Jump to content

Welcome to Geeks to Go - Register now for FREE

Need help with your computer or device? Want to learn new tech skills? You're in the right place!
Geeks to Go is a friendly community of tech experts who can solve any problem you have. Just create a free account and post your question. Our volunteers will reply quickly and guide you through the steps. Don't let tech troubles stop you. Join Geeks to Go now and get the support you need!

How it Works Create Account
Photo

Dropper.small viruses & browser hijack

Started by plazaboy , Mar 17 2005 12:27 AM

  • This topic is locked This topic is locked

#16
plazaboy
Posted 24 March 2005 - 12:42 AM

plazaboy

    Member

  • Topic Starter
  • Member
  • PipPip
  • 13 posts
Hi KC,
Couldn't find any of the programs or files to delete prior to your Killbox instructions. Here are the reports.

Incident Status Location

Adware:Adware/CWS No disinfected Windows Registry
Spyware:Spyware/TVMedia No disinfected C:\WINDOWS\Application Data\tvm*.dll
Adware:Adware/SideSearch No disinfected Windows Registry
Spyware:Spyware/Altnet No disinfected C:\WINDOWS\TEMP\asmfiles.cab
Spyware:Spyware/Virtumonde No disinfected C:\WINDOWS\TEMP\bw2.com
Spyware:Spyware/Spyblocs No disinfected C:\WINDOWS\Desktop\Remove Spyware.url
Adware:Adware/Look2Me No disinfected C:\WINDOWS\SYSTEM\OXPRT400.DLL
Adware:Adware/Look2Me No disinfected C:\WINDOWS\SYSTEM\hqzime09.dll
Adware:Adware/Look2Me No disinfected C:\WINDOWS\SYSTEM\BTACKBOX.DLL
Spyware:Spyware/CouponAge No disinfected C:\WINDOWS\SYSTEM\dosync.dll
Spyware:Spyware/CouponAge No disinfected C:\WINDOWS\SYSTEM\docore.dll
Adware:Adware/Look2Me No disinfected C:\WINDOWS\SYSTEM\LMCMP62N.DLL
Adware:Adware/Look2Me No disinfected C:\WINDOWS\SYSTEM\dznput8.dll
Adware:Adware/nCase No disinfected C:\WINDOWS\TEMP\bw2.com
Adware:Adware/WUpd No disinfected C:\WINDOWS\Local Settings\Temporary Internet Files\Content.IE5\8D4L6FGH\seekattack[1].htm
Adware:Adware/WUpd No disinfected C:\WINDOWS\Local Settings\Temporary Internet Files\Content.IE5\8D4L6FGH\seekattack[3].htm
Adware:Adware/WUpd No disinfected C:\WINDOWS\Local Settings\Temporary Internet Files\Content.IE5\8D4L6FGH\seekattack[2].htm
Adware:Adware/WUpd No disinfected C:\WINDOWS\Local Settings\Temporary Internet Files\Content.IE5\8D4L6FGH\seekattack[4].htm
Adware:Adware/WUpd No disinfected C:\WINDOWS\Local Settings\Temporary Internet Files\Content.IE5\8D4L6FGH\seekattack[5].htm
Adware:Adware/WUpd No disinfected C:\WINDOWS\Local Settings\Temporary Internet Files\Content.IE5\TQG3IPPF\seekattack[1].htm
Adware:Adware/WUpd No disinfected C:\WINDOWS\Local Settings\Temporary Internet Files\Content.IE5\TQG3IPPF\seekattack[2].htm
Adware:Adware/WUpd No disinfected C:\WINDOWS\Local Settings\Temporary Internet Files\Content.IE5\TQG3IPPF\seekattack[3].htm
Adware:Adware/WUpd No disinfected C:\WINDOWS\Local Settings\Temporary Internet Files\Content.IE5\TQG3IPPF\seekattack[4].htm
Adware:Adware/WUpd No disinfected C:\WINDOWS\Local Settings\Temporary Internet Files\Content.IE5\TQG3IPPF\seekattack[5].htm
Adware:Adware/WUpd No disinfected C:\WINDOWS\Local Settings\Temporary Internet Files\Content.IE5\TQG3IPPF\seekattack[6].htm
Adware:Adware/WUpd No disinfected C:\WINDOWS\Local Settings\Temporary Internet Files\Content.IE5\TQG3IPPF\seekattack[7].htm
Adware:Adware/WUpd No disinfected C:\WINDOWS\Local Settings\Temporary Internet Files\Content.IE5\OTMBWH2R\seekattack[4].htm
Adware:Adware/WUpd No disinfected C:\WINDOWS\Local Settings\Temporary Internet Files\Content.IE5\OTMBWH2R\seekattack[2].htm
Adware:Adware/WUpd No disinfected C:\WINDOWS\Local Settings\Temporary Internet Files\Content.IE5\OTMBWH2R\seekattack[3].htm
Adware:Adware/WUpd No disinfected C:\WINDOWS\Local Settings\Temporary Internet Files\Content.IE5\OTMBWH2R\seekattack[7].htm
Adware:Adware/WUpd No disinfected C:\WINDOWS\Local Settings\Temporary Internet Files\Content.IE5\OTMBWH2R\seekattack[5].htm
Adware:Adware/WUpd No disinfected C:\WINDOWS\Local Settings\Temporary Internet Files\Content.IE5\OTMBWH2R\seekattack[6].htm
Adware:Adware/WUpd No disinfected C:\WINDOWS\Local Settings\Temporary Internet Files\Content.IE5\OTMBWH2R\seekattack[8].htm
Adware:Adware/WUpd No disinfected C:\WINDOWS\Local Settings\Temporary Internet Files\Content.IE5\GG24XJ1A\seekattack[1].htm
Adware:Adware/WUpd No disinfected C:\WINDOWS\Local Settings\Temporary Internet Files\Content.IE5\GG24XJ1A\seekattack[2].htm
Adware:Adware/WUpd No disinfected C:\WINDOWS\Local Settings\Temporary Internet Files\Content.IE5\GG24XJ1A\seekattack[3].htm
Adware:Adware/WUpd No disinfected C:\WINDOWS\Local Settings\Temporary Internet Files\Content.IE5\GG24XJ1A\seekattack[4].htm
Adware:Adware/WUpd No disinfected C:\WINDOWS\Local Settings\Temporary Internet Files\Content.IE5\GG24XJ1A\seekattack[5].htm
Adware:Adware/WUpd No disinfected C:\WINDOWS\Local Settings\Temporary Internet Files\Content.IE5\GG24XJ1A\seekattack[6].htm
Adware:Adware/WUpd No disinfected C:\WINDOWS\Local Settings\Temporary Internet Files\Content.IE5\490XM7K5\seekattack[1].htm
Adware:Adware/WUpd No disinfected C:\WINDOWS\Local Settings\Temporary Internet Files\Content.IE5\490XM7K5\seekattack[2].htm
Adware:Adware/WUpd No disinfected C:\WINDOWS\Local Settings\Temporary Internet Files\Content.IE5\490XM7K5\seekattack[3].htm
Adware:Adware/WUpd No disinfected C:\WINDOWS\Local Settings\Temporary Internet Files\Content.IE5\490XM7K5\seekattack[4].htm
Adware:Adware/WUpd No disinfected C:\WINDOWS\Local Settings\Temporary Internet Files\Content.IE5\490XM7K5\seekattack[5].htm
Adware:Adware/WUpd No disinfected C:\WINDOWS\Local Settings\Temporary Internet Files\Content.IE5\490XM7K5\seekattack[6].htm
Adware:Adware/WUpd No disinfected C:\WINDOWS\Local Settings\Temporary Internet Files\Content.IE5\JF9FNDSW\seekattack[1].htm
Adware:Adware/WUpd No disinfected C:\WINDOWS\Local Settings\Temporary Internet Files\Content.IE5\JF9FNDSW\seekattack[2].htm
Adware:Adware/WUpd No disinfected C:\WINDOWS\Local Settings\Temporary Internet Files\Content.IE5\JF9FNDSW\seekattack[3].htm
Adware:Adware/WUpd No disinfected C:\WINDOWS\Local Settings\Temporary Internet Files\Content.IE5\JF9FNDSW\seekattack[4].htm
Adware:Adware/WUpd No disinfected C:\WINDOWS\Local Settings\Temporary Internet Files\Content.IE5\JF9FNDSW\seekattack[5].htm
Adware:Adware/WUpd No disinfected C:\WINDOWS\Local Settings\Temporary Internet Files\Content.IE5\JF9FNDSW\seekattack[6].htm
Adware:Adware/WUpd No disinfected C:\WINDOWS\Local Settings\Temporary Internet Files\Content.IE5\JF9FNDSW\seekattack[7].htm
Adware:Adware/nCase No disinfected C:\WINDOWS\Local Settings\Temporary Internet Files\Content.IE5\ZIKB39S5\AppWrap[1].exe
Adware:Adware/WUpd No disinfected C:\WINDOWS\Local Settings\Temporary Internet Files\Content.IE5\ZIKB39S5\seekattack[1].htm
Adware:Adware/WUpd No disinfected C:\WINDOWS\Local Settings\Temporary Internet Files\Content.IE5\ZIKB39S5\seekattack[2].htm
Adware:Adware/WUpd No disinfected C:\WINDOWS\Local Settings\Temporary Internet Files\Content.IE5\ZIKB39S5\seekattack[3].htm
Adware:Adware/WUpd No disinfected C:\WINDOWS\Local Settings\Temporary Internet Files\Content.IE5\ZIKB39S5\seekattack[4].htm
Adware:Adware/WUpd No disinfected C:\WINDOWS\Local Settings\Temporary Internet Files\Content.IE5\CHMFK1QZ\seekattack[1].htm
Adware:Adware/WUpd No disinfected C:\WINDOWS\Local Settings\Temporary Internet Files\Content.IE5\CHMFK1QZ\seekattack[2].htm
Adware:Adware/WUpd No disinfected C:\WINDOWS\Local Settings\Temporary Internet Files\Content.IE5\CHMFK1QZ\seekattack[3].htm
Adware:Adware/WUpd No disinfected C:\WINDOWS\Local Settings\Temporary Internet Files\Content.IE5\CHMFK1QZ\seekattack[4].htm
Adware:Adware/WUpd No disinfected C:\WINDOWS\Local Settings\Temporary Internet Files\Content.IE5\CHMFK1QZ\seekattack[5].htm
Adware:Adware/WUpd No disinfected C:\WINDOWS\Local Settings\Temporary Internet Files\Content.IE5\CHMFK1QZ\seekattack[6].htm
Adware:Adware/WUpd No disinfected C:\WINDOWS\Local Settings\Temporary Internet Files\Content.IE5\CHMFK1QZ\seekattack[7].htm
Adware:Adware/WUpd No disinfected C:\WINDOWS\Local Settings\Temporary Internet Files\Content.IE5\9Z33XH4Y\seekattack[1].htm
Adware:Adware/WUpd No disinfected C:\WINDOWS\Local Settings\Temporary Internet Files\Content.IE5\9Z33XH4Y\seekattack[2].htm
Adware:Adware/WUpd No disinfected C:\WINDOWS\Local Settings\Temporary Internet Files\Content.IE5\9Z33XH4Y\seekattack[3].htm
Adware:Adware/WUpd No disinfected C:\WINDOWS\Local Settings\Temporary Internet Files\Content.IE5\9Z33XH4Y\seekattack[4].htm
Adware:Adware/WUpd No disinfected C:\WINDOWS\Local Settings\Temporary Internet Files\Content.IE5\9Z33XH4Y\seekattack[5].htm
Adware:Adware/nCase No disinfected C:\WINDOWS\Local Settings\Temporary Internet Files\Content.IE5\492ZC1YF\AppWrap[1].exe
Adware:Adware/WUpd No disinfected C:\WINDOWS\Local Settings\Temporary Internet Files\Content.IE5\492ZC1YF\seekattack[1].htm
Adware:Adware/WUpd No disinfected C:\WINDOWS\Local Settings\Temporary Internet Files\Content.IE5\492ZC1YF\seekattack[2].htm
Adware:Adware/WUpd No disinfected C:\WINDOWS\Local Settings\Temporary Internet Files\Content.IE5\492ZC1YF\seekattack[3].htm
Adware:Adware/WUpd No disinfected C:\WINDOWS\Local Settings\Temporary Internet Files\Content.IE5\492ZC1YF\seekattack[4].htm
Adware:Adware/WUpd No disinfected C:\WINDOWS\Local Settings\Temporary Internet Files\Content.IE5\492ZC1YF\seekattack[5].htm
Adware:Adware/WUpd No disinfected C:\WINDOWS\Local Settings\Temporary Internet Files\Content.IE5\492ZC1YF\seekattack[7].htm
Adware:Adware/WUpd No disinfected C:\WINDOWS\Local Settings\Temporary Internet Files\Content.IE5\492ZC1YF\seekattack[6].htm
Adware:Adware/WUpd No disinfected C:\WINDOWS\Local Settings\Temporary Internet Files\Content.IE5\4F17I6ZL\seekattack[1].htm
Adware:Adware/WUpd No disinfected C:\WINDOWS\Local Settings\Temporary Internet Files\Content.IE5\4F17I6ZL\seekattack[2].htm
Adware:Adware/WUpd No disinfected C:\WINDOWS\Local Settings\Temporary Internet Files\Content.IE5\4F17I6ZL\seekattack[4].htm
Adware:Adware/WUpd No disinfected C:\WINDOWS\Local Settings\Temporary Internet Files\Content.IE5\4F17I6ZL\seekattack[3].htm
Adware:Adware/WUpd No disinfected C:\WINDOWS\Local Settings\Temporary Internet Files\Content.IE5\4F17I6ZL\seekattack[5].htm
Adware:Adware/WUpd No disinfected C:\WINDOWS\Local Settings\Temporary Internet Files\Content.IE5\4F17I6ZL\seekattack[8].htm
Adware:Adware/WUpd No disinfected C:\WINDOWS\Local Settings\Temporary Internet Files\Content.IE5\4F17I6ZL\seekattack[6].htm
Adware:Adware/WUpd No disinfected C:\WINDOWS\Local Settings\Temporary Internet Files\Content.IE5\4F17I6ZL\seekattack[10].htm
Adware:Adware/WUpd No disinfected C:\WINDOWS\Local Settings\Temporary Internet Files\Content.IE5\4F17I6ZL\seekattack[7].htm
Adware:Adware/WUpd No disinfected C:\WINDOWS\Local Settings\Temporary Internet Files\Content.IE5\4F17I6ZL\seekattack[9].htm
Adware:Adware/WUpd No disinfected C:\WINDOWS\Local Settings\Temporary Internet Files\Content.IE5\4F17I6ZL\seekattack[11].htm
Adware:Adware/WUpd No disinfected C:\WINDOWS\Local Settings\Temporary Internet Files\Content.IE5\05EVO5ER\seekattack[1].htm
Adware:Adware/WUpd No disinfected C:\WINDOWS\Local Settings\Temporary Internet Files\Content.IE5\05EVO5ER\seekattack[2].htm
Adware:Adware/WUpd No disinfected C:\WINDOWS\Local Settings\Temporary Internet Files\Content.IE5\05EVO5ER\seekattack[3].htm
Adware:Adware/WUpd No disinfected C:\WINDOWS\Local Settings\Temporary Internet Files\Content.IE5\05EVO5ER\seekattack[4].htm
Adware:Adware/WUpd No disinfected C:\WINDOWS\Local Settings\Temporary Internet Files\Content.IE5\05EVO5ER\seekattack[5].htm
Adware:Adware/WUpd No disinfected C:\WINDOWS\Local Settings\Temporary Internet Files\Content.IE5\05EVO5ER\seekattack[6].htm
Adware:Adware/WUpd No disinfected C:\WINDOWS\Local Settings\Temporary Internet Files\Content.IE5\05EVO5ER\seekattack[7].htm
Adware:Adware/WUpd No disinfected C:\WINDOWS\Local Settings\Temporary Internet Files\Content.IE5\05EVO5ER\seekattack[8].htm
Adware:Adware/WUpd No disinfected C:\WINDOWS\Local Settings\Temporary Internet Files\Content.IE5\8512A3YU\seekattack[1].htm
Adware:Adware/WUpd No disinfected C:\WINDOWS\Local Settings\Temporary Internet Files\Content.IE5\8512A3YU\seekattack[2].htm
Adware:Adware/WUpd No disinfected C:\WINDOWS\Local Settings\Temporary Internet Files\Content.IE5\8512A3YU\seekattack[3].htm
Adware:Adware/WUpd No disinfected C:\WINDOWS\Local Settings\Temporary Internet Files\Content.IE5\8512A3YU\seekattack[5].htm
Adware:Adware/WUpd No disinfected C:\WINDOWS\Local Settings\Temporary Internet Files\Content.IE5\8512A3YU\seekattack[4].htm
Adware:Adware/WUpd No disinfected C:\WINDOWS\Local Settings\Temporary Internet Files\Content.IE5\8512A3YU\seekattack[7].htm
Adware:Adware/WUpd No disinfected C:\WINDOWS\Local Settings\Temporary Internet Files\Content.IE5\8512A3YU\seekattack[6].htm
Adware:Adware/WUpd No disinfected C:\WINDOWS\Local Settings\Temporary Internet Files\Content.IE5\KX4DAVOP\seekattack[4].htm
Adware:Adware/WUpd No disinfected C:\WINDOWS\Local Settings\Temporary Internet Files\Content.IE5\KX4DAVOP\seekattack[1].htm
Adware:Adware/WUpd No disinfected C:\WINDOWS\Local Settings\Temporary Internet Files\Content.IE5\KX4DAVOP\seekattack[2].htm
Adware:Adware/WUpd No disinfected C:\WINDOWS\Local Settings\Temporary Internet Files\Content.IE5\KX4DAVOP\seekattack[3].htm
Adware:Adware/WUpd No disinfected C:\WINDOWS\Local Settings\Temporary Internet Files\Content.IE5\KX4DAVOP\seekattack[5].htm
Adware:Adware/WUpd No disinfected C:\WINDOWS\Local Settings\Temporary Internet Files\Content.IE5\KX4DAVOP\seekattack[6].htm
Adware:Adware/WUpd No disinfected C:\WINDOWS\Local Settings\Temporary Internet Files\Content.IE5\KX4DAVOP\seekattack[7].htm
Adware:Adware/WUpd No disinfected C:\WINDOWS\Local Settings\Temporary Internet Files\Content.IE5\KX4DAVOP\seekattack[8].htm
Adware:Adware/WUpd No disinfected C:\WINDOWS\Local Settings\Temporary Internet Files\Content.IE5\KX4DAVOP\seekattack[9].htm
Adware:Adware/WUpd No disinfected C:\WINDOWS\Local Settings\Temporary Internet Files\Content.IE5\KX4DAVOP\seekattack[10].htm
Adware:Adware/WUpd No disinfected C:\WINDOWS\Local Settings\Temporary Internet Files\Content.IE5\CB5JMYBH\seekattack[3].htm
Adware:Adware/WUpd No disinfected C:\WINDOWS\Local Settings\Temporary Internet Files\Content.IE5\CB5JMYBH\seekattack[1].htm
Adware:Adware/WUpd No disinfected C:\WINDOWS\Local Settings\Temporary Internet Files\Content.IE5\CB5JMYBH\seekattack[2].htm
Adware:Adware/WUpd No disinfected C:\WINDOWS\Local Settings\Temporary Internet Files\Content.IE5\CB5JMYBH\seekattack[4].htm
Adware:Adware/WUpd No disinfected C:\WINDOWS\Local Settings\Temporary Internet Files\Content.IE5\0LWF0F0Z\seekattack[1].htm
Adware:Adware/WUpd No disinfected C:\WINDOWS\Local Settings\Temporary Internet Files\Content.IE5\0LWF0F0Z\seekattack[2].htm
Adware:Adware/WUpd No disinfected C:\WINDOWS\Local Settings\Temporary Internet Files\Content.IE5\0LWF0F0Z\seekattack[3].htm
Adware:Adware/WUpd No disinfected C:\WINDOWS\Local Settings\Temporary Internet Files\Content.IE5\0LWF0F0Z\seekattack[4].htm
Adware:Adware/WUpd No disinfected C:\WINDOWS\Local Settings\Temporary Internet Files\Content.IE5\0LWF0F0Z\seekattack[5].htm
Adware:Adware/WUpd No disinfected C:\WINDOWS\Local Settings\Temporary Internet Files\Content.IE5\K9EBWDMB\seekattack[1].htm
Adware:Adware/WUpd No disinfected C:\WINDOWS\Local Settings\Temporary Internet Files\Content.IE5\K9EBWDMB\seekattack[2].htm
Adware:Adware/WUpd No disinfected C:\WINDOWS\Local Settings\Temporary Internet Files\Content.IE5\K9EBWDMB\seekattack[5].htm
Adware:Adware/WUpd No disinfected C:\WINDOWS\Local Settings\Temporary Internet Files\Content.IE5\K9EBWDMB\seekattack[3].htm
Adware:Adware/WUpd No disinfected C:\WINDOWS\Local Settings\Temporary Internet Files\Content.IE5\K9EBWDMB\seekattack[4].htm
Adware:Adware/WUpd No disinfected C:\WINDOWS\Local Settings\Temporary Internet Files\Content.IE5\MIWQ3WBL\seekattack[1].htm
Adware:Adware/WUpd No disinfected C:\WINDOWS\Local Settings\Temporary Internet Files\Content.IE5\MIWQ3WBL\seekattack[2].htm
Adware:Adware/WUpd No disinfected C:\WINDOWS\Local Settings\Temporary Internet Files\Content.IE5\MIWQ3WBL\seekattack[3].htm
Adware:Adware/WUpd No disinfected C:\WINDOWS\Local Settings\Temporary Internet Files\Content.IE5\MIWQ3WBL\seekattack[4].htm
Adware:Adware/WUpd No disinfected C:\WINDOWS\Local Settings\Temporary Internet Files\Content.IE5\MIWQ3WBL\seekattack[5].htm
Adware:Adware/WUpd No disinfected C:\WINDOWS\Local Settings\Temporary Internet Files\Content.IE5\MIWQ3WBL\seekattack[6].htm
Adware:Adware/WUpd No disinfected C:\WINDOWS\Local Settings\Temporary Internet Files\Content.IE5\MIWQ3WBL\seekattack[7].htm
Adware:Adware/WUpd No disinfected C:\WINDOWS\Local Settings\Temporary Internet Files\Content.IE5\MIWQ3WBL\seekattack[8].htm
Adware:Adware/WUpd No disinfected C:\WINDOWS\Local Settings\Temporary Internet Files\Content.IE5\UD3OPOBE\seekattack[1].htm
Adware:Adware/WUpd No disinfected C:\WINDOWS\Local Settings\Temporary Internet Files\Content.IE5\UD3OPOBE\seekattack[3].htm
Adware:Adware/WUpd No disinfected C:\WINDOWS\Local Settings\Temporary Internet Files\Content.IE5\UD3OPOBE\seekattack[2].htm
Adware:Adware/WUpd No disinfected C:\WINDOWS\Local Settings\Temporary Internet Files\Content.IE5\UD3OPOBE\seekattack[4].htm
Adware:Adware/WUpd No disinfected C:\WINDOWS\Local Settings\Temporary Internet Files\Content.IE5\UD3OPOBE\seekattack[5].htm
Adware:Adware/WUpd No disinfected C:\WINDOWS\Local Settings\Temporary Internet Files\Content.IE5\UD3OPOBE\seekattack[6].htm
Adware:Adware/WUpd No disinfected C:\WINDOWS\Local Settings\Temporary Internet Files\Content.IE5\VR9VBP0O\seekattack[1].htm
Adware:Adware/WUpd No disinfected C:\WINDOWS\Local Settings\Temporary Internet Files\Content.IE5\VR9VBP0O\seekattack[2].htm
Adware:Adware/WUpd No disinfected C:\WINDOWS\Local Settings\Temporary Internet Files\Content.IE5\VR9VBP0O\seekattack[3].htm
Adware:Adware/WUpd No disinfected C:\WINDOWS\Local Settings\Temporary Internet Files\Content.IE5\VR9VBP0O\seekattack[4].htm
Adware:Adware/WUpd No disinfected C:\WINDOWS\Local Settings\Temporary Internet Files\Content.IE5\VR9VBP0O\seekattack[5].htm
Adware:Adware/WUpd No disinfected C:\WINDOWS\Local Settings\Temporary Internet Files\Content.IE5\VR9VBP0O\seekattack[7].htm
Adware:Adware/WUpd No disinfected C:\WINDOWS\Local Settings\Temporary Internet Files\Content.IE5\VR9VBP0O\seekattack[6].htm
Adware:Adware/nCase No disinfected C:\WINDOWS\icont.exe
Logfile of HijackThis v1.99.1
Scan saved at 10:40:00 PM, on 3/23/05
Platform: Windows 98 SE (Win9x 4.10.2222A)
MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106)

Running processes:
C:\WINDOWS\SYSTEM\KERNEL32.DLL
C:\WINDOWS\SYSTEM\MSGSRV32.EXE
C:\WINDOWS\SYSTEM\MPREXE.EXE
C:\WINDOWS\SYSTEM\mmtask.tsk
C:\WINDOWS\EXPLORER.EXE
C:\WINDOWS\RUNDLL32.EXE
C:\PROGRAM FILES\HEWLETT-PACKARD\HP SOFTWARE UPDATE\HPWUSCHD.EXE
C:\PROGRAM FILES\HP\HPCORETECH\HPCMPMGR.EXE
C:\PROGRAM FILES\TELUS ECARE\SMARTBRIDGE\MOTIVESB.EXE
C:\WINDOWS\SYSTEM\QTTASK.EXE
C:\PROGRAM FILES\MSN MESSENGER\MSNMSGR.EXE
C:\PROGRAM FILES\NETSCAPE\NETSCAPE\NETSCP.EXE
C:\PROGRAM FILES\INTERMUTE\SPYSUBTRACT\SPYSUB.EXE
C:\WINDOWS\SYSTEM\MSTASK.EXE
C:\WINDOWS\SYSTEM\DDHELP.EXE
C:\PROGRAM FILES\TELUS ECARE\BIN\MPBTN.EXE
C:\PROGRAM FILES\HP\HPCORETECH\COMP\HPTSKMGR.EXE
C:\WINDOWS\SYSTEM\SPOOL32.EXE

C:\MY DOCUMENTS\HIJACK THIS\HIJACKTHIS.EXE

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = 127.0.0.1
R3 - URLSearchHook: (no name) - _{707E6F76-9FFB-4920-A976-EA101271BC25} - (no file)
R3 - URLSearchHook: (no name) - GlobalUserOffline - (no file)
N3 - Netscape 7: user_pref("browser.startup.homepage", "http://home.netscape.com/"); (C:\WINDOWS\Application Data\Mozilla\Profiles\default\rdetvrlg.slt\prefs.js)
N3 - Netscape 7: user_pref("browser.search.defaultengine", "http://www.google.com/"); (C:\WINDOWS\Application Data\Mozilla\Profiles\default\rdetvrlg.slt\prefs.js)
O1 - Hosts: 69.20.16.183 search.netscape.com
O1 - Hosts: 69.20.16.183 ieautosearch
O1 - Hosts: 69.20.16.183 auto.search.msn.com
O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\SYSTEM\MSDXM.OCX
O9 - Extra button: Create Mobile Favorite - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRAM FILES\MICROSOFT ACTIVESYNC\INETREPL.DLL
O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRAM FILES\MICROSOFT ACTIVESYNC\INETREPL.DLL
O9 - Extra 'Tools' menuitem: Create Mobile Favorite... - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRAM FILES\MICROSOFT ACTIVESYNC\INETREPL.DLL
O16 - DPF: {DF780F87-FF2B-4DF8-92D0-73DB16A1543A} (PopCapLoader Object) - http://antu.popcap.c...aploader_v5.cab
O16 - DPF: {238F6F83-B8B4-11CF-8771-00A024541EE3} (WficaCtl Object) - http://remote.mccarthy.ca/wfica.cab
O16 - DPF: {62475759-9E84-458E-A1AB-5D2C442ADFDE} - http://a1540.g.akama...meInstaller.exe
O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) - http://www.pandasoft.../as5/asinst.cab
O16 - DPF: {74D05D43-3236-11D4-BDCD-00C04F9A3B61} (HouseCall Control) - http://a840.g.akamai...all/xscan53.cab
O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn...pDownloader.cab
  • 0

Advertisements

#17
plazaboy
Posted 26 March 2005 - 07:06 PM

plazaboy

    Member

  • Topic Starter
  • Member
  • PipPip
  • 13 posts
Help KC,
I think my replies are being compromised. Sen ttwo replies to be posted but can't see them. Posted the reports you asked for. Waiting for your next advice.
thanks.
plazaboy :tazz: not yet
  • 0

#18
Guest_thatman_*
Posted 31 March 2005 - 03:33 AM

Guest_thatman_*
  • Guest
Hi plazaboy

Welcome to geekstogo

Spyware.Look2Me unzip and run the program.

Let me know of any problems you have had

Post a new HJT.Log

Kc :tazz:
  • 0

#19
plazaboy
Posted 31 March 2005 - 10:49 PM

plazaboy

    Member

  • Topic Starter
  • Member
  • PipPip
  • 13 posts
Hi KC,
Nothing found with spyware.look2me. Ran it in normal mode. I am still getting popups, netscape search engine is redirected to various search engines of their choice, hotmail through netscape says doesn't work because cookies turned off but they're not, IE hotmail works fine, rundll32 is always running in background even when I close it, it comes back right away. HELP!
Here's my HJT log..
Logfile of HijackThis v1.99.1
Scan saved at 8:33:57 PM, on 3/31/05
Platform: Windows 98 SE (Win9x 4.10.2222A)
MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106)

Running processes:
C:\WINDOWS\SYSTEM\KERNEL32.DLL
C:\WINDOWS\SYSTEM\MSGSRV32.EXE
C:\WINDOWS\SYSTEM\SPOOL32.EXE
C:\WINDOWS\SYSTEM\MPREXE.EXE
C:\WINDOWS\SYSTEM\mmtask.tsk
C:\WINDOWS\EXPLORER.EXE
C:\PROGRAM FILES\GRISOFT\AVG FREE\AVGCC.EXE
C:\PROGRAM FILES\GRISOFT\AVG FREE\AVGEMC.EXE
C:\PROGRAM FILES\GRISOFT\AVG FREE\AVGAMSVR.EXE
C:\PROGRAM FILES\INTERMUTE\SPYSUBTRACT\SPYSUB.EXE
C:\WINDOWS\SYSTEM\DDHELP.EXE
C:\WINDOWS\RUNDLL32.EXE
C:\MY DOCUMENTS\HIJACK THIS\HIJACKTHIS.EXE

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://g.msn.ca/0SEENCA/SAOS01
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = 127.0.0.1
R3 - URLSearchHook: (no name) - _{707E6F76-9FFB-4920-A976-EA101271BC25} - (no file)
R3 - URLSearchHook: (no name) - GlobalUserOffline - (no file)
N3 - Netscape 7: user_pref("browser.startup.homepage", "http://home.netscape.com/"); (C:\WINDOWS\Application Data\Mozilla\Profiles\default\rdetvrlg.slt\prefs.js)
N3 - Netscape 7: user_pref("browser.search.defaultengine", "http://www.google.com/"); (C:\WINDOWS\Application Data\Mozilla\Profiles\default\rdetvrlg.slt\prefs.js)
O1 - Hosts: 69.20.16.183 ieautosearch
O1 - Hosts: 69.20.16.183 auto.search.msn.com
O1 - Hosts: 69.20.16.183 search.netscape.com
O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\SYSTEM\MSDXM.OCX
O3 - Toolbar: MSN - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\PROGRAM FILES\MSN APPS\MSN TOOLBAR\01.02.4000.1001\EN-CA\MSNTB.DLL
O4 - HKLM\..\Run: [AVG7_CC] C:\PROGRA~1\GRISOFT\AVGFRE~1\AVGCC.EXE /STARTUP
O4 - HKLM\..\Run: [AVG7_EMC] C:\PROGRA~1\GRISOFT\AVGFRE~1\AVGEMC.EXE
O4 - HKLM\..\Run: [AVG7_AMSVR] C:\PROGRA~1\GRISOFT\AVGFRE~1\AVGAMSVR.EXE
O4 - HKCU\..\Run: [msnmsgr] "C:\PROGRAM FILES\MSN MESSENGER\MSNMSGR.EXE" /background
O4 - Startup: SpySubtract.lnk = C:\Program Files\interMute\SpySubtract\SpySub.exe
O9 - Extra button: Create Mobile Favorite - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRAM FILES\MICROSOFT ACTIVESYNC\INETREPL.DLL
O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRAM FILES\MICROSOFT ACTIVESYNC\INETREPL.DLL
O9 - Extra 'Tools' menuitem: Create Mobile Favorite... - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRAM FILES\MICROSOFT ACTIVESYNC\INETREPL.DLL
O16 - DPF: {DF780F87-FF2B-4DF8-92D0-73DB16A1543A} (PopCapLoader Object) - http://antu.popcap.c...aploader_v5.cab
O16 - DPF: {238F6F83-B8B4-11CF-8771-00A024541EE3} (WficaCtl Object) - http://remote.mccarthy.ca/wfica.cab
O16 - DPF: {62475759-9E84-458E-A1AB-5D2C442ADFDE} - http://a1540.g.akama...meInstaller.exe
O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) - http://www.pandasoft.../as5/asinst.cab
O16 - DPF: {74D05D43-3236-11D4-BDCD-00C04F9A3B61} (HouseCall Control) - http://a840.g.akamai...all/xscan53.cab
O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn...pDownloader.cab
  • 0

#20
Guest_thatman_*
Posted 15 April 2005 - 11:37 AM

Guest_thatman_*
  • Guest
No reply from user

Topic closed

Kc
  • 0
Back to Virus, Spyware, Malware Removal · Next Unread Topic →




Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

  1. Geeks to Go Community
  2. Security
  3. Virus, Spyware, Malware Removal

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP