Some 'folks' (some of which will then try to sell you antispyware "solutions") have started modifying trojans to drop hidden and read only appinit .dlls. I recently got spanked. Spybot didn't see it. None of my shredders touched it. Hijack saw the aftermath so to speak, but didn't really clean it up. Couldn't find jack in the registry. And my config and startups were fine. Yet I got re-infected every time I restarted. Ended up stumbling on the information for the hidden .dll - couldn't change the attribs on it in safe mode - had to rename one of the Windows folders in the reg so I could clear it - then go back into safe and clean up again. Real PITA... And they can get you just by your clicking a do not send me any more of your damn spam links in an unsolicited email.