Can't get on internet via IE,gets re-directed [RESOLVED]

Welcome Guest ( Log In | Register )

Discover the best free computer help!
Learn more about Geeks to Go by taking the tour. Spyware, virus, trojan, fake security or privacy alerts? Read the malware cleaning guide.

> Geeks to Go! » Security » Malware Removal - HijackThis� Logs Go Here

Can't get on internet via IE,gets re-directed [RESOLVED], re-directed to/ slirsredirect.search.aol.com, AOL gets booted off line

Options

KCD86 View Member Profile	May 8 2008, 06:44 AM Post #1
Member Posts: 49 OS: windos xp	I have followed the required steps prior to posting Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 8:30:43 AM, on 5/8/2008 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v7.00 (7.00.6000.16640) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\Program Files\Bonjour\mDNSResponder.exe C:\WINDOWS\system32\cisvc.exe C:\Program Files\Common Files\McAfee\HackerWatch\HWAPI.exe C:\PROGRA~1\McAfee\MSC\mcmscsvc.exe c:\PROGRA~1\COMMON~1\mcafee\mna\mcnasvc.exe C:\PROGRA~1\McAfee\VIRUSS~1\mcods.exe C:\PROGRA~1\McAfee\MSC\mcpromgr.exe c:\PROGRA~1\COMMON~1\mcafee\mcproxy\mcproxy.exe c:\PROGRA~1\COMMON~1\mcafee\redirsvc\redirsvc.exe C:\PROGRA~1\McAfee\VIRUSS~1\mcshield.exe C:\PROGRA~1\McAfee\VIRUSS~1\mcsysmon.exe C:\PROGRA~1\MCAFEE.COM\PERSON~1\MPFSERVICE.exe C:\PROGRA~1\McAfee\MPS\mps.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\Viewpoint\Common\ViewpointService.exe C:\WINDOWS\wanmpsvc.exe C:\WINDOWS\system32\cidaemon.exe C:\WINDOWS\Explorer.EXE c:\PROGRA~1\mcafee.com\agent\mcagent.exe C:\PROGRA~1\MCAFEE.COM\PERSON~1\MPFTRAY.EXE C:\WINDOWS\System32\spool\drivers\w32x86\3\hpztsb09.exe C:\Program Files\Common Files\AOL\1138563625\ee\AOLSoftware.exe C:\Program Files\QuickTime\qttask.exe C:\PROGRA~1\MCAFEE.COM\PERSON~1\MPFAGENT.EXE C:\Program Files\iTunes\iTunesHelper.exe C:\Program Files\Java\jre1.6.0_04\bin\jusched.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\Common Files\AOL\Loader\aolload.exe C:\Program Files\Messenger\msmsgs.exe C:\Program Files\AIM\aim.exe C:\Program Files\iPod\bin\iPodService.exe C:\Program Files\McAfee\MPS\mpsevh.exe C:\Program Files\AIM6\aim6.exe F:\super anti-spyware5-6-08\SUPERAntiSpyware.exe C:\Program Files\Common Files\AOL\Loader\aolload.exe C:\Program Files\AIM6\aolsoftware.exe c:\PROGRA~1\mcafee\msc\mcuimgr.exe F:\America Online 9.0\waol.exe C:\Program Files\Common Files\AOL\ACS\AOLacsd.exe F:\America Online 9.0\aolwbspd.exe F:\HijackThis.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.foxnews.com/ R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157 R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R3 - URLSearchHook: AOLTBSearch Class - {EA756889-2338-43DB-8F07-D1CA6FB9C90D} - C:\Program Files\AOL\AIM Toolbar 5.0\aoltb.dll N3 - Netscape 7: user_pref("browser.startup.homepage", "wabu.com"); (C:\Documents and Settings\KDEARIE\Application Data\Mozilla\Profiles\default\olzez6kg.slt\prefs.js) N3 - Netscape 7: user_pref("browser.search.defaultengine", "engine://C%3A%5CPROGRAM%20FILES%5CNETSCAPE%5CNETSCAPE%5Csearchplugins%5CSBWeb_02.src"); (C:\Documents and Settings\KDEARIE\Application Data\Mozilla\Profiles\default\olzez6kg.slt\prefs.js) O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_04\bin\ssv.dll O2 - BHO: AOL Toolbar Launcher - {7C554162-8CB7-45A4-B8F4-8EA1C75885F9} - C:\Program Files\AOL\AIM Toolbar 5.0\aoltb.dll O2 - BHO: scriptproxy - {7DB2D5A0-7241-4E79-B68D-6309F01C5231} - c:\PROGRA~1\mcafee\VIRUSS~1\scriptcl.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar.dll O3 - Toolbar: Norton AntiVirus - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - C:\Program Files\Norton AntiVirus\NavShExt.dll O3 - Toolbar: (no name) - {BA52B914-B692-46c4-B683-905236F6F655} - (no file) O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar.dll O3 - Toolbar: AOL Toolbar - {4982D40A-C53B-4615-B15B-B5B5E98D167C} - C:\Program Files\AOL Toolbar\toolbar.dll (file missing) O3 - Toolbar: AIM Toolbar - {DE9C389F-3316-41A7-809B-AA305ED9D922} - C:\Program Files\AOL\AIM Toolbar 5.0\aoltb.dll O4 - HKLM\..\Run: [SystemTray] SysTray.Exe O4 - HKLM\..\Run: [MPFExe] C:\PROGRA~1\MCAFEE.COM\PERSON~1\MPFTRAY.EXE O4 - HKLM\..\Run: [LoadPowerProfile] Rundll32.exe powrprof.dll,LoadCurrentPwrScheme O4 - HKLM\..\Run: [HPDJ Taskbar Utility] C:\WINDOWS\System32\spool\drivers\w32x86\3\hpztsb09.exe O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "G:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe" O4 - HKLM\..\Run: [UserFaultCheck] %systemroot%\system32\dumprep 0 -u O4 - HKLM\..\Run: [HostManager] C:\Program Files\Common Files\AOL\1138563625\ee\AOLSoftware.exe O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe" O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_04\bin\jusched.exe" O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background O4 - HKCU\..\Run: [AIM] C:\Program Files\AIM\aim.exe -cnetwait.odl O4 - HKCU\..\Run: [Aim6] "C:\Program Files\AIM6\aim6.exe" /d locale=en-US ee://aol/imApp O4 - HKCU\..\Run: [SUPERAntiSpyware] F:\super anti-spyware5-6-08\SUPERAntiSpyware.exe O8 - Extra context menu item: &AOL Toolbar Search - c:\program files\aol\aim toolbar 5.0\resources\en-US\local\search.html O8 - Extra context menu item: &Google Search - res://C:\Program Files\Google\googletoolbar.dll/cmsearch.html O8 - Extra context menu item: Backward &Links - res://C:\Program Files\Google\googletoolbar.dll/cmbacklinks.html O8 - Extra context menu item: Cac&hed Snapshot of Page - res://C:\Program Files\Google\googletoolbar.dll/cmcache.html O8 - Extra context menu item: Schoolpop - file://C:\Program Files\SchoolpopShoppingBuddy\System\Temp\schoolpop_script0.htm O8 - Extra context menu item: Si&milar Pages - res://C:\Program Files\Google\googletoolbar.dll/cmsimilar.html O8 - Extra context menu item: Translate into English - res://C:\Program Files\Google\googletoolbar.dll/cmtrans.html O9 - Extra button: AIM Toolbar - {3369AF0D-62E9-4bda-8103-B4C75499B578} - C:\Program Files\AOL\AIM Toolbar 5.0\aoltb.dll O9 - Extra button: AOL Toolbar - {4982D40A-C53B-4615-B15B-B5B5E98D167C} - C:\Program Files\AOL Toolbar\toolbar.dll (file missing) O9 - Extra 'Tools' menuitem: AOL Toolbar - {4982D40A-C53B-4615-B15B-B5B5E98D167C} - C:\Program Files\AOL Toolbar\toolbar.dll (file missing) O9 - Extra button: Bonjour - {7F9DB11C-E358-4ca6-A83D-ACC663939424} - C:\Program Files\Bonjour\ExplorerPlugin.dll O9 - Extra button: AIM - {AC9E2541-2814-11d5-BC6D-00B0D0A1DE45} - C:\Program Files\AIM\aim.exe O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\SYSTEM32\SHDOCVW.DLL O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra button: Schoolpop - {B46F2A6A-3216-461c-BEEA-FBE442469812} - file://C:\Program Files\SchoolpopShoppingBuddy\System\Temp\schoolpop_script0.htm (HKCU) O10 - Unknown file in Winsock LSP: c:\windows\system32\nwprovau.dll O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204 O16 - DPF: {2D8ED06D-3C30-438B-96AE-4D110FDC1FB8} (ActiveScan 2.0 Installer Class) - http://acs.pandasoftware.com/activescan/cabs/as2stubie.cab O16 - DPF: {4ED9DDF0-7479-4BBE-9335-5A1EDB1D8A21} (McAfee.com Operating System Class) - http://download.av.aol.com/molbin/shared/m...77/mcinsctl.cab O16 - DPF: {BCC0FF27-31D9-4614-A68E-C18E1ADA4389} (DwnldGroupMgr Class) - http://download.av.aol.com/molbin/shared/m...,18/mcgdmgr.cab O16 - DPF: {CE28D5D2-60CF-4C7D-9FE8-0F47A3308078} (ActiveDataInfo Class) - https://www-secure.symantec.com/techsupp/ac...ta/SymAData.dll O16 - DPF: {E77C0D62-882A-456F-AD8F-7C6C9569B8C7} (ActiveDataObj Class) - https://www-secure.symantec.com/techsupp/ac.../ActiveData.cab O17 - HKLM\System\CCS\Services\Tcpip\..\{C1B9F2FB-07CD-4AC0-AB56-6CED40BECB0F}: NameServer = 205.188.146.145 O20 - Winlogon Notify: !SASWinLogon - F:\super anti-spyware5-6-08\SASWINLO.DLL O20 - Winlogon Notify: Guardian - C:\WINDOWS\system32\msg118.dll (file missing) O21 - SSODL: URLREWIN - {EB9BDABE-1BD2-445B-9A13-BA9C7D2E3CA9} - C:\WINDOWS\System32\netknl.dll O23 - Service: AOL Connectivity Service (AOL ACS) - AOL LLC - C:\PROGRA~1\COMMON~1\AOL\ACS\acsd.exe O23 - Service: AOL Spyware Protection Service (AOLService) - Unknown owner - C:\PROGRA~1\COMMON~1\AOL\AOLSPY~1\\aolserv.exe (file missing) O23 - Service: Bonjour Service - Apple Computer, Inc. - C:\Program Files\Bonjour\mDNSResponder.exe O23 - Service: McAfee E-mail Proxy (Emproxy) - McAfee, Inc. - C:\PROGRA~1\COMMON~1\McAfee\EmProxy\emproxy.exe O23 - Service: IMAPI CD-Burning COM Service (ImapiService) - Roxio Inc. - C:\WINDOWS\System32\ImapiRox.exe O23 - Service: iPod Service - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: McAfee HackerWatch Service - McAfee, Inc. - C:\Program Files\Common Files\McAfee\HackerWatch\HWAPI.exe O23 - Service: McAfee Update Manager (mcmispupdmgr) - McAfee, Inc. - C:\PROGRA~1\McAfee\MSC\mcupdmgr.exe O23 - Service: McAfee Services (mcmscsvc) - McAfee, Inc. - C:\PROGRA~1\McAfee\MSC\mcmscsvc.exe O23 - Service: McAfee Network Agent (McNASvc) - McAfee, Inc. - c:\PROGRA~1\COMMON~1\mcafee\mna\mcnasvc.exe O23 - Service: McAfee Scanner (McODS) - McAfee, Inc. - C:\PROGRA~1\McAfee\VIRUSS~1\mcods.exe O23 - Service: McAfee Protection Manager (mcpromgr) - McAfee, Inc. - C:\PROGRA~1\McAfee\MSC\mcpromgr.exe O23 - Service: McAfee Proxy Service (McProxy) - McAfee, Inc. - c:\PROGRA~1\COMMON~1\mcafee\mcproxy\mcproxy.exe O23 - Service: McAfee Redirector Service (McRedirector) - McAfee, Inc. - c:\PROGRA~1\COMMON~1\mcafee\redirsvc\redirsvc.exe O23 - Service: McAfee Real-time Scanner (McShield) - McAfee, Inc. - C:\PROGRA~1\McAfee\VIRUSS~1\mcshield.exe O23 - Service: McAfee SystemGuards (McSysmon) - McAfee, Inc. - C:\PROGRA~1\McAfee\VIRUSS~1\mcsysmon.exe O23 - Service: McAfee Personal Firewall Service (MpfService) - McAfee Corporation - C:\PROGRA~1\MCAFEE.COM\PERSON~1\MPFSERVICE.exe O23 - Service: McAfee Privacy Service (MPS9) - McAfee, Inc. - C:\PROGRA~1\McAfee\MPS\mps.exe O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\System32\HPZipm12.exe O23 - Service: Viewpoint Manager Service - Viewpoint Corporation - C:\Program Files\Viewpoint\Common\ViewpointService.exe O23 - Service: WAN Miniport (ATW) Service (WANMiniportService) - America Online, Inc. - C:\WINDOWS\wanmpsvc.exe O24 - Desktop Component 0: (no name) - (no file) O24 - Desktop Component 2: CNN.com - http://www.cnn.com/ -- End of file - 11729 bytes Attached File(s) PandaActiveScan5_9_08.txt ( 27.91K ) Number of downloads: 5

KCD86 View Member Profile	May 8 2008, 06:54 AM Post #2
Member Posts: 49 OS: windos xp	SUPERAntiSpyware Scan Log Generated 05/07/2008 at 08:13 AM Application Version : 3.6.1000 Core Rules Database Version : 3453 Trace Rules Database Version: 1445 Scan type : Complete Scan Total Scan Time : 16:49:49 Memory items scanned : 627 Memory threats detected : 0 Registry items scanned : 5607 Registry threats detected : 238 File items scanned : 155371 File threats detected : 297 Adware.MyWay HKLM\Software\Microsoft\Internet Explorer\Toolbar#{0494D0D9-F8E0-41ad-92A3-14154ECE70AC} HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser#{0494D0D9-F8E0-41AD-92A3-14154ECE70AC} HKU\S-1-5-19\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser#{0494D0D9-F8E0-41AD-92A3-14154ECE70AC} HKU\S-1-5-20\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser#{0494D0D9-F8E0-41AD-92A3-14154ECE70AC} HKU\S-1-5-18\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser#{0494D0D9-F8E0-41AD-92A3-14154ECE70AC} HKCR\MyWayToolBar.NetscapeShutdown HKCR\MyWayToolBar.NetscapeShutdown\CLSID HKCR\MyWayToolBar.NetscapeShutdown\CurVer HKCR\MyWayToolBar.NetscapeShutdown.1 HKCR\MyWayToolBar.NetscapeShutdown.1\CLSID HKCR\MyWayToolBar.NetscapeStartup HKCR\MyWayToolBar.NetscapeStartup\CLSID HKCR\MyWayToolBar.NetscapeStartup\CurVer HKCR\MyWayToolBar.NetscapeStartup.1 HKCR\MyWayToolBar.NetscapeStartup.1\CLSID HKCR\MyWayToolBar.SettingsPlugin HKCR\MyWayToolBar.SettingsPlugin\CLSID HKCR\MyWayToolBar.SettingsPlugin\CurVer HKCR\MyWayToolBar.SettingsPlugin.1 HKCR\MyWayToolBar.SettingsPlugin.1\CLSID HKCR\TypeLib\{0494D0D0-F8E0-41AD-92A3-14154ECE70AC} HKCR\TypeLib\{0494D0D0-F8E0-41AD-92A3-14154ECE70AC}\1.0 HKCR\TypeLib\{0494D0D0-F8E0-41AD-92A3-14154ECE70AC}\1.0\0 HKCR\TypeLib\{0494D0D0-F8E0-41AD-92A3-14154ECE70AC}\1.0\0\win32 HKCR\TypeLib\{0494D0D0-F8E0-41AD-92A3-14154ECE70AC}\1.0\FLAGS HKCR\TypeLib\{0494D0D0-F8E0-41AD-92A3-14154ECE70AC}\1.0\HELPDIR HKLM\Software\MyWay HKLM\Software\MyWay\myBar HKLM\Software\MyWay\myBar#Dir HKLM\Software\MyWay\myBar#Branding HKLM\Software\MyWay\myBar#CurInstall HKLM\Software\MyWay\myBar#Id HKLM\Software\MyWay\myBar#CacheDir HKLM\Software\MyWay\myBar#HistoryDir HKLM\Software\MyWay\myBar#Visible HKLM\Software\MyWay\myBar#Maximized HKLM\Software\MyWay\myBar#SettingsDir HKLM\Software\MyWay\myBar#ConfigRevision HKLM\Software\MyWay\myBar#ConfigRevisionURL HKLM\Software\MyWay\myBar#sr HKLM\Software\MyWay\myBar#pl HKLM\Software\MyWay\myBar#ShzmCurInstall HKLM\Software\MyWay\myBar#pid HKLM\Software\MyWay\myBar#strings HKLM\Software\MyWay\myBar#Build HKLM\Software\MyWay\myBar#ConfigDateStamp HKLM\Software\MyWay\myBar\partner HKLM\Software\MyWay\myBar\partner#autologin HKLM\Software\MyWay\myBar\partner#cfg HKLM\Software\MyWay\myBar\partner#mywayurl HKLM\Software\MyWay\myBar\partner#search HKLM\Software\MyWay\myBar\partner#uninstallurl HKLM\Software\MyWay\myBar\partner#bitmap HKLM\Software\MyWay\myBar\partner#name HKLM\Software\MyWay\SearchAssistant HKLM\Software\MyWay\SearchAssistant#Dir HKLM\Software\MyWay\SearchAssistant#pid HKLM\Software\MyWay\SearchAssistant#CurInstall HKLM\Software\MyWay\SearchAssistant#sr HKLM\Software\MyWay\SearchAssistant#pl HKLM\Software\MyWay\SearchAssistant#Id HKLM\Software\MyWay\SearchAssistant#CacheDir HKLM\Software\MyWay\SearchAssistant#ConfigDateStamp HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\My Way Speedbar Uninstall HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\My Way Speedbar Uninstall#DisplayName HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\My Way Speedbar Uninstall#HelpLink HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\My Way Speedbar Uninstall#Publisher HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\My Way Speedbar Uninstall#UninstallString HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\My Way Speedbar Uninstall#UrlInfoAbout Spyware.WebSearch (WinTools/HuntBar) HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser#{339BB23F-A864-48C0-A59F-29EA915965EC} HKU\S-1-5-19\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser#{339BB23F-A864-48C0-A59F-29EA915965EC} HKU\S-1-5-20\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser#{339BB23F-A864-48C0-A59F-29EA915965EC} HKU\S-1-5-18\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser#{339BB23F-A864-48C0-A59F-29EA915965EC} HKU\.DEFAULT\Software\Microsoft\Internet Explorer\URLSearchHooks#{8952A998-1E7E-4716-B23D-3DBE03910972} HKU\S-1-5-19\Software\Microsoft\Internet Explorer\URLSearchHooks#{8952A998-1E7E-4716-B23D-3DBE03910972} HKU\S-1-5-20\Software\Microsoft\Internet Explorer\URLSearchHooks#{8952A998-1E7E-4716-B23D-3DBE03910972} HKU\S-1-5-18\Software\Microsoft\Internet Explorer\URLSearchHooks#{8952A998-1E7E-4716-B23D-3DBE03910972} Adware.Duden-Suche HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser#{92F02779-6D88-4958-8AD3-83C12D86ADC7} HKU\S-1-5-19\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser#{92F02779-6D88-4958-8AD3-83C12D86ADC7} HKU\S-1-5-20\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser#{92F02779-6D88-4958-8AD3-83C12D86ADC7} HKU\S-1-5-18\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser#{92F02779-6D88-4958-8AD3-83C12D86ADC7} Adware.Tracking Cookie C:\Documents and Settings\kdearie\Cookies\kdearie@2o7[2].txt C:\WINDOWS\TEMP\Cookies\kdearie@mediaplex[1].txt C:\WINDOWS\TEMP\Cookies\kdearie@ads.specificpop[2].txt C:\WINDOWS\TEMP\Cookies\kdearie@z1.adserver[2].txt C:\WINDOWS\TEMP\Cookies\kdearie@okcounter[1].txt C:\WINDOWS\TEMP\Cookies\kdearie@trafficmp[1].txt C:\WINDOWS\TEMP\Cookies\kdearie@hitbox[1].txt C:\WINDOWS\TEMP\Cookies\kdearie@ehg-bestbuy.hitbox[2].txt C:\WINDOWS\TEMP\Cookies\kdearie@fastclick[1].txt C:\WINDOWS\TEMP\Cookies\kdearie@data.coremetrics[2].txt C:\WINDOWS\TEMP\Cookies\kdearie@bs.serving-sys[1].txt C:\WINDOWS\TEMP\Cookies\kdearie@atwola[1].txt C:\WINDOWS\TEMP\Cookies\kdearie@atdmt[2].txt C:\WINDOWS\TEMP\Cookies\kdearie@ehg-nokiafin.hitbox[1].txt C:\WINDOWS\TEMP\Cookies\kdearie@clickagents[2].txt C:\WINDOWS\TEMP\Cookies\kdearie@qksrv[1].txt C:\WINDOWS\TEMP\Cookies\kdearie@ads.zap2it[2].txt C:\WINDOWS\TEMP\Cookies\kdearie@doubleclick[1].txt C:\WINDOWS\TEMP\Cookies\kdearie@bfast[1].txt C:\WINDOWS\TEMP\Cookies\kdearie@ads.as4x.tmcs.ticketmaster[2].txt C:\WINDOWS\TEMP\Cookies\kdearie@2o7[1].txt C:\WINDOWS\TEMP\Cookies\kdearie@offeroptimizer[2].txt C:\WINDOWS\TEMP\Cookies\kdearie@commission-junction[1].txt C:\WINDOWS\TEMP\Cookies\kdearie@mediaplex[3].txt C:\Documents and Settings\kdearie\Emily Dearie\Cookies\emily dearie@data.coremetrics[1].txt C:\Documents and Settings\kdearie\Emily Dearie\Cookies\emily dearie@trafficmp[1].txt C:\Documents and Settings\kdearie\Emily Dearie\Cookies\emily dearie@hitbox[2].txt C:\Documents and Settings\kdearie\Emily Dearie\Cookies\emily dearie@hg1.hitbox[2].txt C:\Documents and Settings\kdearie\Emily Dearie\Cookies\emily dearie@ads.specificpop[1].txt C:\Documents and Settings\kdearie\Emily Dearie\Cookies\emily dearie@atdmt[2].txt C:\Documents and Settings\kdearie\Emily Dearie\Cookies\emily dearie@mediaplex[1].txt C:\Documents and Settings\kdearie\Emily Dearie\Cookies\emily dearie@qksrv[2].txt C:\Documents and Settings\kdearie\Emily Dearie\Cookies\emily dearie@insightfirst[2].txt C:\Documents and Settings\kdearie\Emily Dearie\Cookies\emily dearie@realmedia[1].txt C:\Documents and Settings\kdearie\Emily Dearie\Cookies\emily dearie@revenue[1].txt C:\Documents and Settings\kdearie\Emily Dearie\Cookies\emily dearie@atwola[1].txt C:\Documents and Settings\kdearie\Emily Dearie\Cookies\emily dearie@adrevolver[1].txt C:\Documents and Settings\kdearie\Emily Dearie\Cookies\emily dearie@questionmarket[2].txt C:\Documents and Settings\kdearie\Emily Dearie\Cookies\emily dearie@commission-junction[1].txt C:\Documents and Settings\kdearie\Emily Dearie\Cookies\emily dearie@banner.aspinallsonlinecasino[2].txt C:\Documents and Settings\kdearie\Emily Dearie\Cookies\emily dearie@z1.adserver[1].txt C:\Documents and Settings\kdearie\Emily Dearie\Cookies\emily dearie@bfast[2].txt C:\Documents and Settings\kdearie\Emily Dearie\Cookies\emily dearie@windowsmedia[2].txt C:\Documents and Settings\kdearie\Emily Dearie\Cookies\emily dearie@stats.klsoft[1].txt C:\Documents and Settings\kdearie\Emily Dearie\Cookies\emily dearie@insightexpress[2].txt C:\Documents and Settings\kdearie\Emily Dearie\Cookies\emily dearie@zedo[2].txt C:\Documents and Settings\kdearie\Emily Dearie\Cookies\emily dearie@ads.addynamix[2].txt C:\Documents and Settings\kdearie\Emily Dearie\Cookies\emily dearie@ehg-shoes.hitbox[2].txt C:\Documents and Settings\kdearie\Emily Dearie\Cookies\emily dearie@www.entrepreneur[1].txt C:\Documents and Settings\kdearie\Emily Dearie\Cookies\emily dearie@tribalfusion[1].txt C:\Documents and Settings\kdearie\Emily Dearie\Cookies\emily dearie@edge.ru4[1].txt C:\Documents and Settings\kdearie\Emily Dearie\Cookies\emily dearie@advertising[2].txt C:\Documents and Settings\kdearie\Emily Dearie\Cookies\emily dearie@bravenet[1].txt C:\Documents and Settings\kdearie\Emily Dearie\Cookies\emily dearie@server.iad.liveperson[2].txt C:\Documents and Settings\kdearie\Emily Dearie\Cookies\emily dearie@bluestreak[1].txt C:\Documents and Settings\kdearie\Emily Dearie\Cookies\emily dearie@servedby.advertising[1].txt C:\Documents and Settings\kdearie\Emily Dearie\Cookies\emily dearie@valueclick[1].txt C:\Documents and Settings\kdearie\Emily Dearie\Cookies\emily dearie@www.clickheretofind[2].txt C:\Documents and Settings\kdearie\Emily Dearie\Cookies\emily dearie@fastclick[1].txt C:\Documents and Settings\kdearie\Emily Dearie\Cookies\emily dearie@specificpop[1].txt C:\Documents and Settings\kdearie\Emily Dearie\Cookies\emily dearie@www.burstbeacon[1].txt C:\Documents and Settings\kdearie\Emily Dearie\Cookies\emily dearie@atwola[2].txt C:\Documents and Settings\kdearie\Emily Dearie\Cookies\emily dearie@ads.specificclick[1].txt C:\Documents and Settings\kdearie\Emily Dearie\Cookies\emily dearie@findwhat[1].txt C:\Documents and Settings\kdearie\Emily Dearie\Cookies\emily dearie@insightexpress[3].txt C:\Documents and Settings\kdearie\Emily Dearie\Cookies\emily dearie@ads.x10[1].txt C:\Documents and Settings\kdearie\Emily Dearie\Cookies\emily dearie@ad-logics[2].txt C:\Documents and Settings\kdearie\Emily Dearie\Cookies\emily dearie@2o7[2].txt C:\Documents and Settings\kdearie\Emily Dearie\Cookies\emily dearie@www.click2music.com[2].txt C:\Documents and Settings\kdearie\Emily Dearie\Cookies\emily dearie@ads.specificpop[2].txt C:\Documents and Settings\kdearie\Emily Dearie\Cookies\emily dearie@qksrv[3].txt C:\Documents and Settings\kdearie\Emily Dearie\Cookies\emily dearie@commission-junction[3].txt C:\Documents and Settings\kdearie\Emily Dearie\Cookies\emily dearie@overture[1].txt C:\Documents and Settings\kdearie\Emily Dearie\Cookies\emily dearie@twci.coremetrics[1].txt C:\Documents and Settings\kdearie\Emily Dearie\Cookies\emily dearie@ads.wabu[2].txt C:\Documents and Settings\kdearie\Emily Dearie\Cookies\emily dearie@bfast[3].txt C:\Documents and Settings\kdearie\Emily Dearie\Cookies\emily dearie@rightmedia[1].txt C:\Documents and Settings\kdearie\Emily Dearie\Cookies\emily dearie@ads.pointroll[1].txt C:\Documents and Settings\kdearie\Emily Dearie\Cookies\emily dearie@edge.ru4[2].txt C:\Documents and Settings\kdearie\Emily Dearie\Cookies\emily dearie@windowsmedia[3].txt C:\Documents and Settings\kdearie\Emily Dearie\Cookies\emily dearie@hitbox[3].txt C:\Documents and Settings\kdearie\Emily Dearie\Cookies\emily dearie@ehg-dcshoes.hitbox[1].txt C:\Documents and Settings\kdearie\Emily Dearie\Cookies\emily dearie@ehg-bestbuy.hitbox[2].txt C:\Documents and Settings\kdearie\Emily Dearie\Cookies\emily dearie@ar.atwola[2].txt C:\Documents and Settings\kdearie\Emily Dearie\Cookies\emily dearie@ehg-shoes.hitbox[3].txt C:\Documents and Settings\kdearie\Emily Dearie\Cookies\emily dearie@incredifind[1].txt C:\Documents and Settings\kdearie\Emily Dearie\Cookies\emily dearie@ad-logics[1].txt C:\Documents and Settings\kdearie\Emily Dearie\Cookies\emily dearie@sirsearch[1].txt C:\Documents and Settings\kdearie\Emily Dearie\Cookies\emily dearie@doubleclick[1].txt C:\Documents and Settings\kdearie\Emily Dearie\Cookies\emily dearie@creativeby.viewpoint[1].txt C:\Documents and Settings\kdearie\Emily Dearie\Cookies\emily dearie@overture[2].txt C:\Documents and Settings\kdearie\Emily Dearie\Cookies\emily dearie@revenue[2].txt C:\Documents and Settings\kdearie\Emily Dearie\Cookies\emily dearie@www.homeclick[1].txt C:\Documents and Settings\kdearie\Emily Dearie\Cookies\emily dearie@mediamgr.ugo[2].txt C:\Documents and Settings\kdearie\Emily Dearie\Cookies\emily dearie@tribalfusion[2].txt C:\Documents and Settings\kdearie\Emily Dearie\Cookies\emily dearie@zedo[1].txt C:\Documents and Settings\kdearie\Emily Dearie\Cookies\emily dearie@linksynergy[2].txt C:\Documents and Settings\kdearie\Emily Dearie\Cookies\emily dearie@fastclick[2].txt C:\Documents and Settings\kdearie\Emily Dearie\Cookies\emily dearie@casalemedia[2].txt C:\Documents and Settings\kdearie\Emily Dearie\Cookies\emily dearie@realmedia[2].txt C:\Documents and Settings\kdearie\Emily Dearie\Cookies\emily dearie@adinterax[1].txt C:\Documents and Settings\kdearie\Emily Dearie\Cookies\emily dearie@bs.serving-sys[2].txt C:\Documents and Settings\kdearie\Emily Dearie\Cookies\emily dearie@serving-sys[2].txt C:\Documents and Settings\kdearie\Emily Dearie\Cookies\emily dearie@trafficmp[2].txt C:\Documents and Settings\kdearie\Emily Dearie\Cookies\emily dearie@tripod[1].txt C:\Documents and Settings\kdearie\Emily Dearie\Cookies\emily dearie@questionmarket[1].txt C:\Documents and Settings\kdearie\Emily Dearie\Cookies\emily dearie@z1.adserver[3].txt C:\Documents and Settings\kdearie\Emily Dearie\Cookies\emily dearie@servedby.advertising[2].txt C:\Documents and Settings\kdearie\Emily Dearie\Cookies\emily dearie@advertising[1].txt C:\Documents and Settings\kdearie\Emily Dearie\Cookies\emily dearie@server.iad.liveperson[3].txt C:\Documents and Settings\Lauren Dearie\Local Settings\Temp\Cookies\lauren dearie@data.coremetrics[1].txt C:\Documents and Settings\Lauren Dearie\Local Settings\Temp\Cookies\lauren dearie@banner[1].txt C:\Documents and Settings\Lauren Dearie\Local Settings\Temp\Cookies\lauren dearie@doubleclick[1].txt C:\Documents and Settings\Lauren Dearie\Local Settings\Temp\Cookies\lauren dearie@targetnet[1].txt C:\Documents and Settings\Lauren Dearie\Local Settings\Temp\Cookies\lauren dearie@a.tribalfusion[1].txt C:\Documents and Settings\Lauren Dearie\Local Settings\Temp\Cookies\lauren dearie@adrevolver[1].txt C:\Documents and Settings\Lauren Dearie\Local Settings\Temp\Cookies\lauren dearie@tacoda[1].txt C:\Documents and Settings\Lauren Dearie\Local Settings\Temp\Cookies\lauren dearie@as-us.falkag[2].txt C:\Documents and Settings\Lauren Dearie\Local Settings\Temp\Cookies\lauren dearie@fastclick[2].txt C:\Documents and Settings\Lauren Dearie\Local Settings\Temp\Cookies\lauren dearie@adlegend[1].txt C:\Documents and Settings\Lauren Dearie\Local Settings\Temp\Cookies\lauren dearie@adknowledge[2].txt C:\Documents and Settings\Lauren Dearie\Local Settings\Temp\Cookies\lauren dearie@tradedoubler[1].txt C:\Documents and Settings\Lauren Dearie\Local Settings\Temp\Cookies\lauren dearie@sales.liveperson[2].txt C:\Documents and Settings\Lauren Dearie\Local Settings\Temp\Cookies\lauren dearie@advertising[2].txt C:\Documents and Settings\Lauren Dearie\Local Settings\Temp\Cookies\lauren dearie@valueclick[2].txt C:\Documents and Settings\Lauren Dearie\Local Settings\Temp\Cookies\lauren dearie@ads.buddypic[2].txt C:\Documents and Settings\Lauren Dearie\Local Settings\Temp\Cookies\lauren dearie@z1.adserver[2].txt C:\Documents and Settings\Lauren Dearie\Local Settings\Temp\Cookies\lauren dearie@ads.realcastmedia[2].txt C:\Documents and Settings\Lauren Dearie\Local Settings\Temp\Cookies\lauren dearie@realmedia[2].txt C:\Documents and Settings\Lauren Dearie\Local Settings\Temp\Cookies\lauren dearie@belnk[1].txt C:\Documents and Settings\Lauren Dearie\Local Settings\Temp\Cookies\lauren dearie@as-eu.falkag[1].txt C:\Documents and Settings\Lauren Dearie\Local Settings\Temp\Cookies\lauren dearie@admarketplace[1].txt C:\Documents and Settings\Lauren Dearie\Local Settings\Temp\Cookies\lauren dearie@ads.cc214142[1].txt C:\Documents and Settings\Lauren Dearie\Local Settings\Temp\Cookies\lauren dearie@burstnet[2].txt C:\Documents and Settings\Lauren Dearie\Local Settings\Temp\Cookies\lauren dearie@dist.belnk[2].txt C:\Documents and Settings\Lauren Dearie\Local Settings\Temp\Cookies\lauren dearie@ad.yieldmanager[1].txt C:\Documents and Settings\Lauren Dearie\Local Settings\Temp\Cookies\lauren dearie@maxserving[2].txt C:\Documents and Settings\Lauren Dearie\Local Settings\Temp\Cookies\lauren dearie@adopt.euroclick[1].txt C:\Documents and Settings\Lauren Dearie\Local Settings\Temp\Cookies\lauren dearie@ads.realtechnetwork[1].txt C:\Documents and Settings\Lauren Dearie\Local Settings\Temp\Cookies\lauren dearie@questionmarket[1].txt C:\Documents and Settings\Lauren Dearie\Local Settings\Temp\Cookies\lauren dearie@zedo[1].txt C:\Documents and Settings\Lauren Dearie\Local Settings\Temp\Cookies\lauren dearie@interclick[2].txt C:\Documents and Settings\Lauren Dearie\Local Settings\Temp\Cookies\lauren dearie@atdmt[2].txt C:\Documents and Settings\Lauren Dearie\Local Settings\Temp\Cookies\lauren dearie@adrevolver[3].txt C:\Documents and Settings\Lauren Dearie\Local Settings\Temp\Cookies\lauren dearie@revenue[1].txt C:\Documents and Settings\Lauren Dearie\Local Settings\Temp\Cookies\lauren dearie@ads.addynamix[2].txt C:\Documents and Settings\Lauren Dearie\Local Settings\Temp\Cookies\lauren dearie@trafficmp[2].txt C:\Documents and Settings\Lauren Dearie\Local Settings\Temp\Cookies\lauren dearie@ads.pointroll[2].txt C:\Documents and Settings\Lauren Dearie\Local Settings\Temp\Cookies\lauren dearie@hurricanedigitalmedia[2].txt C:\Documents and Settings\Lauren Dearie\Local Settings\Temp\Cookies\lauren dearie@tribalfusion[2].txt C:\Documents and Settings\Lauren Dearie\Local Settings\Temp\Cookies\lauren dearie@starware[2].txt C:\Documents and Settings\Lauren Dearie\Local Settings\Temp\Cookies\lauren dearie@www.screensavers[2].txt C:\Documents and Settings\Lauren Dearie\Local Settings\Temp\Cookies\lauren dearie@casalemedia[1].txt C:\Documents and Settings\Lauren Dearie\Local Settings\Temp\Cookies\lauren dearie@edge.ru4[2].txt C:\Documents and Settings\Lauren Dearie\Local Settings\Temp\Cookies\lauren dearie@adopt.specificclick[1].txt C:\Documents and Settings\Lauren Dearie\Local Settings\Temp\Cookies\lauren dearie@nextag[1].txt C:\Documents and Settings\Lauren Dearie\Local Settings\Temp\Cookies\lauren dearie@e-2dj6wjlysjcjggp.stats.esomniture[2].txt C:\Documents and Settings\Debra Dearie\Local Settings\Temp\Cookies\debra dearie@atwola[1].txt C:\Documents and Settings\Debra Dearie\Local Settings\Temp\Cookies\debra dearie@revsci[1].txt C:\Documents and Settings\Debra Dearie\Local Settings\Temp\Cookies\debra dearie@atdmt[1].txt C:\Documents and Settings\Debra Dearie\Local Settings\Temp\Cookies\debra dearie@2o7[1].txt C:\Documents and Settings\Debra Dearie\Local Settings\Temp\Cookies\debra dearie@overture[1].txt C:\Documents and Settings\Debra Dearie\Local Settings\Temp\Cookies\debra dearie@2o7[2].txt C:\Documents and Settings\Debra Dearie\Local Settings\Temp\Cookies\debra dearie@statcounter[2].txt C:\Documents and Settings\Debra Dearie\Local Settings\Temp\Cookies\debra dearie@doubleclick[1].txt C:\Documents and Settings\Debra Dearie\Local Settings\Temp\Cookies\debra dearie@atwola[2].txt C:\Documents and Settings\Debra Dearie\Local Settings\Temp\Cookies\debra dearie@specificclick[2].txt C:\Documents and Settings\Debra Dearie\Local Settings\Temp\Cookies\debra dearie@feed.validclick[1].txt C:\Documents and Settings\Emily Dearie\Local Settings\Temp\Cookies\emily_dearie@advertising[2].txt C:\Documents and Settings\Emily Dearie\Local Settings\Temp\Cookies\emily_dearie@casalemedia[2].txt C:\Documents and Settings\Emily Dearie\Local Settings\Temp\Cookies\emily_dearie@fastclick[2].txt C:\Documents and Settings\Emily Dearie\Local Settings\Temp\Cookies\emily_dearie@realmedia[1].txt C:\Documents and Settings\Emily Dearie\Local Settings\Temp\Cookies\emily_dearie@ad.yieldmanager[1].txt C:\Documents and Settings\Emily Dearie\Local Settings\Temp\Cookies\emily_dearie@tribalfusion[2].txt C:\Documents and Settings\Emily Dearie\Local Settings\Temp\Cookies\emily_dearie@doubleclick[1].txt C:\Documents and Settings\Emily Dearie\Local Settings\Temp\Cookies\emily_dearie@atdmt[2].txt C:\Documents and Settings\Emily Dearie\Local Settings\Temp\Cookies\emily_dearie@specificclick[2].txt C:\Documents and Settings\Emily Dearie\Local Settings\Temp\Cookies\emily_dearie@adopt.specificclick[1].txt C:\Documents and Settings\Emily Dearie\Local Settings\Temp\Cookies\emily_dearie@mediaplex[1].txt C:\Documents and Settings\Emily Dearie\Local Settings\Temp\Cookies\emily_dearie@insightexpressai[1].txt C:\Documents and Settings\Emily Dearie\Local Settings\Temp\Cookies\emily_dearie@trafficmp[1].txt Adware.ClickSpring C:\Program Files\PuritySCAN Adware.Sandboxer (MemoryWatcher) C:\Program Files\MemoryWatcher\TrayIcon.ocx C:\Program Files\MemoryWatcher\COMCTL32.OCX C:\Program Files\MemoryWatcher\uninst.exe C:\Program Files\MemoryWatcher Adware.ClearSearch C:\Program Files\ClearSearch\control.dat C:\Program Files\ClearSearch\CSSB.DLL C:\Program Files\ClearSearch Trojan.Homepage/Puper HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\explorer\run#wininet.dll [ dfrgsrv.exe ] Unclassified.PC MightyMax HKU\S-1-5-21-1214440339-115176313-682003330-1004\Software\PC MightyMax HKLM\Software\PC MightyMax HKLM\Software\PC MightyMax\Startup HKLM\Software\PC MightyMax\Startup\Exif Launcher.2 HKLM\Software\PC MightyMax\Startup\Exif Launcher.2#NTYPE HKLM\Software\PC MightyMax\Startup\Exif Launcher.2#SNAME HKLM\Software\PC MightyMax\Startup\Exif Launcher.2#SDATAB HKLM\Software\PC MightyMax\Startup\Exif Launcher.2#BKEEP HKLM\Software\PC MightyMax\Startup\Exif Launcher.2# HKLM\Software\PC MightyMax\Startup\Exif Launcher.2#SDATA HKLM\Software\PC MightyMax\Startup\Exif Launcher.2# HKLM\Software\PC MightyMax\Startup\iTunesHelper.3 HKLM\Software\PC MightyMax\Startup\iTunesHelper.3#NTYPE HKLM\Software\PC MightyMax\Startup\iTunesHelper.3#SNAME HKLM\Software\PC MightyMax\Startup\iTunesHelper.3#SDATA HKLM\Software\PC MightyMax\Startup\iTunesHelper.3#SDATAB HKLM\Software\PC MightyMax\Startup\iTunesHelper.3#BKEEP HKLM\Software\PC MightyMax\Startup\REGSHAVE.3 HKLM\Software\PC MightyMax\Startup\REGSHAVE.3#NTYPE HKLM\Software\PC MightyMax\Startup\REGSHAVE.3#SNAME HKLM\Software\PC MightyMax\Startup\REGSHAVE.3#SDATA HKLM\Software\PC MightyMax\Startup\REGSHAVE.3#SDATAB HKLM\Software\PC MightyMax\Startup\REGSHAVE.3#BKEEP HKLM\Software\PC MightyMax\Startup\TkBellExe.3 HKLM\Software\PC MightyMax\Startup\TkBellExe.3#NTYPE HKLM\Software\PC MightyMax\Startup\TkBellExe.3#SNAME HKLM\Software\PC MightyMax\Startup\TkBellExe.3#SDATA HKLM\Software\PC MightyMax\Startup\TkBellExe.3#SDATAB HKLM\Software\PC MightyMax\Startup\TkBellExe.3#BKEEP HKLM\Software\PC MightyMax\Startup\WildTangent CDA.3 HKLM\Software\PC MightyMax\Startup\WildTangent CDA.3#NTYPE HKLM\Software\PC MightyMax\Startup\WildTangent CDA.3#SNAME HKLM\Software\PC MightyMax\Startup\WildTangent CDA.3#SDATA HKLM\Software\PC MightyMax\Startup\WildTangent CDA.3#SDATAB HKLM\Software\PC MightyMax\Startup\WildTangent CDA.3#BKEEP HKLM\Software\PC MightyMax\Startup\WinZip Quick Pick.2 HKLM\Software\PC MightyMax\Startup\WinZip Quick Pick.2#NTYPE HKLM\Software\PC MightyMax\Startup\WinZip Quick Pick.2#SNAME HKLM\Software\PC MightyMax\Startup\WinZip Quick Pick.2#SDATAB HKLM\Software\PC MightyMax\Startup\WinZip Quick Pick.2#BKEEP HKLM\Software\PC MightyMax\Startup\WinZip Quick Pick.2# HKLM\Software\PC MightyMax\Startup\WinZip Quick Pick.2#SDATA HKLM\Software\PC MightyMax\Startup\WinZip Quick Pick.2# HKLM\Software\PC MightyMax\StartupCur HKLM\Software\PC MightyMax\StartupCur\AOL Spyware Protection.3 HKLM\Software\PC MightyMax\StartupCur\AOL Spyware Protection.3#NTYPE HKLM\Software\PC MightyMax\StartupCur\AOL Spyware Protection.3#SNAME HKLM\Software\PC MightyMax\StartupCur\AOL Spyware Protection.3#SDATA HKLM\Software\PC MightyMax\StartupCur\AOL Spyware Protection.3#SDATAB HKLM\Software\PC MightyMax\StartupCur\AOL Spyware Protection.3#BKEEP HKLM\Software\PC MightyMax\StartupCur\AOLDialer.3 HKLM\Software\PC MightyMax\StartupCur\AOLDialer.3#NTYPE HKLM\Software\PC MightyMax\StartupCur\AOLDialer.3#SNAME HKLM\Software\PC MightyMax\StartupCur\AOLDialer.3#SDATA HKLM\Software\PC MightyMax\StartupCur\AOLDialer.3#SDATAB HKLM\Software\PC MightyMax\StartupCur\AOLDialer.3#BKEEP HKLM\Software\PC MightyMax\StartupCur\Exif Launcher.2 HKLM\Software\PC MightyMax\StartupCur\Exif Launcher.2#NTYPE HKLM\Software\PC MightyMax\StartupCur\Exif Launcher.2#SNAME HKLM\Software\PC MightyMax\StartupCur\Exif Launcher.2#SDATAB HKLM\Software\PC MightyMax\StartupCur\Exif Launcher.2#BKEEP HKLM\Software\PC MightyMax\StartupCur\Exif Launcher.2# HKLM\Software\PC MightyMax\StartupCur\Exif Launcher.2#SDATA HKLM\Software\PC MightyMax\StartupCur\Exif Launcher.2# HKLM\Software\PC MightyMax\StartupCur\HostManager.3 HKLM\Software\PC MightyMax\StartupCur\HostManager.3#NTYPE HKLM\Software\PC MightyMax\StartupCur\HostManager.3#SNAME HKLM\Software\PC MightyMax\StartupCur\HostManager.3#SDATA HKLM\Software\PC MightyMax\StartupCur\HostManager.3#SDATAB HKLM\Software\PC MightyMax\StartupCur\HostManager.3#BKEEP HKLM\Software\PC MightyMax\StartupCur\iTunesHelper.3 HKLM\Software\PC MightyMax\StartupCur\iTunesHelper.3#NTYPE HKLM\Software\PC MightyMax\StartupCur\iTunesHelper.3#SNAME HKLM\Software\PC MightyMax\StartupCur\iTunesHelper.3#SDATA HKLM\Software\PC MightyMax\StartupCur\iTunesHelper.3#SDATAB HKLM\Software\PC MightyMax\StartupCur\iTunesHelper.3#BKEEP HKLM\Software\PC MightyMax\StartupCur\LoadPowerProfile.3 HKLM\Software\PC MightyMax\StartupCur\LoadPowerProfile.3#NTYPE HKLM\Software\PC MightyMax\StartupCur\LoadPowerProfile.3#SNAME HKLM\Software\PC MightyMax\StartupCur\LoadPowerProfile.3#SDATA HKLM\Software\PC MightyMax\StartupCur\LoadPowerProfile.3#SDATAB HKLM\Software\PC MightyMax\StartupCur\LoadPowerProfile.3#BKEEP HKLM\Software\PC MightyMax\StartupCur\MCAgentExe.3 HKLM\Software\PC MightyMax\StartupCur\MCAgentExe.3#NTYPE HKLM\Software\PC MightyMax\StartupCur\MCAgentExe.3#SNAME HKLM\Software\PC MightyMax\StartupCur\MCAgentExe.3#SDATA HKLM\Software\PC MightyMax\StartupCur\MCAgentExe.3#SDATAB HKLM\Software\PC MightyMax\StartupCur\MCAgentExe.3#BKEEP HKLM\Software\PC MightyMax\StartupCur\MCUpdateExe.3 HKLM\Software\PC MightyMax\StartupCur\MCUpdateExe.3#NTYPE HKLM\Software\PC MightyMax\StartupCur\MCUpdateExe.3#SNAME HKLM\Software\PC MightyMax\StartupCur\MCUpdateExe.3#SDATA HKLM\Software\PC MightyMax\StartupCur\MCUpdateExe.3#SDATAB HKLM\Software\PC MightyMax\StartupCur\MCUpdateExe.3#BKEEP HKLM\Software\PC MightyMax\StartupCur\MPFExe.3 HKLM\Software\PC MightyMax\StartupCur\MPFExe.3#NTYPE HKLM\Software\PC MightyMax\StartupCur\MPFExe.3#SNAME HKLM\Software\PC MightyMax\StartupCur\MPFExe.3#SDATA HKLM\Software\PC MightyMax\StartupCur\MPFExe.3#SDATAB HKLM\Software\PC MightyMax\StartupCur\MPFExe.3#BKEEP HKLM\Software\PC MightyMax\StartupCur\Pure Networks Port Magic.3 HKLM\Software\PC MightyMax\StartupCur\Pure Networks Port Magic.3#NTYPE HKLM\Software\PC MightyMax\StartupCur\Pure Networks Port Magic.3#SNAME HKLM\Software\PC MightyMax\StartupCur\Pure Networks Port Magic.3#SDATA HKLM\Software\PC MightyMax\StartupCur\Pure Networks Port Magic.3#SDATAB HKLM\Software\PC MightyMax\StartupCur\Pure Networks Port Magic.3#BKEEP HKLM\Software\PC MightyMax\StartupCur\QuickTime Task.3 HKLM\Software\PC MightyMax\StartupCur\QuickTime Task.3#NTYPE HKLM\Software\PC MightyMax\StartupCur\QuickTime Task.3#SNAME HKLM\Software\PC MightyMax\StartupCur\QuickTime Task.3#SDATA HKLM\Software\PC MightyMax\StartupCur\QuickTime Task.3#SDATAB HKLM\Software\PC MightyMax\StartupCur\QuickTime Task.3#BKEEP HKLM\Software\PC MightyMax\StartupCur\REGSHAVE.3 HKLM\Software\PC MightyMax\StartupCur\REGSHAVE.3#NTYPE HKLM\Software\PC MightyMax\StartupCur\REGSHAVE.3#SNAME HKLM\Software\PC MightyMax\StartupCur\REGSHAVE.3#SDATA HKLM\Software\PC MightyMax\StartupCur\REGSHAVE.3#SDATAB HKLM\Software\PC MightyMax\StartupCur\REGSHAVE.3#BKEEP HKLM\Software\PC MightyMax\StartupCur\SystemTray.3 HKLM\Software\PC MightyMax\StartupCur\SystemTray.3#NTYPE HKLM\Software\PC MightyMax\StartupCur\SystemTray.3#SNAME HKLM\Software\PC MightyMax\StartupCur\SystemTray.3#SDATA HKLM\Software\PC MightyMax\StartupCur\SystemTray.3#SDATAB HKLM\Software\PC MightyMax\StartupCur\SystemTray.3#BKEEP HKLM\Software\PC MightyMax\StartupCur\TkBellExe.3 HKLM\Software\PC MightyMax\StartupCur\TkBellExe.3#NTYPE HKLM\Software\PC MightyMax\StartupCur\TkBellExe.3#SNAME HKLM\Software\PC MightyMax\StartupCur\TkBellExe.3#SDATA HKLM\Software\PC MightyMax\StartupCur\TkBellExe.3#SDATAB HKLM\Software\PC MightyMax\StartupCur\TkBellExe.3#BKEEP HKLM\Software\PC MightyMax\StartupCur\VirusScan Online.3 HKLM\Software\PC MightyMax\StartupCur\VirusScan Online.3#NTYPE HKLM\Software\PC MightyMax\StartupCur\VirusScan Online.3#SNAME HKLM\Software\PC MightyMax\StartupCur\VirusScan Online.3#SDATA HKLM\Software\PC MightyMax\StartupCur\VirusScan Online.3#SDATAB HKLM\Software\PC MightyMax\StartupCur\VirusScan Online.3#BKEEP HKLM\Software\PC MightyMax\StartupCur\VSOCheckTask.3 HKLM\Software\PC MightyMax\StartupCur\VSOCheckTask.3#NTYPE HKLM\Software\PC MightyMax\StartupCur\VSOCheckTask.3#SNAME HKLM\Software\PC MightyMax\StartupCur\VSOCheckTask.3#SDATA HKLM\Software\PC MightyMax\StartupCur\VSOCheckTask.3#SDATAB HKLM\Software\PC MightyMax\StartupCur\VSOCheckTask.3#BKEEP HKLM\Software\PC MightyMax\StartupCur\WildTangent CDA.3 HKLM\Software\PC MightyMax\StartupCur\WildTangent CDA.3#NTYPE HKLM\Software\PC MightyMax\StartupCur\WildTangent CDA.3#SNAME HKLM\Software\PC MightyMax\StartupCur\WildTangent CDA.3#SDATA HKLM\Software\PC MightyMax\StartupCur\WildTangent CDA.3#SDATAB HKLM\Software\PC MightyMax\StartupCur\WildTangent CDA.3#BKEEP HKLM\Software\PC MightyMax\StartupCur\WinZip Quick Pick.2 HKLM\Software\PC MightyMax\StartupCur\WinZip Quick Pick.2#NTYPE HKLM\Software\PC MightyMax\StartupCur\WinZip Quick Pick.2#SNAME HKLM\Software\PC MightyMax\StartupCur\WinZip Quick Pick.2#SDATAB HKLM\Software\PC MightyMax\StartupCur\WinZip Quick Pick.2#BKEEP HKLM\Software\PC MightyMax\StartupCur\WinZip Quick Pick.2# HKLM\Software\PC MightyMax\StartupCur\WinZip Quick Pick.2#SDATA HKLM\Software\PC MightyMax\StartupCur\WinZip Quick Pick.2# C:\Program Files\PC MightyMax\tmp_res_x_122.tmp C:\Program Files\PC MightyMax\tmp_res_x_119.tmp C:\Program Files\PC MightyMax\tmp_res_x_120.tmp C:\Program Files\PC MightyMax\tmp_res_x_121.tmp C:\Program Files\PC MightyMax\tmp_res_x_101.tmp C:\Program Files\PC MightyMax\tmp_res_x_102.tmp C:\Program Files\PC MightyMax\tmp_res_x_103.tmp C:\Program Files\PC MightyMax\tmp_res_x_104.tmp C:\Program Files\PC MightyMax\tmp_res_x_105.tmp C:\Program Files\PC MightyMax\tmp_res_x_106.tmp C:\Program Files\PC MightyMax\tmp_res_x_107.tmp C:\Program Files\PC MightyMax\tmp_res_x_108.tmp C:\Program Files\PC MightyMax\tmp_res_x_109.tmp C:\Program Files\PC MightyMax\tmp_res_x_110.tmp C:\Program Files\PC MightyMax\tmp_res_x_111.tmp C:\Program Files\PC MightyMax\tmp_res_x_112.tmp C:\Program Files\PC MightyMax\tmp_res_x_113.tmp C:\Program Files\PC MightyMax\tmp_res_x_114.tmp C:\Program Files\PC MightyMax\tmp_res_x_115.tmp C:\Program Files\PC MightyMax\tmp_res_x_124.tmp C:\Program Files\PC MightyMax\tmp_res_x_125.tmp C:\Program Files\PC MightyMax\tmp_res_x_123.tmp C:\Program Files\PC MightyMax\tmp_res_x_116.tmp C:\Program Files\PC MightyMax\tmp_res_x_117.tmp C:\Program Files\PC MightyMax\tmp_res_x_118.tmp C:\Program Files\PC MightyMax\undo\PC MightyMax Repair - 2.10.2006 - 10.9.15.pcu C:\Program Files\PC MightyMax\undo\PC MightyMax Repair - 2.10.2006 - 11.2.17.pcu C:\Program Files\PC MightyMax\undo\PC MightyMax Repair - 2.10.2006 - 19.54.14.pcu C:\Program Files\PC MightyMax\undo\PC MightyMax Repair - 2.12.2006 - 15.35.28.pcu C:\Program Files\PC MightyMax\undo\PC MightyMax Repair - 2.13.2006 - 14.32.53.pcu C:\Program Files\PC MightyMax\undo\PC MightyMax Repair - 2.13.2006 - 17.10.50.pcu C:\Program Files\PC MightyMax\undo C:\Program Files\PC MightyMax\pcdocrx.conf C:\Program Files\PC MightyMax\lic.conf C:\Program Files\PC MightyMax\lic.dat C:\Program Files\PC MightyMax\pcmm_report.html C:\Program Files\PC MightyMax Spyware.ShopNav C:\Program Files\Srng\SRNG.LOCK C:\Program Files\Srng\errors.txt C:\Program Files\Srng Adware.DelFin Project C:\WINDOWS\SYSTEM32\PGTOOLS\TATSS.EXE Trojan.Zlob-BY C:\WINDOWS\SYSTEM32\NCOMPAT.TLB Trojan.Unknown Origin C:\WINDOWS\SYSTEM32\1024\LD3747.TMP C:\WINDOWS\SYSTEM32\1024\LD1480.TMP C:\WINDOWS\SYSTEM32\1024\LDAADF.TMP C:\WINDOWS\SYSTEM32\1024\LDF5A.TMP C:\WINDOWS\SYSTEM32\1024\LDF412.TMP C:\WINDOWS\SYSTEM32\1024\LDA97F.TMP C:\WINDOWS\SYSTEM32\1024\LD8E65.TMP C:\WINDOWS\SYSTEM32\1024\LD72FE.TMP C:\WINDOWS\SYSTEM32\1024\LDD4F7.TMP C:\WINDOWS\SYSTEM32\1024\LD14D8.TMP C:\WINDOWS\SYSTEM32\1024\LDDFFB.TMP C:\WINDOWS\SYSTEM32\1024\LDA79.TMP C:\WINDOWS\SYSTEM32\1024\LDEF21.TMP C:\WINDOWS\SYSTEM32\1024\LDB119.TMP C:\WINDOWS\SYSTEM32\1024\LD6472.TMP C:\WINDOWS\SYSTEM32\1024\LD4D60.TMP C:\WINDOWS\SYSTEM32\1024\LD55C6.TMP C:\WINDOWS\SYSTEM32\1024\LD2C4D.TMP C:\WINDOWS\SYSTEM32\1024\LD82A.TMP C:\WINDOWS\SYSTEM32\1024\LDEDEC.TMP C:\WINDOWS\SYSTEM32\1024\LD3BD9.TMP C:\WINDOWS\SYSTEM32\1024\LDDC11.TMP C:\WINDOWS\SYSTEM32\1024\LDC117.TMP C:\WINDOWS\SYSTEM32\1024\LDA5EE.TMP C:\WINDOWS\SYSTEM32\1024\LD8AF4.TMP C:\WINDOWS\SYSTEM32\1024\LD6F7D.TMP C:\WINDOWS\SYSTEM32\1024\LD55EA.TMP C:\WINDOWS\SYSTEM32\1024\LD3BAC.TMP C:\WINDOWS\SYSTEM32\1024\LD2044.TMP C:\WINDOWS\SYSTEM32\1024\LD78C.TMP C:\WINDOWS\SYSTEM32\1024\LDED3E.TMP C:\WINDOWS\SYSTEM32\1024\LDD1F6.TMP C:\WINDOWS\SYSTEM32\1024\LDB68E.TMP C:\WINDOWS\SYSTEM32\1024\LD9B07.TMP C:\WINDOWS\SYSTEM32\1024\LD7F90.TMP C:\WINDOWS\SYSTEM32\1024\LD63FA.TMP C:\WINDOWS\SYSTEM32\1024\LD78AC.TMP C:\WINDOWS\SYSTEM32\1024\LD5D55.TMP C:\WINDOWS\SYSTEM32\1024\LD42D7.TMP C:\WINDOWS\SYSTEM32\1024\LD27AE.TMP C:\WINDOWS\SYSTEM32\1024\LDC57.TMP C:\WINDOWS\SYSTEM32\1024\LD7B71.TMP C:\WINDOWS\SYSTEM32\1024\LD6132.TMP C:\WINDOWS\SYSTEM32\1024\LD45FA.TMP C:\WINDOWS\SYSTEM32\1024\LD2A92.TMP C:\WINDOWS\SYSTEM32\1024\LDFC44.TMP C:\WINDOWS\SYSTEM32\1024\LD28C6.TMP C:\WINDOWS\SYSTEM32\1024\LDDBC.TMP C:\WINDOWS\SYSTEM32\1024\LD1E15.TMP C:\WINDOWS\SYSTEM32\1024\LD1175.TMP C:\WINDOWS\SYSTEM32\1024\LDFA24.TMP C:\WINDOWS\SYSTEM32\1024\LDDE9D.TMP C:\WINDOWS\SYSTEM32\1024\LDC4BD.TMP C:\WINDOWS\SYSTEM32\1024\LDAA9D.TMP C:\WINDOWS\SYSTEM32\1024\LD8EF7.TMP C:\WINDOWS\SYSTEM32\1024\LD7370.TMP C:\WINDOWS\SYSTEM32\1024\LD5EFE.TMP C:\WINDOWS\SYSTEM32\1024\LD4387.TMP C:\WINDOWS\SYSTEM32\1024\LD284E.TMP C:\WINDOWS\SYSTEM32\1024\LD16F0.TMP C:\WINDOWS\SYSTEM32\1024\LDDA31.TMP C:\WINDOWS\SYSTEM32\1024\LDEAB2.TMP C:\WINDOWS\SYSTEM32\1024\LDD044.TMP C:\WINDOWS\SYSTEM32\1024\LD2371.TMP C:\WINDOWS\SYSTEM32\1024\LD9191.TMP BearShare File Sharing Client F:\MOM'S WORD DOCUMENTS\BEARSHARE.EXE Uninstall Log Adobe Flash Player 9 ActiveX Adobe Reader 8.1.1 AIM 6 AIM Toolbar 5.0 AOL Coach Version 1.0(Build:20030807.3) AOL Coach Version 2.0(Build:20041026.5 en) AOL Deskbar AOL Instant Messenger AOL Pictures Uploader Plugin v9.3.2.3 (Remove Only) AOL Toolbar 5.0 AOL Uninstaller (Choose which Products to Remove) AOL You've Got Pictures Screensaver Apple Software Update ArcSoft PhotoImpression Backup Dell-Installed Programs Bonjour CardRd81 CCScore CR2 Creative Removable Disk Manager Dell ResourceCD Easy CD Creator 5 Basic eMedia Codec 4.0 ESSBrwr ESSCDBK ESScore ESSCT ESSgui ESShelp ESSini ESSPCD ESSPDock ESSSONIC ESSTOOLS ESSTUTOR essvatgt fflink FinePixViewer Ver.3.2 FUJIFILM USB Driver Google Toolbar for Internet Explorer GTAIII HighVelocity Paintball (C:\Program Files\HighVelocity Paintball\) HighVelocity Paintball (C:\Program Files\HighVelocity Paintball\) #3 HighVelocity Paintball (C:\Program Files\HighVelocity Paintball\) #4 HighVelocity Paintball (C:\Program Files\HighVelocity Paintball\) #5 HighVelocity Paintball (C:\Program Files\HighVelocity Paintball\) #6 HighVelocity Paintball (C:\Program Files\HighVelocity Paintball\) #7 HighVelocity Paintball (C:\Program Files\HighVelocity Paintball\) #8 Hijackthis 1.99.1 HijackThis 1.99.1 HLPIndex HLPPDOCK HLPRFO Hotfix for Windows Internet Explorer 7 (KB947864) Hotfix for Windows XP (KB914440) Hotfix for Windows XP (KB915865) hp deskjet 940c series (Remove only) HP Image Zone 3.5 HP PSC & OfficeJet 3.5 HP Software Update ImageMixer VCD for FinePix ISLANDS OF THE SEA Screen Saver iTunes Jasc Animation Shop 3 Java™ 6 Update 4 kgcbaby kgcbase kgchday kgchlwn kgcinvt kgckids kgcmove kgcvday Kodak EasyShare software KSU Lemmings for Windows 95 LimeWire 4.16.6 LiveReg (Symantec Corporation) Lucent Win Modem Macromedia Shockwave Player Malwarebytes' Anti-Malware McAfee Personal Firewall Express McAfee SecurityCenter Microsoft Data Access Components KB870669 Microsoft Internationalized Domain Names Mitigation APIs Microsoft National Language Support Downlevel APIs Microsoft User-Mode Driver Framework Feature Pack 1.0.0 (Pre-Release 5348) Microsoft Word 2000 SR-1 Microsoft Works 2001 Setup Launcher Microsoft Works Suite Add-in for Microsoft Word MicroStaff WINASPI MSN Music Assistant MSXML 4.0 SP2 (KB936181) MusicMatch Jukebox netbrdg Netscape (7.02) Notifier NPO OfotoXMI OTtBP OTtBPSDK Panda ActiveScan 2.0 PgTools QuickTime RealPlayer Schoolpop Shopping Buddy Security Update for Windows Internet Explorer 7 (KB938127) Security Update for Windows Internet Explorer 7 (KB939653) Security Update for Windows Internet Explorer 7 (KB942615) Security Update for Windows Internet Explorer 7 (KB944533) Security Update for Windows Media Player (KB911564) Security Update for Windows Media Player 10 (KB911565) Security Update for Windows Media Player 6.4 (KB925398) Security Update for Windows XP (KB883939) Security Update for Windows XP (KB890046) Security Update for Windows XP (KB893756) Security Update for Windows XP (KB896358) Security Update for Windows XP (KB896422) Security Update for Windows XP (KB896423) Security Update for Windows XP (KB896424) Security Update for Windows XP (KB896428) Security Update for Windows XP (KB899587) Security Update for Windows XP (KB899591) Security Update for Windows XP (KB900725) Security Update for Windows XP (KB901017) Security Update for Windows XP (KB901214) Security Update for Windows XP (KB902400) Security Update for Windows XP (KB903235) Security Update for Windows XP (KB904706) Security Update for Windows XP (KB905414) Security Update for Windows XP (KB905749) Security Update for Windows XP (KB905915) Security Update for Windows XP (KB908519) Security Update for Windows XP (KB908531) Security Update for Windows XP (KB911562) Security Update for Windows XP (KB911567) Security Update for Windows XP (KB911927) Security Update for Windows XP (KB912812) Security Update for Windows XP (KB912919) Security Update for Windows XP (KB913446) Security Update for Windows XP (KB913580) Security Update for Windows XP (KB914388) Security Update for Windows XP (KB914389) Security Update for Windows XP (KB916281) Security Update for Windows XP (KB917344) Security Update for Windows XP (KB917953) Security Update for Windows XP (KB918118) Security Update for Windows XP (KB918439) Security Update for Windows XP (KB919007) Security Update for Windows XP (KB920213) Security Update for Windows XP (KB920670) Security Update for Windows XP (KB920683) Security Update for Windows XP (KB920685) Security Update for Windows XP (KB921503) Security Update for Windows XP (KB922819) Security Update for Windows XP (KB923191) Security Update for Windows XP (KB923414) Security Update for Windows XP (KB923980) Security Update for Windows XP (KB924270) Security Update for Windows XP (KB924496) Security Update for Windows XP (KB924667) Security Update for Windows XP (KB925902) Security Update for Windows XP (KB926255) Security Update for Windows XP (KB926436) Security Update for Windows XP (KB927779) Security Update for Windows XP (KB927802) Security Update for Windows XP (KB928255) Security Update for Windows XP (KB928843) Security Update for Windows XP (KB929123) Security Update for Windows XP (KB930178) Security Update for Windows XP (KB931261) Security Update for Windows XP (KB931784) Security Update for Windows XP (KB932168) Security Update for Windows XP (KB933729) Security Update for Windows XP (KB935839) Security Update for Windows XP (KB935840) Security Update for Windows XP (KB936021) Security Update for Windows XP (KB938127) Security Update for Windows XP (KB938829) Security Update for Windows XP (KB939653) Security Update for Windows XP (KB941202) Security Update for Windows XP (KB941568) Security Update for Windows XP (KB941644) Security Update for Windows XP (KB941693) Security Update for Windows XP (KB943055) Security Update for Windows XP (KB943460) Security Update for Windows XP (KB943485) Security Update for Windows XP (KB944653) Security Update for Windows XP (KB945553) Security Update for Windows XP (KB946026) Security Update for Windows XP (KB948590) Security Update for Windows XP (KB948881) SFR SHASTA Shockwave SKIN0001 SKINXSDK staticcr SUPERAntiSpyware Free Edition TomTom HOME tooltips Update for Windows XP (KB894391) Update for Windows XP (KB898461) Update for Windows XP (KB900485) Update for Windows XP (KB904942) Update for Windows XP (KB910437) Update for Windows XP (KB911280) Update for Windows XP (KB916595) Update for Windows XP (KB920872) Update for Windows XP (KB922582) Update for Windows XP (KB927891) Update for Windows XP (KB930916) Update for Windows XP (KB933360) Update for Windows XP (KB936357) Update for Windows XP (KB938828) Update for Windows XP (KB942763) Viewpoint Media Player VPRINTOL WebCyberCoach 3.2 Dell Windows Installer 3.1 (KB893803) Windows Internet Explorer 7 Windows Media Format 11 runtime Windows Media Format 11 runtime Windows Media Player 11 Windows Media Player 11 Windows Media Player Hotfix [See Q828026 for more information] Windows XP Hotfix - KB873333 Windows XP Hotfix - KB873339 Windows XP Hotfix - KB885250 Windows XP Hotfix - KB885835 Windows XP Hotfix - KB885836 Windows XP Hotfix - KB885884 Windows XP Hotfix - KB886185 Windows XP Hotfix - KB887472 Windows XP Hotfix - KB887742 Windows XP Hotfix - KB888113 Windows XP Hotfix - KB888302 Windows XP Hotfix - KB890175 Windows XP Hotfix - KB890859 Windows XP Hotfix - KB890923 Windows XP Hotfix - KB891781 Windows XP Hotfix - KB893066 Windows XP Hotfix - KB893086 Windows XP Service Pack 2 WinZip WIRELESS

Essexboy View Member Profile	May 11 2008, 11:56 AM Post #3
Global Moderator Posts: 9,544 From: Darkest Cornwall OS: Vista Ultimate	Hi there and sorry for the delay - but be aware we look for zero replies so if you answer yourself you will get bypassed Please download Deckard's System Scanner (DSS) and save it to your Desktop. Close all other windows before proceeding. Double-click on dss.exe and follow the prompts. When it has finished, dss will open two Notepads main.txt and extra.txt -- please copy (CTRL+A and then CTRL+C) and paste (CTRL+V) the contents of main.txt and extra.txt in your next reply.

KCD86

May 11 2008, 12:27 PM

Post #4

Member

Posts: 49
OS: windos xp

Deckard's System Scanner v20071014.68
Extra logfile - please post this as an attachment with your post.
--------------------------------------------------------------------------------

-- System Information ----------------------------------------------------------

Microsoft Windows XP Home Edition (build 2600) SP 2.0
Architecture: X86; Language: English

CPU 0: Intel® Pentium® 4 CPU 1.60GHz
Percentage of Memory in Use: 82%
Physical Memory (total/avail): 255.01 MiB / 45.69 MiB
Pagefile Memory (total/avail): 723.3 MiB / 144 MiB
Virtual Memory (total/avail): 2047.88 MiB / 1922.25 MiB

A: is Removable (No Media)
C: is Fixed (FAT32) - 37.26 GiB total, 8.62 GiB free.
D: is CDROM (No Media)
E: is Removable (No Media)
F: is Fixed (FAT32) - 232.83 GiB total, 161.1 GiB free.

\\.\PHYSICALDRIVE0 - ST340016A - 37.27 GiB - 1 partition
\PARTITION0 (bootable) - Unknown - 37.27 GiB - C:

\\.\PHYSICALDRIVE2 - HP psc 2410 USB Device

\\.\PHYSICALDRIVE1 - WD 2500JB External USB Device - 232.88 GiB - 1 partition
\PARTITION0 - Unknown - 232.88 GiB - F:

-- Security Center -------------------------------------------------------------

AUOptions is scheduled to auto-install.
Windows Internal Firewall is enabled.

AntiVirusDisableNotify is set.
FirewallDisableNotify is set.

AV: McAfee VirusScan v (McAfee)

[HKLM\System\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\\Program Files\\America Online 9.0a\\waol.exe"="C:\\Program Files\\America Online 9.0a\\waol.exe:*:Enabled:America Online 9.0a"
"C:\\Program Files\\Common Files\\AOL\\ACS\\AOLDial.exe"="C:\\Program Files\\Common Files\\AOL\\ACS\\AOLDial.exe:*:Enabled:AOL"
"C:\\Program Files\\Common Files\\AOL\\ACS\\AOLAcsd.exe"="C:\\Program Files\\Common Files\\AOL\\ACS\\AOLAcsd.exe:*:Enabled:AOL"
"C:\\Program Files\\AIM\\aim.exe"="C:\\Program Files\\AIM\\aim.exe:*:Enabled:AOL Instant Messenger"
"%windir%\\Network Diagnostic\\xpnetdiag.exe"="%windir%\\Network Diagnostic\\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"

[HKLM\System\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\\WINDOWS\\kdx\\KHost.exe"="C:\\WINDOWS\\kdx\\KHost.exe:*:Disabled:Secure Delivery Plug-In"
"C:\\Program Files\\America Online 9.0a\\waol.exe"="C:\\Program Files\\America Online 9.0a\\waol.exe:*:Enabled:America Online 9.0a"
"C:\\Program Files\\Real\\RealPlayer\\realplay.exe"="C:\\Program Files\\Real\\RealPlayer\\realplay.exe:*:Disabled:RealPlayer"
"C:\\Program Files\\Common Files\\AOL\\ACS\\AOLAcsd.exe"="C:\\Program Files\\Common Files\\AOL\\ACS\\AOLAcsd.exe:*:Enabled:AOL"
"C:\\Program Files\\Common Files\\AOL\\ACS\\AOLDial.exe"="C:\\Program Files\\Common Files\\AOL\\ACS\\AOLDial.exe:*:Enabled:AOL"
"C:\\WINDOWS\\System32\\P2P Networking\\P2P Networking.exe"="C:\\WINDOWS\\System32\\P2P Networking\\P2P Networking.exe:*:Enabled:P2P Networking"
"C:\\WINDOWS\\System32\\mshta.exe"="C:\\WINDOWS\\System32\\mshta.exe:*:Enabled:Microsoft ® HTML Application host"
"C:\\Program Files\\AIM\\AIM95_c0\\aim.exe"="C:\\Program Files\\AIM\\AIM95_c0\\aim.exe:*:Disabled:AOL Instant Messenger"
"C:\\Program Files\\AIM\\AIM95_c1\\aim.exe"="C:\\Program Files\\AIM\\AIM95_c1\\aim.exe:*:Disabled:AOL Instant Messenger"
"C:\\Program Files\\LimeWire\\LimeWire.exe"="C:\\Program Files\\LimeWire\\LimeWire.exe:*:Enabled:LimeWire"
"C:\\Program Files\\AIM\\AIM95_c3\\aim.exe"="C:\\Program Files\\AIM\\AIM95_c3\\aim.exe:*:Disabled:AOL Instant Messenger"
"C:\\StubInstaller.exe"="C:\\StubInstaller.exe:*:Enabled:LimeWire swarmed installer"
"C:\\Program Files\\Common Files\\AOL\\Loader\\aolload.exe"="C:\\Program Files\\Common Files\\AOL\\Loader\\aolload.exe:*:Enabled:AOL Loader"
"C:\\Program Files\\Common Files\\AOL\\1138563625\\ee\\aolsoftware.exe"="C:\\Program Files\\Common Files\\AOL\\1138563625\\ee\\aolsoftware.exe:*:Enabled:AOL Services"
"C:\\Program Files\\Common Files\\AOL\\1138563625\\ee\\aim6.exe"="C:\\Program Files\\Common Files\\AOL\\1138563625\\ee\\aim6.exe:*:Enabled:AIM"
"C:\\Program Files\\AIM\\aim.exe"="C:\\Program Files\\AIM\\aim.exe:*:Enabled:AOL Instant Messenger"
"C:\\Program Files\\America Online 9.0b\\waol.exe"="C:\\Program Files\\America Online 9.0b\\waol.exe:*:Enabled:AOL"
"C:\\Program Files\\Com