Hi & welcome SwtIndira,
THESE ITEMS ARE EITHER HARMFULL OR A SECURITY RISK
WE STRONGLY RECOMMEND TO FIX THEM :
R1 - HKCU\Software\Microsoft\Internet Explorer,SearchURL =
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar =
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page =
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page =
R1 - HKCU\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R3 - URLSearchHook: (no name) - _{37D2CDBF-2AF4-44AA-8113-BD0D2DA3C2B8} -
o2 - BHO: MyWebSearch Search Assistant BHO -
o2 - BHO: (no name) - {016235BE-59D4-4CEB-ADD5-E2378282A1D9} - C:\Program
o2 - BHO: mwsBar BHO - {07B18EA1-A523-4961-B6BB-170DE4475CCA} - C:\Program
o2 - BHO: InstaFinderK - {4E7BD74F-2B8D-469E-90F0-F66AB581A933} -
o2 - BHO: ST - {9394EDE7-C8B5-483E-8773-474BF36AF6E4} - C:\Program Files\MSN
o2 - BHO: (no name) - {FDD3B846-8D59-4ffb-8758-209B6AD74ACC} - c:\Program
o3 - Toolbar: My &Web Search - {07B18EA9-A523-4961-B6BB-170DE4475CCA} -
o4 - HKLM..\Run: [AutoUpdater] “C:\Program Files\AutoUpdate\AutoUpdate.exe”
o4 - HKLM..\Run: [=°ÜZMÝYMÚlY«V°aÆ+À¼C:\Program Files\ISTsvc\istsvc.exe]
o4 - HKLM..\Run: [7f4t] C:\WINDOWS\ufjvbfj.exe
o4 - HKLM..\Run: [WebRebates0] “C:\Program Files\Web_Rebates\WebRebates0.exe”
o4 - HKLM..\Run: [036P39g] odtoice.exe
o16 - dpf: {0e5f0222-96b9-11d3-8997-00104bd12d94} (pcpitstop utility) -
o16 - dpf: {1d6711c8-7154-40bb-8380-3dea45b69cbf} (web p2p installer) -
o16 - dpf: {2b96d5cc-c5b5-49a5-a69d-cc0a30f9028c} (minibugtransporterx
o16 - dpf: {9732fb42-c321-11d1-836f-00a0c993f125} (mhlabel class) -
o16 - dpf: {b38870e4-7ecb-40da-8c6a-595f0a5519ff}
o16 - dpf: {b9191f79-5613-4c7-aa2a-398534bb8999} (yaddbook class) -
o23 - Service: YPCService - Yahoo! Inc. - C:\WINDOWS\SYSTEM32\YPCSER~1.EXE
THE FOLLOWING ITEMS ARE NOT NEEDED TO LOAD
AT BOOTTIME FOR THE SYSTEM TO WORK PROPERLY :
o4 - HKLM..\Run: [TkBellExe] “C:\Program Files\Common Files\Real\Update_OB\realsched.exe” -osboot
Then open taskmanager (Alt + Ctrl + Del) then click ‘preocesses’ tab at the top, and kill these processes (if there):
ufjvbfj.exe
odtoice.exe
WebRebates1.exe
msnappau.exe
WebRebates0.exe
Then delete these files:
C:\WINDOWS[b]ufjvbfj.exe[/b]
C:\WINDOWS\SYSTEM32[b]YPCSER~1.EXE[/b]
Then delete these folders:
C:\Program Files[b]Web_Rebates[/b]
C:\Program Files[b]MSN Apps[/b]
Then go here and run download and run these scanners/steps: http://members.home.nl/edeijl/ache/cleaning.htm
The main ones to use are Ad-Aware, Spybot, Avast and CWshredder, however there are some other steps there that you may want to try (such as the system resote one).
But don’t use the AVG scanner as it will conflict with Avast.
Then delete all temp files, therer is alot so i suggest you use ccleaner to remove them (http://www.filehippo.com/download_ccleaner.html)
Also i don’t see any firewall running, if your not using a hardware one (normally inside a router) then i suggest you download a software one, a good one can be found here: http://download.zonelabs.com/bin/free/1012_zl/zlsSetup_55_062_011.exe
Then reboot your system and redo and repost your hijackthis log.
P.S. i release there are alot of steps there, but there needed to remove all that malware etc infecting your system, take your time no need to rush, come back if you need help.
–lee