Jump to content

Welcome to Geeks to Go - Register now for FREE

Need help with your computer or device? Want to learn new tech skills? You're in the right place!
Geeks to Go is a friendly community of tech experts who can solve any problem you have. Just create a free account and post your question. Our volunteers will reply quickly and guide you through the steps. Don't let tech troubles stop you. Join Geeks to Go now and get the support you need!

How it Works Create Account
Photo

Quarantine list

Started by Flybynight , Apr 25 2005 05:54 AM

  • Please log in to reply

#1
Flybynight
Posted 25 April 2005 - 05:54 AM

Flybynight

    New Member

  • Member
  • Pip
  • 3 posts
Hi

i have had problems with a trojon (identified originally by Norton). I ran ad-ware a few days ago, and a list of 99 items came up. Being new to this sort of problem I quaratined everything. i'm not sure if this was the right thing to do. Since then I have an error message when I start -"p2esocks_1016.dll"

Have I quaratined more than I should or are there still problems? I tried to run Adware again but without success.

For now here is my quarantine list. Any ideas, hints please! :tazz:


Flybynight



ArchiveData(auto-quarantine- 2005-04-21 12-14-08.bckp)
Referencefile : SE1R40 20.04.2005
======================================================

FINDWHATEVERNOW
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
obj[0]=Process : C:\windows\system32\sncntr.exe

WINK
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
obj[1]=Process : C:\windows\system32\evthtm.exe
obj[22]=Regkey : software\microsoft\windows\currentversion\uninstall\evthtm
obj[23]=RegValue : software\microsoft\windows\currentversion\uninstall\evthtm "UninstallString"
obj[24]=RegValue : software\microsoft\windows\currentversion\uninstall\evthtm "DisplayName"
obj[27]=Regkey : S-1-5-21-2847657936-2584176199-1113988166-1005\software\vinfo\evthtm
obj[28]=RegValue : S-1-5-21-2847657936-2584176199-1113988166-1005\software\vinfo\evthtm "Info"
obj[29]=RegValue : S-1-5-21-2847657936-2584176199-1113988166-1005\software\vinfo\evthtm "LastWNK"
obj[30]=RegValue : S-1-5-21-2847657936-2584176199-1113988166-1005\software\vinfo\evthtm "DaytimeDocID"
obj[31]=RegValue : S-1-5-21-2847657936-2584176199-1113988166-1005\software\vinfo\evthtm "DaytimeDocTime"
obj[32]=Regkey : S-1-5-21-2847657936-2584176199-1113988166-1009\software\vinfo\evthtm
obj[33]=RegValue : S-1-5-21-2847657936-2584176199-1113988166-1009\software\vinfo\evthtm "Info"
obj[54]=RegValue : software\microsoft\windows\currentversion\run "EvtHtm"
obj[92]=File : C:\WINDOWS\system32\evthtm.exe

DIALER
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
obj[2]=Regkey : clsid\{469c7080-8ec8-43a6-ad97-45848113743c}
obj[87]=File : C:\WINDOWS\system32\eglivecam_1028.dll
obj[89]=File : C:\WINDOWS\system32\nethv32.dll

DIALPASS
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
obj[3]=Regkey : interface\{a58f3d09-4543-4396-8be7-105f14dd6ed5}
obj[4]=RegValue : interface\{a58f3d09-4543-4396-8be7-105f14dd6ed5} ""
obj[5]=Regkey : interface\{3947ac1d-db09-4353-bbcc-55b97f5035ef}
obj[6]=RegValue : interface\{3947ac1d-db09-4353-bbcc-55b97f5035ef} ""
obj[93]=File : C:\WINDOWS\system32\p2esocks_1016.dll

WIN32.ADVERTS.TROJANDOWNLOADER
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
obj[7]=Regkey : clsid\{00000000-0000-0000-0000-000000000001}
obj[55]=Regkey : software\primesoft
obj[56]=Regkey : software\program info
obj[57]=RegValue : software\program info "ClientID"
obj[58]=RegValue : software\program info "SSET"
obj[59]=Regkey : software\program data
obj[60]=RegValue : software\program data "SSET"
obj[61]=Regkey : software\microsoft\windows\currentversion\uninstall\sp2ctr
obj[62]=RegValue : software\microsoft\windows\currentversion\uninstall\sp2ctr "UninstallString"
obj[63]=RegValue : software\microsoft\windows\currentversion\uninstall\sp2ctr "DisplayName"
obj[64]=RegValue : software\microsoft\windows\currentversion\run "sp2ctr"

WIN32.WINTRIM.TROJAN.B
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
obj[8]=Regkey : egcomservice.egcomsvc
obj[9]=RegValue : egcomservice.egcomsvc ""
obj[10]=Regkey : egcomservice.egcomsvc.1
obj[11]=RegValue : egcomservice.egcomsvc.1 ""

COULOMB DIALER
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
obj[12]=Regkey : S-1-5-21-2847657936-2584176199-1113988166-1005\software\coulomb
obj[13]=RegValue : S-1-5-21-2847657936-2584176199-1113988166-1005\software\coulomb "Location"
obj[16]=Regkey : software\microsoft\windows\currentversion\uninstall\hardcore
obj[17]=RegValue : software\microsoft\windows\currentversion\uninstall\hardcore "DisplayName"
obj[18]=RegValue : software\microsoft\windows\currentversion\uninstall\hardcore "UninstallString"
obj[19]=RegValue : software\microsoft\windows\currentversion\uninstall\hardcore "DisplayIcon"

HOLYSTIC-DIALER
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
obj[14]=Regkey : S-1-5-21-2847657936-2584176199-1113988166-1005\software\holistyc
obj[15]=RegValue : S-1-5-21-2847657936-2584176199-1113988166-1005\software\holistyc "country"
obj[25]=Regkey : S-1-5-21-2847657936-2584176199-1113988166-1005\\software\holistyc
obj[26]=RegValue : S-1-5-21-2847657936-2584176199-1113988166-1005\\software\holistyc "country"
obj[65]=Folder : C:\WINDOWS\Icons
obj[94]=File : C:\WINDOWS\icons\Hol326.ico

DIALER.SCOM
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
obj[20]=Regkey : S-1-5-21-2847657936-2584176199-1113988166-1005\software\scom\dialers
obj[21]=Regkey : software\scom\dialers
obj[66]=Regkey : software\scom

MAGICCONTROL
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
obj[34]=RegValue : S-1-5-21-2847657936-2584176199-1113988166-1005\software\microsoft\windows\currentversion\run "mslagent"
obj[35]=RegValue : S-1-5-21-2847657936-2584176199-1113988166-1009\software\microsoft\windows\currentversion\run "mslagent"
obj[67]=Regkey : software\microsoft\windows\currentversion\uninstall\mslagent
obj[68]=RegValue : software\microsoft\windows\currentversion\uninstall\mslagent "UninstallString"
obj[69]=RegValue : software\microsoft\windows\currentversion\uninstall\mslagent "DisplayName"
obj[70]=RegValue : software\microsoft\windows\currentversion\run "mslagent"
obj[71]=Folder : C:\WINDOWS\mslagent

TRACKING COOKIE
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
obj[36]=IECache Entry : Cookie:harolds [email protected]/
obj[37]=IECache Entry : Cookie:harolds [email protected]/
obj[38]=IECache Entry : Cookie:harolds [email protected]/
obj[39]=IECache Entry : Cookie:harolds [email protected]/
obj[40]=IECache Entry : Cookie:harolds [email protected]/
obj[41]=IECache Entry : Cookie:harolds [email protected]/
obj[42]=IECache Entry : Cookie:harolds [email protected]/
obj[43]=IECache Entry : Cookie:harolds [email protected]/
obj[44]=IECache Entry : Cookie:harolds [email protected]/
obj[45]=IECache Entry : Cookie:harolds [email protected]/
obj[46]=IECache Entry : Cookie:harolds [email protected]/
obj[47]=IECache Entry : C:\Documents and Settings\Friend.SNNECCI\Cookies\friend@atdmt[2].txt
obj[48]=IECache Entry : C:\Documents and Settings\Friend.SNNECCI\Cookies\friend@doubleclick[2].txt
obj[49]=IECache Entry : C:\Documents and Settings\Harolds Place\Local Settings\Temp\Cookies\harolds place@180solutions[1].txt
obj[50]=IECache Entry : C:\Documents and Settings\Harolds Place\Local Settings\Temp\Cookies\harolds [email protected][1].txt
obj[51]=IECache Entry : C:\Documents and Settings\Lisa\Cookies\lisa@atdmt[2].txt
obj[52]=IECache Entry : C:\Documents and Settings\Lisa\Cookies\lisa@tribalfusion[1].txt

REDIRECTED HOSTFILE ENTRY
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
obj[53]=Hosts file : 12.129.205.209 search.netscape.com12.129.205.209

VX2
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
obj[72]=Regkey : software\vendor\xml
obj[73]=RegValue : software\vendor\xml ""
obj[74]=Regkey : software\vendor
obj[75]=RegValue : software\microsoft\internet explorer\toolbar\webbrowser "{0E5CBF21-D15F-11D0-8301-00AA005B4383}"
obj[76]=RegValue : software\microsoft\internet explorer\main\featurecontrol\feature_window_restrictions "iexplore.exe"
obj[79]=File : C:\Documents and Settings\Harolds Place\Local Settings\Temp\alchem.cab
obj[80]=File : C:\Documents and Settings\Harolds Place\Local Settings\Temp\alchem.exe
obj[81]=File : C:\Documents and Settings\Harolds Place\Local Settings\Temp\THI2883.tmp\twaintec.cab
obj[82]=File : C:\Documents and Settings\Harolds Place\Local Settings\Temp\THI580A.tmp\twaintec.cab
obj[86]=File : C:\WINDOWS\preInsTT.exe
obj[95]=File : C:\WINDOWS\inf\twaintec.inf
obj[96]=File : C:\WINDOWS\inf\twaintec.PNF

EUNIVERSE
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
obj[77]=Folder : C:\Program Files\IncrediFind
obj[78]=Folder : C:\Program Files\incredifind\BHO
obj[84]=File : C:\Program Files\IncrediFind\BHO\IncFindBHO.dll
obj[85]=File : C:\updaterInstall_112.exe
obj[90]=File : C:\WINDOWS\system32\setup_incred_4.exe
obj[97]=File : C:\Program Files\incredifind\bho\date.txt

I-LOOKUP
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
obj[83]=File : C:\install.cab

NETPAL
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
obj[88]=File : C:\WINDOWS\system32\lstb4drc.exe
obj[98]=File : C:\WINDOWS\system32\lstb4drc.dll

SAHAGENT
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
obj[91]=File : C:\WINDOWS\system32\SHAgentNew.dll

OTHER
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
obj[99]=File : C:\WINDOWS\prefetch\EVTHTM.EXE-0542BAC5.pf
  • 0

Advertisements

#2
Guest_nommork_*
Posted 25 April 2005 - 06:14 AM

Guest_nommork_*
  • Guest
Run two of the following programs
Spysweeper
http://www.webroot.c...4a8c66981b574e5

Microsoft Anti-spyware
http://www.microsoft...re/default.mspx

Ad-aware se
http://www.lavasoft....ftware/adaware/
MAke sure definition files are up-to-date and Full System Scan is chosen

Run at least two of the online AV scans:
Panda Active Scan
House Call (Trend Micro)
BitDefender Free Online Virus Scan
F-Secure Free Online Virus Scan
Symantec Security Scan & Virus Detection
RAV AntiVirus Online Virus Scan!
Danish Antivirus scan
McAfee Antivirus scan
Danish Antivirus scan
F-SecureAntivirus scan

Please download Hijackthis 1.99.1
Hijackthis Download


Scan and post a log

Edited by nommork, 25 April 2005 - 06:15 AM.

  • 0

#3
Flybynight
Posted 25 April 2005 - 04:02 PM

Flybynight

    New Member

  • Topic Starter
  • Member
  • Pip
  • 3 posts
Wow! Did what you said. Cleaned out some stuff I didn't know I had. Deleted a lot that couldn't be "cleaned" so hopefully i haven't deleted anything important. A lot of it seemed to be hanging out in temp files so hopefully ok.

Just ran the hijackThis. Here's my log....

Error message no longer appearing when I boot up but system definitely slower than it was a few weeks ago. Anything i need to get rid of?


Logfile of HijackThis v1.99.1
Scan saved at 23:54:08, on 25/04/2005
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe
C:\Program Files\iPod\Bin\iPodSrv.exe
C:\Program Files\Common Files\Microsoft Shared\VS7Debug\mdm.exe
C:\Program Files\Norton AntiVirus\navapsvc.exe
C:\Program Files\Norton Internet Security\NISUM.EXE
C:\WINDOWS\system32\slserv.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Virtual CD v4 SDK\system\vcssecs.exe
C:\Program Files\Norton Internet Security\ccPxySvc.exe
C:\Program Files\Common Files\Symantec Shared\Security Center\SymWSC.exe
C:\WINDOWS\System32\STDSB.exe
C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\Program Files\Virtual CD v4 SDK\system\vcsplay.exe
C:\Program Files\Common Files\Symantec Shared\ccApp.exe
C:\Program Files\Packard Bell EverSafe\TrayControl.exe
C:\Program Files\MUSICMATCH\MUSICMATCH Jukebox\mm_tray.exe
C:\Program Files\iPod\Bin\iPodWatcher.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\Program Files\Common Files\Microsoft Shared\Works Shared\WkUFind.exe
C:\Program Files\QuickTime\qttask.exe
C:\windows\system32\mnpol.exe
C:\Program Files\Winamp\winampa.exe
C:\Program Files\Java\jre1.5.0\bin\jusched.exe
C:\Program Files\Microsoft AntiSpyware\gcasServ.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\Microsoft Money\System\mnyexpr.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Sony Corporation\Image Transfer\SonyTray.exe
C:\Program Files\Wireless\Client Manager\CMAGS.EXE
C:\Program Files\Microsoft AntiSpyware\gcasDtServ.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Documents and Settings\Harolds Place\Desktop\hijackthis\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Packard Bell
O2 - BHO: (no name) - {021BB032-80A8-4FB6-B3D5-CF27B1553B95} - C:\WINDOWS\mslagent\4b_1,0,1,0_mslagent.dll (file missing)
O2 - BHO: Yahoo! Companion BHO - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\PROGRA~1\Yahoo!\COMPAN~1\Installs\cpn\ycomp5_3_12_0.dll
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {243B17DE-77C7-46BF-B94B-0B5F309A0E64} - C:\Program Files\Microsoft Money\System\mnyside.dll
O2 - BHO: CNavExtBho Class - {BDF3E430-B101-42AD-A544-FADC6B084872} - C:\Program Files\Norton AntiVirus\NavShExt.dll
O2 - BHO: (no name) - {FDD3B846-8D59-4ffb-8758-209B6AD74ACC} - (no file)
O3 - Toolbar: Norton AntiVirus - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - C:\Program Files\Norton AntiVirus\NavShExt.dll
O3 - Toolbar: &Yahoo! Companion - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\PROGRA~1\Yahoo!\COMPAN~1\Installs\cpn\ycomp5_3_12_0.dll
O4 - HKLM\..\Run: [STDSB] C:\WINDOWS\System32\STDSB.exe
O4 - HKLM\..\Run: [SynTPLpr] C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [VCSPlayer] "C:\Program Files\Virtual CD v4 SDK\system\vcsplay.exe"
O4 - HKLM\..\Run: [CleanEasyImg] c:\apps\easydvd\cleanall.exe
O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Common Files\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [ccRegVfy] "C:\Program Files\Common Files\Symantec Shared\ccRegVfy.exe"
O4 - HKLM\..\Run: [NovaNet-WEB Tray Control] C:\Program Files\Packard Bell EverSafe\TrayControl.exe
O4 - HKLM\..\Run: [MMTray] C:\Program Files\MUSICMATCH\MUSICMATCH Jukebox\mm_tray.exe
O4 - HKLM\..\Run: [iPodWatcher] C:\Program Files\iPod\Bin\iPodWatcher.exe
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [Microsoft Works Update Detection] C:\Program Files\Common Files\Microsoft Shared\Works Shared\WkUFind.exe
O4 - HKLM\..\Run: [sncntr] c:\windows\system32\sncntr.exe /nocomm
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [MNPol] c:\windows\system32\mnpol.exe /nocomm
O4 - HKLM\..\Run: [ljhrhmgynkth] C:\WINDOWS\System32\vwlwra.exe
O4 - HKLM\..\Run: [WinampAgent] C:\Program Files\Winamp\winampa.exe
O4 - HKLM\..\Run: [Symantec NetDriver Monitor] C:\PROGRA~1\SYMNET~1\SNDMon.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0\bin\jusched.exe
O4 - HKLM\..\Run: [gcasServ] "C:\Program Files\Microsoft AntiSpyware\gcasServ.exe"
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [MoneyAgent] "C:\Program Files\Microsoft Money\System\mnyexpr.exe"
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [Yahoo! Pager] C:\Program Files\Yahoo!\Messenger\ypager.exe -quiet
O4 - Global Startup: Image Transfer.lnk = ?
O4 - Global Startup: Packard Bell EverSafe Tray Control.lnk = C:\Program Files\Packard Bell EverSafe\TrayControl.exe
O4 - Global Startup: Wireless Client Manager.lnk = ?
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~4\Office10\EXCEL.EXE/3000
O8 - Extra context menu item: E&xport to Microsoft Office Excel - res://C:\PROGRA~1\MICROS~4\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0\bin\npjpi150.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0\bin\npjpi150.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~4\OFFICE11\REFIEBAR.DLL
O9 - Extra button: Money Viewer - {E023F504-0C5A-4750-A1E7-A9046DEA8A21} - C:\Program Files\Microsoft Money\System\mnyside.dll
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O14 - IERESET.INF: START_PAGE_URL=file://C:\APPS\IE\offline\uk.htm
O16 - DPF: {3E68E405-C6DE-49FF-83AE-41EE9F4C36CE} (Office Update Installation Engine) - http://officeint.mic...ntent/opuc2.cab
O16 - DPF: {B9191F79-5613-4C76-AA2A-398534BB8999} (YAddBook Class) - http://us.dl1.yimg.c...utocomplete.cab
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe
O23 - Service: Symantec Password Validation Service (ccPwdSvc) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccPwdSvc.exe
O23 - Service: Symantec Proxy Service (ccPxySvc) - Symantec Corporation - C:\Program Files\Norton Internet Security\ccPxySvc.exe
O23 - Service: iPodSrv - Unknown owner - C:\Program Files\iPod\Bin\iPodSrv.exe
O23 - Service: Norton AntiVirus Auto Protect Service (navapsvc) - Symantec Corporation - C:\Program Files\Norton AntiVirus\navapsvc.exe
O23 - Service: Norton Internet Security Accounts Manager (NISUM) - Symantec Corporation - C:\Program Files\Norton Internet Security\NISUM.EXE
O23 - Service: ScriptBlocking Service (SBService) - Symantec Corporation - C:\PROGRA~1\COMMON~1\SYMANT~1\SCRIPT~1\SBServ.exe
O23 - Service: SmartLinkService (SLService) - - C:\WINDOWS\SYSTEM32\slserv.exe
O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\SNDSrvc.exe
O23 - Service: SymWMI Service (SymWSC) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\Security Center\SymWSC.exe
O23 - Service: Virtual CD v4 Security service (SDK - Version) (VCSSecS) - H+H Software GmbH - C:\Program Files\Virtual CD v4 SDK\system\vcssecs.exe
  • 0

#4
Flybynight
Posted 25 April 2005 - 04:07 PM

Flybynight

    New Member

  • Topic Starter
  • Member
  • Pip
  • 3 posts
Oh yeah. Sorry to be a real techno no hoper but what do I need to do with my quarantine list? Do I delete all those nasty things or just leave them in quarantine (whatever that means)

...
  • 0
Back to Virus, Spyware, Malware Removal · Next Unread Topic →




Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

  1. Geeks to Go Community
  2. Security
  3. Virus, Spyware, Malware Removal

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP