New Posts All Forums:Forum Nav:

explot virus, Hijack this! report

post #1 of 7

8/27/06 at 12:41am

Thread Starter

dg5032
0
Das Alte Leid!
offline

Joined: 5/2005
Location: Palm Beach Gardens, FL
Posts: 228
Select All Posts By This User

my other computer has discovered a trojan called exploit-byteverify and Im having trouble getting rid of it, I ran Hijack this! to see if anyone can help me, heres the log file
\
Logfile of HijackThis v1.99.1
Scan saved at 11:04:39 PM, on 8/26/2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\LEXBCES.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\LEXPPS.EXE
C:\Program Files\Common Files\AOL\ACS\AOLAcsd.exe
C:\Program Files\Common Files\AOL\TopSpeed\2.0\aoltsmon.exe
C:\Program Files\Compaq\Compaq Advisor\bin\compaq-rba.exe
c:\PROGRA~1\mcafee.com\vso\mcvsrte.exe
C:\WINDOWS\system32\pctspk.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\wanmpsvc.exe
C:\WINDOWS\system32\fxssvc.exe
c:\PROGRA~1\mcafee.com\vso\mcshield.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Compaq\Easy Access Button Support\StartEAK.exe
C:\WINDOWS\system32\lxamsp32.exe
C:\WINDOWS\system32\lxamsp32.exe
C:\PROGRA~1\mcafee.com\vso\mcvsshld.exe
C:\Program Files\Compaq\Easy Access Button Support\CPQEADM.EXE
C:\COMPAQ\CPQINET\CPQInet.exe
C:\Compaq\EAKDRV\EAUSBKBD.EXE
C:\PROGRA~1\mcafee.com\agent\mcagent.exe
c:\progra~1\mcafee.com\vso\mcvsescn.exe
C:\PROGRA~1\Compaq\EASYAC~1\BttnServ.exe
C:\Program Files\Common Files\AOL\1110767645\ee\AOLSoftware.exe
C:\PROGRA~1\COMMON~1\AOL\AOLSPY~1\AOLSP Scheduler.exe
C:\WINDOWS\System32\spool\drivers\w32x86\3\hpztsb11.exe
C:\Program Files\BroadJump\Client Foundation\CFD.exe
C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\Messenger\msmsgs.exe
C:\PROGRA~1\AOLCOM~2\ACCAgnt.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\AIM\aim.exe
C:\Program Files\LexmarkX63\AcBtnMgr_X63.exe
C:\Program Files\Exif Launcher\QuickDCF.exe
C:\Program Files\Common Files\Intuit\QuickBooks\QBUpdate\qbupdate.exe
C:\Program Files\Yahoo!\Messenger\ymsgr_tray.exe
c:\program files\common files\aol\1110767645\ee\services\antiSpywareApp\ver2_0_27_1\AOLSP Scheduler.exe
c:\progra~1\mcafee.com\vso\mcvsftsn.exe
C:\WINDOWS\system32\wuauclt.exe
c:\program files\common files\aol\1110767645\ee\aolsoftware.exe
C:\Program Files\Support.com\bin\tgcmd.exe
C:\Program Files\AOL Companion\companion.exe
C:\DOCUME~1\NOUGLY~1\LOCALS~1\Temp\Temporary Directory 2 for hijackthis[1].zip\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.lycos.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://us.rd.yahoo.com/customize/ie/...ch/search.html
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.yahoo.com/
R1 - HKCU\Software\Microsoft\Internet Explorer\Search,SearchAssistant = about:blank
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://as.starware.com/dp/search?x=w...PfE+OFoYhtLrk=
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page_bak = http://www.yahoo.com/
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Microsoft Internet Explorer provided by Compaq
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: AOLTBSearch Class - {EA756889-2338-43DB-8F07-D1CA6FB9C90D} - C:\Program Files\AOL\AOL Toolbar 3.1\aoltb.dll
F2 - REG:system.ini: Shell=
O2 - BHO: MyWebSearch Search Assistant BHO - {00A6FAF1-072E-44cf-8957-5838F569A31D} - C:\Program Files\MyWebSearch\SrchAstt\1.bin\MWSSRCAS.DLL (file missing)
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: (no name) - {0317A9E2-84C5-4AB1-A408-9715D19FBE50} - C:\Program Files\w9yddwa8\w9yddwa8.dll (file missing)
O2 - BHO: (no name) - {06481FBB-CCBE-4260-96A9-37FD1C78ED07} - C:\Program Files\w9yddwa8\w9yddwa8.dll (file missing)
O2 - BHO: (no name) - {097F494E-C86D-439B-9191-4A090DFA6BFB} - C:\Program Files\w9yddwa8\w9yddwa8.dll (file missing)
O2 - BHO: (no name) - {15684F20-F0ED-41D7-A09B-C6AAA36F7880} - C:\Program Files\w9yddwa8\w9yddwa8.dll (file missing)
O2 - BHO: (no name) - {18138720-F535-4F31-AB9C-1CBECBAA0101} - C:\Program Files\w9yddwa8\w9yddwa8.dll (file missing)
O2 - BHO: (no name) - {194714E9-D95F-4C2C-830B-6E50FD6CF6EA} - C:\Program Files\w9yddwa8\w9yddwa8.dll (file missing)
O2 - BHO: (no name) - {1B099DEC-8948-4BFF-8CD5-F74B1D322674} - C:\Program Files\w9yddwa8\w9yddwa8.dll (file missing)
O2 - BHO: (no name) - {286810E4-276E-497D-9A75-628A02EE4DAA} - C:\Program Files\w9yddwa8\w9yddwa8.dll (file missing)
O2 - BHO: (no name) - {2CDD3422-B084-4BB6-BE3C-6C2794A5D13D} - C:\Program Files\w9yddwa8\w9yddwa8.dll (file missing)
O2 - BHO: (no name) - {2F4BB2C1-4543-4498-88CC-A4CE24A39AA3} - C:\Program Files\w9yddwa8\w9yddwa8.dll (file missing)
O2 - BHO: (no name) - {343917C6-9477-4DD4-B958-B7C82317DCDA} - C:\Program Files\w9yddwa8\w9yddwa8.dll (file missing)
O2 - BHO: (no name) - {34BF1785-C5AB-48A7-B4BF-D2D7B330914B} - C:\Program Files\w9yddwa8\w9yddwa8.dll (file missing)
O2 - BHO: (no name) - {3D261474-21A8-4A19-AD12-C9E7FD0680D0} - C:\Program Files\w9yddwa8\w9yddwa8.dll (file missing)
O2 - BHO: (no name) - {4022B73E-3FC9-4360-B1FC-AFA342C83763} - C:\Program Files\w9yddwa8\w9yddwa8.dll (file missing)
O2 - BHO: (no name) - {41CC010C-8AAC-4355-BD54-C108B4A59C07} - C:\Program Files\w9yddwa8\w9yddwa8.dll (file missing)
O2 - BHO: (no name) - {42BD29B7-810F-4D68-A17F-28EB08322075} - C:\Program Files\w9yddwa8\w9yddwa8.dll (file missing)
O2 - BHO: (no name) - {42F675FD-4880-4FEC-BF88-DD656F3C5042} - C:\Program Files\w9yddwa8\w9yddwa8.dll (file missing)
O2 - BHO: MSW.cIExplorer - {4B57B77A-B130-4EB8-8CFB-42B880F6D311} - (no file)
O2 - BHO: (no name) - {4C7F1F45-EE36-4C91-829F-A9940FED0B3D} - C:\Program Files\w9yddwa8\w9yddwa8.dll (file missing)
O2 - BHO: (no name) - {4E69F2BA-2D67-401B-940C-B50B00C72A7F} - C:\Program Files\w9yddwa8\w9yddwa8.dll (file missing)
O2 - BHO: Search Bar - {4E7BD74F-2B8D-469E-A1F6-FC7EB590A97D} - C:\WINDOWS\DOWNLO~1\search3.dll
O2 - BHO: (no name) - {523C8B58-5886-457F-A789-FC62387B4620} - C:\Program Files\w9yddwa8\w9yddwa8.dll (file missing)
O2 - BHO: (no name) - {534B2635-B3DA-4D61-BBDB-3982A89FA457} - C:\Program Files\w9yddwa8\w9yddwa8.dll (file missing)
O2 - BHO: (no name) - {5489C8F6-CB73-4CB4-A86F-9CB4DFD89865} - C:\Program Files\w9yddwa8\w9yddwa8.dll (file missing)
O2 - BHO: (no name) - {54CCFF84-3517-4BEA-AC7A-4E0791E5C23B} - C:\Program Files\w9yddwa8\w9yddwa8.dll (file missing)
O2 - BHO: (no name) - {56DD12DF-FBC0-43CF-8103-AA94882BCA7E} - C:\Program Files\w9yddwa8\w9yddwa8.dll (file missing)
O2 - BHO: CPubSR Object - {5742F79A-1D91-42c4-990C-B46CF55A6478} - (no file)
O2 - BHO: (no name) - {586859D3-7374-4523-BB4A-E0C575679E62} - C:\Program Files\w9yddwa8\w9yddwa8.dll (file missing)
O2 - BHO: UberButton Class - {5BAB4B5B-68BC-4B02-94D6-2FC0DE4A7897} - C:\Program Files\Yahoo!\Common\yiesrvc.dll
O2 - BHO: (no name) - {5BE91CD2-A7C3-45E9-868A-4DA296B9BFBB} - C:\Program Files\w9yddwa8\w9yddwa8.dll (file missing)
O2 - BHO: (no name) - {60CEC715-F191-4264-987E-6D2B6525C344} - C:\Program Files\w9yddwa8\w9yddwa8.dll (file missing)
O2 - BHO: YahooTaggedBM Class - {65D886A2-7CA7-479B-BB95-14D1EFB7946A} - C:\Program Files\Yahoo!\Common\YIeTagBm.dll
O2 - BHO: (no name) - {686787A5-02A6-41E3-BB10-126B9BDE0FCC} - C:\Program Files\w9yddwa8\w9yddwa8.dll (file missing)
O2 - BHO: (no name) - {6D136DD2-A616-4A11-903D-B34890FD4F40} - C:\Program Files\w9yddwa8\w9yddwa8.dll (file missing)
O2 - BHO: (no name) - {6F65D382-FDFF-4189-BA03-BF07A1C300B7} - C:\Program Files\w9yddwa8\w9yddwa8.dll (file missing)
O2 - BHO: (no name) - {715D012D-AD3B-4F0F-AD60-B8C14B3014F8} - C:\Program Files\w9yddwa8\w9yddwa8.dll (file missing)
O2 - BHO: (no name) - {74F1A866-52D5-4946-93E3-EF97315D89F9} - C:\Program Files\w9yddwa8\w9yddwa8.dll (file missing)
O2 - BHO: (no name) - {755072C2-5E18-42E6-BD23-972448F9A027} - C:\Program Files\w9yddwa8\w9yddwa8.dll (file missing)
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O2 - BHO: (no name) - {7BCD77C4-5D81-4A80-AB1E-244F10F20DA9} - C:\Program Files\w9yddwa8\w9yddwa8.dll (file missing)
O2 - BHO: AOL Toolbar Launcher - {7C554162-8CB7-45A4-B8F4-8EA1C75885F9} - C:\Program Files\AOL\AOL Toolbar 3.1\aoltb.dll
O2 - BHO: (no name) - {7E1BE669-495B-43DB-A8B9-3150BD964CF9} - C:\Program Files\w9yddwa8\w9yddwa8.dll (file missing)
O2 - BHO: (no name) - {7EB539CC-A1A0-4056-9502-D1640D511908} - C:\Program Files\w9yddwa8\w9yddwa8.dll (file missing)
O2 - BHO: (no name) - {81B5ACE7-FFBA-4A08-B4F4-E61993A909FE} - C:\Program Files\w9yddwa8\w9yddwa8.dll (file missing)
O2 - BHO: (no name) - {843A3E97-BDED-4A55-9D81-FDE3F31B8CE4} - C:\Program Files\w9yddwa8\w9yddwa8.dll (file missing)
O2 - BHO: (no name) - {84D90335-1753-42C8-A370-048C9370EA3D} - C:\Program Files\w9yddwa8\w9yddwa8.dll (file missing)
O2 - BHO: (no name) - {878DC70F-DCDC-4D49-BAB8-CFC1583D7B37} - C:\Program Files\w9yddwa8\w9yddwa8.dll (file missing)
O2 - BHO: (no name) - {892E9298-5544-4F8F-9D34-A47340AEAF87} - C:\Program Files\w9yddwa8\w9yddwa8.dll (file missing)
O2 - BHO: (no name) - {8B834F10-E1BB-47FE-84BA-5C96DF9865F9} - C:\Program Files\w9yddwa8\w9yddwa8.dll (file missing)
O2 - BHO: (no name) - {8D71DF13-573F-47FA-B24A-DA9E3475D4C1} - C:\Program Files\w9yddwa8\w9yddwa8.dll (file missing)
O2 - BHO: (no name) - {90FEFFB8-AD24-4DAE-A1DC-D480ECB4ED0B} - C:\Program Files\w9yddwa8\w9yddwa8.dll (file missing)
O2 - BHO: (no name) - {91F7E6F9-D2D1-4BB4-AF6C-A8FF79078738} - C:\Program Files\w9yddwa8\w9yddwa8.dll (file missing)
O2 - BHO: (no name) - {93155797-7FC1-4445-8E1B-C9A4E5ABC853} - C:\Program Files\w9yddwa8\w9yddwa8.dll (file missing)
O2 - BHO: (no name) - {96721DFF-81BB-47BA-8233-2F499DEB36C6} - C:\Program Files\w9yddwa8\w9yddwa8.dll (file missing)
O2 - BHO: (no name) - {97626882-9D8D-4387-827B-0310FD6F9576} - C:\Program Files\w9yddwa8\w9yddwa8.dll (file missing)
O2 - BHO: (no name) - {98B4F205-75FC-4CD5-982E-FAA73EBA56EF} - C:\Program Files\w9yddwa8\w9yddwa8.dll (file missing)
O2 - BHO: (no name) - {9AAC331E-FC67-4C10-BAD2-642656DC6EB4} - C:\Program Files\w9yddwa8\w9yddwa8.dll (file missing)
O2 - BHO: (no name) - {9E870A10-76CE-43F6-9AD3-D034C31D367F} - C:\Program Files\w9yddwa8\w9yddwa8.dll (file missing)
O2 - BHO: (no name) - {A6DA0DCC-5BB2-4BB4-81E4-5D1E8959A5B6} - C:\Program Files\w9yddwa8\w9yddwa8.dll (file missing)
O2 - BHO: (no name) - {A90FE9D9-6C86-4839-833D-648BEBF06170} - C:\Program Files\w9yddwa8\w9yddwa8.dll (file missing)
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll
O2 - BHO: (no name) - {AE3A651D-3BAC-4906-9E13-0D4C9573AD05} - C:\Program Files\w9yddwa8\w9yddwa8.dll (file missing)
O2 - BHO: (no name) - {AFEE622F-9D8F-4B6A-8BFD-3F46B4F9D650} - C:\Program Files\w9yddwa8\w9yddwa8.dll (file missing)
O2 - BHO: (no name) - {B02BEDA8-86FC-4E1F-BD17-3A7779A4F5BA} - C:\Program Files\w9yddwa8\w9yddwa8.dll (file missing)
O2 - BHO: (no name) - {B096C44A-1FB1-485B-A7EE-97AED99B34DE} - C:\Program Files\w9yddwa8\w9yddwa8.dll (file missing)
O2 - BHO: (no name) - {B2A58A01-4AEF-4041-912C-E43D534E3976} - C:\Program Files\w9yddwa8\w9yddwa8.dll (file missing)
O2 - BHO: (no name) - {B2BB876E-201B-49B7-B2D8-F26C43A58F43} - C:\Program Files\w9yddwa8\w9yddwa8.dll (file missing)
O2 - BHO: (no name) - {B341537D-11B8-4F13-8701-0149E72FCC04} - C:\Program Files\w9yddwa8\w9yddwa8.dll (file missing)
O2 - BHO: (no name) - {B5624D80-6480-41A7-A077-51F0A7485426} - C:\Program Files\w9yddwa8\w9yddwa8.dll (file missing)
O2 - BHO: (no name) - {B721ECCC-F751-4AFA-86D8-345B5C7E211E} - C:\Program Files\w9yddwa8\w9yddwa8.dll (file missing)
O2 - BHO: (no name) - {B8DC7943-2CC4-4014-AD57-DDF00C57BBDE} - C:\Program Files\w9yddwa8\w9yddwa8.dll (file missing)
O2 - BHO: (no name) - {BF24BDC0-C393-4763-9588-5729D8DEB1D4} - C:\Program Files\w9yddwa8\w9yddwa8.dll (file missing)
O2 - BHO: (no name) - {C2ADDCDC-3F6A-421F-BFF1-B5B75ABAB565} - C:\Program Files\w9yddwa8\w9yddwa8.dll (file missing)
O2 - BHO: (no name) - {C3BFBDA2-C7D2-4F12-A73F-426F39588F77} - C:\Program Files\w9yddwa8\w9yddwa8.dll (file missing)
O2 - BHO: (no name) - {C6159B1A-DE01-4937-BC23-0D148423A464} - C:\Program Files\w9yddwa8\w9yddwa8.dll (file missing)
O2 - BHO: (no name) - {CD31E66F-B8B5-41AD-8594-701AEF74B8BD} - C:\Program Files\w9yddwa8\w9yddwa8.dll (file missing)
O2 - BHO: (no name) - {D0CFCC54-4BCF-4F1A-A6E8-E8DBF0F1CC89} - C:\Program Files\w9yddwa8\w9yddwa8.dll (file missing)
O2 - BHO: (no name) - {D1842A70-4745-4B5E-8EC0-98C69E6B89C3} - C:\Program Files\w9yddwa8\w9yddwa8.dll (file missing)
O2 - BHO: (no name) - {D3E21D5D-20F0-4A42-8FA7-A9FB6E703265} - C:\Program Files\w9yddwa8\w9yddwa8.dll (file missing)
O2 - BHO: (no name) - {D486EF10-AE1E-469F-BCB1-5E268F70CBEB} - C:\Program Files\w9yddwa8\w9yddwa8.dll (file missing)
O2 - BHO: (no name) - {D746894B-E2A8-431B-88D5-0F8F543004DE} - C:\Program Files\w9yddwa8\w9yddwa8.dll (file missing)
O2 - BHO: (no name) - {DD10B646-2771-4492-BE79-254FED157745} - C:\Program Files\w9yddwa8\w9yddwa8.dll (file missing)
O2 - BHO: (no name) - {DDF9D898-99DD-4DE3-899A-A3CA3D19B524} - C:\Program Files\w9yddwa8\w9yddwa8.dll (file missing)
O2 - BHO: (no name) - {E115EBC2-85AF-4828-8836-6B0D8D73C054} - C:\Program Files\w9yddwa8\w9yddwa8.dll (file missing)
O2 - BHO: (no name) - {E2BF862E-776A-429F-805C-CBE541F8D895} - C:\Program Files\w9yddwa8\w9yddwa8.dll (file missing)
O2 - BHO: (no name) - {E397E34B-112C-4025-902D-2EAC328A2774} - C:\Program Files\w9yddwa8\w9yddwa8.dll (file missing)
O2 - BHO: (no name) - {E7898CEB-9FE8-4F34-B9D2-DE3A3A8FE01F} - C:\Program Files\w9yddwa8\w9yddwa8.dll (file missing)
O2 - BHO: (no name) - {EBE7C6FE-8ECA-4ED3-9775-DBAF1D558BC8} - C:\Program Files\w9yddwa8\w9yddwa8.dll (file missing)
O2 - BHO: (no name) - {EDBE284D-3BD4-4B1D-8008-006668E9C7A7} - C:\Program Files\w9yddwa8\w9yddwa8.dll (file missing)
O2 - BHO: (no name) - {EF65583B-4521-4EBD-8A59-0070A404A824} - C:\Program Files\w9yddwa8\w9yddwa8.dll (file missing)
O2 - BHO: (no name) - {FA690590-819D-4FB5-8433-9535662C6777} - C:\Program Files\w9yddwa8\w9yddwa8.dll (file missing)
O2 - BHO: (no name) - {FC703A25-23CC-43E7-B4DA-B279223082CB} - C:\Program Files\w9yddwa8\w9yddwa8.dll (file missing)
O2 - BHO: (no name) - {FEC9536B-B878-46C3-BDC6-C45D117CA561} - C:\Program Files\w9yddwa8\w9yddwa8.dll (file missing)
O2 - BHO: (no name) - {FFB5B04A-E7C3-470E-AA15-7D7F7FF5954F} - C:\Program Files\w9yddwa8\w9yddwa8.dll (file missing)
O3 - Toolbar: Search Bar - {4E7BD74F-2B8D-469E-A1F6-FC7EB590A97D} - C:\WINDOWS\DOWNLO~1\search3.dll
O3 - Toolbar: McAfee VirusScan - {BA52B914-B692-46c4-B683-905236F6F655} - c:\progra~1\mcafee.com\vso\mcvsshl.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O3 - Toolbar: AOL Toolbar - {DE9C389F-3316-41A7-809B-AA305ED9D922} - C:\Program Files\AOL\AOL Toolbar 3.1\aoltb.dll
O4 - HKLM\..\Run: [CPQEASYACC] C:\Program Files\Compaq\Easy Access Button Support\StartEAK.exe
O4 - HKLM\..\Run: [lxamsp32.exe] lxamsp32.exe
O4 - HKLM\..\Run: [Irn] C:\WINDOWS\System32\Nul.exe
O4 - HKLM\..\Run: [VSOCheckTask] "c:\PROGRA~1\mcafee.com\vso\mcmnhdlr.exe" /checktask
O4 - HKLM\..\Run: [VirusScan Online] "c:\PROGRA~1\mcafee.com\vso\mcvsshld.exe"
O4 - HKLM\..\Run: [MCAgentExe] c:\PROGRA~1\mcafee.com\agent\mcagent.exe
O4 - HKLM\..\Run: [MCUpdateExe] C:\PROGRA~1\mcafee.com\agent\McUpdate.exe
O4 - HKLM\..\Run: [Uab] C:\WINDOWS\System32\Lpq.exe
O4 - HKLM\..\Run: [43sO33U] racni10.exe
O4 - HKLM\..\Run: [HostManager] C:\Program Files\Common Files\AOL\1110767645\ee\AOLSoftware.exe
O4 - HKLM\..\Run: [AOL Spyware Protection] C:\PROGRA~1\COMMON~1\AOL\AOLSPY~1\AOLSP Scheduler.exe
O4 - HKLM\..\Run: [abulunor] C:\WINDOWS\abulunor.exe
O4 - HKLM\..\Run: [HPDJ Taskbar Utility] C:\WINDOWS\System32\spool\drivers\w32x86\3\hpztsb11.exe
O4 - HKLM\..\Run: [Pure Networks Port Magic] "C:\PROGRA~1\PURENE~1\PORTMA~1\PortAOL.exe" -Run
O4 - HKLM\..\Run: [rfsbhknfdg] C:\WINDOWS\System32\qpdjrl.exe
O4 - HKLM\..\Run: [adj0b5p3] C:\WINDOWS\System32\adj0b5p3.exe
O4 - HKLM\..\Run: [BJCFD] C:\Program Files\BroadJump\Client Foundation\CFD.exe
O4 - HKLM\..\Run: [tgcmd] "C:\Program Files\Support.com\BellSouth\hcenter.exe" /starthidden /tgcmdwrapper
O4 - HKLM\..\Run: [AOLDialer] C:\Program Files\Common Files\AOL\ACS\AOLDial.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
O4 - HKLM\..\Run: [funkz] C:\WINDOWS\funkz.exe
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [IPHSend] C:\Program Files\Common Files\AOL\IPHSend\IPHSend.exe
O4 - HKCU\..\Run: [MSMSGS] C:\Program Files\Messenger\msmsgs.exe /background
O4 - HKCU\..\Run: [AOLCC] C:\PROGRA~1\AOLCOM~2\ACCAgnt.exe /startup
O4 - HKCU\..\Run: [AIM] C:\Program Files\AIM\aim.exe -cnetwait.odl
O4 - HKCU\..\Run: [AOL Fast Start] "C:\Program Files\America Online 9.0d\AOL.EXE" -b
O4 - HKCU\..\Run: [Yahoo! Pager] C:\Program Files\Yahoo!\Messenger\ypager.exe -quiet
O4 - HKCU\..\Run: [Aim6] "C:\Program Files\Common Files\AOL\Launch\AOLLaunch.exe" /d locale=en-US ee://aol/imApp
O4 - Global Startup: AcBtnMgr_X63.exe.lnk = C:\Program Files\LexmarkX63\AcBtnMgr_X63.exe
O4 - Global Startup: America Online Tray Icon.lnk = C:\Program Files\America Online 9.0e\aoltray.exe
O4 - Global Startup: AOL Companion.lnk = C:\Program Files\AOL Companion\companion.exe
O4 - Global Startup: Exif Launcher.lnk = C:\Program Files\Exif Launcher\QuickDCF.exe
O4 - Global Startup: QuickBooks Update Agent.lnk = C:\Program Files\Common Files\Intuit\QuickBooks\QBUpdate\qbupdate.exe
O8 - Extra context menu item: &AIM Search - res://C:\Program Files\AIM Toolbar\AIMBar.dll/aimsearch.htm
O8 - Extra context menu item: &AOL Toolbar Search - c:\program files\aol\aol toolbar 3.1\resources\en-US\local\search.html
O8 - Extra context menu item: &Google Search - res://c:\program files\google\GoogleToolbar2.dll/cmsearch.html
O8 - Extra context menu item: &Search - http://bar.mywebsearch.com/menusearch.html?p=ZC
O8 - Extra context menu item: &Translate English Word - res://c:\program files\google\GoogleToolbar2.dll/cmwordtrans.html
O8 - Extra context menu item: &Yahoo! Search - file:///C:\Program Files\Yahoo!\Common/ycsrch.htm
O8 - Extra context menu item: Backward Links - res://c:\program files\google\GoogleToolbar2.dll/cmbacklinks.html
O8 - Extra context menu item: Cached Snapshot of Page - res://c:\program files\google\GoogleToolbar2.dll/cmcache.html
O8 - Extra context menu item: Similar Pages - res://c:\program files\google\GoogleToolbar2.dll/cmsimilar.html
O8 - Extra context menu item: Translate Page into English - res://c:\program files\google\GoogleToolbar2.dll/cmtrans.html
O8 - Extra context menu item: Yahoo! &Dictionary - file:///C:\Program Files\Yahoo!\Common/ycdict.htm
O8 - Extra context menu item: Yahoo! &Maps - file:///C:\Program Files\Yahoo!\Common/ycmap.htm
O8 - Extra context menu item: Yahoo! &SMS - file:///C:\Program Files\Yahoo!\Common/ycsms.htm
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra button: AOL Toolbar - {3369AF0D-62E9-4bda-8103-B4C75499B578} - C:\Program Files\AOL\AOL Toolbar 3.1\aoltb.dll
O9 - Extra button: Yahoo! Services - {5BAB4B5B-68BC-4B02-94D6-2FC0DE4A7897} - C:\Program Files\Yahoo!\Common\yiesrvc.dll
O9 - Extra button: AIM - {AC9E2541-2814-11d5-BC6D-00B0D0A1DE45} - C:\Program Files\AIM\aim.exe
O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\System32\Shdocvw.dll
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra button: Support - {6ED930F4-82BF-4E6F-9A0A-C46F5C522FDE} - C:\Program Files\Internet Explorer\SIGNUP\Presario.htm (file missing) (HKCU)
O9 - Extra button: WeatherBug - {AF6CABAB-61F9-4f12-A198-B7D41EF1CB52} - C:\WINDOWS\System32\shdocvw.dll (HKCU)
O12 - Plugin for .asx: C:\Program Files\Compaq\Netscape Custom NA XP\PLUGINS\npdsplay.dll
O15 - Trusted Zone: *.blazefind.com
O15 - Trusted Zone: *.clickspring.net
O15 - Trusted Zone: *.flingstone.com
O15 - Trusted Zone: *.mt-download.com
O15 - Trusted Zone: *.my-internet.info
O15 - Trusted Zone: *.searchbarcash.com
O15 - Trusted Zone: *.searchmiracle.com
O15 - Trusted Zone: *.skoobidoo.com
O15 - Trusted Zone: *.slotch.com
O15 - Trusted Zone: *.slotchbar.com
O15 - Trusted Zone: *.windupdates.com
O15 - Trusted Zone: *.xxxtoolbar.com
O15 - Trusted Zone: *.ysbweb.com
O15 - Trusted Zone: *.blazefind.com (HKLM)
O15 - Trusted Zone: *.clickspring.net (HKLM)
O15 - Trusted Zone: *.flingstone.com (HKLM)
O15 - Trusted Zone: *.mt-download.com (HKLM)
O15 - Trusted Zone: *.my-internet.info (HKLM)
O15 - Trusted Zone: *.searchbarcash.com (HKLM)
O15 - Trusted Zone: *.searchmiracle.com (HKLM)
O15 - Trusted Zone: *.skoobidoo.com (HKLM)
O15 - Trusted Zone: *.slotch.com (HKLM)
O15 - Trusted Zone: *.slotchbar.com (HKLM)
O15 - Trusted Zone: *.windupdates.com (HKLM)
O15 - Trusted Zone: *.xxxtoolbar.com (HKLM)
O15 - Trusted Zone: *.ysbweb.com (HKLM)
O15 - Trusted IP range: 67.19.185.246
O15 - Trusted IP range: 67.19.185.246 (HKLM)
O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab
O16 - DPF: {10000000-1000-0000-1000-000000000000} - ms-its:mhtml:file://C:\foo.mht!http://www.ntsearch.com/popengine/POP.CHM::/sp.exe
O16 - DPF: {1D0D9077-3798-49BB-9058-393499174D5D} - file://c:\counter.cab
O16 - DPF: {229F0CEB-F661-47CA-AF4A-7C72091071F8} (AndalePowerUploader.PowerUploader) - http://download.andale.com/PowerUplo...ploader113.cab
O16 - DPF: {30528230-99F7-4BB4-88D8-FA1D4F56A2AB} (YInstStarter Class) - C:\Program Files\Yahoo!\Common\yinsthelper.dll
O16 - DPF: {37A273C2-5129-11D5-BF37-00A0CCE8754B} (TTestGenXInstallObject) - http://www.mathxl.com/wizmodules/tes...enXInstall.cab
O16 - DPF: {37DF41B2-61DB-4CAC-A755-CFB3C7EE7F40} (AOL Content Update) - http://esupport.aol.com/help/acp2/en...ach_core_1.cab
O16 - DPF: {4A3CF76B-EC7A-405D-A67D-8DC6B52AB35B} (QDiagAOLCCUpdateObj Class) - http://aolcc.aol.com/computercheckup/qdiagcc.cab
O16 - DPF: {4F5E4276-C120-11D6-A1FD-00508B9D48EA} (dldisplay Class) - http://www.gamehouse.com/ghdlctl.cab
O16 - DPF: {4FE89055-5300-469E-AFAD-DEB3181EDE76} (PearsonAsstX Control) - http://www.mathxl.com/applets/PearsonInstallAsst.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsu...?1123301999179
O16 - DPF: {6491E7CB-F83B-4D31-8F99-6384A633FE58} (EconCVX Control) - http://www.mathxl.com/applets/EconCVX.cab
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsof...?1146566847984
O16 - DPF: {7E980B9B-8AE5-466A-B6D6-DA8CF814E78A} (MJLauncherCtrl Class) - http://www.shockwave.com/content/luxor/mjolauncher.cab
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary...tatsClient.cab
O16 - DPF: {A17E30C4-A9BA-11D4-8673-60DB54C10000} (YahooYMailTo Class) - http://us.dl1.yimg.com/download.yaho...ymmapi_416.dll
O16 - DPF: {A90A5822-F108-45AD-8482-9BC8B12DD539} (Crucial cpcScan) - http://www.crucial.com/controls/cpcScanner.cab
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (ZoneIntro Class) - http://cdn2.zone.msn.com/binFramewor...o.cab34246.cab
O16 - DPF: {D27CDB6E-AE6A-11CF-96B8-444553540000} - http://hometown.aol.com/goldenluck/m...ge/ProfJ1G.exe
O16 - DPF: {DF780F87-FF2B-4DF8-92D0-73DB16A1543A} (PopCapLoader Object) - http://www.shockwave.com/content/bej...ploader_v6.cab
O16 - DPF: {E7D2588A-7FB5-47DC-8830-832605661009} (Live Collaboration) - http://liveca05.rightnowtech.com/uo/.../java/RntX.cab
O18 - Protocol: bw+0 - {E8B9BFD6-BD0A-432B-B0B3-95BA6F5DF47A} - C:\Program Files\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw+0s - {E8B9BFD6-BD0A-432B-B0B3-95BA6F5DF47A} - C:\Program Files\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0 - {E8B9BFD6-BD0A-432B-B0B3-95BA6F5DF47A} - C:\Program Files\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0s - {E8B9BFD6-BD0A-432B-B0B3-95BA6F5DF47A} - C:\Program Files\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00 - {E8B9BFD6-BD0A-432B-B0B3-95BA6F5DF47A} - C:\Program Files\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00s - {E8B9BFD6-BD0A-432B-B0B3-95BA6F5DF47A} - C:\Program Files\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10 - {E8B9BFD6-BD0A-432B-B0B3-95BA6F5DF47A} - C:\Program Files\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10s - {E8B9BFD6-BD0A-432B-B0B3-95BA6F5DF47A} - C:\Program Files\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20 - {E8B9BFD6-BD0A-432B-B0B3-95BA6F5DF47A} - C:\Program Files\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20s - {E8B9BFD6-BD0A-432B-B0B3-95BA6F5DF47A} - C:\Program Files\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30 - {E8B9BFD6-BD0A-432B-B0B3-95BA6F5DF47A} - C:\Program Files\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30s - {E8B9BFD6-BD0A-432B-B0B3-95BA6F5DF47A} - C:\Program Files\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40 - {E8B9BFD6-BD0A-432B-B0B3-95BA6F5DF47A} - C:\Program Files\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40s - {E8B9BFD6-BD0A-432B-B0B3-95BA6F5DF47A} - C:\Program Files\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50 - {E8B9BFD6-BD0A-432B-B0B3-95BA6F5DF47A} - C:\Program Files\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50s - {E8B9BFD6-BD0A-432B-B0B3-95BA6F5DF47A} - C:\Program Files\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60 - {E8B9BFD6-BD0A-432B-B0B3-95BA6F5DF47A} - C:\Program Files\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60s - {E8B9BFD6-BD0A-432B-B0B3-95BA6F5DF47A} - C:\Program Files\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70 - {E8B9BFD6-BD0A-432B-B0B3-95BA6F5DF47A} - C:\Program Files\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70s - {E8B9BFD6-BD0A-432B-B0B3-95BA6F5DF47A} - C:\Program Files\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80 - {E8B9BFD6-BD0A-432B-B0B3-95BA6F5DF47A} - C:\Program Files\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80s - {E8B9BFD6-BD0A-432B-B0B3-95BA6F5DF47A} - C:\Program Files\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90 - {E8B9BFD6-BD0A-432B-B0B3-95BA6F5DF47A} - C:\Program Files\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90s - {E8B9BFD6-BD0A-432B-B0B3-95BA6F5DF47A} - C:\Program Files\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0 - {E8B9BFD6-BD0A-432B-B0B3-95BA6F5DF47A} - C:\Program Files\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0s - {E8B9BFD6-BD0A-432B-B0B3-95BA6F5DF47A} - C:\Program Files\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0 - {E8B9BFD6-BD0A-432B-B0B3-95BA6F5DF47A} - C:\Program Files\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0s - {E8B9BFD6-BD0A-432B-B0B3-95BA6F5DF47A} - C:\Program Files\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0 - {E8B9BFD6-BD0A-432B-B0B3-95BA6F5DF47A} - C:\Program Files\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0s - {E8B9BFD6-BD0A-432B-B0B3-95BA6F5DF47A} - C:\Program Files\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0 - {E8B9BFD6-BD0A-432B-B0B3-95BA6F5DF47A} - C:\Program Files\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0s - {E8B9BFD6-BD0A-432B-B0B3-95BA6F5DF47A} - C:\Program Files\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0 - {E8B9BFD6-BD0A-432B-B0B3-95BA6F5DF47A} - C:\Program Files\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0s - {E8B9BFD6-BD0A-432B-B0B3-95BA6F5DF47A} - C:\Program Files\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0 - {E8B9BFD6-BD0A-432B-B0B3-95BA6F5DF47A} - C:\Program Files\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0s - {E8B9BFD6-BD0A-432B-B0B3-95BA6F5DF47A} - C:\Program Files\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O18 - Protocol: bwg0 - {E8B9BFD6-BD0A-432B-B0B3-95BA6F5DF47A} - C:\Program Files\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwg0s - {E8B9BFD6-BD0A-432B-B0B3-95BA6F5DF47A} - C:\Program Files\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0 - {E8B9BFD6-BD0A-432B-B0B3-95BA6F5DF47A} - C:\Program Files\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0s - {E8B9BFD6-BD0A-432B-B0B3-95BA6F5DF47A} - C:\Program Files\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0 - {E8B9BFD6-BD0A-432B-B0B3-95BA6F5DF47A} - C:\Program Files\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0s - {E8B9BFD6-BD0A-432B-B0B3-95BA6F5DF47A} - C:\Program Files\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0 - {E8B9BFD6-BD0A-432B-B0B3-95BA6F5DF47A} - C:\Program Files\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0s - {E8B9BFD6-BD0A-432B-B0B3-95BA6F5DF47A} - C:\Program Files\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0 - {E8B9BFD6-BD0A-432B-B0B3-95BA6F5DF47A} - C:\Program Files\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0s - {E8B9BFD6-BD0A-432B-B0B3-95BA6F5DF47A} - C:\Program Files\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0 - {E8B9BFD6-BD0A-432B-B0B3-95BA6F5DF47A} - C:\Program Files\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0s - {E8B9BFD6-BD0A-432B-B0B3-95BA6F5DF47A} - C:\Program Files\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0 - {E8B9BFD6-BD0A-432B-B0B3-95BA6F5DF47A} - C:\Program Files\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0s - {E8B9BFD6-BD0A-432B-B0B3-95BA6F5DF47A} - C:\Program Files\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0 - {E8B9BFD6-BD0A-432B-B0B3-95BA6F5DF47A} - C:\Program Files\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0s - {E8B9BFD6-BD0A-432B-B0B3-95BA6F5DF47A} - C:\Program Files\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0 - {E8B9BFD6-BD0A-432B-B0B3-95BA6F5DF47A} - C:\Program Files\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0s - {E8B9BFD6-BD0A-432B-B0B3-95BA6F5DF47A} - C:\Program Files\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0 - {E8B9BFD6-BD0A-432B-B0B3-95BA6F5DF47A} - C:\Program Files\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0s - {E8B9BFD6-BD0A-432B-B0B3-95BA6F5DF47A} - C:\Program Files\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0 - {E8B9BFD6-BD0A-432B-B0B3-95BA6F5DF47A} - C:\Program Files\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0s - {E8B9BFD6-BD0A-432B-B0B3-95BA6F5DF47A} - C:\Program Files\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0 - {E8B9BFD6-BD0A-432B-B0B3-95BA6F5DF47A} - C:\Program Files\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0s - {E8B9BFD6-BD0A-432B-B0B3-95BA6F5DF47A} - C:\Program Files\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0 - {E8B9BFD6-BD0A-432B-B0B3-95BA6F5DF47A} - C:\Program Files\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0s - {E8B9BFD6-BD0A-432B-B0B3-95BA6F5DF47A} - C:\Program Files\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0 - {E8B9BFD6-BD0A-432B-B0B3-95BA6F5DF47A} - C:\Program Files\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0s - {E8B9BFD6-BD0A-432B-B0B3-95BA6F5DF47A} - C:\Program Files\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0 - {E8B9BFD6-BD0A-432B-B0B3-95BA6F5DF47A} - C:\Program Files\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0s - {E8B9BFD6-BD0A-432B-B0B3-95BA6F5DF47A} - C:\Program Files\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0 - {E8B9BFD6-BD0A-432B-B0B3-95BA6F5DF47A} - C:\Program Files\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0s - {E8B9BFD6-BD0A-432B-B0B3-95BA6F5DF47A} - C:\Program Files\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0 - {E8B9BFD6-BD0A-432B-B0B3-95BA6F5DF47A} - C:\Program Files\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0s - {E8B9BFD6-BD0A-432B-B0B3-95BA6F5DF47A} - C:\Program Files\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0 - {E8B9BFD6-BD0A-432B-B0B3-95BA6F5DF47A} - C:\Program Files\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0s - {E8B9BFD6-BD0A-432B-B0B3-95BA6F5DF47A} - C:\Program Files\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0 - {E8B9BFD6-BD0A-432B-B0B3-95BA6F5DF47A} - C:\Program Files\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0s - {E8B9BFD6-BD0A-432B-B0B3-95BA6F5DF47A} - C:\Program Files\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0 - {E8B9BFD6-BD0A-432B-B0B3-95BA6F5DF47A} - C:\Program Files\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0s - {E8B9BFD6-BD0A-432B-B0B3-95BA6F5DF47A} - C:\Program Files\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: offline-8876480 - {E8B9BFD6-BD0A-432B-B0B3-95BA6F5DF47A} - C:\Program Files\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O21 - SSODL: URLREWIN - {EB9BDABE-1BD2-445B-9A13-BA9C7D2E3CA9} - c:\windows\system32\netknl.dll (file missing)
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
O23 - Service: AOL Connectivity Service (AOL ACS) - America Online - C:\Program Files\Common Files\AOL\ACS\AOLAcsd.exe
O23 - Service: AOL TopSpeed Monitor (AOL TopSpeedMonitor) - America Online, Inc - C:\Program Files\Common Files\AOL\TopSpeed\2.0\aoltsmon.exe
O23 - Service: AOL Spyware Protection Service (AOLService) - Unknown owner - C:\PROGRA~1\COMMON~1\AOL\AOLSPY~1\\aolserv.exe
O23 - Service: Compaq Advisor (Compaq_RBA) - NeoPlanet - C:\Program Files\Compaq\Compaq Advisor\bin\compaq-rba.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Intuit Fuse Service - Intuit - C:\Program Files\Common Files\Intuit\Fuse\Service\Intuit Fuse Service.exe
O23 - Service: iPodService - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: LexBce Server (LexBceS) - Lexmark International, Inc. - C:\WINDOWS\system32\LEXBCES.EXE
O23 - Service: McAfee.com McShield (McShield) - Unknown owner - c:\PROGRA~1\mcafee.com\vso\mcshield.exe
O23 - Service: McAfee SecurityCenter Update Manager (mcupdmgr.exe) - Networks Associates Technology, Inc - C:\PROGRA~1\McAfee.com\Agent\mcupdmgr.exe
O23 - Service: McAfee.com VirusScan Online Realtime Engine (MCVSRte) - Networks Associates Technology, Inc - c:\PROGRA~1\mcafee.com\vso\mcvsrte.exe
O23 - Service: PCTEL Speaker Phone (Pctspk) - PCtel, Inc. - C:\WINDOWS\system32\pctspk.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\System32\HPZipm12.exe
O23 - Service: WAN Miniport (ATW) Service (WANMiniportService) - America Online, Inc. - C:\WINDOWS\wanmpsvc.exe

post #2 of 7

8/28/06 at 11:28am

dman22
0
Here and not here
offline

Joined: 8/2004
Location: Griesheim, Germany
Posts: 18,175
Select All Posts By This User

O15 - Trusted Zone: *.xxxtoolbar.com (HKLM)
O15 - Trusted Zone: *.ysbweb.com (HKLM)

I wouldn't have those two in my trusted zone personally.. and stay away from the porn sites....

BTW, you have WAY too many processes running... do you really need all that stuff all at once?? and even though mcaffee security center may have been preinstalled, I'd seriously recommend getting rid of it before it trashes your system. It came on this 1705 and at first I thought it was a deal because I didn't pay for it and it was good for 3 years of updates. Then it took over my computer to the point of blocking everything. I had to reformat to get rid of it and ever since then I've used Avast, which is free, not greedy and works..
BTW2, do you have to use aohell?? it's obviously not helping you in the spyware department....

post #3 of 7

8/30/06 at 3:00am

Thread Starter

dg5032
0
Das Alte Leid!
offline

Joined: 5/2005
Location: Palm Beach Gardens, FL
Posts: 228
Select All Posts By This User

well its my girlfriends computer, her sisters boyfriend is constantly on them porn sites, I HATE AOL with a passion but her mother uses it and its piece of shit, I wana reformat for them burt theyre like no its fine and its really in such horrible shape, the desktop looks like a teenagers room! so cluttered!

post #4 of 7

8/30/06 at 6:46am

chemicalali
0
Registered User
offline

Joined: 8/2003
Posts: 681
Select All Posts By This User

www.techsupportforum.com

post your log there. have helped me on many occasions.

post #5 of 7

8/30/06 at 10:42am

dman22
0
Here and not here
offline

Joined: 8/2004
Location: Griesheim, Germany
Posts: 18,175
Select All Posts By This User

Quote:

Originally Posted by dg5032

well, only thing left is to tell them you can't fix what they won't allow you to fix.. They sound like typical moronic computer users to me, which are completely annoying. I've tried to help people like that before too, but after a while I just cut them off and flat out told them I can't fix stupid...

post #6 of 7

9/1/06 at 10:47am

chemicalali
0
Registered User
offline

Joined: 8/2003
Posts: 681
Select All Posts By This User

Quote:

Originally Posted by dman22

i know what you mean. i stayed at my sis-in-laws house for the weekend. i had to do some work on their comp. but i suspected some problem. so i downloaded and ran ad-aware. scan showed 600-700 adware/spyware/viruses/keyloggers. her husband probably falls in the 0.01% of people who fall for those nigerian scams.
anyhow, i cleaned out their comp. thought i did them a favor. turns out after a few weeks he had some problem with his comp. and kinda pointed the finger at me. turd. no use helping out some people.

post #7 of 7

9/1/06 at 11:59am

dman22
0
Here and not here
offline

Joined: 8/2004
Location: Griesheim, Germany
Posts: 18,175
Select All Posts By This User

I still think a computer should require a license.. I have a sister-in-law that had her cc# stolen, probably by a key stroke recorder.. she always complains about getting porn ad pop-ups, but won't tell her dad to stay the hell off the computer...

Start a New Thread

Subscribe Search This Thread

So I just got a Lenovo Yoga 13. This is my review. As what I primarily do is writing and programming, having a good keyboard is critical for me, which is why a tablet alone can’t work for me, and...

I have owned dozens of laptops in a variety of brands, and had many different laptops provided for my use at work. Without question, this is the finest I have owned. The Alienware M17x R2 is a...

N/m

Lenovo Thinkpad W530 Review by Djembe One of the longest and most enduring brands in computers is Thinkpad. Originally developed by IBM in the USA, Thinkpad notebook computers are now...

I have this memory installed in my Inspiron 14R. 6gb (one 2gb & one 4gb). Great performance! I highly recommend Kingston.

Recent Reviews

explot virus, Hijack this! report

Recent Discussions

Recent Reviews

New Articles