[Request]HJT Log (Please~)

[GweeYupDa]

Logfile of HijackThis v1.99.1
Scan saved at 오전 2:22:19, on 2005-06-26
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\System32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\WINDOWS\system32\conime.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Common Files\WinTools\WToolsS.exe
C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
C:\Program Files\Logitech\Video\LogiTray.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashmaisv.exe
C:\Program Files\Java\jre1.5.0_02\bin\jusched.exe
C:\Program Files\Media Access\MediaAccK.exe
C:\PROGRA~1\COMMON~1\WinTools\WToolsA.exe
C:\Program Files\Media Access\MediaAccess.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\WINDOWS\System32\nologofix.exe
C:\WINDOWS\system32\wiaudiosu.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Common Files\WinTools\WSup.exe
C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\System32\LVComS.exe
C:\Program Files\Logitech\Video\LowLight.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\unzipped\hijackthis\HijackThis.exe

R3 - URLSearchHook: (no name) - {181E0A01-9266-45A7-888F-582853F70FAE} - (no file)
F2 - REG:system.ini: UserInit=C:\WINDOWS\system32\userinit.exe
O2 - BHO: CeresObj Class - {00000049-8F91-4D9C-9573-F016E7626484} - C:\WINDOWS\ceres.dll
O2 - BHO: MxTargetObj Class - {0000607D-D204-42C7-8E46-216055BF9918} - C:\WINDOWS\mxTarget.dll
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {2C817DD5-B094-41F8-9036-1A97348C012B} - (no file)
O2 - BHO: ViewSource Class - {39D3264A-0031-49DB-860D-37647ACCB78A} - C:\WINDOWS\system32\wiaudios.dll
O2 - BHO: Dvd Bits Dog - {4C680706-8FFA-CDE6-C489-30870E87E0BD} - C:\PROGRA~1\SURFKNOB\Wipe Flaw.dll (file missing)
O2 - BHO: (no name) - {87766247-311C-43B4-8499-3D5FEC94A183} - C:\PROGRA~1\COMMON~1\WinTools\WToolsB.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O2 - BHO: NTIECatcher Class - {C56CB6B0-0D96-11D6-8C65-B2868B609932} - C:\Program Files\Xi\NetTransport 2\NTIEHelper.dll
O2 - BHO: tbupdate - {E53E32CD-FAEE-481C-BA04-AB9B544000BD} - C:\WINDOWS\System32\tbupdate.dll
O2 - BHO: ViewSource Class - {EA3F22AA-0B75-43D3-9111-B04B701ABB32} - C:\WINDOWS\System32\nologo01.dll
O2 - BHO: (no name) - ~{204E9F8F-38CA-4E11-BA91-06B685285CC0} - (no file)
O2 - BHO: (no name) - ~{2C817DD5-B094-41F8-9036-1A97348C012B} - (no file)
O2 - BHO: (no name) - ~{39D3264A-0031-49DB-860D-37647ACCB78A} - (no file)
O2 - BHO: (no name) - ~{EA3F22AA-0B75-43D3-9111-B04B701ABB32} - (no file)
O3 - Toolbar: (no name) - {327C2873-E90D-4c37-AA9D-10AC9BABA46C} - (no file)
O3 - Toolbar: (no name) - {2CDE1A7D-A478-4291-BF31-E1B4C16F92EB} - (no file)
O3 - Toolbar: chic amok - {829F15DA-EEC4-878D-8770-E431C34ED8EE} - C:\PROGRA~1\SURFKNOB\Wipe Flaw.dll (file missing)
O3 - Toolbar: (no name) - {BA52B914-B692-46c4-B683-905236F6F655} - (no file)
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [LogitechVideoRepair] C:\Program Files\Logitech\Video\ISStart.exe
O4 - HKLM\..\Run: [IMJPMIG8.1] C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE /Spoil /RemAdvDef /Migration32
O4 - HKLM\..\Run: [MSPY2002] C:\WINDOWS\System32\IME\PINTLGNT\ImScInst.exe /SYNC
O4 - HKLM\..\Run: [PHIME2002ASync] C:\WINDOWS\System32\IME\TINTLGNT\TINTSETP.EXE /SYNC
O4 - HKLM\..\Run: [PHIME2002A] C:\WINDOWS\System32\IME\TINTLGNT\TINTSETP.EXE /IMEName
O4 - HKLM\..\Run: [LogitechVideoTray] C:\Program Files\Logitech\Video\LogiTray.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [stcinstaller] c:\installer\id53.exe
O4 - HKLM\..\Run: [ashMaiSv] C:\PROGRA~1\ALWILS~1\Avast4\ashmaisv.exe
O4 - HKLM\..\Run: [SysMetrix] C:\Program Files\SysMetrix\SysMetrix.exe
O4 - HKLM\..\Run: [ynbmzgplw] C:\WINDOWS\System32\nfhrer.exe
O4 - HKLM\..\Run: [TbWinUpdate] C:\WINDOWS\system32\updateex1.exe
O4 - HKLM\..\Run: [dint] C:\Program Files\msgv\iqv.exe
O4 - HKLM\..\Run: [satmat] C:\WINDOWS\satmat.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_02\bin\jusched.exe
O4 - HKLM\..\Run: [farmmext] C:\WINDOWS\farmmext.exe
O4 - HKLM\..\Run: [Media Access] C:\Program Files\Media Access\MediaAccK.exe
O4 - HKLM\..\Run: [WinTools] C:\PROGRA~1\COMMON~1\WinTools\WToolsA.exe
O4 - HKLM\..\Run: [Fzrercl] C:\Program Files\Eebp\Flel.exe
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKCU\..\Run: [NOLOGO Agent] C:\WINDOWS\System32\nologofix.exe
O4 - HKCU\..\Run: [Tsa] C:\PROGRA~1\COMMON~1\tsa\tsm.exe
O4 - HKCU\..\Run: [CARD V5] C:\WINDOWS\system32\wiaudiosu.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O8 - Extra context menu item: &Google Search - res://c:\program files\google\GoogleToolbar1.dll/cmsearch.html
O8 - Extra context menu item: Backward Links - res://c:\program files\google\GoogleToolbar1.dll/cmbacklinks.html
O8 - Extra context menu item: Cached Snapshot of Page - res://c:\program files\google\GoogleToolbar1.dll/cmcache.html
O8 - Extra context menu item: Enqueue in Star Downloader - C:\Program Files\Star Downloader\sdieenq.htm
O8 - Extra context menu item: Net Transport로 모두 받기(&L) - C:\Program Files\Xi\NetTransport 2\NTAddList.html
O8 - Extra context menu item: Net Transport로 받기(&N) - C:\Program Files\Xi\NetTransport 2\NTAddLink.html
O8 - Extra context menu item: Similar Pages - res://c:\program files\google\GoogleToolbar1.dll/cmsimilar.html
O8 - Extra context menu item: Translate into English - res://c:\program files\google\GoogleToolbar1.dll/cmtrans.html
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_02\bin\npjpi150_02.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_02\bin\npjpi150_02.dll
O9 - Extra button: AIM - {AC9E2541-2814-11d5-BC6D-00B0D0A1DE45} - C:\Program Files\AIM\aim.exe
O9 - Extra button: (no name) - {AFC3FA82-AD07-45cd-8B57-983435B9899E} - (no file)
O9 - Extra button: (no name) - {6685509E-B47B-4f47-8E16-9A5F3A62F683} - file://C:\Program Files\Ebates_MoeMoneyMaker\Sy350\Tp350\scri350a.htm (file missing) (HKCU)
O16 - DPF: Yahoo! Chat - http://us.chat1.yimg.com/us.yimg.com/i/chat/applet/c381/chat.cab
O16 - DPF: {072039AB-2117-4ED5-A85F-9B9EB903E021} (NowStarter Control) - http://www.clubbox.co.kr/neo.fld/NowStarter.cab
O16 - DPF: {15AD6789-CDB4-47E1-A9DA-992EE8E6BAD6} - http://static.windupdates.com/cab/DownloadAccess/ie/bridge-c11.cab
O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab31267.cab
O16 - DPF: {4ED9DDF0-7479-4BBE-9335-5A1EDB1D8A21} - http://bin.mcafee.com/molbin/shared/mcinsctl/en-us/4,0,0,83/mcinsctl.cab
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://by107fd.bay107.hotmail.msn.com/resources/MsnPUpld.cab
O16 - DPF: {85AF9A98-3423-45E4-8BAD-85645F16AC31} (P3 Bugs VoD Loader Class) - http://player.bugs.co.kr/install/mv/p3bvset.cab
O16 - DPF: {8DBC9850-A2D9-4D6D-BEAB-D5936A74C66C} (GW.Launcher) - http://www.guildwars.co.kr/common/ocx/gw.cab
O16 - DPF: {938527D1-CDB7-4147-998A-B20FCA5CC976} (Cdmcco Class) - http://cafeimg.hanmail.net/cab9/dmcc2.cab
O16 - DPF: {9BED3AC7-E6D4-43E7-B8A1-1FA502F639E1} (XTools Control) - http://player.bugs.co.kr/install/mv/XTools.cab
O16 - DPF: {BCC0FF27-31D9-4614-A68E-C18E1ADA4389} - http://bin.mcafee.com/molbin/shared/mcgdmgr/en-us/1,0,0,20/mcgdmgr.cab
O16 - DPF: {BF628973-1E86-4D0E-B42C-EDDECFFABDBC} (Bugs AoD Class) - http://player.bugs.co.kr/install/BugsLoader20041018.cab
O16 - DPF: {ED1EEBEE-F0AA-474B-9829-61C482E72644} (PDBox28 Control) - http://www.pdbox.co.kr/filebox/ctrl_down/PDBox25.cab
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: Ati HotKey Poller - Unknown owner - C:\WINDOWS\System32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
O23 - Service: MD Simple Burner Service (NetMDSB) - Sony Corporation - C:\Program Files\Sony\MD Simple Burner\NetMDSB.exe
O23 - Service: PACSPTISVR - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AVLib\Pacsptisvr.exe
O23 - Service: Panda anti-virus service (PAVSRV) - Unknown owner - C:\Program Files\Panda Software\Panda Antivirus Platinum\pavsrv51.exe (file missing)
O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - Unknown owner - %ProgramFiles%\WinPcap\rpcapd.exe" -d -f "%ProgramFiles%\WinPcap\rpcapd.ini (file missing)
O23 - Service: SoundMAX Agent Service (SoundMAX Agent Service (default)) - Analog Devices, Inc. - C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
O23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AVLib\Sptisrv.exe
O23 - Service: WinTools for IE service (WinToolsSvc) - Unknown owner - C:\Program Files\Common Files\WinTools\WToolsS.exe

The problem I've been having is my I.E, MSN Messenger and AIM keep closing for no reason right when I open them..

I've downloaded Avast antivirus and scanned and deleted a bunch of stuff but the problem still persists.. I'm about to cry..

 

[Osiris]

Remove entries at your own risk


C:\WINDOWS\system32\conime.exe conime.exe is a process which is registered as the BFGhost 1.0 Remote administration backdoor tool. This backdoor application can allow attackers to access your computer, stealing passwords and personal data. It is a registered security risk and should be removed immediately.

C:\Program Files\Common Files\WinTools\WToolsS.exe
This is a nasty process! You should fix it and try to delete it manually!

C:\Program Files\Media Access\MediaAccK.exe AdWare.ToolBar.Azesearch This is a nasty process! You should fix it and try to delete it manually!

C:\PROGRA~1\COMMON~1\WinTools\WToolsA.exe Must be fixed!

C:\Program Files\Media Access\MediaAccess.exe Must be fixed!

C:\WINDOWS\System32\nologofix.exe unidentified spyware Must be fixed!

C:\Program Files\Common Files\WinTools\WSup.exe This is a nasty process! You should fix it and try to delete it manually!

R3 - URLSearchHook: (no name) - {181E0A01-9266-45A7-888F-582853F70FAE} - (no file) Should be fixed if you do not know this application.

O2 - BHO: CeresObj Class - {00000049-8F91-4D9C-9573-F016E7626484} - C:\WINDOWS\ceres.dll Should be fixed if you do not know this application.

O2 - BHO: MxTargetObj Class - {0000607D-D204-42C7-8E46-216055BF9918} - C:\WINDOWS\mxTarget.dll Must be fixed!

O2 - BHO: (no name) - {2C817DD5-B094-41F8-9036-1A97348C012B} - (no file) Must be fixed!

O2 - BHO: ViewSource Class - {39D3264A-0031-49DB-860D-37647ACCB78A} - C:\WINDOWS\system32\wiaudios.dll Must be fixed!

O2 - BHO: Dvd Bits Dog - {4C680706-8FFA-CDE6-C489-30870E87E0BD} - C:\PROGRA~1\SURFKNOB\Wipe Flaw.dll (file missing Must be fixed!

O2 - BHO: (no name) - {87766247-311C-43B4-8499-3D5FEC94A183} - C:\PROGRA~1\COMMON~1\WinTools\WToolsB.dll Must be fixed!

O2 - BHO: tbupdate - {E53E32CD-FAEE-481C-BA04-AB9B544000BD} - C:\WINDOWS\System32\tbupdate.dll Must be fixed!

O2 - BHO: ViewSource Class - {EA3F22AA-0B75-43D3-9111-B04B701ABB32} - C:\WINDOWS\System32\nologo01.dll Must be fixed!

O2 - BHO: (no name) - ~{204E9F8F-38CA-4E11-BA91-06B685285CC0} - (no file)
Unnecessarily Entries found in this registry zone are potentially nasty. This application ([204E9F8F-38CA-4E11-BA91-06B685285CC0] - Result: 204E9F8F-38CA-4E11-BA91-06B685285CC0) has been checked. Must be fixed!
Unnecessary (deactivated) entry that can be fixed.

O2 - BHO: (no name) - ~{2C817DD5-B094-41F8-9036-1A97348C012B} - (no file)
Unnecessarily Entries found in this registry zone are potentially nasty. This application ([2C817DD5-B094-41F8-9036-1A97348C012B] - Result: ) has been checked. Unknown application.
Unnecessary (deactivated) entry that can be fixed.

O2 - BHO: (no name) - ~{39D3264A-0031-49DB-860D-37647ACCB78A} - (no file)
Unnecessarily Entries found in this registry zone are potentially nasty. This application ([39D3264A-0031-49DB-860D-37647ACCB78A] - Result: ) has been checked. Unknown application.
Unnecessary (deactivated) entry that can be fixed.

O2 - BHO: (no name) - ~{EA3F22AA-0B75-43D3-9111-B04B701ABB32} - (no file)
Unnecessarily Entries found in this registry zone are potentially nasty. This application ([EA3F22AA-0B75-43D3-9111-B04B701ABB32] - Result: ) has been checked.Unknown application.
Unnecessary (deactivated) entry that can be fixed.

O3 - Toolbar: (no name) - {327C2873-E90D-4c37-AA9D-10AC9BABA46C} - (no file)
Unnecessarily Entries found in this registry zone are potentially nasty. This application ([327C2873-E90D-4c37-AA9D-10AC9BABA46C] - Result: 327C2873-E90D-4c37-AA9D-10AC9BABA46C) has been checked. If the name is made up of random letters, found in the folder 'Application Data' and the kind is 'Unknown' , it should be fixed.
Unnecessary (deactivated) entry that can be fixed.

O3 - Toolbar: (no name) - {2CDE1A7D-A478-4291-BF31-E1B4C16F92EB} - (no file)
Unnecessarily Entries found in this registry zone are potentially nasty. This application ([2CDE1A7D-A478-4291-BF31-E1B4C16F92EB] - Result: 2CDE1A7D-A478-4291-BF31-E1B4C16F92EB) has been checked. If the name is made up of random letters, found in the folder 'Application Data' and the kind is 'Unknown' , it should be fixed. Must be fixed!
Unnecessary (deactivated) entry that can be fixed.

O3 - Toolbar: chic amok - {829F15DA-EEC4-878D-8770-E431C34ED8EE} - C:\PROGRA~1\SURFKNOB\Wipe Flaw.dll (file missing)
Unnecessarily Entries found in this registry zone are potentially nasty. This application ([829F15DA-EEC4-878D-8770-E431C34ED8EE] - Result: ) has been checked. If the name is made up of random letters, found in the folder 'Application Data' and the kind is 'Unknown' , it should be fixed. If you do not know that application, fix it.

O3 - Toolbar: (no name) - {BA52B914-B692-46c4-B683-905236F6F655} - (no file) If the name is made up of random letters, found in the folder 'Application Data' and the kind is 'Unknown' , it should be fixed. If you do not know that application, fix it.

O4 - HKLM\..\Run: [stcinstaller] c:\installer\id53.exe Trojan / Virus Must be fixed!

O4 - HKLM\..\Run: [ynbmzgplw] C:\WINDOWS\System32\nfhrer.exe
Unknown application.

O4 - HKLM\..\Run: [TbWinUpdate] C:\WINDOWS\system32\updateex1.exe
Unknown application.

O4 - HKLM\..\Run: [dint] C:\Program Files\msgv\iqv.exe Unknown application.

O4 - HKLM\..\Run: [satmat] C:\WINDOWS\satmat.exe Transponder/aBetterinternet adware variant Must be fixed!

O4 - HKLM\..\Run: [farmmext] C:\WINDOWS\farmmext.exe Must be fixed!

O4 - HKLM\..\Run: [Media Access] C:\Program Files\Media Access\MediaAccK.exe
Nasty AdWare.ToolBar.Azesearch
Must be fixed!

O4 - HKLM\..\Run: [WinTools] C:\PROGRA~1\COMMON~1\WinTools\WToolsA.exe WinTools adware Must be fixed!

O4 - HKLM\..\Run: [Fzrercl] C:\Program Files\Eebp\Flel.exe Must be fixed!

O4 - HKCU\..\Run: [NOLOGO Agent] C:\WINDOWS\System32\nologofix.exe
Unknown application.

O4 - HKCU\..\Run: [Tsa] C:\PROGRA~1\COMMON~1\tsa\tsm.exe Unknown application.

O4 - HKCU\..\Run: [CARD V5] C:\WINDOWS\system32\wiaudiosu.exe Unknown application.

O8 - Extra context menu item: Enqueue in Star Downloader - C:\Program Files\Star Downloader\sdieenq.htm To be fixed if the entry 'Enqueue in Star Downloader ' is unknown.

O9 - Extra button: (no name) - {AFC3FA82-AD07-45cd-8B57-983435B9899E} - (no file) To be fixed if the entry '' is unknown.
Unnecessary (deactivated) entry that can be fixed.

O9 - Extra button: (no name) - {6685509E-B47B-4f47-8E16-9A5F3A62F683} - file://C:\Program Files\Ebates_MoeMoneyMaker\Sy350\Tp350\scri350a.htm (file missing) (HKCU) To be fixed if the entry '' is unknown.
Unnecessary (deactivated) entry that can be fixed.

O16 - DPF: {072039AB-2117-4ED5-A85F-9B9EB903E021} (NowStarter Control) - http://www.clubbox.co.kr/neo.fld/NowStarter.cab To be fixed if the entry '' is unknown.
Unnecessary (deactivated) entry that can be fixed.

O16 - DPF: {15AD6789-CDB4-47E1-A9DA-992EE8E6BAD6} - http://static.windupdates.com/cab/D.../bridge-c11.cab Should be fixed.

O16 - DPF: {85AF9A98-3423-45E4-8BAD-85645F16AC31} (P3 Bugs VoD Loader Class) - http://player.bugs.co.kr/install/mv/p3bvset.cab Should be fixed.

O16 - DPF: {8DBC9850-A2D9-4D6D-BEAB-D5936A74C66C} (GW.Launcher) - http://www.guildwars.co.kr/common/ocx/gw.cab Should be fixed.

O16 - DPF: {938527D1-CDB7-4147-998A-B20FCA5CC976} (Cdmcco Class) - http://cafeimg.hanmail.net/cab9/dmcc2.cab Should be fixed.

O16 - DPF: {9BED3AC7-E6D4-43E7-B8A1-1FA502F639E1} (XTools Control) - http://player.bugs.co.kr/install/mv/XTools.cab Should be fixed.

O16 - DPF: {BF628973-1E86-4D0E-B42C-EDDECFFABDBC} (Bugs AoD Class) - http://player.bugs.co.kr/install/BugsLoader20041018.cab Should be fixed.

O16 - DPF: {ED1EEBEE-F0AA-474B-9829-61C482E72644} (PDBox28 Control) - http://www.pdbox.co.kr/filebox/ctrl_down/PDBox25.cab Should be fixed.


O23 - Service: WinTools for IE service (WinToolsSvc) - Unknown owner - C:\Program Files\Common Files\WinTools\WToolsS.exe This service (WToolsS.exe) seems to be nasty.

 

[Osiris]

Repost a log when finished.

 

[GweeYupDa]

THANK YOU!!!!!!!!!!!!!!!!!!!!!

WORKS SO WELL NOW

Almost like brand new... thanks so much ><

 

[Osiris]

You gonna post me another log to make sure those entries are gone?