Welcome to Tech Support Forum home to more then 136,000 problems solved. Issues have included: Spyware, Malware, Virus Issues, Windows, Microsoft, Linux, Networking, Security, Hardware, and Gaming Getting your problem solved is as easy as:
1. Registering for a free account
2. Asking your question
3. Receiving an answer

Registered members:
* Get free support
* Communicate privately with other members (PM).
* Removal of this message
* See fewer ads.
* And much more..

 


Want to know how to post a question? click here Having problems with spyware and pop-ups? First Steps
Go Back   Tech Support Forum > Security Center > Virus/Trojan/Spyware Help
Reload this Page Browsers keep shutting down!
User Name
Password
Site Map Register Donate Rules Blogs Mark Forums Read


Virus/Trojan/Spyware Help Get Rid Of Malware With Help From Our Analysts. Follow the "First Steps" link at the top right of each page before posting for help.

Closed Thread
 
LinkBack Thread Tools
Old 04-25-2009, 04:04 PM   #1 (permalink)
Registered User
 
Join Date: Apr 2009
Location: midwest
Posts: 1
OS: xp


Browsers keep shutting down!
My browsers suddenly started randomly shutting down with message that it has encountered a problem and needs to shut down. Mozilla seems to be working the longest before message, but yahoo and IE go out immediately. I have followed and completed what I could in the KRC Anti-spyware tutorial. I am also unable to receive any updates for anti-spyware, etc. Error message says "connection with update server has failed". Any help? My logs are below:

Malwarebytes' Anti-Malware 1.33
Database version: 1713
Windows 5.1.2600 Service Pack 3

4/24/2009 6:19:54 PM
mbam-log-2009-04-24 (18-19-54).txt

Scan type: Full Scan (A:\|C:\|D:\|E:\|F:\|Z:\|)
Objects scanned: 164071
Time elapsed: 1 hour(s), 22 minute(s), 52 second(s)

Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 0
Registry Values Infected: 0
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 0

Memory Processes Infected:
(No malicious items detected)

Memory Modules Infected:
(No malicious items detected)

Registry Keys Infected:
(No malicious items detected)

Registry Values Infected:
(No malicious items detected)

Registry Data Items Infected:
(No malicious items detected)

Folders Infected:
(No malicious items detected)

Files Infected:
(No malicious items detected)


SUPERAntiSpyware Scan Log
http://www.superantispyware.com

Generated 04/24/2009 at 08:29 PM

Application Version : 4.26.1000

Core Rules Database Version : 3843
Trace Rules Database Version: 1798

Scan type : Complete Scan
Total Scan Time : 00:54:06

Memory items scanned : 708
Memory threats detected : 0
Registry items scanned : 7270
Registry threats detected : 1
File items scanned : 29331
File threats detected : 281

Rogue.MSAntiSpyware2009
HKU\S-1-5-21-2916674346-965533423-947456640-1007\Software\CrucialSoft Ltd

Adware.Tracking Cookie
C:\Documents and Settings\Brett\Cookies\brett@www.dirtbiketracks[2].txt
C:\Documents and Settings\Brett\Cookies\brett@insightexpress[2].txt
C:\Documents and Settings\Brett\Cookies\brett@focalex[2].txt
C:\Documents and Settings\Brett\Cookies\brett@jamster[1].txt
C:\Documents and Settings\Brett\Cookies\brett@ad.zanox[1].txt
C:\Documents and Settings\Brett\Cookies\brett@login.tracking101[1].txt
C:\Documents and Settings\Brett\Cookies\brett@emarketmakers[1].txt
ads.revsci.net [ C:\Documents and Settings\Jess\Application Data\Mozilla\Firefox\Profiles\5740dbb8.default\cookies.txt ]
.atwola.com [ C:\Documents and Settings\Jess\Application Data\Mozilla\Firefox\Profiles\5740dbb8.default\cookies.txt ]
.at.atwola.com [ C:\Documents and Settings\Jess\Application Data\Mozilla\Firefox\Profiles\5740dbb8.default\cookies.txt ]
ar.atwola.com [ C:\Documents and Settings\Jess\Application Data\Mozilla\Firefox\Profiles\5740dbb8.default\cookies.txt ]
sales.liveperson.net [ C:\Documents and Settings\Jess\Application Data\Mozilla\Firefox\Profiles\5740dbb8.default\cookies.txt ]
sales.liveperson.net [ C:\Documents and Settings\Jess\Application Data\Mozilla\Firefox\Profiles\5740dbb8.default\cookies.txt ]
.glb.adtechus.com [ C:\Documents and Settings\Jess\Application Data\Mozilla\Firefox\Profiles\5740dbb8.default\cookies.txt ]
.edge.ru4.com [ C:\Documents and Settings\Jess\Application Data\Mozilla\Firefox\Profiles\5740dbb8.default\cookies.txt ]
.edge.ru4.com [ C:\Documents and Settings\Jess\Application Data\Mozilla\Firefox\Profiles\5740dbb8.default\cookies.txt ]
.medianewsgroup.com [ C:\Documents and Settings\Jess\Application Data\Mozilla\Firefox\Profiles\5740dbb8.default\cookies.txt ]
.medianewsgroup.com [ C:\Documents and Settings\Jess\Application Data\Mozilla\Firefox\Profiles\5740dbb8.default\cookies.txt ]
.paypal.112.2o7.net [ C:\Documents and Settings\Joe\Application Data\Mozilla\Firefox\Profiles\hfmmeya9.default\cookies.txt ]
.stats.paypal.com [ C:\Documents and Settings\Joe\Application Data\Mozilla\Firefox\Profiles\hfmmeya9.default\cookies.txt ]
.at.atwola.com [ C:\Documents and Settings\Joe\Application Data\Mozilla\Firefox\Profiles\hfmmeya9.default\cookies.txt ]
.at.atwola.com [ C:\Documents and Settings\Joe\Application Data\Mozilla\Firefox\Profiles\hfmmeya9.default\cookies.txt ]
.atwola.com [ C:\Documents and Settings\Joe\Application Data\Mozilla\Firefox\Profiles\hfmmeya9.default\cookies.txt ]
.at.atwola.com [ C:\Documents and Settings\Joe\Application Data\Mozilla\Firefox\Profiles\hfmmeya9.default\cookies.txt ]
ads.revsci.net [ C:\Documents and Settings\Joe\Application Data\Mozilla\Firefox\Profiles\hfmmeya9.default\cookies.txt ]
.c7.zedo.com [ C:\Documents and Settings\Joe\Application Data\Mozilla\Firefox\Profiles\hfmmeya9.default\cookies.txt ]
.interclick.com [ C:\Documents and Settings\Joe\Application Data\Mozilla\Firefox\Profiles\hfmmeya9.default\cookies.txt ]
.interclick.com [ C:\Documents and Settings\Joe\Application Data\Mozilla\Firefox\Profiles\hfmmeya9.default\cookies.txt ]
.specificclick.net [ C:\Documents and Settings\Joe\Application Data\Mozilla\Firefox\Profiles\hfmmeya9.default\cookies.txt ]
.specificclick.net [ C:\Documents and Settings\Joe\Application Data\Mozilla\Firefox\Profiles\hfmmeya9.default\cookies.txt ]
.specificclick.net [ C:\Documents and Settings\Joe\Application Data\Mozilla\Firefox\Profiles\hfmmeya9.default\cookies.txt ]
.specificclick.net [ C:\Documents and Settings\Joe\Application Data\Mozilla\Firefox\Profiles\hfmmeya9.default\cookies.txt ]
.specificclick.net [ C:\Documents and Settings\Joe\Application Data\Mozilla\Firefox\Profiles\hfmmeya9.default\cookies.txt ]
.specificclick.net [ C:\Documents and Settings\Joe\Application Data\Mozilla\Firefox\Profiles\hfmmeya9.default\cookies.txt ]
.specificclick.net [ C:\Documents and Settings\Joe\Application Data\Mozilla\Firefox\Profiles\hfmmeya9.default\cookies.txt ]
.specificclick.net [ C:\Documents and Settings\Joe\Application Data\Mozilla\Firefox\Profiles\hfmmeya9.default\cookies.txt ]
.network.realmedia.com [ C:\Documents and Settings\Joe\Application Data\Mozilla\Firefox\Profiles\hfmmeya9.default\cookies.txt ]
.apmebf.com [ C:\Documents and Settings\Joe\Application Data\Mozilla\Firefox\Profiles\hfmmeya9.default\cookies.txt ]
.insightexpressai.com [ C:\Documents and Settings\Joe\Application Data\Mozilla\Firefox\Profiles\hfmmeya9.default\cookies.txt ]
.insightexpressai.com [ C:\Documents and Settings\Joe\Application Data\Mozilla\Firefox\Profiles\hfmmeya9.default\cookies.txt ]
.insightexpressai.com [ C:\Documents and Settings\Joe\Application Data\Mozilla\Firefox\Profiles\hfmmeya9.default\cookies.txt ]
.insightexpressai.com [ C:\Documents and Settings\Joe\Application Data\Mozilla\Firefox\Profiles\hfmmeya9.default\cookies.txt ]
.insightexpressai.com [ C:\Documents and Settings\Joe\Application Data\Mozilla\Firefox\Profiles\hfmmeya9.default\cookies.txt ]
.insightexpressai.com [ C:\Documents and Settings\Joe\Application Data\Mozilla\Firefox\Profiles\hfmmeya9.default\cookies.txt ]
.insightexpressai.com [ C:\Documents and Settings\Joe\Application Data\Mozilla\Firefox\Profiles\hfmmeya9.default\cookies.txt ]
.insightexpressai.com [ C:\Documents and Settings\Joe\Application Data\Mozilla\Firefox\Profiles\hfmmeya9.default\cookies.txt ]
.insightexpressai.com [ C:\Documents and Settings\Joe\Application Data\Mozilla\Firefox\Profiles\hfmmeya9.default\cookies.txt ]
.insightexpressai.com [ C:\Documents and Settings\Joe\Application Data\Mozilla\Firefox\Profiles\hfmmeya9.default\cookies.txt ]
.insightexpressai.com [ C:\Documents and Settings\Joe\Application Data\Mozilla\Firefox\Profiles\hfmmeya9.default\cookies.txt ]
.insightexpressai.com [ C:\Documents and Settings\Joe\Application Data\Mozilla\Firefox\Profiles\hfmmeya9.default\cookies.txt ]
.insightexpressai.com [ C:\Documents and Settings\Joe\Application Data\Mozilla\Firefox\Profiles\hfmmeya9.default\cookies.txt ]
.insightexpressai.com [ C:\Documents and Settings\Joe\Application Data\Mozilla\Firefox\Profiles\hfmmeya9.default\cookies.txt ]
.insightexpressai.com [ C:\Documents and Settings\Joe\Application Data\Mozilla\Firefox\Profiles\hfmmeya9.default\cookies.txt ]
.insightexpressai.com [ C:\Documents and Settings\Joe\Application Data\Mozilla\Firefox\Profiles\hfmmeya9.default\cookies.txt ]
.insightexpressai.com [ C:\Documents and Settings\Joe\Application Data\Mozilla\Firefox\Profiles\hfmmeya9.default\cookies.txt ]
.insightexpressai.com [ C:\Documents and Settings\Joe\Application Data\Mozilla\Firefox\Profiles\hfmmeya9.default\cookies.txt ]
.ehg-verizon.hitbox.com [ C:\Documents and Settings\Joe\Application Data\Mozilla\Firefox\Profiles\hfmmeya9.default\cookies.txt ]
.ehg-verizon.hitbox.com [ C:\Documents and Settings\Joe\Application Data\Mozilla\Firefox\Profiles\hfmmeya9.default\cookies.txt ]
.ehg-verizon.hitbox.com [ C:\Documents and Settings\Joe\Application Data\Mozilla\Firefox\Profiles\hfmmeya9.default\cookies.txt ]
.edge.ru4.com [ C:\Documents and Settings\Joe\Application Data\Mozilla\Firefox\Profiles\hfmmeya9.default\cookies.txt ]
.edge.ru4.com [ C:\Documents and Settings\Joe\Application Data\Mozilla\Firefox\Profiles\hfmmeya9.default\cookies.txt ]
.glb.adtechus.com [ C:\Documents and Settings\Joe\Application Data\Mozilla\Firefox\Profiles\hfmmeya9.default\cookies.txt ]
.imrworldwide.com [ C:\Documents and Settings\Joe\Application Data\Mozilla\Firefox\Profiles\hfmmeya9.default\cookies.txt ]
.iacas.adbureau.net [ C:\Documents and Settings\Joe\Application Data\Mozilla\Firefox\Profiles\hfmmeya9.default\cookies.txt ]
.iacas.adbureau.net [ C:\Documents and Settings\Joe\Application Data\Mozilla\Firefox\Profiles\hfmmeya9.default\cookies.txt ]
.iacas.adbureau.net [ C:\Documents and Settings\Joe\Application Data\Mozilla\Firefox\Profiles\hfmmeya9.default\cookies.txt ]
.tremor.adbureau.net [ C:\Documents and Settings\Joe\Application Data\Mozilla\Firefox\Profiles\hfmmeya9.default\cookies.txt ]
tremor.adbureau.net [ C:\Documents and Settings\Joe\Application Data\Mozilla\Firefox\Profiles\hfmmeya9.default\cookies.txt ]
.tremor.adbureau.net [ C:\Documents and Settings\Joe\Application Data\Mozilla\Firefox\Profiles\hfmmeya9.default\cookies.txt ]
eas.apm.emediate.eu [ C:\Documents and Settings\Joe\Application Data\Mozilla\Firefox\Profiles\hfmmeya9.default\cookies.txt ]
.ads.pointroll.com [ C:\Documents and Settings\Joe\Application Data\Mozilla\Firefox\Profiles\hfmmeya9.default\cookies.txt ]
.ads.pointroll.com [ C:\Documents and Settings\Joe\Application Data\Mozilla\Firefox\Profiles\hfmmeya9.default\cookies.txt ]
.ads.pointroll.com [ C:\Documents and Settings\Joe\Application Data\Mozilla\Firefox\Profiles\hfmmeya9.default\cookies.txt ]
.ads.pointroll.com [ C:\Documents and Settings\Joe\Application Data\Mozilla\Firefox\Profiles\hfmmeya9.default\cookies.txt ]
.ads.pointroll.com [ C:\Documents and Settings\Joe\Application Data\Mozilla\Firefox\Profiles\hfmmeya9.default\cookies.txt ]
.ads.pointroll.com [ C:\Documents and Settings\Joe\Application Data\Mozilla\Firefox\Profiles\hfmmeya9.default\cookies.txt ]
.ads.pointroll.com [ C:\Documents and Settings\Joe\Application Data\Mozilla\Firefox\Profiles\hfmmeya9.default\cookies.txt ]
.ads.pointroll.com [ C:\Documents and Settings\Joe\Application Data\Mozilla\Firefox\Profiles\hfmmeya9.default\cookies.txt ]
.ads.pointroll.com [ C:\Documents and Settings\Joe\Application Data\Mozilla\Firefox\Profiles\hfmmeya9.default\cookies.txt ]
.socialmedia.com [ C:\Documents and Settings\Joe\Application Data\Mozilla\Firefox\Profiles\hfmmeya9.default\cookies.txt ]
.newmotioninc.112.2o7.net [ C:\Documents and Settings\Joe\Application Data\Mozilla\Firefox\Profiles\hfmmeya9.default\cookies.txt ]
www.media.gaugehost.com [ C:\Documents and Settings\Joe\Application Data\Mozilla\Firefox\Profiles\hfmmeya9.default\cookies.txt ]
www.media.gaugehost.com [ C:\Documents and Settings\Joe\Application Data\Mozilla\Firefox\Profiles\hfmmeya9.default\cookies.txt ]
.bizrate.com [ C:\Documents and Settings\Joe\Application Data\Mozilla\Firefox\Profiles\hfmmeya9.default\cookies.txt ]
.keywordmax.com [ C:\Documents and Settings\Joe\Application Data\Mozilla\Firefox\Profiles\hfmmeya9.default\cookies.txt ]
.safaribooks.112.2o7.net [ C:\Documents and Settings\Joe\Application Data\Mozilla\Firefox\Profiles\hfmmeya9.default\cookies.txt ]
.adopt.specificclick.net [ C:\Documents and Settings\Joe\Application Data\Mozilla\Firefox\Profiles\hfmmeya9.default\cookies.txt ]
.cbs.112.2o7.net [ C:\Documents and Settings\Joe\Application Data\Mozilla\Firefox\Profiles\hfmmeya9.default\cookies.txt ]
.nextag.com [ C:\Documents and Settings\Joe\Application Data\Mozilla\Firefox\Profiles\hfmmeya9.default\cookies.txt ]
.nextag.com [ C:\Documents and Settings\Joe\Application Data\Mozilla\Firefox\Profiles\hfmmeya9.default\cookies.txt ]
twci.coremetrics.com [ C:\Documents and Settings\Joe\Application Data\Mozilla\Firefox\Profiles\hfmmeya9.default\cookies.txt ]
rotator.adjuggler.com [ C:\Documents and Settings\Joe\Application Data\Mozilla\Firefox\Profiles\hfmmeya9.default\cookies.txt ]
rotator.adjuggler.com [ C:\Documents and Settings\Joe\Application Data\Mozilla\Firefox\Profiles\hfmmeya9.default\cookies.txt ]
rotator.adjuggler.com [ C:\Documents and Settings\Joe\Application Data\Mozilla\Firefox\Profiles\hfmmeya9.default\cookies.txt ]
.viamtvcom.112.2o7.net [ C:\Documents and Settings\Joe\Application Data\Mozilla\Firefox\Profiles\hfmmeya9.default\cookies.txt ]
.metacafe.122.2o7.net [ C:\Documents and Settings\Joe\Application Data\Mozilla\Firefox\Profiles\hfmmeya9.default\cookies.txt ]
.adlegend.com [ C:\Documents and Settings\Joe\Application Data\Mozilla\Firefox\Profiles\hfmmeya9.default\cookies.txt ]
.doubleclick.net [ C:\Documents and Settings\Nancy\Application Data\Mozilla\Firefox\Profiles\f67z94ro.default\cookies.txt ]
.doubleclick.net [ C:\Documents and Settings\Nancy\Application Data\Mozilla\Firefox\Profiles\f67z94ro.default\cookies.txt ]
.a1.interclick.com [ C:\Documents and Settings\Nancy\Application Data\Mozilla\Firefox\Profiles\f67z94ro.default\cookies.txt ]
.a1.interclick.com [ C:\Documents and Settings\Nancy\Application Data\Mozilla\Firefox\Profiles\f67z94ro.default\cookies.txt ]
.a1.interclick.com [ C:\Documents and Settings\Nancy\Application Data\Mozilla\Firefox\Profiles\f67z94ro.default\cookies.txt ]
.a1.interclick.com [ C:\Documents and Settings\Nancy\Application Data\Mozilla\Firefox\Profiles\f67z94ro.default\cookies.txt ]
.a1.interclick.com [ C:\Documents and Settings\Nancy\Application Data\Mozilla\Firefox\Profiles\f67z94ro.default\cookies.txt ]
.atwola.com [ C:\Documents and Settings\Nancy\Application Data\Mozilla\Firefox\Profiles\f67z94ro.default\cookies.txt ]
.atwola.com [ C:\Documents and Settings\Nancy\Application Data\Mozilla\Firefox\Profiles\f67z94ro.default\cookies.txt ]
.atwola.com [ C:\Documents and Settings\Nancy\Application Data\Mozilla\Firefox\Profiles\f67z94ro.default\cookies.txt ]
.at.atwola.com [ C:\Documents and Settings\Nancy\Application Data\Mozilla\Firefox\Profiles\f67z94ro.default\cookies.txt ]
.at.atwola.com [ C:\Documents and Settings\Nancy\Application Data\Mozilla\Firefox\Profiles\f67z94ro.default\cookies.txt ]
.at.atwola.com [ C:\Documents and Settings\Nancy\Application Data\Mozilla\Firefox\Profiles\f67z94ro.default\cookies.txt ]
.interclick.com [ C:\Documents and Settings\Nancy\Application Data\Mozilla\Firefox\Profiles\f67z94ro.default\cookies.txt ]
.interclick.com [ C:\Documents and Settings\Nancy\Application Data\Mozilla\Firefox\Profiles\f67z94ro.default\cookies.txt ]
.a1.interclick.com [ C:\Documents and Settings\Nancy\Application Data\Mozilla\Firefox\Profiles\f67z94ro.default\cookies.txt ]
.a1.interclick.com [ C:\Documents and Settings\Nancy\Application Data\Mozilla\Firefox\Profiles\f67z94ro.default\cookies.txt ]
.a1.interclick.com [ C:\Documents and Settings\Nancy\Application Data\Mozilla\Firefox\Profiles\f67z94ro.default\cookies.txt ]
.interclick.com [ C:\Documents and Settings\Nancy\Application Data\Mozilla\Firefox\Profiles\f67z94ro.default\cookies.txt ]
.advertising.com [ C:\Documents and Settings\Nancy\Application Data\Mozilla\Firefox\Profiles\f67z94ro.default\cookies.txt ]
.advertising.com [ C:\Documents and Settings\Nancy\Application Data\Mozilla\Firefox\Profiles\f67z94ro.default\cookies.txt ]
.advertising.com [ C:\Documents and Settings\Nancy\Application Data\Mozilla\Firefox\Profiles\f67z94ro.default\cookies.txt ]
.advertising.com [ C:\Documents and Settings\Nancy\Application Data\Mozilla\Firefox\Profiles\f67z94ro.default\cookies.txt ]
.advertising.com [ C:\Documents and Settings\Nancy\Application Data\Mozilla\Firefox\Profiles\f67z94ro.default\cookies.txt ]
.advertising.com [ C:\Documents and Settings\Nancy\Application Data\Mozilla\Firefox\Profiles\f67z94ro.default\cookies.txt ]
.ads.pointroll.com [ C:\Documents and Settings\Nancy\Application Data\Mozilla\Firefox\Profiles\f67z94ro.default\cookies.txt ]
.ads.pointroll.com [ C:\Documents and Settings\Nancy\Application Data\Mozilla\Firefox\Profiles\f67z94ro.default\cookies.txt ]
.ads.pointroll.com [ C:\Documents and Settings\Nancy\Application Data\Mozilla\Firefox\Profiles\f67z94ro.default\cookies.txt ]
.ads.pointroll.com [ C:\Documents and Settings\Nancy\Application Data\Mozilla\Firefox\Profiles\f67z94ro.default\cookies.txt ]
.ads.pointroll.com [ C:\Documents and Settings\Nancy\Application Data\Mozilla\Firefox\Profiles\f67z94ro.default\cookies.txt ]
.ads.pointroll.com [ C:\Documents and Settings\Nancy\Application Data\Mozilla\Firefox\Profiles\f67z94ro.default\cookies.txt ]
.ads.pointroll.com [ C:\Documents and Settings\Nancy\Application Data\Mozilla\Firefox\Profiles\f67z94ro.default\cookies.txt ]
.ads.pointroll.com [ C:\Documents and Settings\Nancy\Application Data\Mozilla\Firefox\Profiles\f67z94ro.default\cookies.txt ]
.ads.pointroll.com [ C:\Documents and Settings\Nancy\Application Data\Mozilla\Firefox\Profiles\f67z94ro.default\cookies.txt ]
.ads.pointroll.com [ C:\Documents and Settings\Nancy\Application Data\Mozilla\Firefox\Profiles\f67z94ro.default\cookies.txt ]
.atdmt.com [ C:\Documents and Settings\Nancy\Application Data\Mozilla\Firefox\Profiles\f67z94ro.default\cookies.txt ]
.atdmt.com [ C:\Documents and Settings\Nancy\Application Data\Mozilla\Firefox\Profiles\f67z94ro.default\cookies.txt ]
.tacoda.net [ C:\Documents and Settings\Nancy\Application Data\Mozilla\Firefox\Profiles\f67z94ro.default\cookies.txt ]
.tacoda.net [ C:\Documents and Settings\Nancy\Application Data\Mozilla\Firefox\Profiles\f67z94ro.default\cookies.txt ]
.tacoda.net [ C:\Documents and Settings\Nancy\Application Data\Mozilla\Firefox\Profiles\f67z94ro.default\cookies.txt ]
.tacoda.net [ C:\Documents and Settings\Nancy\Application Data\Mozilla\Firefox\Profiles\f67z94ro.default\cookies.txt ]
.tacoda.net [ C:\Documents and Settings\Nancy\Application Data\Mozilla\Firefox\Profiles\f67z94ro.default\cookies.txt ]
.revsci.net [ C:\Documents and Settings\Nancy\Application Data\Mozilla\Firefox\Profiles\f67z94ro.default\cookies.txt ]
.revsci.net [ C:\Documents and Settings\Nancy\Application Data\Mozilla\Firefox\Profiles\f67z94ro.default\cookies.txt ]
.revsci.net [ C:\Documents and Settings\Nancy\Application Data\Mozilla\Firefox\Profiles\f67z94ro.default\cookies.txt ]
.trafficmp.com [ C:\Documents and Settings\Nancy\Application Data\Mozilla\Firefox\Profiles\f67z94ro.default\cookies.txt ]
.specificclick.net [ C:\Documents and Settings\Nancy\Application Data\Mozilla\Firefox\Profiles\f67z94ro.default\cookies.txt ]
.specificclick.net [ C:\Documents and Settings\Nancy\Application Data\Mozilla\Firefox\Profiles\f67z94ro.default\cookies.txt ]
ad.yieldmanager.com [ C:\Documents and Settings\Nancy\Application Data\Mozilla\Firefox\Profiles\f67z94ro.default\cookies.txt ]
ad.yieldmanager.com [ C:\Documents and Settings\Nancy\Application Data\Mozilla\Firefox\Profiles\f67z94ro.default\cookies.txt ]
ad.yieldmanager.com [ C:\Documents and Settings\Nancy\Application Data\Mozilla\Firefox\Profiles\f67z94ro.default\cookies.txt ]
ad.yieldmanager.com [ C:\Documents and Settings\Nancy\Application Data\Mozilla\Firefox\Profiles\f67z94ro.default\cookies.txt ]
ad.yieldmanager.com [ C:\Documents and Settings\Nancy\Application Data\Mozilla\Firefox\Profiles\f67z94ro.default\cookies.txt ]
ad.yieldmanager.com [ C:\Documents and Settings\Nancy\Application Data\Mozilla\Firefox\Profiles\f67z94ro.default\cookies.txt ]
.specificclick.net [ C:\Documents and Settings\Nancy\Application Data\Mozilla\Firefox\Profiles\f67z94ro.default\cookies.txt ]
.specificclick.net [ C:\Documents and Settings\Nancy\Application Data\Mozilla\Firefox\Profiles\f67z94ro.default\cookies.txt ]
.specificclick.net [ C:\Documents and Settings\Nancy\Application Data\Mozilla\Firefox\Profiles\f67z94ro.default\cookies.txt ]
.specificclick.net [ C:\Documents and Settings\Nancy\Application Data\Mozilla\Firefox\Profiles\f67z94ro.default\cookies.txt ]
.specificclick.net [ C:\Documents and Settings\Nancy\Application Data\Mozilla\Firefox\Profiles\f67z94ro.default\cookies.txt ]
.specificclick.net [ C:\Documents and Settings\Nancy\Application Data\Mozilla\Firefox\Profiles\f67z94ro.default\cookies.txt ]
.zedo.com [ C:\Documents and Settings\Nancy\Application Data\Mozilla\Firefox\Profiles\f67z94ro.default\cookies.txt ]
.zedo.com [ C:\Documents and Settings\Nancy\Application Data\Mozilla\Firefox\Profiles\f67z94ro.default\cookies.txt ]
.zedo.com [ C:\Documents and Settings\Nancy\Application Data\Mozilla\Firefox\Profiles\f67z94ro.default\cookies.txt ]
.c7.zedo.com [ C:\Documents and Settings\Nancy\Application Data\Mozilla\Firefox\Profiles\f67z94ro.default\cookies.txt ]
.specificclick.net [ C:\Documents and Settings\Nancy\Application Data\Mozilla\Firefox\Profiles\f67z94ro.default\cookies.txt ]
.specificclick.net [ C:\Documents and Settings\Nancy\Application Data\Mozilla\Firefox\Profiles\f67z94ro.default\cookies.txt ]
.avgtechnologies.112.2o7.net [ C:\Documents and Settings\Nancy\Application Data\Mozilla\Firefox\Profiles\f67z94ro.default\cookies.txt ]
.xiti.com [ C:\Documents and Settings\Nancy\Application Data\Mozilla\Firefox\Profiles\f67z94ro.default\cookies.txt ]
.smartadserver.com [ C:\Documents and Settings\Nancy\Application Data\Mozilla\Firefox\Profiles\f67z94ro.default\cookies.txt ]
.smartadserver.com [ C:\Documents and Settings\Nancy\Application Data\Mozilla\Firefox\Profiles\f67z94ro.default\cookies.txt ]
.smartadserver.com [ C:\Documents and Settings\Nancy\Application Data\Mozilla\Firefox\Profiles\f67z94ro.default\cookies.txt ]
.smartadserver.com [ C:\Documents and Settings\Nancy\Application Data\Mozilla\Firefox\Profiles\f67z94ro.default\cookies.txt ]
.roiservice.com [ C:\Documents and Settings\Nancy\Application Data\Mozilla\Firefox\Profiles\f67z94ro.default\cookies.txt ]
.kontera.com [ C:\Documents and Settings\Nancy\Application Data\Mozilla\Firefox\Profiles\f67z94ro.default\cookies.txt ]
.kontera.com [ C:\Documents and Settings\Nancy\Application Data\Mozilla\Firefox\Profiles\f67z94ro.default\cookies.txt ]
.serving-sys.com [ C:\Documents and Settings\Nancy\Application Data\Mozilla\Firefox\Profiles\f67z94ro.default\cookies.txt ]
.bs.serving-sys.com [ C:\Documents and Settings\Nancy\Application Data\Mozilla\Firefox\Profiles\f67z94ro.default\cookies.txt ]
.serving-sys.com [ C:\Documents and Settings\Nancy\Application Data\Mozilla\Firefox\Profiles\f67z94ro.default\cookies.txt ]
.serving-sys.com [ C:\Documents and Settings\Nancy\Application Data\Mozilla\Firefox\Profiles\f67z94ro.default\cookies.txt ]
.serving-sys.com [ C:\Documents and Settings\Nancy\Application Data\Mozilla\Firefox\Profiles\f67z94ro.default\cookies.txt ]
.serving-sys.com [ C:\Documents and Settings\Nancy\Application Data\Mozilla\Firefox\Profiles\f67z94ro.default\cookies.txt ]
.serving-sys.com [ C:\Documents and Settings\Nancy\Application Data\Mozilla\Firefox\Profiles\f67z94ro.default\cookies.txt ]
.chitika.net [ C:\Documents and Settings\Nancy\Application Data\Mozilla\Firefox\Profiles\f67z94ro.default\cookies.txt ]
.mediaplex.com [ C:\Documents and Settings\Nancy\Application Data\Mozilla\Firefox\Profiles\f67z94ro.default\cookies.txt ]
.mediaplex.com [ C:\Documents and Settings\Nancy\Application Data\Mozilla\Firefox\Profiles\f67z94ro.default\cookies.txt ]
.apmebf.com [ C:\Documents and Settings\Nancy\Application Data\Mozilla\Firefox\Profiles\f67z94ro.default\cookies.txt ]
.tribalfusion.com [ C:\Documents and Settings\Nancy\Application Data\Mozilla\Firefox\Profiles\f67z94ro.default\cookies.txt ]
.specificmedia.com [ C:\Documents and Settings\Nancy\Application Data\Mozilla\Firefox\Profiles\f67z94ro.default\cookies.txt ]
.questionmarket.com [ C:\Documents and Settings\Nancy\Application Data\Mozilla\Firefox\Profiles\f67z94ro.default\cookies.txt ]
.questionmarket.com [ C:\Documents and Settings\Nancy\Application Data\Mozilla\Firefox\Profiles\f67z94ro.default\cookies.txt ]
.realmedia.com [ C:\Documents and Settings\Nancy\Application Data\Mozilla\Firefox\Profiles\f67z94ro.default\cookies.txt ]
.realmedia.com [ C:\Documents and Settings\Nancy\Application Data\Mozilla\Firefox\Profiles\f67z94ro.default\cookies.txt ]
.realmedia.com [ C:\Documents and Settings\Nancy\Application Data\Mozilla\Firefox\Profiles\f67z94ro.default\cookies.txt ]
.edge.ru4.com [ C:\Documents and Settings\Nancy\Application Data\Mozilla\Firefox\Profiles\f67z94ro.default\cookies.txt ]
.edge.ru4.com [ C:\Documents and Settings\Nancy\Application Data\Mozilla\Firefox\Profiles\f67z94ro.default\cookies.txt ]
.ar.atwola.com [ C:\Documents and Settings\Nancy\Application Data\Mozilla\Firefox\Profiles\f67z94ro.default\cookies.txt ]
ar.atwola.com [ C:\Documents and Settings\Nancy\Application Data\Mozilla\Firefox\Profiles\f67z94ro.default\cookies.txt ]
data.coremetrics.com [ C:\Documents and Settings\Nancy\Application Data\Mozilla\Firefox\Profiles\f67z94ro.default\cookies.txt ]
ads.bridgetrack.com [ C:\Documents and Settings\Nancy\Application Data\Mozilla\Firefox\Profiles\f67z94ro.default\cookies.txt ]
ads.bridgetrack.com [ C:\Documents and Settings\Nancy\Application Data\Mozilla\Firefox\Profiles\f67z94ro.default\cookies.txt ]
ads.bridgetrack.com [ C:\Documents and Settings\Nancy\Application Data\Mozilla\Firefox\Profiles\f67z94ro.default\cookies.txt ]
.ehg-viacom.hitbox.com [ C:\Documents and Settings\Nancy\Application Data\Mozilla\Firefox\Profiles\f67z94ro.default\cookies.txt ]
.ehg-viacom.hitbox.com [ C:\Documents and Settings\Nancy\Application Data\Mozilla\Firefox\Profiles\f67z94ro.default\cookies.txt ]
.ehg-viacom.hitbox.com [ C:\Documents and Settings\Nancy\Application Data\Mozilla\Firefox\Profiles\f67z94ro.default\cookies.txt ]
.ehg-connorsgroup.hitbox.com [ C:\Documents and Settings\Nancy\Application Data\Mozilla\Firefox\Profiles\f67z94ro.default\cookies.txt ]
.richmedia.yahoo.com [ C:\Documents and Settings\Nancy\Application Data\Mozilla\Firefox\Profiles\f67z94ro.default\cookies.txt ]
.adserver.adtechus.com [ C:\Documents and Settings\Nancy\Application Data\Mozilla\Firefox\Profiles\f67z94ro.default\cookies.txt ]
.bloomberg.122.2o7.net [ C:\Documents and Settings\Nancy\Application Data\Mozilla\Firefox\Profiles\f67z94ro.default\cookies.txt ]
.nbcuniversal.122.2o7.net [ C:\Documents and Settings\Nancy\Application Data\Mozilla\Firefox\Profiles\f67z94ro.default\cookies.txt ]
.imrworldwide.com [ C:\Documents and Settings\Nancy\Application Data\Mozilla\Firefox\Profiles\f67z94ro.default\cookies.txt ]
.imrworldwide.com [ C:\Documents and Settings\Nancy\Application Data\Mozilla\Firefox\Profiles\f67z94ro.default\cookies.txt ]
.ehg-dig.hitbox.com [ C:\Documents and Settings\Nancy\Application Data\Mozilla\Firefox\Profiles\f67z94ro.default\cookies.txt ]
.ehg-dig.hitbox.com [ C:\Documents and Settings\Nancy\Application Data\Mozilla\Firefox\Profiles\f67z94ro.default\cookies.txt ]
.ehg-dig.hitbox.com [ C:\Documents and Settings\Nancy\Application Data\Mozilla\Firefox\Profiles\f67z94ro.default\cookies.txt ]
sales.liveperson.net [ C:\Documents and Settings\Nancy\Application Data\Mozilla\Firefox\Profiles\f67z94ro.default\cookies.txt ]
sales.liveperson.net [ C:\Documents and Settings\Nancy\Application Data\Mozilla\Firefox\Profiles\f67z94ro.default\cookies.txt ]
.insightexpressai.com [ C:\Documents and Settings\Nancy\Application Data\Mozilla\Firefox\Profiles\f67z94ro.default\cookies.txt ]
.insightexpressai.com [ C:\Documents and Settings\Nancy\Application Data\Mozilla\Firefox\Profiles\f67z94ro.default\cookies.txt ]
.insightexpressai.com [ C:\Documents and Settings\Nancy\Application Data\Mozilla\Firefox\Profiles\f67z94ro.default\cookies.txt ]
.insightexpressai.com [ C:\Documents and Settings\Nancy\Application Data\Mozilla\Firefox\Profiles\f67z94ro.default\cookies.txt ]
.insightexpressai.com [ C:\Documents and Settings\Nancy\Application Data\Mozilla\Firefox\Profiles\f67z94ro.default\cookies.txt ]
.insightexpressai.com [ C:\Documents and Settings\Nancy\Application Data\Mozilla\Firefox\Profiles\f67z94ro.default\cookies.txt ]
.insightexpressai.com [ C:\Documents and Settings\Nancy\Application Data\Mozilla\Firefox\Profiles\f67z94ro.default\cookies.txt ]
.media6degrees.com [ C:\Documents and Settings\Nancy\Application Data\Mozilla\Firefox\Profiles\f67z94ro.default\cookies.txt ]
.media6degrees.com [ C:\Documents and Settings\Nancy\Application Data\Mozilla\Firefox\Profiles\f67z94ro.default\cookies.txt ]
.media6degrees.com [ C:\Documents and Settings\Nancy\Application Data\Mozilla\Firefox\Profiles\f67z94ro.default\cookies.txt ]
.media6degrees.com [ C:\Documents and Settings\Nancy\Application Data\Mozilla\Firefox\Profiles\f67z94ro.default\cookies.txt ]
.media6degrees.com [ C:\Documents and Settings\Nancy\Application Data\Mozilla\Firefox\Profiles\f67z94ro.default\cookies.txt ]
.stats.paypal.com [ C:\Documents and Settings\Nancy\Application Data\Mozilla\Firefox\Profiles\f67z94ro.default\cookies.txt ]
.collective-media.net [ C:\Documents and Settings\Nancy\Application Data\Mozilla\Firefox\Profiles\f67z94ro.default\cookies.txt ]
.collective-media.net [ C:\Documents and Settings\Nancy\Application Data\Mozilla\Firefox\Profiles\f67z94ro.default\cookies.txt ]
ads.lucidmedia.com [ C:\Documents and Settings\Nancy\Application Data\Mozilla\Firefox\Profiles\f67z94ro.default\cookies.txt ]
.collective-media.net [ C:\Documents and Settings\Nancy\Application Data\Mozilla\Firefox\Profiles\f67z94ro.default\cookies.txt ]
.collective-media.net [ C:\Documents and Settings\Nancy\Application Data\Mozilla\Firefox\Profiles\f67z94ro.default\cookies.txt ]
ads.lucidmedia.com [ C:\Documents and Settings\Nancy\Application Data\Mozilla\Firefox\Profiles\f67z94ro.default\cookies.txt ]
ads.lucidmedia.com [ C:\Documents and Settings\Nancy\Application Data\Mozilla\Firefox\Profiles\f67z94ro.default\cookies.txt ]
.media.mtvnservices.com [ C:\Documents and Settings\Nancy\Application Data\Mozilla\Firefox\Profiles\f67z94ro.default\cookies.txt ]
.media.mtvnservices.com [ C:\Documents and Settings\Nancy\Application Data\Mozilla\Firefox\Profiles\f67z94ro.default\cookies.txt ]
server.cpmstar.com [ C:\Documents and Settings\Nancy\Application Data\Mozilla\Firefox\Profiles\f67z94ro.default\cookies.txt ]
.youngentrepreneur.com [ C:\Documents and Settings\Nancy\Application Data\Mozilla\Firefox\Profiles\f67z94ro.default\cookies.txt ]
.youngentrepreneur.com [ C:\Documents and Settings\Nancy\Application Data\Mozilla\Firefox\Profiles\f67z94ro.default\cookies.txt ]
.youngentrepreneur.com [ C:\Documents and Settings\Nancy\Application Data\Mozilla\Firefox\Profiles\f67z94ro.default\cookies.txt ]
www.youngentrepreneur.com [ C:\Documents and Settings\Nancy\Application Data\Mozilla\Firefox\Profiles\f67z94ro.default\cookies.txt ]
.youngentrepreneur.com [ C:\Documents and Settings\Nancy\Application Data\Mozilla\Firefox\Profiles\f67z94ro.default\cookies.txt ]
.youngentrepreneur.com [ C:\Documents and Settings\Nancy\Application Data\Mozilla\Firefox\Profiles\f67z94ro.default\cookies.txt ]
cdn3.specificmedia.com [ C:\Documents and Settings\Nancy\Application Data\Mozilla\Firefox\Profiles\f67z94ro.default\cookies.txt ]
.tracking.foxnews.com [ C:\Documents and Settings\Nancy\Application Data\Mozilla\Firefox\Profiles\f67z94ro.default\cookies.txt ]
.tracking.foxnews.com [ C:\Documents and Settings\Nancy\Application Data\Mozilla\Firefox\Profiles\f67z94ro.default\cookies.txt ]
www.burstbeacon.com [ C:\Documents and Settings\Nancy\Application Data\Mozilla\Firefox\Profiles\f67z94ro.default\cookies.txt ]
.discountcontactlenses.com [ C:\Documents and Settings\Nancy\Application Data\Mozilla\Firefox\Profiles\f67z94ro.default\cookies.txt ]
.discountcontactlenses.com [ C:\Documents and Settings\Nancy\Application Data\Mozilla\Firefox\Profiles\f67z94ro.default\cookies.txt ]
www.discountcontactlenses.com [ C:\Documents and Settings\Nancy\Application Data\Mozilla\Firefox\Profiles\f67z94ro.default\cookies.txt ]
.discountcontactlenses.com [ C:\Documents and Settings\Nancy\Application Data\Mozilla\Firefox\Profiles\f67z94ro.default\cookies.txt ]
www.discountcontactlenses.com [ C:\Documents and Settings\Nancy\Application Data\Mozilla\Firefox\Profiles\f67z94ro.default\cookies.txt ]
.discountcontactlenses.com [ C:\Documents and Settings\Nancy\Application Data\Mozilla\Firefox\Profiles\f67z94ro.default\cookies.txt ]
ladieswholaunch.advertserve.com [ C:\Documents and Settings\Nancy\Application Data\Mozilla\Firefox\Profiles\f67z94ro.default\cookies.txt ]
.atlas.entrepreneur.com [ C:\Documents and Settings\Nancy\Application Data\Mozilla\Firefox\Profiles\f67z94ro.default\cookies.txt ]
.atlas.entrepreneur.com [ C:\Documents and Settings\Nancy\Application Data\Mozilla\Firefox\Profiles\f67z94ro.default\cookies.txt ]
.atlas.entrepreneur.com [ C:\Documents and Settings\Nancy\Application Data\Mozilla\Firefox\Profiles\f67z94ro.default\cookies.txt ]
.invitemedia.com [ C:\Documents and Settings\Nancy\Application Data\Mozilla\Firefox\Profiles\f67z94ro.default\cookies.txt ]
.invitemedia.com [ C:\Documents and Settings\Nancy\Application Data\Mozilla\Firefox\Profiles\f67z94ro.default\cookies.txt ]
.atwola.com [ C:\WINDOWS\Mozilla\Firefox\Profiles\dqsthlsx.default\cookies.txt ]
.atwola.com [ C:\WINDOWS\Mozilla\Firefox\Profiles\dqsthlsx.default\cookies.txt ]
ar.atwola.com [ C:\WINDOWS\Mozilla\Firefox\Profiles\dqsthlsx.default\cookies.txt ]
.ad.us-ec.adtechus.com [ C:\WINDOWS\Mozilla\Firefox\Profiles\dqsthlsx.default\cookies.txt ]
viewers.multicastmedia.com [ C:\WINDOWS\Mozilla\Firefox\Profiles\dqsthlsx.default\cookies.txt ]
viewers.multicastmedia.com [ C:\WINDOWS\Mozilla\Firefox\Profiles\dqsthlsx.default\cookies.txt ]

Adware.SeekSuggest
C:\WINDOWS\JESTERTB.DLL

Trace.Known Threat Sources
C:\Documents and Settings\Brett\Local Settings\Temporary Internet Files\Content.IE5\09QB4HAR\topleftclickbox[1].gif
C:\Documents and Settings\Brett\Local Settings\Temporary Internet Files\Content.IE5\KXQR4PIR\bottomleftinsidebox[1].gif
C:\Documents and Settings\Brett\Local Settings\Temporary Internet Files\Content.IE5\C5IVW12B\toprightclickbox[1].gif
C:\Documents and Settings\Brett\Local Settings\Temporary Internet Files\Content.IE5\C5IVW12B\bullet-arrow[2].gif
C:\Documents and Settings\Brett\Local Settings\Temporary Internet Files\Content.IE5\W9M3GX63\line-divider[1].gif
C:\Documents and Settings\Brett\Local Settings\Temporary Internet Files\Content.IE5\W9M3GX63\image-top[1].jpg
C:\Documents and Settings\Brett\Local Settings\Temporary Internet Files\Content.IE5\09QB4HAR\titleheaderbg[1].jpg
C:\Documents and Settings\Brett\Local Settings\Temporary Internet Files\Content.IE5\KXQR4PIR\go[3].gif
C:\Documents and Settings\Brett\Local Settings\Temporary Internet Files\Content.IE5\W9M3GX63\bottomrightclickbox[1].gif
C:\Documents and Settings\Brett\Local Settings\Temporary Internet Files\Content.IE5\W9M3GX63\maincat[1].gif
C:\Documents and Settings\Brett\Local Settings\Temporary Internet Files\Content.IE5\09QB4HAR\spacer[6].gif
C:\Documents and Settings\Brett\Local Settings\Temporary Internet Files\Content.IE5\C5IVW12B\bottomtitleheader[1].jpg
C:\Documents and Settings\Brett\Local Settings\Temporary Internet Files\Content.IE5\C5IVW12B\bottomleftclickbox[1].gif
C:\Documents and Settings\Brett\Local Settings\Temporary Internet Files\Content.IE5\09QB4HAR\toprightinsidebox[1].gif
C:\Documents and Settings\Brett\Local Settings\Temporary Internet Files\Content.IE5\GJX32SOX\icon[1].gif
C:\Documents and Settings\Brett\Local Settings\Temporary Internet Files\Content.IE5\FR587OJJ\image-top[1].jpg


Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 11:56:55 AM, on 4/25/2009
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP3 (6.00.2900.5512)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\WINDOWS\system32\drivers\KodakCCS.exe
C:\WINDOWS\System32\HPZipm12.exe
C:\WINDOWS\System32\svchost.exe
C:\PROGRA~1\AVG\AVG8\avgemc.exe
C:\WINDOWS\system32\fxssvc.exe
C:\PROGRA~1\AVG\AVG8\avgrsx.exe
C:\PROGRA~1\AVG\AVG8\avgnsx.exe
C:\Program Files\Trend Micro\BM\TMBMSRV.exe
C:\Program Files\AVG\AVG8\avgcsrvx.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Java\jre6\bin\jusched.exe
C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
C:\Program Files\Real\RealPlayer\RealPlay.exe
C:\PROGRA~1\Yahoo!\browser\ybrwicon.exe
C:\PROGRA~1\SBCLIG~1\SMARTB~1\MotiveSB.exe
C:\PROGRA~1\Yahoo!\YOP\yop.exe
C:\Program Files\QuickTime\QTTask.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\PROGRA~1\Yahoo!\browser\ycommon.exe
C:\Program Files\Lavasoft\Ad-Aware\AAWTray.exe
C:\PROGRA~1\AVG\AVG8\avgtray.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
C:\Program Files\Greetings Workshop\GWREMIND.EXE
C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe
C:\Program Files\HP\Digital Imaging\bin\hpqimzone.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\WINDOWS\system32\HPZinw12.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Documents and Settings\Nancy\Desktop\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.dell4me.com/myway
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://red.clientapps.yahoo.com/cust...search/ie.html
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://red.clientapps.yahoo.com/cust.../www.yahoo.com
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://yahoo.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://att.yahoo.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://red.clientapps.yahoo.com/cust.../www.yahoo.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://red.clientapps.yahoo.com/cust...search/ie.html
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://red.clientapps.yahoo.com/cust.../www.yahoo.com
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.dell4me.com/myway
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn1\yt.dll
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn1\yt.dll
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG8\avgssie.dll
O2 - BHO: UberButton Class - {5BAB4B5B-68BC-4B02-94D6-2FC0DE4A7897} - C:\Program Files\Yahoo!\Common\yiesrvc.dll
O2 - BHO: DriveLetterAccess - {5CA3D70E-1895-11CF-8E15-001234567890} - C:\WINDOWS\system32\dla\tfswshx.dll
O2 - BHO: YahooTaggedBM Class - {65D886A2-7CA7-479B-BB95-14D1EFB7946A} - C:\Program Files\Yahoo!\Common\YIeTagBm.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll
O2 - BHO: CNisExtBho Class - {9ECB9560-04F9-4bbc-943D-298DDF1699E1} - C:\Program Files\Common Files\Symantec Shared\AdBlocking\NISShExt.dll
O2 - BHO: AVG Security Toolbar - {A057A204-BACC-4D26-9990-79A187E2698E} - C:\PROGRA~1\AVG\AVG8\AVGTOO~1.DLL
O2 - BHO: CNavExtBho Class - {BDF3E430-B101-42AD-A544-FADC6B084872} - C:\Program Files\Norton Internet Security Professional\Norton AntiVirus\NavShExt.dll (file missing)
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O2 - BHO: SidebarAutoLaunch Class - {F2AA9440-6328-4933-B7C9-A6CCDF9CBF6D} - C:\Program Files\Yahoo!\browser\YSidebarIEBHO.dll
O2 - BHO: (no name) - {FDD3B846-8D59-4ffb-8758-209B6AD74ACC} - (no file)
O3 - Toolbar: Web assistant - {0B53EAC3-8D69-4b9e-9B19-A37C9A5676A7} - C:\Program Files\Common Files\Symantec Shared\AdBlocking\NISShExt.dll
O3 - Toolbar: Norton AntiVirus - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - C:\Program Files\Norton Internet Security Professional\Norton AntiVirus\NavShExt.dll (file missing)
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn1\yt.dll
O3 - Toolbar: AVG Security Toolbar - {A057A204-BACC-4D26-9990-79A187E2698E} - C:\PROGRA~1\AVG\AVG8\AVGTOO~1.DLL
O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\System32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\System32\hkcmd.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKLM\..\Run: [DVDLauncher] "C:\Program Files\CyberLink\PowerDVD\DVDLauncher.exe"
O4 - HKLM\..\Run: [PCMService] "C:\Program Files\Dell\Media Experience\PCMService.exe"
O4 - HKLM\..\Run: [dla] C:\WINDOWS\system32\dla\tfswctrl.exe
O4 - HKLM\..\Run: [UpdateManager] "C:\Program Files\Common Files\Sonic\Update Manager\sgtray.exe" /r
O4 - HKLM\..\Run: [mmtask] c:\Program Files\MusicMatch\MusicMatch Jukebox\mmtask.exe
O4 - HKLM\..\Run: [Microsoft Works Update Detection] C:\Program Files\Common Files\Microsoft Shared\Works Shared\WkUFind.exe
O4 - HKLM\..\Run: [URLLSTCK.exe] C:\Program Files\Norton Internet Security Professional\UrlLstCk.exe
O4 - HKLM\..\Run: [Advanced Tools Check] C:\PROGRA~1\NORTON~1\NORTON~1\AdvTools\ADVCHK.EXE
O4 - HKLM\..\Run: [HP Software Update] "C:\Program Files\HP\HP Software Update\HPWuSchd2.exe"
O4 - HKLM\..\Run: [ViewMgr] C:\Program Files\Viewpoint\Viewpoint Manager\ViewMgr.exe
O4 - HKLM\..\Run: [RealTray] "C:\Program Files\Real\RealPlayer\RealPlay.exe" SYSTEMBOOTHIDEPLAYER
O4 - HKLM\..\Run: [AOLDialer] "C:\Program Files\Common Files\AOL\ACS\AOLDial.exe"
O4 - HKLM\..\Run: [YBrowser] C:\PROGRA~1\Yahoo!\browser\ybrwicon.exe
O4 - HKLM\..\Run: [Motive SmartBridge] C:\PROGRA~1\SBCLIG~1\SMARTB~1\MotiveSB.exe
O4 - HKLM\..\Run: [YOP] "C:\PROGRA~1\Yahoo!\YOP\yop.exe" /autostart
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [UfSeAgnt.exe] "C:\Program Files\Trend Micro\Internet Security\UfSeAgnt.exe"
O4 - HKLM\..\Run: [Ad-Watch] C:\Program Files\Lavasoft\Ad-Aware\AAWTray.exe
O4 - HKLM\..\Run: [AVG8_TRAY] C:\PROGRA~1\AVG\AVG8\avgtray.exe
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [DellSupport] "C:\Program Files\Dell Support\DSAgnt.exe" /startup
O4 - HKCU\..\Run: [Neighborhood CallManager] c:\Program Files\MCI\Neighborhood CallManager\CallManager.exe
O4 - HKCU\..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
O4 - HKUS\S-1-5-18\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe (User 'Default user')
O4 - Startup: Greetings Workshop Reminders.lnk = C:\Program Files\Greetings Workshop\GWREMIND.EXE
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
O4 - Global Startup: HP Image Zone Fast Start.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqthb08.exe
O4 - Global Startup: Kodak EasyShare software.lnk = C:\Program Files\Kodak\Kodak EasyShare software\bin\EasyShare.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O9 - Extra button: PokerStars - {3AD14F0C-ED16-4e43-B6D8-661B03F6A1EF} - C:\Program Files\PokerStars\PokerStarsUpdate.exe
O9 - Extra button: SBC Yahoo! Services - {5BAB4B5B-68BC-4B02-94D6-2FC0DE4A7897} - C:\Program Files\Yahoo!\Common\yiesrvc.dll
O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\System32\Shdocvw.dll
O9 - Extra button: MUSICMATCH MX Web Player - {d81ca86b-ef63-42af-bee3-4502d9a03c2d} - http://wwws.musicmatch.com/mmz/openWebRadio.html (file missing)
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O10 - Unknown file in Winsock LSP: c:\windows\system32\nwprovau.dll
O15 - Trusted Zone: *.att.com
O15 - Trusted Zone: http://www.sbc.com
O15 - Trusted Zone: *.sbc.com
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (Installation Support) - C:\Program Files\Yahoo!\Common\Yinsthelper.dll
O16 - DPF: {406B5949-7190-4245-91A9-30A17DE16AD0} (Snapfish Activia) - http://photo.walgreens.com/WalgreensActivia.cab
O16 - DPF: {54906866-23AA-451F-84C5-3BF0169AABAE} (Whale Client Components) - https://webmail.lee.net/InternalSite/WhlClntProxy.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1149513930031
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1149513878906
O16 - DPF: {917623D1-D8E5-11D2-BE8B-00104B06BDE3} - http://webcams.mtu.edu/webcam6/AxisCamControl.ocx
O17 - HKLM\System\CS1\Services\Tcpip\Parameters: SearchList = msu.edu,cl.msu.edu
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: SearchList = msu.edu,cl.msu.edu
O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG8\avgpp.dll
O20 - Winlogon Notify: !SASWinLogon - C:\Program Files\SUPERAntiSpyware\SASWINLO.dll
O20 - Winlogon Notify: avgrsstarter - C:\WINDOWS\SYSTEM32\avgrsstx.dll
O23 - Service: AOL Connectivity Service (AOL ACS) - Unknown owner - C:\Program Files\Common Files\AOL\ACS\AOLAcsd.exe (file missing)
O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: AVG Free8 E-mail Scanner (avg8emc) - AVG Technologies CZ, s.r.o. - C:\PROGRA~1\AVG\AVG8\avgemc.exe
O23 - Service: AVG Free8 WatchDog (avg8wd) - AVG Technologies CZ, s.r.o. - C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe
O23 - Service: Symantec Network Proxy (ccProxy) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccProxy.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: Kodak Camera Connection Software (KodakCCS) - Eastman Kodak Company - C:\WINDOWS\system32\drivers\KodakCCS.exe
O23 - Service: Lavasoft Ad-Aware Service - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe
O23 - Service: MSCSPTISRV - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AVLib\MSCSPTISRV.exe
O23 - Service: Intel NCS NetService (NetSvc) - Intel(R) Corporation - C:\Program Files\Intel\NCS\Sync\NetSvc.exe
O23 - Service: Norton Unerase Protection (NProtectService) - Unknown owner - C:\Program Files\Norton Internet Security Professional\Norton AntiVirus\AdvTools\NPROTECT.EXE (file missing)
O23 - Service: PACSPTISVR - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AVLib\PACSPTISVR.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\System32\HPZipm12.exe
O23 - Service: Symantec AVScan (SAVScan) - Unknown owner - C:\Program Files\Norton AntiVirus\SAVScan.exe (file missing)
O23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AVLib\SPTISRV.exe
O23 - Service: Trend Micro Unauthorized Change Prevention Service (TMBMServer) - Trend Micro Inc. - C:\Program Files\Trend Micro\BM\TMBMSRV.exe

--
End of file - 13349 bytes
murraywmn is offline  
Digg this Post!Add Post to del.icio.usBookmark Post in TechnoratiFurl this Post!Reddit!
Important Information
Join the #1 Tech Support Forum Today - It's Totally Free!

TechSupportForum.com is a leading support website for your computer needs. We offer free, friendly and personalized computer support. Why pay to have your computer fixed when you can do it for free.

Join TechSupportforum.com Today - Click Here

Old 04-26-2009, 03:47 AM   #2 (permalink)
Moderator, Analyst, Security Team
 
TheBruce1's Avatar
 
Join Date: Oct 2006
Location: Důn Čideann,Scotland.
Posts: 5,093
OS: XP


Re: Browsers keep shutting down!
Hello and Welcome to TSF.

We no longer use HijackThis as our initial analysis tool.

We want all our members to perform the steps outlined in the link I'll give you below, before posting for assistance. There's a sticky at the top of this forum, and a
Quote:
Having problems with spyware and pop-ups? First Steps
link at the top of each page.

---------------------------------------------------------------------------------------------

Please follow our pre-posting process outlined here:

NEW INSTRUCTIONS - Read This Before Posting For Malware Removal Help

After running through all the steps, you shall have a proper set of logs. Please post them in a new topic, as this one shall be closed.

If you have trouble with one of the steps, simply move on to the next one, and make note of it in your reply.

Please start a new thread in our Virus/Trojan/Spyware forum along with the required logs

Please note that the Virus/Trojan/Spyware Help forum is extremely busy, and it may take a while to receive a reply.
__________________
Member of ASAP since 2007
Member of UNITE since 2008

**Notice to BT customers**
BT to dump Phorm, see Here for more information. No DPI

If we have helped you in anyway, please consider Donating
TheBruce1 is offline  
Digg this Post!Add Post to del.icio.usBookmark Post in TechnoratiFurl this Post!Reddit!
Closed Thread

« Previous Thread | Next Thread »

Thread Tools

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Trackbacks are Off
Pingbacks are Off
Refbacks are Off



All times are GMT -7. The time now is 08:38 AM.

Contact Us - Tech Support Forum - Archive - Privacy Statement - Top


Copyright 2001 - 2009, Tech Support Forum
Home Tips Plus | Outdoor Basecamp | Automotive Support Forum

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85