Tech Support banner
Status
Not open for further replies.
1 - 20 of 20 Posts

·
Registered
Joined
·
11 Posts
Discussion Starter · #1 ·
hi guys, i was wondering if you would take a quick look at my hjt log. decided to do a scan because my computer has been running really slow lately, thanks

Logfile of HijackThis v1.99.1
Scan saved at 5:37:46 PM, on 1/10/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\compaq\Compaq Advisor\bin\compaq-rba.exe
c:\Program Files\Norton AntiVirus\navapsvc.exe
C:\WINDOWS\System32\wltrysvc.exe
C:\WINDOWS\System32\bcmwltry.exe
C:\WINDOWS\System32\alg.exe
C:\WINDOWS\system32\wuauclt.exe
C:\windows\system\hpsysdrv.exe
C:\WINDOWS\System32\igfxtray.exe
C:\WINDOWS\System32\hkcmd.exe
C:\WINDOWS\system32\dla\tfswctrl.exe
C:\Program Files\WildTangent\DDC\DDCManager\DDCMan.exe
C:\Program Files\COMPAQ\Easy Access Button Support\StartEAK.exe
C:\PROGRA~1\NORTON~1\navapw32.exe
C:\WINDOWS\System32\wltray.exe
C:\PROGRA~1\Sony\SONICS~1\SsAAD.exe
C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
C:\Program Files\Winamp\winampa.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Compaq\Easy Access Button Support\CPQEADM.EXE
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\Compaq\EAKDRV\EAUSBKBD.EXE
C:\WINDOWS\system32\wupdates.exe
C:\Program Files\AIM95\aim.exe
C:\PROGRA~1\Compaq\EASYAC~1\BttnServ.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\Belkin\Belkin 802.11g Wireless PCI Card Configuration Utility\utility.exe
C:\Program Files\WinZip\WZQKPICK.EXE
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Java\jre1.5.0_06\bin\jucheck.exe
C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Desktop\HijackThis.exe

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://store.presario.net/scripts/redirectors/presario/storeredir2.dll?s=consumerfav&c=2c02&lc=0409
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://rd.yahoo.com/customize/yessentials_cq/defaults/sb/*http://www.yahoo.com/search/ie.html
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://store.presario.net/scripts/redirectors/presario/storeredir2.dll?s=consumerfav&c=1c02&lc=0409
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://pops.mmohsix.com/pop06ap.php?src=mm&rand=0.8279034
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Microsoft Internet Explorer provided by Compaq
R3 - URLSearchHook: (no name) - {02EE5B04-F144-47BB-83FB-A60BD91B74A9} - (no file)
F2 - REG:system.ini: UserInit=C:\WINDOWS\system32\userinit.exe,xlmqvnb.exe
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx
O2 - BHO: URLLink - {4A2AACF3-ADF6-11D5-98A9-00E018981B9E} - C:\Program Files\NewDotNet\newdotnet7_22.dll
O2 - BHO: (no name) - {5564E912-07F0-5F0B-8F7A-5827B3E1E895} - C:\WINDOWS\System32\gmpzare.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar3.dll
O2 - BHO: NAV Helper - {BDF3E430-B101-42AD-A544-FADC6B084872} - c:\Program Files\Norton AntiVirus\NavShExt.dll
O3 - Toolbar: Norton AntiVirus - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - c:\Program Files\Norton AntiVirus\NavShExt.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar3.dll
O4 - HKLM\..\Run: [hpsysdrv] c:\windows\system\hpsysdrv.exe
O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\System32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\System32\hkcmd.exe
O4 - HKLM\..\Run: [dla] C:\WINDOWS\system32\dla\tfswctrl.exe
O4 - HKLM\..\Run: [Recguard] C:\WINDOWS\SMINST\RECGUARD.EXE
O4 - HKLM\..\Run: [WCOLOREAL] "C:\Program Files\COMPAQ\Coloreal\coloreal.exe"
O4 - HKLM\..\Run: [DDCM] "C:\Program Files\WildTangent\DDC\DDCManager\DDCMan.exe" -Background
O4 - HKLM\..\Run: [DDCActiveMenu] "C:\Program Files\WildTangent\DDC\ActiveMenu\DDCActiveMenu.exe" -boot
O4 - HKLM\..\Run: [srmclean] C:\Cpqs\Scom\srmclean.exe
O4 - HKLM\..\Run: [CPQEASYACC] C:\Program Files\COMPAQ\Easy Access Button Support\StartEAK.exe
O4 - HKLM\..\Run: [NAV CfgWiz] c:\PROGRA~1\NORTON~1\Cfgwiz.exe /R
O4 - HKLM\..\Run: [NAV Agent] c:\PROGRA~1\NORTON~1\navapw32.exe
O4 - HKLM\..\Run: [wltray.exe] C:\WINDOWS\System32\wltray.exe
O4 - HKLM\..\Run: [SsAAD.exe] C:\PROGRA~1\Sony\SONICS~1\SsAAD.exe
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [w403cc74.dll] RUNDLL32.EXE w403cc74.dll,I2 00081a9c0403cc74
O4 - HKLM\..\Run: [errorhandler] C:\WINDOWS\errorhandler.exe
O4 - HKLM\..\Run: [IpNetwork] C:\Program Files\Network\ipnetwork.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
O4 - HKLM\..\Run: [WinampAgent] C:\Program Files\Winamp\winampa.exe
O4 - HKLM\..\Run: [AlcxMonitor] ALCXMNTR.EXE
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [Microsoft Corp Updates] wupdates.exe
O4 - HKLM\..\RunServices: [Microsoft Corp Updates] wupdates.exe
O4 - HKLM\..\RunOnce: [] C:\Program Files\compaq\Compaq Advisor\bin\compaq-rba.exe -z
O4 - HKCU\..\Run: [Microsoft Works Update Detection] c:\Program Files\Microsoft Works\WkDetect.exe
O4 - HKCU\..\Run: [AIM] C:\Program Files\AIM95\aim.exe -cnetwait.odl
O4 - HKCU\..\Run: [AnyDVD] C:\Program Files\BitLord\Downloads\SlySoft.AnyDVD.v6.0.8.2.Multilanguage.WinAll.Cracked-CRD\crack\AnyDVD.exe
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - Startup: Adobe Gamma.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: Belkin 802.11g Wireless PCI Card Configuration Utility.lnk = ?
O4 - Global Startup: WinZip Quick Pick.lnk = C:\Program Files\WinZip\WZQKPICK.EXE
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~4\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra button: (no name) - {4ABF810A-F11D-4169-9D5F-7D274F2270A1} - C:\WINDOWS\System32\dmonwv.dll (file missing)
O9 - Extra 'Tools' menuitem: Java - {4ABF810A-F11D-4169-9D5F-7D274F2270A1} - C:\WINDOWS\System32\dmonwv.dll (file missing)
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~4\OFFICE11\REFIEBAR.DLL
O9 - Extra button: AOL Instant Messenger (SM) - {AC9E2541-2814-11d5-BC6D-00B0D0A1DE45} - C:\Program Files\AIM95\aim.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O10 - Hijacked Internet access by New.Net
O10 - Hijacked Internet access by New.Net
O10 - Hijacked Internet access by New.Net
O10 - Hijacked Internet access by New.Net
O10 - Hijacked Internet access by New.Net
O12 - Plugin for .spop: C:\Program Files\Internet Explorer\Plugins\NPDocBox.dll
O14 - IERESET.INF: START_PAGE_URL=http://store.presario.net/scripts/redirectors/presario/storeredir2.dll?s=consumerfav&c=2c02&lc=0409
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1155115529536
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1155150179592
O16 - DPF: {E473A65C-8087-49A3-AFFD-C5BC4A10669B} (Quantum Streaming IE Player Class) - http://mvnet.xlontech.net/qm/fox/06101102/qsp2ie06101001.cab
O20 - Winlogon Notify: igfxcui - C:\WINDOWS\SYSTEM32\igfxsrvc.dll
O20 - Winlogon Notify: WindowsUpdate - C:\WINDOWS\system32\WJDBV32I.DLL (file missing)
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: Compaq Advisor (Compaq_RBA) - NeoPlanet - C:\Program Files\compaq\Compaq Advisor\bin\compaq-rba.exe
O23 - Service: Windows Security Drivers (csrs) - Unknown owner - C:\WINDOWS\csrss.exe (file missing)
O23 - Service: iPod Service - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Content Monitoring Tool (msCMTSrvc) - Unknown owner - C:\WINDOWS\system32\msCMTSrvc.exe (file missing)
O23 - Service: MSCSPTISRV - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AVLib\MSCSPTISRV.exe
O23 - Service: Norton AntiVirus Auto Protect Service (navapsvc) - Symantec Corporation - c:\Program Files\Norton AntiVirus\navapsvc.exe
O23 - Service: PACSPTISVR - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AVLib\PACSPTISVR.exe
O23 - Service: ScriptBlocking Service (SBService) - Symantec Corporation - C:\PROGRA~1\COMMON~1\SYMANT~1\SCRIPT~1\SBServ.exe
O23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AVLib\SPTISRV.exe
O23 - Service: SonicStage SCSI Service (SSScsiSV) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AVLib\SSScsiSV.exe
O23 - Service: Broadcom Wireless LAN Tray Service (wltrysvc) - Unknown owner - C:\WINDOWS\System32\wltrysvc.exe
 

·
TSF Security Manager, Emeritus
Joined
·
42,836 Posts
Hello and welcome,

Please refer to the Posting Rules found here Please, Read This Before Posting A Hijackthis Log.

Posting Rules

2. Please be considerate of the fact that the people helping you are not being paid for this, and in fact usually have a job, and have a limited amount of time to help, and can only do so much. If no one has replied to your thread within 48hrs after you posted it, please reply in your thread with the word BUMP. to move it forward.

DO NOT Bump the thread unless 48 hours has passed. We work from oldest to newest posts... so your wait will be longer if you bump it forward before the 48 hours is up.
As you can see, we are quite busy in this forum. One of the Analysts will get to your log as soon as possible.
 

·
TSF Security Manager, Emeritus
Joined
·
42,836 Posts
Hello and thank you--you've been more than patient. :smile:

You've got quite a lot going on here and this will take a couple rounds to clean your system properly, so please stay with me until I've declared the logs clean.

Please copy this page to Notepad and save to your desktop for reference as you will not have any browsers open while you are carrying out portions of these instructions.

It is IMPORTANT that you don't miss a step & perform everything in the correct order/sequence.

***************************************************

Download SDFix and save it to your Desktop. Do not run it yet, just extract it:

Double click SDFix.exe and it will extract the files to %systemdrive%
(Drive that contains the Windows Directory, typically C:SDFix)

--------------------------------------------------------------------

Download LSPFix.exe as we may need it later.

--------------------------------------------------------------------

Download Combofix and save it to your desktop. Do not run it yet.

**Note: It is important that it is saved directly to your desktop**

--------------------------------------------------------------------

Please reboot your computer in Safe Mode by doing the following:
1) Restart your computer
2) After hearing your computer beep once during startup, but before the Windows icon appears, press F8.
3) Instead of Windows loading as normal, a menu should appear
4) Use the up arrow key to highlight Safe Mode and press Enter.
5) Login with your usual account. Make sure to close any open browsers.

--------------------------------------------------------------------

Uninstall the following via the Add/Remove Panel (Start->(Settings)->Control Panel->Add/Remove Programs) if it exists:

NewDotNet

--------------------------------------------------------------------

Open HijackThis and click on 'Do a System Scan Only'. 'Check' the following entries:

F2 - REG:system.ini: UserInit=C:\WINDOWS\system32\userinit.exe,xlmqvnb.exe
O2 - BHO: URLLink - {4A2AACF3-ADF6-11D5-98A9-00E018981B9E} - C:\Program Files\NewDotNet\newdotnet7_22.dll
O2 - BHO: (no name) - {5564E912-07F0-5F0B-8F7A-5827B3E1E895} - C:\WINDOWS\System32\gmpzare.dll
O4 - HKLM\..\Run: [DDCM] "C:\Program Files\WildTangent\DDC\DDCManager\DDCMan.exe" -Background
O9 - Extra button: (no name) - {4ABF810A-F11D-4169-9D5F-7D274F2270A1} - C:\WINDOWS\System32\dmonwv.dll (file missing)
O9 - Extra 'Tools' menuitem: Java - {4ABF810A-F11D-4169-9D5F-7D274F2270A1} - C:\WINDOWS\System32\dmonwv.dll (file missing)
O20 - Winlogon Notify: WindowsUpdate - C:\WINDOWS\system32\WJDBV32I.DLL (file missing)


Click 'Fix Checked' and close HijackThis.

--------------------------------------------------------------------

**Note** While running Hijackthis, verify if these entries still exist:

O10 - Hijacked Internet access by New.Net

If they exist, we would be required to run LSPFix.exe

Instructions for using LSPFix
  1. Double click on LSPFix.exe to run it.
  2. Once running, you will be required to tick the disclaimer - "I know what I'm doing".
  3. You'll find a windows with 2 panes.
    In the left pane which is labeled 'Keep', select all instances of this file:
    • newdotnet7_22.dll/b]
    [*]Then click on the arrow pointing to the right, >>.
    This will move the entry to the right pane labeled 'Remove'[*]Click the Finish button to complete the fix.
Only entries similar to newdotnet.dll need to be removed. If you see any other entries in the right pane, move them back to the "Keep" pane & post the filenames to inform me.

--------------------------------------------------------------------

Go to My Computer->Tools->Folder Options->View tab:
* Under the Hidden files and folders heading:
* select Show hidden files and folders.
* Uncheck Hide protected operating system files (recommended) option.
*Also, make sure there is no checkmark beside Hide file extensions for known file types.
* Click OK.

--------------------------------------------------------------------

Using 'My Computer', navigate to and delete the following Files and Folder

C:\WINDOWS\system32\xlmqvnb.exe
C:\WINDOWS\System32\gmpzare.dll

C:\Program Files\NewDotNet

--------------------------------------------------------------------

Open the extracted SDFix folder and double click RunThis.bat to start the script.
  • Type Y to begin the cleanup process.
  • It will remove any Trojan Services and Registry Entries that it finds then prompt you to press any key to Reboot.
  • Press any Key and it will restart the PC.
  • When the PC restarts the Fixtool will run again and complete the removal process then display Finished, press any key to end the script and load your desktop icons.
  • Once the desktop icons load the SDFix report will open on screen and also save into the SDFix folder as Report.txt
    (Report.txt will also be copied to Clipboard ready for posting back on the forum).
  • Finally paste the contents of the Report.txt back on the forum with a new HijackThis log
--------------------------------------------------------------------

From Normal Mode:

--------------------------------------------------------------------

Please run this online scan to search for any remnants. It can take some time, so please be patient and allow it to run it's full course:

Perform an online scan with Internet Explorer with Panda ActiveScan
  1. Click on
    located at the bottom of the page.
  2. A "pop up" window will appear. * Please ensure that your pop up blocker doesn't block it *
  3. Enter your e-mail address, country, and state & click "Free Online Scan" *The download of the 8 MB Panda's ActiveX control will take place*
Begin the scan by selecting
  • If it finds any malware, it will offer you a report.
  • Please ignore any entry it finds and the offer to buy the program to remove the entry, as we will address this later.
  • Click on
    then click
* You needn't remain online while it's doing the scan but you have to re-connect after it has finished to see the report.
* Turn off the real time scanner of any existing antivirus program while performing the online scan


--------------------------------------------------------------------

Double click on combofix.exe & follow the prompts.
When finished, it shall produce a log for you.

Note:
Do not mouseclick combofix's window while it's running. That may cause it to stall


Post the ComboFix.txt in your next reply.

--------------------------------------------------------------------

Run a new scan with HijackThis and save the log.

--------------------------------------------------------------------

Please include the following in your next reply:

Panda results
ComboFix.txt
New HijackThis log
 

·
Registered
Joined
·
11 Posts
Discussion Starter · #6 ·
Hi Reid thanks so much for your help.
There were a couple of problems in this part of your instructions:
Using 'My Computer', navigate to and delete the following Files and Folder

C:\WINDOWS\system32\xlmqvnb.exe
C:\WINDOWS\System32\gmpzare.dll
C:\Program Files\NewDotNet

First of all, I could not find the first 2 files in my system32 directory. Also, when i try to delete the folder NewDotNet in safe mode, i would get the following: Error Deleting File or Folder
Cannot delete newdotnet7_22.dll: Access is denied.
Make sure the disk is not full or write-protected and the file is not currently in use.
But when I logged back on Normal Mode, I was able to delete NewDotNet. Is this ok? Thanks, I know you have a lot of other people to help out also
 

·
TSF Security Manager, Emeritus
Joined
·
42,836 Posts
You did fine--it's possible those files have been removed by one of our tools. I'll know their 'status' once I see the reports. Ideally, the NewdotNet folder should be removed with the Uninstall of that program. As that's not always the case, I list it as for deletion to ensure it is indeed gone from the system.

Please continue. :smile:
 

·
Registered
Joined
·
11 Posts
Discussion Starter · #8 ·
i am getting this when i open combofix:

16 bit MS-DOS Subsystem
C:\DOCUME~1\HOANG~1.YOU\Desktop\combofix.exe
The NTVDM CPU has encountered an illegal instruction.
CS:0000 IP:0077 OP:f0 37 05 0c 02 Choose 'Close' to terminate the application
 

·
TSF Security Team, Emeritus
Joined
·
26,363 Posts
When did you get this error message? Did it come out immediately when you doubleclicked on combofix? Did you get a screen like this?

 

·
Registered
Joined
·
11 Posts
SDFix Report:

SDFix: Version 1.59

Wed 01/17/2007 - 13:08:07.45

Microsoft Windows XP [Version 5.1.2600]

Running From: C:\SDFix

Safe Mode:

Checking Services:

Name:

CSRS

Path:

"C:\WINDOWS\csrss.exe"

CSRS Deleted

Restoring Windows Registry Entries
Restoring Default Hosts File

Rebooting

Normal Mode:

Checking Files:


Files will be copied to Backups folder then removed:

C:\WINDOWS\system32\wupdates.exe - Deleted



Alternate Stream Check:

C:\WINDOWS\system32
No streams found.
Final Check:

Remaining Services:
------------------


Authorized Application Key Export:

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabled:mad:xpsp2res.dll,-22019"
"C:\\Program Files\\iTunes\\iTunes.exe"="C:\\Program Files\\iTunes\\iTunes.exe:*:Enabled:iTunes"


[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabled:mad:xpsp2res.dll,-22019"


Remaining Files:
---------------

Backups Folder: - C:\SDFix\backups\backups.zip

Checking For Files with Hidden Attributes :

C:\NTDETECT.COM
C:\Program Files\Common Files\??stem32\??erinit.exe
C:\Program Files\??stem32\scanregw.exe
C:\WINDOWS\system32\cdplayer.exe.manifest
C:\WINDOWS\system32\logonui.exe.manifest
C:\WINDOWS\system32\PackethSvc.exe
C:\hiberfil.sys
C:\IO.SYS
C:\MSDOS.SYS
C:\pagefile.sys
C:\WINDOWS\SoftwareDistribution\Download\S-1-5-18\c86f587bfc8aacb0649524aa204fff66\BIT22D.tmp

Finished


Panda Results:

Incident Status Location

Adware:Adware/PurityScan Not disinfected c:\progra~1\stem32~1\scanregw.exe
Spyware:spyware/surfsidekick Not disinfected C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Local Settings\Temporary Internet Files\Ssk.log
Adware:adware/fchelp Not disinfected c:\program files\EQAdvice
Adware:adware/commad Not disinfected Windows Registry
Spyware:spyware/new.net Not disinfected Windows Registry
Spyware:Cookie/Advertising Not disinfected C:\Documents and Settings\Hoang\Application Data\Mozilla\Firefox\Profiles\t3gf56cn.default\cookies.txt[.advertising.com/]
Spyware:Cookie/RealMedia Not disinfected C:\Documents and Settings\Hoang\Application Data\Mozilla\Firefox\Profiles\t3gf56cn.default\cookies.txt[.realmedia.com/]
Spyware:Cookie/Advertising Not disinfected C:\Documents and Settings\Hoang\Application Data\Mozilla\Firefox\Profiles\t3gf56cn.default\cookies.txt[.advertising.com/]
Spyware:Cookie/Casalemedia Not disinfected C:\Documents and Settings\Hoang\Application Data\Mozilla\Firefox\Profiles\t3gf56cn.default\cookies.txt[.casalemedia.com/]
Spyware:Cookie/YieldManager Not disinfected C:\Documents and Settings\Hoang\Application Data\Mozilla\Firefox\Profiles\t3gf56cn.default\cookies.txt[ad.yieldmanager.com/]
Spyware:Cookie/2o7 Not disinfected C:\Documents and Settings\Hoang\Application Data\Mozilla\Firefox\Profiles\t3gf56cn.default\cookies.txt[.2o7.net/]
Spyware:Cookie/Doubleclick Not disinfected C:\Documents and Settings\Hoang\Application Data\Mozilla\Firefox\Profiles\t3gf56cn.default\cookies.txt[.doubleclick.net/]
Spyware:Cookie/Traffic Marketplace Not disinfected C:\Documents and Settings\Hoang\Application Data\Mozilla\Firefox\Profiles\t3gf56cn.default\cookies.txt[.trafficmp.com/]
Spyware:Cookie/BurstNet Not disinfected C:\Documents and Settings\Hoang\Application Data\Mozilla\Firefox\Profiles\t3gf56cn.default\cookies.txt[.burstnet.com/]
Spyware:Cookie/Zedo Not disinfected C:\Documents and Settings\Hoang\Application Data\Mozilla\Firefox\Profiles\t3gf56cn.default\cookies.txt[.zedo.com/]
Spyware:Cookie/Zedo Not disinfected C:\Documents and Settings\Hoang\Application Data\Mozilla\Firefox\Profiles\t3gf56cn.default\cookies.txt[.c5.zedo.com/]
Spyware:Cookie/Zedo Not disinfected C:\Documents and Settings\Hoang\Application Data\Mozilla\Firefox\Profiles\t3gf56cn.default\cookies.txt[.zedo.com/]
Spyware:Cookie/Mediaplex Not disinfected C:\Documents and Settings\Hoang\Application Data\Mozilla\Firefox\Profiles\t3gf56cn.default\cookies.txt[.mediaplex.com/]
Spyware:Cookie/Atlas DMT Not disinfected C:\Documents and Settings\Hoang\Application Data\Mozilla\Firefox\Profiles\t3gf56cn.default\cookies.txt[.atdmt.com/]
Spyware:Cookie/PointRoll Not disinfected C:\Documents and Settings\Hoang\Application Data\Mozilla\Firefox\Profiles\t3gf56cn.default\cookies.txt[.ads.pointroll.com/]
Spyware:Cookie/Tribalfusion Not disinfected C:\Documents and Settings\Hoang\Application Data\Mozilla\Firefox\Profiles\t3gf56cn.default\cookies.txt[.tribalfusion.com/]
Spyware:Cookie/Go Not disinfected C:\Documents and Settings\Hoang\Application Data\Mozilla\Firefox\Profiles\t3gf56cn.default\cookies.txt[.go.com/]
Spyware:Cookie/QuestionMarket Not disinfected C:\Documents and Settings\Hoang\Application Data\Mozilla\Firefox\Profiles\t3gf56cn.default\cookies.txt[.questionmarket.com/]
Spyware:Cookie/BurstBeacon Not disinfected C:\Documents and Settings\Hoang\Application Data\Mozilla\Firefox\Profiles\t3gf56cn.default\cookies.txt[www.burstbeacon.com/]
Spyware:Cookie/Valueclick Not disinfected C:\Documents and Settings\Hoang\Application Data\Mozilla\Firefox\Profiles\t3gf56cn.default\cookies.txt[.valueclick.com/]
Spyware:Cookie/Hitbox Not disinfected C:\Documents and Settings\Hoang\Application Data\Mozilla\Firefox\Profiles\t3gf56cn.default\cookies.txt[.ehg-dig.hitbox.com/]
Spyware:Cookie/Hitbox Not disinfected C:\Documents and Settings\Hoang\Application Data\Mozilla\Firefox\Profiles\t3gf56cn.default\cookies.txt[.hitbox.com/]
Spyware:Cookie/YieldManager Not disinfected C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt[ad.yieldmanager.com/]
Spyware:Cookie/Casalemedia Not disinfected C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt[.casalemedia.com/]
Spyware:Cookie/FastClick Not disinfected C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt[.fastclick.net/]
Spyware:Cookie/Advertising Not disinfected C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt[.advertising.com/]
Spyware:Cookie/Doubleclick Not disinfected C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt[.doubleclick.net/]
Spyware:Cookie/Tribalfusion Not disinfected C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt[.tribalfusion.com/]
Spyware:Cookie/Advertising Not disinfected C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt[servedby.advertising.com/]
Spyware:Cookie/Advertising Not disinfected C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt[.advertising.com/]
Spyware:Cookie/Tribalfusion Not disinfected C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt[.tribalfusion.com/]
Spyware:Cookie/Bridgetrack Not disinfected C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt[citi.bridgetrack.com/]
Spyware:Cookie/Atlas DMT Not disinfected C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt[.atdmt.com/]
Spyware:Cookie/Traffic Marketplace Not disinfected C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt[.trafficmp.com/]
Spyware:Cookie/2o7 Not disinfected C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt[.2o7.net/]
Spyware:Cookie/Mediaplex Not disinfected C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt[.mediaplex.com/]
Spyware:Cookie/Adrevolver Not disinfected C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt[.adrevolver.com/]
Spyware:Cookie/RealMedia Not disinfected C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt[.realmedia.com/]
Spyware:Cookie/BurstNet Not disinfected C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt[.burstnet.com/]
Spyware:Cookie/Maxserving Not disinfected C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt[.maxserving.com/]
Spyware:Cookie/Zedo Not disinfected C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt[.zedo.com/]
Spyware:Cookie/Hbmediapro Not disinfected C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt[.adopt.hbmediapro.com/]
Spyware:Cookie/Humanclick Not disinfected C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt[hc2.humanclick.com/hc/28781733]
Spyware:Cookie/Humanclick Not disinfected C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt[hc2.humanclick.com/]
Spyware:Cookie/Humanclick Not disinfected C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt[hc2.humanclick.com/hc/28781733]
Spyware:Cookie/Humanclick Not disinfected C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt[hc2.humanclick.com/]
Spyware:Cookie/Falkag Not disinfected C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt[.as-us.falkag.net/]
Spyware:Cookie/Bfast Not disinfected C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt[.bfast.com/]
Spyware:Cookie/Tradedoubler Not disinfected C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt[.tradedoubler.com/]
Spyware:Cookie/PointRoll Not disinfected C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt[.ads.pointroll.com/]
Spyware:Cookie/Xiti Not disinfected C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt[.xiti.com/]
Spyware:Cookie/Reliablestats Not disinfected C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt[stats1.reliablestats.com/]
Spyware:Cookie/WinFixer Not disinfected C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt[.winfixer.com/]
Spyware:Cookie/QuestionMarket Not disinfected C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt[.questionmarket.com/]
Spyware:Cookie/Serving-sys Not disinfected C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt[.serving-sys.com/]
Spyware:Cookie/Adserver Not disinfected C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt[.z1.adserver.com/]
Spyware:Cookie/Serving-sys Not disinfected C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt[.serving-sys.com/]
Spyware:Cookie/Adserver Not disinfected C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt[.z1.adserver.com/]
Spyware:Cookie/Serving-sys Not disinfected C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt[.serving-sys.com/]
Spyware:Cookie/BurstBeacon Not disinfected C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt[www.burstbeacon.com/]
Spyware:Cookie/Go Not disinfected C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt[.go.com/]
Spyware:Cookie/Hitbox Not disinfected C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt[.ehg-dig.hitbox.com/]
Spyware:Cookie/Hitbox Not disinfected C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt[.hitbox.com/]
Spyware:Cookie/QkSrv Not disinfected C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt[.qksrv.net/]
Spyware:Cookie/did-it Not disinfected C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt[.did-it.com/]
Spyware:Cookie/Statcounter Not disinfected C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt[.statcounter.com/]
Spyware:Cookie/bravenetA Not disinfected C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt[.bravenet.com/]
Spyware:Cookie/Com.com Not disinfected C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt[.com.com/]
Spyware:Cookie/SexList Not disinfected C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt[.sexlist.com/]
Spyware:Cookie/Bluestreak Not disinfected C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt[.bluestreak.com/]
Spyware:Cookie/Mammamediasolutions Not disinfected C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt[.targetnet.com/]
Spyware:Cookie/onestat.com Not disinfected C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt[stat.onestat.com/]
Spyware:Cookie/Apmebf Not disinfected C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt[.apmebf.com/]
Spyware:Cookie/HotLog Not disinfected C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt[.hotlog.ru/]
Spyware:Cookie/Humanclick Not disinfected C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt[hc2.humanclick.com/hc/48606904]
Spyware:Cookie/Doubleclick Not disinfected C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt[.doubleclick.net/]
Spyware:Cookie/BurstNet Not disinfected C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt[.burstnet.com/]
Spyware:Cookie/QuestionMarket Not disinfected C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt[.questionmarket.com/]
Spyware:Cookie/Atlas DMT Not disinfected C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt[.atdmt.com/]
Spyware:Cookie/2o7 Not disinfected C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt[.2o7.net/]
Spyware:Cookie/Casalemedia Not disinfected C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt[.casalemedia.com/]
Spyware:Cookie/YieldManager Not disinfected C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt[ad.yieldmanager.com/]
Spyware:Cookie/FastClick Not disinfected C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt[.fastclick.net/]
Spyware:Cookie/Adrevolver Not disinfected C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt[.adrevolver.com/]
Spyware:Cookie/FastClick Not disinfected C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt[.fastclick.net/]
Spyware:Cookie/Adrevolver Not disinfected C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt[.adrevolver.com/]
Spyware:Cookie/adultfriendfinder Not disinfected C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt[.adultfriendfinder.com/]
Spyware:Cookie/Sextracker Not disinfected C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt[.sextracker.com/]
Spyware:Cookie/Go Not disinfected C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt[.go.com/]
Spyware:Cookie/Hitbox Not disinfected C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt[.ehg-dig.hitbox.com/]
Spyware:Cookie/Hitbox Not disinfected C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt[.hitbox.com/]
Spyware:Cookie/Hitbox Not disinfected C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt[.ehg-dig.hitbox.com/]
Spyware:Cookie/Mediaplex Not disinfected C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt[.mediaplex.com/]
Spyware:Cookie/Advertising Not disinfected C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt[.advertising.com/]
Spyware:Cookie/Tribalfusion Not disinfected C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt[.tribalfusion.com/]
Spyware:Cookie/Traffic Marketplace Not disinfected C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt[.trafficmp.com/]
Spyware:Cookie/BurstBeacon Not disinfected C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt[www.burstbeacon.com/]
Spyware:Cookie/Statcounter Not disinfected C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt[.statcounter.com/]
Spyware:Cookie/Atwola Not disinfected C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt[.atwola.com/]
Spyware:Cookie/Bluestreak Not disinfected C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt[.bluestreak.com/]
Spyware:Cookie/Valueclick Not disinfected C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt[.valueclick.com/]
Spyware:Cookie/PointRoll Not disinfected C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt[.ads.pointroll.com/]
Spyware:Cookie/RealMedia Not disinfected C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt[.realmedia.com/]
Spyware:Cookie/DriveCleaner Not disinfected C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt[.drivecleaner.com/]
Spyware:Cookie/DriveCleaner Not disinfected C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt[www.drivecleaner.com/]
Spyware:Cookie/DriveCleaner Not disinfected C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt[stats.drivecleaner.com/]
Spyware:Cookie/ErrorSafe Not disinfected C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt[.errorsafe.com/]
Spyware:Cookie/bravenetA Not disinfected C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt[.bravenet.com/]
Spyware:Cookie/RealMedia Not disinfected C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt[.247realmedia.com/]
Spyware:Cookie/Com.com Not disinfected C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt[.com.com/]
Spyware:Cookie/HotLog Not disinfected C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt[.hotlog.ru/]
Spyware:Cookie/SpyLog Not disinfected C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt[.spylog.com/]
Spyware:Cookie/Yadro Not disinfected C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt[.yadro.ru/]
Spyware:Cookie/Overture Not disinfected C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt[.overture.com/]
Spyware:Cookie/Adtech Not disinfected C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt[.adtech.de/]
Spyware:Cookie/Mammamediasolutions Not disinfected C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt[.targetnet.com/]
Spyware:Cookie/cs.sexcounter Not disinfected C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt[.cs.sexcounter.com/]
Spyware:Cookie/MediaTickets Not disinfected C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt[.kinghost.com/]
Spyware:Cookie/BannerBank Not disinfected C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt[ad10.bannerbank.ru/]
Spyware:Cookie/Toplist Not disinfected C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt[.toplist.cz/]
Spyware:Cookie/2o7 Not disinfected C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Cookies\[email protected][1].txt
Spyware:Cookie/888 Not disinfected C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Cookies\[email protected][1].txt
Spyware:Cookie/888 Not disinfected C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Cookies\[email protected][2].txt
Spyware:Cookie/YieldManager Not disinfected C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Cookies\[email protected][2].txt
Spyware:Cookie/YieldManager Not disinfected C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Cookies\[email protected][3].txt
Spyware:Cookie/Hbmediapro Not disinfected C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Cookies\[email protected][2].txt
Spyware:Cookie/Adrevolver Not disinfected C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Cookies\[email protected][2].txt
Spyware:Cookie/Adrevolver Not disinfected C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Cookies\[email protected][3].txt
Spyware:Cookie/Adtech Not disinfected C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Cookies\[email protected][2].txt
Spyware:Cookie/Advertising Not disinfected C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Cookies\[email protected][2].txt
Spyware:Cookie/Atlas DMT Not disinfected C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Cookies\[email protected][2].txt
Spyware:Cookie/Atwola Not disinfected C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Cookies\[email protected][1].txt
Spyware:Cookie/Azjmp Not disinfected C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Cookies\[email protected][2].txt
Spyware:Cookie/Belnk Not disinfected C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Cookies\[email protected][1].txt
Spyware:Cookie/Serving-sys Not disinfected C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Cookies\[email protected][1].txt
Spyware:Cookie/BurstNet Not disinfected C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Cookies\[email protected][1].txt
Spyware:Cookie/Enhance Not disinfected C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Cookies\[email protected][1].txt
Spyware:Cookie/Cassava Not disinfected C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Cookies\[email protected][1].txt
Spyware:Cookie/Ccbill Not disinfected C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Cookies\[email protected][1].txt
Spyware:Cookie/Cgi-bin Not disinfected C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Cookies\[email protected][2].txt
Spyware:Cookie/Cgi-bin Not disinfected C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Cookies\[email protected][4].txt
Spyware:Cookie/Cgi-bin Not disinfected C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Cookies\[email protected][5].txt
Spyware:Cookie/Com.com Not disinfected C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Cookies\[email protected][1].txt
Spyware:Cookie/cs.sexcounter Not disinfected C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Cookies\[email protected][2].txt
Spyware:Cookie/Belnk Not disinfected C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Cookies\[email protected][1].txt
Spyware:Cookie/Doubleclick Not disinfected C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Cookies\[email protected][1].txt
Spyware:Cookie/DriveCleaner Not disinfected C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Cookies\[email protected][2].txt
Spyware:Cookie/ErrorSafe Not disinfected C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Cookies\[email protected][2].txt
Spyware:Cookie/GoStats Not disinfected C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Cookies\[email protected][2].txt
Spyware:Cookie/Screensavers Not disinfected C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Cookies\[email protected][2].txt
Spyware:Cookie/Kmpads Not disinfected C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Cookies\[email protected][2].txt
Spyware:Cookie/Diglnk Not disinfected C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Cookies\[email protected][2].txt
Spyware:Cookie/Mediaplex Not disinfected C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Cookies\[email protected][1].txt
Spyware:Cookie/Media-motor Not disinfected C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Cookies\[email protected][1].txt
Spyware:Cookie/OfferOptimizer Not disinfected C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Cookies\[email protected][2].txt
Spyware:Cookie/QuestionMarket Not disinfected C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Cookies\[email protected][1].txt
Spyware:Cookie/Searchportal Not disinfected C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Cookies\[email protected][2].txt
Spyware:Cookie/Serving-sys Not disinfected C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Cookies\[email protected][1].txt
Spyware:Cookie/Sextracker Not disinfected C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Cookies\[email protected][1].txt
Spyware:Cookie/Statcounter Not disinfected C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Cookies\[email protected][2].txt
Spyware:Cookie/DriveCleaner Not disinfected C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Cookies\[email protected][2].txt
Spyware:Cookie/Reliablestats Not disinfected C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Cookies\[email protected][1].txt
Spyware:Cookie/Systemdoctor Not disinfected C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Cookies\[email protected][2].txt
Spyware:Cookie/Tribalfusion Not disinfected C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Cookies\[email protected][2].txt
Spyware:Cookie/WebPower Not disinfected C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Cookies\[email protected][2].txt
Spyware:Cookie/Winantivirus Not disinfected C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Cookies\[email protected][2].txt
Spyware:Cookie/WinFixer Not disinfected C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Cookies\[email protected][2].txt
Spyware:Cookie/BurstBeacon Not disinfected C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Cookies\[email protected][2].txt
Spyware:Cookie/DriveCleaner Not disinfected C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Cookies\[email protected][2].txt
Spyware:Cookie/Winantivirus Not disinfected C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Cookies\[email protected][1].txt
Spyware:Cookie/Xiti Not disinfected C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Cookies\[email protected][1].txt
Spyware:Cookie/Yadro Not disinfected C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Cookies\[email protected][1].txt
Spyware:Cookie/Zedo Not disinfected C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Cookies\[email protected][2].txt
Adware:Adware/PurityScan Not disinfected C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Desktop\backups\backup-20070117-053008-807.dll
Spyware:Spyware/New.net Not disinfected C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Desktop\backups\backup-20070117-053008-878.dll
Potentially unwanted tool:Application/Processor Not disinfected C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Desktop\SDFix.exe[SDFix\apps\Process.exe]
Spyware:Spyware/SafeSurf Not disinfected C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Desktop\setup.exe[²ÜÇ\ExtractDLL.dll]
Potentially unwanted tool:Application/Processor Not disinfected C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Local Settings\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\Cache\DD0DBD66d01[C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Local Settings\Application Data\Mozilla\Firefox\Profiles\4af7xfci.defau
Adware:Adware/QoolAid Not disinfected C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Local Settings\Temp\tp7543.exe
Spyware:Cookie/YieldManager Not disinfected C:\Documents and Settings\LocalService\Cookies\[email protected][1].txt
Spyware:Cookie/Hbmediapro Not disinfected C:\Documents and Settings\LocalService\Cookies\[email protected][2].txt
Spyware:Cookie/adultfriendfinder Not disinfected C:\Documents and Settings\LocalService\Cookies\[email protected][2].txt
Spyware:Cookie/nCase Not disinfected C:\Documents and Settings\LocalService\Cookies\[email protected][1].txt
Spyware:Cookie/Media-motor Not disinfected C:\Documents and Settings\LocalService\Cookies\[email protected][1].txt
Spyware:Cookie/Paypopup Not disinfected C:\Documents and Settings\LocalService\Cookies\[email protected][2].txt
Spyware:Cookie/WebPower Not disinfected C:\Documents and Settings\LocalService\Cookies\[email protected][2].txt
Spyware:Cookie/WinFixer Not disinfected C:\Documents and Settings\LocalService\Cookies\[email protected][2].txt
Potentially unwanted tool:Application/HideWindow.A Not disinfected C:\hp\bin\FondleWindow.exe
Potentially unwanted tool:Application/KillApp.B Not disinfected C:\hp\bin\KillIt.exe
Potentially unwanted tool:Application/KillApp.A Not disinfected C:\hp\bin\Terminator.exe
Spyware:Spyware/7r7t Not disinfected C:\Program Files\EQAdvice\Uninstall.exe
Adware:Adware/PurityScan Not disinfected C:\Program Files\??stem32\scanregw.exe
Potentially unwanted tool:Application/Processor Not disinfected C:\SDFix\apps\Process.exe
Virus:W32/Gaobot.gen.worm Disinfected C:\SDFix\backups\backups.zip[backups/wupdates.exe]
Adware:Adware/Yazzle Not disinfected C:\SnowballWarsInstaller.exe
Spyware:Spyware/7r7t Not disinfected C:\WINDOWS\pf78ba.exe
Spyware:Spyware/Media-motor Not disinfected C:\WINDOWS\Temp\aupd.exe[²óÇ]
Adware:Adware/Dyfuca Not disinfected C:\WINDOWS\Temp\TMP4C.tmp\mmxateam.exe
Adware:Adware/Dyfuca Not disinfected C:\WINDOWS\Temp\TMP4F.tmp\mmxateam.exe
Adware:Adware/Dyfuca Not disinfected C:\WINDOWS\Temp\TMP50.tmp\mmxateam.exe
Adware:Adware/Dyfuca Not disinfected C:\WINDOWS\Temp\TMP51.tmp\mmxateam.exe
Adware:Adware/Dyfuca Not disinfected C:\WINDOWS\Temp\TMP54.tmp\mmxateam.exe
Adware:Adware/Dyfuca Not disinfected C:\WINDOWS\Temp\TMP55.tmp\mmxateam.exe
Adware:Adware/Dyfuca Not disinfected C:\WINDOWS\Temp\TMP56.tmp\mmxateam.exe
Adware:Adware/Dyfuca Not disinfected C:\WINDOWS\Temp\TMP7D.tmp\mmxateam.exe


ComboFix:
"Hoang" - 07-01-17 17:16:53 Service Pack 2
ComboFix 07-01-16.2 - Running from: "C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Desktop"

(((((((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))


C:\DOCUME~1\HOANG~1.YOU\Application Data\Sskknwrd.dll
C:\snowballwarsinstaller.exe
C:\Program Files\EQAdvice
~ ~ ~ ~ ~ ~ ~ ~ ~ ~ ~ ~ ~ ~ Purity ~ ~ ~ ~ ~ ~ ~ ~~ ~ ~ ~ ~ ~ ~ ~ ~ ~ ~ ~
Folders Quarantined:
C:\qoobox\purity\Program Files\STEM32~1
C:\qoobox\purity\Program Files\Common Files\STEM32~1
C:\qoobox\purity\Program Files\Common Files\STEM32~1\??erinit.exe
C:\qoobox\purity\Program Files\STEM32~1\scanregw.exe
C:\qoobox\purity\Program Files\STEM32~1\??stem32


((((((((((((((((((((((((((((((( Files Created from 2006-12-17 to 2007-01-17 ))))))))))))))))))))))))))))))))))


2007-01-20 00:30 <DIR> d-------- C:\DOCUME~1\HOANG~1.YOU\Application Data\DivX
2007-01-20 00:28 <DIR> d-------- C:\Program Files\DivX
2007-01-17 13:24 <DIR> d-------- C:\WINDOWS\system32\ActiveScan
2007-01-17 05:14 <DIR> d-------- C:\SDFix
2006-12-31 00:42 <DIR> d-------- C:\Program Files\Common Files\NSV
2006-12-30 00:10 <DIR> d-------- C:\Program Files\PokerStars


(((((((((((((((((((((((((((((((((((((((((((((((( Find3M Report )))))))))))))))))))))))))))))))))))))))))))))))))))))


2007-01-19 23:14 -------- d-------- C:\DOCUME~1\HOANG~1.YOU\Application Data\limewire
2007-01-17 15:59 40 ---hs---- C:\DOCUME~1\HOANG~1.YOU\Application Data\.zreglib
2007-01-17 15:42 -------- d-------- C:\Program Files\mozilla firefox
2007-01-17 14:31 -------- d-------- C:\Program Files\winamp
2007-01-17 14:29 -------- d-------- C:\Program Files\quicktime
2007-01-17 14:27 -------- d-------- C:\Program Files\norton antivirus
2007-01-17 14:20 -------- d-------- C:\Program Files\itunes
2007-01-17 14:19 -------- d-------- C:\Program Files\google
2007-01-17 14:08 -------- d-------- C:\Program Files\aim95
2007-01-12 00:25 -------- d-------- C:\DOCUME~1\HOANG~1.YOU\Application Data\apple computer
2006-12-14 15:24 -------- d-------- C:\Program Files\tvuplayer
2006-12-12 06:30 520192 --a------ C:\WINDOWS\system32\divxsm.exe
2006-12-12 06:30 3596288 --a------ C:\WINDOWS\system32\qt-dx331.dll
2006-12-12 06:30 200704 --a------ C:\WINDOWS\system32\ssldivx.dll
2006-12-12 06:30 1044480 --a------ C:\WINDOWS\system32\libdivx.dll
2006-12-12 06:25 806912 --a------ C:\WINDOWS\system32\divx_xx0c.dll
2006-12-12 06:25 806912 --a------ C:\WINDOWS\system32\divx_xx07.dll
2006-12-12 06:25 790528 --a------ C:\WINDOWS\system32\divx_xx11.dll
2006-12-12 06:25 73728 --a------ C:\WINDOWS\system32\dpl100.dll
2006-12-12 06:25 635486 --a------ C:\WINDOWS\system32\divx.dll
2006-12-12 06:25 593920 --a------ C:\WINDOWS\system32\dpugui11.dll
2006-12-12 06:25 57344 --a------ C:\WINDOWS\system32\dpv11.dll
2006-12-12 06:25 53248 --a------ C:\WINDOWS\system32\dpugui10.dll
2006-12-12 06:25 344064 --a------ C:\WINDOWS\system32\dpus11.dll
2006-12-12 06:25 294912 --a------ C:\WINDOWS\system32\dpu11.dll
2006-12-12 06:25 294912 --a------ C:\WINDOWS\system32\dpu10.dll
2006-12-12 06:25 196608 --a------ C:\WINDOWS\system32\dtu100.dll
2006-12-12 06:24 12288 --a------ C:\WINDOWS\system32\divxwmpexttype.dll
2006-12-12 06:24 118784 --a------ C:\WINDOWS\system32\divxcodecupdatechecker.exe
2006-12-06 19:29 2374472 --a------ C:\WINDOWS\system32\wmvcore.dll
2006-12-01 15:31 -------- d-------- C:\DOCUME~1\HOANG~1.YOU\Application Data\sopcast
2006-12-01 15:30 -------- d-------- C:\Program Files\sopcast
2006-11-29 00:13 -------- d---s---- C:\DOCUME~1\HOANG~1.YOU\Application Data\microsoft
2006-11-28 21:43 -------- d-------- C:\Program Files\Common Files\adobe
2006-11-22 02:15 -------- d-------- C:\DOCUME~1\HOANG~1.YOU\Application Data\adobe
2006-11-21 12:11 -------- d-------- C:\Program Files\xvid
2006-11-21 11:04 -------- d-------- C:\Program Files\peerguardian2
2006-11-07 19:06 679424 --a------ C:\WINDOWS\system32\inetcomm.dll
2006-11-01 14:54 180224 --a------ C:\WINDOWS\system32\xvidvfw.dll
2006-11-01 14:52 765952 --a------ C:\WINDOWS\system32\xvidcore.dll
2006-10-19 03:56 713216 --a------ C:\WINDOWS\system32\sxs.dll
2006-10-17 23:32 807032 --a------ C:\WINDOWS\system32\wmv9dmod.dll


(((((((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))

*Note* empty entries & legit default entries are not shown

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run]
"Microsoft Works Update Detection"="c:\\Program Files\\Microsoft Works\\WkDetect.exe"
"AIM"="C:\\Program Files\\AIM95\\aim.exe -cnetwait.odl"
"AnyDVD"="C:\\Program Files\\BitLord\\Downloads\\SlySoft.AnyDVD.v6.0.8.2.Multilanguage.WinAll.Cracked-CRD\\crack\\AnyDVD.exe"
"MSMSGS"="\"C:\\Program Files\\Messenger\\msmsgs.exe\" /background"

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run]
"hpsysdrv"="c:\\windows\\system\\hpsysdrv.exe"
"IgfxTray"="C:\\WINDOWS\\System32\\igfxtray.exe"
"HotKeysCmds"="C:\\WINDOWS\\System32\\hkcmd.exe"
"dla"="C:\\WINDOWS\\system32\\dla\\tfswctrl.exe"
"Recguard"="C:\\WINDOWS\\SMINST\\RECGUARD.EXE"
"WCOLOREAL"="\"C:\\Program Files\\COMPAQ\\Coloreal\\coloreal.exe\""
"DDCActiveMenu"="\"C:\\Program Files\\WildTangent\\DDC\\ActiveMenu\\DDCActiveMenu.exe\" -boot"
"srmclean"="C:\\Cpqs\\Scom\\srmclean.exe"
"CPQEASYACC"="C:\\Program Files\\COMPAQ\\Easy Access Button Support\\StartEAK.exe"
"NAV Agent"="c:\\PROGRA~1\\NORTON~1\\navapw32.exe"
"wltray.exe"="C:\\WINDOWS\\System32\\wltray.exe"
"SsAAD.exe"="C:\\PROGRA~1\\Sony\\SONICS~1\\SsAAD.exe"
"NeroFilterCheck"="C:\\WINDOWS\\system32\\NeroCheck.exe"
"w403cc74.dll"="RUNDLL32.EXE w403cc74.dll,I2 00081a9c0403cc74"
"errorhandler"="C:\\WINDOWS\\errorhandler.exe"
"SunJavaUpdateSched"="C:\\Program Files\\Java\\jre1.5.0_06\\bin\\jusched.exe"
"WinampAgent"="C:\\Program Files\\Winamp\\winampa.exe"
"AlcxMonitor"="ALCXMNTR.EXE"
"QuickTime Task"="\"C:\\Program Files\\QuickTime\\qttask.exe\" -atboottime"
"iTunesHelper"="\"C:\\Program Files\\iTunes\\iTunesHelper.exe\""
"TkBellExe"="\"C:\\Program Files\\Common Files\\Real\\Update_OB\\realsched.exe\" -osboot"

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\OptionalComponents]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\OptionalComponents\IMAIL]
"Installed"="1"

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\OptionalComponents\MAPI]
"Installed"="1"
"NoChange"="1"

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\OptionalComponents\MSFS]
"Installed"="1"

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\runonce]
@="C:\\Program Files\\compaq\\Compaq Advisor\\bin\\compaq-rba.exe -z"

[HKEY_USERS\.default\software\microsoft\windows\currentversion\runonce]
"shdrif"="C:\\WINDOWS\\System32\\shdrif.exe"

[HKEY_USERS\s-1-5-18\software\microsoft\windows\currentversion\runonce]
"shdrif"="C:\\WINDOWS\\System32\\shdrif.exe"

[HKEY_USERS\.default\software\microsoft\windows\currentversion\run]
"services32"="C:\\Program Files\\Common Files\\Windows\\mc-110-12-0000169.exe"
"ufwq"="C:\\PROGRA~1\\COMMON~1\\ufwq\\ufwqm.exe"
"shdrif"="C:\\WINDOWS\\System32\\shdrif.exe"
"EQAdvice"="\"C:\\Program Files\\EQAdvice\\EQAdvice.exe\""
"Aaou"="\"C:\\PROGRA~1\\STEM32~1\\scanregw.exe\" -vt yazr"
"Otrf"="C:\\Program Files\\Common Files\\??stem32\\??erinit.exe"
"irssyncd"="C:\\WINDOWS\\System32\\irssyncd.exe"

[HKEY_USERS\s-1-5-18\software\microsoft\windows\currentversion\run]
"services32"="C:\\Program Files\\Common Files\\Windows\\mc-110-12-0000169.exe"
"ufwq"="C:\\PROGRA~1\\COMMON~1\\ufwq\\ufwqm.exe"
"shdrif"="C:\\WINDOWS\\System32\\shdrif.exe"
"EQAdvice"="\"C:\\Program Files\\EQAdvice\\EQAdvice.exe\""
"Aaou"="\"C:\\PROGRA~1\\STEM32~1\\scanregw.exe\" -vt yazr"
"Otrf"="C:\\Program Files\\Common Files\\??stem32\\??erinit.exe"
"irssyncd"="C:\\WINDOWS\\System32\\irssyncd.exe"

[HKEY_USERS\.default\software\microsoft\windows\currentversion\policies\explorer]

[HKEY_USERS\.default\software\microsoft\windows\currentversion\policies\explorer\Run]
"shdrif"="C:\\WINDOWS\\System32\\shdrif.exe"

[HKEY_USERS\s-1-5-18\software\microsoft\windows\currentversion\policies\explorer]

[HKEY_USERS\s-1-5-18\software\microsoft\windows\currentversion\policies\explorer\Run]
"shdrif"="C:\\WINDOWS\\System32\\shdrif.exe"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"="msapsspc.dll, schannel.dll, digest.dll, msnsspc.dll"


[HKEY_LOCAL_MACHINE\software\Microsoft\Windows NT\CurrentVersion\Svchost]
LocalService REG_MULTI_SZ Alerter\0WebClient\0LmHosts\0RemoteRegistry\0upnphost\0SSDPSRV\0\0
NetworkService REG_MULTI_SZ DnsCache\0\0
rpcss REG_MULTI_SZ RpcSs\0\0
imgsvc REG_MULTI_SZ StiSvc\0\0
termsvcs REG_MULTI_SZ TermService\0\0
HTTPFilter REG_MULTI_SZ HTTPFilter\0\0
DcomLaunch REG_MULTI_SZ DcomLaunch\0TermService\0\0



Contents of the 'Scheduled Tasks' folder
C:\WINDOWS\tasks\Norton AntiVirus - Scan my computer.job
C:\WINDOWS\tasks\Symantec NetDetect.job

Completion time: 07-01-17 17:24:31


New HiJackThis Log:
Logfile of HijackThis v1.99.1
Scan saved at 5:27:21 PM, on 1/17/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\compaq\Compaq Advisor\bin\compaq-rba.exe
c:\Program Files\Norton AntiVirus\navapsvc.exe
C:\WINDOWS\System32\wltrysvc.exe
C:\WINDOWS\System32\bcmwltry.exe
C:\WINDOWS\system32\wscntfy.exe
C:\windows\system\hpsysdrv.exe
C:\WINDOWS\System32\igfxtray.exe
C:\WINDOWS\System32\hkcmd.exe
C:\WINDOWS\system32\dla\tfswctrl.exe
C:\Program Files\COMPAQ\Easy Access Button Support\StartEAK.exe
C:\PROGRA~1\NORTON~1\navapw32.exe
C:\WINDOWS\System32\wltray.exe
C:\PROGRA~1\Sony\SONICS~1\SsAAD.exe
C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
C:\Program Files\Winamp\winampa.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\Program Files\AIM95\aim.exe
C:\Program Files\Compaq\Easy Access Button Support\CPQEADM.EXE
C:\Compaq\EAKDRV\EAUSBKBD.EXE
C:\Program Files\Belkin\Belkin 802.11g Wireless PCI Card Configuration Utility\utility.exe
C:\Program Files\WinZip\WZQKPICK.EXE
C:\PROGRA~1\Compaq\EASYAC~1\BttnServ.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Java\jre1.5.0_06\bin\jucheck.exe
C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Desktop\HijackThis.exe

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://store.presario.net/scripts/redirectors/presario/storeredir2.dll?s=consumerfav&c=2c02&lc=0409
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://rd.yahoo.com/customize/yessentials_cq/defaults/sb/*http://www.yahoo.com/search/ie.html
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://pops.mmohsix.com/pop06ap.php?src=mm&rand=0.8279034
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Microsoft Internet Explorer provided by Compaq
R3 - URLSearchHook: (no name) - {02EE5B04-F144-47BB-83FB-A60BD91B74A9} - (no file)
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar3.dll
O2 - BHO: NAV Helper - {BDF3E430-B101-42AD-A544-FADC6B084872} - c:\Program Files\Norton AntiVirus\NavShExt.dll
O3 - Toolbar: Norton AntiVirus - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - c:\Program Files\Norton AntiVirus\NavShExt.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar3.dll
O4 - HKLM\..\Run: [hpsysdrv] c:\windows\system\hpsysdrv.exe
O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\System32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\System32\hkcmd.exe
O4 - HKLM\..\Run: [dla] C:\WINDOWS\system32\dla\tfswctrl.exe
O4 - HKLM\..\Run: [Recguard] C:\WINDOWS\SMINST\RECGUARD.EXE
O4 - HKLM\..\Run: [WCOLOREAL] "C:\Program Files\COMPAQ\Coloreal\coloreal.exe"
O4 - HKLM\..\Run: [DDCActiveMenu] "C:\Program Files\WildTangent\DDC\ActiveMenu\DDCActiveMenu.exe" -boot
O4 - HKLM\..\Run: [srmclean] C:\Cpqs\Scom\srmclean.exe
O4 - HKLM\..\Run: [CPQEASYACC] C:\Program Files\COMPAQ\Easy Access Button Support\StartEAK.exe
O4 - HKLM\..\Run: [NAV Agent] c:\PROGRA~1\NORTON~1\navapw32.exe
O4 - HKLM\..\Run: [wltray.exe] C:\WINDOWS\System32\wltray.exe
O4 - HKLM\..\Run: [SsAAD.exe] C:\PROGRA~1\Sony\SONICS~1\SsAAD.exe
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [w403cc74.dll] RUNDLL32.EXE w403cc74.dll,I2 00081a9c0403cc74
O4 - HKLM\..\Run: [errorhandler] C:\WINDOWS\errorhandler.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
O4 - HKLM\..\Run: [WinampAgent] C:\Program Files\Winamp\winampa.exe
O4 - HKLM\..\Run: [AlcxMonitor] ALCXMNTR.EXE
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\RunOnce: [] C:\Program Files\compaq\Compaq Advisor\bin\compaq-rba.exe -z
O4 - HKCU\..\Run: [Microsoft Works Update Detection] c:\Program Files\Microsoft Works\WkDetect.exe
O4 - HKCU\..\Run: [AIM] C:\Program Files\AIM95\aim.exe -cnetwait.odl
O4 - HKCU\..\Run: [AnyDVD] C:\Program Files\BitLord\Downloads\SlySoft.AnyDVD.v6.0.8.2.Multilanguage.WinAll.Cracked-CRD\crack\AnyDVD.exe
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - Startup: Adobe Gamma.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: Belkin 802.11g Wireless PCI Card Configuration Utility.lnk = ?
O4 - Global Startup: WinZip Quick Pick.lnk = C:\Program Files\WinZip\WZQKPICK.EXE
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~4\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~4\OFFICE11\REFIEBAR.DLL
O9 - Extra button: AOL Instant Messenger (SM) - {AC9E2541-2814-11d5-BC6D-00B0D0A1DE45} - C:\Program Files\AIM95\aim.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O12 - Plugin for .spop: C:\Program Files\Internet Explorer\Plugins\NPDocBox.dll
O14 - IERESET.INF: START_PAGE_URL=http://store.presario.net/scripts/redirectors/presario/storeredir2.dll?s=consumerfav&c=2c02&lc=0409
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1155115529536
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1155150179592
O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) - http://acs.pandasoftware.com/activescan/as5free/asinst.cab
O16 - DPF: {E473A65C-8087-49A3-AFFD-C5BC4A10669B} (Quantum Streaming IE Player Class) - http://mvnet.xlontech.net/qm/fox/06101102/qsp2ie06101001.cab
O20 - Winlogon Notify: igfxcui - C:\WINDOWS\SYSTEM32\igfxsrvc.dll
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: Compaq Advisor (Compaq_RBA) - NeoPlanet - C:\Program Files\compaq\Compaq Advisor\bin\compaq-rba.exe
O23 - Service: iPod Service - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Content Monitoring Tool (msCMTSrvc) - Unknown owner - C:\WINDOWS\system32\msCMTSrvc.exe (file missing)
O23 - Service: MSCSPTISRV - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AVLib\MSCSPTISRV.exe
O23 - Service: Norton AntiVirus Auto Protect Service (navapsvc) - Symantec Corporation - c:\Program Files\Norton AntiVirus\navapsvc.exe
O23 - Service: PACSPTISVR - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AVLib\PACSPTISVR.exe
O23 - Service: ScriptBlocking Service (SBService) - Symantec Corporation - C:\PROGRA~1\COMMON~1\SYMANT~1\SCRIPT~1\SBServ.exe
O23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AVLib\SPTISRV.exe
O23 - Service: SonicStage SCSI Service (SSScsiSV) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AVLib\SSScsiSV.exe
O23 - Service: Broadcom Wireless LAN Tray Service (wltrysvc) - Unknown owner - C:\WINDOWS\System32\wltrysvc.exe
 

·
TSF Security Manager, Emeritus
Joined
·
42,836 Posts
Hello, I'm glad you got the issue with combofix worked out as that log has proven quite useful. :sayyes:

We stilll have quite a bit to do here, so please stay with me.

Please copy this page to Notepad and save to your desktop for reference as you will not have any browsers open while you are carrying out portions of these instructions.

It is IMPORTANT that you don't miss a step & perform everything in the correct order/sequence.

***************************************************

Download the attached blah56.zip file to your desktop.

Double click on the zip folder, then double click on the .reg file within. Click yes to allow it to merge into your registry.

--------------------------------------------------------------------

Download AVG Anti-Spyware from HERE and save that file to your desktop.
This is a 30 day trial of the program
  1. Once you have downloaded AVG Anti-Spyware, locate the icon on the desktop and double-click it to launch the set up program.
  2. Once the setup is complete you will need run AVG Anti-Spyware and update the definition files.
  3. On the main screen select the icon "Update" then select the "Update now" link.
    • Next select the "Start Update" button, the update will start and a progress bar will show the updates being installed.
  4. Once the update has completed select the "Scanner" icon at the top of the screen, then select the "Settings" tab.
  5. Once in the Settings screen click on "Recommended actions" and then select "Quarantine".
  6. Under "Reports"
    • Select "Automatically generate report after every scan"
    • Un-Select "Only if threats were found"
Close AVG Anti-Spyware. Do Not run a scan just yet, we will shortly.

--------------------------------------------------------------------

Please download Brute Force Uninstaller to your desktop.
  • Right click the BFU folder on your desktop, and choose Extract All
  • Click "Next"
  • In the box to choose where to extract the files to,
  • Click "Browse"
  • Click on the + sign next to "My Computer"
  • Click on "Local Disk (C:) or whatever your primary drive is
  • Click "Make New Folder"
  • Type in BFU
  • Click "Next", and Uncheck the "Show Extracted Files" box and then click "Finish".
RIGHT-CLICK HERE and choose "Save As" (in IE it's "Save Target As") in order to download Alcra PLUS Remover.
Save it in the same folder you made earlier (c:BFU).

Do not do anything with these yet.

--------------------------------------------------------------------

Reboot your computer in Safe Mode by doing the following:
1) Restart your computer
2) After hearing your computer beep once during startup, but before the Windows icon appears, press F8.
3) Instead of Windows loading as normal, a menu should appear
4) Use the up arrow key to highlight Safe Mode and press Enter.
5) Login on your usual account. Make sure to close any open browsers.

--------------------------------------------------------------------


Uninstall the following via the Add/Remove Panel (Start->(Settings)->Control Panel->Add/Remove Programs) if they exist:

EQAdvice

--------------------------------------------------------------------

Open HijackThis and click on 'Do a System Scan Only'. 'Check' the following entries:

R3 - URLSearchHook: (no name) - {02EE5B04-F144-47BB-83FB-A60BD91B74A9} - (no file)
O4 - HKLM\..\Run: [w403cc74.dll] RUNDLL32.EXE w403cc74.dll,I2 00081a9c0403cc74
O4 - HKLM\..\Run: [errorhandler] C:\WINDOWS\errorhandler.exe
O4 - HKLM\..\Run: [AlcxMonitor] ALCXMNTR.EXE



Click 'Fix Checked' and close HijackThis.

--------------------------------------------------------------------

Using 'My Computer', navigate to and delete the following Files and Folders if they still exist.

C:\Program Files\Common Files\ufwq
C:\Program Files\EQAdvice
C:\WINDOWS\System32\irssyncd.exe


--------------------------------------------------------------------

IMPORTANT: Do not open any other windows or programs while AVG Anti-Spyware is scanning, it may interfere with the scanning proccess:
Run AVG Anti-Spyware with it's updated definitions:(...it's important that all windows must be closed)
  • Click Scanner
  • Click on the Scan tab
  • Click Complete System Scan to begin scanning.
    Once the scan is complete do the following:
  • If you have any infections you will prompted, **Please ensure it is set to Quarantine then select "Apply all actions"
  • Once finished, click the Save report button, then click Save Report As and save it to your desktop. (make sure to remember where you saved that file, this is important).
**AVG Anti-Spyware is compatible with most AV and anti-spyware products, and the free version will continue to be useful as a second anti-malware scanner.

--------------------------------------------------------------------

Now, please go to Start > My Computer and navigate to the C:BFU folder.
  • Start the Brute Force Uninstaller by doubleclicking BFU.exe
  • Beside the scriptline to execute field click the folder icon
    and select alcanshorty.bfu by double clicking on it.
  • Press Execute and let it do it’s job. (You ought to see a blue progress bar if you did this correctly.)
  • Wait for the complete script execution box to pop up and press OK.
  • Press exit to terminate the BFU program.

--------------------------------------------------------------------

Reboot into Normal Mode.

--------------------------------------------------------------------

Upload this file C:\WINDOWS\System32\shdrif.exe to http://virusscan.jotti.org and report back what it found.

At the top of the window you should see "File to Upload & scan" and a blank box. Copy and paste the red text from above into the box. Then click "submit".

When it is finished, please copy and paste the information listed under "Service" and "Scanner Results" here.

--------------------------------------

Perform an online scan using Internet Explorer with Panda ActiveScan
** click on "Free use ActiveScan" located on the top right hand corner
  1. Click Check Now & a 'pop up' window shall appear. *ensure that your pop up blocker doesn't block it
  2. Enter your e-mail address, country, and state & click Scan Now ...begins downloading 8 MB Panda's ActiveX controls
Begin the scan by selecting My Computer
  • If it finds any malware, it will offer you a report.
    [*] Please ignore any entry it finds and wants you to buy the program for removal as we will address this later.
  • Click on see report. Then click Save report
--------------------------------------------------------------------

Double click on combofix.exe & follow the prompts.
When finished, it shall produce a log for you.

Note:
Do not mouseclick combofix's window while it's running. That may cause it to stall


Post the ComboFix.txt in your next reply.

--------------------------------------------------------------------

Run a new scan with HijackThis and save the log.

--------------------------------------------------------------------

Please include the following in your next reply:

AVG A/S results
jotti results
Panda results
ComboFix.txt
New HijackThis log
 

·
TSF Security Manager, Emeritus
Joined
·
42,836 Posts
That's fine, please continue. :sayyes:
 

·
Registered
Joined
·
11 Posts
Discussion Starter · #16 ·
AVG A/S results
+ Created at: 11:36:41 PM 1/17/2007
+ Scan result:
C:\System Volume Information\_restore{CD45504F-D983-486E-9C46-F5C3E4ADCBD7}\RP272\A0534373.exe -> Adware.CASClient : Cleaned with backup (quarantined).
C:\System Volume Information\_restore{CD45504F-D983-486E-9C46-F5C3E4ADCBD7}\RP266\A0534245.dll -> Adware.E2give : Cleaned with backup (quarantined).
C:\System Volume Information\_restore{CD45504F-D983-486E-9C46-F5C3E4ADCBD7}\RP266\A0534246.dll -> Adware.Ezula : Cleaned with backup (quarantined).
C:\System Volume Information\_restore{CD45504F-D983-486E-9C46-F5C3E4ADCBD7}\RP272\A0534374.exe -> Adware.FCHelp : Cleaned with backup (quarantined).
HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Policies\AMeOpt -> Adware.InternetOptimizer : Cleaned with backup (quarantined).
HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Policies\AMeOpt -> Adware.InternetOptimizer : Cleaned with backup (quarantined).
C:\System Volume Information\_restore{CD45504F-D983-486E-9C46-F5C3E4ADCBD7}\RP266\A0534243.ocx -> Adware.MediaMotor : Cleaned with backup (quarantined).
C:\System Volume Information\_restore{CD45504F-D983-486E-9C46-F5C3E4ADCBD7}\RP266\A0534244.exe -> Adware.MediaMotor : Cleaned with backup (quarantined).
C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Desktop\backups\backup-20070117-053008-878.dll -> Adware.NewDotNet : Cleaned with backup (quarantined).
C:\System Volume Information\_restore{CD45504F-D983-486E-9C46-F5C3E4ADCBD7}\RP272\A0534288.dll -> Adware.NewDotNet : Cleaned with backup (quarantined).
HKLM\SOFTWARE\Classes\Tldctl2.URLLink -> Adware.NewDotNet : Cleaned with backup (quarantined).
HKLM\SOFTWARE\Classes\Tldctl2.URLLink.1 -> Adware.NewDotNet : Cleaned with backup (quarantined).
HKLM\SOFTWARE\Classes\Tldctl2.URLLink\CLSID -> Adware.NewDotNet : Cleaned with backup (quarantined).
HKLM\SOFTWARE\Classes\Tldctl2.URLLink\CurVer -> Adware.NewDotNet : Cleaned with backup (quarantined).
HKLM\SOFTWARE\New.net -> Adware.NewDotNet : Cleaned with backup (quarantined).
HKU\.DEFAULT\Software\New.net -> Adware.NewDotNet : Cleaned with backup (quarantined).
HKU\S-1-5-18\Software\New.net -> Adware.NewDotNet : Cleaned with backup (quarantined).
HKU\S-1-5-21-1907411925-126639907-2800509490-1006\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{4A2AACF3-ADF6-11D5-98A9-00E018981B9E} -> Adware.NewDotNet : Cleaned with backup (quarantined).
HKU\S-1-5-21-1907411925-126639907-2800509490-1006\Software\New.net -> Adware.NewDotNet : Cleaned with backup (quarantined).
C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Desktop\backups\backup-20070117-053008-807.dll -> Adware.PurityScan : Cleaned with backup (quarantined).
C:\QooBox\Purity\Program Files\Common Files\STEM32~1\υѕerinit.exe -> Adware.PurityScan : Cleaned with backup (quarantined).
C:\System Volume Information\_restore{CD45504F-D983-486E-9C46-F5C3E4ADCBD7}\RP272\A0534280.dll -> Adware.PurityScan : Cleaned with backup (quarantined).
HKU\.DEFAULT\Software\DNS -> Adware.Shorty : Cleaned with backup (quarantined).
HKU\S-1-5-18\Software\DNS -> Adware.Shorty : Cleaned with backup (quarantined).
C:\WINDOWS\chadch.exe -> Adware.SideFind : Cleaned with backup (quarantined).
HKU\.DEFAULT\Software\SurfSideKick3 -> Adware.SurfSide : Cleaned with backup (quarantined).
HKU\.DEFAULT\Software\SurfSideKick3\Internet Explorer -> Adware.SurfSide : Cleaned with backup (quarantined).
HKU\S-1-5-18\Software\SurfSideKick3 -> Adware.SurfSide : Cleaned with backup (quarantined).
HKU\S-1-5-18\Software\SurfSideKick3\Internet Explorer -> Adware.SurfSide : Cleaned with backup (quarantined).
C:\System Volume Information\_restore{CD45504F-D983-486E-9C46-F5C3E4ADCBD7}\RP272\A0534327.exe -> Backdoor.Rbot.aju : Cleaned with backup (quarantined).
C:\QooBox\Purity\Program Files\STEM32~1\scanregw.exe -> Downloader.PurityScan.cj : Cleaned with backup (quarantined).
C:\Program Files\BitLord\Downloads\CloneCD, CloneDVD & anyDVD Inc. Serials.rar/CloneDVD\AnyDVD 1.3.1.1\Crack by Viper Zx\vzx_anydvd1311.exe -> Not-A-Virus.VirTool.Win32.AvSpoffer.a : Cleaned with backup (quarantined).
:mozilla.692:C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt -> TrackingCookie.247realmedia : Cleaned.
:mozilla.137:C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.138:C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.139:C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.140:C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.141:C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.142:C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.143:C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.144:C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.145:C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.146:C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.147:C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.148:C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.149:C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.150:C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.151:C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.152:C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.153:C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.154:C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.155:C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.156:C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.157:C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.158:C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.159:C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.160:C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.161:C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.162:C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.163:C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.164:C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.165:C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.166:C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.167:C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.168:C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.171:C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.172:C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.173:C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.174:C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.175:C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.176:C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.177:C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.178:C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.179:C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.180:C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.181:C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.182:C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.183:C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.184:C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.185:C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.186:C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.187:C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.188:C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.42:C:\Documents and Settings\Hoang\Application Data\Mozilla\Firefox\Profiles\t3gf56cn.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.43:C:\Documents and Settings\Hoang\Application Data\Mozilla\Firefox\Profiles\t3gf56cn.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.44:C:\Documents and Settings\Hoang\Application Data\Mozilla\Firefox\Profiles\t3gf56cn.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.45:C:\Documents and Settings\Hoang\Application Data\Mozilla\Firefox\Profiles\t3gf56cn.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.460:C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.46:C:\Documents and Settings\Hoang\Application Data\Mozilla\Firefox\Profiles\t3gf56cn.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.47:C:\Documents and Settings\Hoang\Application Data\Mozilla\Firefox\Profiles\t3gf56cn.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.498:C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.542:C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.774:C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.83:C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.84:C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.85:C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.86:C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.87:C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.88:C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.89:C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.90:C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.91:C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.92:C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.93:C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.94:C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.95:C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.96:C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.97:C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Cookies\[email protected][1].txt -> TrackingCookie.2o7 : Cleaned.
C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Cookies\[email protected][1].txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.157:C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt -> TrackingCookie.Adbrite : Cleaned.
:mozilla.158:C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt -> TrackingCookie.Adbrite : Cleaned.
:mozilla.159:C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt -> TrackingCookie.Adbrite : Cleaned.
:mozilla.226:C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt -> TrackingCookie.Adbrite : Cleaned.
:mozilla.227:C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt -> TrackingCookie.Adbrite : Cleaned.
:mozilla.228:C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt -> TrackingCookie.Adbrite : Cleaned.
:mozilla.229:C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt -> TrackingCookie.Adbrite : Cleaned.
:mozilla.230:C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt -> TrackingCookie.Adbrite : Cleaned.
:mozilla.231:C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt -> TrackingCookie.Adbrite : Cleaned.
:mozilla.232:C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt -> TrackingCookie.Adbrite : Cleaned.
:mozilla.234:C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt -> TrackingCookie.Adbrite : Cleaned.
:mozilla.281:C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt -> TrackingCookie.Adbrite : Cleaned.
:mozilla.292:C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt -> TrackingCookie.Adbrite : Cleaned.
C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Cookies\[email protected][1].txt -> TrackingCookie.Adbrite : Cleaned.
:mozilla.336:C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt -> TrackingCookie.Admarketplace : Cleaned.
:mozilla.337:C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt -> TrackingCookie.Admarketplace : Cleaned.
C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Cookies\[email protected][1].txt -> TrackingCookie.Admarketplace : Cleaned.
:mozilla.118:C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.119:C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.120:C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.121:C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.122:C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.500:C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.501:C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.502:C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.503:C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.504:C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.505:C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt -> TrackingCookie.Adrevolver : Cleaned.
C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Cookies\[email protected][2].txt -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.331:C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt -> TrackingCookie.Adserver : Cleaned.
:mozilla.333:C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt -> TrackingCookie.Adserver : Cleaned.
:mozilla.742:C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt -> TrackingCookie.Adtech : Cleaned.
:mozilla.743:C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt -> TrackingCookie.Adtech : Cleaned.
C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Cookies\[email protected][2].txt -> TrackingCookie.Adtech : Cleaned.
:mozilla.10:C:\Documents and Settings\Hoang\Application Data\Mozilla\Firefox\Profiles\t3gf56cn.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.37:C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.38:C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.42:C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.43:C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.46:C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.66:C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.67:C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.68:C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.69:C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.70:C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.7:C:\Documents and Settings\Hoang\Application Data\Mozilla\Firefox\Profiles\t3gf56cn.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.9:C:\Documents and Settings\Hoang\Application Data\Mozilla\Firefox\Profiles\t3gf56cn.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Cookies\[email protected][2].txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.103:C:\Documents and Settings\Hoang\Application Data\Mozilla\Firefox\Profiles\t3gf56cn.default\cookies.txt -> TrackingCookie.Atdmt : Cleaned.
:mozilla.57:C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt -> TrackingCookie.Atdmt : Cleaned.
:mozilla.65:C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt -> TrackingCookie.Atdmt : Cleaned.
C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Cookies\[email protected][2].txt -> TrackingCookie.Atdmt : Cleaned.
:mozilla.254:C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt -> TrackingCookie.Bfast : Cleaned.
:mozilla.469:C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt -> TrackingCookie.Bluestreak : Cleaned.
:mozilla.635:C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt -> TrackingCookie.Bluestreak : Cleaned.
:mozilla.49:C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt -> TrackingCookie.Bridgetrack : Cleaned.
:mozilla.50:C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt -> TrackingCookie.Bridgetrack : Cleaned.
:mozilla.51:C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt -> TrackingCookie.Bridgetrack : Cleaned.
:mozilla.130:C:\Documents and Settings\Hoang\Application Data\Mozilla\Firefox\Profiles\t3gf56cn.default\cookies.txt -> TrackingCookie.Burstbeacon : Cleaned.
:mozilla.353:C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt -> TrackingCookie.Burstbeacon : Cleaned.
:mozilla.523:C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt -> TrackingCookie.Burstbeacon : Cleaned.
C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Cookies\[email protected][2].txt -> TrackingCookie.Burstbeacon : Cleaned.
:mozilla.147:C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt -> TrackingCookie.Burstnet : Cleaned.
:mozilla.149:C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt -> TrackingCookie.Burstnet : Cleaned.
:mozilla.336:C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt -> TrackingCookie.Burstnet : Cleaned.
:mozilla.338:C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt -> TrackingCookie.Burstnet : Cleaned.
:mozilla.339:C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt -> TrackingCookie.Burstnet : Cleaned.
:mozilla.340:C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt -> TrackingCookie.Burstnet : Cleaned.
:mozilla.66:C:\Documents and Settings\Hoang\Application Data\Mozilla\Firefox\Profiles\t3gf56cn.default\cookies.txt -> TrackingCookie.Burstnet : Cleaned.
:mozilla.67:C:\Documents and Settings\Hoang\Application Data\Mozilla\Firefox\Profiles\t3gf56cn.default\cookies.txt -> TrackingCookie.Burstnet : Cleaned.
C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Cookies\[email protected][1].txt -> TrackingCookie.Burstnet : Cleaned.
C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Cookies\[email protected][1].txt -> TrackingCookie.Burstnet : Cleaned.
:mozilla.24:C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned.
:mozilla.24:C:\Documents and Settings\Hoang\Application Data\Mozilla\Firefox\Profiles\t3gf56cn.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned.
:mozilla.25:C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned.
:mozilla.25:C:\Documents and Settings\Hoang\Application Data\Mozilla\Firefox\Profiles\t3gf56cn.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned.
:mozilla.26:C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned.
:mozilla.26:C:\Documents and Settings\Hoang\Application Data\Mozilla\Firefox\Profiles\t3gf56cn.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned.
:mozilla.27:C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned.
:mozilla.27:C:\Documents and Settings\Hoang\Application Data\Mozilla\Firefox\Profiles\t3gf56cn.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned.
:mozilla.28:C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned.
:mozilla.28:C:\Documents and Settings\Hoang\Application Data\Mozilla\Firefox\Profiles\t3gf56cn.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned.
:mozilla.29:C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned.
:mozilla.29:C:\Documents and Settings\Hoang\Application Data\Mozilla\Firefox\Profiles\t3gf56cn.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned.
:mozilla.30:C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned.
:mozilla.30:C:\Documents and Settings\Hoang\Application Data\Mozilla\Firefox\Profiles\t3gf56cn.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned.
:mozilla.31:C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned.
:mozilla.31:C:\Documents and Settings\Hoang\Application Data\Mozilla\Firefox\Profiles\t3gf56cn.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned.
:mozilla.32:C:\Documents and Settings\Hoang\Application Data\Mozilla\Firefox\Profiles\t3gf56cn.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned.
:mozilla.34:C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned.
:mozilla.389:C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned.
:mozilla.390:C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned.
:mozilla.391:C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned.
:mozilla.392:C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned.
:mozilla.393:C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned.
:mozilla.394:C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned.
:mozilla.395:C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned.
:mozilla.396:C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned.
:mozilla.397:C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned.
C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Cookies\[email protected][1].txt -> TrackingCookie.Casalemedia : Cleaned.
C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Cookies\[email protected][1].txt -> TrackingCookie.Clickhype : Cleaned.
:mozilla.780:C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt -> TrackingCookie.Clickzs : Cleaned.
:mozilla.781:C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt -> TrackingCookie.Clickzs : Cleaned.
C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Cookies\[email protected][2].txt -> TrackingCookie.Clickzs : Cleaned.
C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Cookies\[email protected][2].txt -> TrackingCookie.Clickzs : Cleaned.
C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Cookies\[email protected][1].txt -> TrackingCookie.Clickzs : Cleaned.
C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Cookies\[email protected][2].txt -> TrackingCookie.Clickzs : Cleaned.
:mozilla.438:C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt -> TrackingCookie.Com : Cleaned.
:mozilla.702:C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt -> TrackingCookie.Com : Cleaned.
C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Cookies\[email protected][1].txt -> TrackingCookie.Com : Cleaned.
C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Cookies\[email protected][2].txt -> TrackingCookie.Cpvfeed : Cleaned.
C:\Documents and Settings\LocalService\Cookies\[email protected][1].txt -> TrackingCookie.Cpvfeed : Cleaned.
:mozilla.39:C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt -> TrackingCookie.Doubleclick : Cleaned.
:mozilla.45:C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt -> TrackingCookie.Doubleclick : Cleaned.
:mozilla.49:C:\Documents and Settings\Hoang\Application Data\Mozilla\Firefox\Profiles\t3gf56cn.default\cookies.txt -> TrackingCookie.Doubleclick : Cleaned.
C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Cookies\[email protected][1].txt -> TrackingCookie.Doubleclick : Cleaned.
C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Cookies\[email protected][1].txt -> TrackingCookie.Enhance : Cleaned.
C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Cookies\[email protected][1].txt -> TrackingCookie.Enhance : Cleaned.
:mozilla.115:C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt -> TrackingCookie.Esomniture : Cleaned.
:mozilla.341:C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt -> TrackingCookie.Esomniture : Cleaned.
:mozilla.351:C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt -> TrackingCookie.Esomniture : Cleaned.
:mozilla.352:C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt -> TrackingCookie.Esomniture : Cleaned.
:mozilla.392:C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt -> TrackingCookie.Esomniture : Cleaned.
:mozilla.393:C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt -> TrackingCookie.Esomniture : Cleaned.
:mozilla.394:C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt -> TrackingCookie.Esomniture : Cleaned.
:mozilla.395:C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt -> TrackingCookie.Esomniture : Cleaned.
:mozilla.396:C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt -> TrackingCookie.Esomniture : Cleaned.
:mozilla.397:C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt -> TrackingCookie.Esomniture : Cleaned.
:mozilla.398:C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt -> TrackingCookie.Esomniture : Cleaned.
:mozilla.399:C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt -> TrackingCookie.Esomniture : Cleaned.
:mozilla.431:C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt -> TrackingCookie.Esomniture : Cleaned.
:mozilla.432:C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt -> TrackingCookie.Esomniture : Cleaned.
:mozilla.457:C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt -> TrackingCookie.Esomniture : Cleaned.
:mozilla.471:C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt -> TrackingCookie.Esomniture : Cleaned.
:mozilla.683:C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt -> TrackingCookie.Esomniture : Cleaned.
:mozilla.684:C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt -> TrackingCookie.Esomniture : Cleaned.
:mozilla.698:C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt -> TrackingCookie.Esomniture : Cleaned.
:mozilla.761:C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt -> TrackingCookie.Etracker : Cleaned.
:mozilla.327:C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt -> TrackingCookie.Euroclick : Cleaned.
:mozilla.328:C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt -> TrackingCookie.Euroclick : Cleaned.
:mozilla.329:C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt -> TrackingCookie.Euroclick : Cleaned.
:mozilla.676:C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt -> TrackingCookie.Euroclick : Cleaned.
:mozilla.677:C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt -> TrackingCookie.Euroclick : Cleaned.
:mozilla.678:C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt -> TrackingCookie.Euroclick : Cleaned.
:mozilla.679:C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt -> TrackingCookie.Euroclick : Cleaned.
:mozilla.200:C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt -> TrackingCookie.Falkag : Cleaned.
:mozilla.201:C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt -> TrackingCookie.Falkag : Cleaned.
:mozilla.202:C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt -> TrackingCookie.Falkag : Cleaned.
:mozilla.203:C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt -> TrackingCookie.Falkag : Cleaned.
:mozilla.725:C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt -> TrackingCookie.Falkag : Cleaned.
:mozilla.33:C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt -> TrackingCookie.Fastclick : Cleaned.
:mozilla.35:C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt -> TrackingCookie.Fastclick : Cleaned.
:mozilla.361:C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt -> TrackingCookie.Fastclick : Cleaned.
:mozilla.362:C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt -> TrackingCookie.Fastclick : Cleaned.
:mozilla.363:C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt -> TrackingCookie.Fastclick : Cleaned.
:mozilla.364:C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt -> TrackingCookie.Fastclick : Cleaned.
:mozilla.365:C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt -> TrackingCookie.Fastclick : Cleaned.
:mozilla.366:C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt -> TrackingCookie.Fastclick : Cleaned.
:mozilla.369:C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt -> TrackingCookie.Fastclick : Cleaned.
C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Cookies\[email protected][2].txt -> TrackingCookie.Gamingpromo : Cleaned.
C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Cookies\[email protected][1].txt -> TrackingCookie.Gamingpromo : Cleaned.
:mozilla.520:C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt -> TrackingCookie.Googleadservices : Cleaned.
:mozilla.158:C:\Documents and Settings\Hoang\Application Data\Mozilla\Firefox\Profiles\t3gf56cn.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned.
:mozilla.159:C:\Documents and Settings\Hoang\Application Data\Mozilla\Firefox\Profiles\t3gf56cn.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned.
:mozilla.160:C:\Documents and Settings\Hoang\Application Data\Mozilla\Firefox\Profiles\t3gf56cn.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned.
:mozilla.162:C:\Documents and Settings\Hoang\Application Data\Mozilla\Firefox\Profiles\t3gf56cn.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned.
:mozilla.163:C:\Documents and Settings\Hoang\Application Data\Mozilla\Firefox\Profiles\t3gf56cn.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned.
:mozilla.363:C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned.
:mozilla.364:C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned.
:mozilla.365:C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned.
:mozilla.366:C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned.
:mozilla.367:C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned.
:mozilla.418:C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned.
:mozilla.419:C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned.
:mozilla.420:C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned.
:mozilla.430:C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned.
:mozilla.431:C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned.
:mozilla.432:C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned.
:mozilla.433:C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned.
:mozilla.434:C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned.
:mozilla.436:C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned.
:mozilla.438:C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned.
:mozilla.440:C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned.
:mozilla.441:C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned.
:mozilla.442:C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned.
:mozilla.443:C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned.
:mozilla.489:C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned.
:mozilla.514:C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned.
:mozilla.607:C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned.
:mozilla.666:C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt -> TrackingCookie.Hotlog : Cleaned.
:mozilla.715:C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt -> TrackingCookie.Hotlog : Cleaned.
C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Cookies\[email protected][2].txt -> TrackingCookie.Information : Cleaned.
C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Cookies\[email protected][2].txt -> TrackingCookie.Kmpads : Cleaned.
:mozilla.461:C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt -> TrackingCookie.Masterstats : Cleaned.
:mozilla.794:C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt -> TrackingCookie.Masterstats : Cleaned.
C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Cookies\[email protected][1].txt -> TrackingCookie.Masterstats : Cleaned.
:mozilla.102:C:\Documents and Settings\Hoang\Application Data\Mozilla\Firefox\Profiles\t3gf56cn.default\cookies.txt -> TrackingCookie.Mediaplex : Cleaned.
:mozilla.116:C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt -> TrackingCookie.Mediaplex : Cleaned.
:mozilla.117:C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt -> TrackingCookie.Mediaplex : Cleaned.
:mozilla.323:C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt -> TrackingCookie.Mediaplex : Cleaned.
:mozilla.324:C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt -> TrackingCookie.Mediaplex : Cleaned.
C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Cookies\[email protected][1].txt -> TrackingCookie.Mediaplex : Cleaned.
:mozilla.546:C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt -> TrackingCookie.Onestat : Cleaned.
:mozilla.548:C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt -> TrackingCookie.Onestat : Cleaned.
:mozilla.455:C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt -> TrackingCookie.Overture : Cleaned.
C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Cookies\[email protected][2].txt -> TrackingCookie.Overture : Cleaned.
C:\Documents and Settings\LocalService\Cookies\[email protected][1].txt -> TrackingCookie.Paypopup : Cleaned.
C:\Documents and Settings\LocalService\Cookies\[email protected][2].txt -> TrackingCookie.Paypopup : Cleaned.
:mozilla.106:C:\Documents and Settings\Hoang\Application Data\Mozilla\Firefox\Profiles\t3gf56cn.default\cookies.txt -> TrackingCookie.Pointroll : Cleaned.
:mozilla.107:C:\Documents and Settings\Hoang\Application Data\Mozilla\Firefox\Profiles\t3gf56cn.default\cookies.txt -> TrackingCookie.Pointroll : Cleaned.
:mozilla.108:C:\Documents and Settings\Hoang\Application Data\Mozilla\Firefox\Profiles\t3gf56cn.default\cookies.txt -> TrackingCookie.Pointroll : Cleaned.
:mozilla.262:C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt -> TrackingCookie.Pointroll : Cleaned.
:mozilla.263:C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt -> TrackingCookie.Pointroll : Cleaned.
:mozilla.264:C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt -> TrackingCookie.Pointroll : Cleaned.
:mozilla.265:C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt -> TrackingCookie.Pointroll : Cleaned.
:mozilla.54:C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt -> TrackingCookie.Pointroll : Cleaned.
:mozilla.55:C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt -> TrackingCookie.Pointroll : Cleaned.
:mozilla.56:C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt -> TrackingCookie.Pointroll : Cleaned.
:mozilla.57:C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt -> TrackingCookie.Pointroll : Cleaned.
:mozilla.59:C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt -> TrackingCookie.Pointroll : Cleaned.
:mozilla.373:C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt -> TrackingCookie.Qksrv : Cleaned.
:mozilla.374:C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt -> TrackingCookie.Qksrv : Cleaned.
:mozilla.128:C:\Documents and Settings\Hoang\Application Data\Mozilla\Firefox\Profiles\t3gf56cn.default\cookies.txt -> TrackingCookie.Questionmarket : Cleaned.
:mozilla.129:C:\Documents and Settings\Hoang\Application Data\Mozilla\Firefox\Profiles\t3gf56cn.default\cookies.txt -> TrackingCookie.Questionmarket : Cleaned.
:mozilla.315:C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt -> TrackingCookie.Questionmarket : Cleaned.
:mozilla.379:C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt -> TrackingCookie.Questionmarket : Cleaned.
:mozilla.380:C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt -> TrackingCookie.Questionmarket : Cleaned.
:mozilla.381:C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt -> TrackingCookie.Questionmarket : Cleaned.
:mozilla.382:C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt -> TrackingCookie.Questionmarket : Cleaned.
:mozilla.383:C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt -> TrackingCookie.Questionmarket : Cleaned.
C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Cookies\[email protected][1].txt -> TrackingCookie.Questionmarket : Cleaned.
:mozilla.306:C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt -> TrackingCookie.Reliablestats : Cleaned.
:mozilla.307:C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt -> TrackingCookie.Reliablestats : Cleaned.
:mozilla.308:C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt -> TrackingCookie.Reliablestats : Cleaned.
:mozilla.309:C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt -> TrackingCookie.Reliablestats : Cleaned.
:mozilla.310:C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt -> TrackingCookie.Reliablestats : Cleaned.
C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Cookies\[email protected][1].txt -> TrackingCookie.Reliablestats : Cleaned.
:mozilla.316:C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt -> TrackingCookie.Ru4 : Cleaned.
:mozilla.317:C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt -> TrackingCookie.Ru4 : Cleaned.
:mozilla.318:C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt -> TrackingCookie.Ru4 : Cleaned.
:mozilla.319:C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt -> TrackingCookie.Ru4 : Cleaned.
:mozilla.320:C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt -> TrackingCookie.Ru4 : Cleaned.
C:\Documents and Settings\LocalService\Cookies\[email protected][1].txt -> TrackingCookie.Searchingbooth : Cleaned.
:mozilla.330:C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt -> TrackingCookie.Serving-sys : Cleaned.
:mozilla.332:C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt -> TrackingCookie.Serving-sys : Cleaned.
:mozilla.334:C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt -> TrackingCookie.Serving-sys : Cleaned.
:mozilla.335:C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt -> TrackingCookie.Serving-sys : Cleaned.
C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Cookies\[email protected][1].txt -> TrackingCookie.Serving-sys : Cleaned.
C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Cookies\[email protected][1].txt -> TrackingCookie.Serving-sys : Cleaned.
:mozilla.769:C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt -> TrackingCookie.Sexcounter : Cleaned.
:mozilla.770:C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt -> TrackingCookie.Sexcounter : Cleaned.
C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Cookies\[email protected][2].txt -> TrackingCookie.Sexcounter : Cleaned.
:mozilla.462:C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt -> TrackingCookie.Sexlist : Cleaned.
:mozilla.580:C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt -> TrackingCookie.Sextracker : Cleaned.
:mozilla.581:C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt -> TrackingCookie.Sextracker : Cleaned.
C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Cookies\[email protected][2].txt -> TrackingCookie.Sextracker : Cleaned.
C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Cookies\[email protected][1].txt -> TrackingCookie.Sextracker : Cleaned.
:mozilla.373:C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt -> TrackingCookie.Specificclick : Cleaned.
:mozilla.374:C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt -> TrackingCookie.Specificclick : Cleaned.
:mozilla.375:C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt -> TrackingCookie.Specificclick : Cleaned.
:mozilla.376:C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt -> TrackingCookie.Specificclick : Cleaned.
:mozilla.377:C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt -> TrackingCookie.Specificclick : Cleaned.
C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Cookies\[email protected][1].txt -> TrackingCookie.Specificclick : Cleaned.
:mozilla.716:C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt -> TrackingCookie.Spylog : Cleaned.
C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Cookies\[email protected][1].txt -> TrackingCookie.Starware : Cleaned.
C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Cookies\[email protected][1].txt -> TrackingCookie.Starware : Cleaned.
C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Cookies\[email protected][1].txt -> TrackingCookie.Starware : Cleaned.
:mozilla.402:C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
:mozilla.403:C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
:mozilla.404:C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
:mozilla.405:C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
:mozilla.406:C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
:mozilla.407:C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
:mozilla.608:C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
:mozilla.609:C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
:mozilla.610:C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
:mozilla.611:C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
:mozilla.612:C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Cookies\[email protected][2].txt -> TrackingCookie.Statcounter : Cleaned.
:mozilla.131:C:\Documents and Settings\Hoang\Application Data\Mozilla\Firefox\Profiles\t3gf56cn.default\cookies.txt -> TrackingCookie.Tacoda : Cleaned.
:mozilla.132:C:\Documents and Settings\Hoang\Application Data\Mozilla\Firefox\Profiles\t3gf56cn.default\cookies.txt -> TrackingCookie.Tacoda : Cleaned.
:mozilla.133:C:\Documents and Settings\Hoang\Application Data\Mozilla\Firefox\Profiles\t3gf56cn.default\cookies.txt -> TrackingCookie.Tacoda : Cleaned.
:mozilla.134:C:\Documents and Settings\Hoang\Application Data\Mozilla\Firefox\Profiles\t3gf56cn.default\cookies.txt -> TrackingCookie.Tacoda : Cleaned.
:mozilla.250:C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt -> TrackingCookie.Tacoda : Cleaned.
:mozilla.251:C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt -> TrackingCookie.Tacoda : Cleaned.
:mozilla.252:C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt -> TrackingCookie.Tacoda : Cleaned.
:mozilla.255:C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt -> TrackingCookie.Tacoda : Cleaned.
:mozilla.256:C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt -> TrackingCookie.Tacoda : Cleaned.
:mozilla.283:C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt -> TrackingCookie.Tacoda : Cleaned.
:mozilla.284:C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt -> TrackingCookie.Tacoda : Cleaned.
:mozilla.285:C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt -> TrackingCookie.Tacoda : Cleaned.
:mozilla.456:C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt -> TrackingCookie.Tacoda : Cleaned.
:mozilla.457:C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt -> TrackingCookie.Tacoda : Cleaned.
C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Cookies\[email protected][2].txt -> TrackingCookie.Tacoda : Cleaned.
C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Cookies\[email protected][1].txt -> TrackingCookie.Tacoda : Cleaned.
C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Cookies\[email protected][1].txt -> TrackingCookie.Tacoda : Cleaned.
:mozilla.512:C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt -> TrackingCookie.Targetnet : Cleaned.
:mozilla.744:C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt -> TrackingCookie.Targetnet : Cleaned.
:mozilla.745:C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt -> TrackingCookie.Targetnet : Cleaned.
:mozilla.255:C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt -> TrackingCookie.Tradedoubler : Cleaned.
:mozilla.29:C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt -> TrackingCookie.Trafficmp : Cleaned.
:mozilla.30:C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt -> TrackingCookie.Trafficmp : Cleaned.
:mozilla.31:C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt -> TrackingCookie.Trafficmp : Cleaned.
:mozilla.32:C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt -> TrackingCookie.Trafficmp : Cleaned.
:mozilla.33:C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt -> TrackingCookie.Trafficmp : Cleaned.
:mozilla.35:C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt -> TrackingCookie.Trafficmp : Cleaned.
:mozilla.37:C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt -> TrackingCookie.Trafficmp : Cleaned.
:mozilla.40:C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt -> TrackingCookie.Trafficmp : Cleaned.
:mozilla.50:C:\Documents and Settings\Hoang\Application Data\Mozilla\Firefox\Profiles\t3gf56cn.default\cookies.txt -> TrackingCookie.Trafficmp : Cleaned.
:mozilla.51:C:\Documents and Settings\Hoang\Application Data\Mozilla\Firefox\Profiles\t3gf56cn.default\cookies.txt -> TrackingCookie.Trafficmp : Cleaned.
:mozilla.52:C:\Documents and Settings\Hoang\Application Data\Mozilla\Firefox\Profiles\t3gf56cn.default\cookies.txt -> TrackingCookie.Trafficmp : Cleaned.
:mozilla.53:C:\Documents and Settings\Hoang\Application Data\Mozilla\Firefox\Profiles\t3gf56cn.default\cookies.txt -> TrackingCookie.Trafficmp : Cleaned.
:mozilla.54:C:\Documents and Settings\Hoang\Application Data\Mozilla\Firefox\Profiles\t3gf56cn.default\cookies.txt -> TrackingCookie.Trafficmp : Cleaned.
:mozilla.55:C:\Documents and Settings\Hoang\Application Data\Mozilla\Firefox\Profiles\t3gf56cn.default\cookies.txt -> TrackingCookie.Trafficmp : Cleaned.
:mozilla.56:C:\Documents and Settings\Hoang\Application Data\Mozilla\Firefox\Profiles\t3gf56cn.default\cookies.txt -> TrackingCookie.Trafficmp : Cleaned.
:mozilla.63:C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt -> TrackingCookie.Trafficmp : Cleaned.
:mozilla.64:C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt -> TrackingCookie.Trafficmp : Cleaned.
:mozilla.65:C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt -> TrackingCookie.Trafficmp : Cleaned.
:mozilla.66:C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt -> TrackingCookie.Trafficmp : Cleaned.
:mozilla.67:C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt -> TrackingCookie.Trafficmp : Cleaned.
:mozilla.68:C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt -> TrackingCookie.Trafficmp : Cleaned.
:mozilla.69:C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt -> TrackingCookie.Trafficmp : Cleaned.
:mozilla.70:C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt -> TrackingCookie.Trafficmp : Cleaned.
:mozilla.552:C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt -> TrackingCookie.Trafic : Cleaned.
:mozilla.110:C:\Documents and Settings\Hoang\Application Data\Mozilla\Firefox\Profiles\t3gf56cn.default\cookies.txt -> TrackingCookie.Tribalfusion : Cleaned.
:mozilla.111:C:\Documents and Settings\Hoang\Application Data\Mozilla\Firefox\Profiles\t3gf56cn.default\cookies.txt -> TrackingCookie.Tribalfusion : Cleaned.
:mozilla.189:C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt -> TrackingCookie.Tribalfusion : Cleaned.
:mozilla.190:C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt -> TrackingCookie.Tribalfusion : Cleaned.
:mozilla.191:C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt -> TrackingCookie.Tribalfusion : Cleaned.
:mozilla.192:C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt -> TrackingCookie.Tribalfusion : Cleaned.
:mozilla.193:C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt -> TrackingCookie.Tribalfusion : Cleaned.
:mozilla.194:C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt -> TrackingCookie.Tribalfusion : Cleaned.
:mozilla.40:C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt -> TrackingCookie.Tribalfusion : Cleaned.
:mozilla.41:C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt -> TrackingCookie.Tribalfusion : Cleaned.
:mozilla.48:C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt -> TrackingCookie.Tribalfusion : Cleaned.
C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Cookies\[email protected][2].txt -> TrackingCookie.Tribalfusion : Cleaned.
:mozilla.100:C:\Documents and Settings\Hoang\Application Data\Mozilla\Firefox\Profiles\t3gf56cn.default\cookies.txt -> TrackingCookie.Valuead : Cleaned.
:mozilla.101:C:\Documents and Settings\Hoang\Application Data\Mozilla\Firefox\Profiles\t3gf56cn.default\cookies.txt -> TrackingCookie.Valuead : Cleaned.
:mozilla.166:C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt -> TrackingCookie.Valuead : Cleaned.
:mozilla.170:C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt -> TrackingCookie.Valuead : Cleaned.
:mozilla.171:C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt -> TrackingCookie.Valuead : Cleaned.
:mozilla.172:C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt -> TrackingCookie.Valuead : Cleaned.
:mozilla.173:C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt -> TrackingCookie.Valuead : Cleaned.
:mozilla.174:C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt -> TrackingCookie.Valuead : Cleaned.
:mozilla.96:C:\Documents and Settings\Hoang\Application Data\Mozilla\Firefox\Profiles\t3gf56cn.default\cookies.txt -> TrackingCookie.Valuead : Cleaned.
:mozilla.97:C:\Documents and Settings\Hoang\Application Data\Mozilla\Firefox\Profiles\t3gf56cn.default\cookies.txt -> TrackingCookie.Valuead : Cleaned.
:mozilla.98:C:\Documents and Settings\Hoang\Application Data\Mozilla\Firefox\Profiles\t3gf56cn.default\cookies.txt -> TrackingCookie.Valuead : Cleaned.
:mozilla.99:C:\Documents and Settings\Hoang\Application Data\Mozilla\Firefox\Profiles\t3gf56cn.default\cookies.txt -> TrackingCookie.Valuead : Cleaned.
:mozilla.140:C:\Documents and Settings\Hoang\Application Data\Mozilla\Firefox\Profiles\t3gf56cn.default\cookies.txt -> TrackingCookie.Valueclick : Cleaned.
:mozilla.370:C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt -> TrackingCookie.Valueclick : Cleaned.
:mozilla.639:C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt -> TrackingCookie.Valueclick : Cleaned.
:mozilla.450:C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt -> TrackingCookie.Webtrendslive : Cleaned.
:mozilla.717:C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt -> TrackingCookie.Yadro : Cleaned.
C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Cookies\[email protected][1].txt -> TrackingCookie.Yadro : Cleaned.
:mozilla.16:C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.17:C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.18:C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.19:C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.20:C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.21:C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.22:C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.33:C:\Documents and Settings\Hoang\Application Data\Mozilla\Firefox\Profiles\t3gf56cn.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.35:C:\Documents and Settings\Hoang\Application Data\Mozilla\Firefox\Profiles\t3gf56cn.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.36:C:\Documents and Settings\Hoang\Application Data\Mozilla\Firefox\Profiles\t3gf56cn.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.37:C:\Documents and Settings\Hoang\Application Data\Mozilla\Firefox\Profiles\t3gf56cn.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.38:C:\Documents and Settings\Hoang\Application Data\Mozilla\Firefox\Profiles\t3gf56cn.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.39:C:\Documents and Settings\Hoang\Application Data\Mozilla\Firefox\Profiles\t3gf56cn.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.71:C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.72:C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.73:C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.74:C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.75:C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.76:C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.77:C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.78:C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned.
C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Cookies\[email protected][2].txt -> TrackingCookie.Yieldmanager : Cleaned.
C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Cookies\[email protected][3].txt -> TrackingCookie.Yieldmanager : Cleaned.
C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Cookies\[email protected][1].txt -> TrackingCookie.Yieldmanager : Cleaned.
C:\Documents and Settings\LocalService\Cookies\[email protected][1].txt -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.176:C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt -> TrackingCookie.Zedo : Cleaned.
:mozilla.178:C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt -> TrackingCookie.Zedo : Cleaned.
:mozilla.179:C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt -> TrackingCookie.Zedo : Cleaned.
:mozilla.80:C:\Documents and Settings\Hoang\Application Data\Mozilla\Firefox\Profiles\t3gf56cn.default\cookies.txt -> TrackingCookie.Zedo : Cleaned.
:mozilla.81:C:\Documents and Settings\Hoang\Application Data\Mozilla\Firefox\Profiles\t3gf56cn.default\cookies.txt -> TrackingCookie.Zedo : Cleaned.
:mozilla.83:C:\Documents and Settings\Hoang\Application Data\Mozilla\Firefox\Profiles\t3gf56cn.default\cookies.txt -> TrackingCookie.Zedo : Cleaned.
:mozilla.84:C:\Documents and Settings\Hoang\Application Data\Mozilla\Firefox\Profiles\t3gf56cn.default\cookies.txt -> TrackingCookie.Zedo : Cleaned.
:mozilla.85:C:\Documents and Settings\Hoang\Application Data\Mozilla\Firefox\Profiles\t3gf56cn.default\cookies.txt -> TrackingCookie.Zedo : Cleaned.
:mozilla.86:C:\Documents and Settings\Hoang\Application Data\Mozilla\Firefox\Profiles\t3gf56cn.default\cookies.txt -> TrackingCookie.Zedo : Cleaned.
C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Cookies\[email protected][2].txt -> TrackingCookie.Zedo : Cleaned.


::Report end
 

·
Registered
Joined
·
11 Posts
Discussion Starter · #17 ·
jotti results
could not find C:\WINDOWS\System32\shdrif.exe file

Panda results

Incident Status Location

Adware:adware/commad Not disinfected Windows Registry
Spyware:Cookie/Humanclick Not disinfected C:\Documents and Settings\Hoang Nguyen\Application Data\Mozilla\Firefox\Profiles\i0whe9z2.default\cookies.txt[hc2.humanclick.com/hc/48606904]
Spyware:Cookie/YieldManager Not disinfected C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt[ad.yieldmanager.com/]
Spyware:Cookie/Advertising Not disinfected C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt[.advertising.com/]
Spyware:Cookie/Doubleclick Not disinfected C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt[.doubleclick.net/]
Spyware:Cookie/Advertising Not disinfected C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt[.advertising.com/]
Spyware:Cookie/RealMedia Not disinfected C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt[.realmedia.com/]
Spyware:Cookie/Tribalfusion Not disinfected C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt[.tribalfusion.com/]
Spyware:Cookie/BurstNet Not disinfected C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt[.burstnet.com/]
Spyware:Cookie/FastClick Not disinfected C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt[.fastclick.net/]
Spyware:Cookie/Hitbox Not disinfected C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt[.ehg-dig.hitbox.com/]
Spyware:Cookie/Hitbox Not disinfected C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt[.hitbox.com/]
Spyware:Cookie/Hitbox Not disinfected C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt[.ehg-dig.hitbox.com/]
Spyware:Cookie/Go Not disinfected C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt[.go.com/]
Spyware:Cookie/Atlas DMT Not disinfected C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt[.atdmt.com/]
Spyware:Cookie/PointRoll Not disinfected C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt[.ads.pointroll.com/]
Spyware:Cookie/2o7 Not disinfected C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt[.2o7.net/]
Spyware:Cookie/Valueclick Not disinfected C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt[.valueclick.com/]
Spyware:Cookie/Casalemedia Not disinfected C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt[.casalemedia.com/]
Spyware:Cookie/Mediaplex Not disinfected C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt[.mediaplex.com/]
Spyware:Cookie/Statcounter Not disinfected C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt[.statcounter.com/]
Spyware:Cookie/Serving-sys Not disinfected C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt[.bs.serving-sys.com/]
Spyware:Cookie/Serving-sys Not disinfected C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt[.serving-sys.com/]
Spyware:Cookie/QuestionMarket Not disinfected C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt[.questionmarket.com/]
Spyware:Cookie/bravenetA Not disinfected C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt[.bravenet.com/]
Spyware:Cookie/Apmebf Not disinfected C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt[.apmebf.com/]
Spyware:Cookie/WebtrendsLive Not disinfected C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt[statse.webtrendslive.com/]
Spyware:Cookie/Bridgetrack Not disinfected C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt[citi.bridgetrack.com/]
Spyware:Cookie/adultfriendfinder Not disinfected C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt[.adultfriendfinder.com/]
Spyware:Cookie/Atwola Not disinfected C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt[.atwola.com/]
Spyware:Cookie/DriveCleaner Not disinfected C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt[.drivecleaner.com/]
Spyware:Cookie/DriveCleaner Not disinfected C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt[www.drivecleaner.com/]
Spyware:Cookie/DriveCleaner Not disinfected C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt[stats.drivecleaner.com/]
Spyware:Cookie/ErrorSafe Not disinfected C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt[.errorsafe.com/]
Spyware:Cookie/MediaTickets Not disinfected C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt[.kinghost.com/]
Spyware:Cookie/BannerBank Not disinfected C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt[ad10.bannerbank.ru/]
Spyware:Cookie/Toplist Not disinfected C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cookies.txt[.toplist.cz/]
Spyware:Cookie/2o7 Not disinfected C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Cookies\[email protected][1].txt
Spyware:Cookie/888 Not disinfected C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Cookies\[email protected][1].txt
Spyware:Cookie/888 Not disinfected C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Cookies\[email protected][2].txt
Spyware:Cookie/YieldManager Not disinfected C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Cookies\[email protected][2].txt
Spyware:Cookie/Hbmediapro Not disinfected C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Cookies\[email protected][2].txt
Spyware:Cookie/Adrevolver Not disinfected C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Cookies\[email protected][3].txt
Spyware:Cookie/PointRoll Not disinfected C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Cookies\[email protected][2].txt
Spyware:Cookie/Advertising Not disinfected C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Cookies\[email protected][1].txt
Spyware:Cookie/Atlas DMT Not disinfected C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Cookies\[email protected][2].txt
Spyware:Cookie/Atwola Not disinfected C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Cookies\[email protected][1].txt
Spyware:Cookie/Azjmp Not disinfected C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Cookies\[email protected][2].txt
Spyware:Cookie/Belnk Not disinfected C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Cookies\[email protected][1].txt
Spyware:Cookie/Casalemedia Not disinfected C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Cookies\[email protected][1].txt
Spyware:Cookie/Cassava Not disinfected C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Cookies\[email protected][1].txt
Spyware:Cookie/Ccbill Not disinfected C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Cookies\[email protected][1].txt
Spyware:Cookie/Cgi-bin Not disinfected C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Cookies\[email protected][2].txt
Spyware:Cookie/Cgi-bin Not disinfected C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Cookies\[email protected][4].txt
Spyware:Cookie/Cgi-bin Not disinfected C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Cookies\[email protected][5].txt
Spyware:Cookie/Sextracker Not disinfected C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Cookies\[email protected][1].txt
Spyware:Cookie/cs.sexcounter Not disinfected C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Cookies\[email protected][2].txt
Spyware:Cookie/Belnk Not disinfected C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Cookies\[email protected][1].txt
Spyware:Cookie/Doubleclick Not disinfected C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Cookies\[email protected][1].txt
Spyware:Cookie/DriveCleaner Not disinfected C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Cookies\[email protected][2].txt
Spyware:Cookie/ErrorSafe Not disinfected C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Cookies\[email protected][2].txt
Spyware:Cookie/FastClick Not disinfected C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Cookies\[email protected][2].txt
Spyware:Cookie/GoStats Not disinfected C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Cookies\[email protected][2].txt
Spyware:Cookie/Hitbox Not disinfected C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Cookies\[email protected][1].txt
Spyware:Cookie/Screensavers Not disinfected C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Cookies\[email protected][2].txt
Spyware:Cookie/Diglnk Not disinfected C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Cookies\[email protected][2].txt
Spyware:Cookie/Media-motor Not disinfected C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Cookies\[email protected][1].txt
Spyware:Cookie/OfferOptimizer Not disinfected C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Cookies\[email protected][2].txt
Spyware:Cookie/RealMedia Not disinfected C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Cookies\[email protected][1].txt
Spyware:Cookie/Sextracker Not disinfected C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Cookies\[email protected][1].txt
Spyware:Cookie/DriveCleaner Not disinfected C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Cookies\[email protected][2].txt
Spyware:Cookie/Systemdoctor Not disinfected C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Cookies\[email protected][2].txt
Spyware:Cookie/Tradedoubler Not disinfected C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Cookies\[email protected][1].txt
Spyware:Cookie/Traffic Marketplace Not disinfected C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Cookies\[email protected][1].txt
Spyware:Cookie/Tribalfusion Not disinfected C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Cookies\[email protected][1].txt
Spyware:Cookie/WebPower Not disinfected C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Cookies\[email protected][2].txt
Spyware:Cookie/Winantivirus Not disinfected C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Cookies\[email protected][2].txt
Spyware:Cookie/WinFixer Not disinfected C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Cookies\[email protected][2].txt
Spyware:Cookie/DriveCleaner Not disinfected C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Cookies\[email protected][2].txt
Spyware:Cookie/Winantivirus Not disinfected C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Cookies\[email protected][1].txt
Spyware:Cookie/Xiti Not disinfected C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Cookies\[email protected][1].txt
Spyware:Cookie/Zedo Not disinfected C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Cookies\[email protected][2].txt
Potentially unwanted tool:Application/Processor Not disinfected C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Desktop\SDFix.exe[SDFix\apps\Process.exe]
Spyware:Spyware/SafeSurf Not disinfected C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Desktop\setup.exe[²ÜÇ\ExtractDLL.dll]
Spyware:Cookie/Hbmediapro Not disinfected C:\Documents and Settings\LocalService\Cookies\[email protected][2].txt
Spyware:Cookie/adultfriendfinder Not disinfected C:\Documents and Settings\LocalService\Cookies\[email protected][2].txt
Spyware:Cookie/Media-motor Not disinfected C:\Documents and Settings\LocalService\Cookies\[email protected][1].txt
Spyware:Cookie/WebPower Not disinfected C:\Documents and Settings\LocalService\Cookies\[email protected][2].txt
Spyware:Cookie/WinFixer Not disinfected C:\Documents and Settings\LocalService\Cookies\[email protected][2].txt
Potentially unwanted tool:Application/HideWindow.A Not disinfected C:\hp\bin\FondleWindow.exe
Potentially unwanted tool:Application/KillApp.B Not disinfected C:\hp\bin\KillIt.exe
Potentially unwanted tool:Application/KillApp.A Not disinfected C:\hp\bin\Terminator.exe
Potentially unwanted tool:Application/Processor Not disinfected C:\SDFix\apps\Process.exe
Spyware:Spyware/7r7t Not disinfected C:\WINDOWS\pf78ba.exe

ComboFix.txt
"Hoang" - 07-01-18 21:33:56 Service Pack 2
ComboFix 07-01-16.2 - Running from: "C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Desktop"

(((((((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))


~ ~ ~ ~ ~ ~ ~ ~ ~ ~ ~ ~ ~ ~ Purity ~ ~ ~ ~ ~ ~ ~ ~~ ~ ~ ~ ~ ~ ~ ~ ~ ~ ~ ~
Folders Quarantined:
C:\qoobox\purity\Program Files\STEM32~1
C:\qoobox\purity\Program Files\Common Files\STEM32~1
C:\qoobox\purity\Program Files\STEM32~1\??stem32


((((((((((((((((((((((((((((((( Files Created from 2006-12-18 to 2007-01-18 ))))))))))))))))))))))))))))))))))


2007-01-20 00:30 <DIR> d-------- C:\DOCUME~1\HOANG~1.YOU\Application Data\DivX
2007-01-20 00:28 <DIR> d-------- C:\Program Files\DivX
2007-01-17 23:40 <DIR> d-------- C:\bintheredunthat
2007-01-17 21:35 <DIR> d-------- C:\BFU
2007-01-17 20:41 3,968 --a------ C:\WINDOWS\system32\drivers\AvgAsCln.sys
2007-01-17 20:41 <DIR> d-------- C:\Program Files\Grisoft
2007-01-17 13:24 <DIR> d-------- C:\WINDOWS\system32\ActiveScan
2007-01-17 05:14 <DIR> d-------- C:\SDFix
2006-12-31 00:42 <DIR> d-------- C:\Program Files\Common Files\NSV
2006-12-30 00:10 <DIR> d-------- C:\Program Files\PokerStars


(((((((((((((((((((((((((((((((((((((((((((((((( Find3M Report )))))))))))))))))))))))))))))))))))))))))))))))))))))


2007-01-19 23:14 -------- d-------- C:\DOCUME~1\HOANG~1.YOU\Application Data\limewire
2007-01-18 20:32 -------- d-------- C:\Program Files\winamp
2007-01-18 20:26 -------- d-------- C:\Program Files\quicktime
2007-01-18 20:24 -------- d-------- C:\Program Files\norton antivirus
2007-01-18 20:23 -------- d-------- C:\Program Files\mozilla firefox
2007-01-18 20:18 -------- d-------- C:\Program Files\itunes
2007-01-18 20:16 -------- d-------- C:\Program Files\google
2007-01-18 20:06 -------- d-------- C:\Program Files\aim95
2007-01-17 23:43 40 ---hs---- C:\DOCUME~1\HOANG~1.YOU\Application Data\.zreglib
2007-01-12 00:25 -------- d-------- C:\DOCUME~1\HOANG~1.YOU\Application Data\apple computer
2006-12-14 15:24 -------- d-------- C:\Program Files\tvuplayer
2006-12-12 06:30 520192 --a------ C:\WINDOWS\system32\divxsm.exe
2006-12-12 06:30 3596288 --a------ C:\WINDOWS\system32\qt-dx331.dll
2006-12-12 06:30 200704 --a------ C:\WINDOWS\system32\ssldivx.dll
2006-12-12 06:30 1044480 --a------ C:\WINDOWS\system32\libdivx.dll
2006-12-12 06:25 806912 --a------ C:\WINDOWS\system32\divx_xx0c.dll
2006-12-12 06:25 806912 --a------ C:\WINDOWS\system32\divx_xx07.dll
2006-12-12 06:25 790528 --a------ C:\WINDOWS\system32\divx_xx11.dll
2006-12-12 06:25 73728 --a------ C:\WINDOWS\system32\dpl100.dll
2006-12-12 06:25 635486 --a------ C:\WINDOWS\system32\divx.dll
2006-12-12 06:25 593920 --a------ C:\WINDOWS\system32\dpugui11.dll
2006-12-12 06:25 57344 --a------ C:\WINDOWS\system32\dpv11.dll
2006-12-12 06:25 53248 --a------ C:\WINDOWS\system32\dpugui10.dll
2006-12-12 06:25 344064 --a------ C:\WINDOWS\system32\dpus11.dll
2006-12-12 06:25 294912 --a------ C:\WINDOWS\system32\dpu11.dll
2006-12-12 06:25 294912 --a------ C:\WINDOWS\system32\dpu10.dll
2006-12-12 06:25 196608 --a------ C:\WINDOWS\system32\dtu100.dll
2006-12-12 06:24 12288 --a------ C:\WINDOWS\system32\divxwmpexttype.dll
2006-12-12 06:24 118784 --a------ C:\WINDOWS\system32\divxcodecupdatechecker.exe
2006-12-06 19:29 2374472 --a------ C:\WINDOWS\system32\wmvcore.dll
2006-12-01 15:31 -------- d-------- C:\DOCUME~1\HOANG~1.YOU\Application Data\sopcast
2006-12-01 15:30 -------- d-------- C:\Program Files\sopcast
2006-11-29 00:13 -------- d---s---- C:\DOCUME~1\HOANG~1.YOU\Application Data\microsoft
2006-11-28 21:43 -------- d-------- C:\Program Files\Common Files\adobe
2006-11-22 02:15 -------- d-------- C:\DOCUME~1\HOANG~1.YOU\Application Data\adobe
2006-11-21 12:11 -------- d-------- C:\Program Files\xvid
2006-11-21 11:04 -------- d-------- C:\Program Files\peerguardian2
2006-11-07 19:06 679424 --a------ C:\WINDOWS\system32\inetcomm.dll
2006-11-01 14:54 180224 --a------ C:\WINDOWS\system32\xvidvfw.dll
2006-11-01 14:52 765952 --a------ C:\WINDOWS\system32\xvidcore.dll
2006-10-19 03:56 713216 --a------ C:\WINDOWS\system32\sxs.dll


(((((((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))

*Note* empty entries & legit default entries are not shown

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run]
"Microsoft Works Update Detection"="c:\\Program Files\\Microsoft Works\\WkDetect.exe"
"AIM"="C:\\Program Files\\AIM95\\aim.exe -cnetwait.odl"
"AnyDVD"="C:\\Program Files\\BitLord\\Downloads\\SlySoft.AnyDVD.v6.0.8.2.Multilanguage.WinAll.Cracked-CRD\\crack\\AnyDVD.exe"
"MSMSGS"="\"C:\\Program Files\\Messenger\\msmsgs.exe\" /background"

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run]
"hpsysdrv"="c:\\windows\\system\\hpsysdrv.exe"
"IgfxTray"="C:\\WINDOWS\\System32\\igfxtray.exe"
"HotKeysCmds"="C:\\WINDOWS\\System32\\hkcmd.exe"
"dla"="C:\\WINDOWS\\system32\\dla\\tfswctrl.exe"
"Recguard"="C:\\WINDOWS\\SMINST\\RECGUARD.EXE"
"WCOLOREAL"="\"C:\\Program Files\\COMPAQ\\Coloreal\\coloreal.exe\""
"DDCActiveMenu"="\"C:\\Program Files\\WildTangent\\DDC\\ActiveMenu\\DDCActiveMenu.exe\" -boot"
"srmclean"="C:\\Cpqs\\Scom\\srmclean.exe"
"CPQEASYACC"="C:\\Program Files\\COMPAQ\\Easy Access Button Support\\StartEAK.exe"
"NAV Agent"="c:\\PROGRA~1\\NORTON~1\\navapw32.exe"
"wltray.exe"="C:\\WINDOWS\\System32\\wltray.exe"
"SsAAD.exe"="C:\\PROGRA~1\\Sony\\SONICS~1\\SsAAD.exe"
"NeroFilterCheck"="C:\\WINDOWS\\system32\\NeroCheck.exe"
"SunJavaUpdateSched"="C:\\Program Files\\Java\\jre1.5.0_06\\bin\\jusched.exe"
"WinampAgent"="C:\\Program Files\\Winamp\\winampa.exe"
"QuickTime Task"="\"C:\\Program Files\\QuickTime\\qttask.exe\" -atboottime"
"iTunesHelper"="\"C:\\Program Files\\iTunes\\iTunesHelper.exe\""
"TkBellExe"="\"C:\\Program Files\\Common Files\\Real\\Update_OB\\realsched.exe\" -osboot"
"!AVG Anti-Spyware"="\"C:\\Program Files\\Grisoft\\AVG Anti-Spyware 7.5\\avgas.exe\" /minimized"

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\OptionalComponents]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\OptionalComponents\IMAIL]
"Installed"="1"

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\OptionalComponents\MAPI]
"Installed"="1"
"NoChange"="1"

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\OptionalComponents\MSFS]
"Installed"="1"

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\runonce]
@="C:\\Program Files\\compaq\\Compaq Advisor\\bin\\compaq-rba.exe -z"

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shellexecutehooks]
"{57B86673-276A-48B2-BAE7-C6DBB3020EB8}"="AVG Anti-Spyware 7.5"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"="msapsspc.dll, schannel.dll, digest.dll, msnsspc.dll"


[HKEY_LOCAL_MACHINE\software\Microsoft\Windows NT\CurrentVersion\Svchost]
LocalService REG_MULTI_SZ Alerter\0WebClient\0LmHosts\0RemoteRegistry\0upnphost\0SSDPSRV\0\0
NetworkService REG_MULTI_SZ DnsCache\0\0
rpcss REG_MULTI_SZ RpcSs\0\0
imgsvc REG_MULTI_SZ StiSvc\0\0
termsvcs REG_MULTI_SZ TermService\0\0
HTTPFilter REG_MULTI_SZ HTTPFilter\0\0
DcomLaunch REG_MULTI_SZ DcomLaunch\0TermService\0\0



Contents of the 'Scheduled Tasks' folder
C:\WINDOWS\tasks\Norton AntiVirus - Scan my computer.job
C:\WINDOWS\tasks\Symantec NetDetect.job

Completion time: 07-01-18 21:41:58
C:\ComboFix2.txt ... 07-01-17 17:24

New HijackThis log
Logfile of HijackThis v1.99.1
Scan saved at 9:47:34 PM, on 1/18/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\Program Files\compaq\Compaq Advisor\bin\compaq-rba.exe
c:\Program Files\Norton AntiVirus\navapsvc.exe
C:\WINDOWS\System32\wltrysvc.exe
C:\WINDOWS\System32\bcmwltry.exe
C:\WINDOWS\system32\wscntfy.exe
C:\windows\system\hpsysdrv.exe
C:\WINDOWS\System32\igfxtray.exe
C:\WINDOWS\System32\hkcmd.exe
C:\WINDOWS\system32\dla\tfswctrl.exe
C:\Program Files\COMPAQ\Easy Access Button Support\StartEAK.exe
C:\PROGRA~1\NORTON~1\navapw32.exe
C:\Program Files\Compaq\Easy Access Button Support\CPQEADM.EXE
C:\Compaq\EAKDRV\EAUSBKBD.EXE
C:\PROGRA~1\Compaq\EASYAC~1\BttnServ.exe
C:\WINDOWS\System32\wltray.exe
C:\PROGRA~1\Sony\SONICS~1\SsAAD.exe
C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
C:\Program Files\Winamp\winampa.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
C:\Program Files\AIM95\aim.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Belkin\Belkin 802.11g Wireless PCI Card Configuration Utility\utility.exe
C:\Program Files\WinZip\WZQKPICK.EXE
C:\PROGRA~1\MOZILL~1\FIREFOX.EXE
C:\Program Files\Java\jre1.5.0_06\bin\jucheck.exe
C:\Program Files\Google\GoogleToolbarNotifier\1.2.908.5008\GoogleToolbarNotifier.exe
C:\Program Files\Adobe\Adobe Photoshop CS2\Photoshop.exe
C:\WINDOWS\System32\svchost.exe
C:\DOCUME~1\HOANG~1.YOU\LOCALS~1\Temp\Adobelm_Cleanup.0001
C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Desktop\HijackThis.exe
C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://store.presario.net/scripts/redirectors/presario/storeredir2.dll?s=consumerfav&c=2c02&lc=0409
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://rd.yahoo.com/customize/yessentials_cq/defaults/sb/*http://www.yahoo.com/search/ie.html
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://pops.mmohsix.com/pop06ap.php?src=mm&rand=0.8279034
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Microsoft Internet Explorer provided by Compaq
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar3.dll
O2 - BHO: NAV Helper - {BDF3E430-B101-42AD-A544-FADC6B084872} - c:\Program Files\Norton AntiVirus\NavShExt.dll
O3 - Toolbar: Norton AntiVirus - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - c:\Program Files\Norton AntiVirus\NavShExt.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar3.dll
O4 - HKLM\..\Run: [hpsysdrv] c:\windows\system\hpsysdrv.exe
O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\System32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\System32\hkcmd.exe
O4 - HKLM\..\Run: [dla] C:\WINDOWS\system32\dla\tfswctrl.exe
O4 - HKLM\..\Run: [Recguard] C:\WINDOWS\SMINST\RECGUARD.EXE
O4 - HKLM\..\Run: [WCOLOREAL] "C:\Program Files\COMPAQ\Coloreal\coloreal.exe"
O4 - HKLM\..\Run: [DDCActiveMenu] "C:\Program Files\WildTangent\DDC\ActiveMenu\DDCActiveMenu.exe" -boot
O4 - HKLM\..\Run: [srmclean] C:\Cpqs\Scom\srmclean.exe
O4 - HKLM\..\Run: [CPQEASYACC] C:\Program Files\COMPAQ\Easy Access Button Support\StartEAK.exe
O4 - HKLM\..\Run: [NAV Agent] c:\PROGRA~1\NORTON~1\navapw32.exe
O4 - HKLM\..\Run: [wltray.exe] C:\WINDOWS\System32\wltray.exe
O4 - HKLM\..\Run: [SsAAD.exe] C:\PROGRA~1\Sony\SONICS~1\SsAAD.exe
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
O4 - HKLM\..\Run: [WinampAgent] C:\Program Files\Winamp\winampa.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKLM\..\RunOnce: [] C:\Program Files\compaq\Compaq Advisor\bin\compaq-rba.exe -z
O4 - HKCU\..\Run: [Microsoft Works Update Detection] c:\Program Files\Microsoft Works\WkDetect.exe
O4 - HKCU\..\Run: [AIM] C:\Program Files\AIM95\aim.exe -cnetwait.odl
O4 - HKCU\..\Run: [AnyDVD] C:\Program Files\BitLord\Downloads\SlySoft.AnyDVD.v6.0.8.2.Multilanguage.WinAll.Cracked-CRD\crack\AnyDVD.exe
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - Startup: Adobe Gamma.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: Belkin 802.11g Wireless PCI Card Configuration Utility.lnk = ?
O4 - Global Startup: WinZip Quick Pick.lnk = C:\Program Files\WinZip\WZQKPICK.EXE
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~4\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~4\OFFICE11\REFIEBAR.DLL
O9 - Extra button: AOL Instant Messenger (SM) - {AC9E2541-2814-11d5-BC6D-00B0D0A1DE45} - C:\Program Files\AIM95\aim.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O12 - Plugin for .spop: C:\Program Files\Internet Explorer\Plugins\NPDocBox.dll
O14 - IERESET.INF: START_PAGE_URL=http://store.presario.net/scripts/redirectors/presario/storeredir2.dll?s=consumerfav&c=2c02&lc=0409
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1155115529536
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1155150179592
O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) - http://acs.pandasoftware.com/activescan/as5free/asinst.cab
O16 - DPF: {E473A65C-8087-49A3-AFFD-C5BC4A10669B} (Quantum Streaming IE Player Class) - http://mvnet.xlontech.net/qm/fox/06101102/qsp2ie06101001.cab
O20 - Winlogon Notify: igfxcui - C:\WINDOWS\SYSTEM32\igfxsrvc.dll
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: AVG Anti-Spyware Guard - Anti-Malware Development a.s. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: Compaq Advisor (Compaq_RBA) - NeoPlanet - C:\Program Files\compaq\Compaq Advisor\bin\compaq-rba.exe
O23 - Service: iPod Service - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Content Monitoring Tool (msCMTSrvc) - Unknown owner - C:\WINDOWS\system32\msCMTSrvc.exe (file missing)
O23 - Service: MSCSPTISRV - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AVLib\MSCSPTISRV.exe
O23 - Service: Norton AntiVirus Auto Protect Service (navapsvc) - Symantec Corporation - c:\Program Files\Norton AntiVirus\navapsvc.exe
O23 - Service: PACSPTISVR - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AVLib\PACSPTISVR.exe
O23 - Service: ScriptBlocking Service (SBService) - Symantec Corporation - C:\PROGRA~1\COMMON~1\SYMANT~1\SCRIPT~1\SBServ.exe
O23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AVLib\SPTISRV.exe
O23 - Service: SonicStage SCSI Service (SSScsiSV) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AVLib\SSScsiSV.exe
O23 - Service: Broadcom Wireless LAN Tray Service (wltrysvc) - Unknown owner - C:\WINDOWS\System32\wltrysvc.exe
 

·
TSF Security Manager, Emeritus
Joined
·
42,836 Posts
Hiya,

I highly recommend the removal of your crack program. It is likely a major contributor to the state your computer has been in and as long as you have these types of programs on your system, you will be prone to reinfection.

I'd like you to take a quick look at all the cookies AVG A-S cleaned out, and then look at how many more 'bad' cookies are already in the Panda scan, both in your Firefox and Internet Explorer. :sayno: It would be a good idea to go into Firefox>Tools>Privacy and set your cookies to 'prompt' so you can control them better. It would also be a really good idea to run AVG A-S after every internet session so it can clear out the bad cookies for you.

Please copy this page to Notepad and save to your desktop for reference as you will not have any browsers open while you are carrying out portions of these instructions.

***************************************************

Close any open browsers.

***************************************************

Uninstall the following via the Add/Remove Panel (Start->(Settings)->Control Panel->Add/Remove Programs)

SlySoft.AnyDVD

--------------------------------------------------------------------

Open HijackThis and click on 'Do a System Scan Only'. 'Check' the following entries:

O4 - HKLM\..\Run: [DDCActiveMenu] "C:\Program Files\WildTangent\DDC\ActiveMenu\DDCActiveMenu.exe" -boot
O4 - HKCU\..\Run: [AnyDVD] C:\Program Files\BitLord\Downloads\SlySoft.AnyDVD.v6.0.8.2.Multilanguage.WinAll.Cracked-CRD\crack\AnyDVD.exe


Click 'Fix Checked' and close HijackThis.

--------------------------------------------------------------------

Using 'My Computer', navigate to and delete the following Files and Folder if they still exist.

C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Desktop\setup.exe[²ÜÇ\ExtractDLL.dll
C:\WINDOWS\pf78ba.exe
C:\Program Files\BitLord\Downloads\SlySoft.AnyDVD.v6.0.8.2.Multilanguage.WinAll.Cracked-CRD


--------------------------------------------------------------------

Open Cleanup! by double-clicking the icon on your desktop (or from the Start > All Programs menu). Set the program up as follows:
*Click "Options..."
*Move the arrow down to "Custom CleanUp!"
*Put a check next to the following:
  • Empty Recycle Bins
  • Delete Cookies
  • Delete Prefetch files
  • Cleanup! All Users
  • Click on the "Temporary Files" and uncheck the box for "Scan drives for file matching" if it's checked.
Click OK
Press the CleanUp! button to start the program.

Reboot/logoff when prompted.

--------------------------------------------------------------------

Let's get some added protection on this system:

Download SpywareBlaster 3.5.1 to help prevent spyware from installing in the first place. Install & update SpywareBlaster with the latest definitions. After you have updated, click the button - enable protection for all unprotected items.

Download Spyware Guard to catch and block spyware before it can execute.

Download IE-SPYAD.EXE to block access to malicious websites so you cannot be redirected to them from an infected site or email. IE/Spyad places more than 4000 dubious websites and domains in the IE Restricted list. This severely impairs attempts to infect your system. It basically prevents any downloads (Cookies etc) from the sites listed, although you will still be able to connect to the sites. This is a self-extracting .ZIP file, save it to your desktop. Once downloaded, double-click on it to extract the files inside (default dir is C:\IE-SPYAD)
  • Now navigate to C:\ie-spyad. Double click to open it.
  • From within the folder, double-click install.bat
  • Select Option #2 - Install the new IE-SPYAD list, by typing 2
  • Then return to the main menu.
  • Select option #4 - Add the old porn sites domain, by typing 4
--------------------------------------------------------------------

Please perform an online scan with Internet Explorer at Kaspersky Online Scanner

Answer Yes, when prompted to install an ActiveX component.
  • The program will then begin downloading the latest definition files.
  • Once the files have been downloaded click on NEXT
  • Locate the Scan Settings button & configure to:
    • Scan using the following Anti-Virus database:
      • Extended
    • Scan Options:
      • Scan Archives
        [*]Scan Mail Bases
  • Click OK & have it scan My Computer
  • Once the scan is complete, it will display if your system has been infected. It does not provide an option to clean/disinfect. We only require a report from it.
  • Click the Save as Text button to save the file to your desktop so that you may post it in your next reply

How is your system behaving now?
 

·
Registered
Joined
·
11 Posts
Discussion Starter · #19 ·
Computer is running a little bit better, its still lagging though


Friday, January 19, 2007 11:04:46 PM
Operating System: Microsoft Windows XP Home Edition, Service Pack 2 (Build 2600)
Kaspersky Online Scanner version: 5.0.83.0
Kaspersky Anti-Virus database last update: 20/01/2007
Kaspersky Anti-Virus database records: 245716
Scan Settings
Scan using the following antivirus database standard
Scan Archives true
Scan Mail Bases true
Scan Target My Computer
A:\
C:\
D:\
E:\
G:\
Scan Statistics
Total number of scanned objects 64852
Number of viruses found 4
Number of infected objects 5 / 0
Number of suspicious objects 0
Duration of the scan process 03:24:48

Infected Object Name Virus Name Last Action
C:\Documents and Settings\All Users\Application Data\Microsoft\Network\Downloader\qmgr0.dat Object is locked skipped
C:\Documents and Settings\All Users\Application Data\Microsoft\Network\Downloader\qmgr1.dat Object is locked skipped
C:\Documents and Settings\Hoang Nguyen\Local Settings\Temp\hsperfdata_Hoang Nguyen\1704 Object is locked skipped
C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\cert8.db Object is locked skipped
C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\formhistory.dat Object is locked skipped
C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\googlesafebrowsing.db Object is locked skipped
C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\history.dat Object is locked skipped
C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\key3.db Object is locked skipped
C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\parent.lock Object is locked skipped
C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Cookies\index.dat Object is locked skipped
C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat Object is locked skipped
C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG Object is locked skipped
C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Local Settings\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\Cache\_CACHE_001_ Object is locked skipped
C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Local Settings\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\Cache\_CACHE_002_ Object is locked skipped
C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Local Settings\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\Cache\_CACHE_003_ Object is locked skipped
C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Local Settings\Application Data\Mozilla\Firefox\Profiles\4af7xfci.default\Cache\_CACHE_MAP_ Object is locked skipped
C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Local Settings\History\History.IE5\index.dat Object is locked skipped
C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Local Settings\History\History.IE5\MSHist012007011920070120\index.dat Object is locked skipped
C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Local Settings\Temp\~DF1DA0.tmp Object is locked skipped
C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Local Settings\Temp\~DF29C9.tmp Object is locked skipped
C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\Local Settings\Temporary Internet Files\Content.IE5\index.dat Object is locked skipped
C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\NTUSER.DAT Object is locked skipped
C:\Documents and Settings\Hoang.YOUR-PA86Z1I3G7\ntuser.dat.LOG Object is locked skipped
C:\Documents and Settings\LocalService\Cookies\index.dat Object is locked skipped
C:\Documents and Settings\LocalService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat Object is locked skipped
C:\Documents and Settings\LocalService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG Object is locked skipped
C:\Documents and Settings\LocalService\Local Settings\History\History.IE5\index.dat Object is locked skipped
C:\Documents and Settings\LocalService\Local Settings\Temp\Cookies\index.dat Object is locked skipped
C:\Documents and Settings\LocalService\Local Settings\Temp\History\History.IE5\index.dat Object is locked skipped
C:\Documents and Settings\LocalService\Local Settings\Temp\Temporary Internet Files\Content.IE5\index.dat Object is locked skipped
C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\index.dat Object is locked skipped
C:\Documents and Settings\LocalService\NTUSER.DAT Object is locked skipped
C:\Documents and Settings\LocalService\ntuser.dat.LOG Object is locked skipped
C:\Documents and Settings\NetworkService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat Object is locked skipped
C:\Documents and Settings\NetworkService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG Object is locked skipped
C:\Documents and Settings\NetworkService\NTUSER.DAT Object is locked skipped
C:\Documents and Settings\NetworkService\ntuser.dat.LOG Object is locked skipped
C:\System Volume Information\MountPointManagerRemoteDatabase Object is locked skipped
C:\System Volume Information\_restore{CD45504F-D983-486E-9C46-F5C3E4ADCBD7}\RP272\A0534372.exe/data0006 Infected: Trojan-Downloader.Win32.PurityScan.cf skipped
C:\System Volume Information\_restore{CD45504F-D983-486E-9C46-F5C3E4ADCBD7}\RP272\A0534372.exe NSIS: infected - 1 skipped
C:\System Volume Information\_restore{CD45504F-D983-486E-9C46-F5C3E4ADCBD7}\RP272\A0534418.exe Infected: Trojan-Downloader.Win32.PurityScan.cj skipped
C:\System Volume Information\_restore{CD45504F-D983-486E-9C46-F5C3E4ADCBD7}\RP275\A0534503.exe Infected: Trojan-Downloader.Win32.INService.gen skipped
C:\System Volume Information\_restore{CD45504F-D983-486E-9C46-F5C3E4ADCBD7}\RP275\A0534507.exe Infected: Trojan-Dropper.Win32.Binder.c skipped
C:\System Volume Information\_restore{CD45504F-D983-486E-9C46-F5C3E4ADCBD7}\RP277\change.log Object is locked skipped
C:\WINDOWS\$NtUninstallKB828741$\catsrv.dll Object is locked skipped
C:\WINDOWS\$NtUninstallKB828741$\catsrvut.dll Object is locked skipped
C:\WINDOWS\$NtUninstallKB828741$\clbcatex.dll Object is locked skipped
C:\WINDOWS\$NtUninstallKB828741$\clbcatq.dll Object is locked skipped
C:\WINDOWS\$NtUninstallKB828741$\colbact.dll Object is locked skipped
C:\WINDOWS\$NtUninstallKB828741$\comadmin.dll Object is locked skipped
C:\WINDOWS\$NtUninstallKB828741$\comrepl.exe Object is locked skipped
C:\WINDOWS\$NtUninstallKB828741$\comsvcs.dll Object is locked skipped
C:\WINDOWS\$NtUninstallKB828741$\comuid.dll Object is locked skipped
C:\WINDOWS\$NtUninstallKB828741$\es.dll Object is locked skipped
C:\WINDOWS\$NtUninstallKB828741$\migregdb.exe Object is locked skipped
C:\WINDOWS\$NtUninstallKB828741$\msdtcprx.dll Object is locked skipped
C:\WINDOWS\$NtUninstallKB828741$\msdtctm.dll Object is locked skipped
C:\WINDOWS\$NtUninstallKB828741$\msdtcuiu.dll Object is locked skipped
C:\WINDOWS\$NtUninstallKB828741$\mtxclu.dll Object is locked skipped
C:\WINDOWS\$NtUninstallKB828741$\mtxoci.dll Object is locked skipped
C:\WINDOWS\$NtUninstallKB828741$\ole32.dll Object is locked skipped
C:\WINDOWS\$NtUninstallKB828741$\ole32.dll.000 Object is locked skipped
C:\WINDOWS\$NtUninstallKB828741$\rpcrt4.dll Object is locked skipped
C:\WINDOWS\$NtUninstallKB828741$\rpcss.dll Object is locked skipped
C:\WINDOWS\$NtUninstallKB828741$\txflog.dll Object is locked skipped
C:\WINDOWS\$NtUninstallKB828741$\txflog.dll.000 Object is locked skipped
C:\WINDOWS\$NtUninstallKB835732$\browser.dll Object is locked skipped
C:\WINDOWS\$NtUninstallKB835732$\callcont.dll Object is locked skipped
C:\WINDOWS\$NtUninstallKB835732$\callcont.dll.000 Object is locked skipped
C:\WINDOWS\$NtUninstallKB835732$\gdi32.dll Object is locked skipped
C:\WINDOWS\$NtUninstallKB835732$\h323.tsp Object is locked skipped
C:\WINDOWS\$NtUninstallKB835732$\h323msp.dll Object is locked skipped
C:\WINDOWS\$NtUninstallKB835732$\helpctr.exe Object is locked skipped
C:\WINDOWS\$NtUninstallKB835732$\ipnathlp.dll Object is locked skipped
C:\WINDOWS\$NtUninstallKB835732$\lsasrv.dll Object is locked skipped
C:\WINDOWS\$NtUninstallKB835732$\mf3216.dll Object is locked skipped
C:\WINDOWS\$NtUninstallKB835732$\msasn1.dll Object is locked skipped
C:\WINDOWS\$NtUninstallKB835732$\msgina.dll Object is locked skipped
C:\WINDOWS\$NtUninstallKB835732$\mst120.dll Object is locked skipped
C:\WINDOWS\$NtUninstallKB835732$\mst120.dll.000 Object is locked skipped
C:\WINDOWS\$NtUninstallKB835732$\netapi32.dll Object is locked skipped
C:\WINDOWS\$NtUninstallKB835732$\nmcom.dll Object is locked skipped
C:\WINDOWS\$NtUninstallKB835732$\nmcom.dll.000 Object is locked skipped
C:\WINDOWS\$NtUninstallKB835732$\rtcdll.dll Object is locked skipped
C:\WINDOWS\$NtUninstallKB835732$\schannel.dll Object is locked skipped
C:\WINDOWS\Debug\PASSWD.LOG Object is locked skipped
C:\WINDOWS\SchedLgU.Txt Object is locked skipped
C:\WINDOWS\SoftwareDistribution\EventCache\{9487D769-7E64-4922-83B9-19E626C2C1FB}.bin Object is locked skipped
C:\WINDOWS\SoftwareDistribution\ReportingEvents.log Object is locked skipped
C:\WINDOWS\Sti_Trace.log Object is locked skipped
C:\WINDOWS\system32\CatRoot2\edb.log Object is locked skipped
C:\WINDOWS\system32\CatRoot2\tmp.edb Object is locked skipped
C:\WINDOWS\system32\config\AppEvent.Evt Object is locked skipped
C:\WINDOWS\system32\config\default Object is locked skipped
C:\WINDOWS\system32\config\default.LOG Object is locked skipped
C:\WINDOWS\system32\config\SAM Object is locked skipped
C:\WINDOWS\system32\config\SAM.LOG Object is locked skipped
C:\WINDOWS\system32\config\SecEvent.Evt Object is locked skipped
C:\WINDOWS\system32\config\SECURITY Object is locked skipped
C:\WINDOWS\system32\config\SECURITY.LOG Object is locked skipped
C:\WINDOWS\system32\config\software Object is locked skipped
C:\WINDOWS\system32\config\software.LOG Object is locked skipped
C:\WINDOWS\system32\config\SysEvent.Evt Object is locked skipped
C:\WINDOWS\system32\config\system Object is locked skipped
C:\WINDOWS\system32\config\system.LOG Object is locked skipped
C:\WINDOWS\system32\h323log.txt Object is locked skipped
C:\WINDOWS\system32\wbem\Repository\FS\INDEX.BTR Object is locked skipped
C:\WINDOWS\system32\wbem\Repository\FS\INDEX.MAP Object is locked skipped
C:\WINDOWS\system32\wbem\Repository\FS\MAPPING.VER Object is locked skipped
C:\WINDOWS\system32\wbem\Repository\FS\MAPPING1.MAP Object is locked skipped
C:\WINDOWS\system32\wbem\Repository\FS\MAPPING2.MAP Object is locked skipped
C:\WINDOWS\system32\wbem\Repository\FS\OBJECTS.DATA Object is locked skipped
C:\WINDOWS\system32\wbem\Repository\FS\OBJECTS.MAP Object is locked skipped
C:\WINDOWS\wiadebug.log Object is locked skipped
C:\WINDOWS\wiaservc.log Object is locked skipped
C:\WINDOWS\WindowsUpdate.log Object is locked skipped
 

·
TSF Security Manager, Emeritus
Joined
·
42,836 Posts
Please print out or copy thes instructions to Notepad for reference.

*****************************************************

Please download SmitfraudFix (by S!Ri) to your Desktop.

--------------------------------------------

Please download SREng

--------------------------------------------

Close any open browsers.

--------------------------------------------

Double-click smitfraudfix.exe to start the tool.
  • Select option #1 - Search by typing 1 and press "Enter"
  • A text file will appear which lists infected files (if present).
  • Please copy/paste the content of that report into your next reply.
IMPORTANT: Do NOT run option #2 OR any other option until you are directed to do so!

---------------------------------------------

Run SREng:

1. Extract it to Desktop & double click SREng.exe to run it

2. Select 'Smart Scan' & tick "Verify Digital Signatures"

3. Click on the [Scan] button

4. When finished, click on the [Save Reports] button & save the log to Desktop

5. Attach the log in your next reply. Dont post it.

You may have to rename SREngLOG.log to SREngLOG.txt to upload it.
 
1 - 20 of 20 Posts
Status
Not open for further replies.
Top