanning Module:C:\Program Files\Symantec AntiVirus\NAVNTUTL.DLL...
Scanning Module:C:\PROGRA~1\COMMON~1\SYMANT~1\VIRUSD~1\20070727.016\ecmsvr32.dll...
Scanning Module:C:\PROGRA~1\COMMON~1\SYMANT~1\VIRUSD~1\20070727.016\NAVEX32a.DLL...
Scanning Module:C:\PROGRA~1\COMMON~1\SYMANT~1\VIRUSD~1\20070727.016\NAVENG32.DLL...
Scanning Module:C:\Program Files\Symantec AntiVirus\IMail.dll...
Scanning Module:C:\Program Files\Symantec AntiVirus\NotesExt.dll...
Scanning Module:C:\Program Files\Symantec AntiVirus\vpmsece.dll...
Scanning Module:C:\Program Files\Common Files\Symantec Shared\SSC\scandlgs.dll...
Scanning Module:C:\Program Files\Symantec AntiVirus\DecSDK.dll...
Scanning Module:C:\Program Files\Symantec AntiVirus\Dec2.dll...
Scanning Module:C:\Program Files\Symantec AntiVirus\Dec2ID.dll...
Scanning Module:C:\Program Files\Symantec AntiVirus\Dec2ZIP.dll...
Scanning Module:C:\Program Files\Symantec AntiVirus\Dec2SS.dll...
Scanning Module:C:\Program Files\Symantec AntiVirus\Dec2GZIP.dll...
Scanning Module:C:\Program Files\Symantec AntiVirus\Dec2CAB.dll...
Scanning Module:C:\Program Files\Symantec AntiVirus\Dec2LHA.dll...
Scanning Module:C:\Program Files\Symantec AntiVirus\Dec2ARJ.dll...
Scanning Module:C:\Program Files\Symantec AntiVirus\Dec2TNEF.dll...
Scanning Module:C:\Program Files\Symantec AntiVirus\Dec2LZ.dll...
Scanning Module:C:\Program Files\Symantec AntiVirus\Dec2AMG.dll...
Scanning Module:C:\Program Files\Symantec AntiVirus\Dec2TAR.dll...
Scanning Module:C:\Program Files\Symantec AntiVirus\Dec2RTF.dll...
Scanning Module:C:\Program Files\Symantec AntiVirus\Dec2Text.dll...

#:26 [pqv2isvc.exe]
ModuleName : C:\Program Files\PowerQuest\Drive Image 7.0\Agent\PQV2iSvc.exe
Command Line : "C:\Program Files\PowerQuest\Drive Image 7.0\Agent\PQV2iSvc.exe"
ProcessID : 1992
ThreadCreationTime : 01-08-2007 00:21:48
BasePriority : Normal
FileVersion : 2.0.1.309
ProductVersion : 2.0.1.309
ProductName : V2i Protector
CompanyName : PowerQuest Corporation
FileDescription : V2i Protector Service Module
InternalName : PQV2iSvc
LegalCopyright : Copyright© PowerQuest Corporation 2003.
OriginalFilename : PQV2iSvc.exe
Comments : V2i Protector Agent
Scanning Module:C:\Program Files\PowerQuest\Drive Image 7.0\Agent\PQV2iSvc.exe...
Scanning Module:C:\WINDOWS\system32\msxml3.dll...
Scanning Module:C:\WINDOWS\system32\urlmon.dll...
Scanning Module:C:\WINDOWS\system32\mlang.dll...
Scanning Module:C:\Program Files\PowerQuest\Drive Image 7.0\Shared\PQV2iObj.dll...
Scanning Module:C:\Program Files\PowerQuest\Drive Image 7.0\Shared\PQNotify.dll...
Scanning Module:C:\Program Files\PowerQuest\Drive Image 7.0\Shared\PQScheduler.dll...
Scanning Module:C:\Program Files\PowerQuest\Drive Image 7.0\Agent\PQImaging.dll...
Scanning Module:C:\Program Files\PowerQuest\Drive Image 7.0\Agent\PQSmeCOM.dll...
Scanning Module:C:\Program Files\PowerQuest\Drive Image 7.0\Agent\gwrks32.dll...
Scanning Module:C:\Program Files\PowerQuest\Drive Image 7.0\Agent\GEARAW32.dll...
Scanning Module:C:\Program Files\PowerQuest\Drive Image 7.0\Agent\gwlangEN.dll...

#:27 [explorer.exe]
ModuleName : C:\WINDOWS\Explorer.EXE
Command Line : C:\WINDOWS\Explorer.EXE
ProcessID : 1256
ThreadCreationTime : 01-08-2007 00:22:13
BasePriority : Normal
FileVersion : 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 6.00.2900.2180
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Windows Explorer
InternalName : explorer
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : EXPLORER.EXE
Scanning Module:C:\WINDOWS\Explorer.EXE...
Scanning Module:C:\WINDOWS\system32\BROWSEUI.dll...
Scanning Module:C:\WINDOWS\system32\SHDOCVW.dll...
Scanning Module:C:\WINDOWS\System32\themeui.dll...
Scanning Module:C:\WINDOWS\System32\MSIMG32.dll...
Scanning Module:C:\WINDOWS\system32\LINKINFO.dll...
Scanning Module:C:\WINDOWS\system32\ntshrui.dll...
Scanning Module:C:\WINDOWS\System32\webcheck.dll...
Scanning Module:C:\WINDOWS\System32\stobject.dll...
Scanning Module:C:\WINDOWS\System32\BatMeter.dll...
Scanning Module:C:\WINDOWS\system32\WPDShServiceObj.dll...
Scanning Module:C:\WINDOWS\system32\PortableDeviceTypes.dll...
Scanning Module:C:\WINDOWS\system32\PortableDeviceApi.dll...
Scanning Module:C:\Program Files\ScanSoft\OmniPageSE3.0\OpHookSE3.dll...
Scanning Module:C:\PROGRA~1\ntl\BROADB~1\SMARTB~1\SBHook.dll...
Scanning Module:C:\WINDOWS\System32\drprov.dll...
Scanning Module:C:\WINDOWS\System32\ntlanman.dll...
Scanning Module:C:\WINDOWS\System32\NETUI0.dll...
Scanning Module:C:\WINDOWS\System32\NETUI1.dll...
Scanning Module:C:\PROGRA~1\MYWEBS~1\bar\1.bin\mwsoestb.dll...
Scanning Module:C:\WINDOWS\System32\davclnt.dll...
Scanning Module:C:\WINDOWS\system32\MSCTF.dll...
Scanning Module:C:\WINDOWS\system32\mslbui.dll...
Scanning Module:C:\WINDOWS\system32\shdoclc.dll...

#:28 [alg.exe]
ModuleName : C:\WINDOWS\System32\alg.exe
Command Line : C:\WINDOWS\System32\alg.exe
ProcessID : 716
ThreadCreationTime : 01-08-2007 00:22:24
BasePriority : Normal
FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 5.1.2600.2180
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Application Layer Gateway Service
InternalName : ALG.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : ALG.exe
Scanning Module:C:\WINDOWS\System32\alg.exe...

#:29 [wuauclt.exe]
ModuleName : C:\WINDOWS\system32\wuauclt.exe
Command Line : "C:\WINDOWS\system32\wuauclt.exe" /RunStoreAsComServer Local\[3e8]SUSDScbd1739cadca7e49993cd3643d10bcab
ProcessID : 2288
ThreadCreationTime : 01-08-2007 00:22:47
BasePriority : Normal

Scanning Module:C:\WINDOWS\system32\wuauclt.exe...

#:30 [ccapp.exe]
ModuleName : C:\Program Files\Common Files\Symantec Shared\ccApp.exe
Command Line : "C:\Program Files\Common Files\Symantec Shared\ccApp.exe"
ProcessID : 2328
ThreadCreationTime : 01-08-2007 00:22:48
BasePriority : Normal
FileVersion : 2.2.0.577
ProductVersion : 2.2.0.577
ProductName : Common Client
CompanyName : Symantec Corporation
FileDescription : Common Client User Session
InternalName : ccApp
LegalCopyright : Copyright © 2000-2003 Symantec Corporation. All rights reserved.
OriginalFilename : ccApp.exe
Scanning Module:C:\Program Files\Common Files\Symantec Shared\ccApp.exe...
Scanning Module:C:\Program Files\Symantec\LiveUpdate\ProductRegCom.DLL...
Scanning Module:C:\Program Files\Symantec\LiveUpdate\LuComServerPS.DLL...
Scanning Module:C:\PROGRA~1\COMMON~1\SYMANT~1\CCALERT.DLL...
Scanning Module:C:\PROGRA~1\COMMON~1\SYMANT~1\CCEMLPXY.DLL...
Scanning Module:C:\WINDOWS\system32\SYMREDIR.dll...
Scanning Module:C:\Program Files\Common Files\Symantec Shared\ccSetEvt.dll...
Scanning Module:C:\Program Files\Symantec AntiVirus\SavEmail.dll...
Scanning Module:C:\Program Files\Common Files\Symantec Shared\ccProSub.dll...

#:31 [vptray.exe]
ModuleName : C:\PROGRA~1\SYMANT~1\VPTray.exe
Command Line : "C:\PROGRA~1\SYMANT~1\VPTray.exe"
ProcessID : 2348
ThreadCreationTime : 01-08-2007 00:22:50
BasePriority : Normal
FileVersion : 9.0.0.338
ProductVersion : 9.0.0.338
ProductName : Symantec AntiVirus
CompanyName : Symantec Corporation
FileDescription : Symantec AntiVirus
LegalCopyright : Copyright 1991 - 2004 Symantec Corporation. All rights reserved.
Scanning Module:C:\PROGRA~1\SYMANT~1\VPTray.exe...
Scanning Module:C:\Program Files\Symantec AntiVirus\Cliproxy.dll...
Scanning Module:C:\PROGRA~1\SYMANT~1\NAVNTUTL.DLL...
Scanning Module:C:\Program Files\Symantec AntiVirus\Cliscan.dll...

#:32 [lvcoms.exe]
ModuleName : C:\Program Files\Common Files\Logitech\QCDriver\LVCOMS.EXE
Command Line : "C:\Program Files\Common Files\Logitech\QCDriver\LVCOMS.EXE"
ProcessID : 2372
ThreadCreationTime : 01-08-2007 00:22:51
BasePriority : Normal
FileVersion : 6.0.0.1208
ProductVersion : 6.0.0.1208
ProductName : Logitech QuickCam
CompanyName : Logitech Inc.
FileDescription : LVCom Server
InternalName : LVComS.exe
LegalCopyright : © 1996-2001 Logitech. All rights reserved.
OriginalFilename : LVComS.exe
Scanning Module:C:\Program Files\Common Files\Logitech\QCDriver\LVCOMS.EXE...

#:33 [realsched.exe]
ModuleName : C:\Program Files\Common Files\Real\Update_OB\realsched.exe
Command Line : "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
ProcessID : 2428
ThreadCreationTime : 01-08-2007 00:22:52
BasePriority : Normal
FileVersion : 0.1.0.3760
ProductVersion : 0.1.0.3760
ProductName : RealPlayer (32-bit)
CompanyName : RealNetworks, Inc.
FileDescription : RealNetworks Scheduler
InternalName : schedapp
LegalCopyright : Copyright © RealNetworks, Inc. 1995-2004
LegalTrademarks : RealAudio™ is a trademark of RealNetworks, Inc.
OriginalFilename : realsched.exe
Scanning Module:C:\Program Files\Common Files\Real\Update_OB\realsched.exe...

#:34 [motivesb.exe]
ModuleName : C:\PROGRA~1\ntl\BROADB~1\SMARTB~1\MotiveSB.exe
Command Line : "C:\PROGRA~1\ntl\BROADB~1\SMARTB~1\MotiveSB.exe"
ProcessID : 2468
ThreadCreationTime : 01-08-2007 00:22:52
BasePriority : Normal
FileVersion : 5.6.7.asst_classic.smartbridge.20031210_035000
ProductVersion : 5.6.7.asst_classic.smartbridge
ProductName : Motive System
CompanyName : Motive Communications, Inc.
FileDescription : ntl:home broadband medic alerts
InternalName : version
LegalCopyright : Copyright 1998-2003
OriginalFilename : version
Scanning Module:C:\PROGRA~1\ntl\BROADB~1\SMARTB~1\MotiveSB.exe...
Scanning Module:C:\PROGRA~1\ntl\BROADB~1\SMARTB~1\httpclient52.dll...
Scanning Module:C:\PROGRA~1\ntl\BROADB~1\SMARTB~1\clientutil52.dll...
Scanning Module:C:\PROGRA~1\ntl\BROADB~1\SMARTB~1\SBRes.dll...
Scanning Module:C:\PROGRA~1\ntl\BROADB~1\SMARTB~1\psapi.dll...
Scanning Module:C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll...
Scanning Module:C:\Program Files\MyWebSearch\SrchAstt\1.bin\MWSSRCAS.DLL...
Scanning Module:C:\PROGRA~1\ntl\BROADB~1\SMARTB~1\alertfilter.dll...
Scanning Module:C:\WINDOWS\system32\sensapi.dll...
Scanning Module:C:\WINDOWS\System32\mshtml.dll...
Scanning Module:C:\WINDOWS\System32\msls31.dll...
Scanning Module:C:\WINDOWS\System32\msimtf.dll...
Scanning Module:C:\WINDOWS\ime\sptip.dll...
Scanning Module:C:\WINDOWS\system32\OLEACC.dll...
Scanning Module:C:\WINDOWS\IME\SPGRMR.DLL...
Scanning Module:C:\Program Files\Common Files\Microsoft Shared\Ink\SKCHUI.DLL...
Scanning Module:C:\WINDOWS\System32\jscript.dll...
Scanning Module:C:\WINDOWS\system32\Macromed\Flash\Flash9b.ocx...
Scanning Module:C:\WINDOWS\system32\ImgUtil.dll...
Scanning Module:C:\WINDOWS\System32\pngfilt.dll...

#:35 [jusched.exe]
ModuleName : C:\Program Files\Java\jre1.6.0_01\bin\jusched.exe
Command Line : "C:\Program Files\Java\jre1.6.0_01\bin\jusched.exe"
ProcessID : 2508
ThreadCreationTime : 01-08-2007 00:22:53
BasePriority : Normal

Scanning Module:C:\Program Files\Java\jre1.6.0_01\bin\jusched.exe...
Scanning Module:C:\Program Files\Java\jre1.6.0_01\bin\MSVCR71.dll...

#:36 [oldvcstatus.exe]
ModuleName : C:\Program Files\Olivetti\ANY_WAY\olDvcStatus.exe
Command Line : "C:\Program Files\Olivetti\ANY_WAY\olDvcStatus.exe" dvcStatusMinimize
ProcessID : 2588
ThreadCreationTime : 01-08-2007 00:22:55
BasePriority : Normal

Scanning Module:C:\Program Files\Olivetti\ANY_WAY\olDvcStatus.exe...
Scanning Module:C:\Program Files\Olivetti\ANY_WAY\MFC71.DLL...
Scanning Module:C:\Program Files\Olivetti\ANY_WAY\MSVCR71.dll...
Scanning Module:C:\WINDOWS\system32\MFC71ENU.DLL...
Scanning Module:C:\Program Files\Olivetti\ANY_WAY\olDvcStatusRC.dll...
Scanning Module:C:\WINDOWS\system32\RICHED20.DLL...

#:37 [tomtomhome.exe]
ModuleName : C:\Program Files\TomTom HOME\TomTomHOME.exe
Command Line : "C:\Program Files\TomTom HOME\TomTomHOME.exe" -s
ProcessID : 2620
ThreadCreationTime : 01-08-2007 00:22:57
BasePriority : Normal

Scanning Module:C:\Program Files\TomTom HOME\TomTomHOME.exe...
Scanning Module:C:\WINDOWS\system32\msftedit.dll...

#:38 [opwarese3.exe]
ModuleName : C:\Program Files\ScanSoft\OmniPageSE3.0\OpwareSE3.exe
Command Line : "C:\Program Files\ScanSoft\OmniPageSE3.0\OpwareSE3.exe"
ProcessID : 2672
ThreadCreationTime : 01-08-2007 00:22:59
BasePriority : Normal
FileVersion : 14.0.2004.3081
ProductVersion : 14.0
ProductName : OmniPage Pro
CompanyName : ScanSoft, Inc.
FileDescription : OCR Aware (32-bit)
InternalName : OPWARE14.EXE
LegalCopyright : Copyright © 1995-2004 ScanSoft, Inc.
LegalTrademarks : ScanSoft, Recognita, OmniPage and OmniPage Pro are registered trademarks of ScanSoft, Inc. in the United States and/or other countries.
OriginalFilename : OPWARE14.EXE
Scanning Module:C:\Program Files\ScanSoft\OmniPageSE3.0\OpwareSE3.exe...

#:39 [dvdtray.exe]
ModuleName : C:\Program Files\Ahead\ODD Toolkit\DVDTray.exe
Command Line : "C:\Program Files\Ahead\ODD Toolkit
ProcessID : 2728
ThreadCreationTime : 01-08-2007 00:23:01
BasePriority : Normal
FileVersion : 2.0
ProductVersion : 2.0
CompanyName : Hewlett-Packard Company
FileDescription : HP DVD Tray
InternalName : dvdtray
LegalCopyright : Hewlett-Packard Company 2000-2003
OriginalFilename : dvdtray.exe
Scanning Module:C:\Program Files\Ahead\ODD Toolkit\DVDTray.exe...

#:40 [incd.exe]
ModuleName : C:\Program Files\Ahead\InCD\InCD.exe
Command Line : "C:\Program Files\Ahead\InCD\InCD.exe"
ProcessID : 2784
ThreadCreationTime : 01-08-2007 00:23:04
BasePriority : Normal
FileVersion : 4, 3, 23, 2
ProductVersion : 4, 3, 23, 2
ProductName : Nero AG InCD
CompanyName : Nero AG
FileDescription : InCD
InternalName : InCD
LegalCopyright : Copyright 1995-2006 Nero AG and its licensors. All Rights Reserved.
LegalTrademarks : InCD is a trademark of Nero AG
OriginalFilename : InCD.exe
Scanning Module:C:\Program Files\Ahead\InCD\InCD.exe...
Scanning Module:C:\Program Files\Ahead\InCD\InCdApi.dll...

#:41 [pdvdserv.exe]
ModuleName : C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe
Command Line : "C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe"
ProcessID : 2848
ThreadCreationTime : 01-08-2007 00:23:07
BasePriority : Normal
FileVersion : 6.00.1027
ProductVersion : 6.00.1027
ProductName : PowerDVD
CompanyName : Cyberlink Corp.
FileDescription : PowerDVD RC Service
InternalName : PowerDVD RC Service
LegalCopyright : Copyright © CyberLink Corp. 1997-2004
OriginalFilename : PDVDSERV.EXE
Scanning Module:C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe...
Scanning Module:C:\Program Files\CyberLink\PowerDVD\CLRCEngine2.dll...

#:42 [launchapplication.exe]
ModuleName : C:\Program Files\Nokia\Nokia PC Suite 6\LaunchApplication.exe
Command Line : "C:\Program Files\Nokia\Nokia PC Suite 6\LaunchApplication.exe" -startup
ProcessID : 2876
ThreadCreationTime : 01-08-2007 00:23:08
BasePriority : Normal

Scanning Module:C:\Program Files\Nokia\Nokia PC Suite 6\LaunchApplication.exe...
Scanning Module:C:\Program Files\Nokia\Nokia PC Suite 6\PCSCM.dll...
Scanning Module:C:\WINDOWS\system32\OLEPRO32.DLL...
Scanning Module:C:\WINDOWS\system32\MSVCP71.dll...
Scanning Module:C:\WINDOWS\system32\MSVCR71.dll...
Scanning Module:C:\Program Files\Nokia\Nokia PC Suite 6\PCSSupportSetup.DLL...
Scanning Module:C:\Program Files\PC Connectivity Solution\ConnAPI.DLL...
Scanning Module:C:\WINDOWS\system32\MFC71U.DLL...
Scanning Module:C:\Program Files\PC Connectivity Solution\ConfServer.dll...
Scanning Module:C:\Program Files\Nokia\Nokia PC Suite 6\Lang\LaunchApplication_eng.NLR...

#:43 [reader_sl.exe]
ModuleName : C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe
Command Line : "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
ProcessID : 2896
ThreadCreationTime : 01-08-2007 00:23:09
BasePriority : Normal
FileVersion : 8.0.0.0
ProductVersion : 8.0.0.0
ProductName : Adobe Acrobat
CompanyName : Adobe Systems Incorporated
FileDescription : Adobe Acrobat SpeedLauncher
LegalCopyright : Copyright Adobe Systems Incorporated 2004
OriginalFilename : AcroSpeedLaunch.exe
Scanning Module:C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe...

#:44 [vvx6000.exe]
ModuleName : C:\WINDOWS\vVX6000.exe
Command Line : "C:\WINDOWS\vVX6000.exe"
ProcessID : 2968
ThreadCreationTime : 01-08-2007 00:23:11
BasePriority : Normal

Scanning Module:C:\WINDOWS\vVX6000.exe...
Scanning Module:C:\WINDOWS\system32\oledlg.dll...

#:45 [mwsoemon.exe]
ModuleName : C:\PROGRA~1\MYWEBS~1\bar\1.bin\mwsoemon.exe
Command Line : "C:\PROGRA~1\MYWEBS~1\bar\1.bin\mwsoemon.exe"
ProcessID : 3088
ThreadCreationTime : 01-08-2007 00:23:15
BasePriority : Normal
FileVersion : 1,2,2,4
ProductVersion : 2,0,1,0
ProductName : My Web Search Bar for Internet Explorer, email clients, and messenger clients
CompanyName : MyWebSearch.com
FileDescription : My Web Search Plugin Loader
InternalName : mwsoemon
LegalCopyright : Copyright © 2003-2006 MyWebSearch.com
OriginalFilename : mwsoemon.exe
Scanning Module:C:\PROGRA~1\MYWEBS~1\bar\1.bin\mwsoemon.exe...

#:46 [ctfmon.exe]
ModuleName : C:\WINDOWS\system32\ctfmon.exe
Command Line : "C:\WINDOWS\system32\ctfmon.exe"
ProcessID : 3112
ThreadCreationTime : 01-08-2007 00:23:17
BasePriority : Normal
FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 5.1.2600.2180
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : CTF Loader
InternalName : CTFMON
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : CTFMON.EXE
Scanning Module:C:\WINDOWS\system32\ctfmon.exe...
Scanning Module:C:\WINDOWS\system32\MSUTB.dll...

#:47 [googleupdater.exe]
ModuleName : C:\Program Files\Google\Google Updater\GoogleUpdater.exe
Command Line : "C:\Program Files\Google\Google Updater\GoogleUpdater.exe" -systray -startup
ProcessID : 3264
ThreadCreationTime : 01-08-2007 00:23:25
BasePriority : Normal
FileVersion : 2.1.928.34356.beta
ProductVersion : 2.1.928.34356.beta
ProductName : Google Updater
CompanyName : Google
FileDescription : Google Updater
InternalName : Google Updater
LegalCopyright : ©2005-2006 Google. All Rights Reserved.
OriginalFilename : GoogleUpdater.exe
Comments : Google Updater
Scanning Module:C:\Program Files\Google\Google Updater\GoogleUpdater.exe...
Scanning Module:C:\Program Files\Google\Google Updater\2.1.928.34356\ci.dll...
Scanning Module:C:\Program Files\Google\GoogleToolbarNotifier\2.0.301.7164\swg.dll...
Scanning Module:C:\Program Files\Google\GoogleToolbarNotifier\2.0.301.7164\res_en.dll...

#:48 [sistray.exe]
ModuleName : C:\WINDOWS\system32\sistray.exe
Command Line : "C:\WINDOWS\system32\sistray.exe"
ProcessID : 3280
ThreadCreationTime : 01-08-2007 00:23:26
BasePriority : Normal
FileVersion : 0.0.0.3620
ProductVersion : 0.0.0.3620
ProductName : SiS ® Compatible Super VGA SiSTray application
CompanyName : Silicon Integrated Systems Corporation
FileDescription : SiS Compatible Super VGA Tray Application
InternalName : SISTRAY 3.62.52
LegalCopyright : Copyright © Silicon Integrated Systems Corp. 1998-2004
OriginalFilename : SISTRAY.EXE
Comments : SiS Compatible Super VGA Tray Application
Scanning Module:C:\WINDOWS\system32\sistray.exe...
Scanning Module:C:\WINDOWS\system32\SiSApCom.dll...
Scanning Module:C:\WINDOWS\system32\DDRAW.dll...
Scanning Module:C:\WINDOWS\system32\DCIMAN32.dll...
Scanning Module:C:\WINDOWS\system32\SiSBase.dll...
Scanning Module:C:\WINDOWS\system32\MSVCIRT.dll...

#:49 [mpbtn.exe]
ModuleName : C:\Program Files\ntl\broadband medic\bin\mpbtn.exe
Command Line : "C:\Program Files\ntl\broadband medic\bin\mpbtn.exe"
ProcessID : 3428
ThreadCreationTime : 01-08-2007 00:23:35
BasePriority : Normal

Scanning Module:C:\Program Files\ntl\broadband medic\bin\mpbtn.exe...
Scanning Module:C:\Program Files\ntl\broadband medic\bin\clientutil52.dll...
Scanning Module:C:\Program Files\ntl\broadband medic\bin\AsstCatalog.dll...
Scanning Module:C:\Program Files\ntl\broadband medic\bin\resource.dll...

#:50 [ad-aware.exe]
ModuleName : C:\Program Files\Lavasoft\Ad-Aware SE Personal\Ad-Aware.exe
Command Line : "C:\Program Files\Lavasoft\Ad-Aware SE Personal\Ad-Aware.exe"
ProcessID : 3508
ThreadCreationTime : 01-08-2007 00:23:38
BasePriority : Normal
FileVersion : 6.2.0.236
ProductVersion : SE 106
ProductName : Lavasoft Ad-Aware SE
CompanyName : Lavasoft Sweden
FileDescription : Ad-Aware SE Core application
InternalName : Ad-Aware.exe
LegalCopyright : Copyright © Lavasoft AB Sweden
OriginalFilename : Ad-Aware.exe
Comments : All Rights Reserved
Scanning Module:C:\Program Files\Lavasoft\Ad-Aware SE Personal\Ad-Aware.exe...
Scanning Module:C:\WINDOWS\system32\RICHED32.DLL...

#:51 [servicelayer.exe]
ModuleName : C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
Command Line : "C:\Program Files\PC Connectivity Solution\ServiceLayer.exe"
ProcessID : 3852
ThreadCreationTime : 01-08-2007 00:24:10
BasePriority : Normal
FileVersion : 6, 83, 78, 3
ProductVersion : 3.1
ProductName : PC Connectivity Solution
CompanyName : Nokia.
FileDescription : ServiceLayer Module
InternalName : ServiceLayer
LegalCopyright : Copyright © 2002-2007 Nokia. All Rights Reserved.
OriginalFilename : ServiceLayer.exe
Scanning Module:C:\Program Files\PC Connectivity Solution\ServiceLayer.exe...
Scanning Module:C:\Program Files\PC Connectivity Solution\NclTools.dll...
Scanning Module:C:\Program Files\PC Connectivity Solution\Transports\NCLIrDAMM.dll...
Scanning Module:C:\Program Files\PC Connectivity Solution\Transports\NCLRSMM.dll...
Scanning Module:C:\Program Files\PC Connectivity Solution\Transports\NCLUSBMM.dll...
Scanning Module:C:\Program Files\PC Connectivity Solution\Transports\NclMSBTMM.dll...
Scanning Module:C:\WINDOWS\system32\irprops.cpl...
Scanning Module:C:\WINDOWS\system32\DEVMGR.DLL...

Memory scan result:
»»»»»»»»»»»»»»»»»»»»
»»»»»»»»»»»»»»»»»»
New critical objects: 0
Objects found so far: 3


Started registry scan
»»»»»»»»»»»»»»»»»»»»
»»»»»»»»»»»»»»»»»»

Registry Scan result:
»»»»»»»»»»»»»»»»»»»»
»»»»»»»»»»»»»»»»»»
New critical objects: 0
Objects found so far: 3


Started deep registry scan
»»»»»»»»»»»»»»»»»»»»
»»»»»»»»»»»»»»»»»»

Deep registry scan result:
»»»»»»»»»»»»»»»»»»»»
»»»»»»»»»»»»»»»»»»
New critical objects: 0
Objects found so far: 3


Started Tracking Cookie scan
»»»»»»»»»»»»»»»»»»»»
»»»»»»»»»»»»»»»»»»


Tracking cookie scan result:
»»»»»»»»»»»»»»»»»»»»
»»»»»»»»»»»»»»»»»»
New critical objects: 0
Objects found so far: 3



Deep scanning and examining files (C:)
»»»»»»»»»»»»»»»»»»»»
»»»»»»»»»»»»»»»»»»

Adware.Websearch Object Recognized!
Type : File
Data : A0034313.EXE
TAC Rating : 9
Category : Adware
Comment :
Object : C:\System Volume Information\_restore{A1B66704-C83D-441E-8F95-89977278325B}\RP401\
FileVersion : 1, 0, 3, 2
ProductVersion : 1, 0, 3, 2
ProductName : My Web Search Skin Tools
CompanyName : MyWebSearch.com
FileDescription : MyWebSearch Skin Player
InternalName : m3SkPlay
LegalCopyright : Copyright © 2001, 2002, 2003, 2004
OriginalFilename : m3SkPlay.exe


Disk Scan Result for C:\
»»»»»»»»»»»»»»»»»»»»
»»»»»»»»»»»»»»»»»»
New critical objects: 0
Objects found so far: 4


Deep scanning and examining files (F:)
»»»»»»»»»»»»»»»»»»»»
»»»»»»»»»»»»»»»»»»

Disk Scan Result for F:\
»»»»»»»»»»»»»»»»»»»»
»»»»»»»»»»»»»»»»»»
New critical objects: 0
Objects found so far: 4


Deep scanning and examining files (G:)
»»»»»»»»»»»»»»»»»»»»
»»»»»»»»»»»»»»»»»»

Disk Scan Result for G:\
»»»»»»»»»»»»»»»»»»»»
»»»»»»»»»»»»»»»»»»
New critical objects: 0
Objects found so far: 4


Deep scanning and examining files (H:)
»»»»»»»»»»»»»»»»»»»»
»»»»»»»»»»»»»»»»»»

Disk Scan Result for H:\
»»»»»»»»»»»»»»»»»»»»
»»»»»»»»»»»»»»»»»»
New critical objects: 0
Objects found so far: 4


Deep scanning and examining files (I:)
»»»»»»»»»»»»»»»»»»»»
»»»»»»»»»»»»»»»»»»

Disk Scan Result for I:\
»»»»»»»»»»»»»»»»»»»»
»»»»»»»»»»»»»»»»»»
New critical objects: 0
Objects found so far: 4


Scanning Hosts file......
Hosts file location:"C:\WINDOWS\system32\drivers\etc\hosts".
»»»»»»»»»»»»»»»»»»»»
»»»»»»»»»»»»»»»»»»»»

»»»»»»»»»»»»»»»»»»»»
»»»»»»»»»»»»»»»»

Hosts file scan result:
»»»»»»»»»»»»»»»»»»»»
»»»»»»»»»»»»»»»»»»
1 entries scanned.
New critical objects:0
Objects found so far: 4




Performing conditional scans...
»»»»»»»»»»»»»»»»»»»»
»»»»»»»»»»»»»»»»»»

Adware.Websearch Object Recognized!
Type : RegValue
Data :
TAC Rating : 9
Category : Adware
Comment :
Rootkey : HKEY_CURRENT_USER
Object : software\microsoft\internet explorer\main
Value : Search Bar

Conditional scan result:
»»»»»»»»»»»»»»»»»»»»
»»»»»»»»»»»»»»»»»»
New critical objects: 1
Objects found so far: 5

02:07:54 Scan Complete

Summary Of This Scan
»»»»»»»»»»»»»»»»»»»»
»»»»»»»»»»»»»»»»»»
Total scanning time:00:43:37.829
Objects scanned:234254
Objects identified:2
Objects ignored:0
New critical objects:2



NB: Moved to HijackThis section for expert assistance.