Jump to content

Welcome to Geeks to Go - Register now for FREE

Need help with your computer or device? Want to learn new tech skills? You're in the right place!
Geeks to Go is a friendly community of tech experts who can solve any problem you have. Just create a free account and post your question. Our volunteers will reply quickly and guide you through the steps. Don't let tech troubles stop you. Join Geeks to Go now and get the support you need!

How it Works Create Account
Photo

pop up ads that say powered by internet software [CLOSED]

Started by nanajanet , Apr 30 2008 11:20 AM

  • This topic is locked This topic is locked

#1
nanajanet
Posted 30 April 2008 - 11:20 AM

nanajanet

    Member

  • Member
  • PipPip
  • 64 posts
I get pop ups on IE (I use firefox, only) and a little pop up in the corner will say ad powered by Internet Software. I see files in my computer named that and cannot delete them as they are in use. I figure I could restore them if needed, but can't even delete. Help, please.

Thanks.
  • 0

Advertisements

#2
Rorschach112
Posted 01 May 2008 - 12:09 PM

Rorschach112

    Ralphie

  • Retired Staff
  • 47,710 posts
Hello

Download OTScanIt.exe to your Desktop and double-click on it to extract the files. It will create a folder named OTScanIt on your desktop.
  • Open the OTScanIt folder and double-click on OTScanIt.exe to start the program.
  • Under Additional Scans check the boxes beside Reg - App Paths, Reg - Bot Check, Reg - Desktop Components, Reg - Disabled MS Config Items, Reg Mountpoints2 File Additional Folder Scans, File - Lop Check, and File - Purity Scan.
  • Under Drivers change it to Non-Microsoft.
  • Check the box beside Scan All User Accounts at the top
  • Under Files Created Within and Files Modified Within change it to 90 days.
  • Under Rootkit Search change it to Yes.
  • Now click the Run Scan button on the toolbar.
  • When the scan is complete Notepad will open with the report file loaded in it.
  • Click the Format menu and make sure that Wordwrap is not checked. If it is then click on it to uncheck it.
Use the Add Reply button and post the information back here in an attachment. I will review it when it comes in. The last line is < End of Report >, so make sure that is the last line in the attached report.


Make sure you attach the report in your reply. If it is too big to upload, then zip the text file and upload it that way
  • 0

#3
nanajanet
Posted 01 May 2008 - 04:55 PM

nanajanet

    Member

  • Topic Starter
  • Member
  • PipPip
  • 64 posts
Thanks!!! You are a gem!
  • 0

#4
Rorschach112
Posted 01 May 2008 - 05:15 PM

Rorschach112

    Ralphie

  • Retired Staff
  • 47,710 posts
Don't forget to upload the file.
  • 0

#5
nanajanet
Posted 01 May 2008 - 05:46 PM

nanajanet

    Member

  • Topic Starter
  • Member
  • PipPip
  • 64 posts
Did, thanks!
  • 0

#6
Rorschach112
Posted 01 May 2008 - 05:50 PM

Rorschach112

    Ralphie

  • Retired Staff
  • 47,710 posts
It doesn't seem to be showing up, it is probably too big for the forum

Can you host it at a site like mediafire.com and paste the link here
  • 0

#7
nanajanet
Posted 01 May 2008 - 08:08 PM

nanajanet

    Member

  • Topic Starter
  • Member
  • PipPip
  • 64 posts
Ok, here it is.....

(thanks again)

[code=auto:0]OTScanIt logfile created on: 5/1/2008 10:05:28 PM
OTScanIt by OldTimer - Version 1.0.11.12 Folder = C:\Documents and Settings\abdwybabe\Desktop\OTScanIt
Windows XP Media Center Edition Service Pack 2 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 7.0.5730.11)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

1014.37 Mb Total Physical Memory | 318.79 Mb Available Physical Memory | 31.43% Memory free
2.38 Gb Paging File | 1.66 Gb Available in Paging File | 69.73% Paging File free
Paging file location(s): C:\pagefile.sys 1524 3048;

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 67.74 Gb Total Space | 24.24 Gb Free Space | 35.79% Space Free | Partition Type: NTFS
D: Drive not present or media not loaded
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded

Computer Name: JAN
Current User Name: abdwybabe
Logged in as Administrator.
Current Boot Mode: Normal
Scan Mode: Current user

[Processes - Non-Microsoft Only]
wltrysvc.exe -> %SystemRoot%\system32\WLTRYSVC.EXE -> [Ver = | Size = 20480 bytes | Modified Date = 11/23/2006 2:35:50 AM | Attr = ]
bcmwltry.exe -> %SystemRoot%\system32\BCMWLTRY.EXE -> Dell Inc. [Ver = 4.100.15.8 | Size = 1253376 bytes | Modified Date = 11/23/2006 2:32:58 AM | Attr = ]
aswupdsv.exe -> %ProgramFiles%\Alwil Software\Avast4\aswUpdSv.exe -> ALWIL Software [Ver = 4, 8, 1169, 0 | Size = 17272 bytes | Modified Date = 3/29/2008 2:11:18 PM | Attr = ]
ashserv.exe -> %ProgramFiles%\Alwil Software\Avast4\ashServ.exe -> ALWIL Software [Ver = 4, 8, 1169, 0 | Size = 144760 bytes | Modified Date = 3/29/2008 2:37:02 PM | Attr = ]
aolacsd.exe -> %CommonProgramFiles%\AOL\ACS\AOLacsd.exe -> AOL LLC [Ver = 4.6.1.2 | Size = 46640 bytes | Modified Date = 10/23/2006 8:50:35 AM | Attr = R ]
applemobiledeviceservice.exe -> %CommonProgramFiles%\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe -> Apple, Inc. [Ver = 1, 14, 0, 0 | Size = 110592 bytes | Modified Date = 2/18/2008 11:16:30 AM | Attr = ]
mdnsresponder.exe -> %ProgramFiles%\Bonjour\mDNSResponder.exe -> Apple Inc. [Ver = 1,0,4,12 | Size = 229376 bytes | Modified Date = 7/24/2007 3:17:08 PM | Attr = ]
wanmpsvc.exe -> %SystemRoot%\wanmpsvc.exe -> America Online, Inc. [Ver = 9, 0, 0, 0 | Size = 65536 bytes | Modified Date = 8/27/2003 12:29:46 PM | Attr = ]
ashmaisv.exe -> %ProgramFiles%\Alwil Software\Avast4\ashMaiSv.exe -> ALWIL Software [Ver = 4, 8, 1169, 0 | Size = 247160 bytes | Modified Date = 3/29/2008 2:36:22 PM | Attr = ]
ashwebsv.exe -> %ProgramFiles%\Alwil Software\Avast4\ashWebSv.exe -> ALWIL Software [Ver = 4, 8, 1169, 0 | Size = 345464 bytes | Modified Date = 3/29/2008 2:30:47 PM | Attr = ]
hkcmd.exe -> %SystemRoot%\system32\hkcmd.exe -> Intel Corporation [Ver = 3.0.0.4446 | Size = 77824 bytes | Modified Date = 12/14/2005 1:41:08 AM | Attr = ]
igfxpers.exe -> %SystemRoot%\system32\igfxpers.exe -> Intel Corporation [Ver = 3.0.0.4446 | Size = 118784 bytes | Modified Date = 12/14/2005 1:45:00 AM | Attr = ]
igfxsrvc.exe -> %SystemRoot%\system32\igfxsrvc.exe -> Intel Corporation [Ver = 3.0.0.4446 | Size = 159744 bytes | Modified Date = 12/14/2005 1:41:00 AM | Attr = ]
wltray.exe -> %SystemRoot%\system32\WLTRAY.EXE -> Dell Inc. [Ver = 4.100.15.8 | Size = 1392640 bytes | Modified Date = 11/23/2006 2:35:50 AM | Attr = ]
stsystra.exe -> %SystemRoot%\stsystra.exe -> SigmaTel, Inc. [Ver = 1.0.4995.1 nd446 cp1 | Size = 282624 bytes | Modified Date = 3/25/2006 1:30:44 AM | Attr = ]
syntpenh.exe -> %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe -> Synaptics, Inc. [Ver = 8.2.4.6 08Mar06 | Size = 761947 bytes | Modified Date = 3/8/2006 8:48:02 PM | Attr = ]
aolsoftware.exe -> %CommonProgramFiles%\AOL\1168532354\ee\aolsoftware.exe -> AOL LLC [Ver = 15.5.1.2 | Size = 42032 bytes | Modified Date = 5/25/2007 1:16:08 PM | Attr = ]
hpwuschd2.exe -> %ProgramFiles%\HP\HP Software Update\hpwuSchd2.exe -> Hewlett-Packard Development Company, L.P. [Ver = 70.0.170.000 | Size = 49152 bytes | Modified Date = 2/19/2006 3:41:10 AM | Attr = ]
realsched.exe -> %CommonProgramFiles%\Real\Update_OB\realsched.exe -> RealNetworks, Inc. [Ver = 0.1.1.45 | Size = 185896 bytes | Modified Date = 4/6/2008 9:23:25 AM | Attr = ]
ituneshelper.exe -> %ProgramFiles%\iTunes\iTunesHelper.exe -> Apple Inc. [Ver = 7.6.2.9 | Size = 267048 bytes | Modified Date = 3/30/2008 10:36:40 AM | Attr = ]
ashdisp.exe -> %ProgramFiles%\Alwil Software\Avast4\ashDisp.exe -> ALWIL Software [Ver = 4, 8, 1169, 0 | Size = 79224 bytes | Modified Date = 3/29/2008 2:37:13 PM | Attr = ]
ipodservice.exe -> %ProgramFiles%\iPod\bin\iPodService.exe -> Apple Inc. [Ver = 7.6.2.9 | Size = 504104 bytes | Modified Date = 3/30/2008 10:36:30 AM | Attr = ]
dlg.exe -> %ProgramFiles%\Digital Line Detect\DLG.exe -> BVRP Software [Ver = 1, 0, 0, 1 | Size = 24576 bytes | Modified Date = 10/29/2003 4:06:00 AM | Attr = ]
gomezpeer.exe -> %ProgramFiles%\Gomez\GomezPEER\bin\GomezPEER.exe -> [Ver = | Size = 61440 bytes | Modified Date = 10/28/2004 5:55:44 PM | Attr = ]
hpqtra08.exe -> %ProgramFiles%\HP\Digital Imaging\bin\hpqtra08.exe -> Hewlett-Packard Development Company, L.P. [Ver = 70.0.170.000 | Size = 288472 bytes | Modified Date = 2/19/2006 5:21:22 AM | Attr = ]
java.exe -> %ProgramFiles%\Gomez\GomezPEER\jre\bin\java.exe -> [Ver = | Size = 24670 bytes | Modified Date = 8/2/2004 11:30:24 AM | Attr = ]
hpqste08.exe -> %ProgramFiles%\HP\Digital Imaging\bin\hpqste08.exe -> Hewlett-Packard Development Company, L.P. [Ver = 70.0.170.000 | Size = 239320 bytes | Modified Date = 2/19/2006 6:24:52 AM | Attr = ]
firefox.exe -> %ProgramFiles%\Mozilla Firefox\firefox.exe -> Mozilla Corporation [Ver = 1.8.1.14: 2008040413 | Size = 7660656 bytes | Modified Date = 4/17/2008 7:53:49 AM | Attr = ]
waol.exe -> %ProgramFiles%\AOL 9.1\waol.exe -> AOL, LLC. [Ver = 9.05.001 | Size = 39264 bytes | Modified Date = 10/27/2007 1:45:07 PM | Attr = ]
shellmon.exe -> %ProgramFiles%\AOL 9.1\shellmon.exe -> AOL, LLC. [Ver = 9.05.001 | Size = 54624 bytes | Modified Date = 10/27/2007 1:45:05 PM | Attr = ]
ashsimpl.exe -> %ProgramFiles%\Alwil Software\Avast4\ashSimpl.exe -> ALWIL Software [Ver = 4, 8, 1169, 0 | Size = 157048 bytes | Modified Date = 3/29/2008 2:24:16 PM | Attr = ]
otscanit.exe -> %UserProfile%\Desktop\OTScanIt\OTScanIt.exe -> OldTimer Tools [Ver = 1.0.11.12 | Size = 371712 bytes | Modified Date = 5/1/2008 4:35:22 PM | Attr = ]

[Win32 Services - Non-Microsoft Only]
(AOL ACS) AOL Connectivity Service [Win32_Own | Auto | Running] -> %CommonProgramFiles%\AOL\ACS\AOLacsd.exe -> AOL LLC [Ver = 4.6.1.2 | Size = 46640 bytes | Modified Date = 10/23/2006 8:50:35 AM | Attr = R ]
(Apple Mobile Device) Apple Mobile Device [Win32_Own | Auto | Running] -> %CommonProgramFiles%\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe -> Apple, Inc. [Ver = 1, 14, 0, 0 | Size = 110592 bytes | Modified Date = 2/18/2008 11:16:30 AM | Attr = ]
(aswUpdSv) avast! iAVS4 Control Service [Win32_Own | Auto | Running] -> %ProgramFiles%\Alwil Software\Avast4\aswUpdSv.exe -> ALWIL Software [Ver = 4, 8, 1169, 0 | Size = 17272 bytes | Modified Date = 3/29/2008 2:11:18 PM | Attr = ]
(avast! Antivirus) avast! Antivirus [Win32_Own | Auto | Running] -> %ProgramFiles%\Alwil Software\Avast4\ashServ.exe -> ALWIL Software [Ver = 4, 8, 1169, 0 | Size = 144760 bytes | Modified Date = 3/29/2008 2:37:02 PM | Attr = ]
(avast! Mail Scanner) avast! Mail Scanner [Win32_Own | On_Demand | Running] -> %ProgramFiles%\Alwil Software\Avast4\ashMaiSv.exe -> ALWIL Software [Ver = 4, 8, 1169, 0 | Size = 247160 bytes | Modified Date = 3/29/2008 2:36:22 PM | Attr = ]
(avast! Web Scanner) avast! Web Scanner [Win32_Own | On_Demand | Running] -> %ProgramFiles%\Alwil Software\Avast4\ashWebSv.exe -> ALWIL Software [Ver = 4, 8, 1169, 0 | Size = 345464 bytes | Modified Date = 3/29/2008 2:30:47 PM | Attr = ]
(Bonjour Service) Bonjour Service [Win32_Own | Auto | Running] -> %ProgramFiles%\Bonjour\mDNSResponder.exe -> Apple Inc. [Ver = 1,0,4,12 | Size = 229376 bytes | Modified Date = 7/24/2007 3:17:08 PM | Attr = ]
(dmadmin) Logical Disk Manager Administrative Service [Win32_Shared | On_Demand | Stopped] -> %SystemRoot%\system32\dmadmin.exe -> Microsoft Corp., Veritas Software [Ver = 2600.2180.503.0 | Size = 224768 bytes | Modified Date = 8/10/2004 7:00:00 AM | Attr = ]
(IDriverT) InstallDriver Table Manager [Win32_Own | On_Demand | Stopped] -> %CommonProgramFiles%\InstallShield\Driver\11\Intel 32\IDriverT.exe -> Macrovision Corporation [Ver = 11.00.28844 | Size = 69632 bytes | Modified Date = 4/4/2005 1:41:10 AM | Attr = ]
(iPod Service) iPod Service [Win32_Own | On_Demand | Running] -> %ProgramFiles%\iPod\bin\iPodService.exe -> Apple Inc. [Ver = 7.6.2.9 | Size = 504104 bytes | Modified Date = 3/30/2008 10:36:30 AM | Attr = ]
(Pml Driver HPZ12) Pml Driver HPZ12 [Win32_Own | Auto | Stopped] -> %SystemRoot%\system32\HPZipm12.exe -> HP [Ver = 10, 1, 1, 6 | Size = 73728 bytes | Modified Date = 8/9/2007 3:27:52 AM | Attr = ]
(WANMiniportService) WAN Miniport (ATW) Service [Win32_Own | Auto | Running] -> %SystemRoot%\wanmpsvc.exe -> America Online, Inc. [Ver = 9, 0, 0, 0 | Size = 65536 bytes | Modified Date = 8/27/2003 12:29:46 PM | Attr = ]
(wltrysvc) Dell Wireless WLAN Tray Service [Win32_Own | Auto | Running] -> %SystemRoot%\System32\WLTRYSVC.EXE C:\WINDOWS\System32\bcmwltry.exe -> File not found

[Registry - Non-Microsoft Only]
< Run [HKEY_LOCAL_MACHINE\] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run ->
Adobe Reader Speed Launcher -> %ProgramFiles%\Adobe\Reader 8.0\Reader\reader_sl.exe ["C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"] -> Adobe Systems Incorporated [Ver = 8.0.0.0 | Size = 39792 bytes | Modified Date = 1/11/2008 11:16:38 PM | Attr = ]
AOLDialer -> %CommonProgramFiles%\AOL\ACS\AOLDial.exe [C:\Program Files\Common Files\AOL\ACS\AOLDial.exe] -> AOL LLC [Ver = 4.6.1.2 | Size = 71216 bytes | Modified Date = 10/23/2006 8:50:37 AM | Attr = R ]
avast! -> %ProgramFiles%\Alwil Software\Avast4\ashDisp.exe [C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe] -> ALWIL Software [Ver = 4, 8, 1169, 0 | Size = 79224 bytes | Modified Date = 3/29/2008 2:37:13 PM | Attr = ]
Broadcom Wireless Manager UI -> %SystemRoot%\system32\WLTRAY.EXE [C:\WINDOWS\system32\WLTRAY.exe] -> Dell Inc. [Ver = 4.100.15.8 | Size = 1392640 bytes | Modified Date = 11/23/2006 2:35:50 AM | Attr = ]
HostManager -> %CommonProgramFiles%\AOL\1168532354\ee\aolsoftware.exe [C:\Program Files\Common Files\AOL\1168532354\ee\AOLSoftware.exe] -> AOL LLC [Ver = 15.5.1.2 | Size = 42032 bytes | Modified Date = 5/25/2007 1:16:08 PM | Attr = ]
HP Software Update -> %ProgramFiles%\HP\HP Software Update\hpwuSchd2.exe [C:\Program Files\HP\HP Software Update\HPWuSchd2.exe] -> Hewlett-Packard Development Company, L.P. [Ver = 70.0.170.000 | Size = 49152 bytes | Modified Date = 2/19/2006 3:41:10 AM | Attr = ]
igfxhkcmd -> %SystemRoot%\system32\hkcmd.exe [C:\WINDOWS\system32\hkcmd.exe] -> Intel Corporation [Ver = 3.0.0.4446 | Size = 77824 bytes | Modified Date = 12/14/2005 1:41:08 AM | Attr = ]
igfxpers -> %SystemRoot%\system32\igfxpers.exe [C:\WINDOWS\system32\igfxpers.exe] -> Intel Corporation [Ver = 3.0.0.4446 | Size = 118784 bytes | Modified Date = 12/14/2005 1:45:00 AM | Attr = ]
igfxtray -> %SystemRoot%\system32\igfxtray.exe [C:\WINDOWS\system32\igfxtray.exe] -> Intel Corporation [Ver = 3.0.0.4446 | Size = 98304 bytes | Modified Date = 12/14/2005 1:44:18 AM | Attr = ]
igivm -> %ProgramFiles%\iGive__Shopping__Window\iGiveShoppingWindowv.exe ["C:\Program Files\iGive__Shopping__Window\iGiveShoppingWindowv.exe"] -> File not found
iTunesHelper -> %ProgramFiles%\iTunes\iTunesHelper.exe ["C:\Program Files\iTunes\iTunesHelper.exe"] -> Apple Inc. [Ver = 7.6.2.9 | Size = 267048 bytes | Modified Date = 3/30/2008 10:36:40 AM | Attr = ]
SigmatelSysTrayApp -> %SystemRoot%\stsystra.exe [stsystra.exe] -> SigmaTel, Inc. [Ver = 1.0.4995.1 nd446 cp1 | Size = 282624 bytes | Modified Date = 3/25/2006 1:30:44 AM | Attr = ]
spa_start -> %SystemRoot%\system32\{899433cf-4c4d-1386-3e32-b276b12a533e}.dll [C:\WINDOWS\System32\Rundll32.exe "C:\WINDOWS\system32\{899433cf-4c4d-1386-3e32-b276b12a533e}.dll" DllInit] -> [Ver = 2, 0, 0, 0 | Size = 328192 bytes | Modified Date = 4/8/2008 8:16:38 AM | Attr = ]
SynTPEnh -> %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe [C:\Program Files\Synaptics\SynTP\SynTPEnh.exe] -> Synaptics, Inc. [Ver = 8.2.4.6 08Mar06 | Size = 761947 bytes | Modified Date = 3/8/2006 8:48:02 PM | Attr = ]
TkBellExe -> %CommonProgramFiles%\Real\Update_OB\realsched.exe ["C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot] -> RealNetworks, Inc. [Ver = 0.1.1.45 | Size = 185896 bytes | Modified Date = 4/6/2008 9:23:25 AM | Attr = ]
< OptionalComponents [HKEY_LOCAL_MACHINE\] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\OptionalComponents\ ->
IMAIL-> Installed = 1 ->
MAPI-> Installed = 1 ->
MSFS-> Installed = 1 ->
< Run [HKEY_CURRENT_USER\] > -> HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run ->
AOL Fast Start -> %ProgramFiles%\AOL 9.1\aol.exe ["C:\Program Files\AOL 9.1\AOL.EXE" -b] -> AOL, LLC. [Ver = 9.05.001 | Size = 50528 bytes | Modified Date = 10/27/2007 1:44:58 PM | Attr = ]
ModemOnHold -> %ProgramFiles%\NetWaiting\netWaiting.exe [C:\Program Files\NetWaiting\netWaiting.exe] -> File not found
Performance Center -> %ProgramFiles%\Ascentive\Performance Center\APCMain.exe [C:\Program Files\Ascentive\Performance Center\APCMain.exe -m] -> File not found
< abdwybabe Startup Folder > -> C:\Documents and Settings\abdwybabe\Start Menu\Programs\Startup ->
< All Users Startup Folder > -> C:\Documents and Settings\All Users\Start Menu\Programs\Startup ->
%AllUsersProfile%\Start Menu\Programs\Startup\Adobe Gamma Loader.lnk -> %CommonProgramFiles%\Adobe\Calibration\Adobe Gamma Loader.exe -> Adobe Systems, Inc. [Ver = 1, 0, 0, 1 | Size = 113664 bytes | Modified Date = 11/4/1999 4:06:48 PM | Attr = ]
%AllUsersProfile%\Start Menu\Programs\Startup\Digital Line Detect.lnk -> %ProgramFiles%\Digital Line Detect\DLG.exe -> BVRP Software [Ver = 1, 0, 0, 1 | Size = 24576 bytes | Modified Date = 10/29/2003 4:06:00 AM | Attr = ]
%AllUsersProfile%\Start Menu\Programs\Startup\Gomez PEER.lnk -> %ProgramFiles%\Gomez\GomezPEER\bin\GomezPEER.exe -> [Ver = | Size = 61440 bytes | Modified Date = 10/28/2004 5:55:44 PM | Attr = ]
%AllUsersProfile%\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnk -> %ProgramFiles%\HP\Digital Imaging\bin\hpqtra08.exe -> Hewlett-Packard Development Company, L.P. [Ver = 70.0.170.000 | Size = 288472 bytes | Modified Date = 2/19/2006 5:21:22 AM | Attr = ]
< SSODL [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad ->
{2016a466-91a2-43c6-97d8-2fd380f065ef} [HKEY_LOCAL_MACHINE] -> Reg Error: Key does not exist or could not be opened. [eitheror] -> File not found
< SharedTaskScheduler [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SharedTaskScheduler ->
{2016a466-91a2-43c6-97d8-2fd380f065ef} [HKEY_LOCAL_MACHINE] -> Reg Error: Key does not exist or could not be opened. [eitheror] -> File not found
< SecurityProviders [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\\SecurityProviders ->
< Winlogon settings [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon ->
< Winlogon settings [HKEY_CURRENT_USER] > -> HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon ->
< Winlogon\Notify settings [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\ ->
igfxcui -> %SystemRoot%\system32\igfxdev.dll -> Intel Corporation [Ver = 3.0.0.4446 | Size = 139264 bytes | Modified Date = 12/14/2005 1:40:12 AM | Attr = ]
< CurrentVersion Policy Settings [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\ ->
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\ -> ->
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\NonEnum\ -> ->
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\NonEnum\\{BDEADF00-C265-11D0-BCED-00A0C90AB50F} -> 1 ->
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\NonEnum\\{6DFD7C5C-2451-11d3-A299-00C04F8EF6AF} -> 1073741857 ->
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\NonEnum\\{0DF44EAA-FF21-4412-828E-260A8728E7F1} -> 32 ->
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system\ -> ->
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system\\dontdisplaylastusername -> 0 ->
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system\\legalnoticecaption -> ->
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system\\legalnoticetext -> ->
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system\\shutdownwithoutlogon -> 1 ->
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system\\undockwithoutlogon -> 1 ->
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system\\InstallVisualStyle -> C:\WINDOWS\Resources\Themes\Royale\Royale.mss [C:\WINDOWS\Resources\Themes\Royale\Royale.msstyles] -> File not found
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system\\InstallTheme -> C:\WINDOWS\Resources\Themes\Royale.the [C:\WINDOWS\Resources\Themes\Royale.theme] -> File not found
< CurrentVersion Policy Settings [HKEY_CURRENT_USER] > -> HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\ ->
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\ -> ->
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\ -> ->
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\\NoDriveTypeAutoRun -> 0 ->
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\ -> ->
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\\disableregistrytools -> 0 ->
< CDROM Autorun Settings > [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Cdrom] ->
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Cdrom\ -> ->
*DependOnGroup* -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Cdrom\\DependOnGroup ->
SCSI miniport -> -> File not found
*MultiFile Done* -> ->
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Cdrom\\ErrorControl -> 1 ->
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Cdrom\\Group -> SCSI CDROM Class ->
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Cdrom\\Start -> 1 ->
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Cdrom\\Tag -> 2 ->
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Cdrom\\Type -> 1 ->
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Cdrom\\DisplayName -> CD-ROM Driver ->
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Cdrom\\ImagePath -> C:\WINDOWS\system32\drivers\cdrom.sys [system32\DRIVERS\cdrom.sys] -> Microsoft Corporation [Ver = 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158) | Size = 49536 bytes | Modified Date = 8/10/2004 7:00:00 AM | Attr = ]
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Cdrom\\AutoRun -> 1 ->
*AutoRunAlwaysDisable* -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Cdrom\\AutoRunAlwaysDisable ->
NEC MBR-7 -> -> File not found
NEC MBR-7.4 -> -> File not found
PIONEER CHANGR DRM-1804X -> -> File not found
PIONEER CD-ROM DRM-6324X -> -> File not found
PIONEER CD-ROM DRM-624X -> -> File not found
TORiSAN CD-ROM CDR_C36 -> -> File not found
*MultiFile Done* -> ->
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Cdrom\Enum\ -> ->
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Cdrom\Enum\\0 -> IDE\CdRomPHILIPS_DVD+-RW_SDVD8820________________AD18____\5&2c81f6de&0&0.0.0 ->
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Cdrom\Enum\\Count -> 1 ->
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Cdrom\Enum\\NextInstance -> 1 ->
< Drives - Autoruns > -> ->
AUTOEXEC.BAT [] -> %SystemDrive%\AUTOEXEC.BAT [ NTFS ] -> [Ver = | Size = 0 bytes | Modified Date = 8/16/2005 6:43:04 AM | Attr = ]
< HOSTS File > (734 bytes) -> C:\WINDOWS\System32\drivers\etc\Hosts ->
< Internet Explorer Settings [HKEY_LOCAL_MACHINE\] > -> ->
HKEY_LOCAL_MACHINE\: Main\\Default_Page_URL -> http://go.microsoft.com/fwlink/?LinkId=69157 ->
HKEY_LOCAL_MACHINE\: Main\\Default_Search_URL -> http://go.microsoft.com/fwlink/?LinkId=54896 ->
HKEY_LOCAL_MACHINE\: Main\\Local Page -> %SystemRoot%\system32\blank.htm ->
HKEY_LOCAL_MACHINE\: Main\\Search Page -> http://go.microsoft.com/fwlink/?LinkId=54896 ->
HKEY_LOCAL_MACHINE\: Main\\Start Page -> http://go.microsoft.com/fwlink/?LinkId=69157 ->
HKEY_LOCAL_MACHINE\: Search\\CustomizeSearch -> http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchcust.htm ->
HKEY_LOCAL_MACHINE\: Search\\SearchAssistant -> ->
< Internet Explorer Settings [HKEY_CURRENT_USER\] > -> ->
HKEY_CURRENT_USER\: Main\\Default_Page_URL -> www.google.com/ig/dell?hl=en&client=dell-usuk-rel&channel=us&ibd=4070102 ->
HKEY_CURRENT_USER\: Main\\Local Page -> C:\WINDOWS\system32\blank.htm ->
HKEY_CURRENT_USER\: Main\\Search Bar -> ->
HKEY_CURRENT_USER\: Main\\Search Page -> ->
HKEY_CURRENT_USER\: Main\\Start Page -> http://www.aol.com ->
HKEY_CURRENT_USER\: URLSearchHooks\\{EF99BD32-C1FB-11D2-892F-0090271D4F88} [HKEY_LOCAL_MACHINE] -> Reg Error: Key does not exist or could not be opened. [Yahoo! Toolbar] -> File not found
HKEY_CURRENT_USER\: ProxyEnable -> 0 ->
HKEY_CURRENT_USER\: ProxyOverride -> *.local ->
< Trusted Sites Domains [HKEY_LOCAL_MACHINE\] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\ ->
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\ -> [Key] 1 domain(s) found. ->
1 domain(s) and sub-domain(s) not assigned to a zone.
< Trusted Sites Ranges [HKEY_LOCAL_MACHINE\] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Ranges\ ->
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Ranges\ -> [Key] 0 range(s) found. ->
< Trusted Sites Domains [HKEY_CURRENT_USER\] > -> HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\ ->
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\ -> [Key] 53 domain(s) found. ->
objects_aol.com [*] -> Out of zone range - ( 5 ) ->
1 domain(s) and sub-domain(s) not assigned to a zone.
< Trusted Sites Ranges [HKEY_CURRENT_USER\] > -> HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Ranges\ ->
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Ranges\ -> [Key] 16 range(s) found. ->
< BHO's [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\ ->
{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} [HKEY_LOCAL_MACHINE] -> %CommonProgramFiles%\Adobe\Acrobat\ActiveX\AcroIEHelper.dll [Adobe PDF Reader Link Helper] -> Adobe Systems Incorporated [Ver = 8.0.0.2006102200 | Size = 62080 bytes | Modified Date = 10/23/2006 12:08:42 AM | Attr = ]
{1F732C4C-8BCA-43BB-9EB6-AF20B536ACAA} [HKEY_LOCAL_MACHINE] -> [] -> File not found
{3049C3E9-B461-4BC5-8870-4C09146192CA} [HKEY_LOCAL_MACHINE] -> %ProgramFiles%\Real\RealPlayer\rpbrowserrecordplugin.dll [RealPlayer Download and Record Plugin for Internet Explorer] -> RealPlayer [Ver = 1.0.1.57 | Size = 308856 bytes | Modified Date = 4/6/2008 9:24:14 AM | Attr = ]
{761497BB-D6F0-462C-B6EB-D4DAF1D92D43} [HKEY_LOCAL_MACHINE] -> %ProgramFiles%\Java\jre1.5.0_06\bin\ssv.dll [SSVHelper Class] -> Sun Microsystems, Inc. [Ver = 5.0.60.5 | Size = 184423 bytes | Modified Date = 11/10/2005 3:22:12 PM | Attr = ]
{994B5FB4-0103-44A6-B6B3-C73572B362BC} [HKEY_LOCAL_MACHINE] -> %SystemRoot%\system32\nsf578.dll [adzgalore] -> [Ver = 4, 5, 1, 0 | Size = 233472 bytes | Modified Date = 2/6/2008 1:21:56 PM | Attr = ]
{AF852A19-0051-406A-8C0F-5278E447B6B5} [HKEY_LOCAL_MACHINE] -> [] -> File not found
{CA6319C0-31B7-401E-A518-A07C3DB8F777} [HKEY_LOCAL_MACHINE] -> %ProgramFiles%\BAE\BAE.dll [CBrowserHelperObject Object] -> Dell Inc. [Ver = 1.2.0.2 | Size = 98304 bytes | Modified Date = 11/17/2006 1:46:38 PM | Attr = ]
{de69c38e-c4f2-e5e4-4674-95f8bb02a1eb} [HKEY_LOCAL_MACHINE] -> %SystemRoot%\system32\{899433cf-4c4d-1386-3e32-b276b12a533e}.dll [cpmsky browser optimizer] -> [Ver = 2, 0, 0, 0 | Size = 328192 bytes | Modified Date = 4/8/2008 8:16:38 AM | Attr = ]
{f04c034b-de35-a982-86cf-20ec16fd4ce9} [HKEY_LOCAL_MACHINE] -> %SystemRoot%\system32\nsjBB.dll [adzgalore] -> [Ver = 4, 6, 0, 2 | Size = 432128 bytes | Modified Date = 4/28/2008 12:05:08 PM | Attr = ]
< Internet Explorer ToolBars [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\ToolBar ->
{84938242-5C5B-4A55-B6B9-A1507543B418} [HKEY_LOCAL_MACHINE] -> %ProgramFiles%\Video Access ActiveX Object\iesplugin.dll [Protection Bar] -> File not found
< Internet Explorer ToolBars [HKEY_CURRENT_USER\] > -> HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\ ->
ShellBrowser\\{C4069E3A-68F1-403E-B40E-20066696354B} [HKEY_LOCAL_MACHINE] -> Reg Error: Key does not exist or could not be opened. [Reg Error: Key does not exist or could not be opened.] -> File not found
WebBrowser\\{0B53EAC3-8D69-4B9E-9B19-A37C9A5676A7} [HKEY_LOCAL_MACHINE] -> Reg Error: Key does not exist or could not be opened. [Reg Error: Key does not exist or could not be opened.] -> File not found
WebBrowser\\{3BB63FD4-3C00-44D7-94A9-5DE211900DEF} [HKEY_LOCAL_MACHINE] -> Reg Error: Key does not exist or could not be opened. [Reg Error: Key does not exist or could not be opened.] -> File not found
WebBrowser\\{84938242-5C5B-4A55-B6B9-A1507543B418} [HKEY_LOCAL_MACHINE] -> %ProgramFiles%\Video Access ActiveX Object\iesplugin.dll [Protection Bar] -> File not found
< Internet Explorer Extensions [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extensions\ ->
{08B0E5C0-4FCB-11CF-AAA5-00401C608501}:{CAFEEFAC-0015-0000-0006-ABCDEFFEDCBC} [HKEY_LOCAL_MACHINE] -> %ProgramFiles%\Java\jre1.5.0_06\bin\NPJPI150_06.dll [Sun Java Console] -> Sun Microsystems, Inc. [Ver = 5.0.60.5 | Size = 69746 bytes | Modified Date = 11/10/2005 3:22:12 PM | Attr = ]
{08B0E5C0-4FCB-11CF-AAA5-00401C608501}:{CAFEEFAC-0015-0000-0006-ABCDEFFEDCBC} [HKEY_CURRENT_USER] -> %ProgramFiles%\Java\jre1.5.0_06\bin\ssv.dll [Sun Java Console] -> Sun Microsystems, Inc. [Ver = 5.0.60.5 | Size = 184423 bytes | Modified Date = 11/10/2005 3:22:12 PM | Attr = ]
< Internet Explorer Extensions [HKEY_CURRENT_USER\] > -> HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Extensions\ ->
{9B7E79AC-A646-4e45-A70F-1B3981FE370E}\\ButtonText [HKEY_LOCAL_MACHINE] -> [Reg Error: Key does not exist or could not be opened.] -> File not found
{9B7E79AC-A646-4e45-A70F-1B3981FE370E}\\CLSID [HKEY_LOCAL_MACHINE] -> [{0000031A-0000-0000-C000-000000000046}] -> File not found
{9B7E79AC-A646-4e45-A70F-1B3981FE370E}\\Default Visible [HKEY_LOCAL_MACHINE] -> [Reg Error: Key does not exist or could not be opened.] -> File not found
{9B7E79AC-A646-4e45-A70F-1B3981FE370E}\\HotIcon [HKEY_LOCAL_MACHINE] -> [Reg Error: Key does not exist or could not be opened.] -> File not found
{9B7E79AC-A646-4e45-A70F-1B3981FE370E}\\Icon [HKEY_LOCAL_MACHINE] -> [Reg Error: Key does not exist or could not be opened.] -> File not found
{9B7E79AC-A646-4e45-A70F-1B3981FE370E}\\Script [HKEY_LOCAL_MACHINE] -> [Reg Error: Key does not exist or could not be opened.] -> File not found
< Internet Explorer Menu Extensions [HKEY_CURRENT_USER\] > -> HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\MenuExt\ ->
&Search -> -> File not found
iGive Shopping Window -> -> File not found
< Internet Explorer Plugins [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Plugins\ ->
PluginsPageFriendlyName -> Microsoft ActiveX Gallery ->
PluginsPage -> http://activex.microsoft.com/controls/find.asp?ext=%s&mime=%s ->
< DNS Name Servers [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\Adapters\ ->
{B7E5F9C9-B2D5-4C81-9C55-48D8BD3D9944} -> (Dell Wireless 1390 WLAN Mini-Card) ->
{C8D61237-E46E-4CBE-A721-7076CA21E5AF} -> (Broadcom 440x 10/100 Integrated Controller) ->
{F4124EBD-B5B9-4458-A9A7-CFDC75C26646} -> (1394 Net Adapter) ->
< Winsock2 Catalogs [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\ ->
NameSpace_Catalog5\Catalog_Entries\000000000005 [mdnsNSP] -> %ProgramFiles%\Bonjour\mdnsNSP.dll -> Apple Inc. [Ver = 1,0,4,12 | Size = 147456 bytes | Modified Date = 7/24/2007 3:17:08 PM | Attr = ]
< Protocol Handlers [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\ ->
ipp: [HKEY_LOCAL_MACHINE] -> No CLSID value
msdaipp: [HKEY_LOCAL_MACHINE] -> No CLSID value
< Downloaded Program Files > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\ ->
{02BCC737-B171-4746-94C9-0D8A0B2C0089}[HKEY_LOCAL_MACHINE] -> http://office.microsoft.com/templates/ieawsdc.cab[Microsoft Office Template and Media Control] ->
{02BF25D5-8C17-4B23-BC80-D3488ABDDC6B}[HKEY_LOCAL_MACHINE] -> http://www.apple.com/qtactivex/qtplugin.cab[QuickTime Object] ->
{1A1F56AA-3401-46F9-B277-D57F3421F821}[HKEY_LOCAL_MACHINE] -> http://www.worldwinner.com/games/v47/shared/FunGamesLoader.cab[FunGamesLoader Object] ->
{26FCCDF9-A7E1-452A-A73D-7BF7B4D0BA6C}[HKEY_LOCAL_MACHINE] -> http://o.aolcdn.com/pictures/ap/Resources/2.0.8.98/cab/aolpPlugins.10.6.0.6.cab[AOL Pictures Uploader Class] ->
{2E4A92AB-F2C0-456A-9935-B715439790D7}[HKEY_LOCAL_MACHINE] -> https://www.permissionresearch.com/Config/CSetup_hooking_xp.cab[Reg Error: Key does not exist or could not be opened.] ->
{48DD0448-9209-4F81-9F6D-D83562940134}[HKEY_LOCAL_MACHINE] -> http://lads.myspace.com/upload/MySpaceUploader.cab[MySpace Uploader Control] ->
{5E92F538-B50B-46C5-9C5F-C6EECED3F6C6}[HKEY_LOCAL_MACHINE] -> http://www.infospace.com/mypoints.main/tbar/mypointsSetup.exe[Reg Error: Key does not exist or could not be opened.] ->
{615F158E-D5CA-422F-A8E7-F6A5EED7063B}[HKEY_LOCAL_MACHINE] -> http://www.worldwinner.com/games/v46/bejeweled/bejeweled.cab[Bejeweled Control] ->
{8A94C905-FF9D-43B6-8708-F0F22D22B1CB}[HKEY_LOCAL_MACHINE] -> http://www.worldwinner.com/games/shared/wwlaunch.cab[Wwlaunch Control] ->
{8AD9C840-044E-11D1-B3E9-00805F499D93}[HKEY_LOCAL_MACHINE] -> http://java.sun.com/update/1.5.0/jinstall-1_5_0_06-windows-i586.cab[Java Plug-in 1.5.0_06] ->
{BE71A78B-77DB-451C-A761-59B37022D544}[HKEY_LOCAL_MACHINE] -> http://o.aolcdn.com/pictures/ap/Resources/2.0.5.78/cab/aolpPlugins.10.5.0.4.cab[AOL Newport Downloader Ctrl] ->
{CAFEEFAC-0015-0000-0006-ABCDEFFEDCBA}[HKEY_LOCAL_MACHINE] -> http://java.sun.com/update/1.5.0/jinstall-1_5_0_06-windows-i586.cab[Java Plug-in 1.5.0_06] ->
{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}[HKEY_LOCAL_MACHINE] -> http://java.sun.com/update/1.5.0/jinstall-1_5_0_06-windows-i586.cab[Java Plug-in 1.5.0_06] ->
{D27CDB6E-AE6D-11CF-96B8-444553540000}[HKEY_LOCAL_MACHINE] -> http://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab[Shockwave Flash Object] ->
< Module Usage Keys [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ModuleUsage\ ->
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ModuleUsage\ -> ->
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ModuleUsage\C:/Program Files/AOL 9.0/unicows.dll\ -> ->
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ModuleUsage\C:/Program Files/AOL 9.0/unicows.dll\\.Owner -> Unknown Owner ->
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ModuleUsage\C:/Program Files/AOL 9.0/unicows.dll\\{48DD0448-9209-4F81-9F6D-D83562940134} -> ->
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ModuleUsage\C:/WINDOWS/Downloaded Program Files/bejeweled.ocx\ -> ->
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ModuleUsage\C:/WINDOWS/Downloaded Program Files/bejeweled.ocx\\.Owner -> {615F158E-D5CA-422F-A8E7-F6A5EED7063B} ->
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ModuleUsage\C:/WINDOWS/Downloaded Program Files/bejeweled.ocx\\{615F158E-D5CA-422F-A8E7-F6A5EED7063B} -> ->
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ModuleUsage\C:/WINDOWS/Downloaded Program Files/csetup.dll\ -> ->
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ModuleUsage\C:/WINDOWS/Downloaded Program Files/csetup.dll\\.Owner -> {2E4A92AB-F2C0-456A-9935-B715439790D7} ->
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ModuleUsage\C:/WINDOWS/Downloaded Program Files/csetup.dll\\{2E4A92AB-F2C0-456A-9935-B715439790D7} -> ->
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ModuleUsage\C:/WINDOWS/Downloaded Program Files/FunGamesLoader.dll\ -> ->
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ModuleUsage\C:/WINDOWS/Downloaded Program Files/FunGamesLoader.dll\\.Owner -> {1A1F56AA-3401-46F9-B277-D57F3421F821} ->
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ModuleUsage\C:/WINDOWS/Downloaded Program Files/FunGamesLoader.dll\\{1A1F56AA-3401-46F9-B277-D57F3421F821} -> ->
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ModuleUsage\C:/WINDOWS/Downloaded Program Files/IEAWSDC.DLL\ -> ->
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ModuleUsage\C:/WINDOWS/Downloaded Program Files/IEAWSDC.DLL\\.Owner -> {02BCC737-B171-4746-94C9-0D8A0B2C0089} ->
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ModuleUsage\C:/WINDOWS/Downloaded Program Files/IEAWSDC.DLL\\{02BCC737-B171-4746-94C9-0D8A0B2C0089} -> ->
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ModuleUsage\C:/WINDOWS/Downloaded Program Files/MySpaceUploader.ocx\ -> ->
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ModuleUsage\C:/WINDOWS/Downloaded Program Files/MySpaceUploader.ocx\\.Owner -> {48DD0448-9209-4F81-9F6D-D83562940134} ->
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ModuleUsage\C:/WINDOWS/Downloaded Program Files/MySpaceUploader.ocx\\{48DD0448-9209-4F81-9F6D-D83562940134} -> ->
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ModuleUsage\C:/WINDOWS/Downloaded Program Files/wwlaunch.ocx\ -> ->
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ModuleUsage\C:/WINDOWS/Downloaded Program Files/wwlaunch.ocx\\.Owner -> {8A94C905-FF9D-43B6-8708-F0F22D22B1CB} ->
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ModuleUsage\C:/WINDOWS/Downloaded Program Files/wwlaunch.ocx\\{8A94C905-FF9D-43B6-8708-F0F22D22B1CB} -> ->
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ModuleUsage\C:/WINDOWS/system32/cinstaller_hooking_xp.msi\ -> ->
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ModuleUsage\C:/WINDOWS/system32/cinstaller_hooking_xp.msi\\.Owner -> {2E4A92AB-F2C0-456A-9935-B715439790D7} ->
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ModuleUsage\C:/WINDOWS/system32/cinstaller_hooking_xp.msi\\{2E4A92AB-F2C0-456A-9935-B715439790D7} -> ->
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ModuleUsage\C:/WINDOWS/system32/mfc42.dll\ -> ->
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ModuleUsage\C:/WINDOWS/system32/mfc42.dll\\.Owner -> Unknown Owner ->
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ModuleUsage\C:/WINDOWS/system32/mfc42.dll\\{8A94C905-FF9D-43B6-8708-F0F22D22B1CB} -> ->
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ModuleUsage\C:/WINDOWS/system32/mfc42.dll\\{615F158E-D5CA-422F-A8E7-F6A5EED7063B} -> ->
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ModuleUsage\C:/WINDOWS/system32/mfc42.dll\\{1A1F56AA-3401-46F9-B277-D57F3421F821} -> ->
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ModuleUsage\C:/WINDOWS/system32/msvcrt.dll\ -> ->
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ModuleUsage\C:/WINDOWS/system32/msvcrt.dll\\.Owner -> Unknown Owner ->
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ModuleUsage\C:/WINDOWS/system32/msvcrt.dll\\{8A94C905-FF9D-43B6-8708-F0F22D22B1CB} -> ->
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ModuleUsage\C:/WINDOWS/system32/msvcrt.dll\\{615F158E-D5CA-422F-A8E7-F6A5EED7063B} -> ->
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ModuleUsage\C:/WINDOWS/system32/msvcrt.dll\\{1A1F56AA-3401-46F9-B277-D57F3421F821} -> ->
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ModuleUsage\C:/WINDOWS/system32/olepro32.dll\ -> ->
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ModuleUsage\C:/WINDOWS/system32/olepro32.dll\\.Owner -> Unknown Owner ->
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ModuleUsage\C:/WINDOWS/system32/olepro32.dll\\{8A94C905-FF9D-43B6-8708-F0F22D22B1CB} -> ->
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ModuleUsage\C:/WINDOWS/system32/olepro32.dll\\{615F158E-D5CA-422F-A8E7-F6A5EED7063B} -> ->
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ModuleUsage\C:/WINDOWS/system32/olepro32.dll\\{1A1F56AA-3401-46F9-B277-D57F3421F821} -> ->


[Registry - Additional Scans - Non-Microsoft Only]
< App Paths [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\ ->
AcroRd32.exe -> %ProgramFiles%\Adobe\Reader 8.0\Reader\AcroRd32.exe [C:\Program Files\Adobe\Reader 8.0\Reader\] -> Adobe Systems Incorporated [Ver = 8.1.0.2007051100 | Size = 341616 bytes | Modified Date = 5/11/2007 4:06:38 AM | Attr = ]
ADBOOK.EXE -> %CommonProgramFiles%\Broderbund\UMM\Adbook.exe [Reg Error: Value Path does not exist or could not be read.] -> Broderbund Properties LLC [Ver = 6, 0, 0, 1014 | Size = 3768320 bytes | Modified Date = 12/18/2001 2:27:56 PM | Attr = ]
AdvDraw.exe -> %CommonProgramFiles%\Broderbund\Advanced Drawing\advdraw.exe [Reg Error: Value Path does not exist or could not be read.] -> Broderbund Properties LLC [Ver = 4, 0, 0, 1011 | Size = 741376 bytes | Modified Date = 12/11/2001 11:00:02 AM | Attr = ]
Aol.exe -> %ProgramFiles%\AOL 9.1\aol.exe [C:\Program Files\AOL 9.1] -> AOL, LLC. [Ver = 9.05.001 | Size = 50528 bytes | Modified Date = 10/27/2007 1:44:58 PM | Attr = ]
aolacsd.exe -> %CommonProgramFiles%\AOL\ACS\AOLacsd.exe [C:\Program Files\Common Files\AOL\1168532354\ee] -> AOL LLC [Ver = 4.6.1.2 | Size = 46640 bytes | Modified Date = 10/23/2006 8:50:35 AM | Attr = R ]
aoldial.exe -> %CommonProgramFiles%\AOL\ACS\AOLDial.exe [C:\Program Files\Common Files\AOL\1168532354\ee] -> AOL LLC [Ver = 4.6.1.2 | Size = 71216 bytes | Modified Date = 10/23/2006 8:50:37 AM | Attr = R ]
AOLLaunch.exe -> %CommonProgramFiles%\AOL\Launch\aollaunch.exe [C:\Program Files\Common Files\AOL\1168532354\ee] -> AOL LLC [Ver = 15.5.1.2 | Size = 42032 bytes | Modified Date = 5/25/2007 1:16:09 PM | Attr = ]
ashAvast.exe -> %ProgramFiles%\Alwil Software\Avast4\ashAvast.exe [C:\Program Files\Alwil Software\Avast4] -> ALWIL Software [Ver = 4, 8, 1169, 0 | Size = 271736 bytes | Modified Date = 3/29/2008 2:18:06 PM | Attr = ]
cmmgr32.exe -> %SystemRoot%\system32\cmmgr32.exe [C:\WINDOWS\system32] -> File not found
combofix.exe -> %UserProfile%\Desktop\ComboFix.exe [Reg Error: Value Path does not exist or could not be read.] -> File not found
CRDMIND.EXE -> %CommonProgramFiles%\Broderbund\UMM\Crdmind.exe [Reg Error: Value Path does not exist or could not be read.] -> Broderbund Properties LLC [Ver = 4, 0, 0, 1011 | Size = 253952 bytes | Modified Date = 12/11/2001 11:00:36 AM | Attr = ]
DLG.exe -> %ProgramFiles%\Digital Line Detect\DLG.exe [C:\Program Files\Digital Line Detect] -> BVRP Software [Ver = 1, 0, 0, 1 | Size = 24576 bytes | Modified Date = 10/29/2003 4:06:00 AM | Attr = ]
firefox.exe -> %ProgramFiles%\Mozilla Firefox\firefox.exe [C:\Program Files\Mozilla Firefox] -> Mozilla Corporation [Ver = 1.8.1.14: 2008040413 | Size = 7660656 bytes | Modified Date = 4/17/2008 7:53:49 AM | Attr = ]
GomezPEER.exe -> %ProgramFiles%\Gomez\GomezPEER\GomezPEER.exe [C:\Program Files\Gomez\GomezPEER] -> File not found
HpqApkil.exe -> %ProgramFiles%\HP\Digital Imaging\Unload\HpqApkil.exe [C:\Program Files\HP\Digital Imaging\Unload\;C:\Program Files\HP\Digital Imaging\bin] -> Hewlett-Packard [Ver = 7.0.0.229 | Size = 49152 bytes | Modified Date = 2/9/2006 5:43:56 PM | Attr = R ]
HpqDIA.exe -> %ProgramFiles%\HP\Digital Imaging\Unload\HpqDIA.exe [C:\Program Files\HP\Digital Imaging\Unload\] -> [Ver = 7.0.0.229 | Size = 573440 bytes | Modified Date = 2/9/2006 5:41:28 PM | Attr = ]
HpqDIAS.exe -> %ProgramFiles%\HP\Digital Imaging\Unload\HpqDIAS.exe [C:\Program Files\HP\Digital Imaging\Unload\] -> [Ver = 7.0.0.229 | Size = 352256 bytes | Modified Date = 2/9/2006 5:41:30 PM | Attr = ]
hpqisc01.exe -> %ProgramFiles%\HP\Digital Imaging\bin\hpqisc01.exe [C:\Program Files\Common Files\HP\Digital Imaging\bin] -> Hewlett-Packard Development Co. L.P. [Ver = 070.000.86.000 | Size = 421888 bytes | Modified Date = 2/2/2006 6:08:26 PM | Attr = ]
hpqise01.exe -> %ProgramFiles%\HP\Digital Imaging\bin\hpqise01.exe [C:\Program Files\Common Files\HP\Digital Imaging\bin] -> Hewlett-Packard Development Co. L.P. [Ver = 070.000.86.000 | Size = 380928 bytes | Modified Date = 2/2/2006 6:09:30 PM | Attr = ]
hpqpanos.exe -> %ProgramFiles%\HP\Digital Imaging\bin\hpqpanos.exe [C:\Program Files\Common Files\HP\Digital Imaging\Bin] -> Hewlett-Packard Development Co. L.P. [Ver = 070.000.86.000 | Size = 270336 bytes | Modified Date = 2/2/2006 5:57:06 PM | Attr = ]
HpqPhUnl.exe -> %ProgramFiles%\HP\Digital Imaging\Unload\HpqPhUnl.exe [C:\Program Files\HP\Digital Imaging\Unload\] -> Hewlett-Packard [Ver = 7.0.0.229 | Size = 110592 bytes | Modified Date = 2/9/2006 5:43:36 PM | Attr = R ]
HpqPSmon.exe -> %ProgramFiles%\HP\Digital Imaging\Unload\HpqPSmon.exe [C:\Program Files\HP\Digital Imaging\Unload\;C:\Program Files\HP\Digital Imaging\bin] -> Hewlett-Packard [Ver = 7.0.0.229 | Size = 110592 bytes | Modified Date = 2/9/2006 5:44:30 PM | Attr = R ]
hpqpsxp.exe -> %ProgramFiles%\HP\Digital Imaging\bin\HPQPSXP.exe [C:\Program Files\Common Files\HP\Digital Imaging\Bin] -> Hewlett-Packard Development Co. L.P. [Ver = 070.000.86.000 | Size = 466944 bytes | Modified Date = 2/2/2006 5:59:12 PM | Attr = ]
hpqqpawp.exe -> %ProgramFiles%\HP\Digital Imaging\bin\hpqqpawp.exe [C:\Program Files\Common Files\HP\Digital Imaging\Bin] -> Hewlett-Packard Development Co. L.P. [Ver = 070.000.86.000 | Size = 348160 bytes | Modified Date = 2/2/2006 6:01:44 PM | Attr = ]
HpqUnSet.exe -> %ProgramFiles%\HP\Digital Imaging\Unload\HpqUnSet.exe [C:\Program Files\HP\Digital Imaging\Unload\] -> Hewlett-Packard [Ver = 7.0.0.229 | Size = 61440 bytes | Modified Date = 2/9/2006 5:43:40 PM | Attr = R ]
hpqvpswp.exe -> %ProgramFiles%\HP\Digital Imaging\bin\hpqvpswp.exe [C:\Program Files\HP\Digital Imaging\bin\] -> Hewlett-Packard [Ver = 7.0.0.229 | Size = 151552 bytes | Modified Date = 2/9/2006 5:46:20 PM | Attr = R ]
HpqXfer.exe -> %ProgramFiles%\HP\Digital Imaging\Unload\HpqXfer.exe [C:\Program Files\HP\Digital Imaging\Unload\] -> Hewlett-Packard [Ver = 7.0.0.229 | Size = 122880 bytes | Modified Date = 2/9/2006 5:43:40 PM | Attr = R ]
hypertrm.exe -> %ProgramFiles%\Windows NT\hypertrm.exe [Reg Error: Value Path does not exist or could not be read.] -> Hilgraeve, Inc. [Ver = 5.1.2600.0 | Size = 28160 bytes | Modified Date = 8/10/2004 7:00:00 AM | Attr = ]
ImageReady.exe -> %ProgramFiles%\Adobe\Photoshop 7.0\ImageReady.exe [C:\Program Files\Adobe\Photoshop 7.0] -> Adobe Systems Incorporated [Ver = Version 7.0 | Size = 13336651 bytes | Modified Date = 4/4/2002 1:04:10 AM | Attr = ]
install.exe -> Reg Error: Value does not exist or could not be read. [Reg Error: Value Path does not exist or could not be read.] -> File not found
InterActual Player -> Reg Error: Value does not exist or could not be read. [Reg Error: Value Path does not exist or could not be read.] -> File not found
ipostage.exe -> %ProgramFiles%\Stamps.com Internet Postage\ipostage.exe [C:\Program Files\Stamps.com Internet Postage] -> File not found
iTunes.exe -> %ProgramFiles%\iTunes\iTunes.exe [Reg Error: Value Path does not exist or could not be read.] -> Apple Inc. [Ver = 7.6.2.9 | Size = 20638504 bytes | Modified Date = 3/30/2008 10:36:34 AM | Attr = ]
javaws.exe -> %ProgramFiles%\Java\jre1.5.0_06\bin\javaws.exe [C:\Program Files\Java\jre1.5.0_06\bin] -> Sun Microsystems, Inc. [Ver = 5.0.60.5 | Size = 127078 bytes | Modified Date = 11/10/2005 3:03:54 PM | Attr = ]
mplayer2.exe -> %ProgramFiles%\Windows Media Player\mplayer2.exe ["C:\Program Files\Windows Media Player"] -> File not found
msimn.exe -> [%ProgramFiles%\Outlook Express] -> File not found
MsoHtmEd.exe -> Reg Error: Value does not exist or could not be read. [Reg Error: Value Path does not exist or could not be read.] -> File not found
pcfriend.exe -> %ProgramFiles%\PCFriendly\pcfriend.exe [C:\Program Files\PCFriendly] -> InterActual Technologies, Inc. [Ver = 2.01.06.0123 | Size = 267776 bytes | Modified Date = 1/24/2000 10:32:04 PM | Attr = ]
Photoshop.exe -> %ProgramFiles%\Adobe\Photoshop 7.0\Photoshop.exe [C:\Program Files\Adobe\Photoshop 7.0] -> Adobe Systems, Incorporated [Ver = 7.0 | Size = 15900672 bytes | Modified Date = 1/18/2007 2:58:23 PM | Attr = ]
PictureViewer.exe -> %ProgramFiles%\QuickTime\PictureViewer.exe [C:\Program Files\QuickTime\] -> Apple Inc. [Ver = 7.4.5 | Size = 548864 bytes | Modified Date = 3/28/2008 11:3
  • 0

#8
Rorschach112
Posted 02 May 2008 - 04:41 AM

Rorschach112

    Ralphie

  • Retired Staff
  • 47,710 posts
The file is too big to post here so a lot of it is missing

Can you host it at that site I mentioned
  • 0

#9
nanajanet
Posted 02 May 2008 - 09:11 AM

nanajanet

    Member

  • Topic Starter
  • Member
  • PipPip
  • 64 posts
Ok. I will do it now. Thanks.
  • 0

#10
nanajanet
Posted 02 May 2008 - 09:21 AM

nanajanet

    Member

  • Topic Starter
  • Member
  • PipPip
  • 64 posts
Here is the link. Thanks.

http://www.mediafire.com/?jnbddtdgilc
  • 0

Advertisements

#11
Rorschach112
Posted 02 May 2008 - 03:47 PM

Rorschach112

    Ralphie

  • Retired Staff
  • 47,710 posts
Hello

Start OTScanIt. Copy/Paste the information in the quotebox below into the panel where it says "Paste fix here" and then click the Run Fix button.

[Kill Explorer]
[Unregister Dlls]
[Registry - Non-Microsoft Only]
< Run [HKEY_LOCAL_MACHINE\] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
YN -> igivm -> %ProgramFiles%\iGive__Shopping__Window\iGiveShoppingWindowv.exe ["C:\Program Files\iGive__Shopping__Window\iGiveShoppingWindowv.exe"]
YY -> spa_start -> %SystemRoot%\system32\{899433cf-4c4d-1386-3e32-b276b12a533e}.dll [C:\WINDOWS\System32\Rundll32.exe "C:\WINDOWS\system32\{899433cf-4c4d-1386-3e32-b276b12a533e}.dll" DllInit]
< SSODL [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad
YN -> {2016a466-91a2-43c6-97d8-2fd380f065ef} [HKEY_LOCAL_MACHINE] -> Reg Error: Key does not exist or could not be opened. [eitheror]
< SharedTaskScheduler [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SharedTaskScheduler
YN -> {2016a466-91a2-43c6-97d8-2fd380f065ef} [HKEY_LOCAL_MACHINE] -> Reg Error: Key does not exist or could not be opened. [eitheror]
< BHO's [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\
YN -> {1F732C4C-8BCA-43BB-9EB6-AF20B536ACAA} [HKEY_LOCAL_MACHINE] -> []
YY -> {994B5FB4-0103-44A6-B6B3-C73572B362BC} [HKEY_LOCAL_MACHINE] -> %SystemRoot%\system32\nsf578.dll [adzgalore]
YN -> {AF852A19-0051-406A-8C0F-5278E447B6B5} [HKEY_LOCAL_MACHINE] -> []
YY -> {de69c38e-c4f2-e5e4-4674-95f8bb02a1eb} [HKEY_LOCAL_MACHINE] -> %SystemRoot%\system32\{899433cf-4c4d-1386-3e32-b276b12a533e}.dll [cpmsky browser optimizer]
YY -> {f04c034b-de35-a982-86cf-20ec16fd4ce9} [HKEY_LOCAL_MACHINE] -> %SystemRoot%\system32\nsjBB.dll [adzgalore]
< Internet Explorer ToolBars [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\ToolBar
YN -> {84938242-5C5B-4A55-B6B9-A1507543B418} [HKEY_LOCAL_MACHINE] -> %ProgramFiles%\Video Access ActiveX Object\iesplugin.dll [Protection Bar]
< Internet Explorer ToolBars [HKEY_CURRENT_USER\] > -> HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\
YN -> ShellBrowser\\{C4069E3A-68F1-403E-B40E-20066696354B} [HKEY_LOCAL_MACHINE] -> Reg Error: Key does not exist or could not be opened. [Reg Error: Key does not exist or could not be opened.]
YN -> WebBrowser\\{0B53EAC3-8D69-4B9E-9B19-A37C9A5676A7} [HKEY_LOCAL_MACHINE] -> Reg Error: Key does not exist or could not be opened. [Reg Error: Key does not exist or could not be opened.]
YN -> WebBrowser\\{3BB63FD4-3C00-44D7-94A9-5DE211900DEF} [HKEY_LOCAL_MACHINE] -> Reg Error: Key does not exist or could not be opened. [Reg Error: Key does not exist or could not be opened.]
YN -> WebBrowser\\{84938242-5C5B-4A55-B6B9-A1507543B418} [HKEY_LOCAL_MACHINE] -> %ProgramFiles%\Video Access ActiveX Object\iesplugin.dll [Protection Bar]
< Internet Explorer Extensions [HKEY_CURRENT_USER\] > -> HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Extensions\
YN -> {9B7E79AC-A646-4e45-A70F-1B3981FE370E}\\ButtonText [HKEY_LOCAL_MACHINE] -> [Reg Error: Key does not exist or could not be opened.]
YN -> {9B7E79AC-A646-4e45-A70F-1B3981FE370E}\\CLSID [HKEY_LOCAL_MACHINE] -> [{0000031A-0000-0000-C000-000000000046}]
YN -> {9B7E79AC-A646-4e45-A70F-1B3981FE370E}\\Default Visible [HKEY_LOCAL_MACHINE] -> [Reg Error: Key does not exist or could not be opened.]
YN -> {9B7E79AC-A646-4e45-A70F-1B3981FE370E}\\HotIcon [HKEY_LOCAL_MACHINE] -> [Reg Error: Key does not exist or could not be opened.]
YN -> {9B7E79AC-A646-4e45-A70F-1B3981FE370E}\\Icon [HKEY_LOCAL_MACHINE] -> [Reg Error: Key does not exist or could not be opened.]
YN -> {9B7E79AC-A646-4e45-A70F-1B3981FE370E}\\Script [HKEY_LOCAL_MACHINE] -> [Reg Error: Key does not exist or could not be opened.]
< Internet Explorer Menu Extensions [HKEY_CURRENT_USER\] > -> HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\MenuExt\
YN -> &Search ->
YN -> iGive Shopping Window ->
[Registry - Additional Scans - Non-Microsoft Only]
< App Paths [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\
YN -> combofix.exe -> %UserProfile%\Desktop\ComboFix.exe [Reg Error: Value Path does not exist or could not be read.]
[Empty Temp Folders]
[Start Explorer]
[Reboot]


The fix should only take a very short time. When the fix is completed a message box will popup telling you that it is finished. Click the Ok button and Notepad will open with a log of actions taken during the fix. Post that information back here

I will review the information when it comes back in.




Please download Deckard's System Scanner (DSS) and save it to your Desktop.
  • Close all other windows before proceeding.
  • Double-click on dss.exe and follow the prompts.
  • If your anti-virus or firewall complains, please allow this script to run as it is not malicious.
  • When it has finished, dss will open two Notepads main.txt and extra.txt -- please copy (CTRL+A and then CTRL+C) and paste (CTRL+V) the contents of main.txt and extra.txt in your next reply.


Don't attach the DSS logs
  • 0

#12
nanajanet
Posted 02 May 2008 - 10:41 PM

nanajanet

    Member

  • Topic Starter
  • Member
  • PipPip
  • 64 posts
Explorer killed successfully
[Registry - Non-Microsoft Only]
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\\igivm deleted successfully.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\\spa_start deleted successfully.
C:\WINDOWS\system32\{899433cf-4c4d-1386-3e32-b276b12a533e}.dll unregistered successfully.
C:\WINDOWS\system32\{899433cf-4c4d-1386-3e32-b276b12a533e}.dll moved successfully.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad\\eitheror deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{2016a466-91a2-43c6-97d8-2fd380f065ef}\ not found.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SharedTaskScheduler\\{2016a466-91a2-43c6-97d8-2fd380f065ef} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{2016a466-91a2-43c6-97d8-2fd380f065ef}\ not found.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1F732C4C-8BCA-43BB-9EB6-AF20B536ACAA}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{1F732C4C-8BCA-43BB-9EB6-AF20B536ACAA}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{994B5FB4-0103-44A6-B6B3-C73572B362BC}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{994B5FB4-0103-44A6-B6B3-C73572B362BC}\ deleted successfully.
C:\WINDOWS\system32\nsf578.dll unregistered successfully.
C:\WINDOWS\system32\nsf578.dll moved successfully.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF852A19-0051-406A-8C0F-5278E447B6B5}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{AF852A19-0051-406A-8C0F-5278E447B6B5}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{de69c38e-c4f2-e5e4-4674-95f8bb02a1eb}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{de69c38e-c4f2-e5e4-4674-95f8bb02a1eb}\ not found.
File C:\WINDOWS\system32\{899433cf-4c4d-1386-3e32-b276b12a533e}.dll not found.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{f04c034b-de35-a982-86cf-20ec16fd4ce9}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{f04c034b-de35-a982-86cf-20ec16fd4ce9}\ deleted successfully.
File C:\WINDOWS\system32\nsjBB.dll not found.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\ToolBar\\{84938242-5C5B-4A55-B6B9-A1507543B418} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{84938242-5C5B-4A55-B6B9-A1507543B418}\ deleted successfully.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\ShellBrowser\\{C4069E3A-68F1-403E-B40E-20066696354B} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{C4069E3A-68F1-403E-B40E-20066696354B}\ not found.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{0B53EAC3-8D69-4B9E-9B19-A37C9A5676A7} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0B53EAC3-8D69-4B9E-9B19-A37C9A5676A7}\ not found.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{3BB63FD4-3C00-44D7-94A9-5DE211900DEF} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{3BB63FD4-3C00-44D7-94A9-5DE211900DEF}\ not found.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{84938242-5C5B-4A55-B6B9-A1507543B418} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{84938242-5C5B-4A55-B6B9-A1507543B418}\ not found.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Extensions\{9B7E79AC-A646-4e45-A70F-1B3981FE370E}\\ButtonText deleted successfully.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Extensions\{9B7E79AC-A646-4e45-A70F-1B3981FE370E}\\CLSID deleted successfully.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Extensions\{9B7E79AC-A646-4e45-A70F-1B3981FE370E}\\Default Visible deleted successfully.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Extensions\{9B7E79AC-A646-4e45-A70F-1B3981FE370E}\\HotIcon deleted successfully.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Extensions\{9B7E79AC-A646-4e45-A70F-1B3981FE370E}\\Icon deleted successfully.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Extensions\{9B7E79AC-A646-4e45-A70F-1B3981FE370E}\\Script deleted successfully.
Registry key HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\MenuExt\&Search\ deleted successfully.
Registry key HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\MenuExt\iGive Shopping Window\ deleted successfully.
[Registry - Additional Scans - Non-Microsoft Only]
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\combofix.exe\ deleted successfully.
[Empty Temp Folders]
File delete failed. C:\Documents and Settings\abdwybabe\Local Settings\Temp\hsperfdata_abdwybabe\1116 scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\abdwybabe\Local Settings\Temp\hpodvd09.log scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\abdwybabe\Local Settings\Temporary Internet Files\Content.IE5\YPQ160N4\iframe3[2].htm scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\abdwybabe\Local Settings\Temporary Internet Files\Content.IE5\YPQ160N4\iframe3[3].htm scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\abdwybabe\Local Settings\Temporary Internet Files\Content.IE5\YPQ160N4\Patty_468x60[1].htm scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\abdwybabe\Local Settings\Temporary Internet Files\Content.IE5\YPQ160N4\st[9] scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\abdwybabe\Local Settings\Temporary Internet Files\Content.IE5\YPQ160N4\vh[1].htm scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\abdwybabe\Local Settings\Temporary Internet Files\Content.IE5\O7LRQMLL\iframe3[5].htm scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\abdwybabe\Local Settings\Temporary Internet Files\Content.IE5\O7LRQMLL\iframe3[6].htm scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\abdwybabe\Local Settings\Temporary Internet Files\Content.IE5\M9PU0GZ5\139416_096[1].flv scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\abdwybabe\Local Settings\Temporary Internet Files\Content.IE5\M9PU0GZ5\139583_068[1].flv scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\abdwybabe\Local Settings\Temporary Internet Files\Content.IE5\M9PU0GZ5\eas[1].htm scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\abdwybabe\Local Settings\Temporary Internet Files\Content.IE5\M1D9V10G\47d15d04d1a3e[1].htm scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\abdwybabe\Local Settings\Temporary Internet Files\Content.IE5\M1D9V10G\47df7ed27a37a[1].htm scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\abdwybabe\Local Settings\Temporary Internet Files\Content.IE5\LTB218EQ\Patty_300x250[1].htm scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\abdwybabe\Local Settings\Temporary Internet Files\Content.IE5\HT1CPK5N\Patty_160x600[1].htm scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\abdwybabe\Local Settings\Temporary Internet Files\Content.IE5\FNNLSOD2\47d15d04d1a3e[1].htm scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\abdwybabe\Local Settings\Temporary Internet Files\Content.IE5\FNNLSOD2\st[10] scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\abdwybabe\Local Settings\Temporary Internet Files\Content.IE5\FNNLSOD2\st[4] scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\abdwybabe\Local Settings\Temporary Internet Files\Content.IE5\FNNLSOD2\st[5] scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\abdwybabe\Local Settings\Temporary Internet Files\Content.IE5\FNNLSOD2\st[6] scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\abdwybabe\Local Settings\Temporary Internet Files\Content.IE5\FNNLSOD2\st[7] scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\abdwybabe\Local Settings\Temporary Internet Files\Content.IE5\FNNLSOD2\st[8] scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\abdwybabe\Local Settings\Temporary Internet Files\Content.IE5\FNNLSOD2\st[9] scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\abdwybabe\Local Settings\Temporary Internet Files\Content.IE5\FNNLSOD2\vh[2].htm scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\abdwybabe\Local Settings\Temporary Internet Files\Content.IE5\FNNLSOD2\vh[3].htm scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\abdwybabe\Local Settings\Temporary Internet Files\Content.IE5\FNNLSOD2\vh[4].htm scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\abdwybabe\Local Settings\Temporary Internet Files\Content.IE5\FNNLSOD2\vh[5].htm scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\abdwybabe\Local Settings\Temporary Internet Files\Content.IE5\FNNLSOD2\vh[6].htm scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\abdwybabe\Local Settings\Temporary Internet Files\Content.IE5\FNNLSOD2\vh[7].htm scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\abdwybabe\Local Settings\Temporary Internet Files\Content.IE5\FNNLSOD2\vh[8].htm scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\abdwybabe\Local Settings\Temporary Internet Files\Content.IE5\FNNLSOD2\vh[9].htm scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\abdwybabe\Local Settings\Temporary Internet Files\Content.IE5\ESZ9ESDN\47df7ed27a37a[3].htm scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\abdwybabe\Local Settings\Temporary Internet Files\Content.IE5\ESZ9ESDN\iframe3[4].htm scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\abdwybabe\Local Settings\Temporary Internet Files\Content.IE5\ESZ9ESDN\st[5] scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\abdwybabe\Local Settings\Temporary Internet Files\Content.IE5\9NVCY532\47d15d04d1a3e[1].htm scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\abdwybabe\Local Settings\Temporary Internet Files\Content.IE5\9NVCY532\47df7ed27a37a[1].htm scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\abdwybabe\Local Settings\Temporary Internet Files\Content.IE5\9NVCY532\iframe3[6].htm scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\abdwybabe\Local Settings\Temporary Internet Files\Content.IE5\4AS2XCRC\47d15d04d1a3e[1].htm scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\abdwybabe\Local Settings\Temporary Internet Files\Content.IE5\4AS2XCRC\47df7ed27a37a[1].htm scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\abdwybabe\Local Settings\Temporary Internet Files\Content.IE5\3VDK5648\47df7ed27a37a[2].htm scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\abdwybabe\Local Settings\Temporary Internet Files\Content.IE5\3VDK5648\player_spotxchange[2].swf scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\abdwybabe\Local Settings\Temporary Internet Files\Content.IE5\index.dat scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\abdwybabe\Local Settings\Temporary Internet Files\AntiPhishing\B3BB5BBA-E7D5-40AB-A041-A5B1C0B26C8F.dat scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\index.dat scheduled to be deleted on reboot.
File delete failed. C:\WINDOWS\temp\_avast4_\unp112406613.tmp scheduled to be deleted on reboot.
File delete failed. C:\WINDOWS\temp\_avast4_\Webshlock.txt scheduled to be deleted on reboot.
File delete failed. C:\WINDOWS\temp\Perflib_Perfdata_5cc.dat scheduled to be deleted on reboot.
User temp folders emptied.
SystemRoot temp folder emptied.
IE temp folders emptied
RecycleBin -> emptied.
Explorer started successfully
< End of fix log >
OTScanIt by OldTimer - Version 1.0.11.12 fix logfile created on 05032008_002907

Files moved on Reboot...
File C:\Documents and Settings\abdwybabe\Local Settings\Temp\hsperfdata_abdwybabe\1116 not found!
C:\Documents and Settings\abdwybabe\Local Settings\Temp\hpodvd09.log moved successfully.
File C:\Documents and Settings\abdwybabe\Local Settings\Temporary Internet Files\Content.IE5\YPQ160N4\iframe3[2].htm not found!
File C:\Documents and Settings\abdwybabe\Local Settings\Temporary Internet Files\Content.IE5\YPQ160N4\iframe3[3].htm not found!
File C:\Documents and Settings\abdwybabe\Local Settings\Temporary Internet Files\Content.IE5\YPQ160N4\Patty_468x60[1].htm not found!
File C:\Documents and Settings\abdwybabe\Local Settings\Temporary Internet Files\Content.IE5\YPQ160N4\st[9] not found!
File C:\Documents and Settings\abdwybabe\Local Settings\Temporary Internet Files\Content.IE5\YPQ160N4\vh[1].htm not found!
File C:\Documents and Settings\abdwybabe\Local Settings\Temporary Internet Files\Content.IE5\O7LRQMLL\iframe3[5].htm not found!
File C:\Documents and Settings\abdwybabe\Local Settings\Temporary Internet Files\Content.IE5\O7LRQMLL\iframe3[6].htm not found!
C:\Documents and Settings\abdwybabe\Local Settings\Temporary Internet Files\Content.IE5\M9PU0GZ5\139416_096[1].flv moved successfully.
C:\Documents and Settings\abdwybabe\Local Settings\Temporary Internet Files\Content.IE5\M9PU0GZ5\139583_068[1].flv moved successfully.
File C:\Documents and Settings\abdwybabe\Local Settings\Temporary Internet Files\Content.IE5\M9PU0GZ5\eas[1].htm not found!
File C:\Documents and Settings\abdwybabe\Local Settings\Temporary Internet Files\Content.IE5\M1D9V10G\47d15d04d1a3e[1].htm not found!
File C:\Documents and Settings\abdwybabe\Local Settings\Temporary Internet Files\Content.IE5\M1D9V10G\47df7ed27a37a[1].htm not found!
File C:\Documents and Settings\abdwybabe\Local Settings\Temporary Internet Files\Content.IE5\LTB218EQ\Patty_300x250[1].htm not found!
File C:\Documents and Settings\abdwybabe\Local Settings\Temporary Internet Files\Content.IE5\HT1CPK5N\Patty_160x600[1].htm not found!
C:\Documents and Settings\abdwybabe\Local Settings\Temporary Internet Files\Content.IE5\FNNLSOD2\47d15d04d1a3e[1].htm moved successfully.
File C:\Documents and Settings\abdwybabe\Local Settings\Temporary Internet Files\Content.IE5\FNNLSOD2\st[10] not found!
File C:\Documents and Settings\abdwybabe\Local Settings\Temporary Internet Files\Content.IE5\FNNLSOD2\st[4] not found!
File C:\Documents and Settings\abdwybabe\Local Settings\Temporary Internet Files\Content.IE5\FNNLSOD2\st[5] not found!
File C:\Documents and Settings\abdwybabe\Local Settings\Temporary Internet Files\Content.IE5\FNNLSOD2\st[6] not found!
File C:\Documents and Settings\abdwybabe\Local Settings\Temporary Internet Files\Content.IE5\FNNLSOD2\st[7] not found!
File C:\Documents and Settings\abdwybabe\Local Settings\Temporary Internet Files\Content.IE5\FNNLSOD2\st[8] not found!
File C:\Documents and Settings\abdwybabe\Local Settings\Temporary Internet Files\Content.IE5\FNNLSOD2\st[9] not found!
File C:\Documents and Settings\abdwybabe\Local Settings\Temporary Internet Files\Content.IE5\FNNLSOD2\vh[2].htm not found!
File C:\Documents and Settings\abdwybabe\Local Settings\Temporary Internet Files\Content.IE5\FNNLSOD2\vh[3].htm not found!
File C:\Documents and Settings\abdwybabe\Local Settings\Temporary Internet Files\Content.IE5\FNNLSOD2\vh[4].htm not found!
File C:\Documents and Settings\abdwybabe\Local Settings\Temporary Internet Files\Content.IE5\FNNLSOD2\vh[5].htm not found!
File C:\Documents and Settings\abdwybabe\Local Settings\Temporary Internet Files\Content.IE5\FNNLSOD2\vh[6].htm not found!
File C:\Documents and Settings\abdwybabe\Local Settings\Temporary Internet Files\Content.IE5\FNNLSOD2\vh[7].htm not found!
File C:\Documents and Settings\abdwybabe\Local Settings\Temporary Internet Files\Content.IE5\FNNLSOD2\vh[8].htm not found!
File C:\Documents and Settings\abdwybabe\Local Settings\Temporary Internet Files\Content.IE5\FNNLSOD2\vh[9].htm not found!
C:\Documents and Settings\abdwybabe\Local Settings\Temporary Internet Files\Content.IE5\ESZ9ESDN\47df7ed27a37a[3].htm moved successfully.
File C:\Documents and Settings\abdwybabe\Local Settings\Temporary Internet Files\Content.IE5\ESZ9ESDN\iframe3[4].htm not found!
File C:\Documents and Settings\abdwybabe\Local Settings\Temporary Internet Files\Content.IE5\ESZ9ESDN\st[5] not found!
C:\Documents and Settings\abdwybabe\Local Settings\Temporary Internet Files\Content.IE5\9NVCY532\47d15d04d1a3e[1].htm moved successfully.
File C:\Documents and Settings\abdwybabe\Local Settings\Temporary Internet Files\Content.IE5\9NVCY532\47df7ed27a37a[1].htm not found!
File C:\Documents and Settings\abdwybabe\Local Settings\Temporary Internet Files\Content.IE5\9NVCY532\iframe3[6].htm not found!
File C:\Documents and Settings\abdwybabe\Local Settings\Temporary Internet Files\Content.IE5\4AS2XCRC\47d15d04d1a3e[1].htm not found!
File C:\Documents and Settings\abdwybabe\Local Settings\Temporary Internet Files\Content.IE5\4AS2XCRC\47df7ed27a37a[1].htm not found!
File C:\Documents and Settings\abdwybabe\Local Settings\Temporary Internet Files\Content.IE5\3VDK5648\47df7ed27a37a[2].htm not found!
C:\Documents and Settings\abdwybabe\Local Settings\Temporary Internet Files\Content.IE5\3VDK5648\player_spotxchange[2].swf moved successfully.
C:\Documents and Settings\abdwybabe\Local Settings\Temporary Internet Files\Content.IE5\index.dat moved successfully.
C:\Documents and Settings\abdwybabe\Local Settings\Temporary Internet Files\AntiPhishing\B3BB5BBA-E7D5-40AB-A041-A5B1C0B26C8F.dat moved successfully.
C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\index.dat moved successfully.
File C:\WINDOWS\temp\_avast4_\unp112406613.tmp not found!
File C:\WINDOWS\temp\_avast4_\Webshlock.txt not found!
File move failed. C:\WINDOWS\temp\Perflib_Perfdata_5cc.dat scheduled to be moved on reboot.
  • 0

#13
Rorschach112
Posted 03 May 2008 - 04:55 AM

Rorschach112

    Ralphie

  • Retired Staff
  • 47,710 posts
Can you post the DSS logs
  • 0

#14
nanajanet
Posted 03 May 2008 - 08:19 AM

nanajanet

    Member

  • Topic Starter
  • Member
  • PipPip
  • 64 posts
What are the DSS logs?
  • 0

#15
Rorschach112
Posted 03 May 2008 - 08:21 AM

Rorschach112

    Ralphie

  • Retired Staff
  • 47,710 posts
Do this

Please download Deckard's System Scanner (DSS) and save it to your Desktop.
  • Close all other windows before proceeding.
  • Double-click on dss.exe and follow the prompts.
  • If your anti-virus or firewall complains, please allow this script to run as it is not malicious.
  • When it has finished, dss will open two Notepads main.txt and extra.txt -- please copy (CTRL+A and then CTRL+C) and paste (CTRL+V) the contents of main.txt and extra.txt in your next reply.

  • 0
Back to Virus, Spyware, Malware Removal · Next Unread Topic →




Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

  1. Geeks to Go Community
  2. Security
  3. Virus, Spyware, Malware Removal

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP