Welcome to MalwareRemoval.com,
What if we told you that you could get malware removal help from experts, and that it was 100% free? MalwareRemoval.com provides free support for people with infected computers. Our help, and the tools we use are always 100% free. No hidden catch. We simply enjoy helping others. You enjoy a clean, safe computer.

Malware Removal Instructions

Help please!

MalwareRemoval.com provides free support for people with infected computers. Using plain language that anyone can understand, our community of volunteer experts will walk you through each step.

Re: Help please!

Unread postby ndmmxiaomayi » November 12th, 2007, 2:30 am

Heh, weird. Perhaps my reply got cut off.

Could you please post the AVG Antispyware scan report?

Thanks.
ndmmxiaomayi
MRU Emeritus
MRU Emeritus
 
Posts: 9708
Joined: July 17th, 2006, 9:22 am
Advertisement
Register to Remove

Re: Help please!

Unread postby jhayes » November 12th, 2007, 2:52 am

sure thing :o
jhayes
Regular Member
 
Posts: 51
Joined: November 10th, 2007, 1:24 am
Location: USA

Re: Help please!

Unread postby jhayes » November 12th, 2007, 2:56 am

okay here is the AVG Antispyware scan report:



---------------------------------------------------------
AVG Anti-Spyware - Scan Report
---------------------------------------------------------

+ Created at: 1:03:21 AM 11/12/2007

+ Scan result:



:mozilla.305:C:\Documents and Settings\Jon Hayes\Application Data\Mozilla\Firefox\Profiles\ujto2985.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.306:C:\Documents and Settings\Jon Hayes\Application Data\Mozilla\Firefox\Profiles\ujto2985.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.307:C:\Documents and Settings\Jon Hayes\Application Data\Mozilla\Firefox\Profiles\ujto2985.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.308:C:\Documents and Settings\Jon Hayes\Application Data\Mozilla\Firefox\Profiles\ujto2985.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.309:C:\Documents and Settings\Jon Hayes\Application Data\Mozilla\Firefox\Profiles\ujto2985.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.310:C:\Documents and Settings\Jon Hayes\Application Data\Mozilla\Firefox\Profiles\ujto2985.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.311:C:\Documents and Settings\Jon Hayes\Application Data\Mozilla\Firefox\Profiles\ujto2985.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.312:C:\Documents and Settings\Jon Hayes\Application Data\Mozilla\Firefox\Profiles\ujto2985.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.6:C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\oiu1te3i.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.7:C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\oiu1te3i.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.19:C:\Documents and Settings\Jon Hayes\Application Data\Mozilla\Firefox\Profiles\ujto2985.default\cookies.txt -> TrackingCookie.Adbrite : Cleaned.
:mozilla.20:C:\Documents and Settings\Jon Hayes\Application Data\Mozilla\Firefox\Profiles\ujto2985.default\cookies.txt -> TrackingCookie.Adbrite : Cleaned.
:mozilla.21:C:\Documents and Settings\Jon Hayes\Application Data\Mozilla\Firefox\Profiles\ujto2985.default\cookies.txt -> TrackingCookie.Adbrite : Cleaned.
:mozilla.22:C:\Documents and Settings\Jon Hayes\Application Data\Mozilla\Firefox\Profiles\ujto2985.default\cookies.txt -> TrackingCookie.Adbrite : Cleaned.
:mozilla.334:C:\Documents and Settings\Jon Hayes\Application Data\Mozilla\Firefox\Profiles\ujto2985.default\cookies.txt -> TrackingCookie.Adbrite : Cleaned.
:mozilla.335:C:\Documents and Settings\Jon Hayes\Application Data\Mozilla\Firefox\Profiles\ujto2985.default\cookies.txt -> TrackingCookie.Adbrite : Cleaned.
:mozilla.336:C:\Documents and Settings\Jon Hayes\Application Data\Mozilla\Firefox\Profiles\ujto2985.default\cookies.txt -> TrackingCookie.Adbrite : Cleaned.
:mozilla.181:C:\Documents and Settings\Jon Hayes\Application Data\Mozilla\Firefox\Profiles\ujto2985.default\cookies.txt -> TrackingCookie.Addynamix : Cleaned.
:mozilla.143:C:\Documents and Settings\Jon Hayes\Application Data\Mozilla\Firefox\Profiles\ujto2985.default\cookies.txt -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.144:C:\Documents and Settings\Jon Hayes\Application Data\Mozilla\Firefox\Profiles\ujto2985.default\cookies.txt -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.145:C:\Documents and Settings\Jon Hayes\Application Data\Mozilla\Firefox\Profiles\ujto2985.default\cookies.txt -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.146:C:\Documents and Settings\Jon Hayes\Application Data\Mozilla\Firefox\Profiles\ujto2985.default\cookies.txt -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.147:C:\Documents and Settings\Jon Hayes\Application Data\Mozilla\Firefox\Profiles\ujto2985.default\cookies.txt -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.148:C:\Documents and Settings\Jon Hayes\Application Data\Mozilla\Firefox\Profiles\ujto2985.default\cookies.txt -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.149:C:\Documents and Settings\Jon Hayes\Application Data\Mozilla\Firefox\Profiles\ujto2985.default\cookies.txt -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.93:C:\Documents and Settings\Jon Hayes\Application Data\Mozilla\Firefox\Profiles\ujto2985.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.94:C:\Documents and Settings\Jon Hayes\Application Data\Mozilla\Firefox\Profiles\ujto2985.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.95:C:\Documents and Settings\Jon Hayes\Application Data\Mozilla\Firefox\Profiles\ujto2985.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.96:C:\Documents and Settings\Jon Hayes\Application Data\Mozilla\Firefox\Profiles\ujto2985.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.97:C:\Documents and Settings\Jon Hayes\Application Data\Mozilla\Firefox\Profiles\ujto2985.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.37:C:\Documents and Settings\Jon Hayes\Application Data\Mozilla\Firefox\Profiles\ujto2985.default\cookies.txt -> TrackingCookie.Atdmt : Cleaned.
:mozilla.215:C:\Documents and Settings\Jon Hayes\Application Data\Mozilla\Firefox\Profiles\ujto2985.default\cookies.txt -> TrackingCookie.Bluestreak : Cleaned.
:mozilla.313:C:\Documents and Settings\Jon Hayes\Application Data\Mozilla\Firefox\Profiles\ujto2985.default\cookies.txt -> TrackingCookie.Bridgetrack : Cleaned.
:mozilla.314:C:\Documents and Settings\Jon Hayes\Application Data\Mozilla\Firefox\Profiles\ujto2985.default\cookies.txt -> TrackingCookie.Bridgetrack : Cleaned.
:mozilla.315:C:\Documents and Settings\Jon Hayes\Application Data\Mozilla\Firefox\Profiles\ujto2985.default\cookies.txt -> TrackingCookie.Bridgetrack : Cleaned.
:mozilla.109:C:\Documents and Settings\Jon Hayes\Application Data\Mozilla\Firefox\Profiles\ujto2985.default\cookies.txt -> TrackingCookie.Burstbeacon : Cleaned.
:mozilla.115:C:\Documents and Settings\Jon Hayes\Application Data\Mozilla\Firefox\Profiles\ujto2985.default\cookies.txt -> TrackingCookie.Burstnet : Cleaned.
:mozilla.116:C:\Documents and Settings\Jon Hayes\Application Data\Mozilla\Firefox\Profiles\ujto2985.default\cookies.txt -> TrackingCookie.Burstnet : Cleaned.
:mozilla.117:C:\Documents and Settings\Jon Hayes\Application Data\Mozilla\Firefox\Profiles\ujto2985.default\cookies.txt -> TrackingCookie.Burstnet : Cleaned.
:mozilla.118:C:\Documents and Settings\Jon Hayes\Application Data\Mozilla\Firefox\Profiles\ujto2985.default\cookies.txt -> TrackingCookie.Burstnet : Cleaned.
:mozilla.62:C:\Documents and Settings\Jon Hayes.JON\Application Data\Mozilla\Firefox\Profiles\dwt7y6vh.default\cookies.txt -> TrackingCookie.Burstnet : Cleaned.
:mozilla.258:C:\Documents and Settings\Jon Hayes\Application Data\Mozilla\Firefox\Profiles\ujto2985.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned.
:mozilla.259:C:\Documents and Settings\Jon Hayes\Application Data\Mozilla\Firefox\Profiles\ujto2985.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned.
:mozilla.260:C:\Documents and Settings\Jon Hayes\Application Data\Mozilla\Firefox\Profiles\ujto2985.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned.
:mozilla.261:C:\Documents and Settings\Jon Hayes\Application Data\Mozilla\Firefox\Profiles\ujto2985.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned.
:mozilla.262:C:\Documents and Settings\Jon Hayes\Application Data\Mozilla\Firefox\Profiles\ujto2985.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned.
:mozilla.263:C:\Documents and Settings\Jon Hayes\Application Data\Mozilla\Firefox\Profiles\ujto2985.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned.
:mozilla.264:C:\Documents and Settings\Jon Hayes\Application Data\Mozilla\Firefox\Profiles\ujto2985.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned.
:mozilla.332:C:\Documents and Settings\Jon Hayes\Application Data\Mozilla\Firefox\Profiles\ujto2985.default\cookies.txt -> TrackingCookie.Clickzs : Cleaned.
:mozilla.333:C:\Documents and Settings\Jon Hayes\Application Data\Mozilla\Firefox\Profiles\ujto2985.default\cookies.txt -> TrackingCookie.Clickzs : Cleaned.
:mozilla.388:C:\Documents and Settings\Jon Hayes\Application Data\Mozilla\Firefox\Profiles\ujto2985.default\cookies.txt -> TrackingCookie.Coremetrics : Cleaned.
:mozilla.389:C:\Documents and Settings\Jon Hayes\Application Data\Mozilla\Firefox\Profiles\ujto2985.default\cookies.txt -> TrackingCookie.Coremetrics : Cleaned.
:mozilla.98:C:\Documents and Settings\Jon Hayes\Application Data\Mozilla\Firefox\Profiles\ujto2985.default\cookies.txt -> TrackingCookie.Doubleclick : Cleaned.
:mozilla.205:C:\Documents and Settings\Jon Hayes\Application Data\Mozilla\Firefox\Profiles\ujto2985.default\cookies.txt -> TrackingCookie.Euroclick : Cleaned.
:mozilla.206:C:\Documents and Settings\Jon Hayes\Application Data\Mozilla\Firefox\Profiles\ujto2985.default\cookies.txt -> TrackingCookie.Euroclick : Cleaned.
:mozilla.207:C:\Documents and Settings\Jon Hayes\Application Data\Mozilla\Firefox\Profiles\ujto2985.default\cookies.txt -> TrackingCookie.Euroclick : Cleaned.
:mozilla.208:C:\Documents and Settings\Jon Hayes\Application Data\Mozilla\Firefox\Profiles\ujto2985.default\cookies.txt -> TrackingCookie.Euroclick : Cleaned.
:mozilla.209:C:\Documents and Settings\Jon Hayes\Application Data\Mozilla\Firefox\Profiles\ujto2985.default\cookies.txt -> TrackingCookie.Euroclick : Cleaned.
:mozilla.120:C:\Documents and Settings\Jon Hayes\Application Data\Mozilla\Firefox\Profiles\ujto2985.default\cookies.txt -> TrackingCookie.Fastclick : Cleaned.
:mozilla.121:C:\Documents and Settings\Jon Hayes\Application Data\Mozilla\Firefox\Profiles\ujto2985.default\cookies.txt -> TrackingCookie.Fastclick : Cleaned.
:mozilla.122:C:\Documents and Settings\Jon Hayes\Application Data\Mozilla\Firefox\Profiles\ujto2985.default\cookies.txt -> TrackingCookie.Fastclick : Cleaned.
:mozilla.123:C:\Documents and Settings\Jon Hayes\Application Data\Mozilla\Firefox\Profiles\ujto2985.default\cookies.txt -> TrackingCookie.Fastclick : Cleaned.
:mozilla.124:C:\Documents and Settings\Jon Hayes\Application Data\Mozilla\Firefox\Profiles\ujto2985.default\cookies.txt -> TrackingCookie.Fastclick : Cleaned.
:mozilla.125:C:\Documents and Settings\Jon Hayes\Application Data\Mozilla\Firefox\Profiles\ujto2985.default\cookies.txt -> TrackingCookie.Fastclick : Cleaned.
:mozilla.126:C:\Documents and Settings\Jon Hayes\Application Data\Mozilla\Firefox\Profiles\ujto2985.default\cookies.txt -> TrackingCookie.Fastclick : Cleaned.
:mozilla.357:C:\Documents and Settings\Jon Hayes\Application Data\Mozilla\Firefox\Profiles\ujto2985.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned.
:mozilla.358:C:\Documents and Settings\Jon Hayes\Application Data\Mozilla\Firefox\Profiles\ujto2985.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned.
:mozilla.359:C:\Documents and Settings\Jon Hayes\Application Data\Mozilla\Firefox\Profiles\ujto2985.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned.
:mozilla.364:C:\Documents and Settings\Jon Hayes\Application Data\Mozilla\Firefox\Profiles\ujto2985.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned.
:mozilla.366:C:\Documents and Settings\Jon Hayes\Application Data\Mozilla\Firefox\Profiles\ujto2985.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned.
:mozilla.349:C:\Documents and Settings\Jon Hayes\Application Data\Mozilla\Firefox\Profiles\ujto2985.default\cookies.txt -> TrackingCookie.Liveperson : Cleaned.
:mozilla.350:C:\Documents and Settings\Jon Hayes\Application Data\Mozilla\Firefox\Profiles\ujto2985.default\cookies.txt -> TrackingCookie.Liveperson : Cleaned.
:mozilla.159:C:\Documents and Settings\Jon Hayes\Application Data\Mozilla\Firefox\Profiles\ujto2985.default\cookies.txt -> TrackingCookie.Mediaplex : Cleaned.
:mozilla.160:C:\Documents and Settings\Jon Hayes\Application Data\Mozilla\Firefox\Profiles\ujto2985.default\cookies.txt -> TrackingCookie.Mediaplex : Cleaned.
:mozilla.27:C:\Documents and Settings\Jon Hayes.JON\Application Data\Mozilla\Firefox\Profiles\dwt7y6vh.default\cookies.txt -> TrackingCookie.Netflame : Cleaned.
:mozilla.429:C:\Documents and Settings\Jon Hayes\Application Data\Mozilla\Firefox\Profiles\ujto2985.default\cookies.txt -> TrackingCookie.Overture : Cleaned.
:mozilla.466:C:\Documents and Settings\Jon Hayes\Application Data\Mozilla\Firefox\Profiles\ujto2985.default\cookies.txt -> TrackingCookie.Overture : Cleaned.
:mozilla.190:C:\Documents and Settings\Jon Hayes\Application Data\Mozilla\Firefox\Profiles\ujto2985.default\cookies.txt -> TrackingCookie.Pointroll : Cleaned.
:mozilla.191:C:\Documents and Settings\Jon Hayes\Application Data\Mozilla\Firefox\Profiles\ujto2985.default\cookies.txt -> TrackingCookie.Pointroll : Cleaned.
:mozilla.192:C:\Documents and Settings\Jon Hayes\Application Data\Mozilla\Firefox\Profiles\ujto2985.default\cookies.txt -> TrackingCookie.Pointroll : Cleaned.
:mozilla.193:C:\Documents and Settings\Jon Hayes\Application Data\Mozilla\Firefox\Profiles\ujto2985.default\cookies.txt -> TrackingCookie.Pointroll : Cleaned.
:mozilla.194:C:\Documents and Settings\Jon Hayes\Application Data\Mozilla\Firefox\Profiles\ujto2985.default\cookies.txt -> TrackingCookie.Pointroll : Cleaned.
:mozilla.195:C:\Documents and Settings\Jon Hayes\Application Data\Mozilla\Firefox\Profiles\ujto2985.default\cookies.txt -> TrackingCookie.Pointroll : Cleaned.
:mozilla.196:C:\Documents and Settings\Jon Hayes\Application Data\Mozilla\Firefox\Profiles\ujto2985.default\cookies.txt -> TrackingCookie.Pointroll : Cleaned.
:mozilla.197:C:\Documents and Settings\Jon Hayes\Application Data\Mozilla\Firefox\Profiles\ujto2985.default\cookies.txt -> TrackingCookie.Pointroll : Cleaned.
:mozilla.198:C:\Documents and Settings\Jon Hayes\Application Data\Mozilla\Firefox\Profiles\ujto2985.default\cookies.txt -> TrackingCookie.Pointroll : Cleaned.
:mozilla.210:C:\Documents and Settings\Jon Hayes\Application Data\Mozilla\Firefox\Profiles\ujto2985.default\cookies.txt -> TrackingCookie.Questionmarket : Cleaned.
:mozilla.211:C:\Documents and Settings\Jon Hayes\Application Data\Mozilla\Firefox\Profiles\ujto2985.default\cookies.txt -> TrackingCookie.Questionmarket : Cleaned.
:mozilla.65:C:\Documents and Settings\Jon Hayes\Application Data\Mozilla\Firefox\Profiles\ujto2985.default\cookies.txt -> TrackingCookie.Realmedia : Cleaned.
:mozilla.66:C:\Documents and Settings\Jon Hayes\Application Data\Mozilla\Firefox\Profiles\ujto2985.default\cookies.txt -> TrackingCookie.Realmedia : Cleaned.
:mozilla.67:C:\Documents and Settings\Jon Hayes\Application Data\Mozilla\Firefox\Profiles\ujto2985.default\cookies.txt -> TrackingCookie.Realmedia : Cleaned.
:mozilla.68:C:\Documents and Settings\Jon Hayes\Application Data\Mozilla\Firefox\Profiles\ujto2985.default\cookies.txt -> TrackingCookie.Realmedia : Cleaned.
:mozilla.69:C:\Documents and Settings\Jon Hayes\Application Data\Mozilla\Firefox\Profiles\ujto2985.default\cookies.txt -> TrackingCookie.Realmedia : Cleaned.
:mozilla.70:C:\Documents and Settings\Jon Hayes\Application Data\Mozilla\Firefox\Profiles\ujto2985.default\cookies.txt -> TrackingCookie.Realmedia : Cleaned.
:mozilla.71:C:\Documents and Settings\Jon Hayes\Application Data\Mozilla\Firefox\Profiles\ujto2985.default\cookies.txt -> TrackingCookie.Realmedia : Cleaned.
:mozilla.72:C:\Documents and Settings\Jon Hayes\Application Data\Mozilla\Firefox\Profiles\ujto2985.default\cookies.txt -> TrackingCookie.Realmedia : Cleaned.
:mozilla.225:C:\Documents and Settings\Jon Hayes\Application Data\Mozilla\Firefox\Profiles\ujto2985.default\cookies.txt -> TrackingCookie.Reliablestats : Cleaned.
:mozilla.230:C:\Documents and Settings\Jon Hayes\Application Data\Mozilla\Firefox\Profiles\ujto2985.default\cookies.txt -> TrackingCookie.Reliablestats : Cleaned.
:mozilla.231:C:\Documents and Settings\Jon Hayes\Application Data\Mozilla\Firefox\Profiles\ujto2985.default\cookies.txt -> TrackingCookie.Reliablestats : Cleaned.
:mozilla.232:C:\Documents and Settings\Jon Hayes\Application Data\Mozilla\Firefox\Profiles\ujto2985.default\cookies.txt -> TrackingCookie.Reliablestats : Cleaned.
:mozilla.234:C:\Documents and Settings\Jon Hayes\Application Data\Mozilla\Firefox\Profiles\ujto2985.default\cookies.txt -> TrackingCookie.Reliablestats : Cleaned.
:mozilla.216:C:\Documents and Settings\Jon Hayes\Application Data\Mozilla\Firefox\Profiles\ujto2985.default\cookies.txt -> TrackingCookie.Revsci : Cleaned.
:mozilla.217:C:\Documents and Settings\Jon Hayes\Application Data\Mozilla\Firefox\Profiles\ujto2985.default\cookies.txt -> TrackingCookie.Revsci : Cleaned.
:mozilla.218:C:\Documents and Settings\Jon Hayes\Application Data\Mozilla\Firefox\Profiles\ujto2985.default\cookies.txt -> TrackingCookie.Revsci : Cleaned.
:mozilla.219:C:\Documents and Settings\Jon Hayes\Application Data\Mozilla\Firefox\Profiles\ujto2985.default\cookies.txt -> TrackingCookie.Revsci : Cleaned.
:mozilla.220:C:\Documents and Settings\Jon Hayes\Application Data\Mozilla\Firefox\Profiles\ujto2985.default\cookies.txt -> TrackingCookie.Revsci : Cleaned.
:mozilla.221:C:\Documents and Settings\Jon Hayes\Application Data\Mozilla\Firefox\Profiles\ujto2985.default\cookies.txt -> TrackingCookie.Revsci : Cleaned.
:mozilla.222:C:\Documents and Settings\Jon Hayes\Application Data\Mozilla\Firefox\Profiles\ujto2985.default\cookies.txt -> TrackingCookie.Revsci : Cleaned.
:mozilla.223:C:\Documents and Settings\Jon Hayes\Application Data\Mozilla\Firefox\Profiles\ujto2985.default\cookies.txt -> TrackingCookie.Revsci : Cleaned.
:mozilla.372:C:\Documents and Settings\Jon Hayes\Application Data\Mozilla\Firefox\Profiles\ujto2985.default\cookies.txt -> TrackingCookie.Ru4 : Cleaned.
:mozilla.375:C:\Documents and Settings\Jon Hayes\Application Data\Mozilla\Firefox\Profiles\ujto2985.default\cookies.txt -> TrackingCookie.Ru4 : Cleaned.
:mozilla.376:C:\Documents and Settings\Jon Hayes\Application Data\Mozilla\Firefox\Profiles\ujto2985.default\cookies.txt -> TrackingCookie.Ru4 : Cleaned.
:mozilla.377:C:\Documents and Settings\Jon Hayes\Application Data\Mozilla\Firefox\Profiles\ujto2985.default\cookies.txt -> TrackingCookie.Ru4 : Cleaned.
:mozilla.410:C:\Documents and Settings\Jon Hayes\Application Data\Mozilla\Firefox\Profiles\ujto2985.default\cookies.txt -> TrackingCookie.Serving-sys : Cleaned.
:mozilla.411:C:\Documents and Settings\Jon Hayes\Application Data\Mozilla\Firefox\Profiles\ujto2985.default\cookies.txt -> TrackingCookie.Serving-sys : Cleaned.
:mozilla.412:C:\Documents and Settings\Jon Hayes\Application Data\Mozilla\Firefox\Profiles\ujto2985.default\cookies.txt -> TrackingCookie.Serving-sys : Cleaned.
:mozilla.413:C:\Documents and Settings\Jon Hayes\Application Data\Mozilla\Firefox\Profiles\ujto2985.default\cookies.txt -> TrackingCookie.Serving-sys : Cleaned.
:mozilla.414:C:\Documents and Settings\Jon Hayes\Application Data\Mozilla\Firefox\Profiles\ujto2985.default\cookies.txt -> TrackingCookie.Serving-sys : Cleaned.
:mozilla.415:C:\Documents and Settings\Jon Hayes\Application Data\Mozilla\Firefox\Profiles\ujto2985.default\cookies.txt -> TrackingCookie.Serving-sys : Cleaned.
:mozilla.441:C:\Documents and Settings\Jon Hayes\Application Data\Mozilla\Firefox\Profiles\ujto2985.default\cookies.txt -> TrackingCookie.Spylog : Cleaned.
:mozilla.484:C:\Documents and Settings\Jon Hayes\Application Data\Mozilla\Firefox\Profiles\ujto2985.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
:mozilla.485:C:\Documents and Settings\Jon Hayes\Application Data\Mozilla\Firefox\Profiles\ujto2985.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
:mozilla.486:C:\Documents and Settings\Jon Hayes\Application Data\Mozilla\Firefox\Profiles\ujto2985.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
:mozilla.107:C:\Documents and Settings\Jon Hayes\Application Data\Mozilla\Firefox\Profiles\ujto2985.default\cookies.txt -> TrackingCookie.Tacoda : Cleaned.
:mozilla.108:C:\Documents and Settings\Jon Hayes\Application Data\Mozilla\Firefox\Profiles\ujto2985.default\cookies.txt -> TrackingCookie.Tacoda : Cleaned.
:mozilla.110:C:\Documents and Settings\Jon Hayes\Application Data\Mozilla\Firefox\Profiles\ujto2985.default\cookies.txt -> TrackingCookie.Tacoda : Cleaned.
:mozilla.111:C:\Documents and Settings\Jon Hayes\Application Data\Mozilla\Firefox\Profiles\ujto2985.default\cookies.txt -> TrackingCookie.Tacoda : Cleaned.
:mozilla.112:C:\Documents and Settings\Jon Hayes\Application Data\Mozilla\Firefox\Profiles\ujto2985.default\cookies.txt -> TrackingCookie.Tacoda : Cleaned.
:mozilla.129:C:\Documents and Settings\Jon Hayes\Application Data\Mozilla\Firefox\Profiles\ujto2985.default\cookies.txt -> TrackingCookie.Trafficmp : Cleaned.
:mozilla.130:C:\Documents and Settings\Jon Hayes\Application Data\Mozilla\Firefox\Profiles\ujto2985.default\cookies.txt -> TrackingCookie.Trafficmp : Cleaned.
:mozilla.131:C:\Documents and Settings\Jon Hayes\Application Data\Mozilla\Firefox\Profiles\ujto2985.default\cookies.txt -> TrackingCookie.Trafficmp : Cleaned.
:mozilla.132:C:\Documents and Settings\Jon Hayes\Application Data\Mozilla\Firefox\Profiles\ujto2985.default\cookies.txt -> TrackingCookie.Trafficmp : Cleaned.
:mozilla.133:C:\Documents and Settings\Jon Hayes\Application Data\Mozilla\Firefox\Profiles\ujto2985.default\cookies.txt -> TrackingCookie.Trafficmp : Cleaned.
:mozilla.134:C:\Documents and Settings\Jon Hayes\Application Data\Mozilla\Firefox\Profiles\ujto2985.default\cookies.txt -> TrackingCookie.Trafficmp : Cleaned.
:mozilla.135:C:\Documents and Settings\Jon Hayes\Application Data\Mozilla\Firefox\Profiles\ujto2985.default\cookies.txt -> TrackingCookie.Trafficmp : Cleaned.
:mozilla.136:C:\Documents and Settings\Jon Hayes\Application Data\Mozilla\Firefox\Profiles\ujto2985.default\cookies.txt -> TrackingCookie.Trafficmp : Cleaned.
:mozilla.139:C:\Documents and Settings\Jon Hayes\Application Data\Mozilla\Firefox\Profiles\ujto2985.default\cookies.txt -> TrackingCookie.Tribalfusion : Cleaned.
:mozilla.41:C:\Documents and Settings\Jon Hayes.JON\Application Data\Mozilla\Firefox\Profiles\dwt7y6vh.default\cookies.txt -> TrackingCookie.Webtrends : Cleaned.
:mozilla.365:C:\Documents and Settings\Jon Hayes\Application Data\Mozilla\Firefox\Profiles\ujto2985.default\cookies.txt -> TrackingCookie.Webtrendslive : Cleaned.
:mozilla.100:C:\Documents and Settings\Jon Hayes\Application Data\Mozilla\Firefox\Profiles\ujto2985.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.101:C:\Documents and Settings\Jon Hayes\Application Data\Mozilla\Firefox\Profiles\ujto2985.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.102:C:\Documents and Settings\Jon Hayes\Application Data\Mozilla\Firefox\Profiles\ujto2985.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.103:C:\Documents and Settings\Jon Hayes\Application Data\Mozilla\Firefox\Profiles\ujto2985.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.105:C:\Documents and Settings\Jon Hayes\Application Data\Mozilla\Firefox\Profiles\ujto2985.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.99:C:\Documents and Settings\Jon Hayes\Application Data\Mozilla\Firefox\Profiles\ujto2985.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.352:C:\Documents and Settings\Jon Hayes\Application Data\Mozilla\Firefox\Profiles\ujto2985.default\cookies.txt -> TrackingCookie.Zedo : Cleaned.
:mozilla.353:C:\Documents and Settings\Jon Hayes\Application Data\Mozilla\Firefox\Profiles\ujto2985.default\cookies.txt -> TrackingCookie.Zedo : Cleaned.
:mozilla.354:C:\Documents and Settings\Jon Hayes\Application Data\Mozilla\Firefox\Profiles\ujto2985.default\cookies.txt -> TrackingCookie.Zedo : Cleaned.
:mozilla.355:C:\Documents and Settings\Jon Hayes\Application Data\Mozilla\Firefox\Profiles\ujto2985.default\cookies.txt -> TrackingCookie.Zedo : Cleaned.
C:\qoobox\Quarantine\catchme2007-11-11_160636.14.zip/inmfnmpg.sys -> Trojan.BHO.gy : Cleaned.


::Report end



hope it helped things >.<
jhayes
Regular Member
 
Posts: 51
Joined: November 10th, 2007, 1:24 am
Location: USA

Re: Help please!

Unread postby ndmmxiaomayi » November 12th, 2007, 3:01 am

Hi jhayes. :)

Please go to Kaspersky website and perform an online antivirus scan. Please use Internet Explorer as it uses ActiveX.

  1. Click on Kaspersky Online Scanner button.
  2. Read through the requirements and privacy statement and click on Accept button.
  3. It will start downloading and installing the scanner and virus definitions. You will be prompted to install an ActiveX from Kaspersky. Click Yes.
  4. When the downloads have finished, click on Next button.
  5. Click on Scan Settings button.
  6. Select extended under Scan using the following antivirus database:
  7. Check (tick) these boxes under Scan options:
    • Scan Archives
    • Scan Mail Bases
  8. Click OK
  9. Click on My Computer under Please select a target to scan:
  10. Once the scan is complete it will display if your system has been infected. Click on Save as text button and save it to your desktop.
  11. Copy and paste this log in your next reply.

In your next reply, please post:

  1. Kaspersky Antivirus scan report
  2. A new HijackThis log
ndmmxiaomayi
MRU Emeritus
MRU Emeritus
 
Posts: 9708
Joined: July 17th, 2006, 9:22 am

Re: Help please!

Unread postby jhayes » November 12th, 2007, 3:46 am

when i ran the kaspersky online scanner, a message popped up after a while saying

update process FAILED. no further antivirus actions can be performed.

attention, you must be online to activate kaspersky Online Scanner, since the latest anti virus bases version must be downloaded prior to scan. otherwise we cannot guarantee detection of latest viruses. [21]


okay so what exactly happed and what do i do? :(
jhayes
Regular Member
 
Posts: 51
Joined: November 10th, 2007, 1:24 am
Location: USA

Re: Help please!

Unread postby ndmmxiaomayi » November 12th, 2007, 4:43 am

Hi jhayes,

Let's try another scanner instead.

Please go to Eset website to perform an online scan. Please use Internet Explorer as it uses ActiveX.

  1. Check (tick) this box: YES, I accept the Terms of Use.
  2. Click on the Start button next to it.
  3. When prompted to run ActiveX. click Yes.
  4. You will be asked to install an ActiveX. Click Install.
  5. Once installed, the scanner will be initialized.
  6. After the scanner is initialized, click Start.
  7. Uncheck (untick) Remove found threats box.
  8. Check (tick) Scan unwanted applications.
  9. Click on Scan.
  10. It will start scanning. Please be patient.
  11. Once the scan is done, you will find a log in C:\Program Files\esetonlinescanner\log.txt. Please post this log in your next reply.

In your next reply, please post:

  1. Eset scan results (C:\Program Files\esetonlinescanner\log.txt)
  2. A new HijackThis log
ndmmxiaomayi
MRU Emeritus
MRU Emeritus
 
Posts: 9708
Joined: July 17th, 2006, 9:22 am

Re: Help please!

Unread postby jhayes » November 12th, 2007, 2:10 pm

Okay thanks! ill get right on that 8)
jhayes
Regular Member
 
Posts: 51
Joined: November 10th, 2007, 1:24 am
Location: USA

Re: Help please!

Unread postby jhayes » November 12th, 2007, 3:11 pm

Thankyou! that second scan worked perfect :)


Eset scan results :


# version=4
# OnlineScanner.ocx=1.0.0.56
# OnlineScannerDLLA.dll=1, 0, 0, 51
# OnlineScannerDLLW.dll=1, 0, 0, 51
# OnlineScannerUninstaller.exe=1, 0, 0, 49
# vers_standard_module=2653 (20071112)
# vers_arch_module=1.059 (20071108)
# vers_adv_heur_module=1.066 (20070917)
# EOSSerial=03d188a62a3fcc42a0ad296442d82cba
# end=finished
# remove_checked=false
# unwanted_checked=true
# utc_time=2007-11-12 07:06:43
# local_time=2007-11-12 02:06:43 (-0500, Eastern Standard Time)
# country="United States"
# osver=5.1.2600 NT Service Pack 2
# scanned=288082
# found=122
# scan_time=2351
C:\qoobox\Quarantine\C\WINDOWS\system32\abwscxkd.exe.vir Win32/Adware.Ezula application 1E3A03A81096F080B9BA388972CA2DDC
C:\qoobox\Quarantine\C\WINDOWS\system32\agppfpye.dll.vir a variant of Win32/Adware.BHO.V application 11A7CD25DA31BD2E963D89C6B13E61D2
C:\qoobox\Quarantine\C\WINDOWS\system32\aldfppxp.exe.vir Win32/Agent.BCK trojan E6F7FAE520D74928CB6687EBA588AE01
C:\qoobox\Quarantine\C\WINDOWS\system32\alxjcsvi.exe.vir Win32/Agent.BCK trojan E6F7FAE520D74928CB6687EBA588AE01
C:\qoobox\Quarantine\C\WINDOWS\system32\arpokjxn.exe.vir Win32/Agent.BCK trojan E6F7FAE520D74928CB6687EBA588AE01
C:\qoobox\Quarantine\C\WINDOWS\system32\asqhjfvw.exe.vir Win32/Agent.BCK trojan E6F7FAE520D74928CB6687EBA588AE01
C:\qoobox\Quarantine\C\WINDOWS\system32\bihoiunm.exe.vir Win32/Agent.BCK trojan E6F7FAE520D74928CB6687EBA588AE01
C:\qoobox\Quarantine\C\WINDOWS\system32\bjpxqscl.exe.vir Win32/Adware.Ezula application 1E3A03A81096F080B9BA388972CA2DDC
C:\qoobox\Quarantine\C\WINDOWS\system32\bmmquerr.exe.vir Win32/Agent.BCK trojan E6F7FAE520D74928CB6687EBA588AE01
C:\qoobox\Quarantine\C\WINDOWS\system32\bpnbfupf.exe.vir Win32/Agent.BCK trojan E6F7FAE520D74928CB6687EBA588AE01
C:\qoobox\Quarantine\C\WINDOWS\system32\bxijxgbv.exe.vir Win32/Agent.BCK trojan E6F7FAE520D74928CB6687EBA588AE01
C:\qoobox\Quarantine\C\WINDOWS\system32\byagdifl.dll.vir a variant of Win32/Adware.BHO.V application 11A7CD25DA31BD2E963D89C6B13E61D2
C:\qoobox\Quarantine\C\WINDOWS\system32\cekgetiv.exe.vir Win32/Agent.BCK trojan E6F7FAE520D74928CB6687EBA588AE01
C:\qoobox\Quarantine\C\WINDOWS\system32\cpoupiur.exe.vir Win32/Agent.BCK trojan E6F7FAE520D74928CB6687EBA588AE01
C:\qoobox\Quarantine\C\WINDOWS\system32\cqrhrose.dll.vir Win32/Adware.Virtumonde.KI application AC399CBEAD7678C9BAF0E8E52AC2871E
C:\qoobox\Quarantine\C\WINDOWS\system32\ctfuhnug.exe.vir Win32/Agent.BCK trojan E6F7FAE520D74928CB6687EBA588AE01
C:\qoobox\Quarantine\C\WINDOWS\system32\ddcemlny.exe.vir Win32/Agent.BCK trojan E6F7FAE520D74928CB6687EBA588AE01
C:\qoobox\Quarantine\C\WINDOWS\system32\deowqvrr.exe.vir Win32/Agent.BCK trojan E6F7FAE520D74928CB6687EBA588AE01
C:\qoobox\Quarantine\C\WINDOWS\system32\dkvyfjkq.exe.vir Win32/Agent.BCK trojan E6F7FAE520D74928CB6687EBA588AE01
C:\qoobox\Quarantine\C\WINDOWS\system32\doacstqu.exe.vir Win32/Agent.BCK trojan E6F7FAE520D74928CB6687EBA588AE01
C:\qoobox\Quarantine\C\WINDOWS\system32\dupmkmlp.dll.vir a variant of Win32/Adware.BHO.V application 11A7CD25DA31BD2E963D89C6B13E61D2
C:\qoobox\Quarantine\C\WINDOWS\system32\dyrjarhr.exe.vir Win32/Agent.BCK trojan E6F7FAE520D74928CB6687EBA588AE01
C:\qoobox\Quarantine\C\WINDOWS\system32\ehkhdagu.exe.vir Win32/Agent.BCK trojan E6F7FAE520D74928CB6687EBA588AE01
C:\qoobox\Quarantine\C\WINDOWS\system32\ejvlmbal.dll.vir Win32/Adware.Virtumonde.KI application AC399CBEAD7678C9BAF0E8E52AC2871E
C:\qoobox\Quarantine\C\WINDOWS\system32\emglrpgl.exe.vir Win32/Agent.BCK trojan E6F7FAE520D74928CB6687EBA588AE01
C:\qoobox\Quarantine\C\WINDOWS\system32\etmbaddl.exe.vir Win32/Agent.BCK trojan E6F7FAE520D74928CB6687EBA588AE01
C:\qoobox\Quarantine\C\WINDOWS\system32\eyedsxdw.exe.vir Win32/Agent.BCK trojan E6F7FAE520D74928CB6687EBA588AE01
C:\qoobox\Quarantine\C\WINDOWS\system32\favchnlw.exe.vir Win32/Agent.BCK trojan E6F7FAE520D74928CB6687EBA588AE01
C:\qoobox\Quarantine\C\WINDOWS\system32\fduspfyr.exe.vir Win32/Agent.BCK trojan E6F7FAE520D74928CB6687EBA588AE01
C:\qoobox\Quarantine\C\WINDOWS\system32\fjhwjaht.exe.vir Win32/Adware.Ezula application 1E3A03A81096F080B9BA388972CA2DDC
C:\qoobox\Quarantine\C\WINDOWS\system32\fmnquepc.exe.vir Win32/Agent.BCK trojan E6F7FAE520D74928CB6687EBA588AE01
C:\qoobox\Quarantine\C\WINDOWS\system32\fxnahoff.exe.vir Win32/Agent.BCK trojan E6F7FAE520D74928CB6687EBA588AE01
C:\qoobox\Quarantine\C\WINDOWS\system32\gaxgjebm.dll.vir Win32/Adware.Virtumonde.KI application AC399CBEAD7678C9BAF0E8E52AC2871E
C:\qoobox\Quarantine\C\WINDOWS\system32\gghviekc.dll.vir Win32/Adware.Virtumonde.KI application AC399CBEAD7678C9BAF0E8E52AC2871E
C:\qoobox\Quarantine\C\WINDOWS\system32\gkikaycj.exe.vir Win32/Agent.BCK trojan E6F7FAE520D74928CB6687EBA588AE01
C:\qoobox\Quarantine\C\WINDOWS\system32\gqctfftw.dll.vir a variant of Win32/Adware.BHO.V application 49DCFC01A30B9A77BAB4C7779753E43A
C:\qoobox\Quarantine\C\WINDOWS\system32\gtvmhiur.dll.vir a variant of Win32/Adware.BHO.V application DF462F06A4FDAD460B50DBD2D67DD975
C:\qoobox\Quarantine\C\WINDOWS\system32\gujtdkas.exe.vir Win32/Agent.BCK trojan E6F7FAE520D74928CB6687EBA588AE01
C:\qoobox\Quarantine\C\WINDOWS\system32\gwfygnle.dll.vir a variant of Win32/Adware.BHO.V application 49DCFC01A30B9A77BAB4C7779753E43A
C:\qoobox\Quarantine\C\WINDOWS\system32\gwuccokw.dll.vir Win32/Adware.Virtumonde.KI application AC399CBEAD7678C9BAF0E8E52AC2871E
C:\qoobox\Quarantine\C\WINDOWS\system32\gxobxhly.dll.vir Win32/Adware.Virtumonde.KI application AC399CBEAD7678C9BAF0E8E52AC2871E
C:\qoobox\Quarantine\C\WINDOWS\system32\hhwewrjk.exe.vir Win32/Agent.BCK trojan E6F7FAE520D74928CB6687EBA588AE01
C:\qoobox\Quarantine\C\WINDOWS\system32\hkdbubon.dll.vir Win32/Adware.Virtumonde.KI application AC399CBEAD7678C9BAF0E8E52AC2871E
C:\qoobox\Quarantine\C\WINDOWS\system32\hopdajdb.dll.vir a variant of Win32/Adware.BHO.V application 11A7CD25DA31BD2E963D89C6B13E61D2
C:\qoobox\Quarantine\C\WINDOWS\system32\hwvmnniq.exe.vir Win32/Agent.BCK trojan E6F7FAE520D74928CB6687EBA588AE01
C:\qoobox\Quarantine\C\WINDOWS\system32\iptjqlug.exe.vir Win32/Agent.BCK trojan E6F7FAE520D74928CB6687EBA588AE01
C:\qoobox\Quarantine\C\WINDOWS\system32\irlbiwcd.exe.vir Win32/Agent.BCK trojan E6F7FAE520D74928CB6687EBA588AE01
C:\qoobox\Quarantine\C\WINDOWS\system32\irspmnyw.exe.vir Win32/Agent.BCK trojan E6F7FAE520D74928CB6687EBA588AE01
C:\qoobox\Quarantine\C\WINDOWS\system32\jkjcyxiw.exe.vir Win32/Agent.BCK trojan E6F7FAE520D74928CB6687EBA588AE01
C:\qoobox\Quarantine\C\WINDOWS\system32\jnmfweed.exe.vir Win32/Agent.BCK trojan E6F7FAE520D74928CB6687EBA588AE01
C:\qoobox\Quarantine\C\WINDOWS\system32\jpcygtoa.dll.vir a variant of Win32/Adware.BHO.V application A9E529FB5F3ECE53E74294A17C66BBB5
C:\qoobox\Quarantine\C\WINDOWS\system32\kbafnqkv.exe.vir Win32/Agent.BCK trojan E6F7FAE520D74928CB6687EBA588AE01
C:\qoobox\Quarantine\C\WINDOWS\system32\kbdqwffy.dll.vir a variant of Win32/Adware.BHO.V application 4A4598E85B8A4447C7F2D6CDB30310DD
C:\qoobox\Quarantine\C\WINDOWS\system32\kfxbgbwn.exe.vir Win32/Agent.BCK trojan E6F7FAE520D74928CB6687EBA588AE01
C:\qoobox\Quarantine\C\WINDOWS\system32\kgbghnfi.exe.vir Win32/Agent.BCK trojan E6F7FAE520D74928CB6687EBA588AE01
C:\qoobox\Quarantine\C\WINDOWS\system32\kgebhkqn.exe.vir Win32/Agent.BCK trojan E6F7FAE520D74928CB6687EBA588AE01
C:\qoobox\Quarantine\C\WINDOWS\system32\kicrdliy.exe.vir Win32/Adware.Ezula application 1E3A03A81096F080B9BA388972CA2DDC
C:\qoobox\Quarantine\C\WINDOWS\system32\kphsucoj.exe.vir Win32/Agent.BCK trojan E6F7FAE520D74928CB6687EBA588AE01
C:\qoobox\Quarantine\C\WINDOWS\system32\lopbfgsc.dll.vir a variant of Win32/Adware.BHO.V application CF607CB9933C142BFD6B4D9FB14D3595
C:\qoobox\Quarantine\C\WINDOWS\system32\mcpmwpoa.exe.vir Win32/Agent.BCK trojan E6F7FAE520D74928CB6687EBA588AE01
C:\qoobox\Quarantine\C\WINDOWS\system32\mdpvokqr.dll.vir Win32/Adware.BHO.V application 90E240585C30BE56904E7BA85F7B9D43
C:\qoobox\Quarantine\C\WINDOWS\system32\mmybpukg.exe.vir Win32/Adware.Ezula application 1E3A03A81096F080B9BA388972CA2DDC
C:\qoobox\Quarantine\C\WINDOWS\system32\mraivwin.exe.vir Win32/Agent.BCK trojan E6F7FAE520D74928CB6687EBA588AE01
C:\qoobox\Quarantine\C\WINDOWS\system32\nctpsjdq.dll.vir Win32/Adware.Virtumonde application 2DCFCD2C24B8CAAB41E99B95C97DBF1B
C:\qoobox\Quarantine\C\WINDOWS\system32\ngaxcftj.dll.vir Win32/Adware.Virtumonde.KI application AC399CBEAD7678C9BAF0E8E52AC2871E
C:\qoobox\Quarantine\C\WINDOWS\system32\nyhlqrsf.dll.vir a variant of Win32/Adware.BHO.V application 6D5DCD5DDD17AE58FAEC28A16BED7887
C:\qoobox\Quarantine\C\WINDOWS\system32\odksmiru.exe.vir Win32/Agent.BCK trojan E6F7FAE520D74928CB6687EBA588AE01
C:\qoobox\Quarantine\C\WINDOWS\system32\oedhnbat.dll.vir a variant of Win32/Adware.BHO.V application EDAEF90942605C216C2E5B35ECB7217F
C:\qoobox\Quarantine\C\WINDOWS\system32\oituanmy.exe.vir Win32/Agent.BCK trojan E6F7FAE520D74928CB6687EBA588AE01
C:\qoobox\Quarantine\C\WINDOWS\system32\ophqaksk.dll.vir Win32/Adware.Virtumonde.KI application AC399CBEAD7678C9BAF0E8E52AC2871E
C:\qoobox\Quarantine\C\WINDOWS\system32\oynwjwbw.exe.vir Win32/Agent.BCK trojan E6F7FAE520D74928CB6687EBA588AE01
C:\qoobox\Quarantine\C\WINDOWS\system32\pfbmtioh.dll.vir Win32/Adware.Virtumonde.KI application AC399CBEAD7678C9BAF0E8E52AC2871E
C:\qoobox\Quarantine\C\WINDOWS\system32\pmtrxygh.dll.vir Win32/Adware.Virtumonde.KI application AC399CBEAD7678C9BAF0E8E52AC2871E
C:\qoobox\Quarantine\C\WINDOWS\system32\pxtrkgyp.exe.vir Win32/Agent.BCK trojan E6F7FAE520D74928CB6687EBA588AE01
C:\qoobox\Quarantine\C\WINDOWS\system32\qbboubui.exe.vir Win32/Agent.BCK trojan E6F7FAE520D74928CB6687EBA588AE01
C:\qoobox\Quarantine\C\WINDOWS\system32\qiujkqhq.exe.vir Win32/Agent.BCK trojan E6F7FAE520D74928CB6687EBA588AE01
C:\qoobox\Quarantine\C\WINDOWS\system32\qmokolqu.exe.vir Win32/Agent.BCK trojan E6F7FAE520D74928CB6687EBA588AE01
C:\qoobox\Quarantine\C\WINDOWS\system32\qsaytjvl.exe.vir Win32/Adware.Ezula application 1E3A03A81096F080B9BA388972CA2DDC
C:\qoobox\Quarantine\C\WINDOWS\system32\quoulicy.exe.vir Win32/Agent.BCK trojan E6F7FAE520D74928CB6687EBA588AE01
C:\qoobox\Quarantine\C\WINDOWS\system32\qvoktflf.exe.vir Win32/Agent.BCK trojan E6F7FAE520D74928CB6687EBA588AE01
C:\qoobox\Quarantine\C\WINDOWS\system32\ricdfnul.exe.vir Win32/Agent.BCK trojan E6F7FAE520D74928CB6687EBA588AE01
C:\qoobox\Quarantine\C\WINDOWS\system32\rriotsye.exe.vir Win32/Agent.BCK trojan E6F7FAE520D74928CB6687EBA588AE01
C:\qoobox\Quarantine\C\WINDOWS\system32\rrkapjtu.exe.vir Win32/Agent.BCK trojan E6F7FAE520D74928CB6687EBA588AE01
C:\qoobox\Quarantine\C\WINDOWS\system32\sbyhkogw.exe.vir Win32/Agent.BCK trojan E6F7FAE520D74928CB6687EBA588AE01
C:\qoobox\Quarantine\C\WINDOWS\system32\sfnignpv.exe.vir Win32/Agent.BCK trojan E6F7FAE520D74928CB6687EBA588AE01
C:\qoobox\Quarantine\C\WINDOWS\system32\sjnqwfol.dll.vir a variant of Win32/Adware.BHO.V application 11A7CD25DA31BD2E963D89C6B13E61D2
C:\qoobox\Quarantine\C\WINDOWS\system32\skhbhljp.exe.vir Win32/Agent.BCK trojan E6F7FAE520D74928CB6687EBA588AE01
C:\qoobox\Quarantine\C\WINDOWS\system32\sldjrdci.exe.vir Win32/Agent.BCK trojan E6F7FAE520D74928CB6687EBA588AE01
C:\qoobox\Quarantine\C\WINDOWS\system32\slhbenrv.exe.vir Win32/Agent.BCK trojan E6F7FAE520D74928CB6687EBA588AE01
C:\qoobox\Quarantine\C\WINDOWS\system32\sslrjfsv.exe.vir Win32/Agent.BCK trojan E6F7FAE520D74928CB6687EBA588AE01
C:\qoobox\Quarantine\C\WINDOWS\system32\suyofjem.exe.vir Win32/Agent.BCK trojan E6F7FAE520D74928CB6687EBA588AE01
C:\qoobox\Quarantine\C\WINDOWS\system32\tjccvlox.dll.vir a variant of Win32/Adware.BHO.V application 49DCFC01A30B9A77BAB4C7779753E43A
C:\qoobox\Quarantine\C\WINDOWS\system32\tktkmtji.exe.vir Win32/Agent.BCK trojan E6F7FAE520D74928CB6687EBA588AE01
C:\qoobox\Quarantine\C\WINDOWS\system32\uicgflpx.dll.vir a variant of Win32/Adware.BHO.V application 4D76C288DA8E6A99354DDB135136337A
C:\qoobox\Quarantine\C\WINDOWS\system32\upjiixbe.dll.vir Win32/Adware.Virtumonde.KI application AC399CBEAD7678C9BAF0E8E52AC2871E
C:\qoobox\Quarantine\C\WINDOWS\system32\uqekxuai.exe.vir Win32/Agent.BCK trojan E6F7FAE520D74928CB6687EBA588AE01
C:\qoobox\Quarantine\C\WINDOWS\system32\uqjsrjpi.dll.vir Win32/Adware.Virtumonde.KI application AC399CBEAD7678C9BAF0E8E52AC2871E
C:\qoobox\Quarantine\C\WINDOWS\system32\uswcroxb.exe.vir Win32/Agent.BCK trojan E6F7FAE520D74928CB6687EBA588AE01
C:\qoobox\Quarantine\C\WINDOWS\system32\vbuowccp.exe.vir Win32/Adware.Ezula application 1E3A03A81096F080B9BA388972CA2DDC
C:\qoobox\Quarantine\C\WINDOWS\system32\vcswfaht.exe.vir Win32/Agent.BCK trojan E6F7FAE520D74928CB6687EBA588AE01
C:\qoobox\Quarantine\C\WINDOWS\system32\vdjqjlol.exe.vir Win32/Agent.BCK trojan E6F7FAE520D74928CB6687EBA588AE01
C:\qoobox\Quarantine\C\WINDOWS\system32\venfpico.exe.vir Win32/Adware.Ezula application 1E3A03A81096F080B9BA388972CA2DDC
C:\qoobox\Quarantine\C\WINDOWS\system32\vfqsiqsv.exe.vir Win32/Agent.BCK trojan E6F7FAE520D74928CB6687EBA588AE01
C:\qoobox\Quarantine\C\WINDOWS\system32\vhcjivgv.exe.vir Win32/Agent.BCK trojan E6F7FAE520D74928CB6687EBA588AE01
C:\qoobox\Quarantine\C\WINDOWS\system32\vhglnjhw.exe.vir Win32/Agent.BCK trojan E6F7FAE520D74928CB6687EBA588AE01
C:\qoobox\Quarantine\C\WINDOWS\system32\vtjnwyel.exe.vir Win32/Agent.BCK trojan E6F7FAE520D74928CB6687EBA588AE01
C:\qoobox\Quarantine\C\WINDOWS\system32\wjjcbviw.exe.vir Win32/Agent.BCK trojan E6F7FAE520D74928CB6687EBA588AE01
C:\qoobox\Quarantine\C\WINDOWS\system32\wkdtcffk.exe.vir Win32/Agent.BCK trojan E6F7FAE520D74928CB6687EBA588AE01
C:\qoobox\Quarantine\C\WINDOWS\system32\wttgofku.exe.vir Win32/Agent.BCK trojan E6F7FAE520D74928CB6687EBA588AE01
C:\qoobox\Quarantine\C\WINDOWS\system32\xfxvtwhl.dll.vir a variant of Win32/Adware.BHO.V application 97EBD86ADC4343B0E5908EACC2C36107
C:\qoobox\Quarantine\C\WINDOWS\system32\xicahoev.dll.vir Win32/Adware.Virtumonde.KI application AC399CBEAD7678C9BAF0E8E52AC2871E
C:\qoobox\Quarantine\C\WINDOWS\system32\xjldpdjq.exe.vir Win32/Agent.BCK trojan E6F7FAE520D74928CB6687EBA588AE01
C:\qoobox\Quarantine\C\WINDOWS\system32\xjnwwubh.exe.vir Win32/Agent.BCK trojan E6F7FAE520D74928CB6687EBA588AE01
C:\qoobox\Quarantine\C\WINDOWS\system32\xpvbpjbt.exe.vir Win32/Adware.Ezula application 1E3A03A81096F080B9BA388972CA2DDC
C:\qoobox\Quarantine\C\WINDOWS\system32\xutxhdpx.exe.vir Win32/Agent.BCK trojan E6F7FAE520D74928CB6687EBA588AE01
C:\qoobox\Quarantine\C\WINDOWS\system32\ybsjjcmf.exe.vir Win32/Agent.BCK trojan E6F7FAE520D74928CB6687EBA588AE01
C:\qoobox\Quarantine\C\WINDOWS\system32\yxjsyoch.dll.vir Win32/Adware.Virtumonde.KI application AC399CBEAD7678C9BAF0E8E52AC2871E
C:\SDFix\backups\backups.zip Win32/Adware.Virtumonde application 5186419234BB6EA3CEB74E18052F3CEF
C:\SDFix\backups\backups.zip »ZIP »backups/removalfile.bat Win32/Adware.Virtumonde application 00000000000000000000000000000000
C:\WINDOWS\system32\pqqoacka.exe Win32/Adware.Ezula application 1E3A03A81096F080B9BA388972CA2DDC
C:\WINDOWS\system32\ulgncftr.exe Win32/Adware.Ezula application 1E3A03A81096F080B9BA388972CA2DDC
C:\WINDOWS\system32\xsvsdbkb.exe Win32/Adware.Ezula application 1E3A03A81096F080B9BA388972CA2DDC



hijackthis log:


Logfile of HijackThis v1.99.1
Scan saved at 2:11:11 PM, on 11/12/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16544)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Adobe\Photoshop Elements 5.0\PhotoshopElementsFileAgent.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe
C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe
C:\PROGRA~1\Grisoft\AVGFRE~1\avgemc.exe
C:\WINDOWS\eHome\ehRecvr.exe
C:\WINDOWS\eHome\ehSched.exe
C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\Program Files\Microsoft SQL Server\MSSQL$VAIO_VEDB\Binn\sqlservr.exe
C:\WINDOWS\system32\HPZipm12.exe
C:\Program Files\SiteAdvisor\6172\SAService.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Sony\VAIO Event Service\VESMgr.exe
C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VCSW\VCSW.exe
C:\Program Files\Viewpoint\Common\ViewpointService.exe
C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VzCdb\VzCdbSvc.exe
C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VzCdb\VzFw.exe
C:\WINDOWS\system32\dllhost.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Viewpoint\Viewpoint Manager\ViewMgr.exe
C:\WINDOWS\system32\hkcmd.exe
C:\WINDOWS\system32\igfxpers.exe
C:\Program Files\Apoint\Apoint.exe
C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe
C:\Program Files\SiteAdvisor\6172\SiteAdv.exe
C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Apoint\Apntex.exe
C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\MSN Messenger\usnsvc.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLLoginProxy.exe
C:\Program Files\HijackThis\scanner.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://blacknightsclan.com/vbulletin/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://llehs.com/go/?cmp=vm_mg_ff_h&nid ... &lid=&url=
R3 - URLSearchHook: AOLSearchHook Class - {54EB34EA-E6BE-4CFD-9F4F-C4A0C2EAFA22} - C:\Program Files\AOL\AOL Search Enhancement\AOLSearch.dll
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {089FD14D-132B-48FC-8861-0048AE113215} - C:\Program Files\SiteAdvisor\6172\SiteAdv.dll
O2 - BHO: AOL Search Enhancement - {54EB34EA-E6BE-4CFD-9F4F-C4A0C2EAFA22} - C:\Program Files\AOL\AOL Search Enhancement\AOLSearch.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.1.615.5858\swg.dll
O3 - Toolbar: McAfee SiteAdvisor - {0BF43445-2F28-4351-9252-17FE6E806AA0} - C:\Program Files\SiteAdvisor\6172\SiteAdv.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O4 - HKLM\..\Run: [igfxtray] C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [igfxhkcmd] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [igfxpers] C:\WINDOWS\system32\igfxpers.exe
O4 - HKLM\..\Run: [Apoint] C:\Program Files\Apoint\Apoint.exe
O4 - HKLM\..\Run: [AVG7_CC] C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe /STARTUP
O4 - HKLM\..\Run: [SiteAdvisor] C:\Program Files\SiteAdvisor\6172\SiteAdv.exe
O4 - HKLM\..\Run: [Adobe Photo Downloader] "C:\Program Files\Adobe\Photoshop Elements 5.0\apdproxy.exe"
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe"
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [Aim6] "C:\Program Files\AIM6\aim6.exe" /d locale=en-US ee://aol/imApp
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
O4 - Startup: LimeWire On Startup.lnk = C:\Program Files\LimeWire\LimeWire.exe
O8 - Extra context menu item: Add to Windows &Live Favorites - http://favorites.live.com/quickadd.aspx
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MI1933~1\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MI1933~1\OFFICE11\REFIEBAR.DLL
O9 - Extra button: AIM - {AC9E2541-2814-11d5-BC6D-00B0D0A1DE45} - C:\Program Files\AIM\aim.exe
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O11 - Options group: [INTERNATIONAL] International*
O14 - IERESET.INF: START_PAGE_URL=http://www.sony.com/vaiopeople
O15 - Trusted Zone: http://*.trymedia.com (HKLM)
O16 - DPF: {0EB0E74A-2A76-4AB3-A7FB-9BD8C29F7F75} (CKAVWebScan Object) - http://www.kaspersky.com/kos/english/ka ... nicode.cab
O16 - DPF: {56762DEC-6B0D-4AB4-A8AD-989993B5D08B} (OnlineScanner Control) - http://www.eset.eu/buxus/docs/OnlineScanner.cab
O16 - DPF: {67DABFBF-D0AB-41FA-9C46-CC0F21721616} (DivXBrowserPlugin Object) - http://download.divx.com/player/DivXBrowserPlugin.cab
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftup ... 6125379979
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: siteadvisor - {3A5DC592-7723-4EAA-9EE6-AF4222BCF879} - C:\Program Files\SiteAdvisor\6172\SiteAdv.dll
O20 - Winlogon Notify: igfxcui - C:\WINDOWS\SYSTEM32\igfxdev.dll
O20 - Winlogon Notify: VESWinlogon - C:\WINDOWS\SYSTEM32\VESWinlogon.dll
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
O23 - Service: Ad-Aware 2007 Service (aawservice) - Lavasoft AB - C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
O23 - Service: Adobe Active File Monitor V5 (AdobeActiveFileMonitor5.0) - Unknown owner - C:\Program Files\Adobe\Photoshop Elements 5.0\PhotoshopElementsFileAgent.exe
O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe
O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe
O23 - Service: AVG E-mail Scanner (AVGEMS) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgemc.exe
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Image Converter video recording monitor for VAIO Entertainment - Sony Corporation - C:\Program Files\Sony\Image Converter 2\IcVzMon.exe
O23 - Service: iPodService - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: MSCSPTISRV - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AVLib\MSCSPTISRV.exe
O23 - Service: PACSPTISVR - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AVLib\PACSPTISVR.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
O23 - Service: Intel(R) PROSet/Wireless Service (S24EventMonitor) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
O23 - Service: SiteAdvisor Service - Unknown owner - C:\Program Files\SiteAdvisor\6172\SAService.exe
O23 - Service: SonicStageMonitoring - Sony Corporation - C:\Program Files\Common Files\Sony Shared\WMPlugIn\SonicStageMonitoring.exe
O23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AVLib\SPTISRV.exe
O23 - Service: SonicStage SCSI Service (SSScsiSV) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AVLib\SSScsiSV.exe
O23 - Service: Symantec Core LC - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe
O23 - Service: VAIO Entertainment TV Device Arbitration Service - Sony Corporation - C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VzCs\VzHardwareResourceManager\VzHardwareResourceManager.exe
O23 - Service: VAIO Event Service - Sony Corporation - C:\Program Files\Sony\VAIO Event Service\VESMgr.exe
O23 - Service: VAIO Media Integrated Server (VAIOMediaPlatform-IntegratedServer-AppServer) - Sony Corporation - C:\Program Files\Sony\VAIO Media Integrated Server\VMISrv.exe
O23 - Service: VAIO Media Integrated Server (HTTP) (VAIOMediaPlatform-IntegratedServer-HTTP) - Unknown owner - C:\Program Files\Sony\VAIO Media Integrated Server\Platform\SV_Httpd.exe" /Service=VAIOMediaPlatform-IntegratedServer-HTTP /RegRoot="SOFTWARE\Sony Corporation\VAIO Media Platform\2.0" /RegExt="Applications\IntegratedServer\HTTP (file missing)
O23 - Service: VAIO Media Integrated Server (UPnP) (VAIOMediaPlatform-IntegratedServer-UPnP) - Sony Corporation - C:\Program Files\Sony\VAIO Media Integrated Server\Platform\UPnPFramework.exe
O23 - Service: VAIO Media Gateway Server (VAIOMediaPlatform-Mobile-Gateway) - Unknown owner - C:\Program Files\Sony\VAIO Media Integrated Server\Platform\VmGateway.exe" /Service=VAIOMediaPlatform-Mobile-Gateway /RegRoot="SOFTWARE\Sony Corporation\VAIO Media Platform\2.0" /RegExt="\Addons\Packages\Mobile\Gateway" /DisplayName="VAIO Media Gateway Server (file missing)
O23 - Service: VAIO Entertainment UPnP Client Adapter (Vcsw) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VCSW\VCSW.exe
O23 - Service: Viewpoint Manager Service - Viewpoint Corporation - C:\Program Files\Viewpoint\Common\ViewpointService.exe
O23 - Service: VAIO Entertainment Database Service (VzCdbSvc) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VzCdb\VzCdbSvc.exe
O23 - Service: VAIO Entertainment File Import Service (VzFw) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VzCdb\VzFw.exe
jhayes
Regular Member
 
Posts: 51
Joined: November 10th, 2007, 1:24 am
Location: USA

Re: Help please!

Unread postby ndmmxiaomayi » November 12th, 2007, 8:52 pm

Hi jhayes. :)

Please delete these files.

C:\WINDOWS\system32\pqqoacka.exe
C:\WINDOWS\system32\ulgncftr.exe
C:\WINDOWS\system32\xsvsdbkb.exe

How's your computer performing now?
ndmmxiaomayi
MRU Emeritus
MRU Emeritus
 
Posts: 9708
Joined: July 17th, 2006, 9:22 am

Re: Help please!

Unread postby jhayes » November 12th, 2007, 10:29 pm

Umm tried to go to ALL of those, nothing happened. Like when i went to my computer, copy and pasted those things into the adress thing, it did nothing; just stayed in the same place as when i opened it. what do i do?
jhayes
Regular Member
 
Posts: 51
Joined: November 10th, 2007, 1:24 am
Location: USA

Re: Help please!

Unread postby jhayes » November 12th, 2007, 10:30 pm

Oh and thanks for asking :)

my computer is running faster and theres been 0 virus pop-up warnings by avg :P
jhayes
Regular Member
 
Posts: 51
Joined: November 10th, 2007, 1:24 am
Location: USA

Re: Help please!

Unread postby ndmmxiaomayi » November 12th, 2007, 10:34 pm

jhayes wrote:Umm tried to go to ALL of those, nothing happened. Like when i went to my computer, copy and pasted those things into the adress thing, it did nothing; just stayed in the same place as when i opened it. what do i do?


Err...

What did you do?

What did you tried copying and pasting?

Are you able to remove the 3 files successfully?
ndmmxiaomayi
MRU Emeritus
MRU Emeritus
 
Posts: 9708
Joined: July 17th, 2006, 9:22 am

Re: Help please!

Unread postby jhayes » November 12th, 2007, 10:41 pm

I went file > my computer than copy and pasted the links into the section where u put the file name to go to it, and nothing happened.. i pressed enter and it didnt go anywhere :(
jhayes
Regular Member
 
Posts: 51
Joined: November 10th, 2007, 1:24 am
Location: USA

Re: Help please!

Unread postby jhayes » November 12th, 2007, 10:42 pm

but it didnt say the file wasnt there, like it would if i put the name in
jhayes
Regular Member
 
Posts: 51
Joined: November 10th, 2007, 1:24 am
Location: USA

Re: Help please!

Unread postby ndmmxiaomayi » November 12th, 2007, 10:46 pm

:shock:

Please don't do that, you might trigger another infection.

Please download OTMoveIt.exe by OldTimer and save it to your desktop.

Double click on OTMoveIt.exe to run it.

Copy and paste the following in the Code box into OTMoveIt (1).

Note: Do not type it out to minimize the risk of typo error.

Code: Select all
C:\WINDOWS\system32\pqqoacka.exe
C:\WINDOWS\system32\ulgncftr.exe
C:\WINDOWS\system32\xsvsdbkb.exe


Click on MoveIt! (2).

Click on Exit (3).

Please refer to this picture for using OTMoveIt.

Image

A log will be produced at C:\_OTMoveIt\MovedFiles\date_time.log.

Please copy and paste this log in your next reply.
ndmmxiaomayi
MRU Emeritus
MRU Emeritus
 
Posts: 9708
Joined: July 17th, 2006, 9:22 am
Advertisement
Register to Remove

PreviousNext

Return to Infected? Virus, malware, adware, ransomware, oh my!



Who is online

Users browsing this forum: No registered users and 133 guests

Contact us:

Advertisements do not imply our endorsement of that product or service. Register to remove all ads. The forum is run by volunteers who donate their time and expertise. We make every attempt to ensure that the help and advice posted is accurate and will not cause harm to your computer. However, we do not guarantee that they are accurate and they are to be used at your own risk. All trademarks are the property of their respective owners.

Member site: UNITE Against Malware