Author Topic: Getting random pop-up links from CVC or something. (Read 2664 times)

guestolo · « **Reply #20 on:** June 10, 2007, 10:36:23 AM »

I didn't expect it to be so long also, that's ok, thanks for posting it

Can you do the following please
Open notepad and copy/paste the text in the quotebox below into it:
Don't include the word 'quote' please

Quote

File::
C:\WINDOWS\system32\muabflkq.dll
C:\WINDOWS\wyibjwsA.exe

Folder::
C:\WINDOWS\system32\TQ0
C:\WINDOWS\system32\T6
C:\WINDOWS\system32\T1QaSQ
C:\Temp
C:\VundoFix Backups

Registry::
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"QuickTime Task"=-

Save this as ComboFix-Do.txt to your desktop

Then drag the ComboFix-Do.txt into ComboFix.exe as you see in the screenshot below.

This will start ComboFix again. After reboot, (in case it asks to reboot), post the contents of Combofix.txt

Also:

Quote

Irfanview is a image editing thing that I used to convert World of Warcraft files. Since WoW is behind me, I could always just remove it.

No, that's ok, I love Irfanview, I just wanted to ensure there were no other files in the Temp folder
Like I said, I think it's the default location when you Batch conversion

Quote

Do you have an opinion about what the best anti-virus/spyware system is

There are so many opinions of what is the best, I don't involve myself with that arguement

http://images.thetechguide.com/forum/public/style_emoticons/<#EMO_DIR#>/smile.gif\' class=\'bbc_emoticon\' alt=\'

\' />
Ensuring that your AV is kept up to date is the most important
I use some free software
You have Windows Live OneCare installed, which includes AV
Are you running just the trial verison or did you purchase the product?
I have other suggestions if you want to try alternatives, but it's not a good idea running more than one AV or Firewall software on the computer as it will cause conflicts

Edit>>Did you have Kaspersky's AV installed at one time?

Ocyrith · « **Reply #21 on:** June 10, 2007, 11:59:21 AM »

Combo-fix log: ((didn't make me restart))

"Owner" - 2007-06-10 12:48:29 Service Pack 2 NTFS
Command switches used :: ""C:\Documents and Settings\Owner\Desktop\ComboFix-Do.txt""

((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))

C:\Temp
C:\Temp\x2b\tmpZTF.log
C:\VundoFix Backups
C:\VundoFix Backups\dvipfluu.ini.bad
C:\VundoFix Backups\rstwa.bak1.bad
C:\VundoFix Backups\rstwa.bak2.bad
C:\VundoFix Backups\rstwa.ini.bad
C:\VundoFix Backups\rstwa.ini2.bad
C:\VundoFix Backups\rstwa.tmp.bad
C:\WINDOWS\system32\muabflkq.dll
C:\WINDOWS\system32\T1QaSQ
C:\WINDOWS\system32\T6
C:\WINDOWS\system32\TQ0
C:\WINDOWS\wyibjwsA.exe

((((((((((((((((((((((((( Files Created from 2007-05-10 to 2007-06-10 )))))))))))))))))))))))))))))))

2007-06-10 10:34 <DIR> d-------- C:\WINDOWS\LastGood
2007-06-09 17:02 <DIR> d-------- C:\DOCUME~1\Owner\DoctorWeb
2007-06-09 15:27 49,152 --a------ C:\WINDOWS\nircmd.exe
2007-06-09 13:36 <DIR> d-------- C:\HJT
2007-06-08 10:50 <DIR> d-------- C:\Program Files\Webroot
2007-06-08 10:50 <DIR> d-------- C:\Program Files\Common Files\Webroot Shared
2007-06-08 10:50 <DIR> d-------- C:\DOCUME~1\Owner\APPLIC~1\Webroot
2007-06-08 10:49 58,368 --a------ C:\WINDOWS\Unwash6.exe
2007-06-08 10:49 486,400 --a------ C:\WINDOWS\system32\wwSecure.exe
2007-06-08 10:46 <DIR> d-------- C:\Program Files\CCleaner
2007-06-07 20:41 <DIR> d-------- C:\Program Files\XoftSpySE
2007-06-07 10:21 3,103 --a------ C:\WINDOWS\system32\SBRC.dat
2007-06-07 04:09 2,719,389 --a------ C:\WINDOWS\system32\SBSP.dat
2007-06-06 07:56 <DIR> d-------- C:\Program Files\Microsoft CAPICOM 2.1.0.2
2007-06-05 20:50 81,024 --a------ C:\WINDOWS\system32\drivers\msfwdrv.sys
2007-06-05 20:49 105,856 --a------ C:\WINDOWS\system32\drivers\msfwhlpr.sys
2007-06-05 20:46 67,784 --a------ C:\WINDOWS\system32\drivers\MpFilter.sys
2007-06-05 20:41 <DIR> d-------- C:\Program Files\Microsoft Windows OneCare Live
2007-06-05 10:49 89,253 --a------ C:\WINDOWS\system32\SBFC.dat
2007-06-04 17:14 <DIR> d-------- C:\Program Files\Enigma Software Group
2007-06-04 17:05 2 --a------ C:\WINDOWS\system32\wapisvcc32.exe
2007-05-22 19:25 <DIR> d-------- C:\DOCUME~1\ALLUSE~1\APPLIC~1\Yahoo!
2007-05-17 19:45 4,620 --a------ C:\WINDOWS\XChange.dat
2007-05-11 16:18 <DIR> d-------- C:\Program Files\FantasyGrounds
2007-05-10 20:32 <DIR> d-------- C:\Program Files\zbattle.net

(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))

2007-06-10 14:55:10 18,816 ----a-w C:\DOCUME~1\Owner\APPLIC~1\wklnhst.dat
2007-06-10 14:32:36 761 --sha-w C:\WINDOWS\system32\mmf.sys
2007-06-09 20:45:47 -------- d-----w C:\Program Files\Viewpoint
2007-06-08 19:36:29 -------- d-----w C:\Program Files\Winamp
2007-06-08 14:53:45 -------- d-----w C:\Program Files\IrfanView
2007-06-08 03:00:47 96,256 ----a-w C:\WINDOWS\system32\drivers\sptd8525.sys
2007-06-05 14:46:40 -------- d-----w C:\DOCUME~1\Owner\APPLIC~1\Lavasoft
2007-06-05 14:46:25 -------- d-----w C:\Program Files\Lavasoft
2007-06-05 14:45:52 -------- d-----w C:\Program Files\Common Files\Wise Installation Wizard
2007-06-04 21:04:52 -------- d-----w C:\Program Files\NetBattle
2007-06-02 19:24:54 -------- d-----w C:\Program Files\Infantry
2007-06-01 03:21:34 -------- d-----w C:\Program Files\Soulseek
2007-05-22 19:44:49 -------- d-----w C:\Program Files\Common Files\Blizzard Entertainment
2007-05-22 10:28:49 -------- d-----w C:\Program Files\Bethesda Softworks
2007-05-12 16:45:31 -------- d--h--w C:\Program Files\InstallShield Installation Information
2007-05-12 02:12:19 43,520 ----a-w C:\WINDOWS\system32\CmdLineExt03.dll
2007-04-21 22:09:06 -------- d-----w C:\DOCUME~1\Owner\APPLIC~1\Aim
2007-04-18 16:12:23 2,854,400 ----a-w C:\WINDOWS\system32\msi.dll
2007-03-17 13:43:01 292,864 ----a-w C:\WINDOWS\system32\winsrv.dll
2007-03-16 09:10:51 65,536 ----a-w C:\WINDOWS\IFinst27.exe
2007-03-15 16:23:16 497,496 ----a-w C:\WINDOWS\system32\XceedZip.dll
2007-03-15 16:19:58 526,184 ----a-w C:\WINDOWS\system32\XceedCry.dll

((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))

*Note* empty entries & legit default entries are not shown

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects]
{02478D38-C3F9-4EFB-9B51-7695ECA05670}=C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll [2006-10-26 10:28]
{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}=C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll [2006-01-12 20:38]
{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}=C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll [2007-03-14 03:43]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"LVCOMS"="C:\Program Files\Common Files\Logitech\QCDriver3\LVCOMS.EXE" [2002-12-10 17:54]
"LogitechGalleryRepair"="C:\Program Files\Logitech\ImageStudio\ISStart.exe" [2002-12-10 18:32]
"LogitechImageStudioTray"="C:\Program Files\Logitech\ImageStudio\LogiTray.exe" [2002-12-10 18:31]
"iTunesHelper"="C:\Program Files\iTunes\iTunesHelper.exe" [2006-06-14 16:24]
"WinampAgent"="C:\Program Files\Winamp\winampa.exe" [2006-11-21 13:38]
"OneCareUI"="C:\Program Files\Microsoft Windows OneCare Live\winssnotify.exe" [2007-05-16 09:35]
"SBRegRebootCleaner"="C:\Program Files\Sunbelt Software\CounterSpy\SBRC.exe" []
"Logitech Hardware Abstraction Layer"="KHALMNPR.EXE" [2004-12-10 13:45 C:\WINDOWS\KHALMNPR.Exe]
"SunJavaUpdateSched"="C:\Program Files\Java\jre1.6.0_01\bin\jusched.exe" [2007-03-14 03:43]

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Skype"="C:\Program Files\Skype\Phone\Skype.exe" []
"ctfmon.exe"="C:\WINDOWS\system32\ctfmon.exe" [2004-08-04 03:56]
"updateMgr"="C:\Program Files\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.exe" [2006-03-30 16:45]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\safeboot\minimal\OneCareMP]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^Adobe Reader Speed Launch.lnk]
path=C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Adobe Reader Speed Launch.lnk
backup=C:\WINDOWS\pss\Adobe Reader Speed Launch.lnkCommon Startup

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^Owner^Start Menu^Programs^Startup^BitTorrent.lnk]
path=C:\Documents and Settings\Owner\Start Menu\Programs\Startup\BitTorrent.lnk
backup=C:\WINDOWS\pss\BitTorrent.lnkStartup

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ATICCC]
"C:\Program Files\ATI Technologies\ATI.ACE\cli.exe" runtime -Delay

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CHotkey]
zHotkey.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools]
"C:\Program Files\DAEMON Tools\daemon.exe" -lang 1033

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Microsoft Works Update Detection]
C:\Program Files\Common Files\Microsoft Shared\Works Shared\WkUFind.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Motive SmartBridge]
C:\PROGRA~1\VERIZO~1\SUPPOR~1\SMARTB~1\MotiveSB.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroFilterCheck]
C:\WINDOWS\system32\NeroCheck.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NVMixerTray]
"C:\Program Files\NVIDIA Corporation\NvMixer\NVMixerTray.exe"

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RegistryMechanic]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SFP]
C:\Program Files\Common Files\Verizon Online\SFP\vzSFPWin.EXE /s

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ShowWnd]
ShowWnd.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Steam]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunKistEM]
C:\Program Files\Digital Media Reader\shwiconem.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WinampAgent]
C:\Program Files\Winamp\winampa.exe

HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost *netsvcs*

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{2d7551c4-c601-11da-b804-00044b808003}]
AutoRun\command- J:\OblivionLauncher.exe

Contents of the 'Scheduled Tasks' folder
2007-06-10 14:32:49 C:\WINDOWS\tasks\XoftSpySE 2.job
2007-06-09 07:00:51 C:\WINDOWS\tasks\XoftSpySE.job

**************************************************************************

catchme 0.3.692 W2K/XP/Vista - userland rootkit detector by Gmer, http://www.gmer.net
Rootkit scan 2007-06-10 12:50:22
Windows 5.1.2600 Service Pack 2 NTFS

scanning hidden processes ...

scanning hidden autostart entries ...

scanning hidden files ...

**************************************************************************

Completion time: 2007-06-10 12:51:51
C:\ComboFix-quarantined-files.txt ... 2007-06-10 12:51
C:\ComboFix2.txt ... 2007-06-09 20:33
C:\ComboFix3.txt ... 2007-06-09 15:27

--- E O F ---

I'm running a trial version of OneCare. It's satisfactory for now, but doesn't seem like the greatest thing. I really doubt I'll end up purchasing it.

I don't think I've ever ran kasperky's, but I'm not entirely sure about that.

guestolo · « **Reply #22 on:** June 10, 2007, 01:47:03 PM »

I've never used Windows live one care
So I can't vouch for it, but if you want alternative free firewall and AV

You could try the following
I have recommendations for free Firewall software and AV >>> HERE

ONLY use one AV and Firewall

You could try the following, if inclined
Comodo Firewall has developed a great reputation
From the link I supplied, download Comodo installer to desktop but DON'T install it yet

Access your add/remove programs and remove ALL of Microsoft Windows Live OneCare to ensure AV + Firewall, etc is totally removed
Reboot afterwards or when necessary

Back in Windows, and your happy that One care is removed
Go ahead and install Comodo
Reboot when prompted

Back in Windows
I suggested this AV to another user with these instructions
From the recommendations I supplied in that link
Why not try Active Virus Shield
It's supplied by AOL, don't let that scare you

http://images.thetechguide.com/forum/public/style_emoticons/<#EMO_DIR#>/smile.gif\' class=\'bbc_emoticon\' alt=\'

\' />
It's powered by Kaspersky's which has a solid reputation
Follow these steps if you would like to try it

Go to the link and click on the "Click Here to Download" button
Supply them with a legit Email address>>they will be emailing you an activation code
and then click the Get It Now button
It will prompt to install, but you actually are just saving the installer to your harddrive

Save the .msi installer to your desktop
Install Active Virus Shield from the AVS.msi installer on desktop

NOTE: At the part of the installation to "INSTALL SECURITY TOOLBAR">>>UNTICK this option

When prompt to activate the product, do so immediately, by opening the email they sent you and copy>>paste the activation code to the empty box of the installation window

After installation, reboot only if required, then ensure the program updates, it should automatically

It should prompt to reboot the computer
Do so, on startup it will probably scan your startup objects
and also prompt to run a full scan of your computer, I would take the time to do one
It will prompt you to do this until you have ran your first initial scan

I have a couple other suggestions for this AV
But after you run the scan, reboot one last time and come back here and post a fresh hijackthis log and let me know how things are running please
If you follow the above instructions

Ocyrith · « **Reply #23 on:** June 10, 2007, 04:30:30 PM »

[quote name=\'guestolo\' post=\'338657\' date=\'Jun 10 2007, 12:47 PM\']I've never used Windows live one care
So I can't vouch for it, but if you want alternative free firewall and AV

You could try the following
I have recommendations for free Firewall software and AV >>> HERE

ONLY use one AV and Firewall

You could try the following, if inclined
Comodo Firewall has developed a great reputation
From the link I supplied, download Comodo installer to desktop but DON'T install it yet

Access your add/remove programs and remove ALL of Microsoft Windows Live OneCare to ensure AV + Firewall, etc is totally removed
Reboot afterwards or when necessary

Back in Windows, and your happy that One care is removed
Go ahead and install Comodo
Reboot when prompted

Back in Windows
I suggested this AV to another user with these instructions
From the recommendations I supplied in that link
Why not try Active Virus Shield
It's supplied by AOL, don't let that scare you

http://images.thetechguide.com/forum/public/style_emoticons/<#EMO_DIR#>/smile.gif\' class=\'bbc_emoticon\' alt=\'

\' />
It's powered by Kaspersky's which has a solid reputation
Follow these steps if you would like to try it

Go to the link and click on the "Click Here to Download" button
Supply them with a legit Email address>>they will be emailing you an activation code
and then click the Get It Now button
It will prompt to install, but you actually are just saving the installer to your harddrive

Save the .msi installer to your desktop
Install Active Virus Shield from the AVS.msi installer on desktop

NOTE: At the part of the installation to "INSTALL SECURITY TOOLBAR">>>UNTICK this option

When prompt to activate the product, do so immediately, by opening the email they sent you and copy>>paste the activation code to the empty box of the installation window

After installation, reboot only if required, then ensure the program updates, it should automatically

It should prompt to reboot the computer
Do so, on startup it will probably scan your startup objects
and also prompt to run a full scan of your computer, I would take the time to do one
It will prompt you to do this until you have ran your first initial scan

I have a couple other suggestions for this AV
But after you run the scan, reboot one last time and come back here and post a fresh hijackthis log and let me know how things are running please
If you follow the above instructions[/quote]

Right now AVP is running a full system scan and it looks like it's gonna take quite awhile.

In the mean time!

I restarted my computer after installing it and stuff, and for some reason several things loaded on start-up that never load up. Nothing harmful, just several things that didn't before. Is there any way to fix this?

guestolo · « **Reply #24 on:** June 10, 2007, 05:13:34 PM »

Finish the scan with AVS, let it clean what it finds
Reboot and post a fresh hijackthis log, we'll go from that point

Ocyrith · « **Reply #25 on:** June 11, 2007, 08:12:40 AM »

Sorry for the slow reply!

Here's the HJT logfile after installation of Comodo and that AOL AV.

Logfile of HijackThis v1.99.1
Scan saved at 9:11:23 AM, on 6/11/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16441)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\AOL\Active Virus Shield\avp.exe
C:\Program Files\Comodo\Firewall\cmdagent.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\runservice.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\wwSecure.exe
C:\Program Files\Common Files\Logitech\QCDriver3\LVCOMS.EXE
C:\Program Files\Winamp\winampa.exe
C:\Program Files\Java\jre1.6.0_01\bin\jusched.exe
C:\Program Files\Comodo\Firewall\CPF.exe
C:\Program Files\NVIDIA Corporation\NvMixer\NVMixerTray.exe
C:\PROGRA~1\VERIZO~1\SUPPOR~1\SMARTB~1\MotiveSB.exe
C:\Program Files\Common Files\Microsoft Shared\Works Shared\WkUFind.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\WINDOWS\zHotkey.exe
C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
C:\Program Files\AOL\Active Virus Shield\avp.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
C:\Program Files\Belkin\Nostromo\nost_LM.exe
C:\Program Files\Logitech\SetPoint\SetPoint.exe
C:\Program Files\Common Files\Logitech\KHAL\KHALMNPR.EXE
C:\Program Files\iPod\bin\iPodService.exe
C:\WINDOWS\system32\wuauclt.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
C:\Program Files\AIM\aim.exe
C:\Program Files\Google\Google Talk\googletalk.exe
C:\HJT\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.yahoo.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://us.rd.yahoo.com/customize/ie/defaul...//www.yahoo.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://us.rd.yahoo.com/customize/ie/defaul...rch/search.html
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://us.rd.yahoo.com/customize/ie/defaul...//www.yahoo.com
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = 127.0.0.1
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll
O4 - HKLM\..\Run: [LVCOMS] C:\Program Files\Common Files\Logitech\QCDriver3\LVCOMS.EXE
O4 - HKLM\..\Run: [LogitechGalleryRepair] C:\Program Files\Logitech\ImageStudio\ISStart.exe
O4 - HKLM\..\Run: [LogitechImageStudioTray] C:\Program Files\Logitech\ImageStudio\LogiTray.exe
O4 - HKLM\..\Run: [WinampAgent] C:\Program Files\Winamp\winampa.exe
O4 - HKLM\..\Run: [SBRegRebootCleaner] C:\Program Files\Sunbelt Software\CounterSpy\SBRC.exe
O4 - HKLM\..\Run: [Logitech Hardware Abstraction Layer] KHALMNPR.EXE
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_01\bin\jusched.exe"
O4 - HKLM\..\Run: [COMODO Firewall Pro] "C:\Program Files\Comodo\Firewall\CPF.exe" /background
O4 - HKLM\..\Run: [SunKistEM] C:\Program Files\Digital Media Reader\shwiconem.exe
O4 - HKLM\..\Run: [ShowWnd] ShowWnd.exe
O4 - HKLM\..\Run: [NVMixerTray] "C:\Program Files\NVIDIA Corporation\NvMixer\NVMixerTray.exe"
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [Motive SmartBridge] C:\PROGRA~1\VERIZO~1\SUPPOR~1\SMARTB~1\MotiveSB.exe
O4 - HKLM\..\Run: [Microsoft Works Update Detection] C:\Program Files\Common Files\Microsoft Shared\Works Shared\WkUFind.exe
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [DAEMON Tools] "C:\Program Files\DAEMON Tools\daemon.exe" -lang 1033
O4 - HKLM\..\Run: [CHotkey] zHotkey.exe
O4 - HKLM\..\Run: [ATICCC] "C:\Program Files\ATI Technologies\ATI.ACE\cli.exe" runtime -Delay
O4 - HKLM\..\Run: [aol] "C:\Program Files\AOL\Active Virus Shield\avp.exe"
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [updateMgr] "C:\Program Files\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.exe" AcRdB7_0_8 -reboot 1
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized
O4 - HKCU\..\Run: [SFP] C:\Program Files\Common Files\Verizon Online\SFP\vzSFPWin.EXE /s
O4 - Startup: BitTorrent.lnk = C:\Program Files\BitTorrent\bittorrent.exe
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: Loadout Manager.lnk = C:\Program Files\Belkin\Nostromo\nost_LM.exe
O4 - Global Startup: Logitech Desktop Messenger Agent.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe
O4 - Global Startup: Logitech SetPoint.lnk = C:\Program Files\Logitech\SetPoint\SetPoint.exe
O8 - Extra context menu item: &AOL Toolbar search - res://C:\Program Files\AOL Toolbar\toolbar.dll/SEARCH.HTML
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll
O9 - Extra button: AIM - {AC9E2541-2814-11d5-BC6D-00B0D0A1DE45} - C:\Program Files\AIM\aim.exe
O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\System32\Shdocvw.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O11 - Options group: [INTERNATIONAL] International*
O14 - IERESET.INF: START_PAGE_URL=http://www.emachines.com
O16 - DPF: {040F4385-8DAD-4306-94BF-B8291D841FAE} (USBAPTester Class) - http://www.nintendowifi.com/troubleshooting/usbaptest.cab
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:\Program Files\Yahoo!\Common\yinsthelper.dll
O16 - DPF: {4ED9DDF0-7479-4BBE-9335-5A1EDB1D8A21} - http://download.mcafee.com/molbin/shared/m...01/mcinsctl.cab
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftupdat...b?1135682202093
O16 - DPF: {70BA88C8-DAE8-4CE9-92BB-979C4A75F53B} (GSDACtl Class) - https://www.gamespyid.com/alaunch.cab
O16 - DPF: {9E17A5F9-2B9C-4C66-A592-199A4BA1FBC8} - http://pictures06.aim.com/ygp/aol/plugin/u...AIM.9.5.1.8.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/Messe...nt.cab56907.cab
O18 - Protocol: bw+0 - {1B61FB5C-4DD1-48FC-9ECC-4275E0508EE4} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw+0s - {1B61FB5C-4DD1-48FC-9ECC-4275E0508EE4} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0 - {1B61FB5C-4DD1-48FC-9ECC-4275E0508EE4} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0s - {1B61FB5C-4DD1-48FC-9ECC-4275E0508EE4} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00 - {1B61FB5C-4DD1-48FC-9ECC-4275E0508EE4} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00s - {1B61FB5C-4DD1-48FC-9ECC-4275E0508EE4} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10 - {1B61FB5C-4DD1-48FC-9ECC-4275E0508EE4} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10s - {1B61FB5C-4DD1-48FC-9ECC-4275E0508EE4} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20 - {1B61FB5C-4DD1-48FC-9ECC-4275E0508EE4} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20s - {1B61FB5C-4DD1-48FC-9ECC-4275E0508EE4} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30 - {1B61FB5C-4DD1-48FC-9ECC-4275E0508EE4} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30s - {1B61FB5C-4DD1-48FC-9ECC-4275E0508EE4} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40 - {1B61FB5C-4DD1-48FC-9ECC-4275E0508EE4} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40s - {1B61FB5C-4DD1-48FC-9ECC-4275E0508EE4} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50 - {1B61FB5C-4DD1-48FC-9ECC-4275E0508EE4} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50s - {1B61FB5C-4DD1-48FC-9ECC-4275E0508EE4} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60 - {1B61FB5C-4DD1-48FC-9ECC-4275E0508EE4} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60s - {1B61FB5C-4DD1-48FC-9ECC-4275E0508EE4} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70 - {1B61FB5C-4DD1-48FC-9ECC-4275E0508EE4} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70s - {1B61FB5C-4DD1-48FC-9ECC-4275E0508EE4} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80 - {1B61FB5C-4DD1-48FC-9ECC-4275E0508EE4} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80s - {1B61FB5C-4DD1-48FC-9ECC-4275E0508EE4} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90 - {1B61FB5C-4DD1-48FC-9ECC-4275E0508EE4} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90s - {1B61FB5C-4DD1-48FC-9ECC-4275E0508EE4} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0 - {1B61FB5C-4DD1-48FC-9ECC-4275E0508EE4} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0s - {1B61FB5C-4DD1-48FC-9ECC-4275E0508EE4} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0 - {1B61FB5C-4DD1-48FC-9ECC-4275E0508EE4} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0s - {1B61FB5C-4DD1-48FC-9ECC-4275E0508EE4} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0 - {1B61FB5C-4DD1-48FC-9ECC-4275E0508EE4} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0s - {1B61FB5C-4DD1-48FC-9ECC-4275E0508EE4} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0 - {1B61FB5C-4DD1-48FC-9ECC-4275E0508EE4} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0s - {1B61FB5C-4DD1-48FC-9ECC-4275E0508EE4} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0 - {1B61FB5C-4DD1-48FC-9ECC-4275E0508EE4} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0s - {1B61FB5C-4DD1-48FC-9ECC-4275E0508EE4} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0 - {1B61FB5C-4DD1-48FC-9ECC-4275E0508EE4} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0s - {1B61FB5C-4DD1-48FC-9ECC-4275E0508EE4} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O18 - Protocol: bwg0 - {1B61FB5C-4DD1-48FC-9ECC-4275E0508EE4} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwg0s - {1B61FB5C-4DD1-48FC-9ECC-4275E0508EE4} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0 - {1B61FB5C-4DD1-48FC-9ECC-4275E0508EE4} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0s - {1B61FB5C-4DD1-48FC-9ECC-4275E0508EE4} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0 - {1B61FB5C-4DD1-48FC-9ECC-4275E0508EE4} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0s - {1B61FB5C-4DD1-48FC-9ECC-4275E0508EE4} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0 - {1B61FB5C-4DD1-48FC-9ECC-4275E0508EE4} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0s - {1B61FB5C-4DD1-48FC-9ECC-4275E0508EE4} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0 - {1B61FB5C-4DD1-48FC-9ECC-4275E0508EE4} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0s - {1B61FB5C-4DD1-48FC-9ECC-4275E0508EE4} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0 - {1B61FB5C-4DD1-48FC-9ECC-4275E0508EE4} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0s - {1B61FB5C-4DD1-48FC-9ECC-4275E0508EE4} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0 - {1B61FB5C-4DD1-48FC-9ECC-4275E0508EE4} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0s - {1B61FB5C-4DD1-48FC-9ECC-4275E0508EE4} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0 - {1B61FB5C-4DD1-48FC-9ECC-4275E0508EE4} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0s - {1B61FB5C-4DD1-48FC-9ECC-4275E0508EE4} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0 - {1B61FB5C-4DD1-48FC-9ECC-4275E0508EE4} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0s - {1B61FB5C-4DD1-48FC-9ECC-4275E0508EE4} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0 - {1B61FB5C-4DD1-48FC-9ECC-4275E0508EE4} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0s - {1B61FB5C-4DD1-48FC-9ECC-4275E0508EE4} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0 - {1B61FB5C-4DD1-48FC-9ECC-4275E0508EE4} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0s - {1B61FB5C-4DD1-48FC-9ECC-4275E0508EE4} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0 - {1B61FB5C-4DD1-48FC-9ECC-4275E0508EE4} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0s - {1B61FB5C-4DD1-48FC-9ECC-4275E0508EE4} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0 - {1B61FB5C-4DD1-48FC-9ECC-4275E0508EE4} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0s - {1B61FB5C-4DD1-48FC-9ECC-4275E0508EE4} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0 - {1B61FB5C-4DD1-48FC-9ECC-4275E0508EE4} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0s - {1B61FB5C-4DD1-48FC-9ECC-4275E0508EE4} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0 - {1B61FB5C-4DD1-48FC-9ECC-4275E0508EE4} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0s - {1B61FB5C-4DD1-48FC-9ECC-4275E0508EE4} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0 - {1B61FB5C-4DD1-48FC-9ECC-4275E0508EE4} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0s - {1B61FB5C-4DD1-48FC-9ECC-4275E0508EE4} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0 - {1B61FB5C-4DD1-48FC-9ECC-4275E0508EE4} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0s - {1B61FB5C-4DD1-48FC-9ECC-4275E0508EE4} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0 - {1B61FB5C-4DD1-48FC-9ECC-4275E0508EE4} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0s - {1B61FB5C-4DD1-48FC-9ECC-4275E0508EE4} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0 - {1B61FB5C-4DD1-48FC-9ECC-4275E0508EE4} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0s - {1B61FB5C-4DD1-48FC-9ECC-4275E0508EE4} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0 - {1B61FB5C-4DD1-48FC-9ECC-4275E0508EE4} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0s - {1B61FB5C-4DD1-48FC-9ECC-4275E0508EE4} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: offline-8876480 - {1B61FB5C-4DD1-48FC-9ECC-4275E0508EE4} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O20 - Winlogon Notify: klogon - C:\WINDOWS\system32\klogon.dll
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: Active Virus Shield (AVP) - Unknown owner - C:\Program Files\AOL\Active Virus Shield\avp.exe" -r (file missing)
O23 - Service: Comodo Application Agent (CmdAgent) - COMODO - C:\Program Files\Comodo\Firewall\cmdagent.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iPodService - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: LicCtrl Service (LicCtrlService) - Unknown owner - C:\WINDOWS\runservice.exe
O23 - Service: Washer Security Access (wwSecSvc) - Webroot Software, Inc. - C:\WINDOWS\system32\wwSecure.exe

guestolo · « **Reply #26 on:** June 18, 2007, 09:07:17 AM »

Sorry about not returning to this thread Ocyrith
How is everything running on your end now?

TheTechGuide Forum

News:

Author Topic: Getting random pop-up links from CVC or something. (Read 2664 times)

guestolo

Getting random pop-up links from CVC or something.

Ocyrith

Getting random pop-up links from CVC or something.

guestolo

Getting random pop-up links from CVC or something.

Ocyrith

Getting random pop-up links from CVC or something.

guestolo

Getting random pop-up links from CVC or something.

Ocyrith

Getting random pop-up links from CVC or something.

guestolo

Getting random pop-up links from CVC or something.