Velocity Reviews - Computer Hardware Reviews

Velocity Reviews > Newsgroups > Computing > Computer Security > A Hijack This log I need help with

Reply
Thread Tools

A Hijack This log I need help with

 
 
The Peasant
Guest
Posts: n/a
 
      02-20-2004
Hi,

A family member decided to download Messenger Plus and a few other
programs. Since then all sorts of rubbish has appeared on my computer.
After using AdAware, Spybot and Spy Sweeper, I'm still having a few
problems (eg mywebsearchnow appearing regularly, casino pop ups etc).
This is my log for Hijack This - have had problems accessing the
recommended forums to discuss this online (it just goes to the
mywebsearch now page!). Was wondering what I can safely delete.

Thanks!


Logfile of HijackThis v1.97.7
Scan saved at 1:37:29 PM, on 20/02/2004
Platform: Windows XP SP1 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\System32\GEARSEC.EXE
C:\Program Files\Norton AntiVirus\navapsvc.exe
C:\Program Files\Norton Internet Security\NISUM.EXE
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Sophos SWEEP for NT\SWNETSUP.EXE
C:\Program Files\Norton Internet Security\NISSERV.EXE
C:\Program Files\Norton Internet Security\SymProxySvc.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\htpatch.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\Program Files\Ahead\InCD\InCD.exe
C:\Program Files\Norton Internet Security\IAMAPP.EXE
C:\PROGRA~1\NORTON~1\navapw32.exe
C:\Program Files\Messenger Plus! 2\MsgPlus.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\QuickTime\qttask.exe
C:\PROGRA~1\TEAMSP~1\TypeRoad.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpotdd01.exe
C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hposol08.exe
C:\Program Files\Microsoft Office\Office\1033\OLFSNT40.EXE
C:\Program Files\WinZip\WZQKPICK.EXE
C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpoevm08.exe
C:\Program Files\Hewlett-Packard\Digital Imaging\Bin\hpoSTS08.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Downloads\HijackThis.exe

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page =
http://broadband.optusnet.com.au
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title =
Microsoft Internet Explorer provided by OptusNet
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Int ernet
Settings,ProxyServer = proxy.ozemail.com.au:8080
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Int ernet
Settings,ProxyOverride = 127.0.0.1
O2 - BHO: (no name) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} -
C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx
O2 - BHO: (no name) - {57B2C092-DD2B-4EE8-B912-ED990AC61883} -
C:\PROGRA~1\BIRDCA~1\idlepart.dll
O2 - BHO: (no name) - {A5366673-E8CA-11D3-9CD9-0090271D075B} -
C:\PROGRA~1\FlashGet\jccatch.dll
O2 - BHO: (no name) - {BDF3E430-B101-42AD-A544-FADC6B084872} -
C:\Program Files\Norton AntiVirus\NavShExt.dll
O3 - Toolbar: Norton AntiVirus -
{42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - C:\Program Files\Norton
AntiVirus\NavShExt.dll
O3 - Toolbar: FlashGet Bar - {E0E899AB-F487-11D5-8D29-0050BA6940E3} -
C:\PROGRA~1\FlashGet\fgiebar.dll
O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} -
C:\WINDOWS\System32\Msdxm.ocx
O4 - HKLM\..\Run: [HTpatch] C:\WINDOWS\htpatch.exe
O4 - HKLM\..\Run: [SiSUSBRG] C:\WINDOWS\SiSUSBrg.exe
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [NeroCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [InCD] C:\Program Files\Ahead\InCD\InCD.exe
O4 - HKLM\..\Run: [iamapp] C:\Program Files\Norton Internet
Security\IAMAPP.EXE
O4 - HKLM\..\Run: [NAV Agent] C:\PROGRA~1\NORTON~1\navapw32.exe
O4 - HKLM\..\Run: [MessengerPlus2] "C:\Program Files\Messenger Plus!
2\MsgPlus.exe"
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common
Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [iTunesHelper] C:\Program
Files\iTunes\iTunesHelper.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program
Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [stupidfunk] C:\PROGRA~1\TEAMSP~1\TypeRoad.exe
O4 - HKCU\..\Run: [MessengerPlus2] "C:\Program Files\Messenger Plus!
2\MsgPlus.exe" /WinStart
O4 - HKCU\..\Run: [Yahoo! Pager] C:\Program
Files\Yahoo!\Messenger\ypager.exe -quiet
O4 - HKCU\..\Run: [SpySweeper] C:\Program Files\Webroot\Spy
Sweeper\SpySweeper.exe /0
O4 - Global Startup: hpoddt01.exe.lnk = ?
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft
Office\Office10\OSA.EXE
O4 - Global Startup: officejet 6100.lnk = ?
O4 - Global Startup: Symantec Fax Starter Edition Port.lnk =
C:\Program Files\Microsoft Office\Office\1033\OLFSNT40.EXE
O4 - Global Startup: WinZip Quick Pick.lnk = C:\Program
Files\WinZip\WZQKPICK.EXE
O8 - Extra context menu item: Download All by FlashGet - C:\Program
Files\FlashGet\jc_all.htm
O8 - Extra context menu item: Download using FlashGet - C:\Program
Files\FlashGet\jc_link.htm
O8 - Extra context menu item: Yahoo! Dictionary - file:///C:\Program
Files\Yahoo!\Common/ycdict.htm
O8 - Extra context menu item: Yahoo! Search - file:///C:\Program
Files\Yahoo!\Common/ycsrch.htm
O9 - Extra button: FlashGet (HKLM)
O9 - Extra 'Tools' menuitem: &FlashGet (HKLM)
O9 - Extra button: Messenger (HKLM)
O9 - Extra 'Tools' menuitem: Messenger (HKLM)
O12 - Plugin for .spop: C:\Program Files\Internet
Explorer\Plugins\NPDocBox.dll
O16 - DPF: ConferenceRoom Java Client -
http://qld-chat.bigpond.com/java/cr.cab
O16 - DPF: Yahoo! Chat -
http://us.chat1.yimg.com/us.yimg.com.../c381/chat.cab
O16 - DPF: Yahoo! Literati -
http://download.games.yahoo.com/game...ts/y/tt0_x.cab
O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) -
http://messenger.zone.msn.com/binary/msgrchkr.cab
O16 - DPF: {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} (QuickTime Object) -
http://www.apple.com/qtactivex/qtplugin.cab
O16 - DPF: {166B1BCA-3F9C-11CF-8075-444553540000} (Shockwave ActiveX
Control) - http://download.macromedia.com/pub/s...irector/sw.cab
O16 - DPF: {1D4DB7D2-6EC9-47A3-BD87-1E41684E07BB} -
http://imgfarm.com/images/nocache/fu...tup1.0.0.6.cab
O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} (Minesweeper Flags
Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab
O16 - DPF: {2B323CD9-50E3-11D3-9466-00A0C9700498} (Yahoo! Audio
Conferencing) - http://us.chat1.yimg.com/us.yimg.com...45/yacscom.cab
O16 - DPF: {30528230-99F7-4BB4-88D8-FA1D4F56A2AB} (YInstStarter Class)
- http://download.yahoo.com/dl/installs/yinst.cab
O16 - DPF: {33564D57-0000-0010-8000-00AA00389B71} -
http://download.microsoft.com/downlo...22/wmv9VCM.CAB
O16 - DPF: {3E68E405-C6DE-49FF-83AE-41EE9F4C36CE} (Office Update
Installation Engine) -
http://office.microsoft.com/officeup...ntent/opuc.cab
O16 - DPF: {74D05D43-3236-11D4-BDCD-00C04F9A3B61} (HouseCall Control)
- http://a840.g.akamai.net/7/840/537/2...ll/xscan53.cab
O16 - DPF: {74FFE28D-2378-11D5-990C-006094235084} (IBM Access Support)
- http://www-306.ibm.com/pc/support/IbmEgath.cab
O16 - DPF: {80DD2229-B8E4-4C77-B72F-F22972D723EA} (AvxScanOnline
Control) - http://www.bitdefender.com/scan/Msie/bitdefender.cab
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D}
(MessengerStatsClient Class) -
http://messenger.zone.msn.com/binary...tatsClient.cab
O16 - DPF: {90C9629E-CD32-11D3-BBFB-00105A1F0D68} (InstallShield
International Setup Player) -
http://www.installengine.com/engine/isetup.cab
O16 - DPF: {97AFC0D9-660E-4ACE-B025-46FD64AE335A}
(EmailImport.EmailImportControl) -
http://www.friendster.com/import/emailimport.cab
O16 - DPF: {C2FCEF52-ACE9-11D3-BEBD-00105AA9B6AE} (Symantec RuFSI
Registry Information Class) -
http://security.symantec.com/SSC/Sha.../bin/cabsa.cab
O16 - DPF: {C3DFA998-A486-11D4-AA25-00C04F72DAEB} (MSN Photo Upload
Tool) - http://sc.groups.msn.com/controls/PhotoUC/MsnPUpld.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash
Object) - http://download.macromedia.com/pub/s...sh/swflash.cab
O16 - DPF: {EF791A6B-FC12-4C68-99EF-FB9E207A39E6} (McFreeScan Class) -
http://download.mcafee.com/molbin/is...17/mcfscan.cab
O16 - DPF: {EF99BD32-C1FB-11D2-892F-0090271D4F88} -
http://us.dl1.yimg.com/download.yaho...bio5_1_5_0.cab
O16 - DPF: {F6BF0D00-0B2A-4A75-BF7B-F385591623AF} (Solitaire Showdown
Class) - http://messenger.zone.msn.com/binary...reShowdown.cab
 
Reply With Quote
 
 
 
 
kulm_nd
Guest
Posts: n/a
 
      02-20-2004
You can search for what each startup listing means at
http://www.sysinfo.org/startuplist.php

--

************************************************

g-w


"The Peasant" <(E-Mail Removed)> wrote in message
news:(E-Mail Removed) om...
> Hi,
>
> A family member decided to download Messenger Plus and a few other
> programs. Since then all sorts of rubbish has appeared on my computer.
> After using AdAware, Spybot and Spy Sweeper, I'm still having a few
> problems (eg mywebsearchnow appearing regularly, casino pop ups etc).
> This is my log for Hijack This - have had problems accessing the
> recommended forums to discuss this online (it just goes to the
> mywebsearch now page!). Was wondering what I can safely delete.
>
> Thanks!
>
>
> Logfile of HijackThis v1.97.7
> Scan saved at 1:37:29 PM, on 20/02/2004
> Platform: Windows XP SP1 (WinNT 5.01.2600)
> MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106)
>
> Running processes:
> C:\WINDOWS\System32\smss.exe
> C:\WINDOWS\system32\winlogon.exe
> C:\WINDOWS\system32\services.exe
> C:\WINDOWS\system32\lsass.exe
> C:\WINDOWS\system32\svchost.exe
> C:\WINDOWS\System32\svchost.exe
> C:\WINDOWS\system32\spoolsv.exe
> C:\WINDOWS\System32\GEARSEC.EXE
> C:\Program Files\Norton AntiVirus\navapsvc.exe
> C:\Program Files\Norton Internet Security\NISUM.EXE
> C:\WINDOWS\System32\svchost.exe
> C:\Program Files\Sophos SWEEP for NT\SWNETSUP.EXE
> C:\Program Files\Norton Internet Security\NISSERV.EXE
> C:\Program Files\Norton Internet Security\SymProxySvc.exe
> C:\WINDOWS\Explorer.EXE
> C:\WINDOWS\htpatch.exe
> C:\WINDOWS\SOUNDMAN.EXE
> C:\Program Files\Ahead\InCD\InCD.exe
> C:\Program Files\Norton Internet Security\IAMAPP.EXE
> C:\PROGRA~1\NORTON~1\navapw32.exe
> C:\Program Files\Messenger Plus! 2\MsgPlus.exe
> C:\Program Files\Common Files\Real\Update_OB\realsched.exe
> C:\Program Files\iTunes\iTunesHelper.exe
> C:\Program Files\QuickTime\qttask.exe
> C:\PROGRA~1\TEAMSP~1\TypeRoad.exe
> C:\Program Files\iPod\bin\iPodService.exe
> C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpotdd01.exe
> C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hposol08.exe
> C:\Program Files\Microsoft Office\Office\1033\OLFSNT40.EXE
> C:\Program Files\WinZip\WZQKPICK.EXE
> C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpoevm08.exe
> C:\Program Files\Hewlett-Packard\Digital Imaging\Bin\hpoSTS08.exe
> C:\Program Files\Internet Explorer\iexplore.exe
> C:\Downloads\HijackThis.exe
>
> R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page =
> http://broadband.optusnet.com.au
> R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title =
> Microsoft Internet Explorer provided by OptusNet
> R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Int ernet
> Settings,ProxyServer = proxy.ozemail.com.au:8080
> R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Int ernet
> Settings,ProxyOverride = 127.0.0.1
> O2 - BHO: (no name) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} -
> C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx
> O2 - BHO: (no name) - {57B2C092-DD2B-4EE8-B912-ED990AC61883} -
> C:\PROGRA~1\BIRDCA~1\idlepart.dll
> O2 - BHO: (no name) - {A5366673-E8CA-11D3-9CD9-0090271D075B} -
> C:\PROGRA~1\FlashGet\jccatch.dll
> O2 - BHO: (no name) - {BDF3E430-B101-42AD-A544-FADC6B084872} -
> C:\Program Files\Norton AntiVirus\NavShExt.dll
> O3 - Toolbar: Norton AntiVirus -
> {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - C:\Program Files\Norton
> AntiVirus\NavShExt.dll
> O3 - Toolbar: FlashGet Bar - {E0E899AB-F487-11D5-8D29-0050BA6940E3} -
> C:\PROGRA~1\FlashGet\fgiebar.dll
> O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} -
> C:\WINDOWS\System32\Msdxm.ocx
> O4 - HKLM\..\Run: [HTpatch] C:\WINDOWS\htpatch.exe
> O4 - HKLM\..\Run: [SiSUSBRG] C:\WINDOWS\SiSUSBrg.exe
> O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
> O4 - HKLM\..\Run: [NeroCheck] C:\WINDOWS\system32\NeroCheck.exe
> O4 - HKLM\..\Run: [InCD] C:\Program Files\Ahead\InCD\InCD.exe
> O4 - HKLM\..\Run: [iamapp] C:\Program Files\Norton Internet
> Security\IAMAPP.EXE
> O4 - HKLM\..\Run: [NAV Agent] C:\PROGRA~1\NORTON~1\navapw32.exe
> O4 - HKLM\..\Run: [MessengerPlus2] "C:\Program Files\Messenger Plus!
> 2\MsgPlus.exe"
> O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common
> Files\Real\Update_OB\realsched.exe" -osboot
> O4 - HKLM\..\Run: [iTunesHelper] C:\Program
> Files\iTunes\iTunesHelper.exe
> O4 - HKLM\..\Run: [QuickTime Task] "C:\Program
> Files\QuickTime\qttask.exe" -atboottime
> O4 - HKLM\..\Run: [stupidfunk] C:\PROGRA~1\TEAMSP~1\TypeRoad.exe
> O4 - HKCU\..\Run: [MessengerPlus2] "C:\Program Files\Messenger Plus!
> 2\MsgPlus.exe" /WinStart
> O4 - HKCU\..\Run: [Yahoo! Pager] C:\Program
> Files\Yahoo!\Messenger\ypager.exe -quiet
> O4 - HKCU\..\Run: [SpySweeper] C:\Program Files\Webroot\Spy
> Sweeper\SpySweeper.exe /0
> O4 - Global Startup: hpoddt01.exe.lnk = ?
> O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft
> Office\Office10\OSA.EXE
> O4 - Global Startup: officejet 6100.lnk = ?
> O4 - Global Startup: Symantec Fax Starter Edition Port.lnk =
> C:\Program Files\Microsoft Office\Office\1033\OLFSNT40.EXE
> O4 - Global Startup: WinZip Quick Pick.lnk = C:\Program
> Files\WinZip\WZQKPICK.EXE
> O8 - Extra context menu item: Download All by FlashGet - C:\Program
> Files\FlashGet\jc_all.htm
> O8 - Extra context menu item: Download using FlashGet - C:\Program
> Files\FlashGet\jc_link.htm
> O8 - Extra context menu item: Yahoo! Dictionary - file:///C:\Program
> Files\Yahoo!\Common/ycdict.htm
> O8 - Extra context menu item: Yahoo! Search - file:///C:\Program
> Files\Yahoo!\Common/ycsrch.htm
> O9 - Extra button: FlashGet (HKLM)
> O9 - Extra 'Tools' menuitem: &FlashGet (HKLM)
> O9 - Extra button: Messenger (HKLM)
> O9 - Extra 'Tools' menuitem: Messenger (HKLM)
> O12 - Plugin for .spop: C:\Program Files\Internet
> Explorer\Plugins\NPDocBox.dll
> O16 - DPF: ConferenceRoom Java Client -
> http://qld-chat.bigpond.com/java/cr.cab
> O16 - DPF: Yahoo! Chat -
> http://us.chat1.yimg.com/us.yimg.com.../c381/chat.cab
> O16 - DPF: Yahoo! Literati -
> http://download.games.yahoo.com/game...ts/y/tt0_x.cab
> O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) -
> http://messenger.zone.msn.com/binary/msgrchkr.cab
> O16 - DPF: {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} (QuickTime Object) -
> http://www.apple.com/qtactivex/qtplugin.cab
> O16 - DPF: {166B1BCA-3F9C-11CF-8075-444553540000} (Shockwave ActiveX
> Control) -

http://download.macromedia.com/pub/s...irector/sw.cab
> O16 - DPF: {1D4DB7D2-6EC9-47A3-BD87-1E41684E07BB} -
>

http://imgfarm.com/images/nocache/fu...tup1.0.0.6.cab
> O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} (Minesweeper Flags
> Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab
> O16 - DPF: {2B323CD9-50E3-11D3-9466-00A0C9700498} (Yahoo! Audio
> Conferencing) -

http://us.chat1.yimg.com/us.yimg.com...45/yacscom.cab
> O16 - DPF: {30528230-99F7-4BB4-88D8-FA1D4F56A2AB} (YInstStarter Class)
> - http://download.yahoo.com/dl/installs/yinst.cab
> O16 - DPF: {33564D57-0000-0010-8000-00AA00389B71} -
>

http://download.microsoft.com/downlo...22/wmv9VCM.CAB
> O16 - DPF: {3E68E405-C6DE-49FF-83AE-41EE9F4C36CE} (Office Update
> Installation Engine) -
> http://office.microsoft.com/officeup...ntent/opuc.cab
> O16 - DPF: {74D05D43-3236-11D4-BDCD-00C04F9A3B61} (HouseCall Control)
> -

http://a840.g.akamai.net/7/840/537/2...ll/xscan53.cab
> O16 - DPF: {74FFE28D-2378-11D5-990C-006094235084} (IBM Access Support)
> - http://www-306.ibm.com/pc/support/IbmEgath.cab
> O16 - DPF: {80DD2229-B8E4-4C77-B72F-F22972D723EA} (AvxScanOnline
> Control) - http://www.bitdefender.com/scan/Msie/bitdefender.cab
> O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D}
> (MessengerStatsClient Class) -
> http://messenger.zone.msn.com/binary...tatsClient.cab
> O16 - DPF: {90C9629E-CD32-11D3-BBFB-00105A1F0D68} (InstallShield
> International Setup Player) -
> http://www.installengine.com/engine/isetup.cab
> O16 - DPF: {97AFC0D9-660E-4ACE-B025-46FD64AE335A}
> (EmailImport.EmailImportControl) -
> http://www.friendster.com/import/emailimport.cab
> O16 - DPF: {C2FCEF52-ACE9-11D3-BEBD-00105AA9B6AE} (Symantec RuFSI
> Registry Information Class) -
> http://security.symantec.com/SSC/Sha.../bin/cabsa.cab
> O16 - DPF: {C3DFA998-A486-11D4-AA25-00C04F72DAEB} (MSN Photo Upload
> Tool) - http://sc.groups.msn.com/controls/PhotoUC/MsnPUpld.cab
> O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash
> Object) -

http://download.macromedia.com/pub/s...sh/swflash.cab
> O16 - DPF: {EF791A6B-FC12-4C68-99EF-FB9E207A39E6} (McFreeScan Class) -
>

http://download.mcafee.com/molbin/is...17/mcfscan.cab
> O16 - DPF: {EF99BD32-C1FB-11D2-892F-0090271D4F88} -
> http://us.dl1.yimg.com/download.yaho...bio5_1_5_0.cab
> O16 - DPF: {F6BF0D00-0B2A-4A75-BF7B-F385591623AF} (Solitaire Showdown
> Class) - http://messenger.zone.msn.com/binary...reShowdown.cab



 
Reply With Quote
 
 
 
 
Jbob
Guest
Posts: n/a
 
      02-20-2004
Try this link: http://www.majorgeeks.com/download4086.html

Download the CoolWeb Search remover. Not sure if that is your problem but
this one is a nasty one.


 
Reply With Quote
 
 
 
Reply

Thread Tools

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Trackbacks are On
Pingbacks are On
Refbacks are Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
Hijack log- Help request joevan Computer Support 7 06-19-2005 03:08 AM
need help reading my hijack this log woodlandplayer Computer Support 6 08-20-2004 05:32 AM
Need help reading hijack this log woodlandplayer Computer Support 1 08-18-2004 06:53 PM
Need help on Hijack This log TyzNanny Computer Support 1 06-10-2004 10:31 PM
Hijack This Log - Please Help Rich Gabriele Computer Support 1 05-26-2004 06:19 PM



Advertisments