25 replies to this topic

[gint279315]

I am trying to clean off a computer that I "repossessed" from someone. Can someone please look at all my scans and advise me what to do next. Thanks!!

Malwarebytes' Anti-Malware 1.11
Database version: 677

Scan type: Full Scan (C:\|)
Objects scanned: 104212
Time elapsed: 46 minute(s), 20 second(s)

Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 0
Registry Values Infected: 0
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 0

Memory Processes Infected:
(No malicious items detected)

Memory Modules Infected:
(No malicious items detected)

Registry Keys Infected:
(No malicious items detected)

Registry Values Infected:
(No malicious items detected)

Registry Data Items Infected:
(No malicious items detected)

Folders Infected:
(No malicious items detected)

Files Infected:
(No malicious items detected)






PANDA -
;*******************************************************************************
********************************************************************************
*
*******************
ANALYSIS: 2008-04-24 16:02:24
PROTECTIONS: 1
MALWARE: 38
SUSPECTS: 0
;*******************************************************************************
********************************************************************************
*
*******************
PROTECTIONS
Description Version Active Updated
;===============================================================================
================================================================================
=
===================
AVG 7.5.524 7.5.524 Yes Yes
;===============================================================================
================================================================================
=
===================
MALWARE
Id Description Type Active Severity Disinfectable Disinfected Location
;===============================================================================
================================================================================
=
===================
00117819 Spyware/New.net Spyware No 1 Yes No C:\System Volume Information\_restore{46DE8921-1D39-44D2-A9E9-64119261F211}\RP581\A0049582.exe
00139060 Cookie/Casalemedia TrackingCookie No 0 Yes No C:\Documents and Settings\Justin Hines\Local Settings\Temp\Cookies\justin hines@casalemedia[1].txt
00139061 Cookie/Doubleclick TrackingCookie No 0 Yes No C:\Documents and Settings\Justin Hines\Local Settings\Temp\Cookies\justin hines@doubleclick[1].txt
00139064 Cookie/Atlas DMT TrackingCookie No 0 Yes No C:\Documents and Settings\Justin Hines\Local Settings\Temp\Cookies\justin hines@atdmt[1].txt
00145457 Cookie/FastClick TrackingCookie No 0 Yes No C:\Documents and Settings\Justin Hines\Local Settings\Temp\Cookies\justin hines@fastclick[2].txt
00145738 Cookie/Mediaplex TrackingCookie No 0 Yes No C:\Documents and Settings\Justin Hines\Local Settings\Temp\Cookies\justin hines@mediaplex[1].txt
00168056 Cookie/YieldManager TrackingCookie No 0 Yes No C:\Documents and Settings\Justin Hines\Local Settings\Temp\Cookies\justin hines@ad.yieldmanager[1].txt
00168061 Cookie/Apmebf TrackingCookie No 0 Yes No C:\Documents and Settings\Justin Hines\Local Settings\Temp\Cookies\justin hines@apmebf[1].txt
00168110 Cookie/Server.iad.Liveperson TrackingCookie No 0 Yes No C:\Documents and Settings\Justin Hines\Local Settings\Temp\Cookies\justin hines@server.iad.liveperson[1].txt
00169190 Cookie/Advertising TrackingCookie No 0 Yes No C:\Documents and Settings\Justin Hines\Local Settings\Temp\Cookies\justin hines@advertising[1].txt
00170556 Cookie/RealMedia TrackingCookie No 0 Yes No C:\Documents and Settings\Justin Hines\Local Settings\Temp\Cookies\justin hines@realmedia[1].txt
00241796 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{46DE8921-1D39-44D2-A9E9-64119261F211}\RP561\A0048250.DLL
00241834 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{46DE8921-1D39-44D2-A9E9-64119261F211}\RP561\A0048249.DLL
00328085 Adware/SaveNow Adware No 0 Yes No C:\System Volume Information\_restore{46DE8921-1D39-44D2-A9E9-64119261F211}\RP561\A0048258.exe
00350959 Spyware/New.net Spyware No 1 Yes No C:\System Volume Information\_restore{46DE8921-1D39-44D2-A9E9-64119261F211}\RP581\A0049581.exe
00515231 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{46DE8921-1D39-44D2-A9E9-64119261F211}\RP561\A0048291.DLL
00523287 Application/MyWebSearch HackTools No 0 Yes No C:\System Volume Information\_restore{46DE8921-1D39-44D2-A9E9-64119261F211}\RP561\A0048251.DLL
01279072 Generic Malware Virus/Trojan No 0 Yes No C:\System Volume Information\_restore{46DE8921-1D39-44D2-A9E9-64119261F211}\RP561\A0048272.exe
01299486 Application/VirusprotectPro HackTools No 0 Yes No C:\System Volume Information\_restore{46DE8921-1D39-44D2-A9E9-64119261F211}\RP498\A0039488.exe
01304767 Adware/IST Adware No 0 Yes No C:\System Volume Information\_restore{46DE8921-1D39-44D2-A9E9-64119261F211}\RP561\A0048264.dll
01319415 Adware/Zango Adware No 0 Yes No C:\System Volume Information\_restore{46DE8921-1D39-44D2-A9E9-64119261F211}\RP561\A0048292.dll
01319416 Adware/IST Adware No 0 Yes No C:\System Volume Information\_restore{46DE8921-1D39-44D2-A9E9-64119261F211}\RP561\A0048265.dll
01319417 Adware/IST Adware No 0 Yes No C:\System Volume Information\_restore{46DE8921-1D39-44D2-A9E9-64119261F211}\RP561\A0048262.dll
01895084 Adware/Zango Adware No 0 No No C:\Documents and Settings\Justin Hines\Local Settings\Temp\ZANDC.exe[²ÜÇ\Install.dll]
01895084 Adware/Zango Adware No 0 No No C:\System Volume Information\_restore{46DE8921-1D39-44D2-A9E9-64119261F211}\RP561\A0048276.exe[²ÜÇ\Install.dll]
01895084 Adware/Zango Adware No 0 Yes No C:\Documents and Settings\Justin Hines\Local Settings\Temp\nslDF.tmp\Install.dll
01895085 Adware/Zango Adware No 0 No No C:\Documents and Settings\Justin Hines\Local Settings\Temp\ZANDC.exe[Resource.dll]
01895085 Adware/Zango Adware No 0 Yes No C:\Documents and Settings\Justin Hines\Local Settings\Temp\nslDF.tmp\Resource.dll
01895085 Adware/Zango Adware No 0 No No C:\System Volume Information\_restore{46DE8921-1D39-44D2-A9E9-64119261F211}\RP561\A0048276.exe[Resource.dll]
02125057 Adware/Zango Adware No 0 No No C:\System Volume Information\_restore{46DE8921-1D39-44D2-A9E9-64119261F211}\RP561\A0048276.exe[LaunchHelp.dll]
02125057 Adware/Zango Adware No 0 No No C:\Documents and Settings\Justin Hines\Local Settings\Temp\ZANDC.exe[LaunchHelp.dll]
02134732 Generic Malware Virus/Trojan No 0 Yes No C:\System Volume Information\_restore{46DE8921-1D39-44D2-A9E9-64119261F211}\RP561\A0048266.exe
02551966 Generic Malware Virus/Trojan No 0 Yes No C:\System Volume Information\_restore{46DE8921-1D39-44D2-A9E9-64119261F211}\RP498\A0039460.exe
02564186 Adware/Zango Adware No 0 Yes No C:\System Volume Information\_restore{46DE8921-1D39-44D2-A9E9-64119261F211}\RP561\A0048273.dll
02894798 Adware/Zango Adware No 0 Yes No C:\System Volume Information\_restore{46DE8921-1D39-44D2-A9E9-64119261F211}\RP561\A0048278.dll
02900928 Application/VirusHeat HackTools No 0 No No C:\Documents and Settings\Justin Hines\Local Settings\Temp\brA3.exe[VirusHeat 3.9.exe]
02901878 Adware/OneStep Adware No 0 Yes No C:\System Volume Information\_restore{46DE8921-1D39-44D2-A9E9-64119261F211}\RP581\A0049584.exe
02901937 Application/VirusHeat HackTools No 0 Yes No C:\Documents and Settings\Justin Hines\Local Settings\Temp\brA3.exe
02908816 Cookie/Starware TrackingCookie No 0 Yes No C:\Documents and Settings\Justin Hines\Local Settings\Temp\Cookies\justin hines@h.starware[2].txt
02916290 Adware/Zango Adware No 0 Yes No C:\System Volume Information\_restore{46DE8921-1D39-44D2-A9E9-64119261F211}\RP561\A0048267.dll
02918904 Generic Malware Virus/Trojan No 0 Yes No C:\System Volume Information\_restore{46DE8921-1D39-44D2-A9E9-64119261F211}\RP498\A0039467.exe
02919800 Adware/Zango Adware No 0 Yes No C:\System Volume Information\_restore{46DE8921-1D39-44D2-A9E9-64119261F211}\RP561\A0048275.dll
02920038 Application/ErrorSafe HackTools No 0 Yes No C:\System Volume Information\_restore{46DE8921-1D39-44D2-A9E9-64119261F211}\RP498\A0039462.exe
;===============================================================================
================================================================================
=
===================
SUSPECTS
Sent Location 
;===============================================================================
================================================================================
=
===================
;===============================================================================
================================================================================
=
===================
VULNERABILITIES
Id Severity Description 
;===============================================================================
================================================================================
=
===================
;===============================================================================
================================================================================
=
===================









HiJack This:

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 4:06:45 PM, on 4/24/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16640)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\PROGRA~1\Grisoft\AVG7\avgamsvr.exe
C:\PROGRA~1\Grisoft\AVG7\avgupsvc.exe
C:\PROGRA~1\Grisoft\AVG7\avgemc.exe
C:\PROGRA~1\McAfee.com\PERSON~1\MPFSERVICE.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\wdfmgr.exe
C:\WINDOWS\System32\alg.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\CyberLink\PowerDVD\DVDLauncher.exe
C:\Program Files\Dell\Media Experience\PCMService.exe
C:\WINDOWS\system32\dla\tfswctrl.exe
C:\Program Files\Analog Devices\Core\smax4pnp.exe
C:\WINDOWS\system32\hkcmd.exe
C:\WINDOWS\system32\igfxpers.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\PROGRA~1\mcafee.com\agent\McAgent.exe
C:\Program Files\DellSupport\DSAgnt.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.dell4me.com/myway
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft....k/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft....k/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://us.rd.yahoo.com/customize/ie/defaul...rch/search.html
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft....k/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft....k/?LinkId=69157
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = wmplayer.exe //ICWLaunch
R3 - URLSearchHook: (no name) - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)
R3 - URLSearchHook: (no name) - - (no file)
O2 - BHO: (no name) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - (no file)
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: DriveLetterAccess - {5CA3D70E-1895-11CF-8E15-001234567890} - C:\WINDOWS\system32\dla\tfswshx.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\3.0.1225.9868\swg.dll
O3 - Toolbar: McAfee VirusScan - {BA52B914-B692-46c4-B683-905236F6F655} - c:\progra~1\mcafee.com\vso\mcvsshl.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O4 - HKLM\..\Run: [DVDLauncher] "C:\Program Files\CyberLink\PowerDVD\DVDLauncher.exe"
O4 - HKLM\..\Run: [PCMService] "C:\Program Files\Dell\Media Experience\PCMService.exe"
O4 - HKLM\..\Run: [dla] C:\WINDOWS\system32\dla\tfswctrl.exe
O4 - HKLM\..\Run: [UpdateManager] "C:\Program Files\Common Files\Sonic\Update Manager\sgtray.exe" /r
O4 - HKLM\..\Run: [DwlClient] c:\Program Files\Common Files\Dell\EUSW\Support.exe
O4 - HKLM\..\Run: [SM_IAN] C:\Program Files\AdvancedCleaner Free\ian_monitor.exe
O4 - HKLM\..\Run: [AVG7_CC] C:\PROGRA~1\Grisoft\AVG7\avgcc.exe /STARTUP
O4 - HKLM\..\Run: [SoundMAXPnP] C:\Program Files\Analog Devices\Core\smax4pnp.exe
O4 - HKLM\..\Run: [igfxtray] C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [igfxhkcmd] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [igfxpers] C:\WINDOWS\system32\igfxpers.exe
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [MCUpdateExe] C:\PROGRA~1\mcafee.com\agent\mcupdate.exe
O4 - HKLM\..\Run: [MCAgentExe] c:\PROGRA~1\mcafee.com\agent\McAgent.exe
O4 - HKCU\..\Run: [DellSupport] "C:\Program Files\DellSupport\DSAgnt.exe" /startup
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKUS\S-1-5-19\..\Run: [AVG7_Run] C:\PROGRA~1\Grisoft\AVG7\avgw.exe /RUNONCE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [AVG7_Run] C:\PROGRA~1\Grisoft\AVG7\avgw.exe /RUNONCE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [AVG7_Run] C:\PROGRA~1\Grisoft\AVG7\avgw.exe /RUNONCE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [AVG7_Run] C:\PROGRA~1\Grisoft\AVG7\avgw.exe /RUNONCE (User 'Default user')
O4 - Global Startup: Microsoft Office.lnk = C:\MSOffice\Office10\OSA.EXE
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\MSOffice\Office10\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\system32\Shdocvw.dll
O9 - Extra button: MUSICMATCH MX Web Player - {d81ca86b-ef63-42af-bee3-4502d9a03c2d} - http://wwws.musicmat...enWebRadio.html (file missing)
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {2D8ED06D-3C30-438B-96AE-4D110FDC1FB8} (ActiveScan 2.0 Installer Class) - http://acs.pandasoft...s/as2stubie.cab
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (Installation Support) - C:\Program Files\Yahoo!\Common\Yinsthelper.dll
O16 - DPF: {4A769165-055C-4566-ABBB-3EA82DD4F8AE} (IVSLite.FastViewer) - http://www.ipinviewe...bin/IVSLite.CAB
O16 - DPF: {77E32299-629F-43C6-AB77-6A1E6D7663F6} (Groove Control) - http://atv.disney.go...y/OTOYAX29b.cab
O16 - DPF: {9600F64D-755F-11D4-A47F-0001023E6D5A} (Shutterfly Picture Upload Plugin) - http://web1.shutterf...ds/Uploader.cab
O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgamsvr.exe
O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgupsvc.exe
O23 - Service: AVG E-mail Scanner (AVGEMS) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgemc.exe
O23 - Service: DSBrokerService - Unknown owner - C:\Program Files\DellSupport\brkrsvc.exe
O23 - Service: McAfee Personal Firewall Service (MpfService) - McAfee Corporation - C:\PROGRA~1\McAfee.com\PERSON~1\MPFSERVICE.exe
O24 - Desktop Component 0: (no name) - http://im1.shutterfly.com/procserv/47b7d81...0100Bas2jNs3bMd

--
End of file - 7829 bytes

[gint279315]

Here is a scan from yesterday, before I started cleaning off stuff.


Malwarebytes' Anti-Malware 1.11
Database version: 674

Scan type: Quick Scan
Objects scanned: 40069
Time elapsed: 11 minute(s), 45 second(s)

Memory Processes Infected: 0
Memory Modules Infected: 1
Registry Keys Infected: 346
Registry Values Infected: 8
Registry Data Items Infected: 0
Folders Infected: 8
Files Infected: 18

Memory Processes Infected:
(No malicious items detected)

Memory Modules Infected:
C:\WINDOWS\SYSTEM32\mscoree.dll (Rogue.MalwareCore) -> Unloaded module successfully.

Registry Keys Infected:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extensions\{9034a523-d068-4be8-a284-9df278be776e} (Trojan.Zlob) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{5d4348fb-df43-0334-69b8-dad6ca156781} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{047a9a40-657e-11d3-8d5b-00104b35e7ef} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{1b2e3b3f-490a-4f4c-8c76-d94f59fe6400} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{1d2680c9-0e2a-469d-b787-065558bc7d43} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{1e66f26b-79ee-11d2-8710-00c04f79ed0d} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{1ec2de53-75cc-11d2-9775-00a0c9b4d50c} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{24800cd0-0f4e-4df7-9f69-3c6903c89224} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{3f281000-e95a-11d2-886b-00c04f869f04} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{6619a740-8154-43be-a186-0319578e02db} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface\{6619a740-8154-43be-a186-0319578e02db} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{6fef44d0-39e7-4c77-be8e-c9f8cf988630} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{a8f03be3-edb7-4972-821f-af6f8ea34884} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{ca35cb3d-0357-11d3-8729-00c04f79ed0d} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{cb2f6723-ab3a-11d2-9c40-00c04fa30a3e} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{d2eaa715-dac7-4771-af5c-931611a1853c} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{dc5da001-7cd4-11d2-8ed9-d8c857f98fe3} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{e5cb7a31-7512-11d2-89ce-0080c792e5d8} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{f1058e4d-a3b4-43d8-a5e8-35359fb76d9b} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{00b01b2e-b1fe-33a6-ad40-57de8358dc7d} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{01ff4e4b-8ad0-3171-8c82-5c2f48b87e3d} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{026cc6d7-34b2-33d5-b551-ca31eb6ce345} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{05eba309-0164-11d3-8729-00c04f79ed0d} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{06b81c12-a5da-340d-aff7-fa1453fbc29a} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{07f94112-a42e-328b-b508-702ef62bcc29} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{08295c62-7462-3633-b35e-7ae68aca3948} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{09a60795-31c0-3a79-9250-8d93c74fe540} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{0a29ff9e-7f9c-4437-8b11-f424491e3931} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{0a3976c5-4529-4ef8-b0b0-42eed37082cd} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{0ae2deb0-f901-478b-bb9f-881ee8066788} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{0d23f8b4-f2a6-3eff-9d37-bdf79ac6b440} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{0e4effc0-2387-11d3-b372-00105a98b7ce} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{0e71f9bd-c109-3352-bd60-14f96d56b6f3} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{0ff66430-c796-3ee7-902b-166c402ca288} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{108296c1-281e-11d3-bd22-0000f80849bd} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{112bc2e7-9ef9-3648-af9e-45c0d4b89929} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{1163d0ca-2a02-37c1-bf3f-a9b9e9d49245} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{146855fa-309f-3d0e-bb3e-df525f30a715} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{146a47ab-a2cf-3587-bb25-2b286d7566b4} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{14910622-09d4-3b4a-8c1e-9991dbdcc553} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{14be6b21-c682-3a3a-8b24-fee75b4ff8c5} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{1a06a4dc-e239-3717-89e1-d0683f3a5320} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{1f17c39c-99d5-37e0-8e98-8f27044bd50a} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{1f9f18a3-efc0-3913-84a5-90678a4a9a80} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{204d5a28-46a0-3f04-bd7c-b5672631e57f} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{21f5a790-53ea-3d73-86c3-a5ba6cf65fe9} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{2206d773-ca1c-3258-9456-ceb7706c3710} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{24540ebc-316e-35d2-80db-8a535caf6a35} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{24eec005-3938-3c71-821d-7f68fd850b2d} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{2763be6b-f8cf-39d9-a2e8-9e9815c0815e} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{27e986e1-baec-3d48-82e4-14169ca8cecf} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{27f31d55-d6c6-3676-9d42-c40f3a918636} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{2846ae5e-a9fa-36cf-b2d1-6e95596dbde7} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{29c69707-875f-3678-8f01-283094a2dfb1} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{29c98dfc-ac6b-4788-bddd-ca41d6d3704a} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{2bb6c5e0-c2b9-3608-8868-21cfd6ddb91e} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{2d5ec63c-1b3e-3ee4-9052-eb0d0303549c} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{2decbcb7-bac0-316d-9131-43035c5cb480} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{31c967b5-2f8a-3957-9c6d-34a0731db36c} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{31d353b3-0a0a-3986-9b20-3ec4ee90b389} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{346d5b9f-45e1-45c0-aadf-1b7d221e9063} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{3495e5fa-2a90-3ca7-b3b5-58736c4441dd} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{35e946e4-7cda-3824-8b24-d799a96309ad} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{36dcda30-dc3b-4d93-be42-90b2d74c64e7} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{374050dd-6190-3257-8812-8230bf095147} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{39b68485-6773-3c46-82e9-56d8f0b4570c} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{3b0398c9-7812-4007-85cb-18c771f2206f} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{3bd1f243-9bc4-305d-9b1c-0d10c80329fc} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{3c9dca8b-4410-3143-b801-559553eb6725} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{3cded51a-86b4-39f0-a12a-5d1fdced6546} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{3ddb2114-9285-30a6-906d-b117640ca927} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{3e5509f0-1fb9-304d-8174-75d6c9afe5da} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{3e8e0f03-d3fd-3a93-bae0-c74a6494dbca} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{3f4a4283-6a08-3e90-a976-2c2d3be4eb0b} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{3fa7a1c5-812c-3b56-b957-cb14af670c09} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{3fb717af-9d21-3016-871a-df817abddd51} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{3fdceec6-b14b-37e2-bb69-abc7ca0da22f} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{40031115-09d2-3851-a13f-56930be48038} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{405c2d81-315b-3cb0-8442-ef5a38d4c3b8} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{40ae2088-ce00-33ad-9320-5d201cb46fc9} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{41970d73-92f6-36d9-874d-3bd0762a0d6f} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{4224ac84-9b11-3561-8923-c893ca77acbe} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{4286fa72-a2fa-3245-8751-d4206070a191} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{432d76ce-8c9e-4eed-addd-91737f27a8cb} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{433ca926-9887-3541-89cc-5d74d0259144} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{43cd41ad-3b78-3531-9031-3059e0aa64eb} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{44181b13-ae94-3cfb-81d1-37db59145030} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{4479c009-4cc3-39a2-8f92-dfcdf034f748} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{458aa3b5-265a-4b75-bc05-9bea4630cf18} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{4599202d-460f-3fb7-8a1c-c2cc6ed6c7c8} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{46080ca7-7cb8-3a55-a72e-8e50eca4d4fc} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{463ae13f-c7e5-357e-a41c-df8762fff85c} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{46e97093-b2ec-3787-a9a5-470d1a27417c} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{475e398f-8afa-43a7-a3be-f4ef8d6787c9} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{47d3c68d-7d85-3227-a9e7-88451d6badfc} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{48728b3f-f7d9-36c1-b3e7-8bf2e63ce1b3} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{48a75519-cb7a-3d18-b91e-be62ee842a3e} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{48ad62e8-bd40-37f4-8fd7-f7a17478a8e6} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{48c6e96f-a2f3-33e7-ba7f-c8f74866760b} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{48d0cfe7-3128-3d2c-a5b5-8c7b82b4ab4f} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{4b601364-a04b-38bc-bd38-a18e981324cf} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{4be89ac3-603d-36b2-ab9b-9c38866f56d5} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{4d187ac2-d815-3b7e-bcea-8e0bbc702f7c} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{4e515531-7a71-3cdd-8078-0a01c85c8f9d} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{4e77ec8f-51d8-386c-85fe-7dc931b7a8e7} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{4f272c37-f0a8-350c-867b-2c03b2b16b80} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{50369004-db9a-3a75-be7a-1d0ef017b9d3} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{50aad4c2-61fa-3b1f-8157-5ba3b27aee61} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{53a3c917-bb24-3908-b58b-09ecda99265f} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{5520b6d3-6ec6-3ce7-958b-e69faf6eff99} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{5610f042-ff1d-36d0-996c-68f7a207d1f0} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{57154c7c-edb2-3bfd-a8ba-924c60913ebf} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{58897d76-ef6c-327a-93f7-6cd66c424e11} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{58d052bc-a3df-3508-ac95-ff297bdc9f0c} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{590e4a07-dafc-3be7-a178-da349bba980b} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{5a18d43e-115b-3b8b-8245-9a06b204b717} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{5b76534c-3acc-3d52-aa61-d788b134abe2} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{5c35f099-165e-3225-a3a5-564150ea17f5} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{5c3e6ce8-b218-3762-883c-91bc987cdc2d} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{5ca9971b-2dc3-3bc8-847a-5e6d15cbb16e} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{5f3a0f8d-5ef9-3ad5-94e0-53aff8bce960} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{5f9a955f-aa55-4127-a32b-33496aa8a44e} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{61b3e12b-3586-3a58-a497-7ed7c4c794b9} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{62545937-20a9-3d0f-b04b-322e854eacb0} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{62e92675-cb77-3fc9-8597-1a81a5f18013} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{630a3ef1-23c6-31fe-9d25-294e3b3e7486} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{647053c3-1879-34d7-ae57-67015c91fc70} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{66ce75d4-0334-3ca6-bca8-ce9af28a4396} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{673dfe75-9f93-304f-aba8-d2a86ba87d7c} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{676e1164-752c-3a74-8d3f-bcd32a2026d6} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{682d63b8-1692-31be-88cd-5cb1f79edb7b} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{6850404f-d7fb-32bd-8328-c94f66e8c1c7} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{6896b49d-7afb-34dc-934e-5add38eeee39} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{68f8aea9-1968-35b9-8a0e-6fdc637a4f8e} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{6a02951c-b129-4d26-ab92-b9ca19bdca26} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{6c1c243a-2146-3342-8078-ac4bfb9db4e9} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{6f674828-9081-3b45-bc39-791bd84ccf8f} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{70a738d1-1bc5-3175-bd42-603e2b82c08b} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{726bbdf4-6c6d-30f4-b3a0-f14d6aec08c7} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{742ad1fb-b2f0-3681-b4aa-e736a3bce4e1} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{74bdd0b9-38d7-3fda-a67e-d404ee684f24} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{75215200-a2fe-30f6-a34b-8f1a1830358e} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{75999eba-0679-3d43-bdc4-02e4d637f1b1} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{769b8b68-64f7-3b61-b744-160a9fcc3216} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{777f668e-3272-39cd-a8b5-860935a35181} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{78d22140-40cf-303e-be96-b3ac0407a34d} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{7ae01d6c-bee7-38f6-9a86-329d8a917803} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{7ae844f0-eca8-3f15-ae27-afa21a2aa6f8} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{7b769b29-35f0-3bdc-aae9-e99937f6cdec} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{7b938a6f-77bf-351c-a712-69483c91115d} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{7bc115cd-1ee2-3068-894d-e3d3f7632f40} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{7e3393ab-2ab2-320b-8f6f-eab6f5cf2caf} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{7e34ab89-0684-3b86-8a0f-e638eb4e6252} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{7f6bcbe5-eb30-370b-9f1b-92a6265afedd} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{7f71db2d-1ea0-3cae-8087-26095f5215e6} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{7f8c7dc5-d8b4-3758-981f-02af6b42461a} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{7f976b72-4b71-3858-bee8-8e3a3189a651} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{7fd3958d-0a14-3001-8074-0d15ead7f05c} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{7fe87a55-1321-3d9f-8fef-cd2f5e8ab2e9} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{81c5fe01-027c-3e1c-98d5-da9c9862aa21} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{837a6733-1675-3bc9-bbf8-13889f84daf4} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{84f70b6c-d59e-394a-b879-ffcc30ddcaa2} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{8833bc41-dc6b-34b9-a799-682d2554f02f} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{88c8a919-eb24-3cca-84f7-2ea82bb3f3ed} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{89a86e7b-c229-4008-9baa-2f5c8411d7e0} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{89bcc804-53a5-3eb2-a342-6282cc410260} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{89d26277-8408-3fc8-bd44-cf5f0e614c82} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{8a3fd229-b2a9-347f-93d2-87f3b7f92753} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{8c1425c9-a7d3-35cd-8248-928ca52ad49b} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{8c40d44a-4ede-3760-9b61-50255056d3c7} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{8d36569b-14d6-3c3d-b55c-9d02a45bfc3d} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{8f45c7ff-1e6e-34c1-a7cc-260985392a05} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{8f6d198c-e66f-3a87-aa3f-f885dd09ea13} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{8fd730c1-dd1b-3694-84a1-8ce7159e266b} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{91591469-efef-3d63-90f9-88520f0aa1ef} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{9173d971-b142-38a5-8488-d10a9dcf71b0} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{91f672a3-6b82-3e04-b2d7-bac5d6676609} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{92755472-2059-3f96-8938-8ac767b5187b} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{92e76a74-2622-3aa9-a3ca-1ae8bd7bc4a8} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{93f551d6-2f9e-301b-be63-85aef508cae0} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{9546306b-1b68-33af-80db-3a9206501515} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{964aa3bd-4b12-3e23-9d7f-99342afae812} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{96705ee3-f7ab-3e9a-9fb2-ad1d536e901a} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{96a058cd-faf7-386c-85bf-e47f00c81795} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{9a3a64f4-8ba5-3dcf-880c-8d3ee06c5538} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{9a944885-edaf-3a81-a2ff-6a9d5d1abfc7} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{9b924ec5-bf13-3a98-8ac0-80877995d403} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{9c125a6f-eae2-3fc1-97a1-c0dceab0b5df} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{9c67f424-22dc-3d05-ab36-17eaf95881f2} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{9da2f8b8-59f0-3852-b509-0663e3bf643b} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{9e28ef95-9c6f-3a00-b525-36a76178cc9c} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{9e31421c-2f15-4f35-ad20-66fb9d4cd428} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{9ea60eca-3dcd-340f-8e95-67845d185999} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{a0e2e749-63ce-3651-8f4f-f5f996344c32} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{a0f5f5dc-337b-38d7-b1a3-fb1b95666bbf} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{a164c0bf-67ae-3c7e-bc05-bfe24a8cdb62} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{a1c0a095-df97-3441-bfc1-c9f194e494db} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{a36738b5-fa8f-3316-a929-68099a32b43b} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{a36e4eaf-ea3f-30a6-906d-374bbf7903b1} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{a3a1f076-1fa7-3a26-886d-8841cb45382f} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{a6673c32-3943-3bbb-b476-c09a0ec0bcd6} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{a7136bdf-b141-3913-9d1c-9bc5aff21470} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{a7248ec6-a8a5-3d07-890e-6107f8c247e5} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{a8d058c4-d923-3859-9490-d3888fc90439} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{aa544d41-28cb-11d3-bd22-0000f80849bd} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{ab558a90-77ec-3c9a-a7e3-7b2260890a84} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{ad326409-bf80-3e0c-ba6f-ee2c33b675a5} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{af60343f-6c7b-3761-839f-0c44e3ca06da} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{af8c5f8a-9999-3e92-bb41-c5f4955174cd} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{afc681cf-e82f-361a-8280-cf4e1f844c3e} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{afef65ad-4577-447a-a148-83acadd3d4b9} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{b0f64827-79bb-3163-b1ab-a2ea0e1fda23} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{b406ac70-4d7e-3d24-b241-aeaeac343bd9} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{b54e38f8-17ff-3d0a-9ff3-5e662de2055f} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{b6eb52d5-bb1c-3380-8bca-345ff43f4b04} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{b71e484d-93ed-4b56-bfb9-ceed5134822b} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{b81cb5ed-e654-399f-9698-c83c50665786} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{bc5062b6-79e8-3f19-a87e-f9daf826960c} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{bcb67d4d-2096-36be-974c-a003fc95041b} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{bda7bee5-85f1-3b66-b610-ddf1d5898006} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{c016a313-9606-36d3-a823-33ebf5006189} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{c1abb475-f198-39d5-bf8d-330bc7189661} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{c30abd41-7b5a-3d10-a6ef-56862e2979b6} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{c41d0b30-a518-3093-a18f-364af9e71eb7} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{c41fa05c-8a7a-3157-8166-4104bb4925ba} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{c498f2d9-a77c-3d4b-a1a5-12cc7b99115d} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{c76b435d-86c2-30fd-9329-e2603246095c} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{c7b9c313-2fd4-4384-8571-7abc08bd17e5} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{c9f0a842-3ce1-338f-a1d4-6d7bb397bdaa} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{c9f61cbd-287f-3d24-9feb-2c3f347cf570} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{ca0f511a-faf2-4942-b9a8-17d5e46514e8} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{ca805b13-468c-3a22-bf9a-818e97efa6b7} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{caa817cc-0c04-4d22-a05c-2b7e162f4e8f} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{caec7d4f-0b02-3579-943f-821738ee78cc} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{cbeaa915-4d2c-3f77-98e8-a258b0fd3cef} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{cc20c6df-a054-3f09-a5f5-a3b5a25f4ce6} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{cc77f5f3-222d-3586-88c3-410477a3b65d} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{ccf306ae-33bd-3003-9cce-daf5befef611} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{cdc70043-d56b-3799-b7bd-6113bbca160a} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{cdfa7117-b2a4-3a3f-b393-bc19d44f9749} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{cf8f7fcf-94fe-3516-90e9-c103156dd2d5} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{d049dc2b-82c3-3350-a1cc-bf69fee3825e} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{d13b741d-051f-322f-93aa-1367a3c8aafb} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{d23d2f41-1d69-3e03-a275-32ae381223ac} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{d2548bf2-801a-36af-8800-1f11fbf54361} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{d5cb383d-99f4-3c7e-a9c3-85b53661448f} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{d6d2034d-5f67-30d7-9cc5-452f2c46694f} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{d74d613d-f27f-311b-a9a3-27ebc63a1a5d} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{d8013eef-730b-45e2-ba24-874b7242c425} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{d8013ef1-730b-45e2-ba24-874b7242c425} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{d8013ff1-730b-45e2-ba24-874b7242c425} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{d8a4f3eb-e7ec-3620-831a-b052a67c9944} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{d9035152-6b1f-33e3-86f4-411cd21cde0e} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{da317be2-1a0d-37b3-83f2-a0f32787fc67} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{daa132bf-1170-3d8b-a0ef-e2f55a68a91d} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{dafb2462-2a5b-3818-b17e-602984fe1bb0} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{db13821e-9835-3958-8539-1e021399ab6c} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{dd5856e5-8151-3334-b8e9-07cb152b20a4} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{de47d9cf-0107-3d66-93e9-a8acb06b4583} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{dfd888a7-a6b0-3b1b-985e-4cdab0e4c17d} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{e38da416-8050-3786-8201-46f187c15213} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{e724b749-18d6-36ab-9f6d-09c36d9c6016} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{e772bbe6-cb52-3c19-876a-d1bfa2305f4e} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{e786fb32-b659-3d96-94c4-e1a9fc037868} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{e7d574d5-2e51-3400-9fb6-a058f2d5b8ab} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{e822f35c-ddc2-3fb2-9768-a2aebced7c40} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{e9148312-a9bf-3a45-bbca-350967fd78f5} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{e947a0b0-d47f-3aa3-9b77-4624e0f3aca4} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{ebaa029c-01c0-32b6-aae6-fe21adfc3e5d} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{ec3dac94-df80-3017-b381-b13dced6c4d8} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{ecabafd1-7f19-11d2-978e-0000f8757e2a} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{ed0bc45c-2438-31a9-bbb6-e2a3b5916419} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{ee832ce3-06ca-33ef-8f01-61c7c218bd7e} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{ee96f4e1-377e-315c-aef5-874dc8c7a2aa} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{eef05c76-5c98-3685-a69c-6e1a26a7f846} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{ef24f689-14f8-4d92-b4af-d7b1f0e70fd4} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{f00ca7a7-4b8d-3f2f-a5f2-ce4a4478b39c} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{f12fde6a-9394-3c32-8e4d-f3d470947284} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{f1c3bf79-c3e4-11d3-88e7-00902754c43a} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{f1eba909-6621-346d-9ce2-39f266c9d011} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{f59d514c-f200-319f-bf3f-9e4e23b2848c} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{f5e692d9-8a87-349d-9657-f96e5799d2f4} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{f6914a11-d95d-324f-ba0f-39a374625290} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{f6b6768f-f99e-4152-8ed2-0412f78517fb} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{f8be2ad5-4e99-3e00-b10e-7c54d31c1c1d} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{fa0b54d5-f221-3648-a20c-f67a96f4a207} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{fc13a7d5-e2b3-37ba-b807-7fa6238284d5} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{fd8c8fce-4f85-36b2-b8e8-f5a183654539} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{fdb2dc94-b5a0-3702-ae84-bbfa752acb36} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{fdf9c30d-ccab-3e2d-b584-9e24ce8038e3} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{ffc9f9ae-e87a-3252-8e25-b22423a40065} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface\{322d6515-0ace-43ac-aa5a-3d22646b032d} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface\{3aeab122-7b2c-4809-bf6b-0b6c7779fc5a} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface\{7451dc3a-0c5b-4ea0-8a25-248a8728ab10} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface\{7ad0c9a5-87c5-436c-b9e0-5057076dffdb} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface\{7d009f2a-ef06-49c2-9067-ad364a767e1c} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface\{8855fbba-8629-42ed-8b3f-9d62e0cc1eaa} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface\{9f6cb5de-349a-418d-8c05-84e50ca10e1e} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface\{ba45be78-a410-4c98-9f69-7106bf3d8e43} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface\{d153fb67-91fe-4429-b1fa-99a0524ab25a} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface\{d4241357-4196-41c5-b38c-253b6a1d4aaa} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface\{d8cf2a7c-d097-4944-aa73-15813638c219} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface\{e1b12865-3c42-47d7-b795-b3c54ba72304} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface\{e7c9566b-6124-4723-a1d7-d0cdfa83a7b9} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface\{eeee579b-8784-454d-86af-0a665aa47785} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface\{f4976d08-3233-4d80-90f5-a5687d5441da} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface\{fcdca78f-85e4-4add-a676-76b8a09f66d9} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Typelib\{2fbe52cc-a9cd-4ff0-b70e-cf107684ccbd} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{daed9266-8c28-4c1c-8b58-5c66eff1d302} (Search.Hijack) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\tracker.trackerobj (Trojan.Zlob) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\tracker.trackerobj.1 (Trojan.Zlob) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{10c52a42-db8b-4ade-aa4a-ced6a8282b67} (Trojan.Zlob) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{10c52a42-db8b-4ade-aa4a-ced6a8282b67} (Trojan.Zlob) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{e94eb13e-d78f-0857-7734-5e67a49ffff1} (Trojan.Zlob) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\AppID\{70f17c8c-1744-41b6-9d07-575db448dcc5} (Rogue.Multiple) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{c2a1c5cb-c0ef-4689-9436-f62cca1c5383} (Trojan.Zlob) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{c2a1c5cb-c0ef-4689-9436-f62cca1c5383} (Trojan.Zlob) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface\{e85f6aa5-7a0c-49a5-9e5e-936fed62347d} (Trojan.Zlob) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Typelib\{499b8a53-5949-4625-a8bf-a4d934afc9da} (Trojan.Zlob) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{917f93bf-6714-4e11-8982-59db2e0f88fc} (Trojan.Zlob) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{90b5a95a-afd5-4d11-b9bd-a69d53d22226} (Adware.Hotbar) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface\{85e06077-c824-43d0-a8dc-5efb17bc348a} (Adware.Zango) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface\{0979850f-6c3e-4294-b225-b3d3c4a6f2a1} (Rogue.VirusProtect) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface\{1bb2da5f-b78f-44ea-bda1-771cbe1dec68} (Rogue.VirusProtect) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface\{2a4e73c5-ba3c-4391-b7e5-ffe8d3bd6245} (Rogue.VirusProtect) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface\{44a923ca-f430-4f85-9f84-5153ecdb882e} (Rogue.VirusProtect) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface\{4e6e21ec-9d72-4164-8a53-74786a467872} (Rogue.VirusProtect) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface\{631e9e48-b066-43da-92ac-6dadf61b173b} (Rogue.VirusProtect) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface\{65c1361c-e696-4af0-9e21-81910193f352} (Rogue.VirusProtect) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface\{77dce805-c8ce-48aa-a47f-bfa6cc7704b3} (Rogue.VirusProtect) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface\{8d42769f-07d8-494d-aab4-aa1652c541fa} (Rogue.VirusProtect) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface\{a1922071-390c-418d-916d-91209e95d286} (Rogue.VirusProtect) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface\{a1f8cd95-cfb3-43d1-a956-63441cc058c1} (Rogue.VirusProtect) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface\{a63b46ad-96a7-4a2c-bd8f-8cd097e1593a} (Rogue.VirusProtect) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface\{a65f98dd-2360-468c-b76e-b1b84c0d547c} (Rogue.VirusProtect) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface\{ae2aeed0-be1b-4ba2-826e-20d1991081b8} (Rogue.VirusProtect) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface\{d7f73787-6206-4bba-bdc0-7cfa9940dbcb} (Rogue.VirusProtect) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface\{e770f739-2968-4ed9-a63c-dc1938dc82a2} (Rogue.VirusProtect) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Typelib\{cfafa83c-855b-4e3d-92b9-a587995b675a} (Rogue.VirusProtect) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\AppID\MalwareWipe.EXE (Trojan.FakeAlert) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\Software\NetProject (Trojan.Zlob) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\E404.e404mgr (Trojan.BHO) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\Software\WinSpyKiller (Rogue.WinSpyKiller) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\Software\The Weather Channel (Adware.Hotbar) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\multimediaControls.chl (Trojan.Zlob) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\WUSN.1 (Adware.WhenUSave) -> Quarantined and deleted successfully.

Registry Values Infected:
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Extensions\CmdMapping\{9034a523-d068-4be8-a284-9df278be776e} (Trojan.Zlob) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\{1d2680c9-0e2a-469d-b787-065558bc7d43} (Rogue.MalwareCore) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SharedTaskScheduler\{917f93bf-6714-4e11-8982-59db2e0f88fc} (Trojan.Zlob) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\{07aa283a-43d7-4cbe-a064-32a21112d94d} (Adware.Zango) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\ShellBrowser\{07aa283a-43d7-4cbe-a064-32a21112d94d} (Adware.Zango) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\New Windows\Allow\*.securewebinfo.com (Trojan.Zlob) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\New Windows\Allow\*.safetyincludes.com (Trojan.Zlob) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\New Windows\Allow\*.securemanaging.com (Trojan.Zlob) -> Quarantined and deleted successfully.

Registry Data Items Infected:
(No malicious items detected)

Folders Infected:
C:\Program Files\Starware358 (Adware.Starware) -> Quarantined and deleted successfully.
C:\Program Files\Starware358\bin (Adware.Starware) -> Quarantined and deleted successfully.
C:\Program Files\Starware358\icons (Adware.Starware) -> Quarantined and deleted successfully.
C:\Program Files\Sotfone (Trojan.Zlob) -> Quarantined and deleted successfully.
C:\Program Files\WinSpyKiller (Rogue.WinSpyKiller) -> Quarantined and deleted successfully.
C:\Program Files\MalwareCore 7.3 (Rogue.MalwareCore) -> Quarantined and deleted successfully.
C:\Program Files\VirusHeat 3.9 (Rogue.VirusHeat) -> Quarantined and deleted successfully.
C:\Documents and Settings\Justin Hines\Start Menu\Programs\WinSpyKiller (Rogue.WinSpyKiller) -> Quarantined and deleted successfully.

Files Infected:
C:\WINDOWS\SYSTEM32\mscoree.dll (Rogue.MalwareCore) -> Delete on reboot.
C:\Program Files\Starware358\brand.bmp (Adware.Starware) -> Quarantined and deleted successfully.
C:\Program Files\Starware358\Setup.exe (Adware.Starware) -> Quarantined and deleted successfully.
C:\Program Files\Starware358\Starware358Config.xml (Adware.Starware) -> Quarantined and deleted successfully.
C:\Program Files\Starware358\Starware358Uninstall.exe (Adware.Starware) -> Quarantined and deleted successfully.
C:\Program Files\Starware358\bin\Starware358.dll (Adware.Starware) -> Quarantined and deleted successfully.
C:\Program Files\Starware358\icons\star_16.ico (Adware.Starware) -> Quarantined and deleted successfully.
C:\Program Files\Starware358\icons\Thumbs.db (Adware.Starware) -> Quarantined and deleted successfully.
C:\Program Files\WinSpyKiller\WinSpyKiller.lic (Rogue.WinSpyKiller) -> Quarantined and deleted successfully.
C:\Program Files\WinSpyKiller\WinSpyKiller0.wk (Rogue.WinSpyKiller) -> Quarantined and deleted successfully.
C:\Program Files\WinSpyKiller\WinSpyKiller1.wk (Rogue.WinSpyKiller) -> Quarantined and deleted successfully.
C:\Program Files\MalwareCore 7.3\MalwareCore 7.3.exe (Rogue.MalwareCore) -> Quarantined and deleted successfully.
C:\Program Files\MalwareCore 7.3\mwdb.dat (Rogue.MalwareCore) -> Quarantined and deleted successfully.
C:\Program Files\VirusHeat 3.9\vht.dat (Rogue.VirusHeat) -> Quarantined and deleted successfully.
C:\Program Files\VirusHeat 3.9\VirusHeat 3.9.exe (Rogue.VirusHeat) -> Quarantined and deleted successfully.
C:\Documents and Settings\Justin Hines\Start Menu\Programs\WinSpyKiller\Uninstall.lnk (Rogue.WinSpyKiller) -> Quarantined and deleted successfully.
C:\Documents and Settings\Justin Hines\Start Menu\Programs\WinSpyKiller\WinSpyKiller.lnk (Rogue.WinSpyKiller) -> Quarantined and deleted successfully.
C:\Documents and Settings\Justin Hines\Favorites\Online Security Test.url (Rogue.Link) -> Quarantined and deleted successfully.







Here is the 2nd scan I did yesterday:

Malwarebytes' Anti-Malware 1.11
Database version: 674

Scan type: Full Scan (C:\|D:\|)
Objects scanned: 99687
Time elapsed: 42 minute(s), 56 second(s)

Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 0
Registry Values Infected: 0
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 4

Memory Processes Infected:
(No malicious items detected)

Memory Modules Infected:
(No malicious items detected)

Registry Keys Infected:
(No malicious items detected)

Registry Values Infected:
(No malicious items detected)

Registry Data Items Infected:
(No malicious items detected)

Folders Infected:
(No malicious items detected)

Files Infected:
C:\System Volume Information\_restore{46DE8921-1D39-44D2-A9E9-64119261F211}\RP497\A0038518.dll (Adware.Hotbar) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{46DE8921-1D39-44D2-A9E9-64119261F211}\RP561\A0048254.dll (Adware.WhenUSave) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{46DE8921-1D39-44D2-A9E9-64119261F211}\RP561\A0048255.exe (Adware.WhenUSave) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{46DE8921-1D39-44D2-A9E9-64119261F211}\RP562\A0048591.exe (Rogue.VirusHeat) -> Quarantined and deleted successfully.

[AdvancedSetup]

You need to disable the Spybot Search & Destroy's TEA TIMER (if you need to know how say so)

Then run this ATF cleaner.

• Follow these instructions carefully.
  
• Download ATF-Cleaner from Snapfiles.com to remove "junk" files from your computer that may contain malware.
  
• You can also download it from Majorgeeks.com
  
• When you run ATF-Cleaner, check the items as shown below for Main.
  
• For FireFox, be sure to click on the FireFox tab on top and check the items as shown below for FireFox
  
• NOTE: If you don't have FireFox or Opera installed then they will be grayed out and can be ignored
  
• Then click on "Empty Selected".

.

Then uninstall all versions of Java from your Control Panel Add/Remove.

Then run Malwarebytes again and ensure you check for updates, then do a Quick Scan and allow it to clean anything it finds, then restart the computer
and post the MB logs and then run another HTJ Scan Only and post that log.
Do each one in order as shown please.

[gint279315]

Thanks for you help!! For some reason I cannot delete the java's in my add/remove. The only thing it says is the size and how often it is used. Here are my scans:

Malwarebytes' Anti-Malware 1.11
Database version: 679

Scan type: Quick Scan
Objects scanned: 42335
Time elapsed: 12 minute(s), 7 second(s)

Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 0
Registry Values Infected: 0
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 0

Memory Processes Infected:
(No malicious items detected)

Memory Modules Infected:
(No malicious items detected)

Registry Keys Infected:
(No malicious items detected)

Registry Values Infected:
(No malicious items detected)

Registry Data Items Infected:
(No malicious items detected)

Folders Infected:
(No malicious items detected)

Files Infected:
(No malicious items detected)








HiJack:

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 5:29:41 PM, on 4/24/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16640)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\CyberLink\PowerDVD\DVDLauncher.exe
C:\Program Files\Dell\Media Experience\PCMService.exe
C:\WINDOWS\system32\dla\tfswctrl.exe
C:\Program Files\Common Files\Sonic\Update Manager\sgtray.exe
C:\Program Files\Common Files\Dell\EUSW\Support.exe
C:\PROGRA~1\Grisoft\AVG7\avgcc.exe
C:\Program Files\Analog Devices\Core\smax4pnp.exe
C:\WINDOWS\system32\hkcmd.exe
C:\WINDOWS\system32\igfxpers.exe
C:\PROGRA~1\Grisoft\AVG7\avgamsvr.exe
c:\Program Files\Dell\Support\Alert\bin\NotifyAlert.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\PROGRA~1\mcafee.com\agent\McAgent.exe
C:\Program Files\DellSupport\DSAgnt.exe
C:\WINDOWS\system32\ctfmon.exe
C:\PROGRA~1\Grisoft\AVG7\avgupsvc.exe
C:\PROGRA~1\Grisoft\AVG7\avgemc.exe
C:\PROGRA~1\McAfee.com\PERSON~1\MPFSERVICE.exe
C:\WINDOWS\system32\svchost.exe
C:\PROGRA~1\McAfee.com\PERSON~1\MpfAgent.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\WINDOWS\system32\wuauclt.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.dell4me.com/myway
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft....k/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft....k/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://us.rd.yahoo.com/customize/ie/defaul...rch/search.html
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft....k/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft....k/?LinkId=69157
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = wmplayer.exe //ICWLaunch
R3 - URLSearchHook: (no name) - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)
R3 - URLSearchHook: (no name) - - (no file)
O2 - BHO: (no name) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - (no file)
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: DriveLetterAccess - {5CA3D70E-1895-11CF-8E15-001234567890} - C:\WINDOWS\system32\dla\tfswshx.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\3.0.1225.9868\swg.dll
O3 - Toolbar: McAfee VirusScan - {BA52B914-B692-46c4-B683-905236F6F655} - c:\progra~1\mcafee.com\vso\mcvsshl.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O4 - HKLM\..\Run: [DVDLauncher] "C:\Program Files\CyberLink\PowerDVD\DVDLauncher.exe"
O4 - HKLM\..\Run: [PCMService] "C:\Program Files\Dell\Media Experience\PCMService.exe"
O4 - HKLM\..\Run: [dla] C:\WINDOWS\system32\dla\tfswctrl.exe
O4 - HKLM\..\Run: [UpdateManager] "C:\Program Files\Common Files\Sonic\Update Manager\sgtray.exe" /r
O4 - HKLM\..\Run: [DwlClient] c:\Program Files\Common Files\Dell\EUSW\Support.exe
O4 - HKLM\..\Run: [SM_IAN] C:\Program Files\AdvancedCleaner Free\ian_monitor.exe
O4 - HKLM\..\Run: [AVG7_CC] C:\PROGRA~1\Grisoft\AVG7\avgcc.exe /STARTUP
O4 - HKLM\..\Run: [SoundMAXPnP] C:\Program Files\Analog Devices\Core\smax4pnp.exe
O4 - HKLM\..\Run: [igfxtray] C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [igfxhkcmd] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [igfxpers] C:\WINDOWS\system32\igfxpers.exe
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [MCUpdateExe] C:\PROGRA~1\mcafee.com\agent\McUpdate.exe
O4 - HKLM\..\Run: [MCAgentExe] c:\PROGRA~1\mcafee.com\agent\McAgent.exe
O4 - HKCU\..\Run: [DellSupport] "C:\Program Files\DellSupport\DSAgnt.exe" /startup
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKUS\S-1-5-19\..\Run: [AVG7_Run] C:\PROGRA~1\Grisoft\AVG7\avgw.exe /RUNONCE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [AVG7_Run] C:\PROGRA~1\Grisoft\AVG7\avgw.exe /RUNONCE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [AVG7_Run] C:\PROGRA~1\Grisoft\AVG7\avgw.exe /RUNONCE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [AVG7_Run] C:\PROGRA~1\Grisoft\AVG7\avgw.exe /RUNONCE (User 'Default user')
O4 - Global Startup: Microsoft Office.lnk = C:\MSOffice\Office10\OSA.EXE
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\MSOffice\Office10\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\system32\Shdocvw.dll
O9 - Extra button: MUSICMATCH MX Web Player - {d81ca86b-ef63-42af-bee3-4502d9a03c2d} - http://wwws.musicmat...enWebRadio.html (file missing)
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {2D8ED06D-3C30-438B-96AE-4D110FDC1FB8} (ActiveScan 2.0 Installer Class) - http://acs.pandasoft...s/as2stubie.cab
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (Installation Support) - C:\Program Files\Yahoo!\Common\Yinsthelper.dll
O16 - DPF: {4A769165-055C-4566-ABBB-3EA82DD4F8AE} (IVSLite.FastViewer) - http://www.ipinviewe...bin/IVSLite.CAB
O16 - DPF: {77E32299-629F-43C6-AB77-6A1E6D7663F6} (Groove Control) - http://atv.disney.go...y/OTOYAX29b.cab
O16 - DPF: {9600F64D-755F-11D4-A47F-0001023E6D5A} (Shutterfly Picture Upload Plugin) - http://web1.shutterf...ds/Uploader.cab
O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgamsvr.exe
O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgupsvc.exe
O23 - Service: AVG E-mail Scanner (AVGEMS) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgemc.exe
O23 - Service: DSBrokerService - Unknown owner - C:\Program Files\DellSupport\brkrsvc.exe
O23 - Service: McAfee Personal Firewall Service (MpfService) - McAfee Corporation - C:\PROGRA~1\McAfee.com\PERSON~1\MPFSERVICE.exe
O24 - Desktop Component 0: (no name) - http://im1.shutterfly.com/procserv/47b7d81...0100Bas2jNs3bMd

--
End of file - 7825 bytes

[AdvancedSetup]

You need to remove the old JAVA - If you can not remove it then let me know and I'll find another
method to help you remove it and get an updated version installed.

It looks like you may be running 2 AntiVirus products AVG/McAfee if that's true then you need
to remove one of them as they conflict with each other.

Try to remove AdvancedCleaner Free from the Add/Remove in Control Panel
You can also download and install RogueRemover FREE
then have it remove any items found.


Let me know if one of the items above doesn't work and we can try another way.

[gint279315]

In my add/remove, I can't delete the JAVA. Also, in the add/remove I do not show AdvancedCleaner Free, or the McAfee. Currently I disabled McAfee. I went ahead and downloaded and installed RogueRemover FREE. It did not find anything, so that's good news at least for now. The computer still seems sluggush though.

[AdvancedSetup]

No, we're not done we just need to clean up some items on your system another way.
I have to run out for a while but will post back later this evening.

[gint279315]

Sounds good. Thanks for all your help!!! I will check back probably in the morning, as I will be gone tonight. Thanks again.

[gint279315]

Just to let you know, I am ready when you are. Thanks again for your help!

[AdvancedSetup]

Okay for now please delete your old System Restore Points and create a new one.

How to turn off and turn on System Restore in Windows XP

Then while I find or create a method to remove your old Java go ahead (after the System Restore changes) and
do a system defrag.

Go to Start-Programs-Accessories-System Tools-Disk Defragmenter
Then Defragment your drive.

I will see what I can find or do about the Java but it may take me a while.

[gint279315]

Ok I completed the system restore, and will now go and Defragment my drive. Take your time. I appreciate all your help!

[gint279315]

I just wanted to let you know that I am done doing what you requested. I will check back throughout the day and see if you have found any info on the JAVA. Thanks again.

[AdvancedSetup]

Okay, well I think we're going to have to work on together on this and do a manual removal of the old Java.

Will post back some information later on.

[AdvancedSetup]

[indent]
This is not a full all encompassing Java removal but it will remove enough of the Java applications to prevent
using an old version and we can then install a new version when done.
If you're not sure of something please post first before doing it and I'll try to explain it.

Please set your FOLDER OPTIONS to prevent hiding files and folders.
Open My Computer on the menu click Tools - Folder Options...
Then set your settings as shown in the picture so that you can see all files and folders.
[indent][/indent]

Copy the contents of this code into NOTEPAD.
Then save the file and on the save options where it says Save as type: select all files
then remember where you save the file - and name it REMOVEJAVA.REG
Then Double-click on it and when it asks you to add information to the Registry click on YES
Then click OK, then go run the File and Folder batch file below.
REMOVE Basic Java entries in the Registry

REGEDIT4

[-HKEY_CURRENT_USER\Software\JavaSoft]

[-HKEY_LOCAL_MACHINE\SOFTWARE\JavaSoft]

[-HKEY_CLASSES_ROOT\jarfile]

[-HKEY_CLASSES_ROOT\JavaPlugin]

[-HKEY_CLASSES_ROOT\JavaPlugin.150_06]

[-HKEY_CLASSES_ROOT\JavaPlugin.160_01]

[-HKEY_CLASSES_ROOT\JavaPlugin.160_02]

[-HKEY_CLASSES_ROOT\JavaPlugin.160_03]

[-HKEY_CLASSES_ROOT\JavaPlugin.160_04]

[-HKEY_CLASSES_ROOT\JavaPlugin.160_05]

[-HKEY_CLASSES_ROOT\JavaPlugin.FamilyVersionSupport]

[-HKEY_CLASSES_ROOT\JavaWebStart.isInstalled]

Copy the contents of this code into NOTEPAD.
Then save the file and on the save options where it says Save as type: select all files
then remember where you save the file - and name it REMOVEJAVA.BAT
Run the Registry changes above first
Then double click on the REMOVEJAVA.BAT file and restart your computer when it's completed.
If there were any errors displayed when the batch file ran then run it again after you restart your computer.

REMOVE Basic Java files from the computer

@ECHO OFF
RD "C:\Program Files\Java" /S /Q
RD "C:\Windows\Java" /S /Q
RD "C:\Program Files\Common Files\Java" /S /Q
DEL C:\WINDOWS\SYSTEM32\JAVA*.EXE
DEL C:\WINDOWS\SYSTEM32\jpicpl32.cpl
DEL C:\WINDOWS\SYSTEM32\javacpl.cpl
RD "%appdata%\Sun\Java" /S /Q
ECHO Completed removal of Java files and folders
PAUSE

Download this utility from Microsoft
Description of the Windows Installer CleanUp Utility
Download the Windows Installer Cleanup Utility package now.

Then install it and it will put a short cut on your Start - Programs menu
Start it up and highlight the Java if found and remove it.

Then restart your computer one more time and then visit this site and install the latest version
of JAVA from Sun. Download Java for your desktop computer now!

Then post back your current status for Java or if you had any problems with the removal or have questions and we'll continue working on your system.
[/indent]


.

[gint279315]

I did all you asked. I deleted 3 JAVA items. I have updated the JAVA to: JAVE Platform Standard Edition Version 6 Update 5 (build 1.6.0_05-b13). I had no issues when removing or interstalling the JAVA. Do you want me to hide the files/folders again? Otherwise I do not have any questions right now. I am ready for the next stop whenever you are. Thanks for all the help. I'm glad I found this site!!

[AdvancedSetup]

Well hiding the files and folders is a personal choice.
I myself prefer to not hide them but it's up to you, the computer will operate the same regardless of how they're set.

Okay please run HiJackThis again and do a scan only and post the log here again and I'll review it to see what your system looks like now.

[gint279315]

Here you go:

Hijack:

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 3:34:51 PM, on 5/1/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16640)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\PROGRA~1\Grisoft\AVG7\avgamsvr.exe
C:\PROGRA~1\Grisoft\AVG7\avgupsvc.exe
C:\PROGRA~1\Grisoft\AVG7\avgemc.exe
C:\Program Files\CyberLink\PowerDVD\DVDLauncher.exe
C:\Program Files\Dell\Media Experience\PCMService.exe
C:\WINDOWS\system32\dla\tfswctrl.exe
C:\Program Files\Common Files\Dell\EUSW\Support.exe
C:\PROGRA~1\Grisoft\AVG7\avgcc.exe
C:\Program Files\Analog Devices\Core\smax4pnp.exe
c:\Program Files\Dell\Support\Alert\bin\NotifyAlert.exe
C:\WINDOWS\system32\hkcmd.exe
C:\WINDOWS\system32\igfxpers.exe
C:\PROGRA~1\mcafee.com\agent\McAgent.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\WINDOWS\system32\hphmon04.exe
C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe
C:\Program Files\DellSupport\DSAgnt.exe
C:\Program Files\Dell Support Center\bin\sprtsvc.exe
C:\WINDOWS\system32\ctfmon.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Dell Support Center\bin\sprtcmd.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\wscntfy.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.dell4me.com/myway
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft....k/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft....k/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://us.rd.yahoo.com/customize/ie/defaul...rch/search.html
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft....k/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft....k/?LinkId=69157
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = wmplayer.exe //ICWLaunch
R3 - URLSearchHook: (no name) - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)
R3 - URLSearchHook: (no name) - - (no file)
O2 - BHO: (no name) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - (no file)
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: DriveLetterAccess - {5CA3D70E-1895-11CF-8E15-001234567890} - C:\WINDOWS\system32\dla\tfswshx.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\3.0.1225.9868\swg.dll
O3 - Toolbar: McAfee VirusScan - {BA52B914-B692-46c4-B683-905236F6F655} - c:\progra~1\mcafee.com\vso\mcvsshl.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O4 - HKLM\..\Run: [DVDLauncher] "C:\Program Files\CyberLink\PowerDVD\DVDLauncher.exe"
O4 - HKLM\..\Run: [PCMService] "C:\Program Files\Dell\Media Experience\PCMService.exe"
O4 - HKLM\..\Run: [dla] C:\WINDOWS\system32\dla\tfswctrl.exe
O4 - HKLM\..\Run: [UpdateManager] "C:\Program Files\Common Files\Sonic\Update Manager\sgtray.exe" /r
O4 - HKLM\..\Run: [DwlClient] c:\Program Files\Common Files\Dell\EUSW\Support.exe
O4 - HKLM\..\Run: [SM_IAN] C:\Program Files\AdvancedCleaner Free\ian_monitor.exe
O4 - HKLM\..\Run: [AVG7_CC] C:\PROGRA~1\Grisoft\AVG7\avgcc.exe /STARTUP
O4 - HKLM\..\Run: [SoundMAXPnP] C:\Program Files\Analog Devices\Core\smax4pnp.exe
O4 - HKLM\..\Run: [igfxtray] C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [igfxhkcmd] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [igfxpers] C:\WINDOWS\system32\igfxpers.exe
O4 - HKLM\..\Run: [MCUpdateExe] C:\PROGRA~1\mcafee.com\agent\mcupdate.exe
O4 - HKLM\..\Run: [MCAgentExe] c:\PROGRA~1\mcafee.com\agent\McAgent.exe
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [HPDJ Taskbar Utility] C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb07.exe
O4 - HKLM\..\Run: [HPHmon04] C:\WINDOWS\system32\hphmon04.exe
O4 - HKLM\..\Run: [HPHUPD04] "C:\Program Files\HP Photosmart 11\hphinstall\UniPatch\hphupd04.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe"
O4 - HKLM\..\Run: [dscactivate] "C:\Program Files\Dell Support Center\gs_agent\custom\dsca.exe"
O4 - HKLM\..\Run: [McRegWiz] c:\PROGRA~1\mcafee.com\agent\mcregwiz.exe /autorun
O4 - HKCU\..\Run: [DellSupport] "C:\Program Files\DellSupport\DSAgnt.exe" /startup
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [DellSupportCenter] "C:\Program Files\Dell Support Center\bin\sprtcmd.exe" /P DellSupportCenter
O4 - HKUS\S-1-5-19\..\Run: [AVG7_Run] C:\PROGRA~1\Grisoft\AVG7\avgw.exe /RUNONCE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [AVG7_Run] C:\PROGRA~1\Grisoft\AVG7\avgw.exe /RUNONCE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [AVG7_Run] C:\PROGRA~1\Grisoft\AVG7\avgw.exe /RUNONCE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [AVG7_Run] C:\PROGRA~1\Grisoft\AVG7\avgw.exe /RUNONCE (User 'Default user')
O4 - Global Startup: Microsoft Office.lnk = C:\MSOffice\Office10\OSA.EXE
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\MSOffice\Office10\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\system32\Shdocvw.dll
O9 - Extra button: MUSICMATCH MX Web Player - {d81ca86b-ef63-42af-bee3-4502d9a03c2d} - http://wwws.musicmat...enWebRadio.html (file missing)
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {25365FF3-2746-4230-9DA7-163CCA318309} (Automatic Driver Installation Control) - http://inst.c-wss.co...ll/gtdownlr.cab
O16 - DPF: {2D8ED06D-3C30-438B-96AE-4D110FDC1FB8} (ActiveScan 2.0 Installer Class) - http://acs.pandasoft...s/as2stubie.cab
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (Installation Support) - C:\Program Files\Yahoo!\Common\Yinsthelper.dll
O16 - DPF: {4A769165-055C-4566-ABBB-3EA82DD4F8AE} (IVSLite.FastViewer) - http://www.ipinviewe...bin/IVSLite.CAB
O16 - DPF: {54BE6B6F-3056-470B-97E1-BB92E051B6C4} (DeviceEnum Class) - http://h20264.www2.hp.com/ediags/dd/instal...nosticsxp2k.cab
O16 - DPF: {77E32299-629F-43C6-AB77-6A1E6D7663F6} (Groove Control) - http://atv.disney.go...y/OTOYAX29b.cab
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} (Java Runtime Environment 1.6.0) - http://sdlc-esd.sun.com/ESD40/JSCDL/jre/6u...ows-i586-jc.cab
O16 - DPF: {9600F64D-755F-11D4-A47F-0001023E6D5A} (Shutterfly Picture Upload Plugin) - http://web1.shutterf...ds/Uploader.cab
O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgamsvr.exe
O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgupsvc.exe
O23 - Service: AVG E-mail Scanner (AVGEMS) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgemc.exe
O23 - Service: DSBrokerService - Unknown owner - C:\Program Files\DellSupport\brkrsvc.exe
O23 - Service: McAfee Personal Firewall Service (MpfService) - McAfee Corporation - C:\PROGRA~1\McAfee.com\PERSON~1\MPFSERVICE.exe
O23 - Service: Pml Driver HPH11 - HP - C:\WINDOWS\system32\HPHipm11.exe
O23 - Service: SupportSoft Sprocket Service (dellsupportcenter) (sprtsvc_dellsupportcenter) - SupportSoft, Inc. - C:\Program Files\Dell Support Center\bin\sprtsvc.exe
O24 - Desktop Component 0: (no name) - http://im1.shutterfly.com/procserv/47b7d81...0100Bas2jNs3bMd

--
End of file - 9828 bytes

[AdvancedSetup]

Please run HiJackThis and do a scan and place a check mark in this item
O4 - HKLM\..\Run: [SM_IAN] C:\Program Files\AdvancedCleaner Free\ian_monitor.exe
Then click on Fix checked

Now, please try Uninstalling using this McAfee Consumer Product Removal Tool
Download the MCPR.EXE file and double-click to run it and following the directions given.
MCPR.EXE

Then after the McAfee cleanup and a restart of your computer. Open My Computer and browse to this
location C:\Program Files\AdvancedCleaner Free and try to delete this folder.
If you can not delete it let me know.

Then run another HiJackThis log and post here so that I can confirm that these items were removed.

[gint279315]

Sorry it took so long to respond, I'll been sick. Anyways, I did as you requested. Again, thank you for all your help. Here is the Hijack log:

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 1:51:38 PM, on 5/3/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16640)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\PROGRA~1\Grisoft\AVG7\avgamsvr.exe
C:\Program Files\CyberLink\PowerDVD\DVDLauncher.exe
C:\Program Files\Dell\Media Experience\PCMService.exe
C:\WINDOWS\system32\dla\tfswctrl.exe
C:\PROGRA~1\Grisoft\AVG7\avgupsvc.exe
C:\Program Files\Common Files\Sonic\Update Manager\sgtray.exe
C:\PROGRA~1\Grisoft\AVG7\avgemc.exe
C:\Program Files\Common Files\Dell\EUSW\Support.exe
C:\PROGRA~1\Grisoft\AVG7\avgcc.exe
C:\Program Files\Analog Devices\Core\smax4pnp.exe
C:\WINDOWS\system32\hkcmd.exe
C:\WINDOWS\system32\igfxpers.exe
c:\Program Files\Dell\Support\Alert\bin\NotifyAlert.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe
C:\Program Files\Dell Support Center\bin\sprtsvc.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\hphmon04.exe
C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe
C:\Program Files\DellSupport\DSAgnt.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Dell Support Center\bin\sprtcmd.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\wscntfy.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
C:\WINDOWS\system32\wuauclt.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.dell4me.com/myway
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft....k/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft....k/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://us.rd.yahoo.com/customize/ie/defaul...rch/search.html
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft....k/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft....k/?LinkId=69157
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = wmplayer.exe //ICWLaunch
R3 - URLSearchHook: (no name) - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)
R3 - URLSearchHook: (no name) - - (no file)
O2 - BHO: (no name) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - (no file)
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG8\avgssie.dll (file missing)
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: DriveLetterAccess - {5CA3D70E-1895-11CF-8E15-001234567890} - C:\WINDOWS\system32\dla\tfswshx.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O2 - BHO: AVG Security Toolbar - {A057A204-BACC-4D26-9990-79A187E2698E} - C:\PROGRA~1\AVG\AVG8\AVGTOO~1.DLL (file missing)
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\3.0.1225.9868\swg.dll
O3 - Toolbar: (no name) - {BA52B914-B692-46c4-B683-905236F6F655} - (no file)
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O3 - Toolbar: AVG Security Toolbar - {A057A204-BACC-4D26-9990-79A187E2698E} - C:\PROGRA~1\AVG\AVG8\AVGTOO~1.DLL (file missing)
O4 - HKLM\..\Run: [DVDLauncher] "C:\Program Files\CyberLink\PowerDVD\DVDLauncher.exe"
O4 - HKLM\..\Run: [PCMService] "C:\Program Files\Dell\Media Experience\PCMService.exe"
O4 - HKLM\..\Run: [dla] C:\WINDOWS\system32\dla\tfswctrl.exe
O4 - HKLM\..\Run: [UpdateManager] "C:\Program Files\Common Files\Sonic\Update Manager\sgtray.exe" /r
O4 - HKLM\..\Run: [DwlClient] c:\Program Files\Common Files\Dell\EUSW\Support.exe
O4 - HKLM\..\Run: [AVG7_CC] C:\PROGRA~1\Grisoft\AVG7\avgcc.exe /STARTUP
O4 - HKLM\..\Run: [SoundMAXPnP] C:\Program Files\Analog Devices\Core\smax4pnp.exe
O4 - HKLM\..\Run: [igfxtray] C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [igfxhkcmd] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [igfxpers] C:\WINDOWS\system32\igfxpers.exe
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [HPDJ Taskbar Utility] C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb07.exe
O4 - HKLM\..\Run: [HPHmon04] C:\WINDOWS\system32\hphmon04.exe
O4 - HKLM\..\Run: [HPHUPD04] "C:\Program Files\HP Photosmart 11\hphinstall\UniPatch\hphupd04.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe"
O4 - HKLM\..\Run: [dscactivate] "C:\Program Files\Dell Support Center\gs_agent\custom\dsca.exe"
O4 - HKCU\..\Run: [DellSupport] "C:\Program Files\DellSupport\DSAgnt.exe" /startup
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [DellSupportCenter] "C:\Program Files\Dell Support Center\bin\sprtcmd.exe" /P DellSupportCenter
O4 - HKUS\S-1-5-19\..\Run: [AVG7_Run] C:\PROGRA~1\Grisoft\AVG7\avgw.exe /RUNONCE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [AVG7_Run] C:\PROGRA~1\Grisoft\AVG7\avgw.exe /RUNONCE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [AVG7_Run] C:\PROGRA~1\Grisoft\AVG7\avgw.exe /RUNONCE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [AVG7_Run] C:\PROGRA~1\Grisoft\AVG7\avgw.exe /RUNONCE (User 'Default user')
O4 - Global Startup: Microsoft Office.lnk = C:\MSOffice\Office10\OSA.EXE
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\MSOffice\Office10\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\system32\Shdocvw.dll
O9 - Extra button: MUSICMATCH MX Web Player - {d81ca86b-ef63-42af-bee3-4502d9a03c2d} - http://wwws.musicmat...enWebRadio.html (file missing)
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {25365FF3-2746-4230-9DA7-163CCA318309} (Automatic Driver Installation Control) - http://inst.c-wss.co...ll/gtdownlr.cab
O16 - DPF: {2D8ED06D-3C30-438B-96AE-4D110FDC1FB8} (ActiveScan 2.0 Installer Class) - http://acs.pandasoft...s/as2stubie.cab
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (Installation Support) - C:\Program Files\Yahoo!\Common\Yinsthelper.dll
O16 - DPF: {4A769165-055C-4566-ABBB-3EA82DD4F8AE} (IVSLite.FastViewer) - http://www.ipinviewe...bin/IVSLite.CAB
O16 - DPF: {54BE6B6F-3056-470B-97E1-BB92E051B6C4} (DeviceEnum Class) - http://h20264.www2.hp.com/ediags/dd/instal...nosticsxp2k.cab
O16 - DPF: {77E32299-629F-43C6-AB77-6A1E6D7663F6} (Groove Control) - http://atv.disney.go...y/OTOYAX29b.cab
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} (Java Runtime Environment 1.6.0) - http://sdlc-esd.sun.com/ESD40/JSCDL/jre/6u...ows-i586-jc.cab
O16 - DPF: {9600F64D-755F-11D4-A47F-0001023E6D5A} (Shutterfly Picture Upload Plugin) - http://web1.shutterf...ds/Uploader.cab
O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG8\avgpp.dll (file missing)
O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgamsvr.exe
O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgupsvc.exe
O23 - Service: AVG E-mail Scanner (AVGEMS) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgemc.exe
O23 - Service: DSBrokerService - Unknown owner - C:\Program Files\DellSupport\brkrsvc.exe
O23 - Service: Pml Driver HPH11 - HP - C:\WINDOWS\system32\HPHipm11.exe
O23 - Service: SupportSoft Sprocket Service (dellsupportcenter) (sprtsvc_dellsupportcenter) - SupportSoft, Inc. - C:\Program Files\Dell Support Center\bin\sprtsvc.exe
O24 - Desktop Component 0: (no name) - http://im1.shutterfly.com/procserv/47b7d81...0100Bas2jNs3bMd

--
End of file - 9930 bytes

[AdvancedSetup]

Sorry to hear of your illness. Hope you're feeling better.

I have to run out for the day but will try to review it later tonight or tomorrow.