TheTechGuide Forum
General Category => Tech Clinic => Topic started by: ho11owman on July 29, 2007, 03:17:03 AM
-
Hey, i just need a little help here. I can't search any files or folders on my computer i get an error that says: (A file that is required to run Search Companion cannot be found. You may need to run setup.) And i also have my log report from SpyBot, so if anybody can take a look and help me out in any way possible i would appreciate it thanx.--- Search result list ---Microsoft.WindowsSecurityCenter.AntiVirusDisableNotify: Settings (Registry change, nothing done) HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\AntiVirusDisableNotify!=dword:0Microsoft.WindowsSecurityCenter.FirewallDisableNotify: Settings (Registry change, nothing done) HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\FirewallDisableNotify!=dword:0Cookie: Cookie (117) (Cookie, nothing done) Cache: Cache (5722) (Cache, nothing done) --- Spybot - Search & Destroy version: 1.4 (build: 20050523) ---2005-05-31 blindman.exe (1.0.0.1)2005-05-31 SpybotSD.exe (1.4.0.3)2005-05-31 TeaTimer.exe (1.4.0.2)2007-03-26 unins000.exe (51.41.0.0)2005-05-31 Update.exe (1.4.0.0)2007-05-23 advcheck.dll (1.5.3.0)2005-05-31 aports.dll (2.1.0.0)2005-05-31 borlndmm.dll (7.0.4.453)2005-05-31 delphimm.dll (7.0.4.453)2005-05-31 SDHelper.dll (1.4.0.0)2006-02-20 Tools.dll (2.0.0.2)2005-05-31 UnzDll.dll (1.73.1.1)2005-05-31 ZipDll.dll (1.73.2.0)2007-07-25 Includes\Cookies.sbi (*)2007-07-25 Includes\Dialer.sbi (*)2007-07-25 Includes\DialerC.sbi (*)2007-07-11 Includes\Hijackers.sbi (*)2007-07-25 Includes\HijackersC.sbi (*)2007-07-25 Includes\Keyloggers.sbi (*)2007-07-25 Includes\KeyloggersC.sbi (*)2004-11-29 Includes\LSP.sbi (*)2007-07-25 Includes\Malware.sbi (*)2007-07-25 Includes\MalwareC.sbi (*)2007-07-11 Includes\PUPS.sbi (*)2007-07-25 Includes\PUPSC.sbi (*)2007-07-25 Includes\Revision.sbi (*)2007-05-30 Includes\Security.sbi (*)2007-07-25 Includes\SecurityC.sbi (*)2007-07-11 Includes\Spybots.sbi (*)2007-07-25 Includes\SpybotsC.sbi (*)2005-02-17 Includes\Tracks.uti2007-07-25 Includes\Trojans.sbi (*)2007-07-25 Includes\TrojansC.sbi (*)2007-06-06 Plugins\TCPIPAddress.dll --- System information ---Windows XP (Build: 2600) Service Pack 2 / .NETFramework / 1.1: Microsoft .NET Framework 1.1 Hotfix (KB928366) / .NETFramework / 1.1: Microsoft .NET Framework 1.1 Service Pack 1 (KB867460) / Microsoft .NET Framework 2.0: This Security Update is for Microsoft .NET Framework 2.0. \nIf you later install a more recent service pack, this Security Update will be uninstalled automatically. \nFor more information, visit http://support.microsoft.com/kb/917283 / Microsoft .NET Framework 2.0: This Security Update is for Microsoft .NET Framework 2.0. \nIf you later install a more recent service pack, this Security Update will be uninstalled automatically. \nFor more information, visit http://support.microsoft.com/kb/922770 / Microsoft .NET Framework 2.0: This Security Update is for Microsoft .NET Framework 2.0. \nIf you later install a more recent service pack, this Security Update will be uninstalled automatically. \nFor more information, visit http://support.microsoft.com/kb/928365 / Windows / SP1: Microsoft Internationalized Domain Names Mitigation APIs / Windows / SP1: Microsoft National Language Support Downlevel APIs / Windows Media Format 11 SDK: Hotfix for Windows Media Format 11 SDK (KB929399) / Windows Media Player 10: Security Update for Windows Media Player 10 (KB911565) / Windows Media Player 6.4: Security Update for Windows Media Player 6.4 (KB925398) / Windows XP / SP0: Security Update for Windows Internet Explorer 7 (KB928090) / Windows XP / SP0: Security Update for Windows Internet Explorer 7 (KB929969) / Windows XP / SP0: Security Update for Windows Internet Explorer 7 (KB933566) / Windows XP / SP10: Microsoft Compression Client Pack 1.0 for Windows XP / Windows XP / SP3: Windows XP Hotfix - KB873339 / Windows XP / SP3: Windows XP Hotfix - KB885250 / Windows XP / SP3: Windows XP Hotfix - KB885835 / Windows XP / SP3: Windows XP Hotfix - KB885836 / Windows XP / SP3: Windows XP Hotfix - KB886185 / Windows XP / SP3: Windows XP Hotfix - KB887472 / Windows XP / SP3: Windows XP Hotfix - KB887742 / Windows XP / SP3: Windows XP Hotfix - KB888113 / Windows XP / SP3: Windows XP Hotfix - KB888302 / Windows XP / SP3: Security Update for Windows XP (KB890046) / Windows XP / SP3: Windows XP Hotfix - KB890859 / Windows XP / SP3: Windows XP Hotfix - KB891781 / Windows XP / SP3: Security Update for Windows XP (KB893756) / Windows XP / SP3: Windows Installer 3.1 (KB893803) / Windows XP / SP3: Update for Windows XP (KB894391) / Windows XP / SP3: Hotfix for Windows XP (KB896344) / Windows XP / SP3: Security Update for Windows XP (KB896358) / Windows XP / SP3: Security Update for Windows XP (KB896422) / Windows XP / SP3: Security Update for Windows XP (KB896423) / Windows XP / SP3: Security Update for Windows XP (KB896424) / Windows XP / SP3: Security Update for Windows XP (KB896428) / Windows XP / SP3: Update for Windows XP (KB898461) / Windows XP / SP3: Security Update for Windows XP (KB899587) / Windows XP / SP3: Security Update for Windows XP (KB899589) / Windows XP / SP3: Security Update for Windows XP (KB899591) / Windows XP / SP3: Update for Windows XP (KB900485) / Windows XP / SP3: Security Update for Windows XP (KB900725) / Windows XP / SP3: Update for Windows XP (KB900930) / Windows XP / SP3: Security Update for Windows XP (KB901017) / Windows XP / SP3: Security Update for Windows XP (KB901214) / Windows XP / SP3: Security Update for Windows XP (KB902400) / Windows XP / SP3: Security Update for Windows XP (KB904706) / Windows XP / SP3: Update for Windows XP (KB904942) / Windows XP / SP3: Security Update for Windows XP (KB905414) / Windows XP / SP3: Security Update for Windows XP (KB905749) / Windows XP / SP3: Security Update for Windows XP (KB908519) / Windows XP / SP3: Update for Windows XP (KB908531) / Windows XP / SP3: Hotfix for Windows XP (KB909394) / Windows XP / SP3: Update for Windows XP (KB910437) / Windows XP / SP3: Update for Windows XP (KB911280) / Windows XP / SP3: Security Update for Windows XP (KB911562) / Windows XP / SP3: Security Update for Windows XP (KB911567) / Windows XP / SP3: Security Update for Windows XP (KB911927) / Windows XP / SP3: Security Update for Windows XP (KB912812) / Windows XP / SP3: Security Update for Windows XP (KB912919) / Windows XP / SP3: Security Update for Windows XP (KB913446) / Windows XP / SP3: Security Update for Windows XP (KB913580) / Windows XP / SP3: Security Update for Windows XP (KB914388) / Windows XP / SP3: Security Update for Windows XP (KB914389) / Windows XP / SP3: Hotfix for Windows XP (KB914440) / Windows XP / SP3: Hotfix for Windows XP (KB915865) / Windows XP / SP3: Update for Windows XP (KB916595) / Windows XP / SP3: Security Update for Windows XP (KB917344) / Windows XP / SP3: Security Update for Windows XP (KB917422) / Windows XP / SP3: Security Update for Windows XP (KB917953) / Windows XP / SP3: Security Update for Windows XP (KB918118) / Windows XP / SP3: Security Update for Windows XP (KB918439) / Windows XP / SP3: Security Update for Windows XP (KB919007) / Windows XP / SP3: Security Update for Windows XP (KB920213) / Windows XP / SP3: Update for Windows XP (KB920342) / Windows XP / SP3: Security Update for Windows XP (KB920670) / Windows XP / SP3: Security Update for Windows XP (KB920683) / Windows XP / SP3: Security Update for Windows XP (KB920685) / Windows XP / SP3: Update for Windows XP (KB920872) / Windows XP / SP3: Update for Windows XP (KB922582) / Windows XP / SP3: Security Update for Windows XP (KB922819) / Windows XP / SP3: Security Update for Windows XP (KB923191) / Windows XP / SP3: Security Update for Windows XP (KB923414) / Windows XP / SP3: Security Update for Windows XP (KB923694) / Windows XP / SP3: Security Update for Windows XP (KB923980) / Windows XP / SP3: Security Update for Windows XP (KB924191) / Windows XP / SP3: Security Update for Windows XP (KB924270) / Windows XP / SP3: Security Update for Windows XP (KB924496) / Windows XP / SP3: Security Update for Windows XP (KB924667) / Windows XP / SP3: Security Update for Windows XP (KB925902) / Windows XP / SP3: Hotfix for Windows XP (KB926239) / Windows XP / SP3: Security Update for Windows XP (KB926255) / Windows XP / SP3: Security Update for Windows XP (KB926436) / Windows XP / SP3: Security Update for Windows XP (KB927779) / Windows XP / SP3: Security Update for Windows XP (KB927802) / Windows XP / SP3: Update for Windows XP (KB927891) / Windows XP / SP3: Security Update for Windows XP (KB928090) / Windows XP / SP3: Security Update for Windows XP (KB928255) / Windows XP / SP3: Security Update for Windows XP (KB928843) / Windows XP / SP3: Security Update for Windows XP (KB929123) / Windows XP / SP3: Update for Windows XP (KB929338) / Windows XP / SP3: Security Update for Windows XP (KB929969) / Windows XP / SP3: Security Update for Windows XP (KB930178) / Windows XP / SP3: Update for Windows XP (KB930916) / Windows XP / SP3: Security Update for Windows XP (KB931261) / Windows XP / SP3: Security Update for Windows XP (KB931784) / Windows XP / SP3: Update for Windows XP (KB931836) / Windows XP / SP3: Security Update for Windows XP (KB932168) / Windows XP / SP3: Security Update for Windows XP (KB935839) / Windows XP / SP3: Security Update for Windows XP (KB935840) / Windows XP / SP3: Update for Windows XP (KB936357)--- Startup entries list ---Located: HK_LM:Run, Adobe Photo Downloadercommand: "C:\Program Files\Adobe\Photoshop Album Starter Edition\3.0\Apps\apdproxy.exe" file: Located: HK_LM:Run, AOLDialercommand: C:\Program Files\Common Files\AOL\ACS\AOLDial.exe file: C:\Program Files\Common Files\AOL\ACS\AOLDial.exe size: 496752 MD5: c470f57fb6c4b4df32d694ce0fd2b387Located: HK_LM:Run, ccAppcommand: "C:\Program Files\Common Files\Symantec Shared\ccApp.exe" file: C:\Program Files\Common Files\Symantec Shared\ccApp.exe size: 48752 MD5: c9ab8ab4576efd3b26a2d108b7f6ac01Located: HK_LM:Run, igfxhkcmdcommand: C:\WINDOWS\system32\hkcmd.exe file: C:\WINDOWS\system32\hkcmd.exe size: 77824 MD5: 82adc58b63e069ac4641a33ea9841e54Located: HK_LM:Run, igfxperscommand: C:\WINDOWS\system32\igfxpers.exe file: C:\WINDOWS\system32\igfxpers.exe size: 114688 MD5: a0e2ffb7b0fce82aa3bcc3105306c45cLocated: HK_LM:Run, igfxtraycommand: C:\WINDOWS\system32\igfxtray.exe file: C:\WINDOWS\system32\igfxtray.exe size: 94208 MD5: 5656d65a9a9f1e3d68d64a350cff1732Located: HK_LM:Run, KernelFaultCheckcommand: %systemroot%\system32\dumprep 0 -k file: C:\WINDOWS\system32\dumprep.exe size: 10752 MD5: 13922eb54890c77005268882629a31feLocated: HK_LM:Run, MBkLogOnHookcommand: C:\Program Files\McAfee\MBK\LogOnHook.exe file: C:\Program Files\McAfee\MBK\LogOnHook.exe size: 20480 MD5: ad32fdd7e1c04631da81b68f7072d29eLocated: HK_LM:Run, NeroFilterCheckcommand: C:\WINDOWS\system32\NeroCheck.exe file: C:\WINDOWS\system32\NeroCheck.exe size: 155648 MD5: 3e4c03cefad8de135263236b61a49c90Located: HK_LM:Run, PCTVOICEcommand: pctspk.exe file: C:\WINDOWS\system32\pctspk.exe size: 180224 MD5: d8e0d454f2bfe3449f211746decdbb3bLocated: HK_LM:Run, Pure Networks Port Magiccommand: "C:\PROGRA~1\PURENE~1\PORTMA~1\PortEmail Removedexe" -Run file: C:\PROGRA~1\PURENE~1\PORTMA~1\PortEmail Removedexe size: 99480 MD5: ba99c608a075c44026720d5383f3d75bLocated: HK_LM:Run, PV92TRAYcommand: PV92Tray.exe file: C:\WINDOWS\system32\PV92Tray.exe size: 135168 MD5: 3a759569a2b077c001da6d9c4c98a278Located: HK_LM:Run, QuickTime Taskcommand: "C:\Program Files\QuickTime\qttask.exe" -atboottime file: C:\Program Files\QuickTime\qttask.exe size: 98304 MD5: c341ccfbe98bc7df6e0b856bb9fc265aLocated: HK_LM:Run, RealTraycommand: C:\Program Files\Real\RealPlayer\RealPlay.exe SYSTEMBOOTHIDEPLAYER file: Located: HK_LM:Run, RemoteControlcommand: "C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe" file: C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe size: 32768 MD5: 8fb740d758b14b1bc950cc347c21e461Located: HK_LM:Run, SoundMAXPnPcommand: C:\Program Files\Analog Devices\Core\smax4pnp.exe file: C:\Program Files\Analog Devices\Core\smax4pnp.exe size: 1404928 MD5: 10247c15d999cc116c87da36bd0ad64dLocated: HK_LM:Run, SunJavaUpdateSchedcommand: "C:\Program Files\Java\jre1.6.0_02\bin\jusched.exe" file: C:\Program Files\Java\jre1.6.0_02\bin\jusched.exe size: 132496 MD5: 896e712a34d654a337c8cbb9deb07200Located: HK_LM:Run, vptraycommand: C:\PROGRA~1\SYMANT~1\VPTray.exe file: C:\PROGRA~1\SYMANT~1\VPTray.exe size: 85744 MD5: 0c66a89163a726b6da0548d65e990363Located: HK_CU:Run, Aim6command: file: Located: HK_CU:Run, ctfmon.execommand: C:\WINDOWS\system32\ctfmon.exe file: C:\WINDOWS\system32\ctfmon.exe size: 15360 MD5: 24232996a38c0b0cf151c2140ae29fc8Located: HK_CU:Run, H/PC Connection Agentcommand: "C:\Program Files\Microsoft ActiveSync\wcescomm.exe" file: C:\Program Files\Microsoft ActiveSync\wcescomm.exe size: 1200128 MD5: 0d667f8b21d7975c663f35d7af3c9bdbLocated: HK_CU:Run, MySpaceIMcommand: C:\Program Files\MySpace\IM\MySpaceIM.exe file: C:\Program Files\MySpace\IM\MySpaceIM.exe size: 5419008 MD5: 374d9c048fbe5a00577405b32c5c144bLocated: Startup (common), Adobe Reader Speed Launch.lnkcommand: C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe file: C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe size: 29696 MD5: 43362b96870ce8649f4f2ec893da93f0Located: Startup (common), America Online 9.0 Tray Icon.lnkcommand: C:\Program Files\America Online 9.0a\aoltray.exe file: C:\Program Files\America Online 9.0a\aoltray.exe size: 156784 MD5: d3e103e5b79a6e8ba5b58e0a7c21523bLocated: System.ini, crypt32chaincommand: crypt32.dll file: crypt32.dllLocated: System.ini, cryptnetcommand: cryptnet.dll file: cryptnet.dllLocated: System.ini, cscdllcommand: cscdll.dll file: cscdll.dllLocated: System.ini, NavLogoncommand: C:\WINDOWS\system32\NavLogon.dll file: C:\WINDOWS\system32\NavLogon.dll size: 43760 MD5: 8ed534344e621eeafb3d812a16628d28Located: System.ini, ScCertPropcommand: wlnotify.dll file: wlnotify.dllLocated: System.ini, Schedulecommand: wlnotify.dll file: wlnotify.dllLocated: System.ini, sclgntfycommand: sclgntfy.dll file: sclgntfy.dllLocated: System.ini, SensLogncommand: WlNotify.dll file: WlNotify.dllLocated: System.ini, termsrvcommand: wlnotify.dll file: wlnotify.dllLocated: System.ini, WgaLogoncommand: WgaLogon.dll file: WgaLogon.dllLocated: System.ini, wlballooncommand: wlnotify.dll file: wlnotify.dll --- Browser helper object list ---{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} (Adobe PDF Reader Link Helper) BHO name: CLSID name: Adobe PDF Reader Link Helper description: Adobe Acrobat reader classification: Legitimate known filename: AcroIEhelper.ocx<br>AcroIEhelper.dll info link: http://www.adobe.com/products/acrobat/readstep2.html info source: TonyKlein Path: C:\Program Files\Adobe\Acrobat 7.0\ActiveX\ Long name: AcroIEHelper.dll Short name: ACROIE~1.DLL Date (created): 12/18/2006 4:16:42 AMDate (last access): 7/29/2007 1:24:36 AM Date (last write): 12/18/2006 4:16:42 AM Filesize: 59032 Attributes: archive MD5: 4EA3A6CD9D20584FFAFDB1E47DBF0E20 CRC32: 7B0A854F Version: 7.0.9.50{53707962-6F74-2D53-2644-206D7942484F} () BHO name: CLSID name: description: Spybot-S&D IE Browser plugin classification: Legitimate known filename: SDhelper.dll info link: http://spybot.eon.net.au/ info source: Patrick M. Kolla Path: C:\PROGRA~1\SPYBOT~1\ Long name: SDHelper.dll Short name: Date (created): 3/26/2007 10:15:06 AMDate (last access): 7/29/2007 1:26:00 AM Date (last write): 5/31/2005 1:04:00 AM Filesize: 853672 Attributes: archive MD5: 250D787A5712D7768DDC133B3E477759 CRC32: D4589A41 Version: 1.4.0.0{761497BB-D6F0-462C-B6EB-D4DAF1D92D43} (SSVHelper Class) BHO name: CLSID name: SSVHelper Class Path: C:\Program Files\Java\jre1.6.0_02\bin\ Long name: ssv.dll Short name: Date (created): 7/15/2007 6:03:08 PMDate (last access): 7/29/2007 1:29:02 AM Date (last write): 7/12/2007 4:00:36 AM Filesize: 501136 Attributes: archive MD5: D6137540BDF0F9F9B9055C60ADD8007A CRC32: 29E910AF Version: 6.0.20.6{7DB2D5A0-7241-4E79-B68D-6309F01C5231} (scriptproxy) BHO name: scriptproxy CLSID name: scriptproxy Path: c:\program files\mcafee\virusscan\ Long name: scriptcl.dll Short name: Date (created): 7/20/2007 5:21:26 PMDate (last access): 7/29/2007 1:26:00 AM Date (last write): 12/22/2006 4:02:40 PM Filesize: 67136 Attributes: archive MD5: 196CCD7A9076A9D937EF39ED52332688 CRC32: C3E8AA9F Version: 13.3.2.101{F97DA966-F09D-4cab-BF29-75A0026986EA} (XBTP02634 Class) BHO name: CLSID name: XBTP02634 Class Path: C:\PROGRA~1\BEARSH~1\BEARSH~2\ Long name: MediaBar.dll Short name: Date (created): 11/12/2006 3:40:30 AMDate (last access): 7/29/2007 1:26:00 AM Date (last write): 11/12/2006 3:40:30 AM Filesize: 558776 Attributes: archive MD5: C7427ECF95B30FCC878EE44CE0505C27 CRC32: 5813BB11 Version: 1.0.0.4 --- ActiveX list ---{05CA9FB0-3E3E-4B36-BF41-0E3A5CAA8CD8} (Office Genuine Advantage Validation Tool) DPF name: CLSID name: Office Genuine Advantage Validation Tool Installer: C:\WINDOWS\Downloaded Program Files\OGAControl.inf Codebase: http://download.microsoft.com/download/e/7.../OGAControl.cab Path: C:\WINDOWS\system32\ Long name: OGACheckControl.DLL Short name: OGACHE~1.DLL Date (created): 3/5/2007 1:34:28 PMDate (last access): 7/29/2007 2:16:34 AM Date (last write): 3/5/2007 1:34:28 PM Filesize: 676224 Attributes: archive MD5: B221B218126BC9409257F39837BAB90C CRC32: 60F920AA Version: 1.6.21.0{2BC66F54-93A8-11D3-BEB6-00105AA9B6AE} (Symantec AntiVirus scanner) DPF name: CLSID name: Symantec AntiVirus scanner Installer: C:\WINDOWS\Downloaded Program Files\avsniff.inf Codebase: http://security.symantec.com/sscv6/SharedC...bin/AvSniff.cab description: Symantec online scanner classification: Legitimate known filename: AVSNIFF.DLL info link: info source: Patrick M. Kolla Path: C:\WINDOWS\Downloaded Program Files\ Long name: avsniff.dll Short name: Date (created): 5/17/2006 2:32:30 PMDate (last access): 7/29/2007 2:10:38 AM Date (last write): 5/17/2006 2:32:30 PM Filesize: 231072 Attributes: archive MD5: A5E06A91CF82D97985C90B12FEE33A01 CRC32: 5AC66733 Version: 2006.2.22.58{6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) DPF name: CLSID name: WUWebControl Class Installer: C:\WINDOWS\Downloaded Program Files\wuweb.inf Codebase: http://update.microsoft.com/windowsupdate/...b?1148907721477 description: classification: Legitimate known filename: wuweb.dll info link: info source: Safer Networking Ltd. Path: C:\WINDOWS\system32\ Long name: wuweb.dll Short name: Date (created): 5/27/2006 10:25:22 AMDate (last access): 7/29/2007 2:18:34 AM Date (last write): 4/16/2007 10:45:36 PM Filesize: 203096 Attributes: archive MD5: 48C75751CD3D24BFA07EB1BB1D8A0401 CRC32: 2EB09032 Version: 7.0.6000.374{644E432F-49D3-41A1-8DD5-E099162EEEC5} (Symantec RuFSI Utility Class) DPF name: CLSID name: Symantec RuFSI Utility Class Installer: C:\WINDOWS\Downloaded Program Files\CabSA.inf Codebase: http://security.symantec.com/sscv6/SharedC...n/bin/cabsa.cab description: classification: Legitimate known filename: rufsi.dll info link: info source: Safer Networking Ltd. Path: C:\WINDOWS\Downloaded Program Files\ Long name: rufsi.dll Short name: Date (created): 5/17/2006 2:32:42 PMDate (last access): 7/29/2007 2:10:38 AM Date (last write): 5/17/2006 2:32:42 PM Filesize: 161480 Attributes: archive MD5: D9021B7C1D765851774FD9A753AEC435 CRC32: 6D65423F Version: 2006.2.15.43{6C6FE41A-0DA6-42A1-9AD8-792026B2B2A7} (FreeCell Control) DPF name: CLSID name: FreeCell Control Installer: C:\WINDOWS\Downloaded Program Files\freecell.inf Codebase: http://www.worldwinner.com/games/v41/freecell/freecell.cab description: classification: Open for discussion known filename: freecell.ocx info link: info source: Safer Networking Ltd. Path: C:\WINDOWS\DOWNLO~1\ Long name: freecell.ocx Short name: Date (created): 2/28/2007 4:47:28 PMDate (last access): 7/28/2007 12:10:32 AM Date (last write): 2/28/2007 4:47:28 PM Filesize: 386672 Attributes: archive MD5: F8C57C634AC4DE13328DB6B4CDC7774F CRC32: 5DCE2605 Version: 1.0.0.41{6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) DPF name: CLSID name: MUWebControl Class Installer: C:\WINDOWS\Downloaded Program Files\muweb.inf Codebase: http://www.update.microsoft.com/microsoftu...b?1183593149381 description: classification: Legitimate known filename: muweb.dll info link: info source: Safer Networking Ltd. Path: C:\WINDOWS\system32\ Long name: muweb.dll Short name: Date (created): 4/16/2007 10:43:40 PMDate (last access): 7/29/2007 2:18:32 AM Date (last write): 4/16/2007 10:43:40 PM Filesize: 208248 Attributes: archive MD5: D8DEB8FEE84F26F70DDB7F06DB035A91 CRC32: 188AD856 Version: 7.0.6000.374{8A94C905-FF9D-43B6-8708-F0F22D22B1CB} (Wwlaunch Control) DPF name: CLSID name: Wwlaunch Control Installer: C:\WINDOWS\Downloaded Program Files\wwlaunch.inf Codebase: http://www.worldwinner.com/games/shared/wwlaunch.cab description: classification: Legitimate known filename: wwlaunch.ocx info link: info source: Safer Networking Ltd. Path: C:\WINDOWS\DOWNLO~1\ Long name: wwlaunch.ocx Short name: Date (created): 2/5/2007 3:36:36 PMDate (last access): 7/28/2007 12:11:10 AM Date (last write): 2/5/2007 3:36:36 PM Filesize: 75368 Attributes: archive MD5: 70EEED55EE86A361A59FE7BA79785F0B CRC32: 6CC1EB20 Version: 1.0.0.17{8AD9C840-044E-11D1-B3E9-00805F499D93} (Java Runtime Environment 1.6.0) DPF name: Java Runtime Environment 1.6.0 CLSID name: Java Plug-in 1.6.0_02 Installer: Codebase: http://java.sun.com/update/1.6.0/jinstall-...indows-i586.cab description: Sun Java classification: Legitimate known filename: %PROGRAM FILES%\JabaSoft\JRE\*\Bin\npjava131.dll info link: info source: Patrick M. Kolla Path: C:\Program Files\Java\jre1.6.0_02\bin\ Long name: npjpi160_02.dll Short name: NPJPI1~1.DLL Date (created): 7/12/2007 2:22:38 AMDate (last access): 7/28/2007 1:05:50 AM Date (last write): 7/12/2007 4:00:36 AM Filesize: 132496 Attributes: archive MD5: E3811F1A1C5063C941EC0E2766C3EA39 CRC32: AEFD3747 Version: 6.0.20.6{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} (Java Runtime Environment 1.6.0) DPF name: Java Runtime Environment 1.6.0 CLSID name: Java Plug-in 1.6.0_02 Installer: Codebase: http://java.sun.com/update/1.6.0/jinstall-...indows-i586.cab description: classification: Legitimate known filename: npjpi150_06.dll info link: info source: Safer Networking Ltd. Path: C:\Program Files\Java\jre1.6.0_02\bin\ Long name: npjpi160_02.dll Short name: NPJPI1~1.DLL Date (created): 7/12/2007 2:22:38 AMDate (last access): 7/29/2007 2:24:24 AM Date (last write): 7/12/2007 4:00:36 AM Filesize: 132496 Attributes: archive MD5: E3811F1A1C5063C941EC0E2766C3EA39 CRC32: AEFD3747 Version: 6.0.20.6{D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) DPF name: CLSID name: Shockwave Flash Object Installer: C:\WINDOWS\Downloaded Program Files\swflash.inf Codebase: http://fpdownload.macromedia.com/get/shock...ash/swflash.cab description: Macromedia Shockwave Flash Player classification: Legitimate known filename: info link: info source: Patrick M. Kolla Path: C:\WINDOWS\system32\Macromed\Flash\ Long name: Flash9b.ocx Short name: Date (created): 11/9/2006 2:46:28 PMDate (last access): 7/29/2007 1:26:22 AM Date (last write): 11/9/2006 2:46:28 PM Filesize: 2262648 Attributes: readonly archive MD5: F3B3EE66CA76C94510555ABE9D00A353 CRC32: A51F3CB4 Version: 9.0.28.0{DF780F87-FF2B-4DF8-92D0-73DB16A1543A} (PopCapLoader Object) DPF name: CLSID name: PopCapLoader Object Installer: C:\WINDOWS\Downloaded Program Files\popcaploader.inf Codebase: http://aolsvc.Email Removed/onlinegames/bejewele...ploader_v10.cab description: classification: Legitimate known filename: POPCAPLOADER.DLL info link: info source: Safer Networking Ltd. Path: C:\WINDOWS\Downloaded Program Files\ Long name: popcaploader.dll Short name: POPCAP~1.DLL Date (created): 4/21/2005 9:59:06 AMDate (last access): 7/29/2007 1:27:48 AM Date (last write): 4/21/2005 9:59:06 AM Filesize: 131072 Attributes: archive MD5: FEE7BE331AF827DAF4DAF3407EB28647 CRC32: 449B85FF Version: 1.0.0.10 --- Process list ---PID: 0 ( 0) [System]PID: 596 ( 4) \SystemRoot\System32\smss.exePID: 644 ( 596) \??\C:\WINDOWS\system32\csrss.exePID: 668 ( 596) \??\C:\WINDOWS\system32\winlogon.exePID: 712 ( 668) C:\WINDOWS\system32\services.exe size: 108032 MD5: C6CE6EEC82F187615D1002BB3BB50ED4PID: 728 ( 668) C:\WINDOWS\system32\lsass.exe size: 13312 MD5: 84885F9B82F4D55C6146EBF6065D75D2PID: 896 ( 712) C:\WINDOWS\system32\svchost.exe size: 14336 MD5: 8F078AE4ED187AAABC0A305146DE6716PID: 940 ( 712) C:\WINDOWS\system32\svchost.exe size: 14336 MD5: 8F078AE4ED187AAABC0A305146DE6716PID: 1036 ( 712) C:\WINDOWS\System32\svchost.exe size: 14336 MD5: 8F078AE4ED187AAABC0A305146DE6716PID: 1068 ( 712) C:\WINDOWS\system32\svchost.exe size: 14336 MD5: 8F078AE4ED187AAABC0A305146DE6716PID: 1304 ( 712) C:\WINDOWS\system32\svchost.exe size: 14336 MD5: 8F078AE4ED187AAABC0A305146DE6716PID: 1424 ( 712) C:\WINDOWS\system32\svchost.exe size: 14336 MD5: 8F078AE4ED187AAABC0A305146DE6716PID: 1448 (1352) C:\WINDOWS\Explorer.EXE size: 1032192 MD5: A0732187050030AE399B241436565E64PID: 1588 ( 712) C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe size: 177776 MD5: C70B0215DE5CFC5681D536506EDB42DDPID: 1676 ( 712) C:\WINDOWS\system32\spoolsv.exe size: 57856 MD5: DA81EC57ACD4CDC3D4C51CF3D409AF9FPID: 1872 (1448) C:\Program Files\Analog Devices\Core\smax4pnp.exe size: 1404928 MD5: 10247C15D999CC116C87DA36BD0AD64DPID: 1912 (1448) C:\WINDOWS\system32\hkcmd.exe size: 77824 MD5: 82ADC58B63E069AC4641A33EA9841E54PID: 1920 (1448) C:\WINDOWS\system32\igfxpers.exe size: 114688 MD5: A0E2FFB7B0FCE82AA3BCC3105306C45CPID: 1928 (1448) C:\WINDOWS\system32\pctspk.exe size: 180224 MD5: D8E0D454F2BFE3449F211746DECDBB3BPID: 1952 (1448) C:\WINDOWS\system32\PV92Tray.exe size: 135168 MD5: 3A759569A2B077C001DA6D9C4C98A278PID: 1960 (1448) C:\Program Files\Common Files\Symantec Shared\ccApp.exe size: 48752 MD5: C9AB8AB4576EFD3B26A2D108B7F6AC01PID: 1968 (1448) C:\PROGRA~1\SYMANT~1\VPTray.exe size: 85744 MD5: 0C66A89163A726B6DA0548D65E990363PID: 1976 (1448) C:\Program Files\Java\jre1.6.0_02\bin\jusched.exe size: 132496 MD5: 896E712A34D654A337C8CBB9DEB07200PID: 2008 (1448) C:\Program Files\Common Files\AOL\ACS\AOLDial.exe size: 496752 MD5: C470F57FB6C4B4DF32D694CE0FD2B387PID: 336 (1448) C:\Program Files\Microsoft ActiveSync\wcescomm.exe size: 1200128 MD5: 0D667F8B21D7975C663F35D7AF3C9BDBPID: 432 (1448) C:\WINDOWS\system32\ctfmon.exe size: 15360 MD5: 24232996A38C0B0CF151C2140AE29FC8PID: 576 ( 896) C:\PROGRA~1\MICROS~3\rapimgr.exe size: 180224 MD5: 3649EA61AAC1C48B7D282CB61421C15APID: 1460 ( 712) C:\PROGRA~1\COMMON~1\AOL\ACS\AOLacsd.exe size: 1135728 MD5: 8FA646F0E639D9A8C8B98E217D471DC0PID: 1484 ( 712) C:\Program Files\Symantec AntiVirus\DefWatch.exe size: 20208 MD5: 1BCFDAFF0E5CA8EFA32295C94BC864E9PID: 1620 ( 712) C:\WINDOWS\System32\svchost.exe size: 14336 MD5: 8F078AE4ED187AAABC0A305146DE6716PID: 1172 ( 712) C:\Program Files\Common Files\LightScribe\LSSrvc.exe size: 53248 MD5: 575ED0F5DCB34E5C243D2A7EBC860484PID: 1836 ( 712) C:\Program Files\McAfee\MBK\MBackMonitor.exe size: 71208 MD5: 2C2806AB6D469E92D983CAC2D9F25A21PID: 2388 ( 712) C:\Program Files\Common Files\McAfee\HackerWatch\HWAPI.exe size: 540776 MD5: 38BCCF016B694A745E1CDBC0B080A59CPID: 2432 ( 712) C:\PROGRA~1\McAfee\MSC\mcmscsvc.exe size: 361560 MD5: BB8A45E65BE310996A201F8A75646A8DPID: 2480 ( 712) c:\program files\common files\mcafee\mna\mcnasvc.exe size: 2213416 MD5: 39621D46D16AF1FCF6063BCED5CA60FCPID: 2540 ( 712) C:\PROGRA~1\McAfee\VIRUSS~1\mcods.exe size: 362064 MD5: D984FAF698966AA360C1702EF623C3F9PID: 2572 ( 712) C:\PROGRA~1\McAfee\MSC\mcpromgr.exe size: 493144 MD5: 14313FF5203DF7CB53E8D2F18F59D4D2PID: 2628 ( 712) c:\PROGRA~1\COMMON~1\mcafee\mcproxy\mcproxy.exe size: 353368 MD5: 7BC413411A8A0E58ECB6868FFC2180D9PID: 2680 ( 712) c:\PROGRA~1\COMMON~1\mcafee\redirsvc\redirsvc.exe size: 256096 MD5: DAF486036F2F6EE9DBA390D3CF2E5C29PID: 2708 ( 712) C:\PROGRA~1\McAfee\VIRUSS~1\mcshield.exe size: 144960 MD5: B74CEBEF7F2126F68CDC060C855E5AABPID: 2860 ( 712) C:\PROGRA~1\McAfee\VIRUSS~1\mcsysmon.exe size: 643664 MD5: 9770A8706BBA3C4CBEA998D2A6BF2D08PID: 2996 ( 712) C:\Program Files\McAfee\MPF\MPFSrv.exe size: 841256 MD5: 1CAD000C45ED402F9C61F90CF8D208C2PID: 3040 ( 712) C:\PROGRA~1\McAfee\MPS\mps.exe size: 906792 MD5: A59C48001BF02AD6306019D1C4F58050PID: 3196 ( 712) C:\Program Files\Symantec AntiVirus\Rtvscan.exe size: 1756912 MD5: 85ECC034B4DEC0B3640C2D72509C03BEPID: 3884 ( 896) C:\Program Files\McAfee\MPS\mpsevh.exe size: 304680 MD5: 6510D5303CC0D1CF1908B8BD21063420PID: 2940 ( 712) C:\WINDOWS\System32\alg.exe size: 44544 MD5: F1958FBF86D5C004CF19A5951A9514B7PID: 2724 ( 896) C:\WINDOWS\system32\wbem\wmiprvse.exe size: 218112 MD5: 075EA6C849AB0FE416A3D6DD65C3CF41PID: 1756 ( 896) c:\PROGRA~1\mcafee.com\agent\mcagent.exe size: 566872 MD5: 4C4F3DE9CF6E0F8B7A4AE639FF981BFFPID: 1864 (1448) C:\Program Files\Spybot - Search & Destroy\SpybotSD.exe size: 4393096 MD5: 09CA174A605B480318731E691DC98539PID: 4 ( 0) System--- Browser start & search pages list ---Spybot - Search & Destroy browser pages report, 7/29/2007 2:24:24 AMHKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\Local Page C:\WINDOWS\system32\blank.htmHKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\Search Page http://search.bearshare.com/sidebar.html?src=ssbHKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\Search Bar http://search.bearshare.com/sidebar.html?src=ssbHKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\Start Page http://google.com/HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\Default_Page_URL http://www.optonline.netHKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\SearchAssistant http://search.bearshare.com/sidebar.html?src=ssbHKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchUrl\@ http://www.google.com/keyword/%sHKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\Local Page %SystemRoot%\system32\blank.htmHKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\Search Page http://go.microsoft.com/fwlink/?LinkId=54896HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\Start Page http://go.microsoft.com/fwlink/?LinkId=69157HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\Default_Page_URL http://go.microsoft.com/fwlink/?LinkId=69157HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\Default_Search_URL http://go.microsoft.com/fwlink/?LinkId=54896HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\First Home Page C:\Program Files\AOL Toolbar\welcome.htmlHKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Search\SearchAssistant http://search.bearshare.com/sidebar.html?src=ssbHKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Search\CustomizeSearch http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchcust.htm--- Winsock Layered Service Provider list ---Protocol 0: MSAFD Tcpip [TCP/IP] GUID: {E70F1AA0-AB8B-11CF-8CA3-00805F48A192} Filename: %SystemRoot%\system32\mswsock.dll Description: Microsoft Windows NT/2k/XP IP protocol DB filename: %SystemRoot%\system32\mswsock.dll DB protocol: MSAFD Tcpip
- Protocol 1: MSAFD Tcpip [UDP/IP] GUID: {E70F1AA0-AB8B-11CF-8CA3-00805F48A192} Filename: %SystemRoot%\system32\mswsock.dll Description: Microsoft Windows NT/2k/XP IP protocol DB filename: %SystemRoot%\system32\mswsock.dll DB protocol: MSAFD Tcpip
- Protocol 2: MSAFD Tcpip [RAW/IP] GUID: {E70F1AA0-AB8B-11CF-8CA3-00805F48A192} Filename: %SystemRoot%\system32\mswsock.dll Description: Microsoft Windows NT/2k/XP IP protocol DB filename: %SystemRoot%\system32\mswsock.dll DB protocol: MSAFD Tcpip
- Protocol 3: RSVP UDP Service Provider GUID: {9D60A9E0-337A-11D0-BD88-0000C082E69A} Filename: %SystemRoot%\system32\rsvpsp.dll Description: Microsoft Windows NT/2k/XP RVSP DB filename: %SystemRoot%\system32\rsvpsp.dll DB protocol: RSVP * Service ProviderProtocol 4: RSVP TCP Service Provider GUID: {9D60A9E0-337A-11D0-BD88-0000C082E69A} Filename: %SystemRoot%\system32\rsvpsp.dll Description: Microsoft Windows NT/2k/XP RVSP DB filename: %SystemRoot%\system32\rsvpsp.dll DB protocol: RSVP * Service ProviderProtocol 5: MSAFD NetBIOS [\Device\NetBT_Tcpip_{2AB281AD-9D1F-4D06-A266-C4719EBCD751}] SEQPACKET 4 GUID: {8D5F1830-C273-11CF-95C8-00805F48A192} Filename: %SystemRoot%\system32\mswsock.dll Description: Microsoft Windows NT/2k/XP NetBios protocol DB filename: %SystemRoot%\system32\mswsock.dll DB protocol: MSAFD NetBIOS *Protocol 6: MSAFD NetBIOS [\Device\NetBT_Tcpip_{2AB281AD-9D1F-4D06-A266-C4719EBCD751}] DATAGRAM 4 GUID: {8D5F1830-C273-11CF-95C8-00805F48A192} Filename: %SystemRoot%\system32\mswsock.dll Description: Microsoft Windows NT/2k/XP NetBios protocol DB filename: %SystemRoot%\system32\mswsock.dll DB protocol: MSAFD NetBIOS *Protocol 7: MSAFD NetBIOS [\Device\NetBT_Tcpip_{D7ABFC48-0EEE-4D64-97CD-8C87963C5172}] SEQPACKET 3 GUID: {8D5F1830-C273-11CF-95C8-00805F48A192} Filename: %SystemRoot%\system32\mswsock.dll Description: Microsoft Windows NT/2k/XP NetBios protocol DB filename: %SystemRoot%\system32\mswsock.dll DB protocol: MSAFD NetBIOS *Protocol 8: MSAFD NetBIOS [\Device\NetBT_Tcpip_{D7ABFC48-0EEE-4D64-97CD-8C87963C5172}] DATAGRAM 3 GUID: {8D5F1830-C273-11CF-95C8-00805F48A192} Filename: %SystemRoot%\system32\mswsock.dll Description: Microsoft Windows NT/2k/XP NetBios protocol DB filename: %SystemRoot%\system32\mswsock.dll DB protocol: MSAFD NetBIOS *Protocol 9: MSAFD NetBIOS [\Device\NetBT_Tcpip_{95695DB4-581A-4A06-9C56-E20873E39490}] SEQPACKET 0 GUID: {8D5F1830-C273-11CF-95C8-00805F48A192} Filename: %SystemRoot%\system32\mswsock.dll Description: Microsoft Windows NT/2k/XP NetBios protocol DB filename: %SystemRoot%\system32\mswsock.dll DB protocol: MSAFD NetBIOS *Protocol 10: MSAFD NetBIOS [\Device\NetBT_Tcpip_{95695DB4-581A-4A06-9C56-E20873E39490}] DATAGRAM 0 GUID: {8D5F1830-C273-11CF-95C8-00805F48A192} Filename: %SystemRoot%\system32\mswsock.dll Description: Microsoft Windows NT/2k/XP NetBios protocol DB filename: %SystemRoot%\system32\mswsock.dll DB protocol: MSAFD NetBIOS *Protocol 11: MSAFD NetBIOS [\Device\NetBT_Tcpip_{66D721A3-B01B-4F1B-8B96-5E7FF6790F80}] SEQPACKET 1 GUID: {8D5F1830-C273-11CF-95C8-00805F48A192} Filename: %SystemRoot%\system32\mswsock.dll Description: Microsoft Windows NT/2k/XP NetBios protocol DB filename: %SystemRoot%\system32\mswsock.dll DB protocol: MSAFD NetBIOS *Protocol 12: MSAFD NetBIOS [\Device\NetBT_Tcpip_{66D721A3-B01B-4F1B-8B96-5E7FF6790F80}] DATAGRAM 1 GUID: {8D5F1830-C273-11CF-95C8-00805F48A192} Filename: %SystemRoot%\system32\mswsock.dll Description: Microsoft Windows NT/2k/XP NetBios protocol DB filename: %SystemRoot%\system32\mswsock.dll DB protocol: MSAFD NetBIOS *Protocol 13: MSAFD NetBIOS [\Device\NetBT_Tcpip_{E372382C-4B4C-43A8-88A7-EBA6E30DD086}] SEQPACKET 2 GUID: {8D5F1830-C273-11CF-95C8-00805F48A192} Filename: %SystemRoot%\system32\mswsock.dll Description: Microsoft Windows NT/2k/XP NetBios protocol DB filename: %SystemRoot%\system32\mswsock.dll DB protocol: MSAFD NetBIOS *Protocol 14: MSAFD NetBIOS [\Device\NetBT_Tcpip_{E372382C-4B4C-43A8-88A7-EBA6E30DD086}] DATAGRAM 2 GUID: {8D5F1830-C273-11CF-95C8-00805F48A192} Filename: %SystemRoot%\system32\mswsock.dll Description: Microsoft Windows NT/2k/XP NetBios protocol DB filename: %SystemRoot%\system32\mswsock.dll DB protocol: MSAFD NetBIOS *Protocol 15: MSAFD NetBIOS [\Device\NetBT_Tcpip_{6183E175-3AD7-4A2B-A86D-45F67446EBDA}] SEQPACKET 5 GUID: {8D5F1830-C273-11CF-95C8-00805F48A192} Filename: %SystemRoot%\system32\mswsock.dll Description: Microsoft Windows NT/2k/XP NetBios protocol DB filename: %SystemRoot%\system32\mswsock.dll DB protocol: MSAFD NetBIOS *Protocol 16: MSAFD NetBIOS [\Device\NetBT_Tcpip_{6183E175-3AD7-4A2B-A86D-45F67446EBDA}] DATAGRAM 5 GUID: {8D5F1830-C273-11CF-95C8-00805F48A192} Filename: %SystemRoot%\system32\mswsock.dll Description: Microsoft Windows NT/2k/XP NetBios protocol DB filename: %SystemRoot%\system32\mswsock.dll DB protocol: MSAFD NetBIOS *Protocol 17: MSAFD NetBIOS [\Device\NetBT_Tcpip_{5565AF82-AAA4-4E8F-8198-CB21F33C484C}] SEQPACKET 6 GUID: {8D5F1830-C273-11CF-95C8-00805F48A192} Filename: %SystemRoot%\system32\mswsock.dll Description: Microsoft Windows NT/2k/XP NetBios protocol DB filename: %SystemRoot%\system32\mswsock.dll DB protocol: MSAFD NetBIOS *Protocol 18: MSAFD NetBIOS [\Device\NetBT_Tcpip_{5565AF82-AAA4-4E8F-8198-CB21F33C484C}] DATAGRAM 6 GUID: {8D5F1830-C273-11CF-95C8-00805F48A192} Filename: %SystemRoot%\system32\mswsock.dll Description: Microsoft Windows NT/2k/XP NetBios protocol DB filename: %SystemRoot%\system32\mswsock.dll DB protocol: MSAFD NetBIOS *Namespace Provider 0: Tcpip GUID: {22059D40-7E9E-11CF-AE5A-00AA00A7112B} Filename: %SystemRoot%\System32\mswsock.dll Description: Microsoft Windows NT/2k/XP TCP/IP name space provider DB filename: %SystemRoot%\system32\mswsock.dll DB protocol: TCP/IPNamespace Provider 1: NTDS GUID: {3B2637EE-E580-11CF-A555-00C04FD8D4AC} Filename: %SystemRoot%\System32\winrnr.dll Description: Microsoft Windows NT/2k/XP name space provider DB filename: %SystemRoot%\system32\winrnr.dll DB protocol: NTDSNamespace Provider 2: Network Location Awareness (NLA) Namespace GUID: {6642243A-3BA8-4AA6-BAA5-2E0BD71FDD83} Filename: %SystemRoot%\System32\mswsock.dll Description: Microsoft Windows NT/2k/XP name space provider DB filename: %SystemRoot%\system32\mswsock.dll DB protocol: NLA-Namespace --- Uninstall list ---Ad-Aware SE Professional 1.06 (Ad-Aware SE Professional) uninstall cmd: C:\PROGRA~1\Lavasoft\AD-AWA~1\UNWISE.EXE C:\PROGRA~1\Lavasoft\AD-AWA~1\INSTALL.LOG publisher: Lavasoft help link: http://www.lavasoft.com (AddressBook)AIM 6 (AIM_6) uninstall cmd: C:\Program Files\AIM6\uninst.exeAmerica Online (Choose which version to remove) (America Online us) uninstall cmd: C:\Program Files\Common Files\aolshare\Aolunins_us.exeAmp'd LIVE Download Manager (Amp'd LIVE Download Manager) uninstall cmd: "C:\Documents and Settings\All Users\Application Data\{D894BF30-9544-4926-ABDA-4560BA769C7A}\setup.exe" REMOVE=TRUE MODIFY=FALSE publisher: Amp'd comments: All rights reserved (Amp'd Media Manager)AOL Connectivity Services (AOL Connectivity Services) uninstall cmd: C:\PROGRA~1\COMMON~1\AOL\ACS\AcsUninstall.exe /cAOL Toolbar (AOL Toolbar) uninstall cmd: "C:\Program Files\AOL Toolbar\UNWISE.EXE" /u "C:\Program Files\AOL Toolbar\INSTALL.LOG"AOL Uninstaller (AOL Uninstaller) uninstall cmd: C:\Program Files\Common Files\AOL\uninstaller.exeAOL You've Got Pictures Screensaver (AOL YGP Screensaver) uninstall cmd: C:\Program Files\Common Files\AOL\Screensaver\uninst_ygpss.exeAOL Coach Version 1.0(Build:20040229.1 en) (AOLCoach) uninstall cmd: C:\Program Files\Common Files\aolshare\Coach\AolCInUn.exe (AOLOCP_Y)Ares P2P (Ares P2P_is1)install location: C:\Program Files\Ares P2P\ uninstall cmd: "C:\Program Files\Ares P2P\unins000.exe"Plus! MP3 Audio Converter LE (audcle) uninstall cmd: RunDll32 advpack.dll,LaunchINFSection C:\WINDOWS\INF\audcle.inf,DefaultUninstallBearShare MediaBar (BearShare MediaBar) uninstall cmd: C:\Program Files\BearShare applications\BearShare MediaBar\Uninstall.exe (Branding) (Connection Manager)dBpowerAMP Music Converter (dBpowerAMP Music Converter) uninstall cmd: "C:\WINDOWS\system32\SpoonUninstall.exe" <uninstall>C:\WINDOWS\system32\SpoonUninstall-dBpowerAMP Music Converter.dat (DirectAnimation) (DirectDrawEx)Personal License Update Wizard for Windows Media Player (drmtool.inf) uninstall cmd: RunDll32 advpack.dll,LaunchINFSection C:\WINDOWS\INF\drmtool.inf,DefaultUninstall (DXM_Runtime) (Fontcore)HarryThompson.com Webjal, USB Drivers, and all patches (HarryThompson.com Webjal, USB Drivers, and all patches) uninstall cmd: C:\HarryThompson\uninstall.exe (ICW)iDEN Download Apps Utility (iDEN Download Apps Utility) uninstall cmd: C:\WINDOWS\IsUninst.exe -f"C:\Program Files\Motorola\iDENDownloadAppsUtility\Uninst.isu" (iDEN WebJAL) uninstall cmd: C:\WINDOWS\IsUninst.exe -f"C:\Program Files\Motorola\iDEN WebJAL\Uninst.isu"Microsoft Internationalized Domain Names Mitigation APIs (IDNMitigationAPIs) install date: 20070326 uninstall cmd: "C:\WINDOWS\$NtServicePackUninstallIDNMitigationAPIs$\spuninst\spuninst.exe" publisher: Microsoft Corporation (IE40) (IE4Data) (IE5BAKEX)Windows Internet Explorer 7 20061107.210142 (ie7) install date: 20070326 uninstall cmd: "C:\WINDOWS\ie7\spuninst\spuninst.exe" publisher: Microsoft Corporation help link: http://www.microsoft.com/ie (IEData)HSP56 Modem Drivers (Installing HSP56 MicroModem Drivers) uninstall cmd: ptuninst.exe (InstallShield Uninstall Information)Broadcom Gigabit Integrated Controller 7.53.02 (InstallShield_{BE6890C7-31EF-478C-812E-1E2899ABFCA9}) version: 120913922 version (major): 7 version (minor): 53 estimated size: 400 install date: 20060527 install source: C:\DOCUME~1\PREINS~1\LOCALS~1\Temp\_is7F\ uninstall cmd: C:\Program Files\Common Files\InstallShield\Driver\8\Intel 32\IDriver.exe /M{BE6890C7-31EF-478C-812E-1E2899ABFCA9} /l1033 publisher: Broadcom comments: ... contact: Dell Customer Support help link: http://www.support.dell.com help telephone: ... readme: C:\Program Files\Broadcom\DrvInst\Readme.txt IrfanView (remove only) (IrfanView) uninstall cmd: C:\Program Files\IrfanView\iv_uninstall.exeWindows XP Hotfix - KB873339 20041117.092459 (KB873339) uninstall cmd: C:\WINDOWS\$NtUninstallKB873339$\spuninst\spuninst.exe publisher: Microsoft Corporation help link: http://support.microsoft.com?kbid=873339 (KB884016) (KB884267)Windows XP Hotfix - KB885250 20050118.202711 (KB885250) uninstall cmd: C:\WINDOWS\$NtUninstallKB885250$\spuninst\spuninst.exe publisher: Microsoft Corporation help link: http://support.microsoft.com?kbid=885250 (KB885353)Windows XP Hotfix - KB885835 20041027.181713 (KB885835) uninstall cmd: C:\WINDOWS\$NtUninstallKB885835$\spuninst\spuninst.exe publisher: Microsoft Corporation help link: http://support.microsoft.com?kbid=885835Windows XP Hotfix - KB885836 20041028.173203 (KB885836) uninstall cmd: C:\WINDOWS\$NtUninstallKB885836$\spuninst\spuninst.exe publisher: Microsoft Corporation help link: http://support.microsoft.com?kbid=885836Windows XP Hotfix - KB886185 20041021.090540 (KB886185) uninstall cmd: C:\WINDOWS\$NtUninstallKB886185$\spuninst\spuninst.exe publisher: Microsoft Corporation help link: http://support.microsoft.com?kbid=886185 (KB886612) (KB887078)Windows XP Hotfix - KB887472 20041014.162858 (KB887472) uninstall cmd: C:\WINDOWS\$NtUninstallKB887472$\spuninst\spuninst.exe publisher: Microsoft Corporation help link: http://support.microsoft.com?kbid=887472 (KB887626)Windows XP Hotfix - KB887742 20041103.095002 (KB887742) uninstall cmd: C:\WINDOWS\$NtUninstallKB887742$\spuninst\spuninst.exe publisher: Microsoft Corporation help link: http://support.microsoft.com?kbid=887742Windows XP Hotfix - KB888113 20041116.131036 (KB888113) uninstall cmd: C:\WINDOWS\$NtUninstallKB888113$\spuninst\spuninst.exe publisher: Microsoft Corporation help link: http://support.microsoft.com?kbid=888113Windows XP Hotfix - KB888302 20041207.111426 (KB888302) uninstall cmd: C:\WINDOWS\$NtUninstallKB888302$\spuninst\spuninst.exe publisher: Microsoft Corporation help link: http://support.microsoft.com?kbid=888302 (KB888656) (KB889858)Security Update for Windows XP (KB890046) 1 (KB890046) install date: 20060529 uninstall cmd: "C:\WINDOWS\$NtUninstallKB890046$\spuninst\spuninst.exe" publisher: Microsoft Corporation help link: http://support.microsoft.com?kbid=890046Windows XP Hotfix - KB890859 1 (KB890859) install date: 20060529 uninstall cmd: "C:\WINDOWS\$NtUninstallKB890859$\spuninst\spuninst.exe" publisher: Microsoft Corporation help link: http://support.microsoft.com?kbid=890859Windows Media Format SDK Hotfix - KB891122 (KB891122) install date: 20060529 uninstall cmd: "C:\WINDOWS\$NtUninstallKB891122$\spuninst\spuninst.exe" publisher: Microsoft Corporation help link: http://support.microsoft.com?kbid=891122Windows XP Hotfix - KB891781 20050110.165439 (KB891781) uninstall cmd: C:\WINDOWS\$NtUninstallKB891781$\spuninst\spuninst.exe publisher: Microsoft Corporation help link: http://support.microsoft.com?kbid=891781Windows Genuine Advantage Validation Tool (KB892130) (KB892130) install date: 20070618 publisher: Microsoft Corporation help link: http://support.microsoft.com?kbid=892130 (KB892313) (KB893240) (KB893241)Security Update for Windows XP (KB893756) 1 (KB893756) install date: 20060529 uninstall cmd: "C:\WINDOWS\$NtUninstallKB893756$\spuninst\spuninst.exe" publisher: Microsoft Corporation help link: http://support.microsoft.com?kbid=893756 (KB893803)Windows Installer 3.1 (KB893803) 3.1 (KB893803v2) uninstall cmd: "C:\WINDOWS\$MSI31Uninstall_KB893803v2$\spuninst\spuninst.exe" publisher: Microsoft Corporation help link: http://go.microsoft.com/fwlink/?LinkId=42467Update for Windows XP (KB894391) 1 (KB894391) install date: 20060529 uninstall cmd: "C:\WINDOWS\$NtUninstallKB894391$\spuninst\spuninst.exe" publisher: Microsoft Corporation help link: http://support.microsoft.com?kbid=894391 (KB895181) (KB895316) (KB895572)Hotfix for Windows XP (KB896344) 2 (KB896344) install date: 20060529 uninstall cmd: "C:\WINDOWS\$NtUninstallKB896344$\spuninst\spuninst.exe" publisher: Microsoft Corporation help link: http://support.microsoft.com?kbid=896344Security Update for Windows XP (KB896358) 1 (KB896358) install date: 20060529 uninstall cmd: "C:\WINDOWS\$NtUninstallKB896358$\spuninst\spuninst.exe" publisher: Microsoft Corporation help link: http://support.microsoft.com?kbid=896358Security Update for Windows XP (KB896422) 1 (KB896422) install date: 20060529 uninstall cmd: "C:\WINDOWS\$NtUninstallKB896422$\spuninst\spuninst.exe" publisher: Microsoft Corporation help link: http://support.microsoft.com?kbid=896422Security Update for Windows XP (KB896423) 1 (KB896423) install date: 20060529 uninstall cmd: "C:\WINDOWS\$NtUninstallKB896423$\spuninst\spuninst.exe" publisher: Microsoft Corporation help link: http://support.microsoft.com?kbid=896423Security Update for Windows XP (KB896424) 1 (KB896424) install date: 20060529 uninstall cmd: "C:\WINDOWS\$NtUninstallKB896424$\spuninst\spuninst.exe" publisher: Microsoft Corporation help link: http://support.microsoft.com?kbid=896424Security Update for Windows XP (KB896428) 1 (KB896428) install date: 20060529 uninstall cmd: "C:\WINDOWS\$NtUninstallKB896428$\spuninst\spuninst.exe" publisher: Microsoft Corporation help link: http://support.microsoft.com?kbid=896428 (KB897586)Update for Windows XP (KB898461) 1 (KB898461) install date: 20060529 uninstall cmd: "C:\WINDOWS\$NtUninstallKB898461$\spuninst\spuninst.exe" publisher: Microsoft Corporation help link: http://support.microsoft.com?kbid=898461 (KB898549)Security Update for Windows XP (KB899587) 1 (KB899587) install date: 20060529 uninstall cmd: "C:\WINDOWS\$NtUninstallKB899587$\spuninst\spuninst.exe" publisher: Microsoft Corporation help link: http://support.microsoft.com?kbid=899587Security Update for Windows XP (KB899589) 1 (KB899589) install date: 20060529 uninstall cmd: "C:\WINDOWS\$NtUninstallKB899589$\spuninst\spuninst.exe" publisher: Microsoft Corporation help link: http://support.microsoft.com?kbid=899589Security Update for Windows XP (KB899591) 1 (KB899591) install date: 20060529 uninstall cmd: "C:\WINDOWS\$NtUninstallKB899591$\spuninst\spuninst.exe" publisher: Microsoft Corporation help link: http://support.microsoft.com?kbid=899591 (KB900399)Update for Windows XP (KB900485) 2 (KB900485) install date: 20060529 uninstall cmd: "C:\WINDOWS\$NtUninstallKB900485$\spuninst\spuninst.exe" publisher: Microsoft Corporation help link: http://support.microsoft.com?kbid=900485Security Update for Windows XP (KB900725) 1 (KB900725) install date: 20060529 uninstall cmd: "C:\WINDOWS\$NtUninstallKB900725$\spuninst\spuninst.exe" publisher: Microsoft Corporation help link: http://support.microsoft.com?kbid=900725Update for Windows XP (KB900930) 1 (KB900930) install date: 20060529 uninstall cmd: "C:\WINDOWS\$NtUninstallKB900930$\spuninst\spuninst.exe" publisher: Microsoft Corporation help link: http://support.microsoft.com?kbid=900930Security Update for Windows XP (KB901017) 1 (KB901017) install date: 20060529 uninstall cmd: "C:\WINDOWS\$NtUninstallKB901017$\spuninst\spuninst.exe" publisher: Microsoft Corporation help link: http://support.microsoft.com?kbid=901017Security Update for Windows XP (KB901214) 1 (KB901214) install date: 20060529 uninstall cmd: "C:\WINDOWS\$NtUninstallKB901214$\spuninst\spuninst.exe" publisher: Microsoft Corporation help link: http://support.microsoft.com?kbid=901214Hotfix for Windows Media Format SDK (KB902344) (KB902344) uninstall cmd: "C:\WINDOWS\$NtUninstallKB902344$\spuninst\spuninst.exe" publisher: Microsoft Corporation help link: http://support.microsoft.com?kbid=902344Security Update for Windows XP (KB902400) 1 (KB902400) install date: 20060529 uninstall cmd: "C:\WINDOWS\$NtUninstallKB902400$\spuninst\spuninst.exe" publisher: Microsoft Corporation help link: http://support.microsoft.com?kbid=902400Security Update for Windows XP (KB904706) 2 (KB904706) install date: 20060529 uninstall cmd: "C:\WINDOWS\$NtUninstallKB904706$\spuninst\spuninst.exe" publisher: Microsoft Corporation help link: http://support.microsoft.com?kbid=904706Update for Windows XP (KB904942) 2 (KB904942) install date: 20060529 uninstall cmd: "C:\WINDOWS\$NtUninstallKB904942$\spuninst\spuninst.exe" publisher: Microsoft Corporation help link: http://support.microsoft.com?kbid=904942Security Update for Windows XP (KB905414) 1 (KB905414) install date: 20060529 uninstall cmd: "C:\WINDOWS\$NtUninstallKB905414$\spuninst\spuninst.exe" publisher: Microsoft Corporation help link: http://support.microsoft.com?kbid=905414Security Update for Windows XP (KB905749) 1 (KB905749) install date: 20060529 uninstall cmd: "C:\WINDOWS\$NtUninstallKB905749$\spuninst\spuninst.exe" publisher: Microsoft Corporation help link: http://support.microsoft.com?kbid=905749 (KB907658)Security Update for Windows XP (KB908519) 1 (KB908519) install date: 20060529 uninstall cmd: "C:\WINDOWS\$NtUninstallKB908519$\spuninst\spuninst.ex
-
Download Hijackthis 2.0.2 from my signature below
SAVE it to your desktop
Double click on HJTInstall.exe to run it
Choose Install
Hijackthis v2.0.2 will open
Under Main Menu, Select
Do a system scan and save a Log file
A log will open in Notepad
Copy and Paste the Whole log back here to the forum...Don't try and fix anything yet----It is all important!
-
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 1:31:06 PM, on 8/1/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16473)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Analog Devices\Core\smax4pnp.exe
C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe
C:\WINDOWS\system32\hkcmd.exe
C:\WINDOWS\system32\igfxpers.exe
C:\WINDOWS\system32\pctspk.exe
C:\Program Files\Real\RealPlayer\RealPlay.exe
C:\WINDOWS\system32\PV92Tray.exe
C:\Program Files\Common Files\Symantec Shared\ccApp.exe
C:\PROGRA~1\SYMANT~1\VPTray.exe
C:\Program Files\Java\jre1.6.0_02\bin\jusched.exe
C:\Program Files\Common Files\AOL\ACS\AOLDial.exe
C:\Program Files\Microsoft ActiveSync\wcescomm.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\MySpace\IM\MySpaceIM.exe
C:\PROGRA~1\MICROS~3\rapimgr.exe
C:\Program Files\Symantec AntiVirus\DefWatch.exe
C:\Program Files\McAfee\MBK\MBackMonitor.exe
C:\Program Files\Common Files\McAfee\HackerWatch\HWAPI.exe
C:\PROGRA~1\McAfee\MSC\mcmscsvc.exe
c:\program files\common files\mcafee\mna\mcnasvc.exe
C:\PROGRA~1\McAfee\VIRUSS~1\mcods.exe
C:\PROGRA~1\McAfee\MSC\mcpromgr.exe
c:\PROGRA~1\COMMON~1\mcafee\mcproxy\mcproxy.exe
c:\PROGRA~1\COMMON~1\mcafee\redirsvc\redirsvc.exe
C:\Program Files\Common Files\AOL\ACS\AOLacsd.exe
C:\PROGRA~1\McAfee\VIRUSS~1\mcshield.exe
C:\PROGRA~1\McAfee\VIRUSS~1\mcsysmon.exe
C:\Program Files\McAfee\MPF\MPFSrv.exe
C:\PROGRA~1\McAfee\MPS\mps.exe
C:\Program Files\Symantec AntiVirus\Rtvscan.exe
c:\PROGRA~1\mcafee.com\agent\mcagent.exe
C:\Program Files\McAfee\MPS\mpsevh.exe
c:\PROGRA~1\mcafee\VIRUSS~1\mcvsshld.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.optonline.net (http://\"http://www.optonline.net\")
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,SearchAssistant = http://search.bearshare.com/sidebar.html?src=ssb (http://\"http://search.bearshare.com/sidebar.html?src=ssb\")
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://search.bearshare.com/sidebar.html?src=ssb (http://\"http://search.bearshare.com/sidebar.html?src=ssb\")
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://search.bearshare.com/sidebar.html?src=ssb (http://\"http://search.bearshare.com/sidebar.html?src=ssb\")
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://google.com/ (http://\"http://google.com/\")
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157 (http://\"http://go.microsoft.com/fwlink/?LinkId=69157\")
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 (http://\"http://go.microsoft.com/fwlink/?LinkId=54896\")
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 (http://\"http://go.microsoft.com/fwlink/?LinkId=54896\")
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157 (http://\"http://go.microsoft.com/fwlink/?LinkId=69157\")
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://search.bearshare.com/sidebar.html?src=ssb (http://\"http://search.bearshare.com/sidebar.html?src=ssb\")
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,First Home Page = C:\Program Files\AOL Toolbar\welcome.html
R3 - URLSearchHook: BearShare MediaBar - {D3DEE18F-DB64-4BEB-9FF1-E1F0A5033E4A} - C:\Program Files\BearShare applications\BearShare MediaBar\MediaBar.dll
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)
O1 - Hosts: 68.44.244.240 idenupdate.motorola.com
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_02\bin\ssv.dll
O2 - BHO: scriptproxy - {7DB2D5A0-7241-4E79-B68D-6309F01C5231} - c:\program files\mcafee\virusscan\scriptcl.dll
O2 - BHO: XBTP02634 Class - {F97DA966-F09D-4cab-BF29-75A0026986EA} - C:\PROGRA~1\BEARSH~1\BEARSH~2\MediaBar.dll
O3 - Toolbar: BearShare MediaBar - {D3DEE18F-DB64-4BEB-9FF1-E1F0A5033E4A} - C:\Program Files\BearShare applications\BearShare MediaBar\MediaBar.dll
O3 - Toolbar: AOL Toolbar - {4982D40A-C53B-4615-B15B-B5B5E98D167C} - C:\Program Files\AOL Toolbar\toolbar.dll
O4 - HKLM\..\Run: [SoundMAXPnP] C:\Program Files\Analog Devices\Core\smax4pnp.exe
O4 - HKLM\..\Run: [RemoteControl] "C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe"
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [igfxtray] C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [igfxhkcmd] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [igfxpers] C:\WINDOWS\system32\igfxpers.exe
O4 - HKLM\..\Run: [PCTVOICE] pctspk.exe
O4 - HKLM\..\Run: [RealTray] C:\Program Files\Real\RealPlayer\RealPlay.exe SYSTEMBOOTHIDEPLAYER
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [PV92TRAY] PV92Tray.exe
O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Common Files\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [vptray] C:\PROGRA~1\SYMANT~1\VPTray.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_02\bin\jusched.exe"
O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
O4 - HKLM\..\Run: [AOLDialer] C:\Program Files\Common Files\AOL\ACS\AOLDial.exe
O4 - HKLM\..\Run: [Pure Networks Port Magic] "C:\PROGRA~1\PURENE~1\PORTMA~1\PortEmail Removedexe" -Run
O4 - HKLM\..\Run: [MBkLogOnHook] C:\Program Files\McAfee\MBK\LogOnHook.exe
O4 - HKLM\..\Run: [Adobe Photo Downloader] "C:\Program Files\Adobe\Photoshop Album Starter Edition\3.0\Apps\apdproxy.exe"
O4 - HKCU\..\Run: [H/PC Connection Agent] "C:\Program Files\Microsoft ActiveSync\wcescomm.exe"
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [MySpaceIM] C:\Program Files\MySpace\IM\MySpaceIM.exe
O4 - HKUS\S-1-5-18\..\Run: [MySpaceIM] C:\Program Files\MySpace\IM\MySpaceIM.exe (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [MySpaceIM] C:\Program Files\MySpace\IM\MySpaceIM.exe (User 'Default user')
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: America Online 9.0 Tray Icon.lnk = C:\Program Files\America Online 9.0a\aoltray.exe
O8 - Extra context menu item: &AOL Toolbar search - res://C:\Program Files\AOL Toolbar\toolbar.dll/SEARCH.HTML
O8 - Extra context menu item: &Search - http://edits.mywebsearch.com/toolbaredits/...arch.jhtml?p=ZK (http://\"http://edits.mywebsearch.com/toolbaredits/menusearch.jhtml?p=ZK\")
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_02\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_02\bin\ssv.dll
O9 - Extra button: Create Mobile Favorite - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MICROS~3\INetRepl.dll
O9 - Extra button: AOL Toolbar - {4982D40A-C53B-4615-B15B-B5B5E98D167C} - C:\Program Files\AOL Toolbar\toolbar.dll
O9 - Extra 'Tools' menuitem: AOL Toolbar - {4982D40A-C53B-4615-B15B-B5B5E98D167C} - C:\Program Files\AOL Toolbar\toolbar.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\system32\Shdocvw.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {2BC66F54-93A8-11D3-BEB6-00105AA9B6AE} (Symantec AntiVirus scanner) - http://security.symantec.com/sscv6/SharedC...bin/AvSniff.cab (http://\"http://security.symantec.com/sscv6/SharedContent/vc/bin/AvSniff.cab\")
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupdate/...b?1148907721477 (http://\"http://update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1148907721477\")
O16 - DPF: {644E432F-49D3-41A1-8DD5-E099162EEEC5} (Symantec RuFSI Utility Class) - http://security.symantec.com/sscv6/SharedC...n/bin/cabsa.cab (http://\"http://security.symantec.com/sscv6/SharedContent/common/bin/cabsa.cab\")
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://www.update.microsoft.com/microsoftu...b?1183593149381 (http://\"http://www.update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1183593149381\")
O16 - DPF: {8A94C905-FF9D-43B6-8708-F0F22D22B1CB} (Wwlaunch Control) - http://www.worldwinner.com/games/shared/wwlaunch.cab (http://\"http://www.worldwinner.com/games/shared/wwlaunch.cab\")
O16 - DPF: {DF780F87-FF2B-4DF8-92D0-73DB16A1543A} (PopCapLoader Object) - http://aolsvc.Email (http://\"http://aolsvc.Email\") Removed/onlinegames/bejewele...ploader_v10.cab
O23 - Service: AOL Connectivity Service (AOL ACS) - America Online, Inc. - C:\PROGRA~1\COMMON~1\AOL\ACS\AOLacsd.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe
O23 - Service: Symantec AntiVirus Definition Watcher (DefWatch) - Symantec Corporation - C:\Program Files\Symantec AntiVirus\DefWatch.exe
O23 - Service: McAfee E-mail Proxy (Emproxy) - McAfee, Inc. - C:\PROGRA~1\COMMON~1\McAfee\EmProxy\emproxy.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: MBackMonitor - McAfee - C:\Program Files\McAfee\MBK\MBackMonitor.exe
O23 - Service: McAfee HackerWatch Service - McAfee, Inc. - C:\Program Files\Common Files\McAfee\HackerWatch\HWAPI.exe
O23 - Service: McAfee Update Manager (mcmispupdmgr) - McAfee, Inc. - C:\PROGRA~1\McAfee\MSC\mcupdmgr.exe
O23 - Service: McAfee Services (mcmscsvc) - McAfee, Inc. - C:\PROGRA~1\McAfee\MSC\mcmscsvc.exe
O23 - Service: McAfee Network Agent (McNASvc) - McAfee, Inc. - c:\program files\common files\mcafee\mna\mcnasvc.exe
O23 - Service: McAfee Scanner (McODS) - McAfee, Inc. - C:\PROGRA~1\McAfee\VIRUSS~1\mcods.exe
O23 - Service: McAfee Protection Manager (mcpromgr) - McAfee, Inc. - C:\PROGRA~1\McAfee\MSC\mcpromgr.exe
O23 - Service: McAfee Proxy Service (McProxy) - McAfee, Inc. - c:\PROGRA~1\COMMON~1\mcafee\mcproxy\mcproxy.exe
O23 - Service: McAfee Redirector Service (McRedirector) - McAfee, Inc. - c:\PROGRA~1\COMMON~1\mcafee\redirsvc\redirsvc.exe
O23 - Service: McAfee Real-time Scanner (McShield) - McAfee, Inc. - C:\PROGRA~1\McAfee\VIRUSS~1\mcshield.exe
O23 - Service: McAfee SystemGuards (McSysmon) - McAfee, Inc. - C:\PROGRA~1\McAfee\VIRUSS~1\mcsysmon.exe
O23 - Service: McAfee Personal Firewall Service (MpfService) - McAfee, Inc. - C:\Program Files\McAfee\MPF\MPFSrv.exe
O23 - Service: McAfee Privacy Service (MPS9) - McAfee, Inc. - C:\PROGRA~1\McAfee\MPS\mps.exe
O23 - Service: SAVRoam (SavRoam) - symantec - C:\Program Files\Symantec AntiVirus\SavRoam.exe
O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\SNDSrvc.exe
O23 - Service: Symantec SPBBCSvc (SPBBCSvc) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCSvc.exe
O23 - Service: Symantec AntiVirus - Symantec Corporation - C:\Program Files\Symantec AntiVirus\Rtvscan.exe
--
End of file - 11647 bytes
-
I don't advice you to run 2 Antivirus software on your computer
This can cause noticeable slowdowns on your machine and conflict with each other
Decide which your happiest with>>Symantec's or McAfee's
Uninstall one or the other COMPLETELY and then reboot the computer
Come back here and do the following please
Post a fresh hijackthis log
Also, supply an uninstall list from Hijackthis
Open Hijackthis>>Open MISC TOOLS SECTION>>Open UNINSTALL MANAGER
Click the SAVE LIST... button
Save the list to your desktop then copy>>Paste back here the Whole contents
Also, have you seen this link related to Search Companion?
http://www.jsifaq.com/SF/Tips/Tip.aspx?id=5140 (http://\"http://www.jsifaq.com/SF/Tips/Tip.aspx?id=5140\")
-
This is my new log file
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 6:30:49 PM, on 8/2/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16473)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe
C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe
C:\WINDOWS\system32\spoolsv.exe
C:\PROGRA~1\COMMON~1\AOL\ACS\AOLacsd.exe
C:\Program Files\Symantec AntiVirus\DefWatch.exe
C:\Program Files\Symantec AntiVirus\Rtvscan.exe
C:\Program Files\Analog Devices\Core\smax4pnp.exe
C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe
C:\WINDOWS\system32\hkcmd.exe
C:\WINDOWS\system32\igfxpers.exe
C:\WINDOWS\system32\pctspk.exe
C:\Program Files\Real\RealPlayer\RealPlay.exe
C:\WINDOWS\system32\PV92Tray.exe
C:\Program Files\Java\jre1.6.0_02\bin\jusched.exe
C:\Program Files\Common Files\AOL\ACS\AOLDial.exe
C:\Program Files\Common Files\Symantec Shared\ccApp.exe
C:\PROGRA~1\SYMANT~1\VPTray.exe
C:\Program Files\Microsoft ActiveSync\wcescomm.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\MySpace\IM\MySpaceIM.exe
C:\PROGRA~1\MICROS~3\rapimgr.exe
C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.optonline.net (http://\"http://www.optonline.net\")
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,SearchAssistant = http://search.bearshare.com/sidebar.html?src=ssb (http://\"http://search.bearshare.com/sidebar.html?src=ssb\")
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://search.bearshare.com/sidebar.html?src=ssb (http://\"http://search.bearshare.com/sidebar.html?src=ssb\")
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://search.bearshare.com/sidebar.html?src=ssb (http://\"http://search.bearshare.com/sidebar.html?src=ssb\")
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://google.com/ (http://\"http://google.com/\")
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157 (http://\"http://go.microsoft.com/fwlink/?LinkId=69157\")
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 (http://\"http://go.microsoft.com/fwlink/?LinkId=54896\")
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 (http://\"http://go.microsoft.com/fwlink/?LinkId=54896\")
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157 (http://\"http://go.microsoft.com/fwlink/?LinkId=69157\")
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://search.bearshare.com/sidebar.html?src=ssb (http://\"http://search.bearshare.com/sidebar.html?src=ssb\")
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,First Home Page = C:\Program Files\AOL Toolbar\welcome.html
R3 - URLSearchHook: BearShare MediaBar - {D3DEE18F-DB64-4BEB-9FF1-E1F0A5033E4A} - C:\Program Files\BearShare applications\BearShare MediaBar\MediaBar.dll
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)
O1 - Hosts: 68.44.244.240 idenupdate.motorola.com
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_02\bin\ssv.dll
O2 - BHO: XBTP02634 Class - {F97DA966-F09D-4cab-BF29-75A0026986EA} - C:\PROGRA~1\BEARSH~1\BEARSH~2\MediaBar.dll
O3 - Toolbar: BearShare MediaBar - {D3DEE18F-DB64-4BEB-9FF1-E1F0A5033E4A} - C:\Program Files\BearShare applications\BearShare MediaBar\MediaBar.dll
O3 - Toolbar: AOL Toolbar - {4982D40A-C53B-4615-B15B-B5B5E98D167C} - C:\Program Files\AOL Toolbar\toolbar.dll
O4 - HKLM\..\Run: [SoundMAXPnP] C:\Program Files\Analog Devices\Core\smax4pnp.exe
O4 - HKLM\..\Run: [RemoteControl] "C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe"
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [igfxtray] C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [igfxhkcmd] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [igfxpers] C:\WINDOWS\system32\igfxpers.exe
O4 - HKLM\..\Run: [PCTVOICE] pctspk.exe
O4 - HKLM\..\Run: [RealTray] C:\Program Files\Real\RealPlayer\RealPlay.exe SYSTEMBOOTHIDEPLAYER
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [PV92TRAY] PV92Tray.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_02\bin\jusched.exe"
O4 - HKLM\..\Run: [AOLDialer] C:\Program Files\Common Files\AOL\ACS\AOLDial.exe
O4 - HKLM\..\Run: [Pure Networks Port Magic] "C:\PROGRA~1\PURENE~1\PORTMA~1\PortEmail Removedexe" -Run
O4 - HKLM\..\Run: [Adobe Photo Downloader] "C:\Program Files\Adobe\Photoshop Album Starter Edition\3.0\Apps\apdproxy.exe"
O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Common Files\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [vptray] C:\PROGRA~1\SYMANT~1\VPTray.exe
O4 - HKCU\..\Run: [H/PC Connection Agent] "C:\Program Files\Microsoft ActiveSync\wcescomm.exe"
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKUS\S-1-5-18\..\Run: [MySpaceIM] C:\Program Files\MySpace\IM\MySpaceIM.exe (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [MySpaceIM] C:\Program Files\MySpace\IM\MySpaceIM.exe (User 'Default user')
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: America Online 9.0 Tray Icon.lnk = C:\Program Files\America Online 9.0a\aoltray.exe
O8 - Extra context menu item: &AOL Toolbar search - res://C:\Program Files\AOL Toolbar\toolbar.dll/SEARCH.HTML
O8 - Extra context menu item: &Search - http://edits.mywebsearch.com/toolbaredits/...arch.jhtml?p=ZK (http://\"http://edits.mywebsearch.com/toolbaredits/menusearch.jhtml?p=ZK\")
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_02\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_02\bin\ssv.dll
O9 - Extra button: Create Mobile Favorite - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MICROS~3\INetRepl.dll
O9 - Extra button: AOL Toolbar - {4982D40A-C53B-4615-B15B-B5B5E98D167C} - C:\Program Files\AOL Toolbar\toolbar.dll
O9 - Extra 'Tools' menuitem: AOL Toolbar - {4982D40A-C53B-4615-B15B-B5B5E98D167C} - C:\Program Files\AOL Toolbar\toolbar.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\system32\Shdocvw.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {2BC66F54-93A8-11D3-BEB6-00105AA9B6AE} (Symantec AntiVirus scanner) - http://security.symantec.com/sscv6/SharedC...bin/AvSniff.cab (http://\"http://security.symantec.com/sscv6/SharedContent/vc/bin/AvSniff.cab\")
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupdate/...b?1148907721477 (http://\"http://update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1148907721477\")
O16 - DPF: {644E432F-49D3-41A1-8DD5-E099162EEEC5} (Symantec RuFSI Utility Class) - http://security.symantec.com/sscv6/SharedC...n/bin/cabsa.cab (http://\"http://security.symantec.com/sscv6/SharedContent/common/bin/cabsa.cab\")
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://www.update.microsoft.com/microsoftu...b?1183593149381 (http://\"http://www.update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1183593149381\")
O16 - DPF: {8A94C905-FF9D-43B6-8708-F0F22D22B1CB} (Wwlaunch Control) - http://www.worldwinner.com/games/shared/wwlaunch.cab (http://\"http://www.worldwinner.com/games/shared/wwlaunch.cab\")
O16 - DPF: {DF780F87-FF2B-4DF8-92D0-73DB16A1543A} (PopCapLoader Object) - http://aolsvc.Email (http://\"http://aolsvc.Email\") Removed/onlinegames/bejewele...ploader_v10.cab
O23 - Service: AOL Connectivity Service (AOL ACS) - America Online, Inc. - C:\PROGRA~1\COMMON~1\AOL\ACS\AOLacsd.exe
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe
O23 - Service: Symantec AntiVirus Definition Watcher (DefWatch) - Symantec Corporation - C:\Program Files\Symantec AntiVirus\DefWatch.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
O23 - Service: SAVRoam (SavRoam) - symantec - C:\Program Files\Symantec AntiVirus\SavRoam.exe
O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\SNDSrvc.exe
O23 - Service: Symantec SPBBCSvc (SPBBCSvc) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCSvc.exe
O23 - Service: Symantec AntiVirus - Symantec Corporation - C:\Program Files\Symantec AntiVirus\Rtvscan.exe
--
End of file - 9483 bytes
Heres the un-install list
Ad-Aware SE Professional
Adobe Flash Player 9 ActiveX
Adobe Reader 7.0.9
AIM 6
America Online (Choose which version to remove)
Amp'd LIVE Download Manager
AOL Coach Version 1.0(Build:20040229.1 en)
AOL Connectivity Services
AOL Toolbar
AOL Uninstaller
AOL You've Got Pictures Screensaver
Ares P2P
BearShare MediaBar
Broadcom Gigabit Integrated Controller
dBpowerAMP Music Converter
HarryThompson.com Webjal, USB Drivers, and all patches
HijackThis 2.0.2
Hotfix for Windows Media Format 11 SDK (KB929399)
Hotfix for Windows Media Format SDK (KB902344)
Hotfix for Windows XP (KB896344)
Hotfix for Windows XP (KB909394)
Hotfix for Windows XP (KB914440)
Hotfix for Windows XP (KB915865)
Hotfix for Windows XP (KB926239)
HSP56 Modem Drivers
iDEN Download Apps Utility
Intel® Graphics Media Accelerator Driver
IrfanView (remove only)
Java(tm) 6 Update 2
Learn2 Player (Uninstall Only)
LimeWire 4.12.11
LiveUpdate 3.1 (Symantec Corporation)
Media Downloader
Media Library Management Wizard
Microsoft .NET Framework 1.1
Microsoft .NET Framework 1.1
Microsoft .NET Framework 1.1 Hotfix (KB928366)
Microsoft .NET Framework 2.0
Microsoft ActiveSync 4.0
Microsoft Base Smart Card Cryptographic Service Provider Package
Microsoft Compression Client Pack 1.0 for Windows XP
Microsoft Internationalized Domain Names Mitigation APIs
Microsoft Kernel-Mode Driver Framework Feature Pack 1.5
Microsoft National Language Support Downlevel APIs
Microsoft Office Professional Edition 2003
Microsoft User-Mode Driver Framework Feature Pack 1.0
Motorola Driver Installation
Movie Maker Background Music Files
Movie Maker Sound Effects
Movie Maker Title Images
MySpaceIM
Nero Suite
Optimum Online net guide
Personal License Update Wizard for Windows Media Player
Plus! MP3 Audio Converter LE
PowerDVD
Pure Networks Port Magic
QuickTime
RealPlayer Basic
Security Update for CAPICOM (KB931906)
Security Update for CAPICOM (KB931906)
Security Update for Microsoft .NET Framework 2.0 (KB928365)
Security Update for Windows Internet Explorer 7 (KB928090)
Security Update for Windows Internet Explorer 7 (KB933566)
Security Update for Windows Media Player (KB911564)
Security Update for Windows Media Player 10 (KB911565)
Security Update for Windows Media Player 6.4 (KB925398)
Security Update for Windows XP (KB890046)
Security Update for Windows XP (KB893756)
Security Update for Windows XP (KB896358)
Security Update for Windows XP (KB896422)
Security Update for Windows XP (KB896423)
Security Update for Windows XP (KB896424)
Security Update for Windows XP (KB896428)
Security Update for Windows XP (KB899587)
Security Update for Windows XP (KB899589)
Security Update for Windows XP (KB899591)
Security Update for Windows XP (KB900725)
Security Update for Windows XP (KB901017)
Security Update for Windows XP (KB901214)
Security Update for Windows XP (KB902400)
Security Update for Windows XP (KB904706)
Security Update for Windows XP (KB905414)
Security Update for Windows XP (KB905749)
Security Update for Windows XP (KB908519)
Security Update for Windows XP (KB911562)
Security Update for Windows XP (KB911567)
Security Update for Windows XP (KB911927)
Security Update for Windows XP (KB912812)
Security Update for Windows XP (KB912919)
Security Update for Windows XP (KB913433)
Security Update for Windows XP (KB913446)
Security Update for Windows XP (KB913580)
Security Update for Windows XP (KB914388)
Security Update for Windows XP (KB914389)
Security Update for Windows XP (KB917344)
Security Update for Windows XP (KB917422)
Security Update for Windows XP (KB917953)
Security Update for Windows XP (KB918118)
Security Update for Windows XP (KB918439)
Security Update for Windows XP (KB919007)
Security Update for Windows XP (KB920213)
Security Update for Windows XP (KB920670)
Security Update for Windows XP (KB920683)
Security Update for Windows XP (KB920685)
Security Update for Windows XP (KB922819)
Security Update for Windows XP (KB923191)
Security Update for Windows XP (KB923414)
Security Update for Windows XP (KB923694)
Security Update for Windows XP (KB923980)
Security Update for Windows XP (KB924191)
Security Update for Windows XP (KB924270)
Security Update for Windows XP (KB924496)
Security Update for Windows XP (KB924667)
Security Update for Windows XP (KB925902)
Security Update for Windows XP (KB926255)
Security Update for Windows XP (KB926436)
Security Update for Windows XP (KB927779)
Security Update for Windows XP (KB927802)
Security Update for Windows XP (KB928090)
Security Update for Windows XP (KB928255)
Security Update for Windows XP (KB928843)
Security Update for Windows XP (KB929123)
Security Update for Windows XP (KB930178)
Security Update for Windows XP (KB931261)
Security Update for Windows XP (KB931784)
Security Update for Windows XP (KB932168)
Security Update for Windows XP (KB935839)
Security Update for Windows XP (KB935840)
SoundMAX
Spybot - Search & Destroy 1.4
Symantec AntiVirus
Update for Windows XP (KB894391)
Update for Windows XP (KB898461)
Update for Windows XP (KB900485)
Update for Windows XP (KB900930)
Update for Windows XP (KB904942)
Update for Windows XP (KB908531)
Update for Windows XP (KB910437)
Update for Windows XP (KB911280)
Update for Windows XP (KB916595)
Update for Windows XP (KB920342)
Update for Windows XP (KB920872)
Update for Windows XP (KB922582)
Update for Windows XP (KB927891)
Update for Windows XP (KB929338)
Update for Windows XP (KB930916)
Update for Windows XP (KB931836)
Update for Windows XP (KB936357)
URGE
Viewpoint Media Player
Windows Installer 3.1 (KB893803)
Windows Internet Explorer 7
Windows Media Bonus Pack for Windows XP
Windows Media Connect
Windows Media Format 11 runtime
Windows Media Format 11 runtime
Windows Media Format SDK Hotfix - KB891122
Windows Media Player 11
Windows Media Player 11
Windows Media Player Playlist Import to Excel Wizard
Windows Media Player Skin Importer
Windows Media Player Tray Control
Windows XP Hotfix - KB873339
Windows XP Hotfix - KB885250
Windows XP Hotfix - KB885835
Windows XP Hotfix - KB885836
Windows XP Hotfix - KB886185
Windows XP Hotfix - KB887472
Windows XP Hotfix - KB887742
Windows XP Hotfix - KB888113
Windows XP Hotfix - KB888302
Windows XP Hotfix - KB890859
Windows XP Hotfix - KB891781
-
There are 2 other entries in your uninstall list I don't recommend
Up to you to keep them
I would access your add/remove programs via Control Panel and Uninstall/Remove the following
BearShare MediaBar
Viewpoint Media Player
Reboot the computer afterwards
Post one last fresh hijackthis log
Don't post a new uninstall list
How did it go with the link I gave you earlier??
Also, have you seen this link related to Search Companion?
http://www.jsifaq.com/SF/Tips/Tip.aspx?id=5140 (http://\"http://www.jsifaq.com/SF/Tips/Tip.aspx?id=5140\")