SUPERAntiSpyware Scan Log
http://www.superantispyware.com
Generated 09/17/2007 at 02:39 AM
Application Version : 3.9.1008
Core Rules Database Version : 3307
Trace Rules Database Version: 1313
Scan type : Complete Scan
Total Scan Time : 05:50:31
Memory items scanned : 175
Memory threats detected : 0
Registry items scanned : 7434
Registry threats detected : 103
File items scanned : 167524
File threats detected : 178
Adware.Tracking Cookie
C:\Documents and Settings\owner 2\Cookies\owner_2@adbrite[2].txt
C:\Documents and Settings\owner 2\Cookies\owner_2@ad.scanmedios[2].txt
C:\Documents and Settings\owner 2\Cookies\owner_2@ads.adbrite[1].txt
C:\Documents and Settings\owner 2\Cookies\owner_2@media.adrevolver[2].txt
C:\Documents and Settings\owner 2\Cookies\owner_2@ehg-bskyb.hitbox[1].txt
C:\Documents and Settings\owner 2\Cookies\owner_2@msnportal.112.2o7[1].txt
C:\Documents and Settings\owner 2\Cookies\owner_2@ad.adition[2].txt
C:\Documents and Settings\owner 2\Cookies\owner_2@stats.powergen.co[1].txt
C:\Documents and Settings\owner 2\Cookies\owner_2@cpvfeed[2].txt
C:\Documents and Settings\owner 2\Cookies\owner_2@2o7[1].txt
C:\Documents and Settings\owner 2\Cookies\owner_2@ehg-globalgamingleague.hitbox[2].txt
C:\Documents and Settings\owner 2\Cookies\owner_2@ehg.hitbox[2].txt
C:\Documents and Settings\owner 2\Cookies\owner_2@media.funpic[1].txt
C:\Documents and Settings\owner 2\Cookies\owner_2@metacafe.122.2o7[1].txt
C:\Documents and Settings\owner 2\Cookies\owner_2@overture[1].txt
C:\Documents and Settings\Guest\Cookies\guest@surfaccuracy[2].txt
C:\Documents and Settings\jess\Cookies\jess@2.adbrite[1].txt
C:\Documents and Settings\jess\Cookies\jess@4.adbrite[2].txt
C:\Documents and Settings\jess\Cookies\jess@ad-indicator[1].txt
C:\Documents and Settings\jess\Cookies\jess@ad.uk.tangozebra[1].txt
C:\Documents and Settings\jess\Cookies\jess@ad.uk.tangozebra[2].txt
C:\Documents and Settings\jess\Cookies\jess@ad.yieldmanager[1].txt
C:\Documents and Settings\jess\Cookies\jess@ad.zanox[1].txt
C:\Documents and Settings\jess\Cookies\jess@adbrite[1].txt
C:\Documents and Settings\jess\Cookies\jess@adopt.euroclick[2].txt
C:\Documents and Settings\jess\Cookies\jess@adrevenue[1].txt
C:\Documents and Settings\jess\Cookies\jess@ads.adbrite[2].txt
C:\Documents and Settings\jess\Cookies\jess@ads.e-planning[1].txt
C:\Documents and Settings\jess\Cookies\jess@ads.itv[2].txt
C:\Documents and Settings\jess\Cookies\jess@adserver.weakgame[2].txt
C:\Documents and Settings\jess\Cookies\jess@adtech[2].txt
C:\Documents and
C:\Documents and Settings\jess\Cookies\jess@advert.runescape[1].txt
C:\Documents and Settings\jess\Cookies\jess@atdmt[2].txt
C:\Documents and Settings\jess\Cookies\jess@bizrate.co[2].txt
C:\Documents and Settings\jess\Cookies\jess@bs.serving-sys[2].txt
C:\Documents and Settings\jess\Cookies\jess@casalemedia[2].txt
C:\Documents and Settings\jess\Cookies\jess@click.cashengines[1].txt
C:\Documents and Settings\jess\Cookies\jess@divx.adbureau[2].txt
C:\Documents and Settings\jess\Cookies\jess@eas.apm.emediate[2].txt
C:\Documents and Settings\jess\Cookies\jess@ehg-rodale.hitbox[1].txt
C:\Documents and Settings\jess\Cookies\jess@flixbanner.imesh[2].txt
C:\Documents and Settings\jess\Cookies\jess@go.winantispyware[1].txt
C:\Documents and Settings\jess\Cookies\jess@go.winantispyware[3].txt
C:\Documents and Settings\jess\Cookies\jess@go.winantivirus[1].txt
C:\Documents and Settings\jess\Cookies\jess@go.winantivirus[3].txt
C:\Documents and Settings\jess\Cookies\jess@gtmedia.us.intellitxt[1].txt
C:\Documents and Settings\jess\Cookies\jess@hearstmagazines.112.2o7[1].txt
C:\Documents and Settings\jess\Cookies\jess@hitbox[2].txt
C:\Documents and Settings\jess\Cookies\jess@imrworldwide[2].txt
C:\Documents and Settings\jess\Cookies\jess@imrworldwide[3].txt
C:\Documents and Settings\jess\Cookies\jess@interclick[1].txt
C:\Documents and Settings\jess\Cookies\jess@kanoodle[2].txt
C:\Documents and Settings\jess\Cookies\jess@media.licenseacquisition[2].txt
C:\Documents and Settings\jess\Cookies\jess@mediatraffic[2].txt
C:\Documents and Settings\jess\Cookies\jess@rb4.worldsex[2].txt
C:\Documents and Settings\jess\Cookies\jess@roiservice[1].txt
C:\Documents and Settings\jess\Cookies\jess@server.cpmstar[1].txt
C:\Documents and Settings\jess\Cookies\jess@serving-sys[2].txt
C:\Documents and Settings\jess\Cookies\jess@specificclick[2].txt
C:\Documents and Settings\jess\Cookies\jess@statcounter[2].txt
C:\Documents and Settings\jess\Cookies\jess@stats.channel4[1].txt
C:\Documents and Settings\jess\Cookies\jess@surfaccuracy[2].txt
C:\Documents and
C:\Documents and Settings\jess\Cookies\jess@teensdefloration[2].txt
C:\Documents and Settings\jess\Cookies\jess@toplist[1].txt
C:\Documents and Settings\jess\Cookies\jess@track.searchignite[1].txt
C:\Documents and Settings\jess\Cookies\jess@tracker.roitesting[2].txt
C:\Documents and Settings\jess\Cookies\jess@tripod.lycos[1].txt
C:\Documents and Settings\jess\Cookies\jess@www.0stats[2].txt
C:\Documents and Settings\jess\Cookies\jess@www.3pintracking[1].txt
C:\Documents and Settings\jess\Cookies\jess@www.bravia-advert[1].txt
C:\Documents and Settings\jess\Cookies\jess@www.clash-media[1].txt
C:\Documents and Settings\jess\Cookies\jess@www.clubteenpix[2].txt
C:\Documents and Settings\jess\Cookies\jess@www.googleadservices[1].txt
C:\Documents and Settings\jess\Cookies\jess@www.googleadservices[2].txt
C:\Documents and Settings\jess\Cookies\jess@www.jackpotmadness[1].txt
C:\Documents and Settings\jess\Cookies\jess@www.teenswishes[2].txt
C:\Documents and Settings\jess\Cookies\jess@www.xxx69[1].txt
C:\Documents and Settings\jess\Cookies\jess@xiti[1].txt
C:\Documents and Settings\Owner\Cookies\owner@112.2o7[1].txt
C:\Documents and Settings\Owner\Cookies\owner@adlogix[1].txt
C:\Documents and Settings\Owner\Cookies\owner@adorigin[2].txt
C:\Documents and Settings\Owner\Cookies\owner@ads.channel4[1].txt
C:\Documents and Settings\Owner\Cookies\owner@ads.specificclick[1].txt
C:\Documents and Settings\Owner\Cookies\owner@ads.specificpop[2].txt
C:\Documents and Settings\Owner\Cookies\owner@ads.tripod.lycos.co[1].txt
C:\Documents and Settings\Owner\Cookies\owner@ads.uknetguide.co[1].txt
C:\Documents and Settings\Owner\Cookies\owner@ads.x10[1].txt
C:\Documents and Settings\Owner\Cookies\owner@adserver.akqa[2].txt
C:\Documents and Settings\Owner\Cookies\owner@adserver.anm.co[1].txt
C:\Documents and Settings\Owner\Cookies\owner@adtech[2].txt
C:\Documents and Settings\Owner\Cookies\owner@advertising[1].txt
C:\Documents and Settings\Owner\Cookies\owner@atdmt[2].txt
C:\Documents and Settings\Owner\Cookies\owner@bizrate[2].txt
C:\Documents and Settings\Owner\Cookies\owner@bluestreak[1].txt
C:\Documents and Settings\Owner\Cookies\owner@bs.serving-sys[1].txt
C:\Documents and Settings\Owner\Cookies\owner@c2.gostats[2].txt
C:\Documents and Settings\Owner\Cookies\owner@centrica.usertracking[2].txt
C:\Documents and Settings\Owner\Cookies\owner@commission-junction[2].txt
C:\Documents and Settings\Owner\Cookies\owner@counter.hitslink[2].txt
C:\Documents and Settings\Owner\Cookies\owner@doubleclick[1].txt
C:\Documents and Settings\Owner\Cookies\owner@edge.ru4[2].txt
C:\Documents and Settings\Owner\Cookies\owner@ehg-dig.hitbox[2].txt
C:\Documents and Settings\Owner\Cookies\owner@ehg-hitent.hitbox[2].txt
C:\Documents and Settings\Owner\Cookies\owner@ehg-sonypictures.hitbox[1].txt
C:\Documents and Settings\Owner\Cookies\owner@ehg.hitbox[1].txt
C:\Documents and Settings\Owner\Cookies\owner@etype.adbureau[2].txt
C:\Documents and Settings\Owner\Cookies\owner@fastclick[2].txt
C:\Documents and Settings\Owner\Cookies\owner@focalex[2].txt
C:\Documents and Settings\Owner\Cookies\owner@fortunecity[2].txt
C:\Documents and Settings\Owner\Cookies\owner@gostats[2].txt
C:\Documents and Settings\Owner\Cookies\owner@hc2.humanclick[2].txt
C:\Documents and Settings\Owner\Cookies\owner@hg1.hitbox[2].txt
C:\Documents and Settings\Owner\Cookies\owner@hitbox[1].txt
C:\Documents and Settings\Owner\Cookies\owner@hotlog[2].txt
C:\Documents and Settings\Owner\Cookies\owner@mediamgr.ugo[1].txt
C:\Documents and Settings\Owner\Cookies\owner@mediaplex[2].txt
C:\Documents and Settings\Owner\Cookies\owner@mediatrack.revenue[2].txt
C:\Documents and Settings\Owner\Cookies\owner@media[1].txt
C:\Documents and Settings\Owner\Cookies\owner@media[2].txt
C:\Documents and Settings\Owner\Cookies\owner@media[4].txt
C:\Documents and Settings\Owner\Cookies\owner@okcounter[1].txt
C:\Documents and Settings\Owner\Cookies\owner@overture[2].txt
C:\Documents and Settings\Owner\Cookies\owner@qksrv[2].txt
C:\Documents and Settings\Owner\Cookies\owner@questionmarket[1].txt
C:\Documents and Settings\Owner\Cookies\owner@realmedia[1].txt
C:\Documents and Settings\Owner\Cookies\owner@revenue[2].txt
C:\Documents and Settings\Owner\Cookies\owner@servedby.advertising[1].txt
C:\Documents and Settings\Owner\Cookies\owner@server.iad.liveperson[1].txt
C:\Documents and Settings\Owner\Cookies\owner@sexlist[1].txt
C:\Documents and Settings\Owner\Cookies\owner@statse.webtrendslive[1].txt
C:\Documents and Settings\Owner\Cookies\owner@tradedoubler[1].txt
C:\Documents and Settings\Owner\Cookies\owner@trafficmp[2].txt
C:\Documents and Settings\Owner\Cookies\owner@tribalfusion[1].txt
C:\Documents and Settings\Owner\Cookies\owner@usertrack[1].txt
C:\Documents and Settings\Owner\Cookies\owner@valueclick[2].txt
C:\Documents and Settings\Owner\Cookies\owner@windowsmedia[1].txt
C:\Documents and Settings\Owner\Cookies\owner@www.adlogix[2].txt
C:\Documents and Settings\Owner\Cookies\owner@www.commission-junction[1].txt
C:\Documents and Settings\Owner\Cookies\owner@www.dgm2[2].txt
C:\Documents and Settings\Owner\Cookies\owner@www.qksrv[1].txt
C:\Documents and Settings\Owner\Cookies\owner@zedo[2].txt
C:\Documents and Settings\owner 2\Cookies\owner_2@adecn[2].txt
C:\Documents and Settings\owner 2\Cookies\owner_2@adrevenue[1].txt
C:\Documents and Settings\owner 2\Cookies\owner_2@flixbanner.imesh[2].txt
C:\Documents and Settings\owner 2\Cookies\owner_2@keywordmax[1].txt
C:\Documents and Settings\owner 2\Cookies\owner_2@netmediagroup[1].txt
C:\Documents and Settings\owner 2\Cookies\owner_2@toplist[1].txt
C:\Documents and Settings\owner 2\Cookies\owner_2@tracking.summitmedia.co[1].txt
C:\Documents and Settings\owner 2\Local Settings\Temp\Cookies\owner 2@surfaccuracy[2].txt
Spyware.WebSearch (WinTools/Huntbar)
HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_WINTOOLSSVC
HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_WINTOOLSSVC#NextInstance
HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_WINTOOLSSVC\0000
HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_WINTOOLSSVC\0000#Service
HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_WINTOOLSSVC\0000#Legacy
HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_WINTOOLSSVC\0000#ConfigFlags
HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_WINTOOLSSVC\0000#Class
HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_WINTOOLSSVC\0000#ClassGUID
HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_WINTOOLSSVC\0000#DeviceDesc
Trojan.MalwareWipe
C:\Documents and Settings\owner 2\Start Menu\Programs\Malware-Wiped\Malware-Wiped 5.2 Website.lnk
C:\Documents and Settings\owner 2\Start Menu\Programs\Malware-Wiped\Malware-Wiped 5.2.lnk
C:\Documents and Settings\owner 2\Start Menu\Programs\Malware-Wiped\Uninstall Malware-Wiped 5.2.lnk
C:\Documents and Settings\owner 2\Start Menu\Programs\Malware-Wiped
C:\Documents and Settings\owner 2\Application Data\Microsoft\Internet Explorer\Quick Launch\Malware-Wiped 5.2.lnk
C:\Documents and Settings\owner 2\Start Menu\Malware-Wiped 5.2.lnk
Adware.IST/ISTBar (Slotch Bar)
HKU\S-1-5-21-3456833437-288330390-3410507503-1012\Software\Microsoft\Internet Explorer\Main#BandRest [ Never ]
Trojan.Media-Codec
HKU\S-1-5-21-3456833437-288330390-3410507503-1012\Software\Internet Security
Adware.180solutions/Seekmo
HKCR\HostIE.Bho
HKCR\HostIE.Bho\CLSID
HKCR\HostIE.Bho\CurVer
HKCR\HostIE.Bho.1
HKCR\HostIE.Bho.1\CLSID
HKCR\TypeLib\{087C4054-0A2B-4F35-B0DB-BED3E21650F4}
HKCR\TypeLib\{087C4054-0A2B-4F35-B0DB-BED3E21650F4}\1.0
HKCR\TypeLib\{087C4054-0A2B-4F35-B0DB-BED3E21650F4}\1.0\0
HKCR\TypeLib\{087C4054-0A2B-4F35-B0DB-BED3E21650F4}\1.0\0\win32
HKCR\TypeLib\{087C4054-0A2B-4F35-B0DB-BED3E21650F4}\1.0\FLAGS
HKCR\TypeLib\{087C4054-0A2B-4F35-B0DB-BED3E21650F4}\1.0\HELPDIR
HKLM\Software\Microsoft\Internet Explorer\Explorer Bars\{93B0FA7B-50F6-41B4-AC7E-612A72CE8C3C}
HKU\S-1-5-21-3456833437-288330390-3410507503-1012\Software\Microsoft\Internet Explorer\Explorer Bars\{93B0FA7B-50F6-41B4-AC7E-612A72CE8C3C}
Adware.Zango Toolbar/Hb
HKCR\CoreSrv.CoreServices
HKCR\CoreSrv.CoreServices\CLSID
HKCR\CoreSrv.CoreServices\CurVer
HKCR\CoreSrv.CoreServices.1
HKCR\CoreSrv.CoreServices.1\CLSID
HKCR\CoreSrv.LfgAx
HKCR\CoreSrv.LfgAx\CLSID
HKCR\CoreSrv.LfgAx\CurVer
HKCR\CoreSrv.LfgAx.1
HKCR\CoreSrv.LfgAx.1\CLSID
HKCR\HBMain.CommBand
HKCR\HBMain.CommBand\CLSID
HKCR\HBMain.CommBand\CurVer
HKCR\HBMain.CommBand.1
HKCR\HBMain.CommBand.1\CLSID
HKCR\hbr.HbMain
HKCR\hbr.HbMain\CLSID
HKCR\hbr.HbMain\CurVer
HKCR\hbr.HbMain.1
HKCR\hbr.HbMain.1\CLSID
HKCR\CLSID\{BF1BF02C-5A86-4ECF-ADAC-472C54C4D21E}
HKCR\CLSID\{BF1BF02C-5A86-4ECF-ADAC-472C54C4D21E}\Implemented Categories
HKCR\CLSID\{BF1BF02C-5A86-4ECF-ADAC-472C54C4D21E}\Implemented Categories\{74ADCF99-79A1-44E1-B4F7-45611145D2D0}
HKCR\TypeLib\{229D2451-A617-4B30-B5E8-8138694240CB}
HKCR\TypeLib\{229D2451-A617-4B30-B5E8-8138694240CB}\1.0
HKCR\TypeLib\{229D2451-A617-4B30-B5E8-8138694240CB}\1.0\0
HKCR\TypeLib\{229D2451-A617-4B30-B5E8-8138694240CB}\1.0\0\win32
HKCR\TypeLib\{229D2451-A617-4B30-B5E8-8138694240CB}\1.0\FLAGS
HKCR\TypeLib\{229D2451-A617-4B30-B5E8-8138694240CB}\1.0\HELPDIR
HKCR\Interface\{00B77587-BE1B-4201-B8E9-09FCF50AB771}
HKCR\Interface\{00B77587-BE1B-4201-B8E9-09FCF50AB771}\ProxyStubClsid
HKCR\Interface\{00B77587-BE1B-4201-B8E9-09FCF50AB771}\ProxyStubClsid32
HKCR\Interface\{00B77587-BE1B-4201-B8E9-09FCF50AB771}\TypeLib
HKCR\Interface\{00B77587-BE1B-4201-B8E9-09FCF50AB771}\TypeLib#Version
HKCR\Interface\{2E623B96-B166-4C70-8169-820761794299}
HKCR\Interface\{2E623B96-B166-4C70-8169-820761794299}\ProxyStubClsid
HKCR\Interface\{2E623B96-B166-4C70-8169-820761794299}\ProxyStubClsid32
HKCR\Interface\{2E623B96-B166-4C70-8169-820761794299}\TypeLib
HKCR\Interface\{2E623B96-B166-4C70-8169-820761794299}\TypeLib#Version
HKCR\Interface\{4E8B851B-05B0-4BAF-B24D-D0DFE88DDED3}
HKCR\Interface\{4E8B851B-05B0-4BAF-B24D-D0DFE88DDED3}\ProxyStubClsid
HKCR\Interface\{4E8B851B-05B0-4BAF-B24D-D0DFE88DDED3}\ProxyStubClsid32
HKCR\Interface\{4E8B851B-05B0-4BAF-B24D-D0DFE88DDED3}\TypeLib
HKCR\Interface\{4E8B851B-05B0-4BAF-B24D-D0DFE88DDED3}\TypeLib#Version
HKCR\Interface\{5A4737A8-B92A-4E54-970E-C2891D98CE3F}
HKCR\Interface\{5A4737A8-B92A-4E54-970E-C2891D98CE3F}\ProxyStubClsid
HKCR\Interface\{5A4737A8-B92A-4E54-970E-C2891D98CE3F}\ProxyStubClsid32
HKCR\Interface\{5A4737A8-B92A-4E54-970E-C2891D98CE3F}\TypeLib
HKCR\Interface\{5A4737A8-B92A-4E54-970E-C2891D98CE3F}\TypeLib#Version
HKCR\Interface\{62B0B239-F9AC-4A5B-BFAE-62C7A23F7627}
HKCR\Interface\{62B0B239-F9AC-4A5B-BFAE-62C7A23F7627}\ProxyStubClsid
HKCR\Interface\{62B0B239-F9AC-4A5B-BFAE-62C7A23F7627}\ProxyStubClsid32
HKCR\Interface\{62B0B239-F9AC-4A5B-BFAE-62C7A23F7627}\TypeLib
HKCR\Interface\{62B0B239-F9AC-4A5B-BFAE-62C7A23F7627}\TypeLib#Version
HKCR\Interface\{726F0AB9-B842-4AE4-90C7-230E233E6A99}
HKCR\Interface\{726F0AB9-B842-4AE4-90C7-230E233E6A99}\ProxyStubClsid
HKCR\Interface\{726F0AB9-B842-4AE4-90C7-230E233E6A99}\ProxyStubClsid32
HKCR\Interface\{726F0AB9-B842-4AE4-90C7-230E233E6A99}\TypeLib
HKCR\Interface\{726F0AB9-B842-4AE4-90C7-230E233E6A99}\TypeLib#Version
HKCR\Interface\{ACE99E77-AA2A-43C2-8C9D-CAF2020FDF2B}
HKCR\Interface\{ACE99E77-AA2A-43C2-8C9D-CAF2020FDF2B}\ProxyStubClsid
HKCR\Interface\{ACE99E77-AA2A-43C2-8C9D-CAF2020FDF2B}\ProxyStubClsid32
HKCR\Interface\{ACE99E77-AA2A-43C2-8C9D-CAF2020FDF2B}\TypeLib
HKCR\Interface\{ACE99E77-AA2A-43C2-8C9D-CAF2020FDF2B}\TypeLib#Version
HKCR\Interface\{B9CC2B92-5611-453F-8381-8B6F72D9C0B8}
HKCR\Interface\{B9CC2B92-5611-453F-8381-8B6F72D9C0B8}\ProxyStubClsid
HKCR\Interface\{B9CC2B92-5611-453F-8381-8B6F72D9C0B8}\ProxyStubClsid32
HKCR\Interface\{B9CC2B92-5611-453F-8381-8B6F72D9C0B8}\TypeLib
HKCR\Interface\{B9CC2B92-5611-453F-8381-8B6F72D9C0B8}\TypeLib#Version
HKCR\Interface\{C4543E64-1498-410D-8E72-4744EEA99AB9}
HKCR\Interface\{C4543E64-1498-410D-8E72-4744EEA99AB9}\ProxyStubClsid
HKCR\Interface\{C4543E64-1498-410D-8E72-4744EEA99AB9}\ProxyStubClsid32
HKCR\Interface\{C4543E64-1498-410D-8E72-4744EEA99AB9}\TypeLib
HKCR\Interface\{C4543E64-1498-410D-8E72-4744EEA99AB9}\TypeLib#Version
HKCR\Interface\{E0FB1610-B25B-49F6-BE20-751B2F230E6F}
HKCR\Interface\{E0FB1610-B25B-49F6-BE20-751B2F230E6F}\ProxyStubClsid
HKCR\Interface\{E0FB1610-B25B-49F6-BE20-751B2F230E6F}\ProxyStubClsid32
HKCR\Interface\{E0FB1610-B25B-49F6-BE20-751B2F230E6F}\TypeLib
HKCR\Interface\{E0FB1610-B25B-49F6-BE20-751B2F230E6F}\TypeLib#Version
C:\Documents and Settings\owner 2\Application Data\Zango
Malware.PestCapture
C:\Program Files\PestCapture\PestCapture.lic
C:\Program Files\PestCapture\Uninstall.exe
C:\Program Files\PestCapture
Browser Hijacker.Favorites
C:\DOCUMENTS AND SETTINGS\OWNER 2\FAVORITES\ONLINE SECURITY TEST.URL
Trojan.Unknown Origin
C:\DOCUMENTS AND SETTINGS\OWNER 2\LOCAL SETTINGS\TEMP\OSI216.TMP
C:\SYSTEM VOLUME INFORMATION\_RESTORE{7182866A-7B67-4D45-9C1F-A24DD0248D4C}\RP842\A1234539.ICO
C:\SYSTEM VOLUME INFORMATION\_RESTORE{7182866A-7B67-4D45-9C1F-A24DD0248D4C}\RP842\A1234540.ICO
Adware.MovieLand/MediaPipe
C:\PROGRAM FILES\FSUPPORT\NOTIFIER.EXE
Adware.180solutions/ZangoSearch
C:\PROGRAM FILES\MOZILLA FIREFOX\PLUGINS\NPCLNTAX_ZANGOSA.DLL
C:\SYSTEM VOLUME INFORMATION\_RESTORE{7182866A-7B67-4D45-9C1F-A24DD0248D4C}\RP839\A1232517.DLL
C:\SYSTEM VOLUME INFORMATION\_RESTORE{7182866A-7B67-4D45-9C1F-A24DD0248D4C}\RP839\A1232521.DLL
C:\SYSTEM VOLUME INFORMATION\_RESTORE{7182866A-7B67-4D45-9C1F-A24DD0248D4C}\RP839\A1232522.DLL
C:\SYSTEM VOLUME INFORMATION\_RESTORE{7182866A-7B67-4D45-9C1F-A24DD0248D4C}\RP839\A1232523.DLL
C:\SYSTEM VOLUME INFORMATION\_RESTORE{7182866A-7B67-4D45-9C1F-A24DD0248D4C}\RP854\A1256393.EXE
Adware.WhenU
C:\SYSTEM VOLUME INFORMATION\_RESTORE{7182866A-7B67-4D45-9C1F-A24DD0248D4C}\RP842\A1234536.EXE
RelevantKnowledge Spyware Component
C:\SYSTEM VOLUME INFORMATION\_RESTORE{7182866A-7B67-4D45-9C1F-A24DD0248D4C}\RP842\A1234708.DLL
Adware.WildMedia/Midaddle
C:\SYSTEM VOLUME INFORMATION\_RESTORE{7182866A-7B67-4D45-9C1F-A24DD0248D4C}\RP852\A1244235.EXE
Unclassified.Unknown Origin
C:\WINDOWS\SYSTEM32\EYUFYR.EXE
hijackthis log:
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 18:12:06, on 18/09/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16512)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\TGTSoft\StyleXP\StyleXPService.exe
C:\WINDOWS\system32\ZoneLabs\vsmon.exe
C:\WINDOWS\system32\ZoneLabs\avsys\ScanningProcess.exe
C:\WINDOWS\system32\ZoneLabs\avsys\ScanningProcess.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
C:\Program Files\PowerISO\PWRISOVM.EXE
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\MSN Messenger\MsnMsgr.Exe
C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe
C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe
C:\Program Files\MagicDisc\MagicDisc.exe
C:\Program Files\Common Files\Ahead\Lib\NMIndexStoreSvr.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
C:\Documents and Settings\owner 2\Desktop\HiJackThis(2)\hello.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page =
http://www.google.co.uk/ig?hl=en
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost
O4 - HKLM\..\Run: [ZoneAlarm Client] "C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe"
O4 - HKLM\..\Run: [Sony Ericsson PC Suite] "C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe" /startoptions
O4 - HKLM\..\Run: [PWRISOVM.EXE] C:\Program Files\PowerISO\PWRISOVM.EXE
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [ccApp] C:\Program Files\Common Files\Symantec Shared\ccApp.exe
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [MoneyAgent] "C:\Program Files\Microsoft Money\System\mnyexpr.exe"
O4 - HKCU\..\Run: [BitTorrent] "C:\Program Files\BitTorrent\bittorrent.exe" --force_start_minimized
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe"
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - Startup: Adobe Gamma.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Startup: MagicDisc.lnk = C:\Program Files\MagicDisc\MagicDisc.exe
O4 - Startup: RollerCoaster Tycoon 3 Registration.lnk = C:\Documents and Settings\owner 2\Local Settings\Temp\{E866FDA1-C08F-4A82-99EC-9089EBEAF197}\{907B4640-266B-4A21-92FB-CD1A86CD0F63}\ATR1.exe
O4 - Startup: RollerCoaster Tycoon 3_ Wild Registration.lnk = C:\Documents and Settings\owner 2\Local Settings\Temp\{9E665785-D1C1-4F14-994B-88060765C736}\{45653847-497F-47BB-A878-46FBDE34A3E0}\ATR1.exe
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O8 - Extra context menu item: E&xport to Microsoft Excel -
res://C:\PROGRA~1\MICROS~4\Office10\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_02\bin\npjpi160_02.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_02\bin\npjpi160_02.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {1239CC52-59EF-4DFA-8C61-90FFA846DF7E} -
http://www.musicnotes.com/download/mnviewer.cab
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) -
http://go.microsoft.com/fwlink/?linkid=39204
O16 - DPF: {288C5F13-7E52-4ADA-A32E-F5BF9D125F98} -
http://www.miniclip.com/platypus/miniclipGameLoader.dll
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:\Program Files\Yahoo!\Common\yinsthelper.dll
O16 - DPF: {34F12AFD-E9B5-492A-85D2-40FA4535BE83} (AxProdInfoCtl Class) -
http://www.symantec.com/techsupp/active ... rdtinf.cab
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) -
http://messenger.zone.msn.com/binary/Me ... Client.cab
O16 - DPF: {A8F2B9BD-A6A0-486A-9744-18920D898429} (ScorchPlugin Class) -
http://www.sibelius.com/download/softwa ... Plugin.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) -
http://fpdownload2.macromedia.com/get/s ... wflash.cab
O20 - Winlogon Notify: !SASWinLogon - C:\Program Files\SUPERAntiSpyware\SASWINLO.dll
O23 - Service: Ad-Aware 2007 Service (aawservice) - Lavasoft AB - C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: Automatic LiveUpdate Scheduler - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: Symantec IS Password Validation (ISPwdSvc) - Symantec Corporation - C:\Program Files\Norton AntiVirus\isPwdSvc.exe
O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - CACE Technologies - C:\Program Files\WinPcap\rpcapd.exe
O23 - Service: StyleXPService - Unknown owner - C:\Program Files\TGTSoft\StyleXP\StyleXPService.exe
O23 - Service: Symantec Core LC - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe
O23 - Service: Symantec AppCore Service (SymAppCore) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\AppCore\AppSvc32.exe
O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - C:\WINDOWS\system32\ZoneLabs\vsmon.exe
--
End of file - 7782 bytes
thank you for taking the time to have at look btw