PDA

View Full Version : Help Please, MALWARE and PUP



Modder57
2008-10-24, 08:07
My computer is running slow and when i run spybot it cant remove all of the infections

I let spybot scan on restart but it still cant get rid of them

can this be be fixed?

thank you

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 6:33:41 PM, on 10/23/2008
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16735)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\CA\SharedComponents\HIPSEngine\UmxCfg.exe
C:\Program Files\CA\SharedComponents\HIPSEngine\UmxFwHlp.exe
C:\Program Files\CA\SharedComponents\HIPSEngine\UmxPol.exe
C:\Program Files\CA\SharedComponents\HIPSEngine\UmxAgent.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\CA\CA Internet Security Suite\CA Anti-Virus\ISafe.exe
C:\WINDOWS\system32\cisvc.exe
C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\CA\CA Internet Security Suite\CA Anti-Virus\VetMsg.exe
C:\WINDOWS\system32\SearchIndexer.exe
C:\PROGRA~1\AVG\AVG8\avgam.exe
C:\PROGRA~1\AVG\AVG8\avgrsx.exe
C:\PROGRA~1\AVG\AVG8\avgnsx.exe
C:\PROGRA~1\AVG\AVG8\avgemc.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\CA\CA Internet Security Suite\CA Personal Firewall\capfsem.exe
C:\windows\system\hpsysdrv.exe
C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
C:\WINDOWS\system32\hkcmd.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\WINDOWS\ALCXMNTR.EXE
C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
C:\Program Files\CA\CA Internet Security Suite\cctray\cctray.exe
C:\Program Files\CA\CA Internet Security Suite\CA Anti-Spam\QSP-5.1.18.0\QOELoader.exe
C:\Program Files\CA\CA Internet Security Suite\CA Anti-Virus\CAVRID.exe
C:\Program Files\CA\CA Internet Security Suite\CA Personal Firewall\capfasem.exe
C:\WINDOWS\LTMSG.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\CA\CA Internet Security Suite\ccprovsp.exe
C:\Program Files\Windows Desktop Search\WindowsSearch.exe
C:\WINDOWS\system32\SearchProtocolHost.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
C:\WINDOWS\system32\cidaemon.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://us10.hpwis.com/
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://srch-us10.hpwis.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R3 - URLSearchHook: (no name) - {87766247-311C-43B4-8499-3D5FEC94A183} - (no file)
O2 - BHO: (no name) - {011B57FF-6C99-41FE-A69D-AAEE9FBC7208} - \
O2 - BHO: (no name) - {020DC4EF-9C1A-48D3-B7D1-0CC4A9350DE8} - \
O2 - BHO: (no name) - {023F00EA-0FEF-49C9-B443-499F8BDE69F4} - \
O2 - BHO: (no name) - {02923FF9-E768-4AF2-BB3E-88CC704AAED1} - \
O2 - BHO: (no name) - {029980C0-BFD1-4A75-84A1-EFB317F9A7EC} - \
O2 - BHO: (no name) - {02A6DC92-5AB6-4A7C-95C3-3A0328E7560B} - \
O2 - BHO: (no name) - {04434FBE-123F-4001-A1C9-0DFEE1E90136} - \
O2 - BHO: (no name) - {05401F58-2DFE-4624-814F-E9FBF2E1F93F} - \
O2 - BHO: (no name) - {058337D3-FAB4-4C13-8CA4-4DF2525679FF} - \
O2 - BHO: (no name) - {0641E52B-3218-48B3-B565-1C9DD5630672} - \
O2 - BHO: (no name) - {0675AA1C-AEAF-40A1-B223-409C6D8224B3} - \
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {06DDE5C6-0577-4B9F-A47C-E11B103C502D} - \
O2 - BHO: (no name) - {0735FC5F-70AA-4B59-999F-29D40ABD4099} - \
O2 - BHO: (no name) - {079F761B-F121-403B-8DA9-FFF2B112910D} - \
O2 - BHO: (no name) - {08DD50DE-C8EA-44DA-8DC5-BA40A74D6272} - \
O2 - BHO: (no name) - {0AEDEF55-542B-4655-82DF-2FCC11D5231C} - \
O2 - BHO: (no name) - {0AF5C889-5773-4AEA-BFB7-6734277515B8} - \
O2 - BHO: (no name) - {0CF58BE1-563E-43A0-9FD5-CDA5E5770030} - \
O2 - BHO: (no name) - {0D34C14A-3EB9-4311-9ECC-8E7DB27F927A} - \
O2 - BHO: (no name) - {0D43409A-20BD-4920-8F3A-EF20422CFC65} - \
O2 - BHO: (no name) - {0D52F5F2-826A-46CC-AD46-9D0986167041} - \
O2 - BHO: (no name) - {0EC2586F-4049-4E75-AF51-94E109EDAEA3} - \
O2 - BHO: (no name) - {0F92F6A5-A999-4CAC-B65D-1E1300B704CF} - \
O2 - BHO: (no name) - {10646191-068B-4580-8311-4C969EAEF62F} - \
O2 - BHO: (no name) - {10D47AD8-08CA-432C-BA5F-0F5EED9F15BD} - \
O2 - BHO: (no name) - {11BE20EB-3776-4A4F-AD34-EB04DC71112B} - \
O2 - BHO: (no name) - {126B8117-07A3-4FF0-9E46-5320F1785204} - \
O2 - BHO: (no name) - {1279FE05-D504-4019-82C2-9297489B38DB} - \
O2 - BHO: (no name) - {12C7AC0F-7112-4E1E-8C94-5273118B3C24} - \
O2 - BHO: (no name) - {1330E52D-382C-4EF7-8FF4-A0B3E1B5635D} - \
O2 - BHO: (no name) - {134DACAA-B41C-49E9-A733-80C5D5089EF5} - \
O2 - BHO: (no name) - {147BEA9B-A367-4117-8EDB-0EBAAA564149} - \
O2 - BHO: (no name) - {14F4001F-8A3A-4428-90B4-6688D9E5C83C} - \
O2 - BHO: (no name) - {155E1DF0-4F1F-46E1-8EBD-8F4210FF851E} - \
O2 - BHO: (no name) - {16228B12-2FF9-47C6-A432-DEEBA25B7915} - \
O2 - BHO: (no name) - {164B9A18-8125-47C4-8A8B-97165106590B} - \
O2 - BHO: (no name) - {1697EE0D-ED08-4FE7-A6FA-6D51238DC218} - \
O2 - BHO: (no name) - {1712D94A-19D1-4E87-B8EB-B7E8C307E935} - \
O2 - BHO: (no name) - {174FA0ED-ED02-4801-9857-642274F6EC64} - \
O2 - BHO: (no name) - {17F51FFA-9BA5-41E7-A9DF-90B5655677B6} - \
O2 - BHO: (no name) - {187E10C6-5DE9-4AC6-AC79-63ECE5992897} - \
O2 - BHO: (no name) - {198296F4-93D1-48A5-A685-150E27FFED1A} - \
O2 - BHO: (no name) - {19B19C6E-2020-4A79-8621-2F772A586C36} - \
O2 - BHO: (no name) - {1A143438-6EF9-40CC-ACF7-58A36E3C8335} - \
O2 - BHO: (no name) - {1BBF5D88-8FC1-4306-9E4C-DBA0A8BFABB6} - \
O2 - BHO: (no name) - {1BE4FA38-213A-46FF-96E6-5A2D6DD59FE4} - \
O2 - BHO: (no name) - {1D3DCC7D-3F01-45AD-A6EE-4FD8AFA0CA3C} - \
O2 - BHO: (no name) - {1E3C1F92-012E-4943-B6BE-296DD664AD19} - \
O2 - BHO: (no name) - {1E93C45C-DAEC-478B-A780-AB9438DF2480} - \
O2 - BHO: (no name) - {1F4977F2-59B8-4F23-BA1D-8D6F9E497B15} - \
O2 - BHO: (no name) - {1F69F679-6AF8-4994-88FA-2D92089F3661} - \
O2 - BHO: (no name) - {200CB2A7-6C56-4A3A-A6A3-001D5E6D3FE4} - \
O2 - BHO: (no name) - {2049109F-1DF6-4BA9-B686-0F947387C86E} - \
O2 - BHO: (no name) - {20BF993B-6FC8-44E9-BCF0-5C1505AF7B99} - \
O2 - BHO: (no name) - {20D30DB6-BF6C-4AA8-82B1-884EE25DBD3A} - \
O2 - BHO: (no name) - {20EAA3E6-C7FB-43AD-856C-6AF735C1A022} - \
O2 - BHO: (no name) - {210C2879-22AD-4ECE-B354-163F466FB4D7} - \
O2 - BHO: (no name) - {211C8CF7-94C6-4E57-AA27-61FDA7D591E5} - \
O2 - BHO: (no name) - {22295E8B-0B2D-4564-B005-55BCB3759E57} - \
O2 - BHO: (no name) - {23DF9873-1FD4-4DD8-9F84-7641F8520120} - \
O2 - BHO: (no name) - {2405DD1D-82E6-48F0-B20E-688D3E0E08C8} - \
O2 - BHO: (no name) - {255F621E-50A2-438B-A8C6-EB1FDAE41DBA} - \
O2 - BHO: (no name) - {263A607E-4EBD-49B0-8E44-323D34DAFAA7} - \
O2 - BHO: (no name) - {2804A84A-905D-45C7-A07C-80EFBD008D7C} - \
O2 - BHO: (no name) - {2850997B-D20A-42E4-8E04-DC8AD9263501} - \
O2 - BHO: (no name) - {28B6B6E5-3364-4FA6-BA09-6E39919009C6} - \
O2 - BHO: (no name) - {29ADA996-C1E4-4839-A008-53CDDABBE21E} - \
O2 - BHO: (no name) - {29C27C2F-F86A-4B43-B789-16AA6FD424F8} - \
O2 - BHO: (no name) - {29F91703-4961-4BFC-9192-B81BFC0796BD} - \
O2 - BHO: (no name) - {2A4F3025-DAB4-44F8-BDA9-92F0B345E593} - \
O2 - BHO: (no name) - {2A5551EB-D7EA-455E-BDB2-22CE614A127C} - \
O2 - BHO: (no name) - {2B1CE497-1F45-4537-A4FB-AFB7B5EE9594} - \
O2 - BHO: (no name) - {2D53ACEB-E54A-4E85-B037-74726750E9BF} - \
O2 - BHO: (no name) - {2D829DF5-B616-41B5-803F-2CAD298D437F} - \
O2 - BHO: (no name) - {2E51D540-442E-4C56-B765-732FC21F33BD} - \
O2 - BHO: (no name) - {2E826452-E647-4C85-B875-65049577FD12} - \
O2 - BHO: (no name) - {2ED4F75E-86C4-465E-B446-A92C40BD163B} - \
O2 - BHO: (no name) - {2EDFAD7C-4F9E-44AA-BF15-444FA9663525} - \
O2 - BHO: (no name) - {315370E2-F93A-4791-B475-BB4ADD141364} - \
O2 - BHO: (no name) - {31A9C2E1-BCEA-4885-8D94-7AA5888AD84C} - \
O2 - BHO: (no name) - {322B13F5-196A-471B-880C-578D9ACA0F58} - (no file)
O2 - BHO: (no name) - {32C0EE84-C664-4440-8484-E34381E0AF21} - \
O2 - BHO: (no name) - {34A74B06-26F1-4BDD-AA7F-AF1F605ECA6F} - \
O2 - BHO: (no name) - {352BD55E-DCEC-4478-9E1C-F05C4714024F} - \
O2 - BHO: (no name) - {36911EBC-32A5-4573-B94A-7EF47DA7AC39} - \
O2 - BHO: (no name) - {36C4463A-59CD-4C71-913E-A2F05CDE2A57} - \
O2 - BHO: (no name) - {3763EAE0-FFC0-410D-A9AB-5F25C70D5D6C} - \
O2 - BHO: (no name) - {3815587D-3425-477D-8FAE-75196991270F} - \
O2 - BHO: (no name) - {389D60BA-F3D1-4D15-A832-0DB0D12E05A8} - \
O2 - BHO: (no name) - {38E6A21C-5A19-4B0F-9554-F27DD6E915E1} - \
O2 - BHO: (no name) - {3AC7D2A0-FDA0-44CB-8299-666B3FACB2FF} - \
O2 - BHO: (no name) - {3B43D8E0-1F83-45F0-80C1-BD09218057CC} - \
O2 - BHO: (no name) - {3B9AA721-A52D-4352-8579-B79259E37798} - \
O2 - BHO: (no name) - {3BA2B5F5-20C0-40B1-B156-55032DF05462} - \
O2 - BHO: (no name) - {3BE1998C-B7D1-4E44-99B1-3A1D19A0C939} - \
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG8\avgssie.dll
O2 - BHO: (no name) - {3D1B1013-A911-42A3-A24F-77C661DF36F9} - \
O2 - BHO: (no name) - {3D6A81F2-AD19-4F8B-A958-338565B7D2BB} - \
O2 - BHO: (no name) - {3D9349CC-116F-4FA9-8FEB-073A6AF3899E} - \
O2 - BHO: (no name) - {3E41178C-B4A2-4F65-83C8-3ED1CBBA9E6F} - \
O2 - BHO: (no name) - {3E538647-E57F-41EA-965A-3EFF68B13491} - \
O2 - BHO: (no name) - {3ED55FC9-AF26-4686-BB74-0A6FD407F780} - \
O2 - BHO: (no name) - {3EEC1937-DDFE-45DD-B8D4-1E305E9D9496} - \
O2 - BHO: (no name) - {3F938396-99E9-4284-8289-DC16E90528EE} - \
O2 - BHO: (no name) - {3FDABCAA-17C3-4836-90C6-10BCDE83CE85} - \
O2 - BHO: (no name) - {4019A599-E4D8-4006-BBE8-D27D71DEE050} - \
O2 - BHO: (no name) - {40480D30-198D-4F96-9B8B-6699BE7341DC} - \
O2 - BHO: (no name) - {41DC65A7-0549-4A78-84D0-2941E47BFFE3} - \
O2 - BHO: (no name) - {41FEA121-7D03-44AC-9B80-AA48D924197F} - \
O2 - BHO: (no name) - {4246A3E8-EC26-40A6-A835-2A7686CE638A} - \
O2 - BHO: (no name) - {42C0C235-02DC-415B-9FDB-DBC9606BDBEE} - \
O2 - BHO: (no name) - {43C87265-0E6F-4F0E-B43B-2A3FAFB75631} - \
O2 - BHO: (no name) - {44024A08-475C-4F8E-9562-2004A87E378F} - \
O2 - BHO: (no name) - {4521D3BF-8463-42F2-814E-CEAF67388984} - \
O2 - BHO: (no name) - {46754966-B3D0-4C09-B295-B049E02826AD} - \
O2 - BHO: (no name) - {46794E5B-ADE8-412F-A80F-EC855BA73163} - \
O2 - BHO: (no name) - {46C462CE-F7FF-40DA-8201-E2C1CF40CBCB} - \
O2 - BHO: (no name) - {47316B30-4533-488D-B1E5-34C171AA84BE} - \
O2 - BHO: (no name) - {49A9636E-BC60-4DA5-9328-53F9F7EF8A21} - \
O2 - BHO: (no name) - {49CC7584-17DA-458C-B4E2-9B5362303719} - \
O2 - BHO: (no name) - {49D7F5F1-44FE-4458-9212-B0BEC214D908} - \
O2 - BHO: (no name) - {4B6C5179-D31F-4B20-A621-AD2CDA6C160D} - \
O2 - BHO: (no name) - {4B94887E-2CBB-4395-B4AC-D4522EC090B6} - \
O2 - BHO: (no name) - {4C9CA850-D7DF-417F-BAEF-BC58D81FD96A} - \
O2 - BHO: (no name) - {4D16714E-EE95-45B0-9FA4-94C105920C78} - \
O2 - BHO: (no name) - {4E164D68-3B6A-4F60-8DBB-E647FFF00740} - \
O2 - BHO: (no name) - {4E375F87-105C-408C-A53E-188811B33F87} - \
O2 - BHO: (no name) - {4F4E74D8-AAD3-49EA-A1D5-554BCA86DB2C} - \
O2 - BHO: (no name) - {4F64A10C-CFCE-4065-8A80-CE21FF2402A4} - \
O2 - BHO: (no name) - {506BFBC6-1554-4359-9539-DCADCDC35F23} - \
O2 - BHO: (no name) - {50901B56-25A4-47BE-B2F9-E1B90454B2A6} - \
O2 - BHO: (no name) - {51EDD14C-E16D-41B9-B70C-89772BA523D6} - \
O2 - BHO: (no name) - {52AE22AB-CF77-4BF2-BC8B-9B8E6A3035F3} - \
O2 - BHO: (no name) - {54A8B113-18E2-4963-ADC8-5839A66B2B86} - \
O2 - BHO: (no name) - {55D97209-5D53-4C9C-BBEF-258E5A7A7029} - \
O2 - BHO: (no name) - {563A5F8B-07C9-4A97-9980-E3BA1045C0C9} - \
O2 - BHO: (no name) - {57D46D99-E2A5-4AA7-B160-7E1A498916A1} - \
O2 - BHO: (no name) - {5A608C0C-3F63-4CF8-B911-C7C04E315DF1} - \
O2 - BHO: (no name) - {5B2EA098-8AB6-4C56-95BB-0A6860F91C6A} - \
O2 - BHO: (no name) - {5BA71642-F44A-4B95-8DBD-E06F08ACCC9F} - \
O2 - BHO: UberButton Class - {5BAB4B5B-68BC-4B02-94D6-2FC0DE4A7897} - C:\Program Files\Yahoo!\Common\yiesrvc.dll
O2 - BHO: (no name) - {5C373F04-0C75-4E56-A63C-3FE65E5FD844} - \
O2 - BHO: (no name) - {5C39FAB1-C51D-4C0D-AA63-C1F0A4143EF0} - \
O2 - BHO: (no name) - {5CCFC99B-9E6A-45C2-BE30-146947011352} - \
O2 - BHO: (no name) - {5E33C0B5-6D96-498B-994A-4731AFFD1BB6} - \
O2 - BHO: (no name) - {5E586277-5E5C-4BD8-B3AD-3C297F19B41F} - \
O2 - BHO: (no name) - {5E7CCC73-5E70-410C-BDB6-920D758D425F} - \
O2 - BHO: (no name) - {5E99D901-B78D-403A-929C-C9F8CD35383F} - \
O2 - BHO: (no name) - {60D34995-7367-43D2-9515-D2C5D294296E} - \
O2 - BHO: (no name) - {61296626-628B-4C77-AB1B-45C5A1DA986E} - \
O2 - BHO: (no name) - {61BBDD1F-459A-4035-AD6D-A5BD1F948DB7} - \
O2 - BHO: (no name) - {61C5944D-B5C1-463B-A936-F82E01417FB5} - \
O2 - BHO: (no name) - {6251992A-0430-451D-9130-376B6D32830A} - \
O2 - BHO: (no name) - {62A26479-F878-45DB-9FD4-0F0D9E1C2BC1} - \
O2 - BHO: (no name) - {6327802B-B9AA-4D29-A42A-B6B6DC703E6E} - \
O2 - BHO: (no name) - {6517A8AF-AE69-4B29-A8C6-B34494B43B7D} - \
O2 - BHO: (no name) - {65642F67-3D81-4541-8947-55E2CDD49B1A} - \
O2 - BHO: YahooTaggedBM Class - {65D886A2-7CA7-479B-BB95-14D1EFB7946A} - C:\Program Files\Yahoo!\Common\YIeTagBm.dll
O2 - BHO: (no name) - {67F966D2-E739-408F-90AB-84E423A040C6} - \
O2 - BHO: (no name) - {699231CC-AA4C-4397-B4D3-6942E6513810} - \
O2 - BHO: (no name) - {6AF85D86-5524-4359-BDC8-6D32B5F3D915} - \
O2 - BHO: (no name) - {6B97E91B-FAE5-4BAE-A1A0-25A6F24971DD} - \
O2 - BHO: (no name) - {6BADF032-FC5C-414F-AF8A-DC0A431473F6} - \
O2 - BHO: (no name) - {6BFFC626-D856-451A-9C21-6506C666BD1C} - \
O2 - BHO: (no name) - {718B85A1-323B-4953-93AC-54DCF0721B47} - \
O2 - BHO: (no name) - {720AD237-391B-4305-9C0D-474C5C6E6D08} - \
O2 - BHO: (no name) - {723003BA-20FD-4359-A36C-2EB73E93DB0F} - \
O2 - BHO: (no name) - {72AF7E40-6B83-48AA-B017-CA5DDE26AC48} - \
O2 - BHO: (no name) - {730074D5-9151-48B4-B8FE-09E164C6DB01} - \
O2 - BHO: (no name) - {74118BB5-E8F8-4F2F-8965-B40F17B108CA} - \
O2 - BHO: (no name) - {74733508-166B-4227-ACE7-EE2A1FF8D76A} - \
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O2 - BHO: (no name) - {7779588E-0F86-4B5E-93C7-8F8A40582047} - \
O2 - BHO: (no name) - {77DC096A-1AF8-4C3B-8746-1E908912E655} - \
O2 - BHO: (no name) - {789A2E2C-355F-45A8-8480-8B398513525A} - \
O2 - BHO: (no name) - {7914776E-0EC0-43D2-980C-9D60C000008E} - \
O2 - BHO: (no name) - {79DF2C06-31E8-4B47-ACF0-9B856DEAD078} - \
O2 - BHO: (no name) - {7CCC8C98-75EA-4492-991A-4600838F3A2B} - \
O2 - BHO: (no name) - {7DE92399-A97B-43F3-B6C1-F364E60923D3} - \
O2 - BHO: (no name) - {7EDBA981-22D6-4575-8C10-8372CC1968FF} - \
O2 - BHO: (no name) - {80D1C636-440D-4B63-A6DF-1635AC74E515} - \
O2 - BHO: (no name) - {8269465E-2E61-40D8-8C74-3F3230A679A7} - \
O2 - BHO: (no name) - {829C9D9E-3CC5-494D-9C44-ABFB20BF0DAC} - \
O2 - BHO: (no name) - {82BF8F06-93C8-4E39-8091-6AEC2C84A098} - \
O2 - BHO: (no name) - {82C747C9-A2C8-470E-AD89-D6D9BF30DC03} - \
O2 - BHO: (no name) - {838541D1-04A5-4DE4-88C4-167CCB2AC378} - \
O2 - BHO: (no name) - {85762B15-6DBC-47CA-9F10-B98DA9511060} - \
O2 - BHO: (no name) - {85A5F614-6533-4922-BCDB-16901BE88764} - \
O2 - BHO: (no name) - {8668227A-C5DE-48D1-9D11-2C97C6549EB6} - \
O2 - BHO: (no name) - {878FDCD2-5B7D-43F6-A8FC-9330570A6967} - \
O2 - BHO: (no name) - {87CEB1E3-B18E-47E6-8A1D-A0DDB1E85611} - \
O2 - BHO: (no name) - {87DFCC0F-B7B8-43D1-B4DF-DBFC8AEF9647} - \
O2 - BHO: (no name) - {8811B5FA-4200-4E10-AB19-65DBDB29815F} - \
O2 - BHO: (no name) - {8966D206-62BC-4FDD-89B7-D770F6A1500F} - \
O2 - BHO: (no name) - {8972007C-2151-4900-A40A-429A4225D6BE} - \
O2 - BHO: (no name) - {89C5094C-2BA3-4B27-9A02-0C35E71A8D19} - \
O2 - BHO: (no name) - {89CA0626-76CD-44CF-864F-5BB41F3063B8} - \
O2 - BHO: (no name) - {89F8A8A5-9DCA-47A0-AAB0-19C8A7242085} - \
O2 - BHO: (no name) - {8B090AE8-826E-4218-88B0-81289B7FBDAF} - \
O2 - BHO: (no name) - {8B44E398-5DD3-41AD-AA70-35D2CFCD7A3E} - \
O2 - BHO: (no name) - {8B78F9B4-882B-43C5-BA20-F26D3BDB7A9C} - \
O2 - BHO: (no name) - {8C3E3B88-7ABB-42D3-9105-B5576F7F7D62} - \
O2 - BHO: (no name) - {8CFB40D4-9772-4F81-937E-79D3DD7DF301} - \
O2 - BHO: (no name) - {8E4B6CEF-8B93-4819-84E2-764BD9FA1218} - \
O2 - BHO: (no name) - {8F28D391-D18F-41EE-B9F0-DDCD4769D715} - \
O2 - BHO: (no name) - {8F427DC8-B54C-484A-BFF6-3D7F3A3FD152} - \
O2 - BHO: (no name) - {914605F9-7A51-4713-826D-B99078D679F3} - \
O2 - BHO: (no name) - {91C440D5-606B-47B4-B442-63B23F6D090C} - \
O2 - BHO: (no name) - {93811116-038D-4027-94D1-EF3CC6BFA13D} - \
O2 - BHO: (no name) - {94FB06B6-AC99-444E-8BF8-236EBF928F6B} - \
O2 - BHO: (no name) - {95F5C75F-EA14-4D6F-A496-82E277966A08} - \
O2 - BHO: (no name) - {961CB304-4207-4D61-AE8F-FD02CDC6E152} - \
O2 - BHO: (no name) - {96473FCD-9ADC-402D-8461-C1F8C08E3C65} - \
O2 - BHO: (no name) - {97E48816-55AD-4310-B35C-DB7887071D5C} - (no file)
O2 - BHO: (no name) - {9A0FC042-ADE4-4C12-B182-C6438C7776E3} - \
O2 - BHO: (no name) - {9B09C1AC-082F-4867-9BF3-85F22281546F} - \
O2 - BHO: (no name) - {9B8000AA-CA68-4FBE-8C82-7A00038B584C} - \
O2 - BHO: (no name) - {9C84301C-F754-41BF-85ED-45D11BAD82E2} - \
O2 - BHO: (no name) - {9CA5C211-24A3-4845-97D9-D72647F8DF71} - \
O2 - BHO: (no name) - {9D6F2D41-6846-470A-8DC0-F8EA6FCDC3BD} - \
O2 - BHO: (no name) - {9E299BAE-8033-430F-91A7-7EB7704407F4} - \
O2 - BHO: (no name) - {9E56FDCF-D12F-4AFE-8839-137257A92FDF} - \
O2 - BHO: (no name) - {9E9FFBBA-3EB4-4A2B-86F0-A394BE1092F5} - \
O2 - BHO: (no name) - {9EDE84A1-8B1F-4519-97A9-454FEA3D67F9} - \
O2 - BHO: (no name) - {9F0CB0E1-7F15-4EF0-A67A-AE9F1B4B46BF} - \
O2 - BHO: (no name) - {9F2BACE9-C4F3-4B91-847B-8F31FF76AC47} - \
O2 - BHO: (no name) - {A0311382-2F45-43EE-8F77-CFBE3B336697} - \
O2 - BHO: (no name) - {A0D08C0D-42CC-4F67-B679-A039C9F3826F} - \
O2 - BHO: (no name) - {A11B54DD-6B88-4003-9F53-8CCCACC494CF} - \
O2 - BHO: (no name) - {A15ED066-A6FF-4F3E-A221-8FB6FEB19F33} - \
O2 - BHO: (no name) - {A16A1C0E-AE7E-4124-91FA-642D40CD1FB0} - \
O2 - BHO: (no name) - {A28CC867-45B0-43EB-B0D6-7A730F53A1CA} - \
O2 - BHO: (no name) - {A38150A2-4E8D-40CA-BF5C-EA426CC0B996} - \
O2 - BHO: (no name) - {A3C0F2F5-4DAA-4073-9EE1-C823BAD5B301} - \
O2 - BHO: (no name) - {A40D7907-CADA-4C80-845B-4BB38B558514} - \
O2 - BHO: (no name) - {A477A1AC-109F-43E9-B718-1A0B656E1F0C} - \
O2 - BHO: (no name) - {A4F3B4BD-F05F-4AEC-BEC9-FF3613BC536A} - \
O2 - BHO: (no name) - {A50F2FBC-5824-4FC0-B51E-8AE5CD774773} - \
O2 - BHO: (no name) - {A53376F4-D7A4-4542-B5BE-76306BAF5B9B} - \
O2 - BHO: (no name) - {A5807209-9801-4132-8858-32B276199945} - \
O2 - BHO: (no name) - {A5AB43E4-C9D3-4D4E-AC63-CB3EF7F0A0BF} - \
O2 - BHO: (no name) - {A62D7522-DB1B-4C96-8DC4-B17E122CE986} - \
O2 - BHO: (no name) - {A6702BC0-51DD-47A6-A580-40823C2F59D5} - \
O2 - BHO: (no name) - {A6E86C5B-4DA3-4102-8A86-F614ABF623AA} - \
O2 - BHO: (no name) - {A7646038-FC50-473A-B55B-54C26AFC8816} - \
O2 - BHO: (no name) - {A7BC29AA-A658-4CEC-851D-BECA25425D01} - \
O2 - BHO: (no name) - {A7C62115-AAA4-457B-B028-AF3460E2D362} - \
O2 - BHO: (no name) - {A95F2CCC-1F40-4E9E-B92B-176E9B94C6F0} - \
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O2 - BHO: (no name) - {AA99A8FD-28D2-44D0-9664-F9E5FD111A5A} - \
O2 - BHO: (no name) - {AB4F8C3A-3456-4905-980F-D32378692B80} - \
O2 - BHO: (no name) - {ACBDD7AD-1390-405F-9C1F-1C810F330F73} - \
O2 - BHO: (no name) - {ACE08749-5C34-48EA-9108-C167FF22F0BB} - \
O2 - BHO: (no name) - {AE14EE0E-81BB-449E-9C04-B9D3BA013FA8} - \
O2 - BHO: (no name) - {AE3C54ED-C9F4-49F2-9CBA-4134BA076A27} - \
O2 - BHO: HP Smart Web Printing 1.0 - {AE84A6AA-A333-4B92-B276-C11E2212E4FE} - C:\Program Files\HP\Smart Web Printing\SmartWebPrinting.dll
O2 - BHO: (no name) - {AF141A07-37A5-4E40-A2BE-B27E2F69595E} - \
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\3.1.807.1746\swg.dll
O2 - BHO: (no name) - {B0A7ED27-EA93-4F48-B797-51363071B72A} - \
O2 - BHO: (no name) - {B0AD382B-C1FD-4D0B-B62B-F8D3E3A3DF14} - \
O2 - BHO: (no name) - {B27E6DBE-5562-48D6-9673-2D10CBFF7972} - \
O2 - BHO: (no name) - {B2B40D96-B4B1-41D9-8798-E38A82DB3E3C} - \
O2 - BHO: (no name) - {B386A61B-4658-414D-B98F-0EC2F1C54477} - \
O2 - BHO: (no name) - {B4899480-E91E-4A65-95BD-DEF8F16DEF7F} - \
O2 - BHO: (no name) - {B70555DB-EEE1-49FE-8B91-F203F8DD9D68} - \
O2 - BHO: (no name) - {B819C1D1-9701-4D28-98B0-988FE05FEE02} - \
O2 - BHO: (no name) - {B84BA347-753C-472D-9B32-328BCD4331F9} - \
O2 - BHO: (no name) - {B8EC115E-6683-4D94-A01D-A4D33A59B141} - \
O2 - BHO: (no name) - {B98C4C8E-CBF7-4A98-B366-5E63768AB24E} - \
O2 - BHO: (no name) - {B9A255F4-1503-41AA-B0B7-642FDC97EEF2} - \
O2 - BHO: (no name) - {B9B65EF6-1F4F-4A87-B360-FB4BB59ECA53} - \
O2 - BHO: (no name) - {BA368A62-1139-4326-AEDA-A03FC81E6344} - \
O2 - BHO: (no name) - {BB2CB9D0-0069-48B0-8D90-24858A4C3884} - \
O2 - BHO: (no name) - {BB6DD282-5D31-4289-93B2-1AC65395F332} - \
O2 - BHO: (no name) - {BD034705-E6F3-4399-BE96-DC2F348CA942} - (no file)
O2 - BHO: (no name) - {BD5256AE-0431-40AB-A606-D7D92F048716} - \
O2 - BHO: (no name) - {BDE84521-1575-4276-BB53-965D895DB4A2} - \
O2 - BHO: (no name) - {BF4A5DAB-77C2-473D-AF0B-7D301E21DE7A} - \
O2 - BHO: (no name) - {BFCCCF47-B9EE-4293-B5D2-48E0358D94D7} - \
O2 - BHO: (no name) - {BFE1C4A7-90EC-4571-B1FF-347237EF75B5} - \
O2 - BHO: (no name) - {C0927BFD-B39B-419A-A7BE-C1401EABBC2D} - \
O2 - BHO: (no name) - {C3017EB1-1B36-48E9-9005-A3E5F6FBEDE9} - \
O2 - BHO: (no name) - {C40D4A32-A2F0-4A8E-AC1B-4B89E64B1734} - \
O2 - BHO: (no name) - {C468A1B9-A234-45BB-A1C8-7CFC71CC9E0F} - \
O2 - BHO: (no name) - {C492C17A-3787-401C-AE4A-BFEFD825760C} - \
O2 - BHO: (no name) - {C6577129-4E6C-444A-A222-186244B485B4} - \
O2 - BHO: (no name) - {C77BCF82-D0B1-4A5A-86FE-50E85C36C7C3} - \
O2 - BHO: (no name) - {C7B8D2CA-DDF3-47E0-8502-B42D13594077} - \
O2 - BHO: (no name) - {C7BC1FD8-A6BD-4971-9F6C-EDA72D4BABBE} - \
O2 - BHO: (no name) - {C947E9CA-3AFD-4D77-8C48-DFEA92C756F3} - \
O2 - BHO: (no name) - {C9AC4506-CF18-4ED0-A268-063B433252A6} - \
O2 - BHO: (no name) - {CA65BA2D-4EBC-4571-98BE-BB7ED5751E8A} - \
O2 - BHO: (no name) - {CB2CDD54-8FBF-44D6-8716-649769ACD21E} - \
O2 - BHO: (no name) - {CB696966-F71C-449D-8F7B-29E40780E7E6} - \
O2 - BHO: (no name) - {CC0A66A0-CC82-490F-8C26-A014FC8B39CA} - \
O2 - BHO: (no name) - {CD89ADD0-22B3-487F-AE70-9CE12645C08B} - \
O2 - BHO: (no name) - {CE12E692-668C-4751-B54E-B6C04412806F} - \
O2 - BHO: (no name) - {CF344C9E-19AA-434F-A473-5B2765E1B666} - \
O2 - BHO: (no name) - {CFBFB699-ACD4-48F7-BE76-DA3F53342DF0} - \
O2 - BHO: (no name) - {D088A5F5-F3EA-4ECE-8B9F-A4085C00F0E1} - \
O2 - BHO: (no name) - {D0ED9E90-8B3D-4DE6-8E7C-56AB66AC815E} - \
O2 - BHO: (no name) - {D107473E-5714-463C-9943-5465AFC3C159} - \
O2 - BHO: (no name) - {D1342A1A-26E6-4EF0-BF24-C84C3A99F440} - \
O2 - BHO: (no name) - {D23B3D49-C465-4C07-97BF-796E6C6D05FD} - \
O2 - BHO: (no name) - {D242FBFE-CC6E-4BCB-8138-E348D04A1058} - \
O2 - BHO: (no name) - {D278DC8A-40BA-4B7D-BD0A-B6033758C213} - \
O2 - BHO: (no name) - {D3F32ABE-577A-467A-8938-7452EB29B37D} - \
O2 - BHO: (no name) - {D4F38C36-D83D-4C0A-97F6-B36600598E30} - \
O2 - BHO: (no name) - {D60842CE-95D3-4A43-9815-3E192A62A4ED} - \
O2 - BHO: (no name) - {D842CC52-93D6-42E3-B6CD-7E3F50645524} - (no file)
O2 - BHO: (no name) - {D8F3ED00-C3E1-4424-AD18-0F97509B0AD4} - \
O2 - BHO: (no name) - {D9AF1C20-60E5-4F67-A396-5A6EA336CE36} - \
O2 - BHO: (no name) - {DA346AC8-A4EC-45E5-967C-CFBE1F839C1F} - \
O2 - BHO: (no name) - {DAB70C36-B456-4244-899C-766D3EACB1D7} - \
O2 - BHO: (no name) - {DB888616-0783-4C33-B8D3-CE43787A45AB} - \
O2 - BHO: (no name) - {DC06695D-3C12-49F6-95E6-4D2BFD557578} - \
O2 - BHO: (no name) - {DC2B2E4A-52ED-4B56-B26D-33DA052F72D0} - \
O2 - BHO: (no name) - {DCECE7C8-3541-4D7C-BE50-96643DBB50C7} - \
O2 - BHO: (no name) - {DEFD9908-49CB-4423-BEDE-AEAB028AE84D} - \
O2 - BHO: (no name) - {DF417A7C-8D41-4B13-A5BE-21118BB2B8AB} - \
O2 - BHO: (no name) - {DF94D4BC-352A-439F-8068-1BFCEA6260C5} - \
O2 - BHO: (no name) - {E0762EBF-745B-43B9-A91E-1627EE4470DB} - \
O2 - BHO: (no name) - {E0A8CF9A-DAD8-4555-A298-A318D806CC0C} - \
O2 - BHO: (no name) - {E0DD8B51-1EF0-496B-BDCC-1D97B81123AB} - \
O2 - BHO: (no name) - {E0E83B0C-D5EC-4769-94AD-C0C3E1C98AB7} - \
O2 - BHO: (no name) - {E14DCE67-8FB7-4721-8149-179BAA4D792C} - (no file)
O2 - BHO: (no name) - {E2198745-461F-4E6E-8892-40BC20A5964A} - \
O2 - BHO: (no name) - {E2FE7721-5C07-4CA4-B4BC-982B921552D2} - \
O2 - BHO: (no name) - {E3151383-62C2-48D3-8A6B-CE3062DD0B47} - \
O2 - BHO: (no name) - {E33CE615-E566-4607-BC59-2B5B754ED5C0} - \
O2 - BHO: (no name) - {E3849389-DE9B-4462-AC4D-4D1DE608B239} - \
O2 - BHO: (no name) - {E4F399C3-9200-4ED3-B7C4-5373AE03E430} - \
O2 - BHO: (no name) - {E57CB16C-C4C3-4B47-ABD5-4BEEB27B99D6} - \
O2 - BHO: (no name) - {E6AF5663-EEEA-46BD-8716-CA1D406A0FCA} - \
O2 - BHO: (no name) - {E78F266B-4405-4A55-84CD-7890EA0F5526} - \
O2 - BHO: (no name) - {E7F16619-AB12-4C14-A6BB-71E7F6BEF4FD} - \
O2 - BHO: (no name) - {EA09E2D2-DA2A-4DF8-A10C-77FBFC7B6AAC} - \
O2 - BHO: (no name) - {EA105F6E-D55E-42D1-9974-2195B7426041} - \
O2 - BHO: (no name) - {EA2A143B-F361-48E5-839A-9005A8CDC414} - \
O2 - BHO: (no name) - {EACE32AD-396C-47A4-B834-E31CA5AE050A} - \
O2 - BHO: (no name) - {EB07C120-9FE1-45FD-A335-B445184A7387} - \
O2 - BHO: (no name) - {EBF5C3B0-3CC4-4165-A868-BC01436CE845} - \
O2 - BHO: (no name) - {EDEF68C5-CB60-45D8-8678-7F60ED9ADA3D} - \
O2 - BHO: (no name) - {EEAD8EC9-F77D-45CE-AEBE-111EAD922CA6} - \
O2 - BHO: (no name) - {EEB3CE00-D869-4881-8B34-7D3F399BA411} - \
O2 - BHO: (no name) - {EF174405-EBFE-472C-9029-ECE7653F5546} - \
O2 - BHO: (no name) - {F09356E2-D332-4C0E-9AB5-D2566BA88D4B} - \
O2 - BHO: (no name) - {F0A4D8B0-2374-492E-B8F7-1DB04B0D71DF} - \
O2 - BHO: (no name) - {F1040831-32A4-4381-8D97-CAB0940128CB} - \
O2 - BHO: (no name) - {F11DBAB6-9458-40B5-9B27-BF77E8262358} - \
O2 - BHO: (no name) - {F1A5B2C2-62FB-422A-9F08-9E79EA15ADA3} - (no file)
O2 - BHO: (no name) - {F27DC9F8-766A-4D89-9A86-EBD7FD8AA09B} - \
O2 - BHO: (no name) - {F2914E1F-89BB-4BB9-BC99-62D0D3C78C55} - \
O2 - BHO: (no name) - {F3F0F3CD-256F-411A-8A26-D3DA2052D2E3} - \
O2 - BHO: (no name) - {F405263F-9A7D-4B25-83D2-0928D15C0CC6} - \
O2 - BHO: (no name) - {F4CE4B77-979A-4BE1-842B-7B99A03E26D1} - \
O2 - BHO: (no name) - {F606982A-14D1-4E6C-B175-93B046513E43} - \
O2 - BHO: (no name) - {F72F8068-C261-4486-8838-B896130F82EA} - \
O2 - BHO: (no name) - {F7583A75-CAF6-4A08-8070-7C5DD5AB3DC5} - \
O2 - BHO: (no name) - {F76E299C-942A-4274-BC6C-1FC7A8D10964} - \
O2 - BHO: (no name) - {F7C53613-43EE-4053-8662-61B1A8C93424} - \
O2 - BHO: (no name) - {F8001993-10F6-4940-B7F9-BD966364DF24} - \
O2 - BHO: (no name) - {F9097724-28EF-4470-9895-22944D5D078A} - \
O2 - BHO: (no name) - {FA0F27C5-5022-413A-A680-7E0119650DE5} - (no file)
O2 - BHO: (no name) - {FA982806-8583-4349-80EE-FB35ED9C4887} - \
O2 - BHO: (no name) - {FB56E288-F395-4D5C-80AF-9064A81A3893} - \
O2 - BHO: (no name) - {FBD11821-DB3C-416A-80EB-55937349B4B7} - \
O2 - BHO: (no name) - {FBEAE1A5-95FE-4B79-A3E8-768C3B9CBD85} - \
O2 - BHO: (no name) - {FC7793AA-8287-4CDB-8606-A7881903AA32} - \
O2 - BHO: (no name) - {FCDF080C-A409-42A9-A382-79D092F830B9} - \
O2 - BHO: (no name) - {FCED35F6-5C09-4234-8BEE-C924311D4875} - \
O2 - BHO: (no name) - {FD397C58-2AF8-4D20-A683-899784FBD6DA} - \
O2 - BHO: (no name) - {FE714B59-D658-4D1C-872E-E33989E325D3} - \
O2 - BHO: (no name) - {FEF56BF8-0593-4003-9A57-FE611873896A} - \
O2 - BHO: (no name) - {FF36CECA-07D1-4298-BC1C-1CA13D8FF76C} - \
O2 - BHO: (no name) - {FF406E7C-CDE0-4F2E-B0E2-AFE784E2E154} - \
O3 - Toolbar: HP View - {B2847E28-5D7D-4DEB-8B67-05D28BCF79F5} - c:\Program Files\HP\Digital Imaging\bin\hpdtlk02.dll
O3 - Toolbar: MSN - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Apps\MSN Toolbar\01.02.3000.1001\en-us\msntb.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O4 - HKLM\..\Run: [hpsysdrv] c:\windows\system\hpsysdrv.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
O4 - HKLM\..\Run: [Recguard] C:\WINDOWS\SMINST\RECGUARD.EXE
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [AlcxMonitor] ALCXMNTR.EXE
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [cctray] "C:\Program Files\CA\CA Internet Security Suite\cctray\cctray.exe"
O4 - HKLM\..\Run: [QOELOADER] "C:\Program Files\CA\CA Internet Security Suite\CA Anti-Spam\QSP-5.1.18.0\QOELoader.exe"
O4 - HKLM\..\Run: [CAVRID] "C:\Program Files\CA\CA Internet Security Suite\CA Anti-Virus\CAVRID.exe"
O4 - HKLM\..\Run: [cafwc] C:\Program Files\CA\CA Internet Security Suite\CA Personal Firewall\cafw.exe -cl
O4 - HKLM\..\Run: [capfasem] C:\Program Files\CA\CA Internet Security Suite\CA Personal Firewall\capfasem.exe
O4 - HKLM\..\Run: [capfupgrade] C:\Program Files\CA\CA Internet Security Suite\CA Personal Firewall\capfupgrade.exe
O4 - HKLM\..\Run: [LTMSG] LTMSG.exe 7
O4 - HKLM\..\Run: [AVG8_TRAY] C:\PROGRA~1\AVG\AVG8\avgtray.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [VSL07.exe] C:\WINDOWS\system32\VSL07.exe
O4 - Global Startup: Windows Search.lnk = C:\Program Files\Windows Desktop Search\WindowsSearch.exe
O8 - Extra context menu item: &Search - ?p=ZKxdm021YYUS
O8 - Extra context menu item: &Yahoo! Search - file:///C:\Program Files\Yahoo!\Common/ycsrch.htm
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~4\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: Yahoo! &Dictionary - file:///C:\Program Files\Yahoo!\Common/ycdict.htm
O8 - Extra context menu item: Yahoo! &Maps - file:///C:\Program Files\Yahoo!\Common/ycmap.htm
O8 - Extra context menu item: Yahoo! &SMS - file:///C:\Program Files\Yahoo!\Common/ycsms.htm
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra button: Yahoo! Services - {5BAB4B5B-68BC-4B02-94D6-2FC0DE4A7897} - C:\Program Files\Yahoo!\Common\yiesrvc.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O15 - Trusted IP range: 206.161.125.149
O16 - DPF: {001EE746-A1F9-460E-80AD-269E088D6A01} (Infotl Control) - http://0-site.ebrary.com.library.syi.pcc.edu/support/plugins/ebraryRdr.cab
O16 - DPF: {03F998B2-0E00-11D3-A498-00104B6EB52E} (MetaStreamCtl Class) - https://components.viewpoint.com/MTSInstallers/MetaStream3.cab?url=http://www.viewpoint.com/cgi-bin/installer.v3/vet_install_popup.pl?1&4&04.00.07.02&unknown&unknown&http://www.scion.com/scionConfigApp/scion/viewsection.jsp?forceLoad=1
O16 - DPF: {10000000-1000-0000-1000-000000000000} - file://C:\Program Files\Internet Explorer\qfecpbwa.exe
O16 - DPF: {11010101-1001-1111-1000-110112345678} - ms-its:mhtml:file://c:\nosuch.mht!http://69.31.79.187/winsearchie32.chm::/winsearchie32.exe
O16 - DPF: {1D0D9077-3798-49BB-9058-393499174D5D} - file://c:\counter.cab
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:\Program Files\Yahoo!\Common\yinsthelper.dll
O16 - DPF: {4AD73894-A895-4FC2-B233-299867E08753} - http://apps.deskwizz.com/ax/adwerkz.cab
O16 - DPF: {4ED9DDF0-7479-4BBE-9335-5A1EDB1D8A21} - http://download.mcafee.com/molbin/shared/mcinsctl/4,0,0,99/mcinsctl.cab
O16 - DPF: {56336BCB-3D8A-11D6-A00B-0050DA18DE71} - http://software-dl.real.com/12f71593cd5988510b02/netzip/RdxIE601.cab
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1224681074125
O16 - DPF: {88D758A3-D33B-45FD-91E3-67749B4057FA} - http://dm.screensavers.com/dm/installers/si/1/sinstaller.cab
O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/MsnMessengerSetupDownloader.cab
O16 - DPF: {BCC0FF27-31D9-4614-A68E-C18E1ADA4389} - http://download.mcafee.com/molbin/shared/mcgdmgr/1,0,0,26/mcgdmgr.cab
O16 - DPF: {F58E1CEF-A068-4C15-BA5E-587CAF3EE8C6} (MSN Chat Control 4.5) - http://chat.msn.com/bin/msnchat45.cab
O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG8\avgpp.dll
O20 - AppInit_DLLs: avgrsstx.dll
O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: AVG8 E-mail Scanner (avg8emc) - AVG Technologies CZ, s.r.o. - C:\PROGRA~1\AVG\AVG8\avgemc.exe
O23 - Service: AVG8 WatchDog (avg8wd) - AVG Technologies CZ, s.r.o. - C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: CaCCProvSP - CA, Inc. - C:\Program Files\CA\CA Internet Security Suite\ccprovsp.exe
O23 - Service: CAISafe - Computer Associates International, Inc. - C:\Program Files\CA\CA Internet Security Suite\CA Anti-Virus\ISafe.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: My Web Search Service (MyWebSearchService) - Unknown owner - C:\PROGRA~1\MYWEBS~1\bar\1.bin\mwssvc.exe (file missing)
O23 - Service: HIPS Event Manager (UmxAgent) - CA - C:\Program Files\CA\SharedComponents\HIPSEngine\UmxAgent.exe
O23 - Service: HIPS Configuration Interpreter (UmxCfg) - CA - C:\Program Files\CA\SharedComponents\HIPSEngine\UmxCfg.exe
O23 - Service: HIPS Firewall Helper (UmxFwHlp) - CA - C:\Program Files\CA\SharedComponents\HIPSEngine\UmxFwHlp.exe
O23 - Service: HIPS Policy Manager (UmxPol) - CA - C:\Program Files\CA\SharedComponents\HIPSEngine\UmxPol.exe
O23 - Service: VET Message Service (VETMSGNT) - CA, Inc. - C:\Program Files\CA\CA Internet Security Suite\CA Anti-Virus\VetMsg.exe

--
End of file - 35975 bytes

katana
2008-10-24, 15:42
Please note that all instructions given are customised for this computer only, the tools used may cause damage if used on a computer with different infections.

If you think you have similar problems, please post a log in the HJT forum and wait for help.

Hello and welcome to the forums

My name is Katana and I will be helping you to remove any infection(s) that you may have.

Please observe these rules while we work:
1. If you don't know, stop and ask! Don't keep going on.
2. Please reply to this thread. Do not start a new topic.
3. Please continue to respond until I give you the "All Clear"
(Just because you can't see a problem doesn't mean it isn't there)

If you can do those three things, everything should go smoothly :D

Please Note, your security programs may give warnings for some of the tools I will ask you to use.
Be assured, any links I give are safe
----------------------------------------------------------------------------------------


Information

You must have some good infections there, I can't even scan your log without my AntiVirus going wild !!!!!


AntiVirus
You appear to have AVG8 and CA Internet Security Suite
First you should know that you're actually doing more harm than good by running more than one Anti Virus program.
When you do this the programs compete for resources, and the end result is none does it's best and can cause system instability.
I recommend that you choose one that you want to keep.
The other/s I would either uninstall, or disable from startup and use as "on demand" for an occasional scan.

----------------------------------------------------------- -----------------------------------------------------------

Step 1


Malwarebytes' Anti-Malware

Please download Malwarebytes' Anti-Malware (http://www.besttechie.net/tools/mbam-setup.exe) to your desktop.

Double-click mbam-setup.exe and follow the prompts to install the program.
At the end, be sure a checkmark is placed next to
Update Malwarebytes' Anti-Malware
and Launch Malwarebytes' Anti-Malware
then click Finish.
If an update is found, it will download and install the latest version.
Once the program has loaded, select Perform full scan, then click Scan.
When the scan is complete, click OK, then Show Results to view the results.
Be sure that everything is checked, and click Remove Selected.
When completed, a log will open in Notepad. please copy and paste the log into your next reply
If you accidently close it, the log file is saved here and will be named like this:
C:\Documents and Settings\Username\Application Data\Malwarebytes\Malwarebytes' Anti-Malware\Logs\mbam-log-date (time).txt


----------------------------------------------------------- -----------------------------------------------------------
Step 2


Download ComboFix from one of these locations:

Link 1 (http://download.bleepingcomputer.com/sUBs/ComboFix.exe)
Link 2 (http://www.forospyware.com/sUBs/ComboFix.exe)
Link 3 (http://subs.geekstogo.com/ComboFix.exe)

* IMPORTANT !!! Save ComboFix.exe to your Desktop


Disable your AntiVirus and AntiSpyware applications, usually via a right click on the System Tray icon. They may otherwise interfere with our tools
See HERE (http://www.bleepingcomputer.com/forums/topic114351.html) for help

Double click on ComboFix.exe & follow the prompts.


As part of it's process, ComboFix will check to see if the Microsoft Windows Recovery Console is installed. With malware infections being as they are today, it's strongly recommended to have this pre-installed on your machine before doing any malware removal. It will allow you to boot up into a special recovery/repair mode that will allow us to more easily help you should your computer have a problem after an attempted removal of malware.


Follow the prompts to allow ComboFix to download and install the Microsoft Windows Recovery Console, and when prompted, agree to the End-User License Agreement to install the Microsoft Windows Recovery Console.

**Please note: If the Microsoft Windows Recovery Console is already installed, ComboFix will continue it's malware removal procedures.



http://img.photobucket.com/albums/v706/ried7/RcAuto1.gif


Once the Microsoft Windows Recovery Console is installed using ComboFix, you should see the following message:

http://img.photobucket.com/albums/v706/ried7/whatnext.png


Click on Yes, to continue scanning for malware.

When finished, it shall produce a log for you. Please include the C:\ComboFix.txt in your next reply.
----------------------------------------------------------- -----------------------------------------------------------
Step 3



Installed Programs

Please could you give me a list of the programs that are installed.
Start HijackThis
Click on the Misc Tools button
Click on the Open Uninstall Manager button.

You will see a list with the programs installed in your computer.
Click on save list button and specify where you would like to save this file.
When you press Save button a notepad will open with the contents of that file.
Simply copy and paste the contents of that notepad into your next post.


----------------------------------------------------------- -----------------------------------------------------------
Step 4

Logs/Information to Post in Reply
Please post the following logs/Information in your reply

MalwareBytes Log
ComboFix Log
Installed Programs List
How are things running now ?

Modder57
2008-10-25, 12:06
Malwarebytes' Anti-Malware 1.30
Database version: 1316
Windows 5.1.2600 Service Pack 3

10/25/2008 12:36:39 AM
mbam-log-2008-10-25 (00-36-39).txt

Scan type: Full Scan (C:\|D:\|K:\|)
Objects scanned: 122607
Time elapsed: 50 minute(s), 28 second(s)

Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 27
Registry Values Infected: 1
Registry Data Items Infected: 1
Folders Infected: 2
Files Infected: 6

Memory Processes Infected:
(No malicious items detected)

Memory Modules Infected:
(No malicious items detected)

Registry Keys Infected:
HKEY_CLASSES_ROOT\CLSID\{9afb8248-617f-460d-9366-d71cdeda3179} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{037C7B8A-151A-49E6-BAED-CC05FCB50328} (Adware.Search Toolbar) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{e14dce67-8fb7-4721-8149-179baa4d792c} (Backdoor.Ciadoor) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{07b18ea9-a523-4961-b6bb-170de4475cca} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{07b18eab-a523-4961-b6bb-170de4475cca} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{25560540-9571-4d7b-9389-0f166788785a} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{3dc201fb-e9c9-499c-a11f-23c360d7c3f8} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{63d0ed2c-b45b-4458-8b3b-60c69bbbd83c} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{9ff05104-b030-46fc-94b8-81276e4e27df} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{00a6faf1-072e-44cf-8957-5838f569a31d} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{1d4db7d2-6ec9-47a3-bd87-1e41684e07bb} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{e14dce67-8fb7-4721-8149-179baa4d792c} (Backdoor.Ciadoor) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{25560540-9571-4d7b-9389-0f166788785a} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{3dc201fb-e9c9-499c-a11f-23c360d7c3f8} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{63d0ed2c-b45b-4458-8b3b-60c69bbbd83c} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{98d9753d-d73b-42d5-8c85-4469cda897ab} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{9ff05104-b030-46fc-94b8-81276e4e27df} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{59c7fc09-1c83-4648-b3e6-003d2bbc7481} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{68af847f-6e91-45dd-9b68-d6a12c30e5d7} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{9170b96c-28d4-4626-8358-27e6caeef907} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{d1a71fa0-ff48-48dd-9b6d-7a13a3e42127} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{ddb1968e-ead6-40fd-8dae-ff14757f60c7} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{f138d901-86f0-4383-99b6-9cdd406036da} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\Explorer Bars\{90c61707-c8f8-43db-a25c-c1f4b18ee41e} (Spyware.Comet.Cursor) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\RunDll32Policy\f3ScrCtr.dll (Adware.MyWay) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Multimedia\WMPlayer\Schemes\f3pss (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Screensavers.com (Adware.Comet) -> Quarantined and deleted successfully.

Registry Values Infected:
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\Toolbar\WebBrowser\{fe6bc4ef-5676-484b-88ae-883323913256} (Spyware.Comet.Cursor) -> Quarantined and deleted successfully.

Registry Data Items Infected:
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Start_ShowHelp (Hijack.StartMenu) -> Bad: (0) Good: (1) -> Quarantined and deleted successfully.

Folders Infected:
C:\Program Files\Maximum Software (Rogue.Multiple) -> Quarantined and deleted successfully.
C:\Program Files\Maximum Software\ModemMAX (Rogue.Multiple) -> Quarantined and deleted successfully.

Files Infected:
C:\Program Files\Maximum Software\ModemMAX\License.rtf (Rogue.Multiple) -> Quarantined and deleted successfully.
C:\Program Files\Maximum Software\ModemMAX\ModemMax Help.chm (Rogue.Multiple) -> Quarantined and deleted successfully.
C:\Program Files\Maximum Software\ModemMAX\ModemMAX.exe (Rogue.Multiple) -> Quarantined and deleted successfully.
C:\Program Files\Maximum Software\ModemMAX\ModemMAX.url (Rogue.Multiple) -> Quarantined and deleted successfully.
C:\Program Files\Maximum Software\ModemMAX\unins000.dat (Rogue.Multiple) -> Quarantined and deleted successfully.
C:\Program Files\Maximum Software\ModemMAX\unins000.exe (Rogue.Multiple) -> Quarantined and deleted successfully.

Modder57
2008-10-25, 12:07
ComboFix 08-10-24.02 - Owner 2008-10-25 0:44:51.1 - NTFSx86
Microsoft Windows XP Home Edition 5.1.2600.3.1252.1.1033.18.164 [GMT -7:00]
Running from: C:\Documents and Settings\Owner\Desktop\ComboFix.exe
* Created a new restore point
.

((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.

C:\Documents and Settings\Owner\Application Data\FunWebProducts
C:\WINDOWS\system32\dao350.dll
C:\WINDOWS\system32\wnsintit.exe
D:\Autorun.inf

.
((((((((((((((((((((((((((((((((((((((( Drivers/Services )))))))))))))))))))))))))))))))))))))))))))))))))
.

-------\Legacy_ISEXENG
-------\Legacy_MYWEBSEARCHSERVICE
-------\Service_MyWebSearchService


((((((((((((((((((((((((( Files Created from 2008-09-25 to 2008-10-25 )))))))))))))))))))))))))))))))
.

2008-10-24 23:42 . 2008-10-24 23:42 <DIR> d-------- C:\Program Files\Malwarebytes' Anti-Malware
2008-10-24 23:42 . 2008-10-24 23:42 <DIR> d-------- C:\Documents and Settings\Owner\Application Data\Malwarebytes
2008-10-24 23:42 . 2008-10-24 23:42 <DIR> d-------- C:\Documents and Settings\All Users\Application Data\Malwarebytes
2008-10-24 23:42 . 2008-10-22 16:10 38,496 --a------ C:\WINDOWS\system32\drivers\mbamswissarmy.sys
2008-10-24 23:42 . 2008-10-22 16:10 15,504 --a------ C:\WINDOWS\system32\drivers\mbam.sys
2008-10-24 08:21 . 2008-10-15 09:34 337,408 -----c--- C:\WINDOWS\system32\dllcache\netapi32.dll
2008-10-23 21:58 . 2008-10-23 21:58 <DIR> d-------- C:\Documents and Settings\Owner\Application Data\Windows Search
2008-10-23 20:46 . 2008-10-23 20:46 <DIR> d-------- C:\Documents and Settings\All Users\Application Data\Avg8
2008-10-23 04:05 . 2008-07-18 22:07 270,880 --a------ C:\WINDOWS\system32\mucltui.dll
2008-10-23 04:05 . 2008-07-18 22:07 29,728 --a------ C:\WINDOWS\system32\mucltui.dll.mui
2008-10-22 08:43 . 2008-10-22 08:43 <DIR> d-------- C:\WINDOWS\system32\scripting
2008-10-22 08:43 . 2008-10-22 08:43 <DIR> d-------- C:\WINDOWS\system32\en
2008-10-22 08:43 . 2008-10-22 08:43 <DIR> d-------- C:\WINDOWS\l2schemas
2008-10-22 07:38 . 2004-11-02 08:58 163,840 --a------ C:\WINDOWS\system32\igfxres.dll
2008-10-22 07:34 . 2008-10-22 07:34 <DIR> d-------- C:\Program Files\Microsoft Silverlight
2008-10-22 07:30 . 2008-10-22 07:30 <DIR> d-------- C:\Program Files\MSBuild
2008-10-22 07:21 . 2008-10-22 07:21 <DIR> d-------- C:\WINDOWS\system32\XPSViewer
2008-10-22 07:19 . 2008-10-22 07:19 <DIR> d-------- C:\Program Files\Reference Assemblies
2008-10-22 07:16 . 2008-10-22 07:16 <DIR> d-------- C:\ce3ab45200010343a80c3ed87a7624
2008-10-22 07:16 . 2006-06-29 13:07 14,048 --------- C:\WINDOWS\system32\spmsg2.dll
2008-10-22 07:15 . 2008-10-22 07:15 <DIR> d-------- C:\Documents and Settings\Owner\Application Data\Windows Desktop Search
2008-10-22 07:13 . 2008-10-22 07:13 <DIR> d-------- C:\WINDOWS\system32\GroupPolicy
2008-10-22 07:13 . 2008-10-22 07:13 <DIR> d-------- C:\Program Files\Windows Desktop Search
2008-10-22 07:13 . 2008-03-07 10:02 192,000 -----c--- C:\WINDOWS\system32\dllcache\offfilt.dll
2008-10-22 07:13 . 2008-03-07 10:02 98,304 -----c--- C:\WINDOWS\system32\dllcache\nlhtml.dll
2008-10-22 07:03 . 2008-10-22 07:03 <DIR> d-------- C:\Program Files\Windows Media Connect 2
2008-10-22 06:57 . 2008-10-22 06:57 <DIR> d-------- C:\WINDOWS\system32\LogFiles
2008-10-22 06:57 . 2008-10-22 06:59 <DIR> d-------- C:\WINDOWS\system32\drivers\UMDF
2008-10-22 06:55 . 2008-10-22 06:55 <DIR> d-------- C:\Program Files\MSXML 6.0
2008-10-22 06:35 . 2008-04-13 17:12 290,304 --------- C:\WINDOWS\system32\rhttpaa.dll
2008-10-22 06:35 . 2008-04-13 17:11 136,192 --------- C:\WINDOWS\system32\aaclient.dll
2008-10-22 06:35 . 2008-04-13 17:12 53,248 --------- C:\WINDOWS\system32\tsgqec.dll
2008-10-22 02:58 . 2008-10-22 02:58 <DIR> d-------- C:\Program Files\CCleaner
2008-10-22 02:36 . 2008-10-22 02:36 <DIR> d-------- C:\Program Files\Trend Micro
2008-10-21 23:32 . 2008-10-21 23:32 300 --a------ C:\WINDOWS\wininit.ini
2008-10-21 21:09 . 2008-04-13 11:39 14,592 --a------ C:\WINDOWS\system32\drivers\kbdhid.sys
2008-10-21 21:09 . 2001-08-17 13:48 12,160 --a------ C:\WINDOWS\system32\drivers\mouhid.sys
2008-10-21 21:09 . 2001-08-17 13:48 12,160 --a--c--- C:\WINDOWS\system32\dllcache\mouhid.sys
2008-10-21 21:08 . 2008-04-13 11:45 10,368 --a------ C:\WINDOWS\system32\drivers\hidusb.sys
2008-10-16 04:23 . 2008-09-08 03:41 333,824 -----c--- C:\WINDOWS\system32\dllcache\srv.sys
2008-10-16 04:22 . 2008-08-14 03:11 2,189,184 -----c--- C:\WINDOWS\system32\dllcache\ntoskrnl.exe
2008-10-16 04:22 . 2008-08-14 03:09 2,145,280 -----c--- C:\WINDOWS\system32\dllcache\ntkrnlmp.exe
2008-10-16 04:22 . 2008-08-14 02:33 2,066,048 -----c--- C:\WINDOWS\system32\dllcache\ntkrnlpa.exe
2008-10-16 04:22 . 2008-08-14 02:33 2,023,936 -----c--- C:\WINDOWS\system32\dllcache\ntkrpamp.exe
2008-10-16 04:22 . 2008-09-15 05:12 1,846,400 -----c--- C:\WINDOWS\system32\dllcache\win32k.sys
2008-10-11 08:23 . 2008-10-21 21:33 54,156 --ah----- C:\WINDOWS\QTFont.qfn
2008-10-11 08:23 . 2008-10-11 08:23 1,409 --a------ C:\WINDOWS\QTFont.for
2008-10-07 10:48 . 2008-10-07 10:48 <DIR> d-------- C:\Program Files\Delmar Learning
2008-10-07 10:47 . 2008-10-07 10:47 249,856 --------- C:\WINDOWS\Setup1.exe
2008-10-07 10:47 . 2008-10-07 10:47 73,216 --a------ C:\WINDOWS\ST6UNST.EXE

.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2008-10-25 07:53 64 ----a-w C:\WINDOWS\system32\drivers\kmxcfg.u2k7
2008-10-25 07:53 64 ----a-w C:\WINDOWS\system32\drivers\kmxcfg.u2k6
2008-10-25 07:53 64 ----a-w C:\WINDOWS\system32\drivers\kmxcfg.u2k5
2008-10-25 07:53 64 ----a-w C:\WINDOWS\system32\drivers\kmxcfg.u2k4
2008-10-25 07:53 64 ----a-w C:\WINDOWS\system32\drivers\kmxcfg.u2k3
2008-10-25 07:53 64 ----a-w C:\WINDOWS\system32\drivers\kmxcfg.u2k2
2008-10-25 07:53 64 ----a-w C:\WINDOWS\system32\drivers\kmxcfg.u2k1
2008-10-25 07:53 111,740 ----a-w C:\WINDOWS\system32\drivers\kmxcfg.u2k0
2008-10-24 22:23 --------- d-----w C:\Documents and Settings\All Users\Application Data\Google Updater
2008-10-24 03:47 --------- d-----w C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy
2008-10-22 15:48 77,824 ----a-w C:\WINDOWS\PCHealth\HelpCtr\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\Pavilion\XPHNABP4EN\plugin\bin\FDIWrapper.dll
2008-10-22 15:48 69,632 ----a-w C:\WINDOWS\PCHealth\HelpCtr\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\Pavilion\XPHNABP4EN\plugin\bin\msxmlwrapper.dll
2008-10-22 15:48 5,632 ----a-w C:\WINDOWS\PCHealth\HelpCtr\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\Pavilion\XPHNABP4EN\plugin\bin\jsharpde\GUI.dll
2008-10-22 15:48 49,152 ----a-w C:\WINDOWS\PCHealth\HelpCtr\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\Pavilion\XPHNABP4EN\plugin\bin\jsharpde\hwinv.dll
2008-10-22 15:48 344,064 ----a-w C:\WINDOWS\PCHealth\HelpCtr\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\Pavilion\XPHNABP4EN\plugin\bin\jsharpde\api.dll
2008-10-22 15:48 315,392 ----a-w C:\WINDOWS\PCHealth\HelpCtr\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\Pavilion\XPHNABP4EN\plugin\bin\pchmsxml.dll
2008-10-22 15:48 307,200 ----a-w C:\WINDOWS\PCHealth\HelpCtr\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\Pavilion\XPHNABP4EN\plugin\bin\pchealthplugin.dll
2008-10-22 15:48 26,572 ----a-w C:\WINDOWS\PCHealth\HelpCtr\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\Pavilion\XPHNABP4EN\plugin\bin\jsharpde\INV16.dll
2008-10-22 15:48 212,992 ----a-w C:\WINDOWS\PCHealth\HelpCtr\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\Pavilion\XPHNABP4EN\plugin\bin\jsharpde\jsharpinterp.dll
2008-10-22 15:48 155,877 ----a-w C:\WINDOWS\PCHealth\HelpCtr\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\Pavilion\XPHNABP4EN\plugin\bin\jsharpde\js.zip
2008-10-22 15:48 139,264 ----a-w C:\WINDOWS\PCHealth\HelpCtr\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\Pavilion\XPHNABP4EN\plugin\bin\ContentUpdater.exe
2008-10-22 15:48 122,880 ----a-w C:\WINDOWS\PCHealth\HelpCtr\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\Pavilion\XPHNABP4EN\plugin\bin\SearchCtrl.dll
2008-10-22 15:47 69,632 ----a-w C:\WINDOWS\PCHealth\HelpCtr\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\Pavilion\XPHNABP4EN\plugin\bin\jsharpde\msxmlwrapper.dll
2008-10-22 15:47 315,392 ----a-w C:\WINDOWS\PCHealth\HelpCtr\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\Pavilion\XPHNABP4EN\plugin\bin\jsharpde\pchmsxml.dll
2008-10-22 15:47 307,200 ----a-w C:\WINDOWS\PCHealth\HelpCtr\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\Pavilion\XPHNABP4EN\plugin\bin\pchnotify.exe
2008-10-22 15:47 213,089 ----a-w C:\WINDOWS\PCHealth\HelpCtr\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\Pavilion\XPHNABP4EN\plugin\bin\jsharpde\motive.zip
2008-10-22 15:47 159,744 ----a-w C:\WINDOWS\PCHealth\HelpCtr\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\Pavilion\XPHNABP4EN\plugin\bin\PCHButton.exe
2008-10-22 15:47 114,688 ----a-w C:\WINDOWS\PCHealth\HelpCtr\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\Pavilion\XPHNABP4EN\plugin\bin\jsharpde\asst_ui.dll
2008-10-22 06:32 --------- d-----w C:\Program Files\RegFreeze
2008-10-22 04:58 --------- d-----w C:\Program Files\Spybot - Search & Destroy
2008-10-22 04:35 --------- d-----w C:\Documents and Settings\Owner\Application Data\LimeWire
2008-10-07 16:39 --------- d-----w C:\Program Files\Pharmacology
2008-09-15 13:39 --------- d-----w C:\Program Files\LWW
2008-09-08 10:41 333,824 ----a-w C:\WINDOWS\system32\drivers\srv.sys
2008-08-28 04:36 --------- d-----w C:\Documents and Settings\Owner\Application Data\AdobeUM
2005-01-25 02:06 747,222 ----a-w C:\Program Files\ModemMAX_Full_Install.exe
2004-10-31 22:05 4 ----a-w C:\Program Files\index.tmp
2004-09-24 03:24 428,244 ----a-w C:\Program Files\wav_manager_pc.zip
.

((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{011B57FF-6C99-41FE-A69D-AAEE9FBC7208}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{020DC4EF-9C1A-48D3-B7D1-0CC4A9350DE8}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{023F00EA-0FEF-49C9-B443-499F8BDE69F4}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{02923FF9-E768-4AF2-BB3E-88CC704AAED1}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{029980C0-BFD1-4A75-84A1-EFB317F9A7EC}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{02A6DC92-5AB6-4A7C-95C3-3A0328E7560B}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{04434FBE-123F-4001-A1C9-0DFEE1E90136}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{05401F58-2DFE-4624-814F-E9FBF2E1F93F}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{058337D3-FAB4-4C13-8CA4-4DF2525679FF}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{0641E52B-3218-48B3-B565-1C9DD5630672}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{0675AA1C-AEAF-40A1-B223-409C6D8224B3}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{06DDE5C6-0577-4B9F-A47C-E11B103C502D}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{0735FC5F-70AA-4B59-999F-29D40ABD4099}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{079F761B-F121-403B-8DA9-FFF2B112910D}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{08DD50DE-C8EA-44DA-8DC5-BA40A74D6272}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{0AEDEF55-542B-4655-82DF-2FCC11D5231C}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{0AF5C889-5773-4AEA-BFB7-6734277515B8}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{0CF58BE1-563E-43A0-9FD5-CDA5E5770030}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{0D34C14A-3EB9-4311-9ECC-8E7DB27F927A}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{0D43409A-20BD-4920-8F3A-EF20422CFC65}]
2008-10-25 00:54 0 d-ahs---- \



[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{0D52F5F2-826A-46CC-AD46-9D0986167041}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{0EC2586F-4049-4E75-AF51-94E109EDAEA3}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{0F92F6A5-A999-4CAC-B65D-1E1300B704CF}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{10646191-068B-4580-8311-4C969EAEF62F}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{10D47AD8-08CA-432C-BA5F-0F5EED9F15BD}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{11BE20EB-3776-4A4F-AD34-EB04DC71112B}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{126B8117-07A3-4FF0-9E46-5320F1785204}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{1279FE05-D504-4019-82C2-9297489B38DB}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{12C7AC0F-7112-4E1E-8C94-5273118B3C24}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{1330E52D-382C-4EF7-8FF4-A0B3E1B5635D}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{134DACAA-B41C-49E9-A733-80C5D5089EF5}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{147BEA9B-A367-4117-8EDB-0EBAAA564149}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{14F4001F-8A3A-4428-90B4-6688D9E5C83C}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{155E1DF0-4F1F-46E1-8EBD-8F4210FF851E}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{16228B12-2FF9-47C6-A432-DEEBA25B7915}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{164B9A18-8125-47C4-8A8B-97165106590B}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{1697EE0D-ED08-4FE7-A6FA-6D51238DC218}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{1712D94A-19D1-4E87-B8EB-B7E8C307E935}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{174FA0ED-ED02-4801-9857-642274F6EC64}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{17F51FFA-9BA5-41E7-A9DF-90B5655677B6}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{187E10C6-5DE9-4AC6-AC79-63ECE5992897}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{198296F4-93D1-48A5-A685-150E27FFED1A}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{19B19C6E-2020-4A79-8621-2F772A586C36}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{1A143438-6EF9-40CC-ACF7-58A36E3C8335}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{1BBF5D88-8FC1-4306-9E4C-DBA0A8BFABB6}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{1BE4FA38-213A-46FF-96E6-5A2D6DD59FE4}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{1D3DCC7D-3F01-45AD-A6EE-4FD8AFA0CA3C}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{1E3C1F92-012E-4943-B6BE-296DD664AD19}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{1E93C45C-DAEC-478B-A780-AB9438DF2480}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{1F4977F2-59B8-4F23-BA1D-8D6F9E497B15}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{1F69F679-6AF8-4994-88FA-2D92089F3661}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{200CB2A7-6C56-4A3A-A6A3-001D5E6D3FE4}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{2049109F-1DF6-4BA9-B686-0F947387C86E}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{20BF993B-6FC8-44E9-BCF0-5C1505AF7B99}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{20D30DB6-BF6C-4AA8-82B1-884EE25DBD3A}]
2008-10-25 00:54 0 d-ahs---- \


[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{20EAA3E6-C7FB-43AD-856C-6AF735C1A022}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{210C2879-22AD-4ECE-B354-163F466FB4D7}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{211C8CF7-94C6-4E57-AA27-61FDA7D591E5}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{22295E8B-0B2D-4564-B005-55BCB3759E57}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{23DF9873-1FD4-4DD8-9F84-7641F8520120}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{2405DD1D-82E6-48F0-B20E-688D3E0E08C8}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{255F621E-50A2-438B-A8C6-EB1FDAE41DBA}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{263A607E-4EBD-49B0-8E44-323D34DAFAA7}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{2804A84A-905D-45C7-A07C-80EFBD008D7C}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{2850997B-D20A-42E4-8E04-DC8AD9263501}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{28B6B6E5-3364-4FA6-BA09-6E39919009C6}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{29ADA996-C1E4-4839-A008-53CDDABBE21E}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{29C27C2F-F86A-4B43-B789-16AA6FD424F8}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{29F91703-4961-4BFC-9192-B81BFC0796BD}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{2A4F3025-DAB4-44F8-BDA9-92F0B345E593}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{2A5551EB-D7EA-455E-BDB2-22CE614A127C}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{2B1CE497-1F45-4537-A4FB-AFB7B5EE9594}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{2D53ACEB-E54A-4E85-B037-74726750E9BF}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{2D829DF5-B616-41B5-803F-2CAD298D437F}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{2E51D540-442E-4C56-B765-732FC21F33BD}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{2E826452-E647-4C85-B875-65049577FD12}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{2ED4F75E-86C4-465E-B446-A92C40BD163B}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{2EDFAD7C-4F9E-44AA-BF15-444FA9663525}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{315370E2-F93A-4791-B475-BB4ADD141364}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{31A9C2E1-BCEA-4885-8D94-7AA5888AD84C}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{32C0EE84-C664-4440-8484-E34381E0AF21}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{34A74B06-26F1-4BDD-AA7F-AF1F605ECA6F}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{352BD55E-DCEC-4478-9E1C-F05C4714024F}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{36911EBC-32A5-4573-B94A-7EF47DA7AC39}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{36C4463A-59CD-4C71-913E-A2F05CDE2A57}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{3763EAE0-FFC0-410D-A9AB-5F25C70D5D6C}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{3815587D-3425-477D-8FAE-75196991270F}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{389D60BA-F3D1-4D15-A832-0DB0D12E05A8}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{38E6A21C-5A19-4B0F-9554-F27DD6E915E1}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{3AC7D2A0-FDA0-44CB-8299-666B3FACB2FF}]
2008-10-25 00:54 0 d-ahs---- \


[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{3B43D8E0-1F83-45F0-80C1-BD09218057CC}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{3B9AA721-A52D-4352-8579-B79259E37798}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{3BA2B5F5-20C0-40B1-B156-55032DF05462}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{3BE1998C-B7D1-4E44-99B1-3A1D19A0C939}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{3D1B1013-A911-42A3-A24F-77C661DF36F9}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{3D6A81F2-AD19-4F8B-A958-338565B7D2BB}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{3D9349CC-116F-4FA9-8FEB-073A6AF3899E}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{3E41178C-B4A2-4F65-83C8-3ED1CBBA9E6F}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{3E538647-E57F-41EA-965A-3EFF68B13491}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{3ED55FC9-AF26-4686-BB74-0A6FD407F780}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{3EEC1937-DDFE-45DD-B8D4-1E305E9D9496}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{3F938396-99E9-4284-8289-DC16E90528EE}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{3FDABCAA-17C3-4836-90C6-10BCDE83CE85}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{4019A599-E4D8-4006-BBE8-D27D71DEE050}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{40480D30-198D-4F96-9B8B-6699BE7341DC}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{41DC65A7-0549-4A78-84D0-2941E47BFFE3}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{41FEA121-7D03-44AC-9B80-AA48D924197F}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{4246A3E8-EC26-40A6-A835-2A7686CE638A}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{42C0C235-02DC-415B-9FDB-DBC9606BDBEE}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{43C87265-0E6F-4F0E-B43B-2A3FAFB75631}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{44024A08-475C-4F8E-9562-2004A87E378F}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{4521D3BF-8463-42F2-814E-CEAF67388984}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{46754966-B3D0-4C09-B295-B049E02826AD}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{46794E5B-ADE8-412F-A80F-EC855BA73163}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{46C462CE-F7FF-40DA-8201-E2C1CF40CBCB}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{47316B30-4533-488D-B1E5-34C171AA84BE}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{49A9636E-BC60-4DA5-9328-53F9F7EF8A21}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{49CC7584-17DA-458C-B4E2-9B5362303719}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{49D7F5F1-44FE-4458-9212-B0BEC214D908}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{4B6C5179-D31F-4B20-A621-AD2CDA6C160D}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{4B94887E-2CBB-4395-B4AC-D4522EC090B6}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{4C9CA850-D7DF-417F-BAEF-BC58D81FD96A}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{4D16714E-EE95-45B0-9FA4-94C105920C78}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{4E164D68-3B6A-4F60-8DBB-E647FFF00740}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{4E375F87-105C-408C-A53E-188811B33F87}]
2008-10-25 00:54 0 d-ahs---- \


[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{4F4E74D8-AAD3-49EA-A1D5-554BCA86DB2C}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{4F64A10C-CFCE-4065-8A80-CE21FF2402A4}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{506BFBC6-1554-4359-9539-DCADCDC35F23}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{50901B56-25A4-47BE-B2F9-E1B90454B2A6}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{51EDD14C-E16D-41B9-B70C-89772BA523D6}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{52AE22AB-CF77-4BF2-BC8B-9B8E6A3035F3}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{54A8B113-18E2-4963-ADC8-5839A66B2B86}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{55D97209-5D53-4C9C-BBEF-258E5A7A7029}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{563A5F8B-07C9-4A97-9980-E3BA1045C0C9}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{57D46D99-E2A5-4AA7-B160-7E1A498916A1}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{5A608C0C-3F63-4CF8-B911-C7C04E315DF1}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{5B2EA098-8AB6-4C56-95BB-0A6860F91C6A}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{5BA71642-F44A-4B95-8DBD-E06F08ACCC9F}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{5C373F04-0C75-4E56-A63C-3FE65E5FD844}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{5C39FAB1-C51D-4C0D-AA63-C1F0A4143EF0}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{5CCFC99B-9E6A-45C2-BE30-146947011352}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{5E33C0B5-6D96-498B-994A-4731AFFD1BB6}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{5E586277-5E5C-4BD8-B3AD-3C297F19B41F}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{5E7CCC73-5E70-410C-BDB6-920D758D425F}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{5E99D901-B78D-403A-929C-C9F8CD35383F}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{60D34995-7367-43D2-9515-D2C5D294296E}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{61296626-628B-4C77-AB1B-45C5A1DA986E}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{61BBDD1F-459A-4035-AD6D-A5BD1F948DB7}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{61C5944D-B5C1-463B-A936-F82E01417FB5}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{6251992A-0430-451D-9130-376B6D32830A}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{62A26479-F878-45DB-9FD4-0F0D9E1C2BC1}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{6327802B-B9AA-4D29-A42A-B6B6DC703E6E}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{6517A8AF-AE69-4B29-A8C6-B34494B43B7D}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{65642F67-3D81-4541-8947-55E2CDD49B1A}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{67F966D2-E739-408F-90AB-84E423A040C6}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{699231CC-AA4C-4397-B4D3-6942E6513810}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{6AF85D86-5524-4359-BDC8-6D32B5F3D915}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{6B97E91B-FAE5-4BAE-A1A0-25A6F24971DD}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{6BADF032-FC5C-414F-AF8A-DC0A431473F6}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{6BFFC626-D856-451A-9C21-6506C666BD1C}]
2008-10-25 00:54 0 d-ahs---- \


[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{718B85A1-323B-4953-93AC-54DCF0721B47}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{720AD237-391B-4305-9C0D-474C5C6E6D08}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{723003BA-20FD-4359-A36C-2EB73E93DB0F}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{72AF7E40-6B83-48AA-B017-CA5DDE26AC48}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{730074D5-9151-48B4-B8FE-09E164C6DB01}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{74118BB5-E8F8-4F2F-8965-B40F17B108CA}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{74733508-166B-4227-ACE7-EE2A1FF8D76A}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{7779588E-0F86-4B5E-93C7-8F8A40582047}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{77DC096A-1AF8-4C3B-8746-1E908912E655}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{789A2E2C-355F-45A8-8480-8B398513525A}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{7914776E-0EC0-43D2-980C-9D60C000008E}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{79DF2C06-31E8-4B47-ACF0-9B856DEAD078}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{7CCC8C98-75EA-4492-991A-4600838F3A2B}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{7DE92399-A97B-43F3-B6C1-F364E60923D3}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{7EDBA981-22D6-4575-8C10-8372CC1968FF}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{80D1C636-440D-4B63-A6DF-1635AC74E515}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{8269465E-2E61-40D8-8C74-3F3230A679A7}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{829C9D9E-3CC5-494D-9C44-ABFB20BF0DAC}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{82BF8F06-93C8-4E39-8091-6AEC2C84A098}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{82C747C9-A2C8-470E-AD89-D6D9BF30DC03}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{838541D1-04A5-4DE4-88C4-167CCB2AC378}]
2008-10-25 00:54 0 d-ahs---- \

Modder57
2008-10-25, 12:24
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{85762B15-6DBC-47CA-9F10-B98DA9511060}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{85A5F614-6533-4922-BCDB-16901BE88764}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{8668227A-C5DE-48D1-9D11-2C97C6549EB6}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{878FDCD2-5B7D-43F6-A8FC-9330570A6967}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{87CEB1E3-B18E-47E6-8A1D-A0DDB1E85611}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{87DFCC0F-B7B8-43D1-B4DF-DBFC8AEF9647}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{8811B5FA-4200-4E10-AB19-65DBDB29815F}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{8966D206-62BC-4FDD-89B7-D770F6A1500F}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{8972007C-2151-4900-A40A-429A4225D6BE}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{89C5094C-2BA3-4B27-9A02-0C35E71A8D19}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{89CA0626-76CD-44CF-864F-5BB41F3063B8}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{89F8A8A5-9DCA-47A0-AAB0-19C8A7242085}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{8B090AE8-826E-4218-88B0-81289B7FBDAF}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{8B44E398-5DD3-41AD-AA70-35D2CFCD7A3E}]
2008-10-25 00:54 0 d-ahs---- \


[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{8B78F9B4-882B-43C5-BA20-F26D3BDB7A9C}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{8C3E3B88-7ABB-42D3-9105-B5576F7F7D62}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{8CFB40D4-9772-4F81-937E-79D3DD7DF301}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{8E4B6CEF-8B93-4819-84E2-764BD9FA1218}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{8F28D391-D18F-41EE-B9F0-DDCD4769D715}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{8F427DC8-B54C-484A-BFF6-3D7F3A3FD152}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{914605F9-7A51-4713-826D-B99078D679F3}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{91C440D5-606B-47B4-B442-63B23F6D090C}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{93811116-038D-4027-94D1-EF3CC6BFA13D}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{94FB06B6-AC99-444E-8BF8-236EBF928F6B}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{95F5C75F-EA14-4D6F-A496-82E277966A08}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{961CB304-4207-4D61-AE8F-FD02CDC6E152}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{96473FCD-9ADC-402D-8461-C1F8C08E3C65}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{9A0FC042-ADE4-4C12-B182-C6438C7776E3}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{9B09C1AC-082F-4867-9BF3-85F22281546F}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{9B8000AA-CA68-4FBE-8C82-7A00038B584C}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{9C84301C-F754-41BF-85ED-45D11BAD82E2}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{9CA5C211-24A3-4845-97D9-D72647F8DF71}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{9D6F2D41-6846-470A-8DC0-F8EA6FCDC3BD}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{9E299BAE-8033-430F-91A7-7EB7704407F4}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{9E56FDCF-D12F-4AFE-8839-137257A92FDF}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{9E9FFBBA-3EB4-4A2B-86F0-A394BE1092F5}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{9EDE84A1-8B1F-4519-97A9-454FEA3D67F9}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{9F0CB0E1-7F15-4EF0-A67A-AE9F1B4B46BF}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{9F2BACE9-C4F3-4B91-847B-8F31FF76AC47}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{A0311382-2F45-43EE-8F77-CFBE3B336697}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{A0D08C0D-42CC-4F67-B679-A039C9F3826F}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{A11B54DD-6B88-4003-9F53-8CCCACC494CF}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{A15ED066-A6FF-4F3E-A221-8FB6FEB19F33}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{A16A1C0E-AE7E-4124-91FA-642D40CD1FB0}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{A28CC867-45B0-43EB-B0D6-7A730F53A1CA}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{A38150A2-4E8D-40CA-BF5C-EA426CC0B996}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{A3C0F2F5-4DAA-4073-9EE1-C823BAD5B301}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{A40D7907-CADA-4C80-845B-4BB38B558514}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{A477A1AC-109F-43E9-B718-1A0B656E1F0C}]
2008-10-25 00:54 0 d-ahs---- \


[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{A4F3B4BD-F05F-4AEC-BEC9-FF3613BC536A}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{A50F2FBC-5824-4FC0-B51E-8AE5CD774773}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{A53376F4-D7A4-4542-B5BE-76306BAF5B9B}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{A5807209-9801-4132-8858-32B276199945}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{A5AB43E4-C9D3-4D4E-AC63-CB3EF7F0A0BF}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{A62D7522-DB1B-4C96-8DC4-B17E122CE986}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{A6702BC0-51DD-47A6-A580-40823C2F59D5}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{A6E86C5B-4DA3-4102-8A86-F614ABF623AA}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{A7646038-FC50-473A-B55B-54C26AFC8816}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{A7BC29AA-A658-4CEC-851D-BECA25425D01}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{A7C62115-AAA4-457B-B028-AF3460E2D362}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{A95F2CCC-1F40-4E9E-B92B-176E9B94C6F0}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{AA99A8FD-28D2-44D0-9664-F9E5FD111A5A}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{AB4F8C3A-3456-4905-980F-D32378692B80}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{ACBDD7AD-1390-405F-9C1F-1C810F330F73}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{ACE08749-5C34-48EA-9108-C167FF22F0BB}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{AE14EE0E-81BB-449E-9C04-B9D3BA013FA8}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{AE3C54ED-C9F4-49F2-9CBA-4134BA076A27}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{AF141A07-37A5-4E40-A2BE-B27E2F69595E}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{B0A7ED27-EA93-4F48-B797-51363071B72A}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{B0AD382B-C1FD-4D0B-B62B-F8D3E3A3DF14}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{B27E6DBE-5562-48D6-9673-2D10CBFF7972}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{B2B40D96-B4B1-41D9-8798-E38A82DB3E3C}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{B386A61B-4658-414D-B98F-0EC2F1C54477}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{B4899480-E91E-4A65-95BD-DEF8F16DEF7F}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{B70555DB-EEE1-49FE-8B91-F203F8DD9D68}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{B819C1D1-9701-4D28-98B0-988FE05FEE02}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{B84BA347-753C-472D-9B32-328BCD4331F9}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{B8EC115E-6683-4D94-A01D-A4D33A59B141}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{B98C4C8E-CBF7-4A98-B366-5E63768AB24E}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{B9A255F4-1503-41AA-B0B7-642FDC97EEF2}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{B9B65EF6-1F4F-4A87-B360-FB4BB59ECA53}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{BA368A62-1139-4326-AEDA-A03FC81E6344}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{BB2CB9D0-0069-48B0-8D90-24858A4C3884}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{BB6DD282-5D31-4289-93B2-1AC65395F332}]
2008-10-25 00:54 0 d-ahs---- \


[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{BD5256AE-0431-40AB-A606-D7D92F048716}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{BDE84521-1575-4276-BB53-965D895DB4A2}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{BF4A5DAB-77C2-473D-AF0B-7D301E21DE7A}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{BFCCCF47-B9EE-4293-B5D2-48E0358D94D7}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{BFE1C4A7-90EC-4571-B1FF-347237EF75B5}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{C0927BFD-B39B-419A-A7BE-C1401EABBC2D}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{C3017EB1-1B36-48E9-9005-A3E5F6FBEDE9}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{C40D4A32-A2F0-4A8E-AC1B-4B89E64B1734}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{C468A1B9-A234-45BB-A1C8-7CFC71CC9E0F}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{C492C17A-3787-401C-AE4A-BFEFD825760C}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{C6577129-4E6C-444A-A222-186244B485B4}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{C77BCF82-D0B1-4A5A-86FE-50E85C36C7C3}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{C7B8D2CA-DDF3-47E0-8502-B42D13594077}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{C7BC1FD8-A6BD-4971-9F6C-EDA72D4BABBE}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{C947E9CA-3AFD-4D77-8C48-DFEA92C756F3}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{C9AC4506-CF18-4ED0-A268-063B433252A6}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{CA65BA2D-4EBC-4571-98BE-BB7ED5751E8A}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{CB2CDD54-8FBF-44D6-8716-649769ACD21E}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{CB696966-F71C-449D-8F7B-29E40780E7E6}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{CC0A66A0-CC82-490F-8C26-A014FC8B39CA}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{CD89ADD0-22B3-487F-AE70-9CE12645C08B}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{CE12E692-668C-4751-B54E-B6C04412806F}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{CF344C9E-19AA-434F-A473-5B2765E1B666}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{CFBFB699-ACD4-48F7-BE76-DA3F53342DF0}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{D088A5F5-F3EA-4ECE-8B9F-A4085C00F0E1}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{D0ED9E90-8B3D-4DE6-8E7C-56AB66AC815E}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{D107473E-5714-463C-9943-5465AFC3C159}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{D1342A1A-26E6-4EF0-BF24-C84C3A99F440}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{D23B3D49-C465-4C07-97BF-796E6C6D05FD}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{D242FBFE-CC6E-4BCB-8138-E348D04A1058}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{D278DC8A-40BA-4B7D-BD0A-B6033758C213}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{D3F32ABE-577A-467A-8938-7452EB29B37D}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{D4F38C36-D83D-4C0A-97F6-B36600598E30}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{D60842CE-95D3-4A43-9815-3E192A62A4ED}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{D8F3ED00-C3E1-4424-AD18-0F97509B0AD4}]
2008-10-25 00:54 0 d-ahs---- \


[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{D9AF1C20-60E5-4F67-A396-5A6EA336CE36}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{DA346AC8-A4EC-45E5-967C-CFBE1F839C1F}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{DAB70C36-B456-4244-899C-766D3EACB1D7}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{DB888616-0783-4C33-B8D3-CE43787A45AB}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{DC06695D-3C12-49F6-95E6-4D2BFD557578}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{DC2B2E4A-52ED-4B56-B26D-33DA052F72D0}]
2008-10-25 00:54 0 d-ahs---- \

Modder57
2008-10-25, 12:25
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{DCECE7C8-3541-4D7C-BE50-96643DBB50C7}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{DEFD9908-49CB-4423-BEDE-AEAB028AE84D}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{DF417A7C-8D41-4B13-A5BE-21118BB2B8AB}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{DF94D4BC-352A-439F-8068-1BFCEA6260C5}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{E0762EBF-745B-43B9-A91E-1627EE4470DB}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{E0A8CF9A-DAD8-4555-A298-A318D806CC0C}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{E0DD8B51-1EF0-496B-BDCC-1D97B81123AB}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{E0E83B0C-D5EC-4769-94AD-C0C3E1C98AB7}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{E2198745-461F-4E6E-8892-40BC20A5964A}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{E2FE7721-5C07-4CA4-B4BC-982B921552D2}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{E3151383-62C2-48D3-8A6B-CE3062DD0B47}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{E33CE615-E566-4607-BC59-2B5B754ED5C0}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{E3849389-DE9B-4462-AC4D-4D1DE608B239}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{E4F399C3-9200-4ED3-B7C4-5373AE03E430}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{E57CB16C-C4C3-4B47-ABD5-4BEEB27B99D6}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{E6AF5663-EEEA-46BD-8716-CA1D406A0FCA}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{E78F266B-4405-4A55-84CD-7890EA0F5526}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{E7F16619-AB12-4C14-A6BB-71E7F6BEF4FD}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{EA09E2D2-DA2A-4DF8-A10C-77FBFC7B6AAC}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{EA105F6E-D55E-42D1-9974-2195B7426041}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{EA2A143B-F361-48E5-839A-9005A8CDC414}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{EACE32AD-396C-47A4-B834-E31CA5AE050A}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{EB07C120-9FE1-45FD-A335-B445184A7387}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{EBF5C3B0-3CC4-4165-A868-BC01436CE845}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{EDEF68C5-CB60-45D8-8678-7F60ED9ADA3D}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{EEAD8EC9-F77D-45CE-AEBE-111EAD922CA6}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{EEB3CE00-D869-4881-8B34-7D3F399BA411}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{EF174405-EBFE-472C-9029-ECE7653F5546}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{F09356E2-D332-4C0E-9AB5-D2566BA88D4B}]
2008-10-25 00:54 0 d-ahs---- \


[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{F0A4D8B0-2374-492E-B8F7-1DB04B0D71DF}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{F1040831-32A4-4381-8D97-CAB0940128CB}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{F11DBAB6-9458-40B5-9B27-BF77E8262358}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{F27DC9F8-766A-4D89-9A86-EBD7FD8AA09B}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{F2914E1F-89BB-4BB9-BC99-62D0D3C78C55}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{F3F0F3CD-256F-411A-8A26-D3DA2052D2E3}]
2008-10-25 00:54 0 d-ahs---- \


[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{F405263F-9A7D-4B25-83D2-0928D15C0CC6}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{F4CE4B77-979A-4BE1-842B-7B99A03E26D1}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{F606982A-14D1-4E6C-B175-93B046513E43}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{F72F8068-C261-4486-8838-B896130F82EA}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{F7583A75-CAF6-4A08-8070-7C5DD5AB3DC5}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{F76E299C-942A-4274-BC6C-1FC7A8D10964}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{F7C53613-43EE-4053-8662-61B1A8C93424}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{F8001993-10F6-4940-B7F9-BD966364DF24}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{F9097724-28EF-4470-9895-22944D5D078A}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{FA982806-8583-4349-80EE-FB35ED9C4887}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{FB56E288-F395-4D5C-80AF-9064A81A3893}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{FBD11821-DB3C-416A-80EB-55937349B4B7}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{FBEAE1A5-95FE-4B79-A3E8-768C3B9CBD85}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{FC7793AA-8287-4CDB-8606-A7881903AA32}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{FCDF080C-A409-42A9-A382-79D092F830B9}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{FCED35F6-5C09-4234-8BEE-C924311D4875}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{FD397C58-2AF8-4D20-A683-899784FBD6DA}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{FE714B59-D658-4D1C-872E-E33989E325D3}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{FEF56BF8-0593-4003-9A57-FE611873896A}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{FF36CECA-07D1-4298-BC1C-1CA13D8FF76C}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{FF406E7C-CDE0-4F2E-B0E2-AFE784E2E154}]
2008-10-25 00:54 0 d-ahs---- \

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ctfmon.exe"="C:\WINDOWS\system32\ctfmon.exe" [2008-04-13 15360]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"hpsysdrv"="c:\windows\system\hpsysdrv.exe" [1998-05-07 52736]
"SunJavaUpdateSched"="C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe" [2005-11-10 36975]
"Recguard"="C:\WINDOWS\SMINST\RECGUARD.EXE" [2003-11-03 221184]
"HotKeysCmds"="C:\WINDOWS\system32\hkcmd.exe" [2004-11-02 126976]
"TkBellExe"="C:\Program Files\Common Files\Real\Update_OB\realsched.exe" [2004-10-11 180269]
"IgfxTray"="C:\WINDOWS\system32\igfxtray.exe" [2004-11-02 155648]
"HP Software Update"="C:\Program Files\HP\HP Software Update\HPWuSchd2.exe" [2006-12-10 49152]
"cctray"="C:\Program Files\CA\CA Internet Security Suite\cctray\cctray.exe" [2007-08-16 177416]
"QOELOADER"="C:\Program Files\CA\CA Internet Security Suite\CA Anti-Spam\QSP-5.1.18.0\QOELoader.exe" [2008-05-14 14088]
"CAVRID"="C:\Program Files\CA\CA Internet Security Suite\CA Anti-Virus\CAVRID.exe" [2007-08-20 230664]
"cafwc"="C:\Program Files\CA\CA Internet Security Suite\CA Personal Firewall\cafw.exe" [2008-07-31 1193200]
"capfasem"="C:\Program Files\CA\CA Internet Security Suite\CA Personal Firewall\capfasem.exe" [2008-07-31 173296]
"capfupgrade"="C:\Program Files\CA\CA Internet Security Suite\CA Personal Firewall\capfupgrade.exe" [2008-07-31 259312]
"Adobe Photo Downloader"="C:\Program Files\Adobe\Photoshop Album Starter Edition\3.0\Apps\apdproxy.exe" [2005-06-06 57344]
"AlcxMonitor"="ALCXMNTR.EXE" [2004-09-07 C:\WINDOWS\ALCXMNTR.EXE]
"LTMSG"="LTMSG.exe" [2003-07-14 C:\WINDOWS\ltmsg.exe]

C:\Documents and Settings\All Users\Start Menu\Programs\Startup\
Windows Search.lnk - C:\Program Files\Windows Desktop Search\WindowsSearch.exe [2008-05-26 123904]

[hkey_local_machine\software\microsoft\windows\currentversion\explorer\ShellExecuteHooks]
"{56F9679E-7826-4C84-81F3-532071A8BCC5}"= "C:\Program Files\Windows Desktop Search\MSNLNamespaceMgr.dll" [2008-05-26 304128]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\PFW]
2007-05-18 13:30 79368 C:\WINDOWS\system32\UmxWNP.dll

[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^Adobe Reader Speed Launch.lnk]
path=C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Adobe Reader Speed Launch.lnk
backup=C:\WINDOWS\pss\Adobe Reader Speed Launch.lnkCommon Startup

[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^HP Digital Imaging Monitor.lnk]
path=C:\Documents and Settings\All Users\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnk
backup=C:\WINDOWS\pss\HP Digital Imaging Monitor.lnkCommon Startup

[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^Quicken Scheduled Updates.lnk]
path=C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Quicken Scheduled Updates.lnk
backup=C:\WINDOWS\pss\Quicken Scheduled Updates.lnkCommon Startup

[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^Updates from HP.lnk]
path=C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Updates from HP.lnk
backup=C:\WINDOWS\pss\Updates from HP.lnkCommon Startup

[HKLM\~\startupfolder\C:^Documents and Settings^Owner^Start Menu^Programs^Startup^LimeWire On Startup.lnk]
path=C:\Documents and Settings\Owner\Start Menu\Programs\Startup\LimeWire On Startup.lnk
backup=C:\WINDOWS\pss\LimeWire On Startup.lnkStartup

[HKLM\~\startupfolder\C:^Documents and Settings^Owner^Start Menu^Programs^Startup^Organize.lnk]
path=C:\Documents and Settings\Owner\Start Menu\Programs\Startup\Organize.lnk
backup=C:\WINDOWS\pss\Organize.lnkStartup

[HKLM\~\startupfolder\C:^Documents and Settings^Owner^Start Menu^Programs^Startup^spamsubtract.lnk]
path=C:\Documents and Settings\Owner\Start Menu\Programs\Startup\spamsubtract.lnk
backup=C:\WINDOWS\pss\spamsubtract.lnkStartup

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Sqdxognn]
C:\WINDOWS\System32\w?nlogon.exe [?]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Photo Downloader]
--a------ 2005-06-06 23:46 57344 C:\Program Files\Adobe\Photoshop Album Starter Edition\3.0\Apps\apdproxy.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BackupNotify]
--a------ 2004-01-09 02:34 32768 c:\Program Files\HP\Digital Imaging\bin\BackupNotify.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CookiePatrol]
--a------ 2002-10-04 14:52 65536 C:\PROGRA~1\PESTPA~1\CookiePatrol.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper]
--a------ 2008-03-30 10:36 267048 C:\Program Files\iTunes\iTunesHelper.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MSMSGS]
--------- 2008-04-13 17:12 1695232 C:\Program Files\Messenger\msmsgs.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\msnappau]
--a------ 2004-08-13 17:41 86016 C:\Program Files\MSN Apps\Updater\01.02.3000.1001\en-us\msnappau.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PestPatrol Control Center]
--a------ 2002-10-04 14:52 57344 C:\Program Files\PestPatrol\PPControl.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PPMemCheck]
--a------ 2002-10-15 21:16 148480 C:\PROGRA~1\PESTPA~1\PPMemCheck.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
--a------ 2008-03-28 23:37 413696 C:\Program Files\QuickTime\QTTask.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Reminder]
--a------ 2003-12-18 00:31 118784 C:\WINDOWS\CREATOR\Remind_XP.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Sunkist2k]
--a------ 2003-10-29 11:17 135168 C:\Program Files\Multimedia Card Reader\shwicon2k.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TkBellExe]
--a------ 2004-10-11 20:12 180269 C:\Program Files\Common Files\Real\Update_OB\realsched.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\updateMgr]
--a------ 2006-03-30 16:45 313472 C:\Program Files\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ViewMgr]
--a------ 2004-04-19 09:06 102400 C:\Program Files\Viewpoint\Viewpoint Manager\ViewMgr.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WinampAgent]
--a------ 2006-03-10 10:45 35328 C:\Program Files\Winamp\winampa.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AlcxMonitor]
--a------ 2004-09-07 14:47 57344 C:\WINDOWS\ALCXMNTR.EXE

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LTMSG]
--a------ 2003-07-14 10:52 40960 C:\WINDOWS\ltmsg.exe

[HKEY_LOCAL_MACHINE\software\microsoft\security center]
"AntiVirusDisableNotify"=dword:00000001

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\CA Personal Firewall]
"DisableMonitoring"=dword:00000001

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\ComputerAssociatesAntiVirus]
"DisableMonitoring"=dword:00000001

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"C:\\Program Files\\Real\\RealPlayer\\realplay.exe"=
"C:\\Program Files\\BitLord\\BitLord.exe"=
"C:\\Program Files\\Bonjour\\mDNSResponder.exe"=
"C:\\Program Files\\iTunes\\iTunes.exe"=
"C:\\Program Files\\LimeWire\\LimeWire.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"8951:TCP"= 8951:TCP:*:Disabled:BitComet 8951 TCP
"8951:UDP"= 8951:UDP:*:Disabled:BitComet 8951 UDP

R0 KmxStart;KmxStart;C:\WINDOWS\system32\DRIVERS\kmxstart.sys [2008-06-24 93712]
R1 KmxAgent;KmxAgent;C:\WINDOWS\system32\DRIVERS\kmxagent.sys [2008-06-24 63504]
R1 KmxFile;KmxFile;C:\WINDOWS\system32\DRIVERS\KmxFile.sys [2008-06-24 45584]
R1 KmxFw;KmxFw;C:\WINDOWS\system32\DRIVERS\kmxfw.sys [2008-06-24 115216]
R2 KmxCF;KmxCF;C:\WINDOWS\system32\DRIVERS\KmxCF.sys [2008-06-24 134648]
R2 KmxSbx;KmxSbx;C:\WINDOWS\system32\DRIVERS\KmxSbx.sys [2008-06-24 66576]
R2 UmxAgent;HIPS Event Manager;C:\Program Files\CA\SharedComponents\HIPSEngine\UmxAgent.exe [2007-10-18 1010192]
R2 UmxCfg;HIPS Configuration Interpreter;C:\Program Files\CA\SharedComponents\HIPSEngine\UmxCfg.exe [2007-10-18 801296]
R2 UmxPol;HIPS Policy Manager;C:\Program Files\CA\SharedComponents\HIPSEngine\UmxPol.exe [2008-06-24 281104]
R3 KmxCfg;KmxCfg;C:\WINDOWS\system32\DRIVERS\kmxcfg.sys [2008-06-24 88816]
S3 ebookman;FEP_USB Driver;C:\WINDOWS\system32\Drivers\ebookman.sys [2001-02-06 19677]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
HPZ12 REG_MULTI_SZ Pml Driver HPZ12 Net Driver HPZ12
hpdevmgmt REG_MULTI_SZ hpqcxs08 hpqddsvc
.
Contents of the 'Scheduled Tasks' folder

2008-10-03 C:\WINDOWS\Tasks\AppleSoftwareUpdate.job
- C:\Program Files\Apple Software Update\SoftwareUpdate.exe [2007-08-29 14:57]
.
- - - - ORPHANS REMOVED - - - -

BHO-{322B13F5-196A-471B-880C-578D9ACA0F58} - (no file)
BHO-{97E48816-55AD-4310-B35C-DB7887071D5C} - (no file)
BHO-{BD034705-E6F3-4399-BE96-DC2F348CA942} - (no file)
BHO-{D842CC52-93D6-42E3-B6CD-7E3F50645524} - (no file)
BHO-{F1A5B2C2-62FB-422A-9F08-9E79EA15ADA3} - (no file)
BHO-{FA0F27C5-5022-413A-A680-7E0119650DE5} - (no file)
MSConfigStartUp-BullsEye Network - C:\Program Files\BullsEye Network\bin\bargains.exe
MSConfigStartUp-CashBack - C:\Program Files\CashBack\bin\cashback.exe
MSConfigStartUp-EPSON Stylus CX4600 Series - C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATI9AA.EXE
MSConfigStartUp-McRegWiz - C:\PROGRA~1\McAfee.com\Agent\mcregwiz.exe
MSConfigStartUp-MCUpdateExe - C:\PROGRA~1\mcafee.com\agent\mcupdate.exe
MSConfigStartUp-mmtask - C:\Program Files\MUSICMATCH\MUSICMATCH Jukebox\mmtask.exe
MSConfigStartUp-msbb - c:\temp\msbb.exe
MSConfigStartUp-MsnMsgr - C:\Program Files\MSN Messenger\msnmsgr.exe
MSConfigStartUp-NAV CfgWiz - c:\Program Files\Common Files\Symantec Shared\CfgWiz.exe
MSConfigStartUp-Notn - C:\Documents and Settings\Owner\Application Data\eber.exe
MSConfigStartUp-rqpsjgj - C:\WINDOWS\rqpsjgj.exe
MSConfigStartUp-Shareaza - C:\Program Files\Shareaza\Shareaza.exe
MSConfigStartUp-shellvrtf - C:\WINDOWS\System32\shellvrtf.exe
MSConfigStartUp-TBPS - C:\PROGRA~1\Toolbar\TBPS.exe
MSConfigStartUp-usbmon - C:\WINDOWS\System32\usbmon.exe
MSConfigStartUp-VBundleOuterDL - C:\Program Files\VBouncer\BundleOuter.EXE
MSConfigStartUp-VirusScan Online - c:\PROGRA~1\mcafee.com\vso\mcvsshld.exe
MSConfigStartUp-VSOCheckTask - c:\PROGRA~1\mcafee.com\vso\mcmnhdlr.exe
MSConfigStartUp-WebRebates0 - C:\Program Files\Web_Rebates\WebRebates0.exe
MSConfigStartUp-Win Comm - C:\Program Files\Win Comm\WinComm.exe
MSConfigStartUp-WinTools - C:\Program Files\Common Files\WinTools\WToolsA.exe
MSConfigStartUp-VTTimer - VTTimer.exe


.
------- Supplementary Scan -------
.
R0 -: HKCU-Main,Start Page = hxxp://www.google.com/
R0 -: HKCU-Main,Default_Search_URL = hxxp://srch-us10.hpwis.com/
R0 -: HKCU-Main,SearchMigratedDefaultURL = hxxp://www.google.com/search?q={searchTerms}&sourceid=ie7&rls=com.microsoft:en-US&ie=utf8&oe=utf8
R1 -: HKCU-Internet Settings,ProxyOverride = *.local
R1 -: HKCU-SearchURL,(Default) = hxxp://www.google.com/search?q=%s
O8 -: &Search - ?p=ZKxdm021YYUS
O8 -: &Yahoo! Search - file:///C:\Program Files\Yahoo!\Common/ycsrch.htm
O8 -: E&xport to Microsoft Excel - C:\PROGRA~1\MICROS~4\OFFICE11\EXCEL.EXE/3000
O8 -: Yahoo! &Dictionary - file:///C:\Program Files\Yahoo!\Common/ycdict.htm
O8 -: Yahoo! &Maps - file:///C:\Program Files\Yahoo!\Common/ycmap.htm
O8 -: Yahoo! &SMS - file:///C:\Program Files\Yahoo!\Common/ycsms.htm
.

**************************************************************************

catchme 0.3.1367 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-10-25 00:57:12
Windows 5.1.2600 Service Pack 3 NTFS

scanning hidden processes ...

scanning hidden autostart entries ...

scanning hidden files ...

scan completed successfully
hidden files: 0

**************************************************************************
.
--------------------- DLLs Loaded Under Running Processes ---------------------

PROCESS: C:\WINDOWS\explorer.exe
-> ?:\WINDOWS\system32\MLANG.dll
-> C:\Program Files\ArcSoft\Software Suite\PhotoImpression 5\share\pihook.dll
.
------------------------ Other Running Processes ------------------------
.
C:\Program Files\CA\SharedComponents\HIPSEngine\UmxFwHlp.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\CA\CA Internet Security Suite\CA Anti-Virus\isafe.exe
C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
C:\Program Files\CA\CA Internet Security Suite\CA Anti-Virus\vetmsg.exe
C:\WINDOWS\system32\searchindexer.exe
C:\Program Files\CA\CA Internet Security Suite\CA Personal Firewall\capfsem.exe
C:\Program Files\CA\CA Internet Security Suite\ccprovsp.exe
.
**************************************************************************
.
Completion time: 2008-10-25 1:14:03 - machine was rebooted
ComboFix-quarantined-files.txt 2008-10-25 08:13:06

Pre-Run: 30,909,575,168 bytes free
Post-Run: 30,866,227,200 bytes free

1036 --- E O F --- 2008-10-24 15:32:07

Modder57
2008-10-25, 12:48
32 Bit HP CIO Components Installer
Ad-Aware SE Personal
Adobe Flash Player ActiveX
Adobe Reader 7.0.8
Adobe® Photoshop® Album Starter Edition 3.0
Apple Mobile Device Support
Apple Software Update
ArcSoft Software Suite
BitComet 0.70
BitLord 1.1
Bonjour
CA Internet Security Suite
CCleaner (remove only)
Complete Review for NCLEX-RN
Craft of Literature CD-ROM
Google Earth
Google Toolbar for Internet Explorer
Google Toolbar for Internet Explorer
Google Updater
HijackThis 2.0.2
Hotfix for Windows Media Format 11 SDK (KB929399)
Hotfix for Windows XP (KB915800-v4)
Hotfix for Windows XP (KB952287)
HP Customer Participation Program 8.0
HP Deskjet All-In-One Software 8.0
HP Image Zone 3.5
HP Image Zone Plus 3.5
HP Imaging Device Functions 8.0
HP Instant Support
HP Organize
HP Photo & Imaging 3.5 - HP Devices
HP Photosmart Essential
HP Smart Web Printing 1.0
HP Software Update
HP Solution Center 8.0
HP Update
HPIZ350
HPSSupply
Intel(R) Extreme Graphics Driver
IntelliMover Data Transfer Demo
InterVideo WinDVD Creator 2
InterVideo WinDVD Player
iTunes
J2SE Runtime Environment 5.0 Update 6
Java 2 Runtime Environment, SE v1.4.2_03
K-Lite Codec Pack 2.54 Standard
LimeWire 4.16.7
Macromedia Flash Player 8
Macromedia Shockwave Player
Malwarebytes' Anti-Malware
MathPlayer
Microsoft .NET Framework 1.1
Microsoft .NET Framework 1.1
Microsoft .NET Framework 1.1 Hotfix (KB928366)
Microsoft .NET Framework 2.0
Microsoft .NET Framework 3.0
Microsoft .NET Framework 3.0
Microsoft Base Smart Card Cryptographic Service Provider Package
Microsoft Compression Client Pack 1.0 for Windows XP
Microsoft Internationalized Domain Names Mitigation APIs
Microsoft National Language Support Downlevel APIs
Microsoft Office Professional Edition 2003
Microsoft Silverlight
Microsoft Text-to-Speech Engine 4.0 (English)
Microsoft User-Mode Driver Framework Feature Pack 1.0
Microsoft Visual C++ 2005 Redistributable
ModemMAX 3.0
MP3 Player Utilities 3.57
MSN Toolbar
MSXML 4.0 SP2 (KB927978)
MSXML 4.0 SP2 (KB936181)
MSXML 6.0 Parser
Multimedia Card Reader
NCLEX-RN 3500 - Individual Version
Pharmacology
QuickTime
RealPlayer
Security Update for Step By Step Interactive Training (KB898458)
Security Update for Step By Step Interactive Training (KB923723)
Security Update for Windows Internet Explorer 7 (KB938127)
Security Update for Windows Internet Explorer 7 (KB950759)
Security Update for Windows Internet Explorer 7 (KB953838)
Security Update for Windows Internet Explorer 7 (KB956390)
Security Update for Windows Media Player 10 (KB917734)
Security Update for Windows Media Player 10 (KB936782)
Security Update for Windows Media Player 11 (KB936782)
Security Update for Windows Media Player 11 (KB954154)
Security Update for Windows Media Player 9 (KB911565)
Security Update for Windows Media Player 9 (KB917734)
Security Update for Windows XP (KB938464)
Security Update for Windows XP (KB941569)
Security Update for Windows XP (KB946648)
Security Update for Windows XP (KB950759)
Security Update for Windows XP (KB950760)
Security Update for Windows XP (KB950762)
Security Update for Windows XP (KB950974)
Security Update for Windows XP (KB951066)
Security Update for Windows XP (KB951376)
Security Update for Windows XP (KB951376-v2)
Security Update for Windows XP (KB951698)
Security Update for Windows XP (KB951748)
Security Update for Windows XP (KB952954)
Security Update for Windows XP (KB953839)
Security Update for Windows XP (KB954211)
Security Update for Windows XP (KB956391)
Security Update for Windows XP (KB956803)
Security Update for Windows XP (KB956841)
Security Update for Windows XP (KB957095)
Security Update for Windows XP (KB958644)
Sony Sound Forge 7.0
Spybot - Search & Destroy
Supportsoft Web Controls
Toolkit View(HP)
Update for Windows XP (KB951072-v2)
Update for Windows XP (KB951978)
Updates from HP
Viewpoint Manager (Remove Only)
Viewpoint Media Player
WinAce Archiver
Winamp (remove only)
Windows Communication Foundation
Windows Imaging Component
Windows Media Format 11 runtime
Windows Media Format 11 runtime
Windows Media Player 11
Windows Media Player 11
Windows Presentation Foundation
Windows Search 4.0
Windows Workflow Foundation
Windows XP Service Pack 3
Yahoo! extras
Yahoo! Install Manager

Modder57
2008-10-25, 12:50
The computer appears too be running fine aside from the fact that it has 502mb ram...

it seems to be virus free

do the logs say otherwise?

Modder57
2008-10-25, 22:20
Spybot was still detecting

RegFreeze - Malware

and could not remove the file

so i ran a CFScript.txt command

*
FOLDER::
C:\Program Files\RegFreeze
*

the folder was removed, it never regenerated, it doesn't show up in spybot scans anymore


ComboFix 08-10-24.02 - Owner 2008-10-25 4:11:57.2 - NTFSx86
Microsoft Windows XP Home Edition 5.1.2600.3.1252.1.1033.18.236 [GMT -7:00]
Running from: C:\Documents and Settings\Owner\Desktop\ComboFix.exe
Command switches used :: C:\Documents and Settings\Owner\Desktop\CFScript.txt
* Created a new restore point
.

((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.

C:\Program Files\RegFreeze
C:\Program Files\RegFreeze\protection\11dc32a12fb8ba64471fe56de359ab32
C:\Program Files\RegFreeze\protection\5ef5b5607db5a6799d161e762d0082dd
C:\Program Files\RegFreeze\protection\927fb7805b06f05ee96975b1535138ad
C:\Program Files\RegFreeze\protection\aaee99c1bfb876ee1f52c1880fe3cea0
C:\Program Files\RegFreeze\protection\autoexec.bat.protection
C:\Program Files\RegFreeze\protection\autoexec.nt.protection
C:\Program Files\RegFreeze\protection\b56c4a31ecd069167506012f21d2c3b4
C:\Program Files\RegFreeze\protection\commonstartup.protection
C:\Program Files\RegFreeze\protection\config.nt.protection
C:\Program Files\RegFreeze\protection\config.sys.protection
C:\Program Files\RegFreeze\protection\eadf67d9139f19e0a65dcde501161f1a
C:\Program Files\RegFreeze\protection\fa36eb4d57c8d41f25c86111e4a4fd1a
C:\Program Files\RegFreeze\protection\favorites.protection
C:\Program Files\RegFreeze\protection\hosts.protection
C:\Program Files\RegFreeze\protection\system.ini.protection
C:\Program Files\RegFreeze\protection\userstartup.protection
C:\Program Files\RegFreeze\protection\win.ini.protection
C:\Program Files\RegFreeze\protection\wininit.ini.protection
C:\Program Files\RegFreeze\protection\winstart.bat.protection
C:\Program Files\RegFreeze\snapshoots\52725DA5.snap
C:\Program Files\RegFreeze\snapshoots\E378687C.snap
C:\Program Files\RegFreeze\snapshoots\F2EBF98C.snap

.
((((((((((((((((((((((((( Files Created from 2008-09-25 to 2008-10-25 )))))))))))))))))))))))))))))))
.

2008-10-24 23:42 . 2008-10-24 23:42 <DIR> d-------- C:\Program Files\Malwarebytes' Anti-Malware
2008-10-24 23:42 . 2008-10-24 23:42 <DIR> d-------- C:\Documents and Settings\Owner\Application Data\Malwarebytes
2008-10-24 23:42 . 2008-10-24 23:42 <DIR> d-------- C:\Documents and Settings\All Users\Application Data\Malwarebytes
2008-10-24 23:42 . 2008-10-22 16:10 38,496 --a------ C:\WINDOWS\system32\drivers\mbamswissarmy.sys
2008-10-24 23:42 . 2008-10-22 16:10 15,504 --a------ C:\WINDOWS\system32\drivers\mbam.sys
2008-10-24 08:21 . 2008-10-15 09:34 337,408 -----c--- C:\WINDOWS\system32\dllcache\netapi32.dll
2008-10-23 21:58 . 2008-10-23 21:58 <DIR> d-------- C:\Documents and Settings\Owner\Application Data\Windows Search
2008-10-23 20:46 . 2008-10-23 20:46 <DIR> d-------- C:\Documents and Settings\All Users\Application Data\Avg8
2008-10-23 04:05 . 2008-07-18 22:07 270,880 --a------ C:\WINDOWS\system32\mucltui.dll
2008-10-23 04:05 . 2008-07-18 22:07 29,728 --a------ C:\WINDOWS\system32\mucltui.dll.mui
2008-10-22 08:43 . 2008-10-22 08:43 <DIR> d-------- C:\WINDOWS\system32\scripting
2008-10-22 08:43 . 2008-10-22 08:43 <DIR> d-------- C:\WINDOWS\system32\en
2008-10-22 08:43 . 2008-10-22 08:43 <DIR> d-------- C:\WINDOWS\l2schemas
2008-10-22 07:38 . 2004-11-02 08:58 163,840 --a------ C:\WINDOWS\system32\igfxres.dll
2008-10-22 07:34 . 2008-10-22 07:34 <DIR> d-------- C:\Program Files\Microsoft Silverlight
2008-10-22 07:30 . 2008-10-22 07:30 <DIR> d-------- C:\Program Files\MSBuild
2008-10-22 07:21 . 2008-10-22 07:21 <DIR> d-------- C:\WINDOWS\system32\XPSViewer
2008-10-22 07:19 . 2008-10-22 07:19 <DIR> d-------- C:\Program Files\Reference Assemblies
2008-10-22 07:16 . 2008-10-22 07:16 <DIR> d-------- C:\ce3ab45200010343a80c3ed87a7624
2008-10-22 07:16 . 2006-06-29 13:07 14,048 --------- C:\WINDOWS\system32\spmsg2.dll
2008-10-22 07:15 . 2008-10-22 07:15 <DIR> d-------- C:\Documents and Settings\Owner\Application Data\Windows Desktop Search
2008-10-22 07:13 . 2008-10-22 07:13 <DIR> d-------- C:\WINDOWS\system32\GroupPolicy
2008-10-22 07:13 . 2008-10-22 07:13 <DIR> d-------- C:\Program Files\Windows Desktop Search
2008-10-22 07:13 . 2008-03-07 10:02 192,000 -----c--- C:\WINDOWS\system32\dllcache\offfilt.dll
2008-10-22 07:13 . 2008-03-07 10:02 98,304 -----c--- C:\WINDOWS\system32\dllcache\nlhtml.dll
2008-10-22 07:03 . 2008-10-22 07:03 <DIR> d-------- C:\Program Files\Windows Media Connect 2
2008-10-22 06:57 . 2008-10-22 06:57 <DIR> d-------- C:\WINDOWS\system32\LogFiles
2008-10-22 06:57 . 2008-10-22 06:59 <DIR> d-------- C:\WINDOWS\system32\drivers\UMDF
2008-10-22 06:55 . 2008-10-22 06:55 <DIR> d-------- C:\Program Files\MSXML 6.0
2008-10-22 06:35 . 2008-04-13 17:12 290,304 --------- C:\WINDOWS\system32\rhttpaa.dll
2008-10-22 06:35 . 2008-04-13 17:11 136,192 --------- C:\WINDOWS\system32\aaclient.dll
2008-10-22 06:35 . 2008-04-13 17:12 53,248 --------- C:\WINDOWS\system32\tsgqec.dll
2008-10-22 02:58 . 2008-10-22 02:58 <DIR> d-------- C:\Program Files\CCleaner
2008-10-22 02:36 . 2008-10-22 02:36 <DIR> d-------- C:\Program Files\Trend Micro
2008-10-21 23:32 . 2008-10-21 23:32 300 --a------ C:\WINDOWS\wininit.ini
2008-10-21 21:09 . 2008-04-13 11:39 14,592 --a------ C:\WINDOWS\system32\drivers\kbdhid.sys
2008-10-21 21:09 . 2001-08-17 13:48 12,160 --a------ C:\WINDOWS\system32\drivers\mouhid.sys
2008-10-21 21:09 . 2001-08-17 13:48 12,160 --a--c--- C:\WINDOWS\system32\dllcache\mouhid.sys
2008-10-21 21:08 . 2008-04-13 11:45 10,368 --a------ C:\WINDOWS\system32\drivers\hidusb.sys
2008-10-16 04:23 . 2008-09-08 03:41 333,824 -----c--- C:\WINDOWS\system32\dllcache\srv.sys
2008-10-16 04:22 . 2008-08-14 03:11 2,189,184 -----c--- C:\WINDOWS\system32\dllcache\ntoskrnl.exe
2008-10-16 04:22 . 2008-08-14 03:09 2,145,280 -----c--- C:\WINDOWS\system32\dllcache\ntkrnlmp.exe
2008-10-16 04:22 . 2008-08-14 02:33 2,066,048 -----c--- C:\WINDOWS\system32\dllcache\ntkrnlpa.exe
2008-10-16 04:22 . 2008-08-14 02:33 2,023,936 -----c--- C:\WINDOWS\system32\dllcache\ntkrpamp.exe
2008-10-16 04:22 . 2008-09-15 05:12 1,846,400 -----c--- C:\WINDOWS\system32\dllcache\win32k.sys
2008-10-11 08:23 . 2008-10-21 21:33 54,156 --ah----- C:\WINDOWS\QTFont.qfn
2008-10-11 08:23 . 2008-10-11 08:23 1,409 --a------ C:\WINDOWS\QTFont.for
2008-10-07 10:48 . 2008-10-07 10:48 <DIR> d-------- C:\Program Files\Delmar Learning
2008-10-07 10:47 . 2008-10-07 10:47 249,856 --------- C:\WINDOWS\Setup1.exe
2008-10-07 10:47 . 2008-10-07 10:47 73,216 --a------ C:\WINDOWS\ST6UNST.EXE

.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2008-10-25 09:47 --------- d-----w C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy
2008-10-25 07:53 64 ----a-w C:\WINDOWS\system32\drivers\kmxcfg.u2k7
2008-10-25 07:53 64 ----a-w C:\WINDOWS\system32\drivers\kmxcfg.u2k6
2008-10-25 07:53 64 ----a-w C:\WINDOWS\system32\drivers\kmxcfg.u2k5
2008-10-25 07:53 64 ----a-w C:\WINDOWS\system32\drivers\kmxcfg.u2k4
2008-10-25 07:53 64 ----a-w C:\WINDOWS\system32\drivers\kmxcfg.u2k3
2008-10-25 07:53 64 ----a-w C:\WINDOWS\system32\drivers\kmxcfg.u2k2
2008-10-25 07:53 64 ----a-w C:\WINDOWS\system32\drivers\kmxcfg.u2k1
2008-10-25 07:53 111,740 ----a-w C:\WINDOWS\system32\drivers\kmxcfg.u2k0
2008-10-24 22:23 --------- d-----w C:\Documents and Settings\All Users\Application Data\Google Updater
2008-10-22 15:48 77,824 ----a-w C:\WINDOWS\PCHealth\HelpCtr\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\Pavilion\XPHNABP4EN\plugin\bin\FDIWrapper.dll
2008-10-22 15:48 69,632 ----a-w C:\WINDOWS\PCHealth\HelpCtr\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\Pavilion\XPHNABP4EN\plugin\bin\msxmlwrapper.dll
2008-10-22 15:48 5,632 ----a-w C:\WINDOWS\PCHealth\HelpCtr\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\Pavilion\XPHNABP4EN\plugin\bin\jsharpde\GUI.dll
2008-10-22 15:48 49,152 ----a-w C:\WINDOWS\PCHealth\HelpCtr\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\Pavilion\XPHNABP4EN\plugin\bin\jsharpde\hwinv.dll
2008-10-22 15:48 344,064 ----a-w C:\WINDOWS\PCHealth\HelpCtr\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\Pavilion\XPHNABP4EN\plugin\bin\jsharpde\api.dll
2008-10-22 15:48 315,392 ----a-w C:\WINDOWS\PCHealth\HelpCtr\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\Pavilion\XPHNABP4EN\plugin\bin\pchmsxml.dll
2008-10-22 15:48 307,200 ----a-w C:\WINDOWS\PCHealth\HelpCtr\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\Pavilion\XPHNABP4EN\plugin\bin\pchealthplugin.dll
2008-10-22 15:48 26,572 ----a-w C:\WINDOWS\PCHealth\HelpCtr\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\Pavilion\XPHNABP4EN\plugin\bin\jsharpde\INV16.dll
2008-10-22 15:48 212,992 ----a-w C:\WINDOWS\PCHealth\HelpCtr\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\Pavilion\XPHNABP4EN\plugin\bin\jsharpde\jsharpinterp.dll
2008-10-22 15:48 155,877 ----a-w C:\WINDOWS\PCHealth\HelpCtr\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\Pavilion\XPHNABP4EN\plugin\bin\jsharpde\js.zip
2008-10-22 15:48 139,264 ----a-w C:\WINDOWS\PCHealth\HelpCtr\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\Pavilion\XPHNABP4EN\plugin\bin\ContentUpdater.exe
2008-10-22 15:48 122,880 ----a-w C:\WINDOWS\PCHealth\HelpCtr\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\Pavilion\XPHNABP4EN\plugin\bin\SearchCtrl.dll
2008-10-22 15:47 69,632 ----a-w C:\WINDOWS\PCHealth\HelpCtr\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\Pavilion\XPHNABP4EN\plugin\bin\jsharpde\msxmlwrapper.dll
2008-10-22 15:47 315,392 ----a-w C:\WINDOWS\PCHealth\HelpCtr\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\Pavilion\XPHNABP4EN\plugin\bin\jsharpde\pchmsxml.dll
2008-10-22 15:47 307,200 ----a-w C:\WINDOWS\PCHealth\HelpCtr\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\Pavilion\XPHNABP4EN\plugin\bin\pchnotify.exe
2008-10-22 15:47 213,089 ----a-w C:\WINDOWS\PCHealth\HelpCtr\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\Pavilion\XPHNABP4EN\plugin\bin\jsharpde\motive.zip
2008-10-22 15:47 159,744 ----a-w C:\WINDOWS\PCHealth\HelpCtr\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\Pavilion\XPHNABP4EN\plugin\bin\PCHButton.exe
2008-10-22 15:47 114,688 ----a-w C:\WINDOWS\PCHealth\HelpCtr\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\Pavilion\XPHNABP4EN\plugin\bin\jsharpde\asst_ui.dll
2008-10-22 04:58 --------- d-----w C:\Program Files\Spybot - Search & Destroy
2008-10-22 04:35 --------- d-----w C:\Documents and Settings\Owner\Application Data\LimeWire
2008-10-07 16:39 --------- d-----w C:\Program Files\Pharmacology
2008-09-15 13:39 --------- d-----w C:\Program Files\LWW
2008-09-15 12:12 1,846,400 ----a-w C:\WINDOWS\system32\win32k.sys
2008-09-08 10:41 333,824 ----a-w C:\WINDOWS\system32\drivers\srv.sys
2008-08-28 04:36 --------- d-----w C:\Documents and Settings\Owner\Application Data\AdobeUM
2008-08-26 07:24 826,368 ----a-w C:\WINDOWS\system32\wininet.dll
2008-08-14 10:11 2,189,184 ----a-w C:\WINDOWS\system32\ntoskrnl.exe
2008-08-14 09:33 2,066,048 ----a-w C:\WINDOWS\system32\ntkrnlpa.exe
2005-01-25 02:06 747,222 ----a-w C:\Program Files\ModemMAX_Full_Install.exe
2004-10-31 22:05 4 ----a-w C:\Program Files\index.tmp
2004-09-24 03:24 428,244 ----a-w C:\Program Files\wav_manager_pc.zip
.

((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{011B57FF-6C99-41FE-A69D-AAEE9FBC7208}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{020DC4EF-9C1A-48D3-B7D1-0CC4A9350DE8}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{023F00EA-0FEF-49C9-B443-499F8BDE69F4}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{02923FF9-E768-4AF2-BB3E-88CC704AAED1}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{029980C0-BFD1-4A75-84A1-EFB317F9A7EC}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{02A6DC92-5AB6-4A7C-95C3-3A0328E7560B}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{04434FBE-123F-4001-A1C9-0DFEE1E90136}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{05401F58-2DFE-4624-814F-E9FBF2E1F93F}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{058337D3-FAB4-4C13-8CA4-4DF2525679FF}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{0641E52B-3218-48B3-B565-1C9DD5630672}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{0675AA1C-AEAF-40A1-B223-409C6D8224B3}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{06DDE5C6-0577-4B9F-A47C-E11B103C502D}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{0735FC5F-70AA-4B59-999F-29D40ABD4099}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{079F761B-F121-403B-8DA9-FFF2B112910D}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{08DD50DE-C8EA-44DA-8DC5-BA40A74D6272}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{0AEDEF55-542B-4655-82DF-2FCC11D5231C}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{0AF5C889-5773-4AEA-BFB7-6734277515B8}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{0CF58BE1-563E-43A0-9FD5-CDA5E5770030}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{0D34C14A-3EB9-4311-9ECC-8E7DB27F927A}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{0D43409A-20BD-4920-8F3A-EF20422CFC65}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{0D52F5F2-826A-46CC-AD46-9D0986167041}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{0EC2586F-4049-4E75-AF51-94E109EDAEA3}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{0F92F6A5-A999-4CAC-B65D-1E1300B704CF}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{10646191-068B-4580-8311-4C969EAEF62F}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{10D47AD8-08CA-432C-BA5F-0F5EED9F15BD}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{11BE20EB-3776-4A4F-AD34-EB04DC71112B}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{126B8117-07A3-4FF0-9E46-5320F1785204}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{1279FE05-D504-4019-82C2-9297489B38DB}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{12C7AC0F-7112-4E1E-8C94-5273118B3C24}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{1330E52D-382C-4EF7-8FF4-A0B3E1B5635D}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{134DACAA-B41C-49E9-A733-80C5D5089EF5}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{147BEA9B-A367-4117-8EDB-0EBAAA564149}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{14F4001F-8A3A-4428-90B4-6688D9E5C83C}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{155E1DF0-4F1F-46E1-8EBD-8F4210FF851E}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{16228B12-2FF9-47C6-A432-DEEBA25B7915}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{164B9A18-8125-47C4-8A8B-97165106590B}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{1697EE0D-ED08-4FE7-A6FA-6D51238DC218}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{1712D94A-19D1-4E87-B8EB-B7E8C307E935}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{174FA0ED-ED02-4801-9857-642274F6EC64}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{17F51FFA-9BA5-41E7-A9DF-90B5655677B6}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{187E10C6-5DE9-4AC6-AC79-63ECE5992897}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{198296F4-93D1-48A5-A685-150E27FFED1A}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{19B19C6E-2020-4A79-8621-2F772A586C36}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{1A143438-6EF9-40CC-ACF7-58A36E3C8335}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{1BBF5D88-8FC1-4306-9E4C-DBA0A8BFABB6}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{1BE4FA38-213A-46FF-96E6-5A2D6DD59FE4}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{1D3DCC7D-3F01-45AD-A6EE-4FD8AFA0CA3C}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{1E3C1F92-012E-4943-B6BE-296DD664AD19}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{1E93C45C-DAEC-478B-A780-AB9438DF2480}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{1F4977F2-59B8-4F23-BA1D-8D6F9E497B15}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{1F69F679-6AF8-4994-88FA-2D92089F3661}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{200CB2A7-6C56-4A3A-A6A3-001D5E6D3FE4}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{2049109F-1DF6-4BA9-B686-0F947387C86E}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{20BF993B-6FC8-44E9-BCF0-5C1505AF7B99}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{20D30DB6-BF6C-4AA8-82B1-884EE25DBD3A}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{20EAA3E6-C7FB-43AD-856C-6AF735C1A022}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{210C2879-22AD-4ECE-B354-163F466FB4D7}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{211C8CF7-94C6-4E57-AA27-61FDA7D591E5}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{22295E8B-0B2D-4564-B005-55BCB3759E57}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{23DF9873-1FD4-4DD8-9F84-7641F8520120}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{2405DD1D-82E6-48F0-B20E-688D3E0E08C8}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{255F621E-50A2-438B-A8C6-EB1FDAE41DBA}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{263A607E-4EBD-49B0-8E44-323D34DAFAA7}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{2804A84A-905D-45C7-A07C-80EFBD008D7C}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{2850997B-D20A-42E4-8E04-DC8AD9263501}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{28B6B6E5-3364-4FA6-BA09-6E39919009C6}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{29ADA996-C1E4-4839-A008-53CDDABBE21E}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{29C27C2F-F86A-4B43-B789-16AA6FD424F8}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{29F91703-4961-4BFC-9192-B81BFC0796BD}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{2A4F3025-DAB4-44F8-BDA9-92F0B345E593}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{2A5551EB-D7EA-455E-BDB2-22CE614A127C}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{2B1CE497-1F45-4537-A4FB-AFB7B5EE9594}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{2D53ACEB-E54A-4E85-B037-74726750E9BF}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{2D829DF5-B616-41B5-803F-2CAD298D437F}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{2E51D540-442E-4C56-B765-732FC21F33BD}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{2E826452-E647-4C85-B875-65049577FD12}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{2ED4F75E-86C4-465E-B446-A92C40BD163B}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{2EDFAD7C-4F9E-44AA-BF15-444FA9663525}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{315370E2-F93A-4791-B475-BB4ADD141364}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{31A9C2E1-BCEA-4885-8D94-7AA5888AD84C}]
2008-10-25 04:10 0 d-ahs---- \

Modder57
2008-10-25, 22:21
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{32C0EE84-C664-4440-8484-E34381E0AF21}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{34A74B06-26F1-4BDD-AA7F-AF1F605ECA6F}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{352BD55E-DCEC-4478-9E1C-F05C4714024F}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{36911EBC-32A5-4573-B94A-7EF47DA7AC39}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{36C4463A-59CD-4C71-913E-A2F05CDE2A57}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{3763EAE0-FFC0-410D-A9AB-5F25C70D5D6C}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{3815587D-3425-477D-8FAE-75196991270F}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{389D60BA-F3D1-4D15-A832-0DB0D12E05A8}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{38E6A21C-5A19-4B0F-9554-F27DD6E915E1}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{3AC7D2A0-FDA0-44CB-8299-666B3FACB2FF}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{3B43D8E0-1F83-45F0-80C1-BD09218057CC}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{3B9AA721-A52D-4352-8579-B79259E37798}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{3BA2B5F5-20C0-40B1-B156-55032DF05462}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{3BE1998C-B7D1-4E44-99B1-3A1D19A0C939}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{3D1B1013-A911-42A3-A24F-77C661DF36F9}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{3D6A81F2-AD19-4F8B-A958-338565B7D2BB}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{3D9349CC-116F-4FA9-8FEB-073A6AF3899E}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{3E41178C-B4A2-4F65-83C8-3ED1CBBA9E6F}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{3E538647-E57F-41EA-965A-3EFF68B13491}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{3ED55FC9-AF26-4686-BB74-0A6FD407F780}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{3EEC1937-DDFE-45DD-B8D4-1E305E9D9496}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{3F938396-99E9-4284-8289-DC16E90528EE}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{3FDABCAA-17C3-4836-90C6-10BCDE83CE85}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{4019A599-E4D8-4006-BBE8-D27D71DEE050}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{40480D30-198D-4F96-9B8B-6699BE7341DC}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{41DC65A7-0549-4A78-84D0-2941E47BFFE3}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{41FEA121-7D03-44AC-9B80-AA48D924197F}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{4246A3E8-EC26-40A6-A835-2A7686CE638A}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{42C0C235-02DC-415B-9FDB-DBC9606BDBEE}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{43C87265-0E6F-4F0E-B43B-2A3FAFB75631}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{44024A08-475C-4F8E-9562-2004A87E378F}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{4521D3BF-8463-42F2-814E-CEAF67388984}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{46754966-B3D0-4C09-B295-B049E02826AD}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{46794E5B-ADE8-412F-A80F-EC855BA73163}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{46C462CE-F7FF-40DA-8201-E2C1CF40CBCB}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{47316B30-4533-488D-B1E5-34C171AA84BE}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{49A9636E-BC60-4DA5-9328-53F9F7EF8A21}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{49CC7584-17DA-458C-B4E2-9B5362303719}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{49D7F5F1-44FE-4458-9212-B0BEC214D908}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{4B6C5179-D31F-4B20-A621-AD2CDA6C160D}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{4B94887E-2CBB-4395-B4AC-D4522EC090B6}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{4C9CA850-D7DF-417F-BAEF-BC58D81FD96A}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{4D16714E-EE95-45B0-9FA4-94C105920C78}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{4E164D68-3B6A-4F60-8DBB-E647FFF00740}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{4E375F87-105C-408C-A53E-188811B33F87}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{4F4E74D8-AAD3-49EA-A1D5-554BCA86DB2C}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{4F64A10C-CFCE-4065-8A80-CE21FF2402A4}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{506BFBC6-1554-4359-9539-DCADCDC35F23}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{50901B56-25A4-47BE-B2F9-E1B90454B2A6}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{51EDD14C-E16D-41B9-B70C-89772BA523D6}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{52AE22AB-CF77-4BF2-BC8B-9B8E6A3035F3}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{54A8B113-18E2-4963-ADC8-5839A66B2B86}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{55D97209-5D53-4C9C-BBEF-258E5A7A7029}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{563A5F8B-07C9-4A97-9980-E3BA1045C0C9}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{57D46D99-E2A5-4AA7-B160-7E1A498916A1}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{5A608C0C-3F63-4CF8-B911-C7C04E315DF1}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{5B2EA098-8AB6-4C56-95BB-0A6860F91C6A}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{5BA71642-F44A-4B95-8DBD-E06F08ACCC9F}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{5C373F04-0C75-4E56-A63C-3FE65E5FD844}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{5C39FAB1-C51D-4C0D-AA63-C1F0A4143EF0}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{5CCFC99B-9E6A-45C2-BE30-146947011352}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{5E33C0B5-6D96-498B-994A-4731AFFD1BB6}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{5E586277-5E5C-4BD8-B3AD-3C297F19B41F}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{5E7CCC73-5E70-410C-BDB6-920D758D425F}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{5E99D901-B78D-403A-929C-C9F8CD35383F}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{60D34995-7367-43D2-9515-D2C5D294296E}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{61296626-628B-4C77-AB1B-45C5A1DA986E}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{61BBDD1F-459A-4035-AD6D-A5BD1F948DB7}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{61C5944D-B5C1-463B-A936-F82E01417FB5}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{6251992A-0430-451D-9130-376B6D32830A}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{62A26479-F878-45DB-9FD4-0F0D9E1C2BC1}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{6327802B-B9AA-4D29-A42A-B6B6DC703E6E}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{6517A8AF-AE69-4B29-A8C6-B34494B43B7D}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{65642F67-3D81-4541-8947-55E2CDD49B1A}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{67F966D2-E739-408F-90AB-84E423A040C6}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{699231CC-AA4C-4397-B4D3-6942E6513810}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{6AF85D86-5524-4359-BDC8-6D32B5F3D915}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{6B97E91B-FAE5-4BAE-A1A0-25A6F24971DD}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{6BADF032-FC5C-414F-AF8A-DC0A431473F6}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{6BFFC626-D856-451A-9C21-6506C666BD1C}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{718B85A1-323B-4953-93AC-54DCF0721B47}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{720AD237-391B-4305-9C0D-474C5C6E6D08}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{723003BA-20FD-4359-A36C-2EB73E93DB0F}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{72AF7E40-6B83-48AA-B017-CA5DDE26AC48}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{730074D5-9151-48B4-B8FE-09E164C6DB01}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{74118BB5-E8F8-4F2F-8965-B40F17B108CA}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{74733508-166B-4227-ACE7-EE2A1FF8D76A}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{7779588E-0F86-4B5E-93C7-8F8A40582047}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{77DC096A-1AF8-4C3B-8746-1E908912E655}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{789A2E2C-355F-45A8-8480-8B398513525A}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{7914776E-0EC0-43D2-980C-9D60C000008E}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{79DF2C06-31E8-4B47-ACF0-9B856DEAD078}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{7CCC8C98-75EA-4492-991A-4600838F3A2B}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{7DE92399-A97B-43F3-B6C1-F364E60923D3}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{7EDBA981-22D6-4575-8C10-8372CC1968FF}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{80D1C636-440D-4B63-A6DF-1635AC74E515}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{8269465E-2E61-40D8-8C74-3F3230A679A7}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{829C9D9E-3CC5-494D-9C44-ABFB20BF0DAC}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{82BF8F06-93C8-4E39-8091-6AEC2C84A098}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{82C747C9-A2C8-470E-AD89-D6D9BF30DC03}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{838541D1-04A5-4DE4-88C4-167CCB2AC378}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{85762B15-6DBC-47CA-9F10-B98DA9511060}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{85A5F614-6533-4922-BCDB-16901BE88764}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{8668227A-C5DE-48D1-9D11-2C97C6549EB6}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{878FDCD2-5B7D-43F6-A8FC-9330570A6967}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{87CEB1E3-B18E-47E6-8A1D-A0DDB1E85611}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{87DFCC0F-B7B8-43D1-B4DF-DBFC8AEF9647}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{8811B5FA-4200-4E10-AB19-65DBDB29815F}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{8966D206-62BC-4FDD-89B7-D770F6A1500F}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{8972007C-2151-4900-A40A-429A4225D6BE}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{89C5094C-2BA3-4B27-9A02-0C35E71A8D19}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{89CA0626-76CD-44CF-864F-5BB41F3063B8}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{89F8A8A5-9DCA-47A0-AAB0-19C8A7242085}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{8B090AE8-826E-4218-88B0-81289B7FBDAF}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{8B44E398-5DD3-41AD-AA70-35D2CFCD7A3E}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{8B78F9B4-882B-43C5-BA20-F26D3BDB7A9C}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{8C3E3B88-7ABB-42D3-9105-B5576F7F7D62}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{8CFB40D4-9772-4F81-937E-79D3DD7DF301}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{8E4B6CEF-8B93-4819-84E2-764BD9FA1218}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{8F28D391-D18F-41EE-B9F0-DDCD4769D715}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{8F427DC8-B54C-484A-BFF6-3D7F3A3FD152}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{914605F9-7A51-4713-826D-B99078D679F3}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{91C440D5-606B-47B4-B442-63B23F6D090C}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{93811116-038D-4027-94D1-EF3CC6BFA13D}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{94FB06B6-AC99-444E-8BF8-236EBF928F6B}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{95F5C75F-EA14-4D6F-A496-82E277966A08}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{961CB304-4207-4D61-AE8F-FD02CDC6E152}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{96473FCD-9ADC-402D-8461-C1F8C08E3C65}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{9A0FC042-ADE4-4C12-B182-C6438C7776E3}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{9B09C1AC-082F-4867-9BF3-85F22281546F}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{9B8000AA-CA68-4FBE-8C82-7A00038B584C}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{9C84301C-F754-41BF-85ED-45D11BAD82E2}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{9CA5C211-24A3-4845-97D9-D72647F8DF71}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{9D6F2D41-6846-470A-8DC0-F8EA6FCDC3BD}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{9E299BAE-8033-430F-91A7-7EB7704407F4}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{9E56FDCF-D12F-4AFE-8839-137257A92FDF}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{9E9FFBBA-3EB4-4A2B-86F0-A394BE1092F5}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{9EDE84A1-8B1F-4519-97A9-454FEA3D67F9}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{9F0CB0E1-7F15-4EF0-A67A-AE9F1B4B46BF}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{9F2BACE9-C4F3-4B91-847B-8F31FF76AC47}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{A0311382-2F45-43EE-8F77-CFBE3B336697}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{A0D08C0D-42CC-4F67-B679-A039C9F3826F}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{A11B54DD-6B88-4003-9F53-8CCCACC494CF}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{A15ED066-A6FF-4F3E-A221-8FB6FEB19F33}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{A16A1C0E-AE7E-4124-91FA-642D40CD1FB0}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{A28CC867-45B0-43EB-B0D6-7A730F53A1CA}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{A38150A2-4E8D-40CA-BF5C-EA426CC0B996}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{A3C0F2F5-4DAA-4073-9EE1-C823BAD5B301}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{A40D7907-CADA-4C80-845B-4BB38B558514}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{A477A1AC-109F-43E9-B718-1A0B656E1F0C}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{A4F3B4BD-F05F-4AEC-BEC9-FF3613BC536A}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{A50F2FBC-5824-4FC0-B51E-8AE5CD774773}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{A53376F4-D7A4-4542-B5BE-76306BAF5B9B}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{A5807209-9801-4132-8858-32B276199945}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{A5AB43E4-C9D3-4D4E-AC63-CB3EF7F0A0BF}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{A62D7522-DB1B-4C96-8DC4-B17E122CE986}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{A6702BC0-51DD-47A6-A580-40823C2F59D5}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{A6E86C5B-4DA3-4102-8A86-F614ABF623AA}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{A7646038-FC50-473A-B55B-54C26AFC8816}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{A7BC29AA-A658-4CEC-851D-BECA25425D01}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{A7C62115-AAA4-457B-B028-AF3460E2D362}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{A95F2CCC-1F40-4E9E-B92B-176E9B94C6F0}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{AA99A8FD-28D2-44D0-9664-F9E5FD111A5A}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{AB4F8C3A-3456-4905-980F-D32378692B80}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{ACBDD7AD-1390-405F-9C1F-1C810F330F73}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{ACE08749-5C34-48EA-9108-C167FF22F0BB}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{AE14EE0E-81BB-449E-9C04-B9D3BA013FA8}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{AE3C54ED-C9F4-49F2-9CBA-4134BA076A27}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{AF141A07-37A5-4E40-A2BE-B27E2F69595E}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{B0A7ED27-EA93-4F48-B797-51363071B72A}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{B0AD382B-C1FD-4D0B-B62B-F8D3E3A3DF14}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{B27E6DBE-5562-48D6-9673-2D10CBFF7972}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{B2B40D96-B4B1-41D9-8798-E38A82DB3E3C}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{B386A61B-4658-414D-B98F-0EC2F1C54477}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{B4899480-E91E-4A65-95BD-DEF8F16DEF7F}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{B70555DB-EEE1-49FE-8B91-F203F8DD9D68}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{B819C1D1-9701-4D28-98B0-988FE05FEE02}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{B84BA347-753C-472D-9B32-328BCD4331F9}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{B8EC115E-6683-4D94-A01D-A4D33A59B141}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{B98C4C8E-CBF7-4A98-B366-5E63768AB24E}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{B9A255F4-1503-41AA-B0B7-642FDC97EEF2}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{B9B65EF6-1F4F-4A87-B360-FB4BB59ECA53}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{BA368A62-1139-4326-AEDA-A03FC81E6344}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{BB2CB9D0-0069-48B0-8D90-24858A4C3884}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{BB6DD282-5D31-4289-93B2-1AC65395F332}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{BD5256AE-0431-40AB-A606-D7D92F048716}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{BDE84521-1575-4276-BB53-965D895DB4A2}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{BF4A5DAB-77C2-473D-AF0B-7D301E21DE7A}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{BFCCCF47-B9EE-4293-B5D2-48E0358D94D7}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{BFE1C4A7-90EC-4571-B1FF-347237EF75B5}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{C0927BFD-B39B-419A-A7BE-C1401EABBC2D}]
2008-10-25 04:10 0 d-ahs---- \

Modder57
2008-10-25, 22:33
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{C3017EB1-1B36-48E9-9005-A3E5F6FBEDE9}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{C40D4A32-A2F0-4A8E-AC1B-4B89E64B1734}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{C468A1B9-A234-45BB-A1C8-7CFC71CC9E0F}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{C492C17A-3787-401C-AE4A-BFEFD825760C}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{C6577129-4E6C-444A-A222-186244B485B4}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{C77BCF82-D0B1-4A5A-86FE-50E85C36C7C3}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{C7B8D2CA-DDF3-47E0-8502-B42D13594077}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{C7BC1FD8-A6BD-4971-9F6C-EDA72D4BABBE}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{C947E9CA-3AFD-4D77-8C48-DFEA92C756F3}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{C9AC4506-CF18-4ED0-A268-063B433252A6}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{CA65BA2D-4EBC-4571-98BE-BB7ED5751E8A}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{CB2CDD54-8FBF-44D6-8716-649769ACD21E}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{CB696966-F71C-449D-8F7B-29E40780E7E6}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{CC0A66A0-CC82-490F-8C26-A014FC8B39CA}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{CD89ADD0-22B3-487F-AE70-9CE12645C08B}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{CE12E692-668C-4751-B54E-B6C04412806F}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{CF344C9E-19AA-434F-A473-5B2765E1B666}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{CFBFB699-ACD4-48F7-BE76-DA3F53342DF0}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{D088A5F5-F3EA-4ECE-8B9F-A4085C00F0E1}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{D0ED9E90-8B3D-4DE6-8E7C-56AB66AC815E}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{D107473E-5714-463C-9943-5465AFC3C159}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{D1342A1A-26E6-4EF0-BF24-C84C3A99F440}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{D23B3D49-C465-4C07-97BF-796E6C6D05FD}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{D242FBFE-CC6E-4BCB-8138-E348D04A1058}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{D278DC8A-40BA-4B7D-BD0A-B6033758C213}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{D3F32ABE-577A-467A-8938-7452EB29B37D}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{D4F38C36-D83D-4C0A-97F6-B36600598E30}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{D60842CE-95D3-4A43-9815-3E192A62A4ED}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{D8F3ED00-C3E1-4424-AD18-0F97509B0AD4}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{D9AF1C20-60E5-4F67-A396-5A6EA336CE36}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{DA346AC8-A4EC-45E5-967C-CFBE1F839C1F}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{DAB70C36-B456-4244-899C-766D3EACB1D7}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{DB888616-0783-4C33-B8D3-CE43787A45AB}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{DC06695D-3C12-49F6-95E6-4D2BFD557578}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{DC2B2E4A-52ED-4B56-B26D-33DA052F72D0}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{DCECE7C8-3541-4D7C-BE50-96643DBB50C7}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{DEFD9908-49CB-4423-BEDE-AEAB028AE84D}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{DF417A7C-8D41-4B13-A5BE-21118BB2B8AB}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{DF94D4BC-352A-439F-8068-1BFCEA6260C5}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{E0762EBF-745B-43B9-A91E-1627EE4470DB}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{E0A8CF9A-DAD8-4555-A298-A318D806CC0C}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{E0DD8B51-1EF0-496B-BDCC-1D97B81123AB}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{E0E83B0C-D5EC-4769-94AD-C0C3E1C98AB7}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{E2198745-461F-4E6E-8892-40BC20A5964A}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{E2FE7721-5C07-4CA4-B4BC-982B921552D2}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{E3151383-62C2-48D3-8A6B-CE3062DD0B47}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{E33CE615-E566-4607-BC59-2B5B754ED5C0}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{E3849389-DE9B-4462-AC4D-4D1DE608B239}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{E4F399C3-9200-4ED3-B7C4-5373AE03E430}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{E57CB16C-C4C3-4B47-ABD5-4BEEB27B99D6}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{E6AF5663-EEEA-46BD-8716-CA1D406A0FCA}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{E78F266B-4405-4A55-84CD-7890EA0F5526}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{E7F16619-AB12-4C14-A6BB-71E7F6BEF4FD}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{EA09E2D2-DA2A-4DF8-A10C-77FBFC7B6AAC}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{EA105F6E-D55E-42D1-9974-2195B7426041}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{EA2A143B-F361-48E5-839A-9005A8CDC414}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{EACE32AD-396C-47A4-B834-E31CA5AE050A}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{EB07C120-9FE1-45FD-A335-B445184A7387}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{EBF5C3B0-3CC4-4165-A868-BC01436CE845}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{EDEF68C5-CB60-45D8-8678-7F60ED9ADA3D}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{EEAD8EC9-F77D-45CE-AEBE-111EAD922CA6}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{EEB3CE00-D869-4881-8B34-7D3F399BA411}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{EF174405-EBFE-472C-9029-ECE7653F5546}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{F09356E2-D332-4C0E-9AB5-D2566BA88D4B}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{F0A4D8B0-2374-492E-B8F7-1DB04B0D71DF}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{F1040831-32A4-4381-8D97-CAB0940128CB}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{F11DBAB6-9458-40B5-9B27-BF77E8262358}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{F27DC9F8-766A-4D89-9A86-EBD7FD8AA09B}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{F2914E1F-89BB-4BB9-BC99-62D0D3C78C55}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{F3F0F3CD-256F-411A-8A26-D3DA2052D2E3}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{F405263F-9A7D-4B25-83D2-0928D15C0CC6}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{F4CE4B77-979A-4BE1-842B-7B99A03E26D1}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{F606982A-14D1-4E6C-B175-93B046513E43}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{F72F8068-C261-4486-8838-B896130F82EA}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{F7583A75-CAF6-4A08-8070-7C5DD5AB3DC5}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{F76E299C-942A-4274-BC6C-1FC7A8D10964}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{F7C53613-43EE-4053-8662-61B1A8C93424}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{F8001993-10F6-4940-B7F9-BD966364DF24}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{F9097724-28EF-4470-9895-22944D5D078A}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{FA982806-8583-4349-80EE-FB35ED9C4887}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{FB56E288-F395-4D5C-80AF-9064A81A3893}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{FBD11821-DB3C-416A-80EB-55937349B4B7}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{FBEAE1A5-95FE-4B79-A3E8-768C3B9CBD85}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{FC7793AA-8287-4CDB-8606-A7881903AA32}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{FCDF080C-A409-42A9-A382-79D092F830B9}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{FCED35F6-5C09-4234-8BEE-C924311D4875}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{FD397C58-2AF8-4D20-A683-899784FBD6DA}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{FE714B59-D658-4D1C-872E-E33989E325D3}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{FEF56BF8-0593-4003-9A57-FE611873896A}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{FF36CECA-07D1-4298-BC1C-1CA13D8FF76C}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{FF406E7C-CDE0-4F2E-B0E2-AFE784E2E154}]
2008-10-25 04:10 0 d-ahs---- \

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ctfmon.exe"="C:\WINDOWS\system32\ctfmon.exe" [2008-04-13 15360]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"hpsysdrv"="c:\windows\system\hpsysdrv.exe" [1998-05-07 52736]
"SunJavaUpdateSched"="C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe" [2005-11-10 36975]
"Recguard"="C:\WINDOWS\SMINST\RECGUARD.EXE" [2003-11-03 221184]
"HotKeysCmds"="C:\WINDOWS\system32\hkcmd.exe" [2004-11-02 126976]
"TkBellExe"="C:\Program Files\Common Files\Real\Update_OB\realsched.exe" [2004-10-11 180269]
"IgfxTray"="C:\WINDOWS\system32\igfxtray.exe" [2004-11-02 155648]
"HP Software Update"="C:\Program Files\HP\HP Software Update\HPWuSchd2.exe" [2006-12-10 49152]
"cctray"="C:\Program Files\CA\CA Internet Security Suite\cctray\cctray.exe" [2007-08-16 177416]
"QOELOADER"="C:\Program Files\CA\CA Internet Security Suite\CA Anti-Spam\QSP-5.1.18.0\QOELoader.exe" [2008-05-14 14088]
"CAVRID"="C:\Program Files\CA\CA Internet Security Suite\CA Anti-Virus\CAVRID.exe" [2007-08-20 230664]
"cafwc"="C:\Program Files\CA\CA Internet Security Suite\CA Personal Firewall\cafw.exe" [2008-07-31 1193200]
"capfasem"="C:\Program Files\CA\CA Internet Security Suite\CA Personal Firewall\capfasem.exe" [2008-07-31 173296]
"capfupgrade"="C:\Program Files\CA\CA Internet Security Suite\CA Personal Firewall\capfupgrade.exe" [2008-07-31 259312]
"Adobe Photo Downloader"="C:\Program Files\Adobe\Photoshop Album Starter Edition\3.0\Apps\apdproxy.exe" [2005-06-06 57344]
"AlcxMonitor"="ALCXMNTR.EXE" [2004-09-07 C:\WINDOWS\ALCXMNTR.EXE]
"LTMSG"="LTMSG.exe" [2003-07-14 C:\WINDOWS\ltmsg.exe]

C:\Documents and Settings\All Users\Start Menu\Programs\Startup\
Windows Search.lnk - C:\Program Files\Windows Desktop Search\WindowsSearch.exe [2008-05-26 123904]

[hkey_local_machine\software\microsoft\windows\currentversion\explorer\ShellExecuteHooks]
"{56F9679E-7826-4C84-81F3-532071A8BCC5}"= "C:\Program Files\Windows Desktop Search\MSNLNamespaceMgr.dll" [2008-05-26 304128]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\PFW]
2007-05-18 13:30 79368 C:\WINDOWS\system32\UmxWNP.dll

[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^Adobe Reader Speed Launch.lnk]
path=C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Adobe Reader Speed Launch.lnk
backup=C:\WINDOWS\pss\Adobe Reader Speed Launch.lnkCommon Startup

[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^HP Digital Imaging Monitor.lnk]
path=C:\Documents and Settings\All Users\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnk
backup=C:\WINDOWS\pss\HP Digital Imaging Monitor.lnkCommon Startup

[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^Quicken Scheduled Updates.lnk]
path=C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Quicken Scheduled Updates.lnk
backup=C:\WINDOWS\pss\Quicken Scheduled Updates.lnkCommon Startup

[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^Updates from HP.lnk]
path=C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Updates from HP.lnk
backup=C:\WINDOWS\pss\Updates from HP.lnkCommon Startup

[HKLM\~\startupfolder\C:^Documents and Settings^Owner^Start Menu^Programs^Startup^LimeWire On Startup.lnk]
path=C:\Documents and Settings\Owner\Start Menu\Programs\Startup\LimeWire On Startup.lnk
backup=C:\WINDOWS\pss\LimeWire On Startup.lnkStartup

[HKLM\~\startupfolder\C:^Documents and Settings^Owner^Start Menu^Programs^Startup^Organize.lnk]
path=C:\Documents and Settings\Owner\Start Menu\Programs\Startup\Organize.lnk
backup=C:\WINDOWS\pss\Organize.lnkStartup

[HKLM\~\startupfolder\C:^Documents and Settings^Owner^Start Menu^Programs^Startup^spamsubtract.lnk]
path=C:\Documents and Settings\Owner\Start Menu\Programs\Startup\spamsubtract.lnk
backup=C:\WINDOWS\pss\spamsubtract.lnkStartup

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Sqdxognn]
C:\WINDOWS\System32\w?nlogon.exe [?]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Photo Downloader]
--a------ 2005-06-06 23:46 57344 C:\Program Files\Adobe\Photoshop Album Starter Edition\3.0\Apps\apdproxy.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BackupNotify]
--a------ 2004-01-09 02:34 32768 c:\Program Files\HP\Digital Imaging\bin\BackupNotify.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CookiePatrol]
--a------ 2002-10-04 14:52 65536 C:\PROGRA~1\PESTPA~1\CookiePatrol.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper]
--a------ 2008-03-30 10:36 267048 C:\Program Files\iTunes\iTunesHelper.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MSMSGS]
--------- 2008-04-13 17:12 1695232 C:\Program Files\Messenger\msmsgs.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\msnappau]
--a------ 2004-08-13 17:41 86016 C:\Program Files\MSN Apps\Updater\01.02.3000.1001\en-us\msnappau.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PestPatrol Control Center]
--a------ 2002-10-04 14:52 57344 C:\Program Files\PestPatrol\PPControl.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PPMemCheck]
--a------ 2002-10-15 21:16 148480 C:\PROGRA~1\PESTPA~1\PPMemCheck.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
--a------ 2008-03-28 23:37 413696 C:\Program Files\QuickTime\QTTask.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Reminder]
--a------ 2003-12-18 00:31 118784 C:\WINDOWS\CREATOR\Remind_XP.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Sunkist2k]
--a------ 2003-10-29 11:17 135168 C:\Program Files\Multimedia Card Reader\shwicon2k.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TkBellExe]
--a------ 2004-10-11 20:12 180269 C:\Program Files\Common Files\Real\Update_OB\realsched.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\updateMgr]
--a------ 2006-03-30 16:45 313472 C:\Program Files\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ViewMgr]
--a------ 2004-04-19 09:06 102400 C:\Program Files\Viewpoint\Viewpoint Manager\ViewMgr.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WinampAgent]
--a------ 2006-03-10 10:45 35328 C:\Program Files\Winamp\winampa.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AlcxMonitor]
--a------ 2004-09-07 14:47 57344 C:\WINDOWS\ALCXMNTR.EXE

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LTMSG]
--a------ 2003-07-14 10:52 40960 C:\WINDOWS\ltmsg.exe

[HKEY_LOCAL_MACHINE\software\microsoft\security center]
"AntiVirusDisableNotify"=dword:00000001

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\CA Personal Firewall]
"DisableMonitoring"=dword:00000001

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\ComputerAssociatesAntiVirus]
"DisableMonitoring"=dword:00000001

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"C:\\Program Files\\Real\\RealPlayer\\realplay.exe"=
"C:\\Program Files\\BitLord\\BitLord.exe"=
"C:\\Program Files\\Bonjour\\mDNSResponder.exe"=
"C:\\Program Files\\iTunes\\iTunes.exe"=
"C:\\Program Files\\LimeWire\\LimeWire.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"8951:TCP"= 8951:TCP:*:Disabled:BitComet 8951 TCP
"8951:UDP"= 8951:UDP:*:Disabled:BitComet 8951 UDP

R0 KmxStart;KmxStart;C:\WINDOWS\system32\DRIVERS\kmxstart.sys [2008-06-24 93712]
R1 KmxAgent;KmxAgent;C:\WINDOWS\system32\DRIVERS\kmxagent.sys [2008-06-24 63504]
R1 KmxFile;KmxFile;C:\WINDOWS\system32\DRIVERS\KmxFile.sys [2008-06-24 45584]
R1 KmxFw;KmxFw;C:\WINDOWS\system32\DRIVERS\kmxfw.sys [2008-06-24 115216]
R2 KmxCF;KmxCF;C:\WINDOWS\system32\DRIVERS\KmxCF.sys [2008-06-24 134648]
R2 KmxSbx;KmxSbx;C:\WINDOWS\system32\DRIVERS\KmxSbx.sys [2008-06-24 66576]
R2 UmxAgent;HIPS Event Manager;C:\Program Files\CA\SharedComponents\HIPSEngine\UmxAgent.exe [2007-10-18 1010192]
R2 UmxCfg;HIPS Configuration Interpreter;C:\Program Files\CA\SharedComponents\HIPSEngine\UmxCfg.exe [2007-10-18 801296]
R2 UmxPol;HIPS Policy Manager;C:\Program Files\CA\SharedComponents\HIPSEngine\UmxPol.exe [2008-06-24 281104]
R3 KmxCfg;KmxCfg;C:\WINDOWS\system32\DRIVERS\kmxcfg.sys [2008-06-24 88816]
S3 ebookman;FEP_USB Driver;C:\WINDOWS\system32\Drivers\ebookman.sys [2001-02-06 19677]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
HPZ12 REG_MULTI_SZ Pml Driver HPZ12 Net Driver HPZ12
hpdevmgmt REG_MULTI_SZ hpqcxs08 hpqddsvc

*Newly Created Service* - CATCHME
.
Contents of the 'Scheduled Tasks' folder

2008-10-03 C:\WINDOWS\Tasks\AppleSoftwareUpdate.job
- C:\Program Files\Apple Software Update\SoftwareUpdate.exe [2007-08-29 14:57]
.

**************************************************************************

catchme 0.3.1367 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-10-25 04:31:43
Windows 5.1.2600 Service Pack 3 NTFS

scanning hidden processes ...

scanning hidden autostart entries ...

scanning hidden files ...

scan completed successfully
hidden files: 0

**************************************************************************
.
Completion time: 2008-10-25 4:50:48
ComboFix-quarantined-files.txt 2008-10-25 11:50:12
ComboFix2.txt 2008-10-25 08:14:11

Pre-Run: 30,805,880,832 bytes free
Post-Run: 30,787,899,392 bytes free

993 --- E O F --- 2008-10-24 15:32:07

katana
2008-10-25, 22:58
so i ran a CFScript.txt command

Please do not, under any circumstances, run a CFScript that wasn't created by a trained helper.

I am not just being prima donna here, saying that only helpers can use CFScript.
There are very good reasons for it.

ComboFix can, and will, delete every file on your drive if it is told to.


do the logs say otherwise
Actually, your logs look very strange.
I am doing some research to find out what is going on.

katana
2008-10-26, 00:28
Step 1

Custom CFScript

Please open Notepad (Start -> Run -> type notepad in the Open field -> OK) and copy and paste the text present inside the code box below:



File::
C:\WINDOWS\wininit.ini
C:\Program Files\ModemMAX_Full_Install.exe
Folder::
C:\Program Files\BitComet
C:\Program Files\BitLord
C:\Program Files\LimeWire
C:\Program Files\Shareaza
C:\Documents and Settings\Owner\Application Data\LimeWire
DirLook::
C:\ce3ab45200010343a80c3ed87a7624

Registry::
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{011B57FF-6C99-41FE-A69D-AAEE9FBC7208}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{020DC4EF-9C1A-48D3-B7D1-0CC4A9350DE8}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{023F00EA-0FEF-49C9-B443-499F8BDE69F4}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{02923FF9-E768-4AF2-BB3E-88CC704AAED1}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{029980C0-BFD1-4A75-84A1-EFB317F9A7EC}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{02A6DC92-5AB6-4A7C-95C3-3A0328E7560B}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{04434FBE-123F-4001-A1C9-0DFEE1E90136}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{05401F58-2DFE-4624-814F-E9FBF2E1F93F}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{058337D3-FAB4-4C13-8CA4-4DF2525679FF}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{0641E52B-3218-48B3-B565-1C9DD5630672}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{0675AA1C-AEAF-40A1-B223-409C6D8224B3}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{06DDE5C6-0577-4B9F-A47C-E11B103C502D}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{0735FC5F-70AA-4B59-999F-29D40ABD4099}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{079F761B-F121-403B-8DA9-FFF2B112910D}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{08DD50DE-C8EA-44DA-8DC5-BA40A74D6272}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{0AEDEF55-542B-4655-82DF-2FCC11D5231C}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{0AF5C889-5773-4AEA-BFB7-6734277515B8}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{0CF58BE1-563E-43A0-9FD5-CDA5E5770030}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{0D34C14A-3EB9-4311-9ECC-8E7DB27F927A}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{0D43409A-20BD-4920-8F3A-EF20422CFC65}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{0D52F5F2-826A-46CC-AD46-9D0986167041}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{0EC2586F-4049-4E75-AF51-94E109EDAEA3}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{0F92F6A5-A999-4CAC-B65D-1E1300B704CF}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{10646191-068B-4580-8311-4C969EAEF62F}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{10D47AD8-08CA-432C-BA5F-0F5EED9F15BD}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{11BE20EB-3776-4A4F-AD34-EB04DC71112B}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{126B8117-07A3-4FF0-9E46-5320F1785204}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{1279FE05-D504-4019-82C2-9297489B38DB}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{12C7AC0F-7112-4E1E-8C94-5273118B3C24}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{1330E52D-382C-4EF7-8FF4-A0B3E1B5635D}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{134DACAA-B41C-49E9-A733-80C5D5089EF5}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{147BEA9B-A367-4117-8EDB-0EBAAA564149}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{14F4001F-8A3A-4428-90B4-6688D9E5C83C}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{155E1DF0-4F1F-46E1-8EBD-8F4210FF851E}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{16228B12-2FF9-47C6-A432-DEEBA25B7915}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{164B9A18-8125-47C4-8A8B-97165106590B}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{1697EE0D-ED08-4FE7-A6FA-6D51238DC218}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{1712D94A-19D1-4E87-B8EB-B7E8C307E935}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{174FA0ED-ED02-4801-9857-642274F6EC64}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{17F51FFA-9BA5-41E7-A9DF-90B5655677B6}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{187E10C6-5DE9-4AC6-AC79-63ECE5992897}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{198296F4-93D1-48A5-A685-150E27FFED1A}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{19B19C6E-2020-4A79-8621-2F772A586C36}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{1A143438-6EF9-40CC-ACF7-58A36E3C8335}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{1BBF5D88-8FC1-4306-9E4C-DBA0A8BFABB6}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{1BE4FA38-213A-46FF-96E6-5A2D6DD59FE4}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{1D3DCC7D-3F01-45AD-A6EE-4FD8AFA0CA3C}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{1E3C1F92-012E-4943-B6BE-296DD664AD19}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{1E93C45C-DAEC-478B-A780-AB9438DF2480}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{1F4977F2-59B8-4F23-BA1D-8D6F9E497B15}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{1F69F679-6AF8-4994-88FA-2D92089F3661}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{200CB2A7-6C56-4A3A-A6A3-001D5E6D3FE4}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{2049109F-1DF6-4BA9-B686-0F947387C86E}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{20BF993B-6FC8-44E9-BCF0-5C1505AF7B99}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{20D30DB6-BF6C-4AA8-82B1-884EE25DBD3A}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{20EAA3E6-C7FB-43AD-856C-6AF735C1A022}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{210C2879-22AD-4ECE-B354-163F466FB4D7}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{211C8CF7-94C6-4E57-AA27-61FDA7D591E5}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{22295E8B-0B2D-4564-B005-55BCB3759E57}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{23DF9873-1FD4-4DD8-9F84-7641F8520120}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{2405DD1D-82E6-48F0-B20E-688D3E0E08C8}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{255F621E-50A2-438B-A8C6-EB1FDAE41DBA}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{263A607E-4EBD-49B0-8E44-323D34DAFAA7}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{2804A84A-905D-45C7-A07C-80EFBD008D7C}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{2850997B-D20A-42E4-8E04-DC8AD9263501}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{28B6B6E5-3364-4FA6-BA09-6E39919009C6}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{29ADA996-C1E4-4839-A008-53CDDABBE21E}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{29C27C2F-F86A-4B43-B789-16AA6FD424F8}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{29F91703-4961-4BFC-9192-B81BFC0796BD}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{2A4F3025-DAB4-44F8-BDA9-92F0B345E593}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{2A5551EB-D7EA-455E-BDB2-22CE614A127C}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{2B1CE497-1F45-4537-A4FB-AFB7B5EE9594}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{2D53ACEB-E54A-4E85-B037-74726750E9BF}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{2D829DF5-B616-41B5-803F-2CAD298D437F}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{2E51D540-442E-4C56-B765-732FC21F33BD}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{2E826452-E647-4C85-B875-65049577FD12}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{2ED4F75E-86C4-465E-B446-A92C40BD163B}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{2EDFAD7C-4F9E-44AA-BF15-444FA9663525}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{315370E2-F93A-4791-B475-BB4ADD141364}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{31A9C2E1-BCEA-4885-8D94-7AA5888AD84C}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{32C0EE84-C664-4440-8484-E34381E0AF21}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{34A74B06-26F1-4BDD-AA7F-AF1F605ECA6F}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{352BD55E-DCEC-4478-9E1C-F05C4714024F}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{36911EBC-32A5-4573-B94A-7EF47DA7AC39}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{36C4463A-59CD-4C71-913E-A2F05CDE2A57}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{3763EAE0-FFC0-410D-A9AB-5F25C70D5D6C}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{3815587D-3425-477D-8FAE-75196991270F}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{389D60BA-F3D1-4D15-A832-0DB0D12E05A8}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{38E6A21C-5A19-4B0F-9554-F27DD6E915E1}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{3AC7D2A0-FDA0-44CB-8299-666B3FACB2FF}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{3B43D8E0-1F83-45F0-80C1-BD09218057CC}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{3B9AA721-A52D-4352-8579-B79259E37798}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{3BA2B5F5-20C0-40B1-B156-55032DF05462}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{3BE1998C-B7D1-4E44-99B1-3A1D19A0C939}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{3D1B1013-A911-42A3-A24F-77C661DF36F9}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{3D6A81F2-AD19-4F8B-A958-338565B7D2BB}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{3D9349CC-116F-4FA9-8FEB-073A6AF3899E}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{3E41178C-B4A2-4F65-83C8-3ED1CBBA9E6F}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{3E538647-E57F-41EA-965A-3EFF68B13491}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{3ED55FC9-AF26-4686-BB74-0A6FD407F780}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{3EEC1937-DDFE-45DD-B8D4-1E305E9D9496}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{3F938396-99E9-4284-8289-DC16E90528EE}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{3FDABCAA-17C3-4836-90C6-10BCDE83CE85}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{4019A599-E4D8-4006-BBE8-D27D71DEE050}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{40480D30-198D-4F96-9B8B-6699BE7341DC}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{41DC65A7-0549-4A78-84D0-2941E47BFFE3}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{41FEA121-7D03-44AC-9B80-AA48D924197F}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{4246A3E8-EC26-40A6-A835-2A7686CE638A}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{42C0C235-02DC-415B-9FDB-DBC9606BDBEE}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{43C87265-0E6F-4F0E-B43B-2A3FAFB75631}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{44024A08-475C-4F8E-9562-2004A87E378F}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{4521D3BF-8463-42F2-814E-CEAF67388984}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{46754966-B3D0-4C09-B295-B049E02826AD}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{46794E5B-ADE8-412F-A80F-EC855BA73163}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{46C462CE-F7FF-40DA-8201-E2C1CF40CBCB}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{47316B30-4533-488D-B1E5-34C171AA84BE}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{49A9636E-BC60-4DA5-9328-53F9F7EF8A21}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{49CC7584-17DA-458C-B4E2-9B5362303719}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{49D7F5F1-44FE-4458-9212-B0BEC214D908}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{4B6C5179-D31F-4B20-A621-AD2CDA6C160D}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{4B94887E-2CBB-4395-B4AC-D4522EC090B6}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{4C9CA850-D7DF-417F-BAEF-BC58D81FD96A}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{4D16714E-EE95-45B0-9FA4-94C105920C78}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{4E164D68-3B6A-4F60-8DBB-E647FFF00740}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{4E375F87-105C-408C-A53E-188811B33F87}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{4F4E74D8-AAD3-49EA-A1D5-554BCA86DB2C}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{4F64A10C-CFCE-4065-8A80-CE21FF2402A4}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{506BFBC6-1554-4359-9539-DCADCDC35F23}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{50901B56-25A4-47BE-B2F9-E1B90454B2A6}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{51EDD14C-E16D-41B9-B70C-89772BA523D6}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{52AE22AB-CF77-4BF2-BC8B-9B8E6A3035F3}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{54A8B113-18E2-4963-ADC8-5839A66B2B86}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{55D97209-5D53-4C9C-BBEF-258E5A7A7029}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{563A5F8B-07C9-4A97-9980-E3BA1045C0C9}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{57D46D99-E2A5-4AA7-B160-7E1A498916A1}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{5A608C0C-3F63-4CF8-B911-C7C04E315DF1}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{5B2EA098-8AB6-4C56-95BB-0A6860F91C6A}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{5BA71642-F44A-4B95-8DBD-E06F08ACCC9F}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{5C373F04-0C75-4E56-A63C-3FE65E5FD844}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{5C39FAB1-C51D-4C0D-AA63-C1F0A4143EF0}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{5CCFC99B-9E6A-45C2-BE30-146947011352}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{5E33C0B5-6D96-498B-994A-4731AFFD1BB6}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{5E586277-5E5C-4BD8-B3AD-3C297F19B41F}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{5E7CCC73-5E70-410C-BDB6-920D758D425F}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{5E99D901-B78D-403A-929C-C9F8CD35383F}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{60D34995-7367-43D2-9515-D2C5D294296E}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{61296626-628B-4C77-AB1B-45C5A1DA986E}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{61BBDD1F-459A-4035-AD6D-A5BD1F948DB7}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{61C5944D-B5C1-463B-A936-F82E01417FB5}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{6251992A-0430-451D-9130-376B6D32830A}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{62A26479-F878-45DB-9FD4-0F0D9E1C2BC1}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{6327802B-B9AA-4D29-A42A-B6B6DC703E6E}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{6517A8AF-AE69-4B29-A8C6-B34494B43B7D}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{65642F67-3D81-4541-8947-55E2CDD49B1A}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{67F966D2-E739-408F-90AB-84E423A040C6}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{699231CC-AA4C-4397-B4D3-6942E6513810}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{6AF85D86-5524-4359-BDC8-6D32B5F3D915}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{6B97E91B-FAE5-4BAE-A1A0-25A6F24971DD}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{6BADF032-FC5C-414F-AF8A-DC0A431473F6}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{6BFFC626-D856-451A-9C21-6506C666BD1C}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{718B85A1-323B-4953-93AC-54DCF0721B47}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{720AD237-391B-4305-9C0D-474C5C6E6D08}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{723003BA-20FD-4359-A36C-2EB73E93DB0F}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{72AF7E40-6B83-48AA-B017-CA5DDE26AC48}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{730074D5-9151-48B4-B8FE-09E164C6DB01}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{74118BB5-E8F8-4F2F-8965-B40F17B108CA}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{74733508-166B-4227-ACE7-EE2A1FF8D76A}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{7779588E-0F86-4B5E-93C7-8F8A40582047}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{77DC096A-1AF8-4C3B-8746-1E908912E655}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{789A2E2C-355F-45A8-8480-8B398513525A}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{7914776E-0EC0-43D2-980C-9D60C000008E}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{79DF2C06-31E8-4B47-ACF0-9B856DEAD078}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{7CCC8C98-75EA-4492-991A-4600838F3A2B}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{7DE92399-A97B-43F3-B6C1-F364E60923D3}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{7EDBA981-22D6-4575-8C10-8372CC1968FF}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{80D1C636-440D-4B63-A6DF-1635AC74E515}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{8269465E-2E61-40D8-8C74-3F3230A679A7}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{829C9D9E-3CC5-494D-9C44-ABFB20BF0DAC}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{82BF8F06-93C8-4E39-8091-6AEC2C84A098}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{82C747C9-A2C8-470E-AD89-D6D9BF30DC03}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{838541D1-04A5-4DE4-88C4-167CCB2AC378}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{85762B15-6DBC-47CA-9F10-B98DA9511060}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{85A5F614-6533-4922-BCDB-16901BE88764}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{8668227A-C5DE-48D1-9D11-2C97C6549EB6}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{878FDCD2-5B7D-43F6-A8FC-9330570A6967}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{87CEB1E3-B18E-47E6-8A1D-A0DDB1E85611}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{87DFCC0F-B7B8-43D1-B4DF-DBFC8AEF9647}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{8811B5FA-4200-4E10-AB19-65DBDB29815F}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{8966D206-62BC-4FDD-89B7-D770F6A1500F}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{8972007C-2151-4900-A40A-429A4225D6BE}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{89C5094C-2BA3-4B27-9A02-0C35E71A8D19}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{89CA0626-76CD-44CF-864F-5BB41F3063B8}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{89F8A8A5-9DCA-47A0-AAB0-19C8A7242085}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{8B090AE8-826E-4218-88B0-81289B7FBDAF}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{8B44E398-5DD3-41AD-AA70-35D2CFCD7A3E}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{8B78F9B4-882B-43C5-BA20-F26D3BDB7A9C}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{8C3E3B88-7ABB-42D3-9105-B5576F7F7D62}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{8CFB40D4-9772-4F81-937E-79D3DD7DF301}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{8E4B6CEF-8B93-4819-84E2-764BD9FA1218}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{8F28D391-D18F-41EE-B9F0-DDCD4769D715}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{8F427DC8-B54C-484A-BFF6-3D7F3A3FD152}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{914605F9-7A51-4713-826D-B99078D679F3}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{91C440D5-606B-47B4-B442-63B23F6D090C}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{93811116-038D-4027-94D1-EF3CC6BFA13D}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{94FB06B6-AC99-444E-8BF8-236EBF928F6B}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{95F5C75F-EA14-4D6F-A496-82E277966A08}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{961CB304-4207-4D61-AE8F-FD02CDC6E152}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{96473FCD-9ADC-402D-8461-C1F8C08E3C65}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{9A0FC042-ADE4-4C12-B182-C6438C7776E3}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{9B09C1AC-082F-4867-9BF3-85F22281546F}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{9B8000AA-CA68-4FBE-8C82-7A00038B584C}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{9C84301C-F754-41BF-85ED-45D11BAD82E2}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{9CA5C211-24A3-4845-97D9-D72647F8DF71}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{9D6F2D41-6846-470A-8DC0-F8EA6FCDC3BD}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{9E299BAE-8033-430F-91A7-7EB7704407F4}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{9E56FDCF-D12F-4AFE-8839-137257A92FDF}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{9E9FFBBA-3EB4-4A2B-86F0-A394BE1092F5}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{9EDE84A1-8B1F-4519-97A9-454FEA3D67F9}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{9F0CB0E1-7F15-4EF0-A67A-AE9F1B4B46BF}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{9F2BACE9-C4F3-4B91-847B-8F31FF76AC47}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{A0311382-2F45-43EE-8F77-CFBE3B336697}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{A0D08C0D-42CC-4F67-B679-A039C9F3826F}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{A11B54DD-6B88-4003-9F53-8CCCACC494CF}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{A15ED066-A6FF-4F3E-A221-8FB6FEB19F33}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{A16A1C0E-AE7E-4124-91FA-642D40CD1FB0}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{A28CC867-45B0-43EB-B0D6-7A730F53A1CA}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{A38150A2-4E8D-40CA-BF5C-EA426CC0B996}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{A3C0F2F5-4DAA-4073-9EE1-C823BAD5B301}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{A40D7907-CADA-4C80-845B-4BB38B558514}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{A477A1AC-109F-43E9-B718-1A0B656E1F0C}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{A4F3B4BD-F05F-4AEC-BEC9-FF3613BC536A}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{A50F2FBC-5824-4FC0-B51E-8AE5CD774773}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{A53376F4-D7A4-4542-B5BE-76306BAF5B9B}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{A5807209-9801-4132-8858-32B276199945}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{A5AB43E4-C9D3-4D4E-AC63-CB3EF7F0A0BF}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{A62D7522-DB1B-4C96-8DC4-B17E122CE986}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{A6702BC0-51DD-47A6-A580-40823C2F59D5}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{A6E86C5B-4DA3-4102-8A86-F614ABF623AA}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{A7646038-FC50-473A-B55B-54C26AFC8816}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{A7BC29AA-A658-4CEC-851D-BECA25425D01}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{A7C62115-AAA4-457B-B028-AF3460E2D362}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{A95F2CCC-1F40-4E9E-B92B-176E9B94C6F0}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{AA99A8FD-28D2-44D0-9664-F9E5FD111A5A}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{AB4F8C3A-3456-4905-980F-D32378692B80}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{ACBDD7AD-1390-405F-9C1F-1C810F330F73}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{ACE08749-5C34-48EA-9108-C167FF22F0BB}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{AE14EE0E-81BB-449E-9C04-B9D3BA013FA8}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{AE3C54ED-C9F4-49F2-9CBA-4134BA076A27}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{AF141A07-37A5-4E40-A2BE-B27E2F69595E}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{B0A7ED27-EA93-4F48-B797-51363071B72A}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{B0AD382B-C1FD-4D0B-B62B-F8D3E3A3DF14}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{B27E6DBE-5562-48D6-9673-2D10CBFF7972}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{B2B40D96-B4B1-41D9-8798-E38A82DB3E3C}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{B386A61B-4658-414D-B98F-0EC2F1C54477}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{B4899480-E91E-4A65-95BD-DEF8F16DEF7F}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{B70555DB-EEE1-49FE-8B91-F203F8DD9D68}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{B819C1D1-9701-4D28-98B0-988FE05FEE02}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{B84BA347-753C-472D-9B32-328BCD4331F9}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{B8EC115E-6683-4D94-A01D-A4D33A59B141}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{B98C4C8E-CBF7-4A98-B366-5E63768AB24E}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{B9A255F4-1503-41AA-B0B7-642FDC97EEF2}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{B9B65EF6-1F4F-4A87-B360-FB4BB59ECA53}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{BA368A62-1139-4326-AEDA-A03FC81E6344}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{BB2CB9D0-0069-48B0-8D90-24858A4C3884}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{BB6DD282-5D31-4289-93B2-1AC65395F332}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{BD5256AE-0431-40AB-A606-D7D92F048716}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{BDE84521-1575-4276-BB53-965D895DB4A2}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{BF4A5DAB-77C2-473D-AF0B-7D301E21DE7A}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{BFCCCF47-B9EE-4293-B5D2-48E0358D94D7}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{BFE1C4A7-90EC-4571-B1FF-347237EF75B5}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{C0927BFD-B39B-419A-A7BE-C1401EABBC2D}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{C3017EB1-1B36-48E9-9005-A3E5F6FBEDE9}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{C40D4A32-A2F0-4A8E-AC1B-4B89E64B1734}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{C468A1B9-A234-45BB-A1C8-7CFC71CC9E0F}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{C492C17A-3787-401C-AE4A-BFEFD825760C}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{C6577129-4E6C-444A-A222-186244B485B4}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{C77BCF82-D0B1-4A5A-86FE-50E85C36C7C3}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{C7B8D2CA-DDF3-47E0-8502-B42D13594077}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{C7BC1FD8-A6BD-4971-9F6C-EDA72D4BABBE}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{C947E9CA-3AFD-4D77-8C48-DFEA92C756F3}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{C9AC4506-CF18-4ED0-A268-063B433252A6}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{CA65BA2D-4EBC-4571-98BE-BB7ED5751E8A}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{CB2CDD54-8FBF-44D6-8716-649769ACD21E}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{CB696966-F71C-449D-8F7B-29E40780E7E6}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{CC0A66A0-CC82-490F-8C26-A014FC8B39CA}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{CD89ADD0-22B3-487F-AE70-9CE12645C08B}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{CE12E692-668C-4751-B54E-B6C04412806F}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{CF344C9E-19AA-434F-A473-5B2765E1B666}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{CFBFB699-ACD4-48F7-BE76-DA3F53342DF0}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{D088A5F5-F3EA-4ECE-8B9F-A4085C00F0E1}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{D0ED9E90-8B3D-4DE6-8E7C-56AB66AC815E}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{D107473E-5714-463C-9943-5465AFC3C159}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{D1342A1A-26E6-4EF0-BF24-C84C3A99F440}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{D23B3D49-C465-4C07-97BF-796E6C6D05FD}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{D242FBFE-CC6E-4BCB-8138-E348D04A1058}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{D278DC8A-40BA-4B7D-BD0A-B6033758C213}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{D3F32ABE-577A-467A-8938-7452EB29B37D}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{D4F38C36-D83D-4C0A-97F6-B36600598E30}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{D60842CE-95D3-4A43-9815-3E192A62A4ED}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{D8F3ED00-C3E1-4424-AD18-0F97509B0AD4}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{D9AF1C20-60E5-4F67-A396-5A6EA336CE36}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{DA346AC8-A4EC-45E5-967C-CFBE1F839C1F}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{DAB70C36-B456-4244-899C-766D3EACB1D7}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{DB888616-0783-4C33-B8D3-CE43787A45AB}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{DC06695D-3C12-49F6-95E6-4D2BFD557578}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{DC2B2E4A-52ED-4B56-B26D-33DA052F72D0}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{DCECE7C8-3541-4D7C-BE50-96643DBB50C7}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{DEFD9908-49CB-4423-BEDE-AEAB028AE84D}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{DF417A7C-8D41-4B13-A5BE-21118BB2B8AB}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{DF94D4BC-352A-439F-8068-1BFCEA6260C5}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{E0762EBF-745B-43B9-A91E-1627EE4470DB}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{E0A8CF9A-DAD8-4555-A298-A318D806CC0C}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{E0DD8B51-1EF0-496B-BDCC-1D97B81123AB}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{E0E83B0C-D5EC-4769-94AD-C0C3E1C98AB7}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{E2198745-461F-4E6E-8892-40BC20A5964A}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{E2FE7721-5C07-4CA4-B4BC-982B921552D2}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{E3151383-62C2-48D3-8A6B-CE3062DD0B47}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{E33CE615-E566-4607-BC59-2B5B754ED5C0}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{E3849389-DE9B-4462-AC4D-4D1DE608B239}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{E4F399C3-9200-4ED3-B7C4-5373AE03E430}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{E57CB16C-C4C3-4B47-ABD5-4BEEB27B99D6}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{E6AF5663-EEEA-46BD-8716-CA1D406A0FCA}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{E78F266B-4405-4A55-84CD-7890EA0F5526}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{E7F16619-AB12-4C14-A6BB-71E7F6BEF4FD}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{EA09E2D2-DA2A-4DF8-A10C-77FBFC7B6AAC}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{EA105F6E-D55E-42D1-9974-2195B7426041}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{EA2A143B-F361-48E5-839A-9005A8CDC414}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{EACE32AD-396C-47A4-B834-E31CA5AE050A}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{EB07C120-9FE1-45FD-A335-B445184A7387}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{EBF5C3B0-3CC4-4165-A868-BC01436CE845}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{EDEF68C5-CB60-45D8-8678-7F60ED9ADA3D}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{EEAD8EC9-F77D-45CE-AEBE-111EAD922CA6}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{EEB3CE00-D869-4881-8B34-7D3F399BA411}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{EF174405-EBFE-472C-9029-ECE7653F5546}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{F09356E2-D332-4C0E-9AB5-D2566BA88D4B}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{F0A4D8B0-2374-492E-B8F7-1DB04B0D71DF}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{F1040831-32A4-4381-8D97-CAB0940128CB}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{F11DBAB6-9458-40B5-9B27-BF77E8262358}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{F27DC9F8-766A-4D89-9A86-EBD7FD8AA09B}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{F2914E1F-89BB-4BB9-BC99-62D0D3C78C55}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{F3F0F3CD-256F-411A-8A26-D3DA2052D2E3}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{F405263F-9A7D-4B25-83D2-0928D15C0CC6}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{F4CE4B77-979A-4BE1-842B-7B99A03E26D1}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{F606982A-14D1-4E6C-B175-93B046513E43}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{F72F8068-C261-4486-8838-B896130F82EA}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{F7583A75-CAF6-4A08-8070-7C5DD5AB3DC5}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{F76E299C-942A-4274-BC6C-1FC7A8D10964}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{F7C53613-43EE-4053-8662-61B1A8C93424}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{F8001993-10F6-4940-B7F9-BD966364DF24}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{F9097724-28EF-4470-9895-22944D5D078A}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{FA982806-8583-4349-80EE-FB35ED9C4887}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{FB56E288-F395-4D5C-80AF-9064A81A3893}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{FBD11821-DB3C-416A-80EB-55937349B4B7}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{FBEAE1A5-95FE-4B79-A3E8-768C3B9CBD85}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{FC7793AA-8287-4CDB-8606-A7881903AA32}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{FCDF080C-A409-42A9-A382-79D092F830B9}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{FCED35F6-5C09-4234-8BEE-C924311D4875}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{FD397C58-2AF8-4D20-A683-899784FBD6DA}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{FE714B59-D658-4D1C-872E-E33989E325D3}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{FEF56BF8-0593-4003-9A57-FE611873896A}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{FF36CECA-07D1-4298-BC1C-1CA13D8FF76C}]
[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{FF406E7C-CDE0-4F2E-B0E2-AFE784E2E154}]


[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Sqdxognn]

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"C:\\Program Files\\BitLord\\BitLord.exe"=-
"C:\\Program Files\\LimeWire\\LimeWire.exe"=-

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"8951:TCP"=-
"8951:UDP"=-
Folder::
C:\Program Files\BitComet
C:\Program Files\BitLord
C:\Program Files\LimeWire
C:\Program Files\Shareaza
C:\Documents and Settings\Owner\Application Data\LimeWire

Save this as CFScript.txt and place it on your desktop.


http://i51.photobucket.com/albums/f387/Katana_1970/CFScriptb.gif


Referring to the screenshot above, drag CFScript.txt into ComboFix.exe.
ComboFix will now run a scan on your system. It may reboot your system when it finishes. This is normal.
When finished, it will produce a log for you. Copy and paste the contents of the log in your next reply.


CAUTION: Do not mouse-click ComboFix's window while it is running. That may cause it to stall.
Note: the above code was created specifically for this user. If you are not this user, do NOT follow these directions as they could damage the workings of your system.

A word of warning: Neither I nor sUBs are responsible for any damage you may have caused your machine by running ComboFix on your own. This tool is not a toy and not for everyday use.
ComboFix SHOULD NOT be used unless requested by a forum helper



----------------------------------------------------------- -----------------------------------------------------------
Step 2



Your Java is out of date. Older versions have vulnerabilities that malware can use to infect your system.

Please download JavaRa (http://sourceforge.net/project/downloading.php?groupname=javara&filename=JavaRa.zip&use_mirror=osdn) and unzip it to your desktop.

***Please close any instances of Internet Explorer (or other web browser) before continuing!***

Double-click on JavaRa.exe to start the program.
From the drop-down menu, choose English and click on Select.
JavaRa will open; click on Remove Older Versions to remove the older versions of Java installed on your computer.
Click Yes when prompted. When JavaRa is done, a notice will appear that a logfile has been produced. Click OK.
A logfile will pop up. Please save it to a convenient location.

Now download and install Java Runtime Environment (JRE) (http://java.sun.com/javase/downloads/index.jsp).


----------------------------------------------------------- -----------------------------------------------------------
Step 3




Kaspersky Online Scanner .
Your Antivirus and/or Antispyware may give a warning during the scan. This is perfectly normal
NOTE:- This scan is best done from IE (Internet Explorer)
NOTE:- Vista users should start IE by Start(Vista Orb) >> Internet Explorer >> Right-Click Run As Admin
Go Here http://www.kaspersky.com/kos/eng/partner/default/kavwebscan.html

Read the Requirements and limitations before you click Accept.
Once the database has downloaded, click My Computer in the left pane
Now go and put the kettle on !
When the scan has completed, click Save Report As...
Enter a name for the file in the Filename: text box and then click the down arrow to the right of Save as type: and select text file (*.txt)
Click Save - by default the file will be saved to your Desktop, but you can change this if you wish.


**Note**

To optimize scanning time and produce a more sensible report for review: Close any open programs.
Turn off the real-time scanner of all antivirus or antispyware programs while performing the online scan.
Note for Internet Explorer 7 users: If at any time you have trouble viewing the accept button of the license, click on the Zoom tool located at the bottom right of the IE window and set the zoom to 75%. Once the license is accepted, reset to 100%.




----------------------------------------------------------- -----------------------------------------------------------
Step 4



Logs/Information to Post in Reply
Please post the following logs/Information in your reply

CoomboFix log
Kaspersky Log
A Fresh HJT log
How are things running now ?


----------------------------------------------------------- -----------------------------------------------------------

Additional Notes



Your Adobe Acrobat Reader is out of date. Older versions have vulnerabilities that malware can use to infect your system.

Adobe Reader is a large program and uses unnecessary space.
If you prefer a smaller program you can get Foxit 2.0 from http://www.foxitsoftware.com/pdf/rd_intro.php << Recommended

There is a newer version of Adobe Acrobat Reader available.

Please go to this link Adobe Acrobat Reader Download Link (http://www.adobe.com/products/acrobat/readstep2.html)
Click Download
On the right Untick Adobe Phototshop Album Starter Edition if you do not wish to include this in the installation.
Click the Continue button
Click Run, and click Run again
Next click the Install Now button and follow the on screen prompts

When the installation is complete go to Add/Remove Programs and uninstall all previous versions.

katana
2008-11-11, 18:05
Due to inactivity, this thread will now be closed.

Note:If it has been five days or more since your last post, and the helper assisting you posted a response to that post to which you did not reply, your topic will not be reopened. At that point, if you still require help, please start a new topic and include a fresh HijackThis log and a link to your previous thread.

If it has been less than five days since your last response and you need the thread re-opened, please send me or MOD a private message (pm). A valid, working link to the closed topic is required.