Jump to content

Welcome to Geeks to Go - Register now for FREE

Geeks To Go is a helpful hub, where thousands of volunteer geeks quickly serve friendly answers and support. Check out the forums and get free advice from the experts. Register now to gain access to all of our features, it's FREE and only takes one minute. Once registered and logged in, you will be able to create topics, post replies to existing threads, give reputation to your fellow members, get your own private messenger, post status updates, manage your profile and so much more.

Create Account How it Works
Photo

Hijack This log [CLOSED]


  • This topic is locked This topic is locked

#1
chemical art

chemical art

    New Member

  • Member
  • Pip
  • 3 posts
Ok, the Mal-ware program got some issues, but the active scan still lists problems. Here is the active scan:

;*******************************************************************************
*********************************************************************************
*******************
ANALYSIS: 2008-05-27 16:49:46
PROTECTIONS: 1
MALWARE: 20
SUSPECTS: 0
;*******************************************************************************
*********************************************************************************
*******************
PROTECTIONS
Description Version Active Updated
;===============================================================================
=================================================================================
===================
Norton 360 2007 Yes Yes
;===============================================================================
=================================================================================
===================
MALWARE
Id Description Type Active Severity Disinfectable Disinfected Location
;===============================================================================
=================================================================================
===================
00101555 Application/KillApp.B HackTools No 0 Yes No C:\hp\bin\KillIt.exe
00139061 Cookie/Doubleclick TrackingCookie No 0 Yes No D:\ERIC-PC\Backup Set 2008-01-13 160112\Backup Files 2008-05-04 000013\Backup files 1.zip[C\Users\Eric\AppData\Roaming\Mozilla\Firefox\Profiles\xtnofgdl.default\cookies.txt][.doubleclick.net/]
00139061 Cookie/Doubleclick TrackingCookie No 0 Yes No D:\ERIC-PC\Backup Set 2008-01-13 160112\Backup Files 2008-04-27 000010\Backup files 1.zip[C\Users\Eric\AppData\Roaming\Mozilla\Firefox\Profiles\xtnofgdl.default\cookies.txt][.doubleclick.net/]
00139061 Cookie/Doubleclick TrackingCookie No 0 Yes No D:\ERIC-PC\Backup Set 2008-01-13 160112\Backup Files 2008-04-20 000004\Backup files 1.zip[C\Users\Eric\AppData\Roaming\Mozilla\Firefox\Profiles\xtnofgdl.default\cookies.txt][.doubleclick.net/]
00139061 Cookie/Doubleclick TrackingCookie No 0 Yes No D:\ERIC-PC\Backup Set 2008-01-13 160112\Backup Files 2008-04-13 000019\Backup files 1.zip[C\Users\Eric\AppData\Roaming\Mozilla\Firefox\Profiles\xtnofgdl.default\cookies.txt][.doubleclick.net/]
00139061 Cookie/Doubleclick TrackingCookie No 0 Yes No C:\Users\Eric\AppData\Roaming\Microsoft\Windows\Cookies\Low\[email protected][1].txt
00145457 Cookie/FastClick TrackingCookie No 0 Yes No D:\ERIC-PC\Backup Set 2008-01-13 160112\Backup Files 2008-04-13 000019\Backup files 1.zip[C\Users\Eric\AppData\Roaming\Mozilla\Firefox\Profiles\xtnofgdl.default\cookies.txt][.fastclick.net/]
00145457 Cookie/FastClick TrackingCookie No 0 Yes No D:\ERIC-PC\Backup Set 2008-01-13 160112\Backup Files 2008-04-13 000019\Backup files 1.zip[C\Users\Eric\AppData\Roaming\Mozilla\Firefox\Profiles\xtnofgdl.default\cookies.txt][.fastclick.net/]
00145457 Cookie/FastClick TrackingCookie No 0 Yes No D:\ERIC-PC\Backup Set 2008-01-13 160112\Backup Files 2008-05-04 000013\Backup files 1.zip[C\Users\Eric\AppData\Roaming\Mozilla\Firefox\Profiles\xtnofgdl.default\cookies.txt][.fastclick.net/]
00145457 Cookie/FastClick TrackingCookie No 0 Yes No D:\ERIC-PC\Backup Set 2008-01-13 160112\Backup Files 2008-05-04 000013\Backup files 1.zip[C\Users\Eric\AppData\Roaming\Mozilla\Firefox\Profiles\xtnofgdl.default\cookies.txt][.fastclick.net/]
00145457 Cookie/FastClick TrackingCookie No 0 Yes No D:\ERIC-PC\Backup Set 2008-01-13 160112\Backup Files 2008-04-13 000019\Backup files 1.zip[C\Users\Eric\AppData\Roaming\Mozilla\Firefox\Profiles\xtnofgdl.default\cookies.txt][.fastclick.net/]
00145457 Cookie/FastClick TrackingCookie No 0 Yes No D:\ERIC-PC\Backup Set 2008-01-13 160112\Backup Files 2008-05-04 000013\Backup files 1.zip[C\Users\Eric\AppData\Roaming\Mozilla\Firefox\Profiles\xtnofgdl.default\cookies.txt][.fastclick.net/]
00145457 Cookie/FastClick TrackingCookie No 0 Yes No D:\ERIC-PC\Backup Set 2008-01-13 160112\Backup Files 2008-04-20 000004\Backup files 1.zip[C\Users\Eric\AppData\Roaming\Mozilla\Firefox\Profiles\xtnofgdl.default\cookies.txt][.fastclick.net/]
00145457 Cookie/FastClick TrackingCookie No 0 Yes No D:\ERIC-PC\Backup Set 2008-01-13 160112\Backup Files 2008-04-27 000010\Backup files 1.zip[C\Users\Eric\AppData\Roaming\Mozilla\Firefox\Profiles\xtnofgdl.default\cookies.txt][.fastclick.net/]
00145457 Cookie/FastClick TrackingCookie No 0 Yes No D:\ERIC-PC\Backup Set 2008-01-13 160112\Backup Files 2008-04-27 000010\Backup files 1.zip[C\Users\Eric\AppData\Roaming\Mozilla\Firefox\Profiles\xtnofgdl.default\cookies.txt][.fastclick.net/]
00145457 Cookie/FastClick TrackingCookie No 0 Yes No D:\ERIC-PC\Backup Set 2008-01-13 160112\Backup Files 2008-04-27 000010\Backup files 1.zip[C\Users\Eric\AppData\Roaming\Mozilla\Firefox\Profiles\xtnofgdl.default\cookies.txt][.fastclick.net/]
00145457 Cookie/FastClick TrackingCookie No 0 Yes No D:\ERIC-PC\Backup Set 2008-01-13 160112\Backup Files 2008-04-13 000019\Backup files 1.zip[C\Users\Eric\AppData\Roaming\Mozilla\Firefox\Profiles\xtnofgdl.default\cookies.txt][.fastclick.net/]
00145457 Cookie/FastClick TrackingCookie No 0 Yes No D:\ERIC-PC\Backup Set 2008-01-13 160112\Backup Files 2008-04-20 000004\Backup files 1.zip[C\Users\Eric\AppData\Roaming\Mozilla\Firefox\Profiles\xtnofgdl.default\cookies.txt][.fastclick.net/]
00145457 Cookie/FastClick TrackingCookie No 0 Yes No D:\ERIC-PC\Backup Set 2008-01-13 160112\Backup Files 2008-04-20 000004\Backup files 1.zip[C\Users\Eric\AppData\Roaming\Mozilla\Firefox\Profiles\xtnofgdl.default\cookies.txt][.fastclick.net/]
00147824 Cookie/Clickbank TrackingCookie No 0 Yes No C:\Users\Eric\AppData\Roaming\Microsoft\Windows\Cookies\Low\[email protected][1].txt
00160284 Cookie/Findwhat TrackingCookie No 0 Yes No C:\Users\Eric\AppData\Roaming\Microsoft\Windows\Cookies\Low\[email protected][1].txt
00167753 Cookie/Statcounter TrackingCookie No 0 Yes No C:\Users\Eric\AppData\Roaming\Microsoft\Windows\Cookies\[email protected][1].txt
00168061 Cookie/Apmebf TrackingCookie No 0 Yes No C:\Users\Eric\AppData\Roaming\Microsoft\Windows\Cookies\Low\[email protected][1].txt
00168061 Cookie/Apmebf TrackingCookie No 0 Yes No D:\ERIC-PC\Backup Set 2008-01-13 160112\Backup Files 2008-05-04 000013\Backup files 1.zip[C\Users\Eric\AppData\Roaming\Mozilla\Firefox\Profiles\xtnofgdl.default\cookies.txt][.apmebf.com/]
00168061 Cookie/Apmebf TrackingCookie No 0 Yes No D:\ERIC-PC\Backup Set 2008-01-13 160112\Backup Files 2008-04-27 000010\Backup files 1.zip[C\Users\Eric\AppData\Roaming\Mozilla\Firefox\Profiles\xtnofgdl.default\cookies.txt][.apmebf.com/]
00168061 Cookie/Apmebf TrackingCookie No 0 Yes No D:\ERIC-PC\Backup Set 2008-01-13 160112\Backup Files 2008-04-20 000004\Backup files 1.zip[C\Users\Eric\AppData\Roaming\Mozilla\Firefox\Profiles\xtnofgdl.default\cookies.txt][.apmebf.com/]
00168061 Cookie/Apmebf TrackingCookie No 0 Yes No D:\ERIC-PC\Backup Set 2008-01-13 160112\Backup Files 2008-04-13 000019\Backup files 1.zip[C\Users\Eric\AppData\Roaming\Mozilla\Firefox\Profiles\xtnofgdl.default\cookies.txt][.apmebf.com/]
00168076 Cookie/BurstNet TrackingCookie No 0 Yes No C:\Users\Eric\AppData\Roaming\Microsoft\Windows\Cookies\Low\[email protected][2].txt
00170556 Cookie/RealMedia TrackingCookie No 0 Yes No C:\Users\Eric\AppData\Roaming\Microsoft\Windows\Cookies\Low\[email protected][2].txt
00171982 Cookie/QuestionMarket TrackingCookie No 0 Yes No C:\Users\Eric\AppData\Roaming\Microsoft\Windows\Cookies\Low\[email protected][1].txt
00172221 Cookie/Zedo TrackingCookie No 0 Yes No C:\Users\Eric\AppData\Roaming\Microsoft\Windows\Cookies\Low\[email protected][1].txt
00172221 Cookie/Zedo TrackingCookie No 0 Yes No C:\Users\Eric\AppData\Roaming\Microsoft\Windows\Cookies\Low\[email protected][3].txt
00184846 Cookie/Adrevolver TrackingCookie No 0 Yes No C:\Users\Eric\AppData\Roaming\Microsoft\Windows\Cookies\Low\[email protected][2].txt
00262020 Cookie/Atwola TrackingCookie No 0 Yes No C:\Users\Eric\AppData\Roaming\Microsoft\Windows\Cookies\Low\[email protected][1].txt
01196325 Cookie/Enhance TrackingCookie No 0 Yes No C:\Users\Eric\AppData\Roaming\Microsoft\Windows\Cookies\Low\[email protected][1].txt
02913340 Adware/InternetSpeedMonitor Adware No 0 No No C:\Windows\two222222.exe[ism.exe]
02938171 Spyware/Virtumonde Spyware No 1 No No C:\Windows\four444444.exe[■%%\²¬Ç]
02938552 Adware/InternetSpeedMonitor Adware No 0 No No C:\Program Files\VnrPack\ilaupd.exe[qdrloader.exe]
02938552 Adware/InternetSpeedMonitor Adware No 0 No No C:\Windows\two222222.exe[qdrloader.exe]
02941449 Generic Trojan Virus/Trojan No 0 Yes No C:\Users\Eric\Documents\LimeWire\Saved\COMMAND.AND.CONQUER.GENERALS.ZERO.HOUR-DEViANCE-www.softzone.org-Crack.zip[COMMAND.AND.CONQUER.GENERALS.ZERO.HOUR-DEViANCE-www.softzone.org-Crack.exe]
02974527 Adware/InternetSpeedMonitor Adware No 0 Yes No C:\Windows\two222222.exe
02974528 Spyware/Virtumonde Spyware No 1 Yes No C:\Windows\four444444.exe
;===============================================================================
=================================================================================
===================
SUSPECTS
Sent Location ����
3
;===============================================================================
=================================================================================
===================
;===============================================================================
=================================================================================
===================
VULNERABILITIES
Id Severity Description ����
3
;===============================================================================
=================================================================================
===================
184379 MEDIUM MS08-001 ����
3
182048 HIGH MS07-069 ����
3
176382 HIGH MS07-057 ����
3
170906 HIGH MS07-045 ����
3
164913 HIGH MS07-033 ����
3
160623 HIGH MS07-027 ����
3
;===============================================================================
=================================================================================
===================



Here is the Hijack this log:
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 4:52:56 PM, on 5/27/2008
Platform: Windows Vista (WinNT 6.00.1904)
MSIE: Internet Explorer v7.00 (7.00.6000.16643)
Boot mode: Normal

Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\taskeng.exe
C:\Program Files\Windows Defender\MSASCui.exe
C:\hp\support\hpsysdrv.exe
C:\Program Files\Hewlett-Packard\On-Screen OSD Indicator\OSD.exe
C:\Windows\RtHDVCpl.exe
C:\Program Files\Snapfish Media Detector\SnapfishMediaDetector.exe
C:\Program Files\HP\HP Software Update\hpwuSchd2.exe
C:\Program Files\Common Files\Symantec Shared\ccApp.exe
C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Windows\System32\rundll32.exe
C:\Program Files\Electronic Arts\The Battle for Middle-earth ™ II\lotrbfme2.exe
C:\Program Files\Electronic Arts\The Battle for Middle-earth ™ II\game.dat
c:\windows\temp\~e5.0001
C:\Program Files\LimeWire\LimeWire.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Windows\system32\Taskmgr.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft....k/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://ie.redirect.h...a...&pf=desktop
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ie.redirect.h...a...&pf=desktop
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft....k/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft....k/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://ie.redirect.h...a...&pf=desktop
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O1 - Hosts: ::1 localhost
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {1E8A6170-7264-4D0F-BEAE-D42A53123C75} - C:\Program Files\Common Files\Symantec Shared\coShared\Browser\1.5\NppBho.dll
O2 - BHO: (no name) - {3814DEE6-F161-4E41-B4F1-06CCE04D14EE} - C:\Program Files\Windows NT\fery66225.dll (file missing)
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O3 - Toolbar: Show Norton Toolbar - {90222687-F593-4738-B738-FBEE9C7B26DF} - C:\Program Files\Common Files\Symantec Shared\coShared\Browser\1.5\UIBHO.dll
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [hpsysdrv] c:\hp\support\hpsysdrv.exe
O4 - HKLM\..\Run: [OsdMaestro] "C:\Program Files\Hewlett-Packard\On-Screen OSD Indicator\OSD.exe"
O4 - HKLM\..\Run: [NvSvc] RUNDLL32.EXE C:\Windows\system32\nvsvc.dll,nvsvcStart
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe
O4 - HKLM\..\Run: [SnapfishMediaDetector] C:\Program Files\Snapfish Media Detector\SnapfishMediaDetector.exe
O4 - HKLM\..\Run: [HP Software Update] c:\Program Files\HP\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Common Files\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [Symantec PIF AlertEng] "C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe" /a /m "C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\AlertEng.dll"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe"
O4 - HKLM\..\RunOnce: [Launcher] %WINDIR%\SMINST\launcher.exe
O4 - HKLM\..\RunOnce: [Norton 360Seq] C:\Windows\TEMP\LUProdRg.exe /f:C:\Windows\TEMP\360LUP~1.INI /s:SPW_Set_Sequence
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [HPAdvisor] C:\Program Files\Hewlett-Packard\HP Advisor\HPAdvisor.exe autoRun
O4 - HKCU\..\Run: [Uniblue RegistryBooster 2] c:\program files\uniblue\registrybooster 2\StartRegistryBooster.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'NETWORK SERVICE')
O4 - Global Startup: Snapfish Media Detector.lnk = C:\Program Files\Snapfish Media Detector\SnapfishMediaDetector.exe
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office12\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\Office12\REFIEBAR.DLL
O13 - Gopher Prefix:
O16 - DPF: {44990301-3C9D-426D-81DF-AAB636FA4345} (Symantec Script Runner Class) - https://www-secure.s...abs/tgctlsr.cab
O23 - Service: Ad-Aware 2007 Service (aawservice) - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
O23 - Service: ccEvtMgr - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: ccSetMgr - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: COM Host (comHost) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\VAScanner\comHost.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - c:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - c:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
O23 - Service: LiveUpdate Notice Service Ex (LiveUpdate Notice Ex) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: LiveUpdate Notice Service - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe
O23 - Service: RoxMediaDB9 - Sonic Solutions - c:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxMediaDB9.exe
O23 - Service: stllssvr - MicroVision Development, Inc. - c:\Program Files\Common Files\SureThing Shared\stllssvr.exe
O23 - Service: Symantec Core LC - Unknown owner - C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe
O23 - Service: XAudioService - Conexant Systems, Inc. - C:\Windows\system32\DRIVERS\xaudio.exe

--
End of file - 8089 bytes

Here is the uninstall list

HP Update
Java™ 6 Update 5
LimeWire 4.16.7
LiveUpdate 3.2 (Symantec Corporation)
LiveUpdate Notice (Symantec Corporation)
Malwarebytes' Anti-Malware
Microsoft Office Excel MUI (English) 2007
Microsoft Office Home and Student 2007
Microsoft Office Home and Student 2007
Microsoft Office OneNote MUI (English) 2007
Microsoft Office PowerPoint MUI (English) 2007
Microsoft Office Proof (English) 2007
Microsoft Office Proof (French) 2007
Microsoft Office Proof (Spanish) 2007
Microsoft Office Proofing (English) 2007
Microsoft Office Shared MUI (English) 2007
Microsoft Office Shared Setup Metadata MUI (English) 2007
Microsoft Office Word MUI (English) 2007
Microsoft Visual C++ 2005 Redistributable
Microsoft Works
Mozilla Firefox (2.0.0.14)
MSXML 4.0 SP2 (KB936181)
MSXML 4.0 SP2 (KB941833)
muvee autoProducer 6.0
My HP Games
Norton 360
Norton 360
Norton 360
Norton 360
Norton 360
Norton 360 (Symantec Corporation)
Norton 360 Help
Norton Confidential Browser Component
Norton Confidential Web Authentification Component
Norton Confidential Web Protection Component
NVIDIA Drivers
Panda ActiveScan 2.0
Python 2.4.3
RealPlayer
Realtek High Definition Audio Driver
Rhapsody
Rhapsody Player Engine
Roxio Activation Module
Roxio Creator Audio
Roxio Creator Basic v9
Roxio Creator Copy
Roxio Creator Data
Roxio Creator EasyArchive
Roxio Creator Tools
Roxio Express Labeler 3
Roxio MyDVD Basic v9
Snapfish Media Detector
Soft Data Fax Modem with SmartCP
SPBBC 32bit
Star Wars Empire at War
Star Wars Empire at War Forces of Corruption
Star Wars Galactic Battlegrounds: Saga
SuppSoft
Supreme Commander
SwiftKit
Symantec Technical Support Controls
SymNet
The Battle for Middle-earth ™ II
Uniblue RegistryBooster 2
WinRAR archiver
Yahoo! Toolbar for Internet Explorer

--------------------------------------------------

Other notes relating to Panda Active Scan:

"C:\Users\Eric\Documents\LimeWire\Saved\COMMAND.AND.CONQUER.GENERALS.ZERO.HOUR-DEViANCE-www.softzone.org-Crack.zip[COMMAND.AND.CONQUER.GENERALS.ZERO.HOUR-DEViANCE-www.softzone.org-Crack.exe]" I willingly downloaded this, although it is quite possible that it gave some problems.
"Virtumonde" I know this is not desired.

I have used Hijack This! in the past to remove some obvious problems, but these were on my own. As a result, there may be parts of malware, adware, etc. still existing. Also, I wish to get rid of the problems listed on the active scan, but before I do anything I decided I would do it right and get some professional before I did it myself. I greatly appreciate any help given and I thank you for giving me your time.

O
  • 0

Advertisements


#2
eddie5659

eddie5659

    Trusted Helper

  • Malware Removal
  • 1,980 posts
  • MVP
Hello chemical art, and welcome to Geeks to Go! :)

Please read this post completely. It may make it easier for you if you print, or copy and paste this post to a new text document for reference later.

This will likely be a few steps process in removing the malware that has infected your system. I encourage you to stick with it and follow my directions as closely as possible so as to avoid complicating the problem further.

Firstly, have you looked at this thread:

http://www.geekstogo...-Log-t2852.html

If not, have a look and do all it says, then post a fresh HijackThis log :)

If you have, then can you post a fresh HijackThis log anyway :)

=========

Please download Deckard's System Scanner (DSS) and save it to your Desktop.
  • Close all other windows before proceeding.
  • Double-click on dss.exe and follow the prompts.
  • When it has finished, dss will open two Notepads main.txt and extra.txt -- please copy (CTRL+A and then CTRL+C) and paste (CTRL+V) the contents of main.txt and extra.txt in your next reply.

Regards

eddie
  • 0

#3
eddie5659

eddie5659

    Trusted Helper

  • Malware Removal
  • 1,980 posts
  • MVP
Due to lack of feedback, this topic has been closed.

If you need this topic reopened, please contact a staff member. This applies only to the original topic starter. Everyone else please begin a New Topic.
  • 0






Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP