Jump to content

Welcome to Geeks to Go - Register now for FREE

Need help with your computer or device? Want to learn new tech skills? You're in the right place!
Geeks to Go is a friendly community of tech experts who can solve any problem you have. Just create a free account and post your question. Our volunteers will reply quickly and guide you through the steps. Don't let tech troubles stop you. Join Geeks to Go now and get the support you need!

How it Works Create Account
Photo

explorer.exe - Bad Image

Started by 4everphotography , Oct 12 2006 10:06 PM

  • Please log in to reply

#16
Wizard
Posted 28 October 2006 - 06:10 AM

Wizard

    Retired Staff

  • Retired Staff
  • 5,661 posts
Im gonna send you another PM along with these instructions.


Please run the Bit Defender Online Scan
http://www.bitdefend...m/scan8/ie.html

You must use Internet Explorer for this scanner.

Install the ActiveX and Click on "Click here to Scan"

Allow it to update and Scan the Machine.

It should disinfect or delete whatever it finds that is infected.

Save the report in generates in a text format please and post it back here
  • 0

Advertisements

#17
4everphotography
Posted 28 October 2006 - 04:58 PM

4everphotography

    Member

  • Topic Starter
  • Member
  • PipPip
  • 13 posts
Hi Cretemonster!!!

I have completed the bitdefender scan. It told me that No Problems were found. It took 2:30 to scan 921882 Files in 14,796 Files on 6 boot sectors. It also scanned 7546 Archives and 42,477 Packed Files. This told me more than the report, which seemed to have more programing language than information, however the report is included below.

I could not have done this without your help and support :whistling: and will look forward to hearing from you. Have a nice day! :blink:

Warm regards,
Jeff-

<HTML>
<HEAD>
<TITLE>BitDefender Online Scanner -Scan Report</TITLE>
<META HTTP-EQUIV="Content-Type" CONTENT="text/html; charset=iso-8859-1">
<meta name="generator" content="Namo WebEditor v5.0(Trial)">
</HEAD>
<BODY BGCOLOR=#FFFFFF leftmargin="10" marginwidth="0" topmargin="20" marginheight="0" >


<table align="center" border="0" cellpadding="0" cellspacing="0" width="90%">
<tr>
<td width="458">
<p><font face="Arial" color=red><span style="font-size:14pt;"><b>BitDefender
Online Scanner</b></span></font></p>
</td>
<td width="40%">
<p>&nbsp;</p>
</td>
<td width="10%">
<p>&nbsp;</p>
</td>
</tr>
<tr>
<td colspan="3" width="912">
<p><font face="Arial"><span style="font-size:11pt;"><B>Scan report generated
at: Sat, Oct 28, 2006 - 15:58:25</b></span></font></p>
</td>
</tr>

<tr>
<td width="458">
<p><font face="Arial"><span style="font-size:11pt;"><B>&nbsp;</b></span></font></p>
</td>
<td width="40%">
<p>&nbsp;</p>
</td>
<td width="10%">
<p>&nbsp;</p>
</td>
</tr>

<tr>
<td width="458">
<p><font face="Arial"><span style="font-size:11pt;"><B>Scan
path: </b></span><span style="font-size:10pt;">A:\;C:\;D:\;E:\;F:\;G:\;H:\;</span></font></p>
</td>
<td width="40%">
<p>&nbsp;</p>
</td>
<td width="10%">
<p>&nbsp;</p>
</td>
</tr>

<tr>
<td width="458">
<p><font face="Arial"><span style="font-size:11pt;"><B>&nbsp;</b></span></font></p>
</td>
<td width="40%">
<p>&nbsp;</p>
</td>
<td width="10%">
<p>&nbsp;</p>
</td>
</tr>

<tr>
<td width="458">
<table border="1" cellspacing="0" bordercolordark="white" bordercolorlight="black" width="100%">
<tr>
<td width="451" colspan="2" bgcolor="#CCCCCC">
<p><font face="Arial" size="2"><B>Statistics</b></font></p>
</td>
</tr>
<tr>
<td width="57%">
<p><font face="Arial" size="2">Time</font></p>
</td>
<td width="43%" align="right">
<p><font face="Arial" size="2">02:30:49</font></p>
</td>
</tr>
<tr>
<td width="57%">
<p><font face="Arial" size="2">Files</font></p>
</td>
<td width="43%" align="right">
<p><font face="Arial" size="2">921882</font></p>
</td>
</tr>
<tr>
<td width="57%">
<p><font face="Arial" size="2">Folders</font></p>
</td>
<td width="43%" align="right">
<p><font face="Arial" size="2">14796</font></p>
</td>
</tr>
<tr>
<td width="57%">
<p><font face="Arial" size="2">Boot Sectors</font></p>
</td>
<td width="43%" align="right">
<p><font face="Arial" size="2">6</font></p>
</td>
</tr>
<tr>
<td width="57%">
<p><font face="Arial" size="2">Archives</font></p>
</td>
<td width="43%" align="right">
<p><font face="Arial" size="2">7546</font></p>
</td>
</tr>
<tr>
<td width="57%">
<p><font face="Arial" size="2">Packed Files</font></p>
</td>
<td width="43%" align="right">
<p><font face="Arial" size="2">42477</font></p>
</td>
</tr>
</table>
</td>
<td width="40%">
<p>&nbsp;</p>
</td>
<td width="10%">
<p>&nbsp;</p>
</td>
</tr>



<tr>
<td width="458">
<table border="1" cellspacing="0" bordercolordark="white" bordercolorlight="black" width="100%">
<tr>
<td width="451" colspan="2" bgcolor="#CCCCCC">
<p><font face="Arial" size="2"><B>Results</b></font></p>
</td>
</tr>
<tr>
<td width="57%">
<p><font face="Arial" size="2">Identified Viruses </font></p>
</td>
<td width="43%" align="right">
<p><font face="Arial" size="2">0</font></p>
</td>
</tr>
<tr>
<td width="57%">
<p><font face="Arial" size="2">Infected Files </font></p>
</td>
<td width="43%" align="right">
<p><font face="Arial" size="2">0</font></p>
</td>
</tr>
<tr>
<td width="57%">
<p><font face="Arial" size="2">Suspect&nbsp;Files </font></p>
</td>
<td width="43%" align="right">
<p><font face="Arial" size="2">0</font></p>
</td>
</tr>
<tr>
<td width="57%">
<p><font face="Arial" size="2">Warnings</font></p>
</td>
<td width="43%" align="right">
<p><font face="Arial" size="2">0</font></p>
</td>
</tr>
<tr>
<td width="57%">
<p><font face="Arial" size="2">Disinfected</font></p>
</td>
<td width="43%" align="right">
<p><font face="Arial" size="2">0</font></p>
</td>
</tr>
<tr>
<td width="57%">
<p><font face="Arial" size="2">Deleted Files</font></p>
</td>
<td width="43%" align="right">
<p><font face="Arial" size="2">0</font></p>
</td>
</tr>
</table>
</td>
<td width="40%">
<p>&nbsp;</p>
</td>
<td width="10%">
<p>&nbsp;</p>
</td>
</tr>

<tr>
<td width="458">
<table border="1" cellspacing="0" bordercolordark="white" bordercolorlight="black" width="100%">
<tr>
<td width="451" colspan="2" bgcolor="#CCCCCC">
<p><font face="Arial" size="2"><B>Engines Info</b></font></p>
</td>
</tr>
<tr>
<td width="57%">
<p><font face="Arial" size="2">Virus Definitions</font></p>
</td>
<td width="43%" align="right">
<p><font face="Arial" size="2">479322</font></p>
</td>
</tr>
<tr>
<td width="57%">
<p><font face="Arial" size="2">Engine build</font></p>
</td>
<td width="43%" align="right">
<p><font face="Arial" size="2">AVCORE v1.0 (build 2310) (i386) (Apr 17 2006 16:24:38)</font></p>
</td>
</tr>
<tr>
<td width="57%">
<p><font face="Arial" size="2">Scan plugins</font></p>
</td>
<td width="43%" align="right">
<p><font face="Arial" size="2">13</font></p>
</td>
</tr>
<tr>
<td width="57%">
<p><font face="Arial" size="2">Archive plugins</font></p>
</td>
<td width="43%" align="right">
<p><font face="Arial" size="2">38</font></p>
</td>
</tr>
<tr>
<td width="57%">
<p><font face="Arial" size="2">Unpack plugins</font></p>
</td>
<td width="43%" align="right">
<p><font face="Arial" size="2">6</font></p>
</td>
</tr>
<tr>
<td width="57%">
<p><font face="Arial" size="2">E-mail plugins</font></p>
</td>
<td width="43%" align="right">
<p><font face="Arial" size="2">6</font></p>
</td>
</tr>
<tr>
<td width="57%">
<p><font face="Arial" size="2">System&nbsp;plugins</font></p>
</td>
<td width="43%" align="right">
<p><font face="Arial" size="2">1</font></p>
</td>
</tr>
</table>
</td>
<td width="40%">
<p>&nbsp;</p>
</td>
<td width="10%">
<p>&nbsp;</p>
</td>
</tr>

<tr>
<td width="458">
<table border="1" cellspacing="0" bordercolordark="white" bordercolorlight="black" width="100%">
<tr>
<td width="451" colspan="2" bgcolor="#CCCCCC">
<p><font face="Arial" size="2"><B>Scan Settings</b></font></p>
</td>
</tr>
<tr>
<td width="57%">
<p><font face="Arial" size="2">First Action</font></p>
</td>
<td width="43%" align="right">
<p><font face="Arial" size="2">Disinfect</font></p>
</td>
</tr>
<tr>
<td width="57%">
<p><font face="Arial" size="2">Second Action</font></p>
</td>
<td width="43%" align="right">
<p><font face="Arial" size="2">Delete</font></p>
</td>
</tr>
<tr>
<td width="57%">
<p><font face="Arial" size="2">Heuristics</font></p>
</td>
<td width="43%" align="right">
<p><font face="Arial" size="2">Yes</font></p>
</td>
</tr>
<tr>
<td width="57%">
<p><font face="Arial" size="2">Enable Warnings</font></p>
</td>
<td width="43%" align="right">
<p><font face="Arial" size="2">Yes</font></p>
</td>
</tr>
<tr>
<td width="57%">
<p><font face="Arial" size="2">Scanned Extensions</font></p>
</td>
<td width="43%" align="right">
<p><font face="Arial" size="2">*;</font></p>
</td>
</tr>

<tr>
<td width="57%">
<p><font face="Arial" size="2">Exclude Extensions</font></p>
</td>
<td width="43%" align="right">
<p><font face="Arial" size="2">&nbsp;</font></p>
</td>
</tr>
<tr>
<td width="57%">
<p><font face="Arial" size="2">Scan Emails</font></p>
</td>
<td width="43%" align="right">
<p><font face="Arial" size="2">Yes</font></p>
</td>
</tr>
<tr>
<td width="57%">
<p><font face="Arial" size="2">Scan Archives</font></p>
</td>
<td width="43%" align="right">
<p><font face="Arial" size="2">Yes</font></p>
</td>
</tr>
<tr>
<td width="57%">
<p><font face="Arial" size="2">Scan Packed</font></p>
</td>
<td width="43%" align="right">
<p><font face="Arial" size="2">Yes</font></p>
</td>
</tr>
<tr>
<td width="57%">
<p><font face="Arial" size="2">Scan Files</font></p>
</td>
<td width="43%" align="right">
<p><font face="Arial" size="2">Yes</font></p>
</td>
</tr>
<tr>
<td width="57%">
<p><font face="Arial" size="2">Scan Boot</font></p>
</td>
<td width="43%" align="right">
<p><font face="Arial" size="2">Yes</font></p>
</td>
</tr>
</table>
</td>
<td width="40%">
<p>&nbsp;</p>
</td>
<td width="10%">
<p>&nbsp;</p>
</td>
</tr>

<tr>
<td colspan=2> &nbsp;
<table border="1" cellspacing="0" bordercolordark="white" bordercolorlight="black" width="100%">
<tr>
<td width="252" bgcolor="#CCCCCC">
<p><font face="Arial" size="2"><B>Scanned File</b></font></p>
</td>
<td width="195" bgcolor="#CCCCCC" align="right">
<p align="left"><b><font size="2" face="Arial">&nbsp;Status</font></b></p>
</td>
</tr>
<tr>
<td width="57%">
<p><font face="Arial" size="2">No virus found.</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">&nbsp;</font></p>
</td>
</tr>
</table>
</td>

<td width="10%">
<p>&nbsp;</p>
</td>
</tr>

<tr>
<td width="458">
<p><font face="Arial"><span style="font-size:11pt;"><B>&nbsp;</b></span></font></p>
</td>
<td width="40%">
<p>&nbsp;</p>
</td>
<td width="10%">
<p>&nbsp;</p>
</td>
</tr>

<tr>
<td width="458">
<p><font face="Arial"><span style="font-size:11pt;"><B>&nbsp;</b></span></font></p>
</td>
<td width="40%">
<p>&nbsp;</p>
</td>
<td width="10%">
<p>&nbsp;</p>
</td>
</tr>

</table>
<p>&nbsp;</p>

</body>
</html>
  • 0

#18
Wizard
Posted 29 October 2006 - 05:32 AM

Wizard

    Retired Staff

  • Retired Staff
  • 5,661 posts
Cant beat those results! :whistling:


How is the PC acting today??


Please Install these 2 to add to the Security of the PC

SpywareBlaster:
http://www.javacools.../downloads.html
Update Immediatly!

WinHelp2002 Hosts File
http://www.mvps.org/...2002/hosts2.htm
  • 0

#19
4everphotography
Posted 29 October 2006 - 08:29 PM

4everphotography

    Member

  • Topic Starter
  • Member
  • PipPip
  • 13 posts
Hello Cretemonster!

:blink: The computer is running wonderfully and there are nooooooooooo error messages what so ever! I am very greatful and I have contributed to your donation fund so that you can help others fight these issues on their computer too! I am really pleased with your help and the fact that my computer is running very well! My daughter and my wife also send their thanks! :whistling:

Have a wonderful evening!

Jeff-
  • 0

#20
Wizard
Posted 31 October 2006 - 01:52 PM

Wizard

    Retired Staff

  • Retired Staff
  • 5,661 posts
One more scan please,just to be sure I havent left anything behind.


Please do an online scan with Kaspersky WebScanner

Click on Kaspersky Online Scanner

You will be promted to install an ActiveX component from Kaspersky, Click Yes.
  • The program will launch and then begin downloading the latest definition files:
  • Once the files have been downloaded click on NEXT
  • Now click on Scan Settings
  • In the scan settings make that the following are selected:
    • Scan using the following Anti-Virus database:
    Extended (if available otherwise Standard)
    • Scan Options:
    Scan Archives
    Scan Mail Bases
  • Click OK
  • Now under select a target to scan:Select My Computer
  • This will program will start and scan your system.
  • The scan will take a while so be patient and let it run.
  • Once the scan is complete it will display if your system has been infected.
    • Now click on the Save as Text button:
  • Save the file to your desktop.
  • Copy and paste that information in your next post.

  • 0

#21
4everphotography
Posted 01 November 2006 - 07:08 AM

4everphotography

    Member

  • Topic Starter
  • Member
  • PipPip
  • 13 posts
Good Morning Cretemonster!

WOW, Kaspersky looks like it found more issues with the computer. Several items are locked and I don't know why, but it looks like it found more infections too. Some of them denoted as 'Backdoor' and that does not sound good for my computer!

I did install IE 7 early on, but de-installed it due to bugs and I renamed the folder to IE 7 deinstalled, why would that be locked? In addition, I also de-installed weather bug, but I use Webshots all the time. We were printing a picture and had IE 6 open, which could be some of the locked files as they were in use.

The Kaspersky web site spoke of crimeware, which looks to be a whole new scene on the internet need to be defended list. Is Kaspersky as good as they say they are and should I look at getting this software? What do you recommend?

Also, I have been reading about key loggers and how they are invisible. How can I tell if there is a key logger installed on my system?

The computer is running very well :whistling:.

A very interesting report which got me to thinking about and asking many questions... I will look forward to hearing from you regarding this scan the Kaspersky software and the other couple of items. Have a wonderful day Cretemonster and thank you again for your help and support! :blink:

Warm regards,
Jeff-




-------------------------------------------------------------------------------
KASPERSKY ONLINE SCANNER REPORT
Wednesday, November 01, 2006 5:27:10 AM
Operating System: Microsoft Windows XP Home Edition, Service Pack 2 (Build 2600)
Kaspersky Online Scanner version: 5.0.83.0
Kaspersky Anti-Virus database last update: 1/11/2006
Kaspersky Anti-Virus database records: 236827
-------------------------------------------------------------------------------

Scan Settings:
Scan using the following antivirus database: extended
Scan Archives: true
Scan Mail Bases: true

Scan Target - My Computer:
A:\
C:\
D:\
E:\
F:\
G:\
H:\

Scan Statistics:
Total number of scanned objects: 210916
Number of viruses found: 3
Number of infected objects: 16 / 0
Number of suspicious objects: 0
Duration of the scan process: 02:31:18

Infected Object Name / Virus Name / Last Action
C:\delete IE 7 deinstalled c00d4a8f1a63dff2d5\$shtdwn$.req Object is locked skipped
C:\delete IE 7 deinstalled c00d4a8f1a63dff2d5\admparse.dll Object is locked skipped
C:\delete IE 7 deinstalled c00d4a8f1a63dff2d5\admparse.dll.mui Object is locked skipped
C:\delete IE 7 deinstalled c00d4a8f1a63dff2d5\advpack.dll Object is locked skipped
C:\delete IE 7 deinstalled c00d4a8f1a63dff2d5\advpack.dll.mui Object is locked skipped
C:\delete IE 7 deinstalled c00d4a8f1a63dff2d5\browseui.dll Object is locked skipped
C:\delete IE 7 deinstalled c00d4a8f1a63dff2d5\corpol.dll Object is locked skipped
C:\delete IE 7 deinstalled c00d4a8f1a63dff2d5\custsat.dll Object is locked skipped
C:\delete IE 7 deinstalled c00d4a8f1a63dff2d5\dxtmsft.dll Object is locked skipped
C:\delete IE 7 deinstalled c00d4a8f1a63dff2d5\dxtrans.dll Object is locked skipped
C:\delete IE 7 deinstalled c00d4a8f1a63dff2d5\extmgr.dll Object is locked skipped
C:\delete IE 7 deinstalled c00d4a8f1a63dff2d5\extmgr.dll.mui Object is locked skipped
C:\delete IE 7 deinstalled c00d4a8f1a63dff2d5\feeddisc.wav Object is locked skipped
C:\delete IE 7 deinstalled c00d4a8f1a63dff2d5\hmmapi.dll Object is locked skipped
C:\delete IE 7 deinstalled c00d4a8f1a63dff2d5\hmmapi.dll.mui Object is locked skipped
C:\delete IE 7 deinstalled c00d4a8f1a63dff2d5\html.iec Object is locked skipped
C:\delete IE 7 deinstalled c00d4a8f1a63dff2d5\html.iec.mui Object is locked skipped
C:\delete IE 7 deinstalled c00d4a8f1a63dff2d5\icardie.dll Object is locked skipped
C:\delete IE 7 deinstalled c00d4a8f1a63dff2d5\icardie.dll.mui Object is locked skipped
C:\delete IE 7 deinstalled c00d4a8f1a63dff2d5\icrav03.rat Object is locked skipped
C:\delete IE 7 deinstalled c00d4a8f1a63dff2d5\ie4uinit.exe Object is locked skipped
C:\delete IE 7 deinstalled c00d4a8f1a63dff2d5\ie4uinit.exe.mui Object is locked skipped
C:\delete IE 7 deinstalled c00d4a8f1a63dff2d5\ieakeng.dll Object is locked skipped
C:\delete IE 7 deinstalled c00d4a8f1a63dff2d5\ieakeng.dll.mui Object is locked skipped
C:\delete IE 7 deinstalled c00d4a8f1a63dff2d5\ieakmmc.chm Object is locked skipped
C:\delete IE 7 deinstalled c00d4a8f1a63dff2d5\ieaksie.dll Object is locked skipped
C:\delete IE 7 deinstalled c00d4a8f1a63dff2d5\ieaksie.dll.mui Object is locked skipped
C:\delete IE 7 deinstalled c00d4a8f1a63dff2d5\ieakui.dll Object is locked skipped
C:\delete IE 7 deinstalled c00d4a8f1a63dff2d5\ieakui.dll.mui Object is locked skipped
C:\delete IE 7 deinstalled c00d4a8f1a63dff2d5\ieapfltr.dat Object is locked skipped
C:\delete IE 7 deinstalled c00d4a8f1a63dff2d5\ieapfltr.dll Object is locked skipped
C:\delete IE 7 deinstalled c00d4a8f1a63dff2d5\iedkcs32.dll Object is locked skipped
C:\delete IE 7 deinstalled c00d4a8f1a63dff2d5\iedkcs32.dll.mui Object is locked skipped
C:\delete IE 7 deinstalled c00d4a8f1a63dff2d5\iedw.exe Object is locked skipped
C:\delete IE 7 deinstalled c00d4a8f1a63dff2d5\iedw.exe.mui Object is locked skipped
C:\delete IE 7 deinstalled c00d4a8f1a63dff2d5\ieencode.dll Object is locked skipped
C:\delete IE 7 deinstalled c00d4a8f1a63dff2d5\ieeula.chm Object is locked skipped
C:\delete IE 7 deinstalled c00d4a8f1a63dff2d5\ieframe.dll Object is locked skipped
C:\delete IE 7 deinstalled c00d4a8f1a63dff2d5\ieframe.dll.mui Object is locked skipped
C:\delete IE 7 deinstalled c00d4a8f1a63dff2d5\iepeers.dll Object is locked skipped
C:\delete IE 7 deinstalled c00d4a8f1a63dff2d5\iepeers.dll.mui Object is locked skipped
C:\delete IE 7 deinstalled c00d4a8f1a63dff2d5\ieproxy.dll Object is locked skipped
C:\delete IE 7 deinstalled c00d4a8f1a63dff2d5\iernonce.dll Object is locked skipped
C:\delete IE 7 deinstalled c00d4a8f1a63dff2d5\iernonce.dll.mui Object is locked skipped
C:\delete IE 7 deinstalled c00d4a8f1a63dff2d5\iertutil.dll Object is locked skipped
C:\delete IE 7 deinstalled c00d4a8f1a63dff2d5\iesetup.dll Object is locked skipped
C:\delete IE 7 deinstalled c00d4a8f1a63dff2d5\iesetup.dll.mui Object is locked skipped
C:\delete IE 7 deinstalled c00d4a8f1a63dff2d5\iesupp.chm Object is locked skipped
C:\delete IE 7 deinstalled c00d4a8f1a63dff2d5\ieudinit.exe Object is locked skipped
C:\delete IE 7 deinstalled c00d4a8f1a63dff2d5\ieui.dll Object is locked skipped
C:\delete IE 7 deinstalled c00d4a8f1a63dff2d5\ieui.dll.mui Object is locked skipped
C:\delete IE 7 deinstalled c00d4a8f1a63dff2d5\ieuinit.inf Object is locked skipped
C:\delete IE 7 deinstalled c00d4a8f1a63dff2d5\ieunatt.exe.mui Object is locked skipped
C:\delete IE 7 deinstalled c00d4a8f1a63dff2d5\iexplore.chm Object is locked skipped
C:\delete IE 7 deinstalled c00d4a8f1a63dff2d5\iexplore.exe Object is locked skipped
C:\delete IE 7 deinstalled c00d4a8f1a63dff2d5\iexplore.exe.mui Object is locked skipped
C:\delete IE 7 deinstalled c00d4a8f1a63dff2d5\imgutil.dll Object is locked skipped
C:\delete IE 7 deinstalled c00d4a8f1a63dff2d5\inetcorp.iem Object is locked skipped
C:\delete IE 7 deinstalled c00d4a8f1a63dff2d5\inetcpl.cpl Object is locked skipped
C:\delete IE 7 deinstalled c00d4a8f1a63dff2d5\inetcpl.cpl.mui Object is locked skipped
C:\delete IE 7 deinstalled c00d4a8f1a63dff2d5\inetres.adm Object is locked skipped
C:\delete IE 7 deinstalled c00d4a8f1a63dff2d5\inetset.iem Object is locked skipped
C:\delete IE 7 deinstalled c00d4a8f1a63dff2d5\infobar.wav Object is locked skipped
C:\delete IE 7 deinstalled c00d4a8f1a63dff2d5\inseng.dll Object is locked skipped
C:\delete IE 7 deinstalled c00d4a8f1a63dff2d5\inseng.dll.mui Object is locked skipped
C:\delete IE 7 deinstalled c00d4a8f1a63dff2d5\install.ins Object is locked skipped
C:\delete IE 7 deinstalled c00d4a8f1a63dff2d5\jscript.dll Object is locked skipped
C:\delete IE 7 deinstalled c00d4a8f1a63dff2d5\jsproxy.dll Object is locked skipped
C:\delete IE 7 deinstalled c00d4a8f1a63dff2d5\licmgr10.dll Object is locked skipped
C:\delete IE 7 deinstalled c00d4a8f1a63dff2d5\licmgr10.dll.mui Object is locked skipped
C:\delete IE 7 deinstalled c00d4a8f1a63dff2d5\msfeeds.dll Object is locked skipped
C:\delete IE 7 deinstalled c00d4a8f1a63dff2d5\msfeeds.mof Object is locked skipped
C:\delete IE 7 deinstalled c00d4a8f1a63dff2d5\msfeedsbs.dll Object is locked skipped
C:\delete IE 7 deinstalled c00d4a8f1a63dff2d5\msfeedsbs.dll.mui Object is locked skipped
C:\delete IE 7 deinstalled c00d4a8f1a63dff2d5\msfeedsbs.mof Object is locked skipped
C:\delete IE 7 deinstalled c00d4a8f1a63dff2d5\msfeedssync.exe Object is locked skipped
C:\delete IE 7 deinstalled c00d4a8f1a63dff2d5\mshta.exe Object is locked skipped
C:\delete IE 7 deinstalled c00d4a8f1a63dff2d5\mshta.exe.mui Object is locked skipped
C:\delete IE 7 deinstalled c00d4a8f1a63dff2d5\mshtml.dll Object is locked skipped
C:\delete IE 7 deinstalled c00d4a8f1a63dff2d5\mshtml.dll.mui Object is locked skipped
C:\delete IE 7 deinstalled c00d4a8f1a63dff2d5\mshtml.tlb Object is locked skipped
C:\delete IE 7 deinstalled c00d4a8f1a63dff2d5\mshtmled.dll Object is locked skipped
C:\delete IE 7 deinstalled c00d4a8f1a63dff2d5\mshtmled.dll.mui Object is locked skipped
C:\delete IE 7 deinstalled c00d4a8f1a63dff2d5\mshtmler.dll Object is locked skipped
C:\delete IE 7 deinstalled c00d4a8f1a63dff2d5\mshtmler.dll.mui Object is locked skipped
C:\delete IE 7 deinstalled c00d4a8f1a63dff2d5\msls31.dll Object is locked skipped
C:\delete IE 7 deinstalled c00d4a8f1a63dff2d5\msrating.dll Object is locked skipped
C:\delete IE 7 deinstalled c00d4a8f1a63dff2d5\msrating.dll.mui Object is locked skipped
C:\delete IE 7 deinstalled c00d4a8f1a63dff2d5\mstime.dll Object is locked skipped
C:\delete IE 7 deinstalled c00d4a8f1a63dff2d5\navstart.wav Object is locked skipped
C:\delete IE 7 deinstalled c00d4a8f1a63dff2d5\occache.dll Object is locked skipped
C:\delete IE 7 deinstalled c00d4a8f1a63dff2d5\occache.dll.mui Object is locked skipped
C:\delete IE 7 deinstalled c00d4a8f1a63dff2d5\occache.ini Object is locked skipped
C:\delete IE 7 deinstalled c00d4a8f1a63dff2d5\pngfilt.dll Object is locked skipped
C:\delete IE 7 deinstalled c00d4a8f1a63dff2d5\popupblk.wav Object is locked skipped
C:\delete IE 7 deinstalled c00d4a8f1a63dff2d5\shdocvw.dll Object is locked skipped
C:\delete IE 7 deinstalled c00d4a8f1a63dff2d5\shlwapi.dll Object is locked skipped
C:\delete IE 7 deinstalled c00d4a8f1a63dff2d5\spmsg.dll Object is locked skipped
C:\delete IE 7 deinstalled c00d4a8f1a63dff2d5\spuninst.exe Object is locked skipped
C:\delete IE 7 deinstalled c00d4a8f1a63dff2d5\spupdsvc.exe Object is locked skipped
C:\delete IE 7 deinstalled c00d4a8f1a63dff2d5\tdc.ocx Object is locked skipped
C:\delete IE 7 deinstalled c00d4a8f1a63dff2d5\update\eula.rtf Object is locked skipped
C:\delete IE 7 deinstalled c00d4a8f1a63dff2d5\update\idndl.exe Object is locked skipped
C:\delete IE 7 deinstalled c00d4a8f1a63dff2d5\update\ie7.cat Object is locked skipped
C:\delete IE 7 deinstalled c00d4a8f1a63dff2d5\update\iecustom.dll Object is locked skipped
C:\delete IE 7 deinstalled c00d4a8f1a63dff2d5\update\iereseticons.exe Object is locked skipped
C:\delete IE 7 deinstalled c00d4a8f1a63dff2d5\update\iesetup.exe Object is locked skipped
C:\delete IE 7 deinstalled c00d4a8f1a63dff2d5\update\legitlibm.dll Object is locked skipped
C:\delete IE 7 deinstalled c00d4a8f1a63dff2d5\update\nlsdl.exe Object is locked skipped
C:\delete IE 7 deinstalled c00d4a8f1a63dff2d5\update\update.exe Object is locked skipped
C:\delete IE 7 deinstalled c00d4a8f1a63dff2d5\update\update.exe.manifest Object is locked skipped
C:\delete IE 7 deinstalled c00d4a8f1a63dff2d5\update\update.inf Object is locked skipped
C:\delete IE 7 deinstalled c00d4a8f1a63dff2d5\update\update.ver Object is locked skipped
C:\delete IE 7 deinstalled c00d4a8f1a63dff2d5\update\updspapi.dll Object is locked skipped
C:\delete IE 7 deinstalled c00d4a8f1a63dff2d5\update\xmllitesetup.exe Object is locked skipped
C:\delete IE 7 deinstalled c00d4a8f1a63dff2d5\url.dll Object is locked skipped
C:\delete IE 7 deinstalled c00d4a8f1a63dff2d5\urlmon.dll Object is locked skipped
C:\delete IE 7 deinstalled c00d4a8f1a63dff2d5\urlmon.dll.mui Object is locked skipped
C:\delete IE 7 deinstalled c00d4a8f1a63dff2d5\vbscript.dll Object is locked skipped
C:\delete IE 7 deinstalled c00d4a8f1a63dff2d5\vgx.dll Object is locked skipped
C:\delete IE 7 deinstalled c00d4a8f1a63dff2d5\webcheck.dll Object is locked skipped
C:\delete IE 7 deinstalled c00d4a8f1a63dff2d5\webcheck.dll.mui Object is locked skipped
C:\delete IE 7 deinstalled c00d4a8f1a63dff2d5\webcheck.ini Object is locked skipped
C:\delete IE 7 deinstalled c00d4a8f1a63dff2d5\winfxdocobj.exe Object is locked skipped
C:\delete IE 7 deinstalled c00d4a8f1a63dff2d5\winfxdocobj.exe.mui Object is locked skipped
C:\delete IE 7 deinstalled c00d4a8f1a63dff2d5\wininet.dll Object is locked skipped
C:\delete IE 7 deinstalled c00d4a8f1a63dff2d5\wininet.dll.mui Object is locked skipped
C:\Documents and Settings\All Users\Application Data\Microsoft\Crypto\RSA\MachineKeys\06ae99f1a7108938a6a758b417022c64_78233055-ad50-45c1-94c6-8ad4311287b6 Object is locked skipped
C:\Documents and Settings\All Users\Application Data\Microsoft\Crypto\RSA\MachineKeys\40877d6a8773d3ffa514daa64ff9ec7c_78233055-ad50-45c1-94c6-8ad4311287b6 Object is locked skipped
C:\Documents and Settings\All Users\Application Data\Microsoft\Crypto\RSA\MachineKeys\4711de1eed112745299ceccc9ce2fa1c_78233055-ad50-45c1-94c6-8ad4311287b6 Object is locked skipped
C:\Documents and Settings\All Users\Application Data\Microsoft\Crypto\RSA\MachineKeys\570c6407571b0a325b1344b6fec4d9a3_78233055-ad50-45c1-94c6-8ad4311287b6 Object is locked skipped
C:\Documents and Settings\All Users\Application Data\Microsoft\Crypto\RSA\MachineKeys\599d5f37231b25b9534a0f428d309a18_78233055-ad50-45c1-94c6-8ad4311287b6 Object is locked skipped
C:\Documents and Settings\All Users\Application Data\Microsoft\Crypto\RSA\MachineKeys\881d6ef59ef984fd64330143d659d1a6_78233055-ad50-45c1-94c6-8ad4311287b6 Object is locked skipped
C:\Documents and Settings\All Users\Application Data\Microsoft\Crypto\RSA\MachineKeys\9d100dd7b4ea42acb34de2b9de7722ab_78233055-ad50-45c1-94c6-8ad4311287b6 Object is locked skipped
C:\Documents and Settings\All Users\Application Data\Microsoft\Crypto\RSA\MachineKeys\d52b5a26c54de75b7459a6bf8f2ffd8c_78233055-ad50-45c1-94c6-8ad4311287b6 Object is locked skipped
C:\Documents and Settings\All Users\Application Data\Microsoft\Crypto\RSA\MachineKeys\e7265f1feb9f147fcea8073abc47d7b0_78233055-ad50-45c1-94c6-8ad4311287b6 Object is locked skipped
C:\Documents and Settings\All Users\Application Data\Microsoft\Crypto\RSA\MachineKeys\fc0a088ad36b6c454b953630bd19e788_78233055-ad50-45c1-94c6-8ad4311287b6 Object is locked skipped
C:\Documents and Settings\All Users\Application Data\Microsoft\Network\Downloader\qmgr0.dat Object is locked skipped
C:\Documents and Settings\All Users\Application Data\Microsoft\Network\Downloader\qmgr1.dat Object is locked skipped
C:\Documents and Settings\All Users\Application Data\Symantec\Common Client\settings.dat Object is locked skipped
C:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\2006-10-31_Log.ALUSchedulerSvc.LiveUpdate Object is locked skipped
C:\Documents and Settings\All Users\Application Data\Symantec\SPBBC\BBConfig.log Object is locked skipped
C:\Documents and Settings\All Users\Application Data\Symantec\SPBBC\BBDebug.log Object is locked skipped
C:\Documents and Settings\All Users\Application Data\Symantec\SPBBC\BBDetect.log Object is locked skipped
C:\Documents and Settings\All Users\Application Data\Symantec\SPBBC\BBNotify.log Object is locked skipped
C:\Documents and Settings\All Users\Application Data\Symantec\SPBBC\BBRefr.log Object is locked skipped
C:\Documents and Settings\All Users\Application Data\Symantec\SPBBC\BBSetCfg.log Object is locked skipped
C:\Documents and Settings\All Users\Application Data\Symantec\SPBBC\BBSetCfg2.log Object is locked skipped
C:\Documents and Settings\All Users\Application Data\Symantec\SPBBC\BBSetDev.log Object is locked skipped
C:\Documents and Settings\All Users\Application Data\Symantec\SPBBC\BBSetLoc.log Object is locked skipped
C:\Documents and Settings\All Users\Application Data\Symantec\SPBBC\BBSetUsr.log Object is locked skipped
C:\Documents and Settings\All Users\Application Data\Symantec\SPBBC\BBStHash.log Object is locked skipped
C:\Documents and Settings\All Users\Application Data\Symantec\SPBBC\BBValid.log Object is locked skipped
C:\Documents and Settings\All Users\Application Data\Symantec\SPBBC\SPPolicy.log Object is locked skipped
C:\Documents and Settings\All Users\Application Data\Symantec\SPBBC\SPStart.log Object is locked skipped
C:\Documents and Settings\All Users\Application Data\Symantec\SPBBC\SPStop.log Object is locked skipped
C:\Documents and Settings\All Users\Application Data\Symantec\SRTSP\SrtErEvt.log Object is locked skipped
C:\Documents and Settings\All Users\Application Data\Symantec\SRTSP\SrtETmp\78FA45D2.TMP Object is locked skipped
C:\Documents and Settings\All Users\Application Data\Symantec\SRTSP\SrtETmp\B1D955E4.TMP Object is locked skipped
C:\Documents and Settings\All Users\Application Data\Symantec\SRTSP\SrtMoEvt.log Object is locked skipped
C:\Documents and Settings\All Users\Application Data\Symantec\SRTSP\SrtNvEvt.log Object is locked skipped
C:\Documents and Settings\All Users\Application Data\Symantec\SRTSP\SrtScEvt.log Object is locked skipped
C:\Documents and Settings\All Users\Application Data\Symantec\SRTSP\SrtTxFEvt.log Object is locked skipped
C:\Documents and Settings\All Users\Application Data\Symantec\SRTSP\SrtViEvt.log Object is locked skipped
C:\Documents and Settings\All Users\Application Data\Symantec\SubEng\submissions.idx Object is locked skipped
C:\Documents and Settings\DaDaddy\My Documents\Files to Keep\install folder\Weather Bug\WxBugSetup27.exe/WISE0042.BIN Infected: not-a-virus:AdWare.Win32.Gator.1023 skipped
C:\Documents and Settings\DaDaddy\My Documents\Files to Keep\install folder\Weather Bug\WxBugSetup27.exe WiseSFX: infected - 1 skipped
C:\Documents and Settings\DaDaddy\My Documents\Files to Keep\install folder\Weather Bug\WxBugSetup27.exe WiseSFX Dropper: infected - 1 skipped
C:\Documents and Settings\DaDaddy\My Documents\Files to Keep\install folder\Web Shots\webscene.exe/WISE0030.BIN Infected: not-a-virus:AdWare.Win32.Gator.1050 skipped
C:\Documents and Settings\DaDaddy\My Documents\Files to Keep\install folder\Web Shots\webscene.exe WiseSFX: infected - 1 skipped
C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Data\settings.dat Object is locked skipped
C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCS0290D46B-7719-49CB-BA7D-14687558A4EC.tmp Object is locked skipped
C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCS05C2717E-F041-4E75-ACFB-60CB62497B17.tmp Object is locked skipped
C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCS05D7FEF7-6B3D-4406-9645-63C62DA1E748.tmp Object is locked skipped
C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCS0601C60D-DF96-44EA-A21C-9FFA68009FA3.tmp Object is locked skipped
C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCS09065CCB-B15D-46C1-86E8-0955F8DB0D6D.tmp Object is locked skipped
C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCS0D42D1DA-6183-4989-99D8-56D886D5F649.tmp Object is locked skipped
C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCS146EDD9C-EEBB-43BC-A3DF-4E79FB23151F.tmp Object is locked skipped
C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCS17B6E7B7-E73C-41BB-A170-CBF5EE59E10E.tmp Object is locked skipped
C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCS1918BF3B-DC74-4F12-937B-30D3E8D7764A.tmp Object is locked skipped
C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCS19E9527B-F6C6-4285-A3D5-BB50E81AF2E7.tmp Object is locked skipped
C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCS1A0E6FCB-C143-433C-A02C-67CE10634EDB.tmp Object is locked skipped
C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCS1CA76EDF-EBD6-42C1-9459-9A3D5E030C1F.tmp Object is locked skipped
C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCS245343CB-D9D7-49E8-8E1A-056FE4D55CDD.tmp Object is locked skipped
C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCS2517EA3E-AF3C-4625-AB69-358CDC39A32C.tmp Object is locked skipped
C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCS2744BEA3-46F4-40A1-8077-88C6419E3BC6.tmp Object is locked skipped
C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCS29F72D08-4CE7-4788-9700-C75340DA8027.tmp Object is locked skipped
C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCS32891F41-2020-4A95-9C85-EADF0274CA59.tmp Object is locked skipped
C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCS33A2A9BC-0A02-46DA-83B5-097EB515BCDF.tmp Object is locked skipped
C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCS3535DBE7-68C7-4314-A299-45FB451277C1.tmp Object is locked skipped
C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCS36E6B035-C373-4555-8340-CB73900D4B04.tmp Object is locked skipped
C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCS3742BF8C-8B69-47B5-B557-EABA46A84418.tmp Object is locked skipped
C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCS3B325005-B194-42B7-9985-03DA43E2A40F.tmp Object is locked skipped
C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCS3DEC21E3-91AA-4FFF-BC63-8D918CA881F0.tmp Object is locked skipped
C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCS4632C2FC-658A-4551-BD5C-01CC9ADEE09C.tmp Object is locked skipped
C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCS47D774EE-D482-4113-A669-8D37163174FD.tmp Object is locked skipped
C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCS4A84B479-8E0A-40EF-9A58-1FD1E73062DF.tmp Object is locked skipped
C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCS4A92158A-37D9-41F7-A4A2-4AA117FDD2DE.tmp Object is locked skipped
C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCS4A9D92EE-5171-4E28-9CA7-9E8468976D0C.tmp Object is locked skipped
C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCS4BDC41F9-4323-4A1D-A1B1-B46BC12E393E.tmp Object is locked skipped
C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCS4E112902-61D1-4204-8A2C-3364022EF19D.tmp Object is locked skipped
C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCS556658DD-3CB6-4E81-BE96-702DDB814EA0.tmp Object is locked skipped
C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCS5D1786B9-3998-41B1-94CA-806AB886E943.tmp Object is locked skipped
C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCS5E4BAB03-5A59-425C-AFDA-3666C6956AE5.tmp Object is locked skipped
C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCS5F8109EE-8D12-40D8-BA6F-AFE388FBE0BB.tmp Object is locked skipped
C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCS61D9DFD5-6A81-4FBD-8B22-F910EC46C658.tmp Object is locked skipped
C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCS6349C488-4413-4E66-8823-76E793ABEF17.tmp Object is locked skipped
C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCS657DB033-6A1A-43DD-AC6D-225DC3A231C8.tmp Object is locked skipped
C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCS6AA0F55D-C293-409A-BCAD-E749336B4CDE.tmp Object is locked skipped
C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCS6B23668E-B7F0-436E-A71C-1EA843748BF7.tmp Object is locked skipped
C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCS6D176DDB-D576-439A-8176-F26C11B98A47.tmp Object is locked skipped
C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCS708F3C99-97C4-404F-BD56-FEC926E8F2C1.tmp Object is locked skipped
C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCS70FFEAA5-6EEC-4EDC-824D-516D51E213EE.tmp Object is locked skipped
C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCS73BBCF79-9DD8-4445-B894-B377B505A39E.tmp Object is locked skipped
C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCS73E1736A-2BD1-4B1F-86A3-692CB382AF41.tmp Object is locked skipped
C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCS74C5768D-7AA2-47E9-924B-6CA46660ADE1.tmp Object is locked skipped
C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCS74E33992-0255-4FFB-8291-379FBE8E041C.tmp Object is locked skipped
C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCS756CDE12-B3D4-4D04-A5BC-1BDB5EBE8DC1.tmp Object is locked skipped
C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCS7614BB71-B3BA-4209-A07C-B0BCD4988273.tmp Object is locked skipped
C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCS84461BE9-67EF-486A-B35A-31EA1B12522C.tmp Object is locked skipped
C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCS87940CA3-D7F2-47FF-B0DA-427440C64247.tmp Object is locked skipped
C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCS8888CE9C-AE22-4492-88C5-5C63418CAC4D.tmp Object is locked skipped
C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCS8A844640-22DF-4821-958F-137E6D13A4AF.tmp Object is locked skipped
C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCS8CC4AA4B-27F8-4846-A394-A2713E0F9FD9.tmp Object is locked skipped
C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCS90241352-85B3-4F1F-BBDE-E1D48A659C30.tmp Object is locked skipped
C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCS913385A9-BC15-46E4-9DF8-9127639C73F6.tmp Object is locked skipped
C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCS925A18FB-41D5-4810-A9AB-F309E622D69E.tmp Object is locked skipped
C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCS96D9CCAC-F6EE-4E74-B736-2E02BC700529.tmp Object is locked skipped
C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCS9B082EC1-CCBA-4296-AD65-16318028156B.tmp Object is locked skipped
C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCS9C654207-FC5F-4E36-82D1-FE58A1FDD696.tmp Object is locked skipped
C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCSA2EA56D8-890B-48E4-B38D-97C1703EBD20.tmp Object is locked skipped
C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCSA5EB6514-3C68-4EBA-A17A-1BDC4E457577.tmp Object is locked skipped
C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCSA7BA8557-535F-49D1-8E65-BDE0EF54A673.tmp Object is locked skipped
C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCSAAD8ED2B-0208-4BD9-A803-D73B6D7A3054.tmp Object is locked skipped
C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCSABC35334-CB26-4B0F-AD45-50171CC70556.tmp Object is locked skipped
C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCSAFBDE3BB-3736-4A12-83EE-5C04EA9AED37.tmp Object is locked skipped
C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCSB095657B-C121-4652-962B-604B9908B6ED.tmp Object is locked skipped
C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCSB2E32D37-1234-4487-94E2-4DDB470DC60D.tmp Object is locked skipped
C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCSBB7B1BCE-9021-473C-8947-89D894A0EBBC.tmp Object is locked skipped
C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCSBC2184AF-2F76-4934-9F6A-3FF8B0920444.tmp Object is locked skipped
C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCSC0BAE392-DAA6-49F5-AC15-1E6F6B44261C.tmp Object is locked skipped
C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCSC2644A02-E548-4ACF-BA40-8ECFA926F4A8.tmp Object is locked skipped
C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCSC3593644-59EE-41DD-9024-9B94BF5BB6C8.tmp Object is locked skipped
C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCSC41165DD-9729-473A-898C-E7DAB874E963.tmp Object is locked skipped
C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCSC4B3DAAA-CE99-431F-A993-730C3768B0EB.tmp Object is locked skipped
C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCSC82388E6-E3DB-46BA-AECD-08EB209E71B2.tmp Object is locked skipped
C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCSC854031A-E05A-409F-BE53-8451B961090C.tmp Object is locked skipped
C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCSCD8DE981-BC11-4489-AEB7-E5FDC501D710.tmp Object is locked skipped
C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCSCE6BDBD6-A3DA-43BC-B046-BAAB153A5B33.tmp Object is locked skipped
C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCSD1D297DD-E22F-4E43-95F8-99DAF5233D24.tmp Object is locked skipped
C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCSD30E2670-CD54-42D4-9721-F078B909FCA1.tmp Object is locked skipped
C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCSDB5F1D77-7F6C-4369-A896-97F1EC693543.tmp Object is locked skipped
C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCSDE03CC6C-371C-4331-A48A-B2D6D962EC76.tmp Object is locked skipped
C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCSDF0FA299-EDDD-4C5A-98F7-1CB52882DBFD.tmp Object is locked skipped
C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCSE0103DDE-EE07-48CD-A827-9C03D5ABD202.tmp Object is locked skipped
C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCSE034A526-B23C-40FD-AC11-4C88E10E07F9.tmp Object is locked skipped
C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCSE0732F83-206A-4548-ADC2-32D43D6125F5.tmp Object is locked skipped
C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCSE19AF7FA-6DF3-461E-BF0F-EB4615516084.tmp Object is locked skipped
C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCSE43B353B-09EF-4E2E-BF02-44E9DFC64105.tmp Object is locked skipped
C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCSE5AED797-B78F-4720-A18A-6BBA200247D0.tmp Object is locked skipped
C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCSE6A910AA-0416-436C-9B52-1B5497DB876C.tmp Object is locked skipped
C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCSE886FB0B-0E3F-42FA-BE3B-F027C75A08E0.tmp Object is locked skipped
C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCSE9AD9A3B-6A5F-4BC5-8685-8A85B9C6224C.tmp Object is locked skipped
C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCSEAE332B8-2815-427C-B6FE-7D02E166113F.tmp Object is locked skipped
C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCSEAFB79B9-8170-47E9-8E61-C89E2BB50EF6.tmp Object is locked skipped
C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCSEBC3FDC8-3E77-4628-9C37-42BCA3479797.tmp Object is locked skipped
C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCSEBC94825-D236-456F-9A8C-F0ED92D23DB7.tmp Object is locked skipped
C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCSECFA0332-844D-467C-8B17-C4B9DA12C2AC.tmp Object is locked skipped
C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCSED25A5F8-A35A-4955-8C94-2D9C75FAFBA5.tmp Object is locked skipped
C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCSED6DFBE5-D543-46B6-A585-248B9E2781D8.tmp Object is locked skipped
C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCSEE4D1FE4-9D7B-4386-9144-6DC4E44A4C3B.tmp Object is locked skipped
C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCSF2FADBE8-3EC9-4C2D-8691-92C5FCCE3CDA.tmp Object is locked skipped
C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCSF302CF8D-E9C4-40A3-B944-0CB842644DD4.tmp Object is locked skipped
C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCSF72C89AB-6BB2-4D96-B741-B2F5A928960C.tmp Object is locked skipped
C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCSF79DD025-514E-424D-AB84-65B13CAC23A2.tmp Object is locked skipped
C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCSF7B56CBD-7F75-49DB-ADB4-C849FE4EF0C0.tmp Object is locked skipped
C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCSF86F4456-4BE8-49E8-B98A-F66AE636C256.tmp Object is locked skipped
C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCSF8C0617D-9506-473E-B9EB-6AA4C5D6D62F.tmp Object is locked skipped
C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCSF9B80339-CCAB-4453-9EC0-398EAB4C0673.tmp Object is locked skipped
C:\Documents and Settings\LocalService\Application Data\Webroot\Spy Sweeper\Temp\SSCSFFD9F27C-57AF-4F82-940B-8F54E3FC881D.tmp Object is locked skipped
C:\Documents and Settings\LocalService\Cookies\index.dat Object is locked skipped
C:\Documents and Settings\LocalService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat Object is locked skipped
C:\Documents and Settings\LocalService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG Object is locked skipped
C:\Documents and Settings\LocalService\Local Settings\History\History.IE5\index.dat Object is locked skipped
C:\Documents and Settings\LocalService\Local Settings\Temp\Cookies\index.dat Object is locked skipped
C:\Documents and Settings\LocalService\Local Settings\Temp\History\History.IE5\index.dat Object is locked skipped
C:\Documents and Settings\LocalService\Local Settings\Temp\Temporary Internet Files\Content.IE5\index.dat Object is locked skipped
C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\index.dat Object is locked skipped
C:\Documents and Settings\LocalService\NTUSER.DAT Object is locked skipped
C:\Documents and Settings\LocalService\ntuser.dat.LOG Object is locked skipped
C:\Documents and Settings\Mike\Local Settings\Temp\AntiPhishing\FDE76B9D-4657-4B28-AE87-04EFD23D4EB6.dat Object is locked skipped
C:\Documents and Settings\NetworkService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat Object is locked skipped
C:\Documents and Settings\NetworkService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG Object is locked skipped
C:\Documents and Settings\NetworkService\NTUSER.DAT Object is locked skipped
C:\Documents and Settings\NetworkService\ntuser.dat.LOG Object is locked skipped
C:\Documents and Settings\Sandy\Application Data\ArcSoft\Arcsoft PhotoImpression 5\Garden of the Gods Object is locked skipped
C:\Documents and Settings\Sandy\Application Data\Opera\Opera\mail\indexer\indexer.dat Object is locked skipped
C:\Documents and Settings\Sandy\Application Data\Opera\Opera\mail\lexicon\lexicon.dat Object is locked skipped
C:\Documents and Settings\Sandy\Application Data\Opera\Opera\mail\mailbase.dat Object is locked skipped
C:\Documents and Settings\Sandy\Application Data\Webroot\Spy Sweeper\Logs\061030183120.ses Object is locked skipped
C:\Documents and Settings\Sandy\Cookies\index.dat Object is locked skipped
C:\Documents and Settings\Sandy\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat Object is locked skipped
C:\Documents and Settings\Sandy\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG Object is locked skipped
C:\Documents and Settings\Sandy\Local Settings\History\History.IE5\index.dat Object is locked skipped
C:\Documents and Settings\Sandy\Local Settings\Temp\abm1072.tmp Object is locked skipped
C:\Documents and Settings\Sandy\Local Settings\Temp\abm1074.tmp Object is locked skipped
C:\Documents and Settings\Sandy\Local Settings\Temp\abm11A1.tmp Object is locked skipped
C:\Documents and Settings\Sandy\Local Settings\Temp\~DF30F2.tmp Object is locked skipped
C:\Documents and Settings\Sandy\Local Settings\Temporary Internet Files\Content.IE5\index.dat Object is locked skipped
C:\Documents and Settings\Sandy\NTUSER.DAT Object is locked skipped
C:\Documents and Settings\Sandy\NTUSER.DAT.LOG Object is locked skipped
C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcrst.dll Object is locked skipped
C:\Program Files\Common Files\Symantec Shared\EENGINE\EPERSIST.DAT Object is locked skipped
C:\Program Files\Common Files\Symantec Shared\NFWEVT.LOG Object is locked skipped
C:\Program Files\Common Files\Symantec Shared\SNDALRT.log Object is locked skipped
C:\Program Files\Common Files\Symantec Shared\SNDCON.log Object is locked skipped
C:\Program Files\Common Files\Symantec Shared\SNDDBG.log Object is locked skipped
C:\Program Files\Common Files\Symantec Shared\SNDFW.log Object is locked skipped
C:\Program Files\Common Files\Symantec Shared\SNDIDS.log Object is locked skipped
C:\Program Files\Common Files\Symantec Shared\SNDSYS.log Object is locked skipped
C:\Program Files\Norton Internet Security\Norton AntiVirus\AVApp.log Object is locked skipped
C:\Program Files\Norton Internet Security\Norton AntiVirus\AVError.log Object is locked skipped
C:\Program Files\Norton Internet Security\Norton AntiVirus\AVVirus.log Object is locked skipped
C:\Program Files\Webroot\Spy Sweeper\Masters\masters.bak Object is locked skipped
C:\Program Files\Webroot\Spy Sweeper\Masters\Masters.const Object is locked skipped
C:\Program Files\Webroot\Spy Sweeper\Masters\masters.mst Object is locked skipped
C:\Program Files\Webroot\Spy Sweeper\Masters.base Object is locked skipped
C:\System Volume Information\_restore{B5C8E749-187D-4A3B-BA27-3169E7767F22}\RP754\change.log Object is locked skipped
C:\WINDOWS\Debug\PASSWD.LOG Object is locked skipped
C:\WINDOWS\Prefetch\layout.ini Object is locked skipped
C:\WINDOWS\SchedLgU.Txt Object is locked skipped
C:\WINDOWS\SoftwareDistribution\EventCache\{BAE56F74-66AA-452D-9210-29178A9E0870}.bin Object is locked skipped
C:\WINDOWS\SoftwareDistribution\ReportingEvents.log Object is locked skipped
C:\WINDOWS\Sti_Trace.log Object is locked skipped
C:\WINDOWS\system32\CatRoot2\edb.log Object is locked skipped
C:\WINDOWS\system32\CatRoot2\tmp.edb Object is locked skipped
C:\WINDOWS\system32\config\AppEvent.Evt Object is locked skipped
C:\WINDOWS\system32\config\default Object is locked skipped
C:\WINDOWS\system32\config\default.LOG Object is locked skipped
C:\WINDOWS\system32\config\Internet.evt Object is locked skipped
C:\WINDOWS\system32\config\SAM Object is locked skipped
C:\WINDOWS\system32\config\SAM.LOG Object is locked skipped
C:\WINDOWS\system32\config\SecEvent.Evt Object is locked skipped
C:\WINDOWS\system32\config\SECURITY Object is locked skipped
C:\WINDOWS\system32\config\SECURITY.LOG Object is locked skipped
C:\WINDOWS\system32\config\software Object is locked skipped
C:\WINDOWS\system32\config\software.LOG Object is locked skipped
C:\WINDOWS\system32\config\SysEvent.Evt Object is locked skipped
C:\WINDOWS\system32\config\system Object is locked skipped
C:\WINDOWS\system32\config\system.LOG Object is locked skipped
C:\WINDOWS\system32\h323log.txt Object is locked skipped
C:\WINDOWS\system32\MSN1965.0LL Infected: Backdoor.Win32.BlackHole.2004.h skipped
C:\WINDOWS\system32\wbem\Repository\FS\INDEX.BTR Object is locked skipped
C:\WINDOWS\system32\wbem\Repository\FS\INDEX.MAP Object is locked skipped
C:\WINDOWS\system32\wbem\Repository\FS\MAPPING.VER Object is locked skipped
C:\WINDOWS\system32\wbem\Repository\FS\MAPPING1.MAP Object is locked skipped
C:\WINDOWS\system32\wbem\Repository\FS\MAPPING2.MAP Object is locked skipped
C:\WINDOWS\system32\wbem\Repository\FS\OBJECTS.DATA Object is locked skipped
C:\WINDOWS\system32\wbem\Repository\FS\OBJECTS.MAP Object is locked skipped
C:\WINDOWS\wiadebug.log Object is locked skipped
C:\WINDOWS\wiaservc.log Object is locked skipped
C:\WINDOWS\WindowsUpdate.log Object is locked skipped
G:\backup 9 23 06\DaDaddy's Documents\Files to Keep\install folder\Weather Bug\WxBugSetup27.exe/WISE0042.BIN Infected: not-a-virus:AdWare.Win32.Gator.1023 skipped
G:\backup 9 23 06\DaDaddy's Documents\Files to Keep\install folder\Weather Bug\WxBugSetup27.exe WiseSFX: infected - 1 skipped
G:\backup 9 23 06\DaDaddy's Documents\Files to Keep\install folder\Weather Bug\WxBugSetup27.exe WiseSFX Dropper: infected - 1 skipped
G:\backup 9 23 06\DaDaddy's Documents\Files to Keep\install folder\Web Shots\webscene.exe/WISE0030.BIN Infected: not-a-virus:AdWare.Win32.Gator.1050 skipped
G:\backup 9 23 06\DaDaddy's Documents\Files to Keep\install folder\Web Shots\webscene.exe WiseSFX: infected - 1 skipped
G:\March 7 2006 backup\Jeff\Files to Keep\install folder\Weather Bug\WxBugSetup27.exe/WISE0042.BIN Infected: not-a-virus:AdWare.Win32.Gator.1023 skipped
G:\March 7 2006 backup\Jeff\Files to Keep\install folder\Weather Bug\WxBugSetup27.exe WiseSFX: infected - 1 skipped
G:\March 7 2006 backup\Jeff\Files to Keep\install folder\Weather Bug\WxBugSetup27.exe WiseSFX Dropper: infected - 1 skipped
G:\March 7 2006 backup\Jeff\Files to Keep\install folder\Web Shots\webscene.exe/WISE0030.BIN Infected: not-a-virus:AdWare.Win32.Gator.1050 skipped
G:\March 7 2006 backup\Jeff\Files to Keep\install folder\Web Shots\webscene.exe WiseSFX: infected - 1 skipped

Scan process completed.
  • 0

#22
Wizard
Posted 01 November 2006 - 04:15 PM

Wizard

    Retired Staff

  • Retired Staff
  • 5,661 posts
C:\WINDOWS\system32\MSN1965.0LL

The above file was disabled by F-Secure renaming it and you can delete the file,please.

The Locked items are not all that uncommon,Symantec and SpySweeper are either qurantined items or protected files from the applications.

As to why IE 7 flagged as locked,your guess is as good as mine but its not something Im too worried about.


The setup files which were flagged with the adware are those programs that prompt you to choose whether you want to install the AD Sponsors for the programs.

Its a choice alot of free applications have.


Is Kaspersky as good as they claim they are?

Yes but once you add in the Human Factors of any computer,the Security Software is only as good as the person using it allows it to be.

I have a system which has never had anything more that Norton Internet Security installed.

Its survived me and my testing,my teenage kids and my shop happy wife. :blink:


I also have a system with Kaspersky Internet Security 6.0 which has survived more nasty versions of my personal testings.


I lean towards aInternet Security Suite that offers multiple layers of protection,including:

Antivirus

Firewall

Intrusion Detection

Anti Spam


Did any of this make sense? :whistling:
  • 0

#23
4everphotography
Posted 03 November 2006 - 09:51 PM

4everphotography

    Member

  • Topic Starter
  • Member
  • PipPip
  • 13 posts
Hi Cretemonster!

Yes, I did catch all of that and I appreciate you answers! I deleted the file MSN1965 in the system32 folder and all is well.

My wife is also shop happy and my daughter (13) and my son (18) also put this machine to the test with all the things they do. Oh well, life is good and I smile a good bit of the time!!!!! :)

Can you tell me if there is a way to know if a keylogger is active on the computer (or how to prevent all keyloggers)? I have read that they are invisible to the user and that they can be sending information to an e-mail anywhere :help: . I can find basic information on them, but most of the web sites want to sell you software to use or to prevent keyloggers in general. Not sure what is good in this area and I am now really concerned about all threats since not so long ago I felt that I was safe and secure in my computer life.

Well, after what you just helped me through, I am no longer going to feel really solid about computer security. Not going to really loose sleep, but I want to be more educated about the mainline threats and information stealing. WOW, thanks again because without your help I would have had to format and reinstall!!! :blink: Worse yet, I could have left the backdoor wide open :whistling: .

The computer is still running well and I am going to run scans this weekend to check everything out!

I shall wish you and your family a wonderful weekend!

Warm regards,
Jeff-
  • 0

#24
Wizard
Posted 04 November 2006 - 02:21 AM

Wizard

    Retired Staff

  • Retired Staff
  • 5,661 posts
If there was a Keylogger in there,I feel pretty sure we would have seen it by now.

Let me give you the reality of the malware world.

Its become a trend to stealth precense of key pieces of malware from the view of the human eye and most any types of scanners.

As we try to keep up with the trends the malware writers use new and innovative tecniques to hide the malware.


Give me a total list of security and Antivirus applications you have installed on the machine?
  • 0

#25
4everphotography
Posted 08 November 2006 - 12:09 AM

4everphotography

    Member

  • Topic Starter
  • Member
  • PipPip
  • 13 posts
:whistling: Good day Cretemonster!

Thank you for your reply.

....Wow!

Dangerous place the internet with all of the Malware that is out there today. Staying ahead of them is the game and I am not sure how folks like you do it, but it is wonderful that you are leading the charge and can track it down when it strikes!

I have the following software installed and running at boot to try and keep these critters at bay;

Norton 2007 Internet Security
Webroot Spy Sweeper
Spyware Blaster - (I believe that this is a free version too)

I also scan with Ad-Aware SE Personal Addition and CCleaner close to weekly and use ATF-Cleaner daily. These are are the free versions.

Update of these programs is completed very often-every week at a minimum!

I will look forward to hearing your thoughts and opinions on what I am running and suggested improvements to the front line!

Have a wonderful day!

Warm regards,
Jeff-
  • 0

Advertisements

#26
Wizard
Posted 08 November 2006 - 04:27 AM

Wizard

    Retired Staff

  • Retired Staff
  • 5,661 posts
Nice choices!!

Norton 2007 Internet Security
Webroot Spy Sweeper
Spyware Blaster


Here is so more ideas,I think what you have at the moment is a pretty good combination of prevention and security.


Now we need to reset System Restore and Clear out all the old infected restore points.
  • Click Start
  • Right-Click "My Computer" and Select Properties.
  • Click on the "System Restore" tab.
  • Place a checkmark in the box for "Turn off System Restore" and Click "Apply."
  • Restart the Computer.
  • Return to System Restore and Uncheck the box for "Turn off System Restore" and Click "Apply."
  • A fresh Restore Point will be created.



Now that you are clean, please follow these simple steps in order to keep your computer clean and secure:

Windows, Internet Explorer and Microsoft Office Updates

Visit Microsoft's Windows Update Site frequently. This will ensure your computer has always the latest security updates available installed on your computer. If there are new updates to install, install them immediately, reboot your computer, and revisit the site until there are no more critical updates.

If you are running Microsoft Office, or any application of it, go to the Microsoft's Office Update site and make sure you have at least all the critical updates installed.

If you have trouble with Windows Update, you still can get all the Critical Updates, Security Fixes and Service Packs. Below are a few links to bookmark.

Microsoft Security Bulletins
http://www.microsoft...ty/current.aspx

Office downloads
http://office.micros...te/default.aspx

Download Center
http://www.microsoft...ads/search.aspx

Microsoft Security Advisories
http://www.microsoft...ry/default.mspx

Recently Published
http://www.microsoft...nt/default.mspx

Make your Internet Explorer more secure
  • From within Internet Explorer click on the Tools menu and then click on Options.
  • Click on the Security tab
  • Click the Internet icon so it becomes highlighted.
  • Click on Default Level and click Ok
  • Click on the Custom Level button.
    • Change the Download signed ActiveX controls to Prompt
    • Change the Download unsigned ActiveX controls to Disable
    • Change the Initialise and script ActiveX controls not marked as safe to Disable
    • Change the Installation of desktop items to Prompt
    • Change the Launching programs and files in an IFRAME to Prompt
    • Change the Navigate sub-frames across different domains to Prompt
    • When all these settings have been made, click on the OK button.
    • If it prompts you as to whether or not you want to save the settings, press the Yes button.
  • Next press the Apply button and then the OK to exit the Internet Properties page.
Take the time to check out the following links

Resources for using Internet Explorer 6
http://support.micro...om/?kbid=867470

How to Configure Enhanced Security Features for Internet Explorer from Windows XP SP2
http://www.microsoft...xp/iesecxp.mspx

Microsoft Malicious Software Removal Tool
http://www.microsoft...e/families.mspx

Keep your Sun Java up to date

The most current version of Sun Java is: Java Runtime Environment Version 5.0 Update 9
http://java.sun.com/...loads/index.jsp
  • Scroll down to where it says "The J2SE Runtime Environment (JRE) allows end-users to run Java applications".
  • Click the "Download" button to the right.
  • Check the box that says: "Accept License Agreement".
  • The page will refresh.
  • Click on the link to download Windows Offline Installation with or without Multi-language and save to your desktop.
  • Close any programs you may have running - especially your web browser.
  • Go to Start > Control Panel double-click on Add/Remove programs and remove all older versions of Java.
  • Check any item with Java Runtime Environment (JRE or J2SE) in the name.
  • Click the Remove or Change/Remove button.
  • Repeat as many times as necessary to remove each Java versions.
  • Reboot your computer once all Java components are removed.
  • Then from your desktop double-click on jre-1_5_0_09-windowsi586-p.exe to install the newest version.
And in the future, remember to remove older versions of Java when you update to a newer version to avoid exploitation of older versions left on your system.

Check out these topics for more information:
http://spywarewarrio...pic.php?t=17910
http://spywarewarrio...pic.php?t=17598

Free programs that may help you in keeping the PC clean
  • SpywareBlaster
    SpywareBlaster will add a large list of programs and sites into your Internet Explorer settings that will protect you from running and downloading known malicious programs.
    You can download SpywareBlaster here
    A tutorial can be found here
  • SpywareGuard
    It provides a degree of real-time protection solution against spyware that is a great addition to SpywareBlaster's protection method. An anti-virus program scans files before you open them and prevents execution if a virus is detected - SpywareGuard does the same thing, but for spyware. And you can easily have an anti-virus program running alongside SpywareGuard. It also features Download Protection and Browser Hijacking Protection.
    You can download SpywareGuard here
    A tutorial can be found here
  • IE-SPYAD
    IE-SPYAD puts over 5000 sites in your restricted zone, so you'll be protected when you visit innocent-looking sites that aren't actually innocent at all. It basically prevents any downloads, cookies, scripts from the sites listed, although you will still be able to connect to the sites.
    You can download IE-SPYAD here
    A tutorial can be found here
  • Hosts File
    A Hosts file replaces your current HOSTS file with one containing well known ad, spyware sites etc. Basically, this prevents your coputer from connecting to those sites by redirecting them to 127.0.0.1 which is your local computer.
    A tutorial tutorial can be found here
  • MVPS Hosts File
    You can download the MVPS Hosts File here
    Furthermore the website contains useful tips and links to other resources and utilities.
  • Bluetack's Hosts File and Hosts Manager
    Essentially based on the research made by Webhelper, Andrew Clover and Eric L. Howes, it contains most if not all the known spyware sites, sites responsible for hijacks, rogue apllications etc...
    Download Bluetack's Hosts file here
    Download Bluetack's HostsManager here
Free Spyware Detection and Removal Programs
  • Ad-Aware
    It scans for known spyware on your computer. These scans should be run at least once every two weeks.
    You can download Ad-Aware here
    A tutorial can be found here
  • Spybot - Search & Destroy
    It scans for spyware and other malicious programs. Spybot has preventitive tools that stop programs from even installing on your computer.
    You can download Spybot - S&D here
    A tutorial can be found here
Before adding any other Spyware Detection and Removal programs always check the Rogue Anti-Spyware List for programs known to be misleading, mistaken, or just outright "Foistware".
You will find the list here

AVG Anti-Spyware (formerly Ewido)

Realtime protection against these threats:
  • Hijackers and Spyware
    Secure surfing in the Internet without fear of annoying changes of the start page of your browser, tracking cookies and advertising bars.
  • Worms
    Nobody should receive e-mails in your name with malicious files in the appendix anymore.
  • Dialers
    Security against all kinds of dialers. No fear when receiving the next phone bill.
  • Trojans and Keyloggers
    No chance for thieves to steal your bank data and personal sensitive information by tapped Internet connections, remote controlled webcams or secret keyboard recordings.
Most of you will have already the trial version of this software, which is an excellent program and particularly good at catching trojans. If you find it useful you might want to consider buying the full program. When the trial period ends the following features will stop working:
  • Scheduled scans.
  • Real-time monitoring of the entire system.
  • Memory Scan detects active threats.
  • Self-protection at kernel layer guarantees gapless monitoring.
  • Automatic online-update.
The manual memory scan will work in the free version and you can manually update the definitions by clicking on the "Start Update" button under Manual update in the update module.

You can download AVG Anti-Spyware here
AVG Anti-Spyware manual updates.
Download the Full database to your Desktop or to your usual Download Folder and install it by double clicking the file. Make sure that AVG Anti-Spyware is closed before installing the update.

WinPatrol

WinPatrol uses a heuristic approach to detecting attacks and violations of your computing environment. Traditional security programs scan your hard drive searching for previously identified threats. WinPatrol takes snapshot of your critical system resources and alerts you to any changes that may occur without your knowledge. You'll be removing dangerous new programs while others download new reference files.
  • Detect & Neutralize Spyware.
  • Detect & Neutralize ADware.
  • Detect & Neutralize Viral infections.
  • Detect & Neutralize Unwanted IE Add-Ons.
  • Detect & Restore File Type Changes.
  • Automatically Filter Unwanted Cookies.
  • Avoid Start Page Hijacking.
  • Detect changes to HOSTS & critical system files.
  • Kill Multiple Tasks that replicate each other, in a single step!
  • Stop programs that repeatedly add themselves to your Startup List!
Starting with WinPatrol 9.5 PLUS users also get the addition of Real-time Infiltration Detection so they'll know immediately when changes are made to critical system areas. WinPatrol Free is not demo or trial software. You're welcome to use it as long as you like.
You can download WinPatrol here
WinPatrol FAQ

SiteHound by Firetrust

Firetrust introduces the SiteHound Toolbar - the safe way to browse the Internet. With SiteHound, when you browse the Internet, you're shown a warning page every time you go to a site which is a known scam, potentially loads viruses or spyware on to your computer, has questionable content or anything you would not consider reasonable. You are shown a warning page with information about that site. From there you can choose to enter the site or go back. SiteHound is a free add-on to Internet Explorer. (Users of Firefox - a version for you is coming soon.) SiteHound's comprehensive database gathers the knowledge from other users and respected experts from the online security community to tell you which sites are real and which are bogus.

SiteHound will alert you when you enter a site which is known to contain:
  • Fraudulent claims or scams
  • Offensive material
  • Security vulnerabilities
  • Spyware or Adware
  • Spam related material
  • or other content deemed to be unsafe
Specifically, SiteHound blocks these categories:

• Adult • Spyware • Spam Advertising • Phishing • Possible scam or fraud • Misleading or False Advertising
• Pharming • Rogue or Suspect Product • Adware • Malware or Virus

System Requirements:
Internet Explorer 5.5+ and Windows 95/98/NT 4/ME/2000/XP

Product Info & Download: SiteHound Toolbar

For advanced users : ProcessGuard

ProcessGuard blocks rootkits, prevents spyware, guards your computer from DLL trojans...
For more information take a moment to read the Introduction and the Known Attacks information pages.
You can download Process Guard here

For advanced users : System Safety Monitor

System Safety Monitor (SSM) allows you to track down Microsoft Windows operating system activity in real-time and to prevent undesirable actions from various malware and spyware programs. SSM's main goal is to discover and block malicious actions of any application.
For more information take a moment to read the Main features of the program.
You can download SSM here

Use an AntiVirus Software

It is very important that your computer has an anti-virus software running on your machine. This alone can save you a lot of trouble with malware in the future. See the link below for a listing of some online & their stand-alone antivirus programs.
Computer Safety On line - Anti-Virus
http://forum.malware...pic.php?p=53#53

Update your Anti Virus Software

It is imperative that you update your Anti virus software at least once a week (Even more if you wish). If you do not update your anti virus software then it will not be able to catch any of the new variants that may come out.

Use a Firewall

I can not stress enough how important it is that you use a Firewall on your computer. Without a firewall your computer is susceptible to being hacked and taken over. Simply using a Firewall in its default configuration can lower your risk greatly. For an article on Firewalls and a listing of some available ones see the link below.
Computer Safety On line - Software Firewalls
http://forum.malware...pic.php?p=56#56
A tutorial on Understanding and Using Firewalls can be found here

Additional Information

For more information about Spyware, the tools available, and other informative material, including information on how you may have been infected in the first place, please check out this link.

A very nice collection of tutorials is available at Bleeping Computer
http://www.bleepingc....com/tutorials/

Finally, after following up on all these recommendations, why not run Jason Levine's Browser Security Tests ?
They will provide you with an insight on how vulnerable you might still be to a number of common exploits.
http://www.jasons-to...rowserSecurity/
  • 0
Back to Virus, Spyware, Malware Removal · Next Unread Topic →




Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

  1. Geeks to Go Community
  2. Security
  3. Virus, Spyware, Malware Removal

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP