My PC has slowed down, any reason?

  1. 29-01-2007  #1
    Computer Geek
    Computer Geek is offline Newbie

    Question My PC has slowed down, any reason?

    I keep getting pop ups, when I'm not using IE, probably adware pls help!!


    Logfile of HijackThis v1.99.1
    Scan saved at 10:23:35 AM, on 29/01/2007
    Platform: Windows XP SP2 (WinNT 5.01.2600)
    MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

    Running processes:
    C:\WINDOWS\System32\smss.exe
    C:\WINDOWS\system32\winlogon.exe
    C:\WINDOWS\system32\services.exe
    C:\WINDOWS\system32\lsass.exe
    C:\WINDOWS\system32\svchost.exe
    C:\Program Files\Windows Defender\MsMpEng.exe
    C:\WINDOWS\System32\svchost.exe
    C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe
    C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe
    C:\WINDOWS\system32\spoolsv.exe
    C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
    C:\WINDOWS\system32\cisvc.exe
    C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
    C:\Program Files\Norton AntiVirus\navapsvc.exe
    C:\WINDOWS\system32\nvsvc32.exe
    C:\Program Files\Norton AntiVirus\SAVScan.exe
    C:\WINDOWS\system32\svchost.exe
    C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe
    C:\WINDOWS\system32\UAService7.exe
    C:\Program Files\Viewpoint\Common\ViewpointService.exe
    C:\Program Files\Common Files\Symantec Shared\Security Center\SymWSC.exe
    C:\Program Files\Canon\CAL\CALMAIN.exe
    C:\Program Files\Viewpoint\Viewpoint Manager\ViewMgr.exe
    C:\WINDOWS\system32\cidaemon.exe
    C:\WINDOWS\Explorer.EXE
    C:\Program Files\Silicon Integrated Systems\SiSRaidPackage\SRaid.exe
    C:\Program Files\GigaByte\VGA Utility Manager\G-VGA.exe
    C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe
    C:\WINDOWS\system32\rundll32.exe
    C:\Program Files\Common Files\Symantec Shared\ccApp.exe
    C:\Program Files\Common Files\Real\Update_OB\realsched.exe
    C:\Program Files\Java\jre1.5.0_10\bin\jusched.exe
    C:\WINDOWS\SOUNDMAN.EXE
    C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
    C:\Program Files\Windows Defender\MSASCui.exe
    C:\WINDOWS\system32\ctfmon.exe
    C:\Program Files\Macrogaming\SweetIM\SweetIM.exe
    C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\G oogleToolbarNotifier.exe
    C:\Program Files\Google\Web Accelerator\GoogleWebAccWarden.exe
    C:\WINDOWS\system32\ntvdm.exe
    C:\Program Files\Internet Explorer\IEXPLORE.EXE
    C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE
    C:\Program Files\Google\Web Accelerator\googlewebaccclient.exe
    C:\Program Files\Messenger\msmsgs.exe
    C:\Documents and Settings\Bob Rao\Desktop\HijackThis.exe

    R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Int ernet Settings,AutoConfigURL = http://localhost:9100/proxy.pac
    O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
    O2 - BHO: RunBus Class - {4865F155-CE00-4E93-A414-147844D7C81A} - C:\WINDOWS\system32\tcblkamo.dll (file missing)
    O2 - BHO: SelasI Class - {59F4F380-01A0-4083-9FA4-E3B827319F7E} - C:\WINDOWS\system32\vcbhzjkm.dll (file missing)
    O2 - BHO: ohb - {5ED7D3DE-6DBE-4516-8712-01B1B64B7057} - C:\WINDOWS\system32\SearchTool\nscDB.dll
    O2 - BHO: Google Web Accelerator Helper - {69A87B7D-DE56-4136-9655-716BA50C19C7} - C:\Program Files\Google\Web Accelerator\GoogleWebAccToolbar.dll
    O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_10\bin\ssv.dll
    O2 - BHO: Viewpoint Toolbar BHO - {A7327C09-B521-4EDB-8509-7D2660C9EC98} - C:\Program Files\Viewpoint\Viewpoint Toolbar\3.7.0\ViewBarBHO.dll
    O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar4.dll
    O2 - BHO: CNavExtBho Class - {BDF3E430-B101-42AD-A544-FADC6B084872} - C:\Program Files\Norton AntiVirus\NavShExt.dll
    O2 - BHO: Hoja Class - {C07F60AC-688D-4F3E-89EC-30B281BDD2CC} - C:\WINDOWS\system32\asclhatp.dll
    O2 - BHO: FDMIECookiesBHO Class - {CC59E0F9-7E43-44FA-9FAA-8377850BF205} - C:\Program Files\Free Download Manager\iefdmcks.dll
    O2 - BHO: &Google Notebook - {CCCCCCD3-666F-4F81-8B69-745DE9F6D897} - C:\Program Files\Google\Google Notebook\gnotes1.0.2.6-1813849417.dll
    O3 - Toolbar: Norton AntiVirus - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - C:\Program Files\Norton AntiVirus\NavShExt.dll
    O3 - Toolbar: Google Web Accelerator - {DB87BFA2-A2E3-451E-8E5A-C89982D87CBF} - C:\Program Files\Google\Web Accelerator\GoogleWebAccToolbar.dll
    O3 - Toolbar: &Google Notebook - {CCCCCCDB-4DDB-4703-95D4-DD2C526397BF} - C:\Program Files\Google\Google Notebook\gnotes1.0.2.6-1813849417.dll
    O3 - Toolbar: Viewpoint Toolbar - {F8AD5AA5-D966-4667-9DAF-2561D68B2012} - C:\Program Files\Common Files\Viewpoint\Toolbar Runtime\3.7.0\IEViewBar.dll
    O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar4.dll
    O4 - HKLM\..\Run: [IMJPMIG8.1] "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32
    O4 - HKLM\..\Run: [PHIME2002ASync] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC
    O4 - HKLM\..\Run: [PHIME2002A] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName
    O4 - HKLM\..\Run: [SiSRaid] C:\Program Files\Silicon Integrated Systems\SiSRaidPackage\SRaid.exe
    O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
    O4 - HKLM\..\Run: [NVRTCLK] C:\WINDOWS\system32\NVRTCLK\NVRTClk.exe
    O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
    O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
    O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
    O4 - HKLM\..\Run: [VGAUtil] C:\Program Files\GigaByte\VGA Utility Manager\G-VGA.exe
    O4 - HKLM\..\Run: [RemoteControl] "C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe"
    O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Common Files\Symantec Shared\ccApp.exe"
    O4 - HKLM\..\Run: [Symantec NetDriver Monitor] C:\PROGRA~1\SYMNET~1\SNDMon.exe /Consumer
    O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
    O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
    O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.5.0_10\bin\jusched.exe"
    O4 - HKLM\..\Run: [Cmaudio] RunDll32 cmicnfg.cpl,CMICtrlWnd
    O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
    O4 - HKLM\..\Run: [SweetIM] C:\Program Files\Macrogaming\SweetIM\SweetIM.exe
    O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
    O4 - HKLM\..\Run: [Windows Defender] "C:\Program Files\Windows Defender\MSASCui.exe" -hide
    O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
    O4 - HKCU\..\Run: [NBJ] "C:\Program Files\Ahead\Nero BackItUp\NBJ.exe"
    O4 - HKCU\..\Run: [SweetIM] C:\Program Files\Macrogaming\SweetIM\SweetIM.exe
    O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\G oogleToolbarNotifier.exe
    O4 - HKCU\..\Run: [Chckup] C:\WINDOWS\system32\Netverchk.exe
    O4 - HKCU\..\Run: [ItalU] C:\WINDOWS\system32\italfds.exe
    O4 - HKCU\..\Run: [LifeCU] C:\WINDOWS\system32\BastaYa.exe
    O4 - Startup: Folding@Home 5.03.lnk = ?
    O4 - Startup: Mopy Points Collector.lnk = C:\MOPYFISH\GETPOINT.EXE
    O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
    O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
    O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
    O4 - Global Startup: Run Google Web Accelerator.lnk = C:\Program Files\Google\Web Accelerator\GoogleWebAccWarden.exe
    O8 - Extra context menu item: &Save Flash In This Page by Flash Saver - C:\PROGRA~1\FLASHS~1\save.htm
    O8 - Extra context menu item: Download all with Free Download Manager - file://C:\Program Files\Free Download Manager\dlall.htm
    O8 - Extra context menu item: Download selected with Free Download Manager - file://C:\Program Files\Free Download Manager\dlselected.htm
    O8 - Extra context menu item: Download with Free Download Manager - file://C:\Program Files\Free Download Manager\dllink.htm
    O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
    O8 - Extra context menu item: Note this (Google Note&book) - res://C:\Program Files\Google\Google Notebook\gnotes1.0.2.6-1813849417.dll/gn_menu1.html
    O8 - Extra context menu item: Note this (Google Notebook) - res://C:\Program Files\Google\Google Notebook\gnotes1.0.2.6-1813849417.dll/gn_menu2.html
    O8 - Extra context menu item: Sothink SWF Catcher - C:\Program Files\Common Files\SourceTec\SWF Catcher\InternetExplorer.htm
    O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_10\bin\ssv.dll
    O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_10\bin\ssv.dll
    O9 - Extra button: Flash Saver - {09EA1F80-F40A-11D1-B792-444553540001} - C:\PROGRA~1\FLASHS~1\save.htm
    O9 - Extra 'Tools' menuitem: Flash Saver - {09EA1F80-F40A-11D1-B792-444553540001} - C:\PROGRA~1\FLASHS~1\save.htm
    O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
    O9 - Extra button: Sothink SWF Catcher - {E19ADC6E-3909-43E4-9A89-B7B676377EE3} - C:\Program Files\Common Files\SourceTec\SWF Catcher\InternetExplorer.htm
    O9 - Extra 'Tools' menuitem: Sothink SWF Catcher - {E19ADC6E-3909-43E4-9A89-B7B676377EE3} - C:\Program Files\Common Files\SourceTec\SWF Catcher\InternetExplorer.htm
    O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
    O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
    O16 - DPF: RaptisoftGameLoader - http://www.miniclip.com/haphazard/ra...gameloader.cab
    O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zone.msn.com/binary...r.cab31267.cab
    O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204
    O16 - DPF: {1F2F4C9E-6F09-47BC-970D-3C54734667FE} (LSSupCtl Class) - http://www.symantec.com/techsupp/asa/ctrl/LSSupCtl.cab
    O16 - DPF: {215B8138-A3CF-44C5-803F-8226143CFC0A} (Trend Micro ActiveX Scan Agent 6.6) - http://housecall65.trendmicro.com/ho...vex/hcImpl.cab
    O16 - DPF: {288C5F13-7E52-4ADA-A32E-F5BF9D125F99} - http://www.miniclip.com/inflaterball...GameLoader.dll
    O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary...r.cab31267.cab
    O16 - DPF: {2BC66F54-93A8-11D3-BEB6-00105AA9B6AE} (Symantec AntiVirus scanner) - http://security.symantec.com/sscv6/S...in/AvSniff.cab
    O16 - DPF: {3A7FE611-1994-4EF1-A09F-99456752289D} (WildTangent Active Launcher) - http://install.wildtangent.com/Activ...veLauncher.cab
    O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://by104fd.bay104.hotmail.msn.co...s/MsnPUpld.cab
    O16 - DPF: {639658F3-B141-4D6B-B936-226F75A5EAC3} (CPlayFirstDinerDash2Control Object) - http://real.gamehouse.com/games/dine...DinerDash2.cab
    O16 - DPF: {644E432F-49D3-41A1-8DD5-E099162EEEC5} (Symantec RuFSI Utility Class) - http://security.symantec.com/sscv6/S.../bin/cabsa.cab
    O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsof...?1143260526781
    O16 - DPF: {6E5A37BF-FD42-463A-877C-4EB7002E68AE} (Trend Micro ActiveX Scan Agent 6.5) - http://housecall65.trendmicro.com/ho...vex/hcImpl.cab
    O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary...t.cab31267.cab
    O16 - DPF: {A8F2B9BD-A6A0-486A-9744-18920D898429} (ScorchPlugin Class) - http://www.sibelius.com/download/sof...iveXPlugin.cab
    O16 - DPF: {B64F4A7C-97C9-11DA-8BDE-F66BAD1E3F3A} - http://locator1.cdn.imagesrvr.com/si...aseInstall.cab
    O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (ZoneIntro Class) - http://cdn2.zone.msn.com/binFramewor...o.cab34246.cab
    O16 - DPF: {CE28D5D2-60CF-4C7D-9FE8-0F47A3308078} (ActiveDataInfo Class) - http://www.symantec.com/techsupp/asa/ctrl/SymAData.cab
    O16 - DPF: {DF780F87-FF2B-4DF8-92D0-73DB16A1543A} (PopCapLoader Object) - http://www.popcap.com/games/popcaploader_v6.cab
    O16 - DPF: {EB387D2F-E27B-4D36-979E-847D1036C65D} (QDiagHUpdateObj Class) - http://h30043.www3.hp.com/aio/en/check/qdiagh.cab?326
    O16 - DPF: {F9F3920B-2F24-437A-A224-D49F0004A172} - http://www.net-viewer.com/dls/AutoInstall.exe
    O17 - HKLM\System\CCS\Services\Tcpip\Parameters: Domain = Bob-PC
    O17 - HKLM\Software\..\Telephony: DomainName = Bob-PC
    O17 - HKLM\System\CCS\Services\Tcpip\..\{2C48FD80-7867-49FA-BF19-30FECEB9D101}: NameServer = 192.168.2.1
    O17 - HKLM\System\CS1\Services\Tcpip\Parameters: Domain = Bob-PC
    O17 - HKLM\System\CS1\Services\Tcpip\..\{2C48FD80-7867-49FA-BF19-30FECEB9D101}: NameServer = 192.168.2.1
    O17 - HKLM\System\CS2\Services\Tcpip\Parameters: Domain = Bob-PC
    O17 - HKLM\System\CS2\Services\Tcpip\..\{2C48FD80-7867-49FA-BF19-30FECEB9D101}: NameServer = 192.168.2.1
    O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)
    O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
    O23 - Service: Automatic LiveUpdate Scheduler - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
    O23 - Service: Canon Camera Access Library 8 (CCALib8) - Canon Inc. - C:\Program Files\Canon\CAL\CALMAIN.exe
    O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe
    O23 - Service: Symantec Password Validation (ccPwdSvc) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccPwdSvc.exe
    O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe
    O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
    O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
    O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~2.EXE
    O23 - Service: Norton AntiVirus Auto Protect Service (navapsvc) - Symantec Corporation - C:\Program Files\Norton AntiVirus\navapsvc.exe
    O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
    O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
    O23 - Service: SAVScan - Symantec Corporation - C:\Program Files\Norton AntiVirus\SAVScan.exe
    O23 - Service: ScriptBlocking Service (SBService) - Symantec Corporation - C:\PROGRA~1\COMMON~1\SYMANT~1\SCRIPT~1\SBServ.exe
    O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\SNDSrvc.exe
    O23 - Service: Symantec Core LC - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe
    O23 - Service: SymWMI Service (SymWSC) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\Security Center\SymWSC.exe
    O23 - Service: SecuROM User Access Service (V7) (UserAccess7) - Unknown owner - C:\WINDOWS\system32\UAService7.exe
    O23 - Service: Viewpoint Manager Service - Viewpoint Corporation - C:\Program Files\Viewpoint\Common\ViewpointService.exe

    pentium4 3.00GHz 1.00GB RAM 160GB hard disk (partitioned--c:used 40.4GB free 37.6GB--d:used 15.7GB free 55.1GB)
    Last edited by Computer Geek; 29-01-2007 at 02:28 AM.

  3. 30-01-2007  #2
    VopThis
    VopThis is offline Senior Member (Canada)
    You are not running HijackThis (HJT) from a desired location. You really need to setup a dedicated folder for HJT items – to avoid horrible clutter and/or potential lost backup issues.

    It's best that the HijackThis tool NOT be located in its current location (particularly on your Desktop or in a TEMP folder). This way you can more easily undo any changes if something goes wrong.
    • Create a new folder in your C: Drive.
    • Name the FOLDER HijackThis (or HJT) such as C:\Program Files\HijackThis or C:\HJT and move the HijackThis.exe file into it.
    • Run HJT from there (and revise your shortcut accordingly).




    Read over the following directions. Ask if anything appears unclear to you.



    Clean out TEMPORARY FILES procedures:
    To clean your temp folder, recycle bin, etc..please download this free tool:

    CCleaner http://www.ccleaner.com/downloadbuilds.asp

    Install Options:
    • Don't install any Toolbars, or other programs, should it ask you!
    • Just uncheck the option of installing the Yahoo toolbar.

    It will put a shortcut on your Desktop.

    Do not run CCleaner until requested later.





    We will be restarting into Safe Mode later on in the fix and you might not be able to access the Internet. Accordingly, it is probably a good idea to print out the following directions or copy them to a text file on your desktop using NOTEPAD. Read these instructions carefully and feel free to ask if you're unsure about anything.

    SELECT HijackThis FIX ITEMS: Scan with HijackThis and place a check next to these items:

    O2 - BHO: RunBus Class - {4865F155-CE00-4E93-A414-147844D7C81A} - C:\WINDOWS\system32\tcblkamo.dll (file missing)
    O2 - BHO: SelasI Class - {59F4F380-01A0-4083-9FA4-E3B827319F7E} - C:\WINDOWS\system32\vcbhzjkm.dll (file missing)
    O2 - BHO: ohb - {5ED7D3DE-6DBE-4516-8712-01B1B64B7057} - C:\WINDOWS\system32\SearchTool\nscDB.dll

    O4 - HKCU\..\Run: [CHCKUP] C:\WINDOWS\system32\Netverchk.exe
    O4 - HKCU\..\Run: [ITALU] C:\WINDOWS\system32\italfds.exe
    O4 - HKCU\..\Run: [LIFECU] C:\WINDOWS\system32\BastaYa.exe

    O16 - DPF: {288C5F13-7E52-4ADA-A32E-F5BF9D125F99} - http://www.miniclip.com/inflaterball...GameLoader.dll
    O16 - DPF: {3A7FE611-1994-4EF1-A09F-99456752289D} (WildTangent Active Launcher) - http://install.wildtangent.com/Activ...veLauncher.cab
    O16 - DPF: {B64F4A7C-97C9-11DA-8BDE-F66BAD1E3F3A} - http://locator1.cdn.imagesrvr.com/si...aseInstall.cab
    O16 - DPF: {DF780F87-FF2B-4DF8-92D0-73DB16A1543A} (PopCapLoader Object) - http://www.popcap.com/games/popcaploader_v6.cab


    Make sure that all browser windows and internet links are closed, even this one!
    CLICK ’FIX CHECKED’ with HijackThis.



    HIDDEN FILES: To make sure you can see all hidden files, please follow the directions here

    SAFEMODE: Boot into safe mode by tapping the F8 key at restart and choosing 'safe mode' menu option (explained here if needed).



    Delete TEMPORARY FILES: Now, use CCleaner to hunt down the most common temporary file locations and the temporary file clutter contained therein (and of possible malware hiding places):

    Run CCleaner .

    FIRST-TIME USE:
    Select the ‘Options’ BUTTON option (top LEFT), ‘Advanced’ BUTTON, and then UNCHECK the ‘Only delete files in Windows Temp Folders older than 48 hours’.

    Select the ‘Cleaner’ BUTTON option (top LEFT), if not already selected. Use the ’Windows’ TAB up front by default.
    • Uncheck ‘Cookies’ option (advisable)
    • Optionally, Uncheck ‘Recently Typed URLs’ option (potentially still useful)
    • Click the ‘Analyse’ button.
    • Thereafter, click ‘Run Cleaner’ after you have reviewed what it proposes to clean.

    ***** Clean out the Recycle Bin for items removed below, ONLY once you have regained the full functional use of your PC.




    Navigate to these files or folders using Windows Explorer (OR Start -> Search) and delete (if present):


    DELETE FILES:

    C:\WINDOWS\system32\SearchTool\nscDB.dll
    C:\WINDOWS\system32\Netverchk.exe
    C:\WINDOWS\system32\italfds.exe
    C:\WINDOWS\system32\BastaYa.exe





    POST A REVISED HIJACKTHIS LOG for review:
    Reboot and post a new HijackThis log with any feedback as appropriate - how things are now behaving: any new or remaining apparent issues.
  4. 31-01-2007  #3
    Computer Geek
    Computer Geek is offline Newbie
    I've done as you've said, here's the log:

    Logfile of HijackThis v1.99.1
    Scan saved at 3:45:20 PM, on 31/01/2007
    Platform: Windows XP SP2 (WinNT 5.01.2600)
    MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

    Running processes:
    C:\WINDOWS\System32\smss.exe
    C:\WINDOWS\system32\winlogon.exe
    C:\WINDOWS\system32\services.exe
    C:\WINDOWS\system32\lsass.exe
    C:\WINDOWS\system32\svchost.exe
    C:\Program Files\Windows Defender\MsMpEng.exe
    C:\WINDOWS\System32\svchost.exe
    C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe
    C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe
    C:\WINDOWS\system32\spoolsv.exe
    C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
    C:\WINDOWS\system32\cisvc.exe
    C:\WINDOWS\System32\svchost.exe
    C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
    C:\Program Files\Norton AntiVirus\navapsvc.exe
    C:\WINDOWS\system32\nvsvc32.exe
    C:\Program Files\Norton AntiVirus\SAVScan.exe
    C:\WINDOWS\system32\svchost.exe
    C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe
    C:\WINDOWS\system32\UAService7.exe
    C:\Program Files\Viewpoint\Common\ViewpointService.exe
    C:\Program Files\Canon\CAL\CALMAIN.exe
    C:\Program Files\Common Files\Symantec Shared\Security Center\SymWSC.exe
    C:\WINDOWS\Explorer.EXE
    C:\Program Files\Silicon Integrated Systems\SiSRaidPackage\SRaid.exe
    C:\Program Files\GigaByte\VGA Utility Manager\G-VGA.exe
    C:\WINDOWS\system32\rundll32.exe
    C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe
    C:\Program Files\Common Files\Symantec Shared\ccApp.exe
    C:\Program Files\Common Files\Real\Update_OB\realsched.exe
    C:\Program Files\Java\jre1.5.0_10\bin\jusched.exe
    C:\WINDOWS\SOUNDMAN.EXE
    C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
    C:\Program Files\Windows Defender\MSASCui.exe
    C:\WINDOWS\system32\ctfmon.exe
    C:\Program Files\Macrogaming\SweetIM\SweetIM.exe
    C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\G oogleToolbarNotifier.exe
    C:\Program Files\Windows Media Player\WMPNSCFG.exe
    C:\Program Files\Google\Web Accelerator\GoogleWebAccWarden.exe
    C:\WINDOWS\system32\ntvdm.exe
    C:\Program Files\Google\Web Accelerator\googlewebaccclient.exe
    C:\WINDOWS\system32\wuauclt.exe
    C:\Program Files\Viewpoint\Viewpoint Manager\ViewMgr.exe
    C:\Program Files\Internet Explorer\IEXPLORE.EXE
    C:\HJT\HijackThis.exe
    C:\Program Files\Messenger\msmsgs.exe

    R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Int ernet Settings,AutoConfigURL = http://localhost:9100/proxy.pac
    O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
    O2 - BHO: Google Web Accelerator Helper - {69A87B7D-DE56-4136-9655-716BA50C19C7} - C:\Program Files\Google\Web Accelerator\GoogleWebAccToolbar.dll
    O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_10\bin\ssv.dll
    O2 - BHO: Viewpoint Toolbar BHO - {A7327C09-B521-4EDB-8509-7D2660C9EC98} - C:\Program Files\Viewpoint\Viewpoint Toolbar\3.7.0\ViewBarBHO.dll
    O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar4.dll
    O2 - BHO: CNavExtBho Class - {BDF3E430-B101-42AD-A544-FADC6B084872} - C:\Program Files\Norton AntiVirus\NavShExt.dll
    O2 - BHO: Hoja Class - {C07F60AC-688D-4F3E-89EC-30B281BDD2CC} - C:\WINDOWS\system32\asclhatp.dll
    O2 - BHO: FDMIECookiesBHO Class - {CC59E0F9-7E43-44FA-9FAA-8377850BF205} - C:\Program Files\Free Download Manager\iefdmcks.dll
    O2 - BHO: &Google Notebook - {CCCCCCD3-666F-4F81-8B69-745DE9F6D897} - C:\Program Files\Google\Google Notebook\gnotes1.0.2.6-1813849417.dll
    O3 - Toolbar: Norton AntiVirus - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - C:\Program Files\Norton AntiVirus\NavShExt.dll
    O3 - Toolbar: Google Web Accelerator - {DB87BFA2-A2E3-451E-8E5A-C89982D87CBF} - C:\Program Files\Google\Web Accelerator\GoogleWebAccToolbar.dll
    O3 - Toolbar: &Google Notebook - {CCCCCCDB-4DDB-4703-95D4-DD2C526397BF} - C:\Program Files\Google\Google Notebook\gnotes1.0.2.6-1813849417.dll
    O3 - Toolbar: Viewpoint Toolbar - {F8AD5AA5-D966-4667-9DAF-2561D68B2012} - C:\Program Files\Common Files\Viewpoint\Toolbar Runtime\3.7.0\IEViewBar.dll
    O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar4.dll
    O4 - HKLM\..\Run: [IMJPMIG8.1] "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32
    O4 - HKLM\..\Run: [PHIME2002ASync] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC
    O4 - HKLM\..\Run: [PHIME2002A] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName
    O4 - HKLM\..\Run: [SiSRaid] C:\Program Files\Silicon Integrated Systems\SiSRaidPackage\SRaid.exe
    O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
    O4 - HKLM\..\Run: [NVRTCLK] C:\WINDOWS\system32\NVRTCLK\NVRTClk.exe
    O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
    O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
    O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
    O4 - HKLM\..\Run: [VGAUtil] C:\Program Files\GigaByte\VGA Utility Manager\G-VGA.exe
    O4 - HKLM\..\Run: [RemoteControl] "C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe"
    O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Common Files\Symantec Shared\ccApp.exe"
    O4 - HKLM\..\Run: [Symantec NetDriver Monitor] C:\PROGRA~1\SYMNET~1\SNDMon.exe /Consumer
    O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
    O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
    O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.5.0_10\bin\jusched.exe"
    O4 - HKLM\..\Run: [Cmaudio] RunDll32 cmicnfg.cpl,CMICtrlWnd
    O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
    O4 - HKLM\..\Run: [SweetIM] C:\Program Files\Macrogaming\SweetIM\SweetIM.exe
    O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
    O4 - HKLM\..\Run: [Windows Defender] "C:\Program Files\Windows Defender\MSASCui.exe" -hide
    O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
    O4 - HKCU\..\Run: [NBJ] "C:\Program Files\Ahead\Nero BackItUp\NBJ.exe"
    O4 - HKCU\..\Run: [SweetIM] C:\Program Files\Macrogaming\SweetIM\SweetIM.exe
    O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\G oogleToolbarNotifier.exe
    O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe
    O4 - Startup: Folding@Home 5.03.lnk = ?
    O4 - Startup: Mopy Points Collector.lnk = C:\MOPYFISH\GETPOINT.EXE
    O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
    O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
    O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
    O4 - Global Startup: Run Google Web Accelerator.lnk = C:\Program Files\Google\Web Accelerator\GoogleWebAccWarden.exe
    O8 - Extra context menu item: &Save Flash In This Page by Flash Saver - C:\PROGRA~1\FLASHS~1\save.htm
    O8 - Extra context menu item: Download all with Free Download Manager - file://C:\Program Files\Free Download Manager\dlall.htm
    O8 - Extra context menu item: Download selected with Free Download Manager - file://C:\Program Files\Free Download Manager\dlselected.htm
    O8 - Extra context menu item: Download with Free Download Manager - file://C:\Program Files\Free Download Manager\dllink.htm
    O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
    O8 - Extra context menu item: Note this (Google Note&book) - res://C:\Program Files\Google\Google Notebook\gnotes1.0.2.6-1813849417.dll/gn_menu1.html
    O8 - Extra context menu item: Note this (Google Notebook) - res://C:\Program Files\Google\Google Notebook\gnotes1.0.2.6-1813849417.dll/gn_menu2.html
    O8 - Extra context menu item: Sothink SWF Catcher - C:\Program Files\Common Files\SourceTec\SWF Catcher\InternetExplorer.htm
    O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_10\bin\ssv.dll
    O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_10\bin\ssv.dll
    O9 - Extra button: Flash Saver - {09EA1F80-F40A-11D1-B792-444553540001} - C:\PROGRA~1\FLASHS~1\save.htm
    O9 - Extra 'Tools' menuitem: Flash Saver - {09EA1F80-F40A-11D1-B792-444553540001} - C:\PROGRA~1\FLASHS~1\save.htm
    O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
    O9 - Extra button: Sothink SWF Catcher - {E19ADC6E-3909-43E4-9A89-B7B676377EE3} - C:\Program Files\Common Files\SourceTec\SWF Catcher\InternetExplorer.htm
    O9 - Extra 'Tools' menuitem: Sothink SWF Catcher - {E19ADC6E-3909-43E4-9A89-B7B676377EE3} - C:\Program Files\Common Files\SourceTec\SWF Catcher\InternetExplorer.htm
    O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
    O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
    O16 - DPF: RaptisoftGameLoader - http://www.miniclip.com/haphazard/ra...gameloader.cab
    O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zone.msn.com/binary...r.cab31267.cab
    O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204
    O16 - DPF: {1F2F4C9E-6F09-47BC-970D-3C54734667FE} (LSSupCtl Class) - http://www.symantec.com/techsupp/asa/ctrl/LSSupCtl.cab
    O16 - DPF: {215B8138-A3CF-44C5-803F-8226143CFC0A} (Trend Micro ActiveX Scan Agent 6.6) - http://housecall65.trendmicro.com/ho...vex/hcImpl.cab
    O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary...r.cab31267.cab
    O16 - DPF: {2BC66F54-93A8-11D3-BEB6-00105AA9B6AE} (Symantec AntiVirus scanner) - http://security.symantec.com/sscv6/S...in/AvSniff.cab
    O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://by104fd.bay104.hotmail.msn.co...s/MsnPUpld.cab
    O16 - DPF: {639658F3-B141-4D6B-B936-226F75A5EAC3} (CPlayFirstDinerDash2Control Object) - http://real.gamehouse.com/games/dine...DinerDash2.cab
    O16 - DPF: {644E432F-49D3-41A1-8DD5-E099162EEEC5} (Symantec RuFSI Utility Class) - http://security.symantec.com/sscv6/S.../bin/cabsa.cab
    O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsof...?1143260526781
    O16 - DPF: {6E5A37BF-FD42-463A-877C-4EB7002E68AE} (Trend Micro ActiveX Scan Agent 6.5) - http://housecall65.trendmicro.com/ho...vex/hcImpl.cab
    O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary...t.cab31267.cab
    O16 - DPF: {A8F2B9BD-A6A0-486A-9744-18920D898429} (ScorchPlugin Class) - http://www.sibelius.com/download/sof...iveXPlugin.cab
    O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (ZoneIntro Class) - http://cdn2.zone.msn.com/binFramewor...o.cab34246.cab
    O16 - DPF: {CE28D5D2-60CF-4C7D-9FE8-0F47A3308078} (ActiveDataInfo Class) - http://www.symantec.com/techsupp/asa/ctrl/SymAData.cab
    O16 - DPF: {EB387D2F-E27B-4D36-979E-847D1036C65D} (QDiagHUpdateObj Class) - http://h30043.www3.hp.com/aio/en/check/qdiagh.cab?326
    O16 - DPF: {F9F3920B-2F24-437A-A224-D49F0004A172} - http://www.net-viewer.com/dls/AutoInstall.exe
    O17 - HKLM\System\CCS\Services\Tcpip\Parameters: Domain = Bob-PC
    O17 - HKLM\Software\..\Telephony: DomainName = Bob-PC
    O17 - HKLM\System\CCS\Services\Tcpip\..\{2C48FD80-7867-49FA-BF19-30FECEB9D101}: NameServer = 192.168.2.1
    O17 - HKLM\System\CS1\Services\Tcpip\Parameters: Domain = Bob-PC
    O17 - HKLM\System\CS1\Services\Tcpip\..\{2C48FD80-7867-49FA-BF19-30FECEB9D101}: NameServer = 192.168.2.1
    O17 - HKLM\System\CS2\Services\Tcpip\Parameters: Domain = Bob-PC
    O17 - HKLM\System\CS2\Services\Tcpip\..\{2C48FD80-7867-49FA-BF19-30FECEB9D101}: NameServer = 192.168.2.1
    O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)
    O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
    O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
    O23 - Service: Automatic LiveUpdate Scheduler - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
    O23 - Service: Canon Camera Access Library 8 (CCALib8) - Canon Inc. - C:\Program Files\Canon\CAL\CALMAIN.exe
    O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe
    O23 - Service: Symantec Password Validation (ccPwdSvc) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccPwdSvc.exe
    O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe
    O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
    O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
    O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~2.EXE
    O23 - Service: Norton AntiVirus Auto Protect Service (navapsvc) - Symantec Corporation - C:\Program Files\Norton AntiVirus\navapsvc.exe
    O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
    O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
    O23 - Service: SAVScan - Symantec Corporation - C:\Program Files\Norton AntiVirus\SAVScan.exe
    O23 - Service: ScriptBlocking Service (SBService) - Symantec Corporation - C:\PROGRA~1\COMMON~1\SYMANT~1\SCRIPT~1\SBServ.exe
    O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\SNDSrvc.exe
    O23 - Service: Symantec Core LC - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe
    O23 - Service: SymWMI Service (SymWSC) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\Security Center\SymWSC.exe
    O23 - Service: SecuROM User Access Service (V7) (UserAccess7) - Unknown owner - C:\WINDOWS\system32\UAService7.exe
    O23 - Service: Viewpoint Manager Service - Viewpoint Corporation - C:\Program Files\Viewpoint\Common\ViewpointService.exe
  5. 31-01-2007  #4
    Computer Geek
    Computer Geek is offline Newbie
    I also deleted 20 different types of adware and spyware a few days ago, thanks to the trend micro online scan. symantec doesn't seem to pick them up...
  6. 31-01-2007  #5
    Computer Geek
    Computer Geek is offline Newbie
    Norton always deletes or denies acess as soon as housecall finds something...

    Category: Application activities
    Date,Feature,Action Taken,Details,User Name,Computer Name,Details
    18/12/2006 11:27:39 PM,Virus scanner,Scan completed,Scan my computer,Charlie Rao,BOB-PC,"Scan results:,MBRs scannned : 1,Master boot records infected : 0,Master boot records repaired : 0,Boot Records scanned : 2,Boot records infected : 0,Boot records repaired : 0,Files scanned : 628859,Threats detected : 0,Files repaired : 0,Files quarantined : 0,Files deleted : 0,Files excluded : 0"
    18/12/2006 9:54:11 PM,Virus scanner,Scan started,Scan my computer,Charlie Rao,BOB-PC,Scan my computer
    18/12/2006 9:47:15 PM,Virus scanner,Scan completed,Custom scan,Charlie Rao,BOB-PC,"Scan results:,MBRs scannned : 2,Master boot records infected : 0,Master boot records repaired : 0,Boot Records scanned : 2,Boot records infected : 0,Boot records repaired : 0,Files scanned : 22,Threats detected : 0,Files repaired : 0,Files quarantined : 0,Files deleted : 0,Files excluded : 0"
    18/12/2006 9:47:06 PM,Virus scanner,Scan started,Custom scan,Charlie Rao,BOB-PC,Custom scan
    8/12/2006 9:47:51 PM,Virus scanner,Scan completed,Scan my computer,Bob Rao,BOB-PC,"Scan results:,MBRs scannned : 1,Master boot records infected : 0,Master boot records repaired : 0,Boot Records scanned : 2,Boot records infected : 0,Boot records repaired : 0,Files scanned : 702265,Threats detected : 3,Files repaired : 0,Files quarantined : 0,Files deleted : 2,Files excluded : 0"
    8/12/2006 8:00:02 PM,Virus scanner,Scan started,Scan my computer,Bob Rao,BOB-PC,Scan my computer
    7/12/2006 3:42:16 PM,Virus scanner,Scan cancelled,Scan my computer,Bob Rao,BOB-PC,Scan my computer
    6/12/2006 9:43:24 PM,Virus scanner,Scan started,Scan my computer,Bob Rao,BOB-PC,Scan my computer
    1/12/2006 8:50:01 PM,Virus scanner,Scan cancelled,Scan my computer,Bob Rao,BOB-PC,Scan my computer
    1/12/2006 8:00:01 PM,Virus scanner,Scan started,Scan my computer,Bob Rao,BOB-PC,Scan my computer
    16/11/2006 9:39:07 PM,Virus scanner,Scan completed,Scan my computer,Bob Rao,BOB-PC,"Scan results:,MBRs scannned : 1,Master boot records infected : 0,Master boot records repaired : 0,Boot Records scanned : 2,Boot records infected : 0,Boot records repaired : 0,Files scanned : 691574,Threats detected : 4,Files repaired : 0,Files quarantined : 0,Files deleted : 2,Files excluded : 0"
    16/11/2006 7:37:56 PM,Virus scanner,Scan started,Scan my computer,Bob Rao,BOB-PC,Scan my computer
    3/11/2006 8:38:06 PM,Virus scanner,Scan cancelled,Scan my computer,Bob Rao,BOB-PC,Scan my computer
    3/11/2006 8:00:01 PM,Virus scanner,Scan started,Scan my computer,Bob Rao,BOB-PC,Scan my computer
    29/10/2006 2:19:41 PM,Virus scanner,Scan started,Scan my computer,Bob Rao,BOB-PC,Scan my computer
    27/10/2006 10:47:20 PM,Virus scanner,Scan completed,Scan my computer,Bob Rao,BOB-PC,"Scan results:,MBRs scannned : 1,Master boot records infected : 0,Master boot records repaired : 0,Boot Records scanned : 2,Boot records infected : 0,Boot records repaired : 0,Files scanned : 651425,Threats detected : 0,Files repaired : 0,Files quarantined : 0,Files deleted : 0,Files excluded : 0"
    27/10/2006 9:00:03 PM,Virus scanner,Scan started,Scan my computer,Bob Rao,BOB-PC,Scan my computer
    20/10/2006 10:33:00 PM,Virus scanner,Scan completed,Scan my computer,Bob Rao,BOB-PC,"Scan results:,MBRs scannned : 1,Master boot records infected : 0,Master boot records repaired : 0,Boot Records scanned : 2,Boot records infected : 0,Boot records repaired : 0,Files scanned : 721829,Threats detected : 0,Files repaired : 0,Files quarantined : 0,Files deleted : 0,Files excluded : 0"
    20/10/2006 9:00:03 PM,Virus scanner,Scan started,Scan my computer,Bob Rao,BOB-PC,Scan my computer
    13/10/2006 11:01:15 PM,Virus scanner,Scan completed,Scan my computer,Bob Rao,BOB-PC,"Scan results:,MBRs scannned : 1,Master boot records infected : 0,Master boot records repaired : 0,Boot Records scanned : 2,Boot records infected : 0,Boot records repaired : 0,Files scanned : 712997,Threats detected : 0,Files repaired : 0,Files quarantined : 0,Files deleted : 0,Files excluded : 0"
    13/10/2006 9:00:01 PM,Virus scanner,Scan started,Scan my computer,Bob Rao,BOB-PC,Scan my computer
    29/09/2006 10:14:15 PM,Virus scanner,Scan completed,Scan my computer,Bob Rao,BOB-PC,"Scan results:,MBRs scannned : 1,Master boot records infected : 0,Master boot records repaired : 0,Boot Records scanned : 2,Boot records infected : 0,Boot records repaired : 0,Files scanned : 500323,Threats detected : 1,Files repaired : 0,Files quarantined : 0,Files deleted : 1,Files excluded : 0"
    29/09/2006 9:00:02 PM,Virus scanner,Scan started,Scan my computer,Bob Rao,BOB-PC,Scan my computer
    25/08/2006 10:18:50 PM,Virus scanner,Scan completed,Scan my computer,Bob Rao,BOB-PC,"Scan results:,MBRs scannned : 1,Master boot records infected : 0,Master boot records repaired : 0,Boot Records scanned : 2,Boot records infected : 0,Boot records repaired : 0,Files scanned : 460794,Threats detected : 0,Files repaired : 0,Files quarantined : 0,Files deleted : 0,Files excluded : 0"
    25/08/2006 9:00:01 PM,Virus scanner,Scan started,Scan my computer,Bob Rao,BOB-PC,Scan my computer
    4/08/2006 10:11:06 PM,Virus scanner,Scan completed,Scan my computer,Bob Rao,BOB-PC,"Scan results:,MBRs scannned : 1,Master boot records infected : 0,Master boot records repaired : 0,Boot Records scanned : 2,Boot records infected : 0,Boot records repaired : 0,Files scanned : 418019,Threats detected : 0,Files repaired : 0,Files quarantined : 0,Files deleted : 0,Files excluded : 0"
    4/08/2006 9:00:03 PM,Virus scanner,Scan started,Scan my computer,Bob Rao,BOB-PC,Scan my computer
    28/07/2006 938 PM,Virus scanner,Scan completed,Scan my computer,Bob Rao,BOB-PC,"Scan results:,MBRs scannned : 1,Master boot records infected : 0,Master boot records repaired : 0,Boot Records scanned : 2,Boot records infected : 0,Boot records repaired : 0,Files scanned : 420874,Threats detected : 0,Files repaired : 0,Files quarantined : 0,Files deleted : 0,Files excluded : 0"
    28/07/2006 9:00:02 PM,Virus scanner,Scan started,Scan my computer,Bob Rao,BOB-PC,Scan my computer
    26/07/2006 9:41:48 PM,Virus scanner,Scan completed,Scan my computer,Bob Rao,BOB-PC,"Scan results:,MBRs scannned : 1,Master boot records infected : 0,Master boot records repaired : 0,Boot Records scanned : 2,Boot records infected : 0,Boot records repaired : 0,Files scanned : 421647,Threats detected : 0,Files repaired : 0,Files quarantined : 0,Files deleted : 0,Files excluded : 0"
    26/07/2006 8:37:37 PM,Virus scanner,Scan started,Scan my computer,Bob Rao,BOB-PC,Scan my computer
    15/07/2006 8:51:23 PM,Virus scanner,Scan completed,Scan my computer,Bob Rao,BOB-PC,"Scan results:,MBRs scannned : 1,Master boot records infected : 0,Master boot records repaired : 0,Boot Records scanned : 2,Boot records infected : 0,Boot records repaired : 0,Files scanned : 420522,Threats detected : 0,Files repaired : 0,Files quarantined : 0,Files deleted : 0,Files excluded : 0"
    15/07/2006 7:43:16 PM,Virus scanner,Scan started,Scan my computer,Bob Rao,BOB-PC,Scan my computer
    14/07/2006 5:07:26 PM,Virus scanner,Scan completed,Scan my computer,Bob Rao,BOB-PC,"Scan results:,MBRs scannned : 1,Master boot records infected : 0,Master boot records repaired : 0,Boot Records scanned : 2,Boot records infected : 0,Boot records repaired : 0,Files scanned : 421743,Threats detected : 0,Files repaired : 0,Files quarantined : 0,Files deleted : 0,Files excluded : 0"
    14/07/2006 4:14:30 PM,Virus scanner,Scan started,Scan my computer,Bob Rao,BOB-PC,Scan my computer
    14/07/2006 4:14:20 PM,Virus scanner,Scan started,Scan my computer,Bob Rao,BOB-PC,Scan my computer
    14/07/2006 4:13:22 PM,Virus scanner,Scan cancelled,Scan my computer,Bob Rao,BOB-PC,Scan my computer
    14/07/2006 4:02:55 PM,Virus scanner,Scan started,Scan my computer,Bob Rao,BOB-PC,Scan my computer
    23/06/2006 9:55:08 PM,Virus scanner,Scan completed,Scan my computer,Bob Rao,BOB-PC,"Scan results:,MBRs scannned : 2,Master boot records infected : 0,Master boot records repaired : 0,Boot Records scanned : 2,Boot records infected : 0,Boot records repaired : 0,Files scanned : 373923,Threats detected : 0,Files repaired : 0,Files quarantined : 0,Files deleted : 0,Files excluded : 0"
    23/06/2006 9:00:02 PM,Virus scanner,Scan started,Scan my computer,Bob Rao,BOB-PC,Scan my computer
    16/06/2006 9:59:01 PM,Virus scanner,Scan completed,Scan my computer,Bob Rao,BOB-PC,"Scan results:,MBRs scannned : 1,Master boot records infected : 0,Master boot records repaired : 0,Boot Records scanned : 2,Boot records infected : 0,Boot records repaired : 0,Files scanned : 374696,Threats detected : 0,Files repaired : 0,Files quarantined : 0,Files deleted : 0,Files excluded : 0"
    16/06/2006 9:00:02 PM,Virus scanner,Scan started,Scan my computer,Bob Rao,BOB-PC,Scan my computer
    9/06/2006 10:02:51 PM,Virus scanner,Scan completed,Scan my computer,Bob Rao,BOB-PC,"Scan results:,MBRs scannned : 1,Master boot records infected : 0,Master boot records repaired : 0,Boot Records scanned : 2,Boot records infected : 0,Boot records repaired : 0,Files scanned : 310415,Threats detected : 0,Files repaired : 0,Files quarantined : 0,Files deleted : 0,Files excluded : 0"
    9/06/2006 9:00:01 PM,Virus scanner,Scan started,Scan my computer,Bob Rao,BOB-PC,Scan my computer
    26/05/2006 10:48:12 PM,Virus scanner,Scan completed,Scan my computer,Bob Rao,BOB-PC,"Scan results:,MBRs scannned : 1,Master boot records infected : 0,Master boot records repaired : 0,Boot Records scanned : 2,Boot records infected : 0,Boot records repaired : 0,Files scanned : 281557,Threats detected : 0,Files repaired : 0,Files quarantined : 0,Files deleted : 0,Files excluded : 0"
    26/05/2006 9:00:02 PM,Virus scanner,Scan started,Scan my computer,Bob Rao,BOB-PC,Scan my computer
    19/05/2006 9:57:19 PM,Virus scanner,Scan completed,Scan my computer,Bob Rao,BOB-PC,"Scan results:,MBRs scannned : 1,Master boot records infected : 0,Master boot records repaired : 0,Boot Records scanned : 2,Boot records infected : 0,Boot records repaired : 0,Files scanned : 292733,Threats detected : 0,Files repaired : 0,Files quarantined : 0,Files deleted : 0,Files excluded : 0"
    19/05/2006 9:00:01 PM,Virus scanner,Scan started,Scan my computer,Bob Rao,BOB-PC,Scan my computer
    15/05/2006 9:47:39 PM,Virus scanner,Scan completed,Scan my computer,Bob Rao,BOB-PC,"Scan results:,MBRs scannned : 1,Master boot records infected : 0,Master boot records repaired : 0,Boot Records scanned : 2,Boot records infected : 0,Boot records repaired : 0,Files scanned : 292370,Threats detected : 0,Files repaired : 0,Files quarantined : 0,Files deleted : 0,Files excluded : 0"
    15/05/2006 8:45:12 PM,Virus scanner,Scan started,Scan my computer,Bob Rao,BOB-PC,Scan my computer
    12/05/2006 9:00:16 PM,Virus scanner,Scan cancelled,Scan my computer,Bob Rao,BOB-PC,Scan my computer
    12/05/2006 9:00:02 PM,Virus scanner,Scan started,Scan my computer,Bob Rao,BOB-PC,Scan my computer
    5/05/2006 10:24:05 PM,Virus scanner,Scan completed,Scan my computer,Bob Rao,BOB-PC,"Scan results:,MBRs scannned : 1,Master boot records infected : 0,Master boot records repaired : 0,Boot Records scanned : 2,Boot records infected : 0,Boot records repaired : 0,Files scanned : 269168,Threats detected : 0,Files repaired : 0,Files quarantined : 0,Files deleted : 0,Files excluded : 0"
    5/05/2006 9:00:02 PM,Virus scanner,Scan started,Scan my computer,Bob Rao,BOB-PC,Scan my computer
    29/04/2006 6:57:39 PM,Virus scanner,Scan completed,Scan my computer,Bob Rao,BOB-PC,"Scan results:,MBRs scannned : 1,Master boot records infected : 0,Master boot records repaired : 0,Boot Records scanned : 2,Boot records infected : 0,Boot records repaired : 0,Files scanned : 253733,Threats detected : 0,Files repaired : 0,Files quarantined : 0,Files deleted : 0,Files excluded : 0"
    29/04/2006 4:18:35 PM,Virus scanner,Scan started,Scan my computer,Bob Rao,BOB-PC,Scan my computer
    28/04/2006 9:59:22 PM,Virus scanner,Scan completed,Scan my computer,Bob Rao,BOB-PC,"Scan results:,MBRs scannned : 1,Master boot records infected : 0,Master boot records repaired : 0,Boot Records scanned : 2,Boot records infected : 0,Boot records repaired : 0,Files scanned : 265423,Threats detected : 2,Files repaired : 0,Files quarantined : 0,Files deleted : 2,Files excluded : 0"
    28/04/2006 9:00:01 PM,Virus scanner,Scan started,Scan my computer,Bob Rao,BOB-PC,Scan my computer
    21/04/2006 9:50:07 PM,Virus scanner,Scan completed,Scan my computer,Bob Rao,BOB-PC,"Scan results:,MBRs scannned : 1,Master boot records infected : 0,Master boot records repaired : 0,Boot Records scanned : 2,Boot records infected : 0,Boot records repaired : 0,Files scanned : 256573,Threats detected : 0,Files repaired : 0,Files quarantined : 0,Files deleted : 0,Files excluded : 0"
    21/04/2006 9:00:05 PM,Virus scanner,Scan started,Scan my computer,Bob Rao,BOB-PC,Scan my computer
    14/04/2006 9:55:34 PM,Virus scanner,Scan completed,Scan my computer,Bob Rao,BOB-PC,"Scan results:,MBRs scannned : 1,Master boot records infected : 0,Master boot records repaired : 0,Boot Records scanned : 2,Boot records infected : 0,Boot records repaired : 0,Files scanned : 223271,Threats detected : 0,Files repaired : 0,Files quarantined : 0,Files deleted : 0,Files excluded : 0"
    14/04/2006 9:00:04 PM,Virus scanner,Scan started,Scan my computer,Bob Rao,BOB-PC,Scan my computer
    7/04/2006 9:46:47 PM,Virus scanner,Scan completed,Scan my computer,Bob Rao,BOB-PC,"Scan results:,MBRs scannned : 1,Master boot records infected : 0,Master boot records repaired : 0,Boot Records scanned : 2,Boot records infected : 0,Boot records repaired : 0,Files scanned : 218033,Threats detected : 0,Files repaired : 0,Files quarantined : 0,Files deleted : 0,Files excluded : 0"
    7/04/2006 9:00:07 PM,Virus scanner,Scan started,Scan my computer,Bob Rao,BOB-PC,Scan my computer
    7/04/2006 7:49:26 PM,Virus scanner,Scan completed,Custom scan,Bob Rao,BOB-PC,"Scan results:,MBRs scannned : 1,Master boot records infected : 0,Master boot records repaired : 0,Boot Records scanned : 2,Boot records infected : 0,Boot records repaired : 0,Files scanned : 1,Threats detected : 0,Files repaired : 0,Files quarantined : 0,Files deleted : 0,Files excluded : 0"
    7/04/2006 7:49:23 PM,Virus scanner,Scan started,Custom scan,Bob Rao,BOB-PC,Custom scan
    7/04/2006 7:45:44 PM,Virus scanner,Scan completed,Custom scan,Bob Rao,BOB-PC,"Scan results:,MBRs scannned : 1,Master boot records infected : 0,Master boot records repaired : 0,Boot Records scanned : 2,Boot records infected : 0,Boot records repaired : 0,Files scanned : 1,Threats detected : 0,Files repaired : 0,Files quarantined : 0,Files deleted : 0,Files excluded : 0"
    7/04/2006 7:45:14 PM,Virus scanner,Scan started,Custom scan,Bob Rao,BOB-PC,Custom scan
    6/04/2006 10:13:48 PM,Virus scanner,Scan completed,Custom scan,Bob Rao,BOB-PC,"Scan results:,MBRs scannned : 1,Master boot records infected : 0,Master boot records repaired : 0,Boot Records scanned : 2,Boot records infected : 0,Boot records repaired : 0,Files scanned : 1908,Threats detected : 0,Files repaired : 0,Files quarantined : 0,Files deleted : 0,Files excluded : 0"
    6/04/2006 9:41:24 PM,Virus scanner,Scan started,Custom scan,Bob Rao,BOB-PC,Custom scan
    6/04/2006 7:23:06 PM,Virus scanner,Scan completed,Custom scan,Bob Rao,BOB-PC,"Scan results:,MBRs scannned : 1,Master boot records infected : 0,Master boot records repaired : 0,Boot Records scanned : 2,Boot records infected : 0,Boot records repaired : 0,Files scanned : 1,Threats detected : 0,Files repaired : 0,Files quarantined : 0,Files deleted : 0,Files excluded : 0"
    6/04/2006 7:23:04 PM,Virus scanner,Scan started,Custom scan,Bob Rao,BOB-PC,Custom scan
    6/04/2006 7:23:01 PM,Virus scanner,Scan completed,Custom scan,Bob Rao,BOB-PC,"Scan results:,MBRs scannned : 1,Master boot records infected : 0,Master boot records repaired : 0,Boot Records scanned : 2,Boot records infected : 0,Boot records repaired : 0,Files scanned : 1,Threats detected : 0,Files repaired : 0,Files quarantined : 0,Files deleted : 0,Files excluded : 0"
    6/04/2006 7:22:55 PM,Virus scanner,Scan started,Custom scan,Bob Rao,BOB-PC,Custom scan
    6/04/2006 7:22:45 PM,Virus scanner,Scan completed,Custom scan,Bob Rao,BOB-PC,"Scan results:,MBRs scannned : 1,Master boot records infected : 0,Master boot records repaired : 0,Boot Records scanned : 2,Boot records infected : 0,Boot records repaired : 0,Files scanned : 2098,Threats detected : 0,Files repaired : 0,Files quarantined : 0,Files deleted : 0,Files excluded : 0"
    6/04/2006 705 PM,Virus scanner,Scan started,Custom scan,Bob Rao,BOB-PC,Custom scan
    3/04/2006 10:18:29 PM,Virus scanner,Scan completed,Scan my computer,Bob Rao,BOB-PC,"Scan results:,MBRs scannned : 1,Master boot records infected : 0,Master boot records repaired : 0,Boot Records scanned : 2,Boot records infected : 0,Boot records repaired : 0,Files scanned : 210718,Threats detected : 1,Files repaired : 0,Files quarantined : 0,Files deleted : 0,Files excluded : 0"
    3/04/2006 9:52:04 PM,Virus scanner,Scan started,Scan my computer,Bob Rao,BOB-PC,Scan my computer
    31/03/2006 9:17:28 PM,Virus scanner,Scan completed,Scan my computer,Bob Rao,BOB-PC,"Scan results:,MBRs scannned : 1,Master boot records infected : 0,Master boot records repaired : 0,Boot Records scanned : 2,Boot records infected : 0,Boot records repaired : 0,Files scanned : 179619,Threats detected : 0,Files repaired : 0,Files quarantined : 0,Files deleted : 0,Files excluded : 0"
    31/03/2006 8:49:46 PM,Virus scanner,Scan started,Scan my computer,Bob Rao,BOB-PC,Scan my computer
    31/03/2006 8:49:34 PM,Virus scanner,Scan cancelled,Scan my computer,Bob Rao,BOB-PC,Scan my computer
    31/03/2006 8:48:22 PM,Virus scanner,Scan started,Scan my computer,Bob Rao,BOB-PC,Scan my computer
    31/03/2006 8:35:01 PM,Virus scanner,Scan completed,Scan my computer,Bob Rao,BOB-PC,"Scan results:,MBRs scannned : 1,Master boot records infected : 0,Master boot records repaired : 0,Boot Records scanned : 2,Boot records infected : 0,Boot records repaired : 0,Files scanned : 180763,Threats detected : 3,Files repaired : 0,Files quarantined : 0,Files deleted : 1,Files excluded : 0"
    31/03/2006 8:00:01 PM,Virus scanner,Scan started,Scan my computer,Bob Rao,BOB-PC,Scan my computer
    25/03/2006 4:44:22 PM,Virus scanner,Scan completed,Scan my computer,Bob Rao,BOB-PC,"Scan results:,MBRs scannned : 1,Master boot records infected : 0,Master boot records repaired : 0,Boot Records scanned : 2,Boot records infected : 0,Boot records repaired : 0,Files scanned : 42700,Threats detected : 0,Files repaired : 0,Files quarantined : 0,Files deleted : 0,Files excluded : 0"
    25/03/2006 4:31:21 PM,Virus scanner,Scan started,Scan my computer,Bob Rao,BOB-PC,Scan my computer



    Category: Threat alerts
    Date,Feature,Threat Name,Action Taken,Item Type,Target,Suspicious Action,Virus Definition Version,Product Version,User Name,Computer Name,Details
    30/01/2007 4:10:06 PM,Auto-Protect,Hacktool,Automatically deleted,File,N/A,N/A,200701240024,10.0.29.4,Bob Rao,BOB-PC,Source: C:\Documents and Settings\Bob Rao\.housecall6.6\ra2_101.exe
    30/01/2007 4:10:01 PM,Auto-Protect,Hacktool,Automatically deleted,File,N/A,N/A,200701240024,10.0.29.4,Bob Rao,BOB-PC,Source: C:\Documents and Settings\Bob Rao\Shared\[PC GAME] Command and Conquer Red Alert 2\Command and Conquer Red Alert 2\ra2_101.exe
    30/01/2007 4:08:19 PM,Auto-Protect,Hacktool,Automatically deleted,File,N/A,N/A,200701240024,10.0.29.4,Bob Rao,BOB-PC,Source: C:\Documents and Settings\Bob Rao\Shared\[PC GAME] Command and Conquer Red Alert 2\Command and Conquer Red Alert 2\ra2_101.exe
    30/01/2007 4:06:02 PM,Auto-Protect,Hacktool,Automatically deleted,File,N/A,N/A,200701240024,10.0.29.4,Bob Rao,BOB-PC,Source: C:\Documents and Settings\Bob Rao\Shared\[PC GAME] Command and Conquer Red Alert 2\Command and Conquer Red Alert 2\ra2_101.exe
    30/01/2007 4:05:52 PM,Auto-Protect,Hacktool,Automatically deleted,File,N/A,N/A,200701240024,10.0.29.4,Bob Rao,BOB-PC,Source: C:\Documents and Settings\Bob Rao\.housecall6.6\ra2_101.exe
    30/01/2007 4:05:10 PM,Auto-Protect,Hacktool,Automatically deleted,File,N/A,N/A,200701240024,10.0.29.4,Bob Rao,BOB-PC,Source: C:\Documents and Settings\Bob Rao\Shared\[PC GAME] Command and Conquer Red Alert 2\Command and Conquer Red Alert 2\ra2_101.exe
    29/01/2007 7:34:06 PM,Auto-Protect,Bloodhound.Exploit.95,Access denied,File,N/A,N/A,200701240024,10.0.29.4,Bob Rao,BOB-PC,Source: C:\Documents and Settings\Bob Rao\Local Settings\Temporary Internet Files\Content.IE5\9XHREAR6\count[1].htm
    29/01/2007 7:34:06 PM,Auto-Protect,Bloodhound.Exploit.95,Repair failed,File,N/A,N/A,200701240024,10.0.29.4,Bob Rao,BOB-PC,Source: C:\Documents and Settings\Bob Rao\Local Settings\Temporary Internet Files\Content.IE5\9XHREAR6\count[1].htm
    28/01/2007 1:43:55 PM,Auto-Protect,Trojan Horse,Access denied,File,N/A,N/A,200701240024,10.0.29.4,SYSTEM,BOB-PC,Source: C:\WINDOWS\system32\1024\ld21F6.tmp
    28/01/2007 1:43:55 PM,Auto-Protect,Trojan Horse,Repair failed,File,N/A,N/A,200701240024,10.0.29.4,SYSTEM,BOB-PC,Source: C:\WINDOWS\system32\1024\ld21F6.tmp
    28/01/2007 1:38:47 PM,Auto-Protect,Trojan Horse,Access denied,File,N/A,N/A,200701240024,10.0.29.4,Bob Rao,BOB-PC,Source: C:\WINDOWS\system32\1024\ld21F6.tmp
    28/01/2007 1:38:47 PM,Auto-Protect,Trojan Horse,Repair failed,File,N/A,N/A,200701240024,10.0.29.4,Bob Rao,BOB-PC,Source: C:\WINDOWS\system32\1024\ld21F6.tmp
    28/01/2007 1:38:47 PM,Auto-Protect,Trojan Horse,Access denied,File,N/A,N/A,200701240024,10.0.29.4,Bob Rao,BOB-PC,Source: C:\WINDOWS\system32\1024\ld21F6.tmp
    28/01/2007 1:38:47 PM,Auto-Protect,Trojan Horse,Repair failed,File,N/A,N/A,200701240024,10.0.29.4,Bob Rao,BOB-PC,Source: C:\WINDOWS\system32\1024\ld21F6.tmp
    28/01/2007 12:01:16 PM,Auto-Protect,Hacktool,Automatically deleted,File,N/A,N/A,200701240024,10.0.29.4,Bob Rao,BOB-PC,Source: C:\Documents and Settings\Bob Rao\Shared\[PC GAME] Command and Conquer Red Alert 2\Command and Conquer Red Alert 2\ra2_101.exe
    28/01/2007 11:51:32 AM,Auto-Protect,Hacktool,Automatically deleted,File,N/A,N/A,200701240024,10.0.29.4,Bob Rao,BOB-PC,Source: C:\Documents and Settings\Bob Rao\Desktop\New Folder (3)\ra2_10.exe
    8/12/2006 9:47:51 PM,Virus scanner,Spyware.SafeSurfing,Delete failed,File,N/A,N/A,200612060016,10.0.29.4,Bob Rao,BOB-PC,",Threat category: SpywareSource: C:\WINDOWS\system32\tcblkamo.dll,Description: The file C:\WINDOWS\system32\tcblkamo.dll is a Spyware threat."
    8/12/2006 9:47:51 PM,Virus scanner,Spyware.SafeSurfing,Manually deleted,File,N/A,N/A,200612060016,10.0.29.4,Bob Rao,BOB-PC,",Threat category: SpywareSource: C:\RECYCLER\S-1-5-21-1123561945-1935655697-682003330-1003\Dc88.dll,Description: The file C:\RECYCLER\S-1-5-21-1123561945-1935655697-682003330-1003\Dc88.dll is a Spyware threat."
    8/12/2006 9:47:51 PM,Virus scanner,Spyware.SafeSurfing,Manually deleted,File,N/A,N/A,200612060016,10.0.29.4,Bob Rao,BOB-PC,",Threat category: SpywareSource: C:\RECYCLER\S-1-5-21-1123561945-1935655697-682003330-1003\Dc87.dll,Description: The file C:\RECYCLER\S-1-5-21-1123561945-1935655697-682003330-1003\Dc87.dll is a Spyware threat."
    16/11/2006 9:39:07 PM,Virus scanner,Spyware.SafeSurfing,Delete failed,File,N/A,N/A,200611150018,10.0.29.4,Bob Rao,BOB-PC,",Threat category: SpywareSource: C:\WINDOWS\system32\tcblbvmn.dll,Description: The file C:\WINDOWS\system32\tcblbvmn.dll is a Spyware threat."
    16/11/2006 9:39:07 PM,Virus scanner,VirusBurst,Manually deleted,File,N/A,N/A,200611150018,10.0.29.4,Bob Rao,BOB-PC,",Threat category: Security riskSource: C:\Documents and Settings\Bob Rao\Local Settings\Temp\vb98.exe,Description: The file C:\Documents and Settings\Bob Rao\Local Settings\Temp\vb98.exe is a Security risk threat."
    16/11/2006 9:39:07 PM,Virus scanner,SpywareQuake,Manually deleted,File,N/A,N/A,200611150018,10.0.29.4,Bob Rao,BOB-PC,",Threat category: Security riskSource: C:\WINDOWS\Temp\sa1A6.exe,Description: The file C:\WINDOWS\Temp\sa1A6.exe is a Security risk threat."
    16/11/2006 9:39:07 PM,Virus scanner,Spyware.SafeSurfing,Delete failed,File,N/A,N/A,200611150018,10.0.29.4,Bob Rao,BOB-PC,",Threat category: SpywareSource: C:\WINDOWS\system32\vcbhzjkm.dll,Description: The file C:\WINDOWS\system32\vcbhzjkm.dll is a Spyware threat."
    16/11/2006 7:36:08 PM,Auto-Protect,Backdoor.Trojan,Manually deleted,File,N/A,N/A,200611150018,10.0.29.4,Bob Rao,BOB-PC,"Source: Setup.exe,Description: C:\Documents and Settings\Bob Rao\Incomplete\T-756716-Clash N Slash Worlds Away 1.02_3.rar"
    16/11/2006 7:35:58 PM,Auto-Protect,Backdoor.Trojan,Manually deleted,File,N/A,N/A,200611150018,10.0.29.4,Bob Rao,BOB-PC,"Source: Setup.exe,Description: C:\Documents and Settings\Bob Rao\Incomplete\T-756709-Clash N Slash Worlds Away 1.02_2.rar"
    3/11/2006 8:38:06 PM,Virus scanner,DriveCleaner,No action taken,File,N/A,N/A,200611010019,10.0.29.4,Bob Rao,BOB-PC,",Threat category: Security riskSource: UDC6_0001_D19M1908NetInstaller.exe,Description: The compressed file UDC6_0001_D19M1908NetInstaller.exe within C:\Documents and Settings\Bob Rao\Local Settings\Temporary Internet Files\Content.IE5\KP2F8LMJ\installdrivecleanerstar t[1].cab is a Security risk threat."
    3/11/2006 8:38:06 PM,Virus scanner,DriveCleaner,No action taken,File,N/A,N/A,200611010019,10.0.29.4,Bob Rao,BOB-PC,",Threat category: Security riskSource: C:\Documents and Settings\Bob Rao\Local Settings\Temporary Internet Files\Content.IE5\KP2F8LMJ\installdrivecleanerstar t[1].cab,Description: The file C:\Documents and Settings\Bob Rao\Local Settings\Temporary Internet Files\Content.IE5\KP2F8LMJ\installdrivecleanerstar t[1].cab is a Security risk threat."
    3/11/2006 8:38:06 PM,Virus scanner,VirusBurst,No action taken,File,N/A,N/A,200611010019,10.0.29.4,Bob Rao,BOB-PC,",Threat category: Security riskSource: C:\Documents and Settings\Bob Rao\Local Settings\Temp\vb98.exe,Description: The file C:\Documents and Settings\Bob Rao\Local Settings\Temp\vb98.exe is a Security risk threat."
    26/10/2006 5:11:04 PM,Auto-Protect,Infostealer.Bancos!gen,Access denied,File,N/A,N/A,200610250039,10.0.29.4,Bob Rao,BOB-PC,"Source: Install.exe,Description: C:\Documents and Settings\Bob Rao\Incomplete\T-1148832-[US PC GAME] Lego Star Wars 11 The Original Trilogy no cd crack.zip"
    25/10/2006 9:54:35 PM,Auto-Protect,Trojan Horse,Access denied,File,N/A,N/A,200610190066,10.0.29.4,Bob Rao,BOB-PC,Source: C:\Documents and Settings\Bob Rao\Incomplete\T-233472-Lego Star Wars II The Original Trilogy-RELOADED iSO.exe
    25/10/2006 9:54:35 PM,Auto-Protect,Trojan Horse,Repair failed,File,N/A,N/A,200610190066,10.0.29.4,Bob Rao,BOB-PC,Source: C:\Documents and Settings\Bob Rao\Incomplete\T-233472-Lego Star Wars II The Original Trilogy-RELOADED iSO.exe
    25/10/2006 8:44:15 PM,Auto-Protect,Trojan Horse,Access denied,File,N/A,N/A,200610190066,10.0.29.4,Bob Rao,BOB-PC,Source: C:\Documents and Settings\Bob Rao\Incomplete\T-233472-WinZip 10 Pro.exe
    25/10/2006 8:44:15 PM,Auto-Protect,Trojan Horse,Repair failed,File,N/A,N/A,200610190066,10.0.29.4,Bob Rao,BOB-PC,Source: C:\Documents and Settings\Bob Rao\Incomplete\T-233472-WinZip 10 Pro.exe
    25/10/2006 8:43:27 PM,Auto-Protect,Trojan Horse,Access denied,File,N/A,N/A,200610190066,10.0.29.4,Bob Rao,BOB-PC,Source: C:\Documents and Settings\Bob Rao\Incomplete\T-268800-WinRar and WinZip cracker.exe
    25/10/2006 8:43:27 PM,Auto-Protect,Trojan Horse,Repair failed,File,N/A,N/A,200610190066,10.0.29.4,Bob Rao,BOB-PC,Source: C:\Documents and Settings\Bob Rao\Incomplete\T-268800-WinRar and WinZip cracker.exe
    25/10/2006 8:42:30 PM,Auto-Protect,W32.Alcra.B,Manually deleted,File,N/A,N/A,200610190066,10.0.29.4,Bob Rao,BOB-PC,"Source: Setup.exe,Description: C:\Documents and Settings\Bob Rao\Incomplete\T-872159-Winzip 10.0 Pro.zip"
    24/10/2006 7:28:30 PM,Auto-Protect,Trojan Horse,Access denied,File,N/A,N/A,200610190066,10.0.29.4,Bob Rao,BOB-PC,Source: C:\Documents and Settings\Bob Rao\Incomplete\T-233472-Reflexive Arcade Platypus v1.14.exe
    24/10/2006 7:28:30 PM,Auto-Protect,Trojan Horse,Repair failed,File,N/A,N/A,200610190066,10.0.29.4,Bob Rao,BOB-PC,Source: C:\Documents and Settings\Bob Rao\Incomplete\T-233472-Reflexive Arcade Platypus v1.14.exe
    29/09/2006 10:14:15 PM,Virus scanner,Trojan.Zlob,Automatically deleted,File,N/A,N/A,200609270018,10.0.29.4,Bob Rao,BOB-PC,",Threat category: VirusSource: C:\WINDOWS\system32\hp100.tmp,Description: The file C:\WINDOWS\system32\hp100.tmp is infected with the Trojan.Zlob virus."
    26/07/2006 8:05:44 AM,Auto-Protect,Trojan.Zlob,Access denied,File,N/A,N/A,200607240048,10.0.29.4,SYSTEM,BOB-PC,Source: C:\WINDOWS\system32\ld101.tmp
    26/07/2006 8:05:44 AM,Auto-Protect,Trojan.Zlob,Repair failed,File,N/A,N/A,200607240048,10.0.29.4,SYSTEM,BOB-PC,Source: C:\WINDOWS\system32\ld101.tmp
    29/04/2006 4:11:01 PM,Auto-Protect,Download.Trojan,Access denied,File,N/A,N/A,200604260019,10.0.1.13,Bob Rao,BOB-PC,Source: C:\Documents and Settings\Bob Rao\Local Settings\Temporary Internet Files\Content.IE5\Z9CXKTD7\ABoxInst_int13[1].exe
    29/04/2006 4:11:01 PM,Auto-Protect,Download.Trojan,Repair failed,File,N/A,N/A,200604260019,10.0.1.13,Bob Rao,BOB-PC,Source: C:\Documents and Settings\Bob Rao\Local Settings\Temporary Internet Files\Content.IE5\Z9CXKTD7\ABoxInst_int13[1].exe
    28/04/2006 9:59:22 PM,Virus scanner,Joke Program,Manually deleted,File,N/A,N/A,200604260019,10.0.1.13,Bob Rao,BOB-PC,",Threat category: Joke programSource: CrazyIcons.exe,Description: The compressed file CrazyIcons.exe within C:\games\lcrazyicons.exe is a Joke program threat."
    28/04/2006 9:59:22 PM,Virus scanner,Joke Program,Manually deleted,File,N/A,N/A,200604260019,10.0.1.13,Bob Rao,BOB-PC,",Threat category: Joke programSource: C:\Documents and Settings\Bob Rao\Local Settings\Temp\CrazyIcons.exe,Description: The file C:\Documents and Settings\Bob Rao\Local Settings\Temp\CrazyIcons.exe is a Joke program threat."
    3/04/2006 10:18:29 PM,Virus scanner,Adware.NDotNet,Delete failed,File,N/A,N/A,200603300035,10.0.1.13,Bob Rao,BOB-PC,",Threat category: AdwareSource: C:\Documents and Settings\Bob Rao\Local Settings\Temp\~zs2A.tmp\NNZAP388.exe,Description: The file C:\Documents and Settings\Bob Rao\Local Settings\Temp\~zs2A.tmp\NNZAP388.exe is a Adware threat."
    31/03/2006 8:35:01 PM,Virus scanner,Hacktool.AceSniffer,Delete failed,File,N/A,N/A,200603290009,10.0.1.13,Bob Rao,BOB-PC,",Threat category: Hack toolSource: APSV1.EXE,Description: The compressed file APSV1.EXE within D:\Bob_2\Mythology\Data\ApsSetup.exe is a Hack tool threat."
    31/03/2006 8:35:01 PM,Virus scanner,Hacktool.AceSniffer,Manually deleted,File,N/A,N/A,200603290009,10.0.1.13,Bob Rao,BOB-PC,",Threat category: Hack toolSource: D:\Bob_2\Mythology\Data\ApsSetup.exe,Description: The file D:\Bob_2\Mythology\Data\ApsSetup.exe is a Hack tool threat."
    31/03/2006 8:35:01 PM,Virus scanner,Adware.Savenow,Delete failed,File,N/A,N/A,200603290009,10.0.1.13,Bob Rao,BOB-PC,",Threat category: AdwareSource: C:\Program Files\Crazy Crash Racing\fungamesgalaxy.exe,Description: The file C:\Program Files\Crazy Crash Racing\fungamesgalaxy.exe is a Adware threat."
    28/03/2006 5:25:32 PM,Script Blocking,Suspicious script,Activity allowed once,Script,N/A,Windows Script Host Shell Object : Run,Unknown,Unknown,Bob Rao,BOB-PC,Source: HelpCtr.exe
    28/03/2006 5:25:23 PM,Script Blocking,Suspicious script,Activity allowed once,Script,N/A,FileSystem Object : GetSpecialFolder,Unknown,Unknown,Bob Rao,BOB-PC,Source: HelpCtr.exe
  7. 04-02-2007  #6
    VopThis
    VopThis is offline Senior Member (Canada)
    Please disable the ‘active protection’ components of the following application(s), as it/they may hinder the removal of some entries. Otherwise, certain cleaning attempts may be wrongly recognized and blocked as hijacking attempts or other potentially inappropriate behavior. You can re-enable such tools after your computer is clean.


    Disable Windows Defender
    • Open Windows Defender
    • Click Tools
    • Click General Settings
    • Scroll down to Real Time Protection Options
    • Uncheck Turn on Real Time Protection (recommended)
    • Close Windows Defender




    Also disable any optional blocking components from Symantec, if applicable.


    Re-run your last scan.
  8. 06-02-2007  #7
    Computer Geek
    Computer Geek is offline Newbie
    Save 20% on AVG Internet Security 2012 Suite!
    Thanks for the reply! Housecall didn't find anything this time round; my computer is a lot faster now. that might be because i recently disabled some startup programs.
+ Reply to Thread
« Help me! Computer is very slow | i need help for my computer....urgent »