SDFix: Version 1.150 Run by Administrator on Sat 03/01/2008 at 05:56 PM
Microsoft Windows XP [Version 5.1.2600]
Running From: C:\SDFix
Checking Services :
Restoring Windows Registry Values
Restoring Windows Default Hosts File
Rebooting
Checking Files :
Trojan Files Found:
C:\Documents and Settings\All Users\Application Data\Microsoft\Network\Downloader\qmgr0.dat - Contains Links to Malware Sites! - Deleted
C:\Documents and Settings\All Users\Application Data\Microsoft\Network\Downloader\qmgr1.dat - Contains Links to Malware Sites! - Deleted
C:\WINDOWS\privacy_danger\index.htm - Deleted
C:\WINDOWS\privacy_danger\images\capt.gif - Deleted
C:\WINDOWS\privacy_danger\images\danger.jpg - Deleted
C:\WINDOWS\privacy_danger\images\down.gif - Deleted
C:\WINDOWS\privacy_danger\images\spacer.gif - Deleted
C:\Program Files\Insider\UnInstall.exe - Deleted
C:\WINDOWS\admggxp.dll - Deleted
C:\WINDOWS\bdmnopx.dll - Deleted
C:\WINDOWS\dat.txt - Deleted
C:\WINDOWS\fsxloqf.exe - Deleted
C:\WINDOWS\rs.txt - Deleted
C:\WINDOWS\search_res.txt - Deleted
Folder C:\Program Files\Insider - Removed
Folder C:\Program Files\QdrDrive - Removed
Folder C:\Program Files\QdrPack - Removed
Folder C:\Program Files\QdrModule - Removed
Folder C:\WINDOWS\privacy_danger - Removed
Removing Temp Files
ADS Check :
Final Check :
catchme 0.3.1344.2 W2K/XP/Vista - rootkit/stealth malware detector by Gmer,
http://www.gmer.netRootkit scan 2008-03-01 18:02:01
Windows 5.1.2600 Service Pack 1 NTFS
scanning hidden processes ...
scanning hidden services & system hive ...
scanning hidden registry entries ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden services: 0
hidden files: 0
Remaining Services :
Authorized Application Key Export:
Remaining Files :
File Backups: - C:\SDFix\backups\backups.zip
Files with Hidden Attributes :
Mon 28 Jan 2008 1,404,240 A.SHR --- "C:\Program Files\Spybot - Search & Destroy\SDUpdate.exe"
Mon 28 Jan 2008 5,146,448 A.SHR --- "C:\Program Files\Spybot - Search & Destroy\SpybotSD.exe"
Mon 28 Jan 2008 2,097,488 A.SHR --- "C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe"
Sat 25 Aug 2007 4,348 ..SH. --- "C:\Documents and Settings\All Users\DRM\DRMv1.bak"
Sat 1 Mar 2008 0 A..H. --- "C:\Documents and Settings\Owner\Local Settings\Temp\BIT3A7.tmp"
Sat 1 Mar 2008 0 A..H. --- "C:\Documents and Settings\Owner\Local Settings\Temp\BIT3A9.tmp"
Sat 1 Mar 2008 0 A..H. --- "C:\Documents and Settings\Owner\Local Settings\Temp\BIT3AA.tmp"
Sat 1 Mar 2008 0 A..H. --- "C:\Documents and Settings\Owner\Local Settings\Temp\BIT3AB.tmp"
Sat 1 Mar 2008 0 A..H. --- "C:\Documents and Settings\Owner\Local Settings\Temp\BIT3AC.tmp"
Sat 1 Mar 2008 0 A..H. --- "C:\Documents and Settings\Owner\Local Settings\Temp\BIT3AD.tmp"
Sat 1 Mar 2008 0 A..H. --- "C:\Documents and Settings\Owner\Local Settings\Temp\BIT3AE.tmp"
Sat 1 Mar 2008 0 A..H. --- "C:\Documents and Settings\Owner\Local Settings\Temp\BIT3AF.tmp"
Sat 1 Mar 2008 0 A..H. --- "C:\Documents and Settings\Owner\Local Settings\Temp\BIT3B0.tmp"
Sat 1 Mar 2008 0 A..H. --- "C:\Documents and Settings\Owner\Local Settings\Temp\BIT3B1.tmp"
Sat 1 Mar 2008 0 A..H. --- "C:\Documents and Settings\Owner\Local Settings\Temp\BIT3B2.tmp"
Sat 1 Mar 2008 0 A..H. --- "C:\Documents and Settings\Owner\Local Settings\Temp\BIT3B3.tmp"
Sat 1 Mar 2008 0 A..H. --- "C:\Documents and Settings\Owner\Local Settings\Temp\BIT3B4.tmp"
Sat 1 Mar 2008 0 A..H. --- "C:\Documents and Settings\Owner\Local Settings\Temp\BIT3B5.tmp"
Sat 1 Mar 2008 0 A..H. --- "C:\Documents and Settings\Owner\Local Settings\Temp\BIT3B6.tmp"
Sat 1 Mar 2008 0 A..H. --- "C:\Documents and Settings\Owner\Local Settings\Temp\BIT3B7.tmp"
Sat 1 Mar 2008 0 A..H. --- "C:\Documents and Settings\Owner\Local Settings\Temp\BIT3C6.tmp"
Sat 1 Mar 2008 0 A..H. --- "C:\Documents and Settings\Owner\Local Settings\Temp\BIT3C8.tmp"
Sat 1 Mar 2008 0 A..H. --- "C:\Documents and Settings\Owner\Local Settings\Temp\BIT3C9.tmp"
Sat 1 Mar 2008 0 A..H. --- "C:\Documents and Settings\Owner\Local Settings\Temp\BIT3CA.tmp"
Sat 1 Mar 2008 0 A..H. --- "C:\Documents and Settings\Owner\Local Settings\Temp\BIT3CB.tmp"
Sat 1 Mar 2008 0 A..H. --- "C:\Documents and Settings\Owner\Local Settings\Temp\BIT3CC.tmp"
Sat 1 Mar 2008 0 A..H. --- "C:\Documents and Settings\Owner\Local Settings\Temp\BIT3CD.tmp"
Sat 1 Mar 2008 0 A..H. --- "C:\Documents and Settings\Owner\Local Settings\Temp\BIT3CE.tmp"
Sat 1 Mar 2008 0 A..H. --- "C:\Documents and Settings\Owner\Local Settings\Temp\BIT3CF.tmp"
Sat 1 Mar 2008 0 A..H. --- "C:\Documents and Settings\Owner\Local Settings\Temp\BIT3D0.tmp"
Sat 1 Mar 2008 0 A..H. --- "C:\Documents and Settings\Owner\Local Settings\Temp\BIT3F7.tmp"
Sat 1 Mar 2008 0 A..H. --- "C:\Documents and Settings\Owner\Local Settings\Temp\BIT3F8.tmp"
Sat 1 Mar 2008 0 A..H. --- "C:\Documents and Settings\Owner\Local Settings\Temp\BIT3F9.tmp"
Sat 1 Mar 2008 0 A..H. --- "C:\Documents and Settings\Owner\Local Settings\Temp\BIT3FA.tmp"
Sat 1 Mar 2008 0 A..H. --- "C:\Documents and Settings\Owner\Local Settings\Temp\BIT3FB.tmp"
Sat 1 Mar 2008 0 A..H. --- "C:\Documents and Settings\Owner\Local Settings\Temp\BIT3FD.tmp"
Sat 1 Mar 2008 0 A..H. --- "C:\Documents and Settings\Owner\Local Settings\Temp\BIT3FE.tmp"
Sat 1 Mar 2008 0 A..H. --- "C:\Documents and Settings\Owner\Local Settings\Temp\BIT3FF.tmp"
Sat 1 Mar 2008 0 A..H. --- "C:\Documents and Settings\Owner\Local Settings\Temp\BIT400.tmp"
Sat 1 Mar 2008 0 A..H. --- "C:\Documents and Settings\Owner\Local Settings\Temp\BIT401.tmp"
Sat 1 Mar 2008 0 A..H. --- "C:\Documents and Settings\Owner\Local Settings\Temp\BIT402.tmp"
Sat 1 Mar 2008 0 A..H. --- "C:\Documents and Settings\Owner\Local Settings\Temp\BIT403.tmp"
Sat 1 Mar 2008 0 A..H. --- "C:\Documents and Settings\Owner\Local Settings\Temp\BIT404.tmp"
Sat 1 Mar 2008 0 A..H. --- "C:\Documents and Settings\Owner\Local Settings\Temp\BIT405.tmp"
Sat 1 Mar 2008 0 A..H. --- "C:\Documents and Settings\Owner\Local Settings\Temp\BIT406.tmp"
Sat 1 Mar 2008 0 A..H. --- "C:\Documents and Settings\Owner\Local Settings\Temp\BIT407.tmp"
Sat 1 Mar 2008 0 A..H. --- "C:\Documents and Settings\Owner\Local Settings\Temp\BIT408.tmp"
Sat 1 Mar 2008 0 A..H. --- "C:\Documents and Settings\Owner\Local Settings\Temp\BIT409.tmp"
Sat 1 Mar 2008 0 A..H. --- "C:\Documents and Settings\Owner\Local Settings\Temp\BIT40A.tmp"
Sat 1 Mar 2008 0 A..H. --- "C:\Documents and Settings\Owner\Local Settings\Temp\BIT40B.tmp"
Sat 1 Mar 2008 0 A..H. --- "C:\Documents and Settings\Owner\Local Settings\Temp\BIT40C.tmp"
Sat 1 Mar 2008 0 A..H. --- "C:\Documents and Settings\Owner\Local Settings\Temp\BIT40D.tmp"
Sat 1 Mar 2008 0 A..H. --- "C:\Documents and Settings\Owner\Local Settings\Temp\BIT40E.tmp"
Sat 1 Mar 2008 0 A..H. --- "C:\Documents and Settings\Owner\Local Settings\Temp\BIT410.tmp"
Sat 1 Mar 2008 0 A..H. --- "C:\Documents and Settings\Owner\Local Settings\Temp\BIT417.tmp"
Sat 1 Mar 2008 0 A..H. --- "C:\Documents and Settings\Owner\Local Settings\Temp\BIT41F.tmp"
Sat 1 Mar 2008 0 A..H. --- "C:\Documents and Settings\Owner\Local Settings\Temp\BIT420.tmp"
Sat 1 Mar 2008 0 A..H. --- "C:\Documents and Settings\Owner\Local Settings\Temp\BIT421.tmp"
Sat 1 Mar 2008 0 A..H. --- "C:\Documents and Settings\Owner\Local Settings\Temp\BIT425.tmp"
Sat 1 Mar 2008 0 A..H. --- "C:\Documents and Settings\Owner\Local Settings\Temp\BIT426.tmp"
Sat 1 Mar 2008 0 A..H. --- "C:\Documents and Settings\Owner\Local Settings\Temp\BIT428.tmp"
Sat 1 Mar 2008 0 A..H. --- "C:\Documents and Settings\Owner\Local Settings\Temp\BIT429.tmp"
Sat 1 Mar 2008 0 A..H. --- "C:\Documents and Settings\Owner\Local Settings\Temp\BIT42A.tmp"
Sat 1 Mar 2008 0 A..H. --- "C:\Documents and Settings\Owner\Local Settings\Temp\BIT42B.tmp"
Sat 1 Mar 2008 0 A..H. --- "C:\Documents and Settings\Owner\Local Settings\Temp\BIT42C.tmp"
Sat 1 Mar 2008 0 A..H. --- "C:\Documents and Settings\Owner\Local Settings\Temp\BIT42D.tmp"
Sat 1 Mar 2008 0 A..H. --- "C:\Documents and Settings\Owner\Local Settings\Temp\BIT42E.tmp"
Sat 1 Mar 2008 0 A..H. --- "C:\Documents and Settings\Owner\Local Settings\Temp\BIT42F.tmp"
Sat 1 Mar 2008 0 A..H. --- "C:\Documents and Settings\Owner\Local Settings\Temp\BIT45B.tmp"
Sat 1 Mar 2008 0 A..H. --- "C:\Documents and Settings\Owner\Local Settings\Temp\BIT45C.tmp"
Sat 1 Mar 2008 0 A..H. --- "C:\Documents and Settings\Owner\Local Settings\Temp\BIT45D.tmp"
Sat 1 Mar 2008 0 A..H. --- "C:\Documents and Settings\Owner\Local Settings\Temp\BIT45E.tmp"
Sat 1 Mar 2008 0 A..H. --- "C:\Documents and Settings\Owner\Local Settings\Temp\BIT460.tmp"
Sat 1 Mar 2008 0 A..H. --- "C:\Documents and Settings\Owner\Local Settings\Temp\BIT461.tmp"
Sat 1 Mar 2008 0 A..H. --- "C:\Documents and Settings\Owner\Local Settings\Temp\BIT462.tmp"
Sat 1 Mar 2008 0 A..H. --- "C:\Documents and Settings\Owner\Local Settings\Temp\BIT463.tmp"
Sat 1 Mar 2008 0 A..H. --- "C:\Documents and Settings\Owner\Local Settings\Temp\BIT464.tmp"
Sat 1 Mar 2008 0 A..H. --- "C:\Documents and Settings\Owner\Local Settings\Temp\BIT465.tmp"
Sat 1 Mar 2008 0 A..H. --- "C:\Documents and Settings\Owner\Local Settings\Temp\BIT466.tmp"
Sat 1 Mar 2008 0 A..H. --- "C:\Documents and Settings\Owner\Local Settings\Temp\BIT467.tmp"
Sat 1 Mar 2008 0 A..H. --- "C:\Documents and Settings\Owner\Local Settings\Temp\BIT468.tmp"
Sat 1 Mar 2008 0 A..H. --- "C:\Documents and Settings\Owner\Local Settings\Temp\BIT469.tmp"
Sat 1 Mar 2008 0 A..H. --- "C:\Documents and Settings\Owner\Local Settings\Temp\BIT46A.tmp"
Sat 1 Mar 2008 0 A..H. --- "C:\Documents and Settings\Owner\Local Settings\Temp\BIT46B.tmp"
Sat 1 Mar 2008 0 A..H. --- "C:\Documents and Settings\Owner\Local Settings\Temp\BIT46C.tmp"
Sat 1 Mar 2008 0 A..H. --- "C:\Documents and Settings\Owner\Local Settings\Temp\BIT46D.tmp"
Sat 1 Mar 2008 0 A..H. --- "C:\Documents and Settings\Owner\Local Settings\Temp\BIT46E.tmp"
Sat 1 Mar 2008 0 A..H. --- "C:\Documents and Settings\Owner\Local Settings\Temp\BIT46F.tmp"
Sat 1 Mar 2008 0 A..H. --- "C:\Documents and Settings\Owner\Local Settings\Temp\BIT470.tmp"
Sat 1 Mar 2008 0 A..H. --- "C:\Documents and Settings\Owner\Local Settings\Temp\BIT471.tmp"
Sat 1 Mar 2008 0 A..H. --- "C:\Documents and Settings\Owner\Local Settings\Temp\BIT472.tmp"
Sat 1 Mar 2008 0 A..H. --- "C:\Documents and Settings\Owner\Local Settings\Temp\BIT473.tmp"
Sat 1 Mar 2008 0 A..H. --- "C:\Documents and Settings\Owner\Local Settings\Temp\BIT474.tmp"
Sat 1 Mar 2008 0 A..H. --- "C:\Documents and Settings\Owner\Local Settings\Temp\BIT475.tmp"
Sat 1 Mar 2008 0 A..H. --- "C:\Documents and Settings\Owner\Local Settings\Temp\BIT476.tmp"
Sat 1 Mar 2008 0 A..H. --- "C:\Documents and Settings\Owner\Local Settings\Temp\BIT477.tmp"
Sat 1 Mar 2008 0 A..H. --- "C:\Documents and Settings\Owner\Local Settings\Temp\BIT486.tmp"
Sat 1 Mar 2008 0 A..H. --- "C:\Documents and Settings\Owner\Local Settings\Temp\BIT487.tmp"
Sat 1 Mar 2008 0 A..H. --- "C:\Documents and Settings\Owner\Local Settings\Temp\BIT489.tmp"
Sat 1 Mar 2008 0 A..H. --- "C:\Documents and Settings\Owner\Local Settings\Temp\BIT48A.tmp"
Sat 1 Mar 2008 0 A..H. --- "C:\Documents and Settings\Owner\Local Settings\Temp\BIT48B.tmp"
Sat 1 Mar 2008 0 A..H. --- "C:\Documents and Settings\Owner\Local Settings\Temp\BIT48C.tmp"
Sat 1 Mar 2008 0 A..H. --- "C:\Documents and Settings\Owner\Local Settings\Temp\BIT48D.tmp"
Sat 1 Mar 2008 0 A..H. --- "C:\Documents and Settings\Owner\Local Settings\Temp\BIT48F.tmp"
Sat 1 Mar 2008 0 A..H. --- "C:\Documents and Settings\Owner\Local Settings\Temp\BIT490.tmp"
Sat 1 Mar 2008 0 A..H. --- "C:\Documents and Settings\Owner\Local Settings\Temp\BIT4B7.tmp"
Sat 1 Mar 2008 0 A..H. --- "C:\Documents and Settings\Owner\Local Settings\Temp\BIT4B8.tmp"
Sat 1 Mar 2008 0 A..H. --- "C:\Documents and Settings\Owner\Local Settings\Temp\BIT4B9.tmp"
Sat 1 Mar 2008 0 A..H. --- "C:\Documents and Settings\Owner\Local Settings\Temp\BIT4BA.tmp"
Sat 1 Mar 2008 0 A..H. --- "C:\Documents and Settings\Owner\Local Settings\Temp\BIT4BB.tmp"
Sat 1 Mar 2008 0 A..H. --- "C:\Documents and Settings\Owner\Local Settings\Temp\BIT4BC.tmp"
Sat 1 Mar 2008 0 A..H. --- "C:\Documents and Settings\Owner\Local Settings\Temp\BIT4BD.tmp"
Sat 1 Mar 2008 0 A..H. --- "C:\Documents and Settings\Owner\Local Settings\Temp\BIT4BE.tmp"
Sat 1 Mar 2008 0 A..H. --- "C:\Documents and Settings\Owner\Local Settings\Temp\BIT4BF.tmp"
Sat 1 Mar 2008 0 A..H. --- "C:\Documents and Settings\Owner\Local Settings\Temp\BIT4C0.tmp"
Sat 1 Mar 2008 0 A..H. --- "C:\Documents and Settings\Owner\Local Settings\Temp\BIT4C1.tmp"
Sat 1 Mar 2008 0 A..H. --- "C:\Documents and Settings\Owner\Local Settings\Temp\BIT4C2.tmp"
Sat 1 Mar 2008 0 A..H. --- "C:\Documents and Settings\Owner\Local Settings\Temp\BIT4C3.tmp"
Sat 1 Mar 2008 0 A..H. --- "C:\Documents and Settings\Owner\Local Settings\Temp\BIT4C4.tmp"
Sat 1 Mar 2008 0 A..H. --- "C:\Documents and Settings\Owner\Local Settings\Temp\BIT4C5.tmp"
Sat 1 Mar 2008 0 A..H. --- "C:\Documents and Settings\Owner\Local Settings\Temp\BIT4C6.tmp"
Sat 1 Mar 2008 0 A..H. --- "C:\Documents and Settings\Owner\Local Settings\Temp\BIT4C7.tmp"
Sat 1 Mar 2008 0 A..H. --- "C:\Documents and Settings\Owner\Local Settings\Temp\BIT4C9.tmp"
Sat 1 Mar 2008 0 A..H. --- "C:\Documents and Settings\Owner\Local Settings\Temp\BIT4CA.tmp"
Sat 1 Mar 2008 0 A..H. --- "C:\Documents and Settings\Owner\Local Settings\Temp\BIT4CC.tmp"
Sat 1 Mar 2008 0 A..H. --- "C:\Documents and Settings\Owner\Local Settings\Temp\BIT4CD.tmp"
Sat 1 Mar 2008 0 A..H. --- "C:\Documents and Settings\Owner\Local Settings\Temp\BIT4CF.tmp"
Sat 1 Mar 2008 0 A..H. --- "C:\Documents and Settings\Owner\Local Settings\Temp\BIT4DB.tmp"
Sat 1 Mar 2008 0 A..H. --- "C:\Documents and Settings\Owner\Local Settings\Temp\BIT4E7.tmp"
Sat 1 Mar 2008 0 A..H. --- "C:\Documents and Settings\Owner\Local Settings\Temp\BIT4E9.tmp"
Sat 1 Mar 2008 0 A..H. --- "C:\Documents and Settings\Owner\Local Settings\Temp\BIT4EB.tmp"
Sat 1 Mar 2008 0 A..H. --- "C:\Documents and Settings\Owner\Local Settings\Temp\BIT4EC.tmp"
Finished!Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 6:21:53 PM, on 3/1/2008
Platform: Windows XP SP1 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\LEXBCES.EXE
C:\WINDOWS\system32\LEXPPS.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\a-squared Anti-Malware\a2service.exe
C:\Program Files\Common Files\McAfee\HackerWatch\HWAPI.exe
C:\PROGRA~1\McAfee\MSC\mcmscsvc.exe
c:\PROGRA~1\COMMON~1\mcafee\mna\mcnasvc.exe
C:\PROGRA~1\McAfee\VIRUSS~1\mcods.exe
C:\PROGRA~1\McAfee\MSC\mcpromgr.exe
c:\PROGRA~1\COMMON~1\mcafee\mcproxy\mcproxy.exe
c:\PROGRA~1\COMMON~1\mcafee\redirsvc\redirsvc.exe
C:\PROGRA~1\McAfee\VIRUSS~1\mcshield.exe
C:\PROGRA~1\McAfee\VIRUSS~1\mcsysmon.exe
C:\Program Files\McAfee\MPF\MPFSrv.exe
C:\PROGRA~1\McAfee\MPS\mps.exe
C:\Program Files\Comcast\Desktop Doctor\bin\sprtsvc.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\McAfee\MPS\mpsevh.exe
C:\Program Files\Canon\CAL\CALMAIN.exe
C:\WINDOWS\system32\notepad.exe
C:\WINDOWS\System32\hkcmd.exe
C:\Program Files\Adobe\Photoshop Album Starter Edition\3.2\Apps\apdproxy.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\AGLOCO Viewbar\Viewbar.exe
C:\Program Files\Dell AIO Printer A920\dlbkbmgr.exe
C:\Program Files\Dell AIO Printer A920\dlbkbmon.exe
C:\Program Files\Comcast\Desktop Doctor\bin\sprtcmd.exe
C:\WINDOWS\System32\wuauclt.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\a-squared Anti-Malware\a2guard.exe
C:\Program Files\MSN Messenger\MsnMsgr.Exe
c:\PROGRA~1\mcafee.com\agent\mcagent.exe
C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLLoginProxy.exe
C:\WINDOWS\explorer.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar =
http://us.rd.yahoo.com/customize/ie/def ... earch.htmlR1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page =
http://www.yahoo.comR0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page =
http://softwarereferral.com/jump.php?wm ... Ojg5&lid=2R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
http://us.rd.yahoo.com/customize/ie/def ... .yahoo.comR1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar =
http://us.rd.yahoo.com/customize/ie/def ... earch.htmlR1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =
http://www.yahoo.comR0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page =
http://www.yahoo.comR0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) =
http://us.rd.yahoo.com/customize/ie/def ... .yahoo.comO2 - BHO: (no name) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - (no file)
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: MorpheusToolbar BHO - {3F3714A1-89A4-46be-8AF3-D0C9D1FB03F9} - C:\Program Files\MorpheusBar\bar\1.bin\MORPHBAR.DLL
O2 - BHO: Nick Aracde Toolbar - {4E7BD74F-2B8D-469E-9EB4-FE6FA694B13E} - C:\PROGRA~1\NICKAR~1\NICKAR~1.DLL (file missing)
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: Yahoo! IE Services Button - {5BAB4B5B-68BC-4B02-94D6-2FC0DE4A7897} - C:\Program Files\Yahoo!\Common\yiesrvc.dll
O2 - BHO: scriptproxy - {7DB2D5A0-7241-4E79-B68D-6309F01C5231} - c:\PROGRA~1\mcafee\VIRUSS~1\scriptcl.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: McAfee Popup Blocker - {C68AE9C0-0909-4DDC-B661-C1AFB9F5AE53} - c:\PROGRA~1\mcafee\mps\mcpopup.dll
O3 - Toolbar: (no name) - {0BF43445-2F28-4351-9252-17FE6E806AA0} - (no file)
O3 - Toolbar: Nick Aracde Toolbar - {4E7BD74F-2B8D-469E-9EB4-FE6FA694B13E} - C:\PROGRA~1\NICKAR~1\NICKAR~1.DLL (file missing)
O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\System32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\System32\hkcmd.exe
O4 - HKLM\..\Run: [Adobe Photo Downloader] "C:\Program Files\Adobe\Photoshop Album Starter Edition\3.2\Apps\apdproxy.exe"
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\j2re1.4.2_15\bin\jusched.exe"
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [Viewbar] C:\Program Files\AGLOCO Viewbar\Viewbar.exe
O4 - HKLM\..\Run: [Dell AIO Printer A920] "C:\Program Files\Dell AIO Printer A920\dlbkbmgr.exe"
O4 - HKLM\..\Run: [ddoctorv2] "C:\Program Files\Comcast\Desktop Doctor\bin\sprtcmd.exe" /P ddoctorv2
O4 - HKLM\..\Run: [a-squared] "C:\Program Files\a-squared Anti-Malware\a2guard.exe" /d=60
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [Yahoo! Pager] "C:\PROGRA~1\Yahoo!\MESSEN~1\YAHOOM~1.EXE" -quiet
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKUS\S-1-5-18\..\Run: [MySpaceIM] C:\Program Files\MySpace\IM\MySpaceIM.exe (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [MySpaceIM] C:\Program Files\MySpace\IM\MySpaceIM.exe (User 'Default user')
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\j2re1.4.2_15\bin\npjpi142_15.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\j2re1.4.2_15\bin\npjpi142_15.dll
O9 - Extra button: Yahoo! Services - {5BAB4B5B-68BC-4B02-94D6-2FC0DE4A7897} - C:\Program Files\Yahoo!\Common\yiesrvc.dll
O9 - Extra button: Related - {c95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\WINDOWS\web\related.htm
O9 - Extra 'Tools' menuitem: Show &Related Links - {c95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\WINDOWS\web\related.htm
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\MSMSGS.EXE
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\MSMSGS.EXE
O15 - Trusted Zone:
http://*.mcafee.comO16 - DPF: {1663ed61-23eb-11d2-b92f-008048fdd814} (MeadCo ScriptX Basic) -
http://www.crworks.com/partner/downloads/ScriptX.cabO16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (Installation Support) - C:\Program Files\Yahoo!\Common\Yinsthelper.dll
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) -
http://gfx2.hotmail.com/mail/w2/pr02/re ... NPUpld.cabO16 - DPF: {5F8469B4-B055-49DD-83F7-62B522420ECC} (Facebook Photo Uploader Control) -
http://upload.facebook.com/controls/Fac ... loader.cabO16 - DPF: {7FC1B346-83E6-4774-8D20-1A6B09B0E737} (Windows Live Photo Upload Control) -
http://katherinsosa.spaces.live.com/Pho ... nPUpld.cabO16 - DPF: {8A94C905-FF9D-43B6-8708-F0F22D22B1CB} (Wwlaunch Control) -
http://www.worldwinner.com/games/shared/wwlaunch.cabO16 - DPF: {9600F64D-755F-11D4-A47F-0001023E6D5A} (Shutterfly Picture Upload Plugin) -
http://web1.shutterfly.com/downloads/Uploader.cabO16 - DPF: {D4323BF2-006A-4440-A2F5-27E3E7AB25F8} -
http://a532.g.akamai.net/f/532/6712/5m/ ... taller.exeO16 - DPF: {EF791A6B-FC12-4C68-99EF-FB9E207A39E6} (McFreeScan Class) -
http://download.mcafee.com/molbin/iss-l ... cfscan.cabO23 - Service: a-squared Anti-Malware Service (a2AntiMalware) - Emsi Software GmbH - C:\Program Files\a-squared Anti-Malware\a2service.exe
O23 - Service: Canon Camera Access Library 8 (CCALib8) - Canon Inc. - C:\Program Files\Canon\CAL\CALMAIN.exe
O23 - Service: McAfee E-mail Proxy (Emproxy) - McAfee, Inc. - C:\PROGRA~1\COMMON~1\McAfee\EmProxy\emproxy.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: LexBce Server (LexBceS) - Lexmark International, Inc. - C:\WINDOWS\system32\LEXBCES.EXE
O23 - Service: McAfee HackerWatch Service - McAfee, Inc. - C:\Program Files\Common Files\McAfee\HackerWatch\HWAPI.exe
O23 - Service: McAfee Update Manager (mcmispupdmgr) - McAfee, Inc. - C:\PROGRA~1\McAfee\MSC\mcupdmgr.exe
O23 - Service: McAfee Services (mcmscsvc) - McAfee, Inc. - C:\PROGRA~1\McAfee\MSC\mcmscsvc.exe
O23 - Service: McAfee Network Agent (McNASvc) - McAfee, Inc. - c:\PROGRA~1\COMMON~1\mcafee\mna\mcnasvc.exe
O23 - Service: McAfee Scanner (McODS) - McAfee, Inc. - C:\PROGRA~1\McAfee\VIRUSS~1\mcods.exe
O23 - Service: McAfee Protection Manager (mcpromgr) - McAfee, Inc. - C:\PROGRA~1\McAfee\MSC\mcpromgr.exe
O23 - Service: McAfee Proxy Service (McProxy) - McAfee, Inc. - c:\PROGRA~1\COMMON~1\mcafee\mcproxy\mcproxy.exe
O23 - Service: McAfee Redirector Service (McRedirector) - McAfee, Inc. - c:\PROGRA~1\COMMON~1\mcafee\redirsvc\redirsvc.exe
O23 - Service: McAfee Real-time Scanner (McShield) - McAfee, Inc. - C:\PROGRA~1\McAfee\VIRUSS~1\mcshield.exe
O23 - Service: McAfee SystemGuards (McSysmon) - McAfee, Inc. - C:\PROGRA~1\McAfee\VIRUSS~1\mcsysmon.exe
O23 - Service: McAfee Personal Firewall Service (MpfService) - McAfee, Inc. - C:\Program Files\McAfee\MPF\MPFSrv.exe
O23 - Service: McAfee Privacy Service (MPS9) - McAfee, Inc. - C:\PROGRA~1\McAfee\MPS\mps.exe
O23 - Service: PC Tools Auxiliary Service (sdAuxService) - PC Tools - C:\Program Files\Spyware Doctor\pctsAuxs.exe
O23 - Service: PC Tools Security Service (sdCoreService) - PC Tools - C:\Program Files\Spyware Doctor\pctsSvc.exe
O23 - Service: SupportSoft Sprocket Service (ddoctorv2) (sprtsvc_ddoctorv2) - SupportSoft, Inc. - C:\Program Files\Comcast\Desktop Doctor\bin\sprtsvc.exe
--
End of file - 10645 bytes
Thanks a lot for helping me with this...about the service pack, I got my computer in '04 and I never knew there was another service pack to install....