Antivirus Protection
 
Forums: » Register « |  User CP |  Games |  Calendar |  Members |  FAQs |  Sitemap |  Support | 
User Name:
Password:
Remember me
Go Back   Dev Shed ForumsSystem AdministrationAntivirus Protection
Reload this Page

Page 2 - How to virus hunt and kill

Page 2 - Discuss How to virus hunt and kill in the Antivirus Protection forum on Dev Shed.
How to virus hunt and kill Antivirus Protection forum discussing issues relating to antivirus programs, spyware, hijack protection, and personal firewalls for all operating systems. Keep your systems protected from hackers and other hazards.

Reply
Add This Thread To:
  Del.icio.us   Digg   Google   Spurl   Blink   Furl   Simpy   Y! MyWeb 
Page 2 of 2 < 1 2
« Previous Thread | Next Thread »  
Thread Tools Search this Thread Rate Thread Display Modes
 
Unread Dev Shed Forums Sponsor:
Stop making mediocre tutorials.The best tutorials are video! Camtasia Studio makes it easy to create engaging, buzz-building screen videos at any size, in any popular format. Download the free trial!
  #16  
Old April 10th, 2008, 03:39 PM
CryTek CryTek is offline
Registered User
Dev Shed Newbie (0 - 499 posts)
  
Join Date: Apr 2008
Posts: 16 CryTek User rank is Just a Lowly Private (1 - 20 Reputation Level) 
Time spent in forums: 3 h 42 m 8 sec
Reputation Power: 0
A little off topic...My computer sometimes restarts..finding the cause would be


1. in enviromental controls>there is an option for the computer to autorestart..unchecking that should cause the computer to BlueScreen..which will give you an error code that you can Google-Search to find the root cause....


Or 2. Control panel>Administrative tools>Event viewer would show the conflicting Driver or Program....

My computer restarts when I transfer data from 1 hardrive/or partition to another hardrive/external hardrive/partition. My motherboard Drivers are updated.
Could you steer me in a different direction to detect the cause? THx.
Reply With Quote
  #17  
Old April 10th, 2008, 05:35 PM
Porthos's Avatar
Porthos Porthos is offline
Malware Warrior /AV forum Mod
Dev Shed Beginner (1000 - 1499 posts)
  
Join Date: Nov 2006
Location: San Antonio Tx
Posts: 1,033 Porthos User rank is Major (30000 - 40000 Reputation Level)Porthos User rank is Major (30000 - 40000 Reputation Level)Porthos User rank is Major (30000 - 40000 Reputation Level)Porthos User rank is Major (30000 - 40000 Reputation Level)Porthos User rank is Major (30000 - 40000 Reputation Level)Porthos User rank is Major (30000 - 40000 Reputation Level)Porthos User rank is Major (30000 - 40000 Reputation Level)Porthos User rank is Major (30000 - 40000 Reputation Level)Porthos User rank is Major (30000 - 40000 Reputation Level)Porthos User rank is Major (30000 - 40000 Reputation Level) 
Time spent in forums: 1 Week 1 Day 17 h 27 m 54 sec
Reputation Power: 363
After seeing what malwarebytes got lets run another couple of scans.


Reconfigure Windows XP to show hidden files:
To enable the viewing of Hidden files follow these steps:

* Close all programs so that you are at your desktop.
* Double-click on the My Computer icon.
* Select the Tools menu and click Folder Options.
* After the new window appears select the View tab.
* Put a checkmark in the checkbox labeled Display the contents of system folders.
* Under the Hidden files and folders section select the radio button labeled Show hidden files and folders.
* Remove the checkmark from the checkbox labeled Hide file extensions for known file types.
* Remove the checkmark from the checkbox labeled Hide protected operating system files.
* Press the Apply button and then the OK button and shutdown My Computer.
* Now your computer is configured to show all hidden files.




Please download and install SUPERAntiSpyware from HERE
• Load SUPERAntiSpyware and click the Check for Updates button.
• Once the update has finished, exit SUPERAntiSpyware. Please do NOT run a scan yet!

IMPORTANT: Do NOT open any other windows or programs while SUPERAntiSpyware is scanning, it may interfere with the scanning process.
• Open SUPERAntiSpyware and click the Scan your Computer button.
• Check Perform Complete Scan and then click Next.
• SUPERAntiSpyware will now scan your computer and when it’s finished it will list all the infections it has found.
• Make sure that they all have a check next to them, and then click Next.
• Click Finish and you will be taken back to the main interface.
• It could be possible that it will ask you to reboot your computer in order to delete some files after reboot.
• I'll need a log afterwards of what has been found.
• To get the log, click Preferences and then click the Statistics/Logs tab. Click the dated log and press View Log and a text file will appear.
• Please post the results of the SUPERAntiSpyware login your next reply.

After all of that.
Run this online virus scan: Active Scan
* You will need to download an ActiveX Control to run the scan. Should you encounter a prompt saying "Click here to use this control", click there.

* After scanning, you'll see an option to create a log afer the scan has finished. Click the See Report button then click the Save Report button. It will be saved with the name activescan.txt .

When done post

superantispyware log
and the activescan.txt
__________________
O'Neill: "So, we basically saved your whole planet, right?"
Chancellor: "Yes."
O'Neill: "Are you, therefore, indebted to us in any modest way?"
Chancellor: "I suppose that is the case."
O'Neill: "So how 'bout the blueprints to build one of those ion cannons?"
Chancellor: "You have been told our policy. That has not changed."
Last edited by Porthos : April 10th, 2008 at 05:38 PM.
Reply With Quote
  #18  
Old April 10th, 2008, 05:36 PM
Porthos's Avatar
Porthos Porthos is offline
Malware Warrior /AV forum Mod
Dev Shed Beginner (1000 - 1499 posts)
  
Join Date: Nov 2006
Location: San Antonio Tx
Posts: 1,033 Porthos User rank is Major (30000 - 40000 Reputation Level)Porthos User rank is Major (30000 - 40000 Reputation Level)Porthos User rank is Major (30000 - 40000 Reputation Level)Porthos User rank is Major (30000 - 40000 Reputation Level)Porthos User rank is Major (30000 - 40000 Reputation Level)Porthos User rank is Major (30000 - 40000 Reputation Level)Porthos User rank is Major (30000 - 40000 Reputation Level)Porthos User rank is Major (30000 - 40000 Reputation Level)Porthos User rank is Major (30000 - 40000 Reputation Level)Porthos User rank is Major (30000 - 40000 Reputation Level) 
Time spent in forums: 1 Week 1 Day 17 h 27 m 54 sec
Reputation Power: 363
Quote:
Originally Posted by CryTek
A little off topic...My computer sometimes restarts..finding the cause would be


1. in enviromental controls>there is an option for the computer to autorestart..unchecking that should cause the computer to BlueScreen..which will give you an error code that you can Google-Search to find the root cause....


Or 2. Control panel>Administrative tools>Event viewer would show the conflicting Driver or Program....

My computer restarts when I transfer data from 1 hardrive/or partition to another hardrive/external hardrive/partition. My motherboard Drivers are updated.
Could you steer me in a different direction to detect the cause? THx.


Both the above can assist you with that. Google is your friend.
Reply With Quote
  #19  
Old April 10th, 2008, 06:42 PM
CryTek CryTek is offline
Registered User
Dev Shed Newbie (0 - 499 posts)
  
Join Date: Apr 2008
Posts: 16 CryTek User rank is Just a Lowly Private (1 - 20 Reputation Level) 
Time spent in forums: 3 h 42 m 8 sec
Reputation Power: 0
SUPERAntiSpyware Scan Log
http://www.superantispyware.com

Generated 04/10/2008 at 06:38 PM

Application Version : 4.0.1154

Core Rules Database Version : 3436
Trace Rules Database Version: 1428

Scan type : Complete Scan
Total Scan Time : 00:05:28

Memory items scanned : 431
Memory threats detected : 0
Registry items scanned : 3386
Registry threats detected : 57
File items scanned : 7303
File threats detected : 27

Unclassified.Unknown Origin
HKLM\Software\Classes\CLSID\{A93A4625-6216-499C-B360-BBD0A7C0D479}
HKCR\CLSID\{A93A4625-6216-499C-B360-BBD0A7C0D479}
HKCR\CLSID\{A93A4625-6216-499C-B360-BBD0A7C0D479}\InprocServer32

Adware.Tracking Cookie
C:\Documents and Settings\gimp\Cookies\gimp@hitbox[2].txt
C:\Documents and Settings\gimp\Cookies\gimp@statcounter[2].txt
C:\Documents and Settings\gimp\Cookies\gimp@media.licenseacquisition[2].txt
C:\Documents and Settings\gimp\Cookies\gimp@atdmt[1].txt
C:\Documents and Settings\gimp\Cookies\gimp@dealtime.co[1].txt
C:\Documents and Settings\gimp\Cookies\gimp@doubleclick[1].txt
C:\Documents and Settings\gimp\Cookies\gimp@adopt.euroclick[2].txt
C:\Documents and Settings\gimp\Cookies\gimp@hotbar[2].txt
C:\Documents and Settings\gimp\Cookies\gimp@ads.pointroll[1].txt
C:\Documents and Settings\gimp\Cookies\gimp@cts.metricsdirect[1].txt
C:\Documents and Settings\gimp\Cookies\gimp@mediaplex[1].txt
C:\Documents and Settings\gimp\Cookies\gimp@content.licenseacquisition[2].txt
C:\Documents and Settings\gimp\Cookies\gimp@mtr.splash.sexsearch[1].txt
C:\Documents and Settings\gimp\Cookies\gimp@wt.sexsearch[1].txt
C:\Documents and Settings\gimp\Cookies\gimp@msnportal.112.2o7[1].txt
C:\Documents and Settings\gimp\Cookies\gimp@stat.dealtime[2].txt
C:\Documents and Settings\gimp\Cookies\gimp@adultfriendfinder[1].txt
C:\Documents and Settings\gimp\Cookies\gimp@ehg-dig.hitbox[2].txt
C:\Documents and Settings\gimp\Cookies\gimp@nx3.todaystats[1].txt
C:\Documents and Settings\gimp\Cookies\gimp@clickbank[1].txt

Adware.180solutions/Seekmo
HKCR\Seekmo.DesktopFlash
HKCR\Seekmo.DesktopFlash\CLSID
HKCR\Seekmo.DesktopFlash\CurVer
HKCR\Seekmo.DesktopFlash.1
HKCR\Seekmo.DesktopFlash.1\CLSID
HKCR\SeekmoAX.ClientDetector
HKCR\SeekmoAX.ClientDetector\CLSID
HKCR\SeekmoAX.ClientDetector\CurVer
HKCR\SeekmoAX.ClientDetector.1
HKCR\SeekmoAX.ClientDetector.1\CLSID
HKCR\SeekmoAX.UserProfiles
HKCR\SeekmoAX.UserProfiles\CLSID
HKCR\SeekmoAX.UserProfiles\CurVer
HKCR\SeekmoAX.UserProfiles.1
HKCR\SeekmoAX.UserProfiles.1\CLSID
HKCR\CLSID\{1F158A1E-A687-4a11-9679-B3AC64B86A1C}
HKCR\CLSID\{1F158A1E-A687-4a11-9679-B3AC64B86A1C}\Control
HKCR\CLSID\{1F158A1E-A687-4a11-9679-B3AC64B86A1C}\MiscStatus
HKCR\CLSID\{1F158A1E-A687-4a11-9679-B3AC64B86A1C}\MiscStatus\1
HKCR\CLSID\{1F158A1E-A687-4a11-9679-B3AC64B86A1C}\ProgID
HKCR\CLSID\{1F158A1E-A687-4a11-9679-B3AC64B86A1C}\Programmable
HKCR\CLSID\{1F158A1E-A687-4a11-9679-B3AC64B86A1C}\ToolboxBitmap32
HKCR\CLSID\{1F158A1E-A687-4a11-9679-B3AC64B86A1C}\TypeLib
HKCR\CLSID\{1F158A1E-A687-4a11-9679-B3AC64B86A1C}\Version
HKCR\CLSID\{1F158A1E-A687-4a11-9679-B3AC64B86A1C}\VersionIndependentProgID
HKCR\CLSID\{914A8F99-38E4-47ec-B875-2B0653516030}
HKCR\CLSID\{914A8F99-38E4-47ec-B875-2B0653516030}#AppID
HKCR\CLSID\{914A8F99-38E4-47ec-B875-2B0653516030}\ProgID
HKCR\CLSID\{914A8F99-38E4-47ec-B875-2B0653516030}\Programmable
HKCR\CLSID\{914A8F99-38E4-47ec-B875-2B0653516030}\TypeLib
HKCR\CLSID\{914A8F99-38E4-47ec-B875-2B0653516030}\VersionIndependentProgID
HKCR\CLSID\{E313F5DC-CFE7-4568-84A4-C76653547571}
HKCR\CLSID\{E313F5DC-CFE7-4568-84A4-C76653547571}\ProgID
HKCR\CLSID\{E313F5DC-CFE7-4568-84A4-C76653547571}\Programmable
HKCR\CLSID\{E313F5DC-CFE7-4568-84A4-C76653547571}\TypeLib
HKCR\CLSID\{E313F5DC-CFE7-4568-84A4-C76653547571}\VersionIndependentProgID
HKCR\TypeLib\{995E885E-3FF5-4F66-A107-8BFB3A0F8F12}
HKCR\TypeLib\{995E885E-3FF5-4F66-A107-8BFB3A0F8F12}\1.0
HKCR\TypeLib\{995E885E-3FF5-4F66-A107-8BFB3A0F8F12}\1.0\0
HKCR\TypeLib\{995E885E-3FF5-4F66-A107-8BFB3A0F8F12}\1.0\FLAGS
HKCR\TypeLib\{995E885E-3FF5-4F66-A107-8BFB3A0F8F12}\1.0\HELPDIR
HKCR\TypeLib\{FBB40FDF-B715-4342-AB82-244ECC66E979}
HKCR\TypeLib\{FBB40FDF-B715-4342-AB82-244ECC66E979}\1.0
HKCR\TypeLib\{FBB40FDF-B715-4342-AB82-244ECC66E979}\1.0\0
HKCR\TypeLib\{FBB40FDF-B715-4342-AB82-244ECC66E979}\1.0\FLAGS
HKCR\TypeLib\{FBB40FDF-B715-4342-AB82-244ECC66E979}\1.0\HELPDIR
HKCR\Interface\{BD5258AF-20AE-4BD3-B748-B2851ACA7335}
HKCR\Interface\{BD5258AF-20AE-4BD3-B748-B2851ACA7335}\ProxyStubClsid
HKCR\Interface\{BD5258AF-20AE-4BD3-B748-B2851ACA7335}\ProxyStubClsid32
HKCR\Interface\{BD5258AF-20AE-4BD3-B748-B2851ACA7335}\TypeLib
HKCR\Interface\{BD5258AF-20AE-4BD3-B748-B2851ACA7335}\TypeLib#Version
HKCR\AppId\SeekmoSA_df.exe
HKCR\AppId\SeekmoSA_df.exe#AppID
HKCR\AppId\{4A40E8FC-C7E4-4F57-9FA4-85DD77402897}
C:\Documents and Settings\All Users\Start Menu\Programs\Seekmo\Reset Cursor.lnk
C:\Documents and Settings\All Users\Start Menu\Programs\Seekmo\Seekmo Customer Support Center.lnk
C:\Documents and Settings\All Users\Start Menu\Programs\Seekmo\Seekmo Uninstall Instructions.lnk
C:\Documents and Settings\All Users\Start Menu\Programs\Seekmo
C:\PROGRAM FILES\MOZILLA FIREFOX\PLUGINS\NPCLNTAX_SEEKMOSA.DLL

Adware.IECodec
C:\WINDOWS\MPCODECPLG.DLL

Trojan.Unclassified/K-Series
C:\WINDOWS\SYSTEM32\KDJEJ.EXE
Reply With Quote
  #20  
Old April 10th, 2008, 07:15 PM
CryTek CryTek is offline
Registered User
Dev Shed Newbie (0 - 499 posts)
  
Join Date: Apr 2008
Posts: 16 CryTek User rank is Just a Lowly Private (1 - 20 Reputation Level) 
Time spent in forums: 3 h 42 m 8 sec
Reputation Power: 0
;*************************************************************************************************** ********************************************************************************
ANALYSIS: 2008-04-10 19:12:02
PROTECTIONS: 0
MALWARE: 30
SUSPECTS: 0
;*************************************************************************************************** ********************************************************************************
PROTECTIONS
Description Version Active Updated
;=================================================================================================== ================================================================================
;=================================================================================================== ================================================================================
MALWARE
Id Description Type Active Severity Disinfectable Disinfected Location
;=================================================================================================== ================================================================================
00139061 Cookie/Doubleclick TrackingCookie No 0 Yes No C:\Documents and Settings\gimp\Application Data\Mozilla\Firefox\Profiles\xzll3zuk.default\cookies.txt[.doubleclick.net/]
00139064 Cookie/Atlas DMT TrackingCookie No 0 Yes No C:\Documents and Settings\gimp\Application Data\Mozilla\Firefox\Profiles\xzll3zuk.default\cookies.txt[.atdmt.com/]
00145457 Cookie/FastClick TrackingCookie No 0 Yes No C:\Documents and Settings\gimp\Application Data\Mozilla\Firefox\Profiles\xzll3zuk.default\cookies.txt[.fastclick.net/]
00145457 Cookie/FastClick TrackingCookie No 0 Yes No C:\Documents and Settings\gimp\Application Data\Mozilla\Firefox\Profiles\xzll3zuk.default\cookies.txt[.fastclick.net/]
00145457 Cookie/FastClick TrackingCookie No 0 Yes No C:\Documents and Settings\gimp\Application Data\Mozilla\Firefox\Profiles\xzll3zuk.default\cookies.txt[.fastclick.net/]
00145731 Cookie/Tribalfusion TrackingCookie No 0 Yes No C:\Documents and Settings\gimp\Application Data\Mozilla\Firefox\Profiles\xzll3zuk.default\cookies.txt[.tribalfusion.com/]
00145731 Cookie/Tribalfusion TrackingCookie No 0 Yes No C:\Documents and Settings\gimp\Application Data\Mozilla\Firefox\Profiles\xzll3zuk.default\cookies.txt[.tribalfusion.com/]
00145731 Cookie/Tribalfusion TrackingCookie No 0 Yes No C:\Documents and Settings\gimp\Application Data\Mozilla\Firefox\Profiles\xzll3zuk.default\cookies.txt[.tribalfusion.com/]
00145731 Cookie/Tribalfusion TrackingCookie No 0 Yes No C:\Documents and Settings\gimp\Application Data\Mozilla\Firefox\Profiles\xzll3zuk.default\cookies.txt[.tribalfusion.com/]
00145738 Cookie/Mediaplex TrackingCookie No 0 Yes No C:\Documents and Settings\gimp\Application Data\Mozilla\Firefox\Profiles\xzll3zuk.default\cookies.txt[.mediaplex.com/]
00147824 Cookie/Clickbank TrackingCookie No 0 Yes No C:\Documents and Settings\gimp\Application Data\Mozilla\Firefox\Profiles\xzll3zuk.default\cookies.txt[.clickbank.net/]
00167704 Cookie/Xiti TrackingCookie No 0 Yes No C:\Documents and Settings\gimp\Application Data\Mozilla\Firefox\Profiles\xzll3zuk.default\cookies.txt[.xiti.com/]
00167753 Cookie/Statcounter TrackingCookie No 0 Yes No C:\Documents and Settings\gimp\Application Data\Mozilla\Firefox\Profiles\xzll3zuk.default\cookies.txt[.statcounter.com/]
00167753 Cookie/Statcounter TrackingCookie No 0 Yes No C:\Documents and Settings\gimp\Application Data\Mozilla\Firefox\Profiles\xzll3zuk.default\cookies.txt[.statcounter.com/]
00167753 Cookie/Statcounter TrackingCookie No 0 Yes No C:\Documents and Settings\gimp\Application Data\Mozilla\Firefox\Profiles\xzll3zuk.default\cookies.txt[.statcounter.com/]
00167770 Cookie/Sextracker TrackingCookie No 0 Yes No C:\Documents and Settings\gimp\Application Data\Mozilla\Firefox\Profiles\xzll3zuk.default\cookies.txt[counter15.sextracker.com/]
00168056 Cookie/YieldManager TrackingCookie No 0 Yes No C:\Documents and Settings\gimp\Application Data\Mozilla\Firefox\Profiles\xzll3zuk.default\cookies.txt[ad.yieldmanager.com/]
00168056 Cookie/YieldManager TrackingCookie No 0 Yes No C:\Documents and Settings\gimp\Application Data\Mozilla\Firefox\Profiles\xzll3zuk.default\cookies.txt[ad.yieldmanager.com/]
00168056 Cookie/YieldManager TrackingCookie No 0 Yes No C:\Documents and Settings\gimp\Application Data\Mozilla\Firefox\Profiles\xzll3zuk.default\cookies.txt[ad.yieldmanager.com/]
00168056 Cookie/YieldManager TrackingCookie No 0 Yes No C:\Documents and Settings\gimp\Application Data\Mozilla\Firefox\Profiles\xzll3zuk.default\cookies.txt[ad.yieldmanager.com/]
00168056 Cookie/YieldManager TrackingCookie No 0 Yes No C:\Documents and Settings\gimp\Application Data\Mozilla\Firefox\Profiles\xzll3zuk.default\cookies.txt[ad.yieldmanager.com/]
00168061 Cookie/Apmebf TrackingCookie No 0 Yes No C:\Documents and Settings\gimp\Application Data\Mozilla\Firefox\Profiles\xzll3zuk.default\cookies.txt[.apmebf.com/]
00168090 Cookie/Serving-sys TrackingCookie No 0 Yes No C:\Documents and Settings\gimp\Application Data\Mozilla\Firefox\Profiles\xzll3zuk.default\cookies.txt[.serving-sys.com/]
00168090 Cookie/Serving-sys TrackingCookie No 0 Yes No C:\Documents and Settings\gimp\Application Data\Mozilla\Firefox\Profiles\xzll3zuk.default\cookies.txt[.serving-sys.com/]
00168090 Cookie/Serving-sys TrackingCookie No 0 Yes No C:\Documents and Settings\gimp\Application Data\Mozilla\Firefox\Profiles\xzll3zuk.default\cookies.txt[.serving-sys.com/]
00168090 Cookie/Serving-sys TrackingCookie No 0 Yes No C:\Documents and Settings\gimp\Application Data\Mozilla\Firefox\Profiles\xzll3zuk.default\cookies.txt[.serving-sys.com/]
00168090 Cookie/Serving-sys TrackingCookie No 0 Yes No C:\Documents and Settings\gimp\Application Data\Mozilla\Firefox\Profiles\xzll3zuk.default\cookies.txt[.serving-sys.com/]
00168090 Cookie/Serving-sys TrackingCookie No 0 Yes No C:\Documents and Settings\gimp\Application Data\Mozilla\Firefox\Profiles\xzll3zuk.default\cookies.txt[.serving-sys.com/]
00168093 Cookie/Serving-sys TrackingCookie No 0 Yes No C:\Documents and Settings\gimp\Application Data\Mozilla\Firefox\Profiles\xzll3zuk.default\cookies.txt[.bs.serving-sys.com/]
00168109 Cookie/Adtech TrackingCookie No 0 Yes No C:\Documents and Settings\gimp\Application Data\Mozilla\Firefox\Profiles\xzll3zuk.default\cookies.txt[.adtech.de/]
00168114 Cookie/onestat.com TrackingCookie No 0 Yes No C:\Documents and Settings\gimp\Application Data\Mozilla\Firefox\Profiles\xzll3zuk.default\cookies.txt[stat.onestat.com/]
00168114 Cookie/onestat.com TrackingCookie No 0 Yes No C:\Documents and Settings\gimp\Application Data\Mozilla\Firefox\Profiles\xzll3zuk.default\cookies.txt[stat.onestat.com/]
00169190 Cookie/Advertising TrackingCookie No 0 Yes No C:\Documents and Settings\gimp\Application Data\Mozilla\Firefox\Profiles\xzll3zuk.default\cookies.txt[.advertising.com/]
00169190 Cookie/Advertising TrackingCookie No 0 Yes No C:\Documents and Settings\gimp\Application Data\Mozilla\Firefox\Profiles\xzll3zuk.default\cookies.txt[.advertising.com/]
00169190 Cookie/Advertising TrackingCookie No 0 Yes No C:\Documents and Settings\gimp\Application Data\Mozilla\Firefox\Profiles\xzll3zuk.default\cookies.txt[.advertising.com/]
00169190 Cookie/Advertising TrackingCookie No 0 Yes No C:\Documents and Settings\gimp\Application Data\Mozilla\Firefox\Profiles\xzll3zuk.default\cookies.txt[.advertising.com/]
00169190 Cookie/Advertising TrackingCookie No 0 Yes No C:\Documents and Settings\gimp\Application Data\Mozilla\Firefox\Profiles\xzll3zuk.default\cookies.txt[.advertising.com/]
00169286 Cookie/Sextracker TrackingCookie No 0 Yes No C:\Documents and Settings\gimp\Application Data\Mozilla\Firefox\Profiles\xzll3zuk.default\cookies.txt[.sextracker.com/]
00170304 Cookie/WebtrendsLive TrackingCookie No 0 Yes No C:\Documents and Settings\gimp\Application Data\Mozilla\Firefox\Profiles\xzll3zuk.default\cookies.txt[statse.webtrendslive.com/]
00170495 Cookie/PointRoll TrackingCookie No 0 Yes No C:\Documents and Settings\gimp\Application Data\Mozilla\Firefox\Profiles\xzll3zuk.default\cookies.txt[.ads.pointroll.com/]
00170495 Cookie/PointRoll TrackingCookie No 0 Yes No C:\Documents and Settings\gimp\Application Data\Mozilla\Firefox\Profiles\xzll3zuk.default\cookies.txt[.ads.pointroll.com/]
00170495 Cookie/PointRoll TrackingCookie No 0 Yes No C:\Documents and Settings\gimp\Application Data\Mozilla\Firefox\Profiles\xzll3zuk.default\cookies.txt[.ads.pointroll.com/]
00170495 Cookie/PointRoll TrackingCookie No 0 Yes No C:\Documents and Settings\gimp\Application Data\Mozilla\Firefox\Profiles\xzll3zuk.default\cookies.txt[.ads.pointroll.com/]
00170495 Cookie/PointRoll TrackingCookie No 0 Yes No C:\Documents and Settings\gimp\Application Data\Mozilla\Firefox\Profiles\xzll3zuk.default\cookies.txt[.ads.pointroll.com/]
00170495 Cookie/PointRoll TrackingCookie No 0 Yes No C:\Documents and Settings\gimp\Application Data\Mozilla\Firefox\Profiles\xzll3zuk.default\cookies.txt[.ads.pointroll.com/]
00170495 Cookie/PointRoll TrackingCookie No 0 Yes No C:\Documents and Settings\gimp\Application Data\Mozilla\Firefox\Profiles\xzll3zuk.default\cookies.txt[.ads.pointroll.com/]
00171982 Cookie/QuestionMarket TrackingCookie No 0 Yes No C:\Documents and Settings\gimp\Application Data\Mozilla\Firefox\Profiles\xzll3zuk.default\cookies.txt[.questionmarket.com/]
00171982 Cookie/QuestionMarket TrackingCookie No 0 Yes No C:\Documents and Settings\gimp\Application Data\Mozilla\Firefox\Profiles\xzll3zuk.default\cookies.txt[.questionmarket.com/]
00171982 Cookie/QuestionMarket TrackingCookie No 0 Yes No C:\Documents and Settings\gimp\Application Data\Mozilla\Firefox\Profiles\xzll3zuk.default\cookies.txt[.questionmarket.com/]
00172221 Cookie/Zedo TrackingCookie No 0 Yes No C:\Documents and Settings\gimp\Application Data\Mozilla\Firefox\Profiles\xzll3zuk.default\cookies.txt[.zedo.com/]
00172221 Cookie/Zedo TrackingCookie No 0 Yes No C:\Documents and Settings\gimp\Application Data\Mozilla\Firefox\Profiles\xzll3zuk.default\cookies.txt[.zedo.com/]
00172221 Cookie/Zedo TrackingCookie No 0 Yes No C:\Documents and Settings\gimp\Application Data\Mozilla\Firefox\Profiles\xzll3zuk.default\cookies.txt[.zedo.com/]
00172221 Cookie/Zedo TrackingCookie No 0 Yes No C:\Documents and Settings\gimp\Application Data\Mozilla\Firefox\Profiles\xzll3zuk.default\cookies.txt[.zedo.com/]
00184846 Cookie/Adrevolver TrackingCookie No 0 Yes No C:\Documents and Settings\gimp\Application Data\Mozilla\Firefox\Profiles\xzll3zuk.default\cookies.txt[.adrevolver.com/]
00184846 Cookie/Adrevolver TrackingCookie No 0 Yes No C:\Documents and Settings\gimp\Application Data\Mozilla\Firefox\Profiles\xzll3zuk.default\cookies.txt[.adrevolver.com/]
00184846 Cookie/Adrevolver TrackingCookie No 0 Yes No C:\Documents and Settings\gimp\Application Data\Mozilla\Firefox\Profiles\xzll3zuk.default\cookies.txt[.adrevolver.com/]
00184846 Cookie/Adrevolver TrackingCookie No 0 Yes No C:\Documents and Settings\gimp\Application Data\Mozilla\Firefox\Profiles\xzll3zuk.default\cookies.txt[.adrevolver.com/]
00184846 Cookie/Adrevolver TrackingCookie No 0 Yes No C:\Documents and Settings\gimp\Application Data\Mozilla\Firefox\Profiles\xzll3zuk.default\cookies.txt[.adrevolver.com/]
00184846 Cookie/Adrevolver TrackingCookie No 0 Yes No C:\Documents and Settings\gimp\Application Data\Mozilla\Firefox\Profiles\xzll3zuk.default\cookies.txt[.adrevolver.com/]
00191644 Cookie/adultfriendfinder TrackingCookie No 0 Yes No C:\Documents and Settings\gimp\Application Data\Mozilla\Firefox\Profiles\xzll3zuk.default\cookies.txt[.adultfriendfinder.com/]
00191644 Cookie/adultfriendfinder TrackingCookie No 0 Yes No C:\Documents and Settings\gimp\Application Data\Mozilla\Firefox\Profiles\xzll3zuk.default\cookies.txt[.adultfriendfinder.com/]
00191644 Cookie/adultfriendfinder TrackingCookie No 0 Yes No C:\Documents and Settings\gimp\Application Data\Mozilla\Firefox\Profiles\xzll3zuk.default\cookies.txt[.adultfriendfinder.com/]
00191644 Cookie/adultfriendfinder TrackingCookie No 0 Yes No C:\Documents and Settings\gimp\Application Data\Mozilla\Firefox\Profiles\xzll3zuk.default\cookies.txt[.adultfriendfinder.com/]
00262020 Cookie/Atwola TrackingCookie No 0 Yes No C:\Documents and Settings\gimp\Application Data\Mozilla\Firefox\Profiles\xzll3zuk.default\cookies.txt[.atwola.com/]
00262020 Cookie/Atwola TrackingCookie No 0 Yes No C:\Documents and Settings\gimp\Application Data\Mozilla\Firefox\Profiles\xzll3zuk.default\cookies.txt[.atwola.com/]
00366244 Application/NirCmd.A HackTools No 0 No No C:\Documents and Settings\gimp\Desktop\Flash_Disinfector.exe[nircmd.exe]
01185375 Application/Psexec.A HackTools No 0 Yes No C:\WINDOWS\PSEXESVC.EXE
01196325 Cookie/Enhance TrackingCookie No 0 Yes No C:\Documents and Settings\gimp\Application Data\Mozilla\Firefox\Profiles\xzll3zuk.default\cookies.txt[.enhance.com/]
01196325 Cookie/Enhance TrackingCookie No 0 Yes No C:\Documents and Settings\gimp\Application Data\Mozilla\Firefox\Profiles\xzll3zuk.default\cookies.txt[.enhance.com/]
01221834 Trj/Maran.CG Virus/Trojan No 1 Yes No G:\exqmmle.exe
01221834 Trj/Maran.CG Virus/Trojan No 1 Yes No C:\QooBox\Quarantine\C\Program Files\meex.exe.vir
01221834 Trj/Maran.CG Virus/Trojan No 1 Yes No D:\exqmmle.exe
01271815 Adware/Zango Adware No 0 Yes No C:\QooBox\Quarantine\C\Program Files\Seekmo\bin\10.0.406.0\SeekmoSADF.exe.vir
01271818 Adware/Zango Adware No 0 Yes No C:\QooBox\Quarantine\C\Program Files\Seekmo\bin\10.0.406.0\Srv.exe.vir
==================================================================================================== ===================================
Reply With Quote
  #21  
Old April 10th, 2008, 07:22 PM
CryTek CryTek is offline
Registered User
Dev Shed Newbie (0 - 499 posts)
  
Join Date: Apr 2008
Posts: 16 CryTek User rank is Just a Lowly Private (1 - 20 Reputation Level) 
Time spent in forums: 3 h 42 m 8 sec
Reputation Power: 0
SUSPECTS
Sent Location
VULNERABILITIES
Id Severity Description
;=================================================================================================== ================================================================================
184380 MEDIUM MS08-002 h
184379 MEDIUM MS08-001 h
182048 HIGH MS07-069 h
182046 HIGH MS07-067 h
182043 HIGH MS07-064 h
179553 HIGH MS07-061 h
176382 HIGH MS07-057 h
176383 HIGH MS07-058 h
170911 HIGH MS07-050 h
170907 HIGH MS07-046 h
170906 HIGH MS07-045 h
170904 HIGH MS07-043 h
Reply With Quote
  #22  
Old April 10th, 2008, 07:24 PM
CryTek CryTek is offline
Registered User
Dev Shed Newbie (0 - 499 posts)
  
Join Date: Apr 2008
Posts: 16 CryTek User rank is Just a Lowly Private (1 - 20 Reputation Level) 
Time spent in forums: 3 h 42 m 8 sec
Reputation Power: 0
164915 High Ms07-035
164913 High Ms07-033
164911 High Ms07-031
160623 High Ms07-027
157262 High Ms07-022
157261 High Ms07-021
157260 High Ms07-020
157259 High Ms07-019
156477 High Ms07-017
150253 High Ms07-016
150249 High Ms07-013
150248 High Ms07-012
150247 High Ms07-011
150243 High Ms07-008
150242 High Ms07-007
150241 Medium Ms07-006
141034 High Ms06-076
141033 Medium Ms06-075
141030 High Ms06-072
137571 High Ms06-070
137568 High Ms06-067
133387 Medium Ms06-065
133386 Medium Ms06-064
133385 Medium Ms06-063
133379 High Ms06-057
131654 High Ms06-055
129977 Medium Ms06-053
129976 Medium Ms06-052
126093 High Ms06-051
126092 Medium Ms06-050
126087 High Ms06-046
126086 Medium Ms06-045
126083 High Ms06-042
126082 High Ms06-041
126081 High Ms06-040
123421 High Ms06-036
123420 High Ms06-035
120825 Medium Ms06-032
120823 Medium Ms06-030
120818 High Ms06-025
120815 High Ms06-022
120814 High Ms06-021
117384 Medium Ms06-018
114666 High Ms06-015
114664 High Ms06-013
108744 Medium Ms06-008