[gary1989]

AVG Anti-Spyware - Scan Report
---------------------------------------------------------

+ Created at: 15:33:20 06/03/2007

+ Scan result:



C:\System Volume Information\_restore{430DE976-F7EF-4BC4-9D60-6A5715D1C0BD}\RP114\A0058987.dll -> Adware.Solution : No action taken.
C:\System Volume Information\_restore{430DE976-F7EF-4BC4-9D60-6A5715D1C0BD}\RP171\A0129702.exe -> Backdoor.EggDrop.v : No action taken.
C:\onoes.exe -> Backdoor.EggDrop.v : No action taken.
C:\System Volume Information\_restore{430DE976-F7EF-4BC4-9D60-6A5715D1C0BD}\RP153\A0108522.exe -> Dropper.VB.lu : No action taken.
C:\System Volume Information\_restore{430DE976-F7EF-4BC4-9D60-6A5715D1C0BD}\RP171\A0128708.exe -> Dropper.VB.lu : No action taken.
C:\System Volume Information\_restore{430DE976-F7EF-4BC4-9D60-6A5715D1C0BD}\RP171\A0129708.exe -> Dropper.VB.lu : No action taken.
C:\System Volume Information\_restore{430DE976-F7EF-4BC4-9D60-6A5715D1C0BD}\RP171\A0129754.exe -> Dropper.VB.lu : No action taken.
C:\Documents and Settings\computer\Complete\- Select one -.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\computer\Complete\10 Unwealthy Habits Ebook From ChangThis.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\computer\Complete\2006 dvdrip.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\computer\Complete\2007 dvdrip.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\computer\Complete\24 S06E12 HDTV XviD-XOR [eztv].zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\computer\Complete\24 S06E12 HR HDTV XviD-CTU [eztv].zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\computer\Complete\24 s06.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\computer\Complete\24.S06E12.HDTV.XviD-XOR - (torrential.kicks-[bleep].org).zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\computer\Complete\Advanced search.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\computer\Complete\Ask the Dust (2006)[DVDRip][RMVB] { www IPTorrents com }.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\computer\Complete\Autocad 2007 Incl Crack.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\computer\Complete\Berryz Koubou - VERY BEAUTY.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\computer\Complete\Bibliografia Michael Connelly by Tabor[Colombo-bt.org].zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\computer\Complete\Blood Diamond DVDRip XviD ViTE { www IPTorrents com }.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\computer\Complete\Browse categories.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\computer\Complete\Casino Royale NTSC REPACK MULTi DVDR-CASINOROYALE.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\computer\Complete\Classical Greek Love Poetry.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\computer\Complete\Classical Love Poetry Latin Verse.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\computer\Complete\Commodore 64 Games (cracked and cheats).zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\computer\Complete\Copyright policy.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\computer\Complete\Day Break S01E13 WEBRIP DivX-CLiFFHaNGeR [eztv].zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\computer\Complete\Dick Sutphen - Psychic Development Course.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\computer\Complete\Discovery The Lost Tomb Of Jesus WS DSRip XviD-aAF.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\computer\Complete\Do Make Say Think - Winter Hymn Country Hymn Secret Hymn [2003].zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\computer\Complete\Do Make Say Think - You, You're A History In Rust [2007].zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\computer\Complete\Drawing Tutorials by Priest.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\computer\Complete\Elis - Griefshire [Digipack] [2006].zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\computer\Complete\Empowerment of Communication - 20070305 by 13 akbal.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\computer\Complete\Encyclopedia of Card Tricks.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\computer\Complete\Enter Shikari Take to the Skies FULL ALBUM NOT RELEASED UNTIL 19th MARCH! x-Demonoid com-x 244921 09.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\computer\Complete\Extra server power....zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\computer\Complete\Fissures French DvdScreen Www Torrentofile Com-Practice-.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\computer\Complete\Flags Of Our Fathers[2006]DvDrip[Eng]-aXXo.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\computer\Complete\Grand Theft Auto Vice City Stories PSP UMDRIP EUR [solops2.com].zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\computer\Complete\Hackers 3 - Antitrust.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\computer\Complete\Hannibal Rising REPACK R5 XViD-FuZe.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\computer\Complete\Heroes S01E18 720p HDTV x264-BlueTV [eztv].zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\computer\Complete\How to Boost Your Torrent Download Speeds (Video Tutorial).zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\computer\Complete\Howard Stern 03.05.2007 + Wrap Up + News 56k CF.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\computer\Complete\Howard Stern 03.05.2007 + Wrap Up + News 64k CF.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\computer\Complete\Korn - Unplugged (2007) - Acoustic.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\computer\Complete\Kristen Kreuk Pics & Wallpaper.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\computer\Complete\Kyoshiro to Towa no Sora - 09 [Ayako][8F554D69] avi.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\computer\Complete\La Stampa martedi 6 marzo 2007[divxitalia.info.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\computer\Complete\Le Monde 060307.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\computer\Complete\MS Office 2007 Enterprise English.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\computer\Complete\MiCROSOFT OFFiCE ENTREPRiSE 2007 FRENCH iSO-ENGiNE.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\computer\Complete\Microsoft Office 2007 keygen.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\computer\Complete\Microsoft Windows Vista Ultimate X86 © Microsoft KEYGEN + NOACTIVATION.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\computer\Complete\Nero 7 Premium Reloaded v 7.5.9.1 MULTiLANGUAGE RESTORE.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\computer\Complete\Omarion 21 KW top 40.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\computer\Complete\Opie and Anthony 2007-03-05-O&A CF64k mp3.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\computer\Complete\PS2DVD GTA Vice City Stories [WwW PepeDivx CoM].zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\computer\Complete\Phonograph - Phonograph [2007].zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\computer\Complete\Prison Break 2x19 (HDTV-XOR) [VTV].zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\computer\Complete\Prison Break S02E19 HDTV XviD-XOR [eztv].zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\computer\Complete\Prison Break S02E19 HR HDTV XviD-CTU [eztv].zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\computer\Complete\Privacy policy.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\computer\Complete\SEO Made Easy.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\computer\Complete\Search cloud.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\computer\Complete\Search options.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\computer\Complete\Show all of today.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\computer\Complete\Sid Meiers Railroads DVD-DEViANCE.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\computer\Complete\Stranger Than Fiction (2006) DVDRip { www IPTorrents com }.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\computer\Complete\Super Tv Internet more than 2500 channels (like sky or directv).zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\computer\Complete\SuperFoods HealthStyle (Proven Strategies For Lifelong Health).zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\computer\Complete\TV shows.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\computer\Complete\Test Drive Unlimited CLONEDvD MuLTi7-TXT.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\computer\Complete\The Bittorrent Bible A Concise Guide.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\computer\Complete\The Class S01E19 HDTV XviD-XOR [eztv].zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\computer\Complete\The Colbert Report 03.05.07 (DSRip-FpN)[VTV].zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\computer\Complete\The Penn Jillette Radio Show COMPLETE.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\computer\Complete\Tortuga Two Treasures-RELOADED.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\computer\Complete\Trinity Blood - 24 - Crowne of Thorns II - The Oath of Lord{C_P}.avi.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\computer\Complete\Upload a torrent.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\computer\Complete\Vista All OneClick Activator PARADOX.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\computer\Complete\Vista Wallpapers (All Resolutions).zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\computer\Complete\Wild Hogs 2007 CAM XviD CAMERA { www IPTorrents com }.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\computer\Complete\Windows Vista Keygen.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\computer\Complete\Winzip 11 with working Pro and Standard Keys.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\computer\Complete\YouTube Video Ripper.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\computer\Complete\[BitTorment net] Super Swing Golf Wii NTSC USA.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\computer\Complete\[IY-F] NANA - Episode 36 (XviD1 2) [0EC22856].zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\computer\Complete\[NDS]Eyeshield 21 Max Devilpower![JAP]-[ESPALNDS com] rar.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\computer\Complete\[NDS]Tetris DS[EUR]-[ESPALNDS com] rar.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\computer\Complete\[NTi] AUTODESK AUTOCAD V2008-ISO.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\computer\Complete\[PC] Conflict Desert Storm II Back to Baghdad [RIP] [dopeman].zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\computer\Complete\[PC] rFactor Sim Racing [ENG] [ITA] [dopeman].zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\computer\Complete\[QC] Starzinger 15 [F1B9F9B7](RAW) avi.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\computer\Complete\[SMS] La Corda d'Oro ~Primo Passo~ - 09 [XviD][5A08EB86] avi.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\computer\Complete\[T-N]Fairy Musketeer Akazukin 34[76E1CE51]CMBonus avi.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\computer\Complete\[T-N]Fairy Musketeer Akazukin 35[7BE91C0E]CMBonus avi.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\computer\Complete\[ToTheZ] Powerpuff Girls Z - 34 [Xvid Mp3] [610E246D] avi.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\computer\Complete\[Your-Mom] Code Geass - 19 [2391AADA] avi.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\computer\Complete\battlestar galactica.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\computer\Complete\blood diamond.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\computer\Complete\deja vu.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\computer\Complete\desperate housewives.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\computer\Complete\dvd rip.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\computer\Complete\dvdrip french.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\computer\Complete\family guy.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\computer\Complete\ghost rider.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\computer\Complete\girls gone wild.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\computer\Complete\grey's anatomy.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\computer\Complete\greys anatomy.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\computer\Complete\hot fuzz.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\computer\Complete\jericho 113 hdtv-lol - Onykter avi.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\computer\Complete\les vrais fausses aventures de koh-lanta PDF.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\computer\Complete\lost s03.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\computer\Complete\office 2007.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\computer\Complete\one tree hill.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\computer\Complete\pc games.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\computer\Complete\prison break s02e19.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\computer\Complete\prison break.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\computer\Complete\taxi 4.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\computer\Complete\test drive unlimited.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\computer\Complete\the l word.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\computer\Complete\the number 23.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\computer\Complete\top gear.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\computer\Complete\ufc 68.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\computer\Complete\ugly betty.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\computer\Complete\viva desktop rar.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\computer\Complete\wild hogs.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\computer\Complete\windows vista.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\computer\Complete\www.tvfutbol.net Liga Española Jornada 25 Real Madrid-Getafe Español PPV avi.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Program Files\outlook\p.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Program Files\outlook\v.tmp -> Worm.VB.dw : No action taken.
C:\System Volume Information\_restore{430DE976-F7EF-4BC4-9D60-6A5715D1C0BD}\RP171\A0129753.exe -> Worm.VB.dw : No action taken.


::Report end

[Advertisements]

Logfile of HijackThis v1.99.1
Scan saved at 17:57:23, on 06/03/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\LEXBCES.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\LEXPPS.EXE
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\Program Files\IVT Corporation\BlueSoleil\BTNtService.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\mqsvc.exe
C:\WINDOWS\system32\mqtgsvc.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Java\jre1.5.0_11\bin\jusched.exe
C:\Program Files\Creative\Creative Live! Cam\VideoFX\StartFX.exe
C:\WINDOWS\V0250Mon.exe
C:\Program Files\Common Files\AOL\1172925579\ee\AOLSoftware.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Google\GoogleToolbarNotifier\1.2.908.5008\GoogleToolbarNotifier.exe
C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
C:\Program Files\Belkin\Belkin 802.11g Wireless PCI Card Configuration Utility\Belkinwcui.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\HJT.exe
C:\WINDOWS\system32\wuauclt.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.skybroadband.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,SearchAssistant = http://search.imesh....ar.html?src=ssb
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://au.yahoo.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://au.rd.yahoo.c...earch.yahoo.com
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://au.yahoo.com
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = \blank.htm
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Internet Explorer Provided By Sky Broadband
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = 100.100.10027:80
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_11\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll
O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: (no name) - {BA52B914-B692-46c4-B683-905236F6F655} - (no file)
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll
O3 - Toolbar: (no name) - {5CBE2611-C31B-401F-89BC-4CBB25E853D7} - (no file)
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.5.0_11\bin\jusched.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [AVFX Engine] C:\Program Files\Creative\Creative Live! Cam\VideoFX\StartFX.exe
O4 - HKLM\..\Run: [V0250Mon.exe] C:\WINDOWS\V0250Mon.exe
O4 - HKLM\..\Run: [Picasa Media Detector] C:\Program Files\Picasa2\PicasaMediaDetector.exe
O4 - HKLM\..\Run: [HostManager] C:\Program Files\Common Files\AOL\1172925579\ee\AOLSoftware.exe
O4 - HKLM\..\Run: [IPHSend] C:\Program Files\Common Files\AOL\IPHSend\IPHSend.exe
O4 - HKLM\..\Run: [outlook] C:\Program Files\outlook\outlook.exe /auto
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\1.2.908.5008\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [Creative WebCam Tray] "C:\Program Files\Creative\Shared Files\CamTray.exe"
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [Yahoo! Pager] "C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe" -quiet
O4 - HKCU\..\Run: [Aim6] "C:\Program Files\Common Files\AOL\Launch\AOLLaunch.exe" /d locale=en-GB ee://aol/imApp
O4 - HKCU\..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
O4 - Global Startup: Belkin Wireless Utility.lnk = ?
O4 - Global Startup: BlueSoleil.lnk = ?
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O4 - Global Startup: Ulead Photo Express 3.0 SE Calendar Checker.lnk = C:\Program Files\Ulead Systems\Ulead Photo Express 3.0 SE\CalCheck.exe
O8 - Extra context menu item: &Search - http://edits.mywebse...?p=ZUxdm080YYGB
O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_11\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_11\bin\ssv.dll
O9 - Extra button: Sky - {08E730A4-FB02-45BD-A900-01E4AD8016F6} - http://www.skybroadband.com (file missing)
O9 - Extra button: Run IMVU - {d9288080-1baa-4bc4-9cf8-a92d743db949} - C:\Documents and Settings\computer\Start Menu\Programs\IMVU\IMVU\Run IMVU.lnk
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zon...kr.cab31267.cab
O16 - DPF: {14B87622-7E19-4EA8-93B3-97215F77A6BC} (MessengerStatsClient Class) - http://messenger.zon...nt.cab31267.cab
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft....k/?linkid=39204
O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} (Minesweeper Flags Class) - http://messenger.zon...er.cab31267.cab
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:\Program Files\Yahoo!\Common\yinsthelper.dll
O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zon...1/GAME_UNO1.cab
O16 - DPF: {70BA88C8-DAE8-4CE9-92BB-979C4A75F53B} - http://launch.gamesp...nch/alaunch.cab
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zon...nt.cab31267.cab
O16 - DPF: {97E71027-0BA2-44F2-97DB-F84D808ED0B6} (MessengerStatsClient Class) - http://messenger.zon...nt.cab55762.cab
O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) - http://acs.pandasoft...free/asinst.cab
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (MSN Games - Installer) - http://messenger.zon...ro.cab55579.cab
O16 - DPF: {BD393C14-72AD-4790-A095-76522973D6B8} (CBreakshotControl Class) - http://messenger.zon...ot.cab31267.cab
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O20 - Winlogon Notify: !SASWinLogon - C:\Program Files\SUPERAntiSpyware\SASWINLO.dll
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
O23 - Service: AVG Anti-Spyware Guard - Anti-Malware Development a.s. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: BlueSoleil Hid Service - Unknown owner - C:\Program Files\IVT Corporation\BlueSoleil\BTNtService.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: LexBce Server (LexBceS) - Lexmark International, Inc. - C:\WINDOWS\system32\LEXBCES.EXE

[gary1989]

Logfile of HijackThis v1.99.1
Scan saved at 17:57:23, on 06/03/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\LEXBCES.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\LEXPPS.EXE
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\Program Files\IVT Corporation\BlueSoleil\BTNtService.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\mqsvc.exe
C:\WINDOWS\system32\mqtgsvc.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Java\jre1.5.0_11\bin\jusched.exe
C:\Program Files\Creative\Creative Live! Cam\VideoFX\StartFX.exe
C:\WINDOWS\V0250Mon.exe
C:\Program Files\Common Files\AOL\1172925579\ee\AOLSoftware.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Google\GoogleToolbarNotifier\1.2.908.5008\GoogleToolbarNotifier.exe
C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
C:\Program Files\Belkin\Belkin 802.11g Wireless PCI Card Configuration Utility\Belkinwcui.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\HJT.exe
C:\WINDOWS\system32\wuauclt.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.skybroadband.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,SearchAssistant = http://search.imesh....ar.html?src=ssb
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://au.yahoo.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://au.rd.yahoo.c...earch.yahoo.com
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://au.yahoo.com
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = \blank.htm
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Internet Explorer Provided By Sky Broadband
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = 100.100.10027:80
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_11\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll
O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: (no name) - {BA52B914-B692-46c4-B683-905236F6F655} - (no file)
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll
O3 - Toolbar: (no name) - {5CBE2611-C31B-401F-89BC-4CBB25E853D7} - (no file)
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.5.0_11\bin\jusched.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [AVFX Engine] C:\Program Files\Creative\Creative Live! Cam\VideoFX\StartFX.exe
O4 - HKLM\..\Run: [V0250Mon.exe] C:\WINDOWS\V0250Mon.exe
O4 - HKLM\..\Run: [Picasa Media Detector] C:\Program Files\Picasa2\PicasaMediaDetector.exe
O4 - HKLM\..\Run: [HostManager] C:\Program Files\Common Files\AOL\1172925579\ee\AOLSoftware.exe
O4 - HKLM\..\Run: [IPHSend] C:\Program Files\Common Files\AOL\IPHSend\IPHSend.exe
O4 - HKLM\..\Run: [outlook] C:\Program Files\outlook\outlook.exe /auto
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\1.2.908.5008\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [Creative WebCam Tray] "C:\Program Files\Creative\Shared Files\CamTray.exe"
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [Yahoo! Pager] "C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe" -quiet
O4 - HKCU\..\Run: [Aim6] "C:\Program Files\Common Files\AOL\Launch\AOLLaunch.exe" /d locale=en-GB ee://aol/imApp
O4 - HKCU\..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
O4 - Global Startup: Belkin Wireless Utility.lnk = ?
O4 - Global Startup: BlueSoleil.lnk = ?
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O4 - Global Startup: Ulead Photo Express 3.0 SE Calendar Checker.lnk = C:\Program Files\Ulead Systems\Ulead Photo Express 3.0 SE\CalCheck.exe
O8 - Extra context menu item: &Search - http://edits.mywebse...?p=ZUxdm080YYGB
O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_11\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_11\bin\ssv.dll
O9 - Extra button: Sky - {08E730A4-FB02-45BD-A900-01E4AD8016F6} - http://www.skybroadband.com (file missing)
O9 - Extra button: Run IMVU - {d9288080-1baa-4bc4-9cf8-a92d743db949} - C:\Documents and Settings\computer\Start Menu\Programs\IMVU\IMVU\Run IMVU.lnk
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zon...kr.cab31267.cab
O16 - DPF: {14B87622-7E19-4EA8-93B3-97215F77A6BC} (MessengerStatsClient Class) - http://messenger.zon...nt.cab31267.cab
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft....k/?linkid=39204
O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} (Minesweeper Flags Class) - http://messenger.zon...er.cab31267.cab
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:\Program Files\Yahoo!\Common\yinsthelper.dll
O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zon...1/GAME_UNO1.cab
O16 - DPF: {70BA88C8-DAE8-4CE9-92BB-979C4A75F53B} - http://launch.gamesp...nch/alaunch.cab
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zon...nt.cab31267.cab
O16 - DPF: {97E71027-0BA2-44F2-97DB-F84D808ED0B6} (MessengerStatsClient Class) - http://messenger.zon...nt.cab55762.cab
O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) - http://acs.pandasoft...free/asinst.cab
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (MSN Games - Installer) - http://messenger.zon...ro.cab55579.cab
O16 - DPF: {BD393C14-72AD-4790-A095-76522973D6B8} (CBreakshotControl Class) - http://messenger.zon...ot.cab31267.cab
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O20 - Winlogon Notify: !SASWinLogon - C:\Program Files\SUPERAntiSpyware\SASWINLO.dll
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
O23 - Service: AVG Anti-Spyware Guard - Anti-Malware Development a.s. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: BlueSoleil Hid Service - Unknown owner - C:\Program Files\IVT Corporation\BlueSoleil\BTNtService.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: LexBce Server (LexBceS) - Lexmark International, Inc. - C:\WINDOWS\system32\LEXBCES.EXE

[sarahw]

Hi Gary1989,
I'm having a look at your log now, and will post a reply shortly.
Please make sure all replies are in this thread.

[ScHwErV]

I merged your 2 threads together. Please keep all future replies about this issue in this thread.

ScHwErV

[sarahw]

Hi gary1989,
You may want to print, save or copy these instructions for reference because you wont be able to view it in Safe Mode.
Please follow these instructions:


First Open the AVG Anti-Spyware icon on your desktop by double-clicking it to launch the program.

• On the main screen select the icon "Update" then select the "Update now" link.
  • Next select the "Start Update" button, the update will start and a progress bar will show the updates being installed.
• Once the update has completed select the "Scanner" icon at the top of the screen, then select the "Settings" tab.
• Once in the Settings screen click on "Recommended actions" and then select "Quarantine".
• Under "Reports"
  • Select "Automatically generate report after every scan"
  • Un-Select "Only if threats were found"

Close AVG Anti-Spyware, Do Not run a scan just yet, we will shortly.

2. Please download Brute Force Uninstaller to your desktop.

• Right click the BFU folder on your desktop, and choose Extract All
• Click "Next"
• In the box to choose where to extract the files to,
• Click "Browse"
• Click on the + sign next to "My Computer"
• Click on "Local Disk (C:) or whatever your primary drive is
• Click "Make New Folder"
• Type in BFU
• Click "Next", and Uncheck the "Show Extracted Files" box and then click "Finish".

3. RIGHT-CLICK HERE and choose "Save As" (in IE it's "Save Target As") in order to download Alcra PLUS Remover.
Save it in the same folder you made earlier (c:\BFU).

Do not do anything with these yet!

4. Reboot your computer into SafeMode. You can do this by restarting your computer and continually tapping the F8 key until a menu appears. Use your up arrow key to highlight SafeMode then hit enter.

5. IMPORTANT: Do not open any other windows or programs while AVG Anti-spyware is scanning, it may interfere with the scanning proccess:

• Lauch AVG Anti-Spyware by double-clicking the icon on your desktop.
• Select the "Scanner" icon at the top and then the "Scan" tab then click on "Complete System Scan".
• AVG Anti-Spyware will now begin the scanning process, be patient this may take a little time.
  Once the scan is complete do the following:
• If you have any infections you will prompted, then select "Apply all actions"
• Next select the "Reports" icon at the top.
• Select the "Save report as" button in the lower left hand of the screen and save it to a text file on your system (make sure to remember where you saved that file, this is important).
• Close AVG Anti-Spyware and reboot your system back into Normal Mode.

6. Then, please go to Start > My Computer and navigate to the C:\BFU folder.

• Start the Brute Force Uninstaller by doubleclicking BFU.exe
• Behind the scriptline to execute field click the folder icon and select alcanshorty.bfu
• Press Execute and let it do it’s job. (You ought to see a progress bar if you did this correctly.)
• Wait for the complete script execution box to pop up and press OK.
• Press exit to terminate the BFU program.

Jotti File Submission:

• Please go to Jotti's malware scan
  
• Copy and paste the following file path into the "File to upload & scan"box on the top of the page:
  • C:\WINDOWS\V0250Mon.exe
• Click on the submit button
• Please post the results in your next reply.

Now Please re-open HiJackThis and scan. Check the boxes next to all the entries listed below.

O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O3 - Toolbar: (no name) - {5CBE2611-C31B-401F-89BC-4CBB25E853D7} - (no file)
O4 - HKLM\..\Run: [outlook] C:\Program Files\outlook\outlook.exe /auto
O8 - Extra context menu item: &Search - http://edits.mywebse...?p=ZUxdm080YYGB

Now close all windows other than HiJackThis, then click Fix Checked. Close HiJackThis. Reboot into safe mode.

Restart your computer and as soon as it starts booting up again continuously tap F8. A menu should come up where you will be given the option to enter Safe Mode.

Please go to Start > Control Panel > Add/Remove Programs and remove the following (if present):

My Web Search

Please note any other programs that you dont recognize in that list in your next response

Using Windows Explorer (to get there right-click your Start button and go to "Explore"), please delete these folders (if present):

C:\Program Files\outlook

After that, Reboot.

In your reply, Post the AVG AntiSpyware log, The Jotti report and a fresh Hijack This log.