Anyone heard of SpyZooka

**Firebird** · 2005-12-30, 15:34

C:\Documents and Settings\Mike Bond\Application Data\Hotbar\v3.0\Hotbar\static\2\Default_Mails.mnu -> Spyware.HotBar : Cleaned with backup
C:\Documents and Settings\Mike Bond\Application Data\Hotbar\v3.0\Hotbar\static\2\Default_new.mnu -> Spyware.HotBar : Cleaned with backup
C:\Documents and Settings\Mike Bond\Application Data\Hotbar\v3.0\Hotbar\static\2\Default_premium.mnu -> Spyware.HotBar : Cleaned with backup
C:\Documents and Settings\Mike Bond\Application Data\Hotbar\v3.0\Hotbar\static\2\Default_searchfor.mnu -> Spyware.HotBar : Cleaned with backup
C:\Documents and Settings\Mike Bond\Application Data\Hotbar\v3.0\Hotbar\static\2\Default_searchgo.mnu -> Spyware.HotBar : Cleaned with backup
C:\Documents and Settings\Mike Bond\Application Data\Hotbar\v3.0\Hotbar\static\2\Default_weather.mnu -> Spyware.HotBar : Cleaned with backup
C:\Documents and Settings\Mike Bond\Application Data\Hotbar\v3.0\Hotbar\static\2\Default_yellowpages.mnu -> Spyware.HotBar : Cleaned with backup
C:\Documents and Settings\Mike Bond\Application Data\Hotbar\v3.0\Hotbar\static\2\d_icons_buttons_1000.res -> Spyware.HotBar : Cleaned with backup
C:\Documents and Settings\Mike Bond\Application Data\Hotbar\v3.0\Hotbar\static\2\d_icons_buttons_2000.res -> Spyware.HotBar : Cleaned with backup
C:\Documents and Settings\Mike Bond\Application Data\Hotbar\v3.0\Hotbar\static\2\d_icons_buttons_3000.res -> Spyware.HotBar : Cleaned with backup
C:\Documents and Settings\Mike Bond\Application Data\Hotbar\v3.0\Hotbar\static\2\d_icons_buttons_bar.res -> Spyware.HotBar : Cleaned with backup
C:\Documents and Settings\Mike Bond\Application Data\Hotbar\v3.0\Hotbar\static\2\d_icons_buttons_bbar1.res -> Spyware.HotBar : Cleaned with backup
C:\Documents and Settings\Mike Bond\Application Data\Hotbar\v3.0\Hotbar\static\2\d_icons_buttons_bbar10.res -> Spyware.HotBar : Cleaned with backup
C:\Documents and Settings\Mike Bond\Application Data\Hotbar\v3.0\Hotbar\static\2\d_icons_buttons_bbar11.res -> Spyware.HotBar : Cleaned with backup
C:\Documents and Settings\Mike Bond\Application Data\Hotbar\v3.0\Hotbar\static\2\d_icons_buttons_bbar12.res -> Spyware.HotBar : Cleaned with backup
C:\Documents and Settings\Mike Bond\Application Data\Hotbar\v3.0\Hotbar\static\2\d_icons_buttons_bbar13.res -> Spyware.HotBar : Cleaned with backup
C:\Documents and Settings\Mike Bond\Application Data\Hotbar\v3.0\Hotbar\static\2\d_icons_buttons_bbar14.res -> Spyware.HotBar : Cleaned with backup
C:\Documents and Settings\Mike Bond\Application Data\Hotbar\v3.0\Hotbar\static\2\d_icons_buttons_bbar2.res -> Spyware.HotBar : Cleaned with backup
C:\Documents and Settings\Mike Bond\Application Data\Hotbar\v3.0\Hotbar\static\2\d_icons_buttons_bbar3.res -> Spyware.HotBar : Cleaned with backup
C:\Documents and Settings\Mike Bond\Application Data\Hotbar\v3.0\Hotbar\static\2\d_icons_buttons_bbar4.res -> Spyware.HotBar : Cleaned with backup
C:\Documents and Settings\Mike Bond\Application Data\Hotbar\v3.0\Hotbar\static\2\d_icons_buttons_bbar5.res -> Spyware.HotBar : Cleaned with backup
C:\Documents and Settings\Mike Bond\Application Data\Hotbar\v3.0\Hotbar\static\2\d_icons_buttons_bbar6.res -> Spyware.HotBar : Cleaned with backup
C:\Documents and Settings\Mike Bond\Application Data\Hotbar\v3.0\Hotbar\static\2\d_icons_buttons_bbar7.res -> Spyware.HotBar : Cleaned with backup
C:\Documents and Settings\Mike Bond\Application Data\Hotbar\v3.0\Hotbar\static\2\d_icons_buttons_bbar8.res -> Spyware.HotBar : Cleaned with backup
C:\Documents and Settings\Mike Bond\Application Data\Hotbar\v3.0\Hotbar\static\2\d_icons_buttons_bbar9.res -> Spyware.HotBar : Cleaned with backup
C:\Documents and Settings\Mike Bond\Application Data\Hotbar\v3.0\Hotbar\static\2\d_icons_buttons_logos.res -> Spyware.HotBar : Cleaned with backup
C:\Documents and Settings\Mike Bond\Application Data\Hotbar\v3.0\Hotbar\static\2\d_icons_buttons_other.res -> Spyware.HotBar : Cleaned with backup
C:\Documents and Settings\Mike Bond\Application Data\Hotbar\v3.0\Hotbar\static\2\d_icons_buttons_x.res -> Spyware.HotBar : Cleaned with backup
C:\Documents and Settings\Mike Bond\Application Data\Hotbar\v3.0\Hotbar\static\2\d_icons_weather.res -> Spyware.HotBar : Cleaned with backup
C:\Documents and Settings\Mike Bond\Application Data\Hotbar\v3.0\Hotbar\static\2\email-def-511724-9595.mnu -> Spyware.HotBar : Cleaned with backup
C:\Documents and Settings\Mike Bond\Application Data\Hotbar\v3.0\Hotbar\static\2\email-t1-bg.res -> Spyware.HotBar : Cleaned with backup
C:\Documents and Settings\Mike Bond\Application Data\Hotbar\v3.0\Hotbar\static\2\hotbar-premium-hotbar-premium.mnu -> Spyware.HotBar : Cleaned with backup
C:\Documents and Settings\Mike Bond\Application Data\Hotbar\v3.0\Hotbar\static\2\hotbar-premium.cdf -> Spyware.HotBar : Cleaned with backup
C:\Documents and Settings\Mike Bond\Application Data\Hotbar\v3.0\Hotbar\static\2\hotbar_promo.htm -> Spyware.HotBar : Cleaned with backup
C:\Documents and Settings\Mike Bond\Application Data\Hotbar\v3.0\Hotbar\static\2\icons2.res -> Spyware.HotBar : Cleaned with backup
C:\Documents and Settings\Mike Bond\Application Data\Hotbar\v3.0\Hotbar\static\2\keywords.idx -> Spyware.HotBar : Cleaned with backup
C:\Documents and Settings\Mike Bond\Application Data\Hotbar\v3.0\Hotbar\static\2\keywords1.dat -> Spyware.HotBar : Cleaned with backup
C:\Documents and Settings\Mike Bond\Application Data\Hotbar\v3.0\Hotbar\static\2\keywords_idx.idx -> Spyware.HotBar : Cleaned with backup
C:\Documents and Settings\Mike Bond\Application Data\Hotbar\v3.0\Hotbar\static\2\keywords_sdf.sdf -> Spyware.HotBar : Cleaned with backup
C:\Documents and Settings\Mike Bond\Application Data\Hotbar\v3.0\Hotbar\static\2\layout.cdf -> Spyware.HotBar : Cleaned with backup
C:\Documents and Settings\Mike Bond\Application Data\Hotbar\v3.0\Hotbar\static\2\linkpathlegal.txt -> Spyware.HotBar : Cleaned with backup
C:\Documents and Settings\Mike Bond\Application Data\Hotbar\v3.0\Hotbar\static\2\progress.res -> Spyware.HotBar : Cleaned with backup
C:\Documents and Settings\Mike Bond\Application Data\Hotbar\v3.0\Hotbar\static\2\s_icons_buttons.res -> Spyware.HotBar : Cleaned with backup
C:\Documents and Settings\Mike Bond\Application Data\Hotbar\v3.0\Hotbar\static\2\t2_bg.res -> Spyware.HotBar : Cleaned with backup
C:\Documents and Settings\Mike Bond\Application Data\Hotbar\v3.0\Hotbar\static\2\top7.cdf -> Spyware.HotBar : Cleaned with backup
C:\Documents and Settings\Mike Bond\Application Data\Hotbar\v3.0\Hotbar\static\2\Top7_theweb.mnu -> Spyware.HotBar : Cleaned with backup
C:\Documents and Settings\Mike Bond\Application Data\Hotbar\v3.0\Hotbar\static\2\tsd_bg.res -> Spyware.HotBar : Cleaned with backup
C:\Documents and Settings\Mike Bond\Application Data\Hotbar\v3.0\Hotbar\static\DownLoad -> Spyware.HotBar : Cleaned with backup
C:\Documents and Settings\Mike Bond\Application Data\Hotbar\v3.0\Hotbar\static\DownLoad\ads.xip -> Spyware.HotBar : Cleaned with backup
C:\Documents and Settings\Mike Bond\Application Data\Hotbar\v3.0\Hotbar\static\DownLoad\business_promo.xip -> Spyware.HotBar : Cleaned with backup
C:\Documents and Settings\Mike Bond\Application Data\Hotbar\v3.0\Hotbar\static\DownLoad\default.xip -> Spyware.HotBar : Cleaned with backup
C:\Documents and Settings\Mike Bond\Application Data\Hotbar\v3.0\Hotbar\static\DownLoad\d_icons_buttons_1000.xip -> Spyware.HotBar : Cleaned with backup
C:\Documents and Settings\Mike Bond\Application Data\Hotbar\v3.0\Hotbar\static\DownLoad\d_icons_buttons_2000.xip -> Spyware.HotBar : Cleaned with backup
C:\Documents and Settings\Mike Bond\Application Data\Hotbar\v3.0\Hotbar\static\DownLoad\d_icons_buttons_3000.xip -> Spyware.HotBar : Cleaned with backup
C:\Documents and Settings\Mike Bond\Application Data\Hotbar\v3.0\Hotbar\static\DownLoad\d_icons_buttons_bar.xip -> Spyware.HotBar : Cleaned with backup
C:\Documents and Settings\Mike Bond\Application Data\Hotbar\v3.0\Hotbar\static\DownLoad\d_icons_buttons_bbar1.xip -> Spyware.HotBar : Cleaned with backup
C:\Documents and Settings\Mike Bond\Application Data\Hotbar\v3.0\Hotbar\static\DownLoad\d_icons_buttons_bbar10.xip -> Spyware.HotBar : Cleaned with backup
C:\Documents and Settings\Mike Bond\Application Data\Hotbar\v3.0\Hotbar\static\DownLoad\d_icons_buttons_bbar11.xip -> Spyware.HotBar : Cleaned with backup
C:\Documents and Settings\Mike Bond\Application Data\Hotbar\v3.0\Hotbar\static\DownLoad\d_icons_buttons_bbar12.xip -> Spyware.HotBar : Cleaned with backup
C:\Documents and Settings\Mike Bond\Application Data\Hotbar\v3.0\Hotbar\static\DownLoad\d_icons_buttons_bbar13.xip -> Spyware.HotBar : Cleaned with backup
C:\Documents and Settings\Mike Bond\Application Data\Hotbar\v3.0\Hotbar\static\DownLoad\d_icons_buttons_bbar14.xip -> Spyware.HotBar : Cleaned with backup
C:\Documents and Settings\Mike Bond\Application Data\Hotbar\v3.0\Hotbar\static\DownLoad\d_icons_buttons_bbar2.xip -> Spyware.HotBar : Cleaned with backup
C:\Documents and Settings\Mike Bond\Application Data\Hotbar\v3.0\Hotbar\static\DownLoad\d_icons_buttons_bbar3.xip -> Spyware.HotBar : Cleaned with backup
C:\Documents and Settings\Mike Bond\Application Data\Hotbar\v3.0\Hotbar\static\DownLoad\d_icons_buttons_bbar4.xip -> Spyware.HotBar : Cleaned with backup
C:\Documents and Settings\Mike Bond\Application Data\Hotbar\v3.0\Hotbar\static\DownLoad\d_icons_buttons_bbar5.xip -> Spyware.HotBar : Cleaned with backup
C:\Documents and Settings\Mike Bond\Application Data\Hotbar\v3.0\Hotbar\static\DownLoad\d_icons_buttons_bbar6.xip -> Spyware.HotBar : Cleaned with backup
C:\Documents and Settings\Mike Bond\Application Data\Hotbar\v3.0\Hotbar\static\DownLoad\d_icons_buttons_bbar7.xip -> Spyware.HotBar : Cleaned with backup
C:\Documents and Settings\Mike Bond\Application Data\Hotbar\v3.0\Hotbar\static\DownLoad\d_icons_buttons_bbar8.xip -> Spyware.HotBar : Cleaned with backup
C:\Documents and Settings\Mike Bond\Application Data\Hotbar\v3.0\Hotbar\static\DownLoad\d_icons_buttons_bbar9.xip -> Spyware.HotBar : Cleaned with backup
C:\Documents and Settings\Mike Bond\Application Data\Hotbar\v3.0\Hotbar\static\DownLoad\d_icons_buttons_logos.xip -> Spyware.HotBar : Cleaned with backup
C:\Documents and Settings\Mike Bond\Application Data\Hotbar\v3.0\Hotbar\static\DownLoad\d_icons_buttons_other.xip -> Spyware.HotBar : Cleaned with backup
C:\Documents and Settings\Mike Bond\Application Data\Hotbar\v3.0\Hotbar\static\DownLoad\d_icons_buttons_x.xip -> Spyware.HotBar : Cleaned with backup
C:\Documents and Settings\Mike Bond\Application Data\Hotbar\v3.0\Hotbar\static\DownLoad\d_icons_weather.xip -> Spyware.HotBar : Cleaned with backup
C:\Documents and Settings\Mike Bond\Application Data\Hotbar\v3.0\Hotbar\static\DownLoad\email-t1-bg.xip -> Spyware.HotBar : Cleaned with backup
C:\Documents and Settings\Mike Bond\Application Data\Hotbar\v3.0\Hotbar\static\DownLoad\hotbar-premium.xip -> Spyware.HotBar : Cleaned with backup
C:\Documents and Settings\Mike Bond\Application Data\Hotbar\v3.0\Hotbar\static\DownLoad\hotbar_promo.xip -> Spyware.HotBar : Cleaned with backup
C:\Documents and Settings\Mike Bond\Application Data\Hotbar\v3.0\Hotbar\static\DownLoad\icons2.xip -> Spyware.HotBar : Cleaned with backup
C:\Documents and Settings\Mike Bond\Application Data\Hotbar\v3.0\Hotbar\static\DownLoad\keywords.xip -> Spyware.HotBar : Cleaned with backup
C:\Documents and Settings\Mike Bond\Application Data\Hotbar\v3.0\Hotbar\static\DownLoad\keywords1.xip -> Spyware.HotBar : Cleaned with backup
C:\Documents and Settings\Mike Bond\Application Data\Hotbar\v3.0\Hotbar\static\DownLoad\keywords_idx.xip -> Spyware.HotBar : Cleaned with backup
C:\Documents and Settings\Mike Bond\Application Data\Hotbar\v3.0\Hotbar\static\DownLoad\keywords_sdf.xip -> Spyware.HotBar : Cleaned with backup
C:\Documents and Settings\Mike Bond\Application Data\Hotbar\v3.0\Hotbar\static\DownLoad\layout.xip -> Spyware.HotBar : Cleaned with backup
C:\Documents and Settings\Mike Bond\Application Data\Hotbar\v3.0\Hotbar\static\DownLoad\linkpathlegal.xip -> Spyware.HotBar : Cleaned with backup
C:\Documents and Settings\Mike Bond\Application Data\Hotbar\v3.0\Hotbar\static\DownLoad\progress.xip -> Spyware.HotBar : Cleaned with backup
C:\Documents and Settings\Mike Bond\Application Data\Hotbar\v3.0\Hotbar\static\DownLoad\samplegroups2.txt -> Spyware.HotBar : Cleaned with backup
C:\Documents and Settings\Mike Bond\Application Data\Hotbar\v3.0\Hotbar\static\DownLoad\samplegroups2.xip -> Spyware.HotBar : Cleaned with backup
C:\Documents and Settings\Mike Bond\Application Data\Hotbar\v3.0\Hotbar\static\DownLoad\s_icons_buttons.xip -> Spyware.HotBar : Cleaned with backup
C:\Documents and Settings\Mike Bond\Application Data\Hotbar\v3.0\Hotbar\static\DownLoad\t2_bg.xip -> Spyware.HotBar : Cleaned with backup
C:\Documents and Settings\Mike Bond\Application Data\Hotbar\v3.0\Hotbar\static\DownLoad\top7.xip -> Spyware.HotBar : Cleaned with backup
C:\Documents and Settings\Mike Bond\Application Data\Hotbar\v3.0\Hotbar\static\DownLoad\tsd_bg.xip -> Spyware.HotBar : Cleaned with backup
C:\Documents and Settings\Mike Bond\Cookies\mike bond@2o7[2].txt -> Spyware.Cookie.2o7 : Cleaned with backup
C:\Documents and Settings\Mike Bond\Cookies\mike bond@abetterinternet[1].txt -> Spyware.Cookie.Abetterinternet : Cleaned with backup
C:\Documents and Settings\Mike Bond\Cookies\mike bond@adorigin[1].txt -> Spyware.Cookie.Adorigin : Cleaned with backup
C:\Documents and Settings\Mike Bond\Cookies\mike bond@burstnet[2].txt -> Spyware.Cookie.Burstnet : Cleaned with backup
C:\Documents and Settings\Mike Bond\Cookies\mike bond@cz11.clickzs[2].txt -> Spyware.Cookie.Clickzs : Cleaned with backup
C:\Documents and Settings\Mike Bond\Cookies\mike bond@cz3.clickzs[1].txt -> Spyware.Cookie.Clickzs : Cleaned with backup
C:\Documents and Settings\Mike Bond\Cookies\mike bond@cz5.clickzs[1].txt -> Spyware.Cookie.Clickzs : Cleaned with backup
C:\Documents and Settings\Mike Bond\Cookies\mike bond@cz6.clickzs[2].txt -> Spyware.Cookie.Clickzs : Cleaned with backup
C:\Documents and Settings\Mike Bond\Cookies\mike bond@cz7.clickzs[1].txt -> Spyware.Cookie.Clickzs : Cleaned with backup
C:\Documents and Settings\Mike Bond\Cookies\mike bond@cz8.clickzs[1].txt -> Spyware.Cookie.Clickzs : Cleaned with backup
C:\Documents and Settings\Mike Bond\Cookies\mike bond@e-2dj6wfk4ejd5khp.stats.esomniture[2].txt -> Spyware.Cookie.Esomniture : Cleaned with backup
C:\Documents and Settings\Mike Bond\Cookies\mike bond@e-2dj6wjlyendzmlq.stats.esomniture[2].txt -> Spyware.Cookie.Esomniture : Cleaned with backup
C:\Documents and Settings\Mike Bond\Cookies\mike bond@e-2dj6wjmiuoczsdp.stats.esomniture[2].txt -> Spyware.Cookie.Esomniture : Cleaned with backup
C:\Documents and Settings\Mike Bond\Cookies\mike bond@hypertracker[2].txt -> Spyware.Cookie.Hypertracker : Cleaned with backup
C:\Documents and Settings\Mike Bond\Cookies\mike bond@image.masterstats[1].txt -> Spyware.Cookie.Masterstats : Cleaned with backup
C:\Documents and Settings\Mike Bond\Cookies\mike bond@vip.clickzs[2].txt -> Spyware.Cookie.Clickzs : Cleaned with backup
C:\Documents and Settings\Mike Bond\Cookies\mike bond@www.myaffiliateprogram[1].txt -> Spyware.Cookie.Myaffiliateprogram : Cleaned with backup
C:\Documents and Settings\Mike Bond\Local Settings\Temp\dia8.exe -> Heuristic.Win32.Dialer : Cleaned with backup
C:\Program Files\Hijackthis\backups\backup-20051230-100242-901.dll -> Downloader.Zlob.dl : Cleaned with backup
C:\Program Files\Microsoft AntiSpyware\Quarantine\5FC28F46-0E36-41E2-9643-46A220\DC8509E2-A48D-4120-889D-88D30C -> Adware.Spyaxe : Cleaned with backup
C:\Program Files\Microsoft AntiSpyware\Quarantine\6B1C6AFB-0C77-4EC2-A565-811743\49C95824-2678-461E-917B-96CB25 -> Adware.Spyaxe : Cleaned with backup
C:\Program Files\Microsoft AntiSpyware\Quarantine\731D47EA-3C1F-465D-B931-A8F81A\529C866F-AF19-4BE3-A22F-FB1C1F -> Adware.Spyaxe : Cleaned with backup
C:\Program Files\Microsoft AntiSpyware\Quarantine\ADA39990-5A04-47F2-BA21-3EB179\0DD0B56A-0FEB-41BA-A7FF-029B21 -> Adware.Spyaxe : Cleaned with backup
C:\Program Files\Microsoft AntiSpyware\Quarantine\CDDFB6B5-3ACB-4B2C-8076-7F75AE\B65B2981-40F2-4F0C-A5D2-F99186 -> Adware.Spyaxe : Cleaned with backup
C:\Program Files\Microsoft AntiSpyware\Quarantine\DA2DA6A6-8CB7-4DC9-A1D3-02525F\2229FEB6-ACF3-4163-BBE9-869552 -> Adware.Spyaxe : Cleaned with backup
C:\Program Files\Microsoft AntiSpyware\Quarantine\F1D22E8E-A6FB-44AE-AC1E-79E8E2\E1CC9477-5927-4E61-9857-5EF1BB -> Adware.Spyaxe : Cleaned with backup
C:\System Volume Information\_restore{311E6A08-95AE-4983-A563-0B10CCED3453}\RP713\A0077090.dll -> Dialer.Generic : Cleaned with backup
C:\System Volume Information\_restore{311E6A08-95AE-4983-A563-0B10CCED3453}\RP713\A0077091.exe -> Adware.Spyaxe : Cleaned with backup
C:\System Volume Information\_restore{311E6A08-95AE-4983-A563-0B10CCED3453}\RP713\A0077626.dll -> Spyware.WinAD : Cleaned with backup
C:\System Volume Information\_restore{311E6A08-95AE-4983-A563-0B10CCED3453}\RP713\A0077740.exe -> Downloader.Zlob.dl : Cleaned with backup
C:\System Volume Information\_restore{311E6A08-95AE-4983-A563-0B10CCED3453}\RP714\A0077786.exe -> Adware.Spyaxe : Cleaned with backup
C:\System Volume Information\_restore{311E6A08-95AE-4983-A563-0B10CCED3453}\RP715\A0078019.exe -> Adware.Spyaxe : Cleaned with backup
C:\System Volume Information\_restore{311E6A08-95AE-4983-A563-0B10CCED3453}\RP716\A0078102.exe -> Downloader.Zlob.dl : Cleaned with backup
C:\System Volume Information\_restore{311E6A08-95AE-4983-A563-0B10CCED3453}\RP716\A0078103.exe -> Downloader.Zlob.bv : Cleaned with backup
C:\WINDOWS\system32\wbeconm.dll -> Downloader.SpyAxe : Cleaned with backup

::Report End

**Firebird** · 2005-12-30, 15:40

smitRem © log file
version 2.8

by noahdfear

Microsoft Windows XP [Version 5.1.2600]
The current date is: 30/12/2005
The current time is: 10:07:07.17

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

checking for ShudderLTD key

ShudderLTD key not present!

checking for PSGuard.com key

PSGuard.com key not present!

spyaxe uninstaller NOT present
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

Existing Pre-run Files

~~~ Program Files ~~~

~~~ Shortcuts ~~~

~~~ Favorites ~~~

~~~ system32 folder ~~~

1024 dir
msvol.tlb
mssearchnet.exe
ncompat.tlb
nvctrl.exe
mscornet.exe
hp***.tmp

~~~ Icons in System32 ~~~

ot.ico

~~~ Windows directory ~~~

~~~ Drive root ~~~

~~~ Miscellaneous Files/folders ~~~

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

Command Line Process Viewer/Killer/Suspender for Windows NT/2000/XP V2.03
Copyright(C) 2002-2003 Craig.Peacock@beyondlogic.org
Killing PID 748 'explorer.exe'

Starting registry repairs

Deleting files

Remaining Post-run Files

~~~ Program Files ~~~

~~~ Shortcuts ~~~

~~~ Favorites ~~~

~~~ system32 folder ~~~

~~~ Icons in System32 ~~~

~~~ Windows directory ~~~

~~~ Drive root ~~~

~~~ Miscellaneous Files/folders ~~~

~~~ Wininet.dll ~~~

CLEAN!

I think that is all you need. The annoying speech bubble has gone advising me that I was infected, thank god! What do I do with the Kaspersky results?

Thank you so much for your help.

**LonnyRJones** · 2005-12-30, 16:04

Hi
Delete that hotbar folder
C:\Documents and Settings\Mike Bond\Application Data\Hotbar
The other's in the log can be addressed by turning off then on system restore

Turn off System Restore.
On the Desktop, right-click My Computer.
Click Properties.
Click the System Restore tab.
Check Turn off System Restore.
Click Apply, and then click OK.
Then Reboot. < Dont skip that step.
Turn ON System Restore.
On the Desktop, right-click My Computer.
Click Properties.
Click the System Restore tab.
UN-Check Turn off System Restore.
Click Apply, and then click OK.

What antivirus program do you use ?

**Firebird** · 2005-12-30, 17:08

Done this although I could not find the application data/hotbar within the search but have delted a file within cookies which was a txt file that said hotbar under c:documents and settings/Mike Bond.

I am currently looking for new anti virus, I am using the zone alarm secuity suite on the 15 day free trial at present, would you be able to suggest what anti virus and anti spyware I need to purchase to stop all this happening again? Is there anything that stops them getting through in the first place?

I am now wary about using my credit cards and ebanking incase someone can see all the passwords and private details.

Your help is greatly appreciated!

**LonnyRJones** · 2005-12-30, 17:51

Hi

Dont use search, open a folder and navigate to
C:\Documents and Settings\Mike Bond\Application Data\ and delete the Hotbar folder

zone alarm does have a free version if your intrested, uninstall the trial first if you decide to get it.

free programs
Install atleast a free anti virus and firewall program
Dont make the common mistake of installing more than one anti virus or firewall
AVG Anti-Virus-Free: http://www.grisoft.com/us/us_dwnl_free.php
AntiVir Personal Edition: http://www.free-av.com/
avast! 4 Home - Free antivirus software :
http://www.asw.cz/eng/free_virus_protectio.html
Understanding and Using Firewalls:
http://www.bleepingcomputer.com/foru...howtutorial=60
ZoneAlarm provide's a paid for and free version http://www.zonelabs.com/
http://www.zonelabs.com/store/conten...=en&lid=nav_za
Kerio Personal Firewall
For home users, Kerio Personal Firewall 4 is available in two flavors -
the full edition and the limited free edition.
http://www.kerio.com/us/kpf_download.html
Sygate free for personal/home http://soho.sygate.com/products/spf_standard.htm
outpost http://www.outpost.uk.com/download/outpost1.html

**Firebird** · 2005-12-30, 20:31

I did have the free zone alarm for the firewall, however, I changed it when all this spyaxe happened. Would I be better paying for all in one protection like zone alarm security suite as it has the anti-spyware, or would the free ones do the job just as well?

**LonnyRJones** · 2005-12-31, 05:31

Hi

I personaly believe a program dedicated to just spyware is better than those package deals, But i am not familur with ZA's other programs.
Firewalls and antivirus programs, If you have the choice yes the paid for version's are the ones to get.

**LonnyRJones** · 2006-01-04, 06:50

Im Glad we could help
Since the problems are solved Im going to close the topic now, this keeps others with similar problems from posting there logs/question here, they should start a new topic.
If you should need to post another log for the same PC let me or Tashi know.

Thread: Anyone heard of SpyZooka

Thread Tools

Display

ewido log 2

smitfiles.txt

Posting Permissions