There's no such thing as a stupid question, but they're the easiest to answer.
JoinTour
Login
 
Tag Cloud
access audio avg avg 8 bios blue screen boot browser bsod computer crash css dell desktop driver drivers dvd email error excel explorer firefox firefox 3 freeze gimp graphics hard drive hardware help please hijackthis hjt hjt log install internet internet explorer itunes javascript keyboard laptop log malware monitor network networking openoffice outlook outlook 2003 outlook express password popups problem router seo slow sound sp3 spyware startup trojan usb video virtumonde virus vista vundo windows windows xp winxp wireless youtube
Malware Removal & HijackThis Logs
Search
Search in:
 
Advanced Search
Tech Support Guy Forums > Security & Malware Removal > Malware Removal & HijackThis Logs >
Solved: Infested Computer


HELLO AND WELCOME! Before you can post your question, you'll have to register -- it's completely free! Click here to join today! We highly recommend that you print a copy of our Guide for New Members. Enjoy!

Page 1 of 2 1 2 >
 
Thread Tools
DisContent's Avatar
Computer Specs
Member with 31 posts.
  
Join Date: Dec 2006
Experience: Intermediate
30-Apr-2008, 08:55 PM #1
Unhappy Solved: Infested Computer
I appologize. I did not research this well enough,w hen I first posted, so I am going to edit this, so I can use the correct lingo and be less confusing.

I had some problems with my computer before, and you guys helped me. Once it was fixed, I created a system restore point. My computer is now infested with spyware etc but we have also added some programs and such to it since I fixed it last time, and I was wondering if I were to convert it back to that system restore point, if that would delete my new programs? If not, I know how to restore it, but if it WILL delete my stuff, would you recommend fixing this new spyware and such, or converting my puter back to how it was and adding the programs later (if I can)?
Last edited by DisContent : 30-Apr-2008 09:14 PM.
DisContent's Avatar
Computer Specs
Member with 31 posts.
  
Join Date: Dec 2006
Experience: Intermediate
02-May-2008, 12:29 AM #2
I noticed that no one has responded to this yet. Not trying to rush anyone, just wanted to make sure it is clear that I still need help--the editing was for clarification of the problem only. If someone can answer my questions, I would be most appreciative.
DisContent's Avatar
Computer Specs
Member with 31 posts.
  
Join Date: Dec 2006
Experience: Intermediate
03-May-2008, 11:51 PM #3
I tried the restore point, and it did not go back to 12/06 (when I created the one I referred to earlier). I restored it to the earliest one I could find, but it was not far enough. My computer is still infested. I am going to have to clean it again. Can someone help me do this please, and would you have any suggestions about how to keep it up this time? Thank you in advance. Sorry about being a pest, just not able to use my computer, which is hard to do since I am a student. I am having problems with pop-ups, even when I am not even accessing Internet Explorer.

Here is my HijackThis report:

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 9:57:21 PM, on 5/3/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\LEXBCES.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\LEXPPS.EXE
C:\PROGRA~1\COMMON~1\AOL\ACS\AOLacsd.exe
C:\Program Files\NavNT\defwatch.exe
C:\Program Files\Common Files\AOL\Loader\aolload.exe
C:\WINDOWS\System32\nvsvc32.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\wanmpsvc.exe
C:\WINDOWS\system32\ctfmon.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Lexmark X1100 Series\lxbkbmgr.exe
C:\Program Files\Common Files\AOL\1127628341\ee\AOLSoftware.exe
C:\Program Files\Lexmark X1100 Series\lxbkbmon.exe
C:\Program Files\Common Files\Microsoft Shared\Works Shared\WkUFind.exe
C:\Program Files\NavNT\vptray.exe
C:\WINDOWS\system32\KKLSF.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Common Files\DriveCleaner Freeware\dcsm.exe
C:\Documents and Settings\All Users\Application Data\AOL\UserProfiles\All Users\antiSpyware\dat\updates\aspapp\sunsetAsp2.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\Java\jre1.6.0_01\bin\jusched.exe
C:\WINDOWS\system32\HPAware.exe
C:\Program Files\Messenger\msmsgs.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
c:\program files\common files\aol\1127628341\ee\services\antiSpywareApp\ver2_0_32_1\AOLSP Scheduler.exe
c:\program files\common files\aol\1127628341\ee\aolsoftware.exe
C:\Program Files\America Online 9.0a\aoltray.exe
C:\Program Files\Microsoft Broadband Networking\MSBNTray.exe
C:\Program Files\Common Files\Microsoft Shared\Works Shared\wkcalrem.exe
C:\WINDOWS\system32\rundll32.exe
C:\Program Files\Java\jre1.6.0_01\bin\jucheck.exe
C:\Program Files\America Online 9.0a\waol.exe
C:\Program Files\America Online 9.0a\shellmon.exe
C:\Program Files\Common Files\Aol\aoltpspd.exe
C:\Program Files\Internet Explorer\iexplore.exe
c:\program files\common files\aol\1127628341\ee\anotify.exe
C:\WINDOWS\explorer.exe
C:\WINDOWS\system32\rundll32.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://my.starware.com/dp/startpage?src_id=325
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page_bak = res://msaps.dll/index.html
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://support.cox.net/
O1 - Hosts: comments (such as these) may be inserted on individual
O1 - Hosts: 64.12.152.18 search.netscape.com
O3 - Toolbar: AOL Toolbar - {4982D40A-C53B-4615-B15B-B5B5E98D167C} - C:\Program Files\AOL Toolbar\toolbar.dll (file missing)
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll
O3 - Toolbar: (no name) - {07AA283A-43D7-4CBE-A064-32A21112D94D} - (no file)
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\System32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [Lexmark X1100 Series] "C:\Program Files\Lexmark X1100 Series\lxbkbmgr.exe"
O4 - HKLM\..\Run: [AOLDialer] C:\Program Files\Common Files\AOL\ACS\AOLDial.exe
O4 - HKLM\..\Run: [Pure Networks Port Magic] "C:\PROGRA~1\PURENE~1\PORTMA~1\PortAOL.exe" -Run
O4 - HKLM\..\Run: [HostManager] C:\Program Files\Common Files\AOL\1127628341\ee\AOLSoftware.exe
O4 - HKLM\..\Run: [WorksFUD] C:\Program Files\Microsoft Works\wkfud.exe
O4 - HKLM\..\Run: [WinampAgent] "C:\Program Files\Winamp3\winampa.exe"
O4 - HKLM\..\Run: [sureshotpopupkiller] "C:\Program Files\Stop-the-Pop-Up Demo\stopthepop.exe" -minimized
O4 - HKLM\..\Run: [RealTray] C:\Program Files\Real\RealPlayer\RealPlay.exe SYSTEMBOOTHIDEPLAYER
O4 - HKLM\..\Run: [PrinTray] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\printray.exe
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [Microsoft Works Update Detection] C:\Program Files\Common Files\Microsoft Shared\Works Shared\WkUFind.exe
O4 - HKLM\..\Run: [Microsoft Works Portfolio] C:\Program Files\Microsoft Works\WksSb.exe /AllUsers
O4 - HKLM\..\Run: [Lexmark X73 Button Monitor] C:\PROGRA~1\LEXMAR~1\ACMonitor_X73.exe
O4 - HKLM\..\Run: [Lexmark X73 Button Manager] C:\PROGRA~1\LEXMAR~1\AcBtnMgr_X73.exe
O4 - HKLM\..\Run: [kdx] C:\WINDOWS\kdx\KHost.exe
O4 - HKLM\..\Run: [vptray] C:\Program Files\NavNT\vptray.exe
O4 - HKLM\..\Run: [Pop32 message client] C:\WINDOWS\system32\KKLSF.exe
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [Salestart] "C:\Program Files\Common Files\DriveCleaner Freeware\dcsm.exe"
O4 - HKLM\..\Run: [AOLAspSunset2] C:\Documents and Settings\All Users\Application Data\AOL\UserProfiles\All Users\antiSpyware\dat\updates\aspapp\sunsetAsp2.exe
O4 - HKLM\..\Run: [SeekmoOE] C:\Program Files\Seekmo\bin\10.0.370.0\OEAddOn.exe
O4 - HKLM\..\Run: [SeekmoSA] "C:\Program Files\Seekmo\bin\10.0.370.0\SeekmoSA.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_01\bin\jusched.exe"
O4 - HKLM\..\Run: [145f0487] rundll32.exe "C:\WINDOWS\system32\eejbgmmj.dll",b
O4 - HKLM\..\Run: [HP Update Assistant] C:\WINDOWS\system32\HPAware.exe
O4 - HKLM\..\Run: [BM176c371b] Rundll32.exe "C:\WINDOWS\system32\isfoscce.dll",s
O4 - HKCU\..\Run: [Microsoft Works Update Detection] C:\Program Files\Microsoft Works\WkDetect.exe
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [AIM] C:\Program Files\AIM95\aim.exe -cnetwait.odl
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKUS\S-1-5-18\..\RunOnce: [RunNarrator] Narrator.exe (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\RunOnce: [RunNarrator] Narrator.exe (User 'Default user')
O4 - Global Startup: America Online 8.0 Tray Icon.lnk = C:\Program Files\America Online 8.0\aoltray.exe
O4 - Global Startup: America Online 9.0 Tray Icon.lnk = C:\Program Files\America Online 9.0a\aoltray.exe
O4 - Global Startup: Loadout Manager.lnk = C:\Program Files\Belkin\Nostromo\nost_LM.exe
O4 - Global Startup: Microsoft Broadband Networking.lnk = ?
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O4 - Global Startup: Microsoft Works Calendar Reminders.lnk = ?
O4 - Global Startup: ZoneAlarm Pro.lnk = C:\Program Files\Zone Labs\ZoneAlarm\zapro.exe
O8 - Extra context menu item: &AOL Toolbar search - res://C:\Program Files\AOL Toolbar\toolbar.dll/SEARCH.HTML
O8 - Extra context menu item: &Yahoo! Search - file:///C:\Program Files\Yahoo!\Common/ycsrch.htm
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MI1933~1\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Yahoo! &Dictionary - file:///C:\Program Files\Yahoo!\Common/ycdict.htm
O8 - Extra context menu item: Yahoo! &Maps - file:///C:\Program Files\Yahoo!\Common/ycmap.htm
O8 - Extra context menu item: Yahoo! &SMS - file:///C:\Program Files\Yahoo!\Common/ycsms.htm
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MI1933~1\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MI1933~1\Office12\ONBttnIE.dll
O9 - Extra button: AOL Toolbar - {4982D40A-C53B-4615-B15B-B5B5E98D167C} - C:\Program Files\AOL Toolbar\toolbar.dll (file missing)
O9 - Extra 'Tools' menuitem: AOL Toolbar - {4982D40A-C53B-4615-B15B-B5B5E98D167C} - C:\Program Files\AOL Toolbar\toolbar.dll (file missing)
O9 - Extra button: Yahoo! Services - {5BAB4B5B-68BC-4B02-94D6-2FC0DE4A7897} - C:\Program Files\Yahoo!\Common\yiesrvc.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MI1933~1\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - (no file)
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {2D2BEE6E-3C9A-4D58-B9EC-458EDB28D0F6} - http://cdn.drivecleaner.com/installd...eanerstart.cab
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsof...?1158122205468
O16 - DPF: {F54C1137-5E34-4B95-95A5-BA56D4D8D743} - http://www.gamespot.com/KDX22/download/kdx.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{B9A145CE-5E42-49B9-BEBC-C5D0A9F2FE36}: NameServer = 205.188.146.145
O23 - Service: AOL Connectivity Service (AOL ACS) - AOL LLC - C:\PROGRA~1\COMMON~1\AOL\ACS\AOLacsd.exe
O23 - Service: AOL Spyware Protection Service (AOLService) - Unknown owner - C:\PROGRA~1\COMMON~1\AOL\AOLSPY~1\\aolserv.exe (file missing)
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: AVG Anti-Spyware Guard - Unknown owner - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe (file missing)
O23 - Service: DefWatch - Symantec Corporation - C:\Program Files\NavNT\defwatch.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: LexBce Server (LexBceS) - Lexmark International, Inc. - C:\WINDOWS\system32\LEXBCES.EXE
O23 - Service: Norton AntiVirus Client (Norton AntiVirus Server) - Symantec Corporation - C:\Program Files\NavNT\rtvscan.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe
O23 - Service: WAN Miniport (ATW) Service (WANMiniportService) - America Online, Inc. - C:\WINDOWS\wanmpsvc.exe

--
End of file - 10835 bytes
Last edited by DisContent : 04-May-2008 12:01 AM.
cybertech's Avatar
Computer Specs
Moderator with 56,527 posts.
  
Join Date: Apr 2002
Location: Washington State
05-May-2008, 04:20 PM #4
Please download Malwarebytes Anti-Malware from Here or Here
Double Click mbam-setup.exe to install the application.
  • Make sure a checkmark is placed next to Update Malwarebytes' Anti-Malware and Launch Malwarebytes Anti-Malware, then click Finish.
  • If an update is found, it will download and install the latest version.
  • Once the program has loaded, select Perform Quick Scan, then click Scan.
  • The scan may take some time to finish,so please be patient.
  • When the scan is complete, click OK, then Show Results to view the results.
  • Make sure that everything is checked, and click Remove Selected.
  • When disinfection is completed, a log will open in Notepad and you may be prompted to Restart.(See Extra Note)
  • The log is automatically saved by MBAM and can be viewed by clicking the Logs tab in MBAM.
  • Copy the entire report and paste it in your next reply.
Extra Note:

If MBAM encounters a file that is difficult to remove, you will be presented with 1 of 2 prompts, click OK to either and let MBAM proceed with the disinfection process, if asked to restart the computer, please do so immediately.
__________________
Microsoft MVP/Windows - Consumer Security


If we have helped you, please consider making a donation to TSG!
DisContent's Avatar
Computer Specs
Member with 31 posts.
  
Join Date: Dec 2006
Experience: Intermediate
06-May-2008, 05:02 PM #5
THANK YOU!!!!!! After running the mbam, I can already see a huge difference!!!

Here is my mbam log (part 1 of 3):

Malwarebytes' Anti-Malware 1.12
Database version: 726

Scan type: Quick Scan
Objects scanned: 57220
Time elapsed: 26 minute(s), 31 second(s)

Memory Processes Infected: 1
Memory Modules Infected: 0
Registry Keys Infected: 121
Registry Values Infected: 7
Registry Data Items Infected: 0
Folders Infected: 62
Files Infected: 514

Memory Processes Infected:
C:\Program Files\Common Files\DriveCleaner Freeware\dcsm.exe (Rogue.DriveCleaner) -> Unloaded process successfully.

Memory Modules Infected:
(No malicious items detected)

Registry Keys Infected:
HKEY_CLASSES_ROOT\{cc6abff0-0faf-47e5-9ce6-82972fc5712d} (Rogue.WinXDefender) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{cc6abff0-0faf-47e5-9ce6-82972fc5712d} (Rogue.WinXDefender) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface\{b8e7195e-38e8-44ca-b94b-1a0797fd35ad} (Rogue.WinXDefender) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Typelib\{ea47dd58-22dd-4d84-bd19-459b2c1e08d6} (Rogue.WinXDefender) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\iehelper3.iehelperop (Spyware-Logger.Unknown) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{49e0e0f0-5c30-11d4-945d-000000000000} (Spyware-Logger.Unknown) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Brows er Helper Objects\{49e0e0f0-5c30-11d4-945d-000000000000} (Spyware-Logger.Unknown) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\hpi3.hpi2 (Adware.BHO) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{e6280729-9251-41d7-bc1c-572c9548c962} (Adware.BHO) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Brows er Helper Objects\{e6280729-9251-41d7-bc1c-572c9548c962} (Adware.BHO) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\hpi4.hpi2 (Adware.BHO) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{2d2bee6e-3c9a-4d58-b9ec-458edb28d0f6} (Rogue.DriveCleaner) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface\{00b77587-be1b-4201-b8e9-09fcf50ab771} (Adware.Zango) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface\{067c6a37-72ea-4437-863a-5be20c246f3c} (Adware.Zango) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\hostie.bho.1 (Adware.Zango) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{07aa283a-43d7-4cbe-a064-32a21112d94d} (Adware.Zango) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Brows er Helper Objects\{07aa283a-43d7-4cbe-a064-32a21112d94d} (Adware.Zango) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface\{34e29700-0d13-46aa-b9a5-ace68e21a091} (Adware.Zango) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface\{3661af2d-c27b-499c-9bcf-66c8502a3806} (Adware.Zango) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface\{99123ac9-7dda-4c82-b252-44c2804bf392} (Adware.Zango) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface\{5a4737a8-b92a-4e54-970e-c2891d98ce3f} (Adware.Zango) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface\{ace99e77-aa2a-43c2-8c9d-caf2020fdf2b} (Adware.Zango) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface\{e0fb1610-b25b-49f6-be20-751b2f230e6f} (Adware.Zango) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface\{3f0915b8-b238-4c2d-ad1e-60db1e14d27a} (Adware.Zango) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface\{ea58c2ea-be26-49dd-9b9a-c8e4e5ca7791} (Adware.Zango) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface\{fca28ac5-c1e1-4d67-a5ae-c44d6c374d9f} (Adware.Zango) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface\{1230cf51-6bc4-4a23-b3f1-c7cf0afed619} (Adware.Zango) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface\{1a2af056-1fe1-47ca-993d-5d09d18e674e} (Adware.Zango) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface\{2e623b96-b166-4c70-8169-820761794299} (Adware.Zango) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface\{4e8b851b-05b0-4baf-b24d-d0dfe88dded3} (Adware.Zango) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface\{50c3e2b3-4fd7-4cb9-91f9-641a6e6b3689} (Adware.Zango) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface\{62b0b239-f9ac-4a5b-bfae-62c7a23f7627} (Adware.Zango) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface\{726f0ab9-b842-4ae4-90c7-230e233e6a99} (Adware.Zango) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface\{b9cc2b92-5611-453f-8381-8b6f72d9c0b8} (Adware.Zango) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface\{c4543e64-1498-410d-8e72-4744eea99ab9} (Adware.Zango) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface\{2b81f920-6660-4f76-93bf-b1c67bf5d1a0} (Adware.Zango) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface\{49155dae-c471-40fa-98ee-b2b3cad115ce} (Adware.Zango) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface\{4d783385-0dda-4188-a529-c97dc3d67cbd} (Adware.Zango) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{54a3f8b7-228e-4ed8-895b-de832b2c3959} (Adware.Zango) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApprove d\{54a3f8b7-228e-4ed8-895b-de832b2c3959} (Adware.Zango) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\toolbar.htmlmenuui.1 (Adware.Zango) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{5b2e150d-4c8a-40e4-8c36-dd9c02771c67} (Adware.Zango) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\toolbar.toolbarctl (Adware.Zango) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\toolbar.toolbarctl.1 (Adware.Zango) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{627d894a-8a77-416e-b522-432eaf2c818e} (Adware.Zango) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface\{6e10479b-31e8-4a3b-81b1-ddaf39097f19} (Adware.Zango) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\srv.coreservices.1 (Adware.Zango) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{7138f250-5b72-48dd-adfb-9a83b429dd9e} (Adware.Zango) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\hostol.mailanim.1 (Adware.Zango) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{8971cb48-9fca-445a-be77-e8e8a4cc9df7} (Adware.Zango) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\hbmain.commband.1 (Adware.Zango) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{93b0fa7b-50f6-41b4-ac7e-612a72ce8c3c} (Adware.Zango) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Explorer Bars\{93b0fa7b-50f6-41b4-ac7e-612a72ce8c3c} (Adware.Zango) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Explorer Bars\{93b0fa7b-50f6-41b4-ac7e-612a72ce8c3c} (Adware.Zango) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface\{e420a65f-9984-4b8c-9fa9-1ed69d3b0a13} (Adware.Zango) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\coresrv.lfgax.1 (Adware.Zango) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{b0cb585f-3271-4e42-88d9-ae5c9330d554} (Adware.Zango) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface\{b247f5bf-bd9d-4ecd-8fc1-365f36a1fda1} (Adware.Zango) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\hostol.webmailsend.1 (Adware.Zango) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{b88e4484-3ff6-4ea9-815b-a54fe20d4387} (Adware.Zango) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface\{bbbfb891-98ae-4678-86f3-bd5a2eed86c9} (Adware.Zango) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\instie.hbinstobj.1 (Adware.Zango) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\coresrv.coreservices.1 (Adware.Zango) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\hbr.hbmain.1 (Adware.Zango) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{eddbb5ee-bb64-4bfc-9dbe-e7c85941335b} (Adware.Zango) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\Software\Microsoft\Installer\Features\9ee2330ae5f4470cac8 01baac83818c9 (Adware.Zango) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\wav6com.avofficeprotect (Rogue.WinAntivirus) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\wav6com.avofficeprotect.1 (Rogue.WinAntivirus) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{07b18ea9-a523-4961-b6bb-170de4475cca} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface\{63d0ed2d-b45b-4458-8b3b-60c69bbbd83c} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{00a6faf1-072e-44cf-8957-5838f569a31d} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\seekmo.desktopflash (Adware.Seekmo) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\seekmo.desktopflash.1 (Adware.Seekmo) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{914a8f99-38e4-47ec-b875-2b0653516030} (Adware.Seekmo) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApprove d\{914a8f99-38e4-47ec-b875-2b0653516030} (Adware.Seekmo) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{914a8f99-38e4-47ec-b875-2b0653516030} (Adware.Seekmo) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\seekmoax.clientdetector (Adware.Seekmo) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\seekmoax.clientdetector.1 (Adware.Seekmo) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{1f158a1e-a687-4a11-9679-b3ac64b86a1c} (Adware.Seekmo) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApprove d\{1f158a1e-a687-4a11-9679-b3ac64b86a1c} (Adware.Seekmo) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\seekmoax.userprofiles (Adware.Seekmo) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\seekmoax.userprofiles.1 (Adware.Seekmo) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{e313f5dc-cfe7-4568-84a4-c76653547571} (Adware.Seekmo) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApprove d\{e313f5dc-cfe7-4568-84a4-c76653547571} (Adware.Seekmo) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface\{bd5258af-20ae-4bd3-b748-b2851aca7335} (Adware.Seekmo) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Typelib\{995e885e-3ff5-4f66-a107-8bfb3a0f8f12} (Adware.Seekmo) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Typelib\{fbb40fdf-b715-4342-ab82-244ecc66e979} (Adware.Seekmo) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\AppID\{4a40e8fc-c7e4-4f57-9fa4-85dd77402897} (Adware.Seekmo) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\star ware325 (Adware.Starware) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\AppID\seekmo.desktopflash (Adware.Seekmo) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\AppID\seekmo.desktopflash.1 (Adware.Seekmo) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\AppID\seekmoax.clientdetector (Adware.Seekmo) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\AppID\seekmoax.clientdetector.1 (Adware.Seekmo) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\AppID\seekmoax.userprofiles (Adware.Seekmo) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\AppID\seekmoax.userprofiles.1 (Adware.Seekmo) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\Software\seekmosa (Adware.Seekmo) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\seek mosa (Adware.Seekmo) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\aoprndtws (Malware.Trace) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\jkwslist (Malware.Trace) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\Software\Microsoft\aldd (Malware.Trace) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\Software\Microsoft\MS Juan (Malware.Trace) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\Software\Microsoft\affri (Malware.Trace) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\Software\WinXDefender (Rogue.WinXDefender) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\Software\Microsoft\affltid (Malware.Trace) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\Software\Microsoft\rdfa (Trojan.Vundo) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\affltid (Malware.Trace) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\affri (Malware.Trace) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\MS Juan (Malware.Trace) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Juan (Trojan.Vundo) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\FCOVM (Trojan.Vundo) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\RemoveRP (Trojan.Vundo) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\webv ideo (Trojan.FakeAlert) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\etlrlws.bwgq (Trojan.FakeAlert) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\etlrlws.toolbar.1 (Trojan.FakeAlert) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\AppID\WinPGI.DLL (Rogue.WinAntivirus) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Multimedia\WMPlayer\Schemes\f3pss (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\FocusInteractive (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\fopn (Rogue.WinAntiSpyware) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\Software\Fun Web Products (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\Software\Starware325 (Adware.Starware) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\WSEM Update (Adware.NetOptimizer) -> Quarantined and deleted successfully.

Registry Values Infected:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar\{07aa283a-43d7-4cbe-a064-32a21112d94d} (Adware.Zango) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\{07aa283a-43d7-4cbe-a064-32a21112d94d} (Adware.Zango) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\ShellBrowser\{07aa283a-43d7-4cbe-a064-32a21112d94d} (Adware.Zango) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\Salestart (Rogue.DriveCleaner) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Session Manager\BootStera (Rogue.WinAntivirus) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows Media\WMSDK\Sources\f3PopularScreensavers (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\User Agent\Post Platform\FunWebProducts (Adware.MyWebSearch) -> Quarantined and deleted successfully.

Registry Data Items Infected:
(No malicious items detected)

Folders Infected:
C:\Documents and Settings\All Users\Application Data\WinAntiVirus Pro 2006 (Rogue.WinAntivirus) -> Quarantined and deleted successfully.
C:\Program Files\Common Files\DriveCleaner Freeware (Rogue.DriveCleaner) -> Quarantined and deleted successfully.
C:\Program Files\DriveCleaner Freeware (Rogue.DriveCleaner) -> Quarantined and deleted successfully.
C:\Documents and Settings\All Users\Application Data\SalesMonitor (Rogue.Multiple) -> Quarantined and deleted successfully.
C:\Documents and Settings\All Users\Application Data\SalesMonitor\Data (Rogue.Multiple) -> Quarantined and deleted successfully.
C:\Program Files\Starware325 (Adware.Starware) -> Quarantined and deleted successfully.
C:\Program Files\Starware325\bin (Adware.Starware) -> Quarantined and deleted successfully.
C:\Program Files\Starware325\icons (Adware.Starware) -> Quarantined and deleted successfully.
C:\Documents and Settings\All Users\Application Data\Starware325 (Adware.Starware) -> Quarantined and deleted successfully.
C:\Documents and Settings\All Users\Application Data\Starware325\buttons (Adware.Starware) -> Quarantined and deleted successfully.
C:\Documents and Settings\All Users\Application Data\Starware325\contexts (Adware.Starware) -> Quarantined and deleted successfully.
C:\Documents and Settings\All Users\Application Data\Starware325\images (Adware.Starware) -> Quarantined and deleted successfully.
C:\Documents and Settings\All Users\Application Data\Starware325\SimpleUpdate (Adware.Starware) -> Quarantined and deleted successfully.
C:\Documents and Settings\All Users\Application Data\SeekmoSA (Adware.Seekmo) -> Quarantined and deleted successfully.
C:\Documents and Settings\All Users\Start Menu\Programs\Seekmo (Adware.Seekmo) -> Quarantined and deleted successfully.
C:\Documents and Settings\All Users\Application Data\2ACA5CC3-0F83-453D-A079-1076FE1A8B65 (Adware.Seekmo) -> Quarantined and deleted successfully.
C:\Documents and Settings\Chris\Application Data\DriveCleaner Freeware (Rogue.DriveCleaner) -> Quarantined and deleted successfully.
C:\Documents and Settings\Chris\Application Data\DriveCleaner Freeware\Logs (Rogue.DriveCleaner) -> Quarantined and deleted successfully.
C:\Documents and Settings\Chris\Application Data\Starware325 (Adware.Starware) -> Quarantined and deleted successfully.
C:\Documents and Settings\Chris\Application Data\Starware325\BrowserSearch (Adware.Starware) -> Quarantined and deleted successfully.
C:\Documents and Settings\Chris\Application Data\Starware325\Configurator (Adware.Starware) -> Quarantined and deleted successfully.
C:\Documents and Settings\Chris\Application Data\Starware325\ErrorSearch (Adware.Starware) -> Quarantined and deleted successfully.
C:\Documents and Settings\Chris\Application Data\Starware325\Games (Adware.Starware) -> Quarantined and deleted successfully.
C:\Documents and Settings\Chris\Application Data\Starware325\Layouts (Adware.Starware) -> Quarantined and deleted successfully.
C:\Documents and Settings\Chris\Application Data\Starware325\Manager (Adware.Starware) -> Quarantined and deleted successfully.
C:\Documents and Settings\Chris\Application Data\Starware325\Movies (Adware.Starware) -> Quarantined and deleted successfully.
C:\Documents and Settings\Chris\Application Data\Starware325\NewsSearch (Adware.Starware) -> Quarantined and deleted successfully.
C:\Documents and Settings\Chris\Application Data\Starware325\Reference (Adware.Starware) -> Quarantined and deleted successfully.
C:\Documents and Settings\Chris\Application Data\Starware325\RelatedSearch (Adware.Starware) -> Quarantined and deleted successfully.
C:\Documents and Settings\Chris\Application Data\Starware325\ScreensaversMarketingSitePager (Adware.Starware) -> Quarantined and deleted successfully.
C:\Documents and Settings\Chris\Application Data\Starware325\Toolbar (Adware.Starware) -> Quarantined and deleted successfully.
C:\Documents and Settings\Chris\Application Data\Starware325\ToolbarLogo (Adware.Starware) -> Quarantined and deleted successfully.
C:\Documents and Settings\Chris\Application Data\Starware325\ToolbarSearch (Adware.Starware) -> Quarantined and deleted successfully.
C:\Documents and Settings\Chris\Application Data\Starware325\TravelSearch (Adware.Starware) -> Quarantined and deleted successfully.
C:\Documents and Settings\Chris\Application Data\Starware325\Weather (Adware.Starware) -> Quarantined and deleted successfully.
C:\Documents and Settings\Chris\Application Data\Starware325\Games\images (Adware.Starware) -> Quarantined and deleted successfully.
C:\Documents and Settings\Chris\Application Data\Starware325\Games\images\active (Adware.Starware) -> Quarantined and deleted successfully.
C:\Documents and Settings\Chris\Application Data\Starware325\Games\images\default (Adware.Starware) -> Quarantined and deleted successfully.
C:\Documents and Settings\Chris\Application Data\Starware325\Movies\images (Adware.Starware) -> Quarantined and deleted successfully.
C:\Documents and Settings\Chris\Application Data\Starware325\Movies\images\active (Adware.Starware) -> Quarantined and deleted successfully.
C:\Documents and Settings\Chris\Application Data\Starware325\Movies\images\default (Adware.Starware) -> Quarantined and deleted successfully.
C:\Documents and Settings\Chris\Application Data\Starware325\ScreensaversMarketingSitePager\images (Adware.Starware) -> Quarantined and deleted successfully.
C:\Documents and Settings\Chris\Application Data\Starware325\ScreensaversMarketingSitePager\images\active (Adware.Starware) -> Quarantined and deleted successfully.
C:\Documents and Settings\Chris\Application Data\Starware325\ScreensaversMarketingSitePager\images\default (Adware.Starware) -> Quarantined and deleted successfully.
C:\Documents and Settings\Chris\Start Menu\Programs\WinXDefender (Rogue.WinXDefender) -> Quarantined and deleted successfully.
C:\Documents and Settings\Chris\Application Data\Seekmo (AdWare.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Chris\Application Data\Seekmo\IESkins (AdWare.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Chris\Application Data\Seekmo\v3.0 (AdWare.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Chris\Application Data\Seekmo\v3.0\HostOI (AdWare.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Chris\Application Data\Seekmo\v3.0\HostOL (AdWare.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Chris\Application Data\Seekmo\v3.0\Seekmo (AdWare.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Chris\Application Data\Seekmo\v3.0\HostOI\dynamic (AdWare.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Chris\Application Data\Seekmo\v3.0\HostOI\static (AdWare.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Chris\Application Data\Seekmo\v3.0\HostOL\dynamic (AdWare.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Chris\Application Data\Seekmo\v3.0\HostOL\static (AdWare.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Chris\Application Data\Seekmo\v3.0\Seekmo\dynamic (AdWare.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Chris\Application Data\Seekmo\v3.0\Seekmo\static (AdWare.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Chris\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML (AdWare.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Chris\Application Data\Seekmo\v3.0\Seekmo\dynamic\ustat (AdWare.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Chris\Application Data\Seekmo\v3.0\Seekmo\static\1 (AdWare.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Chris\Application Data\Seekmo\v3.0\Seekmo\static\2 (AdWare.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Chris\Application Data\Seekmo\v3.0\Seekmo\static\DownLoad (AdWare.Agent) -> Quarantined and deleted successfully.
DisContent's Avatar
Computer Specs
Member with 31 posts.
  
Join Date: Dec 2006
Experience: Intermediate
06-May-2008, 05:04 PM #6
Files Infected:
C:\WINDOWS\system32\abhfcqsu.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\usqcfhba.ini (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\aieqdayn.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\nyadqeia.ini (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\akvcdibp.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\pbidcvka.ini (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\bfgsfixy.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\yxifsgfb.ini (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\bnwporyw.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\wyropwnb.ini (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\bpdxxugg.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\gguxxdpb.ini (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\brjhuyuu.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\uuyuhjrb.ini (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\bwdilfpr.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\rpflidwb.ini (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\cgbdflcr.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\rclfdbgc.ini (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\cholaaeh.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\heaalohc.ini (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\depetirc.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\criteped.ini (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\dfvegkfk.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\kfkgevfd.ini (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\djxjvmcf.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\fcmvjxjd.ini (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\ejvedvqm.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\mqvdevje.ini (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\emrkauiq.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\qiuakrme.ini (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\evmdnytj.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\jtyndmve.ini (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\fbpmmeko.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\okemmpbf.ini (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\fdadfphj.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\jhpfdadf.ini (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\feagtqpa.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\apqtgaef.ini (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\gcwtlwvd.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\dvwltwcg.ini (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\gqjnhsdt.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\tdshnjqg.ini (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\gyiqupyq.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\qypuqiyg.ini (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\hbbaxoeh.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\heoxabbh.ini (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\hhqpcwwx.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\xwwcpqhh.ini (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\hliculnk.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\knlucilh.ini (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\imcpewwn.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\nwwepcmi.ini (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\iuidbfye.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\eyfbdiui.ini (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\jkqvyxum.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\muxyvqkj.ini (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\jxamfagv.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\vgafmaxj.ini (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\kgwxkrla.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\alrkxwgk.ini (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\knoelyyw.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\wyyleonk.ini (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\kqrcwfcs.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\scfwcrqk.ini (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\lgvxxiab.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\baixxvgl.ini (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\lkaxvoor.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\roovxakl.ini (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\mbemxxwf.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\fwxxmebm.ini (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\mpjpbije.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\ejibpjpm.ini (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\mplvqfdv.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\vdfqvlpm.ini (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\mvwjgxdk.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\kdxgjwvm.ini (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\nxtinckv.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\vkcnitxn.ini (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\obboyjwt.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\twjyobbo.ini (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\olujbcfi.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\ifcbjulo.ini (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\opahgeiq.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\qieghapo.ini (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\pgopogrt.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\trgopogp.ini (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\pifaauin.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\niuaafip.ini (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\plefjwwt.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\twwjfelp.ini (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\psvjldwa.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\awdljvsp.ini (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\pulegxvs.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\svxgelup.ini (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\qhhmcoqq.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\qqocmhhq.ini (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\quiybhmo.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\omhbyiuq.ini (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\qvcgwlrd.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drlwgcvq.ini (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\sebfnbku.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\ukbnfbes.ini (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\seofibnc.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\cnbifoes.ini (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\shxgpteq.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\qetpgxhs.ini (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\ssbxtpgu.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\ugptxbss.ini (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\swoieowv.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\vwoeiows.ini (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\tbadlnme.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\emnldabt.ini (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\tjycoyyp.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\pyyocyjt.ini (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\tpuolsnb.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\bnsloupt.ini (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\ttyteyai.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\iayetytt.ini (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\iayetytt.ini2 (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\ueffkbxd.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\dxbkffeu.ini (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\unjnhycc.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\ccyhnjnu.ini (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\vafkjolf.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\flojkfav.ini (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\vigewjlf.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\fljwegiv.ini (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\vreatkxu.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\uxktaerv.ini (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\vuwwmbwo.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\owbmwwuv.ini (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\wcbyuaaj.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\jaauybcw.ini (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\wgfqxwgc.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\cgwxqfgw.ini (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\wotgvaoe.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\eoavgtow.ini (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\wwhircpx.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\xpcrihww.ini (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\wwihirre.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\errihiww.ini (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\wynaeviv.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\viveanyw.ini (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\xekfsglk.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\klgsfkex.ini (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\xvefinfe.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\efnifevx.ini (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\yjnleadd.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\ddaelnjy.ini (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\ysiyjcge.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\egcjyisy.ini (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\iehelper3.dll (Spyware-Logger.Unknown) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\HPI4.dll (Adware.BHO) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\HPI3.dll (Adware.BHO) -> Quarantined and deleted successfully.
C:\Documents and Settings\All Users\Application Data\WinAntiVirus Pro 2006\AVScheduler.dat (Rogue.WinAntivirus) -> Quarantined and deleted successfully.
C:\Program Files\Common Files\DriveCleaner Freeware\dcsm.exe (Rogue.DriveCleaner) -> Quarantined and deleted successfully.
C:\Program Files\DriveCleaner Freeware\mfc71.dll (Rogue.DriveCleaner) -> Quarantined and deleted successfully.
C:\Program Files\DriveCleaner Freeware\msvcp71.dll (Rogue.DriveCleaner) -> Quarantined and deleted successfully.
C:\Program Files\DriveCleaner Freeware\msvcr71.dll (Rogue.DriveCleaner) -> Quarantined and deleted successfully.
C:\Program Files\DriveCleaner Freeware\UDC.exe (Rogue.DriveCleaner) -> Quarantined and deleted successfully.
C:\Program Files\DriveCleaner Freeware\UDC6_cw.exe (Rogue.DriveCleaner) -> Quarantined and deleted successfully.
C:\Program Files\Starware325\brand.bmp (Adware.Starware) -> Quarantined and deleted successfully.
C:\Program Files\Starware325\Starware325Config.xml (Adware.Starware) -> Quarantined and deleted successfully.
C:\Program Files\Starware325\Starware325Uninstall.exe (Adware.Starware) -> Quarantined and deleted successfully.
C:\Program Files\Starware325\bin\Starware325.dll (Adware.Starware) -> Quarantined and deleted successfully.
C:\Program Files\Starware325\icons\star_16.ico (Adware.Starware) -> Quarantined and deleted successfully.
C:\Documents and Settings\All Users\Application Data\Starware325\buttons\FindIt.bmp (Adware.Starware) -> Quarantined and deleted successfully.
C:\Documents and Settings\All Users\Application Data\Starware325\buttons\FindItHot.bmp (Adware.Starware) -> Quarantined and deleted successfully.
C:\Documents and Settings\All Users\Application Data\Starware325\buttons\findithotxp.png (Adware.Starware) -> Quarantined and deleted successfully.
C:\Documents and Settings\All Users\Application Data\Starware325\buttons\finditxp.png (Adware.Starware) -> Quarantined and deleted successfully.
C:\Documents and Settings\All Users\Application Data\Starware325\buttons\Highlight.bmp (Adware.Starware) -> Quarantined and deleted successfully.
C:\Documents and Settings\All Users\Application Data\Starware325\buttons\HighlightHot.bmp (Adware.Starware) -> Quarantined and deleted successfully.
C:\Documents and Settings\All Users\Application Data\Starware325\buttons\highlighthotxp.png (Adware.Starware) -> Quarantined and deleted successfully.
C:\Documents and Settings\All Users\Application Data\Starware325\buttons\highlightxp.png (Adware.Starware) -> Quarantined and deleted successfully.
C:\Documents and Settings\All Users\Application Data\Starware325\buttons\newssearchicon.bmp (Adware.Starware) -> Quarantined and deleted successfully.
C:\Documents and Settings\All Users\Application Data\Starware325\buttons\newssearchiconxp.png (Adware.Starware) -> Quarantined and deleted successfully.
C:\Documents and Settings\All Users\Application Data\Starware325\buttons\newssearchiconxp_over.png (Adware.Starware) -> Quarantined and deleted successfully.
C:\Documents and Settings\All Users\Application Data\Starware325\buttons\newssearchicon_over.bmp (Adware.Starware) -> Quarantined and deleted successfully.
C:\Documents and Settings\All Users\Application Data\Starware325\buttons\Reference.bmp (Adware.Starware) -> Quarantined and deleted successfully.
C:\Documents and Settings\All Users\Application Data\Starware325\buttons\ReferenceHot.bmp (Adware.Starware) -> Quarantined and deleted successfully.
C:\Documents and Settings\All Users\Application Data\Starware325\buttons\referencehotxp.png (Adware.Starware) -> Quarantined and deleted successfully.
C:\Documents and Settings\All Users\Application Data\Starware325\buttons\referencexp.png (Adware.Starware) -> Quarantined and deleted successfully.
C:\Documents and Settings\All Users\Application Data\Starware325\buttons\starware_toolbar_icon.bmp (Adware.Starware) -> Quarantined and deleted successfully.
C:\Documents and Settings\All Users\Application Data\Starware325\buttons\Weather.bmp (Adware.Starware) -> Quarantined and deleted successfully.
C:\Documents and Settings\All Users\Application Data\Starware325\buttons\weatherhotxp.png (Adware.Starware) -> Quarantined and deleted successfully.
C:\Documents and Settings\All Users\Application Data\Starware325\buttons\weatherxp.png (Adware.Starware) -> Quarantined and deleted successfully.
C:\Documents and Settings\All Users\Application Data\Starware325\contexts\error.xml (Adware.Starware) -> Quarantined and deleted successfully.
C:\Documents and Settings\All Users\Application Data\Starware325\contexts\Related.xml (Adware.Starware) -> Quarantined and deleted successfully.
C:\Documents and Settings\All Users\Application Data\Starware325\contexts\Travel.xml (Adware.Starware) -> Quarantined and deleted successfully.
C:\Documents and Settings\All Users\Application Data\Starware325\images\walertXP.bmp (Adware.Starware) -> Quarantined and deleted successfully.
C:\Documents and Settings\All Users\Application Data\Starware325\SimpleUpdate\ProductMessagingConfig.xml (Adware.Starware) -> Quarantined and deleted successfully.
C:\Documents and Settings\All Users\Application Data\Starware325\SimpleUpdate\ProductMessagingConfig.xml.backup (Adware.Starware) -> Quarantined and deleted successfully.
C:\Documents and Settings\All Users\Application Data\Starware325\SimpleUpdate\SimpleUpdateConfig.xml (Adware.Starware) -> Quarantined and deleted successfully.
C:\Documents and Settings\All Users\Application Data\Starware325\SimpleUpdate\SimpleUpdateConfig.xml.backup (Adware.Starware) -> Quarantined and deleted successfully.
C:\Documents and Settings\All Users\Application Data\Starware325\SimpleUpdate\TimerManagerConfig.xml (Adware.Starware) -> Quarantined and deleted successfully.
C:\Documents and Settings\All Users\Application Data\Starware325\SimpleUpdate\TimerManagerConfig.xml.backup (Adware.Starware) -> Quarantined and deleted successfully.
C:\Documents and Settings\All Users\Application Data\SeekmoSA\SeekmoSA.dat (Adware.Seekmo) -> Quarantined and deleted successfully.
C:\Documents and Settings\All Users\Application Data\SeekmoSA\SeekmoSAAbout.mht (Adware.Seekmo) -> Quarantined and deleted successfully.
C:\Documents and Settings\All Users\Application Data\SeekmoSA\SeekmoSAau.dat (Adware.Seekmo) -> Quarantined and deleted successfully.
C:\Documents and Settings\All Users\Application Data\SeekmoSA\SeekmoSAEULA.mht (Adware.Seekmo) -> Quarantined and deleted successfully.
C:\Documents and Settings\All Users\Application Data\SeekmoSA\SeekmoSA_kyf.dat (Adware.Seekmo) -> Quarantined and deleted successfully.
C:\Documents and Settings\All Users\Start Menu\Programs\Seekmo\Reset Cursor.lnk (Adware.Seekmo) -> Quarantined and deleted successfully.
C:\Documents and Settings\All Users\Start Menu\Programs\Seekmo\Seekmo Customer Support Center.lnk (Adware.Seekmo) -> Quarantined and deleted successfully.
DisContent's Avatar
Computer Specs
Member with 31 posts.
  
Join Date: Dec 2006
Experience: Intermediate
06-May-2008, 05:04 PM #7
C:\Documents and Settings\All Users\Start Menu\Programs\Seekmo\Seekmo Uninstall Instructions.lnk (Adware.Seekmo) -> Quarantined and deleted successfully.
C:\Documents and Settings\Chris\Application Data\DriveCleaner Freeware\Logs\update.log (Rogue.DriveCleaner) -> Quarantined and deleted successfully.
C:\Documents and Settings\Chris\Application Data\Starware325\BrowserSearch\BrowserSearch.xml (Adware.Starware) -> Quarantined and deleted successfully.
C:\Documents and Settings\Chris\Application Data\Starware325\BrowserSearch\BrowserSearch.xml.backup (Adware.Starware) -> Quarantined and deleted successfully.
C:\Documents and Settings\Chris\Application Data\Starware325\Configurator\Configurator.xml (Adware.Starware) -> Quarantined and deleted successfully.
C:\Documents and Settings\Chris\Application Data\Starware325\Configurator\Configurator.xml.backup (Adware.Starware) -> Quarantined and deleted successfully.
C:\Documents and Settings\Chris\Application Data\Starware325\ErrorSearch\ErrorSearchOptions.xml (Adware.Starware) -> Quarantined and deleted successfully.
C:\Documents and Settings\Chris\Application Data\Starware325\ErrorSearch\ErrorSearchOptions.xml.backup (Adware.Starware) -> Quarantined and deleted successfully.
C:\Documents and Settings\Chris\Application Data\Starware325\Games\GamesOptions.xml (Adware.Starware) -> Quarantined and deleted successfully.
C:\Documents and Settings\Chris\Application Data\Starware325\Games\GamesOptions.xml.backup (Adware.Starware) -> Quarantined and deleted successfully.
C:\Documents and Settings\Chris\Application Data\Starware325\Games\images\active\Games0.bmp (Adware.Starware) -> Quarantined and deleted successfully.
C:\Documents and Settings\Chris\Application Data\Starware325\Layouts\ToolbarLayout.xml (Adware.Starware) -> Quarantined and deleted successfully.
C:\Documents and Settings\Chris\Application Data\Starware325\Layouts\ToolbarLayout.xml.backup (Adware.Starware) -> Quarantined and deleted successfully.
C:\Documents and Settings\Chris\Application Data\Starware325\Manager\ManagerOptions.xml (Adware.Starware) -> Quarantined and deleted successfully.
C:\Documents and Settings\Chris\Application Data\Starware325\Manager\ManagerOptions.xml.backup (Adware.Starware) -> Quarantined and deleted successfully.
C:\Documents and Settings\Chris\Application Data\Starware325\Movies\MoviesOptions.xml (Adware.Starware) -> Quarantined and deleted successfully.
C:\Documents and Settings\Chris\Application Data\Starware325\Movies\MoviesOptions.xml.backup (Adware.Starware) -> Quarantined and deleted successfully.
C:\Documents and Settings\Chris\Application Data\Starware325\Movies\images\active\Movies0.bmp (Adware.Starware) -> Quarantined and deleted successfully.
C:\Documents and Settings\Chris\Application Data\Starware325\NewsSearch\NewsSearchOptions.xml (Adware.Starware) -> Quarantined and deleted successfully.
C:\Documents and Settings\Chris\Application Data\Starware325\NewsSearch\NewsSearchOptions.xml.backup (Adware.Starware) -> Quarantined and deleted successfully.
C:\Documents and Settings\Chris\Application Data\Starware325\Reference\ReferenceOptions.xml (Adware.Starware) -> Quarantined and deleted successfully.
C:\Documents and Settings\Chris\Application Data\Starware325\Reference\ReferenceOptions.xml.backup (Adware.Starware) -> Quarantined and deleted successfully.
C:\Documents and Settings\Chris\Application Data\Starware325\RelatedSearch\RelatedSearchOptions.xml (Adware.Starware) -> Quarantined and deleted successfully.
C:\Documents and Settings\Chris\Application Data\Starware325\RelatedSearch\RelatedSearchOptions.xml.backup (Adware.Starware) -> Quarantined and deleted successfully.
C:\Documents and Settings\Chris\Application Data\Starware325\ScreensaversMarketingSitePager\ScreensaversMarketingSitePa gerOptions.xml (Adware.Starware) -> Quarantined and deleted successfully.
C:\Documents and Settings\Chris\Application Data\Starware325\ScreensaversMarketingSitePager\ScreensaversMarketingSitePa gerOptions.xml.backup (Adware.Starware) -> Quarantined and deleted successfully.
C:\Documents and Settings\Chris\Application Data\Starware325\ScreensaversMarketingSitePager\images\active\ScreensaversM arketingSitePager0.bmp (Adware.Starware) -> Quarantined and deleted successfully.
C:\Documents and Settings\Chris\Application Data\Starware325\Toolbar\TBProductsOptions.xml (Adware.Starware) -> Quarantined and deleted successfully.
C:\Documents and Settings\Chris\Application Data\Starware325\Toolbar\TBProductsOptions.xml.backup (Adware.Starware) -> Quarantined and deleted successfully.
C:\Documents and Settings\Chris\Application Data\Starware325\ToolbarLogo\ToolbarLogoOptions.xml (Adware.Starware) -> Quarantined and deleted successfully.
C:\Documents and Settings\Chris\Application Data\Starware325\ToolbarLogo\ToolbarLogoOptions.xml.backup (Adware.Starware) -> Quarantined and deleted successfully.
C:\Documents and Settings\Chris\Application Data\Starware325\ToolbarSearch\ToolbarSearchOptions.xml (Adware.Starware) -> Quarantined and deleted successfully.
C:\Documents and Settings\Chris\Application Data\Starware325\ToolbarSearch\ToolbarSearchOptions.xml.backup (Adware.Starware) -> Quarantined and deleted successfully.
C:\Documents and Settings\Chris\Application Data\Starware325\TravelSearch\TravelSearchOptions.xml (Adware.Starware) -> Quarantined and deleted successfully.
C:\Documents and Settings\Chris\Application Data\Starware325\TravelSearch\TravelSearchOptions.xml.backup (Adware.Starware) -> Quarantined and deleted successfully.
C:\Documents and Settings\Chris\Application Data\Starware325\Weather\AlertArchive.xml (Adware.Starware) -> Quarantined and deleted successfully.
C:\Documents and Settings\Chris\Application Data\Starware325\Weather\WeatherOptions.xml (Adware.Starware) -> Quarantined and deleted successfully.
C:\Documents and Settings\Chris\Application Data\Starware325\Weather\WeatherOptions.xml.backup (Adware.Starware) -> Quarantined and deleted successfully.
C:\Documents and Settings\Chris\Start Menu\Programs\WinXDefender\Purchase License.lnk (Rogue.WinXDefender) -> Quarantined and deleted successfully.
C:\Documents and Settings\Chris\Start Menu\Programs\WinXDefender\Support Page.lnk (Rogue.WinXDefender) -> Quarantined and deleted successfully.
C:\Documents and Settings\Chris\Start Menu\Programs\WinXDefender\WinXDefender Uninstall.lnk (Rogue.WinXDefender) -> Quarantined and deleted successfully.
C:\Documents and Settings\Chris\Start Menu\Programs\WinXDefender\WinXDefender.lnk (Rogue.WinXDefender) -> Quarantined and deleted successfully.
C:\Documents and Settings\Chris\Application Data\Seekmo\v3.0\Seekmo\dynamic\1.sdf (AdWare.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Chris\Application Data\Seekmo\v3.0\Seekmo\dynamic\1158695.sdf (AdWare.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Chris\Application Data\Seekmo\v3.0\Seekmo\dynamic\2286021.sdf (AdWare.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Chris\Application Data\Seekmo\v3.0\Seekmo\dynamic\2623126.sdf (AdWare.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Chris\Application Data\Seekmo\v3.0\Seekmo\dynamic\2883915.sdf (AdWare.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Chris\Application Data\Seekmo\v3.0\Seekmo\dynamic\2883916.sdf (AdWare.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Chris\Application Data\Seekmo\v3.0\Seekmo\dynamic\2899602.sdf (AdWare.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Chris\Application Data\Seekmo\v3.0\Seekmo\dynamic\3362058.sdf (AdWare.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Chris\Application Data\Seekmo\v3.0\Seekmo\dynamic\3708684.sdf (AdWare.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Chris\Application Data\Seekmo\v3.0\Seekmo\dynamic\3719779.sdf (AdWare.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Chris\Application Data\Seekmo\v3.0\Seekmo\dynamic\3720900.sdf (AdWare.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Chris\Application Data\Seekmo\v3.0\Seekmo\dynamic\387816.sdf (AdWare.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Chris\Application Data\Seekmo\v3.0\Seekmo\dynamic\3893153.sdf (AdWare.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Chris\Application Data\Seekmo\v3.0\Seekmo\dynamic\491501.sdf (AdWare.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Chris\Application Data\Seekmo\v3.0\Seekmo\dynamic\761357.sdf (AdWare.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Chris\Application Data\Seekmo\v3.0\Seekmo\dynamic\859800.sdf (AdWare.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Chris\Application Data\Seekmo\v3.0\Seekmo\dynamic\936439.sdf (AdWare.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Chris\Application Data\Seekmo\v3.0\Seekmo\dynamic\965522.sdf (AdWare.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Chris\Application Data\Seekmo\v3.0\Seekmo\dynamic\domains.txt (AdWare.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Chris\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\10807 (AdWare.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Chris\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\12486 (AdWare.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Chris\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\13583 (AdWare.Agent) -> Quarantined and deleted successfully.

C:\Documents and Settings\Chris\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\1491 (AdWare.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Chris\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\15040 (AdWare.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Chris\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\15090 (AdWare.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Chris\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\159529 (AdWare.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Chris\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\17025 (AdWare.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Chris\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\17026 (AdWare.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Chris\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\18906 (AdWare.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Chris\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\1907 (AdWare.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Chris\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\20246 (AdWare.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Chris\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\20570 (AdWare.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Chris\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\20613 (AdWare.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Chris\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\20935 (AdWare.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Chris\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\21543 (AdWare.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Chris\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\218419 (AdWare.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Chris\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\23021 (AdWare.Agent) -> Quarantined and deleted successfully.

C:\Documents and Settings\Chris\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\24098 (AdWare.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Chris\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\25043 (AdWare.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Chris\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\25509 (AdWare.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Chris\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\26256 (AdWare.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Chris\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\26664 (AdWare.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Chris\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\27503 (AdWare.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Chris\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\297534 (AdWare.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Chris\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\32541 (AdWare.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Chris\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\33362 (AdWare.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Chris\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\34107 (AdWare.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Chris\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\34123 (AdWare.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Chris\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\34186 (AdWare.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Chris\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\34754 (AdWare.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Chris\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\35000 (AdWare.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Chris\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\35047 (AdWare.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Chris\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\36079 (AdWare.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Chris\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\361427 (AdWare.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Chris\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\36247 (AdWare.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Chris\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\389560 (AdWare.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Chris\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\39897 (AdWare.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Chris\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\39972 (AdWare.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Chris\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\403305 (AdWare.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Chris\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\41528 (AdWare.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Chris\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\41556 (AdWare.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Chris\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\41875 (AdWare.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Chris\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\41999 (AdWare.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Chris\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\42915 (AdWare.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Chris\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\44228 (AdWare.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Chris\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\44229 (AdWare.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Chris\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\455641 (AdWare.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Chris\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\46236 (AdWare.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Chris\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\46707 (AdWare.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Chris\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\48472 (AdWare.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Chris\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\507892 (AdWare.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Chris\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\51495 (AdWare.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Chris\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\51880 (AdWare.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Chris\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\52625 (AdWare.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Chris\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\534852 (AdWare.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Chris\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\54189 (AdWare.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Chris\Application Data\Seekmo\v3.0\