Jump to content

Welcome to Geeks to Go - Register now for FREE

Geeks To Go is a helpful hub, where thousands of volunteer geeks quickly serve friendly answers and support. Check out the forums and get free advice from the experts. Register now to gain access to all of our features, it's FREE and only takes one minute. Once registered and logged in, you will be able to create topics, post replies to existing threads, give reputation to your fellow members, get your own private messenger, post status updates, manage your profile and so much more.

Create Account How it Works
Photo

Infected with Forethought (xeymi.dll) and other spywares


  • Please log in to reply

#1
ajit

ajit

    New Member

  • Member
  • Pip
  • 7 posts
Hi,
My laptop has been infected with Forethought (xeymi.dll) and several other pop-up based spywares. Please help me in removing this.
Thanks in advance,
Ajit
  • 0

Advertisements


#2
Guest_rushin1nd_*

Guest_rushin1nd_*
  • Guest
go here this will help


http://www.geekstogo..._Log-t2852.html
  • 0

#3
ajit

ajit

    New Member

  • Topic Starter
  • Member
  • Pip
  • 7 posts
Hi,
I have run all the anti-malware softwares that was suggested before sending the HijackThis log. I am attaching the ewido and HijackThis logs below. Please reply what I need to do next.

---------------------------------------------------------
ewido anti-spyware - Scan Report
---------------------------------------------------------

+ Created at: 5:06:53 PM 8/12/2006

+ Scan result:



C:\WINDOWS\Downloaded Program Files\CONFLICT.1\amm06.ocx -> Adware.MediaMotor : Cleaned with backup (quarantined).
C:\WINDOWS\Downloaded Program Files\amm06.ocx -> Adware.MediaMotor : Cleaned with backup (quarantined).
C:\WINDOWS\unstall.exe -> Adware.MediaMotor : Cleaned with backup (quarantined).
C:\WINDOWS\system32\WinNB58.dll -> Adware.Mirar : Cleaned with backup (quarantined).
C:\WINDOWS\MirarSetup_876075.exe -> Adware.SaveNow : Cleaned with backup (quarantined).
C:\WINDOWS\system32\ghynf.exe -> Adware.SearchAssistant : Cleaned with backup (quarantined).
C:\WINDOWS\system32\zkdmg.exe -> Adware.SearchAssistant : Cleaned with backup (quarantined).
C:\WINDOWS\system32afdaqd3.exe -> Adware.SearchAssistant : Cleaned with backup (quarantined).
C:\WINDOWS\system32bez6n4r21.exe -> Adware.SearchAssistant : Cleaned with backup (quarantined).
C:\WINDOWS\system32cymmh.exe -> Adware.SearchAssistant : Cleaned with backup (quarantined).
C:\WINDOWS\system32ghynf.exe -> Adware.SearchAssistant : Cleaned with backup (quarantined).
C:\WINDOWS\system32tpsd.exe -> Adware.SearchAssistant : Cleaned with backup (quarantined).
C:\WINDOWS\system32zkdmg.exe -> Adware.SearchAssistant : Cleaned with backup (quarantined).
C:\HijackThis\backups\backup-20060805-224348-429.dll -> Adware.Suggestor : Cleaned with backup (quarantined).
C:\WINDOWS\system32\hauc.exe -> Adware.Suggestor : Cleaned with backup (quarantined).
C:\WINDOWS\system32\iqqr.exe -> Adware.Suggestor : Cleaned with backup (quarantined).
C:\WINDOWS\system32\n9nyb.exe -> Adware.Suggestor : Cleaned with backup (quarantined).
C:\WINDOWS\system32\riwzkn.exe -> Adware.Suggestor : Cleaned with backup (quarantined).
C:\WINDOWS\system32\uvzgi.exe -> Adware.Suggestor : Cleaned with backup (quarantined).
C:\WINDOWS\system32\vp1i4.exe -> Adware.Suggestor : Cleaned with backup (quarantined).
C:\WINDOWS\system32\xeymi.dll -> Adware.Suggestor : Cleaned with backup (quarantined).
C:\WINDOWS\system32\y3aqsoepa.exe -> Adware.Suggestor : Cleaned with backup (quarantined).
C:\WINDOWS\system32n9nyb.exe -> Adware.Suggestor : Cleaned with backup (quarantined).
C:\WINDOWS\system32uvzgi.exe -> Adware.Suggestor : Cleaned with backup (quarantined).
C:\WINDOWS\system32y3aqsoepa.exe -> Adware.Suggestor : Cleaned with backup (quarantined).
C:\nwnmfg_8.exe -> Downloader.Adload.dj : Cleaned with backup (quarantined).
C:\kybrdff_7.exe -> Downloader.Adload.dl : Cleaned with backup (quarantined).
C:\kybrdff_8.exe -> Downloader.Adload.dv : Cleaned with backup (quarantined).
C:\dist13.exe -> Downloader.Agent.aaf : Cleaned with backup (quarantined).
C:\WINDOWS\cs2m6f.exe -> Downloader.Agent.ala : Cleaned with backup (quarantined).
C:\WINDOWS\ddhb.exe -> Downloader.Agent.ala : Cleaned with backup (quarantined).
C:\fym9bvo.exe -> Downloader.Agent.ala : Cleaned with backup (quarantined).
C:\installerwnusnewer.exe -> Downloader.Qoologic.at : Cleaned with backup (quarantined).
C:\WINDOWS\idlemg.exe -> Downloader.Small.buy : Cleaned with backup (quarantined).
C:\ac3_0003.exe -> Downloader.Small.cyh : Cleaned with backup (quarantined).
C:\Program Files\Common Files\kizf\kizfp.exe -> Downloader.TSUpdate.f : Cleaned with backup (quarantined).
C:\Program Files\Common Files\kizf\kizfl.exe -> Downloader.TSUpdate.r : Cleaned with backup (quarantined).
C:\nwnmff_8.exe -> Downloader.VB.aiy : Cleaned with backup (quarantined).
C:\WINDOWS\xload.exe -> Downloader.VB.wz : Cleaned with backup (quarantined).
C:\visfx500new.exe -> Dropper.Agent.aie : Cleaned with backup (quarantined).
C:\numbsoftnew.exe -> Dropper.Agent.hl : Cleaned with backup (quarantined).
C:\webnexmknew.exe -> Dropper.Agent.hl : Cleaned with backup (quarantined).
C:\Program Files\Internet Explorer\pofowot.html -> Hijacker.Small.jf : Cleaned with backup (quarantined).
C:\Program Files\Online Services\meceterop.html -> Hijacker.Small.jf : Cleaned with backup (quarantined).
C:\dfndrff_7.exe -> Hijacker.VB.ly : Cleaned with backup (quarantined).
C:\dfndrff_8.exe -> Hijacker.VB.ly : Cleaned with backup (quarantined).
C:\dfndrfg_8.exe -> Hijacker.VB.ly : Cleaned with backup (quarantined).
C:\dfndrff_9.exe -> Hijacker.VB.or : Cleaned with backup (quarantined).
C:\WINDOWS\Downloaded Program Files\USDR6_0001_D18M2707NetInstaller.exe -> Not-A-Virus.Downloader.Win32.WinFixer.l : Cleaned with backup (quarantined).
:mozilla.171:C:\Documents and Settings\AJIT BARNWAL\Application Data\Mozilla\Firefox\Profiles\4t60ve8p.default\cookies.txt -> TrackingCookie.2o7 : Cleaned with backup (quarantined).
:mozilla.172:C:\Documents and Settings\AJIT BARNWAL\Application Data\Mozilla\Firefox\Profiles\4t60ve8p.default\cookies.txt -> TrackingCookie.2o7 : Cleaned with backup (quarantined).
:mozilla.173:C:\Documents and Settings\AJIT BARNWAL\Application Data\Mozilla\Firefox\Profiles\4t60ve8p.default\cookies.txt -> TrackingCookie.2o7 : Cleaned with backup (quarantined).
:mozilla.174:C:\Documents and Settings\AJIT BARNWAL\Application Data\Mozilla\Firefox\Profiles\4t60ve8p.default\cookies.txt -> TrackingCookie.2o7 : Cleaned with backup (quarantined).
:mozilla.175:C:\Documents and Settings\AJIT BARNWAL\Application Data\Mozilla\Firefox\Profiles\4t60ve8p.default\cookies.txt -> TrackingCookie.2o7 : Cleaned with backup (quarantined).
:mozilla.176:C:\Documents and Settings\AJIT BARNWAL\Application Data\Mozilla\Firefox\Profiles\4t60ve8p.default\cookies.txt -> TrackingCookie.2o7 : Cleaned with backup (quarantined).
:mozilla.177:C:\Documents and Settings\AJIT BARNWAL\Application Data\Mozilla\Firefox\Profiles\4t60ve8p.default\cookies.txt -> TrackingCookie.2o7 : Cleaned with backup (quarantined).
:mozilla.179:C:\Documents and Settings\AJIT BARNWAL\Application Data\Mozilla\Firefox\Profiles\4t60ve8p.default\cookies.txt -> TrackingCookie.2o7 : Cleaned with backup (quarantined).
:mozilla.371:C:\Documents and Settings\AJIT BARNWAL\Application Data\Mozilla\Firefox\Profiles\4t60ve8p.default\cookies.txt -> TrackingCookie.2o7 : Cleaned with backup (quarantined).
:mozilla.466:C:\Documents and Settings\AJIT BARNWAL\Application Data\Mozilla\Firefox\Profiles\4t60ve8p.default\cookies.txt -> TrackingCookie.2o7 : Cleaned with backup (quarantined).
:mozilla.498:C:\Documents and Settings\AJIT BARNWAL\Application Data\Mozilla\Firefox\Profiles\4t60ve8p.default\cookies.txt -> TrackingCookie.2o7 : Cleaned with backup (quarantined).
:mozilla.217:C:\Documents and Settings\AJIT BARNWAL\Application Data\Mozilla\Firefox\Profiles\4t60ve8p.default\cookies.txt -> TrackingCookie.Adbrite : Cleaned with backup (quarantined).
:mozilla.218:C:\Documents and Settings\AJIT BARNWAL\Application Data\Mozilla\Firefox\Profiles\4t60ve8p.default\cookies.txt -> TrackingCookie.Adbrite : Cleaned with backup (quarantined).
:mozilla.515:C:\Documents and Settings\AJIT BARNWAL\Application Data\Mozilla\Firefox\Profiles\4t60ve8p.default\cookies.txt -> TrackingCookie.Adbrite : Cleaned with backup (quarantined).
:mozilla.522:C:\Documents and Settings\AJIT BARNWAL\Application Data\Mozilla\Firefox\Profiles\4t60ve8p.default\cookies.txt -> TrackingCookie.Adbrite : Cleaned with backup (quarantined).
:mozilla.52:C:\Documents and Settings\AJIT BARNWAL\Application Data\Mozilla\Firefox\Profiles\4t60ve8p.default\cookies.txt -> TrackingCookie.Adrevolver : Cleaned with backup (quarantined).
:mozilla.53:C:\Documents and Settings\AJIT BARNWAL\Application Data\Mozilla\Firefox\Profiles\4t60ve8p.default\cookies.txt -> TrackingCookie.Adrevolver : Cleaned with backup (quarantined).
:mozilla.54:C:\Documents and Settings\AJIT BARNWAL\Application Data\Mozilla\Firefox\Profiles\4t60ve8p.default\cookies.txt -> TrackingCookie.Adrevolver : Cleaned with backup (quarantined).
:mozilla.55:C:\Documents and Settings\AJIT BARNWAL\Application Data\Mozilla\Firefox\Profiles\4t60ve8p.default\cookies.txt -> TrackingCookie.Adrevolver : Cleaned with backup (quarantined).
:mozilla.56:C:\Documents and Settings\AJIT BARNWAL\Application Data\Mozilla\Firefox\Profiles\4t60ve8p.default\cookies.txt -> TrackingCookie.Adrevolver : Cleaned with backup (quarantined).
:mozilla.62:C:\Documents and Settings\AJIT BARNWAL\Application Data\Mozilla\Firefox\Profiles\4t60ve8p.default\cookies.txt -> TrackingCookie.Adrevolver : Cleaned with backup (quarantined).
:mozilla.64:C:\Documents and Settings\AJIT BARNWAL\Application Data\Mozilla\Firefox\Profiles\4t60ve8p.default\cookies.txt -> TrackingCookie.Advertising : Cleaned with backup (quarantined).
:mozilla.107:C:\Documents and Settings\AJIT BARNWAL\Application Data\Mozilla\Firefox\Profiles\4t60ve8p.default\cookies.txt -> TrackingCookie.Atdmt : Cleaned with backup (quarantined).
:mozilla.487:C:\Documents and Settings\AJIT BARNWAL\Application Data\Mozilla\Firefox\Profiles\4t60ve8p.default\cookies.txt -> TrackingCookie.Bfast : Cleaned with backup (quarantined).
:mozilla.436:C:\Documents and Settings\AJIT BARNWAL\Application Data\Mozilla\Firefox\Profiles\4t60ve8p.default\cookies.txt -> TrackingCookie.Bluestreak : Cleaned with backup (quarantined).
:mozilla.271:C:\Documents and Settings\AJIT BARNWAL\Application Data\Mozilla\Firefox\Profiles\4t60ve8p.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned with backup (quarantined).
:mozilla.272:C:\Documents and Settings\AJIT BARNWAL\Application Data\Mozilla\Firefox\Profiles\4t60ve8p.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned with backup (quarantined).
:mozilla.273:C:\Documents and Settings\AJIT BARNWAL\Application Data\Mozilla\Firefox\Profiles\4t60ve8p.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned with backup (quarantined).
:mozilla.274:C:\Documents and Settings\AJIT BARNWAL\Application Data\Mozilla\Firefox\Profiles\4t60ve8p.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned with backup (quarantined).
:mozilla.275:C:\Documents and Settings\AJIT BARNWAL\Application Data\Mozilla\Firefox\Profiles\4t60ve8p.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned with backup (quarantined).
:mozilla.276:C:\Documents and Settings\AJIT BARNWAL\Application Data\Mozilla\Firefox\Profiles\4t60ve8p.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned with backup (quarantined).
:mozilla.424:C:\Documents and Settings\AJIT BARNWAL\Application Data\Mozilla\Firefox\Profiles\4t60ve8p.default\cookies.txt -> TrackingCookie.Clickzs : Cleaned with backup (quarantined).
:mozilla.425:C:\Documents and Settings\AJIT BARNWAL\Application Data\Mozilla\Firefox\Profiles\4t60ve8p.default\cookies.txt -> TrackingCookie.Clickzs : Cleaned with backup (quarantined).
:mozilla.426:C:\Documents and Settings\AJIT BARNWAL\Application Data\Mozilla\Firefox\Profiles\4t60ve8p.default\cookies.txt -> TrackingCookie.Clickzs : Cleaned with backup (quarantined).
:mozilla.427:C:\Documents and Settings\AJIT BARNWAL\Application Data\Mozilla\Firefox\Profiles\4t60ve8p.default\cookies.txt -> TrackingCookie.Clickzs : Cleaned with backup (quarantined).
:mozilla.428:C:\Documents and Settings\AJIT BARNWAL\Application Data\Mozilla\Firefox\Profiles\4t60ve8p.default\cookies.txt -> TrackingCookie.Clickzs : Cleaned with backup (quarantined).
:mozilla.429:C:\Documents and Settings\AJIT BARNWAL\Application Data\Mozilla\Firefox\Profiles\4t60ve8p.default\cookies.txt -> TrackingCookie.Clickzs : Cleaned with backup (quarantined).
:mozilla.366:C:\Documents and Settings\AJIT BARNWAL\Application Data\Mozilla\Firefox\Profiles\4t60ve8p.default\cookies.txt -> TrackingCookie.Com : Cleaned with backup (quarantined).
C:\Documents and Settings\AJIT BARNWAL\Cookies\ajit barnwal@cpvfeed[2].txt -> TrackingCookie.Cpvfeed : Cleaned with backup (quarantined).
:mozilla.142:C:\Documents and Settings\AJIT BARNWAL\Application Data\Mozilla\Firefox\Profiles\4t60ve8p.default\cookies.txt -> TrackingCookie.Doubleclick : Cleaned with backup (quarantined).
:mozilla.295:C:\Documents and Settings\AJIT BARNWAL\Application Data\Mozilla\Firefox\Profiles\4t60ve8p.default\cookies.txt -> TrackingCookie.Euroclick : Cleaned with backup (quarantined).
:mozilla.296:C:\Documents and Settings\AJIT BARNWAL\Application Data\Mozilla\Firefox\Profiles\4t60ve8p.default\cookies.txt -> TrackingCookie.Euroclick : Cleaned with backup (quarantined).
:mozilla.133:C:\Documents and Settings\AJIT BARNWAL\Application Data\Mozilla\Firefox\Profiles\4t60ve8p.default\cookies.txt -> TrackingCookie.Falkag : Cleaned with backup (quarantined).
:mozilla.329:C:\Documents and Settings\AJIT BARNWAL\Application Data\Mozilla\Firefox\Profiles\4t60ve8p.default\cookies.txt -> TrackingCookie.Falkag : Cleaned with backup (quarantined).
:mozilla.330:C:\Documents and Settings\AJIT BARNWAL\Application Data\Mozilla\Firefox\Profiles\4t60ve8p.default\cookies.txt -> TrackingCookie.Falkag : Cleaned with backup (quarantined).
:mozilla.331:C:\Documents and Settings\AJIT BARNWAL\Application Data\Mozilla\Firefox\Profiles\4t60ve8p.default\cookies.txt -> TrackingCookie.Falkag : Cleaned with backup (quarantined).
:mozilla.332:C:\Documents and Settings\AJIT BARNWAL\Application Data\Mozilla\Firefox\Profiles\4t60ve8p.default\cookies.txt -> TrackingCookie.Falkag : Cleaned with backup (quarantined).
C:\Documents and Settings\AJIT BARNWAL\Cookies\ajit barnwal@as-us.falkag[2].txt -> TrackingCookie.Falkag : Cleaned with backup (quarantined).
:mozilla.86:C:\Documents and Settings\AJIT BARNWAL\Application Data\Mozilla\Firefox\Profiles\4t60ve8p.default\cookies.txt -> TrackingCookie.Fastclick : Cleaned with backup (quarantined).
:mozilla.87:C:\Documents and Settings\AJIT BARNWAL\Application Data\Mozilla\Firefox\Profiles\4t60ve8p.default\cookies.txt -> TrackingCookie.Fastclick : Cleaned with backup (quarantined).
:mozilla.88:C:\Documents and Settings\AJIT BARNWAL\Application Data\Mozilla\Firefox\Profiles\4t60ve8p.default\cookies.txt -> TrackingCookie.Fastclick : Cleaned with backup (quarantined).
:mozilla.378:C:\Documents and Settings\AJIT BARNWAL\Application Data\Mozilla\Firefox\Profiles\4t60ve8p.default\cookies.txt -> TrackingCookie.Findwhat : Cleaned with backup (quarantined).
:mozilla.24:C:\Documents and Settings\AJIT BARNWAL\Application Data\Mozilla\Firefox\Profiles\4t60ve8p.default\cookies.txt -> TrackingCookie.Goclick : Cleaned with backup (quarantined).
:mozilla.25:C:\Documents and Settings\AJIT BARNWAL\Application Data\Mozilla\Firefox\Profiles\4t60ve8p.default\cookies.txt -> TrackingCookie.Goclick : Cleaned with backup (quarantined).
:mozilla.165:C:\Documents and Settings\AJIT BARNWAL\Application Data\Mozilla\Firefox\Profiles\4t60ve8p.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned with backup (quarantined).
:mozilla.166:C:\Documents and Settings\AJIT BARNWAL\Application Data\Mozilla\Firefox\Profiles\4t60ve8p.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned with backup (quarantined).
:mozilla.167:C:\Documents and Settings\AJIT BARNWAL\Application Data\Mozilla\Firefox\Profiles\4t60ve8p.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned with backup (quarantined).
:mozilla.227:C:\Documents and Settings\AJIT BARNWAL\Application Data\Mozilla\Firefox\Profiles\4t60ve8p.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned with backup (quarantined).
:mozilla.383:C:\Documents and Settings\AJIT BARNWAL\Application Data\Mozilla\Firefox\Profiles\4t60ve8p.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned with backup (quarantined).
:mozilla.384:C:\Documents and Settings\AJIT BARNWAL\Application Data\Mozilla\Firefox\Profiles\4t60ve8p.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned with backup (quarantined).
:mozilla.115:C:\Documents and Settings\AJIT BARNWAL\Application Data\Mozilla\Firefox\Profiles\4t60ve8p.default\cookies.txt -> TrackingCookie.Linksynergy : Cleaned with backup (quarantined).
:mozilla.116:C:\Documents and Settings\AJIT BARNWAL\Application Data\Mozilla\Firefox\Profiles\4t60ve8p.default\cookies.txt -> TrackingCookie.Linksynergy : Cleaned with backup (quarantined).
:mozilla.222:C:\Documents and Settings\AJIT BARNWAL\Application Data\Mozilla\Firefox\Profiles\4t60ve8p.default\cookies.txt -> TrackingCookie.Liveperson : Cleaned with backup (quarantined).
:mozilla.225:C:\Documents and Settings\AJIT BARNWAL\Application Data\Mozilla\Firefox\Profiles\4t60ve8p.default\cookies.txt -> TrackingCookie.Liveperson : Cleaned with backup (quarantined).
:mozilla.226:C:\Documents and Settings\AJIT BARNWAL\Application Data\Mozilla\Firefox\Profiles\4t60ve8p.default\cookies.txt -> TrackingCookie.Liveperson : Cleaned with backup (quarantined).
:mozilla.333:C:\Documents and Settings\AJIT BARNWAL\Application Data\Mozilla\Firefox\Profiles\4t60ve8p.default\cookies.txt -> TrackingCookie.Masterstats : Cleaned with backup (quarantined).
:mozilla.84:C:\Documents and Settings\AJIT BARNWAL\Application Data\Mozilla\Firefox\Profiles\4t60ve8p.default\cookies.txt -> TrackingCookie.Mediaplex : Cleaned with backup (quarantined).
:mozilla.85:C:\Documents and Settings\AJIT BARNWAL\Application Data\Mozilla\Firefox\Profiles\4t60ve8p.default\cookies.txt -> TrackingCookie.Mediaplex : Cleaned with backup (quarantined).
:mozilla.162:C:\Documents and Settings\AJIT BARNWAL\Application Data\Mozilla\Firefox\Profiles\4t60ve8p.default\cookies.txt -> TrackingCookie.Overture : Cleaned with backup (quarantined).
:mozilla.26:C:\Documents and Settings\AJIT BARNWAL\Application Data\Mozilla\Firefox\Profiles\4t60ve8p.default\cookies.txt -> TrackingCookie.Overture : Cleaned with backup (quarantined).
:mozilla.31:C:\Documents and Settings\AJIT BARNWAL\Application Data\Mozilla\Firefox\Profiles\4t60ve8p.default\cookies.txt -> TrackingCookie.Overture : Cleaned with backup (quarantined).
:mozilla.117:C:\Documents and Settings\AJIT BARNWAL\Application Data\Mozilla\Firefox\Profiles\4t60ve8p.default\cookies.txt -> TrackingCookie.Qksrv : Cleaned with backup (quarantined).
:mozilla.119:C:\Documents and Settings\AJIT BARNWAL\Application Data\Mozilla\Firefox\Profiles\4t60ve8p.default\cookies.txt -> TrackingCookie.Qksrv : Cleaned with backup (quarantined).
:mozilla.104:C:\Documents and Settings\AJIT BARNWAL\Application Data\Mozilla\Firefox\Profiles\4t60ve8p.default\cookies.txt -> TrackingCookie.Questionmarket : Cleaned with backup (quarantined).
:mozilla.105:C:\Documents and Settings\AJIT BARNWAL\Application Data\Mozilla\Firefox\Profiles\4t60ve8p.default\cookies.txt -> TrackingCookie.Questionmarket : Cleaned with backup (quarantined).
:mozilla.106:C:\Documents and Settings\AJIT BARNWAL\Application Data\Mozilla\Firefox\Profiles\4t60ve8p.default\cookies.txt -> TrackingCookie.Questionmarket : Cleaned with backup (quarantined).
:mozilla.219:C:\Documents and Settings\AJIT BARNWAL\Application Data\Mozilla\Firefox\Profiles\4t60ve8p.default\cookies.txt -> TrackingCookie.Realtracker : Cleaned with backup (quarantined).
:mozilla.46:C:\Documents and Settings\AJIT BARNWAL\Application Data\Mozilla\Firefox\Profiles\4t60ve8p.default\cookies.txt -> TrackingCookie.Reliablestats : Cleaned with backup (quarantined).
:mozilla.47:C:\Documents and Settings\AJIT BARNWAL\Application Data\Mozilla\Firefox\Profiles\4t60ve8p.default\cookies.txt -> TrackingCookie.Reliablestats : Cleaned with backup (quarantined).
:mozilla.49:C:\Documents and Settings\AJIT BARNWAL\Application Data\Mozilla\Firefox\Profiles\4t60ve8p.default\cookies.txt -> TrackingCookie.Reliablestats : Cleaned with backup (quarantined).
:mozilla.50:C:\Documents and Settings\AJIT BARNWAL\Application Data\Mozilla\Firefox\Profiles\4t60ve8p.default\cookies.txt -> TrackingCookie.Reliablestats : Cleaned with backup (quarantined).
:mozilla.51:C:\Documents and Settings\AJIT BARNWAL\Application Data\Mozilla\Firefox\Profiles\4t60ve8p.default\cookies.txt -> TrackingCookie.Reliablestats : Cleaned with backup (quarantined).
:mozilla.130:C:\Documents and Settings\AJIT BARNWAL\Application Data\Mozilla\Firefox\Profiles\4t60ve8p.default\cookies.txt -> TrackingCookie.Revenue : Cleaned with backup (quarantined).
:mozilla.131:C:\Documents and Settings\AJIT BARNWAL\Application Data\Mozilla\Firefox\Profiles\4t60ve8p.default\cookies.txt -> TrackingCookie.Revenue : Cleaned with backup (quarantined).
:mozilla.132:C:\Documents and Settings\AJIT BARNWAL\Application Data\Mozilla\Firefox\Profiles\4t60ve8p.default\cookies.txt -> TrackingCookie.Revenue : Cleaned with backup (quarantined).
:mozilla.134:C:\Documents and Settings\AJIT BARNWAL\Application Data\Mozilla\Firefox\Profiles\4t60ve8p.default\cookies.txt -> TrackingCookie.Revenue : Cleaned with backup (quarantined).
:mozilla.135:C:\Documents and Settings\AJIT BARNWAL\Application Data\Mozilla\Firefox\Profiles\4t60ve8p.default\cookies.txt -> TrackingCookie.Revenue : Cleaned with backup (quarantined).
:mozilla.136:C:\Documents and Settings\AJIT BARNWAL\Application Data\Mozilla\Firefox\Profiles\4t60ve8p.default\cookies.txt -> TrackingCookie.Revenue : Cleaned with backup (quarantined).
:mozilla.137:C:\Documents and Settings\AJIT BARNWAL\Application Data\Mozilla\Firefox\Profiles\4t60ve8p.default\cookies.txt -> TrackingCookie.Revenue : Cleaned with backup (quarantined).
:mozilla.258:C:\Documents and Settings\AJIT BARNWAL\Application Data\Mozilla\Firefox\Profiles\4t60ve8p.default\cookies.txt -> TrackingCookie.Ru4 : Cleaned with backup (quarantined).
:mozilla.259:C:\Documents and Settings\AJIT BARNWAL\Application Data\Mozilla\Firefox\Profiles\4t60ve8p.default\cookies.txt -> TrackingCookie.Ru4 : Cleaned with backup (quarantined).
:mozilla.530:C:\Documents and Settings\AJIT BARNWAL\Application Data\Mozilla\Firefox\Profiles\4t60ve8p.default\cookies.txt -> TrackingCookie.Serving-sys : Cleaned with backup (quarantined).
:mozilla.531:C:\Documents and Settings\AJIT BARNWAL\Application Data\Mozilla\Firefox\Profiles\4t60ve8p.default\cookies.txt -> TrackingCookie.Serving-sys : Cleaned with backup (quarantined).
:mozilla.532:C:\Documents and Settings\AJIT BARNWAL\Application Data\Mozilla\Firefox\Profiles\4t60ve8p.default\cookies.txt -> TrackingCookie.Serving-sys : Cleaned with backup (quarantined).
:mozilla.533:C:\Documents and Settings\AJIT BARNWAL\Application Data\Mozilla\Firefox\Profiles\4t60ve8p.default\cookies.txt -> TrackingCookie.Serving-sys : Cleaned with backup (quarantined).
:mozilla.326:C:\Documents and Settings\AJIT BARNWAL\Application Data\Mozilla\Firefox\Profiles\4t60ve8p.default\cookies.txt -> TrackingCookie.Sexlist : Cleaned with backup (quarantined).
:mozilla.327:C:\Documents and Settings\AJIT BARNWAL\Application Data\Mozilla\Firefox\Profiles\4t60ve8p.default\cookies.txt -> TrackingCookie.Sexlist : Cleaned with backup (quarantined).
:mozilla.140:C:\Documents and Settings\AJIT BARNWAL\Application Data\Mozilla\Firefox\Profiles\4t60ve8p.default\cookies.txt -> TrackingCookie.Sitestat : Cleaned with backup (quarantined).
:mozilla.141:C:\Documents and Settings\AJIT BARNWAL\Application Data\Mozilla\Firefox\Profiles\4t60ve8p.default\cookies.txt -> TrackingCookie.Sitestat : Cleaned with backup (quarantined).
:mozilla.412:C:\Documents and Settings\AJIT BARNWAL\Application Data\Mozilla\Firefox\Profiles\4t60ve8p.default\cookies.txt -> TrackingCookie.Sitestat : Cleaned with backup (quarantined).
:mozilla.482:C:\Documents and Settings\AJIT BARNWAL\Application Data\Mozilla\Firefox\Profiles\4t60ve8p.default\cookies.txt -> TrackingCookie.Specificclick : Cleaned with backup (quarantined).
:mozilla.75:C:\Documents and Settings\AJIT BARNWAL\Application Data\Mozilla\Firefox\Profiles\4t60ve8p.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned with backup (quarantined).
:mozilla.76:C:\Documents and Settings\AJIT BARNWAL\Application Data\Mozilla\Firefox\Profiles\4t60ve8p.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned with backup (quarantined).
:mozilla.77:C:\Documents and Settings\AJIT BARNWAL\Application Data\Mozilla\Firefox\Profiles\4t60ve8p.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned with backup (quarantined).
:mozilla.78:C:\Documents and Settings\AJIT BARNWAL\Application Data\Mozilla\Firefox\Profiles\4t60ve8p.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned with backup (quarantined).
:mozilla.79:C:\Documents and Settings\AJIT BARNWAL\Application Data\Mozilla\Firefox\Profiles\4t60ve8p.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned with backup (quarantined).
:mozilla.80:C:\Documents and Settings\AJIT BARNWAL\Application Data\Mozilla\Firefox\Profiles\4t60ve8p.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned with backup (quarantined).
:mozilla.81:C:\Documents and Settings\AJIT BARNWAL\Application Data\Mozilla\Firefox\Profiles\4t60ve8p.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned with backup (quarantined).
:mozilla.82:C:\Documents and Settings\AJIT BARNWAL\Application Data\Mozilla\Firefox\Profiles\4t60ve8p.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned with backup (quarantined).
:mozilla.83:C:\Documents and Settings\AJIT BARNWAL\Application Data\Mozilla\Firefox\Profiles\4t60ve8p.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned with backup (quarantined).
:mozilla.480:C:\Documents and Settings\AJIT BARNWAL\Application Data\Mozilla\Firefox\Profiles\4t60ve8p.default\cookies.txt -> TrackingCookie.Targetnet : Cleaned with backup (quarantined).
:mozilla.481:C:\Documents and Settings\AJIT BARNWAL\Application Data\Mozilla\Firefox\Profiles\4t60ve8p.default\cookies.txt -> TrackingCookie.Targetnet : Cleaned with backup (quarantined).
:mozilla.243:C:\Documents and Settings\AJIT BARNWAL\Application Data\Mozilla\Firefox\Profiles\4t60ve8p.default\cookies.txt -> TrackingCookie.Trafficmp : Cleaned with backup (quarantined).
:mozilla.244:C:\Documents and Settings\AJIT BARNWAL\Application Data\Mozilla\Firefox\Profiles\4t60ve8p.default\cookies.txt -> TrackingCookie.Trafficmp : Cleaned with backup (quarantined).
:mozilla.245:C:\Documents and Settings\AJIT BARNWAL\Application Data\Mozilla\Firefox\Profiles\4t60ve8p.default\cookies.txt -> TrackingCookie.Trafficmp : Cleaned with backup (quarantined).
:mozilla.246:C:\Documents and Settings\AJIT BARNWAL\Application Data\Mozilla\Firefox\Profiles\4t60ve8p.default\cookies.txt -> TrackingCookie.Trafficmp : Cleaned with backup (quarantined).
:mozilla.247:C:\Documents and Settings\AJIT BARNWAL\Application Data\Mozilla\Firefox\Profiles\4t60ve8p.default\cookies.txt -> TrackingCookie.Trafficmp : Cleaned with backup (quarantined).
:mozilla.248:C:\Documents and Settings\AJIT BARNWAL\Application Data\Mozilla\Firefox\Profiles\4t60ve8p.default\cookies.txt -> TrackingCookie.Trafficmp : Cleaned with backup (quarantined).
:mozilla.249:C:\Documents and Settings\AJIT BARNWAL\Application Data\Mozilla\Firefox\Profiles\4t60ve8p.default\cookies.txt -> TrackingCookie.Trafficmp : Cleaned with backup (quarantined).
:mozilla.250:C:\Documents and Settings\AJIT BARNWAL\Application Data\Mozilla\Firefox\Profiles\4t60ve8p.default\cookies.txt -> TrackingCookie.Trafficmp : Cleaned with backup (quarantined).
:mozilla.297:C:\Documents and Settings\AJIT BARNWAL\Application Data\Mozilla\Firefox\Profiles\4t60ve8p.default\cookies.txt -> TrackingCookie.Tribalfusion : Cleaned with backup (quarantined).
:mozilla.298:C:\Documents and Settings\AJIT BARNWAL\Application Data\Mozilla\Firefox\Profiles\4t60ve8p.default\cookies.txt -> TrackingCookie.Tribalfusion : Cleaned with backup (quarantined).
:mozilla.299:C:\Documents and Settings\AJIT BARNWAL\Application Data\Mozilla\Firefox\Profiles\4t60ve8p.default\cookies.txt -> TrackingCookie.Tribalfusion : Cleaned with backup (quarantined).
:mozilla.300:C:\Documents and Settings\AJIT BARNWAL\Application Data\Mozilla\Firefox\Profiles\4t60ve8p.default\cookies.txt -> TrackingCookie.Tribalfusion : Cleaned with backup (quarantined).
:mozilla.301:C:\Documents and Settings\AJIT BARNWAL\Application Data\Mozilla\Firefox\Profiles\4t60ve8p.default\cookies.txt -> TrackingCookie.Tribalfusion : Cleaned with backup (quarantined).
:mozilla.474:C:\Documents and Settings\AJIT BARNWAL\Application Data\Mozilla\Firefox\Profiles\4t60ve8p.default\cookies.txt -> TrackingCookie.Valuead : Cleaned with backup (quarantined).
:mozilla.475:C:\Documents and Settings\AJIT BARNWAL\Application Data\Mozilla\Firefox\Profiles\4t60ve8p.default\cookies.txt -> TrackingCookie.Valuead : Cleaned with backup (quarantined).
:mozilla.476:C:\Documents and Settings\AJIT BARNWAL\Application Data\Mozilla\Firefox\Profiles\4t60ve8p.default\cookies.txt -> TrackingCookie.Valuead : Cleaned with backup (quarantined).
:mozilla.477:C:\Documents and Settings\AJIT BARNWAL\Application Data\Mozilla\Firefox\Profiles\4t60ve8p.default\cookies.txt -> TrackingCookie.Valuead : Cleaned with backup (quarantined).
:mozilla.478:C:\Documents and Settings\AJIT BARNWAL\Application Data\Mozilla\Firefox\Profiles\4t60ve8p.default\cookies.txt -> TrackingCookie.Valuead : Cleaned with backup (quarantined).
:mozilla.479:C:\Documents and Settings\AJIT BARNWAL\Application Data\Mozilla\Firefox\Profiles\4t60ve8p.default\cookies.txt -> TrackingCookie.Valuead : Cleaned with backup (quarantined).
:mozilla.65:C:\Documents and Settings\AJIT BARNWAL\Application Data\Mozilla\Firefox\Profiles\4t60ve8p.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned with backup (quarantined).
:mozilla.66:C:\Documents and Settings\AJIT BARNWAL\Application Data\Mozilla\Firefox\Profiles\4t60ve8p.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned with backup (quarantined).
:mozilla.67:C:\Documents and Settings\AJIT BARNWAL\Application Data\Mozilla\Firefox\Profiles\4t60ve8p.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned with backup (quarantined).
C:\Documents and Settings\AJIT BARNWAL\Cookies\ajit barnwal@ad.yieldmanager[1].txt -> TrackingCookie.Yieldmanager : Cleaned with backup (quarantined).
C:\Documents and Settings\RASHMI BARNWAL\Cookies\rashmi barnwal@ad.yieldmanager[2].txt -> TrackingCookie.Yieldmanager : Cleaned with backup (quarantined).
:mozilla.158:C:\Documents and Settings\AJIT BARNWAL\Application Data\Mozilla\Firefox\Profiles\4t60ve8p.default\cookies.txt -> TrackingCookie.Zedo : Cleaned with backup (quarantined).
:mozilla.159:C:\Documents and Settings\AJIT BARNWAL\Application Data\Mozilla\Firefox\Profiles\4t60ve8p.default\cookies.txt -> TrackingCookie.Zedo : Cleaned with backup (quarantined).
:mozilla.160:C:\Documents and Settings\AJIT BARNWAL\Application Data\Mozilla\Firefox\Profiles\4t60ve8p.default\cookies.txt -> TrackingCookie.Zedo : Cleaned with backup (quarantined).
C:\WINDOWS\system32\redist.dll -> Trojan.Agent.sx : Cleaned with backup (quarantined).
C:\WINDOWS\system32\redistributor.exe -> Trojan.Agent.sx : Cleaned with backup (quarantined).


::Report end
***********************************************************************

HiJackThis log
-----------------------------------------------
Logfile of HijackThis v1.99.1
Scan saved at 5:20:07 PM, on 8/12/2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\System32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Windows Defender\MsMpEng.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\acs.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\ewido anti-spyware 4.0\guard.exe
c:\sdwork\issimsvc.exe
C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\wltrysvc.exe
C:\WINDOWS\System32\MsPMSPSv.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\System32\bcmwltry.exe
C:\Program Files\Hewlett-Packard\HP Software Update\HPWuSchd2.exe
C:\Program Files\HP\hpcoretech\hpcmpmgr.exe
C:\Program Files\Common Files\soft602\pdfSaver.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\Roxio\Easy CD Creator 6\DragToDisc\DrgToDsc.exe
C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
C:\Program Files\Windows Defender\MSASCui.exe
C:\kybrdff_9.exe
C:\Program Files\ewido anti-spyware 4.0\ewido.exe
C:\Program Files\PDF\pdfSaver\pdfSaver3.exe
C:\Program Files\Common Files\Ahead\lib\NMBgMonitor.exe
C:\Program Files\D-Link\AirPlus G Wireless Adapter Utility\AirPlus.exe
C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqgalry.exe
C:\Program Files\Trend Micro\Tmas\Tmas.exe
C:\WINDOWS\System32\wbem\wmiapsrv.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\WINDOWS\system32\wuauclt.exe
C:\HijackThis\HijackThis.exe

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page =
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://us8l.hpwis.com/
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = http://proxy.att.com:8000
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: Yahoo! IE Services Button - {5BAB4B5B-68BC-4B02-94D6-2FC0DE4A7897} - C:\Program Files\Yahoo!\Common\yiesrvc.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll
O2 - BHO: Ozbyq Class - {D623BC2F-A58D-4A75-A10D-CC244A702A35} - C:\WINDOWS\system32\xeymi.dll (file missing)
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll
O4 - HKLM\..\Run: [HP Software Update] "C:\Program Files\Hewlett-Packard\HP Software Update\HPWuSchd2.exe"
O4 - HKLM\..\Run: [HP Component Manager] "C:\Program Files\HP\hpcoretech\hpcmpmgr.exe"
O4 - HKLM\..\Run: [602PC SUITE PDF Saver] "C:\Program Files\Common Files\soft602\pdfSaver.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [Cpqset] C:\Program Files\HPQ\Default Settings\cpqset.exe
O4 - HKLM\..\Run: [RoxioEngineUtility] "C:\Program Files\Common Files\Roxio Shared\System\EngUtil.exe"
O4 - HKLM\..\Run: [RoxioDragToDisc] "C:\Program Files\Roxio\Easy CD Creator 6\DragToDisc\DrgToDsc.exe"
O4 - HKLM\..\Run: [UpdateManager] "C:\Program Files\Common Files\Sonic\Update Manager\sgtray.exe" /r
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe"
O4 - HKLM\..\Run: [NeroFilterCheck] "C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe"
O4 - HKLM\..\Run: [Windows Defender] "C:\Program Files\Windows Defender\MSASCui.exe" -hide
O4 - HKLM\..\Run: [ISSI EZUpdate Service] "c:\sdwork\issimsvc.exe"
O4 - HKLM\..\Run: [keyboard] C:\\kybrdff_9.exe
O4 - HKLM\..\Run: [!ewido] "C:\Program Files\ewido anti-spyware 4.0\ewido.exe" /minimized
O4 - HKLM\..\Run: [k6mmN5IOU] "C:\WINDOWS\system32\wfxqhv.exe"
O4 - HKCU\..\Run: [pdfSaver3] "c:\Program Files\PDF\pdfSaver\pdfSaver3.exe"
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Common Files\Ahead\lib\NMBgMonitor.exe"
O4 - HKCU\..\Run: [Aaou] "C:\WINDOWS\SEMBLY~1\dvdplay.exe" -vt yazr
O4 - HKCU\..\Run: [kizf] C:\PROGRA~1\COMMON~1\kizf\kizfm.exe
O4 - HKCU\..\Run: [Acprdw] C:\PROGRA~1\COMMON~1\YMANTE~1\javaw.exe
O4 - Startup: SpySubtract.lnk = C:\Program Files\InterMute\SpySubtract\SpySub.exe
O4 - Startup: Trend Micro Anti-Spyware.lnk = C:\Program Files\Trend Micro\Tmas\Tmas.exe
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: D-Link AirPlus G Wireless Utility.lnk = ?
O4 - Global Startup: D-Link REG Utility.lnk = ?
O4 - Global Startup: HP Image Zone Fast Start.lnk = C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqthb08.exe
O4 - Global Startup: Trend Micro Anti-Spyware.lnk = C:\Program Files\Trend Micro\Tmas\Tmas.exe
O8 - Extra context menu item: &AOL Toolbar search - res://C:\Program Files\AOL Toolbar\toolbar.dll/SEARCH.HTML
O8 - Extra context menu item: &WordWeb... - res://C:\WINDOWS\wweb32.dll/lookup.html
O8 - Extra context menu item: &Yahoo! Search - file:///C:\Program Files\Yahoo!\Common/ycsrch.htm
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~4\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: Yahoo! &Dictionary - file:///C:\Program Files\Yahoo!\Common/ycdict.htm
O8 - Extra context menu item: Yahoo! &Maps - file:///C:\Program Files\Yahoo!\Common/ycmap.htm
O8 - Extra context menu item: Yahoo! &SMS - file:///C:\Program Files\Yahoo!\Common/ycsms.htm
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra button: Yahoo! Services - {5BAB4B5B-68BC-4B02-94D6-2FC0DE4A7897} - C:\Program Files\Yahoo!\Common\yiesrvc.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~4\OFFICE11\REFIEBAR.DLL
O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\System32\Shdocvw.dll
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O10 - Unknown file in Winsock LSP: c:\avantail\connect\asnsp.dll
O10 - Unknown file in Winsock LSP: c:\avantail\connect\aslsp.dll
O10 - Unknown file in Winsock LSP: c:\avantail\connect\aslsp.dll
O10 - Unknown file in Winsock LSP: c:\avantail\connect\aslsp.dll
O14 - IERESET.INF: START_PAGE_URL=http://us8l.hpwis.com
O16 - DPF: {01113300-3E00-11D2-8470-0060089874ED} - http://activation.rr...oad/tgctlcm.cab
O16 - DPF: {0246ECA8-996F-11D1-BE2F-00A0C9037DFE} (TDServer Control) - http://www.aajtak.co...er/tdserver.cab
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft....738&clcid=0x409
O16 - DPF: {5526B4C6-63D6-41A1-9783-0FABF529859A} - http://cabs.elitemed...s/mediaview.cab
O16 - DPF: {95EEE69E-27B4-4D13-BD32-766617A16909} (NDTVVideo.MPlayer) - http://www.ndtv.com/...TVseekvideo.CAB
O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) - http://acs.pandasoft...free/asinst.cab
O16 - DPF: {A8683C98-5341-421B-B23C-8514C05354F1} (FujifilmUploader Class) - http://photo.walmart...ploadClient.cab
O16 - DPF: {AB86CE53-AC9F-449F-9399-D8ABCA09EC09} (Get_ActiveX Control) - https://h17000.www1....loadManager.ocx
O16 - DPF: {B9191F79-5613-4C76-AA2A-398534BB8999} - http://us.dl1.yimg.c...utocomplete.cab
O16 - DPF: {B942A249-D1E7-4C11-98AE-FCB76B08747F} (RealArcadeRdxIE Class) - http://games-dl.real...ArcadeRdxIE.cab
O16 - DPF: {C5E28B9D-0A68-4B50-94E9-E8F6B4697514} (NsvPlayX Control) - http://www.nullsoft....ayx_vp3_mp3.cab
O16 - DPF: {F5C90925-ABBF-4475-88F5-8622B452BA9E} (Compaq System Data Class) - http://h30155.www3.h...rt/SysQuery.cab
O16 - DPF: {FE0BD779-44EE-4A4B-AA2E-743C63F2E5E6} (IWinAmpActiveX Class) - http://pdl.stream.ao.../ampx_en_dl.cab
O20 - AppInit_DLLs: repairs303169590.dll C:\WINDOWS\system32\regsvr32.dll
O20 - Winlogon Notify: BITS - C:\WINDOWS\system32\kedes.dll (file missing)
O20 - Winlogon Notify: Hints - C:\WINDOWS\system32\csmcat.dll (file missing)
O20 - Winlogon Notify: RunOnce - C:\WINDOWS\system32\bgowselc.dll (file missing)
O20 - Winlogon Notify: SideBySide - C:\WINDOWS\system32\hmetcfg.dll (file missing)
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O20 - Winlogon Notify: WRNotifier - WRLogonNTF.dll (file missing)
O23 - Service: Atheros Configuration Service (ACS) - Unknown owner - C:\WINDOWS\system32\acs.exe
O23 - Service: Ati HotKey Poller - Unknown owner - C:\WINDOWS\System32\Ati2evxx.exe
O23 - Service: ewido anti-spyware 4.0 guard - Anti-Malware Development a.s. - C:\Program Files\ewido anti-spyware 4.0\guard.exe
O23 - Service: HP WMI Interface (hpqwmi) - Hewlett-Packard Development Company, L.P. - C:\Program Files\HPQ\SHARED\HPQWMI.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: ISSI EZUpdate (ISSIMon) - IBM Global Services - c:\sdwork\issimsvc.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
O23 - Service: SoundMAX Agent Service (SoundMAX Agent Service (default)) - Analog Devices, Inc. - C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
O23 - Service: WLTRYSVC - Unknown owner - C:\WINDOWS\System32\wltrysvc.exe

---------------------------------------------------

Thanks for the help,
Ajit
  • 0






Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP