HELP, i got some serious action

Discussion in 'Windows - Virus and spyware problems' started by aussiejoe, Sep 16, 2008.

  1. aussiejoe

    aussiejoe Member

    Joined:
    Jun 15, 2006
    Messages:
    55
    Likes Received:
    0
    Trophy Points:
    16
    am sick of my compouter running slow as so did a search on each of the things running in my task manager against the record of norton website and found that there is a very high chance ive got the following things:

    Backdoor.Omerta
    W32.Kueight
    Trojan.Satiloer
    Trojan.Lodav A
    W32.Lovgate.X @mm
    Infostealer.Wowcraft.D
    W32.Baki.C
    W32.IRCBot.BPP
    Backdoor.Ranky.X
    Trojan.Sygire

    heres a copy of my HJT log and tell me what i have to remove from it please


    --------------

    P.S. please tell me if i can delete all those Logitech entries

    ---------------



    Logfile of HijackThis v1.99.1
    Scan saved at 5:00:58 PM, on 9/16/2008
    Platform: Windows XP SP3 (WinNT 5.01.2600)
    MSIE: Internet Explorer v7.00 (7.00.6000.16705)

    Running processes:
    C:\WINDOWS\System32\smss.exe
    C:\WINDOWS\system32\winlogon.exe
    C:\WINDOWS\system32\services.exe
    C:\WINDOWS\system32\lsass.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\System32\svchost.exe
    C:\WINDOWS\system32\spoolsv.exe
    C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe
    C:\WINDOWS\system32\nvsvc32.exe
    C:\WINDOWS\system32\svchost.exe
    C:\PROGRA~1\AVG\AVG8\avgemc.exe
    C:\WINDOWS\Explorer.EXE
    C:\WINDOWS\system32\RUNDLL32.EXE
    C:\WINDOWS\system32\ctfmon.exe
    C:\Program Files\Windows Live\Messenger\usnsvc.exe
    C:\WINDOWS\system32\LVComsX.exe
    C:\Program Files\Common Files\Real\Update_OB\realsched.exe
    C:\PROGRA~1\AVG\AVG8\avgrsx.exe
    C:\HJT\HijackThis.exe
    C:\Program Files\Internet Explorer\IEXPLORE.EXE
    C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe

    R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://desktop.optusnet.com.au/dsl/favorites/homepage
    R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://desktop.optusnet.com.au/dsl/favorites/search
    R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:tabs
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
    R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
    R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://searchingforwebsite.info/search.php?q=%s&a=v14-a
    R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Microsoft Internet Explorer provided by OptusNet
    R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = 169.229.50.18:3124
    R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = local;localhost
    R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)
    R3 - URLSearchHook: (no name) - {00A6FAF6-072E-44cf-8957-5838F569A31D} - C:\Program Files\MyWebSearch\SrchAstt\2.bin\MWSSRCAS.DLL (file missing)
    R3 - URLSearchHook: (no name) - {4FDDEB42-B849-4CBB-88D2-6D365CB942AC} - (no file)
    O2 - BHO: MyWebSearch Search Assistant BHO - {00A6FAF1-072E-44cf-8957-5838F569A31D} - C:\Program Files\MyWebSearch\SrchAstt\2.bin\MWSSRCAS.DLL (file missing)
    O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
    O2 - BHO: mwsBar BHO - {07B18EA1-A523-4961-B6BB-170DE4475CCA} - C:\Program Files\MyWebSearch\bar\2.bin\MWSBAR.DLL (file missing)
    O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG8\avgssie.dll
    O2 - BHO: Yahoo! IE Services Button - {5BAB4B5B-68BC-4B02-94D6-2FC0DE4A7897} - C:\Program Files\Yahoo!\Common\yiesrvc.dll
    O2 - BHO: XBTB06872 - {5FCB2823-9A85-48AF-8368-0D8D7A0C5E55} - C:\Program Files\IEToolbar\4 Search w google search\4search.dll
    O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
    O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
    O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
    O3 - Toolbar: My Web Search - {07B18EA9-A523-4961-B6BB-170DE4475CCA} - C:\Program Files\MyWebSearch\bar\2.bin\MWSBAR.DLL (file missing)
    O3 - Toolbar: 4 Search w google search - {0C9A45D1-6DF3-4615-9353-07FB5EE9B507} - C:\Program Files\IEToolbar\4 Search w google search\4search.dll
    O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
    O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
    O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
    O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
    O8 - Extra context menu item: &Search - http://edits.mywebsearch.com/toolbaredits/menusearch.jhtml?p=ZKxdm021YYAU
    O8 - Extra context menu item: &Yahoo! Search - file:///C:\Program Files\Yahoo!\Common/ycsrch.htm
    O8 - Extra context menu item: Yahoo! &Dictionary - file:///C:\Program Files\Yahoo!\Common/ycdict.htm
    O8 - Extra context menu item: Yahoo! &Maps - file:///C:\Program Files\Yahoo!\Common/ycmap.htm
    O8 - Extra context menu item: Yahoo! &SMS - file:///C:\Program Files\Yahoo!\Common/ycsms.htm
    O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
    O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
    O9 - Extra button: Yahoo! Services - {5BAB4B5B-68BC-4B02-94D6-2FC0DE4A7897} - C:\Program Files\Yahoo!\Common\yiesrvc.dll
    O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
    O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
    O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
    O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
    O11 - Options group: [INTERNATIONAL] International*
    O15 - Trusted Zone: http://www.defencejobs.gov.au
    O16 - DPF: {0EB0E74A-2A76-4AB3-A7FB-9BD8C29F7F75} (CKAVWebScan Object) - http://www.kaspersky.com/kos/eng/partner/default/kavwebscan_unicode.cab
    O16 - DPF: {1D4DB7D2-6EC9-47A3-BD87-1E41684E07BB} - http://ak.exe.imgfarm.com/images/nocache/funwebproducts/ei/WebfettiInitialSetup1.0.0.15-3.cab
    O16 - DPF: {1D6711C8-7154-40BB-8380-3DEA45B69CBF} -
    O16 - DPF: {1E54D648-B804-468d-BC78-4AFFED8E262E} (System Requirements Lab) - http://www.nvidia.com/content/DriverDownload/srl/3.0.0.0/srl_bin/sysreqlab3.cab
    O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (Installation Support) - C:\Program Files\Yahoo!\Common\Yinsthelper200711281.dll
    O16 - DPF: {33564944-0000-0010-8000-00AA00389B71} - https://autoinstall.bigpond.com/index.html
    O16 - DPF: {39B0684F-D7BF-4743-B050-FDC3F48F7E3B} (CDownloadCtrl Object) - http://www.fileplanet.com/fpdlmgr/cabs/FPDC_2.3.5.107.cab
    O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://gfx1.hotmail.com/mail/w2/pr02/resources/MSNPUpld.cab
    O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} - http://www.bitdefender.com/scan8/oscan8.cab
    O16 - DPF: {70BA88C8-DAE8-4CE9-92BB-979C4A75F53B} - http://launch.gamespyarcade.com/software/launch/alaunch.cab
    O16 - DPF: {85D1F3B2-2A21-11D7-97B9-0010DC2A6243} (SecureLogin class) - http://secure2.comned.com/signuptemplates/securelogin-devel.cab
    O16 - DPF: {A18962F6-E6ED-40B1-97C9-1FB36F38BFA8} (Aurigma Image Uploader 3.5 Control) - http://www.boostcruising.com/includes/ImageUploader3e.cab
    O16 - DPF: {DE625294-70E6-45ED-B895-CFFA13AEB044} (AxisMediaControlEmb Class) - http://217.41.57.144/activex/AMC.cab
    O16 - DPF: {E7DBFB6C-113A-47CF-B278-F5C6AF4DE1BD} - http://download.abacast.com/download/files/abasetup162.cab
    O18 - Protocol: bw+0 - {6F14AFF3-3BA9-4C65-B5BC-C44A33919B75} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw+0s - {6F14AFF3-3BA9-4C65-B5BC-C44A33919B75} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw-0 - {6F14AFF3-3BA9-4C65-B5BC-C44A33919B75} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw-0s - {6F14AFF3-3BA9-4C65-B5BC-C44A33919B75} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw00 - {6F14AFF3-3BA9-4C65-B5BC-C44A33919B75} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw00s - {6F14AFF3-3BA9-4C65-B5BC-C44A33919B75} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw10 - {6F14AFF3-3BA9-4C65-B5BC-C44A33919B75} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw10s - {6F14AFF3-3BA9-4C65-B5BC-C44A33919B75} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw20 - {6F14AFF3-3BA9-4C65-B5BC-C44A33919B75} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw20s - {6F14AFF3-3BA9-4C65-B5BC-C44A33919B75} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw30 - {6F14AFF3-3BA9-4C65-B5BC-C44A33919B75} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw30s - {6F14AFF3-3BA9-4C65-B5BC-C44A33919B75} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw40 - {6F14AFF3-3BA9-4C65-B5BC-C44A33919B75} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw40s - {6F14AFF3-3BA9-4C65-B5BC-C44A33919B75} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw50 - {6F14AFF3-3BA9-4C65-B5BC-C44A33919B75} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw50s - {6F14AFF3-3BA9-4C65-B5BC-C44A33919B75} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw60 - {6F14AFF3-3BA9-4C65-B5BC-C44A33919B75} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw60s - {6F14AFF3-3BA9-4C65-B5BC-C44A33919B75} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw70 - {6F14AFF3-3BA9-4C65-B5BC-C44A33919B75} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw70s - {6F14AFF3-3BA9-4C65-B5BC-C44A33919B75} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw80 - {6F14AFF3-3BA9-4C65-B5BC-C44A33919B75} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw80s - {6F14AFF3-3BA9-4C65-B5BC-C44A33919B75} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw90 - {6F14AFF3-3BA9-4C65-B5BC-C44A33919B75} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw90s - {6F14AFF3-3BA9-4C65-B5BC-C44A33919B75} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwa0 - {6F14AFF3-3BA9-4C65-B5BC-C44A33919B75} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwa0s - {6F14AFF3-3BA9-4C65-B5BC-C44A33919B75} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwb0 - {6F14AFF3-3BA9-4C65-B5BC-C44A33919B75} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwb0s - {6F14AFF3-3BA9-4C65-B5BC-C44A33919B75} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwc0 - {6F14AFF3-3BA9-4C65-B5BC-C44A33919B75} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwc0s - {6F14AFF3-3BA9-4C65-B5BC-C44A33919B75} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwd0 - {6F14AFF3-3BA9-4C65-B5BC-C44A33919B75} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwd0s - {6F14AFF3-3BA9-4C65-B5BC-C44A33919B75} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwe0 - {6F14AFF3-3BA9-4C65-B5BC-C44A33919B75} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwe0s - {6F14AFF3-3BA9-4C65-B5BC-C44A33919B75} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwf0 - {6F14AFF3-3BA9-4C65-B5BC-C44A33919B75} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwf0s - {6F14AFF3-3BA9-4C65-B5BC-C44A33919B75} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
    O18 - Protocol: bwg0 - {6F14AFF3-3BA9-4C65-B5BC-C44A33919B75} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwg0s - {6F14AFF3-3BA9-4C65-B5BC-C44A33919B75} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwh0 - {6F14AFF3-3BA9-4C65-B5BC-C44A33919B75} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwh0s - {6F14AFF3-3BA9-4C65-B5BC-C44A33919B75} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwi0 - {6F14AFF3-3BA9-4C65-B5BC-C44A33919B75} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwi0s - {6F14AFF3-3BA9-4C65-B5BC-C44A33919B75} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwj0 - {6F14AFF3-3BA9-4C65-B5BC-C44A33919B75} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwj0s - {6F14AFF3-3BA9-4C65-B5BC-C44A33919B75} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwk0 - {6F14AFF3-3BA9-4C65-B5BC-C44A33919B75} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwk0s - {6F14AFF3-3BA9-4C65-B5BC-C44A33919B75} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwl0 - {6F14AFF3-3BA9-4C65-B5BC-C44A33919B75} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwl0s - {6F14AFF3-3BA9-4C65-B5BC-C44A33919B75} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwm0 - {6F14AFF3-3BA9-4C65-B5BC-C44A33919B75} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwm0s - {6F14AFF3-3BA9-4C65-B5BC-C44A33919B75} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwn0 - {6F14AFF3-3BA9-4C65-B5BC-C44A33919B75} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwn0s - {6F14AFF3-3BA9-4C65-B5BC-C44A33919B75} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwo0 - {6F14AFF3-3BA9-4C65-B5BC-C44A33919B75} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwo0s - {6F14AFF3-3BA9-4C65-B5BC-C44A33919B75} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwp0 - {6F14AFF3-3BA9-4C65-B5BC-C44A33919B75} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwp0s - {6F14AFF3-3BA9-4C65-B5BC-C44A33919B75} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwq0 - {6F14AFF3-3BA9-4C65-B5BC-C44A33919B75} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwq0s - {6F14AFF3-3BA9-4C65-B5BC-C44A33919B75} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwr0 - {6F14AFF3-3BA9-4C65-B5BC-C44A33919B75} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwr0s - {6F14AFF3-3BA9-4C65-B5BC-C44A33919B75} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bws0 - {6F14AFF3-3BA9-4C65-B5BC-C44A33919B75} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bws0s - {6F14AFF3-3BA9-4C65-B5BC-C44A33919B75} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwt0 - {6F14AFF3-3BA9-4C65-B5BC-C44A33919B75} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwt0s - {6F14AFF3-3BA9-4C65-B5BC-C44A33919B75} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwu0 - {6F14AFF3-3BA9-4C65-B5BC-C44A33919B75} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwu0s - {6F14AFF3-3BA9-4C65-B5BC-C44A33919B75} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwv0 - {6F14AFF3-3BA9-4C65-B5BC-C44A33919B75} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwv0s - {6F14AFF3-3BA9-4C65-B5BC-C44A33919B75} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bww0 - {6F14AFF3-3BA9-4C65-B5BC-C44A33919B75} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bww0s - {6F14AFF3-3BA9-4C65-B5BC-C44A33919B75} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwx0 - {6F14AFF3-3BA9-4C65-B5BC-C44A33919B75} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwx0s - {6F14AFF3-3BA9-4C65-B5BC-C44A33919B75} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwy0 - {6F14AFF3-3BA9-4C65-B5BC-C44A33919B75} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwy0s - {6F14AFF3-3BA9-4C65-B5BC-C44A33919B75} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwz0 - {6F14AFF3-3BA9-4C65-B5BC-C44A33919B75} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwz0s - {6F14AFF3-3BA9-4C65-B5BC-C44A33919B75} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG8\avgpp.dll
    O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\WI1F86~1\MESSEN~1\MSGRAP~1.DLL
    O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\WI1F86~1\MESSEN~1\MSGRAP~1.DLL
    O18 - Protocol: offline-8876480 - {6F14AFF3-3BA9-4C65-B5BC-C44A33919B75} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O20 - AppInit_DLLs: NVDESK32.DLL,avgrsstx.dll
    O20 - Winlogon Notify: dimsntfy - %SystemRoot%\System32\dimsntfy.dll (file missing)
    O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
    O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
    O23 - Service: AVG8 E-mail Scanner (avg8emc) - AVG Technologies CZ, s.r.o. - C:\PROGRA~1\AVG\AVG8\avgemc.exe
    O23 - Service: AVG8 WatchDog (avg8wd) - AVG Technologies CZ, s.r.o. - C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe
    O23 - Service: Metric Conversion Calculator Installer - Unknown owner - C:\Program Files\Digital Design Ltd\Metric Conversion Calculator\MCCINST.EXE" /update (file missing)
    O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe
    O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
    O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - C:\WINDOWS\system32\ZoneLabs\vsmon.exe
     
    aussiejoe, Sep 16, 2008
    #1
  2. cdavfrew

    cdavfrew Regular member

    Joined:
    May 19, 2008
    Messages:
    1,183
    Likes Received:
    0
    Trophy Points:
    46
    Hi aussiejoe

    Before I proceed, please give more details on what is wrong with your computer.

    NOTE:: Just because some of your processes have the same names as malware, it does not mean that you are infected!!!

    Best Regards :D
     
    cdavfrew, Sep 16, 2008
    #2
  3. aussiejoe

    aussiejoe Member

    Joined:
    Jun 15, 2006
    Messages:
    55
    Likes Received:
    0
    Trophy Points:
    16
    well apart from taking forever to start up when i loggin to windows, there is now the screen flashes to black for about 3-4 secs when i loggin.

    this is a list of my problems in my registry according to CCleaner:
    is it safe to remove all of them? since looking through it i dont have most of these programs on my compuiter anymore...


    Missing Shared DLL C:\Program Files\Illusion Softworks\Hidden & Dangerous 2\HD2DS.exe HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDlls
    Missing Shared DLL C:\Program Files\Illusion Softworks\Hidden & Dangerous 2\Autopatching.exe HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDlls
    Missing Shared DLL C:\Program Files\Common Files\Real\GToolbar\BarControl.dll HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDlls
    Missing Shared DLL C:\WINDOWS\Microsoft.NET\Framework\v1.0.3705\System.Windows.Forms.tlb HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDlls
    Missing Shared DLL C:\WINDOWS\Microsoft.NET\Framework\v1.0.3705\System.EnterpriseServices.tlb HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDlls
    Missing Shared DLL C:\WINDOWS\Microsoft.NET\Framework\v1.0.3705\Microsoft.JScript.tlb HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDlls
    Missing Shared DLL C:\WINDOWS\Microsoft.NET\Framework\v1.0.3705\Microsoft.Vsa.tlb HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDlls
    Missing Shared DLL C:\WINDOWS\Microsoft.NET\Framework\v1.0.3705\System.Drawing.tlb HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDlls
    Missing Shared DLL C:\WINDOWS\Microsoft.NET\Framework\v1.0.3705\mscoree.tlb HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDlls
    Missing Shared DLL C:\WINDOWS\Microsoft.NET\Framework\v1.0.3705\mscorlib.tlb HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDlls
    Missing Shared DLL C:\WINDOWS\Microsoft.NET\Framework\v1.0.3705\System.tlb HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDlls
    Missing Shared DLL C:\WINDOWS\Microsoft.NET\Framework\v1.0.3705\Microsoft.Vsa.Vb.CodeDOMProcessor.tlb HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDlls
    Unused File Extension .a - HKCR\.a
    Unused File Extension .ans - HKCR\.ans
    Unused File Extension .art - HKCR\.art
    Unused File Extension .asc - HKCR\.asc
    Unused File Extension .bcp - HKCR\.bcp
    Unused File Extension .cc - HKCR\.cc
    Unused File Extension .cls - HKCR\.cls
    Unused File Extension .cod - HKCR\.cod
    Unused File Extension .cs - HKCR\.cs
    Unused File Extension .csa - HKCR\.csa
    Unused File Extension .dbs - HKCR\.dbs
    Unused File Extension .dsp - HKCR\.dsp
    Unused File Extension .dsw - HKCR\.dsw
    Unused File Extension .etp - HKCR\.etp
    Unused File Extension .ext - HKCR\.ext
    Unused File Extension .faq - HKCR\.faq
    Unused File Extension .fky - HKCR\.fky
    Unused File Extension .i - HKCR\.i
    Unused File Extension .ibq - HKCR\.ibq
    Unused File Extension .inl - HKCR\.inl
    Unused File Extension .jav - HKCR\.jav
    Unused File Extension .kci - HKCR\.kci
    Unused File Extension .lgn - HKCR\.lgn
    Unused File Extension .lst - HKCR\.lst
    Unused File Extension .mak - HKCR\.mak
    Unused File Extension .map - HKCR\.map
    Unused File Extension .mk - HKCR\.mk
    Unused File Extension .odh - HKCR\.odh
    Unused File Extension .odl - HKCR\.odl
    Unused File Extension .prc - HKCR\.prc
    Unused File Extension .pss - pssfile HKCR\.pss
    Unused File Extension .pva - pvafile HKCR\.pva
    Unused File Extension .rc2 - HKCR\.rc2
    Unused File Extension .rct - HKCR\.rct
    Unused File Extension .rgs - HKCR\.rgs
    Unused File Extension .rul - HKCR\.rul
    Unused File Extension .s - HKCR\.s
    Unused File Extension .scc - HKCR\.scc
    Unused File Extension .shtm - HKCR\.shtm
    Unused File Extension .srf - HKCR\.srf
    Unused File Extension .tab - HKCR\.tab
    Unused File Extension .tdl - HKCR\.tdl
    Unused File Extension .tlh - HKCR\.tlh
    Unused File Extension .tli - HKCR\.tli
    Unused File Extension .tp - tpfile HKCR\.tp
    Unused File Extension .tpr - tprfile HKCR\.tpr
    Unused File Extension .trg - HKCR\.trg
    Unused File Extension .ts - tsfile HKCR\.ts
    Unused File Extension .udf - HKCR\.udf
    Unused File Extension .udt - HKCR\.udt
    Unused File Extension .user - HKCR\.user
    Unused File Extension .usr - HKCR\.usr
    Unused File Extension .vcproj - HKCR\.vcproj
    Unused File Extension .viw - HKCR\.viw
    Unused File Extension .vspscc - HKCR\.vspscc
    Unused File Extension .vsscc - HKCR\.vsscc
    Unused File Extension .vssscc - HKCR\.vssscc
    Unused File Extension .xsd - HKCR\.xsd
    Unused File Extension .xslt - HKCR\.xslt
    Unused File Extension WMPCD - HKCR\WMPCD
    Unused File Extension ZfUpdir - HKCR\ZfUpdir
    Unused File Extension .sav HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.sav
    Invalid or empty file class abm_auto_file HKCR\abm_auto_file
    Invalid Default Icon C:\Program Files\Adobe\Reader 8.0\Acrobat\AcroRd32.exe HKCR\acrobat\DefaultIcon
    ActiveX/COM Issue Cakewalk.Application - {6AB48C63-2461-11D1-A04E-444553540000} HKCR\Cakewalk.Application
    Invalid or empty file class CAL.Document HKCR\CAL.Document
    ActiveX/COM Issue ChilkatXml.ChilkatXml - {CE2E4226-494A-4DB2-9B45-7C8586CC01A3} HKCR\ChilkatXml.ChilkatXml
    ActiveX/COM Issue ChilkatXml.ChilkatXml.1 - {CE2E4226-494A-4DB2-9B45-7C8586CC01A3} HKCR\ChilkatXml.ChilkatXml.1
    ActiveX/COM Issue ChilkatXml.XmlFactory - {7FAB24D9-F81A-49A3-A0E9-A3198DEDF454} HKCR\ChilkatXml.XmlFactory
    ActiveX/COM Issue ChilkatXml.XmlFactory.1 - {7FAB24D9-F81A-49A3-A0E9-A3198DEDF454} HKCR\ChilkatXml.XmlFactory.1
    ActiveX/COM Issue ClientAX.ZangoClientAX - {51CF80DC-A309-4735-BB11-EF18BF4E3AD9} HKCR\ClientAX.ZangoClientAX
    ActiveX/COM Issue ClientAX.ZangoClientAX.1 - {51CF80DC-A309-4735-BB11-EF18BF4E3AD9} HKCR\ClientAX.ZangoClientAX.1
    Invalid or empty file class Connection Manager Profile HKCR\Connection Manager Profile
    ActiveX/COM Issue Context.test - {57BD36D7-CE32-4600-9B1C-1A0C47EFC02E} HKCR\Context.test
    ActiveX/COM Issue Context.test.1 - {57BD36D7-CE32-4600-9B1C-1A0C47EFC02E} HKCR\Context.test.1
    ActiveX/COM Issue CorelDraw.Automation.6 - {7C4DC9C0-4D9D-11CE-92A3-00401C603D3F} HKCR\CorelDraw.Automation.6
    ActiveX/COM Issue CorelMEMO.6 - {2694DEE0-44D0-11CE-86E7-00C0F002D352} HKCR\CorelMEMO.6
    ActiveX/COM Issue CorelPhotoPaint.Automation.6 - {27B6AB00-59F7-11CE-BB15-00C0F002FDF0} HKCR\CorelPhotoPaint.Automation.6
    ActiveX/COM Issue CorelPhotoPaint.Image.6 - {1AC7C6E3-F639-11CD-91A7-0000C08AE27B} HKCR\CorelPhotoPaint.Image.6
    ActiveX/COM Issue EMSOBJECT.EMSObjectCtrl.1 - {2A99CB6A-7D54-48B0-9DEF-380B1A50A7FC} HKCR\EMSOBJECT.EMSObjectCtrl.1
    Invalid Default Icon C:\Program Files\GameSpy Arcade\GSAPak.exe,-130 HKCR\GSALaunch.Document\DefaultIcon
    Open with Application Issue "C:\PROGRA~1\GAMESP~1\GSAPak.exe" -launch "%1" HKCR\GSALaunch.Document\shell\install
    Open with Application Issue C:\Program Files\GameSpy Arcade\GSAPak.exe -launch "%1" HKCR\GSALaunch.Document\shell\launch
    Open with Application Issue C:\Program Files\GameSpy Arcade\GSAPak.exe -launch "%1" HKCR\GSALaunch.Document\shell\open
    Invalid Default Icon C:\Program Files\GameSpy Arcade\GSAPak.exe,-130 HKCR\GSAPak.Document\DefaultIcon
    Open with Application Issue C:\Program Files\GameSpy Arcade\GSAPak.exe "%1" HKCR\GSAPak.Document\shell\install
    Open with Application Issue C:\Program Files\GameSpy Arcade\GSAPak.exe "%1" HKCR\GSAPak.Document\shell\open
    Invalid Default Icon C:\Program Files\GameSpy Arcade\GSAPak.exe,-133 HKCR\GSASkin.Document\DefaultIcon
    Open with Application Issue C:\Program Files\GameSpy Arcade\GSAPak.exe "%1" HKCR\GSASkin.Document\shell\install
    Open with Application Issue C:\Program Files\GameSpy Arcade\GSAPak.exe "%1" HKCR\GSASkin.Document\shell\open
    ActiveX/COM Issue GSDA.GSDACtl - {70BA88C8-DAE8-4CE9-92BB-979C4A75F53B} HKCR\GSDA.GSDACtl
    ActiveX/COM Issue GSDA.GSDACtl.1 - {70BA88C8-DAE8-4CE9-92BB-979C4A75F53B} HKCR\GSDA.GSDACtl.1
    ActiveX/COM Issue GSDA.GSDAProp - {578D8287-FB03-466E-A404-DD772E6CBEAE} HKCR\GSDA.GSDAProp
    ActiveX/COM Issue GSDA.GSDAProp.1 - {578D8287-FB03-466E-A404-DD772E6CBEAE} HKCR\GSDA.GSDAProp.1
    Open with Application Issue C:\PROGRA~1\Logitech\DESKTO~1\8876480\614~1.68-\Program\REGISTER.EXE "%1" HKCR\iadfile\shell\open
    Invalid or empty file class IrfanView HKCR\IrfanView
    ActiveX/COM Issue JCDE_Stack - {CC7A6223-3759-4075-8CEA-971F5CFC0ED2} HKCR\JCDE_Stack
    ActiveX/COM Issue JCDE_Stack.1 - {CC7A6223-3759-4075-8CEA-971F5CFC0ED2} HKCR\JCDE_Stack.1
    ActiveX/COM Issue LGPhone.PhoneFolder - {792F0537-F929-4eb7-AC1D-FB6334C71550} HKCR\LGPhone.PhoneFolder
    ActiveX/COM Issue LGPhone.PhoneFolder.1 - {792F0537-F929-4eb7-AC1D-FB6334C71550} HKCR\LGPhone.PhoneFolder.1
    ActiveX/COM Issue LMgr180.WMDRMAx - {F31A5D11-BF0B-4A4E-90AF-274F2090AAA6} HKCR\LMgr180.WMDRMAx
    ActiveX/COM Issue LMgr180.WMDRMAx.1 - {F31A5D11-BF0B-4A4E-90AF-274F2090AAA6} HKCR\LMgr180.WMDRMAx.1
    ActiveX/COM Issue Microsoft.ActiveXPlugin - {06DD38D3-D187-11CF-A80D-00C04FD74AD8} HKCR\Microsoft.ActiveXPlugin
    ActiveX/COM Issue Microsoft.ActiveXPlugin.1 - {06DD38D3-D187-11CF-A80D-00C04FD74AD8} HKCR\Microsoft.ActiveXPlugin.1
    ActiveX/COM Issue MOVIEPLAYER.MoviePlayerCtrl.1 - {F4A32EAF-F30D-466D-BEC8-F4ED86CAF84E} HKCR\MOVIEPLAYER.MoviePlayerCtrl.1
    ActiveX/COM Issue MSNIASVC.LogonManager - {0E6D2E9F-79C6-457A-8DAC-6EE10470CB69} HKCR\MSNIASVC.LogonManager
    ActiveX/COM Issue MSNIASVC.LogonManager.1 - {0E6D2E9F-79C6-457A-8DAC-6EE10470CB69} HKCR\MSNIASVC.LogonManager.1
    ActiveX/COM Issue MSNIASVC.MSNIAUI - {F313F280-7FB6-4CAE-BEC9-68C86813CAD0} HKCR\MSNIASVC.MSNIAUI
    ActiveX/COM Issue MSNIASVC.MSNIAUI.1 - {F313F280-7FB6-4CAE-BEC9-68C86813CAD0} HKCR\MSNIASVC.MSNIAUI.1
    Invalid or empty file class Nero.AutoPlay HKCR\Nero.AutoPlay
    Invalid or empty file class NeroAACType HKCR\NeroAACType
    Invalid or empty file class NeroCopyType HKCR\NeroCopyType
    Invalid or empty file class NeroCueSheetType HKCR\NeroCueSheetType
    Invalid or empty file class NeroErrorType HKCR\NeroErrorType
    Invalid or empty file class NeroHDBackupType HKCR\NeroHDBackupType
    Invalid or empty file class PlayList.Document HKCR\PlayList.Document
    Invalid Default Icon %SystemRoot%\system32\msppcnfg.exe,1 HKCR\ppifile\DefaultIcon
    Open with Application Issue %SystemRoot%\System32\msppcnfg.exe /Config %1 HKCR\ppifile\shell\open
    Open with Application Issue C:\PROGRA~1\QUICKT~1\QuickTimeUpdater.exe "%1" HKCR\QuickTime.qup\shell\open
    ActiveX/COM Issue RNGC.IPCServer - {BEE9C324-3E00-11D4-823D-00D0B74C5265} HKCR\RNGC.IPCServer
    ActiveX/COM Issue RNGC.IPCServer.1 - {BEE9C324-3E00-11D4-823D-00D0B74C5265} HKCR\RNGC.IPCServer.1
    ActiveX/COM Issue SpyDoctor.EMClient - {C7976BEB-AB1E-46F7-8CCD-D4C9CD83BF49} HKCR\SpyDoctor.EMClient
    ActiveX/COM Issue StockView.StockView.1 - {8D4B0BE1-C02E-11D2-A33D-00A0C94B8D0E} HKCR\StockView.StockView.1
    ActiveX/COM Issue THUMBWND.ThumbWndCtrl.1 - {53681412-4DE1-41DC-849A-EBC77E1AE1E2} HKCR\THUMBWND.ThumbWndCtrl.1
    Invalid Default Icon C:\Program Files\Deskshare\Video Edit Magic 4.3\Video Edit Magic.exe,0 HKCR\VEM_Project\DefaultIcon
    Open with Application Issue C:\Program Files\Deskshare\Video Edit Magic 4.3\Video Edit Magic.exe %1 HKCR\VEM_Project\shell\Open
    Open with Application Issue C:\PROGRA~1\Yahoo!\Common\YSHORT~1.EXE %1 HKCR\Ybmfile\shell\open
    Open with Application Issue C:\PROGRA~1\Yahoo!\Common\YSHORT~1.EXE %1 HKCR\Ybmfile\shell\opennew
    ActiveX/COM Issue InProcServer32\C:\Program Files\MyWebSearch\SrchAstt\2.bin\MWSSRCAS.DLL HKCR\CLSID\{00A6FAF1-072E-44cf-8957-5838F569A31D}
    ActiveX/COM Issue InProcServer32\C:\Program Files\MyWebSearch\SrchAstt\2.bin\MWSSRCAS.DLL HKCR\CLSID\{00A6FAF6-072E-44cf-8957-5838F569A31D}
    ActiveX/COM Issue InProcServer32\C:\Program Files\MyWebSearch\bar\2.bin\MWSBAR.DLL HKCR\CLSID\{07B18EA1-A523-4961-B6BB-170DE4475CCA}
    ActiveX/COM Issue InProcServer32\C:\Program Files\MyWebSearch\bar\2.bin\MWSBAR.DLL HKCR\CLSID\{07B18EA9-A523-4961-B6BB-170DE4475CCA}
    ActiveX/COM Issue InProcServer32\C:\Program Files\MyWebSearch\bar\2.bin\MWSBAR.DLL HKCR\CLSID\{07B18EAB-A523-4961-B6BB-170DE4475CCA}
    ActiveX/COM Issue InProcServer32\C:\Program Files\MyWebSearch\bar\2.bin\F3HISTSW.DLL HKCR\CLSID\{0F8ECF4F-3646-4C3A-8881-8E138FFCAF70}
    ActiveX/COM Issue InProcServer32\C:\WINDOWS\system32\Macromed\Flash\Flash9d.ocx HKCR\CLSID\{1171A62F-05D2-11D1-83FC-00A0C9089C5A}
    ActiveX/COM Issue InProcServer32\C:\Program Files\Windows Desktop Search\xppreviewproxy.dll HKCR\CLSID\{196BF9A5-B346-4EF0-AA1E-5DCDB76768B1}
    ActiveX/COM Issue InProcServer32\%SystemRoot%\system32\eapa3hst.dll HKCR\CLSID\{1FF84C3B-1140-4eb6-BE38-4BE618D2E7D6}
    ActiveX/COM Issue LocalServer32\C:\PROGRA~1\INTERA~1\INTERA~1\iPlayer.exe HKCR\CLSID\{2524A5A2-6DE6-433B-A067-33AAA8CF1587}
    ActiveX/COM Issue InProcServer32\C:\Program Files\MyWebSearch\bar\2.bin\F3DTACTL.DLL HKCR\CLSID\{25560540-9571-4D7B-9389-0F166788785A}
    ActiveX/COM Issue InProcServer32\C:\Program Files\MyWebSearch\bar\2.bin\F3SHLLVW.DLL HKCR\CLSID\{2EFF3CF7-99C1-4c29-BC2B-68E057E22340}
    ActiveX/COM Issue InProcServer32\C:\Program Files\MyWebSearch\bar\2.bin\F3HTMLMU.DLL HKCR\CLSID\{3DC201FB-E9C9-499C-A11F-23C360D7C3F8}
    ActiveX/COM Issue InProcServer32\C:\Program Files\MyWebSearch\bar\2.bin\M3HTML.DLL HKCR\CLSID\{3E720452-B472-4954-B7AA-33069EB53906}
    ActiveX/COM Issue InProcServer32\C:\Program Files\MyWebSearch\bar\2.bin\MWSBAR.DLL HKCR\CLSID\{53CED2D0-5E9A-4761-9005-648404E6F7E5}
    ActiveX/COM Issue InProcServer32\C:\DOCUME~1\joe\LOCALS~1\Temp\InfoWindow.dll HKCR\CLSID\{56336BCA-3D8A-11d6-A00B-0050DA18DE71}
    ActiveX/COM Issue InProcServer32\C:\WINDOWS\system32\eapahost.dll HKCR\CLSID\{5A8371A3-0C6D-487b-B3C8-46D785C4C940}
    ActiveX/COM Issue InProcServer32\C:\Program Files\MyWebSearch\bar\2.bin\F3POPSWT.DLL HKCR\CLSID\{63D0ED2C-B45B-4458-8B3B-60C69BBBD83C}
    ActiveX/COM Issue InProcServer32\C:\Program Files\MyWebSearch\bar\2.bin\M3SKIN.DLL HKCR\CLSID\{7473D292-B7BB-4f24-AE82-7E2CE94BB6A9}
    ActiveX/COM Issue InProcServer32\C:\Program Files\MyWebSearch\bar\2.bin\M3SKIN.DLL HKCR\CLSID\{7473D294-B7BB-4f24-AE82-7E2CE94BB6A9}
    ActiveX/COM Issue InProcServer32\C:\Program Files\MyWebSearch\bar\2.bin\M3SKIN.DLL HKCR\CLSID\{7473D296-B7BB-4f24-AE82-7E2CE94BB6A9}
    ActiveX/COM Issue InProcServer32\C:\PROGRA~1\MESSEN~1\rtcimsp.dll HKCR\CLSID\{83D4679F-B6D7-11D2-BF36-00C04FB90A03}
    ActiveX/COM Issue InProcServer32\C:\Program Files\MyWebSearch\bar\2.bin\F3CJPEG.DLL HKCR\CLSID\{84DA4FDF-A1CF-4195-8688-3E961F505983}
    ActiveX/COM Issue InProcServer32\C:\Program Files\MyWebSearch\bar\2.bin\F3POPSWT.DLL HKCR\CLSID\{8E6F1832-9607-4440-8530-13BE7C4B1D14}
    ActiveX/COM Issue InProcServer32\C:\Program Files\MyWebSearch\bar\2.bin\F3SCRCTR.DLL HKCR\CLSID\{938AA51A-996C-4884-98CE-80DD16A5C9DA}
    ActiveX/COM Issue InProcServer32\C:\Program Files\Windows Desktop Search\deskbar.dll HKCR\CLSID\{97090E2F-3062-4459-855B-014F0D3CDBB1}
    ActiveX/COM Issue InProcServer32\C:\DOCUME~1\joe\LOCALS~1\Temp\CMDLIN~1.DLL HKCR\CLSID\{9869EFB4-18E9-11D3-A837-00104B9E30B5}
    ActiveX/COM Issue InProcServer32\C:\Program Files\MyWebSearch\bar\2.bin\F3HTMLMU.DLL HKCR\CLSID\{98D9753D-D73B-42D5-8C85-4469CDA897AB}
    ActiveX/COM Issue InProcServer32\%SystemRoot%\system32\eapa3hst.dll HKCR\CLSID\{9DAA7B9D-CE5B-42CE-B942-32BBC284AC44}
    ActiveX/COM Issue InProcServer32\C:\Program Files\MyWebSearch\bar\2.bin\F3SCRCTR.DLL HKCR\CLSID\{9FF05104-B030-46FC-94B8-81276E4E27DF}
    ActiveX/COM Issue InProcServer32\C:\Program Files\MyWebSearch\bar\2.bin\F3BROVLY.DLL HKCR\CLSID\{A6573479-9075-4A65-98A6-19FD29CF7374}
    ActiveX/COM Issue InProcServer32\C:\Program Files\MyWebSearch\bar\2.bin\F3POPSWT.DLL HKCR\CLSID\{A9571378-68A1-443d-B082-284F960C6D17}
    ActiveX/COM Issue InProcServer32\C:\Program Files\MyWebSearch\bar\2.bin\M3OUTLCN.DLL HKCR\CLSID\{ADB01E81-3C79-4272-A0F1-7B2BE7A782DC}
    ActiveX/COM Issue InProcServer32\%SystemRoot%\system32\eapa3hst.dll HKCR\CLSID\{B0E28D63-52F6-4e30-992B-78ECF97268E9}
    ActiveX/COM Issue InProcServer32\C:\Program Files\MyWebSearch\bar\2.bin\F3HISTSW.DLL HKCR\CLSID\{B813095C-81C0-4E40-AA14-67520372B987}
    ActiveX/COM Issue InProcServer32\C:\Program Files\MyWebSearch\bar\2.bin\F3HISTSW.DLL HKCR\CLSID\{C9D7BE3E-141A-4C85-8CD6-32461F3DF2C7}
    ActiveX/COM Issue InProcServer32\C:\Program Files\IEToolbar\4 Search w google search\tbhelper.dll HKCR\CLSID\{CA3EB689-8F09-4026-AA10-B9534C691CE0}
    ActiveX/COM Issue InProcServer32\C:\Program Files\MyWebSearch\bar\2.bin\F3HISTSW.DLL HKCR\CLSID\{CFF4CE82-3AA2-451F-9B77-7165605FB835}
    ActiveX/COM Issue InProcServer32\C:\Program Files\DivX\DivX Content Uploader\npUpload.dll HKCR\CLSID\{D050D736-2D21-4723-AD58-5B541FFB6C11}
    ActiveX/COM Issue InProcServer32\C:\Program Files\MyWebSearch\bar\2.bin\F3BROVLY.DLL HKCR\CLSID\{D778513B-1C40-4819-B0C5-49E40B39AFD0}
    ActiveX/COM Issue InProcServer32\C:\Program Files\MyWebSearch\bar\2.bin\F3HTTPCT.DLL HKCR\CLSID\{D9FFFB27-D62A-4D64-8CEC-1FF006528805}
    ActiveX/COM Issue InProcServer32\C:\Program Files\MyWebSearch\bar\2.bin\M3MSG.DLL HKCR\CLSID\{E79DFBCA-5697-4fbd-94E5-5B2A9C7C1612}
    ActiveX/COM Issue LocalServer32\C:\PROGRA~1\EQSOGA~1\PMR_RA~1.EXE HKCR\CLSID\{F5C72C47-9D37-48D1-B517-1AE3B286E3BC}
    Missing TypeLib Reference IEBankProblem - {8051E3F7-B752-42C8-AEA7-4CC1D125D49B} HKCR\Interface\{27A03337-291D-488A-9A22-8C46E050DFBD}
    Missing TypeLib Reference ISearch - {47A7A4B0-2723-41BA-865E-EBBB7081A602} HKCR\Interface\{2CE4D4CF-B278-4126-AD1E-B622DA2E8339}
    Missing TypeLib Reference IEMClient - {8051E3F7-B752-42C8-AEA7-4CC1D125D49B} HKCR\Interface\{930418D9-F27C-4D3C-B478-6699932A3327}
    Missing TypeLib Reference IScripterProxy - {8051E3F7-B752-42C8-AEA7-4CC1D125D49B} HKCR\Interface\{B0EA3F5F-E58A-4376-AE71-D7518BBB2925}
    Missing TypeLib Reference IQuarantinedItemProxy - {8051E3F7-B752-42C8-AEA7-4CC1D125D49B} HKCR\Interface\{CED0340D-C57E-4371-B9F7-83ED5541AA22}
    Open with Application Issue Applications\bittorrent.exe\shell HKCR\Applications\bittorrent.exe
    Open with Application Issue Applications\IsoBuster.exe\shell HKCR\Applications\IsoBuster.exe
    Open with Application Issue Applications\i_view32.exe\shell HKCR\Applications\i_view32.exe
    Open with Application Issue Applications\winace.exe\shell HKCR\Applications\winace.exe
    Installer Reference Issue C:\Documents and Settings\All Users\Start Menu\Programs\LG PC Suite HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\Folders
    Installer Reference Issue C:\Program Files\Illusion Softworks\Hidden & Dangerous 2 HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\Folders
    Installer Reference Issue C:\Program Files\Illusion Softworks HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\Folders
    Installer Reference Issue C:\Program Files\Illusion Softworks\Hidden & Dangerous 2\Text\english\Fonts HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\Folders
    Installer Reference Issue C:\Program Files\Illusion Softworks\Hidden & Dangerous 2\Text\english HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\Folders
    Installer Reference Issue C:\Program Files\Illusion Softworks\Hidden & Dangerous 2\Text HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\Folders
    Installer Reference Issue C:\Program Files\Illusion Softworks\Hidden & Dangerous 2\Gamemovie HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\Folders
    Installer Reference Issue C:\Program Files\Illusion Softworks\Hidden & Dangerous 2\Text\english\Fonts\Set1 HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\Folders
    Installer Reference Issue C:\Program Files\Illusion Softworks\Hidden & Dangerous 2\Text\english\Fonts\Set2 HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\Folders
    Installer Reference Issue C:\Program Files\Illusion Softworks\Hidden & Dangerous 2\Text\english\Fonts\Set3 HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\Folders
    Installer Reference Issue C:\Program Files\Illusion Softworks\Hidden & Dangerous 2\Text\english\subtitles HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\Folders
    Installer Reference Issue C:\Documents and Settings\All Users\Start Menu\Programs\Illusion Softworks\Hidden & Dangerous 2 HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\Folders
    Installer Reference Issue C:\Documents and Settings\All Users\Start Menu\Programs\Illusion Softworks HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\Folders
    Uninstaller Reference Issue C:\Program Files\Microsoft Games\Age of Empires\Uninstal.exe /uninstall HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\Age of Empires
    Uninstaller Reference Issue rundll32 C:\PROGRA~1\MYWEBS~1\bar\2.bin\mwsbar.dll,O HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\MyWebSearch bar Uninstall
    Uninstaller Reference Issue C:\Program Files\DivX\DivXCodecUninstall.exe /CODEC HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{7B63B2922B174135AFC0E1377DD81EC2}
    Uninstaller Reference Issue AVG7Uninstall HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\AVG7Uninstall
    Uninstaller Reference Issue AVGAntiSpyware75 HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\AVGAntiSpyware75
    Uninstaller Reference Issue Concord Digital Camera HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Concord Digital Camera
    Uninstaller Reference Issue Corel Applications HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Corel Applications
    Uninstaller Reference Issue eQSO Gateway - PMR Radio_is1 HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\eQSO Gateway - PMR Radio_is1
    Uninstaller Reference Issue ewidoantimalware HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\ewidoantimalware
    Uninstaller Reference Issue InstallShield_{D130E8E3-C39F-4572-A622-8636BBB09865} HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\InstallShield_{D130E8E3-C39F-4572-A622-8636BBB09865}
    Uninstaller Reference Issue IrfanView HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\IrfanView
    Uninstaller Reference Issue KB873339 HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\KB873339
    Uninstaller Reference Issue KB885250 HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\KB885250
    Uninstaller Reference Issue KB885835 HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\KB885835
    Uninstaller Reference Issue KB885836 HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\KB885836
    Uninstaller Reference Issue KB886185 HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\KB886185
    Uninstaller Reference Issue KB887742 HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\KB887742
    Uninstaller Reference Issue KB888113 HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\KB888113
    Uninstaller Reference Issue KB888302 HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\KB888302
    Uninstaller Reference Issue KB890046 HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\KB890046
    Uninstaller Reference Issue KB890859 HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\KB890859
    Uninstaller Reference Issue KB891781 HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\KB891781
    Uninstaller Reference Issue KB893756 HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\KB893756
    Uninstaller Reference Issue KB893803v2 HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\KB893803v2
    Uninstaller Reference Issue KB894391 HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\KB894391
    Uninstaller Reference Issue KB896358 HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\KB896358
    Uninstaller Reference Issue KB896422 HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\KB896422
    Uninstaller Reference Issue KB896423 HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\KB896423
    Uninstaller Reference Issue KB896424 HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\KB896424
    Uninstaller Reference Issue KB896428 HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\KB896428
    Uninstaller Reference Issue KB899587 HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\KB899587
    Uninstaller Reference Issue KB899589 HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\KB899589
    Uninstaller Reference Issue KB899591 HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\KB899591
    Uninstaller Reference Issue KB900485 HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\KB900485
    Uninstaller Reference Issue KB900725 HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\KB900725
    Uninstaller Reference Issue KB901017 HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\KB901017
    Uninstaller Reference Issue KB901214 HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\KB901214
    Uninstaller Reference Issue KB902400 HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\KB902400
    Uninstaller Reference Issue KB904706 HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\KB904706
    Uninstaller Reference Issue KB904942 HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\KB904942
    Uninstaller Reference Issue KB905414 HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\KB905414
    Uninstaller Reference Issue KB905749 HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\KB905749
    Uninstaller Reference Issue KB908519 HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\KB908519
    Uninstaller Reference Issue KB908531 HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\KB908531
    Uninstaller Reference Issue KB910437 HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\KB910437
    Uninstaller Reference Issue KB911280 HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\KB911280
    Uninstaller Reference Issue KB911562 HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\KB911562
    Uninstaller Reference Issue KB911567 HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\KB911567
    Uninstaller Reference Issue KB911927 HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\KB911927
    Uninstaller Reference Issue KB912812 HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\KB912812
    Uninstaller Reference Issue KB912919 HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\KB912919
    Uninstaller Reference Issue KB913446 HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\KB913446
    Uninstaller Reference Issue KB913580 HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\KB913580
    Uninstaller Reference Issue KB914388 HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\KB914388
    Uninstaller Reference Issue KB914389 HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\KB914389
    Uninstaller Reference Issue KB914440 HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\KB914440
    Uninstaller Reference Issue KB915865 HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\KB915865
    Uninstaller Reference Issue KB916281 HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\KB916281
    Uninstaller Reference Issue KB916595 HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\KB916595
    Uninstaller Reference Issue KB917159 HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\KB917159
    Uninstaller Reference Issue KB917344 HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\KB917344
    Uninstaller Reference Issue KB917422 HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\KB917422
    Uninstaller Reference Issue KB917953 HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\KB917953
    Uninstaller Reference Issue KB918118 HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\KB918118
    Uninstaller Reference Issue KB918439 HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\KB918439
    Uninstaller Reference Issue KB918899 HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\KB918899
    Uninstaller Reference Issue KB919007 HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\KB919007
    Uninstaller Reference Issue KB920213 HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\KB920213
    Uninstaller Reference Issue KB920214 HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\KB920214
    Uninstaller Reference Issue KB920670 HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\KB920670
    Uninstaller Reference Issue KB920683 HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\KB920683
    Uninstaller Reference Issue KB920685 HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\KB920685
    Uninstaller Reference Issue KB920872 HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\KB920872
    Uninstaller Reference Issue KB921398 HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\KB921398
    Uninstaller Reference Issue KB921503 HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\KB921503
    Uninstaller Reference Issue KB921883 HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\KB921883
    Uninstaller Reference Issue KB922582 HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\KB922582
    Uninstaller Reference Issue KB922616 HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\KB922616
    Uninstaller Reference Issue KB922819 HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\KB922819
    Uninstaller Reference Issue KB923191 HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\KB923191
    Uninstaller Reference Issue KB923414 HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\KB923414
    Uninstaller Reference Issue KB923694 HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\KB923694
    Uninstaller Reference Issue KB923980 HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\KB923980
    Uninstaller Reference Issue KB924191 HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\KB924191
    Uninstaller Reference Issue KB924270 HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\KB924270
    Uninstaller Reference Issue KB924496 HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\KB924496
    Uninstaller Reference Issue KB924667 HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\KB924667
    Uninstaller Reference Issue KB925902 HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\KB925902
    Uninstaller Reference Issue KB926239 HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\KB926239
    Uninstaller Reference Issue KB926255 HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\KB926255
    Uninstaller Reference Issue KB926436 HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\KB926436
    Uninstaller Reference Issue KB927779 HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\KB927779
    Uninstaller Reference Issue KB927802 HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\KB927802
    Uninstaller Reference Issue KB927891 HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\KB927891
    Uninstaller Reference Issue KB928255 HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\KB928255
    Uninstaller Reference Issue KB928843 HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\KB928843
    Uninstaller Reference Issue KB929120 HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\KB929120
    Uninstaller Reference Issue KB929123 HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\KB929123
    Uninstaller Reference Issue KB929338 HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\KB929338
    Uninstaller Reference Issue KB930178 HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\KB930178
    Uninstaller Reference Issue KB930916 HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\KB930916
    Uninstaller Reference Issue KB931261 HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\KB931261
    Uninstaller Reference Issue KB931784 HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\KB931784
    Uninstaller Reference Issue KB931836 HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\KB931836
    Uninstaller Reference Issue KB932168 HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\KB932168
    Uninstaller Reference Issue KB932823-v3 HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\KB932823-v3
    Uninstaller Reference Issue KB933360 HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\KB933360
    Uninstaller Reference Issue KB933729 HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\KB933729
    Uninstaller Reference Issue KB935839 HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\KB935839
    Uninstaller Reference Issue KB935840 HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\KB935840
    Uninstaller Reference Issue KB936021 HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\KB936021
    Uninstaller Reference Issue KB937894 HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\KB937894
    Uninstaller Reference Issue KB938828 HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\KB938828
    Uninstaller Reference Issue KB938829 HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\KB938829
    Uninstaller Reference Issue KB941202 HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\KB941202
    Uninstaller Reference Issue KB941568 HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\KB941568
    Uninstaller Reference Issue KB941644 HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\KB941644
    Uninstaller Reference Issue KB941693 HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\KB941693
    Uninstaller Reference Issue KB942763 HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\KB942763
    Uninstaller Reference Issue KB943055 HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\KB943055
    Uninstaller Reference Issue KB943460 HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\KB943460
    Uninstaller Reference Issue KB943485 HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\KB943485
    Uninstaller Reference Issue KB944653 HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\KB944653
    Uninstaller Reference Issue KB945553 HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\KB945553
    Uninstaller Reference Issue KB946026 HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\KB946026
    Uninstaller Reference Issue KB948590 HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\KB948590
    Uninstaller Reference Issue KB950749 HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\KB950749
    Uninstaller Reference Issue Logitech Print Service HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Logitech Print Service
    Uninstaller Reference Issue Microsoft .NET Framework 2.0 HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Microsoft .NET Framework 2.0
    Uninstaller Reference Issue QuickTime HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\QuickTime
    Uninstaller Reference Issue Video Edit Magic 4_is1 HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Video Edit Magic 4_is1
    Uninstaller Reference Issue Yahoo! Customizations HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Yahoo! Customizations
    Uninstaller Reference Issue Yahoo! Messenger HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Yahoo! Messenger
    Uninstaller Reference Issue YInstHelper HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\YInstHelper
    Uninstaller Reference Issue {0496D9E8-224B-4AFA-8F37-23B98D52F1EB} HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{0496D9E8-224B-4AFA-8F37-23B98D52F1EB}
    Uninstaller Reference Issue {49672EC2-171B-47B4-8CE7-50D7806360D7} HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{49672EC2-171B-47B4-8CE7-50D7806360D7}
    Uninstaller Reference Issue {571700F0-DB9D-4B3A-B03D-35A14BB5939F} HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{571700F0-DB9D-4B3A-B03D-35A14BB5939F}
    Uninstaller Reference Issue {AC76BA86-7AD7-0000-2550-7A8C40000000} HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{AC76BA86-7AD7-0000-2550-7A8C40000000}
    Uninstaller Reference Issue {D050D7362D214723AD585B541FFB6C11} HKLM\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{D050D7362D214723AD585B541FFB6C11}
    Obsolete software key 3ivx HKCU\Software\3ivx
    Obsolete software key DeskShare HKCU\Software\DeskShare
    Obsolete software key InterActual Technologies HKCU\Software\InterActual Technologies
    Obsolete software key shockwave.com HKCU\Software\shockwave.com
    Obsolete software key VB and VBA Program Settings HKCU\Software\VB and VBA Program Settings
    Obsolete software key EfntSS33 HKLM\Software\EfntSS33
    Obsolete software key Grisoft HKLM\Software\Grisoft
    Obsolete software key Sonic HKLM\Software\Sonic
    Obsolete software key TWC HKLM\Software\TWC
    Old Start Menu key AVG 7.5 HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\MenuOrder\Start Menu2\Programs\AVG 7.5
    Old Start Menu key AVG Anti-Spyware 7.5 HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\MenuOrder\Start Menu2\Programs\AVG Anti-Spyware 7.5
    Old Start Menu key AVI DVD Burner HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\MenuOrder\Start Menu2\Programs\AVI DVD Burner
    Old Start Menu key DivX Content Uploader HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\MenuOrder\Start Menu2\Programs\DivX\DivX Content Uploader
    Old Start Menu key EA GAMES HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\MenuOrder\Start Menu2\Programs\EA GAMES
    Old Start Menu key Easy MPEG AVI DIVX WMV RM to DVD HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\MenuOrder\Start Menu2\Programs\Easy MPEG AVI DIVX WMV RM to DVD
    Old Start Menu key eQSO Gateway - PMR Radio HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\MenuOrder\Start Menu2\Programs\eQSO Gateway - PMR Radio
    Old Start Menu key ewido networks HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\MenuOrder\Start Menu2\Programs\ewido networks
    Old Start Menu key Illusion Softworks HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\MenuOrder\Start Menu2\Programs\Illusion Softworks
    Old Start Menu key Hidden & Dangerous 2 HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\MenuOrder\Start Menu2\Programs\Illusion Softworks\Hidden & Dangerous 2
    Old Start Menu key IrfanView HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\MenuOrder\Start Menu2\Programs\IrfanView
    Old Start Menu key LG PC Suite HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\MenuOrder\Start Menu2\Programs\LG PC Suite
    Old Start Menu key LG Phone Manager HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\MenuOrder\Start Menu2\Programs\LG PC Suite\LG Phone Manager
    Old Start Menu key Microsoft Games HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\MenuOrder\Start Menu2\Programs\Microsoft Games
    Old Start Menu key Age of Empires HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\MenuOrder\Start Menu2\Programs\Microsoft Games\Age of Empires
    Old Start Menu key Ubi Soft HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\MenuOrder\Start Menu2\Programs\Ubi Soft
    Old Start Menu key CSI HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\MenuOrder\Start Menu2\Programs\Ubi Soft\CSI
    Old Start Menu key Ubisoft HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\MenuOrder\Start Menu2\Programs\Ubisoft
    Old Start Menu key CSI-Dark Motives HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\MenuOrder\Start Menu2\Programs\Ubisoft\CSI-Dark Motives
    Old Start Menu key Video Edit Magic 4.3 HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\MenuOrder\Start Menu2\Programs\Video Edit Magic 4.3
    Old Start Menu key Yahoo! HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\MenuOrder\Start Menu2\Programs\Yahoo!
    Old Start Menu key Yahoo! Messenger HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\MenuOrder\Start Menu2\Programs\Yahoo! Messenger
    Missing MUI Reference C:\Program Files\IEToolbar\4 Search w google search\uninstall.exe HKCU\Software\Microsoft\Windows\ShellNoRoam\MUICache
    Missing MUI Reference C:\Program Files\eQSO Gateway - PMR Radio\unins000.exe HKCU\Software\Microsoft\Windows\ShellNoRoam\MUICache
    Missing MUI Reference C:\Program Files\Deskshare\Video Edit Magic 4.3\unins000.exe HKCU\Software\Microsoft\Windows\ShellNoRoam\MUICache
    Missing MUI Reference C:\WINDOWS\$NtUninstallKB940157$\spuninst\spuninst.exe HKCU\Software\Microsoft\Windows\ShellNoRoam\MUICache
    Missing MUI Reference C:\DOCUME~1\joe\LOCALS~1\Temp\GLB5.tmp HKCU\Software\Microsoft\Windows\ShellNoRoam\MUICache
    Missing MUI Reference C:\DOCUME~1\joe\LOCALS~1\Temp\_uninsep.bat HKCU\Software\Microsoft\Windows\ShellNoRoam\MUICache
    Missing MUI Reference C:\DOCUME~1\joe\LOCALS~1\Temp\un.bat HKCU\Software\Microsoft\Windows\ShellNoRoam\MUICache
    Missing MUI Reference C:\DOCUME~1\joe\LOCALS~1\Temp\un2.bat HKCU\Software\Microsoft\Windows\ShellNoRoam\MUICache
    Missing MUI Reference C:\DOCUME~1\joe\LOCALS~1\Temp\unwise.exe HKCU\Software\Microsoft\Windows\ShellNoRoam\MUICache

     
    aussiejoe, Sep 16, 2008
    #3
  4. cdavfrew

    cdavfrew Regular member

    Joined:
    May 19, 2008
    Messages:
    1,183
    Likes Received:
    0
    Trophy Points:
    46
    Hey aussiejoe

    I will not recommend you fixing those problems in CCleaner. Whether the registry is cluttered or junk-filled, it will not affect the computer's performance.

    I don't think you have malware. Perhaps you simply have a bad case of a slow computer. Look at these websites for more info:
    http://www.microsoft.com/atwork/getstarted/speed.mspx
    http://windows.about.com/od/troubleshooting/tp/5waysperform.htm

    If you really want to make sure you computer is malware-free, we can pursue it further. I do see some traces of malware left behind in your HijackThis log, so let's fix that first.

    Please run HijackThis.

    • Click on the button which says Main Menu, then Do a system scan only.
    • Please wait for the scan to be completed.
    • After the scan has completed, check the following entries.

    Code:
    R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = 169.229.50.18:3124 
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = local;localhost 
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file) 
R3 - URLSearchHook: (no name) - {00A6FAF6-072E-44cf-8957-5838F569A31D} - C:\Program Files\MyWebSearch\SrchAstt\2.bin\MWSSRCAS.DLL (file missing) 
R3 - URLSearchHook: (no name) - {4FDDEB42-B849-4CBB-88D2-6D365CB942AC} - (no file) 
O2 - BHO: MyWebSearch Search Assistant BHO - {00A6FAF1-072E-44cf-8957-5838F569A31D} - C:\Program Files\MyWebSearch\SrchAstt\2.bin\MWSSRCAS.DLL (file missing) 
O2 - BHO: mwsBar BHO - {07B18EA1-A523-4961-B6BB-170DE4475CCA} - C:\Program Files\MyWebSearch\bar\2.bin\MWSBAR.DLL (file missing) 
O3 - Toolbar: My Web Search - {07B18EA9-A523-4961-B6BB-170DE4475CCA} - C:\Program Files\MyWebSearch\bar\2.bin\MWSBAR.DLL (file missing) 
O20 - Winlogon Notify: dimsntfy - %SystemRoot%\System32\dimsntfy.dll (file missing)
    Click on the button Fix checked

    NOTE:: Close all browsers before fixing anything.

    After that, reboot.

    Best Regards :D
     
    cdavfrew, Sep 17, 2008
    #4

Share This Page