Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Windows update off and PC going very slow!


  • Please log in to reply
7 replies to this topic

#1 LucyGoosey

LucyGoosey

  • Members
  • 56 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:UK
  • Local time:08:44 PM

Posted 10 May 2011 - 05:45 AM

Hello,
Over the weekend the windows update function decided to give up. I've attempted to turn it back on but to no avail. I've run MBAM, super anti-spyware and spybot to try and clear any problems up. AVG has found nothing but super anti-spyware found a few things that nothing else did.
Can someone help me figure out what's going on as I am pretty much a noob to this kind of thing.
Thankyou!
Lucy

Edited by LucyGoosey, 10 May 2011 - 05:46 AM.


BC AdBot (Login to Remove)

 


#2 LucyGoosey

LucyGoosey
  • Topic Starter

  • Members
  • 56 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:UK
  • Local time:08:44 PM

Posted 11 May 2011 - 10:46 AM

Spotted this recommended by other people having the same problem, is it safe to use?

Start - Run

Paste in this command and click OK

%SYSTEMROOT%\SYSTEM32\REGSVR32.EXE %SYSTEMROOT%\SYSTEM32\WUAUENG.DLL

Open up IE - Tools - Windows Update



#3 cryptodan

cryptodan

    Bleepin Madman


  • Members
  • 21,868 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Catonsville, Md
  • Local time:08:44 PM

Posted 13 May 2011 - 04:55 AM

Can you post the logs from the scans you have ran?

#4 LucyGoosey

LucyGoosey
  • Topic Starter

  • Members
  • 56 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:UK
  • Local time:08:44 PM

Posted 13 May 2011 - 10:05 AM

Yes, here's the GMER log, MBAM showed nothing at all. I'm not sure where to find the SuperAntiSpyware log though.
Thankyou!

GMER 1.0.15.15627 - http://www.gmer.net
Rootkit scan 2011-05-10 11:31:28
Windows 5.1.2600 Service Pack 3 Harddisk1\DR1 -> \Device\Ide\IdeDeviceP2T0L0-19 MAXTOR_STM3250310AS rev.3.AAC
Running: 9dflyw59[1].exe; Driver: C:\DOCUME~1\Admin\LOCALS~1\Temp\kwxiykog.sys


---- System - GMER 1.0.15 ----

SSDT \??\C:\Program Files\Trusteer\Rapport\bin\RapportPG.sys (RapportPG/Trusteer Ltd.) ZwAssignProcessToJobObject [0xACAFEFC0]
SSDT \??\C:\Program Files\Trusteer\Rapport\bin\RapportPG.sys (RapportPG/Trusteer Ltd.) ZwCreateFile [0xACAFFA56]
SSDT \??\C:\Documents and Settings\All Users\Application Data\Trusteer\Rapport\store\exts\RapportCerberus\26169\RapportCerberus_26169.sys (RapportCerberus/Trusteer Ltd.) ZwCreateThread [0xB99C8DB6]
SSDT \??\C:\Documents and Settings\All Users\Application Data\Trusteer\Rapport\store\exts\RapportCerberus\26169\RapportCerberus_26169.sys (RapportCerberus/Trusteer Ltd.) ZwDeleteFile [0xB99C7E12]
SSDT \??\C:\Program Files\Trusteer\Rapport\bin\RapportPG.sys (RapportPG/Trusteer Ltd.) ZwDeleteKey [0xACB0327C]
SSDT \??\C:\Program Files\Trusteer\Rapport\bin\RapportPG.sys (RapportPG/Trusteer Ltd.) ZwDeleteValueKey [0xACB032AE]
SSDT \??\C:\Program Files\Trusteer\Rapport\bin\RapportPG.sys (RapportPG/Trusteer Ltd.) ZwLoadKey [0xACB03410]
SSDT \??\C:\Program Files\Trusteer\Rapport\bin\RapportPG.sys (RapportPG/Trusteer Ltd.) ZwOpenFile [0xACAFFB2C]
SSDT \??\C:\Program Files\AVG\AVG9\Identity Protection\Agent\Driver\Platform_XP\AVGIDSShim.sys (IDS Application Activity Monitor Loader Driver./AVG Technologies CZ, s.r.o. ) ZwOpenProcess [0xA9D39670]
SSDT \??\C:\Program Files\Trusteer\Rapport\bin\RapportPG.sys (RapportPG/Trusteer Ltd.) ZwOpenThread [0xACAFF2F6]
SSDT \??\C:\Program Files\Trusteer\Rapport\bin\RapportPG.sys (RapportPG/Trusteer Ltd.) ZwProtectVirtualMemory [0xACAFF428]
SSDT \??\C:\Program Files\Trusteer\Rapport\bin\RapportPG.sys (RapportPG/Trusteer Ltd.) ZwQueryValueKey [0xACB03386]
SSDT \??\C:\Program Files\Trusteer\Rapport\bin\RapportPG.sys (RapportPG/Trusteer Ltd.) ZwRenameKey [0xACB032F0]
SSDT \??\C:\Program Files\Trusteer\Rapport\bin\RapportPG.sys (RapportPG/Trusteer Ltd.) ZwReplaceKey [0xACB03322]
SSDT \??\C:\Program Files\Trusteer\Rapport\bin\RapportPG.sys (RapportPG/Trusteer Ltd.) ZwRestoreKey [0xACB03354]
SSDT \??\C:\Program Files\Trusteer\Rapport\bin\RapportPG.sys (RapportPG/Trusteer Ltd.) ZwSetContextThread [0xACAFEF66]
SSDT \??\C:\Documents and Settings\All Users\Application Data\Trusteer\Rapport\store\exts\RapportCerberus\26169\RapportCerberus_26169.sys (RapportCerberus/Trusteer Ltd.) ZwSetInformationFile [0xB99C7E86]
SSDT \??\C:\Documents and Settings\All Users\Application Data\Trusteer\Rapport\store\exts\RapportCerberus\26169\RapportCerberus_26169.sys (RapportCerberus/Trusteer Ltd.) ZwSetValueKey [0xB99C8C92]
SSDT \??\C:\Program Files\Trusteer\Rapport\bin\RapportPG.sys (RapportPG/Trusteer Ltd.) ZwSuspendThread [0xACAFEF02]
SSDT \??\C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS (SASKUTIL.SYS/SUPERAdBlocker.com and SUPERAntiSpyware.com) ZwTerminateProcess [0xACB59620]
SSDT \??\C:\Program Files\AVG\AVG9\Identity Protection\Agent\Driver\Platform_XP\AVGIDSShim.sys (IDS Application Activity Monitor Loader Driver./AVG Technologies CZ, s.r.o. ) ZwTerminateThread [0xA9D397C0]
SSDT \??\C:\Program Files\AVG\AVG9\Identity Protection\Agent\Driver\Platform_XP\AVGIDSShim.sys (IDS Application Activity Monitor Loader Driver./AVG Technologies CZ, s.r.o. ) ZwWriteVirtualMemory [0xA9D39860]

---- Kernel code sections - GMER 1.0.15 ----

PAGE ntkrnlpa.exe!ZwQueryValueKey + 349 8062265D 7 Bytes JMP BA756308
.text C:\WINDOWS\system32\DRIVERS\ati2mtag.sys section is writeable [0xB942F000, 0x27EFD7, 0xE8000020]

---- User code sections - GMER 1.0.15 ----

.text C:\Program Files\Trusteer\Rapport\bin\RapportMgmtService.exe[640] ntdll.dll!KiUserApcDispatcher 7C90E450 5 Bytes JMP 00414130 C:\Program Files\Trusteer\Rapport\bin\RapportMgmtService.exe (RapportMgmtService/Trusteer Ltd.)
.text C:\Program Files\Trusteer\Rapport\bin\RapportMgmtService.exe[640] kernel32.dll!LoadLibraryExW + C4 7C801BB9 4 Bytes CALL 71A70001
.text C:\Program Files\Trusteer\Rapport\bin\RapportMgmtService.exe[640] WS2_32.dll!getaddrinfo 71AB2A6F 5 Bytes JMP 71A10022
.text C:\Program Files\Trusteer\Rapport\bin\RapportMgmtService.exe[640] WS2_32.dll!gethostbyname 71AB5355 5 Bytes JMP 71AE0022
.text C:\Program Files\Trusteer\Rapport\bin\RapportService.exe[2496] ntdll.dll!KiUserApcDispatcher 7C90E450 5 Bytes JMP 0043EA30 C:\Program Files\Trusteer\Rapport\bin\RapportService.exe (RapportService/Trusteer Ltd.)
.text C:\Program Files\Trusteer\Rapport\bin\RapportService.exe[2496] kernel32.dll!LoadLibraryExW + C4 7C801BB9 4 Bytes CALL 71A80001
.text C:\Program Files\Trusteer\Rapport\bin\RapportService.exe[2496] USER32.dll!GetGUIThreadInfo + FB 7E428023 6 Bytes JMP 71AE001E
.text C:\Program Files\Trusteer\Rapport\bin\RapportService.exe[2496] WS2_32.dll!getaddrinfo 71AB2A6F 5 Bytes JMP 719E0022
.text C:\Program Files\Trusteer\Rapport\bin\RapportService.exe[2496] WS2_32.dll!gethostbyname 71AB5355 5 Bytes JMP 71A20022
.text C:\WINDOWS\system32\SearchIndexer.exe[4028] kernel32.dll!WriteFile 7C810E27 7 Bytes JMP 00585C0C C:\WINDOWS\system32\MSSRCH.DLL (mssrch.dll/Microsoft Corporation)

---- Devices - GMER 1.0.15 ----

AttachedDevice \FileSystem\Ntfs \Ntfs AVGIDSFilter.sys (IDS Application Activity Monitor Filter Driver./AVG Technologies CZ, s.r.o. )
AttachedDevice \Driver\Tcpip \Device\Ip avgtdix.sys (AVG Network connection watcher/AVG Technologies CZ, s.r.o.)
AttachedDevice \Driver\Tcpip \Device\Tcp avgtdix.sys (AVG Network connection watcher/AVG Technologies CZ, s.r.o.)
AttachedDevice \Driver\Tcpip \Device\Udp avgtdix.sys (AVG Network connection watcher/AVG Technologies CZ, s.r.o.)
AttachedDevice \Driver\Tcpip \Device\RawIp avgtdix.sys (AVG Network connection watcher/AVG Technologies CZ, s.r.o.)
AttachedDevice \FileSystem\Fastfat \Fat fltMgr.sys (Microsoft Filesystem Filter Manager/Microsoft Corporation)
AttachedDevice \FileSystem\Fastfat \Fat AVGIDSFilter.sys (IDS Application Activity Monitor Filter Driver./AVG Technologies CZ, s.r.o. )

---- EOF - GMER 1.0.15 ----

#5 LucyGoosey

LucyGoosey
  • Topic Starter

  • Members
  • 56 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:UK
  • Local time:08:44 PM

Posted 13 May 2011 - 11:17 AM

Found the Super anti spyware logs:

First one:
SUPERAntiSpyware Scan Log
http://www.superantispyware.com

Generated 05/09/2011 at 06:01 PM

Application Version : 4.52.1000

Core Rules Database Version : 5102
Trace Rules Database Version: 2914

Scan type : Complete Scan
Total Scan Time : 00:56:28

Memory items scanned : 556
Memory threats detected : 0
Registry items scanned : 6434
Registry threats detected : 1
File items scanned : 71340
File threats detected : 58

System.BrokenFileAssociation
HKCR\.exe

Adware.Tracking Cookie
C:\Documents and Settings\Admin\Cookies\admin@pcstats[2].txt
C:\Documents and Settings\Admin\Cookies\admin@atdmt[2].txt
C:\Documents and Settings\Admin\Cookies\admin@media6degrees[2].txt
C:\Documents and Settings\Admin\Cookies\admin@content.yieldmanager[1].txt
C:\Documents and Settings\Admin\Cookies\admin@interclick[1].txt
C:\Documents and Settings\Admin\Cookies\admin@invitemedia[2].txt
C:\Documents and Settings\Admin\Cookies\admin@collective-media[1].txt
C:\Documents and Settings\Admin\Cookies\admin@www.pcstats[1].txt
C:\Documents and Settings\Admin\Cookies\admin@atdmt.combing[2].txt
C:\Documents and Settings\Admin\Cookies\admin@microsoftwindows.112.2o7[1].txt
C:\Documents and Settings\Admin\Cookies\admin@ads.bleepingcomputer[2].txt
C:\Documents and Settings\Admin\Cookies\admin@mm.chitika[2].txt
C:\Documents and Settings\Admin\Cookies\admin@ad.yieldmanager[2].txt
C:\Documents and Settings\Admin\Cookies\admin@ads1.mumsnet[2].txt
adults-dvd.com [ C:\Documents and Settings\Admin\Application Data\Macromedia\Flash Player\#SharedObjects\KGA86TA7 ]
alotporn.com [ C:\Documents and Settings\Admin\Application Data\Macromedia\Flash Player\#SharedObjects\KGA86TA7 ]
banners.securedataimages.com [ C:\Documents and Settings\Admin\Application Data\Macromedia\Flash Player\#SharedObjects\KGA86TA7 ]
cdn.insights.gravity.com [ C:\Documents and Settings\Admin\Application Data\Macromedia\Flash Player\#SharedObjects\KGA86TA7 ]
cdn1.static.pornhub.phncdn.com [ C:\Documents and Settings\Admin\Application Data\Macromedia\Flash Player\#SharedObjects\KGA86TA7 ]
eu.media.blizzard.com [ C:\Documents and Settings\Admin\Application Data\Macromedia\Flash Player\#SharedObjects\KGA86TA7 ]
freeporn.youngleafs.com [ C:\Documents and Settings\Admin\Application Data\Macromedia\Flash Player\#SharedObjects\KGA86TA7 ]
gw.callingbanners.com [ C:\Documents and Settings\Admin\Application Data\Macromedia\Flash Player\#SharedObjects\KGA86TA7 ]
ia.media-imdb.com [ C:\Documents and Settings\Admin\Application Data\Macromedia\Flash Player\#SharedObjects\KGA86TA7 ]
media.gamespy.com [ C:\Documents and Settings\Admin\Application Data\Macromedia\Flash Player\#SharedObjects\KGA86TA7 ]
media.ign.com [ C:\Documents and Settings\Admin\Application Data\Macromedia\Flash Player\#SharedObjects\KGA86TA7 ]
media.scanscout.com [ C:\Documents and Settings\Admin\Application Data\Macromedia\Flash Player\#SharedObjects\KGA86TA7 ]
secure-us.imrworldwide.com [ C:\Documents and Settings\Admin\Application Data\Macromedia\Flash Player\#SharedObjects\KGA86TA7 ]
sickbleeptube.com [ C:\Documents and Settings\Admin\Application Data\Macromedia\Flash Player\#SharedObjects\KGA86TA7 ]
stat.easydate.biz [ C:\Documents and Settings\Admin\Application Data\Macromedia\Flash Player\#SharedObjects\KGA86TA7 ]
track.webgains.com [ C:\Documents and Settings\Admin\Application Data\Macromedia\Flash Player\#SharedObjects\KGA86TA7 ]
vidii.hardsextube.com [ C:\Documents and Settings\Admin\Application Data\Macromedia\Flash Player\#SharedObjects\KGA86TA7 ]
www.ahairytube.com [ C:\Documents and Settings\Admin\Application Data\Macromedia\Flash Player\#SharedObjects\KGA86TA7 ]
www.hometeenmovies.com [ C:\Documents and Settings\Admin\Application Data\Macromedia\Flash Player\#SharedObjects\KGA86TA7 ]
www.ipadporn.com [ C:\Documents and Settings\Admin\Application Data\Macromedia\Flash Player\#SharedObjects\KGA86TA7 ]
www.mofosex.com [ C:\Documents and Settings\Admin\Application Data\Macromedia\Flash Player\#SharedObjects\KGA86TA7 ]
www.naiadsystems.com [ C:\Documents and Settings\Admin\Application Data\Macromedia\Flash Player\#SharedObjects\KGA86TA7 ]
www.vintagesex.com [ C:\Documents and Settings\Admin\Application Data\Macromedia\Flash Player\#SharedObjects\KGA86TA7 ]
wwwstatic.megaporn.com [ C:\Documents and Settings\Admin\Application Data\Macromedia\Flash Player\#SharedObjects\KGA86TA7 ]
C:\Documents and Settings\Admin\Cookies\admin@admarketplace[1].txt
C:\Documents and Settings\Admin\Cookies\admin@bridge2.admarketplace[1].txt
C:\Documents and Settings\Admin\Cookies\admin@theclickcheck[2].txt
C:\Documents and Settings\NetworkService\Cookies\system@ad.yieldmanager[1].txt
C:\Documents and Settings\NetworkService\Cookies\system@ad.yieldmanager[2].txt
C:\Documents and Settings\NetworkService\Cookies\system@adecn[1].txt
C:\Documents and Settings\NetworkService\Cookies\system@ads.pubmatic[2].txt
C:\Documents and Settings\NetworkService\Cookies\system@ads.pubmatic[3].txt
C:\Documents and Settings\NetworkService\Cookies\system@advertise[2].txt
C:\Documents and Settings\NetworkService\Cookies\system@advertise[3].txt
C:\Documents and Settings\NetworkService\Cookies\system@clickpayz2.91491.blueseek[1].txt
C:\Documents and Settings\NetworkService\Cookies\system@clickpayz3.91491.blueseek[1].txt
C:\Documents and Settings\NetworkService\Cookies\system@clickpayz4.91491.blueseek[1].txt
C:\Documents and Settings\NetworkService\Cookies\system@clickpayz7.91491.blueseek[1].txt
C:\Documents and Settings\NetworkService\Cookies\system@content.yieldmanager[2].txt
C:\Documents and Settings\NetworkService\Cookies\system@content.yieldmanager[3].txt
C:\Documents and Settings\NetworkService\Cookies\system@media6degrees[2].txt
C:\Documents and Settings\NetworkService\Cookies\system@media6degrees[3].txt
C:\Documents and Settings\NetworkService\Cookies\system@rotator.adjuggler[1].txt
C:\Documents and Settings\NetworkService\Cookies\system@serving-sys[2].txt

Second one:
SUPERAntiSpyware Scan Log
http://www.superantispyware.com

Generated 05/13/2011 at 05:07 PM

Application Version : 4.52.1000

Core Rules Database Version : 7049
Trace Rules Database Version: 4861

Scan type : Complete Scan
Total Scan Time : 01:05:34

Memory items scanned : 601
Memory threats detected : 0
Registry items scanned : 6437
Registry threats detected : 1
File items scanned : 72296
File threats detected : 1

System.BrokenFileAssociation
HKCR\.exe

Adware.Tracking Cookie
C:\Documents and Settings\Admin\Cookies\admin@ads.bleepingcomputer[2].txt

Third one:
SUPERAntiSpyware Scan Log
http://www.superantispyware.com

Generated 06/21/2010 at 09:20 PM

Application Version : 4.39.1002

Core Rules Database Version : 5098
Trace Rules Database Version: 2910

Scan type : Complete Scan
Total Scan Time : 00:24:27

Memory items scanned : 606
Memory threats detected : 0
Registry items scanned : 7027
Registry threats detected : 0
File items scanned : 21074
File threats detected : 63

Adware.Tracking Cookie
C:\Documents and Settings\Admin\Cookies\admin@atdmt[2].txt
C:\Documents and Settings\Admin\Cookies\admin@server.lon.liveperson[3].txt
C:\Documents and Settings\Admin\Cookies\admin@server.lon.liveperson[4].txt
C:\Documents and Settings\Admin\Cookies\admin@atdmt[3].txt
C:\Documents and Settings\Admin\Cookies\admin@uk.at.atwola[2].txt
C:\Documents and Settings\Admin\Cookies\admin@atdmt[1].txt
C:\Documents and Settings\Admin\Cookies\admin@ad.yieldmanager[1].txt
C:\Documents and Settings\Admin\Cookies\admin@serving-sys[1].txt
C:\Documents and Settings\Admin\Cookies\admin@pornhub[1].txt
C:\Documents and Settings\Admin\Cookies\admin@atdmt[4].txt
atdmt.com [ C:\Documents and Settings\Admin\Application Data\Macromedia\Flash Player\#SharedObjects\KGA86TA7 ]
banners.securedataimages.com [ C:\Documents and Settings\Admin\Application Data\Macromedia\Flash Player\#SharedObjects\KGA86TA7 ]
bbca.channelfinder.net [ C:\Documents and Settings\Admin\Application Data\Macromedia\Flash Player\#SharedObjects\KGA86TA7 ]
broadcast.piximedia.fr [ C:\Documents and Settings\Admin\Application Data\Macromedia\Flash Player\#SharedObjects\KGA86TA7 ]
cdn-www.pornhub.com [ C:\Documents and Settings\Admin\Application Data\Macromedia\Flash Player\#SharedObjects\KGA86TA7 ]
cdn4.specificclick.net [ C:\Documents and Settings\Admin\Application Data\Macromedia\Flash Player\#SharedObjects\KGA86TA7 ]
cdn5.specificclick.net [ C:\Documents and Settings\Admin\Application Data\Macromedia\Flash Player\#SharedObjects\KGA86TA7 ]
cloud.video.unrulymedia.com [ C:\Documents and Settings\Admin\Application Data\Macromedia\Flash Player\#SharedObjects\KGA86TA7 ]
content.oddcast.com [ C:\Documents and Settings\Admin\Application Data\Macromedia\Flash Player\#SharedObjects\KGA86TA7 ]
ec.atdmt.com [ C:\Documents and Settings\Admin\Application Data\Macromedia\Flash Player\#SharedObjects\KGA86TA7 ]
googleads.g.doubleclick.net [ C:\Documents and Settings\Admin\Application Data\Macromedia\Flash Player\#SharedObjects\KGA86TA7 ]
ia.media-imdb.com [ C:\Documents and Settings\Admin\Application Data\Macromedia\Flash Player\#SharedObjects\KGA86TA7 ]
img-cdn.mediaplex.com [ C:\Documents and Settings\Admin\Application Data\Macromedia\Flash Player\#SharedObjects\KGA86TA7 ]
indieclick.3janecdn.com [ C:\Documents and Settings\Admin\Application Data\Macromedia\Flash Player\#SharedObjects\KGA86TA7 ]
interclick.com [ C:\Documents and Settings\Admin\Application Data\Macromedia\Flash Player\#SharedObjects\KGA86TA7 ]
m.uk.2mdn.net [ C:\Documents and Settings\Admin\Application Data\Macromedia\Flash Player\#SharedObjects\KGA86TA7 ]
m1.2mdn.net [ C:\Documents and Settings\Admin\Application Data\Macromedia\Flash Player\#SharedObjects\KGA86TA7 ]
m1.emea.2mdn.net [ C:\Documents and Settings\Admin\Application Data\Macromedia\Flash Player\#SharedObjects\KGA86TA7 ]
macromedia.com [ C:\Documents and Settings\Admin\Application Data\Macromedia\Flash Player\#SharedObjects\KGA86TA7 ]
media.entertonement.com [ C:\Documents and Settings\Admin\Application Data\Macromedia\Flash Player\#SharedObjects\KGA86TA7 ]
media.ign.com [ C:\Documents and Settings\Admin\Application Data\Macromedia\Flash Player\#SharedObjects\KGA86TA7 ]
media.jambocast.com [ C:\Documents and Settings\Admin\Application Data\Macromedia\Flash Player\#SharedObjects\KGA86TA7 ]
media.mtvnservices.com [ C:\Documents and Settings\Admin\Application Data\Macromedia\Flash Player\#SharedObjects\KGA86TA7 ]
media.podaddies.com [ C:\Documents and Settings\Admin\Application Data\Macromedia\Flash Player\#SharedObjects\KGA86TA7 ]
media.socialvibe.com [ C:\Documents and Settings\Admin\Application Data\Macromedia\Flash Player\#SharedObjects\KGA86TA7 ]
media.tattomedia.com [ C:\Documents and Settings\Admin\Application Data\Macromedia\Flash Player\#SharedObjects\KGA86TA7 ]
media1.break.com [ C:\Documents and Settings\Admin\Application Data\Macromedia\Flash Player\#SharedObjects\KGA86TA7 ]
naiadsystems.com [ C:\Documents and Settings\Admin\Application Data\Macromedia\Flash Player\#SharedObjects\KGA86TA7 ]
rmd.atdmt.com [ C:\Documents and Settings\Admin\Application Data\Macromedia\Flash Player\#SharedObjects\KGA86TA7 ]
s0.2mdn.net [ C:\Documents and Settings\Admin\Application Data\Macromedia\Flash Player\#SharedObjects\KGA86TA7 ]
secure-uk.imrworldwide.com [ C:\Documents and Settings\Admin\Application Data\Macromedia\Flash Player\#SharedObjects\KGA86TA7 ]
secure-us.imrworldwide.com [ C:\Documents and Settings\Admin\Application Data\Macromedia\Flash Player\#SharedObjects\KGA86TA7 ]
serving-sys.com [ C:\Documents and Settings\Admin\Application Data\Macromedia\Flash Player\#SharedObjects\KGA86TA7 ]
spe.atdmt.com [ C:\Documents and Settings\Admin\Application Data\Macromedia\Flash Player\#SharedObjects\KGA86TA7 ]
static.2mdn.net [ C:\Documents and Settings\Admin\Application Data\Macromedia\Flash Player\#SharedObjects\KGA86TA7 ]
uk.2mdn.net [ C:\Documents and Settings\Admin\Application Data\Macromedia\Flash Player\#SharedObjects\KGA86TA7 ]
www.adultswim.com [ C:\Documents and Settings\Admin\Application Data\Macromedia\Flash Player\#SharedObjects\KGA86TA7 ]
www.petsex.com [ C:\Documents and Settings\Admin\Application Data\Macromedia\Flash Player\#SharedObjects\KGA86TA7 ]
www.pornhub.com [ C:\Documents and Settings\Admin\Application Data\Macromedia\Flash Player\#SharedObjects\KGA86TA7 ]
www.trackitdown.net [ C:\Documents and Settings\Admin\Application Data\Macromedia\Flash Player\#SharedObjects\KGA86TA7 ]
media.podaddies.com [ C:\Documents and Settings\NetworkService\Application Data\Macromedia\Flash Player\#SharedObjects\JRA38MFZ ]
static.2mdn.net [ C:\Documents and Settings\NetworkService\Application Data\Macromedia\Flash Player\#SharedObjects\JRA38MFZ ]

Adware.Flash Tracking Cookie
C:\Documents and Settings\Admin\Application Data\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\KGA86TA7\SERVING-SYS.COM
C:\Documents and Settings\Admin\Application Data\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\KGA86TA7\IA.MEDIA-IMDB.COM
C:\Documents and Settings\Admin\Application Data\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\KGA86TA7\IMG-CDN.MEDIAPLEX.COM
C:\Documents and Settings\Admin\Application Data\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\KGA86TA7\MEDIA.ENTERTONEMENT.COM
C:\Documents and Settings\Admin\Application Data\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\KGA86TA7\MEDIA.IGN.COM
C:\Documents and Settings\Admin\Application Data\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\KGA86TA7\MEDIA.MTVNSERVICES.COM
C:\Documents and Settings\Admin\Application Data\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\KGA86TA7\MEDIA.PODADDIES.COM
C:\Documents and Settings\Admin\Application Data\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\KGA86TA7\MEDIA1.BREAK.COM
C:\Documents and Settings\Admin\Application Data\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\KGA86TA7\S0.2MDN.NET
C:\Documents and Settings\Admin\Application Data\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\KGA86TA7\STATIC.2MDN.NET
C:\Documents and Settings\Admin\Application Data\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\KGA86TA7\SECURE-US.IMRWORLDWIDE.COM

Todays scan, it is continuing to flag up the broken file association even though it isn't reporting it:
SUPERAntiSpyware Scan Log
http://www.superantispyware.com

Generated 06/22/2010 at 04:01 PM

Application Version : 4.39.1002

Core Rules Database Version : 5102
Trace Rules Database Version: 2914

Scan type : Quick Scan
Total Scan Time : 00:06:05

Memory items scanned : 621
Memory threats detected : 0
Registry items scanned : 1568
Registry threats detected : 0
File items scanned : 5811
File threats detected : 11

Adware.Tracking Cookie
C:\Documents and Settings\Admin\Cookies\admin@atdmt[2].txt
C:\Documents and Settings\NetworkService\Cookies\system@bizzclick[1].txt
C:\Documents and Settings\NetworkService\Cookies\system@uk.findstuff[2].txt
C:\Documents and Settings\NetworkService\Cookies\system@invitemedia[2].txt
C:\Documents and Settings\NetworkService\Cookies\system@trafficengine[1].txt
C:\Documents and Settings\NetworkService\Cookies\system@ads.pubmatic[1].txt
C:\Documents and Settings\NetworkService\Cookies\system@ad.yieldmanager[1].txt
C:\Documents and Settings\NetworkService\Cookies\system@content.yieldmanager[1].txt
C:\Documents and Settings\NetworkService\Cookies\system@serving-sys[1].txt
C:\Documents and Settings\NetworkService\Cookies\system@advertise[1].txt
C:\Documents and Settings\NetworkService\Cookies\system@bs.serving-sys[1].txt

#6 cryptodan

cryptodan

    Bleepin Madman


  • Members
  • 21,868 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Catonsville, Md
  • Local time:08:44 PM

Posted 13 May 2011 - 02:04 PM

Can you please update Super Anti-Spyware?

#7 LucyGoosey

LucyGoosey
  • Topic Starter

  • Members
  • 56 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:UK
  • Local time:08:44 PM

Posted 14 May 2011 - 09:17 AM

Updated and scanned again, here is the log:

SUPERAntiSpyware Scan Log
http://www.superantispyware.com

Generated 05/14/2011 at 03:07 PM

Application Version : 4.52.1000

Core Rules Database Version : 7056
Trace Rules Database Version: 4868

Scan type : Complete Scan
Total Scan Time : 01:42:49

Memory items scanned : 595
Memory threats detected : 0
Registry items scanned : 6436
Registry threats detected : 0
File items scanned : 72994
File threats detected : 0


It didn't mention the broken file association at all this time.
Thankyou!

#8 cryptodan

cryptodan

    Bleepin Madman


  • Members
  • 21,868 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Catonsville, Md
  • Local time:08:44 PM

Posted 14 May 2011 - 09:32 AM

Can you also post the mbam?




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users