I had a problem with Google search results containing links redirecting to spam sites. I followed the Spyware Removal Guide, and am posting my H/T, BitDefender, AVG and SuperAntiSpyWare logs below. And help would be appreciated:
******************************************
HIJACK THIS LOG
******************************************
Logfile of HijackThis v1.99.1
Scan saved at 1:04:27 AM, on 1/1/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.5730.0011)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\Program Files\Common Files\Virtual Token\vtserver.exe
C:\WINDOWS\system32\ibmpmsvc.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Windows Defender\MsMpEng.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Common Files\Symantec Shared\ccProxy.exe
C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe
C:\Program Files\Symantec Client Security\Symantec Client Firewall\ISSVC.exe
C:\Program Files\Common Files\Symantec Shared\SNDSrvc.exe
C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCSvc.exe
C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\IPSSVC.EXE
C:\Program Files\ThinkPad\ConnectUtilities\AcPrfMgrSvc.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\Program Files\Symantec Client Security\Symantec AntiVirus\DefWatch.exe
C:\Program Files\Diskeeper Corporation\Diskeeper\DkService.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Symantec Client Security\Symantec AntiVirus\Rtvscan.exe
C:\Program Files\Symantec Client Security\Symantec Client Firewall\SymSPort.exe
C:\WINDOWS\System32\TPHDEXLG.EXE
C:\WINDOWS\system32\TpKmpSVC.exe
C:\Program Files\IBM ThinkVantage\Client Security Solution\ibmtcsd.exe
C:\Program Files\IBM ThinkVantage\Rescue and Recovery\rrservice.exe
C:\Program Files\IBM ThinkVantage\Common\Scheduler\tvtsched.exe
C:\Program Files\ThinkVantage\SystemUpdate\UCLauncherService.exe
C:\Program Files\ThinkPad\ConnectUtilities\AcSvc.exe
C:\Program Files\Windows Media Player\WMPNetwk.exe
C:\WINDOWS\System32\alg.exe
C:\Program Files\IBM ThinkVantage\Common\Logger\logmon.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\WINDOWS\system32\igfxtray.exe
C:\WINDOWS\system32\hkcmd.exe
C:\WINDOWS\system32\igfxpers.exe
C:\WINDOWS\system32\TpShocks.exe
C:\PROGRA~1\ThinkPad\UTILIT~1\EzEjMnAp.Exe
C:\PROGRA~1\Lenovo\PkgMgr\HOTKEY\TPHKMGR.exe
C:\Program Files\ThinkPad\ConnectUtilities\AcMurocHlpr.exe
C:\PROGRA~1\THINKV~2\PrdCtr\LPMGR.exe
C:\Program Files\Lenovo\PkgMgr\HOTKEY\TPONSCR.exe
C:\Program Files\ThinkVantage\AMSG\Amsg.exe
C:\Program Files\Lenovo\PkgMgr\HOTKEY_1\TpScrex.exe
C:\Program Files\Common Files\Symantec Shared\ccApp.exe
C:\PROGRA~1\SYMANT~1\SYMANT~2\VPTray.exe
C:\WINDOWS\system32\dla\tfswctrl.exe
C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe
C:\Program Files\IBM ThinkVantage\Client Security Solution\cssauth.exe
C:\Program Files\IBM ThinkVantage\SafeGuard PrivateDisk\pdservice.exe
C:\Program Files\ThinkPad\ConnectUtilities\ACTray.exe
C:\Program Files\ThinkPad\ConnectUtilities\ACWLIcon.exe
C:\WINDOWS\system32\rundll32.exe
C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIAFA.EXE
C:\PROGRA~1\Intel\Wireless\Bin\1XConfig.exe
C:\Program Files\Windows Defender\MSASCui.exe
C:\Program Files\Java\jre1.5.0_10\bin\jusched.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
C:\Program Files\Messenger\msmsgs.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Windows Media Player\WMPNSCFG.exe
C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
C:\Program Files\Digital Line Detect\DLG.exe
C:\Program Files\IBM ThinkVantage\Client Security Solution\pwmgr.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Documents and Settings\Charles\Desktop\HijackThis.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.tigerroar.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft....k/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft....k/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft....k/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft....k/?LinkId=69157
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: DriveLetterAccess - {5CA3D70E-1895-11CF-8E15-001234567890} - C:\WINDOWS\system32\dla\tfswshx.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_10\bin\ssv.dll
O4 - HKLM\..\Run: [SynTPLpr] C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\WINDOWS\system32\igfxpers.exe
O4 - HKLM\..\Run: [TpShocks] TpShocks.exe
O4 - HKLM\..\Run: [TP4EX] tp4ex.exe
O4 - HKLM\..\Run: [ControlCenter] "C:\Program Files\ThinkVantage Fingerprint Software\ctlcntr.exe" /startup
O4 - HKLM\..\Run: [EZEJMNAP] C:\PROGRA~1\ThinkPad\UTILIT~1\EzEjMnAp.Exe
O4 - HKLM\..\Run: [TPHOTKEY] C:\PROGRA~1\Lenovo\PkgMgr\HOTKEY\TPHKMGR.exe
O4 - HKLM\..\Run: [suScheduler] C:\Program Files\ThinkVantage\SystemUpdate\UCLauncher.exe /SCHEDULER
O4 - HKLM\..\Run: [LPManager] C:\PROGRA~1\THINKV~2\PrdCtr\LPMGR.exe
O4 - HKLM\..\Run: [AMSG] C:\Program Files\ThinkVantage\AMSG\Amsg.exe
O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Common Files\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [vptray] C:\PROGRA~1\SYMANT~1\SYMANT~2\VPTray.exe
O4 - HKLM\..\Run: [dla] C:\WINDOWS\system32\dla\tfswctrl.exe
O4 - HKLM\..\Run: [ISUSPM Startup] c:\PROGRA~1\COMMON~1\INSTAL~1\UPDATE~1\ISUSPM.exe -startup
O4 - HKLM\..\Run: [ISUSScheduler] "c:\Program Files\Common Files\InstallShield\UpdateService\issch.exe" -start
O4 - HKLM\..\Run: [cssauth] "C:\Program Files\IBM ThinkVantage\Client Security Solution\cssauth.exe" silent
O4 - HKLM\..\Run: [PDService.exe] "C:\Program Files\IBM ThinkVantage\SafeGuard PrivateDisk\pdservice.exe"
O4 - HKLM\..\Run: [DiskeeperSystray] "C:\Program Files\Diskeeper Corporation\Diskeeper\DkIcon.exe"
O4 - HKLM\..\Run: [ACTray] C:\Program Files\ThinkPad\ConnectUtilities\ACTray.exe
O4 - HKLM\..\Run: [ACWLIcon] C:\Program Files\ThinkPad\ConnectUtilities\ACWLIcon.exe
O4 - HKLM\..\Run: [PWRMGRTR] rundll32 C:\PROGRA~1\ThinkPad\UTILIT~1\PWRMGRTR.DLL,PwrMgrBkGndMonitor
O4 - HKLM\..\Run: [BLOG] rundll32 C:\PROGRA~1\ThinkPad\UTILIT~1\BatLogEx.DLL,StartBattLog
O4 - HKLM\..\Run: [TPKMAPHELPER] C:\Program Files\ThinkPad\Utilities\TpKmapAp.exe -helper
O4 - HKLM\..\Run: [EPSON Stylus CX7800 Series] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIAFA.EXE /P26 "EPSON Stylus CX7800 Series" /O6 "USB001" /M "Stylus CX7800"
O4 - HKLM\..\Run: [Windows Defender] "C:\Program Files\Windows Defender\MSASCui.exe" -hide
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.5.0_10\bin\jusched.exe"
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKCU\..\Run: [amsg] C:\Program Files\ThinkVantage\AMSG\Amsg.exe
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe
O4 - HKCU\..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: Digital Line Detect.lnk = ?
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_10\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_10\bin\ssv.dll
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: Software Installer - {D1A4DEBD-C2EE-449f-B9FB-E8409F9A0BC5} - C:\Program Files\Lenovo\PkgMgr\\PkgMgr.exe
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O11 - Options group: [INTERNATIONAL] International*
O11 - Options group: [JAVA_IBM] Java (IBM)
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://download.bitd...can8/oscan8.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{22231DFD-7E9D-4903-9538-ED3E7A8DFA8C}: NameServer = 85.255.116.155,85.255.112.26
O17 - HKLM\System\CCS\Services\Tcpip\..\{4F4A6E94-AF07-4A85-9370-EAA2C91492ED}: NameServer = 85.255.116.155,85.255.112.26
O17 - HKLM\System\CCS\Services\Tcpip\..\{ED63C61A-4374-4E1F-9F91-EA8B68499877}: NameServer = 85.255.116.155,85.255.112.26
O17 - HKLM\System\CS1\Services\Tcpip\Parameters: NameServer = 85.255.116.155 85.255.112.26
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: NameServer = 85.255.116.155 85.255.112.26
O20 - Winlogon Notify: !SASWinLogon - C:\Program Files\SUPERAntiSpyware\SASWINLO.dll
O20 - Winlogon Notify: ACNotify - ACNotify.dll (file missing)
O20 - Winlogon Notify: igfxcui - C:\WINDOWS\SYSTEM32\igfxdev.dll
O20 - Winlogon Notify: NavLogon - C:\WINDOWS\system32\NavLogon.dll
O20 - Winlogon Notify: psfus - C:\Program Files\ThinkVantage Fingerprint Software\psfus.dll
O20 - Winlogon Notify: tpfnf2 - C:\WINDOWS\SYSTEM32\notifyf2.dll
O20 - Winlogon Notify: tphotkey - C:\WINDOWS\SYSTEM32\tphklock.dll
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
O23 - Service: Ac Profile Manager Service (AcPrfMgrSvc) - Unknown owner - C:\Program Files\ThinkPad\ConnectUtilities\AcPrfMgrSvc.exe
O23 - Service: Access Connections Main Service (AcSvc) - Lenovo - C:\Program Files\ThinkPad\ConnectUtilities\AcSvc.exe
O23 - Service: AVG Anti-Spyware Guard - Anti-Malware Development a.s. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe
O23 - Service: Symantec Network Proxy (ccProxy) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccProxy.exe
O23 - Service: Symantec Password Validation (ccPwdSvc) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccPwdSvc.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe
O23 - Service: Symantec AntiVirus Definition Watcher (DefWatch) - Symantec Corporation - C:\Program Files\Symantec Client Security\Symantec AntiVirus\DefWatch.exe
O23 - Service: Diskeeper - Diskeeper Corporation - C:\Program Files\Diskeeper Corporation\Diskeeper\DkService.exe
O23 - Service: EvtEng - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
O23 - Service: ThinkPad PM Service (IBMPMSVC) - Unknown owner - C:\WINDOWS\system32\ibmpmsvc.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: IPS Core Service (IPSSVC) - Lenovo Ltd. - C:\WINDOWS\system32\IPSSVC.EXE
O23 - Service: IS Service (ISSVC) - Symantec Corporation - C:\Program Files\Symantec Client Security\Symantec Client Firewall\ISSVC.exe
O23 - Service: IBM PSA Access Driver Control (PsaSrv) - Unknown owner - C:\WINDOWS\system32\PsaSrv.exe (file missing)
O23 - Service: RegSrvc - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
O23 - Service: Spectrum24 Event Monitor (S24EventMonitor) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
O23 - Service: SAVRoam (SavRoam) - symantec - C:\Program Files\Symantec Client Security\Symantec AntiVirus\SavRoam.exe
O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\SNDSrvc.exe
O23 - Service: Symantec SPBBCSvc (SPBBCSvc) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCSvc.exe
O23 - Service: Symantec AntiVirus - Symantec Corporation - C:\Program Files\Symantec Client Security\Symantec AntiVirus\Rtvscan.exe
O23 - Service: Symantec SecurePort (SymSecurePort) - Symantec Corporation - C:\Program Files\Symantec Client Security\Symantec Client Firewall\SymSPort.exe
O23 - Service: ThinkPad HDD APS Logging Service (TPHDEXLGSVC) - Lenovo. - C:\WINDOWS\System32\TPHDEXLG.EXE
O23 - Service: IBM KCU Service (TpKmpSVC) - Unknown owner - C:\WINDOWS\system32\TpKmpSVC.exe
O23 - Service: TSS Core Service (TSSCoreService) - IBM - C:\Program Files\IBM ThinkVantage\Client Security Solution\ibmtcsd.exe
O23 - Service: TVT Backup Service - Unknown owner - C:\Program Files\IBM ThinkVantage\Rescue and Recovery\rrservice.exe
O23 - Service: TVT Scheduler - Unknown owner - C:\Program Files\IBM ThinkVantage\Common\Scheduler\tvtsched.exe
O23 - Service: ThinkVantage System Update (UCLauncherService) - Unknown owner - C:\Program Files\ThinkVantage\SystemUpdate\UCLauncherService.exe
O23 - Service: Protector Suite Virtual Token (vtserver) - UPEK Inc. - C:\Program Files\Common Files\Virtual Token\vtserver.exe
******************************************
BITDEFENDER LOG
******************************************
BitDefender Online Scanner - Real Time Virus Report
Generated at: Sun, Dec 31, 2006 - 22:45:07
Scan Info
Scanned Files 426264
Infected Files 0
Virus Detected No virus found.
******************************************
SUPERANTISPYWARE LOG
******************************************
SUPERAntiSpyware Scan Log
Generated 12/31/2006 at 11:35 PM
Application Version : 3.4.1000
Core Rules Database Version : 3156
Trace Rules Database Version: 1171
Scan type : Complete Scan
Total Scan Time : 00:27:11
Memory items scanned : 666
Memory threats detected : 0
Registry items scanned : 5835
Registry threats detected : 1
File items scanned : 28526
File threats detected : 186
Adware.Tracking Cookie
C:\Documents and Settings\Charles\Cookies\charles@ad.yieldmanager[2].txt
C:\Documents and Settings\Charles\Cookies\charles@doubleclick[1].txt
C:\Documents and Settings\Charles\Cookies\charles@atdmt[1].txt
C:\Documents and Settings\Amelie\Cookies\amelie@ehg-dig.hitbox[1].txt
C:\Documents and Settings\Amelie\Cookies\amelie@hitbox[2].txt
C:\Documents and Settings\Amelie\Cookies\amelie@msnportal.112.2o7[1].txt
C:\Documents and Settings\Amy\Cookies\amy@247realmedia[1].txt
C:\Documents and Settings\Amy\Cookies\amy@2o7[1].txt
C:\Documents and Settings\Amy\Cookies\amy@4.adbrite[1].txt
C:\Documents and Settings\Amy\Cookies\amy@acvs.mediaonenetwork[1].txt
C:\Documents and Settings\Amy\Cookies\amy@ad.yieldmanager[2].txt
C:\Documents and Settings\Amy\Cookies\amy@adbrite[2].txt
C:\Documents and Settings\Amy\Cookies\amy@adlegend[1].txt
C:\Documents and Settings\Amy\Cookies\amy@admarketplace[1].txt
C:\Documents and Settings\Amy\Cookies\amy@adopt.euroclick[2].txt
C:\Documents and Settings\Amy\Cookies\amy@adopt.specificclick[1].txt
C:\Documents and Settings\Amy\Cookies\amy@adrevolver[1].txt
C:\Documents and Settings\Amy\Cookies\amy@ads.adbrite[2].txt
C:\Documents and Settings\Amy\Cookies\amy@ads.addynamix[2].txt
C:\Documents and Settings\Amy\Cookies\amy@ads.as4x.tmcs[2].txt
C:\Documents and Settings\Amy\Cookies\amy@ads.belointeractive[1].txt
C:\Documents and Settings\Amy\Cookies\amy@ads.pointroll[1].txt
C:\Documents and Settings\Amy\Cookies\amy@ads.sheknows[1].txt
C:\Documents and Settings\Amy\Cookies\amy@adtech[2].txt
C:\Documents and Settings\Amy\Cookies\amy@adv.webmd[1].txt
C:\Documents and Settings\Amy\Cookies\amy@advertising[1].txt
C:\Documents and Settings\Amy\Cookies\amy@anad.tacoda[2].txt
C:\Documents and Settings\Amy\Cookies\amy@anat.tacoda[2].txt
C:\Documents and Settings\Amy\Cookies\amy@apmebf[1].txt
C:\Documents and Settings\Amy\Cookies\amy@ar.atwola[1].txt
C:\Documents and Settings\Amy\Cookies\amy@atdmt[2].txt
C:\Documents and Settings\Amy\Cookies\amy@atwola[2].txt
C:\Documents and Settings\Amy\Cookies\amy@banner[1].txt
C:\Documents and Settings\Amy\Cookies\amy@belnk[1].txt
C:\Documents and Settings\Amy\Cookies\amy@bizrate[2].txt
C:\Documents and Settings\Amy\Cookies\amy@bluestreak[1].txt
C:\Documents and Settings\Amy\Cookies\amy@burstnet[2].txt
C:\Documents and Settings\Amy\Cookies\amy@casalemedia[2].txt
C:\Documents and Settings\Amy\Cookies\amy@chicagosuntimes.122.2o7[1].txt
C:\Documents and Settings\Amy\Cookies\amy@clicktorrent[2].txt
C:\Documents and Settings\Amy\Cookies\amy@commission-junction[2].txt
C:\Documents and Settings\Amy\Cookies\amy@counter.hitslink[1].txt
C:\Documents and Settings\Amy\Cookies\amy@coxhsi.112.2o7[1].txt
C:\Documents and Settings\Amy\Cookies\amy@cratebarrel.112.2o7[1].txt
C:\Documents and Settings\Amy\Cookies\amy@creview.adbureau[1].txt
C:\Documents and Settings\Amy\Cookies\amy@cz7.clickzs[2].txt
C:\Documents and Settings\Amy\Cookies\amy@data1.perf.overture[1].txt
C:\Documents and Settings\Amy\Cookies\amy@dealtime.co[2].txt
C:\Documents and Settings\Amy\Cookies\amy@dealtime[1].txt
C:\Documents and Settings\Amy\Cookies\amy@dist.belnk[2].txt
C:\Documents and Settings\Amy\Cookies\amy@doubleclick[1].txt
C:\Documents and Settings\Amy\Cookies\amy@e-2dj6waliciajakp.stats.esomniture[2].txt
C:\Documents and Settings\Amy\Cookies\amy@e-2dj6waligjdpceo.stats.esomniture[2].txt
C:\Documents and Settings\Amy\Cookies\amy@e-2dj6wfk4spczwgp.stats.esomniture[2].txt
C:\Documents and Settings\Amy\Cookies\amy@e-2dj6wfkyunazegp.stats.esomniture[2].txt
C:\Documents and Settings\Amy\Cookies\amy@e-2dj6wfkywncjeco.stats.esomniture[1].txt
C:\Documents and Settings\Amy\Cookies\amy@e-2dj6wfmysgazodp.stats.esomniture[1].txt
C:\Documents and Settings\Amy\Cookies\amy@e-2dj6wgmiwmdjkko.stats.esomniture[2].txt
C:\Documents and Settings\Amy\Cookies\amy@e-2dj6whkysmdzskp.stats.esomniture[2].txt
C:\Documents and Settings\Amy\Cookies\amy@e-2dj6whlyajcjmeq.stats.esomniture[2].txt
C:\Documents and Settings\Amy\Cookies\amy@e-2dj6wjkyandzigo.stats.esomniture[2].txt
C:\Documents and Settings\Amy\Cookies\amy@e-2dj6wjkyggdpwfq.stats.esomniture[2].txt
C:\Documents and Settings\Amy\Cookies\amy@e-2dj6wjlykgc5aho.stats.esomniture[2].txt
C:\Documents and Settings\Amy\Cookies\amy@e-2dj6wjlyokdjwbo.stats.esomniture[2].txt
C:\Documents and Settings\Amy\Cookies\amy@e-2dj6wjlyujdzwfo.stats.esomniture[2].txt
C:\Documents and Settings\Amy\Cookies\amy@e-2dj6wjmyend5ggq.stats.esomniture[2].txt
C:\Documents and Settings\Amy\Cookies\amy@e-2dj6wjny-1pdpoe.stats.esomniture[2].txt
C:\Documents and Settings\Amy\Cookies\amy@e-2dj6wjnywmd5mdq.stats.esomniture[2].txt
C:\Documents and Settings\Amy\Cookies\amy@edge.ru4[1].txt
C:\Documents and Settings\Amy\Cookies\amy@ehg-bestbuy.hitbox[2].txt
C:\Documents and Settings\Amy\Cookies\amy@ehg-brooksbrothers.hitbox[2].txt
C:\Documents and Settings\Amy\Cookies\amy@ehg-dig.hitbox[2].txt
C:\Documents and Settings\Amy\Cookies\amy@ehg-hollywood.hitbox[1].txt
C:\Documents and Settings\Amy\Cookies\amy@ehg-knightridder.hitbox[2].txt
C:\Documents and Settings\Amy\Cookies\amy@ehg-mh.hitbox[1].txt
C:\Documents and Settings\Amy\Cookies\amy@ehg-viacom.hitbox[1].txt
C:\Documents and Settings\Amy\Cookies\amy@ehg-youtube.hitbox[1].txt
C:\Documents and Settings\Amy\Cookies\amy@ehg.hitbox[1].txt
C:\Documents and Settings\Amy\Cookies\amy@enhance[2].txt
C:\Documents and Settings\Amy\Cookies\amy@fastclick[1].txt
C:\Documents and Settings\Amy\Cookies\amy@findwhat[1].txt
C:\Documents and Settings\Amy\Cookies\amy@giftscom.122.2o7[1].txt
C:\Documents and Settings\Amy\Cookies\amy@gostats[2].txt
C:\Documents and Settings\Amy\Cookies\amy@highbeam.122.2o7[1].txt
C:\Documents and Settings\Amy\Cookies\amy@hitbox[2].txt
C:\Documents and Settings\Amy\Cookies\amy@icc.intellisrv[2].txt
C:\Documents and Settings\Amy\Cookies\amy@indextools[1].txt
C:\Documents and Settings\Amy\Cookies\amy@interclick[1].txt
C:\Documents and Settings\Amy\Cookies\amy@itxt.vibrantmedia[1].txt
C:\Documents and Settings\Amy\Cookies\amy@kaboose.112.2o7[1].txt
C:\Documents and Settings\Amy\Cookies\amy@kanoodle[1].txt
C:\Documents and Settings\Amy\Cookies\amy@keywordmax[1].txt
C:\Documents and Settings\Amy\Cookies\amy@linksynergy[1].txt
C:\Documents and Settings\Amy\Cookies\amy@marketlive.122.2o7[1].txt
C:\Documents and Settings\Amy\Cookies\amy@maxserving[1].txt
C:\Documents and Settings\Amy\Cookies\amy@media.adrevolver[1].txt
C:\Documents and Settings\Amy\Cookies\amy@mediaonenetwork[1].txt
C:\Documents and Settings\Amy\Cookies\amy@mediaplex[2].txt
C:\Documents and Settings\Amy\Cookies\amy@metacafe.122.2o7[1].txt
C:\Documents and Settings\Amy\Cookies\amy@msnportal.112.2o7[1].txt
C:\Documents and Settings\Amy\Cookies\amy@nextag[2].txt
C:\Documents and Settings\Amy\Cookies\amy@overture[1].txt
C:\Documents and Settings\Amy\Cookies\amy@partner2profit[2].txt
C:\Documents and Settings\Amy\Cookies\amy@paycounter[2].txt
C:\Documents and Settings\Amy\Cookies\amy@paypal.112.2o7[1].txt
C:\Documents and Settings\Amy\Cookies\amy@perf.overture[1].txt
C:\Documents and Settings\Amy\Cookies\amy@qnsr[2].txt
C:\Documents and Settings\Amy\Cookies\amy@questionmarket[2].txt
C:\Documents and Settings\Amy\Cookies\amy@realmedia[2].txt
C:\Documents and Settings\Amy\Cookies\amy@revenue[2].txt
C:\Documents and Settings\Amy\Cookies\amy@revsci[2].txt
C:\Documents and Settings\Amy\Cookies\amy@s.clickability[1].txt
C:\Documents and Settings\Amy\Cookies\amy@saksfifthavenue.122.2o7[1].txt
C:\Documents and Settings\Amy\Cookies\amy@sales.liveperson[1].txt
C:\Documents and Settings\Amy\Cookies\amy@sales.liveperson[2].txt
C:\Documents and Settings\Amy\Cookies\amy@scrippsfoodnet.112.2o7[2].txt
C:\Documents and Settings\Amy\Cookies\amy@server.iad.liveperson[1].txt
C:\Documents and Settings\Amy\Cookies\amy@server.iad.liveperson[2].txt
C:\Documents and Settings\Amy\Cookies\amy@server.iad.liveperson[3].txt
C:\Documents and Settings\Amy\Cookies\amy@server.iad.liveperson[4].txt
C:\Documents and Settings\Amy\Cookies\amy@server.iad.liveperson[6].txt
C:\Documents and Settings\Amy\Cookies\amy@serving-sys[2].txt
C:\Documents and Settings\Amy\Cookies\amy@sextracker[2].txt
C:\Documents and Settings\Amy\Cookies\amy@stat.dealtime[1].txt
C:\Documents and Settings\Amy\Cookies\amy@stat.onestat[2].txt
C:\Documents and Settings\Amy\Cookies\amy@statcounter[2].txt
C:\Documents and Settings\Amy\Cookies\amy@statse.webtrendslive[1].txt
C:\Documents and Settings\Amy\Cookies\amy@statse.webtrendslive[3].txt
C:\Documents and Settings\Amy\Cookies\amy@statse.webtrendslive[4].txt
C:\Documents and Settings\Amy\Cookies\amy@statse.webtrendslive[5].txt
C:\Documents and Settings\Amy\Cookies\amy@tacoda[2].txt
C:\Documents and Settings\Amy\Cookies\amy@track.searchignite[2].txt
C:\Documents and Settings\Amy\Cookies\amy@tracking.foxnews[1].txt
C:\Documents and Settings\Amy\Cookies\amy@trafficmp[2].txt
C:\Documents and Settings\Amy\Cookies\amy@tribalfusion[1].txt
C:\Documents and Settings\Amy\Cookies\amy@tripod[1].txt
C:\Documents and Settings\Amy\Cookies\amy@usatoday1.112.2o7[1].txt
C:\Documents and Settings\Amy\Cookies\amy@valueclick[1].txt
C:\Documents and Settings\Amy\Cookies\amy@wpni.112.2o7[1].txt
C:\Documents and Settings\Amy\Cookies\amy@wTracker[1].txt
C:\Documents and Settings\Amy\Cookies\amy@www.burstbeacon[1].txt
C:\Documents and Settings\Amy\Cookies\amy@www.burstnet[2].txt
C:\Documents and Settings\Amy\Cookies\amy@www.clickmanage[2].txt
C:\Documents and Settings\Amy\Cookies\amy@www.dealtime[2].txt
C:\Documents and Settings\Amy\Cookies\amy@www.fatpenguinmedia[2].txt
C:\Documents and Settings\Amy\Cookies\amy@www.googleadservices[2].txt
C:\Documents and Settings\Amy\Cookies\amy@www.googleadservices[3].txt
C:\Documents and Settings\Amy\Cookies\amy@www.googleadservices[4].txt
C:\Documents and Settings\Amy\Cookies\amy@www.googleadservices[5].txt
C:\Documents and Settings\Amy\Cookies\amy@www.googleadservices[6].txt
C:\Documents and Settings\Amy\Cookies\amy@www.googleadservices[7].txt
C:\Documents and Settings\Amy\Cookies\amy@www.googleadservices[8].txt
C:\Documents and Settings\Amy\Cookies\amy@www.googleadservices[9].txt
C:\Documents and Settings\Amy\Cookies\amy@www.smartadserver[1].txt
C:\Documents and Settings\Amy\Cookies\amy@www7.addfreestats[1].txt
C:\Documents and Settings\Amy\Cookies\amy@xiti[1].txt
C:\Documents and Settings\Amy\Cookies\amy@zedo[1].txt
C:\Documents and Settings\Visitor\Cookies\visitor@2o7[2].txt
C:\Documents and Settings\Visitor\Cookies\visitor@adopt.specificclick[1].txt
C:\Documents and Settings\Visitor\Cookies\visitor@atdmt[2].txt
C:\Documents and Settings\Visitor\Cookies\visitor@doubleclick[2].txt
C:\Documents and Settings\Visitor\Cookies\visitor@hurricanedigitalmedia[1].txt
C:\Documents and Settings\Visitor\Cookies\visitor@msnportal.112.2o7[1].txt
C:\Documents and Settings\Visitor\Cookies\visitor@qnsr[1].txt
C:\Documents and Settings\Visitor\Cookies\visitor@tacoda[1].txt
C:\Documents and Settings\Visitor\Cookies\visitor@tribalfusion[1].txt
Malware.SpywareBot
HKU\S-1-5-21-324738631-1833308762-744674023-1005\Software\SpywareBot
C:\Program Files\SpywareBot\DataBaseNew.ref
C:\Program Files\SpywareBot\HOSTS Backups
C:\Program Files\SpywareBot\Log\log_2006_12_27_21_41_28.log
C:\Program Files\SpywareBot\Log\log_2006_12_27_21_41_29.log
C:\Program Files\SpywareBot\Log\log_2006_12_27_21_48_58.log
C:\Program Files\SpywareBot\Log\log_2006_12_27_21_55_08.log
C:\Program Files\SpywareBot\Log\log_2006_12_27_21_56_59.log
C:\Program Files\SpywareBot\Log
C:\Program Files\SpywareBot\Quarantine
C:\Program Files\SpywareBot\Registry Backups
C:\Program Files\SpywareBot\Settings\CustomScan.stg
C:\Program Files\SpywareBot\Settings\IgnoreList.stg
C:\Program Files\SpywareBot\Settings\ScanInfo.stg
C:\Program Files\SpywareBot\Settings\ScanResults.stg
C:\Program Files\SpywareBot\Settings\SelectedFolders.stg
C:\Program Files\SpywareBot\Settings\Settings.stg
C:\Program Files\SpywareBot\Settings
C:\Program Files\SpywareBot
******************************************
AVG LOG
******************************************
---------------------------------------------------------
AVG Anti-Spyware - Scan Report
---------------------------------------------------------
+ Created at: 12:48:49 AM 1/1/2007
+ Scan result:
C:\Program Files\VideoAccess -> Adware.Generic : Ignored.
C:\Program Files\VideoAccess\Uninstall.exe -> Adware.Generic : Ignored.
:mozilla.263:C:\Documents and Settings\Charles\Application Data\Mozilla\Firefox\Profiles\yk8g0zrj.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.30:C:\Documents and Settings\Charles\Application Data\Mozilla\Firefox\Profiles\yk8g0zrj.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.31:C:\Documents and Settings\Charles\Application Data\Mozilla\Firefox\Profiles\yk8g0zrj.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.34:C:\Documents and Settings\Charles\Application Data\Mozilla\Firefox\Profiles\yk8g0zrj.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.35:C:\Documents and Settings\Charles\Application Data\Mozilla\Firefox\Profiles\yk8g0zrj.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.368:C:\Documents and Settings\Charles\Application Data\Mozilla\Firefox\Profiles\yk8g0zrj.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.36:C:\Documents and Settings\Charles\Application Data\Mozilla\Firefox\Profiles\yk8g0zrj.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.37:C:\Documents and Settings\Charles\Application Data\Mozilla\Firefox\Profiles\yk8g0zrj.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.38:C:\Documents and Settings\Charles\Application Data\Mozilla\Firefox\Profiles\yk8g0zrj.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.394:C:\Documents and Settings\Charles\Application Data\Mozilla\Firefox\Profiles\yk8g0zrj.default\cookies.txt -> TrackingCookie.Adbrite : Cleaned.
:mozilla.395:C:\Documents and Settings\Charles\Application Data\Mozilla\Firefox\Profiles\yk8g0zrj.default\cookies.txt -> TrackingCookie.Adbrite : Cleaned.
:mozilla.153:C:\Documents and Settings\Charles\Application Data\Mozilla\Firefox\Profiles\yk8g0zrj.default\cookies.txt -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.154:C:\Documents and Settings\Charles\Application Data\Mozilla\Firefox\Profiles\yk8g0zrj.default\cookies.txt -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.158:C:\Documents and Settings\Charles\Application Data\Mozilla\Firefox\Profiles\yk8g0zrj.default\cookies.txt -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.159:C:\Documents and Settings\Charles\Application Data\Mozilla\Firefox\Profiles\yk8g0zrj.default\cookies.txt -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.160:C:\Documents and Settings\Charles\Application Data\Mozilla\Firefox\Profiles\yk8g0zrj.default\cookies.txt -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.161:C:\Documents and Settings\Charles\Application Data\Mozilla\Firefox\Profiles\yk8g0zrj.default\cookies.txt -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.114:C:\Documents and Settings\Charles\Application Data\Mozilla\Firefox\Profiles\yk8g0zrj.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.115:C:\Documents and Settings\Charles\Application Data\Mozilla\Firefox\Profiles\yk8g0zrj.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.123:C:\Documents and Settings\Charles\Application Data\Mozilla\Firefox\Profiles\yk8g0zrj.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.124:C:\Documents and Settings\Charles\Application Data\Mozilla\Firefox\Profiles\yk8g0zrj.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.135:C:\Documents and Settings\Charles\Application Data\Mozilla\Firefox\Profiles\yk8g0zrj.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.49:C:\Documents and Settings\Charles\Application Data\Mozilla\Firefox\Profiles\yk8g0zrj.default\cookies.txt -> TrackingCookie.Atdmt : Cleaned.
C:\Documents and Settings\Amy\Cookies\amy@bfast[2].txt -> TrackingCookie.Bfast : Cleaned.
:mozilla.229:C:\Documents and Settings\Charles\Application Data\Mozilla\Firefox\Profiles\yk8g0zrj.default\cookies.txt -> TrackingCookie.Bluestreak : Cleaned.
:mozilla.56:C:\Documents and Settings\Charles\Application Data\Mozilla\Firefox\Profiles\yk8g0zrj.default\cookies.txt -> TrackingCookie.Burstnet : Cleaned.
:mozilla.57:C:\Documents and Settings\Charles\Application Data\Mozilla\Firefox\Profiles\yk8g0zrj.default\cookies.txt -> TrackingCookie.Burstnet : Cleaned.
:mozilla.58:C:\Documents and Settings\Charles\Application Data\Mozilla\Firefox\Profiles\yk8g0zrj.default\cookies.txt -> TrackingCookie.Burstnet : Cleaned.
:mozilla.170:C:\Documents and Settings\Charles\Application Data\Mozilla\Firefox\Profiles\yk8g0zrj.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned.
:mozilla.171:C:\Documents and Settings\Charles\Application Data\Mozilla\Firefox\Profiles\yk8g0zrj.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned.
:mozilla.172:C:\Documents and Settings\Charles\Application Data\Mozilla\Firefox\Profiles\yk8g0zrj.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned.
:mozilla.173:C:\Documents and Settings\Charles\Application Data\Mozilla\Firefox\Profiles\yk8g0zrj.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned.
:mozilla.174:C:\Documents and Settings\Charles\Application Data\Mozilla\Firefox\Profiles\yk8g0zrj.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned.
:mozilla.175:C:\Documents and Settings\Charles\Application Data\Mozilla\Firefox\Profiles\yk8g0zrj.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned.
:mozilla.176:C:\Documents and Settings\Charles\Application Data\Mozilla\Firefox\Profiles\yk8g0zrj.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned.
:mozilla.177:C:\Documents and Settings\Charles\Application Data\Mozilla\Firefox\Profiles\yk8g0zrj.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned.
C:\Documents and Settings\Amy\Cookies\amy@com[1].txt -> TrackingCookie.Com : Cleaned.
:mozilla.270:C:\Documents and Settings\Charles\Application Data\Mozilla\Firefox\Profiles\yk8g0zrj.default\cookies.txt -> TrackingCookie.Coremetrics : Cleaned.
:mozilla.400:C:\Documents and Settings\Charles\Application Data\Mozilla\Firefox\Profiles\yk8g0zrj.default\cookies.txt -> TrackingCookie.Coremetrics : Cleaned.
C:\Documents and Settings\Amy\Cookies\amy@data.coremetrics[1].txt -> TrackingCookie.Coremetrics : Cleaned.
C:\Documents and Settings\Amy\Cookies\amy@test.coremetrics[1].txt -> TrackingCookie.Coremetrics : Cleaned.
C:\Documents and Settings\Amy\Cookies\amy@twci.coremetrics[1].txt -> TrackingCookie.Coremetrics : Cleaned.
:mozilla.29:C:\Documents and Settings\Charles\Application Data\Mozilla\Firefox\Profiles\yk8g0zrj.default\cookies.txt -> TrackingCookie.Doubleclick : Cleaned.
:mozilla.166:C:\Documents and Settings\Charles\Application Data\Mozilla\Firefox\Profiles\yk8g0zrj.default\cookies.txt -> TrackingCookie.Euroclick : Cleaned.
:mozilla.167:C:\Documents and Settings\Charles\Application Data\Mozilla\Firefox\Profiles\yk8g0zrj.default\cookies.txt -> TrackingCookie.Euroclick : Cleaned.
:mozilla.168:C:\Documents and Settings\Charles\Application Data\Mozilla\Firefox\Profiles\yk8g0zrj.default\cookies.txt -> TrackingCookie.Euroclick : Cleaned.
:mozilla.169:C:\Documents and Settings\Charles\Application Data\Mozilla\Firefox\Profiles\yk8g0zrj.default\cookies.txt -> TrackingCookie.Euroclick : Cleaned.
:mozilla.149:C:\Documents and Settings\Charles\Application Data\Mozilla\Firefox\Profiles\yk8g0zrj.default\cookies.txt -> TrackingCookie.Fastclick : Cleaned.
:mozilla.150:C:\Documents and Settings\Charles\Application Data\Mozilla\Firefox\Profiles\yk8g0zrj.default\cookies.txt -> TrackingCookie.Fastclick : Cleaned.
:mozilla.151:C:\Documents and Settings\Charles\Application Data\Mozilla\Firefox\Profiles\yk8g0zrj.default\cookies.txt -> TrackingCookie.Fastclick : Cleaned.
:mozilla.152:C:\Documents and Settings\Charles\Application Data\Mozilla\Firefox\Profiles\yk8g0zrj.default\cookies.txt -> TrackingCookie.Fastclick : Cleaned.
:mozilla.155:C:\Documents and Settings\Charles\Application Data\Mozilla\Firefox\Profiles\yk8g0zrj.default\cookies.txt -> TrackingCookie.Fastclick : Cleaned.
:mozilla.156:C:\Documents and Settings\Charles\Application Data\Mozilla\Firefox\Profiles\yk8g0zrj.default\cookies.txt -> TrackingCookie.Fastclick : Cleaned.
:mozilla.157:C:\Documents and Settings\Charles\Application Data\Mozilla\Firefox\Profiles\yk8g0zrj.default\cookies.txt -> TrackingCookie.Fastclick : Cleaned.
:mozilla.470:C:\Documents and Settings\Charles\Application Data\Mozilla\Firefox\Profiles\yk8g0zrj.default\cookies.txt -> TrackingCookie.Googleadservices : Cleaned.
:mozilla.256:C:\Documents and Settings\Charles\Application Data\Mozilla\Firefox\Profiles\yk8g0zrj.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned.
:mozilla.257:C:\Documents and Settings\Charles\Application Data\Mozilla\Firefox\Profiles\yk8g0zrj.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned.
:mozilla.258:C:\Documents and Settings\Charles\Application Data\Mozilla\Firefox\Profiles\yk8g0zrj.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned.
:mozilla.283:C:\Documents and Settings\Charles\Application Data\Mozilla\Firefox\Profiles\yk8g0zrj.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned.
:mozilla.306:C:\Documents and Settings\Charles\Application Data\Mozilla\Firefox\Profiles\yk8g0zrj.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned.
:mozilla.307:C:\Documents and Settings\Charles\Application Data\Mozilla\Firefox\Profiles\yk8g0zrj.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned.
:mozilla.308:C:\Documents and Settings\Charles\Application Data\Mozilla\Firefox\Profiles\yk8g0zrj.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned.
:mozilla.309:C:\Documents and Settings\Charles\Application Data\Mozilla\Firefox\Profiles\yk8g0zrj.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned.
:mozilla.310:C:\Documents and Settings\Charles\Application Data\Mozilla\Firefox\Profiles\yk8g0zrj.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned.
:mozilla.408:C:\Documents and Settings\Charles\Application Data\Mozilla\Firefox\Profiles\yk8g0zrj.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned.
:mozilla.180:C:\Documents and Settings\Charles\Application Data\Mozilla\Firefox\Profiles\yk8g0zrj.default\cookies.txt -> TrackingCookie.Hitslink : Cleaned.
:mozilla.367:C:\Documents and Settings\Charles\Application Data\Mozilla\Firefox\Profiles\yk8g0zrj.default\cookies.txt -> TrackingCookie.Mediaplex : Cleaned.
C:\Documents and Settings\Amy\Cookies\amy@www.myaffiliateprogram[2].txt -> TrackingCookie.Myaffiliateprogram : Cleaned.
:mozilla.208:C:\Documents and Settings\Charles\Application Data\Mozilla\Firefox\Profiles\yk8g0zrj.default\cookies.txt -> TrackingCookie.Overture : Cleaned.
:mozilla.209:C:\Documents and Settings\Charles\Application Data\Mozilla\Firefox\Profiles\yk8g0zrj.default\cookies.txt -> TrackingCookie.Overture : Cleaned.
:mozilla.162:C:\Documents and Settings\Charles\Application Data\Mozilla\Firefox\Profiles\yk8g0zrj.default\cookies.txt -> TrackingCookie.Pointroll : Cleaned.
:mozilla.163:C:\Documents and Settings\Charles\Application Data\Mozilla\Firefox\Profiles\yk8g0zrj.default\cookies.txt -> TrackingCookie.Pointroll : Cleaned.
:mozilla.164:C:\Documents and Settings\Charles\Application Data\Mozilla\Firefox\Profiles\yk8g0zrj.default\cookies.txt -> TrackingCookie.Pointroll : Cleaned.
:mozilla.165:C:\Documents and Settings\Charles\Application Data\Mozilla\Firefox\Profiles\yk8g0zrj.default\cookies.txt -> TrackingCookie.Pointroll : Cleaned.
:mozilla.144:C:\Documents and Settings\Charles\Application Data\Mozilla\Firefox\Profiles\yk8g0zrj.default\cookies.txt -> TrackingCookie.Questionmarket : Cleaned.
:mozilla.145:C:\Documents and Settings\Charles\Application Data\Mozilla\Firefox\Profiles\yk8g0zrj.default\cookies.txt -> TrackingCookie.Questionmarket : Cleaned.
:mozilla.146:C:\Documents and Settings\Charles\Application Data\Mozilla\Firefox\Profiles\yk8g0zrj.default\cookies.txt -> TrackingCookie.Questionmarket : Cleaned.
:mozilla.147:C:\Documents and Settings\Charles\Application Data\Mozilla\Firefox\Profiles\yk8g0zrj.default\cookies.txt -> TrackingCookie.Questionmarket : Cleaned.
:mozilla.430:C:\Documents and Settings\Charles\Application Data\Mozilla\Firefox\Profiles\yk8g0zrj.default\cookies.txt -> TrackingCookie.Ru4 : Cleaned.
:mozilla.431:C:\Documents and Settings\Charles\Application Data\Mozilla\Firefox\Profiles\yk8g0zrj.default\cookies.txt -> TrackingCookie.Ru4 : Cleaned.
:mozilla.432:C:\Documents and Settings\Charles\Application Data\Mozilla\Firefox\Profiles\yk8g0zrj.default\cookies.txt -> TrackingCookie.Ru4 : Cleaned.
:mozilla.252:C:\Documents and Settings\Charles\Application Data\Mozilla\Firefox\Profiles\yk8g0zrj.default\cookies.txt -> TrackingCookie.Serving-sys : Cleaned.
:mozilla.253:C:\Documents and Settings\Charles\Application Data\Mozilla\Firefox\Profiles\yk8g0zrj.default\cookies.txt -> TrackingCookie.Serving-sys : Cleaned.
:mozilla.254:C:\Documents and Settings\Charles\Application Data\Mozilla\Firefox\Profiles\yk8g0zrj.default\cookies.txt -> TrackingCookie.Serving-sys : Cleaned.
:mozilla.259:C:\Documents and Settings\Charles\Application Data\Mozilla\Firefox\Profiles\yk8g0zrj.default\cookies.txt -> TrackingCookie.Serving-sys : Cleaned.
:mozilla.260:C:\Documents and Settings\Charles\Application Data\Mozilla\Firefox\Profiles\yk8g0zrj.default\cookies.txt -> TrackingCookie.Serving-sys : Cleaned.
:mozilla.182:C:\Documents and Settings\Charles\Application Data\Mozilla\Firefox\Profiles\yk8g0zrj.default\cookies.txt -> TrackingCookie.Specificclick : Cleaned.
:mozilla.183:C:\Documents and Settings\Charles\Application Data\Mozilla\Firefox\Profiles\yk8g0zrj.default\cookies.txt -> TrackingCookie.Specificclick : Cleaned.
:mozilla.184:C:\Documents and Settings\Charles\Application Data\Mozilla\Firefox\Profiles\yk8g0zrj.default\cookies.txt -> TrackingCookie.Specificclick : Cleaned.
:mozilla.185:C:\Documents and Settings\Charles\Application Data\Mozilla\Firefox\Profiles\yk8g0zrj.default\cookies.txt -> TrackingCookie.Specificclick : Cleaned.
:mozilla.186:C:\Documents and Settings\Charles\Application Data\Mozilla\Firefox\Profiles\yk8g0zrj.default\cookies.txt -> TrackingCookie.Specificclick : Cleaned.
:mozilla.187:C:\Documents and Settings\Charles\Application Data\Mozilla\Firefox\Profiles\yk8g0zrj.default\cookies.txt -> TrackingCookie.Specificclick : Cleaned.
:mozilla.65:C:\Documents and Settings\Charles\Application Data\Mozilla\Firefox\Profiles\yk8g0zrj.default\cookies.txt -> TrackingCookie.Tacoda : Cleaned.
:mozilla.67:C:\Documents and Settings\Charles\Application Data\Mozilla\Firefox\Profiles\yk8g0zrj.default\cookies.txt -> TrackingCookie.Tacoda : Cleaned.
:mozilla.69:C:\Documents and Settings\Charles\Application Data\Mozilla\Firefox\Profiles\yk8g0zrj.default\cookies.txt -> TrackingCookie.Tacoda : Cleaned.
:mozilla.71:C:\Documents and Settings\Charles\Application Data\Mozilla\Firefox\Profiles\yk8g0zrj.default\cookies.txt -> TrackingCookie.Tacoda : Cleaned.
:mozilla.74:C:\Documents and Settings\Charles\Application Data\Mozilla\Firefox\Profiles\yk8g0zrj.default\cookies.txt -> TrackingCookie.Tacoda : Cleaned.
:mozilla.75:C:\Documents and Settings\Charles\Application Data\Mozilla\Firefox\Profiles\yk8g0zrj.default\cookies.txt -> TrackingCookie.Tacoda : Cleaned.
:mozilla.106:C:\Documents and Settings\Charles\Application Data\Mozilla\Firefox\Profiles\yk8g0zrj.default\cookies.txt -> TrackingCookie.Trafficmp : Cleaned.
:mozilla.107:C:\Documents and Settings\Charles\Application Data\Mozilla\Firefox\Profiles\yk8g0zrj.default\cookies.txt -> TrackingCookie.Trafficmp : Cleaned.
:mozilla.108:C:\Documents and Settings\Charles\Application Data\Mozilla\Firefox\Profiles\yk8g0zrj.default\cookies.txt -> TrackingCookie.Trafficmp : Cleaned.
:mozilla.109:C:\Documents and Settings\Charles\Application Data\Mozilla\Firefox\Profiles\yk8g0zrj.default\cookies.txt -> TrackingCookie.Trafficmp : Cleaned.
:mozilla.110:C:\Documents and Settings\Charles\Application Data\Mozilla\Firefox\Profiles\yk8g0zrj.default\cookies.txt -> TrackingCookie.Trafficmp : Cleaned.
:mozilla.111:C:\Documents and Settings\Charles\Application Data\Mozilla\Firefox\Profiles\yk8g0zrj.default\cookies.txt -> TrackingCookie.Trafficmp : Cleaned.
:mozilla.112:C:\Documents and Settings\Charles\Application Data\Mozilla\Firefox\Profiles\yk8g0zrj.default\cookies.txt -> TrackingCookie.Trafficmp : Cleaned.
:mozilla.113:C:\Documents and Settings\Charles\Application Data\Mozilla\Firefox\Profiles\yk8g0zrj.default\cookies.txt -> TrackingCookie.Trafficmp : Cleaned.
:mozilla.50:C:\Documents and Settings\Charles\Application Data\Mozilla\Firefox\Profiles\yk8g0zrj.default\cookies.txt -> TrackingCookie.Trafic : Cleaned.
C:\Documents and Settings\Charles\Cookies\charles@trafic[1].txt -> TrackingCookie.Trafic : Cleaned.
:mozilla.61:C:\Documents and Settings\Charles\Application Data\Mozilla\Firefox\Profiles\yk8g0zrj.default\cookies.txt -> TrackingCookie.Tribalfusion : Cleaned.
:mozilla.62:C:\Documents and Settings\Charles\Application Data\Mozilla\Firefox\Profiles\yk8g0zrj.default\cookies.txt -> TrackingCookie.Tribalfusion : Cleaned.
:mozilla.64:C:\Documents and Settings\Charles\Application Data\Mozilla\Firefox\Profiles\yk8g0zrj.default\cookies.txt -> TrackingCookie.Tribalfusion : Cleaned.
:mozilla.66:C:\Documents and Settings\Charles\Application Data\Mozilla\Firefox\Profiles\yk8g0zrj.default\cookies.txt -> TrackingCookie.Tribalfusion : Cleaned.
:mozilla.68:C:\Documents and Settings\Charles\Application Data\Mozilla\Firefox\Profiles\yk8g0zrj.default\cookies.txt -> TrackingCookie.Tribalfusion : Cleaned.
:mozilla.70:C:\Documents and Settings\Charles\Application Data\Mozilla\Firefox\Profiles\yk8g0zrj.default\cookies.txt -> TrackingCookie.Tribalfusion : Cleaned.
:mozilla.73:C:\Documents and Settings\Charles\Application Data\Mozilla\Firefox\Profiles\yk8g0zrj.default\cookies.txt -> TrackingCookie.Tribalfusion : Cleaned.
C:\Documents and Settings\Amy\Cookies\amy@web-stat[2].txt -> TrackingCookie.Web-stat : Cleaned.
:mozilla.13:C:\Documents and Settings\Charles\Application Data\Mozilla\Firefox\Profiles\yk8g0zrj.default\cookies.txt -> TrackingCookie.Webtrendslive : Cleaned.
:mozilla.334:C:\Documents and Settings\Charles\Application Data\Mozilla\Firefox\Profiles\yk8g0zrj.default\cookies.txt -> TrackingCookie.Webtrendslive : Cleaned.
:mozilla.342:C:\Documents and Settings\Charles\Application Data\Mozilla\Firefox\Profiles\yk8g0zrj.default\cookies.txt -> TrackingCookie.Webtrendslive : Cleaned.
:mozilla.51:C:\Documents and Settings\Charles\Application Data\Mozilla\Firefox\Profiles\yk8g0zrj.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.52:C:\Documents and Settings\Charles\Application Data\Mozilla\Firefox\Profiles\yk8g0zrj.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.53:C:\Documents and Settings\Charles\Application Data\Mozilla\Firefox\Profiles\yk8g0zrj.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.54:C:\Documents and Settings\Charles\Application Data\Mozilla\Firefox\Profiles\yk8g0zrj.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.55:C:\Documents and Settings\Charles\Application Data\Mozilla\Firefox\Profiles\yk8g0zrj.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.226:C:\Documents and Settings\Charles\Application Data\Mozilla\Firefox\Profiles\yk8g0zrj.default\cookies.txt -> TrackingCookie.Zedo : Cleaned.
:mozilla.227:C:\Documents and Settings\Charles\Application Data\Mozilla\Firefox\Profiles\yk8g0zrj.default\cookies.txt -> TrackingCookie.Zedo : Cleaned.
:mozilla.228:C:\Documents and Settings\Charles\Application Data\Mozilla\Firefox\Profiles\yk8g0zrj.default\cookies.txt -> TrackingCookie.Zedo : Cleaned.
[1672] VM_003B0000 -> Trojan.DNSChanger.hg : Cleaned with backup (quarantined).
[1956] VM_00980000 -> Trojan.DNSChanger.hg : Cleaned with backup (quarantined).
[2560] VM_00D10000 -> Trojan.DNSChanger.hg : Cleaned with backup (quarantined).
[2936] VM_011F0000 -> Trojan.DNSChanger.hg : Cleaned with backup (quarantined).
[3000] VM_00900000 -> Trojan.DNSChanger.hg : Cleaned with backup (quarantined).
[3352] VM_00920000 -> Trojan.DNSChanger.hg : Cleaned with backup (quarantined).
[3484] VM_00950000 -> Trojan.DNSChanger.hg : Cleaned with backup (quarantined).
[3532] VM_00FF0000 -> Trojan.DNSChanger.hg : Cleaned with backup (quarantined).
[3700] VM_00390000 -> Trojan.DNSChanger.hg : Cleaned with backup (quarantined).
[3776] VM_00980000 -> Trojan.DNSChanger.hg : Cleaned with backup (quarantined).
[3800] VM_003B0000 -> Trojan.DNSChanger.hg : Cleaned with backup (quarantined).
[3812] VM_00390000 -> Trojan.DNSChanger.hg : Cleaned with backup (quarantined).
[3824] VM_00900000 -> Trojan.DNSChanger.hg : Cleaned with backup (quarantined).
[3912] VM_003C0000 -> Trojan.DNSChanger.hg : Cleaned with backup (quarantined).
[3952] VM_00950000 -> Trojan.DNSChanger.hg : Cleaned with backup (quarantined).
[4272] VM_00C30000 -> Trojan.DNSChanger.hg : Cleaned with backup (quarantined).
[4344] VM_00BE0000 -> Trojan.DNSChanger.hg : Cleaned with backup (quarantined).
[4384] VM_009F0000 -> Trojan.DNSChanger.hg : Cleaned with backup (quarantined).
[4548] VM_00DD0000 -> Trojan.DNSChanger.hg : Cleaned with backup (quarantined).
[4640] VM_00900000 -> Trojan.DNSChanger.hg : Cleaned with backup (quarantined).
[480] VM_01070000 -> Trojan.DNSChanger.hg : Cleaned with backup (quarantined).
[4936] VM_00B50000 -> Trojan.DNSChanger.hg : Cleaned with backup (quarantined).
[4988] VM_0
2
OK, here's my log...
Started by TigerShark, Jan 01 2007 07:21 AM
4 replies to this topic
#2 OFFLINE
-
- Spyware Moderators
-
- 131 posts
Advanced Member
Posted 01 January 2007 - 11:53 PM
Download gmer.zip from here and save it to your Desktop.
You will need to unzip it before you run it.
To do this: Right click on the zipped folder and from the menu that appears, click on Extract All...
In the 'Extraction Wizard' window that opens, click on Next> and in the next window that appears, click on Next> again.
In the final window, click on Finish
Double click gmer.exe to begin:
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Download AVG Anti-Rootkit Beta from here and save it to your Desktop.
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Run HJT and click on Open the Misc Tools section.
You will need to unzip it before you run it.
To do this: Right click on the zipped folder and from the menu that appears, click on Extract All...
In the 'Extraction Wizard' window that opens, click on Next> and in the next window that appears, click on Next> again.
In the final window, click on Finish
Double click gmer.exe to begin:
- Select the Rootkit Tab at the top.
- Click the Scan button on the right.
- When the scan has completed, click the Copy button underneath - this will save the report to your Clipboard.
- Paste it into Notepad (Start > All Programs > Accessories > Notepad) and save it somewhere convenient.
- Repeat this for the Autostart Tab.
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Download AVG Anti-Rootkit Beta from here and save it to your Desktop.
- Close all open programs as this will require a reboot.
- Double click AVG_AntiRootkit_1.0.0.13.exe to install the program.
(By default this will be to C:\Program Files\GRISOFT\AVG Anti-Rootkit Beta.) - Once the program has installed, you will be prompted to reboot - please allow this to happen.
- When the PC has rebooted, click the AVG Anti-Rootkit Beta shortcut that is now on your desktop.
- Click Perform in-depth search and put your feet up as this can take a while.
- Once the scan has completed, if any files have been detected, click Save result to file and save the log to somewhere convenient.
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Run HJT and click on Open the Misc Tools section.
- Click Open Uninstall Manager...
- Click Save list... and save it to your Desktop.
- Copy and paste the file uninstall_list.txt into your next reply.
Team Numpty - Poking a finger in the eye of malware since a week last Thursday!
#3 OFFLINE
-
- Members
-
- 4 posts
Newbie
Posted 03 January 2007 - 02:10 AM
I feel like a dope. I tried multiple times last night, and again tonight, and cannot get the gmer.net site to open. I also tried IE7 in lieu of Firefox. My WWW is otherwise fine. Firefox gives me the standard error message:
Unable to connect
Firefox can't establish a connection to the server at www.gmer.net.
* The site could be temporarily unavailable or too busy. Try again in a few
moments.
* If you are unable to load any pages, check your computer's network
connection.
* If your computer or network is protected by a firewall or proxy, make sure
that Firefox is permitted to access the Web.
I am exasperated. What am I doing wrong?!?!?!?
Unable to connect
Firefox can't establish a connection to the server at www.gmer.net.
* The site could be temporarily unavailable or too busy. Try again in a few
moments.
* If you are unable to load any pages, check your computer's network
connection.
* If your computer or network is protected by a firewall or proxy, make sure
that Firefox is permitted to access the Web.
I am exasperated. What am I doing wrong?!?!?!?
#5 OFFLINE
-
- Spyware Moderators
-
- 1,821 posts
Power Member
- Gender:Male
- Location:Manchester. UK
- Interests:Music, Movies, Website Building & Design, Malware Testing/Research and spending time with friends & family.
Posted 07 January 2007 - 09:30 AM
Hi
Some of the mirrors are down but these two are fine at the moment
http://martijnc.be/tools/gmer/gmer.htm
http://fbeej.dk/gmer/gmer.htm
Some of the mirrors are down but these two are fine at the moment
http://martijnc.be/tools/gmer/gmer.htm
http://fbeej.dk/gmer/gmer.htm
