Jump to content

Welcome to Geeks to Go - Register now for FREE

Need help with your computer or device? Want to learn new tech skills? You're in the right place!
Geeks to Go is a friendly community of tech experts who can solve any problem you have. Just create a free account and post your question. Our volunteers will reply quickly and guide you through the steps. Don't let tech troubles stop you. Join Geeks to Go now and get the support you need!

How it Works Create Account
Photo

I.E.7 Wont run Plus I.E. Problem window Opens by it'self!


  • Please log in to reply

#1
paulinspain

paulinspain

    Member

  • Member
  • PipPip
  • 77 posts
Helo there.

As I said, I know I have a Malware/Trojan problem. Well, maybe several?

I have recently install I.E.7. But now using I.E. I cannot get online. Thank goodness for FireFox. Whether I attempt to go online or not I keep getting a small grey box open with the following “Internet Explorer has encountered a problem and needs to close. We are sorry for the inconvenience.

AppName: iexplore.exe AppVer: 7.0.5700.6 ModName: hezymgf.dll
ModVer: 0.0.0.0 Offset: 000018a7”

The ModName is never the same. Such as krwparjd.dll
I have tried to follow your steps through 1-4 but I could not run “TrojanHunter” I let the licence slip a while back & unless I cough up it won’t run I’m afraid. I’m not tight but only on a pension. Have done every thing else though Plus I have AVG7.5.425 which includes I believe “ewido”plus Avast Home 4.7, Ad-Aware SE & Spybot plus I have Ewido 3.5 which I run as somehow it picks up things AVG7.5.425 seems to miss. I have even run “Trend HouseCall” which found 2 viruses & 2 Trojans. Having run all of this, nothing seems to have sorted the problem. I used RegistryFix & like an idiot to sort out the .dlI files but forgot to backup. I currently have System Restore turned OFF & endevor to unplug from the internet while the scans are being carried out only turning the internet back on once I have rebooted. Can you please help.

AVG even pointed out Tojan Horse Generic 2.EMD & ENZ!

Here is a copy of the latest HijackThis log.
Logfile of HijackThis v1.99.1
Scan saved at 16:34:43, on 10/10/2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.5700.0006)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Windows Defender\MsMpEng.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
F:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
F:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe
C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe
C:\Program Files\Common Files\EPSON\EBAPI\SAgent2.exe
E:\Program Files\ewido anti-malware\ewidoctrl.exe
C:\WINDOWS\system32\inetsrv\inetinfo.exe
C:\Program Files\Common Files\Roxio Shared\SharedCOM8\RoxMediaDB.exe
C:\Program Files\Common Files\Roxio Shared\SharedCOM8\RoxWatch.exe
C:\WINDOWS\system32\tcpsvcs.exe
C:\WINDOWS\System32\snmp.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\UAService7.exe
C:\WINDOWS\system32\fxssvc.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\ctfmon.exe
F:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Adobe\Photoshop Album Starter Edition\3.0\Apps\apdproxy.exe
C:\Program Files\Adobe\Distillr\Acrotray.exe
C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_S4I0H2.EXE
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe
C:\Program Files\NVIDIA Corporation\NvMixer\NVMixerTray.exe
F:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\Program Files\Roxio\Easy Media Creator 8\Drag to Disc\DrgToDsc.exe
C:\Program Files\Common Files\Roxio Shared\SharedCOM8\RoxWatchTray.exe
E:\Program Files\DAEMON Tools\daemon.exe
C:\WINDOWS\System32\alg.exe
C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
C:\WINDOWS\system32\rundll32.exe
C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe
C:\Program Files\Common Files\Roxio Shared\SharedCOM8\CPSHelpRunner.exe
C:\Program Files\Windows Defender\MSASCui.exe
F:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\WINDOWS\system32\rundll32.exe
F:\Program Files\TrojanHunter 4.6\THGuard.exe
C:\Program Files\Common Files\{50E7BE92-0872-2057-0724-03030902002c}\Update.exe
C:\WINDOWS\TEMP\iddA.tmp.exe
C:\Program Files\Microsoft Office\Office10\WINWORD.EXE
C:\WINDOWS\TEMP\win51E.tmp.exe
C:\WINDOWS\TEMP\idd1E.tmp.exe
C:\Program Files\Mozilla Firefox\firefox.exe
F:\Program Files\HJT\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = about:
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.telefonic.....ma+es,00.html
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft....k/?LinkId=54729
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft....k/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft....k/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft....cid={SUB_CLCID}
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll
O3 - Toolbar: MSN Search Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Toolbar Suite\TB\02.05.0000.1082\en-gb\msntb.dll
O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Adobe\Acrobat\AcroIEFavClient.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll
O4 - HKLM\..\Run: [IMJPMIG8.1] "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32
O4 - HKLM\..\Run: [IMEKRMIG6.1] C:\WINDOWS\ime\imkr6_1\IMEKRMIG.EXE
O4 - HKLM\..\Run: [Adobe Photo Downloader] "C:\Program Files\Adobe\Photoshop Album Starter Edition\3.0\Apps\apdproxy.exe"
O4 - HKLM\..\Run: [Acrobat Assistant 7.0] "C:\Program Files\Adobe\Distillr\Acrotray.exe"
O4 - HKLM\..\Run: [EPSON Stylus Photo R200 Series] "C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_S4I0H2.EXE" /P30 "EPSON Stylus Photo R200 Series" /O6 "USB002" /M "Stylus Photo R200"
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [ISUSPM Startup] "C:\Program Files\Common Files\InstallShield\UpdateService\isuspm.exe" -startup
O4 - HKLM\..\Run: [ISUSScheduler] "C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe" -start
O4 - HKLM\..\Run: [NVMixerTray] "C:\Program Files\NVIDIA Corporation\NvMixer\NVMixerTray.exe"
O4 - HKLM\..\Run: [RoxioDragToDisc] "C:\Program Files\Roxio\Easy Media Creator 8\Drag to Disc\DrgToDsc.exe"
O4 - HKLM\..\Run: [RoxWatchTray] "C:\Program Files\Common Files\Roxio Shared\SharedCOM8\RoxWatchTray.exe"
O4 - HKLM\..\Run: [DAEMON Tools] "E:\Program Files\DAEMON Tools\daemon.exe" -lang 1033
O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
O4 - HKLM\..\Run: [QuickTime Task] "E:\Program Files\qttask.exe" -atboottime
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe"
O4 - HKLM\..\Run: [hezymgf.dll] "C:\WINDOWS\system32\rundll32.exe" C:\WINDOWS\system32\hezymgf.dll,gznvoxe
O4 - HKLM\..\Run: [AVG7_CC] "C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe" /STARTUP
O4 - HKLM\..\Run: [Windows Defender] "C:\Program Files\Windows Defender\MSASCui.exe" -hide
O4 - HKLM\..\Run: [avast!] F:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [wgosrej.dll] C:\WINDOWS\system32\rundll32.exe C:\WINDOWS\system32\wgosrej.dll,oxdzwwb
O4 - HKLM\..\Run: [THGuard] "F:\Program Files\TrojanHunter 4.6\THGuard.exe"
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - Global Startup: Adobe Acrobat Speed Launcher.lnk = ?
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: EPSON Status Monitor 3 Environment Check 2.lnk = C:\WINDOWS\system32\spool\drivers\w32x86\3\E_SRCV02.EXE
O8 - Extra context menu item: &MSN Search - res://C:\Program Files\MSN Toolbar Suite\TB\02.05.0000.1082\en-gb\msntb.dll/search.htm
O8 - Extra context menu item: Convert link target to Adobe PDF - res://C:\Program Files\Adobe\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: Convert link target to existing PDF - res://C:\Program Files\Adobe\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: Convert selected links to Adobe PDF - res://C:\Program Files\Adobe\Acrobat\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
O8 - Extra context menu item: Convert selected links to existing PDF - res://C:\Program Files\Adobe\Acrobat\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
O8 - Extra context menu item: Convert selection to Adobe PDF - res://C:\Program Files\Adobe\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: Convert selection to existing PDF - res://C:\Program Files\Adobe\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: Convert to Adobe PDF - res://C:\Program Files\Adobe\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: Convert to existing PDF - res://C:\Program Files\Adobe\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000
O8 - Extra context menu item: Open in new background tab - res://C:\Program Files\MSN Toolbar Suite\TAB\02.05.0001.1119\en-gb\msntabres.dll/229?b205655d7ba8482699a7fb2f14fdf15a
O8 - Extra context menu item: Open in new foreground tab - res://C:\Program Files\MSN Toolbar Suite\TAB\02.05.0001.1119\en-gb\msntabres.dll/230?b205655d7ba8482699a7fb2f14fdf15a
O8 - Extra context menu item: Open Picture in &Microsoft PhotoDraw - res://E:\PROGRA~1\MICROS~1\Office\1033\phdintl.dll/phdContext.htm
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\npjpi150_06.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\npjpi150_06.dll
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O11 - Options group: [INTERNATIONAL] International*
O15 - Trusted Zone: http://www.msn.co.uk
O15 - Trusted Zone: http://www.msn.com
O15 - Trusted Zone: http://www.nero.com
O16 - DPF: {05CA9FB0-3E3E-4B36-BF41-0E3A5CAA8CD8} (Office Genuine Advantage Validation Tool) - http://go.microsoft....k/?linkid=58813
O16 - DPF: {0A46CB52-CFA0-4E78-A181-948D5E361BE3} (EpsonObj Class) - http://esupport.epso.../EpsonSetup.cab
O16 - DPF: {0E5F0222-96B9-11D3-8997-00104BD12D94} (PCPitstop Utility) - http://www.pcpitstop...p/PCPitStop.CAB
O16 - DPF: {13EC55CF-D993-475B-9ACA-F4A384957956} (Controller Class) - https://www.windowso...nSSWebAgent.CAB
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft....k/?LinkID=39204
O16 - DPF: {193C772A-87BE-4B19-A7BB-445B226FE9A1} (ewidoOnlineScan Control) - http://download.ewid...oOnlineScan.cab
O16 - DPF: {2BC66F54-93A8-11D3-BEB6-00105AA9B6AE} (Symantec AntiVirus scanner) - http://security.syma...bin/AvSniff.cab
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:\Program Files\Yahoo!\Common\yinsthelper.dll
O16 - DPF: {39B0684F-D7BF-4743-B050-FDC3F48F7E3B} (FilePlanet Download Control Class) - http://www.fileplane...DC_2.2.0.84.cab
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://spaces.msn.co...ad/MsnPUpld.cab
O16 - DPF: {56393399-041A-4650-94C7-13DFCB1F4665} (PSFormX Control) - http://www.my-etrust...er/pestscan.cab
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://download.bitd...can8/oscan8.cab
O16 - DPF: {5ED80217-570B-4DA9-BF44-BE107C0EC166} (Windows Live Safety Center Base Module) - http://scan.safety.l...lscbase5059.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.micros...b?1133442798833
O16 - DPF: {644E432F-49D3-41A1-8DD5-E099162EEEC5} (Symantec RuFSI Utility Class) - http://security.syma...n/bin/cabsa.cab
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.micros...b?1133483226562
O16 - DPF: {6E5A37BF-FD42-463A-877C-4EB7002E68AE} (Housecall ActiveX 6.5) - http://eu-housecall....ivex/hcImpl.cab
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} (Java Runtime Environment 1.5.0) - http://javadl-esd.su...indows-i586.cab
O16 - DPF: {A8F2B9BD-A6A0-486A-9744-18920D898429} (ScorchPlugin Class) - http://www.sibelius....tiveXPlugin.cab
O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn...pDownloader.cab
O16 - DPF: {BB21F850-63F4-4EC9-BF9D-565BD30C9AE9} (a-squared Scanner) - http://ax.emsisoft.com/asquared.cab
O16 - DPF: {E991BDE0-9816-4094-853E-6BDB60F0342D} (Get_ActiveX Control) - http://apps.corel.co...NetOpPlugin.ocx
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - F:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: Ati HotKey Poller - Unknown owner - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: avast! Antivirus - Unknown owner - F:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - Unknown owner - F:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
O23 - Service: avast! Web Scanner - Unknown owner - F:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe
O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe
O23 - Service: EPSON Printer Status Agent2 (EPSONStatusAgent2) - SEIKO EPSON CORPORATION - C:\Program Files\Common Files\EPSON\EBAPI\SAgent2.exe
O23 - Service: ewido security suite control - ewido networks - E:\Program Files\ewido anti-malware\ewidoctrl.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: iPodService - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: LiveShare P2P Server (RoxLiveShare) - Sonic Solutions - C:\Program Files\Common Files\Roxio Shared\SharedCOM8\RoxLiveShare.exe
O23 - Service: RoxMediaDB - Sonic Solutions - C:\Program Files\Common Files\Roxio Shared\SharedCOM8\RoxMediaDB.exe
O23 - Service: RoxUpnpRenderer (RoxUPnPRenderer) - Sonic Solutions - C:\Program Files\Common Files\Roxio Shared\SharedCom\RoxUpnpRenderer.exe
O23 - Service: RoxUpnpServer - Sonic Solutions - C:\Program Files\Roxio\Easy Media Creator 8\Digital Home\RoxUpnpServer.exe
O23 - Service: Roxio Hard Drive Watcher (RoxWatch) - Sonic Solutions - C:\Program Files\Common Files\Roxio Shared\SharedCOM8\RoxWatch.exe
O23 - Service: SecuROM User Access Service (V7) (UserAccess7) - Unknown owner - C:\WINDOWS\system32\UAService7.exe

Heuristic.Win32.Dialer

---------------------------------------------------------
ewido anti-malware - Scan report
---------------------------------------------------------

+ Created on: 17:42:02, 10/10/2006
+ Report-Checksum: 4E47A3AA

+ Scan result:

:mozilla.25:C:\Documents and Settings\Paul\Application Data\Mozilla\Firefox\Profiles\ya4vwp5c.default\cookies.txt -> TrackingCookie.Webtrendslive : Cleaned with backup
:mozilla.27:C:\Documents and Settings\Paul\Application Data\Mozilla\Firefox\Profiles\ya4vwp5c.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned with backup
:mozilla.30:C:\Documents and Settings\Paul\Application Data\Mozilla\Firefox\Profiles\ya4vwp5c.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned with backup
:mozilla.31:C:\Documents and Settings\Paul\Application Data\Mozilla\Firefox\Profiles\ya4vwp5c.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned with backup
:mozilla.39:C:\Documents and Settings\Paul\Application Data\Mozilla\Firefox\Profiles\ya4vwp5c.default\cookies.txt -> TrackingCookie.Overture : Cleaned with backup
:mozilla.40:C:\Documents and Settings\Paul\Application Data\Mozilla\Firefox\Profiles\ya4vwp5c.default\cookies.txt -> TrackingCookie.Overture : Cleaned with backup
:mozilla.41:C:\Documents and Settings\Paul\Application Data\Mozilla\Firefox\Profiles\ya4vwp5c.default\cookies.txt -> TrackingCookie.Overture : Cleaned with backup
:mozilla.48:C:\Documents and Settings\Paul\Application Data\Mozilla\Firefox\Profiles\ya4vwp5c.default\cookies.txt -> TrackingCookie.Doubleclick : Cleaned with backup
:mozilla.54:C:\Documents and Settings\Paul\Application Data\Mozilla\Firefox\Profiles\ya4vwp5c.default\cookies.txt -> TrackingCookie.Clickbank : Cleaned with backup
:mozilla.55:C:\Documents and Settings\Paul\Application Data\Mozilla\Firefox\Profiles\ya4vwp5c.default\cookies.txt -> TrackingCookie.Googleadservices : Cleaned with backup
:mozilla.82:C:\Documents and Settings\Paul\Application Data\Mozilla\Firefox\Profiles\ya4vwp5c.default\cookies.txt -> TrackingCookie.Sextracker : Cleaned with backup
:mozilla.83:C:\Documents and Settings\Paul\Application Data\Mozilla\Firefox\Profiles\ya4vwp5c.default\cookies.txt -> TrackingCookie.Sexlist : Cleaned with backup
:mozilla.85:C:\Documents and Settings\Paul\Application Data\Mozilla\Firefox\Profiles\ya4vwp5c.default\cookies.txt -> TrackingCookie.Atdmt : Cleaned with backup
:mozilla.89:C:\Documents and Settings\Paul\Application Data\Mozilla\Firefox\Profiles\ya4vwp5c.default\cookies.txt -> TrackingCookie.Com : Cleaned with backup
:mozilla.102:C:\Documents and Settings\Paul\Application Data\Mozilla\Firefox\Profiles\ya4vwp5c.default\cookies.txt -> TrackingCookie.Weborama : Cleaned with backup
:mozilla.103:C:\Documents and Settings\Paul\Application Data\Mozilla\Firefox\Profiles\ya4vwp5c.default\cookies.txt -> TrackingCookie.Smartadserver : Cleaned with backup
:mozilla.104:C:\Documents and Settings\Paul\Application Data\Mozilla\Firefox\Profiles\ya4vwp5c.default\cookies.txt -> TrackingCookie.Smartadserver : Cleaned with backup
:mozilla.105:C:\Documents and Settings\Paul\Application Data\Mozilla\Firefox\Profiles\ya4vwp5c.default\cookies.txt -> TrackingCookie.Smartadserver : Cleaned with backup
:mozilla.109:C:\Documents and Settings\Paul\Application Data\Mozilla\Firefox\Profiles\ya4vwp5c.default\cookies.txt -> TrackingCookie.Googleadservices : Cleaned with backup
:mozilla.110:C:\Documents and Settings\Paul\Application Data\Mozilla\Firefox\Profiles\ya4vwp5c.default\cookies.txt -> TrackingCookie.Tribalfusion : Cleaned with backup
:mozilla.116:C:\Documents and Settings\Paul\Application Data\Mozilla\Firefox\Profiles\ya4vwp5c.default\cookies.txt -> TrackingCookie.Adbrite : Cleaned with backup
:mozilla.117:C:\Documents and Settings\Paul\Application Data\Mozilla\Firefox\Profiles\ya4vwp5c.default\cookies.txt -> TrackingCookie.Adbrite : Cleaned with backup
:mozilla.124:C:\Documents and Settings\Paul\Application Data\Mozilla\Firefox\Profiles\ya4vwp5c.default\cookies.txt -> TrackingCookie.Hitslink : Cleaned with backup
C:\WINDOWS\Temp\idd1.tmp.exe -> Heuristic.Win32.Dialer : Cleaned with backup
C:\WINDOWS\Temp\idd10.tmp.exe -> Heuristic.Win32.Dialer : Cleaned with backup
C:\WINDOWS\Temp\idd102.tmp.exe -> Heuristic.Win32.Dialer : Cleaned with backup
C:\WINDOWS\Temp\idd121.tmp.exe -> Heuristic.Win32.Dialer : Cleaned with backup
C:\WINDOWS\Temp\idd14.tmp.exe -> Heuristic.Win32.Dialer : Cleaned with backup
C:\WINDOWS\Temp\idd140.tmp.exe -> Heuristic.Win32.Dialer : Cleaned with backup
C:\WINDOWS\Temp\idd15.tmp.exe -> Heuristic.Win32.Dialer : Cleaned with backup
C:\WINDOWS\Temp\idd16.tmp.exe -> Heuristic.Win32.Dialer : Cleaned with backup
C:\WINDOWS\Temp\idd162.tmp.exe -> Heuristic.Win32.Dialer : Cleaned with backup
C:\WINDOWS\Temp\idd184.tmp.exe -> Heuristic.Win32.Dialer : Cleaned with backup
C:\WINDOWS\Temp\idd1A6.tmp.exe -> Heuristic.Win32.Dialer : Cleaned with backup
C:\WINDOWS\Temp\idd1A7.tmp.exe -> Heuristic.Win32.Dialer : Cleaned with backup
C:\WINDOWS\Temp\idd1C0.tmp.exe -> Heuristic.Win32.Dialer : Cleaned with backup
C:\WINDOWS\Temp\idd1C1.tmp.exe -> Heuristic.Win32.Dialer : Cleaned with backup
C:\WINDOWS\Temp\idd1C5.tmp.exe -> Heuristic.Win32.Dialer : Cleaned with backup
C:\WINDOWS\Temp\idd1C9.tmp.exe -> Heuristic.Win32.Dialer : Cleaned with backup
C:\WINDOWS\Temp\idd1D2.tmp.exe -> Heuristic.Win32.Dialer : Cleaned with backup
C:\WINDOWS\Temp\idd1D3.tmp.exe -> Heuristic.Win32.Dialer : Cleaned with backup
C:\WINDOWS\Temp\idd1E.tmp.exe -> Heuristic.Win32.Dialer : Cleaned with backup
C:\WINDOWS\Temp\idd1E4.tmp.exe -> Heuristic.Win32.Dialer : Cleaned with backup
C:\WINDOWS\Temp\idd2.tmp.exe -> Heuristic.Win32.Dialer : Cleaned with backup
C:\WINDOWS\Temp\idd20.tmp.exe -> Heuristic.Win32.Dialer : Cleaned with backup
C:\WINDOWS\Temp\idd203.tmp.exe -> Heuristic.Win32.Dialer : Cleaned with backup
C:\WINDOWS\Temp\idd21.tmp.exe -> Heuristic.Win32.Dialer : Cleaned with backup
C:\WINDOWS\Temp\idd22.tmp.exe -> Heuristic.Win32.Dialer : Cleaned with backup
C:\WINDOWS\Temp\idd225.tmp.exe -> Heuristic.Win32.Dialer : Cleaned with backup
C:\WINDOWS\Temp\idd244.tmp.exe -> Heuristic.Win32.Dialer : Cleaned with backup
C:\WINDOWS\Temp\idd266.tmp.exe -> Heuristic.Win32.Dialer : Cleaned with backup
C:\WINDOWS\Temp\idd27.tmp.exe -> Heuristic.Win32.Dialer : Cleaned with backup
C:\WINDOWS\Temp\idd28.tmp.exe -> Heuristic.Win32.Dialer : Cleaned with backup
C:\WINDOWS\Temp\idd288.tmp.exe -> Heuristic.Win32.Dialer : Cleaned with backup
C:\WINDOWS\Temp\idd289.tmp.exe -> Heuristic.Win32.Dialer : Cleaned with backup
C:\WINDOWS\Temp\idd292.tmp.exe -> Heuristic.Win32.Dialer : Cleaned with backup
C:\WINDOWS\Temp\idd293.tmp.exe -> Heuristic.Win32.Dialer : Cleaned with backup
C:\WINDOWS\Temp\idd294.tmp.exe -> Heuristic.Win32.Dialer : Cleaned with backup
C:\WINDOWS\Temp\idd29D.tmp.exe -> Heuristic.Win32.Dialer : Cleaned with backup
C:\WINDOWS\Temp\idd29E.tmp.exe -> Heuristic.Win32.Dialer : Cleaned with backup
C:\WINDOWS\Temp\idd2AA.tmp.exe -> Heuristic.Win32.Dialer : Cleaned with backup
C:\WINDOWS\Temp\idd2CC.tmp.exe -> Heuristic.Win32.Dialer : Cleaned with backup
C:\WINDOWS\Temp\idd2EE.tmp.exe -> Heuristic.Win32.Dialer : Cleaned with backup
C:\WINDOWS\Temp\idd2EF.tmp.exe -> Heuristic.Win32.Dialer : Cleaned with backup
C:\WINDOWS\Temp\idd2F8.tmp.exe -> Heuristic.Win32.Dialer : Cleaned with backup
C:\WINDOWS\Temp\idd2F9.tmp.exe -> Heuristic.Win32.Dialer : Cleaned with backup
C:\WINDOWS\Temp\idd2FA.tmp.exe -> Heuristic.Win32.Dialer : Cleaned with backup
C:\WINDOWS\Temp\idd303.tmp.exe -> Heuristic.Win32.Dialer : Cleaned with backup
C:\WINDOWS\Temp\idd304.tmp.exe -> Heuristic.Win32.Dialer : Cleaned with backup
C:\WINDOWS\Temp\idd310.tmp.exe -> Heuristic.Win32.Dialer : Cleaned with backup
C:\WINDOWS\Temp\idd332.tmp.exe -> Heuristic.Win32.Dialer : Cleaned with backup
C:\WINDOWS\Temp\idd34.tmp.exe -> Heuristic.Win32.Dialer : Cleaned with backup
C:\WINDOWS\Temp\idd351.tmp.exe -> Heuristic.Win32.Dialer : Cleaned with backup
C:\WINDOWS\Temp\idd352.tmp.exe -> Heuristic.Win32.Dialer : Cleaned with backup
C:\WINDOWS\Temp\idd35B.tmp.exe -> Heuristic.Win32.Dialer : Cleaned with backup
C:\WINDOWS\Temp\idd35C.tmp.exe -> Heuristic.Win32.Dialer : Cleaned with backup
C:\WINDOWS\Temp\idd35D.tmp.exe -> Heuristic.Win32.Dialer : Cleaned with backup
C:\WINDOWS\Temp\idd366.tmp.exe -> Heuristic.Win32.Dialer : Cleaned with backup
C:\WINDOWS\Temp\idd373.tmp.exe -> Heuristic.Win32.Dialer : Cleaned with backup
C:\WINDOWS\Temp\idd395.tmp.exe -> Heuristic.Win32.Dialer : Cleaned with backup
C:\WINDOWS\Temp\idd3B7.tmp.exe -> Heuristic.Win32.Dialer : Cleaned with backup
C:\WINDOWS\Temp\idd3D9.tmp.exe -> Heuristic.Win32.Dialer : Cleaned with backup
C:\WINDOWS\Temp\idd3F8.tmp.exe -> Heuristic.Win32.Dialer : Cleaned with backup
C:\WINDOWS\Temp\idd3F9.tmp.exe -> Heuristic.Win32.Dialer : Cleaned with backup
C:\WINDOWS\Temp\idd475.tmp.exe -> Heuristic.Win32.Dialer : Cleaned with backup
C:\WINDOWS\Temp\idd49C.tmp.exe -> Heuristic.Win32.Dialer : Cleaned with backup
C:\WINDOWS\Temp\idd4AD.tmp.exe -> Heuristic.Win32.Dialer : Cleaned with backup
C:\WINDOWS\Temp\idd4B.tmp.exe -> Heuristic.Win32.Dialer : Cleaned with backup
C:\WINDOWS\Temp\idd4B9.tmp.exe -> Heuristic.Win32.Dialer : Cleaned with backup
C:\WINDOWS\Temp\idd4D.tmp.exe -> Heuristic.Win32.Dialer : Cleaned with backup
C:\WINDOWS\Temp\idd4D1.tmp.exe -> Heuristic.Win32.Dialer : Cleaned with backup
C:\WINDOWS\Temp\idd4D3.tmp.exe -> Heuristic.Win32.Dialer : Cleaned with backup
C:\WINDOWS\Temp\idd4D5.tmp.exe -> Heuristic.Win32.Dialer : Cleaned with backup
C:\WINDOWS\Temp\idd4D8.tmp.exe -> Heuristic.Win32.Dialer : Cleaned with backup
C:\WINDOWS\Temp\idd4DC.tmp.exe -> Heuristic.Win32.Dialer : Cleaned with backup
C:\WINDOWS\Temp\idd4E0.tmp.exe -> Heuristic.Win32.Dialer : Cleaned with backup
C:\WINDOWS\Temp\idd4E5.tmp.exe -> Heuristic.Win32.Dialer : Cleaned with backup
C:\WINDOWS\Temp\idd4E6.tmp.exe -> Heuristic.Win32.Dialer : Cleaned with backup
C:\WINDOWS\Temp\idd4E7.tmp.exe -> Heuristic.Win32.Dialer : Cleaned with backup
C:\WINDOWS\Temp\idd4F0.tmp.exe -> Heuristic.Win32.Dialer : Cleaned with backup
C:\WINDOWS\Temp\idd4F8.tmp.exe -> Heuristic.Win32.Dialer : Cleaned with backup
C:\WINDOWS\Temp\idd4FA.tmp.exe -> Heuristic.Win32.Dialer : Cleaned with backup
C:\WINDOWS\Temp\idd4FB.tmp.exe -> Heuristic.Win32.Dialer : Cleaned with backup
C:\WINDOWS\Temp\idd4FC.tmp.exe -> Heuristic.Win32.Dialer : Cleaned with backup
C:\WINDOWS\Temp\idd4FD.tmp.exe -> Heuristic.Win32.Dialer : Cleaned with backup
C:\WINDOWS\Temp\idd5.tmp.exe -> Heuristic.Win32.Dialer : Cleaned with backup
C:\WINDOWS\Temp\idd514.tmp.exe -> Heuristic.Win32.Dialer : Cleaned with backup
C:\WINDOWS\Temp\idd516.tmp.exe -> Heuristic.Win32.Dialer : Cleaned with backup
C:\WINDOWS\Temp\idd51A.tmp.exe -> Heuristic.Win32.Dialer : Cleaned with backup
C:\WINDOWS\Temp\idd51B.tmp.exe -> Heuristic.Win32.Dialer : Cleaned with backup
C:\WINDOWS\Temp\idd51E.tmp.exe -> Heuristic.Win32.Dialer : Cleaned with backup
C:\WINDOWS\Temp\idd51F.tmp.exe -> Heuristic.Win32.Dialer : Cleaned with backup
C:\WINDOWS\Temp\idd521.tmp.exe -> Heuristic.Win32.Dialer : Cleaned with backup
C:\WINDOWS\Temp\idd523.tmp.exe -> Heuristic.Win32.Dialer : Cleaned with backup
C:\WINDOWS\Temp\idd524.tmp.exe -> Heuristic.Win32.Dialer : Cleaned with backup
C:\WINDOWS\Temp\idd527.tmp.exe -> Heuristic.Win32.Dialer : Cleaned with backup
C:\WINDOWS\Temp\idd52C.tmp.exe -> Heuristic.Win32.Dialer : Cleaned with backup
C:\WINDOWS\Temp\idd52D.tmp.exe -> Heuristic.Win32.Dialer : Cleaned with backup
C:\WINDOWS\Temp\idd536.tmp.exe -> Heuristic.Win32.Dialer : Cleaned with backup
C:\WINDOWS\Temp\idd549.tmp.exe -> Heuristic.Win32.Dialer : Cleaned with backup
C:\WINDOWS\Temp\idd551.tmp.exe -> Heuristic.Win32.Dialer : Cleaned with backup
C:\WINDOWS\Temp\idd557.tmp.exe -> Heuristic.Win32.Dialer : Cleaned with backup
C:\WINDOWS\Temp\idd562.tmp.exe -> Heuristic.Win32.Dialer : Cleaned with backup
C:\WINDOWS\Temp\idd567.tmp.exe -> Heuristic.Win32.Dialer : Cleaned with backup
C:\WINDOWS\Temp\idd574.tmp.exe -> Heuristic.Win32.Dialer : Cleaned with backup
C:\WINDOWS\Temp\idd579.tmp.exe -> Heuristic.Win32.Dialer : Cleaned with backup
C:\WINDOWS\Temp\idd584.tmp.exe -> Heuristic.Win32.Dialer : Cleaned with backup
C:\WINDOWS\Temp\idd585.tmp.exe -> Heuristic.Win32.Dialer : Cleaned with backup
C:\WINDOWS\Temp\idd586.tmp.exe -> Heuristic.Win32.Dialer : Cleaned with backup
C:\WINDOWS\Temp\idd587.tmp.exe -> Heuristic.Win32.Dialer : Cleaned with backup
C:\WINDOWS\Temp\idd589.tmp.exe -> Heuristic.Win32.Dialer : Cleaned with backup
C:\WINDOWS\Temp\idd590.tmp.exe -> Heuristic.Win32.Dialer : Cleaned with backup
C:\WINDOWS\Temp\idd591.tmp.exe -> Heuristic.Win32.Dialer : Cleaned with backup
C:\WINDOWS\Temp\idd592.tmp.exe -> Heuristic.Win32.Dialer : Cleaned with backup
C:\WINDOWS\Temp\idd593.tmp.exe -> Heuristic.Win32.Dialer : Cleaned with backup
C:\WINDOWS\Temp\idd595.tmp.exe -> Heuristic.Win32.Dialer : Cleaned with backup
C:\WINDOWS\Temp\idd596.tmp.exe -> Heuristic.Win32.Dialer : Cleaned with backup
C:\WINDOWS\Temp\idd59D.tmp.exe -> Heuristic.Win32.Dialer : Cleaned with backup
C:\WINDOWS\Temp\idd5A0.tmp.exe -> Heuristic.Win32.Dialer : Cleaned with backup
C:\WINDOWS\Temp\idd5A1.tmp.exe -> Heuristic.Win32.Dialer : Cleaned with backup
C:\WINDOWS\Temp\idd5A2.tmp.exe -> Heuristic.Win32.Dialer : Cleaned with backup
C:\WINDOWS\Temp\idd5A4.tmp.exe -> Heuristic.Win32.Dialer : Cleaned with backup
C:\WINDOWS\Temp\idd5AE.tmp.exe -> Heuristic.Win32.Dialer : Cleaned with backup
C:\WINDOWS\Temp\idd5AF.tmp.exe -> Heuristic.Win32.Dialer : Cleaned with backup
C:\WINDOWS\Temp\idd5B0.tmp.exe -> Heuristic.Win32.Dialer : Cleaned with backup
C:\WINDOWS\Temp\idd5B1.tmp.exe -> Heuristic.Win32.Dialer : Cleaned with backup
C:\WINDOWS\Temp\idd5B2.tmp.exe -> Heuristic.Win32.Dialer : Cleaned with backup
C:\WINDOWS\Temp\idd5B3.tmp.exe -> Heuristic.Win32.Dialer : Cleaned with backup
C:\WINDOWS\Temp\idd5B7.tmp.exe -> Heuristic.Win32.Dialer : Cleaned with backup
C:\WINDOWS\Temp\idd5B8.tmp.exe -> Heuristic.Win32.Dialer : Cleaned with backup
C:\WINDOWS\Temp\idd5B9.tmp.exe -> Heuristic.Win32.Dialer : Cleaned with backup
C:\WINDOWS\Temp\idd5BA.tmp.exe -> Heuristic.Win32.Dialer : Cleaned with backup
C:\WINDOWS\Temp\idd5BB.tmp.exe -> Heuristic.Win32.Dialer : Cleaned with backup
C:\WINDOWS\Temp\idd5BC.tmp.exe -> Heuristic.Win32.Dialer : Cleaned with backup
C:\WINDOWS\Temp\idd5C3.tmp.exe -> Heuristic.Win32.Dialer : Cleaned with backup
C:\WINDOWS\Temp\idd5E.tmp.exe -> Heuristic.Win32.Dialer : Cleaned with backup
C:\WINDOWS\Temp\idd6.tmp.exe -> Heuristic.Win32.Dialer : Cleaned with backup
C:\WINDOWS\Temp\idd603.tmp.exe -> Heuristic.Win32.Dialer : Cleaned with backup
C:\WINDOWS\Temp\idd615.tmp.exe -> Heuristic.Win32.Dialer : Cleaned with backup
C:\WINDOWS\Temp\idd61A.tmp.exe -> Heuristic.Win32.Dialer : Cleaned with backup
C:\WINDOWS\Temp\idd64B.tmp.exe -> Heuristic.Win32.Dialer : Cleaned with backup
C:\WINDOWS\Temp\idd64C.tmp.exe -> Heuristic.Win32.Dialer : Cleaned with backup
C:\WINDOWS\Temp\idd7.tmp.exe -> Heuristic.Win32.Dialer : Cleaned with backup
C:\WINDOWS\Temp\idd74B.tmp.exe -> Heuristic.Win32.Dialer : Cleaned with backup
C:\WINDOWS\Temp\idd76C.tmp.exe -> Heuristic.Win32.Dialer : Cleaned with backup
C:\WINDOWS\Temp\idd7D.tmp.exe -> Heuristic.Win32.Dialer : Cleaned with backup
C:\WINDOWS\Temp\idd8.tmp.exe -> Heuristic.Win32.Dialer : Cleaned with backup
C:\WINDOWS\Temp\idd9.tmp.exe -> Heuristic.Win32.Dialer : Cleaned with backup
C:\WINDOWS\Temp\idd9C.tmp.exe -> Heuristic.Win32.Dialer : Cleaned with backup
C:\WINDOWS\Temp\iddA.tmp.exe -> Heuristic.Win32.Dialer : Cleaned with backup
C:\WINDOWS\Temp\iddAF.tmp.exe -> Heuristic.Win32.Dialer : Cleaned with backup
C:\WINDOWS\Temp\iddB.tmp.exe -> Heuristic.Win32.Dialer : Cleaned with backup
C:\WINDOWS\Temp\iddB0.tmp.exe -> Heuristic.Win32.Dialer : Cleaned with backup
C:\WINDOWS\Temp\iddBE.tmp.exe -> Heuristic.Win32.Dialer : Cleaned with backup
C:\WINDOWS\Temp\iddE.tmp.exe -> Heuristic.Win32.Dialer : Cleaned with backup
C:\WINDOWS\Temp\iddE0.tmp.exe -> Heuristic.Win32.Dialer : Cleaned with backup
C:\WINDOWS\Temp\iddF.tmp.exe -> Heuristic.Win32.Dialer : Cleaned with backup


::Report End

Thankyou,
Regards Paul
  • 0

Advertisements


#2
paulinspain

paulinspain

    Member

  • Topic Starter
  • Member
  • PipPip
  • 77 posts
By the way what seemed to start this off was a constant Anti Virus programe that wanted me to purchase it to stop a virus infestion that I knew Ididnt have, keep opening-up every time I went online or opend MSN. This is one BAD Mother of a Virus or whatever.
  • 0






Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP