| View previous topic :: View next topic |
| Author |
Message |
calbiotech
Member
Joined: 19 Apr 2008
Posts: 2
Points: 0
Location: California
|
| Posted: Sat 04/19/2008 7:27pm [Post #1] |
|
|
Hi there, Thanks for help on this, I'm at my wits end. The following is the log from my Pandascan:
;****************************************************** ******************************************************* ******************************************************* ***************
ANALYSIS: 2008-04-19 17:00:09
PROTECTIONS: 0
MALWARE: 25
SUSPECTS: 2
;****************************************************** ******************************************************* ******************************************************* ***************
PROTECTIONS
Description Version Active Updated
;====================================================== ======================================================= ======================================================= ===============
;====================================================== ======================================================= ======================================================= ===============
MALWARE
Id Description Type Active Severity Disinfectable Disinfected Location
;====================================================== ======================================================= ======================================================= ===============
00040467 adware/elitebar Adware No 1 Yes No hkey_classes_root\clsid\{0b682cc1-fb40-4006-a5dd-99edd3 c9095d}
00040467 adware/elitebar Adware No 1 Yes No HKEY_LOCAL_MACHINE\software\classes\CLSID\{0B682CC1-FB4 0-4006-A5DD-99EDD3C9095D}
00046190 adware/slagent Adware No 0 Yes No c:\windows\mslagent
00101314 adware/intdel Adware No 0 Yes No c:\program files\inet delivery
00132710 dialer.xd Dialers No 0 Yes No HKEY_LOCAL_MACHINE\software\classes\CLSID\{54645654-222 5-4455-44A1-9F4543D34545}
00132710 dialer.xd Dialers No 0 Yes No hkey_classes_root\clsid\{54645654-2225-4455-44a1-9f4543 d34545}
00139059 Cookie/Traffic Marketplace TrackingCookie No 0 Yes No C:\Documents and Settings\Jeff Hibbett\Application Data\Mozilla\Firefox\Profiles\xi9d69uh.default\cookies. txt[.trafficmp.com/]
00139059 Cookie/Traffic Marketplace TrackingCookie No 0 Yes No C:\Documents and Settings\Jeff Hibbett\Application Data\Mozilla\Firefox\Profiles\xi9d69uh.default\cookies. txt[.trafficmp.com/]
00139059 Cookie/Traffic Marketplace TrackingCookie No 0 Yes No C:\Documents and Settings\Jeff Hibbett\Cookies\jeff_hibbett@trafficmp[2].txt
00139060 Cookie/Casalemedia TrackingCookie No 0 Yes No C:\Documents and Settings\Jeff Hibbett\Application Data\Mozilla\Firefox\Profiles\xi9d69uh.default\cookies. txt[.casalemedia.com/]
00139061 Cookie/Doubleclick TrackingCookie No 0 Yes No C:\Documents and Settings\Jeff Hibbett\Application Data\Mozilla\Firefox\Profiles\xi9d69uh.default\cookies. txt[.doubleclick.net/]
00139061 Cookie/Doubleclick TrackingCookie No 0 Yes No C:\Documents and Settings\Jeff Hibbett\Cookies\jeff_hibbett@doubleclick[1].txt
00139064 Cookie/Atlas DMT TrackingCookie No 0 Yes No C:\Documents and Settings\Jeff Hibbett\Cookies\jeff_hibbett@atdmt[2].txt
00139064 Cookie/Atlas DMT TrackingCookie No 0 Yes No C:\Documents and Settings\Jeff Hibbett\Application Data\Mozilla\Firefox\Profiles\xi9d69uh.default\cookies. txt[.atdmt.com/]
00139064 Cookie/Atlas DMT TrackingCookie No 0 Yes No C:\Documents and Settings\Guest\Cookies\guest@atdmt[1].txt
00139535 Application/Processor HackTools No 0 Yes No C:\Documents and Settings\Jeff Hibbett\Desktop\SmitfraudFix\Process.exe
00145457 Cookie/FastClick TrackingCookie No 0 Yes No C:\Documents and Settings\Jeff Hibbett\Application Data\Mozilla\Firefox\Profiles\xi9d69uh.default\cookies. txt[.fastclick.net/]
00145731 Cookie/Tribalfusion TrackingCookie No 0 Yes No C:\Documents and Settings\Jeff Hibbett\Application Data\Mozilla\Firefox\Profiles\xi9d69uh.default\cookies. txt[.tribalfusion.com/]
00145738 Cookie/Mediaplex TrackingCookie No 0 Yes No C:\Documents and Settings\Jeff Hibbett\Application Data\Mozilla\Firefox\Profiles\xi9d69uh.default\cookies. txt[.mediaplex.com/]
00168048 Cookie/Overture TrackingCookie No 0 Yes No C:\Documents and Settings\Guest\Cookies\guest@perf.overture[1].txt
00168056 Cookie/YieldManager TrackingCookie No 0 Yes No C:\Documents and Settings\Jeff Hibbett\Application Data\Mozilla\Firefox\Profiles\xi9d69uh.default\cookies. txt[ad.yieldmanager.com/]
00168056 Cookie/YieldManager TrackingCookie No 0 Yes No C:\Documents and Settings\Jeff Hibbett\Application Data\Mozilla\Firefox\Profiles\xi9d69uh.default\cookies. txt[ad.yieldmanager.com/]
00168056 Cookie/YieldManager TrackingCookie No 0 Yes No C:\Documents and Settings\Guest\Cookies\guest@ad.yieldmanager[1].txt
00168056 Cookie/YieldManager TrackingCookie No 0 Yes No C:\Documents and Settings\Jeff Hibbett\Application Data\Mozilla\Firefox\Profiles\xi9d69uh.default\cookies. txt[ad.yieldmanager.com/]
00168056 Cookie/YieldManager TrackingCookie No 0 Yes No C:\Documents and Settings\Jeff Hibbett\Application Data\Mozilla\Firefox\Profiles\xi9d69uh.default\cookies. txt[ad.yieldmanager.com/]
00168056 Cookie/YieldManager TrackingCookie No 0 Yes No C:\Documents and Settings\Jeff Hibbett\Application Data\Mozilla\Firefox\Profiles\xi9d69uh.default\cookies. txt[ad.yieldmanager.com/]
00168056 Cookie/YieldManager TrackingCookie No 0 Yes No C:\Documents and Settings\Jeff Hibbett\Cookies\jeff_hibbett@ad.yieldmanager[1].txt
00168061 Cookie/Apmebf TrackingCookie No 0 Yes No C:\Documents and Settings\Guest\Cookies\guest@apmebf[1].txt
00168090 Cookie/Serving-sys TrackingCookie No 0 Yes No C:\Documents and Settings\Jeff Hibbett\Application Data\Mozilla\Firefox\Profiles\xi9d69uh.default\cookies. txt[.serving-sys.com/]
00168090 Cookie/Serving-sys TrackingCookie No 0 Yes No C:\Documents and Settings\Jeff Hibbett\Application Data\Mozilla\Firefox\Profiles\xi9d69uh.default\cookies. txt[.serving-sys.com/]
00168090 Cookie/Serving-sys TrackingCookie No 0 Yes No C:\Documents and Settings\Jeff Hibbett\Application Data\Mozilla\Firefox\Profiles\xi9d69uh.default\cookies. txt[.serving-sys.com/]
00168090 Cookie/Serving-sys TrackingCookie No 0 Yes No C:\Documents and Settings\Jeff Hibbett\Application Data\Mozilla\Firefox\Profiles\xi9d69uh.default\cookies. txt[.serving-sys.com/]
00168090 Cookie/Serving-sys TrackingCookie No 0 Yes No C:\Documents and Settings\Jeff Hibbett\Application Data\Mozilla\Firefox\Profiles\xi9d69uh.default\cookies. txt[.serving-sys.com/]
00168093 Cookie/Serving-sys TrackingCookie No 0 Yes No C:\Documents and Settings\Jeff Hibbett\Application Data\Mozilla\Firefox\Profiles\xi9d69uh.default\cookies. txt[.bs.serving-sys.com/]
00169190 Cookie/Advertising TrackingCookie No 0 Yes No C:\Documents and Settings\Jeff Hibbett\Application Data\Mozilla\Firefox\Profiles\xi9d69uh.default\cookies. txt[.advertising.com/]
00169190 Cookie/Advertising TrackingCookie No 0 Yes No C:\Documents and Settings\Jeff Hibbett\Application Data\Mozilla\Firefox\Profiles\xi9d69uh.default\cookies. txt[.advertising.com/]
00169190 Cookie/Advertising TrackingCookie No 0 Yes No C:\Documents and Settings\Jeff Hibbett\Application Data\Mozilla\Firefox\Profiles\xi9d69uh.default\cookies. txt[.advertising.com/]
00169190 Cookie/Advertising TrackingCookie No 0 Yes No C:\Documents and Settings\Jeff Hibbett\Application Data\Mozilla\Firefox\Profiles\xi9d69uh.default\cookies. txt[.advertising.com/]
00169190 Cookie/Advertising TrackingCookie No 0 Yes No C:\Documents and Settings\Jeff Hibbett\Cookies\jeff_hibbett@advertising[1].txt
00169190 Cookie/Advertising TrackingCookie No 0 Yes No C:\Documents and Settings\Jeff Hibbett\Application Data\Mozilla\Firefox\Profiles\xi9d69uh.default\cookies. txt[.advertising.com/]
00170495 Cookie/PointRoll TrackingCookie No 0 Yes No C:\Documents and Settings\Jeff Hibbett\Application Data\Mozilla\Firefox\Profiles\xi9d69uh.default\cookies. txt[.ads.pointroll.com/]
00170495 Cookie/PointRoll TrackingCookie No 0 Yes No C:\Documents and Settings\Jeff Hibbett\Application Data\Mozilla\Firefox\Profiles\xi9d69uh.default\cookies. txt[.ads.pointroll.com/]
00170495 Cookie/PointRoll TrackingCookie No 0 Yes No C:\Documents and Settings\Jeff Hibbett\Application Data\Mozilla\Firefox\Profiles\xi9d69uh.default\cookies. txt[.ads.pointroll.com/]
00170495 Cookie/PointRoll TrackingCookie No 0 Yes No C:\Documents and Settings\Jeff Hibbett\Application Data\Mozilla\Firefox\Profiles\xi9d69uh.default\cookies. txt[.ads.pointroll.com/]
00170495 Cookie/PointRoll TrackingCookie No 0 Yes No C:\Documents and Settings\Jeff Hibbett\Application Data\Mozilla\Firefox\Profiles\xi9d69uh.default\cookies. txt[.ads.pointroll.com/]
00170495 Cookie/PointRoll TrackingCookie No 0 Yes No C:\Documents and Settings\Jeff Hibbett\Application Data\Mozilla\Firefox\Profiles\xi9d69uh.default\cookies. txt[.ads.pointroll.com/]
00170495 Cookie/PointRoll TrackingCookie No 0 Yes No C:\Documents and Settings\Jeff Hibbett\Application Data\Mozilla\Firefox\Profiles\xi9d69uh.default\cookies. txt[.ads.pointroll.com/]
00170556 Cookie/RealMedia TrackingCookie No 0 Yes No C:\Documents and Settings\Jeff Hibbett\Application Data\Mozilla\Firefox\Profiles\xi9d69uh.default\cookies. txt[.realmedia.com/]
00170556 Cookie/RealMedia TrackingCookie No 0 Yes No C:\Documents and Settings\Jeff Hibbett\Application Data\Mozilla\Firefox\Profiles\xi9d69uh.default\cookies. txt[.realmedia.com/]
00171982 Cookie/QuestionMarket TrackingCookie No 0 Yes No C:\Documents and Settings\Jeff Hibbett\Application Data\Mozilla\Firefox\Profiles\xi9d69uh.default\cookies. txt[.questionmarket.com/]
00171982 Cookie/QuestionMarket TrackingCookie No 0 Yes No C:\Documents and Settings\Jeff Hibbett\Application Data\Mozilla\Firefox\Profiles\xi9d69uh.default\cookies. txt[.questionmarket.com/]
00173520 Cookie/Bluestreak TrackingCookie No 0 Yes No C:\Documents and Settings\Jeff Hibbett\Application Data\Mozilla\Firefox\Profiles\xi9d69uh.default\cookies. txt[.bluestreak.com/]
00184846 Cookie/Adrevolver TrackingCookie No 0 Yes No C:\Documents and Settings\Jeff Hibbett\Application Data\Mozilla\Firefox\Profiles\xi9d69uh.default\cookies. txt[.adrevolver.com/]
00184846 Cookie/Adrevolver TrackingCookie No 0 Yes No C:\Documents and Settings\Jeff Hibbett\Application Data\Mozilla\Firefox\Profiles\xi9d69uh.default\cookies. txt[.adrevolver.com/]
00184846 Cookie/Adrevolver TrackingCookie No 0 Yes No C:\Documents and Settings\Jeff Hibbett\Application Data\Mozilla\Firefox\Profiles\xi9d69uh.default\cookies. txt[.adrevolver.com/]
00517584 Application/SuperFast HackTools No 0 Yes No C:\Documents and Settings\Jeff Hibbett\Desktop\SmitfraudFix\restart.exe
02197130 Trj/Rebooter.J Virus/Trojan No 1 Yes No C:\Documents and Settings\Jeff Hibbett\Desktop\SmitfraudFix\Reboot.exe
;====================================================== ======================================================= ======================================================= ===============
SUSPECTS
Sent Location 73
;====================================================== ======================================================= ======================================================= ===============
No C:\DOCUMENTS AND SETTINGS\ALL USERS\APPLICATION DATA\AFUZIZSZ\SLULAZUL.EXE 73
No C:\WINDOWS\SYSTEM32\KHFEVPIJ.DLL 73
;====================================================== ======================================================= ======================================================= ===============
VULNERABILITIES
Id Severity Description 73
;====================================================== ======================================================= ======================================================= ===============
;====================================================== ======================================================= ======================================================= ===============
|
|
| |
This post has: 0 recommendations
|
| Back to top |
|
 |
Osc
Help2Go Administrator
Joined: 01 Jan 1999
Posts: 1789
Points: 516
Location: Washington, DC
|
| Posted: Mon 04/21/2008 7:40am [Post #2] |
|
|
|
|
| |
This post has: 0 recommendations
|
| Back to top |
|
|
calbiotech
Member
Joined: 19 Apr 2008
Posts: 2
Points: 0
Location: California
|
| Posted: Sat 05/10/2008 3:41pm [Post #3] |
|
|
Hi there,
After I posted the original message with the scan log, I then followed more directions on your site, using all the free anti-spyware, etc. and it worked, my computer seems to be free of the invader now. If you can, please DELETE this whole post, since it has some of the info from my computer, etc.
I will recommend your site to anyone that I know, if they run into any malicious virus/spyware.
Thanks again,
calbiotech |
|
| |
This post has: 0 recommendations
|
| Back to top |
|
|
Clark76
Spyware Fighter
Joined: 28 Feb 2006
Posts: 904
Points: 164
Location: Cleveland, Ohio
|
| Posted: Sat 05/10/2008 8:14pm [Post #4] |
|
|
From the Help2Go team - Your are Welcome and Happy Surfing 
Since this issue appears resolved ... this Topic is closed.
Please read and load the free programs that we use to protect our own PC's. They are free and they will have little or no impact on your PC's performance:
http://www.help2go.com/article152.html
If you need this topic reopened, please request this by sending a moderator a PM with the address of the thread. This applies only to the original topic starter.
Everyone else please begin a New Topic.
_________________
Proud Member of ASAP
Proud Member of UNITE |
|
| |
This post has: 0 recommendations
|
| Back to top |
|
|
|
