Jump to content

Welcome to Geeks to Go - Register now for FREE

Need help with your computer or device? Want to learn new tech skills? You're in the right place!
Geeks to Go is a friendly community of tech experts who can solve any problem you have. Just create a free account and post your question. Our volunteers will reply quickly and guide you through the steps. Don't let tech troubles stop you. Join Geeks to Go now and get the support you need!

How it Works Create Account
Photo

Trojan.Win32.NetSky

Started by bigchiefrandomchaos , Nov 05 2007 05:33 AM

  • Please log in to reply

#1
bigchiefrandomchaos
Posted 05 November 2007 - 05:33 AM

bigchiefrandomchaos

    New Member

  • Member
  • Pip
  • 1 posts
Any help would be much appreciated as the computer has become completely useless and I need it for work. I have the red screen with the wierd symbol as described by others on this site.
Thanks for any help

Here is the Hijackthis report

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 11:14:33, on 05/11/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16544)
Boot mode: Safe mode with network support

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Windows Defender\MsMpEng.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\Program Files\Intel\Wireless\Bin\ZcfgSvc.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://softwarerefer...=...6Ojg5&lid=2
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft....k/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft....k/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft....k/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft....k/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigURL = http://localhost:9100/proxy.pac
R3 - Default URLSearchHook is missing
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: DriveLetterAccess - {5CA3D70E-1895-11CF-8E15-001234567890} - C:\WINDOWS\system32\dla\tfswshx.dll
O2 - BHO: NCO 2.0 IE BHO - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files\Common Files\Symantec Shared\coShared\Browser\2.0\coIEPlg.dll
O2 - BHO: Google Web Accelerator Helper - {69A87B7D-DE56-4136-9655-716BA50C19C7} - C:\Program Files\Google\Web Accelerator\GoogleWebAccToolbar.dll
O2 - BHO: Symantec Intrusion Prevention - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\PROGRA~1\COMMON~1\SYMANT~1\IDS\IPSBHO.dll
O2 - BHO: MSVPS System - {FC91E698-C4BA-4564-9B85-659E38FCE154} - C:\WINDOWS\advrepgds.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O3 - Toolbar: Google Web Accelerator - {DB87BFA2-A2E3-451E-8E5A-C89982D87CBF} - C:\Program Files\Google\Web Accelerator\GoogleWebAccToolbar.dll
O3 - Toolbar: Show Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files\Common Files\Symantec Shared\coShared\Browser\2.0\CoIEPlg.dll
O3 - Toolbar: The sdrmod - {89DA4F2C-91AE-44B2-84A9-A5D9F682E737} - C:\WINDOWS\SDRMOD.DLL
O4 - HKLM\..\Run: [Apoint] C:\Program Files\Apoint\Apoint.exe
O4 - HKLM\..\Run: [ATIPTA] "C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe"
O4 - HKLM\..\Run: [IntelWireless] C:\Program Files\Intel\Wireless\Bin\ifrmewrk.exe /tf Intel PROSet/Wireless
O4 - HKLM\..\Run: [DVDLauncher] "C:\Program Files\CyberLink\PowerDVD\DVDLauncher.exe"
O4 - HKLM\..\Run: [DMXLauncher] C:\Program Files\Dell\Media Experience\DMXLauncher.exe
O4 - HKLM\..\Run: [dla] C:\WINDOWS\system32\dla\tfswctrl.exe
O4 - HKLM\..\Run: [ISUSPM Startup] C:\PROGRA~1\COMMON~1\INSTAL~1\UPDATE~1\ISUSPM.exe -startup
O4 - HKLM\..\Run: [ISUSScheduler] "C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe" -start
O4 - HKLM\..\Run: [MSKDetectorExe] C:\Program Files\McAfee\SpamKiller\MSKDetct.exe /uninstall
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [PCSuiteTrayApplication] C:\PROGRA~1\Nokia\NOKIAP~1\LAUNCH~1.EXE -startup
O4 - HKLM\..\Run: [My Web Search Bar Search Scope Monitor] "C:\PROGRA~1\MYWEBS~1\bar\2.bin\m3SrchMn.exe" /m=0
O4 - HKLM\..\Run: [Adobe Photo Downloader] "C:\Program Files\Adobe\Photoshop Album Starter Edition\3.0\Apps\apdproxy.exe"
O4 - HKLM\..\Run: [FixCamera] C:\WINDOWS\FixCamera.exe
O4 - HKLM\..\Run: [tsnp2std] C:\WINDOWS\tsnp2std.exe
O4 - HKLM\..\Run: [snp2std] C:\WINDOWS\vsnp2std.exe
O4 - HKLM\..\Run: [Google Desktop Search] "C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe" /startup
O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Common Files\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [osCheck] "C:\Program Files\Norton Internet Security\osCheck.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [Windows Defender] "C:\Program Files\Windows Defender\MSASCui.exe" -hide
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [PcSync] C:\Program Files\Nokia\Nokia PC Suite 6\PCSync2.exe /NoDialog
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
O4 - HKCU\..\RunOnce: [FFTI] C:\Documents and Settings\paul craig\Application Data\Mozilla\Firefox\Profiles\gyowgn5d.default\extensions\{B13721C7-F507-4982-B2E5-502A71474FED}\ffti.exe /VERYSILENT /SUPPRESSMSGBOXES /NORESTART /DestPath="C:\Documents and Settings\paul craig\Application Data\Mozilla\Firefox\Profiles/gyowgn5d.default\extensions\{B13721C7-F507-4982-B2E5-502A71474FED}"
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\Run: [DWQueuedReporting] "C:\PROGRA~1\COMMON~1\MICROS~1\DW\dwtrig20.exe" -t (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\RunOnce: [RunNarrator] Narrator.exe (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - HKUS\.DEFAULT\..\RunOnce: [RunNarrator] Narrator.exe (User 'Default user')
O4 - Startup: Adobe Gamma.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Startup: StarOffice 8.lnk = C:\Program Files\Sun\StarOffice 8\program\quickstart.exe
O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: BlueSoleil.lnk = ?
O4 - Global Startup: Digital Line Detect.lnk = ?
O4 - Global Startup: Run Google Web Accelerator.lnk = C:\Program Files\Google\Web Accelerator\GoogleWebAccWarden.exe
O8 - Extra context menu item: &Search - http://edits.mywebse...?p=ZUxdm080YYIE
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office12\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\j2re1.4.2_03\bin\npjpi142_03.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\j2re1.4.2_03\bin\npjpi142_03.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {1D4DB7D2-6EC9-47A3-BD87-1E41684E07BB} - http://ak.exe.imgfar...tup1.0.0.15.cab
O16 - DPF: {238F6F83-B8B4-11CF-8771-00A024541EE3} (Citrix ICA Client) - http://a516.g.akamai...cat-no-eula.cab
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://www.update.mi...b?1193739347812
O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) - http://acs.pandasoft...free/asinst.cab
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O20 - Winlogon Notify: !SASWinLogon - C:\Program Files\SUPERAntiSpyware\SASWINLO.DLL
O21 - SSODL: hupsrv - {2872B144-C96F-40AA-81A6-2058EC6FADA1} - C:\WINDOWS\hupsrv.dll
O21 - SSODL: bindmod - {5A6A2601-5F95-4ECD-AFD1-04D99B983829} - C:\WINDOWS\bindmod.dll
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: Automatic LiveUpdate Scheduler - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\AluSchedulerSvc.exe
O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: BlueSoleil Hid Service - Unknown owner - C:\Program Files\IVT Corporation\BlueSoleil\BTNtService.exe
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: COM Host (comHost) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\VAScanner\comHost.exe
O23 - Service: Crypkey License - Kenonic Controls Ltd. - C:\WINDOWS\SYSTEM32\crypserv.exe
O23 - Service: EvtEng - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iolo DMV Service (ioloDMV) - Unknown owner - C:\Program Files\iolo\Common\Lib\ioloDMVSvc.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: KService - Unknown owner - C:\Program Files\Kontiki\KService.exe
O23 - Service: LiveUpdate - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\LuComServer_3_4.EXE
O23 - Service: LiveUpdate Notice - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: Macromedia Licensing Service - Macromedia - C:\Program Files\Common Files\Macromedia Shared\Service\Macromedia Licensing.exe
O23 - Service: NICCONFIGSVC - Dell Inc. - C:\Program Files\Dell\NICCONFIGSVC\NICCONFIGSVC.exe
O23 - Service: RegSrvc - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
O23 - Service: Spectrum24 Event Monitor (S24EventMonitor) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
O23 - Service: ServiceLayer - Nokia. - C:\Program Files\Common Files\PCSuite\Services\ServiceLayer.exe
O23 - Service: Symantec Core LC - Unknown owner - C:\PROGRA~1\COMMON~1\SYMANT~1\CCPD-LC\symlcsvc.exe
O23 - Service: TabletService - Wacom Technology, Corp. - C:\WINDOWS\system32\Tablet.exe
O23 - Service: WLANKEEPER - Intel® Corporation - C:\Program Files\Intel\Wireless\Bin\WLKeeper.exe
O24 - Desktop Component 0: Privacy Protection - file:///C:\WINDOWS\privacy_danger\index.htm

--
End of file - 12186 bytes


Here is the uninstall list

4oD
Adobe Anchor Service CS3
Adobe Asset Services CS3
Adobe Bridge CS3
Adobe Bridge Start Meeting
Adobe Camera Raw 4.0
Adobe CMaps
Adobe Color Common Settings
Adobe Color EU Extra Settings
Adobe Color JA Extra Settings
Adobe Color NA Recommended Settings
Adobe Device Central CS3
Adobe ExtendScript Toolkit 2
Adobe Flash CS3 Professional
Adobe Flash Player 9
Adobe Flash Player Plugin
Adobe Help Viewer CS3
Adobe Photoshop 7.0
Adobe Reader 7.0.9
Adobe Setup
Adobe Shockwave Player
Adobe SVG Viewer 3.0
Adobe Update Manager CS3
Adobe® Photoshop® Album Starter Edition 3.0
Alias DirectConnect 2.0
ALPS Touch Pad Driver
Amara - News Ticker
AppCore
Apple Mobile Device Support
Apple Software Update
ATI Control Panel
ATI Display Driver
Audacity 1.2.6
AVG Anti-Spyware 7.5
BlueSoleil
Broadcom Management Programs 2
ccCommon
CoffeeCup Flash FireStarter
Component Framework
Conexant D110 MDC V.9x Modem
Dell Driver Reset Tool
Dell Media Experience
Dell Support 5.0.0 (630)
Digital Line Detect
DVD Decrypter (Remove Only)
FileZilla (remove only)
Flash News Scroller Wizard 1.0
Flash Text Scroller Wizard 2.0
FTP Explorer
Google Web Accelerator
HijackThis 2.0.2
Hotfix for Windows Media Format 11 SDK (KB929399)
Hotfix for Windows Media Player 11 (KB939683)
Hotfix for Windows XP (KB914440)
Hotfix for Windows XP (KB915865)
Hotfix for Windows XP (KB926239)
Intel® PROSet/Wireless Software
Internal Network Card Power Management
iolo technologies' System Mechanic 7
iTunes
Java 2 Runtime Environment, SE v1.4.2_03
KWorld USB DVB-T Drivers
LiveUpdate (Symantec Corporation)
LiveUpdate (Symantec Corporation)
Macromedia Dreamweaver 8
Macromedia Extension Manager
Macromedia Flash 8
Macromedia Flash 8 Video Encoder
Macromedia Flash Player 8
Macromedia FreeHand MXa
mCore
MCU
mDrWiFi
MetaFrame Presentation Server Web Client for Win32
mHlpDell
Microsoft .NET Framework 1.1
Microsoft .NET Framework 1.1
Microsoft .NET Framework 1.1 Hotfix (KB928366)
Microsoft .NET Framework 2.0
Microsoft Compression Client Pack 1.0 for Windows XP
Microsoft Internationalized Domain Names Mitigation APIs
Microsoft National Language Support Downlevel APIs
Microsoft Silverlight
Microsoft User-Mode Driver Framework Feature Pack 1.0
Microsoft Visual C++ 2005 Redistributable
Microsoft Works 7.0
mIWA
mIWCA
mLogView
mMHouse
Modem Helper
Mozilla Firefox (2.0.0.8)
Mozilla Sunbird (0.5)
Mozilla Thunderbird (2.0.0.6)
mPfMgr
mPfWiz
mProjector V3
mProSafe
mSSO
MSXML 4.0 SP2 (KB927978)
MSXML 4.0 SP2 (KB936181)
mToolkit
mWlsSafe
mXML
My Web Search (Webfetti)
mZConfig
NetWaiting
Nokia Connectivity Cable Driver
Nokia PC Connectivity Solution
Nokia PC Suite
Norton AntiVirus
Norton AntiVirus Help
Norton Confidential Core
Norton Internet Security
Norton Internet Security (Symantec Corporation)
Norton Protection Center
Panda ActiveScan
PowerDVD 5.5
QuickSet
QuickTime
RealPlayer
ScriptOcean Flash Menu Wizard 2.0
SecondLife (remove only)
Security Update for Microsoft .NET Framework 2.0 (KB928365)
Security Update for Step By Step Interactive Training (KB898458)
Security Update for Step By Step Interactive Training (KB923723)
Security Update for Windows Internet Explorer 7 (KB928090)
Security Update for Windows Internet Explorer 7 (KB929969)
Security Update for Windows Internet Explorer 7 (KB931768)
Security Update for Windows Internet Explorer 7 (KB933566)
Security Update for Windows Internet Explorer 7 (KB937143)
Security Update for Windows Internet Explorer 7 (KB938127)
Security Update for Windows Internet Explorer 7 (KB939653)
Security Update for Windows Media Player (KB911564)
Security Update for Windows Media Player 11 (KB936782)
Security Update for Windows Media Player 6.4 (KB925398)
Security Update for Windows Media Player 9 (KB911565)
Security Update for Windows Media Player 9 (KB917734)
Security Update for Windows XP (KB890046)
Security Update for Windows XP (KB893066)
Security Update for Windows XP (KB893756)
Security Update for Windows XP (KB896358)
Security Update for Windows XP (KB896424)
Security Update for Windows XP (KB896428)
Security Update for Windows XP (KB899587)
Security Update for Windows XP (KB900725)
Security Update for Windows XP (KB901017)
Security Update for Windows XP (KB901190)
Security Update for Windows XP (KB902400)
Security Update for Windows XP (KB904706)
Security Update for Windows XP (KB905414)
Security Update for Windows XP (KB905749)
Security Update for Windows XP (KB905915)
Security Update for Windows XP (KB908519)
Security Update for Windows XP (KB908531)
Security Update for Windows XP (KB911280)
Security Update for Windows XP (KB911562)
Security Update for Windows XP (KB911567)
Security Update for Windows XP (KB911927)
Security Update for Windows XP (KB912812)
Security Update for Windows XP (KB912919)
Security Update for Windows XP (KB913446)
Security Update for Windows XP (KB913580)
Security Update for Windows XP (KB914388)
Security Update for Windows XP (KB914389)
Security Update for Windows XP (KB916281)
Security Update for Windows XP (KB917159)
Security Update for Windows XP (KB917344)
Security Update for Windows XP (KB917422)
Security Update for Windows XP (KB917953)
Security Update for Windows XP (KB918118)
Security Update for Windows XP (KB918439)
Security Update for Windows XP (KB918899)
Security Update for Windows XP (KB919007)
Security Update for Windows XP (KB920213)
Security Update for Windows XP (KB920214)
Security Update for Windows XP (KB920670)
Security Update for Windows XP (KB920683)
Security Update for Windows XP (KB920685)
Security Update for Windows XP (KB921398)
Security Update for Windows XP (KB921503)
Security Update for Windows XP (KB921883)
Security Update for Windows XP (KB922616)
Security Update for Windows XP (KB922760)
Security Update for Windows XP (KB922819)
Security Update for Windows XP (KB923191)
Security Update for Windows XP (KB923414)
Security Update for Windows XP (KB923689)
Security Update for Windows XP (KB923694)
Security Update for Windows XP (KB923980)
Security Update for Windows XP (KB924191)
Security Update for Windows XP (KB924270)
Security Update for Windows XP (KB924496)
Security Update for Windows XP (KB924667)
Security Update for Windows XP (KB925454)
Security Update for Windows XP (KB925486)
Security Update for Windows XP (KB925902)
Security Update for Windows XP (KB926255)
Security Update for Windows XP (KB926436)
Security Update for Windows XP (KB927779)
Security Update for Windows XP (KB927802)
Security Update for Windows XP (KB928255)
Security Update for Windows XP (KB928843)
Security Update for Windows XP (KB929123)
Security Update for Windows XP (KB930178)
Security Update for Windows XP (KB931261)
Security Update for Windows XP (KB931784)
Security Update for Windows XP (KB932168)
Security Update for Windows XP (KB933729)
Security Update for Windows XP (KB935839)
Security Update for Windows XP (KB935840)
Security Update for Windows XP (KB936021)
Security Update for Windows XP (KB938829)
Security Update for Windows XP (KB941202)
Skype™ 3.5
Sonic DLA
Sonic MyDVD LE
Sonic RecordNow Audio
Sonic RecordNow Copy
Sonic RecordNow Data
Sonic Update Manager
SPBBC 32bit
StarOffice 8
Starware Recipe Toolbar (UK)
SUPERAntiSpyware Free Edition
SymNet
Synacast Plug-in 1.1.0.7
Tablet
Update for Windows XP (KB894391)
Update for Windows XP (KB898461)
Update for Windows XP (KB900485)
Update for Windows XP (KB904942)
Update for Windows XP (KB910437)
Update for Windows XP (KB916595)
Update for Windows XP (KB920872)
Update for Windows XP (KB922582)
Update for Windows XP (KB927891)
Update for Windows XP (KB929338)
Update for Windows XP (KB930916)
Update for Windows XP (KB931836)
Update for Windows XP (KB933360)
Update for Windows XP (KB936357)
Update for Windows XP (KB938828)
USB2.0 PC Camera
VideoEgg Publisher
WebVideo Support
WinAce Archiver
Windows Defender
Windows Driver Package - Nokia Modem (06/12/2006 6.81.0.21)
Windows Installer 3.1 (KB893803)
Windows Internet Explorer 7
Windows Media Format 11 runtime
Windows Media Format 11 runtime
Windows Media Player 11
Windows Media Player 11
Windows XP Hotfix - KB885836
Windows XP Hotfix - KB886185
Windows XP Hotfix - KB887742
Windows XP Hotfix - KB888302
Windows XP Hotfix - KB890859
Yahoo! Toolbar

Here is the Panda online scan report


Incident Status Location

Potentially unwanted tool:Application/MyWebSearch Not disinfected C:\Program Files\Internet Explorer\MSIMG32.dll
Potentially unwanted tool:application/mywebsearch Not disinfected c:\windows\system32\f3PSSavr.scr
Potentially unwanted tool:application/funweb Not disinfected c:\windows\downloaded program files\f3initialsetup1.0.0.15.inf
Potentially unwanted tool:Application/MyWebSearch Not disinfected C:\Documents and Settings\paul craig\Application Data\iolo\SafetyNet\Manual\{548D1145-8CDE-4F30-9D9B-220F7A9BFE0F}\{084061BF-E643-40D2-B611-E544A88D9A5B}.F3S[{084061BF-E643-40D2-B611-E544A88D9A5B}.F3S]
Potentially unwanted tool:Application/MyWebSearch Not disinfected C:\Documents and Settings\paul craig\Application Data\iolo\SafetyNet\Manual\{548D1145-8CDE-4F30-9D9B-220F7A9BFE0F}\{11923534-D668-485F-A57A-CF01F712D996}.DLL[{11923534-D668-485F-A57A-CF01F712D996}.DLL]
Potentially unwanted tool:Application/FunWeb Not disinfected C:\Documents and Settings\paul craig\Application Data\iolo\SafetyNet\Manual\{548D1145-8CDE-4F30-9D9B-220F7A9BFE0F}\{11C23608-76E2-4B77-BFB4-6CA6D4CF61D6}.DLL[{11C23608-76E2-4B77-BFB4-6CA6D4CF61D6}.DLL]
Potentially unwanted tool:Application/MyWebSearch Not disinfected C:\Documents and Settings\paul craig\Application Data\iolo\SafetyNet\Manual\{548D1145-8CDE-4F30-9D9B-220F7A9BFE0F}\{1527155A-436A-4F8C-9924-FC7FA2B59D47}.F3S[{1527155A-436A-4F8C-9924-FC7FA2B59D47}.F3S]
Potentially unwanted tool:Application/MyWebSearch Not disinfected C:\Documents and Settings\paul craig\Application Data\iolo\SafetyNet\Manual\{548D1145-8CDE-4F30-9D9B-220F7A9BFE0F}\{19331EF3-70CC-4FFB-88A9-752866DB5CBD}.MANIFEST[{19331EF3-70CC-4FFB-88A9-752866DB5CBD}.MANIFEST]
Potentially unwanted tool:Application/MyWebSearch Not disinfected C:\Documents and Settings\paul craig\Application Data\iolo\SafetyNet\Manual\{548D1145-8CDE-4F30-9D9B-220F7A9BFE0F}\{1CE9D3D3-AA16-4F5A-9A4C-A7B73F6958E6}.EXE[{1CE9D3D3-AA16-4F5A-9A4C-A7B73F6958E6}.EXE]
Potentially unwanted tool:Application/MyWebSearch Not disinfected C:\Documents and Settings\paul craig\Application Data\iolo\SafetyNet\Manual\{548D1145-8CDE-4F30-9D9B-220F7A9BFE0F}\{1EF7142A-920E-4736-88C5-C51CACABE886}.EXE[{1EF7142A-920E-4736-88C5-C51CACABE886}.EXE]
Potentially unwanted tool:Application/MyWebSearch Not disinfected C:\Documents and Settings\paul craig\Application Data\iolo\SafetyNet\Manual\{548D1145-8CDE-4F30-9D9B-220F7A9BFE0F}\{21F31E5E-E136-43B0-ABB7-5877E3DC13DC}.DLL[{21F31E5E-E136-43B0-ABB7-5877E3DC13DC}.DLL]
Potentially unwanted tool:Application/MyWebSearch Not disinfected C:\Documents and Settings\paul craig\Application Data\iolo\SafetyNet\Manual\{548D1145-8CDE-4F30-9D9B-220F7A9BFE0F}\{2934C76F-29C1-46E0-BE53-1ECAB7055251}.DLL[{2934C76F-29C1-46E0-BE53-1ECAB7055251}.DLL]
Potentially unwanted tool:Application/MyWebSearch Not disinfected C:\Documents and Settings\paul craig\Application Data\iolo\SafetyNet\Manual\{548D1145-8CDE-4F30-9D9B-220F7A9BFE0F}\{2D48E6D6-8857-4FE0-9D49-1D107CDACF9B}.DLL[{2D48E6D6-8857-4FE0-9D49-1D107CDACF9B}.DLL]
Potentially unwanted tool:Application/MyWebSearch Not disinfected C:\Documents and Settings\paul craig\Application Data\iolo\SafetyNet\Manual\{548D1145-8CDE-4F30-9D9B-220F7A9BFE0F}\{3158DF78-C623-4624-A08A-A5AD74BD4228}.F3S[{3158DF78-C623-4624-A08A-A5AD74BD4228}.F3S]
Potentially unwanted tool:Application/MyWebSearch Not disinfected C:\Documents and Settings\paul craig\Application Data\iolo\SafetyNet\Manual\{548D1145-8CDE-4F30-9D9B-220F7A9BFE0F}\{370323C4-0EC5-48E6-8474-3D811CF3CB5D}.DLL[{370323C4-0EC5-48E6-8474-3D811CF3CB5D}.DLL]
Potentially unwanted tool:Application/MyWebSearch Not disinfected C:\Documents and Settings\paul craig\Application Data\iolo\SafetyNet\Manual\{548D1145-8CDE-4F30-9D9B-220F7A9BFE0F}\{409D5BB6-73B3-4850-BF6E-DC6F087C80F4}.DLL[{409D5BB6-73B3-4850-BF6E-DC6F087C80F4}.DLL]
Potentially unwanted tool:Application/MyWebSearch Not disinfected C:\Documents and Settings\paul craig\Application Data\iolo\SafetyNet\Manual\{548D1145-8CDE-4F30-9D9B-220F7A9BFE0F}\{4761CE94-39D8-4D78-B61E-555C7BD6D264}.DLL[{4761CE94-39D8-4D78-B61E-555C7BD6D264}.DLL]
Potentially unwanted tool:Application/MyWebSearch Not disinfected C:\Documents and Settings\paul craig\Application Data\iolo\SafetyNet\Manual\{548D1145-8CDE-4F30-9D9B-220F7A9BFE0F}\{4825F3A1-9432-4EAA-BD6B-2CBB6E3C0CD7}.DLL[{4825F3A1-9432-4EAA-BD6B-2CBB6E3C0CD7}.DLL]
Potentially unwanted tool:Application/MyWebSearch Not disinfected C:\Documents and Settings\paul craig\Application Data\iolo\SafetyNet\Manual\{548D1145-8CDE-4F30-9D9B-220F7A9BFE0F}\{4AD5522E-9B19-48A6-83E7-8302B03A2387}.EXE[{4AD5522E-9B19-48A6-83E7-8302B03A2387}.EXE]
Potentially unwanted tool:Application/MyWebSearch Not disinfected C:\Documents and Settings\paul craig\Application Data\iolo\SafetyNet\Manual\{548D1145-8CDE-4F30-9D9B-220F7A9BFE0F}\{56411655-0C6A-43B7-9BD3-355CBA43DFE9}.DLL[{56411655-0C6A-43B7-9BD3-355CBA43DFE9}.DLL]
Potentially unwanted tool:Application/MyWebSearch Not disinfected C:\Documents and Settings\paul craig\Application Data\iolo\SafetyNet\Manual\{548D1145-8CDE-4F30-9D9B-220F7A9BFE0F}\{5716224F-2258-437B-A081-71A7F7D3D3BF}.DLL[{5716224F-2258-437B-A081-71A7F7D3D3BF}.DLL]
Potentially unwanted tool:Application/MyWebSearch Not disinfected C:\Documents and Settings\paul craig\Application Data\iolo\SafetyNet\Manual\{548D1145-8CDE-4F30-9D9B-220F7A9BFE0F}\{6D3CB214-36B5-4477-A05C-2EACD81DA926}.EXE[{6D3CB214-36B5-4477-A05C-2EACD81DA926}.EXE]
Potentially unwanted tool:Application/MyWebSearch Not disinfected C:\Documents and Settings\paul craig\Application Data\iolo\SafetyNet\Manual\{548D1145-8CDE-4F30-9D9B-220F7A9BFE0F}\{7D8E5048-F2D2-4576-970A-1C753D44D1FF}.EXE[{7D8E5048-F2D2-4576-970A-1C753D44D1FF}.EXE]
Potentially unwanted tool:Application/MyWebSearch Not disinfected C:\Documents and Settings\paul craig\Application Data\iolo\SafetyNet\Manual\{548D1145-8CDE-4F30-9D9B-220F7A9BFE0F}\{8140E419-071A-49CE-A4D4-F870ABF641B5}.SCR[{8140E419-071A-49CE-A4D4-F870ABF641B5}.SCR]
Potentially unwanted tool:Application/MyWebSearch Not disinfected C:\Documents and Settings\paul craig\Application Data\iolo\SafetyNet\Manual\{548D1145-8CDE-4F30-9D9B-220F7A9BFE0F}\{82EFF8BA-E8F7-485D-9B0B-5617E4B44805}.DLL[{82EFF8BA-E8F7-485D-9B0B-5617E4B44805}.DLL]
Potentially unwanted tool:Application/MyWebSearch Not disinfected C:\Documents and Settings\paul craig\Application Data\iolo\SafetyNet\Manual\{548D1145-8CDE-4F30-9D9B-220F7A9BFE0F}\{86153B5B-9798-41E1-ACF7-25585D6588E0}.DLL[{86153B5B-9798-41E1-ACF7-25585D6588E0}.DLL]
Potentially unwanted tool:Application/MyWebSearch Not disinfected C:\Documents and Settings\paul craig\Application Data\iolo\SafetyNet\Manual\{548D1145-8CDE-4F30-9D9B-220F7A9BFE0F}\{8D4FA8C9-ACE5-4A09-B1A6-7E6F4142F29C}.EXE[{8D4FA8C9-ACE5-4A09-B1A6-7E6F4142F29C}.EXE]
Potentially unwanted tool:Application/MyWebSearch Not disinfected C:\Documents and Settings\paul craig\Application Data\iolo\SafetyNet\Manual\{548D1145-8CDE-4F30-9D9B-220F7A9BFE0F}\{97F0CCF8-82A0-4E46-A3B9-A086DBB512D9}.DLL[{97F0CCF8-82A0-4E46-A3B9-A086DBB512D9}.DLL]
Potentially unwanted tool:Application/MyWebSearch Not disinfected C:\Documents and Settings\paul craig\Application Data\iolo\SafetyNet\Manual\{548D1145-8CDE-4F30-9D9B-220F7A9BFE0F}\{97F2F37B-16BE-4E71-B746-3D119387B473}.DLL[{97F2F37B-16BE-4E71-B746-3D119387B473}.DLL]
Potentially unwanted tool:Application/MyWebSearch Not disinfected C:\Documents and Settings\paul craig\Application Data\iolo\SafetyNet\Manual\{548D1145-8CDE-4F30-9D9B-220F7A9BFE0F}\{99271138-84F3-491D-8A32-999C34B3334F}.DLL[{99271138-84F3-491D-8A32-999C34B3334F}.DLL]
Potentially unwanted tool:Application/MyWebSearch Not disinfected C:\Documents and Settings\paul craig\Application Data\iolo\SafetyNet\Manual\{548D1145-8CDE-4F30-9D9B-220F7A9BFE0F}\{9FF40011-7ADD-4A84-AA15-55043F390B4A}.EXE[{9FF40011-7ADD-4A84-AA15-55043F390B4A}.EXE]
Potentially unwanted tool:Application/MyWebSearch Not disinfected C:\Documents and Settings\paul craig\Application Data\iolo\SafetyNet\Manual\{548D1145-8CDE-4F30-9D9B-220F7A9BFE0F}\{A6B9C57A-6ADE-49A9-BEC5-88A7C59980D9}.DLL[{A6B9C57A-6ADE-49A9-BEC5-88A7C59980D9}.DLL]
Potentially unwanted tool:Application/MyWebSearch Not disinfected C:\Documents and Settings\paul craig\Application Data\iolo\SafetyNet\Manual\{548D1145-8CDE-4F30-9D9B-220F7A9BFE0F}\{A7484903-A4E7-4A9B-B914-D205A9130996}.DLL[{A7484903-A4E7-4A9B-B914-D205A9130996}.DLL]
Potentially unwanted tool:Application/MyWebSearch Not disinfected C:\Documents and Settings\paul craig\Application Data\iolo\SafetyNet\Manual\{548D1145-8CDE-4F30-9D9B-220F7A9BFE0F}\{A980A622-CD23-41C3-B91E-A4F7CC949296}.DLL[{A980A622-CD23-41C3-B91E-A4F7CC949296}.DLL]
Potentially unwanted tool:Application/MyWebSearch Not disinfected C:\Documents and Settings\paul craig\Application Data\iolo\SafetyNet\Manual\{548D1145-8CDE-4F30-9D9B-220F7A9BFE0F}\{B14D9C6B-E284-4F26-8621-D83BEEA2FA7F}.DLL[{B14D9C6B-E284-4F26-8621-D83BEEA2FA7F}.DLL]
Potentially unwanted tool:Application/MyWebSearch Not disinfected C:\Documents and Settings\paul craig\Application Data\iolo\SafetyNet\Manual\{548D1145-8CDE-4F30-9D9B-220F7A9BFE0F}\{B472922E-C11D-4DA2-9015-30C873EE250A}.DLL[{B472922E-C11D-4DA2-9015-30C873EE250A}.DLL]
Potentially unwanted tool:Application/MyWebSearch Not disinfected C:\Documents and Settings\paul craig\Application Data\iolo\SafetyNet\Manual\{548D1145-8CDE-4F30-9D9B-220F7A9BFE0F}\{B528A98F-FD83-4620-9808-6782CDD81FF3}.DLL[{B528A98F-FD83-4620-9808-6782CDD81FF3}.DLL]
Potentially unwanted tool:Application/MyWebSearch Not disinfected C:\Documents and Settings\paul craig\Application Data\iolo\SafetyNet\Manual\{548D1145-8CDE-4F30-9D9B-220F7A9BFE0F}\{BD666075-6D9B-4744-93DE-21232109BC24}.DLL[{BD666075-6D9B-4744-93DE-21232109BC24}.DLL]
Potentially unwanted tool:Application/MyWebSearch Not disinfected C:\Documents and Settings\paul craig\Application Data\iolo\SafetyNet\Manual\{548D1145-8CDE-4F30-9D9B-220F7A9BFE0F}\{BF68D040-AA65-4A81-9C4F-5ABA9572795B}.DLL[{BF68D040-AA65-4A81-9C4F-5ABA9572795B}.DLL]
Potentially unwanted tool:Application/MyWebSearch Not disinfected C:\Documents and Settings\paul craig\Application Data\iolo\SafetyNet\Manual\{548D1145-8CDE-4F30-9D9B-220F7A9BFE0F}\{D16CF7DE-CB42-4E63-AFCF-0DC80C0F5139}.DLL[{D16CF7DE-CB42-4E63-AFCF-0DC80C0F5139}.DLL]
Potentially unwanted tool:Application/MyWebSearch Not disinfected C:\Documents and Settings\paul craig\Application Data\iolo\SafetyNet\Manual\{548D1145-8CDE-4F30-9D9B-220F7A9BFE0F}\{D8C80892-96DE-4724-8558-08FD1D8BF8B4}.DLL[{D8C80892-96DE-4724-8558-08FD1D8BF8B4}.DLL]
Potentially unwanted tool:Application/MyWebSearch Not disinfected C:\Documents and Settings\paul craig\Application Data\iolo\SafetyNet\Manual\{548D1145-8CDE-4F30-9D9B-220F7A9BFE0F}\{DE6C0EFD-C7E0-494E-A7A1-D198026F4CC3}.JAR[{DE6C0EFD-C7E0-494E-A7A1-D198026F4CC3}.JAR][contents.rdf]
Potentially unwanted tool:Application/MyWebSearch Not disinfected C:\Documents and Settings\paul craig\Application Data\iolo\SafetyNet\Manual\{548D1145-8CDE-4F30-9D9B-220F7A9BFE0F}\{DE6C0EFD-C7E0-494E-A7A1-D198026F4CC3}.JAR[{DE6C0EFD-C7E0-494E-A7A1-D198026F4CC3}.JAR][menu.xul]
Potentially unwanted tool:Application/MyWebSearch Not disinfected C:\Documents and Settings\paul craig\Application Data\iolo\SafetyNet\Manual\{548D1145-8CDE-4F30-9D9B-220F7A9BFE0F}\{DE6C0EFD-C7E0-494E-A7A1-D198026F4CC3}.JAR[{DE6C0EFD-C7E0-494E-A7A1-D198026F4CC3}.JAR][toolbarembed.html]
Potentially unwanted tool:Application/MyWebSearch Not disinfected C:\Documents and Settings\paul craig\Application Data\iolo\SafetyNet\Manual\{548D1145-8CDE-4F30-9D9B-220F7A9BFE0F}\{E1BD3728-52F7-4B9E-8015-C44CAE42736A}.DLL[{E1BD3728-52F7-4B9E-8015-C44CAE42736A}.DLL]
Spyware:Cookie/Enhance Not disinfected C:\Documents and Settings\paul craig\Application Data\Mozilla\Firefox\Profiles\gyowgn5d.default\cookies.txt[.enhance.com/]
Spyware:Cookie/Atlas DMT Not disinfected C:\Documents and Settings\paul craig\Application Data\Mozilla\Firefox\Profiles\gyowgn5d.default\cookies.txt[.atdmt.com/]
Potentially unwanted tool:Application/ServUBased.DE Not disinfected C:\Documents and Settings\paul craig\My Documents\downloads\ftpx.exe[setup.msi][unk_0038][_F2404AA42DECA58D28418B493021CCDF]
Potentially unwanted tool:Application/ServUBased.DE Not disinfected C:\Program Files\FTP Explorer\ftpx.exe
Potentially unwanted tool:Application/MyWebSearch Not disinfected C:\Program Files\Mozilla Firefox\plugins\NPMyWebS.dll
  • 0

Advertisements

Back to Virus, Spyware, Malware Removal · Next Unread Topic →




Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

  1. Geeks to Go Community
  2. Security
  3. Virus, Spyware, Malware Removal

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP