brytdavis

27 Posts

January 21st, 2008 14:00

My HijackThis log ... please help

Hi -

My Dell Dimension 8300 has had major problems over the last few months. Here is my log.

Thoughts?

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 11:42:28 AM, on 1/21/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\PROGRA~1\COMMON~1\AOL\ACS\acsd.exe
C:\WINDOWS\System32\CTsvcCDA.exe
C:\PROGRA~1\McAfee\MSC\mcmscsvc.exe
c:\program files\common files\mcafee\mna\mcnasvc.exe
c:\PROGRA~1\COMMON~1\mcafee\mcproxy\mcproxy.exe
C:\PROGRA~1\McAfee\VIRUSS~1\mcshield.exe
C:\WINDOWS\Explorer.EXE
C:\PROGRA~1\McAfee.com\Agent\mcagent.exe
C:\Program Files\McAfee\MPF\MPFSrv.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\Program Files\DellSupport\DSAgnt.exe
C:\Program Files\AWS\WeatherBug\Weather.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Yahoo!\Yahoo! Music Jukebox\ymetray.exe
C:\WINDOWS\wanmpsvc.exe
C:\WINDOWS\System32\MsPMSPSv.exe
C:\Program Files\Canon\CAL\CALMAIN.exe
C:\PROGRA~1\McAfee\VIRUSS~1\mcsysmon.exe
C:\Program Files\MTV Networks\URGE\UrgeMS.exe
C:\Program Files\SiteAdvisor\4608\SiteAdv.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.dell.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://us.rd.yahoo.com/customize/ie/defaults/sb/msgr8/*http://www.yahoo.com/ext/search/search.html
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.yahoo.com/
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)
O3 - Toolbar: McAfee SiteAdvisor - {0BF43445-2F28-4351-9252-17FE6E806AA0} - C:\Program Files\SiteAdvisor\4608\SiteAdv.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar3.dll
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [mcagent_exe] C:\Program Files\McAfee.com\Agent\mcagent.exe /runkey
O4 - HKLM\..\Run: [acefbcde] rundll32.exe "C:\WINDOWS\system32\wwcdaxgw.dll",b
O4 - HKCU\..\Run: [DellSupport] "C:\Program Files\DellSupport\DSAgnt.exe" /startup
O4 - HKCU\..\Run: [Weather] C:\Program Files\AWS\WeatherBug\Weather.exe 1
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - Global Startup: ymetray.lnk = C:\Program Files\Yahoo!\Yahoo! Music Jukebox\ymetray.exe
O8 - Extra context menu item: &Google Search - res://c:\program files\google\GoogleToolbar1.dll/cmsearch.html
O8 - Extra context menu item: &Translate English Word - res://c:\program files\google\GoogleToolbar1.dll/cmwordtrans.html
O8 - Extra context menu item: &Yahoo! Search - file:///C:\Program Files\Yahoo!\Common/ycsrch.htm
O8 - Extra context menu item: Backward Links - res://c:\program files\google\GoogleToolbar1.dll/cmbacklinks.html
O8 - Extra context menu item: Cached Snapshot of Page - res://c:\program files\google\GoogleToolbar1.dll/cmcache.html
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~4\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: Similar Pages - res://c:\program files\google\GoogleToolbar1.dll/cmsimilar.html
O8 - Extra context menu item: Translate Page into English - res://c:\program files\google\GoogleToolbar1.dll/cmtrans.html
O8 - Extra context menu item: Yahoo! &Dictionary - file:///C:\Program Files\Yahoo!\Common/ycdict.htm
O8 - Extra context menu item: Yahoo! &Maps - file:///C:\Program Files\Yahoo!\Common/ycdict.htm
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\WINDOWS\system32\msjava.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\WINDOWS\system32\msjava.dll
O9 - Extra button: Yahoo! Services - {5BAB4B5B-68BC-4B02-94D6-2FC0DE4A7897} - C:\Program Files\Yahoo!\Common\yiesrvc.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~4\OFFICE11\REFIEBAR.DLL
O9 - Extra button: AIM - {AC9E2541-2814-11d5-BC6D-00B0D0A1DE45} - C:\Program Files\AIM\aim.exe
O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\System32\Shdocvw.dll
O9 - Extra button: MoneySide - {E023F504-0C5A-4750-A1E7-A9046DEA8A21} - C:\Program Files\Microsoft Money\System\mnyside.dll
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204
O16 - DPF: {2B96D5CC-C5B5-49A5-A69D-CC0A30F9028C} (MiniBugTransporterX Class) - http://download.weatherbug.com/minibug/tricklers/AWS/MiniBugTransporter.cab?
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:\Program Files\Yahoo!\Common\yinsthelper.dll
O16 - DPF: {406B5949-7190-4245-91A9-30A17DE16AD0} (Snapfish Activia) - http://www2.snapfish.com/SnapfishActivia.cab
O16 - DPF: {4ED9DDF0-7479-4BBE-9335-5A1EDB1D8A21} (McAfee.com Operating System Class) - http://download.mcafee.com/molbin/shared/mcinsctl/en-us/4,0,0,81/mcinsctl.cab
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (MSN Games - Installer) - http://cdn2.zone.msn.com/binFramework/v10/ZIntro.cab56649.cab
O16 - DPF: {E5D419D6-A846-4514-9FAD-97E826C84822} -
O23 - Service: McAfee Application Installer Cleanup (0040631200672703) (0040631200672703mcinstcleanup) - McAfee, Inc. - C:\WINDOWS\TEMP\004063~1.EXE
O23 - Service: AOL Connectivity Service (AOL ACS) - America Online, Inc. - C:\PROGRA~1\COMMON~1\AOL\ACS\acsd.exe
O23 - Service: Canon Camera Access Library 8 (CCALib8) - Canon Inc. - C:\Program Files\Canon\CAL\CALMAIN.exe
O23 - Service: Creative Service for CDROM Access - Creative Technology Ltd - C:\WINDOWS\System32\CTsvcCDA.exe
O23 - Service: DomainService - Unknown owner - C:\WINDOWS\system32\msmjbtgv.exe (file missing)
O23 - Service: DSBrokerService - Unknown owner - C:\Program Files\DellSupport\brkrsvc.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: McAfee Services (mcmscsvc) - McAfee, Inc. - C:\PROGRA~1\McAfee\MSC\mcmscsvc.exe
O23 - Service: McAfee Network Agent (McNASvc) - McAfee, Inc. - c:\program files\common files\mcafee\mna\mcnasvc.exe
O23 - Service: McAfee Scanner (McODS) - McAfee, Inc. - C:\PROGRA~1\McAfee\VIRUSS~1\mcods.exe
O23 - Service: McAfee Proxy Service (McProxy) - McAfee, Inc. - c:\PROGRA~1\COMMON~1\mcafee\mcproxy\mcproxy.exe
O23 - Service: McAfee Real-time Scanner (McShield) - McAfee, Inc. - C:\PROGRA~1\McAfee\VIRUSS~1\mcshield.exe
O23 - Service: McAfee SystemGuards (McSysmon) - McAfee, Inc. - C:\PROGRA~1\McAfee\VIRUSS~1\mcsysmon.exe
O23 - Service: McAfee Personal Firewall Service (MpfService) - McAfee, Inc. - C:\Program Files\McAfee\MPF\MPFSrv.exe
O23 - Service: Intel NCS NetService (NetSvc) - Intel(R) Corporation - C:\Program Files\Intel\NCS\Sync\NetSvc.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: WAN Miniport (ATW) Service (WANMiniportService) - America Online, Inc. - C:\WINDOWS\wanmpsvc.exe

--
End of file - 7607 bytes

Responses(35)
Solutions(0)

Bugbatter

4 Apprentice

•

20.5K Posts

January 21st, 2008 19:00

Welcome. Thank you for using Dell Community Forums.
I am reviewing your log.
In the meantime, you can help me by doing the following:

* Have you have posted this issue on another forum? If so, please provide a link to the topic.

* If you are using any cracked software, please remove it.
Definition of cracked software:
http://en.wikipedia.org/wiki/Software_cracking

* If you are using any P2P (file sharing) programs, please remove them before we clean your computer.
The nature of such software and the high incidence of malware in files downloaded with them is counter productive to restoring your PC to a healthy state.

* If this computer belongs to someone else, do you have authority to apply the fixes we will use?

* Have you already fixed entries using HijackThis? If so, please restore all the backups and then post another log.

* After we begin working, please print or copy all instructions to Notepad in order to assist you when carrying out procedures.
Please follow all instructions in sequence. Do not, on your own, install/re-install any programs or run any fixes or scanners that you have not been instructed to use because this may cause conflicts with the tools that I am using.

** We may be using some specialized tools during our fix. Certain embedded files that are part of legitimate programs or specialized fix tools such as process.exe, restart.exe, SmiUpdate.exe, reboot.exe, ws2fix.exe, prcviewer.exe and nircmd.exe may at times be detected by some anti-virus/anti-malware scanners as a "RiskTool", "Hacking tool", "Potentially unwanted tool", or even "malware (virus/trojan)" when that is not the case.
Such programs have legitimate uses in contexts where an authorized user or administrator has knowingly installed it. These detections do not necessarily mean the file is malware or a bad program. It means it has the potential for being misused by others. Anti-virus scanners cannot distinguish between "good" and "malicious" use of such programs, therefore they may alert you or even automatically remove them.

* If your replies do not fit in one post while we are handling your issue, please reply to yourself until all text is submitted. It may take several posts.

I look forward to your reply.

brytdavis

27 Posts

January 22nd, 2008 09:00

Hi -

Thanks for your reply. Here are the answers to your questions:

I have not posted to another forum.
I'm not using cracked software.
Is FTP considered P2P? If it is not, then there's no P2P software installed on this machine. If it is P2P, then I will remove my FTP program. Please advise.
I own this computer.
I have tried HijackThis (v1.5) and the issues still persist.

Thanks.

Bugbatter

4 Apprentice

•

20.5K Posts

January 22nd, 2008 12:00

Where did you get "HijackThis (v1.5)" from?

Please print these instructions and refer to them for downloading and running ComboFix:

http://www.bleepingcomputer.com/combofix/how-to-use-combofix

Post the log from ComboFix when you've accomplished that, along with a new HijackThis log.

Note: The above instructions were created specifically for this user. If you are not this user, do NOT follow these directions as they could damage the workings of your system.
You should NOT use Combofix unless you have been instructed to do so by a Malware Removal Expert. It is intended by its creator to be used under the guidance and supervision of an expert, not for private use.

brytdavis

27 Posts

January 22nd, 2008 13:00

A friend of mine who works for M$ sent it to me.

I'll download and run ComboFix and report what happens.

Thanks again for your help!

brytdavis

27 Posts

January 22nd, 2008 15:00

Hi -

I ran ComboFix per the instructions. Here is the latest HijackThis log file:

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 12:13:36 PM, on 1/22/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\PROGRA~1\COMMON~1\AOL\ACS\acsd.exe
C:\WINDOWS\System32\CTsvcCDA.exe
C:\PROGRA~1\McAfee\MSC\mcmscsvc.exe
c:\program files\common files\mcafee\mna\mcnasvc.exe
c:\PROGRA~1\COMMON~1\mcafee\mcproxy\mcproxy.exe
C:\PROGRA~1\McAfee\VIRUSS~1\mcshield.exe
C:\Program Files\McAfee\MPF\MPFSrv.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\wanmpsvc.exe
C:\WINDOWS\System32\MsPMSPSv.exe
C:\Program Files\Canon\CAL\CALMAIN.exe
C:\PROGRA~1\McAfee.com\Agent\mcagent.exe
C:\WINDOWS\system32\wscntfy.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\DellSupport\DSAgnt.exe
C:\Program Files\AWS\WeatherBug\Weather.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\Yahoo!\Yahoo! Music Jukebox\ymetray.exe
C:\Program Files\McAfee\MSC\mcuimgr.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\SiteAdvisor\4608\SiteAdv.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://us.rd.yahoo.com/customize/ie/defaults/sb/msgr8/*http://www.yahoo.com/ext/search/search.html
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.yahoo.com/
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {089FD14D-132B-48FC-8861-0048AE113215} - C:\Program Files\SiteAdvisor\4608\SiteAdv.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: Yahoo! IE Services Button - {5BAB4B5B-68BC-4B02-94D6-2FC0DE4A7897} - C:\Program Files\Yahoo!\Common\yiesrvc.dll
O2 - BHO: scriptproxy - {7DB2D5A0-7241-4E79-B68D-6309F01C5231} - c:\PROGRA~1\mcafee\VIRUSS~1\scriptsn.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar3.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.0.1121.2472\swg.dll
O3 - Toolbar: McAfee SiteAdvisor - {0BF43445-2F28-4351-9252-17FE6E806AA0} - C:\Program Files\SiteAdvisor\4608\SiteAdv.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar3.dll
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [mcagent_exe] C:\Program Files\McAfee.com\Agent\mcagent.exe /runkey
O4 - HKCU\..\Run: [DellSupport] "C:\Program Files\DellSupport\DSAgnt.exe" /startup
O4 - HKCU\..\Run: [Weather] C:\Program Files\AWS\WeatherBug\Weather.exe 1
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - Global Startup: ymetray.lnk = C:\Program Files\Yahoo!\Yahoo! Music Jukebox\ymetray.exe
O8 - Extra context menu item: &Google Search - res://c:\program files\google\GoogleToolbar1.dll/cmsearch.html
O8 - Extra context menu item: &Translate English Word - res://c:\program files\google\GoogleToolbar1.dll/cmwordtrans.html
O8 - Extra context menu item: &Yahoo! Search - file:///C:\Program Files\Yahoo!\Common/ycsrch.htm
O8 - Extra context menu item: Backward Links - res://c:\program files\google\GoogleToolbar1.dll/cmbacklinks.html
O8 - Extra context menu item: Cached Snapshot of Page - res://c:\program files\google\GoogleToolbar1.dll/cmcache.html
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~4\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: Similar Pages - res://c:\program files\google\GoogleToolbar1.dll/cmsimilar.html
O8 - Extra context menu item: Translate Page into English - res://c:\program files\google\GoogleToolbar1.dll/cmtrans.html
O8 - Extra context menu item: Yahoo! &Dictionary - file:///C:\Program Files\Yahoo!\Common/ycdict.htm
O8 - Extra context menu item: Yahoo! &Maps - file:///C:\Program Files\Yahoo!\Common/ycdict.htm
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\WINDOWS\system32\msjava.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\WINDOWS\system32\msjava.dll
O9 - Extra button: Yahoo! Services - {5BAB4B5B-68BC-4B02-94D6-2FC0DE4A7897} - C:\Program Files\Yahoo!\Common\yiesrvc.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~4\OFFICE11\REFIEBAR.DLL
O9 - Extra button: AIM - {AC9E2541-2814-11d5-BC6D-00B0D0A1DE45} - C:\Program Files\AIM\aim.exe
O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\System32\Shdocvw.dll
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra button: MoneySide - {E023F504-0C5A-4750-A1E7-A9046DEA8A21} - C:\Program Files\Microsoft Money\System\mnyside.dll
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204
O16 - DPF: {2B96D5CC-C5B5-49A5-A69D-CC0A30F9028C} (MiniBugTransporterX Class) - http://download.weatherbug.com/minibug/tricklers/AWS/MiniBugTransporter.cab?
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:\Program Files\Yahoo!\Common\yinsthelper.dll
O16 - DPF: {406B5949-7190-4245-91A9-30A17DE16AD0} (Snapfish Activia) - http://www2.snapfish.com/SnapfishActivia.cab
O16 - DPF: {4ED9DDF0-7479-4BBE-9335-5A1EDB1D8A21} (McAfee.com Operating System Class) - http://download.mcafee.com/molbin/shared/mcinsctl/en-us/4,0,0,81/mcinsctl.cab
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (MSN Games - Installer) - http://cdn2.zone.msn.com/binFramework/v10/ZIntro.cab56649.cab
O16 - DPF: {E5D419D6-A846-4514-9FAD-97E826C84822} -
O20 - Winlogon Notify: urqqpmm - urqqpmm.dll (file missing)
O23 - Service: AOL Connectivity Service (AOL ACS) - America Online, Inc. - C:\PROGRA~1\COMMON~1\AOL\ACS\acsd.exe
O23 - Service: Canon Camera Access Library 8 (CCALib8) - Canon Inc. - C:\Program Files\Canon\CAL\CALMAIN.exe
O23 - Service: Creative Service for CDROM Access - Creative Technology Ltd - C:\WINDOWS\System32\CTsvcCDA.exe
O23 - Service: DSBrokerService - Unknown owner - C:\Program Files\DellSupport\brkrsvc.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: McAfee Services (mcmscsvc) - McAfee, Inc. - C:\PROGRA~1\McAfee\MSC\mcmscsvc.exe
O23 - Service: McAfee Network Agent (McNASvc) - McAfee, Inc. - c:\program files\common files\mcafee\mna\mcnasvc.exe
O23 - Service: McAfee Scanner (McODS) - McAfee, Inc. - C:\PROGRA~1\McAfee\VIRUSS~1\mcods.exe
O23 - Service: McAfee Proxy Service (McProxy) - McAfee, Inc. - c:\PROGRA~1\COMMON~1\mcafee\mcproxy\mcproxy.exe
O23 - Service: McAfee Real-time Scanner (McShield) - McAfee, Inc. - C:\PROGRA~1\McAfee\VIRUSS~1\mcshield.exe
O23 - Service: McAfee Personal Firewall Service (MpfService) - McAfee, Inc. - C:\Program Files\McAfee\MPF\MPFSrv.exe
O23 - Service: Intel NCS NetService (NetSvc) - Intel(R) Corporation - C:\Program Files\Intel\NCS\Sync\NetSvc.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: WAN Miniport (ATW) Service (WANMiniportService) - America Online, Inc. - C:\WINDOWS\wanmpsvc.exe

--
End of file - 8393 bytes

brytdavis

27 Posts

January 22nd, 2008 15:00

Hi -

I'm trying to post the contents of the ComboFix log file, but can't seem to avoid the 20,000 character limit error, even tho Word is telling me I'm well under the limit.

In Word, the log is 38 pages long. Is there a way to attach the log to a post?

Bugbatter

4 Apprentice

•

20.5K Posts

January 22nd, 2008 15:00

Please use the original notepad copy of the log that is produced by ComboFix.

QUOTE:
* If your replies do not fit in one post while we are handling your issue, please reply to yourself until all text is submitted. It may take several posts.

brytdavis

27 Posts

January 22nd, 2008 18:00

part 9

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\static\2\Default_favorites.mnu

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\static\2\Default_Games.mnu

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\static\2\Default_Hide.mnu

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\static\2\Default_hotbarcom.mnu

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\static\2\Default_Hotmail.mnu

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\static\2\Default_hsskin.mnu

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\static\2\Default_Mails.mnu

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\static\2\Default_new.mnu

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\static\2\Default_premium.mnu

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\static\2\Default_ringtone.mnu

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\static\2\Default_SearchBoxTrapper.mnu

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\static\2\Default_searchfor.mnu

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\static\2\Default_searchgo.mnu

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\static\2\Default_weather.mnu

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\static\2\Default_yellowpages.mnu

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\static\2\email-def-511724-9595.mnu

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\static\2\email-t1-bg.res

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\static\2\hotbar-premium-hotbar-premium.mnu

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\static\2\hotbar-premium.cdf

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\static\2\hotbar_promo.htm

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\static\2\icons2.res

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\static\2\keywords.idx

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\static\2\keywords_idx.idx

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\static\2\keywords_sdf.sdf

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\static\2\keywords1.dat

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\static\2\layout.cdf

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\static\2\linkpathlegal.txt

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\static\2\progress.res

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\static\2\s_icons_buttons.res

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\static\2\t2_bg.res

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\static\2\theweb.mnu

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\static\2\top7.cdf

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\static\2\Top7_theweb.mnu

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\static\2\tsd_bg.res

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\static\DownLoad\ads.xip

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\static\DownLoad\business_promo.xip

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\static\DownLoad\buttondir.xip

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\static\DownLoad\d_icons_buttons_1000.xip

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\static\DownLoad\d_icons_buttons_2000.xip

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\static\DownLoad\d_icons_buttons_3000.xip

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\static\DownLoad\d_icons_buttons_bar.xip

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\static\DownLoad\d_icons_buttons_bbar1.xip

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\static\DownLoad\d_icons_buttons_bbar10.xip

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\static\DownLoad\d_icons_buttons_bbar11.xip

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\static\DownLoad\d_icons_buttons_bbar12.xip

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\static\DownLoad\d_icons_buttons_bbar13.xip

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\static\DownLoad\d_icons_buttons_bbar14.xip

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\static\DownLoad\d_icons_buttons_bbar2.xip

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\static\DownLoad\d_icons_buttons_bbar3.xip

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\static\DownLoad\d_icons_buttons_bbar4.xip

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\static\DownLoad\d_icons_buttons_bbar5.xip

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\static\DownLoad\d_icons_buttons_bbar6.xip

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\static\DownLoad\d_icons_buttons_bbar7.xip

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\static\DownLoad\d_icons_buttons_bbar8.xip

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\static\DownLoad\d_icons_buttons_bbar9.xip

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\static\DownLoad\d_icons_buttons_logos.xip

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\static\DownLoad\d_icons_buttons_other.xip

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\static\DownLoad\d_icons_buttons_x.xip

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\static\DownLoad\d_icons_weather.xip

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\static\DownLoad\default.xip

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\static\DownLoad\email-t1-bg.xip

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\static\DownLoad\hotbar-premium.xip

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\static\DownLoad\hotbar_promo.xip

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\static\DownLoad\icons2.xip

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\static\DownLoad\keywords.xip

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\static\DownLoad\keywords_idx.xip

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\static\DownLoad\keywords_sdf.xip

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\static\DownLoad\keywords1.xip

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\static\DownLoad\layout.xip

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\static\DownLoad\linkpathlegal.xip

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\static\DownLoad\progress.xip

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\static\DownLoad\s_icons_buttons.xip

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\static\DownLoad\samplegroups2.txt

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\static\DownLoad\samplegroups2.xip

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\static\DownLoad\t2_bg.xip

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\static\DownLoad\top7.xip

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\static\DownLoad\tsd_bg.xip

C:\Program Files\Common Files\winantispyware 2007

C:\Program Files\winantispyware 2007

C:\Program Files\WinAntiSpyware 2007\manual.url

C:\Program Files\winantispyware 2007\pv.dat

C:\Program Files\winantispyware 2007\support.url

C:\Program Files\WinAntiSpyware 2007\threatnet.ini

C:\Program Files\winantispyware 2007\updater.dat

C:\Program Files\winantispyware 2007\WAS7.url

C:\temp\brr

C:\Temp\fse

C:\WINDOWS\cookies.ini

C:\WINDOWS\system32\awtqr.dll

C:\WINDOWS\system32\b02FdUe

C:\WINDOWS\SYSTEM32\bpdvudfh.ini

C:\WINDOWS\system32\bqxoexav.dll

brytdavis

27 Posts

January 22nd, 2008 18:00

part 4

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\dynamic\1409567.sdf

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\dynamic\1418656.sdf

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\dynamic\1420235.sdf

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\dynamic\1529405.sdf

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\dynamic\153438.sdf

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\dynamic\187725.sdf

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\dynamic\197447.sdf

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\dynamic\2174091.sdf

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\dynamic\2206103.sdf

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\dynamic\241506.sdf

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\dynamic\2879456.sdf

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\dynamic\312585.sdf

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\dynamic\400955.sdf

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\dynamic\475389.sdf

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\dynamic\483014.sdf

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\dynamic\495232.sdf

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\dynamic\512217.sdf

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\dynamic\532922.sdf

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\dynamic\534271.sdf

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\dynamic\573421.sdf

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\dynamic\600583.sdf

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\dynamic\617109.sdf

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\dynamic\665476.sdf

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\dynamic\757108.sdf

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\dynamic\770646.sdf

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\dynamic\793537.sdf

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\dynamic\805478.sdf

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\dynamic\819382.sdf

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\dynamic\83097.sdf

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\dynamic\861081.sdf

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\dynamic\863144.sdf

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\dynamic\883051.sdf

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\dynamic\939832.sdf

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\dynamic\956277.sdf

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\dynamic\964128.sdf

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\dynamic\965301.sdf

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\dynamic\ASPL1.dat

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\dynamic\domains.txt

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\dynamic\hstat\31b1.dat

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\dynamic\TooltipXML\11213

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\dynamic\TooltipXML\11390

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\dynamic\TooltipXML\11495

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\dynamic\TooltipXML\11891

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\dynamic\TooltipXML\12047

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\dynamic\TooltipXML\12223

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\dynamic\TooltipXML\12459

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\dynamic\TooltipXML\1347

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\dynamic\TooltipXML\13505

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\dynamic\TooltipXML\13562

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\dynamic\TooltipXML\13615

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\dynamic\TooltipXML\13617

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\dynamic\TooltipXML\1369

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\dynamic\TooltipXML\14172

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\dynamic\TooltipXML\14716

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\dynamic\TooltipXML\14747

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\dynamic\TooltipXML\1491

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\dynamic\TooltipXML\15162

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\dynamic\TooltipXML\15541

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\dynamic\TooltipXML\16087

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\dynamic\TooltipXML\16173

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\dynamic\TooltipXML\16884

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\dynamic\TooltipXML\17025

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\dynamic\TooltipXML\17502

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\dynamic\TooltipXML\17534

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\dynamic\TooltipXML\17572

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\dynamic\TooltipXML\17608

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\dynamic\TooltipXML\17923

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\dynamic\TooltipXML\18035

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\dynamic\TooltipXML\18191

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\dynamic\TooltipXML\18391

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\dynamic\TooltipXML\184591

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\dynamic\TooltipXML\18721

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\dynamic\TooltipXML\18991

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\dynamic\TooltipXML\19052

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\dynamic\TooltipXML\19409

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\dynamic\TooltipXML\19650

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\dynamic\TooltipXML\20106

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\dynamic\TooltipXML\20128

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\dynamic\TooltipXML\202699

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\dynamic\TooltipXML\20517

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\dynamic\TooltipXML\21189

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\dynamic\TooltipXML\21218

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\dynamic\TooltipXML\22094

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\dynamic\TooltipXML\22913

brytdavis

27 Posts

January 22nd, 2008 18:00

part 2

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\HostOI\static\1\060104_ema33_prv.gif

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\HostOI\static\1\060104_ema34_prv.gif

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\HostOI\static\1\062802hippi_prv.gif

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\HostOI\static\1\062802jumpie_prv.gif

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\HostOI\static\1\080402argh_prv.gif

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\HostOI\static\1\080402oops_prv.gif

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\HostOI\static\1\080402ouch_prv.gif

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\HostOI\static\1\082502no_prv.gif

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\HostOI\static\1\082502yes_prv.gif

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\HostOI\static\1\110103_boring1_prv.gif

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\HostOI\static\1\110103_confused_prv.gif

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\HostOI\static\1\110103_crying_ugly_prv.gif

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\HostOI\static\1\110103_fantastic_prv.gif

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\HostOI\static\1\110103_feel_better_prv.gif

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\HostOI\static\1\110103_gimme_break_prv.gif

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\HostOI\static\1\110103_heehee_prv.gif

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\HostOI\static\1\110103_hlopaet_prv.gif

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\HostOI\static\1\110103_ign_prv.gif

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\HostOI\static\1\110103_lol_prv.gif

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\HostOI\static\1\110103_no_comment_prv.gif

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\HostOI\static\1\110103_peace_prv.gif

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\HostOI\static\1\110103_smashing_prv.gif

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\HostOI\static\1\110103_talk2thehand_prv.gif

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\HostOI\static\1\block_sm.gif

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\HostOI\static\1\block_sm2.gif

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\HostOI\static\1\block_smli.gif

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\HostOI\static\1\block_smli2.gif

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\HostOI\static\1\blocked.gif

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\HostOI\static\1\blocked2.gif

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\HostOI\static\1\btn_add-but.gif

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\HostOI\static\1\btn_back-but.gif

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\HostOI\static\1\btn_left_cut_enabled_1.gif

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\HostOI\static\1\btn_left_enabled_1.gif

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\HostOI\static\1\btn_left_pressed_1.gif

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\HostOI\static\1\btn_middle_enabled_1.gif

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\HostOI\static\1\btn_middle_pressed_1.gif

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\HostOI\static\1\btn_right_cut_enabled_1.gif

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\HostOI\static\1\btn_right_enabled_1.gif

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\HostOI\static\1\btn_right_pressed_1.gif

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\HostOI\static\1\business_promo.htm

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\HostOI\static\1\buttondir.txt

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\HostOI\static\1\components.cdf

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\HostOI\static\1\css_cattree.css

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\HostOI\static\1\css_flashpreview.css

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\HostOI\static\1\css2_main.css

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\HostOI\static\1\css2_pagingmodule.css

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\HostOI\static\1\css2_topbuttons.css

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\HostOI\static\1\delete.gif

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\HostOI\static\1\edit_clear_sound.gif

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\HostOI\static\1\edit_fs.htm

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\HostOI\static\1\edit_select.gif

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\HostOI\static\1\email-def-511745-514279.mnu

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\HostOI\static\1\email-def-email-backgrounds.mnu

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\HostOI\static\1\email-def-email-bcards.mnu

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\HostOI\static\1\email-def-email-ecards.mnu

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\HostOI\static\1\email-def-email-edit.mnu

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\HostOI\static\1\email-def-email-emoticons.mnu

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\HostOI\static\1\email-def-email-estationery.mnu

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\HostOI\static\1\email-def-email-funny.mnu

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\HostOI\static\1\email-def-email-help.mnu

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\HostOI\static\1\email-def-email-images.mnu

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\HostOI\static\1\email-def-email-info.mnu

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\HostOI\static\1\email-def-email-more.mnu

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\HostOI\static\1\email-def-email-my.mnu

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\HostOI\static\1\email-def-email-people.mnu

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\HostOI\static\1\email-def-email-photo.mnu

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\HostOI\static\1\email-def-email-tell.mnu

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\HostOI\static\1\email-def-email-temp.mnu

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\HostOI\static\1\email-def-email-temp_OI.mnu

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\HostOI\static\1\email-def-email-text.mnu

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\HostOI\static\1\email-def-email-voice.mnu

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\HostOI\static\1\email-def.cdf

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\HostOI\static\1\email-premium-email-premium.mnu

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\HostOI\static\1\email-premium-email-premium_OI.mnu

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\HostOI\static\1\email-t1-bg.res

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\HostOI\static\1\estatationery.gif

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\HostOI\static\1\flashpreview.htm

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\HostOI\static\1\fs3.htm

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\HostOI\static\1\hotbar_promo.htm

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\HostOI\static\1\icon_checked_1.gif

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\HostOI\static\1\icon_close_1.gif

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\HostOI\static\1\icon_close_pressed_1.gif

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\HostOI\static\1\icon_edit_preview.gif

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\HostOI\static\1\icon_edit_send.gif

brytdavis

27 Posts

January 22nd, 2008 18:00

Part 1 of ComboFix log:

ComboFix 08-01-21.7 - Bryan Davis 2008-01-22 11:35:01.1 - NTFSx86

Microsoft Windows XP Home Edition 5.1.2600.2.1252.1.1033.18.633 [GMT -5:00]

Running from: C:\Documents and Settings\Bryan Davis\Desktop\ComboFix.exe

((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))

C:\Documents and Settings\All Users\Application Data\WinAntiSpyware 2007

C:\Documents and Settings\All Users\Application Data\winantispyware 2007\Data\Abbr

C:\Documents and Settings\All Users\Application Data\winantispyware 2007\Data\ProductCode

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\eskin\empty_bg_st.htm

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\eskin\FileManager.txt

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\IESkins\5555hotbar.bmp

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\HostOI\static\1\030104_emte10_prv.gif

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\HostOI\static\1\030104_emte11_prv.gif

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\HostOI\static\1\030104_emte12_prv.gif

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\HostOI\static\1\030104_emte13_prv.gif

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\HostOI\static\1\030104_emte14_prv.gif

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\HostOI\static\1\030104_emte19_prv.gif

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\HostOI\static\1\030104_emte20_prv.gif

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\HostOI\static\1\030104_emte21_prv.gif

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\HostOI\static\1\030104_emte9_prv.gif

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\HostOI\static\1\030203lib_prv.gif

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\HostOI\static\1\033102angel_1_prv.gif

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\HostOI\static\1\033102bigluf_1_prv.gif

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\HostOI\static\1\033102bigsmile_1_prv.gif

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\HostOI\static\1\033102birthday_1_prv.gif

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\HostOI\static\1\033102cheers_1_prv.gif

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\HostOI\static\1\033102flo_1_prv.gif

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\HostOI\static\1\033102good_1_prv.gif

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\HostOI\static\1\033102jump_1_prv.gif

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\HostOI\static\1\033102king_1_prv.gif

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\HostOI\static\1\033102lough_1_prv.gif

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\HostOI\static\1\033102luf_1_prv.gif

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\HostOI\static\1\033102smile_1_prv.gif

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\HostOI\static\1\033102smiled_1_prv.gif

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\HostOI\static\1\033102sor_1_prv.gif

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\HostOI\static\1\033102thanx_1_prv.gif

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\HostOI\static\1\033102uhu_1_prv.gif

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\HostOI\static\1\040103ahh_prv.gif

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\HostOI\static\1\040103wow_prv.gif

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\HostOI\static\1\040104_emi2_prv.gif

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\HostOI\static\1\042102_1134_112_prv.gif

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\HostOI\static\1\050103big_prv.gif

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\HostOI\static\1\050103gig_prv.gif

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\HostOI\static\1\050103hm_prv.gif

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\HostOI\static\1\050103nomail_emoti_prv.gif

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\HostOI\static\1\050103norm_prv.gif

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\HostOI\static\1\060104_ema15_prv.gif

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\HostOI\static\1\060104_ema16_prv.gif

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\HostOI\static\1\060104_ema17_prv.gif

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\HostOI\static\1\060104_ema18_prv.gif

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\HostOI\static\1\060104_ema19_prv.gif

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\HostOI\static\1\060104_ema20_prv.gif

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\HostOI\static\1\060104_ema21_prv.gif

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\HostOI\static\1\060104_ema24_prv.gif

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\HostOI\static\1\060104_ema25_prv.gif

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\HostOI\static\1\060104_ema26_prv.gif

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\HostOI\static\1\060104_ema30_prv.gif

brytdavis

27 Posts

January 22nd, 2008 18:00

part 3

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\HostOI\static\1\icon_flash_preview.gif

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\HostOI\static\1\icon_recently_used.gif

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\HostOI\static\1\icon_remove_1.gif

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\HostOI\static\1\icon_remove_pressed_1.gif

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\HostOI\static\1\icon_sand-clock2.gif

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\HostOI\static\1\icon_tell_1.gif

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\HostOI\static\1\icon_tell_pressed_1.gif

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\HostOI\static\1\icon_tree_null.gif

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\HostOI\static\1\icon_unchecked_1.gif

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\HostOI\static\1\icon_unchecked_pressed_1.gif

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\HostOI\static\1\img_barlayout.gif

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\HostOI\static\1\img_barlayout2.gif

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\HostOI\static\1\img_barlayout4.gif

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\HostOI\static\1\img_corner_left.gif

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\HostOI\static\1\img_local_logo.gif

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\HostOI\static\1\js2_basetemplate.js

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\HostOI\static\1\js2_hbgroups.js

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\HostOI\static\1\js2_hbobject3.js

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\HostOI\static\1\js2_hbobjectset3.js

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\HostOI\static\1\js2_hotbarwrapper.js

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\HostOI\static\1\js2_iteratorsandreaders3nf.js

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\HostOI\static\1\js2_pagingmoduleobj3.js

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\HostOI\static\1\js2_texts3.js

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\HostOI\static\1\js2_xmltree3nf.js

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\HostOI\static\1\layout.cdf

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\HostOI\static\1\linkpathlegal.txt

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\HostOI\static\1\n.gif

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\HostOI\static\1\nav_b_2.gif

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\HostOI\static\1\nav_bb_2.gif

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\HostOI\static\1\nav_f_2.gif

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\HostOI\static\1\nav_ff_2.gif

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\HostOI\static\1\progress.res

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\HostOI\static\1\searchbtn.gif

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\HostOI\static\1\submit.gif

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\HostOI\static\1\tab_bg.gif

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\HostOI\static\1\tab_bga.gif

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\HostOI\static\1\tab_bgia.gif

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\HostOI\static\1\tab_l.gif

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\HostOI\static\1\tab_la.gif

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\HostOI\static\1\tab_lia.gif

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\HostOI\static\1\tab_r.gif

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\HostOI\static\1\tab_ra.gif

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\HostOI\static\1\tab_ria.gif

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\HostOI\static\1\tree_dots.gif

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\HostOI\static\1\tree_minus.gif

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\HostOI\static\1\tree_plus.gif

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\HostOI\static\1\treedata_animations.xml

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\HostOI\static\1\treedata_backgrounds.xml

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\HostOI\static\1\treedata_ecards.xml

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\HostOI\static\1\treedata_emoticons.xml

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\HostOI\static\1\treedata_notifiers.xml

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\HostOI\static\1\treedata_text.xml

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\HostOI\static\DownLoad\business_promo.xip

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\HostOI\static\DownLoad\buttondir.xip

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\HostOI\static\DownLoad\code.xip

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\HostOI\static\DownLoad\email-def.xip

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\HostOI\static\DownLoad\email-t1-bg.xip

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\HostOI\static\DownLoad\hotbar_promo.xip

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\HostOI\static\DownLoad\images.xip

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\HostOI\static\DownLoad\layout.xip

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\HostOI\static\DownLoad\linkpathlegal.xip

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\HostOI\static\DownLoad\localcontent.xip

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\HostOI\static\DownLoad\progress.xip

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\HostOI\static\DownLoad\treexml.xip

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\dynamic\1.sdf

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\dynamic\1026471.sdf

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\dynamic\1029191.sdf

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\dynamic\1037615.sdf

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\dynamic\1055531.sdf

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\dynamic\1055670.sdf

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\dynamic\1056029.sdf

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\dynamic\1056880.sdf

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\dynamic\1057995.sdf

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\dynamic\1065003.sdf

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\dynamic\1069970.sdf

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\dynamic\1271868.sdf

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\dynamic\1292851.sdf

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\dynamic\1383603.sdf

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\dynamic\1385291.sdf

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\dynamic\1385940.sdf

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\dynamic\1386557.sdf

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\dynamic\1387588.sdf

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\dynamic\1395943.sdf

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\dynamic\1409564.sdf

brytdavis

27 Posts

January 22nd, 2008 18:00

part 6

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\dynamic\TooltipXML\45833

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\dynamic\TooltipXML\46415

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\dynamic\TooltipXML\4670

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\dynamic\TooltipXML\47468

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\dynamic\TooltipXML\47484

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\dynamic\TooltipXML\478548

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\dynamic\TooltipXML\47914

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\dynamic\TooltipXML\48843

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\dynamic\TooltipXML\50228

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\dynamic\TooltipXML\51166

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\dynamic\TooltipXML\511880

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\dynamic\TooltipXML\51374

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\dynamic\TooltipXML\52335

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\dynamic\TooltipXML\540243

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\dynamic\TooltipXML\54189

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\dynamic\TooltipXML\54473

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\dynamic\TooltipXML\54867

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\dynamic\TooltipXML\54873

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\dynamic\TooltipXML\54880

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\dynamic\TooltipXML\55000

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\dynamic\TooltipXML\5535

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\dynamic\TooltipXML\55858

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\dynamic\TooltipXML\56271

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\dynamic\TooltipXML\56527

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\dynamic\TooltipXML\56613

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\dynamic\TooltipXML\56726

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\dynamic\TooltipXML\56815

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\dynamic\TooltipXML\56907

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\dynamic\TooltipXML\56950

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\dynamic\TooltipXML\575586

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\dynamic\TooltipXML\57878

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\dynamic\TooltipXML\579123

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\dynamic\TooltipXML\58197

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\dynamic\TooltipXML\588381

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\dynamic\TooltipXML\5898

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\dynamic\TooltipXML\591977

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\dynamic\TooltipXML\59231

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\dynamic\TooltipXML\59234

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\dynamic\TooltipXML\59289

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\dynamic\TooltipXML\59598

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\dynamic\TooltipXML\59844

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\dynamic\TooltipXML\60709

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\dynamic\TooltipXML\60804

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\dynamic\TooltipXML\61400

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\dynamic\TooltipXML\6142

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\dynamic\TooltipXML\61779

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\dynamic\TooltipXML\61837

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\dynamic\TooltipXML\61853

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\dynamic\TooltipXML\61894

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\dynamic\TooltipXML\63245

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\dynamic\TooltipXML\63264

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\dynamic\TooltipXML\63770

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\dynamic\TooltipXML\63882

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\dynamic\TooltipXML\64414

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\dynamic\TooltipXML\64415

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\dynamic\TooltipXML\64429

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\dynamic\TooltipXML\64484

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\dynamic\TooltipXML\64502

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\dynamic\TooltipXML\64646

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\dynamic\TooltipXML\65435

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\dynamic\TooltipXML\6586

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\dynamic\TooltipXML\66261

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\dynamic\TooltipXML\66493

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\dynamic\TooltipXML\67226

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\dynamic\TooltipXML\67329

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\dynamic\TooltipXML\67491

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\dynamic\TooltipXML\67567

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\dynamic\TooltipXML\67733

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\dynamic\TooltipXML\67918

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\dynamic\TooltipXML\68055

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\dynamic\TooltipXML\6873

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\dynamic\TooltipXML\69019

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\dynamic\TooltipXML\69044

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\dynamic\TooltipXML\6915

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\dynamic\TooltipXML\6920

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\dynamic\TooltipXML\6928

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\dynamic\TooltipXML\6932

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\dynamic\TooltipXML\69325

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\dynamic\TooltipXML\6938

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\dynamic\TooltipXML\70259

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\dynamic\TooltipXML\70330

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\dynamic\TooltipXML\71009

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\dynamic\TooltipXML\73391

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\dynamic\TooltipXML\73840

brytdavis

27 Posts

January 22nd, 2008 18:00

part 8

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\static\1\d_icons_buttons_bbar13.res

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\static\1\d_icons_buttons_bbar14.res

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\static\1\d_icons_buttons_bbar2.res

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\static\1\d_icons_buttons_bbar3.res

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\static\1\d_icons_buttons_bbar4.res

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\static\1\d_icons_buttons_bbar5.res

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\static\1\d_icons_buttons_bbar6.res

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\static\1\d_icons_buttons_bbar7.res

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\static\1\d_icons_buttons_bbar8.res

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\static\1\d_icons_buttons_bbar9.res

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\static\1\d_icons_buttons_logos.res

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\static\1\d_icons_buttons_other.res

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\static\1\d_icons_buttons_x.res

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\static\1\d_icons_weather.res

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\static\1\default.cdf

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\static\1\Default_511745-514279.mnu

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\static\1\Default_categorize.mnu

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\static\1\Default_comparison.mnu

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\static\1\Default_explorer-Mails.mnu

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\static\1\Default_favorites.mnu

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\static\1\Default_Games.mnu

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\static\1\Default_Hide.mnu

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\static\1\Default_hotbarcom.mnu

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\static\1\Default_Hotmail.mnu

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\static\1\Default_hsskin.mnu

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\static\1\Default_Mails.mnu

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\static\1\Default_new.mnu

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\static\1\Default_premium.mnu

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\static\1\Default_ringtone.mnu

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\static\1\Default_SearchBoxTrapper.mnu

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\static\1\Default_searchfor.mnu

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\static\1\Default_searchgo.mnu

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\static\1\Default_weather.mnu

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\static\1\Default_yellowpages.mnu

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\static\1\email-def-511724-9595.mnu

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\static\1\email-t1-bg.res

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\static\1\hotbar-premium-hotbar-premium.mnu

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\static\1\hotbar-premium.cdf

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\static\1\hotbar_promo.htm

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\static\1\icons2.res

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\static\1\keywords.idx

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\static\1\keywords_idx.idx

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\static\1\keywords_sdf.sdf

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\static\1\keywords1.dat

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\static\1\layout.cdf

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\static\1\linkpathlegal.txt

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\static\1\progress.res

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\static\1\s_icons_buttons.res

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\static\1\t2_bg.res

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\static\1\theweb.mnu

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\static\1\top7.cdf

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\static\1\Top7_theweb.mnu

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\static\1\tsd_bg.res

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\static\2\ads.cdf

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\static\2\business_promo.htm

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\static\2\buttondir.txt

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\static\2\components.cdf

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\static\2\d_icons_buttons_1000.res

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\static\2\d_icons_buttons_2000.res

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\static\2\d_icons_buttons_3000.res

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\static\2\d_icons_buttons_bar.res

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\static\2\d_icons_buttons_bbar1.res

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\static\2\d_icons_buttons_bbar10.res

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\static\2\d_icons_buttons_bbar11.res

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\static\2\d_icons_buttons_bbar12.res

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\static\2\d_icons_buttons_bbar13.res

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\static\2\d_icons_buttons_bbar14.res

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\static\2\d_icons_buttons_bbar2.res

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\static\2\d_icons_buttons_bbar3.res

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\static\2\d_icons_buttons_bbar4.res

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\static\2\d_icons_buttons_bbar5.res

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\static\2\d_icons_buttons_bbar6.res

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\static\2\d_icons_buttons_bbar7.res

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\static\2\d_icons_buttons_bbar8.res

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\static\2\d_icons_buttons_bbar9.res

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\static\2\d_icons_buttons_logos.res

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\static\2\d_icons_buttons_other.res

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\static\2\d_icons_buttons_x.res

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\static\2\d_icons_weather.res

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\static\2\default.cdf

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\static\2\Default_511745-514279.mnu

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\static\2\Default_categorize.mnu

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\static\2\Default_comparison.mnu

C:\Documents and Settings\Kelley Davis\Application Data\Hotbar\v3.0\Hotbar\static\2\Default_explorer-Mails.mnu

brytdavis

27 Posts

January 22nd, 2008 18:00

part 11 of 11

"DellSupport"="C:\Program Files\DellSupport\DSAgnt.exe" [2007-03-15 11:09 460784]

"Weather"="C:\Program Files\AWS\WeatherBug\Weather.exe" [2005-06-07 12:58 1339392]

"swg"="C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2007-06-02 17:20 68856]

"Uniblue SpyEraser"="" []

"SpybotSD TeaTimer"="C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe" [2007-08-31 16:46 1460560]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"NvCplDaemon"="C:\WINDOWS\system32\NvCpl.dll" [2005-12-10 03:06 7311360]

"mcagent_exe"="C:\Program Files\McAfee.com\Agent\mcagent.exe" [2007-08-03 22:33 582992]

"acefbcde"="C:\WINDOWS\system32\wwcdaxgw.dll" [ ]

C:\Documents and Settings\All Users\Start Menu\Programs\Startup\

ymetray.lnk - C:\Program Files\Yahoo!\Yahoo! Music Jukebox\ymetray.exe [2007-06-28 09:59:56 54512]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\awtqr]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\pmnlm]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\urqqpmm]

urqqpmm.dll

[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^Adobe Reader Speed Launch.lnk]

backup=C:\WINDOWS\pss\Adobe Reader Speed Launch.lnkCommon Startup

[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^America Online 9.0 Tray Icon.lnk]

backup=C:\WINDOWS\pss\America Online 9.0 Tray Icon.lnkCommon Startup

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Photo Downloader]

--a------ 2005-06-06 22:46 57344 C:\Program Files\Adobe\Photoshop Album Starter Edition\3.0\Apps\apdproxy.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BCMSMMSG]

--a------ 2003-08-29 03:59 122880 C:\WINDOWS\BCMSMMSG.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\diagent]

--a------ 2002-04-03 01:01 135264 C:\Program Files\Creative\SBLive\Diagnostics\diagent.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\dla]

--a------ 2003-08-06 02:04 114741 C:\WINDOWS\system32\dla\tfswctrl.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DropBoxUtility]

--a------ 2007-08-24 00:40 258048 C:\Program Files\DropBox\DropBox\DropBox.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DVDSentry]

--a------ 2003-08-13 11:27 28672 C:\WINDOWS\System32\DSentry.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HPDJ Taskbar Utility]

--a------ 2002-03-18 06:00 188416 C:\WINDOWS\System32\spool\drivers\w32x86\3\hpztsb05.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iRiver Updater]

--a------ 2004-07-01 16:20 212992 C:\Updater.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KernelFaultCheck]

C:\WINDOWS\system32\dumprep 0 -k

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Microsoft Works Update Detection]

--a------ 2002-07-16 08:21 28672 C:\Program Files\Common Files\Microsoft Shared\Works Shared\WkUFind.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MimBoot]

--a------ 2006-11-07 15:41 8192 C:\PROGRA~1\MUSICM~1\MUSICM~2\mimboot.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroFilterCheck]

--a------ 2001-07-09 10:50 155648 C:\WINDOWS\system32\NeroCheck.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvCplDaemon]

--a------ 2005-12-10 03:06 7311360 C:\WINDOWS\system32\NvCpl.dll

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvMediaCenter]

--a------ 2005-12-10 03:06 86016 C:\WINDOWS\system32\NvMcTray.dll

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\nwiz]

--a------ 2005-12-10 03:06 1519616 C:\WINDOWS\SYSTEM32\nwiz.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PCMService]

--------- 2003-08-26 20:47 204800 C:\Program Files\Dell\Media Experience\PCMService.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]

--a------ 2003-11-19 08:54 77824 C:\Program Files\QuickTime\qttask.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Sonic RecordNow!]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Steam]

--a------ 2007-06-28 17:50 1258744 c:\program files\valve\steam\steam.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\swg]

--a------ 2007-06-02 17:20 68856 C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TkBellExe]

--a------ 2003-11-19 08:56 151597 C:\Program Files\Common Files\Real\Update_OB\realsched.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\UpdateManager]

--a------ 2003-08-19 01:01 110592 C:\Program Files\Common Files\Sonic\Update Manager\sgtray.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\UpdReg]

--------- 2000-05-11 02:00 90112 C:\WINDOWS\UpdReg.EXE

S2 EBIGTPJQ;EBIGTPJQ;C:\WINDOWS\system32\ebigtpjq.fmi []

Contents of the 'Scheduled Tasks' folder

"2006-07-29 23:00:14 C:\WINDOWS\Tasks\McDefragTask.job"

- C:\WINDOWS\system32\defrag.exe

"2006-07-29 23:00:12 C:\WINDOWS\Tasks\McQcTask.job"

- c:\program files\mcafee\mqc\QcConsol.exe.4158 0

"2007-08-17 16:14:34 C:\WINDOWS\Tasks\Uniblue SpyEraser.job"

- C:\Program Files\Uniblue\SpyEraser\SpyEraser.exe

**************************************************************************

catchme 0.3.1344 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net

Rootkit scan 2008-01-22 12:04:45

Windows 5.1.2600 Service Pack 2 NTFS

scanning hidden processes ...

scanning hidden autostart entries ...

scanning hidden files ...

scan completed successfully

hidden files: 0

**************************************************************************

Completion time: 2008-01-22 12:11:14 - machine was rebooted

ComboFix-quarantined-files.txt 2008-01-22 17:11:11

2008-01-16 15:56:52 --- E O F ---

View All

No Events found!

Virus & Spyware

My HijackThis log ... please help

Was this post helpful?