Jump to content

Welcome to Geeks to Go - Register now for FREE

Need help with your computer or device? Want to learn new tech skills? You're in the right place!
Geeks to Go is a friendly community of tech experts who can solve any problem you have. Just create a free account and post your question. Our volunteers will reply quickly and guide you through the steps. Don't let tech troubles stop you. Join Geeks to Go now and get the support you need!

How it Works Create Account
Photo

System Alert: Malware threats/trojan-spy.win32@mx

Started by Thumperness , Oct 16 2006 10:33 AM

  • Please log in to reply

#1
Thumperness
Posted 16 October 2006 - 10:33 AM

Thumperness

    Member

  • Member
  • PipPip
  • 41 posts
EDIT: Now I'm also getting warnings about: NetWorm-i.virus@fp.

I now have these little baloons that pop up out of my tray saying "System Alert: Malware threats. Your computer is infected with a back door Trojan that allows the remote attacker to preform various malicious actions. Click this baloon to download malware removal software."

It used to say trojan-spy.win32@mx was found. Click to download software to fix this blah blah blah...

I have run everything in the "Do this stuff First" Section. Here are my logs.

Logfile of HijackThis v1.99.1
Scan saved at 12:18:49 PM, on 10/16/2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe
C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\System32\brsvc01a.exe
C:\WINDOWS\System32\brss01a.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\Program Files\MMediaCodec\pmsngr.exe
C:\WINDOWS\htpatch.exe
C:\Program Files\MMediaCodec\pmmon.exe
C:\Program Files\Iomega\AutoDisk\ADUserMon.exe
C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe
C:\Program Files\Iomega\DriveIcons\ImgIcon.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\Program Files\Common Files\Symantec Shared\ccApp.exe
C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe
C:\PROGRA~1\SYMANT~1\VPTray.exe
C:\Program Files\Symantec AntiVirus\DefWatch.exe
C:\Program Files\Google\Gmail Notifier\gnotify.exe
C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe
C:\Program Files\Java\jre1.5.0_08\bin\jusched.exe
C:\Program Files\Atomic Clock Sync\Atomic.exe
C:\PROGRA~1\Iomega\System32\AppServices.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
C:\Program Files\MSN Messenger\MsnMsgr.Exe
C:\Program Files\Common Files\Microsoft Shared\VS7Debug\mdm.exe
C:\Program Files\Messenger\msmsgs.exe
C:\WINDOWS\System32\nvsvc32.exe
C:\Program Files\Adobe\Acrobat 5.0\Distillr\AcroTray.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Symantec AntiVirus\Rtvscan.exe
C:\Program Files\Virtual CD v4\System\vcdsecs.exe
C:\Program Files\Trillian\trillian.exe
C:\Program Files\Iomega\AutoDisk\ADService.exe
C:\WINDOWS\system32\wscntfy.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\HJT\HijackThis.exe

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.demon.net
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.demon.net...emon/ie5/search
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = 192.168.0.1:87
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.demon.net;ftp.demon.co.uk;www.demon.co.uk
O1 - Hosts: 34.224.40.165 www.symantec.com
O1 - Hosts: 26.178.231.214 symantec.com
O1 - Hosts: 26.178.231.214 securityresponse.symantec.com
O1 - Hosts: 26.178.231.214 symantecstore.com
O1 - Hosts: 26.178.231.214 www.symantecstore.com
O1 - Hosts: 111.17.206.11 service1.symantec.com
O1 - Hosts: 111.17.206.11 sarc.com
O1 - Hosts: 111.17.206.11 www.sarc.com
O1 - Hosts: 111.17.206.11 www.sophos.com
O1 - Hosts: 68.240.180.63 sophos.com
O1 - Hosts: 68.240.180.63 www.mcafee.com
O1 - Hosts: 68.240.180.63 mcafee.com
O1 - Hosts: 68.240.180.63 customer.symantec.com
O1 - Hosts: 60.66.116.112 liveupdate.symantec.com
O1 - Hosts: 60.66.116.112 liveupdate.symantecliveupdate.com
O1 - Hosts: 60.66.116.112 www.viruslist.com
O1 - Hosts: 60.66.116.112 viruslist.com
O1 - Hosts: 17.34.91.165 f-secure.com
O1 - Hosts: 17.34.91.165 www.f-secure.com
O1 - Hosts: 17.34.91.165 f-prot.com
O1 - Hosts: 17.34.91.165 www.f-prot.com
O1 - Hosts: 9.114.27.213 kaspersky.com
O1 - Hosts: 9.114.27.213 kaspersky-labs.com
O1 - Hosts: 9.114.27.213 www.avp.com
O1 - Hosts: 9.114.27.213 avp.com
O1 - Hosts: 221.82.128.11 www.kaspersky.com
O1 - Hosts: 221.82.128.11 www.networkassociates.com
O1 - Hosts: 221.82.128.11 networkassociates.com
O1 - Hosts: 221.82.128.11 www.ca.com
O1 - Hosts: 51.177.103.63 www3.ca.com
O1 - Hosts: 51.177.103.63 ca.com
O1 - Hosts: 51.177.103.63 mast.mcafee.com
O1 - Hosts: 51.177.103.63 my-etrust.com
O1 - Hosts: 42.130.39.112 www.my-etrust.com
O1 - Hosts: 42.130.39.112 dispatch.mcafee.com
O1 - Hosts: 42.130.39.112 secure.nai.com
O1 - Hosts: 42.130.39.112 nai.com
O1 - Hosts: 254.225.13.164 www.nai.com
O1 - Hosts: 254.225.13.164 vil.nai.com
O1 - Hosts: 254.225.13.164 update.symantec.com
O1 - Hosts: 254.225.13.164 updates.symantec.com
O1 - Hosts: 211.65.243.216 us.mcafee.com
O1 - Hosts: 211.65.243.216 mcafee.net
O1 - Hosts: 211.65.243.216 rads.mcafee.com
O1 - Hosts: 211.65.243.216 download.mcafee.com
O1 - Hosts: 203.18.179.10 trendmicro.com
O1 - Hosts: 203.18.179.10 www.trendmicro.com
O1 - Hosts: 203.18.179.10 housecall.trendmicro.com
O1 - Hosts: 203.18.179.10 pandasoftware.com
O1 - Hosts: 160.113.154.63 www.pandasoftware.com
O1 - Hosts: 160.113.154.63 www.trendmicro.com
O1 - Hosts: 160.113.154.63 free.grisoft.com
O1 - Hosts: 160.113.154.63 www.grisoft.com
O1 - Hosts: 152.67.90.112 grisoft.com
O1 - Hosts: 152.67.90.112 clamav.net
O1 - Hosts: 152.67.90.112 www.clamav.net
O1 - Hosts: 152.67.90.112 free-av.com
O1 - Hosts: 237.34.191.164 www.free-av.com
O1 - Hosts: 237.34.191.164 www.avast.com
O1 - Hosts: 237.34.191.164 avast.com
O1 - Hosts: 237.34.191.164 cert.org
O1 - Hosts: 194.129.166.216 www.cert.org
O1 - Hosts: 194.129.166.216 www.microsoft.com
O1 - Hosts: 194.129.166.216 microsoft.com
O1 - Hosts: 194.129.166.216 www.virustotal.com
O1 - Hosts: 185.83.102.10 virustotal.com
O1 - Hosts: 185.83.102.10 www.teamanti-virus.org
O1 - Hosts: 185.83.102.10 teamanti-virus.org
O1 - Hosts: 185.83.102.10 www.drsolomon.com
O1 - Hosts: 142.177.76.62 drsolomon.com
O1 - Hosts: 142.177.76.62 www.virusbtn.com
O1 - Hosts: 142.177.76.62 virusbtn.com
O1 - Hosts: 142.177.76.62 update.microsoft.com
O1 - Hosts: 100.17.51.115 windowsupdate.microsoft.com
O1 - Hosts: 100.17.51.115 www.avgbulgaria.com
O1 - Hosts: 100.17.51.115 avgbulgaria.com
O1 - Hosts: 100.17.51.115 www.vet.com.au
O1 - Hosts: 91.226.242.164 vet.com.au
O1 - Hosts: 91.226.242.164 antivirus.about.com
O1 - Hosts: 91.226.242.164 www.avg-antivirus.net
O1 - Hosts: 91.226.242.164 avg-antivirus.net
O1 - Hosts: 48.65.216.216 nod32.com
O1 - Hosts: 48.65.216.216 www.nod32.com
O1 - Hosts: 48.65.216.216 virus-radar.com
O1 - Hosts: 48.65.216.216 www.virus-radar.com
O1 - Hosts: 40.19.152.10 bitdefender.com
O1 - Hosts: 40.19.152.10 www.bitdefender.com
O1 - Hosts: 40.19.152.10 www.freebyte.com
O1 - Hosts: 40.19.152.10 freebyte.com
O1 - Hosts: 125.114.254.62 www.zonelabs.com
O1 - Hosts: 125.114.254.62 zonelabs.com
O1 - Hosts: 125.114.254.62 download.zonelabs.com
O1 - Hosts: 82.81.228.114 smb.sygate.com
O1 - Hosts: 82.81.228.114 www.agnitum.com
O1 - Hosts: 82.81.228.114 agnitum.com
O1 - Hosts: 82.81.228.114 kasperskyusa.com
O1 - Hosts: 74.35.164.163 www.kasperskyusa.com
O1 - Hosts: 74.35.164.163 www.kaspersky.com.au
O1 - Hosts: 74.35.164.163 kaspersky.com.au
O1 - Hosts: 74.35.164.163 www.kaspersky.co.uk
O1 - Hosts: 31.130.139.216 kaspersky.co.uk
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_08\bin\ssv.dll
O4 - HKLM\..\Run: [HTpatch] C:\WINDOWS\htpatch.exe
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\System32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [ADUserMon] C:\Program Files\Iomega\AutoDisk\ADUserMon.exe
O4 - HKLM\..\Run: [Iomega Drive Icons] C:\Program Files\Iomega\DriveIcons\ImgIcon.exe
O4 - HKLM\..\Run: [Deskup] C:\Program Files\Iomega\DriveIcons\deskup.exe /IMGSTART
O4 - HKLM\..\Run: [NeroCheck] C:\WINDOWS\System32\\NeroCheck.exe
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Common Files\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [vptray] C:\PROGRA~1\SYMANT~1\VPTray.exe
O4 - HKLM\..\Run: [Symantec NetDriver Monitor] C:\PROGRA~1\SYMNET~1\SNDMon.exe /Enterprise
O4 - HKLM\..\Run: [{0228e555-4f9c-4e35-a3ec-b109a192b4c2}] C:\Program Files\Google\Gmail Notifier\gnotify.exe
O4 - HKLM\..\Run: [Cmaudio] RunDll32 cmicnfg.cpl,CMICtrlWnd
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [PK Guard 32] C:\WINDOWS\system32\winhelp\smss.exe
O4 - HKLM\..\Run: [AVG7_CC] C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe /STARTUP
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.5.0_08\bin\jusched.exe"
O4 - HKLM\..\Run: [WinAntiVirusPro2006] "C:\Program Files\WinAntiVirus Pro 2006\WinAV.exe" /min
O4 - HKLM\..\Run: [uwa6pcw] "C:\Program Files\Common Files\WinAntiVirus Pro 2006\uwa6pcw.exe" -c
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKLM\..\Run: [Atomic.exe] C:\Program Files\Atomic Clock Sync\Atomic.exe
O4 - HKLM\..\RunServices: [PK Guard 32] C:\WINDOWS\system32\winhelp\smss.exe
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [PK Guard 32] C:\WINDOWS\system32\winhelp\smss.exe
O4 - HKCU\..\Run: [RealPlayer] "C:\Program Files\Real\RealOne Player\realplay.exe" /RunUPGToolCommandReBoot
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\RunServices: [PK Guard 32] C:\WINDOWS\system32\winhelp\smss.exe
O4 - Startup: Trillian.lnk = C:\Program Files\Trillian\trillian.exe
O4 - Global Startup: Acrobat Assistant.lnk = C:\Program Files\Adobe\Acrobat 5.0\Distillr\AcroTray.exe
O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: Microsoft Outlook.lnk = ?
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\WINDOWS\System32\msjava.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\WINDOWS\System32\msjava.dll
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O12 - Plugin for .spop: C:\Program Files\Internet Explorer\Plugins\NPDocBox.dll
O14 - IERESET.INF: START_PAGE_URL=http://www.demon.net
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft....k/?linkid=39204
O16 - DPF: {88D758A3-D33B-45FD-91E3-67749B4057FA} - http://dm.screensave.../sinstaller.cab
O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) - http://acs.pandasoft...free/asinst.cab
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)
O20 - Winlogon Notify: NavLogon - C:\WINDOWS\system32\NavLogon.dll
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O23 - Service: AVG Anti-Spyware Guard - Anti-Malware Development a.s. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe
O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe
O23 - Service: BrSplService (Brother XP spl Service) - brother Industries Ltd - C:\WINDOWS\System32\brsvc01a.exe
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe
O23 - Service: Symantec Password Validation (ccPwdSvc) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccPwdSvc.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe
O23 - Service: Symantec AntiVirus Definition Watcher (DefWatch) - Symantec Corporation - C:\Program Files\Symantec AntiVirus\DefWatch.exe
O23 - Service: FileSaver_Service - Unknown owner - C:\Program Files\Energizer FileSaver\UPSMON_Service.Exe
O23 - Service: Iomega App Services - Iomega Corporation - C:\PROGRA~1\Iomega\System32\AppServices.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe
O23 - Service: SAVRoam (SavRoam) - symantec - C:\Program Files\Symantec AntiVirus\SavRoam.exe
O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\SNDSrvc.exe
O23 - Service: Symantec AntiVirus - Symantec Corporation - C:\Program Files\Symantec AntiVirus\Rtvscan.exe
O23 - Service: VCDSecS - H+H Software GmbH - C:\Program Files\Virtual CD v4\System\vcdsecs.exe
O23 - Service: Iomega Active Disk (_IOMEGA_ACTIVE_DISK_SERVICE_) - Iomega Corporation - C:\Program Files\Iomega\AutoDisk\ADService.exe

*** Uninstall LOG ***

Active Disk
Ad-Aware SE Personal
Adobe Acrobat 5.0
Adobe Atmosphere Player for Acrobat and Adobe Reader
Adobe Download Manager 1.2 (Remove Only)
Adobe MPEG Encoder
Adobe Photoshop 7.0
Adobe Photoshop Album 2.0 Starter Edition
Adobe Reader 7.0.8
Ahead InCD
AnswerWorks Runtime
Atomic Clock Sync
AutoCAD 2004
Autodesk Architectural 2004 Object Enabler
Autodesk DWF Viewer
Autodesk LiveEnabler - aecarchbase40
Autodesk LiveEnabler - aecarchdach40
Autodesk LiveEnabler - aecareacalculation40
Autodesk LiveEnabler - aecbase40
Autodesk LiveEnabler - aecproject40
Autodesk LiveEnabler - aecschedule40
Autodesk LiveEnabler - aecstructure40
Autodesk LiveEnabler - aecuibase40
Autodesk LiveEnabler 40 Uninstall
AVG Anti-Spyware 7.5
AVG Free Edition
Canon ScanGear Toolbox 3.1
C-Media WDM Audio Driver
EasyPack
EasyPackV43
Enable S3 for USB Device
Energizer FileSaver
Google Earth
Google Gmail Notifier
HighMAT Extension to Microsoft Windows XP CD Writing Wizard
HijackThis 1.99.1
Hotfix for Windows XP (KB896344)
HydraCALC V50
HydraLIST V50 Software
Hydratec Version 43 Software
HydraView V50
IomegaWare 4.0.3
J2SE Runtime Environment 5.0 Update 8
Java 2 Runtime Environment, SE v1.4.2
LiveReg (Symantec Corporation)
LiveUpdate 2.6 (Symantec Corporation)
Macromedia Flash Player 8
Microsoft .NET Framework 1.1
Microsoft .NET Framework 1.1
Microsoft .NET Framework 1.1 Hotfix (KB886903)
Microsoft .NET Framework 2.0
Microsoft Base Smart Card Cryptographic Service Provider Package
Microsoft Data Access Components KB870669
Microsoft Office XP Professional with FrontPage
Microsoft Streets and Trips 2004
Microsoft Windows Journal Viewer
Mozilla Firefox (1.0.7)
MSN Messenger 7.5
National Fire Codes - 2002 May Meeting Edition
National Fire Codes - 2005 June Meeting Edition
Nero - Burning Rom
NFPA's National Fire Codes
NVIDIA Display Driver
NVIDIA Windows 2000/XP Display Drivers
Panda ActiveScan
PowerQuest PartitionMagic 8.0
QuickTime
RealPlayer
Realtek AC'97 Audio
Roguescanfix 1.5
Safety Alerter 2006
Security Update for Microsoft .NET Framework 2.0 (KB917283)
Security Update for Microsoft .NET Framework 2.0 (KB922770)
Security Update for Windows Media Player (KB911564)
Security Update for Windows Media Player 10 (KB911565)
Security Update for Windows Media Player 10 (KB917734)
Security Update for Windows XP (KB883939)
Security Update for Windows XP (KB890046)
Security Update for Windows XP (KB893756)
Security Update for Windows XP (KB896358)
Security Update for Windows XP (KB896422)
Security Update for Windows XP (KB896423)
Security Update for Windows XP (KB896424)
Security Update for Windows XP (KB896428)
Security Update for Windows XP (KB896688)
Security Update for Windows XP (KB899587)
Security Update for Windows XP (KB899588)
Security Update for Windows XP (KB899589)
Security Update for Windows XP (KB899591)
Security Update for Windows XP (KB900725)
Security Update for Windows XP (KB901017)
Security Update for Windows XP (KB901214)
Security Update for Windows XP (KB902400)
Security Update for Windows XP (KB903235)
Security Update for Windows XP (KB904706)
Security Update for Windows XP (KB905414)
Security Update for Windows XP (KB905749)
Security Update for Windows XP (KB905915)
Security Update for Windows XP (KB908519)
Security Update for Windows XP (KB908531)
Security Update for Windows XP (KB911280)
Security Update for Windows XP (KB911562)
Security Update for Windows XP (KB911567)
Security Update for Windows XP (KB911927)
Security Update for Windows XP (KB912812)
Security Update for Windows XP (KB912919)
Security Update for Windows XP (KB913446)
Security Update for Windows XP (KB913580)
Security Update for Windows XP (KB914388)
Security Update for Windows XP (KB914389)
Security Update for Windows XP (KB916281)
Security Update for Windows XP (KB917159)
Security Update for Windows XP (KB917344)
Security Update for Windows XP (KB917422)
Security Update for Windows XP (KB917953)
Security Update for Windows XP (KB918439)
Security Update for Windows XP (KB918899)
Security Update for Windows XP (KB919007)
Security Update for Windows XP (KB920214)
Security Update for Windows XP (KB920670)
Security Update for Windows XP (KB920683)
Security Update for Windows XP (KB920685)
Security Update for Windows XP (KB921398)
Security Update for Windows XP (KB921883)
Security Update for Windows XP (KB922616)
Security Update for Windows XP (KB922819)
Security Update for Windows XP (KB923191)
Security Update for Windows XP (KB923414)
Security Update for Windows XP (KB924191)
Security Update for Windows XP (KB924496)
Security Update for Windows XP (KB925486)
Sentinel System Driver
Shockwave
SoftV92 Data Fax Modem
Symantec AntiVirus
System Requirements Lab
Tol-Brace 5.0
Trillian
Update for Windows XP (KB894391)
Update for Windows XP (KB896727)
Update for Windows XP (KB898461)
Update for Windows XP (KB900485)
Update for Windows XP (KB900930)
Update for Windows XP (KB904942)
Update for Windows XP (KB910437)
Update for Windows XP (KB916595)
Update for Windows XP (KB920872)
Update for Windows XP (KB922582)
Virtual CD v4
Volo View Express
Windows Defender Signatures
Windows Installer 3.1 (KB893803)
Windows Installer 3.1 (KB893803)
Windows Media Connect
Windows Media Connect
Windows Media Format Runtime
Windows Media Format SDK Hotfix - KB891122
Windows Media Player 10
Windows Rights Management Client
Windows Rights Management Client Backwards Compatibility
Windows XP Hotfix - KB834707
Windows XP Hotfix - KB867282
Windows XP Hotfix - KB873333
Windows XP Hotfix - KB873339
Windows XP Hotfix - KB885250
Windows XP Hotfix - KB885835
Windows XP Hotfix - KB885836
Windows XP Hotfix - KB885884
Windows XP Hotfix - KB886185
Windows XP Hotfix - KB887472
Windows XP Hotfix - KB887742
Windows XP Hotfix - KB887797
Windows XP Hotfix - KB888113
Windows XP Hotfix - KB888302
Windows XP Hotfix - KB890047
Windows XP Hotfix - KB890175
Windows XP Hotfix - KB890859
Windows XP Hotfix - KB890923
Windows XP Hotfix - KB891781
Windows XP Hotfix - KB893066
Windows XP Hotfix - KB893086
Windows XP Service Pack 2
WinZip
XviD MPEG-4 Codec


Incident Status Location

Adware:Adware/MMediaCodec Not disinfected C:\Program Files\MMediaCodec\pmmon.exe
Adware:Adware/VideosCodec Not disinfected C:\Program Files\MMediaCodec\pmsngr.exe
Potentially unwanted tool:application/winantivirus2006 Not disinfected C:\Documents and Settings\Unknown User\Application Data\WinAntiVirus Pro 2006
Adware:adware/comet Not disinfected Windows Registry
Spyware:spyware/betterinet Not disinfected Windows Registry
Potentially unwanted tool:application/myway Not disinfected HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\{0494D0D9-F8E0-41AD-92A3-14154ECE70AC}
Spyware:Cookie/Malwarewipe Not disinfected C:\Documents and Settings\Unknown User\Cookies\unknown user@malwarewipe[1].txt
Potentially unwanted tool:Application/Processor Not disinfected C:\Program Files\Roguescanfix\Process.exe


If I have forgetten anything, please email me so I can get it for you. :whistling:

Thanx for your support

Thumperness
[email protected]

Edited by Thumperness, 16 October 2006 - 01:21 PM.

  • 0

Advertisements

Back to Virus, Spyware, Malware Removal · Next Unread Topic →




Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

  1. Geeks to Go Community
  2. Security
  3. Virus, Spyware, Malware Removal

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP