You can use this URL to check back later
http://www.spyandseek.com/mylog.php?lognum=20031
Result Good-Bad Search Hijack This Log File Entry
Bad0 - 11SS(10,014) - GS
Comments_(0)
R1 - HKCU\Software\Microsoft\InternetExplorer\Main,Default_Search_URL = about:blank
Bad0 - 11SS(5,552) - GS
Comments_(0)
R1 - HKCU\Software\Microsoft\InternetExplorer\Search,SearchAssistant = about:blank
Bad0 - 11SS(5,596) - GS
Comments_(0)
R1 - HKCU\Software\Microsoft\InternetExplorer\Search,CustomizeSearch = about:blank
Bad0 - 11SS(23) - GS
Comments_(0)
O3 - Toolbar: (no name) -{BA52B914-B692-46c4-B683-905236F6F655} - (no file)
Bad0 - 10SS(15) - GS
Comments_(0)
O4 - HKLM\..\Run: [IST Service] C:\ProgramFiles\ISTsvc\istsvc.exe
Bad0 - 1SS(5,552) - GS
Comments_(0)
R0 - HKLM\Software\Microsoft\InternetExplorer\Search,SearchAssistant = about:blank
Bad0 - 1SS(10,447) - GS
Comments_(0)
R1 - HKLM\Software\Microsoft\InternetExplorer\Main,Default_Page_URL = about:blank
Bad0 - 1SS(24) - GS
Comments_(0)
O16 - DPF: {88D758A3-D33B-45FD-91E3-67749B4057FA}(Sinstaller Class) -http://dm.screensavers.com/dm/installers/si/1/sinstaller.cab
Bad0 - 1SS(26,444) - GS
Comments_(0)
R3 - URLSearchHook: Yahoo! Toolbar -{EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)
Bad0 - 1SS(8,807) - GS
Comments_(1)
O1 - Hosts: ::1 localhost
Bad0 - 1SS(7,445) - GS
Comments_(0)
R1 - HKLM\Software\Microsoft\InternetExplorer\Search,(Default) = about:blank
Bad0 - 1SS(1) - GS
Comments_(0)
O8 - Extra context menu item: Web Rebates. -file://C:\ProgramFiles\WebRebates4\websrebates\webtrebates\toprC0.htm
Bad0 - 1SS(23) - GS
Comments_(0)
O16 - DPF: {8FCDF9D9-A28B-480F-8C3D-581F119A8AB8}-http://static.zangocash.com/cab/180solutions/ie/bridge-c24.cab
Unknown0 - 0SS(27) - GS
Comments_(0)
O16 - DPF: {6F750202-1362-4815-A476-88533DE61D0C}(Kodak Gallery Easy Upload Manager Class) -http://targetphoto.kodakgallery.com/downloads/BUM/BUM_WIN_IE_2/axofupld.cab
Unknown0 - 0SS(129) - GS
Comments_(0)
O4 - HKLM\..\Run: [PPort11reminder] "C:\ProgramFiles\ScanSoft\PaperPort\Ereg\ereg.exe" -r"C:\Documents and Settings\All Users\ApplicationData\ScanSoft\PaperPort\11\Config\Ereg\ereg.ini"
Unknown0 - 0SS(27) - GS
Comments_(0)
O16 - DPF: {6F750203-1362-4815-A476-88533DE61D0C}(Kodak Gallery Easy Upload Manager Class) -http://targetphoto.kodakgallery.com/downloads/BUM/BUM_WIN_IE_2/axofupld.cab
Unknown0 - 0SS(38,799) - GS
Comments_(0)
R1 - HKCU\Software\Microsoft\InternetExplorer\Main,Start Page_bak =http://www.dell4me.com/myway
Unknown0 - 0SS(43,095) - GS
Comments_(0)
O1 - Hosts: ???????????????browser-security.microsoft.com
Unknown0 - 0SS(18) - GS
Comments_(0)
C:\Program Files\AVG\AVG9\avgchsvx.exe
Unknown0 - 0SS(57) - GS
Comments_(0)
C:\Program Files\AVG\AVG9\avgrsx.exe
Unknown0 - 0SS(49) - GS
Comments_(0)
C:\Program Files\AVG\AVG9\avgcsrvx.exe
Unknown0 - 0SS(168) - GS
Comments_(0)
C:\Program Files\AVG\AVG9\avgwdsvc.exe
Unknown0 - 0SS(42) - GS
Comments_(0)
C:\Program Files\AVG\AVG9\avgnsx.exe
Unknown0 - 0SS(155) - GS
Comments_(0)
C:\PROGRA~1\AVG\AVG9\avgtray.exe
Unknown0 - 0SS(168) - GS
Comments_(0)
O23 - Service: AVG Free WatchDog (avg9wd) - AVGTechnologies CZ, s.r.o. - C:\ProgramFiles\AVG\AVG9\avgwdsvc.exe
Unknown0 - 0SS(2) - GS
Comments_(0)
C:\Program Files\WTouch\WTouchUser.exe
Unknown0 - 0SS(4) - GS
Comments_(0)
O23 - Service: WTouch Service (WTouchService) -Wacom Technology, Corp. - C:\ProgramFiles\WTouch\WTouchService.exe
Unknown0 - 0SS(4) - GS
Comments_(0)
C:\Program Files\WTouch\WTouchService.exe
Unknown0 - 0SS(2) - GS
Comments_(0)
C:\WINDOWS\system32\lxdocoms.exe
Unknown0 - 0SS(2) - GS
Comments_(0)
C:\Program Files\Lexmark 9500 Series\lxdomon.exe
Unknown0 - 0SS(2) - GS
Comments_(0)
C:\Program Files\Lexmark 9500 Series\lxdoamon.exe
Unknown0 - 0SS(2) - GS
Comments_(0)
O4 - HKLM\..\Run: [lxdomon.exe] "C:\ProgramFiles\Lexmark 9500 Series\lxdomon.exe"
Unknown0 - 0SS(2) - GS
Comments_(0)
O4 - HKLM\..\Run: [lxdoamon] "C:\ProgramFiles\Lexmark 9500 Series\lxdoamon.exe"
Unknown0 - 0SS(41) - GS
Comments_(0)
O4 - HKLM\..\Run: [Lexmark 9500 Series Fax Server]"C:\Program Files\Lexmark 9500 Series\fm3032.exe"/s
Unknown0 - 0SS(2) - GS
Comments_(0)
O23 - Service: lxdoCATSCustConnectService -Lexmark International, Inc. -C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\\lxdoserv.exe
Unknown0 - 0SS(2) - GS
Comments_(0)
O23 - Service: lxdo_device - -C:\WINDOWS\system32\lxdocoms.exe
Unknown0 - 0SS(8,622) - GS
Comments_(0)
O1 - Hosts: ??????????????? antivguardian.com
Unknown0 - 0SS(8,622) - GS
Comments_(0)
O1 - Hosts: ??????????????? www.antivguardian.com
Unknown0 - 0SS(1) - GS
Comments_(0)
O4 - HKLM\..\Run: [r2pDXdFL]C:\WINDOWS\mivvecbh.exe
Unknown0 - 0SS(20,356) - GS
Comments_(0)
O8 - Extra context menu item: &Search -?p=GRxdm011YYUS
Unknown0 - 0SS(7,775) - GS
Comments_(0)
O17 -HKLM\System\CCS\Services\Tcpip\..\{6690CC87-835C-41E8-A569-87E906B0E20E}: NameServer =205.171.3.65,205.171.2.65
Unknown0 - 0SS(3) - GS
Comments_(0)
O20 - AppInit_DLLs:c:\windows\system32\rifofune.dll fagometo.dllc:\windows\system32\zomejuhe.dllc:\windows\system32\c:\windows\system32\koyagahu.dllc:\windows\system32\sirifiwi.dll
Unknown0 - 0SS(18) - GS
Comments_(0)
O21 - SSODL: sikunonul -{02b130ed-f667-4103-9a74-01ce858d3bfe} -c:\windows\system32\rifofune.dll (file missing)
Unknown0 - 0SS(10) - GS
Comments_(0)
O21 - SSODL: weyamejek -{96829675-30c8-41c6-8b36-1309d076f2c1} -c:\windows\system32\zomejuhe.dll (file missing)
Unknown0 - 0SS(73) - GS
Comments_(0)
O21 - SSODL: vokuwekeb -{c96adc03-fc91-4ed0-8c41-d1fdd0d441dc} -c:\windows\system32\koyagahu.dll (file missing)
Unknown0 - 0SS(9) - GS
Comments_(0)
O21 - SSODL: zekuwafij -{933e214b-d1ca-4b5e-afb5-e69cba4dc63c} -c:\windows\system32\sirifiwi.dll (file missing)
Unknown0 - 0SS(18) - GS
Comments_(0)
O22 - SharedTaskScheduler: gahurihor -{02b130ed-f667-4103-9a74-01ce858d3bfe} -c:\windows\system32\rifofune.dll (file missing)
Unknown0 - 0SS(10) - GS
Comments_(0)
O22 - SharedTaskScheduler: mujuzedij -{96829675-30c8-41c6-8b36-1309d076f2c1} -c:\windows\system32\zomejuhe.dll (file missing)
Unknown0 - 0SS(73) - GS
Comments_(0)
O22 - SharedTaskScheduler: jugezatag -{c96adc03-fc91-4ed0-8c41-d1fdd0d441dc} -c:\windows\system32\koyagahu.dll (file missing)
Unknown0 - 0SS(9) - GS
Comments_(0)
O22 - SharedTaskScheduler: mujuzedij -{933e214b-d1ca-4b5e-afb5-e69cba4dc63c} -c:\windows\system32\sirifiwi.dll (file missing)
Unknown0 - 0SS(54,433) - GS
Comments_(0)
O24 - Desktop Component 0: (no name) -http://www.sincitythemovie.com/misc/wallpapers/wp_jpgs/sc_dw_wp_gail_1280x960.jpg
Good1 - 0SS(38,160) - GS
Comments_(0)
R1 - HKCU\Software\Microsoft\InternetExplorer\Main,Default_Page_URL =http://www.dell4me.com/myway
Good1 - 0SS(15) - GS
Comments_(0)
C:\WINDOWS\system32\fxssvc.exe
Good1 - 0SS(822) - GS
Comments_(0)
O8 - Extra context menu item: E&xport to MicrosoftExcel -res://C:\PROGRA~1\MICROS~3\OFFICE11\EXCEL.EXE/3000
Good1 - 0SS(7,859) - GS
Comments_(0)
O8 - Extra context menu item: Yahoo! &Maps -file:///C:\Program Files\Yahoo!\Common/ycmap.htm
Good1 - 0SS(7,859) - GS
Comments_(0)
O8 - Extra context menu item: Yahoo! &SMS -file:///C:\Program Files\Yahoo!\Common/ycsms.htm
Good1 - 0SS(73) - GS
Comments_(0)
O9 - Extra button: Yahoo! Services -{5BAB4B5B-68BC-4B02-94D6-2FC0DE4A7897} -C:\Program Files\Yahoo!\Common\yiesrvc.dll
Good1 - 0SS(45,020) - GS
Comments_(0)
R1 - HKCU\Software\Microsoft\InternetExplorer\Main,Search Bar =http://us.rd.yahoo.com/customize/ie/defaults/sb/msgr7/*http://www.yahoo.com/ext/search/search.html
Good1 - 0SS(42,213) - GS
Comments_(0)
R1 - HKCU\Software\Microsoft\InternetExplorer\Main,Search Page =http://us.rd.yahoo.com/customize/ie/defaults/sp/msgr7/*http://www.yahoo.com
Good1 - 0SS(39,130) - GS
Comments_(0)
R1 - HKCU\Software\Microsoft\InternetExplorer\SearchURL,(Default) =http://us.rd.yahoo.com/customize/ie/defaults/su/msgr7/*http://www.yahoo.com
Good1 - 0SS(56) - GS
Comments_(0)
C:\Program Files\Scansoft\PaperPort\pptd40nt.exe
Good1 - 0SS(36) - GS
Comments_(0)
O23 - Service: WLTRYSVC - Unknown owner -C:\WINDOWS\System32\WLTRYSVC.EXE
Good1 - 0SS(5,596) - GS
Comments_(0)
R0 - HKLM\Software\Microsoft\InternetExplorer\Search,CustomizeSearch = about:blank
Good1 - 0SS(15) - GS
Comments_(0)
C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
Good1 - 0SS(251) - GS
Comments_(0)
O4 - HKLM\..\Run: [SSBkgdUpdate] "C:\ProgramFiles\Common Files\ScansoftShared\SSBkgdUpdate\SSBkgdupdate.exe" -Embedding-boot
Good1 - 0SS(11,533) - GS
Comments_(0)
R0 - HKLM\Software\Microsoft\InternetExplorer\Main,Start Page = about:blank
Good1 - 0SS(28,945) - GS
Comments_(0)
F2 - REG:system.ini: Shell=explorer.exe
Good1 - 0SS(19,437) - GS
Comments_(0)
R1 - HKCU\Software\Microsoft\InternetExplorer,SearchURL = about:blank
Good1 - 0SS(252) - GS
Comments_(0)
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537}(MSN Photo Upload Tool) -http://by103fd.bay103.hotmail.msn.com/resources/MsnPUpld.cab
Good1 - 0SS(10,268) - GS
Comments_(0)
R1 - HKCU\Software\Microsoft\InternetExplorer\Main,SearchURL = about:blank
Good1 - 0SS(333) - GS
Comments_(0)
O2 - BHO: Adobe PDF Reader Link Helper -{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} -C:\Program Files\Adobe\Acrobat7.0\ActiveX\AcroIEHelper.dll
Good1 - 0SS(19,421) - GS
Comments_(0)
R0 - HKLM\Software\Microsoft\InternetExplorer\Main,Local Page = about:blank
Good1 - 0SS(56) - GS
Comments_(0)
O4 - HKLM\..\Run: [PaperPort PTD] "C:\ProgramFiles\ScanSoft\PaperPort\pptd40nt.exe"
Good1 - 0SS(32) - GS
Comments_(0)
O4 - HKLM\..\Run: [IndexSearch] "C:\ProgramFiles\ScanSoft\PaperPort\IndexSearch.exe"
Good2 - 0SS(73) - GS
Comments_(0)
O2 - BHO: Yahoo! IE Services Button -{5BAB4B5B-68BC-4B02-94D6-2FC0DE4A7897} -C:\Program Files\Yahoo!\Common\yiesrvc.dll
Good1 - 0SS(134) - GS
Comments_(0)
O9 - Extra button: PartyPoker.com -{B7FE5D70-9AA2-40F1-9C6B-12A255F085E1} -C:\Program Files\PartyGaming\PartyPoker\RunApp.exe(file missing)
Good1 - 0SS(134) - GS
Comments_(0)
O9 - Extra 'Tools' menuitem: PartyPoker.com -{B7FE5D70-9AA2-40F1-9C6B-12A255F085E1} -C:\Program Files\PartyGaming\PartyPoker\RunApp.exe(file missing)
Good1 - 0SS(17) - GS
Comments_(0)
O16 - DPF: {9BFC2253-B9D9-477E-9488-CA450232620D}(BinAg1 Class) -https://fastconnectkitsetup.cox.net/wizlet/CoxNA/static/controls/WebflowActiveX.CAB
Good1 - 0SS(8) - GS
Comments_(0)
C:\Program Files\Dell Photo AIO Printer924\dlccmon.exe
Good1 - 0SS(7) - GS
Comments_(0)
C:\WINDOWS\system32\dlcccoms.exe
Good1 - 0SS(62) - GS
Comments_(0)
O4 - HKLM\..\Run: [DLCCCATS] rundll32C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\DLCCtime.dll,_RunDLLEntry@16
Good1 - 0SS(8) - GS
Comments_(0)
O4 - HKLM\..\Run: [dlccmon.exe] "C:\ProgramFiles\Dell Photo AIO Printer 924\dlccmon.exe"
Good2 - 0SS(19) - GS
Comments_(0)
O10 - Unknown file in Winsock LSP:c:\windows\system32\nwprovau.dll
Good1 - 0SS(7) - GS
Comments_(0)
O23 - Service: dlcc_device - Unknown owner -C:\WINDOWS\system32\dlcccoms.exe
Good3 - 0SS(106) - GS
Comments_(0)
O9 - Extra button: (no name) -{e2e2dd38-d088-4134-82b7-f2ba38496583} -C:\windows\Network Diagnostic\xpnetdiag.exe
Good3 - 0SS(106) - GS
Comments_(0)
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001- {e2e2dd38-d088-4134-82b7-f2ba38496583} -C:\windows\Network Diagnostic\xpnetdiag.exe
Good3 - 0SS(6,171) - GS
Comments_(0)
C:\Program Files\TrendMicro\HijackThis\HijackThis.exe
Good1 - 0SS(12) - GS
Comments_(1)
C:\WINDOWS\system32\spool\drivers\w32x86\3\WrtMon.exe
Good1 - 0SS(6) - GS
Comments_(1)
C:\WINDOWS\system32\spool\drivers\w32x86\3\WrtProc.exe
Good1 - 0SS(12) - GS
Comments_(1)
O4 - HKLM\..\Run: [WrtMon.exe]C:\WINDOWS\system32\spool\drivers\w32x86\3\WrtMon.exe
Good2 - 0SS(208) - GS
Comments_(0)
O2 - BHO: Spybot-S&D IE Protection -{53707962-6F74-2D53-2644-206D7942484F} -C:\PROGRA~1\SPYBOT~1\SDHelper.dll
Good1 - 0SS(350) - GS
Comments_(0)
O9 - Extra button: (no name) -{DFB852A3-47F8-48C4-A200-58CAB36FD2A2} -C:\PROGRA~1\SPYBOT~1\SDHelper.dll
Good1 - 0SS(350) - GS
Comments_(0)
O9 - Extra 'Tools' menuitem: Spybot - Search &Destroy Configuration -{DFB852A3-47F8-48C4-A200-58CAB36FD2A2} -C:\PROGRA~1\SPYBOT~1\SDHelper.dll
Good1 - 0SS(99) - GS
Comments_(0)
O16 - DPF: {6F15128C-E66A-490C-B848-5000B5ABEEAC}(HP Download Manager) -https://h20436.www2.hp.com/ediags/dex/secure/HPDEXAXO.cab
Good1 - 0SS(8) - GS
Comments_(0)
C:\WINDOWS\system32\Pen_Tablet.exe
Good1 - 0SS(8) - GS
Comments_(0)
O23 - Service: TabletServicePen - WacomTechnology, Corp. -C:\WINDOWS\system32\Pen_Tablet.exe
Good1 - 0SS(1,801) - GS
Comments_(0)
O4 - HKLM\..\Run: [EPSON Stylus CX7800 Series]C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIAFA.EXE /P26 "EPSON Stylus CX7800 Series" /O6"USB001" /M "Stylus CX7800"
Good2 - 0SS(121) - GS
Comments_(0)
O2 - BHO: Java(tm) Plug-In 2 SSV Helper -{DBC80044-A445-435b-BC74-9C25C1C588A9} -C:\Program Files\Java\jre6\bin\jp2ssv.dll
Good1 - 0SS(620) - GS
Comments_(0)
C:\Program Files\Java\jre6\bin\jusched.exe
Good2 - 0SS(109) - GS
Comments_(0)
O2 - BHO: JQSIEStartDetectorImpl -{E7E6F031-17CE-4C07-BC86-EABFE594F69C} -C:\ProgramFiles\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
Good1 - 0SS(620) - GS
Comments_(0)
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\ProgramFiles\Java\jre6\bin\jusched.exe"
Good2 - 0SS(0) - GS
Comments_(0)
O23 - Service: Java Quick Starter(JavaQuickStarterService) - Sun Microsystems, Inc.- C:\Program Files\Java\jre6\bin\jqs.exe
Good1 - 0SS(0) - GS
Comments_(1)
C:\Program Files\Java\jre6\bin\jqs.exe
Good1 - 0SS(160) - GS
Comments_(0)
O20 - Winlogon Notify: avgrsstarter -C:\WINDOWS\SYSTEM32\avgrsstx.dll
Good1 - 0SS(126) - GS
Comments_(0)
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter -{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} -C:\Program Files\AVG\AVG9\avgssie.dll
Good1 - 0SS(155) - GS
Comments_(0)
O4 - HKLM\..\Run: [AVG9_TRAY]C:\PROGRA~1\AVG\AVG9\avgtray.exe
Good1 - 0SS(90) - GS
Comments_(0)
O18 - Protocol: linkscanner -{F274614C-63F8-47D5-A4D1-FBDDE494F8D1} -C:\Program Files\AVG\AVG9\avgpp.dll

Superhero © SpyAndSeek 2007 — User-posted content, unless source quoted, is licensed under a Creative Commons Public Domain License.