My computer also had yellow triangle and offered me to buy antispyware. And the system also says that it cannot find file C/windows/system32/winupdate.exe
I followed your instructions and scaned my computer with Malwarebyte's Anti-malware and SUPERAntiSpyware.
When i tried to do the full scan with Panda ActiveScan, my computer says that FireFox has an error and has to be closed.
Can you please help me to fix my computer?
Thank you beforehand.
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 21:59:33, on 14.04.2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16640)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\WLTRYSVC.EXE
C:\WINDOWS\System32\bcmwltry.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\DRIVERS\CDANTSRV.EXE
C:\Programme\Cisco Systems\VPN Client\cvpnd.exe
C:\Programme\Dell Network Assistant\hnm_svc.exe
C:\Programme\Gemeinsame Dateien\McAfee\HackerWatch\HWAPI.exe
C:\PROGRA~1\McAfee\MSC\mcmscsvc.exe
c:\programme\gemeinsame dateien\mcafee\mna\mcnasvc.exe
C:\PROGRA~1\McAfee\VIRUSS~1\mcods.exe
C:\PROGRA~1\McAfee\MSC\mcpromgr.exe
c:\PROGRA~1\GEMEIN~1\mcafee\mcproxy\mcproxy.exe
c:\PROGRA~1\GEMEIN~1\mcafee\redirsvc\redirsvc.exe
C:\PROGRA~1\McAfee\VIRUSS~1\mcshield.exe
C:\PROGRA~1\McAfee\VIRUSS~1\mcsysmon.exe
C:\Programme\Java\jre1.6.0_05\bin\jusched.exe
C:\Programme\McAfee\MPF\MPFSrv.exe
C:\WINDOWS\stsystra.exe
C:\PROGRA~1\McAfee\MPS\mps.exe
C:\Programme\McAfee\MSK\MskSrver.exe
C:\Programme\ATI Technologies\ATI.ACE\CLI.EXE
C:\Programme\Synaptics\SynTP\SynTPEnh.exe
C:\Programme\Dell\QuickSet\quickset.exe
C:\WINDOWS\system32\WLTRAY.exe
C:\Programme\Dell\QuickSet\NICCONFIGSVC.exe
C:\Programme\CyberLink\PowerDVD\DVDLauncher.exe
C:\WINDOWS\System32\DLA\DLACTRLW.EXE
C:\Programme\Gemeinsame Dateien\InstallShield\UpdateService\issch.exe
C:\Programme\SiteAdvisor\6253\SAService.exe
C:\Programme\Dell Support Center\bin\sprtsvc.exe
C:\Programme\Google\Google Desktop Search\GoogleDesktop.exe
C:\Programme\McAfee\MSK\MskAgent.exe
C:\WINDOWS\system32\svchost.exe
C:\Programme\SiteAdvisor\6253\SiteAdv.exe
C:\Programme\Corel\Corel Snapfire Plus\Corel Photo Downloader.exe
C:\PROGRA~1\Sony\SONICS~1\SsAAD.exe
C:\PROGRA~1\mcafee.com\agent\mcagent.exe
C:\Programme\Google\Google Desktop Search\GoogleDesktopIndex.exe
C:\Programme\McAfee\MPS\mpsevh.exe
C:\Programme\bhv\Bewerbungs Trainer\Reminder.exe
C:\Programme\ABBYY Lingvo 12\Lvagent.exe
C:\Programme\Google\Google Desktop Search\GoogleDesktopDisplay.exe
C:\Programme\WinZip E-Mail Companion\loadwzco.exe
C:\Programme\Adobe\Acrobat 8.0\Acrobat\Acrotray.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Programme\Dell Support\DSAgnt.exe
C:\Programme\Dell Support Center\bin\sprtcmd.exe
C:\Programme\PAPAlert\PAPAlert.exe
C:\Programme\SUPERAntiSpyware\SUPERAntiSpyware.exe
C:\Programme\Gemeinsame Dateien\Sony Shared\AVLib\SSScsiSV.exe
C:\Programme\ABBYY Lingvo 12\Tutor.exe
C:\Programme\Gemeinsame Dateien\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
C:\Programme\Dell Network Assistant\ezi_hnm2.exe
C:\Programme\Digital Line Detect\DLG.exe
C:\Programme\WinZip\WZQKPICK.EXE
C:\Programme\ATI Technologies\ATI.ACE\cli.exe
C:\Programme\Mozilla Firefox\firefox.exe
C:\Programme\Trend Micro\HijackThis\HijackThis.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.de/ig/dell?hl=de&client=dell-row&channel=de&ibd=0070112
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://us.rd.yahoo.c...rch/search.html
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://us.rd.yahoo.c...//www.yahoo.com
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.sparkpeop...other_goals.asp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.yahoo.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://us.rd.yahoo.c...//www.yahoo.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://us.rd.yahoo.c...rch/search.html
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://us.rd.yahoo.c...//www.yahoo.com
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.yahoo.com
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R1 - HKLM\Software\Microsoft\Internet Explorer\Search,Default_Page_URL = www.google.de/ig/dell?hl=de&client=dell-row&channel=de&ibd=0070112
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://us.rd.yahoo.c...//www.yahoo.com
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Programme\Yahoo!\Companion\Installs\cpn0\yt.dll
R3 - URLSearchHook: ICQ Toolbar - {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\PROGRA~1\ICQTOO~1\toolbaru.dll
R3 - URLSearchHook: Yuwie Toolbar - {3514492a-13ee-4da6-922e-5a4e407189ee} - C:\Programme\Yuwie\tbYuwi.dll
F3 - REG:win.ini: run="C:\WINDOWS\system32\winupdate.exe"
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Programme\Yahoo!\Companion\Installs\cpn0\yt.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\programme\google\googletoolbar3.dll
O3 - Toolbar: McAfee SiteAdvisor - {0BF43445-2F28-4351-9252-17FE6E806AA0} - C:\Programme\SiteAdvisor\6253\SiteAdv.dll
O3 - Toolbar: ICQ Toolbar - {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\PROGRA~1\ICQTOO~1\toolbaru.dll
O3 - Toolbar: Yuwie Toolbar - {3514492a-13ee-4da6-922e-5a4e407189ee} - C:\Programme\Yuwie\tbYuwi.dll
O3 - Toolbar: MYPOINTS - {A057A204-BACC-4D26-CEC4-75A487FD6484} - C:\Programme\mypoints\mypoints.dll
O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Programme\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Programme\Java\jre1.6.0_05\bin\jusched.exe"
O4 - HKLM\..\Run: [SigmatelSysTrayApp] stsystra.exe
O4 - HKLM\..\Run: [ATICCC] "C:\Programme\ATI Technologies\ATI.ACE\CLIStart.exe"
O4 - HKLM\..\Run: [SynTPEnh] C:\Programme\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [Dell QuickSet] C:\Programme\Dell\QuickSet\quickset.exe
O4 - HKLM\..\Run: [Broadcom Wireless Manager UI] C:\WINDOWS\system32\WLTRAY.exe
O4 - HKLM\..\Run: [DVDLauncher] "C:\Programme\CyberLink\PowerDVD\DVDLauncher.exe"
O4 - HKLM\..\Run: [DLA] C:\WINDOWS\System32\DLA\DLACTRLW.EXE
O4 - HKLM\..\Run: [ISUSPM Startup] C:\PROGRA~1\GEMEIN~1\INSTAL~1\UPDATE~1\ISUSPM.exe -startup
O4 - HKLM\..\Run: [ISUSScheduler] "C:\Programme\Gemeinsame Dateien\InstallShield\UpdateService\issch.exe" -start
O4 - HKLM\..\Run: [Google Desktop Search] "C:\Programme\Google\Google Desktop Search\GoogleDesktop.exe" /startup
O4 - HKLM\..\Run: [MskAgentexe] C:\Programme\McAfee\MSK\MskAgent.exe
O4 - HKLM\..\Run: [SiteAdvisor] C:\Programme\SiteAdvisor\6253\SiteAdv.exe
O4 - HKLM\..\Run: [Corel Photo Downloader] C:\Programme\Corel\Corel Snapfire Plus\Corel Photo Downloader.exe
O4 - HKLM\..\Run: [ICQ Lite] "C:\Programme\ICQLite\ICQLite.exe" -minimize
O4 - HKLM\..\Run: [SsAAD.exe] C:\PROGRA~1\Sony\SONICS~1\SsAAD.exe
O4 - HKLM\..\Run: [Adobe Photo Downloader] "C:\Programme\Adobe\Photoshop Album Starter Edition\3.2\Apps\apdproxy.exe"
O4 - HKLM\..\Run: [WinampAgent] C:\Programme\Winamp\winampa.exe
O4 - HKLM\..\Run: [Bewerbungs Organizer] C:\Programme\bhv\Bewerbungs Trainer\Reminder.exe
O4 - HKLM\..\Run: [dscactivate] "C:\Programme\Dell Support Center\gs_agent\custom\dsca.exe"
O4 - HKLM\..\Run: [Lingvo Launcher] "C:\Programme\ABBYY Lingvo 12\Lvagent.exe" /STARTUP
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Programme\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [WinZip E-Mail Companion OEAPI] "C:\Programme\WinZip E-Mail Companion\loadwzco.exe"
O4 - HKLM\..\Run: [ctfmona] C:\WINDOWS\system32\ctfmona.exe
O4 - HKLM\..\Run: [Acrobat Assistant 8.0] "C:\Programme\Adobe\Acrobat 8.0\Acrobat\Acrotray.exe"
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [ModemOnHold] C:\Programme\NetWaiting\netwaiting.exe
O4 - HKCU\..\Run: [DellSupport] "C:\Programme\Dell Support\DSAgnt.exe" /startup
O4 - HKCU\..\Run: [Skype] "C:\Programme\Skype\Phone\Skype.exe" /nosplash /minimized
O4 - HKCU\..\Run: [MSMSGS] "C:\Programme\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [DellSupportCenter] "C:\Programme\Dell Support Center\bin\sprtcmd.exe" /P DellSupportCenter
O4 - HKCU\..\Run: [PAPAlert] C:\Programme\PAPAlert\PAPAlert.exe
O4 - HKCU\..\Run: [AdobeUpdater] C:\Programme\Gemeinsame Dateien\Adobe\Updater5\AdobeUpdater.exe
O4 - HKCU\..\Run: [SUPERAntiSpyware] C:\Programme\SUPERAntiSpyware\SUPERAntiSpyware.exe
O4 - HKCU\..\Run: [Tutor.exe] "C:\Programme\ABBYY Lingvo 12\Tutor.exe" /AS
O4 - HKCU\..\RunOnce: [ICQ Lite] C:\Programme\ICQLite\ICQLite.exe -trayboot
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOKALER DIENST')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETZWERKDIENST')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Startup: MySurvey Messenger.lnk = C:\Programme\MySurvey Messenger\MySurveyMessenger.exe
O4 - Global Startup: Dell Network Assistant.lnk = ?
O4 - Global Startup: Digital Line Detect.lnk = ?
O4 - Global Startup: VPN Client.lnk = ?
O4 - Global Startup: WinZip Quick Pick.lnk = C:\Programme\WinZip\WZQKPICK.EXE
O8 - Extra context menu item: &Search - http://edits.mywebse...?p=ZNxmk142YYDE
O8 - Extra context menu item: ???????? ? ???????????? PDF - res://C:\Programme\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: ????????????? ????????? ?????? ? Adobe PDF - res://C:\Programme\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
O8 - Extra context menu item: Suche - res://C:\Programme\eBay\eBay Toolbar2\eBayTb.dll/RCSearch.html
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Programme\Java\jre1.6.0_05\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Konsole - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Programme\Java\jre1.6.0_05\bin\ssv.dll
O9 - Extra button: Add to StyleFeeder - {54cac42e-a33b-44c0-b43f-df5949b436f4} - C:\Programme\StyleFeeder\IE\stylefeeder_script.js
O9 - Extra button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - C:\PROGRA~1\Skype\Phone\IEPlugin\SKYPEI~1.DLL
O9 - Extra button: ?????????? ????????? - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\OFFICE11\REFIEBAR.DLL
O9 - Extra button: ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - C:\Programme\ICQLite\ICQLite.exe
O9 - Extra 'Tools' menuitem: ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - C:\Programme\ICQLite\ICQLite.exe
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Programme\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Programme\Messenger\msmsgs.exe
O9 - Extra button: StyleFeeder - {C1F0024B-8278-4999-B7E6-2718426D9FE6} - C:\Programme\StyleFeeder\IE\StyleFeeder.dll (HKCU)
O9 - Extra 'Tools' menuitem: StyleFeeder - {C1F0024B-8278-4999-B7E6-2718426D9FE6} - C:\Programme\StyleFeeder\IE\StyleFeeder.dll (HKCU)
O16 - DPF: {1A1F56AA-3401-46F9-B277-D57F3421F821} (FunGamesLoader Object) - http://mypoints.worl...GamesLoader.cab
O16 - DPF: {5E92F538-B50B-46C5-9C5F-C6EECED3F6C6} - http://www.infospace...pointsSetup.exe
O16 - DPF: {6E5E167B-1566-4316-B27F-0DDAB3484CF7} (Image Uploader Control) - http://vkontakte.ru/...geUploader4.cab
O16 - DPF: {8A94C905-FF9D-43B6-8708-F0F22D22B1CB} (Wwlaunch Control) - http://www.worldwinn...ed/wwlaunch.cab
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\GEMEIN~1\Skype\SKYPE4~1.DLL
O20 - AppInit_DLLs: C:\PROGRA~1\Google\GOOGLE~1\GOEC62~1.DLL
O20 - Winlogon Notify: !SASWinLogon - C:\Programme\SUPERAntiSpyware\SASWINLO.DLL
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762## (Bonjour Service) - Apple Computer, Inc. - C:\Programme\Bonjour\mDNSResponder.exe
O23 - Service: C-DillaSrv - C-Dilla Ltd - C:\WINDOWS\system32\DRIVERS\CDANTSRV.EXE
O23 - Service: Cisco Systems, Inc. VPN Service (CVPND) - Cisco Systems, Inc. - C:\Programme\Cisco Systems\VPN Client\cvpnd.exe
O23 - Service: McAfee E-mail Proxy (Emproxy) - McAfee, Inc. - C:\PROGRA~1\GEMEIN~1\McAfee\EmProxy\emproxy.exe
O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Programme\Gemeinsame Dateien\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Programme\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Advanced Networking Service (hnmsvc) - SingleClick Systems - C:\Programme\Dell Network Assistant\hnm_svc.exe
O23 - Service: McAfee HackerWatch Service - McAfee, Inc. - C:\Programme\Gemeinsame Dateien\McAfee\HackerWatch\HWAPI.exe
O23 - Service: McAfee Update Manager (mcmispupdmgr) - McAfee, Inc. - C:\PROGRA~1\McAfee\MSC\mcupdmgr.exe
O23 - Service: McAfee Services (mcmscsvc) - McAfee, Inc. - C:\PROGRA~1\McAfee\MSC\mcmscsvc.exe
O23 - Service: McAfee Network Agent (McNASvc) - McAfee, Inc. - c:\programme\gemeinsame dateien\mcafee\mna\mcnasvc.exe
O23 - Service: McAfee Scanner (McODS) - McAfee, Inc. - C:\PROGRA~1\McAfee\VIRUSS~1\mcods.exe
O23 - Service: McAfee Protection Manager (mcpromgr) - McAfee, Inc. - C:\PROGRA~1\McAfee\MSC\mcpromgr.exe
O23 - Service: McAfee Proxy Service (McProxy) - McAfee, Inc. - c:\PROGRA~1\GEMEIN~1\mcafee\mcproxy\mcproxy.exe
O23 - Service: McAfee Redirector Service (McRedirector) - McAfee, Inc. - c:\PROGRA~1\GEMEIN~1\mcafee\redirsvc\redirsvc.exe
O23 - Service: McAfee Real-time Scanner (McShield) - McAfee, Inc. - C:\PROGRA~1\McAfee\VIRUSS~1\mcshield.exe
O23 - Service: McAfee SystemGuards (McSysmon) - McAfee, Inc. - C:\PROGRA~1\McAfee\VIRUSS~1\mcsysmon.exe
O23 - Service: McAfee Personal Firewall Service (MpfService) - McAfee, Inc. - C:\Programme\McAfee\MPF\MPFSrv.exe
O23 - Service: McAfee Privacy Service (MPS9) - McAfee, Inc. - C:\PROGRA~1\McAfee\MPS\mps.exe
O23 - Service: MSCSPTISRV - Sony Corporation - C:\Programme\Gemeinsame Dateien\Sony Shared\AVLib\MSCSPTISRV.exe
O23 - Service: McAfee SpamKiller Service (MSK80Service) - McAfee Inc. - C:\Programme\McAfee\MSK\MskSrver.exe
O23 - Service: MD Simple Burner Service (NetMDSB) - Sony Corporation - C:\Programme\Sony\MD Simple Burner\NetMDSB.exe
O23 - Service: NICCONFIGSVC - Dell Inc. - C:\Programme\Dell\QuickSet\NICCONFIGSVC.exe
O23 - Service: PACSPTISVR - Sony Corporation - C:\Programme\Gemeinsame Dateien\Sony Shared\AVLib\PACSPTISVR.exe
O23 - Service: SiteAdvisor-Dienst (SiteAdvisor Service) - Unknown owner - C:\Programme\SiteAdvisor\6253\SAService.exe
O23 - Service: SupportSoft Sprocket Service (dellsupportcenter) (sprtsvc_dellsupportcenter) - SupportSoft, Inc. - C:\Programme\Dell Support Center\bin\sprtsvc.exe
O23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - C:\Programme\Gemeinsame Dateien\Sony Shared\AVLib\SPTISRV.exe
O23 - Service: SonicStage SCSI Service (SSScsiSV) - Sony Corporation - C:\Programme\Gemeinsame Dateien\Sony Shared\AVLib\SSScsiSV.exe
O23 - Service: Dell Wireless WLAN Tray Service (wltrysvc) - Unknown owner - C:\WINDOWS\System32\WLTRYSVC.EXE
--
End of file - 16107 bytes
******************************
Malwarebytes' Anti-Malware 1.11
Database version: 623
Scan type: Quick Scan
Objects scanned: 32112
Time elapsed: 16 minute(s), 21 second(s)
Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 0
Registry Values Infected: 0
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 0
Memory Processes Infected:
(No malicious items detected)
Memory Modules Infected:
(No malicious items detected)
Registry Keys Infected:
(No malicious items detected)
Registry Values Infected:
(No malicious items detected)
Registry Data Items Infected:
(No malicious items detected)
Folders Infected:
(No malicious items detected)
Files Infected:
(No malicious items detected)
********************************
SUPERAntiSpyware Scan Log
http://www.superantispyware.com
Generated 04/14/2008 at 09:02 PM
Application Version : 4.0.1154
Core Rules Database Version : 3437
Trace Rules Database Version: 1429
Scan type : Complete Scan
Total Scan Time : 02:28:01
Memory items scanned : 822
Memory threats detected : 0
Registry items scanned : 6406
Registry threats detected : 5
File items scanned : 154639
File threats detected : 61
Trojan.Media-Codec/V3
HKLM\Software\Classes\CLSID\{E26CEADA-67B0-4543-BE8B-307F00265118}
HKCR\CLSID\{E26CEADA-67B0-4543-BE8B-307F00265118}
HKCR\CLSID\{E26CEADA-67B0-4543-BE8B-307F00265118}#xxx
HKCR\CLSID\{E26CEADA-67B0-4543-BE8B-307F00265118}\InprocServer32
HKCR\CLSID\{E26CEADA-67B0-4543-BE8B-307F00265118}\InprocServer32#ThreadingModel
C:\PROGRAMME\VIDEO ACTIVEX ACCESS\IESPLG.DLL
Rogue.Unclassified/Loader
C:\DECKARD\SYSTEM SCANNER\BACKUP\DOKUME~1\EUGENIA\LOKALE~1\TEMP\.TT4A0.TMP
Adware.Tracking Cookie
C:\Deckard\System Scanner\backup\WINDOWS\temp\Cookies\eugenia@mywebsearch[2].txt
Trojan.Fake-Drop/Gen
C:\DECKARD\SYSTEM SCANNER\BACKUP\WINDOWS\TEMP\SALM.EXE
C:\PROGRAM FILES\180SEARCH ASSISTANT\180SA.EXE
C:\PROGRAM FILES\180SEARCH ASSISTANT\SAU.EXE
C:\PROGRAM FILES\180SEARCHASSISTANT\SAAP.EXE
C:\PROGRAM FILES\180SEARCHASSISTANT\SAC.EXE
C:\PROGRAM FILES\180SOLUTIONS\SAIS.EXE
C:\PROGRAM FILES\SEEKMO\SEEKMOHOOK.DLL
C:\PROGRAM FILES\STC\CSV5P070.EXE
C:\PROGRAM FILES\SYSMNT\SSMGR.EXE
C:\PROGRAM FILES\ZANGO\ZANGO.EXE
C:\SYSTEM VOLUME INFORMATION\_RESTORE{08A5F15B-D5F0-4D17-893D-8B358608DCF6}\RP194\A0060033.EXE
C:\SYSTEM VOLUME INFORMATION\_RESTORE{08A5F15B-D5F0-4D17-893D-8B358608DCF6}\RP194\A0060035.DLL
C:\SYSTEM VOLUME INFORMATION\_RESTORE{08A5F15B-D5F0-4D17-893D-8B358608DCF6}\RP194\A0060036.DLL
C:\SYSTEM VOLUME INFORMATION\_RESTORE{08A5F15B-D5F0-4D17-893D-8B358608DCF6}\RP194\A0060037.DLL
C:\SYSTEM VOLUME INFORMATION\_RESTORE{08A5F15B-D5F0-4D17-893D-8B358608DCF6}\RP194\A0060038.DLL
C:\SYSTEM VOLUME INFORMATION\_RESTORE{08A5F15B-D5F0-4D17-893D-8B358608DCF6}\RP194\A0060039.EXE
C:\SYSTEM VOLUME INFORMATION\_RESTORE{08A5F15B-D5F0-4D17-893D-8B358608DCF6}\RP194\A0060040.DLL
C:\SYSTEM VOLUME INFORMATION\_RESTORE{08A5F15B-D5F0-4D17-893D-8B358608DCF6}\RP194\A0060041.DLL
C:\SYSTEM VOLUME INFORMATION\_RESTORE{08A5F15B-D5F0-4D17-893D-8B358608DCF6}\RP194\A0060042.DLL
C:\SYSTEM VOLUME INFORMATION\_RESTORE{08A5F15B-D5F0-4D17-893D-8B358608DCF6}\RP194\A0060044.DLL
C:\SYSTEM VOLUME INFORMATION\_RESTORE{08A5F15B-D5F0-4D17-893D-8B358608DCF6}\RP194\A0060045.DLL
C:\SYSTEM VOLUME INFORMATION\_RESTORE{08A5F15B-D5F0-4D17-893D-8B358608DCF6}\RP194\A0060046.DLL
C:\SYSTEM VOLUME INFORMATION\_RESTORE{08A5F15B-D5F0-4D17-893D-8B358608DCF6}\RP194\A0060048.EXE
C:\SYSTEM VOLUME INFORMATION\_RESTORE{08A5F15B-D5F0-4D17-893D-8B358608DCF6}\RP194\A0060049.EXE
C:\SYSTEM VOLUME INFORMATION\_RESTORE{08A5F15B-D5F0-4D17-893D-8B358608DCF6}\RP194\A0060050.DLL
C:\SYSTEM VOLUME INFORMATION\_RESTORE{08A5F15B-D5F0-4D17-893D-8B358608DCF6}\RP194\A0060051.EXE
C:\SYSTEM VOLUME INFORMATION\_RESTORE{08A5F15B-D5F0-4D17-893D-8B358608DCF6}\RP194\A0060052.DLL
C:\SYSTEM VOLUME INFORMATION\_RESTORE{08A5F15B-D5F0-4D17-893D-8B358608DCF6}\RP194\A0060053.DLL
C:\SYSTEM VOLUME INFORMATION\_RESTORE{08A5F15B-D5F0-4D17-893D-8B358608DCF6}\RP194\A0060054.EXE
C:\SYSTEM VOLUME INFORMATION\_RESTORE{08A5F15B-D5F0-4D17-893D-8B358608DCF6}\RP194\A0060055.DLL
C:\SYSTEM VOLUME INFORMATION\_RESTORE{08A5F15B-D5F0-4D17-893D-8B358608DCF6}\RP194\A0060056.EXE
C:\SYSTEM VOLUME INFORMATION\_RESTORE{08A5F15B-D5F0-4D17-893D-8B358608DCF6}\RP194\A0060057.DLL
C:\SYSTEM VOLUME INFORMATION\_RESTORE{08A5F15B-D5F0-4D17-893D-8B358608DCF6}\RP194\A0060058.DLL
C:\SYSTEM VOLUME INFORMATION\_RESTORE{08A5F15B-D5F0-4D17-893D-8B358608DCF6}\RP194\A0060059.DLL
C:\SYSTEM VOLUME INFORMATION\_RESTORE{08A5F15B-D5F0-4D17-893D-8B358608DCF6}\RP194\A0060060.DLL
C:\SYSTEM VOLUME INFORMATION\_RESTORE{08A5F15B-D5F0-4D17-893D-8B358608DCF6}\RP194\A0060061.EXE
C:\SYSTEM VOLUME INFORMATION\_RESTORE{08A5F15B-D5F0-4D17-893D-8B358608DCF6}\RP194\A0060062.DLL
C:\SYSTEM VOLUME INFORMATION\_RESTORE{08A5F15B-D5F0-4D17-893D-8B358608DCF6}\RP194\A0060063.DLL
C:\SYSTEM VOLUME INFORMATION\_RESTORE{08A5F15B-D5F0-4D17-893D-8B358608DCF6}\RP194\A0060064.DLL
C:\SYSTEM VOLUME INFORMATION\_RESTORE{08A5F15B-D5F0-4D17-893D-8B358608DCF6}\RP194\A0060065.EXE
C:\SYSTEM VOLUME INFORMATION\_RESTORE{08A5F15B-D5F0-4D17-893D-8B358608DCF6}\RP194\A0060066.EXE
C:\SYSTEM VOLUME INFORMATION\_RESTORE{08A5F15B-D5F0-4D17-893D-8B358608DCF6}\RP194\A0060067.DLL
C:\SYSTEM VOLUME INFORMATION\_RESTORE{08A5F15B-D5F0-4D17-893D-8B358608DCF6}\RP194\A0060068.DLL
C:\SYSTEM VOLUME INFORMATION\_RESTORE{08A5F15B-D5F0-4D17-893D-8B358608DCF6}\RP194\A0060069.DLL
C:\SYSTEM VOLUME INFORMATION\_RESTORE{08A5F15B-D5F0-4D17-893D-8B358608DCF6}\RP194\A0060070.DLL
C:\SYSTEM VOLUME INFORMATION\_RESTORE{08A5F15B-D5F0-4D17-893D-8B358608DCF6}\RP194\A0060071.DLL
C:\SYSTEM VOLUME INFORMATION\_RESTORE{08A5F15B-D5F0-4D17-893D-8B358608DCF6}\RP194\A0060072.DLL
C:\SYSTEM VOLUME INFORMATION\_RESTORE{08A5F15B-D5F0-4D17-893D-8B358608DCF6}\RP194\A0060073.DLL
C:\SYSTEM VOLUME INFORMATION\_RESTORE{08A5F15B-D5F0-4D17-893D-8B358608DCF6}\RP194\A0060074.DLL
C:\SYSTEM VOLUME INFORMATION\_RESTORE{08A5F15B-D5F0-4D17-893D-8B358608DCF6}\RP194\A0060075.DLL
C:\SYSTEM VOLUME INFORMATION\_RESTORE{08A5F15B-D5F0-4D17-893D-8B358608DCF6}\RP194\A0060076.DLL
Trojan.Unclassified/FMSXWQS
C:\SYSTEM VOLUME INFORMATION\_RESTORE{08A5F15B-D5F0-4D17-893D-8B358608DCF6}\RP172\A0039547.EXE
Trojan.Net-MSV/VPS-Variant
C:\SYSTEM VOLUME INFORMATION\_RESTORE{08A5F15B-D5F0-4D17-893D-8B358608DCF6}\RP187\A0056008.DLL
Trojan.Unknown Origin
C:\SYSTEM VOLUME INFORMATION\_RESTORE{08A5F15B-D5F0-4D17-893D-8B358608DCF6}\RP194\A0060030.ICO
C:\SYSTEM VOLUME INFORMATION\_RESTORE{08A5F15B-D5F0-4D17-893D-8B358608DCF6}\RP194\A0060031.ICO
Rogue.LiveSecurityCenter-Trace
C:\WINDOWS\DEFAULT.HTM
Trace.Known Threat Sources
C:\Deckard\System Scanner\backup\WINDOWS\temp\Temporary Internet Files\Content.IE5\2VLR46TC\favicon[2].ico
C:\Deckard\System Scanner\backup\WINDOWS\temp\Temporary Internet Files\Content.IE5\5JG4O5W4\stat[1].htm
Edited by juanitaya99, 14 April 2008 - 02:05 PM.