New, Lost and Need Help

Discussion in 'Malware Help (A Specialist Will Reply)' started by Dominica, Dec 8, 2005.

  1. Dominica

    Dominica Private E-2

    Hello

    Please excuse my thread title if it's inappropriate. I've never posted at this forum before, but I've used it many, many times. It seems like whenever I've been in a bind with a virus or spyware, I Google it and Major Geeks is always there.

    This is my problem. Whenever I click on something, it clicks twice or three times. If I click the back button I go back 2 pages. When I use Spybot SD, when I click on the "Check for Problems" button, it immediately turns to a stop button so I end up starting and stopping the scan with one click of the mouse. I read the Read and Run Me First. I downloaded any programs I didn't already have. I spent the last 4 hours running scan, after scan, after scan. I just finished the Ewido scan and I'm still having the same issue. I didn't think to save any reports until I got to Ewido. I figured that one of the programs that I ran would fix the problem for good. Here's the Ewido report.

    ---------------------------------------------------------
    ewido security suite - Scan report
    ---------------------------------------------------------

    + Created on: 8:00:16 AM, 12/8/2005
    + Report-Checksum: 59310EE1

    + Scan result:

    HKLM\SOFTWARE\Classes\CLSID\{2B96D5CC-C5B5-49A5-A69D-CC0A30F9028C} -> Spyware.MiniBug : Cleaned with backup
    HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\ins -> Spyware.WebRebates : Cleaned with backup
    HKU\S-1-5-21-1694720459-1417066420-3376078148-1005\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{016235BE-59D4-4CEB-ADD5-E2378282A1D9} -> Spyware.AproposMedia : Cleaned with backup
    HKU\S-1-5-21-1694720459-1417066420-3376078148-1005\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{7C559105-9ECF-42B8-B3F7-832E75EDD959} -> Spyware.ISTBar : Cleaned with backup
    HKU\S-1-5-21-1694720459-1417066420-3376078148-1005\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{C886256C-7A63-4213-AD2F-02AD3735DF06} -> Spyware.HotBar : Cleaned with backup
    :mozilla.8:C:\Documents and Settings\system user\Application Data\Mozilla\Firefox\Profiles\263ttcbq.default\cookies.txt -> Spyware.Cookie.Tribalfusion : Cleaned with backup
    :mozilla.9:C:\Documents and Settings\system user\Application Data\Mozilla\Firefox\Profiles\263ttcbq.default\cookies.txt -> Spyware.Cookie.Doubleclick : Cleaned with backup
    :mozilla.10:C:\Documents and Settings\system user\Application Data\Mozilla\Firefox\Profiles\263ttcbq.default\cookies.txt -> Spyware.Cookie.Tribalfusion : Cleaned with backup
    :mozilla.11:C:\Documents and Settings\system user\Application Data\Mozilla\Firefox\Profiles\263ttcbq.default\cookies.txt -> Spyware.Cookie.Tribalfusion : Cleaned with backup
    :mozilla.12:C:\Documents and Settings\system user\Application Data\Mozilla\Firefox\Profiles\263ttcbq.default\cookies.txt -> Spyware.Cookie.Tribalfusion : Cleaned with backup
    :mozilla.13:C:\Documents and Settings\system user\Application Data\Mozilla\Firefox\Profiles\263ttcbq.default\cookies.txt -> Spyware.Cookie.Tribalfusion : Cleaned with backup
    :mozilla.14:C:\Documents and Settings\system user\Application Data\Mozilla\Firefox\Profiles\263ttcbq.default\cookies.txt -> Spyware.Cookie.Tribalfusion : Cleaned with backup
    :mozilla.15:C:\Documents and Settings\system user\Application Data\Mozilla\Firefox\Profiles\263ttcbq.default\cookies.txt -> Spyware.Cookie.Tribalfusion : Cleaned with backup
    :mozilla.16:C:\Documents and Settings\system user\Application Data\Mozilla\Firefox\Profiles\263ttcbq.default\cookies.txt -> Spyware.Cookie.Tribalfusion : Cleaned with backup
    :mozilla.17:C:\Documents and Settings\system user\Application Data\Mozilla\Firefox\Profiles\263ttcbq.default\cookies.txt -> Spyware.Cookie.Tribalfusion : Cleaned with backup
    :mozilla.27:C:\Documents and Settings\system user\Application Data\Mozilla\Firefox\Profiles\263ttcbq.default\cookies.txt -> Spyware.Cookie.Atdmt : Cleaned with backup
    :mozilla.38:C:\Documents and Settings\system user\Application Data\Mozilla\Firefox\Profiles\263ttcbq.default\cookies.txt -> Spyware.Cookie.Advertising : Cleaned with backup
    :mozilla.39:C:\Documents and Settings\system user\Application Data\Mozilla\Firefox\Profiles\263ttcbq.default\cookies.txt -> Spyware.Cookie.Advertising : Cleaned with backup
    :mozilla.40:C:\Documents and Settings\system user\Application Data\Mozilla\Firefox\Profiles\263ttcbq.default\cookies.txt -> Spyware.Cookie.Advertising : Cleaned with backup
    :mozilla.42:C:\Documents and Settings\system user\Application Data\Mozilla\Firefox\Profiles\263ttcbq.default\cookies.txt -> Spyware.Cookie.2o7 : Cleaned with backup
    :mozilla.43:C:\Documents and Settings\system user\Application Data\Mozilla\Firefox\Profiles\263ttcbq.default\cookies.txt -> Spyware.Cookie.2o7 : Cleaned with backup
    :mozilla.44:C:\Documents and Settings\system user\Application Data\Mozilla\Firefox\Profiles\263ttcbq.default\cookies.txt -> Spyware.Cookie.2o7 : Cleaned with backup
    :mozilla.45:C:\Documents and Settings\system user\Application Data\Mozilla\Firefox\Profiles\263ttcbq.default\cookies.txt -> Spyware.Cookie.2o7 : Cleaned with backup
    :mozilla.46:C:\Documents and Settings\system user\Application Data\Mozilla\Firefox\Profiles\263ttcbq.default\cookies.txt -> Spyware.Cookie.2o7 : Cleaned with backup
    :mozilla.47:C:\Documents and Settings\system user\Application Data\Mozilla\Firefox\Profiles\263ttcbq.default\cookies.txt -> Spyware.Cookie.Pointroll : Cleaned with backup
    :mozilla.48:C:\Documents and Settings\system user\Application Data\Mozilla\Firefox\Profiles\263ttcbq.default\cookies.txt -> Spyware.Cookie.Pointroll : Cleaned with backup
    :mozilla.49:C:\Documents and Settings\system user\Application Data\Mozilla\Firefox\Profiles\263ttcbq.default\cookies.txt -> Spyware.Cookie.Pointroll : Cleaned with backup
    :mozilla.50:C:\Documents and Settings\system user\Application Data\Mozilla\Firefox\Profiles\263ttcbq.default\cookies.txt -> Spyware.Cookie.Pointroll : Cleaned with backup
    :mozilla.51:C:\Documents and Settings\system user\Application Data\Mozilla\Firefox\Profiles\263ttcbq.default\cookies.txt -> Spyware.Cookie.Pointroll : Cleaned with backup
    :mozilla.52:C:\Documents and Settings\system user\Application Data\Mozilla\Firefox\Profiles\263ttcbq.default\cookies.txt -> Spyware.Cookie.Adserver : Cleaned with backup
    :mozilla.53:C:\Documents and Settings\system user\Application Data\Mozilla\Firefox\Profiles\263ttcbq.default\cookies.txt -> Spyware.Cookie.Adserver : Cleaned with backup
    :mozilla.54:C:\Documents and Settings\system user\Application Data\Mozilla\Firefox\Profiles\263ttcbq.default\cookies.txt -> Spyware.Cookie.Mediaplex : Cleaned with backup
    :mozilla.57:C:\Documents and Settings\system user\Application Data\Mozilla\Firefox\Profiles\263ttcbq.default\cookies.txt -> Spyware.Cookie.Hitbox : Cleaned with backup
    :mozilla.58:C:\Documents and Settings\system user\Application Data\Mozilla\Firefox\Profiles\263ttcbq.default\cookies.txt -> Spyware.Cookie.Hitbox : Cleaned with backup
    :mozilla.59:C:\Documents and Settings\system user\Application Data\Mozilla\Firefox\Profiles\263ttcbq.default\cookies.txt -> Spyware.Cookie.Hitbox : Cleaned with backup
    :mozilla.60:C:\Documents and Settings\system user\Application Data\Mozilla\Firefox\Profiles\263ttcbq.default\cookies.txt -> Spyware.Cookie.Hitbox : Cleaned with backup
    :mozilla.91:C:\Documents and Settings\system user\Application Data\Mozilla\Firefox\Profiles\263ttcbq.default\cookies.txt -> Spyware.Cookie.Coremetrics : Cleaned with backup
    C:\Documents and Settings\system user\Cookies\system user@ads.pointroll[2].txt -> Spyware.Cookie.Pointroll : Cleaned with backup
    C:\Documents and Settings\system user\Cookies\system user@atdmt[1].txt -> Spyware.Cookie.Atdmt : Cleaned with backup
    C:\Documents and Settings\system user\Cookies\system user@doubleclick[1].txt -> Spyware.Cookie.Doubleclick : Cleaned with backup
    C:\Documents and Settings\system user\Cookies\system user@tribalfusion[1].txt -> Spyware.Cookie.Tribalfusion : Cleaned with backup
    C:\Documents and Settings\system user\Local Settings\Temporary Internet Files\Content.IE5\RS23M5X7\mm[2].js -> Spyware.Chitika : Cleaned with backup
    C:\WINNT\Downloaded Program Files\CONFLICT.1\popcaploader.dll -> Not-A-Virus.PornWare.PopCap.b : Cleaned with backup


    ::Report End

    I don't know if it mattes, but the Advertising, Hitbox, Double Click and Fast Click are ones I've been getting with Spybot SD for about a week now. I can clean them with Spybot, but then if I scan a half hour later they are back again.

    If you can help, it would be greatly apprecitated, because I'm going nuts. I'm the only one in my family with ANY computer knowledge (that's not all that much, basically what I've learned here) and when the computer isn't working they all turn to me to fix it.

    Thanks,
    Dominica
     
    Dominica, Dec 8, 2005
    #1
  2. Shadow_Puter_Dude

    Shadow_Puter_Dude MG Authorized Malware Fighter

    Do not copy and paste logs into your posts; always include logs as attachments.

    Please post a HijackThis log as an ATTACHMENT if you have completed all the steps in teh READ ME.
     
    Shadow_Puter_Dude, Dec 8, 2005
    #2

MajorGeeks.Com Menu

Downloads All In One Tweaks \ Android \ Anti-Malware \ Anti-Virus \ Appearance \ Backup \ Browsers \ CD\DVD\Blu-Ray \ Covert Ops \ Drive Utilities \ Drivers \ Graphics \ Internet Tools \ Multimedia \ Networking \ Office Tools \ PC Games \ System Tools \ Mac/Apple/Ipad Downloads

Other News: Top Downloads \ News (Tech) \ Off Base (Other Websites News) \ Way Off Base (Offbeat Stories and Pics)

Social: Facebook \ YouTube \ Twitter \ Tumblr \ Pintrest \ RSS Feeds