Bree26

Sweepstakes.com Driving Me Crazy!

Recommended Posts

I have tried several things to get rid of Sweepstakes.com and nothing has worked. Here is a copy of my HJT log. I would really appreciate any help at all.

Logfile of HijackThis v1.99.1

Scan saved at 1:04:37 PM, on 5/10/2006

Platform: Windows XP SP2 (WinNT 5.01.2600)

MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:

C:\WINDOWS\System32\smss.exe

C:\WINDOWS\system32\csrss.exe

C:\WINDOWS\system32\winlogon.exe

C:\WINDOWS\system32\services.exe

C:\WINDOWS\system32\lsass.exe

C:\WINDOWS\system32\Ati2evxx.exe

C:\WINDOWS\system32\svchost.exe

C:\WINDOWS\system32\svchost.exe

C:\WINDOWS\System32\svchost.exe

C:\WINDOWS\system32\svchost.exe

C:\WINDOWS\system32\svchost.exe

C:\WINDOWS\system32\spoolsv.exe

C:\PROGRA~1\COMMON~1\AOL\ACS\AOLacsd.exe

C:\Program Files\Intel\Intel Application Accelerator\iaantmon.exe

c:\program files\mcafee.com\agent\mcdetect.exe

c:\PROGRA~1\mcafee.com\vso\mcshield.exe

c:\PROGRA~1\mcafee.com\agent\mctskshd.exe

c:\PROGRA~1\mcafee.com\vso\mcvsrte.exe

C:\PROGRA~1\McAfee.com\PERSON~1\MPFSERVICE.exe

C:\Program Files\Spyware Doctor\sdhelp.exe

C:\WINDOWS\system32\svchost.exe

C:\WINDOWS\system32\wdfmgr.exe

C:\WINDOWS\System32\alg.exe

C:\WINDOWS\Explorer.EXE

C:\Program Files\Analog Devices\Core\smax4pnp.exe

C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe

C:\Program Files\Intel\Intel Application Accelerator\iaanotif.exe

C:\Program Files\Intel\Modem Event Monitor\IntelMEM.exe

C:\Program Files\CyberLink\PowerDVD\DVDLauncher.exe

C:\Program Files\Musicmatch\Musicmatch Jukebox\mm_tray.exe

C:\PROGRA~1\mcafee.com\agent\mcagent.exe

C:\Program Files\Logitech\MouseWare\system\em_exec.exe

C:\PROGRA~1\mcafee.com\vso\mcvsshld.exe

c:\progra~1\mcafee.com\vso\mcvsescn.exe

C:\WINDOWS\system32\dla\tfswctrl.exe

C:\Program Files\Lexmark 5200 series\lxbtbmgr.exe

C:\PROGRA~1\MUSICM~1\MUSICM~3\MMDiag.exe

C:\Program Files\Common Files\AOL\1125164243\ee\AOLSoftware.exe

C:\Program Files\QuickTime\qttask.exe

C:\Program Files\Lexmark 5200 series\lxbtbmon.exe

C:\Program Files\iTunes\iTunesHelper.exe

C:\PROGRA~1\McAfee.com\PERSON~1\MpfTray.exe

C:\windows\system32\pumd.exe

C:\Program Files\MUSICMATCH\Musicmatch Jukebox\mim.exe

C:\program files\common files\system\ms2src.exe

C:\Program Files\Dell Support\DSAgnt.exe

C:\Program Files\Spyware Doctor\swdoctor.exe

C:\Program Files\iPod\bin\iPodService.exe

C:\PROGRA~1\McAfee.com\PERSON~1\MpfAgent.exe

c:\program files\common files\aol\1125164243\ee\services\antiSpywareApp\ver2_0_25_1\AOLSP Scheduler.exe

c:\program files\common files\aol\1125164243\ee\aolsoftware.exe

C:\Program Files\AIM\aim.exe

c:\progra~1\mcafee.com\vso\mcvsftsn.exe

C:\Program Files\Messenger\msmsgs.exe

C:\WINDOWS\system32\lxbtcoms.exe

C:\WINDOWS\system32\wscntfy.exe

C:\Program Files\Mozilla Firefox\firefox.exe

C:\Documents and Settings\Susan\Desktop\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.dell4me.com/myway

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://bfc.myway.com/search/de_srchlft.html

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.dell4me.com/myway

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.dell4me.com/myway

R3 - URLSearchHook: (no name) - {4D25F926-B9FE-4682-BF72-8AB8210D6D75} - C:\Program Files\MyWaySA\SrchAsDe\1.bin\deSrcAs.dll

O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll

O2 - BHO: (no name) - {4D25F921-B9FE-4682-BF72-8AB8210D6D75} - C:\Program Files\MyWaySA\SrchAsDe\1.bin\deSrcAs.dll

O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll

O2 - BHO: PCTools Site Guard - {5C8B2A36-3DB1-42A4-A3CB-D426709BBFEB} - C:\PROGRA~1\SPYWAR~2\tools\iesdsg.dll

O2 - BHO: DriveLetterAccess - {5CA3D70E-1895-11CF-8E15-001234567890} - C:\WINDOWS\system32\dla\tfswshx.dll

O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll

O2 - BHO: AOL Toolbar Launcher - {7C554162-8CB7-45A4-B8F4-8EA1C75885F9} - C:\Program Files\AOL\AOL Toolbar 3.0\aoltb.dll

O2 - BHO: PCTools Browser Monitor - {B56A7D7D-6927-48C8-A975-17DF180C71AC} - C:\PROGRA~1\SPYWAR~2\tools\iesdpb.dll

O3 - Toolbar: McAfee VirusScan - {BA52B914-B692-46c4-B683-905236F6F655} - c:\progra~1\mcafee.com\vso\mcvsshl.dll

O3 - Toolbar: AOL Toolbar - {DE9C389F-3316-41A7-809B-AA305ED9D922} - C:\Program Files\AOL\AOL Toolbar 3.0\aoltb.dll

O4 - HKLM\..\Run: [soundMAXPnP] C:\Program Files\Analog Devices\Core\smax4pnp.exe

O4 - HKLM\..\Run: [sunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe

O4 - HKLM\..\Run: [Logitech Utility] Logi_MwX.Exe

O4 - HKLM\..\Run: [iAAnotif] C:\Program Files\Intel\Intel Application Accelerator\iaanotif.exe

O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe

O4 - HKLM\..\Run: [intelMeM] C:\Program Files\Intel\Modem Event Monitor\IntelMEM.exe

O4 - HKLM\..\Run: [DVDLauncher] "C:\Program Files\CyberLink\PowerDVD\DVDLauncher.exe"

O4 - HKLM\..\Run: [updateManager] "C:\Program Files\Common Files\Sonic\Update Manager\sgtray.exe" /r

O4 - HKLM\..\Run: [MMTray] "C:\Program Files\Musicmatch\Musicmatch Jukebox\mm_tray.exe"

O4 - HKLM\..\Run: [VSOCheckTask] "c:\PROGRA~1\mcafee.com\vso\mcmnhdlr.exe" /checktask

O4 - HKLM\..\Run: [MCAgentExe] c:\PROGRA~1\mcafee.com\agent\mcagent.exe

O4 - HKLM\..\Run: [MCUpdateExe] C:\PROGRA~1\mcafee.com\agent\mcupdate.exe

O4 - HKLM\..\Run: [VirusScan Online] "c:\PROGRA~1\mcafee.com\vso\mcvsshld.exe"

O4 - HKLM\..\Run: [dla] C:\WINDOWS\system32\dla\tfswctrl.exe

O4 - HKLM\..\Run: [MimBoot] C:\PROGRA~1\MUSICM~1\MUSICM~3\mimboot.exe

O4 - HKLM\..\Run: [Lexmark 5200 series] "C:\Program Files\Lexmark 5200 series\lxbtbmgr.exe"

O4 - HKLM\..\Run: [LXBTCATS] rundll32 C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\LXBTtime.dll,[email protected]

O4 - HKLM\..\Run: [FaxCenterServer] "C:\Program Files\Lexmark Fax Solutions\fm3032.exe" /s

O4 - HKLM\..\Run: [HostManager] C:\Program Files\Common Files\AOL\1125164243\ee\AOLSoftware.exe

O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot

O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime

O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"

O4 - HKLM\..\Run: [MPFExe] C:\PROGRA~1\McAfee.com\PERSON~1\MpfTray.exe

O4 - HKLM\..\Run: [pumd] c:\windows\system32\pumd.exe /nocomm

O4 - HKLM\..\Run: [ms2src] c:\program files\common files\system\ms2src.exe /install

O4 - HKCU\..\Run: [DellSupport] "C:\Program Files\Dell Support\DSAgnt.exe" /startup

O4 - HKCU\..\Run: [MSKAGENTEXE] C:\PROGRA~1\McAfee\SPAMKI~1\MSKAgent.exe

O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background

O4 - HKCU\..\Run: [spyware Doctor] "C:\Program Files\Spyware Doctor\swdoctor.exe" /Q

O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe

O4 - Global Startup: America Online 9.0 Tray Icon.lnk = C:\Program Files\America Online 9.0\aoltray.exe

O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE

O8 - Extra context menu item: &AOL Toolbar Search - c:\program files\aol\aol toolbar 3.0\resources\en-US\local\search.html

O8 - Extra context menu item: &Search - http://ka.bar.need2find.com/KA/menusearch.html?p=KA

O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll

O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll

O9 - Extra button: Spyware Doctor - {2D663D1A-8670-49D9-A1A5-4C56B4E14E84} - C:\PROGRA~1\SPYWAR~2\tools\iesdpb.dll

O9 - Extra button: AOL Toolbar - {3369AF0D-62E9-4bda-8103-B4C75499B578} - C:\Program Files\AOL\AOL Toolbar 3.0\aoltb.dll

O9 - Extra button: AIM - {AC9E2541-2814-11d5-BC6D-00B0D0A1DE45} - C:\Program Files\AIM\aim.exe

O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\system32\Shdocvw.dll

O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe

O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe

O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204

O16 - DPF: {5F0C30E4-1E72-4DCC-85E5-57810F1CA97B} (McUpdatePortalFactory Class) - http://www.amiuptodate.com/vsc/bin/1,0,0,8...pdatePortal.cab

O16 - DPF: {928626A3-6B98-11CF-90B4-00AA00A4011F} (SurroundVideoCtrl Object) - http://encarta.msn.com/encnet/external/MSSurVid.cab

O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/MsnMesse...pDownloader.cab

O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)

O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe

O23 - Service: AOL Connectivity Service (AOL ACS) - America Online, Inc. - C:\PROGRA~1\COMMON~1\AOL\ACS\AOLacsd.exe

O23 - Service: Ati HotKey Poller - Unknown owner - C:\WINDOWS\system32\Ati2evxx.exe

O23 - Service: IAA Event Monitor (IAANTMon) - Intel Corporation - C:\Program Files\Intel\Intel Application Accelerator\iaantmon.exe

O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe

O23 - Service: iPodService - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe

O23 - Service: lxbt_device - Lexmark International, Inc. - C:\WINDOWS\system32\lxbtcoms.exe

O23 - Service: McAfee WSC Integration (McDetect.exe) - McAfee, Inc - c:\program files\mcafee.com\agent\mcdetect.exe

O23 - Service: McAfee.com McShield (McShield) - Unknown owner - c:\PROGRA~1\mcafee.com\vso\mcshield.exe

O23 - Service: McAfee Task Scheduler (McTskshd.exe) - McAfee, Inc - c:\PROGRA~1\mcafee.com\agent\mctskshd.exe

O23 - Service: McAfee SecurityCenter Update Manager (mcupdmgr.exe) - McAfee, Inc - C:\PROGRA~1\McAfee.com\Agent\mcupdmgr.exe

O23 - Service: McAfee.com VirusScan Online Realtime Engine (MCVSRte) - McAfee, Inc - c:\PROGRA~1\mcafee.com\vso\mcvsrte.exe

O23 - Service: McAfee Personal Firewall Service (MpfService) - McAfee Corporation - C:\PROGRA~1\McAfee.com\PERSON~1\MPFSERVICE.exe

O23 - Service: PC Tools Spyware Doctor (SDhelper) - PC Tools Research Pty Ltd - C:\Program Files\Spyware Doctor\sdhelp.exe

Share this post


Link to post
Share on other sites

Please download Ewido Anti Malware, it is a free version of the program.

  • Install ewido security suite
  • When installing the program, under "Additonal Options" uncheck...
    • Install background guard
    • Install scan via context menu

    [*] Launch ewido, there should now be an icon on your desktop, double-click it.

    [*] The program will now open to the main screen.

    [*] When you run ewido for the first time, you may get a warning "Database could not be found!". Click OK. We will fix this in a moment.

    [*] You will need to update ewido to the latest definition files:

    • On the left hand side of the main screen click update.
    • Then click on Start Update.

    [*] The update will start and a progress bar will show the updates being installed.

    (the status bar at the bottom will display "Update successful")

    [*] Close Ewido

If you are having problems with the updater, you can use this link to manually update ewido.

Ewido manual updates

Next, please reboot your computer in Safe Mode by doing the following:

  • Restart your computer
  • After hearing your computer beep once during startup, but before the Windows icon appears, press F8.
  • Instead of Windows loading as normal, a menu should appear
  • Select the first option, to run Windows in Safe Mode.

For additional help in booting into Safe Mode, see the following site:

http://www.pchell.com/support/safemode.shtml

Run Ewido:

  • Once in Safe Mode start Ewido Anti Malware
  • Click on scanner. (Note: Do not start any programs or open any windows while Ewido is scanning)
  • Click on Complete System Scan, the scan will now begin.
  • While the scan is in progress you will be promted to clean files, click OK.
  • When it asks if you want to clean the first file, put a checkmark in the lower left corner of the box that says "Perform action on all infections", then choose clean and click OK.
  • Once the scan has completed, there will be a button located at the bottom of the screen named Save Report.
  • Click Save Report.
  • Now save the report .txt file to your desktop.
  • Close Ewido

When Ewido is finished scanning; reboot back to normal mode run this online virus scan:(MUST use IE) ActiveScan

  • Once you are on the Panda site click the Scan your PC button
  • A new window will open...click the Check Now button - Enter your Country - Enter your State/Province - Enter your e-mail address and click send(*NOTE it's perfectly safe to do so..You will NOT be spammed from this) - Select either Home User or Company
  • Click the big Scan Now button
  • If/when you get a notice that Panda wants to install an ActiveX component allow it
  • It will start downloading the files it requires for the scan (Note: It may take a couple of minutes)
  • When download is complete, click on Local Disks to start the scan
  • When the scan completes, if anything is detected, click the See Report button, then Save Report and save it to a convenient location like your desktop.

.

Post

  • The Ewido log
  • A new HijackThis log
  • Panda results

in your next reply here.

Share this post


Link to post
Share on other sites

OK. Here is the HijackThis log:

Logfile of HijackThis v1.99.1

Scan saved at 12:23:29 PM, on 5/12/2006

Platform: Windows XP SP2 (WinNT 5.01.2600)

MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:

C:\WINDOWS\System32\smss.exe

C:\WINDOWS\system32\csrss.exe

C:\WINDOWS\system32\winlogon.exe

C:\WINDOWS\system32\services.exe

C:\WINDOWS\system32\lsass.exe

C:\WINDOWS\system32\Ati2evxx.exe

C:\WINDOWS\system32\svchost.exe

C:\WINDOWS\system32\svchost.exe

C:\WINDOWS\System32\svchost.exe

C:\WINDOWS\system32\svchost.exe

C:\WINDOWS\system32\svchost.exe

C:\WINDOWS\system32\spoolsv.exe

C:\PROGRA~1\COMMON~1\AOL\ACS\AOLacsd.exe

C:\Program Files\ewido anti-malware\ewidoctrl.exe

C:\Program Files\Intel\Intel Application Accelerator\iaantmon.exe

c:\program files\mcafee.com\agent\mcdetect.exe

c:\PROGRA~1\mcafee.com\vso\mcshield.exe

c:\PROGRA~1\mcafee.com\agent\mctskshd.exe

C:\WINDOWS\Explorer.EXE

c:\PROGRA~1\mcafee.com\vso\mcvsrte.exe

C:\PROGRA~1\McAfee.com\PERSON~1\MPFSERVICE.exe

C:\Program Files\Spyware Doctor\sdhelp.exe

C:\WINDOWS\system32\svchost.exe

C:\WINDOWS\system32\wdfmgr.exe

C:\Program Files\Analog Devices\Core\smax4pnp.exe

C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe

C:\Program Files\Intel\Intel Application Accelerator\iaanotif.exe

C:\Program Files\Intel\Modem Event Monitor\IntelMEM.exe

C:\Program Files\CyberLink\PowerDVD\DVDLauncher.exe

C:\Program Files\Musicmatch\Musicmatch Jukebox\mm_tray.exe

C:\PROGRA~1\mcafee.com\agent\mcagent.exe

C:\Program Files\Logitech\MouseWare\system\em_exec.exe

C:\PROGRA~1\mcafee.com\vso\mcvsshld.exe

C:\WINDOWS\system32\dla\tfswctrl.exe

C:\Program Files\Lexmark 5200 series\lxbtbmgr.exe

c:\progra~1\mcafee.com\vso\mcvsescn.exe

C:\Program Files\Common Files\AOL\1125164243\ee\AOLSoftware.exe

C:\Program Files\Lexmark 5200 series\lxbtbmon.exe

C:\PROGRA~1\MUSICM~1\MUSICM~3\MMDiag.exe

C:\Program Files\QuickTime\qttask.exe

C:\Program Files\iTunes\iTunesHelper.exe

C:\PROGRA~1\McAfee.com\PERSON~1\MpfTray.exe

C:\windows\system32\pumd.exe

C:\program files\common files\system\ms2src.exe

C:\Program Files\Dell Support\DSAgnt.exe

C:\Program Files\Spyware Doctor\swdoctor.exe

C:\Program Files\MUSICMATCH\Musicmatch Jukebox\mim.exe

C:\PROGRA~1\McAfee.com\PERSON~1\MpfAgent.exe

C:\Program Files\iPod\bin\iPodService.exe

C:\WINDOWS\System32\alg.exe

c:\program files\common files\aol\1125164243\ee\services\antiSpywareApp\ver2_0_25_1\AOLSP Scheduler.exe

c:\program files\common files\aol\1125164243\ee\aolsoftware.exe

C:\WINDOWS\system32\wscntfy.exe

C:\Documents and Settings\Susan\My Documents\HJT\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.dell4me.com/myway

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://bfc.myway.com/search/de_srchlft.html

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.dell4me.com/myway

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.dell4me.com/myway

R3 - URLSearchHook: (no name) - {4D25F926-B9FE-4682-BF72-8AB8210D6D75} - C:\Program Files\MyWaySA\SrchAsDe\1.bin\deSrcAs.dll

O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll

O2 - BHO: (no name) - {4D25F921-B9FE-4682-BF72-8AB8210D6D75} - C:\Program Files\MyWaySA\SrchAsDe\1.bin\deSrcAs.dll

O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll

O2 - BHO: PCTools Site Guard - {5C8B2A36-3DB1-42A4-A3CB-D426709BBFEB} - C:\PROGRA~1\SPYWAR~2\tools\iesdsg.dll

O2 - BHO: DriveLetterAccess - {5CA3D70E-1895-11CF-8E15-001234567890} - C:\WINDOWS\system32\dla\tfswshx.dll

O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll

O2 - BHO: AOL Toolbar Launcher - {7C554162-8CB7-45A4-B8F4-8EA1C75885F9} - C:\Program Files\AOL\AOL Toolbar 3.0\aoltb.dll

O2 - BHO: PCTools Browser Monitor - {B56A7D7D-6927-48C8-A975-17DF180C71AC} - C:\PROGRA~1\SPYWAR~2\tools\iesdpb.dll

O3 - Toolbar: McAfee VirusScan - {BA52B914-B692-46c4-B683-905236F6F655} - c:\progra~1\mcafee.com\vso\mcvsshl.dll

O3 - Toolbar: AOL Toolbar - {DE9C389F-3316-41A7-809B-AA305ED9D922} - C:\Program Files\AOL\AOL Toolbar 3.0\aoltb.dll

O4 - HKLM\..\Run: [soundMAXPnP] C:\Program Files\Analog Devices\Core\smax4pnp.exe

O4 - HKLM\..\Run: [sunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe

O4 - HKLM\..\Run: [Logitech Utility] Logi_MwX.Exe

O4 - HKLM\..\Run: [iAAnotif] C:\Program Files\Intel\Intel Application Accelerator\iaanotif.exe

O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe

O4 - HKLM\..\Run: [intelMeM] C:\Program Files\Intel\Modem Event Monitor\IntelMEM.exe

O4 - HKLM\..\Run: [DVDLauncher] "C:\Program Files\CyberLink\PowerDVD\DVDLauncher.exe"

O4 - HKLM\..\Run: [updateManager] "C:\Program Files\Common Files\Sonic\Update Manager\sgtray.exe" /r

O4 - HKLM\..\Run: [MMTray] "C:\Program Files\Musicmatch\Musicmatch Jukebox\mm_tray.exe"

O4 - HKLM\..\Run: [VSOCheckTask] "c:\PROGRA~1\mcafee.com\vso\mcmnhdlr.exe" /checktask

O4 - HKLM\..\Run: [MCAgentExe] c:\PROGRA~1\mcafee.com\agent\mcagent.exe

O4 - HKLM\..\Run: [MCUpdateExe] C:\PROGRA~1\mcafee.com\agent\mcupdate.exe

O4 - HKLM\..\Run: [VirusScan Online] "c:\PROGRA~1\mcafee.com\vso\mcvsshld.exe"

O4 - HKLM\..\Run: [dla] C:\WINDOWS\system32\dla\tfswctrl.exe

O4 - HKLM\..\Run: [MimBoot] C:\PROGRA~1\MUSICM~1\MUSICM~3\mimboot.exe

O4 - HKLM\..\Run: [Lexmark 5200 series] "C:\Program Files\Lexmark 5200 series\lxbtbmgr.exe"

O4 - HKLM\..\Run: [LXBTCATS] rundll32 C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\LXBTtime.dll,[email protected]

O4 - HKLM\..\Run: [FaxCenterServer] "C:\Program Files\Lexmark Fax Solutions\fm3032.exe" /s

O4 - HKLM\..\Run: [HostManager] C:\Program Files\Common Files\AOL\1125164243\ee\AOLSoftware.exe

O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot

O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime

O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"

O4 - HKLM\..\Run: [MPFExe] C:\PROGRA~1\McAfee.com\PERSON~1\MpfTray.exe

O4 - HKLM\..\Run: [pumd] c:\windows\system32\pumd.exe /nocomm

O4 - HKLM\..\Run: [ms2src] c:\program files\common files\system\ms2src.exe /install

O4 - HKCU\..\Run: [DellSupport] "C:\Program Files\Dell Support\DSAgnt.exe" /startup

O4 - HKCU\..\Run: [MSKAGENTEXE] C:\PROGRA~1\McAfee\SPAMKI~1\MSKAgent.exe

O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background

O4 - HKCU\..\Run: [spyware Doctor] "C:\Program Files\Spyware Doctor\swdoctor.exe" /Q

O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe

O4 - Global Startup: America Online 9.0 Tray Icon.lnk = C:\Program Files\America Online 9.0\aoltray.exe

O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE

O8 - Extra context menu item: &AOL Toolbar Search - c:\program files\aol\aol toolbar 3.0\resources\en-US\local\search.html

O8 - Extra context menu item: &Search - http://ka.bar.need2find.com/KA/menusearch.html?p=KA

O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll

O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll

O9 - Extra button: Spyware Doctor - {2D663D1A-8670-49D9-A1A5-4C56B4E14E84} - C:\PROGRA~1\SPYWAR~2\tools\iesdpb.dll

O9 - Extra button: AOL Toolbar - {3369AF0D-62E9-4bda-8103-B4C75499B578} - C:\Program Files\AOL\AOL Toolbar 3.0\aoltb.dll

O9 - Extra button: AIM - {AC9E2541-2814-11d5-BC6D-00B0D0A1DE45} - C:\Program Files\AIM\aim.exe

O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\system32\Shdocvw.dll

O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe

O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe

O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204

O16 - DPF: {5F0C30E4-1E72-4DCC-85E5-57810F1CA97B} (McUpdatePortalFactory Class) - http://www.amiuptodate.com/vsc/bin/1,0,0,8...pdatePortal.cab

O16 - DPF: {928626A3-6B98-11CF-90B4-00AA00A4011F} (SurroundVideoCtrl Object) - http://encarta.msn.com/encnet/external/MSSurVid.cab

O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) - http://acs.pandasoftware.com/activescan/as5free/asinst.cab

O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/MsnMesse...pDownloader.cab

O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)

O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe

O23 - Service: AOL Connectivity Service (AOL ACS) - America Online, Inc. - C:\PROGRA~1\COMMON~1\AOL\ACS\AOLacsd.exe

O23 - Service: Ati HotKey Poller - Unknown owner - C:\WINDOWS\system32\Ati2evxx.exe

O23 - Service: ewido security suite control - ewido networks - C:\Program Files\ewido anti-malware\ewidoctrl.exe

O23 - Service: IAA Event Monitor (IAANTMon) - Intel Corporation - C:\Program Files\Intel\Intel Application Accelerator\iaantmon.exe

O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe

O23 - Service: iPodService - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe

O23 - Service: lxbt_device - Lexmark International, Inc. - C:\WINDOWS\system32\lxbtcoms.exe

O23 - Service: McAfee WSC Integration (McDetect.exe) - McAfee, Inc - c:\program files\mcafee.com\agent\mcdetect.exe

O23 - Service: McAfee.com McShield (McShield) - Unknown owner - c:\PROGRA~1\mcafee.com\vso\mcshield.exe

O23 - Service: McAfee Task Scheduler (McTskshd.exe) - McAfee, Inc - c:\PROGRA~1\mcafee.com\agent\mctskshd.exe

O23 - Service: McAfee SecurityCenter Update Manager (mcupdmgr.exe) - McAfee, Inc - C:\PROGRA~1\McAfee.com\Agent\mcupdmgr.exe

O23 - Service: McAfee.com VirusScan Online Realtime Engine (MCVSRte) - McAfee, Inc - c:\PROGRA~1\mcafee.com\vso\mcvsrte.exe

O23 - Service: McAfee Personal Firewall Service (MpfService) - McAfee Corporation - C:\PROGRA~1\McAfee.com\PERSON~1\MPFSERVICE.exe

O23 - Service: PC Tools Spyware Doctor (SDhelper) - PC Tools Research Pty Ltd - C:\Program Files\Spyware Doctor\sdhelp.exe

Here is the Ewido log:

ewido anti-malware - Scan report

---------------------------------------------------------

+ Created on: 10:45:58 AM, 5/12/2006

+ Report-Checksum: 96FE2F6D

+ Scan result:

HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\ScreensaversInstaller -> Adware.Screensavers : Cleaned with backup

:mozilla.10:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Trafficmp : Cleaned with backup

:mozilla.11:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Trafficmp : Cleaned with backup

:mozilla.12:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Trafficmp : Cleaned with backup

:mozilla.13:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Trafficmp : Cleaned with backup

:mozilla.14:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Trafficmp : Cleaned with backup

:mozilla.15:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Trafficmp : Cleaned with backup

:mozilla.16:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Trafficmp : Cleaned with backup

:mozilla.17:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Trafficmp : Cleaned with backup

:mozilla.18:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned with backup

:mozilla.19:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned with backup

:mozilla.20:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned with backup

:mozilla.21:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned with backup

:mozilla.22:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned with backup

:mozilla.23:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned with backup

:mozilla.24:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned with backup

:mozilla.25:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned with backup

:mozilla.26:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned with backup

:mozilla.27:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned with backup

:mozilla.28:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Trafficmp : Cleaned with backup

:mozilla.29:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Trafficmp : Cleaned with backup

:mozilla.30:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned with backup

:mozilla.51:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Atdmt : Cleaned with backup

:mozilla.55:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned with backup

:mozilla.56:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned with backup

:mozilla.57:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned with backup

:mozilla.58:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned with backup

:mozilla.59:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned with backup

:mozilla.60:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned with backup

:mozilla.61:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned with backup

:mozilla.62:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned with backup

:mozilla.63:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned with backup

:mozilla.64:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned with backup

:mozilla.74:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Tradedoubler : Cleaned with backup

:mozilla.75:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Tradedoubler : Cleaned with backup

:mozilla.76:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Tradedoubler : Cleaned with backup

:mozilla.77:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Tradedoubler : Cleaned with backup

:mozilla.78:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Tradedoubler : Cleaned with backup

:mozilla.96:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Advertising : Cleaned with backup

:mozilla.97:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Advertising : Cleaned with backup

:mozilla.98:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Advertising : Cleaned with backup

:mozilla.100:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Advertising : Cleaned with backup

:mozilla.104:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Advertising : Cleaned with backup

:mozilla.126:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Adrevolver : Cleaned with backup

:mozilla.127:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Adrevolver : Cleaned with backup

:mozilla.128:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Adrevolver : Cleaned with backup

:mozilla.129:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Adrevolver : Cleaned with backup

:mozilla.130:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Adrevolver : Cleaned with backup

:mozilla.131:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Adrevolver : Cleaned with backup

:mozilla.132:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Adrevolver : Cleaned with backup

:mozilla.135:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned with backup

:mozilla.136:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned with backup

:mozilla.137:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned with backup

:mozilla.138:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned with backup

:mozilla.139:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned with backup

:mozilla.140:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned with backup

:mozilla.141:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned with backup

:mozilla.142:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned with backup

:mozilla.143:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned with backup

:mozilla.146:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Bluestreak : Cleaned with backup

:mozilla.161:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Tribalfusion : Cleaned with backup

:mozilla.162:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Tribalfusion : Cleaned with backup

:mozilla.163:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Tribalfusion : Cleaned with backup

:mozilla.164:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Tribalfusion : Cleaned with backup

:mozilla.166:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Fastclick : Cleaned with backup

:mozilla.167:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Fastclick : Cleaned with backup

:mozilla.168:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Fastclick : Cleaned with backup

:mozilla.169:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Fastclick : Cleaned with backup

:mozilla.170:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Fastclick : Cleaned with backup

:mozilla.171:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Fastclick : Cleaned with backup

:mozilla.172:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Fastclick : Cleaned with backup

:mozilla.173:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Fastclick : Cleaned with backup

:mozilla.174:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Fastclick : Cleaned with backup

:mozilla.176:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Zedo : Cleaned with backup

:mozilla.177:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Zedo : Cleaned with backup

:mozilla.178:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Zedo : Cleaned with backup

:mozilla.179:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Zedo : Cleaned with backup

:mozilla.180:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Zedo : Cleaned with backup

:mozilla.181:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Overture : Cleaned with backup

:mozilla.182:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Overture : Cleaned with backup

:mozilla.191:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Doubleclick : Cleaned with backup

:mozilla.197:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.2o7 : Cleaned with backup

:mozilla.201:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.2o7 : Cleaned with backup

:mozilla.202:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.2o7 : Cleaned with backup

:mozilla.203:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.2o7 : Cleaned with backup

:mozilla.204:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.2o7 : Cleaned with backup

:mozilla.205:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.2o7 : Cleaned with backup

:mozilla.206:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.2o7 : Cleaned with backup

:mozilla.207:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.2o7 : Cleaned with backup

:mozilla.208:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.2o7 : Cleaned with backup

:mozilla.209:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.2o7 : Cleaned with backup

:mozilla.210:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.2o7 : Cleaned with backup

:mozilla.211:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.2o7 : Cleaned with backup

:mozilla.212:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.2o7 : Cleaned with backup

:mozilla.213:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.2o7 : Cleaned with backup

:mozilla.214:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.2o7 : Cleaned with backup

:mozilla.215:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.2o7 : Cleaned with backup

:mozilla.216:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.2o7 : Cleaned with backup

:mozilla.217:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.2o7 : Cleaned with backup

:mozilla.218:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.2o7 : Cleaned with backup

:mozilla.219:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.2o7 : Cleaned with backup

:mozilla.220:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned with backup

:mozilla.221:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Ru4 : Cleaned with backup

:mozilla.222:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Ru4 : Cleaned with backup

:mozilla.223:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Ru4 : Cleaned with backup

:mozilla.224:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Ru4 : Cleaned with backup

:mozilla.225:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Ru4 : Cleaned with backup

:mozilla.226:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Ru4 : Cleaned with backup

:mozilla.227:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Ru4 : Cleaned with backup

:mozilla.228:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Ru4 : Cleaned with backup

:mozilla.229:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Ru4 : Cleaned with backup

:mozilla.230:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Ru4 : Cleaned with backup

:mozilla.231:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Ru4 : Cleaned with backup

:mozilla.244:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Falkag : Cleaned with backup

:mozilla.245:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Falkag : Cleaned with backup

:mozilla.246:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Falkag : Cleaned with backup

:mozilla.247:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Falkag : Cleaned with backup

:mozilla.248:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Serving-sys : Cleaned with backup

:mozilla.249:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Serving-sys : Cleaned with backup

:mozilla.250:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Serving-sys : Cleaned with backup

:mozilla.251:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Serving-sys : Cleaned with backup

:mozilla.258:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.2o7 : Cleaned with backup

:mozilla.271:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Specificclick : Cleaned with backup

:mozilla.272:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Specificclick : Cleaned with backup

:mozilla.273:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Specificclick : Cleaned with backup

:mozilla.274:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Specificclick : Cleaned with backup

:mozilla.276:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Mediaplex : Cleaned with backup

:mozilla.278:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Qksrv : Cleaned with backup

:mozilla.279:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Qksrv : Cleaned with backup

:mozilla.281:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Mediaplex : Cleaned with backup

:mozilla.284:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Adrevolver : Cleaned with backup

:mozilla.303:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.2o7 : Cleaned with backup

:mozilla.327:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Tracking101 : Cleaned with backup

:mozilla.340:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Serving-sys : Cleaned with backup

:mozilla.343:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned with backup

:mozilla.344:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned with backup

:mozilla.345:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned with backup

:mozilla.350:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Tacoda : Cleaned with backup

:mozilla.351:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Tacoda : Cleaned with backup

:mozilla.356:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Revenue : Cleaned with backup

:mozilla.357:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Revenue : Cleaned with backup

:mozilla.358:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Questionmarket : Cleaned with backup

:mozilla.359:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Questionmarket : Cleaned with backup

:mozilla.363:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Starware : Cleaned with backup

:mozilla.364:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Starware : Cleaned with backup

:mozilla.365:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Starware : Cleaned with backup

:mozilla.367:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Adserver : Cleaned with backup

:mozilla.368:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Adserver : Cleaned with backup

:mozilla.369:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Adserver : Cleaned with backup

:mozilla.370:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Adserver : Cleaned with backup

:mozilla.413:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Aavalue : Cleaned with backup

:mozilla.414:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Aavalue : Cleaned with backup

:mozilla.415:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Aavalue : Cleaned with backup

:mozilla.416:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Aavalue : Cleaned with backup

:mozilla.417:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Aavalue : Cleaned with backup

:mozilla.418:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Aavalue : Cleaned with backup

:mozilla.419:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Aavalue : Cleaned with backup

:mozilla.420:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Aavalue : Cleaned with backup

:mozilla.421:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Aavalue : Cleaned with backup

:mozilla.422:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Aavalue : Cleaned with backup

:mozilla.423:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Aavalue : Cleaned with backup

:mozilla.424:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Aavalue : Cleaned with backup

:mozilla.436:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Pointroll : Cleaned with backup

:mozilla.437:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Pointroll : Cleaned with backup

:mozilla.438:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Pointroll : Cleaned with backup

:mozilla.439:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Pointroll : Cleaned with backup

:mozilla.440:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Pointroll : Cleaned with backup

:mozilla.449:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Webtrendslive : Cleaned with backup

:mozilla.504:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Googleadservices : Cleaned with backup

:mozilla.509:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Overture : Cleaned with backup

:mozilla.528:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned with backup

:mozilla.529:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned with backup

:mozilla.533:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Linksynergy : Cleaned with backup

:mozilla.535:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Linksynergy : Cleaned with backup

:mozilla.547:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Burstnet : Cleaned with backup

:mozilla.548:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Burstnet : Cleaned with backup

:mozilla.549:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Burstnet : Cleaned with backup

:mozilla.550:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Addynamix : Cleaned with backup

:mozilla.551:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Addynamix : Cleaned with backup

:mozilla.555:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Bfast : Cleaned with backup

:mozilla.567:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Adjuggler : Cleaned with backup

:mozilla.569:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Burstbeacon : Cleaned with backup

:mozilla.575:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.2o7 : Cleaned with backup

:mozilla.580:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Adrevolver : Cleaned with backup

:mozilla.581:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Adrevolver : Cleaned with backup

:mozilla.589:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Com : Cleaned with backup

:mozilla.590:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Com : Cleaned with backup

:mozilla.606:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Googleadservices : Cleaned with backup

:mozilla.613:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Aavalue : Cleaned with backup

:mozilla.614:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Aavalue : Cleaned with backup

:mozilla.615:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Aavalue : Cleaned with backup

:mozilla.616:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Aavalue : Cleaned with backup

:mozilla.617:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Aavalue : Cleaned with backup

:mozilla.618:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Aavalue : Cleaned with backup

:mozilla.619:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Aavalue : Cleaned with backup

:mozilla.620:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Aavalue : Cleaned with backup

:mozilla.621:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Aavalue : Cleaned with backup

:mozilla.622:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Aavalue : Cleaned with backup

:mozilla.626:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Starware : Cleaned with backup

:mozilla.630:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Euroclick : Cleaned with backup

:mozilla.631:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Euroclick : Cleaned with backup

:mozilla.653:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Googleadservices : Cleaned with backup

:mozilla.660:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Centrport : Cleaned with backup

:mozilla.661:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Centrport : Cleaned with backup

:mozilla.670:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned with backup

:mozilla.682:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned with backup

:mozilla.690:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Bridgetrack : Cleaned with backup

:mozilla.691:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Bridgetrack : Cleaned with backup

:mozilla.696:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Valueclick : Cleaned with backup

:mozilla.697:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Valueclick : Cleaned with backup

:mozilla.714:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Yadro : Cleaned with backup

:mozilla.715:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Yadro : Cleaned with backup

:mozilla.716:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Spylog : Cleaned with backup

:mozilla.726:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Doubleclick : Cleaned with backup

:mozilla.732:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Liveperson : Cleaned with backup

:mozilla.746:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Valuead : Cleaned with backup

:mozilla.747:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Valuead : Cleaned with backup

:mozilla.748:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Valuead : Cleaned with backup

:mozilla.749:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Valuead : Cleaned with backup

:mozilla.750:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Valuead : Cleaned with backup

:mozilla.751:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Valuead : Cleaned with backup

:mozilla.778:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Aavalue : Cleaned with backup

:mozilla.779:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Aavalue : Cleaned with backup

:mozilla.780:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Aavalue : Cleaned with backup

:mozilla.781:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Aavalue : Cleaned with backup

:mozilla.782:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Aavalue : Cleaned with backup

:mozilla.783:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Aavalue : Cleaned with backup

:mozilla.784:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Aavalue : Cleaned with backup

:mozilla.785:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Enhance : Cleaned with backup

:mozilla.786:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Goclick : Cleaned with backup

:mozilla.787:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Goclick : Cleaned with backup

:mozilla.788:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Targetnet : Cleaned with backup

:mozilla.833:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Sexcounter : Cleaned with backup

:mozilla.834:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Sexcounter : Cleaned with backup

:mozilla.835:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Sexcounter : Cleaned with backup

:mozilla.836:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Sexcounter : Cleaned with backup

:mozilla.837:C:\Docum

Share this post


Link to post
Share on other sites

These logs are huge...sorry! I'll break it down. Full ewido report below:

ewido anti-malware - Scan report

---------------------------------------------------------

+ Created on: 10:45:58 AM, 5/12/2006

+ Report-Checksum: 96FE2F6D

+ Scan result:

HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\ScreensaversInstaller -> Adware.Screensavers : Cleaned with backup

:mozilla.10:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Trafficmp : Cleaned with backup

:mozilla.11:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Trafficmp : Cleaned with backup

:mozilla.12:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Trafficmp : Cleaned with backup

:mozilla.13:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Trafficmp : Cleaned with backup

:mozilla.14:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Trafficmp : Cleaned with backup

:mozilla.15:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Trafficmp : Cleaned with backup

:mozilla.16:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Trafficmp : Cleaned with backup

:mozilla.17:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Trafficmp : Cleaned with backup

:mozilla.18:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned with backup

:mozilla.19:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned with backup

:mozilla.20:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned with backup

:mozilla.21:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned with backup

:mozilla.22:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned with backup

:mozilla.23:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned with backup

:mozilla.24:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned with backup

:mozilla.25:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned with backup

:mozilla.26:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned with backup

:mozilla.27:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned with backup

:mozilla.28:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Trafficmp : Cleaned with backup

:mozilla.29:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Trafficmp : Cleaned with backup

:mozilla.30:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned with backup

:mozilla.51:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Atdmt : Cleaned with backup

:mozilla.55:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned with backup

:mozilla.56:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned with backup

:mozilla.57:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned with backup

:mozilla.58:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned with backup

:mozilla.59:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned with backup

:mozilla.60:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned with backup

:mozilla.61:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned with backup

:mozilla.62:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned with backup

:mozilla.63:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned with backup

:mozilla.64:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned with backup

:mozilla.74:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Tradedoubler : Cleaned with backup

:mozilla.75:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Tradedoubler : Cleaned with backup

:mozilla.76:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Tradedoubler : Cleaned with backup

:mozilla.77:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Tradedoubler : Cleaned with backup

:mozilla.78:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Tradedoubler : Cleaned with backup

:mozilla.96:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Advertising : Cleaned with backup

:mozilla.97:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Advertising : Cleaned with backup

:mozilla.98:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Advertising : Cleaned with backup

:mozilla.100:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Advertising : Cleaned with backup

:mozilla.104:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Advertising : Cleaned with backup

:mozilla.126:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Adrevolver : Cleaned with backup

:mozilla.127:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Adrevolver : Cleaned with backup

:mozilla.128:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Adrevolver : Cleaned with backup

:mozilla.129:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Adrevolver : Cleaned with backup

:mozilla.130:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Adrevolver : Cleaned with backup

:mozilla.131:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Adrevolver : Cleaned with backup

:mozilla.132:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Adrevolver : Cleaned with backup

:mozilla.135:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned with backup

:mozilla.136:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned with backup

:mozilla.137:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned with backup

:mozilla.138:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned with backup

:mozilla.139:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned with backup

:mozilla.140:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned with backup

:mozilla.141:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned with backup

:mozilla.142:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned with backup

:mozilla.143:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned with backup

:mozilla.146:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Bluestreak : Cleaned with backup

:mozilla.161:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Tribalfusion : Cleaned with backup

:mozilla.162:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Tribalfusion : Cleaned with backup

:mozilla.163:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Tribalfusion : Cleaned with backup

:mozilla.164:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Tribalfusion : Cleaned with backup

:mozilla.166:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Fastclick : Cleaned with backup

:mozilla.167:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Fastclick : Cleaned with backup

:mozilla.168:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Fastclick : Cleaned with backup

:mozilla.169:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Fastclick : Cleaned with backup

:mozilla.170:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Fastclick : Cleaned with backup

:mozilla.171:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Fastclick : Cleaned with backup

:mozilla.172:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Fastclick : Cleaned with backup

:mozilla.173:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Fastclick : Cleaned with backup

:mozilla.174:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Fastclick : Cleaned with backup

:mozilla.176:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Zedo : Cleaned with backup

:mozilla.177:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Zedo : Cleaned with backup

:mozilla.178:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Zedo : Cleaned with backup

:mozilla.179:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Zedo : Cleaned with backup

:mozilla.180:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Zedo : Cleaned with backup

:mozilla.181:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Overture : Cleaned with backup

:mozilla.182:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Overture : Cleaned with backup

:mozilla.191:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Doubleclick : Cleaned with backup

:mozilla.197:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.2o7 : Cleaned with backup

:mozilla.201:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.2o7 : Cleaned with backup

:mozilla.202:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.2o7 : Cleaned with backup

:mozilla.203:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.2o7 : Cleaned with backup

:mozilla.204:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.2o7 : Cleaned with backup

:mozilla.205:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.2o7 : Cleaned with backup

:mozilla.206:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.2o7 : Cleaned with backup

:mozilla.207:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.2o7 : Cleaned with backup

:mozilla.208:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.2o7 : Cleaned with backup

:mozilla.209:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.2o7 : Cleaned with backup

:mozilla.210:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.2o7 : Cleaned with backup

:mozilla.211:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.2o7 : Cleaned with backup

:mozilla.212:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.2o7 : Cleaned with backup

:mozilla.213:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.2o7 : Cleaned with backup

:mozilla.214:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.2o7 : Cleaned with backup

:mozilla.215:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.2o7 : Cleaned with backup

:mozilla.216:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.2o7 : Cleaned with backup

:mozilla.217:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.2o7 : Cleaned with backup

:mozilla.218:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.2o7 : Cleaned with backup

:mozilla.219:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.2o7 : Cleaned with backup

:mozilla.220:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned with backup

:mozilla.221:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Ru4 : Cleaned with backup

:mozilla.222:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Ru4 : Cleaned with backup

:mozilla.223:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Ru4 : Cleaned with backup

:mozilla.224:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Ru4 : Cleaned with backup

:mozilla.225:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Ru4 : Cleaned with backup

:mozilla.226:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Ru4 : Cleaned with backup

:mozilla.227:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Ru4 : Cleaned with backup

:mozilla.228:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Ru4 : Cleaned with backup

:mozilla.229:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Ru4 : Cleaned with backup

:mozilla.230:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Ru4 : Cleaned with backup

:mozilla.231:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Ru4 : Cleaned with backup

:mozilla.244:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Falkag : Cleaned with backup

:mozilla.245:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Falkag : Cleaned with backup

:mozilla.246:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Falkag : Cleaned with backup

:mozilla.247:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Falkag : Cleaned with backup

:mozilla.248:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Serving-sys : Cleaned with backup

:mozilla.249:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Serving-sys : Cleaned with backup

:mozilla.250:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Serving-sys : Cleaned with backup

:mozilla.251:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Serving-sys : Cleaned with backup

:mozilla.258:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.2o7 : Cleaned with backup

:mozilla.271:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Specificclick : Cleaned with backup

:mozilla.272:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Specificclick : Cleaned with backup

:mozilla.273:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Specificclick : Cleaned with backup

:mozilla.274:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Specificclick : Cleaned with backup

:mozilla.276:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Mediaplex : Cleaned with backup

:mozilla.278:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Qksrv : Cleaned with backup

:mozilla.279:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Qksrv : Cleaned with backup

:mozilla.281:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Mediaplex : Cleaned with backup

:mozilla.284:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Adrevolver : Cleaned with backup

:mozilla.303:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.2o7 : Cleaned with backup

:mozilla.327:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Tracking101 : Cleaned with backup

:mozilla.340:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Serving-sys : Cleaned with backup

:mozilla.343:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned with backup

:mozilla.344:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned with backup

:mozilla.345:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned with backup

:mozilla.350:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Tacoda : Cleaned with backup

:mozilla.351:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Tacoda : Cleaned with backup

:mozilla.356:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Revenue : Cleaned with backup

:mozilla.357:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Revenue : Cleaned with backup

:mozilla.358:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Questionmarket : Cleaned with backup

:mozilla.359:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Questionmarket : Cleaned with backup

:mozilla.363:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Starware : Cleaned with backup

:mozilla.364:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Starware : Cleaned with backup

:mozilla.365:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Starware : Cleaned with backup

:mozilla.367:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Adserver : Cleaned with backup

:mozilla.368:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Adserver : Cleaned with backup

:mozilla.369:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Adserver : Cleaned with backup

:mozilla.370:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Adserver : Cleaned with backup

:mozilla.413:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Aavalue : Cleaned with backup

:mozilla.414:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Aavalue : Cleaned with backup

:mozilla.415:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Aavalue : Cleaned with backup

:mozilla.416:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Aavalue : Cleaned with backup

:mozilla.417:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Aavalue : Cleaned with backup

:mozilla.418:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Aavalue : Cleaned with backup

:mozilla.419:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Aavalue : Cleaned with backup

:mozilla.420:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Aavalue : Cleaned with backup

:mozilla.421:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Aavalue : Cleaned with backup

:mozilla.422:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Aavalue : Cleaned with backup

:mozilla.423:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Aavalue : Cleaned with backup

:mozilla.424:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Aavalue : Cleaned with backup

:mozilla.436:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Pointroll : Cleaned with backup

:mozilla.437:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Pointroll : Cleaned with backup

:mozilla.438:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Pointroll : Cleaned with backup

:mozilla.439:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Pointroll : Cleaned with backup

:mozilla.440:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Pointroll : Cleaned with backup

:mozilla.449:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Webtrendslive : Cleaned with backup

:mozilla.504:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Googleadservices : Cleaned with backup

:mozilla.509:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Overture : Cleaned with backup

:mozilla.528:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned with backup

:mozilla.529:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned with backup

:mozilla.533:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Linksynergy : Cleaned with backup

:mozilla.535:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Linksynergy : Cleaned with backup

:mozilla.547:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Burstnet : Cleaned with backup

:mozilla.548:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Burstnet : Cleaned with backup

:mozilla.549:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Burstnet : Cleaned with backup

:mozilla.550:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Addynamix : Cleaned with backup

:mozilla.551:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Addynamix : Cleaned with backup

:mozilla.555:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Bfast : Cleaned with backup

:mozilla.567:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Adjuggler : Cleaned with backup

:mozilla.569:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Burstbeacon : Cleaned with backup

:mozilla.575:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.2o7 : Cleaned with backup

:mozilla.580:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Adrevolver : Cleaned with backup

:mozilla.581:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Adrevolver : Cleaned with backup

:mozilla.589:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Com : Cleaned with backup

:mozilla.590:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Com : Cleaned with backup

:mozilla.606:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Googleadservices : Cleaned with backup

:mozilla.613:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Aavalue : Cleaned with backup

:mozilla.614:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Aavalue : Cleaned with backup

:mozilla.615:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Aavalue : Cleaned with backup

:mozilla.616:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Aavalue : Cleaned with backup

:mozilla.617:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Aavalue : Cleaned with backup

:mozilla.618:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Aavalue : Cleaned with backup

:mozilla.619:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Aavalue : Cleaned with backup

:mozilla.620:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Aavalue : Cleaned with backup

:mozilla.621:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Aavalue : Cleaned with backup

:mozilla.622:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Aavalue : Cleaned with backup

:mozilla.626:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Starware : Cleaned with backup

:mozilla.630:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Euroclick : Cleaned with backup

:mozilla.631:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Euroclick : Cleaned with backup

:mozilla.653:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Googleadservices : Cleaned with backup

:mozilla.660:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Centrport : Cleaned with backup

:mozilla.661:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Centrport : Cleaned with backup

:mozilla.670:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned with backup

:mozilla.682:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned with backup

:mozilla.690:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Bridgetrack : Cleaned with backup

:mozilla.691:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Bridgetrack : Cleaned with backup

:mozilla.696:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Valueclick : Cleaned with backup

:mozilla.697:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Valueclick : Cleaned with backup

:mozilla.714:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Yadro : Cleaned with backup

:mozilla.715:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Yadro : Cleaned with backup

:mozilla.716:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Spylog : Cleaned with backup

:mozilla.726:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Doubleclick : Cleaned with backup

:mozilla.732:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Liveperson : Cleaned with backup

:mozilla.746:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Valuead : Cleaned with backup

:mozilla.747:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Valuead : Cleaned with backup

:mozilla.748:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Valuead : Cleaned with backup

:mozilla.749:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Valuead : Cleaned with backup

:mozilla.750:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Valuead : Cleaned with backup

:mozilla.751:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Valuead : Cleaned with backup

:mozilla.778:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Aavalue : Cleaned with backup

:mozilla.779:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Aavalue : Cleaned with backup

:mozilla.780:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Aavalue : Cleaned with backup

:mozilla.781:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Aavalue : Cleaned with backup

:mozilla.782:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Aavalue : Cleaned with backup

:mozilla.783:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Aavalue : Cleaned with backup

:mozilla.784:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Aavalue : Cleaned with backup

:mozilla.785:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Enhance : Cleaned with backup

:mozilla.786:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Goclick : Cleaned with backup

:mozilla.787:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Goclick : Cleaned with backup

:mozilla.788:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Targetnet : Cleaned with backup

:mozilla.833:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Sexcounter : Cleaned with backup

:mozilla.834:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Sexcounter : Cleaned with backup

:mozilla.835:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Sexcounter : Cleaned with backup

:mozilla.836:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Sexcounter : Cleaned with backup

:mozilla.837:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Sexcounter : Cleaned with backup

:mozilla.838:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Sexcounter : Cleaned with backup

:mozilla.839:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Sexcounter : Cleaned with backup

:mozilla.840:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Sexcounter : Cleaned with backup

:mozilla.841:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Sexcounter : Cleaned with backup

:mozilla.842:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Sexcounter : Cleaned with backup

:mozilla.843:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Sexcounter : Cleaned with backup

:mozilla.844:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Sexcounter : Cleaned with backup

:mozilla.847:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Paycounter : Cleaned with backup

:mozilla.865:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Clickzs : Cleaned with backup

:mozilla.866:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Clickzs : Cleaned with backup

:mozilla.867:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Dbbsrv : Cleaned with backup

:mozilla.894:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Webtrendslive : Cleaned with backup

:mozilla.900:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned with backup

:mozilla.902:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Sexlist : Cleaned with backup

:mozilla.903:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Clickzs : Cleaned with backup

:mozilla.904:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Clickzs : Cleaned with backup

:mozilla.905:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Web-stat : Cleaned with backup

:mozilla.906:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Web-stat : Cleaned with backup

:mozilla.907:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Web-stat : Cleaned with backup

:mozilla.913:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Realtracker : Cleaned with backup

:mozilla.920:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Trafic : Cleaned with backup

:mozilla.922:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Adengage : Cleaned with backup

:mozilla.923:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Adengage : Cleaned with backup

:mozilla.924:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Adengage : Cleaned with backup

:mozilla.927:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Adocean : Cleaned with backup

:mozilla.928:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Adocean : Cleaned with backup

:mozilla.929:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Need2find : Cleaned with backup

:mozilla.930:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Need2find : Cleaned with backup

:mozilla.934:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Matchcraft : Cleaned with backup

C:\Documents and Settings\Adam\Cookies\[email protected][1].txt -> TrackingCookie.2o7 : Cleaned with backup

C:\Documents and Settings\Adam\Cookies\[email protected][2].txt -> TrackingCookie.Yieldmanager : Cleaned with backup

C:\Documents and Settings\Adam\Cookies\[email protected][1].txt -> TrackingCookie.Clickhype : Cleaned with backup

C:\Documents and Settings\Adam\Cookies\[email protected][2].txt -> TrackingCookie.Specificclick : Cleaned with backup

C:\Documents and Settings\Adam\Cookies\[email protected][2].txt -> TrackingCookie.Adrevolver : Cleaned with backup

C:\Documents and Settings\Adam\Cookies\[email protected][2].txt -> TrackingCookie.Addynamix : Cleaned with backup

C:\Documents and Settings\Adam\Cookies\[email protected][1].txt -> TrackingCookie.Pointroll : Cleaned with backup

C:\Documents and Settings\Adam\Cookies\[email protected][2].txt -> TrackingCookie.Realcastmedia : Cleaned with backup

C:\Documents and Settings\Adam\Cookies\[email protected][1].txt -> TrackingCookie.Advertising : Cleaned with backup

C:\Documents and Settings\Adam\Cookies\[email protected][1].txt -> TrackingCookie.Falkag : Cleaned with backup

C:\Documents and Settings\Adam\Cookies\[email protected][2].txt -> TrackingCookie.Falkag : Cleaned with backup

C:\Documents and Settings\Adam\Cookies\[email protected][2].txt -> TrackingCookie.Atdmt : Cleaned with backup

C:\Documents and Settings\Adam\Cookies\[email protected][2].txt -> TrackingCookie.Bluestreak : Cleaned with backup

C:\Documents and Settings\Adam\Cookies\[email protected][1].txt -> TrackingCookie.Burstnet : Cleaned with backup

C:\Documents and Settings\Adam\Cookies\[email protected][1].txt -> TrackingCookie.Casalemedia : Cleaned with backup

C:\Documents and Settings\Adam\Cookies\[email protected][1].txt -> TrackingCookie.Centrport : Cleaned with backup

C:\Documents and Settings\Adam\Cookies\[email protected][1].txt -> TrackingCookie.Bridgetrack : Cleaned with backup

C:\Documents and Settings\Adam\Cookies\[email protected][2].txt -> TrackingCookie.Com : Cleaned with backup

C:\Documents and Settings\Adam\Cookies\[email protected][2].txt -> TrackingCookie.Clickzs : Cleaned with backup

C:\Documents and Settings\Adam\Cookies\[email protected][2].txt -> TrackingCookie.Clickzs : Cleaned with backup

C:\Documents and Settings\Adam\Cookies\[email protected][1].txt -> TrackingCookie.Clickzs : Cleaned with backup

C:\Documents and Settings\Adam\Cookies\[email protected][1].txt -> TrackingCookie.Doubleclick : Cleaned with backup

C:\Documents and Settings\Adam\Cookies\[email protected][1].txt -> TrackingCookie.Ru4 : Cleaned with backup

C:\Documents and Settings\Adam\Cookies\[email protected][2].txt -> TrackingCookie.Hitbox : Cleaned with backup

C:\Documents and Settings\Adam\Cookies\[email protected][1].txt -> TrackingCookie.Hitbox : Cleaned with backup

C:\Documents and Settings\Adam\Cookies\[email protected][1].txt -> TrackingCookie.Fastclick : Cleaned with backup

C:\Documents and Settings\Adam\Cookies\[email protected][1].txt -> TrackingCookie.Findwhat : Cleaned with backup

C:\Documents and Settings\Adam\Cookies\[email protected][1].txt -> TrackingCookie.Hitbox : Cleaned with backup

C:\Documents and Settings\Adam\Cookies\[email protected][1].txt -> TrackingCookie.Masterstats : Cleaned with backup

C:\Documents and Settings\Adam\Cookies\[email protected][2].txt -> TrackingCookie.Tracking101 : Cleaned with backup

C:\Documents and Settings\Adam\Cookies\[email protected][1].txt -> TrackingCookie.Mediaplex : Cleaned with backup

C:\Documents and Settings\Adam\Cookies\[email protected][1].txt -> TrackingCookie.Need2find : Cleaned with backup

C:\Documents and Settings\Adam\Cookies\[email protected][2].txt -> TrackingCookie.Overture : Cleaned with backup

C:\Documents and Settings\Adam\Cookies\[email protected][1].txt -> TrackingCookie.2o7 : Cleaned with backup

C:\Documents and Settings\Adam\Cookies\[email protected][1].txt -> TrackingCookie.Overture : Cleaned with backup

C:\Documents and Settings\Adam\Cookies\[email protected][1].txt -> TrackingCookie.Questionmarket : Cleaned with backup

C:\Documents and Settings\Adam\Cookies\[email protected][1].txt -> TrackingCookie.Revenue : Cleaned with backup

C:\Documents and Settings\Adam\Cookies\[email protected][2].txt -> TrackingCookie.Adjuggler : Cleaned with backup

C:\Documents and Settings\Adam\Cookies\[email protected]server.iad.liveperson[1].txt -> TrackingCookie.Liveperson : Cleaned with backup

C:\Documents and Settings\Adam\Cookies\[email protected][2].txt -> TrackingCookie.Serving-sys : Cleaned with backup

C:\Documents and Settings\Adam\Cookies\[email protected][2].txt -> TrackingCookie.Starware : Cleaned with backup

C:\Documents and Settings\Adam\Cookies\[email protected][1].txt -> TrackingCookie.Statcounter : Cleaned with backup

C:\Documents and Settings\Adam\Cookies\[email protected][1].txt -> TrackingCookie.Webtrendslive : Cleaned with backup

C:\Documents and Settings\Adam\Cookies\[email protected][1].txt -> TrackingCookie.Targetnet : Cleaned with backup

C:\Documents and Settings\Adam\Cookies\[email protected][2].txt -> TrackingCookie.Tradedoubler : Cleaned with backup

C:\Documents and Settings\Adam\Cookies\[email protected][2].txt -> TrackingCookie.Trafficmp : Cleaned with backup

C:\Documents and Settings\Adam\Cookies\[email protected][2].txt -> TrackingCookie.Tribalfusion : Cleaned with backup

C:\Documents and Settings\Adam\Cookies\[email protected][1].txt -> TrackingCookie.Valuead : Cleaned with backup

C:\Documents and Settings\Adam\Cookies\[email protected][1].txt -> TrackingCookie.Valueclick : Cleaned with backup

C:\Documents and Settings\Adam\Cookies\[email protected][1].txt -> TrackingCookie.Valuead : Cleaned with backup

C:\Documents and Settings\Adam\Cookies\[email protected][1].txt -> TrackingCookie.Burstbeacon : Cleaned with backup

C:\Documents and Settings\Adam\Cookies\[email protected][1].txt -> TrackingCookie.Adserver : Cleaned with backup

C:\Documents and Settings\Adam\Cookies\[email protected][1].txt -> TrackingCookie.Zedo : Cleaned with backup

:mozilla.23:C:\Documents and Settings\Chris\Application Data\Mozilla\Firefox\Profiles\jzdjso4a.default\cookies-1.txt -> TrackingCookie.Com : Cleaned with backup

:mozilla.24:C:\Documents and Settings\Chris\Application Data\Mozilla\Firefox\Profiles\jzdjso4a.default\cookies-1.txt -> TrackingCookie.Com : Cleaned with backup

:mozilla.32:C:\Documents and Settings\Chris\Application Data\Mozilla\Firefox\Profiles\jzdjso4a.default\cookies-1.txt -> TrackingCookie.Euniverseads : Cleaned with backup

:mozilla.39:C:\Documents and Settings\Chris\Application Data\Mozilla\Firefox\Profiles\jzdjso4a.default\cookies-1.txt -> TrackingCookie.Esomniture : Cleaned with backup

:mozilla.40:C:\Documents and Settings\Chris\Application Data\Mozilla\Firefox\Profiles\jzdjso4a.default\cookies-1.txt -> TrackingCookie.Esomniture : Cleaned with backup

Share this post


Link to post
Share on other sites

Panda results as follows:

Incident Status Location

Spyware:Cookie/Apmebf Not disinfected C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt[.apmebf.com/]

Spyware:Cookie/FortuneCity Not disinfected C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt[.fortunecity.com/]

Spyware:Cookie/DomainSponsor Not disinfected C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt[landing.domainsponsor.com/]

Spyware:Cookie/Rightmedia Not disinfected C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt[rightmedia.net/]

Spyware:Cookie/Rightmedia Not disinfected C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt[.rightmedia.net/]

Spyware:Cookie/Rightmedia Not disinfected C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt[rightmedia.net/]

Spyware:Cookie/Rightmedia Not disinfected C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt[.rightmedia.net/]

Spyware:Cookie/Rightmedia Not disinfected C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt[rightmedia.net/]

Spyware:Cookie/Seeq Not disinfected C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt[www48.seeq.com/]

Spyware:Cookie/GoStats Not disinfected C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt[.gostats.com/]

Spyware:Cookie/Toplist Not disinfected C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt[.toplist.cz/]

Spyware:Cookie/GoStats Not disinfected C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt[c3.gostats.com/]

Spyware:Cookie/GoStats Not disinfected C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt[.gostats.com/]

Spyware:Cookie/Hbmediapro Not disinfected C:\Documents and Settings\Adam\Cookies\[email protected][2].txt

Spyware:Cookie/Adrevolver Not disinfected C:\Documents and Settings\Adam\Cookies\[email protected][1].txt

Spyware:Cookie/Belnk Not disinfected C:\Documents and Settings\Adam\Cookies\[email protected][1].txt

Spyware:Cookie/Atwola Not disinfected C:\Documents and Settings\Adam\Cookies\[email protected][1].txt

Spyware:Cookie/Banner Not disinfected C:\Documents and Settings\Adam\Cookies\[email protected][1].txt

Spyware:Cookie/Belnk Not disinfected C:\Documents and Settings\Adam\Cookies\[email protected][1].txt

Spyware:Cookie/bravenetA Not disinfected C:\Documents and Settings\Adam\Cookies\[email protected][1].txt

Spyware:Cookie/Cgi-bin Not disinfected C:\Documents and Settings\Adam\Cookies\[email protected][2].txt

Spyware:Cookie/Cgi-bin Not disinfected C:\Documents and Settings\Adam\Cookies\[email protected][3].txt

Spyware:Cookie/Belnk Not disinfected C:\Documents and Settings\Adam\Cookies\[email protected][2].txt

Spyware:Cookie/Go Not disinfected C:\Documents and Settings\Adam\Cookies\[email protected][2].txt

Spyware:Cookie/Screensavers Not disinfected C:\Documents and Settings\Adam\Cookies\[email protected][1].txt

Spyware:Cookie/DomainSponsor Not disinfected C:\Documents and Settings\Adam\Cookies\[email protected][1].txt

Spyware:Cookie/Maxserving Not disinfected C:\Documents and Settings\Adam\Cookies\[email protected][1].txt

Spyware:Cookie/Qsrch Not disinfected C:\Documents and Settings\Adam\Cookies\[email protected][2].txt

Spyware:Cookie/RealMedia Not disinfected C:\Documents and Settings\Adam\Cookies\[email protected][1].txt

Spyware:Cookie/Rightmedia Not disinfected C:\Documents and Settings\Adam\Cookies\[email protected][1].txt

Spyware:Cookie/Searchportal Not disinfected C:\Documents and Settings\Adam\Cookies\[email protected][1].txt

Spyware:Cookie/Target Not disinfected C:\Documents and Settings\Adam\Cookies\[email protected][2].txt

Spyware:Cookie/Versiontracker Not disinfected C:\Documents and Settings\Adam\Cookies\[email protected][2].txt

Virus:Trj/Sex&Destroy.A Disinfected C:\Documents and Settings\Adam\Local Settings\Temp\cfdata.txt.expanded

Spyware:Cookie/RealMedia Not disinfected C:\Documents and Settings\Chris\Application Data\Mozilla\Firefox\Profiles\jzdjso4a.default\cookies-1.txt[.realmedia.com/]

Spyware:Cookie/Maxserving Not disinfected C:\Documents and Settings\Chris\Application Data\Mozilla\Firefox\Profiles\jzdjso4a.default\cookies-1.txt[.maxserving.com/]

Spyware:Cookie/Atwola Not disinfected C:\Documents and Settings\Chris\Cookies\[email protected][2].txt

Spyware:Cookie/Go Not disinfected C:\Documents and Settings\Chris\Cookies\[email protected][1].txt

Virus:Trj/Sex&Destroy.A Disinfected C:\Documents and Settings\Chris\Local Settings\Temp\cfdata.txt.expanded

Spyware:Cookie/Maxserving Not disinfected C:\Documents and Settings\Susan\Application Data\Mozilla\Firefox\Profiles\z27sho74.default\cookies.txt[.maxserving.com/]

Spyware:Cookie/Go Not disinfected C:\Documents and Settings\Susan\Application Data\Mozilla\Firefox\Profiles\z27sho74.default\cookies.txt[.go.com/]

Spyware:Cookie/Apmebf Not disinfected C:\Documents and Settings\Susan\Application Data\Mozilla\Firefox\Profiles\z27sho74.default\cookies.txt[.apmebf.com/]

Spyware:Cookie/Atwola Not disinfected C:\Documents and Settings\Susan\Cookies\[email protected][1].txt

Spyware:Cookie/RealMedia Not disinfected C:\Documents and Settings\Susan\Cookies\[email protected][2].txt

Virus:Trj/Sex&Destroy.A

Share this post


Link to post
Share on other sites

First of all, you will need to print out this post and/or save a copy as a text file in Notepad; that way you have a hard copy of these instructions; you can not have IE/Firefox/any browser open during the fix

Well you are off to a pretty good start, as far as the size of the log goes that is as much my fault as anything...I should have had you clean some of the cookies and temp stuff out first so they wouldn't show in the logs. We'll still do that in a few minutes.

Please download the Suspicious File Packer from here:

http://www.safer-networking.org/files/sfp.zip

Unzip it to the desktop and run it.

Paste the following list of bad files into the Suspicious File Packer window:

c:\windows\system32\pumd.exe

Allow SFP to pack the files. This will generate a CAB archive on your desktop. Please email the files to me at:

jwbsubmit AT aim DOT com

Please include this link to this log, Thank you http://www.besttechie.net/forums/index.php?showtopic=8424

Please download ATF Cleaner by Atribune.

  • Double-click ATF-Cleaner.exe to run the program.
    Under Main choose: Select All
    Click the Empty Selected button.

If you use Firefox browser

  • Click Firefox at the top and choose: Select All
    Click the Empty Selected button.
    NOTE: If you would like to keep your saved passwords, please click No at the prompt.

If you use Opera browser

  • Click Opera at the top and choose: Select All
    Click the Empty Selected button.
    NOTE: If you would like to keep your saved passwords, please click No at the prompt.

Click Exit on the Main menu to close the program.

For Technical Support, double-click the e-mail address located at the bottom of each menu.

Please run HijackThis and click "Scan Only." Place checks next to the following entries:

  • R3 - URLSearchHook: (no name) - {4D25F926-B9FE-4682-BF72-8AB8210D6D75} - C:\Program Files\MyWaySA\SrchAsDe\1.bin\deSrcAs.dll
  • O4 - HKLM\..\Run: [pumd] c:\windows\system32\pumd.exe /nocomm
  • O4 - HKLM\..\Run: [ms2src] c:\program files\common files\system\ms2src.exe /install

You may also optionally check any/all/none of the following entries for removal:

All of the following are UN-needed to run at startup. They can be ran as needed; saving system resources for better uses

O4 - HKLM\..\Run: [updateManager] "C:\Program Files\Common Files\Sonic\Update Manager\sgtray.exe" /r

O4 - HKLM\..\Run: [MMTray] "C:\Program Files\Musicmatch\Musicmatch Jukebox\mm_tray.exe"

04 - HKLM\..\Run: [MimBoot] C:\PROGRA~1\MUSICM~1\MUSICM~3\mimboot.exe

O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot

O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime

O4 - HKCU\..\Run: [DellSupport] "C:\Program Files\Dell Support\DSAgnt.exe" /startup

O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background

O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe

O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE

Close all browser and other windows except for HijackThis, and click "Fix Checked".

Restart your computer and rerun HijackThis and the Panda scan. Please post a new log from each in a reply to this thread.

PS.If you ran ATF as the steps above say; the Panda log will be considerably smaller this time, but I believe some of it got cut off last time and I would like to make sure.

Share this post


Link to post
Share on other sites

I posted a few weeks ago about a problem I was having with Sweepstakes.com but now I think I have even more problems, way beyond that. I ran Ewido, HiJackThis and Panda ActiveScan. The following are the results:

Ewido:

Scan result:

C:\dfrgntfsdr.exe -> Downloader.Adload.bo : Cleaned with backup

:mozilla.89:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Tacoda : Cleaned with backup

:mozilla.90:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Tacoda : Cleaned with backup

:mozilla.92:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Tacoda : Cleaned with backup

:mozilla.93:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Tacoda : Cleaned with backup

:mozilla.206:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Adbrite : Cleaned with backup

:mozilla.255:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Googleadservices : Cleaned with backup

:mozilla.261:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Googleadservices : Cleaned with backup

:mozilla.303:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Specificclick : Cleaned with backup

:mozilla.304:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Specificclick : Cleaned with backup

:mozilla.318:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Googleadservices : Cleaned with backup

:mozilla.319:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Googleadservices : Cleaned with backup

:mozilla.372:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Adbrite : Cleaned with backup

:mozilla.373:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Adbrite : Cleaned with backup

C:\Documents and Settings\Adam\Local Settings\Temp\Rar$DI01.719\picture04.pif -> Backdoor.SdBot.aad : Cleaned with backup

C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\0X6BKPI7\open[1].exe -> Downloader.Adload.bo : Cleaned with backup

C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\ODAJCD6Z\drsmartload743a[1].exe -> Downloader.Adload.bo : Cleaned with backup

:mozilla.109:C:\Documents and Settings\Susan\Application Data\Mozilla\Firefox\Profiles\z27sho74.default\cookies.txt -> TrackingCookie.Tacoda : Cleaned with backup

:mozilla.110:C:\Documents and Settings\Susan\Application Data\Mozilla\Firefox\Profiles\z27sho74.default\cookies.txt -> TrackingCookie.Tacoda : Cleaned with backup

:mozilla.111:C:\Documents and Settings\Susan\Application Data\Mozilla\Firefox\Profiles\z27sho74.default\cookies.txt -> TrackingCookie.Tacoda : Cleaned with backup

:mozilla.112:C:\Documents and Settings\Susan\Application Data\Mozilla\Firefox\Profiles\z27sho74.default\cookies.txt -> TrackingCookie.Tacoda : Cleaned with backup

:mozilla.393:C:\Documents and Settings\Susan\Application Data\Mozilla\Firefox\Profiles\z27sho74.default\cookies.txt -> TrackingCookie.Googleadservices : Cleaned with backup

:mozilla.438:C:\Documents and Settings\Susan\Application Data\Mozilla\Firefox\Profiles\z27sho74.default\cookies.txt -> TrackingCookie.Googleadservices : Cleaned with backup

:mozilla.517:C:\Documents and Settings\Susan\Application Data\Mozilla\Firefox\Profiles\z27sho74.default\cookies.txt -> TrackingCookie.Googleadservices : Cleaned with backup

:mozilla.562:C:\Documents and Settings\Susan\Application Data\Mozilla\Firefox\Profiles\z27sho74.default\cookies.txt -> TrackingCookie.Tacoda : Cleaned with backup

:mozilla.601:C:\Documents and Settings\Susan\Application Data\Mozilla\Firefox\Profiles\z27sho74.default\cookies.txt -> TrackingCookie.Sitestat : Cleaned with backup

:mozilla.602:C:\Documents and Settings\Susan\Application Data\Mozilla\Firefox\Profiles\z27sho74.default\cookies.txt -> TrackingCookie.Sitestat : Cleaned with backup

:mozilla.618:C:\Documents and Settings\Susan\Application Data\Mozilla\Firefox\Profiles\z27sho74.default\cookies.txt -> TrackingCookie.Googleadservices : Cleaned with backup

C:\Documents and Settings\Susan\Desktop\aimfix_quarantine\7791_wmiapsv.exe.bak -> Backdoor.SdBot.aad : Cleaned with backup

C:\services.com -> Downloader.Adload.bo : Cleaned with backup

C:\WINDOWS\errorfix.exe -> Downloader.Adload.bo : Cleaned with backup

HiJackThis:

Scan saved at 3:14:26 PM, on 6/14/2006

Platform: Windows XP SP2 (WinNT 5.01.2600)

MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:

C:\WINDOWS\System32\smss.exe

C:\WINDOWS\system32\csrss.exe

C:\WINDOWS\system32\winlogon.exe

C:\WINDOWS\system32\services.exe

C:\WINDOWS\system32\lsass.exe

C:\WINDOWS\system32\Ati2evxx.exe

C:\WINDOWS\system32\svchost.exe

C:\WINDOWS\system32\svchost.exe

C:\WINDOWS\System32\svchost.exe

C:\WINDOWS\system32\svchost.exe

C:\WINDOWS\system32\svchost.exe

C:\WINDOWS\system32\spoolsv.exe

C:\PROGRA~1\COMMON~1\AOL\ACS\AOLacsd.exe

C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe

C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe

C:\PROGRA~1\Grisoft\AVGFRE~1\avgemc.exe

C:\Program Files\ewido anti-malware\ewidoctrl.exe

C:\Program Files\Intel\Intel Application Accelerator\iaantmon.exe

c:\program files\mcafee.com\agent\mcdetect.exe

c:\PROGRA~1\mcafee.com\vso\mcshield.exe

c:\PROGRA~1\mcafee.com\agent\mctskshd.exe

c:\PROGRA~1\mcafee.com\vso\mcvsrte.exe

C:\PROGRA~1\McAfee.com\PERSON~1\MPFSERVICE.exe

C:\Program Files\Spyware Doctor\sdhelp.exe

C:\WINDOWS\Explorer.EXE

C:\WINDOWS\system32\svchost.exe

C:\WINDOWS\system32\wdfmgr.exe

C:\Program Files\Analog Devices\Core\smax4pnp.exe

C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe

C:\Program Files\Intel\Intel Application Accelerator\iaanotif.exe

C:\Program Files\Intel\Modem Event Monitor\IntelMEM.exe

C:\Program Files\CyberLink\PowerDVD\DVDLauncher.exe

C:\Program Files\Musicmatch\Musicmatch Jukebox\mm_tray.exe

C:\PROGRA~1\mcafee.com\agent\mcagent.exe

C:\PROGRA~1\mcafee.com\vso\mcvsshld.exe

C:\WINDOWS\system32\dla\tfswctrl.exe

c:\progra~1\mcafee.com\vso\mcvsescn.exe

C:\Program Files\Lexmark 5200 series\lxbtbmgr.exe

C:\PROGRA~1\MUSICM~1\MUSICM~3\MMDiag.exe

C:\Program Files\Common Files\AOL\1125164243\ee\AOLSoftware.exe

C:\Program Files\Lexmark 5200 series\lxbtbmon.exe

C:\Program Files\Common Files\Real\Update_OB\realsched.exe

C:\Program Files\QuickTime\qttask.exe

C:\PROGRA~1\McAfee.com\PERSON~1\MpfTray.exe

C:\windows\system32\pumd.exe

C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe

C:\program files\common files\system\ms2src.exe

C:\Program Files\Dell Support\DSAgnt.exe

C:\Program Files\Logitech\MouseWare\system\em_exec.exe

C:\Program Files\Spyware Doctor\swdoctor.exe

C:\Program Files\MUSICMATCH\Musicmatch Jukebox\mim.exe

C:\PROGRA~1\McAfee.com\PERSON~1\MpfAgent.exe

C:\WINDOWS\System32\alg.exe

c:\program files\common files\aol\1125164243\ee\services\antiSpywareApp\ver2_0_25_1\AOLSP Scheduler.exe

c:\program files\common files\aol\1125164243\ee\aolsoftware.exe

C:\Program Files\AIM\aim.exe

c:\progra~1\mcafee.com\vso\mcvsftsn.exe

C:\Program Files\Messenger\msmsgs.exe

C:\WINDOWS\system32\lxbtcoms.exe

C:\Documents and Settings\Susan\My Documents\HJT\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.dell4me.com/myway

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.dell4me.com/myway

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.dell4me.com/myway

O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll

O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll

O2 - BHO: PCTools Site Guard - {5C8B2A36-3DB1-42A4-A3CB-D426709BBFEB} - C:\PROGRA~1\SPYWAR~2\tools\iesdsg.dll

O2 - BHO: DriveLetterAccess - {5CA3D70E-1895-11CF-8E15-001234567890} - C:\WINDOWS\system32\dla\tfswshx.dll

O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll

O2 - BHO: AOL Toolbar Launcher - {7C554162-8CB7-45A4-B8F4-8EA1C75885F9} - C:\Program Files\AOL\AOL Toolbar 3.0\aoltb.dll

O2 - BHO: PCTools Browser Monitor - {B56A7D7D-6927-48C8-A975-17DF180C71AC} - C:\PROGRA~1\SPYWAR~2\tools\iesdpb.dll

O3 - Toolbar: McAfee VirusScan - {BA52B914-B692-46c4-B683-905236F6F655} - c:\progra~1\mcafee.com\vso\mcvsshl.dll

O3 - Toolbar: AOL Toolbar - {DE9C389F-3316-41A7-809B-AA305ED9D922} - C:\Program Files\AOL\AOL Toolbar 3.0\aoltb.dll

O4 - HKLM\..\Run: [soundMAXPnP] C:\Program Files\Analog Devices\Core\smax4pnp.exe

O4 - HKLM\..\Run: [sunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe

O4 - HKLM\..\Run: [Logitech Utility] Logi_MwX.Exe

O4 - HKLM\..\Run: [iAAnotif] C:\Program Files\Intel\Intel Application Accelerator\iaanotif.exe

O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe

O4 - HKLM\..\Run: [intelMeM] C:\Program Files\Intel\Modem Event Monitor\IntelMEM.exe

O4 - HKLM\..\Run: [DVDLauncher] "C:\Program Files\CyberLink\PowerDVD\DVDLauncher.exe"

O4 - HKLM\..\Run: [updateManager] "C:\Program Files\Common Files\Sonic\Update Manager\sgtray.exe" /r

O4 - HKLM\..\Run: [MMTray] "C:\Program Files\Musicmatch\Musicmatch Jukebox\mm_tray.exe"

O4 - HKLM\..\Run: [VSOCheckTask] "c:\PROGRA~1\mcafee.com\vso\mcmnhdlr.exe" /checktask

O4 - HKLM\..\Run: [MCAgentExe] c:\PROGRA~1\mcafee.com\agent\mcagent.exe

O4 - HKLM\..\Run: [MCUpdateExe] c:\PROGRA~1\mcafee.com\agent\mcupdate.exe

O4 - HKLM\..\Run: [VirusScan Online] "c:\PROGRA~1\mcafee.com\vso\mcvsshld.exe"

O4 - HKLM\..\Run: [dla] C:\WINDOWS\system32\dla\tfswctrl.exe

O4 - HKLM\..\Run: [MimBoot] C:\PROGRA~1\MUSICM~1\MUSICM~3\mimboot.exe

O4 - HKLM\..\Run: [Lexmark 5200 series] "C:\Program Files\Lexmark 5200 series\lxbtbmgr.exe"

O4 - HKLM\..\Run: [LXBTCATS] rundll32 C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\LXBTtime.dll,[email protected]

O4 - HKLM\..\Run: [FaxCenterServer] "C:\Program Files\Lexmark Fax Solutions\fm3032.exe" /s

O4 - HKLM\..\Run: [HostManager] C:\Program Files\Common Files\AOL\1125164243\ee\AOLSoftware.exe

O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot

O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime

O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"

O4 - HKLM\..\Run: [MPFExe] C:\PROGRA~1\McAfee.com\PERSON~1\MpfTray.exe

O4 - HKLM\..\Run: [pumd] c:\windows\system32\pumd.exe /nocomm

O4 - HKLM\..\Run: [AVG7_CC] C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe /STARTUP

O4 - HKLM\..\Run: [ms2src] c:\program files\common files\system\ms2src.exe /install

O4 - HKCU\..\Run: [DellSupport] "C:\Program Files\Dell Support\DSAgnt.exe" /startup

O4 - HKCU\..\Run: [MSKAGENTEXE] C:\PROGRA~1\McAfee\SPAMKI~1\MSKAgent.exe

O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background

O4 - HKCU\..\Run: [spyware Doctor] "C:\Program Files\Spyware Doctor\swdoctor.exe" /Q

O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe

O4 - Global Startup: America Online 9.0 Tray Icon.lnk = C:\Program Files\America Online 9.0\aoltray.exe

O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE

O8 - Extra context menu item: &AOL Toolbar Search - c:\program files\aol\aol toolbar 3.0\resources\en-US\local\search.html

O8 - Extra context menu item: &Search - http://ka.bar.need2find.com/KA/menusearch.html?p=KA

O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll

O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll

O9 - Extra button: Spyware Doctor - {2D663D1A-8670-49D9-A1A5-4C56B4E14E84} - C:\PROGRA~1\SPYWAR~2\tools\iesdpb.dll

O9 - Extra button: AOL Toolbar - {3369AF0D-62E9-4bda-8103-B4C75499B578} - C:\Program Files\AOL\AOL Toolbar 3.0\aoltb.dll

O9 - Extra button: AIM - {AC9E2541-2814-11d5-BC6D-00B0D0A1DE45} - C:\Program Files\AIM\aim.exe

O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\system32\Shdocvw.dll

O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe

O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe

O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204

O16 - DPF: {5F0C30E4-1E72-4DCC-85E5-57810F1CA97B} (McUpdatePortalFactory Class) - http://www.amiuptodate.com/vsc/bin/1,0,0,8...pdatePortal.cab

O16 - DPF: {928626A3-6B98-11CF-90B4-00AA00A4011F} (SurroundVideoCtrl Object) - http://encarta.msn.com/encnet/external/MSSurVid.cab

O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) - http://acs.pandasoftware.com/activescan/as5free/asinst.cab

O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/MsnMesse...pDownloader.cab

O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll

O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe

O23 - Service: AOL Connectivity Service (AOL ACS) - America Online, Inc. - C:\PROGRA~1\COMMON~1\AOL\ACS\AOLacsd.exe

O23 - Service: Ati HotKey Poller - Unknown owner - C:\WINDOWS\system32\Ati2evxx.exe

O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe

O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe

O23 - Service: AVG E-mail Scanner (AVGEMS) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgemc.exe

O23 - Service: ewido security suite control - ewido networks - C:\Program Files\ewido anti-malware\ewidoctrl.exe

O23 - Service: IAA Event Monitor (IAANTMon) - Intel Corporation - C:\Program Files\Intel\Intel Application Accelerator\iaantmon.exe

O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe

O23 - Service: iPodService - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe

O23 - Service: lxbt_device - Lexmark International, Inc. - C:\WINDOWS\system32\lxbtcoms.exe

O23 - Service: McAfee WSC Integration (McDetect.exe) - McAfee, Inc - c:\program files\mcafee.com\agent\mcdetect.exe

O23 - Service: McAfee.com McShield (McShield) - Unknown owner - c:\PROGRA~1\mcafee.com\vso\mcshield.exe

O23 - Service: McAfee Task Scheduler (McTskshd.exe) - McAfee, Inc - c:\PROGRA~1\mcafee.com\agent\mctskshd.exe

O23 - Service: McAfee SecurityCenter Update Manager (mcupdmgr.exe) - McAfee, Inc - C:\PROGRA~1\McAfee.com\Agent\mcupdmgr.exe

O23 - Service: McAfee.com VirusScan Online Realtime Engine (MCVSRte) - McAfee, Inc - c:\PROGRA~1\mcafee.com\vso\mcvsrte.exe

O23 - Service: McAfee Personal Firewall Service (MpfService) - McAfee Corporation - C:\PROGRA~1\McAfee.com\PERSON~1\MPFSERVICE.exe

O23 - Service: PC Tools Spyware Doctor (SDhelper) - PC Tools Research Pty Ltd - C:\Program Files\Spyware Doctor\sdhelp.exe

And ActiveScan:

Incident Status Location

Spyware:Spyware/Dluca Not disinfected C:\Documents and Settings\Adam\Local Settings\Temp\lf_23C4.tmp

Possible Virus. Not disinfected C:\Documents and Settings\Adam\Local Settings\Temp\lf_A90.tmp

Virus:Trj/KillAV.EG Not disinfected C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\0X6BKPI7\msninstaller2[1].zip[manager.exe]

Adware:Adware/NewAds Not disinfected C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\0X6BKPI7\msninstaller2[1].zip[mc-110-12-0000488.exe]

Adware:Adware/NewAds Not disinfected C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\4PANWHMV\4994comhost[1].zip

Adware:Adware/NewAds Not disinfected C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\4PANWHMV\msdosmgr[2].exe[mc-110-12-0000487.exe]

Virus:Trj/KillAV.EG Not disinfected C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\ODAJCD6Z\comhost[1].zip[manager.exe]

Adware:Adware/NewAds Not disinfected C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\ODAJCD6Z\comhost[1].zip[mc-110-12-0000488.exe]

Adware:Adware/DollarRevenue Not disinfected C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\ODAJCD6Z\comhost[1].zip[msnupdate.exe]

Adware:Adware/NewAds Not disinfected C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\ODAJCD6Z\comhost[2].zip

Adware:Adware/NewAds Not disinfected C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\ODAJCD6Z\party2[1].dci[mc-110-12-0000515.exe]

Adware:Adware/NewAds Not disinfected C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\W9QVGTUZ\4994comhost[1].zip

Adware:Adware/NewAds Not disinfected C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\W9QVGTUZ\comhost[1].exe

Virus:Trj/Sex&Destroy.A Disinfected C:\Documents and Settings\Susan\Local Settings\Temp\cfdata.txt.expanded

Possible Virus. Not disinfected C:\Documents and Settings\Susan\Local Settings\Temp\lf_810.tmp

Possible Virus. Not disinfected C:\Documents and Settings\Susan\Local Settings\Temp\lf_840.tmp

Possible Virus. Not disinfected C:\Documents and Settings\Susan\Local Settings\Temp\lf_8D4.tmp

Possible Virus. Not disinfected C:\Documents and Settings\Susan\Local Settings\Temp\lf_9E8.tmp

Possible Virus. Not disinfected C:\Documents and Settings\Susan\Local Settings\Temp\lf_AB4.tmp

Possible Virus. Not disinfected C:\Documents and Settings\Susan\Local Settings\Temp\lf_ABC.tmp

Possible Virus. Not disinfected C:\Documents and Settings\Susan\Local Settings\Temp\lf_B30.tmp

Possible Virus. Not disinfected C:\Documents and Settings\Susan\Local Settings\Temp\lf_B3C.tmp

Possible Virus. Not disinfected C:\Program Files\Common Files\System\ms2src.exe

Possible Virus. Not disinfected C:\Program Files\Napster\xdetect.ocx

Adware:Adware/NewAds Not disinfected C:\WINDOWS\comhost.exe

Virus:Trj/KillAV.EG Disinfected C:\WINDOWS\manager.exe

Spyware:Spyware/Dluca Not disinfected C:\WINDOWS\SYSTEM32\pumd.exe

Adware:Adware/NewAds Not disinfected C:\WINDOWS\SYSTEM32\removefunc.ram

Any and all help would be greatly appreciated. It is really making me crazy. Thank you!

Share this post


Link to post
Share on other sites

First of all, you will need to print out this post and/or save a copy as a text file in Notepad; that way you have a hard copy of these instructions; you can not have IE/Firefox/any browser open during the fix

Please stick with one thread.

You are running two(or more) Anti-Virus programs..while one is a MUST have...running more than one is NEVER ACCEPTABLE.

They will 'battle' for control of your system and resources; causing slowdown, errors and shut down. I see you have installed AVG7 since last post.....In my opinion this is a GREAT choice..it uses much less resources than MacAfee. You need to get rid of one of them, your choice which.

Choose one and uninstall the other.

Most of the stuff found in the scans are cookies and/or files in some temporary folder.. Let's clear them all out.

Clean your TIF's and Cookies for IE:

Make sure IE and OutlookExpress are closed

Go to Control Panel > Internet Options > General(tab)

Click the "Delete Cookies" button

Next to it, Click the "Delete Files" button

When prompted, place a check in: "Delete all offline content", click OK

Clean other Temporary files & Recycle bin

Go to start > run and type: cleanmgr then click ok.

Let it scan your system for files to remove.

Make sure Temporary Files, Temporary Internet Files, and Recycle Bin are checked.

Press OK to remove them.

If you have FireFox /Mozilla installed

Clean your Cache and Cookies in Firefox:

Go to Tools > Options.

Click Privacy in the menu on the left side of the Options window.

Click the Clear button located to the right of each option (History, Cookies, Cache).

Click OK to close the Options window

Alternatively, you can clear all information stored while browsing by clicking Clear All.

A confirmation dialog box will be shown before clearing the information.

Download KillBox http://www.downloads.subratam.org/KillBox.zip

Place it in a folder on your Desktop.

Help with unzipping files is HERE

In the main screen of KillBox, go to Tools in the top menu bar, and select: Delete Temp Files. Use the drop down box and clear ALL profiles this way.

Back at the main Killbox screen check the box that says 'End Explorer Shell While Killing File'. Next click on 'Delete on Reboot'. Click the button marked ALL FILES(lower right of Killbox)

Left click and drag cursor to hilight ALL files listed in the quote box below, right click and choose copy click. Go back to KillBox. Go to File->Paste from Clipboard and then hit the button with a red circle and white X. Confirm to delete and when asked if you want to reboot, say Yes:

c:\windows\system32\pumd.exe

c:\program files\common files\system\ms2src.exe

C:\Program Files\Napster\xdetect.ocx

C:\WINDOWS\comhost.exe

C:\WINDOWS\manager.exe

C:\WINDOWS\SYSTEM32\removefunc.ram

C:\services.com

C:\WINDOWS\errorfix.exe

C:\dfrgntfsdr.exe

If you get a PendingOperations message, ignore/close it and manually restart your computer.

After the computer restarts run HijackThis and click "Scan Only." Place checks next to the following entries:

O4 - HKLM\..\Run: [pumd] c:\windows\system32\pumd.exe /nocomm

O4 - HKLM\..\Run: [ms2src] c:\program files\common files\system\ms2src.exe /install

Close all other programs and windows and click "Fix Checked"

Reboot

Post a new HijackThis log

Share this post


Link to post
Share on other sites

Logfile of HijackThis v1.99.1

Scan saved at 1:45:40 PM, on 6/15/2006

Platform: Windows XP SP2 (WinNT 5.01.2600)

MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:

C:\WINDOWS\System32\smss.exe

C:\WINDOWS\system32\csrss.exe

C:\WINDOWS\system32\winlogon.exe

C:\WINDOWS\system32\services.exe

C:\WINDOWS\system32\lsass.exe

C:\WINDOWS\system32\Ati2evxx.exe

C:\WINDOWS\system32\svchost.exe

C:\WINDOWS\system32\svchost.exe

C:\WINDOWS\System32\svchost.exe

C:\WINDOWS\system32\svchost.exe

C:\WINDOWS\system32\svchost.exe

C:\WINDOWS\system32\spoolsv.exe

C:\PROGRA~1\COMMON~1\AOL\ACS\AOLacsd.exe

C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe

C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe

C:\PROGRA~1\Grisoft\AVGFRE~1\avgemc.exe

C:\Program Files\ewido anti-malware\ewidoctrl.exe

C:\Program Files\Intel\Intel Application Accelerator\iaantmon.exe

C:\WINDOWS\Explorer.EXE

C:\Program Files\Spyware Doctor\sdhelp.exe

C:\WINDOWS\system32\svchost.exe

C:\WINDOWS\system32\wdfmgr.exe

C:\Program Files\Analog Devices\Core\smax4pnp.exe

C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe

C:\Program Files\Intel\Intel Application Accelerator\iaanotif.exe

C:\Program Files\Logitech\MouseWare\system\em_exec.exe

C:\Program Files\Intel\Modem Event Monitor\IntelMEM.exe

C:\Program Files\CyberLink\PowerDVD\DVDLauncher.exe

C:\Program Files\Common Files\Sonic\Update Manager\sgtray.exe

C:\Program Files\Musicmatch\Musicmatch Jukebox\mm_tray.exe

C:\WINDOWS\system32\dla\tfswctrl.exe

C:\Program Files\Lexmark 5200 series\lxbtbmgr.exe

C:\Program Files\Lexmark 5200 series\lxbtbmon.exe

C:\PROGRA~1\MUSICM~1\MUSICM~3\MMDiag.exe

C:\Program Files\Common Files\AOL\1125164243\ee\AOLSoftware.exe

C:\Program Files\Common Files\Real\Update_OB\realsched.exe

C:\Program Files\QuickTime\qttask.exe

C:\Program Files\MUSICMATCH\Musicmatch Jukebox\mim.exe

C:\Program Files\iTunes\iTunesHelper.exe

C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe

C:\Program Files\Dell Support\DSAgnt.exe

C:\Program Files\Spyware Doctor\swdoctor.exe

C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe

C:\Program Files\iPod\bin\iPodService.exe

C:\WINDOWS\System32\alg.exe

C:\WINDOWS\system32\wuauclt.exe

c:\program files\common files\aol\1125164243\ee\services\antiSpywareApp\ver2_0_25_1\AOLSP Scheduler.exe

c:\program files\common files\aol\1125164243\ee\aolsoftware.exe

C:\Documents and Settings\Susan\My Documents\HJT\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.dell4me.com/myway

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.dell4me.com/myway

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.dell4me.com/myway

O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll

O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll

O2 - BHO: PCTools Site Guard - {5C8B2A36-3DB1-42A4-A3CB-D426709BBFEB} - C:\PROGRA~1\SPYWAR~2\tools\iesdsg.dll

O2 - BHO: DriveLetterAccess - {5CA3D70E-1895-11CF-8E15-001234567890} - C:\WINDOWS\system32\dla\tfswshx.dll

O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll

O2 - BHO: AOL Toolbar Launcher - {7C554162-8CB7-45A4-B8F4-8EA1C75885F9} - C:\Program Files\AOL\AOL Toolbar 3.0\aoltb.dll

O2 - BHO: PCTools Browser Monitor - {B56A7D7D-6927-48C8-A975-17DF180C71AC} - C:\PROGRA~1\SPYWAR~2\tools\iesdpb.dll

O3 - Toolbar: AOL Toolbar - {DE9C389F-3316-41A7-809B-AA305ED9D922} - C:\Program Files\AOL\AOL Toolbar 3.0\aoltb.dll

O4 - HKLM\..\Run: [soundMAXPnP] C:\Program Files\Analog Devices\Core\smax4pnp.exe

O4 - HKLM\..\Run: [sunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe

O4 - HKLM\..\Run: [Logitech Utility] Logi_MwX.Exe

O4 - HKLM\..\Run: [iAAnotif] C:\Program Files\Intel\Intel Application Accelerator\iaanotif.exe

O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe

O4 - HKLM\..\Run: [intelMeM] C:\Program Files\Intel\Modem Event Monitor\IntelMEM.exe

O4 - HKLM\..\Run: [DVDLauncher] "C:\Program Files\CyberLink\PowerDVD\DVDLauncher.exe"

O4 - HKLM\..\Run: [updateManager] "C:\Program Files\Common Files\Sonic\Update Manager\sgtray.exe" /r

O4 - HKLM\..\Run: [MMTray] "C:\Program Files\Musicmatch\Musicmatch Jukebox\mm_tray.exe"

O4 - HKLM\..\Run: [dla] C:\WINDOWS\system32\dla\tfswctrl.exe

O4 - HKLM\..\Run: [MimBoot] C:\PROGRA~1\MUSICM~1\MUSICM~3\mimboot.exe

O4 - HKLM\..\Run: [Lexmark 5200 series] "C:\Program Files\Lexmark 5200 series\lxbtbmgr.exe"

O4 - HKLM\..\Run: [LXBTCATS] rundll32 C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\LXBTtime.dll,[email protected]

O4 - HKLM\..\Run: [FaxCenterServer] "C:\Program Files\Lexmark Fax Solutions\fm3032.exe" /s

O4 - HKLM\..\Run: [HostManager] C:\Program Files\Common Files\AOL\1125164243\ee\AOLSoftware.exe

O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot

O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime

O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"

O4 - HKLM\..\Run: [AVG7_CC] C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe /STARTUP

O4 - HKCU\..\Run: [DellSupport] "C:\Program Files\Dell Support\DSAgnt.exe" /startup

O4 - HKCU\..\Run: [MSKAGENTEXE] C:\PROGRA~1\McAfee\SPAMKI~1\MSKAgent.exe

O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background

O4 - HKCU\..\Run: [spyware Doctor] "C:\Program Files\Spyware Doctor\swdoctor.exe" /Q

O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe

O4 - Global Startup: America Online 9.0 Tray Icon.lnk = C:\Program Files\America Online 9.0\aoltray.exe

O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE

O8 - Extra context menu item: &AOL Toolbar Search - c:\program files\aol\aol toolbar 3.0\resources\en-US\local\search.html

O8 - Extra context menu item: &Search - http://ka.bar.need2find.com/KA/menusearch.html?p=KA

O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll

O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll

O9 - Extra button: Spyware Doctor - {2D663D1A-8670-49D9-A1A5-4C56B4E14E84} - C:\PROGRA~1\SPYWAR~2\tools\iesdpb.dll

O9 - Extra button: AOL Toolbar - {3369AF0D-62E9-4bda-8103-B4C75499B578} - C:\Program Files\AOL\AOL Toolbar 3.0\aoltb.dll

O9 - Extra button: AIM - {AC9E2541-2814-11d5-BC6D-00B0D0A1DE45} - C:\Program Files\AIM\aim.exe

O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\system32\Shdocvw.dll

O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe

O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe

O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204

O16 - DPF: {5F0C30E4-1E72-4DCC-85E5-57810F1CA97B} (McUpdatePortalFactory Class) - http://www.amiuptodate.com/vsc/bin/1,0,0,8...pdatePortal.cab

O16 - DPF: {928626A3-6B98-11CF-90B4-00AA00A4011F} (SurroundVideoCtrl Object) - http://encarta.msn.com/encnet/external/MSSurVid.cab

O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) - http://acs.pandasoftware.com/activescan/as5free/asinst.cab

O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/MsnMesse...pDownloader.cab

O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)

O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll

O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe

O23 - Service: AOL Connectivity Service (AOL ACS) - America Online, Inc. - C:\PROGRA~1\COMMON~1\AOL\ACS\AOLacsd.exe

O23 - Service: Ati HotKey Poller - Unknown owner - C:\WINDOWS\system32\Ati2evxx.exe

O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe

O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe

O23 - Service: AVG E-mail Scanner (AVGEMS) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgemc.exe

O23 - Service: ewido security suite control - ewido networks - C:\Program Files\ewido anti-malware\ewidoctrl.exe

O23 - Service: IAA Event Monitor (IAANTMon) - Intel Corporation - C:\Program Files\Intel\Intel Application Accelerator\iaantmon.exe

O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe

O23 - Service: iPodService - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe

O23 - Service: lxbt_device - Lexmark International, Inc. - C:\WINDOWS\system32\lxbtcoms.exe

O23 - Service: PC Tools Spyware Doctor (SDhelper) - PC Tools Research Pty Ltd - C:\Program Files\Spyware Doctor\sdhelp.exe

I am still having a problem trying to switch users on Windows XP; it just won't do it. It will show the new user's name but it won't allow them to log on ("loading preferences" message won't display) or, if they are already logged on, it won't do anything beyond show "Welcome 'username'". It just hangs up there. Nothing will happen unless we press Ctrl-Alt-Delete and then it will switch to the new user. Any ideas?

And, this morning, AVG ran a test and came up with several viruses in C:\System Volume Information\_restore. It said Downloader.Generic2.BGZ, Downloader.Generic2.CEZ, Downloader.Generic2.CHB and they're a bunch of .exe files and were not healed. I'm trying to figure out how we keep getting these things. It may just be a coincidence, but every time my daughter uses MSN Messenger, it seems we have problems. Am I just paranoid?

Anyway, I got rid of McAfee and we're keeping AVG7. Anything else we might need? Is AVG going to block viruses or do we need something else? When we uninstalled McAfee, obviously it got rid of everything to do with that, firewall included. So are we totally unprotected in that aspect, now? I'm so confused and tired of this at this point that I don't know which end is up, quite frankly. I really appreciate any help and advice. Thank you!

Edited by Bree26

Share this post


Link to post
Share on other sites
I am still having a problem trying to switch users on Windows XP; it just won't do it.

It MAY have to do with your running services, I'll take a look at those when you post again...

And, this morning, AVG ran a test and came up with several viruses in C:\System Volume Information\_restore.

Those are "saved" virusessessssess (virii) in your SystemRestore..we'll clean those out in one of your final steps. They are of NO consquence UNLESS you do a system restore. They can't be activated OR cleaned as they are now.

Anyway, I got rid of McAfee and we're keeping AVG7

Good choice in MY opinion.

got rid of everything to do with that, firewall included. So are we totally unprotected in that aspect, now?

NO... WinXP sp2 has a built in firewall, which will protet you against things comming IN to your computer. A personal Firewall such as Zone Alarm...Kerio...Sygate etc will protect both incomming and OUTGOING connections. More on this issue HERE

Please post a startlist log instead of a regular HJT log by doing the following:

From the opening screen of HijackThis select Open Misc Tools section>Check the 2 boxes at List empty section and list minor section> Click the Generate Startuplist Log button. Post the resulting log here please.

Share this post


Link to post
Share on other sites

I downloaded ZoneAlarm yesterday. Still trying to figure out what to allow and what not to allow, but we'll get it eventually. Would ZoneAlarm cause iTunes to randomly drop some songs from my kids' libraries? That was something a little weird that happened last night. Anyway, the startup list follows, and again, thank you for your help:

StartupList report, 6/18/2006, 2:33:46 PM

StartupList version: 1.52.2

Started from : C:\Documents and Settings\Susan\My Documents\HJT\HijackThis.EXE

Detected: Windows XP SP2 (WinNT 5.01.2600)

Detected: Internet Explorer v6.00 SP2 (6.00.2900.2180)

* Using default options

* Including empty and uninteresting sections

* Showing rarely important sections

==================================================

Running processes:

C:\WINDOWS\System32\smss.exe

C:\WINDOWS\system32\csrss.exe

C:\WINDOWS\system32\winlogon.exe

C:\WINDOWS\system32\services.exe

C:\WINDOWS\system32\lsass.exe

C:\WINDOWS\system32\Ati2evxx.exe

C:\WINDOWS\system32\svchost.exe

C:\WINDOWS\system32\svchost.exe

C:\WINDOWS\System32\svchost.exe

C:\WINDOWS\system32\svchost.exe

C:\WINDOWS\system32\svchost.exe

C:\WINDOWS\system32\spoolsv.exe

C:\PROGRA~1\COMMON~1\AOL\ACS\AOLacsd.exe

C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe

C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe

C:\PROGRA~1\Grisoft\AVGFRE~1\avgemc.exe

C:\Program Files\ewido anti-malware\ewidoctrl.exe

C:\Program Files\Intel\Intel Application Accelerator\iaantmon.exe

C:\Program Files\Spyware Doctor\sdhelp.exe

C:\WINDOWS\system32\svchost.exe

C:\WINDOWS\system32\wdfmgr.exe

C:\WINDOWS\SYSTEM32\ZoneLabs\vsmon.exe

C:\WINDOWS\System32\alg.exe

C:\Program Files\Analog Devices\Core\smax4pnp.exe

C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe

C:\Program Files\Intel\Intel Application Accelerator\iaanotif.exe

C:\Program Files\Intel\Modem Event Monitor\IntelMEM.exe

C:\Program Files\CyberLink\PowerDVD\DVDLauncher.exe

C:\Program Files\Musicmatch\Musicmatch Jukebox\mm_tray.exe

C:\WINDOWS\system32\dla\tfswctrl.exe

C:\Program Files\Lexmark 5200 series\lxbtbmgr.exe

C:\Program Files\Lexmark 5200 series\lxbtbmon.exe

C:\Program Files\Common Files\AOL\1125164243\ee\AOLSoftware.exe

C:\Program Files\Common Files\Real\Update_OB\realsched.exe

C:\Program Files\QuickTime\qttask.exe

C:\Program Files\iTunes\iTunesHelper.exe

C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe

C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe

C:\Program Files\Dell Support\DSAgnt.exe

C:\Program Files\Spyware Doctor\swdoctor.exe

C:\Program Files\iPod\bin\iPodService.exe

c:\program files\common files\aol\1125164243\ee\services\antiSpywareApp\ver2_0_25_1\AOLSP Scheduler.exe

c:\program files\common files\aol\1125164243\ee\aolsoftware.exe

C:\Program Files\AIM\aim.exe

C:\WINDOWS\system32\csrss.exe

C:\WINDOWS\system32\winlogon.exe

C:\WINDOWS\Explorer.EXE

C:\Program Files\Analog Devices\Core\smax4pnp.exe

C:\Program Files\Intel\Intel Application Accelerator\iaanotif.exe

C:\Program Files\CyberLink\PowerDVD\DVDLauncher.exe

C:\Program Files\Musicmatch\Musicmatch Jukebox\mm_tray.exe

C:\WINDOWS\system32\dla\tfswctrl.exe

C:\Program Files\Lexmark 5200 series\lxbtbmgr.exe

C:\Program Files\Common Files\AOL\1125164243\ee\AOLSoftware.exe

C:\Program Files\QuickTime\qttask.exe

C:\Program Files\Lexmark 5200 series\lxbtbmon.exe

C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe

C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe

C:\Program Files\Dell Support\DSAgnt.exe

C:\Program Files\Messenger\msmsgs.exe

C:\Program Files\Plaxo\2.5.10.17\PlaxoHelper.exe

C:\Program Files\Spyware Doctor\swdoctor.exe

C:\Program Files\America Online 9.0\aoltray.exe

c:\program files\common files\aol\1125164243\ee\services\antiSpywareApp\ver2_0_25_1\AOLSP Scheduler.exe

c:\program files\common files\aol\1125164243\ee\aolsoftware.exe

C:\Program Files\AIM\aim.exe

C:\WINDOWS\system32\csrss.exe

C:\WINDOWS\system32\winlogon.exe

C:\WINDOWS\Explorer.EXE

C:\Program Files\Analog Devices\Core\smax4pnp.exe

C:\Program Files\Intel\Intel Application Accelerator\iaanotif.exe

C:\Program Files\CyberLink\PowerDVD\DVDLauncher.exe

C:\Program Files\Musicmatch\Musicmatch Jukebox\mm_tray.exe

C:\WINDOWS\system32\dla\tfswctrl.exe

C:\Program Files\Lexmark 5200 series\lxbtbmgr.exe

C:\Program Files\Common Files\AOL\1125164243\ee\AOLSoftware.exe

C:\Program Files\QuickTime\qttask.exe

C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe

C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe

C:\Program Files\Lexmark 5200 series\lxbtbmon.exe

C:\Program Files\Logitech\MouseWare\system\em_exec.exe

C:\Program Files\Dell Support\DSAgnt.exe

C:\Program Files\Spyware Doctor\swdoctor.exe

C:\Program Files\America Online 9.0\aoltray.exe

c:\program files\common files\aol\1125164243\ee\services\antiSpywareApp\ver2_0_25_1\AOLSP Scheduler.exe

c:\program files\common files\aol\1125164243\ee\aolsoftware.exe

C:\Program Files\AIM\aim.exe

C:\Program Files\Canon\CSCLIB\EWatch.exe

C:\Program Files\MSN Messenger\msnmsgr.exe

C:\WINDOWS\explorer.exe

C:\WINDOWS\system32\csrss.exe

C:\WINDOWS\system32\winlogon.exe

C:\WINDOWS\Explorer.EXE

C:\Program Files\Analog Devices\Core\smax4pnp.exe

C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe

C:\Program Files\Intel\Intel Application Accelerator\iaanotif.exe

C:\Program Files\CyberLink\PowerDVD\DVDLauncher.exe

C:\Program Files\Musicmatch\Musicmatch Jukebox\mm_tray.exe

C:\WINDOWS\system32\dla\tfswctrl.exe

C:\Program Files\Logitech\MouseWare\system\em_exec.exe

C:\Program Files\Lexmark 5200 series\lxbtbmgr.exe

C:\Program Files\Common Files\AOL\1125164243\ee\AOLSoftware.exe

C:\Program Files\Lexmark 5200 series\lxbtbmon.exe

C:\Program Files\Common Files\Real\Update_OB\realsched.exe

C:\Program Files\QuickTime\qttask.exe

C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe

C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe

C:\Program Files\Dell Support\DSAgnt.exe

C:\Program Files\Messenger\msmsgs.exe

c:\program files\common files\aol\1125164243\ee\services\antiSpywareApp\ver2_0_25_1\AOLSP Scheduler.exe

c:\program files\common files\aol\1125164243\ee\aolsoftware.exe

C:\WINDOWS\system32\lxbtcoms.exe

C:\WINDOWS\system32\scrnsave.scr

C:\Program Files\Common Files\Real\Update_OB\realsched.exe

C:\WINDOWS\system32\taskmgr.exe

C:\Program Files\Mozilla Firefox\firefox.exe

C:\Program Files\MUSICMATCH\Musicmatch Jukebox\mim.exe

C:\Program Files\MUSICMATCH\Musicmatch Jukebox\MMDiag.exe

C:\WINDOWS\system32\taskmgr.exe

C:\WINDOWS\system32\wuauclt.exe

C:\Documents and Settings\Susan\My Documents\HJT\HijackThis.exe

--------------------------------------------------

Listing of startup folders:

Shell folders Startup:

[C:\Documents and Settings\Susan\Start Menu\Programs\Startup]

*No files*

Shell folders AltStartup:

*Folder not found*

User shell folders Startup:

*Folder not found*

User shell folders AltStartup:

*Folder not found*

Shell folders Common Startup:

[C:\Documents and Settings\All Users\Start Menu\Programs\Startup]

Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe

America Online 9.0 Tray Icon.lnk = C:\Program Files\America Online 9.0\aoltray.exe

Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE

Shell folders Common AltStartup:

*Folder not found*

User shell folders Common Startup:

*Folder not found*

User shell folders Alternate Common Startup:

*Folder not found*

--------------------------------------------------

Checking Windows NT UserInit:

[HKLM\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]

UserInit = C:\WINDOWS\system32\userinit.exe,

[HKLM\Software\Microsoft\Windows\CurrentVersion\Winlogon]

*Registry key not found*

[HKCU\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]

*Registry value not found*

[HKCU\Software\Microsoft\Windows\CurrentVersion\Winlogon]

*Registry key not found*

--------------------------------------------------

Autorun entries from Registry:

HKLM\Software\Microsoft\Windows\CurrentVersion\Run

SoundMAXPnP = C:\Program Files\Analog Devices\Core\smax4pnp.exe

SunJavaUpdateSched = C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe

Logitech Utility = Logi_MwX.Exe

IAAnotif = C:\Program Files\Intel\Intel Application Accelerator\iaanotif.exe

ATIPTA = C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe

IntelMeM = C:\Program Files\Intel\Modem Event Monitor\IntelMEM.exe

DVDLauncher = "C:\Program Files\CyberLink\PowerDVD\DVDLauncher.exe"

UpdateManager = "C:\Program Files\Common Files\Sonic\Update Manager\sgtray.exe" /r

MMTray = "C:\Program Files\Musicmatch\Musicmatch Jukebox\mm_tray.exe"

dla = C:\WINDOWS\system32\dla\tfswctrl.exe

MimBoot = C:\PROGRA~1\MUSICM~1\MUSICM~3\mimboot.exe

Lexmark 5200 series = "C:\Program Files\Lexmark 5200 series\lxbtbmgr.exe"

--------------------------------------------------

Autorun entries from Registry:

HKLM\Software\Microsoft\Windows\CurrentVersion\RunOnce

*No values found*

--------------------------------------------------

Autorun entries from Registry:

HKLM\Software\Microsoft\Windows\CurrentVersion\RunOnceEx

*No values found*

--------------------------------------------------

Autorun entries from Registry:

HKLM\Software\Microsoft\Windows\CurrentVersion\RunServices

*Registry key not found*

--------------------------------------------------

Autorun entries from Registry:

HKLM\Software\Microsoft\Windows\CurrentVersion\RunServicesOnce

*Registry key not found*

--------------------------------------------------

Autorun entries from Registry:

HKCU\Software\Microsoft\Windows\CurrentVersion\Run

DellSupport = "C:\Program Files\Dell Support\DSAgnt.exe" /startup

MSKAGENTEXE = C:\PROGRA~1\McAfee\SPAMKI~1\MSKAgent.exe

MSMSGS = "C:\Program Files\Messenger\msmsgs.exe" /background

Spyware Doctor = "C:\Program Files\Spyware Doctor\swdoctor.exe" /Q

--------------------------------------------------

Autorun entries from Registry:

HKCU\Software\Microsoft\Windows\CurrentVersion\RunOnce

*Registry key not found*

--------------------------------------------------

Autorun entries from Registry:

HKCU\Software\Microsoft\Windows\CurrentVersion\RunOnceEx

*Registry key not found*

--------------------------------------------------

Autorun entries from Registry:

HKCU\Software\Microsoft\Windows\CurrentVersion\RunServices

*Registry key not found*

--------------------------------------------------

Autorun entries from Registry:

HKCU\Software\Microsoft\Windows\CurrentVersion\RunServicesOnce

*Registry key not found*

--------------------------------------------------

Autorun entries from Registry:

HKLM\Software\Microsoft\Windows NT\CurrentVersion\Run

*Registry key not found*

--------------------------------------------------

Autorun entries from Registry:

HKCU\Software\Microsoft\Windows NT\CurrentVersion\Run

*Registry key not found*

--------------------------------------------------

Autorun entries in Registry subkeys of:

HKLM\Software\Microsoft\Windows\CurrentVersion\Run

[OptionalComponents]

*No values found*

--------------------------------------------------

Autorun entries in Registry subkeys of:

HKLM\Software\Microsoft\Windows\CurrentVersion\RunOnce

*No subkeys found*

--------------------------------------------------

Autorun entries in Registry subkeys of:

HKLM\Software\Microsoft\Windows\CurrentVersion\RunOnceEx

*No subkeys found*

--------------------------------------------------

Autorun entries in Registry subkeys of:

HKLM\Software\Microsoft\Windows\CurrentVersion\RunServices

*Registry key not found*

--------------------------------------------------

Autorun entries in Registry subkeys of:

HKLM\Software\Microsoft\Windows\CurrentVersion\RunServicesOnce

*Registry key not found*

--------------------------------------------------

Autorun entries in Registry subkeys of:

HKCU\Software\Microsoft\Windows\CurrentVersion\Run

*No subkeys found*

--------------------------------------------------

Autorun entries in Registry subkeys of:

HKCU\Software\Microsoft\Windows\CurrentVersion\RunOnce

*Registry key not found*

--------------------------------------------------

Autorun entries in Registry subkeys of:

HKCU\Software\Microsoft\Windows\CurrentVersion\RunOnceEx

*Registry key not found*

--------------------------------------------------

Autorun entries in Registry subkeys of:

HKCU\Software\Microsoft\Windows\CurrentVersion\RunServices

*Registry key not found*

--------------------------------------------------

Autorun entries in Registry subkeys of:

HKCU\Software\Microsoft\Windows\CurrentVersion\RunServicesOnce

*Registry key not found*

--------------------------------------------------

Autorun entries in Registry subkeys of:

HKLM\Software\Microsoft\Windows NT\CurrentVersion\Run

*Registry key not found*

--------------------------------------------------

Autorun entries in Registry subkeys of:

HKCU\Software\Microsoft\Windows NT\CurrentVersion\Run

*Registry key not found*

--------------------------------------------------

File association entry for .EXE:

HKEY_CLASSES_ROOT\exefile\shell\open\command

(Default) = "%1" %*

--------------------------------------------------

File association entry for .COM:

HKEY_CLASSES_ROOT\comfile\shell\open\command

(Default) = "%1" %*

--------------------------------------------------

File association entry for .BAT:

HKEY_CLASSES_ROOT\batfile\shell\open\command

(Default) = "%1" %*

--------------------------------------------------

File association entry for .PIF:

HKEY_CLASSES_ROOT\piffile\shell\open\command

(Default) = "%1" %*

--------------------------------------------------

File association entry for .SCR:

HKEY_CLASSES_ROOT\scrfile\shell\open\command

(Default) = "%1" /s

--------------------------------------------------

File association entry for .HTA:

HKEY_CLASSES_ROOT\htafile\shell\open\command

(Default) = C:\WINDOWS\system32\mshta.exe "%1" %*

--------------------------------------------------

File association entry for .TXT:

HKEY_CLASSES_ROOT\txtfile\shell\open\command

(Default) = %SystemRoot%\system32\NOTEPAD.EXE %1

--------------------------------------------------

Enumerating Active Setup stub paths:

HKLM\Software\Microsoft\Active Setup\Installed Components

(* = disabled by HKCU twin)

[>{22d6f312-b0f6-11d0-94ab-0080c74c7e95}]

StubPath = C:\WINDOWS\inf\unregmp2.exe /ShowWMP

[>{26923b43-4d38-484f-9b9e-de460746276c}]

StubPath = %systemroot%\system32\shmgrate.exe OCInstallUserConfigIE

[>{60B49E34-C7CC-11D0-8953-00A0C90347FF}MICROS] *

StubPath = RunDLL32 IEDKCS32.DLL,BrandIE4 SIGNUP

[>{881dd1c5-3dcf-431b-b061-f3f88e8be88a}] *

StubPath = %systemroot%\system32\shmgrate.exe OCInstallUserConfigOE

[{2C7339CF-2B09-4501-B3F3-F3508C9228ED}] *

StubPath = %SystemRoot%\system32\regsvr32.exe /s /n /i:/UserInstall %SystemRoot%\system32\themeui.dll

[{44BBA840-CC51-11CF-AAFA-00AA00B6015C}] *

StubPath = "%ProgramFiles%\Outlook Express\setup50.exe" /APP:OE /CALLER:WINNT /user /install

[{44BBA842-CC51-11CF-AAFA-00AA00B6015B}] *

StubPath = rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\msnetmtg.inf,NetMtg.Install.PerUser.NT

[{4b218e3e-bc98-4770-93d3-2731b9329278}] *

StubPath = %SystemRoot%\System32\rundll32.exe setupapi,InstallHinfSection MarketplaceLinkInstall 896 %systemroot%\inf\ie.inf

[{5945c046-1e7d-11d1-bc44-00c04fd912be}] *

StubPath = rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\msmsgs.inf,BLC.QuietInstall.PerUser

[{6BF52A52-394A-11d3-B153-00C04F79FAA6}] *

StubPath = rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\wmp10.inf,PerUserStub

[{7790769C-0471-11d2-AF11-00C04FA35D02}] *

StubPath = "%ProgramFiles%\Outlook Express\setup50.exe" /APP:WAB /CALLER:WINNT /user /install

[{89820200-ECBD-11cf-8B85-00AA005B4340}] *

StubPath = regsvr32.exe /s /n /i:U shell32.dll

[{89820200-ECBD-11cf-8B85-00AA005B4383}] *

StubPath = %SystemRoot%\system32\ie4uinit.exe

[{89B4C1CD-B018-4511-B0A1-5476DBF70820}] *

StubPath = C:\WINDOWS\system32\Rundll32.exe C:\WINDOWS\system32\mscories.dll,Install

[{8b15971b-5355-4c82-8c07-7e181ea07608}] *

StubPath = rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\fxsocm.inf,Fax.Install.PerUser

--------------------------------------------------

Enumerating ICQ Agent Autostart apps:

HKCU\Software\Mirabilis\ICQ\Agent\Apps

*Registry key not found*

--------------------------------------------------

Load/Run keys from C:\WINDOWS\WIN.INI:

load=*INI section not found*

run=*INI section not found*

Load/Run keys from Registry:

HKLM\..\Windows NT\CurrentVersion\WinLogon: load=*Registry value not found*

HKLM\..\Windows NT\CurrentVersion\WinLogon: run=*Registry value not found*

HKLM\..\Windows\CurrentVersion\WinLogon: load=*Registry key not found*

HKLM\..\Windows\CurrentVersion\WinLogon: run=*Registry key not found*

HKCU\..\Windows NT\CurrentVersion\WinLogon: load=*Registry value not found*

HKCU\..\Windows NT\CurrentVersion\WinLogon: run=*Registry value not found*

HKCU\..\Windows\CurrentVersion\WinLogon: load=*Registry key not found*

HKCU\..\Windows\CurrentVersion\WinLogon: run=*Registry key not found*

HKCU\..\Windows NT\CurrentVersion\Windows: load=

HKCU\..\Windows NT\CurrentVersion\Windows: run=*Registry value not found*

HKLM\..\Windows NT\CurrentVersion\Windows: load=*Registry value not found*

HKLM\..\Windows NT\CurrentVersion\Windows: run=*Registry value not found*

HKLM\..\Windows NT\CurrentVersion\Windows: AppInit_DLLs=

--------------------------------------------------

Shell & screensaver key from C:\WINDOWS\SYSTEM.INI:

Shell=*INI section not found*

SCRNSAVE.EXE=*INI section not found*

drivers=*INI section not found*

Shell & screensaver key from Registry:

Shell=Explorer.exe

SCRNSAVE.EXE=C:\WINDOWS\system32\SSMARQUE.SCR

drivers=*Registry value not found*

Policies Shell key:

HKCU\..\Policies: Shell=*Registry key not found*

HKLM\..\Policies: Shell=*Registry value not found*

--------------------------------------------------

Checking for EXPLORER.EXE instances:

C:\WINDOWS\Explorer.exe: PRESENT!

C:\Explorer.exe: not present

C:\WINDOWS\Explorer\Explorer.exe: not present

C:\WINDOWS\System\Explorer.exe: not present

C:\WINDOWS\System32\Explorer.exe: not present

C:\WINDOWS\Command\Explorer.exe: not present

C:\WINDOWS\Fonts\Explorer.exe: not present

--------------------------------------------------

Checking for superhidden extensions:

.lnk: HIDDEN! (arrow overlay: yes)

.pif: HIDDEN! (arrow overlay: yes)

.exe: not hidden

.com: not hidden

.bat: not hidden

.hta: not hidden

.scr: not hidden

.shs: HIDDEN!

.shb: HIDDEN!

.vbs: not hidden

.vbe: not hidden

.wsh: not hidden

.scf: HIDDEN! (arrow overlay: NO!)

.url: HIDDEN! (arrow overlay: yes)

.js: not hidden

.jse: not hidden

--------------------------------------------------

Verifying REGEDIT.EXE integrity:

- Regedit.exe found in C:\WINDOWS

- .reg open command is normal (regedit.exe %1)

- Company name OK: 'Microsoft Corporation'

- Original filename OK: 'REGEDIT.EXE'

- File description: 'Registry Editor'

Registry check passed

--------------------------------------------------

Enumerating Browser Helper Objects:

(no name) - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}

(no name) - C:\PROGRA~1\SPYBOT~1\SDHelper.dll - {53707962-6F74-2D53-2644-206D7942484F}

(no name) - C:\PROGRA~1\SPYWAR~2\tools\iesdsg.dll - {5C8B2A36-3DB1-42A4-A3CB-D426709BBFEB}

(no name) - C:\WINDOWS\system32\dla\tfswshx.dll - {5CA3D70E-1895-11CF-8E15-001234567890}

(no name) - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43}

AOL Toolbar Launcher - C:\Program Files\AOL\AOL Toolbar 3.0\aoltb.dll - {7C554162-8CB7-45A4-B8F4-8EA1C75885F9}

(no name) - C:\PROGRA~1\SPYWAR~2\tools\iesdpb.dll - {B56A7D7D-6927-48C8-A975-17DF180C71AC}

--------------------------------------------------

Enumerating Task Scheduler jobs:

*No jobs found*

--------------------------------------------------

Enumerating Download Program Files:

[Checkers Class]

InProcServer32 = C:\WINDOWS\Downloaded Program Files\msgrchkr.dll

CODEBASE = http://messenger.zone.msn.com/binary/msgrchkr.cab31267.cab

[MessengerStatsClient Class]

InProcServer32 = C:\WINDOWS\Downloaded Program Files\MessengerStatsPAClient.dll

CODEBASE = http://messenger.zone.msn.com/binary/Messe...nt.cab31267.cab

[Windows Genuine Advantage Validation Tool]

InProcServer32 = C:\WINDOWS\system32\legitcheckcontrol.dll

CODEBASE = http://go.microsoft.com/fwlink/?linkid=39204

[Office Update Installation Engine]

InProcServer32 = C:\WINDOWS\opuc.dll

CODEBASE = http://office.microsoft.com/officeupdate/content/opuc2.cab

[McUpdatePortalFactory Class]

InProcServer32 = C:\WINDOWS\Downloaded Program Files\McUpdatePortal.dll

CODEBASE = http://www.amiuptodate.com/vsc/bin/1,0,0,8...pdatePortal.cab

[Java Plug-in]

InProcServer32 = C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll

CODEBASE = http://java.sun.com/update/1.5.0/jinstall-...indows-i586.cab

[MessengerStatsClient Class]

InProcServer32 = C:\WINDOWS\Downloaded Program Files\messengerstatsclient.dll

CODEBASE = http://messenger.zone.msn.com/binary/Messe...nt.cab31267.cab

[surroundVideoCtrl Object]

InProcServer32 = C:\WINDOWS\Downloaded Program Files\MSSurVid.ocx

CODEBASE = http://encarta.msn.com/encnet/external/MSSurVid.cab

[ActiveScan Installer Class]

InProcServer32 = C:\WINDOWS\Downloaded Program Files\asinst.dll

CODEBASE = http://acs.pandasoftware.com/activescan/as5free/asinst.cab

[MsnMessengerSetupDownloadControl Class]

InProcServer32 = C:\WINDOWS\Downloaded Program Files\MsnMessengerSetupDownloader.ocx

CODEBASE = http://messenger.msn.com/download/MsnMesse...pDownloader.cab

[ZoneIntro Class]

InProcServer32 = C:\WINDOWS\Downloaded Program Files\Zintro.ocx

CODEBASE = http://messenger.zone.msn.com/binary/ZIntro.cab32846.cab

[Java Plug-in]

InProcServer32 = C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll

CODEBASE = http://java.sun.com/products/plugin/autodl...indows-i586.cab

[Java Plug-in]

InProcServer32 = C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll

CODEBASE = http://java.sun.com/update/1.5.0/jinstall-...indows-i586.cab

[Java Plug-in]

InProcServer32 = C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll

CODEBASE = http://java.sun.com/update/1.5.0/jinstall-...indows-i586.cab

[Java Plug-in]

InProcServer32 = C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll

CODEBASE = http://java.sun.com/update/1.5.0/jinstall-...indows-i586.cab

[Java Plug-in]

InProcServer32 = C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll

CODEBASE = http://java.sun.com/update/1.5.0/jinstall-...indows-i586.cab

[Java Plug-in 1.5.0_06]

InProcServer32 = C:\Program Files\Java\jre1.5.0_06\bin\npjpi150_06.dll

CODEBASE = http://java.sun.com/update/1.5.0/jinstall-...indows-i586.cab

[shockwave Flash Object]

InProcServer32 = C:\WINDOWS\system32\Macromed\Flash\Flash8.ocx

CODEBASE = http://download.macromedia.com/pub/shockwa...ash/swflash.cab

--------------------------------------------------

Enumerating Winsock LSP files:

NameSpace #1: C:\WINDOWS\System32\mswsock.dll

NameSpace #2: C:\WINDOWS\System32\winrnr.dll

NameSpace #3: C:\WINDOWS\System32\mswsock.dll

Protocol #1: C:\WINDOWS\system32\mswsock.dll

Protocol #2: C:\WINDOWS\system32\mswsock.dll

Protocol #3: C:\WINDOWS\system32\mswsock.dll

Protocol #4: C:\WINDOWS\system32\rsvpsp.dll

Protocol #5: C:\WINDOWS\system32\rsvpsp.dll

Protocol #6: C:\WINDOWS\system32\mswsock.dll

Protocol #7: C:\WINDOWS\system32\mswsock.dll

Protocol #8: C:\WINDOWS\system32\mswsock.dll

Protocol #9: C:\WINDOWS\system32\mswsock.dll

Protocol #10: C:\WINDOWS\system32\mswsock.dll

Protocol #11: C:\WINDOWS\system32\mswsock.dll

Protocol #12: C:\WINDOWS\system32\mswsock.dll

Protocol #13: C:\WINDOWS\system32\mswsock.dll

Protocol #14: C:\WINDOWS\system32\mswsock.dll

Protocol #15: C:\WINDOWS\system32\mswsock.dll

--------------------------------------------------

Enumerating Windows NT/2000/XP services

abp480n5: system32\DRIVERS\ABP480N5.SYS (system)

Microsoft ACPI Driver: system32\DRIVERS\ACPI.sys (system)

Adobe LM Service: "C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe" (manual start)

adpu160m: system32\DRIVERS\adpu160m.sys (system)

Microsoft Kernel Acoustic Echo Canceller: system32\drivers\aec.sys (manual start)

AFD: \SystemRoot\System32\drivers\afd.sys (system)

Intel AGP Bus Filter: system32\DRIVERS\agp440.sys (system)

Compaq AGP Bus Filter: system32\DRIVERS\agpCPQ.sys (system)

Aha154x: system32\DRIVERS\aha154x.sys (system)

aic78u2: system32\DRIVERS\aic78u2.sys (system)

aic78xx: system32\DRIVERS\aic78xx.sys (system)

Alerter: %SystemRoot%\system32\svchost.exe -k LocalService (autostart)

Application Layer Gateway Service: %SystemRoot%\System32\alg.exe (manual start)

AliIde: system32\DRIVERS\aliide.sys (system)

ALI AGP Bus Filter: system32\DRIVERS\alim1541.sys (system)

AMD AGP Bus Filter Driver: system32\DRIVERS\amdagp.sys (system)

amsint: system32\DRIVERS\amsint.sys (system)

AOL Connectivity Service: C:\PROGRA~1\COMMON~1\AOL\ACS\AOLacsd.exe (autostart)

Application Management: %SystemRoot%\system32\svchost.exe -k netsvcs (manual start)

asc: system32\DRIVERS\asc.sys (system)

asc3350p: system32\DRIVERS\asc3350p.sys (system)

asc3550: system32\DRIVERS\asc3550.sys (system)

ASP.NET State Service: %SystemRoot%\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe (manual start)

RAS Asynchronous Media Driver: system32\DRIVERS\asyncmac.sys (manual start)

Standard IDE/ESDI Hard Disk Controller: system32\DRIVERS\atapi.sys (system)

Ati HotKey Poller: %SystemRoot%\system32\Ati2evxx.exe (autostart)

ati2mtag: system32\DRIVERS\ati2mtag.sys (manual start)

ATM ARP Client Protocol: system32\DRIVERS\atmarpc.sys (manual start)

Windows Audio: %SystemRoot%\System32\svchost.exe -k netsvcs (autostart)

Audio Stub Driver: system32\DRIVERS\audstub.sys (manual start)

AVG7 Alert Manager Server: C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe (autostart)

AVG7 Kernel: \SystemRoot\System32\Drivers\avg7core.sys (system)

AVG7 Wrap Driver: \SystemRoot\System32\Drivers\avg7rsw.sys (system)

AVG7 Resident Driver XP: \SystemRoot\System32\Drivers\avg7rsxp.sys (system)

AVG7 Update Service: C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe (autostart)

AVG E-mail Scanner: C:\PROGRA~1\Grisoft\AVGFRE~1\avgemc.exe (autostart)

AVG Network Redirector: \SystemRoot\System32\Drivers\avgtdi.sys (autostart)

Broadcom NetXtreme 57xx Gigabit Controller: system32\DRIVERS\b57xp32.sys (manual start)

Background Intelligent Transfer Service: %SystemRoot%\system32\svchost.exe -k netsvcs (autostart)

Computer Browser: %SystemRoot%\system32\svchost.exe -k netsvcs (autostart)

cbidf: system32\DRIVERS\cbidf2k.sys (system)

cd20xrnt: system32\DRIVERS\cd20xrnt.sys (system)

CD-ROM Driver: system32\DRIVERS\cdrom.sys (system)

Indexing Service: %SystemRoot%\system32\cisvc.exe (manual start)

ClipBook: %SystemRoot%\system32\clipsrv.exe (disabled)

.NET Runtime Optimization Service v2.0.50727_X86: C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe (manual start)

CmdIde: system32\DRIVERS\cmdide.sys (system)

COM+ System Application: C:\WINDOWS\system32\dllhost.exe /Processid:{02D4B3F1-FD88-11D1-960D-00805FC79235} (manual start)

Cpqarray: system32\DRIVERS\cpqarray.sys (system)

Cryptographic Services: %SystemRoot%\system32\svchost.exe -k netsvcs (autostart)

dac2w2k: system32\DRIVERS\dac2w2k.sys (system)

dac960nt: system32\DRIVERS\dac960nt.sys (system)

DCOM Server Process Launcher: %SystemRoot%\system32\svchost -k DcomLaunch (autostart)

DgiVecp: \??\C:\WINDOWS\system32\Drivers\DgiVecp.sys (autostart)

DHCP Client: %SystemRoot%\system32\svchost.exe -k netsvcs (autostart)

Disk Driver: system32\DRIVERS\disk.sys (system)

Logical Disk Manager Administrative Service: %SystemRoot%\System32\dmadmin.exe /com (manual start)

dmboot: System32\drivers\dmboot.sys (disabled)

dmio: System32\drivers\dmio.sys (disabled)

dmload: System32\drivers\dmload.sys (disabled)

Logical Disk Manager: %SystemRoot%\System32\svchost.exe -k netsvcs (manual start)

Microsoft Kernel DLS Syntheiszer: system32\drivers\DMusic.sys (manual start)

DNS Client: %SystemRoot%\system32\svchost.exe -k NetworkService (autostart)

dpti2o: system32\DRIVERS\dpti2o.sys (system)

Microsoft Kernel DRM Audio Descrambler: system32\drivers\drmkaud.sys (manual start)

drvmcdb: system32\drivers\drvmcdb.sys (system)

drvnddm: system32\drivers\drvnddm.sys (autostart)

IntelĀ® PRO Adapter Driver: system32\DRIVERS\e100b325.sys (manual start)

Error Reporting Service: %SystemRoot%\System32\svchost.exe -k netsvcs (autostart)

Event Log: %SystemRoot%\system32\services.exe (autostart)

COM+ Event System: C:\WINDOWS\system32\svchost.exe -k netsvcs (manual start)

ewido security suite control: C:\Program Files\ewido anti-malware\ewidoctrl.exe (autostart)

Fast User Switching Compatibility: %SystemRoot%\System32\svchost.exe -k netsvcs (manual start)

Fax: %systemroot%\system32\fxssvc.exe (autostart)

Floppy Disk Controller Driver: system32\DRIVERS\fdc.sys (manual start)

Floppy Disk Driver: system32\DRIVERS\flpydisk.sys (manual start)

FltMgr: system32\DRIVERS\fltMgr.sys (system)

Volume Manager Driver: system32\DRIVERS\ftdisk.sys (system)

GEAR CDRom Filter: SYSTEM32\DRIVERS\GEARAspiWDM.sys (manual start)

Generic Packet Classifier: system32\DRIVERS\msgpc.sys (manual start)

Help and Support: %SystemRoot%\System32\svchost.exe -k netsvcs (autostart)

Human Interface Device Access: %SystemRoot%\System32\svchost.exe -k netsvcs (disabled)

Microsoft HID Class Driver: system32\DRIVERS\hidusb.sys (manual start)

hpn: system32\DRIVERS\hpn.sys (system)

HTTP: System32\Drivers\HTTP.sys (manual start)

HTTP SSL: %SystemRoot%\System32\svchost.exe -k HTTPFilter (manual start)

i2omp: system32\DRIVERS\i2omp.sys (system)

i8042 Keyboard and PS/2 Mouse Port Driver: system32\DRIVERS\i8042prt.sys (system)

IAA Event Monitor: C:\Program Files\Intel\Intel Application Accelerator\iaantmon.exe (autostart)

Intel AHCI Controller: system32\drivers\iaStor.sys (system)

InstallDriver Table Manager: "C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe" (manual start)

File Security Kernel Anti-Spyware Driver: \??\C:\WINDOWS\system32\drivers\ikhfile.sys (system)

Kernel Anti-Spyware Driver: \??\C:\WINDOWS\system32\drivers\ikhlayer.sys (system)

CD-Burning Filter Driver: system32\DRIVERS\imapi.sys (system)

IMAPI CD-Burning COM Service: C:\WINDOWS\system32\imapi.exe (manual start)

ini910u: system32\DRIVERS\ini910u.sys (system)

IntelC51: system32\DRIVERS\IntelC51.sys (manual start)

IntelC52: system32\DRIVERS\IntelC52.sys (manual start)

IntelC53: system32\DRIVERS\IntelC53.sys (manual start)

IntelIde: system32\DRIVERS\intelide.sys (system)

Intel Processor Driver: system32\DRIVERS\intelppm.sys (system)

IPv6 Windows Firewall Driver: system32\DRIVERS\Ip6Fw.sys (manual start)

IP Traffic Filter Driver: system32\DRIVERS\ipfltdrv.sys (manual start)

IP in IP Tunnel Driver: system32\DRIVERS\ipinip.sys (manual start)

IP Network Address Translator: system32\DRIVERS\ipnat.sys (manual start)

iPodService: C:\Program Files\iPod\bin\iPodService.exe (manual start)

IPSEC driver: system32\DRIVERS\ipsec.sys (system)

IR Enumerator Service: system32\DRIVERS\irenum.sys (manual start)

PnP ISA/EISA Bus Driver: system32\DRIVERS\isapnp.sys (system)

Keyboard Class Driver: system32\DRIVERS\kbdclass.sys (system)

Microsoft Kernel Wave Audio Mixer: system32\drivers\kmixer.sys (manual start)

Logitech PS/2 Mouse Filter Driver: System32\Drivers\l8042pr2.sys (manual start)

Server: %SystemRoot%\system32\svchost.exe -k netsvcs (autostart)

Workstation: %SystemRoot%\system32\svchost.exe -k netsvcs (autostart)

Logitech HID/USB Mouse Filter Driver: system32\DRIVERS\LHidFlt2.Sys (manual start)

Logitech USB Receiver device driver: System32\Drivers\LHidUsb.Sys (manual start)

TCP/IP NetBIOS Helper: %SystemRoot%\system32\svchost.exe -k LocalService (autostart)

Logitech Mouse Class Filter Driver: System32\Drivers\LMouFlt2.sys (manual start)

lxbt_device: C:\WINDOWS\system32\lxbtcoms.exe -service (manual start)

mchInjDrv: \??\C:\WINDOWS\TEMP\mc21.tmp (disabled)

Messenger: %SystemRoot%\system32\svchost.exe -k netsvcs (disabled)

NetMeeting Remote Desktop Sharing: C:\WINDOWS\system32\mnmsrvc.exe (manual start)

Unimodem Streaming Filter Device: system32\drivers\MODEMCSA.sys (manual start)

mohfilt: system32\DRIVERS\mohfilt.sys (manual start)

Mouse Class Driver: system32\DRIVERS\mouclass.sys (system)

Mouse HID Driver: system32\DRIVERS\mouhid.sys (manual start)

mraid35x: system32\DRIVERS\mraid35x.sys (system)

WebDav Client Redirector: system32\DRIVERS\mrxdav.sys (manual start)

MRXSMB: system32\DRIVERS\mrxsmb.sys (system)

Distributed Transaction Coordinator: C:\WINDOWS\system32\msdtc.exe (manual start)

Windows Installer: C:\WINDOWS\system32\msiexec.exe /V (manual start)

Microsoft Streaming Service Proxy: system32\drivers\MSKSSRV.sys (manual start)

Microsoft Streaming Clock Proxy: system32\drivers\MSPCLOCK.sys (manual start)

Microsoft Streaming Quality Manager Proxy: system32\drivers\MSPQM.sys (manual start)

Microsoft System Management BIOS Driver: system32\DRIVERS\mssmbios.sys (manual start)

Remote Access NDIS TAPI Driver: system32\DRIVERS\ndistapi.sys (manual start)

NDIS Usermode I/O Protocol: system32\DRIVERS\ndisuio.sys (manual start)

Remote Access NDIS WAN Driver: system32\DRIVERS\ndiswan.sys (manual start)

NetBIOS Interface: system32\DRIVERS\netbios.sys (system)

NetBios over Tcpip: system32\DRIVERS\netbt.sys (system)

Network DDE: %SystemRoot%\system32\netdde.exe (disabled)

Network DDE DSDM: %SystemRoot%\system32\netdde.exe (disabled)

Net Logon: %SystemRoot%\system32\lsass.exe (manual start)

Network Connections: %SystemRoot%\System32\svchost.exe -k netsvcs (manual start)

Network Location Awareness (NLA): %SystemRoot%\system32\svchost.exe -k netsvcs (manual start)

NT LM Security Support Provider: %SystemRoot%\system32\lsass.exe (manual start)

Removable Storage: %SystemRoot%\system32\svchost.exe -k netsvcs (manual start)

nv: system32\DRIVERS\nv4_mini.sys (manual start)

IPX Traffic Filter Driver: system32\DRIVERS\nwlnkflt.sys (manual start)

IPX Traffic Forwarder Driver: system32\DRIVERS\nwlnkfwd.sys (manual start)

OMCI WDM Device Driver: system32\DRIVERS\omci.sys (system)

Parallel port driver: system32\DRIVERS\parport.sys (manual start)

PCI Bus Driver: system32\DRIVERS\pci.sys (system)

PCIIde: system32\DRIVERS\pciide.sys (system)

perc2: system32\DRIVERS\perc2.sys (system)

perc2hib: system32\DRIVERS\perc2hib.sys (system)

Padus ASPI Shell: system32\drivers\pfc.sys (manual start)

Plug and Play: %SystemRoot%\system32\services.exe (autostart)

IPSEC Services: %SystemRoot%\system32\lsass.exe (autostart)

WAN Miniport (PPTP): system32\DRIVERS\raspptp.sys (manual start)

Protected Storage: %SystemRoot%\system32\lsass.exe (autostart)

QoS Packet Scheduler: system32\DRIVERS\psched.sys (manual start)

Direct Parallel Link Driver: system32\DRIVERS\ptilink.sys (manual start)

PxHelp20: System32\Drivers\PxHelp20.sys (system)

ql1080: system32\DRIVERS\ql1080.sys (system)

Ql10wnt: system32\DRIVERS\ql10wnt.sys (system)

ql12160: system32\DRIVERS\ql12160.sys (system)

ql1240: system32\DRIVERS\ql1240.sys (system)

ql1280: system32\DRIVERS\ql1280.sys (system)

Remote Access Auto Connection Driver: system32\DRIVERS\rasacd.sys (system)

Remote Access Auto Connection Manager: %SystemRoot%\system32\svchost.exe -k netsvcs (manual start)

WAN Miniport (L2TP): system32\DRIVERS\rasl2tp.sys (manual start)

Remote Access Connection Manager: %SystemRoot%\system32\svchost.exe -k netsvcs (manual start)

Remote Access PPPOE Driver: system32\DRIVERS\raspppoe.sys (manual start)

Direct Parallel: system32\DRIVERS\raspti.sys (manual start)

Rdbss: system32\DRIVERS\rdbss.sys (system)

RDPCDD: System32\DRIVERS\RDPCDD.sys (system)

Terminal Server Device Redirector Driver: system32\DRIVERS\rdpdr.sys (manual start)

Remote Desktop Help Session Manager: C:\WINDOWS\system32\sessmgr.exe (manual start)

Digital CD Audio Playback Filter Driver: system32\DRIVERS\redbook.sys (system)

Routing and Remote Access: %SystemRoot%\system32\svchost.exe -k netsvcs (disabled)

Remote Procedure Call (RPC) Locator: %SystemRoot%\system32\locator.exe (manual start)

Remote Procedure Call (RPC): %SystemRoot%\system32\svchost -k rpcss (autostart)

QoS RSVP: %SystemRoot%\system32\rsvp.exe (manual start)

Security Accounts Manager: %SystemRoot%\system32\lsass.exe (autostart)

Smart Card: %SystemRoot%\System32\SCardSvr.exe (manual start)

Task Scheduler: %SystemRoot%\System32\svchost.exe -k netsvcs (autostart)

PC Tools Spyware Doctor: C:\Program Files\Spyware Doctor\sdhelp.exe (autostart)

Secdrv: system32\DRIVERS\secdrv.sys (autostart)

Secondary Logon: %SystemRoot%\System32\svchost.exe -k netsvcs (autostart)

senfilt: system32\drivers\senfilt.sys (manual start)

System Event Notification: %SystemRoot%\system32\svchost.exe -k netsvcs (autostart)

Serenum Filter Driver: system32\DRIVERS\serenum.sys (manual start)

Serial port driver: system32\DRIVERS\serial.sys (system)

High-Capacity Floppy Disk Drive: system32\DRIVERS\sfloppy.sys (manual start)

Windows Firewall/Internet Connection Sharing (ICS): %SystemRoot%\system32\svchost.exe -k netsvcs (autostart)

Shell Hardware Detection: %SystemRoot%\System32\svchost.exe -k netsvcs (autostart)

SIS AGP Bus Filter: system32\DRIVERS\sisagp.sys (system)

smwdm: system32\drivers\smwdm.sys (manual start)

Sparrow: system32\DRIVERS\sparrow.sys (system)

Microsoft Kernel Audio Splitter: system32\drivers\splitter.sys (manual start)

Print Spooler: %SystemRoot%\system32\spoolsv.exe (autostart)

System Restore Filter Driver: system32\DRIVERS\sr.sys (system)

System Restore Service: %SystemRoot%\system32\svchost.exe -k netsvcs (autostart)

Srv: system32\DRIVERS\srv.sys (manual start)

sscdbhk5: system32\drivers\sscdbhk5.sys (system)

SSDP Discovery Service: %SystemRoot%\system32\svchost.exe -k LocalService (manual start)

ssrtln: system32\drivers\ssrtln.sys (system)

Windows Image Acquisition (WIA): %SystemRoot%\system32\svchost.exe -k imgsvc (autostart)

Software Bus Driver: system32\DRIVERS\swenum.sys (manual start)

Microsoft Kernel GS Wavetable Synthesizer: system32\drivers\swmidi.sys (manual start)

MS Software Shadow Copy Provider: C:\WINDOWS\system32\dllhost.exe /Processid:{A445BD1E-49EE-4607-B370-5CCA447377C4} (manual start)

symc810: system32\DRIVERS\symc810.sys (system)

symc8xx: system32\DRIVERS\symc8xx.sys (system)

sym_hi: system32\DRIVERS\sym_hi.sys (system)

sym_u3: system32\DRIVERS\sym_u3.sys (system)

Microsoft Kernel System Audio Device: system32\drivers\sysaudio.sys (manual start)

Performance Logs and Alerts: %SystemRoot%\system32\smlogsvc.exe (manual start)

Telephony: %SystemRoot%\System32\svchost.exe -k netsvcs (manual start)

TCP/IP Protocol Driver: system32\DRIVERS\tcpip.sys (system)

Terminal Device Driver: system32\DRIVERS\termdd.sys (system)

Terminal Services: %SystemRoot%\System32\svchost -k DComLaunch (manual start)

tfsnboio: system32\dla\tfsnboio.sys (autostart)

tfsncofs: system32\dla\tfsncofs.sys (autostart)

tfsndrct: system32\dla\tfsndrct.sys (autostart)

tfsndres: system32\dla\tfsndres.sys (autostart)

tfsnifs: system32\dla\tfsnifs.sys (autostart)

tfsnopio: system32\dla\tfsnopio.sys (autostart)

tfsnpool: system32\dla\tfsnpool.sys (autostart)

tfsnudf: system32\dla\tfsnudf.sys (autostart)

tfsnudfa: system32\dla\tfsnudfa.sys (autostart)

Themes: %SystemRoot%\System32\svchost.exe -k netsvcs (autostart)

TIEHDUSB: system32\drivers\tiehdusb.sys (manual start)

TosIde: system32\DRIVERS\toside.sys (system)

Distributed Link Tracking Client: %SystemRoot%\system32\svchost.exe -k netsvcs (autostart)

ultra: system32\DRIVERS\ultra.sys (system)

Windows User Mode Driver Framework: C:\WINDOWS\system32\wdfmgr.exe (autostart)

Microcode Update Driver: system32\DRIVERS\update.sys (manual start)

Universal Plug and Play Device Host: %SystemRoot%\system32\svchost.exe -k LocalService (manual start)

Uninterruptible Power Supply: %SystemRoot%\System32\ups.exe (manual start)

Microsoft USB Generic Parent Driver: system32\DRIVERS\usbccgp.sys (manual start)

Microsoft USB 2.0 Enhanced Host Controller Miniport Driver: system32\DRIVERS\usbehci.sys (manual start)

USB2 Enabled Hub: system32\DRIVERS\usbhub.sys (manual start)

Microsoft USB PRINTER Class: system32\DRIVERS\usbprint.sys (manual start)

USB Scanner Driver: system32\DRIVERS\usbscan.sys (manual start)

USB Mass Storage Driver: system32\DRIVERS\USBSTOR.SYS (manual start)

Microsoft USB Universal Host Controller Miniport Driver: system32\DRIVERS\usbuhci.sys (manual start)

VgaSave: \SystemRoot\System32\drivers\vga.sys (system)

VIA AGP Bus Filter: system32\DRIVERS\viaagp.sys (system)

ViaIde: system32\DRIVERS\viaide.sys (system)

vsdatant: System32\vsdatant.sys (system)

TrueVector Internet Monitor: C:\WINDOWS\SYSTEM32\ZoneLabs\vsmon.exe -service (autostart)

Volume Shadow Copy: %SystemRoot%\System32\vssvc.exe (manual start)

Windows Time: %SystemRoot%\system32\svchost.exe -k netsvcs (autostart)

Remote Access IP ARP Driver: system32\DRIVERS\wanarp.sys (manual start)

WAN Miniport (ATW): system32\DRIVERS\wanatw4.sys (manual start)

Microsoft WINMM WDM Audio Compatibility Driver: system32\drivers\wdmaud.sys (manual start)

WebClient: %SystemRoot%\system32\svchost.exe -k LocalService (autostart)

Windows Management Instrumentation: %systemroot%\system32\svchost.exe -k netsvcs (autostart)

Windows Media Connect Service: C:\Program Files\Windows Media Connect 2\wmccds.exe (manual start)

Portable Media Serial Number Service: %SystemRoot%\System32\svchost.exe -k netsvcs (manual start)

WMI Performance Adapter: C:\WINDOWS\system32\wbem\wmiapsrv.exe (manual start)

Windows Socket 2.0 Non-IFS Service Provider Support Environment: \SystemRoot\System32\drivers\ws2ifsl.sys (disabled)

Security Center: %SystemRoot%\System32\svchost.exe -k netsvcs (disabled)

Automatic Updates: %systemroot%\system32\svchost.exe -k netsvcs (autostart)

Wireless Zero Configuration: %SystemRoot%\System32\svchost.exe -k netsvcs (autostart)

Network Provisioning Service: %SystemRoot%\System32\svchost.exe -k netsvcs (manual start)

--------------------------------------------------

Enumerating Windows NT logon/logoff scripts:

*No scripts set to run*

Windows NT checkdisk command:

BootExecute = autocheck autochk *

Windows NT 'Wininit.ini':

PendingFileRenameOperations: *Registry value not found*

--------------------------------------------------

Enumerating ShellServiceObjectDelayLoad items:

PostBootReminder: C:\WINDOWS\system32\SHELL32.dll

CDBurn: C:\WINDOWS\system32\SHELL32.dll

WebCheck: C:\WINDOWS\system32\webcheck.dll

SysTray: C:\WINDOWS\system32\stobject.dll

--------------------------------------------------

Autorun entries from Registry:

HKCU\Software\Microsoft\Windows\CurrentVersion\policies\Explorer\Run

*Registry key not found*

--------------------------------------------------

Autorun entries from Registry:

HKLM\Software\Microsoft\Windows\CurrentVersion\policies\Explorer\Run

*Registry key not found*

--------------------------------------------------

End of report, 44,595 bytes

Report generated in 0.875 seconds

Command line options:

/verbose - to add additional info on each section

/complete - to include empty sections and unsuspicious data

/full - to include several rarely-important sections

/force9x - to include Win9x-only startups even if running on WinNT

/forcent - to include WinNT-only startups even if running on Win9x

/forceall - to include all Win9x and WinNT startups, regardless of platform

/history - to list version history only

Share this post


Link to post
Share on other sites

Well I don't see anything out of line there...I'll look a little deeper into the user switching issue.....

In the mean time would you do me a favor? Create a NEW user..set to administrator and see if you can switch user with the NEW account.

Share this post


Link to post
Share on other sites

I set up a new account and it started even stranger behavior. When I tried to switch from the new user (named, quite originally, "Test") to my account, which is password protected, I couldn't enter the last two characters of my password. As soon as I would type the second-to-last character, it would highlight the Test icon as if I were attempting to log on to that account. So I chose to log on to my daughter's account and it went through without a hitch. Then I tried to log on to my son's account from daughter's acctount - no go; had to use the ctrl/alt/del method. I removed the password from my account and it still wouldn't switch over smoothly from the Test account; I could log in if I were switching from any other account but still had to use ctrl/alt/del. It would seem to work randomly and then, just as randomly, not work the next time with the next user. Very odd.

And, just a few minutes ago, I logged on to the Test account, got a "Windows Explorer has encountered a problem and needs to close" message followed by a "DrWatson Postmortem Debugger has encountered a problem, etc." message. I have never seen that before; what is it and should I be concerned all over again? The AVG scan today showed something called listed Downloader.Small.56.G, and I'm not sure if they're part of the archived infected files or not. ZoneAlarm shows something called "lxbtserv.exe" as being blocked (outgoing) numerous times. What is that? And, what is an adapter subnet? Everything I look up on the internet and through ZoneAlarm gives me no real answer. Should the IP address for that adapter subnet be different from my computer's IP address? That doesn't seem right but...I honestly don't know. There's also a new program listed as C:\\Windows\mc-110-12-0000487.exe that has not been given access to the Internet but I'm pretty sure it wasn't there yesterday. I'm just not positive that this computer is *really* clean and I have no way of knowing.

FYI: Ran ewido just to see what it would find. Tells me it's found 82 infected objects in one folder and then closes itself out when I try to clean the file. This happened repeatedly and also when I tried to choose the option to do nothing or to only clean that file and not any other findings.

Edited by Bree26

Share this post


Link to post
Share on other sites

I'm still looking into the user switching....Please post a current HJT log.

There's also a new program listed as C:\\Windows\mc-110-12-0000487.exe that has not been given access to the Internet but I'm pretty sure it wasn't there yesterday

Sounds like you have been reinfected again..... we'll see...

Ran ewido just to see what it would find. Tells me it's found 82 infected objects in one folder

Which folder?

Along with the HJT log please post the following also.

Please download Rootkit Revealer (link is at the very bottom of the page)

  • Unzip it to your desktop.
  • Open the rootkitrevealer folder and double-click rootkitrevealer.exe
  • Click the Scan button (bottom right)
  • It may take a while to scan (don't do anything while it's running)
  • When it's done, go up to File > Save. Choose to save it to your desktop.
  • Open rootkitrevealer.txt on your desktop and copy the entire contents and paste them here

Share this post


Link to post
Share on other sites

Rootkit Revealer:

HKLM\SOFTWARE\Classes\webcal\URL Protocol 3/3/2005 2:26 AM 13 bytes Data mismatch between Windows API and raw hive data.

Hijack This Log:

Logfile of HijackThis v1.99.1

Scan saved at 11:44:49 AM, on 6/22/2006

Platform: Windows XP SP2 (WinNT 5.01.2600)

MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:

C:\WINDOWS\System32\smss.exe

C:\WINDOWS\system32\csrss.exe

C:\WINDOWS\system32\winlogon.exe

C:\WINDOWS\system32\services.exe

C:\WINDOWS\system32\lsass.exe

C:\WINDOWS\system32\Ati2evxx.exe

C:\WINDOWS\system32\svchost.exe

C:\WINDOWS\system32\svchost.exe

C:\WINDOWS\System32\svchost.exe

C:\WINDOWS\system32\svchost.exe

C:\WINDOWS\system32\svchost.exe

C:\WINDOWS\system32\spoolsv.exe

C:\WINDOWS\Explorer.EXE

C:\Program Files\Analog Devices\Core\smax4pnp.exe

C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe

C:\Program Files\Intel\Intel Application Accelerator\iaanotif.exe

C:\Program Files\Intel\Modem Event Monitor\IntelMEM.exe

C:\Program Files\CyberLink\PowerDVD\DVDLauncher.exe

C:\Program Files\Logitech\MouseWare\system\em_exec.exe

C:\Program Files\Musicmatch\Musicmatch Jukebox\mm_tray.exe

C:\WINDOWS\system32\dla\tfswctrl.exe

C:\Program Files\Lexmark 5200 series\lxbtbmgr.exe

C:\Program Files\Lexmark 5200 series\lxbtbmon.exe

C:\PROGRA~1\COMMON~1\AOL\ACS\AOLacsd.exe

C:\PROGRA~1\MUSICM~1\MUSICM~3\MMDiag.exe

C:\Program Files\Common Files\AOL\1125164243\ee\AOLSoftware.exe

C:\Program Files\Common Files\Real\Update_OB\realsched.exe

C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe

C:\Program Files\QuickTime\qttask.exe

C:\Program Files\iTunes\iTunesHelper.exe

C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe

C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe

C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe

C:\Program Files\MUSICMATCH\Musicmatch Jukebox\mim.exe

C:\Program Files\Dell Support\DSAgnt.exe

C:\PROGRA~1\Grisoft\AVGFRE~1\avgemc.exe

C:\Program Files\Spyware Doctor\swdoctor.exe

C:\Program Files\ewido anti-malware\ewidoctrl.exe

C:\Program Files\Intel\Intel Application Accelerator\iaantmon.exe

C:\Program Files\Spyware Doctor\sdhelp.exe

C:\WINDOWS\system32\svchost.exe

C:\WINDOWS\system32\wdfmgr.exe

C:\WINDOWS\SYSTEM32\ZoneLabs\vsmon.exe

c:\program files\common files\aol\1125164243\ee\services\antiSpywareApp\ver2_0_25_1\AOLSP Scheduler.exe

c:\program files\common files\aol\1125164243\ee\aolsoftware.exe

C:\Program Files\iPod\bin\iPodService.exe

C:\WINDOWS\System32\alg.exe

C:\WINDOWS\system32\lxbtcoms.exe

C:\Program Files\Mozilla Firefox\firefox.exe

C:\Documents and Settings\Susan\My Documents\HJT\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.dell4me.com/myway

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.dell4me.com/myway

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.dell4me.com/myway

O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll

O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll

O2 - BHO: PCTools Site Guard - {5C8B2A36-3DB1-42A4-A3CB-D426709BBFEB} - C:\PROGRA~1\SPYWAR~2\tools\iesdsg.dll

O2 - BHO: DriveLetterAccess - {5CA3D70E-1895-11CF-8E15-001234567890} - C:\WINDOWS\system32\dla\tfswshx.dll

O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll

O2 - BHO: AOL Toolbar Launcher - {7C554162-8CB7-45A4-B8F4-8EA1C75885F9} - C:\Program Files\AOL\AOL Toolbar 3.0\aoltb.dll

O2 - BHO: PCTools Browser Monitor - {B56A7D7D-6927-48C8-A975-17DF180C71AC} - C:\PROGRA~1\SPYWAR~2\tools\iesdpb.dll

O3 - Toolbar: AOL Toolbar - {DE9C389F-3316-41A7-809B-AA305ED9D922} - C:\Program Files\AOL\AOL Toolbar 3.0\aoltb.dll

O4 - HKLM\..\Run: [soundMAXPnP] C:\Program Files\Analog Devices\Core\smax4pnp.exe

O4 - HKLM\..\Run: [sunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe

O4 - HKLM\..\Run: [Logitech Utility] Logi_MwX.Exe

O4 - HKLM\..\Run: [iAAnotif] C:\Program Files\Intel\Intel Application Accelerator\iaanotif.exe

O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe

O4 - HKLM\..\Run: [intelMeM] C:\Program Files\Intel\Modem Event Monitor\IntelMEM.exe

O4 - HKLM\..\Run: [DVDLauncher] "C:\Program Files\CyberLink\PowerDVD\DVDLauncher.exe"

O4 - HKLM\..\Run: [updateManager] "C:\Program Files\Common Files\Sonic\Update Manager\sgtray.exe" /r

O4 - HKLM\..\Run: [MMTray] "C:\Program Files\Musicmatch\Musicmatch Jukebox\mm_tray.exe"

O4 - HKLM\..\Run: [dla] C:\WINDOWS\system32\dla\tfswctrl.exe

O4 - HKLM\..\Run: [MimBoot] C:\PROGRA~1\MUSICM~1\MUSICM~3\mimboot.exe

O4 - HKLM\..\Run: [Lexmark 5200 series] "C:\Program Files\Lexmark 5200 series\lxbtbmgr.exe"

O4 - HKLM\..\Run: [LXBTCATS] rundll32 C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\LXBTtime.dll,[email protected]

O4 - HKLM\..\Run: [FaxCenterServer] "C:\Program Files\Lexmark Fax Solutions\fm3032.exe" /s

O4 - HKLM\..\Run: [HostManager] C:\Program Files\Common Files\AOL\1125164243\ee\AOLSoftware.exe

O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot

O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime

O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"

O4 - HKLM\..\Run: [AVG7_CC] C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe /STARTUP

O4 - HKLM\..\Run: [Zone Labs Client] C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe

O4 - HKCU\..\Run: [DellSupport] "C:\Program Files\Dell Support\DSAgnt.exe" /startup

O4 - HKCU\..\Run: [MSKAGENTEXE] C:\PROGRA~1\McAfee\SPAMKI~1\MSKAgent.exe

O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background

O4 - HKCU\..\Run: [spyware Doctor] "C:\Program Files\Spyware Doctor\swdoctor.exe" /Q

O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe

O4 - Global Startup: America Online 9.0 Tray Icon.lnk = C:\Program Files\America Online 9.0\aoltray.exe

O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE

O8 - Extra context menu item: &AOL Toolbar Search - c:\program files\aol\aol toolbar 3.0\resources\en-US\local\search.html

O8 - Extra context menu item: &Search - http://ka.bar.need2find.com/KA/menusearch.html?p=KA

O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll

O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll

O9 - Extra button: Spyware Doctor - {2D663D1A-8670-49D9-A1A5-4C56B4E14E84} - C:\PROGRA~1\SPYWAR~2\tools\iesdpb.dll

O9 - Extra button: AOL Toolbar - {3369AF0D-62E9-4bda-8103-B4C75499B578} - C:\Program Files\AOL\AOL Toolbar 3.0\aoltb.dll

O9 - Extra button: AIM - {AC9E2541-2814-11d5-BC6D-00B0D0A1DE45} - C:\Program Files\AIM\aim.exe

O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\system32\Shdocvw.dll

O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe

O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe

O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab31267.cab

O16 - DPF: {14B87622-7E19-4EA8-93B3-97215F77A6BC} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/Messe...nt.cab31267.cab

O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204

O16 - DPF: {5F0C30E4-1E72-4DCC-85E5-57810F1CA97B} (McUpdatePortalFactory Class) - http://www.amiuptodate.com/vsc/bin/1,0,0,8...pdatePortal.cab

O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/Messe...nt.cab31267.cab

O16 - DPF: {928626A3-6B98-11CF-90B4-00AA00A4011F} (SurroundVideoCtrl Object) - http://encarta.msn.com/encnet/external/MSSurVid.cab

O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) - http://acs.pandasoftware.com/activescan/as5free/asinst.cab

O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/MsnMesse...pDownloader.cab

O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (ZoneIntro Class) - http://messenger.zone.msn.com/binary/ZIntro.cab32846.cab

O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)

O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll

O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe

O23 - Service: AOL Connectivity Service (AOL ACS) - America Online, Inc. - C:\PROGRA~1\COMMON~1\AOL\ACS\AOLacsd.exe

O23 - Service: Ati HotKey Poller - Unknown owner - C:\WINDOWS\system32\Ati2evxx.exe

O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe

O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe

O23 - Service: AVG E-mail Scanner (AVGEMS) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgemc.exe

O23 - Service: ewido security suite control - ewido networks - C:\Program Files\ewido anti-malware\ewidoctrl.exe

O23 - Service: IAA Event Monitor (IAANTMon) - Intel Corporation - C:\Program Files\Intel\Intel Application Accelerator\iaantmon.exe

O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe

O23 - Service: iPodService - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe

O23 - Service: lxbt_device - Lexmark International, Inc. - C:\WINDOWS\system32\lxbtcoms.exe

O23 - Service: PC Tools Spyware Doctor (SDhelper) - PC Tools Research Pty Ltd - C:\Program Files\Spyware Doctor\sdhelp.exe

O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - C:\WINDOWS\SYSTEM32\ZoneLabs\vsmon.exe

I know you didn't ask for it, but I ran an Ewido scan this morning before I read your response. I deleted temp.internet files and cookies before I ran the scan...

ewido anti-malware - Scan report

---------------------------------------------------------

+ Created on: 10:42:20 AM, 6/22/2006

+ Report-Checksum: 5614BAE5

+ Scan result:

:mozilla.32:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies-1.txt -> TrackingCookie.Doubleclick : Cleaned with backup

:mozilla.36:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies-1.txt -> TrackingCookie.Advertising : Cleaned with backup

:mozilla.38:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies-1.txt -> TrackingCookie.Advertising : Cleaned with backup

:mozilla.39:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies-1.txt -> TrackingCookie.Advertising : Cleaned with backup

:mozilla.40:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies-1.txt -> TrackingCookie.Advertising : Cleaned with backup

:mozilla.47:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies-1.txt -> TrackingCookie.Casalemedia : Cleaned with backup

:mozilla.48:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies-1.txt -> TrackingCookie.Casalemedia : Cleaned with backup

:mozilla.49:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies-1.txt -> TrackingCookie.Casalemedia : Cleaned with backup

:mozilla.51:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies-1.txt -> TrackingCookie.Trafficmp : Cleaned with backup

:mozilla.52:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies-1.txt -> TrackingCookie.Trafficmp : Cleaned with backup

:mozilla.53:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies-1.txt -> TrackingCookie.Trafficmp : Cleaned with backup

:mozilla.54:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies-1.txt -> TrackingCookie.Trafficmp : Cleaned with backup

:mozilla.55:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies-1.txt -> TrackingCookie.Trafficmp : Cleaned with backup

:mozilla.56:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies-1.txt -> TrackingCookie.Trafficmp : Cleaned with backup

:mozilla.57:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies-1.txt -> TrackingCookie.Trafficmp : Cleaned with backup

:mozilla.58:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies-1.txt -> TrackingCookie.Fastclick : Cleaned with backup

:mozilla.59:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies-1.txt -> TrackingCookie.Fastclick : Cleaned with backup

:mozilla.61:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies-1.txt -> TrackingCookie.Bluestreak : Cleaned with backup

:mozilla.106:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies-1.txt -> TrackingCookie.Specificclick : Cleaned with backup

:mozilla.107:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies-1.txt -> TrackingCookie.Specificclick : Cleaned with backup

:mozilla.108:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies-1.txt -> TrackingCookie.Specificclick : Cleaned with backup

:mozilla.109:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies-1.txt -> TrackingCookie.Specificclick : Cleaned with backup

:mozilla.110:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies-1.txt -> TrackingCookie.Specificclick : Cleaned with backup

:mozilla.113:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies-1.txt -> TrackingCookie.Tacoda : Cleaned with backup

:mozilla.115:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies-1.txt -> TrackingCookie.Tacoda : Cleaned with backup

:mozilla.120:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies-1.txt -> TrackingCookie.Tacoda : Cleaned with backup

:mozilla.201:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies-1.txt -> TrackingCookie.Tacoda : Cleaned with backup

:mozilla.261:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies-1.txt -> TrackingCookie.Adbrite : Cleaned with backup

:mozilla.302:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies-1.txt -> TrackingCookie.Googleadservices : Cleaned with backup

:mozilla.307:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies-1.txt -> TrackingCookie.Googleadservices : Cleaned with backup

:mozilla.354:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies-1.txt -> TrackingCookie.Googleadservices : Cleaned with backup

:mozilla.392:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies-1.txt -> TrackingCookie.Adbrite : Cleaned with backup

:mozilla.6:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies-2.txt -> TrackingCookie.Casalemedia : Cleaned with backup

:mozilla.7:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies-2.txt -> TrackingCookie.Casalemedia : Cleaned with backup

:mozilla.8:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies-2.txt -> TrackingCookie.Casalemedia : Cleaned with backup

:mozilla.46:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies-2.txt -> TrackingCookie.Tribalfusion : Cleaned with backup

:mozilla.122:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies-2.txt -> TrackingCookie.Specificclick : Cleaned with backup

:mozilla.123:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies-2.txt -> TrackingCookie.Specificclick : Cleaned with backup

:mozilla.124:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies-2.txt -> TrackingCookie.Specificclick : Cleaned with backup

:mozilla.125:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies-2.txt -> TrackingCookie.Specificclick : Cleaned with backup

:mozilla.126:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies-2.txt -> TrackingCookie.Specificclick : Cleaned with backup

:mozilla.129:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies-2.txt -> TrackingCookie.Tacoda : Cleaned with backup

:mozilla.131:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies-2.txt -> TrackingCookie.Tacoda : Cleaned with backup

:mozilla.136:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies-2.txt -> TrackingCookie.Tacoda : Cleaned with backup

:mozilla.205:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies-2.txt -> TrackingCookie.Tacoda : Cleaned with backup

:mozilla.264:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies-2.txt -> TrackingCookie.Adbrite : Cleaned with backup

:mozilla.305:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies-2.txt -> TrackingCookie.Googleadservices : Cleaned with backup

:mozilla.310:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies-2.txt -> TrackingCookie.Googleadservices : Cleaned with backup

:mozilla.357:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies-2.txt -> TrackingCookie.Googleadservices : Cleaned with backup

:mozilla.395:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies-2.txt -> TrackingCookie.Adbrite : Cleaned with backup

:mozilla.131:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Specificclick : Cleaned with backup

:mozilla.132:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Specificclick : Cleaned with backup

:mozilla.133:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Specificclick : Cleaned with backup

:mozilla.134:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Specificclick : Cleaned with backup

:mozilla.135:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Specificclick : Cleaned with backup

:mozilla.138:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Tacoda : Cleaned with backup

:mozilla.140:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Tacoda : Cleaned with backup

:mozilla.145:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Tacoda : Cleaned with backup

:mozilla.197:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Tacoda : Cleaned with backup

:mozilla.255:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Adbrite : Cleaned with backup

:mozilla.296:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Googleadservices : Cleaned with backup

:mozilla.301:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Googleadservices : Cleaned with backup

:mozilla.346:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Googleadservices : Cleaned with backup

:mozilla.382:C:\Documents and Settings\Adam\Application Data\Mozilla\Firefox\Profiles\txe72xm3.default\cookies.txt -> TrackingCookie.Adbrite : Cleaned with backup

:mozilla.113:C:\Documents and Settings\Susan\Application Data\Mozilla\Firefox\Profiles\z27sho74.default\cookies-1.txt -> TrackingCookie.Tacoda : Cleaned with backup

:mozilla.359:C:\Documents and Settings\Susan\Application Data\Mozilla\Firefox\Profiles\z27sho74.default\cookies-1.txt -> TrackingCookie.Googleadservices : Cleaned with backup

:mozilla.403:C:\Documents and Settings\Susan\Application Data\Mozilla\Firefox\Profiles\z27sho74.default\cookies-1.txt -> TrackingCookie.Googleadservices : Cleaned with backup

:mozilla.481:C:\Documents and Settings\Susan\Application Data\Mozilla\Firefox\Profiles\z27sho74.default\cookies-1.txt -> TrackingCookie.Googleadservices : Cleaned with backup

:mozilla.525:C:\Documents and Settings\Susan\Application Data\Mozilla\Firefox\Profiles\z27sho74.default\cookies-1.txt -> TrackingCookie.Tacoda : Cleaned with backup

:mozilla.563:C:\Documents and Settings\Susan\Application Data\Mozilla\Firefox\Profiles\z27sho74.default\cookies-1.txt -> TrackingCookie.Sitestat : Cleaned with backup

:mozilla.578:C:\Documents and Settings\Susan\Application Data\Mozilla\Firefox\Profiles\z27sho74.default\cookies-1.txt -> TrackingCookie.Googleadservices : Cleaned with backup

:mozilla.9:C:\Documents and Settings\Susan\Application Data\Mozilla\Firefox\Profiles\z27sho74.default\cookies-10.txt -> TrackingCookie.Casalemedia : Cleaned with backup

:mozilla.20:C:\Documents and Settings\Susan\Application Data\Mozilla\Firefox\Profiles\z27sho74.default\cookies-10.txt -> TrackingCookie.Casalemedia : Cleaned with backup

:mozilla.21:C:\Documents and Settings\Susan\Application Data\Mozilla\Firefox\Profiles\z27sho74.default\cookies-10.txt -> TrackingCookie.Casalemedia : Cleaned with backup

:mozilla.115:C:\Documents and Settings\Susan\Application Data\Mozilla\Firefox\Profiles\z27sho74.default\cookies-10.txt -> TrackingCookie.Googleadservices : Cleaned with backup

:mozilla.186:C:\Documents and Settings\Susan\Application Data\Mozilla\Firefox\Profiles\z27sho74.default\cookies-10.txt -> TrackingCookie.Tacoda : Cleaned with backup

:mozilla.187:C:\Documents and Settings\Susan\Application Data\Mozilla\Firefox\Profiles\z27sho74.default\cookies-10.txt -> TrackingCookie.Tacoda : Cleaned with backup

:mozilla.188:C:\Documents and Settings\Susan\Application Data\Mozilla\Firefox\Profiles\z27sho74.default\cookies-10.txt -> TrackingCookie.Tacoda : Cleaned with backup

:mozilla.189:C:\Documents and Settings\Susan\Application Data\Mozilla\Firefox\Profiles\z27sho74.default\cookies-10.txt -> TrackingCookie.Tacoda : Cleaned with backup

:mozilla.190:C:\Documents and Settings\Susan\Application Data\Mozilla\Firefox\Profiles\z27sho74.default\cookies-10.txt -> TrackingCookie.Tacoda : Cleaned with backup

:mozilla.61:C:\Documents and Settings\Susan\Application Data\Mozilla\Firefox\Profiles\z27sho74.default\cookies-2.txt -> TrackingCookie.Yieldmanager : Cleaned with backup

:mozilla.62:C:\Documents and Settings\Susan\Application Data\Mozilla\Firefox\Profiles\z27sho74.default\cookies-2.txt -> TrackingCookie.Yieldmanager : Cleaned with backup

:mozilla.63:C:\Documents and Settings\Susan\Application Data\Mozilla\Firefox\Profiles\z27sho74.default\cookies-2.txt -> TrackingCookie.Yieldmanager : Cleaned with backup

:mozilla.66:C:\Documents and Settings\Susan\Application Data\Mozilla\Firefox\Profiles\z27sho74.default\cookies-2.txt -> TrackingCookie.Casalemedia : Cleaned with backup

:mozilla.67:C:\Documents and Settings\Susan\Application Data\Mozilla\Firefox\Profiles\z27sho74.default\cookies-2.txt -> TrackingCookie.Casalemedia : Cleaned with backup

:mozilla.68:C:\Documents and Settings\Susan\Application Data\Mozilla\Firefox\Profiles\z27sho74.default\cookies-2.txt -> TrackingCookie.Casalemedia : Cleaned with backup

:mozilla.69:C:\Documents and Settings\Susan\Application Data\Mozilla\Firefox\Profiles\z27sho74.default\cookies-2.txt -> TrackingCookie.Casalemedia : Cleaned with backup

:mozilla.70:C:\Documents and Settings\Susan\Application Data\Mozilla\Firefox\Profiles\z27sho74.default\cookies-2.txt -> TrackingCookie.Casalemedia : Cleaned with backup

:mozilla.71:C:\Documents and Settings\Susan\Application Data\Mozilla\Firefox\Profiles\z27sho74.default\cookies-2.txt -> TrackingCookie.Casalemedia : Cleaned with backup

:mozilla.162:C:\Documents and Settings\Susan\Application Data\Mozilla\Firefox\Profiles\z27sho74.default\cookies-2.txt -> TrackingCookie.Tacoda : Cleaned with backup

:mozilla.391:C:\Documents and Settings\Susan\Application Data\Mozilla\Firefox\Profiles\z27sho74.default\cookies-2.txt -> TrackingCookie.Googleadservices : Cleaned with backup

:mozilla.435:C:\Documents and Settings\Susan\Application Data\Mozilla\Firefox\Profiles\z27sho74.default\cookies-2.txt -> TrackingCookie.Googleadservices : Cleaned with backup

:mozilla.513:C:\Documents and Settings\Susan\Application Data\Mozilla\Firefox\Profiles\z27sho74.default\cookies-2.txt -> TrackingCookie.Googleadservices : Cleaned with backup

:mozilla.555:C:\Documents and Settings\Susan\Application Data\Mozilla\Firefox\Profiles\z27sho74.default\cookies-2.txt -> TrackingCookie.Tacoda : Cleaned with backup

:mozilla.593:C:\Documents and Settings\Susan\Application Data\Mozilla\Firefox\Profiles\z27sho74.default\cookies-2.txt -> TrackingCookie.Sitestat : Cleaned with backup

:mozilla.608:C:\Documents and Settings\Susan\Application Data\Mozilla\Firefox\Profiles\z27sho74.default\cookies-2.txt -> TrackingCookie.Googleadservices : Cleaned with backup

:mozilla.7:C:\Documents and Settings\Susan\Application Data\Mozilla\Firefox\Profiles\z27sho74.default\cookies-3.txt -> TrackingCookie.Yieldmanager : Cleaned with backup

:mozilla.9:C:\Documents and Settings\Susan\Application Data\Mozilla\Firefox\Profiles\z27sho74.default\cookies-3.txt -> TrackingCookie.Yieldmanager : Cleaned with backup

:mozilla.142:C:\Documents and Settings\Susan\Application Data\Mozilla\Firefox\Profiles\z27sho74.default\cookies-3.txt -> TrackingCookie.Tacoda : Cleaned with backup

:mozilla.143:C:\Documents and Settings\Susan\Application Data\Mozilla\Firefox\Profiles\z27sho74.default\cookies-3.txt -> TrackingCookie.Tacoda : Cleaned with backup

:mozilla.144:C:\Documents and Settings\Susan\Application Data\Mozilla\Firefox\Profiles\z27sho74.default\cookies-3.txt -> TrackingCookie.Tacoda : Cleaned with backup

:mozilla.145:C:\Documents and Settings\Susan\Application Data\Mozilla\Firefox\Profiles\z27sho74.default\cookies-3.txt -> TrackingCookie.Tacoda : Cleaned with backup

:mozilla.94:C:\Documents and Settings\Susan\Application Data\Mozilla\Firefox\Profiles\z27sho74.default\cookies-4.txt -> TrackingCookie.Tacoda : Cleaned with backup

:mozilla.95:C:\Documents and Settings\Susan\Application Data\Mozilla\Firefox\Profiles\z27sho74.default\cookies-4.txt -> TrackingCookie.Tacoda : Cleaned with backup

:mozilla.96:C:\Documents and Settings\Susan\Application Data\Mozilla\Firefox\Profiles\z27sho74.default\cookies-4.txt -> TrackingCookie.Tacoda : Cleaned with backup

:mozilla.97:C:\Documents and Settings\Susan\Application Data\Mozilla\Firefox\Profiles\z27sho74.default\cookies-4.txt -> TrackingCookie.Tacoda : Cleaned with backup

:mozilla.98:C:\Documents and Settings\Susan\Application Data\Mozilla\Firefox\Profiles\z27sho74.default\cookies-4.txt -> TrackingCookie.Tacoda : Cleaned with backup

:mozilla.45:C:\Documents and Settings\Susan\Application Data\Mozilla\Firefox\Profiles\z27sho74.default\cookies-5.txt -> TrackingCookie.Casalemedia : Cleaned with backup

:mozilla.46:C:\Documents and Settings\Susan\Application Data\Mozilla\Firefox\Profiles\z27sho74.default\cookies-5.txt -> TrackingCookie.Casalemedia : Cleaned with backup

:mozilla.47:C:\Documents and Settings\Susan\Application Data\Mozilla\Firefox\Profiles\z27sho74.default\cookies-5.txt -> TrackingCookie.Casalemedia : Cleaned with backup

:mozilla.84:C:\Documents and Settings\Susan\Application Data\Mozilla\Firefox\Profiles\z27sho74.default\cookies-5.txt -> TrackingCookie.Googleadservices : Cleaned with backup

:mozilla.168:C:\Documents and Settings\Susan\Application Data\Mozilla\Firefox\Profiles\z27sho74.default\cookies-5.txt -> TrackingCookie.Tacoda : Cleaned with backup

:mozilla.169:C:\Documents and Settings\Susan\Application Data\Mozilla\Firefox\Profiles\z27sho74.default\cookies-5.txt -> TrackingCookie.Tacoda : Cleaned with backup

:mozilla.170:C:\Documents and Settings\Susan\Application Data\Mozilla\Firefox\Profiles\z27sho74.default\cookies-5.txt -> TrackingCookie.Tacoda : Cleaned with backup

:mozilla.171:C:\Documents and Settings\Susan\Application Data\Mozilla\Firefox\Profiles\z27sho74.default\cookies-5.txt -> TrackingCookie.Tacoda : Cleaned with backup

:mozilla.172:C:\Documents and Settings\Susan\Application Data\Mozilla\Firefox\Profiles\z27sho74.default\cookies-5.txt -> TrackingCookie.Tacoda : Cleaned with backup

:mozilla.10:C:\Documents and Settings\Susan\Application Data\Mozilla\Firefox\Profiles\z27sho74.default\cookies-6.txt -> TrackingCookie.Yieldmanager : Cleaned with backup

:mozilla.11:C:\Documents and Settings\Susan\Application Data\Mozilla\Firefox\Profiles\z27sho74.default\cookies-6.txt -> TrackingCookie.Yieldmanager : Cleaned with backup

:mozilla.13:C:\Documents and Settings\Susan\Application Data\Mozilla\Firefox\Profiles\z27sho74.default\cookies-6.txt -> TrackingCookie.Yieldmanager : Cleaned with backup

:mozilla.14:C:\Documents and Settings\Susan\Application Data\Mozilla\Firefox\Profiles\z27sho74.default\cookies-6.txt -> TrackingCookie.Yieldmanager : Cleaned with backup

:mozilla.15:C:\Documents and Settings\Susan\Application Data\Mozilla\Firefox\Profiles\z27sho74.default\cookies-6.txt -> TrackingCookie.Yieldmanager : Cleaned with backup

:mozilla.16:C:\Documents and Settings\Susan\Application Data\Mozilla\Firefox\Profiles\z27sho74.default\cookies-6.txt -> TrackingCookie.Yieldmanager : Cleaned with backup

:mozilla.80:C:\Documents and Settings\Susan\Application Data\Mozilla\Firefox\Profiles\z27sho74.default\cookies-6.txt -> TrackingCookie.Casalemedia : Cleaned with backup

:mozilla.81:C:\Documents and Settings\Susan\Application Data\Mozilla\Firefox\Profiles\z27sho74.default\cookies-6.txt -> TrackingCookie.Casalemedia : Cleaned with backup

:mozilla.82:C:\Documents and Settings\Susan\Application Data\Mozilla\Firefox\Profiles\z27sho74.default\cookies-6.txt -> TrackingCookie.Casalemedia : Cleaned with backup

:mozilla.83:C:\Documents and Settings\Susan\Application Data\Mozilla\Firefox\Profiles\z27sho74.default\cookies-6.txt -> TrackingCookie.Casalemedia : Cleaned with backup

:mozilla.84:C:\Documents and Settings\Susan\Application Data\Mozilla\Firefox\Profiles\z27sho74.default\cookies-6.txt -> TrackingCookie.Casalemedia : Cleaned with backup

:mozilla.120:C:\Documents and Settings\Susan\Application Data\Mozilla\Firefox\Profiles\z27sho74.default\cookies-6.txt -> TrackingCookie.Googleadservices : Cleaned with backup

:mozilla.193:C:\Documents and Settings\Susan\Application Data\Mozilla\Firefox\Profiles\z27sho74.default\cookies-6.txt -> TrackingCookie.Tacoda : Cleaned with backup

:mozilla.194:C:\Documents and Settings\Susan\Application Data\Mozilla\Firefox\Profiles\z27sho74.default\cookies-6.txt -> TrackingCookie.Tacoda : Cleaned with backup

:mozilla.195:C:\Documents and Settings\Susan\Application Data\Mozilla\Firefox\Profiles\z27sho74.default\cookies-6.txt -> TrackingCookie.Tacoda : Cleaned with backup

:mozilla.196:C:\Documents and Settings\Susan\Application Data\Mozilla\Firefox\Profiles\z27sho74.default\cookies-6.txt -> TrackingCookie.Tacoda : Cleaned with backup

:mozilla.197:C:\Documents and Settings\Susan\Application Data\Mozilla\Firefox\Profiles\z27sho74.default\cookies-6.txt -> TrackingCookie.Tacoda : Cleaned with backup

:mozilla.10:C:\Documents and Settings\Susan\Application Data\Mozilla\Firefox\Profiles\z27sho74.default\cookies-7.txt -> TrackingCookie.Yieldmanager : Cleaned with backup

:mozilla.11:C:\Documents and Settings\Susan\Application Data\Mozilla\Firefox\Profiles\z27sho74.default\cookies-7.txt -> TrackingCookie.Yieldmanager : Cleaned with backup

:mozilla.12:C:\Documents and Settings\Susan\Application Data\Mozilla\Firefox\Profiles\z27sho74.default\cookies-7.txt -> TrackingCookie.Yieldmanager : Cleaned with backup

:mozilla.14:C:\Documents and Settings\Susan\Application Data\Mozilla\Firefox\Profiles\z27sho74.default\cookies-7.txt -> TrackingCookie.Yieldmanager : Cleaned with backup

:mozilla.15:C:\Documents and Settings\Susan\Application Data\Mozilla\Firefox\Profiles\z27sho74.default\cookies-7.txt -> TrackingCookie.Yieldmanager : Cleaned with backup

:mozilla.16:C:\Documents and Settings\Susan\Application Data\Mozilla\Firefox\Profiles\z27sho74.default\cookies-7.txt -> TrackingCookie.Yieldmanager : Cleaned with backup

:mozilla.80:C:\Documents and Settings\Susan\Application Data\Mozilla\Firefox\Profiles\z27sho74.default\cookies-7.txt -> TrackingCookie.Casalemedia : Cleaned with backup

:mozilla.81:C:\Documents and Settings\Susan\Application Data\Mozilla\Firefox\Profiles\z27sho74.default\cookies-7.txt -> TrackingCookie.Casalemedia : Cleaned with backup

:mozilla.82:C:\Documents and Settings\Susan\Application Data\Mozilla\Firefox\Profiles\z27sho74.default\cookies-7.txt -> TrackingCookie.Casalemedia : Cleaned with backup

:mozilla.83:C:\Documents and Settings\Susan\Application Data\Mozilla\Firefox\Profiles\z27sho74.default\cookies-7.txt -> TrackingCookie.Casalemedia : Cleaned with backup

:mozilla.84:C:\Documents and Settings\Susan\Application Data\Mozilla\Firefox\Profiles\z27sho74.default\cookies-7.txt -> TrackingCookie.Casalemedia : Cleaned with backup

:mozilla.120:C:\Documents and Settings\Susan\Application Data\Mozilla\Firefox\Profiles\z27sho74.default\cookies-7.txt -> TrackingCookie.Googleadservices : Cleaned with backup

:mozilla.193:C:\Documents and Settings\Susan\Application Data\Mozilla\Firefox\Profiles\z27sho74.default\cookies-7.txt -> TrackingCookie.Tacoda : Cleaned with backup

:mozilla.194:C:\Documents and Settings\Susan\Application Data\Mozilla\Firefox\Profiles\z27sho74.default\cookies-7.txt -> TrackingCookie.Tacoda : Cleaned with backup

:mozilla.195:C:\Documents and Settings\Susan\Application Data\Mozilla\Firefox\Profiles\z27sho74.default\cookies-7.txt -> TrackingCookie.Tacoda : Cleaned with backup

:mozilla.196:C:\Documents and Settings\Susan\Application Data\Mozilla\Firefox\Profiles\z27sho74.default\cookies-7.txt -> TrackingCookie.Tacoda : Cleaned with backup

:mozilla.197:C:\Documents and Settings\Susan\Application Data\Mozilla\Firefox\Profiles\z27sho74.default\cookies-7.txt -> TrackingCookie.Tacoda : Cleaned with backup

:mozilla.19:C:\Documents and Settings\Susan\Application Data\Mozilla\Firefox\Profiles\z27sho74.default\cookies-8.txt -> TrackingCookie.Yieldmanager : Cleaned with backup

:mozilla.20:C:\Documents and Settings\Susan\Application Data\Mozilla\Firefox\Profiles\z27sho74.default\cookies-8.txt -> TrackingCookie.Yieldmanager : Cleaned with backup

:mozilla.21:C:\Documents and Settings\Susan\Application Data\Mozilla\Firefox\Profiles\z27sho74.default\cookies-8.txt -> TrackingCookie.Yieldmanager : Cleaned with backup

:mozilla.22:C:\Documents and Settings\Susan\Application Data\Mozilla\Firefox\Profiles\z27sho74.default\cookies-8.txt -> TrackingCookie.Yieldmanager : Cleaned with backup

:mozilla.23:C:\Documents and Settings\Susan\Application Data\Mozilla\Firefox\Profiles\z27sho74.default\cookies-8.txt -> TrackingCookie.Yieldmanager : Cleaned with backup

:mozilla.25:C:\Documents and Settings\Susan\Application Data\Mozilla\Firefox\Profiles\z27sho74.default\cookies-8.txt -> TrackingCookie.Yieldmanager : Cleaned with backup

:mozilla.86:C:\Documents and Settings\Susan\Application Data\Mozilla\Firefox\Profiles\z27sho74.default\cookies-8.txt -> TrackingCookie.Casalemedia : Cleaned with backup

:mozilla.87:C:\Documents and Settings\Susan\Application Data\Mozilla\Firefox\Profiles\z27sho74.default\cookies-8.txt -> TrackingCookie.Casalemedia : Cleaned with backup

:mozilla.88:C:\Documents and Settings\Susan\Application Data\Mozilla\Firefox\Profiles\z27sho74.default\cookies-8.txt -> TrackingCookie.Casalemedia : Cleaned with backup

:mozilla.89:C:\Documents and Settings\Susan\Application Data\Mozilla\Firefox\Profiles\z27sho74.default\cookies-8.txt -> TrackingCookie.Casalemedia : Cleaned with backup

:mozilla.90:C:\Documents and Settings\Susan\Application Data\Mozilla\Firefox\Profiles\z27sho74.default\cookies-8.txt -> TrackingCookie.Casalemedia : Cleaned with backup

:mozilla.126:C:\Documents and Settings\Susan\Application Data\Mozilla\Firefox\Profiles\z27sho74.default\cookies-8.txt -> TrackingCookie.Googleadservices : Cleaned with backup

:mozilla.199:C:\Documents and Settings\Susan\Application Data\Mozilla\Firefox\Profiles\z27sho74.default\cookies-8.txt -> TrackingCookie.Tacoda : Cleaned with backup

:mozilla.200:C:\Documents and Settings\Susan\Application Data\Mozilla\Firefox\Profiles\z27sho74.default\cookies-8.txt -> TrackingCookie.Tacoda : Cleaned with backup

:mozilla.201:C:\Documents and Settings\Susan\Application Data\Mozilla\Firefox\Profiles\z27sho74.default\cookies-8.txt -> TrackingCookie.Tacoda : Cleaned with backup

:mozilla.202:C:\Documents and Settings\Susan\Application Data\Mozilla\Firefox\Profiles\z27sho74.default\cookies-8.txt -> TrackingCookie.Tacoda : Cleaned with backup

:mozilla.203:C:\Documents and Settings\Susan\Application Data\Mozilla\Firefox\Profiles\z27sho74.default\cookies-8.txt -> TrackingCookie.Tacoda : Cleaned with backup

:mozilla.37:C:\Documents and Settings\Susan\Application Data\Mozilla\Firefox\Profiles\z27sho74.default\cookies-9.txt -> TrackingCookie.Yieldmanager : Cleaned with backup

:mozilla.38:C:\Documents and Settings\Susan\Application Data\Mozilla\Firefox\Profiles\z27sho74.default\cookies-9.txt -> TrackingCookie.Yieldmanager : Cleaned with backup

:mozilla.40:C:\Documents and Settings\Susan\Application Data\Mozilla\Firefox\Profiles\z27sho74.default\cookies-9.txt -> TrackingCookie.Yieldmanager : Cleaned with backup

:mozilla.41:C:\Documents and Settings\Susan\Application Data\Mozilla\Firefox\Profiles\z27sho74.default\cookies-9.txt -> TrackingCookie.Yieldmanager : Cleaned with backup

:mozilla.42:C:\Documents and Settings\Susan\Application Data\Mozilla\Firefox\Profiles\z27sho74.default\cookies-9.txt -> TrackingCookie.Yieldmanager : Cleaned with backup

:mozilla.43:C:\Documents and Settings\Susan\Application Data\Mozilla\Firefox\Profiles\z27sho74.default\cookies-9.txt -> TrackingCookie.Yieldmanager : Cleaned with backup

:mozilla.86:C:\Documents and Settings\Susan\Application Data\Mozilla\Firefox\Profiles\z27sho74.default\cookies-9.txt -> TrackingCookie.Casalemedia : Cleaned with backup

:mozilla.87:C:\Documents and Settings\Susan\Application Data\Mozilla\Firefox\Profiles\z27sho74.default\cookies-9.txt -> TrackingCookie.Casalemedia : Cleaned with backup

:mozilla.88:C:\Documents and Settings\Susan\Application Data\Mozilla\Firefox\Profiles\z27sho74.default\cookies-9.txt -> TrackingCookie.Casalemedia : Cleaned with backup

:mozilla.89:C:\Documents and Settings\Susan\Application Data\Mozilla\Firefox\Profiles\z27sho74.default\cookies-9.txt -> TrackingCookie.Casalemedia : Cleaned with backup

:mozilla.90:C:\Documents and Settings\Susan\Application Data\Mozilla\Firefox\Profiles\z27sho74.default\cookies-9.txt -> TrackingCookie.Casalemedia : Cleaned with backup

:mozilla.126:C:\Documents and Settings\Susan\Application Data\Mozilla\Firefox\Profiles\z27sho74.default\cookies-9.txt -> TrackingCookie.Googleadservices : Cleaned with backup

:mozilla.199:C:\Documents and Settings\Susan\Application Data\Mozilla\Firefox\Profiles\z27sho74.default\cookies-9.txt -> TrackingCookie.Tacoda : Cleaned with backup

:mozilla.200:C:\Documents and Settings\Susan\Application Data\Mozilla\Firefox\Profiles\z27sho74.default\cookies-9.txt -> TrackingCookie.Tacoda : Cleaned with backup

:mozilla.201:C:\Documents and Settings\Susan\Application Data\Mozilla\Firefox\Profiles\z27sho74.default\cookies-9.txt -> TrackingCookie.Tacoda : Cleaned with backup

:mozilla.202:C:\Documents and Settings\Susan\Application Data\Mozilla\Firefox\Profiles\z27sho74.default\cookies-9.txt -> TrackingCookie.Tacoda : Cleaned with backup

:mozilla.203:C:\Documents and Settings\Susan\Application Data\Mozilla\Firefox\Profiles\z27sho74.default\cookies-9.txt -> TrackingCookie.Tacoda : Cleaned with backup

:mozilla.47:C:\Documents and Settings\Susan\Application Data\Mozilla\Firefox\Profiles\z27sho74.default\cookies.txt -> TrackingCookie.Tacoda : Cleaned with backup

:mozilla.49:C:\Documents and Settings\Susan\Application Data\Mozilla\Firefox\Profiles\z27sho74.default\cookies.txt -> TrackingCookie.Tacoda : Cleaned with backup

:mozilla.50:C:\Documents and Settings\Susan\Application Data\Mozilla\Firefox\Profiles\z27sho74.default\cookies.txt -> TrackingCookie.Tacoda : Cleaned with backup

:mozilla.53:C:\Documents and Settings\Susan\Application Data\Mozilla\Firefox\Profiles\z27sho74.default\cookies.txt -> TrackingCookie.Tacoda : Cleaned with backup

:mozilla.54:C:\Documents and Settings\Susan\Application Data\Mozilla\Firefox\Profiles\z27sho74.default\cookies.txt -> TrackingCookie.Tacoda : Cleaned with backup

:mozilla.128:C:\Documents and Settings\Susan\Application Data\Mozilla\Firefox\Profiles\z27sho74.default\cookies.txt -> TrackingCookie.Googleadservices : Cleaned with backup

::Report End

Edited by Bree26

Share this post


Link to post
Share on other sites

OK...I posted what I was asked for last Thursday and have been waiting patiently for a reply; I understand weekends, summer, whatever,etc., but I still have no idea whether my comp is reinfected or not and AVG keeps finding 23 objects every morning when it runs a scan. I'd appreciate any kind of reply before an entire week goes by, please...

And my Windows Task Manager shows CPU Usage running between 50%-to an amazing 100% and a page file usage of 1.67-1.75 GB. Firefox is running at 37,772 K it was a high of 69,000-something), SpywareDoctor at 24,616 K and AIM at 23,832 K. I have no idea what's going on with this now. I would REALLY appreciate a response from someone and some assistance. Thank you!

Edited by Bree26

Share this post


Link to post
Share on other sites
Guest
This topic is now closed to further replies.