Thanks for the response. I had to come out of safe mode and log onto the internet a couple of times because I was experiencing problems with some of the programs I had downloaded, in particular AboutBuster which was reporting 'database corrupted or missing'.
Sorted it all in the end - but I hope coming in & out of safe mode hasn't spoilt anything.
Certainly seems to be behaving a lot better!
So logs follow:
Logfile of HijackThis v1.99.1
Scan saved at 10:52:37 PM, on 1/3/2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe
C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe
C:\Program Files\Common Files\EPSON\EBAPI\SAgent2.exe
C:\Program Files\ewido anti-malware\ewidoctrl.exe
C:\Program Files\ewido anti-malware\ewidoguard.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\wdfmgr.exe
C:\WINDOWS\System32\alg.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\carpserv.exe
C:\Program Files\ScanSoft\OmniPageSE\opware32.exe
C:\Program Files\Microsoft Hardware\Keyboard\type32.exe
C:\Program Files\Fellowes\MediaFACE 4.0\SetHook.exe
C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe
C:\PROGRA~1\Grisoft\AVGFRE~1\avgemc.exe
C:\Program Files\NVIDIA Corporation\NvMixer\NVMixerTray.exe
C:\Program Files\Thomson\SpeedTouch USB\Dragdiag.exe
C:\WINDOWS\system32\RUNDLL32.EXE
C:\Program Files\eBay\eBay Toolbar2\eBayTBDaemon.exe
C:\Program Files\Common Files\PCSuite\DataLayer\DataLayer.exe
C:\Program Files\Nokia\Nokia PC Suite 6\LaunchApplication.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\QuickTime\qttask.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\PROGRA~1\TEXTBR~1.0\Bin\INSTAN~1.EXE
C:\Program Files\Microsoft AntiSpyware\gcasServ.exe
C:\PROGRA~1\COMMON~1\PCSuite\Services\SERVIC~1.EXE
C:\Program Files\Microsoft AntiSpyware\gcasDtServ.exe
C:\Program Files\Viewpoint\Viewpoint Manager\ViewMgr.exe
C:\Program Files\Java\j2re1.4.2_04\bin\jusched.exe
C:\Program Files\Logitech\MouseWare\system\em_exec.exe
C:\Program Files\a-squared\a2guard.exe
C:\Program Files\MSN Messenger\msnmsgr.exe
C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
C:\WINDOWS\Downloaded Program Files\eBayTBar.exe
C:\Program Files\FotoStation Easy\FotoStation Easy AutoLaunch.exe
C:\Program Files\Nikon\NkView6\NkvMon.exe
C:\Program Files\MSN Toolbar Suite\DS\02.05.0001.1119\en-us\bin\WindowsSearch.exe
C:\Program Files\PhotoWise\quicklnk.exe
C:\Program Files\TextBridge Pro 9.0\Bin\Ereg\Remind32.exe
C:\Program Files\MSN Toolbar Suite\DS\02.05.0001.1119\en-us\bin\WindowsSearchIndexer.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Documents and Settings\Daddy\My Documents\Hijackthis\HijackThis.exe
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: Class - {10F4FEF3-124A-04CB-EABB-4BBE0F286420} - C:\WINDOWS\crpg.dll (file missing)
O2 - BHO: Class - {127B258A-8F8E-75B6-D538-4A7711988318} - C:\WINDOWS\crlb32.dll (file missing)
O2 - BHO: Class - {2061BB23-DCA4-0D83-B4A7-56779D602DB2} - C:\WINDOWS\sysoc32.dll (file missing)
O2 - BHO: eBay Toolbar Helper - {22D8E815-4A5E-4DFB-845E-AAB64207F5BD} - C:\Program Files\eBay\eBay Toolbar2\eBayTB.dll
O2 - BHO: Class - {29139193-52D7-7EFC-F253-8C73A2C8A5D7} - C:\WINDOWS\winrs.dll (file missing)
O2 - BHO: Class - {302FCDF6-C3B8-FDEF-DB33-BD6C8D4D3F17} - C:\WINDOWS\atlhr32.dll (file missing)
O2 - BHO: Class - {425C9AAD-B046-1D60-B788-F86EA97DFCED} - C:\WINDOWS\system32\mfcnd32.dll (file missing)
O2 - BHO: Class - {4A741325-E903-BE06-381E-B35E597E3C6A} - C:\WINDOWS\d3wo.dll (file missing)
O2 - BHO: Class - {522DCDB2-3199-3427-AF7A-5B84CDB03151} - C:\WINDOWS\system32\sysxi.dll (file missing)
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: Class - {62189874-CE5F-4F45-E119-22E35B881B76} - C:\WINDOWS\system32\sdkls32.dll (file missing)
O2 - BHO: Class - {74D26490-9E7F-905B-3BAA-08765509E086} - C:\WINDOWS\atlqn32.dll (file missing)
O2 - BHO: Class - {83C08741-7DD6-E1E8-DFFA-D55F3DFD30B7} - C:\WINDOWS\netxi.dll (file missing)
O2 - BHO: Class - {98B06E7B-7D84-30CB-A991-794990630F1F} - C:\WINDOWS\system32\sysip.dll (file missing)
O2 - BHO: Class - {9B5712EF-16A3-B05E-9899-29F9A66E3C67} - C:\WINDOWS\system32\d3ud32.dll (file missing)
O2 - BHO: Class - {A201E9FB-E957-9FD0-D7B8-E7180B6535EB} - C:\WINDOWS\system32\d3qp32.dll (file missing)
O2 - BHO: Class - {AA0E4412-0B6E-ABBD-EAAF-67B877E2B4D7} - C:\WINDOWS\system32\javalq.dll (file missing)
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O2 - BHO: Class - {B2DA97AF-6D33-3F78-ECDA-38EC1522A932} - C:\WINDOWS\sysod.dll (file missing)
O2 - BHO: Class - {B603722E-D99E-739D-1178-A7705AF0213C} - C:\WINDOWS\d3vj.dll (file missing)
O2 - BHO: Class - {B9F05881-B63E-0E44-261D-B83EC3F52F6B} - C:\WINDOWS\system32\ieps32.dll (file missing)
O2 - BHO: Class - {BC92A8D6-EC15-3C14-13BB-52BEF3DFBFA6} - C:\WINDOWS\mswg32.dll (file missing)
O2 - BHO: MSN Search Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Toolbar Suite\TB\02.05.0001.1119\en-us\msntb.dll
O2 - BHO: Class - {C14A63C4-80B0-D977-7CCE-440563F34821} - C:\WINDOWS\syseq.dll (file missing)
O2 - BHO: Class - {CAEAEAB9-C342-9405-CE69-D7940397BA70} - C:\WINDOWS\system32\javaok.dll (file missing)
O2 - BHO: Class - {CC22FEF2-3F13-D4D7-35C2-C66D30943149} - C:\WINDOWS\appoi32.dll (file missing)
O2 - BHO: Class - {E5E988DC-7B26-44B2-3181-C20414A67661} - C:\WINDOWS\system32\addqc32.dll (file missing)
O2 - BHO: Class - {F33B84B4-9B35-0407-3C12-7ABB0397E43F} - C:\WINDOWS\system32\netes32.dll (file missing)
O2 - BHO: Class - {F6F9B3DC-DB00-CD9A-BD51-438F4C199E45} - C:\WINDOWS\system32\sdkue.dll (file missing)
O3 - Toolbar: Easy-WebPrint - {327C2873-E90D-4c37-AA9D-10AC9BABA46C} - C:\Program Files\Canon\Easy-WebPrint\Toolband.dll
O3 - Toolbar: eBay Toolbar - {92085AD4-F48A-450D-BD93-B28CC7DF67CE} - C:\Program Files\eBay\eBay Toolbar2\eBayTB.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O3 - Toolbar: MSN Search Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Toolbar Suite\TB\02.05.0001.1119\en-us\msntb.dll
O4 - HKLM\..\Run: [NeroCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [CARPService] carpserv.exe
O4 - HKLM\..\Run: [Omnipage] C:\Program Files\ScanSoft\OmniPageSE\opware32.exe
O4 - HKLM\..\Run: [IntelliType] "C:\Program Files\Microsoft Hardware\Keyboard\type32.exe"
O4 - HKLM\..\Run: [MediaFace Integration] C:\Program Files\Fellowes\MediaFACE 4.0\SetHook.exe
O4 - HKLM\..\Run: [AVG7_CC] C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe /STARTUP
O4 - HKLM\..\Run: [AVG7_EMC] C:\PROGRA~1\Grisoft\AVGFRE~1\avgemc.exe
O4 - HKLM\..\Run: [NVMixerTray] "C:\Program Files\NVIDIA Corporation\NvMixer\NVMixerTray.exe"
O4 - HKLM\..\Run: [SpeedTouch USB Diagnostics] "C:\Program Files\Thomson\SpeedTouch USB\Dragdiag.exe" /icon
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\System32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [eBayToolbar] C:\Program Files\eBay\eBay Toolbar2\eBayTBDaemon.exe
O4 - HKLM\..\Run: [DataLayer] C:\Program Files\Common Files\PCSuite\DataLayer\DataLayer.exe
O4 - HKLM\..\Run: [PCSuiteTrayApplication] C:\Program Files\Nokia\Nokia PC Suite 6\LaunchApplication.exe -onlytray
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [InstantAccess] C:\PROGRA~1\TEXTBR~1.0\Bin\INSTAN~1.EXE /h
O4 - HKLM\..\Run: [RegisterDropHandler] C:\PROGRA~1\TEXTBR~1.0\Bin\REGIST~1.EXE
O4 - HKLM\..\Run: [gcasServ] "C:\Program Files\Microsoft AntiSpyware\gcasServ.exe"
O4 - HKLM\..\Run: [THGuard] "C:\Program Files\TrojanHunter 4.2\THGuard.exe"
O4 - HKLM\..\Run: [WildTangent CDA] RUNDLL32.exe "C:\Program Files\WildTangent\Apps\CDA\cdaEngine0400.dll",cdaEngineMain
O4 - HKLM\..\Run: [ViewMgr] C:\Program Files\Viewpoint\Viewpoint Manager\ViewMgr.exe
O4 - HKLM\..\Run: [updater] C:\Program Files\Common files\Keenware\wupdater.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\j2re1.4.2_04\bin\jusched.exe
O4 - HKLM\..\Run: [Preview AdService] C:\Program Files\Preview AdService\PrevAdServ.exe
O4 - HKLM\..\Run: [P2P Networking] C:\WINDOWS\System32\P2P Networking\P2P Networking.exe /AUTOSTART
O4 - HKLM\..\Run: [Open Site] C:\Program Files\Open Site\opnste.exe
O4 - HKLM\..\Run: [MyWebSearch Email Plugin] C:\PROGRA~1\MYWEBS~1\bar\1.bin\mwsoemon.exe
O4 - HKLM\..\Run: [Logitech Utility] Logi_MwX.Exe
O4 - HKLM\..\Run: [knDEFN50] C:\documents and settings\jemma\local settings\temp\knDEFN50.exe
O4 - HKLM\..\Run: [KeenValue] C:\Program Files\Common files\KeenValue\KeenValue.exe
O4 - HKLM\..\Run: [KAZAA] C:\Program Files\Kazaa\kazaa.exe /SYSTRAY
O4 - HKLM\..\Run: [gah95on6] C:\WINDOWS\system32\gah95on6.exe
O4 - HKLM\..\Run: [BullsEye Network] C:\Program Files\BullsEye Network\bin\bargains.exe
O4 - HKLM\..\Run: [AltnetPointsManager] C:\Program Files\Altnet\Points Manager\Points Manager.exe -s
O4 - HKLM\..\Run: [8C.tmp.exe] C:\DOCUME~1\Daddy\LOCALS~1\Temp\8C.tmp.exe
O4 - HKLM\..\Run: [8C.tmp] C:\DOCUME~1\Daddy\LOCALS~1\Temp\8C.tmp.exe
O4 - HKLM\..\RunServices: [RegisterDropHandler] C:\PROGRA~1\TEXTBR~1.0\Bin\REGIST~1.EXE
O4 - HKCU\..\Run: [a-squared] "C:\Program Files\a-squared\a2guard.exe"
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [AIM] C:\Program Files\AIM95\aim.exe -cnetwait.odl
O4 - Startup: PhotoWise QuickLink.lnk = C:\Program Files\PhotoWise\quicklnk.exe
O4 - Startup: reminder-ScanSoft Product Registration.lnk = C:\Program Files\TextBridge Pro 9.0\Bin\Ereg\Remind32.exe
O4 - Global Startup: Adobe Gamma Loader.lnk = ?
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: eBay Toolbar.LNK = ?
O4 - Global Startup: EPSON Status Monitor 3 Environment Check 2.lnk = C:\WINDOWS\system32\spool\drivers\w32x86\3\E_SRCV02.EXE
O4 - Global Startup: FotoStation Easy AutoLaunch.lnk = ?
O4 - Global Startup: KeenValue.lnk = C:\RECYCLER\S-1-5-21-3680142182-866350554-2042815770-1007\Dc6.bmp
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE
O4 - Global Startup: MyWebSearch Email Plugin.lnk = C:\Program Files\MyWebSearch\bar\1.bin\MWSOEMON.EXE
O4 - Global Startup: NkvMon.exe.lnk = C:\Program Files\Nikon\NkView6\NkvMon.exe
O4 - Global Startup: updater.lnk = C:\RECYCLER\S-1-5-21-3680142182-866350554-2042815770-1007\Dc41.htm
O4 - Global Startup: Windows Desktop Search.lnk = C:\Program Files\MSN Toolbar Suite\DS\02.05.0001.1119\en-us\bin\WindowsSearch.exe
O8 - Extra context menu item: &eBay Search -
res://C:\Program Files\eBay\eBay Toolbar2\eBayTb.dll/RCSearch.html
O8 - Extra context menu item: &MSN Search -
res://C:\Program Files\MSN Toolbar Suite\TB\02.05.0001.1119\en-us\msntb.dll/search.htm
O8 - Extra context menu item: Open in new background tab -
res://C:\Program Files\MSN Toolbar Suite\TAB\02.05.0001.1119\en-us\msntabres.dll/229?cc3cdc9e644d432b839dac6d33a39036
O8 - Extra context menu item: Open in new foreground tab -
res://C:\Program Files\MSN Toolbar Suite\TAB\02.05.0001.1119\en-us\msntabres.dll/230?cc3cdc9e644d432b839dac6d33a39036
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\WINDOWS\System32\msjava.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\WINDOWS\System32\msjava.dll
O9 - Extra button: Messenger - {4528BBE0-4E08-11D5-AD55-00010333D0AD} - C:\PROGRA~1\Yahoo!\Common\yhexbmesuk.dll
O9 - Extra 'Tools' menuitem: Yahoo! Messenger - {4528BBE0-4E08-11D5-AD55-00010333D0AD} - C:\PROGRA~1\Yahoo!\Common\yhexbmesuk.dll
O9 - Extra button: DesktopUpdate - {76DD9E77-F06C-4471-AB6C-CF03C5C6B5B0} - C:\WINDOWS\System32\DesktopUpdate (file missing)
O9 - Extra button: AIM - {AC9E2541-2814-11d5-BC6D-00B0D0A1DE45} - C:\Program Files\AIM95\aim.exe
O9 - Extra button: Voiceglo directory - {C9B8ABB6-1CC3-4957-9CA3-053036B2EE3A} - C:\Documents and Settings\All Users\Desktop\Glophone.lnk (file missing)
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O12 - Plugin for .spop: C:\Program Files\Internet Explorer\Plugins\NPDocBox.dll
O14 - IERESET.INF: START_PAGE_URL=http://www.ntlworld.com
O15 - Trusted Zone:
http://www.ntlworld.com
O16 - DPF: RaptisoftGameLoader -
http://www.miniclip.com/hamsterball/rap ... loader.cab
O16 - DPF: Yahoo! Pyramids -
http://download.games.yahoo.com/games/c ... pyt1_x.cab
O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) -
http://messenger.zone.msn.com/binary/ms ... b31267.cab
O16 - DPF: {01234567-1234-1234-1234-012345678921} -
http://register.voiceglo.com/neoblue.cab
O16 - DPF: {14B87622-7E19-4EA8-93B3-97215F77A6BC} (MessengerStatsClient Class) -
http://messenger.zone.msn.com/binary/Me ... b31267.cab
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) -
http://go.microsoft.com/fwlink/?linkid=39204
O16 - DPF: {1754A1BA-A1DF-4F10-B199-AA55AA1A120F} (InstallerBehaviorFactory Class) -
https://signup.msn.com/pages/MsnInstC.cab
O16 - DPF: {193C772A-87BE-4B19-A7BB-445B226FE9A1} (ewidoOnlineScan Control) -
http://download.ewido.net/ewidoOnlineScan.cab
O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} (Minesweeper Flags Class) -
http://messenger.zone.msn.com/binary/Mi ... b31267.cab
O16 - DPF: {30528230-99F7-4BB4-88D8-FA1D4F56A2AB} (YInstStarter Class) - C:\Program Files\Yahoo!\Common\yinsthelper.dll
O16 - DPF: {3AF4DACE-36ED-42EF-9DFC-ADC34DA30CFF} (PatchInstaller.Installer) -
file://D:\content\include\XPPatchInstaller.CAB
O16 - DPF: {4C39376E-FA9D-4349-BACC-D305C1750EF3} (EPUImageControl Class) -
http://tools.ebayimg.com/eps/wl/activex ... 0-3-36.cab
O16 - DPF: {4E62C4DE-627D-4604-B157-4B7D6B09F02E} (AccountTracking Profile Manager Class) -
https://moneymanager.egg.com/Pinsafe/ac ... acking.cab
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) -
http://groups.msn.com/controls/PhotoUC/MsnPUpld.cab
O16 - DPF: {5D1E3FA5-64FF-4387-9418-F1D67AFB2247} (MaxisSuperstarTeleX Control) -
http://thesims.ea.com/teleport/supersta ... rTeleX.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) -
http://v5.windowsupdate.microsoft.com/v ... 4233619125
O16 - DPF: {665585FD-2068-4C5E-A6D3-53AC3270ECD4} (FileSharingCtrl Class) -
http://appdirectory.messenger.msn.com/A ... ngctrl.cab
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) -
http://update.microsoft.com/microsoftup ... 6043611062
O16 - DPF: {6E5A37BF-FD42-463A-877C-4EB7002E68AE} (Housecall ActiveX 6.5) -
http://eu-housecall.trendmicro-europe.c ... hcImpl.cab
O16 - DPF: {6F750200-1362-4815-A476-88533DE61D0C} (Ofoto Upload Manager Class) -
http://www.ofoto.co.uk/downloads/BUM/BU ... ofupld.cab
O16 - DPF: {8B1BC605-C593-4865-8F5B-05517F0CD0BB} (MSSecurityAdvisorCD Class) -
file://D:\Content\include\msSecUcd.cab
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) -
http://messenger.zone.msn.com/binary/Me ... b31267.cab
O16 - DPF: {91433D86-9F27-402C-B5E3-DEBDD122C339} -
http://www.netvenda.com/sites/gamc16-gb ... ames10.cab
O16 - DPF: {A8F2B9BD-A6A0-486A-9744-18920D898429} (ScorchPlugin Class) -
http://www.sibelius.com/download/softwa ... Plugin.cab
O16 - DPF: {AFDD01B0-7ABB-11D9-9669-0800200C9A66} (MFInstall Class) -
http://c.ancestry.com/MFInstall/MFInstall.cab
O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) -
http://messenger.msn.com/download/msnme ... loader.cab
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (ZoneIntro Class) -
http://messenger.zone.msn.com/binary/ZI ... b32846.cab
O16 - DPF: {B9191F79-5613-4C76-AA2A-398534BB8999} (YAddBook Class) -
http://us.dl1.yimg.com/download.yahoo.c ... mplete.cab
O16 - DPF: {CE3409C4-9E26-4F8E-83E4-778498F9E7B4} (PB_Uploader Class) -
http://static.photobox.co.uk/sg/common/uploader.cab
O16 - DPF: {D68217F4-1DF9-45C1-BFA6-61DBD5464527} (Genealogy Browser) -
http://66.119.139.74/cabs/zinst.cab
O16 - DPF: {E6187999-9FEC-46A1-A20F-F4CA977D5643} (ZoneChess Object) -
http://messenger.zone.msn.com/binary/Chess.cab31267.cab
O16 - DPF: {F58E1CEF-A068-4C15-BA5E-587CAF3EE8C6} (MSN Chat Control 4.5) -
http://chat.msn.com/bin/msnchat45.cab
O16 - DPF: {F6BF0D00-0B2A-4A75-BF7B-F385591623AF} (Solitaire Showdown Class) -
http://messenger.zone.msn.com/binary/So ... b31267.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{9DF18414-76AB-4C39-8D17-267B3FEBE731}: NameServer = 80.225.252.58 80.225.252.50
O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe
O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe
O23 - Service: EPSON Printer Status Agent2 (EPSONStatusAgent2) - SEIKO EPSON CORPORATION - C:\Program Files\Common Files\EPSON\EBAPI\SAgent2.exe
O23 - Service: ewido security suite control - ewido networks - C:\Program Files\ewido anti-malware\ewidoctrl.exe
O23 - Service: ewido security suite guard - ewido networks - C:\Program Files\ewido anti-malware\ewidoguard.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iPodService - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
Scanned at: 9:01:56 PM on: 1/3/2006
-- Scan 1 ---------------------------
About:Buster Version 4.0
Reference List : 19
No ADS found on system
Removed 2 Random Key Entries
Attempted Clean Of Temp folder.
Pages Reset... Done!
-- Scan 2 ---------------------------
About:Buster Version 4.0
Reference List : 19
No ADS found on system
Attempted Clean Of Temp folder.
Pages Reset... Done!
---------------------------------------------------------
ewido anti-malware - Scan report
---------------------------------------------------------
+ Created on: 10:45:50 PM, 1/3/2006
+ Report-Checksum: 773F1231
+ Scan result:
HKLM\SOFTWARE\Altnet -> Spyware.Altnet : Error during cleaning
HKLM\SOFTWARE\Altnet\Dashboard -> Spyware.Altnet : Error during cleaning
HKLM\SOFTWARE\Altnet\Dashboard\Messages -> Spyware.Altnet : Error during cleaning
HKLM\SOFTWARE\Altnet\Dashboard\Settings -> Spyware.Altnet : Error during cleaning
HKLM\SOFTWARE\Classes\CLSID\{18EAFE7B-570B-346C-ADEF-9CDDA8A1986F} -> Spyware.CoolWebSearch : Cleaned with backup
HKLM\SOFTWARE\Classes\CLSID\{3507B32F-B4F9-0B6B-5168-A74196010FA0} -> Spyware.CoolWebSearch : Cleaned with backup
HKLM\SOFTWARE\Classes\CLSID\{632429FC-7132-FBF7-255C-EAC2A7424B37} -> Spyware.CoolWebSearch : Cleaned with backup
HKLM\SOFTWARE\Classes\CLSID\{676575DD-4D46-911D-8037-9B10D6EE8BB5} -> Spyware.CoolWebSearch : Cleaned with backup
HKLM\SOFTWARE\Classes\CLSID\{677E5988-9E47-B4BE-8002-B86CEAD32154} -> Spyware.CoolWebSearch : Cleaned with backup
HKLM\SOFTWARE\Classes\CLSID\{8BBD3FEB-8F56-FA45-F83E-0589E7E09434} -> Spyware.CoolWebSearch : Cleaned with backup
HKLM\SOFTWARE\Classes\CLSID\{AEBAA38C-A5F4-D0FD-904B-5A1C7FCA25AF} -> Spyware.CoolWebSearch : Cleaned with backup
HKLM\SOFTWARE\Classes\CLSID\{BC0DC8BD-646D-FA46-8739-116B4F8B8228} -> Spyware.CoolWebSearch : Cleaned with backup
HKLM\SOFTWARE\Classes\CLSID\{BCA18F7D-4CAB-D300-286E-432722FFB0FB} -> Spyware.CoolWebSearch : Cleaned with backup
HKLM\SOFTWARE\Classes\CLSID\{C6984483-D454-B316-4040-575B9FB13D11} -> Spyware.CoolWebSearch : Cleaned with backup
HKLM\SOFTWARE\Classes\CLSID\{CDEC09E6-8009-FC50-5FF8-83F317343213} -> Spyware.CoolWebSearch : Cleaned with backup
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{632429FC-7132-FBF7-255C-EAC2A7424B37} -> Spyware.CoolWebSearch : Cleaned with backup
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AEBAA38C-A5F4-D0FD-904B-5A1C7FCA25AF} -> Spyware.CoolWebSearch : Cleaned with backup
HKU\S-1-5-21-3680142182-866350554-2042815770-1005\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{632429FC-7132-FBF7-255C-EAC2A7424B37} -> Spyware.CoolWebSearch : Cleaned with backup
HKU\S-1-5-21-3680142182-866350554-2042815770-1005\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{AEBAA38C-A5F4-D0FD-904B-5A1C7FCA25AF} -> Spyware.CoolWebSearch : Cleaned with backup
C:\Documents and Settings\Daddy\Cookies\daddy@247realmedia[2].txt -> Spyware.Cookie.247realmedia : Cleaned with backup
C:\Documents and Settings\Daddy\Cookies\daddy@2o7[2].txt -> Spyware.Cookie.2o7 : Cleaned with backup
C:\Documents and Settings\Daddy\Cookies\daddy@ad.yieldmanager[2].txt -> Spyware.Cookie.Yieldmanager : Cleaned with backup
C:\Documents and Settings\Daddy\Cookies\daddy@adtech[1].txt -> Spyware.Cookie.Adtech : Cleaned with backup
C:\Documents and Settings\Daddy\Cookies\daddy@com[2].txt -> Spyware.Cookie.Com : Cleaned with backup
C:\Documents and Settings\Daddy\Cookies\daddy@e-2dj6wgkyopazadq.stats.esomniture[1].txt -> Spyware.Cookie.Esomniture : Cleaned with backup
C:\Documents and Settings\Daddy\Cookies\daddy@e-2dj6wjl4ukcpgbo.stats.esomniture[1].txt -> Spyware.Cookie.Esomniture : Cleaned with backup
C:\Documents and Settings\Daddy\Cookies\daddy@e-2dj6wjlocpdjwdo.stats.esomniture[2].txt -> Spyware.Cookie.Esomniture : Cleaned with backup
C:\Documents and Settings\Daddy\Cookies\daddy@mediaplex[2].txt -> Spyware.Cookie.Mediaplex : Cleaned with backup
C:\Documents and Settings\Daddy\Cookies\daddy@microsofteup.112.2o7[1].txt -> Spyware.Cookie.2o7 : Cleaned with backup
C:\Documents and Settings\Daddy\Cookies\daddy@overture[1].txt -> Spyware.Cookie.Overture : Cleaned with backup
C:\Documents and Settings\Daddy\Cookies\daddy@statse.webtrendslive[1].txt -> Spyware.Cookie.Webtrendslive : Cleaned with backup
C:\Documents and Settings\Jemma\Cookies\jemma@247realmedia[1].txt -> Spyware.Cookie.247realmedia : Cleaned with backup
C:\Documents and Settings\Jemma\Cookies\jemma@2o7[2].txt -> Spyware.Cookie.2o7 : Cleaned with backup
C:\Documents and Settings\Jemma\Cookies\jemma@advertising[1].txt -> Spyware.Cookie.Advertising : Cleaned with backup
C:\Documents and Settings\Jemma\Cookies\jemma@adviva[2].txt -> Spyware.Cookie.Adviva : Cleaned with backup
C:\Documents and Settings\Jemma\Cookies\jemma@atdmt[2].txt -> Spyware.Cookie.Atdmt : Cleaned with backup
C:\Documents and Settings\Jemma\Cookies\jemma@burstnet[2].txt -> Spyware.Cookie.Burstnet : Cleaned with backup
C:\Documents and Settings\Jemma\Cookies\jemma@doubleclick[1].txt -> Spyware.Cookie.Doubleclick : Cleaned with backup
C:\Documents and Settings\Jemma\Cookies\jemma@mediaplex[1].txt -> Spyware.Cookie.Mediaplex : Cleaned with backup
C:\Documents and Settings\Jemma\Cookies\jemma@tradedoubler[1].txt -> Spyware.Cookie.Tradedoubler : Cleaned with backup
C:\Documents and Settings\Mummy\Cookies\mummy@adopt.euroclick[1].txt -> Spyware.Cookie.Euroclick : Cleaned with backup
C:\Documents and Settings\Mummy\Cookies\mummy@atdmt[2].txt -> Spyware.Cookie.Atdmt : Cleaned with backup
C:\Documents and Settings\Mummy\Cookies\mummy@bluestreak[1].txt -> Spyware.Cookie.Bluestreak : Cleaned with backup
C:\Documents and Settings\Mummy\Cookies\mummy@doubleclick[1].txt -> Spyware.Cookie.Doubleclick : Cleaned with backup
C:\Documents and Settings\Sarah\Cookies\sarah@adopt.euroclick[1].txt -> Spyware.Cookie.Euroclick : Cleaned with backup
C:\Documents and Settings\Sarah\Cookies\sarah@ads.pointroll[1].txt -> Spyware.Cookie.Pointroll : Cleaned with backup
C:\Documents and Settings\Sarah\Cookies\sarah@atdmt[2].txt -> Spyware.Cookie.Atdmt : Cleaned with backup
C:\Documents and Settings\Sarah\Cookies\sarah@fastclick[1].txt -> Spyware.Cookie.Fastclick : Cleaned with backup
C:\Documents and Settings\Sarah\Cookies\sarah@media.fastclick[2].txt -> Spyware.Cookie.Fastclick : Cleaned with backup
C:\WINDOWS\addir.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addlg32.exe -> Downloader.Agent.td : Cleaned with backup
C:\WINDOWS\addtg.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addvf32.exe -> Downloader.Agent.td : Cleaned with backup
C:\WINDOWS\apigg32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apiqd.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apptt32.exe -> Downloader.Agent.td : Cleaned with backup
C:\WINDOWS\crcd.exe -> Downloader.Agent.td : Cleaned with backup
C:\WINDOWS\crdm.exe -> Downloader.Agent.td : Cleaned with backup
C:\WINDOWS\crev.exe -> Downloader.Agent.td : Cleaned with backup
C:\WINDOWS\crlc32.exe -> Downloader.Agent.td : Cleaned with backup
C:\WINDOWS\crrh.exe -> Downloader.Agent.td : Cleaned with backup
C:\WINDOWS\d3ai.exe -> Downloader.Agent.td : Cleaned with backup
C:\WINDOWS\d3ct32.exe -> Downloader.Agent.td : Cleaned with backup
C:\WINDOWS\d3il32.exe -> Downloader.Agent.td : Cleaned with backup
C:\WINDOWS\d3zj32.exe -> Downloader.Agent.td : Cleaned with backup
C:\WINDOWS\d3zw32.exe -> Downloader.Agent.td : Cleaned with backup
C:\WINDOWS\ieev.exe -> Downloader.Agent.td : Cleaned with backup
C:\WINDOWS\iewz.exe -> Downloader.Agent.td : Cleaned with backup
C:\WINDOWS\ipnt.exe -> Downloader.Agent.td : Cleaned with backup
C:\WINDOWS\ipol32.exe -> Downloader.Agent.td : Cleaned with backup
C:\WINDOWS\ipte.exe -> Downloader.Agent.td : Cleaned with backup
C:\WINDOWS\javagw32.exe -> Downloader.Agent.td : Cleaned with backup
C:\WINDOWS\javakr.exe -> Downloader.Agent.td : Cleaned with backup
C:\WINDOWS\javaub32.exe -> Downloader.Agent.td : Cleaned with backup
C:\WINDOWS\javaul32.exe -> Downloader.Agent.td : Cleaned with backup
C:\WINDOWS\mfcew32.exe -> Downloader.Agent.td : Cleaned with backup
C:\WINDOWS\mfciu32.exe -> Downloader.Agent.td : Cleaned with backup
C:\WINDOWS\mfcix.exe -> Downloader.Agent.td : Cleaned with backup
C:\WINDOWS\mfcut.exe -> Downloader.Agent.td : Cleaned with backup
C:\WINDOWS\mfcux32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\msem.exe -> Downloader.Agent.td : Cleaned with backup
C:\WINDOWS\msgn.exe -> Downloader.Agent.td : Cleaned with backup
C:\WINDOWS\msps32.exe -> Downloader.Agent.td : Cleaned with backup
C:\WINDOWS\msrd.exe -> Downloader.Agent.td : Cleaned with backup
C:\WINDOWS\msyf32.exe -> Downloader.Agent.td : Cleaned with backup
C:\WINDOWS\mszr32.exe -> Downloader.Agent.td : Cleaned with backup
C:\WINDOWS\netel.exe -> Downloader.Agent.td : Cleaned with backup
C:\WINDOWS\netmc32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\netpo32.exe -> Downloader.Agent.td : Cleaned with backup
C:\WINDOWS\netqe.exe -> Downloader.Agent.td : Cleaned with backup
C:\WINDOWS\nettz32.exe -> Downloader.Agent.td : Cleaned with backup
C:\WINDOWS\ntqe.exe -> Downloader.Agent.td : Cleaned with backup
C:\WINDOWS\sdkac32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\sdkeb.exe -> Downloader.Agent.td : Cleaned with backup
C:\WINDOWS\sdkmb.exe -> Downloader.Agent.td : Cleaned with backup
C:\WINDOWS\sdknm.exe -> Downloader.Agent.td : Cleaned with backup
C:\WINDOWS\stub75.ini:zqges -> Downloader.Agent.bc : Cleaned with backup
C:\WINDOWS\sysej.exe -> Downloader.Agent.td : Cleaned with backup
C:\WINDOWS\sysjk.exe -> Downloader.Agent.td : Cleaned with backup
C:\WINDOWS\system32\addew32.exe -> Downloader.Agent.td : Cleaned with backup
C:\WINDOWS\system32\addfr32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\system32\addhg.exe -> Downloader.Agent.td : Cleaned with backup
C:\WINDOWS\system32\addig.exe -> Downloader.Agent.td : Cleaned with backup
C:\WINDOWS\system32\addiv.exe -> Downloader.Agent.td : Cleaned with backup
C:\WINDOWS\system32\addtw32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\system32\addyu.exe -> Downloader.Agent.td : Cleaned with backup
C:\WINDOWS\system32\apile.exe -> Downloader.Agent.td : Cleaned with backup
C:\WINDOWS\system32\apitl.exe -> Downloader.Agent.td : Cleaned with backup
C:\WINDOWS\system32\apiue.exe -> Downloader.Agent.td : Cleaned with backup
C:\WINDOWS\system32\apizg.exe -> Downloader.Agent.td : Cleaned with backup
C:\WINDOWS\system32\appjj.exe -> Downloader.Agent.td : Cleaned with backup
C:\WINDOWS\system32\appmj.exe -> Downloader.Agent.td : Cleaned with backup
C:\WINDOWS\system32\atlas32.exe -> Downloader.Agent.td : Cleaned with backup
C:\WINDOWS\system32\atlhh.exe -> Downloader.Agent.td : Cleaned with backup
C:\WINDOWS\system32\atloe32.exe -> Downloader.Agent.td : Cleaned with backup
C:\WINDOWS\system32\crde.exe -> Downloader.Agent.td : Cleaned with backup
C:\WINDOWS\system32\crhw32.exe -> Downloader.Agent.td : Cleaned with backup
C:\WINDOWS\system32\crjq.exe -> Downloader.Agent.td : Cleaned with backup
C:\WINDOWS\system32\cruf.exe -> Downloader.Agent.td : Cleaned with backup
C:\WINDOWS\system32\crzt32.exe -> Downloader.Agent.td : Cleaned with backup
C:\WINDOWS\system32\d3ok.exe -> Downloader.Agent.td : Cleaned with backup
C:\WINDOWS\system32\d3om.exe -> Downloader.Agent.td : Cleaned with backup
C:\WINDOWS\system32\d3ow32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\system32\d3uk32.exe -> Downloader.Agent.td : Cleaned with backup
C:\WINDOWS\system32\d3wd32.exe -> Downloader.Agent.td : Cleaned with backup
C:\WINDOWS\system32\iege.exe -> Downloader.Agent.td : Cleaned with backup
C:\WINDOWS\system32\iepp.exe -> Downloader.Agent.td : Cleaned with backup
C:\WINDOWS\system32\ieuz.exe -> Downloader.Agent.td : Cleaned with backup
C:\WINDOWS\system32\ipho32.exe -> Downloader.Agent.td : Cleaned with backup
C:\WINDOWS\system32\ipmk32.exe -> Downloader.Agent.td : Cleaned with backup
C:\WINDOWS\system32\ipmy.exe -> Downloader.Agent.td : Cleaned with backup
C:\WINDOWS\system32\ipnz.exe -> Downloader.Agent.td : Cleaned with backup
C:\WINDOWS\system32\iprc.exe -> Downloader.Agent.td : Cleaned with backup
C:\WINDOWS\system32\ipuu32.exe -> Downloader.Agent.td : Cleaned with backup
C:\WINDOWS\system32\javafs32.exe -> Downloader.Agent.td : Cleaned with backup
C:\WINDOWS\system32\javajv.exe -> Downloader.Agent.td : Cleaned with backup
C:\WINDOWS\system32\javapo32.exe -> Downloader.Agent.td : Cleaned with backup
C:\WINDOWS\system32\javatg.exe -> Downloader.Agent.td : Cleaned with backup
C:\WINDOWS\system32\mfcga32.exe -> Downloader.Agent.td : Cleaned with backup
C:\WINDOWS\system32\mfcln.exe -> Downloader.Agent.td : Cleaned with backup
C:\WINDOWS\system32\mszr32.exe -> Downloader.Agent.td : Cleaned with backup
C:\WINDOWS\system32\netct32.exe -> Downloader.Agent.td : Cleaned with backup
C:\WINDOWS\system32\netjc.exe -> Downloader.Agent.td : Cleaned with backup
C:\WINDOWS\system32\netkv32.exe -> Downloader.Agent.td : Cleaned with backup
C:\WINDOWS\system32\netpb32.exe -> Downloader.Agent.td : Cleaned with backup
C:\WINDOWS\system32\ntih.exe -> Downloader.Agent.td : Cleaned with backup
C:\WINDOWS\system32\sdkud32.exe -> Downloader.Agent.td : Cleaned with backup
C:\WINDOWS\system32\sdkuo.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\system32\sysfv32.exe -> Downloader.Agent.td : Cleaned with backup
C:\WINDOWS\system32\sysnp.exe -> Downloader.Agent.td : Cleaned with backup
C:\WINDOWS\system32\sysoy.exe -> Downloader.Agent.td : Cleaned with backup
C:\WINDOWS\system32\sysqm.exe -> Downloader.Agent.td : Cleaned with backup
C:\WINDOWS\system32\syszr32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\system32\wincu32.exe -> Downloader.Agent.td : Cleaned with backup
C:\WINDOWS\system32\winej.exe -> Downloader.Agent.td : Cleaned with backup
C:\WINDOWS\system32\winhe32.exe -> Downloader.Agent.td : Cleaned with backup
C:\WINDOWS\system32\winnv.exe -> Downloader.Agent.td : Cleaned with backup
C:\WINDOWS\sysxi.exe -> Downloader.Agent.td : Cleaned with backup
C:\WINDOWS\UNNERO(2).cfg:aywve -> Downloader.Agent.td : Cleaned with backup
C:\WINDOWS\UNNERO(3).cfg:aywve -> Downloader.Agent.td : Cleaned with backup
C:\WINDOWS\UNNERO.cfg:aywve -> Downloader.Agent.td : Cleaned with backup
C:\WINDOWS\winfs.exe -> Downloader.Agent.td : Cleaned with backup
C:\WINDOWS\winkx.exe -> Downloader.Agent.td : Cleaned with backup
C:\WINDOWS\winoe32.exe -> Downloader.Agent.td : Cleaned with backup
C:\WINDOWS\winrh32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\winvl.exe -> Downloader.Agent.td : Cleaned with backup
C:\WINDOWS\__delete_on_reboot__winzj32.dll:fdyme -> Downloader.Agent.td : Cleaned with backup
C:\WINDOWS\__delete_on_reboot__winzj32.dll:ubvti -> Downloader.Agent.bc : Cleaned with backup
::Report End