Here 'Tis. Thanks
VirSCAN.org Scanned Report :
Scanned time : 2008/11/24 08:13:56 (PST)
Scanner results: 3% Scanner(1/39) found malware!
File Name : hijackthis.exe
File Size : 401720 byte
File Type : PE32 executable for MS Windows (GUI) Intel 80386 32-bit
MD5 : e8269245566be948f6a219135b434160
SHA1 : 1ac255b76ef692ea6c09d4840dcd28c67c5d6bfe
Online report :
http://virscan.org/r...135b434160.htmlScanner Engine Ver Sig Ver Sig Date Time Scan result
a-squared 4.0.0.26 20081124230322 2008-11-24 3.27 -
AhnLab V3 2008.11.24.03 2008.11.24 2008-11-24 1.05 -
AntiVir 7.9.0.35 7.1.0.130 2008-11-24 1.59 -
Antiy 2.0.18 20081124.1724866 2008-11-24 0.12 -
Arcavir 1.0.5 200811231052 2008-11-23 1.41 -
Authentium 5.1.1 200811241319 2008-11-24 1.15 -
AVAST! 3.0.1 081123-0 2008-11-23 0.12 -
AVG 7.5.52.442 270.9.9/1809 2008-11-24 1.83 -
BitDefender 7.81008.2258614 7.22059 2008-11-24 2.14 -
CA (VET) 9.0.0.143 31.6.6225 2008-11-24 4.79 -
ClamAV 0.94.1 8671 2008-11-24 0.32 -
Comodo 2.11 2.0.0.712 2008-11-20 0.52 -
CP Secure 1.1.0.715 2008.11.24 2008-11-24 6.41 W32.W.Huhk.a
Dr.Web 4.44.0.9170 2008.11.24 2008-11-24 3.77 -
ewido 4.0.0.2 2008.11.24 2008-11-24 5.72 -
F-Prot 4.4.4.56 20081124 2008-11-24 1.15 -
F-Secure 5.51.6100 2008.11.24.08 2008-11-24 0.35 -
Fortinet 2.81-3.117 9.738 2008-11-23 0.35 -
GData 19.1653/19.118 20081124 2008-11-24 3.27 -
ViRobot 20081121 2008.11.21 2008-11-21 0.41 -
Ikarus T3.1.01.45 2008.11.24.71906 2008-11-24 3.54 -
JiangMin 11.0.706 2008.11.24 2008-11-24 1.43 -
Kaspersky 5.5.10 2008.11.24 2008-11-24 0.32 -
KingSoft 2008.9.8.18 2008.11.24.20 2008-11-24 0.78 -
McAfee 5.3.00 5443 2008-11-23 3.29 -
Microsoft 1.4104 2008.11.24 2008-11-24 5.23 -
mks_vir 2.01 2008.11.17 2008-11-17 2.83 -
Norman 5.93.01 5.93.00 2008-11-22 5.19 -
Panda 9.05.01 2008.11.23 2008-11-23 2.46 -
Trend Micro 8.700-1004 5.672.05 2008-11-24 0.09 -
Quick Heal 10.00 2008.11.24 2008-11-24 0.95 -
Rising 20.0 21.05.02.00 2008-11-24 1.13 -
Sophos 2.80.0 4.35 2008-11-24 3.07 -
Sunbelt 4474 4474 2008-11-04 0.50 -
Symantec 1.3.0.24 20081123.004 2008-11-23 0.20 -
nProtect 2008-11-21.03 2625860 2008-11-21 3.40 -
The Hacker 6.3.1.1 v00161 2008-11-24 0.59 -
VBA32 3.12.8.9 20081123.1550 2008-11-23 1.65 -
VirusBuster 4.5.11.10 10.94.5/715575 2008-11-24 3.82 -
========== PROCESSES ==========
Process explorer.exe killed successfully.
========== FILES ==========
File/Folder C:\Users\Cheryl\Contacts\Documents\Downloads\c-setup.exe not found.
File/Folder C:\Users\Cheryl\Contacts\Documents\Downloads\Microsoft_Points_Generator.rar not found.
File/Folder C:\Users\Cheryl\Contacts\Documents\LimeWire\Incomplete\T-5745425-digital thugz kanye west.mp3 not found.
File/Folder C:\Users\Cheryl\Contacts\Documents\LimeWire\Incomplete\T-5745425-Gangstarr - you know.mp3 not found.
File/Folder C:\Users\Cheryl\Contacts\Documents\LimeWire\Saved\spazberry bonds.wma not found.
File/Folder C:\Users\Cheryl\Contacts\Documents\LimeWire\Saved\today tom scott - greatest hits.wma not found.
========== COMMANDS ==========
File delete failed. C:\Users\Cheryl\AppData\Local\Temp\ehmsas.txt scheduled to be deleted on reboot.
User's Temp folder emptied.
User's Temporary Internet Files folder emptied.
User's Internet Explorer cache folder emptied.
Local Service Temp folder emptied.
Local Service Temporary Internet Files folder emptied.
File delete failed. C:\Windows\temp\JETA082.tmp scheduled to be deleted on reboot.
Windows Temp folder emptied.
FireFox cache emptied.
Temp folders emptied.
Explorer started successfully
OTMoveIt3 by OldTimer - Version 1.0.7.1 log created on 12082008_113121
Files moved on Reboot...
C:\Users\Cheryl\AppData\Local\Temp\ehmsas.txt moved successfully.
File C:\Windows\temp\JETA082.tmp not found!
--------------------------------------------------------------------------------
KASPERSKY ONLINE SCANNER 7 REPORT
Monday, December 8, 2008
Operating System: Microsoft Windows Vista Home Premium Edition, 32-bit (build 6000)
Kaspersky Online Scanner 7 version: 7.0.25.0
Program database last update: Monday, December 08, 2008 15:52:54
Records in database: 1444112
--------------------------------------------------------------------------------
Scan settings:
Scan using the following database: extended
Scan archives: yes
Scan mail databases: yes
Scan area - My Computer:
C:\
D:\
E:\
Scan statistics:
Files scanned: 186502
Threat name: 4
Infected objects: 6
Suspicious objects: 0
Duration of the scan: 03:34:34
File name / Threat name / Threats count
C:\_OTMoveIt\MovedFiles\12082008_084258\Users\Cheryl\Contacts\Documents\Downloads\c-setup.exe Infected: Trojan-Downloader.Win32.Delf.iqn 1
C:\_OTMoveIt\MovedFiles\12082008_084258\Users\Cheryl\Contacts\Documents\Downloads\Microsoft_Points_Generator.rar Infected: Trojan-Spy.Win32.Ardamax.t 1
C:\_OTMoveIt\MovedFiles\12082008_084258\Users\Cheryl\Contacts\Documents\LimeWire\Incomplete\T-5745425-digital thugz kanye west.mp3 Infected: Trojan-Downloader.WMA.GetCodec.c 1
C:\_OTMoveIt\MovedFiles\12082008_084258\Users\Cheryl\Contacts\Documents\LimeWire\Incomplete\T-5745425-Gangstarr - you know.mp3 Infected: Trojan-Downloader.WMA.GetCodec.c 1
C:\_OTMoveIt\MovedFiles\12082008_084258\Users\Cheryl\Contacts\Documents\LimeWire\Saved\spazberry bonds.wma Infected: Trojan-Downloader.WMA.Wimad.n 1
C:\_OTMoveIt\MovedFiles\12082008_084258\Users\Cheryl\Contacts\Documents\LimeWire\Saved\today tom scott - greatest hits.wma Infected: Trojan-Downloader.WMA.Wimad.n 1
The selected area was scanned.