Tech Support Guy banner
  • IMPORTANT: Only authorized members may reply to threads in this forum due to the complexity of the malware removal process. Authorized members include Malware Specialists and Trainees, Administrators, Moderators, and Trusted Advisors. Regular members are not permitted to reply, and any such posts will be deleted without notice or further explanation. Notice
Status
Not open for further replies.
1 - 17 of 17 Posts

·
Registered
Joined
·
29 Posts
Discussion Starter · #1 ·
hey guys,
i got another problem with my sisters comp...
well wen it starts up windows its so slow 2 open programs and stuff.. and sometimes wen u open too much programs it just restarts and wen it loads back up it says something about a serious recovery...
can someone please help me with the problem thanks
 

·
Registered
Joined
·
29 Posts
Discussion Starter · #3 ·
Logfile of HijackThis v1.99.1
Scan saved at 12:02:55 AM, on 1/12/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe
C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe
C:\PROGRA~1\Grisoft\AVGFRE~1\avgemc.exe
C:\Program Files\Spyware Doctor\sdhelp.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\System32\alg.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\SOUNDMAN.EXE
C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
C:\Program Files\WinFast\WFTVFM\WFWIZ.exe
C:\Program Files\Winamp\winampa.exe
C:\Program Files\Adobe\Photoshop Album Starter Edition\3.0\Apps\apdproxy.exe
C:\Program Files\Java\jre1.5.0_10\bin\jusched.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\WINDOWS\system32\LVCOMSX.EXE
C:\Program Files\Logitech\Video\LogiTray.exe
C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIADP.EXE
C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
C:\Program Files\MSN Messenger\MsnMsgr.Exe
C:\Program Files\Logitech\Video\FxSvr2.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Winamp\winamp.exe
C:\Program Files\Google\GoogleToolbarNotifier\1.2.908.5008\GoogleToolbarNotifier.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\PROGRA~1\DAP\DAP.EXE
C:\Program Files\HijackThis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.tvguide.ninemsn.com.au/
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx
O2 - BHO: PCTools Site Guard - {5C8B2A36-3DB1-42A4-A3CB-D426709BBFEB} - C:\PROGRA~1\SPYWAR~1\tools\iesdsg.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_10\bin\ssv.dll
O2 - BHO: (no name) - {83610394-EB5B-2401-72DE-3F4A7C7C7FDC} - C:\DOCUME~1\kenny\APPLIC~1\INSIDE~1\SAVE STYLE.exe (file missing)
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar3.dll
O2 - BHO: PCTools Browser Monitor - {B56A7D7D-6927-48C8-A975-17DF180C71AC} - C:\PROGRA~1\SPYWAR~1\tools\iesdpb.dll
O2 - BHO: (no name) - {DED3DB15-646B-A292-4C89-74E61FE2CF50} - C:\DOCUME~1\user\APPLIC~1\INSIDE~1\SAVE STYLE.exe (file missing)
O2 - BHO: EpsonToolBandKicker Class - {E99421FB-68DD-40F0-B4AC-B7027CAE2F1A} - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar3.dll
O3 - Toolbar: EPSON Web-To-Page - {EE5D279F-081B-4404-994D-C6B60AAEBA6D} - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll
O4 - HKLM\..\Run: [SiSUSBRG] C:\WINDOWS\SiSUSBrg.exe
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [WinFast Schedule] C:\Program Files\WinFast\WFTVFM\WFWIZ.exe
O4 - HKLM\..\Run: [WinampAgent] C:\Program Files\Winamp\winampa.exe
O4 - HKLM\..\Run: [Sony Ericsson PC Suite] "C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe" /startoptions
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [Adobe Photo Downloader] "C:\Program Files\Adobe\Photoshop Album Starter Edition\3.0\Apps\apdproxy.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.5.0_10\bin\jusched.exe"
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [LVCOMSX] C:\WINDOWS\system32\LVCOMSX.EXE
O4 - HKLM\..\Run: [LogitechVideoRepair] C:\Program Files\Logitech\Video\ISStart.exe
O4 - HKLM\..\Run: [LogitechVideoTray] C:\Program Files\Logitech\Video\LogiTray.exe
O4 - HKLM\..\Run: [EPSON Stylus CX4700 Series] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIADP.EXE /P26 "EPSON Stylus CX4700 Series" /O6 "USB002" /M "Stylus CX4700"
O4 - HKLM\..\Run: [AVG7_CC] C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe /STARTUP
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [Spyware Doctor] "C:\Program Files\Spyware Doctor\swdoctor.exe" /Q
O4 - HKCU\..\Run: [LogitechSoftwareUpdate] "C:\Program Files\Logitech\Video\ManifestEngine.exe" boot
O4 - HKCU\..\Run: [NBJ] "C:\Program Files\Ahead\Nero BackItUp\NBJ.exe"
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\1.0.720.3640\GoogleToolbarNotifier.exe
O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe
O8 - Extra context menu item: &Download with &DAP - C:\PROGRA~1\DAP\dapextie.htm
O8 - Extra context menu item: Download &all with DAP - C:\PROGRA~1\DAP\dapextie2.htm
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_10\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_10\bin\ssv.dll
O9 - Extra button: Spyware Doctor - {2D663D1A-8670-49D9-A1A5-4C56B4E14E84} - C:\PROGRA~1\SPYWAR~1\tools\iesdpb.dll
O9 - Extra button: Run DAP - {669695BC-A811-4A9D-8CDF-BA8C795F261C} - C:\PROGRA~1\DAP\DAP.EXE
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: AVG Anti-Spyware Guard - Anti-Malware Development a.s. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe
O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe
O23 - Service: AVG E-mail Scanner (AVGEMS) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgemc.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: PC Tools Spyware Doctor (SDhelper) - PC Tools Research Pty Ltd - C:\Program Files\Spyware Doctor\sdhelp.exe
O23 - Service: SymWMI Service (SymWSC) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\Security Center\SymWSC.exe
 

·
Registered
Joined
·
12,302 Posts
how much RAM does the computer have?

When was hte last time you did a clean install of XP?

To deactivate Spyware Doctor's OnGuard Tools

* From within Spyware Doctor, click the "OnGuard" button on the left side.
* Uncheck "Activate OnGuard".

You can reenable it once your system is clean.

Click Start > Run > and type in:

services.msc

Click OK.

In the services window find AVG Antipsyware guard
Right click and choose "Properties". On the "General" tab under "Service
Status" click the "Stop" button to stop the service. Beside "Startup Type"
in the dropdown menu select "Disabled". Click Apply then OK. Exit the
Services utility.

Note: You may get an error here when trying to access the properties of the
service. If you do get an error, just select the service and look there in
the top left of the main service window and click "Stop" to stop the service. If that gives an error or it is already stopped, just skip this step and proceed with the rest.

You can re-enable this after you are clean!

* Click here to download ATF Cleaner by Atribune and save it to your desktop.

http://majorgeeks.com/ATF_Cleaner_d4949.html

* Double-click ATF-Cleaner.exe to run the program.
* Under Main choose: Select All
* Click the Empty Selected button.
o If you use Firefox:
+ Click Firefox at the top and choose: Select All
+ Click the Empty Selected button.
+ NOTE: If you would like to keep your saved passwords, please click No at the prompt.
o If you use Opera:
+ Click Opera at the top and choose: Select All
+ Click the Empty Selected button.
+ NOTE: If you would like to keep your saved passwords, please click No at the prompt.
* Click Exit on the Main menu to close the program.

* Click here for info on how to boot to safe mode if you don't already know
how.

http://service1.symantec.com/SUPPOR...2001052409420406?OpenDocument&src=sec_doc_nam

* Now copy these instructions to notepad and save them to your desktop. You
will need them to refer to in safe mode.

* Restart your computer into safe mode now. Perform the following steps in
safe mode:

Run AVG Anti-Spyware!

# IMPORTANT: Do not open any other windows or programs while AVG is scanning as it may interfere with the scanning process:
# Launch AVG Anti-spyware by double-clicking the icon on your desktop.
# Select the "Scanner" icon at the top and then the "Scan" tab then click on "Complete System Scan".
# AVG will now begin the scanning process. Be patient this may take a little time.
Once the scan is complete do the following:
# If you have any infections you will prompted, then select "Apply all actions"
# Next select the "Reports" icon at the top.
# Select the "Save report as" button in the lower left hand of the screen and save it to a text file on your system (make sure to remember where you saved that file, this is important).
# Close AVG and reboot your system back into Normal Mode.

reboot to normal mode and run a few online scans!

Note: this is a stand alone, it doesn't install to start/programmes.

Download Mwav,

http://www.spywareinfo.dk/download/mwav.exe

double click on it and it will extract to C:\kaspersky. Click
on the kaspersky folder and click on Kavupd, a black dos window will open
and it will update the programme for you, be patient it will take 5-10
minutes to download the new definitions. Once it's updated, click on mwavscan
to launch the programme.

Use the defaults of:

Memory
startup folders
Registry
system folders
services

Choose drive , all drives and, click scan all files
and then click scan/clean. After it finishes scanning and cleaning post
the log here with a new hijack this log.

Note: this is a very thorough scanner, it might take anything up to an hour
or more, depending on how many drives you have and how badly infected your
pc is.

Highlight the portion of the scan that lists infected items and hold
CTRL + C to Copy then paste it here. The whole log with be extremely
big so there is no way to copy the whole thing. I just need the
infected items list.

post another hijack this log, the AVG Anti-Spyware log and the Mwav scan log.
 

·
Registered
Joined
·
29 Posts
Discussion Starter · #8 ·
---------------------------------------------------------
AVG Anti-Spyware - Scan Report
---------------------------------------------------------

+ Created at: 7:55:36 PM 1/5/2007

+ Scan result:

C:\Program Files\WAV to MP3 Encoder\mm332.exe -> Adware.EZula : Cleaned with backup (quarantined).
HKLM\SOFTWARE\Classes\AppID\eZulaBootExe.EXE -> Adware.Ezula : Cleaned with backup (quarantined).
HKLM\SOFTWARE\Classes\EZulaBootExe.InstallCtrl -> Adware.Ezula : Cleaned with backup (quarantined).
HKLM\SOFTWARE\Classes\EZulaBootExe.InstallCtrl.1 -> Adware.Ezula : Cleaned with backup (quarantined).
HKLM\SOFTWARE\Classes\EZulaBootExe.InstallCtrl\CLSID -> Adware.Ezula : Cleaned with backup (quarantined).
HKLM\SOFTWARE\Classes\EZulaBootExe.InstallCtrl\CurVer -> Adware.Ezula : Cleaned with backup (quarantined).
C:\Program Files\HbTools\Bin\4.8.2.0\HbtAds.dll -> Adware.HotBar : Cleaned with backup (quarantined).
C:\Program Files\HbTools\Bin\4.8.2.0\HbtGuard.exe -> Adware.HotBar : Cleaned with backup (quarantined).
C:\Program Files\HbTools\Bin\4.8.2.0\HbtHostIE.dll -> Adware.HotBar : Cleaned with backup (quarantined).
C:\Program Files\HbTools\Bin\4.8.2.0\HbtHostOE.dll -> Adware.Hotbar : Cleaned with backup (quarantined).
C:\Program Files\HbTools\Bin\4.8.2.0\HbtHostOL.dll -> Adware.HotBar : Cleaned with backup (quarantined).
C:\Program Files\HbTools\Bin\4.8.2.0\HbtInstIE.dll -> Adware.HotBar : Cleaned with backup (quarantined).
C:\Program Files\HbTools\Bin\4.8.2.0\HbtOEAddOn.exe -> Adware.HotBar : Cleaned with backup (quarantined).
C:\Program Files\HbTools\Bin\4.8.2.0\HbtSrv.exe -> Adware.HotBar : Cleaned with backup (quarantined).
C:\Program Files\HbTools\Bin\4.8.2.0\HbtWeatherOnTray.exe -> Adware.HotBar : Cleaned with backup (quarantined).
HKLM\SOFTWARE\Classes\HbCoreSrv.DynamicProp -> Adware.HotBar : Cleaned with backup (quarantined).
HKLM\SOFTWARE\Classes\HbCoreSrv.DynamicProp.1 -> Adware.HotBar : Cleaned with backup (quarantined).
HKLM\SOFTWARE\Classes\HbCoreSrv.DynamicProp\CLSID -> Adware.HotBar : Cleaned with backup (quarantined).
HKLM\SOFTWARE\Classes\HbCoreSrv.DynamicProp\CurVer -> Adware.HotBar : Cleaned with backup (quarantined).
HKLM\SOFTWARE\Classes\HbTools.HbtCommBand -> Adware.HotBar : Cleaned with backup (quarantined).
HKLM\SOFTWARE\Classes\HbTools.HbtCommBand.1 -> Adware.HotBar : Cleaned with backup (quarantined).
HKLM\SOFTWARE\Classes\HbTools.HbtCommBand\CLSID -> Adware.HotBar : Cleaned with backup (quarantined).
HKLM\SOFTWARE\Classes\HbTools.HbtCommBand\CurVer -> Adware.HotBar : Cleaned with backup (quarantined).
HKLM\SOFTWARE\Classes\HbtCoreSrv.HbtCoreServices -> Adware.HotBar : Cleaned with backup (quarantined).
HKLM\SOFTWARE\Classes\HbtCoreSrv.HbtCoreServices.1 -> Adware.HotBar : Cleaned with backup (quarantined).
HKLM\SOFTWARE\Classes\HbtCoreSrv.HbtCoreServices\CLSID -> Adware.HotBar : Cleaned with backup (quarantined).
HKLM\SOFTWARE\Classes\HbtCoreSrv.HbtCoreServices\CurVer -> Adware.HotBar : Cleaned with backup (quarantined).
HKLM\SOFTWARE\Classes\HbtCoreSrv.LfgAx -> Adware.HotBar : Cleaned with backup (quarantined).
HKLM\SOFTWARE\Classes\HbtCoreSrv.LfgAx.1 -> Adware.HotBar : Cleaned with backup (quarantined).
HKLM\SOFTWARE\Classes\HbtCoreSrv.LfgAx\CLSID -> Adware.HotBar : Cleaned with backup (quarantined).
HKLM\SOFTWARE\Classes\HbtCoreSrv.LfgAx\CurVer -> Adware.HotBar : Cleaned with backup (quarantined).
HKLM\SOFTWARE\Classes\HbtHostIE.Bho -> Adware.HotBar : Cleaned with backup (quarantined).
HKLM\SOFTWARE\Classes\HbtHostIE.Bho.1 -> Adware.HotBar : Cleaned with backup (quarantined).
HKLM\SOFTWARE\Classes\HbtHostIE.Bho\CLSID -> Adware.HotBar : Cleaned with backup (quarantined).
HKLM\SOFTWARE\Classes\HbtHostIE.Bho\CurVer -> Adware.HotBar : Cleaned with backup (quarantined).
HKLM\SOFTWARE\Classes\HbtHostOL.HbtMailAnim -> Adware.HotBar : Cleaned with backup (quarantined).
HKLM\SOFTWARE\Classes\HbtHostOL.HbtMailAnim.1 -> Adware.HotBar : Cleaned with backup (quarantined).
HKLM\SOFTWARE\Classes\HbtHostOL.HbtMailAnim\CLSID -> Adware.HotBar : Cleaned with backup (quarantined).
HKLM\SOFTWARE\Classes\HbtHostOL.HbtMailAnim\CurVer -> Adware.HotBar : Cleaned with backup (quarantined).
HKLM\SOFTWARE\Classes\HbtHostOL.HbtWebmailSend -> Adware.HotBar : Cleaned with backup (quarantined).
HKLM\SOFTWARE\Classes\HbtHostOL.HbtWebmailSend.1 -> Adware.HotBar : Cleaned with backup (quarantined).
HKLM\SOFTWARE\Classes\HbtHostOL.HbtWebmailSend\CLSID -> Adware.HotBar : Cleaned with backup (quarantined).
HKLM\SOFTWARE\Classes\HbtHostOL.HbtWebmailSend\CurVer -> Adware.HotBar : Cleaned with backup (quarantined).
HKLM\SOFTWARE\Classes\HbtToolbar.HbtHtmlMenuUI -> Adware.HotBar : Cleaned with backup (quarantined).
HKLM\SOFTWARE\Classes\HbtToolbar.HbtHtmlMenuUI.1 -> Adware.HotBar : Cleaned with backup (quarantined).
HKLM\SOFTWARE\Classes\HbtToolbar.HbtHtmlMenuUI\CLSID -> Adware.HotBar : Cleaned with backup (quarantined).
HKLM\SOFTWARE\Classes\HbtToolbar.HbtHtmlMenuUI\CurVer -> Adware.HotBar : Cleaned with backup (quarantined).
HKLM\SOFTWARE\Classes\HbtToolbar.HbtToolbarCtl -> Adware.HotBar : Cleaned with backup (quarantined).
HKLM\SOFTWARE\Classes\HbtToolbar.HbtToolbarCtl.1 -> Adware.HotBar : Cleaned with backup (quarantined).
HKLM\SOFTWARE\Classes\HbtToolbar.HbtToolbarCtl\CLSID -> Adware.HotBar : Cleaned with backup (quarantined).
HKLM\SOFTWARE\Classes\HbtToolbar.HbtToolbarCtl\CurVer -> Adware.HotBar : Cleaned with backup (quarantined).
HKLM\SOFTWARE\Classes\HbtTools.HbMain -> Adware.HotBar : Cleaned with backup (quarantined).
HKLM\SOFTWARE\Classes\HbtTools.HbMain.1 -> Adware.HotBar : Cleaned with backup (quarantined).
HKLM\SOFTWARE\Classes\HbtTools.HbMain\CLSID -> Adware.HotBar : Cleaned with backup (quarantined).
HKLM\SOFTWARE\Classes\HbtTools.HbMain\CurVer -> Adware.HotBar : Cleaned with backup (quarantined).
HKLM\SOFTWARE\Classes\Wallpaper.WallpaperManager -> Adware.HotBar : Cleaned with backup (quarantined).
HKLM\SOFTWARE\Classes\Wallpaper.WallpaperManager.1 -> Adware.HotBar : Cleaned with backup (quarantined).
HKLM\SOFTWARE\Classes\Wallpaper.WallpaperManager\CLSID -> Adware.HotBar : Cleaned with backup (quarantined).
HKLM\SOFTWARE\Classes\Wallpaper.WallpaperManager\CurVer -> Adware.HotBar : Cleaned with backup (quarantined).
HKLM\SOFTWARE\HbTools -> Adware.HotBar : Cleaned with backup (quarantined).
HKLM\SOFTWARE\HbTools\HbTools -> Adware.HotBar : Cleaned with backup (quarantined).
HKLM\SOFTWARE\HbTools\HbTools\Install -> Adware.HotBar : Cleaned with backup (quarantined).
HKLM\SOFTWARE\HbTools\HbTools\MachineInfo -> Adware.HotBar : Cleaned with backup (quarantined).
HKLM\SOFTWARE\HbTools\HbTools\PI -> Adware.HotBar : Cleaned with backup (quarantined).
HKLM\SOFTWARE\HbTools\HbTools\PI\3.2 -> Adware.HotBar : Cleaned with backup (quarantined).
HKLM\SOFTWARE\HbTools\Install -> Adware.HotBar : Cleaned with backup (quarantined).
HKLM\SOFTWARE\HbTools\Install\CmpMap -> Adware.HotBar : Cleaned with backup (quarantined).
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\HbToolsOutlookTools -> Adware.HotBar : Cleaned with backup (quarantined).
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\HbToolsWebTools -> Adware.HotBar : Cleaned with backup (quarantined).
HKU\S-1-5-21-3449148838-3826795829-4197046489-1004\Software\HbTools -> Adware.HotBar : Cleaned with backup (quarantined).
HKU\S-1-5-21-3449148838-3826795829-4197046489-1004\Software\HbTools\HbTools -> Adware.HotBar : Cleaned with backup (quarantined).
HKU\S-1-5-21-3449148838-3826795829-4197046489-1004\Software\HbTools\HbTools\UserInfo -> Adware.HotBar : Cleaned with backup (quarantined).
HKU\S-1-5-21-3449148838-3826795829-4197046489-1004\Software\HbTools\HbTools\mail -> Adware.HotBar : Cleaned with backup (quarantined).
HKU\S-1-5-21-3449148838-3826795829-4197046489-1004\Software\HbTools\HbTools\options -> Adware.HotBar : Cleaned with backup (quarantined).
HKU\S-1-5-21-3449148838-3826795829-4197046489-1004\Software\HbTools\hostol -> Adware.HotBar : Cleaned with backup (quarantined).
HKU\S-1-5-21-3449148838-3826795829-4197046489-1004\Software\HbTools\hostol\Mail -> Adware.HotBar : Cleaned with backup (quarantined).
C:\Program Files\NavExcel\NavHelper\v2.0.4a\NHUninstaller.exe -> Adware.NavExcel : Cleaned with backup (quarantined).
C:\Program Files\NavExcel\NavHelper\v2.0.4a\NHUpdater.exe -> Adware.NavExcel : Cleaned with backup (quarantined).
C:\Program Files\NavExcel\NavHelper\v2.0.4a\NHelper.dll -> Adware.NavExcel : Cleaned with backup (quarantined).
C:\Program Files\NavExcel\NavHelper\v2.0.4a\v2.0.4a.cab/NHUninstaller.exe -> Adware.NavExcel : Cleaned with backup (quarantined).
C:\Program Files\NavExcel\NavHelper\v2.0.4a\v2.0.4a.cab/NHUpdater.exe -> Adware.NavExcel : Cleaned with backup (quarantined).
C:\Program Files\NavExcel\NavHelper\v2.0.4a\v2.0.4a.cab/NHelper.dll -> Adware.NavExcel : Cleaned with backup (quarantined).
HKLM\SOFTWARE\Classes\NavExcel.NavHelper -> Adware.NavExcel : Cleaned with backup (quarantined).
HKLM\SOFTWARE\Classes\NavExcel.NavHelper.1 -> Adware.NavExcel : Cleaned with backup (quarantined).
HKLM\SOFTWARE\Classes\NavExcel.NavHelper\CLSID -> Adware.NavExcel : Cleaned with backup (quarantined).
HKLM\SOFTWARE\Classes\NavExcel.NavHelper\CurVer -> Adware.NavExcel : Cleaned with backup (quarantined).
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\NavHelper -> Adware.NavExcel : Cleaned with backup (quarantined).
HKLM\SOFTWARE\NavExcel -> Adware.NavExcel : Cleaned with backup (quarantined).
HKLM\SOFTWARE\NavExcel\NavHelper -> Adware.NavExcel : Cleaned with backup (quarantined).
HKLM\SOFTWARE\NavExcel\NavHelper\v2.0.4a -> Adware.NavExcel : Cleaned with backup (quarantined).
C:\Documents and Settings\user\Start Menu\Programs\WhenU -> Adware.SaveNow : Cleaned with backup (quarantined).
C:\Documents and Settings\user\Start Menu\Programs\WhenU\Learn More About Save!.url -> Adware.SaveNow : Cleaned with backup (quarantined).
C:\Documents and Settings\user\Start Menu\Programs\WhenU\Learn More About SaveNow.url -> Adware.SaveNow : Cleaned with backup (quarantined).
C:\Documents and Settings\user\Start Menu\Programs\WhenU\Learn More About WhenU Save.url -> Adware.SaveNow : Cleaned with backup (quarantined).
C:\Documents and Settings\user\Start Menu\Programs\WhenU\Learn More About WhenU SaveNow.url -> Adware.SaveNow : Cleaned with backup (quarantined).
C:\Documents and Settings\user\Start Menu\Programs\WhenU\Uninstall.lnk -> Adware.SaveNow : Cleaned with backup (quarantined).
C:\Documents and Settings\user\Start Menu\Programs\WhenU\WhenU Help Desk.lnk -> Adware.SaveNow : Cleaned with backup (quarantined).
C:\Documents and Settings\user\Start Menu\Programs\WhenU\WhenU.com Website.url -> Adware.SaveNow : Cleaned with backup (quarantined).
C:\Program Files\Save -> Adware.SaveNow : Cleaned with backup (quarantined).
C:\Program Files\Save\ACM.dll -> Adware.SaveNow : Cleaned with backup (quarantined).
C:\Program Files\Save\Save.exe -> Adware.SaveNow : Cleaned with backup (quarantined).
C:\Program Files\Save\SaveUninst.exe -> Adware.SaveNow : Cleaned with backup (quarantined).
C:\Program Files\Save\ffext.mod -> Adware.SaveNow : Cleaned with backup (quarantined).
C:\Program Files\Save\save.db -> Adware.SaveNow : Cleaned with backup (quarantined).
C:\Program Files\Save\save.htm -> Adware.SaveNow : Cleaned with backup (quarantined).
C:\Program Files\Save\saveupdate.exe -> Adware.SaveNow : Cleaned with backup (quarantined).
C:\Program Files\Save\store.db -> Adware.SaveNow : Cleaned with backup (quarantined).
C:\Program Files\WAV to MP3 Encoder\VVSN_MTHR0504Inst.exe/VVSN.exe -> Adware.SaveNow : Cleaned with backup (quarantined).
C:\System Volume Information\_restore{56DBE367-086A-4625-9B96-B7D158D3517F}\RP152\A0348917.dll -> Adware.SaveNow : Cleaned with backup (quarantined).
HKLM\SOFTWARE\Classes\WUSE.1 -> Adware.SaveNow : Cleaned with backup (quarantined).
HKLM\SOFTWARE\Classes\WUSN.1 -> Adware.SaveNow : Cleaned with backup (quarantined).
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\WhenUSaveMsg -> Adware.SaveNow : Cleaned with backup (quarantined).
HKLM\SOFTWARE\WhenUSave -> Adware.SaveNow : Cleaned with backup (quarantined).
HKLM\SOFTWARE\WhenUSave\Partners -> Adware.SaveNow : Cleaned with backup (quarantined).
HKLM\SOFTWARE\WhenUSave\Partners\MTHR -> Adware.SaveNow : Cleaned with backup (quarantined).
HKU\S-1-5-21-3449148838-3826795829-4197046489-1004\Software\WhenU -> Adware.SaveNow : Cleaned with backup (quarantined).
C:\Documents and Settings\kenny\Local Settings\Temporary Internet Files\Content.IE5\O9IRSLQB\l[1].htm -> Downloader.Small.co : Cleaned with backup (quarantined).
D:\Stuff\Programs\Nero v6.3.1.6 Package\Nero v6.3.1.6 keygen.zip/Keygen.exe -> Hijacker.NoName.a : Cleaned with backup (quarantined).
 

·
Registered
Joined
·
29 Posts
Discussion Starter · #9 ·
D:\Stuff\Programs\Nero v6.3.1.6 Package\nero6316 Keygen.exe -> Hijacker.NoName.a : Cleaned with backup (quarantined).
:mozilla.623:C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\fczdmi3a.default\cookies.txt -> TrackingCookie.247realmedia : Cleaned.
:mozilla.624:C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\fczdmi3a.default\cookies.txt -> TrackingCookie.247realmedia : Cleaned.
C:\Documents and Settings\kenny\Cookies\[email protected][1].txt -> TrackingCookie.247realmedia : Cleaned.
C:\Documents and Settings\user\Cookies\[email protected][1].txt -> TrackingCookie.247realmedia : Cleaned.
:mozilla.10:C:\Documents and Settings\kenny\Application Data\Mozilla\Firefox\Profiles\ra9lu6y6.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.11:C:\Documents and Settings\kenny\Application Data\Mozilla\Firefox\Profiles\ra9lu6y6.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.12:C:\Documents and Settings\kenny\Application Data\Mozilla\Firefox\Profiles\ra9lu6y6.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.473:C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\fczdmi3a.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.501:C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\fczdmi3a.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.625:C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\fczdmi3a.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.640:C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\fczdmi3a.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.67:C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\fczdmi3a.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.688:C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\fczdmi3a.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.68:C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\fczdmi3a.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.69:C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\fczdmi3a.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.70:C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\fczdmi3a.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.71:C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\fczdmi3a.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.74:C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\fczdmi3a.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.76:C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\fczdmi3a.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.77:C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\fczdmi3a.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.78:C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\fczdmi3a.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.79:C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\fczdmi3a.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.80:C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\fczdmi3a.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.81:C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\fczdmi3a.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.82:C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\fczdmi3a.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.83:C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\fczdmi3a.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.84:C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\fczdmi3a.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.85:C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\fczdmi3a.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.86:C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\fczdmi3a.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.87:C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\fczdmi3a.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.882:C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\fczdmi3a.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.88:C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\fczdmi3a.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.89:C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\fczdmi3a.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.90:C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\fczdmi3a.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.91:C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\fczdmi3a.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.92:C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\fczdmi3a.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.93:C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\fczdmi3a.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.94:C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\fczdmi3a.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.95:C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\fczdmi3a.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.96:C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\fczdmi3a.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.9:C:\Documents and Settings\kenny\Application Data\Mozilla\Firefox\Profiles\ra9lu6y6.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
C:\Documents and Settings\kenny\Cookies\[email protected][1].txt -> TrackingCookie.2o7 : Cleaned.
C:\Documents and Settings\kenny\Cookies\[email protected][1].txt -> TrackingCookie.2o7 : Cleaned.
C:\Documents and Settings\user\Cookies\[email protected][2].txt -> TrackingCookie.2o7 : Cleaned.
C:\Documents and Settings\user\Cookies\[email protected][1].txt -> TrackingCookie.2o7 : Cleaned.
C:\Documents and Settings\user\Cookies\[email protected][1].txt -> TrackingCookie.2o7 : Cleaned.
C:\Documents and Settings\user\Cookies\[email protected][1].txt -> TrackingCookie.2o7 : Cleaned.
C:\Documents and Settings\user\Cookies\[email protected][1].txt -> TrackingCookie.2o7 : Cleaned.
C:\Documents and Settings\user\Local Settings\Temp\Cookies\[email protected][1].txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.22:C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\fczdmi3a.default\cookies.txt -> TrackingCookie.Adbrite : Cleaned.
:mozilla.23:C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\fczdmi3a.default\cookies.txt -> TrackingCookie.Adbrite : Cleaned.
:mozilla.24:C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\fczdmi3a.default\cookies.txt -> TrackingCookie.Adbrite : Cleaned.
:mozilla.25:C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\fczdmi3a.default\cookies.txt -> TrackingCookie.Adbrite : Cleaned.
:mozilla.933:C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\fczdmi3a.default\cookies.txt -> TrackingCookie.Adbrite : Cleaned.
C:\Documents and Settings\user\Cookies\[email protected][2].txt -> TrackingCookie.Addynamix : Cleaned.
:mozilla.39:C:\Documents and Settings\kenny\Application Data\Mozilla\Firefox\Profiles\ra9lu6y6.default\cookies.txt -> TrackingCookie.Admarketplace : Cleaned.
:mozilla.549:C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\fczdmi3a.default\cookies.txt -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.550:C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\fczdmi3a.default\cookies.txt -> TrackingCookie.Adrevolver : Cleaned.
C:\Documents and Settings\user\Cookies\[email protected][2].txt -> TrackingCookie.Adtech : Cleaned.
:mozilla.129:C:\Documents and Settings\kenny\Application Data\Mozilla\Firefox\Profiles\ra9lu6y6.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.130:C:\Documents and Settings\kenny\Application Data\Mozilla\Firefox\Profiles\ra9lu6y6.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.131:C:\Documents and Settings\kenny\Application Data\Mozilla\Firefox\Profiles\ra9lu6y6.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.132:C:\Documents and Settings\kenny\Application Data\Mozilla\Firefox\Profiles\ra9lu6y6.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.133:C:\Documents and Settings\kenny\Application Data\Mozilla\Firefox\Profiles\ra9lu6y6.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.57:C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\fczdmi3a.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.58:C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\fczdmi3a.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.59:C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\fczdmi3a.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.60:C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\fczdmi3a.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.61:C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\fczdmi3a.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
C:\Documents and Settings\user\Cookies\[email protected][2].txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.841:C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\fczdmi3a.default\cookies.txt -> TrackingCookie.Adviva : Cleaned.
:mozilla.144:C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\fczdmi3a.default\cookies.txt -> TrackingCookie.Atdmt : Cleaned.
:mozilla.90:C:\Documents and Settings\kenny\Application Data\Mozilla\Firefox\Profiles\ra9lu6y6.default\cookies.txt -> TrackingCookie.Atdmt : Cleaned.
C:\Documents and Settings\kenny\Cookies\[email protected][2].txt -> TrackingCookie.Atdmt : Cleaned.
C:\Documents and Settings\user\Cookies\[email protected][2].txt -> TrackingCookie.Atdmt : Cleaned.
C:\Documents and Settings\user\Local Settings\Temp\Cookies\[email protected][1].txt -> TrackingCookie.Atdmt : Cleaned.
:mozilla.431:C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\fczdmi3a.default\cookies.txt -> TrackingCookie.Bfast : Cleaned.
:mozilla.50:C:\Documents and Settings\kenny\Application Data\Mozilla\Firefox\Profiles\ra9lu6y6.default\cookies.txt -> TrackingCookie.Bfast : Cleaned.
:mozilla.51:C:\Documents and Settings\kenny\Application Data\Mozilla\Firefox\Profiles\ra9lu6y6.default\cookies.txt -> TrackingCookie.Bfast : Cleaned.
:mozilla.601:C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\fczdmi3a.default\cookies.txt -> TrackingCookie.Bluestreak : Cleaned.
:mozilla.219:C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\fczdmi3a.default\cookies.txt -> TrackingCookie.Burstnet : Cleaned.
:mozilla.220:C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\fczdmi3a.default\cookies.txt -> TrackingCookie.Burstnet : Cleaned.
:mozilla.82:C:\Documents and Settings\kenny\Application Data\Mozilla\Firefox\Profiles\ra9lu6y6.default\cookies.txt -> TrackingCookie.Burstnet : Cleaned.
:mozilla.83:C:\Documents and Settings\kenny\Application Data\Mozilla\Firefox\Profiles\ra9lu6y6.default\cookies.txt -> TrackingCookie.Burstnet : Cleaned.
C:\Documents and Settings\user\Cookies\[email protected][2].txt -> TrackingCookie.Burstnet : Cleaned.
:mozilla.224:C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\fczdmi3a.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned.
:mozilla.225:C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\fczdmi3a.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned.
:mozilla.226:C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\fczdmi3a.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned.
:mozilla.227:C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\fczdmi3a.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned.
:mozilla.228:C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\fczdmi3a.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned.
:mozilla.229:C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\fczdmi3a.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned.
:mozilla.230:C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\fczdmi3a.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned.
:mozilla.66:C:\Documents and Settings\kenny\Application Data\Mozilla\Firefox\Profiles\ra9lu6y6.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned.
C:\Documents and Settings\kenny\Cookies\[email protected][2].txt -> TrackingCookie.Casalemedia : Cleaned.
C:\Documents and Settings\user\Cookies\[email protected][1].txt -> TrackingCookie.Casalemedia : Cleaned.
C:\Documents and Settings\user\Cookies\[email protected][2].txt -> TrackingCookie.Casinolasvegas : Cleaned.
C:\Documents and Settings\user\Cookies\[email protected][1].txt -> TrackingCookie.Casinolasvegas : Cleaned.
:mozilla.56:C:\Documents and Settings\kenny\Application Data\Mozilla\Firefox\Profiles\ra9lu6y6.default\cookies.txt -> TrackingCookie.Clickbank : Cleaned.
C:\Documents and Settings\user\Cookies\[email protected][1].txt -> TrackingCookie.Clickbank : Cleaned.
C:\Documents and Settings\user\Cookies\[email protected][2].txt -> TrackingCookie.Clickzs : Cleaned.
:mozilla.136:C:\Documents and Settings\kenny\Application Data\Mozilla\Firefox\Profiles\ra9lu6y6.default\cookies.txt -> TrackingCookie.Com : Cleaned.
:mozilla.293:C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\fczdmi3a.default\cookies.txt -> TrackingCookie.Com : Cleaned.
C:\Documents and Settings\kenny\Cookies\[email protected][1].txt -> TrackingCookie.Com : Cleaned.
C:\Documents and Settings\user\Cookies\[email protected][1].txt -> TrackingCookie.Coremetrics : Cleaned.
:mozilla.328:C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\fczdmi3a.default\cookies.txt -> TrackingCookie.Cqcounter : Cleaned.
:mozilla.55:C:\Documents and Settings\kenny\Application Data\Mozilla\Firefox\Profiles\ra9lu6y6.default\cookies.txt -> TrackingCookie.Doubleclick : Cleaned.
:mozilla.97:C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\fczdmi3a.default\cookies.txt -> TrackingCookie.Doubleclick : Cleaned.
C:\Documents and Settings\kenny\Cookies\[email protected][1].txt -> TrackingCookie.Doubleclick : Cleaned.
C:\Documents and Settings\user\Cookies\[email protected][2].txt -> TrackingCookie.Doubleclick : Cleaned.
:mozilla.457:C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\fczdmi3a.default\cookies.txt -> TrackingCookie.Esomniture : Cleaned.
:mozilla.554:C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\fczdmi3a.default\cookies.txt -> TrackingCookie.Esomniture : Cleaned.
:mozilla.556:C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\fczdmi3a.default\cookies.txt -> TrackingCookie.Esomniture : Cleaned.
:mozilla.562:C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\fczdmi3a.default\cookies.txt -> TrackingCookie.Esomniture : Cleaned.
:mozilla.582:C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\fczdmi3a.default\cookies.txt -> TrackingCookie.Esomniture : Cleaned.
:mozilla.702:C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\fczdmi3a.default\cookies.txt -> TrackingCookie.Esomniture : Cleaned.
:mozilla.707:C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\fczdmi3a.default\cookies.txt -> TrackingCookie.Esomniture : Cleaned.
:mozilla.816:C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\fczdmi3a.default\cookies.txt -> TrackingCookie.Esomniture : Cleaned.
:mozilla.821:C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\fczdmi3a.default\cookies.txt -> TrackingCookie.Esomniture : Cleaned.
:mozilla.822:C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\fczdmi3a.default\cookies.txt -> TrackingCookie.Esomniture : Cleaned.
:mozilla.823:C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\fczdmi3a.default\cookies.txt -> TrackingCookie.Esomniture : Cleaned.
:mozilla.568:C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\fczdmi3a.default\cookies.txt -> TrackingCookie.Estat : Cleaned.
C:\Documents and Settings\user\Cookies\[email protected][2].txt -> TrackingCookie.Euroclick : Cleaned.
:mozilla.168:C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\fczdmi3a.default\cookies.txt -> TrackingCookie.Falkag : Cleaned.
C:\Documents and Settings\kenny\Cookies\[email protected][2].txt -> TrackingCookie.Falkag : Cleaned.
C:\Documents and Settings\user\Cookies\[email protected][1].txt -> TrackingCookie.Falkag : Cleaned.
C:\Documents and Settings\user\Local Settings\Temp\Cookies\[email protected][2].txt -> TrackingCookie.Falkag : Cleaned.
:mozilla.17:C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\fczdmi3a.default\cookies.txt -> TrackingCookie.Fastclick : Cleaned.
:mozilla.18:C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\fczdmi3a.default\cookies.txt -> TrackingCookie.Fastclick : Cleaned.
:mozilla.19:C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\fczdmi3a.default\cookies.txt -> TrackingCookie.Fastclick : Cleaned.
:mozilla.20:C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\fczdmi3a.default\cookies.txt -> TrackingCookie.Fastclick : Cleaned.
:mozilla.21:C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\fczdmi3a.default\cookies.txt -> TrackingCookie.Fastclick : Cleaned.
:mozilla.28:C:\Documents and Settings\kenny\Application Data\Mozilla\Firefox\Profiles\ra9lu6y6.default\cookies.txt -> TrackingCookie.Fastclick : Cleaned.
:mozilla.29:C:\Documents and Settings\kenny\Application Data\Mozilla\Firefox\Profiles\ra9lu6y6.default\cookies.txt -> TrackingCookie.Fastclick : Cleaned.
:mozilla.30:C:\Documents and Settings\kenny\Application Data\Mozilla\Firefox\Profiles\ra9lu6y6.default\cookies.txt -> TrackingCookie.Fastclick : Cleaned.
C:\Documents and Settings\kenny\Cookies\[email protected][2].txt -> TrackingCookie.Fastclick : Cleaned.
C:\Documents and Settings\user\Cookies\[email protected][1].txt -> TrackingCookie.Fastclick : Cleaned.
C:\Documents and Settings\user\Cookies\[email protected][2].txt -> TrackingCookie.Fastclick : Cleaned.
:mozilla.336:C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\fczdmi3a.default\cookies.txt -> TrackingCookie.Googleadservices : Cleaned.
:mozilla.153:C:\Documents and Settings\kenny\Application Data\Mozilla\Firefox\Profiles\ra9lu6y6.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned.
:mozilla.154:C:\Documents and Settings\kenny\Application Data\Mozilla\Firefox\Profiles\ra9lu6y6.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned.
:mozilla.155:C:\Documents and Settings\kenny\Application Data\Mozilla\Firefox\Profiles\ra9lu6y6.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned.
:mozilla.156:C:\Documents and Settings\kenny\Application Data\Mozilla\Firefox\Profiles\ra9lu6y6.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned.
:mozilla.157:C:\Documents and Settings\kenny\Application Data\Mozilla\Firefox\Profiles\ra9lu6y6.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned.
:mozilla.395:C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\fczdmi3a.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned.
:mozilla.396:C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\fczdmi3a.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned.
:mozilla.399:C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\fczdmi3a.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned.
:mozilla.400:C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\fczdmi3a.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned.
:mozilla.559:C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\fczdmi3a.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned.
:mozilla.586:C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\fczdmi3a.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned.
:mozilla.776:C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\fczdmi3a.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned.
:mozilla.777:C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\fczdmi3a.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned.
:mozilla.824:C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\fczdmi3a.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned.
:mozilla.827:C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\fczdmi3a.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned.
C:\Documents and Settings\user\Cookies\[email protected][2].txt -> TrackingCookie.Hitbox : Cleaned.
C:\Documents and Settings\user\Cookies\[email protected][2].txt -> TrackingCookie.Hitbox : Cleaned.
C:\Documents and Settings\user\Cookies\[email protected][1].txt -> TrackingCookie.Hitbox : Cleaned.
:mozilla.481:C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\fczdmi3a.default\cookies.txt -> TrackingCookie.Hitslink : Cleaned.
:mozilla.614:C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\fczdmi3a.default\cookies.txt -> TrackingCookie.Hitslink : Cleaned.
:mozilla.160:C:\Documents and Settings\kenny\Application Data\Mozilla\Firefox\Profiles\ra9lu6y6.default\cookies.txt -> TrackingCookie.Hotlog : Cleaned.
:mozilla.6:C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\fczdmi3a.default\cookies.txt -> TrackingCookie.Hotlog : Cleaned.
C:\Documents and Settings\user\Cookies\[email protected][2].txt -> TrackingCookie.Hotlog : Cleaned.
C:\Documents and Settings\user\Cookies\[email protected][2].txt -> TrackingCookie.Hypertracker : Cleaned.
:mozilla.281:C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\fczdmi3a.default\cookies.txt -> TrackingCookie.Liveperson : Cleaned.
:mozilla.282:C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\fczdmi3a.default\cookies.txt -> TrackingCookie.Liveperson : Cleaned.
C:\Documents and Settings\user\Cookies\[email protected][2].txt -> TrackingCookie.Liveperson : Cleaned.
C:\Documents and Settings\user\Cookies\[email protected][1].txt -> TrackingCookie.Lop : Cleaned.
C:\Documents and Settings\user\Cookies\[email protected][1].txt -> TrackingCookie.Masterstats : Cleaned.
:mozilla.16:C:\Documents and Settings\kenny\Application Data\Mozilla\Firefox\Profiles\ra9lu6y6.default\cookies.txt -> TrackingCookie.Mediaplex : Cleaned.
:mozilla.176:C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\fczdmi3a.default\cookies.txt -> TrackingCookie.Mediaplex : Cleaned.
:mozilla.177:C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\fczdmi3a.default\cookies.txt -> TrackingCookie.Mediaplex : Cleaned.
C:\Documents and Settings\kenny\Cookies\[email protected][1].txt -> TrackingCookie.Mediaplex : Cleaned.
C:\Documents and Settings\user\Cookies\[email protected][2].txt -> TrackingCookie.Mediaplex : Cleaned.
:mozilla.135:C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\fczdmi3a.default\cookies.txt -> TrackingCookie.Overture : Cleaned.
:mozilla.136:C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\fczdmi3a.default\cookies.txt -> TrackingCookie.Overture : Cleaned.
:mozilla.141:C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\fczdmi3a.default\cookies.txt -> TrackingCookie.Overture : Cleaned.
:mozilla.142:C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\fczdmi3a.default\cookies.txt -> TrackingCookie.Overture : Cleaned.
C:\Documents and Settings\user\Cookies\[email protected][1].txt -> TrackingCookie.Overture : Cleaned.
C:\Documents and Settings\user\Cookies\[email protected][1].txt -> TrackingCookie.Overture : Cleaned.
:mozilla.113:C:\Documents and Settings\kenny\Application Data\Mozilla\Firefox\Profiles\ra9lu6y6.default\cookies.txt -> TrackingCookie.Pointroll : Cleaned.
:mozilla.114:C:\Documents and Settings\kenny\Application Data\Mozilla\Firefox\Profiles\ra9lu6y6.default\cookies.txt -> TrackingCookie.Pointroll : Cleaned.
:mozilla.115:C:\Documents and Settings\kenny\Application Data\Mozilla\Firefox\Profiles\ra9lu6y6.default\cookies.txt -> TrackingCookie.Pointroll : Cleaned.
:mozilla.116:C:\Documents and Settings\kenny\Application Data\Mozilla\Firefox\Profiles\ra9lu6y6.default\cookies.txt -> TrackingCookie.Pointroll : Cleaned.
:mozilla.389:C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\fczdmi3a.default\cookies.txt -> TrackingCookie.Pointroll : Cleaned.
:mozilla.391:C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\fczdmi3a.default\cookies.txt -> TrackingCookie.Pointroll : Cleaned.
:mozilla.392:C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\fczdmi3a.default\cookies.txt -> TrackingCookie.Pointroll : Cleaned.
:mozilla.393:C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\fczdmi3a.default\cookies.txt -> TrackingCookie.Pointroll : Cleaned.
C:\Documents and Settings\kenny\Cookies\[email protected][2].txt -> TrackingCookie.Pointroll : Cleaned.
C:\Documents and Settings\user\Cookies\[email protected][2].txt -> TrackingCookie.Pointroll : Cleaned.
:mozilla.64:C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\fczdmi3a.default\cookies.txt -> TrackingCookie.Qksrv : Cleaned.
:mozilla.65:C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\fczdmi3a.default\cookies.txt -> TrackingCookie.Qksrv : Cleaned.
C:\Documents and Settings\user\Cookies\[email protected][1].txt -> TrackingCookie.Qksrv : Cleaned.
:mozilla.106:C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\fczdmi3a.default\cookies.txt -> TrackingCookie.Questionmarket : Cleaned.
:mozilla.107:C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\fczdmi3a.default\cookies.txt -> TrackingCookie.Questionmarket : Cleaned.
:mozilla.108:C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\fczdmi3a.default\cookies.txt -> TrackingCookie.Questionmarket : Cleaned.
 

·
Registered
Joined
·
29 Posts
Discussion Starter · #10 ·
:mozilla.117:C:\Documents and Settings\kenny\Application Data\Mozilla\Firefox\Profiles\ra9lu6y6.default\cookies.txt -> TrackingCookie.Questionmarket : Cleaned.
:mozilla.118:C:\Documents and Settings\kenny\Application Data\Mozilla\Firefox\Profiles\ra9lu6y6.default\cookies.txt -> TrackingCookie.Questionmarket : Cleaned.
C:\Documents and Settings\user\Cookies\[email protected][1].txt -> TrackingCookie.Questionmarket : Cleaned.
:mozilla.61:C:\Documents and Settings\kenny\Application Data\Mozilla\Firefox\Profiles\ra9lu6y6.default\cookies.txt -> TrackingCookie.Realtracker : Cleaned.
C:\Documents and Settings\user\Cookies\[email protected][2].txt -> TrackingCookie.Reliablestats : Cleaned.
:mozilla.471:C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\fczdmi3a.default\cookies.txt -> TrackingCookie.Revenue : Cleaned.
C:\Documents and Settings\kenny\Cookies\[email protected][2].txt -> TrackingCookie.Revenue : Cleaned.
C:\Documents and Settings\user\Cookies\[email protected][2].txt -> TrackingCookie.Revenue : Cleaned.
:mozilla.115:C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\fczdmi3a.default\cookies.txt -> TrackingCookie.Ru4 : Cleaned.
:mozilla.116:C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\fczdmi3a.default\cookies.txt -> TrackingCookie.Ru4 : Cleaned.
:mozilla.117:C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\fczdmi3a.default\cookies.txt -> TrackingCookie.Ru4 : Cleaned.
:mozilla.118:C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\fczdmi3a.default\cookies.txt -> TrackingCookie.Ru4 : Cleaned.
:mozilla.119:C:\Documents and Settings\kenny\Application Data\Mozilla\Firefox\Profiles\ra9lu6y6.default\cookies.txt -> TrackingCookie.Serving-sys : Cleaned.
:mozilla.120:C:\Documents and Settings\kenny\Application Data\Mozilla\Firefox\Profiles\ra9lu6y6.default\cookies.txt -> TrackingCookie.Serving-sys : Cleaned.
:mozilla.121:C:\Documents and Settings\kenny\Application Data\Mozilla\Firefox\Profiles\ra9lu6y6.default\cookies.txt -> TrackingCookie.Serving-sys : Cleaned.
:mozilla.122:C:\Documents and Settings\kenny\Application Data\Mozilla\Firefox\Profiles\ra9lu6y6.default\cookies.txt -> TrackingCookie.Serving-sys : Cleaned.
:mozilla.210:C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\fczdmi3a.default\cookies.txt -> TrackingCookie.Serving-sys : Cleaned.
:mozilla.211:C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\fczdmi3a.default\cookies.txt -> TrackingCookie.Serving-sys : Cleaned.
:mozilla.212:C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\fczdmi3a.default\cookies.txt -> TrackingCookie.Serving-sys : Cleaned.
:mozilla.213:C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\fczdmi3a.default\cookies.txt -> TrackingCookie.Serving-sys : Cleaned.
:mozilla.214:C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\fczdmi3a.default\cookies.txt -> TrackingCookie.Serving-sys : Cleaned.
:mozilla.215:C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\fczdmi3a.default\cookies.txt -> TrackingCookie.Serving-sys : Cleaned.
C:\Documents and Settings\kenny\Cookies\[email protected][1].txt -> TrackingCookie.Serving-sys : Cleaned.
C:\Documents and Settings\user\Cookies\[email protected][2].txt -> TrackingCookie.Serving-sys : Cleaned.
C:\Documents and Settings\user\Cookies\[email protected][2].txt -> TrackingCookie.Serving-sys : Cleaned.
:mozilla.360:C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\fczdmi3a.default\cookies.txt -> TrackingCookie.Specificclick : Cleaned.
:mozilla.268:C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\fczdmi3a.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
:mozilla.269:C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\fczdmi3a.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
:mozilla.270:C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\fczdmi3a.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
:mozilla.271:C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\fczdmi3a.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
:mozilla.272:C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\fczdmi3a.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
:mozilla.273:C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\fczdmi3a.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
:mozilla.274:C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\fczdmi3a.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
:mozilla.275:C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\fczdmi3a.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
:mozilla.276:C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\fczdmi3a.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
:mozilla.277:C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\fczdmi3a.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
:mozilla.278:C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\fczdmi3a.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
:mozilla.279:C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\fczdmi3a.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
:mozilla.43:C:\Documents and Settings\kenny\Application Data\Mozilla\Firefox\Profiles\ra9lu6y6.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
:mozilla.44:C:\Documents and Settings\kenny\Application Data\Mozilla\Firefox\Profiles\ra9lu6y6.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
:mozilla.45:C:\Documents and Settings\kenny\Application Data\Mozilla\Firefox\Profiles\ra9lu6y6.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
:mozilla.252:C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\fczdmi3a.default\cookies.txt -> TrackingCookie.Tacoda : Cleaned.
:mozilla.253:C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\fczdmi3a.default\cookies.txt -> TrackingCookie.Tacoda : Cleaned.
:mozilla.84:C:\Documents and Settings\kenny\Application Data\Mozilla\Firefox\Profiles\ra9lu6y6.default\cookies.txt -> TrackingCookie.Tacoda : Cleaned.
:mozilla.85:C:\Documents and Settings\kenny\Application Data\Mozilla\Firefox\Profiles\ra9lu6y6.default\cookies.txt -> TrackingCookie.Tacoda : Cleaned.
C:\Documents and Settings\user\Cookies\[email protected][1].txt -> TrackingCookie.Tacoda : Cleaned.
:mozilla.849:C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\fczdmi3a.default\cookies.txt -> TrackingCookie.Targetnet : Cleaned.
:mozilla.850:C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\fczdmi3a.default\cookies.txt -> TrackingCookie.Targetnet : Cleaned.
:mozilla.121:C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\fczdmi3a.default\cookies.txt -> TrackingCookie.Tradedoubler : Cleaned.
C:\Documents and Settings\user\Cookies\[email protected][1].txt -> TrackingCookie.Tradedoubler : Cleaned.
:mozilla.127:C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\fczdmi3a.default\cookies.txt -> TrackingCookie.Tribalfusion : Cleaned.
:mozilla.27:C:\Documents and Settings\kenny\Application Data\Mozilla\Firefox\Profiles\ra9lu6y6.default\cookies.txt -> TrackingCookie.Tribalfusion : Cleaned.
C:\Documents and Settings\kenny\Cookies\[email protected][1].txt -> TrackingCookie.Tribalfusion : Cleaned.
C:\Documents and Settings\user\Cookies\[email protected][1].txt -> TrackingCookie.Tribalfusion : Cleaned.
:mozilla.110:C:\Documents and Settings\kenny\Application Data\Mozilla\Firefox\Profiles\ra9lu6y6.default\cookies.txt -> TrackingCookie.Valueclick : Cleaned.
:mozilla.608:C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\fczdmi3a.default\cookies.txt -> TrackingCookie.Valueclick : Cleaned.
:mozilla.609:C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\fczdmi3a.default\cookies.txt -> TrackingCookie.Valueclick : Cleaned.
:mozilla.570:C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\fczdmi3a.default\cookies.txt -> TrackingCookie.Weborama : Cleaned.
:mozilla.152:C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\fczdmi3a.default\cookies.txt -> TrackingCookie.Webtrendslive : Cleaned.
:mozilla.482:C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\fczdmi3a.default\cookies.txt -> TrackingCookie.Webtrendslive : Cleaned.
:mozilla.494:C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\fczdmi3a.default\cookies.txt -> TrackingCookie.Webtrendslive : Cleaned.
C:\Documents and Settings\user\Cookies\[email protected][1].txt -> TrackingCookie.Webtrendslive : Cleaned.
:mozilla.13:C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\fczdmi3a.default\cookies.txt -> TrackingCookie.Yadro : Cleaned.
:mozilla.161:C:\Documents and Settings\kenny\Application Data\Mozilla\Firefox\Profiles\ra9lu6y6.default\cookies.txt -> TrackingCookie.Yadro : Cleaned.
C:\Documents and Settings\user\Cookies\[email protected][2].txt -> TrackingCookie.Yadro : Cleaned.
:mozilla.170:C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\fczdmi3a.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.171:C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\fczdmi3a.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.172:C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\fczdmi3a.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.31:C:\Documents and Settings\kenny\Application Data\Mozilla\Firefox\Profiles\ra9lu6y6.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.32:C:\Documents and Settings\kenny\Application Data\Mozilla\Firefox\Profiles\ra9lu6y6.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned.
C:\Documents and Settings\kenny\Cookies\[email protected][1].txt -> TrackingCookie.Yieldmanager : Cleaned.
C:\Documents and Settings\user\Cookies\[email protected][2].txt -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.437:C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\fczdmi3a.default\cookies.txt -> TrackingCookie.Zedo : Cleaned.
:mozilla.438:C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\fczdmi3a.default\cookies.txt -> TrackingCookie.Zedo : Cleaned.
:mozilla.439:C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\fczdmi3a.default\cookies.txt -> TrackingCookie.Zedo : Cleaned.
C:\Documents and Settings\user\Cookies\[email protected][2].txt -> TrackingCookie.Zedo : Cleaned.
C:\Documents and Settings\user\Local Settings\Temp\Cookies\[email protected][2].txt -> TrackingCookie.Zedo : Cleaned.

::Report end
 

·
Registered
Joined
·
29 Posts
Discussion Starter · #11 ·
Logfile of HijackThis v1.99.1
Scan saved at 1:09:17 PM, on 1/14/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\savedump.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe
C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe
C:\PROGRA~1\Grisoft\AVGFRE~1\avgemc.exe
C:\Program Files\Spyware Doctor\sdhelp.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\WINDOWS\system32\svchost.exe
C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
C:\Program Files\WinFast\WFTVFM\WFWIZ.exe
C:\Program Files\Winamp\winampa.exe
C:\Program Files\Adobe\Photoshop Album Starter Edition\3.0\Apps\apdproxy.exe
C:\Program Files\Java\jre1.5.0_10\bin\jusched.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\WINDOWS\system32\LVCOMSX.EXE
C:\Program Files\Logitech\Video\LogiTray.exe
C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIADP.EXE
C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
C:\Program Files\Common Files\Teleca Shared\CapabilityManager.exe
C:\WINDOWS\System32\alg.exe
C:\Program Files\MSN Messenger\MsnMsgr.Exe
C:\Program Files\Spyware Doctor\swdoctor.exe
C:\Program Files\Logitech\Video\FxSvr2.exe
C:\PROGRA~1\Grisoft\AVGFRE~1\avgw.exe
C:\WINDOWS\system32\wuauclt.exe
C:\WINDOWS\system32\NOTEPAD.EXE
C:\Program Files\HijackThis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.tvguide.ninemsn.com.au/
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx
O2 - BHO: PCTools Site Guard - {5C8B2A36-3DB1-42A4-A3CB-D426709BBFEB} - C:\PROGRA~1\SPYWAR~1\tools\iesdsg.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_10\bin\ssv.dll
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar3.dll
O2 - BHO: PCTools Browser Monitor - {B56A7D7D-6927-48C8-A975-17DF180C71AC} - C:\PROGRA~1\SPYWAR~1\tools\iesdpb.dll
O2 - BHO: EpsonToolBandKicker Class - {E99421FB-68DD-40F0-B4AC-B7027CAE2F1A} - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar3.dll
O3 - Toolbar: EPSON Web-To-Page - {EE5D279F-081B-4404-994D-C6B60AAEBA6D} - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll
O4 - HKLM\..\Run: [SiSUSBRG] C:\WINDOWS\SiSUSBrg.exe
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [WinFast Schedule] C:\Program Files\WinFast\WFTVFM\WFWIZ.exe
O4 - HKLM\..\Run: [WinampAgent] C:\Program Files\Winamp\winampa.exe
O4 - HKLM\..\Run: [Sony Ericsson PC Suite] "C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe" /startoptions
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [Adobe Photo Downloader] "C:\Program Files\Adobe\Photoshop Album Starter Edition\3.0\Apps\apdproxy.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.5.0_10\bin\jusched.exe"
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [LVCOMSX] C:\WINDOWS\system32\LVCOMSX.EXE
O4 - HKLM\..\Run: [LogitechVideoRepair] C:\Program Files\Logitech\Video\ISStart.exe
O4 - HKLM\..\Run: [LogitechVideoTray] C:\Program Files\Logitech\Video\LogiTray.exe
O4 - HKLM\..\Run: [EPSON Stylus CX4700 Series] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIADP.EXE /P26 "EPSON Stylus CX4700 Series" /O6 "USB002" /M "Stylus CX4700"
O4 - HKLM\..\Run: [AVG7_CC] C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe /STARTUP
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [Spyware Doctor] "C:\Program Files\Spyware Doctor\swdoctor.exe" /Q
O4 - HKCU\..\Run: [LogitechSoftwareUpdate] "C:\Program Files\Logitech\Video\ManifestEngine.exe" boot
O4 - HKCU\..\Run: [NBJ] "C:\Program Files\Ahead\Nero BackItUp\NBJ.exe"
O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe
O8 - Extra context menu item: &Download with &DAP - C:\PROGRA~1\DAP\dapextie.htm
O8 - Extra context menu item: Download &all with DAP - C:\PROGRA~1\DAP\dapextie2.htm
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_10\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_10\bin\ssv.dll
O9 - Extra button: Spyware Doctor - {2D663D1A-8670-49D9-A1A5-4C56B4E14E84} - C:\PROGRA~1\SPYWAR~1\tools\iesdpb.dll
O9 - Extra button: Run DAP - {669695BC-A811-4A9D-8CDF-BA8C795F261C} - C:\PROGRA~1\DAP\DAP.EXE
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe
O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe
O23 - Service: AVG E-mail Scanner (AVGEMS) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgemc.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: PC Tools Spyware Doctor (SDhelper) - PC Tools Research Pty Ltd - C:\Program Files\Spyware Doctor\sdhelp.exe
O23 - Service: SymWMI Service (SymWSC) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\Security Center\SymWSC.exe

Hey Guys,
i've got 512mb of ram...
i've upload the mwav report so u can download it and have a look cause it took me awhile trying to look for the virus if you can please help would be great thanks

http://www.sendspace.com/file/uc7sjh

thats the link thanks
 

·
Registered
Joined
·
12,302 Posts
can you attache the log, you only need to post the part were it says it has deleted or renamed a virus?

go to this site and download these tools and once you get both
adaware Se 1.6 and spybot, update both of them.

Set adaware to do a full system scan and deselect, "search for neglible risk
entries". Click next to start the scan. Delete everything adaware finds.

reboot and now run spybot

Spybot: Search and destroy.

Delete what spybot finds marked in red. After updating spybot hit the
immunize button.

Download Superantispyware.

http://www.superantispyware.com/

Once downloaded and installed update the defintions
and then run a full system scan quarantine what it finds!

All tools can be downloaded at the link below and found on that page!

. SUPERAntiSpyware
. SpyBot search and destroy
. AdAware SE personal

http://www.majorgeeks.com/downloads31.html

Make sure your ActiveX controls are set as follows:

Go to Internet Options - Security - Internet, press 'default level', then OK.
Now press "Custom Level."

In the ActiveX section, set the first two options (Download signed and
unsigned ActiveX controls) to 'prompt', and 'Initialize and Script ActiveX
controls not marked as safe" to 'disable'.

Active X settings

http://www.compu-docs.com/activex.htm

Run ActiveScan online virus scan here

http://www.pandasoftware.com/products/activescan.htm

When the scan is finished, anything that it cannot clean have it delete it.
Make a note of the file location of anything that cannot be deleted so you
can delete it yourself.
- Save the results from the scan!

post another log and the panda scan log!
 

·
Registered
Joined
·
29 Posts
Discussion Starter · #13 ·
hi there... i would just like to ask, would it be easier if i just formatted the comp and save anything i need on to the other hard drive??
sorry for all the trouble i may have caused but its just taking along time 2 fix the problem?
please advise if formatting would be easier...
i got another problem but if i was to format... i dont know how to connect the wireless router to the other comp could you please help me out and what programs would be recommended to prevent problems
thanks
 

·
Registered
Joined
·
12,302 Posts
Yes, you might be quicker reformatting, but if your problems have stopped then these scans are just for cleaning up?

Reformatting will certainly get the computer back working properly especially if you do a clean install!

If you choose this, then I would recommend you use these programs for security!

Anti-vir

http://www.free-av.com/

Comodo firewall. Sign up it's free!

http://www.personalfirewall.trustix.com/

Threads on comodo!

http://www.wilderssecurity.com/forumdisplay.php?f=31

AVG Anti-Spyware

http://www.ewido.net/en/

* Click here to download ATF Cleaner by Atribune and save it to your desktop.

http://majorgeeks.com/ATF_Cleaner_d4949.html

* Double-click ATF-Cleaner.exe to run the program.
* Under Main choose: Select All
* Click the Empty Selected button.
o If you use Firefox:
+ Click Firefox at the top and choose: Select All
+ Click the Empty Selected button.
+ NOTE: If you would like to keep your saved passwords, please click No at the prompt.
o If you use Opera:
+ Click Opera at the top and choose: Select All
+ Click the Empty Selected button.
+ NOTE: If you would like to keep your saved passwords, please click No at the prompt.
* Click Exit on the Main menu to close the program.

Download Superantispyware.

http://www.superantispyware.com/

Once downloaded and installed update the defintions
and then run a full system scan quarantine what it finds!
Set adaware to do a full system scan and deselect, "search for neglible risk
entries". Click next to start the scan. Delete everything adaware finds.

reboot and now run spybot

Spybot: Search and destroy.

Delete what spybot finds marked in red. After updating spybot hit the
immunize button.

All tools can be downloaded at the link below and found on that page!

. SUPERAntiSpyware
. SpyBot search and destroy
. AdAware SE personal

http://www.majorgeeks.com/downloads31.html

Go here and download the latest version of java, once
downloaded, go to add/remove and uninstall all previous versions of java
from add/remove and then install the latest version you just downloaded!

http://www.java.com/en/download/index.jsp

Here's some free tools to keep you from getting infected in the future.

To stop reinfection get spywareblaster from

http://www.javacoolsoftware.com/downloads.html

get the hosts file from here.Unzip it to a folder!

http://www.mvps.org/winhelp2002/hosts.htm

put it into : or click the mvps bat and it should do it for you!

Windows XP = C:\WINDOWS\SYSTEM32\DRIVERS\ETC
Windows 2K = C:\WINNT\SYSTEM32\DRIVERS\ETC
Win 98\ME = C:\WINDOWS

ie-spyad.Puts over 5000 sites in your restricted zone so you'll be protected

when you visit innocent-looking sites that aren't actually innocent at all.

http://www.spywarewarrior.com/uiuc/resource.htm

Spyware Terminator

http://www.spywareterminator.com/dnl/landing.aspx

In spyware terminator, click real time protection and tick the box to use
real time protection and tick all the boxes except file exceptions shield.
If your confident in using its advanced feature, click advanced and tick
the HIPS box.

If you want to install and uninstall programs it is best to
temporarily disable Spyware terminator and then re-enable it after you
have installed or uninstalled a program as it will create a lot of pop ups asking you do you wish this to happen!

Right click spyware terminator on the bottom right of your status bar and
choose exit.Then tick the box and that is spyware terminator disabled!

Use spybot's immunize button and use spywareblaster' enable
protection once you update it. you can put spybot's hosts file into
your own and lock it.

I would also suggest switching to Mozilla's firefox browser, it's safer, has
a built in pop up blocker, blocks cookies and adds. Mozilla Thunderbird is also a good
e-mail client.

http://www.mozilla.org/

Another good and free browser is Opera!

http://www.opera.com/

Read here to see how to tighten your security:

http://forums.techguy.org/t208517.html

A good overall guide for firewalls, anti-virus, and anti-trojans as well as
regular spyware cleaners.

http://www.firewallguide.com/anti-trojan.htm

For your wireless connection you can post in the networking forum here @ TSG, they will help you with that!
 

·
Registered
Joined
·
29 Posts
Discussion Starter · #15 ·
hi,

i didn't end up formatting.. but instead did the above ActiveScan online and this is the saved log file:

Incident Status Location

Adware:adware/exact.bargainbuddy Not disinfected c:\program files\Bargain Buddy
Adware:adware/powerstrip Not disinfected Windows Registry
Adware:adware/whenusearch Not disinfected Windows Registry
Adware:adware/navhelper Not disinfected Windows Registry
Spyware:Cookie/Doubleclick Not disinfected C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\fczdmi3a.default\cookies.txt[.doubleclick.net/]
Spyware:Cookie/Xiti Not disinfected C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\fczdmi3a.default\cookies.txt[.xiti.com/]
Spyware:Cookie/Com.com Not disinfected C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\fczdmi3a.default\cookies.txt[.ad.sensismediasmart.com.au/]
Spyware:Cookie/Com.com Not disinfected C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\fczdmi3a.default\cookies.txt[ad.sensismediasmart.com.au/]
Spyware:Cookie/bravenetA Not disinfected C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\fczdmi3a.default\cookies.txt[.bravenet.com/]
Spyware:Cookie/OfferOptimizer Not disinfected C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\fczdmi3a.default\cookies.txt[.offeroptimizer.com/]
Spyware:Cookie/Apmebf Not disinfected C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\fczdmi3a.default\cookies.txt[.apmebf.com/]
Spyware:Cookie/Adserver Not disinfected C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\fczdmi3a.default\cookies.txt[adserver.filefront.com/]
Spyware:Cookie/FortuneCity Not disinfected C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\fczdmi3a.default\cookies.txt[.fortunecity.com/]
Spyware:Cookie/Maxserving Not disinfected C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\fczdmi3a.default\cookies.txt[.maxserving.com/]
Spyware:Cookie/RealMedia Not disinfected C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\fczdmi3a.default\cookies.txt[.realmedia.com/]
Spyware:Cookie/Atwola Not disinfected C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\fczdmi3a.default\cookies.txt[.atwola.com/]
Spyware:Cookie/Target Not disinfected C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\fczdmi3a.default\cookies.txt[.target.com/]
Spyware:Cookie/Seeq Not disinfected C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\fczdmi3a.default\cookies.txt[www48.seeq.com/]
Spyware:Cookie/DriveCleaner Not disinfected C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\fczdmi3a.default\cookies.txt[.drivecleaner.com/]
Spyware:Cookie/GoStats Not disinfected C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\fczdmi3a.default\cookies.txt[.c2.gostats.com/]
Spyware:Cookie/GoStats Not disinfected C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\fczdmi3a.default\cookies.txt[.gostats.com/]
Spyware:Cookie/GoStats Not disinfected C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\fczdmi3a.default\cookies.txt[.c2.gostats.com/]
Spyware:Cookie/Match Not disinfected C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\fczdmi3a.default\cookies.txt[promo.match.com/]
Spyware:Cookie/Atlas DMT Not disinfected C:\Documents and Settings\user\Cookies\[email protected][2].txt
Adware:Adware/SaveNow Not disinfected C:\Program Files\Mozilla Firefox\extensions\{BEE3E87E-E1C6-4bfe-BE9D-48E84271AB34}\chrome\whenu_ff.jar[content/overlay.js]
Spyware:Spyware/New.net Not disinfected D:\Stuff\Programs\Cliprexdsfree.exe[nnclx485.exe]
Adware:Adware/eZula Not disinfected D:\Stuff\Programs\Cliprexdsfree.exe[CliprexTTIL.exe]
Adware:Adware/nCase Not disinfected D:\Stuff\Programs\Cliprexdsfree.exe[msbb.exe]

I manually deleted the first one (bargin buddy) and the last 2.. but couldn't find the other files to delete.. what do i need to do with these?!
 

·
Registered
Joined
·
12,302 Posts
how's your computer running now any better?

Find and delete this folder below!

c:\program files\Bargain Buddy

* Go to Control Panel > Internet Options. On the General tab under
"Temporary Internet Files" Click "Delete Files". Put a check by "Delete
Offline Content" and click OK. Click on the "Delete Cookies" button to clear
the cookies.

To block cookies in IE.

Go to view/privacy report/highlight the offending cookie/click summary/
and choose never allow this site to use cookies/ click ok and exit!This
will block all tracking cookies from being set on your computer!

For Mozilla

To block cookies in mozilla and stop them from coming back click on
tools/ options/privacy/click view cookies, now you will now see a
list of cookies, click on all the cookies to delete that you don't want
to keep! You can view all the blocked cookies by clicking exceptions!

Download the pocket killbox

http://www.bleepingcomputer.com/files/killbox.php

Double-click on Killbox.exe to run it. Now put a tick by Delete on
Reboot. In the "Full Path of File to Delete" box, copy and paste each
of the following lines one at a time then click on the button that has
the red circle with the X in the middle after you enter each file.
It will ask for confimation to delete the file on next reboot. Click
Yes. It will then ask if you want to reboot now. Click No. Continue
with that same procedure until you have copied and pasted all of
these in the "Paste Full Path of File to Delete" box.Then click yes
to reboot after you entered the last one.

Note: It is possible that Killbox will tell you that one or more files do not
exist. If that happens, just continue on with all the files. Be sure you
don't miss any.

D:\Stuff\Programs\Cliprexdsfree.exe[nnclx485.exe]
D:\Stuff\Programs\Cliprexdsfree.exe[CliprexTTIL.exe]
D:\Stuff\Programs\Cliprexdsfree.exe[msbb.exe]

post another hijack this log!
 

·
Registered
Joined
·
29 Posts
Discussion Starter · #17 ·
the computer is still the same.. still abit slow.. restarts occassionally when i have a lot of programs running i think..
i've deleted the bargin buddy file, did the cookies as you've asked.. and dl'd the kill box program..

when copying and pasting the 3rd file into the kill box program .. it didn't reboot the computer.. or give me a hijack file post log .. is this correct..?! or have i done something wrong.. i've done as you've asked above.. but still nothing..?!
 
1 - 17 of 17 Posts
Status
Not open for further replies.
Top