Please help me with my HijackThis log.

Started by Robert Borgersen, Apr 11 2007 08:57 PM

You cannot reply to this topic

9 replies to this topic

#1 OFFLINE Robert Borgersen

Newbie

Members
7 posts

Posted 11 April 2007 - 08:57 PM

I made a rookie mistake a couple weeks ago and ran an exe file from a non reputable site thinking it was what it said it was.

I took a week of cleaning, and I thought I had got everything, but I'm not sure.

Could someone look this over for me? Thanks.

Logfile of HijackThis v1.99.1
Scan saved at 3:47:14 PM, on 4/11/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16414)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Sygate\SPF\smc.exe
C:\WINDOWS\system32\spoolsv.exe
C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe
C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe
C:\PROGRA~1\Grisoft\AVGFRE~1\avgemc.exe
c:\program files\dynu systems\basic\BasicSvc.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\PROGRA~1\MTS\ENTERN~1\app\pppoeservice.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\RealVNC\VNC4\WinVNC4.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\dla\tfswctrl.exe
C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe
C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe
C:\Program Files\Motherboard Monitor 5\MBM5.EXE
C:\WINDOWS\SOUNDMAN.EXE
C:\WINDOWS\system32\RUNDLL32.EXE
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
C:\WINDOWS\system32\rundll32.exe
C:\Program Files\X3watch\x3watch.exe
C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\MSN Messenger\MsnMsgr.Exe
C:\Program Files\Microsoft ActiveSync\wcescomm.exe
C:\Program Files\Plaxo\2.12.1.1\PlaxoHelper.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Google\Google Desktop Search\GoogleDesktopIndex.exe
C:\PROGRA~1\MI3AA1~1\rapimgr.exe
C:\Program Files\Common Files\VideoMate\ComproRemote.exe
C:\Program Files\Common Files\VideoMate\ComproScheduler.exe
C:\Palm\HOTSYNC.EXE
C:\Program Files\Logitech\SetPoint\KEM.exe
C:\Program Files\Microsoft Office\Office\FINDFAST.EXE
C:\Program Files\Microsoft Office\Office\OSA.EXE
C:\Program Files\Logitech\SetPoint\KHALMNPR.EXE
C:\Program Files\Google\Google Desktop Search\GoogleDesktopCrawl.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Outlook Express\msimn.exe
C:\Program Files\Dynu Systems\Basic\DynuBas.exe
C:\Documents and Settings\Rob Borgersen\Desktop\HijackThis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.ca/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft....k/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft....k/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft....k/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft....k/?LinkId=69157
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = 69.17.96.248:8000
O2 - BHO: Yahoo! Companion BHO - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\PROGRA~1\Yahoo!\COMPAN~1\Installs\cpn\ycomp5_3_12_0.dll
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {206E52E0-D52E-11D4-AD54-0000E86C26F6} - C:\PROGRA~1\FRESHD~1\FRESHD~1\fdcatch.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: DriveLetterAccess - {5CA3D70E-1895-11CF-8E15-001234567890} - C:\WINDOWS\system32\dla\tfswshx.dll
O2 - BHO: Google Web Accelerator Helper - {69A87B7D-DE56-4136-9655-716BA50C19C7} - C:\Program Files\Google\Web Accelerator\GoogleWebAccToolbar.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\jre1.5.0_07\bin\ssv.dll
O2 - BHO: (no name) - {BDF3E430-B101-42AD-A544-FADC6B084872} - (no file)
O3 - Toolbar: &Yahoo! Companion - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\PROGRA~1\Yahoo!\COMPAN~1\Installs\cpn\ycomp5_3_12_0.dll
O3 - Toolbar: Google Web Accelerator - {DB87BFA2-A2E3-451E-8E5A-C89982D87CBF} - C:\Program Files\Google\Web Accelerator\GoogleWebAccToolbar.dll
O4 - HKLM\..\Run: [dla] C:\WINDOWS\system32\dla\tfswctrl.exe
O4 - HKLM\..\Run: [REGSHAVE] C:\Program Files\REGSHAVE\REGSHAVE.EXE /AUTORUN
O4 - HKLM\..\Run: [\\BORGDT\EPSON] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATI9AA.EXE /P14 "\\BORGDT\EPSON" /O14 "\\BORGDT\EPSON" /M "Stylus CX4600"
O4 - HKLM\..\Run: [ISUSPM Startup] C:\PROGRA~1\COMMON~1\INSTAL~1\UPDATE~1\ISUSPM.exe -startup
O4 - HKLM\..\Run: [ISUSScheduler] "C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe" -start
O4 - HKLM\..\Run: [AVG7_CC] C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe /STARTUP
O4 - HKLM\..\Run: [NAV Agent] C:\PROGRA~1\NORTON~1\navapw32.exe
O4 - HKLM\..\Run: [\BORGDT\EPSON] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATI9AA.EXE /P14 "\\BORGDT\EPSON" /O14 "\\BORGDT\EPSON" /M "Stylus CX4600"
O4 - HKLM\..\Run: [Symantec NetDriver Monitor] C:\PROGRA~1\SYMNET~1\SNDMon.exe
O4 - HKLM\..\Run: [MBM 5] "C:\Program Files\Motherboard Monitor 5\MBM5.EXE"
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [EPoXUSDM] "C:\Program Files\EPOX\USDM\USDM.EXE" "5000"
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [Google Desktop Search] "C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe" /startup
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\j2re1.4.2_03\bin\jusched.exe
O4 - HKLM\..\Run: [LogitechVideoRepair] C:\Program Files\Logitech\Video\ISStart.exe
O4 - HKLM\..\Run: [NBCUniversal Media Manager Tray] "C:\Program Files\Entriq\MediaSphere\Bin\EntriqMediaTray.exe" /CustomId:NBCUniversal
O4 - HKLM\..\Run: [x3watch] C:\Program Files\X3watch\x3watch.exe
O4 - HKLM\..\Run: [SmcService] C:\PROGRA~1\Sygate\SPF\smc.exe -startgui
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKCU\..\Run: [Yahoo! Pager] C:\Program Files\Yahoo!\Messenger\ypager.exe -quiet
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [LDM] \Program\
O4 - HKCU\..\Run: [H/PC Connection Agent] "C:\Program Files\Microsoft ActiveSync\wcescomm.exe"
O4 - HKCU\..\Run: [PlaxoUpdate] C:\Program Files\Plaxo\2.12.1.1\PlaxoHelper.exe -a
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [updateMgr] "C:\Program Files\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.exe" AcRdB7_0_9 -reboot 1
O4 - Startup: PowerReg Scheduler V3.exe
O4 - Global Startup: Adobe Gamma Loader.exe.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: Basic Client.lnk = C:\Program Files\Dynu Systems\Basic\DynuBas.exe
O4 - Global Startup: ComproRemote.lnk = ?
O4 - Global Startup: ComproScheduler.lnk = ?
O4 - Global Startup: HotSync Manager.lnk = C:\Palm\HOTSYNC.EXE
O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe
O4 - Global Startup: Logitech SetPoint.lnk = C:\Program Files\Logitech\SetPoint\KEM.exe
O4 - Global Startup: Microsoft Find Fast.lnk = C:\Program Files\Microsoft Office\Office\FINDFAST.EXE
O4 - Global Startup: Office Startup.lnk = C:\Program Files\Microsoft Office\Office\OSA.EXE
O4 - Global Startup: Run Google Web Accelerator.lnk = C:\Program Files\Google\Web Accelerator\GoogleWebAccWarden.exe
O4 - Global Startup: TweakYC.lnk = ?
O8 - Extra context menu item: &eBay Search - res://C:\Program Files\eBay\eBay Toolbar2\eBayTb.dll/RCSearch.html
O8 - Extra context menu item: Add Feed to Tristana Reader - res://C:\Program Files\Tristana Reader\Reader.exe/AddContent.js
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\jre1.5.0_07\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\jre1.5.0_07\bin\ssv.dll
O9 - Extra button: Create Mobile Favorite - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MI3AA1~1\INetRepl.dll
O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MI3AA1~1\INetRepl.dll
O9 - Extra 'Tools' menuitem: Create Mobile Favorite... - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MI3AA1~1\INetRepl.dll
O9 - Extra button: IE HTTP Analyzer - {C7B3DF1E-6EFC-41E8-9DA7-EBC1F973832D} - C:\PROGRA~1\HTTPAN~1\IEHTTP~1.DLL
O9 - Extra 'Tools' menuitem: IE HTTP Analyzer - {C7B3DF1E-6EFC-41E8-9DA7-EBC1F973832D} - C:\PROGRA~1\HTTPAN~1\IEHTTP~1.DLL
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\MSMSGS.EXE
O9 - Extra 'Tools' menuitem: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\MSMSGS.EXE
O11 - Options group: [INTERNATIONAL] International*
O15 - Trusted Zone: http://www.kaspersky.com
O16 - DPF: {04E214E5-63AF-4236-83C6-A7ADCBF9BD02} (HouseCall Control) - http://housecall60.t...all/xscan60.cab
O16 - DPF: {05D44720-58E3-49E6-BDF6-D00330E511D3} (StagingUI Object) - http://zone.msn.com/...UI.cab40641.cab
O16 - DPF: {08BEF711-06DA-48B2-9534-802ECAA2E4F9} (PlxInstall Class) - http://down.plaxo.co...laxoInstall.cab
O16 - DPF: {0E5F0222-96B9-11D3-8997-00104BD12D94} (PCPitstop Utility) - http://www.pcpitstop...p/PCPitStop.CAB
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft....k/?LinkID=39204
O16 - DPF: {1842B0EE-B597-11D4-8997-00104BD12D94} (iCC Class) - http://www.pcpitstop...cpConnCheck.cab
O16 - DPF: {1C3DE665-D259-4C72-9D7D-C51FCB4CCFB9} (Panasonic Network Camera) - http://209.32.117.89.../SysCamInst.cab
O16 - DPF: {215B8138-A3CF-44C5-803F-8226143CFC0A} (Trend Micro ActiveX Scan Agent 6.6) - http://housecall65.trendmicro.com/housecal...ivex/hcImpl.cab
O16 - DPF: {2BC66F54-93A8-11D3-BEB6-00105AA9B6AE} (Symantec AntiVirus scanner) - http://security.symantec.com/sscv6/SharedC...bin/AvSniff.cab
O16 - DPF: {3BB54395-5982-4788-8AF4-B5388FFDD0D8} (ZoneBuddy Class) - http://zone.msn.com/...dy.cab32846.cab
O16 - DPF: {4B9F2C37-C0CF-42BC-BB2D-DCFA8B25CABF} (PopCapLoaderCtrl Class) - http://sympatico.zone.msn.com/bingame/rock...pcaploader1.cab
O16 - DPF: {4C39376E-FA9D-4349-BACC-D305C1750EF3} (EPUImageControl Class) - http://tools.ebayimg.com/eps/wl/activex/EP...l_v1-0-3-24.cab
O16 - DPF: {5736C456-EA94-4AAC-BB08-917ABDD035B3} (ZonePAChat Object) - http://zone.msn.com/...at.cab32846.cab
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://download.bitd...can8/oscan8.cab
O16 - DPF: {644E432F-49D3-41A1-8DD5-E099162EEEC5} (Symantec RuFSI Utility Class) - http://security.symantec.com/sscv6/SharedC...n/bin/cabsa.cab
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftupdat...b?1155615848000
O16 - DPF: {6E5E167B-1566-4316-B27F-0DDAB3484CF7} (Image Uploader Control) - http://www.photolab....geUploader4.cab
O16 - DPF: {809A6301-7B40-4436-A02C-87B8D3D7D9E3} (ZPA_DMNO Object) - http://zone.msn.com/...no.cab41096.cab
O16 - DPF: {8714912E-380D-11D5-B8AA-00D0B78F3D48} (Yahoo! Webcam Upload Wrapper) - http://chat.yahoo.com/cab/yuplapp.cab
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/Messe...nt.cab31267.cab
O16 - DPF: {917623D1-D8E5-11D2-BE8B-00104B06BDE3} (CamImage Class) - http://130.179.249.8...sCamControl.cab
O16 - DPF: {9D190AE6-C81E-4039-8061-978EBAD10073} (F-Secure Online Scanner 3.0) - http://support.f-sec...m/ols/fscax.cab
O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/MsnMesse...pDownloader.cab
O16 - DPF: {B49C4597-8721-4789-9250-315DFBD9F525} (IWinAmpActiveX Class) - http://cdn.digitalci....1.11_en_dl.cab
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (ZoneIntro Class) - http://cdn2.zone.msn.com/binFramework/v10/...ro.cab53083.cab
O16 - DPF: {B9191F79-5613-4C76-AA2A-398534BB8999} - http://us.dl1.yimg.com/download.yahoo.com/...utocomplete.cab
O16 - DPF: {CAFEEFAC-0014-0002-0003-ABCDEFFEDCBA} (Java Plug-in) -
O16 - DPF: {CBD8B1CB-2F5F-415F-93E8-A297B33DCBB2} (CentrinoCheck Control) - http://entriq.vo.llnwd.net/o1/NBCUniversal...eck_1_0_0_4.cab
O16 - DPF: {CE7D2BF2-D173-4CE2-9DAF-15EA153B5B43} (MediaControl Class) - http://entriq.vo.llnwd.net/o1/NBCUniversal...0_15_Silent.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - https://download.macromedia.com/pub/shockwa...ash/swflash.cab
O16 - DPF: {D57262F5-9637-4E67-BC59-88C53EA76FC3} (ULcontrol Control) - https://pix.futuresh...ulcontrolxp.cab
O16 - DPF: {DA2AA6CF-5C7A-4B71-BC3B-C771BB369937} (StadiumProxy Class) - http://zone.msn.com/...xy.cab41227.cab
O16 - DPF: {DE0FB644-C59B-46D1-B650-88BA945BC98F} (NBCUniversal Class) - http://entriq.vo.llnwd.net/o1/NBCUniversal...sal_1_0_0_3.cab
O16 - DPF: {DF780F87-FF2B-4DF8-92D0-73DB16A1543A} (PopCapLoader Object) - http://zone.msn.com/...ploader_v10.cab
O16 - DPF: {E473A65C-8087-49A3-AFFD-C5BC4A10669B} (Quantum Streaming IE Player Class) - http://mvnet.xlontec...2ie06101001.cab
O16 - DPF: {E5D419D6-A846-4514-9FAD-97E826C84822} (HeartbeatCtl Class) - http://fdl.msn.com/z...s/heartbeat.cab
O16 - DPF: {F127B9BA-89EA-4B04-9C67-2074A9DF61FC} (PCUploader Class) - http://www.walmartph...x/PCAXSetup.cab?
O16 - DPF: {F5D98C43-DB16-11CF-8ECA-0000C0FD59C7} (ActiveCGM Control) - http://tgs.gov.mb.ca...LoadIE/Acgm.cab
O18 - Protocol: bw+0 - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw+0s - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0 - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0s - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00 - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00s - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10 - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10s - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20 - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20s - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30 - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30s - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40 - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40s - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50 - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50s - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60 - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60s - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70 - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70s - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80 - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80s - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90 - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90s - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0 - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0s - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0 - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0s - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0 - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0s - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0 - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0s - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0 - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0s - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0 - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0s - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O18 - Protocol: bwg0 - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwg0s - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0 - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0s - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0 - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0s - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0 - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0s - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0 - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0s - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0 - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0s - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0 - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0s - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0 - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0s - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0 - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0s - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0 - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0s - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0 - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0s - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0 - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0s - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0 - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0s - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0 - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0s - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0 - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0s - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0 - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0s - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0 - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0s - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0 - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0s - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0 - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0s - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0 - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0s - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: offline-8876480 - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O20 - AppInit_DLLs: C:\PROGRA~1\Google\GOOGLE~1\GOEC62~1.DLL C:\PROGRA~1\Google\WEBACC~1\FASTSE~1.DLL
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe
O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe
O23 - Service: AVG E-mail Scanner (AVGEMS) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgemc.exe
O23 - Service: Dynu Basic Dynamic DNS Client v3.24 (DynuBasic) - Unknown owner - c:\program files\dynu systems\basic\BasicSvc.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iPodService - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: PACSPTISVR - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AVLib\Pacsptisvr.exe
O23 - Service: PPPoE Service (PPPoEService) - Unknown owner - C:\PROGRA~1\MTS\ENTERN~1\app\pppoeservice.exe
O23 - Service: Sygate Personal Firewall (SmcService) - Sygate Technologies, Inc. - C:\Program Files\Sygate\SPF\smc.exe
O23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AVLib\Sptisrv.exe
O23 - Service: VNC Server Version 4 (WinVNC4) - Unknown owner - C:\Program Files\RealVNC\VNC4\WinVNC4.exe" -service (file missing)

I also noticed this:
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = 69.17.96.248:8000

I use Google Web Accelerator, but I don't think 69.17.96.248 is a google address...they are usually 74.something, but this might be nothing.

Thanks so much for any help you can provide!

Rob

#2 OFFLINE Robert Borgersen

Newbie

Members
7 posts

Posted 12 April 2007 - 12:29 AM

Also FYI:

Running Windows XP Pro SP2
Fully up to date
Spybot
AVG Antivirus
P4 3GHZ
1 GIG RAM

If anything else is needed plz let me know.

Rob

#3 OFFLINE rridgely

I hate computers

Moderators
8,858 posts

Gender:Male

Posted 12 April 2007 - 12:49 AM

Welcome to the forum.

Download AVG Anti-Spyware

Load AVG antispyware and then click the Update tab at the top. Under Manual Update click Start update.
After the update finishes (the status bar at the bottom will display "Update successful")
Click on the Scanner tab at the top and then click on Complete System Scan
Ewido will list any infections found on the left, when the scan has finished, it will automatically set the recommended action. Click the Apply all actions button. AVG antispyware will then display "All actions have been applied" on the right.
Click on "Save Report", then "Save Report As". This will create a text file which you can then save to the Desktop and post back

Note that this is not AVG antivirus but the program formally known as Ewido.

Download Superantispyware

Load Superantispyware and click the check for updates button.
Once the update is finished click the scan your computer button.
Check Perform Complete Scan and then next.
Superantispyware will now scan your computer and when its finished it will list all the infections it has found.
Make sure that they all have a check next to them and press next.
Click finish and you will be taken back to the main interface.
Click Preferences and then click the statistics/logs tab. Click the dated log and press view log and a text file will appear.
Copy and paste the log onto the forum.

Post an avg antispyware log, a superantispyware log, and a new hijackthis log.

#4 OFFLINE Robert Borgersen

Newbie

Members
7 posts

Posted 12 April 2007 - 05:14 PM

AVG AntiSpyware Scan:

---------------------------------------------------------
AVG Anti-Spyware - Scan Report
---------------------------------------------------------

+ Created at: 10:52:56 AM 4/12/2007

+ Scan result:

C:\Documents and Settings\Rob Borgersen\Desktop\BL4CK-vncviewer-authbypass.exe -> Not-A-Virus.RemoteAdmin.Win32.WinVNC.4110 : Ignored.
:mozilla.239:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.240:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.241:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.242:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.243:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.244:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.245:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.246:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.247:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.248:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.249:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.250:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.251:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.252:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.253:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.254:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.255:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.256:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.257:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.258:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.259:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.260:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.261:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.262:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.263:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.264:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.265:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.266:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.267:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.268:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.269:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.270:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.271:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.272:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.273:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.274:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.275:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.276:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.277:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.279:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.280:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.281:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.282:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.283:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.284:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.285:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.286:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.760:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.153:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.Adbrite : Cleaned.
:mozilla.155:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.Adbrite : Cleaned.
:mozilla.156:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.Adbrite : Cleaned.
:mozilla.163:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.Adbrite : Cleaned.
:mozilla.514:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.Adengage : Cleaned.
:mozilla.627:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.Adjuggler : Cleaned.
:mozilla.628:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.Adjuggler : Cleaned.
:mozilla.630:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.Adjuggler : Cleaned.
:mozilla.442:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.443:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.444:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.637:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.638:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.639:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.456:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.Adtech : Cleaned.
:mozilla.457:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.Adtech : Cleaned.
:mozilla.91:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.92:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.93:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.94:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.95:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.226:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.Atdmt : Cleaned.
:mozilla.550:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.Burstbeacon : Cleaned.
:mozilla.376:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.Burstnet : Cleaned.
:mozilla.378:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.Burstnet : Cleaned.
:mozilla.379:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.Burstnet : Cleaned.
:mozilla.84:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned.
:mozilla.85:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned.
:mozilla.86:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned.
:mozilla.87:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned.
:mozilla.88:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned.
:mozilla.89:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned.
:mozilla.90:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned.
:mozilla.515:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.Clickhype : Cleaned.
:mozilla.238:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.Cnn : Cleaned.
:mozilla.397:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.Com : Cleaned.
:mozilla.398:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.Com : Cleaned.
:mozilla.399:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.Com : Cleaned.
:mozilla.400:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.Com : Cleaned.
:mozilla.401:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.Com : Cleaned.
:mozilla.402:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.Com : Cleaned.
:mozilla.403:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.Com : Cleaned.
:mozilla.404:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.Com : Cleaned.
:mozilla.405:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.Com : Cleaned.
:mozilla.406:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.Com : Cleaned.
:mozilla.664:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.Cpvfeed : Cleaned.
:mozilla.667:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.Cpvfeed : Cleaned.
:mozilla.668:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.Cpvfeed : Cleaned.
:mozilla.669:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.Cpvfeed : Cleaned.
:mozilla.19:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.Doubleclick : Cleaned.
:mozilla.20:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.Doubleclick : Cleaned.
:mozilla.22:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.Doubleclick : Cleaned.
:mozilla.23:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.Doubleclick : Cleaned.
:mozilla.24:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.Doubleclick : Cleaned.
:mozilla.25:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.Doubleclick : Cleaned.
:mozilla.326:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.Esomniture : Cleaned.
:mozilla.866:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.Esomniture : Cleaned.
:mozilla.40:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.Euroclick : Cleaned.
:mozilla.41:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.Euroclick : Cleaned.
:mozilla.42:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.Euroclick : Cleaned.
:mozilla.43:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.Euroclick : Cleaned.
:mozilla.50:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.Euroclick : Cleaned.
:mozilla.364:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.Falkag : Cleaned.
:mozilla.365:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.Falkag : Cleaned.
:mozilla.366:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.Falkag : Cleaned.
:mozilla.367:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.Falkag : Cleaned.
:mozilla.547:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.Falkag : Cleaned.
:mozilla.548:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.Falkag : Cleaned.
:mozilla.549:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.Falkag : Cleaned.
:mozilla.116:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.Fastclick : Cleaned.
:mozilla.117:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.Fastclick : Cleaned.
:mozilla.118:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.Fastclick : Cleaned.
:mozilla.119:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.Fastclick : Cleaned.
:mozilla.450:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned.
:mozilla.451:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned.
:mozilla.452:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned.
:mozilla.747:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned.
:mozilla.877:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned.
:mozilla.894:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned.
:mozilla.306:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.Imrworldwide : Cleaned.
:mozilla.307:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.Imrworldwide : Cleaned.
:mozilla.591:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.Itrack : Cleaned.
:mozilla.881:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.Masterstats : Cleaned.
:mozilla.336:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.Mediaplex : Cleaned.
:mozilla.563:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.Overture : Cleaned.
:mozilla.145:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.Paypal : Cleaned.
:mozilla.439:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.Questionmarket : Cleaned.
:mozilla.440:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.Questionmarket : Cleaned.
:mozilla.441:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.Questionmarket : Cleaned.
:mozilla.106:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.Realmedia : Cleaned.
:mozilla.107:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.Realmedia : Cleaned.
:mozilla.108:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.Realmedia : Cleaned.
:mozilla.59:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.Revsci : Cleaned.
:mozilla.60:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.Revsci : Cleaned.
:mozilla.62:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.Revsci : Cleaned.
:mozilla.63:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.Revsci : Cleaned.
:mozilla.64:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.Revsci : Cleaned.
:mozilla.65:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.Revsci : Cleaned.
:mozilla.66:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.Revsci : Cleaned.
:mozilla.69:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.Revsci : Cleaned.
:mozilla.650:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.Serving-sys : Cleaned.
:mozilla.651:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.Serving-sys : Cleaned.
:mozilla.652:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.Serving-sys : Cleaned.
:mozilla.653:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.Serving-sys : Cleaned.
:mozilla.654:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.Serving-sys : Cleaned.
:mozilla.655:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.Serving-sys : Cleaned.
:mozilla.164:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.Specificclick : Cleaned.
:mozilla.165:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.Specificclick : Cleaned.
:mozilla.166:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.Specificclick : Cleaned.
:mozilla.167:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.Specificclick : Cleaned.
:mozilla.168:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.Specificclick : Cleaned.
:mozilla.578:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.Specificclick : Cleaned.
:mozilla.579:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.Specificclick : Cleaned.
:mozilla.580:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.Specificclick : Cleaned.
:mozilla.581:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.Specificclick : Cleaned.
:mozilla.582:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.Specificclick : Cleaned.
:mozilla.583:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.Specificclick : Cleaned.
:mozilla.177:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
:mozilla.178:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
:mozilla.179:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
:mozilla.180:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
:mozilla.181:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
:mozilla.182:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
:mozilla.183:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
:mozilla.184:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
:mozilla.185:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
:mozilla.186:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
:mozilla.187:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
:mozilla.188:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
:mozilla.189:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
:mozilla.190:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
:mozilla.191:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
:mozilla.192:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
:mozilla.193:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
:mozilla.194:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
:mozilla.195:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
:mozilla.196:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
:mozilla.197:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
:mozilla.198:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
:mozilla.199:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
:mozilla.200:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
:mozilla.201:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
:mozilla.202:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
:mozilla.203:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
:mozilla.204:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
:mozilla.205:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
:mozilla.206:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
:mozilla.207:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
:mozilla.208:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
:mozilla.209:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
:mozilla.210:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
:mozilla.211:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
:mozilla.212:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
:mozilla.213:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
:mozilla.214:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
:mozilla.215:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
:mozilla.216:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
:mozilla.217:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
:mozilla.218:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
:mozilla.219:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
:mozilla.220:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
:mozilla.221:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
:mozilla.382:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.Tacoda : Cleaned.
:mozilla.383:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.Tacoda : Cleaned.
:mozilla.384:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.Tacoda : Cleaned.
:mozilla.385:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.Tacoda : Cleaned.
:mozilla.453:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.Tacoda : Cleaned.
:mozilla.461:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.Tacoda : Cleaned.
:mozilla.332:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.Tradedoubler : Cleaned.
:mozilla.333:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.Tradedoubler : Cleaned.
:mozilla.334:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.Tradedoubler : Cleaned.
:mozilla.430:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.Trafficmp : Cleaned.
:mozilla.431:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.Trafficmp : Cleaned.
:mozilla.432:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.Trafficmp : Cleaned.
:mozilla.433:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.Trafficmp : Cleaned.
:mozilla.434:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.Trafficmp : Cleaned.
:mozilla.435:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.Trafficmp : Cleaned.
:mozilla.436:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.Trafficmp : Cleaned.
:mozilla.437:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.Trafficmp : Cleaned.
:mozilla.438:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.Trafficmp : Cleaned.
:mozilla.798:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.Trafic : Cleaned.
:mozilla.104:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.Tribalfusion : Cleaned.
:mozilla.540:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.Valuead : Cleaned.
:mozilla.541:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.Valuead : Cleaned.
:mozilla.542:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.Valuead : Cleaned.
:mozilla.543:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.Valuead : Cleaned.
:mozilla.544:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.Valuead : Cleaned.
:mozilla.545:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.Valuead : Cleaned.
:mozilla.455:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.Webtrendslive : Cleaned.
:mozilla.70:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.71:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.72:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.73:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.74:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.75:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.76:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.78:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.351:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.Zedo : Cleaned.
:mozilla.352:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.Zedo : Cleaned.
:mozilla.353:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.Zedo : Cleaned.
:mozilla.354:C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cookies.txt -> TrackingCookie.Zedo : Cleaned.

::Report end

#5 OFFLINE Robert Borgersen

Newbie

Members
7 posts

Posted 12 April 2007 - 05:15 PM

SUPERAntiSpyware Log:

SUPERAntiSpyware Scan Log
Generated 04/12/2007 at 12:01 PM

Application Version : 3.6.1000

Core Rules Database Version : 3217
Trace Rules Database Version: 1227

Scan type : Complete Scan
Total Scan Time : 01:07:54

Memory items scanned : 519
Memory threats detected : 0
Registry items scanned : 6519
Registry threats detected : 6
File items scanned : 91212
File threats detected : 191

Unclassified.Unknown Origin
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks#{B07CB267-5E6F-441F-9B3C-324EFE70F897}

Adware.Tracking Cookie
C:\Documents and Settings\Rob Borgersen\Cookies\rob_borgersen@tribalfusion[2].txt
C:\Documents and Settings\Rob Borgersen\Cookies\rob_borgersen@adultfriendfinder[2].txt
C:\Documents and Settings\Rob Borgersen\Cookies\rob_borgersen@atwola[1].txt
C:\Documents and Settings\Rob Borgersen\Cookies\rob_borgersen@hitbox[2].txt
C:\Documents and Settings\Rob Borgersen\Cookies\rob_borgersen@2o7[2].txt
C:\Documents and Settings\Rob Borgersen\Cookies\rob_borgersen@imrworldwide[2].txt
C:\Documents and Settings\Rob Borgersen\Cookies\rob_borgersen@atdmt[2].txt
C:\Documents and Settings\Rob Borgersen\Cookies\rob_borgersen@ads.cnn[1].txt
C:\Documents and Settings\Rob Borgersen\Cookies\rob_borgersen@zedo[1].txt
C:\Documents and Settings\Rob Borgersen\Cookies\rob_borgersen@adopt.euroclick[1].txt
C:\Documents and Settings\Rob Borgersen\Cookies\rob_borgersen@media.fastclick[2].txt
C:\Documents and Settings\Rob Borgersen\Cookies\rob_borgersen@cnn.122.2o7[1].txt
C:\Documents and Settings\Rob Borgersen\Cookies\rob_borgersen@www.geeksaresexy[1].txt
C:\Documents and Settings\Rob Borgersen\Cookies\rob_borgersen@www.adbrite[2].txt
C:\Documents and Settings\Rob Borgersen\Cookies\rob_borgersen@revsci[2].txt
C:\Documents and Settings\Rob Borgersen\Cookies\rob_borgersen@serving-sys[2].txt
C:\Documents and Settings\Rob Borgersen\Cookies\rob_borgersen@doubleclick[1].txt
C:\Documents and Settings\Rob Borgersen\Cookies\rob_borgersen@mediaplex[2].txt
C:\Documents and Settings\Rob Borgersen\Cookies\rob_borgersen@specificclick[2].txt
C:\Documents and Settings\Rob Borgersen\Cookies\rob_borgersen@partner2profit[2].txt
C:\Documents and Settings\Rob Borgersen\Cookies\rob_borgersen@fastclick[2].txt
C:\Documents and Settings\Rob Borgersen\Cookies\rob_borgersen@msnportal.112.2o7[1].txt
C:\Documents and Settings\Rob Borgersen\Cookies\rob_borgersen@overture[1].txt
C:\Documents and Settings\Rob Borgersen\Cookies\rob_borgersen@edge.ru4[1].txt
C:\Documents and Settings\Rob Borgersen\Cookies\rob_borgersen@bs.serving-sys[2].txt
C:\Documents and Settings\Rob Borgersen\Cookies\rob_borgersen@advertising[1].txt
C:\Documents and Settings\Rob Borgersen\Cookies\rob_borgersen@realmedia[1].txt
C:\Documents and Settings\Rob Borgersen\Cookies\rob_borgersen@questionmarket[1].txt
C:\Documents and Settings\Rob Borgersen\Cookies\rob_borgersen@tacoda[2].txt
C:\Documents and Settings\Rob Borgersen\Cookies\rob_borgersen@precisionclick[1].txt
C:\Documents and Settings\Rob Borgersen\Cookies\rob_borgersen@revenue[2].txt
C:\Documents and Settings\Rob Borgersen\Cookies\rob_borgersen@ehg-ctv.hitbox[2].txt
C:\Documents and Settings\Rob Borgersen\Cookies\rob_borgersen@ads.pointroll[1].txt
C:\Documents and Settings\LocalService\Cookies\system@ads.addesktop[2].txt
C:\Documents and Settings\LocalService\Cookies\system@ads.adsag[1].txt
C:\Documents and Settings\LocalService\Cookies\system@ads.as4x.tmcs.ticketmaster[2].txt
C:\Documents and Settings\LocalService\Cookies\system@myadserv.qunara[1].txt
C:\Documents and Settings\LocalService\Cookies\system@tracking[1].txt
C:\Documents and Settings\Rob Borgersen\Local Settings\Temp\Cookies\rob borgersen@adcentriconline[1].txt
C:\Documents and Settings\Rob Borgersen\Local Settings\Temp\Cookies\rob borgersen@ads.as4x.tmcs.ticketmaster[1].txt
C:\Documents and Settings\Rob Borgersen\Local Settings\Temp\Cookies\rob borgersen@atwola[2].txt
D:\NicolsDrive\Documents and Settings\Xp\Cookies\xp@1.primaryads[2].txt
D:\NicolsDrive\Documents and Settings\Xp\Cookies\xp@a.websponsors[2].txt
D:\NicolsDrive\Documents and Settings\Xp\Cookies\xp@adcentriconline[1].txt
D:\NicolsDrive\Documents and Settings\Xp\Cookies\xp@adinterax[1].txt
D:\NicolsDrive\Documents and Settings\Xp\Cookies\xp@adknowledge[1].txt
D:\NicolsDrive\Documents and Settings\Xp\Cookies\xp@adopt.hbmediapro[1].txt
D:\NicolsDrive\Documents and Settings\Xp\Cookies\xp@adopt.hotbar[1].txt
D:\NicolsDrive\Documents and Settings\Xp\Cookies\xp@adopt.hotbar[2].txt
D:\NicolsDrive\Documents and Settings\Xp\Cookies\xp@adopt.hotbar[3].txt
D:\NicolsDrive\Documents and Settings\Xp\Cookies\xp@adopt.hotbar[4].txt
D:\NicolsDrive\Documents and Settings\Xp\Cookies\xp@adopt.hotbar[5].txt
D:\NicolsDrive\Documents and Settings\Xp\Cookies\xp@adopt.hotbar[6].txt
D:\NicolsDrive\Documents and Settings\Xp\Cookies\xp@adopt.hotbar[7].txt
D:\NicolsDrive\Documents and Settings\Xp\Cookies\xp@adopt.hotbar[8].txt
D:\NicolsDrive\Documents and Settings\Xp\Cookies\xp@adprofile[1].txt
D:\NicolsDrive\Documents and Settings\Xp\Cookies\xp@adrevolver[1].txt
D:\NicolsDrive\Documents and Settings\Xp\Cookies\xp@adrevolver[3].txt
D:\NicolsDrive\Documents and Settings\Xp\Cookies\xp@ads.addesktop[1].txt
D:\NicolsDrive\Documents and Settings\Xp\Cookies\xp@ads.adsag[2].txt
D:\NicolsDrive\Documents and Settings\Xp\Cookies\xp@ads.as4x.tmcs.ticketmaster[1].txt
D:\NicolsDrive\Documents and Settings\Xp\Cookies\xp@ads.as4x.tmcs[2].txt
D:\NicolsDrive\Documents and Settings\Xp\Cookies\xp@ads.monster[1].txt
D:\NicolsDrive\Documents and Settings\Xp\Cookies\xp@ads.oneplace[2].txt
D:\NicolsDrive\Documents and Settings\Xp\Cookies\xp@ads.ussearch[1].txt
D:\NicolsDrive\Documents and Settings\Xp\Cookies\xp@adserver.sharewareonline[2].txt
D:\NicolsDrive\Documents and Settings\Xp\Cookies\xp@adserver[1].txt
D:\NicolsDrive\Documents and Settings\Xp\Cookies\xp@adv.surinter[1].txt
D:\NicolsDrive\Documents and Settings\Xp\Cookies\xp@advert.travlang[2].txt
D:\NicolsDrive\Documents and Settings\Xp\Cookies\xp@apmebf[2].txt
D:\NicolsDrive\Documents and Settings\Xp\Cookies\xp@askiacsearchmedia[2].txt
D:\NicolsDrive\Documents and Settings\Xp\Cookies\xp@ath.belnk[2].txt
D:\NicolsDrive\Documents and Settings\Xp\Cookies\xp@atwola[1].txt
D:\NicolsDrive\Documents and Settings\Xp\Cookies\xp@azjmp[2].txt
D:\NicolsDrive\Documents and Settings\Xp\Cookies\xp@banners.nbcupromotes[1].txt
D:\NicolsDrive\Documents and Settings\Xp\Cookies\xp@bannerspace[2].txt
D:\NicolsDrive\Documents and Settings\Xp\Cookies\xp@banner[1].txt
D:\NicolsDrive\Documents and Settings\Xp\Cookies\xp@belnk[2].txt
D:\NicolsDrive\Documents and Settings\Xp\Cookies\xp@bizrate[2].txt
D:\NicolsDrive\Documents and Settings\Xp\Cookies\xp@blazinmultimedia[1].txt
D:\NicolsDrive\Documents and Settings\Xp\Cookies\xp@c3.gostats[2].txt
D:\NicolsDrive\Documents and Settings\Xp\Cookies\xp@canadiansponsors.directtrack[2].txt
D:\NicolsDrive\Documents and Settings\Xp\Cookies\xp@clicks.amusingoffers[1].txt
D:\NicolsDrive\Documents and Settings\Xp\Cookies\xp@clicks.bargainpost[2].txt
D:\NicolsDrive\Documents and Settings\Xp\Cookies\xp@clicks.checkoutsales[1].txt
D:\NicolsDrive\Documents and Settings\Xp\Cookies\xp@clicks.checkoutshopping[1].txt
D:\NicolsDrive\Documents and Settings\Xp\Cookies\xp@clicks.e-fiscalfinancingnow[1].txt
D:\NicolsDrive\Documents and Settings\Xp\Cookies\xp@clicks.epinpoint[1].txt
D:\NicolsDrive\Documents and Settings\Xp\Cookies\xp@clicks.fiscalfinancing[1].txt
D:\NicolsDrive\Documents and Settings\Xp\Cookies\xp@clicks.fultondirect[1].txt
D:\NicolsDrive\Documents and Settings\Xp\Cookies\xp@clicks.jackpot[2].txt
D:\NicolsDrive\Documents and Settings\Xp\Cookies\xp@clicks.rewardsuniverse[1].txt
D:\NicolsDrive\Documents and Settings\Xp\Cookies\xp@clicks.searchfordiscounts[1].txt
D:\NicolsDrive\Documents and Settings\Xp\Cookies\xp@clicks.searchfordollars[2].txt
D:\NicolsDrive\Documents and Settings\Xp\Cookies\xp@clicks.timetolaugh[2].txt
D:\NicolsDrive\Documents and Settings\Xp\Cookies\xp@clicks.usawellbeing[1].txt
D:\NicolsDrive\Documents and Settings\Xp\Cookies\xp@counter.surfcounters[1].txt
D:\NicolsDrive\Documents and Settings\Xp\Cookies\xp@counter[1].txt
D:\NicolsDrive\Documents and Settings\Xp\Cookies\xp@creativeby.viewpoint[1].txt
D:\NicolsDrive\Documents and Settings\Xp\Cookies\xp@cs.hotbar2[2].txt
D:\NicolsDrive\Documents and Settings\Xp\Cookies\xp@cts.metricsdirect[2].txt
D:\NicolsDrive\Documents and Settings\Xp\Cookies\xp@dist.belnk[2].txt
D:\NicolsDrive\Documents and Settings\Xp\Cookies\xp@dsbone.sitetracker[2].txt
D:\NicolsDrive\Documents and Settings\Xp\Cookies\xp@elitefitness[1].txt
D:\NicolsDrive\Documents and Settings\Xp\Cookies\xp@email.mobilenetworxmedia[1].txt
D:\NicolsDrive\Documents and Settings\Xp\Cookies\xp@emarketmakers[2].txt
D:\NicolsDrive\Documents and Settings\Xp\Cookies\xp@fcstats.bcentral[2].txt
D:\NicolsDrive\Documents and Settings\Xp\Cookies\xp@gostats[2].txt
D:\NicolsDrive\Documents and Settings\Xp\Cookies\xp@gozing.directtrack[1].txt
D:\NicolsDrive\Documents and Settings\Xp\Cookies\xp@hc2.humanclick[1].txt
D:\NicolsDrive\Documents and Settings\Xp\Cookies\xp@hit.namimedia[1].txt
D:\NicolsDrive\Documents and Settings\Xp\Cookies\xp@http.edge.vru4[1].txt
D:\NicolsDrive\Documents and Settings\Xp\Cookies\xp@i.screensavers[2].txt
D:\NicolsDrive\Documents and Settings\Xp\Cookies\xp@icc.intellisrv[2].txt
D:\NicolsDrive\Documents and Settings\Xp\Cookies\xp@indextools[2].txt
D:\NicolsDrive\Documents and Settings\Xp\Cookies\xp@intellisrv[1].txt
D:\NicolsDrive\Documents and Settings\Xp\Cookies\xp@m1.webstats4u[1].txt
D:\NicolsDrive\Documents and Settings\Xp\Cookies\xp@maxserving[2].txt
D:\NicolsDrive\Documents and Settings\Xp\Cookies\xp@media101.sitebrand[1].txt
D:\NicolsDrive\Documents and Settings\Xp\Cookies\xp@mediant.magma[2].txt
D:\NicolsDrive\Documents and Settings\Xp\Cookies\xp@metareward[1].txt
D:\NicolsDrive\Documents and Settings\Xp\Cookies\xp@myfuncards.smileycentral[1].txt
D:\NicolsDrive\Documents and Settings\Xp\Cookies\xp@mywebsearch[1].txt
D:\NicolsDrive\Documents and Settings\Xp\Cookies\xp@nandomedia[1].txt
D:\NicolsDrive\Documents and Settings\Xp\Cookies\xp@nbads[1].txt
D:\NicolsDrive\Documents and Settings\Xp\Cookies\xp@nextag[1].txt
D:\NicolsDrive\Documents and Settings\Xp\Cookies\xp@offersquest.directtrack[2].txt
D:\NicolsDrive\Documents and Settings\Xp\Cookies\xp@optimost[2].txt
D:\NicolsDrive\Documents and Settings\Xp\Cookies\xp@partner2profit[2].txt
D:\NicolsDrive\Documents and Settings\Xp\Cookies\xp@partypoker[1].txt
D:\NicolsDrive\Documents and Settings\Xp\Cookies\xp@popularscreensavers[1].txt
D:\NicolsDrive\Documents and Settings\Xp\Cookies\xp@publishers.clickbooth[2].txt
D:\NicolsDrive\Documents and Settings\Xp\Cookies\xp@rapidresponse.directtrack[2].txt
D:\NicolsDrive\Documents and Settings\Xp\Cookies\xp@rightmedia[1].txt
D:\NicolsDrive\Documents and Settings\Xp\Cookies\xp@roiservice[2].txt
D:\NicolsDrive\Documents and Settings\Xp\Cookies\xp@ryshab.freestats[2].txt
D:\NicolsDrive\Documents and Settings\Xp\Cookies\xp@screensavers[1].txt
D:\NicolsDrive\Documents and Settings\Xp\Cookies\xp@searchadnetwork[2].txt
D:\NicolsDrive\Documents and Settings\Xp\Cookies\xp@smileycentral[2].txt
D:\NicolsDrive\Documents and Settings\Xp\Cookies\xp@stats.manticoretechnology[1].txt
D:\NicolsDrive\Documents and Settings\Xp\Cookies\xp@Stats[2].txt
D:\NicolsDrive\Documents and Settings\Xp\Cookies\xp@Stats[3].txt
D:\NicolsDrive\Documents and Settings\Xp\Cookies\xp@superstats[1].txt
D:\NicolsDrive\Documents and Settings\Xp\Cookies\xp@tagworld[1].txt
D:\NicolsDrive\Documents and Settings\Xp\Cookies\xp@track.dmipartners[2].txt
D:\NicolsDrive\Documents and Settings\Xp\Cookies\xp@tracking.search4careercolleges[1].txt
D:\NicolsDrive\Documents and Settings\Xp\Cookies\xp@tracking[1].txt
D:\NicolsDrive\Documents and Settings\Xp\Cookies\xp@tracks.e-fantastictimes[1].txt
D:\NicolsDrive\Documents and Settings\Xp\Cookies\xp@tracks.ourfunandplay[1].txt
D:\NicolsDrive\Documents and Settings\Xp\Cookies\xp@tracks.yourfantasticrun[1].txt
D:\NicolsDrive\Documents and Settings\Xp\Cookies\xp@vhost.oddcast[2].txt
D:\NicolsDrive\Documents and Settings\Xp\Cookies\xp@windowsmedia[2].txt
D:\NicolsDrive\Documents and Settings\Xp\Cookies\xp@winfixer[10].txt
D:\NicolsDrive\Documents and Settings\Xp\Cookies\xp@winfixer[11].txt
D:\NicolsDrive\Documents and Settings\Xp\Cookies\xp@winfixer[12].txt
D:\NicolsDrive\Documents and Settings\Xp\Cookies\xp@winfixer[13].txt
D:\NicolsDrive\Documents and Settings\Xp\Cookies\xp@winfixer[14].txt
D:\NicolsDrive\Documents and Settings\Xp\Cookies\xp@winfixer[15].txt
D:\NicolsDrive\Documents and Settings\Xp\Cookies\xp@winfixer[16].txt
D:\NicolsDrive\Documents and Settings\Xp\Cookies\xp@winfixer[17].txt
D:\NicolsDrive\Documents and Settings\Xp\Cookies\xp@winfixer[18].txt
D:\NicolsDrive\Documents and Settings\Xp\Cookies\xp@winfixer[19].txt
D:\NicolsDrive\Documents and Settings\Xp\Cookies\xp@winfixer[1].txt
D:\NicolsDrive\Documents and Settings\Xp\Cookies\xp@winfixer[20].txt
D:\NicolsDrive\Documents and Settings\Xp\Cookies\xp@winfixer[21].txt
D:\NicolsDrive\Documents and Settings\Xp\Cookies\xp@winfixer[22].txt
D:\NicolsDrive\Documents and Settings\Xp\Cookies\xp@winfixer[2].txt
D:\NicolsDrive\Documents and Settings\Xp\Cookies\xp@winfixer[3].txt
D:\NicolsDrive\Documents and Settings\Xp\Cookies\xp@winfixer[4].txt
D:\NicolsDrive\Documents and Settings\Xp\Cookies\xp@winfixer[5].txt
D:\NicolsDrive\Documents and Settings\Xp\Cookies\xp@winfixer[6].txt
D:\NicolsDrive\Documents and Settings\Xp\Cookies\xp@winfixer[7].txt
D:\NicolsDrive\Documents and Settings\Xp\Cookies\xp@winfixer[8].txt
D:\NicolsDrive\Documents and Settings\Xp\Cookies\xp@winfixer[9].txt
D:\NicolsDrive\Documents and Settings\Xp\Cookies\xp@www.411web-track[1].txt
D:\NicolsDrive\Documents and Settings\Xp\Cookies\xp@www.azoogleads[1].txt
D:\NicolsDrive\Documents and Settings\Xp\Cookies\xp@www.click2win[1].txt
D:\NicolsDrive\Documents and Settings\Xp\Cookies\xp@www.clickmanage[2].txt
D:\NicolsDrive\Documents and Settings\Xp\Cookies\xp@www.homeloancenter[2].txt
D:\NicolsDrive\Documents and Settings\Xp\Cookies\xp@www.screensavers[1].txt
D:\NicolsDrive\Documents and Settings\Xp\Cookies\xp@www.search4clicks[2].txt
D:\NicolsDrive\Documents and Settings\Xp\Cookies\xp@www.searchadnetwork[1].txt
D:\NicolsDrive\Documents and Settings\Xp\Cookies\xp@www.upspiral[1].txt
D:\NicolsDrive\Documents and Settings\Xp\Cookies\xp@www.windowsmedia[1].txt
D:\NicolsDrive\Documents and Settings\Xp\Cookies\xp@www.xctrk[2].txt
D:\NicolsDrive\Documents and Settings\Xp\Cookies\xp@www2.nextag[1].txt
D:\NicolsDrive\Documents and Settings\Xp\Cookies\xp@xiti[1].txt
D:\NicolsDrive\Documents and Settings\Xp\Cookies\xp@xml.bravenetmedianetwork[2].txt

Registry Cleaner Trial
HKCR\Install.Install
HKCR\Install.Install\CLSID
HKCR\Install.Install\CurVer
HKCR\Install.Install.1
HKCR\Install.Install.1\CLSID

Adware.VSToolbar
C:\Program Files\VSAdd-in

Trojan.Downloader-Quake11
C:\WINDOWS\SYSTEM32\FHOMXJPV.DLL
C:\WINDOWS\SYSTEM32\IVBMKULJ.DLL

#6 OFFLINE Robert Borgersen

Newbie

Members
7 posts

Posted 12 April 2007 - 05:16 PM

HijackThis (before reboot)

Logfile of HijackThis v1.99.1
Scan saved at 12:05:26 PM, on 4/12/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16414)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Sygate\SPF\smc.exe
C:\WINDOWS\system32\spoolsv.exe
C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe
C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe
C:\PROGRA~1\Grisoft\AVGFRE~1\avgemc.exe
c:\program files\dynu systems\basic\BasicSvc.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\nvsvc32.exe
C:\PROGRA~1\MTS\ENTERN~1\app\pppoeservice.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\RealVNC\VNC4\WinVNC4.exe
C:\WINDOWS\system32\dla\tfswctrl.exe
C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe
C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe
C:\Program Files\Motherboard Monitor 5\MBM5.EXE
C:\WINDOWS\SOUNDMAN.EXE
C:\WINDOWS\system32\RUNDLL32.EXE
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\QuickTime\qttask.exe
C:\WINDOWS\system32\rundll32.exe
C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
C:\Program Files\X3watch\x3watch.exe
C:\Program Files\MSN Messenger\MsnMsgr.Exe
C:\Program Files\Microsoft ActiveSync\wcescomm.exe
C:\Program Files\Plaxo\2.12.1.1\PlaxoHelper.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
C:\Program Files\Google\Google Desktop Search\GoogleDesktopIndex.exe
C:\PROGRA~1\MI3AA1~1\rapimgr.exe
C:\Program Files\Dynu Systems\Basic\DynuBas.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\Google\Google Desktop Search\GoogleDesktopCrawl.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Common Files\VideoMate\ComproRemote.exe
C:\Program Files\Common Files\VideoMate\ComproScheduler.exe
C:\Palm\HOTSYNC.EXE
C:\Program Files\Logitech\SetPoint\KEM.exe
C:\Program Files\Microsoft Office\Office\FINDFAST.EXE
C:\Program Files\Microsoft Office\Office\OSA.EXE
C:\Program Files\Google\Web Accelerator\GoogleWebAccWarden.exe
C:\Program Files\Logitech\SetPoint\KHALMNPR.EXE
C:\Program Files\Google\Web Accelerator\googlewebaccclient.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Documents and Settings\Rob Borgersen\Desktop\HijackThis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.ca/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft....k/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft....k/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft....k/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft....k/?LinkId=69157
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigURL = http://localhost:9100/proxy.pac
O2 - BHO: Yahoo! Companion BHO - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\PROGRA~1\Yahoo!\COMPAN~1\Installs\cpn\ycomp5_3_12_0.dll
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {206E52E0-D52E-11D4-AD54-0000E86C26F6} - C:\PROGRA~1\FRESHD~1\FRESHD~1\fdcatch.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: DriveLetterAccess - {5CA3D70E-1895-11CF-8E15-001234567890} - C:\WINDOWS\system32\dla\tfswshx.dll
O2 - BHO: Google Web Accelerator Helper - {69A87B7D-DE56-4136-9655-716BA50C19C7} - C:\Program Files\Google\Web Accelerator\GoogleWebAccToolbar.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\jre1.5.0_07\bin\ssv.dll
O2 - BHO: (no name) - {BDF3E430-B101-42AD-A544-FADC6B084872} - (no file)
O3 - Toolbar: &Yahoo! Companion - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\PROGRA~1\Yahoo!\COMPAN~1\Installs\cpn\ycomp5_3_12_0.dll
O3 - Toolbar: Google Web Accelerator - {DB87BFA2-A2E3-451E-8E5A-C89982D87CBF} - C:\Program Files\Google\Web Accelerator\GoogleWebAccToolbar.dll
O4 - HKLM\..\Run: [dla] C:\WINDOWS\system32\dla\tfswctrl.exe
O4 - HKLM\..\Run: [REGSHAVE] C:\Program Files\REGSHAVE\REGSHAVE.EXE /AUTORUN
O4 - HKLM\..\Run: [\\BORGDT\EPSON] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATI9AA.EXE /P14 "\\BORGDT\EPSON" /O14 "\\BORGDT\EPSON" /M "Stylus CX4600"
O4 - HKLM\..\Run: [ISUSPM Startup] C:\PROGRA~1\COMMON~1\INSTAL~1\UPDATE~1\ISUSPM.exe -startup
O4 - HKLM\..\Run: [ISUSScheduler] "C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe" -start
O4 - HKLM\..\Run: [AVG7_CC] C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe /STARTUP
O4 - HKLM\..\Run: [NAV Agent] C:\PROGRA~1\NORTON~1\navapw32.exe
O4 - HKLM\..\Run: [\BORGDT\EPSON] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATI9AA.EXE /P14 "\\BORGDT\EPSON" /O14 "\\BORGDT\EPSON" /M "Stylus CX4600"
O4 - HKLM\..\Run: [Symantec NetDriver Monitor] C:\PROGRA~1\SYMNET~1\SNDMon.exe
O4 - HKLM\..\Run: [MBM 5] "C:\Program Files\Motherboard Monitor 5\MBM5.EXE"
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [EPoXUSDM] "C:\Program Files\EPOX\USDM\USDM.EXE" "5000"
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [Google Desktop Search] "C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe" /startup
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\j2re1.4.2_03\bin\jusched.exe
O4 - HKLM\..\Run: [LogitechVideoRepair] C:\Program Files\Logitech\Video\ISStart.exe
O4 - HKLM\..\Run: [NBCUniversal Media Manager Tray] "C:\Program Files\Entriq\MediaSphere\Bin\EntriqMediaTray.exe" /CustomId:NBCUniversal
O4 - HKLM\..\Run: [x3watch] C:\Program Files\X3watch\x3watch.exe
O4 - HKLM\..\Run: [SmcService] C:\PROGRA~1\Sygate\SPF\smc.exe -startgui
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKCU\..\Run: [Yahoo! Pager] C:\Program Files\Yahoo!\Messenger\ypager.exe -quiet
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [LDM] \Program\
O4 - HKCU\..\Run: [H/PC Connection Agent] "C:\Program Files\Microsoft ActiveSync\wcescomm.exe"
O4 - HKCU\..\Run: [PlaxoUpdate] C:\Program Files\Plaxo\2.12.1.1\PlaxoHelper.exe -a
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [updateMgr] "C:\Program Files\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.exe" AcRdB7_0_9 -reboot 1
O4 - HKCU\..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - Startup: PowerReg Scheduler V3.exe
O4 - Global Startup: Adobe Gamma Loader.exe.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: Basic Client.lnk = C:\Program Files\Dynu Systems\Basic\DynuBas.exe
O4 - Global Startup: ComproRemote.lnk = ?
O4 - Global Startup: ComproScheduler.lnk = ?
O4 - Global Startup: HotSync Manager.lnk = C:\Palm\HOTSYNC.EXE
O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe
O4 - Global Startup: Logitech SetPoint.lnk = C:\Program Files\Logitech\SetPoint\KEM.exe
O4 - Global Startup: Microsoft Find Fast.lnk = C:\Program Files\Microsoft Office\Office\FINDFAST.EXE
O4 - Global Startup: Office Startup.lnk = C:\Program Files\Microsoft Office\Office\OSA.EXE
O4 - Global Startup: Run Google Web Accelerator.lnk = C:\Program Files\Google\Web Accelerator\GoogleWebAccWarden.exe
O4 - Global Startup: TweakYC.lnk = ?
O8 - Extra context menu item: &eBay Search - res://C:\Program Files\eBay\eBay Toolbar2\eBayTb.dll/RCSearch.html
O8 - Extra context menu item: Add Feed to Tristana Reader - res://C:\Program Files\Tristana Reader\Reader.exe/AddContent.js
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\jre1.5.0_07\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\jre1.5.0_07\bin\ssv.dll
O9 - Extra button: Create Mobile Favorite - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MI3AA1~1\INetRepl.dll
O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MI3AA1~1\INetRepl.dll
O9 - Extra 'Tools' menuitem: Create Mobile Favorite... - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MI3AA1~1\INetRepl.dll
O9 - Extra button: IE HTTP Analyzer - {C7B3DF1E-6EFC-41E8-9DA7-EBC1F973832D} - C:\PROGRA~1\HTTPAN~1\IEHTTP~1.DLL
O9 - Extra 'Tools' menuitem: IE HTTP Analyzer - {C7B3DF1E-6EFC-41E8-9DA7-EBC1F973832D} - C:\PROGRA~1\HTTPAN~1\IEHTTP~1.DLL
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\MSMSGS.EXE
O9 - Extra 'Tools' menuitem: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\MSMSGS.EXE
O11 - Options group: [INTERNATIONAL] International*
O15 - Trusted Zone: http://www.kaspersky.com
O16 - DPF: {04E214E5-63AF-4236-83C6-A7ADCBF9BD02} (HouseCall Control) - http://housecall60.t...all/xscan60.cab
O16 - DPF: {05D44720-58E3-49E6-BDF6-D00330E511D3} (StagingUI Object) - http://zone.msn.com/...UI.cab40641.cab
O16 - DPF: {08BEF711-06DA-48B2-9534-802ECAA2E4F9} (PlxInstall Class) - http://down.plaxo.co...laxoInstall.cab
O16 - DPF: {0E5F0222-96B9-11D3-8997-00104BD12D94} (PCPitstop Utility) - http://www.pcpitstop...p/PCPitStop.CAB
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft....k/?LinkID=39204
O16 - DPF: {1842B0EE-B597-11D4-8997-00104BD12D94} (iCC Class) - http://www.pcpitstop...cpConnCheck.cab
O16 - DPF: {1C3DE665-D259-4C72-9D7D-C51FCB4CCFB9} (Panasonic Network Camera) - http://209.32.117.89.../SysCamInst.cab
O16 - DPF: {215B8138-A3CF-44C5-803F-8226143CFC0A} (Trend Micro ActiveX Scan Agent 6.6) - http://housecall65.trendmicro.com/housecal...ivex/hcImpl.cab
O16 - DPF: {2BC66F54-93A8-11D3-BEB6-00105AA9B6AE} (Symantec AntiVirus scanner) - http://security.symantec.com/sscv6/SharedC...bin/AvSniff.cab
O16 - DPF: {3BB54395-5982-4788-8AF4-B5388FFDD0D8} (ZoneBuddy Class) - http://zone.msn.com/...dy.cab32846.cab
O16 - DPF: {4B9F2C37-C0CF-42BC-BB2D-DCFA8B25CABF} (PopCapLoaderCtrl Class) - http://sympatico.zone.msn.com/bingame/rock...pcaploader1.cab
O16 - DPF: {4C39376E-FA9D-4349-BACC-D305C1750EF3} (EPUImageControl Class) - http://tools.ebayimg.com/eps/wl/activex/EP...l_v1-0-3-24.cab
O16 - DPF: {5736C456-EA94-4AAC-BB08-917ABDD035B3} (ZonePAChat Object) - http://zone.msn.com/...at.cab32846.cab
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://download.bitd...can8/oscan8.cab
O16 - DPF: {644E432F-49D3-41A1-8DD5-E099162EEEC5} (Symantec RuFSI Utility Class) - http://security.symantec.com/sscv6/SharedC...n/bin/cabsa.cab
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftupdat...b?1155615848000
O16 - DPF: {6E5E167B-1566-4316-B27F-0DDAB3484CF7} (Image Uploader Control) - http://www.photolab....geUploader4.cab
O16 - DPF: {809A6301-7B40-4436-A02C-87B8D3D7D9E3} (ZPA_DMNO Object) - http://zone.msn.com/...no.cab41096.cab
O16 - DPF: {8714912E-380D-11D5-B8AA-00D0B78F3D48} (Yahoo! Webcam Upload Wrapper) - http://chat.yahoo.com/cab/yuplapp.cab
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/Messe...nt.cab31267.cab
O16 - DPF: {917623D1-D8E5-11D2-BE8B-00104B06BDE3} (CamImage Class) - http://130.179.249.8...sCamControl.cab
O16 - DPF: {9D190AE6-C81E-4039-8061-978EBAD10073} (F-Secure Online Scanner 3.0) - http://support.f-sec...m/ols/fscax.cab
O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/MsnMesse...pDownloader.cab
O16 - DPF: {B49C4597-8721-4789-9250-315DFBD9F525} (IWinAmpActiveX Class) - http://cdn.digitalci....1.11_en_dl.cab
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (ZoneIntro Class) - http://cdn2.zone.msn.com/binFramework/v10/...ro.cab53083.cab
O16 - DPF: {B9191F79-5613-4C76-AA2A-398534BB8999} - http://us.dl1.yimg.com/download.yahoo.com/...utocomplete.cab
O16 - DPF: {CAFEEFAC-0014-0002-0003-ABCDEFFEDCBA} (Java Plug-in) -
O16 - DPF: {CBD8B1CB-2F5F-415F-93E8-A297B33DCBB2} (CentrinoCheck Control) - http://entriq.vo.llnwd.net/o1/NBCUniversal...eck_1_0_0_4.cab
O16 - DPF: {CE7D2BF2-D173-4CE2-9DAF-15EA153B5B43} (MediaControl Class) - http://entriq.vo.llnwd.net/o1/NBCUniversal...0_15_Silent.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - https://download.macromedia.com/pub/shockwa...ash/swflash.cab
O16 - DPF: {D57262F5-9637-4E67-BC59-88C53EA76FC3} (ULcontrol Control) - https://pix.futuresh...ulcontrolxp.cab
O16 - DPF: {DA2AA6CF-5C7A-4B71-BC3B-C771BB369937} (StadiumProxy Class) - http://zone.msn.com/...xy.cab41227.cab
O16 - DPF: {DE0FB644-C59B-46D1-B650-88BA945BC98F} (NBCUniversal Class) - http://entriq.vo.llnwd.net/o1/NBCUniversal...sal_1_0_0_3.cab
O16 - DPF: {DF780F87-FF2B-4DF8-92D0-73DB16A1543A} (PopCapLoader Object) - http://zone.msn.com/...ploader_v10.cab
O16 - DPF: {E473A65C-8087-49A3-AFFD-C5BC4A10669B} (Quantum Streaming IE Player Class) - http://mvnet.xlontec...2ie06101001.cab
O16 - DPF: {E5D419D6-A846-4514-9FAD-97E826C84822} (HeartbeatCtl Class) - http://fdl.msn.com/z...s/heartbeat.cab
O16 - DPF: {F127B9BA-89EA-4B04-9C67-2074A9DF61FC} (PCUploader Class) - http://www.walmartph...x/PCAXSetup.cab?
O16 - DPF: {F5D98C43-DB16-11CF-8ECA-0000C0FD59C7} (ActiveCGM Control) - http://tgs.gov.mb.ca...LoadIE/Acgm.cab
O18 - Protocol: bw+0 - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw+0s - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0 - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0s - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00 - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00s - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10 - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10s - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20 - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20s - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30 - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30s - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40 - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40s - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50 - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50s - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60 - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60s - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70 - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70s - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80 - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80s - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90 - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90s - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0 - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0s - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0 - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0s - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0 - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0s - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0 - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0s - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0 - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0s - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0 - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0s - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O18 - Protocol: bwg0 - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwg0s - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0 - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0s - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0 - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0s - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0 - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0s - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0 - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0s - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0 - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0s - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0 - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0s - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0 - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0s - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0 - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0s - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0 - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0s - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0 - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0s - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0 - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0s - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0 - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0s - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0 - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0s - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0 - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0s - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0 - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0s - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0 - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0s - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0 - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0s - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0 - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0s - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0 - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0s - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: offline-8876480 - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O20 - AppInit_DLLs: C:\PROGRA~1\Google\GOOGLE~1\GOEC62~1.DLL C:\PROGRA~1\Google\WEBACC~1\FASTSE~1.DLL
O20 - Winlogon Notify: !SASWinLogon - C:\Program Files\SUPERAntiSpyware\SASWINLO.dll
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O23 - Service: AVG Anti-Spyware Guard - Anti-Malware Development a.s. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe
O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe
O23 - Service: AVG E-mail Scanner (AVGEMS) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgemc.exe
O23 - Service: Dynu Basic Dynamic DNS Client v3.24 (DynuBasic) - Unknown owner - c:\program files\dynu systems\basic\BasicSvc.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iPodService - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: PACSPTISVR - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AVLib\Pacsptisvr.exe
O23 - Service: PPPoE Service (PPPoEService) - Unknown owner - C:\PROGRA~1\MTS\ENTERN~1\app\pppoeservice.exe
O23 - Service: Sygate Personal Firewall (SmcService) - Sygate Technologies, Inc. - C:\Program Files\Sygate\SPF\smc.exe
O23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AVLib\Sptisrv.exe
O23 - Service: VNC Server Version 4 (WinVNC4) - Unknown owner - C:\Program Files\RealVNC\VNC4\WinVNC4.exe" -service (file missing)

#7 OFFLINE Robert Borgersen

Newbie

Members
7 posts

Posted 12 April 2007 - 05:17 PM

HijackThis log (after reboot)

Logfile of HijackThis v1.99.1
Scan saved at 12:10:06 PM, on 4/12/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16414)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Sygate\SPF\smc.exe
C:\WINDOWS\system32\spoolsv.exe
C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe
C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe
C:\PROGRA~1\Grisoft\AVGFRE~1\avgemc.exe
c:\program files\dynu systems\basic\BasicSvc.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\PROGRA~1\MTS\ENTERN~1\app\pppoeservice.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\RealVNC\VNC4\WinVNC4.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\dla\tfswctrl.exe
C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe
C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe
C:\Program Files\Motherboard Monitor 5\MBM5.EXE
C:\WINDOWS\SOUNDMAN.EXE
C:\WINDOWS\system32\RUNDLL32.EXE
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
C:\Program Files\X3watch\x3watch.exe
C:\WINDOWS\system32\rundll32.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
C:\Program Files\MSN Messenger\MsnMsgr.Exe
C:\Program Files\Microsoft ActiveSync\wcescomm.exe
C:\Program Files\Google\Google Desktop Search\GoogleDesktopIndex.exe
C:\Program Files\Plaxo\2.12.1.1\PlaxoHelper.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
C:\PROGRA~1\MI3AA1~1\rapimgr.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Google\Google Desktop Search\GoogleDesktopCrawl.exe
C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
C:\Program Files\Dynu Systems\Basic\DynuBas.exe
C:\Program Files\Common Files\VideoMate\ComproRemote.exe
C:\Program Files\Common Files\VideoMate\ComproScheduler.exe
C:\Palm\HOTSYNC.EXE
C:\Program Files\Logitech\SetPoint\KEM.exe
C:\Program Files\Microsoft Office\Office\FINDFAST.EXE
C:\Program Files\Microsoft Office\Office\OSA.EXE
C:\Program Files\Google\Web Accelerator\GoogleWebAccWarden.exe
C:\Program Files\Logitech\SetPoint\KHALMNPR.EXE
C:\Program Files\Google\Web Accelerator\googlewebaccclient.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Documents and Settings\Rob Borgersen\Desktop\HijackThis\HijackThis.exe
C:\WINDOWS\system32\wuauclt.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.ca/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft....k/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft....k/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft....k/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft....k/?LinkId=69157
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigURL = http://localhost:9100/proxy.pac
O2 - BHO: Yahoo! Companion BHO - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\PROGRA~1\Yahoo!\COMPAN~1\Installs\cpn\ycomp5_3_12_0.dll
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {206E52E0-D52E-11D4-AD54-0000E86C26F6} - C:\PROGRA~1\FRESHD~1\FRESHD~1\fdcatch.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: DriveLetterAccess - {5CA3D70E-1895-11CF-8E15-001234567890} - C:\WINDOWS\system32\dla\tfswshx.dll
O2 - BHO: Google Web Accelerator Helper - {69A87B7D-DE56-4136-9655-716BA50C19C7} - C:\Program Files\Google\Web Accelerator\GoogleWebAccToolbar.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\jre1.5.0_07\bin\ssv.dll
O2 - BHO: (no name) - {BDF3E430-B101-42AD-A544-FADC6B084872} - (no file)
O3 - Toolbar: &Yahoo! Companion - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\PROGRA~1\Yahoo!\COMPAN~1\Installs\cpn\ycomp5_3_12_0.dll
O3 - Toolbar: Google Web Accelerator - {DB87BFA2-A2E3-451E-8E5A-C89982D87CBF} - C:\Program Files\Google\Web Accelerator\GoogleWebAccToolbar.dll
O4 - HKLM\..\Run: [dla] C:\WINDOWS\system32\dla\tfswctrl.exe
O4 - HKLM\..\Run: [REGSHAVE] C:\Program Files\REGSHAVE\REGSHAVE.EXE /AUTORUN
O4 - HKLM\..\Run: [\\BORGDT\EPSON] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATI9AA.EXE /P14 "\\BORGDT\EPSON" /O14 "\\BORGDT\EPSON" /M "Stylus CX4600"
O4 - HKLM\..\Run: [ISUSPM Startup] C:\PROGRA~1\COMMON~1\INSTAL~1\UPDATE~1\ISUSPM.exe -startup
O4 - HKLM\..\Run: [ISUSScheduler] "C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe" -start
O4 - HKLM\..\Run: [AVG7_CC] C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe /STARTUP
O4 - HKLM\..\Run: [NAV Agent] C:\PROGRA~1\NORTON~1\navapw32.exe
O4 - HKLM\..\Run: [\BORGDT\EPSON] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATI9AA.EXE /P14 "\\BORGDT\EPSON" /O14 "\\BORGDT\EPSON" /M "Stylus CX4600"
O4 - HKLM\..\Run: [Symantec NetDriver Monitor] C:\PROGRA~1\SYMNET~1\SNDMon.exe
O4 - HKLM\..\Run: [MBM 5] "C:\Program Files\Motherboard Monitor 5\MBM5.EXE"
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [EPoXUSDM] "C:\Program Files\EPOX\USDM\USDM.EXE" "5000"
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [Google Desktop Search] "C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe" /startup
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\j2re1.4.2_03\bin\jusched.exe
O4 - HKLM\..\Run: [LogitechVideoRepair] C:\Program Files\Logitech\Video\ISStart.exe
O4 - HKLM\..\Run: [NBCUniversal Media Manager Tray] "C:\Program Files\Entriq\MediaSphere\Bin\EntriqMediaTray.exe" /CustomId:NBCUniversal
O4 - HKLM\..\Run: [x3watch] C:\Program Files\X3watch\x3watch.exe
O4 - HKLM\..\Run: [SmcService] C:\PROGRA~1\Sygate\SPF\smc.exe -startgui
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKCU\..\Run: [Yahoo! Pager] C:\Program Files\Yahoo!\Messenger\ypager.exe -quiet
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [LDM] \Program\
O4 - HKCU\..\Run: [H/PC Connection Agent] "C:\Program Files\Microsoft ActiveSync\wcescomm.exe"
O4 - HKCU\..\Run: [PlaxoUpdate] C:\Program Files\Plaxo\2.12.1.1\PlaxoHelper.exe -a
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [updateMgr] "C:\Program Files\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.exe" AcRdB7_0_9 -reboot 1
O4 - HKCU\..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - Startup: PowerReg Scheduler V3.exe
O4 - Global Startup: Adobe Gamma Loader.exe.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: Basic Client.lnk = C:\Program Files\Dynu Systems\Basic\DynuBas.exe
O4 - Global Startup: ComproRemote.lnk = ?
O4 - Global Startup: ComproScheduler.lnk = ?
O4 - Global Startup: HotSync Manager.lnk = C:\Palm\HOTSYNC.EXE
O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe
O4 - Global Startup: Logitech SetPoint.lnk = C:\Program Files\Logitech\SetPoint\KEM.exe
O4 - Global Startup: Microsoft Find Fast.lnk = C:\Program Files\Microsoft Office\Office\FINDFAST.EXE
O4 - Global Startup: Office Startup.lnk = C:\Program Files\Microsoft Office\Office\OSA.EXE
O4 - Global Startup: Run Google Web Accelerator.lnk = C:\Program Files\Google\Web Accelerator\GoogleWebAccWarden.exe
O4 - Global Startup: TweakYC.lnk = ?
O8 - Extra context menu item: &eBay Search - res://C:\Program Files\eBay\eBay Toolbar2\eBayTb.dll/RCSearch.html
O8 - Extra context menu item: Add Feed to Tristana Reader - res://C:\Program Files\Tristana Reader\Reader.exe/AddContent.js
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\jre1.5.0_07\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\jre1.5.0_07\bin\ssv.dll
O9 - Extra button: Create Mobile Favorite - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MI3AA1~1\INetRepl.dll
O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MI3AA1~1\INetRepl.dll
O9 - Extra 'Tools' menuitem: Create Mobile Favorite... - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MI3AA1~1\INetRepl.dll
O9 - Extra button: IE HTTP Analyzer - {C7B3DF1E-6EFC-41E8-9DA7-EBC1F973832D} - C:\PROGRA~1\HTTPAN~1\IEHTTP~1.DLL
O9 - Extra 'Tools' menuitem: IE HTTP Analyzer - {C7B3DF1E-6EFC-41E8-9DA7-EBC1F973832D} - C:\PROGRA~1\HTTPAN~1\IEHTTP~1.DLL
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\MSMSGS.EXE
O9 - Extra 'Tools' menuitem: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\MSMSGS.EXE
O11 - Options group: [INTERNATIONAL] International*
O15 - Trusted Zone: http://www.kaspersky.com
O16 - DPF: {04E214E5-63AF-4236-83C6-A7ADCBF9BD02} (HouseCall Control) - http://housecall60.t...all/xscan60.cab
O16 - DPF: {05D44720-58E3-49E6-BDF6-D00330E511D3} (StagingUI Object) - http://zone.msn.com/...UI.cab40641.cab
O16 - DPF: {08BEF711-06DA-48B2-9534-802ECAA2E4F9} (PlxInstall Class) - http://down.plaxo.co...laxoInstall.cab
O16 - DPF: {0E5F0222-96B9-11D3-8997-00104BD12D94} (PCPitstop Utility) - http://www.pcpitstop...p/PCPitStop.CAB
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft....k/?LinkID=39204
O16 - DPF: {1842B0EE-B597-11D4-8997-00104BD12D94} (iCC Class) - http://www.pcpitstop...cpConnCheck.cab
O16 - DPF: {1C3DE665-D259-4C72-9D7D-C51FCB4CCFB9} (Panasonic Network Camera) - http://209.32.117.89.../SysCamInst.cab
O16 - DPF: {215B8138-A3CF-44C5-803F-8226143CFC0A} (Trend Micro ActiveX Scan Agent 6.6) - http://housecall65.trendmicro.com/housecal...ivex/hcImpl.cab
O16 - DPF: {2BC66F54-93A8-11D3-BEB6-00105AA9B6AE} (Symantec AntiVirus scanner) - http://security.symantec.com/sscv6/SharedC...bin/AvSniff.cab
O16 - DPF: {3BB54395-5982-4788-8AF4-B5388FFDD0D8} (ZoneBuddy Class) - http://zone.msn.com/...dy.cab32846.cab
O16 - DPF: {4B9F2C37-C0CF-42BC-BB2D-DCFA8B25CABF} (PopCapLoaderCtrl Class) - http://sympatico.zone.msn.com/bingame/rock...pcaploader1.cab
O16 - DPF: {4C39376E-FA9D-4349-BACC-D305C1750EF3} (EPUImageControl Class) - http://tools.ebayimg.com/eps/wl/activex/EP...l_v1-0-3-24.cab
O16 - DPF: {5736C456-EA94-4AAC-BB08-917ABDD035B3} (ZonePAChat Object) - http://zone.msn.com/...at.cab32846.cab
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://download.bitd...can8/oscan8.cab
O16 - DPF: {644E432F-49D3-41A1-8DD5-E099162EEEC5} (Symantec RuFSI Utility Class) - http://security.symantec.com/sscv6/SharedC...n/bin/cabsa.cab
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftupdat...b?1155615848000
O16 - DPF: {6E5E167B-1566-4316-B27F-0DDAB3484CF7} (Image Uploader Control) - http://www.photolab....geUploader4.cab
O16 - DPF: {809A6301-7B40-4436-A02C-87B8D3D7D9E3} (ZPA_DMNO Object) - http://zone.msn.com/...no.cab41096.cab
O16 - DPF: {8714912E-380D-11D5-B8AA-00D0B78F3D48} (Yahoo! Webcam Upload Wrapper) - http://chat.yahoo.com/cab/yuplapp.cab
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/Messe...nt.cab31267.cab
O16 - DPF: {917623D1-D8E5-11D2-BE8B-00104B06BDE3} (CamImage Class) - http://130.179.249.8...sCamControl.cab
O16 - DPF: {9D190AE6-C81E-4039-8061-978EBAD10073} (F-Secure Online Scanner 3.0) - http://support.f-sec...m/ols/fscax.cab
O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/MsnMesse...pDownloader.cab
O16 - DPF: {B49C4597-8721-4789-9250-315DFBD9F525} (IWinAmpActiveX Class) - http://cdn.digitalci....1.11_en_dl.cab
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (ZoneIntro Class) - http://cdn2.zone.msn.com/binFramework/v10/...ro.cab53083.cab
O16 - DPF: {B9191F79-5613-4C76-AA2A-398534BB8999} - http://us.dl1.yimg.com/download.yahoo.com/...utocomplete.cab
O16 - DPF: {CAFEEFAC-0014-0002-0003-ABCDEFFEDCBA} (Java Plug-in) -
O16 - DPF: {CBD8B1CB-2F5F-415F-93E8-A297B33DCBB2} (CentrinoCheck Control) - http://entriq.vo.llnwd.net/o1/NBCUniversal...eck_1_0_0_4.cab
O16 - DPF: {CE7D2BF2-D173-4CE2-9DAF-15EA153B5B43} (MediaControl Class) - http://entriq.vo.llnwd.net/o1/NBCUniversal...0_15_Silent.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - https://download.macromedia.com/pub/shockwa...ash/swflash.cab
O16 - DPF: {D57262F5-9637-4E67-BC59-88C53EA76FC3} (ULcontrol Control) - https://pix.futuresh...ulcontrolxp.cab
O16 - DPF: {DA2AA6CF-5C7A-4B71-BC3B-C771BB369937} (StadiumProxy Class) - http://zone.msn.com/...xy.cab41227.cab
O16 - DPF: {DE0FB644-C59B-46D1-B650-88BA945BC98F} (NBCUniversal Class) - http://entriq.vo.llnwd.net/o1/NBCUniversal...sal_1_0_0_3.cab
O16 - DPF: {DF780F87-FF2B-4DF8-92D0-73DB16A1543A} (PopCapLoader Object) - http://zone.msn.com/...ploader_v10.cab
O16 - DPF: {E473A65C-8087-49A3-AFFD-C5BC4A10669B} (Quantum Streaming IE Player Class) - http://mvnet.xlontec...2ie06101001.cab
O16 - DPF: {E5D419D6-A846-4514-9FAD-97E826C84822} (HeartbeatCtl Class) - http://fdl.msn.com/z...s/heartbeat.cab
O16 - DPF: {F127B9BA-89EA-4B04-9C67-2074A9DF61FC} (PCUploader Class) - http://www.walmartph...x/PCAXSetup.cab?
O16 - DPF: {F5D98C43-DB16-11CF-8ECA-0000C0FD59C7} (ActiveCGM Control) - http://tgs.gov.mb.ca...LoadIE/Acgm.cab
O18 - Protocol: bw+0 - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw+0s - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0 - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0s - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00 - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00s - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10 - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10s - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20 - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20s - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30 - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30s - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40 - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40s - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50 - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50s - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60 - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60s - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70 - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70s - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80 - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80s - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90 - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90s - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0 - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0s - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0 - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0s - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0 - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0s - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0 - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0s - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0 - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0s - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0 - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0s - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O18 - Protocol: bwg0 - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwg0s - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0 - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0s - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0 - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0s - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0 - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0s - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0 - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0s - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0 - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0s - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0 - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0s - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0 - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0s - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0 - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0s - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0 - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0s - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0 - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0s - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0 - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0s - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0 - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0s - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0 - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0s - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0 - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0s - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0 - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0s - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0 - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0s - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0 - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0s - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0 - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0s - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0 - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0s - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: offline-8876480 - {DEE4446B-9EE8-4690-8B9A-AF010CCC50E6} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O20 - AppInit_DLLs: C:\PROGRA~1\Google\GOOGLE~1\GOEC62~1.DLL C:\PROGRA~1\Google\WEBACC~1\FASTSE~1.DLL
O20 - Winlogon Notify: !SASWinLogon - C:\Program Files\SUPERAntiSpyware\SASWINLO.dll
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O23 - Service: AVG Anti-Spyware Guard - Anti-Malware Development a.s. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe
O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe
O23 - Service: AVG E-mail Scanner (AVGEMS) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgemc.exe
O23 - Service: Dynu Basic Dynamic DNS Client v3.24 (DynuBasic) - Unknown owner - c:\program files\dynu systems\basic\BasicSvc.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iPodService - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: PACSPTISVR - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AVLib\Pacsptisvr.exe
O23 - Service: PPPoE Service (PPPoEService) - Unknown owner - C:\PROGRA~1\MTS\ENTERN~1\app\pppoeservice.exe
O23 - Service: Sygate Personal Firewall (SmcService) - Sygate Technologies, Inc. - C:\Program Files\Sygate\SPF\smc.exe
O23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AVLib\Sptisrv.exe
O23 - Service: VNC Server Version 4 (WinVNC4) - Unknown owner - C:\Program Files\RealVNC\VNC4\WinVNC4.exe" -service (file missing)

#8 OFFLINE rridgely

I hate computers

Moderators
8,858 posts

Gender:Male

Posted 14 April 2007 - 01:21 AM

Nice job. Please run the below scan and post back the results:

Run Kaspersky WebScanner

Please go HERE and click Kaspersky Online Scanner
Read and Accept the Agreement
You will be promted to install an ActiveX component from Kaspersky, Click Yes.
If you see a Windows dialog asking if you want to install this software, click the Install button.
The program will launch and then begin downloading the latest definition files,
When the "Update progress" line changes to "Ready" and the "NEXT ->" button becomes available, please click on it.
Click on the Scan Settings button, and in the next window select the Extended database, and click Ok.
Under "Please select a target to scan:", click My Computer to start the scan.
When the scan is finished, click the "Save as Text" button, and save the file as kavscan.txt to your Desktop, close the Kaspersky On-line Scanner window.
Paste kaspersky log onto forum.

#9 OFFLINE Robert Borgersen

Newbie

Members
7 posts

Posted 14 April 2007 - 05:31 AM

Man that took a super long time

-------------------------------------------------------------------------------
KASPERSKY ONLINE SCANNER REPORT
Saturday, April 14, 2007 12:28:27 AM
Operating System: Microsoft Windows XP Professional, Service Pack 2 (Build 2600)
Kaspersky Online Scanner version: 5.0.83.0
Kaspersky Anti-Virus database last update: 14/04/2007
Kaspersky Anti-Virus database records: 279944
-------------------------------------------------------------------------------

Scan Settings:
Scan using the following antivirus database: standard
Scan Archives: true
Scan Mail Bases: true

Scan Target - My Computer:
A:\
C:\
D:\
E:\
F:\

Scan Statistics:
Total number of scanned objects: 211188
Number of viruses found: 5
Number of infected objects: 10 / 0
Number of suspicious objects: 0
Duration of the scan process: 02:52:21

Infected Object Name / Virus Name / Last Action
C:\Documents and Settings\All Users\Application Data\avg7\Log\emc.log Object is locked skipped
C:\Documents and Settings\All Users\Application Data\Grisoft\Avg7Data\avg7log.log Object is locked skipped
C:\Documents and Settings\All Users\Application Data\Grisoft\Avg7Data\avg7log.log.lck Object is locked skipped
C:\Documents and Settings\All Users\Application Data\Microsoft\Network\Downloader\qmgr0.dat Object is locked skipped
C:\Documents and Settings\All Users\Application Data\Microsoft\Network\Downloader\qmgr1.dat Object is locked skipped
C:\Documents and Settings\LocalService\Cookies\index.dat Object is locked skipped
C:\Documents and Settings\LocalService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat Object is locked skipped
C:\Documents and Settings\LocalService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG Object is locked skipped
C:\Documents and Settings\LocalService\Local Settings\History\History.IE5\index.dat Object is locked skipped
C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\index.dat Object is locked skipped
C:\Documents and Settings\LocalService\NTUSER.DAT Object is locked skipped
C:\Documents and Settings\LocalService\ntuser.dat.LOG Object is locked skipped
C:\Documents and Settings\NetworkService\Cookies\index.dat Object is locked skipped
C:\Documents and Settings\NetworkService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat Object is locked skipped
C:\Documents and Settings\NetworkService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG Object is locked skipped
C:\Documents and Settings\NetworkService\Local Settings\History\History.IE5\index.dat Object is locked skipped
C:\Documents and Settings\NetworkService\Local Settings\Temporary Internet Files\Content.IE5\index.dat Object is locked skipped
C:\Documents and Settings\NetworkService\NTUSER.DAT Object is locked skipped
C:\Documents and Settings\NetworkService\ntuser.dat.LOG Object is locked skipped
C:\Documents and Settings\Rob Borgersen\Application Data\$_hpcst$.hpc Object is locked skipped
C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\cert8.db Object is locked skipped
C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\history.dat Object is locked skipped
C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\key3.db Object is locked skipped
C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\parent.lock Object is locked skipped
C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\search.sqlite Object is locked skipped
C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\urlclassifier2.sqlite Object is locked skipped
C:\Documents and Settings\Rob Borgersen\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\ybookmarks@yahoo.log Object is locked skipped
C:\Documents and Settings\Rob Borgersen\Application Data\SUPERAntiSpyware.com\SUPERAntiSpyware\SUPERANTISPYWARE.LOG Object is locked skipped
C:\Documents and Settings\Rob Borgersen\Cookies\index.dat Object is locked skipped
C:\Documents and Settings\Rob Borgersen\Local Settings\Application Data\Google\Google Desktop\b68ee8230cbf\dbc2e.ht1 Object is locked skipped
C:\Documents and Settings\Rob Borgersen\Local Settings\Application Data\Google\Google Desktop\b68ee8230cbf\dbdam Object is locked skipped
C:\Documents and Settings\Rob Borgersen\Local Settings\Application Data\Google\Google Desktop\b68ee8230cbf\dbdao Object is locked skipped
C:\Documents and Settings\Rob Borgersen\Local Settings\Application Data\Google\Google Desktop\b68ee8230cbf\dbeam Object is locked skipped
C:\Documents and Settings\Rob Borgersen\Local Settings\Application Data\Google\Google Desktop\b68ee8230cbf\dbeao Object is locked skipped
C:\Documents and Settings\Rob Borgersen\Local Settings\Application Data\Google\Google Desktop\b68ee8230cbf\dbm Object is locked skipped
C:\Documents and Settings\Rob Borgersen\Local Settings\Application Data\Google\Google Desktop\b68ee8230cbf\dbu2d.ht1 Object is locked skipped
C:\Documents and Settings\Rob Borgersen\Local Settings\Application Data\Google\Google Desktop\b68ee8230cbf\dbvm.cf1 Object is locked skipped
C:\Documents and Settings\Rob Borgersen\Local Settings\Application Data\Google\Google Desktop\b68ee8230cbf\dbvmh.ht1 Object is locked skipped
C:\Documents and Settings\Rob Borgersen\Local Settings\Application Data\Google\Google Desktop\b68ee8230cbf\fii.cf1 Object is locked skipped
C:\Documents and Settings\Rob Borgersen\Local Settings\Application Data\Google\Google Desktop\b68ee8230cbf\fiih.ht1 Object is locked skipped
C:\Documents and Settings\Rob Borgersen\Local Settings\Application Data\Google\Google Desktop\b68ee8230cbf\fim1i.cf1 Object is locked skipped
C:\Documents and Settings\Rob Borgersen\Local Settings\Application Data\Google\Google Desktop\b68ee8230cbf\fim1ih.ht1 Object is locked skipped
C:\Documents and Settings\Rob Borgersen\Local Settings\Application Data\Google\Google Desktop\b68ee8230cbf\hp Object is locked skipped
C:\Documents and Settings\Rob Borgersen\Local Settings\Application Data\Google\Google Desktop\b68ee8230cbf\hpt2i.ht1 Object is locked skipped
C:\Documents and Settings\Rob Borgersen\Local Settings\Application Data\Google\Google Desktop\b68ee8230cbf\rpm.cf1 Object is locked skipped
C:\Documents and Settings\Rob Borgersen\Local Settings\Application Data\Google\Google Desktop\b68ee8230cbf\rpm1m.cf1 Object is locked skipped
C:\Documents and Settings\Rob Borgersen\Local Settings\Application Data\Google\Google Desktop\b68ee8230cbf\rpm1mh.ht1 Object is locked skipped
C:\Documents and Settings\Rob Borgersen\Local Settings\Application Data\Google\Google Desktop\b68ee8230cbf\rpmh.ht1 Object is locked skipped
C:\Documents and Settings\Rob Borgersen\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat Object is locked skipped
C:\Documents and Settings\Rob Borgersen\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG Object is locked skipped
C:\Documents and Settings\Rob Borgersen\Local Settings\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\Cache\_CACHE_001_ Object is locked skipped
C:\Documents and Settings\Rob Borgersen\Local Settings\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\Cache\_CACHE_002_ Object is locked skipped
C:\Documents and Settings\Rob Borgersen\Local Settings\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\Cache\_CACHE_003_ Object is locked skipped
C:\Documents and Settings\Rob Borgersen\Local Settings\Application Data\Mozilla\Firefox\Profiles\5ezqjdrx.default\Cache\_CACHE_MAP_ Object is locked skipped
C:\Documents and Settings\Rob Borgersen\Local Settings\History\History.IE5\index.dat Object is locked skipped
C:\Documents and Settings\Rob Borgersen\Local Settings\History\History.IE5\MSHist012007041320070414\index.dat Object is locked skipped
C:\Documents and Settings\Rob Borgersen\Local Settings\Temp\googlewebaccclient.exe.log Object is locked skipped
C:\Documents and Settings\Rob Borgersen\Local Settings\Temp\GoogleWebAccelerator.pac Object is locked skipped
C:\Documents and Settings\Rob Borgersen\Local Settings\Temp\GoogleWebAcceleratorCache Object is locked skipped
C:\Documents and Settings\Rob Borgersen\Local Settings\Temp\GoogleWebAccWarden.exe.log Object is locked skipped
C:\Documents and Settings\Rob Borgersen\Local Settings\Temp\WCESLog.log Object is locked skipped
C:\Documents and Settings\Rob Borgersen\Local Settings\Temp\~DF5AAD.tmp Object is locked skipped
C:\Documents and Settings\Rob Borgersen\Local Settings\Temp\~DFAA32.tmp Object is locked skipped
C:\Documents and Settings\Rob Borgersen\Local Settings\Temporary Internet Files\AntiPhishing\B3BB5BBA-E7D5-40AB-A041-A5B1C0B26C8F.dat Object is locked skipped
C:\Documents and Settings\Rob Borgersen\Local Settings\Temporary Internet Files\Content.IE5\index.dat Object is locked skipped
C:\Documents and Settings\Rob Borgersen\NTUSER.DAT Object is locked skipped
C:\Documents and Settings\Rob Borgersen\ntuser.dat.LOG Object is locked skipped
C:\Program Files\Sygate\SPF\debug.log Object is locked skipped
C:\Program Files\Sygate\SPF\rawlog.log Object is locked skipped
C:\Program Files\Sygate\SPF\seclog.log Object is locked skipped
C:\Program Files\Sygate\SPF\syslog.log Object is locked skipped
C:\Program Files\Sygate\SPF\tralog.log Object is locked skipped
C:\System Volume Information\MountPointManagerRemoteDatabase Object is locked skipped
C:\System Volume Information\_restore{4339F46D-FB1C-47CD-8ACE-B247FA953A40}\RP980\change.log Object is locked skipped
C:\WINDOWS\CSC000001 Object is locked skipped
C:\WINDOWS\Debug\PASSWD.LOG Object is locked skipped
C:\WINDOWS\SchedLgU.Txt Object is locked skipped
C:\WINDOWS\SoftwareDistribution\ReportingEvents.log Object is locked skipped
C:\WINDOWS\Sti_Trace.log Object is locked skipped
C:\WINDOWS\system32\CatRoot2\edb.log Object is locked skipped
C:\WINDOWS\system32\CatRoot2\tmp.edb Object is locked skipped
C:\WINDOWS\system32\config\AppEvent.Evt Object is locked skipped
C:\WINDOWS\system32\config\default Object is locked skipped
C:\WINDOWS\system32\config\default.LOG Object is locked skipped
C:\WINDOWS\system32\config\Internet.evt Object is locked skipped
C:\WINDOWS\system32\config\SAM Object is locked skipped
C:\WINDOWS\system32\config\SAM.LOG Object is locked skipped
C:\WINDOWS\system32\config\SecEvent.Evt Object is locked skipped
C:\WINDOWS\system32\config\SECURITY Object is locked skipped
C:\WINDOWS\system32\config\SECURITY.LOG Object is locked skipped
C:\WINDOWS\system32\config\software Object is locked skipped
C:\WINDOWS\system32\config\software.LOG Object is locked skipped
C:\WINDOWS\system32\config\SysEvent.Evt Object is locked skipped
C:\WINDOWS\system32\config\system Object is locked skipped
C:\WINDOWS\system32\config\system.LOG Object is locked skipped
C:\WINDOWS\system32\h323log.txt Object is locked skipped
C:\WINDOWS\system32\wbem\Repository\FS\INDEX.BTR Object is locked skipped
C:\WINDOWS\system32\wbem\Repository\FS\INDEX.MAP Object is locked skipped
C:\WINDOWS\system32\wbem\Repository\FS\MAPPING.VER Object is locked skipped
C:\WINDOWS\system32\wbem\Repository\FS\MAPPING1.MAP Object is locked skipped
C:\WINDOWS\system32\wbem\Repository\FS\MAPPING2.MAP Object is locked skipped
C:\WINDOWS\system32\wbem\Repository\FS\OBJECTS.DATA Object is locked skipped
C:\WINDOWS\system32\wbem\Repository\FS\OBJECTS.MAP Object is locked skipped
C:\WINDOWS\wiadebug.log Object is locked skipped
C:\WINDOWS\wiaservc.log Object is locked skipped
C:\WINDOWS\WindowsUpdate.log Object is locked skipped
D:\NicolsDrive\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Snapshots\RegGBP2b-Global.reg Infected: Trojan.WinREG.StartPage skipped
D:\NicolsDrive\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\131B7168 Infected: Trojan-Downloader.Win32.Dyfuca.ei skipped
D:\NicolsDrive\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\1C396C32.exe Infected: Trojan.Win32.Small.cy skipped
D:\NicolsDrive\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\1DF246C8.htm Infected: Trojan-Spy.HTML.Bankfraud.p skipped
D:\NicolsDrive\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\39A65ACA Infected: Trojan-Downloader.Win32.Dyfuca.gen skipped
D:\NicolsDrive\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\46C85209.exe Infected: Trojan.Win32.Small.cy skipped
D:\NicolsDrive\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\50AE4AC1.exe Infected: Trojan.Win32.Small.cy skipped
D:\NicolsDrive\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\57A22743 Infected: Trojan.Win32.Small.cy skipped
D:\NicolsDrive\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\5BF470E3 Infected: Trojan-Downloader.Win32.Dyfuca.ei skipped
D:\NicolsDrive\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\7FDF0542 Infected: Trojan.Win32.Small.cy skipped
D:\System Volume Information\MountPointManagerRemoteDatabase Object is locked skipped

Scan process completed.

#10 OFFLINE rridgely

I hate computers

Moderators
8,858 posts

Gender:Male

Posted 15 April 2007 - 05:40 PM

Well your computer should be clean then. You just need to clear your norton quarantine and your spybot system snapshots because they are infected.

The only thing I dont really like is this:
O4 - Startup: PowerReg Scheduler V3.exe

Its not really spyware according to prevx, but it just prompts you to register some program. Its up to you if you want to delete it or not.

Back to Spyware Hell