Question by RuneKey: CiD Ads and Possible Troujans. Im almost there! Just help me a little bit more!?
Hi guys. By now you are probibly annoyed by my questions. Please bare with me. I have JUST uninstalled mywebsearch toolbar. I have norton security on, comcast desktop doctor, google pop-up blocker and IE pop-up blocker on.

My not in use programs are Hijackthis, SUPER anti spyware, and NO-LOP.

My problem is those flipin’ CiD ads that could be possible LOP trojans. I got these annoying pop-up ads from when i downloaded MSN PLUS (a costly mistake) and now these CiD ads are here. I have gone through the Ad/Remove programs to remove the MSN PLUS Sponsors and it worked, but the ads are still here. I got rid of “Mysearchenige” and the ads are still here.

I am now desprate and am loosing my mind. I already tried a norton and SUPERantispyware full systum scan and got nothing but cookies (got rid of ‘em).

I NEED HELP!!!!!!!!!!!!!!!!!!!!!!!!!

Here is my HJT (hijackthis) current log. I did it with “Show hidden files/folders ON” and on regular (not safe) mode under the profile with the infection.

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 2:59:25 PM, on 8/13/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Dell Photo AIO Printer 922\dlbtbmgr.exe
C:\Program Files\Common Files\Symantec Shared\ccApp.exe
C:\Program Files\Roxio\Easy CD Creator 5\DirectCD\DirectCD.exe
C:\Program Files\Adobe\Photoshop Album Starter Edition.2\Apps\apdproxy.exe
C:\Program Files\Comcast\Desktop Doctor\bin\sprtcmd.exe
C:\Program Files\Dell Photo AIO Printer 922\dlbtbmon.exe
C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Google\Google Updater\GoogleUpdater.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
C:\WINDOWS\System32\nvsvc32.exe
C:\Program Files\Comcast\Desktop Doctor\bin\sprtsvc.exe
c:\Program Files\Microsoft SQL Server\Shared\sqlwriter.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Common Files\Symantec Shared\AppCore\AppSvc32.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\WINDOWS\system32\wuauclt.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R0 – HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.comcast.net/
R1 – HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Windows Internet Explorer provided by Comcast
R1 – HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
O2 – BHO: Adobe PDF Reader Link Helper – {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} – C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 – BHO: (no name) – {1E8A6170-7264-4D0F-BEAE-D42A53123C75} – C:\Program Files\Common Files\Symantec Shared\coShared\Browser.0\NppBho.dll
O2 – BHO: SSVHelper Class – {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} – C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O2 – BHO: Google Toolbar Helper – {AA58ED58-01DD-4d91-8333-CF10577473F7} – c:\program files\google\googletoolbar1.dll
O2 – BHO: Google Toolbar Notifier BHO – {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} – C:\Program Files\Google\GoogleToolbarNotifier.0.1225.9868\swg.dll
O2 – BHO: Windows Live Toolbar Helper – {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} – C:\Program Files\Windows Live Toolbar\msntb.dll (file missing)
O3 – Toolbar: Show Norton Toolbar – {90222687-F593-4738-B738-FBEE9C7B26DF} – C:\Program Files\Common Files\Symantec Shared\coShared\Browser.0\UIBHO.dll
O3 – Toolbar: Yahoo! Toolbar – {EF99BD32-C1FB-11D2-892F-0090271D4F88} – C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O3 – Toolbar: &Google – {2318C2B1-4965-11d4-9B18-009027A5CD4F} – c:\program files\google\googletoolbar1.dll
O3 – Toolbar: Veoh Browser Plug-in – {D0943516-5076-4020-A3B5-AEFAF26AB263} – C:\Documents and Settings\Carol\Desktop\Josh\Veoh\Plugins\reg\VeohToolbar.dll (file missing)
O3 – Toolbar: Windows Live Toolbar – {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} – C:\Program Files\Windows Live Toolbar\msntb.dll (file missing)
O4 – HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\System32\NvCpl.dll,NvStartup
O4 – HKLM\..\Run: [Dell Photo AIO Printer 922] “C:\Program Files\Dell Photo AIO Printer 922\dlbtbmgr.exe”
O4 – HKLM\..\Run: [ccApp] “C:\Program Files\Common Files\Symantec Shared\ccApp.exe”
O4 – HKLM\..\Run: [osCheck] “C:\Program Files\Norton Internet Security\osCheck.exe”
O4 – HKLM\..\Run: [AdaptecDirectCD] “C:\Program Files\Roxio\Easy CD Creator 5\DirectCD\DirectCD.exe”
O4 – HKLM\..\Run: [Adobe Photo Downloader] “C:\Program Files\Adobe\Photoshop Album Starter Edition.2\Apps\apdproxy.exe”
O4 – HKLM\..\Run: [ddoctorv2] “C:\Program Files\Comcast\Desktop Doctor\bin\sprtcmd.exe” /P ddoctorv2
O4 – HKLM\..\Run: [Symantec PIF AlertEng] “C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe” /a /m “C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\AlertEng.dll”
O4 – HKLM\..\Run: [Adobe Reader Speed Launcher] “C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe”
O4 – HKLM\..\Run: [AppleSyncNotifier] C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleSyncNotifier.exe
O4 – HKLM\..\Run: [QuickTime Task] “C:\Program Files\QuickTime\QTTask.exe” -atboottime
O4 – HKLM\..\Run: [SunJavaUpdateSched] “C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe”
O4 – HKLM\..\Run: [iTunesHelper] “C:\Program Files\iTunes\iTunesHelper.exe”
O4 – HKLM\..\Run: [eggs joy math type] C:\Documents and Settings\All Users\Application Data\Bind army eggs joy\Ping does.exe
O4 – HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 – HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 – HKCU\..\Run: [fordsupport] C:\DOCUME~1\Carol\APPLIC~1\MATHBI~1\OPEN DRAW.exe
O4 – HKCU\..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
O4 – Global Startup: Event Reminder.lnk = ?
O4 – Global Startup: Google Updater.lnk = C:\Program Files\Google\Google Updater\GoogleUpdater.exe
O8 – Extra context menu item: &Search – http://edits.mywebsearch.com/toolbaredits/menusearch.jhtml?p=ZUzeb004YYUS_ZZzer000
O8 – Extra context menu item: &Windows Live Search – res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm
O8 – Extra context menu item: E&xport to Microsoft Excel – res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 – Extra button: (no name) – {08B0E5C0-4FCB-11CF-AAA5-00401C608501} – C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O9 – Extra ‘Tools’ menuitem: Sun Java Console – {08B0E5C0-4FCB-11CF-AAA5-00401C608501} – C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O9 – Extra button: Research – {92780B25-18CC-41C8-B9BE-3C9C571A8263} – C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 – Extra button: (no name) – {e2e2dd38-d088-4134-82b7-f2ba38496583} – C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 – Extra ‘Tools’ menuitem: @xpsp3res.dll,-20001 – {e2e2dd38-d088-4134-82b7-f2ba38496583} – C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 – Extra button: Messenger – {FB5F1910-F110-11d2-BB9E-00C04F795683} – C:\Program Files\Messenger\msmsgs.exe
O9 – Extra ‘Tools’ menuitem: Windows Messenger – {FB5F1910-F110-11d2-BB9E-00C04F795683} – C:\Program Files\Messenger\msmsgs.exe
O16 – DPF: {0CCA191D-13A6-4E29-B746-314DEE697D83} (Facebook Photo Uploader 5) – http://upload.facebook.com/controls/FacebookPhotoUploader5.cab
O16 – DPF: {1D4DB7D2-6EC9-47A3-BD87-1E41684E07BB} – http://ak.exe.imgfarm.com/images/nocache/funwebproducts/ei/MyFunCardsFWBInitialSetup1.0.0.15-3.cab
O16 – DPF: {2DA3C4AB-E6B6-47A6-B0F3-1BD81524B51B} (ActiveWorldsDownload Control) – http://www.activeworlds.com/products/ActiveWorldsDownload.cab
O16 – DPF: {6A344D34-5231-452A-8A57-D064AC9B7862} (Symantec Download Manager) – https://webdl.symantec.com/activex/symdlmgr.cab
O16 – DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) – http://www.update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1189905003718
O16 – DPF: {A8683C98-5341-421B-B23C-8514C05354F1} (FujifilmUploader Class) – http://www.samsphotoclub.com/upload/FujifilmUploadClient.cab
O16 – DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) – https://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab
O20 – Winlogon Notify: !SASWinLogon – C:\Program Files\SUPERAntiSpyware\SASWINLO.dll
O20 – Winlogon Notify: GoToAssist – C:\Program Files\Citrix\GoToAssist0\G2AWinLogon.dll
O23 – Service: Apple Mobile Device – Apple Inc. – C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 – Service: Automatic LiveUpdate Scheduler – Symantec Corporation – C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
O23 – Service: Bonjour Service – Apple Inc. – C:\Program Files\Bonjour\mDNSResponder.exe
O23 – Service: Symantec Event Manager (ccEvtMgr) – Symantec Corporation – C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 – Service: Symantec Settings Manager (ccSetMgr) – Symantec Corporation – C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 – Service: Symantec Lic NetConnect service (CLTNetCnService) – Symantec Corporation – C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 – Service: COM Host (comHost) – Symantec Corporation – C:\Program Files\Common Files\Symantec Shared\VAScanner\comHost.exe
O23 – Service: dlbt_device – Dell – C:\WINDOWS\System32\dlbtcoms.exe
O23 – Service: GoToAssist – Citrix Online, a division of Citrix Systems, Inc. – C:\Program Files\Citrix\GoToAssist0\g2aservice.exe
O23 – Service: Google Updater Service (gusvc) – Google – C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 – Service: iPod Service – Apple Inc. – C:\Program Files\iPod\bin\iPodService.exe
O23 – Service: Symantec IS Password Validation (ISPwdSvc) – Symantec Corporation – C:\Program Files\Norton Internet Security\isPwdSvc.exe
O23 – Service: LiveUpdate – Symantec Corporation – C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
O23 – Service: LiveUpdate Notice Service Ex (LiveUpdate Notice Ex) – Symantec Corporation – C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 – Service: LiveUpdate Notice Service – Symantec Corporation – C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe
O23 – Service: NVIDIA Driver Helper Service (NVSvc) – NVIDIA Corporation – C:\WINDOWS\System32\nvsvc32.exe
O23 – Service: SupportSoft Sprocket Service (ddoctorv2) (sprtsvc_ddoctorv2) – SupportSoft, Inc. – C:\Program Files\Comcast\Desktop Doctor\bin\sprtsvc.exe
O23 – Service: Symantec Core LC – Unknown owner – C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe
O23 – Service: Symantec AppCore Service (SymAppCore) – Symantec Corporation – C:\Program Files\Common Files\Symantec Shared\AppCore\AppSvc32.exe

–
End of file – 10603 bytes

____________________________________________

If you can tell me what is wrong, i will be forever in your debt. PLEASE SAVE ME!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!

Best answer:

Answer by DesertTiger
Get CCleaner and clean your registry you have some remains of that tool bar in your registry. If you think its Trojans get BO clean from the Comodo website that should get rid of em.

What do you think? Answer below!

Question by hackoner25: is there any way i could record key strikes with having to buy it and that my nortom antivirus will not block?
please do not give me a virus

Best answer:

Answer by Damo
If your talking about recoding what keys are pushed on the keyboard there is programs out there called Key loggers, but they are a Virus, when using them

Add your own answer in the comments!

Question by Flygirl: What’s the best antivirus software out there?
I already have Norton and my subscription is up.

Best answer:

Answer by Rommel
Norton stinks to get rid of most viruses, worms, adware, etc.

Step 1.
Download Avast! Home Edition as this is THE best free antivirus protection out there. Only drawback is you have to register within 60 days for free and every year after. But hey! You get it forever!
Anyways you also have to manual scan, but it isn’t a resourse hog and it scans everything your computer writes and reads as well as internet sites and emails. I love it. As well they update it about every day!

It found several viruses after I deleted Norton 360 and has found several since.
Download here: http://www.download.com/Avast-Home-Editi…

Register here:

http://www.avast.com/eng/home-registrati…

Step 2.
As well try downloading malwarebytes anti-malware, updating, and scanning.
MBAM redirects you here for download. (MBAM) Go here to download: http://www.download.com/Malwarebytes-Ant…

Step 3.
Proceed by downloading “SuperAntiSpyware Free” from the link below (As the title suggests, this is also free), follow any
instructions required to install it, update the virus definitions, then run a full scan, also clean any infections found
after the scan has completed.

http://www.superantispyware.com/

Step 4.
You may also consider to be sure that all Malware has been removed from your system download “Kaspersky’s Virus Removal Tool” (Free) from the link
below and run a full scan, this will already be updated to the day you download and install it, after the scan clean any
infections found. download here

http://devbuilds.kaspersky-labs.com/devb…

Step 5.
Consider doing a scan of your computer with MBAM and superantispyware every 2-4 weeks with a maximum of a system scan every month. (I recommend 2-3 weeks.)

P.S. make sure to unistall all other antivirus products before installing avast and never have more than one installed at a time.
Hope this helps and enjoy a better computer!

What do you think? Answer below!

Question by Shaheer Mahmood: Is there any antivirus that solves viruses in the computer but doesn’t bring viruses of its own?
I got Bitdefender 2010 and it brought a system virus leading to blue screen virus and a lot of trojans into my computer. Now i bought norton internet security 2011 and it also brought a idsvia64.sys virus into my computer. So is there any antivirus that doesn’t bring viruses into your computer aand solves computer problems.
Honestly people, I bought them both, and i take great care of my computer, still after these things happened im not willing to take risks.
Honestly people, I bought them both, and i take great care of my computer, still after these things happened im not willing to take risks.

Best answer:

Answer by flyingbanana127
if u willing to pay for antiviruses go for kaspersky or eset nod32 not others.
for free ones go for avast or avira or just use both avast and avira.

Know better? Leave your own answer in the comments!

Question by DAlbert K: What is the best Antivirus software out there?
What is the name of the Virus out there now?

Best answer:

Answer by joe.attaboy
Linux. Any version or distribution.

What do you think? Answer below!

Question by simpleonline12: Best Virus Protection Software out There?
What is the top or best software to get for Antivirus and also what is the top antispyware software. I don’t want that free junk, I am ready to spend top dollar on something but I need something that is extremely effective. Any ideas? thankx

Best answer:

Answer by Xechorizo
I love ZoneAlarm Internet Security Suite. I’ve never ONCE seen any effects from an infection, and it always was very informative on what and what to do about any viruses, spyware, or firewall issues.

Know better? Leave your own answer in the comments!

Question by that coast money: what are the best antivirus softwere out there right now?
My computer’s really slow and it says that my protection virus is not turn on. i am planning to get new anti virus softwere.

thank you!

Best answer:

Answer by kool43bz
u can always google the info

Give your answer to this question below!

Question by Evan: I need your opinion on which is the best antivirus there is out there?
Im mostly debating over kaspersky and norton, but if there are better ones out there, please tell me about it. Thanks!

Best answer:

Answer by Fordry
according to this study, the best performing one was avast pro. Norton is also very good.

http://arstechnica.com/security/news/2009/09/av-comparatives-picks-seven-anti-malware-winners.ars

Give your answer to this question below!

Question by anndra medina: what is the best antivirus protection software out there?
I’m using avg right now, but it sucks. I don’t care now if you have to pay for it. Anything good?

Best answer:

Answer by Frank N. Stein
That is a matter of personal opinion. You’re going to get so many different answers on this. I use Avast home edition and it’s great for me, because I don’t download torrents and do anything dumb on the internet. No one anti-virus program will protect you 100%, so it’s more up to you to be careful.

Give your answer to this question below!

Question by chessmaster1061: is there any freeware programs to delete hidden popups?
when i close down windows or log off a box appears with nothing inside it but on the top of the box it says exactly (UIhiddenpopup) iv’e tried spybot/ adaware/ spyware vanisher/ windows defender/ my antivirus program even tried different popup killers but does not get rid of it. and not only that it loads in the backround you can’t see anythink. i would be gratfull if any one can help

Best answer:

Answer by Brian A
Download hijackthis and run it, and post the log in your question so we can see whats going on.

Add your own answer in the comments!