GLOBAL HOOK IS CAUSING ME TO GO INSANE.. HELP

a-squared Free - Version 4.0
Last update: 1/12/2009 5:21:49 PM

Scan settings:

Objects: Memory, Traces, Cookies, C:\WINDOWS, C:\Program Files
Scan archives: On
Heuristics: On
ADS Scan: On

Scan start: 1/12/2009 5:39:08 PM

c:\program files\cain detected: Trace.Directory.Cain!A2
c:\program files\the weather channel fw detected: Trace.Directory.Desktop Weather!A2
c:\windows\system32\hoproxy.dll detected: Trace.File.VividenceConnector!A2
Value: HKEY_USERS\S-1-5-21-3092113029-996651555-1691114084-1006\Software\RegSweep\RegSweep\RegSweep → checkdbupdate detected: Trace.Registry.RegSweep 2.7!A2
Value: HKEY_USERS\S-1-5-21-3092113029-996651555-1691114084-1006\Software\RegSweep\RegSweep\RegSweep → scanonstartup detected: Trace.Registry.RegSweep 2.7!A2
Value: HKEY_USERS\S-1-5-21-3092113029-996651555-1691114084-1006\Software\RegSweep\RegSweep\SectionToScan → CheckAppPaths detected: Trace.Registry.RegSweep 2.7!A2
Value: HKEY_USERS\S-1-5-21-3092113029-996651555-1691114084-1006\Software\RegSweep\RegSweep\SectionToScan → CheckComReg detected: Trace.Registry.RegSweep 2.7!A2
Value: HKEY_USERS\S-1-5-21-3092113029-996651555-1691114084-1006\Software\RegSweep\RegSweep\SectionToScan → CheckDrivers detected: Trace.Registry.RegSweep 2.7!A2
Value: HKEY_USERS\S-1-5-21-3092113029-996651555-1691114084-1006\Software\RegSweep\RegSweep\SectionToScan → CheckFileAss detected: Trace.Registry.RegSweep 2.7!A2
Value: HKEY_USERS\S-1-5-21-3092113029-996651555-1691114084-1006\Software\RegSweep\RegSweep\SectionToScan → CheckFonts detected: Trace.Registry.RegSweep 2.7!A2
Value: HKEY_USERS\S-1-5-21-3092113029-996651555-1691114084-1006\Software\RegSweep\RegSweep\SectionToScan → CheckHelpDiles detected: Trace.Registry.RegSweep 2.7!A2
Value: HKEY_USERS\S-1-5-21-3092113029-996651555-1691114084-1006\Software\RegSweep\RegSweep\SectionToScan → CheckHistory detected: Trace.Registry.RegSweep 2.7!A2
Value: HKEY_USERS\S-1-5-21-3092113029-996651555-1691114084-1006\Software\RegSweep\RegSweep\SectionToScan → CheckServices detected: Trace.Registry.RegSweep 2.7!A2
Value: HKEY_USERS\S-1-5-21-3092113029-996651555-1691114084-1006\Software\RegSweep\RegSweep\SectionToScan → CheckSharedFiles detected: Trace.Registry.RegSweep 2.7!A2
Value: HKEY_USERS\S-1-5-21-3092113029-996651555-1691114084-1006\Software\RegSweep\RegSweep\SectionToScan → CheckShortcuts detected: Trace.Registry.RegSweep 2.7!A2
Value: HKEY_USERS\S-1-5-21-3092113029-996651555-1691114084-1006\Software\RegSweep\RegSweep\SectionToScan → CheckSounds detected: Trace.Registry.RegSweep 2.7!A2
Value: HKEY_USERS\S-1-5-21-3092113029-996651555-1691114084-1006\Software\RegSweep\RegSweep\SectionToScan → CheckStartup detected: Trace.Registry.RegSweep 2.7!A2
Value: HKEY_USERS\S-1-5-21-3092113029-996651555-1691114084-1006\Software\RegSweep\RegSweep\SectionToScan → CheckUninstall detected: Trace.Registry.RegSweep 2.7!A2
Value: HKEY_USERS\S-1-5-21-3092113029-996651555-1691114084-1006\Software\RegSweep\RegSweep\SectionToScan → CheckUser detected: Trace.Registry.RegSweep 2.7!A2
c:\windows\system32\awtoolb.dll detected: Trace.File.AroundWeb!A2
c:\windows\system32\sncntr.exe detected: Trace.File.Dluca!A2
c:\windows\system32\ssvchost.com detected: Trace.File.FKWP!A2
c:\windows\system32\dpcproxy.exe detected: Trace.File.GoldenPalace!A2
c:\windows\system32\h@tkeysh@@k.dll detected: Trace.File.H@tKeysH@@k!A2
c:\windows\system32\temp#01.exe detected: Trace.File.H@tKeysH@@k!A2
c:\windows\system32\medup012.dll detected: Trace.File.MediaUpdate!A2
c:\windows\system32\msnbho.dll detected: Trace.File.MSNSmartTags!A2
Value: HKEY_USERS.DEFAULT\Software\Microsoft\Internet Explorer\SearchScopes{56256A51-B582-467e-B8D4-7786EDA79AE0} → DisplayName detected: Trace.Registry.MyWebSearch Toolbar!A2
Value: HKEY_USERS\S-1-5-18\Software\Microsoft\Internet Explorer\SearchScopes{56256A51-B582-467e-B8D4-7786EDA79AE0} → DisplayName detected: Trace.Registry.MyWebSearch Toolbar!A2
Value: HKEY_USERS.DEFAULT\Software\Microsoft\Internet Explorer\SearchScopes{56256A51-B582-467e-B8D4-7786EDA79AE0} → URL detected: Trace.Registry.MyWebSearch Toolbar!A2
Value: HKEY_USERS\S-1-5-18\Software\Microsoft\Internet Explorer\SearchScopes{56256A51-B582-467e-B8D4-7786EDA79AE0} → URL detected: Trace.Registry.MyWebSearch Toolbar!A2
Value: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units{1D4DB7D2-6EC9-47A3-BD87-1E41684E07BB}\DownloadInformation → CODEBASE detected: Trace.Registry.MyWebSearch Toolbar!A2
Value: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units{1D4DB7D2-6EC9-47A3-BD87-1E41684E07BB}\DownloadInformation → INF detected: Trace.Registry.MyWebSearch Toolbar!A2
Value: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units{1D4DB7D2-6EC9-47A3-BD87-1E41684E07BB}\InstalledVersion → LastModified detected: Trace.Registry.MyWebSearch Toolbar!A2
Value: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units{1D4DB7D2-6EC9-47A3-BD87-1E41684E07BB} → Installer detected: Trace.Registry.MyWebSearch Toolbar!A2
Value: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units{1D4DB7D2-6EC9-47A3-BD87-1E41684E07BB} → SystemComponent detected: Trace.Registry.MyWebSearch Toolbar!A2
Value: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes{56256A51-B582-467e-B8D4-7786EDA79AE0} → DisplayName detected: Trace.Registry.MyWebSearch Toolbar!A2
Value: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes{56256A51-B582-467e-B8D4-7786EDA79AE0} → URL detected: Trace.Registry.MyWebSearch Toolbar!A2
C:\Documents and Settings\Cynthia Litten\Cookies\cynthia_litten@247realmedia[1].txt detected: Trace.TrackingCookie.247realmedia!A2
C:\Documents and Settings\Cynthia Litten\Cookies\cynthia_litten@2o7[2].txt detected: Trace.TrackingCookie.2o7!A2
C:\Documents and Settings\Cynthia Litten\Cookies\cynthia_litten@adserver.adtechus[1].txt detected: Trace.TrackingCookie.adserv!A2
C:\Documents and Settings\Cynthia Litten\Cookies\cynthia_litten@adserver.adtechus[1].txt detected: Trace.TrackingCookie.adserver!A2
C:\Documents and Settings\Cynthia Litten\Cookies\cynthia_litten@adsremote.scripps[1].txt detected: Trace.TrackingCookie.adsremote!A2
C:\Documents and Settings\Cynthia Litten\Cookies\cynthia_litten@advertising[1].txt detected: Trace.TrackingCookie.advertising!A2
C:\Documents and Settings\Cynthia Litten\Cookies\cynthia_litten@advertising[2].txt detected: Trace.TrackingCookie.advertising!A2
C:\Documents and Settings\Cynthia Litten\Cookies\cynthia_litten@atdmt[1].txt detected: Trace.TrackingCookie.atdmt!A2
C:\Documents and Settings\Cynthia Litten\Cookies\cynthia_litten@bluestreak[1].txt detected: Trace.TrackingCookie.bluestreak!A2
C:\Documents and Settings\Cynthia Litten\Cookies\cynthia_litten@bs.serving-sys[1].txt detected: Trace.TrackingCookie.bs.serving-sys!A2
C:\Documents and Settings\Cynthia Litten\Cookies\cynthia_litten@burstnet[2].txt detected: Trace.TrackingCookie.burstnet!A2
C:\Documents and Settings\Cynthia Litten\Cookies\cynthia_litten@casalemedia[1].txt detected: Trace.TrackingCookie.casalemedia!A2
C:\Documents and Settings\Cynthia Litten\Cookies\cynthia_litten@cms.trafficmp[1].txt detected: Trace.TrackingCookie.cms!A2
C:\Documents and Settings\Cynthia Litten\Cookies\cynthia_litten@community.games[2].txt detected: Trace.TrackingCookie.com!A2
C:\Documents and Settings\Cynthia Litten\Cookies\cynthia_litten@com[1].txt detected: Trace.TrackingCookie.com!A2
C:\Documents and Settings\Cynthia Litten\Cookies\cynthia_litten@doubleclick[1].txt detected: Trace.TrackingCookie.doubleclick!A2
C:\Documents and Settings\Cynthia Litten\Cookies\cynthia_litten@edge.ru4[1].txt detected: Trace.TrackingCookie.edge.ru4!A2
C:\Documents and Settings\Cynthia Litten\Cookies\cynthia_litten@ehg-dig.hitbox[2].txt detected: Trace.TrackingCookie.ehg-dig.hitbox!A2
C:\Documents and Settings\Cynthia Litten\Cookies\cynthia_litten@fastclick[1].txt detected: Trace.TrackingCookie.fastclick!A2
C:\Documents and Settings\Cynthia Litten\Cookies\cynthia_litten@hitbox[1].txt detected: Trace.TrackingCookie.hitbox!A2
C:\Documents and Settings\Cynthia Litten\Cookies\cynthia_litten@link.p0[1].txt detected: Trace.TrackingCookie.link!A2
C:\Documents and Settings\Cynthia Litten\Cookies\cynthia_litten@media.adrevolver[1].txt detected: Trace.TrackingCookie.media!A2
C:\Documents and Settings\Cynthia Litten\Cookies\cynthia_litten@media.legacy[2].txt detected: Trace.TrackingCookie.media!A2
C:\Documents and Settings\Cynthia Litten\Cookies\cynthia_litten@media6degrees[1].txt detected: Trace.TrackingCookie.media!A2
C:\Documents and Settings\Cynthia Litten\Cookies\cynthia_litten@mediamall.wireless.att[1].txt detected: Trace.TrackingCookie.media!A2
C:\Documents and Settings\Cynthia Litten\Cookies\cynthia_litten@mediaplex[1].txt detected: Trace.TrackingCookie.media!A2
C:\Documents and Settings\Cynthia Litten\Cookies\cynthia_litten@mediaplex[1].txt detected: Trace.TrackingCookie.mediaplex!A2
C:\Documents and Settings\Cynthia Litten\Cookies\cynthia_litten@popeater[1].txt detected: Trace.TrackingCookie.pop!A2
C:\Documents and Settings\Cynthia Litten\Cookies\cynthia_litten@questionmarket[2].txt detected: Trace.TrackingCookie.questionmarket!A2
C:\Documents and Settings\Cynthia Litten\Cookies\cynthia_litten@realmedia[2].txt detected: Trace.TrackingCookie.realmedia!A2
C:\Documents and Settings\Cynthia Litten\Cookies\cynthia_litten@revenue[2].txt detected: Trace.TrackingCookie.revenue!A2
C:\Documents and Settings\Cynthia Litten\Cookies\cynthia_litten@rubiconproject[1].txt detected: Trace.TrackingCookie.rub!A2
C:\Documents and Settings\Cynthia Litten\Cookies\cynthia_litten@server.iad.liveperson[1].txt detected: Trace.TrackingCookie.server.iad.livepers!A2
C:\Documents and Settings\Cynthia Litten\Cookies\cynthia_litten@server.iad.liveperson[3].txt detected: Trace.TrackingCookie.server.iad.livepers!A2
C:\Documents and Settings\Cynthia Litten\Cookies\cynthia_litten@serving-sys[1].txt detected: Trace.TrackingCookie.serving-sys!A2
C:\Documents and Settings\Cynthia Litten\Cookies\cynthia_litten@specificclick[2].txt detected: Trace.TrackingCookie.specificclick!A2
C:\Documents and Settings\Cynthia Litten\Cookies\cynthia_litten@statcounter[1].txt detected: Trace.TrackingCookie.statcounter!A2
C:\Documents and Settings\Cynthia Litten\Cookies\cynthia_litten@statse.webtrendslive[1].txt detected: Trace.TrackingCookie.statse.webtrendslive!A2
C:\Documents and Settings\Cynthia Litten\Cookies\cynthia_litten@trafficmp[2].txt detected: Trace.TrackingCookie.trafficmp!A2
C:\Documents and Settings\Cynthia Litten\Cookies\cynthia_litten@travelocity[1].txt detected: Trace.TrackingCookie.travelocity!A2
C:\Documents and Settings\Cynthia Litten\Cookies\cynthia_litten@tribalfusion[2].txt detected: Trace.TrackingCookie.tribalfusion!A2
C:\Documents and Settings\Cynthia Litten\Cookies\cynthia_litten@zedo[1].txt detected: Trace.TrackingCookie.zedo!A2
C:\Program Files\Dell Support Center\HWDiag\bin\pcdrmodem.p5x detected: Heuristic.Dialer.RAS!A2
C:\Program Files\MUSICMATCH\Common\ComponentMgr\HoldingArea\WebSys\WebSys.mmz detected: Riskware.RiskTool.Win32.Deleter.f!A2
C:\Program Files\MUSICMATCH\Musicmatch Jukebox\WebSys\offline.mmz detected: Riskware.RiskTool.Win32.Deleter.f!A2

Scanned

Files: 66597
Traces: 642944
Cookies: 787
Processes: 56

Found

Files: 3
Traces: 38
Cookies: 42
Processes: 0
Registry keys: 0

Scan end: 1/12/2009 6:26:37 PM
Scan time: 0:47:29

Wow, and I thought I had killed most of it :o

AFAIK it’s safe to quarantine/delete them all.

Why didn’t you simply scan the full computer ?

Xan

i didnt have the time at that lol time… AFAIK?? i dont know what you mean… but it comes up still and is annoying if your not bored to death of this let me know what to do next… thanks for sticking with me…

Well, uncheck all the blocked files in defense+. Then run a scan again with SAS MBAM and a-squared.

AFAIK : as far as I know

Xan

scanning…

can i run them simultaneous or no??

Preferably not, they could become confused

Xan