I posted the Highjack this log, as well as the uninstall list, active scan log, and superantispyware log.
Logfile of HijackThis v1.99.1
Scan saved at 9:17:50 PM, on 12/13/2006
Platform: Windows XP SP1 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\System32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Ahead\InCD\InCDsrv.exe
C:\WINDOWS\system32\LEXBCES.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\LEXPPS.EXE
C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\Program Files\ewido\security suite\ewidoctrl.exe
C:\Program Files\Norton AntiVirus\navapsvc.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\wanmpsvc.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
C:\Program Files\Common Files\Symantec Shared\ccApp.exe
C:\Program Files\eM\Bay Reader\Shwicon2k.exe
C:\Program Files\Lexmark 2200 Series\lxbvbmgr.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\Lexmark 2200 Series\lxbvbmon.exe
C:\Program Files\dvd43\dvd43_tray.exe
C:\Program Files\Ahead\InCD\InCD.exe
C:\Program Files\Common Files\Symantec Shared\Security Center\UsrPrmpt.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Common Files\AOL\1128345755\ee\AOLHostManager.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\Java\jre1.5.0_08\bin\jusched.exe
C:\Program Files\BellSouth\Alert Manager\BellSouthAlertManager.exe
C:\Program Files\Common Files\AOL\1128345755\ee\AOLServiceHost.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\TrojanHunter 4.6\THGuard.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
C:\PROGRA~1\Ahead\Ahead\data\Xtras\mssysmgr.exe
C:\Documents and Settings\Melinda Roman\Application Data\??sks\?hkntfs.exe
C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
C:\Program Files\BigFix\BigFix.exe
C:\Program Files\WinZip\WZQKPICK.EXE
C:\Program Files\Support.com\bin\tgcmd.exe
C:\WINDOWS\System32\wuauclt.exe
C:\WINDOWS\System32\wuauclt.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\PROGRA~1\Yahoo!\COMPAN~1\Installs\cpn0\YTBSDK.exe
C:\Documents and Settings\Melinda Roman\Desktop\HijackThis.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://home.bellsouth.net/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.yahoo.com
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.yahoo.com
R3 - URLSearchHook: (no name) - {BCD4B7B6-060C-7188-74F0-02457C7B70C4} - C:\WINDOWS\System32\surya.dll
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll
O2 - BHO: (no name) - {4D1C4E81-A32A-416b-BCDB-33B3EF3617D3} - (no file)
O2 - BHO: BellSouth Toolbar - {4E7BD74F-2B8D-469E-8CBD-FD60BB9AAE2E} - C:\PROGRA~1\BLSTOO~1\BLSTOO~1.DLL
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_08\bin\ssv.dll
O2 - BHO: AOL Toolbar Launcher - {7C554162-8CB7-45A4-B8F4-8EA1C75885F9} - C:\Program Files\AOL\AOL Toolbar 2.0\aoltb.dll
O2 - BHO: (no name) - {BCD4B7B6-060C-7188-74F0-02457C7B70C4} - C:\WINDOWS\System32\surya.dll
O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\System32\msdxm.ocx
O3 - Toolbar: AOL Toolbar - {DE9C389F-3316-41A7-809B-AA305ED9D922} - C:\Program Files\AOL\AOL Toolbar 2.0\aoltb.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll
O3 - Toolbar: BellSouth Toolbar - {4E7BD74F-2B8D-469E-8CBD-FD60BB9AAE2E} - C:\PROGRA~1\BLSTOO~1\BLSTOO~1.DLL
O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Common Files\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [ccRegVfy] "C:\Program Files\Common Files\Symantec Shared\ccRegVfy.exe"
O4 - HKLM\..\Run: [showicon2k] C:\Program Files\\eM\Bay Reader\Shwicon2k.exe
O4 - HKLM\..\Run: [Lexmark 2200 Series] "C:\Program Files\Lexmark 2200 Series\lxbvbmgr.exe"
O4 - HKLM\..\Run: [Symantec NetDriver Monitor] C:\PROGRA~1\SYMNET~1\SNDMon.exe /Consumer
O4 - HKLM\..\Run: [dvd43] C:\Program Files\dvd43\dvd43_tray.exe
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [InCD] C:\Program Files\Ahead\InCD\InCD.exe
O4 - HKLM\..\Run: [HostManager] C:\Program Files\Common Files\AOL\1128345755\ee\AOLHostManager.exe
O4 - HKLM\..\Run: [SSC_UserPrompt] C:\Program Files\Common Files\Symantec Shared\Security Center\UsrPrmpt.exe
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [SemanticInsight] C:\Program Files\RXToolBar\Semantic Insight\SemanticInsight.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.5.0_08\bin\jusched.exe"
O4 - HKLM\..\Run: [BellSouthAlertManager.exe] C:\Program Files\BellSouth\Alert Manager\BellSouthAlertManager.exe
O4 - HKLM\..\Run: [tgcmd] "C:\Program Files\Support.com\BellSouth\hcenter.exe" /starthidden /tgcmdwrapper
O4 - HKLM\..\Run: [was_check] C:\Program Files\ErrorSafe Free\PASmon.exe
O4 - HKLM\..\Run: [UERScw] C:\Program Files\ErrorSafe Free\UERScw.exe -c
O4 - HKLM\..\Run: [THGuard] "C:\Program Files\TrojanHunter 4.6\THGuard.exe"
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [PhotoShow Deluxe Media Manager] C:\PROGRA~1\Ahead\Ahead\data\Xtras\mssysmgr.exe
O4 - HKCU\..\Run: [ffwf] C:\PROGRA~1\COMMON~1\ffwf\ffwfm.exe
O4 - HKCU\..\Run: [Kdtn] C:\Documents and Settings\Melinda Roman\Application Data\??sks\?hkntfs.exe
O4 - HKCU\..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
O4 - HKCU\..\Run: [Usrr] "C:\WINDOWS\TSKS~1\ping.exe" -vt ndrv
O4 - Global Startup: BigFix.lnk = C:\Program Files\BigFix\BigFix.exe
O4 - Global Startup: WinZip Quick Pick.lnk = C:\Program Files\WinZip\WZQKPICK.EXE
O8 - Extra context menu item: &AOL Toolbar Search - c:\program files\aol\aol toolbar 2.0\resources\en-US\local\search.html
O8 - Extra context menu item: &Search - http://kl.bar.need2f...earch.html?p=KL
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MI1933~1\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: AOL Toolbar - {3369AF0D-62E9-4bda-8103-B4C75499B578} - C:\Program Files\AOL\AOL Toolbar 2.0\aoltb.dll
O9 - Extra button: ICQ - {6224f700-cba3-4071-b251-47cb894244cd} - C:\Program Files\ICQ\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ - {6224f700-cba3-4071-b251-47cb894244cd} - C:\Program Files\ICQ\ICQ.exe
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MI1933~1\OFFICE11\REFIEBAR.DLL
O9 - Extra button: AIM - {AC9E2541-2814-11d5-BC6D-00B0D0A1DE45} - C:\Program Files\aim\aim.exe
O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\System32\Shdocvw.dll
O12 - Plugin for .spop: C:\Program Files\Internet Explorer\Plugins\NPDocBox.dll
O14 - IERESET.INF: START_PAGE_URL=http://www.emachines.com
O16 - DPF: {01118A01-3E00-11D2-8470-0060089874ED} (SupportSoft Script Runner Class) - https://password.bel...oad/tgctlsr.cab
O16 - DPF: {30528230-99F7-4BB4-88D8-FA1D4F56A2AB} (YInstStarter Class) - http://us.dl1.yimg.c...nst20040510.cab
O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) - http://acs.pandasoft...free/asinst.cab
O18 - Filter: text/html - (no CLSID) - (no file)
O20 - Winlogon Notify: !SASWinLogon - C:\Program Files\SUPERAntiSpyware\SASWINLO.dll
O23 - Service: Ati HotKey Poller - Unknown owner - C:\WINDOWS\System32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: AVG Anti-Spyware Guard - Anti-Malware Development a.s. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe
O23 - Service: Symantec Password Validation Service (ccPwdSvc) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccPwdSvc.exe
O23 - Service: ewido security suite control - ewido networks - C:\Program Files\ewido\security suite\ewidoctrl.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: InCD Helper (InCDsrv) - Ahead Software AG - C:\Program Files\Ahead\InCD\InCDsrv.exe
O23 - Service: iPodService - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: LexBce Server (LexBceS) - Lexmark International, Inc. - C:\WINDOWS\system32\LEXBCES.EXE
O23 - Service: Norton AntiVirus Auto Protect Service (navapsvc) - Symantec Corporation - C:\Program Files\Norton AntiVirus\navapsvc.exe
O23 - Service: ScriptBlocking Service (SBService) - Symantec Corporation - C:\PROGRA~1\COMMON~1\SYMANT~1\SCRIPT~1\SBServ.exe
O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\SNDSrvc.exe
O23 - Service: SymWMI Service (SymWSC) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\Security Center\SymWSC.exe
O23 - Service: WAN Miniport (ATW) Service (WANMiniportService) - America Online, Inc. - C:\WINDOWS\wanmpsvc.exe
Uninstall List
Ad-Aware SE Personal
Adobe Acrobat 5.0
America Online
AOL Coach Version 1.0(Build:20020823.1)
AOL Explorer
AOL Instant Messenger
AOL Toolbar 2.0
ATI - Software Uninstall Utility
ATI Control Panel
ATI Display Driver
AVG Anti-Spyware 7.5
BellSouth FastAccess DSL Help Center
BellSouth Internet Security - Alert Manager 1.3.20
BellSouth Messenger
BellSouth Toolbar 1.0
BigFix
CleanUp!
CompuServe
Conexant SoftK56 Modem(M)
DVD43 v3.5.2
DVDXCopy Xpress 3.0.2
eMachines Bay Reader V1.00
ewido security suite
HijackThis 1.99.1
ICQ
InCD EasyWrite Reader
Internet Explorer Q822925
iPod for Windows 2006-03-23
iTunes
J2SE Runtime Environment 5.0 Update 8
Java 2 Runtime Environment Standard Edition v1.3.1
Java 2 Runtime Environment Standard Edition v1.3.1_02
Lexmark 2200 Series
LiveReg (Symantec Corporation)
LiveUpdate 2.6 (Symantec Corporation)
Macromedia Flash Player 8
Microsoft Encarta 98 Encyclopedia
Microsoft Money 2004
Microsoft Money 2004 System Pack
Microsoft Office Professional Edition 2003
Microsoft Works 7.0
Need2Find Bar
Nero PhotoShow Express
Nero Suite
Netscape 6 (6.2.1)
Norton AntiVirus 2003
Norton Spyware Scan provided by Yahoo!
Norton WMI Update
Outlook Express Update Q330994
Panda ActiveScan
PowerDVD
QuickTime
RealPlayer Basic
Realtek AC'97 Audio
Spybot - Search & Destroy 1.4
SpywareBlaster v3.4
SUPERAntiSpyware Free Edition
The Sims 2
The Sims 2 Nightlife
TrojanHunter 4.6
Viewpoint Media Player
Winamp (remove only)
Windows Backup Utility
WinZip
Yahoo! Toolbar for Internet Explorer
ActiveScan
Incident Status Location
Potentially unwanted tool:application/regclean32 Not disinfected C:\Documents and Settings\Melinda Roman\Desktop\Click to Find and Fix Errors.url
Potentially unwanted tool:application/bestoffer Not disinfected c:\windows\smdat32m.sys
Adware:adware/maxifiles Not disinfected c:\program files\common files\Download
Potentially unwanted tool:application/need2find Not disinfected c:\program files\Need2Find
Adware:adware/elitebar Not disinfected C:\Documents and Settings\Melinda Roman\Favorites\Casino & Carrers
Adware:adware/cydoor Not disinfected c:\windows\cdmxtras
Potentially unwanted tool:application/altnet Not disinfected hkey_local_machine\software\microsoft\windows\currentversion\app management\arpcache\AltnetDM
Spyware:Cookie/Entrepreneur Not disinfected C:\Documents and Settings\Melinda Roman\Cookies\melinda roman@entrepreneur[1].txt
Spyware:Cookie/ErrorSafe Not disinfected C:\Documents and Settings\Melinda Roman\Cookies\melinda roman@errorsafe[1].txt
Adware:Adware/PurityScan Not disinfected C:\Documents and Settings\Melinda Roman\Local Settings\Temporary Internet Files\Content.IE5\Y8IST3MW\!update-4295[1].0000
Adware:Adware/Mytoolbar Not disinfected C:\Program Files\Common Files\{3CDE911A-07D0-1033-0203-040307230001}\Uninstall.exe
Potentially unwanted tool:Application/Zango Not disinfected C:\Program Files\Netscape\Netscape 6\Plugins\npclntax.dll
Potentially unwanted tool:Application/Need2Find Not disinfected C:\Program Files\TrojanHunter 4.6\Quarantine\6tJve.dat
Adware:Adware/PurityScan Not disinfected C:\WINDOWS\T?sks\__delete_on_reboot__p_i_n_g_._e_x_e_
SUPERAntiSpyware Scan Log
Generated 12/13/2006 at 08:25 PM
Application Version : 3.4.1000
Core Rules Database Version : 3147
Trace Rules Database Version: 1163
Scan type : Complete Scan
Total Scan Time : 00:31:06
Memory items scanned : 424
Memory threats detected : 3
Registry items scanned : 5760
Registry threats detected : 107
File items scanned : 45861
File threats detected : 70
Adware.ClickSpring-Variant
C:\WINDOWS\TSKS~1\PING.EXE
C:\WINDOWS\TSKS~1\PING.EXE
C:\WINDOWS\Prefetch\PING.EXE-1F312D14.pf
Adware.ClickSpring/Resident
C:\DOCUMENTS AND SETTINGS\MELINDA ROMAN\APPLICATION DATA\??SKS\?HKNTFS.EXE
C:\DOCUMENTS AND SETTINGS\MELINDA ROMAN\APPLICATION DATA\??SKS\?HKNTFS.EXE
Trojan.ErrorSafe
C:\PROGRAM FILES\ERRORSAFE FREE\UERS.EXE
C:\PROGRAM FILES\ERRORSAFE FREE\UERS.EXE
[ErrorSafeFree] C:\PROGRAM FILES\ERRORSAFE FREE\UERS.EXE
C:\Documents and Settings\All Users\Start Menu\Programs\Error Safe Unregistered Version\Contact customer support.lnk
C:\Documents and Settings\All Users\Start Menu\Programs\Error Safe Unregistered Version\Error Safe.lnk
C:\Documents and Settings\All Users\Start Menu\Programs\Error Safe Unregistered Version\ErrorSafe on the Web.lnk
C:\Documents and Settings\All Users\Start Menu\Programs\Error Safe Unregistered Version\Uninstall ErrorSafe.lnk
C:\Documents and Settings\All Users\Start Menu\Programs\Error Safe Unregistered Version
HKCR\FlFxr15.FlFixer15
HKCR\FlFxr15.FlFixer15\Clsid
HKCR\clsid\{f63e3b76-f82f-46eb-851c-8c0a221686bb}
HKCR\clsid\{f63e3b76-f82f-46eb-851c-8c0a221686bb}\InprocServer32
HKCR\clsid\{f63e3b76-f82f-46eb-851c-8c0a221686bb}\InprocServer32#ThreadingModel
HKCR\clsid\{f63e3b76-f82f-46eb-851c-8c0a221686bb}\ProgID
HKCR\clsid\{f63e3b76-f82f-46eb-851c-8c0a221686bb}\TypeLib
HKCR\clsid\{f63e3b76-f82f-46eb-851c-8c0a221686bb}\Version
HKCR\typelib\{f585cb1f-f17d-4007-a573-b663197ef500}
HKCR\typelib\{f585cb1f-f17d-4007-a573-b663197ef500}\1.0
HKCR\typelib\{f585cb1f-f17d-4007-a573-b663197ef500}\1.0\0
HKCR\typelib\{f585cb1f-f17d-4007-a573-b663197ef500}\1.0\0\win32
HKCR\typelib\{f585cb1f-f17d-4007-a573-b663197ef500}\1.0\FLAGS
HKCR\typelib\{f585cb1f-f17d-4007-a573-b663197ef500}\1.0\HELPDIR
C:\DOCUMENTS AND SETTINGS\MELINDA ROMAN\DESKTOP\ERROR SAFE.LNK
C:\WINDOWS\Prefetch\UERS.EXE-0E091C6D.pf
Adware.ClickSpring
[Usrr] C:\WINDOWS\TSKS~1\PING.EXE
Adware.ToolBar888
HKLM\Software\Classes\CLSID\{C004DEC2-2623-438e-9CA2-C9043AB28508}
HKCR\CLSID\{C004DEC2-2623-438E-9CA2-C9043AB28508}
HKCR\CLSID\{C004DEC2-2623-438E-9CA2-C9043AB28508}
HKCR\CLSID\{C004DEC2-2623-438E-9CA2-C9043AB28508}\InprocServer32
HKCR\CLSID\{C004DEC2-2623-438E-9CA2-C9043AB28508}\InprocServer32#ThreadingModel
HKCR\CLSID\{C004DEC2-2623-438E-9CA2-C9043AB28508}\ProgID
HKCR\CLSID\{C004DEC2-2623-438E-9CA2-C9043AB28508}\Programmable
HKCR\CLSID\{C004DEC2-2623-438E-9CA2-C9043AB28508}\TypeLib
HKCR\CLSID\{C004DEC2-2623-438E-9CA2-C9043AB28508}\VersionIndependentProgID
C:\PROGRAM FILES\COMMON FILES\{3CDE911A-07D0-1033-0203-040307230001}\888.DLL
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C004DEC2-2623-438e-9CA2-C9043AB28508}
HKLM\Software\Microsoft\Internet Explorer\Toolbar#{C004DEC2-2623-438e-9CA2-C9043AB28508}
HKCR\LuckyToolBar.LuckyToolBarObj.1
HKCR\LuckyToolBar.LuckyToolBarObj.1\CLSID
HKCR\LuckyToolBar.LuckyToolBarObj
HKCR\LuckyToolBar.LuckyToolBarObj\CLSID
HKCR\LuckyToolBar.LuckyToolBarObj\CurVer
HKCR\TypeLib\{ED0FB633-C311-4bcd-824A-4D345386BE64}
HKCR\TypeLib\{569304BA-83ED-4CFF-AC26-BE3E482F7208}
HKCR\TypeLib\{569304BA-83ED-4CFF-AC26-BE3E482F7208}\1.0
HKCR\TypeLib\{569304BA-83ED-4CFF-AC26-BE3E482F7208}\1.0\0
HKCR\TypeLib\{569304BA-83ED-4CFF-AC26-BE3E482F7208}\1.0\0\win32
HKCR\TypeLib\{569304BA-83ED-4CFF-AC26-BE3E482F7208}\1.0\FLAGS
HKCR\TypeLib\{569304BA-83ED-4CFF-AC26-BE3E482F7208}\1.0\HELPDIR
HKCR\Interface\{C6F2214E-0B54-45A9-B90D-7DD4BA45ED0B}
HKCR\Interface\{C6F2214E-0B54-45A9-B90D-7DD4BA45ED0B}\ProxyStubClsid
HKCR\Interface\{C6F2214E-0B54-45A9-B90D-7DD4BA45ED0B}\ProxyStubClsid32
HKCR\Interface\{C6F2214E-0B54-45A9-B90D-7DD4BA45ED0B}\TypeLib
HKCR\Interface\{C6F2214E-0B54-45A9-B90D-7DD4BA45ED0B}\TypeLib#Version
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\888Bar
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\888Bar#DisplayName
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\888Bar#UninstallString
Adware.Tracking Cookie
C:\Documents and Settings\Melinda Roman\Cookies\melinda [email protected][1].txt
C:\Documents and Settings\Melinda Roman\Cookies\melinda [email protected][1].txt
Unclassified.Unknown Origin
HKCR\CLSID\{4D1C4E81-A32A-416B-BCDB-33B3EF3617D3}
HKCR\CLSID\{4D1C4E81-A32A-416B-BCDB-33B3EF3617D3}\InprocServer32
HKCR\CLSID\{4D1C4E81-A32A-416B-BCDB-33B3EF3617D3}\InprocServer32#ThreadingModel
HKCR\CLSID\{4D1C4E81-A32A-416B-BCDB-33B3EF3617D3}\Programmable
HKCR\CLSID\{4D1C4E81-A32A-416B-BCDB-33B3EF3617D3}\TypeLib
HKCR\CLSID\{4D1C4E89-A32A-416B-BCDB-33B3EF3617D3}
HKCR\CLSID\{4D1C4E89-A32A-416B-BCDB-33B3EF3617D3}\InprocServer32
HKCR\CLSID\{4D1C4E89-A32A-416B-BCDB-33B3EF3617D3}\InprocServer32#ThreadingModel
HKCR\CLSID\{4D1C4E89-A32A-416B-BCDB-33B3EF3617D3}\Programmable
HKCR\CLSID\{4D1C4E89-A32A-416B-BCDB-33B3EF3617D3}\TypeLib
Adware.180solutions/ZangoSearch
HKCR\CLSID\{D676F999-4608-4dc5-A135-4F51F4212739}
HKCR\CLSID\{D676F999-4608-4dc5-A135-4F51F4212739}#rsp
Trojan.Error Safe Free
C:\Program Files\ErrorSafe Free\activate.dat
C:\Program Files\ErrorSafe Free\appupdate.dat
C:\Program Files\ErrorSafe Free\Backup
C:\Program Files\ErrorSafe Free\bnlink.dat
C:\Program Files\ErrorSafe Free\DataBase.sav
C:\Program Files\ErrorSafe Free\dcres.sys
C:\Program Files\ErrorSafe Free\dfres.sys
C:\Program Files\ErrorSafe Free\Download
C:\Program Files\ErrorSafe Free\EmtERSF.exe
C:\Program Files\ErrorSafe Free\err.log
C:\Program Files\ErrorSafe Free\flash.ini
C:\Program Files\ErrorSafe Free\FlFxr15.dll
C:\Program Files\ErrorSafe Free\FRec.dll
C:\Program Files\ErrorSafe Free\FWraper.dll
C:\Program Files\ErrorSafe Free\FxCore.dll
C:\Program Files\ErrorSafe Free\InstHelp.exe
C:\Program Files\ErrorSafe Free\lapv.dat
C:\Program Files\ErrorSafe Free\license.rtf
C:\Program Files\ErrorSafe Free\lock.dat
C:\Program Files\ErrorSafe Free\Mp3DB
C:\Program Files\ErrorSafe Free\MpegDB
C:\Program Files\ErrorSafe Free\PASmon.exe
C:\Program Files\ErrorSafe Free\Program.sav
C:\Program Files\ErrorSafe Free\pv.dat
C:\Program Files\ErrorSafe Free\Repaired
C:\Program Files\ErrorSafe Free\resource.xml
C:\Program Files\ErrorSafe Free\sr.log
C:\Program Files\ErrorSafe Free\ssysdll.dll
C:\Program Files\ErrorSafe Free\support.url
C:\Program Files\ErrorSafe Free\Tasks\PT.INI
C:\Program Files\ErrorSafe Free\Tasks
C:\Program Files\ErrorSafe Free\trace.log
C:\Program Files\ErrorSafe Free\uers.url
C:\Program Files\ErrorSafe Free\unins000.dat
C:\Program Files\ErrorSafe Free\unins000.exe
C:\Program Files\ErrorSafe Free\up.dat
C:\Program Files\ErrorSafe Free\update.log
C:\Program Files\ErrorSafe Free\updater.dat
C:\Program Files\ErrorSafe Free\Updater.exe
C:\Program Files\ErrorSafe Free\WaveDB
C:\Program Files\ErrorSafe Free\wsres.sys
C:\Program Files\ErrorSafe Free\__delete_on_reboot__M_M_F_x_._d_l_l_
C:\Program Files\ErrorSafe Free
HKU\S-1-5-21-1214970204-3266471654-2512236806-1006\Software\Error Safe Free
HKLM\Software\Error Safe Free
HKLM\Software\Error Safe Free#EulUERS_9999_N91S2507
HKLM\Software\Error Safe Free#ProductCode
HKLM\Software\Error Safe Free#mxhrs
HKLM\Software\Error Safe Free#inst_t_yr
HKLM\Software\Error Safe Free#Abbr
HKLM\Software\Error Safe Free#InstallPath
HKLM\Software\Error Safe Free#ActivationCode
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\UERS_is1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\UERS_is1#Inno Setup: Setup Version
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\UERS_is1#Inno Setup: App Path
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\UERS_is1#InstallLocation
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\UERS_is1#Inno Setup: Icon Group
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\UERS_is1#Inno Setup: User
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\UERS_is1#DisplayName
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\UERS_is1#UninstallString
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\UERS_is1#QuietUninstallString
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\UERS_is1#Publisher
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\UERS_is1#URLInfoAbout
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\UERS_is1#HelpLink
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\UERS_is1#URLUpdateInfo
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\UERS_is1#NoModify
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\UERS_is1#NoRepair
C:\WINDOWS\Prefetch\UPDATER.EXE-3ADE0C1B.pf
Trojan.WinFixer 2006
HKCR\FWraper.FFEnginWraper
HKCR\FWraper.FFEnginWraper\CLSID
HKCR\FWraper.FFEnginWraper\CurVer
HKCR\FWraper.FFEnginWraper.1
HKCR\FWraper.FFEnginWraper.1\CLSID
HKCR\FxCore.MMFixCore
HKCR\FxCore.MMFixCore\CLSID
HKCR\FxCore.MMFixCore\CurVer
HKCR\FxCore.MMFixCore.1
HKCR\FxCore.MMFixCore.1\CLSID
HKCR\MMFxCtrl.CoFixEngine
HKCR\MMFxCtrl.CoFixEngine\CLSID
HKCR\MMFxCtrl.CoFixEngine\CurVer
HKCR\MMFxCtrl.CoFixEngine.1
HKCR\MMFxCtrl.CoFixEngine.1\CLSID
Adware.Avenue Media/Internet Optimizer
HKU\S-1-5-21-1214970204-3266471654-2512236806-1006\Software\Microsoft\Internet Explorer\URLSearchHooks#_{CFBFAE00-17A6-11D0-99CB-00C04FD64497}
Adware.ClickSpring/Yazzle
HKLM\Software\Cowabanga
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Cowabanga
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Cowabanga#DisplayName
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Cowabanga#UninstallString
C:\Program Files\Cowabanga\Cowabanga.exe
C:\Program Files\Cowabanga\License.txt
C:\Program Files\Cowabanga\uninstaller.exe
C:\Program Files\Cowabanga
Adware.IPWins
HKU\S-1-5-21-1214970204-3266471654-2512236806-1006\Software\IpWins
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\IpWins
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\IpWins#DisplayName
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\IpWins#UninstallString
C:\Program Files\ipwins
Adware.Unknown Origin
C:\PROGRAM FILES\COMMON FILES\FFWF\FFWFD\CLASS-BARREL
Unclassified.Unknown Origin/System
C:\PROGRAM FILES\COMMON FILES\FFWF\FFWFD\FFWFC.DLL
Trojan.Hacktool
C:\PROGRAM FILES\COMMON FILES\{3CDE911A-07D0-1033-0203-040307230001}\{5CDE911A-07D0-1033-0203-040307230001}\SYSTEM.DLL
Trojan.Update-Mcboo
C:\PROGRAM FILES\COMMON FILES\{3CDE911A-07D0-1033-0203-040307230001}\{5CDE911A-07D0-1033-0203-040307230001}\UPDATE.EXE
Adware.Shorty
C:\PROGRAM FILES\HIJACKTHIS\BACKUPS\BACKUP-20051006-032544-300.DLL
Trojan.Unknown Origin
C:\SYSTEM VOLUME INFORMATION\_RESTORE{EEB1894C-121B-4525-8B10-95B9D6B6AFD8}\RP2\A0000010.EXE
TargetSaver, Inc. Process
C:\WINDOWS\SYSTEM32\TSUNINST.EXE