Welcome to Tech Support Forum home to more then 136,000 problems solved. Issues have included: Spyware, Malware, Virus Issues, Windows, Microsoft, Linux, Networking, Security, Hardware, and Gaming Getting your problem solved is as easy as:
1. Registering for a free account
2. Asking your question
3. Receiving an answer

Registered members:
* Get free support
* Communicate privately with other members (PM).
* Removal of this message
* See fewer ads.
* And much more..

 


Want to know how to post a question? click here Having problems with spyware and pop-ups? First Steps
Go Back   Tech Support Forum > Security Center > Virus/Trojan/Spyware Help > Resolved HJT Threads
Reload this Page Unable to post info concerning browser hijacker
User Name
Password
Site Map Register Donate Rules Blogs Mark Forums Read


Resolved HJT Threads Resolved spyware and popup issues.

 
Page 1 of 2 1 2
 
LinkBack Thread Tools
Old 08-26-2007, 05:41 PM   #1 (permalink)
Registered User
 
Join Date: Aug 2007
Posts: 14
OS: Win XP


Unable to post info concerning browser hijacker
It appears I have a browser hijacker and I followed the 5 steps prior to posting a thread except that on Step 5, I was unable to use "dss"...everytime I attempted to use dss, after downloading it to my desktop, I received an error msg advising the application needed to be shut down, then a request popped up asking if I wanted to send an error msg to Mircosoft. When downloading dss, I had off all spyware programs, my anti virus program and had IE allowing popups, etc.
I was able to download Panda's scan and have that read for review.
What do I do to download dss?
Teach in Clovis is offline  
Digg this Post!Add Post to del.icio.usBookmark Post in TechnoratiFurl this Post!Reddit!
Important Information
Join the #1 Tech Support Forum Today - It's Totally Free!

TechSupportForum.com is a leading support website for your computer needs. We offer free, friendly and personalized computer support. Why pay to have your computer fixed when you can do it for free.

Join TechSupportforum.com Today - Click Here

Old 08-26-2007, 07:04 PM   #2 (permalink)
Mentor, Analyst - Security Team
 
Deckard's Avatar
 
Join Date: May 2006
Location: Oregon
Posts: 2,503
OS: MacOS X, Debian, OpenBSD, Windows


Re: Unable to post info concerning browser hijacker
Hi,

Did you see a DSS dialog box at all, or does it crash immediately after double-clicking?
__________________
The chance to begin again in a golden land of opportunity and adventure.

Need HijackThis help? Please read MicroBell's Five Step Process before posting.
Please donate and help keep this site free to all.


UNITE/ASAP: Proud member since 2006
Deckard is offline  
Digg this Post!Add Post to del.icio.usBookmark Post in TechnoratiFurl this Post!Reddit!
Old 08-26-2007, 07:11 PM   #3 (permalink)
Registered User
 
Join Date: Aug 2007
Posts: 14
OS: Win XP


Re: Unable to post info concerning browser hijacker
After clicking on dss, a box will appear - "Backing up Registry Hives"...about 1/2 to a minute of time is running after the Registry Hives box appears, then the error box will appear and the application shuts down.
Teach in Clovis is offline  
Digg this Post!Add Post to del.icio.usBookmark Post in TechnoratiFurl this Post!Reddit!
Old 08-26-2007, 07:34 PM   #4 (permalink)
Mentor, Analyst - Security Team
 
Deckard's Avatar
 
Join Date: May 2006
Location: Oregon
Posts: 2,503
OS: MacOS X, Debian, OpenBSD, Windows


Re: Unable to post info concerning browser hijacker
Give me ten minutes; I'm adjusting DSS slightly.
__________________
The chance to begin again in a golden land of opportunity and adventure.

Need HijackThis help? Please read MicroBell's Five Step Process before posting.
Please donate and help keep this site free to all.


UNITE/ASAP: Proud member since 2006
Deckard is offline  
Digg this Post!Add Post to del.icio.usBookmark Post in TechnoratiFurl this Post!Reddit!
Old 08-26-2007, 08:10 PM   #5 (permalink)
Mentor, Analyst - Security Team
 
Deckard's Avatar
 
Join Date: May 2006
Location: Oregon
Posts: 2,503
OS: MacOS X, Debian, OpenBSD, Windows


Re: Unable to post info concerning browser hijacker
Okay, delete any copy of DSS you have and re-download it to your Desktop. Do not run it yet.
http://www.techsupportforum.com/sect...eckard/dss.exe
Highlight and copy the following blue text, then go to Start > Run and paste it into the textbox. Press the OK button when you are done.
"%userprofile%\desktop\dss.exe" /config
When you get to the DSS Configuration dialog box, uncheck Check File Signatures under the Options section (lower right). Then press the Scan! button.

That should solve your problem. Post both logs for me.
__________________
The chance to begin again in a golden land of opportunity and adventure.

Need HijackThis help? Please read MicroBell's Five Step Process before posting.
Please donate and help keep this site free to all.


UNITE/ASAP: Proud member since 2006
Deckard is offline  
Digg this Post!Add Post to del.icio.usBookmark Post in TechnoratiFurl this Post!Reddit!
Old 08-26-2007, 08:31 PM   #6 (permalink)
Registered User
 
Join Date: Aug 2007
Posts: 14
OS: Win XP


Re: Unable to post info concerning browser hijacker
Did as you said, but....when I pasted the wording in Start>Run, the box appears but cannot uncheck the "Check File Signatures" box. It is already checked but appears to be "locked" - cannot check or uncheck it - all of the other boxes can have the checks unchecked if needed (or checked) but not the "Check File Signatures" box.
I went ahead and ran DSS just to see if possibly the lock out would not affect the outcome. No luck. Same error message appeared, though the time it took to pop open was about 1/2 minute longer than usual. Tried the total process as typed three times with the same results each time.
Teach in Clovis is offline  
Digg this Post!Add Post to del.icio.usBookmark Post in TechnoratiFurl this Post!Reddit!
Old 08-26-2007, 08:44 PM   #7 (permalink)
Mentor, Analyst - Security Team
 
Deckard's Avatar
 
Join Date: May 2006
Location: Oregon
Posts: 2,503
OS: MacOS X, Debian, OpenBSD, Windows


Re: Unable to post info concerning browser hijacker
Your browser cached the file. Delete that copy and download this link instead:
http://www.techsupportforum.com/sect...dss-clovis.exe
Highlight and copy the following blue text, then go to Start > Run and paste it into the textbox. Press the OK button when you are done.
"%userprofile%\desktop\dss-clovis.exe" /config
It should show you version 20070826.66 on the config dialog.
__________________
The chance to begin again in a golden land of opportunity and adventure.

Need HijackThis help? Please read MicroBell's Five Step Process before posting.
Please donate and help keep this site free to all.


UNITE/ASAP: Proud member since 2006
Deckard is offline  
Digg this Post!Add Post to del.icio.usBookmark Post in TechnoratiFurl this Post!Reddit!
Old 08-26-2007, 09:28 PM   #8 (permalink)
Registered User
 
Join Date: Aug 2007
Posts: 14
OS: Win XP


Re: Unable to post info concerning browser hijacker
Worked this time! When I attempted to reply had error msg that reply was too long. Will have to send two replies, first with DSS results. Second reply will be Panda scan.

Deckard's System Scanner v20070826.66
Run by Jon on 2007-08-26 20:59:31
Computer is in Normal Mode.
--------------------------------------------------------------------------------

-- System Restore --------------------------------------------------------------



-- Last 5 Restore Point(s) --
6: 2007-08-26 16:49:54 UTC - RP6 - Deckard's System Scanner Restore Point
5: 2007-08-26 05:22:09 UTC - RP5 - System Checkpoint
4: 2007-08-25 04:00:13 UTC - RP4 - System Checkpoint
3: 2007-08-24 03:27:07 UTC - RP3 - System Checkpoint
2: 2007-08-23 03:18:55 UTC - RP2 - Removed Advanced Disk Cleaner


-- First Restore Point --
1: 2007-08-23 03:09:56 UTC - RP1 - System Checkpoint


Backed up registry hives.
Performed disk cleanup.



-- HijackThis (run as Jon.exe) -------------------------------------------------

Unable to find log (file not found); running clone.
-- HijackThis Clone ------------------------------------------------------------

Emulating logfile of HijackThis v1.99.1
Scan saved at 2007-08-26 21:04:14
Platform: Windows XP Service Pack 2 (5.01.2600)
MSIE: Internet Explorer (7.00.6000.16512)

Running processes:
C:\WINDOWS\system32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Windows Defender\MsMpEng.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\ZoneLabs\vsmon.exe
C:\WINDOWS\explorer.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
C:\Program Files\Common Files\AOL\ACS\AOLacsd.exe
C:\Program Files\Common Files\AOL\TopSpeed\2.0\aoltsmon.exe
C:\Program Files\Common Files\AOL\1107318706\EE\services\safetyCore\ver210_5_4_1\aolavupd.exe
C:\Program Files\Common Files\AOL\TopSpeed\2.0\aoltpspd.exe
C:\WINDOWS\system32\cisvc.exe
C:\Program Files\CA\PPRT\bin\ITMRTSVC.exe
C:\Program Files\mcafee.com\antivirus\McShield.exe
C:\WINDOWS\system32\locator.exe
C:\Program Files\mcafee.com\antivirus\oasclnt.exe
C:\Program Files\Analog Devices\SoundMAX\spkrmon.exe
C:\Program Files\Spyware Terminator\sp_rsser.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\alg.exe
C:\Program Files\Common Files\AOL\1107318706\EE\aolsoftware.exe
C:\Program Files\Java\jre1.6.0_02\bin\jusched.exe
C:\Program Files\HP\HP Software Update\hpwuSchd2.exe
C:\Program Files\Common Files\AOL\1107318706\EE\services\safetyCore\ver210_5_4_1\AOLSP Scheduler.exe
C:\Program Files\mcafee.com\antivirus\mcvsescn.exe
C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\HP\hpcoretech\hpcmpmgr.exe
C:\WINDOWS\system32\dla\tfswctrl.exe
C:\Program Files\Common Files\AOL\AOL Spyware Protection\AOLSP Scheduler.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
C:\Program Files\Common Files\AOL\1107318706\EE\SSCEvtHdlr.exe
C:\Program Files\WordWeb\wweb32.exe
C:\Program Files\Common Files\AOL\1107318706\EE\aolsoftware.exe
C:\Program Files\HP\Digital Imaging\bin\hpqimzone.exe
C:\Program Files\HP\Digital Imaging\bin\hpqste08.exe
C:\WINDOWS\system32\HPZipm12.exe
C:\WINDOWS\system32\cidaemon.exe
C:\Program Files\AOL 9.0\waol.exe
C:\Program Files\AOL 9.0\shellmon.exe
C:\Documents and Settings\Jon\Desktop\dss-clovis.exe
C:\Program Files\Trend Micro\HijackThis\Jon.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://us.rd.yahoo.com/customize/ie/...ch/search.html
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com/
R1 - HKCU\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://ie.search.msn.com/en-us/srchasst/srchasst.htm
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://us.rd.yahoo.com/customize/ie/.../www.yahoo.com
R1 - HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main,Search Bar = http://g.msn.com/0SEENUS/SAOS01
R1 - HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R3 - URLSearchHook: AOLTBSearch Class - {EA756889-2338-43DB-8F07-D1CA6FB9C90D} - C:\Program Files\AOL\AOL Toolbar 5.0\aoltb.dll
F2 - REG:system.ini: UserInit=C:\WINDOWS\system32\Userinit.exe
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn2\yt.dll
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {0A87E45F-537A-40B4-B812-E2544C21A09F} - (no file)
O2 - BHO: (no name) - {1CB20BF0-BBAE-40A7-93F4-6435FF3D0411} - C:\Program Files\Crawler\Toolbar\ctbr.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O2 - BHO: Yahoo! IE Services Button - {5BAB4B5B-68BC-4B02-94D6-2FC0DE4A7897} - C:\Program Files\Yahoo!\Common\yiesrvc.dll
O2 - BHO: (no name) - {5C8B2A36-3DB1-42A4-A3CB-D426709BBFEB} - (no file)
O2 - BHO: DriveLetterAccess - {5CA3D70E-1895-11CF-8E15-001234567890} - C:\WINDOWS\system32\dla\tfswshx.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_02\bin\ssv.dll
O2 - BHO: AOL Toolbar Launcher - {7C554162-8CB7-45A4-B8F4-8EA1C75885F9} - C:\Program Files\AOL\AOL Toolbar 5.0\aoltb.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn2\yt.dll
O3 - Toolbar: AOL Toolbar - {DE9C389F-3316-41A7-809B-AA305ED9D922} - C:\Program Files\AOL\AOL Toolbar 5.0\aoltb.dll
O3 - Toolbar: &Crawler Toolbar - {4B3803EA-5230-4DC3-A7FC-33638F3D3542} - C:\Program Files\Crawler\Toolbar\ctbr.dll
O4 - HKEY_LOCAL_MACHINE\..\Run: [SpywareTerminator] "C:\Program Files\Spyware Terminator\SpywareTerminatorShield.exe"
O4 - HKEY_LOCAL_MACHINE\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKEY_LOCAL_MACHINE\..\Run: [HostManager] "C:\Program Files\Common Files\AOL\1107318706\ee\AOLSoftware.exe"
O4 - HKEY_LOCAL_MACHINE\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_02\bin\jusched.exe"
O4 - HKEY_LOCAL_MACHINE\..\Run: [ISUSPM Startup] "C:\PROGRA~1\COMMON~1\INSTAL~1\UPDATE~1\ISUSPM.exe" -startup
O4 - HKEY_LOCAL_MACHINE\..\Run: [HP Software Update] "C:\Program Files\HP\HP Software Update\HPWuSchd2.exe"
O4 - HKEY_LOCAL_MACHINE\..\Run: [KernelFaultCheck] C:\WINDOWS\system32\dumprep 0 -k
O4 - HKEY_LOCAL_MACHINE\..\Run: [AOLSPScheduler] "C:\Program Files\Common Files\AOL\1107318706\ee\services\safetyCore\ver210_5_4_1\AOLSP Scheduler.exe"
O4 - HKEY_LOCAL_MACHINE\..\Run: [sscRun] "C:\Program Files\Common Files\AOL\1107318706\ee\SSCRun.exe"
O4 - HKEY_LOCAL_MACHINE\..\Run: [OASClnt] "C:\Program Files\mcafee.com\antivirus\oasclnt.exe"
O4 - HKEY_LOCAL_MACHINE\..\Run: [EmailScan] "C:\Program Files\mcafee.com\antivirus\mcvsescn.exe"
O4 - HKEY_LOCAL_MACHINE\..\Run: [ZoneAlarm Client] "C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe"
O4 - HKEY_LOCAL_MACHINE\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.5.0_10\bin\jusched.exe"
O4 - HKCU\..\Run: [HP Component Manager] "C:\Program Files\HP\hpcoretech\hpcmpmgr.exe"
O4 - HKCU\..\Run: [dla] C:\WINDOWS\system32\dla\tfswctrl.exe
O4 - HKCU\..\Run: [Windows Defender] "C:\Program Files\Windows Defender\MSASCui.exe" -hide
O4 - HKCU\..\Run: [AOL Spyware Protection] "C:\PROGRA~1\COMMON~1\AOL\AOLSPY~1\AOLSP Scheduler.exe"
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [UpdateManager] "C:\Program Files\Common Files\Sonic\Update Manager\sgtray.exe" /r
O4 - HKCU\..\Run: [HostManager] "C:\Program Files\Common Files\AOL\1107318706\ee\AOLSoftware.exe"
O4 - HKCU\..\Run: [ATIPTA] "C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe"
O4 - HKCU\..\Run: [Arovax Shield] "C:\Program Files\Arovax Shield\ArovaxShield.exe" -tray
O4 - HKCU\..\Run: [ASM] "C:\Program Files\AOL\Active Security Monitor\ASMonitor.exe" HIDEMAIN
O4 - HKCU\..\Run: [AOL Fast Start] "C:\Program Files\AOL 9.0\AOL.EXE" -b
O4 - Startup: WordWeb.lnk = C:\Program Files\WordWeb\wweb32.exe
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
O4 - Global Startup: HP Photosmart Premier Fast Start.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqthb08.exe
O8 - Extra context menu item: Crawler Search - tbr:iemenu
O10 - Unknown file in Winsock LSP: C:\WINDOWS\system32\mswsock.dll
O10 - Unknown file in Winsock LSP: C:\WINDOWS\system32\winrnr.dll
O10 - Unknown file in Winsock LSP: C:\WINDOWS\system32\mswsock.dll
O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) - http://acs.pandasoftware.com/activescan/as5free/asinst.cab
O17 - HKLM\SYSTEM\CCS\Services\Tcpip\..\{680BF26E-92AF-4952-B122-DEC0EF62D921}: NameServer = 208.67.220.220,208.67.222.222
O17 - HKLM\SYSTEM\CCS\Services\Tcpip\..\{B4C0D388-B5D2-446A-B072-49F6F3A9041A}: NameServer = 85.255.116.83,85.255.112.236
O17 - HKLM\SYSTEM\CS1\Services\Tcpip\Parameters: NameServer = 208.67.220.220,208.67.222.222
O17 - HKLM\SYSTEM\CS2\Services\Tcpip\Parameters: NameServer = 208.67.220.220,208.67.222.222
O17 - HKLM\SYSTEM\CCS\Services\Tcpip\Parameters: NameServer = 208.67.220.220,208.67.222.222
O18 - Protocol: belarc - {6318E0AB-2E93-11D1-B8ED-00608CC9A71F} - C:\Program Files\Belarc\Advisor\System\BAVoilaX.dll
O18 - Protocol: bw+0 - {f18f570e-d6f3-4dd3-bf01-7306bdd4efec} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw+0s - {f18f570e-d6f3-4dd3-bf01-7306bdd4efec} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0 - {f18f570e-d6f3-4dd3-bf01-7306bdd4efec} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0s - {f18f570e-d6f3-4dd3-bf01-7306bdd4efec} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00 - {f18f570e-d6f3-4dd3-bf01-7306bdd4efec} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00s - {f18f570e-d6f3-4dd3-bf01-7306bdd4efec} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10 - {f18f570e-d6f3-4dd3-bf01-7306bdd4efec} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10s - {f18f570e-d6f3-4dd3-bf01-7306bdd4efec} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20 - {f18f570e-d6f3-4dd3-bf01-7306bdd4efec} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20s - {f18f570e-d6f3-4dd3-bf01-7306bdd4efec} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30 - {f18f570e-d6f3-4dd3-bf01-7306bdd4efec} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30s - {f18f570e-d6f3-4dd3-bf01-7306bdd4efec} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40 - {f18f570e-d6f3-4dd3-bf01-7306bdd4efec} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40s - {f18f570e-d6f3-4dd3-bf01-7306bdd4efec} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50 - {f18f570e-d6f3-4dd3-bf01-7306bdd4efec} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50s - {f18f570e-d6f3-4dd3-bf01-7306bdd4efec} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60 - {f18f570e-d6f3-4dd3-bf01-7306bdd4efec} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60s - {f18f570e-d6f3-4dd3-bf01-7306bdd4efec} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70 - {f18f570e-d6f3-4dd3-bf01-7306bdd4efec} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70s - {f18f570e-d6f3-4dd3-bf01-7306bdd4efec} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80 - {f18f570e-d6f3-4dd3-bf01-7306bdd4efec} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80s - {f18f570e-d6f3-4dd3-bf01-7306bdd4efec} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90 - {f18f570e-d6f3-4dd3-bf01-7306bdd4efec} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90s - {f18f570e-d6f3-4dd3-bf01-7306bdd4efec} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0 - {f18f570e-d6f3-4dd3-bf01-7306bdd4efec} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0s - {f18f570e-d6f3-4dd3-bf01-7306bdd4efec} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0 - {f18f570e-d6f3-4dd3-bf01-7306bdd4efec} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0s - {f18f570e-d6f3-4dd3-bf01-7306bdd4efec} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0 - {f18f570e-d6f3-4dd3-bf01-7306bdd4efec} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0s - {f18f570e-d6f3-4dd3-bf01-7306bdd4efec} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0 - {f18f570e-d6f3-4dd3-bf01-7306bdd4efec} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0s - {f18f570e-d6f3-4dd3-bf01-7306bdd4efec} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0 - {f18f570e-d6f3-4dd3-bf01-7306bdd4efec} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0s - {f18f570e-d6f3-4dd3-bf01-7306bdd4efec} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0 - {f18f570e-d6f3-4dd3-bf01-7306bdd4efec} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0s - {f18f570e-d6f3-4dd3-bf01-7306bdd4efec} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O18 - Protocol: bwg0 - {f18f570e-d6f3-4dd3-bf01-7306bdd4efec} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwg0s - {f18f570e-d6f3-4dd3-bf01-7306bdd4efec} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0 - {f18f570e-d6f3-4dd3-bf01-7306bdd4efec} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0s - {f18f570e-d6f3-4dd3-bf01-7306bdd4efec} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0 - {f18f570e-d6f3-4dd3-bf01-7306bdd4efec} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0s - {f18f570e-d6f3-4dd3-bf01-7306bdd4efec} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0 - {f18f570e-d6f3-4dd3-bf01-7306bdd4efec} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0s - {f18f570e-d6f3-4dd3-bf01-7306bdd4efec} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0 - {f18f570e-d6f3-4dd3-bf01-7306bdd4efec} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0s - {f18f570e-d6f3-4dd3-bf01-7306bdd4efec} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0 - {f18f570e-d6f3-4dd3-bf01-7306bdd4efec} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0s - {f18f570e-d6f3-4dd3-bf01-7306bdd4efec} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0 - {f18f570e-d6f3-4dd3-bf01-7306bdd4efec} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0s - {f18f570e-d6f3-4dd3-bf01-7306bdd4efec} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0 - {f18f570e-d6f3-4dd3-bf01-7306bdd4efec} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0s - {f18f570e-d6f3-4dd3-bf01-7306bdd4efec} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0 - {f18f570e-d6f3-4dd3-bf01-7306bdd4efec} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0s - {f18f570e-d6f3-4dd3-bf01-7306bdd4efec} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0 - {f18f570e-d6f3-4dd3-bf01-7306bdd4efec} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0s - {f18f570e-d6f3-4dd3-bf01-7306bdd4efec} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0 - {f18f570e-d6f3-4dd3-bf01-7306bdd4efec} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0s - {f18f570e-d6f3-4dd3-bf01-7306bdd4efec} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0 - {f18f570e-d6f3-4dd3-bf01-7306bdd4efec} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0s - {f18f570e-d6f3-4dd3-bf01-7306bdd4efec} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0 - {f18f570e-d6f3-4dd3-bf01-7306bdd4efec} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0s - {f18f570e-d6f3-4dd3-bf01-7306bdd4efec} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0 - {f18f570e-d6f3-4dd3-bf01-7306bdd4efec} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0s - {f18f570e-d6f3-4dd3-bf01-7306bdd4efec} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0 - {f18f570e-d6f3-4dd3-bf01-7306bdd4efec} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0s - {f18f570e-d6f3-4dd3-bf01-7306bdd4efec} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0 - {f18f570e-d6f3-4dd3-bf01-7306bdd4efec} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0s - {f18f570e-d6f3-4dd3-bf01-7306bdd4efec} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0 - {f18f570e-d6f3-4dd3-bf01-7306bdd4efec} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0s - {f18f570e-d6f3-4dd3-bf01-7306bdd4efec} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0 - {f18f570e-d6f3-4dd3-bf01-7306bdd4efec} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0s - {f18f570e-d6f3-4dd3-bf01-7306bdd4efec} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0 - {f18f570e-d6f3-4dd3-bf01-7306bdd4efec} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0s - {f18f570e-d6f3-4dd3-bf01-7306bdd4efec} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0 - {f18f570e-d6f3-4dd3-bf01-7306bdd4efec} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0s - {f18f570e-d6f3-4dd3-bf01-7306bdd4efec} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: cetihpz - {CF184AD3-CDCB-4168-A3F7-8E447D129300} - C:\Program Files\HP\hpcoretech\comp\hpuiprot.dll
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\MSN Messenger\msgrapp.8.1.0178.00.dll
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\MSN Messenger\msgrapp.8.1.0178.00.dll
O18 - Protocol: mso-offdap11 - {32505114-5902-49B2-880A-1F7738E5A384} - C:\Program Files\Common Files\Microsoft Shared\Web Components\11\OWC11.DLL
O18 - Protocol: offline-8876480 - {F18F570E-D6F3-4DD3-BF01-7306BDD4EFEC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: tbr - {4D25FB7A-8902-4291-960E-9ADA051CFBBF} - C:\Program Files\Crawler\Toolbar\ctbr.dll
O18 - Filter: text/xml - {807553E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE11\MSOXMLMF.DLL
O20 - Winlogon Notify: !SASWinLogon - C:\Program Files\SUPERAntiSpyware\SASWINLO.DLL
O20 - Winlogon Notify: crypt32chain - C:\WINDOWS\system32\crypt32.dll
O20 - Winlogon Notify: cryptnet - C:\WINDOWS\system32\cryptnet.dll
O20 - Winlogon Notify: cscdll - C:\WINDOWS\system32\cscdll.dll
O20 - Winlogon Notify: ScCertProp - C:\WINDOWS\system32\wlnotify.dll
O20 - Winlogon Notify: Schedule - C:\WINDOWS\system32\wlnotify.dll
O20 - Winlogon Notify: sclgntfy - C:\WINDOWS\system32\sclgntfy.dll
O20 - Winlogon Notify: SensLogn - C:\WINDOWS\system32\WlNotify.dll
O20 - Winlogon Notify: termsrv - C:\WINDOWS\system32\wlnotify.dll
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\system32\WgaLogon.dll
O20 - Winlogon Notify: wlballoon - C:\WINDOWS\system32\wlnotify.dll
O21 - SSODL: PostBootReminder - {7849596a-48ea-486e-8937-a2a3009f31a9} - C:\WINDOWS\system32\shell32.dll
O21 - SSODL: CDBurn - {fbeb8a05-beee-4442-804e-409d6c4515e9} - C:\WINDOWS\system32\shell32.dll
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - C:\WINDOWS\system32\webcheck.dll
O21 - SSODL: SysTray - {35CEC8A3-2BE6-11D2-8773-92E220524153} - C:\WINDOWS\system32\stobject.dll
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: Ad-Aware 2007 Service (aawservice) - Lavasoft AB - "C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe"
O23 - Service: AOL Connectivity Service (AOL ACS) - AOL LLC - "C:\Program Files\Common Files\AOL\ACS\AOLAcsd.exe"
O23 - Service: AOL TopSpeed Monitor (AOL TopSpeedMonitor) - America Online, Inc - C:\Program Files\Common Files\AOL\TopSpeed\2.0\aoltsmon.exe
O23 - Service: AOL Antivirus Update Service (aolavupd) - AOL LLC - "C:\Program Files\Common Files\AOL\1107318706\ee\services\safetyCore\ver210_5_4_1\aolavupd.exe"
O23 - Service: AOL Spyware Protection Service (AOLService) - Unknown owner - C:\PROGRA~1\COMMON~1\AOL\AOLSPY~1\\aolserv.exe
O23 - Service: Ati HotKey Poller - Unknown owner - C:\WINDOWS\system32\ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: Logical Disk Manager Administrative Service (dmadmin) - Microsoft Corp., Veritas Software - C:\WINDOWS\System32\dmadmin.exe /com
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - "C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe"
O23 - Service: CA Pest Patrol Realtime Protection Service (ITMRTSVC) - CA, Inc. - "C:\Program Files\CA\PPRT\bin\ITMRTSVC.exe"
O23 - Service: McAfee McShield (McShield) - McAfee Inc. - C:\Program Files\mcafee.com\antivirus\McShield.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
O23 - Service: spkrmon - Unknown owner - C:\Program Files\Analog Devices\SoundMAX\spkrmon.exe
O23 - Service: Spyware Terminator Clam Service (sp_clamsrv) - Crawler.com - "C:\Program Files\WinClamAVShield\sp_clamsrv.exe"
O23 - Service: Spyware Terminator Realtime Shield Service (sp_rssrv) - Crawler.com - "C:\Program Files\Spyware Terminator\sp_rsser.exe"
O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - C:\WINDOWS\system32\ZoneLabs\vsmon.exe -service



-- File Associations -----------------------------------------------------------

.js - JSFile - shell\open\command - %SystemRoot%\System32\CScript.exe "%1" %*
.vbs - VBSFile - shell\open\command - %SystemRoot%\System32\CScript.exe "%1" %*


-- Drivers: 0-Boot, 1-System, 2-Auto, 3-Demand, 4-Disabled ---------------------

R1 AFS2K - c:\windows\system32\drivers\afs2k.sys <Not Verified; Oak Technology Inc.; AFS>
R1 BANTExt (Belarc SMBios Access) - c:\windows\system32\drivers\bantext.sys
R1 OMCI - c:\windows\system32\drivers\omci.sys <Not Verified; Dell Computer Corporation; OMCI Driver>
R1 SASDIFSV - c:\program files\superantispyware\sasdifsv.sys
R1 SASKUTIL - c:\program files\superantispyware\saskutil.sys
R1 sp_rsdrv2 (Spyware Terminator Driver 2) - c:\windows\system32\drivers\sp_rsdrv2.sys
R2 mdmxsdk - c:\windows\system32\drivers\mdmxsdk.sys <Not Verified; Conexant; Diagnostic Interface>
R3 aeaudio - c:\windows\system32\drivers\aeaudio.sys <Not Verified; Andrea Electronics Corporation; Andrea Audio Driver>
R3 EntDrv51 - c:\windows\system32\drivers\entdrv51.sys <Not Verified; Network Associates, Inc; Virus Scan Enterprise, Entercept>
R3 HSF_DP - c:\windows\system32\drivers\hsf_dp.sys <Not Verified; Conexant Systems, Inc.; SoftK56 Modem Driver>
R3 HSFHWBS2 - c:\windows\system32\drivers\hsfhwbs2.sys <Not Verified; Conexant Systems, Inc.; SoftK56 Modem Driver>
R3 MODEMCSA (Unimodem Streaming Filter Device) - c:\windows\system32\drivers\modemcsa.sys <Not Verified; Microsoft Corporation; Microsoft® Windows® Operating System>
R3 NaiAvFilter1 - c:\windows\system32\drivers\naiavf5x.sys <Not Verified; McAfee Inc.; VirusScan>
R3 smwdm - c:\windows\system32\drivers\smwdm.sys <Not Verified; Analog Devices, Inc.; SoundMAX Digital Audio Driver>
R3 wanatw (WAN Miniport (ATW)) - c:\windows\system32\drivers\wanatw4.sys <Not Verified; America Online, Inc.; Wan Miniport (ATW)>
R3 winachsf - c:\windows\system32\drivers\hsf_cnxt.sys <Not Verified; Conexant Systems, Inc.; SoftK56 Modem Driver>

S3 bvrp_pci - c:\windows\system32\drivers\bvrp_pci.sys
S3 CO_Mon - c:\windows\system32\drivers\co_mon.sys
S3 SABProcEnum - c:\progra~1\mozill~1\sabprocenum.sys (file missing)
S3 SASENUM - c:\program files\superantispyware\sasenum.sys <Not Verified; SuperAdBlocker, Inc.; SuperAntiSpyware>


-- Services: 0-Boot, 1-System, 2-Auto, 3-Demand, 4-Disabled --------------------

R2 aawservice (Ad-Aware 2007 Service) - "c:\program files\lavasoft\ad-aware 2007\aawservice.exe" <Not Verified; Lavasoft AB; Ad-Aware 2007 Service>
R2 aolavupd (AOL Antivirus Update Service) - "c:\program files\common files\aol\1107318706\ee\services\safetycore\ver210_5_4_1\aolavupd.exe" <Not Verified; AOL LLC; AOL Safety and Security Center>
R2 ITMRTSVC (CA Pest Patrol Realtime Protection Service) - "c:\program files\ca\pprt\bin\itmrtsvc.exe" <Not Verified; CA, Inc.; eTrust PestPatrol Realtime Protection>
R2 sp_rssrv (Spyware Terminator Realtime Shield Service) - "c:\program files\spyware terminator\sp_rsser.exe" <Not Verified; Crawler.com; Crawler Spyware Terminator>
R2 spkrmon - c:\program files\analog devices\soundmax\spkrmon.exe <Not Verified; ; spkrmon Module>

S2 AOLService (AOL Spyware Protection Service) - c:\progra~1\common~1\aol\aolspy~1\\aolserv.exe
S3 sp_clamsrv (Spyware Terminator Clam Service) - "c:\program files\winclamavshield\sp_clamsrv.exe" <Not Verified; Crawler.com; Spyware Terminator>


-- Device Manager: Disabled ----------------------------------------------------

No disabled devices found.


-- Scheduled Tasks -------------------------------------------------------------

2007-08-26 20:41:06 330 --ah----- C:\WINDOWS\Tasks\MP Scheduled Scan.job
2007-08-25 23:57:00 266 --a------ C:\WINDOWS\Tasks\Uniblue SpeedUpMyPC Nag.job
2007-08-24 11:58:01 284 --a------ C:\WINDOWS\Tasks\AppleSoftwareUpdate.job
2007-08-18 20:08:06 340 --a------ C:\WINDOWS\Tasks\HP DArC Task #Hewlett-Packard#hp psc 1300 series#1145412326.job
2007-08-10 09:38:06 340 --a------ C:\WINDOWS\Tasks\HP DArC Task #Hewlett-Packard#hp psc 1300 series#1157902469.job
2007-07-28 15:29:07 340 --a------ C:\WINDOWS\Tasks\HP DArC Task #Hewlett-Packard#hp psc 1300 series#1141165644.job
2007-07-27 23:46:07 340 --a------ C:\WINDOWS\Tasks\HP DArC Task #Hewlett-Packard#hp psc 1300 series#1141109097.job
2007-07-26 23:57:06 388 --a------ C:\WINDOWS\Tasks\Uniblue SpeedUpMyPC.job
2007-07-05 18:26:06 340 --a------ C:\WINDOWS\Tasks\HP DArC Task #Hewlett-Packard#hp psc 1300 series#1125959049.job


-- Files created between 2007-07-26 and 2007-08-26 -----------------------------

2007-08-26 21:00:58 0 d-------- C:\Program Files\Trend Micro
2007-08-26 20:02:13 0 d-------- C:\Program Files\Crawler
2007-08-26 13:58:41 164 --a------ C:\install.dat
2007-08-26 12:02:40 0 dr-h----- C:\Documents and Settings\Jon\Recent
2007-08-26 10:38:06 0 d-------- C:\ie-spyad_zo
2007-08-26 09:35:22 0 d-------- C:\WINDOWS\system32\ActiveScan
2007-08-22 21:17:21 0 d-------- C:\Program Files\history sweeper
2007-08-21 21:19:28 0 d-------- C:\DECCHECK
2007-08-21 21:11:23 278528 --a------ C:\WINDOWS\system32\livesnth.dll <Not Verified; LiveUpdate; LiveSynth>
2007-08-21 21:11:22 203776 --a------ C:\WINDOWS\system32\clrviddc.dll <Not Verified; Iterated Systems, Inc.; ClearVideo Decoder DLL>
2007-08-20 21:32:26 0 d-------- C:\Documents and Settings\Administrator\Application Data\AOL
2007-08-20 18:56:48 0 d-------- C:\Program Files\Enigma Software Group
2007-08-19 16:53:39 0 d-------- C:\Program Files\a-squared Free
2007-08-19 16:09:36 0 d-------- C:\Documents and Settings\All Users\Application Data\Lavasoft
2007-08-15 22:16:24 0 d-------- C:\Start Menu
2007-08-15 22:16:23 0 d-------- C:\Program Files\MTV Networks
2007-08-15 18:50:56 0 d-------- C:\Program Files\Windows Live Safety Center
2007-08-15 06:23:53 0 d-------- C:\Program Files\PCPitstop
2007-08-12 22:53:19 0 d-------- C:\Documents and Settings\All Users\Application Data\Arovax
2007-08-05 23:14:05 271224 --a------ C:\WINDOWS\system32\mucltui.dll <Not Verified; Microsoft Corporation; Microsoft® Windows® Operating System>
2007-07-26 23:57:14 0 d-------- C:\Documents and Settings\Jon\Application Data\Uniblue


-- Find3M Report ---------------------------------------------------------------

2007-08-26 20:13:34 0 d-------- C:\Program Files\Spyware Terminator
2007-08-26 20:11:06 0 d-------- C:\Documents and Settings\Jon\Application Data\Spyware Terminator
2007-08-26 11:21:27 0 d-------- C:\Program Files\SpywareBlaster
2007-08-26 10:02:53 0 d-------- C:\Program Files\WordWeb
2007-08-26 10:02:49 0 d-------- C:\Program Files\Windows Defender
2007-08-26 10:02:44 0 d-------- C:\Program Files\SUPERAntiSpyware
2007-08-26 10:01:43 0 d-------- C:\Program Files\MSN Messenger
2007-08-26 10:00:59 0 d-------- C:\Program Files\Messenger
2007-08-26 09:56:47 0 d-------- C:\Program Files\Common Files\Scanner
2007-08-26 09:55:02 0 d-------- C:\Program Files\AOL 9.0
2007-08-26 09:54:40 0 d-------- C:\Program Files\America Online 8.0
2007-08-26 09:29:54 0 d-------- C:\Program Files\MySpeed PC
2007-08-26 06:33:23 0 d-------- C:\Program Files\WinClamAVShield
2007-08-22 21:26:21 0 d-------- C:\Program Files\Arovax AntiSpyware
2007-08-22 21:20:37 0 d-------- C:\Program Files\Wise Registry Cleaner
2007-08-21 21:02:09 0 d-------- C:\Program Files\Common Files\Real
2007-08-19 16:09:37 0 d-------- C:\Program Files\Lavasoft
2007-08-19 16:08:51 0 d-------- C:\Program Files\Common Files\Wise Installation Wizard
2007-08-12 22:53:32 0 d-------- C:\Program Files\Arovax Shield
2007-08-04 08:40:08 0 d-------- C:\Program Files\QuickTime
2007-08-02 08:11:45 0 d-------- C:\Program Files\Java
2007-07-30 19:19:42 1712984 --a------ C:\WINDOWS\system32\wuaueng.dll <Not Verified; Microsoft Corporation; Microsoft® Windows® Operating System>
2007-07-30 19:19:36 549720 --a------ C:\WINDOWS\system32\wuapi.dll <Not Verified; Microsoft Corporation; Microsoft® Windows® Operating System>
2007-07-30 19:19:32 325976 --a------ C:\WINDOWS\system32\wucltui.dll <Not Verified; Microsoft Corporation; Microsoft® Windows® Operating System>
2007-07-30 19:19:28 203096 --a------ C:\WINDOWS\system32\wuweb.dll <Not Verified; Microsoft Corporation; Microsoft® Windows® Operating System>
2007-07-30 19:19:20 92504 --a------ C:\WINDOWS\system32\cdm.dll <Not Verified; Microsoft Corporation; Microsoft® Windows® Operating System>
2007-07-30 19:19:16 53080 --a------ C:\WINDOWS\system32\wuauclt.exe <Not Verified; Microsoft Corporation; Microsoft® Windows® Operating System>
2007-07-30 19:19:12 43352 --a------ C:\WINDOWS\system32\wups2.dll <Not Verified; Microsoft Corporation; Microsoft® Windows® Operating System>
2007-07-30 19:19:04 207736 --a------ C:\WINDOWS\system32\muweb.dll <Not Verified; Microsoft Corporation; Microsoft® Windows® Operating System>
2007-07-30 19:18:40 33624 --a------ C:\WINDOWS\system32\wups.dll <Not Verified; Microsoft Corporation; Microsoft® Windows® Operating System>
2007-07-29 21:26:29 0 d-------- C:\Program Files\Common Files\aolshare
2007-07-25 08:35:25 0 d--h----- C:\Program Files\InstallShield Installation Information
2007-07-22 13:16:13 0 d-------- C:\Program Files\Common Files
2007-07-15 1107 0 d-------- C:\Program Files\Apple Software Update
2007-07-13 23:30:28 0 d-------- C:\Program Files\America Online 9(2).0a
2007-07-13 23:30:22 0 d-------- C:\Program Files\HP
2007-07-13 23:30:22 0 d-------- C:\Program Files\Eusing Free Registry Cleaner
2007-07-13 23:30:21 0 d-------- C:\Program Files\OfficeUpdate11
2007-07-13 23:30:21 0 d-------- C:\Program Files\Microsoft AntiSpyware
2007-07-13 23:30:20 0 d-------- C:\Program Files\Webshots
2007-07-13 23:30:20 0 d-------- C:\Program Files\TrueSwitchSuddenlink
2007-07-13 23:30:20 0 d-------- C:\Program Files\TrueSwitch
2007-07-13 23:30:20 0 d-------- C:\Program Files\SiteAdvisor
2007-07-13 22:36:56 0 d-------- C:\Program Files\NKProds
2007-07-06 15:07:45 0 d-------- C:\Program Files\Greetings Workshop
2007-07-05 23:08:55 0 d-------- C:\Documents and Settings\Jon\Application Data\Real
2007-07-05 23:07:31 0 d-------- C:\Program Files\Common Files\xing shared
2007-06-26 00:08:16 1104896 --a------ C:\WINDOWS\system32\msxml3.dll <Not Verified; Microsoft Corporation; Microsoft(R) MSXML 3.0 SP9>
2007-06-19 07:31:19 282112 --a------ C:\WINDOWS\system32\gdi32.dll <Not Verified; Microsoft Corporation; Microsoft® Windows® Operating System>
2007-06-13 04:23:07 1033216 --a------ C:\WINDOWS\explorer.exe <Not Verified; Microsoft Corporation; Microsoft® Windows® Operating System>


-- Registry Dump ---------------------------------------------------------------

*Note* empty entries & legit default entries are not shown


[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SpywareTerminator"="C:\Program Files\Spyware Terminator\SpywareTerminatorShield.exe" [08/26/2007 08:09 PM]
"QuickTime Task"="C:\Program Files\QuickTime\QTTask.exe" [06/29/2007 06:24 AM]
"HostManager"="C:\Program Files\Common Files\AOL\1107318706\ee\AOLSoftware.exe" [09/25/2006 06:52 PM]
"SunJavaUpdateSched"="C:\Program Files\Java\jre1.6.0_02\bin\jusched.exe" [07/12/2007 04:00 AM]
"ISUSPM Startup"="C:\PROGRA~1\COMMON~1\INSTAL~1\UPDATE~1\ISUSPM.exe" [06/16/2004 05:03 AM]
"HP Software Update"="C:\Program Files\HP\HP Software Update\HPWuSchd2.exe" [02/19/2006 02:41 AM]
"KernelFaultCheck"="C:\WINDOWS\system32\dumprep 0 -k" []
"AOLSPScheduler"="C:\Program Files\Common Files\AOL\1107318706\ee\services\safetyCore\ver210_5_4_1\AOLSP Scheduler.exe" [01/25/2007 03:34 PM]
"sscRun"="C:\Program Files\Common Files\AOL\1107318706\ee\SSCRun.exe" [01/25/2007 03:34 PM]
"OASClnt"="C:\Program Files\mcafee.com\antivirus\oasclnt.exe" [07/28/2006 11:43 AM]
"EmailScan"="C:\Program Files\mcafee.com\antivirus\mcvsescn.exe" [07/28/2006 11:43 AM]
"ZoneAlarm Client"="C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe" [03/09/2007 12:02 AM]
"Adobe Reader Speed Launcher"="C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe" [05/11/2007 03:06 AM]

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ctfmon.exe"="C:\WINDOWS\system32\ctfmon.exe" [08/04/2004 01:56 AM]
"SunJavaUpdateSched"="C:\Program Files\Java\jre1.5.0_10\bin\jusched.exe" [11/09/2006 04:07 PM]
"HP Component Manager"="C:\Program Files\HP\hpcoretech\hpcmpmgr.exe" [06/26/2003 04:50 PM]
"dla"="C:\WINDOWS\system32\dla\tfswctrl.exe" [03/15/2004 01:04 AM]
"Windows Defender"="C:\Program Files\Windows Defender\MSASCui.exe" [11/03/2006 07:20 PM]
"AOL Spyware Protection"="C:\PROGRA~1\COMMON~1\AOL\AOLSPY~1\AOLSP Scheduler.exe" [04/11/2005 08:36 AM]
"MSMSGS"="C:\Program Files\Messenger\msmsgs.exe" [10/13/2004 10:24 AM]
"UpdateManager"="C:\Program Files\Common Files\Sonic\Update Manager\sgtray.exe" [08/19/2003 01:01 AM]
"HostManager"="C:\Program Files\Common Files\AOL\1107318706\ee\AOLSoftware.exe" [09/25/2006 06:52 PM]
"ATIPTA"="C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe" [05/25/2004 09:35 PM]
"Arovax Shield"="C:\Program Files\Arovax Shield\ArovaxShield.exe" [06/10/2006 04:54 AM]
"ASM"="C:\Program Files\AOL\Active Security Monitor\ASMonitor.exe" [11/07/2006 04:11 PM]
"AOL Fast Start"="C:\Program Files\AOL 9.0\AOL.exe" [04/18/2007 12:49 AM]

C:\Documents and Settings\Jon\Start Menu\Programs\Startup\
WordWeb.lnk - C:\Program Files\WordWeb\wweb32.exe [3/31/2007 11:08:01 PM]

C:\Documents and Settings\All Users\Start Menu\Programs\Startup\
HP Digital Imaging Monitor.lnk - C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe [2/19/2006 4:21:22 AM]
HP Photosmart Premier Fast Start.lnk - C:\Program Files\HP\Digital Imaging\bin\hpqthb08.exe [2/10/2006 7:56:20 AM]

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer]
"NoRecentDocsHistory"=0 (0x0)
"NoInstrumentation"=0 (0x0)

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA}"= C:\Program Files\SUPERAntiSpyware\SASSEH.DLL [01/21/2007 11:36 PM 77824]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon]
"System"="kdpvb.exe"

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\!SASWinLogon]
C:\Program Files\SUPERAntiSpyware\SASWINLO.DLL 05/02/2007 08:53 PM 294912 C:\Program Files\SUPERAntiSpyware\SASWINLO.DLL

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
"Notification Packages"= :\WINDOWS\syste

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aawservice]
@="Service"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\vds]
@="Service"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{533C5B84-EC70-11D2-9505-00C04F79DEAF}]
@="Volume shadow copy"

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^HP Digital Imaging Monitor.lnk]
backup=C:\WINDOWS\pss\HP Digital Imaging Monitor.lnkCommon Startup

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^NkvMon.exe.lnk]
backup=C:\WINDOWS\pss\NkvMon.exe.lnkCommon Startup

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^Jon^Start Menu^Programs^Startup^Greetings Workshop Reminders.lnk]
backup=C:\WINDOWS\pss\Greetings Workshop Reminders.lnkStartup

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LDM]
C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Load]
???
?

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RealTray]
C:\Program Files\Real\RealPlayer\RealPlay.exe SYSTEMBOOTHIDEPLAYER

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Run]
???
?

*Newly Created Service* - ENTDRV51



-- End of Deckard's System Scanner: finished at 2007-08-26 21:05:59 ------------

Incident Status Location
Teach in Clovis is offline  
Digg this Post!Add Post to del.icio.usBookmark Post in TechnoratiFurl this Post!Reddit!
Old 08-26-2007, 09:38 PM   #9 (permalink)
Registered User
 
Join Date: Aug 2007
Posts: 14
OS: Win XP


Re: Unable to post info concerning browser hijacker
Second reply also was too long....Panda scan broken down into two replies, first half of scan and second half of scan.

Incident Status Location

Spyware:Cookie/Com.com Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-100.txt[.com.com/]
Spyware:Cookie/Go Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-100.txt[.go.com/]
Spyware:Cookie/Com.com Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-101.txt[.com.com/]
Spyware:Cookie/Serving-sys Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-101.txt[.serving-sys.com/]
Spyware:Cookie/Serving-sys Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-101.txt[.bs.serving-sys.com/]
Spyware:Cookie/Serving-sys Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-101.txt[.serving-sys.com/]
Spyware:Cookie/Go Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-101.txt[.go.com/]
Spyware:Cookie/Go Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-102.txt[.go.com/]
Spyware:Cookie/YieldManager Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-102.txt[ad.yieldmanager.com/]
Spyware:Cookie/Com.com Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-102.txt[.com.com/]
Spyware:Cookie/BurstBeacon Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-102.txt[www.burstbeacon.com/]
Spyware:Cookie/Com.com Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-103.txt[.com.com/]
Spyware:Cookie/Serving-sys Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-103.txt[.serving-sys.com/]
Spyware:Cookie/Serving-sys Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-103.txt[.bs.serving-sys.com/]
Spyware:Cookie/Go Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-103.txt[.go.com/]
Spyware:Cookie/YieldManager Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-103.txt[ad.yieldmanager.com/]
Spyware:Cookie/Com.com Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-104.txt[.com.com/]
Spyware:Cookie/Serving-sys Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-104.txt[.serving-sys.com/]
Spyware:Cookie/Serving-sys Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-104.txt[.bs.serving-sys.com/]
Spyware:Cookie/Go Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-104.txt[.go.com/]
Spyware:Cookie/YieldManager Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-104.txt[ad.yieldmanager.com/]
Spyware:Cookie/Go Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-105.txt[.go.com/]
Spyware:Cookie/Com.com Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-105.txt[.com.com/]
Spyware:Cookie/Serving-sys Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-105.txt[.serving-sys.com/]
Spyware:Cookie/Serving-sys Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-105.txt[.bs.serving-sys.com/]
Spyware:Cookie/YieldManager Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-105.txt[ad.yieldmanager.com/]
Spyware:Cookie/YieldManager Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-106.txt[ad.yieldmanager.com/]
Spyware:Cookie/Adrevolver Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-106.txt[.adrevolver.com/]
Spyware:Cookie/YieldManager Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-106.txt[ad.yieldmanager.com/]
Spyware:Cookie/Go Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-106.txt[.go.com/]
Spyware:Cookie/Com.com Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-106.txt[.com.com/]
Spyware:Cookie/Serving-sys Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-106.txt[.serving-sys.com/]
Spyware:Cookie/Serving-sys Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-106.txt[.bs.serving-sys.com/]
Spyware:Cookie/Go Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-15.txt[.go.com/]
Spyware:Cookie/did-it Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-19.txt[.did-it.com/]
Spyware:Cookie/Go Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-2.txt[.go.com/]
Spyware:Cookie/Go Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-20.txt[.go.com/]
Spyware:Cookie/Go Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-23.txt[.go.com/]
Spyware:Cookie/YieldManager Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-23.txt[ad.yieldmanager.com/]
Spyware:Cookie/Com.com Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-23.txt[.com.com/]
Spyware:Cookie/Adrevolver Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-23.txt[.adrevolver.com/]
Spyware:Cookie/Statcounter Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-23.txt[.statcounter.com/]
Spyware:Cookie/Adrevolver Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-24.txt[.adrevolver.com/]
Spyware:Cookie/Go Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-24.txt[.go.com/]
Spyware:Cookie/YieldManager Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-24.txt[ad.yieldmanager.com/]
Spyware:Cookie/did-it Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-24.txt[.did-it.com/]
Spyware:Cookie/Serving-sys Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-24.txt[.bs.serving-sys.com/]
Spyware:Cookie/Serving-sys Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-24.txt[.serving-sys.com/]
Spyware:Cookie/Go Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-25.txt[.go.com/]
Spyware:Cookie/Adrevolver Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-25.txt[.adrevolver.com/]
Spyware:Cookie/YieldManager Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-25.txt[ad.yieldmanager.com/]
Spyware:Cookie/did-it Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-25.txt[.did-it.com/]
Spyware:Cookie/Serving-sys Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-25.txt[.bs.serving-sys.com/]
Spyware:Cookie/Serving-sys Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-25.txt[.serving-sys.com/]
Spyware:Cookie/YieldManager Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-26.txt[ad.yieldmanager.com/]
Spyware:Cookie/Go Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-26.txt[.go.com/]
Spyware:Cookie/Serving-sys Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-26.txt[.serving-sys.com/]
Spyware:Cookie/Serving-sys Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-26.txt[.bs.serving-sys.com/]
Spyware:Cookie/Serving-sys Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-26.txt[.serving-sys.com/]
Spyware:Cookie/YieldManager Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-27.txt[ad.yieldmanager.com/]
Spyware:Cookie/Go Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-27.txt[.go.com/]
Spyware:Cookie/Go Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-28.txt[.go.com/]
Spyware:Cookie/YieldManager Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-28.txt[ad.yieldmanager.com/]
Spyware:Cookie/YieldManager Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-29.txt[ad.yieldmanager.com/]
Spyware:Cookie/Adrevolver Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-29.txt[.adrevolver.com/]
Spyware:Cookie/Serving-sys Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-29.txt[.serving-sys.com/]
Spyware:Cookie/Serving-sys Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-29.txt[.bs.serving-sys.com/]
Spyware:Cookie/Serving-sys Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-29.txt[.serving-sys.com/]
Spyware:Cookie/Go Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-29.txt[.go.com/]
Spyware:Cookie/Go Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-30.txt[.go.com/]
Spyware:Cookie/Go Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-31.txt[.go.com/]
Spyware:Cookie/Statcounter Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-32.txt[.statcounter.com/]
Spyware:Cookie/YieldManager Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-32.txt[ad.yieldmanager.com/]
Spyware:Cookie/BurstBeacon Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-32.txt[www.burstbeacon.com/]
Spyware:Cookie/Statcounter Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-33.txt[.statcounter.com/]
Spyware:Cookie/YieldManager Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-33.txt[ad.yieldmanager.com/]
Spyware:Cookie/BurstBeacon Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-33.txt[www.burstbeacon.com/]
Spyware:Cookie/BurstBeacon Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-34.txt[www.burstbeacon.com/]
Spyware:Cookie/Serving-sys Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-34.txt[.serving-sys.com/]
Spyware:Cookie/Serving-sys Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-34.txt[.bs.serving-sys.com/]
Spyware:Cookie/Serving-sys Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-34.txt[.serving-sys.com/]
Spyware:Cookie/Adrevolver Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-34.txt[.adrevolver.com/]
Spyware:Cookie/Go Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-34.txt[.go.com/]
Spyware:Cookie/YieldManager Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-35.txt[ad.yieldmanager.com/]
Spyware:Cookie/Statcounter Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-35.txt[.statcounter.com/]
Spyware:Cookie/YieldManager Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-36.txt[ad.yieldmanager.com/]
Spyware:Cookie/Go Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-36.txt[.go.com/]
Spyware:Cookie/Apmebf Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-36.txt[.apmebf.com/]
Spyware:Cookie/Serving-sys Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-36.txt[.bs.serving-sys.com/]
Spyware:Cookie/Serving-sys Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-36.txt[.serving-sys.com/]
Spyware:Cookie/FortuneCity Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-36.txt[.fortunecity.com/]
Spyware:Cookie/Com.com Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-36.txt[.com.com/]
Spyware:Cookie/Statcounter Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-36.txt[.statcounter.com/]
Spyware:Cookie/Serving-sys Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-37.txt[.serving-sys.com/]
Spyware:Cookie/Serving-sys Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-37.txt[.bs.serving-sys.com/]
Spyware:Cookie/Serving-sys Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-37.txt[.serving-sys.com/]
Spyware:Cookie/YieldManager Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-37.txt[ad.yieldmanager.com/]
Spyware:Cookie/Go Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-37.txt[.go.com/]
Spyware:Cookie/Apmebf Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-37.txt[.apmebf.com/]
Spyware:Cookie/FortuneCity Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-37.txt[.fortunecity.com/]
Spyware:Cookie/Com.com Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-37.txt[.com.com/]
Spyware:Cookie/Statcounter Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-37.txt[.statcounter.com/]
Spyware:Cookie/Go Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-38.txt[.go.com/]
Spyware:Cookie/Go Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-39.txt[.go.com/]
Spyware:Cookie/Adrevolver Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-39.txt[.adrevolver.com/]
Spyware:Cookie/Go Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-40.txt[.go.com/]
Spyware:Cookie/Adrevolver Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-40.txt[.adrevolver.com/]
Spyware:Cookie/Go Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-41.txt[.go.com/]
Spyware:Cookie/Adrevolver Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-41.txt[.adrevolver.com/]
Spyware:Cookie/YieldManager Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-42.txt[ad.yieldmanager.com/]
Spyware:Cookie/Serving-sys Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-42.txt[.serving-sys.com/]
Spyware:Cookie/Serving-sys Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-42.txt[.bs.serving-sys.com/]
Spyware:Cookie/Serving-sys Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-42.txt[.serving-sys.com/]
Spyware:Cookie/Adrevolver Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-42.txt[.adrevolver.com/]
Spyware:Cookie/BurstBeacon Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-42.txt[www.burstbeacon.com/]
Spyware:Cookie/Statcounter Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-42.txt[.statcounter.com/]
Spyware:Cookie/Go Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-42.txt[.go.com/]
Spyware:Cookie/Serving-sys Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-43.txt[.serving-sys.com/]
Spyware:Cookie/Serving-sys Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-43.txt[.bs.serving-sys.com/]
Spyware:Cookie/Serving-sys Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-43.txt[.serving-sys.com/]
Spyware:Cookie/Go Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-43.txt[.go.com/]
Spyware:Cookie/WUpd Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-43.txt[.revenue.net/]
Spyware:Cookie/Searchportal Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-43.txt[searchportal.information.com/]
Spyware:Cookie/Serving-sys Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-44.txt[.serving-sys.com/]
Spyware:Cookie/Serving-sys Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-44.txt[.bs.serving-sys.com/]
Spyware:Cookie/Serving-sys Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-44.txt[.serving-sys.com/]
Spyware:Cookie/Go Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-44.txt[.go.com/]
Spyware:Cookie/WUpd Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-44.txt[.revenue.net/]
Spyware:Cookie/Searchportal Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-44.txt[searchportal.information.com/]
Spyware:Cookie/Serving-sys Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-45.txt[.serving-sys.com/]
Spyware:Cookie/Serving-sys Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-45.txt[.bs.serving-sys.com/]
Spyware:Cookie/Serving-sys Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-45.txt[.serving-sys.com/]
Spyware:Cookie/Go Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-45.txt[.go.com/]
Spyware:Cookie/WUpd Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-45.txt[.revenue.net/]
Spyware:Cookie/Searchportal Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-45.txt[searchportal.information.com/]
Spyware:Cookie/Go Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-46.txt[.go.com/]
Spyware:Cookie/Go Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-47.txt[.go.com/]
Spyware:Cookie/Serving-sys Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-47.txt[.serving-sys.com/]
Spyware:Cookie/Serving-sys Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-47.txt[.bs.serving-sys.com/]
Spyware:Cookie/Serving-sys Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-47.txt[.serving-sys.com/]
Spyware:Cookie/YieldManager Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-47.txt[ad.yieldmanager.com/]
Spyware:Cookie/Go Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-48.txt[.go.com/]
Spyware:Cookie/YieldManager Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-48.txt[ad.yieldmanager.com/]
Spyware:Cookie/Statcounter Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-48.txt[.statcounter.com/]
Spyware:Cookie/Serving-sys Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-48.txt[.serving-sys.com/]
Spyware:Cookie/Serving-sys Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-48.txt[.bs.serving-sys.com/]
Spyware:Cookie/Adrevolver Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-49.txt[.adrevolver.com/]
Spyware:Cookie/Go Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-49.txt[.go.com/]
Spyware:Cookie/Statcounter Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-49.txt[.statcounter.com/]
Spyware:Cookie/YieldManager Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-49.txt[ad.yieldmanager.com/]
Spyware:Cookie/Serving-sys Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-49.txt[.serving-sys.com/]
Spyware:Cookie/Serving-sys Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-49.txt[.bs.serving-sys.com/]
Spyware:Cookie/Serving-sys Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-49.txt[.serving-sys.com/]
Spyware:Cookie/BurstBeacon Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-49.txt[www.burstbeacon.com/]
Spyware:Cookie/Go Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-5.txt[.go.com/]
Spyware:Cookie/Ccbill Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-50.txt[.ccbill.com/]
Spyware:Cookie/Go Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-50.txt[.go.com/]
Spyware:Cookie/Serving-sys Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-50.txt[.serving-sys.com/]
Spyware:Cookie/Serving-sys Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-50.txt[.bs.serving-sys.com/]
Spyware:Cookie/Serving-sys Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-50.txt[.serving-sys.com/]
Spyware:Cookie/Server.iad.Liveperson Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-50.txt[server.iad.liveperson.net/hc/78221172]
Spyware:Cookie/Server.iad.Liveperson Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-50.txt[server.iad.liveperson.net/]
Spyware:Cookie/Server.iad.Liveperson Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-51.txt[server.iad.liveperson.net/]
Spyware:Cookie/Server.iad.Liveperson Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-51.txt[server.iad.liveperson.net/hc/78221172]
Spyware:Cookie/Server.iad.Liveperson Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-51.txt[server.iad.liveperson.net/]
Spyware:Cookie/Go Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-51.txt[.go.com/]
Spyware:Cookie/Serving-sys Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-51.txt[.serving-sys.com/]
Spyware:Cookie/Serving-sys Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-51.txt[.bs.serving-sys.com/]
Spyware:Cookie/Serving-sys Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-51.txt[.serving-sys.com/]
Spyware:Cookie/YieldManager Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-51.txt[ad.yieldmanager.com/]
Spyware:Cookie/Statcounter Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-51.txt[.statcounter.com/]
Spyware:Cookie/BurstBeacon Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-51.txt[www.burstbeacon.com/]
Spyware:Cookie/Adrevolver Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-51.txt[.adrevolver.com/]
Spyware:Cookie/Serving-sys Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-52.txt[.serving-sys.com/]
Spyware:Cookie/Serving-sys Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-52.txt[.bs.serving-sys.com/]
Spyware:Cookie/Serving-sys Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-52.txt[.serving-sys.com/]
Spyware:Cookie/Go Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-52.txt[.go.com/]
Spyware:Cookie/Server.iad.Liveperson Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-52.txt[server.iad.liveperson.net/]
Spyware:Cookie/Server.iad.Liveperson Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-52.txt[server.iad.liveperson.net/hc/78221172]
Spyware:Cookie/Server.iad.Liveperson Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-52.txt[server.iad.liveperson.net/]
Spyware:Cookie/YieldManager Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-52.txt[ad.yieldmanager.com/]
Spyware:Cookie/Statcounter Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-52.txt[.statcounter.com/]
Spyware:Cookie/BurstBeacon Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-52.txt[www.burstbeacon.com/]
Spyware:Cookie/Server.iad.Liveperson Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-53.txt[server.iad.liveperson.net/]
Spyware:Cookie/Server.iad.Liveperson Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-53.txt[server.iad.liveperson.net/hc/78221172]
Spyware:Cookie/Statcounter Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-54.txt[.statcounter.com/]
Spyware:Cookie/Server.iad.Liveperson Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-54.txt[server.iad.liveperson.net/hc/53189563]
Spyware:Cookie/Server.iad.Liveperson Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-54.txt[server.iad.liveperson.net/]
Spyware:Cookie/Clicktracks Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-54.txt[stats1.clicktracks.com/]
Spyware:Cookie/Serving-sys Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-54.txt[.bs.serving-sys.com/]
Spyware:Cookie/Serving-sys Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-54.txt[.serving-sys.com/]
Spyware:Cookie/Go Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-54.txt[.go.com/]
Spyware:Cookie/YieldManager Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-54.txt[ad.yieldmanager.com/]
Spyware:Cookie/Adrevolver Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-54.txt[.adrevolver.com/]
Spyware:Cookie/Com.com Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-55.txt[.com.com/]
Spyware:Cookie/YieldManager Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-55.txt[ad.yieldmanager.com/]
Spyware:Cookie/Go Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-55.txt[.go.com/]
Spyware:Cookie/Statcounter Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-55.txt[.statcounter.com/]
Spyware:Cookie/Server.iad.Liveperson Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-55.txt[server.iad.liveperson.net/hc/53189563]
Spyware:Cookie/Server.iad.Liveperson Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-55.txt[server.iad.liveperson.net/]
Spyware:Cookie/Clicktracks Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-55.txt[stats1.clicktracks.com/]
Spyware:Cookie/Serving-sys Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-55.txt[.bs.serving-sys.com/]
Spyware:Cookie/Serving-sys Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-55.txt[.serving-sys.com/]
Spyware:Cookie/Adrevolver Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-55.txt[.adrevolver.com/]
Spyware:Cookie/Go Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-56.txt[.go.com/]
Spyware:Cookie/Com.com Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-56.txt[.com.com/]
Spyware:Cookie/YieldManager Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-56.txt[ad.yieldmanager.com/]
Spyware:Cookie/Statcounter Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-56.txt[.statcounter.com/]
Spyware:Cookie/Server.iad.Liveperson Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-56.txt[server.iad.liveperson.net/hc/53189563]
Spyware:Cookie/Server.iad.Liveperson Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-56.txt[server.iad.liveperson.net/]
Spyware:Cookie/Clicktracks Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-56.txt[stats1.clicktracks.com/]
Spyware:Cookie/Serving-sys Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-56.txt[.bs.serving-sys.com/]
Spyware:Cookie/Serving-sys Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-56.txt[.serving-sys.com/]
Spyware:Cookie/Adrevolver Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-56.txt[.adrevolver.com/]
Spyware:Cookie/Go Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-57.txt[.go.com/]
Spyware:Cookie/Target Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-57.txt[.target.com/]
Spyware:Cookie/Server.iad.Liveperson Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-57.txt[server.iad.liveperson.net/]
Spyware:Cookie/Server.iad.Liveperson Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-57.txt[server.iad.liveperson.net/hc/17732922]
Spyware:Cookie/YieldManager Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-57.txt[ad.yieldmanager.com/]
Spyware:Cookie/Serving-sys Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-57.txt[.serving-sys.com/]
Spyware:Cookie/Serving-sys Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-58.txt[.serving-sys.com/]
Spyware:Cookie/Serving-sys Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-58.txt[.bs.serving-sys.com/]
Spyware:Cookie/Com.com Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-58.txt[.com.com/]
Spyware:Cookie/YieldManager Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-58.txt[ad.yieldmanager.com/]
Spyware:Cookie/Adrevolver Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-58.txt[.adrevolver.com/]
Spyware:Cookie/Go Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-58.txt[.go.com/]
Spyware:Cookie/Apmebf Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-58.txt[.apmebf.com/]
Spyware:Cookie/Go Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-59.txt[.go.com/]
Spyware:Cookie/Statcounter Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-59.txt[.statcounter.com/]
Spyware:Cookie/YieldManager Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-59.txt[ad.yieldmanager.com/]
Spyware:Cookie/Serving-sys Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-59.txt[.serving-sys.com/]
Spyware:Cookie/Serving-sys Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-59.txt[.bs.serving-sys.com/]
Spyware:Cookie/Com.com Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-59.txt[.com.com/]
Spyware:Cookie/Adrevolver Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-59.txt[.adrevolver.com/]
Spyware:Cookie/Apmebf Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-59.txt[.apmebf.com/]
Spyware:Cookie/Go Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-6.txt[.go.com/]
Spyware:Cookie/Go Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-60.txt[.go.com/]
Spyware:Cookie/Statcounter Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-60.txt[.statcounter.com/]
Spyware:Cookie/YieldManager Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-60.txt[ad.yieldmanager.com/]
Spyware:Cookie/Serving-sys Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-60.txt[.serving-sys.com/]
Spyware:Cookie/Serving-sys Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-60.txt[.bs.serving-sys.com/]
Spyware:Cookie/Com.com Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-60.txt[.com.com/]
Spyware:Cookie/Adrevolver Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-60.txt[.adrevolver.com/]
Spyware:Cookie/Apmebf Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-60.txt[.apmebf.com/]
Spyware:Cookie/Go Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-61.txt[.go.com/]
Spyware:Cookie/Statcounter Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-61.txt[.statcounter.com/]
Spyware:Cookie/YieldManager Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-61.txt[ad.yieldmanager.com/]
Spyware:Cookie/Serving-sys Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-61.txt[.serving-sys.com/]
Teach in Clovis is offline  
Digg this Post!Add Post to del.icio.usBookmark Post in TechnoratiFurl this Post!Reddit!
Old 08-26-2007, 09:40 PM   #10 (permalink)
Registered User
 
Join Date: Aug 2007
Posts: 14
OS: Win XP


Re: Unable to post info concerning browser hijacker
Spyware:Cookie/Com.com Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-60.txt[.com.com/]
Spyware:Cookie/Adrevolver Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-60.txt[.adrevolver.com/]
Spyware:Cookie/Apmebf Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-60.txt[.apmebf.com/]
Spyware:Cookie/Go Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-61.txt[.go.com/]
Spyware:Cookie/Statcounter Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-61.txt[.statcounter.com/]
Spyware:Cookie/YieldManager Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-61.txt[ad.yieldmanager.com/]
Spyware:Cookie/Serving-sys Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-61.txt[.serving-sys.com/]
Spyware:Cookie/Serving-sys Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-61.txt[.bs.serving-sys.com/]
Spyware:Cookie/Com.com Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-61.txt[.com.com/]
Spyware:Cookie/Adrevolver Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-61.txt[.adrevolver.com/]
Spyware:Cookie/Apmebf Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-61.txt[.apmebf.com/]
Spyware:Cookie/YieldManager Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-62.txt[ad.yieldmanager.com/]
Spyware:Cookie/Serving-sys Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-62.txt[.serving-sys.com/]
Spyware:Cookie/Serving-sys Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-62.txt[.bs.serving-sys.com/]
Spyware:Cookie/Serving-sys Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-62.txt[.serving-sys.com/]
Spyware:Cookie/Go Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-62.txt[.go.com/]
Spyware:Cookie/Statcounter Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-62.txt[.statcounter.com/]
Spyware:Cookie/Com.com Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-62.txt[.com.com/]
Spyware:Cookie/Adrevolver Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-62.txt[.adrevolver.com/]
Spyware:Cookie/Apmebf Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-62.txt[.apmebf.com/]
Spyware:Cookie/YieldManager Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-63.txt[ad.yieldmanager.com/]
Spyware:Cookie/Serving-sys Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-63.txt[.serving-sys.com/]
Spyware:Cookie/Serving-sys Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-63.txt[.bs.serving-sys.com/]
Spyware:Cookie/Serving-sys Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-63.txt[.serving-sys.com/]
Spyware:Cookie/Go Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-63.txt[.go.com/]
Spyware:Cookie/Statcounter Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-63.txt[.statcounter.com/]
Spyware:Cookie/Com.com Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-63.txt[.com.com/]
Spyware:Cookie/Adrevolver Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-63.txt[.adrevolver.com/]
Spyware:Cookie/Apmebf Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-63.txt[.apmebf.com/]
Spyware:Cookie/YieldManager Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-64.txt[ad.yieldmanager.com/]
Spyware:Cookie/Serving-sys Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-64.txt[.serving-sys.com/]
Spyware:Cookie/Serving-sys Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-64.txt[.bs.serving-sys.com/]
Spyware:Cookie/Serving-sys Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-64.txt[.serving-sys.com/]
Spyware:Cookie/Go Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-64.txt[.go.com/]
Spyware:Cookie/Statcounter Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-64.txt[.statcounter.com/]
Spyware:Cookie/Com.com Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-64.txt[.com.com/]
Spyware:Cookie/Adrevolver Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-64.txt[.adrevolver.com/]
Spyware:Cookie/Apmebf Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-64.txt[.apmebf.com/]
Spyware:Cookie/Go Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-65.txt[.go.com/]
Spyware:Cookie/Adrevolver Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-66.txt[.adrevolver.com/]
Spyware:Cookie/Go Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-66.txt[.go.com/]
Spyware:Cookie/Serving-sys Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-67.txt[.serving-sys.com/]
Spyware:Cookie/Serving-sys Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-67.txt[.bs.serving-sys.com/]
Spyware:Cookie/Serving-sys Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-67.txt[.serving-sys.com/]
Spyware:Cookie/Go Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-67.txt[.go.com/]
Spyware:Cookie/Target Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-67.txt[.target.com/]
Spyware:Cookie/YieldManager Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-67.txt[ad.yieldmanager.com/]
Spyware:Cookie/did-it Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-67.txt[.did-it.com/]
Spyware:Cookie/Adrevolver Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-67.txt[.adrevolver.com/]
Spyware:Cookie/YieldManager Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-68.txt[ad.yieldmanager.com/]
Spyware:Cookie/Serving-sys Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-68.txt[.bs.serving-sys.com/]
Spyware:Cookie/Serving-sys Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-68.txt[.serving-sys.com/]
Spyware:Cookie/Go Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-68.txt[.go.com/]
Spyware:Cookie/Target Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-68.txt[.target.com/]
Spyware:Cookie/did-it Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-68.txt[.did-it.com/]
Spyware:Cookie/YieldManager Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-69.txt[ad.yieldmanager.com/]
Spyware:Cookie/Serving-sys Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-69.txt[.bs.serving-sys.com/]
Spyware:Cookie/Serving-sys Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-69.txt[.serving-sys.com/]
Spyware:Cookie/Go Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-69.txt[.go.com/]
Spyware:Cookie/Target Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-69.txt[.target.com/]
Spyware:Cookie/did-it Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-69.txt[.did-it.com/]
Spyware:Cookie/Go Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-7.txt[.go.com/]
Spyware:Cookie/YieldManager Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-70.txt[ad.yieldmanager.com/]
Spyware:Cookie/Serving-sys Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-70.txt[.bs.serving-sys.com/]
Spyware:Cookie/Serving-sys Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-70.txt[.serving-sys.com/]
Spyware:Cookie/Go Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-70.txt[.go.com/]
Spyware:Cookie/Target Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-70.txt[.target.com/]
Spyware:Cookie/did-it Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-70.txt[.did-it.com/]
Spyware:Cookie/Com.com Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-71.txt[.com.com/]
Spyware:Cookie/Adrevolver Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-71.txt[.adrevolver.com/]
Spyware:Cookie/bravenetA Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-71.txt[.bravenet.com/]
Spyware:Cookie/YieldManager Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-71.txt[ad.yieldmanager.com/]
Spyware:Cookie/Serving-sys Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-71.txt[.bs.serving-sys.com/]
Spyware:Cookie/Serving-sys Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-71.txt[.serving-sys.com/]
Spyware:Cookie/Go Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-71.txt[.go.com/]
Spyware:Cookie/Target Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-71.txt[.target.com/]
Spyware:Cookie/did-it Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-71.txt[.did-it.com/]
Spyware:Cookie/YieldManager Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-72.txt[ad.yieldmanager.com/]
Spyware:Cookie/Go Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-72.txt[.go.com/]
Spyware:Cookie/WUpd Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-72.txt[.revenue.net/]
Spyware:Cookie/Searchportal Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-72.txt[searchportal.information.com/]
Spyware:Cookie/Server.iad.Liveperson Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-72.txt[server.iad.liveperson.net/]
Spyware:Cookie/Server.iad.Liveperson Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-72.txt[server.iad.liveperson.net/hc/43355559]
Spyware:Cookie/Server.iad.Liveperson Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-72.txt[server.iad.liveperson.net/]
Spyware:Cookie/Server.iad.Liveperson Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-73.txt[server.iad.liveperson.net/hc/43355559]
Spyware:Cookie/Server.iad.Liveperson Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-73.txt[server.iad.liveperson.net/]
Spyware:Cookie/YieldManager Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-73.txt[ad.yieldmanager.com/]
Spyware:Cookie/Serving-sys Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-73.txt[.serving-sys.com/]
Spyware:Cookie/Serving-sys Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-73.txt[.bs.serving-sys.com/]
Spyware:Cookie/Serving-sys Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-73.txt[.serving-sys.com/]
Spyware:Cookie/Com.com Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-73.txt[.com.com/]
Spyware:Cookie/Go Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-73.txt[.go.com/]
Spyware:Cookie/WUpd Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-73.txt[.revenue.net/]
Spyware:Cookie/Searchportal Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-73.txt[searchportal.information.com/]
Spyware:Cookie/Server.iad.Liveperson Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-74.txt[server.iad.liveperson.net/]
Spyware:Cookie/Server.iad.Liveperson Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-74.txt[server.iad.liveperson.net/hc/43355559]
Spyware:Cookie/Server.iad.Liveperson Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-74.txt[server.iad.liveperson.net/]
Spyware:Cookie/YieldManager Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-74.txt[ad.yieldmanager.com/]
Spyware:Cookie/Serving-sys Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-74.txt[.serving-sys.com/]
Spyware:Cookie/Serving-sys Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-74.txt[.bs.serving-sys.com/]
Spyware:Cookie/Serving-sys Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-74.txt[.serving-sys.com/]
Spyware:Cookie/Com.com Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-74.txt[.com.com/]
Spyware:Cookie/Go Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-74.txt[.go.com/]
Spyware:Cookie/WUpd Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-74.txt[.revenue.net/]
Spyware:Cookie/Searchportal Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-74.txt[searchportal.information.com/]
Spyware:Cookie/Server.iad.Liveperson Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-75.txt[server.iad.liveperson.net/]
Spyware:Cookie/Server.iad.Liveperson Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-75.txt[server.iad.liveperson.net/hc/43355559]
Spyware:Cookie/YieldManager Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-75.txt[ad.yieldmanager.com/]
Spyware:Cookie/Serving-sys Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-75.txt[.serving-sys.com/]
Spyware:Cookie/Serving-sys Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-75.txt[.bs.serving-sys.com/]
Spyware:Cookie/Serving-sys Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-75.txt[.serving-sys.com/]
Spyware:Cookie/Com.com Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-75.txt[.com.com/]
Spyware:Cookie/Go Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-75.txt[.go.com/]
Spyware:Cookie/WUpd Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-75.txt[.revenue.net/]
Spyware:Cookie/Searchportal Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-75.txt[searchportal.information.com/]
Spyware:Cookie/Server.iad.Liveperson Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-76.txt[server.iad.liveperson.net/]
Spyware:Cookie/Server.iad.Liveperson Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-76.txt[server.iad.liveperson.net/hc/43355559]
Spyware:Cookie/Server.iad.Liveperson Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-76.txt[server.iad.liveperson.net/]
Spyware:Cookie/YieldManager Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-76.txt[ad.yieldmanager.com/]
Spyware:Cookie/Serving-sys Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-76.txt[.bs.serving-sys.com/]
Spyware:Cookie/Serving-sys Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-76.txt[.serving-sys.com/]
Spyware:Cookie/Com.com Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-76.txt[.com.com/]
Spyware:Cookie/Go Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-76.txt[.go.com/]
Spyware:Cookie/WUpd Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-76.txt[.revenue.net/]
Spyware:Cookie/Searchportal Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-76.txt[searchportal.information.com/]
Spyware:Cookie/Server.iad.Liveperson Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-77.txt[server.iad.liveperson.net/]
Spyware:Cookie/Server.iad.Liveperson Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-77.txt[server.iad.liveperson.net/hc/43355559]
Spyware:Cookie/Server.iad.Liveperson Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-77.txt[server.iad.liveperson.net/]
Spyware:Cookie/YieldManager Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-77.txt[ad.yieldmanager.com/]
Spyware:Cookie/Serving-sys Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-77.txt[.bs.serving-sys.com/]
Spyware:Cookie/Serving-sys Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-77.txt[.serving-sys.com/]
Spyware:Cookie/Com.com Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-77.txt[.com.com/]
Spyware:Cookie/Go Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-77.txt[.go.com/]
Spyware:Cookie/WUpd Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-77.txt[.revenue.net/]
Spyware:Cookie/Searchportal Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-77.txt[searchportal.information.com/]
Spyware:Cookie/Server.iad.Liveperson Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-78.txt[server.iad.liveperson.net/]
Spyware:Cookie/Server.iad.Liveperson Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-78.txt[server.iad.liveperson.net/hc/43355559]
Spyware:Cookie/Server.iad.Liveperson Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-78.txt[server.iad.liveperson.net/]
Spyware:Cookie/YieldManager Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-78.txt[ad.yieldmanager.com/]
Spyware:Cookie/Serving-sys Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-78.txt[.bs.serving-sys.com/]
Spyware:Cookie/Serving-sys Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-78.txt[.serving-sys.com/]
Spyware:Cookie/Com.com Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-78.txt[.com.com/]
Spyware:Cookie/Go Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-78.txt[.go.com/]
Spyware:Cookie/WUpd Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-78.txt[.revenue.net/]
Spyware:Cookie/Searchportal Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-78.txt[searchportal.information.com/]
Spyware:Cookie/Server.iad.Liveperson Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-79.txt[server.iad.liveperson.net/]
Spyware:Cookie/Server.iad.Liveperson Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-79.txt[server.iad.liveperson.net/hc/43355559]
Spyware:Cookie/Server.iad.Liveperson Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-79.txt[server.iad.liveperson.net/]
Spyware:Cookie/YieldManager Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-79.txt[ad.yieldmanager.com/]
Spyware:Cookie/Serving-sys Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-79.txt[.bs.serving-sys.com/]
Spyware:Cookie/Serving-sys Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-79.txt[.serving-sys.com/]
Spyware:Cookie/Com.com Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-79.txt[.com.com/]
Spyware:Cookie/Go Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-79.txt[.go.com/]
Spyware:Cookie/WUpd Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-79.txt[.revenue.net/]
Spyware:Cookie/Searchportal Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-79.txt[searchportal.information.com/]
Spyware:Cookie/Go Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-8.txt[.go.com/]
Spyware:Cookie/Go Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-82.txt[.go.com/]
Spyware:Cookie/YieldManager Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-83.txt[ad.yieldmanager.com/]
Spyware:Cookie/Go Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-83.txt[.go.com/]
Spyware:Cookie/Go Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-84.txt[.go.com/]
Spyware:Cookie/YieldManager Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-85.txt[ad.yieldmanager.com/]
Spyware:Cookie/BurstBeacon Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-85.txt[www.burstbeacon.com/]
Spyware:Cookie/Go Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-85.txt[.go.com/]
Spyware:Cookie/YieldManager Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-86.txt[ad.yieldmanager.com/]
Spyware:Cookie/BurstBeacon Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-86.txt[www.burstbeacon.com/]
Spyware:Cookie/Go Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-86.txt[.go.com/]
Spyware:Cookie/YieldManager Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-87.txt[ad.yieldmanager.com/]
Spyware:Cookie/Serving-sys Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-87.txt[.serving-sys.com/]
Spyware:Cookie/Serving-sys Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-87.txt[.bs.serving-sys.com/]
Spyware:Cookie/Serving-sys Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-87.txt[.serving-sys.com/]
Spyware:Cookie/Go Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-87.txt[.go.com/]
Spyware:Cookie/BurstBeacon Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-87.txt[www.burstbeacon.com/]
Spyware:Cookie/YieldManager Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-88.txt[ad.yieldmanager.com/]
Spyware:Cookie/Go Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-88.txt[.go.com/]
Spyware:Cookie/Serving-sys Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-88.txt[.serving-sys.com/]
Spyware:Cookie/Serving-sys Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-88.txt[.bs.serving-sys.com/]
Spyware:Cookie/Serving-sys Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-88.txt[.serving-sys.com/]
Spyware:Cookie/BurstBeacon Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-88.txt[www.burstbeacon.com/]
Spyware:Cookie/Go Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-89.txt[.go.com/]
Spyware:Cookie/Serving-sys Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-89.txt[.serving-sys.com/]
Spyware:Cookie/Serving-sys Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-89.txt[.bs.serving-sys.com/]
Spyware:Cookie/Serving-sys Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-89.txt[.serving-sys.com/]
Spyware:Cookie/YieldManager Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-89.txt[ad.yieldmanager.com/]
Spyware:Cookie/Go Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-90.txt[.go.com/]
Spyware:Cookie/Serving-sys Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-90.txt[.serving-sys.com/]
Spyware:Cookie/Serving-sys Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-90.txt[.bs.serving-sys.com/]
Spyware:Cookie/Serving-sys Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-90.txt[.serving-sys.com/]
Spyware:Cookie/YieldManager Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-90.txt[ad.yieldmanager.com/]
Spyware:Cookie/Com.com Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-91.txt[.com.com/]
Spyware:Cookie/YieldManager Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-92.txt[ad.yieldmanager.com/]
Spyware:Cookie/Serving-sys Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-92.txt[.serving-sys.com/]
Spyware:Cookie/Serving-sys Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-92.txt[.bs.serving-sys.com/]
Spyware:Cookie/Statcounter Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-92.txt[.statcounter.com/]
Spyware:Cookie/Go Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-92.txt[.go.com/]
Spyware:Cookie/Server.iad.Liveperson Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-92.txt[server.iad.liveperson.net/]
Spyware:Cookie/Server.iad.Liveperson Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-92.txt[server.iad.liveperson.net/hc/78221172]
Spyware:Cookie/Server.iad.Liveperson Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-92.txt[server.iad.liveperson.net/]
Spyware:Cookie/YieldManager Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-93.txt[ad.yieldmanager.com/]
Spyware:Cookie/Serving-sys Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-93.txt[.serving-sys.com/]
Spyware:Cookie/Serving-sys Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-93.txt[.bs.serving-sys.com/]
Spyware:Cookie/Serving-sys Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-93.txt[.serving-sys.com/]
Spyware:Cookie/Statcounter Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-93.txt[.statcounter.com/]
Spyware:Cookie/Go Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-93.txt[.go.com/]
Spyware:Cookie/Server.iad.Liveperson Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-93.txt[server.iad.liveperson.net/hc/78221172]
Spyware:Cookie/Server.iad.Liveperson Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-93.txt[server.iad.liveperson.net/]
Spyware:Cookie/YieldManager Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-94.txt[ad.yieldmanager.com/]
Spyware:Cookie/Serving-sys Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-94.txt[.serving-sys.com/]
Spyware:Cookie/Serving-sys Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-94.txt[.bs.serving-sys.com/]
Spyware:Cookie/Serving-sys Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-94.txt[.serving-sys.com/]
Spyware:Cookie/Statcounter Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-94.txt[.statcounter.com/]
Spyware:Cookie/Go Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-94.txt[.go.com/]
Spyware:Cookie/Server.iad.Liveperson Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-94.txt[server.iad.liveperson.net/hc/78221172]
Spyware:Cookie/Server.iad.Liveperson Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-94.txt[server.iad.liveperson.net/]
Spyware:Cookie/Server.iad.Liveperson Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-95.txt[server.iad.liveperson.net/]
Spyware:Cookie/Server.iad.Liveperson Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-95.txt[server.iad.liveperson.net/hc/78221172]
Spyware:Cookie/YieldManager Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-95.txt[ad.yieldmanager.com/]
Spyware:Cookie/Serving-sys Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-95.txt[.serving-sys.com/]
Spyware:Cookie/Serving-sys Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-95.txt[.bs.serving-sys.com/]
Spyware:Cookie/Serving-sys Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-95.txt[.serving-sys.com/]
Spyware:Cookie/Statcounter Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-95.txt[.statcounter.com/]
Spyware:Cookie/Go Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-95.txt[.go.com/]
Spyware:Cookie/Go Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-96.txt[.go.com/]
Spyware:Cookie/Serving-sys Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-96.txt[.bs.serving-sys.com/]
Spyware:Cookie/Serving-sys Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-96.txt[.serving-sys.com/]
Spyware:Cookie/YieldManager Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-96.txt[ad.yieldmanager.com/]
Spyware:Cookie/Server.iad.Liveperson Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-96.txt[server.iad.liveperson.net/hc/78221172]
Spyware:Cookie/Server.iad.Liveperson Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-96.txt[server.iad.liveperson.net/]
Spyware:Cookie/Statcounter Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-96.txt[.statcounter.com/]
Spyware:Cookie/YieldManager Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-97.txt[ad.yieldmanager.com/]
Spyware:Cookie/Go Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-97.txt[.go.com/]
Spyware:Cookie/Serving-sys Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-97.txt[.bs.serving-sys.com/]
Spyware:Cookie/Serving-sys Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-97.txt[.serving-sys.com/]
Spyware:Cookie/Server.iad.Liveperson Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-97.txt[server.iad.liveperson.net/hc/78221172]
Spyware:Cookie/Server.iad.Liveperson Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-97.txt[server.iad.liveperson.net/]
Spyware:Cookie/Statcounter Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-97.txt[.statcounter.com/]
Spyware:Cookie/YieldManager Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-98.txt[ad.yieldmanager.com/]
Spyware:Cookie/Serving-sys Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-98.txt[.serving-sys.com/]
Spyware:Cookie/Serving-sys Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-98.txt[.bs.serving-sys.com/]
Spyware:Cookie/Serving-sys Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-98.txt[.serving-sys.com/]
Spyware:Cookie/Go Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-98.txt[.go.com/]
Spyware:Cookie/Server.iad.Liveperson Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-98.txt[server.iad.liveperson.net/hc/78221172]
Spyware:Cookie/Server.iad.Liveperson Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-98.txt[server.iad.liveperson.net/]
Spyware:Cookie/Statcounter Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-98.txt[.statcounter.com/]
Spyware:Cookie/YieldManager Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-99.txt[ad.yieldmanager.com/]
Spyware:Cookie/Serving-sys Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-99.txt[.serving-sys.com/]
Spyware:Cookie/Serving-sys Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-99.txt[.bs.serving-sys.com/]
Spyware:Cookie/Serving-sys Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-99.txt[.serving-sys.com/]
Spyware:Cookie/Go Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-99.txt[.go.com/]
Spyware:Cookie/Server.iad.Liveperson Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-99.txt[server.iad.liveperson.net/hc/78221172]
Spyware:Cookie/Server.iad.Liveperson Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-99.txt[server.iad.liveperson.net/]
Spyware:Cookie/Statcounter Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies-99.txt[.statcounter.com/]
Spyware:Cookie/Go Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies.txt[.go.com/]
Spyware:Cookie/Adrevolver Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies.txt[.adrevolver.com/]
Spyware:Cookie/YieldManager Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies.txt[ad.yieldmanager.com/]
Spyware:Cookie/Serving-sys Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies.txt[.serving-sys.com/]
Spyware:Cookie/Serving-sys Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies.txt[.bs.serving-sys.com/]
Spyware:Cookie/Serving-sys Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies.txt[.serving-sys.com/]
Spyware:Cookie/Enhance Not disinfected C:\Documents and Settings\Jon\Application Data\Mozilla\Firefox\Profiles\ai4bja3a.default\cookies.txt[.enhance.com/]
Spyware:Cookie/Searchportal Not disinfected C:\Documents and Settings\Jon\Cookies\jon@searchportal.information[1].txt
Spyware:Cookie/Server.iad.Liveperson Not disinfected C:\Documents and Settings\Jon\Cookies\jon@server.iad.liveperson[1].txt
Spyware:Cookie/RealMedia Not disinfected C:\Program Files\Arovax AntiSpyware\quarantine\archive 07.12.2006 20-05-05.dat Last half of Panda scan:

Spyware:Cookie/bravenetA Not disinfected C:\Program Files\Arovax AntiSpyware\quarantine\archive 08.07.2007 11-34-13.dat
Teach in Clovis is offline  
Digg this Post!Add Post to del.icio.usBookmark Post in TechnoratiFurl this Post!Reddit!
Old 08-26-2007, 09:50 PM   #11 (permalink)
Registered User
 
Join Date: Aug 2007
Posts: 14
OS: Win XP


Re: Unable to post info concerning browser hijacker
Sorry, here is the second DSS scan file (extra. txt). Had thought it was a backup to original. Sorry to have sent the Panda scan instead.

Deckard's System Scanner v20070826.66
Extra logfile - please post this as an attachment with your post.
--------------------------------------------------------------------------------

-- System Information ----------------------------------------------------------

Microsoft Windows XP Home Edition (build 2600) SP 2.0
Architecture: X86; Language: English

CPU 0: Intel(R) Pentium(R) 4 CPU 3.00GHz
Percentage of Memory in Use: 17%
Physical Memory (total/avail): 2558.09 MiB / 2105.82 MiB
Pagefile Memory (total/avail): 3173.7 MiB / 2632.1 MiB
Virtual Memory (total/avail): 2047.88 MiB / 1975.13 MiB

C: is Fixed (NTFS) - 149.04 GiB total, 135.13 GiB free.
D: is CDROM (No Media)
E: is CDROM (No Media)
F: is Removable (No Media)

\\.\PHYSICALDRIVE0 - ST3160023AS - 149.05 GiB - 1 partition
\PARTITION0 (bootable) - Installable File System - 149.04 GiB - C:

\\.\PHYSICALDRIVE1 - HP Photosmart C4180 USB Device



-- Security Center -------------------------------------------------------------

AUOptions is scheduled to auto-install.
Windows Internal Firewall is disabled.

AntiVirusDisableNotify is set.
FirewallDisableNotify is set.

FW: Norton Internet Security v2004 (Symantec Corporation) Disabled
FW: ZoneAlarm Firewall v7.0.337.000 (Check Point, LTD.)
AV: AOL Antivirus v210.5.4.1 (AOL) Disabled

[HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\\Program Files\\Logitech\\Desktop Messenger\\8876480\\Program\\LogitechDesktopMessenger.exe"="C:\\Program Files\\Logitech\\Desktop Messenger\\8876480\\Program\\LogitechDesktopMessenger.exe:*:Enabled:Logitech Desktop Messenger"
"%windir%\\Network Diagnostic\\xpnetdiag.exe"="%windir%\\Network Diagnostic\\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\\Program Files\\MSN Messenger\\msnmsgr.exe"="C:\\Program Files\\MSN Messenger\\msnmsgr.exe:*:Enabled:Windows Live Messenger 8.1"
"C:\\Program Files\\MSN Messenger\\livecall.exe"="C:\\Program Files\\MSN Messenger\\livecall.exe:*:Enabled:Windows Live Messenger 8.1 (Phone)"

[HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\\Program Files\\Messenger\\msmsgs.exe"="C:\\Program Files\\Messenger\\msmsgs.exe:*:Enabled:Windows Messenger"
"C:\\Program Files\\America Online 9.0\\waol.exe"="C:\\Program Files\\America Online 9.0\\waol.exe:*:Enabled:America Online 9.0"
"C:\\Program Files\\Paltalk Messenger\\paltalk7.exe"="C:\\Program Files\\Paltalk Messenger\\paltalk7.exe:*:Enabled:Paltalk Messenger 7.0"
"C:\\Program Files\\Yahoo!\\Messenger\\YPager.exe"="C:\\Program Files\\Yahoo!\\Messenger\\YPager.exe:*:Enabled:Yahoo! Messenger"
"C:\\Program Files\\Yahoo!\\Messenger\\YServer.exe"="C:\\Program Files\\Yahoo!\\Messenger\\YServer.exe:*:Enabled:Yahoo! FT Server"
"C:\\Program Files\\Common Files\\AOL\\ACS\\AOLDial.exe"="C:\\Program Files\\Common Files\\AOL\\ACS\\AOLDial.exe:*:Enabled:AOL"
"C:\\Program Files\\Common Files\\AOL\\ACS\\AOLacsd.exe"="C:\\Program Files\\Common Files\\AOL\\ACS\\AOLacsd.exe:*:Enabled:AOL"
"C:\\Program Files\\America Online 9.0a\\waol.exe"="C:\\Program Files\\America Online 9.0a\\waol.exe:*:Enabled:AOL"
"C:\\Program Files\\Common Files\\AOL\\1107318706\\EE\\AOLServiceHost.exe"="C:\\Program Files\\Common Files\\AOL\\1107318706\\EE\\AOLServiceHost.exe:*:Enabled:AOL"
"C:\\Program Files\\Common Files\\AOL\\Loader\\aolload.exe"="C:\\Program Files\\Common Files\\AOL\\Loader\\aolload.exe:*:Enabled:AOL"
"C:\\Program Files\\Common Files\\AOL\\System Information\\sinf.exe"="C:\\Program Files\\Common Files\\AOL\\System Information\\sinf.exe:*:Enabled:AOL"
"C:\\Program Files\\Common Files\\AOL\\AOL Spyware Protection\\AOLSP Scheduler.exe"="C:\\Program Files\\Common Files\\AOL\\AOL Spyware Protection\\AOLSP Scheduler.exe:*:Enabled:AOL"
"C:\\Program Files\\Common Files\\AOL\\AOL Spyware Protection\\asp.exe"="C:\\Program Files\\Common Files\\AOL\\AOL Spyware Protection\\asp.exe:*:Enabled:AOL"
"C:\\Program Files\\Common Files\\AOL\\TopSpeed\\2.0\\aoltsmon.exe"="C:\\Program Files\\Common Files\\AOL\\TopSpeed\\2.0\\aoltsmon.exe:*:Enabled:AOL"
"C:\\Program Files\\Common Files\\AOL\\TopSpeed\\2.0\\aoltpspd.exe"="C:\\Program Files\\Common Files\\AOL\\TopSpeed\\2.0\\aoltpspd.exe:*:Enabled:AOL"
"C:\\Program Files\\Common Files\\AolCoach\\en_en\\player\\AOLNySEV.exe"="C:\\Program Files\\Common Files\\AolCoach\\en_en\\player\\AOLNySEV.exe:*:Enabled:AOL"
"C:\\Program Files\\America Online 9.0b\\waol.exe"="C:\\Program Files\\America Online 9.0b\\waol.exe:*:Enabled:AOL"
"C:\\Program Files\\America Online 9.0c\\waol.exe"="C:\\Program Files\\America Online 9.0c\\waol.exe:*:Enabled:AOL"
"C:\\Program Files\\Yahoo!\\Messenger\\YahooMessenger.exe"="C:\\Program Files\\Yahoo!\\Messenger\\YahooMessenger.exe:*:Enabled:Yahoo! Messenger"
"C:\\Program Files\\Logitech\\Desktop Messenger\\8876480\\Program\\LogitechDesktopMessenger.exe"="C:\\Program Files\\Logitech\\Desktop Messenger\\8876480\\Program\\LogitechDesktopMessenger.exe:*:Enabled:Logitech Desktop Messenger"
"C:\\Program Files\\Common Files\\AOL\\TopSpeed\\3.0\\aoltpsd3.exe"="C:\\Program Files\\Common Files\\AOL\\TopSpeed\\3.0\\aoltpsd3.exe:*:Enabled:AOL TopSpeed"
"C:\\Documents and Settings\\Jon\\Desktop\\incredimail_install.exe"="C:\\Documents and Settings\\Jon\\Desktop\\incredimail_install.exe:*:Enabled:IncrediMail Installer"
"C:\\Documents and Settings\\Jon\\Local Settings\\Temp\\ImInstaller\\IncrediMail\\incredimail_install.exe"="C:\\Documents and Settings\\Jon\\Local Settings\\Temp\\ImInstaller\\IncrediMail\\incredimail_install.exe:*:Enabled:IncrediMail Installer"
"C:\\Documents and Settings\\Jon\\Local Settings\\Temporary Internet Files\\Content.IE5\\8DALON8V\\incredimail_install[1].exe"="C:\\Documents and Settings\\Jon\\Local Settings\\Temporary Internet Files\\Content.IE5\\8DALON8V\\incredimail_install[1].exe:*:Enabled:IncrediMail Installer"
"C:\\Documents and Settings\\Jon\\Local Settings\\Temp\\ImInstaller\\IncrediMail\\incredimail_install[1].exe"="C:\\Documents and Settings\\Jon\\Local Settings\\Temp\\ImInstaller\\IncrediMail\\incredimail_install[1].exe:*:Enabled:IncrediMail Installer"
"%windir%\\Network Diagnostic\\xpnetdiag.exe"="%windir%\\Network Diagnostic\\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\\Program Files\\Common Files\\AOL\\1107318706\\EE\\aolsoftware.exe"="C:\\Program Files\\Common Files\\AOL\\1107318706\\EE\\aolsoftware.exe:*:Enabled:AOL Services"
"C:\\Program Files\\MSN Messenger\\msnmsgr.exe"="C:\\Program Files\\MSN Messenger\\msnmsgr.exe:*:Enabled:Windows Live Messenger 8.1"
"C:\\Program Files\\MSN Messenger\\livecall.exe"="C:\\Program Files\\MSN Messenger\\livecall.exe:*:Enabled:Windows Live Messenger 8.1 (Phone)"
"C:\\WINDOWS\\system32\\java.exe"="C:\\WINDOWS\\system32\\java.exe:*:Enabled:Java(TM) 2 Platform Standard Edition binary"
"C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqtra08.exe"="C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqtra08.exe:*:Enabled:hpqtra08.exe"
"C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqste08.exe"="C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqste08.exe:*:Enabled:hpqste08.exe"
"C:\\Program Files\\HP\\Digital Imaging\\bin\\hpofxm08.exe"="C:\\Program Files\\HP\\Digital Imaging\\bin\\hpofxm08.exe:*:Enabled:hpofxm08.exe"
"C:\\Program Files\\HP\\Digital Imaging\\bin\\hposfx08.exe"="C:\\Program Files\\HP\\Digital Imaging\\bin\\hposfx08.exe:*:Enabled:hposfx08.exe"
"C:\\Program Files\\HP\\Digital Imaging\\bin\\hposid01.exe"="C:\\Program Files\\HP\\Digital Imaging\\bin\\hposid01.exe:*:Enabled:hposid01.exe"
"C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqscnvw.exe"="C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqscnvw.exe:*:Enabled:hpqscnvw.exe"
"C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqkygrp.exe"="C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqkygrp.exe:*:Enabled:hpqkygrp.exe"
"C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqCopy.exe"="C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqCopy.exe:*:Enabled:hpqcopy.exe"
"C:\\Program Files\\HP\\Digital Imaging\\bin\\hpfccopy.exe"="C:\\Program Files\\HP\\Digital Imaging\\bin\\hpfccopy.exe:*:Enabled:hpfccopy.exe"
"C:\\Program Files\\HP\\Digital Imaging\\bin\\hpzwiz01.exe"="C:\\Program Files\\HP\\Digital Imaging\\bin\\hpzwiz01.exe:*:Enabled:hpzwiz01.exe"
"C:\\Program Files\\HP\\Digital Imaging\\Unload\\HpqPhUnl.exe"="C:\\Program Files\\HP\\Digital Imaging\\Unload\\HpqPhUnl.exe:*:Enabled:hpqphunl.exe"
"C:\\Program Files\\HP\\Digital Imaging\\Unload\\HpqDIA.exe"="C:\\Program Files\\HP\\Digital Imaging\\Unload\\HpqDIA.exe:*:Enabled:hpqdia.exe"
"C:\\Program Files\\HP\\Digital Imaging\\bin\\hpoews01.exe"="C:\\Program Files\\HP\\Digital Imaging\\bin\\hpoews01.exe:*:Enabled:hpoews01.exe"
"C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqnrs08.exe"="C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqnrs08.exe:*:Enabled:hpqnrs08.exe"
"C:\\Program Files\\AOL 9.0\\waol.exe"="C:\\Program Files\\AOL 9.0\\waol.exe:*:Enabled:AOL"


-- Environment Variables -------------------------------------------------------

ALLUSERSPROFILE=C:\Documents and Settings\All Users
APPDATA=C:\Documents and Settings\Jon\Application Data
CLASSPATH=.;C:\Program Files\Java\jre1.5.0_11\lib\ext\QTJava.zip;C:\Program Files\Java\jre1.6.0_01\lib\ext\QTJava.zip
CLIENTNAME=Console
COLLECTIONID=COL8143
CommonProgramFiles=C:\Program Files\Common Files
COMPUTERNAME=JON-JUZ89IXPXTA
ComSpec=C:\WINDOWS\system32\cmd.exe
FP_NO_HOST_CHECK=NO
HMSERVER=https://wwss1proa.cce.hp.com/wuss/servlet/WUSSServlet
HOMEDRIVE=C:
HOMEPATH=\Documents and Settings\Jon
ITEMID=dj-22741-15
LANG=1033
LOGONSERVER=\\JON-JUZ89IXPXTA
NUMBER_OF_PROCESSORS=1
OS=Windows_NT
OSVER=winXPH
Path=C:\WINDOWS\system32;C:\WINDOWS;C:\WINDOWS\System32\Wbem;C:\Program Files\ATI Technologies\ATI Control Panel;C:\Program Files\QuickTime\QTSystem\;"C:\Program Files\Zone Labs\ZoneAlarm\MailFrontier"
PATHEXT=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH
PROCESSOR_ARCHITECTURE=x86
PROCESSOR_IDENTIFIER=x86 Family 15 Model 3 Stepping 4, GenuineIntel
PROCESSOR_LEVEL=15
PROCESSOR_REVISION=0304
ProgramFiles=C:\Program Files
PROMPT=$P$G
QTJAVA=C:\Program Files\Java\jre1.6.0_01\lib\ext\QTJava.zip
SESSIONID=1160500508231htx6060.cce.hp.com2b2fec:10e33386d9f:-5c65
SESSIONNAME=Console
SWUTVER=1.0.18.20030625
SystemDrive=C:
SystemRoot=C:\WINDOWS
TEMP=C:\DOCUME~1\Jon\LOCALS~1\Temp
TIMEOUT=0
TMP=C:\DOCUME~1\Jon\LOCALS~1\Temp
TOOLPATH=/C:\Program%20Files\HP\HP%20Software%20Update\install.htm
tvdumpflags=8
UPDATEDIR=C:\DOCUME~1\Jon\LOCALS~1\Temp\rad7A1D1.tmp
USERDOMAIN=JON-JUZ89IXPXTA
USERNAME=Jon
USERPROFILE=C:\Documents and Settings\Jon
VERSION=3.0.5.001
windir=C:\WINDOWS


-- User Profiles ---------------------------------------------------------------

Jon (admin)
Administrator (admin)


-- Add/Remove Programs ---------------------------------------------------------

--> "C:\Program Files\AOL\AOL Toolbar 5.0\uninstall.exe"
--> "C:\Program Files\mcafee.com\antivirus\uninst.exe" /PopUpMsgBox="N" /CheckMutx="N" /S
--> C:\Program Files\Common Files\Real\Update_OB\r1puninst.exe RealNetworks|RealPlayer|6.0
--> C:\WINDOWS\system32\\MSIEXEC.EXE /I {09DA4F91-2A09-4232-AB8C-6BC740096DE3} REMOVE=UpdateMgrFeature
--> C:\WINDOWS\system32\\MSIEXEC.EXE /x {1206EF92-2E83-4859-ACCB-2048C3CB7DA6}
--> C:\WINDOWS\system32\\MSIEXEC.EXE /x {9541FED0-327F-4df0-8B96-EF57EF622F19}
--> rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:\WINDOWS\INF\PCHealth.inf
Active Security Monitor 2.0.0.18 --> "C:\Program Files\AOL\Active Security Monitor\unins000.exe"
Ad-Aware 2007 --> MsiExec.exe /X{DED53B0B-B67C-4244-AE6A-D6FD3C28D1EF}
Adobe Flash Player 9 ActiveX --> C:\WINDOWS\system32\Macromed\Flash\UninstFl.exe -q
Adobe Flash Player Plugin --> C:\WINDOWS\system32\Macromed\Flash\uninstall_plugin.exe
Adobe Reader 8.1.0 --> MsiExec.exe /I{AC76BA86-7AD7-1033-7B44-A81000000003}
Adobe® Photoshop® Album Starter Edition 3.0 --> MsiExec.exe /I{4BDFD2CE-6329-42E4-9801-9B3D1F10D79B}
Adobe® Photoshop® Album Starter Edition 3.0.1 --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{C9618743-1A5C-461E-91C4-E013A3D70F3C}\Setup.exe" -l0x9
Anti Tracks 6.3.1 --> "C:\Program Files\Anti Tracks\unins000.exe"
AOL Coach Version 1.0(Build:20020823.1) --> C:\WINDOWS\AolCInUn.exe
AOL Coach Version 2.0(Build:20041026.5 en) --> C:\Program Files\Common Files\AolCoach\en_en\AolCInUn.exe -lang=en_en -ext=UDP
AOL Toolbar 5.0 --> "C:\Program Files\AOL\AOL Toolbar 5.0\uninstall.exe"
AOL Uninstaller (Choose which Products to Remove) --> C:\Program Files\Common Files\AOL\uninstaller.exe
AOL You've Got Pictures Screensaver --> C:\Program Files\Common Files\AOL\Screensaver\uninst_ygpss.exe
Apple Software Update --> MsiExec.exe /I{74EC78BC-B379-4E29-9006-8F161DCAABA6}
ArcSoft Software Suite --> C:\WINDOWS\IsUninst.exe -f"C:\Program Files\ArcSoft\Software Suite\Uninst.isu"
Arovax AntiSpyware 2.0.65 --> C:\Program Files\Arovax AntiSpyware\uninst.exe
Arovax Shield 2.1.103 --> C:\Program Files\Arovax Shield\uninst.exe
ATI - Software Uninstall Utility --> C:\Program Files\ATI Technologies\UninstallAll\AtiCimUn.exe
ATI Control Panel --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{0BEDBD4E-2D34-47B5-9973-57E62B29307C}\setup.exe"
ATI Display Driver --> rundll32 C:\WINDOWS\System32\atiiiexx.dll,_InfEngUnInstallINFFile_RunDLL@16 -force_restart -flags:0x2010001 -inf_class:DISPLAY -clean
Broadcom Gigabit Integrated Controller --> C:\Program Files\Common Files\InstallShield\Driver\8\Intel 32\IDriver.exe /M{BE6890C7-31EF-478C-812E-1E2899ABFCA9} /l1033
CA Pest Patrol Realtime Protection --> MsiExec.exe /X{F05A5232-CE5E-4274-AB27-44EB8105898D}
CCleaner (remove only) --> "C:\Program Files\CCleaner\uninst.exe"
CleanCache 3.5 --> "C:\Program Files\CleanCache 3.0\unins000.exe"
Command On Demand for Command Software --> rundll32 advpack.dll,LaunchINFSection C:\csscod\uninst.inf,DefaultUninstall
Crawler Toolbar with Web Security Guard --> C:\PROGRA~1\Crawler\Toolbar\CToolbar.exe uninst
Dell Driver Reset Tool --> MsiExec.exe /I{5905F42D-3F5F-4916-ADA6-94A3646AEE76}
Dell ResourceCD --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{D78653C3-A8FF-415F-92E6-D774E634FF2D}\setup.exe"
Disk Space Recovery Wizard --> C:\Program Files\Disk Space Recovery Wizard\uninstall.exe
Free Internet Eraser 2.20 --> "C:\Program Files\PrivacyEraser Computing\Free Internet Eraser\unins000.exe"
GdiplusUpgrade --> MsiExec.exe /I{5421155F-B033-49DB-9B33-8F80F233D4D5}
Greetings Workshop --> C:\Program Files\Greetings Workshop\SETUP\setup.exe
HP Update --> MsiExec.exe /X{8C6027FD-53DC-446D-BB75-CACD7028A134}
J2SE Runtime Environment 5.0 Update 1 --> MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0150010}
J2SE Runtime Environment 5.0 Update 10 --> MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0150100}
J2SE Runtime Environment 5.0 Update 11 --> MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0150110}
J2SE Runtime Environment 5.0 Update 2 --> MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0150020}
J2SE Runtime Environment 5.0 Update 4 --> MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0150040}
Java(TM) 6 Update 2 --> MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160020}
Java(TM) SE Runtime Environment 6 Update 1 --> MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160010}
Learn.com Player (Uninstall Only) --> C:\Program Files\Learn2.com\StRunner\stuninst.exe
Logitech Desktop Messenger --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{900B1197-53F5-4F46-A882-2CFFFE2EEDCB}\Setup.exe" -l0x9 UNINSTALL
Logitech QuickCam --> MsiExec.exe /I{26AA53D5-1307-48F9-A80F-A4D25F5849D4}
Memories Disc Creator 2.0 --> MsiExec.exe /X{2E132061-C78A-48D4-A899-1D13B9D189FA}
Microsoft Home Publishing 2000 --> MsiExec.exe /I{9944aa9e-362d-11d3-81ab-00c04fb932ba}
Microsoft Office Standard Edition 2003 --> MsiExec.exe /I{91120409-6000-11D3-8CFE-0150048383C9}
Microsoft Works 2000 --> MsiExec.exe /I{56364334-9530-11D2-BFFC-00C04FA329AA}
Mozilla Firefox (2.0.0.6) --> C:\Program Files\Mozilla Firefox\uninstall\helper.exe
MSN Music Assistant --> rundll32 advpack.dll,LaunchINFSection C:\WINDOWS\INF\msninst.inf,Uninstall
overland --> MsiExec.exe /I{766273C1-A39B-47EB-ACE8-DEBDD8094BCC}
Panda ActiveScan --> C:\WINDOWS\system32\ASUninst.exe Panda ActiveScan
QuickTime --> MsiExec.exe /I{95A890AA-B3B1-44B6-9C18-A8F7AB3EE7FC}
RealPlayer --> C:\Program Files\Common Files\Real\Update_OB\r1puninst.exe RealNetworks|RealPlayer|6.0
Registry Mechanic 6.0 --> "C:\Program Files\Registry Mechanic\unins000.exe"
Safety and Security Center Uninstaller --> C:\Program Files\Common Files\AOL\uninstaller.exe
Sonic DLA --> MsiExec.exe /I{1206EF92-2E83-4859-ACCB-2048C3CB7DA6}
Sonic RecordNow! --> MsiExec.exe /I{9541FED0-327F-4DF0-8B96-EF57EF622F19}
Sonic Update Manager --> MsiExec.exe /I{09DA4F91-2A09-4232-AB8C-6BC740096DE3}
SoundMAX --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{F0A37341-D692-11D4-A984-009027EC0A9C}\setup.exe"
Spybot - Search & Destroy 1.4 --> "C:\Program Files\Spybot - Search & Destroy\unins000.exe"
Spyware Terminator --> "C:\Program Files\Spyware Terminator\unins000.exe"
SpywareBlaster v3.5.1 --> "C:\Program Files\SpywareBlaster\unins001.exe"
SUPERAntiSpyware Free Edition --> MsiExec.exe /X{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA}
TBS WMP Plug-in --> C:\PROGRA~1\COMMON~1\INSTAL~1\Driver\1050\INTEL3~1\IDriver.exe /M{DB5F474C-B584-417F-810B-DEBBC1893C2A}
TweakNow RegCleaner Standard --> "C:\Program Files\TweakNow RegCleaner Std\unins000.exe"
URGE --> MsiExec.exe /I{8BBF6DFD-0AD9-43A7-9FBD-BF065E3866AF}
WebCam for MSN Messenger --> Rundll32.exe setupapi,InstallHinfSection DefaultUnInstall 128 C:\WINDOWS\INF\Athena.inf
Windows Backup Utility --> MsiExec.exe /I{76EFFC7C-17A6-479D-9E47-8E658C1695AE}
Windows Defender --> MsiExec.exe /I{B2D7CE29-614A-4ACC-8BFE-009EB3A244C9}
Windows Defender Signatures --> MsiExec.exe /I{A5CC2A09-E9D3-49EC-923D-03874BBD4C2C}
Windows Live Messenger --> MsiExec.exe /I{571700F0-DB9D-4B3A-B03D-35A14BB5939F}
Windows Live OneCare safety scanner --> RunDll32.exe "C:\Program Files\Windows Live Safety Center\wlscCore.dll",UninstallFunction WLSC_SCANNER_PRODUCT
WordWeb --> C:\Program Files\WordWeb\uninst.exe
Yahoo! Browser Services --> C:\PROGRA~1\Yahoo!\Common\unyext.exe
Yahoo! Install Manager --> C:\WINDOWS\system32\regsvr32 /u C:\PROGRA~1\Yahoo!\Common\YINSTH~1.DLL
Yahoo! Internet Mail --> C:\WINDOWS\system32\regsvr32 /u /s C:\PROGRA~1\Yahoo!\Common\ymmapi.dll
Yahoo! Messenger Explorer Bar --> C:\WINDOWS\System32\regsvr32 /u /s C:\PROGRA~1\Yahoo!\MESSEN~1\YHEXBM~1.DLL
Yahoo! Toolbar --> C:\PROGRA~1\Yahoo!\Common\unyt.exe
Yahoo! Widgets --> C:\PROGRA~1\Yahoo!\Widgets\uninstall.exe
ZoneAlarm --> C:\Program Files\Zone Labs\ZoneAlarm\zauninst.exe


-- Application Event Log -------------------------------------------------------

Event Record #/Type402 / Error
Event Submitted/Written: 08/26/2007 08:35:34 PM
Event ID/Source: 1000 / Application Error
Event Description:
Faulting application dss.exe, version 3.2.4.9, faulting module dss.dll, version 0.0.0.0, fault address 0x000020c8.
Processing media-specific event for [dss.exe!ws!]

Event Record #/Type401 / Error
Event Submitted/Written: 08/26/2007 08:34:34 PM
Event ID/Source: 1000 / Application Error
Event Description:
Faulting application dss.exe, version 3.2.4.9, faulting module dss.dll, version 0.0.0.0, fault address 0x000020c8.
Processing media-specific event for [dss.exe!ws!]

Event Record #/Type400 / Error
Event Submitted/Written: 08/26/2007 08:24:42 PM
Event ID/Source: 1000 / Application Error
Event Description:
Faulting application dss.exe, version 3.2.4.9, faulting module dss.dll, version 0.0.0.0, fault address 0x000020c8.
Processing media-specific event for [dss.exe!ws!]

Event Record #/Type399 / Error
Event Submitted/Written: 08/26/2007 08:22:02 PM
Event ID/Source: 1000 / Application Error
Event Description:
Faulting application dss.exe, version 3.2.4.9, faulting module dss.dll, version 0.0.0.0, fault address 0x000020c8.
Processing media-specific event for [dss.exe!ws!]

Event Record #/Type397 / Error
Event Submitted/Written: 08/26/2007 08:20:01 PM
Event ID/Source: 1000 / Application Error
Event Description:
Faulting application dss.exe, version 3.2.4.9, faulting module dss.dll, version 0.0.0.0, fault address 0x000020c8.
Processing media-specific event for [dss.exe!ws!]



-- Security Event Log ----------------------------------------------------------

No Errors/Warnings found.


-- System Event Log ------------------------------------------------------------

Event Record #/Type34334 / Warning
Event Submitted/Written: 08/26/2007 08:56:15 PM
Event ID/Source: 3004 / WinDefend
Event Description:
%JON-JUZ89IXPXTA27 Real-Time Protection agent has detected changes. Microsoft recommends you analyze the software that made these changes for potential risks. You can use information about how these programs operate to choose whether to allow them to run or remove them from your computer. Allow changes only if you trust the program or the software publisher. %JON-JUZ89IXPXTA27 can't undo changes that you allow.

For more information please see the following:
%JON-JUZ89IXPXTA275

Scan ID: {BB480C85-C98A-4F9F-8A8E-D21D6FBCCD64}

User: JON-JUZ89IXPXTA\Jon

Name: %JON-JUZ89IXPXTA271

ID: %JON-JUZ89IXPXTA272

Severity: 1.1.1593.05

Category: 1.1.1593.06

Path Found: %JON-JUZ89IXPXTA276

Alert Type: %JON-JUZ89IXPXTA278

Detection Type: 1.1.1593.02

Event Record #/Type34333 / Warning
Event Submitted/Written: 08/26/2007 08:56:15 PM
Event ID/Source: 3004 / WinDefend
Event Description:
%JON-JUZ89IXPXTA27 Real-Time Protection agent has detected changes. Microsoft recommends you analyze the software that made these changes for potential risks. You can use information about how these programs operate to choose whether to allow them to run or remove them from your computer. Allow changes only if you trust the program or the software publisher. %JON-JUZ89IXPXTA27 can't undo changes that you allow.

For more information please see the following:
%JON-JUZ89IXPXTA275

Scan ID: {13CCCA37-94AA-436F-9D72-B2BCA7B77D66}

User: JON-JUZ89IXPXTA\Jon

Name: %JON-JUZ89IXPXTA271

ID: %JON-JUZ89IXPXTA272

Severity: 1.1.1593.05

Category: 1.1.1593.06

Path Found: %JON-JUZ89IXPXTA276

Alert Type: %JON-JUZ89IXPXTA278

Detection Type: 1.1.1593.02

Event Record #/Type34331 / Warning
Event Submitted/Written: 08/26/2007 08:40:27 PM
Event ID/Source: 3004 / WinDefend
Event Description:
%JON-JUZ89IXPXTA27 Real-Time Protection agent has detected changes. Microsoft recommends you analyze the software that made these changes for potential risks. You can use information about how these programs operate to choose whether to allow them to run or remove them from your computer. Allow changes only if you trust the program or the software publisher. %JON-JUZ89IXPXTA27 can't undo changes that you allow.

For more information please see the following:
%JON-JUZ89IXPXTA275

Scan ID: {60EEEA93-F0CF-45D3-ABA8-B11DF6ADA0B1}

User: JON-JUZ89IXPXTA\Jon

Name: %JON-JUZ89IXPXTA271

ID: %JON-JUZ89IXPXTA272

Severity: 1.1.1593.05

Category: 1.1.1593.06

Path Found: %JON-JUZ89IXPXTA276

Alert Type: %JON-JUZ89IXPXTA278

Detection Type: 1.1.1593.02

Event Record #/Type34304 / Error
Event Submitted/Written: 08/26/2007 08:38:18 PM
Event ID/Source: 7000 / Service Control Manager
Event Description:
The Automatic LiveUpdate Scheduler service failed to start due to the following error:
%%3

Event Record #/Type34280 / Warning
Event Submitted/Written: 08/26/2007 08:20:38 PM
Event ID/Source: 3004 / WinDefend
Event Description:
%JON-JUZ89IXPXTA27 Real-Time Protection agent has detected changes. Microsoft recommends you analyze the software that made these changes for potential risks. You can use information about how these programs operate to choose whether to allow them to run or remove them from your computer. Allow changes only if you trust the program or the software publisher. %JON-JUZ89IXPXTA27 can't undo changes that you allow.

For more information please see the following:
%JON-JUZ89IXPXTA275

Scan ID: {950BBFDD-385E-483D-8257-799F79408BED}

User: JON-JUZ89IXPXTA\Jon

Name: %JON-JUZ89IXPXTA271

ID: %JON-JUZ89IXPXTA272

Severity: 1.1.1593.05

Category: 1.1.1593.06

Path Found: %JON-JUZ89IXPXTA276

Alert Type: %JON-JUZ89IXPXTA278

Detection Type: 1.1.1593.02



-- End of Deckard's System Scanner: finished at 2007-08-26 21:05:59 ------------
Teach in Clovis is offline  
Digg this Post!Add Post to del.icio.usBookmark Post in TechnoratiFurl this Post!Reddit!
Old 08-26-2007, 09:50 PM   #12 (permalink)
Mentor, Analyst - Security Team
 
Deckard's Avatar
 
Join Date: May 2006
Location: Oregon
Posts: 2,503
OS: MacOS X, Debian, OpenBSD, Windows


Re: Unable to post info concerning browser hijacker
I don't think DSS waited long enough for your HJT to finish; could you also post your copy of C:\Program Files\Trend Micro\HijackThis\hijackthis.log ?

I'll look over this and let you know what to do next.
__________________
The chance to begin again in a golden land of opportunity and adventure.

Need HijackThis help? Please read MicroBell's Five Step Process before posting.
Please donate and help keep this site free to all.


UNITE/ASAP: Proud member since 2006
Deckard is offline  
Digg this Post!Add Post to del.icio.usBookmark Post in TechnoratiFurl this Post!Reddit!
Old 08-26-2007, 10:01 PM   #13 (permalink)
Registered User
 
Join Date: Aug 2007
Posts: 14
OS: Win XP


Re: Unable to post info concerning browser hijacker
Checked the Trend file and there is no log inside, only two applications - HijackThis.exe and Jon.exe
Teach in Clovis is offline  
Digg this Post!Add Post to del.icio.usBookmark Post in TechnoratiFurl this Post!Reddit!
Old 08-26-2007, 10:37 PM   #14 (permalink)
Mentor, Analyst - Security Team
 
Deckard's Avatar
 
Join Date: May 2006
Location: Oregon
Posts: 2,503
OS: MacOS X, Debian, OpenBSD, Windows


Re: Unable to post info concerning browser hijacker
Please print out or copy this page to Notepad in order to assist you when carrying out the following instructions. If there is anything you don't understand, please ask BEFORE proceeding with the fixes. Please do these steps in order and do not skip any.

Download FixWareout
Please download FixWareout from one of these sites and save it to your Desktop:
  1. http://downloads.subratam.org/Fixwareout.exe
  2. http://www.bleepingcomputer.com/file...Fixwareout.exe
Now double-click on Fixwareout.exe to run it.
  • Click Next, then Install. Make sure Run fixit is checked and click Finish.
  • The fix will begin. Please follow the prompts.
  • You will be asked to reboot your computer. Please do so.
  • Your system may take longer than usual to load. This is normal.
Once the desktop loads, a text file will open (report.txt). You can close it -- the file has already been saved. However, please include the contents of that report with your next post.


Clear Cookies
Clear your IE cookies. Start>Settings>Control Panel>Internet Options>General. Under Temporary Internet Files, click on Delete Cookies. Then click Delete Files.

Clear your Firefox cookies. From the open browser, go to Tools>Options>Privacy>Cookies>Clear.


Online Scan
Perform an online scan using Internet Explorer with Kaspersky WebScanner. Click on Launch Kaspersky Anti-Virus Web Scanner. You will be prompted to install an ActiveX component from Kaspersky, Click Yes.
  • The program will launch and then begin downloading the latest definition files.
  • Once the files have been downloaded, click on NEXT.
  • Now click on Scan Settings
  • In the scan settings make that the following are selected:
    • Scan using the following Anti-Virus database: extended
    • Scan Options: Scan Archives and Scan Mail Bases
  • Click OK
  • Turn off the real time scanner of any existing antivirus program before performing the online scan. You can turn it back on after the scan is done.
  • Now under select a target to scan, select My Computer
  • The program will start and scan your system.
  • The scan will take a while so be patient and let it run all the way.
  • Once the scan is complete it will display if your system has been infected.
  • Click on the Save as Text button and save the file to your desktop.
  • Copy and paste that information in your next post.
Take note the names and locations of any file it detects but fails to clean.

Note for Internet Explorer 7 users: If at any time you have trouble viewing the accept button of the licence, click on the Zoom tool located at the bottom right of the IE window and set the zoom to 75 %. Once the license accepted, reset to 100%.


With Your Next Post...
Please paste the following with your next reply (in this order please):
  1. The results of FixWareout -- (report.txt),
  2. Kaspersky scan report,
  3. a new HiJackThis log taken after Kaspersky finishes.

Also let me know if you have antivirus software, as it looks like you do not.
__________________
The chance to begin again in a golden land of opportunity and adventure.

Need HijackThis help? Please read MicroBell's Five Step Process before posting.
Please donate and help keep this site free to all.


UNITE/ASAP: Proud member since 2006
Deckard is offline  
Digg this Post!Add Post to del.icio.usBookmark Post in TechnoratiFurl this Post!Reddit!
Old 08-27-2007, 06:56 AM   #15 (permalink)
Registered User
 
Join Date: Aug 2007
Posts: 14
OS: Win XP


Re: Unable to post info concerning browser hijacker
Username "Jon" - 2007-08-27 5:31:34 [Fixwareout edited 2007/07/05]

»»»»»Prerun check
HKLM\SOFTWARE\~\Winlogon\ "System"="kdpvb.exe"

HKEY_LOCAL_MACHINE\system\currentcontrolset\services\tcpip\parameters\interfaces\{B4C0D388-B5D2-446A-B072-49F6F3A9041A}
"nameserver"="85.255.116.83,85.255.112.236" <Value cleared.

Successfully flushed the DNS Resolver Cache.


System was rebooted successfully.

»»»»» Postrun check
HKLM\SOFTWARE\~\Winlogon\ "system"=""
....
....
»»»»» Misc files.
....
»»»»» Checking for older varients.
....
»»»»» Other
C:\WINDOWS\Temp\kdpvb.ren 71183 08/04/2004

»»»»» Current runs (hklm hkcu "run" Keys Only)
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SpywareTerminator"="\"C:\\Program Files\\Spyware Terminator\\SpywareTerminatorShield.exe\""
"QuickTime Task"="\"C:\\Program Files\\QuickTime\\QTTask.exe\" -atboottime"
"HostManager"="\"C:\\Program Files\\Common Files\\AOL\\1107318706\\ee\\AOLSoftware.exe\""
"SunJavaUpdateSched"="\"C:\\Program Files\\Java\\jre1.6.0_02\\bin\\jusched.exe\""
"ISUSPM Startup"="\"C:\\PROGRA~1\\COMMON~1\\INSTAL~1\\UPDATE~1\\ISUSPM.exe\" -startup"
"HP Software Update"="\"C:\\Program Files\\HP\\HP Software Update\\HPWuSchd2.exe\""
"KernelFaultCheck"="C:\\WINDOWS\\system32\\dumprep 0 -k"
"AOLSPScheduler"="\"C:\\Program Files\\Common Files\\AOL\\1107318706\\ee\\services\\safetyCore\\ver210_5_4_1\\AOLSP Scheduler.exe\""
"sscRun"="\"C:\\Program Files\\Common Files\\AOL\\1107318706\\ee\\SSCRun.exe\""
"OASClnt"="\"C:\\Program Files\\mcafee.com\\antivirus\\oasclnt.exe\""
"EmailScan"="\"C:\\Program Files\\mcafee.com\\antivirus\\mcvsescn.exe\""
"ZoneAlarm Client"="\"C:\\Program Files\\Zone Labs\\ZoneAlarm\\zlclient.exe\""
"Adobe Reader Speed Launcher"="\"C:\\Program Files\\Adobe\\Reader 8.0\\Reader\\Reader_sl.exe\""

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ctfmon.exe"="C:\\WINDOWS\\system32\\ctfmon.exe"
"SunJavaUpdateSched"="\"C:\\Program Files\\Java\\jre1.5.0_10\\bin\\jusched.exe\""
"HP Component Manager"="\"C:\\Program Files\\HP\\hpcoretech\\hpcmpmgr.exe\""
"dla"="C:\\WINDOWS\\system32\\dla\\tfswctrl.exe"
"Windows Defender"="\"C:\\Program Files\\Windows Defender\\MSASCui.exe\" -hide"
"AOL Spyware Protection"="\"C:\\PROGRA~1\\COMMON~1\\AOL\\AOLSPY~1\\AOLSP Scheduler.exe\""
"MSMSGS"="\"C:\\Program Files\\Messenger\\msmsgs.exe\" /background"
"UpdateManager"="\"C:\\Program Files\\Common Files\\Sonic\\Update Manager\\sgtray.exe\" /r"
"HostManager"="\"C:\\Program Files\\Common Files\\AOL\\1107318706\\ee\\AOLSoftware.exe\""
"ATIPTA"="\"C:\\Program Files\\ATI Technologies\\ATI Control Panel\\atiptaxx.exe\""
"Arovax Shield"="\"C:\\Program Files\\Arovax Shield\\ArovaxShield.exe\" -tray"
"ASM"="\"C:\\Program Files\\AOL\\Active Security Monitor\\ASMonitor.exe\" HIDEMAIN"
"AOL Fast Start"="\"C:\\Program Files\\AOL 9.0\\AOL.EXE\" -b"
....
Hosts file was reset, If you use a custom hosts file please replace it
»»»»» End report »»»»»

Monday, August 27, 2007 6:42:30 AM
Operating System: Microsoft Windows XP Home Edition, Service Pack 2 (Build 2600)
Kaspersky Online Scanner version: 5.0.93.0
Kaspersky Anti-Virus database last update: 27/08/2007
Kaspersky Anti-Virus database records: 392739
Scan Settings
Scan using the following antivirus database extended
Scan Archives true
Scan Mail Bases true
Scan Target My Computer
C:\
D:\
E:\
F:\
Scan Statistics
Total number of scanned objects 57386
Number of viruses found 1
Number of infected objects 7
Number of suspicious objects 0
Duration of the scan process 00:43:29

Infected Object Name Virus Name Last Action
C:\Documents and Settings\All Users\Application Data\AOL\ACS\1.0\ph Object is locked skipped
C:\Documents and Settings\All Users\Application Data\AOL\ACS\1.0\variable Object is locked skipped
C:\Documents and Settings\All Users\Application Data\AOL\C_AOL 9.0\idb\SNMaster.idx Object is locked skipped
C:\Documents and Settings\All Users\Application Data\AOL\C_AOL 9.0\idb\teachinclovis\MyDB.idx Object is locked skipped
C:\Documents and Settings\All Users\Application Data\AOL\C_AOL 9.0\idb\teachinclovis\toolbar.lst Object is locked skipped
C:\Documents and Settings\All Users\Application Data\AOL\C_AOL 9.0\organize\CACHE\teachinclov00 Object is locked skipped
C:\Documents and Settings\All Users\Application Data\AOL\C_AOL 9.0\organize\teachinclovis Object is locked skipped
C:\Documents and Settings\All Users\Application Data\AOL\C_AOL 9.0\organize\teachinclovis.abi Object is locked skipped
C:\Documents and Settings\All Users\Application Data\AOL\C_AOL 9.0\organize\teachinclovis.aby Object is locked skipped
C:\Documents and Settings\All Users\Application Data\AOL\TopSpeed\2.0\aolstderr.txt Object is locked skipped
C:\Documents and Settings\All Users\Application Data\AOL\TopSpeed\2.0\aolstdout.txt Object is locked skipped
C:\Documents and Settings\All Users\Application Data\AOL\TopSpeed\2.0\aoltsmon.lock Object is locked skipped
C:\Documents and Settings\All Users\Application Data\AOL\TopSpeed\2.0\cache.db Object is locked skipped
C:\Documents and Settings\All Users\Application Data\AOL\TopSpeed\2.0\server.lock Object is locked skipped
C:\Documents and Settings\All Users\Application Data\AOL\TopSpeed\3.0\aolstderr.txt Object is locked skipped
C:\Documents and Settings\All Users\Application Data\AOL\TopSpeed\3.0\aolstdout.txt Object is locked skipped
C:\Documents and Settings\All Users\Application Data\AOL\TopSpeed\3.0\cache.db Object is locked skipped
C:\Documents and Settings\All Users\Application Data\AOL\TopSpeed\3.0\ncoc Object is locked skipped
C:\Documents and Settings\All Users\Application Data\AOL\TopSpeed\3.0\server.lock Object is locked skipped
C:\Documents and Settings\All Users\Application Data\AOL\UserProfiles\All Users\BFTS\BFTSDatabase.dat Object is locked skipped
C:\Documents and Settings\All Users\Application Data\AOL\UserProfiles\All Users\cls\common.cls Object is locked skipped
C:\Documents and Settings\All Users\Application Data\McAfee\BOPDATA\_Date-20070827_Time-053326468_EnterceptExceptions.dat Object is locked skipped
C:\Documents and Settings\All Users\Application Data\McAfee\BOPDATA\_Date-20070827_Time-053326468_EnterceptRules.dat Object is locked skipped
C:\Documents and Settings\All Users\Application Data\McAfee\VirusScan\Logs\OAS.Log Object is locked skipped
C:\Documents and Settings\All Users\Application Data\Microsoft\Network\Downloader\qmgr0.dat Object is locked skipped
C:\Documents and Settings\All Users\Application Data\Microsoft\Network\Downloader\qmgr1.dat Object is locked skipped
C:\Documents and Settings\All Users\Application Data\Microsoft\Windows Defender\Support\MPLog-12062006-061900.log Object is locked skipped
C:\Documents and Settings\Jon\.housecall6.6\Quarantine\Coupons[1].cab.bac_a03172/cpbrkpie.ocx Infected: not-a-virus:AdWare.Win32.Coupons.h skipped
C:\Documents and Settings\Jon\.housecall6.6\Quarantine\Coupons[1].cab.bac_a03172 CAB: infected - 1 skipped
C:\Documents and Settings\Jon\.housecall6.6\Quarantine\Coupons[1].cab.bac_a03172 CryptFF.b: infected - 1 skipped
C:\Documents and Settings\Jon\.housecall6.6\Quarantine\cpbrkpie.ocx.bac_a03172 Infected: not-a-virus:AdWare.Win32.Coupons.h skipped
C:\Documents and Settings\Jon\.housecall6.6\Quarantine\CИ'pons[1].cab.bac_a03244/cpbrkpie.ocx Infected: not-a-virus:AdWare.Win32.Coupons.h skipped
C:\Documents and Settings\Jon\.housecall6.6\Quarantine\CИ'pons[1].cab.bac_a03244 CAB: infected - 1 skipped
C:\Documents and Settings\Jon\.housecall6.6\Quarantine\CИ'pons[1].cab.bac_a03244 CryptFF.b: infected - 1 skipped
C:\Documents and Settings\Jon\Application Data\AOL\C_AOL 9.0\IDB\Apps.Lst Object is locked skipped
C:\Documents and Settings\Jon\Application Data\AOL\C_AOL 9.0\IDB\art.idx Object is locked skipped
C:\Documents and Settings\Jon\Application Data\AOL\C_AOL 9.0\IDB\sap.dat Object is locked skipped
C:\Documents and Settings\Jon\Application Data\AOL\C_AOL 9.0\IDB\spool.lst Object is locked skipped
C:\Documents and Settings\Jon\Application Data\AOL\C_AOL 9.0\IDB\sysnews.lst Object is locked skipped
C:\Documents and Settings\Jon\Cookies\index.dat Object is locked skipped
C:\Documents and Settings\Jon\Local Settings\Application Data\AOL\UserProfiles\All Users\cls\common.cls Object is locked skipped
C:\Documents and Settings\Jon\Local Settings\Application Data\ApplicationHistory\hpqimzone.exe.3204510e.ini.inuse Object is locked skipped
C:\Documents and Settings\Jon\Local Settings\Application Data\HP\Digital Imaging\db\administrativeInfo.dbf Object is locked skipped
C:\Documents and Settings\Jon\Local Settings\Application Data\HP\Digital Imaging\db\albumImagesTable.cdx Object is locked skipped
C:\Documents and Settings\Jon\Local Settings\Application Data\HP\Digital Imaging\db\albumImagesTable.dbf Object is locked skipped
C:\Documents and Settings\Jon\Local Settings\Application Data\HP\Digital Imaging\db\albumTable.cdx Object is locked skipped
C:\Documents and Settings\Jon\Local Settings\Application Data\HP\Digital Imaging\db\albumTable.dbf Object is locked skipped
C:\Documents and Settings\Jon\Local Settings\Application Data\HP\Digital Imaging\db\CB_Server_Errors.txt Object is locked skipped
C:\Documents and Settings\Jon\Local Settings\Application Data\HP\Digital Imaging\db\EXIFTable.cdx Object is locked skipped
C:\Documents and Settings\Jon\Local Settings\Application Data\HP\Digital Imaging\db\EXIFTable.dbf Object is locked skipped
C:\Documents and Settings\Jon\Local Settings\Application Data\HP\Digital Imaging\db\imageTable.cdx Object is locked skipped
C:\Documents and Settings\Jon\Local Settings\Application Data\HP\Digital Imaging\db\imageTable.dbf Object is locked skipped
C:\Documents and Settings\Jon\Local Settings\Application Data\HP\Digital Imaging\db\imageTable.fpt Object is locked skipped
C:\Documents and Settings\Jon\Local Settings\Application Data\HP\Digital Imaging\db\keywordImagesTable.cdx Object is locked skipped
C:\Documents and Settings\Jon\Local Settings\Application Data\HP\Digital Imaging\db\keywordImagesTable.dbf Object is locked skipped
C:\Documents and Settings\Jon\Local Settings\Application Data\HP\Digital Imaging\db\keywordTable.cdx Object is locked skipped
C:\Documents and Settings\Jon\Local Settings\Application Data\HP\Digital Imaging\db\keywordTable.dbf Object is locked skipped
C:\Documents and Settings\Jon\Local Settings\Application Data\HP\Digital Imaging\db\managedFolderTable.dbf Object is locked skipped
C:\Documents and Settings\Jon\Local Settings\Application Data\HP\Digital Imaging\db\pathnameTable.cdx Object is locked skipped
C:\Documents and Settings\Jon\Local Settings\Application Data\HP\Digital Imaging\db\pathnameTable.dbf Object is locked skipped
C:\Documents and Settings\Jon\Local Settings\Application Data\HP\Digital Imaging\db\propertiesTable.cdx Object is locked skipped
C:\Documents and Settings\Jon\Local Settings\Application Data\HP\Digital Imaging\db\propertiesTable.dbf Object is locked skipped
C:\Documents and Settings\Jon\Local Settings\Application Data\HP\Digital Imaging\db\ROFImagesTable.cdx Object is locked skipped
C:\Documents and Settings\Jon\Local Settings\Application Data\HP\Digital Imaging\db\ROFImagesTable.dbf Object is locked skipped
C:\Documents and Settings\Jon\Local Settings\Application Data\HP\Digital Imaging\db\ROFTable.cdx Object is locked skipped
C:\Documents and Settings\Jon\Local Settings\Application Data\HP\Digital Imaging\db\ROFTable.dbf Object is locked skipped
C:\Documents and Settings\Jon\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat Object is locked skipped
C:\Documents and Settings\Jon\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG Object is locked skipped
C:\Documents and Settings\Jon\Local Settings\History\History.IE5\index.dat Object is locked skipped
C:\Documents and Settings\Jon\Local Settings\History\History.IE5\MSHist012007082720070828\index.dat Object is locked skipped
C:\Documents and Settings\Jon\Local Settings\Temp\~DF4A72.tmp Object is locked skipped
C:\Documents and Settings\Jon\Local Settings\Temporary Internet Files\Content.IE5\index.dat Object is locked skipped
C:\Documents and Settings\Jon\ntuser.dat Object is locked skipped
C:\Documents and Settings\Jon\ntuser.dat.LOG Object is locked skipped
C:\Documents and Settings\LocalService\Cookies\index.dat Object is locked skipped
C:\Documents and Settings\LocalService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat Object is locked skipped
C:\Documents and Settings\LocalService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG Object is locked skipped
C:\Documents and Settings\LocalService\Local Settings\History\History.IE5\index.dat Object is locked skipped
C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\index.dat Object is locked skipped
C:\Documents and Settings\LocalService\ntuser.dat Object is locked skipped
C:\Documents and Settings\LocalService\ntuser.dat.LOG Object is locked skipped
C:\Documents and Settings\NetworkService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat Object is locked skipped
C:\Documents and Settings\NetworkService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG Object is locked skipped
C:\Documents and Settings\NetworkService\NTUSER.DAT Object is locked skipped
C:\Documents and Settings\NetworkService\ntuser.dat.LOG Object is locked skipped
C:\hpcmerr.log Object is locked skipped
C:\Program Files\CA\PPRT\logs\2007-08-27.csv Object is locked skipped
C:\System Volume Information\catalog.wci\00000002.ps1 Object is locked skipped
C:\System Volume Information\catalog.wci\00000002.ps2 Object is locked skipped
C:\System Volume Information\catalog.wci\0001001A.ci Object is locked skipped
C:\System Volume Information\catalog.wci\cicat.fid Object is locked skipped
C:\System Volume Information\catalog.wci\cicat.hsh Object is locked skipped
C:\System Volume Information\catalog.wci\CiCL0001.000 Object is locked skipped
C:\System Volume Information\catalog.wci\CiP10000.000 Object is locked skipped
C:\System Volume Information\catalog.wci\CiP20000.000 Object is locked skipped
C:\System Volume Information\catalog.wci\CiPT0000.000 Object is locked skipped
C:\System Volume Information\catalog.wci\CiSL0001.000 Object is locked skipped
C:\System Volume Information\catalog.wci\CiSP0000.000 Object is locked skipped
C:\System Volume Information\catalog.wci\CiST0000.000 Object is locked skipped
C:\System Volume Information\catalog.wci\CiVP0000.000 Object is locked skipped
C:\System Volume Information\catalog.wci\INDEX.000 Object is locked skipped
C:\System Volume Information\catalog.wci\propstor.bk1 Object is locked skipped
C:\System Volume Information\catalog.wci\propstor.bk2 Object is locked skipped
C:\System Volume Information\MountPointManagerRemoteDatabase Object is locked skipped
C:\System Volume Information\_restore{66AAA698-217A-4E32-8142-83E867CAC18B}\RP6\change.log Object is locked skipped
C:\WINDOWS\Debug\PASSWD.LOG Object is locked skipped
C:\WINDOWS\Internet Logs\fwdbglog.txt Object is locked skipped
C:\WINDOWS\Internet Logs\fwpktlog.txt Object is locked skipped
C:\WINDOWS\Internet Logs\IAMDB.RDB Object is locked skipped
C:\WINDOWS\Internet Logs\JON-JUZ89IXPXTA.ldb Object is locked skipped
C:\WINDOWS\Internet Logs\tvDebug.log Object is locked skipped
C:\WINDOWS\SchedLgU.Txt Object is locked skipped
C:\WINDOWS\SoftwareDistribution\ReportingEvents.log Object is locked skipped
C:\WINDOWS\Sti_Trace.log Object is locked skipped
C:\WINDOWS\system32\CatRoot2\edb.log Object is locked skipped
C:\WINDOWS\system32\CatRoot2\tmp.edb Object is locked skipped
C:\WINDOWS\system32\config\AppEvent.Evt Object is locked skipped
C:\WINDOWS\system32\config\default Object is locked skipped
C:\WINDOWS\system32\config\default.LOG Object is locked skipped
C:\WINDOWS\system32\config\Internet.evt Object is locked skipped
C:\WINDOWS\system32\config\SAM Object is locked skipped
C:\WINDOWS\system32\config\SAM.LOG Object is locked skipped
C:\WINDOWS\system32\config\SecEvent.Evt Object is locked skipped
C:\WINDOWS\system32\config\SECURITY Object is locked skipped
C:\WINDOWS\system32\config\SECURITY.LOG Object is locked skipped
C:\WINDOWS\system32\config\software Object is locked skipped
C:\WINDOWS\system32\config\software.LOG Object is locked skipped
C:\WINDOWS\system32\config\SysEvent.Evt Object is locked skipped
C:\WINDOWS\system32\config\system Object is locked skipped
C:\WINDOWS\system32\config\system.LOG Object is locked skipped
C:\WINDOWS\system32\h323log.txt Object is locked skipped
C:\WINDOWS\system32\wbem\Repository\FS\INDEX.BTR Object is locked skipped
C:\WINDOWS\system32\wbem\Repository\FS\INDEX.MAP Object is locked skipped
C:\WINDOWS\system32\wbem\Repository\FS\MAPPING.VER Object is locked skipped
C:\WINDOWS\system32\wbem\Repository\FS\MAPPING1.MAP Object is locked skipped
C:\WINDOWS\system32\wbem\Repository\FS\MAPPING2.MAP Object is locked skipped
C:\WINDOWS\system32\wbem\Repository\FS\OBJECTS.DATA Object is locked skipped
C:\WINDOWS\system32\wbem\Repository\FS\OBJECTS.MAP Object is locked skipped
C:\WINDOWS\Temp\ZLT00bd0.TMP Object is locked skipped
C:\WINDOWS\Temp\ZLT0478e.TMP Object is locked skipped
C:\WINDOWS\wiadebug.log Object is locked skipped
C:\WINDOWS\wiaservc.log Object is locked skipped
C:\WINDOWS\WindowsUpdate.log Object is locked skipped
Scan process completed.


Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 6:45:43 AM, on 8/27/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16512)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\System32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Windows Defender\MsMpEng.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\ZoneLabs\vsmon.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
C:\Program Files\Common Files\AOL\ACS\AOLAcsd.exe
C:\Program Files\Common Files\AOL\TopSpeed\2.0\aoltsmon.exe
C:\Program Files\Common Files\AOL\1107318706\ee\services\safetyCore\ver210_5_4_1\aolavupd.exe
C:\WINDOWS\system32\cisvc.exe
C:\Program Files\CA\PPRT\bin\ITMRTSVC.exe
C:\PROGRA~1\mcafee.com\ANTIVI~1\mcshield.exe
C:\PROGRA~1\mcafee.com\ANTIVI~1\OasClnt.exe
C:\Program Files\Analog Devices\SoundMAX\spkrmon.exe
C:\Program Files\Spyware Terminator\sp_rsser.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\notepad.exe
C:\Program Files\Common Files\AOL\1107318706\ee\AOLSoftware.exe
C:\Program Files\Java\jre1.6.0_02\bin\jusched.exe
C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
C:\Program Files\Common Files\AOL\1107318706\ee\services\safetyCore\ver210_5_4_1\AOLSP Scheduler.exe
C:\Program Files\mcafee.com\antivirus\mcvsescn.exe
C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\HP\hpcoretech\hpcmpmgr.exe
C:\WINDOWS\system32\dla\tfswctrl.exe
C:\PROGRA~1\COMMON~1\AOL\AOLSPY~1\AOLSP Scheduler.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
C:\Program Files\WordWeb\wweb32.exe
C:\Program Files\AOL 9.0\waol.exe
C:\Program Files\Common Files\AOL\1107318706\ee\SSCEvtHdlr.exe
C:\Program Files\Common Files\AOL\1107318706\ee\aolsoftware.exe
C:\Program Files\HP\Digital Imaging\bin\hpqimzone.exe
C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe
C:\WINDOWS\system32\HPZipm12.exe
C:\Program Files\AOL 9.0\shellmon.exe
C:\Program Files\Common Files\AOL\Topspeed\3.0\aoltpsd3.exe
C:\WINDOWS\system32\cidaemon.exe
C:\PROGRA~1\Logitech\Video\AlbumDB2.exe
C:\PROGRA~1\Logitech\Video\FxSvr2.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://us.rd.yahoo.com/customize/ie/...ch/search.html
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://g.msn.com/0SEENUS/SAOS01
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://us.rd.yahoo.com/customize/ie/.../www.yahoo.com
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost
R3 - URLSearchHook: AOLTBSearch Class - {EA756889-2338-43DB-8F07-D1CA6FB9C90D} - C:\Program Files\AOL\AOL Toolbar 5.0\aoltb.dll
F2 - REG:system.ini: UserInit=C:\WINDOWS\system32\Userinit.exe
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn2\yt.dll
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {0A87E45F-537A-40B4-B812-E2544C21A09F} - (no file)
O2 - BHO: (no name) - {1CB20BF0-BBAE-40A7-93F4-6435FF3D0411} - C:\PROGRA~1\Crawler\Toolbar\ctbr.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O2 - BHO: Yahoo! IE Services Button - {5BAB4B5B-68BC-4B02-94D6-2FC0DE4A7897} - C:\Program Files\Yahoo!\Common\yiesrvc.dll
O2 - BHO: (no name) - {5C8B2A36-3DB1-42A4-A3CB-D426709BBFEB} - (no file)
O2 - BHO: DriveLetterAccess - {5CA3D70E-1895-11CF-8E15-001234567890} - C:\WINDOWS\system32\dla\tfswshx.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_02\bin\ssv.dll
O2 - BHO: AOL Toolbar Launcher - {7C554162-8CB7-45A4-B8F4-8EA1C75885F9} - C:\Program Files\AOL\AOL Toolbar 5.0\aoltb.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn2\yt.dll
O3 - Toolbar: AOL Toolbar - {DE9C389F-3316-41A7-809B-AA305ED9D922} - C:\Program Files\AOL\AOL Toolbar 5.0\aoltb.dll
O3 - Toolbar: &Crawler Toolbar - {4B3803EA-5230-4DC3-A7FC-33638F3D3542} - C:\PROGRA~1\Crawler\Toolbar\ctbr.dll
O4 - HKLM\..\Run: [SpywareTerminator] "C:\Program Files\Spyware Terminator\SpywareTerminatorShield.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [HostManager] "C:\Program Files\Common Files\AOL\1107318706\ee\AOLSoftware.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_02\bin\jusched.exe"
O4 - HKLM\..\Run: [ISUSPM Startup] "C:\PROGRA~1\COMMON~1\INSTAL~1\UPDATE~1\ISUSPM.exe" -startup
O4 - HKLM\..\Run: [HP Software Update] "C:\Program Files\HP\HP Software Update\HPWuSchd2.exe"
O4 - HKLM\..\Run: [KernelFaultCheck] C:\WINDOWS\system32\dumprep 0 -k
O4 - HKLM\..\Run: [AOLSPScheduler] "C:\Program Files\Common Files\AOL\1107318706\ee\services\safetyCore\ver210_5_4_1\AOLSP Scheduler.exe"
O4 - HKLM\..\Run: [sscRun] "C:\Program Files\Common Files\AOL\1107318706\ee\SSCRun.exe"
O4 - HKLM\..\Run: [OASClnt] "C:\Program Files\mcafee.com\antivirus\oasclnt.exe"
O4 - HKLM\..\Run: [EmailScan] "C:\Program Files\mcafee.com\antivirus\mcvsescn.exe"
O4 - HKLM\..\Run: [ZoneAlarm Client] "C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe"
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.5.0_10\bin\jusched.exe"
O4 - HKCU\..\Run: [HP Component Manager] "C:\Program Files\HP\hpcoretech\hpcmpmgr.exe"
O4 - HKCU\..\Run: [dla] C:\WINDOWS\system32\dla\tfswctrl.exe
O4 - HKCU\..\Run: [Windows Defender] "C:\Program Files\Windows Defender\MSASCui.exe" -hide
O4 - HKCU\..\Run: [AOL Spyware Protection] "C:\PROGRA~1\COMMON~1\AOL\AOLSPY~1\AOLSP Scheduler.exe"
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [UpdateManager] "C:\Program Files\Common Files\Sonic\Update Manager\sgtray.exe" /r
O4 - HKCU\..\Run: [HostManager] "C:\Program Files\Common Files\AOL\1107318706\ee\AOLSoftware.exe"
O4 - HKCU\..\Run: [ATIPTA] "C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe"
O4 - HKCU\..\Run: [Arovax Shield] "C:\Program Files\Arovax Shield\ArovaxShield.exe" -tray
O4 - HKCU\..\Run: [ASM] "C:\Program Files\AOL\Active Security Monitor\ASMonitor.exe" HIDEMAIN
O4 - HKCU\..\Run: [AOL Fast Start] "C:\Program Files\AOL 9.0\AOL.EXE" -b
O4 - Startup: WordWeb.lnk = C:\Program Files\WordWeb\wweb32.exe
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
O4 - Global Startup: HP Photosmart Premier Fast Start.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqthb08.exe
O8 - Extra context menu item: Crawler Search - tbr:iemenu
O16 - DPF: {0EB0E74A-2A76-4AB3-A7FB-9BD8C29F7F75} (CKAVWebScan Object) - http://www.kaspersky.com/kos/english/kavwebscan_unicode.cab
O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) - http://acs.pandasoftware.com/activescan/as5free/asinst.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{680BF26E-92AF-4952-B122-DEC0EF62D921}: NameServer = 208.67.220.220,208.67.222.222
O17 - HKLM\System\CS1\Services\Tcpip\Parameters: NameServer = 208.67.220.220,208.67.222.222
O17 - HKLM\System\CS2\Services\Tcpip\Parameters: NameServer = 208.67.220.220,208.67.222.222
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: NameServer = 208.67.220.220,208.67.222.222
O18 - Protocol: bw+0 - {F18F570E-D6F3-4DD3-BF01-7306BDD4EFEC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw+0s - {F18F570E-D6F3-4DD3-BF01-7306BDD4EFEC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0 - {F18F570E-D6F3-4DD3-BF01-7306BDD4EFEC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0s - {F18F570E-D6F3-4DD3-BF01-7306BDD4EFEC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00 - {F18F570E-D6F3-4DD3-BF01-7306BDD4EFEC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00s - {F18F570E-D6F3-4DD3-BF01-7306BDD4EFEC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10 - {F18F570E-D6F3-4DD3-BF01-7306BDD4EFEC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10s - {F18F570E-D6F3-4DD3-BF01-7306BDD4EFEC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20 - {F18F570E-D6F3-4DD3-BF01-7306BDD4EFEC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20s - {F18F570E-D6F3-4DD3-BF01-7306BDD4EFEC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30 - {F18F570E-D6F3-4DD3-BF01-7306BDD4EFEC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30s - {F18F570E-D6F3-4DD3-BF01-7306BDD4EFEC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40 - {F18F570E-D6F3-4DD3-BF01-7306BDD4EFEC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40s - {F18F570E-D6F3-4DD3-BF01-7306BDD4EFEC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50 - {F18F570E-D6F3-4DD3-BF01-7306BDD4EFEC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50s - {F18F570E-D6F3-4DD3-BF01-7306BDD4EFEC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60 - {F18F570E-D6F3-4DD3-BF01-7306BDD4EFEC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60s - {F18F570E-D6F3-4DD3-BF01-7306BDD4EFEC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70 - {F18F570E-D6F3-4DD3-BF01-7306BDD4EFEC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70s - {F18F570E-D6F3-4DD3-BF01-7306BDD4EFEC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80 - {F18F570E-D6F3-4DD3-BF01-7306BDD4EFEC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80s - {F18F570E-D6F3-4DD3-BF01-7306BDD4EFEC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90 - {F18F570E-D6F3-4DD3-BF01-7306BDD4EFEC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90s - {F18F570E-D6F3-4DD3-BF01-7306BDD4EFEC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0 - {F18F570E-D6F3-4DD3-BF01-7306BDD4EFEC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0s - {F18F570E-D6F3-4DD3-BF01-7306BDD4EFEC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0 - {F18F570E-D6F3-4DD3-BF01-7306BDD4EFEC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0s - {F18F570E-D6F3-4DD3-BF01-7306BDD4EFEC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0 - {F18F570E-D6F3-4DD3-BF01-7306BDD4EFEC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0s - {F18F570E-D6F3-4DD3-BF01-7306BDD4EFEC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0 - {F18F570E-D6F3-4DD3-BF01-7306BDD4EFEC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0s - {F18F570E-D6F3-4DD3-BF01-7306BDD4EFEC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0 - {F18F570E-D6F3-4DD3-BF01-7306BDD4EFEC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0s - {F18F570E-D6F3-4DD3-BF01-7306BDD4EFEC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0 - {F18F570E-D6F3-4DD3-BF01-7306BDD4EFEC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0s - {F18F570E-D6F3-4DD3-BF01-7306BDD4EFEC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O18 - Protocol: bwg0 - {F18F570E-D6F3-4DD3-BF01-7306BDD4EFEC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwg0s - {F18F570E-D6F3-4DD3-BF01-7306BDD4EFEC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0 - {F18F570E-D6F3-4DD3-BF01-7306BDD4EFEC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0s - {F18F570E-D6F3-4DD3-BF01-7306BDD4EFEC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0 - {F18F570E-D6F3-4DD3-BF01-7306BDD4EFEC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0s - {F18F570E-D6F3-4DD3-BF01-7306BDD4EFEC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0 - {F18F570E-D6F3-4DD3-BF01-7306BDD4EFEC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0s - {F18F570E-D6F3-4DD3-BF01-7306BDD4EFEC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0 - {F18F570E-D6F3-4DD3-BF01-7306BDD4EFEC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0s - {F18F570E-D6F3-4DD3-BF01-7306BDD4EFEC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0 - {F18F570E-D6F3-4DD3-BF01-7306BDD4EFEC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0s - {F18F570E-D6F3-4DD3-BF01-7306BDD4EFEC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0 - {F18F570E-D6F3-4DD3-BF01-7306BDD4EFEC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0s - {F18F570E-D6F3-4DD3-BF01-7306BDD4EFEC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0 - {F18F570E-D6F3-4DD3-BF01-7306BDD4EFEC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0s - {F18F570E-D6F3-4DD3-BF01-7306BDD4EFEC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0 - {F18F570E-D6F3-4DD3-BF01-7306BDD4EFEC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0s - {F18F570E-D6F3-4DD3-BF01-7306BDD4EFEC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0 - {F18F570E-D6F3-4DD3-BF01-7306BDD4EFEC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0s - {F18F570E-D6F3-4DD3-BF01-7306BDD4EFEC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0 - {F18F570E-D6F3-4DD3-BF01-7306BDD4EFEC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0s - {F18F570E-D6F3-4DD3-BF01-7306BDD4EFEC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0 - {F18F570E-D6F3-4DD3-BF01-7306BDD4EFEC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0s - {F18F570E-D6F3-4DD3-BF01-7306BDD4EFEC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0 - {F18F570E-D6F3-4DD3-BF01-7306BDD4EFEC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0s - {F18F570E-D6F3-4DD3-BF01-7306BDD4EFEC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0 - {F18F570E-D6F3-4DD3-BF01-7306BDD4EFEC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0s - {F18F570E-D6F3-4DD3-BF01-7306BDD4EFEC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0 - {F18F570E-D6F3-4DD3-BF01-7306BDD4EFEC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0s - {F18F570E-D6F3-4DD3-BF01-7306BDD4EFEC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0 - {F18F570E-D6F3-4DD3-BF01-7306BDD4EFEC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0s - {F18F570E-D6F3-4DD3-BF01-7306BDD4EFEC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0 - {F18F570E-D6F3-4DD3-BF01-7306BDD4EFEC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0s - {F18F570E-D6F3-4DD3-BF01-7306BDD4EFEC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0 - {F18F570E-D6F3-4DD3-BF01-7306BDD4EFEC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0s - {F18F570E-D6F3-4DD3-BF01-7306BDD4EFEC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0 - {F18F570E-D6F3-4DD3-BF01-7306BDD4EFEC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0s - {F18F570E-D6F3-4DD3-BF01-7306BDD4EFEC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0 - {F18F570E-D6F3-4DD3-BF01-7306BDD4EFEC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0s - {F18F570E-D6F3-4DD3-BF01-7306BDD4EFEC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: offline-8876480 - {F18F570E-D6F3-4DD3-BF01-7306BDD4EFEC} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: tbr - {4D25FB7A-8902-4291-960E-9ADA051CFBBF} - C:\PROGRA~1\Crawler\Toolbar\ctbr.dll
O20 - Winlogon Notify: !SASWinLogon - C:\Program Files\SUPERAntiSpyware\SASWINLO.DLL
O23 - Service: Ad-Aware 2007 Service (aawservice) - Lavasoft AB - C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
O23 - Service: AOL Connectivity Service (AOL ACS) - AOL LLC - C:\Program Files\Common Files\AOL\ACS\AOLAcsd.exe
O23 - Service: AOL TopSpeed Monitor (AOL TopSpeedMonitor) - America Online, Inc - C:\Program Files\Common Files\AOL\TopSpeed\2.0\aoltsmon.exe
O23 - Service: AOL Antivirus Update Service (aolavupd) - AOL LLC - C:\Program Files\Common Files\AOL\1107318706\ee\services\safetyCore\ver210_5_4_1\aolavupd.exe
O23 - Service: AOL Spyware Protection Service (AOLService) - Unknown owner - C:\PROGRA~1\COMMON~1\AOL\AOLSPY~1\\aolserv.exe
O23 - Service: Ati HotKey Poller - Unknown owner - C:\WINDOWS\System32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: CA Pest Patrol Realtime Protection Service (ITMRTSVC) - CA, Inc. - C:\Program Files\CA\PPRT\bin\ITMRTSVC.exe
O23 - Service: McAfee McShield (McShield) - McAfee Inc. - C:\PROGRA~1\mcafee.com\ANTIVI~1\mcshield.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
O23 - Service: spkrmon - Unknown owner - C:\Program Files\Analog Devices\SoundMAX\spkrmon.exe
O23 - Service: Spyware Terminator Clam Service (sp_clamsrv) - Crawler.com - C:\Program Files\WinClamAVShield\sp_clamsrv.exe
O23 - Service: Spyware Terminator Realtime Shield Service (sp_rssrv) - Crawler.com - C:\Program Files\Spyware Terminator\sp_rsser.exe
O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - C:\WINDOWS\system32\ZoneLabs\vsmon.exe

--
End of file - 22645 bytes

Yes, I have a virus program - AOL Virus program - MacAfee.....
Teach in Clovis is offline  
Digg this Post!Add Post to del.icio.usBookmark Post in TechnoratiFurl this Post!Reddit!
Old 08-27-2007, 08:46 AM   #16 (permalink)
Mentor, Analyst - Security Team
 
Deckard's Avatar
 
Join Date: May 2006
Location: Oregon
Posts: 2,503
OS: MacOS X, Debian, OpenBSD, Windows


Re: Unable to post info concerning browser hijacker
Okay, we got Wareout. How is your browser/computer behaving now?

The reason I asked about your AV is that DSS reported that it was disabled.

Uninstall
Click Start > Control Panel > Add / Remove Programs and uninstall the following programs (if they exist):
J2SE Runtime Environment 5.0 Update 1
J2SE Runtime Environment 5.0 Update 2
J2SE Runtime Environment 5.0 Update 4
J2SE Runtime Environment 5.0 Update 10
J2SE Runtime Environment 5.0 Update 11
Java(TM) SE Runtime Environment 6 Update 1
Please let me know if any of these were unable to uninstall. These are old versions of Java which may have security risks associated with them, and malware has been reported to have thability to target specific versions of Java even if you have the latest version installed.
__________________
The chance to begin again in a golden land of opportunity and adventure.

Need HijackThis help? Please read MicroBell's Five Step Process before posting.
Please donate and help keep this site free to all.


UNITE/ASAP: Proud member since 2006
Deckard is offline  
Digg this Post!Add Post to del.icio.usBookmark Post in TechnoratiFurl this Post!Reddit!
Old 08-27-2007, 04:08 PM   #17 (permalink)
Registered User
 
Join Date: Aug 2007
Posts: 14
OS: Win XP


Re: Unable to post info concerning browser hijacker
Okay, I removed all the J2SE and Java Environment, as instructed. All unistalled. The reason why AV was disabled was to be able to run Panda and the other applications. In the past have notice that it was hard to run apps with the AV up and running.
Teach in Clovis is offline  
Digg this Post!Add Post to del.icio.usBookmark Post in TechnoratiFurl this Post!Reddit!
Old 08-27-2007, 04:15 PM   #18 (permalink)
Registered User
 
Join Date: Aug 2007
Posts: 14
OS: Win XP


Re: Unable to post info concerning browser hijacker
Checked both browsers - Firefox and IE - both are running great! No redirection!!
Teach in Clovis is offline  
Digg this Post!Add Post to del.icio.usBookmark Post in TechnoratiFurl this Post!Reddit!
Old 08-27-2007, 11:46 PM   #19 (permalink)
Mentor, Analyst - Security Team
 
Deckard's Avatar
 
Join Date: May 2006
Location: Oregon
Posts: 2,503
OS: MacOS X, Debian, OpenBSD, Windows


Re: Unable to post info concerning browser hijacker
Well done, your logs are clean! Any more issues? If not, you should be good to go but we still have a few items we'd like to address.

Reset hidden/system files and folders
  • Click Start.
  • Open My Computer.
  • Select the Tools menu and click Folder Options.
  • Select the View tab.
  • Deselect the Show hidden files and folders option.
  • Select the Hide file extensions for known types option.
  • Select the Hide protected operating system files option.
  • Click Yes to confirm and then click OK.

Reset System Restore
  • Go to Start>Run, type SYSDM.CPL and press Enter.
  • Select the System Restore tab.
  • Check "Turn off System Restore on all drives" and click Apply.
  • Now uncheck the same option and click OK.

Re-enable Protection
Turn back on any malware prevention tools we might have had you switch off.

Microsoft Updates
It is very important that you get all of the critical updates for your Operating System and Internet Explorer. Keeping your OS and browser up to date will help make you less susceptible to attacks by malware. Using Internet Explorer, please go to Microsoft's Windows Update and download all of the critical updates to help prevent possible re-infection.

Please ensure that you have already patched your system against these recent critical exploits:
Enable Windows Auto Update:
  • Go to Start>Run, type WUAUCPL.CPL and press Enter.
  • Make sure "Keep my computer up to date" is checked.
  • Under settings, choose "Automatically download the updates, and install them on the schedule that I specify".
  • Click on "OK".

Tool Deletions
Feel free to remove these tools and their folders:
  • DSS (C:\Deckard)


Malware Prevention
This is a good time to set up protection against further attacks. You might want to read Tony Klein's "How Did I Get Infected In The First Place?". At the minimum, you need an antivirus that is continually updated, a good firewall, a spyware blocker such as Spyware Blaster, and a real time spyware program such as Spyware Guard to prevent spyware intrusions. I also recommend IE-Spyad, which places over 4,000 websites and domains in the IE Restricted list, thus helping prevent attempts to re-infect your system. All of these have no-strings-attached free versions available. However, be very wary with any security software that is advertised in popups or in other ways. They are not only usually of no use but often have malware in them.

Two more articles you may want to read at your leisure are "KRC Anti-Spyware Tutorial" and "Making Internet Explorer Safer".

The following is a list of free software we recommend:

Realtime Malware Prevention Tools
These programs actively watch your computer for possible malware-related changes and help prevent them. You can run more than one of these at a time.Passive Malware Prevention Tools
These programs configure your computer to prevent known malware-related changes. You can have more than one of these at a time and they take up minimal resources.
  • SpywareBlaster - Install & update SpywareBlaster with the latest definitions. After you have updated, click the button - enable protection for all unprotected items. Check regularly for updates.
  • IE-Spyad - Extract to your desktop and double-click install.bat. Install options #2 and #4. IE-Spyad places more than 4,000 dubious domains in the IE Restricted list, which impairs attempts to infect your system. It prevents any downloads from the sites although you will still be able to connect to them. You can read more about it on it's homepage.
  • MVPS Hosts File - extract and double-click the mvps.bat file. This will replace your current HOSTS file with one that will restrict known ad sites form serving you unsolicited advertisements, preventing your computer from connecting to those sites.
  • McAfee SiteAdvisor - helps to warn you before you interact with a dangerous Web site. Works with both IE and Firefox.

Please respond to this thread one more time so we can mark this thread as resolved.
__________________
The chance to begin again in a golden land of opportunity and adventure.

Need HijackThis help? Please read MicroBell's Five Step Process before posting.
Please donate and help keep this site free to all.


UNITE/ASAP: Proud member since 2006
Deckard is offline  
Digg this Post!Add Post to del.icio.usBookmark Post in TechnoratiFurl this Post!Reddit!
Old 08-28-2007, 06:52 AM   #20 (permalink)
Registered User
 
Join Date: Aug 2007
Posts: 14
OS: Win XP


Re: Unable to post info concerning browser hijacker
Did what was advised. The KB925486 download would not take - error msg advised the version of IE that comp has (SP2) does not match the update trying to install. So, I went and tried the Service Pack 1 version. Error msg advised the update was older than the current IE I have installed.
And, my AOL Virus scan picked up a WebCool hijacker. I went ahead and deleted by using the scan program. Have no idea where it came from as the only places I went on the web was the normal things - ESPN, MSNBC, etc. When I was checking my browsers to see how they performed, I went to Google and did seaches on new vehicle prices. All showed trusted sites according the the McAfee Advisor (which I had downloaded a few mths ago).
Teach in Clovis is offline  
Digg this Post!Add Post to del.icio.usBookmark Post in TechnoratiFurl this Post!Reddit!
 
Page 1 of 2 1 2

« Previous Thread | Next Thread »

Thread Tools

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Trackbacks are Off
Pingbacks are Off
Refbacks are Off



All times are GMT -7. The time now is 07:11 PM.

Contact Us - Tech Support Forum - Archive - Privacy Statement - Top


Copyright 2001 - 2009, Tech Support Forum
Home Tips Plus | Outdoor Basecamp | Automotive Support Forum

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85