ZoneAlarm security alert for PXMEYMGR.EXE

Status
This thread has been Locked and is not open to further replies. Please start a New Thread if you're having a similar issue. View our Welcome Guide to learn how to use this site.

cabrito

Thread Starter
Joined
Apr 10, 2004
Messages
26
Does anybody know what the PXMEYMGR.EXE program is or does? I have googled it and can't find anything on it at all. It asks for permission to my trusted zone on a daily basis. I've scanned my computer for a file by this name and nothing is found. Any information would be appreciated. Thanks.

George
 

valis

Moderator
Joined
Sep 24, 2004
Messages
78,347
weird....can't find anything online about it...I'd do a few things:
1. Make sure that you are searching hidden and system files
2. Do an AV scan.
3. See if ZA can give you more info about the app, including the location.

Personally, I wouldn't let it have access until I knew what it was, especially since it's a .exe.
 

cabrito

Thread Starter
Joined
Apr 10, 2004
Messages
26
Thanks for the reply Valis. I did a search for a handle by that name in the Process Explorer program and it found a "<non-existent process> G:\WINDOWS\system32\pxmeymgr.exe". A search in that folder doesn't uncover any such program and the folder view option is set to show hidden files and folders. :confused:
 

valis

Moderator
Joined
Sep 24, 2004
Messages
78,347
sounds like an infection, personally. If it was good and in that folder googling it would turn something up. You run the AV yet?
 

cabrito

Thread Starter
Joined
Apr 10, 2004
Messages
26
valis said:
sounds like an infection, personally. If it was good and in that folder googling it would turn something up. You run the AV yet?
I'm running ClamWin now. I don't think it will find it.

 

valis

Moderator
Joined
Sep 24, 2004
Messages
78,347
* Download the trial version of Ewido Security Suite.

http://www.ewido.net/en/


* Install ewido.
* During the installation, under "Additional Options" uncheck "Install background guard" and "Install scan via context menu".
* Launch ewido
* It will prompt you to update click the OK button and it will go to the main screen
* On the left side of the main screen click update
* Click on Start and let it update.

then click 'scanner', choose full system scan, and let it do it's thing. The first bad thing it finds, it will sound a siren, and a pop up box will open, saying it's found this whatever, what do you want to do with it? The default is remove, leave it like that, and then tick the box that says 'do this with every infection'. Then you can leave it be. It wll be a while, min of 45 minutes, and when done, click save report, then post that here please.
 

Cookiegal

Karen
Administrator
Malware Specialist Coordinator
Joined
Aug 27, 2003
Messages
120,945
Please do the following:

Click here to download HJTsetup.exe
  • Save HJTsetup.exe to your desktop.
  • Double click on the HJTsetup.exe icon on your desktop.
  • By default it will install to C:\Program Files\Hijack This.
  • Continue to click Next in the setup dialogue boxes until you get to the Select Addition Tasks dialogue.
  • Put a check by Create a desktop icon then click Next again.
  • Continue to follow the rest of the prompts from there.
  • At the final dialogue box click Finish and it will launch Hijack This.
  • Click on the Do a system scan and save a log file button. It will scan and then ask you to save the log.
  • Click Save to save the log file and then the log will open in notepad.
  • Click on "Edit > Select All" then click on "Edit > Copy" to copy the entire contents of the log.
  • Come back here to this thread and Paste the log in your next reply.
  • DO NOT have Hijack This fix anything yet. Most of what it finds will be harmless or even required.
 

valis

Moderator
Joined
Sep 24, 2004
Messages
78,347
like the hat, cookie.....thanks for stepping in....haven't seen this one before.
 

cabrito

Thread Starter
Joined
Apr 10, 2004
Messages
26
Logfile of HijackThis v1.99.1
Scan saved at 9:04:15 AM, on 12/31/2005
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
G:\WINDOWS\System32\smss.exe
G:\WINDOWS\system32\winlogon.exe
G:\WINDOWS\system32\services.exe
G:\WINDOWS\system32\lsass.exe
G:\WINDOWS\system32\svchost.exe
G:\WINDOWS\System32\svchost.exe
G:\WINDOWS\Explorer.EXE
G:\WINDOWS\system32\spoolsv.exe
G:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
G:\Program Files\Analog Devices\SoundMAX\SMTray.exe
G:\Program Files\Google\Google Desktop Search\GoogleDesktopIndex.exe
F:\Program Files\BillP Studios\WinPatrol\winpatrol.exe
G:\WINDOWS\system32\dla\tfswctrl.exe
D:\Documents and Settings\George\Desktop\files\Downloads\edithistory\EditHistory.exe
G:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe
G:\WINDOWS\System32\spool\DRIVERS\W32X86\3\fpdisp5a.exe
G:\Program Files\Google\Gmail Notifier\gnotify.exe
G:\Program Files\Logitech\MouseWare\system\em_exec.exe
G:\Program Files\ClamWin\bin\ClamTray.exe
D:\Program Files\ATnotes\ATnotes.exe
G:\Program Files\Flashpaste\flashpaste.exe
G:\KeePass-1.03\KeePass.exe
G:\Program Files\The Weather Channel FW\Desktop Weather\DesktopWeather.exe
G:\Program Files\1-Click Answers\answers.exe
G:\Program Files\LaunchMate\LnchMate.exe
G:\Program Files\Google\Web Accelerator\GoogleWebAccWarden.exe
E:\Documents and Settings\George Patino\Desktop\SnapFolders\Power Menu\PowerMenu.exe
C:\Program Files\ioIsland\ClearTweak\ClearTweak.exe
G:\Program Files\Dialog Box Assistant\OSDEx.exe
G:\Program Files\Google\Google Desktop Search\GoogleDesktopDisplay.exe
G:\Program Files\Google\Google Desktop Search\GoogleDesktopCrawl.exe
G:\PROGRA~1\COMMON~1\GURUNE~1\agtserv.exe
G:\Program Files\Google\Web Accelerator\googlewebaccclient.exe
G:\Program Files\ARM Software\MacroMaker\MacroMaker.exe
G:\Program Files\Rainlendar\Rainlendar.exe
G:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe
D:\Documents and Settings\George\Desktop\tinyresmeter.exe
G:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe
G:\PROGRA~1\Grisoft\AVGFRE~1\avgemc.exe
G:\Program Files\ewido anti-malware\ewidoctrl.exe
G:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
G:\WINDOWS\System32\svchost.exe
G:\Program Files\ewido anti-malware\SecuritySuite.exe
G:\Program Files\Google\Google Desktop Search\GoogleDesktopOE.exe
G:\Program Files\Google\Google Desktop Search\GoogleDesktopMail.exe
F:\Program Files\Maxthon\Maxthon.exe
G:\Program Files\hijackthis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigURL = http://localhost:9100/proxy.pac
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - G:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - G:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: XBTB05988 - {5C43B8A2-24E8-4336-B86E-A94558E10C60} - G:\PROGRA~1\FURLTO~1\toolbar.dll
O2 - BHO: DriveLetterAccess - {5CA3D70E-1895-11CF-8E15-001234567890} - G:\WINDOWS\system32\dla\tfswshx.dll
O2 - BHO: Google Web Accelerator Helper - {69A87B7D-DE56-4136-9655-716BA50C19C7} - G:\Program Files\Google\Web Accelerator\GoogleWebAccToolbar.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - g:\program files\google\googletoolbar1.dll
O2 - BHO: Toolbar Helper - {D44BBB61-E17F-4AE6-A502-8D7E0B29E616} - G:\WINDOWS\system32\s1933.dll
O3 - Toolbar: 1-Click Answers - {7754C418-F62E-44aa-B169-E719E718BCFD} - G:\PROGRA~1\1-CLIC~1\IEToolbar\AnswersToolbarU.dll
O3 - Toolbar: Google Web Accelerator - {DB87BFA2-A2E3-451E-8E5A-C89982D87CBF} - G:\Program Files\Google\Web Accelerator\GoogleWebAccToolbar.dll
O3 - Toolbar: Furl Toolbar - {74E677D9-0F37-4654-85E9-02F36AA295EB} - G:\Program Files\Furl Toolbar\toolbar.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - g:\program files\google\googletoolbar1.dll
O3 - Toolbar: Stumble&Upon - {22D003CE-6952-46C5-80B9-D19B479620AB} - G:\WINDOWS\system32\s1933.dll
O4 - HKLM\..\Run: [Google Desktop Search] "G:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe" /startup
O4 - HKLM\..\Run: [Smapp] G:\Program Files\Analog Devices\SoundMAX\SMTray.exe
O4 - HKLM\..\Run: [WinPatrol] F:\Program Files\BillP Studios\WinPatrol\winpatrol.exe
O4 - HKLM\..\Run: [Logitech Utility] Logi_MwX.Exe
O4 - HKLM\..\Run: [dla] G:\WINDOWS\system32\dla\tfswctrl.exe
O4 - HKLM\..\Run: [EditHistory V-2.1] D:\Documents and Settings\George\Desktop\files\Downloads\edithistory\EditHistory.exe
O4 - HKLM\..\Run: [AVG7_CC] G:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe /STARTUP
O4 - HKLM\..\Run: [FinePrint Dispatcher v5] "G:\WINDOWS\System32\spool\DRIVERS\W32X86\3\fpdisp5a.exe" /source=HKLM
O4 - HKLM\..\Run: [{0228e555-4f9c-4e35-a3ec-b109a192b4c2}] G:\Program Files\Google\Gmail Notifier\gnotify.exe
O4 - HKLM\..\Run: [ClamWin] "G:\Program Files\ClamWin\bin\ClamTray.exe" --logon
O4 - HKCU\..\Run: [ATnotes.exe] D:\Program Files\ATnotes\ATnotes.exe
O4 - HKCU\..\Run: [Flashpaste] G:\Program Files\Flashpaste\flashpaste.exe
O4 - HKCU\..\Run: [KeePass Password Safe] G:\KeePass-1.03\KeePass.exe
O4 - HKCU\..\Run: [DW4] "G:\Program Files\The Weather Channel FW\Desktop Weather\DesktopWeather.exe"
O4 - Startup: ClearTweak.lnk = C:\Program Files\ioIsland\ClearTweak\ClearTweak.exe
O4 - Startup: Dialog Box Assistant.lnk = G:\Program Files\Dialog Box Assistant\OSDEx.exe
O4 - Startup: ERUNT AutoBackup.lnk = G:\Program Files\ERUNT\AUTOBACK.EXE
O4 - Startup: MacroMaker.lnk = ?
O4 - Startup: Rainlendar.lnk = G:\Program Files\Rainlendar\Rainlendar.exe
O4 - Startup: tinyresmeter.lnk = D:\Documents and Settings\George\Desktop\tinyresmeter.exe
O4 - Global Startup: 1-Click Answers.lnk = G:\Program Files\1-Click Answers\answers.exe
O4 - Global Startup: LaunchMate.lnk = G:\Program Files\LaunchMate\LnchMate.exe
O4 - Global Startup: Run Google Web Accelerator.lnk = G:\Program Files\Google\Web Accelerator\GoogleWebAccWarden.exe
O4 - Global Startup: Shortcut to PowerMenu.lnk = E:\Documents and Settings\George Patino\Desktop\SnapFolders\Power Menu\PowerMenu.exe
O8 - Extra context menu item: &Google Search - res://G:\Program Files\Google\GoogleToolbar1.dll/cmsearch.html
O8 - Extra context menu item: &ieSpell Options - res://G:\Program Files\ieSpell\iespell.dll/SPELLOPTION.HTM
O8 - Extra context menu item: &Translate English Word - res://G:\Program Files\Google\GoogleToolbar1.dll/cmwordtrans.html
O8 - Extra context menu item: Answers... - file:G:\Program Files\1-Click Answers\Html\atiemenu.htm
O8 - Extra context menu item: Backward Links - res://G:\Program Files\Google\GoogleToolbar1.dll/cmbacklinks.html
O8 - Extra context menu item: Cached Snapshot of Page - res://G:\Program Files\Google\GoogleToolbar1.dll/cmcache.html
O8 - Extra context menu item: Check &Spelling - res://G:\Program Files\ieSpell\iespell.dll/SPELLCHECK.HTM
O8 - Extra context menu item: Furl It - http://www.furl.net/resources/rightClick.jsp
O8 - Extra context menu item: Similar Pages - res://G:\Program Files\Google\GoogleToolbar1.dll/cmsimilar.html
O8 - Extra context menu item: StumbleUpon: &Blog This - res://G:\WINDOWS\system32\s1933.dll/blogimage
O8 - Extra context menu item: Translate Page into English - res://G:\Program Files\Google\GoogleToolbar1.dll/cmtrans.html
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - G:\Program Files\Java\jre1.5.0_05\bin\npjpi150_05.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - G:\Program Files\Java\jre1.5.0_05\bin\npjpi150_05.dll
O9 - Extra button: ieSpell - {0E17D5B7-9F5D-4fee-9DF6-CA6EE38B68A8} - G:\Program Files\ieSpell\iespell.dll
O9 - Extra 'Tools' menuitem: ieSpell - {0E17D5B7-9F5D-4fee-9DF6-CA6EE38B68A8} - G:\Program Files\ieSpell\iespell.dll
O9 - Extra button: (no name) - {1606D6F9-9D3B-4aea-A025-ED5B2FD488E7} - G:\Program Files\ieSpell\iespell.dll
O9 - Extra 'Tools' menuitem: ieSpell Options - {1606D6F9-9D3B-4aea-A025-ED5B2FD488E7} - G:\Program Files\ieSpell\iespell.dll
O15 - Trusted Zone: http://www.lyricshosting.com
O15 - Trusted Zone: *.stumbleupon.com
O16 - DPF: {04E214E5-63AF-4236-83C6-A7ADCBF9BD02} (HouseCall Control) - http://housecall60.trendmicro.com/housecall/xscan60.cab
O16 - DPF: {13EC55CF-D993-475B-9ACA-F4A384957956} (Controller Class) - https://www.windowsonecare.com/install/cli/0.8.0794.38/WinSSWebAgent.CAB
O16 - DPF: {3B0EA9E6-7003-4B38-B398-9B1B6DF439C5} - http://download1.answers.com/pub/AnswersSetup.cab
O16 - DPF: {5ED80217-570B-4DA9-BF44-BE107C0EC166} (CwlscInstall Object) - https://scan.safety.live.com/resource/download/scanner/en-us/wlscbase2213.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1131134791280
O20 - AppInit_DLLs: G:\PROGRA~1\Google\GOOGLE~1\GOEC62~1.DLL
O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - G:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe
O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - G:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe
O23 - Service: AVG E-mail Scanner (AVGEMS) - GRISOFT, s.r.o. - G:\PROGRA~1\Grisoft\AVGFRE~1\avgemc.exe
O23 - Service: ewido security suite control - ewido networks - G:\Program Files\ewido anti-malware\ewidoctrl.exe
O23 - Service: Poweroff - Unknown owner - G:\WINDOWS\system32\poweroff.exe" -service (file missing)
O23 - Service: SoundMAX Agent Service (SoundMAX Agent Service (default)) - Analog Devices, Inc. - G:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
O23 - Service: Synergy Server - Unknown owner - C:\Program Files\Synergy\synergys.exe
O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - G:\WINDOWS\system32\ZoneLabs\vsmon.exe
 

Cookiegal

Karen
Administrator
Malware Specialist Coordinator
Joined
Aug 27, 2003
Messages
120,945
Download Cleanup from Here
  • A window will open and choose SAVE, then DESKTOP as the destination.
  • On your Desktop, click on Cleanup40.exe icon.
  • Then, click RUN and place a checkmark beside "I Agree"
  • Then click NEXT followed by START and OK.
  • A window will appear with many choices, keep all the defaults as set when the Slide Bar to the left is set to Standard Quality.
  • Click OK
  • DO NOT RUN IT YET


Download the trial version of Ewido Security Suite here.
  • Install ewido.
  • During the installation, under "Additional Options" uncheck "Install background guard" and "Install scan via context menu".
  • Launch ewido
  • It will prompt you to update click the OK button and it will go to the main screen
  • On the left side of the main screen click update
  • Click on Start and let it update.
  • DO NOT run a scan yet. You will do that later in safe mode.

Click here for info on how to boot to safe mode if you don't already know how.


Now copy these instructions to notepad and save them to your desktop. You will need them to refer to in safe mode.


Restart your computer into safe mode now. Perform the following steps in safe mode:


Run Ewido:
  • Click on scanner
  • Click Complete System Scan and the scan will begin.
  • During the scan it will prompt you to clean files, click OK
  • When the scan is finished, look at the bottom of the screen and click the Save report button.
  • Save the report to your desktop



Run Cleanup:
  • Click on the "Cleanup" button and let it run.
  • Once it’s done, close the program.


Go to Control Panel - Internet Options. Click on the Programs tab then click the "Reset Web Settings" button. Click Apply then OK.


Restart back into Windows normally now.


Do a Panda Active Scan. Be sure to save the log it creates.


Come back here and post a new HijackThis log, as well as the logs from the Ewido and Panda scans.
 

Cookiegal

Karen
Administrator
Malware Specialist Coordinator
Joined
Aug 27, 2003
Messages
120,945
I'm not sure what you're trying to say with that screen shot. Have you followed my instructions?
 

cabrito

Thread Starter
Joined
Apr 10, 2004
Messages
26
I've run Ewido a few times. Here is my final scan;

---------------------------------------------------------
ewido anti-malware - Scan report
---------------------------------------------------------

+ Created on: 10:08:25 AM, 1/2/2006
+ Report-Checksum: 1F7DD09A

+ Scan result:

C:\Program Files\Radmin\raddrv.dll -> Not-A-Virus.RemoteAdmin.Win32.RAdmin.20 : Ignored
D:\Documents and Settings\George\Desktop\files\Downloads\Nir Sofer Freeware\Protected Storage PassView - recover passwords.zip/pspv.exe -> Not-A-Virus.Tool.PassView.160 : Ignored
D:\Documents and Settings\George\Desktop\files\Downloads\RockXP.exe/RAS.exe -> Not-A-Virus.PSWTool.Win32.RAS.a : Ignored
D:\Documents and Settings\George\Desktop\Temporary\DRIVE E BACKUP\Drive E Seagate backup\3_E.zip/Program Files/RAdmin/raddrv.dll -> Not-A-Virus.RemoteAdmin.Win32.RAdmin.20 : Ignored
D:\pebuilder313\BartPE\Programs\vncserver\vncconfig.exe -> Not-A-Virus.RemoteAdmin.Win32.WinVNC.4 : Ignored
D:\pebuilder313\plugin\VNCServer\vncconfig.exe -> Not-A-Virus.RemoteAdmin.Win32.WinVNC.4 : Ignored
D:\Program Files\Radmin\raddrv.dll -> Not-A-Virus.RemoteAdmin.Win32.RAdmin.20 : Ignored
D:\WINDOWS\system32\raddrv.dll -> Not-A-Virus.RemoteAdmin.Win32.RAdmin.20 : Ignored
E:\Program Files\Radmin\raddrv.dll -> Not-A-Virus.RemoteAdmin.Win32.RAdmin.20 : Ignored
E:\WINDOWS\system32\raddrv.dll -> Not-A-Virus.RemoteAdmin.Win32.RAdmin.20 : Ignored
F:\NTRECYCLER\S-1-5-21-1645522239-1383384898-839522115-1003\DI343.exe -> Not-A-Virus.Tool.PassView.160 : Ignored
F:\Program Files\Radmin\raddrv.dll -> Not-A-Virus.RemoteAdmin.Win32.RAdmin.20 : Ignored
F:\WINDOWS\system32\raddrv.dll -> Not-A-Virus.RemoteAdmin.Win32.RAdmin.20 : Ignored
HKLM\SYSTEM\ControlSet001\Enum\HID\Vid_046d&Pid_c505&MI_00\7&14c4d367&0&0000\\HardwareID -> Spyware.CoolWebSearch : Error during cleaning
:mozilla.20:D:\Documents and Settings\George\Application Data\Mozilla\Profiles\default\cooj82in.slt\cookies.txt -> Spyware.Cookie.Hitbox : Cleaned with backup
:mozilla.22:D:\Documents and Settings\George\Application Data\Mozilla\Profiles\default\cooj82in.slt\cookies.txt -> Spyware.Cookie.Pointroll : Cleaned with backup
:mozilla.23:D:\Documents and Settings\George\Application Data\Mozilla\Profiles\default\cooj82in.slt\cookies.txt -> Spyware.Cookie.Pointroll : Cleaned with backup
:mozilla.25:D:\Documents and Settings\George\Application Data\Mozilla\Profiles\default\cooj82in.slt\cookies.txt -> Spyware.Cookie.Bluestreak : Cleaned with backup
:mozilla.26:D:\Documents and Settings\George\Application Data\Mozilla\Profiles\default\cooj82in.slt\cookies.txt -> Spyware.Cookie.Mediaplex : Cleaned with backup
:mozilla.40:D:\Documents and Settings\George\Application Data\Mozilla\Profiles\default\cooj82in.slt\cookies.txt -> Spyware.Cookie.Hitbox : Cleaned with backup
:mozilla.53:D:\Documents and Settings\George\Application Data\Mozilla\Profiles\default\cooj82in.slt\cookies.txt -> Spyware.Cookie.Questionmarket : Cleaned with backup
:mozilla.70:D:\Documents and Settings\George\Application Data\Mozilla\Profiles\default\cooj82in.slt\cookies.txt -> Spyware.Cookie.Hitbox : Cleaned with backup
:mozilla.126:D:\Documents and Settings\George\Application Data\Mozilla\Profiles\default\cooj82in.slt\cookies.txt -> Spyware.Cookie.Addynamix : Cleaned with backup
:mozilla.143:D:\Documents and Settings\George\Application Data\Mozilla\Profiles\default\cooj82in.slt\cookies.txt -> Spyware.Cookie.Overture : Cleaned with backup
:mozilla.148:D:\Documents and Settings\George\Application Data\Mozilla\Profiles\default\cooj82in.slt\cookies.txt -> Spyware.Cookie.247realmedia : Cleaned with backup
:mozilla.156:D:\Documents and Settings\George\Application Data\Mozilla\Profiles\default\cooj82in.slt\cookies.txt -> Spyware.Cookie.Specificpop : Cleaned with backup
:mozilla.168:D:\Documents and Settings\George\Application Data\Mozilla\Profiles\default\cooj82in.slt\cookies.txt -> Spyware.Cookie.Hitbox : Cleaned with backup
D:\Documents and Settings\George\Desktop\Temporary\DRIVE E BACKUP\Drive E Seagate backup\3_E.zip/Program Files/McAfee/McAfee Office/Guard Dog/chktrust.exe -> Spyware.BargainBuddy : Error during cleaning
D:\Documents and Settings\George\Desktop\Temporary\DRIVE E BACKUP\Drive E Seagate backup\3_E.zip/Program Files/RAdmin/R_server.exe -> Trojan.AutoAttack.250 : Error during cleaning
D:\Documents and Settings\George\Desktop\Temporary\DRIVE E BACKUP\Drive E Seagate backup\4_E.zip/WINDOWS/BBSTORE/DSS/DSSAGENT.EXE -> Spyware.Background : Error during cleaning
D:\Documents and Settings\George\Desktop\Temporary\DRIVE E BACKUP\Drive E Seagate backup\4_E.zip/WINDOWS/Cookies/[email protected][1].txt -> Spyware.Cookie.Excite : Error during cleaning
D:\Documents and Settings\George\Desktop\Temporary\DRIVE E BACKUP\Drive E Seagate backup\4_E.zip/WINDOWS/Downloaded Program Files/WONWebLauncherControl.ocx -> Spyware.IWon : Error during cleaning
D:\Documents and Settings\George\Desktop\Temporary\DRIVE E BACKUP\Drive E Seagate backup\4_E.zip/WINDOWS/Profiles/George/Cookies/[email protected][1].txt -> Spyware.Cookie.Enliven : Error during cleaning
D:\Documents and Settings\George\Desktop\Temporary\DRIVE E BACKUP\Drive E Seagate backup\4_E.zip/WINDOWS/Profiles/George/Cookies/[email protected]_admonitor.txt -> Spyware.Cookie.Admonitor : Error during cleaning
D:\Documents and Settings\George\Desktop\Temporary\DRIVE E BACKUP\Drive E Seagate backup\4_E.zip/WINDOWS/Profiles/George/Cookies/[email protected]_link4ads(1).txt -> Spyware.Cookie.Link4ads : Error during cleaning
D:\Documents and Settings\George\Desktop\Temporary\DRIVE E BACKUP\Drive E Seagate backup\4_E.zip/WINDOWS/Profiles/George/Cookies/[email protected][2].txt -> Spyware.Cookie.Advertising : Error during cleaning
D:\Documents and Settings\George\Desktop\Temporary\DRIVE E BACKUP\Drive E Seagate backup\4_E.zip/WINDOWS/Profiles/George/Cookies/[email protected]_porntrack(1).txt -> Spyware.Cookie.Porntrack : Error during cleaning
D:\Documents and Settings\George\Desktop\Temporary\DRIVE E BACKUP\Drive E Seagate backup\4_E.zip/WINDOWS/Profiles/George/Cookies/[email protected][2].txt -> Spyware.Cookie.Bfast : Error during cleaning
D:\Documents and Settings\George\Desktop\Temporary\DRIVE E BACKUP\Drive E Seagate backup\4_E.zip/WINDOWS/Profiles/George/Cookies/[email protected][3].txt -> Spyware.Cookie.Doubleclick : Error during cleaning
D:\Documents and Settings\George\Desktop\Temporary\DRIVE E BACKUP\Drive E Seagate backup\4_E.zip/WINDOWS/Profiles/George/Cookies/[email protected][1].txt -> Spyware.Cookie.Engage : Error during cleaning
D:\Documents and Settings\George\Desktop\Temporary\DRIVE E BACKUP\Drive E Seagate backup\4_E.zip/WINDOWS/Profiles/George/Cookies/[email protected] -> Spyware.Cookie.Fastclick : Error during cleaning
D:\Documents and Settings\George\Desktop\Temporary\DRIVE E BACKUP\Drive E Seagate backup\4_E.zip/WINDOWS/Profiles/George/Cookies/[email protected][3].txt -> Spyware.Cookie.Flycast : Error during cleaning
D:\Documents and Settings\George\Desktop\Temporary\DRIVE E BACKUP\Drive E Seagate backup\4_E.zip/WINDOWS/Profiles/George/Cookies/[email protected][3].txt -> Spyware.Cookie.Focalink : Error during cleaning
D:\Documents and Settings\George\Desktop\Temporary\DRIVE E BACKUP\Drive E Seagate backup\4_E.zip/WINDOWS/Profiles/George/Cookies/[email protected][1].txt -> Spyware.Cookie.Preferences : Error during cleaning
D:\Documents and Settings\George\Desktop\Temporary\DRIVE E BACKUP\Drive E Seagate backup\4_E.zip/WINDOWS/Profiles/George/Cookies/[email protected]_porntrack.txt -> Spyware.Cookie.Porntrack : Error during cleaning
D:\Documents and Settings\George\Desktop\Temporary\DRIVE E BACKUP\Drive E Seagate backup\4_E.zip/WINDOWS/Profiles/George/Cookies/[email protected](1).txt -> Spyware.Cookie.Hitbox : Error during cleaning
D:\Documents and Settings\George\Desktop\Temporary\DRIVE E BACKUP\Drive E Seagate backup\4_E.zip/WINDOWS/Profiles/George/Cookies/[email protected][2].txt -> Spyware.Cookie.Mediaplex : Error during cleaning
D:\Documents and Settings\George\Desktop\Temporary\DRIVE E BACKUP\Drive E Seagate backup\4_E.zip/WINDOWS/Profiles/George/Cookies/[email protected][1].txt -> Spyware.Cookie.Preferences : Error during cleaning
D:\Documents and Settings\George\Desktop\Temporary\DRIVE E BACKUP\Drive E Seagate backup\4_E.zip/WINDOWS/Profiles/George/Cookies/[email protected][2].txt -> Spyware.Cookie.Questionmarket : Error during cleaning
D:\Documents and Settings\George\Desktop\Temporary\DRIVE E BACKUP\Drive E Seagate backup\4_E.zip/WINDOWS/Profiles/George/Cookies/[email protected][2].txt -> Spyware.Cookie.Advertising : Error during cleaning
D:\Documents and Settings\George\Desktop\Temporary\DRIVE E BACKUP\Drive E Seagate backup\4_E.zip/WINDOWS/Profiles/George/Cookies/[email protected]_porntrack.txt -> Spyware.Cookie.Porntrack : Error during cleaning
D:\Documents and Settings\George\Desktop\Temporary\DRIVE E BACKUP\Drive E Seagate backup\4_E.zip/WINDOWS/Profiles/George/Cookies/[email protected][1].txt -> Spyware.Cookie.Track-star : Error during cleaning
D:\Documents and Settings\George\Desktop\Temporary\DRIVE E BACKUP\Drive E Seagate backup\4_E.zip/WINDOWS/Profiles/George/Cookies/[email protected][3].txt -> Spyware.Cookie.Commission-junction : Error during cleaning
D:\Documents and Settings\George\Desktop\Temporary\DRIVE E BACKUP\Drive E Seagate backup\4_E.zip/WINDOWS/Profiles/George/Cookies/[email protected][1].txt -> Spyware.Cookie.Gator : Error during cleaning
D:\Documents and Settings\George\Desktop\Temporary\DRIVE E BACKUP\Drive E Seagate backup\4_E.zip/WINDOWS/Profiles/George/Cookies/[email protected] -> Spyware.Cookie.X10 : Error during cleaning
D:\Documents and Settings\George\Desktop\Temporary\DRIVE E BACKUP\Drive E Seagate backup\4_E.zip/WINDOWS/Profiles/Jacob Boy Patino/Cookies/[email protected][1].txt -> Spyware.Cookie.Excite : Error during cleaning
D:\Documents and Settings\George\Desktop\Temporary\DRIVE E BACKUP\Drive E Seagate backup\4_E.zip/WINDOWS/Profiles/ROBERTA/Cookies/[email protected][1].txt -> Spyware.Cookie.Hitbox : Error during cleaning
D:\Documents and Settings\George\Desktop\Temporary\DRIVE E BACKUP\Drive E Seagate backup\4_E.zip/WINDOWS/Profiles/ROBERTA/Cookies/[email protected]_admonitor.txt -> Spyware.Cookie.Admonitor : Error during cleaning
D:\Documents and Settings\George\Desktop\Temporary\DRIVE E BACKUP\Drive E Seagate backup\4_E.zip/WINDOWS/Profiles/ROBERTA/Cookies/[email protected] -> Spyware.Cookie.Advertising : Error during cleaning
D:\Documents and Settings\George\Desktop\Temporary\DRIVE E BACKUP\Drive E Seagate backup\4_E.zip/WINDOWS/Profiles/ROBERTA/Cookies/[email protected] -> Spyware.Cookie.Bfast : Error during cleaning
D:\Documents and Settings\George\Desktop\Temporary\DRIVE E BACKUP\Drive E Seagate backup\4_E.zip/WINDOWS/Profiles/ROBERTA/Cookies/[email protected][2].txt -> Spyware.Cookie.Doubleclick : Error during cleaning
D:\Documents and Settings\George\Desktop\Temporary\DRIVE E BACKUP\Drive E Seagate backup\4_E.zip/WINDOWS/Profiles/ROBERTA/Cookies/[email protected] -> Spyware.Cookie.Engage : Error during cleaning
D:\Documents and Settings\George\Desktop\Temporary\DRIVE E BACKUP\Drive E Seagate backup\4_E.zip/WINDOWS/Profiles/ROBERTA/Cookies/[email protected][1].txt -> Spyware.Cookie.Flycast : Error during cleaning
D:\Documents and Settings\George\Desktop\Temporary\DRIVE E BACKUP\Drive E Seagate backup\4_E.zip/WINDOWS/Profiles/ROBERTA/Cookies/[email protected] -> Spyware.Cookie.Focalink : Error during cleaning
D:\Documents and Settings\George\Desktop\Temporary\DRIVE E BACKUP\Drive E Seagate backup\4_E.zip/WINDOWS/Profiles/ROBERTA/Cookies/[email protected] -> Spyware.Cookie.Gator : Error during cleaning
D:\Documents and Settings\George\Desktop\Temporary\DRIVE E BACKUP\Drive E Seagate backup\4_E.zip/WINDOWS/Profiles/ROBERTA/Cookies/[email protected](1).txt -> Spyware.Cookie.Mediaplex : Error during cleaning
D:\Documents and Settings\George\Desktop\Temporary\DRIVE E BACKUP\Drive E Seagate backup\4_E.zip/WINDOWS/Profiles/ROBERTA/Cookies/[email protected][1].txt -> Spyware.Cookie.Preferences : Error during cleaning
D:\Documents and Settings\George\Desktop\Temporary\DRIVE E BACKUP\Drive E Seagate backup\4_E.zip/WINDOWS/Profiles/ROBERTA/Cookies/[email protected]_advertising.txt -> Spyware.Cookie.Advertising : Error during cleaning
D:\Documents and Settings\George\Desktop\Temporary\DRIVE E BACKUP\Drive E Seagate backup\4_E.zip/WINDOWS/Profiles/ROBERTA/Cookies/[email protected]_commission-junction.txt -> Spyware.Cookie.Commission-junction : Error during cleaning
D:\Documents and Settings\George\Desktop\Temporary\DRIVE E BACKUP\Drive E Seagate backup\4_E.zip/WINDOWS/SYSTEM/COMET.DLL -> Spyware.Comet : Error during cleaning
G:\Documents and Settings\George\Cookies\[email protected]ager[2].txt -> Spyware.Cookie.Yieldmanager : Cleaned with backup
G:\Documents and Settings\George\Cookies\[email protected][2].txt -> Spyware.Cookie.Onestat : Cleaned with backup
G:\Documents and Settings\George\Cookies\[email protected][2].txt -> Spyware.Cookie.Statcounter : Cleaned with backup


::Report End
 
Status
This thread has been Locked and is not open to further replies. Please start a New Thread if you're having a similar issue. View our Welcome Guide to learn how to use this site.

Users Who Are Viewing This Thread (Users: 0, Guests: 1)

As Seen On
As Seen On...

Welcome to Tech Support Guy!

Are you looking for the solution to your computer problem? Join our site today to ask your question. This site is completely free -- paid for by advertisers and donations.

If you're not already familiar with forums, watch our Welcome Guide to get started.

Join over 807,865 other people just like you!

Latest posts

Staff online

Top