1. Computer problem? Tech Support Guy is completely free -- paid for by advertisers and donations. Click here to join today! If you're new to Tech Support Guy, we highly recommend that you visit our Guide for New Members.

cydoor and other things i don't understand....

Discussion in 'All Other Software' started by stannseniors, Jan 21, 2006.

Thread Status:
Not open for further replies.
Advertisement
  1. stannseniors

    stannseniors Thread Starter

    Joined:
    Sep 28, 2004
    Messages:
    22
    I recently ran an anti-virus application and i could NOT delete Cydoor.....i know i'm not the first one to have problems with this because i googled it and got umphteen ways of deleting it (non of wich worked)---i did do a temporary scan on hijack this and came up with this list---
    could someone tell me all the bad things on it i could get rid of????? Thank you so much in advance (to anyone who wants to take on the challenge)

    Logfile of HijackThis v1.99.1
    Scan saved at 4:44:51 PM, on 1/21/2006
    Platform: Windows XP SP2 (WinNT 5.01.2600)
    MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

    Running processes:
    C:\WINDOWS\System32\smss.exe
    C:\WINDOWS\system32\winlogon.exe
    C:\WINDOWS\system32\services.exe
    C:\WINDOWS\system32\lsass.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\System32\svchost.exe
    C:\WINDOWS\system32\spoolsv.exe
    C:\Program Files\Yahoo!\Antivirus\ISafe.exe
    c:\program files\mcafee.com\agent\mcdetect.exe
    c:\PROGRA~1\mcafee.com\agent\mctskshd.exe
    C:\WINDOWS\System32\tcpsvcs.exe
    C:\WINDOWS\System32\svchost.exe
    C:\Program Files\Yahoo!\Antivirus\VetMsg.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\system32\hkcmd.exe
    C:\WINDOWS\system32\dla\tfswctrl.exe
    C:\Program Files\Dell\Media Experience\PCMService.exe
    C:\Program Files\Common Files\Real\Update_OB\realsched.exe
    C:\Program Files\MUSICMATCH\MUSICMATCH Jukebox\mm_tray.exe
    C:\Program Files\Visual Networks\Visual IP InSight\SBC\IPClient.exe
    C:\Program Files\Visual Networks\Visual IP InSight\SBC\IPMon32.exe
    C:\PROGRA~1\SBCSEL~1\SMARTB~1\MotiveSB.exe
    C:\WINDOWS\System32\LVCOMSX.EXE
    C:\Program Files\Logitech\Video\LogiTray.exe
    C:\Program Files\MUSICMATCH\MUSICMATCH Jukebox\mmtask.exe
    C:\Program Files\Yahoo!\Antivirus\CAVTray.exe
    C:\Program Files\Yahoo!\Antivirus\CAVRID.exe
    C:\PROGRA~1\Yahoo!\YOP\yop.exe
    C:\PROGRA~1\Yahoo!\browser\ybrwicon.exe
    C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb10.exe
    C:\Program Files\HP\hpcoretech\hpcmpmgr.exe
    C:\Program Files\Hewlett-Packard\HP Software Update\HPWuSchd2.exe
    C:\Program Files\Dell Support\DSAgnt.exe
    C:\PROGRA~1\Yahoo!\browser\ycommon.exe
    C:\Program Files\Samsung\Digimax Viewer 2.0\STImgBrowser.exe
    C:\Program Files\Digital Line Detect\DLG.exe
    C:\Program Files\Logitech\Video\FxSvr2.exe
    C:\Program Files\Microsoft Office\Office\OSA.EXE
    C:\Program Files\SBC Self Support Tool\bin\mpbtn.exe
    C:\WINDOWS\system32\Macromed\Flash\GetFlash.exe
    C:\WINDOWS\explorer.exe
    C:\WINDOWS\System32\svchost.exe
    C:\WINDOWS\system32\winlogon.exe
    C:\Program Files\Mozilla Firefox\firefox.exe
    C:\DOCUME~1\Patty\LOCALS~1\Temp\Temporary Directory 1 for hijackthis.zip\HijackThis.exe

    R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.dell4me.com/myway
    R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://red.clientapps.yahoo.com/cus.../sbcydsl/*http://www.yahoo.com/search/ie.html
    R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://red.clientapps.yahoo.com/customize/ie/defaults/sp/sbcydsl/*http://www.yahoo.com
    R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.yahoo.com/
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://yahoo.sbc.com/dsl
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://red.clientapps.yahoo.com/customize/ie/defaults/su/sbcydsl/*http://www.yahoo.com
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://red.clientapps.yahoo.com/cus.../sbcydsl/*http://www.yahoo.com/search/ie.html
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://red.clientapps.yahoo.com/customize/ie/defaults/sp/sbcydsl/*http://www.yahoo.com
    R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://yahoo.sbc.com/dsl
    R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://red.clientapps.yahoo.com/customize/ie/defaults/su/sbcydsl/*http://www.yahoo.com
    R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = http=127.0.0.1:8080
    F2 - REG:system.ini: Shell=
    O2 - BHO: myBar BHO - {0494D0D1-F8E0-41ad-92A3-14154ECE70AC} - C:\Program Files\MyWay\myBar\1.bin\MYBAR.DLL
    O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx
    O2 - BHO: UberButton Class - {5BAB4B5B-68BC-4B02-94D6-2FC0DE4A7897} - C:\Program Files\Yahoo!\Common\yiesrvc.dll
    O2 - BHO: DriveLetterAccess - {5CA3D70E-1895-11CF-8E15-001234567890} - C:\WINDOWS\system32\dla\tfswshx.dll
    O2 - BHO: YahooTaggedBM Class - {65D886A2-7CA7-479B-BB95-14D1EFB7946A} - C:\Program Files\Yahoo!\Common\YIeTagBm.dll
    O2 - BHO: ST - {9394EDE7-C8B5-483E-8773-474BF36AF6E4} - C:\Program Files\MSN Apps\ST\01.03.0000.1005\en-xu\stmain.dll
    O2 - BHO: MSNToolBandBHO - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Apps\MSN Toolbar\01.02.3000.1001\en-us\msntb.dll
    O2 - BHO: SidebarAutoLaunch Class - {F2AA9440-6328-4933-B7C9-A6CCDF9CBF6D} - C:\Program Files\Yahoo!\browser\YSidebarIEBHO.dll
    O3 - Toolbar: My &Search Bar - {0494D0D9-F8E0-41ad-92A3-14154ECE70AC} - C:\Program Files\MyWay\myBar\1.bin\MYBAR.DLL
    O3 - Toolbar: MSN - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Apps\MSN Toolbar\01.02.3000.1001\en-us\msntb.dll
    O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn2\yt.dll
    O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\system32\igfxtray.exe
    O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe
    O4 - HKLM\..\Run: [dla] C:\WINDOWS\system32\dla\tfswctrl.exe
    O4 - HKLM\..\Run: [PCMService] "C:\Program Files\Dell\Media Experience\PCMService.exe"
    O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
    O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
    O4 - HKLM\..\Run: [MMTray] "C:\Program Files\MUSICMATCH\MUSICMATCH Jukebox\mm_tray.exe"
    O4 - HKLM\..\Run: [MCAgentExe] c:\PROGRA~1\mcafee.com\agent\mcagent.exe
    O4 - HKLM\..\Run: [MCUpdateExe] c:\PROGRA~1\mcafee.com\agent\mcupdate.exe
    O4 - HKLM\..\Run: [BJCFD] C:\Program Files\BroadJump\Client Foundation\CFD.exe
    O4 - HKLM\..\Run: [IPInSightLAN 01] "C:\Program Files\Visual Networks\Visual IP InSight\SBC\IPClient.exe" -l
    O4 - HKLM\..\Run: [IPInSightMonitor 01] "C:\Program Files\Visual Networks\Visual IP InSight\SBC\IPMon32.exe"
    O4 - HKLM\..\Run: [Motive SmartBridge] C:\PROGRA~1\SBCSEL~1\SMARTB~1\MotiveSB.exe
    O4 - HKLM\..\Run: [LVCOMSX] C:\WINDOWS\System32\LVCOMSX.EXE
    O4 - HKLM\..\Run: [LogitechVideoRepair] C:\Program Files\Logitech\Video\ISStart.exe
    O4 - HKLM\..\Run: [LogitechVideoTray] C:\Program Files\Logitech\Video\LogiTray.exe
    O4 - HKLM\..\Run: [UpdateManager] "C:\Program Files\Common Files\Sonic\Update Manager\sgtray.exe" /r
    O4 - HKLM\..\Run: [mmtask] "C:\Program Files\MUSICMATCH\MUSICMATCH Jukebox\mmtask.exe"
    O4 - HKLM\..\Run: [CaAvTray] "C:\Program Files\Yahoo!\Antivirus\CAVTray.exe"
    O4 - HKLM\..\Run: [CAVRID] "C:\Program Files\Yahoo!\Antivirus\CAVRID.exe"
    O4 - HKLM\..\Run: [YOP] C:\PROGRA~1\Yahoo!\YOP\yop.exe /autostart
    O4 - HKLM\..\Run: [YBrowser] C:\PROGRA~1\Yahoo!\browser\ybrwicon.exe
    O4 - HKLM\..\Run: [HPDJ Taskbar Utility] C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb10.exe
    O4 - HKLM\..\Run: [HP Component Manager] "C:\Program Files\HP\hpcoretech\hpcmpmgr.exe"
    O4 - HKLM\..\Run: [HP Software Update] "C:\Program Files\Hewlett-Packard\HP Software Update\HPWuSchd2.exe"
    O4 - HKCU\..\Run: [LogitechSoftwareUpdate] "C:\Program Files\Logitech\Video\ManifestEngine.exe" boot
    O4 - HKCU\..\Run: [DellSupport] "C:\Program Files\Dell Support\DSAgnt.exe" /startup
    O4 - Startup: Microsoft Find Fast.lnk = C:\Program Files\Microsoft Office\Office\FINDFAST.EXE
    O4 - Startup: Office Startup.lnk = C:\Program Files\Microsoft Office\Office\OSA.EXE
    O4 - Global Startup: Digimax Viewer 2.0.lnk = ?
    O4 - Global Startup: Digital Line Detect.lnk = ?
    O4 - Global Startup: SBC Self Support Tool.lnk = C:\Program Files\SBC Self Support Tool\bin\matcli.exe
    O8 - Extra context menu item: &Yahoo! Search - file:///C:\Program Files\Yahoo!\Common/ycsrch.htm
    O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~4\Office10\EXCEL.EXE/3000
    O8 - Extra context menu item: Yahoo! &Dictionary - file:///C:\Program Files\Yahoo!\Common/ycdict.htm
    O8 - Extra context menu item: Yahoo! &Maps - file:///C:\Program Files\Yahoo!\Common/ycmap.htm
    O8 - Extra context menu item: Yahoo! &SMS - file:///C:\Program Files\Yahoo!\Common/ycsms.htm
    O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\WINDOWS\System32\msjava.dll
    O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\WINDOWS\System32\msjava.dll
    O9 - Extra button: SideStep - {3E230861-5C87-11D3-A1C6-00105A1B41B8} - C:\WINDOWS\Downloaded Program Files\SbCIe028.dll (file missing)
    O9 - Extra button: SBC Yahoo! Services - {5BAB4B5B-68BC-4B02-94D6-2FC0DE4A7897} - C:\Program Files\Yahoo!\Common\yiesrvc.dll
    O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\System32\Shdocvw.dll
    O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
    O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
    O12 - Plugin for .spop: C:\Program Files\Internet Explorer\Plugins\NPDocBox.dll
    O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:\Program Files\Yahoo!\Common\yinsthelper.dll
    O16 - DPF: {4620BC29-8B8E-4F4E-9D92-1DB6633D6793} (SurferNETWORK Plugin) - http://rd1.surfernetwork.com/surferplugin.ocx
    O16 - DPF: {9600F64D-755F-11D4-A47F-0001023E6D5A} (Shutterfly Picture Upload Plugin) - http://web1.shutterfly.com/downloads/Uploader.cab
    O20 - Winlogon Notify: igfxcui - C:\WINDOWS\SYSTEM32\igfxsrvc.dll
    O23 - Service: CAISafe - Computer Associates International, Inc. - C:\Program Files\Yahoo!\Antivirus\ISafe.exe
    O23 - Service: McAfee WSC Integration (McDetect.exe) - McAfee, Inc - c:\program files\mcafee.com\agent\mcdetect.exe
    O23 - Service: McAfee Task Scheduler (McTskshd.exe) - McAfee, Inc - c:\PROGRA~1\mcafee.com\agent\mctskshd.exe
    O23 - Service: McAfee SecurityCenter Update Manager (mcupdmgr.exe) - McAfee, Inc - C:\PROGRA~1\McAfee.com\Agent\mcupdmgr.exe
    O23 - Service: VET Message Service (VETMSGNT) - Computer Associates International, Inc. - C:\Program Files\Yahoo!\Antivirus\VetMsg.exe
    O23 - Service: YPCService - Yahoo! Inc. - C:\WINDOWS\SYSTEM32\YPCSER~1.EXE
     
  2. Cheeseball81

    Cheeseball81 Retired Moderator

    Joined:
    Mar 3, 2004
    Messages:
    84,315
    Click here to download the trial version of Ewido Security Suite:
    http://www.ewido.net/en/download/

    · Install Ewido.
    · During the installation, under "Additional Options" uncheck "Install background guard" and "Install scan via context menu".
    · Launch ewido.
    · It will prompt you to update click the OK button and it will go to the main screen.
    · On the left side of the main screen click update.
    · Click on Start and let it update.
    · DO NOT run a scan yet.

    Restart your computer into Safe Mode now.
    (Start tapping the F8 key at Startup, before the Windows logo screen).
    Perform the following steps in Safe Mode:

    * Run Ewido:
    Click on scanner
    Click Complete System Scan and the scan will begin.
    During the scan it will prompt you to clean files, click OK.
    When the scan is finished, look at the bottom of the screen and click the Save report button.
    Save the report to your desktop.

    Reboot.

    Post a new Hijack This log and the results of the Ewido scan.
     
  3. stannseniors

    stannseniors Thread Starter

    Joined:
    Sep 28, 2004
    Messages:
    22
    Wow---
    i felt like a computer genius when i followed your directions...lol
    I can't believe how much crap ewido found! I fixed 135 problems- yeah. The computer runs alot better but when i rebooted i ran the yahoo program and cydoor is still there! ARG
    i ran hijack this again and after i'll paste teh ewido results.....thanks so much for making your instructions so clear - you must be good if i did it right!

    Logfile of HijackThis v1.99.1
    Scan saved at 9:45:21 PM, on 1/22/2006
    Platform: Windows XP SP2 (WinNT 5.01.2600)
    MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

    Running processes:
    C:\WINDOWS\System32\smss.exe
    C:\WINDOWS\system32\winlogon.exe
    C:\WINDOWS\system32\services.exe
    C:\WINDOWS\system32\lsass.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\System32\svchost.exe
    C:\WINDOWS\system32\spoolsv.exe
    C:\Program Files\Yahoo!\Antivirus\ISafe.exe
    C:\Program Files\ewido anti-malware\ewidoctrl.exe
    c:\program files\mcafee.com\agent\mcdetect.exe
    c:\PROGRA~1\mcafee.com\agent\mctskshd.exe
    C:\WINDOWS\System32\tcpsvcs.exe
    C:\WINDOWS\System32\svchost.exe
    C:\Program Files\Yahoo!\Antivirus\VetMsg.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\Explorer.EXE
    C:\WINDOWS\system32\hkcmd.exe
    C:\WINDOWS\system32\dla\tfswctrl.exe
    C:\Program Files\Dell\Media Experience\PCMService.exe
    C:\Program Files\Common Files\Real\Update_OB\realsched.exe
    C:\Program Files\MUSICMATCH\MUSICMATCH Jukebox\mm_tray.exe
    C:\PROGRA~1\mcafee.com\agent\mcagent.exe
    C:\Program Files\Visual Networks\Visual IP InSight\SBC\IPClient.exe
    C:\WINDOWS\System32\svchost.exe
    C:\Program Files\Visual Networks\Visual IP InSight\SBC\IPMon32.exe
    C:\PROGRA~1\SBCSEL~1\SMARTB~1\MotiveSB.exe
    C:\WINDOWS\System32\LVCOMSX.EXE
    C:\Program Files\Logitech\Video\LogiTray.exe
    C:\Program Files\MUSICMATCH\MUSICMATCH Jukebox\mmtask.exe
    C:\Program Files\Yahoo!\Antivirus\CAVTray.exe
    C:\Program Files\Yahoo!\Antivirus\CAVRID.exe
    C:\PROGRA~1\Yahoo!\YOP\yop.exe
    C:\PROGRA~1\Yahoo!\browser\ybrwicon.exe
    C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb10.exe
    C:\Program Files\HP\hpcoretech\hpcmpmgr.exe
    C:\Program Files\Hewlett-Packard\HP Software Update\HPWuSchd2.exe
    C:\Program Files\Dell Support\DSAgnt.exe
    C:\PROGRA~1\Yahoo!\browser\ycommon.exe
    C:\Program Files\Samsung\Digimax Viewer 2.0\STImgBrowser.exe
    C:\Program Files\Digital Line Detect\DLG.exe
    C:\Program Files\Logitech\Video\FxSvr2.exe
    C:\Program Files\Microsoft Office\Office\OSA.EXE
    C:\Program Files\SBC Self Support Tool\bin\mpbtn.exe
    C:\Program Files\Yahoo!\YPSR\ypsr.exe
    C:\Program Files\Mozilla Firefox\firefox.exe
    C:\DOCUME~1\Patty\LOCALS~1\Temp\Temporary Directory 1 for hijackthis.zip\HijackThis.exe

    R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.dell4me.com/myway
    R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://red.clientapps.yahoo.com/cus.../sbcydsl/*http://www.yahoo.com/search/ie.html
    R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://red.clientapps.yahoo.com/customize/ie/defaults/sp/sbcydsl/*http://www.yahoo.com
    R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.yahoo.com/
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://yahoo.sbc.com/dsl
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://red.clientapps.yahoo.com/customize/ie/defaults/su/sbcydsl/*http://www.yahoo.com
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://red.clientapps.yahoo.com/cus.../sbcydsl/*http://www.yahoo.com/search/ie.html
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://red.clientapps.yahoo.com/customize/ie/defaults/sp/sbcydsl/*http://www.yahoo.com
    R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://yahoo.sbc.com/dsl
    R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://red.clientapps.yahoo.com/customize/ie/defaults/su/sbcydsl/*http://www.yahoo.com
    R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = http=127.0.0.1:8080
    F2 - REG:system.ini: Shell=
    O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx
    O2 - BHO: UberButton Class - {5BAB4B5B-68BC-4B02-94D6-2FC0DE4A7897} - C:\Program Files\Yahoo!\Common\yiesrvc.dll
    O2 - BHO: DriveLetterAccess - {5CA3D70E-1895-11CF-8E15-001234567890} - C:\WINDOWS\system32\dla\tfswshx.dll
    O2 - BHO: YahooTaggedBM Class - {65D886A2-7CA7-479B-BB95-14D1EFB7946A} - C:\Program Files\Yahoo!\Common\YIeTagBm.dll
    O2 - BHO: ST - {9394EDE7-C8B5-483E-8773-474BF36AF6E4} - C:\Program Files\MSN Apps\ST\01.03.0000.1005\en-xu\stmain.dll
    O2 - BHO: MSNToolBandBHO - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Apps\MSN Toolbar\01.02.3000.1001\en-us\msntb.dll
    O2 - BHO: SidebarAutoLaunch Class - {F2AA9440-6328-4933-B7C9-A6CCDF9CBF6D} - C:\Program Files\Yahoo!\browser\YSidebarIEBHO.dll
    O3 - Toolbar: MSN - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Apps\MSN Toolbar\01.02.3000.1001\en-us\msntb.dll
    O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn2\yt.dll
    O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\system32\igfxtray.exe
    O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe
    O4 - HKLM\..\Run: [dla] C:\WINDOWS\system32\dla\tfswctrl.exe
    O4 - HKLM\..\Run: [PCMService] "C:\Program Files\Dell\Media Experience\PCMService.exe"
    O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
    O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
    O4 - HKLM\..\Run: [MMTray] "C:\Program Files\MUSICMATCH\MUSICMATCH Jukebox\mm_tray.exe"
    O4 - HKLM\..\Run: [MCAgentExe] c:\PROGRA~1\mcafee.com\agent\mcagent.exe
    O4 - HKLM\..\Run: [MCUpdateExe] c:\PROGRA~1\mcafee.com\agent\mcupdate.exe
    O4 - HKLM\..\Run: [BJCFD] C:\Program Files\BroadJump\Client Foundation\CFD.exe
    O4 - HKLM\..\Run: [IPInSightLAN 01] "C:\Program Files\Visual Networks\Visual IP InSight\SBC\IPClient.exe" -l
    O4 - HKLM\..\Run: [IPInSightMonitor 01] "C:\Program Files\Visual Networks\Visual IP InSight\SBC\IPMon32.exe"
    O4 - HKLM\..\Run: [Motive SmartBridge] C:\PROGRA~1\SBCSEL~1\SMARTB~1\MotiveSB.exe
    O4 - HKLM\..\Run: [LVCOMSX] C:\WINDOWS\System32\LVCOMSX.EXE
    O4 - HKLM\..\Run: [LogitechVideoRepair] C:\Program Files\Logitech\Video\ISStart.exe
    O4 - HKLM\..\Run: [LogitechVideoTray] C:\Program Files\Logitech\Video\LogiTray.exe
    O4 - HKLM\..\Run: [UpdateManager] "C:\Program Files\Common Files\Sonic\Update Manager\sgtray.exe" /r
    O4 - HKLM\..\Run: [mmtask] "C:\Program Files\MUSICMATCH\MUSICMATCH Jukebox\mmtask.exe"
    O4 - HKLM\..\Run: [CaAvTray] "C:\Program Files\Yahoo!\Antivirus\CAVTray.exe"
    O4 - HKLM\..\Run: [CAVRID] "C:\Program Files\Yahoo!\Antivirus\CAVRID.exe"
    O4 - HKLM\..\Run: [YOP] C:\PROGRA~1\Yahoo!\YOP\yop.exe /autostart
    O4 - HKLM\..\Run: [YBrowser] C:\PROGRA~1\Yahoo!\browser\ybrwicon.exe
    O4 - HKLM\..\Run: [HPDJ Taskbar Utility] C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb10.exe
    O4 - HKLM\..\Run: [HP Component Manager] "C:\Program Files\HP\hpcoretech\hpcmpmgr.exe"
    O4 - HKLM\..\Run: [HP Software Update] "C:\Program Files\Hewlett-Packard\HP Software Update\HPWuSchd2.exe"
    O4 - HKCU\..\Run: [LogitechSoftwareUpdate] "C:\Program Files\Logitech\Video\ManifestEngine.exe" boot
    O4 - HKCU\..\Run: [DellSupport] "C:\Program Files\Dell Support\DSAgnt.exe" /startup
    O4 - Startup: Microsoft Find Fast.lnk = C:\Program Files\Microsoft Office\Office\FINDFAST.EXE
    O4 - Startup: Office Startup.lnk = C:\Program Files\Microsoft Office\Office\OSA.EXE
    O4 - Global Startup: Digimax Viewer 2.0.lnk = ?
    O4 - Global Startup: Digital Line Detect.lnk = ?
    O4 - Global Startup: SBC Self Support Tool.lnk = C:\Program Files\SBC Self Support Tool\bin\matcli.exe
    O8 - Extra context menu item: &Yahoo! Search - file:///C:\Program Files\Yahoo!\Common/ycsrch.htm
    O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~4\Office10\EXCEL.EXE/3000
    O8 - Extra context menu item: Yahoo! &Dictionary - file:///C:\Program Files\Yahoo!\Common/ycdict.htm
    O8 - Extra context menu item: Yahoo! &Maps - file:///C:\Program Files\Yahoo!\Common/ycmap.htm
    O8 - Extra context menu item: Yahoo! &SMS - file:///C:\Program Files\Yahoo!\Common/ycsms.htm
    O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\WINDOWS\System32\msjava.dll
    O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\WINDOWS\System32\msjava.dll
    O9 - Extra button: SideStep - {3E230861-5C87-11D3-A1C6-00105A1B41B8} - C:\WINDOWS\Downloaded Program Files\SbCIe028.dll (file missing)
    O9 - Extra button: SBC Yahoo! Services - {5BAB4B5B-68BC-4B02-94D6-2FC0DE4A7897} - C:\Program Files\Yahoo!\Common\yiesrvc.dll
    O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\System32\Shdocvw.dll
    O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
    O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
    O12 - Plugin for .spop: C:\Program Files\Internet Explorer\Plugins\NPDocBox.dll
    O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:\Program Files\Yahoo!\Common\yinsthelper.dll
    O16 - DPF: {4620BC29-8B8E-4F4E-9D92-1DB6633D6793} (SurferNETWORK Plugin) - http://rd1.surfernetwork.com/surferplugin.ocx
    O16 - DPF: {9600F64D-755F-11D4-A47F-0001023E6D5A} (Shutterfly Picture Upload Plugin) - http://web1.shutterfly.com/downloads/Uploader.cab
    O20 - Winlogon Notify: igfxcui - C:\WINDOWS\SYSTEM32\igfxsrvc.dll
    O23 - Service: CAISafe - Computer Associates International, Inc. - C:\Program Files\Yahoo!\Antivirus\ISafe.exe
    O23 - Service: ewido security suite control - ewido networks - C:\Program Files\ewido anti-malware\ewidoctrl.exe
    O23 - Service: McAfee WSC Integration (McDetect.exe) - McAfee, Inc - c:\program files\mcafee.com\agent\mcdetect.exe
    O23 - Service: McAfee Task Scheduler (McTskshd.exe) - McAfee, Inc - c:\PROGRA~1\mcafee.com\agent\mctskshd.exe
    O23 - Service: McAfee SecurityCenter Update Manager (mcupdmgr.exe) - McAfee, Inc - C:\PROGRA~1\McAfee.com\Agent\mcupdmgr.exe
    O23 - Service: VET Message Service (VETMSGNT) - Computer Associates International, Inc. - C:\Program Files\Yahoo!\Antivirus\VetMsg.exe
    O23 - Service: YPCService - Yahoo! Inc. - C:\WINDOWS\SYSTEM32\YPCSER~1.EXE


    I will list the ewido scan results on the next post ----too many characters.......
     
  4. stannseniors

    stannseniors Thread Starter

    Joined:
    Sep 28, 2004
    Messages:
    22
    EWIDO RESULTS
    ---------------------------------------------------------
    ewido anti-malware - Scan report
    ---------------------------------------------------------

    + Created on: 6:21:05 PM, 1/22/2006
    + Report-Checksum: A593EE72

    + Scan result:

    HKLM\SOFTWARE\Altnet -> Spyware.Altnet : Error during cleaning
    HKLM\SOFTWARE\Altnet\Dashboard -> Spyware.Altnet : Error during cleaning
    HKLM\SOFTWARE\Altnet\Dashboard\Messages -> Spyware.Altnet : Error during cleaning
    HKLM\SOFTWARE\Altnet\Dashboard\Settings -> Spyware.Altnet : Error during cleaning
    HKLM\SOFTWARE\Classes\ADM25.ADM25 -> Spyware.Altnet : Cleaned with backup
    HKLM\SOFTWARE\Classes\ADM25.ADM25\CurVer -> Spyware.Altnet : Cleaned with backup
    HKLM\SOFTWARE\Classes\ADM25.ADM25.1 -> Spyware.Altnet : Cleaned with backup
    HKLM\SOFTWARE\Classes\ADM4.ADM4 -> Spyware.Altnet : Cleaned with backup
    HKLM\SOFTWARE\Classes\ADM4.ADM4\CurVer -> Spyware.Altnet : Cleaned with backup
    HKLM\SOFTWARE\Classes\ADM4.ADM4.1 -> Spyware.Altnet : Cleaned with backup
    HKLM\SOFTWARE\Classes\AppID\adm.EXE -> Spyware.Altnet : Cleaned with backup
    HKLM\SOFTWARE\Classes\AppID\Altnet Signing Module.EXE -> Spyware.Altnet : Cleaned with backup
    HKLM\SOFTWARE\Classes\CLSID\{014DA6C9-189F-421a-88CD-07CFE51CFF10} -> Spyware.MySearch : Cleaned with backup
    HKLM\SOFTWARE\Classes\CLSID\{0494D0D1-F8E0-41ad-92A3-14154ECE70AC} -> Spyware.MyWay : Cleaned with backup
    HKLM\SOFTWARE\Classes\CLSID\{0494D0D9-F8E0-41ad-92A3-14154ECE70AC} -> Spyware.MyWay : Cleaned with backup
    HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar\\{0494D0D9-F8E0-41ad-92A3-14154ECE70AC} -> Spyware.MyWay : Cleaned with backup
    HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0494D0D1-F8E0-41ad-92A3-14154ECE70AC} -> Spyware.MyWay : Cleaned with backup
    C:\Documents and Settings\Clayton\Cookies\[email protected][2].txt -> Spyware.Cookie.Burstnet : Cleaned with backup
    C:\Documents and Settings\Clayton\Cookies\[email protected][1].txt -> Spyware.Cookie.Burstbeacon : Cleaned with backup
    C:\Documents and Settings\Clayton\Local Settings\Temp\asmfiles.cab/asm.exe -> Spyware.Altnet : Cleaned with backup
    C:\Documents and Settings\Clayton\Local Settings\Temp\asmfiles.cab/asmps.dll -> Spyware.Altnet : Cleaned with backup
    C:\Documents and Settings\Clayton\Local Settings\Temp\p2psetup.exe -> Spyware.P2PNetworking : Cleaned with backup
    C:\Documents and Settings\Clayton\Local Settings\Temporary Internet Files\Content.IE5\O9YJK1IJ\banner[1].cab/banner.dll -> Spyware.Banex : Cleaned with backup
    :mozilla.16:C:\Documents and Settings\Patty\Application Data\Mozilla\Firefox\Profiles\default.0fo\cookies.txt -> Spyware.Cookie.Doubleclick : Cleaned with backup
    :mozilla.17:C:\Documents and Settings\Patty\Application Data\Mozilla\Firefox\Profiles\default.0fo\cookies.txt -> Spyware.Cookie.Atdmt : Cleaned with backup
    :mozilla.35:C:\Documents and Settings\Patty\Application Data\Mozilla\Firefox\Profiles\default.0fo\cookies.txt -> Spyware.Cookie.Statcounter : Cleaned with backup
    :mozilla.44:C:\Documents and Settings\Patty\Application Data\Mozilla\Firefox\Profiles\default.0fo\cookies.txt -> Spyware.Cookie.Statcounter : Cleaned with backup
    :mozilla.45:C:\Documents and Settings\Patty\Application Data\Mozilla\Firefox\Profiles\default.0fo\cookies.txt -> Spyware.Cookie.Statcounter : Cleaned with backup
    :mozilla.47:C:\Documents and Settings\Patty\Application Data\Mozilla\Firefox\Profiles\default.0fo\cookies.txt -> Spyware.Cookie.Burstbeacon : Cleaned with backup
    :mozilla.61:C:\Documents and Settings\Patty\Application Data\Mozilla\Firefox\Profiles\default.0fo\cookies.txt -> Spyware.Cookie.2o7 : Cleaned with backup
    :mozilla.62:C:\Documents and Settings\Patty\Application Data\Mozilla\Firefox\Profiles\default.0fo\cookies.txt -> Spyware.Cookie.Advertising : Cleaned with backup
    :mozilla.63:C:\Documents and Settings\Patty\Application Data\Mozilla\Firefox\Profiles\default.0fo\cookies.txt -> Spyware.Cookie.2o7 : Cleaned with backup
    :mozilla.65:C:\Documents and Settings\Patty\Application Data\Mozilla\Firefox\Profiles\default.0fo\cookies.txt -> Spyware.Cookie.2o7 : Cleaned with backup
    :mozilla.70:C:\Documents and Settings\Patty\Application Data\Mozilla\Firefox\Profiles\default.0fo\cookies.txt -> Spyware.Cookie.Mediaplex : Cleaned with backup
    :mozilla.71:C:\Documents and Settings\Patty\Application Data\Mozilla\Firefox\Profiles\default.0fo\cookies.txt -> Spyware.Cookie.Pointroll : Cleaned with backup
    :mozilla.72:C:\Documents and Settings\Patty\Application Data\Mozilla\Firefox\Profiles\default.0fo\cookies.txt -> Spyware.Cookie.Pointroll : Cleaned with backup
    :mozilla.73:C:\Documents and Settings\Patty\Application Data\Mozilla\Firefox\Profiles\default.0fo\cookies.txt -> Spyware.Cookie.Pointroll : Cleaned with backup
    :mozilla.74:C:\Documents and Settings\Patty\Application Data\Mozilla\Firefox\Profiles\default.0fo\cookies.txt -> Spyware.Cookie.Pointroll : Cleaned with backup
    :mozilla.91:C:\Documents and Settings\Patty\Application Data\Mozilla\Firefox\Profiles\default.0fo\cookies.txt -> Spyware.Cookie.Tribalfusion : Cleaned with backup
    :mozilla.94:C:\Documents and Settings\Patty\Application Data\Mozilla\Firefox\Profiles\default.0fo\cookies.txt -> Spyware.Cookie.Adserver : Cleaned with backup
    :mozilla.95:C:\Documents and Settings\Patty\Application Data\Mozilla\Firefox\Profiles\default.0fo\cookies.txt -> Spyware.Cookie.Adserver : Cleaned with backup
    :mozilla.96:C:\Documents and Settings\Patty\Application Data\Mozilla\Firefox\Profiles\default.0fo\cookies.txt -> Spyware.Cookie.Fastclick : Cleaned with backup
    :mozilla.97:C:\Documents and Settings\Patty\Application Data\Mozilla\Firefox\Profiles\default.0fo\cookies.txt -> Spyware.Cookie.Fastclick : Cleaned with backup
    :mozilla.98:C:\Documents and Settings\Patty\Application Data\Mozilla\Firefox\Profiles\default.0fo\cookies.txt -> Spyware.Cookie.Fastclick : Cleaned with backup
    :mozilla.101:C:\Documents and Settings\Patty\Application Data\Mozilla\Firefox\Profiles\default.0fo\cookies.txt -> Spyware.Cookie.Valueclick : Cleaned with backup
    :mozilla.102:C:\Documents and Settings\Patty\Application Data\Mozilla\Firefox\Profiles\default.0fo\cookies.txt -> Spyware.Cookie.Valueclick : Cleaned with backup
    :mozilla.115:C:\Documents and Settings\Patty\Application Data\Mozilla\Firefox\Profiles\default.0fo\cookies.txt -> Spyware.Cookie.Esomniture : Cleaned with backup
    :mozilla.116:C:\Documents and Settings\Patty\Application Data\Mozilla\Firefox\Profiles\default.0fo\cookies.txt -> Spyware.Cookie.Esomniture : Cleaned with backup
    :mozilla.117:C:\Documents and Settings\Patty\Application Data\Mozilla\Firefox\Profiles\default.0fo\cookies.txt -> Spyware.Cookie.Esomniture : Cleaned with backup
    :mozilla.118:C:\Documents and Settings\Patty\Application Data\Mozilla\Firefox\Profiles\default.0fo\cookies.txt -> Spyware.Cookie.Esomniture : Cleaned with backup
    :mozilla.121:C:\Documents and Settings\Patty\Application Data\Mozilla\Firefox\Profiles\default.0fo\cookies.txt -> Spyware.Cookie.Esomniture : Cleaned with backup
    :mozilla.122:C:\Documents and Settings\Patty\Application Data\Mozilla\Firefox\Profiles\default.0fo\cookies.txt -> Spyware.Cookie.Esomniture : Cleaned with backup
    :mozilla.123:C:\Documents and Settings\Patty\Application Data\Mozilla\Firefox\Profiles\default.0fo\cookies.txt -> Spyware.Cookie.Esomniture : Cleaned with backup
    :mozilla.124:C:\Documents and Settings\Patty\Application Data\Mozilla\Firefox\Profiles\default.0fo\cookies.txt -> Spyware.Cookie.Esomniture : Cleaned with backup
    :mozilla.125:C:\Documents and Settings\Patty\Application Data\Mozilla\Firefox\Profiles\default.0fo\cookies.txt -> Spyware.Cookie.Esomniture : Cleaned with backup
    :mozilla.126:C:\Documents and Settings\Patty\Application Data\Mozilla\Firefox\Profiles\default.0fo\cookies.txt -> Spyware.Cookie.Esomniture : Cleaned with backup
    :mozilla.127:C:\Documents and Settings\Patty\Application Data\Mozilla\Firefox\Profiles\default.0fo\cookies.txt -> Spyware.Cookie.Esomniture : Cleaned with backup
    :mozilla.128:C:\Documents and Settings\Patty\Application Data\Mozilla\Firefox\Profiles\default.0fo\cookies.txt -> Spyware.Cookie.Esomniture : Cleaned with backup
    :mozilla.129:C:\Documents and Settings\Patty\Application Data\Mozilla\Firefox\Profiles\default.0fo\cookies.txt -> Spyware.Cookie.Esomniture : Cleaned with backup
    :mozilla.130:C:\Documents and Settings\Patty\Application Data\Mozilla\Firefox\Profiles\default.0fo\cookies.txt -> Spyware.Cookie.Esomniture : Cleaned with backup
    :mozilla.132:C:\Documents and Settings\Patty\Application Data\Mozilla\Firefox\Profiles\default.0fo\cookies.txt -> Spyware.Cookie.Esomniture : Cleaned with backup
    :mozilla.133:C:\Documents and Settings\Patty\Application Data\Mozilla\Firefox\Profiles\default.0fo\cookies.txt -> Spyware.Cookie.Esomniture : Cleaned with backup
    :mozilla.134:C:\Documents and Settings\Patty\Application Data\Mozilla\Firefox\Profiles\default.0fo\cookies.txt -> Spyware.Cookie.Esomniture : Cleaned with backup
    :mozilla.135:C:\Documents and Settings\Patty\Application Data\Mozilla\Firefox\Profiles\default.0fo\cookies.txt -> Spyware.Cookie.Esomniture : Cleaned with backup
    :mozilla.136:C:\Documents and Settings\Patty\Application Data\Mozilla\Firefox\Profiles\default.0fo\cookies.txt -> Spyware.Cookie.Esomniture : Cleaned with backup
    :mozilla.137:C:\Documents and Settings\Patty\Application Data\Mozilla\Firefox\Profiles\default.0fo\cookies.txt -> Spyware.Cookie.Esomniture : Cleaned with backup
    :mozilla.138:C:\Documents and Settings\Patty\Application Data\Mozilla\Firefox\Profiles\default.0fo\cookies.txt -> Spyware.Cookie.Esomniture : Cleaned with backup
    :mozilla.139:C:\Documents and Settings\Patty\Application Data\Mozilla\Firefox\Profiles\default.0fo\cookies.txt -> Spyware.Cookie.Esomniture : Cleaned with backup
    :mozilla.140:C:\Documents and Settings\Patty\Application Data\Mozilla\Firefox\Profiles\default.0fo\cookies.txt -> Spyware.Cookie.Esomniture : Cleaned with backup
    :mozilla.141:C:\Documents and Settings\Patty\Application Data\Mozilla\Firefox\Profiles\default.0fo\cookies.txt -> Spyware.Cookie.Esomniture : Cleaned with backup
    :mozilla.142:C:\Documents and Settings\Patty\Application Data\Mozilla\Firefox\Profiles\default.0fo\cookies.txt -> Spyware.Cookie.Esomniture : Cleaned with backup
    :mozilla.146:C:\Documents and Settings\Patty\Application Data\Mozilla\Firefox\Profiles\default.0fo\cookies.txt -> Spyware.Cookie.Hitbox : Cleaned with backup
    :mozilla.147:C:\Documents and Settings\Patty\Application Data\Mozilla\Firefox\Profiles\default.0fo\cookies.txt -> Spyware.Cookie.Hitbox : Cleaned with backup
    :mozilla.148:C:\Documents and Settings\Patty\Application Data\Mozilla\Firefox\Profiles\default.0fo\cookies.txt -> Spyware.Cookie.Hitbox : Cleaned with backup
    :mozilla.149:C:\Documents and Settings\Patty\Application Data\Mozilla\Firefox\Profiles\default.0fo\cookies.txt -> Spyware.Cookie.Falkag : Cleaned with backup
    :mozilla.150:C:\Documents and Settings\Patty\Application Data\Mozilla\Firefox\Profiles\default.0fo\cookies.txt -> Spyware.Cookie.Falkag : Cleaned with backup
    :mozilla.151:C:\Documents and Settings\Patty\Application Data\Mozilla\Firefox\Profiles\default.0fo\cookies.txt -> Spyware.Cookie.Falkag : Cleaned with backup
    :mozilla.203:C:\Documents and Settings\Patty\Application Data\Mozilla\Firefox\Profiles\default.0fo\cookies.txt -> Spyware.Cookie.Serving-sys : Cleaned with backup
    :mozilla.204:C:\Documents and Settings\Patty\Application Data\Mozilla\Firefox\Profiles\default.0fo\cookies.txt -> Spyware.Cookie.Serving-sys : Cleaned with backup
    :mozilla.205:C:\Documents and Settings\Patty\Application Data\Mozilla\Firefox\Profiles\default.0fo\cookies.txt -> Spyware.Cookie.Serving-sys : Cleaned with backup
    :mozilla.206:C:\Documents and Settings\Patty\Application Data\Mozilla\Firefox\Profiles\default.0fo\cookies.txt -> Spyware.Cookie.Serving-sys : Cleaned with backup
    :mozilla.209:C:\Documents and Settings\Patty\Application Data\Mozilla\Firefox\Profiles\default.0fo\cookies.txt -> Spyware.Cookie.Serving-sys : Cleaned with backup
    C:\Documents and Settings\Patty\Start Menu\Programs\WhenU -> Adware.SaveNow : Cleaned with backup
    C:\Documents and Settings\Patty\Start Menu\Programs\WhenU\Learn More About Save!.url -> Adware.SaveNow : Cleaned with backup
    C:\Documents and Settings\Patty\Start Menu\Programs\WhenU\Learn More About SaveNow.url -> Adware.SaveNow : Cleaned with backup
    C:\Documents and Settings\Patty\Start Menu\Programs\WhenU\WhenU.com Website.url -> Adware.SaveNow : Cleaned with backup
    :mozilla.43:C:\Documents and Settings\Tony\Application Data\Mozilla\Firefox\Profiles\default.3vt\cookies.txt -> Spyware.Cookie.Webtrendslive : Cleaned with backup
    :mozilla.44:C:\Documents and Settings\Tony\Application Data\Mozilla\Firefox\Profiles\default.3vt\cookies.txt -> Spyware.Cookie.Webtrendslive : Cleaned with backup
    :mozilla.45:C:\Documents and Settings\Tony\Application Data\Mozilla\Firefox\Profiles\default.3vt\cookies.txt -> Spyware.Cookie.Webtrendslive : Cleaned with backup
    :mozilla.46:C:\Documents and Settings\Tony\Application Data\Mozilla\Firefox\Profiles\default.3vt\cookies.txt -> Spyware.Cookie.Webtrendslive : Cleaned with backup
    :mozilla.49:C:\Documents and Settings\Tony\Application Data\Mozilla\Firefox\Profiles\default.3vt\cookies.txt -> Spyware.Cookie.Mediaplex : Cleaned with backup
    :mozilla.90:C:\Documents and Settings\Tony\Application Data\Mozilla\Firefox\Profiles\default.3vt\cookies.txt -> Spyware.Cookie.Myaffiliateprogram : Cleaned with backup
    :mozilla.99:C:\Documents and Settings\Tony\Application Data\Mozilla\Firefox\Profiles\default.3vt\cookies.txt -> Spyware.Cookie.Doubleclick : Cleaned with backup
    :mozilla.100:C:\Documents and Settings\Tony\Application Data\Mozilla\Firefox\Profiles\default.3vt\cookies.txt -> Spyware.Cookie.Com : Cleaned with backup
    :mozilla.102:C:\Documents and Settings\Tony\Application Data\Mozilla\Firefox\Profiles\default.3vt\cookies.txt -> Spyware.Cookie.Com : Cleaned with backup
    :mozilla.112:C:\Documents and Settings\Tony\Application Data\Mozilla\Firefox\Profiles\default.3vt\cookies.txt -> Spyware.Cookie.Liveperson : Cleaned with backup
    :mozilla.113:C:\Documents and Settings\Tony\Application Data\Mozilla\Firefox\Profiles\default.3vt\cookies.txt -> Spyware.Cookie.Liveperson : Cleaned with backup
    :mozilla.116:C:\Documents and Settings\Tony\Application Data\Mozilla\Firefox\Profiles\default.3vt\cookies.txt -> Spyware.Cookie.Atdmt : Cleaned with backup
    :mozilla.122:C:\Documents and Settings\Tony\Application Data\Mozilla\Firefox\Profiles\default.3vt\cookies.txt -> Spyware.Cookie.Serving-sys : Cleaned with backup
    :mozilla.127:C:\Documents and Settings\Tony\Application Data\Mozilla\Firefox\Profiles\default.3vt\cookies.txt -> Spyware.Cookie.Hitbox : Cleaned with backup
    :mozilla.128:C:\Documents and Settings\Tony\Application Data\Mozilla\Firefox\Profiles\default.3vt\cookies.txt -> Spyware.Cookie.Fastclick : Cleaned with backup
    :mozilla.129:C:\Documents and Settings\Tony\Application Data\Mozilla\Firefox\Profiles\default.3vt\cookies.txt -> Spyware.Cookie.Fastclick : Cleaned with backup
    :mozilla.136:C:\Documents and Settings\Tony\Application Data\Mozilla\Firefox\Profiles\default.3vt\cookies.txt -> Spyware.Cookie.Fastclick : Cleaned with backup
    :mozilla.141:C:\Documents and Settings\Tony\Application Data\Mozilla\Firefox\Profiles\default.3vt\cookies.txt -> Spyware.Cookie.Hitbox : Cleaned with backup
    :mozilla.142:C:\Documents and Settings\Tony\Application Data\Mozilla\Firefox\Profiles\default.3vt\cookies.txt -> Spyware.Cookie.Pointroll : Cleaned with backup
    :mozilla.143:C:\Documents and Settings\Tony\Application Data\Mozilla\Firefox\Profiles\default.3vt\cookies.txt -> Spyware.Cookie.Pointroll : Cleaned with backup
    :mozilla.144:C:\Documents and Settings\Tony\Application Data\Mozilla\Firefox\Profiles\default.3vt\cookies.txt -> Spyware.Cookie.Pointroll : Cleaned with backup
    :mozilla.145:C:\Documents and Settings\Tony\Application Data\Mozilla\Firefox\Profiles\default.3vt\cookies.txt -> Spyware.Cookie.Pointroll : Cleaned with backup
    :mozilla.163:C:\Documents and Settings\Tony\Application Data\Mozilla\Firefox\Profiles\default.3vt\cookies.txt -> Spyware.Cookie.Bfast : Cleaned with backup
    C:\Documents and Settings\Tony\Local Settings\Temp\temp.cab/IExploreSkins.exe -> Spyware.WebSearch : Error during cleaning
    C:\Program Files\MyWay\myBar\1.bin\MY2NS.EXE -> Spyware.MyWay : Cleaned with backup
    C:\Program Files\MyWay\myBar\1.bin\MYWAYPLUGINPROXY.CLASS -> Spyware.MyWay : Cleaned with backup
    C:\Program Files\Yahoo!\YPSR\Quarantine\20041110223430.zip/progra~1/perfec~1/bho/PerfectNav150c.dll -> Spyware.eUniverse : Cleaned with backup
    C:\Program Files\Yahoo!\YPSR\Quarantine\ppq15CC.tmp -> Spyware.Cookie.Pro-market : Cleaned with backup
    C:\Program Files\Yahoo!\YPSR\Quarantine\ppq37FD.tmp -> Spyware.P2PNetworking : Cleaned with backup
    C:\Program Files\Yahoo!\YPSR\Quarantine\ppq37FF.tmp -> Spyware.P2PNetworking : Cleaned with backup
    C:\Program Files\Yahoo!\YPSR\Quarantine\ppq3800.tmp -> Spyware.P2PNetworking : Cleaned with backup
    C:\Program Files\Yahoo!\YPSR\Quarantine\ppq3801.tmp\P2P Networking.exe -> Spyware.P2PNetworking : Cleaned with backup
    C:\Program Files\Yahoo!\YPSR\Quarantine\ppq383F.tmp\adm4.dll -> Spyware.Altnet : Cleaned with backup
    C:\Program Files\Yahoo!\YPSR\Quarantine\ppq383F.tmp\admdata.dll -> Spyware.Altnet : Cleaned with backup
    C:\Program Files\Yahoo!\YPSR\Quarantine\ppq383F.tmp\dmfiles.cab/AltnetUninstall.exe -> Spyware.Altnet : Cleaned with backup
    C:\Program Files\Yahoo!\YPSR\Quarantine\ppq383F.tmp\dmfiles.cab/asmend.exe -> Spyware.Altnet : Cleaned with backup
    C:\Program Files\Yahoo!\YPSR\Quarantine\ppq383F.tmp\pmexe.cab/Points Manager.exe -> Spyware.Altnet : Cleaned with backup
    C:\Program Files\Yahoo!\YPSR\Quarantine\ppq383F.tmp\pmfiles.cab/sysdetect.dll -> Adware.BrilliantDigital : Cleaned with backup
    C:\Program Files\Yahoo!\YPSR\Quarantine\ppq3878.tmp -> Spyware.Cookie.Com : Cleaned with backup
    C:\System Volume Information\_restore{B37680B2-BA0A-4E5D-BF30-83E44C588624}\RP620\A0063568.DLL -> Spyware.MyWay : Cleaned with backup
    C:\System Volume Information\_restore{B37680B2-BA0A-4E5D-BF30-83E44C588624}\RP620\A0063569.dll -> Spyware.Altnet : Cleaned with backup
    C:\System Volume Information\_restore{B37680B2-BA0A-4E5D-BF30-83E44C588624}\RP620\A0063570.exe -> Spyware.Altnet : Cleaned with backup
    C:\System Volume Information\_restore{B37680B2-BA0A-4E5D-BF30-83E44C588624}\RP620\A0063571.dll -> Spyware.Altnet : Cleaned with backup
    C:\System Volume Information\_restore{B37680B2-BA0A-4E5D-BF30-83E44C588624}\RP620\A0063572.dll -> Spyware.Altnet : Cleaned with backup
    C:\System Volume Information\_restore{B37680B2-BA0A-4E5D-BF30-83E44C588624}\RP620\A0063573.dll -> Spyware.Altnet : Cleaned with backup
    C:\System Volume Information\_restore{B37680B2-BA0A-4E5D-BF30-83E44C588624}\RP620\A0063574.dll -> Spyware.Altnet : Cleaned with backup
    C:\System Volume Information\_restore{B37680B2-BA0A-4E5D-BF30-83E44C588624}\RP620\A0063575.exe -> Spyware.Altnet : Cleaned with backup
    C:\System Volume Information\_restore{B37680B2-BA0A-4E5D-BF30-83E44C588624}\RP621\A0063614.DLL -> Spyware.MyWay : Cleaned with backup


    ::Report End

    Can you make heads or tales of it???
     
  5. Cheeseball81

    Cheeseball81 Retired Moderator

    Joined:
    Mar 3, 2004
    Messages:
    84,315
    What location does Yahoo detect it? I am assuming you mean Yahoo Antivirus.
    I also see you have Mcfee Antivirus - that doesn't detect it?
     
  6. stannseniors

    stannseniors Thread Starter

    Joined:
    Sep 28, 2004
    Messages:
    22
    Cheese,
    it's funny that you should ask that....our Mcfee Antivirus came with our computer and probably shoudl be taken off....no one has ever said one way or the other so i've left it on....i know, even stupid people own computers....
    I do have Norton Antivirus but that isn't detecting it - (shows you how good that is) But the yahoo anti-spy does and reads "One or more items could not be deleted from the system"
    when i try to delete it......
     
  7. Cheeseball81

    Cheeseball81 Retired Moderator

    Joined:
    Mar 3, 2004
    Messages:
    84,315
    Having more than one anti-virus program is never a good idea anyway. They can conflict with one another.

    Let's try some online scans.

    Run ActiveScan online virus scan:
    http://www.pandasoftware.com/products/activescan.htm

    When the scan is finished, anything that it cannot clean have it delete it.
    Make a note of the file location of anything that cannot be deleted so you can delete it yourself.
    Save the results from the scan and post them here please.
     
  8. stannseniors

    stannseniors Thread Starter

    Joined:
    Sep 28, 2004
    Messages:
    22
    I tried it and i get a pop up that reads:
    We're sorry. ActiveScan requires the browser Microsoft Internet Explorer 5.0 or later version.

    I have windows XP though........
     
  9. Cheeseball81

    Cheeseball81 Retired Moderator

    Joined:
    Mar 3, 2004
    Messages:
    84,315
    That's weird. You have Internet Explorer v6.00 SP2. Can you try again?
     
  10. stannseniors

    stannseniors Thread Starter

    Joined:
    Sep 28, 2004
    Messages:
    22
    stupid question but am i double clicking on the "scan your PC" button with the green light going back and forth on it? If so - it still won'r work ---if not point out my stupidity please....:confused:
     
  11. Cheeseball81

    Cheeseball81 Retired Moderator

    Joined:
    Mar 3, 2004
    Messages:
    84,315
    When you go here: http://www.pandasoftware.com/products/activescan.htm

    Look to the upper right, and you will see in red and pink "Free use ActiveScan"
    Underneath it says Free Online Virus Scan, click on that
    A window should open up, follow the prompts from there
     
  12. stannseniors

    stannseniors Thread Starter

    Joined:
    Sep 28, 2004
    Messages:
    22
    cute doggy by the way......
     
  13. stannseniors

    stannseniors Thread Starter

    Joined:
    Sep 28, 2004
    Messages:
    22
    shoot - same pop up............???????
     
  14. Cheeseball81

    Cheeseball81 Retired Moderator

    Joined:
    Mar 3, 2004
    Messages:
    84,315
    Thank you :)

    Dang...

    Try this one - Run Kaspersky online virus scan here: http://www.kaspersky.com/virusscanner

    When given the option, choose the "Extended database" for the scan.
    When it's finished, save the results from the scan and post them here.
     
  15. stannseniors

    stannseniors Thread Starter

    Joined:
    Sep 28, 2004
    Messages:
    22
    I get this messge:
    Kaspersky On-Line Scanner service is based on Microsoft's Active X Technology. This service works only with MS Internet Explorer 5.0 or higher. (Detected: Microsoft OS with Netscape Navigator Browser)
     
  16. Sponsor

As Seen On
As Seen On...

Welcome to Tech Support Guy!

Are you looking for the solution to your computer problem? Join our site today to ask your question. This site is completely free -- paid for by advertisers and donations.

If you're not already familiar with forums, watch our Welcome Guide to get started.

Join over 733,556 other people just like you!

Thread Status:
Not open for further replies.

Short URL to this thread: https://techguy.org/436062

  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.
    Dismiss Notice