Content Top
DAL Computer Help » Internet Security Help » Spyware, Adware, Viruses and HijackThis Logs » have a trojan!!help!

Recommended Fix

Click here to fix Windows Errors and Optimize Windows Performance

Need Computer Help?
Register Now for FREE

have a trojan!!help!

Reply
Page 1 of 7 1 234567
Thread Tools
Spyware, Adware, Viruses and HijackThis Logs
  #1 (permalink)  
Old 04-12-2006, 05:07 PM
Troubled Kid's Avatar
Elite Member
Contributor
  
Join Date: Jan 2006
Posts: 257
Troubled Kid Is a valued member of D-A-LTroubled Kid Is a valued member of D-A-L
Exclamation have a trojan!!help!
my computer had detected a trojan virus as i used a free scan to see if i did, and pop-ups kept popping up like crazy saying download this type of virus protection for htis price.. over 10 different types of popups came on saying this.. i had down a system restore, and everything had calmed down but i kno its still in my system not to mention random reboots and fan running pretty fast and loud... not sure wat else to do!
Digg this Post!Add Post to del.icio.usBookmark Post in TechnoratiFurl this Post!
Reply With Quote
  #2 (permalink)  
Old 05-12-2006, 04:10 AM
Neal's Avatar
Senior Member
  
Join Date: Sep 2005
Posts: 5,524
Neal is a D-A-L Rockstar!Neal is a D-A-L Rockstar!Neal is a D-A-L Rockstar!Neal is a D-A-L Rockstar!Neal is a D-A-L Rockstar!Neal is a D-A-L Rockstar!Neal is a D-A-L Rockstar!Neal is a D-A-L Rockstar!Neal is a D-A-L Rockstar!Neal is a D-A-L Rockstar!Neal is a D-A-L Rockstar!
Re: have a trojan!!help!
Welcome,

Please go here Read This First - IMPORTANT Instructions

Do everything there and post a hijackthis log from the link provided please. Copy/paste hijackthis log back here into this thread. Thanks.
__________________
Stalking and killing Spyware

Have we helped you? Please consider a donation to help keep D-A-L free. Click on donate below



MALWARE: READ FIRST Procedures:
|_ SpyBot V1.5 _|_ HijackThis Log __V2.0.2 _|



ASAP: promoting a high standard and quality of security support no matter where you seek help.

Digg this Post!Add Post to del.icio.usBookmark Post in TechnoratiFurl this Post!
Reply With Quote
  #3 (permalink)  
Old 22-01-2007, 06:51 PM
Troubled Kid's Avatar
Elite Member
Contributor
  
Join Date: Jan 2006
Posts: 257
Troubled Kid Is a valued member of D-A-LTroubled Kid Is a valued member of D-A-L
Re: have a trojan!!help!
how do u post a hijack log?
Digg this Post!Add Post to del.icio.usBookmark Post in TechnoratiFurl this Post!
Reply With Quote
  #4 (permalink)  
Old 23-01-2007, 03:01 AM
VopThis's Avatar
Senior Member (Canada)
  
Join Date: Nov 2005
Posts: 3,439
VopThis is a D-A-L Rockstar!VopThis is a D-A-L Rockstar!VopThis is a D-A-L Rockstar!VopThis is a D-A-L Rockstar!VopThis is a D-A-L Rockstar!VopThis is a D-A-L Rockstar!VopThis is a D-A-L Rockstar!VopThis is a D-A-L Rockstar!VopThis is a D-A-L Rockstar!VopThis is a D-A-L Rockstar!VopThis is a D-A-L Rockstar!
Re: have a trojan!!help!
Quote:
how do u post a hijack log?
If you generate a Hijackthis report as specified per given instructions, it will appear as a NOTEPAD document.


Following the following NOTEPAD MENU OPTION instructions as follows:

Edit>Select All (to highlight all text in the report)
Edit>Copy (copy contents to memory) or press CTRL+C KEYS (together)

Click the mouse in the text area on a new reply in this thread.
Press CTRL+V KEYS (copy the log into your new post).
Submit your new post.
__________________
Vincent P

MALWARE: READ FIRST Procedures:
|_ SpyBot V1.5 _|_ HijackThis LOG __V2.0.2 _|

__
ASAP: promoting a high standard and quality of security support no matter where you seek help.

Quote:
SAFER SURFING TOOLS (IE/FF **FREE** browser addons):
Linkscanner + WOT (Web of Trust) + SiteAdvisor (suggest at least two but not necessarily all)
Quote:
Tell me and I forget; show me and I remember; involve me and I understand.
There are no foolish questions, the only thing foolish is not asking if you're unsure of something.
Never ASSUME any detail because it can make an ASS out of U and ME... (ASS/U/ME ).
Digg this Post!Add Post to del.icio.usBookmark Post in TechnoratiFurl this Post!
Reply With Quote
  #5 (permalink)  
Old 23-01-2007, 08:18 PM
Troubled Kid's Avatar
Elite Member
Contributor
  
Join Date: Jan 2006
Posts: 257
Troubled Kid Is a valued member of D-A-LTroubled Kid Is a valued member of D-A-L
Re: have a trojan!!help!
ok ill get to it as soon as possible thanx
Digg this Post!Add Post to del.icio.usBookmark Post in TechnoratiFurl this Post!
Reply With Quote
  #6 (permalink)  
Old 26-01-2007, 06:51 AM
Troubled Kid's Avatar
Elite Member
Contributor
  
Join Date: Jan 2006
Posts: 257
Troubled Kid Is a valued member of D-A-LTroubled Kid Is a valued member of D-A-L
Re: have a trojan!!help!
Click on the (+) in front of User Interface to expand the group.Click on the red X Remember window positions to change it to a green check

that part did not let me check it to green it was grey and was locked evryhting else checked from red x to green x
Digg this Post!Add Post to del.icio.usBookmark Post in TechnoratiFurl this Post!
Reply With Quote
  #7 (permalink)  
Old 26-01-2007, 07:21 AM
Troubled Kid's Avatar
Elite Member
Contributor
  
Join Date: Jan 2006
Posts: 257
Troubled Kid Is a valued member of D-A-LTroubled Kid Is a valued member of D-A-L
Re: have a trojan!!help!
Adware.Mediapipe(TAC index:4):8 total references
Adware.WeirWeb(TAC index:5):3 total references
ErrorGuard(TAC index:7):1 total references
MalwareWipe(TAC index:3):21 total references
MRU List(TAC index:0):9 total references
SpyAxe(TAC index:4):1 total references
SpywareQuake(TAC index:10):1 total references
Tracking Cookie(TAC index:3):41 total references
Win32.Trojandownloader.Zlob(TAC index:10):11 total references
VirusBlast(TAC index:3):4 total references
Zango(TAC index:4):3 total references
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»

Definition File:
=========================
Definitions File Loaded:
Reference Number : SE1R47 24.05.2005
Internal build : 55
File location : C:\PROGRA~1\Lavasoft\AD-AWA~1\defs.ref
File size : 476246 Bytes
Total size : 1439523 Bytes
Signature data size : 1408291 Bytes
Reference data size : 30720 Bytes
Signatures total : 40174
CSI Fingerprints total : 886
CSI data size : 30371 Bytes
Target categories : 15
Target families : 679

1-25-2007 11:38:51 PM Performing WebUpdate...

Installing Update...
Definitions File Loaded:
Reference Number : SE1R147 25.01.2007
Internal build : 184
File location : C:\PROGRA~1\Lavasoft\AD-AWA~1\defs.ref
File size : 955827 Bytes
Total size : 3118023 Bytes
Signature data size : 3068096 Bytes
Reference data size : 49415 Bytes
Signatures total : 82826
CSI Fingerprints total : 5453
CSI data size : 253461 Bytes
Target categories : 15
Target families : 1022


1-25-2007 11:39:04 PM Success
Update successfully downloaded and installed.


Memory + processor status:
==========================
Number of processors : 2
Processor architecture : Intel Pentium IV
Memory available:35 %
Total physical memory:523244 kb
Available physical memory:179276 kb
Total page file size:1276296 kb
Available on page file:936968 kb
Total virtual memory:2097024 kb
Available virtual memory:2032852 kb
OS:Microsoft Windows XP Home Edition Service Pack 2 (Build 2600)

Ad-Aware SE Settings
===========================
Set : Search for negligible risk entries
Set : Move deleted files to Recycle Bin
Set : Safe mode (always request confirmation)
Set : Scan active processes
Set : Scan registry
Set : Deep-scan registry
Set : Scan my IE Favorites for banned URLs
Set : Scan within archives
Set : Scan my Hosts file

Extended Ad-Aware SE Settings
===========================
Set : Unload recognized processes & modules during scan
Set : Obtain command line of scanned processes
Set : Run scan as background process (Low CPU usage)
Set : Scan registry for all users instead of current user only
Set : Use permanent archive caching
Set : Always try to unload modules before deletion
Set : During removal, unload Explorer and IE if necessary
Set : Let Windows remove files in use at next reboot
Set : Delete quarantined objects after restoring
Set : Disable manual quarantine if auto-quarantine is selected
Set : Reanalyze results after scanning before displaying results lists
Set : Write-protect system files after repair (Hosts file, etc.)
Set : Include basic Ad-Aware settings in log file
Set : Include additional Ad-Aware settings in log file
Set : Include reference summary in log file
Set : Create log file for removal operations
Set : Include alternate data stream details in log file
Set : Snap windows to desktop borders
Set : Use gridlines in results lists
Set : Create and save WebUpdate log file
Set : Dump details about unhandled exceptions to disk
Set : Play sound at scan completion if scan locates critical objects


1-25-2007 11:52:13 PM - Scan started. (Custom mode)

Listing running processes
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»

#:1 [smss.exe]
ModuleName : \SystemRoot\System32\smss.exe
Command Line : n/a
ProcessID : 696
ThreadCreationTime : 1-26-2007 4:31:21 AM
BasePriority : Normal


#:2 [csrss.exe]
ModuleName : \??\C:\WINDOWS\system32\csrss.exe
Command Line : C:\WINDOWS\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,3072,512 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ProfileControl=Off MaxRequestTh
ProcessID : 744
ThreadCreationTime : 1-26-2007 4:31:23 AM
BasePriority : Normal


#:3 [winlogon.exe]
ModuleName : \??\C:\WINDOWS\system32\winlogon.exe
Command Line : winlogon.exe
ProcessID : 768
ThreadCreationTime : 1-26-2007 4:31:24 AM
BasePriority : High


#:4 [services.exe]
ModuleName : C:\WINDOWS\system32\services.exe
Command Line : C:\WINDOWS\system32\services.exe
ProcessID : 812
ThreadCreationTime : 1-26-2007 4:31:24 AM
BasePriority : Normal
FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 5.1.2600.2180
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Services and Controller app
InternalName : services.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : services.exe

#:5 [lsass.exe]
ModuleName : C:\WINDOWS\system32\lsass.exe
Command Line : C:\WINDOWS\system32\lsass.exe
ProcessID : 824
ThreadCreationTime : 1-26-2007 4:31:24 AM
BasePriority : Normal
FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 5.1.2600.2180
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : LSA Shell (Export Version)
InternalName : lsass.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : lsass.exe

#:6 [svchost.exe]
ModuleName : C:\WINDOWS\system32\svchost.exe
Command Line : C:\WINDOWS\system32\svchost -k DcomLaunch
ProcessID : 1012
ThreadCreationTime : 1-26-2007 4:31:24 AM
BasePriority : Normal
FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 5.1.2600.2180
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Generic Host Process for Win32 Services
InternalName : svchost.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : svchost.exe

#:7 [svchost.exe]
ModuleName : C:\WINDOWS\system32\svchost.exe
Command Line : C:\WINDOWS\system32\svchost -k rpcss
ProcessID : 1080
ThreadCreationTime : 1-26-2007 4:31:25 AM
BasePriority : Normal
FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 5.1.2600.2180
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Generic Host Process for Win32 Services
InternalName : svchost.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : svchost.exe

#:8 [svchost.exe]
ModuleName : C:\WINDOWS\System32\svchost.exe
Command Line : C:\WINDOWS\System32\svchost.exe -k netsvcs
ProcessID : 1176
ThreadCreationTime : 1-26-2007 4:31:25 AM
BasePriority : Normal
FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 5.1.2600.2180
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Generic Host Process for Win32 Services
InternalName : svchost.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : svchost.exe

#:9 [svchost.exe]
ModuleName : C:\WINDOWS\System32\svchost.exe
Command Line : C:\WINDOWS\System32\svchost.exe -k NetworkService
ProcessID : 1300
ThreadCreationTime : 1-26-2007 4:31:25 AM
BasePriority : Normal
FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 5.1.2600.2180
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Generic Host Process for Win32 Services
InternalName : svchost.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : svchost.exe

#:10 [svchost.exe]
ModuleName : C:\WINDOWS\System32\svchost.exe
Command Line : C:\WINDOWS\System32\svchost.exe -k LocalService
ProcessID : 1372
ThreadCreationTime : 1-26-2007 4:31:25 AM
BasePriority : Normal
FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 5.1.2600.2180
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Generic Host Process for Win32 Services
InternalName : svchost.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : svchost.exe

#:11 [lexbces.exe]
ModuleName : C:\WINDOWS\system32\LEXBCES.EXE
Command Line : C:\WINDOWS\system32\LEXBCES.EXE
ProcessID : 1548
ThreadCreationTime : 1-26-2007 4:31:25 AM
BasePriority : Normal
FileVersion : 7.4
ProductVersion : 7.4
ProductName : MarkVision for Windows (32 bit)
CompanyName : Lexmark International, Inc.
FileDescription : LexBce Service
InternalName : LexBce Service
LegalCopyright : (C) 1993 - 2002 Lexmark International, Inc.
OriginalFilename : LexBceS.exe

#:12 [spoolsv.exe]
ModuleName : C:\WINDOWS\system32\spoolsv.exe
Command Line : C:\WINDOWS\system32\spoolsv.exe
ProcessID : 1588
ThreadCreationTime : 1-26-2007 4:31:26 AM
BasePriority : Normal
FileVersion : 5.1.2600.2696 (xpsp_sp2_gdr.050610-1519)
ProductVersion : 5.1.2600.2696
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Spooler SubSystem App
InternalName : spoolsv.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : spoolsv.exe

#:13 [lexpps.exe]
ModuleName : C:\WINDOWS\system32\LEXPPS.EXE
Command Line : LEXPPS.EXE
ProcessID : 1612
ThreadCreationTime : 1-26-2007 4:31:26 AM
BasePriority : Normal
FileVersion : 7.4
ProductVersion : 7.4
ProductName : MarkVision for Windows (32 bit)
CompanyName : Lexmark International, Inc.
FileDescription : LEXPPS.EXE
InternalName : LEXPPS
LegalCopyright : (C) 1993 - 2002 Lexmark International, Inc.
OriginalFilename : LEXPPS.EXE
Comments : MarkVision for Windows '95 New P2P Server (32-bit)

#:14 [svchost.exe]
ModuleName : C:\WINDOWS\System32\svchost.exe
Command Line : C:\WINDOWS\System32\svchost.exe -k HTTPFilter
ProcessID : 1852
ThreadCreationTime : 1-26-2007 4:31:33 AM
BasePriority : Normal
FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 5.1.2600.2180
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Generic Host Process for Win32 Services
InternalName : svchost.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : svchost.exe

#:15 [mdm.exe]
ModuleName : C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
Command Line : "C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE"
ProcessID : 1876
ThreadCreationTime : 1-26-2007 4:31:33 AM
BasePriority : Normal
FileVersion : 7.00.9466
ProductVersion : 7.00.9466
ProductName : Microsoft® Visual Studio .NET
CompanyName : Microsoft Corporation
FileDescription : Machine Debug Manager
InternalName : mdm.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : mdm.exe

#:16 [nvsvc32.exe]
ModuleName : C:\WINDOWS\System32\nvsvc32.exe
Command Line : C:\WINDOWS\System32\nvsvc32.exe
ProcessID : 1932
ThreadCreationTime : 1-26-2007 4:31:33 AM
BasePriority : Normal
FileVersion : 6.14.10.7189
ProductVersion : 6.14.10.7189
ProductName : NVIDIA Driver Helper Service, Version 71.89
CompanyName : NVIDIA Corporation
FileDescription : NVIDIA Driver Helper Service, Version 71.89
InternalName : NVSVC
LegalCopyright : (C) NVIDIA Corporation. All rights reserved.
OriginalFilename : nvsvc32.exe

#:17 [svchost.exe]
ModuleName : C:\WINDOWS\System32\svchost.exe
Command Line : C:\WINDOWS\System32\svchost.exe -k imgsvc
ProcessID : 1996
ThreadCreationTime : 1-26-2007 4:31:33 AM
BasePriority : Normal
FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 5.1.2600.2180
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Generic Host Process for Win32 Services
InternalName : svchost.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : svchost.exe

#:18 [wmpnetwk.exe]
ModuleName : C:\Program Files\Windows Media Player\WMPNetwk.exe
Command Line : "C:\Program Files\Windows Media Player\WMPNetwk.exe"
ProcessID : 444
ThreadCreationTime : 1-26-2007 4:31:34 AM
BasePriority : Normal
FileVersion : 11.0.5721.5145 (WMP_11.061018-2006)
ProductVersion : 11.0.5721.5145
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Windows Media Player Network Sharing Service
InternalName : Windows Media Player Network Sharing Service
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : WMPNetwk.exe

#:19 [zunenss.exe]
ModuleName : C:\Program Files\Zune\ZuneNss.exe
Command Line : "C:\Program Files\Zune\ZuneNss.exe"
ProcessID : 520
ThreadCreationTime : 1-26-2007 4:31:34 AM
BasePriority : Normal
FileVersion : 1.2.5511.0 (Zune.061212-1431)
ProductVersion : 1.2.5511.0
ProductName : Zune®
CompanyName : Microsoft Corporation
FileDescription : Zune Network Sharing Service
InternalName : Zune Network Sharing Service
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : ZuneNSS.exe

#:20 [alg.exe]
ModuleName : C:\WINDOWS\System32\alg.exe
Command Line : C:\WINDOWS\System32\alg.exe
ProcessID : 456
ThreadCreationTime : 1-26-2007 4:31:50 AM
BasePriority : Normal
FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 5.1.2600.2180
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Application Layer Gateway Service
InternalName : ALG.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : ALG.exe

#:21 [explorer.exe]
ModuleName : C:\WINDOWS\Explorer.EXE
Command Line : C:\WINDOWS\Explorer.EXE
ProcessID : 2616
ThreadCreationTime : 1-26-2007 4:32:19 AM
BasePriority : Normal
FileVersion : 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 6.00.2900.2180
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Windows Explorer
InternalName : explorer
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : EXPLORER.EXE

#:22 [smax4pnp.exe]
ModuleName : C:\Program Files\Analog Devices\Core\smax4pnp.exe
Command Line : "C:\Program Files\Analog Devices\Core\smax4pnp.exe"
ProcessID : 2976
ThreadCreationTime : 1-26-2007 4:32:22 AM
BasePriority : Normal
FileVersion : 5, 2, 0, 5
ProductVersion : 5, 2, 0, 5
ProductName : SMax4PNP Application
CompanyName : Analog Devices, Inc.
FileDescription : SMax4PNP MFC Application
InternalName : SMax4PNP
LegalCopyright : Copyright (C) 2002-2004 Analog Devices
OriginalFilename : SMax4PNP.EXE

#:23 [pcmservice.exe]
ModuleName : C:\Program Files\Dell\Media Experience\PCMService.exe
Command Line : "C:\Program Files\Dell\Media Experience\PCMService.exe"
ProcessID : 3000
ThreadCreationTime : 1-26-2007 4:32:22 AM
BasePriority : Normal
FileVersion : 1.0.0826
ProductVersion : 1.0.0826
ProductName : PCM2Launcher Application
CompanyName : CyberLink Corp.
FileDescription : PowerCinema Resident Program for Dell
InternalName : PowerCinema Resident Program for Dell
LegalCopyright : Copyright c 2003 CyberLink Corp.
OriginalFilename : PCM2Launcher.EXE

#:24 [tfswctrl.exe]
ModuleName : C:\WINDOWS\system32\dla\tfswctrl.exe
Command Line : "C:\WINDOWS\system32\dla\tfswctrl.exe"
ProcessID : 3032
ThreadCreationTime : 1-26-2007 4:32:22 AM
BasePriority : Normal
FileVersion : 1.04.05b
CompanyName : Sonic Solutions
FileDescription : Drive Letter Access Component
LegalCopyright : Copyright © 2003 Sonic Solutions

#:25 [bcmsmmsg.exe]
ModuleName : C:\WINDOWS\BCMSMMSG.exe
Command Line : "C:\WINDOWS\BCMSMMSG.exe"
ProcessID : 3040
ThreadCreationTime : 1-26-2007 4:32:22 AM
BasePriority : Normal
FileVersion : 3.5.25 08/27/2003 20:04:35
ProductVersion : 3.5.25 08/27/2003 20:04:35
ProductName : BCM Modem Messaging Applet
CompanyName : Broadcom Corporation
FileDescription : Modem Messaging Applet
InternalName : smdmstat.exe
LegalCopyright : Copyright © Broadcom Corporation 1998-2000
OriginalFilename : smdmstat.exe

#:26 [mmtask.exe]
ModuleName : C:\Program Files\MUSICMATCH\MUSICMATCH Jukebox\mmtask.exe
Command Line : "C:\Program Files\MUSICMATCH\MUSICMATCH Jukebox\mmtask.exe"
ProcessID : 3048
ThreadCreationTime : 1-26-2007 4:32:22 AM
BasePriority : Normal
FileVersion : 9.0.0.1
ProductVersion : 9.0.0.1
ProductName : Musicmatch Jukebox
CompanyName : Musicmatch Inc.
FileDescription : <Musicmatch System Tray Application>
InternalName : mmtask.exe
LegalCopyright : (c) Musicmatch Inc.. All rights reserved.
OriginalFilename : mmtask.exe

#:27 [jusched.exe]
ModuleName : C:\Program Files\Java\jre1.5.0_10\bin\jusched.exe
Command Line : "C:\Program Files\Java\jre1.5.0_10\bin\jusched.exe"
ProcessID : 3076
ThreadCreationTime : 1-26-2007 4:32:22 AM
BasePriority : Normal


#:28 [m3srchmn.exe]
ModuleName : C:\PROGRA~1\MYWEBS~1\bar\1.bin\m3SrchMn.exe
Command Line : "C:\PROGRA~1\MYWEBS~1\bar\1.bin\m3SrchMn.exe" /m=0
ProcessID : 3148
ThreadCreationTime : 1-26-2007 4:32:23 AM
BasePriority : Normal
FileVersion : 1, 0, 0, 1
ProductVersion : 2, 1, 60, 0
ProductName : My Web Search Bar for Internet Explorer and FireFox
CompanyName : MyWebSearch.com
FileDescription : MyWebSearch SearchScope Monitor
InternalName : m3SrchMn
LegalCopyright : Copyright © 2006
OriginalFilename : m3SrchMn.exe

#:29 [mwsoemon.exe]
ModuleName : C:\PROGRA~1\MYWEBS~1\bar\1.bin\mwsoemon.exe
Command Line : "C:\PROGRA~1\MYWEBS~1\bar\1.bin\mwsoemon.exe"
ProcessID : 3264
ThreadCreationTime : 1-26-2007 4:32:23 AM
BasePriority : Normal
FileVersion : 1,2,2,4
ProductVersion : 2,0,1,0
ProductName : My Web Search Bar for Internet Explorer, email clients, and messenger clients
CompanyName : MyWebSearch.com
FileDescription : My Web Search Plugin Loader
InternalName : mwsoemon
LegalCopyright : Copyright © 2003-2006 MyWebSearch.com
OriginalFilename : mwsoemon.exe

#:30 [zunelauncher.exe]
ModuleName : C:\Program Files\Zune\ZuneLauncher.exe
Command Line : "C:\Program Files\Zune\ZuneLauncher.exe"
ProcessID : 3276
ThreadCreationTime : 1-26-2007 4:32:23 AM
BasePriority : Normal
FileVersion : 1.2.5511.0 (Zune.061212-1431)
ProductVersion : 1.2.5511.0
ProductName : Zune®
CompanyName : Microsoft Corporation
FileDescription : Zune Auto-Launcher
InternalName : ZuneLauncher.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : ZuneLauncher.exe

#:31 [ituneshelper.exe]
ModuleName : C:\Program Files\iTunes\iTunesHelper.exe
Command Line : "C:\Program Files\iTunes\iTunesHelper.exe"
ProcessID : 3292
ThreadCreationTime : 1-26-2007 4:32:23 AM
BasePriority : Normal
FileVersion : 7.0.2.16
ProductVersion : 7.0.2.16
ProductName : iTunes
CompanyName : Apple Computer, Inc.
FileDescription : iTunesHelper Module
InternalName : iTunesHelper
LegalCopyright : © 2003-2006 Apple Computer, Inc. All Rights Reserved.
OriginalFilename : iTunesHelper.exe

#:32 [ctfmon.exe]
ModuleName : C:\WINDOWS\system32\ctfmon.exe
Command Line : "C:\WINDOWS\system32\ctfmon.exe"
ProcessID : 3328
ThreadCreationTime : 1-26-2007 4:32:23 AM
BasePriority : Normal
FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 5.1.2600.2180
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : CTF Loader
InternalName : CTFMON
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : CTFMON.EXE

#:33 [wcescomm.exe]
ModuleName : C:\Program Files\Microsoft ActiveSync\wcescomm.exe
Command Line : "C:\Program Files\Microsoft ActiveSync\wcescomm.exe"
ProcessID : 3384
ThreadCreationTime : 1-26-2007 4:32:23 AM
BasePriority : Normal
FileVersion : 4.1.4841.0
ProductVersion : 4.1.4841
ProductName : Microsoft ActiveSync
CompanyName : Microsoft Corporation
FileDescription : ActiveSync Connection Manager
InternalName : wcescomm
LegalCopyright : Copyright © 1995-2004 Microsoft Corp. All rights reserved.
LegalTrademarks : Microsoft® and Windows® are registered trademarks of Microsoft Corporation.
OriginalFilename : WCESCOMM.EXE

#:34 [wmpnscfg.exe]
ModuleName : C:\Program Files\Windows Media Player\WMPNSCFG.exe
Command Line : "C:\Program Files\Windows Media Player\WMPNSCFG.exe"
ProcessID : 3420
ThreadCreationTime : 1-26-2007 4:32:24 AM
BasePriority : Normal
FileVersion : 11.0.5721.5145 (WMP_11.061018-2006)
ProductVersion : 11.0.5721.5145
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Windows Media Player Network Sharing Service Configuration Application
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : WMPNSCFG.EXE

#:35 [rapimgr.exe]
ModuleName : C:\PROGRA~1\MI3AA1~1\rapimgr.exe
Command Line : C:\PROGRA~1\MI3AA1~1\rapimgr.exe -Embedding
ProcessID : 3472
ThreadCreationTime : 1-26-2007 4:32:24 AM
BasePriority : Normal
FileVersion : 4.1.4841.0
ProductVersion : 4.1.4841
ProductName : Microsoft ActiveSync
CompanyName : Microsoft Corporation
FileDescription : ActiveSync RAPI Manager
InternalName : rapimgr
LegalCopyright : Copyright © 1995-2004 Microsoft Corp. All rights reserved.
LegalTrademarks : Microsoft® and Windows® are registered trademarks of Microsoft Corporation.
OriginalFilename : rapimgr.exe

#:36 [ipodservice.exe]
ModuleName : C:\Program Files\iPod\bin\iPodService.exe
Command Line : "c:\program files\ipod\bin\ipodservice.exe"
ProcessID : 3712
ThreadCreationTime : 1-26-2007 4:32:26 AM
BasePriority : Normal
FileVersion : 7.0.2.16
ProductVersion : 7.0.2.16
ProductName : iTunes
CompanyName : Apple Computer, Inc.
FileDescription : iPodService Module
InternalName : iPodService
LegalCopyright : © 2003-2006 Apple Computer, Inc. All Rights Reserved.
OriginalFilename : iPodService.exe

#:37 [iexplore.exe]
ModuleName : C:\Program Files\Internet Explorer\iexplore.exe
Command Line : "C:\Program Files\Internet Explorer\iexplore.exe"
ProcessID : 2952
ThreadCreationTime : 1-26-2007 4:54:46 AM
BasePriority : Normal
FileVersion : 7.00.5730.11 (winmain(wmbla).061017-1135)
ProductVersion : 7.00.5730.11
ProductName : Windows® Internet Explorer
CompanyName : Microsoft Corporation
FileDescription : Internet Explorer
InternalName : iexplore
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : IEXPLORE.EXE

#:38 [ad-aware.exe]
ModuleName : C:\PROGRA~1\Lavasoft\AD-AWA~1\Ad-Aware.exe
Command Line : "C:\PROGRA~1\Lavasoft\AD-AWA~1\Ad-Aware.exe" +483832
ProcessID : 2588
ThreadCreationTime : 1-26-2007 5:37:42 AM
BasePriority : Idle
FileVersion : 6.2.0.236
ProductVersion : SE 106
ProductName : Lavasoft Ad-Aware SE
CompanyName : Lavasoft Sweden
FileDescription : Ad-Aware SE Core application
InternalName : Ad-Aware.exe
LegalCopyright : Copyright © Lavasoft AB Sweden
OriginalFilename : Ad-Aware.exe
Comments : All Rights Reserved

Memory scan result:
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
New critical objects: 0
Objects found so far: 0


Started registry scan
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»

Adware.Mediapipe Object Recognized!
Type : Regkey
Data :
TAC Rating : 4
Category : Adware
Comment :
Rootkey : HKEY_CLASSES_ROOT
Object : appid\{7911272a-a32a-404e-8a51-ee18b99b18c4}

Adware.Mediapipe Object Recognized!
Type : Regkey
Data :
TAC Rating : 4
Category : Adware
Comment :
Rootkey : HKEY_CLASSES_ROOT
Object : interface\{9a395c6c-e42e-4777-b8ef-fddeb705f3fb}

Adware.Mediapipe Object Recognized!
Type : Regkey
Data :
TAC Rating : 4
Category : Adware
Comment :
Rootkey : HKEY_CLASSES_ROOT
Object : typelib\{ccebbeb5-d011-41b5-9f92-01f88a38dc0d}

Adware.WeirWeb Object Recognized!
Type : Regkey
Data :
TAC Rating : 5
Category : Adware
Comment :
Rootkey : HKEY_CLASSES_ROOT
Object : appid\{ccebbeb5-d011-41b5-9f92-01f88a38dc0d}

Adware.WeirWeb Object Recognized!
Type : Regkey
Data :
TAC Rating : 5
Category : Adware
Comment :
Rootkey : HKEY_CLASSES_ROOT
Object : interface\{873209c1-1118-4246-be69-1b903862e061}

Adware.WeirWeb Object Recognized!
Type : Regkey
Data :
TAC Rating : 5
Category : Adware
Comment :
Rootkey : HKEY_CLASSES_ROOT
Object : typelib\{913422c5-c92b-4e4f-85ac-241fa700a971}

MalwareWipe Object Recognized!
Type : Regkey
Data :
TAC Rating : 3
Category : Misc
Comment :
Rootkey : HKEY_CLASSES_ROOT
Object : appid\malwarewipe.exe

MalwareWipe Object Recognized!
Type : Regkey
Data :
TAC Rating : 3
Category : Misc
Comment :
Rootkey : HKEY_CLASSES_ROOT
Object : clsid\{a5c70510-5a01-b2a5-cf84-d6dc13859967}

MalwareWipe Object Recognized!
Type : Regkey
Data :
TAC Rating : 3
Category : Misc
Comment :
Rootkey : HKEY_CLASSES_ROOT
Object : interface\{0b595e3d-27be-4da1-a278-ca4d904b5823}

MalwareWipe Object Recognized!
Type : Regkey
Data :
TAC Rating : 3
Category : Misc
Comment :
Rootkey : HKEY_CLASSES_ROOT
Object : interface\{1d1e9b3d-5a4c-4c70-a9b4-5a19e0c625dc}

MalwareWipe Object Recognized!
Type : Regkey
Data :
TAC Rating : 3
Category : Misc
Comment :
Rootkey : HKEY_CLASSES_ROOT
Object : interface\{2a34546c-c437-460a-88af-d4703a548ea9}

MalwareWipe Object Recognized!
Type : Regkey
Data :
TAC Rating : 3
Category : Misc
Comment :
Rootkey : HKEY_CLASSES_ROOT
Object : interface\{3d9fd47c-e0b5-4005-9ade-552980d3761f}

MalwareWipe Object Recognized!
Type : Regkey
Data :
TAC Rating : 3
Category : Misc
Comment :
Rootkey : HKEY_CLASSES_ROOT
Object : interface\{3e5b0894-fe91-4063-bb41-d885c7691581}

MalwareWipe Object Recognized!
Type : Regkey
Data :
TAC Rating : 3
Category : Misc
Comment :
Rootkey : HKEY_CLASSES_ROOT
Object : interface\{479b1aea-4414-4e43-8cbf-94bfc7c69b56}

MalwareWipe Object Recognized!
Type : Regkey
Data :
TAC Rating : 3
Category : Misc
Comment :
Rootkey : HKEY_CLASSES_ROOT
Object : interface\{4a2ecc12-46ba-4c52-9749-c0faf38d507b}

MalwareWipe Object Recognized!
Type : Regkey
Data :
TAC Rating : 3
Category : Misc
Comment :
Rootkey : HKEY_CLASSES_ROOT
Object : interface\{4d6079cb-fd9e-46af-a896-6e8582e52827}

MalwareWipe Object Recognized!
Type : Regkey
Data :
TAC Rating : 3
Category : Misc
Comment :
Rootkey : HKEY_CLASSES_ROOT
Object : interface\{511a9bb1-917a-414a-88fd-3128e37032a1}

MalwareWipe Object Recognized!
Type : Regkey
Data :
TAC Rating : 3
Category : Misc
Comment :
Rootkey : HKEY_CLASSES_ROOT
Object : interface\{8cbed98f-8ddd-4af0-a9ea-c75e10c937bc}

MalwareWipe Object Recognized!
Type : Regkey
Data :
TAC Rating : 3
Category : Misc
Comment :
Rootkey : HKEY_CLASSES_ROOT
Object : interface\{a44cab15-6b7e-406b-9d9b-b1c1c6ba8cdb}

MalwareWipe Object Recognized!
Type : Regkey
Data :
TAC Rating : 3
Category : Misc
Comment :
Rootkey : HKEY_CLASSES_ROOT
Object : interface\{a99ac77f-4de5-4aa2-810a-35fab5fc114b}

MalwareWipe Object Recognized!
Type : Regkey
Data :
TAC Rating : 3
Category : Misc
Comment :
Rootkey : HKEY_CLASSES_ROOT
Object : interface\{b74b2b6c-9b8d-47d9-872f-e83d475aaf34}

MalwareWipe Object Recognized!
Type : Regkey
Data :
TAC Rating : 3
Category : Misc
Comment :
Rootkey : HKEY_CLASSES_ROOT
Object : interface\{ce5ecf63-6065-4b92-8b7e-72b5042c2f25}

MalwareWipe Object Recognized!
Type : Regkey
Data :
TAC Rating : 3
Category : Misc
Comment :
Rootkey : HKEY_CLASSES_ROOT
Object : interface\{d4bfbb89-4bc5-4d13-8d3a-75edcc0cf50c}

MalwareWipe Object Recognized!
Type : Regkey
Data :
TAC Rating : 3
Category : Misc
Comment :
Rootkey : HKEY_CLASSES_ROOT
Object : interface\{e86d0281-fa5a-4e36-b993-84fd87da9df1}

MalwareWipe Object Recognized!
Type : Regkey
Data :
TAC Rating : 3
Category : Misc
Comment :
Rootkey : HKEY_CLASSES_ROOT
Object : typelib\{177e74d6-e1d1-4d15-9d36-85399ba00729}

SpyAxe Object Recognized!
Type : Regkey
Data :
TAC Rating : 4
Category : Misc
Comment :
Rootkey : HKEY_CLASSES_ROOT
Object : appid\{70f17c8c-1744-41b6-9d07-575db448dcc5}

SpywareQuake Object Recognized!
Type : Regkey
Data :
TAC Rating : 10
Category : Malware
Comment :
Rootkey : HKEY_CLASSES_ROOT
Object : clsid\{5b55c4e3-c179-ba0b-b4fd-f2db862d6202}

Win32.Trojandownloader.Zlob Object Recognized!
Type : Regkey
Data :
TAC Rating : 10
Category : Malware
Comment :
Rootkey : HKEY_CLASSES_ROOT
Object : vsenchancer.chl

Win32.Trojandownloader.Zlob Object Recognized!
Type : Regkey
Data :
TAC Rating : 10
Category : Malware
Comment :
Rootkey : HKEY_CLASSES_ROOT
Object : avzipenchancer.chl

VirusBlast Object Recognized!
Type : Regkey
Data :
TAC Rating : 3
Category : Malware
Comment :
Rootkey : HKEY_CLASSES_ROOT
Object : clsid\{9da04bbd-71bb-020c-436e-42fecbb98f05}

VirusBlast Object Recognized!
Type : Regkey
Data :
TAC Rating : 3
Category : Malware
Comment :
Rootkey : HKEY_CLASSES_ROOT
Object : interface\{1131081d-81ed-46f0-8b03-b728aeaffd12}

VirusBlast Object Recognized!
Type : Regkey
Data :
TAC Rating : 3
Category : Malware
Comment :
Rootkey : HKEY_CLASSES_ROOT
Object : interface\{214345b8-bb69-498d-a168-29f58f15d806}

VirusBlast Object Recognized!
Type : Regkey
Data :
TAC Rating : 3
Category : Malware
Comment :
Rootkey : HKEY_CLASSES_ROOT
Object : typelib\{80ed1eb2-55fb-4434-bd41-e1645a370158}

Zango Object Recognized!
Type : Regkey
Data :
TAC Rating : 4
Category : Adware
Comment :
Rootkey : HKEY_CLASSES_ROOT
Object : interface\{85e06077-c824-43d0-a8dc-5efb17bc348a}

ErrorGuard Object Recognized!
Type : Regkey
Data :
TAC Rating : 7
Category : Malware
Comment :
Rootkey : HKEY_USERS
Object : S-1-5-21-527237240-1957994488-725345543-1005\software\errorguard

Win32.Trojandownloader.Zlob Object Recognized!
Type : Regkey
Data :
TAC Rating : 10
Category : Malware
Comment :
Rootkey : HKEY_LOCAL_MACHINE
Object : software\microsoft\windows\currentversion\explorer \browser helper objects\{f7d40011-29bb-43eb-9c97-875ce89e9e36}

Registry Scan result:
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
New critical objects: 36
Objects found so far: 36


Started deep registry scan
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»

Deep registry scan result:
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
New critical objects: 0
Objects found so far: 36

Zango Object Recognized!
Type : RegValue
Data :
TAC Rating : 4
Category : Adware
Comment :
Rootkey : HKEY_USERS
Object : S-1-5-21-527237240-1957994488-725345543-1005\software\microsoft\internet explorer\toolbar\Webbrowser
Value : {5cbe2611-c31b-401f-89bc-4cbb25e853d7}

MRU List Object Recognized!
Location: : C:\Documents and Settings\Frankie\recent
Description : list of recently opened documents


MRU List Object Recognized!
Location: : software\microsoft\directdraw\mostrecentapplicatio n
Description : most recent application to use microsoft directdraw


MRU List Object Recognized!
Location: : S-1-5-21-527237240-1957994488-725345543-1005\software\microsoft\mediaplayer\medialibraryui
Description : last selected node in the microsoft windows media player media library


MRU List Object Recognized!
Location: : S-1-5-21-527237240-1957994488-725345543-1005\software\microsoft\mediaplayer\player\setting s
Description : last open directory used in jasc paint shop pro


MRU List Object Recognized!
Location: : S-1-5-21-527237240-1957994488-725345543-1005\software\microsoft\office\11.0\common\general
Description : list of recently used symbols in microsoft office


MRU List Object Recognized!
Location: : S-1-5-21-527237240-1957994488-725345543-1005\software\microsoft\office\11.0\common\open find\microsoft office word\settings\open\file name mru
Description : list of recent documents opened by microsoft word


MRU List Object Recognized!
Location: : software\musicmatch\musicmatch jukebox\4.0\mmradio
Description : information on the last station listened to using musicmatch radio


MRU List Object Recognized!
Location: : S-1-5-20\software\microsoft\windows media\wmsdk\general
Description : windows media sdk


MRU List Object Recognized!
Location: : S-1-5-21-527237240-1957994488-725345543-1005\software\microsoft\windows media\wmsdk\general
Description : windows media sdk



Started Tracking Cookie scan
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»


Tracking Cookie Object Recognized!
Type : IECache Entry
Data : frankie@mediaplex[2].txt
TAC Rating : 3
Category : Data Miner
Comment : Hits:2
Value : Cookie:frankie@mediaplex.com/
Expires : 6-21-2009 6:00:00 PM
LastSync : Hits:2
UseCount : 0
Hits : 2

Tracking Cookie Object Recognized!
Type : IECache Entry
Data : frankie@tribalfusion[1].txt
TAC Rating : 3
Category : Data Miner
Comment : Hits:11
Value : Cookie:frankie@tribalfusion.com/
Expires : 1-25-2008 11:51:54 PM
LastSync : Hits:11
UseCount : 0
Hits : 11

Tracking Cookie Object Recognized!
Type : IECache Entry
Data : frankie@atdmt[2].txt
TAC Rating : 3
Category : Data Miner
Comment : Hits:2
Value : Cookie:frankie@atdmt.com/
Expires : 1-24-2012 6:00:00 PM
LastSync : Hits:2
UseCount : 0
Hits : 2

Tracking cookie scan result:
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
New critical objects: 3
Objects found so far: 49



Deep scanning and examining files (C
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»

Tracking Cookie Object Recognized!
Type : IECache Entry
Data : frankie_2@adopt.euroclick[2].txt
TAC Rating : 3
Category : Data Miner
Comment :
Value : C:\Documents and Settings\Frankie_2\Cookies\frankie_2@adopt.eurocli ck[2].txt

Tracking Cookie Object Recognized!
Type : IECache Entry
Data : frankie_2@adrevolver[1].txt
TAC Rating : 3
Category : Data Miner
Comment :
Value : C:\Documents and Settings\Frankie_2\Cookies\frankie_2@adrevolver[1].txt

Tracking Cookie Object Recognized!
Type : IECache Entry
Data : frankie_2@ads.pointroll[1].txt
TAC Rating : 3
Category : Data Miner
Comment :
Value : C:\Documents and Settings\Frankie_2\Cookies\frankie_2@ads.pointroll[1].txt

Tracking Cookie Object Recognized!
Type : IECache Entry
Data : frankie_2@advertising[2].txt
TAC Rating : 3
Category : Data Miner
Comment :
Value : C:\Documents and Settings\Frankie_2\Cookies\frankie_2@advertising[2].txt

Tracking Cookie Object Recognized!
Type : IECache Entry
Data : frankie_2@atdmt[2].txt
TAC Rating : 3
Category : Data Miner
Comment :
Value : C:\Documents and Settings\Frankie_2\Cookies\frankie_2@atdmt[2].txt

Tracking Cookie Object Recognized!
Type : IECache Entry
Data : frankie_2@casalemedia[1].txt
TAC Rating : 3
Category : Data Miner
Comment :
Value : C:\Documents and Settings\Frankie_2\Cookies\frankie_2@casalemedia[1].txt

Tracking Cookie Object Recognized!
Type : IECache Entry
Data : frankie_2@cs.sexcounter[2].txt
TAC Rating : 3
Category : Data Miner
Comment :
Value : C:\Documents and Settings\Frankie_2\Cookies\frankie_2@cs.sexcounter[2].txt

Tracking Cookie Object Recognized!
Type : IECache Entry
Data : frankie_2@doubleclick[1].txt
TAC Rating : 3
Category : Data Miner
Comment :
Value : C:\Documents and Settings\Frankie_2\Cookies\frankie_2@doubleclick[1].txt

Tracking Cookie Object Recognized!
Type : IECache Entry
Data : frankie_2@fastclick[2].txt
TAC Rating : 3
Category : Data Miner
Comment :
Value : C:\Documents and Settings\Frankie_2\Cookies\frankie_2@fastclick[2].txt

Tracking Cookie Object Recognized!
Type : IECache Entry
Data : frankie_2@live365[1].txt
TAC Rating : 3
Category : Data Miner
Comment :
Value : C:\Documents and Settings\Frankie_2\Cookies\frankie_2@live365[1].txt

Tracking Cookie Object Recognized!
Type : IECache Entry
Data : frankie_2@media.adrevolver[2].txt
TAC Rating : 3
Category : Data Miner
Comment :
Value : C:\Documents and Settings\Frankie_2\Cookies\frankie_2@media.adrevol ver[2].txt

Tracking Cookie Object Recognized!
Type : IECache Entry
Data : frankie_2@mediaplex[2].txt
TAC Rating : 3
Category : Data Miner
Comment :
Value : C:\Documents and Settings\Frankie_2\Cookies\frankie_2@mediaplex[2].txt

Tracking Cookie Object Recognized!
Type : IECache Entry
Data : frankie_2@overture[1].txt
TAC Rating : 3
Category : Data Miner
Comment :
Value : C:\Documents and Settings\Frankie_2\Cookies\frankie_2@overture[1].txt

Tracking Cookie Object Recognized!
Type : IECache Entry
Data : frankie_2@realmedia[2].txt
TAC Rating : 3
Category : Data Miner
Comment :
Value : C:\Documents and Settings\Frankie_2\Cookies\frankie_2@realmedia[2].txt

Tracking Cookie Object Recognized!
Type : IECache Entry
Data : frankie_2@reduxads.valuead[2].txt
TAC Rating : 3
Category : Data Miner
Comment :
Value : C:\Documents and Settings\Frankie_2\Cookies\frankie_2@reduxads.valu ead[2].txt

Tracking Cookie Object Recognized!
Type : IECache Entry
Data : frankie_2@tradedoubler[1].txt
TAC Rating : 3
Category : Data Miner
Comment :
Value : C:\Documents and Settings\Frankie_2\Cookies\frankie_2@tradedoubler[1].txt

Tracking Cookie Object Recognized!
Type : IECache Entry
Data : frankie_2@trafficmp[1].txt
TAC Rating : 3
Category : Data Miner
Comment :
Value : C:\Documents and Settings\Frankie_2\Cookies\frankie_2@trafficmp[1].txt

Tracking Cookie Object Recognized!
Type : IECache Entry
Data : frankie_2@tribalfusion[2].txt
TAC Rating : 3
Category : Data Miner
Comment :
Value : C:\Documents and Settings\Frankie_2\Cookies\frankie_2@tribalfusion[2].txt

Tracking Cookie Object Recognized!
Type : IECache Entry
Data : frankie_2@zedo[1].txt
TAC Rating : 3
Category : Data Miner
Comment :
Value : C:\Documents and Settings\Frankie_2\Cookies\frankie_2@zedo[1].txt

Tracking Cookie Object Recognized!
Type : IECache Entry
Data : lisa@a.as-us.falkag[1].txt
TAC Rating : 3
Category : Data Miner
Comment :
Value : C:\Documents and Settings\Lisa\Cookies\lisa@a.as-us.falkag[1].txt

Tracking Cookie Object Recognized!
Type : IECache Entry
Data : lisa@adopt.euroclick[2].txt
TAC Rating : 3
Category : Data Miner
Comment :
Value : C:\Documents and Settings\Lisa\Cookies\lisa@adopt.euroclick[2].txt

Tracking Cookie Object Recognized!
Type : IECache Entry
Data : lisa@adrevolver[2].txt
TAC Rating : 3
Category : Data Miner
Comment :
Value : C:\Documents and Settings\Lisa\Cookies\lisa@adrevolver[2].txt

Tracking Cookie Object Recognized!
Type : IECache Entry
Data : lisa@ads.pointroll[2].txt
TAC Rating : 3
Category : Data Miner
Comment :
Value : C:\Documents and Settings\Lisa\Cookies\lisa@ads.pointroll[2].txt

Tracking Cookie Object Recognized!
Type : IECache Entry
Data : lisa@as-us.falkag[1].txt
TAC Rating : 3
Category : Data Miner
Comment :
Value : C:\Documents and Settings\Lisa\Cookies\lisa@as-us.falkag[1].txt

Tracking Cookie Object Recognized!
Type : IECache Entry
Data : lisa@atdmt[2].txt
TAC Rating : 3
Category : Data Miner
Comment :
Value : C:\Documents and Settings\Lisa\Cookies\lisa@atdmt[2].txt

Tracking Cookie Object Recognized!
Type : IECache Entry
Data : lisa@bravenet[2].txt
TAC Rating : 3
Category : Data Miner
Comment :
Value : C:\Documents and Settings\Lisa\Cookies\lisa@bravenet[2].txt

Tracking Cookie Object Recognized!
Type : IECache Entry
Data : lisa@casalemedia[2].txt
TAC Rating : 3
Category : Data Miner
Comment :
Value : C:\Documents and Settings\Lisa\Cookies\lisa@casalemedia[2].txt

Tracking Cookie Object Recognized!
Type : IECache Entry
Data : lisa@doubleclick[1].txt
TAC Rating : 3
Category : Data Miner
Comment :
Value : C:\Documents and Settings\Lisa\Cookies\lisa@doubleclick[1].txt

Tracking Cookie Object Recognized!
Type : IECache Entry
Data : lisa@edfinancial.122.2o7[1].txt
TAC Rating : 3
Category : Data Miner
Comment :
Value : C:\Documents and Settings\Lisa\Cookies\lisa@edfinancial.122.2o7[1].txt

Tracking Cookie Object Recognized!
Type : IECache Entry
Data : lisa@fastclick[1].txt
TAC Rating : 3
Category : Data Miner
Comment :
Value : C:\Documents and Settings\Lisa\Cookies\lisa@fastclick[1].txt

Tracking Cookie Object Recognized!
Type : IECache Entry
Data : lisa@hitbox[2].txt
TAC Rating : 3
Category : Data Miner
Comment :
Value : C:\Documents and Settings\Lisa\Cookies\lisa@hitbox[2].txt

Tracking Cookie Object Recognized!
Type : IECache Entry
Data : lisa@media.adrevolver[2].txt
TAC Rating : 3
Category : Data Miner
Comment :
Value : C:\Documents and Settings\Lisa\Cookies\lisa@media.adrevolver[2].txt

Tracking Cookie Object Recognized!
Type : IECache Entry
Data : lisa@mediaplex[1].txt
TAC Rating : 3
Category : Data Miner
Comment :
Value : C:\Documents and Settings\Lisa\Cookies\lisa@mediaplex[1].txt

Tracking Cookie Object Recognized!
Type : IECache Entry
Data : lisa@realmedia[2].txt
TAC Rating : 3
Category : Data Miner
Comment :
Value : C:\Documents and Settings\Lisa\Cookies\lisa@realmedia[2].txt

Tracking Cookie Object Recognized!
Type : IECache Entry
Data : lisa@revsci[1].txt
TAC Rating : 3
Category : Data Miner
Comment :
Value : C:\Documents and Settings\Lisa\Cookies\lisa@revsci[1].txt

Tracking Cookie Object Recognized!
Type : IECache Entry
Data : lisa@statcounter[2].txt
TAC Rating : 3
Category : Data Miner
Comment :
Value : C:\Documents and Settings\Lisa\Cookies\lisa@statcounter[2].txt

Tracking Cookie Object Recognized!
Type : IECache Entry
Data : lisa@tradedoubler[2].txt
TAC Rating : 3
Category : Data Miner
Comment :
Value : C:\Documents and Settings\Lisa\Cookies\lisa@tradedoubler[2].txt

Tracking Cookie Object Recognized!
Type : IECache Entry
Data : lisa@tribalfusion[1].txt
TAC Rating : 3
Category : Data Miner
Comment :
Value : C:\Documents and Settings\Lisa\Cookies\lisa@tribalfusion[1].txt

Disk Scan Result for C:\
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
New critical objects: 0
Objects found so far: 87


Scanning Hosts file......
Hosts file location:"C:\WINDOWS\system32\drivers\etc\hosts".
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»» »»»»»»»»»»»»»»»»»»»»»»»»»»

Hosts file scan result:
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
1 entries scanned.
New critical objects:0
Objects found so far: 87




Performing conditional scans...
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»

Adware.Mediapipe Object Recognized!
Type : Regkey
Data :
TAC Rating : 4
Category : Adware
Comment :
Rootkey : HKEY_CURRENT_USER
Object : software\microsoft\windows\currentversion\uninstal l\notify

Adware.Mediapipe Object Recognized!
Type : RegValue
Data :
TAC Rating : 4
Category : Adware
Comment :
Rootkey : HKEY_CURRENT_USER
Object : software\microsoft\windows\currentversion\uninstal l\notify
Value : UninstallString

Adware.Mediapipe Object Recognized!
Type : RegValue
Data :
TAC Rating : 4
Category : Adware
Comment :
Rootkey : HKEY_CURRENT_USER
Object : software\microsoft\windows\currentversion\uninstal l\notify
Value : Publisher

Adware.Mediapipe Object Recognized!
Type : RegValue
Data :
TAC Rating : 4
Category : Adware
Comment :
Rootkey : HKEY_CURRENT_USER
Object : software\microsoft\windows\currentversion\uninstal l\notify
Value : DisplayVersion

Adware.Mediapipe Object Recognized!
Type : RegValue
Data :
TAC Rating : 4
Category : Adware
Comment :
Rootkey : HKEY_CURRENT_USER
Object : software\microsoft\windows\currentversion\uninstal l\notify
Value : HelpLink

MalwareWipe Object Recognized!
Type : Folder
TAC Rating : 3
Category : Misc
Comment : MalwareWipe
Object : C:\Program Files\MalwareWipe

MalwareWipe Object Recognized!
Type : Folder
TAC Rating : 3
Category : Misc
Comment : MalwareWipe
Object : C:\Program Files\Malware-Wipe

Win32.Trojandownloader.Zlob Object Recognized!
Type : Regkey
Data :
TAC Rating : 10
Category : Malware
Comment :
Rootkey : HKEY_CLASSES_ROOT
Object : vsenchancer.chl\clsid

Win32.Trojandownloader.Zlob Object Recognized!
Type : Regkey
Data :
TAC Rating : 10
Category : Malware
Comment :
Rootkey : HKEY_CLASSES_ROOT
Object : avzipenchancer.chl\clsid

Win32.Trojandownloader.Zlob Object Recognized!
Type : Regkey
Data :
TAC Rating : 10
Category : Malware
Comment :
Rootkey : HKEY_CLASSES_ROOT
Object : videoaxobject.chl

Win32.Trojandownloader.Zlob Object Recognized!
Type : Regkey
Data :
TAC Rating : 10
Category : Malware
Comment :
Rootkey : HKEY_CURRENT_USER
Object : software\internet security

Win32.Trojandownloader.Zlob Object Recognized!
Type : RegValue
Data :
TAC Rating : 10
Category : Malware
Comment :
Rootkey : HKEY_CURRENT_USER
Object : software\internet security
Value : Path

Win32.Trojandownloader.Zlob Object Recognized!
Type : RegValue
Data :
TAC Rating : 10
Category : Malware
Comment :
Rootkey : HKEY_CURRENT_USER
Object : software\internet security
Value : Removable

Win32.Trojandownloader.Zlob Object Recognized!
Type : RegValue
Data :
TAC Rating : 10
Category : Malware
Comment :
Rootkey : HKEY_LOCAL_MACHINE
Object : software\microsoft\windows\currentversion\policies \explorer\run
Value : dcomcfg.exe

Win32.Trojandownloader.Zlob Object Recognized!
Type : Folder
TAC Rating : 10
Category : Malware
Comment : Win32.Trojandownloader.Zlob
Object : C:\Program Files\ZipCodec

Zango Object Recognized!
Type : Regkey
Data :
TAC Rating : 4
Category : Adware
Comment :
Rootkey : HKEY_CURRENT_USER
Object : software\zangotoolbar

Conditional scan result:
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
New critical objects: 16
Objects found so far: 103

12:11:57 AM Scan Complete

Summary Of This Scan
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
Total scanning time:00:19:43.390
Objects scanned:271241
Objects identified:94
Objects ignored:0
New critical objects:94

Reanalyzing scan result
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
The following objects have been removed from the result list:
C:\Program Files\MalwareWipe
C:\Program Files\Malware-Wipe
C:\Program Files\ZipCodec
Digg this Post!Add Post to del.icio.usBookmark Post in TechnoratiFurl this Post!
Reply With Quote
  #8 (permalink)  
Old 27-01-2007, 07:32 PM
VopThis's Avatar
Senior Member (Canada)
  
Join Date: Nov 2005
Posts: 3,439
VopThis is a D-A-L Rockstar!VopThis is a D-A-L Rockstar!VopThis is a D-A-L Rockstar!VopThis is a D-A-L Rockstar!VopThis is a D-A-L Rockstar!VopThis is a D-A-L Rockstar!VopThis is a D-A-L Rockstar!VopThis is a D-A-L Rockstar!VopThis is a D-A-L Rockstar!VopThis is a D-A-L Rockstar!VopThis is a D-A-L Rockstar!
Re: have a trojan!!help!
Your latest post did not include a needed HijackThis LOG. It is the last step (of three scanning tools) in the 'READ FIRST Procedures'.

Does Ad-aware now run clean (that was the included LOG)? Did you also run SpyBot? Your issues may appear to be resolved to you but there is likely significant remaining leftover issues to be dealt with.

A HijackThis LOG needs to be the logical step.
__________________
Vincent P

MALWARE: READ FIRST Procedures:
|_ SpyBot V1.5 _|_ HijackThis LOG __V2.0.2 _|

__
ASAP: promoting a high standard and quality of security support no matter where you seek help.

Quote:
SAFER SURFING TOOLS (IE/FF **FREE** browser addons):
Linkscanner + WOT (Web of Trust) + SiteAdvisor (suggest at least two but not necessarily all)
Quote:
Tell me and I forget; show me and I remember; involve me and I understand.
There are no foolish questions, the only thing foolish is not asking if you're unsure of something.
Never ASSUME any detail because it can make an ASS out of U and ME... (ASS/U/ME ).
Digg this Post!Add Post to del.icio.usBookmark Post in TechnoratiFurl this Post!
Reply With Quote
  #9 (permalink)  
Old 27-01-2007, 07:45 PM
Troubled Kid's Avatar
Elite Member
Contributor
  
Join Date: Jan 2006
Posts: 257
Troubled Kid Is a valued member of D-A-LTroubled Kid Is a valued member of D-A-L
Re: have a trojan!!help!
ok ill retry that agian
Digg this Post!Add Post to del.icio.usBookmark Post in TechnoratiFurl this Post!
Reply With Quote
  #10 (permalink)  
Old 27-01-2007, 07:46 PM
Troubled Kid's Avatar
Elite Member
Contributor
  
Join Date: Jan 2006
Posts: 257
Troubled Kid Is a valued member of D-A-LTroubled Kid Is a valued member of D-A-L
Re: have a trojan!!help!
also i had tryed to do windows updates and it had 3 errors that will not be updated.Update for Office 2003 (KB907417)
Office 2003 Service Pack 2
Update for Outlook 2003 Junk Email Filter (KB925534)

theses were the only ones that could not update
Digg this Post!Add Post to del.icio.usBookmark Post in TechnoratiFurl this Post!
Reply With Quote
Reply
Page 1 of 7 1 234567

« Previous Thread | Next Thread »

Thread Tools

Forum Jump

Similar Threads
Thread Thread Starter Forum Replies Last Post
trojan- i need help please missyd Spyware, Adware, Viruses and HijackThis Logs 5 18-02-2009 05:45 PM
Trojan.Agent.BI & Trojan.Downloaders.Agent.BQ Etc. ThaArtist Spyware, Adware, Viruses and HijackThis Logs 4 26-11-2005 03:53 AM
trojan ruffneck487 Windows XP Help 3 20-05-2005 12:24 AM
Please help, I think I have a trojan headparrot Spyware, Adware, Viruses and HijackThis Logs 6 21-09-2004 10:22 PM


All times are GMT +1. The time now is 09:22 PM.
Member Login
Remember me ?
Forgot password?
Ads

Want to Advertise? Click Here
Help Categories
Desktop / Server Apps
Drivers
Firewalls and Networks
Games
General Internet Issues
Hardware
Linux
MAC OS
Modding / Overclocking
Search Engines
Spyware and Security
Web Development
Windows 2000
Windows 7
Windows 98
Windows ME
Windows Vista
Windows XP

Computer Repair Companies
Bottom Corner Bottom Nav