Welcome guest. Before posting on our computer help forum, you must register. Click here it's easy and free.

« previous next »
Pages: [1]   Go Down

Author Topic: Application cannot be executed. The file *** is infected.  (Read 6343 times)

0 Members and 1 Guest are viewing this topic.

JS

  • Guest
Application cannot be executed. The file *** is infected.
« on: May 24, 2010, 01:04:37 PM »
Hello,

I found this site when i googled "Application cannot be executed. The file *** is infected." I get fake pop up to buy a anti virus and you know the deal. So i fallowed the other tread and got all the logs from S.anti, mbam and hijack. So here it goes.

SUPERAntiSpyware Scan Log
http://www.superantispyware.com

Generated 05/24/2010 at 11:13 AM

Application Version : 4.37.1000

Core Rules Database Version : 4900
Trace Rules Database Version: 2712

Scan type       : Complete Scan
Total Scan Time : 00:56:12

Memory items scanned      : 520
Memory threats detected   : 0
Registry items scanned    : 6140
Registry threats detected : 1
File items scanned        : 26248
File threats detected     : 374

Adware.Tracking Cookie
   C:\Documents and Settings\Baby Registry\Cookies\baby_registry@invitemedia[1].txt
   C:\Documents and Settings\Baby Registry\Cookies\[email protected][2].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby registry@qnsr[1].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby registry@247realmedia[2].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby registry@yieldmanager[1].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby [email protected][1].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby [email protected][2].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby [email protected][2].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby [email protected][1].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby registry@kontera[1].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby_registry@mediaplex[1].txt
   C:\Documents and Settings\Baby Registry\Cookies\[email protected][2].txt
   C:\Documents and Settings\Baby Registry\Cookies\[email protected][2].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby_registry@tacoda[2].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby_registry@burstbeacon[1].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby [email protected][1].txt
   C:\Documents and Settings\Baby Registry\Cookies\[email protected][1].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby [email protected][1].txt
   C:\Documents and Settings\Baby Registry\Cookies\[email protected][1].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby_registry@apmebf[1].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby_registry@specificmedia[2].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby_registry@serving-sys[1].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby [email protected][2].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby registry@lfstmedia[2].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby [email protected][2].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby [email protected][1].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby [email protected][1].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby [email protected][2].txt
   C:\Documents and Settings\Baby Registry\Cookies\[email protected][3].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby [email protected][1].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby registry@insightexpressai[2].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby registry@cgi-bin[3].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby registry@87890346[2].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby_registry@interclick[1].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby_registry@burstnet[2].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby registry@pornosleuth[2].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby [email protected][1].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby [email protected][1].txt
   C:\Documents and Settings\Baby Registry\Cookies\[email protected][1].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby registry@adlegend[1].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby [email protected][1].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby_registry@media6degrees[2].txt
   C:\Documents and Settings\Baby Registry\Cookies\[email protected][2].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby_registry@tribalfusion[2].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby [email protected][1].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby_registry@realmedia[1].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby_registry@bluestreak[1].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby registry@agayporno[1].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby registry@clicktorrent[2].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby [email protected][1].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby [email protected][1].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby_registry@specificclick[1].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby [email protected][2].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby [email protected][1].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby [email protected][2].txt
   C:\Documents and Settings\Baby Registry\Cookies\[email protected][2].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby registry@html[2].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby registry@atwola[2].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby [email protected][1].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby [email protected][1].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby [email protected][1].txt
   C:\Documents and Settings\Baby Registry\Cookies\[email protected][1].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby_registry@doubleclick[1].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby_registry@advertising[2].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby_registry@questionmarket[2].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby_registry@collective-media[2].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby_registry@zedo[1].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby [email protected][1].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby [email protected][2].txt
   C:\Documents and Settings\Baby Registry\Cookies\[email protected][1].txt
   C:\Documents and Settings\Baby Registry\Cookies\[email protected][1].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby [email protected][1].txt
   C:\Documents and Settings\Baby Registry\Cookies\[email protected][1].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby registry@azjmp[1].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby [email protected][2].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby registry@socialmedia[2].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby registry@incentaclick[2].txt
   C:\Documents and Settings\Baby Registry\Cookies\[email protected][2].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby [email protected][2].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby registry@81924764[2].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby registry@75119974[2].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby registry@traveladvertising[1].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby_registry@atdmt[2].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby [email protected][1].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby_registry@chitika[2].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby [email protected][2].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby [email protected][2].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby [email protected][2].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby [email protected][1].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby registry@19452074[2].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby registry@ak[2].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby_registry@pointroll[2].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby [email protected][2].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby_registry@adbrite[1].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby_registry@petfinder[2].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby [email protected][1].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby [email protected][1].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby [email protected][1].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby [email protected][1].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby_registry@adinterax[2].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby registry@nextag[2].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby registry@gallery[2].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby registry@dmtracker[1].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby registry@intermundomedia[2].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby [email protected][2].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby registry@uknakedmen[2].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby registry@eyewonder[1].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby_registry@tradedoubler[1].txt
   C:\Documents and Settings\Baby Registry\Cookies\[email protected][2].txt
   C:\Documents and Settings\Baby Registry\Cookies\[email protected][2].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby_registry@revsci[1].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby registry@63000276[2].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby [email protected][1].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby [email protected][1].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby registry@dallasnakedyoga4men[1].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby [email protected][2].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby [email protected][1].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby [email protected][1].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby [email protected][1].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby_registry@lucidmedia[2].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby [email protected][2].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby registry@findlaw[1].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby [email protected][1].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby registry@banner_js[1].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby registry@spylog[1].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby [email protected][1].txt
   C:\Documents and Settings\Baby Registry\Cookies\[email protected][2].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby registry@6616508[2].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby_registry@fastclick[1].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby [email protected][1].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby [email protected][2].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby [email protected][1].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby_registry@overture[2].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby registry@adbureau[1].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby registry@kleankanteen[1].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby [email protected][1].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby registry@banner_js[2].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby [email protected][1].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby [email protected][1].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby [email protected][1].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby registry@js[1].txt
   C:\Documents and Settings\Baby Registry\Cookies\[email protected][2].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby [email protected][1].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby registry@findnclicks[1].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby [email protected][1].txt
   C:\Documents and Settings\Baby Registry\Cookies\[email protected][1].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby [email protected][1].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby_registry@2o7[2].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby registry@clickability[2].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby [email protected][2].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby registry@mypetfinder[2].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby registry@bizrate[2].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby [email protected][2].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby [email protected][1].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby_registry@trafficmp[2].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby registry@pro-market[2].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby [email protected][1].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby [email protected][1].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby registry@revenue[2].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby [email protected][2].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby [email protected][1].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby registry@89501883[1].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby [email protected][2].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby [email protected][1].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby [email protected][1].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby registry@44153975[2].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby [email protected][1].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby [email protected][1].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby registry@ss_ads3[1].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby [email protected][2].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby [email protected][2].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby [email protected][1].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby_registry@adcentriconline[1].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby [email protected][1].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby [email protected][2].txt
   C:\Documents and Settings\Baby Registry\Cookies\[email protected][2].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby [email protected][1].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby [email protected][1].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby [email protected][1].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby registry@mediapost[2].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby registry@mediapromoter[1].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby [email protected][1].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby [email protected][2].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby [email protected][1].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby [email protected][1].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby registry@mainlinemedianews[1].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby [email protected][1].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby [email protected][1].txt
   C:\Documents and Settings\Baby Registry\Cookies\[email protected][1].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby [email protected][1].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby [email protected][1].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby [email protected][2].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby [email protected][1].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby registry@mainlinemedianews[2].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby [email protected][2].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby [email protected][2].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby registry@618028[2].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby registry@google[2].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby registry@1059946869[1].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby [email protected][2].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby [email protected][2].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby [email protected][1].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby [email protected][2].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby registry@1072556279[1].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby [email protected][2].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby registry@36005843[1].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby registry@interactivemediaawards[1].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby registry@adecn[2].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby [email protected][2].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby registry@SFConversionTracking[1].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby registry@74613876[2].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby registry@adtech[1].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby [email protected][1].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby registry@user-activity-tracking[1].txt
   C:\Documents and Settings\Baby Registry\Cookies\[email protected][1].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby [email protected][2].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby registry@enhance[1].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby [email protected][2].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby [email protected][2].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby registry@kanoodle[1].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby [email protected][2].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby [email protected][2].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby [email protected][2].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby [email protected][2].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby registry@adxpose[1].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby registry@70908705[2].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby [email protected][1].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby [email protected][1].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby registry@1070900309[1].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby_registry@mediamatters[1].txt
   C:\Documents and Settings\Baby Registry\Cookies\[email protected][1].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby [email protected][2].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby [email protected][1].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby [email protected][2].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby [email protected][1].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby [email protected][1].txt
   C:\Documents and Settings\Baby Registry\Cookies\[email protected][1].txt
   C:\Documents and Settings\Baby Registry\Cookies\[email protected][1].txt
   C:\Documents and Settings\Baby Registry\Cookies\[email protected][2].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby_registry@edgeadx[1].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby_registry@hitbox[2].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby [email protected][1].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby [email protected][1].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby [email protected][1].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby [email protected][2].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby [email protected][2].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby [email protected][2].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby registry@superstats[1].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby registry@ix[1].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby registry@ix[3].txt
   C:\Documents and Settings\Baby Registry\Cookies\[email protected][1].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby registry@yadro[2].txt
   C:\Documents and Settings\Baby Registry\Cookies\[email protected][1].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby registry@41164003[2].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby registry@legolas-media[1].txt
   C:\Documents and Settings\Baby Registry\Cookies\[email protected][1].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby_registry@casalemedia[2].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby registry@pbteen[1].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby registry@1068740360[1].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby registry@discounttire[1].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby registry@dtcs[2].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby [email protected][1].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby [email protected][2].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby registry@pagead[1].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby registry@1068976981[1].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby [email protected][1].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby [email protected][2].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby [email protected][1].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby_registry@liveperson[1].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby [email protected][2].txt
   C:\Documents and Settings\Baby Registry\Cookies\[email protected][1].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby registry@dealtime[1].txt
   C:\Documents and Settings\Baby Registry\Cookies\[email protected][1].txt
   C:\Documents and Settings\Baby Registry\Cookies\[email protected][1].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby_registry@xiti[1].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby [email protected][2].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby registry@qksrv[2].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby_registry@clickbank[1].txt
   C:\Documents and Settings\Baby Registry\Cookies\[email protected][1].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby registry@237820103911433[2].txt
   C:\Documents and Settings\Baby Registry\Cookies\[email protected][1].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby registry@lockedonmedia[2].txt
   C:\Documents and Settings\Baby Registry\Cookies\[email protected][2].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby registry@ru4[1].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby [email protected][2].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby registry@1053150414[1].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby [email protected][2].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby_registry@roiservice[1].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby registry@5356653[2].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby [email protected][1].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby [email protected][1].txt
   C:\Documents and Settings\Baby Registry\Cookies\[email protected][1].txt
   C:\Documents and Settings\Baby Registry\Cookies\[email protected][2].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby [email protected][2].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby registry@1070938589[1].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby_registry@thefind[1].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby_registry@liveperson[2].txt
   C:\Documents and Settings\Baby Registry\Cookies\[email protected][2].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby registry@webstats[2].txt
   C:\Documents and Settings\Baby Registry\Cookies\baby registry@top-unisex-shower-gifts[1].txt
   C:\Documents and Settings\Baby Registry\Local Settings\Temp\Cookies\baby registry@eyewonder[1].txt
   C:\Documents and Settings\Baby Registry\Local Settings\Temp\Cookies\baby [email protected][2].txt
   C:\Documents and Settings\Baby Registry\Local Settings\Temp\Cookies\baby [email protected][2].txt
   C:\Documents and Settings\Baby Registry\Local Settings\Temp\Cookies\baby [email protected][1].txt
   C:\Documents and Settings\Baby Registry\Local Settings\Temp\Cookies\baby [email protected][2].txt
   C:\Documents and Settings\Baby Registry\Local Settings\Temp\Cookies\baby [email protected][1].txt
   C:\Documents and Settings\Baby Registry\Local Settings\Temp\Cookies\baby [email protected][1].txt
   C:\Documents and Settings\Baby Registry\Local Settings\Temp\Cookies\baby [email protected][2].txt
   C:\Documents and Settings\Baby Registry\Local Settings\Temp\Cookies\baby registry@adcentriconline[1].txt
   C:\Documents and Settings\Baby Registry\Local Settings\Temp\Cookies\baby registry@intermundomedia[2].txt
   C:\Documents and Settings\Baby Registry\Local Settings\Temp\Cookies\baby registry@specificclick[1].txt
   C:\Documents and Settings\Baby Registry\Local Settings\Temp\Cookies\baby [email protected][2].txt
   C:\Documents and Settings\Baby Registry\Local Settings\Temp\Cookies\baby [email protected][2].txt
   C:\Documents and Settings\Baby Registry\Local Settings\Temp\Cookies\baby [email protected][1].txt
   C:\Documents and Settings\Baby Registry\Local Settings\Temp\Cookies\baby registry@kontera[1].txt
   C:\Documents and Settings\Baby Registry\Local Settings\Temp\Cookies\baby registry@specificmedia[2].txt
   C:\Documents and Settings\Baby Registry\Local Settings\Temp\Cookies\baby [email protected][2].txt
   C:\Documents and Settings\Baby Registry\Local Settings\Temp\Cookies\baby registry@mediaplex[2].txt
   C:\Documents and Settings\Baby Registry\Local Settings\Temp\Cookies\baby registry@socialmedia[1].txt
   C:\Documents and Settings\Baby Registry\Local Settings\Temp\Cookies\baby registry@accounts[1].txt
   C:\Documents and Settings\Baby Registry\Local Settings\Temp\Cookies\baby registry@doubleclick[1].txt
   C:\Documents and Settings\Baby Registry\Local Settings\Temp\Cookies\baby [email protected][2].txt
   C:\Documents and Settings\Baby Registry\Local Settings\Temp\Cookies\baby registry@linkstattrack[1].txt
   C:\Documents and Settings\Baby Registry\Local Settings\Temp\Cookies\baby [email protected][1].txt
   C:\Documents and Settings\Baby Registry\Local Settings\Temp\Cookies\baby registry@247realmedia[1].txt
   C:\Documents and Settings\Baby Registry\Local Settings\Temp\Cookies\baby [email protected][1].txt
   C:\Documents and Settings\Baby Registry\Local Settings\Temp\Cookies\baby registry@interclick[2].txt
   C:\Documents and Settings\Baby Registry\Local Settings\Temp\Cookies\baby [email protected][1].txt
   C:\Documents and Settings\Baby Registry\Local Settings\Temp\Cookies\baby [email protected][1].txt
   C:\Documents and Settings\Baby Registry\Local Settings\Temp\Cookies\baby registry@adinterax[1].txt
   C:\Documents and Settings\Baby Registry\Local Settings\Temp\Cookies\baby registry@atdmt[1].txt
   C:\Documents and Settings\Baby Registry\Local Settings\Temp\Cookies\baby [email protected][1].txt
   C:\Documents and Settings\Baby Registry\Local Settings\Temp\Cookies\baby [email protected][1].txt
   C:\Documents and Settings\Baby Registry\Local Settings\Temp\Cookies\baby [email protected][1].txt
   C:\Documents and Settings\Baby Registry\Local Settings\Temp\Cookies\baby registry@yieldmanager[1].txt
   C:\Documents and Settings\Baby Registry\Local Settings\Temp\Cookies\baby [email protected][1].txt
   C:\Documents and Settings\Baby Registry\Local Settings\Temp\Cookies\baby registry@adbureau[1].txt
   C:\Documents and Settings\Baby Registry\Local Settings\Temp\Cookies\baby registry@statcounter[1].txt
   C:\Documents and Settings\Baby Registry\Local Settings\Temp\Cookies\baby registry@tribalfusion[1].txt
   C:\Documents and Settings\Baby Registry\Local Settings\Temp\Cookies\baby registry@teenidols4you[1].txt
   C:\Documents and Settings\Baby Registry\Local Settings\Temp\Cookies\baby registry@media6degrees[2].txt
   C:\Documents and Settings\Baby Registry\Local Settings\Temp\Cookies\baby registry@insightexpressai[1].txt
   C:\Documents and Settings\Baby Registry\Local Settings\Temp\Cookies\baby registry@chitika[2].txt
   C:\Documents and Settings\Baby Registry\Local Settings\Temp\Cookies\baby registry@ettrack[2].txt
   C:\Documents and Settings\Baby Registry\Local Settings\Temp\Cookies\baby registry@nextag[1].txt
   C:\Documents and Settings\Baby Registry\Local Settings\Temp\Cookies\baby [email protected][1].txt
   C:\Documents and Settings\Baby Registry\Local Settings\Temp\Cookies\baby [email protected][1].txt
   C:\Documents and Settings\Baby Registry\Local Settings\Temp\Cookies\baby [email protected][2].txt
   C:\Documents and Settings\Baby Registry\Local Settings\Temp\Cookies\baby [email protected][1].txt
   C:\Documents and Settings\Baby Registry\Local Settings\Temp\Cookies\baby registry@tacoda[2].txt
   C:\Documents and Settings\Baby Registry\Local Settings\Temp\Cookies\baby [email protected][1].txt
   C:\Documents and Settings\Baby Registry\Local Settings\Temp\Cookies\baby [email protected][1].txt
   C:\Documents and Settings\Baby Registry\Local Settings\Temp\Cookies\baby [email protected][1].txt
   C:\Documents and Settings\Baby Registry\Local Settings\Temp\Cookies\baby [email protected][2].txt
   C:\Documents and Settings\Baby Registry\Local Settings\Temp\Cookies\baby registry@advertising[1].txt
   C:\Documents and Settings\Baby Registry\Local Settings\Temp\Cookies\baby [email protected][1].txt
   C:\Documents and Settings\Baby Registry\Local Settings\Temp\Cookies\baby registry@apmebf[1].txt
   C:\Documents and Settings\Baby Registry\Local Settings\Temp\Cookies\baby [email protected][1].txt
   C:\Documents and Settings\Baby Registry\Local Settings\Temp\Cookies\baby registry@bizrate[1].txt
   C:\Documents and Settings\Baby Registry\Local Settings\Temp\Cookies\baby [email protected][2].txt
   C:\Documents and Settings\Baby Registry\Local Settings\Temp\Cookies\baby registry@collective-media[1].txt
   C:\Documents and Settings\Baby Registry\Local Settings\Temp\Cookies\baby [email protected][1].txt
   C:\Documents and Settings\Baby Registry\Local Settings\Temp\Cookies\baby [email protected][1].txt
   C:\Documents and Settings\Baby Registry\Local Settings\Temp\Cookies\baby [email protected][1].txt
   C:\Documents and Settings\Baby Registry\Local Settings\Temp\Cookies\baby registry@invitemedia[1].txt
   C:\Documents and Settings\Baby Registry\Local Settings\Temp\Cookies\baby registry@lfstmedia[2].txt
   C:\Documents and Settings\Baby Registry\Local Settings\Temp\Cookies\baby registry@pixelstats[1].txt
   C:\Documents and Settings\Baby Registry\Local Settings\Temp\Cookies\baby [email protected][1].txt
   C:\Documents and Settings\Baby Registry\Local Settings\Temp\Cookies\baby [email protected][1].txt
   C:\Documents and Settings\Baby Registry\Local Settings\Temp\Cookies\baby [email protected][1].txt
   C:\Documents and Settings\Baby Registry\Local Settings\Temp\Cookies\baby [email protected][1].txt
   C:\Documents and Settings\Baby Registry\Local Settings\Temp\Cookies\baby [email protected][1].txt
   C:\Documents and Settings\Baby Registry\Local Settings\Temp\Cookies\baby [email protected][1].txt

Rogue.AntivirusSoft
   HKU\S-1-5-21-1447558344-2897440984-3917940743-1006\Software\avsoft

Trojan.Agent/Gen-Cryptor[Egun]
   C:\DELL\E-CENTER\PROJECT.EXE


MBAM log
Malwarebytes' Anti-Malware 1.46
www.malwarebytes.org

Database version: 4139

Windows 5.1.2600 Service Pack 3
Internet Explorer 8.0.6001.18702

5/24/2010 11:43:10 AM
mbam-log-2010-05-24 (11-43-10).txt

Scan type: Quick scan
Objects scanned: 149974
Time elapsed: 21 minute(s), 34 second(s)

Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 3
Registry Values Infected: 0
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 0

Memory Processes Infected:
(No malicious items detected)

Memory Modules Infected:
(No malicious items detected)

Registry Keys Infected:
HKEY_LOCAL_MACHINE\SOFTWARE\avsuite (Rogue.AntivirusSuite) -> No action taken.
HKEY_CURRENT_USER\Software\avsuite (Rogue.AntivirusSuite) -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\avsoft (Trojan.Fraudpack) -> No action taken.

Registry Values Infected:
(No malicious items detected)

Registry Data Items Infected:
(No malicious items detected)

Folders Infected:
(No malicious items detected)

Files Infected:
(No malicious items detected)


Hijackthis LOG

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 11:47:14 AM, on 5/24/2010
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\AVG\AVG9\avgchsvx.exe
C:\Program Files\AVG\AVG9\avgrsx.exe
C:\Program Files\AVG\AVG9\avgcsrvx.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\stsystra.exe
C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe
C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe
C:\WINDOWS\System32\DLA\DLACTRLW.EXE
C:\Program Files\ScanSoft\PaperPort\pptd40nt.exe
C:\Program Files\LogMeIn\x86\LogMeInSystray.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\PROGRA~1\AVG\AVG9\avgtray.exe
C:\Program Files\Brother\ControlCenter3\brccMCtl.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Microsoft ActiveSync\wcescomm.exe
C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
C:\Program Files\LogMeIn\x86\LMIGuardian.exe
C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE
C:\PROGRA~1\MI3AA1~1\rapimgr.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\AVG\AVG9\avgwdsvc.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\Executive Software\Diskeeper\DkService.exe
C:\Program Files\Intel\Intel Matrix Storage Manager\iaantmon.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\LogMeIn\x86\RaMaint.exe
C:\Program Files\AVG\AVG9\avgnsx.exe
C:\Program Files\LogMeIn\x86\LogMeIn.exe
C:\Program Files\LogMeIn\x86\LMIGuardian.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\AVG\AVG9\avgemc.exe
C:\Program Files\AVG\AVG9\avgcsrvx.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\MDM.EXE
C:\Program Files\Trend Micro\HijackThis\sniper.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com/ig/dell?hl=en&client=dell-usuk&channel=us
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.yahoo.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Search,Default_Page_URL = www.google.com/ig/dell?hl=en&client=dell-usuk&channel=us
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = http=127.0.0.1:5555
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG9\avgssie.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O2 - BHO: DriveLetterAccess - {5CA3D70E-1895-11CF-8E15-001234567890} - C:\WINDOWS\System32\DLA\DLASHX_W.DLL
O2 - BHO: Browser Address Error Redirector - {CA6319C0-31B7-401E-A518-A07C3DB8F777} - C:\Program Files\BAE\BAE.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O3 - Toolbar: (no name) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - (no file)
O4 - HKLM\..\Run: [SigmatelSysTrayApp] stsystra.exe
O4 - HKLM\..\Run: [IAAnotif] C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe
O4 - HKLM\..\Run: [ATIPTA] "C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe"
O4 - HKLM\..\Run: [ISUSPM Startup] "C:\Program Files\Common Files\InstallShield\UpdateService\isuspm.exe" -startup
O4 - HKLM\..\Run: [ISUSScheduler] "C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe" -start
O4 - HKLM\..\Run: [DLA] C:\WINDOWS\System32\DLA\DLACTRLW.EXE
O4 - HKLM\..\Run: [IMJPMIG8.1] rem "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32
O4 - HKLM\..\Run: [MSPY2002] C:\WINDOWS\system32\IME\PINTLGNT\ImScInst.exe /SYNC
O4 - HKLM\..\Run: [PHIME2002ASync] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC
O4 - HKLM\..\Run: [PHIME2002A] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName
O4 - HKLM\..\Run: [SSBkgdUpdate] "C:\Program Files\Common Files\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe" -Embedding -boot
O4 - HKLM\..\Run: [PaperPort PTD] "C:\Program Files\ScanSoft\PaperPort\pptd40nt.exe"
O4 - HKLM\..\Run: [IndexSearch] "C:\Program Files\ScanSoft\PaperPort\IndexSearch.exe"
O4 - HKLM\..\Run: [PPort11reminder] "C:\Program Files\ScanSoft\PaperPort\Ereg\Ereg.exe" -r "C:\Documents and Settings\All Users\Application Data\ScanSoft\PaperPort\11\Config\Ereg\Ereg.ini
O4 - HKLM\..\Run: [BrMfcWnd] C:\Program Files\Brother\Brmfcmon\BrMfcWnd.exe /AUTORUN
O4 - HKLM\..\Run: [ControlCenter3] C:\Program Files\Brother\ControlCenter3\brctrcen.exe /autorun
O4 - HKLM\..\Run: [AppleSyncNotifier] C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleSyncNotifier.exe
O4 - HKLM\..\Run: [LogMeIn GUI] "C:\Program Files\LogMeIn\x86\LogMeInSystray.exe"
O4 - HKLM\..\Run: [DiskeeperSystray] "C:\Program Files\Executive Software\Diskeeper\DkIcon.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [AVG9_TRAY] C:\PROGRA~1\AVG\AVG9\avgtray.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [H/PC Connection Agent] "C:\Program Files\Microsoft ActiveSync\wcescomm.exe"
O4 - HKCU\..\Run: [updateMgr] "C:\Program Files\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.exe" AcRdB7_1_0 -reboot 1
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKCU\..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
O4 - Startup: OneNote 2007 Screen Clipper and Launcher.lnk = C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~4\Office12\EXCEL.EXE/3000
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~4\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~4\Office12\ONBttnIE.dll
O9 - Extra button: Create Mobile Favorite - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MI3AA1~1\INetRepl.dll
O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MI3AA1~1\INetRepl.dll
O9 - Extra 'Tools' menuitem: Create Mobile Favorite... - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MI3AA1~1\INetRepl.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~4\Office12\REFIEBAR.DLL
O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\system32\Shdocvw.dll
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search && Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1156972999203
O16 - DPF: {FD0B6769-6490-4A91-AA0A-B5AE0DC75AC9} (Performance Viewer Activex Control) - https://secure.logmein.com/activex/ractrl.cab?lmi=100
O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG9\avgpp.dll
O20 - Winlogon Notify: !SASWinLogon - C:\Program Files\SUPERAntiSpyware\SASWINLO.dll
O20 - Winlogon Notify: avgrsstarter - C:\WINDOWS\SYSTEM32\avgrsstx.dll
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: AVG Free E-mail Scanner (avg9emc) - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG9\avgemc.exe
O23 - Service: AVG Free WatchDog (avg9wd) - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG9\avgwdsvc.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Diskeeper - Executive Software International, Inc. - C:\Program Files\Executive Software\Diskeeper\DkService.exe
O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMon) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\iaantmon.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: LogMeIn Maintenance Service (LMIMaint) - LogMeIn, Inc. - C:\Program Files\LogMeIn\x86\RaMaint.exe
O23 - Service: LogMeIn - LogMeIn, Inc. - C:\Program Files\LogMeIn\x86\LogMeIn.exe
O23 - Service: Intel NCS NetService (NetSvc) - Intel(R) Corporation - C:\Program Files\Intel\PROSetWired\NCS\Sync\NetSvc.exe

--
End of file - 10624 bytes


Thank you
Logged

Dr Jay

  • Malware Removal Specialist


    • Specialist
  • Moderator emeritus
    • Thanked: 119
  • Experience: Guru
  • OS: Windows 10
Re: Application cannot be executed. The file *** is infected.
« Reply #1 on: May 25, 2010, 01:08:56 PM »
Hello, and welcome to Computer Hope.

Please note the following information about the malware forum:
  • Only the Malware Specialist Team is allowed to give advice on removing malware from your computer.
  • From this point on, please do not make any more changes to your computer; such as install/uninstall programs, use special fix tools, delete files, edit the registry, etc. - unless advised by the staff I noted above.
  • Please do not attach logs or post them in Quote/Code boxes unless requested.
  • Please do not ask for help elsewhere (in this site or other sites). Doing so can result in system changes, which may not show up in the logs you post.
  • If you have already asked for help somewhere, please post the link to the topic you were helped.
  • We try our best to reply quickly, but for any reason we do not reply in two days, reply to this topic with the word BUMP
  • Lastly, keep in mind that we are volunteers, so you do not have to pay for malware removal. Persist in this topic until its close, and your computer is declared clean.

Please visit this webpage for a tutorial on downloading and running ComboFix:

http://www.bleepingcomputer.com/combofix/how-to-use-combofix

See the area: Using ComboFix, and when done, post the log back here.
Logged
~Dr Jay
Pages: [1]   Go Up
« previous next »