Jump to content

Welcome to Geeks to Go - Register now for FREE

Need help with your computer or device? Want to learn new tech skills? You're in the right place!
Geeks to Go is a friendly community of tech experts who can solve any problem you have. Just create a free account and post your question. Our volunteers will reply quickly and guide you through the steps. Don't let tech troubles stop you. Join Geeks to Go now and get the support you need!

How it Works Create Account
Photo

Am I still infected with 1stBar?

Started by adydye , Oct 25 2006 12:15 PM

  • Please log in to reply

#1
adydye
Posted 25 October 2006 - 12:15 PM

adydye

    Member

  • Member
  • PipPip
  • 49 posts
Please have a look....

---------------------------------------------------------
AVG Anti-Spyware - Scan Report
---------------------------------------------------------

+ Created at: 17:41:48 25/10/2006

+ Scan result:



C:\System Volume Information\_restore{50A0F729-8A07-4332-9EA2-B3D94C713BBB}\RP45\A0025211.DLL -> Adware.IWon : No action taken.
C:\System Volume Information\_restore{50A0F729-8A07-4332-9EA2-B3D94C713BBB}\RP45\A0025212.DLL -> Adware.IWon : No action taken.
C:\System Volume Information\_restore{50A0F729-8A07-4332-9EA2-B3D94C713BBB}\RP45\A0025210.dll -> Adware.Minibug : No action taken.
C:\System Volume Information\_restore{50A0F729-8A07-4332-9EA2-B3D94C713BBB}\RP45\A0025213.EXE -> Adware.MyWebSearch : No action taken.
C:\System Volume Information\_restore{50A0F729-8A07-4332-9EA2-B3D94C713BBB}\RP45\A0025208.DLL -> Downloader.IstBar : No action taken.
C:\System Volume Information\_restore{50A0F729-8A07-4332-9EA2-B3D94C713BBB}\RP45\A0025209.DLL -> Downloader.IstBar : No action taken.
:mozilla.10:C:\Recycled\NPROTECT\00000028.MOZ -> TrackingCookie.Serving-sys : No action taken.
:mozilla.10:C:\Recycled\NPROTECT\00000029.MOZ -> TrackingCookie.Serving-sys : No action taken.
:mozilla.10:C:\Recycled\NPROTECT\00000031.MOZ -> TrackingCookie.Serving-sys : No action taken.
:mozilla.11:C:\Recycled\NPROTECT\00000028.MOZ -> TrackingCookie.Serving-sys : No action taken.
:mozilla.11:C:\Recycled\NPROTECT\00000029.MOZ -> TrackingCookie.Serving-sys : No action taken.
:mozilla.11:C:\Recycled\NPROTECT\00000031.MOZ -> TrackingCookie.Serving-sys : No action taken.
:mozilla.11:C:\Recycled\NPROTECT\00000032.MOZ -> TrackingCookie.Serving-sys : No action taken.
:mozilla.11:C:\Recycled\NPROTECT\00000033.MOZ -> TrackingCookie.Serving-sys : No action taken.
:mozilla.11:C:\Recycled\NPROTECT\00000036.MOZ -> TrackingCookie.Serving-sys : No action taken.
:mozilla.12:C:\Recycled\NPROTECT\00000029.MOZ -> TrackingCookie.Serving-sys : No action taken.
:mozilla.12:C:\Recycled\NPROTECT\00000031.MOZ -> TrackingCookie.Serving-sys : No action taken.
:mozilla.12:C:\Recycled\NPROTECT\00000032.MOZ -> TrackingCookie.Serving-sys : No action taken.
:mozilla.12:C:\Recycled\NPROTECT\00000033.MOZ -> TrackingCookie.Serving-sys : No action taken.
:mozilla.12:C:\Recycled\NPROTECT\00000036.MOZ -> TrackingCookie.Serving-sys : No action taken.
:mozilla.13:C:\Recycled\NPROTECT\00000029.MOZ -> TrackingCookie.Serving-sys : No action taken.
:mozilla.13:C:\Recycled\NPROTECT\00000031.MOZ -> TrackingCookie.Serving-sys : No action taken.
:mozilla.13:C:\Recycled\NPROTECT\00000032.MOZ -> TrackingCookie.Serving-sys : No action taken.
:mozilla.13:C:\Recycled\NPROTECT\00000033.MOZ -> TrackingCookie.Serving-sys : No action taken.
:mozilla.13:C:\Recycled\NPROTECT\00000036.MOZ -> TrackingCookie.Serving-sys : No action taken.
:mozilla.14:C:\Recycled\NPROTECT\00000031.MOZ -> TrackingCookie.Serving-sys : No action taken.
:mozilla.14:C:\Recycled\NPROTECT\00000032.MOZ -> TrackingCookie.Serving-sys : No action taken.
:mozilla.14:C:\Recycled\NPROTECT\00000033.MOZ -> TrackingCookie.Serving-sys : No action taken.
:mozilla.14:C:\Recycled\NPROTECT\00000036.MOZ -> TrackingCookie.Serving-sys : No action taken.
:mozilla.14:C:\Recycled\NPROTECT\00000037.MOZ -> TrackingCookie.Serving-sys : No action taken.
:mozilla.14:C:\Recycled\NPROTECT\00000038.MOZ -> TrackingCookie.Serving-sys : No action taken.
:mozilla.14:C:\Recycled\NPROTECT\00000053.MOZ -> TrackingCookie.Serving-sys : No action taken.
:mozilla.15:C:\Recycled\NPROTECT\00000032.MOZ -> TrackingCookie.Serving-sys : No action taken.
:mozilla.15:C:\Recycled\NPROTECT\00000033.MOZ -> TrackingCookie.Serving-sys : No action taken.
:mozilla.15:C:\Recycled\NPROTECT\00000036.MOZ -> TrackingCookie.Serving-sys : No action taken.
:mozilla.15:C:\Recycled\NPROTECT\00000037.MOZ -> TrackingCookie.Serving-sys : No action taken.
:mozilla.15:C:\Recycled\NPROTECT\00000038.MOZ -> TrackingCookie.Serving-sys : No action taken.
:mozilla.15:C:\Recycled\NPROTECT\00000053.MOZ -> TrackingCookie.Serving-sys : No action taken.
:mozilla.15:C:\Recycled\NPROTECT\00000062.MOZ -> TrackingCookie.Serving-sys : No action taken.
:mozilla.15:C:\Recycled\NPROTECT\00000063.MOZ -> TrackingCookie.Serving-sys : No action taken.
:mozilla.15:C:\Recycled\NPROTECT\00000064.MOZ -> TrackingCookie.Serving-sys : No action taken.
:mozilla.15:C:\Recycled\NPROTECT\00000065.MOZ -> TrackingCookie.Serving-sys : No action taken.
:mozilla.15:C:\Recycled\NPROTECT\00000066.MOZ -> TrackingCookie.Serving-sys : No action taken.
:mozilla.16:C:\Recycled\NPROTECT\00000037.MOZ -> TrackingCookie.Serving-sys : No action taken.
:mozilla.16:C:\Recycled\NPROTECT\00000038.MOZ -> TrackingCookie.Serving-sys : No action taken.
:mozilla.16:C:\Recycled\NPROTECT\00000053.MOZ -> TrackingCookie.Serving-sys : No action taken.
:mozilla.16:C:\Recycled\NPROTECT\00000062.MOZ -> TrackingCookie.Serving-sys : No action taken.
:mozilla.16:C:\Recycled\NPROTECT\00000063.MOZ -> TrackingCookie.Serving-sys : No action taken.
:mozilla.16:C:\Recycled\NPROTECT\00000064.MOZ -> TrackingCookie.Serving-sys : No action taken.
:mozilla.16:C:\Recycled\NPROTECT\00000065.MOZ -> TrackingCookie.Serving-sys : No action taken.
:mozilla.16:C:\Recycled\NPROTECT\00000066.MOZ -> TrackingCookie.Serving-sys : No action taken.
:mozilla.17:C:\Recycled\NPROTECT\00000037.MOZ -> TrackingCookie.Serving-sys : No action taken.
:mozilla.17:C:\Recycled\NPROTECT\00000038.MOZ -> TrackingCookie.Serving-sys : No action taken.
:mozilla.17:C:\Recycled\NPROTECT\00000053.MOZ -> TrackingCookie.Serving-sys : No action taken.
:mozilla.17:C:\Recycled\NPROTECT\00000062.MOZ -> TrackingCookie.Serving-sys : No action taken.
:mozilla.17:C:\Recycled\NPROTECT\00000063.MOZ -> TrackingCookie.Serving-sys : No action taken.
:mozilla.17:C:\Recycled\NPROTECT\00000064.MOZ -> TrackingCookie.Serving-sys : No action taken.
:mozilla.17:C:\Recycled\NPROTECT\00000065.MOZ -> TrackingCookie.Serving-sys : No action taken.
:mozilla.17:C:\Recycled\NPROTECT\00000066.MOZ -> TrackingCookie.Serving-sys : No action taken.
:mozilla.17:C:\Recycled\NPROTECT\00000068.MOZ -> TrackingCookie.Serving-sys : No action taken.
:mozilla.18:C:\Recycled\NPROTECT\00000037.MOZ -> TrackingCookie.Serving-sys : No action taken.
:mozilla.18:C:\Recycled\NPROTECT\00000038.MOZ -> TrackingCookie.Serving-sys : No action taken.
:mozilla.18:C:\Recycled\NPROTECT\00000053.MOZ -> TrackingCookie.Serving-sys : No action taken.
:mozilla.18:C:\Recycled\NPROTECT\00000062.MOZ -> TrackingCookie.Serving-sys : No action taken.
:mozilla.18:C:\Recycled\NPROTECT\00000063.MOZ -> TrackingCookie.Serving-sys : No action taken.
:mozilla.18:C:\Recycled\NPROTECT\00000064.MOZ -> TrackingCookie.Serving-sys : No action taken.
:mozilla.18:C:\Recycled\NPROTECT\00000065.MOZ -> TrackingCookie.Serving-sys : No action taken.
:mozilla.18:C:\Recycled\NPROTECT\00000066.MOZ -> TrackingCookie.Serving-sys : No action taken.
:mozilla.18:C:\Recycled\NPROTECT\00000068.MOZ -> TrackingCookie.Serving-sys : No action taken.
:mozilla.19:C:\Recycled\NPROTECT\00000062.MOZ -> TrackingCookie.Serving-sys : No action taken.
:mozilla.19:C:\Recycled\NPROTECT\00000063.MOZ -> TrackingCookie.Serving-sys : No action taken.
:mozilla.19:C:\Recycled\NPROTECT\00000064.MOZ -> TrackingCookie.Serving-sys : No action taken.
:mozilla.19:C:\Recycled\NPROTECT\00000065.MOZ -> TrackingCookie.Serving-sys : No action taken.
:mozilla.19:C:\Recycled\NPROTECT\00000066.MOZ -> TrackingCookie.Serving-sys : No action taken.
:mozilla.19:C:\Recycled\NPROTECT\00000068.MOZ -> TrackingCookie.Serving-sys : No action taken.
:mozilla.20:C:\Recycled\NPROTECT\00000068.MOZ -> TrackingCookie.Serving-sys : No action taken.
:mozilla.20:C:\Recycled\NPROTECT\00000069.MOZ -> TrackingCookie.Serving-sys : No action taken.
:mozilla.21:C:\Recycled\NPROTECT\00000068.MOZ -> TrackingCookie.Serving-sys : No action taken.
:mozilla.21:C:\Recycled\NPROTECT\00000069.MOZ -> TrackingCookie.Serving-sys : No action taken.
:mozilla.22:C:\Recycled\NPROTECT\00000069.MOZ -> TrackingCookie.Serving-sys : No action taken.
:mozilla.23:C:\Recycled\NPROTECT\00000069.MOZ -> TrackingCookie.Serving-sys : No action taken.
:mozilla.23:C:\Recycled\NPROTECT\00000070.MOZ -> TrackingCookie.Serving-sys : No action taken.
:mozilla.23:C:\Recycled\NPROTECT\00000071.MOZ -> TrackingCookie.Serving-sys : No action taken.
:mozilla.24:C:\Recycled\NPROTECT\00000069.MOZ -> TrackingCookie.Serving-sys : No action taken.
:mozilla.24:C:\Recycled\NPROTECT\00000070.MOZ -> TrackingCookie.Serving-sys : No action taken.
:mozilla.24:C:\Recycled\NPROTECT\00000071.MOZ -> TrackingCookie.Serving-sys : No action taken.
:mozilla.24:C:\Recycled\NPROTECT\00000072.MOZ -> TrackingCookie.Serving-sys : No action taken.
:mozilla.25:C:\Recycled\NPROTECT\00000070.MOZ -> TrackingCookie.Serving-sys : No action taken.
:mozilla.25:C:\Recycled\NPROTECT\00000071.MOZ -> TrackingCookie.Serving-sys : No action taken.
:mozilla.25:C:\Recycled\NPROTECT\00000072.MOZ -> TrackingCookie.Serving-sys : No action taken.
:mozilla.25:C:\Recycled\NPROTECT\00000073.MOZ -> TrackingCookie.Serving-sys : No action taken.
:mozilla.26:C:\Recycled\NPROTECT\00000070.MOZ -> TrackingCookie.Serving-sys : No action taken.
:mozilla.26:C:\Recycled\NPROTECT\00000071.MOZ -> TrackingCookie.Serving-sys : No action taken.
:mozilla.26:C:\Recycled\NPROTECT\00000072.MOZ -> TrackingCookie.Serving-sys : No action taken.
:mozilla.26:C:\Recycled\NPROTECT\00000073.MOZ -> TrackingCookie.Serving-sys : No action taken.
:mozilla.26:C:\Recycled\NPROTECT\00000074.MOZ -> TrackingCookie.Serving-sys : No action taken.
:mozilla.27:C:\Recycled\NPROTECT\00000070.MOZ -> TrackingCookie.Serving-sys : No action taken.
:mozilla.27:C:\Recycled\NPROTECT\00000071.MOZ -> TrackingCookie.Serving-sys : No action taken.
:mozilla.27:C:\Recycled\NPROTECT\00000072.MOZ -> TrackingCookie.Serving-sys : No action taken.
:mozilla.27:C:\Recycled\NPROTECT\00000073.MOZ -> TrackingCookie.Serving-sys : No action taken.
:mozilla.27:C:\Recycled\NPROTECT\00000074.MOZ -> TrackingCookie.Serving-sys : No action taken.
:mozilla.28:C:\Recycled\NPROTECT\00000072.MOZ -> TrackingCookie.Serving-sys : No action taken.
:mozilla.28:C:\Recycled\NPROTECT\00000073.MOZ -> TrackingCookie.Serving-sys : No action taken.
:mozilla.28:C:\Recycled\NPROTECT\00000074.MOZ -> TrackingCookie.Serving-sys : No action taken.
:mozilla.29:C:\Recycled\NPROTECT\00000073.MOZ -> TrackingCookie.Serving-sys : No action taken.
:mozilla.29:C:\Recycled\NPROTECT\00000074.MOZ -> TrackingCookie.Serving-sys : No action taken.
:mozilla.30:C:\Recycled\NPROTECT\00000074.MOZ -> TrackingCookie.Serving-sys : No action taken.
:mozilla.32:C:\System Volume Information\_restore{50A0F729-8A07-4332-9EA2-B3D94C713BBB}\RP45\A0024926.OLD -> TrackingCookie.Serving-sys : No action taken.
:mozilla.33:C:\System Volume Information\_restore{50A0F729-8A07-4332-9EA2-B3D94C713BBB}\RP45\A0024926.OLD -> TrackingCookie.Serving-sys : No action taken.
:mozilla.34:C:\System Volume Information\_restore{50A0F729-8A07-4332-9EA2-B3D94C713BBB}\RP45\A0024926.OLD -> TrackingCookie.Serving-sys : No action taken.
:mozilla.35:C:\System Volume Information\_restore{50A0F729-8A07-4332-9EA2-B3D94C713BBB}\RP45\A0024926.OLD -> TrackingCookie.Serving-sys : No action taken.
:mozilla.36:C:\System Volume Information\_restore{50A0F729-8A07-4332-9EA2-B3D94C713BBB}\RP45\A0024926.OLD -> TrackingCookie.Serving-sys : No action taken.
:mozilla.6:C:\Recycled\NPROTECT\00000028.MOZ -> TrackingCookie.Serving-sys : No action taken.
:mozilla.7:C:\Recycled\NPROTECT\00000028.MOZ -> TrackingCookie.Serving-sys : No action taken.
:mozilla.8:C:\Recycled\NPROTECT\00000028.MOZ -> TrackingCookie.Serving-sys : No action taken.
:mozilla.9:C:\Recycled\NPROTECT\00000029.MOZ -> TrackingCookie.Serving-sys : No action taken.
:mozilla.30:C:\System Volume Information\_restore{50A0F729-8A07-4332-9EA2-B3D94C713BBB}\RP45\A0024926.OLD -> TrackingCookie.Sitestat : No action taken.


::Report end

Panda Activescan Report:


Incident Status Location

Potentially unwanted tool:application/mywebsearch Not disinfected HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{07B18EAB-A523-4961-B6BB-170DE4475CCA}
Spyware:Cookie/Serving-sys Not disinfected C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\s5x09t2a.default\cookies.txt[.serving-sys.com/]
Spyware:Cookie/Serving-sys Not disinfected C:\Recycled\NPROTECT\00000093.MOZ[.serving-sys.com/]
Spyware:Cookie/Serving-sys Not disinfected C:\Recycled\NPROTECT\00000094.MOZ[.serving-sys.com/]
Spyware:Cookie/Serving-sys Not disinfected C:\Recycled\NPROTECT\00000095.MOZ[.serving-sys.com/]
Spyware:Cookie/Serving-sys Not disinfected C:\Recycled\NPROTECT\00000097.MOZ[.serving-sys.com/]

Logfile of HijackThis v1.99.1
Scan saved at 19:13:04, on 25/10/2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINNT\System32\smss.exe
C:\WINNT\system32\winlogon.exe
C:\WINNT\system32\services.exe
C:\WINNT\system32\lsass.exe
C:\WINNT\system32\svchost.exe
C:\WINNT\System32\svchost.exe
C:\WINNT\Explorer.EXE
C:\WINNT\system32\ZONELABS\vsmon.exe
C:\WINNT\system32\spoolsv.exe
C:\WINNT\system32\atievxx.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe
C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe
C:\Program Files\IVT Corporation\BlueSoleil\BTNtService.exe
C:\Program Files\Norton SystemWorks\Norton Utilities\NPROTECT.EXE
C:\PROGRA~1\NORTON~1\SPEEDD~1\nopdb.exe
C:\WINNT\system32\svchost.exe
C:\WINNT\system32\UStorSrv.exe
C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe
C:\WINNT\FixCamera.exe
C:\WINNT\tsnp2std.exe
C:\WINNT\vsnp2std.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\WLAN\802.11 Wireless LAN\WlanMonitor.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\WINNT\System32\svchost.exe
C:\Documents and Settings\Administrator\My Documents\Setup Files\Spy\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://uk.yahoo.com/
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O4 - HKLM\..\Run: [REGSHAVE] C:\Program Files\REGSHAVE\REGSHAVE.EXE /AUTORUN
O4 - HKLM\..\Run: [AVG7_CC] C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe /STARTUP
O4 - HKLM\..\Run: [FixCamera] C:\WINNT\FixCamera.exe
O4 - HKLM\..\Run: [tsnp2std] C:\WINNT\tsnp2std.exe
O4 - HKLM\..\Run: [snp2std] C:\WINNT\vsnp2std.exe
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [Zone Labs Client] "C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe"
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - Startup: Configuration & Monitor Utility.lnk = C:\Program Files\WLAN\802.11 Wireless LAN\WlanMonitor.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.micros...b?1159286523934
O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) - http://acs.pandasoft...free/asinst.cab
O20 - Winlogon Notify: ActiveSync - C:\WINNT\SYSTEM32\WcesWlgn.dll
O23 - Service: AVG Anti-Spyware Guard - Anti-Malware Development a.s. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe
O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe
O23 - Service: BlueSoleil Hid Service - Unknown owner - C:\Program Files\IVT Corporation\BlueSoleil\BTNtService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iPodService - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Norton Unerase Protection (NProtectService) - Symantec Corporation - C:\Program Files\Norton SystemWorks\Norton Utilities\NPROTECT.EXE
O23 - Service: Pml Driver HPZ12 - HP - C:\WINNT\system32\HPZipm12.exe
O23 - Service: Speed Disk service - Symantec Corporation - C:\PROGRA~1\NORTON~1\SPEEDD~1\nopdb.exe
O23 - Service: UStorage Server Service - OTi - C:\WINNT\system32\UStorSrv.exe
O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - C:\WINNT\system32\ZONELABS\vsmon.exe

Thanks
Ady
  • 0

Advertisements

Back to Virus, Spyware, Malware Removal · Next Unread Topic →




Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

  1. Geeks to Go Community
  2. Security
  3. Virus, Spyware, Malware Removal

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP