dslreports logo
 
    All Forums Hot Topics Gallery
spc
Search similar:


uniqs
1035

rlesko
join:2006-11-17
croatia

2 edits

rlesko

Member

MyWbSearch etc.

I ran Spybot Search & Destroy 1.4
It found 12 problems in safe mode-deleted them, 3 couldn't be deleted
Those three were deleted in normal mode...

Ran Ad-aware SE Personal Edition
Only found negliable objects, deleted them...

Couldn't run Windows Defender (Microsoft) 1
(skipped step)

Ran AVG Anti-Spyware/Ewido
Found three houndred and some more problems, including 2 Trojans..., some were put in quarantene, some were ignored...

---------------------------------------------------------
AVG Anti-Spyware - Scan Report
---------------------------------------------------------

+ Created at: 16:45:44 18.11.2006

+ Scan result:

C:\System Volume Information\_restore{04E4FBF2-EA4B-42C2-A3D9-C42B059EFE1E}\RP546\A0339035.exe -> Adware.Azesearch : Ignored.
C:\WINDOWS\Aspinalls Casino setup.exe -> Adware.Casino : Ignored.
D:\Programi za van\APsetup.exe -> Adware.Casino : Ignored.
D:\System Volume Information\_restore{04E4FBF2-EA4B-42C2-A3D9-C42B059EFE1E}\RP572\A0349492.exe -> Adware.Casino : Ignored.
C:\System Volume Information\_restore{04E4FBF2-EA4B-42C2-A3D9-C42B059EFE1E}\RP551\A0340645.dll -> Adware.Comet : Ignored.
C:\System Volume Information\_restore{04E4FBF2-EA4B-42C2-A3D9-C42B059EFE1E}\RP551\A0340646.dll -> Adware.Comet : Ignored.
C:\WINDOWS\system32\ATPartners.dll -> Adware.F1Organizer : Ignored.
C:\System Volume Information\_restore{04E4FBF2-EA4B-42C2-A3D9-C42B059EFE1E}\RP545\A0338960.DLL -> Adware.FunWeb : Ignored.
C:\System Volume Information\_restore{04E4FBF2-EA4B-42C2-A3D9-C42B059EFE1E}\RP545\A0338965.DLL -> Adware.FunWeb : Ignored.
C:\System Volume Information\_restore{04E4FBF2-EA4B-42C2-A3D9-C42B059EFE1E}\RP545\A0338966.EXE -> Adware.FunWeb : Ignored.
C:\System Volume Information\_restore{04E4FBF2-EA4B-42C2-A3D9-C42B059EFE1E}\RP545\A0338969.DLL -> Adware.FunWeb : Ignored.
C:\System Volume Information\_restore{04E4FBF2-EA4B-42C2-A3D9-C42B059EFE1E}\RP548\A0339199.DLL -> Adware.FunWeb : Ignored.
C:\System Volume Information\_restore{04E4FBF2-EA4B-42C2-A3D9-C42B059EFE1E}\RP548\A0339205.DLL -> Adware.FunWeb : Ignored.
C:\System Volume Information\_restore{04E4FBF2-EA4B-42C2-A3D9-C42B059EFE1E}\RP548\A0339206.EXE -> Adware.FunWeb : Ignored.
C:\System Volume Information\_restore{04E4FBF2-EA4B-42C2-A3D9-C42B059EFE1E}\RP548\A0339209.DLL -> Adware.FunWeb : Ignored.
C:\System Volume Information\_restore{04E4FBF2-EA4B-42C2-A3D9-C42B059EFE1E}\RP580\A0352265.DLL -> Adware.FunWeb : Ignored.
C:\System Volume Information\_restore{04E4FBF2-EA4B-42C2-A3D9-C42B059EFE1E}\RP580\A0352271.DLL -> Adware.FunWeb : Ignored.
C:\System Volume Information\_restore{04E4FBF2-EA4B-42C2-A3D9-C42B059EFE1E}\RP580\A0352272.EXE -> Adware.FunWeb : Ignored.
C:\System Volume Information\_restore{04E4FBF2-EA4B-42C2-A3D9-C42B059EFE1E}\RP580\A0352275.DLL -> Adware.FunWeb : Ignored.
C:\System Volume Information\_restore{04E4FBF2-EA4B-42C2-A3D9-C42B059EFE1E}\RP589\A0356804.dll -> Adware.FunWeb : Ignored.
C:\System Volume Information\_restore{04E4FBF2-EA4B-42C2-A3D9-C42B059EFE1E}\RP589\A0356812.DLL -> Adware.FunWeb : Ignored.
C:\System Volume Information\_restore{04E4FBF2-EA4B-42C2-A3D9-C42B059EFE1E}\RP589\A0356819.DLL -> Adware.FunWeb : Ignored.
C:\System Volume Information\_restore{04E4FBF2-EA4B-42C2-A3D9-C42B059EFE1E}\RP589\A0356820.EXE -> Adware.FunWeb : Ignored.
C:\System Volume Information\_restore{04E4FBF2-EA4B-42C2-A3D9-C42B059EFE1E}\RP589\A0356823.DLL -> Adware.FunWeb : Ignored.
C:\System Volume Information\_restore{04E4FBF2-EA4B-42C2-A3D9-C42B059EFE1E}\RP595\A0361681.dll -> Adware.FunWeb : Ignored.
C:\System Volume Information\_restore{04E4FBF2-EA4B-42C2-A3D9-C42B059EFE1E}\RP598\A0361959.DLL -> Adware.FunWeb : Ignored.
C:\System Volume Information\_restore{04E4FBF2-EA4B-42C2-A3D9-C42B059EFE1E}\RP598\A0361966.DLL -> Adware.FunWeb : Ignored.
C:\System Volume Information\_restore{04E4FBF2-EA4B-42C2-A3D9-C42B059EFE1E}\RP598\A0361967.EXE -> Adware.FunWeb : Ignored.
C:\System Volume Information\_restore{04E4FBF2-EA4B-42C2-A3D9-C42B059EFE1E}\RP598\A0361970.DLL -> Adware.FunWeb : Ignored.
C:\System Volume Information\_restore{04E4FBF2-EA4B-42C2-A3D9-C42B059EFE1E}\RP612\A0363035.DLL -> Adware.FunWeb : Ignored.
C:\System Volume Information\_restore{04E4FBF2-EA4B-42C2-A3D9-C42B059EFE1E}\RP612\A0363042.DLL -> Adware.FunWeb : Ignored.
C:\System Volume Information\_restore{04E4FBF2-EA4B-42C2-A3D9-C42B059EFE1E}\RP612\A0363043.EXE -> Adware.FunWeb : Ignored.
C:\System Volume Information\_restore{04E4FBF2-EA4B-42C2-A3D9-C42B059EFE1E}\RP612\A0363046.DLL -> Adware.FunWeb : Ignored.
C:\System Volume Information\_restore{04E4FBF2-EA4B-42C2-A3D9-C42B059EFE1E}\RP539\A0337325.exe -> Adware.Gator : Ignored.
C:\WINDOWS\iGator\trickler3103_pic_filesubmit_dmpt_3103.exe -> Adware.Gator : Ignored.
C:\System Volume Information\_restore{04E4FBF2-EA4B-42C2-A3D9-C42B059EFE1E}\RP545\A0338972.DLL -> Adware.IWon : Ignored.
C:\System Volume Information\_restore{04E4FBF2-EA4B-42C2-A3D9-C42B059EFE1E}\RP548\A0339212.DLL -> Adware.IWon : Ignored.
C:\System Volume Information\_restore{04E4FBF2-EA4B-42C2-A3D9-C42B059EFE1E}\RP580\A0352278.DLL -> Adware.IWon : Ignored.
C:\System Volume Information\_restore{04E4FBF2-EA4B-42C2-A3D9-C42B059EFE1E}\RP589\A0356826.DLL -> Adware.IWon : Ignored.
C:\System Volume Information\_restore{04E4FBF2-EA4B-42C2-A3D9-C42B059EFE1E}\RP598\A0361973.DLL -> Adware.IWon : Ignored.
C:\System Volume Information\_restore{04E4FBF2-EA4B-42C2-A3D9-C42B059EFE1E}\RP612\A0363049.DLL -> Adware.IWon : Ignored.
C:\System Volume Information\_restore{04E4FBF2-EA4B-42C2-A3D9-C42B059EFE1E}\RP539\A0337373.exe -> Adware.MediaTickets : Ignored.
C:\System Volume Information\_restore{04E4FBF2-EA4B-42C2-A3D9-C42B059EFE1E}\RP548\A0339225.exe -> Adware.MediaTickets : Ignored.
C:\System Volume Information\_restore{04E4FBF2-EA4B-42C2-A3D9-C42B059EFE1E}\RP549\A0339437.exe -> Adware.MediaTickets : Ignored.
C:\System Volume Information\_restore{04E4FBF2-EA4B-42C2-A3D9-C42B059EFE1E}\RP545\A0338956.EXE -> Adware.MyWebSearch : Ignored.
C:\System Volume Information\_restore{04E4FBF2-EA4B-42C2-A3D9-C42B059EFE1E}\RP545\A0339005.EXE -> Adware.MyWebSearch : Ignored.
C:\System Volume Information\_restore{04E4FBF2-EA4B-42C2-A3D9-C42B059EFE1E}\RP548\A0339195.EXE -> Adware.MyWebSearch : Ignored.
C:\System Volume Information\_restore{04E4FBF2-EA4B-42C2-A3D9-C42B059EFE1E}\RP548\A0339342.EXE -> Adware.MyWebSearch : Ignored.
C:\System Volume Information\_restore{04E4FBF2-EA4B-42C2-A3D9-C42B059EFE1E}\RP580\A0352285.EXE -> Adware.MyWebSearch : Ignored.
C:\System Volume Information\_restore{04E4FBF2-EA4B-42C2-A3D9-C42B059EFE1E}\RP589\A0356832.EXE -> Adware.MyWebSearch : Ignored.
C:\System Volume Information\_restore{04E4FBF2-EA4B-42C2-A3D9-C42B059EFE1E}\RP590\A0356937.EXE -> Adware.MyWebSearch : Ignored.
C:\System Volume Information\_restore{04E4FBF2-EA4B-42C2-A3D9-C42B059EFE1E}\RP598\A0361979.EXE -> Adware.MyWebSearch : Ignored.
C:\System Volume Information\_restore{04E4FBF2-EA4B-42C2-A3D9-C42B059EFE1E}\RP598\A0362105.EXE -> Adware.MyWebSearch : Ignored.
C:\System Volume Information\_restore{04E4FBF2-EA4B-42C2-A3D9-C42B059EFE1E}\RP612\A0363031.EXE -> Adware.MyWebSearch : Ignored.
C:\System Volume Information\_restore{04E4FBF2-EA4B-42C2-A3D9-C42B059EFE1E}\RP612\A0363056.EXE -> Adware.MyWebSearch : Ignored.
C:\System Volume Information\_restore{04E4FBF2-EA4B-42C2-A3D9-C42B059EFE1E}\RP539\A0337370.dll -> Adware.NavExcel : Ignored.
C:\System Volume Information\_restore{04E4FBF2-EA4B-42C2-A3D9-C42B059EFE1E}\RP539\A0337371.exe -> Adware.NavExcel : Ignored.
C:\System Volume Information\_restore{04E4FBF2-EA4B-42C2-A3D9-C42B059EFE1E}\RP539\A0337372.exe -> Adware.NavExcel : Ignored.
C:\System Volume Information\_restore{04E4FBF2-EA4B-42C2-A3D9-C42B059EFE1E}\RP551\A0340640.dll -> Adware.NavExcel : Ignored.
C:\System Volume Information\_restore{04E4FBF2-EA4B-42C2-A3D9-C42B059EFE1E}\RP551\A0340641.exe -> Adware.NavExcel : Ignored.
C:\System Volume Information\_restore{04E4FBF2-EA4B-42C2-A3D9-C42B059EFE1E}\RP551\A0340642.exe -> Adware.NavExcel : Ignored.
C:\Program Files\Softwin\BitDefender8\Quarantine\newdotnet3_88.dll -> Adware.NewDotNet : Ignored.
C:\System Volume Information\_restore{04E4FBF2-EA4B-42C2-A3D9-C42B059EFE1E}\RP539\A0337327.dll -> Adware.NewDotNet : Ignored.
C:\System Volume Information\_restore{04E4FBF2-EA4B-42C2-A3D9-C42B059EFE1E}\RP539\A0337328.exe -> Adware.NewDotNet : Ignored.
C:\System Volume Information\_restore{04E4FBF2-EA4B-42C2-A3D9-C42B059EFE1E}\RP545\A0338984.dll -> Adware.NewDotNet : Ignored.
C:\System Volume Information\_restore{04E4FBF2-EA4B-42C2-A3D9-C42B059EFE1E}\RP545\A0338985.exe -> Adware.NewDotNet : Ignored.
C:\System Volume Information\_restore{04E4FBF2-EA4B-42C2-A3D9-C42B059EFE1E}\RP555\A0342044.dll -> Adware.NewDotNet : Ignored.
C:\System Volume Information\_restore{04E4FBF2-EA4B-42C2-A3D9-C42B059EFE1E}\RP555\A0342045.exe -> Adware.NewDotNet : Ignored.
C:\System Volume Information\_restore{04E4FBF2-EA4B-42C2-A3D9-C42B059EFE1E}\RP565\A0347786.dll -> Adware.NewDotNet : Ignored.
C:\System Volume Information\_restore{04E4FBF2-EA4B-42C2-A3D9-C42B059EFE1E}\RP565\A0347787.exe -> Adware.NewDotNet : Ignored.
C:\System Volume Information\_restore{04E4FBF2-EA4B-42C2-A3D9-C42B059EFE1E}\RP612\A0363062.dll -> Adware.NewDotNet : Ignored.
C:\System Volume Information\_restore{04E4FBF2-EA4B-42C2-A3D9-C42B059EFE1E}\RP612\A0363063.exe -> Adware.NewDotNet : Ignored.
C:\Program Files\DAEMON Tools\SetupDTSB.exe -> Adware.SaveNow : Ignored.
C:\System Volume Information\_restore{04E4FBF2-EA4B-42C2-A3D9-C42B059EFE1E}\RP539\A0337375.dll -> Adware.SaveNow : Ignored.
C:\System Volume Information\_restore{04E4FBF2-EA4B-42C2-A3D9-C42B059EFE1E}\RP548\A0339226.dll -> Adware.SaveNow : Ignored.
C:\System Volume Information\_restore{04E4FBF2-EA4B-42C2-A3D9-C42B059EFE1E}\RP549\A0339439.dll -> Adware.SaveNow : Ignored.
C:\Documents and Settings\Deda\Application Data\Starware -> Adware.Starware : Ignored.
C:\Documents and Settings\Deda\Application Data\Starware\BrowserSearch -> Adware.Starware : Ignored.
C:\Documents and Settings\Deda\Application Data\Starware\BrowserSearch\BrowserSearch.xml -> Adware.Starware : Ignored.
C:\Documents and Settings\Deda\Application Data\Starware\BrowserSearch\BrowserSearch.xml.backup -> Adware.Starware : Ignored.
C:\Documents and Settings\Deda\Application Data\Starware\ErrorSearch -> Adware.Starware : Ignored.
C:\Documents and Settings\Deda\Application Data\Starware\ErrorSearch\ErrorSearchOptions.xml -> Adware.Starware : Ignored.
C:\Documents and Settings\Deda\Application Data\Starware\ErrorSearch\ErrorSearchOptions.xml.backup -> Adware.Starware : Ignored.
C:\Documents and Settings\Deda\Application Data\Starware\Games -> Adware.Starware : Ignored.
C:\Documents and Settings\Deda\Application Data\Starware\Games\GamesOptions.xml -> Adware.Starware : Ignored.
C:\Documents and Settings\Deda\Application Data\Starware\Games\GamesOptions.xml.backup -> Adware.Starware : Ignored.
C:\Documents and Settings\Deda\Application Data\Starware\JokeSearch -> Adware.Starware : Ignored.
C:\Documents and Settings\Deda\Application Data\Starware\JokeSearch\JokeSearchOptions.xml -> Adware.Starware : Ignored.
C:\Documents and Settings\Deda\Application Data\Starware\JokeSearch\JokeSearchOptions.xml.backup -> Adware.Starware : Ignored.
C:\Documents and Settings\Deda\Application Data\Starware\Layouts -> Adware.Starware : Ignored.
C:\Documents and Settings\Deda\Application Data\Starware\Layouts\PreferencesLayout.xml -> Adware.Starware : Ignored.
C:\Documents and Settings\Deda\Application Data\Starware\Layouts\PreferencesLayout.xml.backup -> Adware.Starware : Ignored.
C:\Documents and Settings\Deda\Application Data\Starware\Layouts\ToolbarLayout.xml -> Adware.Starware : Ignored.
C:\Documents and Settings\Deda\Application Data\Starware\Layouts\ToolbarLayout.xml.backup -> Adware.Starware : Ignored.
C:\Documents and Settings\Deda\Application Data\Starware\Manager -> Adware.Starware : Ignored.
C:\Documents and Settings\Deda\Application Data\Starware\Manager\ManagerOptions.xml -> Adware.Starware : Ignored.
C:\Documents and Settings\Deda\Application Data\Starware\Manager\ManagerOptions.xml.backup -> Adware.Starware : Ignored.
C:\Documents and Settings\Deda\Application Data\Starware\Movies -> Adware.Starware : Ignored.
C:\Documents and Settings\Deda\Application Data\Starware\Movies\MoviesOptions.xml -> Adware.Starware : Ignored.
C:\Documents and Settings\Deda\Application Data\Starware\Movies\MoviesOptions.xml.backup -> Adware.Starware : Ignored.
C:\Documents and Settings\Deda\Application Data\Starware\Pranks -> Adware.Starware : Ignored.
C:\Documents and Settings\Deda\Application Data\Starware\Pranks\PranksOptions.xml -> Adware.Starware : Ignored.
C:\Documents and Settings\Deda\Application Data\Starware\Pranks\PranksOptions.xml.backup -> Adware.Starware : Ignored.
C:\Documents and Settings\Deda\Application Data\Starware\RelatedSearch -> Adware.Starware : Ignored.
C:\Documents and Settings\Deda\Application Data\Starware\RelatedSearch\RelatedSearchOptions.xml -> Adware.Starware : Ignored.
C:\Documents and Settings\Deda\Application Data\Starware\RelatedSearch\RelatedSearchOptions.xml.backup -> Adware.Starware : Ignored.
C:\Documents and Settings\Deda\Application Data\Starware\ScreensaversMarketingSitePager -> Adware.Starware : Ignored.
C:\Documents and Settings\Deda\Application Data\Starware\ScreensaversMarketingSitePager\ScreensaversMarketingSitePagerOptions.xml -> Adware.Starware : Ignored.
C:\Documents and Settings\Deda\Application Data\Starware\ScreensaversMarketingSitePager\ScreensaversMarketingSitePagerOptions.xml.backup -> Adware.Starware : Ignored.
C:\Documents and Settings\Deda\Application Data\Starware\SearchAssistPlus -> Adware.Starware : Ignored.
C:\Documents and Settings\Deda\Application Data\Starware\SearchAssistPlus\SearchAssistPlusOptions.xml -> Adware.Starware : Ignored.
C:\Documents and Settings\Deda\Application Data\Starware\SearchAssistPlus\SearchAssistPlusOptions.xml.backup -> Adware.Starware : Ignored.
C:\Documents and Settings\Deda\Application Data\Starware\SearchMatch -> Adware.Starware : Ignored.
C:\Documents and Settings\Deda\Application Data\Starware\SearchMatch\SearchMatchOptions.xml -> Adware.Starware : Ignored.
C:\Documents and Settings\Deda\Application Data\Starware\SearchMatch\SearchMatchOptions.xml.backup -> Adware.Starware : Ignored.
C:\Documents and Settings\Deda\Application Data\Starware\SmileyTown -> Adware.Starware : Ignored.
C:\Documents and Settings\Deda\Application Data\Starware\SmileyTown\SmileyTownOptions.xml -> Adware.Starware : Ignored.
C:\Documents and Settings\Deda\Application Data\Starware\SmileyTown\SmileyTownOptions.xml.backup -> Adware.Starware : Ignored.
C:\Documents and Settings\Deda\Application Data\Starware\Toolbar -> Adware.Starware : Ignored.
C:\Documents and Settings\Deda\Application Data\Starware\ToolbarLogo -> Adware.Starware : Ignored.
C:\Documents and Settings\Deda\Application Data\Starware\ToolbarLogo\ToolbarLogoOptions.xml -> Adware.Starware : Ignored.
C:\Documents and Settings\Deda\Application Data\Starware\ToolbarLogo\ToolbarLogoOptions.xml.backup -> Adware.Starware : Ignored.
C:\Documents and Settings\Deda\Application Data\Starware\ToolbarSearch -> Adware.Starware : Ignored.
C:\Documents and Settings\Deda\Application Data\Starware\ToolbarSearch\ToolbarSearchOptions.xml -> Adware.Starware : Ignored.
C:\Documents and Settings\Deda\Application Data\Starware\ToolbarSearch\ToolbarSearchOptions.xml.backup -> Adware.Starware : Ignored.
C:\Documents and Settings\Deda\Application Data\Starware\Toolbar\TBProductsOptions.xml -> Adware.Starware : Ignored.
C:\Documents and Settings\Deda\Application Data\Starware\Toolbar\TBProductsOptions.xml.backup -> Adware.Starware : Ignored.
C:\Documents and Settings\Deda\Application Data\Starware\TravelSearch -> Adware.Starware : Ignored.
C:\Documents and Settings\Deda\Application Data\Starware\TravelSearch\TravelSearchOptions.xml -> Adware.Starware : Ignored.
C:\Documents and Settings\Deda\Application Data\Starware\TravelSearch\TravelSearchOptions.xml.backup -> Adware.Starware : Ignored.
C:\Documents and Settings\Mirela\Application Data\Starware -> Adware.Starware : Ignored.
C:\Documents and Settings\Mirela\Application Data\Starware\BrowserSearch -> Adware.Starware : Ignored.
C:\Documents and Settings\Mirela\Application Data\Starware\BrowserSearch\BrowserSearch.xml -> Adware.Starware : Ignored.
C:\Documents and Settings\Mirela\Application Data\Starware\BrowserSearch\BrowserSearch.xml.backup -> Adware.Starware : Ignored.
C:\Documents and Settings\Mirela\Application Data\Starware\ErrorSearch -> Adware.Starware : Ignored.
C:\Documents and Settings\Mirela\Application Data\Starware\ErrorSearch\ErrorSearchOptions.xml -> Adware.Starware : Ignored.
C:\Documents and Settings\Mirela\Application Data\Starware\ErrorSearch\ErrorSearchOptions.xml.backup -> Adware.Starware : Ignored.
C:\Documents and Settings\Mirela\Application Data\Starware\Games -> Adware.Starware : Ignored.
C:\Documents and Settings\Mirela\Application Data\Starware\Games\GamesOptions.xml -> Adware.Starware : Ignored.
C:\Documents and Settings\Mirela\Application Data\Starware\Games\GamesOptions.xml.backup -> Adware.Starware : Ignored.
C:\Documents and Settings\Mirela\Application Data\Starware\JokeSearch -> Adware.Starware : Ignored.
C:\Documents and Settings\Mirela\Application Data\Starware\JokeSearch\JokeSearchOptions.xml -> Adware.Starware : Ignored.
C:\Documents and Settings\Mirela\Application Data\Starware\JokeSearch\JokeSearchOptions.xml.backup -> Adware.Starware : Ignored.
C:\Documents and Settings\Mirela\Application Data\Starware\Layouts -> Adware.Starware : Ignored.
C:\Documents and Settings\Mirela\Application Data\Starware\Layouts\PreferencesLayout.xml -> Adware.Starware : Ignored.
C:\Documents and Settings\Mirela\Application Data\Starware\Layouts\PreferencesLayout.xml.backup -> Adware.Starware : Ignored.
C:\Documents and Settings\Mirela\Application Data\Starware\Layouts\ToolbarLayout.xml -> Adware.Starware : Ignored.
C:\Documents and Settings\Mirela\Application Data\Starware\Layouts\ToolbarLayout.xml.backup -> Adware.Starware : Ignored.
C:\Documents and Settings\Mirela\Application Data\Starware\Manager -> Adware.Starware : Ignored.
C:\Documents and Settings\Mirela\Application Data\Starware\Manager\ManagerOptions.xml -> Adware.Starware : Ignored.
C:\Documents and Settings\Mirela\Application Data\Starware\Manager\ManagerOptions.xml.backup -> Adware.Starware : Ignored.
C:\Documents and Settings\Mirela\Application Data\Starware\Movies -> Adware.Starware : Ignored.
C:\Documents and Settings\Mirela\Application Data\Starware\Movies\MoviesOptions.xml -> Adware.Starware : Ignored.
C:\Documents and Settings\Mirela\Application Data\Starware\Movies\MoviesOptions.xml.backup -> Adware.Starware : Ignored.
C:\Documents and Settings\Mirela\Application Data\Starware\Pranks -> Adware.Starware : Ignored.
C:\Documents and Settings\Mirela\Application Data\Starware\Pranks\PranksOptions.xml -> Adware.Starware : Ignored.
C:\Documents and Settings\Mirela\Application Data\Starware\Pranks\PranksOptions.xml.backup -> Adware.Starware : Ignored.
C:\Documents and Settings\Mirela\Application Data\Starware\RelatedSearch -> Adware.Starware : Ignored.
C:\Documents and Settings\Mirela\Application Data\Starware\RelatedSearch\RelatedSearchOptions.xml -> Adware.Starware : Ignored.
C:\Documents and Settings\Mirela\Application Data\Starware\RelatedSearch\RelatedSearchOptions.xml.backup -> Adware.Starware : Ignored.
C:\Documents and Settings\Mirela\Application Data\Starware\ScreensaversMarketingSitePager -> Adware.Starware : Ignored.
C:\Documents and Settings\Mirela\Application Data\Starware\ScreensaversMarketingSitePager\ScreensaversMarketingSitePagerOptions.xml -> Adware.Starware : Ignored.
C:\Documents and Settings\Mirela\Application Data\Starware\ScreensaversMarketingSitePager\ScreensaversMarketingSitePagerOptions.xml.backup -> Adware.Starware : Ignored.
C:\Documents and Settings\Mirela\Application Data\Starware\SearchAssistPlus -> Adware.Starware : Ignored.
C:\Documents and Settings\Mirela\Application Data\Starware\SearchAssistPlus\SearchAssistPlusOptions.xml -> Adware.Starware : Ignored.
C:\Documents and Settings\Mirela\Application Data\Starware\SearchAssistPlus\SearchAssistPlusOptions.xml.backup -> Adware.Starware : Ignored.
C:\Documents and Settings\Mirela\Application Data\Starware\SearchMatch -> Adware.Starware : Ignored.
C:\Documents and Settings\Mirela\Application Data\Starware\SearchMatch\SearchMatchOptions.xml -> Adware.Starware : Ignored.
C:\Documents and Settings\Mirela\Application Data\Starware\SearchMatch\SearchMatchOptions.xml.backup -> Adware.Starware : Ignored.
C:\Documents and Settings\Mirela\Application Data\Starware\SmileyTown -> Adware.Starware : Ignored.
C:\Documents and Settings\Mirela\Application Data\Starware\SmileyTown\SmileyTownOptions.xml -> Adware.Starware : Ignored.
C:\Documents and Settings\Mirela\Application Data\Starware\SmileyTown\SmileyTownOptions.xml.backup -> Adware.Starware : Ignored.
C:\Documents and Settings\Mirela\Application Data\Starware\Toolbar -> Adware.Starware : Ignored.
C:\Documents and Settings\Mirela\Application Data\Starware\ToolbarLogo -> Adware.Starware : Ignored.
C:\Documents and Settings\Mirela\Application Data\Starware\ToolbarLogo\ToolbarLogoOptions.xml -> Adware.Starware : Ignored.
C:\Documents and Settings\Mirela\Application Data\Starware\ToolbarLogo\ToolbarLogoOptions.xml.backup -> Adware.Starware : Ignored.
C:\Documents and Settings\Mirela\Application Data\Starware\ToolbarSearch -> Adware.Starware : Ignored.
C:\Documents and Settings\Mirela\Application Data\Starware\ToolbarSearch\ToolbarSearchOptions.xml -> Adware.Starware : Ignored.
C:\Documents and Settings\Mirela\Application Data\Starware\ToolbarSearch\ToolbarSearchOptions.xml.backup -> Adware.Starware : Ignored.
C:\Documents and Settings\Mirela\Application Data\Starware\Toolbar\TBProductsOptions.xml -> Adware.Starware : Ignored.
C:\Documents and Settings\Mirela\Application Data\Starware\Toolbar\TBProductsOptions.xml.backup -> Adware.Starware : Ignored.
C:\Documents and Settings\Mirela\Application Data\Starware\TravelSearch -> Adware.Starware : Ignored.
C:\Documents and Settings\Mirela\Application Data\Starware\TravelSearch\TravelSearchOptions.xml -> Adware.Starware : Ignored.
C:\Documents and Settings\Mirela\Application Data\Starware\TravelSearch\TravelSearchOptions.xml.backup -> Adware.Starware : Ignored.
C:\Program Files\VirusBursters -> Adware.VirusBursters : Ignored.
C:\Program Files\VirusBursters\ignored.lst -> Adware.VirusBursters : Ignored.
D:\Programi za van\Alcohol_120_v1.9.5.3992_3_with_WorKiNg_KeyGen\Alcohol_120_v1.9.5.3823_with_WorKiNg_KeyGen\keygen.exe -> Adware.WinAD : Ignored.
D:\Programi za van\Google Earth Pro Map With CRACK (WORKS)\Google Earth Pro Map With CRACK\Crack.exe -> Adware.WinAD : Ignored.
C:\Program Files\Mozilla Firefox\plugins\npclntax.dll -> Adware.Zango : Ignored.
C:\System Volume Information\_restore{04E4FBF2-EA4B-42C2-A3D9-C42B059EFE1E}\RP545\A0338961.DLL -> Downloader.IstBar : Cleaned with backup (quarantined).
C:\System Volume Information\_restore{04E4FBF2-EA4B-42C2-A3D9-C42B059EFE1E}\RP548\A0339201.DLL -> Downloader.IstBar : Cleaned with backup (quarantined).
C:\System Volume Information\_restore{04E4FBF2-EA4B-42C2-A3D9-C42B059EFE1E}\RP580\A0352267.DLL -> Downloader.IstBar : Cleaned with backup (quarantined).
C:\System Volume Information\_restore{04E4FBF2-EA4B-42C2-A3D9-C42B059EFE1E}\RP589\A0356814.DLL -> Downloader.IstBar : Cleaned with backup (quarantined).
C:\System Volume Information\_restore{04E4FBF2-EA4B-42C2-A3D9-C42B059EFE1E}\RP598\A0361961.DLL -> Downloader.IstBar : Cleaned with backup (quarantined).
C:\System Volume Information\_restore{04E4FBF2-EA4B-42C2-A3D9-C42B059EFE1E}\RP612\A0363037.DLL -> Downloader.IstBar : Cleaned with backup (quarantined).
C:\System Volume Information\_restore{04E4FBF2-EA4B-42C2-A3D9-C42B059EFE1E}\RP545\A0338949.exe -> Downloader.Small.ddp : Cleaned with backup (quarantined).
C:\System Volume Information\_restore{04E4FBF2-EA4B-42C2-A3D9-C42B059EFE1E}\RP546\A0339036.dll -> Downloader.Small.ddp : Cleaned with backup (quarantined).
C:\System Volume Information\_restore{04E4FBF2-EA4B-42C2-A3D9-C42B059EFE1E}\RP546\A0339053.dll -> Downloader.Small.ddp : Cleaned with backup (quarantined).
D:\System Volume Information\_restore{04E4FBF2-EA4B-42C2-A3D9-C42B059EFE1E}\RP544\A0338904.exe -> Downloader.Small.ddp : Cleaned with backup (quarantined).
D:\System Volume Information\_restore{04E4FBF2-EA4B-42C2-A3D9-C42B059EFE1E}\RP546\A0339146.exe -> Downloader.Small.ddp : Cleaned with backup (quarantined).
C:\System Volume Information\_restore{04E4FBF2-EA4B-42C2-A3D9-C42B059EFE1E}\RP545\A0338942.exe -> Downloader.WarSpy.d : Cleaned with backup (quarantined).
C:\System Volume Information\_restore{04E4FBF2-EA4B-42C2-A3D9-C42B059EFE1E}\RP535\A0337273.dll -> Downloader.Zlob.ait : Cleaned with backup (quarantined).
C:\System Volume Information\_restore{04E4FBF2-EA4B-42C2-A3D9-C42B059EFE1E}\RP535\A0337226.exe -> Downloader.Zlob.yt : Cleaned with backup (quarantined).
C:\System Volume Information\_restore{04E4FBF2-EA4B-42C2-A3D9-C42B059EFE1E}\RP535\A0337238.exe -> Downloader.Zlob.yt : Cleaned with backup (quarantined).
C:\System Volume Information\_restore{04E4FBF2-EA4B-42C2-A3D9-C42B059EFE1E}\RP539\A0337337.exe -> Downloader.Zlob.yt : Cleaned with backup (quarantined).
C:\System Volume Information\_restore{04E4FBF2-EA4B-42C2-A3D9-C42B059EFE1E}\RP539\A0337338.exe -> Downloader.Zlob.yt : Cleaned with backup (quarantined).
D:\Programi za van\FU-Setup_LE.exe -> Logger.Ransom.a : Cleaned with backup (quarantined).
C:\System Volume Information\_restore{04E4FBF2-EA4B-42C2-A3D9-C42B059EFE1E}\RP605\A0362706.dll -> Not-A-Virus.Hoax.Win32.Renos.ap : Ignored.
C:\System Volume Information\_restore{04E4FBF2-EA4B-42C2-A3D9-C42B059EFE1E}\RP540\A0337475.dll -> Not-A-Virus.Hoax.Win32.Renos.er : Ignored.
C:\System Volume Information\_restore{04E4FBF2-EA4B-42C2-A3D9-C42B059EFE1E}\RP535\A0337274.exe -> Not-A-Virus.Hoax.Win32.Renos.fh : Ignored.
C:\System Volume Information\_restore{04E4FBF2-EA4B-42C2-A3D9-C42B059EFE1E}\RP535\A0337276.exe -> Not-A-Virus.Hoax.Win32.Renos.fh : Ignored.
C:\System Volume Information\_restore{04E4FBF2-EA4B-42C2-A3D9-C42B059EFE1E}\RP605\A0362716.dll -> Not-A-Virus.Hoax.Win32.Renos.fw : Ignored.
:mozilla.100:C:\Documents and Settings\Rene\Application Data\Mozilla\Firefox\Profiles\i0ul0gg5.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.101:C:\Documents and Settings\Rene\Application Data\Mozilla\Firefox\Profiles\i0ul0gg5.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.110:C:\Documents and Settings\Deda\Application Data\Mozilla\Firefox\Profiles\ybmbfqb2.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.67:C:\Documents and Settings\Deda\Application Data\Mozilla\Firefox\Profiles\ybmbfqb2.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.70:C:\Documents and Settings\Deda\Application Data\Mozilla\Firefox\Profiles\ybmbfqb2.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.71:C:\Documents and Settings\Deda\Application Data\Mozilla\Firefox\Profiles\ybmbfqb2.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.72:C:\Documents and Settings\Deda\Application Data\Mozilla\Firefox\Profiles\ybmbfqb2.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.73:C:\Documents and Settings\Deda\Application Data\Mozilla\Firefox\Profiles\ybmbfqb2.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.74:C:\Documents and Settings\Deda\Application Data\Mozilla\Firefox\Profiles\ybmbfqb2.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.75:C:\Documents and Settings\Deda\Application Data\Mozilla\Firefox\Profiles\ybmbfqb2.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.98:C:\Documents and Settings\Rene\Application Data\Mozilla\Firefox\Profiles\i0ul0gg5.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.99:C:\Documents and Settings\Rene\Application Data\Mozilla\Firefox\Profiles\i0ul0gg5.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.103:C:\Documents and Settings\Rene\Application Data\Mozilla\Firefox\Profiles\i0ul0gg5.default\cookies.txt -> TrackingCookie.Adbrite : Cleaned.
:mozilla.17:C:\Documents and Settings\Mirela\Application Data\Mozilla\Firefox\Profiles\h36bi5z7.default\cookies.txt -> TrackingCookie.Adbrite : Cleaned.
:mozilla.18:C:\Documents and Settings\Mirela\Application Data\Mozilla\Firefox\Profiles\h36bi5z7.default\cookies.txt -> TrackingCookie.Adbrite : Cleaned.
:mozilla.398:C:\Documents and Settings\Rene\Application Data\Mozilla\Firefox\Profiles\i0ul0gg5.default\cookies.txt -> TrackingCookie.Adbrite : Cleaned.
:mozilla.399:C:\Documents and Settings\Rene\Application Data\Mozilla\Firefox\Profiles\i0ul0gg5.default\cookies.txt -> TrackingCookie.Adbrite : Cleaned.
:mozilla.400:C:\Documents and Settings\Rene\Application Data\Mozilla\Firefox\Profiles\i0ul0gg5.default\cookies.txt -> TrackingCookie.Adbrite : Cleaned.
:mozilla.410:C:\Documents and Settings\Rene\Application Data\Mozilla\Firefox\Profiles\i0ul0gg5.default\cookies.txt -> TrackingCookie.Adbrite : Cleaned.
:mozilla.56:C:\Documents and Settings\Rene\Application Data\Mozilla\Firefox\Profiles\i0ul0gg5.default\cookies.txt -> TrackingCookie.Adbrite : Cleaned.
:mozilla.57:C:\Documents and Settings\Rene\Application Data\Mozilla\Firefox\Profiles\i0ul0gg5.default\cookies.txt -> TrackingCookie.Adbrite : Cleaned.
:mozilla.58:C:\Documents and Settings\Rene\Application Data\Mozilla\Firefox\Profiles\i0ul0gg5.default\cookies.txt -> TrackingCookie.Adbrite : Cleaned.
:mozilla.72:C:\Documents and Settings\Rene\Application Data\Mozilla\Firefox\Profiles\i0ul0gg5.default\cookies.txt -> TrackingCookie.Addynamix : Cleaned.
:mozilla.73:C:\Documents and Settings\Rene\Application Data\Mozilla\Firefox\Profiles\i0ul0gg5.default\cookies.txt -> TrackingCookie.Addynamix : Cleaned.
:mozilla.74:C:\Documents and Settings\Rene\Application Data\Mozilla\Firefox\Profiles\i0ul0gg5.default\cookies.txt -> TrackingCookie.Addynamix : Cleaned.
:mozilla.444:C:\Documents and Settings\Rene\Application Data\Mozilla\Firefox\Profiles\i0ul0gg5.default\cookies.txt -> TrackingCookie.Adengage : Cleaned.
:mozilla.445:C:\Documents and Settings\Rene\Application Data\Mozilla\Firefox\Profiles\i0ul0gg5.default\cookies.txt -> TrackingCookie.Adengage : Cleaned.
:mozilla.446:C:\Documents and Settings\Rene\Application Data\Mozilla\Firefox\Profiles\i0ul0gg5.default\cookies.txt -> TrackingCookie.Adengage : Cleaned.
:mozilla.113:C:\Documents and Settings\Rene\Application Data\Mozilla\Firefox\Profiles\i0ul0gg5.default\cookies.txt -> TrackingCookie.Adtech : Cleaned.
:mozilla.114:C:\Documents and Settings\Rene\Application Data\Mozilla\Firefox\Profiles\i0ul0gg5.default\cookies.txt -> TrackingCookie.Adtech : Cleaned.
:mozilla.26:C:\Documents and Settings\Mirela\Application Data\Mozilla\Firefox\Profiles\h36bi5z7.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.27:C:\Documents and Settings\Mirela\Application Data\Mozilla\Firefox\Profiles\h36bi5z7.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.28:C:\Documents and Settings\Mirela\Application Data\Mozilla\Firefox\Profiles\h36bi5z7.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.107:C:\Documents and Settings\Deda\Application Data\Mozilla\Firefox\Profiles\ybmbfqb2.default\cookies.txt -> TrackingCookie.Atdmt : Cleaned.
:mozilla.43:C:\Documents and Settings\Rene\Application Data\Mozilla\Firefox\Profiles\i0ul0gg5.default\cookies.txt -> TrackingCookie.Atdmt : Cleaned.
:mozilla.147:C:\Documents and Settings\Rene\Application Data\Mozilla\Firefox\Profiles\i0ul0gg5.default\cookies.txt -> TrackingCookie.Burstnet : Cleaned.
:mozilla.473:C:\Documents and Settings\Rene\Application Data\Mozilla\Firefox\Profiles\i0ul0gg5.default\cookies.txt -> TrackingCookie.Burstnet : Cleaned.
:mozilla.90:C:\Documents and Settings\Rene\Application Data\Mozilla\Firefox\Profiles\i0ul0gg5.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned.
:mozilla.91:C:\Documents and Settings\Rene\Application Data\Mozilla\Firefox\Profiles\i0ul0gg5.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned.
:mozilla.92:C:\Documents and Settings\Rene\Application Data\Mozilla\Firefox\Profiles\i0ul0gg5.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned.
:mozilla.409:C:\Documents and Settings\Rene\Application Data\Mozilla\Firefox\Profiles\i0ul0gg5.default\cookies.txt -> TrackingCookie.Clickhype : Cleaned.
:mozilla.93:C:\Documents and Settings\Rene\Application Data\Mozilla\Firefox\Profiles\i0ul0gg5.default\cookies.txt -> TrackingCookie.Clickzs : Cleaned.
:mozilla.94:C:\Documents and Settings\Rene\Application Data\Mozilla\Firefox\Profiles\i0ul0gg5.default\cookies.txt -> TrackingCookie.Clickzs : Cleaned.
:mozilla.54:C:\Documents and Settings\Rene\Application Data\Mozilla\Firefox\Profiles\i0ul0gg5.default\cookies.txt -> TrackingCookie.Com : Cleaned.
:mozilla.55:C:\Documents and Settings\Rene\Application Data\Mozilla\Firefox\Profiles\i0ul0gg5.default\cookies.txt -> TrackingCookie.Com : Cleaned.
:mozilla.395:C:\Documents and Settings\Rene\Application Data\Mozilla\Firefox\Profiles\i0ul0gg5.default\cookies.txt -> TrackingCookie.Cqcounter : Cleaned.
:mozilla.81:C:\Documents and Settings\Deda\Application Data\Mozilla\Firefox\Profiles\ybmbfqb2.default\cookies.txt -> TrackingCookie.Doubleclick : Cleaned.
:mozilla.121:C:\Documents and Settings\Rene\Application Data\Mozilla\Firefox\Profiles\i0ul0gg5.default\cookies.txt -> TrackingCookie.Falkag : Cleaned.
:mozilla.122:C:\Documents and Settings\Rene\Application Data\Mozilla\Firefox\Profiles\i0ul0gg5.default\cookies.txt -> TrackingCookie.Falkag : Cleaned.
:mozilla.123:C:\Documents and Settings\Rene\Application Data\Mozilla\Firefox\Profiles\i0ul0gg5.default\cookies.txt -> TrackingCookie.Falkag : Cleaned.
:mozilla.124:C:\Documents and Settings\Rene\Application Data\Mozilla\Firefox\Profiles\i0ul0gg5.default\cookies.txt -> TrackingCookie.Falkag : Cleaned.
:mozilla.483:C:\Documents and Settings\Rene\Application Data\Mozilla\Firefox\Profiles\i0ul0gg5.default\cookies.txt -> TrackingCookie.Googleadservices : Cleaned.
:mozilla.484:C:\Documents and Settings\Rene\Application Data\Mozilla\Firefox\Profiles\i0ul0gg5.default\cookies.txt -> TrackingCookie.Googleadservices : Cleaned.
:mozilla.485:C:\Documents and Settings\Rene\Application Data\Mozilla\Firefox\Profiles\i0ul0gg5.default\cookies.txt -> TrackingCookie.Googleadservices : Cleaned.
:mozilla.41:C:\Documents and Settings\Mirela\Application Data\Mozilla\Firefox\Profiles\h36bi5z7.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned.
:mozilla.42:C:\Documents and Settings\Mirela\Application Data\Mozilla\Firefox\Profiles\h36bi5z7.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned.
:mozilla.65:C:\Documents and Settings\Rene\Application Data\Mozilla\Firefox\Profiles\i0ul0gg5.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned.
:mozilla.66:C:\Documents and Settings\Rene\Application Data\Mozilla\Firefox\Profiles\i0ul0gg5.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned.
:mozilla.67:C:\Documents and Settings\Rene\Application Data\Mozilla\Firefox\Profiles\i0ul0gg5.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned.
:mozilla.69:C:\Documents and Settings\Rene\Application Data\Mozilla\Firefox\Profiles\i0ul0gg5.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned.
:mozilla.62:C:\Documents and Settings\Deda\Application Data\Mozilla\Firefox\Profiles\ybmbfqb2.default\cookies.txt -> TrackingCookie.Hitslink : Cleaned.
:mozilla.66:C:\Documents and Settings\Deda\Application Data\Mozilla\Firefox\Profiles\ybmbfqb2.default\cookies.txt -> TrackingCookie.Hitslink : Cleaned.
:mozilla.68:C:\Documents and Settings\Deda\Application Data\Mozilla\Firefox\Profiles\ybmbfqb2.default\cookies.txt -> TrackingCookie.Hitslink : Cleaned.
:mozilla.69:C:\Documents and Settings\Deda\Application Data\Mozilla\Firefox\Profiles\ybmbfqb2.default\cookies.txt -> TrackingCookie.Hitslink : Cleaned.
:mozilla.449:C:\Documents and Settings\Rene\Application Data\Mozilla\Firefox\Profiles\i0ul0gg5.default\cookies.txt -> TrackingCookie.Liveperson : Cleaned.
:mozilla.450:C:\Documents and Settings\Rene\Application Data\Mozilla\Firefox\Profiles\i0ul0gg5.default\cookies.txt -> TrackingCookie.Liveperson : Cleaned.
:mozilla.451:C:\Documents and Settings\Rene\Application Data\Mozilla\Firefox\Profiles\i0ul0gg5.default\cookies.txt -> TrackingCookie.Liveperson : Cleaned.
:mozilla.466:C:\Documents and Settings\Rene\Application Data\Mozilla\Firefox\Profiles\i0ul0gg5.default\cookies.txt -> TrackingCookie.Mainentrypoint : Cleaned.
:mozilla.434:C:\Documents and Settings\Rene\Application Data\Mozilla\Firefox\Profiles\i0ul0gg5.default\cookies.txt -> TrackingCookie.Masterstats : Cleaned.
:mozilla.457:C:\Documents and Settings\Rene\Application Data\Mozilla\Firefox\Profiles\i0ul0gg5.default\cookies.txt -> TrackingCookie.Onestat : Cleaned.
:mozilla.458:C:\Documents and Settings\Rene\Application Data\Mozilla\Firefox\Profiles\i0ul0gg5.default\cookies.txt -> TrackingCookie.Onestat : Cleaned.
:mozilla.291:C:\Documents and Settings\Rene\Application Data\Mozilla\Firefox\Profiles\i0ul0gg5.default\cookies.txt -> TrackingCookie.Overture : Cleaned.
:mozilla.292:C:\Documents and Settings\Rene\Application Data\Mozilla\Firefox\Profiles\i0ul0gg5.default\cookies.txt -> TrackingCookie.Overture : Cleaned.
:mozilla.293:C:\Documents and Settings\Rene\Application Data\Mozilla\Firefox\Profiles\i0ul0gg5.default\cookies.txt -> TrackingCookie.Overture : Cleaned.
:mozilla.299:C:\Documents and Settings\Rene\Application Data\Mozilla\Firefox\Profiles\i0ul0gg5.default\cookies.txt -> TrackingCookie.Overture : Cleaned.
:mozilla.57:C:\Documents and Settings\Deda\Application Data\Mozilla\Firefox\Profiles\ybmbfqb2.default\cookies.txt -> TrackingCookie.Overture : Cleaned.
:mozilla.58:C:\Documents and Settings\Deda\Application Data\Mozilla\Firefox\Profiles\ybmbfqb2.default\cookies.txt -> TrackingCookie.Overture : Cleaned.
:mozilla.59:C:\Documents and Settings\Deda\Application Data\Mozilla\Firefox\Profiles\ybmbfqb2.default\cookies.txt -> TrackingCookie.Overture : Cleaned.
:mozilla.298:C:\Documents and Settings\Rene\Application Data\Mozilla\Firefox\Profiles\i0ul0gg5.default\cookies.txt -> TrackingCookie.Paycounter : Cleaned.
:mozilla.109:C:\Documents and Settings\Rene\Application Data\Mozilla\Firefox\Profiles\i0ul0gg5.default\cookies.txt -> TrackingCookie.Pointroll : Cleaned.
:mozilla.110:C:\Documents and Settings\Rene\Application Data\Mozilla\Firefox\Profiles\i0ul0gg5.default\cookies.txt -> TrackingCookie.Pointroll : Cleaned.
:mozilla.111:C:\Documents and Settings\Rene\Application Data\Mozilla\Firefox\Profiles\i0ul0gg5.default\cookies.txt -> TrackingCookie.Pointroll : Cleaned.
:mozilla.112:C:\Documents and Settings\Deda\Application Data\Mozilla\Firefox\Profiles\ybmbfqb2.default\cookies.txt -> TrackingCookie.Pointroll : Cleaned.
:mozilla.112:C:\Documents and Settings\Rene\Application Data\Mozilla\Firefox\Profiles\i0ul0gg5.default\cookies.txt -> TrackingCookie.Pointroll : Cleaned.
:mozilla.113:C:\Documents and Settings\Deda\Application Data\Mozilla\Firefox\Profiles\ybmbfqb2.default\cookies.txt -> TrackingCookie.Pointroll : Cleaned.
:mozilla.114:C:\Documents and Settings\Deda\Application Data\Mozilla\Firefox\Profiles\ybmbfqb2.default\cookies.txt -> TrackingCookie.Pointroll : Cleaned.
:mozilla.306:C:\Documents and Settings\Rene\Application Data\Mozilla\Firefox\Profiles\i0ul0gg5.default\cookies.txt -> TrackingCookie.Questionmarket : Cleaned.
:mozilla.307:C:\Documents and Settings\Rene\Application Data\Mozilla\Firefox\Profiles\i0ul0gg5.default\cookies.txt -> TrackingCookie.Questionmarket : Cleaned.
:mozilla.321:C:\Documents and Settings\Rene\Application Data\Mozilla\Firefox\Profiles\i0ul0gg5.default\cookies.txt -> TrackingCookie.Revenue : Cleaned.
:mozilla.184:C:\Documents and Settings\Rene\Application Data\Mozilla\Firefox\Profiles\i0ul0gg5.default\cookies.txt -> TrackingCookie.Ru4 : Cleaned.
:mozilla.185:C:\Documents and Settings\Rene\Application Data\Mozilla\Firefox\Profiles\i0ul0gg5.default\cookies.txt -> TrackingCookie.Ru4 : Cleaned.
:mozilla.186:C:\Documents and Settings\Rene\Application Data\Mozilla\Firefox\Profiles\i0ul0gg5.default\cookies.txt -> TrackingCookie.Ru4 : Cleaned.
:mozilla.187:C:\Documents and Settings\Rene\Application Data\Mozilla\Firefox\Profiles\i0ul0gg5.default\cookies.txt -> TrackingCookie.Ru4 : Cleaned.
:mozilla.161:C:\Documents and Settings\Rene\Application Data\Mozilla\Firefox\Profiles\i0ul0gg5.default\cookies.txt -> TrackingCookie.Sexcounter : Cleaned.
:mozilla.162:C:\Documents and Settings\Rene\Application Data\Mozilla\Firefox\Profiles\i0ul0gg5.default\cookies.txt -> TrackingCookie.Sexcounter : Cleaned.
:mozilla.58:C:\Documents and Settings\Mirela\Application Data\Mozilla\Firefox\Profiles\h36bi5z7.default\cookies.txt -> TrackingCookie.Sitestat : Cleaned.
:mozilla.47:C:\Documents and Settings\Mirela\Application Data\Mozilla\Firefox\Profiles\h36bi5z7.default\cookies.txt -> TrackingCookie.Spylog : Cleaned.
:mozilla.95:C:\Documents and Settings\Rene\Application Data\Mozilla\Firefox\Profiles\i0ul0gg5.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
:mozilla.30:C:\Documents and Settings\Mirela\Application Data\Mozilla\Firefox\Profiles\h36bi5z7.default\cookies.txt -> TrackingCookie.Tacoda : Cleaned.
:mozilla.31:C:\Documents and Settings\Mirela\Application Data\Mozilla\Firefox\Profiles\h36bi5z7.default\cookies.txt -> TrackingCookie.Tacoda : Cleaned.
:mozilla.353:C:\Documents and Settings\Rene\Application Data\Mozilla\Firefox\Profiles\i0ul0gg5.default\cookies.txt -> TrackingCookie.Tacoda : Cleaned.
:mozilla.354:C:\Documents and Settings\Rene\Application Data\Mozilla\Firefox\Profiles\i0ul0gg5.default\cookies.txt -> TrackingCookie.Tacoda : Cleaned.
:mozilla.355:C:\Documents and Settings\Rene\Application Data\Mozilla\Firefox\Profiles\i0ul0gg5.default\cookies.txt -> TrackingCookie.Tacoda : Cleaned.
:mozilla.86:C:\Documents and Settings\Rene\Application Data\Mozilla\Firefox\Profiles\i0ul0gg5.default\cookies.txt -> TrackingCookie.Targetnet : Cleaned.
:mozilla.87:C:\Documents and Settings\Rene\Application Data\Mozilla\Firefox\Profiles\i0ul0gg5.default\cookies.txt -> TrackingCookie.Targetnet : Cleaned.
:mozilla.88:C:\Documents and Settings\Rene\Application Data\Mozilla\Firefox\Profiles\i0ul0gg5.default\cookies.txt -> TrackingCookie.Targetnet : Cleaned.
:mozilla.89:C:\Documents and Settings\Rene\Application Data\Mozilla\Firefox\Profiles\i0ul0gg5.default\cookies.txt -> TrackingCookie.Targetnet : Cleaned.
:mozilla.29:C:\Documents and Settings\Mirela\Application Data\Mozilla\Firefox\Profiles\h36bi5z7.default\cookies.txt -> TrackingCookie.Tribalfusion : Cleaned.
:mozilla.375:C:\Documents and Settings\Rene\Application Data\Mozilla\Firefox\Profiles\i0ul0gg5.default\cookies.txt -> TrackingCookie.Tribalfusion : Cleaned.
:mozilla.17:C:\Documents and Settings\Rene\Application Data\Mozilla\Firefox\Profiles\i0ul0gg5.default\cookies.txt -> TrackingCookie.Webtrendslive : Cleaned.
:mozilla.394:C:\Documents and Settings\Rene\Application Data\Mozilla\Firefox\Profiles\i0ul0gg5.default\cookies.txt -> TrackingCookie.Yadro : Cleaned.
:mozilla.105:C:\Documents and Settings\Deda\Application Data\Mozilla\Firefox\Profiles\ybmbfqb2.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.106:C:\Documents and Settings\Deda\Application Data\Mozilla\Firefox\Profiles\ybmbfqb2.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.405:C:\Documents and Settings\Rene\Application Data\Mozilla\Firefox\Profiles\i0ul0gg5.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.406:C:\Documents and Settings\Rene\Application Data\Mozilla\Firefox\Profiles\i0ul0gg5.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.407:C:\Documents and Settings\Rene\Application Data\Mozilla\Firefox\Profiles\i0ul0gg5.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.408:C:\Documents and Settings\Rene\Application Data\Mozilla\Firefox\Profiles\i0ul0gg5.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.55:C:\Documents and Settings\Deda\Application Data\Mozilla\Firefox\Profiles\ybmbfqb2.default\cookies.txt -> TrackingCookie.Zedo : Cleaned.
:mozilla.56:C:\Documents and Settings\Deda\Application Data\Mozilla\Firefox\Profiles\ybmbfqb2.default\cookies.txt -> TrackingCookie.Zedo : Cleaned.
C:\System Volume Information\_restore{04E4FBF2-EA4B-42C2-A3D9-C42B059EFE1E}\RP605\A0362717.dll -> Trojan.Agent.neq : Cleaned with backup (quarantined).
D:\System Volume Information\_restore{04E4FBF2-EA4B-42C2-A3D9-C42B059EFE1E}\RP540\A0337502.exe -> Trojan.IcqSmiley.c : Cleaned with backup (quarantined).
C:\System Volume Information\_restore{04E4FBF2-EA4B-42C2-A3D9-C42B059EFE1E}\RP537\A0337304.rbf -> Trojan.QQPass.ly : Cleaned with backup (quarantined).
C:\System Volume Information\_restore{04E4FBF2-EA4B-42C2-A3D9-C42B059EFE1E}\RP540\A0337407.exe -> Trojan.QQPass.ly : Cleaned with backup (quarantined).
C:\System Volume Information\_restore{04E4FBF2-EA4B-42C2-A3D9-C42B059EFE1E}\RP540\A0337435.exe -> Trojan.QQPass.ly : Cleaned with backup (quarantined).
C:\System Volume Information\_restore{04E4FBF2-EA4B-42C2-A3D9-C42B059EFE1E}\RP540\A0337461.exe -> Trojan.QQPass.ly : Cleaned with backup (quarantined).
D:\System Volume Information\_restore{04E4FBF2-EA4B-42C2-A3D9-C42B059EFE1E}\RP540\A0337498.exe -> Trojan.QQPass.ly : Cleaned with backup (quarantined).
D:\System Volume Information\_restore{04E4FBF2-EA4B-42C2-A3D9-C42B059EFE1E}\RP540\A0337499.exe -> Trojan.QQPass.ly : Cleaned with backup (quarantined).

::Report end

Ran eTrust Antivirus Web Scanner

Tried to run Trend Micro (PC-cillin) but I didn't manage to end it... (skipped step...)

So, I still get this notification on Windows startup...




And none of the programs, which determine what's opened on start up, don't work... I disable, or even delete entries but they appear as soon as I press refresh...

So, please some help...

CalamityJane
Premium Member
join:2002-08-27
Eustis, FL

1 recommendation

CalamityJane

Premium Member

Hi rlesko! Welcome to DSLReports

Nice job on the pre-cleanup. We now need to see a diagnostic log from the free tool HijackThis (download and instructions are in Step 3 here:
»Security Cleanup FAQ »Mandatory Steps Before Requesting Assistance

Your screen shot is showing part of the MyWeb Searchbar has been removed but the registry entry was left behind

rlesko
join:2006-11-17
croatia

rlesko

Member

HijackThis:

Logfile of HijackThis v1.99.1
Scan saved at 17:22:29, on 18.11.2006
Platform: Windows XP SP1 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\System32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\PROGRA~1\COMMON~1\Stardock\SDMCP.exe
C:\Program Files\Bluetooth Software\bin\btwdins.exe
C:\WINDOWS\System32\drivers\CDAC11BA.EXE
C:\WINDOWS\System32\CTsvcCDA.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\DRIVERS\WtSrv.exe
C:\WINDOWS\System32\MsPMSPSv.exe
C:\Program Files\Common Files\Softwin\BitDefender Communicator\xcommsvr.exe
C:\Program Files\Common Files\Softwin\BitDefender Scan Server\bdss.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\PROGRA~1\Softwin\BITDEF~1\bdnagent.exe
C:\Program Files\Softwin\BitDefender8\bdswitch.exe
C:\WINDOWS\System32\WService.EXE
C:\PROGRA~1\Softwin\BITDEF~1\bdmcon.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
C:\PROGRA~1\Lavasoft\AD-AWA~1\Ad-Watch.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
C:\Program Files\TuneUp Utilities 2006\MemOptimizer.exe
C:\Program Files\Creative\MediaSource\Go\CTCMSGo.exe
C:\Program Files\Bluetooth Software\BTTray.exe
C:\Program Files\Sony Corporation\Picture Package\Picture Package Menu\SonyTray.exe
C:\Program Files\Microsoft IntelliPoint\IPoint.exe
C:\Program Files\Microsoft IntelliType Pro\Type32.exe
C:\Program Files\Microsoft Office\Office10\WINWORD.EXE
C:\Program Files\Mozilla Firefox\firefox.exe
D:\Rene\Downloads\New Folder\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,SearchURL = about:blank
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://as.starware.com/dp/search?x=wKX1ILEOi+Vh7AfA98Gm4Me69ZMbubcD+LDHhd+DajFQamRH9pGcmzbrMjSFveXaZeMqtmnDU8r9mxBRu6XPGKZ9qjzYsKz8ukFQ5mPrK5OM++ASUU6SQHlNO4SBYnLzTULmWHsLUfXtnKi5zKdizmo082iEGpj9NIPn6DqDXwzc9LLNG2fSl7yvOgQTSXSK
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)
R3 - URLSearchHook: (no name) - - (no file)
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O3 - Toolbar: (no name) - {BA52B914-B692-46c4-B683-905236F6F655} - (no file)
O3 - Toolbar: Easy-WebPrint - {327C2873-E90D-4c37-AA9D-10AC9BABA46C} - C:\Program Files\Canon\Easy-WebPrint\Toolband.dll
O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\System32\msdxm.ocx
O4 - HKLM\..\Run: [BDNewsAgent] "C:\PROGRA~1\Softwin\BITDEF~1\bdnagent.exe"
O4 - HKLM\..\Run: [BDSwitchAgent] C:\Program Files\Softwin\BitDefender8\bdswitch.exe
O4 - HKLM\..\Run: [WService] WService.EXE
O4 - HKLM\..\Run: [BDMCon] C:\PROGRA~1\Softwin\BITDEF~1\bdmcon.exe
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe
O4 - HKLM\..\Run: [My Web Search Bar] rundll32 C:\PROGRA~1\MYWEBS~1\bar\e.bin\MWSBAR.DLL,S
O4 - HKLM\..\Run: [MyWebSearch Email Plugin] C:\PROGRA~1\MYWEBS~1\bar\e.bin\mwsoemon.exe
O4 - HKLM\..\Run: [AWMON] "C:\PROGRA~1\Lavasoft\AD-AWA~1\Ad-Watch.exe"
O4 - HKCU\..\Run: [TuneUp MemOptimizer] "C:\Program Files\TuneUp Utilities 2006\MemOptimizer.exe" autostart
O4 - HKCU\..\Run: [MyWebSearch Email Plugin] C:\PROGRA~1\MYWEBS~1\bar\e.bin\mwsoemon.exe
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [Creative MediaSource Go] C:\Program Files\Creative\MediaSource\Go\CTCMSGo.exe /SCB
O4 - Global Startup: BTTray.lnk = ?
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O4 - Global Startup: Picture Package Menu.lnk = C:\Program Files\Sony Corporation\Picture Package\Picture Package Menu\SonyTray.exe
O8 - Extra context menu item: &Search - http://edits.mywebsearch.com/toolbaredits/menusearch.jhtml?p=ZNfox000
O8 - Extra context menu item: >>> FREE PORN GALLERIES - javascript:{document.location='http://sexmaxx.com/freegalleries.htm';}
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000
O8 - Extra context menu item: Easy-WebPrint Add To Print List - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_AddToList.html
O8 - Extra context menu item: Easy-WebPrint High Speed Print - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_HSPrint.html
O8 - Extra context menu item: Easy-WebPrint Preview - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_Preview.html
O8 - Extra context menu item: Easy-WebPrint Print - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_Print.html
O8 - Extra context menu item: Send To &Bluetooth - C:\Program Files\Bluetooth Software\btsendto_ie_ctx.htm
O9 - Extra button: (no name) - AutorunsDisabled - (no file)
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra button: ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - C:\Program Files\ICQLite\ICQLite.exe
O9 - Extra 'Tools' menuitem: ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - C:\Program Files\ICQLite\ICQLite.exe
O9 - Extra button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: @btrez.dll,-4017 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\Bluetooth Software\btsendto_ie.htm
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:\Program Files\Yahoo!\Common\yinsthelper.dll
O16 - DPF: {7B297BFD-85E4-4092-B2AF-16A91B2EA103} (WScanCtl Class) - http://www3.ca.com/securityadvisor/virusinfo/webscan.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{0EB2FC0D-8ACD-436A-9299-92481E09D94F}: NameServer = 195.29.150.3 195.29.150.4
O18 - Protocol: widimg - {EE7C2AFF-5742-44FF-BD0E-E521B0D3C3BA} - C:\WINDOWS\System32\btxppanel.dll
O20 - Winlogon Notify: MCPClient - C:\PROGRA~1\COMMON~1\Stardock\mcpstub.dll
O23 - Service: Adobe LM Service - Unknown owner - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: Ati HotKey Poller - Unknown owner - C:\WINDOWS\System32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: AVG Anti-Spyware Guard - Anti-Malware Development a.s. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: BitDefender Scan Server (bdss) - Unknown owner - C:\Program Files\Common Files\Softwin\BitDefender Scan Server\bdss.exe" /service (file missing)
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation - C:\Program Files\Bluetooth Software\bin\btwdins.exe
O23 - Service: C-DillaCdaC11BA - Macrovision - C:\WINDOWS\System32\drivers\CDAC11BA.EXE
O23 - Service: Creative Service for CDROM Access - Creative Technology Ltd - C:\WINDOWS\System32\CTsvcCDA.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iPod Service - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Macromedia Licensing Service - Unknown owner - C:\Program Files\Common Files\Macromedia Shared\Service\Macromedia Licensing.exe
O23 - Service: TuneUp WinStyler Theme Service (TUWinStylerThemeSvc) - TuneUp Software GmbH - C:\Program Files\TuneUp Utilities 2006\WinStylerThemeSvc.exe
O23 - Service: WinTab Service (WinTabService) - Tablet Driver - C:\WINDOWS\System32\DRIVERS\WtSrv.exe
O23 - Service: BitDefender Communicator (XCOMM) - Unknown owner - C:\Program Files\Common Files\Softwin\BitDefender Communicator\xcommsvr.exe" /service (file missing)

That's now...
I also have a log from before I started cleaning...
Tell me if I have to post that,too...
rlesko

1 edit

rlesko

Member

I ran eTrust again...
It found these files...
What am I suppose to do with them?



lilhurricane
Crunchin' For Cures
Numquam oblita
join:2003-01-11
Purple Zone

lilhurricane

Numquam oblita

Hiya, rlesko ..you can upload attachments of pics here.
Just use the "attachment button"
Hotlinking kind of cause "blown margins".

I've corrected the two shots for you.

~lil~

rlesko
join:2006-11-17
croatia

rlesko

Member

said by lilhurricane:

Hiya, rlesko ..you can upload attachments of pics here.
Just use the "attachment button"
Hotlinking kind of cause "blown margins".

I've corrected the two shots for you.

~lil~
Sorry...

lilhurricane
Crunchin' For Cures
Numquam oblita
join:2003-01-11
Purple Zone

lilhurricane

Numquam oblita

No worries!!

Welcome to the site!

rlesko
join:2006-11-17
croatia

rlesko

Member

Thanks...

So, what to do now... I can't control program startup so i can't disable MYWEBSEARCH...

What should I do?

lilhurricane
Crunchin' For Cures
Numquam oblita
join:2003-01-11
Purple Zone

lilhurricane

Numquam oblita

Patience, grasshopper

Your getting assistance..so just check for CalamityJane's reply in a lil bit

CalamityJane
Premium Member
join:2002-08-27
Eustis, FL

1 edit

1 recommendation

CalamityJane to rlesko

Premium Member

to rlesko
Hi,

You can go ahead and let eTrust clean the infected files found.

The myway searchbar is best removed via Add/Remove programs in the Control Panel (if it will remove from there). It might not because one of the cleaning programs has messed with it and not removed it completely.

Then, Open HijackThis and do a *system scan only*

When it finishes, checkmark these entries then press the *fix checked* button

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,SearchURL = about:blank

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = »as.starware.com/dp/search?x=wKX1···OgQTSXSK

R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)

R3 - URLSearchHook: (no name) - - (no file)

O3 - Toolbar: (no name) - {BA52B914-B692-46c4-B683-905236F6F655} - (no file)

O4 - HKLM\..\Run: [My Web Search Bar] rundll32 C:\PROGRA~1\MYWEBS~1\bar\e.bin\MWSBAR.DLL,S

O4 - HKLM\..\Run: [MyWebSearch Email Plugin] C:\PROGRA~1\MYWEBS~1\bar\e.bin\mwsoemon.exe

O4 - HKCU\..\Run: [MyWebSearch Email Plugin] C:\PROGRA~1\MYWEBS~1\bar\e.bin\mwsoemon.exe

O8 - Extra context menu item: &Search - »edits.mywebsearch.com/toolbaredi···ZNfox000

O8 - Extra context menu item: >>> FREE PORN GALLERIES - javascript:{document.location='»sexmaxx.com/freegalleries.htm';}

Then delete this folder (if found)
C:\PROGRAM FILES\MYWEBSearch

rlesko
join:2006-11-17
croatia

1 edit

rlesko

Member

I did everything you mentioned, I finally got
O8 - Extra context menu item: >>> FREE PORN GALLERIES - javascript:{document.location='»sexmaxx.com/freegalleries.htm';}
deleted from IE...

But, the notification is still there when I restart...
I did another HijackThis:

Logfile of HijackThis v1.99.1
Scan saved at 23:14:44, on 18.11.2006
Platform: Windows XP SP1 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\System32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\PROGRA~1\COMMON~1\Stardock\SDMCP.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\Program Files\Bluetooth Software\bin\btwdins.exe
C:\WINDOWS\System32\drivers\CDAC11BA.EXE
C:\WINDOWS\System32\CTsvcCDA.exe
C:\WINDOWS\System32\svchost.exe
C:\PROGRA~1\Softwin\BITDEF~1\bdnagent.exe
C:\Program Files\Softwin\BitDefender8\bdswitch.exe
C:\PROGRA~1\Softwin\BITDEF~1\bdmcon.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
C:\PROGRA~1\Lavasoft\AD-AWA~1\Ad-Watch.exe
C:\Program Files\TuneUp Utilities 2006\MemOptimizer.exe
C:\WINDOWS\System32\WService.EXE
C:\Program Files\Creative\MediaSource\Go\CTCMSGo.exe
C:\Program Files\Bluetooth Software\BTTray.exe
C:\Program Files\Sony Corporation\Picture Package\Picture Package Menu\SonyTray.exe
C:\WINDOWS\System32\DRIVERS\WtSrv.exe
C:\WINDOWS\System32\MsPMSPSv.exe
C:\Program Files\Common Files\Softwin\BitDefender Communicator\xcommsvr.exe
C:\Program Files\Common Files\Softwin\BitDefender Scan Server\bdss.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\WINDOWS\System32\wuauclt.exe
D:\Rene\Downloads\New Folder\HijackThis.exe

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://as.starware.com/dp/search?x=wKX1ILEOi+Vh7AfA98Gm4Me69ZMbubcD+LDHhd+DajFQamRH9pGcmzbrMjSFveXaZeMqtmnDU8r9mxBRu6XPGKZ9qjzYsKz8ukFQ5mPrK5OM++ASUU6SQHlNO4SBYnLzTULmWHsLUfXtnKi5zKdizmo082iEGpj9NIPn6DqDXwzc9LLNG2fSl7yvOgQTSXSK
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O3 - Toolbar: Easy-WebPrint - {327C2873-E90D-4c37-AA9D-10AC9BABA46C} - C:\Program Files\Canon\Easy-WebPrint\Toolband.dll
O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\System32\msdxm.ocx
O4 - HKLM\..\Run: [BDNewsAgent] "C:\PROGRA~1\Softwin\BITDEF~1\bdnagent.exe"
O4 - HKLM\..\Run: [BDSwitchAgent] C:\Program Files\Softwin\BitDefender8\bdswitch.exe
O4 - HKLM\..\Run: [WService] WService.EXE
O4 - HKLM\..\Run: [BDMCon] C:\PROGRA~1\Softwin\BITDEF~1\bdmcon.exe
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe
O4 - HKLM\..\Run: [AWMON] "C:\PROGRA~1\Lavasoft\AD-AWA~1\Ad-Watch.exe"
O4 - HKLM\..\Run: [My Web Search Bar] rundll32 C:\PROGRA~1\MYWEBS~1\bar\e.bin\MWSBAR.DLL,S
O4 - HKLM\..\Run: [MyWebSearch Email Plugin] C:\PROGRA~1\MYWEBS~1\bar\e.bin\mwsoemon.exe
O4 - HKCU\..\Run: [TuneUp MemOptimizer] "C:\Program Files\TuneUp Utilities 2006\MemOptimizer.exe" autostart
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [Creative MediaSource Go] C:\Program Files\Creative\MediaSource\Go\CTCMSGo.exe /SCB
O4 - HKCU\..\Run: [MyWebSearch Email Plugin] C:\PROGRA~1\MYWEBS~1\bar\e.bin\mwsoemon.exe
O4 - Global Startup: BTTray.lnk = ?
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O4 - Global Startup: Picture Package Menu.lnk = C:\Program Files\Sony Corporation\Picture Package\Picture Package Menu\SonyTray.exe
O8 - Extra context menu item: &Save Flash In This Page by Flash Saver - C:\PROGRA~1\FLASHS~1\save.htm
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000
O8 - Extra context menu item: Easy-WebPrint Add To Print List - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_AddToList.html
O8 - Extra context menu item: Easy-WebPrint High Speed Print - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_HSPrint.html
O8 - Extra context menu item: Easy-WebPrint Preview - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_Preview.html
O8 - Extra context menu item: Easy-WebPrint Print - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_Print.html
O8 - Extra context menu item: Save Flash - res://C:\Program Files\UnH Solutions\Flash Saving Plugin\FlashSButton.dll/210
O8 - Extra context menu item: Send To &Bluetooth - C:\Program Files\Bluetooth Software\btsendto_ie_ctx.htm
O9 - Extra button: (no name) - AutorunsDisabled - (no file)
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra button: Flash Saver - {09EA1F80-F40A-11D1-B792-444553540001} - C:\PROGRA~1\FLASHS~1\save.htm
O9 - Extra 'Tools' menuitem: Flash Saver - {09EA1F80-F40A-11D1-B792-444553540001} - C:\PROGRA~1\FLASHS~1\save.htm
O9 - Extra button: ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - C:\Program Files\ICQLite\ICQLite.exe
O9 - Extra 'Tools' menuitem: ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - C:\Program Files\ICQLite\ICQLite.exe
O9 - Extra button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: @btrez.dll,-4017 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: Flash - {43CF38F3-5AEC-45a3-AD31-04EB06E9C6CA} - C:\Program Files\UnH Solutions\Flash Saving Plugin\FlashSButton.dll (HKCU)
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:\Program Files\Yahoo!\Common\yinsthelper.dll
O16 - DPF: {7B297BFD-85E4-4092-B2AF-16A91B2EA103} (WScanCtl Class) - http://www3.ca.com/securityadvisor/virusinfo/webscan.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{0EB2FC0D-8ACD-436A-9299-92481E09D94F}: NameServer = 195.29.150.3 195.29.150.4
O18 - Protocol: widimg - {EE7C2AFF-5742-44FF-BD0E-E521B0D3C3BA} - C:\WINDOWS\System32\btxppanel.dll
O20 - Winlogon Notify: MCPClient - C:\PROGRA~1\COMMON~1\Stardock\mcpstub.dll
O23 - Service: Adobe LM Service - Unknown owner - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: Ati HotKey Poller - Unknown owner - C:\WINDOWS\System32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: AVG Anti-Spyware Guard - Anti-Malware Development a.s. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: BitDefender Scan Server (bdss) - Unknown owner - C:\Program Files\Common Files\Softwin\BitDefender Scan Server\bdss.exe" /service (file missing)
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation - C:\Program Files\Bluetooth Software\bin\btwdins.exe
O23 - Service: C-DillaCdaC11BA - Macrovision - C:\WINDOWS\System32\drivers\CDAC11BA.EXE
O23 - Service: Creative Service for CDROM Access - Creative Technology Ltd - C:\WINDOWS\System32\CTsvcCDA.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iPod Service - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Macromedia Licensing Service - Unknown owner - C:\Program Files\Common Files\Macromedia Shared\Service\Macromedia Licensing.exe
O23 - Service: TuneUp WinStyler Theme Service (TUWinStylerThemeSvc) - TuneUp Software GmbH - C:\Program Files\TuneUp Utilities 2006\WinStylerThemeSvc.exe
O23 - Service: WinTab Service (WinTabService) - Tablet Driver - C:\WINDOWS\System32\DRIVERS\WtSrv.exe
O23 - Service: BitDefender Communicator (XCOMM) - Unknown owner - C:\Program Files\Common Files\Softwin\BitDefender Communicator\xcommsvr.exe" /service (file missing)

Why are
O4 - HKLM\..\Run: [MyWebSearch Email Plugin] C:\PROGRA~1\MYWEBS~1\bar\e.bin\mwsoemon.exe
O4 - HKLM\..\Run: [My Web Search Bar] rundll32 C:\PROGRA~1\MYWEBS~1\bar\e.bin\MWSBAR.DLL,S
O4 - HKLM\..\Run: [MyWebSearch Email Plugin] C:\PROGRA~1\MYWEBS~1\bar\e.bin\mwsoemon.exe
still present even after trying to fix checked...

CalamityJane
Premium Member
join:2002-08-27
Eustis, FL

1 recommendation

CalamityJane

Premium Member

It' probably your Ad-watch in Adware running with automatic on. This is blocking the changes that HijackThis is trying to make to the registry.

Open AdAware SE.

1. Right click on the Ad-Watch icon in the system tray and select "Restore Ad-Watch".
2. At the bottom of the screen there will be two checkable items called "Active" and "Automatic".

Active: Switches Monitoring On or Off without closing
Automatic: Switches Automatic Blocking On or Off

3. Uncheck (red X) both items.

Then try again the fixes above using HijackThis

rlesko
join:2006-11-17
croatia

1 edit

rlesko

Member

OK, problem with MyWebSearch is solved...
I'd like to thank you for your help, and would like to tell me why the startup manager doesn't work as it's supposed to...

Or should I begin new thread...?

And what would you recommend to do in the future?
Which antivirus programs should I use, which antispyware...
How often should I use them etc.

Tnx

CalamityJane
Premium Member
join:2002-08-27
Eustis, FL

CalamityJane

Premium Member

You're quite welcome. Glad we could help

Could it be that your problems with startup managers is because you had Ad-Watch blocking on automatic? Try them with Ad-watch disabled. But don't forget to re-enable it when you are done.

Some final cleanup and prevention recomendations follow.

You can go ahead and delete any special tools we used (SmitRem, SmitfraudFix, ComboFix, etc). They won't serve a future purpose and are replaced with updated versions frequently, so the copies you have are probably already out of date and no need to keep them.

Do a disk cleanup. Go to Start > Run and type in the box: Cleanmgr
Wait while Windows scans your system for files to delete.
Make sure these 3 are checkmarked and press *ok* to delete them.

Temporary Files
Temporary Internet Files
Recycle Bin

Now that your PC is clean, make sure all programs are running properly and then you'll need to reset your restore point in Windows XP.......why?

One of the best features of Windows ME or XP is the System Restore option, however if a malware infects a computer with this operating system it can be backed up in the System Restore folder. Therefore, clearing the restore points is necessary after malware removal.

To reset your restore points, please note that you will need to log into your computer with an account which has full administrator access. You will know if the account has administrator access because you will be able to see the System Restore tab. If the tab is missing, you are logged in under a limited account.

(winXP)

1. Turn off System Restore.
Go to Start and right-click on *My Computer*.
Click Properties.
Click the System Restore tab.
Put a Checkmark in the box next to "Turn off System Restore".
Click Apply, and then click OK.

2. Reboot.

3. Turn ON System Restore.
Go to Start and right-click on *My Computer*.
Click Properties.
Click the System Restore tab.
Remove the checkmark next to "Turn off System Restore".
Click Apply, and then click OK.

How to Turn On and Turn Off System Restore in Windows XP
»support.microsoft.com/de ··· s;310405
......................
Also, I can't stress enough the importance of having your Windows critical Security Updates. Most malware today uses exploits on unpatched systems to creep onto your system without your even doing anything but visiting an infected webpage!!

Watch what you download, be careful where you surf, and don't trust attachments or even links in email and Instant messages. Even if they come from a buddy, that buddy could be the one infected and it is the virus sending that link from his account. You click on it thinking he is trusted, and *boom* you're infected.
Many "Phishing" attempts are made by cleverly crafted email to look like it is coming from an "official" source (like Microsoft, or your bank, or some other provider). Don't click on links in those. Go directly to the site instead and navigate the menus - don't trust email you think came from a "safe source" unless you are expecting it! There is more in the link I will provide below, but those are the choice avenues of infection these days.
Stay far AWAY from cracks and warez sites - you're sure to get infected files there, and the same can be said for files downloaded from p2p (more than half are usually infected and probably not detectable by your current security software - the newest nasties are always released in those venues).

A word about shared computers and networks.
Share Your PC
»www.microsoft.com/window ··· tro.mspx
Not all users need to have Admin Accounts. It is much safer to have most of your users on a shared system running as Limited User accounts. That way, if there is "an accident", it will only affect one user's account and not the entire system.

Next, I highly recommend you get some extra protection to prevent future infections. Here are some things you can do and some free programs to help .
How do I prevent Browser Hijacks and Spyware?
»Security Cleanup FAQ »How do I prevent Browser Hijacks and Spyware?

I'm happy to see you have SP2 installed. That will address numerous security issues in your Operating System and IE
Make sure that you keep your Operating System and IE updated with the latest Critical Security Updates from Microsoft...they usually come out once a month, on the 2nd Tuesday of each month. This is the first step in malware prevention, as many nasties now take advantage of new exploits and if not patched, you are vulnerable!
Windows Update
»update.microsoft.com/mic ··· tupdate/

And see this link for instructions on how to configure the enhanced security features in SP2:
»www.microsoft.com/techne ··· cxp.mspx

I also highly recommend to get the free tool, Microsoft Baseline Security Analyzer (MBSA) from Microsoft to analyze your PC security for prevention purposes.

MBSA Version 2.0 will scan for common system misconfigurations on Windows 2000, Windows XP, and Windows Server 2003 systems. This program will identify the system security weaknesses in your browser and operating system and provides easy instructions to correct them. This includes any missing critical Windows security updates, system vulnerabilities and your IE Browser security settings. Get the download here:
Microsoft Baseline Security Analyzer
»www.microsoft.com/techne ··· ome.mspx
Choose MBSAsetup-EN.msi = (English Version) or the language appropriate for you.

Also visit this Free Online Scanner from Microsoft for PC Health and Safety
»safety.live.com/site/en- ··· ault.htm
and Microsoft Security At Home
»www.microsoft.com/athome ··· ult.mspx
for tips to Protect your Pc, Protect yourself and Protect your Family.

rlesko
join:2006-11-17
croatia

rlesko

Member

What about TuneUp Utilities 2006?
I already have them installed, should I use them for registry cleaning, maintenance, disk cleaning?

CalamityJane
Premium Member
join:2002-08-27
Eustis, FL

1 recommendation

CalamityJane

Premium Member

I usually advise to use the Windows Disk Cleanup utility as in my last post above. It's much safer. If you are using a regsitry cleaning tool, be careful that you know what you are deleting is correct because I seen people wreck their systems using those to delete everything found.

rlesko
join:2006-11-17
croatia

rlesko

Member

OK, start up is still scr...d up so I can't determine which programs I wanna run...

Which program for managing start up should I use?
rlesko

rlesko

Member

I just wanted to ask one more thing...

When I restart, after the boot screen, my wallpaper appears for a second and then it comes to welcome screen...

It didn't use to show up, so I'd like to stop that... If you know what's the matter, I'd appreciate help...
rlesko

rlesko

Member

I use mozilla firefox mostly so programs from the list you posted link to actually wouldn't do me any good since they can only be used with IE...

So what am I suppose to use...
I already use Ad-Aware and BitDefender...

CalamityJane
Premium Member
join:2002-08-27
Eustis, FL

1 recommendation

CalamityJane

Premium Member

said by rlesko:

I use mozilla firefox mostly so programs from the list you posted link to actually wouldn't do me any good since they can only be used with IE...

So what am I suppose to use...
I already use Ad-Aware and BitDefender...
I think only IESPYAD is for IE only. The others work with Firefox as well
said by rlesko:
Which program for managing start up should I use?

Post a new topic for that in the Software Forum
»Software
said by rlesko:
When I restart, after the boot screen, my wallpaper appears for a second and then it comes to welcome screen...

It didn't use to show up, so I'd like to stop that... If you know what's the matter, I'd appreciate help...

For this one, the Microsoft Help forum is for you
Start a new topic here.
»Microsoft

rlesko
join:2006-11-17
croatia

1 recommendation

rlesko

Member

Thanks...A lot...

CalamityJane
Premium Member
join:2002-08-27
Eustis, FL

CalamityJane

Premium Member

You're quite welcome! Glad we could help