We’d like to remind Forumites to please avoid political debate on the Forum.

This is to keep it a safe and useful space for MoneySaving discussions. Threads that are – or become – political in nature may be removed in line with the Forum’s rules. Thank you for your understanding.

📨 Have you signed up to the Forum's new Email Digest yet? Get a selection of trending threads sent straight to your inbox daily, weekly or monthly!
The Forum now has a brand new text editor, adding a bunch of handy features to use when creating posts. Read more in our how-to guide

Can one of you clever people have a look at this log

Fullup
Fullup Posts: 48 Forumite
in Techie Stuff
I'd be extreamly grateful if one of you talented people could have a look at my HijackThis log. Our PC seems to be running slower ~ the hdd light is on quite a lot even when we aren't doing anything.

We are running XP pro service pack 3 with 1.25gb ram

We have run Malwearbytes and SuperAntiSpywear - these didn't find much.

Here is our log ~ and thanks you to anyone who takes a look for us.

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 20:11:23, on 18/03/2009
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16791)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Windows Defender\MsMpEng.exe
C:\WINDOWS\System32\svchost.exe
D:\Lavasoft\Ad-Aware\aawservice.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\WINDOWS\system32\BrmfBAgS.exe
C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
D:\PROGRA~1\TRENDM~1\INTERN~1\PcCtlCom.exe
C:\Program Files\Google\Update\GoogleUpdate.exe
C:\WINDOWS\System32\svchost.exe
D:\PROGRA~1\TRENDM~1\INTERN~1\Tmntsrv.exe
D:\PROGRA~1\TRENDM~1\INTERN~1\TmPfw.exe
C:\WINDOWS\system32\BRMFRSMG.EXE
C:\Program Files\Common Files\Acronis\Fomatik\TrueImageTryStartService.exe
D:\Blue Coat K9 Web Protection\k9filter.exe
C:\WINDOWS\system32\SearchIndexer.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\RunDll32.exe
C:\WINDOWS\system32\pctspk.exe
C:\Program Files\Windows Defender\MSASCui.exe
D:\Program Files\Trend Micro\Internet Security 2007\pccguide.exe
C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\fpdisp5a.exe
C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\fppdis1.exe
D:\Adobe\Acrobat 7.0\Distillr\Acrotray.exe
D:\PFU\ScanSnap\PfuSsSct.exe
D:\iTunes\iTunesHelper.exe
D:\Acronis\TrueImageHome\TrueImageMonitor.exe
D:\Acronis\TrueImageHome\TimounterMonitor.exe
C:\Program Files\Common Files\Acronis\Schedule2\schedhlp.exe
C:\Program Files\ScanSoft\PaperPort\pptd40nt.exe
C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
D:\Program Files\Trend Micro\Internet Security 2007\TMAS_OE\TMAS_OEMon.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
D:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
C:\Program Files\iPod\bin\iPodService.exe
D:\Intuit\QuickBooks Premier\Components\QBAgent\qbdagent2002.exe
D:\PFU\ScanSnap\Driver\PfuSsMon.exe
D:\PROGRA~1\TRENDM~1\INTERN~1\PcScnSrv.exe
D:\PROGRA~1\TRENDM~1\INTERN~1\tmproxy.exe
D:\Adobe\Acrobat 7.0\Acrobat\Acrobat.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\WINDOWS\system32\SearchProtocolHost.exe
d:\Program Files\Trend Micro\HijackThis\HijackThis.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.co.uk/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
O2 - BHO: Adobe PDF Reader Link Helper - !!06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - D:\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: Spybot-S&D IE Protection - !!53707962-6F74-2D53-2644-206D7942484F} - D:\SPYBOT~1\SPYBOT~1\SDHelper.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll
O2 - BHO: Adobe PDF Conversion Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} - D:\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.0.926.3450\swg.dll
O2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_219B3E1547538286.dll
O2 - BHO: TrendProtect - {E3578B37-6346-4EC1-A82B-38273A100DCF} - C:\Program Files\Trend Micro\TrendProtect\MSIE\wrs.dll
O2 - BHO: (no name) - {FDD3B846-8D59-4ffb-8758-209B6AD74ACC} - (no file)
O3 - Toolbar: Adobe PDF - !!47833539-D0C5-4125-9FA8-0819E2EAAC93} - D:\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll
O3 - Toolbar: TrendProtect - {F83BE649-1CC3-48EE-B2E2-0826CEF3822A} - C:\Program Files\Trend Micro\TrendProtect\MSIE\wrs.dll
O3 - Toolbar: &Google Toolbar - !!2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll
O4 - HKLM\..\Run: [Cmaudio] RunDll32 cmicnfg.cpl,CMICtrlWnd
O4 - HKLM\..\Run: [CM-SmWizard] C:\WINDOWS\System\SmWizard.exe
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\System32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [PCTVOICE] pctspk.exe
O4 - HKLM\..\Run: [Windows Defender] "C:\Program Files\Windows Defender\MSASCui.exe" -hide
O4 - HKLM\..\Run: [pccguide.exe] "D:\Program Files\Trend Micro\Internet Security 2007\pccguide.exe"
O4 - HKLM\..\Run: [FinePrint Dispatcher v5] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\fpdisp5a.exe
O4 - HKLM\..\Run: [pdfFactory Pro Dispatcher v1] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\fppdis1.exe
O4 - HKLM\..\Run: [Acrobat Assistant 7.0] "D:\Adobe\Acrobat 7.0\Distillr\Acrotray.exe"
O4 - HKLM\..\Run: [PfuSsSct.exe] D:\PFU\ScanSnap\PfuSsSct.exe /Station
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "D:\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [TrueImageMonitor.exe] D:\Acronis\TrueImageHome\TrueImageMonitor.exe
O4 - HKLM\..\Run: [AcronisTimounterMonitor] D:\Acronis\TrueImageHome\TimounterMonitor.exe
O4 - HKLM\..\Run: [Acronis Scheduler2 Service] "C:\Program Files\Common Files\Acronis\Schedule2\schedhlp.exe"
O4 - HKLM\..\Run: [OSSelectorReinstall] C:\Program Files\Common Files\Acronis\Acronis Disk Director\oss_reinstall.exe
O4 - HKLM\..\Run: [SSBkgdUpdate] "C:\Program Files\Common Files\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe" -Embedding -boot
O4 - HKLM\..\Run: [PaperPort PTD] C:\Program Files\ScanSoft\PaperPort\pptd40nt.exe
O4 - HKLM\..\Run: [IndexSearch] C:\Program Files\ScanSoft\PaperPort\IndexSearch.exe
O4 - HKLM\..\Run: [SetDefPrt] C:\Program Files\Brother\Brmfl04g\BrStDvPt.exe
O4 - HKLM\..\Run: [ControlCenter2.0] C:\Program Files\Brother\ControlCenter2\brctrcen.exe /autorun
O4 - HKLM\..\Run: [Google Desktop Search] "C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe" /startup
O4 - HKCU\..\Run: [OE] "D:\Program Files\Trend Micro\Internet Security 2007\TMAS_OE\TMAS_OEMon.exe"
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [ccleaner] "D:\CCleaner\ccleaner.exe" /AUTO
O4 - HKCU\..\Run: [SUPERAntiSpyware] D:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Default user')
O4 - Startup: OneNote 2007 Screen Clipper and Launcher.lnk = D:\Microsoft Office\Office12\ONENOTEM.EXE
O4 - Global Startup: Adobe Acrobat Speed Launcher.lnk = ?
O4 - Global Startup: Adobe Gamma Loader.lnk = ?
O4 - Global Startup: Conversion to PDF with ScanSnap Organizer.lnk = ?
O4 - Global Startup: QuickBooks 2002 Delivery Agent.lnk = D:\Intuit\QuickBooks Premier\Components\QBAgent\qbdagent2002.exe
O4 - Global Startup: ScanSnap Manager.lnk = ?
O8 - Extra context menu item: Convert link target to Adobe PDF - res://D:\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: Convert link target to existing PDF - res://D:\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: Convert selected links to Adobe PDF - res://D:\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
O8 - Extra context menu item: Convert selected links to existing PDF - res://D:\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
O8 - Extra context menu item: Convert selection to Adobe PDF - res://D:\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: Convert selection to existing PDF - res://D:\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: Convert to Adobe PDF - res://D:\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: Convert to existing PDF - res://D:\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: E&xport to Microsoft Excel - res://D:\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: Send to OneNote - !!2670000A-7350-4f3c-8081-5663EE0C6C49} - D:\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: S&end to OneNote - !!2670000A-7350-4f3c-8081-5663EE0C6C49} - D:\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: Research - !!92780B25-18CC-41C8-B9BE-3C9C571A8263} - D:\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: Trend Micro Security Services - {D5E1CDC8-64B9-4f8c-8155-FC3B6D6749F7} - http://tmss.trendmicro.com/dashboard/dashboard.aspx?CDIDEHGFFCGCCAFCAJHEHGEDHBDAEBFJAGHGH (file missing)
O9 - Extra 'Tools' menuitem: Trend Micro Security Services - {D5E1CDC8-64B9-4f8c-8155-FC3B6D6749F7} - http://tmss.trendmicro.com/dashboard/dashboard.aspx?CDIDEHGFFCGCCAFCAJHEHGEDHBDAEBFJAGHGH (file missing)
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - D:\SPYBOT~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - D:\SPYBOT~1\SPYBOT~1\SDHelper.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: !!410A8B3C-7CCB-40E8-8B11-28B099E5C488} (Trend Micro Security Services Control) - http://tmss.trendmicro.com/Dashboard/controls/activex_11/en-US/TMSSReportW.CAB
O16 - DPF: !!6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1177864303826
O16 - DPF: !!6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1177867838295
O17 - HKLM\System\CCS\Services\Tcpip\..\!!8076BC33-F134-4FA1-BFAA-E8428D49A708}: NameServer = 192.168.0.1
O17 - HKLM\System\CS1\Services\Tcpip\..\!!8076BC33-F134-4FA1-BFAA-E8428D49A708}: NameServer = 192.168.0.1
O18 - Protocol: trendprotect - {BC3A5F6F-12A0-4B14-A184-32939F413823} - C:\Program Files\Trend Micro\TrendProtect\MSIE\wrs.dll
O20 - AppInit_DLLs: C:\PROGRA~1\Google\GOOGLE~2\GOEC62~1.DLL
O20 - Winlogon Notify: !SASWinLogon - D:\Program Files\SUPERAntiSpyware\SASWINLO.dll
O23 - Service: Lavasoft Ad-Aware Service (aawservice) - Lavasoft - D:\Lavasoft\Ad-Aware\aawservice.exe
O23 - Service: Acronis Scheduler2 Service (AcrSch2Svc) - Acronis - C:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe
O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: Brother BidiAgent Service for Resource manager (brmfbags) - Brother Industries, Ltd. - C:\WINDOWS\system32\BrmfBAgS.exe
O23 - Service: Google Desktop Manager 5.7.806.10245 (GoogleDesktopManager-061008-081103) - Google - C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
O23 - Service: Google Update Service (gupdate1c965ed88649a1e) (gupdate1c965ed88649a1e) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe
O23 - Service: Trend Micro Central Control Component (PcCtlCom) - Trend Micro Inc. - D:\PROGRA~1\TRENDM~1\INTERN~1\PcCtlCom.exe
O23 - Service: Trend Micro Protection Against Spyware (PcScnSrv) - Trend Micro Inc. - D:\PROGRA~1\TRENDM~1\INTERN~1\PcScnSrv.exe
O23 - Service: Trend Micro Real-time Service (Tmntsrv) - Trend Micro Inc. - D:\PROGRA~1\TRENDM~1\INTERN~1\Tmntsrv.exe
O23 - Service: Trend Micro Personal Firewall (TmPfw) - Trend Micro Inc. - D:\PROGRA~1\TRENDM~1\INTERN~1\TmPfw.exe
O23 - Service: Trend Micro Proxy Service (tmproxy) - Trend Micro Inc. - D:\PROGRA~1\TRENDM~1\INTERN~1\tmproxy.exe
O23 - Service: Acronis Try And Decide Service (TryAndDecideService) - Unknown owner - C:\Program Files\Common Files\Acronis\Fomatik\TrueImageTryStartService.exe
O23 - Service: Blue Coat K9 Web Protection (WebFilter) - Unknown owner - D:\Blue Coat K9 Web Protection\k9filter.exe
--
End of file - 13913 bytes
«1

Comments

  • Marty_J
    Marty_J Posts: 6,594 Forumite
    There's nothing terrible there. You could fix this:

    O2 - BHO: (no name) - {FDD3B846-8D59-4ffb-8758-209B6AD74ACC} - (no file)

    But it's not going to make your computer go any faster.
  • thomas01155
    thomas01155 Posts: 2,382 Forumite
    Part of the Furniture 1,000 Posts Name Dropper Combo Breaker
    You have too much running on startup.
    I see you have CCleaner installed open it and go to tools>startup disable things you dont click in the bottom right corner for or dont really need to run like printers,google,itunes,quicktime etc
  • Fullup
    Fullup Posts: 48 Forumite
    Thank you Marty J and thomas01155. I will give those a try and see if it helps.

    Would running defrag help?

    Thanks again.
  • Marty_J
    Marty_J Posts: 6,594 Forumite
    Fullup wrote: »
    Would running defrag help?

    It couldn't hurt.
  • aliEnRIK
    aliEnRIK Posts: 17,741 Forumite
    Part of the Furniture Combo Breaker
    Can you please open Malwarebytes, goto LOGS and post the log please
    Then open Superantispyware, open the CONTROL CENTER and find thelog for that too :)
    :idea:
  • aliEnRIK
    aliEnRIK Posts: 17,741 Forumite
    Part of the Furniture Combo Breaker
    Parts of 'trend micro' are missing ~
    O9 - Extra button: Trend Micro Security Services - {D5E1CDC8-64B9-4f8c-8155-FC3B6D6749F7} - http://tmss.trendmicro.com/dashboard...BDAEBFJAGH GH (file missing)
    O9 - Extra 'Tools' menuitem: Trend Micro Security Services - {D5E1CDC8-64B9-4f8c-8155-FC3B6D6749F7} - http://tmss.trendmicro.com/dashboard...BDAEBFJAGH GH (file missing)

    I think id uninstall and run ccleaner ~
    Download CCLEANER (Make sure you click 'DOWNLOAD LATEST VERSION' ~ make sure YAHOO TOOLBAR is unticked on installation)
    http://www.filehippo.com/download_ccleaner/
    Run the CLEANER scan (UNTICK 'cookies')
    Then run the REGISTRY scan (Backup the registry when it asks)

    Then either reinstall or install other anti virus software (your call ~ I personally use Avira)

    You appear to have 'Acronis' constantly running? Id guess its always backing up to the hard drive? (that will CERTAINLY slow things down)
    :idea:
  • Fullup
    Fullup Posts: 48 Forumite
    Hi aliEnRIK

    Here are the logs:

    Malwarebytes' Anti-Malware 1.34
    Database version: 1859
    Windows 5.1.2600 Service Pack 3
    17/03/2009 20:37:40
    mbam-log-2009-03-17 (20-37-40).txt
    Scan type: Quick Scan
    Objects scanned: 89406
    Time elapsed: 9 minute(s), 53 second(s)
    Memory Processes Infected: 0
    Memory Modules Infected: 0
    Registry Keys Infected: 1
    Registry Values Infected: 0
    Registry Data Items Infected: 0
    Folders Infected: 0
    Files Infected: 0
    Memory Processes Infected:
    (No malicious items detected)
    Memory Modules Infected:
    (No malicious items detected)
    Registry Keys Infected:
    HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\!!549b5ca7-4a86-11d7-a4df-000874180bb3} (Trojan.Agent) -> Quarantined and deleted successfully.
    Registry Values Infected:
    (No malicious items detected)
    Registry Data Items Infected:
    (No malicious items detected)
    Folders Infected:
    (No malicious items detected)
    Files Infected:
    (No malicious items detected)

    Malwarebytes' Anti-Malware 1.34
    Database version: 1859
    Windows 5.1.2600 Service Pack 3
    17/03/2009 22:10:19
    mbam-log-2009-03-17 (22-10-19).txt
    Scan type: Full Scan (C:\|D:\|E:\|F:\|K:\|L:\|Q:\|)
    Objects scanned: 166220
    Time elapsed: 59 minute(s), 34 second(s)
    Memory Processes Infected: 0
    Memory Modules Infected: 0
    Registry Keys Infected: 0
    Registry Values Infected: 0
    Registry Data Items Infected: 0
    Folders Infected: 0
    Files Infected: 0
    Memory Processes Infected:
    (No malicious items detected)
    Memory Modules Infected:
    (No malicious items detected)
    Registry Keys Infected:
    (No malicious items detected)
    Registry Values Infected:
    (No malicious items detected)
    Registry Data Items Infected:
    (No malicious items detected)
    Folders Infected:
    (No malicious items detected)
    Files Infected:
    (No malicious items detected)

    SUPERAntiSpyware Scan Log
    http://www.superantispyware.com
    Generated 03/17/2009 at 10:39 PM
    Application Version : 4.25.1014
    Core Rules Database Version : 3801
    Trace Rules Database Version: 1756
    Scan type : Quick Scan
    Total Scan Time : 00:23:07
    Memory items scanned : 624
    Memory threats detected : 0
    Registry items scanned : 618
    Registry threats detected : 0
    File items scanned : 13284
    File threats detected : 121
    Adware.Tracking Cookie
    C:\Documents and Settings\Phillip\Cookies\phillip@accountingweb.co[1].txt
    C:\Documents and Settings\Phillip\Cookies\phillip@doubleclick[2].txt
    C:\Documents and Settings\Jessica\Cookies\jessica@questionmarket[2].txt
    C:\Documents and Settings\Jessica\Cookies\jessica@revenue[2].txt
    C:\Documents and Settings\Jessica\Cookies\jessica@apmebf[1].txt
    C:\Documents and Settings\Jessica\Cookies\jessica@2o7[2].txt
    C:\Documents and Settings\Jessica\Cookies\jessica@kontera[1].txt
    C:\Documents and Settings\Jessica\Cookies\jessica@stat.onestat[2].txt
    C:\Documents and Settings\Jessica\Cookies\jessica@casalemedia[2].txt
    C:\Documents and Settings\Jessica\Cookies\jessica@media.mtvnservices[3].txt
    C:\Documents and Settings\Jessica\Cookies\jessica@media.mtvnservices[2].txt
    C:\Documents and Settings\Jessica\Cookies\jessica@overture[1].txt
    C:\Documents and Settings\Jessica\Cookies\jessica@ads.pointroll[1].txt
    C:\Documents and Settings\Lisa\Application Data\PowerHouse\DeviceSpecific\44a4e0e6\Synchronize\Cookies\lisa@ads.guardian.co[1].txt
    C:\Documents and Settings\Lisa\Application Data\PowerHouse\DeviceSpecific\44a4e0e6\Synchronize\Cookies\lisa@adviva[2].txt
    C:\Documents and Settings\Lisa\Application Data\PowerHouse\DeviceSpecific\44a4e0e6\Synchronize\Cookies\lisa@anad.tacoda[1].txt
    C:\Documents and Settings\Lisa\Application Data\PowerHouse\DeviceSpecific\44a4e0e6\Synchronize\Cookies\lisa@burstnet[2].txt
    C:\Documents and Settings\Lisa\Application Data\PowerHouse\DeviceSpecific\44a4e0e6\Synchronize\Cookies\lisa@saletrack.co[1].txt
    C:\Documents and Settings\Lisa\Application Data\PowerHouse\DeviceSpecific\44a4e0e6\Synchronize\Cookies\lisa@adbrite[1].txt
    C:\Documents and Settings\Lisa\Application Data\PowerHouse\DeviceSpecific\44a4e0e6\Synchronize\Cookies\lisa@weborama[1].txt
    C:\Documents and Settings\Lisa\Application Data\PowerHouse\DeviceSpecific\44a4e0e6\Synchronize\Cookies\lisa@casalemedia[1].txt
    C:\Documents and Settings\Lisa\Application Data\PowerHouse\DeviceSpecific\44a4e0e6\Synchronize\Cookies\lisa@media.fastclick[1].txt
    C:\Documents and Settings\Lisa\Application Data\PowerHouse\DeviceSpecific\44a4e0e6\Synchronize\Cookies\lisa@ad.yieldmanager[1].txt
    C:\Documents and Settings\Lisa\Application Data\PowerHouse\DeviceSpecific\44a4e0e6\Synchronize\Cookies\lisa@ads.addynamix[2].txt
    C:\Documents and Settings\Lisa\Application Data\PowerHouse\DeviceSpecific\44a4e0e6\Synchronize\Cookies\lisa@www.burstbeacon[2].txt
    C:\Documents and Settings\Lisa\Application Data\PowerHouse\DeviceSpecific\44a4e0e6\Synchronize\Cookies\lisa@ads.pointroll[2].txt
    C:\Documents and Settings\Lisa\Application Data\PowerHouse\DeviceSpecific\44a4e0e6\Synchronize\Cookies\lisa@try.starware[1].txt
    C:\Documents and Settings\Lisa\Application Data\PowerHouse\DeviceSpecific\44a4e0e6\Synchronize\Cookies\lisa@tribalfusion[1].txt
    C:\Documents and Settings\Lisa\Application Data\PowerHouse\DeviceSpecific\44a4e0e6\Synchronize\Cookies\lisa@try.starware[2].txt
    C:\Documents and Settings\Lisa\Application Data\PowerHouse\DeviceSpecific\44a4e0e6\Synchronize\Cookies\lisa@tribalfusion[2].txt
    C:\Documents and Settings\Lisa\Application Data\PowerHouse\DeviceSpecific\44a4e0e6\Synchronize\Cookies\lisa@revsci[2].txt
    C:\Documents and Settings\Lisa\Application Data\PowerHouse\DeviceSpecific\44a4e0e6\Synchronize\Cookies\lisa@www.burstnet[1].txt
    C:\Documents and Settings\Lisa\Application Data\PowerHouse\DeviceSpecific\44a4e0e6\Synchronize\Cookies\lisa@advertising[1].txt
    C:\Documents and Settings\Lisa\Application Data\PowerHouse\DeviceSpecific\44a4e0e6\Synchronize\Cookies\lisa@revsci[1].txt
    C:\Documents and Settings\Lisa\Application Data\PowerHouse\DeviceSpecific\44a4e0e6\Synchronize\Cookies\lisa@www.burstnet[2].txt
    C:\Documents and Settings\Lisa\Application Data\PowerHouse\DeviceSpecific\44a4e0e6\Synchronize\Cookies\lisa@www.googleadservices[3].txt
    C:\Documents and Settings\Lisa\Application Data\PowerHouse\DeviceSpecific\44a4e0e6\Synchronize\Cookies\lisa@tradedoubler[2].txt
    C:\Documents and Settings\Lisa\Application Data\PowerHouse\DeviceSpecific\44a4e0e6\Synchronize\Cookies\lisa@www.googleadservices[4].txt
    C:\Documents and Settings\Lisa\Application Data\PowerHouse\DeviceSpecific\44a4e0e6\Synchronize\Cookies\lisa@www.googleadservices[1].txt
    C:\Documents and Settings\Lisa\Application Data\PowerHouse\DeviceSpecific\44a4e0e6\Synchronize\Cookies\lisa@www.googleadservices[2].txt
    C:\Documents and Settings\Lisa\Application Data\PowerHouse\DeviceSpecific\44a4e0e6\Synchronize\Cookies\lisa@tradedoubler[1].txt
    C:\Documents and Settings\Lisa\Application Data\PowerHouse\DeviceSpecific\44a4e0e6\Synchronize\Cookies\lisa@bfast[2].txt
    C:\Documents and Settings\Lisa\Application Data\PowerHouse\DeviceSpecific\44a4e0e6\Synchronize\Cookies\lisa@adopt.euroclick[2].txt
    C:\Documents and Settings\Lisa\Application Data\PowerHouse\DeviceSpecific\44a4e0e6\Synchronize\Cookies\lisa@gettyimages.122.2o7[1].txt
    C:\Documents and Settings\Lisa\Application Data\PowerHouse\DeviceSpecific\44a4e0e6\Synchronize\Cookies\lisa@bizrate.co[1].txt
    C:\Documents and Settings\Lisa\Application Data\PowerHouse\DeviceSpecific\44a4e0e6\Synchronize\Cookies\lisa@ehg-nestleusainc.hitbox[1].txt
    C:\Documents and Settings\Lisa\Application Data\PowerHouse\DeviceSpecific\44a4e0e6\Synchronize\Cookies\lisa@roiservice[1].txt
    C:\Documents and Settings\Lisa\Application Data\PowerHouse\DeviceSpecific\44a4e0e6\Synchronize\Cookies\lisa@azjmp[1].txt
    C:\Documents and Settings\Lisa\Application Data\PowerHouse\DeviceSpecific\44a4e0e6\Synchronize\Cookies\lisa@statse.webtrendslive[2].txt
    C:\Documents and Settings\Lisa\Application Data\PowerHouse\DeviceSpecific\44a4e0e6\Synchronize\Cookies\lisa@statcounter[1].txt
    C:\Documents and Settings\Lisa\Application Data\PowerHouse\DeviceSpecific\44a4e0e6\Synchronize\Cookies\lisa@hawkshead.112.2o7[1].txt
    C:\Documents and Settings\Lisa\Application Data\PowerHouse\DeviceSpecific\44a4e0e6\Synchronize\Cookies\lisa@statse.webtrendslive[1].txt
    C:\Documents and Settings\Lisa\Application Data\PowerHouse\DeviceSpecific\44a4e0e6\Synchronize\Cookies\lisa@bs.serving-sys[2].txt
    C:\Documents and Settings\Lisa\Application Data\PowerHouse\DeviceSpecific\44a4e0e6\Synchronize\Cookies\lisa@bluestreak[1].txt
    C:\Documents and Settings\Lisa\Application Data\PowerHouse\DeviceSpecific\44a4e0e6\Synchronize\Cookies\lisa@atwola[1].txt
    C:\Documents and Settings\Lisa\Application Data\PowerHouse\DeviceSpecific\44a4e0e6\Synchronize\Cookies\lisa@adtech[2].txt
    C:\Documents and Settings\Lisa\Application Data\PowerHouse\DeviceSpecific\44a4e0e6\Synchronize\Cookies\lisa@adserver.adreactor[1].txt
    C:\Documents and Settings\Lisa\Application Data\PowerHouse\DeviceSpecific\44a4e0e6\Synchronize\Cookies\lisa@008.free-counter.co[1].txt
    C:\Documents and Settings\Lisa\Application Data\PowerHouse\DeviceSpecific\44a4e0e6\Synchronize\Cookies\lisa@2o7[2].txt
    C:\Documents and Settings\Lisa\Application Data\PowerHouse\DeviceSpecific\44a4e0e6\Synchronize\Cookies\lisa@4.adbrite[1].txt
    C:\Documents and Settings\Lisa\Application Data\PowerHouse\DeviceSpecific\44a4e0e6\Synchronize\Cookies\lisa@ad.uk.tangozebra[1].txt
    C:\Documents and Settings\Lisa\Application Data\PowerHouse\DeviceSpecific\44a4e0e6\Synchronize\Cookies\lisa@advertising[2].txt
    C:\Documents and Settings\Lisa\Application Data\PowerHouse\DeviceSpecific\44a4e0e6\Synchronize\Cookies\lisa@atdmt[2].txt
    C:\Documents and Settings\Lisa\Application Data\PowerHouse\DeviceSpecific\44a4e0e6\Synchronize\Cookies\lisa@bs.serving-sys[1].txt
    C:\Documents and Settings\Lisa\Application Data\PowerHouse\DeviceSpecific\44a4e0e6\Synchronize\Cookies\lisa@fastclick[2].txt
    C:\Documents and Settings\Lisa\Application Data\PowerHouse\DeviceSpecific\44a4e0e6\Synchronize\Cookies\lisa@doubleclick[1].txt
    C:\Documents and Settings\Lisa\Application Data\PowerHouse\DeviceSpecific\44a4e0e6\Synchronize\Cookies\lisa@ehg-bbc.hitbox[1].txt
    C:\Documents and Settings\Lisa\Application Data\PowerHouse\DeviceSpecific\44a4e0e6\Synchronize\Cookies\lisa@h.starware[1].txt
    C:\Documents and Settings\Lisa\Application Data\PowerHouse\DeviceSpecific\44a4e0e6\Synchronize\Cookies\lisa@hitbox[2].txt
    C:\Documents and Settings\Lisa\Application Data\PowerHouse\DeviceSpecific\44a4e0e6\Synchronize\Cookies\lisa@imrworldwide[2].txt
    C:\Documents and Settings\Lisa\Application Data\PowerHouse\DeviceSpecific\44a4e0e6\Synchronize\Cookies\lisa@kontera[1].txt
    C:\Documents and Settings\Lisa\Application Data\PowerHouse\DeviceSpecific\44a4e0e6\Synchronize\Cookies\lisa@mediaplex[1].txt
    C:\Documents and Settings\Lisa\Application Data\PowerHouse\DeviceSpecific\44a4e0e6\Synchronize\Cookies\lisa@overture[1].txt
    C:\Documents and Settings\Lisa\Application Data\PowerHouse\DeviceSpecific\44a4e0e6\Synchronize\Cookies\lisa@questionmarket[1].txt
    C:\Documents and Settings\Lisa\Application Data\PowerHouse\DeviceSpecific\44a4e0e6\Synchronize\Cookies\lisa@questionmarket[2].txt
    C:\Documents and Settings\Lisa\Application Data\PowerHouse\DeviceSpecific\44a4e0e6\Synchronize\Cookies\lisa@serving-sys[1].txt
    C:\Documents and Settings\Lisa\Application Data\PowerHouse\DeviceSpecific\44a4e0e6\Synchronize\Cookies\lisa@tacoda[2].txt
    C:\Documents and Settings\Lisa\Application Data\PowerHouse\DeviceSpecific\44a4e0e6\Synchronize\Cookies\lisa@valueclick[1].txt
    C:\Documents and Settings\Lisa\Application Data\PowerHouse\DeviceSpecific\44a4e0e6\Synchronize\Cookies\lisa@xiti[1].txt
    C:\Documents and Settings\Lisa\Cookies\lisa@doubleclick[1].txt
    C:\Documents and Settings\Lisa\Cookies\lisa@ad.yieldmanager[2].txt
    C:\Documents and Settings\Lisa\Cookies\lisa@adviva[1].txt
    C:\Documents and Settings\Lisa\Cookies\lisa@atdmt[1].txt
    C:\Documents and Settings\Lisa\Cookies\lisa@bs.serving-sys[1].txt
    C:\Documents and Settings\Lisa\Cookies\lisa@data.coremetrics[1].txt
    C:\Documents and Settings\Lisa\Cookies\lisa@serving-sys[2].txt
    C:\Documents and Settings\Phillip\Application Data\PowerHouse\DeviceSpecific\508162dd\Synchronize\Cookies\phillip@digitalclarity.112.2o7[1].txt
    C:\Documents and Settings\Phillip\Application Data\PowerHouse\DeviceSpecific\508162dd\Synchronize\Cookies\phillip@msnportal.112.2o7[1].txt
    C:\Documents and Settings\Phillip\Application Data\PowerHouse\DeviceSpecific\508162dd\Synchronize\Cookies\phillip@ads.revsci[1].txt
    C:\Documents and Settings\Phillip\Application Data\PowerHouse\DeviceSpecific\508162dd\Synchronize\Cookies\phillip@ad.uk.tangozebra[1].txt
    C:\Documents and Settings\Phillip\Application Data\PowerHouse\DeviceSpecific\508162dd\Synchronize\Cookies\phillip@summitmedia.co[2].txt
    C:\Documents and Settings\Phillip\Application Data\PowerHouse\DeviceSpecific\508162dd\Synchronize\Cookies\phillip@bizrate[1].txt
    C:\Documents and Settings\Phillip\Application Data\PowerHouse\DeviceSpecific\508162dd\Synchronize\Cookies\phillip@indexstats[2].txt
    C:\Documents and Settings\Phillip\Application Data\PowerHouse\DeviceSpecific\508162dd\Synchronize\Cookies\phillip@tribalfusion[1].txt
    C:\Documents and Settings\Phillip\Application Data\PowerHouse\DeviceSpecific\508162dd\Synchronize\Cookies\phillip@serving-sys[1].txt
    C:\Documents and Settings\Phillip\Application Data\PowerHouse\DeviceSpecific\508162dd\Synchronize\Cookies\phillip@www.googleadservices[1].txt
    C:\Documents and Settings\Phillip\Application Data\PowerHouse\DeviceSpecific\508162dd\Synchronize\Cookies\phillip@bs.serving-sys[1].txt
    C:\Documents and Settings\Phillip\Application Data\PowerHouse\DeviceSpecific\508162dd\Synchronize\Cookies\phillip@saletrack.co[2].txt
    C:\Documents and Settings\Phillip\Application Data\PowerHouse\DeviceSpecific\508162dd\Synchronize\Cookies\phillip@saletrack.co[1].txt
    C:\Documents and Settings\Phillip\Application Data\PowerHouse\DeviceSpecific\508162dd\Synchronize\Cookies\phillip@burstnet[2].txt
    C:\Documents and Settings\Phillip\Application Data\PowerHouse\DeviceSpecific\508162dd\Synchronize\Cookies\phillip@clickandbuy[1].txt
    C:\Documents and Settings\Phillip\Application Data\PowerHouse\DeviceSpecific\508162dd\Synchronize\Cookies\phillip@bs.serving-sys[2].txt
    C:\Documents and Settings\Phillip\Application Data\PowerHouse\DeviceSpecific\508162dd\Synchronize\Cookies\phillip@esavingsaccount.co[1].txt
    C:\Documents and Settings\Phillip\Application Data\PowerHouse\DeviceSpecific\508162dd\Synchronize\Cookies\phillip@www.accountingweb.co[2].txt
    C:\Documents and Settings\Phillip\Application Data\PowerHouse\DeviceSpecific\508162dd\Synchronize\Cookies\phillip@accountingweb.co[2].txt
    C:\Documents and Settings\Phillip\Application Data\PowerHouse\DeviceSpecific\508162dd\Synchronize\Cookies\phillip@sales.liveperson[1].txt
    C:\Documents and Settings\Phillip\Application Data\PowerHouse\DeviceSpecific\508162dd\Synchronize\Cookies\phillip@adtech[1].txt
    C:\Documents and Settings\Phillip\Application Data\PowerHouse\DeviceSpecific\508162dd\Synchronize\Cookies\phillip@overture[1].txt
    C:\Documents and Settings\Phillip\Application Data\PowerHouse\DeviceSpecific\508162dd\Synchronize\Cookies\phillip@realmedia[1].txt
    C:\Documents and Settings\Phillip\Application Data\PowerHouse\DeviceSpecific\508162dd\Synchronize\Cookies\phillip@sales.liveperson[3].txt
    C:\Documents and Settings\Phillip\Application Data\PowerHouse\DeviceSpecific\508162dd\Synchronize\Cookies\phillip@atdmt[2].txt
    C:\Documents and Settings\Phillip\Application Data\PowerHouse\DeviceSpecific\508162dd\Synchronize\Cookies\phillip@specificclick[2].txt
    C:\Documents and Settings\Phillip\Application Data\PowerHouse\DeviceSpecific\508162dd\Synchronize\Cookies\phillip@adopt.specificclick[1].txt
    C:\Documents and Settings\Phillip\Application Data\PowerHouse\DeviceSpecific\508162dd\Synchronize\Cookies\phillip@myaccount.finarea[2].txt
    C:\Documents and Settings\Phillip\Application Data\PowerHouse\DeviceSpecific\508162dd\Synchronize\Cookies\phillip@tacoda[1].txt
    C:\Documents and Settings\Phillip\Application Data\PowerHouse\DeviceSpecific\508162dd\Synchronize\Cookies\phillip@myaccount.finarea[1].txt
    C:\Documents and Settings\Phillip\Application Data\PowerHouse\DeviceSpecific\508162dd\Synchronize\Cookies\phillip@revsci[1].txt
    C:\Documents and Settings\Phillip\Application Data\PowerHouse\DeviceSpecific\508162dd\Synchronize\Cookies\phillip@revsci[2].txt
    C:\Documents and Settings\Phillip\Application Data\PowerHouse\DeviceSpecific\508162dd\Synchronize\Cookies\phillip@247realmedia[1].txt
    C:\Documents and Settings\Phillip\Application Data\PowerHouse\DeviceSpecific\508162dd\Synchronize\Cookies\phillip@accountingweb.co[1].txt
    E:\Documents and Settings\Phillip\Cookies\phillip@sitestats.tiscali.co[2].txt
  • aliEnRIK
    aliEnRIK Posts: 17,741 Forumite
    Part of the Furniture Combo Breaker
    Malwarebytes is now at definition file 1866 (Yours is 1859)
    Would certainly be worth updating and running another full scan (Especially as it found a trojan)

    Would also be worth updating SAS and running a FULL scan (You only ran a 'quick' one last time)
    :idea:
  • Fullup
    Fullup Posts: 48 Forumite
    The Trend internet security expires at the end of April. I was thinking of the Kapersky internet security as a replacement for Trend.

    I'm not sure why Acronis is running all the time (in fact I didn't realise it was), we use it to back up to an external hard drive every now and then. I think I need to find out how to stop it running constantly.

    Thanks again for all your help
  • aliEnRIK
    aliEnRIK Posts: 17,741 Forumite
    Part of the Furniture Combo Breaker
    Id certainly go with Kaspersky if your willing to pay for an av package

    IF however your not entirely sure that Trend Micro is running as it should (And I dont think it is), then id say uninstall it and put AVIRA on till you buy Kaspersky

    If you do go down this route ~
    Download AVIRA ANTI VIRUS PERSONAL (Make sure you click 'DOWNLOAD LATEST VERSION')
    http://www.filehippo.com/download_antivir/

    ps ~ take into consideration that Acronis will also be backing up any TROJANS that are in the system!
    :idea:
This discussion has been closed.
Meet your Ambassadors

🚀 Getting Started

Hi new member!

Our Getting Started Guide will help you get the most out of the Forum

Categories

  • All Categories
  • 354.6K Banking & Borrowing
  • 254.5K Reduce Debt & Boost Income
  • 455.5K Spending & Discounts
  • 247.5K Work, Benefits & Business
  • 604.4K Mortgages, Homes & Bills
  • 178.6K Life & Family
  • 262K Travel & Transport
  • 1.5M Hobbies & Leisure
  • 16.1K Discuss & Feedback
  • 37.7K Read-Only Boards

Is this how you want to be seen?

We see you are using a default avatar. It takes only a few seconds to pick a picture.
Update Your Picture