Jump to content

Welcome to Geeks to Go - Register now for FREE

Need help with your computer or device? Want to learn new tech skills? You're in the right place!
Geeks to Go is a friendly community of tech experts who can solve any problem you have. Just create a free account and post your question. Our volunteers will reply quickly and guide you through the steps. Don't let tech troubles stop you. Join Geeks to Go now and get the support you need!

How it Works Create Account
Photo

running slow [RESOLVED]

Started by Daija , Sep 15 2005 09:52 AM

  • This topic is locked This topic is locked

#16
Daija
Posted 21 September 2005 - 12:11 PM

Daija

    Member

  • Topic Starter
  • Member
  • PipPip
  • 29 posts
I hope this is it , this is all i could find in the files.



9/21/2005 9:22:48 AM::------------------------------------------------------------------
9/21/2005 9:22:48 AM::Initializing Clean - (ScanID: 95B9CDFF-3640-421F-BCD4-19DB2A)
9/21/2005 9:22:48 AM::Remove Threat (ID:16055)
9/21/2005 9:22:48 AM::Clean Threat PSGuard (ID:16055)
9/21/2005 9:22:49 AM::Removing file c:\documents and settings\loren\application data\shudder global limited\PSGuard\Autorun\HKCURun\RunOnce
9/21/2005 9:22:49 AM::Disable file c:\documents and settings\loren\application data\shudder global limited\PSGuard\Autorun\HKCURun\RunOnce and quarantine to C:\Program Files\Microsoft AntiSpyware\Quarantine\87727597-1B59-4924-9278-C9D3BE\74810838-DA86-4175-894A-7310E1
9/21/2005 9:22:49 AM::Removing file c:\documents and settings\loren\application data\shudder global limited\PSGuard\Autorun\HKCURun\RunOnceEx
9/21/2005 9:22:49 AM::Disable file c:\documents and settings\loren\application data\shudder global limited\PSGuard\Autorun\HKCURun\RunOnceEx and quarantine to C:\Program Files\Microsoft AntiSpyware\Quarantine\87727597-1B59-4924-9278-C9D3BE\687E9177-2578-4E65-9325-4EFC9F
9/21/2005 9:22:49 AM::Removing file c:\documents and settings\loren\application data\shudder global limited\PSGuard\Autorun\HKLMRun\RunOnce
9/21/2005 9:22:49 AM::Disable file c:\documents and settings\loren\application data\shudder global limited\PSGuard\Autorun\HKLMRun\RunOnce and quarantine to C:\Program Files\Microsoft AntiSpyware\Quarantine\87727597-1B59-4924-9278-C9D3BE\8AF23024-9A2D-43A2-BBAA-ED902E
9/21/2005 9:22:49 AM::Removing file c:\documents and settings\loren\application data\shudder global limited\PSGuard\Autorun\HKLMRun\RunOnceEx
9/21/2005 9:22:49 AM::Disable file c:\documents and settings\loren\application data\shudder global limited\PSGuard\Autorun\HKLMRun\RunOnceEx and quarantine to C:\Program Files\Microsoft AntiSpyware\Quarantine\87727597-1B59-4924-9278-C9D3BE\B8350BC3-B38B-4BB2-95F0-FB7EE0
9/21/2005 9:22:49 AM::Removing file c:\documents and settings\loren\application data\shudder global limited\PSGuard\Autorun\HKCURun
9/21/2005 9:22:49 AM::Disable file c:\documents and settings\loren\application data\shudder global limited\PSGuard\Autorun\HKCURun and quarantine to C:\Program Files\Microsoft AntiSpyware\Quarantine\87727597-1B59-4924-9278-C9D3BE\152E26B5-21B6-4C0B-8494-008DD5
9/21/2005 9:22:49 AM::Removing file c:\documents and settings\loren\application data\shudder global limited\PSGuard\Autorun\HKLMRun
9/21/2005 9:22:49 AM::Disable file c:\documents and settings\loren\application data\shudder global limited\PSGuard\Autorun\HKLMRun and quarantine to C:\Program Files\Microsoft AntiSpyware\Quarantine\87727597-1B59-4924-9278-C9D3BE\5BA866BB-BE3C-4596-9DA1-63B4A8
9/21/2005 9:22:49 AM::Removing file c:\documents and settings\loren\application data\shudder global limited\PSGuard\Autorun\StartMenuAllUsers
9/21/2005 9:22:49 AM::Disable file c:\documents and settings\loren\application data\shudder global limited\PSGuard\Autorun\StartMenuAllUsers and quarantine to C:\Program Files\Microsoft AntiSpyware\Quarantine\87727597-1B59-4924-9278-C9D3BE\8BAE52D9-4226-4417-9A18-4217A9
9/21/2005 9:22:49 AM::Removing file c:\documents and settings\loren\application data\shudder global limited\PSGuard\Autorun\StartMenuCurrentUser
9/21/2005 9:22:49 AM::Disable file c:\documents and settings\loren\application data\shudder global limited\PSGuard\Autorun\StartMenuCurrentUser and quarantine to C:\Program Files\Microsoft AntiSpyware\Quarantine\87727597-1B59-4924-9278-C9D3BE\8B849307-1050-489A-850F-7CE875
9/21/2005 9:22:49 AM::Removing file c:\documents and settings\loren\application data\shudder global limited\PSGuard\Autorun
9/21/2005 9:22:49 AM::Disable file c:\documents and settings\loren\application data\shudder global limited\PSGuard\Autorun and quarantine to C:\Program Files\Microsoft AntiSpyware\Quarantine\87727597-1B59-4924-9278-C9D3BE\A6EB678F-A46C-40AB-AE3B-F2EF1D
9/21/2005 9:22:49 AM::Removing file c:\documents and settings\loren\application data\shudder global limited\PSGuard\BrowserObjects
9/21/2005 9:22:49 AM::Disable file c:\documents and settings\loren\application data\shudder global limited\PSGuard\BrowserObjects and quarantine to C:\Program Files\Microsoft AntiSpyware\Quarantine\87727597-1B59-4924-9278-C9D3BE\4582A528-D8EA-42B0-BF1B-56E566
9/21/2005 9:22:49 AM::Removing file c:\documents and settings\loren\application data\shudder global limited\PSGuard
9/21/2005 9:22:49 AM::Disable file c:\documents and settings\loren\application data\shudder global limited\PSGuard and quarantine to C:\Program Files\Microsoft AntiSpyware\Quarantine\87727597-1B59-4924-9278-C9D3BE\98EF78B4-77C2-4129-B96B-4E9325
9/21/2005 9:22:49 AM::Delete folder c:\documents and settings\loren\application data\shudder global limited\
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{15DC7116-E58E-4395-A45A-A1C99B17C030}\InprocServer32 [=C:\Program Files\PSGuard\WndSystem.dll
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{15DC7116-E58E-4395-A45A-A1C99B17C030}\InprocServer32 [ThreadingModel=Apartment
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{15DC7116-E58E-4395-A45A-A1C99B17C030}\InprocServer32
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{15DC7116-E58E-4395-A45A-A1C99B17C030}\Programmable
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{15DC7116-E58E-4395-A45A-A1C99B17C030}\TypeLib [={EAF7CBE4-5EE9-46FB-8FC1-A3A477026E5D}
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{15DC7116-E58E-4395-A45A-A1C99B17C030}\TypeLib
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{15DC7116-E58E-4395-A45A-A1C99B17C030}
9/21/2005 9:22:49 AM::Removing registry key HKEY_CLASSES_ROOT\clsid\{15DC7116-E58E-4395-A45A-A1C99B17C030}
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{17E02586-A91D-4A9D-A74E-187B05DFFE6F}\InprocServer32 [=C:\Program Files\PSGuard\Core.dll
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{17E02586-A91D-4A9D-A74E-187B05DFFE6F}\InprocServer32
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{17E02586-A91D-4A9D-A74E-187B05DFFE6F}\Programmable
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{17E02586-A91D-4A9D-A74E-187B05DFFE6F}\TypeLib [={4439FADF-B7B1-41A1-B5E0-3E5274EA122C}
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{17E02586-A91D-4A9D-A74E-187B05DFFE6F}\TypeLib
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{17E02586-A91D-4A9D-A74E-187B05DFFE6F}
9/21/2005 9:22:49 AM::Removing registry key HKEY_CLASSES_ROOT\clsid\{17E02586-A91D-4A9D-A74E-187B05DFFE6F}
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{1BD98DFD-2DA9-4C54-85D7-BE03A0F9C487}\InprocServer32 [=C:\Program Files\PSGuard\Core.dll
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{1BD98DFD-2DA9-4C54-85D7-BE03A0F9C487}\InprocServer32
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{1BD98DFD-2DA9-4C54-85D7-BE03A0F9C487}\Programmable
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{1BD98DFD-2DA9-4C54-85D7-BE03A0F9C487}\TypeLib [={4439FADF-B7B1-41A1-B5E0-3E5274EA122C}
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{1BD98DFD-2DA9-4C54-85D7-BE03A0F9C487}\TypeLib
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{1BD98DFD-2DA9-4C54-85D7-BE03A0F9C487}
9/21/2005 9:22:49 AM::Removing registry key HKEY_CLASSES_ROOT\clsid\{1BD98DFD-2DA9-4C54-85D7-BE03A0F9C487}
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{1C94EA51-3800-4F08-B5DC-A5B67823FFEA}\InprocServer32 [=C:\Program Files\PSGuard\Core.dll
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{1C94EA51-3800-4F08-B5DC-A5B67823FFEA}\InprocServer32
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{1C94EA51-3800-4F08-B5DC-A5B67823FFEA}\Programmable
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{1C94EA51-3800-4F08-B5DC-A5B67823FFEA}\TypeLib [={4439FADF-B7B1-41A1-B5E0-3E5274EA122C}
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{1C94EA51-3800-4F08-B5DC-A5B67823FFEA}\TypeLib
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{1C94EA51-3800-4F08-B5DC-A5B67823FFEA}
9/21/2005 9:22:49 AM::Removing registry key HKEY_CLASSES_ROOT\clsid\{1C94EA51-3800-4F08-B5DC-A5B67823FFEA}
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{20D1AF34-6E19-42D8-AF9F-BDFBE45C2454}\InprocServer32 [=C:\Program Files\PSGuard\Core.dll
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{20D1AF34-6E19-42D8-AF9F-BDFBE45C2454}\InprocServer32
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{20D1AF34-6E19-42D8-AF9F-BDFBE45C2454}\Programmable
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{20D1AF34-6E19-42D8-AF9F-BDFBE45C2454}\TypeLib [={4439FADF-B7B1-41A1-B5E0-3E5274EA122C}
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{20D1AF34-6E19-42D8-AF9F-BDFBE45C2454}\TypeLib
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{20D1AF34-6E19-42D8-AF9F-BDFBE45C2454}
9/21/2005 9:22:49 AM::Removing registry key HKEY_CLASSES_ROOT\clsid\{20D1AF34-6E19-42D8-AF9F-BDFBE45C2454}
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{21E132C9-1F98-4151-BDAD-7D9B49C60A8E}\InprocServer32 [=C:\Program Files\PSGuard\Core.dll
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{21E132C9-1F98-4151-BDAD-7D9B49C60A8E}\InprocServer32
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{21E132C9-1F98-4151-BDAD-7D9B49C60A8E}\Programmable
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{21E132C9-1F98-4151-BDAD-7D9B49C60A8E}\TypeLib [={4439FADF-B7B1-41A1-B5E0-3E5274EA122C}
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{21E132C9-1F98-4151-BDAD-7D9B49C60A8E}\TypeLib
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{21E132C9-1F98-4151-BDAD-7D9B49C60A8E}
9/21/2005 9:22:49 AM::Removing registry key HKEY_CLASSES_ROOT\clsid\{21E132C9-1F98-4151-BDAD-7D9B49C60A8E}
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{23F7AD29-F51A-4BA1-BE70-143B1CB25BD1}\InprocServer32 [=C:\Program Files\PSGuard\Core.dll
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{23F7AD29-F51A-4BA1-BE70-143B1CB25BD1}\InprocServer32
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{23F7AD29-F51A-4BA1-BE70-143B1CB25BD1}\Programmable
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{23F7AD29-F51A-4BA1-BE70-143B1CB25BD1}\TypeLib [={4439FADF-B7B1-41A1-B5E0-3E5274EA122C}
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{23F7AD29-F51A-4BA1-BE70-143B1CB25BD1}\TypeLib
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{23F7AD29-F51A-4BA1-BE70-143B1CB25BD1}
9/21/2005 9:22:49 AM::Removing registry key HKEY_CLASSES_ROOT\clsid\{23F7AD29-F51A-4BA1-BE70-143B1CB25BD1}
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{2C59D5EC-6B91-4896-BD6F-5F121D87A7F8}\InprocServer32 [=C:\Program Files\PSGuard\Core.dll
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{2C59D5EC-6B91-4896-BD6F-5F121D87A7F8}\InprocServer32
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{2C59D5EC-6B91-4896-BD6F-5F121D87A7F8}\Programmable
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{2C59D5EC-6B91-4896-BD6F-5F121D87A7F8}\TypeLib [={4439FADF-B7B1-41A1-B5E0-3E5274EA122C}
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{2C59D5EC-6B91-4896-BD6F-5F121D87A7F8}\TypeLib
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{2C59D5EC-6B91-4896-BD6F-5F121D87A7F8}
9/21/2005 9:22:49 AM::Removing registry key HKEY_CLASSES_ROOT\clsid\{2C59D5EC-6B91-4896-BD6F-5F121D87A7F8}
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{2F34E0E0-F0BB-477F-AFB8-509262FA0AD1}\Control
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{2F34E0E0-F0BB-477F-AFB8-509262FA0AD1}\InprocServer32 [=C:\Program Files\PSGuard\Core.dll
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{2F34E0E0-F0BB-477F-AFB8-509262FA0AD1}\InprocServer32
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{2F34E0E0-F0BB-477F-AFB8-509262FA0AD1}\Insertable
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{2F34E0E0-F0BB-477F-AFB8-509262FA0AD1}\MiscStatus\1 [=132497
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{2F34E0E0-F0BB-477F-AFB8-509262FA0AD1}\MiscStatus\1
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{2F34E0E0-F0BB-477F-AFB8-509262FA0AD1}\MiscStatus [=0
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{2F34E0E0-F0BB-477F-AFB8-509262FA0AD1}\MiscStatus
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{2F34E0E0-F0BB-477F-AFB8-509262FA0AD1}\Programmable
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{2F34E0E0-F0BB-477F-AFB8-509262FA0AD1}\ToolboxBitmap32 [=C:\Program Files\PSGuard\Core.dll, 103
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{2F34E0E0-F0BB-477F-AFB8-509262FA0AD1}\ToolboxBitmap32
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{2F34E0E0-F0BB-477F-AFB8-509262FA0AD1}\TypeLib [={4439FADF-B7B1-41A1-B5E0-3E5274EA122C}
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{2F34E0E0-F0BB-477F-AFB8-509262FA0AD1}\TypeLib
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{2F34E0E0-F0BB-477F-AFB8-509262FA0AD1}\Version [=1.0
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{2F34E0E0-F0BB-477F-AFB8-509262FA0AD1}\Version
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{2F34E0E0-F0BB-477F-AFB8-509262FA0AD1}
9/21/2005 9:22:49 AM::Removing registry key HKEY_CLASSES_ROOT\clsid\{2F34E0E0-F0BB-477F-AFB8-509262FA0AD1}
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{35ED274E-3F42-4A78-BBDC-3B7D73E85578}\InprocServer32 [=C:\Program Files\PSGuard\Core.dll
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{35ED274E-3F42-4A78-BBDC-3B7D73E85578}\InprocServer32
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{35ED274E-3F42-4A78-BBDC-3B7D73E85578}\Programmable
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{35ED274E-3F42-4A78-BBDC-3B7D73E85578}\TypeLib [={4439FADF-B7B1-41A1-B5E0-3E5274EA122C}
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{35ED274E-3F42-4A78-BBDC-3B7D73E85578}\TypeLib
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{35ED274E-3F42-4A78-BBDC-3B7D73E85578}
9/21/2005 9:22:49 AM::Removing registry key HKEY_CLASSES_ROOT\clsid\{35ED274E-3F42-4A78-BBDC-3B7D73E85578}
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{3D74D140-F780-4AE3-8D6D-F8DC39107213}\InprocServer32 [=C:\Program Files\PSGuard\Core.dll
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{3D74D140-F780-4AE3-8D6D-F8DC39107213}\InprocServer32
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{3D74D140-F780-4AE3-8D6D-F8DC39107213}\Programmable
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{3D74D140-F780-4AE3-8D6D-F8DC39107213}\TypeLib [={4439FADF-B7B1-41A1-B5E0-3E5274EA122C}
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{3D74D140-F780-4AE3-8D6D-F8DC39107213}\TypeLib
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{3D74D140-F780-4AE3-8D6D-F8DC39107213}
9/21/2005 9:22:49 AM::Removing registry key HKEY_CLASSES_ROOT\clsid\{3D74D140-F780-4AE3-8D6D-F8DC39107213}
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{49443D6E-CE4E-47A9-8DEB-F5774CE14984}\Control
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{49443D6E-CE4E-47A9-8DEB-F5774CE14984}\InprocServer32 [=C:\Program Files\PSGuard\Core.dll
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{49443D6E-CE4E-47A9-8DEB-F5774CE14984}\InprocServer32
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{49443D6E-CE4E-47A9-8DEB-F5774CE14984}\Insertable
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{49443D6E-CE4E-47A9-8DEB-F5774CE14984}\MiscStatus\1 [=132497
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{49443D6E-CE4E-47A9-8DEB-F5774CE14984}\MiscStatus\1
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{49443D6E-CE4E-47A9-8DEB-F5774CE14984}\MiscStatus [=0
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{49443D6E-CE4E-47A9-8DEB-F5774CE14984}\MiscStatus
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{49443D6E-CE4E-47A9-8DEB-F5774CE14984}\Programmable
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{49443D6E-CE4E-47A9-8DEB-F5774CE14984}\ToolboxBitmap32 [=C:\Program Files\PSGuard\Core.dll, 116
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{49443D6E-CE4E-47A9-8DEB-F5774CE14984}\ToolboxBitmap32
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{49443D6E-CE4E-47A9-8DEB-F5774CE14984}\TypeLib [={4439FADF-B7B1-41A1-B5E0-3E5274EA122C}
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{49443D6E-CE4E-47A9-8DEB-F5774CE14984}\TypeLib
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{49443D6E-CE4E-47A9-8DEB-F5774CE14984}\Version [=1.0
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{49443D6E-CE4E-47A9-8DEB-F5774CE14984}\Version
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{49443D6E-CE4E-47A9-8DEB-F5774CE14984}
9/21/2005 9:22:49 AM::Removing registry key HKEY_CLASSES_ROOT\clsid\{49443D6E-CE4E-47A9-8DEB-F5774CE14984}
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{52034AD2-914C-4634-B375-9299631E5525}\Control
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{52034AD2-914C-4634-B375-9299631E5525}\InprocServer32 [=C:\Program Files\PSGuard\Core.dll
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{52034AD2-914C-4634-B375-9299631E5525}\InprocServer32
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{52034AD2-914C-4634-B375-9299631E5525}\Insertable
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{52034AD2-914C-4634-B375-9299631E5525}\MiscStatus\1 [=132497
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{52034AD2-914C-4634-B375-9299631E5525}\MiscStatus\1
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{52034AD2-914C-4634-B375-9299631E5525}\MiscStatus [=0
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{52034AD2-914C-4634-B375-9299631E5525}\MiscStatus
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{52034AD2-914C-4634-B375-9299631E5525}\Programmable
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{52034AD2-914C-4634-B375-9299631E5525}\ToolboxBitmap32 [=C:\Program Files\PSGuard\Core.dll, 119
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{52034AD2-914C-4634-B375-9299631E5525}\ToolboxBitmap32
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{52034AD2-914C-4634-B375-9299631E5525}\TypeLib [={4439FADF-B7B1-41A1-B5E0-3E5274EA122C}
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{52034AD2-914C-4634-B375-9299631E5525}\TypeLib
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{52034AD2-914C-4634-B375-9299631E5525}\Version [=1.0
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{52034AD2-914C-4634-B375-9299631E5525}\Version
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{52034AD2-914C-4634-B375-9299631E5525}
9/21/2005 9:22:49 AM::Removing registry key HKEY_CLASSES_ROOT\clsid\{52034AD2-914C-4634-B375-9299631E5525}
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{7702C521-76AE-42C0-A181-3B5A96C2EEF7}\InprocServer32 [=C:\Program Files\PSGuard\Core.dll
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{7702C521-76AE-42C0-A181-3B5A96C2EEF7}\InprocServer32
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{7702C521-76AE-42C0-A181-3B5A96C2EEF7}\Programmable
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{7702C521-76AE-42C0-A181-3B5A96C2EEF7}\TypeLib [={4439FADF-B7B1-41A1-B5E0-3E5274EA122C}
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{7702C521-76AE-42C0-A181-3B5A96C2EEF7}\TypeLib
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{7702C521-76AE-42C0-A181-3B5A96C2EEF7}
9/21/2005 9:22:49 AM::Removing registry key HKEY_CLASSES_ROOT\clsid\{7702C521-76AE-42C0-A181-3B5A96C2EEF7}
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{7ADDA344-1D36-4446-9F4B-B2351FB19EFD}\Control
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{7ADDA344-1D36-4446-9F4B-B2351FB19EFD}\InprocServer32 [=C:\Program Files\PSGuard\Core.dll
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{7ADDA344-1D36-4446-9F4B-B2351FB19EFD}\InprocServer32
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{7ADDA344-1D36-4446-9F4B-B2351FB19EFD}\Insertable
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{7ADDA344-1D36-4446-9F4B-B2351FB19EFD}\MiscStatus\1 [=132497
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{7ADDA344-1D36-4446-9F4B-B2351FB19EFD}\MiscStatus\1
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{7ADDA344-1D36-4446-9F4B-B2351FB19EFD}\MiscStatus [=0
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{7ADDA344-1D36-4446-9F4B-B2351FB19EFD}\MiscStatus
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{7ADDA344-1D36-4446-9F4B-B2351FB19EFD}\Programmable
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{7ADDA344-1D36-4446-9F4B-B2351FB19EFD}\ToolboxBitmap32 [=C:\Program Files\PSGuard\Core.dll, 110
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{7ADDA344-1D36-4446-9F4B-B2351FB19EFD}\ToolboxBitmap32
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{7ADDA344-1D36-4446-9F4B-B2351FB19EFD}\TypeLib [={4439FADF-B7B1-41A1-B5E0-3E5274EA122C}
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{7ADDA344-1D36-4446-9F4B-B2351FB19EFD}\TypeLib
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{7ADDA344-1D36-4446-9F4B-B2351FB19EFD}\Version [=1.0
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{7ADDA344-1D36-4446-9F4B-B2351FB19EFD}\Version
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{7ADDA344-1D36-4446-9F4B-B2351FB19EFD}
9/21/2005 9:22:49 AM::Removing registry key HKEY_CLASSES_ROOT\clsid\{7ADDA344-1D36-4446-9F4B-B2351FB19EFD}
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{7D98221E-AF8F-4D29-8BB1-1DFABC288173}\Control
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{7D98221E-AF8F-4D29-8BB1-1DFABC288173}\InprocServer32 [=C:\Program Files\PSGuard\Core.dll
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{7D98221E-AF8F-4D29-8BB1-1DFABC288173}\InprocServer32
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{7D98221E-AF8F-4D29-8BB1-1DFABC288173}\Insertable
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{7D98221E-AF8F-4D29-8BB1-1DFABC288173}\MiscStatus\1 [=132497
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{7D98221E-AF8F-4D29-8BB1-1DFABC288173}\MiscStatus\1
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{7D98221E-AF8F-4D29-8BB1-1DFABC288173}\MiscStatus [=0
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{7D98221E-AF8F-4D29-8BB1-1DFABC288173}\MiscStatus
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{7D98221E-AF8F-4D29-8BB1-1DFABC288173}\Programmable
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{7D98221E-AF8F-4D29-8BB1-1DFABC288173}\ToolboxBitmap32 [=C:\Program Files\PSGuard\Core.dll, 127
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{7D98221E-AF8F-4D29-8BB1-1DFABC288173}\ToolboxBitmap32
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{7D98221E-AF8F-4D29-8BB1-1DFABC288173}\TypeLib [={4439FADF-B7B1-41A1-B5E0-3E5274EA122C}
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{7D98221E-AF8F-4D29-8BB1-1DFABC288173}\TypeLib
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{7D98221E-AF8F-4D29-8BB1-1DFABC288173}\Version [=1.0
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{7D98221E-AF8F-4D29-8BB1-1DFABC288173}\Version
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{7D98221E-AF8F-4D29-8BB1-1DFABC288173}
9/21/2005 9:22:49 AM::Removing registry key HKEY_CLASSES_ROOT\clsid\{7D98221E-AF8F-4D29-8BB1-1DFABC288173}
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{9746B450-6064-4EC8-9480-72A289AA2237}\InprocServer32 [=C:\Program Files\PSGuard\Core.dll
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{9746B450-6064-4EC8-9480-72A289AA2237}\InprocServer32
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{9746B450-6064-4EC8-9480-72A289AA2237}\Programmable
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{9746B450-6064-4EC8-9480-72A289AA2237}\TypeLib [={4439FADF-B7B1-41A1-B5E0-3E5274EA122C}
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{9746B450-6064-4EC8-9480-72A289AA2237}\TypeLib
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{9746B450-6064-4EC8-9480-72A289AA2237}
9/21/2005 9:22:49 AM::Removing registry key HKEY_CLASSES_ROOT\clsid\{9746B450-6064-4EC8-9480-72A289AA2237}
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{C5A40FCE-0A0F-40CA-985E-661C28B5B431}\Control
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{C5A40FCE-0A0F-40CA-985E-661C28B5B431}\InprocServer32 [=C:\Program Files\PSGuard\Core.dll
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{C5A40FCE-0A0F-40CA-985E-661C28B5B431}\InprocServer32
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{C5A40FCE-0A0F-40CA-985E-661C28B5B431}\Insertable
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{C5A40FCE-0A0F-40CA-985E-661C28B5B431}\MiscStatus\1 [=132497
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{C5A40FCE-0A0F-40CA-985E-661C28B5B431}\MiscStatus\1
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{C5A40FCE-0A0F-40CA-985E-661C28B5B431}\MiscStatus [=0
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{C5A40FCE-0A0F-40CA-985E-661C28B5B431}\MiscStatus
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{C5A40FCE-0A0F-40CA-985E-661C28B5B431}\Programmable
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{C5A40FCE-0A0F-40CA-985E-661C28B5B431}\ToolboxBitmap32 [=C:\Program Files\PSGuard\Core.dll, 114
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{C5A40FCE-0A0F-40CA-985E-661C28B5B431}\ToolboxBitmap32
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{C5A40FCE-0A0F-40CA-985E-661C28B5B431}\TypeLib [={4439FADF-B7B1-41A1-B5E0-3E5274EA122C}
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{C5A40FCE-0A0F-40CA-985E-661C28B5B431}\TypeLib
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{C5A40FCE-0A0F-40CA-985E-661C28B5B431}\Version [=1.0
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{C5A40FCE-0A0F-40CA-985E-661C28B5B431}\Version
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{C5A40FCE-0A0F-40CA-985E-661C28B5B431}
9/21/2005 9:22:49 AM::Removing registry key HKEY_CLASSES_ROOT\clsid\{C5A40FCE-0A0F-40CA-985E-661C28B5B431}
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{C7F22879-7151-4C71-8C50-9557AFDA66C6}\InprocServer32 [=C:\Program Files\PSGuard\Core.dll
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{C7F22879-7151-4C71-8C50-9557AFDA66C6}\InprocServer32
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{C7F22879-7151-4C71-8C50-9557AFDA66C6}\Programmable
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{C7F22879-7151-4C71-8C50-9557AFDA66C6}\TypeLib [={4439FADF-B7B1-41A1-B5E0-3E5274EA122C}
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{C7F22879-7151-4C71-8C50-9557AFDA66C6}\TypeLib
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{C7F22879-7151-4C71-8C50-9557AFDA66C6}
9/21/2005 9:22:49 AM::Removing registry key HKEY_CLASSES_ROOT\clsid\{C7F22879-7151-4C71-8C50-9557AFDA66C6}
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{CA5E7959-60B5-47B7-80AC-1606309733F3}\InprocServer32 [=C:\Program Files\PSGuard\Core.dll
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{CA5E7959-60B5-47B7-80AC-1606309733F3}\InprocServer32
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{CA5E7959-60B5-47B7-80AC-1606309733F3}\Programmable
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{CA5E7959-60B5-47B7-80AC-1606309733F3}\TypeLib [={4439FADF-B7B1-41A1-B5E0-3E5274EA122C}
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{CA5E7959-60B5-47B7-80AC-1606309733F3}\TypeLib
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{CA5E7959-60B5-47B7-80AC-1606309733F3}
9/21/2005 9:22:49 AM::Removing registry key HKEY_CLASSES_ROOT\clsid\{CA5E7959-60B5-47B7-80AC-1606309733F3}
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{CEABF027-6CDC-4D47-ADF6-AC5D065826A6}\Control
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{CEABF027-6CDC-4D47-ADF6-AC5D065826A6}\InprocServer32 [=C:\Program Files\PSGuard\Core.dll
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{CEABF027-6CDC-4D47-ADF6-AC5D065826A6}\InprocServer32
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{CEABF027-6CDC-4D47-ADF6-AC5D065826A6}\Insertable
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{CEABF027-6CDC-4D47-ADF6-AC5D065826A6}\MiscStatus\1 [=132497
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{CEABF027-6CDC-4D47-ADF6-AC5D065826A6}\MiscStatus\1
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{CEABF027-6CDC-4D47-ADF6-AC5D065826A6}\MiscStatus [=0
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{CEABF027-6CDC-4D47-ADF6-AC5D065826A6}\MiscStatus
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{CEABF027-6CDC-4D47-ADF6-AC5D065826A6}\Programmable
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{CEABF027-6CDC-4D47-ADF6-AC5D065826A6}\ToolboxBitmap32 [=C:\Program Files\PSGuard\Core.dll, 106
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{CEABF027-6CDC-4D47-ADF6-AC5D065826A6}\ToolboxBitmap32
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{CEABF027-6CDC-4D47-ADF6-AC5D065826A6}\TypeLib [={4439FADF-B7B1-41A1-B5E0-3E5274EA122C}
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{CEABF027-6CDC-4D47-ADF6-AC5D065826A6}\TypeLib
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{CEABF027-6CDC-4D47-ADF6-AC5D065826A6}\Version [=1.0
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{CEABF027-6CDC-4D47-ADF6-AC5D065826A6}\Version
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{CEABF027-6CDC-4D47-ADF6-AC5D065826A6}
9/21/2005 9:22:49 AM::Removing registry key HKEY_CLASSES_ROOT\clsid\{CEABF027-6CDC-4D47-ADF6-AC5D065826A6}
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{E0AA0493-C410-4CBD-B1DB-1723374FA8E0}\InprocServer32 [=C:\Program Files\PSGuard\WndSystem.dll
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{E0AA0493-C410-4CBD-B1DB-1723374FA8E0}\InprocServer32
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{E0AA0493-C410-4CBD-B1DB-1723374FA8E0}\Programmable
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{E0AA0493-C410-4CBD-B1DB-1723374FA8E0}\TypeLib [={EAF7CBE4-5EE9-46FB-8FC1-A3A477026E5D}
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{E0AA0493-C410-4CBD-B1DB-1723374FA8E0}\TypeLib
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{E0AA0493-C410-4CBD-B1DB-1723374FA8E0}
9/21/2005 9:22:49 AM::Removing registry key HKEY_CLASSES_ROOT\clsid\{E0AA0493-C410-4CBD-B1DB-1723374FA8E0}
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{E5D78BD8-3874-4AA0-9D45-CFB79382C484}\Control
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{E5D78BD8-3874-4AA0-9D45-CFB79382C484}\InprocServer32 [=C:\Program Files\PSGuard\WndSystem.dll
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{E5D78BD8-3874-4AA0-9D45-CFB79382C484}\InprocServer32
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{E5D78BD8-3874-4AA0-9D45-CFB79382C484}\Insertable
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{E5D78BD8-3874-4AA0-9D45-CFB79382C484}\MiscStatus\1 [=132497
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{E5D78BD8-3874-4AA0-9D45-CFB79382C484}\MiscStatus\1
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{E5D78BD8-3874-4AA0-9D45-CFB79382C484}\MiscStatus [=0
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{E5D78BD8-3874-4AA0-9D45-CFB79382C484}\MiscStatus
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{E5D78BD8-3874-4AA0-9D45-CFB79382C484}\Programmable
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{E5D78BD8-3874-4AA0-9D45-CFB79382C484}\ToolboxBitmap32 [=C:\Program Files\PSGuard\WndSystem.dll, 101
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{E5D78BD8-3874-4AA0-9D45-CFB79382C484}\ToolboxBitmap32
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{E5D78BD8-3874-4AA0-9D45-CFB79382C484}\TypeLib [={EAF7CBE4-5EE9-46FB-8FC1-A3A477026E5D}
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{E5D78BD8-3874-4AA0-9D45-CFB79382C484}\TypeLib
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{E5D78BD8-3874-4AA0-9D45-CFB79382C484}\Version [=1.0
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{E5D78BD8-3874-4AA0-9D45-CFB79382C484}\Version
9/21/2005 9:22:49 AM::Removing registry value HKEY_CLASSES_ROOT\clsid\{E5D78BD8-3874-4AA0-9D45-CFB79382C484}
9/21/2005 9:22:49 AM::Removing registry key HKEY_CLASSES_ROOT\clsid\{E5D78BD8-3874-4AA0-9D45-CFB79382C484}
9/21/2005 9:22:49 AM::Clean Threat PSGuard (ID:16055) Complete
9/21/2005 9:22:50 AM::Remove Threat (ID:16055) Complete
9/21/2005 9:22:50 AM::Remove Threat (ID:8144)
9/21/2005 9:22:50 AM::Clean Threat C2.Lop (ID:8144)
9/21/2005 9:22:50 AM::Delete folder c:\program files\c2media\
9/21/2005 9:22:50 AM::Clean Threat C2.Lop (ID:8144) Complete
9/21/2005 9:22:50 AM::Remove Threat (ID:8144) Complete
9/21/2005 9:22:50 AM::Remove Threat (ID:15489)
9/21/2005 9:22:50 AM::Clean Threat PacerDMedia.Installer (ID:15489)
9/21/2005 9:22:50 AM::Removing registry value HKEY_CURRENT_USER\Software\PSof1 [u1=2215380
9/21/2005 9:22:50 AM::Removing registry value HKEY_CURRENT_USER\Software\PSof1 [u2=6
9/21/2005 9:22:50 AM::Removing registry value HKEY_CURRENT_USER\Software\PSof1
9/21/2005 9:22:50 AM::Removing registry key HKEY_CURRENT_USER\Software\PSof1
9/21/2005 9:22:50 AM::Clean Threat PacerDMedia.Installer (ID:15489) Complete
9/21/2005 9:22:51 AM::Remove Threat (ID:15489) Complete
9/21/2005 9:22:51 AM::Remove Threat (ID:15069)
9/21/2005 9:22:51 AM::Clean Threat SurfSideKick (ID:15069)
9/21/2005 9:22:51 AM::Removing registry value HKEY_LOCAL_MACHINE\Software\SurfSideKick3\Internet Explorer [PInfo=
9/21/2005 9:22:51 AM::Removing registry value HKEY_LOCAL_MACHINE\Software\SurfSideKick3\Internet Explorer
9/21/2005 9:22:51 AM::Removing registry value HKEY_LOCAL_MACHINE\Software\SurfSideKick3
9/21/2005 9:22:51 AM::Removing registry key HKEY_LOCAL_MACHINE\Software\SurfSideKick3
9/21/2005 9:22:51 AM::Clean Threat SurfSideKick (ID:15069) Complete
9/21/2005 9:22:51 AM::Remove Threat (ID:15069) Complete
9/21/2005 9:22:51 AM::Unititializing Clean
9/21/2005 9:22:51 AM::------------------------------------------------------------------
9/21/2005 9:31:54 AM::------------------------------------------------
9/21/2005 9:31:54 AM::Starting GIANT AS Cleaner
9/21/2005 9:31:54 AM::Running all Cleaner deletes
9/21/2005 9:31:54 AM::---Starting Quick Cleaner DelFolders
9/21/2005 9:31:54 AM::Checking threats to clean
9/21/2005 9:31:54 AM::Ending GIANT AS Cleaner
9/21/2005 9:31:54 AM::------------------------------------------------
  • 0

Advertisements

#17
tampabelle
Posted 21 September 2005 - 02:35 PM

tampabelle

    Member 5k

  • Retired Staff
  • 6,363 posts
Looks like MSAS cleaned up the registry.


Do you get any items if you run a scan on MSAS again ????


Download smitRem.exe and save the file to your desktop.
Double click on the file to extract it to it's own folder on the desktop.

Next, please reboot your computer in SafeMode by doing the following:
  • Restart your computer
  • After hearing your computer beep once during startup, but before the Windows icon appears, press F8.
  • Instead of Windows loading as normal, a menu should appear
  • Select the first option, to run Windows in Safe Mode.
Open the smitRem folder, then double click the RunThis.bat file to start the tool. Follow the prompts on screen.
Wait for the tool to complete and disk cleanup to finish.

The tool will create a log named smitfiles.txt in the root of your drive, eg; Local Disk C: or partition where your operating system is installed. Please post that log along with all others requested in your next reply.


Reboot the PC and post the contents of the smitfiles.txt log in your next reply.
  • 0

#18
Daija
Posted 21 September 2005 - 03:24 PM

Daija

    Member

  • Topic Starter
  • Member
  • PipPip
  • 29 posts
smitRem log file
version 2.4

by noahdfear

The current date is: Wed 09/21/2005
The current time is: 15:17:15.95

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

Pre-run Files Present


~~~ Program Files ~~~



~~~ Shortcuts ~~~



~~~ Favorites ~~~



~~~ system32 folder ~~~



~~~ Icons in System32 ~~~



~~~ Windows directory ~~~



~~~ Drive root ~~~

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~


Post-run Files Present


~~~ Program Files ~~~



~~~ Shortcuts ~~~



~~~ Favorites ~~~



~~~ system32 folder ~~~



~~~ Icons in System32 ~~~



~~~ Windows directory ~~~



~~~ Drive root ~~~



~~~ Wininet.dll ~~~

CLEAN! :tazz:

Edited by Daija, 21 September 2005 - 03:30 PM.

  • 0

#19
tampabelle
Posted 21 September 2005 - 03:35 PM

tampabelle

    Member 5k

  • Retired Staff
  • 6,363 posts
Thats great !!!!


Can you check if MSAS finds anything now ???
  • 0

#20
Daija
Posted 21 September 2005 - 03:54 PM

Daija

    Member

  • Topic Starter
  • Member
  • PipPip
  • 29 posts
before you posted i was doing this scan it and it still found some items that say*fake*(dont know what that means) and some that were not.
do you still need a log from msas?

BitDefender Online Scanner



Scan report generated at: Wed, Sep 21, 2005 - 15:49:25





Scan path: C:\;D:\;E:\;







Statistics

Time
00:14:04

Files
48603

Folders
3151

Boot Sectors
4

Archives
893

Packed Files
3426




Results

Identified Viruses
5

Infected Files
16

Suspect Files
0

Warnings
0

Disinfected
0

Deleted Files
0




Engines Info

Virus Definitions
210038

Engine build
AVCORE v1.0 (build 2292) (i386) (Mar 3 2005 11:57:29)

Scan plugins
13

Archive plugins
39

Unpack plugins
4

E-mail plugins
6

System plugins
1




Scan Settings

First Action
Report

Second Action
Delete

Heuristics
Yes

Enable Warnings
Yes

Scanned Extensions
exe;com;dll;ocx;scr;bin;dat;386;vxd;sys;wdm;cla;class;ovl;ole;hlp;doc;dot;xls;ppt;wbk;wiz;pot;ppa;xla;xlt;vbs;vbe;mdb;rtf;htm;hta;html;xml;xtp;php;asp;js;shs;chm;lnk;pif;prc;url;smm;pfd;msi;ini;csc;cmd;bas;

Exclude Extensions


Scan Emails
Yes

Scan Archives
Yes

Scan Packed
Yes

Scan Files
Yes

Scan Boot
Yes




Scanned File
Status

C:\System Volume Information\_restore{8DB906E7-DE7F-466E-80EE-2D42607D23D4}\RP148\A0063616.exe
Infected with: GenPack:Trojan.FakeAlert.PSGuard.A

C:\System Volume Information\_restore{8DB906E7-DE7F-466E-80EE-2D42607D23D4}\RP148\A0063629.exe
Infected with: GenPack:Trojan.FakeAlert.PSGuard.A

C:\System Volume Information\_restore{8DB906E7-DE7F-466E-80EE-2D42607D23D4}\RP150\A0066950.exe
Infected with: GenPack:Trojan.FakeAlert.PSGuard.A

C:\System Volume Information\_restore{8DB906E7-DE7F-466E-80EE-2D42607D23D4}\RP150\A0066984.exe
Infected with: GenPack:Trojan.FakeAlert.PSGuard.A

C:\System Volume Information\_restore{8DB906E7-DE7F-466E-80EE-2D42607D23D4}\RP150\A0066997.exe
Infected with: GenPack:Trojan.FakeAlert.PSGuard.A

C:\System Volume Information\_restore{8DB906E7-DE7F-466E-80EE-2D42607D23D4}\RP151\A0067087.exe
Infected with: GenPack:Trojan.FakeAlert.PSGuard.A

C:\System Volume Information\_restore{8DB906E7-DE7F-466E-80EE-2D42607D23D4}\RP151\A0067130.exe
Infected with: GenPack:Trojan.FakeAlert.PSGuard.A

C:\System Volume Information\_restore{8DB906E7-DE7F-466E-80EE-2D42607D23D4}\RP151\A0067146.exe
Infected with: GenPack:Trojan.FakeAlert.PSGuard.A

C:\System Volume Information\_restore{8DB906E7-DE7F-466E-80EE-2D42607D23D4}\RP151\A0067155.exe
Infected with: GenPack:Trojan.FakeAlert.PSGuard.A

C:\System Volume Information\_restore{8DB906E7-DE7F-466E-80EE-2D42607D23D4}\RP151\A0067156.exe
Infected with: Win32.Worm.Mytob.1.Gen

C:\System Volume Information\_restore{8DB906E7-DE7F-466E-80EE-2D42607D23D4}\RP159\A0070531.exe
Infected with: GenPack:Trojan.FakeAlert.PSGuard.A

C:\System Volume Information\_restore{8DB906E7-DE7F-466E-80EE-2D42607D23D4}\RP159\A0070565.dll
Infected with: Trojan.Downloader.Murlo.AR

C:\System Volume Information\_restore{8DB906E7-DE7F-466E-80EE-2D42607D23D4}\RP159\A0070588.exe
Infected with: GenPack:Trojan.FakeAlert.PSGuard.A

C:\System Volume Information\_restore{8DB906E7-DE7F-466E-80EE-2D42607D23D4}\RP164\A0073798.exe
Infected with: BehavesLike:Trojan.LowZones

C:\System Volume Information\_restore{8DB906E7-DE7F-466E-80EE-2D42607D23D4}\RP176\A0076248.exe=>(NSIS o)=>lzma_nsis0007=>(NSIS o)=>lzma_nsis0004
Detected with: Application.Adware.180solutions.B

C:\System Volume Information\_restore{8DB906E7-DE7F-466E-80EE-2D42607D23D4}\RP176\A0076249.exe=>(NSIS o)=>lzma_nsis0007=>(NSIS o)=>lzma_nsis0004
Detected with: Application.Adware.180solutions.B
  • 0

#21
Daija
Posted 21 September 2005 - 04:02 PM

Daija

    Member

  • Topic Starter
  • Member
  • PipPip
  • 29 posts
well i ran it anyways it found nothing.... im confused. how can 1(bit defender) find something and not the other?

jaclyn

this is the msas

Spyware Scan Details
Start Date: 9/21/2005 3:57:52 PM
End Date: 9/21/2005 3:59:40 PM
Total Time: 1 mins 48 secs

Detected Threats
No spyware threats were found during this scan.
  • 0

#22
tampabelle
Posted 21 September 2005 - 05:37 PM

tampabelle

    Member 5k

  • Retired Staff
  • 6,363 posts
System Restore is a facility, where Windows stores windows settings at different points of time. This enables the user to revert back to the old settings in case there are any problems with the PC.

All infections are not resolved by doing a system restore. Therefore they have to be cleaned out.

Unfortunately the settings for the infections also become part of system restore. That is what is showing in your Bit Defender log. We will flusgh out old system restore points and create new one.

The system restore is cleaned out right at the end because in case there is any problem at any stage of the fix, user can revert back to the old settings.

Do you have any issues with your PC at this stage ??

If not then we can fine tune your PC and flush out the old system restore points.
  • 0

#23
Daija
Posted 21 September 2005 - 05:43 PM

Daija

    Member

  • Topic Starter
  • Member
  • PipPip
  • 29 posts
sounds good to me, no other problems other then its still kinda slow logging off and now loading web pages.(cound be the infections im guessing)

ready when you are..... lol

Jaclyn
  • 0

#24
tampabelle
Posted 21 September 2005 - 06:02 PM

tampabelle

    Member 5k

  • Retired Staff
  • 6,363 posts
Let us clean up your PC a little bit.

Delete the following programs and the associated folders, which you downloaded during the cleaning up process -

smitrem.exe
smitrem folder



After this, please visit Windows security and critical updates and get all the updates and patches and install them on your PC.

Lets flush out the system restore points.

A. Turn off System Restore.
On the Desktop, right-click My Computer.
Click Properties.
Click the System Restore tab.
Check Turn off System Restore.
Click Apply, and then click OK.

B. Restart your computer.

C. Turn ON System Restore.
On the Desktop, right-click My Computer.
Click Properties.
Click the System Restore tab.
UN-Check Turn off System Restore.
Click Apply, and then click OK.

System Restore will now be active again.


Click on Start ---> Help and Support. Click on System restore (you will see it under Help and Support Resources). Click on "Create a restore point" then click on Next and follow the instructions.


Post a fresh HJT log after creating a system restore point.
  • 0

#25
Daija
Posted 21 September 2005 - 07:17 PM

Daija

    Member

  • Topic Starter
  • Member
  • PipPip
  • 29 posts
Logfile of HijackThis v1.99.1
Scan saved at 7:16:59 PM, on 9/21/2005
Platform: Windows XP SP1 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\System32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
E:\PROGRA~1\BILLPS~1\WINPAT~1\winpatrol.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\WINDOWS\System32\RUNDLL32.exe
C:\Program Files\Microsoft AntiSpyware\gcasServ.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\MSN Messenger\msnmsgr.exe
C:\Program Files\Microsoft AntiSpyware\gcasDtServ.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\System32\nvsvc32.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\WINDOWS\System32\wuauclt.exe
C:\WINDOWS\PCHealth\HelpCtr\Binaries\HelpSvc.exe
C:\WINDOWS\PCHealth\HelpCtr\Binaries\HelpHost.exe
C:\Documents and Settings\Loren\Desktop\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Microsoft Internet Explorer provided by Comcast
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = :0
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll
O4 - HKLM\..\Run: [WinPatrol] e:\PROGRA~1\BILLPS~1\WINPAT~1\winpatrol.exe
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [WildTangent CDA] RUNDLL32.exe "C:\Program Files\WildTangent\Apps\CDA\cdaEngine0400.dll",cdaEngineMain
O4 - HKLM\..\Run: [HPDJ Taskbar Utility] C:\WINDOWS\System32\spool\drivers\w32x86\3\hpztsb05.exe
O4 - HKLM\..\Run: [gcasServ] "C:\Program Files\Microsoft AntiSpyware\gcasServ.exe"
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background
O8 - Extra context menu item: &Google Search - res://c:\program files\google\GoogleToolbar2.dll/cmsearch.html
O8 - Extra context menu item: &Translate English Word - res://c:\program files\google\GoogleToolbar2.dll/cmwordtrans.html
O8 - Extra context menu item: Backward Links - res://c:\program files\google\GoogleToolbar2.dll/cmbacklinks.html
O8 - Extra context menu item: Cached Snapshot of Page - res://c:\program files\google\GoogleToolbar2.dll/cmcache.html
O8 - Extra context menu item: Similar Pages - res://c:\program files\google\GoogleToolbar2.dll/cmsimilar.html
O8 - Extra context menu item: Translate Page into English - res://c:\program files\google\GoogleToolbar2.dll/cmtrans.html
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\WINDOWS\System32\msjava.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\WINDOWS\System32\msjava.dll
O9 - Extra button: ComcastHSI - {669B269B-0D4E-41FB-A3D8-FD67CA94F646} - http://www.comcast.net/ (file missing)
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O9 - Extra button: Support - {8828075D-D097-4055-AA02-2DBFA9D85E8A} - http://www.comcastsupport.com/ (file missing)
O9 - Extra button: Help - {97809617-3937-4F84-B335-9BB05EF1A8D4} - http://online.comcast.net/help/ (file missing)
O16 - DPF: {0E5F0222-96B9-11D3-8997-00104BD12D94} (PCPitstop Utility) - http://www.pcpitstop...p/PCPitStop.CAB
O16 - DPF: {4ED9DDF0-7479-4BBE-9335-5A1EDB1D8A21} (McAfee.com Operating System Class) - http://download.mcaf...99/mcinsctl.cab
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://www.bitdefend...can8/oscan8.cab
O16 - DPF: {77E32299-629F-43C6-AB77-6A1E6D7663F6} (Groove Control) - http://www.nick.com/.../GrooveAX27.cab
O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) - http://www.pandasoft...free/asinst.cab
O16 - DPF: {BCC0FF27-31D9-4614-A68E-C18E1ADA4389} (DwnldGroupMgr Class) - http://download.mcaf...,26/mcgdmgr.cab
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: NVIDIA Driver Helper Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe
  • 0

Advertisements

#26
tampabelle
Posted 22 September 2005 - 08:53 AM

tampabelle

    Member 5k

  • Retired Staff
  • 6,363 posts
Did you download all the updates and patches from Microsoft ???

Service Pack 2 hasnt been installed on your PC yet !!!! It is a necessary and essential part of your defense against infections.
  • 0

#27
Daija
Posted 22 September 2005 - 09:03 AM

Daija

    Member

  • Topic Starter
  • Member
  • PipPip
  • 29 posts
yes I did get the updates last night, and I thought I already had sp2 humm ill get get that now.
thanks alot for your help. i really needed it.
  • 0

#28
tampabelle
Posted 22 September 2005 - 09:28 AM

tampabelle

    Member 5k

  • Retired Staff
  • 6,363 posts
Hi,


CONGRATULATIONS !!!!!!!!!!! Your PC is clean now :tazz:



I would recommend the following steps to keep your PC clean (especially Step 1 to install critical Windows patches including Service Pack 2 or SP2 if not already installed and Step 8 now that your PC is clean) –

PREVENTIVE MEASURES FOR FUTURE

Operating System
1. Keep the Windows and Internet Explorer updated with the latest fixes. These fixes are available free from Microsoft. Click on Tools in the IE menu bar and then on Windows update. You can also use the following links

Windows security and critical updates
Internet Explorer security and critical updates

Also ensure that automatic updates are enabled for faster updation of the system.
(Right click on My Computer on your desktop, properties and Automatic Updates tab.


Anti-Virus Software
2. Keep your Anti-virus program updated with the latest definitions. Some of the common anti-virus programs in use are :

Norton Anti-Virus
McAfee Anti-Virus
AVG Anti-Virus --- freeware
Avast Home Edition --- freeware

Use only one anti-virus program as multiple such programs can create conflicts between themselves and severely hamper the performance of your PC.


Firewall
3. You should also have a good firewall. Here are 3 free ones available for personal use:
Sygate Personal Firewall, Kerio Personal Firewall, ZoneAlarm


Internet Browsers
4. Have robust explorer settings. It is preferable to use an internet browser other that IE as most of the malware is targetted at IE. In case you prefer to use IE, then download a list of innocent looking but harmful websites from IE-Spyad and install it on ur PC. IE-SPYAD puts over 5000 sites in your internet explorer's restricted zone, so you'll be protected when you visit innocent-looking sites that aren't really innocent at all.

Some alternate browsers I suggest are Firefox Mozilla Browser and Opera

Ensure that Security level, irrespective of whichever browser you use, is set at Medium or higher, restrict the usage of cookies and activeX components.


Spyware Protection
5. Have a wall of protection against spyware / adware by installing SpywareBlaster and SpywareGuard.

SpywareBlaster and SpywareGuard are by JavaCool and both are free programs.
SpywareBlaster will prevent spyware from being installed and consumes no system resources.
SpywareGuard offers realtime protection from spyware installation and browser hijack attempts. Both have free ongoing updates.


Spyware Removers
6. Install programs for scanning for malware and uninstalling them. Two of the best programs, both are freeware, are :

Spybot Search & Destroy - A powerful tool which can search and annhilate nasties that make it onto your system. Now with an Immunize section that will help prevent future infections.

AdAware SE Personal Edition - Another very powerful tool which searches and kills nasties that infect your system. AdAware and Spybot Search & Destroy compliment each other very well.


Regular Maintenance of PC
7. Finally, invest some time for regular maintenance of your PC. Delete the temporary Internet files, temporary files, cookies etc. Click on Start button, Programs, Accessories, System Tools and run the program Disk Cleanup. Follow the instructions.

An alternate freeware software which can be used is CleanUp.

Keep your Registry clean. My favourite software is Registry First Aid. This is not a freeware but a trial version can be downloaded.


System Restore Points
8. Since your PC is currently clean, create a system restore point. A system restore would enable you to revert to the settings on the PC when the restore point was created. It is also a good idea to flush all earlier system restore points which may be containing infected files.

A. Turn off System Restore.
On the Desktop, right-click My Computer.
Click Properties.
Click the System Restore tab.
Check Turn off System Restore.
Click Apply, and then click OK.

B. Restart your computer.

C. Turn ON System Restore.
On the Desktop, right-click My Computer.
Click Properties.
Click the System Restore tab.
UN-Check Turn off System Restore.
Click Apply, and then click OK.

System Restore will now be active again.


Go ahead and enjoy a clean PC !!!!!!!!!!!!!
  • 0

#29
Daija
Posted 23 September 2005 - 10:19 AM

Daija

    Member

  • Topic Starter
  • Member
  • PipPip
  • 29 posts
Thank you Tampabelle very much. one more thing in my start up programs in my winpatol I have something called KERNEL FAULTCHECK"
do you know what that is? do I need it? does my computer need it? thx again.
  • 0

#30
tampabelle
Posted 23 September 2005 - 11:47 AM

tampabelle

    Member 5k

  • Retired Staff
  • 6,363 posts
You can leave it or close it out.

Dont delete the file however.
  • 0
Back to Virus, Spyware, Malware Removal · Next Unread Topic →




Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

  1. Geeks to Go Community
  2. Security
  3. Virus, Spyware, Malware Removal

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP