Vurtomonde

SUPERAntiSpyware Scan Log
http://www.superantispyware.com

Generated 12/01/2007 at 08:49 PM

Application Version : 3.9.1008

Core Rules Database Version : 3353
Trace Rules Database Version: 1352

Scan type : Complete Scan
Total Scan Time : 00:34:34

Memory items scanned : 626
Memory threats detected : 0
Registry items scanned : 4888
Registry threats detected : 0
File items scanned : 30224
File threats detected : 88

Adware.Tracking Cookie
C:\Documents and Settings\Nick Janssen\Cookies\nick janssen@anad.tacoda[1].txt
C:\Documents and Settings\Nick Janssen\Cookies\nick janssen@banners.iop[1].txt
C:\Documents and Settings\Nick Janssen\Cookies\nick janssen@eas.apm.emediate[2].txt
C:\Documents and Settings\Nick Janssen\Cookies\nick janssen@media.[url]www.dailyillini[/url][2].txt
C:\Documents and Settings\Nick Janssen\Cookies\nick janssen@ad[5].txt
C:\Documents and Settings\Nick Janssen\Cookies\nick janssen@ad.xplusone[2].txt
C:\Documents and Settings\Nick Janssen\Cookies\nick janssen@partner2profit[3].txt
C:\Documents and Settings\Nick Janssen\Cookies\nick janssen@banner.truehits[1].txt
C:\Documents and Settings\Nick Janssen\Cookies\nick janssen@questionmarket[1].txt
C:\Documents and Settings\Nick Janssen\Cookies\nick janssen@optimize.indieclick[2].txt
C:\Documents and Settings\Nick Janssen\Cookies\nick janssen@2o7[2].txt
C:\Documents and Settings\Nick Janssen\Cookies\nick janssen@service.tremormedia[2].txt
C:\Documents and Settings\Nick Janssen\Cookies\nick janssen@trafficmp[1].txt
C:\Documents and Settings\Nick Janssen\Cookies\nick janssen@msnportal.112.2o7[1].txt
C:\Documents and Settings\Nick Janssen\Cookies\nick janssen@ads.as4x.tmcs.ticketmaster[1].txt
C:\Documents and Settings\Nick Janssen\Cookies\nick janssen@mediacomtoday[1].txt
C:\Documents and Settings\Nick Janssen\Cookies\nick janssen@ads.pointroll[1].txt
C:\Documents and Settings\Nick Janssen\Cookies\nick janssen@ad2.fotki[1].txt
C:\Documents and Settings\Nick Janssen\Cookies\nick janssen@adultadworld[1].txt
C:\Documents and Settings\Nick Janssen\Cookies\nick janssen@hit.stat[2].txt
C:\Documents and Settings\Nick Janssen\Cookies\nick janssen@server.cpmstar[2].txt
C:\Documents and Settings\Nick Janssen\Cookies\nick janssen@collective-media[1].txt
C:\Documents and Settings\Nick Janssen\Cookies\nick janssen@azjmp[2].txt
C:\Documents and Settings\Nick Janssen\Cookies\nick janssen@ad.yieldmanager[1].txt
C:\Documents and Settings\Nick Janssen\Cookies\nick janssen@crackle[1].txt
C:\Documents and Settings\Nick Janssen\Cookies\nick janssen@www.burstbeacon[5].txt
C:\Documents and Settings\Nick Janssen\Cookies\nick janssen@www.sexyandfunny[2].txt
C:\Documents and Settings\Nick Janssen\Cookies\nick janssen@advertising[1].txt
C:\Documents and Settings\Nick Janssen\Cookies\nick janssen@sexyandfunny[1].txt
C:\Documents and Settings\Nick Janssen\Cookies\nick janssen@metacafe.122.2o7[1].txt
C:\Documents and Settings\Nick Janssen\Cookies\nick janssen@msnservices.112.2o7[2].txt
C:\Documents and Settings\Nick Janssen\Cookies\nick janssen@server.lon.liveperson[1].txt
C:\Documents and Settings\Nick Janssen\Cookies\nick janssen@sweeps.mediacomcc[1].txt
C:\Documents and Settings\Nick Janssen\Cookies\nick janssen@tracking.foxnews[1].txt
C:\Documents and Settings\Nick Janssen\Cookies\nick janssen@toluca.mediacomtoday[1].txt
C:\Documents and Settings\Nick Janssen\Cookies\nick janssen@2o7[1].txt
C:\Documents and Settings\Nick Janssen\Cookies\nick janssen@2o7[3].txt
C:\Documents and Settings\Nick Janssen\Cookies\nick janssen@2o7[4].txt
C:\Documents and Settings\Nick Janssen\Cookies\nick janssen@2o7[5].txt
C:\Documents and Settings\Nick Janssen\Cookies\nick janssen@2o7[7].txt
C:\Documents and Settings\Nick Janssen\Cookies\nick janssen@2o7[9].txt
C:\Documents and Settings\Nick Janssen\Cookies\nick janssen@3.adbrite[3].txt
C:\Documents and Settings\Nick Janssen\Cookies\nick janssen@a.websponsors[1].txt
C:\Documents and Settings\Nick Janssen\Cookies\nick janssen@adinterax[1].txt
C:\Documents and Settings\Nick Janssen\Cookies\nick janssen@adlegend[2].txt
C:\Documents and Settings\Nick Janssen\Cookies\nick janssen@adopt.euroclick[5].txt
C:\Documents and Settings\Nick Janssen\Cookies\nick janssen@adopt.euroclick[6].txt
C:\Documents and Settings\Nick Janssen\Cookies\nick janssen@adopt.euroclick[7].txt
C:\Documents and Settings\Nick Janssen\Cookies\nick janssen@adopt.euroclick[8].txt
C:\Documents and Settings\Nick Janssen\Cookies\nick janssen@ads.bridgetrack[2].txt
C:\Documents and Settings\Nick Janssen\Cookies\nick janssen@ads.cnn[1].txt
C:\Documents and Settings\Nick Janssen\Cookies\nick janssen@ads.pointroll[2].txt
C:\Documents and Settings\Nick Janssen\Cookies\nick janssen@ads.us.e-planning[1].txt
C:\Documents and Settings\Nick Janssen\Cookies\nick janssen@ads.veoh[2].txt
C:\Documents and Settings\Nick Janssen\Cookies\nick janssen@adserver.adreactor[1].txt
C:\Documents and Settings\Nick Janssen\Cookies\nick janssen@adserver.myvideo[2].txt
C:\Documents and Settings\Nick Janssen\Cookies\nick janssen@adstats.cdfreaks[2].txt
C:\Documents and Settings\Nick Janssen\Cookies\nick janssen@anad.tacoda[4].txt
C:\Documents and Settings\Nick Janssen\Cookies\nick janssen@anad.tacoda[5].txt
C:\Documents and Settings\Nick Janssen\Cookies\nick janssen@anad.tacoda[7].txt
C:\Documents and Settings\Nick Janssen\Cookies\nick janssen@anat.tacoda[2].txt
C:\Documents and Settings\Nick Janssen\Cookies\nick janssen@anat.tacoda[3].txt
C:\Documents and Settings\Nick Janssen\Cookies\nick janssen@crackle[2].txt
C:\Documents and Settings\Nick Janssen\Cookies\nick janssen@eyewonder[1].txt
C:\Documents and Settings\Nick Janssen\Cookies\nick janssen@indextools[1].txt
C:\Documents and Settings\Nick Janssen\Cookies\nick janssen@interclick[5].txt
C:\Documents and Settings\Nick Janssen\Cookies\nick janssen@keywordmax[1].txt
C:\Documents and Settings\Nick Janssen\Cookies\nick janssen@lstat.youku[2].txt
C:\Documents and Settings\Nick Janssen\Cookies\nick janssen@m1.webstats.motigo[1].txt
C:\Documents and Settings\Nick Janssen\Cookies\nick janssen@revsci[2].txt
C:\Documents and Settings\Nick Janssen\Cookies\nick janssen@revsci[3].txt
C:\Documents and Settings\Nick Janssen\Cookies\nick janssen@revsci[4].txt
C:\Documents and Settings\Nick Janssen\Cookies\nick janssen@server.lon.liveperson[2].txt
C:\Documents and Settings\Nick Janssen\Cookies\nick janssen@server.lon.liveperson[3].txt
C:\Documents and Settings\Nick Janssen\Cookies\nick janssen@tacoda[2].txt
C:\Documents and Settings\Nick Janssen\Cookies\nick janssen@tacoda[5].txt
C:\Documents and Settings\Nick Janssen\Cookies\nick janssen@tacoda[6].txt
C:\Documents and Settings\Nick Janssen\Cookies\nick janssen@tremor.adbureau[2].txt
C:\Documents and Settings\Nick Janssen\Cookies\nick janssen@tripod[2].txt
C:\Documents and Settings\Nick Janssen\Cookies\nick janssen@usawarez[2].txt
C:\Documents and Settings\Nick Janssen\Cookies\nick janssen@usenext[1].txt

Adware.Vundo-Variant/Small-A
C:\SYSTEM VOLUME INFORMATION\_RESTORE{C5D7F3CC-5F7C-414A-8864-F49D9B07021A}\RP125\A0009122.DLL

Trojan.Downloader-Gen/Svchost-Fake
C:\SYSTEM VOLUME INFORMATION\_RESTORE{C5D7F3CC-5F7C-414A-8864-F49D9B07021A}\RP125\A0009151.EXE

Adware.Vundo-Variant/Small
C:\SYSTEM VOLUME INFORMATION\_RESTORE{C5D7F3CC-5F7C-414A-8864-F49D9B07021A}\RP128\A0009323.DLL
C:\SYSTEM VOLUME INFORMATION\_RESTORE{C5D7F3CC-5F7C-414A-8864-F49D9B07021A}\RP128\A0009371.DLL

Adware.DollarRevenue
C:\Documents and Settings\Nick Janssen\Local Settings\Temporary Internet Files\Content.IE5\01234567\CAU5S3I5.htm
C:\Documents and Settings\Nick Janssen\Local Settings\Temporary Internet Files\Content.IE5\ZYBP2PFW\CAXJM537.htm
C:\Documents and Settings\Nick Janssen\Local Settings\Temporary Internet Files\Content.IE5\ZBTIP16A\CAO3AL2H.htm
 
SAS found and cleaned some cookies and items in your System Restore program and I am not looking at anything bad on your log.

Lets do a few more things.

Please download ATF Cleaner by Atribune to your desktop.
  • This program is for XP and Windows 2000 only
  • Double-click ATF-Cleaner.exe to run the program.
  • Under Main choose: Select All
  • Click the Empty Selected button.

Your system may start up slower after running ATF Cleaner, this is expected but will be back to normal after the first or second boot up





  • Next Go start> Run type cmd and hit OK
  • Type in ipconfig /flushdns then hit enter
    (that space between g and / is needed)
  • Type exit hit enter



Run this scanner, it may pick up something that SAS missed.


Download AVG Anti-Spyware Free to your desktop.

  • Once you have downloaded AVG Anti-Spyware Free, locate the icon on the desktop and double-click it to launch the set up program.
  • Once the setup is complete you will need run AVG and update the definition files.
  • On the main screen select the icon Update then select the Update now link.
  • Next select the Start Update button, the update will start and a progress bar will show the updates being installed.
  • Once the update has completed select the Scanner icon at the top of the screen, then select the Settings tab.
  • Once in the Settings screen click on Recommended actions and then select Quarantine <-- Dont forget this
  • Under Reports
  • Select Automatically generate report after every scan
  • Uncheck Only if threats were found
  • Close AVG Anti-Spyware Free <-- Do not run the scan yet.

Boot your computer into Safemode
  • Go to Start> Shut Off your Computer> Restart
  • As the computer starts to boot-up, Tap the F8 KEY somewhat rapidly.
  • This will bring up a menu.
  • Use the Up and Down Arrow Keys to scroll up to SAFEMODE
  • Then press the Enter on your Keyboard
Tutorial if you need it How to boot into Safemode


IMPORTANT: Do not open any other windows or programs while ewido is scanning, it may interfere with the scanning process:
  • Launch AVG Anti-Spyware Free by double-clicking the icon on your desktop.
  • Select the Scanner icon at the top and then the Scan tab then click on Complete System Scan.
  • AVG will now begin the scanning process, be patient this may take a little time.
  • Once the scan is complete do the following:
  • If you have any infections you will prompted, then select Apply all actions
  • Next select the Reports icon at the top.
  • Select the Save report as button in the lower left hand of the screen and save it to a text file on your system <--Don't forget this
  • make sure to remember where you saved that file, this is important, I need to see that log.
  • Close AVG Anti-Spyware Free


Post the AVG log and a new HJT log please
 
You must log in or register to reply here.
Back
Top