I was so impressed with help and results, I'm back for help with my daughters desktop. Everything opens so slow. I told her she must have to much crap running. Ran a few programs you suggested last time, found some uglys no surprise there. I posted some logs, if anyone can give me some direction I would be so grateful, she thinks she needs a new computer.
*BitDefender Online Scanner - Real Time Virus Report*
Generated at: Sun, Dec 31, 2006 - 22:59:33
------------------------------------------------------------------------
*Scan Info*
Scanned Files
287740
Infected Files
33
* *
*Virus Detected*
MemScan:Trojan.Rcsync.A
1
Trojan.Dropper.Agent.AOY
1
Trojan.Spy.Spung.A
1
Trojan.PWS.Sinowal.B
2
Backdoor.Ruledor.C
1
Java.Trojan.Exploit.Bytverify
3
Trojan.Dropper.Delf.AV
1
Trojan.Imiserv.C
1
Trojan.Muldrop.3245.A
1
Trojan.Downloader.Agent.AC
1
Adware.CyDoor
1
Backdoor.Rustock.B
1
Trojan.Downloader.Agent.MO
1
Java.Trojan.OpenConnection.F
1
Trojan.Downloader.Vb.AH
2
Adware.Topmoxie.A
1
MemScan:Backdoor.Agent.II
1
Trojan.Downloader.Vb.KR
1
Trojan.Dropper.Agent.OG
3
Trojan.Downloader.Small.B
1
Java.Trojan.Downloader.OpenConnection.V
1
Java.Trojan.ClassLoader.Z
2
Generic.Sdbot.E955F271
1
Application.Adware.IEDriver.A
1
Trojan.Adware.Ruledor.C
1
Trojan.Downloader.Lookme.F
1
------------------------------------------------------------------------
This summary of the scan process will be used by the BitDefender
Antivirus Lab to create agregate statistics about virus activity around
the world.
SUPERAntiSpyware Scan Log
Generated 12/31/2006 at 11:54 PM
Application Version : 3.4.1000
Core Rules Database Version : 3156
Trace Rules Database Version: 1171
Scan type : Complete Scan
Total Scan Time : 00:39:51
Memory items scanned : 409
Memory threats detected : 0
Registry items scanned : 5718
Registry threats detected : 0
File items scanned : 35452
File threats detected : 8
Adware.Tracking Cookie
C:\Documents and Settings\user\Cookies\user@www.burstnet[1].txt
C:\Documents and Settings\user\Cookies\user@ad.yieldmanager[2].txt
C:\Documents and Settings\user\Cookies\user@burstnet[2].txt
C:\Documents and Settings\user\Cookies\user@tacoda[1].txt
Adware.DelFin Project
C:\RECYCLER\NPROTECT\00000875.DLL
Adware.Spyware Labs
C:\WINDOWS\SYSTEM32\BO2202031216.DLL
Adware.MyWay
C:\WINDOWS\SYSTEM32\XCITE.DLL
C:\WINDOWS\SYSTEM32\XCITE.EXE
Logfile of HijackThis v1.99.1
Scan saved at 9:20:40 AM, on 1/1/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.5730.0011)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe
C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe
C:\Program Files\Common Files\Symantec Shared\ccProxy.exe
C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe
C:\WINDOWS\system32\LEXBCES.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\LEXPPS.EXE
C:\Program Files\Common Files\AOL\ACS\AOLAcsd.exe
C:\Program Files\Common Files\AOL\TopSpeed\2.0\aoltsmon.exe
C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
C:\Program Files\Norton SystemWorks\Norton GoBack\GBPoll.exe
C:\Program Files\Norton SystemWorks\Norton AntiVirus\IWP\NPFMntor.exe
C:\PROGRA~1\NORTON~1\NORTON~3\NPROTECT.EXE
C:\WINDOWS\System32\nvsvc32.exe
C:\Program Files\RemotelyAnywhere\RaMaint.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\RemotelyAnywhere\RemotelyAnywhere.exe
C:\PROGRA~1\NORTON~1\NORTON~3\SPEEDD~1\NOPDB.EXE
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\wanmpsvc.exe
C:\Program Files\Linksys Wireless-G PCI Wireless Network Monitor\WLService.exe
C:\Program Files\Linksys Wireless-G PCI Wireless Network Monitor\WMP54Gv4.exe
C:\Program Files\RemotelyAnywhere\RAGui.exe
C:\WINDOWS\system32\LVCOMSX.EXE
C:\WINDOWS\SOUNDMAN.EXE
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
C:\Program Files\Microsoft Office\Office\MSOFFICE.EXE
C:\Program Files\Norton SystemWorks\Norton AntiVirus\navapsvc.exe
C:\TEMP\Highjack This\hijackthis\HijackThis.exe
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft....k/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft....k/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft....k/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft....k/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://www.emachines.com/
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Microsoft Internet Explorer provided by Comcast
F2 - REG:system.ini: UserInit=C:\WINDOWS\System32\Userinit.exe
O1 - Hosts: 81.138.236.173 ogcserver02.onlinegamescompany.net
O2 - BHO: (no name) - SOFTWARE - (no file)
O2 - BHO: (no name) - {00000000-6CB0-410C-8C3D-8FA8D2011D0A} - (no file)
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: Norton Personal Firewall 2006 - {9ECB9560-04F9-4bbc-943D-298DDF1699E1} - C:\Program Files\Common Files\Symantec Shared\AdBlocking\NISShExt.dll
O2 - BHO: NAV Helper - {A8F38D8D-E480-4D52-B7A2-731BB6995FDD} - C:\Program Files\Norton SystemWorks\Norton AntiVirus\NavShExt.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll
O3 - Toolbar: AOL Toolbar - {4982D40A-C53B-4615-B15B-B5B5E98D167C} - C:\Program Files\AOL Toolbar\toolbar.dll
O3 - Toolbar: Norton AntiVirus - {C4069E3A-68F1-403E-B40E-20066696354B} - C:\Program Files\Norton SystemWorks\Norton AntiVirus\NavShExt.dll
O3 - Toolbar: Norton Personal Firewall 2006 - {0B53EAC3-8D69-4b9e-9B19-A37C9A5676A7} - C:\Program Files\Common Files\Symantec Shared\AdBlocking\NISShExt.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll
O4 - HKLM\..\Run: [EM_EXEC] C:\PROGRA~1\Logitech\MOUSEW~1\SYSTEM\EM_EXEC.EXE
O4 - HKLM\..\Run: [LVCOMSX] C:\WINDOWS\system32\LVCOMSX.EXE
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [AOL Fast Start] "C:\Program Files\America Online 9.0c\AOL.EXE" -b
O4 - HKCU\..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
O4 - Startup: Microsoft Office Shortcut Bar.lnk = C:\Program Files\Microsoft Office\Office\MSOFFICE.EXE
O8 - Extra context menu item: &AOL Toolbar search - res://C:\Program Files\AOL Toolbar\toolbar.dll/SEARCH.HTML
O9 - Extra button: AOL Toolbar - {4982D40A-C53B-4615-B15B-B5B5E98D167C} - C:\Program Files\AOL Toolbar\toolbar.dll
O9 - Extra 'Tools' menuitem: AOL Toolbar - {4982D40A-C53B-4615-B15B-B5B5E98D167C} - C:\Program Files\AOL Toolbar\toolbar.dll
O9 - Extra button: Express Cleanup - {5E638779-1818-4754-A595-EF1C63B87A56} - C:\Program Files\Norton SystemWorks\Norton Cleanup\WCQuick.lnk
O9 - Extra 'Tools' menuitem: Express Cleanup - {5E638779-1818-4754-A595-EF1C63B87A56} - C:\Program Files\Norton SystemWorks\Norton Cleanup\WCQuick.lnk
O9 - Extra button: ComcastHSI - {669B269B-0D4E-41FB-A3D8-FD67CA94F646} - http://www.comcast.net/ (file missing)
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O9 - Extra button: Support - {8828075D-D097-4055-AA02-2DBFA9D85E8A} - http://www.comcastsupport.com/ (file missing)
O9 - Extra button: Help - {97809617-3937-4F84-B335-9BB05EF1A8D4} - http://online.comcast.net/help/ (file missing)
O9 - Extra button: AIM - {AC9E2541-2814-11d5-BC6D-00B0D0A1DE45} - C:\Program Files\aim\aim.exe
O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\System32\Shdocvw.dll
O9 - Extra button: MoneySide - {E023F504-0C5A-4750-A1E7-A9046DEA8A21} - C:\Program Files\Microsoft Money\System\mnyviewer.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O11 - Options group: [INTERNATIONAL] International*
O14 - IERESET.INF: START_PAGE_URL=http://www.emachines.com
O16 - DPF: Mah Jong Garden by pogo - http://mahjong2.pogo.com/applet-5.9.4.22/m...g-ob-assets.cab
O16 - DPF: Phlinx by pogo - http://flinger.pogo.com/applet-5.9.3.38/fl...r-ob-assets.cab
O16 - DPF: Squelchies by pogo - http://squelchies.pogo.com/applet-5.9.1.18...s-ob-assets.cab
O16 - DPF: Word Whomp Whackdown by pogo - http://whackdown.pogo.com/applet-5.9.4.22/...n-ob-assets.cab
O16 - DPF: WordJong by pogo - http://wordjong.pogo.com/applet-5.9.5.30/w...g-ob-assets.cab
O16 - DPF: {0E5F0222-96B9-11D3-8997-00104BD12D94} (PCPitstop Utility) - http://pcpitstop.com...p/PCPitStop.CAB
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft....k/?linkid=39204
O16 - DPF: {41F17733-B041-4099-A042-B518BB6A408C} - http://a1540.g.akamai.net/7/1540/52/200212...meInstaller.exe
O16 - DPF: {4FAE30E1-EE9C-477D-8D06-BF8D3429B60F} (WebIQ Technology Client) - http://webiq001.webi...Q/bin/WebIQ.cab
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://download.bitd...can8/oscan8.cab
O16 - DPF: {B942A249-D1E7-4C11-98AE-FCB76B08747F} (RealArcadeRdxIE Class) - http://games-dl.real.com/gameconsole/Bundl...ArcadeRdxIE.cab
O16 - DPF: {D670D0B3-05AB-4115-9F87-D983EF1AC747} (AOL Downloader Plugin) - http://pak01.pictures.aol.com/ygp/aol/plug...oad.9.0.0.2.cab
O16 - DPF: {FD0B6769-6490-4A91-AA0A-B5AE0DC75AC9} (Performance Viewer Activex Control) - https://kitten:51889...ivex/RACtrl.cab
O20 - Winlogon Notify: !SASWinLogon - C:\Program Files\SUPERAntiSpyware\SASWINLO.dll
O20 - Winlogon Notify: igfxcui - C:\WINDOWS\SYSTEM32\igfxsrvc.dll
O20 - Winlogon Notify: rainit - C:\WINDOWS\SYSTEM32\RAinit.dll
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: AOL Connectivity Service (AOL ACS) - America Online - C:\Program Files\Common Files\AOL\ACS\AOLAcsd.exe
O23 - Service: AOL TopSpeed Monitor (AOL TopSpeedMonitor) - America Online, Inc - C:\Program Files\Common Files\AOL\TopSpeed\2.0\aoltsmon.exe
O23 - Service: AOL Spyware Protection Service (AOLService) - Unknown owner - C:\Program Files\Common Files\AOL\AOL Spyware Protection\\aolserv.exe (file missing)
O23 - Service: Automatic LiveUpdate Scheduler - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe
O23 - Service: Symantec Internet Security Password Validation (ccISPwdSvc) - Symantec Corporation - C:\Program Files\Norton Personal Firewall\ccPwdSvc.exe
O23 - Service: Symantec Network Proxy (ccProxy) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccProxy.exe
O23 - Service: Symantec Password Validation (ccPwdSvc) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccPwdSvc.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe
O23 - Service: GoBack Polling Service (GBPoll) - Symantec Corporation - C:\Program Files\Norton SystemWorks\Norton GoBack\GBPoll.exe
O23 - Service: LexBce Server (LexBceS) - Lexmark International, Inc. - C:\WINDOWS\system32\LEXBCES.EXE
O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
O23 - Service: Norton AntiVirus Auto-Protect Service (navapsvc) - Symantec Corporation - C:\Program Files\Norton SystemWorks\Norton AntiVirus\navapsvc.exe
O23 - Service: Norton AntiVirus Firewall Monitor Service (NPFMntor) - Symantec Corporation - C:\Program Files\Norton SystemWorks\Norton AntiVirus\IWP\NPFMntor.exe
O23 - Service: Norton UnErase Protection (NProtectService) - Symantec Corporation - C:\PROGRA~1\NORTON~1\NORTON~3\NPROTECT.EXE
O23 - Service: Norton Protection Center Service (NSCService) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\Security Console\NSCSRVCE.EXE
O23 - Service: NVIDIA Driver Helper Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe
O23 - Service: RemotelyAnywhere Maintenance Service (RAMaint) - 3am Labs, Inc. - C:\Program Files\RemotelyAnywhere\RaMaint.exe
O23 - Service: RemotelyAnywhere - 3am Labs, Inc. - C:\Program Files\RemotelyAnywhere\RemotelyAnywhere.exe
O23 - Service: Symantec AVScan (SAVScan) - Symantec Corporation - C:\Program Files\Norton SystemWorks\Norton AntiVirus\SAVScan.exe
O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\SNDSrvc.exe
O23 - Service: SPBBCSvc - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCSvc.exe
O23 - Service: Speed Disk service - Symantec Corporation - C:\PROGRA~1\NORTON~1\NORTON~3\SPEEDD~1\NOPDB.EXE
O23 - Service: Symantec Core LC - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe
O23 - Service: TuneUp WinStyler Theme Service (TUWinStylerThemeSvc) - TuneUp Software GmbH - C:\Program Files\TuneUp Utilities 2006\WinStylerThemeSvc.exe
O23 - Service: WAN Miniport (ATW) Service (WANMiniportService) - America Online, Inc. - C:\WINDOWS\wanmpsvc.exe
O23 - Service: WMP54Gv4SVC - Unknown owner - C:\Program Files\Linksys Wireless-G PCI Wireless Network Monitor\WLService.exe" "WMP54Gv4.exe (file missing)
Thank You in advance,
cncman
0
computer so slow.. with logs this time DUH
Started by cncman, Jan 01 2007 02:50 PM
7 replies to this topic
#1 OFFLINE
-
- Members
-
- 16 posts
Member
- Gender:Male
- Location:EAST COAST US
Posted 01 January 2007 - 02:50 PM
#2 OFFLINE
-
- Moderators
-
- 8,858 posts
I hate computers
- Gender:Male
Posted 02 January 2007 - 09:11 PM
Welcome back. 
We don't mind helping you get your daughters machine in tip top condition.
First open hijackthis and do a system scan. Then check off the following entry:
O1 - Hosts: 81.138.236.173 ogcserver02.onlinegamescompany.net
Press "fixed checked" and then close hijackthis.
-------------
Next please run avg antispyware and kaspersky. Their logs will give us the green light when that everything thing is clean and then we can start trying to speed the computer up if it needs it.
Download AVG Anti-Spyware
Run Kaspersky WebScanner
We don't mind helping you get your daughters machine in tip top condition.
First open hijackthis and do a system scan. Then check off the following entry:
O1 - Hosts: 81.138.236.173 ogcserver02.onlinegamescompany.net
Press "fixed checked" and then close hijackthis.
-------------
Next please run avg antispyware and kaspersky. Their logs will give us the green light when that everything thing is clean and then we can start trying to speed the computer up if it needs it.
Download AVG Anti-Spyware
- Load AVG antispyware and then click the Update tab at the top. Under Manual Update click Start update.
- After the update finishes (the status bar at the bottom will display "Update successful")
- Click on the Scanner tab at the top and then click on Complete System Scan
- Ewido will list any infections found on the left, when the scan has finished, it will automatically set the recommended action. Click the Apply all actions button. AVG antispyware will then display "All actions have been applied" on the right.
- Click on "Save Report", then "Save Report As". This will create a text file which you can then save to the Desktop and post back
Run Kaspersky WebScanner
- Please go HERE and click Kaspersky Online Scanner
- Read and Accept the Agreement
- You will be promted to install an ActiveX component from Kaspersky, Click Yes.
- If you see a Windows dialog asking if you want to install this software, click the Install button.
- The program will launch and then begin downloading the latest definition files,
- When the "Update progress" line changes to "Ready" and the "NEXT ->" button becomes available, please click on it.
- Click on the Scan Settings button, and in the next window select the Extended database, and click Ok.
- Under "Please select a target to scan:", click My Computer to start the scan.
- When the scan is finished, click the "Save as Text" button, and save the file as kavscan.txt to your Desktop, close the Kaspersky On-line Scanner window.
- Paste kaspersky log onto forum.
#3 OFFLINE
-
- Members
-
- 16 posts
Member
- Gender:Male
- Location:EAST COAST US
Posted 04 January 2007 - 02:35 AM
I had so much trouble getting programs to load and run. Kap.. on line scanner would not load, loaded trial verson took forever to scan 3.5 hrs. 
. Log report is 25mb ??? Seems only thing it found really was in Norton quarantine. Other scans run and reports follows:
---------------------------------------------------------
AVG Anti-Spyware - Scan Report
---------------------------------------------------------
+ Created at: 6:35:51 PM 1/2/2007
+ Scan result:
C:\RECYCLER\NPROTECT\00140832 -> Adware.BargainBuddy : Cleaned.
C:\RECYCLER\NPROTECT\00140839.DLL -> Adware.BargainBuddy : Cleaned.
C:\RECYCLER\NPROTECT\00140838 -> Adware.BrowsePal : Cleaned.
C:\RECYCLER\NPROTECT\00140840.DLL -> Adware.BrowsePal : Cleaned.
C:\WINDOWS\system32\OMsetup.exe -> Adware.ClientMan : Cleaned.
C:\RECYCLER\NPROTECT\00000876.exe -> Adware.EZula : Cleaned.
C:\WINDOWS\system32\CometTB.exe -> Adware.EZula : Cleaned.
C:\RECYCLER\NPROTECT\00140835 -> Adware.F1Organizer : Cleaned.
C:\RECYCLER\NPROTECT\00140841.EXE -> Adware.F1Organizer : Cleaned.
C:\WINDOWS\system32\szla2.exe -> Adware.F1Organizer : Cleaned.
C:\Program Files\WebSavingsfromEbates -> Adware.MoneyMaker : Cleaned.
C:\Program Files\WebSavingsfromEbates\ApplicationData -> Adware.MoneyMaker : Cleaned.
C:\Program Files\WebSavingsfromEbates\ApplicationData\Administrator -> Adware.MoneyMaker : Cleaned.
C:\Program Files\WebSavingsfromEbates\ApplicationData\Administrator\ebateswebsavingsdr0data.dls -> Adware.MoneyMaker : Cleaned.
C:\Program Files\WebSavingsfromEbates\ApplicationData\Administrator\ebateswebsavingsdrdata.dls -> Adware.MoneyMaker : Cleaned.
C:\Program Files\WebSavingsfromEbates\ApplicationData\merchants.dls -> Adware.MoneyMaker : Cleaned.
C:\Program Files\WebSavingsfromEbates\ApplicationData\user -> Adware.MoneyMaker : Cleaned.
C:\Program Files\WebSavingsfromEbates\ApplicationData\user\dataexcludeebateswebsavingsdrsaved.dls -> Adware.MoneyMaker : Cleaned.
C:\Program Files\WebSavingsfromEbates\ApplicationData\user\ebateswebsavingsdr0data.dls -> Adware.MoneyMaker : Cleaned.
C:\Program Files\WebSavingsfromEbates\ApplicationData\user\ebateswebsavingsdrdata.dls -> Adware.MoneyMaker : Cleaned.
C:\Program Files\WebSavingsfromEbates\Applications -> Adware.MoneyMaker : Cleaned.
C:\Program Files\WebSavingsfromEbates\Applications\ebatesdatamerchCust.dls -> Adware.MoneyMaker : Cleaned.
C:\Program Files\WebSavingsfromEbates\Applications\websavingsdrupdater.dls -> Adware.MoneyMaker : Cleaned.
C:\Program Files\WebSavingsfromEbates\System -> Adware.MoneyMaker : Cleaned.
C:\Program Files\WebSavingsfromEbates\System\Html -> Adware.MoneyMaker : Cleaned.
C:\Program Files\WebSavingsfromEbates\System\Images -> Adware.MoneyMaker : Cleaned.
C:\Program Files\WebSavingsfromEbates\System\MTemp -> Adware.MoneyMaker : Cleaned.
C:\Program Files\WebSavingsfromEbates\System\MTemp\logfile.txt -> Adware.MoneyMaker : Cleaned.
C:\Program Files\WebSavingsfromEbates\System\System -> Adware.MoneyMaker : Cleaned.
C:\Program Files\WebSavingsfromEbates\System\Temp -> Adware.MoneyMaker : Cleaned.
C:\Program Files\WebSavingsfromEbates\System\Temp\dump.txt -> Adware.MoneyMaker : Cleaned.
C:\Program Files\WebSavingsfromEbates\System\Temp\ebateswebsavings_confirmredir0.htm -> Adware.MoneyMaker : Cleaned.
C:\Program Files\WebSavingsfromEbates\System\Temp\ebateswebsavings_confirmredir0_wo.htm -> Adware.MoneyMaker : Cleaned.
C:\Program Files\WebSavingsfromEbates\System\Temp\ebateswebsavings_preferences0.htm -> Adware.MoneyMaker : Cleaned.
C:\Program Files\WebSavingsfromEbates\System\Temp\ebateswebsavings_preferences0_wo.htm -> Adware.MoneyMaker : Cleaned.
C:\Program Files\WebSavingsfromEbates\System\Temp\ebateswebsavings_script0.htm -> Adware.MoneyMaker : Cleaned.
C:\Program Files\WebSavingsfromEbates\System\Temp\ebateswebsavings_script0_wo.htm -> Adware.MoneyMaker : Cleaned.
C:\Program Files\WebSavingsfromEbates\WebSavings_README.txt -> Adware.MoneyMaker : Cleaned.
C:\Program Files\WebSavingsfromEbates\websearch_dr.exe -> Adware.MoneyMaker : Cleaned.
C:\Documents and Settings\All Users\Application Data\AOL\UserProfiles\All Users\antiSpyware\dat\Quarantine\20051103040040.zip/WINDOWS/NDNuninstall4_50-1.exe -> Adware.NewDotNet : Cleaned.
C:\Documents and Settings\All Users\Application Data\AOL\UserProfiles\All Users\antiSpyware\dat\Quarantine\20051103040040.zip/WINDOWS/NDNuninstall4_80.exe -> Adware.NewDotNet : Cleaned.
C:\Documents and Settings\All Users\Application Data\AOL\UserProfiles\All Users\antiSpyware\dat\Quarantine\20051103040040.zip/WINDOWS/NDNuninstall4_88.exe -> Adware.NewDotNet : Cleaned.
C:\Documents and Settings\All Users\Application Data\AOL\UserProfiles\All Users\antiSpyware\dat\Quarantine\20051103040040.zip/WINDOWS/NDNuninstall4_94.exe -> Adware.NewDotNet : Cleaned.
C:\WINDOWS\system32\SHAgent.dll -> Adware.Sahat : Cleaned.
C:\WINDOWS\system32\ctbv2.dll -> Adware.Sahat : Cleaned.
C:\WINDOWS\system32\actskn45.ocx -> Downloader.IstBar : Cleaned.
C:\Documents and Settings\user\Cookies\user@2o7[2].txt -> TrackingCookie.2o7 : Cleaned.
C:\Documents and Settings\user\Cookies\user@msnportal.112.2o7[1].txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.10:C:\RECYCLER\NPROTECT\00147198.MOZ -> TrackingCookie.Adbrite : Cleaned.
:mozilla.11:C:\RECYCLER\NPROTECT\00147198.MOZ -> TrackingCookie.Adbrite : Cleaned.
:mozilla.12:C:\RECYCLER\NPROTECT\00147198.MOZ -> TrackingCookie.Adbrite : Cleaned.
:mozilla.31:C:\RECYCLER\NPROTECT\00147203.MOZ -> TrackingCookie.Adbrite : Cleaned.
:mozilla.32:C:\RECYCLER\NPROTECT\00147203.MOZ -> TrackingCookie.Adbrite : Cleaned.
:mozilla.33:C:\RECYCLER\NPROTECT\00147203.MOZ -> TrackingCookie.Adbrite : Cleaned.
:mozilla.33:C:\RECYCLER\NPROTECT\00147204.MOZ -> TrackingCookie.Adbrite : Cleaned.
:mozilla.33:C:\RECYCLER\NPROTECT\00147209.MOZ -> TrackingCookie.Adbrite : Cleaned.
:mozilla.33:C:\RECYCLER\NPROTECT\00147210.MOZ -> TrackingCookie.Adbrite : Cleaned.
:mozilla.33:C:\RECYCLER\NPROTECT\00147216.MOZ -> TrackingCookie.Adbrite : Cleaned.
:mozilla.34:C:\RECYCLER\NPROTECT\00147204.MOZ -> TrackingCookie.Adbrite : Cleaned.
:mozilla.34:C:\RECYCLER\NPROTECT\00147209.MOZ -> TrackingCookie.Adbrite : Cleaned.
:mozilla.34:C:\RECYCLER\NPROTECT\00147210.MOZ -> TrackingCookie.Adbrite : Cleaned.
:mozilla.34:C:\RECYCLER\NPROTECT\00147216.MOZ -> TrackingCookie.Adbrite : Cleaned.
:mozilla.34:C:\RECYCLER\NPROTECT\00147222.MOZ -> TrackingCookie.Adbrite : Cleaned.
:mozilla.34:C:\RECYCLER\NPROTECT\00147227.MOZ -> TrackingCookie.Adbrite : Cleaned.
:mozilla.34:C:\RECYCLER\NPROTECT\00147232.MOZ -> TrackingCookie.Adbrite : Cleaned.
:mozilla.34:C:\RECYCLER\NPROTECT\00147233.MOZ -> TrackingCookie.Adbrite : Cleaned.
:mozilla.34:C:\RECYCLER\NPROTECT\00147238.MOZ -> TrackingCookie.Adbrite : Cleaned.
:mozilla.34:C:\RECYCLER\NPROTECT\00147240.MOZ -> TrackingCookie.Adbrite : Cleaned.
:mozilla.34:C:\RECYCLER\NPROTECT\00147241.MOZ -> TrackingCookie.Adbrite : Cleaned.
:mozilla.35:C:\RECYCLER\NPROTECT\00147204.MOZ -> TrackingCookie.Adbrite : Cleaned.
:mozilla.35:C:\RECYCLER\NPROTECT\00147209.MOZ -> TrackingCookie.Adbrite : Cleaned.
:mozilla.35:C:\RECYCLER\NPROTECT\00147210.MOZ -> TrackingCookie.Adbrite : Cleaned.
:mozilla.35:C:\RECYCLER\NPROTECT\00147216.MOZ -> TrackingCookie.Adbrite : Cleaned.
:mozilla.35:C:\RECYCLER\NPROTECT\00147222.MOZ -> TrackingCookie.Adbrite : Cleaned.
:mozilla.35:C:\RECYCLER\NPROTECT\00147227.MOZ -> TrackingCookie.Adbrite : Cleaned.
:mozilla.35:C:\RECYCLER\NPROTECT\00147232.MOZ -> TrackingCookie.Adbrite : Cleaned.
:mozilla.35:C:\RECYCLER\NPROTECT\00147233.MOZ -> TrackingCookie.Adbrite : Cleaned.
:mozilla.35:C:\RECYCLER\NPROTECT\00147238.MOZ -> TrackingCookie.Adbrite : Cleaned.
:mozilla.35:C:\RECYCLER\NPROTECT\00147240.MOZ -> TrackingCookie.Adbrite : Cleaned.
:mozilla.35:C:\RECYCLER\NPROTECT\00147241.MOZ -> TrackingCookie.Adbrite : Cleaned.
:mozilla.36:C:\RECYCLER\NPROTECT\00147222.MOZ -> TrackingCookie.Adbrite : Cleaned.
:mozilla.36:C:\RECYCLER\NPROTECT\00147227.MOZ -> TrackingCookie.Adbrite : Cleaned.
:mozilla.36:C:\RECYCLER\NPROTECT\00147232.MOZ -> TrackingCookie.Adbrite : Cleaned.
:mozilla.36:C:\RECYCLER\NPROTECT\00147233.MOZ -> TrackingCookie.Adbrite : Cleaned.
:mozilla.36:C:\RECYCLER\NPROTECT\00147238.MOZ -> TrackingCookie.Adbrite : Cleaned.
:mozilla.36:C:\RECYCLER\NPROTECT\00147240.MOZ -> TrackingCookie.Adbrite : Cleaned.
:mozilla.36:C:\RECYCLER\NPROTECT\00147241.MOZ -> TrackingCookie.Adbrite : Cleaned.
:mozilla.42:C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\dsy7wfla.default\cookies.txt -> TrackingCookie.Adbrite : Cleaned.
:mozilla.43:C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\dsy7wfla.default\cookies.txt -> TrackingCookie.Adbrite : Cleaned.
:mozilla.44:C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\dsy7wfla.default\cookies.txt -> TrackingCookie.Adbrite : Cleaned.
:mozilla.46:C:\RECYCLER\NPROTECT\00147302.MOZ -> TrackingCookie.Adbrite : Cleaned.
:mozilla.46:C:\RECYCLER\NPROTECT\00147315.MOZ -> TrackingCookie.Adbrite : Cleaned.
:mozilla.46:C:\RECYCLER\NPROTECT\00147320.MOZ -> TrackingCookie.Adbrite : Cleaned.
:mozilla.46:C:\RECYCLER\NPROTECT\00147522.MOZ -> TrackingCookie.Adbrite : Cleaned.
:mozilla.47:C:\RECYCLER\NPROTECT\00147302.MOZ -> TrackingCookie.Adbrite : Cleaned.
:mozilla.47:C:\RECYCLER\NPROTECT\00147315.MOZ -> TrackingCookie.Adbrite : Cleaned.
:mozilla.47:C:\RECYCLER\NPROTECT\00147320.MOZ -> TrackingCookie.Adbrite : Cleaned.
:mozilla.47:C:\RECYCLER\NPROTECT\00147522.MOZ -> TrackingCookie.Adbrite : Cleaned.
:mozilla.48:C:\RECYCLER\NPROTECT\00147302.MOZ -> TrackingCookie.Adbrite : Cleaned.
:mozilla.48:C:\RECYCLER\NPROTECT\00147315.MOZ -> TrackingCookie.Adbrite : Cleaned.
:mozilla.48:C:\RECYCLER\NPROTECT\00147320.MOZ -> TrackingCookie.Adbrite : Cleaned.
:mozilla.48:C:\RECYCLER\NPROTECT\00147522.MOZ -> TrackingCookie.Adbrite : Cleaned.
:mozilla.10:C:\RECYCLER\NPROTECT\00146234.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.10:C:\RECYCLER\NPROTECT\00146235.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.10:C:\RECYCLER\NPROTECT\00146241.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.10:C:\RECYCLER\NPROTECT\00146258.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.10:C:\RECYCLER\NPROTECT\00146275.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.11:C:\RECYCLER\NPROTECT\00146234.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.11:C:\RECYCLER\NPROTECT\00146235.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.11:C:\RECYCLER\NPROTECT\00146241.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.11:C:\RECYCLER\NPROTECT\00146258.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.11:C:\RECYCLER\NPROTECT\00146275.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.11:C:\RECYCLER\NPROTECT\00146276.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.11:C:\RECYCLER\NPROTECT\00146282.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.11:C:\RECYCLER\NPROTECT\00146283.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.11:C:\RECYCLER\NPROTECT\00146284.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.11:C:\RECYCLER\NPROTECT\00146289.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.11:C:\RECYCLER\NPROTECT\00146306.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.11:C:\RECYCLER\NPROTECT\00146390.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.11:C:\RECYCLER\NPROTECT\00146391.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.11:C:\RECYCLER\NPROTECT\00146440.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.11:C:\RECYCLER\NPROTECT\00146452.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.11:C:\RECYCLER\NPROTECT\00146453.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.11:C:\RECYCLER\NPROTECT\00146454.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.11:C:\RECYCLER\NPROTECT\00146463.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.11:C:\RECYCLER\NPROTECT\00146643.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.12:C:\RECYCLER\NPROTECT\00146389.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.13:C:\RECYCLER\NPROTECT\00146452.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.13:C:\RECYCLER\NPROTECT\00146453.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.13:C:\RECYCLER\NPROTECT\00146454.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.13:C:\RECYCLER\NPROTECT\00146463.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.13:C:\RECYCLER\NPROTECT\00146643.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.14:C:\RECYCLER\NPROTECT\00146276.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.14:C:\RECYCLER\NPROTECT\00146282.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.14:C:\RECYCLER\NPROTECT\00146283.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.14:C:\RECYCLER\NPROTECT\00146284.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.14:C:\RECYCLER\NPROTECT\00146289.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.14:C:\RECYCLER\NPROTECT\00146306.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.14:C:\RECYCLER\NPROTECT\00146389.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.14:C:\RECYCLER\NPROTECT\00146390.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.14:C:\RECYCLER\NPROTECT\00146391.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.14:C:\RECYCLER\NPROTECT\00146440.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.16:C:\RECYCLER\NPROTECT\00146655.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.16:C:\RECYCLER\NPROTECT\00146668.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.16:C:\RECYCLER\NPROTECT\00146686.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.16:C:\RECYCLER\NPROTECT\00146687.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.17:C:\RECYCLER\NPROTECT\00146688.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.17:C:\RECYCLER\NPROTECT\00146696.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.20:C:\RECYCLER\NPROTECT\00146655.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.20:C:\RECYCLER\NPROTECT\00146668.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.20:C:\RECYCLER\NPROTECT\00146686.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.20:C:\RECYCLER\NPROTECT\00146687.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.21:C:\RECYCLER\NPROTECT\00146688.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.21:C:\RECYCLER\NPROTECT\00146696.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.28:C:\RECYCLER\NPROTECT\00146697.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.28:C:\RECYCLER\NPROTECT\00146730.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.32:C:\RECYCLER\NPROTECT\00146697.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.32:C:\RECYCLER\NPROTECT\00146730.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.32:C:\RECYCLER\NPROTECT\00146731.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.32:C:\RECYCLER\NPROTECT\00146740.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.32:C:\RECYCLER\NPROTECT\00146745.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.32:C:\RECYCLER\NPROTECT\00146874.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.32:C:\RECYCLER\NPROTECT\00147032.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.33:C:\RECYCLER\NPROTECT\00146731.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.33:C:\RECYCLER\NPROTECT\00146740.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.33:C:\RECYCLER\NPROTECT\00146745.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.33:C:\RECYCLER\NPROTECT\00146874.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.33:C:\RECYCLER\NPROTECT\00147032.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.33:C:\RECYCLER\NPROTECT\00147179.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.33:C:\RECYCLER\NPROTECT\00147184.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.34:C:\RECYCLER\NPROTECT\00147179.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.34:C:\RECYCLER\NPROTECT\00147184.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.35:C:\RECYCLER\NPROTECT\00147186.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.36:C:\RECYCLER\NPROTECT\00147186.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.36:C:\RECYCLER\NPROTECT\00147187.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.37:C:\RECYCLER\NPROTECT\00147187.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.45:C:\RECYCLER\NPROTECT\00147198.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.45:C:\RECYCLER\NPROTECT\00147203.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.46:C:\RECYCLER\NPROTECT\00147198.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.46:C:\RECYCLER\NPROTECT\00147203.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.46:C:\RECYCLER\NPROTECT\00147204.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.46:C:\RECYCLER\NPROTECT\00147209.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.46:C:\RECYCLER\NPROTECT\00147210.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.46:C:\RECYCLER\NPROTECT\00147216.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.47:C:\RECYCLER\NPROTECT\00147204.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.47:C:\RECYCLER\NPROTECT\00147209.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.47:C:\RECYCLER\NPROTECT\00147210.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.47:C:\RECYCLER\NPROTECT\00147216.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.47:C:\RECYCLER\NPROTECT\00147222.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.47:C:\RECYCLER\NPROTECT\00147227.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.47:C:\RECYCLER\NPROTECT\00147232.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.47:C:\RECYCLER\NPROTECT\00147233.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.47:C:\RECYCLER\NPROTECT\00147238.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.47:C:\RECYCLER\NPROTECT\00147240.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.47:C:\RECYCLER\NPROTECT\00147241.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.48:C:\RECYCLER\NPROTECT\00147222.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.48:C:\RECYCLER\NPROTECT\00147227.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.48:C:\RECYCLER\NPROTECT\00147232.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.48:C:\RECYCLER\NPROTECT\00147233.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.48:C:\RECYCLER\NPROTECT\00147238.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.48:C:\RECYCLER\NPROTECT\00147240.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.48:C:\RECYCLER\NPROTECT\00147241.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.55:C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\dsy7wfla.default\cookies.txt -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.56:C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\dsy7wfla.default\cookies.txt -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.59:C:\RECYCLER\NPROTECT\00147302.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.59:C:\RECYCLER\NPROTECT\00147315.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.59:C:\RECYCLER\NPROTECT\00147320.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.59:C:\RECYCLER\NPROTECT\00147522.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.60:C:\RECYCLER\NPROTECT\00147302.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.60:C:\RECYCLER\NPROTECT\00147315.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.60:C:\RECYCLER\NPROTECT\00147320.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.60:C:\RECYCLER\NPROTECT\00147522.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.19:C:\RECYCLER\NPROTECT\00147204.MOZ -> TrackingCookie.Burstnet : Cleaned.
:mozilla.20:C:\RECYCLER\NPROTECT\00147204.MOZ -> TrackingCookie.Burstnet : Cleaned.
:mozilla.27:C:\RECYCLER\NPROTECT\00147209.MOZ -> TrackingCookie.Burstnet : Cleaned.
:mozilla.27:C:\RECYCLER\NPROTECT\00147210.MOZ -> TrackingCookie.Burstnet : Cleaned.
:mozilla.27:C:\RECYCLER\NPROTECT\00147216.MOZ -> TrackingCookie.Burstnet : Cleaned.
:mozilla.28:C:\RECYCLER\NPROTECT\00147186.MOZ -> TrackingCookie.Burstnet : Cleaned.
:mozilla.28:C:\RECYCLER\NPROTECT\00147209.MOZ -> TrackingCookie.Burstnet : Cleaned.
:mozilla.28:C:\RECYCLER\NPROTECT\00147210.MOZ -> TrackingCookie.Burstnet : Cleaned.
:mozilla.28:C:\RECYCLER\NPROTECT\00147216.MOZ -> TrackingCookie.Burstnet : Cleaned.
:mozilla.28:C:\RECYCLER\NPROTECT\00147222.MOZ -> TrackingCookie.Burstnet : Cleaned.
:mozilla.28:C:\RECYCLER\NPROTECT\00147227.MOZ -> TrackingCookie.Burstnet : Cleaned.
:mozilla.28:C:\RECYCLER\NPROTECT\00147232.MOZ -> TrackingCookie.Burstnet : Cleaned.
:mozilla.28:C:\RECYCLER\NPROTECT\00147233.MOZ -> TrackingCookie.Burstnet : Cleaned.
:mozilla.28:C:\RECYCLER\NPROTECT\00147238.MOZ -> TrackingCookie.Burstnet : Cleaned.
:mozilla.28:C:\RECYCLER\NPROTECT\00147240.MOZ -> TrackingCookie.Burstnet : Cleaned.
:mozilla.28:C:\RECYCLER\NPROTECT\00147241.MOZ -> TrackingCookie.Burstnet : Cleaned.
:mozilla.29:C:\RECYCLER\NPROTECT\00147187.MOZ -> TrackingCookie.Burstnet : Cleaned.
:mozilla.29:C:\RECYCLER\NPROTECT\00147222.MOZ -> TrackingCookie.Burstnet : Cleaned.
:mozilla.29:C:\RECYCLER\NPROTECT\00147227.MOZ -> TrackingCookie.Burstnet : Cleaned.
:mozilla.29:C:\RECYCLER\NPROTECT\00147232.MOZ -> TrackingCookie.Burstnet : Cleaned.
:mozilla.29:C:\RECYCLER\NPROTECT\00147233.MOZ -> TrackingCookie.Burstnet : Cleaned.
:mozilla.29:C:\RECYCLER\NPROTECT\00147238.MOZ -> TrackingCookie.Burstnet : Cleaned.
:mozilla.29:C:\RECYCLER\NPROTECT\00147240.MOZ -> TrackingCookie.Burstnet : Cleaned.
:mozilla.29:C:\RECYCLER\NPROTECT\00147241.MOZ -> TrackingCookie.Burstnet : Cleaned.
:mozilla.30:C:\RECYCLER\NPROTECT\00147302.MOZ -> TrackingCookie.Burstnet : Cleaned.
:mozilla.30:C:\RECYCLER\NPROTECT\00147315.MOZ -> TrackingCookie.Burstnet : Cleaned.
:mozilla.30:C:\RECYCLER\NPROTECT\00147320.MOZ -> TrackingCookie.Burstnet : Cleaned.
:mozilla.31:C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\dsy7wfla.default\cookies.txt -> TrackingCookie.Burstnet : Cleaned.
:mozilla.31:C:\RECYCLER\NPROTECT\00147302.MOZ -> TrackingCookie.Burstnet : Cleaned.
:mozilla.31:C:\RECYCLER\NPROTECT\00147315.MOZ -> TrackingCookie.Burstnet : Cleaned.
:mozilla.31:C:\RECYCLER\NPROTECT\00147320.MOZ -> TrackingCookie.Burstnet : Cleaned.
:mozilla.32:C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\dsy7wfla.default\cookies.txt -> TrackingCookie.Burstnet : Cleaned.
:mozilla.35:C:\RECYCLER\NPROTECT\00147522.MOZ -> TrackingCookie.Burstnet : Cleaned.
:mozilla.36:C:\RECYCLER\NPROTECT\00147522.MOZ -> TrackingCookie.Burstnet : Cleaned.
:mozilla.38:C:\RECYCLER\NPROTECT\00147198.MOZ -> TrackingCookie.Burstnet : Cleaned.
:mozilla.38:C:\RECYCLER\NPROTECT\00147203.MOZ -> TrackingCookie.Burstnet : Cleaned.
C:\RECYCLER\NPROTECT\00140831 -> TrackingCookie.Burstnet : Cleaned.
C:\RECYCLER\NPROTECT\00140833 -> TrackingCookie.Burstnet : Cleaned.
C:\Documents and Settings\user\Cookies\user@com[1].txt -> TrackingCookie.Com : Cleaned.
:mozilla.18:C:\RECYCLER\NPROTECT\00147302.MOZ -> TrackingCookie.Falkag : Cleaned.
:mozilla.18:C:\RECYCLER\NPROTECT\00147315.MOZ -> TrackingCookie.Falkag : Cleaned.
:mozilla.18:C:\RECYCLER\NPROTECT\00147320.MOZ -> TrackingCookie.Falkag : Cleaned.
:mozilla.20:C:\RECYCLER\NPROTECT\00147302.MOZ -> TrackingCookie.Falkag : Cleaned.
:mozilla.20:C:\RECYCLER\NPROTECT\00147315.MOZ -> TrackingCookie.Falkag : Cleaned.
:mozilla.20:C:\RECYCLER\NPROTECT\00147320.MOZ -> TrackingCookie.Falkag : Cleaned.
:mozilla.21:C:\RECYCLER\NPROTECT\00147302.MOZ -> TrackingCookie.Falkag : Cleaned.
:mozilla.21:C:\RECYCLER\NPROTECT\00147315.MOZ -> TrackingCookie.Falkag : Cleaned.
:mozilla.21:C:\RECYCLER\NPROTECT\00147320.MOZ -> TrackingCookie.Falkag : Cleaned.
:mozilla.22:C:\RECYCLER\NPROTECT\00147302.MOZ -> TrackingCookie.Falkag : Cleaned.
:mozilla.22:C:\RECYCLER\NPROTECT\00147315.MOZ -> TrackingCookie.Falkag : Cleaned.
:mozilla.22:C:\RECYCLER\NPROTECT\00147320.MOZ -> TrackingCookie.Falkag : Cleaned.
:mozilla.23:C:\RECYCLER\NPROTECT\00147302.MOZ -> TrackingCookie.Falkag : Cleaned.
:mozilla.23:C:\RECYCLER\NPROTECT\00147315.MOZ -> TrackingCookie.Falkag : Cleaned.
:mozilla.23:C:\RECYCLER\NPROTECT\00147320.MOZ -> TrackingCookie.Falkag : Cleaned.
:mozilla.23:C:\RECYCLER\NPROTECT\00147522.MOZ -> TrackingCookie.Falkag : Cleaned.
:mozilla.24:C:\RECYCLER\NPROTECT\00147302.MOZ -> TrackingCookie.Falkag : Cleaned.
:mozilla.24:C:\RECYCLER\NPROTECT\00147315.MOZ -> TrackingCookie.Falkag : Cleaned.
:mozilla.24:C:\RECYCLER\NPROTECT\00147320.MOZ -> TrackingCookie.Falkag : Cleaned.
:mozilla.25:C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\dsy7wfla.default\cookies.txt -> TrackingCookie.Falkag : Cleaned.
:mozilla.25:C:\RECYCLER\NPROTECT\00147522.MOZ -> TrackingCookie.Falkag : Cleaned.
:mozilla.26:C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\dsy7wfla.default\cookies.txt -> TrackingCookie.Falkag : Cleaned.
:mozilla.26:C:\RECYCLER\NPROTECT\00147522.MOZ -> TrackingCookie.Falkag : Cleaned.
:mozilla.27:C:\RECYCLER\NPROTECT\00147522.MOZ -> TrackingCookie.Falkag : Cleaned.
:mozilla.28:C:\RECYCLER\NPROTECT\00147522.MOZ -> TrackingCookie.Falkag : Cleaned.
:mozilla.29:C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\dsy7wfla.default\cookies.txt -> TrackingCookie.Falkag : Cleaned.
:mozilla.29:C:\RECYCLER\NPROTECT\00147522.MOZ -> TrackingCookie.Falkag : Cleaned.
:mozilla.30:C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\dsy7wfla.default\cookies.txt -> TrackingCookie.Falkag : Cleaned.
:mozilla.6:C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\dsy7wfla.default\cookies.txt -> TrackingCookie.Googleadservices : Cleaned.
C:\Documents and Settings\user\Cookies\user@mediaplex[1].txt -> TrackingCookie.Mediaplex : Cleaned.
C:\Documents and Settings\user\Cookies\user@perf.overture[1].txt -> TrackingCookie.Overture : Cleaned.
C:\Documents and Settings\user\Cookies\user@ads.pointroll[1].txt -> TrackingCookie.Pointroll : Cleaned.
:mozilla.10:C:\RECYCLER\NPROTECT\00147187.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.11:C:\RECYCLER\NPROTECT\00147186.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.11:C:\RECYCLER\NPROTECT\00147187.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.12:C:\RECYCLER\NPROTECT\00147186.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.13:C:\RECYCLER\NPROTECT\00147179.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.13:C:\RECYCLER\NPROTECT\00147184.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.13:C:\RECYCLER\NPROTECT\00147186.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.14:C:\RECYCLER\NPROTECT\00147179.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.14:C:\RECYCLER\NPROTECT\00147184.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.14:C:\RECYCLER\NPROTECT\00147186.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.15:C:\RECYCLER\NPROTECT\00147032.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.15:C:\RECYCLER\NPROTECT\00147179.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.15:C:\RECYCLER\NPROTECT\00147184.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.16:C:\RECYCLER\NPROTECT\00146740.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.16:C:\RECYCLER\NPROTECT\00146745.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.16:C:\RECYCLER\NPROTECT\00146874.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.16:C:\RECYCLER\NPROTECT\00147032.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.17:C:\RECYCLER\NPROTECT\00146740.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.17:C:\RECYCLER\NPROTECT\00146745.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.17:C:\RECYCLER\NPROTECT\00146874.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.18:C:\RECYCLER\NPROTECT\00146697.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.18:C:\RECYCLER\NPROTECT\00146874.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.18:C:\RECYCLER\NPROTECT\00147032.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.18:C:\RECYCLER\NPROTECT\00147204.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.18:C:\RECYCLER\NPROTECT\00147241.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.18:C:\RECYCLER\NPROTECT\00147522.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.19:C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\dsy7wfla.default\cookies.txt -> TrackingCookie.Tacoda : Cleaned.
:mozilla.19:C:\RECYCLER\NPROTECT\00146697.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.19:C:\RECYCLER\NPROTECT\00146730.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.19:C:\RECYCLER\NPROTECT\00146874.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.19:C:\RECYCLER\NPROTECT\00147241.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.19:C:\RECYCLER\NPROTECT\00147522.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.20:C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\dsy7wfla.default\cookies.txt -> TrackingCookie.Tacoda : Cleaned.
:mozilla.20:C:\RECYCLER\NPROTECT\00146697.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.20:C:\RECYCLER\NPROTECT\00146730.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.20:C:\RECYCLER\NPROTECT\00147187.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.20:C:\RECYCLER\NPROTECT\00147241.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.20:C:\RECYCLER\NPROTECT\00147522.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.21:C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\dsy7wfla.default\cookies.txt -> TrackingCookie.Tacoda : Cleaned.
:mozilla.21:C:\RECYCLER\NPROTECT\00146697.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.21:C:\RECYCLER\NPROTECT\00146730.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.21:C:\RECYCLER\NPROTECT\00146731.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.21:C:\RECYCLER\NPROTECT\00147186.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.21:C:\RECYCLER\NPROTECT\00147203.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.21:C:\RECYCLER\NPROTECT\00147204.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.21:C:\RECYCLER\NPROTECT\00147241.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.21:C:\RECYCLER\NPROTECT\00147522.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.22:C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\dsy7wfla.default\cookies.txt -> TrackingCookie.Tacoda : Cleaned.
:mozilla.22:C:\RECYCLER\NPROTECT\00146730.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.22:C:\RECYCLER\NPROTECT\00146731.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.22:C:\RECYCLER\NPROTECT\00147203.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.22:C:\RECYCLER\NPROTECT\00147204.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.22:C:\RECYCLER\NPROTECT\00147209.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.22:C:\RECYCLER\NPROTECT\00147210.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.22:C:\RECYCLER\NPROTECT\00147216.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.22:C:\RECYCLER\NPROTECT\00147238.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.22:C:\RECYCLER\NPROTECT\00147240.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.22:C:\RECYCLER\NPROTECT\00147241.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.22:C:\RECYCLER\NPROTECT\00147522.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.23:C:\RECYCLER\NPROTECT\00146731.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.23:C:\RECYCLER\NPROTECT\00146745.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.23:C:\RECYCLER\NPROTECT\00147203.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.23:C:\RECYCLER\NPROTECT\00147204.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.23:C:\RECYCLER\NPROTECT\00147209.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.23:C:\RECYCLER\NPROTECT\00147210.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.23:C:\RECYCLER\NPROTECT\00147216.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.23:C:\RECYCLER\NPROTECT\00147222.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.23:C:\RECYCLER\NPROTECT\00147227.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.23:C:\RECYCLER\NPROTECT\00147232.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.23:C:\RECYCLER\NPROTECT\00147233.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.23:C:\RECYCLER\NPROTECT\00147238.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.23:C:\RECYCLER\NPROTECT\00147240.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.24:C:\RECYCLER\NPROTECT\00146731.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.24:C:\RECYCLER\NPROTECT\00146740.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.24:C:\RECYCLER\NPROTECT\00146745.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.24:C:\RECYCLER\NPROTECT\00147203.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.24:C:\RECYCLER\NPROTECT\00147204.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.24:C:\RECYCLER\NPROTECT\00147209.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.24:C:\RECYCLER\NPROTECT\00147210.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.24:C:\RECYCLER\NPROTECT\00147216.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.24:C:\RECYCLER\NPROTECT\00147222.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.24:C:\RECYCLER\NPROTECT\00147227.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.24:C:\RECYCLER\NPROTECT\00147232.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.24:C:\RECYCLER\NPROTECT\00147233.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.24:C:\RECYCLER\NPROTECT\00147238.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.24:C:\RECYCLER\NPROTECT\00147240.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.25:C:\RECYCLER\NPROTECT\00146731.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.25:C:\RECYCLER\NPROTECT\00146740.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.25:C:\RECYCLER\NPROTECT\00146745.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.25:C:\RECYCLER\NPROTECT\00146874.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.25:C:\RECYCLER\NPROTECT\00147032.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.25:C:\RECYCLER\NPROTECT\00147209.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.25:C:\RECYCLER\NPROTECT\00147210.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.25:C:\RECYCLER\NPROTECT\00147216.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.25:C:\RECYCLER\NPROTECT\00147222.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.25:C:\RECYCLER\NPROTECT\00147227.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.25:C:\RECYCLER\NPROTECT\00147232.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.25:C:\RECYCLER\NPROTECT\00147233.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.25:C:\RECYCLER\NPROTECT\00147238.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.25:C:\RECYCLER\NPROTECT\00147240.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.26:C:\RECYCLER\NPROTECT\00146731.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.26:C:\RECYCLER\NPROTECT\00146740.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.26:C:\RECYCLER\NPROTECT\00146745.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.26:C:\RECYCLER\NPROTECT\00146874.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.26:C:\RECYCLER\NPROTECT\00147032.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.26:C:\RECYCLER\NPROTECT\00147203.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.26:C:\RECYCLER\NPROTECT\00147209.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.26:C:\RECYCLER\NPROTECT\00147210.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.26:C:\RECYCLER\NPROTECT\00147216.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.26:C:\RECYCLER\NPROTECT\00147222.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.26:C:\RECYCLER\NPROTECT\00147227.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.26:C:\RECYCLER\NPROTECT\00147232.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.26:C:\RECYCLER\NPROTECT\00147233.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.26:C:\RECYCLER\NPROTECT\00147238.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.26:C:\RECYCLER\NPROTECT\00147240.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.27:C:\RECYCLER\NPROTECT\00147179.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.27:C:\RECYCLER\NPROTECT\00147184.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.27:C:\RECYCLER\NPROTECT\00147222.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.27:C:\RECYCLER\NPROTECT\00147227.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.27:C:\RECYCLER\NPROTECT\00147232.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.27:C:\RECYCLER\NPROTECT\00147233.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.28:C:\RECYCLER\NPROTECT\00147187.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.32:C:\RECYCLER\NPROTECT\00147198.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.32:C:\RECYCLER\NPROTECT\00147302.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.32:C:\RECYCLER\NPROTECT\00147315.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.32:C:\RECYCLER\NPROTECT\00147320.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.33:C:\RECYCLER\NPROTECT\00147198.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.33:C:\RECYCLER\NPROTECT\00147302.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.33:C:\RECYCLER\NPROTECT\00147315.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.33:C:\RECYCLER\NPROTECT\00147320.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.34:C:\RECYCLER\NPROTECT\00147198.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.34:C:\RECYCLER\NPROTECT\00147302.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.34:C:\RECYCLER\NPROTECT\00147315.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.34:C:\RECYCLER\NPROTECT\00147320.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.35:C:\RECYCLER\NPROTECT\00147198.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.35:C:\RECYCLER\NPROTECT\00147302.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.35:C:\RECYCLER\NPROTECT\00147315.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.35:C:\RECYCLER\NPROTECT\00147320.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.36:C:\RECYCLER\NPROTECT\00147198.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.36:C:\RECYCLER\NPROTECT\00147302.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.36:C:\RECYCLER\NPROTECT\00147315.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.36:C:\RECYCLER\NPROTECT\00147320.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.37:C:\RECYCLER\NPROTECT\00147198.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.37:C:\RECYCLER\NPROTECT\00147203.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.39:C:\RECYCLER\NPROTECT\00147204.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.39:C:\RECYCLER\NPROTECT\00147209.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.39:C:\RECYCLER\NPROTECT\00147210.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.39:C:\RECYCLER\NPROTECT\00147216.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.40:C:\RECYCLER\NPROTECT\00147222.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.40:C:\RECYCLER\NPROTECT\00147227.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.40:C:\RECYCLER\NPROTECT\00147232.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.40:C:\RECYCLER\NPROTECT\00147233.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.40:C:\RECYCLER\NPROTECT\00147238.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.40:C:\RECYCLER\NPROTECT\00147240.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.40:C:\RECYCLER\NPROTECT\00147241.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.48:C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\dsy7wfla.default\cookies.txt -> TrackingCookie.Tacoda : Cleaned.
:mozilla.52:C:\RECYCLER\NPROTECT\00147302.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.52:C:\RECYCLER\NPROTECT\00147315.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.52:C:\RECYCLER\NPROTECT\00147320.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.52:C:\RECYCLER\NPROTECT\00147522.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.6:C:\RECYCLER\NPROTECT\00146697.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.6:C:\RECYCLER\NPROTECT\00146730.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.6:C:\RECYCLER\NPROTECT\00147179.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.6:C:\RECYCLER\NPROTECT\00147184.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.6:C:\RECYCLER\NPROTECT\00147186.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.7:C:\RECYCLER\NPROTECT\00146697.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.7:C:\RECYCLER\NPROTECT\00146730.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.7:C:\RECYCLER\NPROTECT\00146740.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.7:C:\RECYCLER\NPROTECT\00147179.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.7:C:\RECYCLER\NPROTECT\00147184.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.7:C:\RECYCLER\NPROTECT\00147187.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.9:C:\RECYCLER\NPROTECT\00147187.MOZ -> TrackingCookie.Tacoda : Cleaned.
C:\Documents and Settings\user\Cookies\user@tacoda[1].txt -> TrackingCookie.Tacoda : Cleaned.
C:\RECYCLER\NPROTECT\00140837 -> TrackingCookie.Tacoda : Cleaned.
:mozilla.10:C:\RECYCLER\NPROTECT\00146233.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.16:C:\RECYCLER\NPROTECT\00146234.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.16:C:\RECYCLER\NPROTECT\00146235.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.16:C:\RECYCLER\NPROTECT\00146241.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.16:C:\RECYCLER\NPROTECT\00146258.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.16:C:\RECYCLER\NPROTECT\00146275.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.16:C:\RECYCLER\NPROTECT\00146276.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.16:C:\RECYCLER\NPROTECT\00146282.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.16:C:\RECYCLER\NPROTECT\00146283.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.16:C:\RECYCLER\NPROTECT\00146284.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.16:C:\RECYCLER\NPROTECT\00146289.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.16:C:\RECYCLER\NPROTECT\00146306.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.16:C:\RECYCLER\NPROTECT\00146390.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.16:C:\RECYCLER\NPROTECT\00146391.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.16:C:\RECYCLER\NPROTECT\00146440.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.16:C:\RECYCLER\NPROTECT\00146452.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.16:C:\RECYCLER\NPROTECT\00146453.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.16:C:\RECYCLER\NPROTECT\00146454.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.16:C:\RECYCLER\NPROTECT\00146463.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.16:C:\RECYCLER\NPROTECT\00146643.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.17:C:\RECYCLER\NPROTECT\00146389.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.22:C:\RECYCLER\NPROTECT\00146655.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.22:C:\RECYCLER\NPROTECT\00146668.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.22:C:\RECYCLER\NPROTECT\00146686.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.22:C:\RECYCLER\NPROTECT\00146687.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.23:C:\RECYCLER\NPROTECT\00146688.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.23:C:\RECYCLER\NPROTECT\00146696.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.34:C:\RECYCLER\NPROTECT\00146697.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.34:C:\RECYCLER\NPROTECT\00146730.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.35:C:\RECYCLER\NPROTECT\00146731.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.35:C:\RECYCLER\NPROTECT\00146740.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.35:C:\RECYCLER\NPROTECT\00146745.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.35:C:\RECYCLER\NPROTECT\00146874.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.35:C:\RECYCLER\NPROTECT\00147032.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.36:C:\RECYCLER\NPROTECT\00147179.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.36:C:\RECYCLER\NPROTECT\00147184.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.38:C:\RECYCLER\NPROTECT\00147186.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.39:C:\RECYCLER\NPROTECT\00147187.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.48:C:\RECYCLER\NPROTECT\00147198.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.48:C:\RECYCLER\NPROTECT\00147203.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.49:C:\RECYCLER\NPROTECT\00147204.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.49:C:\RECYCLER\NPROTECT\00147209.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.49:C:\RECYCLER\NPROTECT\00147210.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.49:C:\RECYCLER\NPROTECT\00147216.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.50:C:\RECYCLER\NPROTECT\00147222.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.50:C:\RECYCLER\NPROTECT\00147227.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.50:C:\RECYCLER\NPROTECT\00147232.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.50:C:\RECYCLER\NPROTECT\00147233.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.50:C:\RECYCLER\NPROTECT\00147238.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.50:C:\RECYCLER\NPROTECT\00147240.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.50:C:\RECYCLER\NPROTECT\00147241.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.58:C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\dsy7wfla.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.62:C:\RECYCLER\NPROTECT\00147302.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.62:C:\RECYCLER\NPROTECT\00147315.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.62:C:\RECYCLER\NPROTECT\00147320.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.62:C:\RECYCLER\NPROTECT\00147522.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
C:\RECYCLER\NPROTECT\00140836 -> TrackingCookie.Yieldmanager : Cleaned.
::Report end
Logfile of HijackThis v1.99.1
Scan saved at 11:12:08 PM, on 1/2/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.5730.0011)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe
C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe
C:\Program Files\Common Files\Symantec Shared\ccProxy.exe
C:\Program Files\Common Files\Symantec Shared\SNDSrvc.exe
C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCSvc.exe
C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\LEXBCES.EXE
C:\WINDOWS\system32\LEXPPS.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\LVCOMSX.EXE
C:\WINDOWS\SOUNDMAN.EXE
C:\Program Files\Common Files\AOL\ACS\AOLAcsd.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
C:\Program Files\Common Files\Symantec Shared\ccApp.exe
C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0\avp.exe
C:\Program Files\Common Files\AOL\TopSpeed\2.0\aoltsmon.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
C:\Program Files\Microsoft Office\Office\MSOFFICE.EXE
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0\avp.exe
C:\Program Files\Norton SystemWorks\Norton GoBack\GBPoll.exe
C:\Program Files\Norton SystemWorks\Norton AntiVirus\IWP\NPFMntor.exe
C:\PROGRA~1\NORTON~1\NORTON~3\NPROTECT.EXE
C:\WINDOWS\System32\nvsvc32.exe
C:\Program Files\RemotelyAnywhere\RaMaint.exe
C:\Program Files\RemotelyAnywhere\RemotelyAnywhere.exe
C:\PROGRA~1\NORTON~1\NORTON~3\SPEEDD~1\NOPDB.EXE
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\wanmpsvc.exe
C:\Program Files\RemotelyAnywhere\RAGui.exe
C:\Program Files\Linksys Wireless-G PCI Wireless Network Monitor\WLService.exe
C:\Program Files\Linksys Wireless-G PCI Wireless Network Monitor\WMP54Gv4.exe
C:\Program Files\Common Files\Symantec Shared\Security Console\NSCSRVCE.EXE
C:\TEMP\Highjack This\hijackthis\HijackThis.exe
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft....k/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft....k/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft....k/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft....k/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://www.emachines.com/
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Microsoft Internet Explorer provided by Comcast
F2 - REG:system.ini: UserInit=C:\WINDOWS\System32\Userinit.exe
O2 - BHO: (no name) - SOFTWARE - (no file)
O2 - BHO: (no name) - {00000000-6CB0-410C-8C3D-8FA8D2011D0A} - (no file)
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: NAV Helper - {A8F38D8D-E480-4D52-B7A2-731BB6995FDD} - C:\Program Files\Norton SystemWorks\Norton AntiVirus\NavShExt.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll
O3 - Toolbar: AOL Toolbar - {4982D40A-C53B-4615-B15B-B5B5E98D167C} - C:\Program Files\AOL Toolbar\toolbar.dll
O3 - Toolbar: Norton AntiVirus - {C4069E3A-68F1-403E-B40E-20066696354B} - C:\Program Files\Norton SystemWorks\Norton AntiVirus\NavShExt.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll
O4 - HKLM\..\Run: [EM_EXEC] C:\PROGRA~1\Logitech\MOUSEW~1\SYSTEM\EM_EXEC.EXE
O4 - HKLM\..\Run: [LVCOMSX] C:\WINDOWS\system32\LVCOMSX.EXE
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Common Files\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [AVP] "C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0\avp.exe"
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [AOL Fast Start] "C:\Program Files\America Online 9.0c\AOL.EXE" -b
O4 - HKCU\..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
O4 - Startup: Microsoft Office Shortcut Bar.lnk = C:\Program Files\Microsoft Office\Office\MSOFFICE.EXE
O8 - Extra context menu item: &AOL Toolbar search - res://C:\Program Files\AOL Toolbar\toolbar.dll/SEARCH.HTML
O9 - Extra button: Web Anti-Virus - {1F460357-8A94-4D71-9CA3-AA4ACF32ED8E} - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0\sciep
. Log report is 25mb ??? Seems only thing it found really was in Norton quarantine. Other scans run and reports follows:---------------------------------------------------------
AVG Anti-Spyware - Scan Report
---------------------------------------------------------
+ Created at: 6:35:51 PM 1/2/2007
+ Scan result:
C:\RECYCLER\NPROTECT\00140832 -> Adware.BargainBuddy : Cleaned.
C:\RECYCLER\NPROTECT\00140839.DLL -> Adware.BargainBuddy : Cleaned.
C:\RECYCLER\NPROTECT\00140838 -> Adware.BrowsePal : Cleaned.
C:\RECYCLER\NPROTECT\00140840.DLL -> Adware.BrowsePal : Cleaned.
C:\WINDOWS\system32\OMsetup.exe -> Adware.ClientMan : Cleaned.
C:\RECYCLER\NPROTECT\00000876.exe -> Adware.EZula : Cleaned.
C:\WINDOWS\system32\CometTB.exe -> Adware.EZula : Cleaned.
C:\RECYCLER\NPROTECT\00140835 -> Adware.F1Organizer : Cleaned.
C:\RECYCLER\NPROTECT\00140841.EXE -> Adware.F1Organizer : Cleaned.
C:\WINDOWS\system32\szla2.exe -> Adware.F1Organizer : Cleaned.
C:\Program Files\WebSavingsfromEbates -> Adware.MoneyMaker : Cleaned.
C:\Program Files\WebSavingsfromEbates\ApplicationData -> Adware.MoneyMaker : Cleaned.
C:\Program Files\WebSavingsfromEbates\ApplicationData\Administrator -> Adware.MoneyMaker : Cleaned.
C:\Program Files\WebSavingsfromEbates\ApplicationData\Administrator\ebateswebsavingsdr0data.dls -> Adware.MoneyMaker : Cleaned.
C:\Program Files\WebSavingsfromEbates\ApplicationData\Administrator\ebateswebsavingsdrdata.dls -> Adware.MoneyMaker : Cleaned.
C:\Program Files\WebSavingsfromEbates\ApplicationData\merchants.dls -> Adware.MoneyMaker : Cleaned.
C:\Program Files\WebSavingsfromEbates\ApplicationData\user -> Adware.MoneyMaker : Cleaned.
C:\Program Files\WebSavingsfromEbates\ApplicationData\user\dataexcludeebateswebsavingsdrsaved.dls -> Adware.MoneyMaker : Cleaned.
C:\Program Files\WebSavingsfromEbates\ApplicationData\user\ebateswebsavingsdr0data.dls -> Adware.MoneyMaker : Cleaned.
C:\Program Files\WebSavingsfromEbates\ApplicationData\user\ebateswebsavingsdrdata.dls -> Adware.MoneyMaker : Cleaned.
C:\Program Files\WebSavingsfromEbates\Applications -> Adware.MoneyMaker : Cleaned.
C:\Program Files\WebSavingsfromEbates\Applications\ebatesdatamerchCust.dls -> Adware.MoneyMaker : Cleaned.
C:\Program Files\WebSavingsfromEbates\Applications\websavingsdrupdater.dls -> Adware.MoneyMaker : Cleaned.
C:\Program Files\WebSavingsfromEbates\System -> Adware.MoneyMaker : Cleaned.
C:\Program Files\WebSavingsfromEbates\System\Html -> Adware.MoneyMaker : Cleaned.
C:\Program Files\WebSavingsfromEbates\System\Images -> Adware.MoneyMaker : Cleaned.
C:\Program Files\WebSavingsfromEbates\System\MTemp -> Adware.MoneyMaker : Cleaned.
C:\Program Files\WebSavingsfromEbates\System\MTemp\logfile.txt -> Adware.MoneyMaker : Cleaned.
C:\Program Files\WebSavingsfromEbates\System\System -> Adware.MoneyMaker : Cleaned.
C:\Program Files\WebSavingsfromEbates\System\Temp -> Adware.MoneyMaker : Cleaned.
C:\Program Files\WebSavingsfromEbates\System\Temp\dump.txt -> Adware.MoneyMaker : Cleaned.
C:\Program Files\WebSavingsfromEbates\System\Temp\ebateswebsavings_confirmredir0.htm -> Adware.MoneyMaker : Cleaned.
C:\Program Files\WebSavingsfromEbates\System\Temp\ebateswebsavings_confirmredir0_wo.htm -> Adware.MoneyMaker : Cleaned.
C:\Program Files\WebSavingsfromEbates\System\Temp\ebateswebsavings_preferences0.htm -> Adware.MoneyMaker : Cleaned.
C:\Program Files\WebSavingsfromEbates\System\Temp\ebateswebsavings_preferences0_wo.htm -> Adware.MoneyMaker : Cleaned.
C:\Program Files\WebSavingsfromEbates\System\Temp\ebateswebsavings_script0.htm -> Adware.MoneyMaker : Cleaned.
C:\Program Files\WebSavingsfromEbates\System\Temp\ebateswebsavings_script0_wo.htm -> Adware.MoneyMaker : Cleaned.
C:\Program Files\WebSavingsfromEbates\WebSavings_README.txt -> Adware.MoneyMaker : Cleaned.
C:\Program Files\WebSavingsfromEbates\websearch_dr.exe -> Adware.MoneyMaker : Cleaned.
C:\Documents and Settings\All Users\Application Data\AOL\UserProfiles\All Users\antiSpyware\dat\Quarantine\20051103040040.zip/WINDOWS/NDNuninstall4_50-1.exe -> Adware.NewDotNet : Cleaned.
C:\Documents and Settings\All Users\Application Data\AOL\UserProfiles\All Users\antiSpyware\dat\Quarantine\20051103040040.zip/WINDOWS/NDNuninstall4_80.exe -> Adware.NewDotNet : Cleaned.
C:\Documents and Settings\All Users\Application Data\AOL\UserProfiles\All Users\antiSpyware\dat\Quarantine\20051103040040.zip/WINDOWS/NDNuninstall4_88.exe -> Adware.NewDotNet : Cleaned.
C:\Documents and Settings\All Users\Application Data\AOL\UserProfiles\All Users\antiSpyware\dat\Quarantine\20051103040040.zip/WINDOWS/NDNuninstall4_94.exe -> Adware.NewDotNet : Cleaned.
C:\WINDOWS\system32\SHAgent.dll -> Adware.Sahat : Cleaned.
C:\WINDOWS\system32\ctbv2.dll -> Adware.Sahat : Cleaned.
C:\WINDOWS\system32\actskn45.ocx -> Downloader.IstBar : Cleaned.
C:\Documents and Settings\user\Cookies\user@2o7[2].txt -> TrackingCookie.2o7 : Cleaned.
C:\Documents and Settings\user\Cookies\user@msnportal.112.2o7[1].txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.10:C:\RECYCLER\NPROTECT\00147198.MOZ -> TrackingCookie.Adbrite : Cleaned.
:mozilla.11:C:\RECYCLER\NPROTECT\00147198.MOZ -> TrackingCookie.Adbrite : Cleaned.
:mozilla.12:C:\RECYCLER\NPROTECT\00147198.MOZ -> TrackingCookie.Adbrite : Cleaned.
:mozilla.31:C:\RECYCLER\NPROTECT\00147203.MOZ -> TrackingCookie.Adbrite : Cleaned.
:mozilla.32:C:\RECYCLER\NPROTECT\00147203.MOZ -> TrackingCookie.Adbrite : Cleaned.
:mozilla.33:C:\RECYCLER\NPROTECT\00147203.MOZ -> TrackingCookie.Adbrite : Cleaned.
:mozilla.33:C:\RECYCLER\NPROTECT\00147204.MOZ -> TrackingCookie.Adbrite : Cleaned.
:mozilla.33:C:\RECYCLER\NPROTECT\00147209.MOZ -> TrackingCookie.Adbrite : Cleaned.
:mozilla.33:C:\RECYCLER\NPROTECT\00147210.MOZ -> TrackingCookie.Adbrite : Cleaned.
:mozilla.33:C:\RECYCLER\NPROTECT\00147216.MOZ -> TrackingCookie.Adbrite : Cleaned.
:mozilla.34:C:\RECYCLER\NPROTECT\00147204.MOZ -> TrackingCookie.Adbrite : Cleaned.
:mozilla.34:C:\RECYCLER\NPROTECT\00147209.MOZ -> TrackingCookie.Adbrite : Cleaned.
:mozilla.34:C:\RECYCLER\NPROTECT\00147210.MOZ -> TrackingCookie.Adbrite : Cleaned.
:mozilla.34:C:\RECYCLER\NPROTECT\00147216.MOZ -> TrackingCookie.Adbrite : Cleaned.
:mozilla.34:C:\RECYCLER\NPROTECT\00147222.MOZ -> TrackingCookie.Adbrite : Cleaned.
:mozilla.34:C:\RECYCLER\NPROTECT\00147227.MOZ -> TrackingCookie.Adbrite : Cleaned.
:mozilla.34:C:\RECYCLER\NPROTECT\00147232.MOZ -> TrackingCookie.Adbrite : Cleaned.
:mozilla.34:C:\RECYCLER\NPROTECT\00147233.MOZ -> TrackingCookie.Adbrite : Cleaned.
:mozilla.34:C:\RECYCLER\NPROTECT\00147238.MOZ -> TrackingCookie.Adbrite : Cleaned.
:mozilla.34:C:\RECYCLER\NPROTECT\00147240.MOZ -> TrackingCookie.Adbrite : Cleaned.
:mozilla.34:C:\RECYCLER\NPROTECT\00147241.MOZ -> TrackingCookie.Adbrite : Cleaned.
:mozilla.35:C:\RECYCLER\NPROTECT\00147204.MOZ -> TrackingCookie.Adbrite : Cleaned.
:mozilla.35:C:\RECYCLER\NPROTECT\00147209.MOZ -> TrackingCookie.Adbrite : Cleaned.
:mozilla.35:C:\RECYCLER\NPROTECT\00147210.MOZ -> TrackingCookie.Adbrite : Cleaned.
:mozilla.35:C:\RECYCLER\NPROTECT\00147216.MOZ -> TrackingCookie.Adbrite : Cleaned.
:mozilla.35:C:\RECYCLER\NPROTECT\00147222.MOZ -> TrackingCookie.Adbrite : Cleaned.
:mozilla.35:C:\RECYCLER\NPROTECT\00147227.MOZ -> TrackingCookie.Adbrite : Cleaned.
:mozilla.35:C:\RECYCLER\NPROTECT\00147232.MOZ -> TrackingCookie.Adbrite : Cleaned.
:mozilla.35:C:\RECYCLER\NPROTECT\00147233.MOZ -> TrackingCookie.Adbrite : Cleaned.
:mozilla.35:C:\RECYCLER\NPROTECT\00147238.MOZ -> TrackingCookie.Adbrite : Cleaned.
:mozilla.35:C:\RECYCLER\NPROTECT\00147240.MOZ -> TrackingCookie.Adbrite : Cleaned.
:mozilla.35:C:\RECYCLER\NPROTECT\00147241.MOZ -> TrackingCookie.Adbrite : Cleaned.
:mozilla.36:C:\RECYCLER\NPROTECT\00147222.MOZ -> TrackingCookie.Adbrite : Cleaned.
:mozilla.36:C:\RECYCLER\NPROTECT\00147227.MOZ -> TrackingCookie.Adbrite : Cleaned.
:mozilla.36:C:\RECYCLER\NPROTECT\00147232.MOZ -> TrackingCookie.Adbrite : Cleaned.
:mozilla.36:C:\RECYCLER\NPROTECT\00147233.MOZ -> TrackingCookie.Adbrite : Cleaned.
:mozilla.36:C:\RECYCLER\NPROTECT\00147238.MOZ -> TrackingCookie.Adbrite : Cleaned.
:mozilla.36:C:\RECYCLER\NPROTECT\00147240.MOZ -> TrackingCookie.Adbrite : Cleaned.
:mozilla.36:C:\RECYCLER\NPROTECT\00147241.MOZ -> TrackingCookie.Adbrite : Cleaned.
:mozilla.42:C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\dsy7wfla.default\cookies.txt -> TrackingCookie.Adbrite : Cleaned.
:mozilla.43:C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\dsy7wfla.default\cookies.txt -> TrackingCookie.Adbrite : Cleaned.
:mozilla.44:C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\dsy7wfla.default\cookies.txt -> TrackingCookie.Adbrite : Cleaned.
:mozilla.46:C:\RECYCLER\NPROTECT\00147302.MOZ -> TrackingCookie.Adbrite : Cleaned.
:mozilla.46:C:\RECYCLER\NPROTECT\00147315.MOZ -> TrackingCookie.Adbrite : Cleaned.
:mozilla.46:C:\RECYCLER\NPROTECT\00147320.MOZ -> TrackingCookie.Adbrite : Cleaned.
:mozilla.46:C:\RECYCLER\NPROTECT\00147522.MOZ -> TrackingCookie.Adbrite : Cleaned.
:mozilla.47:C:\RECYCLER\NPROTECT\00147302.MOZ -> TrackingCookie.Adbrite : Cleaned.
:mozilla.47:C:\RECYCLER\NPROTECT\00147315.MOZ -> TrackingCookie.Adbrite : Cleaned.
:mozilla.47:C:\RECYCLER\NPROTECT\00147320.MOZ -> TrackingCookie.Adbrite : Cleaned.
:mozilla.47:C:\RECYCLER\NPROTECT\00147522.MOZ -> TrackingCookie.Adbrite : Cleaned.
:mozilla.48:C:\RECYCLER\NPROTECT\00147302.MOZ -> TrackingCookie.Adbrite : Cleaned.
:mozilla.48:C:\RECYCLER\NPROTECT\00147315.MOZ -> TrackingCookie.Adbrite : Cleaned.
:mozilla.48:C:\RECYCLER\NPROTECT\00147320.MOZ -> TrackingCookie.Adbrite : Cleaned.
:mozilla.48:C:\RECYCLER\NPROTECT\00147522.MOZ -> TrackingCookie.Adbrite : Cleaned.
:mozilla.10:C:\RECYCLER\NPROTECT\00146234.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.10:C:\RECYCLER\NPROTECT\00146235.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.10:C:\RECYCLER\NPROTECT\00146241.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.10:C:\RECYCLER\NPROTECT\00146258.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.10:C:\RECYCLER\NPROTECT\00146275.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.11:C:\RECYCLER\NPROTECT\00146234.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.11:C:\RECYCLER\NPROTECT\00146235.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.11:C:\RECYCLER\NPROTECT\00146241.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.11:C:\RECYCLER\NPROTECT\00146258.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.11:C:\RECYCLER\NPROTECT\00146275.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.11:C:\RECYCLER\NPROTECT\00146276.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.11:C:\RECYCLER\NPROTECT\00146282.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.11:C:\RECYCLER\NPROTECT\00146283.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.11:C:\RECYCLER\NPROTECT\00146284.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.11:C:\RECYCLER\NPROTECT\00146289.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.11:C:\RECYCLER\NPROTECT\00146306.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.11:C:\RECYCLER\NPROTECT\00146390.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.11:C:\RECYCLER\NPROTECT\00146391.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.11:C:\RECYCLER\NPROTECT\00146440.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.11:C:\RECYCLER\NPROTECT\00146452.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.11:C:\RECYCLER\NPROTECT\00146453.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.11:C:\RECYCLER\NPROTECT\00146454.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.11:C:\RECYCLER\NPROTECT\00146463.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.11:C:\RECYCLER\NPROTECT\00146643.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.12:C:\RECYCLER\NPROTECT\00146389.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.13:C:\RECYCLER\NPROTECT\00146452.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.13:C:\RECYCLER\NPROTECT\00146453.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.13:C:\RECYCLER\NPROTECT\00146454.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.13:C:\RECYCLER\NPROTECT\00146463.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.13:C:\RECYCLER\NPROTECT\00146643.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.14:C:\RECYCLER\NPROTECT\00146276.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.14:C:\RECYCLER\NPROTECT\00146282.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.14:C:\RECYCLER\NPROTECT\00146283.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.14:C:\RECYCLER\NPROTECT\00146284.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.14:C:\RECYCLER\NPROTECT\00146289.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.14:C:\RECYCLER\NPROTECT\00146306.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.14:C:\RECYCLER\NPROTECT\00146389.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.14:C:\RECYCLER\NPROTECT\00146390.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.14:C:\RECYCLER\NPROTECT\00146391.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.14:C:\RECYCLER\NPROTECT\00146440.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.16:C:\RECYCLER\NPROTECT\00146655.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.16:C:\RECYCLER\NPROTECT\00146668.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.16:C:\RECYCLER\NPROTECT\00146686.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.16:C:\RECYCLER\NPROTECT\00146687.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.17:C:\RECYCLER\NPROTECT\00146688.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.17:C:\RECYCLER\NPROTECT\00146696.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.20:C:\RECYCLER\NPROTECT\00146655.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.20:C:\RECYCLER\NPROTECT\00146668.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.20:C:\RECYCLER\NPROTECT\00146686.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.20:C:\RECYCLER\NPROTECT\00146687.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.21:C:\RECYCLER\NPROTECT\00146688.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.21:C:\RECYCLER\NPROTECT\00146696.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.28:C:\RECYCLER\NPROTECT\00146697.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.28:C:\RECYCLER\NPROTECT\00146730.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.32:C:\RECYCLER\NPROTECT\00146697.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.32:C:\RECYCLER\NPROTECT\00146730.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.32:C:\RECYCLER\NPROTECT\00146731.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.32:C:\RECYCLER\NPROTECT\00146740.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.32:C:\RECYCLER\NPROTECT\00146745.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.32:C:\RECYCLER\NPROTECT\00146874.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.32:C:\RECYCLER\NPROTECT\00147032.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.33:C:\RECYCLER\NPROTECT\00146731.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.33:C:\RECYCLER\NPROTECT\00146740.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.33:C:\RECYCLER\NPROTECT\00146745.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.33:C:\RECYCLER\NPROTECT\00146874.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.33:C:\RECYCLER\NPROTECT\00147032.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.33:C:\RECYCLER\NPROTECT\00147179.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.33:C:\RECYCLER\NPROTECT\00147184.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.34:C:\RECYCLER\NPROTECT\00147179.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.34:C:\RECYCLER\NPROTECT\00147184.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.35:C:\RECYCLER\NPROTECT\00147186.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.36:C:\RECYCLER\NPROTECT\00147186.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.36:C:\RECYCLER\NPROTECT\00147187.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.37:C:\RECYCLER\NPROTECT\00147187.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.45:C:\RECYCLER\NPROTECT\00147198.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.45:C:\RECYCLER\NPROTECT\00147203.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.46:C:\RECYCLER\NPROTECT\00147198.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.46:C:\RECYCLER\NPROTECT\00147203.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.46:C:\RECYCLER\NPROTECT\00147204.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.46:C:\RECYCLER\NPROTECT\00147209.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.46:C:\RECYCLER\NPROTECT\00147210.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.46:C:\RECYCLER\NPROTECT\00147216.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.47:C:\RECYCLER\NPROTECT\00147204.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.47:C:\RECYCLER\NPROTECT\00147209.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.47:C:\RECYCLER\NPROTECT\00147210.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.47:C:\RECYCLER\NPROTECT\00147216.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.47:C:\RECYCLER\NPROTECT\00147222.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.47:C:\RECYCLER\NPROTECT\00147227.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.47:C:\RECYCLER\NPROTECT\00147232.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.47:C:\RECYCLER\NPROTECT\00147233.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.47:C:\RECYCLER\NPROTECT\00147238.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.47:C:\RECYCLER\NPROTECT\00147240.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.47:C:\RECYCLER\NPROTECT\00147241.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.48:C:\RECYCLER\NPROTECT\00147222.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.48:C:\RECYCLER\NPROTECT\00147227.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.48:C:\RECYCLER\NPROTECT\00147232.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.48:C:\RECYCLER\NPROTECT\00147233.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.48:C:\RECYCLER\NPROTECT\00147238.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.48:C:\RECYCLER\NPROTECT\00147240.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.48:C:\RECYCLER\NPROTECT\00147241.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.55:C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\dsy7wfla.default\cookies.txt -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.56:C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\dsy7wfla.default\cookies.txt -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.59:C:\RECYCLER\NPROTECT\00147302.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.59:C:\RECYCLER\NPROTECT\00147315.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.59:C:\RECYCLER\NPROTECT\00147320.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.59:C:\RECYCLER\NPROTECT\00147522.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.60:C:\RECYCLER\NPROTECT\00147302.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.60:C:\RECYCLER\NPROTECT\00147315.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.60:C:\RECYCLER\NPROTECT\00147320.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.60:C:\RECYCLER\NPROTECT\00147522.MOZ -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.19:C:\RECYCLER\NPROTECT\00147204.MOZ -> TrackingCookie.Burstnet : Cleaned.
:mozilla.20:C:\RECYCLER\NPROTECT\00147204.MOZ -> TrackingCookie.Burstnet : Cleaned.
:mozilla.27:C:\RECYCLER\NPROTECT\00147209.MOZ -> TrackingCookie.Burstnet : Cleaned.
:mozilla.27:C:\RECYCLER\NPROTECT\00147210.MOZ -> TrackingCookie.Burstnet : Cleaned.
:mozilla.27:C:\RECYCLER\NPROTECT\00147216.MOZ -> TrackingCookie.Burstnet : Cleaned.
:mozilla.28:C:\RECYCLER\NPROTECT\00147186.MOZ -> TrackingCookie.Burstnet : Cleaned.
:mozilla.28:C:\RECYCLER\NPROTECT\00147209.MOZ -> TrackingCookie.Burstnet : Cleaned.
:mozilla.28:C:\RECYCLER\NPROTECT\00147210.MOZ -> TrackingCookie.Burstnet : Cleaned.
:mozilla.28:C:\RECYCLER\NPROTECT\00147216.MOZ -> TrackingCookie.Burstnet : Cleaned.
:mozilla.28:C:\RECYCLER\NPROTECT\00147222.MOZ -> TrackingCookie.Burstnet : Cleaned.
:mozilla.28:C:\RECYCLER\NPROTECT\00147227.MOZ -> TrackingCookie.Burstnet : Cleaned.
:mozilla.28:C:\RECYCLER\NPROTECT\00147232.MOZ -> TrackingCookie.Burstnet : Cleaned.
:mozilla.28:C:\RECYCLER\NPROTECT\00147233.MOZ -> TrackingCookie.Burstnet : Cleaned.
:mozilla.28:C:\RECYCLER\NPROTECT\00147238.MOZ -> TrackingCookie.Burstnet : Cleaned.
:mozilla.28:C:\RECYCLER\NPROTECT\00147240.MOZ -> TrackingCookie.Burstnet : Cleaned.
:mozilla.28:C:\RECYCLER\NPROTECT\00147241.MOZ -> TrackingCookie.Burstnet : Cleaned.
:mozilla.29:C:\RECYCLER\NPROTECT\00147187.MOZ -> TrackingCookie.Burstnet : Cleaned.
:mozilla.29:C:\RECYCLER\NPROTECT\00147222.MOZ -> TrackingCookie.Burstnet : Cleaned.
:mozilla.29:C:\RECYCLER\NPROTECT\00147227.MOZ -> TrackingCookie.Burstnet : Cleaned.
:mozilla.29:C:\RECYCLER\NPROTECT\00147232.MOZ -> TrackingCookie.Burstnet : Cleaned.
:mozilla.29:C:\RECYCLER\NPROTECT\00147233.MOZ -> TrackingCookie.Burstnet : Cleaned.
:mozilla.29:C:\RECYCLER\NPROTECT\00147238.MOZ -> TrackingCookie.Burstnet : Cleaned.
:mozilla.29:C:\RECYCLER\NPROTECT\00147240.MOZ -> TrackingCookie.Burstnet : Cleaned.
:mozilla.29:C:\RECYCLER\NPROTECT\00147241.MOZ -> TrackingCookie.Burstnet : Cleaned.
:mozilla.30:C:\RECYCLER\NPROTECT\00147302.MOZ -> TrackingCookie.Burstnet : Cleaned.
:mozilla.30:C:\RECYCLER\NPROTECT\00147315.MOZ -> TrackingCookie.Burstnet : Cleaned.
:mozilla.30:C:\RECYCLER\NPROTECT\00147320.MOZ -> TrackingCookie.Burstnet : Cleaned.
:mozilla.31:C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\dsy7wfla.default\cookies.txt -> TrackingCookie.Burstnet : Cleaned.
:mozilla.31:C:\RECYCLER\NPROTECT\00147302.MOZ -> TrackingCookie.Burstnet : Cleaned.
:mozilla.31:C:\RECYCLER\NPROTECT\00147315.MOZ -> TrackingCookie.Burstnet : Cleaned.
:mozilla.31:C:\RECYCLER\NPROTECT\00147320.MOZ -> TrackingCookie.Burstnet : Cleaned.
:mozilla.32:C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\dsy7wfla.default\cookies.txt -> TrackingCookie.Burstnet : Cleaned.
:mozilla.35:C:\RECYCLER\NPROTECT\00147522.MOZ -> TrackingCookie.Burstnet : Cleaned.
:mozilla.36:C:\RECYCLER\NPROTECT\00147522.MOZ -> TrackingCookie.Burstnet : Cleaned.
:mozilla.38:C:\RECYCLER\NPROTECT\00147198.MOZ -> TrackingCookie.Burstnet : Cleaned.
:mozilla.38:C:\RECYCLER\NPROTECT\00147203.MOZ -> TrackingCookie.Burstnet : Cleaned.
C:\RECYCLER\NPROTECT\00140831 -> TrackingCookie.Burstnet : Cleaned.
C:\RECYCLER\NPROTECT\00140833 -> TrackingCookie.Burstnet : Cleaned.
C:\Documents and Settings\user\Cookies\user@com[1].txt -> TrackingCookie.Com : Cleaned.
:mozilla.18:C:\RECYCLER\NPROTECT\00147302.MOZ -> TrackingCookie.Falkag : Cleaned.
:mozilla.18:C:\RECYCLER\NPROTECT\00147315.MOZ -> TrackingCookie.Falkag : Cleaned.
:mozilla.18:C:\RECYCLER\NPROTECT\00147320.MOZ -> TrackingCookie.Falkag : Cleaned.
:mozilla.20:C:\RECYCLER\NPROTECT\00147302.MOZ -> TrackingCookie.Falkag : Cleaned.
:mozilla.20:C:\RECYCLER\NPROTECT\00147315.MOZ -> TrackingCookie.Falkag : Cleaned.
:mozilla.20:C:\RECYCLER\NPROTECT\00147320.MOZ -> TrackingCookie.Falkag : Cleaned.
:mozilla.21:C:\RECYCLER\NPROTECT\00147302.MOZ -> TrackingCookie.Falkag : Cleaned.
:mozilla.21:C:\RECYCLER\NPROTECT\00147315.MOZ -> TrackingCookie.Falkag : Cleaned.
:mozilla.21:C:\RECYCLER\NPROTECT\00147320.MOZ -> TrackingCookie.Falkag : Cleaned.
:mozilla.22:C:\RECYCLER\NPROTECT\00147302.MOZ -> TrackingCookie.Falkag : Cleaned.
:mozilla.22:C:\RECYCLER\NPROTECT\00147315.MOZ -> TrackingCookie.Falkag : Cleaned.
:mozilla.22:C:\RECYCLER\NPROTECT\00147320.MOZ -> TrackingCookie.Falkag : Cleaned.
:mozilla.23:C:\RECYCLER\NPROTECT\00147302.MOZ -> TrackingCookie.Falkag : Cleaned.
:mozilla.23:C:\RECYCLER\NPROTECT\00147315.MOZ -> TrackingCookie.Falkag : Cleaned.
:mozilla.23:C:\RECYCLER\NPROTECT\00147320.MOZ -> TrackingCookie.Falkag : Cleaned.
:mozilla.23:C:\RECYCLER\NPROTECT\00147522.MOZ -> TrackingCookie.Falkag : Cleaned.
:mozilla.24:C:\RECYCLER\NPROTECT\00147302.MOZ -> TrackingCookie.Falkag : Cleaned.
:mozilla.24:C:\RECYCLER\NPROTECT\00147315.MOZ -> TrackingCookie.Falkag : Cleaned.
:mozilla.24:C:\RECYCLER\NPROTECT\00147320.MOZ -> TrackingCookie.Falkag : Cleaned.
:mozilla.25:C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\dsy7wfla.default\cookies.txt -> TrackingCookie.Falkag : Cleaned.
:mozilla.25:C:\RECYCLER\NPROTECT\00147522.MOZ -> TrackingCookie.Falkag : Cleaned.
:mozilla.26:C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\dsy7wfla.default\cookies.txt -> TrackingCookie.Falkag : Cleaned.
:mozilla.26:C:\RECYCLER\NPROTECT\00147522.MOZ -> TrackingCookie.Falkag : Cleaned.
:mozilla.27:C:\RECYCLER\NPROTECT\00147522.MOZ -> TrackingCookie.Falkag : Cleaned.
:mozilla.28:C:\RECYCLER\NPROTECT\00147522.MOZ -> TrackingCookie.Falkag : Cleaned.
:mozilla.29:C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\dsy7wfla.default\cookies.txt -> TrackingCookie.Falkag : Cleaned.
:mozilla.29:C:\RECYCLER\NPROTECT\00147522.MOZ -> TrackingCookie.Falkag : Cleaned.
:mozilla.30:C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\dsy7wfla.default\cookies.txt -> TrackingCookie.Falkag : Cleaned.
:mozilla.6:C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\dsy7wfla.default\cookies.txt -> TrackingCookie.Googleadservices : Cleaned.
C:\Documents and Settings\user\Cookies\user@mediaplex[1].txt -> TrackingCookie.Mediaplex : Cleaned.
C:\Documents and Settings\user\Cookies\user@perf.overture[1].txt -> TrackingCookie.Overture : Cleaned.
C:\Documents and Settings\user\Cookies\user@ads.pointroll[1].txt -> TrackingCookie.Pointroll : Cleaned.
:mozilla.10:C:\RECYCLER\NPROTECT\00147187.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.11:C:\RECYCLER\NPROTECT\00147186.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.11:C:\RECYCLER\NPROTECT\00147187.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.12:C:\RECYCLER\NPROTECT\00147186.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.13:C:\RECYCLER\NPROTECT\00147179.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.13:C:\RECYCLER\NPROTECT\00147184.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.13:C:\RECYCLER\NPROTECT\00147186.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.14:C:\RECYCLER\NPROTECT\00147179.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.14:C:\RECYCLER\NPROTECT\00147184.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.14:C:\RECYCLER\NPROTECT\00147186.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.15:C:\RECYCLER\NPROTECT\00147032.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.15:C:\RECYCLER\NPROTECT\00147179.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.15:C:\RECYCLER\NPROTECT\00147184.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.16:C:\RECYCLER\NPROTECT\00146740.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.16:C:\RECYCLER\NPROTECT\00146745.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.16:C:\RECYCLER\NPROTECT\00146874.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.16:C:\RECYCLER\NPROTECT\00147032.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.17:C:\RECYCLER\NPROTECT\00146740.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.17:C:\RECYCLER\NPROTECT\00146745.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.17:C:\RECYCLER\NPROTECT\00146874.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.18:C:\RECYCLER\NPROTECT\00146697.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.18:C:\RECYCLER\NPROTECT\00146874.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.18:C:\RECYCLER\NPROTECT\00147032.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.18:C:\RECYCLER\NPROTECT\00147204.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.18:C:\RECYCLER\NPROTECT\00147241.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.18:C:\RECYCLER\NPROTECT\00147522.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.19:C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\dsy7wfla.default\cookies.txt -> TrackingCookie.Tacoda : Cleaned.
:mozilla.19:C:\RECYCLER\NPROTECT\00146697.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.19:C:\RECYCLER\NPROTECT\00146730.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.19:C:\RECYCLER\NPROTECT\00146874.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.19:C:\RECYCLER\NPROTECT\00147241.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.19:C:\RECYCLER\NPROTECT\00147522.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.20:C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\dsy7wfla.default\cookies.txt -> TrackingCookie.Tacoda : Cleaned.
:mozilla.20:C:\RECYCLER\NPROTECT\00146697.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.20:C:\RECYCLER\NPROTECT\00146730.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.20:C:\RECYCLER\NPROTECT\00147187.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.20:C:\RECYCLER\NPROTECT\00147241.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.20:C:\RECYCLER\NPROTECT\00147522.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.21:C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\dsy7wfla.default\cookies.txt -> TrackingCookie.Tacoda : Cleaned.
:mozilla.21:C:\RECYCLER\NPROTECT\00146697.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.21:C:\RECYCLER\NPROTECT\00146730.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.21:C:\RECYCLER\NPROTECT\00146731.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.21:C:\RECYCLER\NPROTECT\00147186.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.21:C:\RECYCLER\NPROTECT\00147203.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.21:C:\RECYCLER\NPROTECT\00147204.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.21:C:\RECYCLER\NPROTECT\00147241.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.21:C:\RECYCLER\NPROTECT\00147522.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.22:C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\dsy7wfla.default\cookies.txt -> TrackingCookie.Tacoda : Cleaned.
:mozilla.22:C:\RECYCLER\NPROTECT\00146730.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.22:C:\RECYCLER\NPROTECT\00146731.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.22:C:\RECYCLER\NPROTECT\00147203.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.22:C:\RECYCLER\NPROTECT\00147204.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.22:C:\RECYCLER\NPROTECT\00147209.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.22:C:\RECYCLER\NPROTECT\00147210.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.22:C:\RECYCLER\NPROTECT\00147216.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.22:C:\RECYCLER\NPROTECT\00147238.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.22:C:\RECYCLER\NPROTECT\00147240.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.22:C:\RECYCLER\NPROTECT\00147241.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.22:C:\RECYCLER\NPROTECT\00147522.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.23:C:\RECYCLER\NPROTECT\00146731.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.23:C:\RECYCLER\NPROTECT\00146745.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.23:C:\RECYCLER\NPROTECT\00147203.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.23:C:\RECYCLER\NPROTECT\00147204.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.23:C:\RECYCLER\NPROTECT\00147209.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.23:C:\RECYCLER\NPROTECT\00147210.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.23:C:\RECYCLER\NPROTECT\00147216.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.23:C:\RECYCLER\NPROTECT\00147222.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.23:C:\RECYCLER\NPROTECT\00147227.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.23:C:\RECYCLER\NPROTECT\00147232.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.23:C:\RECYCLER\NPROTECT\00147233.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.23:C:\RECYCLER\NPROTECT\00147238.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.23:C:\RECYCLER\NPROTECT\00147240.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.24:C:\RECYCLER\NPROTECT\00146731.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.24:C:\RECYCLER\NPROTECT\00146740.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.24:C:\RECYCLER\NPROTECT\00146745.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.24:C:\RECYCLER\NPROTECT\00147203.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.24:C:\RECYCLER\NPROTECT\00147204.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.24:C:\RECYCLER\NPROTECT\00147209.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.24:C:\RECYCLER\NPROTECT\00147210.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.24:C:\RECYCLER\NPROTECT\00147216.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.24:C:\RECYCLER\NPROTECT\00147222.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.24:C:\RECYCLER\NPROTECT\00147227.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.24:C:\RECYCLER\NPROTECT\00147232.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.24:C:\RECYCLER\NPROTECT\00147233.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.24:C:\RECYCLER\NPROTECT\00147238.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.24:C:\RECYCLER\NPROTECT\00147240.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.25:C:\RECYCLER\NPROTECT\00146731.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.25:C:\RECYCLER\NPROTECT\00146740.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.25:C:\RECYCLER\NPROTECT\00146745.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.25:C:\RECYCLER\NPROTECT\00146874.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.25:C:\RECYCLER\NPROTECT\00147032.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.25:C:\RECYCLER\NPROTECT\00147209.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.25:C:\RECYCLER\NPROTECT\00147210.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.25:C:\RECYCLER\NPROTECT\00147216.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.25:C:\RECYCLER\NPROTECT\00147222.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.25:C:\RECYCLER\NPROTECT\00147227.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.25:C:\RECYCLER\NPROTECT\00147232.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.25:C:\RECYCLER\NPROTECT\00147233.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.25:C:\RECYCLER\NPROTECT\00147238.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.25:C:\RECYCLER\NPROTECT\00147240.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.26:C:\RECYCLER\NPROTECT\00146731.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.26:C:\RECYCLER\NPROTECT\00146740.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.26:C:\RECYCLER\NPROTECT\00146745.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.26:C:\RECYCLER\NPROTECT\00146874.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.26:C:\RECYCLER\NPROTECT\00147032.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.26:C:\RECYCLER\NPROTECT\00147203.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.26:C:\RECYCLER\NPROTECT\00147209.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.26:C:\RECYCLER\NPROTECT\00147210.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.26:C:\RECYCLER\NPROTECT\00147216.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.26:C:\RECYCLER\NPROTECT\00147222.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.26:C:\RECYCLER\NPROTECT\00147227.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.26:C:\RECYCLER\NPROTECT\00147232.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.26:C:\RECYCLER\NPROTECT\00147233.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.26:C:\RECYCLER\NPROTECT\00147238.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.26:C:\RECYCLER\NPROTECT\00147240.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.27:C:\RECYCLER\NPROTECT\00147179.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.27:C:\RECYCLER\NPROTECT\00147184.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.27:C:\RECYCLER\NPROTECT\00147222.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.27:C:\RECYCLER\NPROTECT\00147227.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.27:C:\RECYCLER\NPROTECT\00147232.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.27:C:\RECYCLER\NPROTECT\00147233.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.28:C:\RECYCLER\NPROTECT\00147187.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.32:C:\RECYCLER\NPROTECT\00147198.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.32:C:\RECYCLER\NPROTECT\00147302.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.32:C:\RECYCLER\NPROTECT\00147315.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.32:C:\RECYCLER\NPROTECT\00147320.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.33:C:\RECYCLER\NPROTECT\00147198.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.33:C:\RECYCLER\NPROTECT\00147302.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.33:C:\RECYCLER\NPROTECT\00147315.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.33:C:\RECYCLER\NPROTECT\00147320.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.34:C:\RECYCLER\NPROTECT\00147198.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.34:C:\RECYCLER\NPROTECT\00147302.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.34:C:\RECYCLER\NPROTECT\00147315.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.34:C:\RECYCLER\NPROTECT\00147320.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.35:C:\RECYCLER\NPROTECT\00147198.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.35:C:\RECYCLER\NPROTECT\00147302.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.35:C:\RECYCLER\NPROTECT\00147315.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.35:C:\RECYCLER\NPROTECT\00147320.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.36:C:\RECYCLER\NPROTECT\00147198.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.36:C:\RECYCLER\NPROTECT\00147302.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.36:C:\RECYCLER\NPROTECT\00147315.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.36:C:\RECYCLER\NPROTECT\00147320.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.37:C:\RECYCLER\NPROTECT\00147198.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.37:C:\RECYCLER\NPROTECT\00147203.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.39:C:\RECYCLER\NPROTECT\00147204.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.39:C:\RECYCLER\NPROTECT\00147209.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.39:C:\RECYCLER\NPROTECT\00147210.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.39:C:\RECYCLER\NPROTECT\00147216.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.40:C:\RECYCLER\NPROTECT\00147222.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.40:C:\RECYCLER\NPROTECT\00147227.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.40:C:\RECYCLER\NPROTECT\00147232.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.40:C:\RECYCLER\NPROTECT\00147233.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.40:C:\RECYCLER\NPROTECT\00147238.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.40:C:\RECYCLER\NPROTECT\00147240.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.40:C:\RECYCLER\NPROTECT\00147241.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.48:C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\dsy7wfla.default\cookies.txt -> TrackingCookie.Tacoda : Cleaned.
:mozilla.52:C:\RECYCLER\NPROTECT\00147302.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.52:C:\RECYCLER\NPROTECT\00147315.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.52:C:\RECYCLER\NPROTECT\00147320.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.52:C:\RECYCLER\NPROTECT\00147522.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.6:C:\RECYCLER\NPROTECT\00146697.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.6:C:\RECYCLER\NPROTECT\00146730.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.6:C:\RECYCLER\NPROTECT\00147179.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.6:C:\RECYCLER\NPROTECT\00147184.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.6:C:\RECYCLER\NPROTECT\00147186.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.7:C:\RECYCLER\NPROTECT\00146697.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.7:C:\RECYCLER\NPROTECT\00146730.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.7:C:\RECYCLER\NPROTECT\00146740.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.7:C:\RECYCLER\NPROTECT\00147179.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.7:C:\RECYCLER\NPROTECT\00147184.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.7:C:\RECYCLER\NPROTECT\00147187.MOZ -> TrackingCookie.Tacoda : Cleaned.
:mozilla.9:C:\RECYCLER\NPROTECT\00147187.MOZ -> TrackingCookie.Tacoda : Cleaned.
C:\Documents and Settings\user\Cookies\user@tacoda[1].txt -> TrackingCookie.Tacoda : Cleaned.
C:\RECYCLER\NPROTECT\00140837 -> TrackingCookie.Tacoda : Cleaned.
:mozilla.10:C:\RECYCLER\NPROTECT\00146233.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.16:C:\RECYCLER\NPROTECT\00146234.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.16:C:\RECYCLER\NPROTECT\00146235.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.16:C:\RECYCLER\NPROTECT\00146241.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.16:C:\RECYCLER\NPROTECT\00146258.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.16:C:\RECYCLER\NPROTECT\00146275.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.16:C:\RECYCLER\NPROTECT\00146276.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.16:C:\RECYCLER\NPROTECT\00146282.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.16:C:\RECYCLER\NPROTECT\00146283.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.16:C:\RECYCLER\NPROTECT\00146284.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.16:C:\RECYCLER\NPROTECT\00146289.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.16:C:\RECYCLER\NPROTECT\00146306.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.16:C:\RECYCLER\NPROTECT\00146390.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.16:C:\RECYCLER\NPROTECT\00146391.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.16:C:\RECYCLER\NPROTECT\00146440.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.16:C:\RECYCLER\NPROTECT\00146452.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.16:C:\RECYCLER\NPROTECT\00146453.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.16:C:\RECYCLER\NPROTECT\00146454.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.16:C:\RECYCLER\NPROTECT\00146463.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.16:C:\RECYCLER\NPROTECT\00146643.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.17:C:\RECYCLER\NPROTECT\00146389.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.22:C:\RECYCLER\NPROTECT\00146655.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.22:C:\RECYCLER\NPROTECT\00146668.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.22:C:\RECYCLER\NPROTECT\00146686.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.22:C:\RECYCLER\NPROTECT\00146687.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.23:C:\RECYCLER\NPROTECT\00146688.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.23:C:\RECYCLER\NPROTECT\00146696.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.34:C:\RECYCLER\NPROTECT\00146697.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.34:C:\RECYCLER\NPROTECT\00146730.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.35:C:\RECYCLER\NPROTECT\00146731.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.35:C:\RECYCLER\NPROTECT\00146740.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.35:C:\RECYCLER\NPROTECT\00146745.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.35:C:\RECYCLER\NPROTECT\00146874.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.35:C:\RECYCLER\NPROTECT\00147032.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.36:C:\RECYCLER\NPROTECT\00147179.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.36:C:\RECYCLER\NPROTECT\00147184.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.38:C:\RECYCLER\NPROTECT\00147186.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.39:C:\RECYCLER\NPROTECT\00147187.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.48:C:\RECYCLER\NPROTECT\00147198.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.48:C:\RECYCLER\NPROTECT\00147203.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.49:C:\RECYCLER\NPROTECT\00147204.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.49:C:\RECYCLER\NPROTECT\00147209.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.49:C:\RECYCLER\NPROTECT\00147210.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.49:C:\RECYCLER\NPROTECT\00147216.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.50:C:\RECYCLER\NPROTECT\00147222.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.50:C:\RECYCLER\NPROTECT\00147227.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.50:C:\RECYCLER\NPROTECT\00147232.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.50:C:\RECYCLER\NPROTECT\00147233.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.50:C:\RECYCLER\NPROTECT\00147238.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.50:C:\RECYCLER\NPROTECT\00147240.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.50:C:\RECYCLER\NPROTECT\00147241.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.58:C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\dsy7wfla.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.62:C:\RECYCLER\NPROTECT\00147302.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.62:C:\RECYCLER\NPROTECT\00147315.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.62:C:\RECYCLER\NPROTECT\00147320.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.62:C:\RECYCLER\NPROTECT\00147522.MOZ -> TrackingCookie.Yieldmanager : Cleaned.
C:\RECYCLER\NPROTECT\00140836 -> TrackingCookie.Yieldmanager : Cleaned.
::Report end
Logfile of HijackThis v1.99.1
Scan saved at 11:12:08 PM, on 1/2/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.5730.0011)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe
C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe
C:\Program Files\Common Files\Symantec Shared\ccProxy.exe
C:\Program Files\Common Files\Symantec Shared\SNDSrvc.exe
C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCSvc.exe
C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\LEXBCES.EXE
C:\WINDOWS\system32\LEXPPS.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\LVCOMSX.EXE
C:\WINDOWS\SOUNDMAN.EXE
C:\Program Files\Common Files\AOL\ACS\AOLAcsd.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
C:\Program Files\Common Files\Symantec Shared\ccApp.exe
C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0\avp.exe
C:\Program Files\Common Files\AOL\TopSpeed\2.0\aoltsmon.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
C:\Program Files\Microsoft Office\Office\MSOFFICE.EXE
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0\avp.exe
C:\Program Files\Norton SystemWorks\Norton GoBack\GBPoll.exe
C:\Program Files\Norton SystemWorks\Norton AntiVirus\IWP\NPFMntor.exe
C:\PROGRA~1\NORTON~1\NORTON~3\NPROTECT.EXE
C:\WINDOWS\System32\nvsvc32.exe
C:\Program Files\RemotelyAnywhere\RaMaint.exe
C:\Program Files\RemotelyAnywhere\RemotelyAnywhere.exe
C:\PROGRA~1\NORTON~1\NORTON~3\SPEEDD~1\NOPDB.EXE
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\wanmpsvc.exe
C:\Program Files\RemotelyAnywhere\RAGui.exe
C:\Program Files\Linksys Wireless-G PCI Wireless Network Monitor\WLService.exe
C:\Program Files\Linksys Wireless-G PCI Wireless Network Monitor\WMP54Gv4.exe
C:\Program Files\Common Files\Symantec Shared\Security Console\NSCSRVCE.EXE
C:\TEMP\Highjack This\hijackthis\HijackThis.exe
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft....k/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft....k/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft....k/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft....k/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://www.emachines.com/
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Microsoft Internet Explorer provided by Comcast
F2 - REG:system.ini: UserInit=C:\WINDOWS\System32\Userinit.exe
O2 - BHO: (no name) - SOFTWARE - (no file)
O2 - BHO: (no name) - {00000000-6CB0-410C-8C3D-8FA8D2011D0A} - (no file)
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: NAV Helper - {A8F38D8D-E480-4D52-B7A2-731BB6995FDD} - C:\Program Files\Norton SystemWorks\Norton AntiVirus\NavShExt.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll
O3 - Toolbar: AOL Toolbar - {4982D40A-C53B-4615-B15B-B5B5E98D167C} - C:\Program Files\AOL Toolbar\toolbar.dll
O3 - Toolbar: Norton AntiVirus - {C4069E3A-68F1-403E-B40E-20066696354B} - C:\Program Files\Norton SystemWorks\Norton AntiVirus\NavShExt.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll
O4 - HKLM\..\Run: [EM_EXEC] C:\PROGRA~1\Logitech\MOUSEW~1\SYSTEM\EM_EXEC.EXE
O4 - HKLM\..\Run: [LVCOMSX] C:\WINDOWS\system32\LVCOMSX.EXE
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Common Files\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [AVP] "C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0\avp.exe"
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [AOL Fast Start] "C:\Program Files\America Online 9.0c\AOL.EXE" -b
O4 - HKCU\..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
O4 - Startup: Microsoft Office Shortcut Bar.lnk = C:\Program Files\Microsoft Office\Office\MSOFFICE.EXE
O8 - Extra context menu item: &AOL Toolbar search - res://C:\Program Files\AOL Toolbar\toolbar.dll/SEARCH.HTML
O9 - Extra button: Web Anti-Virus - {1F460357-8A94-4D71-9CA3-AA4ACF32ED8E} - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0\sciep
#4 OFFLINE
-
- Members
-
- 16 posts
Member
- Gender:Male
- Location:EAST COAST US
Posted 04 January 2007 - 02:47 AM
Logfile of HijackThis v1.99.1
Scan saved at 11:12:08 PM, on 1/2/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.5730.0011)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe
C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe
C:\Program Files\Common Files\Symantec Shared\ccProxy.exe
C:\Program Files\Common Files\Symantec Shared\SNDSrvc.exe
C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCSvc.exe
C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\LEXBCES.EXE
C:\WINDOWS\system32\LEXPPS.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\LVCOMSX.EXE
C:\WINDOWS\SOUNDMAN.EXE
C:\Program Files\Common Files\AOL\ACS\AOLAcsd.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
C:\Program Files\Common Files\Symantec Shared\ccApp.exe
C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0\avp.exe
C:\Program Files\Common Files\AOL\TopSpeed\2.0\aoltsmon.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
C:\Program Files\Microsoft Office\Office\MSOFFICE.EXE
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0\avp.exe
C:\Program Files\Norton SystemWorks\Norton GoBack\GBPoll.exe
C:\Program Files\Norton SystemWorks\Norton AntiVirus\IWP\NPFMntor.exe
C:\PROGRA~1\NORTON~1\NORTON~3\NPROTECT.EXE
C:\WINDOWS\System32\nvsvc32.exe
C:\Program Files\RemotelyAnywhere\RaMaint.exe
C:\Program Files\RemotelyAnywhere\RemotelyAnywhere.exe
C:\PROGRA~1\NORTON~1\NORTON~3\SPEEDD~1\NOPDB.EXE
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\wanmpsvc.exe
C:\Program Files\RemotelyAnywhere\RAGui.exe
C:\Program Files\Linksys Wireless-G PCI Wireless Network Monitor\WLService.exe
C:\Program Files\Linksys Wireless-G PCI Wireless Network Monitor\WMP54Gv4.exe
C:\Program Files\Common Files\Symantec Shared\Security Console\NSCSRVCE.EXE
C:\TEMP\Highjack This\hijackthis\HijackThis.exe
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft....k/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft....k/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft....k/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft....k/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://www.emachines.com/
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Microsoft Internet Explorer provided by Comcast
F2 - REG:system.ini: UserInit=C:\WINDOWS\System32\Userinit.exe
O2 - BHO: (no name) - SOFTWARE - (no file)
O2 - BHO: (no name) - {00000000-6CB0-410C-8C3D-8FA8D2011D0A} - (no file)
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: NAV Helper - {A8F38D8D-E480-4D52-B7A2-731BB6995FDD} - C:\Program Files\Norton SystemWorks\Norton AntiVirus\NavShExt.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll
O3 - Toolbar: AOL Toolbar - {4982D40A-C53B-4615-B15B-B5B5E98D167C} - C:\Program Files\AOL Toolbar\toolbar.dll
O3 - Toolbar: Norton AntiVirus - {C4069E3A-68F1-403E-B40E-20066696354B} - C:\Program Files\Norton SystemWorks\Norton AntiVirus\NavShExt.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll
O4 - HKLM\..\Run: [EM_EXEC] C:\PROGRA~1\Logitech\MOUSEW~1\SYSTEM\EM_EXEC.EXE
O4 - HKLM\..\Run: [LVCOMSX] C:\WINDOWS\system32\LVCOMSX.EXE
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Common Files\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [AVP] "C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0\avp.exe"
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [AOL Fast Start] "C:\Program Files\America Online 9.0c\AOL.EXE" -b
O4 - HKCU\..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
O4 - Startup: Microsoft Office Shortcut Bar.lnk = C:\Program Files\Microsoft Office\Office\MSOFFICE.EXE
O8 - Extra context menu item: &AOL Toolbar search - res://C:\Program Files\AOL Toolbar\toolbar.dll/SEARCH.HTML
O9 - Extra button: Web Anti-Virus - {1F460357-8A94-4D71-9CA3-AA4ACF32ED8E} - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0\scieplugin.dll
O9 - Extra button: AOL Toolbar - {4982D40A-C53B-4615-B15B-B5B5E98D167C} - C:\Program Files\AOL Toolbar\toolbar.dll
O9 - Extra 'Tools' menuitem: AOL Toolbar - {4982D40A-C53B-4615-B15B-B5B5E98D167C} - C:\Program Files\AOL Toolbar\toolbar.dll
O9 - Extra button: Express Cleanup - {5E638779-1818-4754-A595-EF1C63B87A56} - C:\Program Files\Norton SystemWorks\Norton Cleanup\WCQuick.lnk
O9 - Extra 'Tools' menuitem: Express Cleanup - {5E638779-1818-4754-A595-EF1C63B87A56} - C:\Program Files\Norton SystemWorks\Norton Cleanup\WCQuick.lnk
O9 - Extra button: ComcastHSI - {669B269B-0D4E-41FB-A3D8-FD67CA94F646} - http://www.comcast.net/ (file missing)
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O9 - Extra button: Support - {8828075D-D097-4055-AA02-2DBFA9D85E8A} - http://www.comcastsupport.com/ (file missing)
O9 - Extra button: Help - {97809617-3937-4F84-B335-9BB05EF1A8D4} - http://online.comcast.net/help/ (file missing)
O9 - Extra button: AIM - {AC9E2541-2814-11d5-BC6D-00B0D0A1DE45} - C:\Program Files\aim\aim.exe
O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\System32\Shdocvw.dll
O9 - Extra button: MoneySide - {E023F504-0C5A-4750-A1E7-A9046DEA8A21} - C:\Program Files\Microsoft Money\System\mnyviewer.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O11 - Options group: [INTERNATIONAL] International*
O14 - IERESET.INF: START_PAGE_URL=http://www.emachines.com
O16 - DPF: Mah Jong Garden by pogo - http://mahjong2.pogo.com/applet-5.9.4.22/m...g-ob-assets.cab
O16 - DPF: Phlinx by pogo - http://flinger.pogo.com/applet-5.9.3.38/fl...r-ob-assets.cab
O16 - DPF: Squelchies by pogo - http://squelchies.pogo.com/applet-5.9.1.18...s-ob-assets.cab
O16 - DPF: Word Whomp Whackdown by pogo - http://whackdown.pogo.com/applet-5.9.4.22/...n-ob-assets.cab
O16 - DPF: WordJong by pogo - http://wordjong.pogo.com/applet-5.9.5.30/w...g-ob-assets.cab
O16 - DPF: {0E5F0222-96B9-11D3-8997-00104BD12D94} (PCPitstop Utility) - http://pcpitstop.com...p/PCPitStop.CAB
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft....k/?linkid=39204
O16 - DPF: {41F17733-B041-4099-A042-B518BB6A408C} - http://a1540.g.akamai.net/7/1540/52/200212...meInstaller.exe
O16 - DPF: {4FAE30E1-EE9C-477D-8D06-BF8D3429B60F} (WebIQ Technology Client) - http://webiq001.webi...Q/bin/WebIQ.cab
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://download.bitd...can8/oscan8.cab
O16 - DPF: {B942A249-D1E7-4C11-98AE-FCB76B08747F} (RealArcadeRdxIE Class) - http://games-dl.real.com/gameconsole/Bundl...ArcadeRdxIE.cab
O16 - DPF: {D670D0B3-05AB-4115-9F87-D983EF1AC747} (AOL Downloader Plugin) - http://pak01.pictures.aol.com/ygp/aol/plug...oad.9.0.0.2.cab
O16 - DPF: {FD0B6769-6490-4A91-AA0A-B5AE0DC75AC9} (Performance Viewer Activex Control) - https://kitten:51889...ivex/RACtrl.cab
O20 - Winlogon Notify: !SASWinLogon - C:\Program Files\SUPERAntiSpyware\SASWINLO.dll
O20 - Winlogon Notify: igfxcui - C:\WINDOWS\SYSTEM32\igfxsrvc.dll
O20 - Winlogon Notify: klogon - C:\WINDOWS\system32\klogon.dll
O20 - Winlogon Notify: rainit - C:\WINDOWS\SYSTEM32\RAinit.dll
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: AOL Connectivity Service (AOL ACS) - America Online - C:\Program Files\Common Files\AOL\ACS\AOLAcsd.exe
O23 - Service: AOL TopSpeed Monitor (AOL TopSpeedMonitor) - America Online, Inc - C:\Program Files\Common Files\AOL\TopSpeed\2.0\aoltsmon.exe
O23 - Service: AOL Spyware Protection Service (AOLService) - Unknown owner - C:\Program Files\Common Files\AOL\AOL Spyware Protection\\aolserv.exe (file missing)
O23 - Service: Automatic LiveUpdate Scheduler - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
O23 - Service: AVG Anti-Spyware Guard - Anti-Malware Development a.s. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: Kaspersky Anti-Virus 6.0 (AVP) - Unknown owner - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0\avp.exe" -r (file missing)
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe
O23 - Service: Symantec Network Proxy (ccProxy) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccProxy.exe
O23 - Service: Symantec Password Validation (ccPwdSvc) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccPwdSvc.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe
O23 - Service: GoBack Polling Service (GBPoll) - Symantec Corporation - C:\Program Files\Norton SystemWorks\Norton GoBack\GBPoll.exe
O23 - Service: LexBce Server (LexBceS) - Lexmark International, Inc. - C:\WINDOWS\system32\LEXBCES.EXE
O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
O23 - Service: Norton AntiVirus Auto-Protect Service (navapsvc) - Symantec Corporation - C:\Program Files\Norton SystemWorks\Norton AntiVirus\navapsvc.exe
O23 - Service: Norton AntiVirus Firewall Monitor Service (NPFMntor) - Symantec Corporation - C:\Program Files\Norton SystemWorks\Norton AntiVirus\IWP\NPFMntor.exe
O23 - Service: Norton UnErase Protection (NProtectService) - Symantec Corporation - C:\PROGRA~1\NORTON~1\NORTON~3\NPROTECT.EXE
O23 - Service: Norton Protection Center Service (NSCService) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\Security Console\NSCSRVCE.EXE
O23 - Service: NVIDIA Driver Helper Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe
O23 - Service: RemotelyAnywhere Maintenance Service (RAMaint) - 3am Labs, Inc. - C:\Program Files\RemotelyAnywhere\RaMaint.exe
O23 - Service: RemotelyAnywhere - 3am Labs, Inc. - C:\Program Files\RemotelyAnywhere\RemotelyAnywhere.exe
O23 - Service: Symantec AVScan (SAVScan) - Symantec Corporation - C:\Program Files\Norton SystemWorks\Norton AntiVirus\SAVScan.exe
O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\SNDSrvc.exe
O23 - Service: SPBBCSvc - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCSvc.exe
O23 - Service: Speed Disk service - Symantec Corporation - C:\PROGRA~1\NORTON~1\NORTON~3\SPEEDD~1\NOPDB.EXE
O23 - Service: Symantec Core LC - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe
O23 - Service: TuneUp WinStyler Theme Service (TUWinStylerThemeSvc) - TuneUp Software GmbH - C:\Program Files\TuneUp Utilities 2006\WinStylerThemeSvc.exe
O23 - Service: WAN Miniport (ATW) Service (WANMiniportService) - America Online, Inc. - C:\WINDOWS\wanmpsvc.exe
O23 - Service: WMP54Gv4SVC - Unknown owner - C:\Program Files\Linksys Wireless-G PCI Wireless Network Monitor\WLService.exe" "WMP54Gv4.exe (file missing)
Scan saved at 11:12:08 PM, on 1/2/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.5730.0011)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe
C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe
C:\Program Files\Common Files\Symantec Shared\ccProxy.exe
C:\Program Files\Common Files\Symantec Shared\SNDSrvc.exe
C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCSvc.exe
C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\LEXBCES.EXE
C:\WINDOWS\system32\LEXPPS.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\LVCOMSX.EXE
C:\WINDOWS\SOUNDMAN.EXE
C:\Program Files\Common Files\AOL\ACS\AOLAcsd.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
C:\Program Files\Common Files\Symantec Shared\ccApp.exe
C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0\avp.exe
C:\Program Files\Common Files\AOL\TopSpeed\2.0\aoltsmon.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
C:\Program Files\Microsoft Office\Office\MSOFFICE.EXE
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0\avp.exe
C:\Program Files\Norton SystemWorks\Norton GoBack\GBPoll.exe
C:\Program Files\Norton SystemWorks\Norton AntiVirus\IWP\NPFMntor.exe
C:\PROGRA~1\NORTON~1\NORTON~3\NPROTECT.EXE
C:\WINDOWS\System32\nvsvc32.exe
C:\Program Files\RemotelyAnywhere\RaMaint.exe
C:\Program Files\RemotelyAnywhere\RemotelyAnywhere.exe
C:\PROGRA~1\NORTON~1\NORTON~3\SPEEDD~1\NOPDB.EXE
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\wanmpsvc.exe
C:\Program Files\RemotelyAnywhere\RAGui.exe
C:\Program Files\Linksys Wireless-G PCI Wireless Network Monitor\WLService.exe
C:\Program Files\Linksys Wireless-G PCI Wireless Network Monitor\WMP54Gv4.exe
C:\Program Files\Common Files\Symantec Shared\Security Console\NSCSRVCE.EXE
C:\TEMP\Highjack This\hijackthis\HijackThis.exe
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft....k/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft....k/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft....k/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft....k/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://www.emachines.com/
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Microsoft Internet Explorer provided by Comcast
F2 - REG:system.ini: UserInit=C:\WINDOWS\System32\Userinit.exe
O2 - BHO: (no name) - SOFTWARE - (no file)
O2 - BHO: (no name) - {00000000-6CB0-410C-8C3D-8FA8D2011D0A} - (no file)
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: NAV Helper - {A8F38D8D-E480-4D52-B7A2-731BB6995FDD} - C:\Program Files\Norton SystemWorks\Norton AntiVirus\NavShExt.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll
O3 - Toolbar: AOL Toolbar - {4982D40A-C53B-4615-B15B-B5B5E98D167C} - C:\Program Files\AOL Toolbar\toolbar.dll
O3 - Toolbar: Norton AntiVirus - {C4069E3A-68F1-403E-B40E-20066696354B} - C:\Program Files\Norton SystemWorks\Norton AntiVirus\NavShExt.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll
O4 - HKLM\..\Run: [EM_EXEC] C:\PROGRA~1\Logitech\MOUSEW~1\SYSTEM\EM_EXEC.EXE
O4 - HKLM\..\Run: [LVCOMSX] C:\WINDOWS\system32\LVCOMSX.EXE
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Common Files\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [AVP] "C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0\avp.exe"
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [AOL Fast Start] "C:\Program Files\America Online 9.0c\AOL.EXE" -b
O4 - HKCU\..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
O4 - Startup: Microsoft Office Shortcut Bar.lnk = C:\Program Files\Microsoft Office\Office\MSOFFICE.EXE
O8 - Extra context menu item: &AOL Toolbar search - res://C:\Program Files\AOL Toolbar\toolbar.dll/SEARCH.HTML
O9 - Extra button: Web Anti-Virus - {1F460357-8A94-4D71-9CA3-AA4ACF32ED8E} - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0\scieplugin.dll
O9 - Extra button: AOL Toolbar - {4982D40A-C53B-4615-B15B-B5B5E98D167C} - C:\Program Files\AOL Toolbar\toolbar.dll
O9 - Extra 'Tools' menuitem: AOL Toolbar - {4982D40A-C53B-4615-B15B-B5B5E98D167C} - C:\Program Files\AOL Toolbar\toolbar.dll
O9 - Extra button: Express Cleanup - {5E638779-1818-4754-A595-EF1C63B87A56} - C:\Program Files\Norton SystemWorks\Norton Cleanup\WCQuick.lnk
O9 - Extra 'Tools' menuitem: Express Cleanup - {5E638779-1818-4754-A595-EF1C63B87A56} - C:\Program Files\Norton SystemWorks\Norton Cleanup\WCQuick.lnk
O9 - Extra button: ComcastHSI - {669B269B-0D4E-41FB-A3D8-FD67CA94F646} - http://www.comcast.net/ (file missing)
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O9 - Extra button: Support - {8828075D-D097-4055-AA02-2DBFA9D85E8A} - http://www.comcastsupport.com/ (file missing)
O9 - Extra button: Help - {97809617-3937-4F84-B335-9BB05EF1A8D4} - http://online.comcast.net/help/ (file missing)
O9 - Extra button: AIM - {AC9E2541-2814-11d5-BC6D-00B0D0A1DE45} - C:\Program Files\aim\aim.exe
O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\System32\Shdocvw.dll
O9 - Extra button: MoneySide - {E023F504-0C5A-4750-A1E7-A9046DEA8A21} - C:\Program Files\Microsoft Money\System\mnyviewer.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O11 - Options group: [INTERNATIONAL] International*
O14 - IERESET.INF: START_PAGE_URL=http://www.emachines.com
O16 - DPF: Mah Jong Garden by pogo - http://mahjong2.pogo.com/applet-5.9.4.22/m...g-ob-assets.cab
O16 - DPF: Phlinx by pogo - http://flinger.pogo.com/applet-5.9.3.38/fl...r-ob-assets.cab
O16 - DPF: Squelchies by pogo - http://squelchies.pogo.com/applet-5.9.1.18...s-ob-assets.cab
O16 - DPF: Word Whomp Whackdown by pogo - http://whackdown.pogo.com/applet-5.9.4.22/...n-ob-assets.cab
O16 - DPF: WordJong by pogo - http://wordjong.pogo.com/applet-5.9.5.30/w...g-ob-assets.cab
O16 - DPF: {0E5F0222-96B9-11D3-8997-00104BD12D94} (PCPitstop Utility) - http://pcpitstop.com...p/PCPitStop.CAB
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft....k/?linkid=39204
O16 - DPF: {41F17733-B041-4099-A042-B518BB6A408C} - http://a1540.g.akamai.net/7/1540/52/200212...meInstaller.exe
O16 - DPF: {4FAE30E1-EE9C-477D-8D06-BF8D3429B60F} (WebIQ Technology Client) - http://webiq001.webi...Q/bin/WebIQ.cab
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://download.bitd...can8/oscan8.cab
O16 - DPF: {B942A249-D1E7-4C11-98AE-FCB76B08747F} (RealArcadeRdxIE Class) - http://games-dl.real.com/gameconsole/Bundl...ArcadeRdxIE.cab
O16 - DPF: {D670D0B3-05AB-4115-9F87-D983EF1AC747} (AOL Downloader Plugin) - http://pak01.pictures.aol.com/ygp/aol/plug...oad.9.0.0.2.cab
O16 - DPF: {FD0B6769-6490-4A91-AA0A-B5AE0DC75AC9} (Performance Viewer Activex Control) - https://kitten:51889...ivex/RACtrl.cab
O20 - Winlogon Notify: !SASWinLogon - C:\Program Files\SUPERAntiSpyware\SASWINLO.dll
O20 - Winlogon Notify: igfxcui - C:\WINDOWS\SYSTEM32\igfxsrvc.dll
O20 - Winlogon Notify: klogon - C:\WINDOWS\system32\klogon.dll
O20 - Winlogon Notify: rainit - C:\WINDOWS\SYSTEM32\RAinit.dll
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: AOL Connectivity Service (AOL ACS) - America Online - C:\Program Files\Common Files\AOL\ACS\AOLAcsd.exe
O23 - Service: AOL TopSpeed Monitor (AOL TopSpeedMonitor) - America Online, Inc - C:\Program Files\Common Files\AOL\TopSpeed\2.0\aoltsmon.exe
O23 - Service: AOL Spyware Protection Service (AOLService) - Unknown owner - C:\Program Files\Common Files\AOL\AOL Spyware Protection\\aolserv.exe (file missing)
O23 - Service: Automatic LiveUpdate Scheduler - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
O23 - Service: AVG Anti-Spyware Guard - Anti-Malware Development a.s. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: Kaspersky Anti-Virus 6.0 (AVP) - Unknown owner - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0\avp.exe" -r (file missing)
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe
O23 - Service: Symantec Network Proxy (ccProxy) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccProxy.exe
O23 - Service: Symantec Password Validation (ccPwdSvc) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccPwdSvc.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe
O23 - Service: GoBack Polling Service (GBPoll) - Symantec Corporation - C:\Program Files\Norton SystemWorks\Norton GoBack\GBPoll.exe
O23 - Service: LexBce Server (LexBceS) - Lexmark International, Inc. - C:\WINDOWS\system32\LEXBCES.EXE
O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
O23 - Service: Norton AntiVirus Auto-Protect Service (navapsvc) - Symantec Corporation - C:\Program Files\Norton SystemWorks\Norton AntiVirus\navapsvc.exe
O23 - Service: Norton AntiVirus Firewall Monitor Service (NPFMntor) - Symantec Corporation - C:\Program Files\Norton SystemWorks\Norton AntiVirus\IWP\NPFMntor.exe
O23 - Service: Norton UnErase Protection (NProtectService) - Symantec Corporation - C:\PROGRA~1\NORTON~1\NORTON~3\NPROTECT.EXE
O23 - Service: Norton Protection Center Service (NSCService) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\Security Console\NSCSRVCE.EXE
O23 - Service: NVIDIA Driver Helper Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe
O23 - Service: RemotelyAnywhere Maintenance Service (RAMaint) - 3am Labs, Inc. - C:\Program Files\RemotelyAnywhere\RaMaint.exe
O23 - Service: RemotelyAnywhere - 3am Labs, Inc. - C:\Program Files\RemotelyAnywhere\RemotelyAnywhere.exe
O23 - Service: Symantec AVScan (SAVScan) - Symantec Corporation - C:\Program Files\Norton SystemWorks\Norton AntiVirus\SAVScan.exe
O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\SNDSrvc.exe
O23 - Service: SPBBCSvc - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCSvc.exe
O23 - Service: Speed Disk service - Symantec Corporation - C:\PROGRA~1\NORTON~1\NORTON~3\SPEEDD~1\NOPDB.EXE
O23 - Service: Symantec Core LC - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe
O23 - Service: TuneUp WinStyler Theme Service (TUWinStylerThemeSvc) - TuneUp Software GmbH - C:\Program Files\TuneUp Utilities 2006\WinStylerThemeSvc.exe
O23 - Service: WAN Miniport (ATW) Service (WANMiniportService) - America Online, Inc. - C:\WINDOWS\wanmpsvc.exe
O23 - Service: WMP54Gv4SVC - Unknown owner - C:\Program Files\Linksys Wireless-G PCI Wireless Network Monitor\WLService.exe" "WMP54Gv4.exe (file missing)
#5 OFFLINE
-
- Moderators
-
- 8,858 posts
I hate computers
- Gender:Male
Posted 04 January 2007 - 05:46 AM
I wish you would have come back here before you installed kaspersky.
If something I tell you to do doesn't work never do something else. I don't want to come across as rude but it just creates more work for you.
1st, if your keeping norton get rid of that KAV trial.
-----
Download Blacklight beta HERE and save it to your desktop.
Run the program, accept statement > click next then scan
When its finished scanning exit the program and post back the log if it detects hidden files, The log is called 'fsbl-<date/time>.log' which will save to the same location as the blbeta.exe file.
Download GMER from Here
Unzip it and start GMER.exe. Click the rootkit-tab and click scan.
Once done, click the Copy button. This will copy the results to clipboard.
You can then right click into a notepad file or straight back on here and choose Paste to post the results back.
If something I tell you to do doesn't work never do something else. I don't want to come across as rude but it just creates more work for you.
1st, if your keeping norton get rid of that KAV trial.
-----
Download Blacklight beta HERE and save it to your desktop.
Run the program, accept statement > click next then scan
When its finished scanning exit the program and post back the log if it detects hidden files, The log is called 'fsbl-<date/time>.log' which will save to the same location as the blbeta.exe file.
Download GMER from Here
Unzip it and start GMER.exe. Click the rootkit-tab and click scan.
Once done, click the Copy button. This will copy the results to clipboard.
You can then right click into a notepad file or straight back on here and choose Paste to post the results back.
#6 OFFLINE
-
- Members
-
- 16 posts
Member
- Gender:Male
- Location:EAST COAST US
Posted 05 January 2007 - 02:18 AM
Got rid of Kap.. and cleaned up registry with Tune-up 2006. Also ran CCleaner. After I finished with that I downloaded F-Secure Blacklight and scanned computer. Results- no hidden processes. Tried to download second program page will not load. 
Found program with Google @ Majorgeeks.com, hope that is OK . Ran scan log follows, is that as bad as it looks? So many line items.
GMER 1.0.12.12011 - http://www.gmer.net
Rootkit scan 2007-01-04 21:44:58
Windows 5.1.2600 Service Pack 2
---- System - GMER 1.0.12 ----
SSDT 81FDABB8 ZwAlertResumeThread
SSDT 81FDABF0 ZwAlertThread
SSDT 8206A670 ZwAllocateVirtualMemory
SSDT GoBack2K.sys ZwClose
SSDT 81FFC1A8 ZwConnectPort
SSDT \??\C:\WINDOWS\system32\Drivers\SYMEVENT.SYS ZwCreateKey
SSDT 81FD8A50 ZwCreateMutant
SSDT 82086E28 ZwCreateThread
SSDT \??\C:\WINDOWS\system32\Drivers\SYMEVENT.SYS ZwDeleteKey
SSDT \??\C:\WINDOWS\system32\Drivers\SYMEVENT.SYS ZwDeleteValueKey
SSDT 81F790C0 ZwFreeVirtualMemory
SSDT GoBack2K.sys ZwFsControlFile
SSDT 81FD8B28 ZwImpersonateAnonymousToken
SSDT 81FD7DC8 ZwImpersonateThread
SSDT 81FA9190 ZwMapViewOfSection
SSDT 81FD57D8 ZwOpenEvent
SSDT \??\C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.sys ZwOpenProcess
SSDT 81F79338 ZwOpenProcessToken
SSDT 81F77AC0 ZwOpenThreadToken
SSDT 81CA1BF0 ZwResumeThread
SSDT 81F76F30 ZwSetContextThread
SSDT 81F77C58 ZwSetInformationProcess
SSDT 82007190 ZwSetInformationThread
SSDT \??\C:\WINDOWS\system32\Drivers\SYMEVENT.SYS ZwSetValueKey
SSDT 81FD5700 ZwSuspendProcess
SSDT 81FDAC28 ZwSuspendThread
SSDT \??\C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.sys ZwTerminateProcess
SSDT 82001D38 ZwTerminateThread
SSDT 81F77E90 ZwUnmapViewOfSection
SSDT 82065390 ZwWriteVirtualMemory
---- User code sections - GMER 1.0.12 ----
.text C:\Program Files\Internet Explorer\iexplore.exe[2096] USER32.dll!DialogBoxParamW 77D5662C 5 Bytes JMP 7E1F5415 C:\WINDOWS\system32\IEFRAME.dll
.text C:\Program Files\Internet Explorer\iexplore.exe[2096] USER32.dll!DialogBoxIndirectParamW 77D62043 5 Bytes JMP 7E38C510 C:\WINDOWS\system32\IEFRAME.dll
.text C:\Program Files\Internet Explorer\iexplore.exe[2096] USER32.dll!MessageBoxIndirectA 77D6A05A 5 Bytes JMP 7E38C491 C:\WINDOWS\system32\IEFRAME.dll
.text C:\Program Files\Internet Explorer\iexplore.exe[2096] USER32.dll!DialogBoxParamA 77D6B11C 5 Bytes JMP 7E38C4D5 C:\WINDOWS\system32\IEFRAME.dll
.text C:\Program Files\Internet Explorer\iexplore.exe[2096] USER32.dll!MessageBoxExW 77D80538 5 Bytes JMP 7E38C3D9 C:\WINDOWS\system32\IEFRAME.dll
.text C:\Program Files\Internet Explorer\iexplore.exe[2096] USER32.dll!MessageBoxExA 77D8055C 5 Bytes JMP 7E38C413 C:\WINDOWS\system32\IEFRAME.dll
.text C:\Program Files\Internet Explorer\iexplore.exe[2096] USER32.dll!DialogBoxIndirectParamA 77D86CAD 5 Bytes JMP 7E38C54B C:\WINDOWS\system32\IEFRAME.dll
.text C:\Program Files\Internet Explorer\iexplore.exe[2096] USER32.dll!MessageBoxIndirectW 77D96093 5 Bytes JMP 7E38C44D C:\WINDOWS\system32\IEFRAME.dll
---- Devices - GMER 1.0.12 ----
Device \Driver\Disk \Device\Harddisk0\DR0 IRP_MJ_READ [F8444190] GoBack2K.sys
Device \Driver\Disk \Device\Harddisk0\DR0 IRP_MJ_WRITE [F8444280] GoBack2K.sys
Device \Driver\Disk \Device\Harddisk0\DR0 IRP_MJ_FLUSH_BUFFERS [F8444370] GoBack2K.sys
Device \Driver\Disk \Device\Harddisk0\DR0 IRP_MJ_DEVICE_CONTROL [F8444600] GoBack2K.sys
Device \Driver\Disk \Device\Harddisk1\DR3 IRP_MJ_READ [F8444190] GoBack2K.sys
Device \Driver\Disk \Device\Harddisk1\DR3 IRP_MJ_WRITE [F8444280] GoBack2K.sys
Device \Driver\Disk \Device\Harddisk1\DR3 IRP_MJ_FLUSH_BUFFERS [F8444370] GoBack2K.sys
Device \Driver\Disk \Device\Harddisk1\DR3 IRP_MJ_DEVICE_CONTROL [F8444600] GoBack2K.sys
Device \Driver\Disk \Device\Harddisk1\DP(1)0-0+4 IRP_MJ_READ [F8444190] GoBack2K.sys
Device \Driver\Disk \Device\Harddisk1\DP(1)0-0+4 IRP_MJ_WRITE [F8444280] GoBack2K.sys
Device \Driver\Disk \Device\Harddisk1\DP(1)0-0+4 IRP_MJ_FLUSH_BUFFERS [F8444370] GoBack2K.sys
Device \Driver\Disk \Device\Harddisk1\DP(1)0-0+4 IRP_MJ_DEVICE_CONTROL [F8444600] GoBack2K.sys
---- Files - GMER 1.0.12 ----
ADS C:\Documents and Settings\user\Favorites\Animals\Petfinder PetNotes.url:favicon
ADS C:\Documents and Settings\user\Favorites\computer\ thekeys.ws.url:favicon
ADS C:\Documents and Settings\user\Favorites\computer\ASTALAVISTA.BOX.SK.url:favicon
ADS C:\Documents and Settings\user\Favorites\computer\PC Pitstop Free PC Diagnostics, computer help and Tuneups.url:favicon
ADS C:\Documents and Settings\user\Favorites\Duckies\http--www.northrup.org-photos-cruise-Day10-Barcelona-Spain-low-baby-ducks.jpg.url:favicon
ADS C:\Documents and Settings\user\Favorites\FUNNY\Albino Blacksheep - www.albinoblacksheep.com.url:favicon
ADS C:\Documents and Settings\user\Favorites\Rebelscum.com Your Star Wars Toy News and Reference Site.url:favicon
ADS C:\Documents and Settings\user\Favorites\Ren Faire\DawnPages -- Pouches.url:favicon
ADS C:\Documents and Settings\user\Favorites\school\Dr. Schaffer - Advising Stuff.url:favicon
ADS C:\Program Files\Common Files\Microsoft Shared\Shoebox\Default.ico:{4c8cc155-6c1e-11d1-8e41-00c04fb9386d}
ADS C:\Program Files\Common Files\Microsoft Shared\Shoebox\removabl.ico:{4c8cc155-6c1e-11d1-8e41-00c04fb9386d}
ADS ...
Logfile of HijackThis v1.99.1
Scan saved at 9:49:40 PM, on 1/4/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.5730.0011)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe
C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe
C:\Program Files\Common Files\Symantec Shared\ccProxy.exe
C:\Program Files\Common Files\Symantec Shared\SNDSrvc.exe
C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCSvc.exe
C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe
C:\WINDOWS\system32\LEXBCES.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\LEXPPS.EXE
C:\WINDOWS\Explorer.EXE
C:\Program Files\Common Files\AOL\ACS\AOLAcsd.exe
C:\Program Files\Common Files\AOL\TopSpeed\2.0\aoltsmon.exe
C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
C:\WINDOWS\system32\LVCOMSX.EXE
C:\WINDOWS\SOUNDMAN.EXE
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
C:\Program Files\Common Files\Symantec Shared\ccApp.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\aim\aim.exe
C:\Program Files\Microsoft Office\Office\MSOFFICE.EXE
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\Program Files\Norton SystemWorks\Norton GoBack\GBPoll.exe
C:\Program Files\Norton SystemWorks\Norton AntiVirus\IWP\NPFMntor.exe
C:\PROGRA~1\NORTON~1\NORTON~3\NPROTECT.EXE
C:\WINDOWS\System32\nvsvc32.exe
C:\Program Files\RemotelyAnywhere\RaMaint.exe
C:\Program Files\RemotelyAnywhere\RemotelyAnywhere.exe
C:\PROGRA~1\NORTON~1\NORTON~3\SPEEDD~1\NOPDB.EXE
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\wanmpsvc.exe
C:\Program Files\Linksys Wireless-G PCI Wireless Network Monitor\WLService.exe
C:\Program Files\Linksys Wireless-G PCI Wireless Network Monitor\WMP54Gv4.exe
C:\Program Files\RemotelyAnywhere\RAGui.exe
C:\Program Files\Common Files\Symantec Shared\Security Console\NSCSRVCE.EXE
C:\Program Files\Common Files\Symantec Shared\CCAPP.EXE
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Logitech\Video\FxSvr2.exe
C:\TEMP\Highjack This\hijackthis\HijackThis.exe
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft....k/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft....k/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft....k/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft....k/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://www.emachines.com/
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Microsoft Internet Explorer provided by Comcast
F2 - REG:system.ini: UserInit=C:\WINDOWS\System32\Userinit.exe
O2 - BHO: (no name) - SOFTWARE - (no file)
O2 - BHO: (no name) - {00000000-6CB0-410C-8C3D-8FA8D2011D0A} - (no file)
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: NAV Helper - {A8F38D8D-E480-4D52-B7A2-731BB6995FDD} - C:\Program Files\Norton SystemWorks\Norton AntiVirus\NavShExt.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll
O3 - Toolbar: AOL Toolbar - {4982D40A-C53B-4615-B15B-B5B5E98D167C} - C:\Program Files\AOL Toolbar\toolbar.dll
O3 - Toolbar: Norton AntiVirus - {C4069E3A-68F1-403E-B40E-20066696354B} - C:\Program Files\Norton SystemWorks\Norton AntiVirus\NavShExt.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll
O4 - HKLM\..\Run: [EM_EXEC] C:\PROGRA~1\Logitech\MOUSEW~1\SYSTEM\EM_EXEC.EXE
O4 - HKLM\..\Run: [LVCOMSX] C:\WINDOWS\system32\LVCOMSX.EXE
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Common Files\Symantec Shared\ccApp.exe"
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [AIM] C:\Program Files\aim\aim.exe -cnetwait.odl
O4 - Startup: Microsoft Office Shortcut Bar.lnk = C:\Program Files\Microsoft Office\Office\MSOFFICE.EXE
O8 - Extra context menu item: &AOL Toolbar search - res://C:\Program Files\AOL Toolbar\toolbar.dll/SEARCH.HTML
O9 - Extra button: AOL Toolbar - {4982D40A-C53B-4615-B15B-B5B5E98D167C} - C:\Program Files\AOL Toolbar\toolbar.dll
O9 - Extra 'Tools' menuitem: AOL Toolbar - {4982D40A-C53B-4615-B15B-B5B5E98D167C} - C:\Program Files\AOL Toolbar\toolbar.dll
O9 - Extra button: Express Cleanup - {5E638779-1818-4754-A595-EF1C63B87A56} - C:\Program Files\Norton SystemWorks\Norton Cleanup\WCQuick.lnk
O9 - Extra 'Tools' menuitem: Express Cleanup - {5E638779-1818-4754-A595-EF1C63B87A56} - C:\Program Files\Norton SystemWorks\Norton Cleanup\WCQuick.lnk
O9 - Extra button: ComcastHSI - {669B269B-0D4E-41FB-A3D8-FD67CA94F646} - http://www.comcast.net/ (file missing)
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O9 - Extra button: Support - {8828075D-D097-4055-AA02-2DBFA9D85E8A} - http://www.comcastsupport.com/ (file missing)
O9 - Extra button: Help - {97809617-3937-4F84-B335-9BB05EF1A8D4} - http://online.comcast.net/help/ (file missing)
O9 - Extra button: AIM - {AC9E2541-2814-11d5-BC6D-00B0D0A1DE45} - C:\Program Files\aim\aim.exe
O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\System32\Shdocvw.dll
O9 - Extra button: MoneySide - {E023F504-0C5A-4750-A1E7-A9046DEA8A21} - C:\Program Files\Microsoft Money\System\mnyviewer.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O11 - Options group: [INTERNATIONAL] International*
O14 - IERESET.INF: START_PAGE_URL=http://www.emachines.com
O16 - DPF: Mah Jong Garden by pogo - http://mahjong2.pogo.com/applet-5.9.4.22/m...g-ob-assets.cab
O16 - DPF: Phlinx by pogo - http://flinger.pogo.com/applet-5.9.3.38/fl...r-ob-assets.cab
O16 - DPF: Squelchies by pogo - http://squelchies.pogo.com/applet-5.9.1.18...s-ob-assets.cab
O16 - DPF: Word Whomp Whackdown by pogo - http://whackdown.pogo.com/applet-5.9.4.22/...n-ob-assets.cab
O16 - DPF: WordJong by pogo - http://wordjong.pogo.com/applet-5.9.5.30/w...g-ob-assets.cab
O16 - DPF: {0E5F0222-96B9-11D3-8997-00104BD12D94} (PCPitstop Utility) - http://pcpitstop.com...p/PCPitStop.CAB
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft....k/?linkid=39204
O16 - DPF: {41F17733-B041-4099-A042-B518BB6A408C} - http://a1540.g.akamai.net/7/1540/52/200212...meInstaller.exe
O16 - DPF: {4FAE30E1-EE9C-477D-8D06-BF8D3429B60F} (WebIQ Technology Client) - http://webiq001.webi...Q/bin/WebIQ.cab
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://download.bitd...can8/oscan8.cab
O16 - DPF: {B942A249-D1E7-4C11-98AE-FCB76B08747F} (RealArcadeRdxIE Class) - http://games-dl.real.com/gameconsole/Bundl...ArcadeRdxIE.cab
O16 - DPF: {D670D0B3-05AB-4115-9F87-D983EF1AC747} (AOL Downloader Plugin) - http://pak01.pictures.aol.com/ygp/aol/plug...oad.9.0.0.2.cab
O16 - DPF: {FD0B6769-6490-4A91-AA0A-B5AE0DC75AC9} (Performance Viewer Activex Control) - https://kitten:51889...ivex/RACtrl.cab
O20 - Winlogon Notify: !SASWinLogon - C:\Program Files\SUPERAntiSpyware\SASWINLO.dll
O20 - Winlogon Notify: igfxcui - C:\WINDOWS\SYSTEM32\igfxsrvc.dll
O20 - Winlogon Notify: rainit - C:\WINDOWS\SYSTEM32\RAinit.dll
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: AOL Connectivity Service (AOL ACS) - America Online - C:\Program Files\Common Files\AOL\ACS\AOLAcsd.exe
O23 - Service: AOL TopSpeed Monitor (AOL TopSpeedMonitor) - America Online, Inc - C:\Program Files\Common Files\AOL\TopSpeed\2.0\aoltsmon.exe
O23 - Service: AOL Spyware Protection Service (AOLService) - Unknown owner - C:\Program Files\Common Files\AOL\AOL Spyware Protection\\aolserv.exe (file missing)
O23 - Service: Automatic LiveUpdate Scheduler - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
O23 - Service: AVG Anti-Spyware Guard - Anti-Malware Development a.s. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe
O23 - Service: Symantec Network Proxy (ccProxy) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccProxy.exe
O23 - Service: Symantec Password Validation (ccPwdSvc) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccPwdSvc.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe
O23 - Service: GoBack Polling Service (GBPoll) - Symantec Corporation - C:\Program Files\Norton SystemWorks\Norton GoBack\GBPoll.exe
O23 - Service: LexBce Server (LexBceS) - Lexmark International, Inc. - C:\WINDOWS\system32\LEXBCES.EXE
O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
O23 - Service: Norton AntiVirus Auto-Protect Service (navapsvc) - Symantec Corporation - C:\Program Files\Norton SystemWorks\Norton AntiVirus\navapsvc.exe
O23 - Service: Norton AntiVirus Firewall Monitor Service (NPFMntor) - Symantec Corporation - C:\Program Files\Norton SystemWorks\Norton AntiVirus\IWP\NPFMntor.exe
O23 - Service: Norton UnErase Protection (NProtectService) - Symantec Corporation - C:\PROGRA~1\NORTON~1\NORTON~3\NPROTECT.EXE
O23 - Service: Norton Protection Center Service (NSCService) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\Security Console\NSCSRVCE.EXE
O23 - Service: NVIDIA Driver Helper Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe
O23 - Service: RemotelyAnywhere Maintenance Service (RAMaint) - 3am Labs, Inc. - C:\Program Files\RemotelyAnywhere\RaMaint.exe
O23 - Service: RemotelyAnywhere - 3am Labs, Inc. - C:\Program Files\RemotelyAnywhere\RemotelyAnywhere.exe
O23 - Service: Symantec AVScan (SAVScan) - Symantec Corporation - C:\Program Files\Norton SystemWorks\Norton AntiVirus\SAVScan.exe
O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\SNDSrvc.exe
O23 - Service: SPBBCSvc - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCSvc.exe
O23 - Service: Speed Disk service - Symantec Corporation - C:\PROGRA~1\NORTON~1\NORTON~3\SPEEDD~1\NOPDB.EXE
O23 - Service: Symantec Core LC - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe
O23 - Service: TuneUp WinStyler Theme Service (TUWinStylerThemeSvc) - TuneUp Software GmbH - C:\Program Files\TuneUp Utilities 2006\WinStylerThemeSvc.exe
O23 - Service: WAN Miniport (ATW) Service (WANMiniportService) - America Online, Inc. - C:\WINDOWS\wanmpsvc.exe
O23 - Service: WMP54Gv4SVC - Unknown owner - C:\Program Files\Linksys Wireless-G PCI Wireless Network Monitor\WLService.exe" "WMP54Gv4.exe (file missing)
---- EOF - GMER 1.0.12 ----
Found program with Google @ Majorgeeks.com, hope that is OK . Ran scan log follows, is that as bad as it looks? So many line items.GMER 1.0.12.12011 - http://www.gmer.net
Rootkit scan 2007-01-04 21:44:58
Windows 5.1.2600 Service Pack 2
---- System - GMER 1.0.12 ----
SSDT 81FDABB8 ZwAlertResumeThread
SSDT 81FDABF0 ZwAlertThread
SSDT 8206A670 ZwAllocateVirtualMemory
SSDT GoBack2K.sys ZwClose
SSDT 81FFC1A8 ZwConnectPort
SSDT \??\C:\WINDOWS\system32\Drivers\SYMEVENT.SYS ZwCreateKey
SSDT 81FD8A50 ZwCreateMutant
SSDT 82086E28 ZwCreateThread
SSDT \??\C:\WINDOWS\system32\Drivers\SYMEVENT.SYS ZwDeleteKey
SSDT \??\C:\WINDOWS\system32\Drivers\SYMEVENT.SYS ZwDeleteValueKey
SSDT 81F790C0 ZwFreeVirtualMemory
SSDT GoBack2K.sys ZwFsControlFile
SSDT 81FD8B28 ZwImpersonateAnonymousToken
SSDT 81FD7DC8 ZwImpersonateThread
SSDT 81FA9190 ZwMapViewOfSection
SSDT 81FD57D8 ZwOpenEvent
SSDT \??\C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.sys ZwOpenProcess
SSDT 81F79338 ZwOpenProcessToken
SSDT 81F77AC0 ZwOpenThreadToken
SSDT 81CA1BF0 ZwResumeThread
SSDT 81F76F30 ZwSetContextThread
SSDT 81F77C58 ZwSetInformationProcess
SSDT 82007190 ZwSetInformationThread
SSDT \??\C:\WINDOWS\system32\Drivers\SYMEVENT.SYS ZwSetValueKey
SSDT 81FD5700 ZwSuspendProcess
SSDT 81FDAC28 ZwSuspendThread
SSDT \??\C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.sys ZwTerminateProcess
SSDT 82001D38 ZwTerminateThread
SSDT 81F77E90 ZwUnmapViewOfSection
SSDT 82065390 ZwWriteVirtualMemory
---- User code sections - GMER 1.0.12 ----
.text C:\Program Files\Internet Explorer\iexplore.exe[2096] USER32.dll!DialogBoxParamW 77D5662C 5 Bytes JMP 7E1F5415 C:\WINDOWS\system32\IEFRAME.dll
.text C:\Program Files\Internet Explorer\iexplore.exe[2096] USER32.dll!DialogBoxIndirectParamW 77D62043 5 Bytes JMP 7E38C510 C:\WINDOWS\system32\IEFRAME.dll
.text C:\Program Files\Internet Explorer\iexplore.exe[2096] USER32.dll!MessageBoxIndirectA 77D6A05A 5 Bytes JMP 7E38C491 C:\WINDOWS\system32\IEFRAME.dll
.text C:\Program Files\Internet Explorer\iexplore.exe[2096] USER32.dll!DialogBoxParamA 77D6B11C 5 Bytes JMP 7E38C4D5 C:\WINDOWS\system32\IEFRAME.dll
.text C:\Program Files\Internet Explorer\iexplore.exe[2096] USER32.dll!MessageBoxExW 77D80538 5 Bytes JMP 7E38C3D9 C:\WINDOWS\system32\IEFRAME.dll
.text C:\Program Files\Internet Explorer\iexplore.exe[2096] USER32.dll!MessageBoxExA 77D8055C 5 Bytes JMP 7E38C413 C:\WINDOWS\system32\IEFRAME.dll
.text C:\Program Files\Internet Explorer\iexplore.exe[2096] USER32.dll!DialogBoxIndirectParamA 77D86CAD 5 Bytes JMP 7E38C54B C:\WINDOWS\system32\IEFRAME.dll
.text C:\Program Files\Internet Explorer\iexplore.exe[2096] USER32.dll!MessageBoxIndirectW 77D96093 5 Bytes JMP 7E38C44D C:\WINDOWS\system32\IEFRAME.dll
---- Devices - GMER 1.0.12 ----
Device \Driver\Disk \Device\Harddisk0\DR0 IRP_MJ_READ [F8444190] GoBack2K.sys
Device \Driver\Disk \Device\Harddisk0\DR0 IRP_MJ_WRITE [F8444280] GoBack2K.sys
Device \Driver\Disk \Device\Harddisk0\DR0 IRP_MJ_FLUSH_BUFFERS [F8444370] GoBack2K.sys
Device \Driver\Disk \Device\Harddisk0\DR0 IRP_MJ_DEVICE_CONTROL [F8444600] GoBack2K.sys
Device \Driver\Disk \Device\Harddisk1\DR3 IRP_MJ_READ [F8444190] GoBack2K.sys
Device \Driver\Disk \Device\Harddisk1\DR3 IRP_MJ_WRITE [F8444280] GoBack2K.sys
Device \Driver\Disk \Device\Harddisk1\DR3 IRP_MJ_FLUSH_BUFFERS [F8444370] GoBack2K.sys
Device \Driver\Disk \Device\Harddisk1\DR3 IRP_MJ_DEVICE_CONTROL [F8444600] GoBack2K.sys
Device \Driver\Disk \Device\Harddisk1\DP(1)0-0+4 IRP_MJ_READ [F8444190] GoBack2K.sys
Device \Driver\Disk \Device\Harddisk1\DP(1)0-0+4 IRP_MJ_WRITE [F8444280] GoBack2K.sys
Device \Driver\Disk \Device\Harddisk1\DP(1)0-0+4 IRP_MJ_FLUSH_BUFFERS [F8444370] GoBack2K.sys
Device \Driver\Disk \Device\Harddisk1\DP(1)0-0+4 IRP_MJ_DEVICE_CONTROL [F8444600] GoBack2K.sys
---- Files - GMER 1.0.12 ----
ADS C:\Documents and Settings\user\Favorites\Animals\Petfinder PetNotes.url:favicon
ADS C:\Documents and Settings\user\Favorites\computer\ thekeys.ws.url:favicon
ADS C:\Documents and Settings\user\Favorites\computer\ASTALAVISTA.BOX.SK.url:favicon
ADS C:\Documents and Settings\user\Favorites\computer\PC Pitstop Free PC Diagnostics, computer help and Tuneups.url:favicon
ADS C:\Documents and Settings\user\Favorites\Duckies\http--www.northrup.org-photos-cruise-Day10-Barcelona-Spain-low-baby-ducks.jpg.url:favicon
ADS C:\Documents and Settings\user\Favorites\FUNNY\Albino Blacksheep - www.albinoblacksheep.com.url:favicon
ADS C:\Documents and Settings\user\Favorites\Rebelscum.com Your Star Wars Toy News and Reference Site.url:favicon
ADS C:\Documents and Settings\user\Favorites\Ren Faire\DawnPages -- Pouches.url:favicon
ADS C:\Documents and Settings\user\Favorites\school\Dr. Schaffer - Advising Stuff.url:favicon
ADS C:\Program Files\Common Files\Microsoft Shared\Shoebox\Default.ico:{4c8cc155-6c1e-11d1-8e41-00c04fb9386d}
ADS C:\Program Files\Common Files\Microsoft Shared\Shoebox\removabl.ico:{4c8cc155-6c1e-11d1-8e41-00c04fb9386d}
ADS ...
Logfile of HijackThis v1.99.1
Scan saved at 9:49:40 PM, on 1/4/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.5730.0011)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe
C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe
C:\Program Files\Common Files\Symantec Shared\ccProxy.exe
C:\Program Files\Common Files\Symantec Shared\SNDSrvc.exe
C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCSvc.exe
C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe
C:\WINDOWS\system32\LEXBCES.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\LEXPPS.EXE
C:\WINDOWS\Explorer.EXE
C:\Program Files\Common Files\AOL\ACS\AOLAcsd.exe
C:\Program Files\Common Files\AOL\TopSpeed\2.0\aoltsmon.exe
C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
C:\WINDOWS\system32\LVCOMSX.EXE
C:\WINDOWS\SOUNDMAN.EXE
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
C:\Program Files\Common Files\Symantec Shared\ccApp.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\aim\aim.exe
C:\Program Files\Microsoft Office\Office\MSOFFICE.EXE
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\Program Files\Norton SystemWorks\Norton GoBack\GBPoll.exe
C:\Program Files\Norton SystemWorks\Norton AntiVirus\IWP\NPFMntor.exe
C:\PROGRA~1\NORTON~1\NORTON~3\NPROTECT.EXE
C:\WINDOWS\System32\nvsvc32.exe
C:\Program Files\RemotelyAnywhere\RaMaint.exe
C:\Program Files\RemotelyAnywhere\RemotelyAnywhere.exe
C:\PROGRA~1\NORTON~1\NORTON~3\SPEEDD~1\NOPDB.EXE
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\wanmpsvc.exe
C:\Program Files\Linksys Wireless-G PCI Wireless Network Monitor\WLService.exe
C:\Program Files\Linksys Wireless-G PCI Wireless Network Monitor\WMP54Gv4.exe
C:\Program Files\RemotelyAnywhere\RAGui.exe
C:\Program Files\Common Files\Symantec Shared\Security Console\NSCSRVCE.EXE
C:\Program Files\Common Files\Symantec Shared\CCAPP.EXE
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Logitech\Video\FxSvr2.exe
C:\TEMP\Highjack This\hijackthis\HijackThis.exe
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft....k/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft....k/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft....k/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft....k/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://www.emachines.com/
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Microsoft Internet Explorer provided by Comcast
F2 - REG:system.ini: UserInit=C:\WINDOWS\System32\Userinit.exe
O2 - BHO: (no name) - SOFTWARE - (no file)
O2 - BHO: (no name) - {00000000-6CB0-410C-8C3D-8FA8D2011D0A} - (no file)
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: NAV Helper - {A8F38D8D-E480-4D52-B7A2-731BB6995FDD} - C:\Program Files\Norton SystemWorks\Norton AntiVirus\NavShExt.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll
O3 - Toolbar: AOL Toolbar - {4982D40A-C53B-4615-B15B-B5B5E98D167C} - C:\Program Files\AOL Toolbar\toolbar.dll
O3 - Toolbar: Norton AntiVirus - {C4069E3A-68F1-403E-B40E-20066696354B} - C:\Program Files\Norton SystemWorks\Norton AntiVirus\NavShExt.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll
O4 - HKLM\..\Run: [EM_EXEC] C:\PROGRA~1\Logitech\MOUSEW~1\SYSTEM\EM_EXEC.EXE
O4 - HKLM\..\Run: [LVCOMSX] C:\WINDOWS\system32\LVCOMSX.EXE
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Common Files\Symantec Shared\ccApp.exe"
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [AIM] C:\Program Files\aim\aim.exe -cnetwait.odl
O4 - Startup: Microsoft Office Shortcut Bar.lnk = C:\Program Files\Microsoft Office\Office\MSOFFICE.EXE
O8 - Extra context menu item: &AOL Toolbar search - res://C:\Program Files\AOL Toolbar\toolbar.dll/SEARCH.HTML
O9 - Extra button: AOL Toolbar - {4982D40A-C53B-4615-B15B-B5B5E98D167C} - C:\Program Files\AOL Toolbar\toolbar.dll
O9 - Extra 'Tools' menuitem: AOL Toolbar - {4982D40A-C53B-4615-B15B-B5B5E98D167C} - C:\Program Files\AOL Toolbar\toolbar.dll
O9 - Extra button: Express Cleanup - {5E638779-1818-4754-A595-EF1C63B87A56} - C:\Program Files\Norton SystemWorks\Norton Cleanup\WCQuick.lnk
O9 - Extra 'Tools' menuitem: Express Cleanup - {5E638779-1818-4754-A595-EF1C63B87A56} - C:\Program Files\Norton SystemWorks\Norton Cleanup\WCQuick.lnk
O9 - Extra button: ComcastHSI - {669B269B-0D4E-41FB-A3D8-FD67CA94F646} - http://www.comcast.net/ (file missing)
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O9 - Extra button: Support - {8828075D-D097-4055-AA02-2DBFA9D85E8A} - http://www.comcastsupport.com/ (file missing)
O9 - Extra button: Help - {97809617-3937-4F84-B335-9BB05EF1A8D4} - http://online.comcast.net/help/ (file missing)
O9 - Extra button: AIM - {AC9E2541-2814-11d5-BC6D-00B0D0A1DE45} - C:\Program Files\aim\aim.exe
O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\System32\Shdocvw.dll
O9 - Extra button: MoneySide - {E023F504-0C5A-4750-A1E7-A9046DEA8A21} - C:\Program Files\Microsoft Money\System\mnyviewer.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O11 - Options group: [INTERNATIONAL] International*
O14 - IERESET.INF: START_PAGE_URL=http://www.emachines.com
O16 - DPF: Mah Jong Garden by pogo - http://mahjong2.pogo.com/applet-5.9.4.22/m...g-ob-assets.cab
O16 - DPF: Phlinx by pogo - http://flinger.pogo.com/applet-5.9.3.38/fl...r-ob-assets.cab
O16 - DPF: Squelchies by pogo - http://squelchies.pogo.com/applet-5.9.1.18...s-ob-assets.cab
O16 - DPF: Word Whomp Whackdown by pogo - http://whackdown.pogo.com/applet-5.9.4.22/...n-ob-assets.cab
O16 - DPF: WordJong by pogo - http://wordjong.pogo.com/applet-5.9.5.30/w...g-ob-assets.cab
O16 - DPF: {0E5F0222-96B9-11D3-8997-00104BD12D94} (PCPitstop Utility) - http://pcpitstop.com...p/PCPitStop.CAB
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft....k/?linkid=39204
O16 - DPF: {41F17733-B041-4099-A042-B518BB6A408C} - http://a1540.g.akamai.net/7/1540/52/200212...meInstaller.exe
O16 - DPF: {4FAE30E1-EE9C-477D-8D06-BF8D3429B60F} (WebIQ Technology Client) - http://webiq001.webi...Q/bin/WebIQ.cab
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://download.bitd...can8/oscan8.cab
O16 - DPF: {B942A249-D1E7-4C11-98AE-FCB76B08747F} (RealArcadeRdxIE Class) - http://games-dl.real.com/gameconsole/Bundl...ArcadeRdxIE.cab
O16 - DPF: {D670D0B3-05AB-4115-9F87-D983EF1AC747} (AOL Downloader Plugin) - http://pak01.pictures.aol.com/ygp/aol/plug...oad.9.0.0.2.cab
O16 - DPF: {FD0B6769-6490-4A91-AA0A-B5AE0DC75AC9} (Performance Viewer Activex Control) - https://kitten:51889...ivex/RACtrl.cab
O20 - Winlogon Notify: !SASWinLogon - C:\Program Files\SUPERAntiSpyware\SASWINLO.dll
O20 - Winlogon Notify: igfxcui - C:\WINDOWS\SYSTEM32\igfxsrvc.dll
O20 - Winlogon Notify: rainit - C:\WINDOWS\SYSTEM32\RAinit.dll
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: AOL Connectivity Service (AOL ACS) - America Online - C:\Program Files\Common Files\AOL\ACS\AOLAcsd.exe
O23 - Service: AOL TopSpeed Monitor (AOL TopSpeedMonitor) - America Online, Inc - C:\Program Files\Common Files\AOL\TopSpeed\2.0\aoltsmon.exe
O23 - Service: AOL Spyware Protection Service (AOLService) - Unknown owner - C:\Program Files\Common Files\AOL\AOL Spyware Protection\\aolserv.exe (file missing)
O23 - Service: Automatic LiveUpdate Scheduler - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
O23 - Service: AVG Anti-Spyware Guard - Anti-Malware Development a.s. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe
O23 - Service: Symantec Network Proxy (ccProxy) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccProxy.exe
O23 - Service: Symantec Password Validation (ccPwdSvc) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccPwdSvc.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe
O23 - Service: GoBack Polling Service (GBPoll) - Symantec Corporation - C:\Program Files\Norton SystemWorks\Norton GoBack\GBPoll.exe
O23 - Service: LexBce Server (LexBceS) - Lexmark International, Inc. - C:\WINDOWS\system32\LEXBCES.EXE
O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
O23 - Service: Norton AntiVirus Auto-Protect Service (navapsvc) - Symantec Corporation - C:\Program Files\Norton SystemWorks\Norton AntiVirus\navapsvc.exe
O23 - Service: Norton AntiVirus Firewall Monitor Service (NPFMntor) - Symantec Corporation - C:\Program Files\Norton SystemWorks\Norton AntiVirus\IWP\NPFMntor.exe
O23 - Service: Norton UnErase Protection (NProtectService) - Symantec Corporation - C:\PROGRA~1\NORTON~1\NORTON~3\NPROTECT.EXE
O23 - Service: Norton Protection Center Service (NSCService) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\Security Console\NSCSRVCE.EXE
O23 - Service: NVIDIA Driver Helper Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe
O23 - Service: RemotelyAnywhere Maintenance Service (RAMaint) - 3am Labs, Inc. - C:\Program Files\RemotelyAnywhere\RaMaint.exe
O23 - Service: RemotelyAnywhere - 3am Labs, Inc. - C:\Program Files\RemotelyAnywhere\RemotelyAnywhere.exe
O23 - Service: Symantec AVScan (SAVScan) - Symantec Corporation - C:\Program Files\Norton SystemWorks\Norton AntiVirus\SAVScan.exe
O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\SNDSrvc.exe
O23 - Service: SPBBCSvc - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCSvc.exe
O23 - Service: Speed Disk service - Symantec Corporation - C:\PROGRA~1\NORTON~1\NORTON~3\SPEEDD~1\NOPDB.EXE
O23 - Service: Symantec Core LC - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe
O23 - Service: TuneUp WinStyler Theme Service (TUWinStylerThemeSvc) - TuneUp Software GmbH - C:\Program Files\TuneUp Utilities 2006\WinStylerThemeSvc.exe
O23 - Service: WAN Miniport (ATW) Service (WANMiniportService) - America Online, Inc. - C:\WINDOWS\wanmpsvc.exe
O23 - Service: WMP54Gv4SVC - Unknown owner - C:\Program Files\Linksys Wireless-G PCI Wireless Network Monitor\WLService.exe" "WMP54Gv4.exe (file missing)
---- EOF - GMER 1.0.12 ----
#7 OFFLINE
-
- Moderators
-
- 8,858 posts
I hate computers
- Gender:Male
Posted 06 January 2007 - 02:51 AM
Use hijackthis to delete these lines.
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
F2 - REG:system.ini: UserInit=C:\WINDOWS\System32\Userinit.exe
O2 - BHO: (no name) - SOFTWARE - (no file)
O2 - BHO: (no name) - {00000000-6CB0-410C-8C3D-8FA8D2011D0A} - (no file)
------------------
Let me know if things seem back to normal.
You have lots of stuff running on that pc and I would be more than happy to give you some suggestions to speed things up, but thats only if you want.
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
F2 - REG:system.ini: UserInit=C:\WINDOWS\System32\Userinit.exe
O2 - BHO: (no name) - SOFTWARE - (no file)
O2 - BHO: (no name) - {00000000-6CB0-410C-8C3D-8FA8D2011D0A} - (no file)
------------------
Let me know if things seem back to normal.
You have lots of stuff running on that pc and I would be more than happy to give you some suggestions to speed things up, but thats only if you want.
#8 OFFLINE
-
- Members
-
- 16 posts
Member
- Gender:Male
- Location:EAST COAST US
Posted 06 January 2007 - 04:15 AM
I will do what you told me to in the morning, duaghter working on paper for college. Any suggestions you can give is greatly appreciated and thank you for your help once again. If any ideas are given, I'll talk to her about them if it will affect what she can do.
THANKS ONCE AGAIN
cncman and daughter
THANKS ONCE AGAIN
cncman and daughter
