My computer seems slow and when I tried uninstalling firefox, it wouldn't let me. I've scanned with avast and it found some trojans/viruses but those could've been false positives. I tried reinstalling yahoo messenger and it froze at the first step. I'm not sure if my computer is infected or not so here is my log file. Do I remove these in safe mode or normal mode is just as good? Btw, I've reverted back to using AVG free 7.5. Is that better than avast? Thanks in advance.
Logfile of HijackThis v1.99.1
Scan saved at 1:44:39 PM, on 11/2/2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\PROGRA~1\COMMON~1\INSTAL~1\UPDATE~1\issch.exe
C:\PROGRA~1\Grisoft\AVG7\avgamsvr.exe
C:\PROGRA~1\Grisoft\AVG7\avgcc.exe
C:\PROGRA~1\Grisoft\AVG7\avgupsvc.exe
C:\PROGRA~1\Grisoft\AVG7\avgemc.exe
C:\Program Files\Spyware Doctor\sdhelp.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\alg.exe
C:\PROGRA~1\Grisoft\AVG7\avgwb.dat
C:\Program Files\Sing-Gium International Pte Ltd\Pirate King\system\game.exe
C:\DOCUME~1\Owner\LOCALS~1\Temp\nstmp5\uninstall.exe
C:\DOCUME~1\Owner\LOCALS~1\Temp\nstmp6\uninstall.exe
C:\Program Files\Internet Download Manager\IDMan.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Documents and Settings\Owner\Desktop\New Folder\HijackThis.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://yahoo.sbc.com/dsl
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://yahoo.sbc.com/dsl
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://yahoo.sbc.com/dsl
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = \blank.htm
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = 200.88.223.98:80
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)
O2 - BHO: IDMIEHlprObj Class - {0055C089-8582-441B-A0BF-17B458C2A3A8} - C:\Program Files\Internet Download Manager\IDMIECC.dll
O2 - BHO: (no name) - {2F364306-AA45-47B5-9F9D-39A8B94E7EF7} - (no file)
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: Yahoo! IE Services Button - {5BAB4B5B-68BC-4B02-94D6-2FC0DE4A7897} - C:\Program Files\Yahoo!\Common\yiesrvc.dll
O2 - BHO: PCTools Site Guard - {5C8B2A36-3DB1-42A4-A3CB-D426709BBFEB} - C:\PROGRA~1\SPYWAR~1\tools\iesdsg.dll
O2 - BHO: (no name) - {7D9CB362-375B-4FB9-8024-E55079CC69D1}" - (no file)
O2 - BHO: PCTools Browser Monitor - {B56A7D7D-6927-48C8-A975-17DF180C71AC} - C:\PROGRA~1\SPYWAR~1\tools\iesdpb.dll
O2 - BHO: gFlash Class - {F156768E-81EF-470C-9057-481BA8380DBA} - C:\PROGRA~1\FlashGet\getflash.dll
O3 - Toolbar: FlashGet Bar - {E0E899AB-F487-11D5-8D29-0050BA6940E3} - C:\PROGRA~1\FlashGet\fgiebar.dll
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [ISUSPM Startup] C:\PROGRA~1\COMMON~1\INSTAL~1\UPDATE~1\ISUSPM.exe -startup
O4 - HKLM\..\Run: [ISUSScheduler] "C:\PROGRA~1\COMMON~1\INSTAL~1\UPDATE~1\issch.exe" -start
O4 - HKLM\..\Run: [AVG7_CC] C:\PROGRA~1\Grisoft\AVG7\avgcc.exe /STARTUP
O4 - HKLM\..\RunServices: [Config33.exe] Config33.exe
O8 - Extra context menu item: &AOL Toolbar Search - c:\program files\aol\aol toolbar 2.0\resources\en-US\local\search.html
O8 - Extra context menu item: &Search - http://edits.mywebsearch.com/toolbaredits/...html?p=ZJfox000
O8 - Extra context menu item: &Yahoo! Search - file:///C:\Program Files\Yahoo!\Common/ycsrch.htm
O8 - Extra context menu item: Download All by FlashGet - C:\Program Files\FlashGet\jc_all.htm
O8 - Extra context menu item: Download All Links with IDM - C:\Program Files\Internet Download Manager\IEGetAll.htm
O8 - Extra context menu item: Download using FlashGet - C:\Program Files\FlashGet\jc_link.htm
O8 - Extra context menu item: Download with IDM - C:\Program Files\Internet Download Manager\IEExt.htm
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office10\EXCEL.EXE/3000
O8 - Extra context menu item: Yahoo! &Dictionary - file:///C:\Program Files\Yahoo!\Common/ycdict.htm
O8 - Extra context menu item: Yahoo! &Maps - file:///C:\Program Files\Yahoo!\Common/ycmap.htm
O8 - Extra context menu item: Yahoo! &SMS - file:///C:\Program Files\Yahoo!\Common/ycsms.htm
O9 - Extra button: Spyware Doctor - {2D663D1A-8670-49D9-A1A5-4C56B4E14E84} - C:\PROGRA~1\SPYWAR~1\tools\iesdpb.dll
O9 - Extra button: Yahoo! Services - {5BAB4B5B-68BC-4B02-94D6-2FC0DE4A7897} - C:\Program Files\Yahoo!\Common\yiesrvc.dll
O9 - Extra button: AIM - {AC9E2541-2814-11d5-BC6D-00B0D0A1DE45} - C:\Program Files\AIM\aim.exe
O9 - Extra button: FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\PROGRA~1\FlashGet\flashget.exe
O9 - Extra 'Tools' menuitem: &FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\PROGRA~1\FlashGet\flashget.exe
O12 - Plugin for .spop: C:\Program Files\Internet Explorer\Plugins\NPDocBox.dll
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft....k/?linkid=39204
O16 - DPF: {231B1C6E-F934-42A2-92B6-C2FEFEC24276} (yucsetreg Class) - C:\Program Files\Yahoo!\common\yucconfig.dll
O16 - DPF: {2BC66F54-93A8-11D3-BEB6-00105AA9B6AE} (Symantec AntiVirus scanner) - http://security.symantec.com/sscv6/SharedC...bin/AvSniff.cab
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:\Program Files\Yahoo!\Common\yinsthelper.dll
O16 - DPF: {48884C41-EFAC-433D-958A-9FADAC41408E} (EGamesPlugin Class) - https://www.e-games....GamesPlugin.cab
O16 - DPF: {49232000-16E4-426C-A231-62846947304B} - http://ipgweb.cce.hp...ads/sysinfo.cab
O16 - DPF: {55027008-315F-4F45-BBC3-8BE119764741} (Slide Image Uploader Control) - http://www.slide.com...ageUploader.cab
O16 - DPF: {644E432F-49D3-41A1-8DD5-E099162EEEC5} (Symantec RuFSI Utility Class) - http://security.symantec.com/sscv6/SharedC...n/bin/cabsa.cab
O16 - DPF: {7C5D062A-7A1E-4A46-A02B-A928084CBD66} (MLauncherNew Class) - http://legendofares....LauncherNew.cab
O16 - DPF: {88D969C0-F192-11D4-A65F-0040963251E5} (XML DOM Document 4.0) - http://ipgweb.cce.hp...oads/msxml4.cab
O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/MsnMesse...pDownloader.cab
O16 - DPF: {D54160C3-DB7B-4534-9B65-190EE4A9C7F7} (SproutLauncherCtrl Class) - http://download.games.yahoo.com/games/web_...outLauncher.cab
O16 - DPF: {D6FCA8ED-4715-43DE-9BD2-2789778A5B09} - http://nprotect.neff...Crypt/npkcx.cab
O16 - DPF: {DF780F87-FF2B-4DF8-92D0-73DB16A1543A} - http://download.games.yahoo.com/games/web_...aploader_v6.cab
O20 - Winlogon Notify: igfxcui - C:\WINDOWS\SYSTEM32\igfxdev.dll
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
O23 - Service: Apache - Unknown owner - C:\Program Files\Apache Group\Apache\Apache.exe" --ntservice (file missing)
O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgamsvr.exe
O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgupsvc.exe
O23 - Service: AVG E-mail Scanner (AVGEMS) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgemc.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iPodService - Unknown owner - C:\Program Files\iPod\bin\iPodService.exe (file missing)
O23 - Service: npkcsvc - INCA Internet Co., Ltd. - C:\WINDOWS\system32\npkcsvc.exe
O23 - Service: PC Tools Spyware Doctor (SDhelper) - PC Tools Research Pty Ltd - C:\Program Files\Spyware Doctor\sdhelp.exe
0
Please help (HJ log included)
Started by hhml, Nov 02 2006 10:08 PM
38 replies to this topic
#2 OFFLINE
-
- Moderators
-
- 8,858 posts
I hate computers
- Gender:Male
Posted 02 November 2006 - 10:23 PM
Welcome to the forum. 
Run BitDefender Online Scanner
Run BitDefender Online Scanner
- Using internet Explorer please go HERE to run BitDefender's Online scan.
- Read the terms and then click I Agree
- You may receive a Security Warning about the BitDefender ActiveX control, If you do, please allow it to install.
- On the scanning Options screen, Press Click Here To Scan and then follow the on screen prompts.
- Once bit defender is finished scanning your computer it will automatically remove the infections. Once the removal process is finished press the close button and a dialog box will appear asking if you want to send your scan log back to the makers of bitdefender. You do not have to do this but what you do want to do is press the button that says "view log" and then copy and paste that log into notepad and save it to your desktop as bitdefender.txt.
- Reboot your computer
#3 OFFLINE
-
- Members
-
- 30 posts
Member
Posted 02 November 2006 - 10:36 PM
TY for the welcome =P
I loaded explorer and went to Bitdender scanner online but my page would not load. Is it a proxy problem of some sort? I don't know what is wrong. How do I fix this so my page will load?
I loaded explorer and went to Bitdender scanner online but my page would not load. Is it a proxy problem of some sort? I don't know what is wrong. How do I fix this so my page will load?
#4 OFFLINE
-
- Moderators
-
- 8,858 posts
I hate computers
- Gender:Male
Posted 02 November 2006 - 10:41 PM
Try one more time and then we can try something else. I'm not sure why it wont load.
#5 OFFLINE
-
- Members
-
- 30 posts
Member
Posted 02 November 2006 - 10:47 PM
It still doesn't load. Only yahoo.com works; other sites don't.
#6 OFFLINE
-
- Moderators
-
- 8,858 posts
I hate computers
- Gender:Male
Posted 02 November 2006 - 11:02 PM
Sysclean
Come back with the sysclean log and a new hijackthis log.
- First create a new folder on your desktop by right clicking an empty space and choosing New>Folder. Rename the folder sysclean.
- Download the following file and place it in your new folder.
http://www.trendmicr...sc/sysclean.com - Now download the most recent virus detection file and extract(unzip) it in the sysclean folder with the first file.
http://www.trendmicr...tsc/cpr/tsc.zip - Now Open the Sysclean folder and double click the sysclean file and press scan. Sysclean will now scan and automatically clean your computer of all possible viruses. Once sysclean is done it might ask you to reboot your computer. If it does not ask you to reboot do it anyway.
- After the reboot open the sysclean folder and look for SYSCLEAN.LOG. Post that log onto the forum.
Come back with the sysclean log and a new hijackthis log.
#7 OFFLINE
-
- Members
-
- 30 posts
Member
Posted 02 November 2006 - 11:25 PM
I dl'd system scan and when I opened it, I received an error message.
"Pattern file "LPT$VPN.*" is missing, Please download a copy."
I don't know what is wrong
Here is what it looks like: http://img288.images...temcleanuv7.png
"Pattern file "LPT$VPN.*" is missing, Please download a copy."
I don't know what is wrong
Here is what it looks like: http://img288.images...temcleanuv7.png
#8 OFFLINE
-
- Moderators
-
- 8,858 posts
I hate computers
- Gender:Male
Posted 02 November 2006 - 11:40 PM
Did you download the second file and unzip its contents into the same folder?
#9 OFFLINE
-
- Members
-
- 30 posts
Member
Posted 02 November 2006 - 11:41 PM
Yeah, I did everything like you posted. And I got that msg when opening system scan.
#10 OFFLINE
-
- Moderators
-
- 8,858 posts
I hate computers
- Gender:Male
Posted 02 November 2006 - 11:49 PM
Delete the sysclean folder and try again. Here is the sysclean file:
http://www.trendmicr...pr/sysclean.com
Definition file:
http://www.trendmicr...tsc/cpr/tsc.zip
http://www.trendmicr...pr/sysclean.com
Definition file:
http://www.trendmicr...tsc/cpr/tsc.zip
#11 OFFLINE
-
- Members
-
- 30 posts
Member
Posted 03 November 2006 - 12:09 AM
I've deleted and re-dl'd several times. Each time I got the same msg. Here is the step by step I did. I open the definition file by unrar because my winzip has expired.
Step 1: http://img290.images...ge=step1gu1.png
Step 2: http://img426.images...ep2unrarfu8.png
Step 3 (opening system scan): http://img262.imageshack.us/my.php?image=l...nmissingya8.png
Step 1: http://img290.images...ge=step1gu1.png
Step 2: http://img426.images...ep2unrarfu8.png
Step 3 (opening system scan): http://img262.imageshack.us/my.php?image=l...nmissingya8.png
#12 OFFLINE
-
- Moderators
-
- 8,858 posts
I hate computers
- Gender:Male
Posted 03 November 2006 - 12:22 AM
I'm not sure why it wont work for you. Give me about 10-15minutes from this post and I'll put the package together and make sure it works then upload it for you.
#14 OFFLINE
-
- Moderators
-
- 8,858 posts
I hate computers
- Gender:Male
Posted 03 November 2006 - 12:53 AM
Ok, done.
I seem to be having an off night. First my links show up in html now I'm forgetting to get you to download all the files you need. 
This is what happens when you don't put full attention towards something. Sorry won't happen again.
The problem was I didn't have you download the actual virus definitions.
Anyway I went ahead and uploaded what you need.
http://rapidshare.co...sclean.zip.html
-------
Run the scan and then post the text file afterwards.
I seem to be having an off night.
First my links show up in html now I'm forgetting to get you to download all the files you need. This is what happens when you don't put full attention towards something. Sorry won't happen again.
The problem was I didn't have you download the actual virus definitions.
Anyway I went ahead and uploaded what you need.
http://rapidshare.co...sclean.zip.html
-------
Run the scan and then post the text file afterwards.
#15 OFFLINE
-
- Members
-
- 30 posts
Member
Posted 03 November 2006 - 01:01 AM
lol, it's understandable. You have a lot of topics to respond to and looking around the forum, I see mostly your name in response to the many other cry for helps out there. You're working hard I see
For a second there, I thought it was my computer that was giving me problems about running the system scan and such but turns out it wasn't Good to know. For future reference, can you upload using sendspace or filefactory? Rapidshare only allows me to dl 1 file per hour
I've dl'd the files successfully and is now scanning. Will post result once it is done.
For a second there, I thought it was my computer that was giving me problems about running the system scan and such but turns out it wasn't
Good to know. For future reference, can you upload using sendspace or filefactory? Rapidshare only allows me to dl 1 file per hour I've dl'd the files successfully and is now scanning. Will post result once it is done.
#16 OFFLINE
-
- Members
-
- 30 posts
Member
Posted 03 November 2006 - 01:37 AM
Here is the scan result from sysclean:
/--------------------------------------------------------------\
| Trend Micro System Cleaner |
| Copyright 2006, Trend Micro, Inc. |
| http://www.antivirus.com |
\--------------------------------------------------------------/
2006-11-02, 17:00:39, Auto-clean mode specified.
2006-11-02, 17:00:39, Running scanner "C:\Documents and Settings\Owner\Desktop\system clean\Sysclean\TSC.BIN"...
2006-11-02, 17:00:54, Scanner "C:\Documents and Settings\Owner\Desktop\system clean\Sysclean\TSC.BIN" has finished running.
2006-11-02, 17:00:54, TSC Log:
2006-11-02, 17:01:51, An error was detected on "C:\System Volume Information\*.*": Access is denied.
2006-11-02, 17:02:04, Files Detected:
Copyright © 1990 - 2004 Trend Micro Inc.
Report Date : 11/2/2006 17:02:03
VSAPI Engine Version : 8.000-1001
VSCANTM Version : 1.1-1001
Virus Pattern Version : 897 (139974 Patterns) (2006/11/01) (389700)
Command Line: C:\Documents and Settings\Owner\Desktop\system clean\Sysclean\VSCANTM.BIN /NBPM /S /CLEANALL /DCEGENCLEAN /LAPPEND /LD /LC /LCF /NM /NB /C /ACTIVEACTION=5 C:\*.* /P=C:\Documents and Settings\Owner\Desktop\system clean\Sysclean
2006-11-02, 17:02:04, Files Clean:
Copyright © 1990 - 2004 Trend Micro Inc.
Report Date : 11/2/2006 17:02:03
VSAPI Engine Version : 8.000-1001
VSCANTM Version : 1.1-1001
Virus Pattern Version : 897 (139974 Patterns) (2006/11/01) (389700)
Command Line: C:\Documents and Settings\Owner\Desktop\system clean\Sysclean\VSCANTM.BIN /NBPM /S /CLEANALL /DCEGENCLEAN /LAPPEND /LD /LC /LCF /NM /NB /C /ACTIVEACTION=5 C:\*.* /P=C:\Documents and Settings\Owner\Desktop\system clean\Sysclean
2006-11-02, 17:02:04, Clean Fail:
Copyright © 1990 - 2004 Trend Micro Inc.
Report Date : 11/2/2006 17:02:03
VSAPI Engine Version : 8.000-1001
VSCANTM Version : 1.1-1001
Virus Pattern Version : 897 (139974 Patterns) (2006/11/01) (389700)
Command Line: C:\Documents and Settings\Owner\Desktop\system clean\Sysclean\VSCANTM.BIN /NBPM /S /CLEANALL /DCEGENCLEAN /LAPPEND /LD /LC /LCF /NM /NB /C /ACTIVEACTION=5 C:\*.* /P=C:\Documents and Settings\Owner\Desktop\system clean\Sysclean
2006-11-02, 17:02:04, Scanner "C:\Documents and Settings\Owner\Desktop\system clean\Sysclean\VSCANTM.BIN" has finished running.
/--------------------------------------------------------------\
| Trend Micro System Cleaner |
| Copyright 2006, Trend Micro, Inc. |
| http://www.antivirus.com |
\--------------------------------------------------------------/
2006-11-02, 17:02:14, Auto-clean mode specified.
2006-11-02, 17:02:14, Running scanner "C:\Documents and Settings\Owner\Desktop\system clean\Sysclean\TSC.BIN"...
2006-11-02, 17:02:28, Scanner "C:\Documents and Settings\Owner\Desktop\system clean\Sysclean\TSC.BIN" has finished running.
2006-11-02, 17:02:28, TSC Log:
2006-11-02, 17:02:32, An error was detected on "C:\System Volume Information\*.*": Access is denied.
2006-11-02, 17:27:03, Files Detected:
Copyright © 1990 - 2004 Trend Micro Inc.
Report Date : 11/2/2006 17:02:32
VSAPI Engine Version : 8.000-1001
VSCANTM Version : 1.1-1001
Virus Pattern Version : 897 (139974 Patterns) (2006/11/01) (389700)
Command Line: C:\Documents and Settings\Owner\Desktop\system clean\Sysclean\VSCANTM.BIN /NBPM /S /CLEANALL /DCEGENCLEAN /LAPPEND /LD /LC /LCF /NM /NB /C /ACTIVEACTION=5 C:\*.* /P=C:\Documents and Settings\Owner\Desktop\system clean\Sysclean
58589 files have been read.
58589 files have been checked.
51908 files have been scanned.
91344 files have been scanned. (including files in archived)
0 files containing viruses.
Found 0 viruses totally.
Maybe 0 viruses totally.
Stop At : 11/2/2006 17:27:02
---------*---------*---------*---------*---------*---------*---------*---------*
2006-11-02, 17:27:03, Files Clean:
Copyright © 1990 - 2004 Trend Micro Inc.
Report Date : 11/2/2006 17:02:32
VSAPI Engine Version : 8.000-1001
VSCANTM Version : 1.1-1001
Virus Pattern Version : 897 (139974 Patterns) (2006/11/01) (389700)
Command Line: C:\Documents and Settings\Owner\Desktop\system clean\Sysclean\VSCANTM.BIN /NBPM /S /CLEANALL /DCEGENCLEAN /LAPPEND /LD /LC /LCF /NM /NB /C /ACTIVEACTION=5 C:\*.* /P=C:\Documents and Settings\Owner\Desktop\system clean\Sysclean
58589 files have been read.
58589 files have been checked.
51908 files have been scanned.
91344 files have been scanned. (including files in archived)
0 files containing viruses.
Found 0 viruses totally.
Maybe 0 viruses totally.
Stop At : 11/2/2006 17:27:02 24 minutes 29 seconds (1469.41 seconds) has elapsed.
---------*---------*---------*---------*---------*---------*---------*---------*
2006-11-02, 17:27:03, Clean Fail:
Copyright © 1990 - 2004 Trend Micro Inc.
Report Date : 11/2/2006 17:02:32
VSAPI Engine Version : 8.000-1001
VSCANTM Version : 1.1-1001
Virus Pattern Version : 897 (139974 Patterns) (2006/11/01) (389700)
Command Line: C:\Documents and Settings\Owner\Desktop\system clean\Sysclean\VSCANTM.BIN /NBPM /S /CLEANALL /DCEGENCLEAN /LAPPEND /LD /LC /LCF /NM /NB /C /ACTIVEACTION=5 C:\*.* /P=C:\Documents and Settings\Owner\Desktop\system clean\Sysclean
58589 files have been read.
58589 files have been checked.
51908 files have been scanned.
91344 files have been scanned. (including files in archived)
0 files containing viruses.
Found 0 viruses totally.
Maybe 0 viruses totally.
Stop At : 11/2/2006 17:27:02 24 minutes 29 seconds (1469.41 seconds) has elapsed.
---------*---------*---------*---------*---------*---------*---------*---------*
2006-11-02, 17:27:03, Scanner "C:\Documents and Settings\Owner\Desktop\system clean\Sysclean\VSCANTM.BIN" has finished running.
Here is scan result from Hijack this! after rebooting from sysclean scanning:
Logfile of HijackThis v1.99.1
Scan saved at 5:32:36 PM, on 11/2/2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\ZoneLabs\vsmon.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\PROGRA~1\Grisoft\AVG7\avgamsvr.exe
C:\PROGRA~1\Grisoft\AVG7\avgupsvc.exe
C:\PROGRA~1\Grisoft\AVG7\avgemc.exe
C:\Program Files\Spyware Doctor\sdhelp.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\PROGRA~1\COMMON~1\INSTAL~1\UPDATE~1\issch.exe
C:\PROGRA~1\Grisoft\AVG7\avgcc.exe
C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
C:\WINDOWS\System32\alg.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\WINDOWS\system32\wuauclt.exe
C:\WINDOWS\system32\NOTEPAD.EXE
C:\Documents and Settings\Owner\Desktop\New Folder\HijackThis.exe
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://yahoo.sbc.com/dsl
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = \blank.htm
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = 200.88.223.98:80
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)
O2 - BHO: IDMIEHlprObj Class - {0055C089-8582-441B-A0BF-17B458C2A3A8} - C:\Program Files\Internet Download Manager\IDMIECC.dll
O2 - BHO: (no name) - {2F364306-AA45-47B5-9F9D-39A8B94E7EF7} - (no file)
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: Yahoo! IE Services Button - {5BAB4B5B-68BC-4B02-94D6-2FC0DE4A7897} - C:\Program Files\Yahoo!\Common\yiesrvc.dll
O2 - BHO: PCTools Site Guard - {5C8B2A36-3DB1-42A4-A3CB-D426709BBFEB} - C:\PROGRA~1\SPYWAR~1\tools\iesdsg.dll
O2 - BHO: (no name) - {7D9CB362-375B-4FB9-8024-E55079CC69D1}" - (no file)
O2 - BHO: PCTools Browser Monitor - {B56A7D7D-6927-48C8-A975-17DF180C71AC} - C:\PROGRA~1\SPYWAR~1\tools\iesdpb.dll
O2 - BHO: gFlash Class - {F156768E-81EF-470C-9057-481BA8380DBA} - C:\PROGRA~1\FlashGet\getflash.dll
O3 - Toolbar: FlashGet Bar - {E0E899AB-F487-11D5-8D29-0050BA6940E3} - C:\PROGRA~1\FlashGet\fgiebar.dll
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [ISUSPM Startup] C:\PROGRA~1\COMMON~1\INSTAL~1\UPDATE~1\ISUSPM.exe -startup
O4 - HKLM\..\Run: [ISUSScheduler] "C:\PROGRA~1\COMMON~1\INSTAL~1\UPDATE~1\issch.exe" -start
O4 - HKLM\..\Run: [AVG7_CC] C:\PROGRA~1\Grisoft\AVG7\avgcc.exe /STARTUP
O4 - HKLM\..\Run: [Zone Labs Client] "C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe"
O8 - Extra context menu item: &AOL Toolbar Search - c:\program files\aol\aol toolbar 2.0\resources\en-US\local\search.html
O8 - Extra context menu item: &Search - http://edits.mywebsearch.com/toolbaredits/...html?p=ZJfox000
O8 - Extra context menu item: &Yahoo! Search - file:///C:\Program Files\Yahoo!\Common/ycsrch.htm
O8 - Extra context menu item: Download All by FlashGet - C:\Program Files\FlashGet\jc_all.htm
O8 - Extra context menu item: Download All Links with IDM - C:\Program Files\Internet Download Manager\IEGetAll.htm
O8 - Extra context menu item: Download using FlashGet - C:\Program Files\FlashGet\jc_link.htm
O8 - Extra context menu item: Download with IDM - C:\Program Files\Internet Download Manager\IEExt.htm
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office10\EXCEL.EXE/3000
O8 - Extra context menu item: Yahoo! &Dictionary - file:///C:\Program Files\Yahoo!\Common/ycdict.htm
O8 - Extra context menu item: Yahoo! &Maps - file:///C:\Program Files\Yahoo!\Common/ycmap.htm
O8 - Extra context menu item: Yahoo! &SMS - file:///C:\Program Files\Yahoo!\Common/ycsms.htm
O9 - Extra button: Spyware Doctor - {2D663D1A-8670-49D9-A1A5-4C56B4E14E84} - C:\PROGRA~1\SPYWAR~1\tools\iesdpb.dll
O9 - Extra button: Yahoo! Services - {5BAB4B5B-68BC-4B02-94D6-2FC0DE4A7897} - C:\Program Files\Yahoo!\Common\yiesrvc.dll
O9 - Extra button: AIM - {AC9E2541-2814-11d5-BC6D-00B0D0A1DE45} - C:\Program Files\AIM95\aim.exe
O9 - Extra button: FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\PROGRA~1\FlashGet\flashget.exe
O9 - Extra 'Tools' menuitem: &FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\PROGRA~1\FlashGet\flashget.exe
O12 - Plugin for .spop: C:\Program Files\Internet Explorer\Plugins\NPDocBox.dll
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft....k/?linkid=39204
O16 - DPF: {231B1C6E-F934-42A2-92B6-C2FEFEC24276} (yucsetreg Class) - C:\Program Files\Yahoo!\common\yucconfig.dll
O16 - DPF: {2BC66F54-93A8-11D3-BEB6-00105AA9B6AE} (Symantec AntiVirus scanner) - http://security.symantec.com/sscv6/SharedC...bin/AvSniff.cab
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:\Program Files\Yahoo!\Common\yinsthelper.dll
O16 - DPF: {48884C41-EFAC-433D-958A-9FADAC41408E} (EGamesPlugin Class) - https://www.e-games....GamesPlugin.cab
O16 - DPF: {49232000-16E4-426C-A231-62846947304B} - http://ipgweb.cce.hp...ads/sysinfo.cab
O16 - DPF: {55027008-315F-4F45-BBC3-8BE119764741} (Slide Image Uploader Control) - http://www.slide.com...ageUploader.cab
O16 - DPF: {644E432F-49D3-41A1-8DD5-E099162EEEC5} (Symantec RuFSI Utility Class) - http://security.symantec.com/sscv6/SharedC...n/bin/cabsa.cab
O16 - DPF: {7C5D062A-7A1E-4A46-A02B-A928084CBD66} (MLauncherNew Class) - http://legendofares....LauncherNew.cab
O16 - DPF: {88D969C0-F192-11D4-A65F-0040963251E5} (XML DOM Document 4.0) - http://ipgweb.cce.hp...oads/msxml4.cab
O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/MsnMesse...pDownloader.cab
O16 - DPF: {D54160C3-DB7B-4534-9B65-190EE4A9C7F7} (SproutLauncherCtrl Class) - http://download.games.yahoo.com/games/web_...outLauncher.cab
O16 - DPF: {D6FCA8ED-4715-43DE-9BD2-2789778A5B09} - http://nprotect.neff...Crypt/npkcx.cab
O16 - DPF: {DF780F87-FF2B-4DF8-92D0-73DB16A1543A} - http://download.games.yahoo.com/games/web_...aploader_v6.cab
O20 - Winlogon Notify: igfxcui - C:\WINDOWS\SYSTEM32\igfxdev.dll
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
O23 - Service: Apache - Unknown owner - C:\Program Files\Apache Group\Apache\Apache.exe" --ntservice (file missing)
O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgamsvr.exe
O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgupsvc.exe
O23 - Service: AVG E-mail Scanner (AVGEMS) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgemc.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iPodService - Unknown owner - C:\Program Files\iPod\bin\iPodService.exe (file missing)
O23 - Service: npkcsvc - INCA Internet Co., Ltd. - C:\WINDOWS\system32\npkcsvc.exe
O23 - Service: PC Tools Spyware Doctor (SDhelper) - PC Tools Research Pty Ltd - C:\Program Files\Spyware Doctor\sdhelp.exe
O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - C:\WINDOWS\system32\ZoneLabs\vsmon.exe
/--------------------------------------------------------------\
| Trend Micro System Cleaner |
| Copyright 2006, Trend Micro, Inc. |
| http://www.antivirus.com |
\--------------------------------------------------------------/
2006-11-02, 17:00:39, Auto-clean mode specified.
2006-11-02, 17:00:39, Running scanner "C:\Documents and Settings\Owner\Desktop\system clean\Sysclean\TSC.BIN"...
2006-11-02, 17:00:54, Scanner "C:\Documents and Settings\Owner\Desktop\system clean\Sysclean\TSC.BIN" has finished running.
2006-11-02, 17:00:54, TSC Log:
2006-11-02, 17:01:51, An error was detected on "C:\System Volume Information\*.*": Access is denied.
2006-11-02, 17:02:04, Files Detected:
Copyright © 1990 - 2004 Trend Micro Inc.
Report Date : 11/2/2006 17:02:03
VSAPI Engine Version : 8.000-1001
VSCANTM Version : 1.1-1001
Virus Pattern Version : 897 (139974 Patterns) (2006/11/01) (389700)
Command Line: C:\Documents and Settings\Owner\Desktop\system clean\Sysclean\VSCANTM.BIN /NBPM /S /CLEANALL /DCEGENCLEAN /LAPPEND /LD /LC /LCF /NM /NB /C /ACTIVEACTION=5 C:\*.* /P=C:\Documents and Settings\Owner\Desktop\system clean\Sysclean
2006-11-02, 17:02:04, Files Clean:
Copyright © 1990 - 2004 Trend Micro Inc.
Report Date : 11/2/2006 17:02:03
VSAPI Engine Version : 8.000-1001
VSCANTM Version : 1.1-1001
Virus Pattern Version : 897 (139974 Patterns) (2006/11/01) (389700)
Command Line: C:\Documents and Settings\Owner\Desktop\system clean\Sysclean\VSCANTM.BIN /NBPM /S /CLEANALL /DCEGENCLEAN /LAPPEND /LD /LC /LCF /NM /NB /C /ACTIVEACTION=5 C:\*.* /P=C:\Documents and Settings\Owner\Desktop\system clean\Sysclean
2006-11-02, 17:02:04, Clean Fail:
Copyright © 1990 - 2004 Trend Micro Inc.
Report Date : 11/2/2006 17:02:03
VSAPI Engine Version : 8.000-1001
VSCANTM Version : 1.1-1001
Virus Pattern Version : 897 (139974 Patterns) (2006/11/01) (389700)
Command Line: C:\Documents and Settings\Owner\Desktop\system clean\Sysclean\VSCANTM.BIN /NBPM /S /CLEANALL /DCEGENCLEAN /LAPPEND /LD /LC /LCF /NM /NB /C /ACTIVEACTION=5 C:\*.* /P=C:\Documents and Settings\Owner\Desktop\system clean\Sysclean
2006-11-02, 17:02:04, Scanner "C:\Documents and Settings\Owner\Desktop\system clean\Sysclean\VSCANTM.BIN" has finished running.
/--------------------------------------------------------------\
| Trend Micro System Cleaner |
| Copyright 2006, Trend Micro, Inc. |
| http://www.antivirus.com |
\--------------------------------------------------------------/
2006-11-02, 17:02:14, Auto-clean mode specified.
2006-11-02, 17:02:14, Running scanner "C:\Documents and Settings\Owner\Desktop\system clean\Sysclean\TSC.BIN"...
2006-11-02, 17:02:28, Scanner "C:\Documents and Settings\Owner\Desktop\system clean\Sysclean\TSC.BIN" has finished running.
2006-11-02, 17:02:28, TSC Log:
2006-11-02, 17:02:32, An error was detected on "C:\System Volume Information\*.*": Access is denied.
2006-11-02, 17:27:03, Files Detected:
Copyright © 1990 - 2004 Trend Micro Inc.
Report Date : 11/2/2006 17:02:32
VSAPI Engine Version : 8.000-1001
VSCANTM Version : 1.1-1001
Virus Pattern Version : 897 (139974 Patterns) (2006/11/01) (389700)
Command Line: C:\Documents and Settings\Owner\Desktop\system clean\Sysclean\VSCANTM.BIN /NBPM /S /CLEANALL /DCEGENCLEAN /LAPPEND /LD /LC /LCF /NM /NB /C /ACTIVEACTION=5 C:\*.* /P=C:\Documents and Settings\Owner\Desktop\system clean\Sysclean
58589 files have been read.
58589 files have been checked.
51908 files have been scanned.
91344 files have been scanned. (including files in archived)
0 files containing viruses.
Found 0 viruses totally.
Maybe 0 viruses totally.
Stop At : 11/2/2006 17:27:02
---------*---------*---------*---------*---------*---------*---------*---------*
2006-11-02, 17:27:03, Files Clean:
Copyright © 1990 - 2004 Trend Micro Inc.
Report Date : 11/2/2006 17:02:32
VSAPI Engine Version : 8.000-1001
VSCANTM Version : 1.1-1001
Virus Pattern Version : 897 (139974 Patterns) (2006/11/01) (389700)
Command Line: C:\Documents and Settings\Owner\Desktop\system clean\Sysclean\VSCANTM.BIN /NBPM /S /CLEANALL /DCEGENCLEAN /LAPPEND /LD /LC /LCF /NM /NB /C /ACTIVEACTION=5 C:\*.* /P=C:\Documents and Settings\Owner\Desktop\system clean\Sysclean
58589 files have been read.
58589 files have been checked.
51908 files have been scanned.
91344 files have been scanned. (including files in archived)
0 files containing viruses.
Found 0 viruses totally.
Maybe 0 viruses totally.
Stop At : 11/2/2006 17:27:02 24 minutes 29 seconds (1469.41 seconds) has elapsed.
---------*---------*---------*---------*---------*---------*---------*---------*
2006-11-02, 17:27:03, Clean Fail:
Copyright © 1990 - 2004 Trend Micro Inc.
Report Date : 11/2/2006 17:02:32
VSAPI Engine Version : 8.000-1001
VSCANTM Version : 1.1-1001
Virus Pattern Version : 897 (139974 Patterns) (2006/11/01) (389700)
Command Line: C:\Documents and Settings\Owner\Desktop\system clean\Sysclean\VSCANTM.BIN /NBPM /S /CLEANALL /DCEGENCLEAN /LAPPEND /LD /LC /LCF /NM /NB /C /ACTIVEACTION=5 C:\*.* /P=C:\Documents and Settings\Owner\Desktop\system clean\Sysclean
58589 files have been read.
58589 files have been checked.
51908 files have been scanned.
91344 files have been scanned. (including files in archived)
0 files containing viruses.
Found 0 viruses totally.
Maybe 0 viruses totally.
Stop At : 11/2/2006 17:27:02 24 minutes 29 seconds (1469.41 seconds) has elapsed.
---------*---------*---------*---------*---------*---------*---------*---------*
2006-11-02, 17:27:03, Scanner "C:\Documents and Settings\Owner\Desktop\system clean\Sysclean\VSCANTM.BIN" has finished running.
Here is scan result from Hijack this! after rebooting from sysclean scanning:
Logfile of HijackThis v1.99.1
Scan saved at 5:32:36 PM, on 11/2/2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\ZoneLabs\vsmon.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\PROGRA~1\Grisoft\AVG7\avgamsvr.exe
C:\PROGRA~1\Grisoft\AVG7\avgupsvc.exe
C:\PROGRA~1\Grisoft\AVG7\avgemc.exe
C:\Program Files\Spyware Doctor\sdhelp.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\PROGRA~1\COMMON~1\INSTAL~1\UPDATE~1\issch.exe
C:\PROGRA~1\Grisoft\AVG7\avgcc.exe
C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
C:\WINDOWS\System32\alg.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\WINDOWS\system32\wuauclt.exe
C:\WINDOWS\system32\NOTEPAD.EXE
C:\Documents and Settings\Owner\Desktop\New Folder\HijackThis.exe
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://yahoo.sbc.com/dsl
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = \blank.htm
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = 200.88.223.98:80
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)
O2 - BHO: IDMIEHlprObj Class - {0055C089-8582-441B-A0BF-17B458C2A3A8} - C:\Program Files\Internet Download Manager\IDMIECC.dll
O2 - BHO: (no name) - {2F364306-AA45-47B5-9F9D-39A8B94E7EF7} - (no file)
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: Yahoo! IE Services Button - {5BAB4B5B-68BC-4B02-94D6-2FC0DE4A7897} - C:\Program Files\Yahoo!\Common\yiesrvc.dll
O2 - BHO: PCTools Site Guard - {5C8B2A36-3DB1-42A4-A3CB-D426709BBFEB} - C:\PROGRA~1\SPYWAR~1\tools\iesdsg.dll
O2 - BHO: (no name) - {7D9CB362-375B-4FB9-8024-E55079CC69D1}" - (no file)
O2 - BHO: PCTools Browser Monitor - {B56A7D7D-6927-48C8-A975-17DF180C71AC} - C:\PROGRA~1\SPYWAR~1\tools\iesdpb.dll
O2 - BHO: gFlash Class - {F156768E-81EF-470C-9057-481BA8380DBA} - C:\PROGRA~1\FlashGet\getflash.dll
O3 - Toolbar: FlashGet Bar - {E0E899AB-F487-11D5-8D29-0050BA6940E3} - C:\PROGRA~1\FlashGet\fgiebar.dll
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [ISUSPM Startup] C:\PROGRA~1\COMMON~1\INSTAL~1\UPDATE~1\ISUSPM.exe -startup
O4 - HKLM\..\Run: [ISUSScheduler] "C:\PROGRA~1\COMMON~1\INSTAL~1\UPDATE~1\issch.exe" -start
O4 - HKLM\..\Run: [AVG7_CC] C:\PROGRA~1\Grisoft\AVG7\avgcc.exe /STARTUP
O4 - HKLM\..\Run: [Zone Labs Client] "C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe"
O8 - Extra context menu item: &AOL Toolbar Search - c:\program files\aol\aol toolbar 2.0\resources\en-US\local\search.html
O8 - Extra context menu item: &Search - http://edits.mywebsearch.com/toolbaredits/...html?p=ZJfox000
O8 - Extra context menu item: &Yahoo! Search - file:///C:\Program Files\Yahoo!\Common/ycsrch.htm
O8 - Extra context menu item: Download All by FlashGet - C:\Program Files\FlashGet\jc_all.htm
O8 - Extra context menu item: Download All Links with IDM - C:\Program Files\Internet Download Manager\IEGetAll.htm
O8 - Extra context menu item: Download using FlashGet - C:\Program Files\FlashGet\jc_link.htm
O8 - Extra context menu item: Download with IDM - C:\Program Files\Internet Download Manager\IEExt.htm
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office10\EXCEL.EXE/3000
O8 - Extra context menu item: Yahoo! &Dictionary - file:///C:\Program Files\Yahoo!\Common/ycdict.htm
O8 - Extra context menu item: Yahoo! &Maps - file:///C:\Program Files\Yahoo!\Common/ycmap.htm
O8 - Extra context menu item: Yahoo! &SMS - file:///C:\Program Files\Yahoo!\Common/ycsms.htm
O9 - Extra button: Spyware Doctor - {2D663D1A-8670-49D9-A1A5-4C56B4E14E84} - C:\PROGRA~1\SPYWAR~1\tools\iesdpb.dll
O9 - Extra button: Yahoo! Services - {5BAB4B5B-68BC-4B02-94D6-2FC0DE4A7897} - C:\Program Files\Yahoo!\Common\yiesrvc.dll
O9 - Extra button: AIM - {AC9E2541-2814-11d5-BC6D-00B0D0A1DE45} - C:\Program Files\AIM95\aim.exe
O9 - Extra button: FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\PROGRA~1\FlashGet\flashget.exe
O9 - Extra 'Tools' menuitem: &FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\PROGRA~1\FlashGet\flashget.exe
O12 - Plugin for .spop: C:\Program Files\Internet Explorer\Plugins\NPDocBox.dll
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft....k/?linkid=39204
O16 - DPF: {231B1C6E-F934-42A2-92B6-C2FEFEC24276} (yucsetreg Class) - C:\Program Files\Yahoo!\common\yucconfig.dll
O16 - DPF: {2BC66F54-93A8-11D3-BEB6-00105AA9B6AE} (Symantec AntiVirus scanner) - http://security.symantec.com/sscv6/SharedC...bin/AvSniff.cab
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:\Program Files\Yahoo!\Common\yinsthelper.dll
O16 - DPF: {48884C41-EFAC-433D-958A-9FADAC41408E} (EGamesPlugin Class) - https://www.e-games....GamesPlugin.cab
O16 - DPF: {49232000-16E4-426C-A231-62846947304B} - http://ipgweb.cce.hp...ads/sysinfo.cab
O16 - DPF: {55027008-315F-4F45-BBC3-8BE119764741} (Slide Image Uploader Control) - http://www.slide.com...ageUploader.cab
O16 - DPF: {644E432F-49D3-41A1-8DD5-E099162EEEC5} (Symantec RuFSI Utility Class) - http://security.symantec.com/sscv6/SharedC...n/bin/cabsa.cab
O16 - DPF: {7C5D062A-7A1E-4A46-A02B-A928084CBD66} (MLauncherNew Class) - http://legendofares....LauncherNew.cab
O16 - DPF: {88D969C0-F192-11D4-A65F-0040963251E5} (XML DOM Document 4.0) - http://ipgweb.cce.hp...oads/msxml4.cab
O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/MsnMesse...pDownloader.cab
O16 - DPF: {D54160C3-DB7B-4534-9B65-190EE4A9C7F7} (SproutLauncherCtrl Class) - http://download.games.yahoo.com/games/web_...outLauncher.cab
O16 - DPF: {D6FCA8ED-4715-43DE-9BD2-2789778A5B09} - http://nprotect.neff...Crypt/npkcx.cab
O16 - DPF: {DF780F87-FF2B-4DF8-92D0-73DB16A1543A} - http://download.games.yahoo.com/games/web_...aploader_v6.cab
O20 - Winlogon Notify: igfxcui - C:\WINDOWS\SYSTEM32\igfxdev.dll
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
O23 - Service: Apache - Unknown owner - C:\Program Files\Apache Group\Apache\Apache.exe" --ntservice (file missing)
O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgamsvr.exe
O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgupsvc.exe
O23 - Service: AVG E-mail Scanner (AVGEMS) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgemc.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iPodService - Unknown owner - C:\Program Files\iPod\bin\iPodService.exe (file missing)
O23 - Service: npkcsvc - INCA Internet Co., Ltd. - C:\WINDOWS\system32\npkcsvc.exe
O23 - Service: PC Tools Spyware Doctor (SDhelper) - PC Tools Research Pty Ltd - C:\Program Files\Spyware Doctor\sdhelp.exe
O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - C:\WINDOWS\system32\ZoneLabs\vsmon.exe
#17 OFFLINE
-
- Moderators
-
- 8,858 posts
I hate computers
- Gender:Male
Posted 03 November 2006 - 01:49 AM
Wow I really thought sysclean would catch those trojans. 
Lets run one more scan and see if this will clean them.
Download AVG Anti-Spyware
Lets run one more scan and see if this will clean them.
Download AVG Anti-Spyware
- Load AVG antispyware and then click the Update tab at the top. Under Manual Update click Start update.
- After the update finishes (the status bar at the bottom will display "Update successful")
- Click on the Scanner tab at the top and then click on Complete System Scan
- Ewido will list any infections found on the left, when the scan has finished, it will automatically set the recommended action. Click the Apply all actions button. AVG antispyware will then display "All actions have been applied" on the right.
- Click on "Save Report", then "Save Report As". This will create a text file which you can then save to the Desktop and post back
#18 OFFLINE
-
- Members
-
- 30 posts
Member
Posted 03 November 2006 - 02:28 AM
Here's the result.
---------------------------------------------------------
AVG Anti-Spyware - Scan Report
---------------------------------------------------------
+ Created at: 6:26:28 PM 11/2/2006
+ Scan result:
C:\Program Files\RSSoft -> Not-A-Virus.P2P.RedSwoosh : Ignored.
C:\Program Files\RSSoft\Cache -> Not-A-Virus.P2P.RedSwoosh : Ignored.
C:\Program Files\RSSoft\ClientCoreLib-1.920-868.dll -> Not-A-Virus.P2P.RedSwoosh : Ignored.
C:\Program Files\RSSoft\ClientCoreLib-1.922-102.dll -> Not-A-Virus.P2P.RedSwoosh : Ignored.
C:\Program Files\RSSoft\RSEDNClientUninstaller.exe -> Not-A-Virus.P2P.RedSwoosh : Ignored.
C:\Program Files\RSSoft\data.txt -> Not-A-Virus.P2P.RedSwoosh : Ignored.
C:\Program Files\RSSoft\install.ini -> Not-A-Virus.P2P.RedSwoosh : Ignored.
C:\Program Files\RSSoft\metadata.txt -> Not-A-Virus.P2P.RedSwoosh : Ignored.
C:\Program Files\RSSoft\precache.txt -> Not-A-Virus.P2P.RedSwoosh : Ignored.
C:\Program Files\RSSoft\registrypath.txt -> Not-A-Virus.P2P.RedSwoosh : Ignored.
C:\Program Files\RSSoft\upgrade.txt -> Not-A-Virus.P2P.RedSwoosh : Ignored.
:mozilla.263:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.264:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.265:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.266:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.267:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.268:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.269:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.270:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.271:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.514:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
C:\Documents and Settings\BaBiBoOfOrYooH\Cookies\babibooforyooh@2o7[1].txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.231:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Adbrite : Cleaned.
:mozilla.232:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Adbrite : Cleaned.
:mozilla.28:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\xzr8dr3h.default\cookies.txt -> TrackingCookie.Adbrite : Cleaned.
:mozilla.29:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\xzr8dr3h.default\cookies.txt -> TrackingCookie.Adbrite : Cleaned.
:mozilla.30:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\xzr8dr3h.default\cookies.txt -> TrackingCookie.Adbrite : Cleaned.
:mozilla.335:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Adbrite : Cleaned.
:mozilla.155:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Addynamix : Cleaned.
:mozilla.200:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.201:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.202:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.203:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.204:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.205:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.206:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.207:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.208:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.308:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.94:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\xzr8dr3h.default\cookies.txt -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.95:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\xzr8dr3h.default\cookies.txt -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.96:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\xzr8dr3h.default\cookies.txt -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.97:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\xzr8dr3h.default\cookies.txt -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.98:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\xzr8dr3h.default\cookies.txt -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.99:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\xzr8dr3h.default\cookies.txt -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.18:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.19:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.20:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.21:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.22:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.56:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\xzr8dr3h.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.57:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\xzr8dr3h.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.58:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\xzr8dr3h.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.59:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.59:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\xzr8dr3h.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
C:\Documents and Settings\BaBiBoOfOrYooH\Cookies\babibooforyooh@advertising[2].txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.22:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\xzr8dr3h.default\cookies.txt -> TrackingCookie.Atdmt : Cleaned.
:mozilla.25:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Atdmt : Cleaned.
C:\Documents and Settings\BaBiBoOfOrYooH\Cookies\babibooforyooh@atdmt[2].txt -> TrackingCookie.Atdmt : Cleaned.
:mozilla.473:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Bluestreak : Cleaned.
:mozilla.85:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\xzr8dr3h.default\cookies.txt -> TrackingCookie.Burstnet : Cleaned.
:mozilla.209:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned.
:mozilla.210:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned.
:mozilla.211:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned.
:mozilla.212:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned.
:mozilla.213:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned.
:mozilla.214:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned.
:mozilla.70:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\xzr8dr3h.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned.
:mozilla.71:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\xzr8dr3h.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned.
:mozilla.72:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\xzr8dr3h.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned.
:mozilla.13:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\xzr8dr3h.default\cookies.txt -> TrackingCookie.Com : Cleaned.
:mozilla.25:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\xzr8dr3h.default\cookies.txt -> TrackingCookie.Doubleclick : Cleaned.
:mozilla.29:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Doubleclick : Cleaned.
:mozilla.307:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Doubleclick : Cleaned.
C:\Documents and Settings\BaBiBoOfOrYooH\Cookies\babibooforyooh@doubleclick[2].txt -> TrackingCookie.Doubleclick : Cleaned.
:mozilla.137:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Esomniture : Cleaned.
:mozilla.139:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Esomniture : Cleaned.
:mozilla.186:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Esomniture : Cleaned.
:mozilla.601:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Esomniture : Cleaned.
:mozilla.602:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Esomniture : Cleaned.
:mozilla.603:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Esomniture : Cleaned.
:mozilla.604:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Esomniture : Cleaned.
:mozilla.606:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Esomniture : Cleaned.
:mozilla.607:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Esomniture : Cleaned.
:mozilla.608:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Esomniture : Cleaned.
:mozilla.609:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Esomniture : Cleaned.
:mozilla.610:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Esomniture : Cleaned.
:mozilla.217:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Euroclick : Cleaned.
:mozilla.218:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Euroclick : Cleaned.
:mozilla.219:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Euroclick : Cleaned.
:mozilla.220:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Euroclick : Cleaned.
:mozilla.372:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Falkag : Cleaned.
:mozilla.373:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Falkag : Cleaned.
:mozilla.374:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Falkag : Cleaned.
:mozilla.62:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Fastclick : Cleaned.
:mozilla.63:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Fastclick : Cleaned.
:mozilla.64:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Fastclick : Cleaned.
:mozilla.66:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Fastclick : Cleaned.
:mozilla.67:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Fastclick : Cleaned.
:mozilla.67:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\xzr8dr3h.default\cookies.txt -> TrackingCookie.Fastclick : Cleaned.
:mozilla.68:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Fastclick : Cleaned.
:mozilla.68:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\xzr8dr3h.default\cookies.txt -> TrackingCookie.Fastclick : Cleaned.
:mozilla.69:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Fastclick : Cleaned.
:mozilla.69:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\xzr8dr3h.default\cookies.txt -> TrackingCookie.Fastclick : Cleaned.
:mozilla.70:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Fastclick : Cleaned.
:mozilla.71:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Fastclick : Cleaned.
:mozilla.385:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Googleadservices : Cleaned.
:mozilla.496:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Googleadservices : Cleaned.
:mozilla.516:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned.
:mozilla.517:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned.
:mozilla.138:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Mediaplex : Cleaned.
:mozilla.23:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\xzr8dr3h.default\cookies.txt -> TrackingCookie.Mediaplex : Cleaned.
:mozilla.507:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Onestat : Cleaned.
:mozilla.508:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Onestat : Cleaned.
:mozilla.329:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Overture : Cleaned.
:mozilla.386:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Overture : Cleaned.
:mozilla.309:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Pointroll : Cleaned.
:mozilla.310:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Pointroll : Cleaned.
:mozilla.311:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Pointroll : Cleaned.
:mozilla.312:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Pointroll : Cleaned.
:mozilla.453:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Qksrv : Cleaned.
:mozilla.454:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Qksrv : Cleaned.
:mozilla.108:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Questionmarket : Cleaned.
:mozilla.111:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Questionmarket : Cleaned.
:mozilla.112:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Questionmarket : Cleaned.
:mozilla.113:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Questionmarket : Cleaned.
:mozilla.398:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Revenue : Cleaned.
:mozilla.302:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Ru4 : Cleaned.
:mozilla.303:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Ru4 : Cleaned.
:mozilla.304:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Ru4 : Cleaned.
:mozilla.305:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Ru4 : Cleaned.
:mozilla.306:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Ru4 : Cleaned.
:mozilla.106:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\xzr8dr3h.default\cookies.txt -> TrackingCookie.Serving-sys : Cleaned.
:mozilla.107:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\xzr8dr3h.default\cookies.txt -> TrackingCookie.Serving-sys : Cleaned.
:mozilla.108:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\xzr8dr3h.default\cookies.txt -> TrackingCookie.Serving-sys : Cleaned.
:mozilla.109:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\xzr8dr3h.default\cookies.txt -> TrackingCookie.Serving-sys : Cleaned.
:mozilla.110:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\xzr8dr3h.default\cookies.txt -> TrackingCookie.Serving-sys : Cleaned.
:mozilla.226:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Serving-sys : Cleaned.
:mozilla.227:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Serving-sys : Cleaned.
:mozilla.228:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Serving-sys : Cleaned.
:mozilla.229:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Serving-sys : Cleaned.
:mozilla.230:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Serving-sys : Cleaned.
:mozilla.349:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Specificclick : Cleaned.
:mozilla.350:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Specificclick : Cleaned.
:mozilla.351:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Specificclick : Cleaned.
:mozilla.100:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
:mozilla.101:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
:mozilla.102:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
:mozilla.103:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
:mozilla.84:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\xzr8dr3h.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
:mozilla.96:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
:mozilla.97:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
:mozilla.98:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
:mozilla.99:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
:mozilla.272:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Tacoda : Cleaned.
:mozilla.273:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Tacoda : Cleaned.
:mozilla.274:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Tacoda : Cleaned.
:mozilla.275:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Tacoda : Cleaned.
:mozilla.276:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Tacoda : Cleaned.
:mozilla.320:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Tradedoubler : Cleaned.
:mozilla.42:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Trafficmp : Cleaned.
:mozilla.43:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Trafficmp : Cleaned.
:mozilla.44:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Trafficmp : Cleaned.
:mozilla.45:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Trafficmp : Cleaned.
:mozilla.45:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\xzr8dr3h.default\cookies.txt -> TrackingCookie.Trafficmp : Cleaned.
:mozilla.46:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Trafficmp : Cleaned.
:mozilla.47:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Trafficmp : Cleaned.
:mozilla.47:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\xzr8dr3h.default\cookies.txt -> TrackingCookie.Trafficmp : Cleaned.
:mozilla.48:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Trafficmp : Cleaned.
:mozilla.48:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\xzr8dr3h.default\cookies.txt -> TrackingCookie.Trafficmp : Cleaned.
:mozilla.49:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Trafficmp : Cleaned.
:mozilla.49:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\xzr8dr3h.default\cookies.txt -> TrackingCookie.Trafficmp : Cleaned.
:mozilla.50:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\xzr8dr3h.default\cookies.txt -> TrackingCookie.Trafficmp : Cleaned.
:mozilla.51:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\xzr8dr3h.default\cookies.txt -> TrackingCookie.Trafficmp : Cleaned.
:mozilla.53:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\xzr8dr3h.default\cookies.txt -> TrackingCookie.Trafficmp : Cleaned.
:mozilla.14:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\xzr8dr3h.default\cookies.txt -> TrackingCookie.Tribalfusion : Cleaned.
:mozilla.15:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\xzr8dr3h.default\cookies.txt -> TrackingCookie.Tribalfusion : Cleaned.
:mozilla.16:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\xzr8dr3h.default\cookies.txt -> TrackingCookie.Tribalfusion : Cleaned.
:mozilla.41:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Tribalfusion : Cleaned.
:mozilla.52:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Tribalfusion : Cleaned.
:mozilla.53:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Tribalfusion : Cleaned.
:mozilla.54:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Tribalfusion : Cleaned.
:mozilla.74:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\xzr8dr3h.default\cookies.txt -> TrackingCookie.Webtrendslive : Cleaned.
:mozilla.237:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.238:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.239:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.240:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.62:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\xzr8dr3h.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.63:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\xzr8dr3h.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.64:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\xzr8dr3h.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.65:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\xzr8dr3h.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.66:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\xzr8dr3h.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.10:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Zedo : Cleaned.
:mozilla.16:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Zedo : Cleaned.
:mozilla.6:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Zedo : Cleaned.
:mozilla.7:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Zedo : Cleaned.
:mozilla.8:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Zedo : Cleaned.
C:\WINDOWS\system32\1024 -> Trojan.Small : Cleaned with backup (quarantined).
::Report end
---------------------------------------------------------
AVG Anti-Spyware - Scan Report
---------------------------------------------------------
+ Created at: 6:26:28 PM 11/2/2006
+ Scan result:
C:\Program Files\RSSoft -> Not-A-Virus.P2P.RedSwoosh : Ignored.
C:\Program Files\RSSoft\Cache -> Not-A-Virus.P2P.RedSwoosh : Ignored.
C:\Program Files\RSSoft\ClientCoreLib-1.920-868.dll -> Not-A-Virus.P2P.RedSwoosh : Ignored.
C:\Program Files\RSSoft\ClientCoreLib-1.922-102.dll -> Not-A-Virus.P2P.RedSwoosh : Ignored.
C:\Program Files\RSSoft\RSEDNClientUninstaller.exe -> Not-A-Virus.P2P.RedSwoosh : Ignored.
C:\Program Files\RSSoft\data.txt -> Not-A-Virus.P2P.RedSwoosh : Ignored.
C:\Program Files\RSSoft\install.ini -> Not-A-Virus.P2P.RedSwoosh : Ignored.
C:\Program Files\RSSoft\metadata.txt -> Not-A-Virus.P2P.RedSwoosh : Ignored.
C:\Program Files\RSSoft\precache.txt -> Not-A-Virus.P2P.RedSwoosh : Ignored.
C:\Program Files\RSSoft\registrypath.txt -> Not-A-Virus.P2P.RedSwoosh : Ignored.
C:\Program Files\RSSoft\upgrade.txt -> Not-A-Virus.P2P.RedSwoosh : Ignored.
:mozilla.263:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.264:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.265:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.266:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.267:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.268:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.269:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.270:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.271:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.514:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
C:\Documents and Settings\BaBiBoOfOrYooH\Cookies\babibooforyooh@2o7[1].txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.231:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Adbrite : Cleaned.
:mozilla.232:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Adbrite : Cleaned.
:mozilla.28:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\xzr8dr3h.default\cookies.txt -> TrackingCookie.Adbrite : Cleaned.
:mozilla.29:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\xzr8dr3h.default\cookies.txt -> TrackingCookie.Adbrite : Cleaned.
:mozilla.30:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\xzr8dr3h.default\cookies.txt -> TrackingCookie.Adbrite : Cleaned.
:mozilla.335:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Adbrite : Cleaned.
:mozilla.155:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Addynamix : Cleaned.
:mozilla.200:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.201:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.202:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.203:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.204:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.205:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.206:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.207:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.208:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.308:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.94:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\xzr8dr3h.default\cookies.txt -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.95:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\xzr8dr3h.default\cookies.txt -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.96:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\xzr8dr3h.default\cookies.txt -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.97:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\xzr8dr3h.default\cookies.txt -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.98:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\xzr8dr3h.default\cookies.txt -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.99:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\xzr8dr3h.default\cookies.txt -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.18:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.19:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.20:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.21:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.22:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.56:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\xzr8dr3h.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.57:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\xzr8dr3h.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.58:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\xzr8dr3h.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.59:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.59:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\xzr8dr3h.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
C:\Documents and Settings\BaBiBoOfOrYooH\Cookies\babibooforyooh@advertising[2].txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.22:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\xzr8dr3h.default\cookies.txt -> TrackingCookie.Atdmt : Cleaned.
:mozilla.25:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Atdmt : Cleaned.
C:\Documents and Settings\BaBiBoOfOrYooH\Cookies\babibooforyooh@atdmt[2].txt -> TrackingCookie.Atdmt : Cleaned.
:mozilla.473:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Bluestreak : Cleaned.
:mozilla.85:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\xzr8dr3h.default\cookies.txt -> TrackingCookie.Burstnet : Cleaned.
:mozilla.209:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned.
:mozilla.210:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned.
:mozilla.211:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned.
:mozilla.212:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned.
:mozilla.213:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned.
:mozilla.214:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned.
:mozilla.70:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\xzr8dr3h.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned.
:mozilla.71:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\xzr8dr3h.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned.
:mozilla.72:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\xzr8dr3h.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned.
:mozilla.13:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\xzr8dr3h.default\cookies.txt -> TrackingCookie.Com : Cleaned.
:mozilla.25:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\xzr8dr3h.default\cookies.txt -> TrackingCookie.Doubleclick : Cleaned.
:mozilla.29:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Doubleclick : Cleaned.
:mozilla.307:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Doubleclick : Cleaned.
C:\Documents and Settings\BaBiBoOfOrYooH\Cookies\babibooforyooh@doubleclick[2].txt -> TrackingCookie.Doubleclick : Cleaned.
:mozilla.137:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Esomniture : Cleaned.
:mozilla.139:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Esomniture : Cleaned.
:mozilla.186:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Esomniture : Cleaned.
:mozilla.601:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Esomniture : Cleaned.
:mozilla.602:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Esomniture : Cleaned.
:mozilla.603:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Esomniture : Cleaned.
:mozilla.604:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Esomniture : Cleaned.
:mozilla.606:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Esomniture : Cleaned.
:mozilla.607:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Esomniture : Cleaned.
:mozilla.608:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Esomniture : Cleaned.
:mozilla.609:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Esomniture : Cleaned.
:mozilla.610:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Esomniture : Cleaned.
:mozilla.217:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Euroclick : Cleaned.
:mozilla.218:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Euroclick : Cleaned.
:mozilla.219:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Euroclick : Cleaned.
:mozilla.220:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Euroclick : Cleaned.
:mozilla.372:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Falkag : Cleaned.
:mozilla.373:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Falkag : Cleaned.
:mozilla.374:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Falkag : Cleaned.
:mozilla.62:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Fastclick : Cleaned.
:mozilla.63:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Fastclick : Cleaned.
:mozilla.64:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Fastclick : Cleaned.
:mozilla.66:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Fastclick : Cleaned.
:mozilla.67:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Fastclick : Cleaned.
:mozilla.67:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\xzr8dr3h.default\cookies.txt -> TrackingCookie.Fastclick : Cleaned.
:mozilla.68:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Fastclick : Cleaned.
:mozilla.68:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\xzr8dr3h.default\cookies.txt -> TrackingCookie.Fastclick : Cleaned.
:mozilla.69:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Fastclick : Cleaned.
:mozilla.69:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\xzr8dr3h.default\cookies.txt -> TrackingCookie.Fastclick : Cleaned.
:mozilla.70:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Fastclick : Cleaned.
:mozilla.71:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Fastclick : Cleaned.
:mozilla.385:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Googleadservices : Cleaned.
:mozilla.496:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Googleadservices : Cleaned.
:mozilla.516:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned.
:mozilla.517:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned.
:mozilla.138:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Mediaplex : Cleaned.
:mozilla.23:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\xzr8dr3h.default\cookies.txt -> TrackingCookie.Mediaplex : Cleaned.
:mozilla.507:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Onestat : Cleaned.
:mozilla.508:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Onestat : Cleaned.
:mozilla.329:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Overture : Cleaned.
:mozilla.386:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Overture : Cleaned.
:mozilla.309:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Pointroll : Cleaned.
:mozilla.310:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Pointroll : Cleaned.
:mozilla.311:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Pointroll : Cleaned.
:mozilla.312:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Pointroll : Cleaned.
:mozilla.453:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Qksrv : Cleaned.
:mozilla.454:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Qksrv : Cleaned.
:mozilla.108:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Questionmarket : Cleaned.
:mozilla.111:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Questionmarket : Cleaned.
:mozilla.112:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Questionmarket : Cleaned.
:mozilla.113:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Questionmarket : Cleaned.
:mozilla.398:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Revenue : Cleaned.
:mozilla.302:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Ru4 : Cleaned.
:mozilla.303:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Ru4 : Cleaned.
:mozilla.304:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Ru4 : Cleaned.
:mozilla.305:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Ru4 : Cleaned.
:mozilla.306:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Ru4 : Cleaned.
:mozilla.106:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\xzr8dr3h.default\cookies.txt -> TrackingCookie.Serving-sys : Cleaned.
:mozilla.107:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\xzr8dr3h.default\cookies.txt -> TrackingCookie.Serving-sys : Cleaned.
:mozilla.108:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\xzr8dr3h.default\cookies.txt -> TrackingCookie.Serving-sys : Cleaned.
:mozilla.109:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\xzr8dr3h.default\cookies.txt -> TrackingCookie.Serving-sys : Cleaned.
:mozilla.110:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\xzr8dr3h.default\cookies.txt -> TrackingCookie.Serving-sys : Cleaned.
:mozilla.226:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Serving-sys : Cleaned.
:mozilla.227:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Serving-sys : Cleaned.
:mozilla.228:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Serving-sys : Cleaned.
:mozilla.229:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Serving-sys : Cleaned.
:mozilla.230:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Serving-sys : Cleaned.
:mozilla.349:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Specificclick : Cleaned.
:mozilla.350:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Specificclick : Cleaned.
:mozilla.351:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Specificclick : Cleaned.
:mozilla.100:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
:mozilla.101:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
:mozilla.102:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
:mozilla.103:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
:mozilla.84:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\xzr8dr3h.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
:mozilla.96:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
:mozilla.97:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
:mozilla.98:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
:mozilla.99:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
:mozilla.272:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Tacoda : Cleaned.
:mozilla.273:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Tacoda : Cleaned.
:mozilla.274:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Tacoda : Cleaned.
:mozilla.275:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Tacoda : Cleaned.
:mozilla.276:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Tacoda : Cleaned.
:mozilla.320:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Tradedoubler : Cleaned.
:mozilla.42:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Trafficmp : Cleaned.
:mozilla.43:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Trafficmp : Cleaned.
:mozilla.44:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Trafficmp : Cleaned.
:mozilla.45:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Trafficmp : Cleaned.
:mozilla.45:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\xzr8dr3h.default\cookies.txt -> TrackingCookie.Trafficmp : Cleaned.
:mozilla.46:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Trafficmp : Cleaned.
:mozilla.47:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Trafficmp : Cleaned.
:mozilla.47:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\xzr8dr3h.default\cookies.txt -> TrackingCookie.Trafficmp : Cleaned.
:mozilla.48:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Trafficmp : Cleaned.
:mozilla.48:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\xzr8dr3h.default\cookies.txt -> TrackingCookie.Trafficmp : Cleaned.
:mozilla.49:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Trafficmp : Cleaned.
:mozilla.49:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\xzr8dr3h.default\cookies.txt -> TrackingCookie.Trafficmp : Cleaned.
:mozilla.50:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\xzr8dr3h.default\cookies.txt -> TrackingCookie.Trafficmp : Cleaned.
:mozilla.51:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\xzr8dr3h.default\cookies.txt -> TrackingCookie.Trafficmp : Cleaned.
:mozilla.53:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\xzr8dr3h.default\cookies.txt -> TrackingCookie.Trafficmp : Cleaned.
:mozilla.14:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\xzr8dr3h.default\cookies.txt -> TrackingCookie.Tribalfusion : Cleaned.
:mozilla.15:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\xzr8dr3h.default\cookies.txt -> TrackingCookie.Tribalfusion : Cleaned.
:mozilla.16:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\xzr8dr3h.default\cookies.txt -> TrackingCookie.Tribalfusion : Cleaned.
:mozilla.41:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Tribalfusion : Cleaned.
:mozilla.52:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Tribalfusion : Cleaned.
:mozilla.53:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Tribalfusion : Cleaned.
:mozilla.54:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Tribalfusion : Cleaned.
:mozilla.74:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\xzr8dr3h.default\cookies.txt -> TrackingCookie.Webtrendslive : Cleaned.
:mozilla.237:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.238:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.239:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.240:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.62:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\xzr8dr3h.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.63:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\xzr8dr3h.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.64:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\xzr8dr3h.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.65:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\xzr8dr3h.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.66:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\xzr8dr3h.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.10:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Zedo : Cleaned.
:mozilla.16:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Zedo : Cleaned.
:mozilla.6:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Zedo : Cleaned.
:mozilla.7:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Zedo : Cleaned.
:mozilla.8:C:\Documents and Settings\BaBiBoOfOrYooH\Application Data\Mozilla\Firefox\Profiles\dnc9mxhl.default\cookies.txt -> TrackingCookie.Zedo : Cleaned.
C:\WINDOWS\system32\1024 -> Trojan.Small : Cleaned with backup (quarantined).
::Report end
#19 OFFLINE
-
- Moderators
-
- 8,858 posts
I hate computers
- Gender:Male
Posted 03 November 2006 - 02:37 AM
Do you know what the RSSoft program is? Why didn't you remove it?
Also post a new hijackthis log.
Also post a new hijackthis log.
#20 OFFLINE
-
- Members
-
- 30 posts
Member
Posted 03 November 2006 - 02:42 AM
Um, I have no idea what it is. But I uninstalled it by removing it to quarantine box and deleted the RSSoft folder. Here's the HJT log.
Logfile of HijackThis v1.99.1
Scan saved at 6:39:31 PM, on 11/2/2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\ZoneLabs\vsmon.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\PROGRA~1\Grisoft\AVG7\avgamsvr.exe
C:\PROGRA~1\Grisoft\AVG7\avgupsvc.exe
C:\PROGRA~1\Grisoft\AVG7\avgemc.exe
C:\Program Files\Spyware Doctor\sdhelp.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\PROGRA~1\COMMON~1\INSTAL~1\UPDATE~1\issch.exe
C:\PROGRA~1\Grisoft\AVG7\avgcc.exe
C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
C:\WINDOWS\System32\alg.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Internet Download Manager\IDMan.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
C:\Program Files\AIM95\aim.exe
C:\Program Files\Windows Media Player\wmplayer.exe
C:\Documents and Settings\Owner\Desktop\New Folder\HijackThis.exe
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://yahoo.sbc.com/dsl
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = \blank.htm
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = 200.88.223.98:80
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)
O2 - BHO: IDMIEHlprObj Class - {0055C089-8582-441B-A0BF-17B458C2A3A8} - C:\Program Files\Internet Download Manager\IDMIECC.dll
O2 - BHO: (no name) - {2F364306-AA45-47B5-9F9D-39A8B94E7EF7} - (no file)
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: Yahoo! IE Services Button - {5BAB4B5B-68BC-4B02-94D6-2FC0DE4A7897} - C:\Program Files\Yahoo!\Common\yiesrvc.dll
O2 - BHO: PCTools Site Guard - {5C8B2A36-3DB1-42A4-A3CB-D426709BBFEB} - C:\PROGRA~1\SPYWAR~1\tools\iesdsg.dll
O2 - BHO: (no name) - {7D9CB362-375B-4FB9-8024-E55079CC69D1}" - (no file)
O2 - BHO: PCTools Browser Monitor - {B56A7D7D-6927-48C8-A975-17DF180C71AC} - C:\PROGRA~1\SPYWAR~1\tools\iesdpb.dll
O2 - BHO: gFlash Class - {F156768E-81EF-470C-9057-481BA8380DBA} - C:\PROGRA~1\FlashGet\getflash.dll
O3 - Toolbar: FlashGet Bar - {E0E899AB-F487-11D5-8D29-0050BA6940E3} - C:\PROGRA~1\FlashGet\fgiebar.dll
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [ISUSPM Startup] C:\PROGRA~1\COMMON~1\INSTAL~1\UPDATE~1\ISUSPM.exe -startup
O4 - HKLM\..\Run: [ISUSScheduler] "C:\PROGRA~1\COMMON~1\INSTAL~1\UPDATE~1\issch.exe" -start
O4 - HKLM\..\Run: [AVG7_CC] C:\PROGRA~1\Grisoft\AVG7\avgcc.exe /STARTUP
O4 - HKLM\..\Run: [Zone Labs Client] "C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe"
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O8 - Extra context menu item: &AOL Toolbar Search - c:\program files\aol\aol toolbar 2.0\resources\en-US\local\search.html
O8 - Extra context menu item: &Search - http://edits.mywebsearch.com/toolbaredits/...html?p=ZJfox000
O8 - Extra context menu item: &Yahoo! Search - file:///C:\Program Files\Yahoo!\Common/ycsrch.htm
O8 - Extra context menu item: Download All by FlashGet - C:\Program Files\FlashGet\jc_all.htm
O8 - Extra context menu item: Download All Links with IDM - C:\Program Files\Internet Download Manager\IEGetAll.htm
O8 - Extra context menu item: Download using FlashGet - C:\Program Files\FlashGet\jc_link.htm
O8 - Extra context menu item: Download with IDM - C:\Program Files\Internet Download Manager\IEExt.htm
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office10\EXCEL.EXE/3000
O8 - Extra context menu item: Yahoo! &Dictionary - file:///C:\Program Files\Yahoo!\Common/ycdict.htm
O8 - Extra context menu item: Yahoo! &Maps - file:///C:\Program Files\Yahoo!\Common/ycmap.htm
O8 - Extra context menu item: Yahoo! &SMS - file:///C:\Program Files\Yahoo!\Common/ycsms.htm
O9 - Extra button: Spyware Doctor - {2D663D1A-8670-49D9-A1A5-4C56B4E14E84} - C:\PROGRA~1\SPYWAR~1\tools\iesdpb.dll
O9 - Extra button: Yahoo! Services - {5BAB4B5B-68BC-4B02-94D6-2FC0DE4A7897} - C:\Program Files\Yahoo!\Common\yiesrvc.dll
O9 - Extra button: AIM - {AC9E2541-2814-11d5-BC6D-00B0D0A1DE45} - C:\Program Files\AIM95\aim.exe
O9 - Extra button: FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\PROGRA~1\FlashGet\flashget.exe
O9 - Extra 'Tools' menuitem: &FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\PROGRA~1\FlashGet\flashget.exe
O12 - Plugin for .spop: C:\Program Files\Internet Explorer\Plugins\NPDocBox.dll
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft....k/?linkid=39204
O16 - DPF: {231B1C6E-F934-42A2-92B6-C2FEFEC24276} (yucsetreg Class) - C:\Program Files\Yahoo!\common\yucconfig.dll
O16 - DPF: {2BC66F54-93A8-11D3-BEB6-00105AA9B6AE} (Symantec AntiVirus scanner) - http://security.symantec.com/sscv6/SharedC...bin/AvSniff.cab
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:\Program Files\Yahoo!\Common\yinsthelper.dll
O16 - DPF: {48884C41-EFAC-433D-958A-9FADAC41408E} (EGamesPlugin Class) - https://www.e-games....GamesPlugin.cab
O16 - DPF: {49232000-16E4-426C-A231-62846947304B} - http://ipgweb.cce.hp...ads/sysinfo.cab
O16 - DPF: {55027008-315F-4F45-BBC3-8BE119764741} (Slide Image Uploader Control) - http://www.slide.com...ageUploader.cab
O16 - DPF: {644E432F-49D3-41A1-8DD5-E099162EEEC5} (Symantec RuFSI Utility Class) - http://security.symantec.com/sscv6/SharedC...n/bin/cabsa.cab
O16 - DPF: {7C5D062A-7A1E-4A46-A02B-A928084CBD66} (MLauncherNew Class) - http://legendofares....LauncherNew.cab
O16 - DPF: {88D969C0-F192-11D4-A65F-0040963251E5} (XML DOM Document 4.0) - http://ipgweb.cce.hp...oads/msxml4.cab
O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/MsnMesse...pDownloader.cab
O16 - DPF: {D54160C3-DB7B-4534-9B65-190EE4A9C7F7} (SproutLauncherCtrl Class) - http://download.games.yahoo.com/games/web_...outLauncher.cab
O16 - DPF: {D6FCA8ED-4715-43DE-9BD2-2789778A5B09} - http://nprotect.neff...Crypt/npkcx.cab
O16 - DPF: {DF780F87-FF2B-4DF8-92D0-73DB16A1543A} - http://download.games.yahoo.com/games/web_...aploader_v6.cab
O20 - Winlogon Notify: igfxcui - C:\WINDOWS\SYSTEM32\igfxdev.dll
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
O23 - Service: Apache - Unknown owner - C:\Program Files\Apache Group\Apache\Apache.exe" --ntservice (file missing)
O23 - Service: AVG Anti-Spyware Guard - Anti-Malware Development a.s. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgamsvr.exe
O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgupsvc.exe
O23 - Service: AVG E-mail Scanner (AVGEMS) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgemc.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iPodService - Unknown owner - C:\Program Files\iPod\bin\iPodService.exe (file missing)
O23 - Service: npkcsvc - INCA Internet Co., Ltd. - C:\WINDOWS\system32\npkcsvc.exe
O23 - Service: PC Tools Spyware Doctor (SDhelper) - PC Tools Research Pty Ltd - C:\Program Files\Spyware Doctor\sdhelp.exe
O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - C:\WINDOWS\system32\ZoneLabs\vsmon.exe
Logfile of HijackThis v1.99.1
Scan saved at 6:39:31 PM, on 11/2/2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\ZoneLabs\vsmon.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\PROGRA~1\Grisoft\AVG7\avgamsvr.exe
C:\PROGRA~1\Grisoft\AVG7\avgupsvc.exe
C:\PROGRA~1\Grisoft\AVG7\avgemc.exe
C:\Program Files\Spyware Doctor\sdhelp.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\PROGRA~1\COMMON~1\INSTAL~1\UPDATE~1\issch.exe
C:\PROGRA~1\Grisoft\AVG7\avgcc.exe
C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
C:\WINDOWS\System32\alg.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Internet Download Manager\IDMan.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
C:\Program Files\AIM95\aim.exe
C:\Program Files\Windows Media Player\wmplayer.exe
C:\Documents and Settings\Owner\Desktop\New Folder\HijackThis.exe
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://yahoo.sbc.com/dsl
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = \blank.htm
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = 200.88.223.98:80
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)
O2 - BHO: IDMIEHlprObj Class - {0055C089-8582-441B-A0BF-17B458C2A3A8} - C:\Program Files\Internet Download Manager\IDMIECC.dll
O2 - BHO: (no name) - {2F364306-AA45-47B5-9F9D-39A8B94E7EF7} - (no file)
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: Yahoo! IE Services Button - {5BAB4B5B-68BC-4B02-94D6-2FC0DE4A7897} - C:\Program Files\Yahoo!\Common\yiesrvc.dll
O2 - BHO: PCTools Site Guard - {5C8B2A36-3DB1-42A4-A3CB-D426709BBFEB} - C:\PROGRA~1\SPYWAR~1\tools\iesdsg.dll
O2 - BHO: (no name) - {7D9CB362-375B-4FB9-8024-E55079CC69D1}" - (no file)
O2 - BHO: PCTools Browser Monitor - {B56A7D7D-6927-48C8-A975-17DF180C71AC} - C:\PROGRA~1\SPYWAR~1\tools\iesdpb.dll
O2 - BHO: gFlash Class - {F156768E-81EF-470C-9057-481BA8380DBA} - C:\PROGRA~1\FlashGet\getflash.dll
O3 - Toolbar: FlashGet Bar - {E0E899AB-F487-11D5-8D29-0050BA6940E3} - C:\PROGRA~1\FlashGet\fgiebar.dll
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [ISUSPM Startup] C:\PROGRA~1\COMMON~1\INSTAL~1\UPDATE~1\ISUSPM.exe -startup
O4 - HKLM\..\Run: [ISUSScheduler] "C:\PROGRA~1\COMMON~1\INSTAL~1\UPDATE~1\issch.exe" -start
O4 - HKLM\..\Run: [AVG7_CC] C:\PROGRA~1\Grisoft\AVG7\avgcc.exe /STARTUP
O4 - HKLM\..\Run: [Zone Labs Client] "C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe"
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O8 - Extra context menu item: &AOL Toolbar Search - c:\program files\aol\aol toolbar 2.0\resources\en-US\local\search.html
O8 - Extra context menu item: &Search - http://edits.mywebsearch.com/toolbaredits/...html?p=ZJfox000
O8 - Extra context menu item: &Yahoo! Search - file:///C:\Program Files\Yahoo!\Common/ycsrch.htm
O8 - Extra context menu item: Download All by FlashGet - C:\Program Files\FlashGet\jc_all.htm
O8 - Extra context menu item: Download All Links with IDM - C:\Program Files\Internet Download Manager\IEGetAll.htm
O8 - Extra context menu item: Download using FlashGet - C:\Program Files\FlashGet\jc_link.htm
O8 - Extra context menu item: Download with IDM - C:\Program Files\Internet Download Manager\IEExt.htm
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office10\EXCEL.EXE/3000
O8 - Extra context menu item: Yahoo! &Dictionary - file:///C:\Program Files\Yahoo!\Common/ycdict.htm
O8 - Extra context menu item: Yahoo! &Maps - file:///C:\Program Files\Yahoo!\Common/ycmap.htm
O8 - Extra context menu item: Yahoo! &SMS - file:///C:\Program Files\Yahoo!\Common/ycsms.htm
O9 - Extra button: Spyware Doctor - {2D663D1A-8670-49D9-A1A5-4C56B4E14E84} - C:\PROGRA~1\SPYWAR~1\tools\iesdpb.dll
O9 - Extra button: Yahoo! Services - {5BAB4B5B-68BC-4B02-94D6-2FC0DE4A7897} - C:\Program Files\Yahoo!\Common\yiesrvc.dll
O9 - Extra button: AIM - {AC9E2541-2814-11d5-BC6D-00B0D0A1DE45} - C:\Program Files\AIM95\aim.exe
O9 - Extra button: FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\PROGRA~1\FlashGet\flashget.exe
O9 - Extra 'Tools' menuitem: &FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\PROGRA~1\FlashGet\flashget.exe
O12 - Plugin for .spop: C:\Program Files\Internet Explorer\Plugins\NPDocBox.dll
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft....k/?linkid=39204
O16 - DPF: {231B1C6E-F934-42A2-92B6-C2FEFEC24276} (yucsetreg Class) - C:\Program Files\Yahoo!\common\yucconfig.dll
O16 - DPF: {2BC66F54-93A8-11D3-BEB6-00105AA9B6AE} (Symantec AntiVirus scanner) - http://security.symantec.com/sscv6/SharedC...bin/AvSniff.cab
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:\Program Files\Yahoo!\Common\yinsthelper.dll
O16 - DPF: {48884C41-EFAC-433D-958A-9FADAC41408E} (EGamesPlugin Class) - https://www.e-games....GamesPlugin.cab
O16 - DPF: {49232000-16E4-426C-A231-62846947304B} - http://ipgweb.cce.hp...ads/sysinfo.cab
O16 - DPF: {55027008-315F-4F45-BBC3-8BE119764741} (Slide Image Uploader Control) - http://www.slide.com...ageUploader.cab
O16 - DPF: {644E432F-49D3-41A1-8DD5-E099162EEEC5} (Symantec RuFSI Utility Class) - http://security.symantec.com/sscv6/SharedC...n/bin/cabsa.cab
O16 - DPF: {7C5D062A-7A1E-4A46-A02B-A928084CBD66} (MLauncherNew Class) - http://legendofares....LauncherNew.cab
O16 - DPF: {88D969C0-F192-11D4-A65F-0040963251E5} (XML DOM Document 4.0) - http://ipgweb.cce.hp...oads/msxml4.cab
O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/MsnMesse...pDownloader.cab
O16 - DPF: {D54160C3-DB7B-4534-9B65-190EE4A9C7F7} (SproutLauncherCtrl Class) - http://download.games.yahoo.com/games/web_...outLauncher.cab
O16 - DPF: {D6FCA8ED-4715-43DE-9BD2-2789778A5B09} - http://nprotect.neff...Crypt/npkcx.cab
O16 - DPF: {DF780F87-FF2B-4DF8-92D0-73DB16A1543A} - http://download.games.yahoo.com/games/web_...aploader_v6.cab
O20 - Winlogon Notify: igfxcui - C:\WINDOWS\SYSTEM32\igfxdev.dll
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
O23 - Service: Apache - Unknown owner - C:\Program Files\Apache Group\Apache\Apache.exe" --ntservice (file missing)
O23 - Service: AVG Anti-Spyware Guard - Anti-Malware Development a.s. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgamsvr.exe
O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgupsvc.exe
O23 - Service: AVG E-mail Scanner (AVGEMS) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgemc.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iPodService - Unknown owner - C:\Program Files\iPod\bin\iPodService.exe (file missing)
O23 - Service: npkcsvc - INCA Internet Co., Ltd. - C:\WINDOWS\system32\npkcsvc.exe
O23 - Service: PC Tools Spyware Doctor (SDhelper) - PC Tools Research Pty Ltd - C:\Program Files\Spyware Doctor\sdhelp.exe
O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - C:\WINDOWS\system32\ZoneLabs\vsmon.exe
