Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Windows Vista 32


  • Please log in to reply
1 reply to this topic

#1 Zuragent

Zuragent

  • Members
  • 4 posts
  • OFFLINE
  •  
  • Local time:06:51 AM

Posted 19 December 2007 - 07:11 AM

OK, now im by no means a computer geek. I have a brand new computer HP. I just dropped Symentec Anti-virus. It let in a virus TROJAN. I am now running AVG. It verifies the trojan, quarentines it, says it removed it but when i run Ad aware i have this, please help, i cant do too much other than run these programs and hope they can clear my problem, so far the programs havent removed as far as i can see.--------------------------------------------------------------------------------------------------------------------------[600000187] Browser: Internet Explorer Cookie: C:\Users\Michelle and Ryan\AppData\Roaming\Microsoft\Windows\Cookies\Low\\index.dat advertising.com ACID /
[600000187] Browser: Internet Explorer Cookie: C:\Users\Michelle and Ryan\AppData\Roaming\Microsoft\Windows\Cookies\Low\\index.dat advertising.com BASE /
[600000187] Browser: Internet Explorer Cookie: C:\Users\Michelle and Ryan\AppData\Roaming\Microsoft\Windows\Cookies\Low\\index.dat advertising.com F1 /
[600000187] Browser: Internet Explorer Cookie: C:\Users\Michelle and Ryan\AppData\Roaming\Microsoft\Windows\Cookies\Low\\index.dat advertising.com C2 /
[600000187] Browser: Internet Explorer Cookie: C:\Users\Michelle and Ryan\AppData\Roaming\Microsoft\Windows\Cookies\Low\\index.dat advertising.com ROLL /
[600000190] Browser: Internet Explorer Cookie: C:\Users\Michelle and Ryan\AppData\Roaming\Microsoft\Windows\Cookies\Low\\index.dat www.googleadservices.com Conversion /pagead/conversion/1065273189/
[600000415] Browser: Internet Explorer Cookie: C:\Users\Michelle and Ryan\AppData\Roaming\Microsoft\Windows\Cookies\Low\\index.dat revsci.net NETID01 /
[600000415] Browser: Internet Explorer Cookie: C:\Users\Michelle and Ryan\AppData\Roaming\Microsoft\Windows\Cookies\Low\\index.dat revsci.net NETSEGS_J05532 /
[600000415] Browser: Internet Explorer Cookie: C:\Users\Michelle and Ryan\AppData\Roaming\Microsoft\Windows\Cookies\Low\\index.dat revsci.net rsi_segs_1000000 /
[600000073] Browser: Internet Explorer Cookie: C:\Users\Michelle and Ryan\AppData\Roaming\Microsoft\Windows\Cookies\Low\\index.dat specificclick.net dmc /
[600000073] Browser: Internet Explorer Cookie: C:\Users\Michelle and Ryan\AppData\Roaming\Microsoft\Windows\Cookies\Low\\index.dat specificclick.net dmk /
[600000073] Browser: Internet Explorer Cookie: C:\Users\Michelle and Ryan\AppData\Roaming\Microsoft\Windows\Cookies\Low\\index.dat specificclick.net smc /
[600000073] Browser: Internet Explorer Cookie: C:\Users\Michelle and Ryan\AppData\Roaming\Microsoft\Windows\Cookies\Low\\index.dat specificclick.net smk /
[600000073] Browser: Internet Explorer Cookie: C:\Users\Michelle and Ryan\AppData\Roaming\Microsoft\Windows\Cookies\Low\\index.dat specificclick.net dmp /
[600000073] Browser: Internet Explorer Cookie: C:\Users\Michelle and Ryan\AppData\Roaming\Microsoft\Windows\Cookies\Low\\index.dat specificclick.net smx /
[600000555] Browser: Internet Explorer Cookie: C:\Users\Michelle and Ryan\AppData\Roaming\Microsoft\Windows\Cookies\Low\\index.dat insightexpressai.com IXAIBanners898 /
[600000555] Browser: Internet Explorer Cookie: C:\Users\Michelle and Ryan\AppData\Roaming\Microsoft\Windows\Cookies\Low\\index.dat insightexpressai.com IXAIBannerCounter25811 /
[600000555] Browser: Internet Explorer Cookie: C:\Users\Michelle and Ryan\AppData\Roaming\Microsoft\Windows\Cookies\Low\\index.dat insightexpressai.com IXAIFirstHit898 /
[600000555] Browser: Internet Explorer Cookie: C:\Users\Michelle and Ryan\AppData\Roaming\Microsoft\Windows\Cookies\Low\\index.dat insightexpressai.com IXAILastHit898 /
[600000555] Browser: Internet Explorer Cookie: C:\Users\Michelle and Ryan\AppData\Roaming\Microsoft\Windows\Cookies\Low\\index.dat insightexpressai.com IXAICampaignCounter898 /
[600000447] Browser: Internet Explorer Cookie: C:\Users\Michelle and Ryan\AppData\Roaming\Microsoft\Windows\Cookies\Low\\index.dat apmebf.com S /
[600000447] Browser: Internet Explorer Cookie: C:\Users\Michelle and Ryan\AppData\Roaming\Microsoft\Windows\Cookies\Low\\index.dat apmebf.com LCLK /
[600000415] Browser: Internet Explorer Cookie: C:\Users\Michelle and Ryan\AppData\Roaming\Microsoft\Windows\Cookies\Low\\index.dat ads.revsci.net rsi_us_1000000 /adserver
[600000173] Browser: Internet Explorer Cookie: C:\Users\Michelle and Ryan\AppData\Roaming\Microsoft\Windows\Cookies\Low\\index.dat bluestreak.com id /
[600000144] Browser: Internet Explorer Cookie: C:\Users\Michelle and Ryan\AppData\Roaming\Microsoft\Windows\Cookies\Low\\index.dat doubleclick.net id /
[600000304] Browser: Internet Explorer Cookie: C:\Users\Michelle and Ryan\AppData\Roaming\Microsoft\Windows\Cookies\Low\\index.dat xos.adbureau.net GUID /
[600000400] Browser: Internet Explorer Cookie: C:\Users\Michelle and Ryan\AppData\Roaming\Microsoft\Windows\Cookies\Low\\index.dat anad.tacoda.net /PC /
[600000212] Browser: Internet Explorer Cookie: C:\Users\Michelle and Ryan\AppData\Roaming\Microsoft\Windows\Cookies\Low\\index.dat 2o7.net s_vi_hfejfddld /
[600000212] Browser: Internet Explorer Cookie: C:\Users\Michelle and Ryan\AppData\Roaming\Microsoft\Windows\Cookies\Low\\index.dat 2o7.net s_vi_gijupe /
[600000212] Browser: Internet Explorer Cookie: C:\Users\Michelle and Ryan\AppData\Roaming\Microsoft\Windows\Cookies\Low\\index.dat 2o7.net s_vi_mcx60x7Fbx7Fx7Fekbeb /
[600000212] Browser: Internet Explorer Cookie: C:\Users\Michelle and Ryan\AppData\Roaming\Microsoft\Windows\Cookies\Low\\index.dat 2o7.net s_vi_kefkcggkcf /
[600000073] Browser: Internet Explorer Cookie: C:\Users\Michelle and Ryan\AppData\Roaming\Microsoft\Windows\Cookies\Low\\index.dat adopt.specificclick.net DMEXP /
[600000073] Browser: Internet Explorer Cookie: C:\Users\Michelle and Ryan\AppData\Roaming\Microsoft\Windows\Cookies\Low\\index.dat adopt.specificclick.net CTCI /
[600000073] Browser: Internet Explorer Cookie: C:\Users\Michelle and Ryan\AppData\Roaming\Microsoft\Windows\Cookies\Low\\index.dat adopt.specificclick.net HS /
[600000073] Browser: Internet Explorer Cookie: C:\Users\Michelle and Ryan\AppData\Roaming\Microsoft\Windows\Cookies\Low\\index.dat adopt.specificclick.net DGI /
[600000073] Browser: Internet Explorer Cookie: C:\Users\Michelle and Ryan\AppData\Roaming\Microsoft\Windows\Cookies\Low\\index.dat adopt.specificclick.net UI /
[600000161] Browser: Internet Explorer Cookie: C:\Users\Michelle and Ryan\AppData\Roaming\Microsoft\Windows\Cookies\Low\\index.dat s.clickability.com ld /
[600000161] Browser: Internet Explorer Cookie: C:\Users\Michelle and Ryan\AppData\Roaming\Microsoft\Windows\Cookies\Low\\index.dat s.clickability.com vid /
[600000332] Browser: Internet Explorer Cookie: C:\Users\Michelle and Ryan\AppData\Roaming\Microsoft\Windows\Cookies\Low\\index.dat edge.ru4.com ru4.uid /
[600000332] Browser: Internet Explorer Cookie: C:\Users\Michelle and Ryan\AppData\Roaming\Microsoft\Windows\Cookies\Low\\index.dat edge.ru4.com ru4.224.track /

9999 MRU Object MRU Object 0
[1] MRU Path: C:\Users\Michelle and Ryan\AppData\Roaming\Microsoft\Windows\Recent Count: 160
[3] MRU Registry Key: S-1-5-21-4141104551-1320374887-3093215415-1000\Software\Microsoft\Internet Explorer\TypedURLs Count: 4

from adaware utility, thank you for any help

BC AdBot (Login to Remove)

 


m

#2 Jacee

Jacee

    Bleeping around


  • Malware Response Team
  • 3,714 posts
  • OFFLINE
  •  
  • Gender:Female
  • Local time:03:51 AM

Posted 19 December 2007 - 10:21 AM

What is the Trojan that AVG finds and quarantines?

The list from Ad-aware is cookies....you can clean them by downloading ATF Cleaner
http://www.geekstogo.com/forum/index.php?a...amp;showfile=21
or
http://www.atribune.org/content/view/19/2/
Click "Main" > check everything except 'prefetch' this first time using it, then click "Empty Selected". Do the same for FireFox or Opera if you use either of those browsers.

MS_MVP.gif
MS MVP Windows-Security 2006-2016
Member of UNITE, the Unified Network of Instructors and Trusted Eliminators

Admin PC Pitstop





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users