|
Spyware File Details O4 - Startup: PowerReg Scheduler V3.exe Last Detected: 4/23/2007 10:47:00 AM Found on 7 PCs. Users with this object complained of the following: "all" PCs containing this item also contained the following spyware: R3 - URLSearchHook: (no name) - _{1C78AB3F-A857-482e-80C0-3A1E5238A565} - (no file) (More Details) O1 - Hosts: 127.0.0.0 localhost (More Details) O1 - Hosts: 127.0.0.2 auditmypc.com (More Details) O1 - Hosts: 127.0.0.4 bulletproofsoft.net (More Details) O1 - Hosts: 127.0.0.5 camtech2000.net (More Details) O1 - Hosts: 127.0.0.6 cexx.org (More Details) O1 - Hosts: 127.0.0.7 computercops.us (More Details) O1 - Hosts: 127.0.0.8 ct7support.com (More Details) O1 - Hosts: 127.0.0.9 doxdesk.com (More Details) O1 - Hosts: 127.0.0.20 kellys-korner-xp.com (More Details) R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = about:blank (More Details) R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://searchbar.findthewebsiteyouneed.com (More Details) R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://searchbar.findthewebsiteyouneed.com (More Details) R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://searchbar.findthewebsiteyouneed.com (More Details) R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://searchbar.findthewebsiteyouneed.com (More Details) R1 - HKCU\Software\Microsoft\Internet Explorer\Search,SearchAssistant = about:blank (More Details) R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://searchbar.findthewebsiteyouneed.com (More Details) R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = (More Details) R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = 127.0.0.1 (More Details) R3 - URLSearchHook: (no name) - _{00A6FAF6-072E-44cf-8957-5838F569A31D} - (no file) (More Details) O2 - BHO: (no name) - {549B5CA7-4A86-11D7-A4DF-000874180BB3} - (no file) (More Details) O2 - BHO: (no name) - {87766247-311C-43B4-8499-3D5FEC94A183} - C:\PROGRA~1\COMMON~1\WinTools\WToolsB.dll (file missing) (More Details) O2 - BHO: DosSpecFolder Object - {FDA4DFFB-2C3D-4730-8D7E-28523C7F2F67} - C:\WINDOWS\System32\mljjk.dll (file missing) (More Details) O2 - BHO: (no name) - {FDD3B846-8D59-4ffb-8758-209B6AD74ACC} - (no file) (More Details) O9 - Extra button: (no name) - {ECC5777A-6E88-BFCE-13CE-81F134789E7B} - (no file) (More Details) O16 - DPF: {15AD6789-CDB4-47E1-A9DA-992EE8E6BAD6} - http://static.windupdates.com/cab/Media...dge-c6.cab (More Details) O20 - Winlogon Notify: cathard - C:\WINDOWS\cathard.dll (file missing) (More Details) O23 - Service: WinTools for IE service (WinToolsSvc) - Unknown owner - C:\Program Files\Common Files\WinTools\WToolsS.exe (file missing) (More Details) O4 - Startup: PowerReg Scheduler V3.exe (More Details) O2 - BHO: (no name) - {7E479D50-D914-3A21-F424-844A506F236A} - (no file) (More Details) O2 - BHO: (no name) - {859E370A-A5AF-4A34-9D1B-DCB6FEE11EFF} - C:\WINNT\system32\vtssp.dll (More Details) O2 - BHO: (no name) - {a43385f0-7113-496d-96d7-b9b550e3fcca} - C:\WINNT\system32\ixt2.dll (file missing) (More Details) O4 - User Startup: PowerReg Scheduler V3.exe (More Details) O20 - Winlogon Notify: vtssp - C:\WINNT\system32\vtssp.dll (More Details) R3 - URLSearchHook: DeskbarBHO - {A8B28872-3324-4CD2-8AA3-7D555C872D96} - C:\Program Files\Deskbar\deskbar.dll (More Details) O2 - BHO: DeskbarBHO - {A8B28872-3324-4CD2-8AA3-7D555C872D96} - C:\Program Files\Deskbar\deskbar.dll (More Details) O2 - BHO: ToolBar888 - {C004DEC2-2623-438e-9CA2-C9043AB28508} - C:\Program Files\Common Files\{3CDF97DD-0BB6-5129-1124-030310280040}\MyToolBar.dll (More Details) O3 - Toolbar: ToolBar888 - {C004DEC2-2623-438e-9CA2-C9043AB28508} - C:\Program Files\Common Files\{3CDF97DD-0BB6-5129-1124-030310280040}\MyToolBar.dll (More Details) O4 - HKLM\..\Run: [IpWins] C:\Program Files\ipwins\ipwins.exe (More Details) O4 - Startup: csrss.lnk = ? (More Details) Back to Spyware List |
||||||
| About HijackRemote | Recently Slayed Spyware | Message Board | Contact Us | ||||||
| HijackRemote ©2005 (Terms of Service) | ||||||
