Welcome to MalwareRemoval.com,
What if we told you that you could get malware removal help from experts, and that it was 100% free? MalwareRemoval.com provides free support for people with infected computers. Our help, and the tools we use are always 100% free. No hidden catch. We simply enjoy helping others. You enjoy a clean, safe computer.

Malware Removal Instructions

Board index Malware Removal ForumsInfected? Virus, malware, adware, ransomware, oh my!

Please Help Me!!! Here is my Hijack File.

MalwareRemoval.com provides free support for people with infected computers. Using plain language that anyone can understand, our community of volunteer experts will walk you through each step.
Topic locked

Please Help Me!!! Here is my Hijack File.

Unread postby Jessica » December 15th, 2005, 7:13 pm

I scan my computer ,but it can't find any more viruses. Help!!



Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\LEXBCES.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\LEXPPS.EXE
C:\WINDOWS\system32\AvidSDMService.exe
C:\WINDOWS\System32\drivers\CDAC11BA.EXE
C:\Program Files\Olympus\DeviceDetector\DM1Service.exe
C:\WINDOWS\System32\gearsec.exe
c:\program files\mcafee.com\agent\mcdetect.exe
c:\PROGRA~1\mcafee.com\vso\mcshield.exe
c:\PROGRA~1\mcafee.com\agent\mctskshd.exe
C:\PROGRA~1\McAfee.com\PERSON~1\MpfService.exe
C:\PROGRA~1\McAfee\SPAMKI~1\MSKSrvr.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Sony\VAIO Media Music Server\SSSvr.exe
C:\Program Files\Sony\Photo Server 20\appsrv\PicAppSrv.exe
C:\Program Files\Common Files\Sony Shared\VAIO Media Platform\SV_Httpd.exe
C:\WINDOWS\wanmpsvc.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Common Files\Sony Shared\VAIO Media Platform\sv_httpd.exe
C:\Program Files\Common Files\Sony Shared\VAIO Media Platform\UPnPFramework.exe
C:\Program Files\Common Files\Sony Shared\VAIO Media Platform\UPnPFramework.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\nvctrl.exe
C:\WINDOWS\system32\mssearchnet.exe
C:\WINDOWS\LTSMMSG.exe
C:\WINDOWS\System32\ezSP_Px.exe
C:\Program Files\McAfee.com\VSO\mcvsshld.exe
C:\Program Files\QUICKENW\QAGENT.EXE
c:\program files\mcafee.com\agent\mcagent.exe
c:\progra~1\mcafee.com\vso\mcvsescn.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\Program Files\DIGStream\digstream.exe
C:\WINDOWS\system32\mrtMngr.EXE
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\QuickTime\qttask.exe
C:\PROGRA~1\McAfee\SPAMKI~1\MSKAgent.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\Viewpoint\Viewpoint Manager\ViewMgr.exe
C:\Program Files\HP\hpcoretech\hpcmpmgr.exe
C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb10.exe
C:\Program Files\Hewlett-Packard\HP Software Update\HPWuSchd2.exe
C:\Program Files\McAfee.com\VSO\oasclnt.exe
C:\PROGRA~1\McAfee.com\PERSON~1\MpfTray.exe
C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\Olympus\DeviceDetector\DevDtct2.exe
C:\PROGRA~1\McAfee.com\PERSON~1\MpfAgent.exe
C:\Program Files\Sony\VAIO Action Setup\VAServ.exe
C:\Program Files\CMS Peripherals\BounceBack Express\BBLauncher.exe
c:\progra~1\mcafee.com\vso\mcvsftsn.exe
C:\PROGRA~1\MICROS~3\OFFICE11\OUTLOOK.EXE
C:\Program Files\Internet Explorer\iexplore.exe
C:\Hijackthis\hijackthis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.effectsearch.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.effectsearch.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,SearchURL = http://www.effectsearch.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.sony.com/vaiopeople
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.effectsearch.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.effectsearch.com
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://keyword.netscape.com/keyword/%s
R1 - HKLM\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://keyword.netscape.com/keyword/%s
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://www.screenblast.com/
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost
O2 - BHO: HomepageBHO - {1ca480cd-c0e5-4548-874e-b85b17905b3a} - C:\WINDOWS\system32\hpB29.tmp
O3 - Toolbar: EffectSearch - {F791F42C-F4C9-442A-8DA4-81FC42AD2EEE} - C:\WINDOWS\Search\EffectSearch.dll
O3 - Toolbar: McAfee VirusScan - {BA52B914-B692-46c4-B683-905236F6F655} - c:\progra~1\mcafee.com\vso\mcvsshl.dll
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE NvQTwk,NvCplDaemon initialize
O4 - HKLM\..\Run: [SiSUSBRG] C:\WINDOWS\SiSUSBrg.exe
O4 - HKLM\..\Run: [SiS KHooker] C:\WINDOWS\System32\khooker.exe
O4 - HKLM\..\Run: [LTSMMSG] LTSMMSG.exe
O4 - HKLM\..\Run: [ezShieldProtector for Px] C:\WINDOWS\System32\ezSP_Px.exe
O4 - HKLM\..\Run: [ZTgServerSwitch] c:\program files\support.com\client\bin\tgcmd.exe /server
O4 - HKLM\..\Run: [StorageGuard] "C:\Program Files\VERITAS Software\Update Manager\sgtray.exe" /r
O4 - HKLM\..\Run: [QuickFinder Scheduler] "C:\Program Files\Corel\WordPerfect Office 2002\Programs\QFSCHD100.EXE"
O4 - HKLM\..\Run: [MCAgentExe] c:\PROGRA~1\mcafee.com\agent\mcagent.exe files\mcafee.com\agent\mcagent.exe
O4 - HKLM\..\Run: [MCUpdateExe] c:\PROGRA~1\mcafee.com\agent\mcupdate.exe
O4 - HKLM\..\Run: [VirusScan Online] C:\Program Files\McAfee.com\VSO\mcvsshld.exe
O4 - HKLM\..\Run: [QAGENT] C:\Program Files\QUICKENW\QAGENT.EXE
O4 - HKLM\..\Run: [MediaFace Integration] C:\Program Files\Fellowes\MediaFACE 4.0\SetHook.exe
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [DIGStream] C:\Program Files\DIGStream\digstream.exe
O4 - HKLM\..\Run: [iTunesHelper] C:\Program Files\iTunes\iTunesHelper.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [VSOCheckTask] "C:\PROGRA~1\McAfee.com\VSO\mcmnhdlr.exe" /checktask
O4 - HKLM\..\Run: [MSKAGENTEXE] C:\PROGRA~1\McAfee\SPAMKI~1\MSKAgent.exe
O4 - HKLM\..\Run: [MSKDetectorExe] C:\PROGRA~1\McAfee\SPAMKI~1\MskDetct.exe /startup
O4 - HKLM\..\Run: [ViewMgr] C:\Program Files\Viewpoint\Viewpoint Manager\ViewMgr.exe
O4 - HKLM\..\Run: [HP Component Manager] "C:\Program Files\HP\hpcoretech\hpcmpmgr.exe"
O4 - HKLM\..\Run: [HPDJ Taskbar Utility] C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb10.exe
O4 - HKLM\..\Run: [HP Software Update] "C:\Program Files\Hewlett-Packard\HP Software Update\HPWuSchd2.exe"
O4 - HKLM\..\Run: [OASClnt] C:\Program Files\McAfee.com\VSO\oasclnt.exe
O4 - HKLM\..\Run: [MPFExe] C:\PROGRA~1\McAfee.com\PERSON~1\MpfTray.exe
O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [Syslib] C:\WINDOWS\syslib.exe
O4 - HKCU\..\Run: [MSKAGENTEXE] C:\PROGRA~1\McAfee\SPAMKI~1\MSKAgent.exe
O4 - Startup: BounceBack Launcher.lnk = ?
O4 - Global Startup: Device Detector 2.lnk = C:\Program Files\Olympus\DeviceDetector\DevDtct2.exe
O4 - Global Startup: Photo Loader supervisory.lnk = C:\Program Files\CASIO\Photo Loader\Plauto.exe
O4 - Global Startup: VAIO Action Setup (Server).lnk = ?
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~3\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\WINDOWS\System32\msjava.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\WINDOWS\System32\msjava.dll
O9 - Extra button: Spyware Doctor - {2D663D1A-8670-49D9-A1A5-4C56B4E14E84} - C:\WINDOWS\System32\shdocvw.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\OFFICE11\REFIEBAR.DLL
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O12 - Plugin for .spop: C:\Program Files\Internet Explorer\Plugins\NPDocBox.dll
O14 - IERESET.INF: START_PAGE_URL=http://www.sony.com/vaiopeople
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204
O23 - Service: Ati HotKey Poller - Unknown owner - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: Avid SDM Service (AvidSDMService) - Avid Technology, Inc. - C:\WINDOWS\system32\AvidSDMService.exe
O23 - Service: C-DillaCdaC11BA - Macrovision - C:\WINDOWS\System32\drivers\CDAC11BA.EXE
O23 - Service: DM1Service - OLYMPUS Corporation - C:\Program Files\Olympus\DeviceDetector\DM1Service.exe
O23 - Service: Gear Security Service (GEARSecurity) - GEAR Software - C:\WINDOWS\System32\gearsec.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iPod Service (iPodService) - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: LexBce Server (LexBceS) - Lexmark International, Inc. - C:\WINDOWS\system32\LEXBCES.EXE
O23 - Service: McAfee WSC Integration (McDetect.exe) - McAfee, Inc - c:\program files\mcafee.com\agent\mcdetect.exe
O23 - Service: McAfee.com McShield (McShield) - McAfee Inc. - c:\PROGRA~1\mcafee.com\vso\mcshield.exe
O23 - Service: McAfee Task Scheduler (McTskshd.exe) - McAfee, Inc - c:\PROGRA~1\mcafee.com\agent\mctskshd.exe
O23 - Service: McAfee SecurityCenter Update Manager (mcupdmgr.exe) - McAfee, Inc - C:\PROGRA~1\McAfee.com\Agent\mcupdmgr.exe
O23 - Service: McAfee Personal Firewall Service (MpfService) - McAfee Corporation - C:\PROGRA~1\McAfee.com\PERSON~1\MpfService.exe
O23 - Service: McAfee SpamKiller Server (MskService) - McAfee Inc. - C:\PROGRA~1\McAfee\SPAMKI~1\MSKSrvr.exe
O23 - Service: NVIDIA Driver Helper Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe
O23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - C:\PROGRA~1\COMMON~1\SONYSH~1\AVLib\Sptisrv.exe
O23 - Service: VAIO Media Music Server (Application) (VAIOMediaPlatform-MusicServer-AppServer) - Unknown owner - C:\Program Files\Sony\VAIO Media Music Server\SSSvr.exe" /Service=VAIOMediaPlatform-MusicServer-AppServer /DisplayName="VAIO Media Music Server (Application) (file missing)
O23 - Service: VAIO Media Music Server (HTTP) (VAIOMediaPlatform-MusicServer-HTTP) - Unknown owner - C:\Program Files\Common Files\Sony Shared\VAIO Media Platform\sv_httpd.exe" /Service=VAIOMediaPlatform-MusicServer-HTTP /RegRoot="Software\Sony Corporation\VAIO Media Platform\2.0" /RegExt="Applications\MusicServer\HTTP (file missing)
O23 - Service: VAIO Media Music Server (UPnP) (VAIOMediaPlatform-MusicServer-UPnP) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\VAIO Media Platform\UPnPFramework.exe
O23 - Service: VAIO Media Photo Server (Application) (VAIOMediaPlatform-PhotoServer-AppServer) - Unknown owner - C:\Program Files\Sony\Photo Server 20\appsrv\PicAppSrv.exe
O23 - Service: VAIO Media Photo Server (HTTP) (VAIOMediaPlatform-PhotoServer-HTTP) - Unknown owner - C:\Program Files\Common Files\Sony Shared\VAIO Media Platform\SV_Httpd.exe" /Service=VAIOMediaPlatform-PhotoServer-HTTP /RegRoot="Software\Sony Corporation\VAIO Media Platform\2.0" /RegExt="\Applications\PhotoServer\HTTP (file missing)
O23 - Service: VAIO Media Photo Server (UPnP) (VAIOMediaPlatform-PhotoServer-UPnP) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\VAIO Media Platform\UPnPFramework.exe
O23 - Service: WAN Miniport (ATW) Service (WANMiniportService) - America Online, Inc. - C:\WINDOWS\wanmpsvc.exe
Jessica
Active Member
 
Posts: 2
Joined: December 15th, 2005, 6:24 pm
Top
Advertisement
Register to Remove

Unread postby LDTate » December 15th, 2005, 8:39 pm

Hello Jessica, welcome to the forum


Please read these instructions carefully and print them out! Be sure to follow ALL instructions!

Please print out or copy these instructions\tutorials to Notepad as the internet will not be (while in Safe Mode) available to you at certain points of the removal process. Make sure to work through all the Steps in the exact order in which they are listed below. If there's anything that you don't understand, ask your question(s) before moving on with the fixes.

Download SmitRem.exe © noahdfear to your Desktop.
From http://noahdfear.geekstogo.com/click%20 ... k.php?id=1"

Double-click the smitRem.exe and it will extract the files to a smitRem folder on your Desktop.



Please download the trial version of ewido security suite. Install ewido security suite and start the program from the icon on your desktop, then check for and download updates. Don't Run Yet.


Reboot to safe mode and open the smitfraud folder, then double click the RunThis.bat file to start the tool. Follow the prompts on screen. When the tool completes:


Run hijackthis. Hit None of the above, Click Do a System Scan Only. Put a Check in the box on the left side on these:

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.effectsearch.com

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.effectsearch.com

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,SearchURL = http://www.effectsearch.com

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.effectsearch.com

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.effectsearch.com

R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://www.screenblast.com/

O2 - BHO: HomepageBHO - {1ca480cd-c0e5-4548-874e-b85b17905b3a} - C:\WINDOWS\system32\hpB29.tmp

O3 - Toolbar: EffectSearch - {F791F42C-F4C9-442A-8DA4-81FC42AD2EEE} - C:\WINDOWS\Search\EffectSearch.dll

O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot

O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime

O4 - HKLM\..\Run: [ViewMgr] C:\Program Files\Viewpoint\Viewpoint Manager\ViewMgr.exe

O4 - HKLM\..\Run: [HP Component Manager] "C:\Program Files\HP\hpcoretech\hpcmpmgr.exe"

O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k

O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background

O4 - HKCU\..\Run: [Syslib] C:\WINDOWS\syslib.exe


Close ALL windows and browsers except HijackThis and click "Fix checked"

use Add/Remove programs and remove:
Viewpoint Manager

Delete these files if listed.
C:\WINDOWS\system32\mssearchnet.exe
C:\WINDOWS\system32\nvctrl.exe
C:\WINDOWS\syslib.exe


Open Ewido Security Suite
  • Click on scanner
  • Make sure the following boxes are checked before scanning:
    • Binder
    • Crypter
    • Archives
  • Click on Start Scan
  • Let the program scan the machine
While the scan is in progress you will be prompted to clean files, click OK

Once the scan has completed, there will be a button located on the bottom of the screen named Save report
  • Click Save report
  • Save the report to your desktop



In the Control Panel click Display > Desktop > Customize desktop > Website > Uncheck "Security Info" if present.

Empty recycle bin.

Reboot and "copy/paste" a new HijackThis log and the Ewido log.
Also please describe how your computer behaves at the moment.
User avatar
LDTate
WTT Teacher
WTT Teacher
 
Posts: 3920
Joined: February 18th, 2005, 8:38 pm
Location: Missouri, USA
Top

Unread postby Jessica » December 16th, 2005, 12:16 am

Thank You so much !! My computer is working great!!

Here are my reports


Logfile of HijackThis v1.99.1
Scan saved at 9:12:17 PM, on 12/15/2005
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\LEXBCES.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\LEXPPS.EXE
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\AvidSDMService.exe
C:\WINDOWS\System32\drivers\CDAC11BA.EXE
C:\Program Files\Olympus\DeviceDetector\DM1Service.exe
C:\Program Files\ewido\security suite\ewidoctrl.exe
C:\Program Files\ewido\security suite\ewidoguard.exe
C:\WINDOWS\System32\gearsec.exe
c:\program files\mcafee.com\agent\mcdetect.exe
c:\PROGRA~1\mcafee.com\vso\mcshield.exe
c:\PROGRA~1\mcafee.com\agent\mctskshd.exe
C:\WINDOWS\LTSMMSG.exe
C:\WINDOWS\System32\ezSP_Px.exe
c:\PROGRA~1\mcafee.com\vso\OasClnt.exe
C:\PROGRA~1\mcafee.com\agent\mcagent.exe
C:\Program Files\McAfee.com\VSO\mcvsshld.exe
C:\PROGRA~1\McAfee.com\PERSON~1\MpfService.exe
C:\Program Files\QUICKENW\QAGENT.EXE
c:\progra~1\mcafee.com\vso\mcvsescn.exe
C:\Program Files\DIGStream\digstream.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\PROGRA~1\McAfee\SPAMKI~1\MSKAgent.exe
C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb10.exe
C:\Program Files\Hewlett-Packard\HP Software Update\HPWuSchd2.exe
C:\WINDOWS\system32\mrtMngr.EXE
C:\PROGRA~1\McAfee.com\PERSON~1\MpfTray.exe
C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Olympus\DeviceDetector\DevDtct2.exe
C:\Program Files\CASIO\Photo Loader\Plauto.exe
C:\Program Files\Sony\VAIO Action Setup\VAServ.exe
C:\Program Files\Sony\VAIO Media Music Server\SSSvr.exe
C:\Program Files\CMS Peripherals\BounceBack Express\BBLauncher.exe
C:\Program Files\Sony\Photo Server 20\appsrv\PicAppSrv.exe
C:\WINDOWS\wanmpsvc.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Common Files\Sony Shared\VAIO Media Platform\SV_Httpd.exe
C:\Program Files\Common Files\Sony Shared\VAIO Media Platform\sv_httpd.exe
C:\Program Files\Common Files\Sony Shared\VAIO Media Platform\UPnPFramework.exe
C:\Program Files\Common Files\Sony Shared\VAIO Media Platform\UPnPFramework.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\PROGRA~1\McAfee.com\PERSON~1\MpfAgent.exe
C:\WINDOWS\system32\wuauclt.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Hijackthis\hijackthis.exe

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.sony.com/vaiopeople
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://keyword.netscape.com/keyword/%s
R1 - HKLM\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://keyword.netscape.com/keyword/%s
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost
O3 - Toolbar: McAfee VirusScan - {BA52B914-B692-46c4-B683-905236F6F655} - c:\progra~1\mcafee.com\vso\mcvsshl.dll
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE NvQTwk,NvCplDaemon initialize
O4 - HKLM\..\Run: [SiSUSBRG] C:\WINDOWS\SiSUSBrg.exe
O4 - HKLM\..\Run: [SiS KHooker] C:\WINDOWS\System32\khooker.exe
O4 - HKLM\..\Run: [LTSMMSG] LTSMMSG.exe
O4 - HKLM\..\Run: [ezShieldProtector for Px] C:\WINDOWS\System32\ezSP_Px.exe
O4 - HKLM\..\Run: [ZTgServerSwitch] c:\program files\support.com\client\bin\tgcmd.exe /server
O4 - HKLM\..\Run: [StorageGuard] "C:\Program Files\VERITAS Software\Update Manager\sgtray.exe" /r
O4 - HKLM\..\Run: [QuickFinder Scheduler] "C:\Program Files\Corel\WordPerfect Office 2002\Programs\QFSCHD100.EXE"
O4 - HKLM\..\Run: [MCAgentExe] c:\PROGRA~1\mcafee.com\agent\mcagent.exe files\mcafee.com\agent\mcagent.exe
O4 - HKLM\..\Run: [MCUpdateExe] C:\PROGRA~1\mcafee.com\agent\McUpdate.exe
O4 - HKLM\..\Run: [VirusScan Online] C:\Program Files\McAfee.com\VSO\mcvsshld.exe
O4 - HKLM\..\Run: [QAGENT] C:\Program Files\QUICKENW\QAGENT.EXE
O4 - HKLM\..\Run: [MediaFace Integration] C:\Program Files\Fellowes\MediaFACE 4.0\SetHook.exe
O4 - HKLM\..\Run: [DIGStream] C:\Program Files\DIGStream\digstream.exe
O4 - HKLM\..\Run: [iTunesHelper] C:\Program Files\iTunes\iTunesHelper.exe
O4 - HKLM\..\Run: [VSOCheckTask] "C:\PROGRA~1\McAfee.com\VSO\mcmnhdlr.exe" /checktask
O4 - HKLM\..\Run: [MSKAGENTEXE] C:\PROGRA~1\McAfee\SPAMKI~1\MSKAgent.exe
O4 - HKLM\..\Run: [MSKDetectorExe] C:\PROGRA~1\McAfee\SPAMKI~1\MskDetct.exe /startup
O4 - HKLM\..\Run: [HPDJ Taskbar Utility] C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb10.exe
O4 - HKLM\..\Run: [HP Software Update] "C:\Program Files\Hewlett-Packard\HP Software Update\HPWuSchd2.exe"
O4 - HKLM\..\Run: [OASClnt] C:\Program Files\McAfee.com\VSO\oasclnt.exe
O4 - HKLM\..\Run: [MPFExe] C:\PROGRA~1\McAfee.com\PERSON~1\MpfTray.exe
O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
O4 - HKCU\..\Run: [MSKAGENTEXE] C:\PROGRA~1\McAfee\SPAMKI~1\MSKAgent.exe
O4 - Startup: BounceBack Launcher.lnk = ?
O4 - Global Startup: Device Detector 2.lnk = C:\Program Files\Olympus\DeviceDetector\DevDtct2.exe
O4 - Global Startup: Photo Loader supervisory.lnk = C:\Program Files\CASIO\Photo Loader\Plauto.exe
O4 - Global Startup: VAIO Action Setup (Server).lnk = ?
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~3\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\WINDOWS\System32\msjava.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\WINDOWS\System32\msjava.dll
O9 - Extra button: Spyware Doctor - {2D663D1A-8670-49D9-A1A5-4C56B4E14E84} - C:\WINDOWS\System32\shdocvw.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\OFFICE11\REFIEBAR.DLL
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O12 - Plugin for .spop: C:\Program Files\Internet Explorer\Plugins\NPDocBox.dll
O14 - IERESET.INF: START_PAGE_URL=http://www.sony.com/vaiopeople
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204
O23 - Service: Ati HotKey Poller - Unknown owner - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: Avid SDM Service (AvidSDMService) - Avid Technology, Inc. - C:\WINDOWS\system32\AvidSDMService.exe
O23 - Service: C-DillaCdaC11BA - Macrovision - C:\WINDOWS\System32\drivers\CDAC11BA.EXE
O23 - Service: DM1Service - OLYMPUS Corporation - C:\Program Files\Olympus\DeviceDetector\DM1Service.exe
O23 - Service: ewido security suite control - ewido networks - C:\Program Files\ewido\security suite\ewidoctrl.exe
O23 - Service: ewido security suite guard - ewido networks - C:\Program Files\ewido\security suite\ewidoguard.exe
O23 - Service: Gear Security Service (GEARSecurity) - GEAR Software - C:\WINDOWS\System32\gearsec.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iPod Service (iPodService) - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: LexBce Server (LexBceS) - Lexmark International, Inc. - C:\WINDOWS\system32\LEXBCES.EXE
O23 - Service: McAfee WSC Integration (McDetect.exe) - McAfee, Inc - c:\program files\mcafee.com\agent\mcdetect.exe
O23 - Service: McAfee.com McShield (McShield) - McAfee Inc. - c:\PROGRA~1\mcafee.com\vso\mcshield.exe
O23 - Service: McAfee Task Scheduler (McTskshd.exe) - McAfee, Inc - c:\PROGRA~1\mcafee.com\agent\mctskshd.exe
O23 - Service: McAfee SecurityCenter Update Manager (mcupdmgr.exe) - McAfee, Inc - C:\PROGRA~1\McAfee.com\Agent\mcupdmgr.exe
O23 - Service: McAfee Personal Firewall Service (MpfService) - McAfee Corporation - C:\PROGRA~1\McAfee.com\PERSON~1\MpfService.exe
O23 - Service: McAfee SpamKiller Server (MskService) - McAfee Inc. - C:\PROGRA~1\McAfee\SPAMKI~1\MSKSrvr.exe
O23 - Service: NVIDIA Driver Helper Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe
O23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - C:\PROGRA~1\COMMON~1\SONYSH~1\AVLib\Sptisrv.exe
O23 - Service: VAIO Media Music Server (Application) (VAIOMediaPlatform-MusicServer-AppServer) - Unknown owner - C:\Program Files\Sony\VAIO Media Music Server\SSSvr.exe" /Service=VAIOMediaPlatform-MusicServer-AppServer /DisplayName="VAIO Media Music Server (Application) (file missing)
O23 - Service: VAIO Media Music Server (HTTP) (VAIOMediaPlatform-MusicServer-HTTP) - Unknown owner - C:\Program Files\Common Files\Sony Shared\VAIO Media Platform\sv_httpd.exe" /Service=VAIOMediaPlatform-MusicServer-HTTP /RegRoot="Software\Sony Corporation\VAIO Media Platform\2.0" /RegExt="Applications\MusicServer\HTTP (file missing)
O23 - Service: VAIO Media Music Server (UPnP) (VAIOMediaPlatform-MusicServer-UPnP) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\VAIO Media Platform\UPnPFramework.exe
O23 - Service: VAIO Media Photo Server (Application) (VAIOMediaPlatform-PhotoServer-AppServer) - Unknown owner - C:\Program Files\Sony\Photo Server 20\appsrv\PicAppSrv.exe
O23 - Service: VAIO Media Photo Server (HTTP) (VAIOMediaPlatform-PhotoServer-HTTP) - Unknown owner - C:\Program Files\Common Files\Sony Shared\VAIO Media Platform\SV_Httpd.exe" /Service=VAIOMediaPlatform-PhotoServer-HTTP /RegRoot="Software\Sony Corporation\VAIO Media Platform\2.0" /RegExt="\Applications\PhotoServer\HTTP (file missing)
O23 - Service: VAIO Media Photo Server (UPnP) (VAIOMediaPlatform-PhotoServer-UPnP) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\VAIO Media Platform\UPnPFramework.exe
O23 - Service: WAN Miniport (ATW) Service (WANMiniportService) - America Online, Inc. - C:\WINDOWS\wanmpsvc.exe



C:\Documents and Settings\boyce markham\Cookies\boyce markham@2o7[1].txt -> Spyware.Cookie.2o7 : Cleaned with backup
C:\Documents and Settings\boyce markham\Cookies\boyce markham@advertising[1].txt -> Spyware.Cookie.Advertising : Cleaned with backup
C:\Documents and Settings\boyce markham\Cookies\boyce markham@doubleclick[1].txt -> Spyware.Cookie.Doubleclick : Cleaned with backup
C:\Documents and Settings\boyce markham\Cookies\boyce markham@e-2dj6wjliqnazmco.stats.esomniture[2].txt -> Spyware.Cookie.Esomniture : Cleaned with backup
C:\Documents and Settings\boyce markham\Cookies\boyce markham@e-2dj6wjnyggajcdo.stats.esomniture[1].txt -> Spyware.Cookie.Esomniture : Cleaned with backup
C:\Documents and Settings\boyce markham\Cookies\boyce markham@linksynergy[1].txt -> Spyware.Cookie.Linksynergy : Cleaned with backup
C:\Documents and Settings\boyce markham\Cookies\boyce markham@stat.onestat[2].txt -> Spyware.Cookie.Onestat : Cleaned with backup
C:\Documents and Settings\boyce markham\Cookies\boyce markham@statcounter[1].txt -> Spyware.Cookie.Statcounter : Cleaned with backup
C:\Documents and Settings\boyce markham\Cookies\boyce markham@tribalfusion[1].txt -> Spyware.Cookie.Tribalfusion : Cleaned with backup
C:\Documents and Settings\boyce markham\Cookies\boyce markham@z1.adserver[2].txt -> Spyware.Cookie.Adserver : Cleaned with backup
C:\Documents and Settings\jessica markham\Cookies\jessica markham@-1shz2prbmdj6wvny-1sez2pra2dj6w ... esomniture[2].txt -> Spyware.Cookie.Esomniture : Cleaned with backup
C:\Documents and Settings\jessica markham\Cookies\jessica markham@ad.yieldmanager[1].txt -> Spyware.Cookie.Yieldmanager : Cleaned with backup
C:\Documents and Settings\jessica markham\Cookies\jessica markham@www.burstbeacon[1].txt -> Spyware.Cookie.Burstbeacon : Cleaned with backup
C:\Documents and Settings\jessica markham\Cookies\jessica markham@www2.enigmasoftwaregroup[1].txt -> Spyware.Cookie.Enigmasoftwaregroup : Cleaned with backup
C:\Documents and Settings\jessica markham\Cookies\jessica markham@y-1shz2prbmdj6wvny-1sez2pra2dj6 ... esomniture[1].txt -> Spyware.Cookie.Esomniture : Cleaned with backup
C:\Documents and Settings\jessica markham\Cookies\jessica markham@y-1shz2prbmdj6wvny-1sez2pra2dj6 ... esomniture[1].txt -> Spyware.Cookie.Esomniture : Cleaned with backup
C:\Documents and Settings\jessica markham\Cookies\jessica markham@y-1shz2prbmdj6wvny-1sez2pra2dj6 ... esomniture[1].txt -> Spyware.Cookie.Esomniture : Cleaned with backup
C:\Documents and Settings\jessica markham\Cookies\jessica markham@y-1shz2prbmdj6wvny-1sez2pra2dj6 ... esomniture[1].txt -> Spyware.Cookie.Esomniture : Cleaned with backup
C:\Documents and Settings\jessica markham\Cookies\jessica markham@y-1shz2prbmdj6wvny-1sez2pra2dj6 ... esomniture[1].txt -> Spyware.Cookie.Esomniture : Cleaned with backup
C:\Documents and Settings\jessica markham\Cookies\jessica markham@y-1shz2prbmdj6wvny-1sez2pra2dj6 ... esomniture[1].txt -> Spyware.Cookie.Esomniture : Cleaned with backup
C:\Documents and Settings\jessica markham\Cookies\jessica markham@y-1shz2prbmdj6wvny-1sez2pra2dj6 ... esomniture[1].txt -> Spyware.Cookie.Esomniture : Cleaned with backup
C:\Documents and Settings\jessica markham\Cookies\jessica markham@y-1shz2prbmdj6wvny-1sez2pra2dj6 ... esomniture[2].txt -> Spyware.Cookie.Esomniture : Cleaned with backup
C:\Documents and Settings\jessica markham\Cookies\jessica markham@y-1shz2prbmdj6wvny-1sez2pra2dj6 ... esomniture[1].txt -> Spyware.Cookie.Esomniture : Cleaned with backup
C:\Documents and Settings\jessica markham\Cookies\jessica markham@y-1shz2prbmdj6wvny-1sez2pra2dj6 ... esomniture[2].txt -> Spyware.Cookie.Esomniture : Cleaned with backup
C:\Documents and Settings\jessica markham\Cookies\jessica markham@y-1shz2prbmdj6wvny-1sez2pra2dj6 ... esomniture[2].txt -> Spyware.Cookie.Esomniture : Cleaned with backup
C:\Documents and Settings\jessica markham\Cookies\jessica markham@y-1shz2prbmdj6wvny-1sez2pra2dj6 ... esomniture[1].txt -> Spyware.Cookie.Esomniture : Cleaned with backup
C:\Documents and Settings\jessica markham\Cookies\jessica markham@y-1shz2prbmdj6wvny-1sez2pra2dj6 ... esomniture[1].txt -> Spyware.Cookie.Esomniture : Cleaned with backup
C:\Documents and Settings\jessica markham\Cookies\jessica markham@y-1shz2prbmdj6wvny-1sez2pra2dj6 ... esomniture[2].txt -> Spyware.Cookie.Esomniture : Cleaned with backup
C:\Documents and Settings\jessica markham\Cookies\jessica markham@y-1shz2prbmdj6wvny-1sez2pra2dj6 ... esomniture[1].txt -> Spyware.Cookie.Esomniture : Cleaned with backup
C:\Documents and Settings\miranda markham.VALUED-CB7D4C82\Cookies\miranda markham@sales.liveperson[1].txt -> Spyware.Cookie.Liveperson : Cleaned with backup
C:\Program Files\Common Files\Sony Shared\Visualizer\ExlGen.dll -> Dialer.Generic : Cleaned with backup
C:\RECYCLER\S-1-5-21-1484400983-1445258045-4051706429-1006\Dc10.txt -> Spyware.Cookie.2o7 : Cleaned with backup
C:\RECYCLER\S-1-5-21-1484400983-1445258045-4051706429-1006\Dc102.txt -> Spyware.Cookie.Trafficmp : Cleaned with backup
C:\RECYCLER\S-1-5-21-1484400983-1445258045-4051706429-1006\Dc103.txt -> Spyware.Cookie.Valueclick : Cleaned with backup
C:\RECYCLER\S-1-5-21-1484400983-1445258045-4051706429-1006\Dc109.txt -> Spyware.Cookie.Commission-junction : Cleaned with backup
C:\RECYCLER\S-1-5-21-1484400983-1445258045-4051706429-1006\Dc123.txt -> Spyware.Cookie.Qksrv : Cleaned with backup
C:\RECYCLER\S-1-5-21-1484400983-1445258045-4051706429-1006\Dc15.txt -> Spyware.Cookie.Addynamix : Cleaned with backup
C:\RECYCLER\S-1-5-21-1484400983-1445258045-4051706429-1006\Dc18.txt -> Spyware.Cookie.Ads360 : Cleaned with backup
C:\RECYCLER\S-1-5-21-1484400983-1445258045-4051706429-1006\Dc19.txt -> Spyware.Cookie.Ads360 : Cleaned with backup
C:\RECYCLER\S-1-5-21-1484400983-1445258045-4051706429-1006\Dc21.txt -> Spyware.Cookie.Advertising : Cleaned with backup
C:\RECYCLER\S-1-5-21-1484400983-1445258045-4051706429-1006\Dc24.txt -> Spyware.Cookie.Atdmt : Cleaned with backup
C:\RECYCLER\S-1-5-21-1484400983-1445258045-4051706429-1006\Dc30.txt -> Spyware.Cookie.Bfast : Cleaned with backup
C:\RECYCLER\S-1-5-21-1484400983-1445258045-4051706429-1006\Dc31.txt -> Spyware.Cookie.Bluestreak : Cleaned with backup
C:\RECYCLER\S-1-5-21-1484400983-1445258045-4051706429-1006\Dc35.txt -> Spyware.Cookie.Clickagents : Cleaned with backup
C:\RECYCLER\S-1-5-21-1484400983-1445258045-4051706429-1006\Dc40.txt -> Spyware.Cookie.Coremetrics : Cleaned with backup
C:\RECYCLER\S-1-5-21-1484400983-1445258045-4051706429-1006\Dc42.txt -> Spyware.Cookie.Doubleclick : Cleaned with backup
C:\RECYCLER\S-1-5-21-1484400983-1445258045-4051706429-1006\Dc43.txt -> Spyware.Cookie.Hitbox : Cleaned with backup
C:\RECYCLER\S-1-5-21-1484400983-1445258045-4051706429-1006\Dc44.txt -> Spyware.Cookie.Hitbox : Cleaned with backup
C:\RECYCLER\S-1-5-21-1484400983-1445258045-4051706429-1006\Dc45.txt -> Spyware.Cookie.Hitbox : Cleaned with backup
C:\RECYCLER\S-1-5-21-1484400983-1445258045-4051706429-1006\Dc46.txt -> Spyware.Cookie.Hitbox : Cleaned with backup
C:\RECYCLER\S-1-5-21-1484400983-1445258045-4051706429-1006\Dc47.txt -> Spyware.Cookie.Hitbox : Cleaned with backup
C:\RECYCLER\S-1-5-21-1484400983-1445258045-4051706429-1006\Dc48.txt -> Spyware.Cookie.Hitbox : Cleaned with backup
C:\RECYCLER\S-1-5-21-1484400983-1445258045-4051706429-1006\Dc49.txt -> Spyware.Cookie.Hitbox : Cleaned with backup
C:\RECYCLER\S-1-5-21-1484400983-1445258045-4051706429-1006\Dc62.txt -> Spyware.Cookie.Hitbox : Cleaned with backup
C:\RECYCLER\S-1-5-21-1484400983-1445258045-4051706429-1006\Dc63.txt -> Spyware.Cookie.Hitbox : Cleaned with backup
C:\RECYCLER\S-1-5-21-1484400983-1445258045-4051706429-1006\Dc72.txt -> Spyware.Cookie.Mediaplex : Cleaned with backup
C:\RECYCLER\S-1-5-21-1484400983-1445258045-4051706429-1006\Dc81.txt -> Spyware.Cookie.Pointroll : Cleaned with backup
C:\RECYCLER\S-1-5-21-1484400983-1445258045-4051706429-1006\Dc82.txt -> Spyware.Cookie.Qksrv : Cleaned with backup
C:\RECYCLER\S-1-5-21-1484400983-1445258045-4051706429-1006\Dc83.txt -> Spyware.Cookie.Questionmarket : Cleaned with backup
C:\RECYCLER\S-1-5-21-1484400983-1445258045-4051706429-1006\Dc88.txt -> Spyware.Cookie.Advertising : Cleaned with backup
C:\RECYCLER\S-1-5-21-1484400983-1445258045-4051706429-1006\Dc89.txt -> Spyware.Cookie.Liveperson : Cleaned with backup
H:\Documents and Settings\boyce markham\Cookies\boyce markham@1shz2prbmdj6wvny-1sez2pra2dj6wj ... esomniture[2].txt -> Spyware.Cookie.Esomniture : Cleaned with backup
H:\Documents and Settings\boyce markham\Cookies\boyce markham@a-1shz2prbmdj6wvny-1sez2pra2dj6 ... esomniture[1].txt -> Spyware.Cookie.Esomniture : Cleaned with backup
H:\Documents and Settings\boyce markham\Cookies\boyce markham@a-1shz2prbmdj6wvny-1sez2pra2dj6 ... esomniture[1].txt -> Spyware.Cookie.Esomniture : Cleaned with backup
H:\Documents and Settings\boyce markham\Cookies\boyce markham@a-1shz2prbmdj6wvny-1sez2pra2dj6 ... esomniture[2].txt -> Spyware.Cookie.Esomniture : Cleaned with backup
H:\Documents and Settings\boyce markham\Cookies\boyce markham@a-1shz2prbmdj6wvny-1sez2pra2dj6 ... esomniture[2].txt -> Spyware.Cookie.Esomniture : Cleaned with backup
H:\Documents and Settings\boyce markham\Cookies\boyce markham@a-1shz2prbmdj6wvny-1sez2pra2dj6 ... esomniture[2].txt -> Spyware.Cookie.Esomniture : Cleaned with backup
H:\Documents and Settings\boyce markham\Cookies\boyce markham@adopt.specificclick[2].txt -> Spyware.Cookie.Specificclick : Cleaned with backup
H:\Documents and Settings\boyce markham\Cookies\boyce markham@cz11.clickzs[1].txt -> Spyware.Cookie.Clickzs : Cleaned with backup
H:\Documents and Settings\boyce markham\Cookies\boyce markham@cz2.clickzs[1].txt -> Spyware.Cookie.Clickzs : Cleaned with backup
H:\Documents and Settings\boyce markham\Cookies\boyce markham@cz3.clickzs[1].txt -> Spyware.Cookie.Clickzs : Cleaned with backup
H:\Documents and Settings\boyce markham\Cookies\boyce markham@ehg-dig.hitbox[1].txt -> Spyware.Cookie.Hitbox : Cleaned with backup
H:\Documents and Settings\boyce markham\Cookies\boyce markham@image.masterstats[1].txt -> Spyware.Cookie.Masterstats : Cleaned with backup
H:\Documents and Settings\boyce markham\Cookies\boyce markham@y-1shz2prbmdj6wvny-1sez2pra2dj6 ... esomniture[2].txt -> Spyware.Cookie.Esomniture : Cleaned with backup
H:\Documents and Settings\boyce markham\Cookies\boyce markham@y-1shz2prbmdj6wvny-1sez2pra2dj6 ... esomniture[2].txt -> Spyware.Cookie.Esomniture : Cleaned with backup
H:\Documents and Settings\boyce markham\Cookies\boyce markham@y-1shz2prbmdj6wvny-1sez2pra2dj6 ... esomniture[2].txt -> Spyware.Cookie.Esomniture : Cleaned with backup
H:\Documents and Settings\boyce markham\Cookies\boyce markham@y-1shz2prbmdj6wvny-1sez2pra2dj6 ... esomniture[2].txt -> Spyware.Cookie.Esomniture : Cleaned with backup
H:\Documents and Settings\boyce markham\Cookies\boyce markham@y-1shz2prbmdj6wvny-1sez2pra2dj6 ... esomniture[2].txt -> Spyware.Cookie.Esomniture : Cleaned with backup
H:\Documents and Settings\boyce markham\Cookies\boyce markham@y-1shz2prbmdj6wvny-1sez2pra2dj6 ... esomniture[2].txt -> Spyware.Cookie.Esomniture : Cleaned with backup
H:\Documents and Settings\boyce markham\Cookies\boyce markham@y-1shz2prbmdj6wvny-1sez2pra2dj6 ... esomniture[1].txt -> Spyware.Cookie.Esomniture : Cleaned with backup
H:\Documents and Settings\boyce markham\Cookies\boyce markham@y-1shz2prbmdj6wvny-1sez2pra2dj6 ... esomniture[1].txt -> Spyware.Cookie.Esomniture : Cleaned with backup
H:\Documents and Settings\boyce markham\Cookies\boyce markham@y-1shz2prbmdj6wvny-1sez2pra2dj6 ... esomniture[2].txt -> Spyware.Cookie.Esomniture : Cleaned with backup
H:\Documents and Settings\boyce markham\Cookies\boyce markham@y-1shz2prbmdj6wvny-1sez2pra2dj6 ... esomniture[2].txt -> Spyware.Cookie.Esomniture : Cleaned with backup
H:\Documents and Settings\boyce markham\Cookies\boyce markham@y-1shz2prbmdj6wvny-1sez2pra2dj6 ... esomniture[1].txt -> Spyware.Cookie.Esomniture : Cleaned with backup
H:\Documents and Settings\boyce markham\Cookies\boyce markham@y-1shz2prbmdj6wvny-1sez2pra2dj6 ... esomniture[2].txt -> Spyware.Cookie.Esomniture : Cleaned with backup
H:\Documents and Settings\boyce markham\Cookies\boyce markham@y-1shz2prbmdj6wvny-1sez2pra2dj6 ... esomniture[2].txt -> Spyware.Cookie.Esomniture : Cleaned with backup
H:\Documents and Settings\boyce markham\Cookies\boyce markham@y-1shz2prbmdj6wvny-1sez2pra2dj6 ... esomniture[1].txt -> Spyware.Cookie.Esomniture : Cleaned with backup
H:\Documents and Settings\boyce markham\Cookies\boyce markham@y-1shz2prbmdj6wvny-1sez2pra2dj6 ... esomniture[2].txt -> Spyware.Cookie.Esomniture : Cleaned with backup
H:\Documents and Settings\boyce markham\Cookies\boyce markham@y-1shz2prbmdj6wvny-1sez2pra2dj6 ... esomniture[2].txt -> Spyware.Cookie.Esomniture : Cleaned with backup
H:\Documents and Settings\boyce markham\Cookies\boyce markham@y-1shz2prbmdj6wvny-1sez2pra2dj6 ... esomniture[2].txt -> Spyware.Cookie.Esomniture : Cleaned with backup
H:\Documents and Settings\boyce markham\Cookies\boyce markham@y-1shz2prbmdj6wvny-1sez2pra2dj6 ... esomniture[2].txt -> Spyware.Cookie.Esomniture : Cleaned with backup
H:\Documents and Settings\boyce markham\Cookies\boyce markham@y-1shz2prbmdj6wvny-1sez2pra2dj6 ... esomniture[1].txt -> Spyware.Cookie.Esomniture : Cleaned with backup
H:\Documents and Settings\boyce markham\Cookies\boyce markham@y-1shz2prbmdj6wvny-1sez2pra2dj6 ... esomniture[1].txt -> Spyware.Cookie.Esomniture : Cleaned with backup
H:\Documents and Settings\boyce markham\Cookies\boyce markham@y-1shz2prbmdj6wvny-1sez2pra2dj6 ... esomniture[2].txt -> Spyware.Cookie.Esomniture : Cleaned with backup
H:\Documents and Settings\boyce markham\Cookies\boyce markham@y-1shz2prbmdj6wvny-1sez2pra2dj6 ... esomniture[2].txt -> Spyware.Cookie.Esomniture : Cleaned with backup
H:\Documents and Settings\boyce markham\Cookies\boyce markham@y-1shz2prbmdj6wvny-1sez2pra2dj6 ... esomniture[2].txt -> Spyware.Cookie.Esomniture : Cleaned with backup
H:\Documents and Settings\boyce markham\Cookies\boyce markham@y-1shz2prbmdj6wvny-1sez2pra2dj6 ... esomniture[2].txt -> Spyware.Cookie.Esomniture : Cleaned with backup
H:\Documents and Settings\boyce markham\Cookies\boyce markham@y-1shz2prbmdj6wvny-1sez2pra2dj6 ... esomniture[2].txt -> Spyware.Cookie.Esomniture : Cleaned with backup
H:\Documents and Settings\boyce markham\Cookies\boyce markham@y-1shz2prbmdj6wvny-1sez2pra2dj6 ... esomniture[2].txt -> Spyware.Cookie.Esomniture : Cleaned with backup
H:\Documents and Settings\boyce markham\Cookies\boyce markham@y-1shz2prbmdj6wvny-1sez2pra2dj6 ... esomniture[2].txt -> Spyware.Cookie.Esomniture : Cleaned with backup
H:\Documents and Settings\boyce markham\Cookies\boyce markham@y-1shz2prbmdj6wvny-1sez2pra2dj6 ... esomniture[2].txt -> Spyware.Cookie.Esomniture : Cleaned with backup
H:\Documents and Settings\boyce markham\Cookies\boyce markham@y-1shz2prbmdj6wvny-1sez2pra2dj6 ... esomniture[2].txt -> Spyware.Cookie.Esomniture : Cleaned with backup
H:\Documents and Settings\boyce markham\Cookies\boyce markham@y-1shz2prbmdj6wvny-1sez2pra2dj6 ... esomniture[2].txt -> Spyware.Cookie.Esomniture : Cleaned with backup
H:\Documents and Settings\boyce markham\Cookies\boyce markham@y-1shz2prbmdj6wvny-1sez2pra2dj6 ... esomniture[2].txt -> Spyware.Cookie.Esomniture : Cleaned with backup
H:\Documents and Settings\boyce markham\Cookies\boyce markham@y-1shz2prbmdj6wvny-1sez2pra2dj6 ... esomniture[2].txt -> Spyware.Cookie.Esomniture : Cleaned with backup
H:\Documents and Settings\jessica markham\Cookies\jessica markham@-1shz2prbmdj6wvny-1sez2pra2dj6w ... esomniture[2].txt -> Spyware.Cookie.Esomniture : Cleaned with backup
H:\Documents and Settings\jessica markham\Cookies\jessica markham@2o7[2].txt -> Spyware.Cookie.2o7 : Cleaned with backup
H:\Documents and Settings\jessica markham\Cookies\jessica markham@adopt.specificclick[2].txt -> Spyware.Cookie.Specificclick : Cleaned with backup
H:\Documents and Settings\jessica markham\Cookies\jessica markham@ehg-dig.hitbox[2].txt -> Spyware.Cookie.Hitbox : Cleaned with backup
H:\Documents and Settings\jessica markham\Cookies\jessica markham@www.burstbeacon[1].txt -> Spyware.Cookie.Burstbeacon : Cleaned with backup
H:\Documents and Settings\jessica markham\Cookies\jessica markham@www2.enigmasoftwaregroup[1].txt -> Spyware.Cookie.Enigmasoftwaregroup : Cleaned with backup
H:\Documents and Settings\jessica markham\Cookies\jessica markham@y-1shz2prbmdj6wvny-1sez2pra2dj6 ... esomniture[1].txt -> Spyware.Cookie.Esomniture : Cleaned with backup
H:\Documents and Settings\jessica markham\Cookies\jessica markham@y-1shz2prbmdj6wvny-1sez2pra2dj6 ... esomniture[1].txt -> Spyware.Cookie.Esomniture : Cleaned with backup
H:\Documents and Settings\jessica markham\Cookies\jessica markham@y-1shz2prbmdj6wvny-1sez2pra2dj6 ... esomniture[1].txt -> Spyware.Cookie.Esomniture : Cleaned with backup
H:\Documents and Settings\jessica markham\Cookies\jessica markham@y-1shz2prbmdj6wvny-1sez2pra2dj6 ... esomniture[1].txt -> Spyware.Cookie.Esomniture : Cleaned with backup
H:\Documents and Settings\jessica markham\Cookies\jessica markham@y-1shz2prbmdj6wvny-1sez2pra2dj6 ... esomniture[1].txt -> Spyware.Cookie.Esomniture : Cleaned with backup
H:\Documents and Settings\jessica markham\Cookies\jessica markham@y-1shz2prbmdj6wvny-1sez2pra2dj6 ... esomniture[1].txt -> Spyware.Cookie.Esomniture : Cleaned with backup
H:\Documents and Settings\jessica markham\Cookies\jessica markham@y-1shz2prbmdj6wvny-1sez2pra2dj6 ... esomniture[1].txt -> Spyware.Cookie.Esomniture : Cleaned with backup
H:\Documents and Settings\jessica markham\Cookies\jessica markham@y-1shz2prbmdj6wvny-1sez2pra2dj6 ... esomniture[2].txt -> Spyware.Cookie.Esomniture : Cleaned with backup
H:\Documents and Settings\jessica markham\Cookies\jessica markham@y-1shz2prbmdj6wvny-1sez2pra2dj6 ... esomniture[1].txt -> Spyware.Cookie.Esomniture : Cleaned with backup
H:\Documents and Settings\jessica markham\Cookies\jessica markham@y-1shz2prbmdj6wvny-1sez2pra2dj6 ... esomniture[2].txt -> Spyware.Cookie.Esomniture : Cleaned with backup
H:\Documents and Settings\jessica markham\Cookies\jessica markham@y-1shz2prbmdj6wvny-1sez2pra2dj6 ... esomniture[2].txt -> Spyware.Cookie.Esomniture : Cleaned with backup
H:\Documents and Settings\jessica markham\Cookies\jessica markham@y-1shz2prbmdj6wvny-1sez2pra2dj6 ... esomniture[1].txt -> Spyware.Cookie.Esomniture : Cleaned with backup
H:\Documents and Settings\jessica markham\Cookies\jessica markham@y-1shz2prbmdj6wvny-1sez2pra2dj6 ... esomniture[1].txt -> Spyware.Cookie.Esomniture : Cleaned with backup
H:\Documents and Settings\jessica markham\Cookies\jessica markham@y-1shz2prbmdj6wvny-1sez2pra2dj6 ... esomniture[2].txt -> Spyware.Cookie.Esomniture : Cleaned with backup
H:\Documents and Settings\jessica markham\Cookies\jessica markham@y-1shz2prbmdj6wvny-1sez2pra2dj6 ... esomniture[1].txt -> Spyware.Cookie.Esomniture : Cleaned with backup
H:\Documents and Settings\miranda markham.VALUED-CB7D4C82\Cookies\miranda markham@sales.liveperson[1].txt -> Spyware.Cookie.Liveperson : Cleaned with backup
H:\Program Files\Common Files\Sony Shared\Visualizer\ExlGen.dll -> Dialer.Generic : Cleaned with backup
H:\RECYCLER\S-1-5-21-1484400983-1445258045-4051706429-1006\Dc10.txt -> Spyware.Cookie.2o7 : Cleaned with backup
H:\RECYCLER\S-1-5-21-1484400983-1445258045-4051706429-1006\Dc102.txt -> Spyware.Cookie.Trafficmp : Cleaned with backup
H:\RECYCLER\S-1-5-21-1484400983-1445258045-4051706429-1006\Dc103.txt -> Spyware.Cookie.Valueclick : Cleaned with backup
H:\RECYCLER\S-1-5-21-1484400983-1445258045-4051706429-1006\Dc109.txt -> Spyware.Cookie.Commission-junction : Cleaned with backup
H:\RECYCLER\S-1-5-21-1484400983-1445258045-4051706429-1006\Dc123.txt -> Spyware.Cookie.Qksrv : Cleaned with backup
H:\RECYCLER\S-1-5-21-1484400983-1445258045-4051706429-1006\Dc15.txt -> Spyware.Cookie.Addynamix : Cleaned with backup
H:\RECYCLER\S-1-5-21-1484400983-1445258045-4051706429-1006\Dc18.txt -> Spyware.Cookie.Ads360 : Cleaned with backup
H:\RECYCLER\S-1-5-21-1484400983-1445258045-4051706429-1006\Dc19.txt -> Spyware.Cookie.Ads360 : Cleaned with backup
H:\RECYCLER\S-1-5-21-1484400983-1445258045-4051706429-1006\Dc21.txt -> Spyware.Cookie.Advertising : Cleaned with backup
H:\RECYCLER\S-1-5-21-1484400983-1445258045-4051706429-1006\Dc24.txt -> Spyware.Cookie.Atdmt : Cleaned with backup
H:\RECYCLER\S-1-5-21-1484400983-1445258045-4051706429-1006\Dc30.txt -> Spyware.Cookie.Bfast : Cleaned with backup
H:\RECYCLER\S-1-5-21-1484400983-1445258045-4051706429-1006\Dc31.txt -> Spyware.Cookie.Bluestreak : Cleaned with backup
H:\RECYCLER\S-1-5-21-1484400983-1445258045-4051706429-1006\Dc35.txt -> Spyware.Cookie.Clickagents : Cleaned with backup
H:\RECYCLER\S-1-5-21-1484400983-1445258045-4051706429-1006\Dc40.txt -> Spyware.Cookie.Coremetrics : Cleaned with backup
H:\RECYCLER\S-1-5-21-1484400983-1445258045-4051706429-1006\Dc42.txt -> Spyware.Cookie.Doubleclick : Cleaned with backup
H:\RECYCLER\S-1-5-21-1484400983-1445258045-4051706429-1006\Dc43.txt -> Spyware.Cookie.Hitbox : Cleaned with backup
H:\RECYCLER\S-1-5-21-1484400983-1445258045-4051706429-1006\Dc44.txt -> Spyware.Cookie.Hitbox : Cleaned with backup
H:\RECYCLER\S-1-5-21-1484400983-1445258045-4051706429-1006\Dc45.txt -> Spyware.Cookie.Hitbox : Cleaned with backup
H:\RECYCLER\S-1-5-21-1484400983-1445258045-4051706429-1006\Dc46.txt -> Spyware.Cookie.Hitbox : Cleaned with backup
H:\RECYCLER\S-1-5-21-1484400983-1445258045-4051706429-1006\Dc47.txt -> Spyware.Cookie.Hitbox : Cleaned with backup
H:\RECYCLER\S-1-5-21-1484400983-1445258045-4051706429-1006\Dc48.txt -> Spyware.Cookie.Hitbox : Cleaned with backup
H:\RECYCLER\S-1-5-21-1484400983-1445258045-4051706429-1006\Dc49.txt -> Spyware.Cookie.Hitbox : Cleaned with backup
H:\RECYCLER\S-1-5-21-1484400983-1445258045-4051706429-1006\Dc62.txt -> Spyware.Cookie.Hitbox : Cleaned with backup
H:\RECYCLER\S-1-5-21-1484400983-1445258045-4051706429-1006\Dc63.txt -> Spyware.Cookie.Hitbox : Cleaned with backup
H:\RECYCLER\S-1-5-21-1484400983-1445258045-4051706429-1006\Dc72.txt -> Spyware.Cookie.Mediaplex : Cleaned with backup
H:\RECYCLER\S-1-5-21-1484400983-1445258045-4051706429-1006\Dc81.txt -> Spyware.Cookie.Pointroll : Cleaned with backup
H:\RECYCLER\S-1-5-21-1484400983-1445258045-4051706429-1006\Dc82.txt -> Spyware.Cookie.Qksrv : Cleaned with backup
H:\RECYCLER\S-1-5-21-1484400983-1445258045-4051706429-1006\Dc83.txt -> Spyware.Cookie.Questionmarket : Cleaned with backup
H:\RECYCLER\S-1-5-21-1484400983-1445258045-4051706429-1006\Dc88.txt -> Spyware.Cookie.Advertising : Cleaned with backup
H:\RECYCLER\S-1-5-21-1484400983-1445258045-4051706429-1006\Dc89.txt -> Spyware.Cookie.Liveperson : Cleaned with backup
Jessica
Active Member
 
Posts: 2
Joined: December 15th, 2005, 6:24 pm
Top

Unread postby LDTate » December 16th, 2005, 8:48 am

Thank You so much !! My computer is working great!!
We can all thank Noahdfear (Dave) for his hard work creating the fix :D




This is my normal post for when you are clear - which you now are - or seem to be. Please advise of any problems you still have :-

Now that you are clean, please follow these simple steps in order to keep your computer clean and secure:

  1. Disable and Enable System Restore. - If you are using Windows ME or XP then you should disable and re-enable system restore to make sure there are no infected files found in a restore point.
    You can find instructions on how to enable and re enable system restore here:
    Managing Windows Millennium System Restore
    or
    Windows XP System Restore Guide
    re-enable system restore with instructions from tutorial above
  2. We need to Restore the Defaults for System Folders and Files.
    Click Start> My Computer> select the Tools Menu and then Folder Options, after the new window appears select the View tab…
    Slect the: Restore Defaults
    Select: Apply, and click OK
  3. Make your Internet Explorer more secure - This can be done by following these simple instructions:

    1. From within Internet Explorer click on the Tools menu and then click on Options.
    2. Click once on the Security tab
    3. Click once on the Internet icon so it becomes highlighted.
    4. Click once on the Custom Level button.

      1. Change the Download signed ActiveX controls to Prompt
      2. Change the Download unsigned ActiveX controls to Disable
      3. Change the Initialise and script ActiveX controls not marked as safe to Disable
      4. Change the Installation of desktop items to Prompt
      5. Change the Launching programs and files in an IFRAME to Prompt
      6. Change the Navigate sub-frames across different domains to Prompt
      7. When all these settings have been made, click on the OK button.
      8. If it prompts you as to whether or not you want to save the settings, press the Yes button.
    5. Next press the Apply button and then the OK to exit the Internet Properties page.
  4. Use an Anti Virus Software - It is very important that your computer has an anti-virus software running on your machine. This alone can save you a lot of trouble with malware in the future. See this link for a listing of some on line & their stand-alone anti virus programs:
    Computer Safety On line - Anti-Virus
  5. Update your Anti Virus Software - It is imperitive that you update your Anti virus software at least once a week (Even more if you wish). If you do not update your anti virus software then it will not be able to catch any of the new variants that may come out.
  6. Use a Firewall - I can not stress how important it is that you use a Firewall on your computer. Without a firewall your computer is susceptible to being hacked and taken over. Simply using a Firewall in its default configuration can lower your risk greatly. For an article on Firewalls and a listing of some available ones see the link below:
    Computer Safety On line - Software Firewalls
  7. Visit Microsoft's Windows Update Site Frequently - It is important that you visit http://www.windowsupdate.com regularly. This will ensure your computer has always the latest security updates available installed on your computer. If there are new updates to install, install them immediately, reboot your computer, and revisit the site until there are no more critical updates.
  8. Install Spybot - Search and Destroy - Install and download Spybot - Search and Destroy with its TeaTimer option.
    This will provide real-time spyware & hijacker protection on your computer alongside your virus protection. You should also scan your computer with program on a regular basis just as you would an anti virus software. A tutorial on installing & using this product can be found here:
    Instructions for - Spybot S & D and Ad-aware
  9. Install Ad-Aware - Install and download Ad-Aware. You should also scan your computer with the program on a regular basis just as you would an anti virus software in conjunction with Spybot. A tutorial on installing & using this product can be found here:
    Instructions for - Spybot S & D and Ad-aware
  10. Install SpywareBlaster - SpywareBlaster will added a large list of programs and sites into your Internet Explorer settings that will protect you from running and downloading known malicious programs. A article on anti-malware products with links for this program and others can be found here:
    Computer Safety on line - Anti-Malware
  11. Update all these programs regularly - Make sure you update all the programs I have listed regularly. Without regular updates you WILL NOT be protected when new malicious programs are released.
Follow this list and your potential for being infected again will reduce dramatically.

Great job ;)

You're more then welcome.
Glad we were able to help

Peace be with you :D
User avatar
LDTate
WTT Teacher
WTT Teacher
 
Posts: 3920
Joined: February 18th, 2005, 8:38 pm
Location: Missouri, USA
Top

Unread postby NonSuch » December 22nd, 2005, 1:58 am

Glad we could be of assistance.

This topic is now closed. If you wish it reopened, please send us an email to 'admin at malwareremoval.com' with a link to your thread.

You can help support this site from this link :
Donations For Malware Removal

Do not bother contacting us if you are not the topic starter. A valid, working link to the closed topic is required along with the user name used. If the user name does not match the one in the thread linked, the email will be deleted.
User avatar
NonSuch
Administrator
Administrator
 
Posts: 28747
Joined: February 23rd, 2005, 7:08 am
Location: California
Top
Advertisement
Register to Remove
Topic locked
  • Similar Topics
    Replies
    Views
    Last post

Return to Infected? Virus, malware, adware, ransomware, oh my!



Who is online

Users browsing this forum: No registered users and 429 guests

The teamDelete all board cookiesAll times are UTC - 5 hours [ DST ]

Contact us:

Advertisements do not imply our endorsement of that product or service. Register to remove all ads. The forum is run by volunteers who donate their time and expertise. We make every attempt to ensure that the help and advice posted is accurate and will not cause harm to your computer. However, we do not guarantee that they are accurate and they are to be used at your own risk. All trademarks are the property of their respective owners.

Member site: UNITE Against Malware

Board index