I cannot get rid of this! HELP!

K

Kollinspop

New member
I am having trouble getting rid of the following items. Here is the report from my scan.


--- Search result list ---
FunWebProducts: Root class (Registry key, fixing failed)
HKEY_LOCAL_MACHINE\Software\Classes\FunWebProducts.BrowserOverlayBarButton

FunWebProducts: Root class (Registry key, fixing failed)
HKEY_LOCAL_MACHINE\Software\Classes\FunWebProducts.BrowserOverlayBarButton.1

FunWebProducts: Root class (Registry key, fixing failed)
HKEY_LOCAL_MACHINE\Software\Classes\FunWebProducts.BrowserOverlayEmbed

FunWebProducts: Root class (Registry key, fixing failed)
HKEY_LOCAL_MACHINE\Software\Classes\FunWebProducts.BrowserOverlayEmbed.1

FunWebProducts: Root class (Registry key, fixing failed)
HKEY_LOCAL_MACHINE\Software\Classes\FunWebProducts.DataControl

FunWebProducts: Root class (Registry key, fixing failed)
HKEY_LOCAL_MACHINE\Software\Classes\FunWebProducts.DataControl.1

FunWebProducts: Root class (Registry key, fixing failed)
HKEY_LOCAL_MACHINE\Software\Classes\FunWebProducts.ShellViewControl

FunWebProducts: Root class (Registry key, fixing failed)
HKEY_LOCAL_MACHINE\Software\Classes\FunWebProducts.ShellViewControl.1

FunWebProducts: Root class (Registry key, fixing failed)
HKEY_LOCAL_MACHINE\Software\Classes\FunWebProducts.HistoryKillerScheduler

FunWebProducts: Root class (Registry key, fixing failed)
HKEY_LOCAL_MACHINE\Software\Classes\FunWebProducts.HistoryKillerScheduler.1

FunWebProducts: Root class (Registry key, fixing failed)
HKEY_LOCAL_MACHINE\Software\Classes\FunWebProducts.HistorySwatterControlBar

FunWebProducts: Root class (Registry key, fixing failed)
HKEY_LOCAL_MACHINE\Software\Classes\FunWebProducts.HistorySwatterControlBar.1

FunWebProducts: Root class (Registry key, fixing failed)
HKEY_LOCAL_MACHINE\Software\Classes\FunWebProducts.IECookiesManager

FunWebProducts: Root class (Registry key, fixing failed)
HKEY_LOCAL_MACHINE\Software\Classes\FunWebProducts.IECookiesManager.1

FunWebProducts: Root class (Registry key, fixing failed)
HKEY_LOCAL_MACHINE\Software\Classes\FunWebProducts.KillerObjManager

FunWebProducts: Root class (Registry key, fixing failed)
HKEY_LOCAL_MACHINE\Software\Classes\FunWebProducts.KillerObjManager.1

MyWay.MyWebSearch: Autorun settings (Registry value, fixing failed)
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\MyWebSearch Email Plugin

MyWay.MyWebSearch: Autorun settings (My Web Search Bar) (Registry value, fixing failed)
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\My Web Search Bar

MyWay.MyWebSearch: Root class (Registry key, fixing failed)
HKEY_LOCAL_MACHINE\Software\Classes\MyWebSearch.ChatSessionPlugin

MyWay.MyWebSearch: Root class (Registry key, fixing failed)
HKEY_LOCAL_MACHINE\Software\Classes\MyWebSearch.ChatSessionPlugin.1

MyWay.MyWebSearch: Class ID (Registry key, fixing failed)
HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{E79DFBCA-5697-4fbd-94E5-5B2A9C7C1612}

MyWay.MyWebSearch: Root class (Registry key, fixing failed)
HKEY_LOCAL_MACHINE\Software\Classes\MyWebSearch.HTMLPanel

MyWay.MyWebSearch: Root class (Registry key, fixing failed)
HKEY_LOCAL_MACHINE\Software\Classes\MyWebSearch.HTMLPanel.1

MyWay.MyWebSearch: Class ID (Registry key, fixing failed)
HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{3E720452-B472-4954-B7AA-33069EB53906}

MyWay.MyWebSearch: Root class (Registry key, fixing failed)
HKEY_LOCAL_MACHINE\Software\Classes\MyWebSearch.PseudoTransparentPlugin

MyWay.MyWebSearch: Root class (Registry key, fixing failed)
HKEY_LOCAL_MACHINE\Software\Classes\MyWebSearch.PseudoTransparentPlugin.1

MyWay.MyWebSearch: Class ID (Registry key, fixing failed)
HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{7473D294-B7BB-4f24-AE82-7E2CE94BB6A9}

MyWay.MyWebSearch: Root class (Registry key, fixing failed)
HKEY_LOCAL_MACHINE\Software\Classes\MyWebSearchToolBar.ToolbarPlugin

MyWay.MyWebSearch: Root class (Registry key, fixing failed)
HKEY_LOCAL_MACHINE\Software\Classes\MyWebSearchToolBar.ToolbarPlugin.1

MyWay.MyWebSearch: Root class (Registry key, fixing failed)
HKEY_LOCAL_MACHINE\Software\Classes\MyWebSearch.OutlookAddin

MyWay.MyWebSearch: Root class (Registry key, fixing failed)
HKEY_LOCAL_MACHINE\Software\Classes\MyWebSearch.OutlookAddin.1

MyWay.MyWebSearch: Root class (Registry key, fixing failed)
HKEY_LOCAL_MACHINE\Software\Classes\MyWebSearchToolBar.SettingsPlugin

MyWay.MyWebSearch: Root class (Registry key, fixing failed)
HKEY_LOCAL_MACHINE\Software\Classes\MyWebSearchToolBar.SettingsPlugin.1

MyWay.MyWebSearch: Root class (Registry key, fixing failed)
HKEY_LOCAL_MACHINE\Software\Classes\ScreenSaverControl.ScreenSaverInstaller

MyWay.MyWebSearch: Root class (Registry key, fixing failed)
HKEY_LOCAL_MACHINE\Software\Classes\ScreenSaverControl.ScreenSaverInstaller.1

MyWay.MyWebSearch: Browser helper object (Registry key, fixing failed)
HKEY_LOCAL_MACHINE\Software\FocusInteractive

MyWay.MyWebSearch: Settings (Registry key, fixing failed)
HKEY_LOCAL_MACHINE\Software\Microsoft\Code Store Database\Distribution Units\{1D4DB7D2-6EC9-47A3-BD87-1E41684E07BB}

MyWay.MyWebSearch: Settings (Registry key, fixing failed)
HKEY_LOCAL_MACHINE\Software\Microsoft\Office\Outlook\Addins\MyWebSearch.OutlookAddin

MyWay.MyWebSearch: Uninstall settings (Registry key, fixing failed)
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\MyWebSearch bar Uninstall

MyWay.MyWebSearch: Settings (Registry key, fixing failed)
HKEY_LOCAL_MACHINE\Software\MyWebSearch

FunWeb: Root class (Registry key, fixing failed)
HKEY_LOCAL_MACHINE\Software\Classes\FunWebProducts.HTMLMenu

FunWeb: Root class (Registry key, fixing failed)
HKEY_LOCAL_MACHINE\Software\Classes\FunWebProducts.HTMLMenu.2

FunWeb: Root class (Registry key, fixing failed)
HKEY_LOCAL_MACHINE\Software\Classes\FunWebProducts.HTMLMenu.1

FunWeb: Root class (Registry key, fixing failed)
HKEY_LOCAL_MACHINE\Software\Classes\FunWebProducts.PopSwatterBarButton

FunWeb: Root class (Registry key, fixing failed)
HKEY_LOCAL_MACHINE\Software\Classes\FunWebProducts.PopSwatterBarButton.1

FunWeb: Root class (Registry key, fixing failed)
HKEY_LOCAL_MACHINE\Software\Classes\FunWebProducts.PopSwatterSettingsControl

FunWeb: Root class (Registry key, fixing failed)
HKEY_LOCAL_MACHINE\Software\Classes\FunWebProducts.PopSwatterSettingsControl.1

FunWeb: Settings (Registry key, fixing failed)
HKEY_LOCAL_MACHINE\Software\Fun Web Products

FunWeb: Settings (Registry key, fixing failed)
HKEY_LOCAL_MACHINE\Software\FunWebProducts

FunWeb: Settings (Registry value, fixing failed)
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Internet Settings\User Agent\Post Platform\FunWebProducts

Congratulations!: No usage tracks were found. ()



--- Spybot - Search & Destroy version: 1.4 (build: 20050523) ---

2005-05-31 blindman.exe (1.0.0.1)
2005-05-31 SpybotSD.exe (1.4.0.3)
2005-05-31 TeaTimer.exe (1.4.0.2)
2006-02-15 unins000.exe (51.41.0.0)
2005-05-31 Update.exe (1.4.0.0)
2007-05-23 advcheck.dll (1.5.3.0)
2005-05-31 aports.dll (2.1.0.0)
2005-05-31 borlndmm.dll (7.0.4.453)
2005-05-31 delphimm.dll (7.0.4.453)
2005-05-31 SDHelper.dll (1.4.0.0)
2007-07-31 Tools.dll (2.1.2.0)
2005-05-31 UnzDll.dll (1.73.1.1)
2005-05-31 ZipDll.dll (1.73.2.0)
2007-11-21 Includes\Beta.sbi (*)
2007-11-06 Includes\Beta.uti (*)
2008-01-16 Includes\Cookies.sbi (*)
2007-12-26 Includes\Dialer.sbi (*)
2008-01-16 Includes\DialerC.sbi (*)
2008-01-16 Includes\HeavyDuty.sbi (*)
2007-12-26 Includes\Hijackers.sbi (*)
2008-01-16 Includes\HijackersC.sbi (*)
2007-10-04 Includes\Keyloggers.sbi (*)
2008-01-16 Includes\KeyloggersC.sbi (*)
2008-01-16 Includes\Malware.sbi (*)
2008-01-16 Includes\MalwareC.sbi (*)
2007-10-24 Includes\PUPS.sbi (*)
2008-01-16 Includes\PUPSC.sbi (*)
2008-01-16 Includes\Revision.sbi (*)
2008-01-09 Includes\Security.sbi (*)
2008-01-16 Includes\SecurityC.sbi (*)
2007-11-07 Includes\Spybots.sbi (*)
2008-01-16 Includes\SpybotsC.sbi (*)
2007-11-06 Includes\Tracks.uti
2008-01-16 Includes\Trojans.sbi (*)
2008-01-16 Includes\TrojansC.sbi (*)
2007-06-06 Plugins\TCPIPAddress.dll



--- System information ---
Windows XP (Build: 2600) Service Pack 2


--- Startup entries list ---
Located: HK_LM:Run, ccApp
command: "C:\Program Files\Common Files\Symantec Shared\ccApp.exe"
file: C:\Program Files\Common Files\Symantec Shared\ccApp.exe
size: 48752
MD5: c9ab8ab4576efd3b26a2d108b7f6ac01

Located: HK_LM:Run, FtpServer.exe
command: "C:\Program Files\Sharp\Sharpdesk\FtpServer.exe" -usedefault
file: C:\Program Files\Sharp\Sharpdesk\FtpServer.exe
size: 692224
MD5: 56ff8972dc57c4990c491662da320413

Located: HK_LM:Run, High Definition Audio Property Page Shortcut
command: HDAShCut.exe
file: C:\WINDOWS\system32\HDAShCut.exe
size: 61952
MD5: 9c3b2302b60fb0efb13bc880a5e3e93e

Located: HK_LM:Run, HotKeysCmds
command: C:\WINDOWS\system32\hkcmd.exe
file: C:\WINDOWS\system32\hkcmd.exe
size: 86016
MD5: 44c86d7970e00204ca677880489a5746

Located: HK_LM:Run, IgfxTray
command: C:\WINDOWS\system32\igfxtray.exe
file: C:\WINDOWS\system32\igfxtray.exe
size: 98304
MD5: 44cd00ec8a07c690b9b05ba34b99fbf6

Located: HK_LM:Run, IndexTray
command: "C:\Program Files\Sharp\Sharpdesk\IndexTray.exe" /n
file: C:\Program Files\Sharp\Sharpdesk\IndexTray.exe
size: 106496
MD5: 83358af5f3881a4cf252e45f4ccb2ace

Located: HK_LM:Run, mjkvonob
command: regsvr32 /u "C:\Documents and Settings\All Users\Application Data\mjkvonob.dll"
file:

Located: HK_LM:Run, My Web Search Bar
command: rundll32 C:\PROGRA~1\MYWEBS~1\bar\1.bin\MWSBAR.DLL,S
file:

Located: HK_LM:Run, MyWebSearch Email Plugin
command: C:\PROGRA~1\MYWEBS~1\bar\1.bin\mwsoemon.exe
file:

Located: HK_LM:Run, Persistence
command: C:\WINDOWS\system32\igfxpers.exe
file: C:\WINDOWS\system32\igfxpers.exe
size: 81920
MD5: 4ceaee08310daf5f86155839a5953df2

Located: HK_LM:Run, RTHDCPL
command: RTHDCPL.EXE
file: C:\WINDOWS\RTHDCPL.EXE
size: 16250880
MD5: c7e1623ac8038ee32e6bdc0af3070a58

Located: HK_LM:Run, SharpTray
command: "C:\Program Files\Sharp\Sharpdesk\SharpTray.exe"
file: C:\Program Files\Sharp\Sharpdesk\SharpTray.exe
size: 32768
MD5: 21915433c8301958b4b8893cd753c258

Located: HK_LM:Run, SMA7.3.4
command: c:\SvcTools\7.3.4\bin\lnchr.exe --context=user --control-dir=c:\SvcTools\7.3.4\ctrl-user
file: c:\SvcTools\7.3.4\bin\lnchr.exe
size: 364544
MD5: 0f6b66c005b7c4fe05ef86be6edb5697

Located: HK_LM:Run, TypeRegChecker
command: "C:\Program Files\Sharp\Sharpdesk\TypeRegChecker.exe"
file: C:\Program Files\Sharp\Sharpdesk\TypeRegChecker.exe
size: 57344
MD5: 37791f01d3e9537c283585bc5d8aef5e

Located: HK_LM:Run, vptray
command: C:\PROGRA~1\SYMANT~1\SYMANT~2\VPTray.exe
file: C:\PROGRA~1\SYMANT~1\SYMANT~2\VPTray.exe
size: 85744
MD5: 0c66a89163a726b6da0548d65e990363

Located: HK_LM:Run, Windows Defender
command: "C:\Program Files\Windows Defender\MSASCui.exe" -hide
file: C:\Program Files\Windows Defender\MSASCui.exe
size: 1420560
MD5: 81aa8ba06a824e637e2ba290d4fa9e3e

Located: HK_CU:Run, ctfmon.exe
command: C:\WINDOWS\system32\ctfmon.exe
file: C:\WINDOWS\system32\ctfmon.exe
size: 15360
MD5: 24232996a38c0b0cf151c2140ae29fc8

Located: HK_CU:Run, MSMSGS
command: "C:\Program Files\Messenger\msmsgs.exe" /background
file: C:\Program Files\Messenger\msmsgs.exe
size: 1694208
MD5: 74e6e96c6f0e2eca4edbb7f7a468f259

Located: HK_CU:Run, SUPERAntiSpyware
command: C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
file: C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
size: 1318912
MD5: 225e41f95d0f33148d264746087017d4

Located: Startup (common), Sonic CinePlayer Quick Launch.lnk
command: C:\Program Files\Common Files\Sonic Shared\CineTray.exe
file: C:\Program Files\Common Files\Sonic Shared\CineTray.exe
size: 114688
MD5: dce9cb8f314e2a8a746b25035f02b0b0

Located: System.ini, crypt32chain
command: crypt32.dll
file: crypt32.dll

Located: System.ini, cryptnet
command: cryptnet.dll
file: cryptnet.dll

Located: System.ini, cscdll
command: cscdll.dll
file: cscdll.dll

Located: System.ini, igfxcui
command: igfxdev.dll
file: igfxdev.dll

Located: System.ini, NavLogon
command: C:\WINDOWS\system32\NavLogon.dll
file: C:\WINDOWS\system32\NavLogon.dll
size: 43760
MD5: 8ed534344e621eeafb3d812a16628d28

Located: System.ini, ScCertProp
command: wlnotify.dll
file: wlnotify.dll

Located: System.ini, Schedule
command: wlnotify.dll
file: wlnotify.dll

Located: System.ini, sclgntfy
command: sclgntfy.dll
file: sclgntfy.dll

Located: System.ini, SensLogn
command: WlNotify.dll
file: WlNotify.dll

Located: System.ini, termsrv
command: wlnotify.dll
file: wlnotify.dll

Located: System.ini, wlballoon
command: wlnotify.dll
file: wlnotify.dll



--- Browser helper object list ---
{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} (AcroIEHlprObj Class)
BHO name:
CLSID name: AcroIEHlprObj Class
description: Adobe Acrobat reader
classification: Legitimate
known filename: AcroIEhelper.ocx<br>AcroIEhelper.dll
info link: http://www.adobe.com/products/acrobat/readstep2.html
info source: TonyKlein
Path: C:\Program Files\Adobe\Acrobat 7.0\ActiveX\
Long name: AcroIEHelper.dll
Short name: ACROIE~1.DLL
Date (created): 12/14/2004 1:56:50 AM
Date (last access): 1/17/2008 5:23:12 PM
Date (last write): 12/14/2004 1:56:50 AM
Filesize: 63136
Attributes: archive
MD5: 42729C3DE75A7A51FC6F9EF6546C9199
CRC32: 4D60BD07
Version: 7.0.0.1333

{53707962-6F74-2D53-2644-206D7942484F} ()
BHO name:
CLSID name:
description: Spybot-S&D IE Browser plugin
classification: Legitimate
known filename: SDhelper.dll
info link: http://spybot.eon.net.au/
info source: Patrick M. Kolla
Path: C:\PROGRA~1\SPYBOT~1\
Long name: SDHelper.dll
Short name:
Date (created): 2/15/2006 7:58:46 AM
Date (last access): 1/17/2008 5:50:54 PM
Date (last write): 5/31/2005 1:04:00 AM
Filesize: 853672
Attributes: archive
MD5: 250D787A5712D7768DDC133B3E477759
CRC32: D4589A41
Version: 1.4.0.0

{761497BB-D6F0-462C-B6EB-D4DAF1D92D43} (SSVHelper Class)
BHO name:
CLSID name: SSVHelper Class
Path: C:\Program Files\Java\jre1.5.0_06\bin\
Long name: ssv.dll
Short name:
Date (created): 11/10/2005 1:03:56 PM
Date (last access): 1/17/2008 5:49:08 PM
Date (last write): 11/10/2005 1:22:10 PM
Filesize: 184423
Attributes: archive
MD5: F01726F7CA8538FDD4663C9DB8FEAEDC
CRC32: 0111B892
Version: 5.0.60.5



--- ActiveX list ---
{15B782AF-55D8-11D1-B477-006097098764} (Macromedia Authorware Web Player Control)
DPF name:
CLSID name: Macromedia Authorware Web Player Control
Installer: C:\WINDOWS\Downloaded Program Files\awswax.inf
Codebase: http://fpdownload.macromedia.com/get/shockwave/cabs/authorware/awswaxd.cab
description:
classification: Legitimate
known filename: awswax.ocx
info link:
info source: Safer Networking Ltd.
Path: C:\WINDOWS\system32\macromed\authorwa\
Long name: awswax.ocx
Short name:
Date (created): 7/2/2004 2:51:08 PM
Date (last access): 1/17/2008 5:23:14 PM
Date (last write): 7/2/2004 2:51:08 PM
Filesize: 189688
Attributes: archive
MD5: A10FC3583361C015E44FBB295D1A4E69
CRC32: 1D8401C7
Version: 2004.0.0.73
 
{166B1BCA-3F9C-11CF-8075-444553540000} (Shockwave ActiveX Control)
DPF name:
CLSID name: Shockwave ActiveX Control
Installer: C:\WINDOWS\Downloaded Program Files\erma.inf
Codebase: http://fpdownload.macromedia.com/pub/shockwave/cabs/director/sw.cab
description: Macromedia ShockWave Flash Player 7
classification: Legitimate
known filename: SWDIR.DLL
info link:
info source: Patrick M. Kolla
Path: C:\WINDOWS\system32\macromed\Director\
Long name: SwDir.dll
Short name:
Date (created): 2/13/2006 2:41:12 PM
Date (last access): 1/17/2008 5:23:14 PM
Date (last write): 8/7/2007 4:20:44 PM
Filesize: 182248

Attributes: archive
MD5: 6C90714399BD3F1E7C0503A38EADBAC7
CRC32: D1E8C81D
Version: 10.2.0.23

{17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool)
DPF name:
CLSID name: Windows Genuine Advantage Validation Tool
Installer: C:\WINDOWS\Downloaded Program Files\LegitCheckControl.inf
Codebase: http://go.microsoft.com/fwlink/?linkid=39204
description:
classification: Legitimate
known filename: LegitCheckControl.DLL
info link:
info source: Safer Networking Ltd.
Path: C:\WINDOWS\system32\
Long name: LegitCheckControl.DLL
Short name: LEGITC~1.DLL
Date (created): 7/12/2005 6:04:22 PM
Date (last access): 1/17/2008 5:54:56 PM
Date (last write): 10/11/2007 2:12:48 PM
Filesize: 1468968
Attributes: archive
MD5: FC6680B6D4812D017109518AC07DED0E
CRC32: 4DC7C79C
Version: 1.7.59.1

{1D4DB7D2-6EC9-47A3-BD87-1E41684E07BB} ()
DPF name:
CLSID name:
Installer: C:\WINDOWS\Downloaded Program Files\f3initialsetup1.0.0.15-3.inf
Codebase: http://ak.exe.imgfarm.com/images/nocache/funwebproducts/ei/MyFunCardsFWBInitialSetup1.0.0.15-3.cab
description: FunWebProducts
classification: Confirmed as malware
known filename:
info link:
info source: Patrick M. Kolla

{233C1507-6A77-46A4-9443-F871F945D258} (Shockwave ActiveX Control)
DPF name:
CLSID name: Shockwave ActiveX Control
Installer: C:\WINDOWS\Downloaded Program Files\setup.inf
Codebase: http://fpdownload.macromedia.com/pub/shockwave/cabs/director/sw.cab
description:
classification: Legitimate
known filename: SwDir.dll
info link:
info source: Safer Networking Ltd.
Path: C:\WINDOWS\system32\Macromed\Director\
Long name: SwDir.dll
Short name:
Date (created): 2/13/2006 2:41:12 PM
Date (last access): 1/17/2008 5:23:14 PM
Date (last write): 8/7/2007 4:20:44 PM
Filesize: 182248
Attributes: archive
MD5: 6C90714399BD3F1E7C0503A38EADBAC7
CRC32: D1E8C81D
Version: 10.2.0.23

{3E68E405-C6DE-49FF-83AE-41EE9F4C36CE} (Office Update Installation Engine)
DPF name:
CLSID name: Office Update Installation Engine
Installer: C:\WINDOWS\Downloaded Program Files\opuc.inf
Codebase: http://office.microsoft.com/officeupdate/content/opuc3.cab
description:
classification: Legitimate
known filename: opuc.dll
info link:
info source: Safer Networking Ltd.
Path: C:\WINDOWS\
Long name: opuc.dll
Short name:
Date (created): 11/17/2005 11:12:26 PM
Date (last access): 1/17/2008 5:53:38 PM
Date (last write): 9/30/2006 9:18:36 AM
Filesize: 524288
Attributes: archive
MD5: 1E1BC800E45FBD2174C979EE44EF5CEC
CRC32: 29C33BC9
Version: 12.0.4518.1005

{48DD0448-9209-4F81-9F6D-D83562940134} (MySpace Uploader Control)
DPF name:
CLSID name: MySpace Uploader Control
Installer: C:\WINDOWS\Downloaded Program Files\MySpaceUploader.inf
Codebase: http://lads.myspace.com/upload/MySpaceUploader1005.cab
Path: C:\WINDOWS\Downloaded Program Files\
Long name: MySpaceUploader.ocx
Short name: MYSPAC~1.OCX
Date (created): 10/12/2007 6:59:12 AM
Date (last access): 1/17/2008 5:23:16 PM
Date (last write): 10/31/2007 1:03:14 PM
Filesize: 2629248
Attributes: archive
MD5: D83307427D5BACF35742F70F5F144861
CRC32: 72FEEE1F
Version: 1.0.0.5

{52ADE293-85E8-11D2-BB22-00104B0EA281} (MS Investor Ticker)
DPF name:
CLSID name: MS Investor Ticker
Installer: C:\WINDOWS\Downloaded Program Files\ticker.inf
Codebase: http://fdl.msn.com/public/investor/v7/ticker.cab
description:
classification: Open for discussion
known filename: ticker7.ocx
info link:
info source: Safer Networking Ltd.
Path: C:\WINDOWS\DOWNLO~1\
Long name: ticker7.ocx
Short name:
Date (created): 11/4/1999 5:05:56 PM
Date (last access): 1/17/2008 5:32:08 PM
Date (last write): 11/4/1999 5:05:56 PM
Filesize: 306960
Attributes: archive
MD5: 6EFA205FEA2AAC462A728BB15496504B
CRC32: E6202358
Version: 7.1999.1104.1

{6218F7B5-0D3A-48BA-AE4C-49DCFA63D400} (CSEQueryObject Object)
DPF name:
CLSID name: CSEQueryObject Object
Installer:
Codebase: http://www.myheritage.com/Genoogle/Components/ActiveX/SearchEngineQuery.dll
Path: C:\WINDOWS\Downloaded Program Files\
Long name: SearchEngineQuery.dll
Short name: SEARCH~1.DLL
Date (created): 10/8/2007 1:52:42 PM
Date (last access): 1/17/2008 5:52:30 PM
Date (last write): 10/8/2007 1:52:44 PM
Filesize: 317208
Attributes: archive
MD5: 8ABA50E4274DEC8F80B41EF03E8DE4F7
CRC32: C81EF374
Version: 1.0.2.0

{62CEC9E0-3811-4C36-A94E-4F7565DCD23F} (DDSC Class)
DPF name:
CLSID name: DDSC Class
Installer: C:\WINDOWS\Downloaded Program Files\msddsc.inf
Codebase: http://horizon.aimco.com/Dashboard/msddsc.cab
description:
classification: Open for discussion
known filename: MSDDSC.dll
info link:
info source: Safer Networking Ltd.
Path: C:\WINDOWS\Downloaded Program Files\
Long name: MSDDSC.dll
Short name:
Date (created): 4/12/2001 1:39:46 PM
Date (last access): 1/17/2008 5:52:30 PM
Date (last write): 4/12/2001 1:39:46 PM
Filesize: 411936
Attributes: archive
MD5: 11EDDE9996A5E04A8610B418F735620E
CRC32: B611D7CF
Version: 2000.50.1102.0

{6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class)
DPF name:
CLSID name: WUWebControl Class
Installer: C:\WINDOWS\Downloaded Program Files\wuweb.inf
Codebase: http://update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1139682095937
description:
classification: Legitimate
known filename: wuweb.dll
info link:
info source: Safer Networking Ltd.
Path: C:\WINDOWS\system32\
Long name: wuweb.dll
Short name:
Date (created): 2/11/2006 10:03:38 AM
Date (last access): 1/17/2008 5:56:34 PM
Date (last write): 7/30/2007 6:19:28 PM
Filesize: 203096
Attributes: archive
MD5: 5C9A003E7C6BA03F04DC2D9C82A7E6E0
CRC32: E29E0153
Version: 7.0.6000.381

{8AD9C840-044E-11D1-B3E9-00805F499D93} (Java Runtime Environment 1.5.0)
DPF name: Java Runtime Environment 1.5.0
CLSID name: Java Plug-in 1.5.0_06
Installer:
Codebase: http://java.sun.com/update/1.5.0/jinstall-1_5_0_06-windows-i586.cab
description: Sun Java
classification: Legitimate
known filename: %PROGRAM FILES%\JabaSoft\JRE\*\Bin\npjava131.dll
info link:
info source: Patrick M. Kolla
Path: C:\Program Files\Java\jre1.5.0_06\bin\
Long name: NPJPI150_06.dll
Short name: NPJPI1~1.DLL
Date (created): 11/10/2005 1:03:56 PM
Date (last access): 1/17/2008 5:23:18 PM
Date (last write): 11/10/2005 1:22:10 PM
Filesize: 69746
Attributes: archive
MD5: D2CF6BB5E9020E6707B62575F8083954
CRC32: 7F39DC54
Version: 5.0.60.5

{94FA9769-A56B-11D2-833F-00C04FE02518} (FileDownLoader.DownLoader)
DPF name:
CLSID name: FileDownLoader.DownLoader
Installer: C:\WINDOWS\Downloaded Program Files\FileDownLoader.INF
Codebase: http://horizon.aimco.com/CABFiles/FileDownLoader.CAB
Path: C:\WINDOWS\Downloaded Program Files\
Long name: FileDownLoader.ocx
Short name: FILEDO~1.OCX
Date (created): 10/7/2003 11:23:10 AM
Date (last access): 1/17/2008 5:23:16 PM
Date (last write): 10/7/2003 11:23:10 AM
Filesize: 32768
Attributes: archive
MD5: F473BCF202A62ADBFE0FAB1D658003CC
CRC32: 3C9C4681
Version: 1.0.0.11

{C7DB51B4-BCF7-4923-8874-7F1A0DC92277} (Office Update Installation Engine)
DPF name:
CLSID name: Office Update Installation Engine
Installer: C:\WINDOWS\Downloaded Program Files\opuc.inf
Codebase: http://office.microsoft.com/officeupdate/content/opuc4.cab
description:
classification: Legitimate
known filename: opuc.dll
info link:
info source: Safer Networking Ltd.
Path: C:\WINDOWS\
Long name: opuc.dll
Short name:
Date (created): 11/17/2005 11:12:26 PM
Date (last access): 1/17/2008 5:53:38 PM
Date (last write): 9/30/2006 9:18:36 AM
Filesize: 524288
Attributes: archive
MD5: 1E1BC800E45FBD2174C979EE44EF5CEC
CRC32: 29C33BC9
Version: 12.0.4518.1005

{CAFEEFAC-0015-0000-0006-ABCDEFFEDCBA} (Java Runtime Environment 1.5.0)
DPF name: Java Runtime Environment 1.5.0
CLSID name: Java Plug-in 1.5.0_06
Installer:
Codebase: http://java.sun.com/update/1.5.0/jinstall-1_5_0_06-windows-i586.cab
description:
classification: Legitimate
known filename: npjpi150_06.dll
info link:
info source: Safer Networking Ltd.
Path: C:\Program Files\Java\jre1.5.0_06\bin\
Long name: NPJPI150_06.dll
Short name: NPJPI1~1.DLL
Date (created): 11/10/2005 1:03:56 PM
Date (last access): 1/17/2008 5:23:18 PM
Date (last write): 11/10/2005 1:22:10 PM
Filesize: 69746
Attributes: archive
MD5: D2CF6BB5E9020E6707B62575F8083954
CRC32: 7F39DC54
Version: 5.0.60.5

{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} (Java Runtime Environment 1.5.0)
DPF name: Java Runtime Environment 1.5.0
CLSID name: Java Plug-in 1.5.0_06
Installer:
Codebase: http://java.sun.com/update/1.5.0/jinstall-1_5_0_06-windows-i586.cab
description:
classification: Legitimate
known filename: npjpi150_06.dll
info link:
info source: Safer Networking Ltd.
Path: C:\Program Files\Java\jre1.5.0_06\bin\
Long name: NPJPI150_06.dll
Short name: NPJPI1~1.DLL
Date (created): 11/10/2005 1:03:56 PM
Date (last access): 1/17/2008 5:23:18 PM
Date (last write): 11/10/2005 1:22:10 PM
Filesize: 69746
Attributes: archive
MD5: D2CF6BB5E9020E6707B62575F8083954
CRC32: 7F39DC54
Version: 5.0.60.5

{CF40ACC5-E1BB-4AFF-AC72-04C2F616BCA7} (get_atlcom Class)
DPF name:
CLSID name: get_atlcom Class
Installer: C:\WINDOWS\Downloaded Program Files\gp.inf
Codebase: http://www.adobe.com/products/acrobat/nos/gp.cab
Path: C:\WINDOWS\Downloaded Program Files\
Long name: gp.ocx
Short name:
Date (created): 5/16/2007 8:22:06 AM
Date (last access): 1/17/2008 5:23:18 PM
Date (last write): 5/16/2007 8:22:06 AM
Filesize: 166512
Attributes: archive
MD5: 9BCFC46ECA1BF28E039ECCE2D331086E
CRC32: A9C6ED85
Version: 1.2.2.50

{D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object)
DPF name:
CLSID name: Shockwave Flash Object
Installer: C:\WINDOWS\Downloaded Program Files\swflash.inf
Codebase: http://fpdownload.macromedia.com/get/flashplayer/current/swflash.cab
description: Macromedia Shockwave Flash Player
classification: Legitimate
known filename:
info link:
info source: Patrick M. Kolla
Path: C:\WINDOWS\system32\Macromed\Flash\
Long name: Flash9b.ocx
Short name:
Date (created): 11/9/2006 2:46:28 PM
Date (last access): 1/17/2008 5:35:40 PM
Date (last write): 11/9/2006 2:46:28 PM
Filesize: 2262648
Attributes: readonly archive
MD5: F3B3EE66CA76C94510555ABE9D00A353
CRC32: A51F3CB4
Version: 9.0.28.0



--- Process list ---
PID: 1036 ( 948) C:\WINDOWS\Explorer.EXE
size: 1033216
MD5: 97BD6515465659FF8F3B7BE375B2EA87
PID: 1932 (1036) C:\Program Files\Common Files\Symantec Shared\ccApp.exe
size: 48752
MD5: C9AB8AB4576EFD3B26A2D108B7F6AC01
PID: 1944 (1036) C:\PROGRA~1\SYMANT~1\SYMANT~2\VPTray.exe
size: 85744
MD5: 0C66A89163A726B6DA0548D65E990363
PID: 1980 (1036) C:\WINDOWS\system32\hkcmd.exe
size: 86016
MD5: 44C86D7970E00204CA677880489A5746
PID: 1992 (1036) C:\WINDOWS\system32\igfxpers.exe
size: 81920
MD5: 4CEAEE08310DAF5F86155839A5953DF2
PID: 192 (1036) C:\WINDOWS\RTHDCPL.EXE
size: 16250880
MD5: C7E1623AC8038EE32E6BDC0AF3070A58
PID: 292 (1036) C:\SvcTools\7.3.4\bin\lnchr.exe
size: 364544
MD5: 0F6B66C005B7C4FE05EF86BE6EDB5697
PID: 360 (1036) C:\Program Files\Sharp\Sharpdesk\SharpTray.exe
size: 32768
MD5: 21915433C8301958B4B8893CD753C258
PID: 408 (1036) C:\Program Files\Sharp\Sharpdesk\FtpServer.exe
size: 692224
MD5: 56FF8972DC57C4990C491662DA320413
PID: 400 (1036) C:\WINDOWS\system32\ctfmon.exe
size: 15360
MD5: 24232996A38C0B0CF151C2140AE29FC8
PID: 432 (1036) C:\Program Files\Messenger\msmsgs.exe
size: 1694208
MD5: 74E6E96C6F0E2ECA4EDBB7F7A468F259
PID: 476 (1036) C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
size: 1318912
MD5: 225E41F95D0F33148D264746087017D4
PID: 564 (1036) C:\Program Files\Common Files\Sonic Shared\CineTray.exe
size: 114688
MD5: DCE9CB8F314E2A8A746B25035F02B0B0
PID: 1008 (1628) C:\Program Files\Sharp\Sharpdesk\nsapp.exe
size: 544768
MD5: FAD070B866F500510D560CD2E0D27B8C
PID: 3956 (1036) C:\Program Files\Internet Explorer\IEXPLORE.EXE
size: 93184
MD5: E7484514C0464642BE7B4DC2689354C8
PID: 1836 (1036) C:\Program Files\Spybot - Search & Destroy\SpybotSD.exe
size: 4393096
MD5: 09CA174A605B480318731E691DC98539
PID: 0 ( 0) [System Process]
PID: 4 ( 0) System
PID: 1260 ( 4) smss.exe
PID: 1364 (1260) csrss.exe
PID: 1388 (1260) winlogon.exe
PID: 1432 (1388) services.exe
PID: 1444 (1388) lsass.exe
PID: 1628 (1432) svchost.exe
PID: 1676 (1432) svchost.exe
PID: 2028 (1432) svchost.exe
PID: 264 (1432) svchost.exe
PID: 548 (1432) svchost.exe
PID: 628 (1432) ccProxy.exe
PID: 648 (1432) ccSetMgr.exe
PID: 668 (1432) ISSVC.exe
PID: 808 (1432) SNDSrvc.exe
PID: 908 (1432) ccEvtMgr.exe
PID: 708 (1432) spoolsv.exe
PID: 2232 (1432) DefWatch.exe
PID: 2276 (1432) MDM.EXE
PID: 2364 (1432) omtsreco.exe
PID: 2384 (1432) SavRoam.exe
PID: 2412 (1432) lnchr.exe
PID: 2496 (1432) svchost.exe
PID: 2512 (1432) Rtvscan.exe
PID: 2536 (1432) SymSPort.exe
PID: 2640 (1432) Customer.exe
PID: 2680 (1432) wdfmgr.exe
PID: 2824 (2412) swmeter.exe
PID: 3824 (1432) alg.exe
PID: 1784 (1432) svchost.exe


--- Browser start & search pages list ---
Spybot - Search & Destroy browser pages report, 1/17/2008 6:22:56 PM

HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\Local Page
C:\WINDOWS\system32\blank.htm
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\Search Page
http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\Start Page
http://intranet.aimco.com/
HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\Local Page
%SystemRoot%\system32\blank.htm
HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\Search Page
http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\Start Page
http://www.microsoft.com/isapi/redir.dll?prd={SUB_PRD}&clcid={SUB_CLSID}&pver={SUB_PVER}&ar=home
HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\Default_Page_URL
http://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome
HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\Default_Search_URL
http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Search\SearchAssistant
http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchasst.htm
HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Search\CustomizeSearch
http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchcust.htm
 
--- Winsock Layered Service Provider list ---
Protocol 0: MSAFD Tcpip [TCP/IP]
GUID: {E70F1AA0-AB8B-11CF-8CA3-00805F48A192}
Filename: %SystemRoot%\system32\mswsock.dll
Description: Microsoft Windows NT/2k/XP IP protocol
DB filename: %SystemRoot%\system32\mswsock.dll
DB protocol: MSAFD Tcpip [*]

Protocol 1: MSAFD Tcpip [UDP/IP]
GUID: {E70F1AA0-AB8B-11CF-8CA3-00805F48A192}
Filename: %SystemRoot%\system32\mswsock.dll
Description: Microsoft Windows NT/2k/XP IP protocol
DB filename: %SystemRoot%\system32\mswsock.dll
DB protocol: MSAFD Tcpip [*]

Protocol 2: MSAFD Tcpip [RAW/IP]
GUID: {E70F1AA0-AB8B-11CF-8CA3-00805F48A192}
Filename: %SystemRoot%\system32\mswsock.dll
Description: Microsoft Windows NT/2k/XP IP protocol
DB filename: %SystemRoot%\system32\mswsock.dll
DB protocol: MSAFD Tcpip [*]

Protocol 3: RSVP UDP Service Provider
GUID: {9D60A9E0-337A-11D0-BD88-0000C082E69A}
Filename: %SystemRoot%\system32\rsvpsp.dll
Description: Microsoft Windows NT/2k/XP RVSP
DB filename: %SystemRoot%\system32\rsvpsp.dll
DB protocol: RSVP * Service Provider

Protocol 4: RSVP TCP Service Provider
GUID: {9D60A9E0-337A-11D0-BD88-0000C082E69A}
Filename: %SystemRoot%\system32\rsvpsp.dll
Description: Microsoft Windows NT/2k/XP RVSP
DB filename: %SystemRoot%\system32\rsvpsp.dll
DB protocol: RSVP * Service Provider

Protocol 5: MSAFD NetBIOS [\Device\NetBT_Tcpip_{60DA3576-AAB2-4F6A-855F-3F1951318201}] SEQPACKET 5
GUID: {8D5F1830-C273-11CF-95C8-00805F48A192}
Filename: %SystemRoot%\system32\mswsock.dll
Description: Microsoft Windows NT/2k/XP NetBios protocol
DB filename: %SystemRoot%\system32\mswsock.dll
DB protocol: MSAFD NetBIOS *

Protocol 6: MSAFD NetBIOS [\Device\NetBT_Tcpip_{60DA3576-AAB2-4F6A-855F-3F1951318201}] DATAGRAM 5
GUID: {8D5F1830-C273-11CF-95C8-00805F48A192}
Filename: %SystemRoot%\system32\mswsock.dll
Description: Microsoft Windows NT/2k/XP NetBios protocol
DB filename: %SystemRoot%\system32\mswsock.dll
DB protocol: MSAFD NetBIOS *

Protocol 7: MSAFD NetBIOS [\Device\NetBT_Tcpip_{1D862363-E9A3-42FE-80D9-3E801B6B5295}] SEQPACKET 4
GUID: {8D5F1830-C273-11CF-95C8-00805F48A192}
Filename: %SystemRoot%\system32\mswsock.dll
Description: Microsoft Windows NT/2k/XP NetBios protocol
DB filename: %SystemRoot%\system32\mswsock.dll
DB protocol: MSAFD NetBIOS *

Protocol 8: MSAFD NetBIOS [\Device\NetBT_Tcpip_{1D862363-E9A3-42FE-80D9-3E801B6B5295}] DATAGRAM 4
GUID: {8D5F1830-C273-11CF-95C8-00805F48A192}
Filename: %SystemRoot%\system32\mswsock.dll
Description: Microsoft Windows NT/2k/XP NetBios protocol
DB filename: %SystemRoot%\system32\mswsock.dll
DB protocol: MSAFD NetBIOS *

Protocol 9: MSAFD NetBIOS [\Device\NetBT_Tcpip_{07D2DE95-E070-4DFC-BA01-A824452F973D}] SEQPACKET 3
GUID: {8D5F1830-C273-11CF-95C8-00805F48A192}
Filename: %SystemRoot%\system32\mswsock.dll
Description: Microsoft Windows NT/2k/XP NetBios protocol
DB filename: %SystemRoot%\system32\mswsock.dll
DB protocol: MSAFD NetBIOS *













Protocol 10: MSAFD NetBIOS [\Device\NetBT_Tcpip_{07D2DE95-E070-4DFC-BA01-A824452F973D}] DATAGRAM 3
GUID: {8D5F1830-C273-11CF-95C8-00805F48A192}
Filename: %SystemRoot%\system32\mswsock.dll
Description: Microsoft Windows NT/2k/XP NetBios protocol
DB filename: %SystemRoot%\system32\mswsock.dll
DB protocol: MSAFD NetBIOS *

Protocol 11: MSAFD NetBIOS [\Device\NetBT_Tcpip_{729CAA61-3B03-4EE7-8CCF-F5D89ECD6989}] SEQPACKET 0
GUID: {8D5F1830-C273-11CF-95C8-00805F48A192}
Filename: %SystemRoot%\system32\mswsock.dll
Description: Microsoft Windows NT/2k/XP NetBios protocol
DB filename: %SystemRoot%\system32\mswsock.dll
DB protocol: MSAFD NetBIOS *

Protocol 12: MSAFD NetBIOS [\Device\NetBT_Tcpip_{729CAA61-3B03-4EE7-8CCF-F5D89ECD6989}] DATAGRAM 0
GUID: {8D5F1830-C273-11CF-95C8-00805F48A192}
Filename: %SystemRoot%\system32\mswsock.dll
Description: Microsoft Windows NT/2k/XP NetBios protocol
DB filename: %SystemRoot%\system32\mswsock.dll
DB protocol: MSAFD NetBIOS *

Protocol 13: MSAFD NetBIOS [\Device\NetBT_Tcpip_{2ECB0958-B126-49E7-8953-1B951683F926}] SEQPACKET 1
GUID: {8D5F1830-C273-11CF-95C8-00805F48A192}
Filename: %SystemRoot%\system32\mswsock.dll
Description: Microsoft Windows NT/2k/XP NetBios protocol
DB filename: %SystemRoot%\system32\mswsock.dll
DB protocol: MSAFD NetBIOS *

Protocol 14: MSAFD NetBIOS [\Device\NetBT_Tcpip_{2ECB0958-B126-49E7-8953-1B951683F926}] DATAGRAM 1
GUID: {8D5F1830-C273-11CF-95C8-00805F48A192}
Filename: %SystemRoot%\system32\mswsock.dll
Description: Microsoft Windows NT/2k/XP NetBios protocol
DB filename: %SystemRoot%\system32\mswsock.dll
DB protocol: MSAFD NetBIOS *

Protocol 15: MSAFD NetBIOS [\Device\NetBT_Tcpip_{546178B1-676F-4778-BEAB-0BB9D6D17DC2}] SEQPACKET 2
GUID: {8D5F1830-C273-11CF-95C8-00805F48A192}
Filename: %SystemRoot%\system32\mswsock.dll
Description: Microsoft Windows NT/2k/XP NetBios protocol
DB filename: %SystemRoot%\system32\mswsock.dll
DB protocol: MSAFD NetBIOS *

Protocol 16: MSAFD NetBIOS [\Device\NetBT_Tcpip_{546178B1-676F-4778-BEAB-0BB9D6D17DC2}] DATAGRAM 2
GUID: {8D5F1830-C273-11CF-95C8-00805F48A192}
Filename: %SystemRoot%\system32\mswsock.dll
Description: Microsoft Windows NT/2k/XP NetBios protocol
DB filename: %SystemRoot%\system32\mswsock.dll
DB protocol: MSAFD NetBIOS *

Namespace Provider 0: Tcpip
GUID: {22059D40-7E9E-11CF-AE5A-00AA00A7112B}
Filename: %SystemRoot%\System32\mswsock.dll
Description: Microsoft Windows NT/2k/XP TCP/IP name space provider
DB filename: %SystemRoot%\system32\mswsock.dll
DB protocol: TCP/IP

Namespace Provider 1: NTDS
GUID: {3B2637EE-E580-11CF-A555-00C04FD8D4AC}
Filename: %SystemRoot%\System32\winrnr.dll
Description: Microsoft Windows NT/2k/XP name space provider
DB filename: %SystemRoot%\system32\winrnr.dll
DB protocol: NTDS

Namespace Provider 2: Network Location Awareness (NLA) Namespace
GUID: {6642243A-3BA8-4AA6-BAA5-2E0BD71FDD83}
Filename: %SystemRoot%\System32\mswsock.dll
Description: Microsoft Windows NT/2k/XP name space provider
DB filename: %SystemRoot%\system32\mswsock.dll
DB protocol: NLA-Namespace


Thank you for your help!
 
Last edited by a moderator:
re: FunWebProducts:

FunWebProducts is a PUP (Possibly Unwanted Program) and the therefore its removal is optional. If you want to remove the program go into Control Panel > Add/Remove programs and see if it is listed. If it is, try removing from there.
 
remove browser

I downloaded GSN and it somehow chaned my browser tp MyWebSearch to IWON. I have tried everything to get rid of this. I went into HELP and I still couldn't get rid of it. I went to control panel and neither GSN or Websearsearc was on there to delete. Please help me get rid of it.
Thank you
Philip Kremer
 
Last edited by a moderator:
Hello p.kremer, :)

Please open Spybot Search & Destroy > Help > About and let us know the version and date of last definitions, also your operating system.

Does the PC show any other signs of infection?

Best regards.
 
You must log in or register to reply here.
Back
Top