Scan Results: scan start: 6/24/2006 12:52:46 AM scan stop: 6/24/2006 1:05:16 AM scanned items: 113663 found items: 341 found and ignored: 0 tools used: General Scanner, Process Scanner, LSP Scanner, Startup Scanner, Registry Scanner, Hosts Scanner, Browser Scanner, Browser Activity Scanner, Disk Scanner, ActiveX Scanner Infection Name Location Risk I-Search Desktop Search Toolbar Atari icon.exe (C:\WINDOWS\SmVzc2ljYQ\asappsrv.dll) Elevated Dollarrevenue C:\Documents and Settings\Jessica\Local Settings\Temporary Internet Files\Content.IE5\W8ZMNBMU\data[1].html High Dollarrevenue C:\Documents and Settings\Jessica\Local Settings\Temporary Internet Files\Content.IE5\W8ZMNBMU\teller2[1].html High Network Monitor C:\Documents and Settings\LocalService\Application Data\NetMon High Network Monitor C:\Documents and Settings\LocalService\Application Data\NetMon\domains.txt High Network Monitor C:\Documents and Settings\LocalService\Application Data\NetMon\log.txt High Maxifiles C:\Documents and Settings\LocalService\Desktop\freeprodtb.exe High PurityScan C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\9QIF7T2N\!update-3920[1].0000 High VX2.Look2Me C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\9QIF7T2N\Installer[1].exe High Maxifiles C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\JSYJJQ54\maxidr[1].avi High Trojan.Downloader.VB.MZ C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\JSYJJQ54\Mendoza1[1].exe High Maxifiles C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\JSYJJQ54\tbfp[1].avi High I-Search Desktop Search Toolbar C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\RYKNNYLY\installer[1].exe Elevated Trojan.Downloader.Small.BUY C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\RYKNNYLY\MTE3NDI6ODoxNg[1].exe High Dollarrevenue C:\drsmartload1.exe High Dollarrevenue C:\drsmartload45h.exe High Dollarrevenue C:\drsmartload46h.exe High Dollarrevenue C:\drsmartload849h.exe High Trojan.Downloader.VB.MZ C:\Mendoza1.exe High Trojan.Downloader.Small.BUY C:\MTE3NDI6ODoxNg.exe High Maxifiles C:\Program Files\AOL\wrbm.exe High Common Components Unrelated C:\Program Files\Common Files\InetGet Medium Trojan.Downloader.VB.MZ C:\Program Files\Common Files\misc001\Mendoza.exe High Trojan.Downloader.VB.MZ C:\Program Files\Common Files\simtest High Trojan.Downloader.VB.MZ C:\Program Files\Common Files\simtest\svchostsys.bat High Trojan.Downloader.VB.MZ C:\Program Files\Common Files\simtest\sysstall.exe High Trojan.Downloader.VB.MZ C:\Program Files\Common Files\simtest\temp.txt High Trojan.Downloader.VB.MZ C:\Program Files\Common Files\svchostsys High Trojan.Downloader.VB.MZ C:\Program Files\Common Files\svchostsys\ICSharpCode.SharpZipLib.dll High Trojan.Downloader.VB.MZ C:\Program Files\Common Files\svchostsys\svchostsys.exe High Trojan.Downloader.VB.MZ C:\Program Files\Common Files\svchostsys\svchostsys.exe.config High Trojan.Downloader.VB.MZ C:\Program Files\Common Files\svchostsys\svchostupdate.exe High Trojan.Downloader.VB.MZ C:\Program Files\Common Files\svchostsys\svchostupdate.exe.config High Trojan.Downloader.VB.MZ C:\Program Files\Common Files\svchostsys\Version.txt High Network Monitor C:\Program Files\Network Monitor High Network Monitor C:\Program Files\Network Monitor\netmon.exe High Yazzle Snowball Wars C:\Program Files\Snowball Wars Medium Yazzle Snowball Wars C:\Program Files\Snowball Wars\License.txt Medium Yazzle Snowball Wars C:\Program Files\Snowball Wars\SnowballWars.exe Medium Yazzle Snowball Wars C:\Program Files\Snowball Wars\uninstaller.exe Medium Maxifiles C:\Program Files\ToolBar888 High Maxifiles C:\Program Files\ToolBar888\MyToolBar.dll High Maxifiles C:\Program Files\ToolBar888\Uninst.exe High Trojan.Crypt.E C:\Program Files\windows\WinUpdate.exe High Maxifiles C:\Program Files\windows\WinUpdate.fld High 180search Assistant C:\services.exe Elevated Dollarrevenue C:\System Volume Information\_restore{5E43129A-E506-4A47-919B-2796B586561C}\RP685\A0178279.exe High Dollarrevenue C:\System Volume Information\_restore{5E43129A-E506-4A47-919B-2796B586561C}\RP685\A0178280.exe High Dollarrevenue C:\System Volume Information\_restore{5E43129A-E506-4A47-919B-2796B586561C}\RP685\A0178281.exe High Maxifiles C:\System Volume Information\_restore{5E43129A-E506-4A47-919B-2796B586561C}\RP685\A0178282.exe High I-Search Desktop Search Toolbar C:\System Volume Information\_restore{5E43129A-E506-4A47-919B-2796B586561C}\RP685\A0178284.dll Elevated PurityScan C:\System Volume Information\_restore{5E43129A-E506-4A47-919B-2796B586561C}\RP685\A0178285.exe High PurityScan C:\System Volume Information\_restore{5E43129A-E506-4A47-919B-2796B586561C}\RP685\A0178286.exe High VX2.Look2Me C:\warebundle.exe High Dollarrevenue C:\WINDOWS\keyboard1.dat High Maxifiles C:\WINDOWS\mc-110-12-0000488.exe High Trojan.Downloader.Small.BUY C:\WINDOWS\MTE3NDI6ODoxNg.exe High Dollarrevenue C:\WINDOWS\newname.dat High I-Search Desktop Search Toolbar C:\WINDOWS\SmVzc2ljYQ\asappsrv.dll Elevated I-Search Desktop Search Toolbar C:\WINDOWS\SmVzc2ljYQ\command.exe Elevated I-Search Desktop Search Toolbar C:\WINDOWS\SmVzc2ljYQ\mApWwZ53sk.vbs Elevated AproposMedia C:\WINDOWS\system32\atmtd.dll Medium AproposMedia C:\WINDOWS\system32\atmtd.dll._ Medium VX2.Look2Me C:\WINDOWS\system32\mvimsg.dll High VX2.Look2Me C:\WINDOWS\system32\myi.dll High PurityScan C:\WINDOWS\system32\SMBOLS~1\fast.exe High PurityScan C:\WINDOWS\system32\wnsintsv.exe High SP2Update C:\WINDOWS\teller2.chk High PurityScan C:\WINDOWS\Temp\!update.exe High Maxifiles C:\WINDOWS\Temp\AutoIt\AutoIt3.exe High I-Search Desktop Search Toolbar C:\WINDOWS\Temp\cmdinst.exe Elevated Maxifiles C:\WINDOWS\Temp\nsc7.tmp\nsProcess.dll High Maxifiles C:\WINDOWS\Temp\nsm5.tmp\nsProcess.dll High Network Monitor C:\WINDOWS\uninstall_nmon.vbs High VX2.Look2Me C:\WINDOWS\warebundle.exe High I-Search Desktop Search Toolbar dfndra_1.exe (C:\WINDOWS\SmVzc2ljYQ\asappsrv.dll) Elevated I-Search Desktop Search Toolbar explorer.exe (C:\WINDOWS\SmVzc2ljYQ\asappsrv.dll) Elevated Maxifiles HKCR\CLSID\{0E1230F8-EA50-42A9-983C-D22ABC2EED3B} High Maxifiles HKCR\CLSID\{0E1230F8-EA50-42A9-983C-D22ABC2EED3B}## High Maxifiles HKCR\CLSID\{0E1230F8-EA50-42A9-983C-D22ABC2EED3B}\InprocServer32 High Maxifiles HKCR\CLSID\{0E1230F8-EA50-42A9-983C-D22ABC2EED3B}\InprocServer32## High Maxifiles HKCR\CLSID\{0E1230F8-EA50-42A9-983C-D22ABC2EED3B}\InprocServer32##ThreadingModel High Maxifiles HKCR\CLSID\{0E1230F8-EA50-42A9-983C-D22ABC2EED3B}\ProgID High Maxifiles HKCR\CLSID\{0E1230F8-EA50-42A9-983C-D22ABC2EED3B}\ProgID## High Maxifiles HKCR\CLSID\{0E1230F8-EA50-42A9-983C-D22ABC2EED3B}\Programmable High Maxifiles HKCR\CLSID\{0E1230F8-EA50-42A9-983C-D22ABC2EED3B}\Programmable## High Maxifiles HKCR\CLSID\{0E1230F8-EA50-42A9-983C-D22ABC2EED3B}\TypeLib High Maxifiles HKCR\CLSID\{0E1230F8-EA50-42A9-983C-D22ABC2EED3B}\TypeLib## High Maxifiles HKCR\CLSID\{0E1230F8-EA50-42A9-983C-D22ABC2EED3B}\VersionIndependentProgID High Maxifiles HKCR\CLSID\{0E1230F8-EA50-42A9-983C-D22ABC2EED3B}\VersionIndependentProgID## High VX2.Look2Me HKCR\CLSID\{321E03E0-34C6-49D8-AF78-09F4AC46F8DB} High VX2.Look2Me HKCR\CLSID\{321E03E0-34C6-49D8-AF78-09F4AC46F8DB}## High VX2.Look2Me HKCR\CLSID\{321E03E0-34C6-49D8-AF78-09F4AC46F8DB}##IDEx High VX2.Look2Me HKCR\CLSID\{321E03E0-34C6-49D8-AF78-09F4AC46F8DB}\Implemented Categories High VX2.Look2Me HKCR\CLSID\{321E03E0-34C6-49D8-AF78-09F4AC46F8DB}\Implemented Categories## High VX2.Look2Me HKCR\CLSID\{321E03E0-34C6-49D8-AF78-09F4AC46F8DB}\Implemented Categories\{00021492-0000-0000-C000-000000000046} High VX2.Look2Me HKCR\CLSID\{321E03E0-34C6-49D8-AF78-09F4AC46F8DB}\Implemented Categories\{00021492-0000-0000-C000-000000000046}## High VX2.Look2Me HKCR\CLSID\{321E03E0-34C6-49D8-AF78-09F4AC46F8DB}\InprocServer32 High VX2.Look2Me HKCR\CLSID\{321E03E0-34C6-49D8-AF78-09F4AC46F8DB}\InprocServer32## High VX2.Look2Me HKCR\CLSID\{321E03E0-34C6-49D8-AF78-09F4AC46F8DB}\InprocServer32##ThreadingModel High VX2.Look2Me HKCR\CLSID\{CD5FDF09-A037-4EA0-B317-361040F89DF8} High VX2.Look2Me HKCR\CLSID\{CD5FDF09-A037-4EA0-B317-361040F89DF8}## High VX2.Look2Me HKCR\CLSID\{CD5FDF09-A037-4EA0-B317-361040F89DF8}##IDEx High VX2.Look2Me HKCR\CLSID\{CD5FDF09-A037-4EA0-B317-361040F89DF8}\Implemented Categories High VX2.Look2Me HKCR\CLSID\{CD5FDF09-A037-4EA0-B317-361040F89DF8}\Implemented Categories## High VX2.Look2Me HKCR\CLSID\{CD5FDF09-A037-4EA0-B317-361040F89DF8}\Implemented Categories\{00021492-0000-0000-C000-000000000046} High VX2.Look2Me HKCR\CLSID\{CD5FDF09-A037-4EA0-B317-361040F89DF8}\Implemented Categories\{00021492-0000-0000-C000-000000000046}## High VX2.Look2Me HKCR\CLSID\{CD5FDF09-A037-4EA0-B317-361040F89DF8}\InprocServer32 High VX2.Look2Me HKCR\CLSID\{CD5FDF09-A037-4EA0-B317-361040F89DF8}\InprocServer32## High VX2.Look2Me HKCR\CLSID\{CD5FDF09-A037-4EA0-B317-361040F89DF8}\InprocServer32##ThreadingModel High Common Components for SBSoft HKCR\Interface\{95B92D92-8B7D-4A19-A3F1-43113B4DBCAF} High Common Components for SBSoft HKCR\Interface\{95B92D92-8B7D-4A19-A3F1-43113B4DBCAF}## High Common Components for SBSoft HKCR\Interface\{95B92D92-8B7D-4A19-A3F1-43113B4DBCAF}\ProxyStubClsid High Common Components for SBSoft HKCR\Interface\{95B92D92-8B7D-4A19-A3F1-43113B4DBCAF}\ProxyStubClsid## High Common Components for SBSoft HKCR\Interface\{95B92D92-8B7D-4A19-A3F1-43113B4DBCAF}\ProxyStubClsid32 High Common Components for SBSoft HKCR\Interface\{95B92D92-8B7D-4A19-A3F1-43113B4DBCAF}\ProxyStubClsid32## High Common Components for SBSoft HKCR\Interface\{95B92D92-8B7D-4A19-A3F1-43113B4DBCAF}\TypeLib High Common Components for SBSoft HKCR\Interface\{95B92D92-8B7D-4A19-A3F1-43113B4DBCAF}\TypeLib## High Common Components for SBSoft HKCR\Interface\{95B92D92-8B7D-4A19-A3F1-43113B4DBCAF}\TypeLib##Version High Maxifiles HKCR\MyToolBar.MyToolBarObj High Maxifiles HKCR\MyToolBar.MyToolBarObj## High Maxifiles HKCR\MyToolBar.MyToolBarObj.1 High Maxifiles HKCR\MyToolBar.MyToolBarObj.1## High Maxifiles HKCR\MyToolBar.MyToolBarObj.1\CLSID High Maxifiles HKCR\MyToolBar.MyToolBarObj.1\CLSID## High Maxifiles HKCR\MyToolBar.MyToolBarObj\CLSID High Maxifiles HKCR\MyToolBar.MyToolBarObj\CLSID## High Maxifiles HKCR\MyToolBar.MyToolBarObj\CurVer High Maxifiles HKCR\MyToolBar.MyToolBarObj\CurVer## High Common Components for SBSoft HKCR\TypeLib\{5297E905-1DFB-4A9C-9871-A4F95FD58945} High Common Components for SBSoft HKCR\TypeLib\{5297E905-1DFB-4A9C-9871-A4F95FD58945}## High Common Components for SBSoft HKCR\TypeLib\{5297E905-1DFB-4A9C-9871-A4F95FD58945}\1.0 High Common Components for SBSoft HKCR\TypeLib\{5297E905-1DFB-4A9C-9871-A4F95FD58945}\1.0## High Common Components for SBSoft HKCR\TypeLib\{5297E905-1DFB-4A9C-9871-A4F95FD58945}\1.0\0 High Common Components for SBSoft HKCR\TypeLib\{5297E905-1DFB-4A9C-9871-A4F95FD58945}\1.0\0## High Common Components for SBSoft HKCR\TypeLib\{5297E905-1DFB-4A9C-9871-A4F95FD58945}\1.0\0\win32 High Common Components for SBSoft HKCR\TypeLib\{5297E905-1DFB-4A9C-9871-A4F95FD58945}\1.0\0\win32## High Common Components for SBSoft HKCR\TypeLib\{5297E905-1DFB-4A9C-9871-A4F95FD58945}\1.0\FLAGS High Common Components for SBSoft HKCR\TypeLib\{5297E905-1DFB-4A9C-9871-A4F95FD58945}\1.0\FLAGS## High Common Components for SBSoft HKCR\TypeLib\{5297E905-1DFB-4A9C-9871-A4F95FD58945}\1.0\HELPDIR High Common Components for SBSoft HKCR\TypeLib\{5297E905-1DFB-4A9C-9871-A4F95FD58945}\1.0\HELPDIR## High Common Components for About Blank HKCU\Software\Microsoft\Internet Explorer\Main##HomeOldSP High Dollarrevenue HKCU\Software\Microsoft\Internet Explorer\Search\SearchAssistant Explorer\Main##Default_Search_URL High Known Bad Sites HKEY_LOCAL_MACHINE:Software\Microsoft\Internet Explorer\Main | Search Page High Known Bad Sites HKEY_LOCAL_MACHINE:Software\Microsoft\Internet Explorer\Search | SearchAssistant High Maxifiles HKLM\Software\Classes\CLSID\{0E1230F8-EA50-42A9-983C-D22ABC2EED3B} High Maxifiles HKLM\Software\Classes\CLSID\{0E1230F8-EA50-42A9-983C-D22ABC2EED3B}## High Maxifiles HKLM\Software\Classes\CLSID\{0E1230F8-EA50-42A9-983C-D22ABC2EED3B}\InprocServer32 High Maxifiles HKLM\Software\Classes\CLSID\{0E1230F8-EA50-42A9-983C-D22ABC2EED3B}\InprocServer32## High Maxifiles HKLM\Software\Classes\CLSID\{0E1230F8-EA50-42A9-983C-D22ABC2EED3B}\InprocServer32##ThreadingModel High Maxifiles HKLM\Software\Classes\CLSID\{0E1230F8-EA50-42A9-983C-D22ABC2EED3B}\ProgID High Maxifiles HKLM\Software\Classes\CLSID\{0E1230F8-EA50-42A9-983C-D22ABC2EED3B}\ProgID## High Maxifiles HKLM\Software\Classes\CLSID\{0E1230F8-EA50-42A9-983C-D22ABC2EED3B}\Programmable High Maxifiles HKLM\Software\Classes\CLSID\{0E1230F8-EA50-42A9-983C-D22ABC2EED3B}\Programmable## High Maxifiles HKLM\Software\Classes\CLSID\{0E1230F8-EA50-42A9-983C-D22ABC2EED3B}\TypeLib High Maxifiles HKLM\Software\Classes\CLSID\{0E1230F8-EA50-42A9-983C-D22ABC2EED3B}\TypeLib## High Maxifiles HKLM\Software\Classes\CLSID\{0E1230F8-EA50-42A9-983C-D22ABC2EED3B}\VersionIndependentProgID High Maxifiles HKLM\Software\Classes\CLSID\{0E1230F8-EA50-42A9-983C-D22ABC2EED3B}\VersionIndependentProgID## High VX2.Look2Me HKLM\Software\Classes\CLSID\{321E03E0-34C6-49D8-AF78-09F4AC46F8DB} High VX2.Look2Me HKLM\Software\Classes\CLSID\{321E03E0-34C6-49D8-AF78-09F4AC46F8DB}## High VX2.Look2Me HKLM\Software\Classes\CLSID\{321E03E0-34C6-49D8-AF78-09F4AC46F8DB}##IDEx High VX2.Look2Me HKLM\Software\Classes\CLSID\{321E03E0-34C6-49D8-AF78-09F4AC46F8DB}\Implemented Categories High VX2.Look2Me HKLM\Software\Classes\CLSID\{321E03E0-34C6-49D8-AF78-09F4AC46F8DB}\Implemented Categories## High VX2.Look2Me HKLM\Software\Classes\CLSID\{321E03E0-34C6-49D8-AF78-09F4AC46F8DB}\Implemented Categories\{00021492-0000-0000-C000-000000000046} High VX2.Look2Me HKLM\Software\Classes\CLSID\{321E03E0-34C6-49D8-AF78-09F4AC46F8DB}\Implemented Categories\{00021492-0000-0000-C000-000000000046}## High VX2.Look2Me HKLM\Software\Classes\CLSID\{321E03E0-34C6-49D8-AF78-09F4AC46F8DB}\InprocServer32 High VX2.Look2Me HKLM\Software\Classes\CLSID\{321E03E0-34C6-49D8-AF78-09F4AC46F8DB}\InprocServer32## High VX2.Look2Me HKLM\Software\Classes\CLSID\{321E03E0-34C6-49D8-AF78-09F4AC46F8DB}\InprocServer32##ThreadingModel High VX2.Look2Me HKLM\Software\Classes\CLSID\{CD5FDF09-A037-4EA0-B317-361040F89DF8} High VX2.Look2Me HKLM\Software\Classes\CLSID\{CD5FDF09-A037-4EA0-B317-361040F89DF8}## High VX2.Look2Me HKLM\Software\Classes\CLSID\{CD5FDF09-A037-4EA0-B317-361040F89DF8}##IDEx High VX2.Look2Me HKLM\Software\Classes\CLSID\{CD5FDF09-A037-4EA0-B317-361040F89DF8}\Implemented Categories High VX2.Look2Me HKLM\Software\Classes\CLSID\{CD5FDF09-A037-4EA0-B317-361040F89DF8}\Implemented Categories## High VX2.Look2Me HKLM\Software\Classes\CLSID\{CD5FDF09-A037-4EA0-B317-361040F89DF8}\Implemented Categories\{00021492-0000-0000-C000-000000000046} High VX2.Look2Me HKLM\Software\Classes\CLSID\{CD5FDF09-A037-4EA0-B317-361040F89DF8}\Implemented Categories\{00021492-0000-0000-C000-000000000046}## High VX2.Look2Me HKLM\Software\Classes\CLSID\{CD5FDF09-A037-4EA0-B317-361040F89DF8}\InprocServer32 High VX2.Look2Me HKLM\Software\Classes\CLSID\{CD5FDF09-A037-4EA0-B317-361040F89DF8}\InprocServer32## High VX2.Look2Me HKLM\Software\Classes\CLSID\{CD5FDF09-A037-4EA0-B317-361040F89DF8}\InprocServer32##ThreadingModel High Maxifiles HKLM\Software\Microsoft\Internet Explorer\Toolbar##{0E1230F8-EA50-42A9-983C-D22ABC2EED3B} High VX2.Look2Me HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved##{321E03E0-34C6-49D8-AF78-09F4AC46F8DB} High VX2.Look2Me HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved##{CD5FDF09-A037-4EA0-B317-361040F89DF8} High I-Search Desktop Search Toolbar HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{3877C2CD-F137-4144-BDB2-0A811492F920} Elevated I-Search Desktop Search Toolbar HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{3877C2CD-F137-4144-BDB2-0A811492F920}## Elevated I-Search Desktop Search Toolbar HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{3877C2CD-F137-4144-BDB2-0A811492F920}##Contact Elevated I-Search Desktop Search Toolbar HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{3877C2CD-F137-4144-BDB2-0A811492F920}##DisplayName Elevated I-Search Desktop Search Toolbar HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{3877C2CD-F137-4144-BDB2-0A811492F920}##DisplayVersion Elevated I-Search Desktop Search Toolbar HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{3877C2CD-F137-4144-BDB2-0A811492F920}##NoModify Elevated I-Search Desktop Search Toolbar HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{3877C2CD-F137-4144-BDB2-0A811492F920}##NoRemove Elevated I-Search Desktop Search Toolbar HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{3877C2CD-F137-4144-BDB2-0A811492F920}##NoRepair Elevated I-Search Desktop Search Toolbar HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{3877C2CD-F137-4144-BDB2-0A811492F920}##UninstallString Elevated Network Monitor HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{A394E835-C8D6-4B4B-884B-D2709059F3BE} High Network Monitor HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{A394E835-C8D6-4B4B-884B-D2709059F3BE}## High Network Monitor HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{A394E835-C8D6-4B4B-884B-D2709059F3BE}##Contact High Network Monitor HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{A394E835-C8D6-4B4B-884B-D2709059F3BE}##DisplayName High Network Monitor HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{A394E835-C8D6-4B4B-884B-D2709059F3BE}##DisplayVersion High Network Monitor HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{A394E835-C8D6-4B4B-884B-D2709059F3BE}##NoModify High Network Monitor HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{A394E835-C8D6-4B4B-884B-D2709059F3BE}##NoRemove High Network Monitor HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{A394E835-C8D6-4B4B-884B-D2709059F3BE}##NoRepair High Network Monitor HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{A394E835-C8D6-4B4B-884B-D2709059F3BE}##UninstallString High Yazzle Snowball Wars HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Snowball Wars Medium Yazzle Snowball Wars HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Snowball Wars## Medium Yazzle Snowball Wars HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Snowball Wars##DisplayName Medium Yazzle Snowball Wars HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Snowball Wars##UninstallString Medium Maxifiles HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\ToolBar888 High Maxifiles HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\ToolBar888## High Maxifiles HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\ToolBar888##DisplayName High Maxifiles HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\ToolBar888##UninstallString High I-Search Desktop Search Toolbar HKLM\SOFTWARE\Policies##{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} Elevated I-Search Desktop Search Toolbar HKLM\SOFTWARE\Policies##{645FF040-5081-101B-9F08-00AA002F954E} Elevated I-Search Desktop Search Toolbar HKLM\SOFTWARE\Policies##{6BF52A52-394A-11D3-B153-00C04F79FAA6} Elevated Yazzle Snowball Wars HKLM\Software\Snowball Wars Medium Yazzle Snowball Wars HKLM\Software\Snowball Wars## Medium I-Search Desktop Search Toolbar HKLM\SYSTEM\ControlSet001\Enum\Root\LEGACY_CMDSERVICE Elevated I-Search Desktop Search Toolbar HKLM\SYSTEM\ControlSet001\Enum\Root\LEGACY_CMDSERVICE## Elevated I-Search Desktop Search Toolbar HKLM\SYSTEM\ControlSet001\Enum\Root\LEGACY_CMDSERVICE##NextInstance Elevated I-Search Desktop Search Toolbar HKLM\SYSTEM\ControlSet001\Enum\Root\LEGACY_CMDSERVICE\0000 Elevated I-Search Desktop Search Toolbar HKLM\SYSTEM\ControlSet001\Enum\Root\LEGACY_CMDSERVICE\0000## Elevated I-Search Desktop Search Toolbar HKLM\SYSTEM\ControlSet001\Enum\Root\LEGACY_CMDSERVICE\0000##Class Elevated I-Search Desktop Search Toolbar HKLM\SYSTEM\ControlSet001\Enum\Root\LEGACY_CMDSERVICE\0000##ClassGUID Elevated I-Search Desktop Search Toolbar HKLM\SYSTEM\ControlSet001\Enum\Root\LEGACY_CMDSERVICE\0000##ConfigFlags Elevated I-Search Desktop Search Toolbar HKLM\SYSTEM\ControlSet001\Enum\Root\LEGACY_CMDSERVICE\0000##DeviceDesc Elevated I-Search Desktop Search Toolbar HKLM\SYSTEM\ControlSet001\Enum\Root\LEGACY_CMDSERVICE\0000##Legacy Elevated I-Search Desktop Search Toolbar HKLM\SYSTEM\ControlSet001\Enum\Root\LEGACY_CMDSERVICE\0000##Service Elevated I-Search Desktop Search Toolbar HKLM\SYSTEM\ControlSet001\Enum\Root\LEGACY_CMDSERVICE\0000\Control Elevated I-Search Desktop Search Toolbar HKLM\SYSTEM\ControlSet001\Enum\Root\LEGACY_CMDSERVICE\0000\Control## Elevated I-Search Desktop Search Toolbar HKLM\SYSTEM\ControlSet001\Enum\Root\LEGACY_CMDSERVICE\0000\Control##*NewlyCreated* Elevated I-Search Desktop Search Toolbar HKLM\SYSTEM\ControlSet001\Enum\Root\LEGACY_CMDSERVICE\0000\Control##ActiveService Elevated Network Monitor HKLM\SYSTEM\ControlSet001\Enum\Root\LEGACY_NETWORK_MONITOR High Network Monitor HKLM\SYSTEM\ControlSet001\Enum\Root\LEGACY_NETWORK_MONITOR## High Network Monitor HKLM\SYSTEM\ControlSet001\Enum\Root\LEGACY_NETWORK_MONITOR##NextInstance High Network Monitor HKLM\SYSTEM\ControlSet001\Enum\Root\LEGACY_NETWORK_MONITOR\0000 High Network Monitor HKLM\SYSTEM\ControlSet001\Enum\Root\LEGACY_NETWORK_MONITOR\0000## High Network Monitor HKLM\SYSTEM\ControlSet001\Enum\Root\LEGACY_NETWORK_MONITOR\0000##Class High Network Monitor HKLM\SYSTEM\ControlSet001\Enum\Root\LEGACY_NETWORK_MONITOR\0000##ClassGUID High Network Monitor HKLM\SYSTEM\ControlSet001\Enum\Root\LEGACY_NETWORK_MONITOR\0000##ConfigFlags High Network Monitor HKLM\SYSTEM\ControlSet001\Enum\Root\LEGACY_NETWORK_MONITOR\0000##DeviceDesc High Network Monitor HKLM\SYSTEM\ControlSet001\Enum\Root\LEGACY_NETWORK_MONITOR\0000##Legacy High Network Monitor HKLM\SYSTEM\ControlSet001\Enum\Root\LEGACY_NETWORK_MONITOR\0000##Service High Network Monitor HKLM\SYSTEM\ControlSet001\Enum\Root\LEGACY_NETWORK_MONITOR\0000\Control High Network Monitor HKLM\SYSTEM\ControlSet001\Enum\Root\LEGACY_NETWORK_MONITOR\0000\Control## High Network Monitor HKLM\SYSTEM\ControlSet001\Enum\Root\LEGACY_NETWORK_MONITOR\0000\Control##*NewlyCreated* High Network Monitor HKLM\SYSTEM\ControlSet001\Enum\Root\LEGACY_NETWORK_MONITOR\0000\Control##ActiveService High I-Search Desktop Search Toolbar HKLM\SYSTEM\ControlSet001\Services\cmdService Elevated I-Search Desktop Search Toolbar HKLM\SYSTEM\ControlSet001\Services\cmdService## Elevated I-Search Desktop Search Toolbar HKLM\SYSTEM\ControlSet001\Services\cmdService##DisplayName Elevated I-Search Desktop Search Toolbar HKLM\SYSTEM\ControlSet001\Services\cmdService##ErrorControl Elevated I-Search Desktop Search Toolbar HKLM\SYSTEM\ControlSet001\Services\cmdService##ImagePath Elevated I-Search Desktop Search Toolbar HKLM\SYSTEM\ControlSet001\Services\cmdService##ObjectName Elevated I-Search Desktop Search Toolbar HKLM\SYSTEM\ControlSet001\Services\cmdService##Start Elevated I-Search Desktop Search Toolbar HKLM\SYSTEM\ControlSet001\Services\cmdService##Type Elevated I-Search Desktop Search Toolbar HKLM\SYSTEM\ControlSet001\Services\cmdService\Enum Elevated I-Search Desktop Search Toolbar HKLM\SYSTEM\ControlSet001\Services\cmdService\Enum## Elevated I-Search Desktop Search Toolbar HKLM\SYSTEM\ControlSet001\Services\cmdService\Enum##0 Elevated I-Search Desktop Search Toolbar HKLM\SYSTEM\ControlSet001\Services\cmdService\Enum##Count Elevated I-Search Desktop Search Toolbar HKLM\SYSTEM\ControlSet001\Services\cmdService\Enum##NextInstance Elevated I-Search Desktop Search Toolbar HKLM\SYSTEM\ControlSet001\Services\cmdService\Security Elevated I-Search Desktop Search Toolbar HKLM\SYSTEM\ControlSet001\Services\cmdService\Security## Elevated I-Search Desktop Search Toolbar HKLM\SYSTEM\ControlSet001\Services\cmdService\Security##Security Elevated Network Monitor HKLM\SYSTEM\ControlSet001\Services\Network Monitor High Network Monitor HKLM\SYSTEM\ControlSet001\Services\Network Monitor## High Network Monitor HKLM\SYSTEM\ControlSet001\Services\Network Monitor##DisplayName High Network Monitor HKLM\SYSTEM\ControlSet001\Services\Network Monitor##ErrorControl High Network Monitor HKLM\SYSTEM\ControlSet001\Services\Network Monitor##ImagePath High Network Monitor HKLM\SYSTEM\ControlSet001\Services\Network Monitor##ObjectName High Network Monitor HKLM\SYSTEM\ControlSet001\Services\Network Monitor##Start High Network Monitor HKLM\SYSTEM\ControlSet001\Services\Network Monitor##Type High Network Monitor HKLM\SYSTEM\ControlSet001\Services\Network Monitor\Enum High Network Monitor HKLM\SYSTEM\ControlSet001\Services\Network Monitor\Enum## High Network Monitor HKLM\SYSTEM\ControlSet001\Services\Network Monitor\Enum##0 High Network Monitor HKLM\SYSTEM\ControlSet001\Services\Network Monitor\Enum##Count High Network Monitor HKLM\SYSTEM\ControlSet001\Services\Network Monitor\Enum##NextInstance High Network Monitor HKLM\SYSTEM\ControlSet001\Services\Network Monitor\Security High Network Monitor HKLM\SYSTEM\ControlSet001\Services\Network Monitor\Security## High Network Monitor HKLM\SYSTEM\ControlSet001\Services\Network Monitor\Security##Security High I-Search Desktop Search Toolbar HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_CMDSERVICE Elevated I-Search Desktop Search Toolbar HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_CMDSERVICE## Elevated I-Search Desktop Search Toolbar HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_CMDSERVICE##NextInstance Elevated I-Search Desktop Search Toolbar HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_CMDSERVICE\0000 Elevated I-Search Desktop Search Toolbar HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_CMDSERVICE\0000## Elevated I-Search Desktop Search Toolbar HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_CMDSERVICE\0000##Class Elevated I-Search Desktop Search Toolbar HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_CMDSERVICE\0000##ClassGUID Elevated I-Search Desktop Search Toolbar HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_CMDSERVICE\0000##ConfigFlags Elevated I-Search Desktop Search Toolbar HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_CMDSERVICE\0000##DeviceDesc Elevated I-Search Desktop Search Toolbar HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_CMDSERVICE\0000##Legacy Elevated I-Search Desktop Search Toolbar HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_CMDSERVICE\0000##Service Elevated I-Search Desktop Search Toolbar HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_CMDSERVICE\0000\Control Elevated I-Search Desktop Search Toolbar HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_CMDSERVICE\0000\Control## Elevated I-Search Desktop Search Toolbar HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_CMDSERVICE\0000\Control##*NewlyCreated* Elevated I-Search Desktop Search Toolbar HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_CMDSERVICE\0000\Control##ActiveService Elevated Network Monitor HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_NETWORK_MONITOR High Network Monitor HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_NETWORK_MONITOR## High Network Monitor HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_NETWORK_MONITOR##NextInstance High Network Monitor HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_NETWORK_MONITOR\0000 High Network Monitor HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_NETWORK_MONITOR\0000## High Network Monitor HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_NETWORK_MONITOR\0000##Class High Network Monitor HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_NETWORK_MONITOR\0000##ClassGUID High Network Monitor HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_NETWORK_MONITOR\0000##ConfigFlags High Network Monitor HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_NETWORK_MONITOR\0000##DeviceDesc High Network Monitor HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_NETWORK_MONITOR\0000##Legacy High Network Monitor HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_NETWORK_MONITOR\0000##Service High Network Monitor HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_NETWORK_MONITOR\0000\Control High Network Monitor HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_NETWORK_MONITOR\0000\Control## High Network Monitor HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_NETWORK_MONITOR\0000\Control##*NewlyCreated* High Network Monitor HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_NETWORK_MONITOR\0000\Control##ActiveService High I-Search Desktop Search Toolbar HKLM\SYSTEM\CurrentControlSet\Services\cmdService Elevated I-Search Desktop Search Toolbar HKLM\SYSTEM\CurrentControlSet\Services\cmdService## Elevated I-Search Desktop Search Toolbar HKLM\SYSTEM\CurrentControlSet\Services\cmdService##DisplayName Elevated I-Search Desktop Search Toolbar HKLM\SYSTEM\CurrentControlSet\Services\cmdService##ErrorControl Elevated I-Search Desktop Search Toolbar HKLM\SYSTEM\CurrentControlSet\Services\cmdService##ImagePath Elevated I-Search Desktop Search Toolbar HKLM\SYSTEM\CurrentControlSet\Services\cmdService##ObjectName Elevated I-Search Desktop Search Toolbar HKLM\SYSTEM\CurrentControlSet\Services\cmdService##Start Elevated I-Search Desktop Search Toolbar HKLM\SYSTEM\CurrentControlSet\Services\cmdService##Type Elevated I-Search Desktop Search Toolbar HKLM\SYSTEM\CurrentControlSet\Services\cmdService\Enum Elevated I-Search Desktop Search Toolbar HKLM\SYSTEM\CurrentControlSet\Services\cmdService\Enum## Elevated I-Search Desktop Search Toolbar HKLM\SYSTEM\CurrentControlSet\Services\cmdService\Enum##0 Elevated I-Search Desktop Search Toolbar HKLM\SYSTEM\CurrentControlSet\Services\cmdService\Enum##Count Elevated I-Search Desktop Search Toolbar HKLM\SYSTEM\CurrentControlSet\Services\cmdService\Enum##NextInstance Elevated I-Search Desktop Search Toolbar HKLM\SYSTEM\CurrentControlSet\Services\cmdService\Security Elevated I-Search Desktop Search Toolbar HKLM\SYSTEM\CurrentControlSet\Services\cmdService\Security## Elevated I-Search Desktop Search Toolbar HKLM\SYSTEM\CurrentControlSet\Services\cmdService\Security##Security Elevated Network Monitor HKLM\SYSTEM\CurrentControlSet\Services\Network Monitor High Network Monitor HKLM\SYSTEM\CurrentControlSet\Services\Network Monitor## High Network Monitor HKLM\SYSTEM\CurrentControlSet\Services\Network Monitor##DisplayName High Network Monitor HKLM\SYSTEM\CurrentControlSet\Services\Network Monitor##ErrorControl High Network Monitor HKLM\SYSTEM\CurrentControlSet\Services\Network Monitor##ImagePath High Network Monitor HKLM\SYSTEM\CurrentControlSet\Services\Network Monitor##ObjectName High Network Monitor HKLM\SYSTEM\CurrentControlSet\Services\Network Monitor##Start High Network Monitor HKLM\SYSTEM\CurrentControlSet\Services\Network Monitor##Type High Network Monitor HKLM\SYSTEM\CurrentControlSet\Services\Network Monitor\Enum High Network Monitor HKLM\SYSTEM\CurrentControlSet\Services\Network Monitor\Enum## High Network Monitor HKLM\SYSTEM\CurrentControlSet\Services\Network Monitor\Enum##0 High Network Monitor HKLM\SYSTEM\CurrentControlSet\Services\Network Monitor\Enum##Count High Network Monitor HKLM\SYSTEM\CurrentControlSet\Services\Network Monitor\Enum##NextInstance High Network Monitor HKLM\SYSTEM\CurrentControlSet\Services\Network Monitor\Security High Network Monitor HKLM\SYSTEM\CurrentControlSet\Services\Network Monitor\Security## High Network Monitor HKLM\SYSTEM\CurrentControlSet\Services\Network Monitor\Security##Security High I-Search Desktop Search Toolbar iexplore.exe (C:\WINDOWS\SmVzc2ljYQ\asappsrv.dll) Elevated I-Search Desktop Search Toolbar iTunesHelper.exe (C:\WINDOWS\SmVzc2ljYQ\asappsrv.dll) Elevated I-Search Desktop Search Toolbar KEM.exe (C:\WINDOWS\SmVzc2ljYQ\asappsrv.dll) Elevated I-Search Desktop Search Toolbar KHALMNPR.EXE (C:\WINDOWS\SmVzc2ljYQ\asappsrv.dll) Elevated I-Search Desktop Search Toolbar msmsgs.exe (C:\WINDOWS\SmVzc2ljYQ\asappsrv.dll) Elevated