R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page =
http://websearch.drsnsrch.com/sidesearch.cgi?id=
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar =
http://websearch.drsnsrch.com/sidesearch.cgi?id=
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =
http://websearch.drsnsrch.com/sidesearch.cgi?id=
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = websearch.drsnsrch.com/q.cgi?q=
R3 - URLSearchHook: (no name) - {20EC3D2D-33C1-4C9D-BC37-C2D500688DA2} - (no file)
O1 - Hosts: 64.91.255.87
www.dcsresearch.com
O2 - BHO: &EliteBar - {28CAEFF3-0F18-4036-B504-51D73BD81ABC} - C:\WINDOWS\
EliteToolBar\EliteToolBar version 59.dll
O2 - BHO: &EliteSideBar - {ED103D9F-3070-4580-AB1E-E5C179C1AE41} - C:\WINDOWS\
EliteSideBar\EliteSideBar 08.dll
O2 - BHO: (no name) - {5C8B2A36-3DB1-42A4-A3CB-D426709BBFEB} - (no file)
O2 - BHO: (no name) - {F6B07D5F-F283-9B29-B06A-EEE52EBD07A0} - C:\WINDOWS\SYSTEM\
YNOEYM.DLL (file missing)
O2 - BHO: Verizon Broadband Toolbar - {4E7BD74F-2B8D-469E-D0FC-E57AF4D5FA7D} - C:\PROGRA~1\COMMON~1\VERIZO~1\SFP\VZBB.DLL
O2 - BHO: (no name) - {D2CB6414-F0A8-D10D-DFCB-F3DA1FCF68C7} - C:\WINDOWS\SYSTEM\
BNOXPU.DLL
O2 - BHO: (no name) - {7B63831C-17A9-625C-8F9E-46D1EF63C6C0} - C:\WINDOWS\SYSTEM\
MRDIM.DLL
O3 - Toolbar: Verizon Broadband Toolbar - {4E7BD74F-2B8D-469E-D0FC-E57AF4D5FA7D} - C:\PROGRA~1\COMMON~1\VERIZO~1\SFP\VZBB.DLL
O4 - HKLM\..\Run: [c70e91fe5dc0] C:\WINDOWS\SYSTEM\
DBMSSPXN.exe
O4 - HKLM\..\Run: [VBouncer] C:\PROGRA~1\
VBOUNCER\VirtualBouncer.exe
O4 - HKLM\..\Run: [AQ3HelperStartUp] C:\PROGRAM FILES\
AQUATICA WATERWORLDS\AQ3HELPER.EXE /partner AQ3
O4 - HKLM\..\Run: [DeskAd Service] C:\PROGRAM FILES\
DESKAD SERVICE\DESKADSERV.EXE
O4 - HKLM\..\Run: [xhrmy] C:\WINDOWS\
Xhrmy.exe
O4 - HKLM\..\Run: [4MZT6FA4AT2NPD] C:\WINDOWS\SYSTEM\
NuzK63G.exe
O4 - HKLM\..\Run: [FARMMEXT] C:\WINDOWS\
FARMMEXT.exe
O4 - HKLM\..\Run: [zyrqwc] C:\WINDOWS\SYSTEM\
zyrqwc.exe
O4 - HKLM\..\Run: [version] C:\WINDOWS\SYSTEM\
OUSMJD.exe
O4 - HKLM\..\Run: [saie] c:\windows\system\
saie.exe
O4 - HKLM\..\Run: [secure] C:\WINDOWS\SYSTEM\
CRAGEF.exe
O4 - HKLM\..\Run: [XLMPDMPZ] \Progra~1\
XLMPDMPZ\XLMPDMPZ.exe
O4 - HKLM\..\Run: [KOGOL] C:\WINDOWS\SYSTEM\
KDIGCHHS\KOGOL.EXE
O4 - HKLM\..\Run: [cwhtfc] C:\WINDOWS\SYSTEM\
cwhtfc.exe
O4 - HKLM\..\Run: [App32dll] C:\WINDOWS\SYSTEM\
MSNAVC32.EXE lee0105
O4 - HKLM\..\Run: [awal] C:\WINDOWS\SYSTEM\
rgyiat\awal.exe
O4 - HKLM\..\Run: [ouvv] C:\WINDOWS\SYSTEM\
qkxgr\ouvv.exe
O4 - HKLM\..\Run: [antiware] C:\WINDOWS\SYSTEM\
ELITEPPA32.EXE
O4 - HKLM\..\Run: [Narrator] C:\WINDOWS\
qugyyw.exe
O4 - HKLM\..\Run: [EbatesMoeMoneyMaker0] "C:\PROGRAM FILES\
EBATES_MOEMONEYMAKER\EbatesMoeMoneyMaker0.exe"
O4 - HKLM\..\Run: [TOLJVEEI] C:\WINDOWS\SYSTEM\
TOXGKLJP\TOLJVEEI.EXE
O4 - HKCU\..\Run: [Ycurxdyg] C:\WINDOWS\SYSTEM\
bmw.exe
O4 - HKCU\..\Run: [BLAXPI] C:\WINDOWS\SYSTEM\
BLAXPI.exe
O4 - HKCU\..\Run: [Desktop Weather 3] C:\PROGRAM FILES\
THE WEATHER CHANNEL\THE WEATHER CHANNEL.EXE
O4 - HKCU\..\Run: [DWHeartbeatMonitor] C:\PROGRA~1\THEWEA~1\DWHeartbeatMonitor.exe
O4 - HKCU\..\Run: [Etaa] C:\Program Files\
seaa\ccam.exe
O8 - Extra context menu item: &Search -
http://bar.mywebsearch.com/menusearc...p=ZNxdm396XXUS
O8 - Extra context menu item: Ebates - file://C:\PROGRAM FILES\EBATES_MOEMONEYMAKER\Sy350\Tp350\scri350a.ht m
O9 - Extra button: (no name) - {120E090D-9136-4b78-8258-F0B44B4BD2AC} - C:\WINDOWS\SYSTEM\
maxspeed.exe (file missing)
O9 - Extra 'Tools' menuitem: MaxSpeed - {120E090D-9136-4b78-8258-F0B44B4BD2AC} - C:\WINDOWS\SYSTEM\maxspeed.exe (file missing)
O9 - Extra button: Related - {c95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\WINDOWS\web\related.htm
O9 - Extra 'Tools' menuitem: Show &Related Links - {c95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\WINDOWS\web\related.htm
O9 - Extra button: Share in Hello - {B13B4423-2647-4cfc-A4B3-C7D56CB83487} - C:\PROGRAM FILES\
HELLO\PICASACAPTURE.DLL
O9 - Extra 'Tools' menuitem: Share in H&ello - {B13B4423-2647-4cfc-A4B3-C7D56CB83487} - C:\PROGRAM FILES\HELLO\PICASACAPTURE.DLL
O9 - Extra button: Ebates - {6685509E-B47B-4f47-8E16-9A5F3A62F683} - file://C:\PROGRAM FILES\EBATES_MOEMONEYMAKER\Sy350\Tp350\scri350a.ht m (file missing) (HKCU)
O16 - DPF: {F919FBD3-A96B-4679-AF26-F551439BB5FD} -
http://winfixer.com/pages/scanner/Wi...nerInstall.cab
all 018 logitech entry's
O18 - Filter: text/html - {DFAA31C8-A356-4313-9D95-5EDAB46C5070} - C:\WINDOWS\SYSTEM\
LMF32V.DLL
PC Help Forum
» Security & Safety
» [Fixed] Hijackthis! Logs
»
[Pending] Random restart
[Pending] Random restart
Linear Mode
