Specialty Forums
Security and Virus
General Hardware
CPUs/Overclocking
Networking
Digital Photo/Video
Office Software
PC Gaming
Console Gaming
Programming
Database
Web Development
Digital Home

General Forums
Windows XP
Windows Vista
Windows 95/98
Windows Me
Windows NT
Windows 2000
Win Server 2008
Win Server 2003
Windows 3.1
Linux
PDAs
BeOS
Novell Netware
OpenVMS
Solaris
Disk Op. System
Unix
Mac
OS/2

Drivers
Driver Scan
Driver Forum

Software
Automatic Updates

BIOS Updates

My Computing.Net

Solution Center

Free IT eBook

Howtos

Site Search

Message Find

RSS Feeds

Install Guides

Data Recovery

About

Home
Reply to Message Icon Go to Main Page Icon

Subject: win32/generic.a help plz

Original Message
Name: mrflibbles1980
Date: April 3, 2008 at 20:38:31 Pacific
Subject: win32/generic.a help plz
OS: xp home
CPU/Ram: athlon x2/2gb
Comment:
recently ive been having alot of connection problems.my interent crashes randomly and i need to reboot in order to get back online.

i ran various scans (adaware/windows defender/avg/spybot/stinger/spyware terminator) all came back clean except windows defender which found the above trojan,but i cant seem to get rid of it

there was also another trojan that pops up on occassion on spyware terminator real time shield but no scan seems to find it...unfortunatly i dint take note of the name

any help in getting rid of these would be greatly appreciated M


Report Offensive Message For Removal

Response Number 1
Name: Adii
Date: April 3, 2008 at 21:21:34 Pacific
Subject: win32/generic.a help plz
Reply: (edit)
Download the "HijackThis" Installer from this link:

http://www.trendsecure.com/portal/e...


1. Save " HJTInstall.exe" to your desktop.
2. Double click on HJTInstall.exe to run the program.
3. By default it will install to C:\Program Files\Trend Micro\HijackThis.
4. Accept the license agreement by clicking the "I Accept" button.
5.Click on the "Do a system scan and save a log file" button. It will scan and then ask you to save the log.
6. Click "Save log" to save the log file and then the log will open in Notepad.
7. Click on "Edit > Select All" then click on "Edit > Copy" to copy the entire contents of the log.
8. Paste the log in your next reply.
9. Do NOT have HijackThis fix anything yet! Most of what it finds will be harmless or even required.

Post Hijackthis Log in your next reply.

*Do Safe Computing*


Report Offensive Follow Up For Removal

Response Number 2
Name: mrflibbles1980
Date: April 3, 2008 at 21:29:59 Pacific
Subject: win32/generic.a help plz
Reply: (edit)
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 06:27:10, on 04/04/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16608)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Windows Defender\MsMpEng.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
c:\program files\common files\logitech\lvmvfm\LVPrcSrv.exe
C:\WINDOWS\Explorer.exe
C:\Program Files\Windows Defender\MSASCui.exe
C:\PROGRA~1\Grisoft\AVG7\avgcc.exe
C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe
C:\Program Files\Common Files\Logitech\LComMgr\Communications_Helper.exe
C:\Program Files\Common Files\Logitech\LComMgr\LVComSX.exe
C:\WINDOWS\RTHDCPL.EXE
C:\WINDOWS\system32\RUNDLL32.EXE
C:\Program Files\BillP Studios\WinPatrol\winpatrol.exe
C:\Program Files\COMODO\Firewall\cfp.exe
C:\Program Files\Spyware Terminator\SpywareTerminatorShield.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
C:\PROGRA~1\Grisoft\AVG7\avgamsvr.exe
C:\PROGRA~1\Grisoft\AVG7\avgupsvc.exe
C:\PROGRA~1\Grisoft\AVG7\avgemc.exe
C:\Program Files\COMODO\Firewall\cmdagent.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\PnkBstrA.exe
C:\Program Files\Spyware Terminator\sp_rsser.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\BitComet\BitComet.exe
C:\Program Files\Windows Media Player\wmplayer.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLLoginProxy.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.co.uk/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?Lin...
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?Lin...
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?Lin...
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?Lin...
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://windowsupdate.microsoft.com/
F2 - REG:system.ini: Shell=
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O4 - HKLM\..\Run: [Windows Defender] "C:\Program Files\Windows Defender\MSASCui.exe" -hide
O4 - HKLM\..\Run: [AVG7_CC] C:\PROGRA~1\Grisoft\AVG7\avgcc.exe /STARTUP
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe"
O4 - HKLM\..\Run: [LogitechCommunicationsManager] "C:\Program Files\Common Files\Logitech\LComMgr\Communications_Helper.exe"
O4 - HKLM\..\Run: [LVCOMSX] "C:\Program Files\Common Files\Logitech\LComMgr\LVComSX.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [WinPatrol] C:\Program Files\BillP Studios\WinPatrol\winpatrol.exe -expressboot
O4 - HKLM\..\Run: [COMODO Firewall Pro] "C:\Program Files\COMODO\Firewall\cfp.exe" -h
O4 - HKLM\..\Run: [SpywareTerminator] "C:\Program Files\Spyware Terminator\SpywareTerminatorShield.exe"
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
O4 - HKUS\S-1-5-19\..\Run: [AVG7_Run] C:\PROGRA~1\Grisoft\AVG7\avgw.exe /RUNONCE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [AVG7_Run] C:\PROGRA~1\Grisoft\AVG7\avgw.exe /RUNONCE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [AVG7_Run] C:\PROGRA~1\Grisoft\AVG7\avgw.exe /RUNONCE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [AVG7_Run] C:\PROGRA~1\Grisoft\AVG7\avgw.exe /RUNONCE (User 'Default user')
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra button: PokerStars - {3AD14F0C-ED16-4e43-B6D8-661B03F6A1EF} - C:\Program Files\PokerStars\PokerStarsUpdate.exe
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O10 - Unknown file in Winsock LSP: c:\windows\system32\nwprovau.dll
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://gfx2.hotmail.com/mail/w2/res...
O16 - DPF: {556DDE35-E955-11D0-A707-000000521957} - http://www.xblock.com/download/xcle...
O16 - DPF: {5C6698D9-7BE4-4122-8EC5-291D84DBD4A0} (Facebook Photo Uploader 4 Control) - http://upload.facebook.com/controls...
O16 - DPF: {67A5F8DC-1A4B-4D66-9F24-A704AD929EEE} (System Requirements Lab) - http://www.systemrequirementslab.co...
O16 - DPF: {67DABFBF-D0AB-41FA-9C46-CC0F21721616} (DivXBrowserPlugin Object) - http://download.divx.com/player/Div...
O17 - HKLM\System\CCS\Services\Tcpip\..\{3CBF3D9E-1941-4276-ADE3-1CA1219B5F5E}: NameServer = 80.58.61.250,80.58.61.254
O20 - AppInit_DLLs: C:\WINDOWS\system32\guard32.dll
O20 - Winlogon Notify: !SASWinLogon - C:\Program Files\SUPERAntiSpyware\SASWINLO.dll
O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgamsvr.exe
O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgupsvc.exe
O23 - Service: AVG E-mail Scanner (AVGEMS) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgemc.exe
O23 - Service: COMODO Firewall Pro Helper Service (cmdAgent) - COMODO - C:\Program Files\COMODO\Firewall\cmdagent.exe
O23 - Service: Process Monitor (LVPrcSrv) - Logitech Inc. - c:\program files\common files\logitech\lvmvfm\LVPrcSrv.exe
O23 - Service: LVSrvLauncher - Logitech Inc. - C:\Program Files\Common Files\Logitech\SrvLnch\SrvLnch.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe
O23 - Service: Spyware Terminator Realtime Shield Service (sp_rssrv) - Crawler.com - C:\Program Files\Spyware Terminator\sp_rsser.exe

--
End of file - 7873 bytes


thx for quick reply Adii


Report Offensive Follow Up For Removal

Response Number 3
Name: Adii
Date: April 3, 2008 at 21:50:23 Pacific
Subject: win32/generic.a help plz
Reply: (edit)

Please run HijackThis again! and click "Scan." Place checks next to the following entries:

F2 - REG:system.ini: Shell=


Close all browsers and other windows except for HijackThis!, and click "Fix checked".


Please do an Online scan with Kaspersky WebScanner.

online scanner: http://www.kaspersky.com/virusscanner


1.Click on "Kaspersky Online Scanner".
2.You will be prompted to install an ActiveX component from Kaspersky, Click Yes.
3.The program will launch and then begin downloading the latest definition files.
4.Once the files have been downloaded click on "NEXT".
5.Now click on "Scan Settings".
6.In the scan settings make that the following are selected:
7.Scan using the following Anti-Virus database:
Extended (if available otherwise Standard)
8.Scan Options:
Scan Archives
Scan Mail Bases
9.Click OK.
10.Under select a target to scan, select "My Computer".
This will program will start and scan your system.
The scan will take a while so be patient and let it run.
Once the scan is complete it will display if your system has been infected.
Upon completion, click on the "Save as Text" button.
Save the file to your desktop.

Copy and paste that information in your next reply.

*Do Safe Computing*


Report Offensive Follow Up For Removal

Response Number 4
Name: mrflibbles1980
Date: April 3, 2008 at 23:57:20 Pacific
Subject: win32/generic.a help plz
Reply: (edit)
Friday, April 04, 2008 8:54:50 AM
Operating System: Microsoft Windows XP Home Edition, Service Pack 2 (Build 2600)
Kaspersky Online Scanner version: 5.0.98.0
Kaspersky Anti-Virus database last update: 4/04/2008
Kaspersky Anti-Virus database records: 681015


Scan Settings
Scan using the following antivirus database extended
Scan Archives true
Scan Mail Bases true

Scan Target My Computer
A:\
C:\
D:\
E:\
F:\
G:\

Scan Statistics
Total number of scanned objects 73431
Number of viruses found 1
Number of infected objects 3
Number of suspicious objects 0
Duration of the scan process 01:20:08

Infected Object Name Virus Name Last Action
C:\Documents and Settings\All Users\Application Data\avg7\Log\emc.log Object is locked skipped

C:\Documents and Settings\All Users\Application Data\comodo\Firewall Pro\cfplogdb.sdb Object is locked skipped

C:\Documents and Settings\All Users\Application Data\Grisoft\Avg7Data\avg7log.log Object is locked skipped

C:\Documents and Settings\All Users\Application Data\Grisoft\Avg7Data\avg7log.log.lck Object is locked skipped

C:\Documents and Settings\All Users\Application Data\Microsoft\Network\Downloader\qmgr0.dat Object is locked skipped

C:\Documents and Settings\All Users\Application Data\Microsoft\Network\Downloader\qmgr1.dat Object is locked skipped

C:\Documents and Settings\All Users\Application Data\Microsoft\Windows Defender\Support\MPLog-09262007-201704.log Object is locked skipped

C:\Documents and Settings\APP\Application Data\SUPERAntiSpyware.com\SUPERAntiSpyware\AppLogs\SUPERANTISPYWARE-4-4-2008( 4-6-53 ).LOG Object is locked skipped

C:\Documents and Settings\APP\Cookies\index.dat Object is locked skipped

C:\Documents and Settings\APP\Local Settings\Application Data\Microsoft\Feeds Cache\index.dat Object is locked skipped

C:\Documents and Settings\APP\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat Object is locked skipped

C:\Documents and Settings\APP\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG Object is locked skipped

C:\Documents and Settings\APP\Local Settings\Application Data\Microsoft\Windows Defender\FileTracker\{C5E6A9E3-3FA7-4A34-A14E-03BDBCC6E9C5} Object is locked skipped

C:\Documents and Settings\APP\Local Settings\History\History.IE5\index.dat Object is locked skipped

C:\Documents and Settings\APP\Local Settings\History\History.IE5\MSHist012008040420080405\index.dat Object is locked skipped

C:\Documents and Settings\APP\Local Settings\Temp\~DF67BF.tmp Object is locked skipped

C:\Documents and Settings\APP\Local Settings\Temp\~DF71B7.tmp Object is locked skipped

C:\Documents and Settings\APP\Local Settings\Temp\~DF71D5.tmp Object is locked skipped

C:\Documents and Settings\APP\Local Settings\Temporary Internet Files\AntiPhishing\B3BB5BBA-E7D5-40AB-A041-A5B1C0B26C8F.dat Object is locked skipped

C:\Documents and Settings\APP\Local Settings\Temporary Internet Files\Content.IE5\index.dat Object is locked skipped

C:\Documents and Settings\APP\NTUSER.DAT Object is locked skipped

C:\Documents and Settings\APP\ntuser.dat.LOG Object is locked skipped

C:\Documents and Settings\LocalService\Cookies\index.dat Object is locked skipped

C:\Documents and Settings\LocalService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat Object is locked skipped

C:\Documents and Settings\LocalService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG Object is locked skipped

C:\Documents and Settings\LocalService\Local Settings\History\History.IE5\index.dat Object is locked skipped

C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\index.dat Object is locked skipped

C:\Documents and Settings\LocalService\NTUSER.DAT Object is locked skipped

C:\Documents and Settings\LocalService\ntuser.dat.LOG Object is locked skipped

C:\Documents and Settings\NetworkService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat Object is locked skipped

C:\Documents and Settings\NetworkService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG Object is locked skipped

C:\Documents and Settings\NetworkService\NTUSER.DAT Object is locked skipped

C:\Documents and Settings\NetworkService\ntuser.dat.LOG Object is locked skipped

C:\Program Files\BitComet\Downloads\Medieval.2.Total.War-RELOADED\DVD1\rld-me2a.r00.bc! Object is locked skipped

C:\Program Files\BitComet\Downloads\Medieval.2.Total.War-RELOADED\DVD1\rld-me2a.r01.bc! Object is locked skipped

C:\Program Files\BitComet\Downloads\Medieval.2.Total.War-RELOADED\DVD1\rld-me2a.r02.bc! Object is locked skipped

C:\Program Files\BitComet\Downloads\Medieval.2.Total.War-RELOADED\DVD1\rld-me2a.r03.bc! Object is locked skipped

C:\Program Files\BitComet\Downloads\Medieval.2.Total.War-RELOADED\DVD1\rld-me2a.r04.bc! Object is locked skipped

C:\Program Files\BitComet\Downloads\Medieval.2.Total.War-RELOADED\DVD1\rld-me2a.r05.bc! Object is locked skipped

C:\Program Files\BitComet\Downloads\Medieval.2.Total.War-RELOADED\DVD1\rld-me2a.r06.bc! Object is locked skipped

C:\Program Files\BitComet\Downloads\Medieval.2.Total.War-RELOADED\DVD1\rld-me2a.r07.bc! Object is locked skipped

C:\Program Files\BitComet\Downloads\Medieval.2.Total.War-RELOADED\DVD1\rld-me2a.r08.bc! Object is locked skipped

C:\Program Files\BitComet\Downloads\Medieval.2.Total.War-RELOADED\DVD1\rld-me2a.r09.bc! Object is locked skipped

C:\Program Files\BitComet\Downloads\Medieval.2.Total.War-RELOADED\DVD1\rld-me2a.r10.bc! Object is locked skipped

C:\Program Files\BitComet\Downloads\Medieval.2.Total.War-RELOADED\DVD1\rld-me2a.r11.bc! Object is locked skipped

C:\Program Files\BitComet\Downloads\Medieval.2.Total.War-RELOADED\DVD1\rld-me2a.r12.bc! Object is locked skipped

C:\Program Files\BitComet\Downloads\Medieval.2.Total.War-RELOADED\DVD1\rld-me2a.r13.bc! Object is locked skipped

C:\Program Files\BitComet\Downloads\Medieval.2.Total.War-RELOADED\DVD1\rld-me2a.r14.bc! Object is locked skipped

C:\Program Files\BitComet\Downloads\Medieval.2.Total.War-RELOADED\DVD1\rld-me2a.r15.bc! Object is locked skipped

C:\Program Files\BitComet\Downloads\Medieval.2.Total.War-RELOADED\DVD1\rld-me2a.r16.bc! Object is locked skipped

C:\Program Files\BitComet\Downloads\Medieval.2.Total.War-RELOADED\DVD1\rld-me2a.r17.bc! Object is locked skipped

C:\Program Files\BitComet\Downloads\Medieval.2.Total.War-RELOADED\DVD1\rld-me2a.r18.bc! Object is locked skipped

C:\Program Files\BitComet\Downloads\Medieval.2.Total.War-RELOADED\DVD1\rld-me2a.r19.bc! Object is locked skipped

C:\Program Files\BitComet\Downloads\Medieval.2.Total.War-RELOADED\DVD1\rld-me2a.r20.bc! Object is locked skipped

C:\Program Files\BitComet\Downloads\Medieval.2.Total.War-RELOADED\DVD1\rld-me2a.r21.bc! Object is locked skipped

C:\Program Files\BitComet\Downloads\Medieval.2.Total.War-RELOADED\DVD1\rld-me2a.r22.bc! Object is locked skipped

C:\Program Files\BitComet\Downloads\Medieval.2.Total.War-RELOADED\DVD1\rld-me2a.r23.bc! Object is locked skipped

C:\Program Files\BitComet\Downloads\Medieval.2.Total.War-RELOADED\DVD1\rld-me2a.r24.bc! Object is locked skipped

C:\Program Files\BitComet\Downloads\Medieval.2.Total.War-RELOADED\DVD1\rld-me2a.r25.bc! Object is locked skipped

C:\Program Files\BitComet\Downloads\Medieval.2.Total.War-RELOADED\DVD1\rld-me2a.r26.bc! Object is locked skipped

C:\Program Files\BitComet\Downloads\Medieval.2.Total.War-RELOADED\DVD1\rld-me2a.r27.bc! Object is locked skipped

C:\Program Files\BitComet\Downloads\Medieval.2.Total.War-RELOADED\DVD1\rld-me2a.r28.bc! Object is locked skipped

C:\Program Files\BitComet\Downloads\Medieval.2.Total.War-RELOADED\DVD1\rld-me2a.r29.bc! Object is locked skipped

C:\Program Files\BitComet\Downloads\Medieval.2.Total.War-RELOADED\DVD1\rld-me2a.r30.bc! Object is locked skipped

C:\Program Files\BitComet\Downloads\Medieval.2.Total.War-RELOADED\DVD1\rld-me2a.r31.bc! Object is locked skipped

C:\Program Files\BitComet\Downloads\Medieval.2.Total.War-RELOADED\DVD1\rld-me2a.r32.bc! Object is locked skipped

C:\Program Files\BitComet\Downloads\Medieval.2.Total.War-RELOADED\DVD1\rld-me2a.r33.bc! Object is locked skipped

C:\Program Files\BitComet\Downloads\Medieval.2.Total.War-RELOADED\DVD1\rld-me2a.r34.bc! Object is locked skipped

C:\Program Files\BitComet\Downloads\Medieval.2.Total.War-RELOADED\DVD1\rld-me2a.r35.bc! Object is locked skipped

C:\Program Files\BitComet\Downloads\Medieval.2.Total.War-RELOADED\DVD1\rld-me2a.r36.bc! Object is locked skipped

C:\Program Files\BitComet\Downloads\Medieval.2.Total.War-RELOADED\DVD1\rld-me2a.r37.bc! Object is locked skipped

C:\Program Files\BitComet\Downloads\Medieval.2.Total.War-RELOADED\DVD1\rld-me2a.r38.bc! Object is locked skipped

C:\Program Files\BitComet\Downloads\Medieval.2.Total.War-RELOADED\DVD1\rld-me2a.r39.bc! Object is locked skipped

C:\Program Files\BitComet\Downloads\Medieval.2.Total.War-RELOADED\DVD1\rld-me2a.r40.bc! Object is locked skipped

C:\Program Files\BitComet\Downloads\Medieval.2.Total.War-RELOADED\DVD1\rld-me2a.r41.bc! Object is locked skipped

C:\Program Files\BitComet\Downloads\Medieval.2.Total.War-RELOADED\DVD1\rld-me2a.r42.bc! Object is locked skipped

C:\Program Files\BitComet\Downloads\Medieval.2.Total.War-RELOADED\DVD1\rld-me2a.r43.bc! Object is locked skipped

C:\Program Files\BitComet\Downloads\Medieval.2.Total.War-RELOADED\DVD1\rld-me2a.r44.bc! Object is locked skipped

C:\Program Files\BitComet\Downloads\Medieval.2.Total.War-RELOADED\DVD1\rld-me2a.r45.bc! Object is locked skipped

C:\Program Files\BitComet\Downloads\Medieval.2.Total.War-RELOADED\DVD1\rld-me2a.r46.bc! Object is locked skipped

C:\Program Files\BitComet\Downloads\Medieval.2.Total.War-RELOADED\DVD1\rld-me2a.r47.bc! Object is locked skipped

C:\Program Files\BitComet\Downloads\Medieval.2.Total.War-RELOADED\DVD1\rld-me2a.r48.bc! Object is locked skipped

C:\Program Files\BitComet\Downloads\Medieval.2.Total.War-RELOADED\DVD1\rld-me2a.r49.bc! Object is locked skipped

C:\Program Files\BitComet\Downloads\Medieval.2.Total.War-RELOADED\DVD1\rld-me2a.r50.bc! Object is locked skipped

C:\Program Files\BitComet\Downloads\Medieval.2.Total.War-RELOADED\DVD1\rld-me2a.r51.bc! Object is locked skipped

C:\Program Files\BitComet\Downloads\Medieval.2.Total.War-RELOADED\DVD1\rld-me2a.r52.bc! Object is locked skipped

C:\Program Files\BitComet\Downloads\Medieval.2.Total.War-RELOADED\DVD1\rld-me2a.r53.bc! Object is locked skipped

C:\Program Files\BitComet\Downloads\Medieval.2.Total.War-RELOADED\DVD1\rld-me2a.r54.bc! Object is locked skipped

C:\Program Files\BitComet\Downloads\Medieval.2.Total.War-RELOADED\DVD1\rld-me2a.r55.bc! Object is locked skipped

C:\Program Files\BitComet\Downloads\Medieval.2.Total.War-RELOADED\DVD1\rld-me2a.r56.bc! Object is locked skipped

C:\Program Files\BitComet\Downloads\Medieval.2.Total.War-RELOADED\DVD1\rld-me2a.r57.bc! Object is locked skipped

C:\Program Files\BitComet\Downloads\Medieval.2.Total.War-RELOADED\DVD1\rld-me2a.r58.bc! Object is locked skipped

C:\Program Files\BitComet\Downloads\Medieval.2.Total.War-RELOADED\DVD1\rld-me2a.r59.bc! Object is locked skipped

C:\Program Files\BitComet\Downloads\Medieval.2.Total.War-RELOADED\DVD1\rld-me2a.r60.bc! Object is locked skipped

C:\Program Files\BitComet\Downloads\Medieval.2.Total.War-RELOADED\DVD1\rld-me2a.r61.bc! Object is locked skipped

C:\Program Files\BitComet\Downloads\Medieval.2.Total.War-RELOADED\DVD1\rld-me2a.r62.bc! Object is locked skipped

C:\Program Files\BitComet\Downloads\Medieval.2.Total.War-RELOADED\DVD1\rld-me2a.r63.bc! Object is locked skipped

C:\Program Files\BitComet\Downloads\Medieval.2.Total.War-RELOADED\DVD1\rld-me2a.r64.bc! Object is locked skipped

C:\Program Files\BitComet\Downloads\Medieval.2.Total.War-RELOADED\DVD1\rld-me2a.r65.bc! Object is locked skipped

C:\Program Files\BitComet\Downloads\Medieval.2.Total.War-RELOADED\DVD1\rld-me2a.rar.bc! Object is locked skipped

C:\Program Files\BitComet\Downloads\Medieval.2.Total.War-RELOADED\DVD2\rld-me2b.r00.bc! Object is locked skipped

C:\Program Files\BitComet\Downloads\Medieval.2.Total.War-RELOADED\DVD2\rld-me2b.r01.bc! Object is locked skipped

C:\Program Files\BitComet\Downloads\Medieval.2.Total.War-RELOADED\DVD2\rld-me2b.r02.bc! Object is locked skipped

C:\Program Files\BitComet\Downloads\Medieval.2.Total.War-RELOADED\DVD2\rld-me2b.r03.bc! Object is locked skipped

C:\Program Files\BitComet\Downloads\Medieval.2.Total.War-RELOADED\DVD2\rld-me2b.r04.bc! Object is locked skipped

C:\Program Files\BitComet\Downloads\Medieval.2.Total.War-RELOADED\DVD2\rld-me2b.r05.bc! Object is locked skipped

C:\Program Files\BitComet\Downloads\Medieval.2.Total.War-RELOADED\DVD2\rld-me2b.r06.bc! Object is locked skipped

C:\Program Files\BitComet\Downloads\Medieval.2.Total.War-RELOADED\DVD2\rld-me2b.r07.bc! Object is locked skipped

C:\Program Files\BitComet\Downloads\Medieval.2.Total.War-RELOADED\DVD2\rld-me2b.r08.bc! Object is locked skipped

C:\Program Files\BitComet\Downloads\Medieval.2.Total.War-RELOADED\DVD2\rld-me2b.r09.bc! Object is locked skipped

C:\Program Files\BitComet\Downloads\Medieval.2.Total.War-RELOADED\DVD2\rld-me2b.r10.bc! Object is locked skipped

C:\Program Files\BitComet\Downloads\Medieval.2.Total.War-RELOADED\DVD2\rld-me2b.r11.bc! Object is locked skipped

C:\Program Files\BitComet\Downloads\Medieval.2.Total.War-RELOADED\DVD2\rld-me2b.r12.bc! Object is locked skipped

C:\Program Files\BitComet\Downloads\Medieval.2.Total.War-RELOADED\DVD2\rld-me2b.r13.bc! Object is locked skipped

C:\Program Files\BitComet\Downloads\Medieval.2.Total.War-RELOADED\DVD2\rld-me2b.r14.bc! Object is locked skipped

C:\Program Files\BitComet\Downloads\Medieval.2.Total.War-RELOADED\DVD2\rld-me2b.r15.bc! Object is locked skipped

C:\Program Files\BitComet\Downloads\Medieval.2.Total.War-RELOADED\DVD2\rld-me2b.r16.bc! Object is locked skipped

C:\Program Files\BitComet\Downloads\Medieval.2.Total.War-RELOADED\DVD2\rld-me2b.r17.bc! Object is locked skipped

C:\Program Files\BitComet\Downloads\Medieval.2.Total.War-RELOADED\DVD2\rld-me2b.r18.bc! Object is locked skipped

C:\Program Files\BitComet\Downloads\Medieval.2.Total.War-RELOADED\DVD2\rld-me2b.r19.bc! Object is locked skipped

C:\Program Files\BitComet\Downloads\Medieval.2.Total.War-RELOADED\DVD2\rld-me2b.r20.bc! Object is locked skipped

C:\Program Files\BitComet\Downloads\Medieval.2.Total.War-RELOADED\DVD2\rld-me2b.r21.bc! Object is locked skipped

C:\Program Files\BitComet\Downloads\Medieval.2.Total.War-RELOADED\DVD2\rld-me2b.r22.bc! Object is locked skipped

C:\Program Files\BitComet\Downloads\Medieval.2.Total.War-RELOADED\DVD2\rld-me2b.r23.bc! Object is locked skipped

C:\Program Files\BitComet\Downloads\Medieval.2.Total.War-RELOADED\DVD2\rld-me2b.r24.bc! Object is locked skipped

C:\Program Files\BitComet\Downloads\Medieval.2.Total.War-RELOADED\DVD2\rld-me2b.r25.bc! Object is locked skipped

C:\Program Files\BitComet\Downloads\Medieval.2.Total.War-RELOADED\DVD2\rld-me2b.r26.bc! Object is locked skipped

C:\Program Files\BitComet\Downloads\Medieval.2.Total.War-RELOADED\DVD2\rld-me2b.r27.bc! Object is locked skipped

C:\Program Files\BitComet\Downloads\Medieval.2.Total.War-RELOADED\DVD2\rld-me2b.r28.bc! Object is locked skipped

C:\Program Files\BitComet\Downloads\Medieval.2.Total.War-RELOADED\DVD2\rld-me2b.r29.bc! Object is locked skipped

C:\Program Files\BitComet\Downloads\Medieval.2.Total.War-RELOADED\DVD2\rld-me2b.r30.bc! Object is locked skipped

C:\Program Files\BitComet\Downloads\Medieval.2.Total.War-RELOADED\DVD2\rld-me2b.r31.bc! Object is locked skipped

C:\Program Files\BitComet\Downloads\Medieval.2.Total.War-RELOADED\DVD2\rld-me2b.r32.bc! Object is locked skipped

C:\Program Files\BitComet\Downloads\Medieval.2.Total.War-RELOADED\DVD2\rld-me2b.r33.bc! Object is locked skipped

C:\Program Files\BitComet\Downloads\Medieval.2.Total.War-RELOADED\DVD2\rld-me2b.r34.bc! Object is locked skipped

C:\Program Files\BitComet\Downloads\Medieval.2.Total.War-RELOADED\DVD2\rld-me2b.r35.bc! Object is locked skipped

C:\Program Files\BitComet\Downloads\Medieval.2.Total.War-RELOADED\DVD2\rld-me2b.r36.bc! Object is locked skipped

C:\Program Files\BitComet\Downloads\Medieval.2.Total.War-RELOADED\DVD2\rld-me2b.r37.bc! Object is locked skipped

C:\Program Files\BitComet\Downloads\Medieval.2.Total.War-RELOADED\DVD2\rld-me2b.r38.bc! Object is locked skipped

C:\Program Files\BitComet\Downloads\Medieval.2.Total.War-RELOADED\DVD2\rld-me2b.r39.bc! Object is locked skipped

C:\Program Files\BitComet\Downloads\Medieval.2.Total.War-RELOADED\DVD2\rld-me2b.r40.bc! Object is locked skipped

C:\Program Files\BitComet\Downloads\Medieval.2.Total.War-RELOADED\DVD2\rld-me2b.r41.bc! Object is locked skipped

C:\Program Files\BitComet\Downloads\Medieval.2.Total.War-RELOADED\DVD2\rld-me2b.r42.bc! Object is locked skipped

C:\Program Files\BitComet\Downloads\Medieval.2.Total.War-RELOADED\DVD2\rld-me2b.r43.bc! Object is locked skipped

C:\Program Files\BitComet\Downloads\Medieval.2.Total.War-RELOADED\DVD2\rld-me2b.r44.bc! Object is locked skipped

C:\Program Files\BitComet\Downloads\Medieval.2.Total.War-RELOADED\DVD2\rld-me2b.r45.bc! Object is locked skipped

C:\Program Files\BitComet\Downloads\Medieval.2.Total.War-RELOADED\DVD2\rld-me2b.r46.bc! Object is locked skipped

C:\Program Files\BitComet\Downloads\Medieval.2.Total.War-RELOADED\DVD2\rld-me2b.r47.bc! Object is locked skipped

C:\Program Files\BitComet\Downloads\Medieval.2.Total.War-RELOADED\DVD2\rld-me2b.r48.bc! Object is locked skipped

C:\Program Files\BitComet\Downloads\Medieval.2.Total.War-RELOADED\DVD2\rld-me2b.r49.bc! Object is locked skipped

C:\Program Files\BitComet\Downloads\Medieval.2.Total.War-RELOADED\DVD2\rld-me2b.r50.bc! Object is locked skipped

C:\Program Files\BitComet\Downloads\Medieval.2.Total.War-RELOADED\DVD2\rld-me2b.r51.bc! Object is locked skipped

C:\Program Files\BitComet\Downloads\Medieval.2.Total.War-RELOADED\DVD2\rld-me2b.r52.bc! Object is locked skipped

C:\Program Files\BitComet\Downloads\Medieval.2.Total.War-RELOADED\DVD2\rld-me2b.r53.bc! Object is locked skipped

C:\Program Files\BitComet\Downloads\Medieval.2.Total.War-RELOADED\DVD2\rld-me2b.r54.bc! Object is locked skipped

C:\Program Files\BitComet\Downloads\Medieval.2.Total.War-RELOADED\DVD2\rld-me2b.r55.bc! Object is locked skipped

C:\Program Files\BitComet\Downloads\Medieval.2.Total.War-RELOADED\DVD2\rld-me2b.r56.bc! Object is locked skipped

C:\Program Files\BitComet\Downloads\Medieval.2.Total.War-RELOADED\DVD2\rld-me2b.r57.bc! Object is locked skipped

C:\Program Files\BitComet\Downloads\Medieval.2.Total.War-RELOADED\DVD2\rld-me2b.r58.bc! Object is locked skipped

C:\Program Files\BitComet\Downloads\Medieval.2.Total.War-RELOADED\DVD2\rld-me2b.r59.bc! Object is locked skipped

C:\Program Files\BitComet\Downloads\Medieval.2.Total.War-RELOADED\DVD2\rld-me2b.r60.bc! Object is locked skipped

C:\Program Files\BitComet\Downloads\Medieval.2.Total.War-RELOADED\DVD2\rld-me2b.r61.bc! Object is locked skipped

C:\Program Files\BitComet\Downloads\Medieval.2.Total.War-RELOADED\DVD2\rld-me2b.r62.bc! Object is locked skipped

C:\Program Files\BitComet\Downloads\Medieval.2.Total.War-RELOADED\DVD2\rld-me2b.r63.bc! Object is locked skipped

C:\Program Files\BitComet\Downloads\Medieval.2.Total.War-RELOADED\DVD2\rld-me2b.r64.bc! Object is locked skipped

C:\Program Files\BitComet\Downloads\Medieval.2.Total.War-RELOADED\DVD2\rld-me2b.r65.bc! Object is locked skipped

C:\Program Files\BitComet\Downloads\Medieval.2.Total.War-RELOADED\DVD2\rld-me2b.r66.bc! Object is locked skipped

C:\Program Files\BitComet\Downloads\Medieval.2.Total.War-RELOADED\DVD2\rld-me2b.r67.bc! Object is locked skipped

C:\Program Files\BitComet\Downloads\Medieval.2.Total.War-RELOADED\DVD2\rld-me2b.r68.bc! Object is locked skipped

C:\Program Files\BitComet\Downloads\Medieval.2.Total.War-RELOADED\DVD2\rld-me2b.r69.bc! Object is locked skipped

C:\Program Files\BitComet\Downloads\Medieval.2.Total.War-RELOADED\DVD2\rld-me2b.r70.bc! Object is locked skipped

C:\Program Files\BitComet\Downloads\Medieval.2.Total.War-RELOADED\DVD2\rld-me2b.rar.bc! Object is locked skipped

C:\Program Files\BitComet\Downloads\Star Wars KOTOR\CD1\RZR-KTR1.BIN.bc! Object is locked skipped

C:\Program Files\BitComet\Downloads\Star Wars KOTOR\CD2\RZR-KTR2.BIN.bc! Object is locked skipped

C:\Program Files\BitComet\Downloads\Star Wars KOTOR\CD3\RZR-KTR3.BIN.bc! Object is locked skipped

C:\Program Files\BitComet\Downloads\Star Wars KOTOR\CD4\RZR-KTR4.BIN.bc! Object is locked skipped

C:\System Volume Information\MountPointManagerRemoteDatabase Object is locked skipped

C:\System Volume Information\_restore{05FE1818-9430-4D14-88CF-916218336900}\RP334\A0100475.EXE/data0000.cab/14XR6~1.EXE Infected: Backdoor.Win32.Agobot.pdh skipped

C:\System Volume Information\_restore{05FE1818-9430-4D14-88CF-916218336900}\RP334\A0100475.EXE/data0000.cab Infected: Backdoor.Win32.Agobot.pdh skipped

C:\System Volume Information\_restore{05FE1818-9430-4D14-88CF-916218336900}\RP334\A0100475.EXE Rsrc-Package: infected - 2 skipped

C:\System Volume Information\_restore{05FE1818-9430-4D14-88CF-916218336900}\RP348\A0105011.exe Object is locked skipped

C:\System Volume Information\_restore{05FE1818-9430-4D14-88CF-916218336900}\RP350\change.log Object is locked skipped

C:\WINDOWS\Debug\PASSWD.LOG Object is locked skipped

C:\WINDOWS\SchedLgU.Txt Object is locked skipped

C:\WINDOWS\SoftwareDistribution\ReportingEvents.log Object is locked skipped

C:\WINDOWS\Sti_Trace.log Object is locked skipped

C:\WINDOWS\system32\CatRoot2\edb.log Object is locked skipped

C:\WINDOWS\system32\CatRoot2\tmp.edb Object is locked skipped

C:\WINDOWS\system32\config\ACEEvent.evt Object is locked skipped

C:\WINDOWS\system32\config\AppEvent.Evt Object is locked skipped

C:\WINDOWS\system32\config\default Object is locked skipped

C:\WINDOWS\system32\config\default.LOG Object is locked skipped

C:\WINDOWS\system32\config\Internet.evt Object is locked skipped

C:\WINDOWS\system32\config\SAM Object is locked skipped

C:\WINDOWS\system32\config\SAM.LOG Object is locked skipped

C:\WINDOWS\system32\config\SecEvent.Evt Object is locked skipped

C:\WINDOWS\system32\config\SECURITY Object is locked skipped

C:\WINDOWS\system32\config\SECURITY.LOG Object is locked skipped

C:\WINDOWS\system32\config\software Object is locked skipped

C:\WINDOWS\system32\config\software.LOG Object is locked skipped

C:\WINDOWS\system32\config\SysEvent.Evt Object is locked skipped

C:\WINDOWS\system32\config\system Object is locked skipped

C:\WINDOWS\system32\config\system.LOG Object is locked skipped

C:\WINDOWS\system32\drivers\sptd.sys Object is locked skipped

C:\WINDOWS\system32\h323log.txt Object is locked skipped

C:\WINDOWS\system32\wbem\Repository\FS\INDEX.BTR Object is locked skipped

C:\WINDOWS\system32\wbem\Repository\FS\INDEX.MAP Object is locked skipped

C:\WINDOWS\system32\wbem\Repository\FS\MAPPING.VER Object is locked skipped

C:\WINDOWS\system32\wbem\Repository\FS\MAPPING1.MAP Object is locked skipped

C:\WINDOWS\system32\wbem\Repository\FS\MAPPING2.MAP Object is locked skipped

C:\WINDOWS\system32\wbem\Repository\FS\OBJECTS.DATA Object is locked skipped

C:\WINDOWS\system32\wbem\Repository\FS\OBJECTS.MAP Object is locked skipped

C:\WINDOWS\wiadebug.log Object is locked skipped

C:\WINDOWS\wiaservc.log Object is locked skipped

C:\WINDOWS\WindowsUpdate.log Object is locked skipped

F:\System Volume Information\MountPointManagerRemoteDatabase Object is locked skipped

Scan process completed.


Report Offensive Follow Up For Removal

Response Number 5
Name: Adii
Date: April 4, 2008 at 04:25:15 Pacific
Subject: win32/generic.a help plz
Reply: (edit)
Show all hidden files and folders to remove following file.

Remove following file:

C:\System Volume Information\_restore{05FE1818-9430-4D14-88CF-916218336900}\RP334\A0100475.EXE/data0000.cab

Please download ATF Cleaner by Atribune. (This program is for XP and Windows 2000 only)

Download: http://www.atribune.org/ccount/clic...

Double-click ATF-Cleaner.exe to run the program.
Under Main "Select Files to Delete" choose: Select All.
Click the Empty Selected button.

If you use Firefox browser

Click Firefox at the top and choose: Select All
Click the Empty Selected button.
NOTE: If you would like to keep your saved passwords, please click No at the prompt.

If you use Opera browser

Click Opera at the top and choose: Select All
Click the Empty Selected button.
NOTE: If you would like to keep your saved passwords, please click No at the prompt.
Click Exit on the Main menu to close the program.


THEN:

Now Update SuperAntispyware and Windows Defender and scan with latest database. If they find anything, fix it! If you could post its Log then post it in next reply.

*Do Safe Computing*


Report Offensive Follow Up For Removal

Response Number 6
Name: mrflibbles1980
Date: April 4, 2008 at 07:01:19 Pacific
Subject: win32/generic.a help plz
Reply: (edit)
i cant seem to find the file,i go into c:\ drive but i dont have a file named System Volume Information

Report Offensive Follow Up For Removal

Response Number 7
Name: mrflibbles1980
Date: April 4, 2008 at 16:35:36 Pacific
Subject: win32/generic.a help plz
Reply: (edit)
after fumbling around a bit ive managed to locate the folder but i cant access it is keeps saying access is denied,and when i mouse over the folder it says its empty.is there some other way to access this folder?

ive also tryed searching for the file that u asked me to delete but its not finding it.


Report Offensive Follow Up For Removal

Response Number 8
Name: Adii
Date: April 4, 2008 at 23:33:35 Pacific
Subject: win32/generic.a help plz
Reply: (edit)
Sorry, You need to Unhide Operating system files first:

To do this:

Open My Computer.
Go to Tools Menu and click Folder Options.
Click View Tab, in Advance Settings Uncheck "Hide protected operating system files (recomended)"

Now locate that file and delete as i told you in previous post.

OR:

Open Run box from start menu and type following string and press enter:

C:\System Volume Information\_restore{05FE1818-9430-4D14-88CF-916218336900}\RP334

you will access directly this path. now locate and delete that file.

Let me know.

*Do Safe Computing*


Report Offensive Follow Up For Removal

Response Number 9
Name: mrflibbles1980
Date: April 6, 2008 at 04:50:04 Pacific
Subject: win32/generic.a help plz
Reply: (edit)
Thx very much Adii,youve been a great help.ran all the scans again including the kaspersky online scanner and everything came back clean.

regards and respect M


Report Offensive Follow Up For Removal

Response Number 10
Name: Adii
Date: April 6, 2008 at 08:23:53 Pacific
Subject: win32/generic.a help plz
Reply: (edit)
Thats Gud!!

FEW THINGS TO DO FOR YOUR FURTHER PC PROTECTION.


In order to protect yourself against spyware, you should consider installing and running the following free programs:


How to prevent further spyware/virus infection:
read here:
http://spywaredetail.com/steps.htm
http://spywaredetail.com/tips.htm


Visit Microsoft's Windows Update Site Frequently:
It is important that you visit http://www.windowsupdate.com regularly. This will ensure your computer has always the latest security updates available installed on your computer. If there are new updates to install, install them immediately, reboot your computer, and revisit the site until there are no more critical updates.


Install AVG Anti-Virus Free Edition:
AVG Free Edition is the well known antivirus protection tool and provides the high level of detection capability.

Download: http://free.grisoft.com


Install Ad-Aware 2007:
Install and download Ad-Aware. ou should also scan your computer with program on a regular basis just as you would an antivirus software in conjunction with Spybot.

Download: http://www.lavasoftusa.com/products...

Install Spybot Search and Destroy:
Install and download Spybot - Search and Destroy with its TeaTimer option.
This will provide real-time spyware & hijacker protection on your computer alongside your virus protection. You should also scan your computer with program on a regular basis just as you would an anti virus software.

Download: http://www.safer-networking.org/en/...

Install SpywareBlaster:
SpywareBlaster will added a large list of programs and sites into your Internet Explorer settings that will protect you from running and downloading known malicious programs.

Download: http://www.javacoolsoftware.com/spy...

Install SpywareGuard:
SpywareGuard provides a real-time protection solution against spyware.

Download: http://www.javacoolsoftware.com/spy...

Install IE/Spyad:
It places over 5000 malicious websites and domains in your IE's restricted zone.

Download: http://www.spywarewarrior.com/uiuc/...


Update all these programs regularly - Make sure you update all the programs I have listed regularly. Without regular updates you WILL NOT be protected when new malicious programs are released.


NOTE:Please take these recommendations seriously! These few simple steps can stave off the vast majority of spyware problems.

*Do Safe Computing*


Report Offensive Follow Up For Removal

Response Number 11
Name: mrflibbles1980
Date: April 8, 2008 at 06:39:49 Pacific
Subject: win32/generic.a help plz
Reply: (edit)
thx for that hopfully this will save me these problems in the future...and save u xD

thx again for all ur help

M


Report Offensive Follow Up For Removal

Response Number 12
Name: robman18
Date: April 9, 2008 at 15:52:33 Pacific
Subject: win32/generic.a help plz
Reply: (edit)
i have the same problem, I have defender and spyware terminator installed, should I remove spyware terminator first? then do I follow the same instructions or would you need to see the results of the scan?

Report Offensive Follow Up For Removal

Response Number 13
Name: robman18
Date: April 9, 2008 at 19:29:19 Pacific
Subject: win32/generic.a help plz
Reply: (edit)
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 10:23:58 PM, on 4/9/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16640)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Windows Defender\MsMpEng.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe
C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe
C:\WINDOWS\system32\CTsvcCDA.EXE
C:\Program Files\Common Files\Microsoft Shared\VS7Debug\mdm.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\Program Files\Spyware Terminator\sp_rsser.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\MsPMSPSv.exe
C:\WINDOWS\system32\devldr32.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\CTHELPER.EXE
C:\Program Files\Common Files\Microsoft Shared\Works Shared\WkUFind.exe
C:\Program Files\Microsoft IntelliPoint\point32.exe
C:\Program Files\Microsoft IntelliType Pro\type32.exe
C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe
C:\PROGRA~1\Sony\SONICS~1\SsAAD.exe
C:\Program Files\Roxio\Easy Media Creator 7\Drag to Disc\DrgToDsc.exe
C:\WINDOWS\SM1BG.EXE
C:\Program Files\Common Files\Logitech\QCDriver\LVCOMS.EXE
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\Program Files\DAEMON Tools\daemon.exe
C:\WINDOWS\system32\RUNDLL32.EXE
C:\Program Files\Creative\SBLive\Creative Diagnostics 2.0\DIAGENT.EXE
C:\Program Files\Common Files\Sony Shared\AVLib\SSScsiSV.exe
C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIAEA.EXE
C:\Program Files\Nokia\Nokia PC Suite 6\Launch Application 2.exe
C:\PROGRA~1\COMMON~1\PCSuite\DATALA~1\DATALA~1.EXE
C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe
C:\Program Files\Windows Defender\MSASCui.exe
C:\Program Files\Adobe\Photoshop Album Starter Edition\3.2\Apps\apdproxy.exe
C:\Program Files\Spyware Terminator\SpywareTerminatorShield.exe
C:\Program Files\Messenger\msmsgs.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\PROGRA~1\COMMON~1\PCSuite\Services\SERVIC~1.EXE
C:\Program Files\Common Files\Microsoft Shared\Works Shared\wkcalrem.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\PROGRA~1\Crawler\Toolbar\CToolbar.exe
C:\Program Files\Windows Media Player\wmplayer.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://canadiens.nhl.com/index.html
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ca.yahoo.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://ca.rd.yahoo.com/customize/ie...
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://ca.rd.yahoo.com/customize/ie...
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://ca.yahoo.com
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://ca.rd.yahoo.com/customize/ie...
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {1CB20BF0-BBAE-40A7-93F4-6435FF3D0411} - C:\PROGRA~1\Crawler\Toolbar\ctbr.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.0.301.7164\swg.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O3 - Toolbar: &Crawler Toolbar - {4B3803EA-5230-4DC3-A7FC-33638F3D3542} - C:\PROGRA~1\Crawler\Toolbar\ctbr.dll
O4 - HKLM\..\Run: [WINDVDPatch] CTHELPER.EXE
O4 - HKLM\..\Run: [Jet Detection] "C:\Program Files\Creative\SBLive\PROGRAM\ADGJDet.exe"
O4 - HKLM\..\Run: [WorksFUD] C:\Program Files\Microsoft Works\wkfud.exe
O4 - HKLM\..\Run: [Microsoft Works Portfolio] C:\Program Files\Microsoft Works\WksSb.exe /AllUsers
O4 - HKLM\..\Run: [Microsoft Works Update Detection] C:\Program Files\Common Files\Microsoft Shared\Works Shared\WkUFind.exe
O4 - HKLM\..\Run: [IntelliPoint] "C:\Program Files\Microsoft IntelliPoint\point32.exe"
O4 - HKLM\..\Run: [type32] "C:\Program Files\Microsoft IntelliType Pro\type32.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [SsAAD.exe] C:\PROGRA~1\Sony\SONICS~1\SsAAD.exe
O4 - HKLM\..\Run: [RoxioDragToDisc] "C:\Program Files\Roxio\Easy Media Creator 7\Drag to Disc\DrgToDsc.exe"
O4 - HKLM\..\Run: [SM1BG] C:\WINDOWS\SM1BG.EXE
O4 - HKLM\..\Run: [LVCOMS] C:\Program Files\Common Files\Logitech\QCDriver\LVCOMS.EXE
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [DAEMON Tools] "C:\Program Files\DAEMON Tools\daemon.exe" -lang 1033
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [DIAGENT] C:\Program Files\Creative\SBLive\Creative Diagnostics 2.0\DIAGENT.EXE startup
O4 - HKLM\..\Run: [AHQInit] C:\Program Files\Creative\SBLive\Program\AHQInit.exe
O4 - HKLM\..\Run: [DevconDefaultDB] C:\WINDOWS\READREG /PSCONV={NO} /NO_DEFPS
O4 - HKLM\..\Run: [KernelFaultCheck] C:\WINDOWS\system32\dumprep 0 -k
O4 - HKLM\..\Run: [EPSON Stylus CX4200 Series] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIAEA.EXE /P26 "EPSON Stylus CX4200 Series" /O6 "USB001" /M "Stylus CX4200"
O4 - HKLM\..\Run: [PCSuiteTrayApplication] C:\Program Files\Nokia\Nokia PC Suite 6\Launch Application 2.exe -onlytray
O4 - HKLM\..\Run: [DataLayer] C:\PROGRA~1\COMMON~1\PCSuite\DATALA~1\DATALA~1.EXE
O4 - HKLM\..\Run: [AVG7_CC] C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe /STARTUP
O4 - HKLM\..\Run: [Windows Defender] "C:\Program Files\Windows Defender\MSASCui.exe" -hide
O4 - HKLM\..\Run: [Adobe Photo Downloader] "C:\Program Files\Adobe\Photoshop Album Starter Edition\3.2\Apps\apdproxy.exe"
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [SpywareTerminator] "C:\Program Files\Spyware Terminator\SpywareTerminatorShield.exe"
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [SetDefaultMIDI] MIDIDef.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKUS\S-1-5-19\..\Run: [AVG7_Run] C:\PROGRA~1\Grisoft\AVGFRE~1\avgw.exe /RUNONCE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [AVG7_Run] C:\PROGRA~1\Grisoft\AVGFRE~1\avgw.exe /RUNONCE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [AVG7_Run] C:\PROGRA~1\Grisoft\AVGFRE~1\avgw.exe /RUNONCE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [AVG7_Run] C:\PROGRA~1\Grisoft\AVGFRE~1\avgw.exe /RUNONCE (User 'Default user')
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O4 - Global Startup: Microsoft Works Calendar Reminders.lnk = ?
O8 - Extra context menu item: Crawler Search - tbr:iemenu
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~4\Office10\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O9 - Extra button: PartyPoker.com - {B7FE5D70-9AA2-40F1-9C6B-12A255F085E1} - C:\Program Files\PartyPoker\PartyPoker.exe (file missing)
O9 - Extra 'Tools' menuitem: PartyPoker.com - {B7FE5D70-9AA2-40F1-9C6B-12A255F085E1} - C:\Program Files\PartyPoker\PartyPoker.exe (file missing)
O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\system32\Shdocvw.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Yahoo! Messenger - {E5D12C4E-7B4F-11D3-B5C9-0050045C3C96} - C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe
O9 - Extra 'Tools' menuitem: Yahoo! Messenger - {E5D12C4E-7B4F-11D3-B5C9-0050045C3C96} - C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe
O9 - Extra button: Bodog Poker - {F47C1DB5-ED21-4dc1-853E-D1495792D4C5} - C:\Program Files\Bodog Poker\BPGame.exe (file missing)
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O15 - Trusted Zone: http://download.windowsupdate.com
O16 - DPF: {05D44720-58E3-49E6-BDF6-D00330E511D3} (StagingUI Object) - http://zone.msn.com/binFrameWork/v1...
O16 - DPF: {149E45D8-163E-4189-86FC-45022AB2B6C9} (SpinTop DRM Control) - file:///C:/Program%20Files/Monopoly/Images/stg_drm.ocx
O16 - DPF: {1F2F4C9E-6F09-47BC-970D-3C54734667FE} (LSSupCtl Class) - http://www.symantec.com/techsupp/as...
O16 - DPF: {200B3EE9-7242-4EFD-B1E4-D97EE825BA53} (VerifyGMN Class) - http://h20270.www2.hp.com/ediags/gm...
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:\Program Files\Yahoo!\Common\yinsthelper.dll
O16 - DPF: {31B7EB4E-8B4B-11D1-A789-00A0CC6651A8} (Cult3D ActiveX Player) - http://www.cult3d.com/download/cult...
O16 - DPF: {3451DEDE-631F-421C-8127-FD793AFC6CC8} - http://www.symantec.com/techsupp/as...
O16 - DPF: {360E40AA-EE8B-4101-BA67-0CAD3F7A48DD} (Nyoko Downloader Class) - http://www.riverbellepoker.com/down...
O16 - DPF: {3BB54395-5982-4788-8AF4-B5388FFDD0D8} (ZoneBuddy Class) - http://zone.msn.com/BinFrameWork/v1...
O16 - DPF: {44990200-3C9D-426D-81DF-AAB636FA4345} - http://www.symantec.com/techsupp/as...
O16 - DPF: {44990301-3C9D-426D-81DF-AAB636FA4345} - http://www.symantec.com/techsupp/as...
O16 - DPF: {5736C456-EA94-4AAC-BB08-917ABDD035B3} (ZonePAChat Object) - http://zone.msn.com/binframework/v1...
O16 - DPF: {5F8469B4-B055-49DD-83F7-62B522420ECC} (Facebook Photo Uploader Control) - http://upload.facebook.com/controls...
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windows...
O16 - DPF: {67DABFBF-D0AB-41FA-9C46-CC0F21721616} (DivXBrowserPlugin Object) - http://download.divx.com/player/Div...
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microso...
O16 - DPF: {7E980B9B-8AE5-466A-B6D6-DA8CF814E78A} (MJLauncherCtrl Class) - http://zone.msn.com/bingame/luxr/de...
O16 - DPF: {9BDF4724-10AA-43D5-BD15-AEA0D2287303} (ZPA_TexasHoldem Object) - http://zone.msn.com/bingame/zpagame...
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (ZoneIntro Class) - http://cdn2.zone.msn.com/binFramewo...
O16 - DPF: {CC450D71-CC90-424C-8638-1F2DBAC87A54} (ArmHelper Control) - file:///C:/Program%20Files/Monopoly/Images/armhelper.ocx
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/g...
O16 - DPF: {DA2AA6CF-5C7A-4B71-BC3B-C771BB369937} (StadiumProxy Class) - http://zone.msn.com/binframework/v1...
O16 - DPF: {FF3C5A9F-5A99-4930-80E8-4709194C2AD3} (ZPA_Backgammon Object) - http://zone.msn.com/bingame/zpagame...
O18 - Protocol: tbr - {4D25FB7A-8902-4291-960E-9ADA051CFBBF} - C:\PROGRA~1\Crawler\Toolbar\ctbr.dll
O23 - Service: Autodesk Licensing Service - Autodesk - C:\Program Files\Common Files\Autodesk Shared\Service\AdskScSrv.exe
O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe
O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe
O23 - Service: Creative Service for CDROM Access - Creative Technology Ltd - C:\WINDOWS\system32\CTsvcCDA.EXE
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: MSCSPTISRV - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AVLib\MSCSPTISRV.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: PACSPTISVR - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AVLib\PACSPTISVR.exe
O23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AVLib\SPTISRV.exe
O23 - Service: Spyware Terminator Realtime Shield Service (sp_rssrv) - Crawler.com - C:\Program Files\Spyware Terminator\sp_rsser.exe
O23 - Service: SonicStage SCSI Service (SSScsiSV) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AVLib\SSScsiSV.exe

--
End of file - 14209 bytes


Report Offensive Follow Up For Removal



Use following form to reply to current message: 

   Name: From My Computing.Net Settings
 E-Mail: From My Computing.Net Settings

Subject: win32/generic.a help plz

Comments:
         

 
  Homepage URL (*): 
Homepage Title (*): 
         Image URL:
 


Data Recovery Software



Version Tracker Pro
Keep your software current and secure, effortlessly
Click Here for a Free Scan

Driver Agent
Automatically find the latest drivers for your computer.
 Click Here for a Free Scan

The information on Computing.Net is the opinions of its users. Such opinions may not be accurate and they are to be used at your own risk. Computing.Net cannot verify the validity of the statements made on this site. Computing.Net and Computing.Net, LLC hereby disclaim all responsibility and liability for the content of Computing.Net and its accuracy.
PLEASE READ THE FULL DISCLAIMER AND LEGAL TERMS BY CLICKING HERE

All content ©1996-2007 Computing.Net, LLC