(all c:\WINDOWS\system32)
kernel32.dll
winsock.dll
wsock32.dll
Ok files. Like David said, they're there for backup purposes.
these are the many unscanable files
sorry if i repeated them, i tried to erase the ones i remembered repeating. actully maybe what i typed here is'nt even helpful. i dont know what any of it means. but anyways, i couldnt move any but one into the chest. i hope thats not a bad sigh.
Indeed seems to be strange files listed there...
I suggest, a step by step procedure for general cleaning:
1. Disable System Restore on
Windows ME or
Windows XP. System Restore cannot be disabled on Windows 9x and it's not available in Windows 2k. After boot you can enable System Restore again after step 3).
2. Clean your temporary files. You can use
CleanUp or the
Windows Advanced Care features for that.
3. Schedule a boot time scanning with avast. Start avast! > Right click the skin > Schedule a boot-time scanning. Select for scanning archives. Boot. Do not delete files, but rather send them to Chest. Don't touch in 'system' files, we can manage them later.
4. It will be good if you download, install, update and run
AVG Antispyware. Some users recommend
SUPERantispyware,
Spyware Terminator and/or
a-squared (take care about false positives).
If any infection is detected, better and safer is send the file to Quarantine than to simple delete than.
5. If you still detecting any strange behavior or even you're sure you're not clean, maybe it will be good to test your machine with
anti-rootkit applications. I suggest
AVG,
Panda and/or
F-Secure BlackLight.
6. Also, if you still detecting strange behaviors or you want to be sure you're clean, maybe making a
HijackThis log to post here and, specially, scan and submit to on-line analysis the
RunScanner log would help to identify the problem and the solution.
7. After you're clean, use the immunization of
SpywareBlaster or, which is better, the
Windows Advanced Care features of spyware/adware cleaning and removal.
8. Finally, when you're clean, check for insecure applications with
Secunia Software Inspector to update insecure applications and avoid reinfection.