Google Answers: Removing aurora spyware

View Question

Q: Removing aurora spyware ( Answered 5 out of 5 stars

, 0 Comments )

Question

Subject: Removing aurora spyware
Category: Computers > Security
Asked by: mobius01-ga
List Price: $10.00

Posted: 31 Jul 2005 06:33 PDT
Expires: 30 Aug 2005 06:33 PDT
Question ID: 550004

Hi.  I've read earlier threads on this and tried to do the same thing
on my PC.  However, I still can't get rid of the annoying advertising
spyware called Aurora.  Can anyone help me use HijackThis specifically
on my PC?  Thanks.

Answer

Subject: Re: Removing aurora spyware
Answered By: livioflores-ga on 31 Jul 2005 07:44 PDT
Rated: 5 out of 5 stars

Hi mobius01!! I can help you, in the past I have successfully helped other costumers to clean Aurora from their computers. You are claiming for help in using HijackThis, but for sure you will need to use some other additional tools. Since it is always better start from the beggining I need a HijackThis log posted here to know your operative system and the your system status, then I will analyze it and tell you which items must be fixed. Please do the folowing: - Download and install Hijacthis; just download the following file and run it: http://www.thespykiller.co.uk/files/hijackthis_sfx.exe - Run Hijackthis.exe (normally installed at C:\Program Files\HijackThis\) and click on the "Do a system scan and save a logfile" button. A Notepad window with the log will be displayed. - WITHOUT FIX ANYTHING (IMPORTANT!!) Copy and paste the text on the logfile in a request for an answer clarification to make it available to me. - I will analyze your log and let you know the necessary steps to fix your computer in an answer clarification. For additional references see: http://www.bleepingcomputer.com/forums/index.php?showtutorial=42 See this section first: http://www.bleepingcomputer.com/forums/index.php?showtutorial=42#HowToUse This is just what you need to start. Regards, livioflores-ga
Request for Answer Clarification by mobius01-ga on 31 Jul 2005 07:54 PDT Hi. Thanks for responding to my post. Here's the logfile: Logfile of HijackThis v1.99.1 Scan saved at 10:53:55 AM, on 7/31/2005 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\System32\Ati2evxx.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\Explorer.exe c:\windows\system32\kdahtud.exe C:\Program Files\Common Files\Dell\EUSW\Support.exe C:\Program Files\Java\jre1.5.0\bin\jusched.exe C:\PROGRA~1\NORTON~1\navapw32.exe C:\WINDOWS\system32\cisvc.exe C:\Program Files\Norton AntiVirus\navapsvc.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\wscntfy.exe C:\Program Files\Messenger\msmsgs.exe C:\WINDOWS\system32\cidaemon.exe C:\WINDOWS\system32\cidaemon.exe C:\Program Files\HijackThis\HijackThis.exe R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://smbusiness.dellnet.com/ R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = websearch.drsnsrch.com/q.cgi?q= R1 - HKLM\Software\Microsoft\Internet Explorer\SearchURL,(Default) = about:blank R3 - URLSearchHook: (no name) - _{CA0E28FA-1AFD-4C21-A8DC-70EB5BE2F076} - (no file) F2 - REG:system.ini: Shell=Explorer.exe C:\WINDOWS\Nail.exe O2 - BHO: Band Class - {00F1D395-4744-40f0-A611-980F61AE2C59} - C:\WINDOWS\dsr.dll O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll O2 - BHO: NAV Helper - {BDF3E430-B101-42AD-A544-FADC6B084872} - C:\Program Files\Norton AntiVirus\NavShExt.dll O3 - Toolbar: Norton AntiVirus - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - C:\Program Files\Norton AntiVirus\NavShExt.dll O3 - Toolbar: (no name) - {2CDE1A7D-A478-4291-BF31-E1B4C16F92EB} - (no file) O4 - HKLM\..\Run: [DwlClient] C:\Program Files\Common Files\Dell\EUSW\Support.exe O4 - HKLM\..\Run: [MCUpdateExe] C:\PROGRA~1\mcafee.com\agent\mcupdate.exe O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0\bin\jusched.exe O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime O4 - HKLM\..\Run: [NAV Agent] C:\PROGRA~1\NORTON~1\navapw32.exe O4 - HKLM\..\Run: [gcasServ] "C:\Program Files\Microsoft AntiSpyware\gcasServ.exe" O4 - HKLM\..\Run: [gdqmro] c:\windows\system32\kdahtud.exe r O4 - HKLM\..\Run: [Dinst] C:\WINDOWS\dinst.exe O4 - Global Startup: Adobe Gamma Loader.exe.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000 O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0\bin\npjpi150.dll O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0\bin\npjpi150.dll O9 - Extra button: AIM - {AC9E2541-2814-11d5-BC6D-00B0D0A1DE45} - C:\Program Files\AIM\aim.exe O9 - Extra button: ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - C:\Program Files\ICQLite\ICQLite.exe O9 - Extra 'Tools' menuitem: ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - C:\Program Files\ICQLite\ICQLite.exe O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\System32\Shdocvw.dll O9 - Extra button: Yahoo! Messenger - {E5D12C4E-7B4F-11D3-B5C9-0050045C3C96} - C:\PROGRA~1\Yahoo!\MESSEN~1\YPager.exe O9 - Extra 'Tools' menuitem: Yahoo! Messenger - {E5D12C4E-7B4F-11D3-B5C9-0050045C3C96} - C:\PROGRA~1\Yahoo!\MESSEN~1\YPager.exe O9 - Extra button: @C:\Program Files\Messenger\Msgslang.dll,-61144 - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: @C:\Program Files\Messenger\Msgslang.dll,-61144 - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O16 - DPF: {01A88BB1-1174-41EC-ACCB-963509EAE56B} (SysProWmi Class) - http://support.dell.com/systemprofiler/SysPro.CAB O16 - DPF: {DAAD8E43-FAC2-41DD-8F02-9D2BD626F4BB} (AVChat_Inst Control) - http://chat.saram.net/avchat/AVChat_InstProj1.cab O23 - Service: Ati HotKey Poller - Unknown owner - C:\WINDOWS\System32\Ati2evxx.exe O23 - Service: iPod Service (iPodService) - Unknown owner - C:\Program Files\iPod\bin\iPodService.exe (file missing) O23 - Service: Norton AntiVirus Auto Protect Service (navapsvc) - Symantec Corporation - C:\Program Files\Norton AntiVirus\navapsvc.exe O23 - Service: ScriptBlocking Service (SBService) - Symantec Corporation - C:\PROGRA~1\COMMON~1\SYMANT~1\SCRIPT~1\SBServ.exe O23 - Service: System Startup Service (SvcProc) - Unknown owner - c:\windows\SvcProc.exe
Clarification of Answer by livioflores-ga on 31 Jul 2005 10:30 PDT Hi!! Here is what you must do: PREPARATION: First, download and install CleanUp! but do not run it yet. Note that Cleanup! deletes EVERYTHING out of temp/temporary folders and does not make backups: http://www.stevengould.org/downloads/cleanup/CleanUp40.exe Then download and install the Nailfix by running nailfix.exe: http://www.noidea.us/easyfile/file.php?download=20050515010747824 Then extract with Winzip or WinRar or a similar tool the nailfix.cmd and Process.exe directly to the desktop. Download and Install the trial version of EWIDO (it works like a full featured version for 14 days!): http://download.ewido.net/ewido-setup.exe or http://downloads-zdnet.com.com/Ewido-Security-Suite/3000-8022_2-10326287.html ·Install ewido security suite ·Launch ewido, there should be a big E icon on your desktop, double-click it. ·The program will prompt you to update click the OK button ·The program will now go to the main screen You will need to update ewido to the latest definition files. ·On the left hand side of the main screen click update ·Click on Start The update will start and a progress bar will show the updates being installed. ·After the updates are installed, exit Ewido. ALTERNATIVE METHOD FOR UPDATE: Download the last signature installer and run it: http://download.ewido.net/ewido-signatures-full-20050731.exe Reboot into Safe Mode. You can do this by restarting your computer and after hearing your computer beep once during startup, but before the Windows icon appears, press F8 until a menu appears. Use your up arrow key to highlight Safe Mode, then hit enter. Or see other options and further instructions here: http://service1.symantec.com/SUPPORT/tsgeninfo.nsf/docid/2001052409420406?OpenDocument&src=sec_doc_nam Once in Safe Mode, Open Cleanup! by double-clicking the icon on your desktop (or from the Start > All Programs menu). Set the program up as follows: Click "Options..." Move the arrow down to "Custom CleanUp!" Put a check next to the following: -Empty Recycle Bins -Delete Cookies -Delete Prefetch files -Scan local drives for temporary files -Cleanup! All Users Click OK *Press the CleanUp! button to start the program. After you finish with Cleanup!: ·Run the Nailfix (double-click on nailfix.cmd) ·Run Ewido. -Click on scanner -Make sure the following boxes are checked before scanning: º Binder º Crypter º Archives -Click on Start Scan Let the program scan the machine. While the scan is in progress you will be prompted to clean the first infected file it finds. Choose "clean", then put a check next to "Perform action on all infections" in the left corner of the box so you don't have to sit and watch Ewido the whole time. Click OK. Once the scan has completed, there will be a button located on the bottom of the screen named Save report: ·Click Save report ·Save the report to your desktop ·Exit Ewido Always in safe mode run HjackThis, click Scan, and place a checkmark ONLY to the following items if still present: R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = websearch.drsnsrch.com/q.cgi?q= R1 - HKLM\Software\Microsoft\Internet Explorer\SearchURL,(Default) = about:blank R3 - URLSearchHook: (no name) - _{CA0E28FA-1AFD-4C21-A8DC-70EB5BE2F076} - (no file) F2 - REG:system.ini: Shell=Explorer.exe C:\WINDOWS\Nail.exe O2 - BHO: Band Class - {00F1D395-4744-40f0-A611-980F61AE2C59} - C:\WINDOWS\dsr.dll O3 - Toolbar: (no name) - {2CDE1A7D-A478-4291-BF31-E1B4C16F92EB} - (no file) O4 - HKLM\..\Run: [gdqmro] c:\windows\system32\kdahtud.exe r O4 - HKLM\..\Run: [Dinst] C:\WINDOWS\dinst.exe O16 - DPF: {DAAD8E43-FAC2-41DD-8F02-9D2BD626F4BB} (AVChat_Inst Control) - http://chat.saram.net/avchat/AVChat_InstProj1.cab O23 - Service: System Startup Service (SvcProc) - Unknown owner - c:\windows\SvcProc.exe Now yes, press the "Fix Checked" button. ·Reboot into normal mode (that is normally). Once in normal mode check your computer behaviour. Then run HijackThis, scan your computer and generate a fresh log (you must not fix anything, after a new analysis of it I will tell you if there are remanents to be fixed with this tool), this log must be posted here as a request of a clarification. Also if you can post the Ewido's report and a description of how is your computer working now. Hope that this works in your system as worked in others and you can get rid of Aurora pestware. Remember that this question is not ended until your computer be cleanof Aurora, so please do not hesitate to request for further assistance on this topic if you need it, I will gladly respond your requests. Best regards. livoflores-ga
Clarification of Answer by livioflores-ga on 31 Jul 2005 10:42 PDT Ooops!! I forgot to add the following step (it must be do in safe mode after you fix with HijackThis): Ensure that all the files in your system are viewable: "Help: How to Show System Files" http://www.xtra.co.nz/help/0,,4155-1916458,00.html#5 Find and delete (if still present) the following files: c:\windows\system32\kdahtud.exe C:\WINDOWS\Nail.exe C:\WINDOWS\dsr.dll C:\WINDOWS\dinst.exe c:\windows\SvcProc.exe Do not forget to delete these files!! Regards, livioflores-ga
Request for Answer Clarification by mobius01-ga on 31 Jul 2005 17:23 PDT Thanks! I followed your instructions and I haven't seen any pop-ups, knock on wood... Here's my HijackThis filelog and Ewido log: Logfile of HijackThis v1.99.1 Scan saved at 8:22:28 PM, on 7/31/2005 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\System32\Ati2evxx.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\system32\spoolsv.exe C:\Program Files\Common Files\Dell\EUSW\Support.exe C:\Program Files\Java\jre1.5.0\bin\jusched.exe C:\PROGRA~1\NORTON~1\navapw32.exe C:\Program Files\Microsoft AntiSpyware\gcasDtServ.exe C:\WINDOWS\system32\cisvc.exe C:\Program Files\ewido\security suite\ewidoctrl.exe C:\Program Files\ewido\security suite\ewidoguard.exe C:\Program Files\Norton AntiVirus\navapsvc.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\wscntfy.exe C:\WINDOWS\system32\wuauclt.exe C:\PROGRA~1\MICROS~2\Office10\OUTLOOK.EXE C:\Program Files\Messenger\msmsgs.exe C:\Program Files\Microsoft Office\Office10\WINWORD.EXE C:\Program Files\Mozilla Firefox\firefox.exe C:\Program Files\HijackThis\HijackThis.exe R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://smbusiness.dellnet.com/ O2 - BHO: Band Class - {00F1D395-4744-40f0-A611-980F61AE2C59} - C:\WINDOWS\dsr.dll (file missing) O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll O2 - BHO: NAV Helper - {BDF3E430-B101-42AD-A544-FADC6B084872} - C:\Program Files\Norton AntiVirus\NavShExt.dll O3 - Toolbar: Norton AntiVirus - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - C:\Program Files\Norton AntiVirus\NavShExt.dll O4 - HKLM\..\Run: [DwlClient] C:\Program Files\Common Files\Dell\EUSW\Support.exe O4 - HKLM\..\Run: [MCUpdateExe] C:\PROGRA~1\mcafee.com\agent\mcupdate.exe O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0\bin\jusched.exe O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime O4 - HKLM\..\Run: [NAV Agent] C:\PROGRA~1\NORTON~1\navapw32.exe O4 - HKLM\..\Run: [gcasServ] "C:\Program Files\Microsoft AntiSpyware\gcasServ.exe" O4 - Global Startup: Adobe Gamma Loader.exe.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000 O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0\bin\npjpi150.dll O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0\bin\npjpi150.dll O9 - Extra button: AIM - {AC9E2541-2814-11d5-BC6D-00B0D0A1DE45} - C:\Program Files\AIM\aim.exe O9 - Extra button: ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - C:\Program Files\ICQLite\ICQLite.exe O9 - Extra 'Tools' menuitem: ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - C:\Program Files\ICQLite\ICQLite.exe O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\System32\Shdocvw.dll O9 - Extra button: Yahoo! Messenger - {E5D12C4E-7B4F-11D3-B5C9-0050045C3C96} - C:\PROGRA~1\Yahoo!\MESSEN~1\YPager.exe O9 - Extra 'Tools' menuitem: Yahoo! Messenger - {E5D12C4E-7B4F-11D3-B5C9-0050045C3C96} - C:\PROGRA~1\Yahoo!\MESSEN~1\YPager.exe O9 - Extra button: @C:\Program Files\Messenger\Msgslang.dll,-61144 - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: @C:\Program Files\Messenger\Msgslang.dll,-61144 - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O16 - DPF: {01A88BB1-1174-41EC-ACCB-963509EAE56B} (SysProWmi Class) - http://support.dell.com/systemprofiler/SysPro.CAB O23 - Service: Ati HotKey Poller - Unknown owner - C:\WINDOWS\System32\Ati2evxx.exe O23 - Service: ewido security suite control - ewido networks - C:\Program Files\ewido\security suite\ewidoctrl.exe O23 - Service: ewido security suite guard - ewido networks - C:\Program Files\ewido\security suite\ewidoguard.exe O23 - Service: iPod Service (iPodService) - Unknown owner - C:\Program Files\iPod\bin\iPodService.exe (file missing) O23 - Service: Norton AntiVirus Auto Protect Service (navapsvc) - Symantec Corporation - C:\Program Files\Norton AntiVirus\navapsvc.exe O23 - Service: ScriptBlocking Service (SBService) - Symantec Corporation - C:\PROGRA~1\COMMON~1\SYMANT~1\SCRIPT~1\SBServ.exe --------------------------------------------------------- ewido security suite - Scan report --------------------------------------------------------- + Created on: 8:03:56 PM, 7/31/2005 + Report-Checksum: 6560D264 + Scan result: HKLM\SOFTWARE\Classes\CLSID\{01F44A8A-8C97-4325-A378-76E68DC4AB2E} -> Spyware.IEPlugin : Cleaned with backup HKLM\SOFTWARE\Classes\CLSID\{2B96D5CC-C5B5-49A5-A69D-CC0A30F9028C} -> Spyware.MiniBug : Cleaned with backup HKLM\SOFTWARE\Classes\IMIToolbar.BottomFrame -> Spyware.IEPlugin : Cleaned with backup HKLM\SOFTWARE\Classes\IMIToolbar.BottomFrame\CLSID -> Spyware.IEPlugin : Cleaned with backup HKLM\SOFTWARE\Classes\IMIToolbar.BottomFrame\CurVer -> Spyware.IEPlugin : Cleaned with backup HKLM\SOFTWARE\Classes\IMIToolbar.LeftFrame -> Spyware.IEPlugin : Cleaned with backup HKLM\SOFTWARE\Classes\IMIToolbar.LeftFrame\CLSID -> Spyware.IEPlugin : Cleaned with backup HKLM\SOFTWARE\Classes\IMIToolbar.LeftFrame\CurVer -> Spyware.IEPlugin : Cleaned with backup HKLM\SOFTWARE\Classes\IMIToolbar.PopupBrowser -> Spyware.IEPlugin : Cleaned with backup HKLM\SOFTWARE\Classes\IMIToolbar.PopupBrowser\CLSID -> Spyware.IEPlugin : Cleaned with backup HKLM\SOFTWARE\Classes\IMIToolbar.PopupBrowser\CurVer -> Spyware.IEPlugin : Cleaned with backup HKLM\SOFTWARE\Classes\IMIToolbar.PopupWindow -> Spyware.IEPlugin : Cleaned with backup HKLM\SOFTWARE\Classes\IMIToolbar.PopupWindow\CLSID -> Spyware.IEPlugin : Cleaned with backup HKLM\SOFTWARE\Classes\IMIToolbar.PopupWindow\CurVer -> Spyware.IEPlugin : Cleaned with backup HKLM\SOFTWARE\Classes\Interface\{8DD50C56-8A07-40B9-98C4-3F169E3AE28E} -> Spyware.180Solutions : Cleaned with backup HKLM\SOFTWARE\Classes\Interface\{94984402-B480-45C7-AD2D-84E5EB52CFCD} -> Spyware.VX2 : Cleaned with backup HKLM\SOFTWARE\Classes\Interface\{A42C0EF4-1C76-43CC-989F-EADC7E4B755D} -> Spyware.VX2 : Cleaned with backup HKLM\SOFTWARE\Classes\TypeLib\{09049E4F-8D9E-4C8A-A952-5BAF1A115C59} -> Spyware.VX2 : Cleaned with backup HKLM\SOFTWARE\Classes\Wbho.Band -> Spyware.IEPlugin : Cleaned with backup HKLM\SOFTWARE\Classes\Wbho.Band\CLSID -> Spyware.IEPlugin : Cleaned with backup HKLM\SOFTWARE\Classes\Wbho.Band\CurVer -> Spyware.IEPlugin : Cleaned with backup HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\ins -> Spyware.WebRebates : Cleaned with backup HKLM\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\WhenUSave -> Spyware.SaveNow : Cleaned with backup HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Search Relevancy -> Spyware.SearchRelevancy : Cleaned with backup HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Windows ControlAd -> Spyware.BlazeFind : Cleaned with backup HKLM\SOFTWARE\SearchRelevancy -> Spyware.SearchRelevancy : Cleaned with backup HKLM\SOFTWARE\SearchRelevancy\Update -> Spyware.SearchRelevancy : Cleaned with backup HKU\S-1-5-21-3339553118-3279608810-3794148208-1006\Software\dsktb -> Spyware.IEPlugin : Cleaned with backup HKU\S-1-5-21-3339553118-3279608810-3794148208-1006\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{00000000-DD60-0064-6EC2-6E0100000000} -> Spyware.MediaMotor : Cleaned with backup HKU\S-1-5-21-3339553118-3279608810-3794148208-1006\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{00000010-6F7D-442C-93E3-4A4827C2E4C8} -> Spyware.InternetOptimizer : Cleaned with backup HKU\S-1-5-21-3339553118-3279608810-3794148208-1006\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{00320615-B6C2-40A6-8F99-F1C52D674FAD} -> Spyware.Transponder : Cleaned with backup HKU\S-1-5-21-3339553118-3279608810-3794148208-1006\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{01F44A8A-8C97-4325-A378-76E68DC4AB2E} -> Spyware.IEPlugin : Cleaned with backup HKU\S-1-5-21-3339553118-3279608810-3794148208-1006\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{0421701D-CF13-4E70-ADF0-45A953E7CB8B} -> Spyware.SmartPops : Cleaned with backup HKU\S-1-5-21-3339553118-3279608810-3794148208-1006\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{1D7E3B41-23CE-469B-BE1B-A64B877923E1} -> Spyware.BlazeFind : Cleaned with backup HKU\S-1-5-21-3339553118-3279608810-3794148208-1006\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{6685509E-B47B-4F47-8E16-9A5F3A62F683} -> Spyware.MoneyMaker : Cleaned with backup HKU\S-1-5-21-3339553118-3279608810-3794148208-1006\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{8F4E5661-F99E-4B3E-8D85-0EA71C0748E4} -> Spyware.MoneyTree : Cleaned with backup HKU\S-1-5-21-3339553118-3279608810-3794148208-1006\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{CE31A1F7-3D90-4874-8FBE-A5D97F8BC8F1} -> Spyware.BargainBuddy : Cleaned with backup C:\Program Files\Microsoft AntiSpyware\Quarantine\0FFFC312-ED83-4827-85D3-5D3473\3681E81E-2282-428E-89D7-702CBA -> Adware.BetterInternet : Cleaned with backup C:\Program Files\Microsoft AntiSpyware\Quarantine\36CDFCF2-DA04-4D9B-9AC5-A9428B\1ED2A7D0-5C52-4E7F-BDD7-81937A -> Adware.BetterInternet : Cleaned with backup C:\Program Files\Microsoft AntiSpyware\Quarantine\36CDFCF2-DA04-4D9B-9AC5-A9428B\4F918BFD-C1F6-4DD6-8881-C9A892 -> Adware.BetterInternet : Cleaned with backup C:\Program Files\Microsoft AntiSpyware\Quarantine\36CDFCF2-DA04-4D9B-9AC5-A9428B\52F450AC-37F5-4C4F-80C9-908B51 -> Adware.BetterInternet : Cleaned with backup C:\Program Files\Microsoft AntiSpyware\Quarantine\36CDFCF2-DA04-4D9B-9AC5-A9428B\57BDD91E-2578-4E00-B8D0-F638E8 -> Adware.BetterInternet : Cleaned with backup C:\Program Files\Microsoft AntiSpyware\Quarantine\36CDFCF2-DA04-4D9B-9AC5-A9428B\B27C5904-4821-4FFB-B92F-A882B3 -> Adware.BetterInternet : Cleaned with backup C:\Program Files\Microsoft AntiSpyware\Quarantine\36CDFCF2-DA04-4D9B-9AC5-A9428B\F6B68954-D5A3-4ECB-AFF6-D69227 -> Adware.BetterInternet : Cleaned with backup C:\Program Files\Microsoft AntiSpyware\Quarantine\3FA7DD9F-B429-4CE3-82EE-F0E7C0\63C07130-317D-4228-9EF2-EA3936 -> Trojan.Agent.cp : Cleaned with backup C:\Program Files\Microsoft AntiSpyware\Quarantine\87BDCF95-3E68-4F44-9C85-A90E58\B8A02955-979D-4F40-AA84-EE4297 -> Adware.SaveNow : Cleaned with backup C:\Program Files\Microsoft AntiSpyware\Quarantine\BC87A151-760F-48BE-8342-FB97A4\28517F92-4C9B-484F-9DD4-547EE0 -> Adware.BetterInternet : Cleaned with backup C:\Program Files\Microsoft AntiSpyware\Quarantine\E3450222-D165-4381-8DA1-0C1CFB\9E95B636-7121-429C-8AD6-E38B33 -> Adware.BetterInternet : Cleaned with backup C:\Program Files\Xubgfdu\Cllbs.exe -> Trojan.Small.cy : Cleaned with backup C:\System Volume Information\_restore{987E0331-0F01-427C-A58A-7A2E4AABF84D}\RP481\A0065526.exe -> Adware.BetterInternet : Cleaned with backup C:\System Volume Information\_restore{987E0331-0F01-427C-A58A-7A2E4AABF84D}\RP482\A0065531.exe -> Adware.BetterInternet : Cleaned with backup C:\System Volume Information\_restore{987E0331-0F01-427C-A58A-7A2E4AABF84D}\RP483\A0065542.exe -> Adware.BetterInternet : Cleaned with backup C:\System Volume Information\_restore{987E0331-0F01-427C-A58A-7A2E4AABF84D}\RP484\A0065549.exe -> Adware.BetterInternet : Cleaned with backup C:\System Volume Information\_restore{987E0331-0F01-427C-A58A-7A2E4AABF84D}\RP485\A0065554.exe -> Adware.BetterInternet : Cleaned with backup C:\System Volume Information\_restore{987E0331-0F01-427C-A58A-7A2E4AABF84D}\RP486\A0065567.exe -> Adware.BetterInternet : Cleaned with backup C:\System Volume Information\_restore{987E0331-0F01-427C-A58A-7A2E4AABF84D}\RP487\A0065579.exe -> Adware.BetterInternet : Cleaned with backup C:\System Volume Information\_restore{987E0331-0F01-427C-A58A-7A2E4AABF84D}\RP488\A0065581.exe -> Adware.BetterInternet : Cleaned with backup C:\System Volume Information\_restore{987E0331-0F01-427C-A58A-7A2E4AABF84D}\RP488\A0066524.exe -> Adware.BetterInternet : Cleaned with backup C:\System Volume Information\_restore{987E0331-0F01-427C-A58A-7A2E4AABF84D}\RP489\A0066529.exe -> Adware.BetterInternet : Cleaned with backup C:\System Volume Information\_restore{987E0331-0F01-427C-A58A-7A2E4AABF84D}\RP490\A0066537.exe -> Adware.BetterInternet : Cleaned with backup C:\System Volume Information\_restore{987E0331-0F01-427C-A58A-7A2E4AABF84D}\RP491\A0066560.exe -> Adware.BetterInternet : Cleaned with backup C:\System Volume Information\_restore{987E0331-0F01-427C-A58A-7A2E4AABF84D}\RP492\A0066571.exe -> Adware.BetterInternet : Cleaned with backup C:\System Volume Information\_restore{987E0331-0F01-427C-A58A-7A2E4AABF84D}\RP493\A0066643.exe -> Adware.BetterInternet : Cleaned with backup C:\System Volume Information\_restore{987E0331-0F01-427C-A58A-7A2E4AABF84D}\RP493\A0067657.exe -> Adware.BetterInternet : Cleaned with backup C:\System Volume Information\_restore{987E0331-0F01-427C-A58A-7A2E4AABF84D}\RP494\A0067662.exe -> Adware.BetterInternet : Cleaned with backup C:\System Volume Information\_restore{987E0331-0F01-427C-A58A-7A2E4AABF84D}\RP495\A0067689.exe -> Adware.BetterInternet : Cleaned with backup C:\System Volume Information\_restore{987E0331-0F01-427C-A58A-7A2E4AABF84D}\RP496\A0067702.exe -> Adware.BetterInternet : Cleaned with backup C:\System Volume Information\_restore{987E0331-0F01-427C-A58A-7A2E4AABF84D}\RP497\A0067712.exe -> Adware.BetterInternet : Cleaned with backup C:\System Volume Information\_restore{987E0331-0F01-427C-A58A-7A2E4AABF84D}\RP498\A0067845.exe -> Adware.BetterInternet : Cleaned with backup C:\System Volume Information\_restore{987E0331-0F01-427C-A58A-7A2E4AABF84D}\RP499\A0067864.exe -> Adware.BetterInternet : Cleaned with backup C:\System Volume Information\_restore{987E0331-0F01-427C-A58A-7A2E4AABF84D}\RP499\A0067893.exe -> Adware.BetterInternet : Cleaned with backup C:\System Volume Information\_restore{987E0331-0F01-427C-A58A-7A2E4AABF84D}\RP500\A0067898.exe -> Adware.BetterInternet : Cleaned with backup C:\System Volume Information\_restore{987E0331-0F01-427C-A58A-7A2E4AABF84D}\RP500\A0067929.exe -> Adware.BetterInternet : Cleaned with backup C:\System Volume Information\_restore{987E0331-0F01-427C-A58A-7A2E4AABF84D}\RP501\A0067935.exe -> Adware.BetterInternet : Cleaned with backup C:\System Volume Information\_restore{987E0331-0F01-427C-A58A-7A2E4AABF84D}\RP502\A0067940.exe -> Adware.BetterInternet : Cleaned with backup C:\System Volume Information\_restore{987E0331-0F01-427C-A58A-7A2E4AABF84D}\RP503\A0067972.exe -> Adware.BetterInternet : Cleaned with backup C:\System Volume Information\_restore{987E0331-0F01-427C-A58A-7A2E4AABF84D}\RP504\A0067985.exe -> Adware.BetterInternet : Cleaned with backup C:\System Volume Information\_restore{987E0331-0F01-427C-A58A-7A2E4AABF84D}\RP505\A0068034.exe -> Adware.BetterInternet : Cleaned with backup C:\System Volume Information\_restore{987E0331-0F01-427C-A58A-7A2E4AABF84D}\RP506\A0068046.exe -> Adware.BetterInternet : Cleaned with backup C:\System Volume Information\_restore{987E0331-0F01-427C-A58A-7A2E4AABF84D}\RP507\A0068051.exe -> Adware.BetterInternet : Cleaned with backup C:\System Volume Information\_restore{987E0331-0F01-427C-A58A-7A2E4AABF84D}\RP508\A0068057.exe -> Adware.BetterInternet : Cleaned with backup C:\System Volume Information\_restore{987E0331-0F01-427C-A58A-7A2E4AABF84D}\RP509\A0068069.exe -> Adware.BetterInternet : Cleaned with backup C:\System Volume Information\_restore{987E0331-0F01-427C-A58A-7A2E4AABF84D}\RP510\A0068088.dll -> Spyware.WinAD : Cleaned with backup C:\System Volume Information\_restore{987E0331-0F01-427C-A58A-7A2E4AABF84D}\RP510\A0068132.dll -> Spyware.Relevance : Cleaned with backup C:\System Volume Information\_restore{987E0331-0F01-427C-A58A-7A2E4AABF84D}\RP510\A0068133.dll -> Spyware.Relevance : Cleaned with backup C:\System Volume Information\_restore{987E0331-0F01-427C-A58A-7A2E4AABF84D}\RP510\A0068147.exe -> Adware.BetterInternet : Cleaned with backup C:\System Volume Information\_restore{987E0331-0F01-427C-A58A-7A2E4AABF84D}\RP510\A0068162.exe -> Adware.BetterInternet : Cleaned with backup C:\System Volume Information\_restore{987E0331-0F01-427C-A58A-7A2E4AABF84D}\RP510\A0068178.exe -> Adware.BetterInternet : Cleaned with backup C:\System Volume Information\_restore{987E0331-0F01-427C-A58A-7A2E4AABF84D}\RP511\A0068202.exe -> Adware.BetterInternet : Cleaned with backup C:\System Volume Information\_restore{987E0331-0F01-427C-A58A-7A2E4AABF84D}\RP512\A0068208.exe -> Adware.BetterInternet : Cleaned with backup C:\System Volume Information\_restore{987E0331-0F01-427C-A58A-7A2E4AABF84D}\RP512\A0068240.exe -> Adware.BetterInternet : Cleaned with backup C:\System Volume Information\_restore{987E0331-0F01-427C-A58A-7A2E4AABF84D}\RP513\A0068274.dll -> Spyware.WildTangent : Cleaned with backup C:\System Volume Information\_restore{987E0331-0F01-427C-A58A-7A2E4AABF84D}\RP513\A0068278.exe -> Adware.BetterInternet : Cleaned with backup C:\System Volume Information\_restore{987E0331-0F01-427C-A58A-7A2E4AABF84D}\RP514\A0068295.exe -> Adware.BetterInternet : Cleaned with backup C:\System Volume Information\_restore{987E0331-0F01-427C-A58A-7A2E4AABF84D}\RP514\A0068296.exe -> Adware.BetterInternet : Cleaned with backup C:\System Volume Information\_restore{987E0331-0F01-427C-A58A-7A2E4AABF84D}\RP516\A0068321.exe -> Adware.BetterInternet : Cleaned with backup C:\System Volume Information\_restore{987E0331-0F01-427C-A58A-7A2E4AABF84D}\RP517\A0068332.dll -> Adware.BetterInternet : Cleaned with backup C:\System Volume Information\_restore{987E0331-0F01-427C-A58A-7A2E4AABF84D}\RP517\A0068334.exe -> Adware.BetterInternet : Cleaned with backup C:\System Volume Information\_restore{987E0331-0F01-427C-A58A-7A2E4AABF84D}\RP517\A0068335.exe -> TrojanDownloader.Intexp.c : Cleaned with backup C:\System Volume Information\_restore{987E0331-0F01-427C-A58A-7A2E4AABF84D}\RP517\A0068336.exe -> Trojan.Imiserv.c : Cleaned with backup C:\System Volume Information\_restore{987E0331-0F01-427C-A58A-7A2E4AABF84D}\RP517\A0068337.dll -> Spyware.ImiBar : Cleaned with backup C:\System Volume Information\_restore{987E0331-0F01-427C-A58A-7A2E4AABF84D}\RP517\A0068338.exe -> Adware.BetterInternet : Cleaned with backup C:\System Volume Information\_restore{987E0331-0F01-427C-A58A-7A2E4AABF84D}\RP517\A0068339.exe -> Adware.BetterInternet : Cleaned with backup C:\System Volume Information\_restore{987E0331-0F01-427C-A58A-7A2E4AABF84D}\RP517\A0068340.exe -> Adware.BetterInternet : Cleaned with backup C:\System Volume Information\_restore{987E0331-0F01-427C-A58A-7A2E4AABF84D}\RP518\A0068343.exe -> Adware.BetterInternet : Cleaned with backup C:\System Volume Information\_restore{987E0331-0F01-427C-A58A-7A2E4AABF84D}\RP521\A0068390.exe -> Adware.BetterInternet : Cleaned with backup C:\System Volume Information\_restore{987E0331-0F01-427C-A58A-7A2E4AABF84D}\RP523\A0068420.exe -> Adware.BetterInternet : Cleaned with backup C:\System Volume Information\_restore{987E0331-0F01-427C-A58A-7A2E4AABF84D}\RP524\A0068430.exe -> Adware.BetterInternet : Cleaned with backup C:\System Volume Information\_restore{987E0331-0F01-427C-A58A-7A2E4AABF84D}\RP525\A0068437.exe -> Adware.BetterInternet : Cleaned with backup C:\System Volume Information\_restore{987E0331-0F01-427C-A58A-7A2E4AABF84D}\RP525\A0068442.exe -> Adware.BetterInternet : Cleaned with backup C:\System Volume Information\_restore{987E0331-0F01-427C-A58A-7A2E4AABF84D}\RP525\A0068448.exe -> Adware.BetterInternet : Cleaned with backup C:\System Volume Information\_restore{987E0331-0F01-427C-A58A-7A2E4AABF84D}\RP525\A0068454.exe -> Adware.BetterInternet : Cleaned with backup C:\System Volume Information\_restore{987E0331-0F01-427C-A58A-7A2E4AABF84D}\RP526\A0068494.exe -> Adware.BetterInternet : Cleaned with backup C:\System Volume Information\_restore{987E0331-0F01-427C-A58A-7A2E4AABF84D}\RP527\A0068523.exe -> Adware.BetterInternet : Cleaned with backup C:\System Volume Information\_restore{987E0331-0F01-427C-A58A-7A2E4AABF84D}\RP527\A0068529.exe -> Adware.BetterInternet : Cleaned with backup C:\System Volume Information\_restore{987E0331-0F01-427C-A58A-7A2E4AABF84D}\RP527\A0068535.exe -> Adware.BetterInternet : Cleaned with backup C:\System Volume Information\_restore{987E0331-0F01-427C-A58A-7A2E4AABF84D}\RP527\A0068545.exe -> Adware.BetterInternet : Cleaned with backup C:\System Volume Information\_restore{987E0331-0F01-427C-A58A-7A2E4AABF84D}\RP527\A0068571.exe -> Adware.BetterInternet : Cleaned with backup C:\System Volume Information\_restore{987E0331-0F01-427C-A58A-7A2E4AABF84D}\RP527\A0068577.exe -> Adware.BetterInternet : Cleaned with backup C:\System Volume Information\_restore{987E0331-0F01-427C-A58A-7A2E4AABF84D}\RP527\A0068588.exe -> Adware.BetterInternet : Cleaned with backup C:\System Volume Information\_restore{987E0331-0F01-427C-A58A-7A2E4AABF84D}\RP527\A0068597.exe -> Adware.BetterInternet : Cleaned with backup C:\System Volume Information\_restore{987E0331-0F01-427C-A58A-7A2E4AABF84D}\RP527\A0068603.exe -> Adware.BetterInternet : Cleaned with backup C:\System Volume Information\_restore{987E0331-0F01-427C-A58A-7A2E4AABF84D}\RP527\A0068609.exe -> Adware.BetterInternet : Cleaned with backup C:\System Volume Information\_restore{987E0331-0F01-427C-A58A-7A2E4AABF84D}\RP527\A0068615.exe -> Adware.BetterInternet : Cleaned with backup C:\System Volume Information\_restore{987E0331-0F01-427C-A58A-7A2E4AABF84D}\RP527\A0068625.exe -> Adware.BetterInternet : Cleaned with backup C:\System Volume Information\_restore{987E0331-0F01-427C-A58A-7A2E4AABF84D}\RP527\A0068631.exe -> Adware.BetterInternet : Cleaned with backup C:\System Volume Information\_restore{987E0331-0F01-427C-A58A-7A2E4AABF84D}\RP527\A0068641.exe -> Adware.BetterInternet : Cleaned with backup C:\System Volume Information\_restore{987E0331-0F01-427C-A58A-7A2E4AABF84D}\RP527\A0068649.exe -> Adware.BetterInternet : Cleaned with backup C:\System Volume Information\_restore{987E0331-0F01-427C-A58A-7A2E4AABF84D}\RP527\A0068657.exe -> Adware.BetterInternet : Cleaned with backup C:\System Volume Information\_restore{987E0331-0F01-427C-A58A-7A2E4AABF84D}\RP527\A0068658.exe -> TrojanDownloader.Intexp.c : Cleaned with backup C:\System Volume Information\_restore{987E0331-0F01-427C-A58A-7A2E4AABF84D}\RP527\A0068662.exe -> Adware.BetterInternet : Cleaned with backup C:\System Volume Information\_restore{987E0331-0F01-427C-A58A-7A2E4AABF84D}\RP527\A0068665.dll -> Spyware.ImiBar : Cleaned with backup C:\System Volume Information\_restore{987E0331-0F01-427C-A58A-7A2E4AABF84D}\RP528\A0068670.exe -> Adware.BetterInternet : Cleaned with backup C:\System Volume Information\_restore{987E0331-0F01-427C-A58A-7A2E4AABF84D}\RP528\A0068678.exe -> Adware.BetterInternet : Cleaned with backup C:\System Volume Information\_restore{987E0331-0F01-427C-A58A-7A2E4AABF84D}\RP528\A0068679.exe -> Adware.BetterInternet : Cleaned with backup C:\System Volume Information\_restore{987E0331-0F01-427C-A58A-7A2E4AABF84D}\RP528\A0068682.dll -> Adware.BetterInternet : Cleaned with backup C:\System Volume Information\_restore{987E0331-0F01-427C-A58A-7A2E4AABF84D}\RP528\A0068683.exe -> Adware.BetterInternet : Cleaned with backup C:\System Volume Information\_restore{987E0331-0F01-427C-A58A-7A2E4AABF84D}\RP528\A0068967.dll -> Spyware.Wheaterbug : Cleaned with backup C:\System Volume Information\_restore{987E0331-0F01-427C-A58A-7A2E4AABF84D}\RP528\A0069013.exe -> Adware.BetterInternet : Cleaned with backup C:\WINDOWS\dinst.exe -> TrojanDownloader.Intexp.d : Cleaned with backup C:\WINDOWS\dsr.dll -> Spyware.Hijacker.Generic : Cleaned with backup C:\WINDOWS\dsr.exe -> Trojan.Imiserv.c : Cleaned with backup C:\WINDOWS\loud.exe -> Spyware.WinAD : Cleaned with backup C:\WINDOWS\msbbi.exe -> Trojan.Imiserv.c : Cleaned with backup C:\WINDOWS\NDNuninstall5_20.exe -> Spyware.NewDotNet : Cleaned with backup C:\WINDOWS\NDNuninstall5_64.exe -> Spyware.NewDotNet : Cleaned with backup C:\WINDOWS\NDNuninstall6_10.exe -> Spyware.NewDotNet : Cleaned with backup C:\WINDOWS\NDNuninstall6_22.exe -> Spyware.NewDotNet : Cleaned with backup C:\WINDOWS\rzcctg.exe -> Adware.BetterInternet : Cleaned with backup C:\WINDOWS\sxxsafflz.exe -> Adware.BetterInternet : Cleaned with backup C:\WINDOWS\tdtb.exe -> Trojan.Imiserv.c : Cleaned with backup ::Report End Thanks again... you were a big help...
Clarification of Answer by livioflores-ga on 31 Jul 2005 18:20 PDT Hurray!! Your computer is clean, just a single cosmetic fix (do it only if you want): Run HijackThis and fix the following item: O2 - BHO: Band Class - {00F1D395-4744-40f0-A611-980F61AE2C59} - C:\WINDOWS\dsr.dll (file missing) One thing that I suggest to you is to "vaccinate" your computer, do it with SpywareBlaster: http://www.javacoolsoftware.com/spywareblaster.html Download it from here: http://ct7support.com/downloads/javacool/z341a/spywareblastersetup34.exe After installing it you must update SpywareBlaster, then use the protection features of it, for a guidance here is a nice tutorial: http://www.bleepingcomputer.com/forums/index.php?showtutorial=49 SpywareGuard provides a real-time protection solution against spyware that is a great addition to SpywareBlaster's protection method. It is free also: http://www.javacoolsoftware.com/spywareguard.html There is a tutorial here: http://www.bleepingcomputer.com/forums/Using_SpywareGuard_to_protect_your_computer_from_Spyware__and__Hijackers-tut50.html Remember to check for updates at least once a week for all your protection software; this will help to keep your computer clean and protected. Regards, livioflores-ga
Clarification of Answer by livioflores-ga on 31 Jul 2005 18:22 PDT Use this page to download SpywareBlaster: http://www.javacoolsoftware.com/sbdownload.html Good luck!!

mobius01-ga rated this answer: 5 out of 5 stars

excellent response time and know-how

Comments

There are no comments at this time.

Important Disclaimer: Answers and comments provided on Google Answers are general information, and are not intended to substitute for informed professional medical, psychiatric, psychological, tax, legal, investment, accounting, or other professional advice. Google does not endorse, and expressly disclaims liability for any product, manufacturer, distributor, service or service provider mentioned or any opinion expressed in answers or comments. Please read carefully the Google Answers Terms of Service.

If you feel that you have found inappropriate content, please let us know by emailing us at answers-support@google.com with the question ID listed above. Thank you.

Search Google Answers for

Google Home - Answers FAQ - Terms of Service - Privacy Policy