Jump to content

Welcome to Geeks to Go - Register now for FREE

Need help with your computer or device? Want to learn new tech skills? You're in the right place!
Geeks to Go is a friendly community of tech experts who can solve any problem you have. Just create a free account and post your question. Our volunteers will reply quickly and guide you through the steps. Don't let tech troubles stop you. Join Geeks to Go now and get the support you need!

How it Works Create Account
Photo

Warning! Potential Spyware Operation pop up

Started by Gillys , Nov 19 2007 07:02 AM

  • Please log in to reply

#1
Gillys
Posted 19 November 2007 - 07:02 AM

Gillys

    New Member

  • Member
  • Pip
  • 2 posts
Hi, I'm very sorry if this is redundant, but I am new to this kind of thing. My computer keeps showing the pop up about potential spyware. I did go online the other night and tried to follow along and fix it but it came back. It has also made my control panel disappear. Could you please forward me to the proper place to attempt to fix this issue. Thanks for all you do!!!!

I'm trying to follow the instructions I have found on this site.
I did the ATF Cleaner and it found 3 things, removed them but said there was no log to keep.
Next I did the AVG Anti-Spyware scan and then the SUPERAntiSpyware Scan. Here is the log from that. I will now go on to the Panda site.
It actually seems to have worked so far because the pop up is gone. :)
SUPERAntiSpyware Scan Log
http://www.superantispyware.com

Generated 11/25/2007 at 05:18 PM

Application Version : 3.9.1008

Core Rules Database Version : 3349
Trace Rules Database Version: 1349

Scan type : Complete Scan
Total Scan Time : 02:09:46

Memory items scanned : 592
Memory threats detected : 1
Registry items scanned : 5932
Registry threats detected : 13
File items scanned : 130594
File threats detected : 138

Trojan.Downloader-Gen/CinBroom
C:\WINDOWS\SYSTEM32\PROPER.EXE
C:\WINDOWS\SYSTEM32\PROPER.EXE
[Undefined] C:\WINDOWS\SYSTEM32\WINTER.EXE
C:\WINDOWS\SYSTEM32\WINTER.EXE
[Undefined] C:\WINDOWS\SYSTEM32\WINTER.EXE
C:\WINDOWS\Prefetch\WINTER.EXE-38A8B44A.pf

Trojan.Bronto
HKLM\Software\Classes\CLSID\{D27987B8-7244-4DE0-AE10-39B826B492F1}
HKCR\CLSID\{D27987B8-7244-4DE0-AE10-39B826B492F1}
HKCR\CLSID\{D27987B8-7244-4DE0-AE10-39B826B492F1}\InprocServer32
HKCR\CLSID\{D27987B8-7244-4DE0-AE10-39B826B492F1}\InprocServer32#ThreadingModel
HKCR\CLSID\{D27987B8-7244-4DE0-AE10-39B826B492F1}\InprocServer32#Enable Browser Extensions
C:\WINDOWS\SYSTEM32\BRONTO.DLL
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D27987B8-7244-4DE0-AE10-39B826B492F1}

Trojan.Downloader-Gen/MSKVTN-Fake
HKLM\Software\Classes\CLSID\{DABCE839-3831-3818-AF3A-3837BCD324D2}
HKCR\CLSID\{DABCE839-3831-3818-AF3A-3837BCD324D2}
HKCR\CLSID\{DABCE839-3831-3818-AF3A-3837BCD324D2}\InprocServer32
HKCR\CLSID\{DABCE839-3831-3818-AF3A-3837BCD324D2}\InprocServer32#ThreadingModel
C:\WINDOWS\SYSTEM32\MSKVTNS.DLL
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DABCE839-3831-3818-AF3A-3837BCD324D2}

Adware.Tracking Cookie
C:\Documents and Settings\Amy\Cookies\amy@atdmt[1].txt
C:\Documents and Settings\Liam\Cookies\liam@2o7[2].txt
C:\Documents and Settings\Liam\Cookies\[email protected][1].txt
C:\Documents and Settings\Liam\Cookies\[email protected][1].txt
C:\Documents and Settings\Liam\Cookies\liam@adinterax[1].txt
C:\Documents and Settings\Liam\Cookies\liam@adrevolver[2].txt
C:\Documents and Settings\Liam\Cookies\[email protected][1].txt
C:\Documents and Settings\Liam\Cookies\[email protected][2].txt
C:\Documents and Settings\Liam\Cookies\[email protected][1].txt
C:\Documents and Settings\Liam\Cookies\[email protected][2].txt
C:\Documents and Settings\Liam\Cookies\liam@advertising[1].txt
C:\Documents and Settings\Liam\Cookies\liam@apmebf[1].txt
C:\Documents and Settings\Liam\Cookies\liam@atdmt[2].txt
C:\Documents and Settings\Liam\Cookies\liam@atwola[1].txt
C:\Documents and Settings\Liam\Cookies\[email protected][2].txt
C:\Documents and Settings\Liam\Cookies\liam@burstnet[2].txt
C:\Documents and Settings\Liam\Cookies\liam@casalemedia[2].txt
C:\Documents and Settings\Liam\Cookies\[email protected][2].txt
C:\Documents and Settings\Liam\Cookies\liam@doubleclick[1].txt
C:\Documents and Settings\Liam\Cookies\liam@fastclick[1].txt
C:\Documents and Settings\Liam\Cookies\liam@interclick[2].txt
C:\Documents and Settings\Liam\Cookies\[email protected][1].txt
C:\Documents and Settings\Liam\Cookies\[email protected][2].txt
C:\Documents and Settings\Liam\Cookies\[email protected][2].txt
C:\Documents and Settings\Liam\Cookies\liam@mediaplex[2].txt
C:\Documents and Settings\Liam\Cookies\liam@overture[1].txt
C:\Documents and Settings\Liam\Cookies\liam@questionmarket[2].txt
C:\Documents and Settings\Liam\Cookies\liam@revsci[1].txt
C:\Documents and Settings\Liam\Cookies\[email protected][1].txt
C:\Documents and Settings\Liam\Cookies\liam@roadandtrack[2].txt
C:\Documents and Settings\Liam\Cookies\[email protected][1].txt
C:\Documents and Settings\Liam\Cookies\[email protected][2].txt
C:\Documents and Settings\Liam\Cookies\liam@serving-sys[1].txt
C:\Documents and Settings\Liam\Cookies\liam@tacoda[1].txt
C:\Documents and Settings\Liam\Cookies\liam@tribalfusion[2].txt
C:\Documents and Settings\Liam\Cookies\[email protected][1].txt
C:\Documents and Settings\Liam\Cookies\[email protected][1].txt
C:\Documents and Settings\Liam\Cookies\[email protected][2].txt
C:\Documents and Settings\Logan\Cookies\logan@admarketplace[1].txt
C:\Documents and Settings\Logan\Cookies\[email protected][2].txt
C:\Documents and Settings\Logan\Cookies\[email protected][1].txt
C:\Documents and Settings\Logan\Cookies\logan@azjmp[2].txt
C:\Documents and Settings\Logan\Cookies\[email protected][2].txt
C:\Documents and Settings\Logan\Cookies\logan@kanoodle[2].txt
C:\Documents and Settings\Logan\Cookies\logan@nextag[1].txt
C:\Documents and Settings\Logan\Cookies\logan@precisionclick[2].txt
C:\Documents and Settings\Logan\Cookies\logan@qnsr[2].txt
C:\Documents and Settings\Logan\Cookies\logan@redorbit[2].txt
C:\Documents and Settings\Logan\Cookies\[email protected][1].txt
C:\Documents and Settings\Logan\Cookies\[email protected][1].txt
C:\Documents and Settings\Logan\Cookies\[email protected][2].txt

Trojan.Downloader-Gen/Autos
C:\DOCUMENTS AND SETTINGS\ALL USERS\START MENU\PROGRAMS\STARTUP\AUTOS.EXE
C:\WINDOWS\Prefetch\AUTOS.EXE-00EEC60B.pf

Trojan.SmitFraud-Variant-A
C:\DOCUMENTS AND SETTINGS\AMY\START MENU\PROGRAMS\STARTUP\INFOS.EXE
C:\DOCUMENTS AND SETTINGS\LIAM\START MENU\PROGRAMS\STARTUP\INFOS.EXE
C:\QOOBOX\QUARANTINE\C\DOCUMENTS AND SETTINGS\ALL USERS\START MENU\PROGRAMS\STARTUP\AUTOS.EXE.VIR
C:\QOOBOX\QUARANTINE\C\DOCUMENTS AND SETTINGS\AMY\START MENU\PROGRAMS\STARTUP\INFOS.EXE.VIR
C:\QOOBOX\QUARANTINE\C\WINDOWS\SYSTEM32\PROPER.EXE.VIR
C:\QOOBOX\QUARANTINE\C\WINDOWS\SYSTEM32\WINTER.EXE.VIR
C:\SYSTEM VOLUME INFORMATION\_RESTORE{202550A8-7A33-4BCA-9586-051D24DDBF8F}\RP691\A0063519.EXE
C:\SYSTEM VOLUME INFORMATION\_RESTORE{202550A8-7A33-4BCA-9586-051D24DDBF8F}\RP691\A0063520.EXE
C:\SYSTEM VOLUME INFORMATION\_RESTORE{202550A8-7A33-4BCA-9586-051D24DDBF8F}\RP691\A0063521.EXE
C:\SYSTEM VOLUME INFORMATION\_RESTORE{202550A8-7A33-4BCA-9586-051D24DDBF8F}\RP691\A0063535.EXE
C:\SYSTEM VOLUME INFORMATION\_RESTORE{202550A8-7A33-4BCA-9586-051D24DDBF8F}\RP691\A0063537.EXE
C:\SYSTEM VOLUME INFORMATION\_RESTORE{202550A8-7A33-4BCA-9586-051D24DDBF8F}\RP691\A0063538.EXE
C:\SYSTEM VOLUME INFORMATION\_RESTORE{202550A8-7A33-4BCA-9586-051D24DDBF8F}\RP692\A0063685.EXE
C:\SYSTEM VOLUME INFORMATION\_RESTORE{202550A8-7A33-4BCA-9586-051D24DDBF8F}\RP692\A0063686.EXE
C:\SYSTEM VOLUME INFORMATION\_RESTORE{202550A8-7A33-4BCA-9586-051D24DDBF8F}\RP692\A0064560.EXE
C:\SYSTEM VOLUME INFORMATION\_RESTORE{202550A8-7A33-4BCA-9586-051D24DDBF8F}\RP692\A0064561.EXE
C:\SYSTEM VOLUME INFORMATION\_RESTORE{202550A8-7A33-4BCA-9586-051D24DDBF8F}\RP692\A0064563.EXE
C:\SYSTEM VOLUME INFORMATION\_RESTORE{202550A8-7A33-4BCA-9586-051D24DDBF8F}\RP692\A0064638.EXE
C:\SYSTEM VOLUME INFORMATION\_RESTORE{202550A8-7A33-4BCA-9586-051D24DDBF8F}\RP692\A0064639.EXE
C:\SYSTEM VOLUME INFORMATION\_RESTORE{202550A8-7A33-4BCA-9586-051D24DDBF8F}\RP692\A0064640.EXE
C:\SYSTEM VOLUME INFORMATION\_RESTORE{202550A8-7A33-4BCA-9586-051D24DDBF8F}\RP692\A0064661.EXE
C:\SYSTEM VOLUME INFORMATION\_RESTORE{202550A8-7A33-4BCA-9586-051D24DDBF8F}\RP692\A0064687.EXE
C:\SYSTEM VOLUME INFORMATION\_RESTORE{202550A8-7A33-4BCA-9586-051D24DDBF8F}\RP692\A0064688.EXE
C:\SYSTEM VOLUME INFORMATION\_RESTORE{202550A8-7A33-4BCA-9586-051D24DDBF8F}\RP692\A0064689.EXE
C:\SYSTEM VOLUME INFORMATION\_RESTORE{202550A8-7A33-4BCA-9586-051D24DDBF8F}\RP693\A0064708.EXE
C:\SYSTEM VOLUME INFORMATION\_RESTORE{202550A8-7A33-4BCA-9586-051D24DDBF8F}\RP693\A0064709.EXE
C:\SYSTEM VOLUME INFORMATION\_RESTORE{202550A8-7A33-4BCA-9586-051D24DDBF8F}\RP693\A0064710.EXE
C:\SYSTEM VOLUME INFORMATION\_RESTORE{202550A8-7A33-4BCA-9586-051D24DDBF8F}\RP694\A0064734.EXE
C:\SYSTEM VOLUME INFORMATION\_RESTORE{202550A8-7A33-4BCA-9586-051D24DDBF8F}\RP694\A0064735.EXE
C:\SYSTEM VOLUME INFORMATION\_RESTORE{202550A8-7A33-4BCA-9586-051D24DDBF8F}\RP694\A0064736.EXE
C:\SYSTEM VOLUME INFORMATION\_RESTORE{202550A8-7A33-4BCA-9586-051D24DDBF8F}\RP695\A0064765.EXE
C:\SYSTEM VOLUME INFORMATION\_RESTORE{202550A8-7A33-4BCA-9586-051D24DDBF8F}\RP695\A0064766.EXE
C:\SYSTEM VOLUME INFORMATION\_RESTORE{202550A8-7A33-4BCA-9586-051D24DDBF8F}\RP695\A0064767.EXE
C:\SYSTEM VOLUME INFORMATION\_RESTORE{202550A8-7A33-4BCA-9586-051D24DDBF8F}\RP696\A0064785.EXE
C:\SYSTEM VOLUME INFORMATION\_RESTORE{202550A8-7A33-4BCA-9586-051D24DDBF8F}\RP696\A0064786.EXE
C:\SYSTEM VOLUME INFORMATION\_RESTORE{202550A8-7A33-4BCA-9586-051D24DDBF8F}\RP696\A0064792.EXE
C:\SYSTEM VOLUME INFORMATION\_RESTORE{202550A8-7A33-4BCA-9586-051D24DDBF8F}\RP696\A0064793.EXE
C:\SYSTEM VOLUME INFORMATION\_RESTORE{202550A8-7A33-4BCA-9586-051D24DDBF8F}\RP698\A0064887.EXE
C:\SYSTEM VOLUME INFORMATION\_RESTORE{202550A8-7A33-4BCA-9586-051D24DDBF8F}\RP698\A0064888.EXE
C:\SYSTEM VOLUME INFORMATION\_RESTORE{202550A8-7A33-4BCA-9586-051D24DDBF8F}\RP699\A0065813.EXE
C:\SYSTEM VOLUME INFORMATION\_RESTORE{202550A8-7A33-4BCA-9586-051D24DDBF8F}\RP699\A0065814.EXE
C:\SYSTEM VOLUME INFORMATION\_RESTORE{202550A8-7A33-4BCA-9586-051D24DDBF8F}\RP699\A0065815.EXE
C:\SYSTEM VOLUME INFORMATION\_RESTORE{202550A8-7A33-4BCA-9586-051D24DDBF8F}\RP699\A0065825.EXE
C:\SYSTEM VOLUME INFORMATION\_RESTORE{202550A8-7A33-4BCA-9586-051D24DDBF8F}\RP700\A0065842.EXE
C:\SYSTEM VOLUME INFORMATION\_RESTORE{202550A8-7A33-4BCA-9586-051D24DDBF8F}\RP700\A0065843.EXE
C:\SYSTEM VOLUME INFORMATION\_RESTORE{202550A8-7A33-4BCA-9586-051D24DDBF8F}\RP700\A0065844.EXE
C:\SYSTEM VOLUME INFORMATION\_RESTORE{202550A8-7A33-4BCA-9586-051D24DDBF8F}\RP700\A0065859.EXE
C:\SYSTEM VOLUME INFORMATION\_RESTORE{202550A8-7A33-4BCA-9586-051D24DDBF8F}\RP701\A0065874.EXE
C:\SYSTEM VOLUME INFORMATION\_RESTORE{202550A8-7A33-4BCA-9586-051D24DDBF8F}\RP701\A0065875.EXE
C:\SYSTEM VOLUME INFORMATION\_RESTORE{202550A8-7A33-4BCA-9586-051D24DDBF8F}\RP701\A0065876.EXE
C:\SYSTEM VOLUME INFORMATION\_RESTORE{202550A8-7A33-4BCA-9586-051D24DDBF8F}\RP701\A0065897.EXE
C:\SYSTEM VOLUME INFORMATION\_RESTORE{202550A8-7A33-4BCA-9586-051D24DDBF8F}\RP702\A0065932.EXE
C:\SYSTEM VOLUME INFORMATION\_RESTORE{202550A8-7A33-4BCA-9586-051D24DDBF8F}\RP702\A0065933.EXE
C:\SYSTEM VOLUME INFORMATION\_RESTORE{202550A8-7A33-4BCA-9586-051D24DDBF8F}\RP702\A0065934.EXE
C:\SYSTEM VOLUME INFORMATION\_RESTORE{202550A8-7A33-4BCA-9586-051D24DDBF8F}\RP702\A0065948.EXE
C:\SYSTEM VOLUME INFORMATION\_RESTORE{202550A8-7A33-4BCA-9586-051D24DDBF8F}\RP703\A0065987.EXE
C:\SYSTEM VOLUME INFORMATION\_RESTORE{202550A8-7A33-4BCA-9586-051D24DDBF8F}\RP703\A0065988.EXE
C:\SYSTEM VOLUME INFORMATION\_RESTORE{202550A8-7A33-4BCA-9586-051D24DDBF8F}\RP703\A0065989.EXE
C:\SYSTEM VOLUME INFORMATION\_RESTORE{202550A8-7A33-4BCA-9586-051D24DDBF8F}\RP704\A0065999.EXE
C:\SYSTEM VOLUME INFORMATION\_RESTORE{202550A8-7A33-4BCA-9586-051D24DDBF8F}\RP704\A0066000.EXE
C:\SYSTEM VOLUME INFORMATION\_RESTORE{202550A8-7A33-4BCA-9586-051D24DDBF8F}\RP704\A0066001.EXE
C:\SYSTEM VOLUME INFORMATION\_RESTORE{202550A8-7A33-4BCA-9586-051D24DDBF8F}\RP704\A0066033.EXE
C:\SYSTEM VOLUME INFORMATION\_RESTORE{202550A8-7A33-4BCA-9586-051D24DDBF8F}\RP704\A0066034.EXE
C:\SYSTEM VOLUME INFORMATION\_RESTORE{202550A8-7A33-4BCA-9586-051D24DDBF8F}\RP704\A0066035.EXE
C:\SYSTEM VOLUME INFORMATION\_RESTORE{202550A8-7A33-4BCA-9586-051D24DDBF8F}\RP706\A0066075.EXE
C:\SYSTEM VOLUME INFORMATION\_RESTORE{202550A8-7A33-4BCA-9586-051D24DDBF8F}\RP706\A0066076.EXE
C:\SYSTEM VOLUME INFORMATION\_RESTORE{202550A8-7A33-4BCA-9586-051D24DDBF8F}\RP706\A0066077.EXE
C:\SYSTEM VOLUME INFORMATION\_RESTORE{202550A8-7A33-4BCA-9586-051D24DDBF8F}\RP706\A0066090.EXE
C:\SYSTEM VOLUME INFORMATION\_RESTORE{202550A8-7A33-4BCA-9586-051D24DDBF8F}\RP706\A0066091.EXE
C:\SYSTEM VOLUME INFORMATION\_RESTORE{202550A8-7A33-4BCA-9586-051D24DDBF8F}\RP706\A0066092.EXE
C:\SYSTEM VOLUME INFORMATION\_RESTORE{202550A8-7A33-4BCA-9586-051D24DDBF8F}\RP707\A0066115.EXE
C:\SYSTEM VOLUME INFORMATION\_RESTORE{202550A8-7A33-4BCA-9586-051D24DDBF8F}\RP707\A0066116.EXE
C:\SYSTEM VOLUME INFORMATION\_RESTORE{202550A8-7A33-4BCA-9586-051D24DDBF8F}\RP707\A0066117.EXE
C:\SYSTEM VOLUME INFORMATION\_RESTORE{202550A8-7A33-4BCA-9586-051D24DDBF8F}\RP707\A0066121.EXE
C:\SYSTEM VOLUME INFORMATION\_RESTORE{202550A8-7A33-4BCA-9586-051D24DDBF8F}\RP707\A0066122.EXE
C:\SYSTEM VOLUME INFORMATION\_RESTORE{202550A8-7A33-4BCA-9586-051D24DDBF8F}\RP707\A0066123.EXE
C:\SYSTEM VOLUME INFORMATION\_RESTORE{202550A8-7A33-4BCA-9586-051D24DDBF8F}\RP707\A0066130.EXE
C:\SYSTEM VOLUME INFORMATION\_RESTORE{202550A8-7A33-4BCA-9586-051D24DDBF8F}\RP707\A0066131.EXE
C:\SYSTEM VOLUME INFORMATION\_RESTORE{202550A8-7A33-4BCA-9586-051D24DDBF8F}\RP707\A0066132.EXE
C:\WINDOWS\Prefetch\INFOS.EXE-0455D5DA.pf

Edited by Gillys, 25 November 2007 - 04:44 PM.

  • 0

Advertisements

#2
Gillys
Posted 23 November 2007 - 07:11 PM

Gillys

    New Member

  • Topic Starter
  • Member
  • Pip
  • 2 posts
Anyone out there????
  • 0
Back to Virus, Spyware, Malware Removal · Next Unread Topic →




Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

  1. Geeks to Go Community
  2. Security
  3. Virus, Spyware, Malware Removal

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP