Thread: Technicolor screen, Popups, Error messages running programs, random programs starting
View Single Post
Old 10-06-2007, 10:13 AM   #12 (permalink)
Nigel4
Registered User
 
Join Date: Aug 2006
Location: Detroit
Posts: 18
OS: XP/Vista


Re: Technicolor screen, Popups, Error messages running programs, random programs star
---------------------------------------------------------
AVG Anti-Spyware - Scan Report
---------------------------------------------------------

+ Created at: 11:54:09 AM 10/6/2007

+ Scan result:



HKU\S-1-5-21-1032218028-3103756211-369227866-1003\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{01EB5130-FC0C-4D75-B9CE-4801B1B854F5} -> Adware.Begin2Search : Cleaned with backup (quarantined).
HKU\S-1-5-21-1032218028-3103756211-369227866-1003\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{01EB5130-FC0C-4D75-B9CE-4801B1B854F5} -> Adware.Begin2Search : Cleaned with backup (quarantined).
C:\WINDOWS\eliteunstall.exe -> Adware.EliteMedia : Cleaned with backup (quarantined).
HKU\S-1-5-21-1032218028-3103756211-369227866-1003\Software\Microsoft\Internet Explorer\Toolbar\ShellBrowser\\{D49E9D35-254C-4C6A-9D17-95018D228FF5} -> Adware.Starware : Cleaned with backup (quarantined).
C:\System Volume Information\_restore{70304573-AB33-4072-AA96-4495C42D15E3}\RP937\A0452714.exe -> Downloader.Small.bmx : Cleaned with backup (quarantined).
C:\Program Files\Trend Micro\HijackThis\backups\backup-20071005-230342-825.inf -> Downloader.Small.rl : Cleaned with backup (quarantined).
C:\Program Files\Microsoft AntiSpyware\Quarantine\2C37B51E-C36A-4A16-9C95-082138\0A833D90-1006-44FC-AE55-261161 -> Not-A-Virus.Monitor.Win32.KeyLogger.e : Cleaned with backup (quarantined).
C:\Program Files\Microsoft AntiSpyware\Quarantine\2C37B51E-C36A-4A16-9C95-082138\B42E6C69-BDCC-4D0C-B115-C9E447 -> Not-A-Virus.Monitor.Win32.KeyLogger.e : Cleaned with backup (quarantined).
C:\windowsupdate\ufp\008\svchost.exe -> Not-A-Virus.Monitor.Win32.KeyLogger.e : Cleaned with backup (quarantined).
C:\System Volume Information\_restore{70304573-AB33-4072-AA96-4495C42D15E3}\RP904\A0443905.dll -> Not-A-Virus.RemoteAdmin.Win32.RemotelyAnywhere.a : Cleaned with backup (quarantined).
C:\System Volume Information\_restore{70304573-AB33-4072-AA96-4495C42D15E3}\RP905\A0443923.dll -> Not-A-Virus.RemoteAdmin.Win32.RemotelyAnywhere.a : Cleaned with backup (quarantined).
C:\WINDOWS\system32\LMIinit.dll.000.bak -> Not-A-Virus.RemoteAdmin.Win32.RemotelyAnywhere.a : Cleaned with backup (quarantined).
:mozilla.20:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\l0wau5q2.default\cookies.txt -> TrackingCookie.Tacoda : Cleaned.
:mozilla.21:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\l0wau5q2.default\cookies.txt -> TrackingCookie.Tacoda : Cleaned.
:mozilla.22:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\l0wau5q2.default\cookies.txt -> TrackingCookie.Tacoda : Cleaned.
:mozilla.23:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\l0wau5q2.default\cookies.txt -> TrackingCookie.Tacoda : Cleaned.
:mozilla.24:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\l0wau5q2.default\cookies.txt -> TrackingCookie.Tacoda : Cleaned.
C:\System Volume Information\_restore{70304573-AB33-4072-AA96-4495C42D15E3}\RP899\A0443442.dll -> Trojan.WinSpy : Cleaned with backup (quarantined).


::Report end


On this one there was a Tacoda web cookie or something from mozilla that couldn't be quarantined, I assumed (hopefully correctly) that it should just be deleted. It's quarantine option was greyed out.
Nigel4 is offline