Jump to content

CowboyMike

Anti-Spyware Brigade
  • Content Count

    625
  • Joined

  • Last visited

About CowboyMike

  • Rank
    Advanced Member
  • Birthday 06/03/1975

Contact Methods

  • Website URL
    http://
  • ICQ
    0

Profile Information

  • Gender
    Male
  • Location
    California

Previous Fields

  • Teams:
    PC Builders Club
  1. Well I had a awesome evening with Sandy Kilgore (Mom) Sister Bell and Sister Hood doing sharing and learning about the word of God. God is great and I will get back on track. I am no longer willing to walk in darkness and away from God. I have a wonderful caring loving group of support. After we where done Allen Kilgore (pops) Blessed me and prayed over me. Thank you all and I love you as God loves you to!

  2. Well I had a awesome evening with Sandy Kilgore (Mom) Sister Bell and Sister Hood doing sharing and learning about the word of God. God is great and I will get back on track. I am no longer willing to walk in darkness and away from God. I have a wonderful caring loving group of support. After we where done David Kilgore (pops) Blessed me and prayed over me. Thank you all and I love you as God loves you to!

  3. Well FB friends/family I am at a new chapter in my life. I have to start off with a sorry for not being so talkitive. I have posted an what nots how ever that is not me. I have had some personal matters surface recently that got my attention. I need to say thank you Father for standing by me even though I have walked away, not reading the Word, praying, blessing my food an thankful for all things. Amen I have been in a solo sacluded mode as of lately an is protection an a comfort zone for...

  4. New pics aka selfies

  5. Morning all! The last couple days I have started a new work out at home. It has been taught and over looked by my bro Shannon Kilgore who all so is my support along with Chris Montiel. Happy Thursday.

  6. Happy Fathers Day All!

  7. Any Winers Fans AKA 49ers listen up I DO NOT CARE WHAT YOU THINK SAY FEEL OR WISH TO DISS ON MY TEAM! I will once again through out facts for ya f@#!ng lameness.... or if your to dumn to read just look at the numbers...... enough said!First contested November 20, 1960San Francisco 49ers 26, Dallas Cowboys 14Number of meetings 33Most recent meeting September 18, 2011Dallas Cowboys 27, San Francisco 49ers 24Next meeting 2014All-time series Tied 16-16-1Postseason results Dallas Cowboys...

  8. Ok I ran another Avira scan and Eset scan and both are now clean with no report findings. I hope this is a good sign and thanks for the help really appreciate it. :>)
  9. ok I did all that here is what it found and cleaned.... C:\Program Files (x86)\Search Toolbar\SearchToolbar.dll Win32/Toolbar.Zugo application cleaned by deleting - quarantined C:\Program Files (x86)\Windows Live\Messenger\msimg32.dll Win32/Toolbar.MyWebSearch application cleaned by deleting - quarantined C:\Program Files (x86)\Windows Live\Messenger\riched20.dll Win32/Toolbar.MyWebSearch application cleaned by deleting - quarantined C:\Users\Mike\Downloads\MyFunCardsSetup2.3.76.6.ZUman000 (1).exe a variant of Win32/Toolbar.MyWebSearch.O application cleaned by deleting - quarantined C:\Users\Mike\Downloads\MyFunCardsSetup2.3.76.6.ZUman000.exe a variant of Win32/Toolbar.MyWebSearch.O application cleaned by deleting - quarantined C:\Users\Mike\Downloads\RetrogamerSetup2.3.76.6.RGman000.exe a variant of Win32/Toolbar.MyWebSearch.O application cleaned by deleting - quarantined C:\Users\Mike\Downloads\sacred-2-gold-deutsch-torrent.exe a variant of Win32/Adware.GoodMedia.A application cleaned by deleting - quarantined C:\Users\Mike\Downloads\sacred-2-gold-edition-multi-torrent.exe a variant of Win32/Adware.GoodMedia.A application cleaned by deleting - quarantined C:\Users\Mike\Downloads\Sacred-2-Gold-Edition-torrent.exe a variant of Win32/Adware.GoodMedia.A application cleaned by deleting - quarantined
  10. Ok I have done all the above and just scanned with 3 items found :>( 1) witchernhpromo-ch.zip Detection TR/Buzus.eohi 2) SetupPlaySushi(1).exe Detection TR/Buzy.1446280 3) facebook-pic00095930306556.exe Detection TR/Crypt.XPACk.Gen Here is a copy of the log if it helps I did quarantine the items as well.... Beginning disinfection: C:\Users\Mike\Downloads\witcherenhpromo-ch.zip [DETECTION] Is the TR/Buzus.eohi Trojan [NOTE] The file was moved to the quarantine directory under the name '4b89ed0b.qua'. C:\Users\Mike\Downloads\SetupPlaySushi (1).exe [DETECTION] Is the TR/Buzy.1446280 Trojan [NOTE] The file was moved to the quarantine directory under the name '531ec290.qua'. C:\Users\Mike\Downloads\facebook-pic00095930306556.exe [DETECTION] Is the TR/Crypt.XPACK.Gen Trojan [NOTE] The file was moved to the quarantine directory under the name '0172987c.qua'.
  11. Thanks Jacee for that info now how do I get rid of it on my personal computer that is not a server or have personal web pages I use? P.S. I found this link how ever WILL NOT do anything tell I am instructed to, thanks! http://www.techspot.com/vb/topic143789.html
  12. Here is what is being found so fare, WebPage.Gen2 HTML Script virus, TR/Spy.Gen Trojan. I have Malwarebytes Anti-Malware 1.50.1.1100 (updated), ZoneAlarm, Avira Antivir Personal Free, Spybot SD Free, CCleaner, SpywareBlaster, SpywareGuard. All have been updated and ran with no detections and say they are clean. I know that this is not true as my pop ups keep showing these are still on my computer. How did I get these? Are then any scans I need to do and post here for every one to look at? How do I get rid of these? Is there better programs that are free to use then the ones I am all ready using? Lastly have I been High Jacked? Thanks to every one in advance for there time, tips and help!
  13. I have a brand new HP All In One and do not like the mal wear or spy wear crap. I was told to use MAC OS 10 on my computer and get rid of my OS Win 7. Is this possible to do? Is this recommended to do? What are the pros and conns to this as well? Thanks to all in advance!
  14. Malwarebytes' Anti-Malware 1.37 Database version: 2211 Windows 5.1.2600 Service Pack 3 6/1/2009 10:10:07 PM mbam-log-2009-06-01 (22-10-07).txt Scan type: Full Scan (C:\|) Objects scanned: 140107 Time elapsed: 34 minute(s), 28 second(s) Memory Processes Infected: 0 Memory Modules Infected: 2 Registry Keys Infected: 11 Registry Values Infected: 0 Registry Data Items Infected: 0 Folders Infected: 1 Files Infected: 7 Memory Processes Infected: (No malicious items detected) Memory Modules Infected: C:\Program Files\Gamevance\gamevancelib32.dll (Adware.Gamevance) -> Delete on reboot. C:\Program Files\Gamevance\gvtl.dll (Adware.Gamevance) -> Delete on reboot. Registry Keys Infected: HKEY_CLASSES_ROOT\CLSID\{0ed403e8-470a-4a8a-85a4-d7688cfe39a3} (Adware.Gamevance) -> Quarantined and deleted successfully. HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{0ed403e8-470a-4a8a-85a4-d7688cfe39a3} (Adware.Gamevance) -> Quarantined and deleted successfully. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0ed403e8-470a-4a8a-85a4-d7688cfe39a3} (Adware.Gamevance) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\TypeLib\{014c4232-6904-47b9-9144-7e0fb7277444} (Adware.Gamevance) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\Interface\{0ab02d6c-f605-425f-b7cb-b9e96c9faf1e} (Adware.Gamevance) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\Interface\{32864a05-9d09-472c-abd0-081818ec713b} (Adware.Gamevance) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\CLSID\{beac7dc8-e106-4c6a-931e-5a42e7362883} (Adware.Gamevance) -> Quarantined and deleted successfully. HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{beac7dc8-e106-4c6a-931e-5a42e7362883} (Adware.Gamevance) -> Quarantined and deleted successfully. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{beac7dc8-e106-4c6a-931e-5a42e7362883} (Adware.Gamevance) -> Quarantined and deleted successfully. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\gamevance (Adware.Gamevance) -> Quarantined and deleted successfully. HKEY_CURRENT_USER\SOFTWARE\gvtl (Malware.Trace) -> Quarantined and deleted successfully. Registry Values Infected: (No malicious items detected) Registry Data Items Infected: (No malicious items detected) Folders Infected: C:\Program Files\Gamevance (Adware.Gamevance) -> Delete on reboot. Files Infected: C:\Program Files\Gamevance\gamevancelib32.dll (Adware.Gamevance) -> Delete on reboot. c:\program files\gamevance\ars.cfg (Adware.Gamevance) -> Quarantined and deleted successfully. c:\program files\gamevance\gamevance32.exe (Adware.Gamevance) -> Quarantined and deleted successfully. c:\program files\gamevance\gvtl.dll (Adware.Gamevance) -> Delete on reboot. c:\program files\gamevance\gvun.exe (Adware.Gamevance) -> Quarantined and deleted successfully. c:\program files\gamevance\icon.ico (Adware.Gamevance) -> Quarantined and deleted successfully. c:\documents and settings\MnM\favorites\Free Porn Movies, Clips and DVDs - Kostenlose Pornos auf PornFish.net - PornFish - Kostenlose Pornofilme.url (Rogue.Link) -> Quarantined and deleted successfully.
  15. Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 11:15:35 AM, on 6/1/2009 Platform: Windows XP SP3 (WinNT 5.01.2600) MSIE: Internet Explorer v7.00 (7.00.6000.16827) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\ZoneLabs\vsmon.exe C:\WINDOWS\system32\spoolsv.exe C:\Program Files\Avira\AntiVir Desktop\sched.exe C:\WINDOWS\Explorer.EXE C:\Program Files\Avira\AntiVir Desktop\avgnt.exe C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe C:\Program Files\Avira\AntiVir Desktop\avguard.exe C:\Program Files\MySpace\IM\MySpaceIM.exe C:\Program Files\MySpace\IM\MySpaceIM.exe C:\Program Files\Trend Micro\HijackThis\HijackThis.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.comcast.net/ R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157 R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R3 - URLSearchHook: (no name) - - (no file) O2 - BHO: (no name) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - (no file) O2 - BHO: Gamevance - {0ED403E8-470A-4a8a-85A4-D7688CFE39A3} - C:\Program Files\Gamevance\gamevancelib32.dll O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: AskBar BHO - {201f27d4-3704-41d6-89c1-aa35e39143ed} - C:\Program Files\AskBarDis\bar\bin\askBar.dll O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MICROS~2\Office12\GRA8E1~1.DLL O2 - BHO: Gamevance Text - {BEAC7DC8-E106-4C6A-931E-5A42E7362883} - C:\Program Files\Gamevance\gvtl.dll O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll O3 - Toolbar: DAEMON Tools Toolbar - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll O3 - Toolbar: Ask Toolbar - {3041d03e-fd4b-44e0-b742-2d9b88305f98} - C:\Program Files\AskBarDis\bar\bin\askBar.dll O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir Desktop\avgnt.exe" /min O4 - HKLM\..\Run: [ZoneAlarm Client] "C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe" O4 - HKUS\S-1-5-18\..\Run: [MySpaceIM] C:\Program Files\MySpace\IM\MySpaceIM.exe (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [MySpaceIM] C:\Program Files\MySpace\IM\MySpaceIM.exe (User 'Default user') O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll O9 - Extra 'Tools' menuitem: S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204 O16 - DPF: {1A1F56AA-3401-46F9-B277-D57F3421F821} (FunGamesLoader Object) - http://mypoints.worldwinner.com/games/v47/...GamesLoader.cab O16 - DPF: {1D082E71-DF20-4AAF-863B-596428C49874} (TPIR Control) - http://www.worldwinner.com/games/v50/tpir/tpir.cab O16 - DPF: {48DD0448-9209-4F81-9F6D-D83562940134} (MySpace Uploader Control) - http://lads.myspace.com/upload/MySpaceUploader1006.cab O16 - DPF: {615F158E-D5CA-422F-A8E7-F6A5EED7063B} (Bejeweled Control) - http://www.worldwinner.com/games/v51/bejeweled/bejeweled.cab O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupdate/...b?1237277303451 O16 - DPF: {8A94C905-FF9D-43B6-8708-F0F22D22B1CB} (Wwlaunch Control) - http://www.worldwinner.com/games/shared/wwlaunch.cab O16 - DPF: {AC2881FD-5760-46DB-83AE-20A5C6432A7E} (SwapIt Control) - http://www.worldwinner.com/games/v67/swapit/swapit.cab O16 - DPF: {B06CE1BC-5D9D-4676-BD28-1752DBF394E0} (Hangman Control) - http://www.worldwinner.com/games/v41/hangman/hangman.cab O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shoc...ash/swflash.cab O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\PROGRA~1\MICROS~2\Office12\GR99D3~1.DLL O23 - Service: Avira AntiVir Scheduler (AntiVirSchedulerService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\sched.exe O23 - Service: Avira AntiVir Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\avguard.exe O23 - Service: TrueVector Internet Monitor (vsmon) - Check Point Software Technologies LTD - C:\WINDOWS\system32\ZoneLabs\vsmon.exe -- End of file - 5922 bytes
×
×
  • Create New...