Jump to content

Welcome to Geeks to Go - Register now for FREE

Need help with your computer or device? Want to learn new tech skills? You're in the right place!
Geeks to Go is a friendly community of tech experts who can solve any problem you have. Just create a free account and post your question. Our volunteers will reply quickly and guide you through the steps. Don't let tech troubles stop you. Join Geeks to Go now and get the support you need!

How it Works Create Account
Photo

trojan-spy.html.smit.fraud.c


  • This topic is locked This topic is locked

#1
spennington

spennington

    New Member

  • Member
  • Pip
  • 3 posts
AdAware log is listed below:

ArchiveData(auto-quarantine- 2005-05-23 19-36-09.bckp)
Referencefile : SE1R46 17.05.2005
======================================================

COOLWEBSEARCH
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
obj[0]=Regkey : typelib\{00a322e2-7d50-4dba-bea4-5c8078d47269}
obj[1]=Regkey : interface\{18e6c36a-c45f-4b60-a1a4-5c0bb16d4cc2}
obj[2]=RegValue : interface\{18e6c36a-c45f-4b60-a1a4-5c0bb16d4cc2} ""
obj[3]=Regkey : clsid\{b599c57e-113a-4488-a5e9-bc552c4f1152}
obj[4]=Regkey : clsid\{7b55bb05-0b4d-44fd-81a6-b136188f5deb}
obj[5]=RegValue : clsid\{7b55bb05-0b4d-44fd-81a6-b136188f5deb} ""
obj[6]=Regkey : clsid\{1d27210e-2da2-41e2-a103-b5fd9d6a798b}
obj[7]=Regkey : clsid\{145e6fb1-1256-44ed-a336-8bba43373be6}
obj[8]=RegValue : clsid\{145e6fb1-1256-44ed-a336-8bba43373be6} "InprocServer32"
obj[14]=RegValue : software\microsoft\windows\currentversion\policies\system "Wallpaper"
obj[15]=RegValue : software\microsoft\internet explorer\search "SearchAssistant"
obj[16]=RegValue : software\microsoft\internet explorer\main "Search Bar"
obj[17]=RegValue : software\microsoft\windows\currentversion\policies\system "NoDispAppearancePage"
obj[18]=RegValue : software\microsoft\windows\currentversion\policies\system "WallpaperStyle"
obj[19]=RegData : software\microsoft\internet explorer\search "SearchAssistant"
obj[20]=RegData : software\microsoft\internet explorer\main "Use Search Asst"
obj[21]=RegData : software\microsoft\internet explorer\main "Use Search Asst"
obj[22]=RegData : software\microsoft\internet explorer\main "Start Page"
obj[25]=File : C:\WINDOWS\questmod.dll
obj[26]=File : C:\WINDOWS\SYSTEM32\wldr.dll
obj[28]=File : C:\wp.exe
obj[29]=File : c:\wp.bmp
obj[30]=File : C:\WINDOWS\wplog.txt
obj[31]=File : C:\DOCUME~1\WALKER~1\LOCALS~1\Temp\se.dll

SECURITY IGUARD
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
obj[9]=Regkey : software\rex-services
obj[10]=RegValue : software\rex-services "MGuid"
obj[23]=Folder : C:\Documents and Settings\walker7197\Application Data\Rex-Services

ALEXA
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
obj[11]=RegValue : .DEFAULT\software\microsoft\internet explorer\extensions\cmdmapping "{c95fe080-8f5d-11d2-a20b-00aa003c157a}"
obj[12]=RegValue : S-1-5-21-1229272821-152049171-842925246-1000\software\microsoft\internet explorer\extensions\cmdmapping "{c95fe080-8f5d-11d2-a20b-00aa003c157a}"

TRACKING COOKIE
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
obj[13]=IECache Entry : Cookie:[email protected]/

VX2
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
obj[24]=RegValue : software\microsoft\internet explorer\toolbar\webbrowser "{0E5CBF21-D15F-11D0-8301-00AA005B4383}"
obj[27]=File : C:\WINDOWS\VT00.exe

I also posted a HighjackThis log in the Highjack this section. Thank you in advance for your assistance.
  • 0

Advertisements


#2
DinoT

DinoT

    Ad-Aware Expert

  • Member
  • PipPip
  • 17 posts
Hi, spennington. Please post an Ad Aware logfile to be checked if you are experiencing problems. Please follow these instructions to set up Ad Aware before you post your logfile...thx.
Before performing a scan, be sure that you have the most recent definitions file by using WebUpdate.

(Click on the Globe icon, Click on connect, Click OK, Click Finish.)

Please set up the Configurations (Gear wheel at the top) as follows:

General Button > Safety & Settings: Check (Green) all three.
Advanced Button > Logfile Detail Level: All options under this should be checked (Green).
Tweak Button > Log Files: Please check only:

• "Include basic Ad-Aware settings in logfile"
• "Include additional Ad-Aware settings in logfile"
• "Include reference summary in log file"
Click on "Proceed"

Click on "Scan Now". Please deselect "Search for negligible risk entries" as negligible risk entries (MRU's) are not considered to be a threat.

Run the scanner using the Full Scan (Perform full system scan) mode. At the result window, please choose all Tracking Cookies (which are always safe to remove), and get rid of them.

Run the scanner using the Full Scan (Perform full system scan) mode.
When the scan has completed, click "Show Logfile".

Copy/paste the complete log file as a reply in this topic.

Do not quarantine or remove anything at this time (except for the Tracking Cookies), just post a complete logfile.

This sometimes takes 2-3 posts to get it all posted. You will know you are at the end when you see the "Summary of this scan" information has been posted.

Please post back if you have any questions. :tazz:

Could you please post back if your HJT post is being replied to, otherwise any help we can give via Ad Aware will be meaningless.

Edited by DinoT, 24 May 2005 - 01:50 AM.

  • 0






Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP