[Resolved] Hijackers eliminated now more problems.

I have been working on one of my wifes friends PC. Ran Shredder, AdAware and SpyBot Search and Destroy. Shredder indicated the system was clean adaware and spy bot search and destroy found a little over 300 different malware, hijackers and spyware on the system. Removed all of the indicated problems. The problem now is you cannot access the net using MSN browser, IE, Windows explorer or control panel. In addition ctrl-alt-del will not bring up task manager. I will try to post HJT if some one can tell me how to install and run it from the disk I downloaded it to. I am almost certain that I saw P2P networking on the system so I am not to confident on Shredder saying the system was clean. When I started trouble shooting the system had no virus protection active and no firewall with a dsl line. System now has McAffee virus scan and Firewall. Please let me know how to run the HJT from the disk and I'll post the results. Thanks.

 

First let's try running LspFix to see if we can restore the internet connection. LspFix will fit on a floppy disk. You can put it on a floppy and run it on the affected machine.

Click here to download LspFix

Launch the application, and click the "I know what I'm doing" checkbox. (Don't do anything else)

Then click Finish.

 

Downloaded file to disk. Will I need a run command to use this in her machine. Also her system is using DSL will this affect its functioning?

 

You don't need a Run command and no it doesn't matter that it's DSL.

 

Thanks, I will run this and see what happens from there. Might take a while as she lives on the other side of town. Will bump this on return.

 

Ran the LSPfix with no joy. Managed to run HJT here are the results, ran it from disk and saved results in notepad to floppy.

Logfile of HijackThis v1.97.7
Scan saved at 6:36:52 PM, on 4/6/04
Platform: Windows 98 Gold (Win9x 4.10.1998)
MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106)

Running processes:
C:\WINDOWS\SYSTEM\KERNEL32.DLL
C:\WINDOWS\SYSTEM\MSGSRV32.EXE
C:\WINDOWS\SYSTEM\MPREXE.EXE
C:\WINDOWS\SYSTEM\mmtask.tsk
C:\PROGRAM FILES\COMMON FILES\EPSON\EBAPI\SAGENT2.EXE
C:\WINDOWS\SYSTEM\MSTASK.EXE
C:\PROGRAM FILES\MCAFEE.COM\VSO\MCVSRTE.EXE
C:\PROGRAM FILES\MCAFEE\MCAFEE PRIVACY SERVICE\GUARDDOG.EXE
C:\PROGRAM FILES\MCAFEE\MCAFEE PRIVACY SERVICE\GUARDDOG.EXE
C:\WINDOWS\EXPLORER.EXE
C:\WINDOWS\SYSTEM\TAPISRV.EXE
C:\WINDOWS\TASKMON.EXE
C:\WINDOWS\SYSTEM\SYSTRAY.EXE
C:\WINDOWS\CLMPANEL.EXE
C:\MTMSE\CONFIG32.EXE
C:\MTMSE\XPOINT32.EXE
C:\MTMSE\PAGEICON.EXE
C:\MTMSE\XWHEEL.EXE
C:\WINDOWS\SYSTEM\SPOOL32.EXE
C:\PROGRAM FILES\HEWLETT-PACKARD\HP SHARE-TO-WEB\HPGS2WND.EXE
C:\WINDOWS\SYSTEM\STIMON.EXE
C:\PROGRAM FILES\HEWLETT-PACKARD\HP SHARE-TO-WEB\HPGS2WNF.EXE
C:\WINDOWS\SYSTEM\LVCOMS.EXE
C:\WINDOWS\LOADQM.EXE
C:\WINDOWS\WDSKCTL.EXE
C:\WINDOWS\SYSTEM\E_S10IC1.EXE
C:\PROGRAM FILES\MCAFEE\SPAMKILLER\MSKSRVR.EXE
C:\PROGRAM FILES\MCAFEE\SPAMKILLER\MSKAGENT.EXE
C:\PROGRAM FILES\MCAFEE\MCAFEE SHARED COMPONENTS\GUARDIAN\CMGRDIAN.EXE
C:\PROGRAM FILES\MCAFEE.COM\AGENT\MCAGENT.EXE
C:\PROGRAM FILES\MCAFEE.COM\VSO\MCVSSHLD.EXE
C:\PROGRAM FILES\MCAFEE.COM\VSO\MCVSESCN.EXE
C:\PROGRAM FILES\MCAFEE.COM\PERSONAL FIREWALL\MPFTRAY.EXE
C:\PROGRAM FILES\MSN MESSENGER\MSNMSGR.EXE
C:\PROGRAM FILES\REALITY FUSION\REALITY FUSION GAMECAM SE\PROGRAM\RFTRAY.EXE
C:\PROGRAM FILES\WINZIP\WZQKPICK.EXE
C:\WINDOWS\SYSTEM\DDHELP.EXE
C:\PROGRAM FILES\MCAFEE.COM\VSO\MCVSFTSN.EXE
C:\PROGRAM FILES\MCAFEE.COM\PERSONAL FIREWALL\MPFAGENT.EXE
D:\HIJACKTHIS.EXE
C:\WINDOWS\NOTEPAD.EXE

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://prosearching.com/searchbar.html
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://prosearching.com/searchbar.html
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.yahoo.com/
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://home.hitter.net
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = about:blank
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Microsoft Internet Explorer provided by EarthLink
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = about:blank
O2 - BHO: (no name) - {F2CDC196-8DDA-7FE4-FD03-202D0BD109B6} - C:\PROGRAM FILES\BAIT ONE\ROAM COMP.DLL (file missing)
O2 - BHO: McAfee Privacy Service - {cc4b2ee5-4803-11d7-8a38-00b0d0c6b814} - C:\PROGRAM FILES\MCAFEE\MCAFEE PRIVACY SERVICE\GDIEHELP.DLL
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHELPER.DLL
O3 - Toolbar: lite coal - {739C29E4-C190-7C40-D21F-FB110013E638} - C:\PROGRAM FILES\BAIT ONE\ROAM COMP.DLL (file missing)
O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\SYSTEM\MSDXM.OCX
O3 - Toolbar: McAfee VirusScan - {BA52B914-B692-46c4-B683-905236F6F655} - C:\PROGRAM FILES\MCAFEE.COM\VSO\MCVSSHL.DLL
O4 - HKLM\..\Run: [ScanRegistry] C:\WINDOWS\scanregw.exe /autorun
O4 - HKLM\..\Run: [TaskMonitor] C:\WINDOWS\taskmon.exe
O4 - HKLM\..\Run: [SystemTray] SysTray.Exe
O4 - HKLM\..\Run: [CLMFrontPanel] clmpanel /i
O4 - HKLM\..\Run: [Mtmse.Config32] C:\Mtmse\Config32.exe MTMSED
O4 - HKLM\..\Run: [Mtmse.PageIcon] C:\Mtmse\PageIcon.exe Software\LCS\{90C3F540-5485-11D1-AC67-00000500480A}
O4 - HKLM\..\Run: [Mtmse.XWHEEL] C:\Mtmse\XWHEEL.exe
O4 - HKLM\..\Run: [LexmarkPrinTray] PrinTray.exe
O4 - HKLM\..\Run: [ConMgr.exe] "C:\PROGRAM FILES\EARTHLINK 5.0\CONMGR.EXE"
O4 - HKLM\..\Run: [AccessRampMonitor] "C:\Program Files\EarthLink\FastLane\ARMon32.exe"
O4 - HKLM\..\Run: [UpdateMgr.exe] "C:\PROGRAM FILES\EARTHLINK 5.0\UPDATEMGR.EXE" /NOCM
O4 - HKLM\..\Run: [HPDJ Taskbar Utility] C:\WINDOWS\SYSTEM\hpztsb05.exe
O4 - HKLM\..\Run: [Share-to-Web Namespace Daemon] C:\Program Files\Hewlett-Packard\HP Share-to-Web\hpgs2wnd.exe
O4 - HKLM\..\Run: [Bart Station] C:\Program Files\ISP50\hta\station.sbrt
O4 - HKLM\..\Run: [StillImageMonitor] C:\WINDOWS\SYSTEM\STIMON.EXE
O4 - HKLM\..\Run: [DXM6Patch_981116] C:\WINDOWS\p_981116.exe /Q:A
O4 - HKLM\..\Run: [LVComs] C:\WINDOWS\SYSTEM\LVComS.exe
O4 - HKLM\..\Run: [LoadQM] loadqm.exe
O4 - HKLM\..\Run: [Grokster] C:\PROGRAM FILES\GROKSTER\GROKSTER.EXE /SYSTRAY
O4 - HKLM\..\Run: [wdskctl] C:\WINDOWS\wdskctl.exe
O4 - HKLM\..\Run: [DTWGKAU] C:\WINDOWS\DTWGKAU.exe
O4 - HKLM\..\Run: [EPSON Stylus C42 Series] C:\WINDOWS\SYSTEM\E_S10IC1.EXE /P23 "EPSON Stylus C42 Series" /O5 "LPT1:" /M "Stylus C42"
O4 - HKLM\..\Run: [LoadPowerProfile] Rundll32.exe powrprof.dll,LoadCurrentPwrScheme
O4 - HKLM\..\Run: [MCUpdateExe] C:\PROGRA~1\MCAFEE.COM\AGENT\MCUPDATE.EXE
O4 - HKLM\..\Run: [MSKServerExe] C:\Program Files\McAfee\SpamKiller\MSKSrvr.exe
O4 - HKLM\..\Run: [MSKAGENTEXE] C:\PROGRA~1\MCAFEE\SPAMKI~1\MSKAGENT.EXE
O4 - HKLM\..\Run: [VSOCheckTask] "C:\PROGRA~1\MCAFEE.COM\VSO\MCMNHDLR.EXE" /checktask
O4 - HKLM\..\Run: [McAfee Guardian] C:\Program Files\McAfee\McAfee Shared Components\Guardian\CMGrdian.exe /SU
O4 - HKLM\..\Run: [MCAgentExe] C:\PROGRA~1\MCAFEE.COM\AGENT\mcagent.exe
O4 - HKLM\..\Run: [VirusScan Online] "C:\PROGRA~1\MCAFEE.COM\VSO\mcvsshld.exe"
O4 - HKLM\..\Run: [MSKDetectorExe] C:\PROGRA~1\MCAFEE\SPAMKI~1\MSKDETCT.EXE /startup
O4 - HKLM\..\Run: [MPFTray] C:\PROGRA~1\MCAFEE.COM\PERSON~1\MPFTRAY.EXE
O4 - HKLM\..\Run: [CriticalUpdate] C:\WINDOWS\SYSTEM\wucrtupd.exe -startup
O4 - HKLM\..\RunServices: [MSNIA] C:\PROGRA~1\MSN\MSNIA\MSNIASVC.EXE
O4 - HKLM\..\RunServices: [SAgent2ExePath] C:\Program Files\Common Files\EPSON\EBAPI\SAgent2.exe
O4 - HKLM\..\RunServices: [LoadPowerProfile] Rundll32.exe powrprof.dll,LoadCurrentPwrScheme
O4 - HKLM\..\RunServices: [SchedulingAgent] mstask.exe
O4 - HKLM\..\RunServices: [McVsRte] C:\PROGRA~1\MCAFEE.COM\VSO\mcvsrte.exe /embedding
O4 - HKLM\..\RunServices: [GuardDogEXE] "C:\PROGRAM FILES\MCAFEE\MCAFEE PRIVACY SERVICE\GUARDDOG.EXE" /SERVICE
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
O4 - Startup: Reality Fusion GameCam SE.lnk = C:\Program Files\Reality Fusion\Reality Fusion GameCam SE\Program\RFTRay.exe
O4 - Startup: WinZip Quick Pick.lnk = C:\Program Files\WinZip\WZQKPICK.EXE
O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O8 - Extra context menu item: Web Rebates - file://C:\Program Files\WebRebates\System\Temp\topr1150_script0.htm
O9 - Extra button: Yahoo! Messenger (HKLM)
O9 - Extra 'Tools' menuitem: Yahoo! Messenger (HKLM)
O9 - Extra button: Privacy Bar (HKLM)
O16 - DPF: {C2FCEF52-ACE9-11D3-BEBD-00105AA9B6AE} (Symantec RuFSI Registry Information Class) - http://security2.norton.com/us/sa/common/common/bin/cabsa.cab
O16 - DPF: {41F17733-B041-4099-A042-B518BB6A408C} - http://a224.g.akamai.net/7/224/52/2...apple.com/qt503/us/win/QuickTimeInstaller.exe
O16 - DPF: {34805D32-AD89-469E-8503-A5666AEE4333} (RdxIE Class) - http://207.188.25.43/21ca625906f971a28b01/netzip/RdxIE.cab
O16 - DPF: {166B1BCA-3F9C-11CF-8075-444553540000} (Macromedia Shockwave Director Control) - http://download.macromedia.com/pub/shockwave/cabs/director/sw.cab
O16 - DPF: {0E5F0222-96B9-11D3-8997-00104BD12D94} (sys Class) - http://www.pcpitstop.com/pcpitstop/PCPitStop.CAB
O16 - DPF: {DF780F87-FF2B-4DF8-92D0-73DB16A1543A} (PopCapLoader Object) - http://zone.msn.com/bingame/zuma/default/popcaploader_v5.cab
O16 - DPF: {F54C1137-5E34-4B95-95A5-BA56D4D8D743} (Secure Delivery) - http://www.gamespot.com/KDX22/download/kdx.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab
O16 - DPF: {4ED9DDF0-7479-4BBE-9335-5A1EDB1D8A21} (McAfee.com Operating System Class) - http://bin.mcafee.com/molbin/shared/mcinsctl/en-us/4,0,0,81/mcinsctl.cab
O16 - DPF: {BCC0FF27-31D9-4614-A68E-C18E1ADA4389} (DwnldGroupMgr Class) - http://bin.mcafee.com/molbin/shared/mcgdmgr/en-us/1,0,0,19/mcgdmgr.cab
O16 - DPF: {9F1C11AA-197B-4942-BA54-47A8489BB47F} (Update Class) - http://v4.windowsupdate.microsoft.com/CAB/x86/ansi/iuctl.CAB?38081.8218518519

Let me know how to proceed from here. I know I saw some dubious lines in there. Thanks for being patient.

 

The best thing to do right now is to try to restore the internet connection. There have been some problems lately with Adaware removing Webhancer and SahAgent and causing loss on internet connection. Go to the Adaware 6 folder in C:\Program Files and look for a folder called Logs. Open that folder and locate the log file for this most recent fix you did with Adaware. Copy and paste the contents of that log here. We'll see if we can determine what caused the problem. I suspect that it was either Webhancer or SahAgent.

 

Here is the adaware log as requested. This is the most recent scan.

Lavasoft Ad-aware Personal Build 6.181
Logfile created on :Tuesday, April 06, 2004 4:04:58 PM
Created with Ad-aware Personal, free for private use.
Using reference-file :01R279 31.03.2004
______________________________________________________

Reffile status:
=========================
Reference file loaded:
Reference Number : 01R279 31.03.2004
Internal build : 207
File location : C:\PROGRAM FILES\LAVASOFT\AD-AWARE 6\reflist.ref
Total size : 1010390 Bytes
Signature data size : 992994 Bytes
Reference data size : 17332 Bytes
Signatures total : 22327
Target categories : 10
Target families : 470

Memory + processor status:
==========================
Number of processors : 1
Processor architecture : Intel Pentium III
Memory available:0 %
Total physical memory:130524 kb
Available physical memory:1912 kb
Total page file size:1966624 kb
Available on page file:1788492 kb
Total virtual memory:2093056 kb
Available virtual memory:2032704 kb
OS:Windows (98)

Ad-aware Settings
=========================
Set : Activate in-depth scan (Recommended)
Set : Safe mode (always request confirmation)
Set : Scan active processes
Set : Scan registry
Set : Deep scan registry
Set : Scan my IE Favorites for banned URLs
Set : Scan within archives
Set : Scan my Hosts file


4-6-04 4:04:58 PM - Scan started. (Custom mode)

Listing running processes
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯

#:1 [kernel32.dll]
FilePath : C:\WINDOWS\SYSTEM\
ProcessID : 4279212737
Threads : 4
Priority : High
FileSize : 460 KB
FileVersion : 4.10.1998
ProductVersion : 4.10.1998
Copyright : Copyright (C) Microsoft Corp. 1991-1998
CompanyName : Microsoft Corporation
FileDescription : Win32 Kernel core component
InternalName : KERNEL32
OriginalFilename : KERNEL32.DLL
ProductName : Microsoft(R) Windows(R) Operating System
Created on : 3/25/04 5:08:27 PM
Last accessed : 4/6/04 4:00:00 AM
Last modified : 5/11/98 11:01:00 PM

#:2 [msgsrv32.exe]
FilePath : C:\WINDOWS\SYSTEM\
ProcessID : 4294962769
Threads : 1
Priority : Normal
FileSize : 11 KB
FileVersion : 4.10.1998
ProductVersion : 4.10.1998
Copyright : Copyright (C) Microsoft Corp. 1992-1998
CompanyName : Microsoft Corporation
FileDescription : Windows 32-bit VxD Message Server
InternalName : MSGSRV32
OriginalFilename : MSGSRV32.EXE
ProductName : Microsoft(R) Windows(R) Operating System
Created on : 3/25/04 5:09:10 PM
Last accessed : 4/6/04 4:00:00 AM
Last modified : 5/11/98 11:01:00 PM

#:3 [spool32.exe]
FilePath : C:\WINDOWS\SYSTEM\
ProcessID : 4294960713
Threads : 2
Priority : Normal
FileSize : 44 KB
FileVersion : 4.10.1998
ProductVersion : 4.10.1998
Copyright : Copyright (C) Microsoft Corp. 1994 - 1998
CompanyName : Microsoft Corporation
FileDescription : Spooler Sub System Process
InternalName : spool32
OriginalFilename : spool32.exe
ProductName : Microsoft(R) Windows(R) Operating System
Created on : 3/25/04 5:09:16 PM
Last accessed : 4/6/04 4:00:00 AM
Last modified : 5/11/98 11:01:00 PM

#:4 [mprexe.exe]
FilePath : C:\WINDOWS\SYSTEM\
ProcessID : 4294956185
Threads : 1
Priority : Normal
FileSize : 28 KB
FileVersion : 4.10.1998
ProductVersion : 4.10.1998
Copyright : Copyright (C) Microsoft Corp. 1993-1998
CompanyName : Microsoft Corporation
FileDescription : WIN32 Network Interface Service Process
InternalName : MPREXE
OriginalFilename : MPREXE.EXE
ProductName : Microsoft(R) Windows(R) Operating System
Created on : 3/25/04 5:09:10 PM
Last accessed : 4/6/04 4:00:00 AM
Last modified : 5/11/98 11:01:00 PM

#:5 [sagent2.exe]
FilePath : C:\PROGRAM FILES\COMMON FILES\EPSON\EBAPI\
ProcessID : 4294867009
Threads : 9
Priority : Normal
FileSize : 88 KB
FileVersion : 2, 2, 0, 0
ProductVersion : 1, 0, 0, 0
Copyright : Copyright (C) SEIKO EPSON CORP. 2000-2001
CompanyName : SEIKO EPSON CORPORATION
FileDescription : EPSON Printer Status Agent
InternalName : SAgent2
OriginalFilename : SAgent2.exe
ProductName : EPSON Bidirectional Printer
Created on : 3/20/04 5:26:14 AM
Last accessed : 4/6/04 4:00:00 AM
Last modified : 10/25/01 6:02:00 AM

#:6 [mstask.exe]
FilePath : C:\WINDOWS\SYSTEM\
ProcessID : 4294896261
Threads : 3
Priority : Normal
FileSize : 116 KB
FileVersion : 4.71.1769.1
ProductVersion : 4.71.1769.1
Copyright : Copyright (C) Microsoft Corp. 1997
CompanyName : Microsoft Corporation
FileDescription : Task Scheduler Engine
InternalName : TaskScheduler
OriginalFilename : mstask.exe
ProductName : Microsoft
Created on : 3/25/04 5:09:11 PM
Last accessed : 4/6/04 4:00:00 AM
Last modified : 5/11/98 11:01:00 PM

#:7 [mcvsrte.exe]
FilePath : C:\PROGRAM FILES\MCAFEE.COM\VSO\
ProcessID : 4294895277
Threads : 2
Priority : Normal
FileSize : 104 KB
FileVersion : 8, 0, 0, 12
ProductVersion : 8, 0, 0, 0
Copyright : Copyright
CompanyName : Networks Associates Technology, Inc
FileDescription : McAfee VirusScan Real-time Engine
InternalName : mcvsrte
OriginalFilename : mcvsrte.exe
ProductName : McAfee VirusScan
Created on : 8/8/03 10:04:38 PM
Last accessed : 4/6/04 4:00:00 AM
Last modified : 8/8/03 10:04:38 PM

#:8 [guarddog.exe]
FilePath : C:\PROGRAM FILES\MCAFEE\MCAFEE PRIVACY SERVICE\
ProcessID : 4294891233
Threads : 20
Priority : Normal
FileSize : 77 KB
FileVersion : 6.01.6000.0
ProductVersion : 6.01.6000.0
Copyright : Copyright
CompanyName : Network Associates, Inc.
FileDescription : McAfee Privacy Service Application
InternalName : IG32
OriginalFilename : GUARDDOG.EXE
ProductName : McAfee Privacy Service
Created on : 11/3/67 9:13:48 PM
Last accessed : 4/6/04 4:00:00 AM
Last modified : 11/3/67 9:13:48 PM

#:9 [mmtask.tsk]
FilePath : C:\WINDOWS\SYSTEM\
ProcessID : 4294829409
Threads : 1
Priority : Normal
FileSize : 1 KB
FileVersion : 4.03.1998
ProductVersion : 4.03.1998
Copyright : Copyright
CompanyName : Microsoft Corporation
FileDescription : Multimedia background task support module
InternalName : mmtask.tsk
OriginalFilename : mmtask.tsk
ProductName : Microsoft Windows
Created on : 3/25/04 5:10:04 PM
Last accessed : 4/6/04 4:00:00 AM
Last modified : 5/11/98 11:01:00 PM

#:10 [tapisrv.exe]
FilePath : C:\WINDOWS\SYSTEM\
ProcessID : 4294740385
Threads : 5
Priority : Normal
FileSize : 120 KB
FileVersion : 4.10.1998
ProductVersion : 4.10.1998
Copyright : Copyright (C) Microsoft Corp. 1994-1998
CompanyName : Microsoft Corporation
FileDescription : Microsoft
InternalName : Telephony Service
OriginalFilename : TAPISRV.EXE
ProductName : Microsoft(R) Windows(R) Operating System
Created on : 3/25/04 5:09:17 PM
Last accessed : 4/6/04 4:00:00 AM
Last modified : 5/11/98 11:01:00 PM

#:11 [guarddog.exe]
FilePath : C:\PROGRAM FILES\MCAFEE\MCAFEE PRIVACY SERVICE\
ProcessID : 4294652449
Threads : 4
Priority : Normal
FileSize : 77 KB
FileVersion : 6.01.6000.0
ProductVersion : 6.01.6000.0
Copyright : Copyright
CompanyName : Network Associates, Inc.
FileDescription : McAfee Privacy Service Application
InternalName : IG32
OriginalFilename : GUARDDOG.EXE
ProductName : McAfee Privacy Service
Created on : 11/3/67 9:13:48 PM
Last accessed : 4/6/04 4:00:00 AM
Last modified : 11/3/67 9:13:48 PM

#:12 [explorer.exe]
FilePath : C:\WINDOWS\
ProcessID : 4294671133
Threads : 16
Priority : Normal
FileSize : 176 KB
FileVersion : 4.72.3110.1
ProductVersion : 4.72.3110.1
Copyright : Copyright (C) Microsoft Corp. 1981-1997
CompanyName : Microsoft Corporation
FileDescription : Windows Explorer
InternalName : explorer
OriginalFilename : EXPLORER.EXE
ProductName : Microsoft(R) Windows NT(R) Operating System
Created on : 3/25/04 5:09:06 PM
Last accessed : 4/6/04 4:00:00 AM
Last modified : 5/11/98 11:01:00 PM

#:13 [taskmon.exe]
FilePath : C:\WINDOWS\
ProcessID : 4294588493
Threads : 1
Priority : Normal
FileSize : 28 KB
FileVersion : 4.10.1998
ProductVersion : 4.10.1998
Copyright : Copyright (C) Microsoft Corp. 1998
CompanyName : Microsoft Corporation
FileDescription : Task Monitor
InternalName : TaskMon
OriginalFilename : TASKMON.EXE
ProductName : Microsoft(R) Windows(R) Operating System
Created on : 3/25/04 5:09:18 PM
Last accessed : 4/6/04 4:00:00 AM
Last modified : 5/11/98 11:01:00 PM

#:14 [systray.exe]
FilePath : C:\WINDOWS\SYSTEM\
ProcessID : 4294583909
Threads : 1
Priority : Normal
FileSize : 36 KB
FileVersion : 4.10.1998
ProductVersion : 4.10.1998
Copyright : Copyright (C) Microsoft Corp. 1993-1998
CompanyName : Microsoft Corporation
FileDescription : System Tray Applet
InternalName : SYSTRAY
OriginalFilename : SYSTRAY.EXE
ProductName : Microsoft(R) Windows(R) Operating System
Created on : 3/25/04 5:09:17 PM
Last accessed : 4/6/04 4:00:00 AM
Last modified : 5/11/98 11:01:00 PM

#:15 [clmpanel.exe]
FilePath : C:\WINDOWS\
ProcessID : 4294574205
Threads : 1
Priority : Normal
FileSize : 63 KB
FileVersion : 1.00.950
ProductVersion : Version 1.0
Copyright : Copyright
CompanyName : Cirrus Logic, Inc.
FileDescription : CLM Status Utility
InternalName : CLMPANEL (Written by Scott Deans)
OriginalFilename : CLMPANEL.EXE
ProductName : Cirrus CLM Front Panel
Created on : 9/2/99 2:14:53 PM
Last accessed : 4/6/04 4:00:00 AM
Last modified : 5/18/99 1:58:24 PM

#:16 [config32.exe]
FilePath : C:\MTMSE\
ProcessID : 4294601105
Threads : 1
Priority : Normal
FileSize : 34 KB
FileVersion : 1.01.02.000
ProductVersion : 1.12
Copyright : Copyright (C) LCS/Telegraphics 1999
CompanyName : LCS/Telegraphics
FileDescription : Config32 XMouse configuration app
InternalName : Config32
OriginalFilename : Config32.exe
ProductName : Pointing Device Drivers
Created on : 9/2/99 2:20:06 PM
Last accessed : 4/6/04 4:00:00 AM
Last modified : 4/23/99 5:10:00 AM

#:17 [pageicon.exe]
FilePath : C:\MTMSE\
ProcessID : 4294595861
Threads : 1
Priority : Normal
FileSize : 27 KB
FileVersion : 1.00
ProductVersion : 1.00
Copyright : Copyright (C) LCS/Telegraphics 1998
CompanyName : LCS/Telegraphics
FileDescription : PageIcon executable
InternalName : PAGEICON
OriginalFilename : PAGEICON.EXE
ProductName : Pointing Device Drivers
Created on : 9/2/99 2:20:10 PM
Last accessed : 4/6/04 4:00:00 AM
Last modified : 4/23/99 5:10:00 AM

#:18 [xpoint32.exe]
FilePath : C:\MTMSE\
ProcessID : 4294594361
Threads : 1
Priority : Normal
FileSize : 109 KB
FileVersion : 1.00.01.008
ProductVersion : 1.00
Copyright : Copyright (C) LCS/Telegraphics. 1996-1998
CompanyName : LCS/Telegraphics
FileDescription : XPoint32 COM Object Local Server
InternalName : XPoint32
OriginalFilename : XPoint32.exe
ProductName : Pointing Device Drivers
Created on : 9/2/99 2:20:13 PM
Last accessed : 4/6/04 4:00:00 AM
Last modified : 4/23/99 5:10:00 AM

#:19 [xwheel.exe]
FilePath : C:\MTMSE\
ProcessID : 4294620821
Threads : 1
Priority : Normal
FileSize : 27 KB
FileVersion : 1.00
ProductVersion : 1.00
Copyright : Copyright (C) LCS/Telegraphics 1998
CompanyName : LCS/Telegraphics
FileDescription : XWheel
InternalName : XWheel
OriginalFilename : XWheel.exe
ProductName : Pointing Device Drivers
Created on : 9/2/99 2:20:15 PM
Last accessed : 4/6/04 4:00:00 AM
Last modified : 4/23/99 5:10:00 AM

#:20 [hpgs2wnd.exe]
FilePath : C:\PROGRAM FILES\HEWLETT-PACKARD\HP SHARE-TO-WEB\
ProcessID : 4294574405
Threads : 3
Priority : Normal
FileSize : 68 KB
FileVersion : 2,3,0,0\
ProductVersion : 2,3,0,0\
Copyright : Copyright
CompanyName : Hewlett-Packard
FileDescription : hpgs2wnd
InternalName : hpgs2wnd
OriginalFilename : hpgs2wnd.exe
ProductName : Hewlett-Packard hpgs2wnd
Created on : 4/11/02 8:19:34 AM
Last accessed : 4/6/04 4:00:00 AM
Last modified : 4/11/02 8:19:34 AM

#:21 [hpgs2wnf.exe]
FilePath : C:\PROGRAM FILES\HEWLETT-PACKARD\HP SHARE-TO-WEB\
ProcessID : 4294678121
Threads : 2
Priority : Normal
FileSize : 76 KB
FileVersion : 2, 6, 0,
ProductVersion : 2, 6, 0,
Copyright : Copyright 2001
FileDescription : hpgs2wnf Module
InternalName : hpgs2wnf
OriginalFilename : hpgs2wnf.EXE
ProductName : hpgs2wnf Module
Created on : 4/11/02 8:19:36 AM
Last accessed : 4/6/04 4:00:00 AM
Last modified : 4/11/02 8:19:36 AM

#:22 [stimon.exe]
FilePath : C:\WINDOWS\SYSTEM\
ProcessID : 4294609469
Threads : 3
Priority : Normal
FileSize : 112 KB
FileVersion : 4.10.1998
ProductVersion : 4.10.1998
Copyright : Copyright (C) Microsoft Corp. 1996-1998
CompanyName : Microsoft Corporation
FileDescription : Still Image Devices Monitor
InternalName : STIMON
OriginalFilename : STIMON.EXE
ProductName : Microsoft(R) Windows(R) Operating System
Created on : 3/25/04 5:09:16 PM
Last accessed : 4/6/04 4:00:00 AM
Last modified : 5/11/98 11:01:00 PM

#:23 [lvcoms.exe]
FilePath : C:\WINDOWS\SYSTEM\
ProcessID : 4294587817
Threads : 1
Priority : Normal
FileSize : 92 KB
FileVersion : 5.6.1.1115
ProductVersion : 5.6.1.1115
CompanyName : Logitech Inc.
FileDescription : LVCom Server
InternalName : LVComS.exe
OriginalFilename : LVComS.exe
ProductName : Logitech QuickCam
Created on : 6/11/03 5:52:24 PM
Last accessed : 4/6/04 4:00:00 AM
Last modified : 8/10/01 2:23:14 PM

#:24 [loadqm.exe]
FilePath : C:\WINDOWS\
ProcessID : 4294690493
Threads : 3
Priority : Normal
FileSize : 7 KB
FileVersion : 5.4.1103.3
ProductVersion : 5.4.1103.3
Copyright : Copyright (C) Microsoft Corp. 1981-1999
CompanyName : Microsoft Corporation
FileDescription : Microsoft QMgr
InternalName : LOADQM.EXE
OriginalFilename : LOADQM.EXE
ProductName : QMgr Loader
Created on : 2/16/04 7:18:49 PM
Last accessed : 4/6/04 4:00:00 AM
Last modified : 5/3/00 9:23:10 PM

#:25 [wdskctl.exe]
FilePath : C:\WINDOWS\
ProcessID : 4294521021
Threads : 1
Priority : Normal
FileSize : 84 KB
FileVersion : 1, 0, 0, 10
ProductVersion : 1, 0, 0, 10
Copyright : Copyright (C) 2003
CompanyName : IE Plugin
FileDescription : IEPluginDesktopToolbar MFC Application
InternalName : IEPluginDesktopToolbar
OriginalFilename : IEPluginDesktopToolbar.EXE
ProductName : IEPluginDesktopToolbar Application
Created on : 3/17/04 8:29:13 PM
Last accessed : 4/6/04 4:00:00 AM
Last modified : 3/17/04 8:29:20 PM

#:26 [e_s10ic1.exe]
FilePath : C:\WINDOWS\SYSTEM\
ProcessID : 4294512073
Threads : 1
Priority : Normal
FileSize : 72 KB
FileVersion : 3.03
ProductVersion : 3.03
Copyright : Copyright (C) SEIKO EPSON CORP. 2002
CompanyName : SEIKO EPSON CORPORATION
FileDescription : EPSON Status Monitor 3
InternalName : E_S10IC1
OriginalFilename : E_S10IC1.EXE
ProductName : EPSON Status Monitor 3
Created on : 3/20/04 5:26:06 AM
Last accessed : 4/6/04 4:00:00 AM
Last modified : 2/19/02 7:03:00 AM

#:27 [msksrvr.exe]
FilePath : C:\PROGRAM FILES\MCAFEE\SPAMKILLER\
ProcessID : 4294537689
Threads : 6
Priority : Normal
FileSize : 885 KB
FileVersion : 5.1.0.7
ProductVersion : 5.1
Copyright : Copyright
CompanyName : Networks Associates Technology. Inc.
FileDescription : McAfee SpamKiller Server
InternalName : MSKSRVR
OriginalFilename : MSKSRVR.EXE
ProductName : McAfee SpamKiller
Created on : 3/18/04 9:22:24 PM
Last accessed : 4/6/04 4:00:00 AM
Last modified : 3/18/04 9:22:24 PM

#:28 [mskagent.exe]
FilePath : C:\PROGRAM FILES\MCAFEE\SPAMKILLER\
ProcessID : 4294550777
Threads : 1
Priority : Normal
FileSize : 96 KB
FileVersion : 5, 0, 0, 4
ProductVersion : 5, 0, 0, 0
Copyright : Copyright
CompanyName : Networks Associates Technology, Inc
FileDescription : McAfee SpamKiller Agent Interface module
InternalName : MskAgent
OriginalFilename : MskAgent.exe
ProductName : McAfee SpamKiller
Created on : 12/22/03 8:51:48 PM
Last accessed : 4/6/04 4:00:00 AM
Last modified : 12/22/03 8:51:48 PM

#:29 [cmgrdian.exe]
FilePath : C:\PROGRAM FILES\MCAFEE\MCAFEE SHARED COMPONENTS\GUARDIAN\
ProcessID : 4294564249
Threads : 1
Priority : Normal
FileSize : 136 KB
FileVersion : 3.01.1028.0
ProductVersion : 3.01.1028.0
Copyright : Copyright
CompanyName : Network Associates, Inc.
FileDescription : McAfee Guardian Agent
InternalName : CMGrdian
OriginalFilename : CMGrdian.exe
ProductName : McAfee Windows Guardian
Created on : 9/2/03 7:01:00 AM
Last accessed : 4/6/04 4:00:00 AM
Last modified : 9/2/03 7:01:00 AM

#:30 [mcagent.exe]
FilePath : C:\PROGRAM FILES\MCAFEE.COM\AGENT\
ProcessID : 4294540485
Threads : 1
Priority : Normal
FileSize : 240 KB
FileVersion : 4, 3, 0, 27
ProductVersion : 4, 3, 0, 0
Copyright : Copyright
CompanyName : Networks Associates Technology, Inc
FileDescription : McAfee SecurityCenter Agent
InternalName : mcagent
OriginalFilename : mcagent.exe
ProductName : McAfee SecurityCenter
Created on : 12/8/03 7:38:52 PM
Last accessed : 4/6/04 4:00:00 AM
Last modified : 12/8/03 7:38:52 PM

#:31 [mcvsshld.exe]
FilePath : C:\PROGRAM FILES\MCAFEE.COM\VSO\
ProcessID : 4294454413
Threads : 1
Priority : Normal
FileSize : 160 KB
FileVersion : 8, 0, 0, 15
ProductVersion : 8, 0, 0, 0
Copyright : Copyright
CompanyName : Networks Associates Technology, Inc
FileDescription : McAfee VirusScan ActiveShield Resource
InternalName : msvcshld
OriginalFilename : mcvsshld.exe
ProductName : McAfee VirusScan
Created on : 8/18/03 1:50:34 AM
Last accessed : 4/6/04 4:00:00 AM
Last modified : 8/18/03 1:50:34 AM

#:32 [mcvsescn.exe]
FilePath : C:\PROGRAM FILES\MCAFEE.COM\VSO\
ProcessID : 4294530085
Threads : 1
Priority : Normal
FileSize : 404 KB
FileVersion : 8, 0, 0, 20
ProductVersion : 8, 0, 0, 0
Copyright : Copyright
CompanyName : Networks Associates Technology, Inc
FileDescription : McAfee VirusScan E-mail Scan Module
InternalName : mcvsescn
OriginalFilename : mcvsescn.EXE
ProductName : McAfee VirusScan
Created on : 9/28/03 5:47:00 PM
Last accessed : 4/6/04 4:00:00 AM
Last modified : 9/28/03 5:47:00 PM

#:33 [mpftray.exe]
FilePath : C:\PROGRAM FILES\MCAFEE.COM\PERSONAL FIREWALL\
ProcessID : 4294483629
Threads : 6
Priority : Normal
FileSize : 1348 KB
FileVersion : 5.0.1.5
ProductVersion : 5.0.1.5
Copyright : Copyright
CompanyName : McAfee Security
FileDescription : McAfee Personal Firewall Tray Monitor
InternalName : MpfTray
OriginalFilename : MPFTRAY.EXE
ProductName : McAfee Personal Firewall (MPF)
Created on : 4/4/04 7:53:06 PM
Last accessed : 4/6/04 4:00:00 AM
Last modified : 9/2/03 6:00:00 PM

#:34 [msnmsgr.exe]
FilePath : C:\PROGRAM FILES\MSN MESSENGER\
ProcessID : 4294408121
Threads : 17
Priority : Normal
FileSize : 4572 KB
FileVersion : 6.1.0211
ProductVersion : Version 6.1
Copyright : Copyright (c) Microsoft Corporation 1997-2003
CompanyName : Microsoft Corporation
FileDescription : Messenger
InternalName : msnmsgr
OriginalFilename : msnmsgr.exe
ProductName : Messenger
Created on : 3/4/04 7:01:00 PM
Last accessed : 4/6/04 4:00:00 AM
Last modified : 3/4/04 7:01:00 PM

#:35 [rftray.exe]
FilePath : C:\PROGRAM FILES\REALITY FUSION\REALITY FUSION GAMECAM SE\PROGRAM\
ProcessID : 4294440637
Threads : 1
Priority : Normal
FileSize : 316 KB
FileVersion : 1, 0, 0, 1
ProductVersion : 1, 0, 0, 1
Copyright : Copyright
FileDescription : Reality Fusion Tray Application
InternalName : RFTRAY
OriginalFilename : RFTRAY.EXE
ProductName : Reality Fusion Tray Application
Created on : 7/10/00 4:58:12 PM
Last accessed : 4/6/04 4:00:00 AM
Last modified : 7/10/00 4:58:12 PM

#:36 [ddhelp.exe]
FilePath : C:\WINDOWS\SYSTEM\
ProcessID : 4294318285
Threads : 3
Priority : Realtime
FileSize : 31 KB
FileVersion : 4.08.01.0881
ProductVersion : 4.08.01.0881
Copyright : Copyright
CompanyName : Microsoft Corporation
FileDescription : Microsoft DirectX Helper
InternalName : DDHelp.exe
OriginalFilename : DDHelp.exe
ProductName : Microsoft
Created on : 1/26/04 12:39:35 AM
Last accessed : 4/6/04 4:00:00 AM
Last modified : 10/30/01 12:10:00 PM

#:37 [mpfagent.exe]
FilePath : C:\PROGRAM FILES\MCAFEE.COM\PERSONAL FIREWALL\
ProcessID : 4294290601
Threads : 2
Priority : Normal
FileSize : 500 KB
FileVersion : 4.1.0.1
ProductVersion : 4.1.0.1
Copyright : Copyright
CompanyName : McAfee Security
FileDescription : McAfee Personal Firewall Agent Interface
InternalName : MpfAgent
OriginalFilename : MPFAGENT.EXE
ProductName : McAfee Personal Firewall (MPF)
Created on : 4/4/04 7:53:06 PM
Last accessed : 4/6/04 4:00:00 AM
Last modified : 9/2/03 6:00:00 PM

#:38 [mcvsftsn.exe]
FilePath : C:\PROGRAM FILES\MCAFEE.COM\VSO\
ProcessID : 4294204193
Threads : 1
Priority : Normal
FileSize : 216 KB
FileVersion : 8, 0, 0, 20
ProductVersion : 8, 0, 0, 0
Copyright : Copyright
CompanyName : Networks Associates Technology, Inc
FileDescription : McAfee VirusScan Instant Messenger Scan Module
InternalName : mcvsftsn
OriginalFilename : mcvsftsn.EXE
ProductName : McAfee VirusScan
Created on : 9/29/03 7:38:16 PM
Last accessed : 4/6/04 4:00:00 AM
Last modified : 9/29/03 7:38:16 PM

#:39 [pstores.exe]
FilePath : C:\WINDOWS\SYSTEM\
ProcessID : 4294012865
Threads : 3
Priority : Normal
FileSize : 79 KB
FileVersion : 5.00.1877.3
ProductVersion : 5.00.1877.3
Copyright : Copyright (C) Microsoft Corp. 1981-1998
CompanyName : Microsoft Corporation
FileDescription : Protected storage server
InternalName : Protected storage server
OriginalFilename : Protected storage server
ProductName : Microsoft(R) Windows NT(R) Operating System
Created on : 10/20/00 4:00:00 AM
Last accessed : 4/6/04 4:00:00 AM
Last modified : 10/20/00 4:00:00 AM

#:40 [ad-aware.exe]
FilePath : C:\PROGRAM FILES\LAVASOFT\AD-AWARE 6\
ProcessID : 4294037945
Threads : 2
Priority : Normal
FileSize : 668 KB
FileVersion : 6.0.1.181
ProductVersion : 6.0.0.0
Copyright : Copyright
CompanyName : Lavasoft Sweden
FileDescription : Ad-aware 6 core application
InternalName : Ad-aware.exe
OriginalFilename : Ad-aware.exe
ProductName : Lavasoft Ad-aware Plus
Created on : 4/5/04 1:58:49 AM
Last accessed : 4/6/04 4:00:00 AM
Last modified : 7/13/03 2:00:20 AM

Memory scan result :
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
New objects : 0
Objects found so far: 0


Started registry scan
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯

Registry scan result :
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
New objects : 0
Objects found so far: 0


Started deep registry scan
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯

Deep registry scan result :
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
New objects : 0
Objects found so far: 0


Deep scanning and examining files (C
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯

Disk scan result for C:\
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
New objects : 0
Objects found so far: 0

4:26:06 PM Scan complete

Summary of this scan
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
Total scanning time :00:21:08:780
Objects scanned :80092
Objects identified :0
Objects ignored :0
New objects :0

 

You said "adaware and spy bot search and destroy found a little over 300 different malware, hijackers and spyware on the system".

The Adaware scanlog you posted shows that nothing was found. I need to see the log from the scan you did that found and fixed all those items you referred to in your first post.

 

Have tried posting log but it says there are to many characters. How should I post the first log I ran?

 

You can split the log into several posts.

 

I ran S&D first and what was left uncorrected Adaware found and fixed.
First half follows.

Lavasoft Ad-aware Personal Build 6.181
Logfile created on :Sunday, April 04, 2004 10:00:10 PM
Created with Ad-aware Personal, free for private use.
Using reference-file :01R279 31.03.2004
______________________________________________________

Ad-aware Settings
=========================
Set : Activate in-depth scan (Recommended)
Set : Safe mode (always request confirmation)
Set : Scan active processes
Set : Scan registry
Set : Deep scan registry


4-4-04 10:00:10 PM - Scan started. (Smart mode)

Listing running processes
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯

#:1 [kernel32.dll]
FilePath : C:\WINDOWS\SYSTEM\
ProcessID : 4279221887
Threads : 4
Priority : High
FileSize : 460 KB
FileVersion : 4.10.1998
ProductVersion : 4.10.1998
Copyright : Copyright (C) Microsoft Corp. 1991-1998
CompanyName : Microsoft Corporation
FileDescription : Win32 Kernel core component
InternalName : KERNEL32
OriginalFilename : KERNEL32.DLL
ProductName : Microsoft(R) Windows(R) Operating System
Created on : 3/25/04 5:08:27 PM
Last accessed : 4/4/04 4:00:00 AM
Last modified : 5/11/98 11:01:00 PM

#:2 [msgsrv32.exe]
FilePath : C:\WINDOWS\SYSTEM\
ProcessID : 4294953711
Threads : 1
Priority : Normal
FileSize : 11 KB
FileVersion : 4.10.1998
ProductVersion : 4.10.1998
Copyright : Copyright (C) Microsoft Corp. 1992-1998
CompanyName : Microsoft Corporation
FileDescription : Windows 32-bit VxD Message Server
InternalName : MSGSRV32
OriginalFilename : MSGSRV32.EXE
ProductName : Microsoft(R) Windows(R) Operating System
Created on : 3/25/04 5:09:10 PM
Last accessed : 4/4/04 4:00:00 AM
Last modified : 5/11/98 11:01:00 PM

#:3 [mprexe.exe]
FilePath : C:\WINDOWS\SYSTEM\
ProcessID : 4294966623
Threads : 1
Priority : Normal
FileSize : 28 KB
FileVersion : 4.10.1998
ProductVersion : 4.10.1998
Copyright : Copyright (C) Microsoft Corp. 1993-1998
CompanyName : Microsoft Corporation
FileDescription : WIN32 Network Interface Service Process
InternalName : MPREXE
OriginalFilename : MPREXE.EXE
ProductName : Microsoft(R) Windows(R) Operating System
Created on : 3/25/04 5:09:10 PM
Last accessed : 4/4/04 4:00:00 AM
Last modified : 5/11/98 11:01:00 PM

#:4 [sagent2.exe]
FilePath : C:\PROGRAM FILES\COMMON FILES\EPSON\EBAPI\
ProcessID : 4294836819
Threads : 9
Priority : Normal
FileSize : 88 KB
FileVersion : 2, 2, 0, 0
ProductVersion : 1, 0, 0, 0
Copyright : Copyright (C) SEIKO EPSON CORP. 2000-2001
CompanyName : SEIKO EPSON CORPORATION
FileDescription : EPSON Printer Status Agent
InternalName : SAgent2
OriginalFilename : SAgent2.exe
ProductName : EPSON Bidirectional Printer
Created on : 3/20/04 5:26:14 AM
Last accessed : 4/4/04 4:00:00 AM
Last modified : 10/25/01 6:02:00 AM

#:5 [mstask.exe]
FilePath : C:\WINDOWS\SYSTEM\
ProcessID : 4294880779
Threads : 3
Priority : Normal
FileSize : 116 KB
FileVersion : 4.71.1769.1
ProductVersion : 4.71.1769.1
Copyright : Copyright (C) Microsoft Corp. 1997
CompanyName : Microsoft Corporation
FileDescription : Task Scheduler Engine
InternalName : TaskScheduler
OriginalFilename : mstask.exe
ProductName : Microsoft
Created on : 3/25/04 5:09:11 PM
Last accessed : 4/4/04 4:00:00 AM
Last modified : 5/11/98 11:01:00 PM

#:6 [mcvsrte.exe]
FilePath : C:\PROGRAM FILES\MCAFEE.COM\VSO\
ProcessID : 4294878063
Threads : 2
Priority : Normal
FileSize : 104 KB
FileVersion : 8, 0, 0, 12
ProductVersion : 8, 0, 0, 0
Copyright : Copyright
CompanyName : Networks Associates Technology, Inc
FileDescription : McAfee VirusScan Real-time Engine
InternalName : mcvsrte
OriginalFilename : mcvsrte.exe
ProductName : McAfee VirusScan
Created on : 8/8/03 10:04:38 PM
Last accessed : 4/4/04 4:00:00 AM
Last modified : 8/8/03 10:04:38 PM

#:7 [guarddog.exe]
FilePath : C:\PROGRAM FILES\MCAFEE\MCAFEE PRIVACY SERVICE\
ProcessID : 4294891167
Threads : 20
Priority : Normal
FileSize : 77 KB
FileVersion : 6.01.6000.0
ProductVersion : 6.01.6000.0
Copyright : Copyright
CompanyName : Network Associates, Inc.
FileDescription : McAfee Privacy Service Application
InternalName : IG32
OriginalFilename : GUARDDOG.EXE
ProductName : McAfee Privacy Service
Created on : 11/3/67 9:13:48 PM
Last accessed : 4/4/04 4:00:00 AM
Last modified : 11/3/67 9:13:48 PM

#:8 [mmtask.tsk]
FilePath : C:\WINDOWS\SYSTEM\
ProcessID : 4294816863
Threads : 1
Priority : Normal
FileSize : 1 KB
FileVersion : 4.03.1998
ProductVersion : 4.03.1998
Copyright : Copyright
CompanyName : Microsoft Corporation
FileDescription : Multimedia background task support module
InternalName : mmtask.tsk
OriginalFilename : mmtask.tsk
ProductName : Microsoft Windows
Created on : 3/25/04 5:10:04 PM
Last accessed : 4/4/04 4:00:00 AM
Last modified : 5/11/98 11:01:00 PM

#:9 [guarddog.exe]
FilePath : C:\PROGRAM FILES\MCAFEE\MCAFEE PRIVACY SERVICE\
ProcessID : 4294729587
Threads : 5
Priority : Normal
FileSize : 77 KB
FileVersion : 6.01.6000.0
ProductVersion : 6.01.6000.0
Copyright : Copyright
CompanyName : Network Associates, Inc.
FileDescription : McAfee Privacy Service Application
InternalName : IG32
OriginalFilename : GUARDDOG.EXE
ProductName : McAfee Privacy Service
Created on : 11/3/67 9:13:48 PM
Last accessed : 4/4/04 4:00:00 AM
Last modified : 11/3/67 9:13:48 PM

#:10 [tapisrv.exe]
FilePath : C:\WINDOWS\SYSTEM\
ProcessID : 4294639919
Threads : 7
Priority : Normal
FileSize : 120 KB
FileVersion : 4.10.1998
ProductVersion : 4.10.1998
Copyright : Copyright (C) Microsoft Corp. 1994-1998
CompanyName : Microsoft Corporation
FileDescription : Microsoft
InternalName : Telephony Service
OriginalFilename : TAPISRV.EXE
ProductName : Microsoft(R) Windows(R) Operating System
Created on : 3/25/04 5:09:17 PM
Last accessed : 4/4/04 4:00:00 AM
Last modified : 5/11/98 11:01:00 PM

#:11 [taskmon.exe]
FilePath : C:\WINDOWS\
ProcessID : 4294703315
Threads : 1
Priority : Normal
FileSize : 28 KB
FileVersion : 4.10.1998
ProductVersion : 4.10.1998
Copyright : Copyright (C) Microsoft Corp. 1998
CompanyName : Microsoft Corporation
FileDescription : Task Monitor
InternalName : TaskMon
OriginalFilename : TASKMON.EXE
ProductName : Microsoft(R) Windows(R) Operating System
Created on : 3/25/04 5:09:18 PM
Last accessed : 4/4/04 4:00:00 AM
Last modified : 5/11/98 11:01:00 PM

#:12 [systray.exe]
FilePath : C:\WINDOWS\SYSTEM\
ProcessID : 4294699435
Threads : 1
Priority : Normal
FileSize : 36 KB
FileVersion : 4.10.1998
ProductVersion : 4.10.1998
Copyright : Copyright (C) Microsoft Corp. 1993-1998
CompanyName : Microsoft Corporation
FileDescription : System Tray Applet
InternalName : SYSTRAY
OriginalFilename : SYSTRAY.EXE
ProductName : Microsoft(R) Windows(R) Operating System
Created on : 3/25/04 5:09:17 PM
Last accessed : 4/4/04 4:00:00 AM
Last modified : 5/11/98 11:01:00 PM

#:13 [clmpanel.exe]
FilePath : C:\WINDOWS\
ProcessID : 4294574763
Threads : 1
Priority : Normal
FileSize : 63 KB
FileVersion : 1.00.950
ProductVersion : Version 1.0
Copyright : Copyright
CompanyName : Cirrus Logic, Inc.
FileDescription : CLM Status Utility
InternalName : CLMPANEL (Written by Scott Deans)
OriginalFilename : CLMPANEL.EXE
ProductName : Cirrus CLM Front Panel
Created on : 9/2/99 2:14:53 PM
Last accessed : 4/4/04 4:00:00 AM
Last modified : 5/18/99 1:58:24 PM

#:14 [config32.exe]
FilePath : C:\MTMSE\
ProcessID : 4294586575
Threads : 1
Priority : Normal
FileSize : 34 KB
FileVersion : 1.01.02.000
ProductVersion : 1.12
Copyright : Copyright (C) LCS/Telegraphics 1999
CompanyName : LCS/Telegraphics
FileDescription : Config32 XMouse configuration app
InternalName : Config32
OriginalFilename : Config32.exe
ProductName : Pointing Device Drivers
Created on : 9/2/99 2:20:06 PM
Last accessed : 4/4/04 4:00:00 AM
Last modified : 4/23/99 5:10:00 AM

#:15 [xpoint32.exe]
FilePath : C:\MTMSE\
ProcessID : 4294595399
Threads : 1
Priority : Normal
FileSize : 109 KB
FileVersion : 1.00.01.008
ProductVersion : 1.00
Copyright : Copyright (C) LCS/Telegraphics. 1996-1998
CompanyName : LCS/Telegraphics
FileDescription : XPoint32 COM Object Local Server
InternalName : XPoint32
OriginalFilename : XPoint32.exe
ProductName : Pointing Device Drivers
Created on : 9/2/99 2:20:13 PM
Last accessed : 4/4/04 4:00:00 AM
Last modified : 4/23/99 5:10:00 AM

#:16 [pageicon.exe]
FilePath : C:\MTMSE\
ProcessID : 4294591943
Threads : 1
Priority : Normal
FileSize : 27 KB
FileVersion : 1.00
ProductVersion : 1.00
Copyright : Copyright (C) LCS/Telegraphics 1998
CompanyName : LCS/Telegraphics
FileDescription : PageIcon executable
InternalName : PAGEICON
OriginalFilename : PAGEICON.EXE
ProductName : Pointing Device Drivers
Created on : 9/2/99 2:20:10 PM
Last accessed : 4/4/04 4:00:00 AM
Last modified : 4/23/99 5:10:00 AM

#:17 [xwheel.exe]
FilePath : C:\MTMSE\
ProcessID : 4294603547
Threads : 1
Priority : Normal
FileSize : 27 KB
FileVersion : 1.00
ProductVersion : 1.00
Copyright : Copyright (C) LCS/Telegraphics 1998
CompanyName : LCS/Telegraphics
FileDescription : XWheel
InternalName : XWheel
OriginalFilename : XWheel.exe
ProductName : Pointing Device Drivers
Created on : 9/2/99 2:20:15 PM
Last accessed : 4/4/04 4:00:00 AM
Last modified : 4/23/99 5:10:00 AM

#:18 [spool32.exe]
FilePath : C:\WINDOWS\SYSTEM\
ProcessID : 4294615311
Threads : 2
Priority : Normal
FileSize : 44 KB
FileVersion : 4.10.1998
ProductVersion : 4.10.1998
Copyright : Copyright (C) Microsoft Corp. 1994 - 1998
CompanyName : Microsoft Corporation
FileDescription : Spooler Sub System Process
InternalName : spool32
OriginalFilename : spool32.exe
ProductName : Microsoft(R) Windows(R) Operating System
Created on : 3/25/04 5:09:16 PM
Last accessed : 4/4/04 4:00:00 AM
Last modified : 5/11/98 11:01:00 PM

#:19 [hpgs2wnd.exe]
FilePath : C:\PROGRAM FILES\HEWLETT-PACKARD\HP SHARE-TO-WEB\
ProcessID : 4294625175
Threads : 3
Priority : Normal
FileSize : 68 KB
FileVersion : 2,3,0,0\
ProductVersion : 2,3,0,0\
Copyright : Copyright
CompanyName : Hewlett-Packard
FileDescription : hpgs2wnd
InternalName : hpgs2wnd
OriginalFilename : hpgs2wnd.exe
ProductName : Hewlett-Packard hpgs2wnd
Created on : 4/11/02 8:19:34 AM
Last accessed : 4/4/04 4:00:00 AM
Last modified : 4/11/02 8:19:34 AM

#:20 [stimon.exe]
FilePath : C:\WINDOWS\SYSTEM\
ProcessID : 4294635755
Threads : 3
Priority : Normal
FileSize : 112 KB
FileVersion : 4.10.1998
ProductVersion : 4.10.1998
Copyright : Copyright (C) Microsoft Corp. 1996-1998
CompanyName : Microsoft Corporation
FileDescription : Still Image Devices Monitor
InternalName : STIMON
OriginalFilename : STIMON.EXE
ProductName : Microsoft(R) Windows(R) Operating System
Created on : 3/25/04 5:09:16 PM
Last accessed : 4/4/04 4:00:00 AM
Last modified : 5/11/98 11:01:00 PM

#:21 [hpgs2wnf.exe]
FilePath : C:\PROGRAM FILES\HEWLETT-PACKARD\HP SHARE-TO-WEB\
ProcessID : 4294523875
Threads : 2
Priority : Normal
FileSize : 76 KB
FileVersion : 2, 6, 0,
ProductVersion : 2, 6, 0,
Copyright : Copyright 2001
FileDescription : hpgs2wnf Module
InternalName : hpgs2wnf
OriginalFilename : hpgs2wnf.EXE
ProductName : hpgs2wnf Module
Created on : 4/11/02 8:19:36 AM
Last accessed : 4/4/04 4:00:00 AM
Last modified : 4/11/02 8:19:36 AM

#:22 [lvcoms.exe]
FilePath : C:\WINDOWS\SYSTEM\
ProcessID : 4294619279
Threads : 1
Priority : Normal
FileSize : 92 KB
FileVersion : 5.6.1.1115
ProductVersion : 5.6.1.1115
CompanyName : Logitech Inc.
FileDescription : LVCom Server
InternalName : LVComS.exe
OriginalFilename : LVComS.exe
ProductName : Logitech QuickCam
Created on : 6/11/03 5:52:24 PM
Last accessed : 4/4/04 4:00:00 AM
Last modified : 8/10/01 2:23:14 PM

#:23 [loadqm.exe]
FilePath : C:\WINDOWS\
ProcessID : 4294616743
Threads : 3
Priority : Normal
FileSize : 7 KB
FileVersion : 5.4.1103.3
ProductVersion : 5.4.1103.3
Copyright : Copyright (C) Microsoft Corp. 1981-1999
CompanyName : Microsoft Corporation
FileDescription : Microsoft QMgr
InternalName : LOADQM.EXE
OriginalFilename : LOADQM.EXE
ProductName : QMgr Loader
Created on : 2/16/04 7:18:49 PM
Last accessed : 4/4/04 4:00:00 AM
Last modified : 5/3/00 9:23:10 PM

#:24 [wdskctl.exe]
FilePath : C:\WINDOWS\
ProcessID : 4294528231
Threads : 1
Priority : Normal
FileSize : 84 KB
FileVersion : 1, 0, 0, 10
ProductVersion : 1, 0, 0, 10
Copyright : Copyright (C) 2003
CompanyName : IE Plugin
FileDescription : IEPluginDesktopToolbar MFC Application
InternalName : IEPluginDesktopToolbar
OriginalFilename : IEPluginDesktopToolbar.EXE
ProductName : IEPluginDesktopToolbar Application
Created on : 3/17/04 8:29:13 PM
Last accessed : 4/4/04 4:00:00 AM
Last modified : 3/17/04 8:29:20 PM

 

Second half follows.

#:25 [e_s10ic1.exe]
FilePath : C:\WINDOWS\SYSTEM\
ProcessID : 4294576511
Threads : 1
Priority : Normal
FileSize : 72 KB
FileVersion : 3.03
ProductVersion : 3.03
Copyright : Copyright (C) SEIKO EPSON CORP. 2002
CompanyName : SEIKO EPSON CORPORATION
FileDescription : EPSON Status Monitor 3
InternalName : E_S10IC1
OriginalFilename : E_S10IC1.EXE
ProductName : EPSON Status Monitor 3
Created on : 3/20/04 5:26:06 AM
Last accessed : 4/4/04 4:00:00 AM
Last modified : 2/19/02 7:03:00 AM

#:26 [msksrvr.exe]
FilePath : C:\PROGRAM FILES\MCAFEE\SPAMKILLER\
ProcessID : 4294543847
Threads : 6
Priority : Normal
FileSize : 885 KB
FileVersion : 5.1.0.7
ProductVersion : 5.1
Copyright : Copyright
CompanyName : Networks Associates Technology. Inc.
FileDescription : McAfee SpamKiller Server
InternalName : MSKSRVR
OriginalFilename : MSKSRVR.EXE
ProductName : McAfee SpamKiller
Created on : 3/18/04 9:22:24 PM
Last accessed : 4/4/04 4:00:00 AM
Last modified : 3/18/04 9:22:24 PM

#:27 [mskagent.exe]
FilePath : C:\PROGRAM FILES\MCAFEE\SPAMKILLER\
ProcessID : 4294550595
Threads : 1
Priority : Normal
FileSize : 96 KB
FileVersion : 5, 0, 0, 4
ProductVersion : 5, 0, 0, 0
Copyright : Copyright
CompanyName : Networks Associates Technology, Inc
FileDescription : McAfee SpamKiller Agent Interface module
InternalName : MskAgent
OriginalFilename : MskAgent.exe
ProductName : McAfee SpamKiller
Created on : 12/22/03 8:51:48 PM
Last accessed : 4/4/04 4:00:00 AM
Last modified : 12/22/03 8:51:48 PM

#:28 [cmgrdian.exe]
FilePath : C:\PROGRAM FILES\MCAFEE\MCAFEE SHARED COMPONENTS\GUARDIAN\
ProcessID : 4294550667
Threads : 1
Priority : Normal
FileSize : 136 KB
FileVersion : 3.01.1028.0
ProductVersion : 3.01.1028.0
Copyright : Copyright
CompanyName : Network Associates, Inc.
FileDescription : McAfee Guardian Agent
InternalName : CMGrdian
OriginalFilename : CMGrdian.exe
ProductName : McAfee Windows Guardian
Created on : 9/2/03 7:01:00 AM
Last accessed : 4/4/04 4:00:00 AM
Last modified : 9/2/03 7:01:00 AM

#:29 [mcagent.exe]
FilePath : C:\PROGRAM FILES\MCAFEE.COM\AGENT\
ProcessID : 4294533399
Threads : 1
Priority : Normal
FileSize : 240 KB
FileVersion : 4, 3, 0, 27
ProductVersion : 4, 3, 0, 0
Copyright : Copyright
CompanyName : Networks Associates Technology, Inc
FileDescription : McAfee SecurityCenter Agent
InternalName : mcagent
OriginalFilename : mcagent.exe
ProductName : McAfee SecurityCenter
Created on : 12/8/03 7:38:52 PM
Last accessed : 4/4/04 4:00:00 AM
Last modified : 12/8/03 7:38:52 PM

#:30 [mcvsshld.exe]
FilePath : C:\PROGRAM FILES\MCAFEE.COM\VSO\
ProcessID : 4294568827
Threads : 1
Priority : Normal
FileSize : 160 KB
FileVersion : 8, 0, 0, 15
ProductVersion : 8, 0, 0, 0
Copyright : Copyright
CompanyName : Networks Associates Technology, Inc
FileDescription : McAfee VirusScan ActiveShield Resource
InternalName : msvcshld
OriginalFilename : mcvsshld.exe
ProductName : McAfee VirusScan
Created on : 8/18/03 1:50:34 AM
Last accessed : 4/4/04 4:00:00 AM
Last modified : 8/18/03 1:50:34 AM

#:31 [mcvsescn.exe]
FilePath : C:\PROGRAM FILES\MCAFEE.COM\VSO\
ProcessID : 4294475431
Threads : 1
Priority : Normal
FileSize : 404 KB
FileVersion : 8, 0, 0, 20
ProductVersion : 8, 0, 0, 0
Copyright : Copyright
CompanyName : Networks Associates Technology, Inc
FileDescription : McAfee VirusScan E-mail Scan Module
InternalName : mcvsescn
OriginalFilename : mcvsescn.EXE
ProductName : McAfee VirusScan
Created on : 9/28/03 5:47:00 PM
Last accessed : 4/4/04 4:00:00 AM
Last modified : 9/28/03 5:47:00 PM

#:32 [mpftray.exe]
FilePath : C:\PROGRAM FILES\MCAFEE.COM\PERSONAL FIREWALL\
ProcessID : 4294467403
Threads : 6
Priority : Normal
FileSize : 1348 KB
FileVersion : 5.0.1.5
ProductVersion : 5.0.1.5
Copyright : Copyright
CompanyName : McAfee Security
FileDescription : McAfee Personal Firewall Tray Monitor
InternalName : MpfTray
OriginalFilename : MPFTRAY.EXE
ProductName : McAfee Personal Firewall (MPF)
Created on : 4/4/04 7:53:06 PM
Last accessed : 4/4/04 4:00:00 AM
Last modified : 9/2/03 6:00:00 PM

#:33 [msnmsgr.exe]
FilePath : C:\PROGRAM FILES\MSN MESSENGER\
ProcessID : 4294505627
Threads : 16
Priority : Normal
FileSize : 4572 KB
FileVersion : 6.1.0211
ProductVersion : Version 6.1
Copyright : Copyright (c) Microsoft Corporation 1997-2003
CompanyName : Microsoft Corporation
FileDescription : Messenger
InternalName : msnmsgr
OriginalFilename : msnmsgr.exe
ProductName : Messenger
Created on : 3/4/04 7:01:00 PM
Last accessed : 4/4/04 4:00:00 AM
Last modified : 3/4/04 7:01:00 PM

#:34 [rftray.exe]
FilePath : C:\PROGRAM FILES\REALITY FUSION\REALITY FUSION GAMECAM SE\PROGRAM\
ProcessID : 4294420687
Threads : 1
Priority : Normal
FileSize : 316 KB
FileVersion : 1, 0, 0, 1
ProductVersion : 1, 0, 0, 1
Copyright : Copyright
FileDescription : Reality Fusion Tray Application
InternalName : RFTRAY
OriginalFilename : RFTRAY.EXE
ProductName : Reality Fusion Tray Application
Created on : 7/10/00 4:58:12 PM
Last accessed : 4/4/04 4:00:00 AM
Last modified : 7/10/00 4:58:12 PM

#:35 [mcvsftsn.exe]
FilePath : C:\PROGRAM FILES\MCAFEE.COM\VSO\
ProcessID : 4294291747
Threads : 1
Priority : Normal
FileSize : 216 KB
FileVersion : 8, 0, 0, 20
ProductVersion : 8, 0, 0, 0
Copyright : Copyright
CompanyName : Networks Associates Technology, Inc
FileDescription : McAfee VirusScan Instant Messenger Scan Module
InternalName : mcvsftsn
OriginalFilename : mcvsftsn.EXE
ProductName : McAfee VirusScan
Created on : 9/29/03 7:38:16 PM
Last accessed : 4/4/04 4:00:00 AM
Last modified : 9/29/03 7:38:16 PM

#:36 [mpfagent.exe]
FilePath : C:\PROGRAM FILES\MCAFEE.COM\PERSONAL FIREWALL\
ProcessID : 4294284747
Threads : 2
Priority : Normal
FileSize : 500 KB
FileVersion : 4.1.0.1
ProductVersion : 4.1.0.1
Copyright : Copyright
CompanyName : McAfee Security
FileDescription : McAfee Personal Firewall Agent Interface
InternalName : MpfAgent
OriginalFilename : MPFAGENT.EXE
ProductName : McAfee Personal Firewall (MPF)
Created on : 4/4/04 7:53:06 PM
Last accessed : 4/4/04 4:00:00 AM
Last modified : 9/2/03 6:00:00 PM

#:37 [pstores.exe]
FilePath : C:\WINDOWS\SYSTEM\
ProcessID : 4294168571
Threads : 3
Priority : Normal
FileSize : 79 KB
FileVersion : 5.00.1877.3
ProductVersion : 5.00.1877.3
Copyright : Copyright (C) Microsoft Corp. 1981-1998
CompanyName : Microsoft Corporation
FileDescription : Protected storage server
InternalName : Protected storage server
OriginalFilename : Protected storage server
ProductName : Microsoft(R) Windows NT(R) Operating System
Created on : 10/20/00 4:00:00 AM
Last accessed : 4/4/04 4:00:00 AM
Last modified : 10/20/00 4:00:00 AM

#:38 [explorer.exe]
FilePath : C:\WINDOWS\
ProcessID : 4279196307
Threads : 33
Priority : Normal
FileSize : 176 KB
FileVersion : 4.72.3110.1
ProductVersion : 4.72.3110.1
Copyright : Copyright (C) Microsoft Corp. 1981-1997
CompanyName : Microsoft Corporation
FileDescription : Windows Explorer
InternalName : explorer
OriginalFilename : EXPLORER.EXE
ProductName : Microsoft(R) Windows NT(R) Operating System
Created on : 3/25/04 5:09:06 PM
Last accessed : 4/4/04 4:00:00 AM
Last modified : 5/11/98 11:01:00 PM

#:39 [ad-aware.exe]
FilePath : C:\PROGRAM FILES\LAVASOFT\AD-AWARE 6\
ProcessID : 4294662999
Threads : 3
Priority : Normal
FileSize : 668 KB
FileVersion : 6.0.1.181
ProductVersion : 6.0.0.0
Copyright : Copyright
CompanyName : Lavasoft Sweden
FileDescription : Ad-aware 6 core application
InternalName : Ad-aware.exe
OriginalFilename : Ad-aware.exe
ProductName : Lavasoft Ad-aware Plus
Created on : 4/5/04 1:58:49 AM
Last accessed : 4/4/04 4:00:00 AM
Last modified : 7/13/03 2:00:20 AM

Memory scan result :
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
New objects : 0
Objects found so far: 0


Started registry scan
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯

Registry scan result :
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
New objects : 0
Objects found so far: 0


Started deep registry scan
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
Possible browser hijack attempt : Software\Microsoft\Internet Explorer\MainSearch Pagesearch.ieplugin.com

Possible Browser Hijack attempt Object recognized!
Type : RegData
Data : "http://search.ieplugin.com/search.htm"
Rootkey : HKEY_LOCAL_MACHINE
Object : Software\Microsoft\Internet Explorer\Main
Value : Search Page
Data : "http://search.ieplugin.com/search.htm"

Possible browser hijack attempt : Software\Microsoft\Internet Explorer\MainSearch Barsearch.ieplugin.com

Possible Browser Hijack attempt Object recognized!
Type : RegData
Data : "http://search.ieplugin.com/search.htm"
Rootkey : HKEY_LOCAL_MACHINE
Object : Software\Microsoft\Internet Explorer\Main
Value : Search Bar
Data : "http://search.ieplugin.com/search.htm"

Possible browser hijack attempt : Software\Microsoft\Internet Explorer\SearchSearchAssistantsearch.ieplugin.com

Possible Browser Hijack attempt Object recognized!
Type : RegData
Data : "http://search.ieplugin.com/search.htm"
Rootkey : HKEY_LOCAL_MACHINE
Object : Software\Microsoft\Internet Explorer\Search
Value : SearchAssistant
Data : "http://search.ieplugin.com/search.htm"


Deep registry scan result :
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
New objects : 3
Objects found so far: 3


¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯

Tracking Cookie Object recognized!
Type : File
Data : wilfred [email protected][1].txt
Object : C:\WINDOWS\Cookies\

Created on : 4/4/04 7:46:52 PM
Last accessed : 4/4/04 4:00:00 AM
Last modified : 4/4/04 7:46:54 PM



Tracking Cookie Object recognized!
Type : File
Data : wilfred [email protected][2].txt
Object : C:\WINDOWS\Cookies\

Created on : 4/5/04 1:41:25 AM
Last accessed : 4/4/04 4:00:00 AM
Last modified : 4/5/04 1:41:26 AM



Tracking Cookie Object recognized!
Type : File
Data : wilfred [email protected][1].txt
Object : C:\WINDOWS\Cookies\

Created on : 4/4/04 7:56:27 PM
Last accessed : 4/4/04 4:00:00 AM
Last modified : 4/4/04 7:56:28 PM


¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯


Deep scanning and examining files (C
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯


Performing conditional scans..
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯

Conditional scan result:
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
New objects : 0
Objects found so far: 6


10:11:33 PM Scan complete

Summary of this scan
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
Total scanning time :00:11:22:170
Objects scanned :34228
Objects identified :6
Objects ignored :0
New objects :6

 

There's nothing in that Adaware log that would have caused the problem.

Have you tried repairing Internet Explore?

 

I can not open IE, is there a work around? Will I be able to do it in Safe Mode or not? Getting late for me so I will check the boards tomorrow morning. Thanks for all the help.