Thanks for all your help. The SpyAxe problem is no more, as well as some other fixes. Here is the 5 logs you requested, please let me know if I need to take care of anymore potential problems I havent yet experienced. Thanks again for all your help:
smitRem © log file
version 2.7
by noahdfear
Microsoft Windows XP [Version 5.1.2600]
The current date is: Sat 11/26/2005
The current time is: 14:05:47.51
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
checking for ShudderLTD key
ShudderLTD key not present!
checking for PSGuard.com key
PSGuard.com key not present!
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Existing Pre-run Files
~~~ Program Files ~~~
~~~ Shortcuts ~~~
Online Security Center.url
~~~ Favorites ~~~
~~~ system32 folder ~~~
1024 dir
msvol.tlb
ld****.tmp
ncompat.tlb
nvctrl.exe
mscornet.exe
~~~ Icons in System32 ~~~
ts.ico
ot.ico
~~~ Windows directory ~~~
~~~ Drive root ~~~
~~~ Miscellaneous Files/folders ~~~
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Remaining Post-run Files
~~~ Program Files ~~~
~~~ Shortcuts ~~~
~~~ Favorites ~~~
~~~ system32 folder ~~~
~~~ Icons in System32 ~~~
~~~ Windows directory ~~~
~~~ Drive root ~~~
~~~ Miscellaneous Files/folders ~~~
~~~ Wininet.dll ~~~
CLEAN!
---------------------------------------------------------
ewido security suite - Scan report
---------------------------------------------------------
+ Created on: 2:53:43 PM, 11/26/2005
+ Report-Checksum: AB7BB07D
+ Scan result:
No infected objects found.
::Report End
Logfile of HijackThis v1.99.1
Scan saved at 6:59:37 PM, on 11/26/2005
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\LEXBCES.EXE
C:\WINDOWS\system32\LEXPPS.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Java\jre1.5.0_05\bin\jusched.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\Program Files\QuickTime\qttask.exe
C:\WINDOWS\system32\sstray.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Valve\Steam\Steam.exe
C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
C:\WINDOWS\system32\javaw.exe
C:\WINDOWS\system32\cisvc.exe
C:\Program Files\ewido\security suite\ewidoctrl.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\WINDOWS\system32\wscntfy.exe
C:\Program Files\Silicon Image\Java SATARaid\SiITray.exe
C:\WINDOWS\system32\NOTEPAD.EXE
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Documents and Settings\Perry\Desktop\hijack\HijackThis.exe
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page =
http://yahoo.sbc.com/dslO3 - Toolbar: Yahoo! Companion - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\ycomp5_5_7_0.dll (file missing)
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_05\bin\jusched.exe
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [PHIME2002ASync] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC
O4 - HKLM\..\Run: [PHIME2002A] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nForce Tray Options] sstray.exe /r
O4 - HKLM\..\Run: [NeroCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [MSPY2002] C:\WINDOWS\system32\IME\PINTLGNT\ImScInst.exe /SYNC
O4 - HKLM\..\Run: [LXSUPMON] C:\WINDOWS\System32\LXSUPMON.EXE RUN
O4 - HKLM\..\Run: [LiveMonitor] C:\Program Files\MSI\Live Update 3\LMonitor.exe
O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
O4 - HKLM\..\Run: [iTunesHelper] C:\Program Files\iTunes\iTunesHelper.exe
O4 - HKLM\..\Run: [IMJPMIG8.1] "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32
O4 - HKLM\..\Run: [HostManager] C:\Program Files\Common Files\AOL\1124258143\ee\AOLHostManager.exe
O4 - HKLM\..\Run: [BJPD HID Control] C:\Program Files\Canon\BJPV\TVMon.exe
O4 - HKLM\..\Run: [2wSysTray] C:\Program Files\2Wire\Gateway\2PortalMon.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [Yahoo! Pager] C:\PROGRA~1\Yahoo!\MESSEN~1\ypager.exe -quiet
O4 - HKCU\..\Run: [Steam] C:\Program Files\Valve\Steam\Steam.exe -silent
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: Java SATARaid.lnk = C:\Program Files\Silicon Image\Java SATARaid\run.bat
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O8 - Extra context menu item: &Search the Web - C:\WINDOWS\Web\Ers_src.htm
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office10\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_05\bin\npjpi150_05.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_05\bin\npjpi150_05.dll
O9 - Extra button: AIM - {AC9E2541-2814-11d5-BC6D-00B0D0A1DE45} - C:\Program Files\AIM\aim.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) -
http://go.microsoft....k/?linkid=39204O16 - DPF: {39B0684F-D7BF-4743-B050-FDC3F48F7E3B} (FilePlanet Download Control Class) -
http://www.fileplane...DC_2.1.1.74.cabO16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) -
http://update.micros...b?1127335627390O16 - DPF: {74D05D43-3236-11D4-BDCD-00C04F9A3B61} (HouseCall Control) -
http://a840.g.akamai...all/xscan53.cabO16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) -
http://acs.pandasoft...free/asinst.cabO17 - HKLM\System\CCS\Services\Tcpip\..\{BF06F178-C40F-405C-9F45-24616B38EF35}: NameServer = 151.164.1.8,206.13.28.12
O23 - Service: ewido security suite control - ewido networks - C:\Program Files\ewido\security suite\ewidoctrl.exe
O23 - Service: iPod Service (iPodService) - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: LexBce Server (LexBceS) - Lexmark International, Inc. - C:\WINDOWS\system32\LEXBCES.EXE
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
Incident Status Location
Adware:Adware/SpyAxe Not disinfected C:\WINDOWS\system32\svchosts.dll
Adware:adware/ezula Not disinfected C:\WINDOWS\SYSTEM32\ezPopStub.exe
Adware:adware/spyaxe Not disinfected C:\WINDOWS\SYSTEM32\svchosts.dll
Adware:adware/antivirus-gold Not disinfected Windows Registry
Adware:Adware/Findspy Not disinfected C:\Documents and Settings\Perry\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\SecurityClassLoader.class-57cd60ac-1a82934b.class
Virus:Exploit/ByteVerify Not disinfected C:\Documents and Settings\Perry\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\a.jar-228d5c98-18e37ef9.zip[a.class]
Virus:Exploit/ByteVerify Not disinfected C:\Documents and Settings\Perry\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\a.jar-228d5c98-18e37ef9.zip[Dummy.class]
Virus:Exploit/ByteVerify Not disinfected C:\Documents and Settings\Perry\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\a.jar-228d5c98-18e37ef9.zip[VerifierBug.class]
Virus:Exploit/ByteVerify Not disinfected C:\Documents and Settings\Perry\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\archive.jar-1e6e3e2d-3a0f3e05.zip[BlackBox.class]
Virus:Exploit/ByteVerify Not disinfected C:\Documents and Settings\Perry\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\archive.jar-1e6e3e2d-3a0f3e05.zip[VB.class]
Virus:Exploit/ByteVerify Not disinfected C:\Documents and Settings\Perry\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\archive.jar-1e6e3e2d-3a0f3e05.zip[Dummy.class]
Virus:Exploit/ByteVerify Not disinfected C:\Documents and Settings\Perry\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\archive.jar-1e6e3e2d-3a0f3e05.zip[Beyond.class]
Virus:Exploit/ByteVerify Not disinfected C:\Documents and Settings\Perry\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\archive.jar-22a63c8b-4231a749.zip[BlackBox.class]
Virus:Exploit/ByteVerify Not disinfected C:\Documents and Settings\Perry\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\archive.jar-22a63c8b-4231a749.zip[VB.class]
Virus:Exploit/ByteVerify Not disinfected C:\Documents and Settings\Perry\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\archive.jar-22a63c8b-4231a749.zip[Dummy.class]
Virus:Exploit/ByteVerify Not disinfected C:\Documents and Settings\Perry\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\archive.jar-22a63c8b-4231a749.zip[Beyond.class]
Virus:Exploit/ByteVerify Not disinfected C:\Documents and Settings\Perry\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\archive.jar-2c7604b9-105f0b4c.zip[BlackBox.class]
Virus:Exploit/ByteVerify Not disinfected C:\Documents and Settings\Perry\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\archive.jar-2c7604b9-105f0b4c.zip[VB.class]
Virus:Exploit/ByteVerify Not disinfected C:\Documents and Settings\Perry\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\archive.jar-2c7604b9-105f0b4c.zip[Dummy.class]
Virus:Exploit/ByteVerify Not disinfected C:\Documents and Settings\Perry\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\archive.jar-2c7604b9-105f0b4c.zip[Beyond.class]
Virus:Exploit/ByteVerify Not disinfected C:\Documents and Settings\Perry\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\archive.jar-3138c7ae-584064c3.zip[BlackBox.class]
Virus:Exploit/ByteVerify Not disinfected C:\Documents and Settings\Perry\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\archive.jar-3138c7ae-584064c3.zip[VB.class]
Virus:Exploit/ByteVerify Not disinfected C:\Documents and Settings\Perry\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\archive.jar-3138c7ae-584064c3.zip[Dummy.class]
Virus:Exploit/ByteVerify Not disinfected C:\Documents and Settings\Perry\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\archive.jar-3138c7ae-584064c3.zip[Beyond.class]
Virus:Exploit/ByteVerify Not disinfected C:\Documents and Settings\Perry\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\archive.jar-44eca4b9-624c1788.zip[BlackBox.class]
Virus:Exploit/ByteVerify Not disinfected C:\Documents and Settings\Perry\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\archive.jar-44eca4b9-624c1788.zip[VB.class]
Virus:Exploit/ByteVerify Not disinfected C:\Documents and Settings\Perry\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\archive.jar-44eca4b9-624c1788.zip[Dummy.class]
Virus:Exploit/ByteVerify Not disinfected C:\Documents and Settings\Perry\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\archive.jar-44eca4b9-624c1788.zip[Beyond.class]
Virus:Exploit/ByteVerify Not disinfected C:\Documents and Settings\Perry\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\archive.jar-4cef5710-33b9ffea.zip[BlackBox.class]
Virus:Exploit/ByteVerify Not disinfected C:\Documents and Settings\Perry\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\archive.jar-4cef5710-33b9ffea.zip[VB.class]
Virus:Exploit/ByteVerify Not disinfected C:\Documents and Settings\Perry\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\archive.jar-4cef5710-33b9ffea.zip[Dummy.class]
Virus:Exploit/ByteVerify Not disinfected C:\Documents and Settings\Perry\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\archive.jar-4cef5710-33b9ffea.zip[Beyond.class]
Virus:Exploit/ByteVerify Not disinfected C:\Documents and Settings\Perry\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\archive.jar-5058255e-34f97e0f.zip[BlackBox.class]
Virus:Exploit/ByteVerify Not disinfected C:\Documents and Settings\Perry\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\archive.jar-5058255e-34f97e0f.zip[VB.class]
Virus:Exploit/ByteVerify Not disinfected C:\Documents and Settings\Perry\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\archive.jar-5058255e-34f97e0f.zip[Dummy.class]
Virus:Exploit/ByteVerify Not disinfected C:\Documents and Settings\Perry\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\archive.jar-5058255e-34f97e0f.zip[Beyond.class]
Virus:Exploit/ByteVerify Not disinfected C:\Documents and Settings\Perry\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\archive.jar-583cd6bc-22add9c5.zip[BlackBox.class]
Virus:Exploit/ByteVerify Not disinfected C:\Documents and Settings\Perry\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\archive.jar-583cd6bc-22add9c5.zip[VB.class]
Virus:Exploit/ByteVerify Not disinfected C:\Documents and Settings\Perry\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\archive.jar-583cd6bc-22add9c5.zip[Dummy.class]
Virus:Exploit/ByteVerify Not disinfected C:\Documents and Settings\Perry\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\archive.jar-583cd6bc-22add9c5.zip[Beyond.class]
Virus:Exploit/ByteVerify Not disinfected C:\Documents and Settings\Perry\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\archive.jar-5b5cf5ad-567a6013.zip[BlackBox.class]
Virus:Exploit/ByteVerify Not disinfected C:\Documents and Settings\Perry\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\archive.jar-5b5cf5ad-567a6013.zip[VB.class]
Virus:Exploit/ByteVerify Not disinfected C:\Documents and Settings\Perry\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\archive.jar-5b5cf5ad-567a6013.zip[Dummy.class]
Virus:Exploit/ByteVerify Not disinfected C:\Documents and Settings\Perry\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\archive.jar-5b5cf5ad-567a6013.zip[Beyond.class]
Virus:Exploit/ByteVerify Not disinfected C:\Documents and Settings\Perry\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\archive.jar-656840da-6a7fd7a9.zip[BlackBox.class]
Virus:Exploit/ByteVerify Not disinfected C:\Documents and Settings\Perry\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\archive.jar-656840da-6a7fd7a9.zip[VB.class]
Virus:Exploit/ByteVerify Not disinfected C:\Documents and Settings\Perry\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\archive.jar-656840da-6a7fd7a9.zip[Dummy.class]
Virus:Exploit/ByteVerify Not disinfected C:\Documents and Settings\Perry\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\archive.jar-656840da-6a7fd7a9.zip[Beyond.class]
Virus:Exploit/ByteVerify Not disinfected C:\Documents and Settings\Perry\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\archive.jar-6759854-72056e6d.zip[BlackBox.class]
Virus:Exploit/ByteVerify Not disinfected C:\Documents and Settings\Perry\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\archive.jar-6759854-72056e6d.zip[VB.class]
Virus:Exploit/ByteVerify Not disinfected C:\Documents and Settings\Perry\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\archive.jar-6759854-72056e6d.zip[Dummy.class]
Virus:Exploit/ByteVerify Not disinfected C:\Documents and Settings\Perry\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\archive.jar-6759854-72056e6d.zip[Beyond.class]
Virus:Exploit/ByteVerify Not disinfected C:\Documents and Settings\Perry\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\archive.jar-6eb5530e-69c8f0b1.zip[BlackBox.class]
Virus:Exploit/ByteVerify Not disinfected C:\Documents and Settings\Perry\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\archive.jar-6eb5530e-69c8f0b1.zip[VB.class]
Virus:Exploit/ByteVerify Not disinfected C:\Documents and Settings\Perry\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\archive.jar-6eb5530e-69c8f0b1.zip[Dummy.class]
Virus:Exploit/ByteVerify Not disinfected C:\Documents and Settings\Perry\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\archive.jar-6eb5530e-69c8f0b1.zip[Beyond.class]
Virus:Exploit/ByteVerify Not disinfected C:\Documents and Settings\Perry\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\archive.jar-75cf5087-31cf143c.zip[BlackBox.class]
Virus:Exploit/ByteVerify Not disinfected C:\Documents and Settings\Perry\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\archive.jar-75cf5087-31cf143c.zip[VB.class]
Virus:Exploit/ByteVerify Not disinfected C:\Documents and Settings\Perry\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\archive.jar-75cf5087-31cf143c.zip[Dummy.class]
Virus:Exploit/ByteVerify Not disinfected C:\Documents and Settings\Perry\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\archive.jar-75cf5087-31cf143c.zip[Beyond.class]
Virus:Exploit/ByteVerify Not disinfected C:\Documents and Settings\Perry\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\archive.jar-76f8dd98-1066fd86.zip[BlackBox.class]
Virus:Exploit/ByteVerify Not disinfected C:\Documents and Settings\Perry\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\archive.jar-76f8dd98-1066fd86.zip[VB.class]
Virus:Exploit/ByteVerify Not disinfected C:\Documents and Settings\Perry\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\archive.jar-76f8dd98-1066fd86.zip[Dummy.class]
Virus:Exploit/ByteVerify Not disinfected C:\Documents and Settings\Perry\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\archive.jar-76f8dd98-1066fd86.zip[Beyond.class]
Virus:Exploit/ByteVerify Not disinfected C:\Documents and Settings\Perry\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\archive.jar-dc92043-718bf65c.zip[Jvb.class]
Virus:Exploit/ByteVerify Not disinfected C:\Documents and Settings\Perry\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\classload.jar-1908c9ec-3c56b408.zip[GetAccess.class]
Virus:Exploit/ByteVerify Not disinfected C:\Documents and Settings\Perry\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\classload.jar-1908c9ec-3c56b408.zip[InsecureClassLoader.class]
Virus:Exploit/ByteVerify Not disinfected C:\Documents and Settings\Perry\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\classload.jar-1908c9ec-3c56b408.zip[Dummy.class]
Virus:Exploit/ByteVerify Not disinfected C:\Documents and Settings\Perry\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\classload.jar-1908c9ec-3c56b408.zip[Installer.class]
Virus:Exploit/ByteVerify Not disinfected C:\Documents and Settings\Perry\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\classload.jar-1cf39f94-2c92d454.zip[GetAccess.class]
Virus:Exploit/ByteVerify Not disinfected C:\Documents and Settings\Perry\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\classload.jar-1cf39f94-2c92d454.zip[InsecureClassLoader.class]
Virus:Exploit/ByteVerify Not disinfected C:\Documents and Settings\Perry\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\classload.jar-1cf39f94-2c92d454.zip[Dummy.class]
Virus:Exploit/ByteVerify Not disinfected C:\Documents and Settings\Perry\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\classload.jar-1cf39f94-2c92d454.zip[Installer.class]
Virus:Exploit/ByteVerify Not disinfected C:\Documents and Settings\Perry\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\classload.jar-2fa9f21f-6d5b1513.zip[GetAccess.class]
Virus:Exploit/ByteVerify Not disinfected C:\Documents and Settings\Perry\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\classload.jar-2fa9f21f-6d5b1513.zip[InsecureClassLoader.class]
Virus:Exploit/ByteVerify Not disinfected C:\Documents and Settings\Perry\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\classload.jar-2fa9f21f-6d5b1513.zip[Dummy.class]
Virus:Exploit/ByteVerify Not disinfected C:\Documents and Settings\Perry\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\classload.jar-2fa9f21f-6d5b1513.zip[Installer.class]
Virus:Exploit/ByteVerify Not disinfected C:\Documents and Settings\Perry\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\classload.jar-793fe9c2-29bd1783.zip[GetAccess.class]
Virus:Exploit/ByteVerify Not disinfected C:\Documents and Settings\Perry\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\classload.jar-793fe9c2-29bd1783.zip[InsecureClassLoader.class]
Virus:Exploit/ByteVerify Not disinfected C:\Documents and Settings\Perry\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\classload.jar-793fe9c2-29bd1783.zip[Dummy.class]
Virus:Exploit/ByteVerify Not disinfected C:\Documents and Settings\Perry\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\classload.jar-793fe9c2-29bd1783.zip[Installer.class]
Virus:Exploit/ByteVerify Not disinfected C:\Documents and Settings\Perry\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\classload.jar-93c2850-709b4fe7.zip[GetAccess.class]
Virus:Exploit/ByteVerify Not disinfected C:\Documents and Settings\Perry\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\classload.jar-93c2850-709b4fe7.zip[InsecureClassLoader.class]
Virus:Exploit/ByteVerify Not disinfected C:\Documents and Settings\Perry\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\classload.jar-93c2850-709b4fe7.zip[Dummy.class]
Virus:Exploit/ByteVerify Not disinfected C:\Documents and Settings\Perry\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\classload.jar-93c2850-709b4fe7.zip[Installer.class]
Virus:Trj/ClassLoader.J Not disinfected C:\Documents and Settings\Perry\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\count3.jar-2a1f473-78d77367.zip[Beyond.class]
Virus:Trj/ClassLoader.J Not disinfected C:\Documents and Settings\Perry\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\count3.jar-2a1f473-78d77367.zip[BlackBox.class]
Virus:Exploit/ByteVerify Not disinfected C:\Documents and Settings\Perry\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\count3.jar-2a1f473-78d77367.zip[Dummy.class]
Virus:Trj/ClassLoader.J Not disinfected C:\Documents and Settings\Perry\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\count3.jar-2a1f473-78d77367.zip[VerifierBug.class]
Virus:Exploit/ByteVerify Not disinfected C:\Documents and Settings\Perry\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\count3.jar-5a82fcd8-35ec6bbc.zip[Dummy.class]
Virus:Exploit/ByteVerify Not disinfected C:\Documents and Settings\Perry\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\msjld.jar-5fa973e1-7e53dfc1.zip[GetAccess.class]
Virus:Exploit/ByteVerify Not disinfected C:\Documents and Settings\Perry\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\msjld.jar-5fa973e1-7e53dfc1.zip[InsecureClassLoader.class]
Virus:Exploit/ByteVerify Not disinfected C:\Documents and Settings\Perry\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\msjld.jar-5fa973e1-7e53dfc1.zip[Dummy.class]
Virus:Exploit/ByteVerify Not disinfected C:\Documents and Settings\Perry\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\msjld.jar-5fa973e1-7e53dfc1.zip[Installer.class]
Adware:Adware/SAHAgent Not disinfected C:\WINDOWS\inf\bi8.inf
Adware:Adware/eZula Not disinfected C:\WINDOWS\system32\ezPopStub.exe
Adware:Adware/SpyAxe Not disinfected C:\WINDOWS\system32\svchosts.dll
SpyAxeFix © by noahdfear
Microsoft Windows XP [Version 5.1.2600]
The current date is: Sat 11/26/2005
The current time is: 18:53:40.64
Command Line Process Viewer/Killer/Suspender for Windows NT/2000/XP V2.03
Copyright© 2002-2003
[email protected]Killing PID 1720 'explorer.exe'
Command Line Process Viewer/Killer/Suspender for Windows NT/2000/XP V2.03
Copyright© 2002-2003
[email protected]Error, Cannot find a process with an image name of rundll32.exe
svchosts.dll present
REGEDIT4
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SharedTaskScheduler]
"{438755C2-A8BA-11D1-B96B-00A0C90312E1}"="Browseui preloader"
"{8C7461EF-2B13-11d2-BE35-3078302C2030}"="Component Categories cache daemon"
Thanks again!