Solved Do I have the w32 Blaster?

[cottonball]

How is it going, Prescottbob?

Double-click the SAS icon on the Desktop to open the program.

At the main program console which appears, click: View Scan Logs

It opens in Notepad...
Here, on the top left, go to: Edit > Select all
Go back to: Edit > Copy

Now, press the Post Reply button on this thread, place the mouse cursor and right-click inside the box where the text goes, and select: Paste

That should do it for you.

Then, press: Submit Reply

Once the report is posted, we can proceed with whatever action is needed to get your system cleaned up.

 

[Prescottbob]

are Scan Log
SUPERAntiSpyware | Remove Malware | Remove Spyware - AntiMalware, AntiSpyware, AntiAdware!
Generated 05/06/2013 at 10:13 PM
Application Version : 5.5.1016
Core Rules Database Version : 10361
Trace Rules Database Version: 8173
re Scan Log
SUPERAntiSpyware | Remove Malware | Remove Spyware - AntiMalware, AntiSpyware, AntiAdware!
Generated 05/06/2013 at 10:13 PM
Application Version : 5.5.1016
Core Rules Database Version : 10361
Trace Rules Database Version: 8173
Scan type : Complete Scan
Total Scan Time : 05:06:55
Operating System Information
Windows 7 Home Premium 64-bit, Service Pack 1 (Build 6.01.7601)
UAC Off - Administrator
Memory items scanned : 467
Memory threats detected : 0
Registry items scanned : 74612
Registry threats detected : 0
File items scanned : 628820
File threats detected : 125
Adware.Tracking Cookie
C:\Users\Binnie\AppData\Roaming\Microsoft\Windows\Cookies\[email protected][1].txt [ /a1.interclick ]
C:\Users\Binnie\AppData\Roaming\Microsoft\Windows\Cookies\[email protected][2].txt [ /ad.wsod ]
C:\Users\Binnie\AppData\Roaming\Microsoft\Windows\Cookies\binnie@adbrite[1].txt [ /adbrite ]
C:\Users\Binnie\AppData\Roaming\Microsoft\Windows\Cookies\binnie@adecn[1].txt [ /adecn ]
C:\Users\Binnie\AppData\Roaming\Microsoft\Windows\Cookies\[email protected][1].txt [ /ads.pointroll ]
C:\Users\Binnie\AppData\Roaming\Microsoft\Windows\Cookies\[email protected][1].txt [ /adserver.adtechus ]
C:\Users\Binnie\AppData\Roaming\Microsoft\Windows\Cookies\binnie@advertising[2].txt [ /advertising ]
C:\Users\Binnie\AppData\Roaming\Microsoft\Windows\Cookies\[email protected][2].txt [ /at.atwola ]
C:\Users\Binnie\AppData\Roaming\Microsoft\Windows\Cookies\binnie@clickorlando[1].txt [ /clickorlando ]
C:\Users\Binnie\AppData\Roaming\Microsoft\Windows\Cookies\[email protected][2].txt [ /content.yieldmanager ]
C:\Users\Binnie\AppData\Roaming\Microsoft\Windows\Cookies\binnie@findingjoymovie[1].txt [ /findingjoymovie ]
C:\Users\Binnie\AppData\Roaming\Microsoft\Windows\Cookies\binnie@holidayinsights[1].txt [ /holidayinsights ]
C:\Users\Binnie\AppData\Roaming\Microsoft\Windows\Cookies\binnie@interclick[2].txt [ /interclick ]
C:\Users\Binnie\AppData\Roaming\Microsoft\Windows\Cookies\[email protected][2].txt [ /intuitinc.122.2o7 ]
C:\Users\Binnie\AppData\Roaming\Microsoft\Windows\Cookies\binnie@legolas-media[1].txt [ /legolas-media ]
C:\Users\Binnie\AppData\Roaming\Microsoft\Windows\Cookies\binnie@media6degrees[1].txt [ /media6degrees ]
C:\Users\Binnie\AppData\Roaming\Microsoft\Windows\Cookies\binnie@mediabrandsww[2].txt [ /mediabrandsww ]
C:\Users\Binnie\AppData\Roaming\Microsoft\Windows\Cookies\[email protected][1].txt [ /microsoftwllivemkt.112.2o7 ]
C:\Users\Binnie\AppData\Roaming\Microsoft\Windows\Cookies\[email protected][1].txt [ /msnportal.112.2o7 ]
C:\Users\Binnie\AppData\Roaming\Microsoft\Windows\Cookies\binnie@pointroll[2].txt [ /pointroll ]
C:\Users\Binnie\AppData\Roaming\Microsoft\Windows\Cookies\[email protected][2].txt [ /r1-ads.ace.advertising ]
C:\Users\Binnie\AppData\Roaming\Microsoft\Windows\Cookies\binnie@ru4[2].txt [ /ru4 ]
C:\Users\Binnie\AppData\Roaming\Microsoft\Windows\Cookies\binnie@specificclick[2].txt [ /specificclick ]
C:\Users\Binnie\AppData\Roaming\Microsoft\Windows\Cookies\binnie@specificmedia[1].txt [ /specificmedia ]
C:\Users\Binnie\AppData\Roaming\Microsoft\Windows\Cookies\binnie@tacoda[2].txt [ /tacoda ]
C:\Users\Binnie\AppData\Roaming\Microsoft\Windows\Cookies\[email protected][1].txt [ /track.claimfreerewards ]
C:\Users\Binnie\AppData\Roaming\Microsoft\Windows\Cookies\[email protected][1].txt [ /tracking.foxnews ]
C:\Users\Binnie\AppData\Roaming\Microsoft\Windows\Cookies\[email protected][2].txt [ /web4.realtracker ]
C:\Users\Binnie\AppData\Roaming\Microsoft\Windows\Cookies\binnie@yieldmanager[1].txt [ /yieldmanager ]
C:\Users\Binnie\AppData\Roaming\Microsoft\Windows\Cookies\[email protected][1].txt [ /z.blogads ]
C:\Users\Binnie\AppData\Roaming\Microsoft\Windows\Cookies\W3CPCANV.txt [ /lucidmedia.com ]
C:\Users\Binnie\AppData\Roaming\Microsoft\Windows\Cookies\WD3BDNS7.txt [ /mediaplex.com ]
C:\Users\Binnie\AppData\Roaming\Microsoft\Windows\Cookies\J31Q5FZG.txt [ /apmebf.com ]
C:\Users\Binnie\AppData\Roaming\Microsoft\Windows\Cookies\DLJQ9MWE.txt [ /www.brassandsilvertraditions.com ]
C:\Users\Binnie\AppData\Roaming\Microsoft\Windows\Cookies\69T5FB29.txt [ /findlaw.com ]
C:\Users\Binnie\AppData\Roaming\Microsoft\Windows\Cookies\binnie@rambler[1].txt [ /rambler.ru ]
C:\Users\Binnie\AppData\Roaming\Microsoft\Windows\Cookies\QQ9NDE9V.txt [ /thefind.com ]
C:\Users\Binnie\AppData\Roaming\Microsoft\Windows\Cookies\VN7M1SES.txt [ /doubleclick.net ]
C:\Users\Binnie\AppData\Roaming\Microsoft\Windows\Cookies\R50GUDGP.txt [ /findanopportunity.net ]
C:\Users\Binnie\AppData\Roaming\Microsoft\Windows\Cookies\XC5VTDAK.txt [ /www.mediabistro.com ]
C:\Users\Binnie\AppData\Roaming\Microsoft\Windows\Cookies\I6544X2G.txt [ /insightexpressai.com ]
C:\Users\Binnie\AppData\Roaming\Microsoft\Windows\Cookies\[email protected][2].txt [ /www.rambler.ru ]
C:\Users\Binnie\AppData\Roaming\Microsoft\Windows\Cookies\NJHGMDZX.txt [ /homesteadtechnologies.122.2o7.net ]
C:\Users\Binnie\AppData\Roaming\Microsoft\Windows\Cookies\WAORZ24M.txt [ /invitemedia.com ]
C:\Users\Binnie\AppData\Roaming\Microsoft\Windows\Cookies\NB3RV81A.txt [ /revsci.net ]
C:\Users\Binnie\AppData\Roaming\Microsoft\Windows\Cookies\CVU0P27I.txt [ /imrworldwide.com ]
C:\Users\Binnie\AppData\Roaming\Microsoft\Windows\Cookies\FBKHKWHF.txt [ /c1.atdmt.com ]
C:\Users\Binnie\AppData\Roaming\Microsoft\Windows\Cookies\A0VLC69T.txt [ /atdmt.com ]
C:\Users\Binnie\AppData\Roaming\Microsoft\Windows\Cookies\Y9CIHQK9.txt [ /h.atdmt.com ]
C:\Users\Binnie\AppData\Roaming\Microsoft\Windows\Cookies\BODSIMBE.txt [ /collective-media.net ]
C:\Users\Binnie\AppData\Roaming\Microsoft\Windows\Cookies\J97V447L.txt [ /serving-sys.com ]
C:\Users\Binnie\AppData\Roaming\Microsoft\Windows\Cookies\EWKLFDKU.txt [ /click2houston.com ]
C:\Users\Binnie\AppData\Roaming\Microsoft\Windows\Cookies\W83NOFM2.txt [ /www.googleadservices.com ]
C:\Users\Binnie\AppData\Roaming\Microsoft\Windows\Cookies\I3XT6NVX.txt [ /c.atdmt.com ]
a.ads2.msads.net [ C:\USERS\BINNIE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\M8MRG4PR ]
ad.insightexpressai.com [ C:\USERS\BINNIE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\M8MRG4PR ]
ads2.msads.net [ C:\USERS\BINNIE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\M8MRG4PR ]
art.aim4media.com [ C:\USERS\BINNIE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\M8MRG4PR ]
b.ads2.msads.net [ C:\USERS\BINNIE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\M8MRG4PR ]
cdn.gotraffic.net [ C:\USERS\BINNIE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\M8MRG4PR ]
cdn.insights.gravity.com [ C:\USERS\BINNIE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\M8MRG4PR ]
cdn.tremormedia.com [ C:\USERS\BINNIE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\M8MRG4PR ]
cdn4.specificclick.net [ C:\USERS\BINNIE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\M8MRG4PR ]
cdnx.tribalfusion.com [ C:\USERS\BINNIE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\M8MRG4PR ]
cloudfront.mediamatters.org [ C:\USERS\BINNIE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\M8MRG4PR ]
content.oddcast.com [ C:\USERS\BINNIE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\M8MRG4PR ]
content.yieldmanager.edgesuite.net [ C:\USERS\BINNIE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\M8MRG4PR ]
convoad.technoratimedia.com [ C:\USERS\BINNIE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\M8MRG4PR ]
convoad.technoratimedia.net [ C:\USERS\BINNIE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\M8MRG4PR ]
core.insightexpressai.com [ C:\USERS\BINNIE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\M8MRG4PR ]
core.saymedia.com [ C:\USERS\BINNIE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\M8MRG4PR ]
ds.s
Scan type : Complete Scan
Total Scan Time : 05:06:55
Operating System Information
Windows 7 Home Premium 64-bit, Service Pack 1 (Build 6.01.7601)
UAC Off - Administrator
Memory items scanned : 467
Memory threats detected : 0
Registry items scanned : 74612
Registry threats detected : 0
File items scanned : 628820
File threats detected : 125
Adware.Tracking Cookie
C:\Users\Binnie\AppData\Roaming\Microsoft\Windows\Cookies\[email protected][1].txt [ /a1.interclick ]
C:\Use

 

[Prescottbob]

/Gen-Injector[Fmt]
C:\PROGRAM FILES (X86)\INTUIT\SITEBUILDER\UPDATER.EXE

This was the Trojan on the report.
scanned : 467
Memory threats detected : 0
Registry items scanned : 74612
Registry threats detected : 0
File items scanned : 628820
File threats detected : 125
Adware.Tracking Cookie
C:\Users\Binnie\AppData\Roaming\Microsoft\Windows\Cookies\[email protected][1].txt [ /a1.interclick ]
C:\Users\Binnie\AppData\Roaming\Microsoft\Windows\Cookies\[email protected][2].txt [ /ad.wsod ]
C:\Users\Binnie\AppData\Roaming\Microsoft\Windows\Cookies\binnie@adbrite[1].txt [ /adbrite ]
C:\Users\Binnie\AppData\Roaming\Microsoft\Windows\Cookies\binnie@adecn[1].txt [ /adecn ]
C:\Users\Binnie\AppData\Roaming\Microsoft\Windows\Cookies\[email protected][1].txt [ /ads.pointroll ]
C:\Users\Binnie\AppData\Roaming\Microsoft\Windows\Cookies\[email protected][1].txt [ /adserver.adtechus ]
C:\Users\Binnie\AppData\Roaming\Microsoft\Windows\Cookies\binnie@advertising[2].txt [ /advertising ]
C:\Users\Binnie\AppData\Roaming\Microsoft\Windows\Cookies\[email protected][2].txt [ /at.atwola ]
C:\Users\Binnie\AppData\Roaming\Microsoft\Windows\Cookies\binnie@clickorlando[1].txt [ /clickorlando ]
C:\Users\Binnie\AppData\Roaming\Microsoft\Windows\Cookies\[email protected][2].txt [ /content.yieldmanager ]
C:\Users\Binnie\AppData\Roaming\Microsoft\Windows\Cookies\binnie@findingjoymovie[1].txt [ /findingjoymovie ]
C:\Users\Binnie\AppData\Roaming\Microsoft\Windows\Cookies\binnie@holidayinsights[1].txt [ /holidayinsights ]
C:\Users\Binnie\AppData\Roaming\Microsoft\Windows\Cookies\binnie@interclick[2].txt [ /interclick ]
C:\Users\Binnie\AppData\Roaming\Microsoft\Windows\Cookies\[email protected][2].txt [ /intuitinc.122.2o7 ]
C:\Users\Binnie\AppData\Roaming\Microsoft\Windows\Cookies\binnie@legolas-media[1].txt [ /legolas-media ]
C:\Users\Binnie\AppData\Roaming\Microsoft\Windows\Cookies\binnie@media6degrees[1].txt [ /media6degrees ]
C:\Users\Binnie\AppData\Roaming\Microsoft\Windows\Cookies\binnie@mediabrandsww[2].txt [ /mediabrandsww ]
C:\Users\Binnie\AppData\Roaming\Microsoft\Windows\Cookies\[email protected][1].txt [ /microsoftwllivemkt.112.2o7 ]
C:\Users\Binnie\AppData\Roaming\Microsoft\Windows\Cookies\[email protected][1].txt [ /msnportal.112.2o7 ]
C:\Users\Binnie\AppData\Roaming\Microsoft\Windows\Cookies\binnie@pointroll[2].txt [ /pointroll ]
C:\Users\Binnie\AppData\Roaming\Microsoft\Windows\Cookies\[email protected][2].txt [ /r1-ads.ace.advertising ]
C:\Users\Binnie\AppData\Roaming\Microsoft\Windows\Cookies\binnie@ru4[2].txt [ /ru4 ]
C:\Users\Binnie\AppData\Roaming\Microsoft\Windows\Cookies\binnie@specificclick[2].txt [ /specificclick ]
C:\Users\Binnie\AppData\Roaming\Microsoft\Windows\Cookies\binnie@specificmedia[1].txt [ /specificmedia ]
C:\Users\Binnie\AppData\Roaming\Microsoft\Windows\Cookies\binnie@tacoda[2].txt [ /tacoda ]
C:\Users\Binnie\AppData\Roaming\Microsoft\Windows\Cookies\[email protected][1].txt [ /track.claimfreerewards ]
C:\Users\Binnie\AppData\Roaming\Microsoft\Windows\Cookies\[email protected][1].txt [ /tracking.foxnews ]
C:\Users\Binnie\AppData\Roaming\Microsoft\Windows\Cookies\[email protected][2].txt [ /web4.realtracker ]
C:\Users\Binnie\AppData\Roaming\Microsoft\Windows\Cookies\binnie@yieldmanager[1].txt [ /yieldmanager ]
C:\Users\Binnie\AppData\Roaming\Microsoft\Windows\Cookies\[email protected][1].txt [ /z.blogads ]
C:\Users\Binnie\AppData\Roaming\Microsoft\Windows\Cookies\W3CPCANV.txt [ /lucidmedia.com ]
C:\Users\Binnie\AppData\Roaming\Microsoft\Windows\Cookies\WD3BDNS7.txt [ /mediaplex.com ]
C:\Users\Binnie\AppData\Roaming\Microsoft\Windows\Cookies\J31Q5FZG.txt [ /apmebf.com ]
C:\Users\Binnie\AppData\Roaming\Microsoft\Windows\Cookies\DLJQ9MWE.txt [ /www.brassandsilvertraditions.com ]
C:\Users\Binnie\AppData\Roaming\Microsoft\Windows\Cookies\69T5FB29.txt [ /findlaw.com ]
C:\Users\Binnie\AppData\Roaming\Microsoft\Windows\Cookies\binnie@rambler[1].txt [ /rambler.ru ]
C:\Users\Binnie\AppData\Roaming\Microsoft\Windows\Cookies\QQ9NDE9V.txt [ /thefind.com ]
C:\Users\Binnie\AppData\Roaming\Microsoft\Windows\Cookies\VN7M1SES.txt [ /doubleclick.net ]
C:\Users\Binnie\AppData\Roaming\Microsoft\Windows\Cookies\R50GUDGP.txt [ /findanopportunity.net ]
C:\Users\Binnie\AppData\Roaming\Microsoft\Windows\Cookies\XC5VTDAK.txt [ /www.mediabistro.com ]
C:\Users\Binnie\AppData\Roaming\Microsoft\Windows\Cookies\I6544X2G.txt [ /insightexpressai.com ]
C:\Users\Binnie\AppData\Roaming\Microsoft\Windows\Cookies\[email protected][2].txt [ /www.rambler.ru ]
C:\Users\Binnie\AppData\Roaming\Microsoft\Windows\Cookies\NJHGMDZX.txt [ /homesteadtechnologies.122.2o7.net ]
C:\Users\Binnie\AppData\Roaming\Microsoft\Windows\Cookies\WAORZ24M.txt [ /invitemedia.com ]
C:\Users\Binnie\AppData\Roaming\Microsoft\Windows\Cookies\NB3RV81A.txt [ /revsci.net ]
C:\Users\Binnie\AppData\Roaming\Microsoft\Windows\Cookies\CVU0P27I.txt [ /imrworldwide.com ]
C:\Users\Binnie\AppData\Roaming\Microsoft\Windows\Cookies\FBKHKWHF.txt [ /c1.atdmt.com ]
C:\Users\Binnie\AppData\Roaming\Microsoft\Windows\Cookies\A0VLC69T.txt [ /atdmt.com ]
C:\Users\Binnie\AppData\Roaming\Microsoft\Windows\Cookies\Y9CIHQK9.txt [ /h.atdmt.com ]
C:\Users\Binnie\AppData\Roaming\Microsoft\Windows\Cookies\BODSIMBE.txt [ /collective-media.net ]
C:\Users\Binnie\AppData\Roaming\Microsoft\Windows\Cookies\J97V447L.txt [ /serving-sys.com ]
C:\Users\Binnie\AppData\Roaming\Microsoft\Windows\Cookies\EWKLFDKU.txt [ /click2houston.com ]
C:\Users\Binnie\AppData\Roaming\Microsoft\Windows\Cookies\W83NOFM2.txt [ /www.googleadservices.com ]
C:\Users\Binnie\AppData\Roaming\Microsoft\Windows\Cookies\I3XT6NVX.txt [ /c.atdmt.com ]
a.ads2.msads.net [ C:\USERS\BINNIE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\M8MRG4PR ]
ad.insightexpressai.com [ C:\USERS\BINNIE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\M8MRG4PR ]
ads2.msads.net [ C:\USERS\BINNIE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\M8MRG4PR ]
art.aim4media.com [ C:\USERS\BINNIE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\M8MRG4PR ]
b.ads2.msads.net [ C:\USERS\BINNIE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\M8MRG4PR ]
cdn.gotraffic.net [ C:\USERS\BINNIE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\M8MRG4PR ]
cdn.insights.gravity.com [ C:\USERS\BINNIE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\M8MRG4PR ]
cdn.tremormedia.com [ C:\USERS\BINNIE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\M8MRG4PR ]
cdn4.specificclick.net [ C:\USERS\BINNIE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\M8MRG4PR ]
cdnx.tribalfusion.com [ C:\USERS\BINNIE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\M8MRG4PR ]
cloudfront.mediamatters.org [ C:\USERS\BINNIE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\M8MRG4PR ]
content.oddcast.com [ C:\USERS\BINNIE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\M8MRG4PR ]
content.yieldmanager.edgesuite.net [ C:\USERS\BINNIE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\M8MRG4PR ]
convoad.technoratimedia.com [ C:\USERS\BINNIE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\M8MRG4PR ]
convoad.technoratimedia.net [ C:\USERS\BINNIE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\M8MRG4PR ]
core.insightexpressai.com [ C:\USERS\BINNIE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\M8MRG4PR ]
core.saymedia.com [ C:\USERS\BINNIE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\M8MRG4PR ]
ds.serving-sys.com [ C:\USERS\BINNIE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\M8MRG4PR ]
hs.interpolls.com [ C:\USERS\BINNIE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\M8MRG4PR ]
ia.media-imdb.com [ C:\USERS\BINNIE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\M8MRG4PR ]
ictv-ic-ec.indieclicktv.com [ C:\USERS\BINNIE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\M8MRG4PR ]
kona.kontera.com [ C:\USERS\BINNIE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\M8MRG4PR ]
konac.kontera.com [ C:\USERS\BINNIE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\M8MRG4PR ]
l3cdn.iqmediacorp.com.c.footprint.net [ C:\USERS\BINNIE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\M8MRG4PR ]
macromedia.com [ C:\USERS\BINNIE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\M8MRG4PR ]
media-vimg-net.vimg.net [ C:\USERS\BINNIE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\M8MRG4PR ]
media.azfamily.com [ C:\USERS\BINNIE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\M8MRG4PR ]
media.bimvid.com [ C:\USERS\BINNIE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\M8MRG4PR ]
media.cnbc.com [ C:\USERS\BINNIE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\M8MRG4PR ]
media.crooksandliars.com [ C:\USERS\BINNIE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\M8MRG4PR ]
media.easy2.com [ C:\USERS\BINNIE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\M8MRG4PR ]
media.king5.com [ C:\USERS\BINNIE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\M8MRG4PR ]
media.ky3.com [ C:\USERS\BINNIE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\M8MRG4PR ]
media.kyte.tv [ C:\USERS\BINNIE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\M8MRG4PR ]
media.mtvnservices.com [ C:\USERS\BINNIE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\M8MRG4PR ]
media.nbcbayarea.com [ C:\USERS\BINNIE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\M8MRG4PR ]
media.nbcchicago.com [ C:\USERS\BINNIE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\M8MRG4PR ]
media.nbcconnecticut.com [ C:\USERS\BINNIE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\M8MRG4PR ]
media.nbcdfw.com [ C:\USERS\BINNIE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\M8MRG4PR ]
media.nbclosangeles.com [ C:\USERS\BINNIE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\M8MRG4PR ]
media.nbcmiami.com [ C:\USERS\BINNIE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\M8MRG4PR ]
media.nbcnewyork.com [ C:\USERS\BINNIE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\M8MRG4PR ]
media.nbcphiladelphia.com [ C:\USERS\BINNIE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\M8MRG4PR ]
media.nbcsandiego.com [ C:\USERS\BINNIE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\M8MRG4PR ]
media.nbcwashington.com [ C:\USERS\BINNIE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\M8MRG4PR ]
media.nwcn.com [ C:\USERS\BINNIE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\M8MRG4PR ]
media.oprah.com [ C:\USERS\BINNIE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\M8MRG4PR ]
media.scanscout.com [ C:\USERS\BINNIE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\M8MRG4PR ]
media.vmixcore.com [ C:\USERS\BINNIE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\M8MRG4PR ]
media.whosay.com [ C:\USERS\BINNIE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\M8MRG4PR ]
media.wwltv.com [ C:\USERS\BINNIE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\M8MRG4PR ]
media1.break.com [ C:\USERS\BINNIE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\M8MRG4PR ]
msnbcmedia.msn.com [ C:\USERS\BINNIE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\M8MRG4PR ]
msntest.serving-sys.com [ C:\USERS\BINNIE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\M8MRG4PR ]
multimedia.msn.com [ C:\USERS\BINNIE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\M8MRG4PR ]
objects.tremormedia.com [ C:\USERS\BINNIE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\M8MRG4PR ]
richmedia247.com [ C:\USERS\BINNIE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\M8MRG4PR ]
s0.2mdn.net [ C:\USERS\BINNIE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\M8MRG4PR ]
secure-uk.imrworldwide.com [ C:\USERS\BINNIE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\M8MRG4PR ]
secure-us.imrworldwide.com [ C:\USERS\BINNIE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\M8MRG4PR ]
serving-sys.com [ C:\USERS\BINNIE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\M8MRG4PR ]
sftrack.searchforce.net [ C:\USERS\BINNIE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\M8MRG4PR ]
spe.atdmt.com [ C:\USERS\BINNIE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\M8MRG4PR ]
speed.pointroll.com [ C:\USERS\BINNIE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\M8MRG4PR ]
static.discoverymedia.com [ C:\USERS\BINNIE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\M8MRG4PR ]
tracking.onefeed.co.uk [ C:\USERS\BINNIE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\M8MRG4PR ]
videos.mediaite.com [ C:\USERS\BINNIE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\M8MRG4PR ]
www.clickorlando.com [ C:\USERS\BINNIE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\M8MRG4PR ]
www.iqmediacorp.com [ C:\USERS\BINNIE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\M8MRG4PR ]
C:\WINDOWS\TEMP\COOKIES\[email protected][1].TXT [ /STATSE.WEBTRENDSLIVE ]
Trojan.Agent/Gen-Injector[Fmt]
C:\PROGRAM FILES (X86)\INTUIT\SITEBUILDER\UPDATER.EXE

 

[Prescottbob]

Sorry about the report mess I was having a problem controlling my highlighting. Post#43 should be the one.

 

[Prescottbob]

Problem is not solved--I marked it solved from my IPAD when I moved it.

 

[cottonball]

Was this removed by SAS: Trojan.Agent/Gen-Injector[Fmt]


Try the following, if you can download, etc.,...


Please download the Farbar Recovery Scan Tool
Select the 64-bit version.


Save it to your Desktop.

• Double-click the downloaded file to run it.
• When the tool opens click Yes to disclaimer.
• Press the Scan button.
• FRST64 makes a log (FRST.txt) in the same directory from which the tool is run (Desktop).

Please provide the FRST.txt in your reply. <<---


The first time the tool is run, it also makes another log: Addition.txt
Also post the Addition.txt in your reply. <<---

 

[Prescottbob]

Hi cottonball, the Trojan was removed. Still can't download anything without getting the virus and deleted message. McAfee firewall keeps dropping off .

 

[Prescottbob]

FRST64 will not load even without Mc off.

 

[VistaKing]

Try renaming the file ? Just a thought

 

[Prescottbob]

Rename didn't work either. I started SAS again to make sure Trojan got deleted!

 

[Prescottbob]

SAS shows the Trojan gone and it's way past the point it saw it yesterday.

 

[cottonball]

Prescottbob,

Go back to Post #20, and uninstall McAfee. If the subscription has not expired, you can re-intall the program later. McAfee can be a problem of its own. Not my favorite...




When done removing McAfee, try FRST once again.

If no-go, try FRST in Safe Mode withg Networking.

 

[Prescottbob]

MCPR won't load. McAfee is active ( it's firewall turns off every hour ). I'm going to safe mode and try MCPR and FRST.

 

[cottonball]

If you go to Control Panel > Programs and Features > Uninstall Programs...does it uninstall from there?

Can't remember if it will only go with the removal tool...

 

[VistaKing]

You can remove Mcafee from the Programs and Features .

When you tried to open MCRP did you right-click MCPR.exe, and select Run as Administrator

 

[Prescottbob]

I,m removing McAfee via control panel. Says its removed. Restarting. Trying to download MSE.

 

[VistaKing]

Let us know how MSE installs

 

[Prescottbob]

Vistaking: MCPR never loaded. I've removed McAfee and tried loading MSE and just got the "contained a virus and was deleted" again.

 

[VistaKing]

Is McAfee the only anti-virus software you have installed or had installed ? What program is telling you MSE contained a virus and deleted the file ?

 

[Prescottbob]

McAfee came installed on this machine from Dell. Never used another. The virus detected message is in the box that replaces the download info. Has a red line across the top and a red shield with an X on the left end of the box. When I click on the "learn more" in the box it brings up a new screen in IE advertising Windows 8 .