CID Popup problems (RESOLVED)

  1. 10-03-2007  #1
    iccyboo
    iccyboo is offline Newbie

    CID Popup problems (RESOLVED)

    Hello guys, I seem to have some Malware on my PC. Everytime I go into IE, I get a pop up with a CID on the front of it. Really annoying. Looking at the other logs, in here, I've run the hijackthis.exe and here is the log.

    I would appreciate your help.

    Thanks

    Iccyboo

    Logfile of HijackThis v1.99.1
    Scan saved at 01:19:37, on 10/03/2007
    Platform: Windows XP SP2 (WinNT 5.01.2600)
    MSIE: Internet Explorer v7.00 (7.00.5730.0011)

    Running processes:
    C:\WINDOWS\System32\smss.exe
    C:\WINDOWS\system32\winlogon.exe
    C:\WINDOWS\system32\services.exe
    C:\WINDOWS\system32\lsass.exe
    C:\WINDOWS\system32\svchost.exe
    C:\Program Files\Windows Defender\MsMpEng.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\Explorer.EXE
    C:\Program Files\CCleaner\ccleaner.exe
    C:\hjt\HijackThis.exe

    R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page =
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
    R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
    R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)
    O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
    O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_11\bin\ssv.dll
    O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
    O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
    O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar3.dll
    O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
    O2 - BHO: EpsonToolBandKicker Class - {E99421FB-68DD-40F0-B4AC-B7027CAE2F1A} - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll
    O3 - Toolbar: EPSON Web-To-Page - {EE5D279F-081B-4404-994D-C6B60AAEBA6D} - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll
    O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
    O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar3.dll
    O4 - HKLM\..\Run: [CTSysVol] C:\Program Files\Creative\Sound Blaster Live! 24-bit\Surround Mixer\CTSysVol.exe /r
    O4 - HKLM\..\Run: [P17Helper] Rundll32 P17.dll,P17Helper
    O4 - HKLM\..\Run: [UpdReg] C:\WINDOWS\UpdReg.EXE
    O4 - HKLM\..\Run: [BigDogPath] C:\WINDOWS\VM_STI.EXE Philips SPC 300NC PC Camera
    O4 - HKLM\..\Run: [EPSON Stylus Photo R220 Series] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIA IE.EXE /P30 "EPSON Stylus Photo R220 Series" /O6 "USB001" /M "Stylus Photo R220"
    O4 - HKLM\..\Run: [type32] "C:\Program Files\Microsoft IntelliType Pro\type32.exe"
    O4 - HKLM\..\Run: [IntelliPoint] "C:\Program Files\Microsoft IntelliPoint\point32.exe"
    O4 - HKLM\..\Run: [BluetoothAuthenticationAgent] rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent
    O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.5.0_11\bin\jusched.exe"
    O4 - HKLM\..\Run: [SsAAD.exe] C:\PROGRA~1\Sony\SONICS~1\SsAAD.exe
    O4 - HKLM\..\Run: [Zone Labs Client] "C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe"
    O4 - HKLM\..\Run: [cctray] "C:\Program Files\CA\CA Internet Security Suite\cctray\cctray.exe"
    O4 - HKLM\..\Run: [QOELOADER] "C:\Program Files\CA\CA Internet Security Suite\CA Anti-Spam\QSP-5.0.419.0\QOELoader.exe"
    O4 - HKLM\..\Run: [USRobotics USB Internet Mini Phone] "C:\Program Files\U.S. Robotics\USB Internet Mini Phone\USRobotics USB Internet Mini Phone.exe"
    O4 - HKLM\..\Run: [USRobotics USB Internet Mini Phone Control Panel] "C:\Program Files\U.S. Robotics\USB Internet Mini Phone\USB Internet Mini Phone UI.exe"
    O4 - HKLM\..\Run: [ISUSScheduler] "C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe" -start
    O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
    O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
    O4 - HKLM\..\Run: [build beep byte bird] C:\Documents and Settings\All Users\Application Data\Cast cash build beep\Phone else.exe
    O4 - HKLM\..\Run: [Windows Defender] "C:\Program Files\Windows Defender\MSASCui.exe" -hide
    O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe
    O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
    O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe"
    O4 - HKCU\..\Run: [Creative Detector] C:\Program Files\Creative\MediaSource\Detector\CTDetect.exe /R
    O4 - HKCU\..\Run: [BitTorrent] "C:\Program Files\BitTorrent\bittorrent.exe" --force_start_minimized
    O4 - HKCU\..\Run: [Uniblue SpeedUpMyPC] C:\Program Files\Uniblue\SpeedUpMyPC\SpeedUpMyPC.exe -s
    O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
    O4 - Global Startup: AutoUpdate Monitor.lnk = C:\Program Files\Sophos\AutoUpdate\ALMon.exe
    O4 - Global Startup: TrayMin300.exe.lnk = ?
    O4 - Global Startup: VPN Client.lnk = ?
    O8 - Extra context menu item: &Search - http://edits.mywebsearch.com/toolbar...rch.jhtml?p=ZU
    O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm
    O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
    O8 - Extra context menu item: Open in new background tab - res://C:\Program Files\Windows Live Toolbar\Components\en-us\msntabres.dll.mui/229?fd462d2376d142cd987720aac4ac7b91
    O8 - Extra context menu item: Open in new foreground tab - res://C:\Program Files\Windows Live Toolbar\Components\en-us\msntabres.dll.mui/230?fd462d2376d142cd987720aac4ac7b91
    O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_11\bin\ssv.dll
    O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_11\bin\ssv.dll
    O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
    O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
    O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
    O11 - Options group: [INTERNATIONAL] International*
    O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zone.msn.com/binary...r.cab31267.cab
    O16 - DPF: {04CC2CE2-BBC4-43B6-96D6-E1C3E0BA120F} (HMVDownloader Control) - https://www.hmvdigital.com/HMV.Digit...Downloader.cab
    O16 - DPF: {0A5FD7C5-A45C-49FC-ADB5-9952547D5715} (Creative Software AutoUpdate) - http://www.creative.com/su/ocx/15015/CTSUEng.cab
    O16 - DPF: {14B87622-7E19-4EA8-93B3-97215F77A6BC} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary...t.cab31267.cab
    O16 - DPF: {1754A1BA-A1DF-4F10-B199-AA55AA1A120F} (InstallerBehaviorFactory Class) - https://signup.msn.com/pages/MsnInstC.cab
    O16 - DPF: {1D4DB7D2-6EC9-47A3-BD87-1E41684E07BB} - http://ak.exe.imgfarm.com/images/noc...up1.0.0.15.cab
    O16 - DPF: {25365FF3-2746-4230-9DA7-163CCA318309} (Automatic Driver Installation Control) - http://inst.c-wss.com/n019p/EN/install/gtdownlr.cab
    O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:\Program Files\Yahoo!\Common\yinsthelper.dll
    O16 - DPF: {4C39376E-FA9D-4349-BACC-D305C1750EF3} (EPUImageControl Class) - http://tools.ebayimg.com/eps/wl/acti..._v1-0-3-48.cab
    O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://by113fd.bay113.hotmail.msn.co...s/MsnPUpld.cab
    O16 - DPF: {55027008-315F-4F45-BBC3-8BE119764741} (Slide Image Uploader Control) - http://www.slide.com/uploader/SlideImageUploader.cab
    O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsu...?1147466289890
    O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsof...?1163792880546
    O16 - DPF: {7E980B9B-8AE5-466A-B6D6-DA8CF814E78A} (MJLauncherCtrl Class) - http://www.gamehouse.com/games/mjolauncher.cab
    O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary...t.cab31267.cab
    O16 - DPF: {A8F2B9BD-A6A0-486A-9744-18920D898429} (ScorchPlugin Class) - http://www.sibelius.com/download/sof...iveXPlugin.cab
    O16 - DPF: {AF2E62B6-F9E1-4D4F-A10A-9DC8E6DCBCC0} (VideoEgg ActiveX Loader) - http://update.videoegg.com/Install/W...gPublisher.exe
    O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (ZoneIntro Class) - http://messenger.zone.msn.com/binary...o.cab53083.cab
    O16 - DPF: {BD393C14-72AD-4790-A095-76522973D6B8} (CBreakshotControl Class) - http://messenger.zone.msn.com/binary...t.cab31267.cab
    O16 - DPF: {DF780F87-FF2B-4DF8-92D0-73DB16A1543A} (PopCapLoader Object) - http://www.popcap.com/games/popcaploader_v6.cab
    O16 - DPF: {F6ACF75C-C32C-447B-9BEF-46B766368D29} (Creative Software AutoUpdate Support Package) - http://www.creative.com/su/ocx/15023/CTPID.cab
    O16 - DPF: {F6BF0D00-0B2A-4A75-BF7B-F385591623AF} (Solitaire Showdown Class) - http://messenger.zone.msn.com/binary...n.cab31267.cab
    O17 - HKLM\System\CCS\Services\Tcpip\Parameters: Domain = isscorp.isma.co.uk
    O17 - HKLM\Software\..\Telephony: DomainName = isscorp.isma.co.uk
    O17 - HKLM\System\CS1\Services\Tcpip\Parameters: Domain = isscorp.isma.co.uk
    O17 - HKLM\System\CS2\Services\Tcpip\Parameters: Domain = isscorp.isma.co.uk
    O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
    O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
    O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
    O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
    O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
    O23 - Service: Creative Service for CDROM Access - Creative Technology Ltd - C:\WINDOWS\system32\CTsvcCDA.EXE
    O23 - Service: Cisco Systems, Inc. VPN Service (CVPND) - Cisco Systems, Inc. - C:\Program Files\Cisco Systems\VPN Client\cvpnd.exe
    O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
    O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
    O23 - Service: iPod Service - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
    O23 - Service: MSCSPTISRV - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AVLib\MSCSPTISRV.exe
    O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe
    O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe
    O23 - Service: PACSPTISVR - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AVLib\PACSPTISVR.exe
    O23 - Service: Sophos Anti-Virus status reporter (SAVAdminService) - Sophos Plc - C:\Program Files\Sophos\Sophos Anti-Virus\SAVAdminService.exe
    O23 - Service: Sophos Anti-Virus (SAVService) - Sophos Plc - C:\Program Files\Sophos\Sophos Anti-Virus\SavService.exe
    O23 - Service: Sophos AutoUpdate Service - Sophos Plc - C:\Program Files\Sophos\AutoUpdate\ALsvc.exe
    O23 - Service: spkrmon - Unknown owner - C:\Program Files\Analog Devices\SoundMAX\spkrmon.exe
    O23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AVLib\SPTISRV.exe
    O23 - Service: SonicStage SCSI Service (SSScsiSV) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AVLib\SSScsiSV.exe
    O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - C:\WINDOWS\system32\ZoneLabs\vsmon.exe

  3. 11-03-2007  #2
    Technical_1
    Technical_1 is offline Full Member
    Let's get an unistall list before we begin.
    1. Let's get an Uninstall List from HijackThis:
      • Open HijackThis, click Config, click Misc Tools
      • Click "Open Uninstall Manager"
      • Click "Save List" (generates uninstall_list.txt)
      • Click Save, copy and paste the results in your next post.
  4. 12-03-2007  #3
    iccyboo
    iccyboo is offline Newbie
    Thanks, heres the uninstall log.

    Acoustica MP3 Audio Mixer
    Ad-Aware SE Personal
    Adobe Flash Player 9 ActiveX
    Adobe Flash Player 9 ActiveX
    Adobe Reader 7.0.8
    A-one DVD Ripper 4.2
    Apple Software Update
    ArcSoft PhotoStudio 5
    ATI - Software Uninstall Utility
    ATI Catalyst Control Center
    ATI Control Panel
    ATI Display Driver
    BitTorrent 5.0.6
    Broadcom Gigabit Integrated Controller
    BUM
    CA Anti-Spam
    Canon CanoScan Toolbox 4.1
    CCleaner (remove only)
    Cisco Systems VPN Client 4.0.4 (Rel)
    Creative Jukebox Driver
    Creative MediaSource
    Creative Removable Disk Manager
    Creative System Information
    Creative Zen
    Cucusoft MPEG/MOV/RM/DivX/AVI to DVD/VCD/SVCD Creator Pro 7.07
    Dell ResourceCD
    DivX Codec
    DivX Content Uploader
    DivX Converter
    DivX Player
    DivX Web Player
    DVD Audio Ripper 4
    DVD Shrink 3.1.4
    DVDFab Decrypter 3.0.3.5
    EPSON Attach To Email
    EPSON Easy Photo Print
    EPSON File Manager
    EPSON Print CD
    EPSON Printer Software
    EPSON Scan Assistant
    EPSON Web-To-Page
    ESPR220 User's Guide
    Football Manager 2006
    Google Desktop Search
    Google Toolbar for Internet Explorer
    Half-Life(R) 2
    HijackThis 1.99.1
    Hotfix for Windows XP (KB915865)
    ICMA TrueType Logo
    IQ Test Trainer 1.1
    iTunes
    J2SE Runtime Environment 5.0 Update 10
    J2SE Runtime Environment 5.0 Update 11
    J2SE Runtime Environment 5.0 Update 6
    J2SE Runtime Environment 5.0 Update 9
    Jewel of Atlantis
    Last.fm 1.1.3.0
    LEGO Star Wars Demo Disc
    Microsoft .NET Framework 2.0
    Microsoft Internationalized Domain Names Mitigation APIs
    Microsoft National Language Support Downlevel APIs
    Microsoft Office Professional Edition 2003
    Mozilla Firefox (2.0.0.2)
    MSXML 4.0 SP2 (KB925672)
    MSXML 4.0 SP2 (KB927978)
    Musicmatch® Jukebox
    Nero 7 Premium
    OmniPage SE
    OpenMG Limited Patch 4.1-05-13-31-01
    OpenMG Secure Module 4.1.00
    Philips SPC 300NC PC Camera
    Philips VLounge
    PIF DESIGNER
    Presto! PageManager 6
    QuickTime
    RegistryFix v6.1
    Security Update for Microsoft .NET Framework 2.0 (KB917283)
    Security Update for Microsoft .NET Framework 2.0 (KB922770)
    Security Update for Windows Media Player (KB911564)
    Security Update for Windows Media Player 10 (KB917734)
    Security Update for Windows Media Player 6.4 (KB925398)
    Security Update for Windows Media Player 9 (KB911565)
    Security Update for Windows Media Player 9 (KB917734)
    Security Update for Windows XP (KB890046)
    Security Update for Windows XP (KB893756)
    Security Update for Windows XP (KB896358)
    Security Update for Windows XP (KB896422)
    Security Update for Windows XP (KB896423)
    Security Update for Windows XP (KB896424)
    Security Update for Windows XP (KB896428)
    Security Update for Windows XP (KB899587)
    Security Update for Windows XP (KB899589)
    Security Update for Windows XP (KB899591)
    Security Update for Windows XP (KB900725)
    Security Update for Windows XP (KB901017)
    Security Update for Windows XP (KB901214)
    Security Update for Windows XP (KB902400)
    Security Update for Windows XP (KB904706)
    Security Update for Windows XP (KB905414)
    Security Update for Windows XP (KB905749)
    Security Update for Windows XP (KB908519)
    Security Update for Windows XP (KB911280)
    Security Update for Windows XP (KB911562)
    Security Update for Windows XP (KB911567)
    Security Update for Windows XP (KB911927)
    Security Update for Windows XP (KB912812)
    Security Update for Windows XP (KB912919)
    Security Update for Windows XP (KB913433)
    Security Update for Windows XP (KB913446)
    Security Update for Windows XP (KB913580)
    Security Update for Windows XP (KB914388)
    Security Update for Windows XP (KB914389)
    Security Update for Windows XP (KB916281)
    Security Update for Windows XP (KB917159)
    Security Update for Windows XP (KB917344)
    Security Update for Windows XP (KB917422)
    Security Update for Windows XP (KB917953)
    Security Update for Windows XP (KB918118)
    Security Update for Windows XP (KB918439)
    Security Update for Windows XP (KB918899)
    Security Update for Windows XP (KB919007)
    Security Update for Windows XP (KB920213)
    Security Update for Windows XP (KB920214)
    Security Update for Windows XP (KB920670)
    Security Update for Windows XP (KB920683)
    Security Update for Windows XP (KB920685)
    Security Update for Windows XP (KB921398)
    Security Update for Windows XP (KB921883)
    Security Update for Windows XP (KB922616)
    Security Update for Windows XP (KB922760)
    Security Update for Windows XP (KB922819)
    Security Update for Windows XP (KB923191)
    Security Update for Windows XP (KB923414)
    Security Update for Windows XP (KB923689)
    Security Update for Windows XP (KB923694)
    Security Update for Windows XP (KB923980)
    Security Update for Windows XP (KB924191)
    Security Update for Windows XP (KB924270)
    Security Update for Windows XP (KB924496)
    Security Update for Windows XP (KB924667)
    Security Update for Windows XP (KB925486)
    Security Update for Windows XP (KB926255)
    Security Update for Windows XP (KB926436)
    Security Update for Windows XP (KB927779)
    Security Update for Windows XP (KB927802)
    Security Update for Windows XP (KB928255)
    Security Update for Windows XP (KB928843)
    Self-help Subliminals
    SIPPS
    Skype 2.5
    SonicStage 3.0
    Sophos Anti-Virus
    Sophos AutoUpdate
    Sound Blaster Live! 24-bit
    SoundMAX
    SpaceSearcher version 1.03
    Steam(TM)
    Subliminal Message Flash 2.1
    Tabbed Browsing (Windows Live Toolbar)
    TaxCalc 2006
    TextPad 4.7
    The Battle for Middle-earth (tm) II
    Uniblue SpeedUpMyPC
    Update for Windows XP (KB894391)
    Update for Windows XP (KB898461)
    Update for Windows XP (KB900485)
    Update for Windows XP (KB908531)
    Update for Windows XP (KB910437)
    Update for Windows XP (KB916595)
    Update for Windows XP (KB920872)
    Update for Windows XP (KB922582)
    Update for Windows XP (KB931836)
    USRobotics USB Internet Mini Phone version 3.3.9.12
    VersionTracker Pro for Windows
    Viewpoint Media Player
    whufc crest screensaver
    Windows Defender
    Windows Installer 3.1 (KB893803)
    Windows Internet Explorer 7
    Windows Live Messenger
    Windows Live Sign-in Assistant
    Windows Live Toolbar
    Windows Live Toolbar
    Windows Live Toolbar Extension (Windows Live Toolbar)
    Windows Live Toolbar Feed Detector (Windows Live Toolbar)
    Windows Media Format Runtime
    Windows Media Player 10
    Windows XP Hotfix - KB873339
    Windows XP Hotfix - KB885250
    Windows XP Hotfix - KB885835
    Windows XP Hotfix - KB885836
    Windows XP Hotfix - KB886185
    Windows XP Hotfix - KB887472
    Windows XP Hotfix - KB887742
    Windows XP Hotfix - KB888113
    Windows XP Hotfix - KB888302
    Windows XP Hotfix - KB890859
    Windows XP Hotfix - KB891781
    WinRAR archiver
    WinZip
    XviD MPEG-4 Codec
    ZoneAlarm Pro
  5. 13-03-2007  #4
    Technical_1
    Technical_1 is offline Full Member
    OK. Let's see what we can do.

    You may want to print out these instructions as you will not be able to access them online during part of the fix.
    1. Display Hidden Files Please set your system to show
      all files; please see here if you're unsure how to do this.
    2. Please Download NoLop to your desktop from one of the links below...
      Link 1
      Link 2
      Link 3
      • First close any other programs you have running as this will require a reboot
      • Double click NoLop.exe to run it
      • Now click the button labelled "Search and Destroy"
        <<your computer will now be scanned for infected files>>
      • When scanning is finished you will be prompted to reboot only if infected, Click OK
      • Now click the "REBOOT" Button.
      • A Message should popup from NoLop. If not, double click the program again and it will finish Please
      --If you receive an error, "mscomctl.ocx or one of its dependencies are not correctly registered," please download mscomctl.ocx to your system32 folder then rerun the program.
    3. Please re-open HiJackThis and scan. Check the boxes next to all the entries listed below being careful to get only these:

      R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page =
      O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
      O4 - HKLM\..\Run: [build beep byte bird] C:\Documents and Settings\All Users\Application Data\Cast cash build beep\Phone else.exe
      O8 - Extra context menu item: &Search - http://edits.mywebsearch.com/toolbar...rch.jhtml?p=ZU
      O16 - DPF: {04CC2CE2-BBC4-43B6-96D6-E1C3E0BA120F} (HMVDownloader Control) - https://www.hmvdigital.com/HMV.Digit...Downloader.cab
      O16 - DPF: {1D4DB7D2-6EC9-47A3-BD87-1E41684E07BB} - http://ak.exe.imgfarm.com/images/noc...up1.0.0.15.cab
      O16 - DPF: {25365FF3-2746-4230-9DA7-163CCA318309} (Automatic Driver Installation Control) - http://inst.c-wss.com/n019p/EN/install/gtdownlr.cab
      O16 - DPF: {DF780F87-FF2B-4DF8-92D0-73DB16A1543A} (PopCapLoader Object) - http://www.popcap.com/games/popcaploader_v6.cab

      Now close all windows other than HiJackThis, then click Fix Checked. Exit Hijack This.
    4. Reboot into safe mode.
      Restart your computer and as soon as it starts booting up again continuously tap F8. A menu should come up where you will be given the option to enter Safe Mode.
    5. Delete Files/Folders
      Using Windows Explorer (to get there right-click your Start button and go to "Explore"), please delete these folders (if present):

      C:\Documents and Settings\All Users\Application Data\Cast cash build beep

    6. After that, Reboot.
    7. Please download ATF Cleaner by Atribune.
      This program is for XP and Windows 2000 only
      • Double-click ATF-Cleaner.exe to run the program.
        Under Main choose: Select All
        Click the Empty Selected button.
      If you use Firefox browser
      • Click Firefox at the top and choose: Select All
        Click the Empty Selected button.
        NOTE: If you would like to keep your saved passwords, please click No at the prompt.
      If you use Opera browser
      • Click Opera at the top and choose: Select All
        Click the Empty Selected button.
        NOTE: If you would like to keep your saved passwords, please click No at the prompt.
      Click Exit on the Main menu to close the program.
      For Technical Support, double-click the e-mail address located at the bottom of each menu.
    8. Please download, install, update and scan your system with the free version of AVG Anti-Spyware Scanner: AVG Anti-Spyware 7.5
      • Download the AVG Anti-Spyware Scanner installer to your Desktop. Find the icon on your desktop and double click on it to install.
      • Let AVG Anti-Spyware Scanner open once it is installed.
      • The first thing you need to do is update the detection definition files.
      • From the main AVG Anti-Spyware screen, click on UPDATE in the top menu, then click the Start Update link.
      • After the update finishes (the status bar near the top will inform you of progress), click on the Scanner button in the top menu, then click on the Settings tab.
      • Once in the Settings screen click on "Recommended actions" and then select "Quarantine".
      • Under "Reports"
        • Select "Automatically generate report after every scan"
        • Un-Select "Only if threats were found"
      • Click on the Scan tab. Then click on Complete System Scan. This scan will take a while, please be patient.
      • Once the scan is complete, you will be prompted if any items are found that need attention. Select Apply all actions. This will take a moment or two.
      • When AVG Anti-Spyware Scanner reports All Actions Have been Applied you can close AVG Anti-Spyware Scanner. The report was automatically saved if the settings were set as instructed. The report will be located at C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\Reports\
    9. Please re-open HiJackThis and scan and save a new log file.
    10. Post Logs
      • AVG AS Results
      • New Hijack This Log
  6. 14-03-2007  #5
    iccyboo
    iccyboo is offline Newbie
    Thank you very much that's done the trick. Here are the logs as requested.

    Logfile of HijackThis v1.99.1
    Scan saved at 06:43:52, on 14/03/2007
    Platform: Windows XP SP2 (WinNT 5.01.2600)
    MSIE: Internet Explorer v7.00 (7.00.5730.0011)

    Running processes:
    C:\WINDOWS\System32\smss.exe
    C:\WINDOWS\system32\winlogon.exe
    C:\WINDOWS\system32\services.exe
    C:\WINDOWS\system32\lsass.exe
    C:\WINDOWS\system32\Ati2evxx.exe
    C:\WINDOWS\system32\svchost.exe
    C:\Program Files\Windows Defender\MsMpEng.exe
    C:\WINDOWS\System32\svchost.exe
    C:\WINDOWS\system32\Ati2evxx.exe
    C:\WINDOWS\Explorer.EXE
    C:\WINDOWS\system32\spoolsv.exe
    C:\WINDOWS\system32\CTsvcCDA.EXE
    C:\Program Files\Cisco Systems\VPN Client\cvpnd.exe
    C:\Program Files\Sophos\Sophos Anti-Virus\SAVAdminService.exe
    C:\Program Files\Sophos\AutoUpdate\ALsvc.exe
    C:\Program Files\Analog Devices\SoundMAX\spkrmon.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\system32\MsPMSPSv.exe
    C:\Program Files\Creative\Sound Blaster Live! 24-bit\Surround Mixer\CTSysVol.exe
    C:\WINDOWS\system32\Rundll32.exe
    C:\WINDOWS\VM_STI.EXE
    C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIA IE.EXE
    C:\Program Files\Microsoft IntelliType Pro\type32.exe
    C:\Program Files\Microsoft IntelliPoint\point32.exe
    C:\WINDOWS\system32\rundll32.exe
    C:\Program Files\Java\jre1.5.0_11\bin\jusched.exe
    C:\PROGRA~1\Sony\SONICS~1\SsAAD.exe
    C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
    C:\Program Files\Common Files\Sony Shared\AVLib\SSScsiSV.exe
    C:\Program Files\CA\CA Internet Security Suite\cctray\cctray.exe
    C:\Program Files\CA\CA Internet Security Suite\CA Anti-Spam\QSP-5.0.419.0\QOELoader.exe
    C:\Program Files\U.S. Robotics\USB Internet Mini Phone\USRobotics USB Internet Mini Phone.exe
    C:\Program Files\U.S. Robotics\USB Internet Mini Phone\USB Internet Mini Phone UI.exe
    C:\Program Files\QuickTime\qttask.exe
    C:\Program Files\iTunes\iTunesHelper.exe
    C:\Program Files\Windows Defender\MSASCui.exe
    C:\WINDOWS\system32\ctfmon.exe
    C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe
    C:\Program Files\Creative\MediaSource\Detector\CTDetect.exe
    C:\Program Files\iPod\bin\iPodService.exe
    C:\Program Files\Common Files\Ahead\Lib\NMIndexStoreSvr.exe
    C:\Program Files\Sophos\AutoUpdate\ALMon.exe
    C:\Program Files\Philips\SPC 300NC PC Camera\TrayMin300.exe
    C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe
    C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
    C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
    C:\Program Files\BitTorrent\bittorrent.exe
    C:\WINDOWS\system32\ZoneLabs\vsmon.exe
    C:\Program Files\Internet Explorer\iexplore.exe
    C:\Program Files\Mozilla Firefox\firefox.exe
    C:\hjt\HijackThis.exe

    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
    R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
    R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)
    O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
    O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_11\bin\ssv.dll
    O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
    O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar3.dll
    O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
    O2 - BHO: EpsonToolBandKicker Class - {E99421FB-68DD-40F0-B4AC-B7027CAE2F1A} - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll
    O3 - Toolbar: EPSON Web-To-Page - {EE5D279F-081B-4404-994D-C6B60AAEBA6D} - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll
    O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
    O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar3.dll
    O4 - HKLM\..\Run: [CTSysVol] C:\Program Files\Creative\Sound Blaster Live! 24-bit\Surround Mixer\CTSysVol.exe /r
    O4 - HKLM\..\Run: [P17Helper] Rundll32 P17.dll,P17Helper
    O4 - HKLM\..\Run: [UpdReg] C:\WINDOWS\UpdReg.EXE
    O4 - HKLM\..\Run: [BigDogPath] C:\WINDOWS\VM_STI.EXE Philips SPC 300NC PC Camera
    O4 - HKLM\..\Run: [EPSON Stylus Photo R220 Series] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIA IE.EXE /P30 "EPSON Stylus Photo R220 Series" /O6 "USB001" /M "Stylus Photo R220"
    O4 - HKLM\..\Run: [type32] "C:\Program Files\Microsoft IntelliType Pro\type32.exe"
    O4 - HKLM\..\Run: [IntelliPoint] "C:\Program Files\Microsoft IntelliPoint\point32.exe"
    O4 - HKLM\..\Run: [BluetoothAuthenticationAgent] rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent
    O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.5.0_11\bin\jusched.exe"
    O4 - HKLM\..\Run: [SsAAD.exe] C:\PROGRA~1\Sony\SONICS~1\SsAAD.exe
    O4 - HKLM\..\Run: [Zone Labs Client] "C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe"
    O4 - HKLM\..\Run: [cctray] "C:\Program Files\CA\CA Internet Security Suite\cctray\cctray.exe"
    O4 - HKLM\..\Run: [QOELOADER] "C:\Program Files\CA\CA Internet Security Suite\CA Anti-Spam\QSP-5.0.419.0\QOELoader.exe"
    O4 - HKLM\..\Run: [USRobotics USB Internet Mini Phone] "C:\Program Files\U.S. Robotics\USB Internet Mini Phone\USRobotics USB Internet Mini Phone.exe"
    O4 - HKLM\..\Run: [USRobotics USB Internet Mini Phone Control Panel] "C:\Program Files\U.S. Robotics\USB Internet Mini Phone\USB Internet Mini Phone UI.exe"
    O4 - HKLM\..\Run: [ISUSScheduler] "C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe" -start
    O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
    O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
    O4 - HKLM\..\Run: [Windows Defender] "C:\Program Files\Windows Defender\MSASCui.exe" -hide
    O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe
    O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
    O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
    O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe"
    O4 - HKCU\..\Run: [Creative Detector] C:\Program Files\Creative\MediaSource\Detector\CTDetect.exe /R
    O4 - HKCU\..\Run: [BitTorrent] "C:\Program Files\BitTorrent\bittorrent.exe" --force_start_minimized
    O4 - HKCU\..\Run: [Uniblue SpeedUpMyPC] C:\Program Files\Uniblue\SpeedUpMyPC\SpeedUpMyPC.exe -s
    O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
    O4 - Global Startup: AutoUpdate Monitor.lnk = C:\Program Files\Sophos\AutoUpdate\ALMon.exe
    O4 - Global Startup: TrayMin300.exe.lnk = ?
    O4 - Global Startup: VPN Client.lnk = ?
    O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm
    O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
    O8 - Extra context menu item: Open in new background tab - res://C:\Program Files\Windows Live Toolbar\Components\en-us\msntabres.dll.mui/229?fd462d2376d142cd987720aac4ac7b91
    O8 - Extra context menu item: Open in new foreground tab - res://C:\Program Files\Windows Live Toolbar\Components\en-us\msntabres.dll.mui/230?fd462d2376d142cd987720aac4ac7b91
    O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_11\bin\ssv.dll
    O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_11\bin\ssv.dll
    O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
    O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
    O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
    O11 - Options group: [INTERNATIONAL] International*
    O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zone.msn.com/binary...r.cab31267.cab
    O16 - DPF: {0A5FD7C5-A45C-49FC-ADB5-9952547D5715} (Creative Software AutoUpdate) - http://www.creative.com/su/ocx/15015/CTSUEng.cab
    O16 - DPF: {14B87622-7E19-4EA8-93B3-97215F77A6BC} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary...t.cab31267.cab
    O16 - DPF: {1754A1BA-A1DF-4F10-B199-AA55AA1A120F} (InstallerBehaviorFactory Class) - https://signup.msn.com/pages/MsnInstC.cab
    O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:\Program Files\Yahoo!\Common\yinsthelper.dll
    O16 - DPF: {4C39376E-FA9D-4349-BACC-D305C1750EF3} (EPUImageControl Class) - http://tools.ebayimg.com/eps/wl/acti..._v1-0-3-48.cab
    O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://by113fd.bay113.hotmail.msn.co...s/MsnPUpld.cab
    O16 - DPF: {55027008-315F-4F45-BBC3-8BE119764741} (Slide Image Uploader Control) - http://www.slide.com/uploader/SlideImageUploader.cab
    O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsu...?1147466289890
    O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsof...?1163792880546
    O16 - DPF: {7E980B9B-8AE5-466A-B6D6-DA8CF814E78A} (MJLauncherCtrl Class) - http://www.gamehouse.com/games/mjolauncher.cab
    O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary...t.cab31267.cab
    O16 - DPF: {A8F2B9BD-A6A0-486A-9744-18920D898429} (ScorchPlugin Class) - http://www.sibelius.com/download/sof...iveXPlugin.cab
    O16 - DPF: {AF2E62B6-F9E1-4D4F-A10A-9DC8E6DCBCC0} (VideoEgg ActiveX Loader) - http://update.videoegg.com/Install/W...gPublisher.exe
    O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (ZoneIntro Class) - http://messenger.zone.msn.com/binary...o.cab53083.cab
    O16 - DPF: {BD393C14-72AD-4790-A095-76522973D6B8} (CBreakshotControl Class) - http://messenger.zone.msn.com/binary...t.cab31267.cab
    O16 - DPF: {F6ACF75C-C32C-447B-9BEF-46B766368D29} (Creative Software AutoUpdate Support Package) - http://www.creative.com/su/ocx/15023/CTPID.cab
    O16 - DPF: {F6BF0D00-0B2A-4A75-BF7B-F385591623AF} (Solitaire Showdown Class) - http://messenger.zone.msn.com/binary...n.cab31267.cab
    O17 - HKLM\System\CCS\Services\Tcpip\Parameters: Domain = isscorp.isma.co.uk
    O17 - HKLM\Software\..\Telephony: DomainName = isscorp.isma.co.uk
    O17 - HKLM\System\CS1\Services\Tcpip\Parameters: Domain = isscorp.isma.co.uk
    O17 - HKLM\System\CS2\Services\Tcpip\Parameters: Domain = isscorp.isma.co.uk
    O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
    O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
    O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
    O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
    O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
    O23 - Service: AVG Anti-Spyware Guard - Anti-Malware Development a.s. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
    O23 - Service: Creative Service for CDROM Access - Creative Technology Ltd - C:\WINDOWS\system32\CTsvcCDA.EXE
    O23 - Service: Cisco Systems, Inc. VPN Service (CVPND) - Cisco Systems, Inc. - C:\Program Files\Cisco Systems\VPN Client\cvpnd.exe
    O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
    O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
    O23 - Service: iPod Service - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
    O23 - Service: MSCSPTISRV - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AVLib\MSCSPTISRV.exe
    O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe
    O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe
    O23 - Service: PACSPTISVR - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AVLib\PACSPTISVR.exe
    O23 - Service: Sophos Anti-Virus status reporter (SAVAdminService) - Sophos Plc - C:\Program Files\Sophos\Sophos Anti-Virus\SAVAdminService.exe
    O23 - Service: Sophos Anti-Virus (SAVService) - Sophos Plc - C:\Program Files\Sophos\Sophos Anti-Virus\SavService.exe
    O23 - Service: Sophos AutoUpdate Service - Sophos Plc - C:\Program Files\Sophos\AutoUpdate\ALsvc.exe
    O23 - Service: spkrmon - Unknown owner - C:\Program Files\Analog Devices\SoundMAX\spkrmon.exe
    O23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AVLib\SPTISRV.exe
    O23 - Service: SonicStage SCSI Service (SSScsiSV) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AVLib\SSScsiSV.exe
    O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - C:\WINDOWS\system32\ZoneLabs\vsmon.exe



    ---------------------------------------------------------
    AVG Anti-Spyware - Scan Report
    ---------------------------------------------------------

    + Created at: 06:38:16 14/03/2007

    + Scan result:



    C:\Documents and Settings\liz\Local Settings\Temp\UDC6_0001_D19M1908\installer.exe -> Adware.Drop : No action taken.
    C:\Program Files\DVDFab Decrypter 3\DVDFabDecrypter.exe -> Backdoor.DSNX.05.a : No action taken.
    :mozilla.172:C:\Documents and Settings\liz\Application Data\Mozilla\Firefox\Profiles\zo3eoikr.default\coo kies.txt -> TrackingCookie.2o7 : No action taken.
    :mozilla.173:C:\Documents and Settings\liz\Application Data\Mozilla\Firefox\Profiles\zo3eoikr.default\coo kies.txt -> TrackingCookie.2o7 : No action taken.
    :mozilla.242:C:\Documents and Settings\liz\Application Data\Mozilla\Firefox\Profiles\zo3eoikr.default\coo kies.txt -> TrackingCookie.2o7 : No action taken.
    :mozilla.346:C:\Documents and Settings\liz\Application Data\Mozilla\Firefox\Profiles\zo3eoikr.default\coo kies.txt -> TrackingCookie.2o7 : No action taken.
    :mozilla.217:C:\Documents and Settings\liz\Application Data\Mozilla\Firefox\Profiles\zo3eoikr.default\coo kies.txt -> TrackingCookie.Adrevolver : No action taken.
    :mozilla.218:C:\Documents and Settings\liz\Application Data\Mozilla\Firefox\Profiles\zo3eoikr.default\coo kies.txt -> TrackingCookie.Adrevolver : No action taken.
    :mozilla.219:C:\Documents and Settings\liz\Application Data\Mozilla\Firefox\Profiles\zo3eoikr.default\coo kies.txt -> TrackingCookie.Adrevolver : No action taken.
    :mozilla.220:C:\Documents and Settings\liz\Application Data\Mozilla\Firefox\Profiles\zo3eoikr.default\coo kies.txt -> TrackingCookie.Adrevolver : No action taken.
    :mozilla.221:C:\Documents and Settings\liz\Application Data\Mozilla\Firefox\Profiles\zo3eoikr.default\coo kies.txt -> TrackingCookie.Adrevolver : No action taken.
    :mozilla.52:C:\Documents and Settings\liz\Application Data\Mozilla\Firefox\Profiles\zo3eoikr.default\coo kies.txt -> TrackingCookie.Adtech : No action taken.
    :mozilla.55:C:\Documents and Settings\liz\Application Data\Mozilla\Firefox\Profiles\zo3eoikr.default\coo kies.txt -> TrackingCookie.Adtech : No action taken.
    :mozilla.93:C:\Documents and Settings\liz\Application Data\Mozilla\Firefox\Profiles\zo3eoikr.default\coo kies.txt -> TrackingCookie.Advertising : No action taken.
    :mozilla.95:C:\Documents and Settings\liz\Application Data\Mozilla\Firefox\Profiles\zo3eoikr.default\coo kies.txt -> TrackingCookie.Advertising : No action taken.
    :mozilla.96:C:\Documents and Settings\liz\Application Data\Mozilla\Firefox\Profiles\zo3eoikr.default\coo kies.txt -> TrackingCookie.Advertising : No action taken.
    :mozilla.97:C:\Documents and Settings\liz\Application Data\Mozilla\Firefox\Profiles\zo3eoikr.default\coo kies.txt -> TrackingCookie.Advertising : No action taken.
    :mozilla.98:C:\Documents and Settings\liz\Application Data\Mozilla\Firefox\Profiles\zo3eoikr.default\coo kies.txt -> TrackingCookie.Advertising : No action taken.
    :mozilla.155:C:\Documents and Settings\liz\Application Data\Mozilla\Firefox\Profiles\zo3eoikr.default\coo kies.txt -> TrackingCookie.Adviva : No action taken.
    :mozilla.19:C:\Documents and Settings\dad\Application Data\Mozilla\Firefox\Profiles\xi0exrxb.default\coo kies.txt -> TrackingCookie.Atdmt : No action taken.
    :mozilla.99:C:\Documents and Settings\liz\Application Data\Mozilla\Firefox\Profiles\zo3eoikr.default\coo kies.txt -> TrackingCookie.Atdmt : No action taken.
    :mozilla.256:C:\Documents and Settings\liz\Application Data\Mozilla\Firefox\Profiles\zo3eoikr.default\coo kies.txt -> TrackingCookie.Casalemedia : No action taken.
    :mozilla.257:C:\Documents and Settings\liz\Application Data\Mozilla\Firefox\Profiles\zo3eoikr.default\coo kies.txt -> TrackingCookie.Casalemedia : No action taken.
    :mozilla.258:C:\Documents and Settings\liz\Application Data\Mozilla\Firefox\Profiles\zo3eoikr.default\coo kies.txt -> TrackingCookie.Casalemedia : No action taken.
    :mozilla.688:C:\Documents and Settings\liz\Application Data\Mozilla\Firefox\Profiles\zo3eoikr.default\coo kies.txt -> TrackingCookie.Casinotropez : No action taken.
    :mozilla.28:C:\Documents and Settings\dad\Application Data\Mozilla\Firefox\Profiles\xi0exrxb.default\coo kies.txt -> TrackingCookie.Doubleclick : No action taken.
    :mozilla.69:C:\Documents and Settings\liz\Application Data\Mozilla\Firefox\Profiles\zo3eoikr.default\coo kies.txt -> TrackingCookie.Doubleclick : No action taken.
    :mozilla.162:C:\Documents and Settings\liz\Application Data\Mozilla\Firefox\Profiles\zo3eoikr.default\coo kies.txt -> TrackingCookie.Esomniture : No action taken.
    :mozilla.164:C:\Documents and Settings\liz\Application Data\Mozilla\Firefox\Profiles\zo3eoikr.default\coo kies.txt -> TrackingCookie.Esomniture : No action taken.
    :mozilla.165:C:\Documents and Settings\liz\Application Data\Mozilla\Firefox\Profiles\zo3eoikr.default\coo kies.txt -> TrackingCookie.Esomniture : No action taken.
    :mozilla.226:C:\Documents and Settings\liz\Application Data\Mozilla\Firefox\Profiles\zo3eoikr.default\coo kies.txt -> TrackingCookie.Esomniture : No action taken.
    :mozilla.227:C:\Documents and Settings\liz\Application Data\Mozilla\Firefox\Profiles\zo3eoikr.default\coo kies.txt -> TrackingCookie.Esomniture : No action taken.
    :mozilla.228:C:\Documents and Settings\liz\Application Data\Mozilla\Firefox\Profiles\zo3eoikr.default\coo kies.txt -> TrackingCookie.Esomniture : No action taken.
    :mozilla.271:C:\Documents and Settings\liz\Application Data\Mozilla\Firefox\Profiles\zo3eoikr.default\coo kies.txt -> TrackingCookie.Esomniture : No action taken.
    :mozilla.272:C:\Documents and Settings\liz\Application Data\Mozilla\Firefox\Profiles\zo3eoikr.default\coo kies.txt -> TrackingCookie.Esomniture : No action taken.
    :mozilla.273:C:\Documents and Settings\liz\Application Data\Mozilla\Firefox\Profiles\zo3eoikr.default\coo kies.txt -> TrackingCookie.Esomniture : No action taken.
    :mozilla.276:C:\Documents and Settings\liz\Application Data\Mozilla\Firefox\Profiles\zo3eoikr.default\coo kies.txt -> TrackingCookie.Esomniture : No action taken.
    :mozilla.277:C:\Documents and Settings\liz\Application Data\Mozilla\Firefox\Profiles\zo3eoikr.default\coo kies.txt -> TrackingCookie.Esomniture : No action taken.
    :mozilla.715:C:\Documents and Settings\liz\Application Data\Mozilla\Firefox\Profiles\zo3eoikr.default\coo kies.txt -> TrackingCookie.Etracker : No action taken.
    :mozilla.274:C:\Documents and Settings\liz\Application Data\Mozilla\Firefox\Profiles\zo3eoikr.default\coo kies.txt -> TrackingCookie.Euroclick : No action taken.
    :mozilla.259:C:\Documents and Settings\liz\Application Data\Mozilla\Firefox\Profiles\zo3eoikr.default\coo kies.txt -> TrackingCookie.Fastclick : No action taken.
    :mozilla.260:C:\Documents and Settings\liz\Application Data\Mozilla\Firefox\Profiles\zo3eoikr.default\coo kies.txt -> TrackingCookie.Fastclick : No action taken.
    :mozilla.119:C:\Documents and Settings\liz\Application Data\Mozilla\Firefox\Profiles\zo3eoikr.default\coo kies.txt -> TrackingCookie.Googleadservices : No action taken.
    :mozilla.146:C:\Documents and Settings\liz\Application Data\Mozilla\Firefox\Profiles\zo3eoikr.default\coo kies.txt -> TrackingCookie.Googleadservices : No action taken.
    :mozilla.199:C:\Documents and Settings\liz\Application Data\Mozilla\Firefox\Profiles\zo3eoikr.default\coo kies.txt -> TrackingCookie.Googleadservices : No action taken.
    :mozilla.209:C:\Documents and Settings\liz\Application Data\Mozilla\Firefox\Profiles\zo3eoikr.default\coo kies.txt -> TrackingCookie.Googleadservices : No action taken.
    :mozilla.231:C:\Documents and Settings\liz\Application Data\Mozilla\Firefox\Profiles\zo3eoikr.default\coo kies.txt -> TrackingCookie.Googleadservices : No action taken.
    :mozilla.241:C:\Documents and Settings\liz\Application Data\Mozilla\Firefox\Profiles\zo3eoikr.default\coo kies.txt -> TrackingCookie.Googleadservices : No action taken.
    :mozilla.139:C:\Documents and Settings\liz\Application Data\Mozilla\Firefox\Profiles\zo3eoikr.default\coo kies.txt -> TrackingCookie.Hitbox : No action taken.
    :mozilla.140:C:\Documents and Settings\liz\Application Data\Mozilla\Firefox\Profiles\zo3eoikr.default\coo kies.txt -> TrackingCookie.Hitbox : No action taken.
    :mozilla.142:C:\Documents and Settings\liz\Application Data\Mozilla\Firefox\Profiles\zo3eoikr.default\coo kies.txt -> TrackingCookie.Hitbox : No action taken.
    :mozilla.186:C:\Documents and Settings\liz\Application Data\Mozilla\Firefox\Profiles\zo3eoikr.default\coo kies.txt -> TrackingCookie.Hitbox : No action taken.
    :mozilla.236:C:\Documents and Settings\liz\Application Data\Mozilla\Firefox\Profiles\zo3eoikr.default\coo kies.txt -> TrackingCookie.Hitbox : No action taken.
    :mozilla.376:C:\Documents and Settings\liz\Application Data\Mozilla\Firefox\Profiles\zo3eoikr.default\coo kies.txt -> TrackingCookie.Hitbox : No action taken.
    :mozilla.371:C:\Documents and Settings\liz\Application Data\Mozilla\Firefox\Profiles\zo3eoikr.default\coo kies.txt -> TrackingCookie.Liveperson : No action taken.
    :mozilla.372:C:\Documents and Settings\liz\Application Data\Mozilla\Firefox\Profiles\zo3eoikr.default\coo kies.txt -> TrackingCookie.Liveperson : No action taken.
    :mozilla.373:C:\Documents and Settings\liz\Application Data\Mozilla\Firefox\Profiles\zo3eoikr.default\coo kies.txt -> TrackingCookie.Liveperson : No action taken.
    :mozilla.114:C:\Documents and Settings\liz\Application Data\Mozilla\Firefox\Profiles\zo3eoikr.default\coo kies.txt -> TrackingCookie.Mediaplex : No action taken.
    :mozilla.360:C:\Documents and Settings\liz\Application Data\Mozilla\Firefox\Profiles\zo3eoikr.default\coo kies.txt -> TrackingCookie.Onestat : No action taken.
    :mozilla.361:C:\Documents and Settings\liz\Application Data\Mozilla\Firefox\Profiles\zo3eoikr.default\coo kies.txt -> TrackingCookie.Onestat : No action taken.
    :mozilla.10:C:\Documents and Settings\dad\Application Data\Mozilla\Firefox\Profiles\xi0exrxb.default\coo kies.txt -> TrackingCookie.Questionmarket : No action taken.
    :mozilla.11:C:\Documents and Settings\dad\Application Data\Mozilla\Firefox\Profiles\xi0exrxb.default\coo kies.txt -> TrackingCookie.Questionmarket : No action taken.
    :mozilla.12:C:\Documents and Settings\dad\Application Data\Mozilla\Firefox\Profiles\xi0exrxb.default\coo kies.txt -> TrackingCookie.Questionmarket : No action taken.
    :mozilla.182:C:\Documents and Settings\liz\Application Data\Mozilla\Firefox\Profiles\zo3eoikr.default\coo kies.txt -> TrackingCookie.Realmedia : No action taken.
    :mozilla.183:C:\Documents and Settings\liz\Application Data\Mozilla\Firefox\Profiles\zo3eoikr.default\coo kies.txt -> TrackingCookie.Realmedia : No action taken.
    :mozilla.70:C:\Documents and Settings\liz\Application Data\Mozilla\Firefox\Profiles\zo3eoikr.default\coo kies.txt -> TrackingCookie.Revsci : No action taken.
    :mozilla.71:C:\Documents and Settings\liz\Application Data\Mozilla\Firefox\Profiles\zo3eoikr.default\coo kies.txt -> TrackingCookie.Revsci : No action taken.
    :mozilla.72:C:\Documents and Settings\liz\Application Data\Mozilla\Firefox\Profiles\zo3eoikr.default\coo kies.txt -> TrackingCookie.Revsci : No action taken.
    :mozilla.73:C:\Documents and Settings\liz\Application Data\Mozilla\Firefox\Profiles\zo3eoikr.default\coo kies.txt -> TrackingCookie.Revsci : No action taken.
    :mozilla.74:C:\Documents and Settings\liz\Application Data\Mozilla\Firefox\Profiles\zo3eoikr.default\coo kies.txt -> TrackingCookie.Revsci : No action taken.
    :mozilla.75:C:\Documents and Settings\liz\Application Data\Mozilla\Firefox\Profiles\zo3eoikr.default\coo kies.txt -> TrackingCookie.Revsci : No action taken.
    :mozilla.76:C:\Documents and Settings\liz\Application Data\Mozilla\Firefox\Profiles\zo3eoikr.default\coo kies.txt -> TrackingCookie.Revsci : No action taken.
    :mozilla.77:C:\Documents and Settings\liz\Application Data\Mozilla\Firefox\Profiles\zo3eoikr.default\coo kies.txt -> TrackingCookie.Revsci : No action taken.
    :mozilla.78:C:\Documents and Settings\liz\Application Data\Mozilla\Firefox\Profiles\zo3eoikr.default\coo kies.txt -> TrackingCookie.Revsci : No action taken.
    :mozilla.290:C:\Documents and Settings\liz\Application Data\Mozilla\Firefox\Profiles\zo3eoikr.default\coo kies.txt -> TrackingCookie.Serving-sys : No action taken.
    :mozilla.291:C:\Documents and Settings\liz\Application Data\Mozilla\Firefox\Profiles\zo3eoikr.default\coo kies.txt -> TrackingCookie.Serving-sys : No action taken.
    :mozilla.292:C:\Documents and Settings\liz\Application Data\Mozilla\Firefox\Profiles\zo3eoikr.default\coo kies.txt -> TrackingCookie.Serving-sys : No action taken.
    :mozilla.293:C:\Documents and Settings\liz\Application Data\Mozilla\Firefox\Profiles\zo3eoikr.default\coo kies.txt -> TrackingCookie.Serving-sys : No action taken.
    :mozilla.294:C:\Documents and Settings\liz\Application Data\Mozilla\Firefox\Profiles\zo3eoikr.default\coo kies.txt -> TrackingCookie.Serving-sys : No action taken.
    :mozilla.295:C:\Documents and Settings\liz\Application Data\Mozilla\Firefox\Profiles\zo3eoikr.default\coo kies.txt -> TrackingCookie.Serving-sys : No action taken.
    :mozilla.148:C:\Documents and Settings\liz\Application Data\Mozilla\Firefox\Profiles\zo3eoikr.default\coo kies.txt -> TrackingCookie.Sitestat : No action taken.
    :mozilla.150:C:\Documents and Settings\liz\Application Data\Mozilla\Firefox\Profiles\zo3eoikr.default\coo kies.txt -> TrackingCookie.Sitestat : No action taken.
    :mozilla.174:C:\Documents and Settings\liz\Application Data\Mozilla\Firefox\Profiles\zo3eoikr.default\coo kies.txt -> TrackingCookie.Sitestat : No action taken.
    :mozilla.175:C:\Documents and Settings\liz\Application Data\Mozilla\Firefox\Profiles\zo3eoikr.default\coo kies.txt -> TrackingCookie.Sitestat : No action taken.
    :mozilla.246:C:\Documents and Settings\liz\Application Data\Mozilla\Firefox\Profiles\zo3eoikr.default\coo kies.txt -> TrackingCookie.Sitestat : No action taken.
    :mozilla.788:C:\Documents and Settings\liz\Application Data\Mozilla\Firefox\Profiles\zo3eoikr.default\coo kies.txt -> TrackingCookie.Sitestat : No action taken.
    :mozilla.828:C:\Documents and Settings\liz\Application Data\Mozilla\Firefox\Profiles\zo3eoikr.default\coo kies.txt -> TrackingCookie.Sitestat : No action taken.
    :mozilla.901:C:\Documents and Settings\liz\Application Data\Mozilla\Firefox\Profiles\zo3eoikr.default\coo kies.txt -> TrackingCookie.Sitestat : No action taken.
    :mozilla.902:C:\Documents and Settings\liz\Application Data\Mozilla\Firefox\Profiles\zo3eoikr.default\coo kies.txt -> TrackingCookie.Sitestat : No action taken.
    :mozilla.903:C:\Documents and Settings\liz\Application Data\Mozilla\Firefox\Profiles\zo3eoikr.default\coo kies.txt -> TrackingCookie.Sitestat : No action taken.
    :mozilla.904:C:\Documents and Settings\liz\Application Data\Mozilla\Firefox\Profiles\zo3eoikr.default\coo kies.txt -> TrackingCookie.Sitestat : No action taken.
    :mozilla.959:C:\Documents and Settings\liz\Application Data\Mozilla\Firefox\Profiles\zo3eoikr.default\coo kies.txt -> TrackingCookie.Sitestat : No action taken.
    :mozilla.907:C:\Documents and Settings\liz\Application Data\Mozilla\Firefox\Profiles\zo3eoikr.default\coo kies.txt -> TrackingCookie.Starware : No action taken.
    :mozilla.213:C:\Documents and Settings\liz\Application Data\Mozilla\Firefox\Profiles\zo3eoikr.default\coo kies.txt -> TrackingCookie.Tradedoubler : No action taken.
    :mozilla.214:C:\Documents and Settings\liz\Application Data\Mozilla\Firefox\Profiles\zo3eoikr.default\coo kies.txt -> TrackingCookie.Tradedoubler : No action taken.
    :mozilla.215:C:\Documents and Settings\liz\Application Data\Mozilla\Firefox\Profiles\zo3eoikr.default\coo kies.txt -> TrackingCookie.Tradedoubler : No action taken.
    :mozilla.216:C:\Documents and Settings\liz\Application Data\Mozilla\Firefox\Profiles\zo3eoikr.default\coo kies.txt -> TrackingCookie.Tradedoubler : No action taken.
    :mozilla.18:C:\Documents and Settings\dad\Application Data\Mozilla\Firefox\Profiles\xi0exrxb.default\coo kies.txt -> TrackingCookie.Tribalfusion : No action taken.
    :mozilla.229:C:\Documents and Settings\liz\Application Data\Mozilla\Firefox\Profiles\zo3eoikr.default\coo kies.txt -> TrackingCookie.Tribalfusion : No action taken.
    :mozilla.787:C:\Documents and Settings\liz\Application Data\Mozilla\Firefox\Profiles\zo3eoikr.default\coo kies.txt -> TrackingCookie.Web-stat : No action taken.
    :mozilla.820:C:\Documents and Settings\liz\Application Data\Mozilla\Firefox\Profiles\zo3eoikr.default\coo kies.txt -> TrackingCookie.Web-stat : No action taken.
    :mozilla.821:C:\Documents and Settings\liz\Application Data\Mozilla\Firefox\Profiles\zo3eoikr.default\coo kies.txt -> TrackingCookie.Web-stat : No action taken.
    :mozilla.822:C:\Documents and Settings\liz\Application Data\Mozilla\Firefox\Profiles\zo3eoikr.default\coo kies.txt -> TrackingCookie.Web-stat : No action taken.
    :mozilla.841:C:\Documents and Settings\liz\Application Data\Mozilla\Firefox\Profiles\zo3eoikr.default\coo kies.txt -> TrackingCookie.Weborama : No action taken.
    :mozilla.296:C:\Documents and Settings\liz\Application Data\Mozilla\Firefox\Profiles\zo3eoikr.default\coo kies.txt -> TrackingCookie.Webtrendslive : No action taken.
    :mozilla.298:C:\Documents and Settings\liz\Application Data\Mozilla\Firefox\Profiles\zo3eoikr.default\coo kies.txt -> TrackingCookie.Webtrendslive : No action taken.
    :mozilla.393:C:\Documents and Settings\liz\Application Data\Mozilla\Firefox\Profiles\zo3eoikr.default\coo kies.txt -> TrackingCookie.Yadro : No action taken.
    :mozilla.10:C:\Documents and Settings\liz\Application Data\Mozilla\Firefox\Profiles\zo3eoikr.default\coo kies.txt -> TrackingCookie.Yieldmanager : No action taken.
    :mozilla.11:C:\Documents and Settings\liz\Application Data\Mozilla\Firefox\Profiles\zo3eoikr.default\coo kies.txt -> TrackingCookie.Yieldmanager : No action taken.
    :mozilla.12:C:\Documents and Settings\liz\Application Data\Mozilla\Firefox\Profiles\zo3eoikr.default\coo kies.txt -> TrackingCookie.Yieldmanager : No action taken.
    :mozilla.18:C:\Documents and Settings\liz\Application Data\Mozilla\Firefox\Profiles\zo3eoikr.default\coo kies.txt -> TrackingCookie.Yieldmanager : No action taken.
    :mozilla.26:C:\Documents and Settings\liz\Application Data\Mozilla\Firefox\Profiles\zo3eoikr.default\coo kies.txt -> TrackingCookie.Yieldmanager : No action taken.
    :mozilla.6:C:\Documents and Settings\liz\Application Data\Mozilla\Firefox\Profiles\zo3eoikr.default\coo kies.txt -> TrackingCookie.Yieldmanager : No action taken.
    :mozilla.7:C:\Documents and Settings\liz\Application Data\Mozilla\Firefox\Profiles\zo3eoikr.default\coo kies.txt -> TrackingCookie.Yieldmanager : No action taken.
    :mozilla.8:C:\Documents and Settings\liz\Application Data\Mozilla\Firefox\Profiles\zo3eoikr.default\coo kies.txt -> TrackingCookie.Yieldmanager : No action taken.
    :mozilla.9:C:\Documents and Settings\liz\Application Data\Mozilla\Firefox\Profiles\zo3eoikr.default\coo kies.txt -> TrackingCookie.Yieldmanager : No action taken.


    ::Report end

    Once again thanks for your time and effort, it is very much appreciated.

    Ian
  7. 15-03-2007  #6
    Technical_1
    Technical_1 is offline Full Member
    Save 20% on AVG Internet Security 2012 Suite!
    That log looks good. Good job.

    Since there are no more problems, you're good to go.

    Congratulations. Your system is clean of Malware.

    Below is my standard closing speech. You may already have some of these programs and/or performed some of these steps. Use what you can and skip the rest.
    1. Please re-hide hidden files. (If applicable)
      Follow the directions you used earlier to show hidden files and undo the changes you made so that hidden files are actually hidden once again.
    2. Please download ATF Cleaner by Atribune.
      This program is for XP and Windows 2000 only
      • Double-click ATF-Cleaner.exe to run the program.
        Under Main choose: Select All
        Click the Empty Selected button.
      If you use Firefox browser
      • Click Firefox at the top and choose: Select All
        Click the Empty Selected button.
        NOTE: If you would like to keep your saved passwords, please click No at the prompt.
      If you use Opera browser
      • Click Opera at the top and choose: Select All
        Click the Empty Selected button.
        NOTE: If you would like to keep your saved passwords, please click No at the prompt.
      Click Exit on the Main menu to close the program.
      For Technical Support, double-click the e-mail address located at the bottom of each menu.
    3. Create New Restore Point and Delete Old Restore Points.
      Step #1 - Create a New Restore Point

      Go - Start>Programmes>Accessories>System Tools>System Restore>Create a New Restore point.

      Step #2 - Flush All Previous Points

      Go - Start>Programmes>Accessories>System Tools>Disc Cleanup>"More Options" Tab>Remove All But Most Recent Point.
    4. Now that you are clean, to help protect your computer in the future I recommend that you get the following free programs:
      • SpywareBlaster to help prevent spyware from installing in the first place.
      • SpywareGuard to catch and block spyware before it can execute.
      • IESpy-Ad to block access to malicious websites so you cannot be redirected to them from an infected site or email.
    5. You should also have a good firewall. Here are 2 free ones available for personal use:
      • If you already have a software firewall, you can skip this step.
    6. You should also have a good Anti-Virus (these are also free for personal use):It is critical to have both a firewall and anti virus to protect your system and to keep them updated.
    7. To keep your operating system up to date you should do a windows update monthly. Here's the link:
    8. And to keep your system clean, run these free malware scanners weekly,and be aware of what emails you open and websites you visit.
    9. To learn more about how to protect yourself while on the internet read this article by Tony Klein: So how did I get infected in the first place?
    Safe Surfing!

    :P
+ Reply to Thread
« ad-adware pro custom setup? | odd sound »