Trojan.vundo.dvs
bonjour. en faisant une analyse je viens de decouvrir que je suis infecté par un trojan vundo.dvs. l'antivirus me dit qu'il l'a envoyé en qurantaine donc qd je verifie dedans j'ai le meme virus une bonne cinquantaine de fois et je n'arrive pas a l'envoyer au labo. et pour couronner le tout le curseur de ma quarantaine fait du "yoyo". Je sais pas si c'est lié. j'ai le rapport de hijackthis mais j'y comprend rien :
Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\system32\taskeng.exe
C:\Windows\RtHDVCpl.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Acer\Empowering Technology\eDataSecurity\eDSloader.exe
C:\Windows\System32\rundll32.exe
C:\Program Files\Launch Manager\LManager.exe
C:\Program Files\Softwin\BitDefender10\bdagent.exe
C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe
C:\Users\Nico\AppData\Local\Temp\RtkBtMnt.exe
C:\Program Files\HP\HP Software Update\hpwuSchd2.exe
C:\Program Files\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe
C:\Windows\System32\rundll32.exe
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
C:\Acer\Empowering Technology\ENET\ENMTRAY.EXE
C:\Acer\Empowering Technology\EPOWER\EPOWER_DMC.EXE
C:\Acer\Empowering Technology\ACER.EMPOWERING.FRAMEWORK.SUPERVISOR.EXE
C:\Acer\Empowering Technology\eRecovery\ERAGENT.EXE
C:\Program Files\Common Files\Ahead\Lib\NMIndexStoreSvr.exe
C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe
C:\Windows\system32\WerCon.exe
C:\Windows\explorer.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Users\Nico\Program Files\uTorrent\uTorrent.exe
C:\Program Files\Softwin\BitDefender10\bdmcon.exe
C:\Users\Nico\Documents\Mes fichiers reçus\HijackThis.exe
C:\Program Files\Softwin\BitDefender10\bdlite.exe
O23 - Service: eDSService.exe (eDataSecurity Service) - HiTRSUT - C:\Acer\Empowering Technology\eDataSecurity\eDSService.exe
O23 - Service: eLock Service (eLockService) - Acer Inc. - C:\Acer\Empowering Technology\eLock\Service\eLockServ.exe
O23 - Service: eNet Service - Acer Inc. - C:\Acer\Empowering Technology\eNet\eNet Service.exe
O23 - Service: eRecovery Service (eRecoveryService) - Acer Inc. - C:\Acer\Empowering Technology\eRecovery\eRecoveryService.exe
O23 - Service: eSettings Service (eSettingsService) - Unknown owner - C:\Acer\Empowering Technology\eSettings\Service\capuserv.exe
O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - c:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: BitDefender Desktop Update Service (LIVESRV) - SOFTWIN S.R.L. - C:\Program Files\Common Files\Softwin\BitDefender Update Service\livesrv.exe
O23 - Service: MobilityService - Unknown owner - C:\Acer\Mobility Center\MobilityService.exe
O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe
O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files\CyberLink\Shared Files\RichVideo.exe
O23 - Service: BitDefender Virus Shield (VSSERV) - SOFTWIN S.R.L. - C:\Program Files\Softwin\BitDefender10\vsserv.exe
O23 - Service: Windows Live Setup Service (WLSetupSvc) - Unknown owner - C:\Program Files\Windows Live\installer\WLSetupSvc.exe
O23 - Service: ePower Service (WMIService) - acer - C:\Acer\Empowering Technology\ePower\ePowerSvc.exe
O23 - Service: XAudioService - Conexant Systems, Inc. - C:\Windows\system32\DRIVERS\xaudio.exe
O23 - Service: BitDefender Communicator (XCOMM) - SOFTWIN S.R.L - C:\Program Files\Common Files\Softwin\BitDefender Communicator\xcommsvr.exe
--
merci d'avance
Réponses
-
Bonjour,
J'aurais besoin du rapport BitDefender (les fichiers infectes avec Trojan.Vundo.DVS) et d'un rapport startuplist .0 -
celui de bitdefender :
Statistiques
Chemin cible: C:\
\
Dossiers : 14872
Fichiers : 313214
Processus Mémoire analysés : 80
Archives : 2620
Fichiers enpaquetés : 22799
Virus trouvés : 2
Fichiers infectés : 2
Processus Mémoire infectés : 0
Fichiers suspects : 0
Alertes : 0
Fichiers désinfectés : 0
Fichiers effacés : 1
Fichiers déplacés : 1
Erreurs I/O : 73
Temps d'analyse :=01:15:51
Fichiers/seconde :68
Statistiques Spywares
Registres analysés : 423
Registres infectés : 0
Cookies analysés : 10
Cookies infectés : 0
Fichiers spyware infectés : 0
Menaces Spyware détectées : 0
Définitions virus : 978553
Plugins d'analyse : 16
Plugins archives : 41
Plug-ins décompression : 7
Plug-ins messagerie : 6
Plug-ins système : 5
Options d'analyse
Détection
[X] Analyser le secteur de boot
[X] Processus mémoire
[X] Analyser les archives
[X] Analyser les fichiers enpaquetés
[X] Analyser la messagerie
Masque fichiers
[ ] Programmes
[X] Tous les fichiers
[ ] Extensions définies par l'utilisateur:
[ ] Exclure les extensions: ;
Action
Objets infectés
[ ] Ignorer
[X] Désinfecter
[ ] Effacer
[ ] Mettre en quarantaine
[ ] Demander l'action
Seconde action
[ ] Ignorer
[ ] Effacer
[X] Mettre en quarantaine
[ ] Demander l'action
Options d'analyse
[X] Activer les alertes
[X] Activer l'heuristique
[ ] Afficher tous les fichiers dans le journal
[X] Fichier journal: C:\ProgramData\Bitdefender\Desktop\Profiles\Logs\deep_scan\1201872953.log
Options d'analyse Spyware
[X] Analyse contre les risques non-viraux
[ ] Ecarter de l'analyse les dialers et les applications
[X] Clés de registres
[X] Cookies
Résumé:
C:\Users\Nico\AppData\Local\Temp\nmoqr.ini2 Infecté: Trojan.Vundo.DVS
C:\Users\Nico\AppData\Local\Temp\nmoqr.ini2 Désinfection impossible
C:\Users\Nico\AppData\Local\Temp\nmoqr.ini2 Déplacé
C:\Users\Nico\AppData\Roaming\Nero\Nero8\Nero StartSmart\CopyImage.nrg=>ADMIN/FR-FR/OCT.CHM=>exploit Infecté: Exploit.Itss.A
C:\Users\Nico\AppData\Roaming\Nero\Nero8\Nero StartSmart\CopyImage.nrg=>ADMIN/FR-FR/OCT.CHM=>exploit Effacé
C:\Users\Nico\AppData\Roaming\Nero\Nero8\Nero StartSmart\CopyImage.nrg=>ADMIN/FR-FR/OCT.CHM La recompression des archives a échoué (actions marquées non effectuées)
mais si je vx mettre celui de startuplist il me met que c'est bcp trop long meme si je le poste en 2 fois
tu as une solution ?0 -
StartupList report, 01/02/2008, 16:02:41
StartupList version 2.02.0
Started from: C:\Users\Nico\Documents\Mes fichiers reçus\StartupList.EXE
Detected: Windows Vista (WinNT 6.00.6000)
Logged on as 'Nico' to 'PC-DE-NICO'
* Using default options (see end of log for possible options)
==================================================
Running processes (31):
[C:\Acer\Empowering Technology\ACER.EMPOWERING.FRAMEWORK.SUPERVISOR.EXE (120)]
C:\Acer\Empowering Technology\Acer.Empowering.Framework.DialogManager.dll
C:\Acer\Empowering Technology\Acer.Empowering.Framework.Host.dll
C:\Acer\Empowering Technology\Acer.Empowering.Framework.Interface.dll
C:\Acer\Empowering Technology\Acer.Empowering.Framework.LaunchBarView.dll
C:\Acer\Empowering Technology\Acer.Empowering.Framework.PasswordSetting.dll
C:\Acer\Empowering Technology\Acer.Empowering.Framework.Presenter.dll
C:\Acer\Empowering Technology\Acer.Empowering.Framework.Shared.dll
C:\Acer\Empowering Technology\Acer.Empowering.Shared.UI.dll
C:\Acer\Empowering Technology\Acer.Empowering.Windows.Forms.dll
C:\Acer\Empowering Technology\eDataSecurity\eDSplugin.dll
C:\Acer\Empowering Technology\eLock.Serv.Interface.dll
C:\Acer\Empowering Technology\eLock\eLock.Client.dll
C:\Acer\Empowering Technology\eLock\eLockCTL.dll
C:\Acer\Empowering Technology\eLock\fr\eLockCTL.resources.dll
C:\Acer\Empowering Technology\eNet\eNet.dll
C:\Acer\Empowering Technology\eNet\eNetPlugin.dll
C:\Acer\Empowering Technology\eNet\eNMIPCmm.dll
C:\Acer\Empowering Technology\eNet\MultiLang.dll
C:\Acer\Empowering Technology\eNet\Network.dll
C:\Acer\Empowering Technology\eNet\NetworkCardMgr.dll
C:\Acer\Empowering Technology\ePower\ePower_UI.dll
C:\Acer\Empowering Technology\ePower\fr\ePower_UI.resources.dll
C:\Acer\Empowering Technology\EPOWER\SysHook.dll
C:\Acer\Empowering Technology\ePresentation\ePresentationCTL.dll
C:\Acer\Empowering Technology\eRecovery\eRecoveryUI.dll
C:\Acer\Empowering Technology\eRecovery\fr\eRecoveryUI.resources.dll
C:\Acer\Empowering Technology\eRecovery\ServiceInterface.dll
C:\Acer\Empowering Technology\eSettings.Model.ComputerInterfaces.dll
C:\Acer\Empowering Technology\eSettings\eSettings.Plugin.dll
C:\Acer\Empowering Technology\eSettings\eSettings.Presenter.dll
C:\Acer\Empowering Technology\eSettings\eSettings.View.dll
C:\Acer\Empowering Technology\eSettings\fr\eSettings.Plugin.resources.dll
C:\Acer\Empowering Technology\eSettings\fr\eSettings.Presenter.resources.dll
C:\Acer\Empowering Technology\fr\Acer.Empowering.Framework.LaunchBarView.resources.dll
C:\Acer\Empowering Technology\log4net.dll
C:\Users\Nico\AppData\Local\Temp\rqomn.dll
C:\Windows\AppPatch\AcLayers.DLL
C:\Windows\assembly\GAC_MSIL\mscorlib.resources\2.0.0.0_fr_b77a5c561934e089\mscorlib.resources.dll
C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\7fe79782947b85d961fd55cb5e02a129\mscorlib.ni.dll
C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\d7b63c1d2ab17ac3cc24881c4ff78b63\System.Configuration.ni.dll
C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\70c145ed25af403aa899ffcb633350b1\System.Drawing.ni.dll
C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Management\3fe3f7ba542ab78e52e49d19640a7e64\System.Management.ni.dll
C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Remo#\8fbca0140921ed343cb511595869a0ed\System.Runtime.Remoting.ni.dll
C:\Windows\assembly\NativeImages_v2.0.50727_32\System.ServiceProce#\61b951bd03727a096c1c02cb18d5ce30\System.ServiceProcess.ni.dll
C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Web\c11c5eb32a435c14a33e62b1e150e988\System.Web.ni.dll
C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\35a9f19f21aac42b979be321f1bb5fd4\System.Windows.Forms.ni.dll
C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\f76a7622c73e26e4d2daf54068d7ff79\System.Xml.ni.dll
C:\Windows\assembly\NativeImages_v2.0.50727_32\System\fcc712bc5da45a672e7f1ad176dbd5a5\System.ni.dll
C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorjit.dll
C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorwks.dll
C:\Windows\system32\ACTIVEDS.dll
C:\Windows\system32\adsldpc.dll
C:\Windows\system32\ADVAPI32.dll
C:\Windows\system32\apphelp.dll
C:\Windows\system32\ATL.DLL
C:\Windows\system32\bcrypt.dll
C:\Windows\system32\comdlg32.dll
C:\Windows\system32\credui.dll
C:\Windows\system32\CRYPT32.dll
C:\Windows\system32\dhcpcsvc.DLL
C:\Windows\system32\dhcpcsvc6.DLL
C:\Windows\system32\DNSAPI.dll
C:\Windows\system32\eNetHook.dll
C:\Windows\system32\GDI32.dll
C:\Windows\system32\iertutil.dll
C:\Windows\system32\IMM32.DLL
C:\Windows\system32\IPHLPAPI.DLL
C:\Windows\system32\KERNEL32.dll
C:\Windows\system32\LPK.DLL
C:\Windows\system32\MFC42.DLL
C:\Windows\system32\MPR.dll
C:\Windows\system32\MPRAPI.dll
C:\Windows\system32\MSASN1.dll
C:\Windows\system32\mscoree.dll
C:\Windows\system32\MSCTF.dll
C:\Windows\system32\msvcrt.dll
C:\Windows\system32\NETAPI32.dll
C:\Windows\system32\Normaliz.dll
C:\Windows\system32\NSI.dll
C:\Windows\system32\ntdll.dll
C:\Windows\system32\ODBC32.dll
C:\Windows\system32\odbcint.dll
C:\Windows\system32\ole32.dll
C:\Windows\system32\OLEACC.dll
C:\Windows\system32\OLEAUT32.dll
C:\Windows\system32\PSAPI.DLL
C:\Windows\system32\RASAPI32.dll
C:\Windows\system32\RASDLG.dll
C:\Windows\system32\rasman.dll
C:\Windows\system32\RPCRT4.dll
C:\Windows\system32\rsaenh.dll
C:\Windows\system32\rtutils.dll
C:\Windows\system32\SAMLIB.dll
C:\Windows\system32\Secur32.dll
C:\Windows\system32\SETUPAPI.dll
C:\Windows\system32\SHELL32.dll
C:\Windows\system32\SHFOLDER.dll
C:\Windows\system32\ShimEng.dll
C:\Windows\system32\SHLWAPI.dll
C:\Windows\system32\slc.dll
C:\Windows\system32\sysenv.dll
C:\Windows\system32\TAPI32.dll
C:\Windows\system32\urlmon.dll
C:\Windows\system32\USER32.dll
C:\Windows\system32\USERENV.dll
C:\Windows\system32\USP10.dll
C:\Windows\system32\uxtheme.dll
C:\Windows\system32\VERSION.dll
C:\Windows\system32\WININET.dll
C:\Windows\system32\WINMM.dll
C:\Windows\system32\WINNSI.DLL
C:\Windows\system32\WINSPOOL.DRV
C:\Windows\system32\WLDAP32.dll
C:\Windows\system32\WS2_32.dll
C:\Windows\WinSxS\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.762_none_10b2f55f9bffb8f8\msvcm80.dll
C:\Windows\WinSxS\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.762_none_10b2f55f9bffb8f8\MSVCP80.dll
C:\Windows\WinSxS\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.762_none_10b2f55f9bffb8f8\MSVCR80.dll
C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.6000.16386_none_87e0cb09378714f1\comctl32.dll
C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6000.16386_none_5d07289e07e1d100\comctl32.dll
C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6000.16386_none_9ea0ac9e
96e7127\gdiplus.dll
[C:\Acer\Empowering Technology\eDataSecurity\eDSloader.exe (45)]
C:\Users\Nico\AppData\Local\Temp\rqomn.dll
C:\Windows\system32\ADMIN_CLASS_LIB.dll
C:\Windows\system32\ADVAPI32.dll
C:\Windows\system32\comdlg32.dll
C:\Windows\system32\CryptoAPI.dll
C:\Windows\system32\eNetHook.dll
C:\Windows\system32\GDI32.dll
C:\Windows\system32\iertutil.dll
C:\Windows\system32\IMM32.DLL
C:\Windows\system32\kernel32.dll
C:\Windows\system32\keyManager.dll
C:\Windows\system32\LPK.DLL
C:\Windows\system32\MPR.dll
C:\Windows\system32\MSCTF.dll
C:\Windows\system32\msvcrt.dll
C:\Windows\system32\Normaliz.dll
C:\Windows\system32\NSI.dll
C:\Windows\system32\ntdll.dll
C:\Windows\system32\ole32.dll
C:\Windows\system32\OLEACC.dll
C:\Windows\system32\OLEAUT32.dll
C:\Windows\system32\PSDUtil.dll
C:\Windows\system32\RPCRT4.dll
C:\Windows\system32\Secur32.dll
C:\Windows\system32\SETUPAPI.dll
C:\Windows\system32\SHELL32.dll
C:\Windows\system32\SHFOLDER.dll
C:\Windows\system32\SHLWAPI.dll
C:\Windows\system32\ShowErrMsg.dll
C:\Windows\system32\sysenv.dll
C:\Windows\system32\urlmon.dll
C:\Windows\system32\USER32.dll
C:\Windows\system32\USP10.dll
C:\Windows\system32\uxtheme.dll
C:\Windows\system32\VERSION.dll
C:\Windows\system32\WININET.dll
C:\Windows\system32\WINSPOOL.DRV
C:\Windows\system32\WINSTA.dll
C:\Windows\system32\WS2_32.dll
C:\Windows\system32\WTSAPI32.dll
C:\Windows\WinSxS\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.762_none_10b2f55f9bffb8f8\MSVCP80.dll
C:\Windows\WinSxS\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.762_none_10b2f55f9bffb8f8\MSVCR80.dll
C:\Windows\WinSxS\x86_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.762_none_0c178a139ee2a7ed\MFC80U.DLL
C:\Windows\WinSxS\x86_microsoft.vc80.mfcloc_1fc8b3b9a1e18e3b_8.0.50727.762_none_43efccf17831d
31\MFC80FRA.DLL
C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6000.16386_none_5d07289e07e1d100\COMCTL32.dll
[C:\Acer\Empowering Technology\ENET\ENMTRAY.EXE (94)]
C:\Acer\Empowering Technology\ENET\Acer.Empowering.Windows.Forms.dll
C:\Acer\Empowering Technology\ENET\Diagnosis.dll
C:\Acer\Empowering Technology\ENET\eNetHook.dll
C:\Acer\Empowering Technology\ENET\eNetServiceInterface.dll
C:\Acer\Empowering Technology\ENET\eNMIPCmm.dll
C:\Acer\Empowering Technology\ENET\ICmdDispatcher.dll
C:\Acer\Empowering Technology\ENET\MultiLang.dll
C:\Acer\Empowering Technology\ENET\Network.dll
C:\Acer\Empowering Technology\ENET\NetworkCardMgr.dll
C:\Acer\Empowering Technology\ENET\PfMgr.dll
C:\Acer\Empowering Technology\ENET\ProfileSwitch.dll
C:\Acer\Empowering Technology\ENET\Wlan.dll
C:\Users\Nico\AppData\Local\Temp\rqomn.dll
C:\Windows\AppPatch\AcLayers.DLL
C:\Windows\assembly\GAC_MSIL\mscorlib.resources\2.0.0.0_fr_b77a5c561934e089\mscorlib.resources.dll
C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\7fe79782947b85d961fd55cb5e02a129\mscorlib.ni.dll
C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\70c145ed25af403aa899ffcb633350b1\System.Drawing.ni.dll
C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Remo#\8fbca0140921ed343cb511595869a0ed\System.Runtime.Remoting.ni.dll
C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\35a9f19f21aac42b979be321f1bb5fd4\System.Windows.Forms.ni.dll
C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\f76a7622c73e26e4d2daf54068d7ff79\System.Xml.ni.dll
C:\Windows\assembly\NativeImages_v2.0.50727_32\System\fcc712bc5da45a672e7f1ad176dbd5a5\System.ni.dll
C:\Windows\Microsoft.NET\Framework\v2.0.50727\diasymreader.dll
C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorjit.dll
C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorwks.dll
C:\Windows\system32\ACTIVEDS.dll
C:\Windows\system32\adsldpc.dll
C:\Windows\system32\ADVAPI32.dll
C:\Windows\system32\apphelp.dll
C:\Windows\system32\ATL.DLL
C:\Windows\system32\bcrypt.dll
C:\Windows\system32\credui.dll
C:\Windows\system32\CRYPT32.dll
C:\Windows\system32\dhcpcsvc.DLL
C:\Windows\system32\dhcpcsvc6.DLL
C:\Windows\system32\DNSAPI.dll
C:\Windows\system32\eappcfg.dll
C:\Windows\system32\eappprxy.dll
C:\Windows\system32\GDI32.dll
C:\Windows\system32\iertutil.dll
C:\Windows\system32\IMM32.DLL
C:\Windows\system32\IPHLPAPI.DLL
C:\Windows\system32\KERNEL32.dll
C:\Windows\system32\LPK.DLL
C:\Windows\system32\MPR.dll
C:\Windows\system32\MPRAPI.dll
C:\Windows\system32\MSASN1.dll
C:\Windows\system32\mscoree.dll
C:\Windows\system32\MSCTF.dll
C:\Windows\system32\msvcrt.dll
C:\Windows\system32\NETAPI32.dll
C:\Windows\system32\Normaliz.dll
C:\Windows\system32\NSI.dll
C:\Windows\system32\ntdll.dll
C:\Windows\system32\ole32.dll
C:\Windows\system32\OLEACC.dll
C:\Windows\system32\OLEAUT32.dll
C:\Windows\system32\OneX.DLL
C:\Windows\system32\PSAPI.DLL
C:\Windows\system32\RASAPI32.dll
C:\Windows\system32\RASDLG.dll
C:\Windows\system32\rasman.dll
C:\Windows\system32\RPCRT4.dll
C:\Windows\system32\rsaenh.dll
C:\Windows\system32\rtutils.dll
C:\Windows\system32\SAMLIB.dll
C:\Windows\system32\Secur32.dll
C:\Windows\system32\SETUPAPI.dll
C:\Windows\system32\SHELL32.dll
C:\Windows\system32\shfolder.dll
C:\Windows\system32\ShimEng.dll
C:\Windows\system32\SHLWAPI.dll
C:\Windows\system32\slc.dll
C:\Windows\system32\TAPI32.dll
C:\Windows\system32\urlmon.dll
C:\Windows\system32\USER32.dll
C:\Windows\system32\USERENV.dll
C:\Windows\system32\USP10.dll
C:\Windows\system32\UxTheme.dll
C:\Windows\system32\version.dll
C:\Windows\system32\WININET.dll
C:\Windows\system32\WINMM.dll
C:\Windows\system32\WINNSI.DLL
C:\Windows\system32\WINSPOOL.DRV
C:\Windows\system32\Wlanapi.dll
C:\Windows\system32\wlanui.dll
C:\Windows\system32\wlanutil.dll
C:\Windows\system32\WLDAP32.dll
C:\Windows\system32\WS2_32.dll
C:\Windows\system32\WTSAPI32.dll
C:\Windows\WinSxS\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.762_none_10b2f55f9bffb8f8\msvcm80.dll
C:\Windows\WinSxS\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.762_none_10b2f55f9bffb8f8\MSVCP80.dll
C:\Windows\WinSxS\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.762_none_10b2f55f9bffb8f8\MSVCR80.dll
C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6000.16386_none_5d07289e07e1d100\comctl32.dll
C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6000.16386_none_9ea0ac9e
96e7127\gdiplus.dll
[C:\Acer\Empowering Technology\EPOWER\EPOWER_DMC.EXE (64)]
C:\Acer\Empowering Technology\EPOWER\SysHook.dll
C:\Acer\Empowering Technology\EPOWER\WMIInterface.dll
C:\Users\Nico\AppData\Local\Temp\rqomn.dll
C:\Windows\AppPatch\AcLayers.DLL
C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\7fe79782947b85d961fd55cb5e02a129\mscorlib.ni.dll
C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\70c145ed25af403aa899ffcb633350b1\System.Drawing.ni.dll
C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Remo#\8fbca0140921ed343cb511595869a0ed\System.Runtime.Remoting.ni.dll
C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\35a9f19f21aac42b979be321f1bb5fd4\System.Windows.Forms.ni.dll
C:\Windows\assembly\NativeImages_v2.0.50727_32\System\fcc712bc5da45a672e7f1ad176dbd5a5\System.ni.dll
C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorjit.dll
C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorwks.dll
C:\Windows\system32\ADVAPI32.dll
C:\Windows\system32\apphelp.dll
C:\Windows\system32\COMDLG32.dll
C:\Windows\system32\CRYPT32.dll
C:\Windows\system32\dwmapi.dll
C:\Windows\system32\eNetHook.dll
C:\Windows\system32\GDI32.dll
C:\Windows\system32\iertutil.dll
C:\Windows\system32\imagehlp.dll
C:\Windows\system32\IMM32.DLL
C:\Windows\system32\KERNEL32.dll
C:\Windows\system32\LPK.DLL
C:\Windows\system32\MFC42.DLL
C:\Windows\system32\MPR.dll
C:\Windows\system32\MSASN1.dll
C:\Windows\system32\mscoree.dll
C:\Windows\system32\MSCTF.dll
C:\Windows\system32\msvcrt.dll
C:\Windows\system32\Normaliz.dll
C:\Windows\system32\NSI.dll
C:\Windows\system32\ntdll.dll
C:\Windows\system32\ODBC32.dll
C:\Windows\system32\odbcint.dll
C:\Windows\system32\ole32.dll
C:\Windows\system32\OLEAUT32.dll
C:\Windows\system32\POWRPROF.dll
C:\Windows\system32\PSAPI.DLL
C:\Windows\system32\RPCRT4.dll
C:\Windows\system32\rsaenh.dll
C:\Windows\system32\Secur32.dll
C:\Windows\system32\SETUPAPI.dll
C:\Windows\system32\SHELL32.dll
C:\Windows\system32\SHFOLDER.dll
C:\Windows\system32\ShimEng.dll
C:\Windows\system32\SHLWAPI.dll
C:\Windows\system32\urlmon.dll
C:\Windows\system32\USER32.dll
C:\Windows\system32\USERENV.dll
C:\Windows\system32\USP10.dll
C:\Windows\system32\uxtheme.dll
C:\Windows\system32\version.dll
C:\Windows\system32\WININET.dll
C:\Windows\system32\WINSPOOL.DRV
C:\Windows\system32\WINSTA.dll
C:\Windows\system32\WINTRUST.dll
C:\Windows\system32\WS2_32.dll
C:\Windows\system32\WTSAPI32.dll
C:\Windows\WinSxS\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.762_none_10b2f55f9bffb8f8\msvcm80.dll
C:\Windows\WinSxS\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.762_none_10b2f55f9bffb8f8\MSVCP80.dll
C:\Windows\WinSxS\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.762_none_10b2f55f9bffb8f8\MSVCR80.dll
C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.6000.16386_none_87e0cb09378714f1\COMCTL32.dll
C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6000.16386_none_5d07289e07e1d100\comctl32.dll
C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6000.16386_none_9ea0ac9e
96e7127\gdiplus.dll
[C:\Acer\Empowering Technology\eRecovery\ERAGENT.EXE (39)]
C:\Users\Nico\AppData\Local\Temp\rqomn.dll
C:\Windows\AppPatch\AcLayers.DLL
C:\Windows\system32\ADVAPI32.dll
C:\Windows\system32\apphelp.dll
C:\Windows\system32\comdlg32.dll
C:\Windows\system32\eNetHook.dll
C:\Windows\system32\GDI32.dll
C:\Windows\system32\iertutil.dll
C:\Windows\system32\IMM32.DLL
C:\Windows\system32\kernel32.dll
C:\Windows\system32\LPK.DLL
C:\Windows\system32\MPR.dll
C:\Windows\system32\MSCTF.dll
C:\Windows\system32\msvcrt.dll
C:\Windows\system32\NETAPI32.dll
C:\Windows\system32\Normaliz.dll
C:\Windows\system32\NSI.dll
C:\Windows\system32\ntdll.dll
C:\Windows\system32\ole32.dll
C:\Windows\system32\OLEAUT32.dll
C:\Windows\system32\oledlg.dll
C:\Windows\system32\PSAPI.DLL
C:\Windows\system32\RPCRT4.dll
C:\Windows\system32\SAMLIB.dll
C:\Windows\system32\Secur32.dll
C:\Windows\system32\SHELL32.dll
C:\Windows\system32\SHFOLDER.dll
C:\Windows\system32\ShimEng.dll
C:\Windows\system32\SHLWAPI.dll
C:\Windows\system32\urlmon.dll
C:\Windows\system32\USER32.dll
C:\Windows\system32\USERENV.dll
C:\Windows\system32\USP10.dll
C:\Windows\system32\uxtheme.dll
C:\Windows\system32\WININET.dll
C:\Windows\system32\WINSPOOL.DRV
C:\Windows\system32\WS2_32.dll
C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.6000.16386_none_87e0cb09378714f1\COMCTL32.dll
C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6000.16386_none_5d07289e07e1d100\comctl32.dll
[C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe (44)]
C:\Program Files\Common Files\Ahead\Lib\AdvrCntr2.dll
C:\Program Files\Common Files\Ahead\Lib\MSVCP71.dll
C:\Program Files\Common Files\Ahead\Lib\MSVCR71.dll
C:\Program Files\Common Files\Ahead\Lib\NMDataServices.dll
C:\Program Files\Common Files\Ahead\Lib\NMIndexingServicePS.dll
C:\Program Files\Common Files\Ahead\Lib\NMIndexStoreSvrPS.dll
C:\Users\Nico\AppData\Local\Temp\rqomn.dll
C:\Windows\system32\ADVAPI32.dll
C:\Windows\system32\CLBCatQ.DLL
C:\Windows\system32\comdlg32.dll
C:\Windows\system32\eNetHook.dll
C:\Windows\system32\Faultrep.dll
C:\Windows\system32\GDI32.dll
C:\Windows\system32\iertutil.dll
C:\Windows\system32\IMM32.DLL
C:\Windows\system32\IPROP.dll
C:\Windows\system32\kernel32.dll
C:\Windows\system32\LPK.DLL
C:\Windows\system32\MSCTF.dll
C:\Windows\system32\msvcrt.dll
C:\Windows\system32\Normaliz.dll
C:\Windows\system32\NSI.dll
C:\Windows\system32\ntdll.dll
C:\Windows\system32\ole32.dll
C:\Windows\system32\OLEAUT32.dll
C:\Windows\system32\PSAPI.DLL
C:\Windows\system32\RPCRT4.dll
C:\Windows\system32\rsaenh.dll
C:\Windows\system32\Secur32.dll
C:\Windows\system32\SHELL32.dll
C:\Windows\system32\SHFOLDER.dll
C:\Windows\system32\SHLWAPI.dll
C:\Windows\system32\urlmon.dll
C:\Windows\system32\USER32.dll
C:\Windows\system32\USERENV.dll
C:\Windows\system32\USP10.dll
C:\Windows\system32\uxtheme.dll
C:\Windows\system32\VERSION.dll
C:\Windows\system32\WINHTTP.dll
C:\Windows\system32\WININET.dll
C:\Windows\system32\WINSPOOL.DRV
C:\Windows\system32\WS2_32.dll
C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.6000.16386_none_87e0cb09378714f1\COMCTL32.dll
C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6000.16386_none_5d07289e07e1d100\comctl32.dll
[C:\Program Files\Common Files\Ahead\Lib\NMIndexStoreSvr.exe (53)]
C:\Program Files\Common Files\Ahead\Lib\log4cxx.dll
C:\Program Files\Common Files\Ahead\Lib\MSVCP71.dll
C:\Program Files\Common Files\Ahead\Lib\MSVCR71.dll
C:\Program Files\Common Files\Ahead\Lib\NeroIPP.dll
C:\Program Files\Common Files\Ahead\Lib\NMCoFoundation.dll
C:\Program Files\Common Files\Ahead\Lib\NMDataServices.dll
C:\Program Files\Common Files\Ahead\Lib\NMFullTextExtraction.dll
C:\Program Files\Common Files\Ahead\Lib\NMIndexingServicePS.dll
C:\Program Files\Common Files\Ahead\Lib\NMIndexStoreSvrPS.dll
C:\Program Files\Common Files\Ahead\Lib\NMLogCxx.dll
C:\Program Files\Common Files\Ahead\Lib\NMPluginBase.dll
C:\Program Files\Common Files\Ahead\Lib\NMSearchPluginSimilarImages.dll
C:\Program Files\Common Files\Ahead\Lib\NMSlideShow.dll
C:\Program Files\Common Files\Ahead\Lib\NMSQLDB.dll
C:\Users\Nico\AppData\Local\Temp\rqomn.dll
C:\Windows\system32\ADVAPI32.dll
C:\Windows\system32\CLBCatQ.DLL
C:\Windows\system32\COMDLG32.dll
C:\Windows\system32\eNetHook.dll
C:\Windows\system32\GDI32.dll
C:\Windows\system32\iertutil.dll
C:\Windows\system32\IMM32.DLL
C:\Windows\system32\IPROP.dll
C:\Windows\system32\kernel32.dll
C:\Windows\system32\LPK.DLL
C:\Windows\system32\MSCTF.dll
C:\Windows\system32\msvcrt.dll
C:\Windows\system32\Normaliz.dll
C:\Windows\system32\NSI.dll
C:\Windows\system32\ntdll.dll
C:\Windows\system32\ODBC32.dll
C:\Windows\system32\odbcint.dll
C:\Windows\system32\ole32.dll
C:\Windows\system32\OLEAUT32.dll
C:\Windows\system32\query.dll
C:\Windows\system32\RPCRT4.dll
C:\Windows\system32\rsaenh.dll
C:\Windows\system32\Secur32.dll
C:\Windows\system32\SHELL32.dll
C:\Windows\system32\SHFOLDER.dll
C:\Windows\system32\SHLWAPI.dll
C:\Windows\system32\sockspy.dll
C:\Windows\system32\urlmon.dll
C:\Windows\system32\USER32.dll
C:\Windows\system32\USP10.dll
C:\Windows\system32\uxtheme.dll
C:\Windows\system32\VERSION.dll
C:\Windows\system32\WINHTTP.dll
C:\Windows\system32\WININET.dll
C:\Windows\system32\WS2_32.dll
C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.6000.16386_none_87e0cb09378714f1\COMCTL32.dll
C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6000.16386_none_5d07289e07e1d100\comctl32.dll
C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6000.16386_none_9ea0ac9e
96e7127\gdiplus.dll
[C:\Program Files\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe (32)]
C:\Users\Nico\AppData\Local\Temp\rqomn.dll
C:\Windows\system32\ADVAPI32.dll
C:\Windows\system32\CFGMGR32.dll
C:\Windows\system32\ElbyCDIO.dll
C:\Windows\system32\ElbyVCD.dll
C:\Windows\system32\eNetHook.dll
C:\Windows\system32\GDI32.dll
C:\Windows\system32\iertutil.dll
C:\Windows\system32\IMM32.DLL
C:\Windows\system32\kernel32.dll
C:\Windows\system32\LPK.DLL
C:\Windows\system32\MSCTF.dll
C:\Windows\system32\msvcrt.dll
C:\Windows\system32\Normaliz.dll
C:\Windows\system32\NSI.dll
C:\Windows\system32\ntdll.dll
C:\Windows\system32\ole32.dll
C:\Windows\system32\OLEAUT32.dll
C:\Windows\system32\RPCRT4.dll
C:\Windows\system32\Secur32.dll
C:\Windows\system32\setupapi.dll
C:\Windows\system32\SHELL32.dll
C:\Windows\system32\SHFOLDER.dll
C:\Windows\system32\SHLWAPI.dll
C:\Windows\system32\urlmon.dll
C:\Windows\system32\USER32.dll
C:\Windows\system32\USP10.dll
C:\Windows\system32\uxtheme.dll
C:\Windows\system32\VERSION.dll
C:\Windows\system32\WININET.dll
C:\Windows\system32\WS2_32.dll
C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6000.16386_none_5d07289e07e1d100\comctl32.dll
[C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe (84)]
C:\Program Files\HP\Digital Imaging\bin\crm\hpqcrmcm.dll
C:\Program Files\HP\Digital Imaging\bin\crm\xmlparse.dll
C:\Program Files\HP\Digital Imaging\bin\crm\xmltok.dll
C:\Program Files\HP\Digital Imaging\bin\hpodio08.dll
C:\Program Files\HP\Digital Imaging\bin\hpqcob08.dll
C:\Program Files\HP\Digital Imaging\bin\hpqmfc10.dll
C:\Program Files\HP\Digital Imaging\bin\hpqsem08.rsc
C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.rsc
C:\Program Files\HP\Digital Imaging\bin\hpqsti08.dll
C:\Program Files\HP\Digital Imaging\bin\hpqstp08.dll
C:\Program Files\HP\Digital Imaging\bin\hpqtap08.dll
C:\Users\Nico\AppData\Local\Temp\rqomn.dll
C:\Windows\system32\ADVAPI32.dll
C:\Windows\system32\apphelp.dll
C:\Windows\system32\asycfilt.dll
C:\Windows\system32\AVICAP32.dll
C:\Windows\system32\CLBCatQ.DLL
C:\Windows\system32\comdlg32.dll
C:\Windows\system32\CRYPT32.dll
C:\Windows\system32\dbghelp.dll
C:\Windows\system32\eNetHook.dll
C:\Windows\system32\GDI32.dll
C:\Windows\system32\hpzipr12.dll
C:\Windows\system32\ieframe.dll
C:\Windows\system32\iertutil.dll
C:\Windows\system32\imagehlp.dll
C:\Windows\system32\IMM32.DLL
C:\Windows\system32\kernel32.dll
C:\Windows\system32\LPK.DLL
C:\Windows\system32\MLANG.dll
C:\Windows\system32\MPR.dll
C:\Windows\system32\MSASN1.dll
C:\Windows\system32\MSCTF.dll
C:\Windows\system32\mshtml.dll
C:\Windows\system32\msi.dll
C:\Windows\system32\msiltcfg.dll
C:\Windows\system32\msimtf.dll
C:\Windows\system32\msls31.dll
C:\Windows\system32\msvcrt.dll
C:\Windows\system32\MSVFW32.dll
C:\Windows\system32\Normaliz.dll
C:\Windows\system32\NSI.dll
C:\Windows\system32\ntdll.dll
C:\Windows\system32\NTMARTA.DLL
C:\Windows\system32\ole32.dll
C:\Windows\system32\OLEACC.dll
C:\Windows\system32\OLEAUT32.dll
C:\Windows\system32\oledlg.dll
C:\Windows\system32\PSAPI.DLL
C:\Windows\system32\RPCRT4.dll
C:\Windows\system32\rsaenh.dll
C:\Windows\system32\SAMLIB.dll
C:\Windows\system32\Secur32.dll
C:\Windows\system32\SETUPAPI.dll
C:\Windows\system32\SFC.DLL
C:\Windows\system32\sfc_os.dll
C:\Windows\system32\SHELL32.dll
C:\Windows\system32\SHFOLDER.dll
C:\Windows\system32\SHLWAPI.dll
C:\Windows\system32\sockspy.dll
C:\Windows\system32\SXS.DLL
C:\Windows\system32\unicows.dll
C:\Windows\system32\urlmon.dll
C:\Windows\system32\USER32.dll
C:\Windows\system32\USERENV.dll
C:\Windows\system32\USP10.dll
C:\Windows\system32\uxtheme.dll
C:\Windows\system32\VERSION.dll
C:\Windows\system32\WININET.dll
C:\Windows\system32\WINMM.dll
C:\Windows\system32\WINSPOOL.DRV
C:\Windows\system32\WINSTA.dll
C:\Windows\system32\WINTRUST.dll
C:\Windows\system32\WLDAP32.dll
C:\Windows\system32\WS2_32.dll
C:\Windows\system32\WSOCK32.dll
C:\Windows\system32\WTSAPI32.DLL
C:\Windows\WinSxS\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.762_none_10b2f55f9bffb8f8\MSVCP80.dll
C:\Windows\WinSxS\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.762_none_10b2f55f9bffb8f8\MSVCR80.dll
C:\Windows\WinSxS\x86_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.762_none_0c178a139ee2a7ed\MFC80.DLL
C:\Windows\WinSxS\x86_microsoft.vc80.mfcloc_1fc8b3b9a1e18e3b_8.0.50727.762_none_43efccf17831d
31\MFC80FRA.DLL
C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.6000.16386_none_87e0cb09378714f1\COMCTL32.dll
C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6000.16386_none_5d07289e07e1d100\comctl32.dll
C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6000.16386_none_9ea0ac9e
96e7127\gdiplus.dll
[C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe (70)]
C:\Program Files\HP\Digital Imaging\bin\hpodio08.dll
C:\Program Files\HP\Digital Imaging\bin\hpotra08.dll
C:\Program Files\HP\Digital Imaging\bin\hpotra08.rsc
C:\Program Files\HP\Digital Imaging\bin\hpotradd.dll
C:\Program Files\HP\Digital Imaging\bin\hpqcob08.dll
C:\Program Files\HP\Digital Imaging\bin\hpqddcmn.dll
C:\Program Files\HP\Digital Imaging\bin\hpqddusr.dll
C:\Program Files\HP\Digital Imaging\bin\hpqmif08.dll
C:\Program Files\HP\Digital Imaging\bin\hpqrif08.dll
C:\Program Files\HP\Digital Imaging\bin\hpqtao08.dll
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.rsc
C:\Program Files\HP\Digital Imaging\bin\hpquio08.dll
C:\Program Files\HP\Digital Imaging\bin\hpqusg.dll
C:\Users\Nico\AppData\Local\Temp\rqomn.dll
C:\Windows\system32\ADVAPI32.dll
C:\Windows\system32\apphelp.dll
C:\Windows\system32\CLBCatQ.DLL
C:\Windows\system32\CRYPT32.dll
C:\Windows\system32\eNetHook.dll
C:\Windows\system32\GDI32.dll
C:\Windows\system32\hpzidr12.dll
C:\Windows\system32\hpzipr12.dll
C:\Windows\system32\iertutil.dll
C:\Windows\system32\imagehlp.dll
C:\Windows\system32\IMM32.DLL
C:\Windows\system32\kernel32.dll
C:\Windows\system32\LPK.DLL
C:\Windows\system32\MSASN1.dll
C:\Windows\system32\MSCTF.dll
C:\Windows\system32\msi.dll
C:\Windows\system32\msiltcfg.dll
C:\Windows\system32\msvcrt.dll
C:\Windows\system32\Normaliz.dll
C:\Windows\system32\NSI.dll
C:\Windows\system32\ntdll.dll
C:\Windows\system32\NTMARTA.DLL
C:\Windows\system32\ole32.dll
C:\Windows\system32\OLEAUT32.dll
C:\Windows\system32\PROPSYS.dll
C:\Windows\system32\PSAPI.DLL
C:\Windows\system32\RPCRT4.dll
C:\Windows\system32\rsaenh.dll
C:\Windows\system32\SAMLIB.dll
C:\Windows\system32\Secur32.dll
C:\Windows\system32\SETUPAPI.dll
C:\Windows\system32\SFC.DLL
C:\Windows\system32\sfc_os.dll
C:\Windows\system32\SHELL32.dll
C:\Windows\system32\SHFOLDER.dll
C:\Windows\system32\SHLWAPI.dll
C:\Windows\system32\SXS.DLL
C:\Windows\system32\urlmon.dll
C:\Windows\system32\USER32.dll
C:\Windows\system32\USERENV.dll
C:\Windows\system32\USP10.dll
C:\Windows\system32\uxtheme.dll
C:\Windows\system32\VERSION.dll
C:\Windows\system32\WININET.dll
C:\Windows\system32\WINSPOOL.DRV
C:\Windows\system32\WINSTA.dll
C:\Windows\system32\WINTRUST.dll
C:\Windows\system32\WLDAP32.dll
C:\Windows\system32\WS2_32.dll
C:\Windows\system32\WSOCK32.dll
C:\Windows\system32\WTSAPI32.DLL
C:\Windows\WinSxS\x86_microsoft.vc80.atl_1fc8b3b9a1e18e3b_8.0.50727.762_none_11ecb0ab9b2caf3c\ATL80.DLL
C:\Windows\WinSxS\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.762_none_10b2f55f9bffb8f8\MSVCP80.dll
C:\Windows\WinSxS\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.762_none_10b2f55f9bffb8f8\MSVCR80.dll
C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.6000.16386_none_87e0cb09378714f1\COMCTL32.dll
C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6000.16386_none_5d07289e07e1d100\comctl32.dll
[C:\Program Files\HP\HP Software Update\hpwuSchd2.exe (27)]
C:\Users\Nico\AppData\Local\Temp\rqomn.dll
C:\Windows\system32\ADVAPI32.dll
C:\Windows\system32\eNetHook.dll
C:\Windows\system32\GDI32.dll
C:\Windows\system32\iertutil.dll
C:\Windows\system32\IMM32.DLL
C:\Windows\system32\kernel32.dll
C:\Windows\system32\LPK.DLL
C:\Windows\system32\MSCTF.dll
C:\Windows\system32\msvcrt.dll
C:\Windows\system32\Normaliz.dll
C:\Windows\system32\NSI.dll
C:\Windows\system32\ntdll.dll
C:\Windows\system32\ole32.dll
C:\Windows\system32\OLEAUT32.dll
C:\Windows\system32\RPCRT4.dll
C:\Windows\system32\Secur32.dll
C:\Windows\system32\SHELL32.dll
C:\Windows\system32\SHFOLDER.dll
C:\Windows\system32\SHLWAPI.dll
C:\Windows\system32\urlmon.dll
C:\Windows\system32\USER32.dll
C:\Windows\system32\USP10.dll
C:\Windows\system32\uxtheme.dll
C:\Windows\system32\WININET.dll
C:\Windows\system32\WS2_32.dll
C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6000.16386_none_5d07289e07e1d100\comctl32.dll
[C:\Program Files\iTunes\iTunesHelper.exe (57)]
C:\Program Files\Common Files\Apple\Mobile Device Support\bin\iTunesMobileDevice.dll
C:\Program Files\iTunes\iTunesHelper.Resources\fr.lproj\iTunesHelperLocalized.DLL
C:\Program Files\iTunes\iTunesHelper.Resources\iTunesHelper.DLL
C:\Program Files\QuickTime\QTSystem\QuickTime.qts
C:\Users\Nico\AppData\Local\Temp\rqomn.dll
C:\Windows\system32\actxprxy.dll
C:\Windows\system32\ADVAPI32.dll
C:\Windows\system32\CLBCatQ.DLL
C:\Windows\system32\comdlg32.dll
C:\Windows\system32\CRYPT32.dll
C:\Windows\system32\DCIMAN32.dll
C:\Windows\system32\ddraw.dll
C:\Windows\system32\DSOUND.dll
C:\Windows\system32\dwmapi.dll
C:\Windows\system32\eNetHook.dll
C:\Windows\system32\GDI32.dll
C:\Windows\system32\iertutil.dll
C:\Windows\system32\imagehlp.dll
C:\Windows\system32\IMM32.DLL
C:\Windows\system32\kernel32.dll
C:\Windows\system32\LPK.DLL
C:\Windows\system32\MSASN1.dll
C:\Windows\system32\MSCTF.dll
C:\Windows\system32\msvcrt.dll
C:\Windows\system32\mswsock.dll
C:\Windows\system32\Normaliz.dll
C:\Windows\system32\NSI.dll
C:\Windows\system32\ntdll.dll
C:\Windows\system32\ole32.dll
C:\Windows\system32\OLEACC.dll
C:\Windows\system32\OLEAUT32.dll
C:\Windows\system32\POWRPROF.dll
C:\Windows\system32\RPCRT4.dll
C:\Windows\system32\rsaenh.dll
C:\Windows\system32\Secur32.dll
C:\Windows\system32\SETUPAPI.dll
C:\Windows\system32\SHELL32.dll
C:\Windows\system32\SHFOLDER.dll
C:\Windows\system32\SHLWAPI.dll
C:\Windows\system32\SXS.DLL
C:\Windows\system32\urlmon.dll
C:\Windows\system32\USER32.dll
C:\Windows\system32\USERENV.dll
C:\Windows\system32\USP10.dll
C:\Windows\system32\uxtheme.dll
C:\Windows\system32\VERSION.dll
C:\Windows\system32\WININET.dll
C:\Windows\system32\WINMM.dll
C:\Windows\system32\WINSTA.dll
C:\Windows\system32\WINTRUST.dll
C:\Windows\system32\WS2_32.dll
C:\Windows\System32\wshtcpip.dll
C:\Windows\system32\WSOCK32.dll
C:\Windows\system32\Wtsapi32.dll
C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.6000.16386_none_87e0cb09378714f1\COMCTL32.dll
C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6000.16386_none_5d07289e07e1d100\comctl32.dll
C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6000.16386_none_9ea0ac9e
96e7127\gdiplus.dll
[C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe (21)]
C:\Windows\system32\ADVAPI32.dll
C:\Windows\system32\eNetHook.dll
C:\Windows\system32\GDI32.dll
C:\Windows\system32\iertutil.dll
C:\Windows\system32\IMM32.DLL
C:\Windows\system32\kernel32.dll
C:\Windows\system32\LPK.DLL
C:\Windows\system32\MSCTF.dll
C:\Windows\system32\msvcrt.dll
C:\Windows\system32\Normaliz.dll
C:\Windows\system32\ntdll.dll
C:\Windows\system32\ole32.dll
C:\Windows\system32\OLEAUT32.dll
C:\Windows\system32\RPCRT4.dll
C:\Windows\system32\SHELL32.dll
C:\Windows\system32\SHLWAPI.dll
C:\Windows\system32\USER32.dll
C:\Windows\system32\USP10.dll
C:\Windows\system32\uxtheme.dll
C:\Windows\system32\WININET.dll
C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6000.16386_none_5d07289e07e1d100\comctl32.dll
[C:\Program Files\Launch Manager\LManager.exe (61)]
C:\Program Files\Launch Manager\CDRomUtl.dll
C:\Program Files\Launch Manager\ComFnUtl.dll
C:\Program Files\Launch Manager\DialCnt.Dll
C:\Program Files\Launch Manager\LgKCUtl.Dll
C:\Program Files\Launch Manager\MixerUtl.dll
C:\Program Files\Launch Manager\MMDUtl.DLL
C:\Program Files\Launch Manager\OSDUtl.dll
C:\Program Files\Launch Manager\PowerUtl.dll
C:\Program Files\Launch Manager\RgnMaker.dll
C:\Program Files\Launch Manager\SzPtcUtl.dll
C:\Program Files\Launch Manager\SzUPFUtl.dll
C:\Program Files\Launch Manager\VistaVol.DLL
C:\Program Files\Launch Manager\Wnd2File.dll
C:\Users\Nico\AppData\Local\Temp\rqomn.dll
C:\Windows\system32\ADVAPI32.dll
C:\Windows\System32\audioeng.dll
C:\Windows\System32\audioses.dll
C:\Windows\System32\AVRT.dll
C:\Windows\system32\CLBCatQ.DLL
C:\Windows\system32\comdlg32.dll
C:\Windows\system32\CRYPT32.dll
C:\Windows\system32\eNetHook.dll
C:\Windows\system32\GDI32.dll
C:\Windows\system32\iertutil.dll
C:\Windows\system32\imagehlp.dll
C:\Windows\system32\IMM32.DLL
C:\Windows\system32\kernel32.dll
C:\Windows\system32\LPK.DLL
C:\Windows\System32\MMDevApi.dll
C:\Windows\system32\MSASN1.dll
C:\Windows\system32\MSCTF.dll
C:\Windows\system32\msvcrt.dll
C:\Windows\system32\Normaliz.dll
C:\Windows\system32\NSI.dll
C:\Windows\system32\ntdll.dll
C:\Windows\system32\nvapi.dll
C:\Windows\system32\ole32.dll
C:\Windows\system32\OLEACC.dll
C:\Windows\system32\OLEAUT32.dll
C:\Windows\system32\POWRPROF.dll
C:\Windows\system32\PSAPI.DLL
C:\Windows\system32\RPCRT4.dll
C:\Windows\system32\Secur32.dll
C:\Windows\system32\SETUPAPI.dll
C:\Windows\system32\SHELL32.dll
C:\Windows\system32\SHFOLDER.dll
C:\Windows\system32\SHLWAPI.dll
C:\Windows\system32\urlmon.dll
C:\Windows\system32\USER32.dll
C:\Windows\system32\USERENV.dll
C:\Windows\system32\USP10.dll
C:\Windows\system32\uxtheme.dll
C:\Windows\system32\VERSION.dll
C:\Windows\system32\WININET.dll
C:\Windows\system32\WINMM.dll
C:\Windows\system32\WINSTA.dll
C:\Windows\system32\WINTRUST.dll
C:\Windows\system32\WS2_32.dll
C:\Windows\system32\WTSAPI32.dll
C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6000.16386_none_5d07289e07e1d100\COMCTL32.dll
C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6000.16386_none_9ea0ac9e
96e7127\gdiplus.dll
[C:\Program Files\Mozilla Firefox\firefox.exe (99)]
C:\Acer\Empowering Technology\EPOWER\SysHook.dll
C:\Program Files\Bonjour\mdnsNSP.dll
C:\Program Files\Mozilla Firefox\components\jar50.dll
C:\Program Files\Mozilla Firefox\components\myspell.dll
C:\Program Files\Mozilla Firefox\components\spellchk.dll
C:\Program Files\Mozilla Firefox\freebl3.dll
C:\Program Files\Mozilla Firefox\js3250.dll
C:\Program Files\Mozilla Firefox\nspr4.dll
C:\Program Files\Mozilla Firefox\nss3.dll
C:\Program Files\Mozilla Firefox\nssckbi.dll
C:\Program Files\Mozilla Firefox\plc4.dll
C:\Program Files\Mozilla Firefox\plds4.dll
C:\Program Files\Mozilla Firefox\smime3.dll
C:\Program Files\Mozilla Firefox\softokn3.dll
C:\Program Files\Mozilla Firefox\ssl3.dll
C:\Program Files\Mozilla Firefox\xpcom_compat.dll
C:\Program Files\Mozilla Firefox\xpcom_core.dll
C:\Users\Nico\AppData\Local\Temp\rqomn.dll
C:\Windows\AppPatch\AcLayers.DLL
C:\Windows\system32\ADVAPI32.dll
C:\Windows\system32\apphelp.dll
C:\Windows\System32\audioeng.dll
C:\Windows\System32\audioses.dll
C:\Windows\system32\AVRT.dll
C:\Windows\system32\CLBCatQ.DLL
C:\Windows\system32\comdlg32.dll
C:\Windows\system32\credssp.dll
C:\Windows\system32\CRYPT32.dll
C:\Windows\system32\dhcpcsvc.DLL
C:\Windows\system32\dhcpcsvc6.DLL
C:\Windows\system32\DNSAPI.dll
C:\Windows\system32\eNetHook.dll
C:\Windows\system32\GDI32.dll
C:\Windows\system32\iertutil.dll
C:\Windows\system32\imagehlp.dll
C:\Windows\system32\IMM32.DLL
C:\Windows\system32\iphlpapi.dll
C:\Windows\system32\kernel32.dll
C:\Windows\system32\ksuser.dll
C:\Windows\system32\LPK.DLL
C:\Windows\system32\Macromed\Flash\NPSWF32.dll
C:\Windows\system32\MFC42.DLL
C:\Windows\system32\midimap.dll
C:\Windows\system32\mlang.dll
C:\Windows\system32\MMDevAPI.DLL
C:\Windows\system32\MPR.dll
C:\Windows\system32\MSACM32.dll
C:\Windows\system32\msacm32.drv
C:\Windows\system32\MSASN1.dll
C:\Windows\system32\MSCTF.dll
C:\Windows\system32\msimg32.dll
C:\Windows\system32\msimtf.dll
C:\Windows\system32\msvcrt.dll
C:\Windows\system32\mswsock.dll
C:\Windows\system32\napinsp.dll
C:\Windows\system32\NETAPI32.dll
C:\Windows\system32\NLAapi.dll
C:\Windows\system32\Normaliz.dll
C:\Windows\system32\NSI.dll
C:\Windows\system32\ntdll.dll
C:\Windows\system32\ODBC32.dll
C:\Windows\system32\odbcint.dll
C:\Windows\system32\ole32.dll
C:\Windows\system32\OLEACC.dll
C:\Windows\system32\OLEAUT32.dll
C:\Windows\system32\pnrpnsp.dll
C:\Windows\system32\PROPSYS.dll
C:\Windows\system32\PSAPI.DLL
C:\Windows\system32\rasadhlp.dll
C:\Windows\system32\RPCRT4.dll
C:\Windows\system32\rsaenh.dll
C:\Windows\system32\schannel.dll
C:\Windows\system32\Secur32.dll
C:\Windows\system32\SETUPAPI.dll
C:\Windows\system32\SHELL32.dll
C:\Windows\system32\SHFOLDER.dll
C:\Windows\system32\ShimEng.dll
C:\Windows\system32\SHLWAPI.dll
C:\Windows\system32\sockspy.dll
C:\Windows\system32\urlmon.dll
C:\Windows\system32\USER32.dll
C:\Windows\system32\USERENV.dll
C:\Windows\system32\USP10.dll
C:\Windows\system32\uxtheme.dll
C:\Windows\system32\VERSION.dll
C:\Windows\system32\wdmaud.drv
C:\Windows\system32\WindowsCodecs.dll
C:\Windows\system32\WININET.dll
C:\Windows\system32\WINMM.dll
C:\Windows\system32\WINNSI.DLL
C:\Windows\System32\winrnr.dll
C:\Windows\system32\WINSPOOL.DRV
C:\Windows\system32\WINTRUST.dll
C:\Windows\system32\WLDAP32.dll
C:\Windows\system32\WS2_32.dll
C:\Windows\System32\wship6.dll
C:\Windows\System32\wshtcpip.dll
C:\Windows\system32\WSOCK32.dll
C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6000.16386_none_5d07289e07e1d100\COMCTL32.dll
[C:\Program Files\Softwin\BitDefender10\bdagent.exe (60)]
C:\Program Files\Softwin\BitDefender10\bdch.dll
C:\Program Files\Softwin\BitDefender10\BDGUICtl.dll
C:\Program Files\Softwin\BitDefender10\bdoe.dll
C:\Program Files\Softwin\BitDefender10\bdsubmit.dll
C:\Program Files\Softwin\BitDefender10\bdutils.dll
C:\Program Files\Softwin\BitDefender10\bwlist.dll
C:\Program Files\Softwin\BitDefender10\mimeinf.dll
C:\Program Files\Softwin\BitDefender10\procinf.dll
C:\Program Files\Softwin\BitDefender10\txmlx.dll
C:\Program Files\Softwin\BitDefender10\UnicoWS.dll
C:\Users\Nico\AppData\Local\Temp\rqomn.dll
C:\Windows\system32\ADVAPI32.dll
C:\Windows\system32\apphelp.dll
C:\Windows\system32\AVICAP32.dll
C:\Windows\system32\comdlg32.dll
C:\Windows\system32\eNetHook.dll
C:\Windows\system32\GDI32.dll
C:\Windows\system32\iertutil.dll
C:\Windows\system32\IMM32.DLL
C:\Windows\system32\kernel32.dll
C:\Windows\system32\LPK.DLL
C:\Windows\system32\MFC71.DLL
C:\Windows\system32\MFC71FRA.DLL
C:\Windows\system32\MPR.dll
C:\Windows\system32\MSCTF.dll
C:\Windows\system32\MSVCP71.dll
C:\Windows\system32\MSVCR71.dll
C:\Windows\system32\msvcrt.dll
C:\Windows\system32\MSVFW32.dll
C:\Windows\system32\Normaliz.dll
C:\Windows\system32\NSI.dll
C:\Windows\system32\ntdll.dll
C:\Windows\system32\NTMARTA.DLL
C:\Windows\system32\ole32.dll
C:\Windows\system32\OLEACC.dll
C:\Windows\system32\OLEAUT32.dll
C:\Windows\system32\oledlg.dll
C:\Windows\system32\PSAPI.DLL
C:\Windows\system32\RPCRT4.dll
C:\Windows\system32\SAMLIB.dll
C:\Windows\system32\Secur32.dll
C:\Windows\system32\SHELL32.dll
C:\Windows\system32\SHFOLDER.dll
C:\Windows\system32\SHLWAPI.dll
C:\Windows\system32\urlmon.dll
C:\Windows\system32\USER32.dll
C:\Windows\system32\USERENV.dll
C:\Windows\system32\USP10.dll
C:\Windows\system32\uxtheme.dll
C:\Windows\system32\VERSION.dll
C:\Windows\system32\WININET.dll
C:\Windows\system32\WINMM.dll
C:\Windows\system32\WINSPOOL.DRV
C:\Windows\system32\WINSTA.dll
C:\Windows\system32\WLDAP32.dll
C:\Windows\system32\WS2_32.dll
C:\Windows\system32\wtsapi32.dll
C:\Windows\system32\XCOMM.dll
C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.6000.16386_none_87e0cb09378714f1\COMCTL32.dll
C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6000.16386_none_5d07289e07e1d100\comctl32.dll
[C:\Program Files\Softwin\BitDefender10\bdmcon.exe (101)]
C:\Acer\Empowering Technology\EPOWER\SysHook.dll
C:\Program Files\Softwin\BitDefender10\agentreg.dll
C:\Program Files\Softwin\BitDefender10\antispam.dll
C:\Program Files\Softwin\BitDefender10\antispy.dll
C:\Program Files\Softwin\BitDefender10\antivirus.dll
C:\Program Files\Softwin\BitDefender10\ashield.dll
C:\Program Files\Softwin\BitDefender10\bdch.dll
C:\Program Files\Softwin\BitDefender10\BDElev.DLL
C:\Program Files\Softwin\BitDefender10\BDGUICtl.dll
C:\Program Files\Softwin\BitDefender10\bdsubmit.dll
C:\Program Files\Softwin\BitDefender10\bdusers.dll
C:\Program Files\Softwin\BitDefender10\bdutils.dll
C:\Program Files\Softwin\BitDefender10\bwlist.dll
C:\Program Files\Softwin\BitDefender10\dbokf.dll
C:\Program Files\Softwin\BitDefender10\firewall.dll
C:\Program Files\Softwin\BitDefender10\getfile.dll
C:\Program Files\Softwin\BitDefender10\live.dll
C:\Program Files\Softwin\BitDefender10\main.dll
C:\Program Files\Softwin\BitDefender10\NAG.dll
C:\Program Files\Softwin\BitDefender10\NTTools.dll
C:\Program Files\Softwin\BitDefender10\popup.dll
C:\Program Files\Softwin\BitDefender10\privintf.dll
C:\Program Files\Softwin\BitDefender10\procinf.dll
C:\Program Files\Softwin\BitDefender10\quar.dll
C:\Program Files\Softwin\BitDefender10\quarcore.dll
C:\Program Files\Softwin\BitDefender10\sysinfo.dll
C:\Program Files\Softwin\BitDefender10\txmlx.dll
C:\Program Files\Softwin\BitDefender10\TxTools.dll
C:\Program Files\Softwin\BitDefender10\UnicoWS.dll
C:\Program Files\Softwin\BitDefender10\vscan.dll
C:\Program Files\Softwin\BitDefender10\vshield.dll
C:\Program Files\Softwin\BitDefender10\Wizards.dll
C:\Program Files\Softwin\BitDefender10\WSLib.dll
C:\Users\Nico\AppData\Local\Temp\rqomn.dll
C:\Windows\system32\ADVAPI32.dll
C:\Windows\system32\apphelp.dll
C:\Windows\system32\AVICAP32.dll
C:\Windows\system32\CLBCatQ.DLL
C:\Windows\system32\comdlg32.dll
C:\Windows\system32\CRYPT32.dll
C:\Windows\system32\dhcpcsvc.DLL
C:\Windows\system32\dhcpcsvc6.DLL
C:\Windows\system32\DNSAPI.dll
C:\Windows\system32\eNetHook.dll
C:\Windows\system32\GDI32.dll
C:\Windows\system32\ieframe.DLL
C:\Windows\system32\iertutil.dll
C:\Windows\system32\IMM32.DLL
C:\Windows\system32\Iphlpapi.dll
C:\Windows\system32\kernel32.dll
C:\Windows\system32\LPK.DLL
C:\Windows\system32\MFC42.DLL
C:\Windows\system32\MFC71.DLL
C:\Windows\system32\MFC71FRA.DLL
C:\Windows\system32\MPR.dll
C:\Windows\system32\MSASN1.dll
C:\Windows\system32\MSCTF.dll
C:\Windows\system32\MSVCP71.dll
C:\Windows\system32\MSVCR71.dll
C:\Windows\system32\msvcrt.dll
C:\Windows\system32\MSVFW32.dll
C:\Windows\system32\NETAPI32.dll
C:\Windows\system32\Normaliz.dll
C:\Windows\system32\NSI.dll
C:\Windows\system32\ntdll.dll
C:\Windows\system32\NTMARTA.DLL
C:\Windows\system32\ODBC32.dll
C:\Windows\system32\odbcint.dll
C:\Windows\system32\ole32.dll
C:\Windows\system32\OLEACC.dll
C:\Windows\system32\OLEAUT32.dll
C:\Windows\system32\oledlg.dll
C:\Windows\system32\PROPSYS.dll
C:\Windows\system32\PSAPI.DLL
C:\Windows\system32\RPCRT4.dll
C:\Windows\system32\SAMLIB.dll
C:\Windows\system32\Secur32.dll
C:\Windows\system32\SETUPAPI.dll
C:\Windows\system32\SHDOCVW.dll
C:\Windows\system32\SHELL32.dll
C:\Windows\system32\SHFOLDER.dll
C:\Windows\system32\SHLWAPI.dll
C:\Windows\system32\sockspy.dll
C:\Windows\system32\URL.dll
C:\Windows\system32\urlmon.dll
C:\Windows\system32\USER32.dll
C:\Windows\system32\USERENV.dll
C:\Windows\system32\USP10.dll
C:\Windows\system32\uxtheme.dll
C:\Windows\system32\VERSION.dll
C:\Windows\system32\WindowsCodecs.dll
C:\Windows\system32\WININET.dll
C:\Windows\system32\WINMM.dll
C:\Windows\system32\WINNSI.DLL
C:\Windows\system32\WINSPOOL.DRV
C:\Windows\system32\WLDAP32.dll
C:\Windows\system32\WS2_32.dll
C:\Windows\system32\WSOCK32.dll
C:\Windows\system32\XCOMM.dll
C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.6000.16386_none_87e0cb09378714f1\COMCTL32.dll
C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6000.16386_none_5d07289e07e1d100\comctl32.dll
[C:\Program Files\Synaptics\SynTP\SynTPEnh.exe (40)]
C:\Acer\Empowering Technology\EPOWER\SysHook.dll
C:\Users\Nico\AppData\Local\Temp\rqomn.dll
C:\Windows\system32\ADVAPI32.dll
C:\Windows\system32\CLBCatQ.DLL
C:\Windows\system32\comdlg32.dll
C:\Windows\system32\eNetHook.dll
C:\Windows\system32\GDI32.dll
C:\Windows\system32\iertutil.dll
C:\Windows\system32\IMM32.DLL
C:\Windows\system32\kernel32.dll
C:\Windows\system32\LPK.DLL
C:\Windows\system32\MFC42.DLL
C:\Windows\system32\MSCTF.dll
C:\Windows\system32\msvcrt.dll
C:\Windows\system32\Normaliz.dll
C:\Windows\system32\NSI.dll
C:\Windows\system32\ntdll.dll
C:\Windows\system32\ODBC32.dll
C:\Windows\system32\odbcint.dll
C:\Windows\system32\ole32.dll
C:\Windows\system32\OLEACC.dll
C:\Windows\system32\OLEAUT32.dll
C:\Windows\system32\RPCRT4.dll
C:\Windows\system32\Secur32.dll
C:\Windows\system32\SHELL32.dll
C:\Windows\system32\SHFOLDER.dll
C:\Windows\system32\SHLWAPI.dll
C:\Windows\system32\SynCOM.dll
C:\Windows\system32\SynTPAPI.dll
C:\Windows\system32\urlmon.dll
C:\Windows\system32\USER32.dll
C:\Windows\system32\USP10.dll
C:\Windows\system32\uxtheme.dll
C:\Windows\system32\VERSION.dll
C:\Windows\system32\WININET.dll
C:\Windows\system32\WINMM.dll
C:\Windows\system32\WINSTA.dll
C:\Windows\system32\WS2_32.dll
C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.6000.16386_none_87e0cb09378714f1\COMCTL32.dll
C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6000.16386_none_5d07289e07e1d100\comctl32.dll
[C:\Program Files\Windows Live\Messenger\msnmsgr.exe (165)]
C:\Acer\Empowering Technology\EPOWER\SysHook.dll
C:\Program Files\Bonjour\mdnsNSP.dll
C:\Program Files\Messenger Plus! Live\Detoured.dll
C:\Program Files\Messenger Plus! Live\lame_enc.dll
C:\Program Files\Messenger Plus! Live\libsndfile.dll
C:\Program Files\Messenger Plus! Live\MsgPlusLive.dll
C:\Program Files\Messenger Plus! Live\MsgPlusLiveRes.dll
C:\Program Files\Windows Live\Messenger\abssm.dll
C:\Program Files\Windows Live\Messenger\contact.dll
C:\Program Files\Windows Live\Messenger\ContactsUX.dll
C:\Program Files\Windows Live\Messenger\custsat.dll
C:\Program Files\Windows Live\Messenger\dfsr.dll
C:\Program Files\Windows Live\Messenger\lcapi.dll
C:\Program Files\Windows Live\Messenger\lcres.dll
C:\Program Files\Windows Live\Messenger\lmcdata.dll
C:\Program Files\Windows Live\Messenger\msgrvsta.thm
C:\Program Files\Windows Live\Messenger\msgslang.8.5.1288.0816.dll
C:\Program Files\Windows Live\Messenger\msgsres.dll
C:\Program Files\Windows Live\Messenger\MSGSWCAM.dll
C:\Program Files\Windows Live\Messenger\msidcrl40.dll
C:\Program Files\Windows Live\Messenger\MSIMG32.dll
C:\Program Files\Windows Live\Messenger\MSNCore.dll
C:\Program Files\Windows Live\Messenger\RTMPLTFM.dll
C:\Program Files\Windows Live\Messenger\usnsvcps.dll
C:\Users\Nico\AppData\Local\Temp\rqomn.dll
C:\Windows\system\BisonC07.dll
C:\Windows\system32\ADVAPI32.dll
C:\Windows\system32\apphelp.dll
C:\Windows\system32\ATL.DLL
C:\Windows\System32\audioeng.dll
C:\Windows\System32\audioses.dll
C:\Windows\system32\AVRT.dll
C:\Windows\system32\BCRYPT.dll
C:\Windows\system32\Cabinet.dll
C:\Windows\system32\CLBCatQ.DLL
C:\Windows\system32\Comdlg32.dll
C:\Windows\system32\credssp.dll
C:\Windows\system32\CRYPT32.dll
C:\Windows\system32\CRYPTNET.dll
C:\Windows\system32\cscapi.dll
C:\Windows\system32\d3d8thk.dll
C:\Windows\system32\d3d9.dll
C:\Windows\system32\D3DIM700.DLL
C:\Windows\system32\DCIMAN32.dll
C:\Windows\system32\DDRAW.dll
C:\Windows\system32\devenum.dll
C:\Windows\system32\dhcpcsvc.DLL
C:\Windows\system32\dhcpcsvc6.DLL
C:\Windows\system32\DNSAPI.dll
C:\Windows\system32\DSOUND.dll
C:\Windows\system32\dssenh.dll
C:\Windows\system32\dwmapi.dll
C:\Windows\system32\DXVA2.DLL
C:\Windows\system32\eNetHook.dll
C:\Windows\system32\es.dll
C:\Windows\system32\ESENT.dll
C:\Windows\system32\GDI32.dll
C:\Windows\system32\GPAPI.dll
C:\Windows\system32\hnetcfg.dll
C:\Windows\system32\ieframe.dll
C:\Windows\system32\iertutil.dll
C:\Windows\system32\imagehlp.dll
C:\Windows\system32\IMM32.dll
C:\Windows\system32\inetcomm.dll
C:\Windows\system32\inetres.dll
C:\Windows\system32\iphlpapi.dll
C:\Windows\system32\jscript.dll
C:\Windows\system32\kernel32.dll
C:\Windows\system32\ksproxy.ax
C:\Windows\system32\ksuser.dll
C:\Windows\system32\kswdmcap.ax
C:\Windows\system32\LINKINFO.dll
C:\Windows\system32\LPK.DLL
C:\Windows\system32\Macromed\Flash\Flash9d.ocx
C:\Windows\system32\MFC42.dll
C:\Windows\system32\mfplat.dll
C:\Windows\system32\midimap.dll
C:\Windows\system32\mlang.dll
C:\Windows\System32\MMDevApi.dll
C:\Windows\system32\MSACM32.dll
C:\Windows\system32\msacm32.drv
C:\Windows\system32\MSASN1.dll
C:\Windows\system32\MSCTF.dll
C:\Windows\system32\msdmo.dll
C:\Windows\system32\Msftedit.dll
C:\Windows\system32\mshtml.dll
C:\Windows\system32\msi.dll
C:\Windows\system32\MsImg32.dll
C:\Windows\system32\msimtf.dll
C:\Windows\system32\msls31.dll
C:\Windows\system32\MSOERT2.dll
C:\Windows\system32\msvcrt.dll
C:\Windows\system32\mswsock.dll
C:\Windows\System32\msxml3.dll
C:\Windows\system32\napinsp.dll
C:\Windows\system32\ncrypt.dll
C:\Windows\system32\NETAPI32.dll
C:\Windows\system32\NLAapi.dll
C:\Windows\system32\Normaliz.dll
C:\Windows\system32\NSI.dll
C:\Windows\system32\ntdll.dll
C:\Windows\system32\NTMARTA.DLL
C:\Windows\system32\ntshrui.dll
C:\Windows\system32\ODBC32.dll
C:\Windows\system32\odbcint.dll
C:\Windows\system32\ole32.dll
C:\Windows\system32\OLEACC.dll
C:\Windows\system32\OLEAUT32.dll
C:\Windows\system32\pnrpnsp.dll
C:\Windows\system32\POWRPROF.dll
C:\Windows\system32\PROPSYS.dll
C:\Windows\system32\PSAPI.DLL
C:\Windows\system32\quartz.dll
C:\Windows\system32\rasadhlp.dll
C:\Windows\system32\RASAPI32.dll
C:\Windows\system32\rasman.dll
C:\Windows\system32\Riched20.dll
C:\Windows\system32\RPCRT4.dll
C:\Windows\system32\rsaenh.dll
C:\Windows\system32\rtutils.dll
C:\Windows\system32\SAMLIB.dll
C:\Windows\system32\schannel.dll
C:\Windows\system32\Secur32.dll
C:\Windows\system32\SensApi.dll
C:\Windows\system32\SETUPAPI.dll
C:\Windows\system32\SFC.DLL
C:\Windows\system32\sfc_os.dll
C:\Windows\system32\SHELL32.dll
C:\Windows\system32\SHFOLDER.dll
C:\Windows\system32\SHLWAPI.dll
C:\Windows\system32\sirenacm.dll
C:\Windows\system32\slc.dll
C:\Windows\system32\SSDPAPI.dll
C:\Windows\system32\SXS.DLL
C:\Windows\system32\TAPI32.dll
C:\Windows\system32\upnp.dll
C:\Windows\system32\urlmon.dll
C:\Windows\system32\USER32.dll
C:\Windows\system32\USERENV.dll
C:\Windows\system32\USP10.dll
C:\Windows\system32\UxTheme.dll
C:\Windows\system32\vbscript.dll
C:\Windows\system32\VERSION.dll
C:\Windows\system32\wdmaud.drv
C:\Windows\system32\WindowsCodecs.dll
C:\Windows\system32\WINHTTP.dll
C:\Windows\system32\WININET.dll
C:\Windows\system32\WINMM.dll
C:\Windows\system32\WINNSI.DLL
C:\Windows\System32\winrnr.dll
C:\Windows\system32\WINSTA.dll
C:\Windows\system32\WINTRUST.dll
C:\Windows\system32\WLDAP32.dll
C:\Windows\System32\WMADMOD.DLL
C:\Windows\system32\WMASF.DLL
C:\Windows\system32\wmvcore.dll
C:\Windows\system32\WS2_32.dll
C:\Windows\System32\wship6.dll
C:\Windows\System32\wshtcpip.dll
C:\Windows\system32\WSOCK32.dll
C:\Windows\system32\WTSAPI32.dll
C:\Windows\WinSxS\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.762_none_10b2f55f9bffb8f8\MSVCP80.dll
C:\Windows\WinSxS\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.762_none_10b2f55f9bffb8f8\MSVCR80.dll
C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6000.16386_none_5d07289e07e1d100\COMCTL32.dll
C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6000.16386_none_9ea0ac9e
96e7127\gdiplus.dll
[C:\Program Files\Windows Sidebar\sidebar.exe (112)]
C:\Acer\Empowering Technology\EPOWER\SysHook.dll
C:\Program Files\Bonjour\mdnsNSP.dll
C:\Program Files\Windows Sidebar\wlsrvc.dll
C:\Users\Nico\AppData\Local\Temp\rqomn.dll
C:\Windows\system32\ADVAPI32.dll
C:\Windows\system32\apphelp.dll
C:\Windows\system32\ATL.DLL
C:\Windows\system32\bcrypt.dll
C:\Windows\system32\CLBCatQ.DLL
C:\Windows\system32\COMDLG32.dll
C:\Windows\system32\credssp.dll
C:\Windows\system32\CRYPT32.dll
C:\Windows\system32\CRYPTUI.dll
C:\Windows\system32\DCIMAN32.dll
C:\Windows\system32\DDRAW.dll
C:\Windows\system32\ddrawex.dll
C:\Windows\system32\dhcpcsvc.DLL
C:\Windows\system32\dhcpcsvc6.DLL
C:\Windows\system32\DNSAPI.dll
C:\Windows\system32\dwmapi.dll
C:\Windows\system32\Dxtmsft.dll
C:\Windows\system32\Dxtrans.dll
C:\Windows\system32\eappcfg.dll
C:\Windows\system32\eappprxy.dll
C:\Windows\system32\eNetHook.dll
C:\Windows\system32\GDI32.dll
C:\Windows\system32\icm32.dll
C:\Windows\system32\ieframe.dll
C:\Windows\system32\iertutil.dll
C:\Windows\system32\imagehlp.dll
C:\Windows\system32\ImgUtil.dll
C:\Windows\system32\IMM32.DLL
C:\Windows\system32\IPHLPAPI.DLL
C:\Windows\system32\jscript.dll
C:\Windows\system32\kernel32.dll
C:\Windows\system32\LPK.DLL
C:\Windows\system32\MFC42.DLL
C:\Windows\system32\MLANG.dll
C:\Windows\system32\MSASN1.dll
C:\Windows\syst0 -
0
-
Bonjour,
Le fichier C:\Users\Nico\AppData\Local\Temp\rqomn.dll est probablement l'un qui a cree le Trojan.Vundo.DVS. Envoyez svp ce fichier (et le rapport startuplist entier) dans une archive protegee par le mot cle "infected" a LBOERIU@BITDEFENDER.COM. Je ferai un outil pour vous aider a enlever le malware.0
Leaders
Catégories
- Toutes les catégories
- 613 Windows
- 33 Mac
- 93 Mobile Security
- 232 VPN
- 240 Central et abonnements
- 137 Autres produits et services
- 77 Équipe de recherche sur la sécurité
- 28 Fonctionnalités du produit et idéation
- 84 Thèmes généraux
- 7.2K Particuliers & bureau à domicile
- 574 Malwares et envoi dexemples
- 2.7K Vieux sujets
- Archiver
