Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Celldorado Etc Pop-ups


  • This topic is locked This topic is locked
2 replies to this topic

#1 Tripe_Fairy

Tripe_Fairy

  • Members
  • 1 posts
  • OFFLINE
  •  
  • Local time:05:01 AM

Posted 05 July 2007 - 09:08 AM

I have several "free" products and mobile phone pop-ups that I'm trying to get rid of.



My Hijackthis:
Logfile of HijackThis v1.99.1
Scan saved at 13:46:30, on 05/07/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\LEXBCES.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\LEXPPS.EXE
C:\WINDOWS\system32\WgaTray.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\WINDOWS\System32\Atievxx.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\wltrysvc.exe
C:\WINDOWS\System32\bcmwltry.exe
C:\WINDOWS\system32\wscntfy.exe
C:\WINDOWS\System32\wltray.exe
C:\Program Files\Java\jre1.6.0_01\bin\jusched.exe
C:\Program Files\Lexmark X1100 Series\lxbkbmgr.exe
C:\Program Files\Common Files\DriveCleaner Free\udcsdr.exe
C:\Program Files\Common Files\DriveCleaner Free\udcpas.exe
C:\Program Files\Lexmark X1100 Series\lxbkbmon.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\MSN Messenger\MsnMsgr.Exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\MSN Messenger\usnsvc.exe
C:\Documents and Settings\No 1 User\Local Settings\Temporary Internet Files\Content.IE5\ZZFODHPP\VundoFix[1].exe
C:\Program Files\Hijackthis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.myspace.com/
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O4 - HKLM\..\Run: [wltray.exe] C:\WINDOWS\System32\wltray.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_01\bin\jusched.exe"
O4 - HKLM\..\Run: [Lexmark X1100 Series] "C:\Program Files\Lexmark X1100 Series\lxbkbmgr.exe"
O4 - HKLM\..\Run: [SDR6_Check] "C:\Program Files\Common Files\DriveCleaner Free\udcsdr.exe"
O4 - HKLM\..\Run: [PAS_Check] "C:\Program Files\Common Files\DriveCleaner Free\udcpas.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [rtasks] C:\Program Files\AVSystemCare\rtasks.exe
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O12 - Plugin for .spop: C:\Program Files\Internet Explorer\Plugins\NPDocBox.dll
O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab31267.cab
O16 - DPF: {05CA9FB0-3E3E-4B36-BF41-0E3A5CAA8CD8} (Office Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=58813
O16 - DPF: {0742B9EF-8C83-41CA-BFBA-830A59E23533} (Microsoft Data Collection Control) - https://support.microsoft.com/OAS/ActiveX/MSDcode.cab
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204
O16 - DPF: {1E3F1348-4370-4BBE-A67A-CC7ED824CA85} (Microsoft Genuine Advantage Self Support Tool) - http://go.microsoft.com/fwlink/?LinkId=82580
O16 - DPF: {406B5949-7190-4245-91A9-30A17DE16AD0} (Snapfish Activia) - http://www1.snapfish.co.uk/SnapfishUKActivia.cab
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://by109fd.bay109.hotmail.msn.com/resources/MsnPUpld.cab
O16 - DPF: {4F5E4276-C120-11D6-A1FD-00508B9D48EA} (dldisplay Class) - http://www.gamehouse.com/ghdlctl.cab
O16 - DPF: {5F8469B4-B055-49DD-83F7-62B522420ECC} (Facebook Photo Uploader Control) - http://upload.facebook.com/controls/Facebo...otoUploader.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/microsoftupdat...b?1172004267088
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftupdat...b?1172004056555
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/Messe...nt.cab31267.cab
O16 - DPF: {BF6BBE9A-0656-4598-A0CD-32DAC03959B5} (Image Uploader 3.0 Control) - https://www.tescophoto.com/wpp/tesco/app/opcuploader.cab
O16 - DPF: {D1548A26-B8F6-4E86-AE74-E7062CCC2E2A} (igLoader Content on Demand) - http://www.miniclip.com/igloader/igloader.CAB
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: LexBce Server (LexBceS) - Lexmark International, Inc. - C:\WINDOWS\system32\LEXBCES.EXE
O23 - Service: Broadcom Wireless LAN Tray Service (wltrysvc) - Unknown owner - C:\WINDOWS\System32\wltrysvc.exe




My ComboFix:
"No 1 User" - 2007-07-05 14:00:18 - ComboFix 07-07-04.4 - Service Pack 2


((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))


C:\DOCUME~1\ALLUSE~1\APPLIC~1.\TEMP
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware349
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware349\buttons\ebaykeyword.bmp
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware349\buttons\ebaykeyword.png
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware349\buttons\ebaysearch.bmp
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware349\buttons\ebaysearch.png
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware349\buttons\FindIt.bmp
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware349\buttons\FindItHot.bmp
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware349\buttons\findithotxp.png
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware349\buttons\finditxp.png
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware349\buttons\Highlight.bmp
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware349\buttons\HighlightHot.bmp
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware349\buttons\highlighthotxp.png
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware349\buttons\highlightxp.png
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware349\buttons\Reference.bmp
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware349\buttons\ReferenceHot.bmp
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware349\buttons\referencehotxp.png
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware349\buttons\referencexp.png
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware349\buttons\starware_toolbar_icon.bmp
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware349\buttons\Weather.bmp
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware349\buttons\weatherhotxp.png
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware349\buttons\weatherxp.png
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware349\contexts\error.xml
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware349\contexts\related.xml
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware349\contexts\travel.xml
C:\DOCUME~1\NO1USE~1\APPLIC~1.\AVSystemCare
C:\DOCUME~1\NO1USE~1\APPLIC~1.\AVSystemCare\avtasks.dat
C:\DOCUME~1\NO1USE~1\APPLIC~1.\AVSystemCare\Logs\av.log
C:\DOCUME~1\NO1USE~1\APPLIC~1.\AVSystemCare\Logs\ga6Support.log
C:\DOCUME~1\NO1USE~1\APPLIC~1.\AVSystemCare\Logs\update.log
C:\DOCUME~1\NO1USE~1\APPLIC~1.\DriveCleaner Free
C:\DOCUME~1\NO1USE~1\APPLIC~1.\DriveCleaner Free\Logs\update.log
C:\Documents and Settings\NO1USE~1.\err.log
C:\Program Files\Common Files\drivecleaner free
C:\Program Files\Common Files\drivecleaner free\udcpas.exe
C:\Program Files\Common Files\drivecleaner free\udcsdr.exe
C:\Program Files\Common Files\winantivirus pro 2007
C:\Program Files\Common Files\winantivirus pro 2007\err.log
C:\Program Files\Common Files\winantivirus pro 2007\uwa7pcw.exe
C:\Program Files\Common Files\winantivirus pro 2007\WAPChk.dll
C:\WA7P
C:\WINDOWS\DOWNLO~1.\ODCTOOLS
C:\WINDOWS\DOWNLO~1.\ODCTOOLS\ef6b26db-344d-4ad3-ba24-aca0bdaa999a.cab
C:\WINDOWS\DOWNLO~1.\ODCTOOLS\f04d289f-c60a-422b-8396-6c372047042e.cab
C:\WINDOWS\DOWNLO~1\UDC6_0001_D19M1908NetInstaller.exe
C:\WINDOWS\DOWNLO~1\UWA7P_0001_N91M0809NetInstaller.exe
C:\WINDOWS\system32\cgjacy.dat
C:\WINDOWS\system32\cgjacy.exe
C:\WINDOWS\system32\cgjacy_nav.dat
C:\WINDOWS\system32\cgjacy_navps.dat
C:\WINDOWS\system32\nvs2.inf


((((((((((((((((((((((((((((((((((((((( Drivers/Services )))))))))))))))))))))))))))))))))))))))))))))))))


-------\LEGACY_FOPF
-------\vspf


((((((((((((((((((((((((( Files Created from 2007-06-05 to 2007-07-05 )))))))))))))))))))))))))))))))


2007-07-05 13:51 51,200 --a------ C:\WINDOWS\nircmd.exe
2007-07-05 13:46 <DIR> d-------- C:\VundoFix Backups
2007-07-03 13:06 <DIR> d-------- C:\Program Files\Pixum AG
2007-07-03 13:06 <DIR> d-------- C:\DOCUME~1\NO1USE~1\APPLIC~1\Pixum
2007-07-03 12:05 <DIR> d-------- C:\Program Files\iPod
2007-07-03 12:04 <DIR> d-------- C:\Program Files\iTunes
2007-07-03 11:51 <DIR> d-------- C:\Program Files\Common Files\Apple
2007-07-03 11:50 <DIR> d-------- C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple
2007-07-02 20:38 8,704 --a------ C:\WINDOWS\system32\kbdjpn.dll
2007-07-02 20:38 8,192 --a------ C:\WINDOWS\system32\kbdkor.dll
2007-07-02 20:38 6,144 --a------ C:\WINDOWS\system32\kbd106.dll
2007-07-02 20:38 6,144 --a------ C:\WINDOWS\system32\kbd101c.dll
2007-07-02 20:38 6,144 --a------ C:\WINDOWS\system32\kbd101b.dll
2007-07-02 20:38 5,632 --a------ C:\WINDOWS\system32\kbd103.dll
2007-07-02 14:28 152,576 --a------ C:\WINDOWS\system32\cncs32.dll
2007-07-02 14:28 <DIR> d-------- C:\WINDOWS\oioi1
2007-06-29 13:12 <DIR> d-------- C:\DOCUME~1\ALLUSE~1\APPLIC~1\Office Genuine Advantage
2007-06-28 19:50 <DIR> d-------- C:\DOCUME~1\NO1USE~1\APPLIC~1\Snapfish
2007-06-20 23:29 <DIR> d-------- C:\Program Files\Windows Media Connect 2
2007-06-20 23:21 <DIR> d-------- C:\WINDOWS\system32\LogFiles
2007-06-20 23:21 <DIR> d-------- C:\WINDOWS\system32\drivers\UMDF
2007-06-18 20:15 <DIR> d-------- C:\Program Files\utorrent
2007-06-18 20:15 <DIR> d-------- C:\DOCUME~1\NO1USE~1\APPLIC~1\uTorrent
2007-06-18 20:03 80 -r-hs---- C:\WINDOWS\system32\673BBF1561.dll
2007-06-18 20:03 <DIR> d-------- C:\DOCUME~1\ALLUSE~1\APPLIC~1\Protexis
2007-06-11 20:49 <DIR> d--h----- C:\DOCUME~1\NO1USE~1\igLoader Files
2007-06-08 21:34 <DIR> d--hs---- C:\UGA6P
2007-06-08 21:23 158,952 --a------ C:\DOCUME~1\NO1USE~1\APPLIC~1\install_en[1].exe
2007-06-07 20:26 <DIR> d-------- C:\WINDOWS\system32\SoftwareDistribution
2007-06-06 20:00 221,184 --a------ C:\WINDOWS\system32\wmpns.dll
2007-06-06 18:33 1,156 --a------ C:\WINDOWS\mozver.dat
2007-06-05 17:09 0 --a------ C:\WINDOWS\nsreg.dat


(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))

2007-07-05 12:32:32 -------- d-----w C:\DOCUME~1\NO1USE~1\APPLIC~1\Apple Computer
2007-06-28 15:01:58 -------- d-----w C:\DOCUME~1\NO1USE~1\APPLIC~1\Temporary
2007-06-14 17:03:08 -------- d-----w C:\Program Files\MSN Messenger
2007-06-08 19:41:12 17,920 ----a-w C:\DOCUME~1\NO1USE~1\APPLIC~1\GDIPFONTCACHEV1.DAT
2007-06-07 15:37:57 -------- d-----w C:\Program Files\Messenger
2007-06-06 18:52:28 -------- d-----w C:\Program Files\Movie Maker
2007-06-06 18:40:33 -------- d-----w C:\Program Files\Windows NT
2007-05-30 20:03:35 -------- d-----w C:\Program Files\Google
2007-05-29 10:48:07 -------- d-----w C:\Program Files\QuickTime
2007-05-29 10:39:48 -------- d-----w C:\Program Files\Apple Software Update
2007-05-24 20:15:48 -------- d-----w C:\Program Files\DV3300 PC Camera
2007-05-24 20:15:26 -------- d--h--w C:\Program Files\InstallShield Installation Information
2007-05-18 21:35:59 -------- d-----w C:\DOCUME~1\NO1USE~1\APPLIC~1\TransRender
2007-05-16 15:12:02 683,520 ----a-w C:\WINDOWS\system32\inetcomm.dll
2007-05-09 18:20:47 -------- d-----w C:\DOCUME~1\NO1USE~1\APPLIC~1\ConvertTemp
2007-05-09 18:14:45 -------- d-----w C:\DOCUME~1\NO1USE~1\APPLIC~1\Samsung
2007-05-09 18:02:49 -------- d-----w C:\Program Files\Samsung
2007-05-07 15:16:30 -------- d-----w C:\Program Files\WON
2007-04-25 14:21:15 144,896 ----a-w C:\WINDOWS\system32\schannel.dll
2007-04-18 16:12:23 2,854,400 ----a-w C:\WINDOWS\system32\msi.dll
2007-04-16 21:47:36 33,624 ----a-w C:\WINDOWS\system32\wups.dll
2007-04-16 21:45:54 1,710,936 ----a-w C:\WINDOWS\system32\wuaueng.dll
2007-04-16 21:45:48 549,720 ----a-w C:\WINDOWS\system32\wuapi.dll
2007-04-16 21:45:42 325,976 ----a-w C:\WINDOWS\system32\wucltui.dll
2007-04-16 21:45:36 203,096 ----a-w C:\WINDOWS\system32\wuweb.dll
2007-04-16 21:45:28 92,504 ----a-w C:\WINDOWS\system32\cdm.dll
2007-04-16 21:45:20 53,080 ----a-w C:\WINDOWS\system32\wuauclt.exe
2007-04-16 21:45:20 43,352 ----a-w C:\WINDOWS\system32\wups2.dll
2007-04-16 21:44:20 271,224 ----a-w C:\WINDOWS\system32\mucltui.dll
2007-04-16 21:44:18 208,248 ----a-w C:\WINDOWS\system32\muweb.dll
2007-04-12 11:47:09 957,952 ----a-w C:\WINDOWS\Baby.scr


((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))


*Note* empty entries & legit default entries are not shown

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
2001-03-02 13:02 37808 --------- C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
2007-03-14 03:43 501400 --a------ C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{7E853D72-626A-48EC-A868-BA8D5E23E045}]

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
2006-07-07 13:29 324416 --a------ C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SunJavaUpdateSched"="C:\Program Files\Java\jre1.6.0_01\bin\jusched.exe" [2007-03-14 03:43]
"Lexmark X1100 Series"="C:\Program Files\Lexmark X1100 Series\lxbkbmgr.exe" [2003-08-19 15:43]
"QuickTime Task"="C:\Program Files\QuickTime\qttask.exe" [2007-04-27 09:41]
"iTunesHelper"="C:\Program Files\iTunes\iTunesHelper.exe" [2007-06-28 09:14]

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="C:\WINDOWS\system32\ctfmon.exe" [2004-08-04 08:56]
"MsnMsgr"="C:\Program Files\MSN Messenger\MsnMsgr.exe" [2007-01-19 12:54]

*Newly Created Service* - HTTPFILTER

Contents of the 'Scheduled Tasks' folder
2007-07-03 10:39:12 C:\WINDOWS\tasks\AppleSoftwareUpdate.job

**************************************************************************

catchme 0.3.915 W2K/XP/Vista - rootkit detector by Gmer, http://www.gmer.net
Rootkit scan 2007-07-05 14:14:50
Windows 5.1.2600 Service Pack 2 NTFS

scanning hidden processes ...

scanning hidden autostart entries ...

scanning hidden files ...

scan completed successfully
hidden files: 0

**************************************************************************

Completion time: 2007-07-05 14:23:15 - machine was rebooted
C:\ComboFix-quarantined-files.txt ... 2007-07-05 14:22

--- E O F ---



I also ran VundoFix but it didn't bring up any results.

BC AdBot (Login to Remove)

 


#2 miekiemoes

miekiemoes

    Malware Killer Dog


  • Malware Response Team
  • 19,420 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:Belgium
  • Local time:06:01 AM

Posted 09 July 2007 - 04:46 AM

Hello,

I notice that you do not seem to be running Antivirus software and a Firewall. This is somewhat suicidal in today's digital world.
That's why I want you to install them first!!

Avira, AVG OR Active Virus Shield (uncheck the Security Toolbar during install) are good FREE antivirus.
Never install more than one antivirusscanner or firewall on your system! Several together can give problems and decrease the reliability of it seriously!
Comodo OR Kerio are FREE firewalls.

Understanding and using firewalls

Reboot your computer afterwards.
After reboot, perform a full scan with your Antivirus and let it remove anything it is finding. Then reboot once again in order to delete files that were in use previously.

Post a new HijackThislog in your next reply - then we'll start from there, because it really makes no sense otherwise that we clean this up manually if an Antivirusscan is not present which should be able to deal with most and prevent further reinfection.
AntispywareScanners---Antivirus Scanners---Firewalls---Online Scanners---Prevention---Help! My computer is slow---My Blog---Follow me on Twitter.
My help is ALWAYS FREE, but if you want to donate to help me continue my fight against malware -- click here!
Asking for help via Private Message or Mail will be ignored - So If you need help, post your problem in the forum.

#3 miekiemoes

miekiemoes

    Malware Killer Dog


  • Malware Response Team
  • 19,420 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:Belgium
  • Local time:06:01 AM

Posted 18 July 2007 - 01:39 AM

Due to the lack of feedback, this Topic is closed.
If you need this topic reopened for continuations of existing problems, please request this by sending me a PM with the address of the thread. This applies only to the original topic starter.

Everyone else please begin a New Topic.
AntispywareScanners---Antivirus Scanners---Firewalls---Online Scanners---Prevention---Help! My computer is slow---My Blog---Follow me on Twitter.
My help is ALWAYS FREE, but if you want to donate to help me continue my fight against malware -- click here!
Asking for help via Private Message or Mail will be ignored - So If you need help, post your problem in the forum.




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users