Bazooka Adware and Spyware Scanner Log 755

****************************************
Bazooka Adware and Spyware Scanner v1.13.01
http://www.kephyr.com/spywarescanner/
http://www.kephyr.com/spywarescanner/library/
Log created 10:53:20.
OS: Windows NT 5.1
Database version: 1.860000
Database format version: 1.020000
Database date: 20040308
Current date: 2004-07-20 10:53


****************************************
Result when scanning:

2ndthought Adware 544.644.002 %ProgramsDir%\STC\
C:\Program Files\STC\
http://www.kephyr.com/spywarescanner/library/2ndthoughtadware/index.phtml

A Better Internet 777.777.000 bi.dll
http://www.kephyr.com/spywarescanner/library/abetterinternet/index.phtml

A Better Internet.B 778.000.001 Belt
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\Belt
http://www.kephyr.com/spywarescanner/library/abetterinternet.b/index.phtml

Apropos 341.001.000 c:\Program Files\AutoUpdate\
c:\Program Files\AutoUpdate\
http://www.kephyr.com/spywarescanner/library/apropos/index.phtml

BrowserAid 666.333.987 {2CF0B992-5EEB-4143-99C0-5297EF71F444}
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\{2CF0B992-5EEB-4143-99C0-5297EF71F444}
http://www.kephyr.com/spywarescanner/library/browseraid/index.phtml

BrowserAid 666.333.987 Rundll32_7
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\Rundll32_7
http://www.kephyr.com/spywarescanner/library/browseraid/index.phtml

BrowserAid 666.333.911 msiefr40.dll
http://www.kephyr.com/spywarescanner/library/browseraid/index.phtml

BrowserAid 666.333.912 {0DDBB570-0396-44C9-986A-8F6F61A51C2F}
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0DDBB570-0396-44C9-986A-8F6F61A51C2F}
http://www.kephyr.com/spywarescanner/library/browseraid/index.phtml

BrowserAid 666.333.912 {2CF0B992-5EEB-4143-99C0-5297EF71F443}
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2CF0B992-5EEB-4143-99C0-5297EF71F443}
http://www.kephyr.com/spywarescanner/library/browseraid/index.phtml

BrowserAid.Rundll 667.333.000 RunWindowsUpdate
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\RunWindowsUpdate
http://www.kephyr.com/spywarescanner/library/browseraid.rundll/index.phtml

Cydoor 399.000.000 %SystemDir%\AdCache\
C:\WINDOWS\System32\\AdCache\
http://www.kephyr.com/spywarescanner/library/cydoor/index.phtml

Cydoor 399.000.001 Cd_clint.dll
http://www.kephyr.com/spywarescanner/library/cydoor/index.phtml

eZula 122.927.150 %SystemDir%\ezstub.exe
C:\WINDOWS\System32\\ezstub.exe
http://www.kephyr.com/spywarescanner/library/ezula/index.phtml

Flingstone Bridge 483.999.001 %SystemDir%\bridge.dll
C:\WINDOWS\System32\\bridge.dll
http://www.kephyr.com/spywarescanner/library/flingstonebridge/index.phtml

FreeScratchAndWin 122.927.544 IdleUI.dll
http://www.kephyr.com/spywarescanner/library/freescratchandwin/index.phtml

Gator 112.997.000 GMT.exe
http://www.kephyr.com/spywarescanner/library/gain/index.phtml

Gator 112.198.918 %WinDir%\temp\adware\
C:\WINDOWS\temp\adware\
http://www.kephyr.com/spywarescanner/library/gain/index.phtml

IEPlugin 391.000.000 Win Server Updt
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\Win Server Updt
http://www.kephyr.com/spywarescanner/library/ieplugin/index.phtml

IGetNet 692.118.540 %ProgramsDir%\ClearSearch\
C:\Program Files\ClearSearch\
http://www.kephyr.com/spywarescanner/library/igetnet/index.phtml

IncrediFind 342.900.000 {5D60FF48-95BE-4956-B4C6-6BB168A70310}
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5D60FF48-95BE-4956-B4C6-6BB168A70310}
http://www.kephyr.com/spywarescanner/library/incredifind/index.phtml

Internet Optimizer 123.000.003 %ProgramsDir%\Internet Optimizer\
C:\Program Files\Internet Optimizer\
http://www.kephyr.com/spywarescanner/library/internetoptimizer/index.phtml

ISTBar 122.122.002 IST Service
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\IST Service
http://www.kephyr.com/spywarescanner/library/istbar/index.phtml

ISTBar 122.122.004
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\ISTsvc\DisplayName
http://www.kephyr.com/spywarescanner/library/istbar/index.phtml

ISTBar 122.122.007 %ProgramsDir%\ISTsvc\
C:\Program Files\ISTsvc\
http://www.kephyr.com/spywarescanner/library/istbar/index.phtml

My Search Bar 132.098.655
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\My Way Speedbar Uninstall\DisplayName
http://www.kephyr.com/spywarescanner/library/mysearchbar/index.phtml

My Search Bar 777.777.778 c:\Program Files\MyWay\
c:\Program Files\MyWay\
http://www.kephyr.com/spywarescanner/library/mysearchbar/index.phtml

n-CASE 102.165.199 %SystemDir%\msbb.exe
C:\WINDOWS\System32\\msbb.exe
http://www.kephyr.com/spywarescanner/library/ncase/index.phtml

Points Manager 126.693.451 AltnetPointsManager
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\AltnetPointsManager
http://www.kephyr.com/spywarescanner/library/peerpoints/index.phtml

Points Manager 123.321.334
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\AltnetDM\DisplayName
http://www.kephyr.com/spywarescanner/library/peerpoints/index.phtml

Peper Trojan 993.799.000 4S2NSLA3QS#366
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\4S2NSLA3QS#366
http://www.kephyr.com/spywarescanner/library/pepertrojan/index.phtml

PerfectNav 352.900.001 %ProgramsDir%\PerfectNav\
C:\Program Files\PerfectNav\
http://www.kephyr.com/spywarescanner/library/perfectnav/index.phtml

PowerScan 070.000.001 %ProgramsDir%\Power Scan\
C:\Program Files\Power Scan\
http://www.kephyr.com/spywarescanner/library/powerscan/index.phtml

PromulGate 837.700.000 Dpi
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\Dpi
http://www.kephyr.com/spywarescanner/library/promulgate/index.phtml

PromulGate 837.700.001 %ProgramsDir%\Common Files\Dpi\
C:\Program Files\Common Files\Dpi\
http://www.kephyr.com/spywarescanner/library/promulgate/index.phtml

PromulGate.pcsvc 434.700.000 Pcsv
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\Pcsv
http://www.kephyr.com/spywarescanner/library/promulgate.pcsvc/index.phtml

PromulGate.pcsvc 434.700.001 %SystemDir%\pcs\
C:\WINDOWS\System32\\pcs\
http://www.kephyr.com/spywarescanner/library/promulgate.pcsvc/index.phtml

SeekSeek 394.200.000 slmss
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\slmss
http://www.kephyr.com/spywarescanner/library/seekseek/index.phtml

SeekSeek 394.200.000 Mwsvm
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\Mwsvm
http://www.kephyr.com/spywarescanner/library/seekseek/index.phtml

SeekSeek 394.200.001 %WinDir%\mwsvm.exe
C:\WINDOWS\mwsvm.exe
http://www.kephyr.com/spywarescanner/library/seekseek/index.phtml

Twaintech 523.888.000 %WinDir%\twaintec.dll
C:\WINDOWS\twaintec.dll
http://www.kephyr.com/spywarescanner/library/twaintech/index.phtml

Virtual Bouncer 837.000.000 %ProgramsDir%\VBouncer\
C:\Program Files\VBouncer\
http://www.kephyr.com/spywarescanner/library/virtualbouncer/index.phtml

WebSavings 523.900.001 %ProgramsDir%\WebSavingsfromEbates\
C:\Program Files\WebSavingsfromEbates\
http://www.kephyr.com/spywarescanner/library/websavings/index.phtml

General Virus, Worm, Trojan 294.000.001 explorer
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\explorer
http://www.kephyr.com/spywarescanner/library/generalvirus/index.phtml

Winpup 340.800.002
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\pup\ren
http://www.kephyr.com/spywarescanner/library/winpup/index.phtml

****************************************
Auto start entries:
C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
C:\Documents and Settings\All Users\Start Menu\Programs\Startup\desktop.ini
C:\Program Files\Common Files\GMT\GMT.exe /startup
C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
C:\Documents and Settings\All Users\Start Menu\Programs\Startup\desktop.ini
C:\Program Files\Common Files\GMT\GMT.exe /startup
C:\Documents and Settings\Bryan Bergeron\Start Menu\Programs\Startup\desktop.ini
C:\Documents and Settings\Bryan Bergeron\Start Menu\Programs\Startup\desktop.ini

Go here to analyse the startup entries and the associated files:
http://www.kephyr.com/filedb/index.php

****************************************
Run entries:
ATIPTA C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\ATIPTA

PreloadApp c:\hp\drivers\printers\photosmart\hphprld.exe c:\hp\drivers\printers\photosmart\setup.exe -d
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\PreloadApp

srmclean C:\Cpqs\Scom\srmclean.exe
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\srmclean

Display Settings C:\Program Files\HPQ\Notebook Utilities\hptasks.exe /s
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\Display Settings

QT4HPOT C:\Program Files\HPQ\One-Touch\OneTouch.EXE
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\QT4HPOT

SynTPLpr C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\SynTPLpr

SynTPEnh C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\SynTPEnh

AdaptecDirectCD "C:\Program Files\Roxio\Easy CD Creator 5\DirectCD\DirectCD.exe"
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\AdaptecDirectCD

Cpqset C:\Program Files\HPQ\Default Settings\cpqset.exe
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\Cpqset

P2P Networking C:\WINDOWS\System32\P2P Networking\P2P Networking.exe /AUTOSTART
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\P2P Networking

updmgr C:\Program Files\Common files\updmgr\updmgr.exe
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\updmgr

AltnetPointsManager
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\AltnetPointsManager

plmtirhuzoiqr C:\WINDOWS\System32\eazbcaxh.exe
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\plmtirhuzoiqr

explorer C:\WINDOWS\System32\explorer.exe
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\explorer

qDIjE7d C:\documents and settings\bryan bergeron\local settings\temp\qDIjE7d.exe
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\qDIjE7d

Bakra C:\WINDOWS\System32\IEHost.exe
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\Bakra

{2CF0B992-5EEB-4143-99C0-5297EF71F444} rundll32.exe C:\WINDOWS\System32\stlbdist.DLL,DllRunMain
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\{2CF0B992-5EEB-4143-99C0-5297EF71F444}

4S2NSLA3QS#366 C:\WINDOWS\System32\QcfK.exe
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\4S2NSLA3QS#366

RunWindowsUpdate C:\WINDOWS\uptodate.exe
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\RunWindowsUpdate

IST Service C:\Program Files\ISTsvc\istsvc.exe
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\IST Service

Win Server Updt C:\WINDOWS\wupdt.exe
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\Win Server Updt

stcinstaller c:\installer\id53.exe
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\stcinstaller

wmplayer C:\Program Files\Windows Media Player\wmplayer.exe -invisible
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\wmplayer

RunDLL rundll32.exe "C:\WINDOWS\System32\bridge.dll",Load
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\RunDLL

Pcsv C:\WINDOWS\system32\pcs\pcsvc.exe
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\Pcsv

Dpi C:\Program Files\Common Files\Dpi\dpi.exe
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\Dpi

Belt C:\WINDOWS\Belt.exe
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\Belt

Windows SA C:\Program Files\WindowsSA\omniscient.exe
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\Windows SA

Rundll32_7 rundll32.exe C:\WINDOWS\System32\msiefr40.dll,DllRunServer
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\Rundll32_7

slmss C:\Program Files\Common Files\slmss\slmss.exe
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\slmss

wovax C:\WINDOWS\wovax.exe
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\wovax

Adstartup C:\WINDOWS\System32\automove.exe
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\Adstartup

aqadcup C:\WINDOWS\aqadcup.exe
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\aqadcup

Mwsvm C:\WINDOWS\mwsvm.exe
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\Mwsvm

xuRs C:\documents and settings\bryan bergeron\local settings\temp\xuRs.exe
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\xuRs

p46R3me qcahits.exe
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\p46R3me

ackagerp C:\WINDOWS\System32\ackagerp.exe
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\ackagerp

bdspk C:\WINDOWS\System32\bdspk.exe
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\bdspk

TV Media C:\Program Files\TV Media\Tvm.exe
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunOnce\TV Media

Y3p5RgK4O qedisrv.exe
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\Y3p5RgK4O

SpyKiller C:\Program Files\SpyKiller\spykiller.exe /startup
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\SpyKiller

msmc C:\WINDOWS\System32\msmc.exe
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\msmc

TV Media C:\Program Files\TV Media\Tvm.exe
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\RunOnce\TV Media


Go here to analyse the run entries and the associated files:
http://www.kephyr.com/filedb/index.php

****************************************
Browser helper objects:

SOFTWARE not set Error when opening a registry key, the key doesn't exist. Key: HKEY_CLASSES_ROOT\CLSID\SOFTWARE\InprocServer32

System error message: The system cannot find the file specified.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\SOFTWARE

{00D6A7E7-4A97-456f-848A-3B75BF7554D7} NavErrRedir Class C:\PROGRA~1\PERFEC~1\BHO\PERFEC~1.DLL
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{00D6A7E7-4A97-456f-848A-3B75BF7554D7}

{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} not set C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}

{0DDBB570-0396-44C9-986A-8F6F61A51C2F} not set C:\WINDOWS\System32\msiefr40.dll
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0DDBB570-0396-44C9-986A-8F6F61A51C2F}

{2CF0B992-5EEB-4143-99C0-5297EF71F443} not set C:\WINDOWS\System32\stlbdist.DLL
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2CF0B992-5EEB-4143-99C0-5297EF71F443}

{5D60FF48-95BE-4956-B4C6-6BB168A70310} NavErrRedir Class C:\PROGRA~1\INCRED~1\BHO\INCFIN~1.DLL
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5D60FF48-95BE-4956-B4C6-6BB168A70310}

{5FA6752A-C4A0-4222-88C2-928AE5AB4966} not set C:\WINDOWS\System32\SWin32.dll
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5FA6752A-C4A0-4222-88C2-928AE5AB4966}

{E8EAEB34-F7B5-4C55-87FF-720FAF53D841} WinPage Affiliate C:\Program Files\Common Files\midaddle\midaddle.dll
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E8EAEB34-F7B5-4C55-87FF-720FAF53D841}


****************************************
Toolbars:

{8E718888-423F-11D2-876E-00A0C9082467} C:\WINDOWS\System32\msdxm.ocx
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar\{8E718888-423F-11D2-876E-00A0C9082467}

{2CF0B992-5EEB-4143-99C0-5297EF71F444} C:\WINDOWS\System32\stlbdist.DLL
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar\{2CF0B992-5EEB-4143-99C0-5297EF71F444}

{2CDE1A7D-A478-4291-BF31-E1B4C16F92EB} Error when opening a registry key, the key doesn't exist. Key: HKEY_CLASSES_ROOT\CLSID\{2CDE1A7D-A478-4291-BF31-E1B4C16F92EB}\InprocServer32

System error message: The system cannot find the file specified.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar\{2CDE1A7D-A478-4291-BF31-E1B4C16F92EB}

{EF99BD32-C1FB-11D2-892F-0090271D4F88} Error when opening a registry key, the key doesn't exist. Key: HKEY_CLASSES_ROOT\CLSID\{EF99BD32-C1FB-11D2-892F-0090271D4F88}\InprocServer32

System error message: The system cannot find the file specified.

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\Toolbar\WebBrowser\{EF99BD32-C1FB-11D2-892F-0090271D4F88}

{01E04581-4EEE-11D0-BFE9-00AA005B4383} C:\WINDOWS\System32\browseui.dll
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\Toolbar\WebBrowser\{01E04581-4EEE-11D0-BFE9-00AA005B4383}

{0E5CBF21-D15F-11D0-8301-00AA005B4383} C:\WINDOWS\system32\SHELL32.dll
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\Toolbar\WebBrowser\{0E5CBF21-D15F-11D0-8301-00AA005B4383}

{4D5C8C2A-D075-11D0-B416-00C04FB90376} C:\WINDOWS\System32\browseui.dll
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\Toolbar\WebBrowser\{4D5C8C2A-D075-11D0-B416-00C04FB90376}

{5F1ABCDB-A875-46C1-8345-B72A4567E486} Error when opening a registry key, the key doesn't exist. Key: HKEY_CLASSES_ROOT\CLSID\{5F1ABCDB-A875-46C1-8345-B72A4567E486}\InprocServer32

System error message: The system cannot find the file specified.

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\Toolbar\WebBrowser\{5F1ABCDB-A875-46C1-8345-B72A4567E486}

{2CF0B992-5EEB-4143-99C0-5297EF71F444} C:\WINDOWS\System32\stlbdist.DLL
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Explorer Bars\{2CF0B992-5EEB-4143-99C0-5297EF71F444}

{4528BBE0-4E08-11D5-AD55-00010333D0AD} Error when opening a registry key, the key doesn't exist. Key: HKEY_CLASSES_ROOT\CLSID\{4528BBE0-4E08-11D5-AD55-00010333D0AD}\InprocServer32

System error message: The system cannot find the file specified.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Explorer Bars\{4528BBE0-4E08-11D5-AD55-00010333D0AD}

{4D5C8C25-D075-11d0-B416-00C04FB90376} C:\WINDOWS\System32\shdocvw.dll
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Explorer Bars\{4D5C8C25-D075-11d0-B416-00C04FB90376}

{30D02401-6A81-11D0-8274-00C04FD5AE38} C:\WINDOWS\System32\browseui.dll
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\Explorer Bars\{30D02401-6A81-11D0-8274-00C04FD5AE38}

{32683183-48a0-441b-a342-7c2a440a9478} C:\WINDOWS\System32\browseui.dll
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\Explorer Bars\{32683183-48a0-441b-a342-7c2a440a9478}

{4528BBE0-4E08-11D5-AD55-00010333D0AD} Error when opening a registry key, the key doesn't exist. Key: HKEY_CLASSES_ROOT\CLSID\{4528BBE0-4E08-11D5-AD55-00010333D0AD}\InprocServer32

System error message: The system cannot find the file specified.

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\Explorer Bars\{4528BBE0-4E08-11D5-AD55-00010333D0AD}

{C4EE31F3-4768-11D2-BE5C-00A0C9A83DA1} C:\WINDOWS\system32\SHELL32.dll
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\Explorer Bars\{C4EE31F3-4768-11D2-BE5C-00A0C9A83DA1}

{EFA24E61-B078-11D0-89E4-00C04FC9E26E} C:\WINDOWS\System32\shdocvw.dll
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\Explorer Bars\{EFA24E61-B078-11D0-89E4-00C04FC9E26E}


****************************************
All processes:

[System Process]
System
smss.exe
csrss.exe
winlogon.exe
services.exe
lsass.exe
svchost.exe
svchost.exe
svchost.exe
svchost.exe
spoolsv.exe
explorer.exe
HPConfig.exe
HPWirelessMgr.exe
explorer.exe
ONETOUCH.EXE
SynTPLpr.exe
SynTPEnh.exe
Directcd.exe
P2P Networking.exe
updmgr.exe
qDIjE7d.exe
IEHost.EXE
rundll32.exe
uptodate.EXE
istsvc.exe
rundll32.exe
pcsvc.exe
dpi.exe
omniscient.exe
rundll32.exe
slmss.exe
wovax.exe
mwsvm.exe
xuRs.exe
qcahits.exe
qedisrv.exe
bdspk.exe
ackagerp.exe
GMT.exe
IEXPLORE.EXE
kazaa.exe
asm.exe
IEXPLORE.EXE
Sfte5l2U.exe
Uen8ab.exe
spywarescanner.exe

Go here to analyse the running processes:
http://www.kephyr.com/filedb/index.php

****************************************
Internet Explorer Settings:

Default_Page_URL http://store.presario.net/scripts/redirectors/presario/storeredir2.dll?s=consumerfav&c=1c02&lc=0409
HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\Default_Page_URL

Local Page C:\WINDOWS\system32\blank.htm
HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\Local Page

Start Page http://default-homepage-network.com/start.cgi?new-hklm
HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\Start Page

Use Search Asst no
HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\Use Search Asst

SearchAssistant http://www.seekseek.com/quicksearch.asp?keyphrase=
HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Search\SearchAssistant

CustomizeSearch
HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Search\CustomizeSearch

http://
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\URL\DefaultPrefix\

www http://
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\URL\Prefixes\www

websearch.drsnsrch.com/q.cgi?q=
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchUrl\

provider loct
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchUrl\provider

Local Page C:\WINDOWS\System32\blank.htm
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\Local Page

Search Bar file://C:\WINDOWS\System32\SearchBar.htm
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\Search Bar

Start Page http://default-homepage-network.com/start.cgi?new-hkcu
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\Start Page

Use Search Asst no
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\Use Search Asst


****************************************




Related links

Bazooka - Free scan for spyware, adware, trojan horses, keyloggers, etc. Detects more than 500 potentially unwanted applications. Freeware!

The File Database - Search the file database for more information. Free!

PopUp Blocker Test - Find out if your pop-up killer can handle all pop-ups. Free!

Kephyr Labs - Find out what is going on at Kephyr. Try products in an early stage of development.


FreeFixer
Read more about FreeFixer, Kephyr's latest spyware removal tool.
Home & Products |  Legal |  Privacy |  Search

© Kephyr, 2003-2012. HtmlTidy, HTML 4.01, CSS andy@kephyr.com