Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Post Soywarequake


  • Please log in to reply
5 replies to this topic

#1 JCCK

JCCK

  • Members
  • 30 posts
  • OFFLINE
  •  
  • Local time:02:30 AM

Posted 04 December 2006 - 07:28 PM

Hello to the person helping me. My computer got infected with Spywarequake and now it is partially healthy. I say partially because when the person told me to run Panda online, it returned saying that my computer is infected with spyware and what not. So I just want someone to look at the returned log and tell me how to remove the junk, because there was no way for me to have the program do it.
Thanks in advance JCCK

P.S. I got the assistance from here using the Automated Removal Instructions.

Here is the log that I got when the Panda scan was complete:

Incident Status Location

Spyware:Cookie/Com.com Not disinfected C:\Documents and Settings\Casey\Application Data\Mozilla\Firefox\Profiles\3zhmbhwn.default\cookies.txt[.com.com/]
Spyware:Cookie/Atlas DMT Not disinfected C:\Documents and Settings\Casey\Application Data\Mozilla\Firefox\Profiles\3zhmbhwn.default\cookies.txt[.atdmt.com/]
Spyware:Cookie/Com.com Not disinfected C:\Documents and Settings\Casey\Application Data\Mozilla\Firefox\Profiles\3zhmbhwn.default\cookies.txt[.com.com/]
Spyware:Cookie/QuestionMarket Not disinfected C:\Documents and Settings\Casey\Application Data\Mozilla\Firefox\Profiles\3zhmbhwn.default\cookies.txt[.questionmarket.com/]
Spyware:Cookie/Mediaplex Not disinfected C:\Documents and Settings\Casey\Application Data\Mozilla\Firefox\Profiles\3zhmbhwn.default\cookies.txt[.mediaplex.com/]
Spyware:Cookie/Tribalfusion Not disinfected C:\Documents and Settings\Casey\Application Data\Mozilla\Firefox\Profiles\3zhmbhwn.default\cookies.txt[.tribalfusion.com/]
Spyware:Cookie/Doubleclick Not disinfected C:\Documents and Settings\Casey\Application Data\Mozilla\Firefox\Profiles\3zhmbhwn.default\cookies.txt[.doubleclick.net/]
Spyware:Cookie/Advertising Not disinfected C:\Documents and Settings\Casey\Application Data\Mozilla\Firefox\Profiles\3zhmbhwn.default\cookies.txt[.advertising.com/]
Spyware:Cookie/2o7 Not disinfected C:\Documents and Settings\Casey\Application Data\Mozilla\Firefox\Profiles\3zhmbhwn.default\cookies.txt[.2o7.net/]
Spyware:Cookie/FastClick Not disinfected C:\Documents and Settings\Casey\Application Data\Mozilla\Firefox\Profiles\3zhmbhwn.default\cookies.txt[.fastclick.net/]
Spyware:Cookie/Falkag Not disinfected C:\Documents and Settings\Casey\Application Data\Mozilla\Firefox\Profiles\3zhmbhwn.default\cookies.txt[.as-us.falkag.net/]
Spyware:Cookie/Server.iad.Liveperson Not disinfected C:\Documents and Settings\Casey\Application Data\Mozilla\Firefox\Profiles\3zhmbhwn.default\cookies.txt[server.iad.liveperson.net/hc/7895639]
Spyware:Cookie/Server.iad.Liveperson Not disinfected C:\Documents and Settings\Casey\Application Data\Mozilla\Firefox\Profiles\3zhmbhwn.default\cookies.txt[server.iad.liveperson.net/]
Spyware:Cookie/PointRoll Not disinfected C:\Documents and Settings\Casey\Application Data\Mozilla\Firefox\Profiles\3zhmbhwn.default\cookies.txt[.ads.pointroll.com/]
Spyware:Cookie/Serving-sys Not disinfected C:\Documents and Settings\Casey\Application Data\Mozilla\Firefox\Profiles\3zhmbhwn.default\cookies.txt[.serving-sys.com/]
Spyware:Cookie/YieldManager Not disinfected C:\Documents and Settings\Casey\Application Data\Mozilla\Firefox\Profiles\3zhmbhwn.default\cookies.txt[ad.yieldmanager.com/]
Spyware:Cookie/2o7 Not disinfected C:\Documents and Settings\Casey\Cookies\casey@2o7[1].txt
Spyware:Cookie/YieldManager Not disinfected C:\Documents and Settings\Casey\Cookies\casey@ad.yieldmanager[1].txt
Spyware:Cookie/PointRoll Not disinfected C:\Documents and Settings\Casey\Cookies\casey@ads.pointroll[1].txt
Spyware:Cookie/adultfriendfinder Not disinfected C:\Documents and Settings\Casey\Cookies\casey@adultfriendfinder[2].txt
Spyware:Cookie/Advertising Not disinfected C:\Documents and Settings\Casey\Cookies\casey@advertising[2].txt
Spyware:Cookie/Apmebf Not disinfected C:\Documents and Settings\Casey\Cookies\casey@apmebf[2].txt
Spyware:Cookie/Falkag Not disinfected C:\Documents and Settings\Casey\Cookies\casey@as-us.falkag[2].txt
Spyware:Cookie/Atlas DMT Not disinfected C:\Documents and Settings\Casey\Cookies\casey@atdmt[2].txt
Spyware:Cookie/Atwola Not disinfected C:\Documents and Settings\Casey\Cookies\casey@atwola[1].txt
Spyware:Cookie/Belnk Not disinfected C:\Documents and Settings\Casey\Cookies\casey@belnk[1].txt
Spyware:Cookie/Bfast Not disinfected C:\Documents and Settings\Casey\Cookies\casey@bfast[2].txt
Spyware:Cookie/Com.com Not disinfected C:\Documents and Settings\Casey\Cookies\casey@com[2].txt
Spyware:Cookie/Hitslink Not disinfected C:\Documents and Settings\Casey\Cookies\casey@counter.hitslink[1].txt
Spyware:Cookie/Doubleclick Not disinfected C:\Documents and Settings\Casey\Cookies\casey@doubleclick[1].txt
Spyware:Cookie/FastClick Not disinfected C:\Documents and Settings\Casey\Cookies\casey@fastclick[2].txt
Spyware:Cookie/Hitbox Not disinfected C:\Documents and Settings\Casey\Cookies\casey@hitbox[1].txt
Spyware:Cookie/Mediaplex Not disinfected C:\Documents and Settings\Casey\Cookies\casey@mediaplex[1].txt
Spyware:Cookie/Overture Not disinfected C:\Documents and Settings\Casey\Cookies\casey@overture[2].txt
Spyware:Cookie/Overture Not disinfected C:\Documents and Settings\Casey\Cookies\casey@perf.overture[1].txt
Spyware:Cookie/Hitbox Not disinfected C:\Documents and Settings\Casey\Cookies\casey@phg.hitbox[2].txt
Spyware:Cookie/QkSrv Not disinfected C:\Documents and Settings\Casey\Cookies\casey@qksrv[2].txt
Spyware:Cookie/QuestionMarket Not disinfected C:\Documents and Settings\Casey\Cookies\casey@questionmarket[1].txt
Spyware:Cookie/RealMedia Not disinfected C:\Documents and Settings\Casey\Cookies\casey@realmedia[2].txt
Spyware:Cookie/WUpd Not disinfected C:\Documents and Settings\Casey\Cookies\casey@revenue[1].txt
Spyware:Cookie/Searchportal Not disinfected C:\Documents and Settings\Casey\Cookies\casey@searchportal.information[1].txt
Spyware:Cookie/Serving-sys Not disinfected C:\Documents and Settings\Casey\Cookies\casey@serving-sys[1].txt
Spyware:Cookie/Statcounter Not disinfected C:\Documents and Settings\Casey\Cookies\casey@statcounter[1].txt
Spyware:Cookie/WebtrendsLive Not disinfected C:\Documents and Settings\Casey\Cookies\casey@statse.webtrendslive[1].txt
Spyware:Cookie/Traffic Marketplace Not disinfected C:\Documents and Settings\Casey\Cookies\casey@trafficmp[1].txt
Spyware:Cookie/Tribalfusion Not disinfected C:\Documents and Settings\Casey\Cookies\casey@tribalfusion[1].txt
Spyware:Cookie/BurstBeacon Not disinfected C:\Documents and Settings\Casey\Cookies\casey@www.burstbeacon[1].txt
Spyware:Cookie/Zedo Not disinfected C:\Documents and Settings\Casey\Cookies\casey@zedo[2].txt
Potentially unwanted tool:Application/Processor Not disinfected C:\Documents and Settings\Casey\Desktop\New Folder\smitRem\Process.exe
Potentially unwanted tool:Application/Processor Not disinfected C:\Documents and Settings\Casey\Desktop\New Folder\smitRem.exe[smitRem/Process.exe]
Potentially unwanted tool:Application/Processor Not disinfected C:\Documents and Settings\Casey\Local Settings\Application Data\Mozilla\Firefox\Profiles\3zhmbhwn.default\Cache\4906828Dd01[smitRem/Process.exe]
Adware:Adware/PestTrap Not disinfected C:\Documents and Settings\Casey\Local Settings\Temporary Internet Files\Content.IE5\LHPRDRMX\thesafetytool[1].htm
Spyware:Cookie/Zedo Not disinfected C:\Documents and Settings\Cory\Application Data\Mozilla\Firefox\Profiles\c7qsg4f8.default\cookies.txt[.zedo.com/]
Spyware:Cookie/Advertising Not disinfected C:\Documents and Settings\Cory\Application Data\Mozilla\Firefox\Profiles\c7qsg4f8.default\cookies.txt[.advertising.com/]
Spyware:Cookie/Zedo Not disinfected C:\Documents and Settings\Cory\Application Data\Mozilla\Firefox\Profiles\c7qsg4f8.default\cookies.txt[.zedo.com/]
Spyware:Cookie/2o7 Not disinfected C:\Documents and Settings\Cory\Application Data\Mozilla\Firefox\Profiles\c7qsg4f8.default\cookies.txt[.2o7.net/]
Spyware:Cookie/Advertising Not disinfected C:\Documents and Settings\Cory\Application Data\Mozilla\Firefox\Profiles\c7qsg4f8.default\cookies.txt[.advertising.com/]
Spyware:Cookie/Atlas DMT Not disinfected C:\Documents and Settings\Cory\Application Data\Mozilla\Firefox\Profiles\c7qsg4f8.default\cookies.txt[.atdmt.com/]
Spyware:Cookie/AdDynamix Not disinfected C:\Documents and Settings\Cory\Application Data\Mozilla\Firefox\Profiles\c7qsg4f8.default\cookies.txt[.ads.addynamix.com/]
Spyware:Cookie/RealMedia Not disinfected C:\Documents and Settings\Cory\Application Data\Mozilla\Firefox\Profiles\c7qsg4f8.default\cookies.txt[.247realmedia.com/]
Spyware:Cookie/Doubleclick Not disinfected C:\Documents and Settings\Cory\Application Data\Mozilla\Firefox\Profiles\c7qsg4f8.default\cookies.txt[.doubleclick.net/]
Spyware:Cookie/QuestionMarket Not disinfected C:\Documents and Settings\Cory\Application Data\Mozilla\Firefox\Profiles\c7qsg4f8.default\cookies.txt[.questionmarket.com/]
Spyware:Cookie/Atwola Not disinfected C:\Documents and Settings\Cory\Application Data\Mozilla\Firefox\Profiles\c7qsg4f8.default\cookies.txt[.atwola.com/]
Spyware:Cookie/Tribalfusion Not disinfected C:\Documents and Settings\Cory\Application Data\Mozilla\Firefox\Profiles\c7qsg4f8.default\cookies.txt[.tribalfusion.com/]
Spyware:Cookie/YieldManager Not disinfected C:\Documents and Settings\Cory\Application Data\Mozilla\Firefox\Profiles\c7qsg4f8.default\cookies.txt[ad.yieldmanager.com/]
Spyware:Cookie/Casalemedia Not disinfected C:\Documents and Settings\Cory\Application Data\Mozilla\Firefox\Profiles\c7qsg4f8.default\cookies.txt[.casalemedia.com/]
Spyware:Cookie/Overture Not disinfected C:\Documents and Settings\Cory\Application Data\Mozilla\Firefox\Profiles\c7qsg4f8.default\cookies.txt[.perf.overture.com/]
Spyware:Cookie/FastClick Not disinfected C:\Documents and Settings\Cory\Application Data\Mozilla\Firefox\Profiles\c7qsg4f8.default\cookies.txt[.fastclick.net/]
Spyware:Cookie/Adrevolver Not disinfected C:\Documents and Settings\Cory\Application Data\Mozilla\Firefox\Profiles\c7qsg4f8.default\cookies.txt[.adrevolver.com/]
Spyware:Cookie/Mediaplex Not disinfected C:\Documents and Settings\Cory\Application Data\Mozilla\Firefox\Profiles\c7qsg4f8.default\cookies.txt[.mediaplex.com/]
Spyware:Cookie/RealMedia Not disinfected C:\Documents and Settings\Cory\Application Data\Mozilla\Firefox\Profiles\c7qsg4f8.default\cookies.txt[.realmedia.com/]
Spyware:Cookie/Traffic Marketplace Not disinfected C:\Documents and Settings\Cory\Application Data\Mozilla\Firefox\Profiles\c7qsg4f8.default\cookies.txt[.trafficmp.com/]
Spyware:Cookie/PointRoll Not disinfected C:\Documents and Settings\Cory\Application Data\Mozilla\Firefox\Profiles\c7qsg4f8.default\cookies.txt[.ads.pointroll.com/]
Spyware:Cookie/Falkag Not disinfected C:\Documents and Settings\Cory\Application Data\Mozilla\Firefox\Profiles\c7qsg4f8.default\cookies.txt[.as-us.falkag.net/]
Spyware:Cookie/Serving-sys Not disinfected C:\Documents and Settings\Cory\Application Data\Mozilla\Firefox\Profiles\c7qsg4f8.default\cookies.txt[.serving-sys.com/]
Spyware:Cookie/2o7 Not disinfected C:\Documents and Settings\Cory\Cookies\cory@2o7[1].txt
Spyware:Cookie/Advertising Not disinfected C:\Documents and Settings\Cory\Cookies\cory@advertising[2].txt
Spyware:Cookie/Atlas DMT Not disinfected C:\Documents and Settings\Cory\Cookies\cory@atdmt[2].txt
Spyware:Cookie/Atwola Not disinfected C:\Documents and Settings\Cory\Cookies\cory@atwola[1].txt
Spyware:Cookie/Doubleclick Not disinfected C:\Documents and Settings\Cory\Cookies\cory@doubleclick[1].txt
Spyware:Cookie/Mediaplex Not disinfected C:\Documents and Settings\Cory\Cookies\cory@mediaplex[1].txt
Spyware:Cookie/Traffic Marketplace Not disinfected C:\Documents and Settings\Jesse\Application Data\Mozilla\Firefox\Profiles\5jl00skr.default\cookies.txt[.trafficmp.com/]
Spyware:Cookie/Doubleclick Not disinfected C:\Documents and Settings\Jesse\Application Data\Mozilla\Firefox\Profiles\5jl00skr.default\cookies.txt[.doubleclick.net/]
Spyware:Cookie/Traffic Marketplace Not disinfected C:\Documents and Settings\Jesse\Application Data\Mozilla\Firefox\Profiles\5jl00skr.default\cookies.txt[.trafficmp.com/]
Spyware:Cookie/Atlas DMT Not disinfected C:\Documents and Settings\Jesse\Application Data\Mozilla\Firefox\Profiles\5jl00skr.default\cookies.txt[.atdmt.com/]
Spyware:Cookie/QuestionMarket Not disinfected C:\Documents and Settings\Jesse\Application Data\Mozilla\Firefox\Profiles\5jl00skr.default\cookies.txt[.questionmarket.com/]
Spyware:Cookie/Advertising Not disinfected C:\Documents and Settings\Jesse\Application Data\Mozilla\Firefox\Profiles\5jl00skr.default\cookies.txt[.advertising.com/]
Spyware:Cookie/Mediaplex Not disinfected C:\Documents and Settings\Jesse\Application Data\Mozilla\Firefox\Profiles\5jl00skr.default\cookies.txt[.mediaplex.com/]
Spyware:Cookie/Com.com Not disinfected C:\Documents and Settings\Jesse\Application Data\Mozilla\Firefox\Profiles\5jl00skr.default\cookies.txt[.com.com/]
Spyware:Cookie/Hitbox Not disinfected C:\Documents and Settings\Jesse\Application Data\Mozilla\Firefox\Profiles\5jl00skr.default\cookies.txt[.ehg-dig.hitbox.com/]
Spyware:Cookie/Go Not disinfected C:\Documents and Settings\Jesse\Application Data\Mozilla\Firefox\Profiles\5jl00skr.default\cookies.txt[.go.com/]
Spyware:Cookie/Hitbox Not disinfected C:\Documents and Settings\Jesse\Application Data\Mozilla\Firefox\Profiles\5jl00skr.default\cookies.txt[.hitbox.com/]
Spyware:Cookie/Go Not disinfected C:\Documents and Settings\Jesse\Application Data\Mozilla\Firefox\Profiles\5jl00skr.default\cookies.txt[.go.com/]
Spyware:Cookie/Serving-sys Not disinfected C:\Documents and Settings\Jesse\Application Data\Mozilla\Firefox\Profiles\5jl00skr.default\cookies.txt[.serving-sys.com/]
Spyware:Cookie/Serving-sys Not disinfected C:\Documents and Settings\Jesse\Application Data\Mozilla\Firefox\Profiles\5jl00skr.default\cookies.txt[.bs.serving-sys.com/]
Spyware:Cookie/Serving-sys Not disinfected C:\Documents and Settings\Jesse\Application Data\Mozilla\Firefox\Profiles\5jl00skr.default\cookies.txt[.serving-sys.com/]
Spyware:Cookie/PointRoll Not disinfected C:\Documents and Settings\Jesse\Application Data\Mozilla\Firefox\Profiles\5jl00skr.default\cookies.txt[.ads.pointroll.com/]
Spyware:Cookie/Tribalfusion Not disinfected C:\Documents and Settings\Jesse\Application Data\Mozilla\Firefox\Profiles\5jl00skr.default\cookies.txt[.tribalfusion.com/]
Spyware:Cookie/2o7 Not disinfected C:\Documents and Settings\Jesse\Application Data\Mozilla\Firefox\Profiles\5jl00skr.default\cookies.txt[.2o7.net/]
Spyware:Cookie/RealMedia Not disinfected C:\Documents and Settings\Jesse\Application Data\Mozilla\Firefox\Profiles\5jl00skr.default\cookies.txt[.realmedia.com/]
Spyware:Cookie/YieldManager Not disinfected C:\Documents and Settings\Jesse\Application Data\Mozilla\Firefox\Profiles\5jl00skr.default\cookies.txt[ad.yieldmanager.com/]
Spyware:Cookie/YieldManager Not disinfected C:\Documents and Settings\Jesse\Application Data\Mozilla\Firefox\Profiles\5jl00skr.default\cookies.txt[.ad.yieldmanager.com/]
Spyware:Cookie/RealMedia Not disinfected C:\Documents and Settings\Jesse\Application Data\Mozilla\Firefox\Profiles\5jl00skr.default\cookies.txt[.realmedia.com/]
Spyware:Cookie/FastClick Not disinfected C:\Documents and Settings\Jesse\Application Data\Mozilla\Firefox\Profiles\5jl00skr.default\cookies.txt[.fastclick.net/]
Spyware:Cookie/2o7 Not disinfected C:\Documents and Settings\Jesse\Cookies\jesse@2o7[2].txt
Spyware:Cookie/YieldManager Not disinfected C:\Documents and Settings\Jesse\Cookies\jesse@ad.yieldmanager[2].txt
Spyware:Cookie/Atlas DMT Not disinfected C:\Documents and Settings\Jesse\Cookies\jesse@atdmt[2].txt
Spyware:Cookie/Doubleclick Not disinfected C:\Documents and Settings\Jesse\Cookies\jesse@doubleclick[1].txt
Spyware:Cookie/Mediaplex Not disinfected C:\Documents and Settings\Jesse\Cookies\jesse@mediaplex[1].txt
Spyware:Cookie/QuestionMarket Not disinfected C:\Documents and Settings\Jesse\Cookies\jesse@questionmarket[1].txt
Spyware:Cookie/Traffic Marketplace Not disinfected C:\Documents and Settings\Jesse\Cookies\jesse@trafficmp[1].txt
Spyware:Cookie/Hitbox Not disinfected C:\Documents and Settings\Mom\Application Data\Mozilla\Firefox\Profiles\cthgpvj7.default\cookies.txt[.hitbox.com/]
Spyware:Cookie/2o7 Not disinfected C:\Documents and Settings\Mom\Application Data\Mozilla\Firefox\Profiles\cthgpvj7.default\cookies.txt[.2o7.net/]
Spyware:Cookie/WebtrendsLive Not disinfected C:\Documents and Settings\Mom\Application Data\Mozilla\Firefox\Profiles\cthgpvj7.default\cookies.txt[statse.webtrendslive.com/]
Spyware:Cookie/YieldManager Not disinfected C:\Documents and Settings\Mom\Application Data\Mozilla\Firefox\Profiles\cthgpvj7.default\cookies.txt[ad.yieldmanager.com/]
Spyware:Cookie/Doubleclick Not disinfected C:\Documents and Settings\Mom\Application Data\Mozilla\Firefox\Profiles\cthgpvj7.default\cookies.txt[.doubleclick.net/]
Spyware:Cookie/Coremetrics Not disinfected C:\Documents and Settings\Mom\Application Data\Mozilla\Firefox\Profiles\cthgpvj7.default\cookies.txt[data.coremetrics.com/]
Spyware:Cookie/Atlas DMT Not disinfected C:\Documents and Settings\Mom\Application Data\Mozilla\Firefox\Profiles\cthgpvj7.default\cookies.txt[.atdmt.com/]
Spyware:Cookie/Server.iad.Liveperson Not disinfected C:\Documents and Settings\Mom\Application Data\Mozilla\Firefox\Profiles\cthgpvj7.default\cookies.txt[server.iad.liveperson.net/hc/23635342]
Spyware:Cookie/Server.iad.Liveperson Not disinfected C:\Documents and Settings\Mom\Application Data\Mozilla\Firefox\Profiles\cthgpvj7.default\cookies.txt[server.iad.liveperson.net/]
Spyware:Cookie/Server.iad.Liveperson Not disinfected C:\Documents and Settings\Mom\Application Data\Mozilla\Firefox\Profiles\cthgpvj7.default\cookies.txt[server.iad.liveperson.net/hc/23635342]
Spyware:Cookie/Server.iad.Liveperson Not disinfected C:\Documents and Settings\Mom\Application Data\Mozilla\Firefox\Profiles\cthgpvj7.default\cookies.txt[server.iad.liveperson.net/]
Spyware:Cookie/Overture Not disinfected C:\Documents and Settings\Mom\Application Data\Mozilla\Firefox\Profiles\cthgpvj7.default\cookies.txt[.perf.overture.com/]
Spyware:Cookie/RealMedia Not disinfected C:\Documents and Settings\Mom\Application Data\Mozilla\Firefox\Profiles\cthgpvj7.default\cookies.txt[.realmedia.com/]
Spyware:Cookie/Traffic Marketplace Not disinfected C:\Documents and Settings\Mom\Application Data\Mozilla\Firefox\Profiles\cthgpvj7.default\cookies.txt[.trafficmp.com/]
Spyware:Cookie/FastClick Not disinfected C:\Documents and Settings\Mom\Application Data\Mozilla\Firefox\Profiles\cthgpvj7.default\cookies.txt[.fastclick.net/]
Potentially unwanted tool:Application/Processor

BC AdBot (Login to Remove)

 


#2 quietman7

quietman7

    Bleepin' Janitor


  • Global Moderator
  • 51,482 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Virginia, USA
  • Local time:03:30 AM

Posted 04 December 2006 - 08:05 PM

You can delete the smitRem folder. Certain files that are part of the tool, such as process.exe are detected by some antivirus programs as a "RiskTool", "Hacking tool, or "Potentially unwanted". Process.exe is not a virus, but a program used to stop system processes. Anti-virus programs cannot distinguish between "good" and "malicious" use of such programs, therefore they may alert the user. Potentially unwanted does not necessarily mean the file is malware or a bad program. It means it has the potential for being misused by others.

The rest of the log entries are related to cookies/temp Internet files. Go ahead and download ATF Cleaner by Atribune. (This program is for XP and Windows 2000 only)
Double-click ATF-Cleaner.exe to run the program.
  • Under Main "Select Files to Delete" choose: Select All.
  • Click the Empty Selected button.
  • If you use Firefox browser click Firefox at the top and choose: Select All
  • Click the Empty Selected button.
    NOTE: If you would like to keep your saved passwords, please click No at the prompt.
  • If you use Opera browser click Opera at the top and choose: Select All
  • Click the Empty Selected button.
    NOTE: If you would like to keep your saved passwords, please click No at the prompt.
  • Click Exit on the Main menu to close the program.

.
.
Windows Insider MVP 2017-2018
Microsoft MVP Reconnect 2016
Microsoft MVP Consumer Security 2007-2015 kO7xOZh.gif
Member of UNITE, Unified Network of Instructors and Trusted Eliminators

If I have been helpful & you'd like to consider a donation, click 38WxTfO.gif

#3 JCCK

JCCK
  • Topic Starter

  • Members
  • 30 posts
  • OFFLINE
  •  
  • Local time:02:30 AM

Posted 04 December 2006 - 09:31 PM

Also another small problem that I found is that the junk downloaded a bar in Internet Explorer called protection bar, and also when I started IE, my normal homepage did not show up. So I used used IE(No add-ons) and every thing was normal, so I went in to normal IE and disabled two add-ones the first one is called "Protection Bar" and the other one is "{1A1DDc19-5893-43AB-A73F-F41A0F34D115}" which I found our is the other homepage that the URL was hxxp://thesafetytool.com. The reason that I am telling you this is if there is any way to remove these "add-ons" from my computer, and if the Panda activescaner is detecting these as something wrong? Also should I perform another Panda scan to find out if there is anything else that is wrong?

P.S. I use IE7 if you were wondering.

(Mod edit) to disable link.

Edited by quietman7, 05 December 2006 - 07:15 AM.


#4 quietman7

quietman7

    Bleepin' Janitor


  • Global Moderator
  • 51,482 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Virginia, USA
  • Local time:03:30 AM

Posted 05 December 2006 - 07:15 AM

Internet Explorer Add-ons
Internet Explorer Add-ons (VISTA): FAQs
IE Add-on Management
Troubleshooting Add-ons
Remove IE add-ons with ToolbarCop
Remove IE add-ons with WinPatrol
Some Add-ons can be removed via "Add/Remove Programs" in Control Panel so start there first.
.
.
Windows Insider MVP 2017-2018
Microsoft MVP Reconnect 2016
Microsoft MVP Consumer Security 2007-2015 kO7xOZh.gif
Member of UNITE, Unified Network of Instructors and Trusted Eliminators

If I have been helpful & you'd like to consider a donation, click 38WxTfO.gif

#5 JCCK

JCCK
  • Topic Starter

  • Members
  • 30 posts
  • OFFLINE
  •  
  • Local time:02:30 AM

Posted 05 December 2006 - 04:13 PM

Ok thank you, everything is back to normal.

#6 quietman7

quietman7

    Bleepin' Janitor


  • Global Moderator
  • 51,482 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Virginia, USA
  • Local time:03:30 AM

Posted 05 December 2006 - 07:58 PM

Your welcome.

Now the last thing to do is SET A NEW RESTORE POINT to prevent reinfection from an old restore point. Any malware you picked up could have been saved in System Restore. Since System Restore is a protected directory, your tools can not access it to delete these bad files which can reinfect your system. Setting a new restore point AFTER cleaning your system will help prevent this and enable your computer to "roll-back" to a clean working state.

The easiest and safest way to set a new RESTORE POINT:
1. Go to Start > Programs > Accessories > System Tools and click "System Restore".
2. Choose the radio button marked "Create a Restore Point" on the first screen then click "Next". Give the R.P. a name then click "Create". The new point will be stamped with the current date and time. Keep a log of this so you can find it easily should you need to use System Restore.
3. Then go to Start > Run and type: Cleanmgr
4. Click "OK".
5. Click the "More Options" Tab.
6. Click "Clean Up" in the System Restore section to remove all previous restore points except the newly created one.

To protect yourself against malware and reduce the potential for re-infection, read:
"Malware Prevention - Preventing Re-infection".
"Simple and easy ways to keep your computer safe".
"The Ten Most Dangerous Things Users Do Online".
.
.
Windows Insider MVP 2017-2018
Microsoft MVP Reconnect 2016
Microsoft MVP Consumer Security 2007-2015 kO7xOZh.gif
Member of UNITE, Unified Network of Instructors and Trusted Eliminators

If I have been helpful & you'd like to consider a donation, click 38WxTfO.gif




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users