• Announcements

    • Budfred

      IE 11 copy/paste problem

      It has come to our attention that people using Internet Explorer 11 (IE 11) are having trouble with copy/paste to the forum. If you encounter this problem, using a different browser like Firefox or Chrome seems to get around the problem. We do not know what the problem is, but it seems to be specific to IE 11 and we are hopeful that Microsoft will eventually fix it.
    • Budfred

      PLEASE READ - Reversing upgrade   02/23/2017

      We have found that this new upgrade is somewhat of a disaster.  We are finding lots of glitches in being able to post and administer the forum.  Additionally, there are new costs associated with the upgrade that we simply cannot afford.  As a result, we have decided to reverse course and go back to the previous version of our software.  Since this will involve restoring it from a backup, we will lose posts that have been added since January 30 or possibly even some before that.    If you started a topic during that time, we urge you to make backups of your posts and you will need to start the topics over again after the change.  You can simply paste the copies of your posts that you created at that point.    If you joined the forum this month, you will need to re-register since your membership will be lost along with the posts.  Since you have a concealed password, we cannot simply restore your membership for you.   We are going to backup as much as we can so that it will reduce inconvenience for our members.  Unfortunately we cannot back everything up since much will be incompatible with the old version of our software.  We apologize for the confusion and regret the need to do this even though it is not viable to continue with this version of the software.   We plan to begin the process tomorrow evening and, if it goes smoothly, we shouldn't be offline for very long.  However, since we have not done this before, we are not sure how smoothly it will go.  We ask your patience as we proceed.
Sign in to follow this  
Followers 0
fdsa

Malware Infestation

21 posts in this topic

Hi there,

 

I have used you guys before and I think the service is fantastic, great job to all who make this possible. If possible as well as deleting the bad, is it possible for you to know the useless and the space wasting??

 

Here is my hjt log.

 

 

Logfile of HijackThis v1.99.1

Scan saved at 10:15:23 PM, on 6/13/2007

Platform: Windows XP SP2 (WinNT 5.01.2600)

MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

 

Running processes:

C:\WINDOWS\System32\smss.exe

C:\WINDOWS\system32\winlogon.exe

C:\WINDOWS\system32\services.exe

C:\WINDOWS\system32\lsass.exe

C:\WINDOWS\system32\svchost.exe

C:\WINDOWS\System32\svchost.exe

C:\WINDOWS\Explorer.EXE

C:\WINDOWS\System32\WLTRYSVC.EXE

C:\WINDOWS\System32\bcmwltry.exe

C:\WINDOWS\system32\spoolsv.exe

C:\PROGRA~1\Grisoft\AVG7\avgamsvr.exe

C:\PROGRA~1\Grisoft\AVG7\avgupsvc.exe

C:\PROGRA~1\Grisoft\AVG7\avgemc.exe

C:\Program Files\ewido anti-malware\ewidoctrl.exe

C:\Program Files\Dell\NICCONFIGSVC\NICCONFIGSVC.exe

C:\WINDOWS\system32\hkcmd.exe

C:\WINDOWS\system32\igfxpers.exe

C:\Program Files\Synaptics\SynTP\SynTPEnh.exe

C:\WINDOWS\system32\WLTRAY.exe

C:\WINDOWS\stsystra.exe

C:\Program Files\Dell\QuickSet\quickset.exe

C:\Program Files\CyberLink\PowerDVD\DVDLauncher.exe

C:\WINDOWS\system32\dla\tfswctrl.exe

C:\WINDOWS\system32\igfxsrvc.exe

C:\Program Files\Musicmatch\Musicmatch Jukebox\mm_tray.exe

C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe

C:\Program Files\Corel\Corel Photo Album 6\MediaDetect.exe

C:\Program Files\Thomson\SpeedTouch USB\Dragdiag.exe

C:\Program Files\HP\hpcoretech\hpcmpmgr.exe

C:\Program Files\Hewlett-Packard\HP Software Update\HPWuSchd2.exe

C:\WINDOWS\system32\hphmon05.exe

C:\Program Files\Java\jre1.6.0_01\bin\jusched.exe

C:\Program Files\QuickTime\qttask.exe

C:\Program Files\Common Files\Real\Update_OB\realsched.exe

C:\PROGRA~1\MUSICM~1\MUSICM~3\MMDiag.exe

C:\Program Files\HighCriteria\TotalRecorder\TotRecSched.exe

C:\Program Files\Google\Google Desktop Search\GoogleDesktopIndex.exe

C:\PROGRA~1\Grisoft\AVG7\avgcc.exe

C:\Program Files\Google\Google Desktop Search\GoogleDesktopDisplay.exe

C:\Program Files\NetWaiting\netWaiting.exe

C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe

C:\Program Files\MUSICMATCH\Musicmatch Jukebox\mim.exe

C:\Program Files\MSN Messenger\MsnMsgr.Exe

C:\PROGRA~1\MI3AA1~1\wcescomm.exe

C:\Program Files\DellSupport\DSAgnt.exe

C:\Program Files\Digital Line Detect\DLG.exe

C:\PROGRA~1\MI3AA1~1\rapimgr.exe

C:\WINDOWS\system32\svchost.exe

C:\Program Files\Real\RealPlayer\RealPlay.exe

C:\Documents and Settings\lucy denny\Desktop\Charlie's Folder\HijackThis.exe

C:\WINDOWS\system32\wuauclt.exe

 

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.yahoo.com/

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.dell.com

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.dell.com

O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll

O2 - BHO: DriveLetterAccess - {5CA3D70E-1895-11CF-8E15-001234567890} - C:\WINDOWS\system32\dla\tfswshx.dll

O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll

O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)

O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar4.dll

O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar4.dll

O4 - HKLM\..\Run: [igfxtray] C:\WINDOWS\system32\igfxtray.exe

O4 - HKLM\..\Run: [igfxhkcmd] C:\WINDOWS\system32\hkcmd.exe

O4 - HKLM\..\Run: [igfxpers] C:\WINDOWS\system32\igfxpers.exe

O4 - HKLM\..\Run: [synTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe

O4 - HKLM\..\Run: [broadcom Wireless Manager UI] C:\WINDOWS\system32\WLTRAY.exe

O4 - HKLM\..\Run: [sigmatelSysTrayApp] stsystra.exe

O4 - HKLM\..\Run: [Dell QuickSet] C:\Program Files\Dell\QuickSet\quickset.exe

O4 - HKLM\..\Run: [DVDLauncher] "C:\Program Files\CyberLink\PowerDVD\DVDLauncher.exe"

O4 - HKLM\..\Run: [dla] C:\WINDOWS\system32\dla\tfswctrl.exe

O4 - HKLM\..\Run: [iSUSPM Startup] "C:\Program Files\Common Files\InstallShield\UpdateService\isuspm.exe" -startup

O4 - HKLM\..\Run: [iSUSScheduler] "C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe" -start

O4 - HKLM\..\Run: [MimBoot] C:\PROGRA~1\MUSICM~1\MUSICM~3\mimboot.exe

O4 - HKLM\..\Run: [MMTray] "C:\Program Files\Musicmatch\Musicmatch Jukebox\mm_tray.exe"

O4 - HKLM\..\Run: [Google Desktop Search] "C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe" /startup

O4 - HKLM\..\Run: [Corel Photo Downloader] C:\Program Files\Corel\Corel Photo Album 6\MediaDetect.exe

O4 - HKLM\..\Run: [speedTouch USB Diagnostics] "C:\Program Files\Thomson\SpeedTouch USB\Dragdiag.exe" /icon

O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe

O4 - HKLM\..\Run: [HPHUPD05] C:\Program Files\Hewlett-Packard\{D946675D-1D6C-4dc8-9E0D-B4B8EAA30EAA}\hphupd05.exe

O4 - HKLM\..\Run: [HP Component Manager] "C:\Program Files\HP\hpcoretech\hpcmpmgr.exe"

O4 - HKLM\..\Run: [HP Software Update] "C:\Program Files\Hewlett-Packard\HP Software Update\HPWuSchd2.exe"

O4 - HKLM\..\Run: [HPHmon05] C:\WINDOWS\system32\hphmon05.exe

O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_01\bin\jusched.exe"

O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime

O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot

O4 - HKLM\..\Run: [MSKDetectorExe] C:\Program Files\McAfee\SpamKiller\MSKDetct.exe /uninstall

O4 - HKLM\..\Run: [TotalRecorderScheduler] "C:\Program Files\HighCriteria\TotalRecorder\TotRecSched.exe"

O4 - HKLM\..\Run: [AVG7_CC] C:\PROGRA~1\Grisoft\AVG7\avgcc.exe /STARTUP

O4 - HKCU\..\Run: [ModemOnHold] C:\Program Files\NetWaiting\netWaiting.exe

O4 - HKCU\..\Run: [bgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Common Files\Ahead\lib\NMBgMonitor.exe"

O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe

O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background

O4 - HKCU\..\Run: [H/PC Connection Agent] "C:\PROGRA~1\MI3AA1~1\wcescomm.exe"

O4 - HKCU\..\Run: [DellSupport] "C:\Program Files\DellSupport\DSAgnt.exe" /startup

O4 - Global Startup: Digital Line Detect.lnk = ?

O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE

O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll

O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll

O9 - Extra button: Create Mobile Favorite - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MI3AA1~1\INetRepl.dll

O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MI3AA1~1\INetRepl.dll

O9 - Extra 'Tools' menuitem: Create Mobile Favorite... - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MI3AA1~1\INetRepl.dll

O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\system32\Shdocvw.dll

O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe

O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe

O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204

O16 - DPF: {20A60F0D-9AFA-4515-A0FD-83BD84642501} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab56986.cab

O16 - DPF: {25365FF3-2746-4230-9DA7-163CCA318309} (Automatic Driver Installation Control) - http://inst.c-wss.com/n033p/EN/install/gtdownlr.cab

O16 - DPF: {4ED9DDF0-7479-4BBE-9335-5A1EDB1D8A21} - http://download.mcafee.com/molbin/shared/m...01/mcinsctl.cab

O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/EN-US/a-UNO1/GAME_UNO1.cab

O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/Messe...nt.cab56907.cab

O17 - HKLM\System\CCS\Services\Tcpip\..\{6C08C4DE-5E56-4204-8D95-DFA975C65946}: NameServer = 158.152.1.58 158.152.1.43

O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL

O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL

O20 - AppInit_DLLs: C:\PROGRA~1\Google\GOOGLE~1\GOEC62~1.DLL

O20 - Winlogon Notify: igfxcui - C:\WINDOWS\SYSTEM32\igfxdev.dll

O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\

O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgamsvr.exe

O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgupsvc.exe

O23 - Service: AVG E-mail Scanner (AVGEMS) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgemc.exe

O23 - Service: DSBrokerService - Unknown owner - C:\Program Files\DellSupport\brkrsvc.exe

O23 - Service: ewido security suite control - ewido networks - C:\Program Files\ewido anti-malware\ewidoctrl.exe

O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe

O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe

O23 - Service: NICCONFIGSVC - Dell Inc. - C:\Program Files\Dell\NICCONFIGSVC\NICCONFIGSVC.exe

O23 - Service: Dell Wireless WLAN Tray Service (wltrysvc) - Unknown owner - C:\WINDOWS\System32\WLTRYSVC.EXE

 

 

 

AVG scan is clean every time.

 

 

 

Cheers :)

Share this post


Link to post
Share on other sites

The new ewido/ AVG scan

 

 

---------------------------------------------------------

AVG Anti-Spyware - Scan Report

---------------------------------------------------------

 

+ Created at: 8:57:22 PM 6/15/2007

 

+ Scan result:

 

 

 

HKLM\SOFTWARE\Classes\Interface\{636FF82A-830A-42EA-938B-6DC78B2AC30C} -> Adware.Generic : Ignored.

HKLM\SOFTWARE\Classes\Interface\{81CDDAE8-3B92-4F0D-86C1-8DD5DB6A8471} -> Adware.Generic : Ignored.

HKLM\SOFTWARE\Classes\Interface\{8C88AAE2-A341-4DE8-B064-062194307E5F} -> Adware.Generic : Ignored.

HKLM\SOFTWARE\Classes\Interface\{A55C3BA7-DB1E-4652-867E-055CEAFE8018} -> Adware.Generic : Ignored.

HKLM\SOFTWARE\Classes\Interface\{C28EB22A-6966-4E4B-8592-E84C28D38402} -> Adware.Generic : Ignored.

HKLM\SOFTWARE\Classes\TypeLib\{42FC3840-020C-4E93-A34C-4DF1A6330FBB} -> Adware.Generic : Ignored.

HKLM\SOFTWARE\Classes\TypeLib\{506146FD-9499-49A8-AEDE-692C173B2AA4} -> Adware.Generic : Ignored.

HKLM\SOFTWARE\Classes\TypeLib\{B1C54189-72F0-4353-987B-18FA221BEF09} -> Adware.Generic : Ignored.

HKLM\SOFTWARE\Classes\TypeLib\{EFA1EC0F-8359-41B7-A178-7DD6805A0C79} -> Adware.Generic : Ignored.

HKU\S-1-5-21-1632652722-1721386803-531504974-1006\Software\TrustIn -> Adware.Generic : Ignored.

HKU\S-1-5-21-1632652722-1721386803-531504974-1006\Software\TrustIn\Contextual Ads -> Adware.Generic : Ignored.

HKU\S-1-5-21-1632652722-1721386803-531504974-1006\Software\TrustIn\Search Results Spoofer -> Adware.Generic : Ignored.

HKU\S-1-5-21-1632652722-1721386803-531504974-1006\Software\TrustIn\Search Results Spoofer\se -> Adware.Generic : Ignored.

HKU\S-1-5-21-1632652722-1721386803-531504974-1006\Software\TrustIn\Weekly Executer -> Adware.Generic : Ignored.

:mozilla.86:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.247realmedia : Ignored.

:mozilla.87:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.247realmedia : Ignored.

:mozilla.88:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.247realmedia : Ignored.

C:\Documents and Settings\lucy denny\Cookies\lucy denny@247realmedia[1].txt -> TrackingCookie.247realmedia : Ignored.

:mozilla.30:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.2o7 : Ignored.

:mozilla.31:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.2o7 : Ignored.

:mozilla.32:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.2o7 : Ignored.

:mozilla.330:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.2o7 : Ignored.

:mozilla.336:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.2o7 : Ignored.

:mozilla.33:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.2o7 : Ignored.

:mozilla.34:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.2o7 : Ignored.

:mozilla.35:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.2o7 : Ignored.

:mozilla.83:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.2o7 : Ignored.

C:\Documents and Settings\lucy denny\Cookies\lucy denny@112.2o7[1].txt -> TrackingCookie.2o7 : Ignored.

C:\Documents and Settings\lucy denny\Cookies\lucy denny@2o7[2].txt -> TrackingCookie.2o7 : Ignored.

C:\Documents and Settings\lucy denny\Cookies\lucy denny@americanexpress.122.2o7[1].txt -> TrackingCookie.2o7 : Ignored.

C:\Documents and Settings\lucy denny\Cookies\lucy denny@bnkicom.112.2o7[1].txt -> TrackingCookie.2o7 : Ignored.

C:\Documents and Settings\lucy denny\Cookies\lucy denny@digitalclarity.112.2o7[1].txt -> TrackingCookie.2o7 : Ignored.

C:\Documents and Settings\lucy denny\Cookies\lucy denny@heavycom.122.2o7[1].txt -> TrackingCookie.2o7 : Ignored.

C:\Documents and Settings\lucy denny\Cookies\lucy denny@msnportal.112.2o7[1].txt -> TrackingCookie.2o7 : Ignored.

C:\Documents and Settings\lucy denny\Cookies\lucy denny@workopolis.122.2o7[1].txt -> TrackingCookie.2o7 : Ignored.

:mozilla.303:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.7search : Ignored.

:mozilla.313:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.7search : Ignored.

C:\Documents and Settings\lucy denny\Cookies\lucy denny@7search[1].txt -> TrackingCookie.7search : Ignored.

C:\Documents and Settings\lucy denny\Cookies\lucy denny@adbrite[1].txt -> TrackingCookie.Adbrite : Ignored.

C:\Documents and Settings\lucy denny\Cookies\lucy denny@rotator.adjuggler[1].txt -> TrackingCookie.Adjuggler : Ignored.

:mozilla.127:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Adobe : Ignored.

C:\Documents and Settings\lucy denny\Cookies\lucy denny@www.adobe[1].txt -> TrackingCookie.Adobe : Ignored.

C:\Documents and Settings\lucy denny\Cookies\lucy denny@ad.adocean[2].txt -> TrackingCookie.Adocean : Ignored.

:mozilla.107:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Adrevolver : Ignored.

:mozilla.108:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Adrevolver : Ignored.

:mozilla.109:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Adrevolver : Ignored.

:mozilla.110:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Adrevolver : Ignored.

:mozilla.22:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Adrevolver : Ignored.

:mozilla.23:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Adrevolver : Ignored.

:mozilla.24:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Adrevolver : Ignored.

C:\Documents and Settings\lucy denny\Cookies\lucy denny@adrevolver[2].txt -> TrackingCookie.Adrevolver : Ignored.

:mozilla.8:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Adtech : Ignored.

:mozilla.9:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Adtech : Ignored.

C:\Documents and Settings\lucy denny\Cookies\lucy denny@adtech[2].txt -> TrackingCookie.Adtech : Ignored.

:mozilla.13:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Advertising : Ignored.

C:\Documents and Settings\lucy denny\Cookies\lucy denny@advertising[1].txt -> TrackingCookie.Advertising : Ignored.

:mozilla.97:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Adviva : Ignored.

C:\Documents and Settings\lucy denny\Cookies\lucy denny@adviva[2].txt -> TrackingCookie.Adviva : Ignored.

:mozilla.11:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Atdmt : Ignored.

C:\Documents and Settings\lucy denny\Cookies\lucy denny@atdmt[2].txt -> TrackingCookie.Atdmt : Ignored.

:mozilla.318:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Bfast : Ignored.

C:\Documents and Settings\lucy denny\Cookies\lucy denny@bfast[1].txt -> TrackingCookie.Bfast : Ignored.

C:\Documents and Settings\lucy denny\Cookies\lucy denny@bluestreak[1].txt -> TrackingCookie.Bluestreak : Ignored.

:mozilla.46:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Burstnet : Ignored.

C:\Documents and Settings\lucy denny\Cookies\lucy denny@burstnet[2].txt -> TrackingCookie.Burstnet : Ignored.

C:\Documents and Settings\lucy denny\Cookies\lucy denny@www.burstnet[2].txt -> TrackingCookie.Burstnet : Ignored.

C:\Documents and Settings\lucy denny\Cookies\lucy denny@casalemedia[1].txt -> TrackingCookie.Casalemedia : Ignored.

:mozilla.338:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Clickbank : Ignored.

C:\Documents and Settings\lucy denny\Cookies\lucy denny@clickbank[1].txt -> TrackingCookie.Clickbank : Ignored.

:mozilla.89:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Clickhype : Ignored.

C:\Documents and Settings\lucy denny\Cookies\lucy denny@ad1.clickhype[2].txt -> TrackingCookie.Clickhype : Ignored.

C:\Documents and Settings\lucy denny\Cookies\lucy denny@cz7.clickzs[1].txt -> TrackingCookie.Clickzs : Ignored.

:mozilla.63:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Com : Ignored.

C:\Documents and Settings\lucy denny\Cookies\lucy denny@com[1].txt -> TrackingCookie.Com : Ignored.

C:\Documents and Settings\lucy denny\Cookies\lucy denny@techrepublic.com[2].txt -> TrackingCookie.Com : Ignored.

:mozilla.71:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Connextra : Ignored.

C:\Documents and Settings\lucy denny\Cookies\lucy denny@connextra[2].txt -> TrackingCookie.Connextra : Ignored.

C:\Documents and Settings\lucy denny\Cookies\lucy denny@doubleclick[2].txt -> TrackingCookie.Doubleclick : Ignored.

C:\WINDOWS\Temp\Cookies\lucy denny@doubleclick[1].txt -> TrackingCookie.Doubleclick : Ignored.

C:\Documents and Settings\lucy denny\Cookies\lucy denny@adopt.euroclick[1].txt -> TrackingCookie.Euroclick : Ignored.

:mozilla.93:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Falkag : Ignored.

C:\Documents and Settings\lucy denny\Cookies\lucy denny@as-eu.falkag[2].txt -> TrackingCookie.Falkag : Ignored.

C:\Documents and Settings\lucy denny\Cookies\lucy denny@as-us.falkag[1].txt -> TrackingCookie.Falkag : Ignored.

C:\Documents and Settings\lucy denny\Cookies\lucy denny@as1.falkag[2].txt -> TrackingCookie.Falkag : Ignored.

C:\Documents and Settings\lucy denny\Cookies\lucy denny@fastclick[2].txt -> TrackingCookie.Fastclick : Ignored.

:mozilla.245:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Gemius : Ignored.

:mozilla.246:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Gemius : Ignored.

:mozilla.247:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Gemius : Ignored.

C:\Documents and Settings\lucy denny\Cookies\lucy denny@hit.gemius[2].txt -> TrackingCookie.Gemius : Ignored.

:mozilla.201:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Hitbox : Ignored.

:mozilla.244:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Hitbox : Ignored.

:mozilla.280:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Hitbox : Ignored.

:mozilla.281:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Hitbox : Ignored.

:mozilla.282:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Hitbox : Ignored.

:mozilla.283:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Hitbox : Ignored.

:mozilla.292:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Hitbox : Ignored.

:mozilla.294:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Hitbox : Ignored.

C:\Documents and Settings\lucy denny\Cookies\lucy denny@ehg-bskyb.hitbox[2].txt -> TrackingCookie.Hitbox : Ignored.

C:\Documents and Settings\lucy denny\Cookies\lucy denny@ehg-capitalgroup.hitbox[2].txt -> TrackingCookie.Hitbox : Ignored.

C:\Documents and Settings\lucy denny\Cookies\lucy denny@ehg-foxinteractive.hitbox[2].txt -> TrackingCookie.Hitbox : Ignored.

C:\Documents and Settings\lucy denny\Cookies\lucy denny@ehg-newsinteractive.hitbox[1].txt -> TrackingCookie.Hitbox : Ignored.

C:\Documents and Settings\lucy denny\Cookies\lucy denny@ehg-nokiafin.hitbox[1].txt -> TrackingCookie.Hitbox : Ignored.

C:\Documents and Settings\lucy denny\Cookies\lucy denny@ehg-techtarget.hitbox[2].txt -> TrackingCookie.Hitbox : Ignored.

C:\Documents and Settings\lucy denny\Cookies\lucy denny@ehg-tfl.hitbox[2].txt -> TrackingCookie.Hitbox : Ignored.

C:\Documents and Settings\lucy denny\Cookies\lucy denny@ehg-ti.hitbox[1].txt -> TrackingCookie.Hitbox : Ignored.

C:\Documents and Settings\lucy denny\Cookies\lucy denny@hitbox[1].txt -> TrackingCookie.Hitbox : Ignored.

C:\Documents and Settings\lucy denny\Cookies\lucy denny@phg.hitbox[1].txt -> TrackingCookie.Hitbox : Ignored.

C:\Documents and Settings\lucy denny\Cookies\lucy denny@hypertracker[1].txt -> TrackingCookie.Hypertracker : Ignored.

:mozilla.27:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Imrworldwide : Ignored.

:mozilla.28:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Imrworldwide : Ignored.

C:\Documents and Settings\lucy denny\Cookies\lucy denny@www.intelli-tracker[1].txt -> TrackingCookie.Intelli-tracker : Ignored.

C:\Documents and Settings\lucy denny\Cookies\lucy denny@image.masterstats[1].txt -> TrackingCookie.Masterstats : Ignored.

:mozilla.10:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Mediaplex : Ignored.

C:\Documents and Settings\lucy denny\Cookies\lucy denny@mediaplex[2].txt -> TrackingCookie.Mediaplex : Ignored.

:mozilla.104:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Netflame : Ignored.

C:\Documents and Settings\lucy denny\Cookies\lucy denny@ssl-hints.netflame[1].txt -> TrackingCookie.Netflame : Ignored.

:mozilla.111:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Overture : Ignored.

:mozilla.56:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Overture : Ignored.

C:\Documents and Settings\lucy denny\Cookies\lucy denny@data3.perf.overture[1].txt -> TrackingCookie.Overture : Ignored.

C:\Documents and Settings\lucy denny\Cookies\lucy denny@overture[1].txt -> TrackingCookie.Overture : Ignored.

C:\Documents and Settings\lucy denny\Cookies\lucy denny@perf.overture[1].txt -> TrackingCookie.Overture : Ignored.

:mozilla.65:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Pointroll : Ignored.

C:\Documents and Settings\lucy denny\Cookies\lucy denny@ads.pointroll[2].txt -> TrackingCookie.Pointroll : Ignored.

:mozilla.198:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Pro-market : Ignored.

:mozilla.199:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Pro-market : Ignored.

C:\Documents and Settings\lucy denny\Cookies\lucy denny@pro-market[2].txt -> TrackingCookie.Pro-market : Ignored.

C:\Documents and Settings\lucy denny\Cookies\lucy denny@questionmarket[1].txt -> TrackingCookie.Questionmarket : Ignored.

C:\Documents and Settings\lucy denny\Cookies\lucy denny@real[2].txt -> TrackingCookie.Real : Ignored.

C:\Documents and Settings\lucy denny\Cookies\lucy denny@realguide.real[1].txt -> TrackingCookie.Real : Ignored.

:mozilla.100:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Realmedia : Ignored.

:mozilla.101:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Realmedia : Ignored.

:mozilla.99:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Realmedia : Ignored.

C:\Documents and Settings\lucy denny\Cookies\lucy denny@realmedia[1].txt -> TrackingCookie.Realmedia : Ignored.

C:\Documents and Settings\lucy denny\Cookies\lucy denny@stats1.reliablestats[1].txt -> TrackingCookie.Reliablestats : Ignored.

C:\Documents and Settings\lucy denny\Cookies\lucy denny@revenue[1].txt -> TrackingCookie.Revenue : Ignored.

:mozilla.47:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Revsci : Ignored.

:mozilla.48:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Revsci : Ignored.

:mozilla.49:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Revsci : Ignored.

C:\Documents and Settings\lucy denny\Cookies\lucy denny@revsci[1].txt -> TrackingCookie.Revsci : Ignored.

:mozilla.242:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Ru4 : Ignored.

:mozilla.243:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Ru4 : Ignored.

C:\Documents and Settings\lucy denny\Cookies\lucy denny@edge.ru4[1].txt -> TrackingCookie.Ru4 : Ignored.

C:\Documents and Settings\lucy denny\Cookies\lucy denny@bs.serving-sys[1].txt -> TrackingCookie.Serving-sys : Ignored.

C:\Documents and Settings\lucy denny\Cookies\lucy denny@serving-sys[2].txt -> TrackingCookie.Serving-sys : Ignored.

C:\Documents and Settings\lucy denny\Cookies\lucy denny@cs.sexcounter[2].txt -> TrackingCookie.Sexcounter : Ignored.

C:\Documents and Settings\lucy denny\Cookies\lucy denny@counter1.sextracker[1].txt -> TrackingCookie.Sextracker : Ignored.

C:\Documents and Settings\lucy denny\Cookies\lucy denny@sextracker[1].txt -> TrackingCookie.Sextracker : Ignored.

:mozilla.59:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Statcounter : Ignored.

:mozilla.60:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Statcounter : Ignored.

:mozilla.61:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Statcounter : Ignored.

C:\Documents and Settings\lucy denny\Cookies\lucy denny@statcounter[2].txt -> TrackingCookie.Statcounter : Ignored.

:mozilla.16:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Tacoda : Ignored.

:mozilla.17:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Tacoda : Ignored.

C:\Documents and Settings\lucy denny\Cookies\lucy denny@anad.tacoda[1].txt -> TrackingCookie.Tacoda : Ignored.

C:\Documents and Settings\lucy denny\Cookies\lucy denny@anat.tacoda[1].txt -> TrackingCookie.Tacoda : Ignored.

C:\Documents and Settings\lucy denny\Cookies\lucy denny@tacoda[1].txt -> TrackingCookie.Tacoda : Ignored.

C:\Documents and Settings\lucy denny\Cookies\lucy denny@login.tracking101[2].txt -> TrackingCookie.Tracking101 : Ignored.

C:\Documents and Settings\lucy denny\Cookies\lucy denny@tradedoubler[1].txt -> TrackingCookie.Tradedoubler : Ignored.

:mozilla.42:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Trafficmp : Ignored.

:mozilla.43:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Trafficmp : Ignored.

C:\Documents and Settings\lucy denny\Cookies\lucy denny@trafficmp[2].txt -> TrackingCookie.Trafficmp : Ignored.

C:\Documents and Settings\lucy denny\Cookies\lucy denny@tribalfusion[1].txt -> TrackingCookie.Tribalfusion : Ignored.

:mozilla.98:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Valueclick : Ignored.

C:\Documents and Settings\lucy denny\Cookies\lucy denny@valueclick[1].txt -> TrackingCookie.Valueclick : Ignored.

C:\Documents and Settings\lucy denny\Cookies\lucy denny@web-stat[1].txt -> TrackingCookie.Web-stat : Ignored.

C:\Documents and Settings\lucy denny\Cookies\lucy denny@m.webtrends[1].txt -> TrackingCookie.Webtrends : Ignored.

:mozilla.84:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Webtrendslive : Ignored.

C:\Documents and Settings\lucy denny\Cookies\lucy denny@statse.webtrendslive[2].txt -> TrackingCookie.Webtrendslive : Ignored.

:mozilla.14:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Yieldmanager : Ignored.

:mozilla.15:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Yieldmanager : Ignored.

C:\Documents and Settings\lucy denny\Cookies\lucy denny@ad.yieldmanager[2].txt -> TrackingCookie.Yieldmanager : Ignored.

:mozilla.50:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Zedo : Ignored.

C:\Documents and Settings\lucy denny\Cookies\lucy denny@c5.zedo[2].txt -> TrackingCookie.Zedo : Ignored.

C:\Documents and Settings\lucy denny\Cookies\lucy denny@zedo[1].txt -> TrackingCookie.Zedo : Ignored.

 

 

::Report end

Share this post


Link to post
Share on other sites

The new ewido/ AVG scan

 

 

---------------------------------------------------------

AVG Anti-Spyware - Scan Report

---------------------------------------------------------

 

+ Created at: 8:57:22 PM 6/15/2007

 

+ Scan result:

 

 

 

HKLM\SOFTWARE\Classes\Interface\{636FF82A-830A-42EA-938B-6DC78B2AC30C} -> Adware.Generic : Ignored.

HKLM\SOFTWARE\Classes\Interface\{81CDDAE8-3B92-4F0D-86C1-8DD5DB6A8471} -> Adware.Generic : Ignored.

HKLM\SOFTWARE\Classes\Interface\{8C88AAE2-A341-4DE8-B064-062194307E5F} -> Adware.Generic : Ignored.

HKLM\SOFTWARE\Classes\Interface\{A55C3BA7-DB1E-4652-867E-055CEAFE8018} -> Adware.Generic : Ignored.

HKLM\SOFTWARE\Classes\Interface\{C28EB22A-6966-4E4B-8592-E84C28D38402} -> Adware.Generic : Ignored.

HKLM\SOFTWARE\Classes\TypeLib\{42FC3840-020C-4E93-A34C-4DF1A6330FBB} -> Adware.Generic : Ignored.

HKLM\SOFTWARE\Classes\TypeLib\{506146FD-9499-49A8-AEDE-692C173B2AA4} -> Adware.Generic : Ignored.

HKLM\SOFTWARE\Classes\TypeLib\{B1C54189-72F0-4353-987B-18FA221BEF09} -> Adware.Generic : Ignored.

HKLM\SOFTWARE\Classes\TypeLib\{EFA1EC0F-8359-41B7-A178-7DD6805A0C79} -> Adware.Generic : Ignored.

HKU\S-1-5-21-1632652722-1721386803-531504974-1006\Software\TrustIn -> Adware.Generic : Ignored.

HKU\S-1-5-21-1632652722-1721386803-531504974-1006\Software\TrustIn\Contextual Ads -> Adware.Generic : Ignored.

HKU\S-1-5-21-1632652722-1721386803-531504974-1006\Software\TrustIn\Search Results Spoofer -> Adware.Generic : Ignored.

HKU\S-1-5-21-1632652722-1721386803-531504974-1006\Software\TrustIn\Search Results Spoofer\se -> Adware.Generic : Ignored.

HKU\S-1-5-21-1632652722-1721386803-531504974-1006\Software\TrustIn\Weekly Executer -> Adware.Generic : Ignored.

:mozilla.86:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.247realmedia : Ignored.

:mozilla.87:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.247realmedia : Ignored.

:mozilla.88:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.247realmedia : Ignored.

C:\Documents and Settings\lucy denny\Cookies\lucy denny@247realmedia[1].txt -> TrackingCookie.247realmedia : Ignored.

:mozilla.30:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.2o7 : Ignored.

:mozilla.31:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.2o7 : Ignored.

:mozilla.32:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.2o7 : Ignored.

:mozilla.330:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.2o7 : Ignored.

:mozilla.336:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.2o7 : Ignored.

:mozilla.33:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.2o7 : Ignored.

:mozilla.34:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.2o7 : Ignored.

:mozilla.35:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.2o7 : Ignored.

:mozilla.83:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.2o7 : Ignored.

C:\Documents and Settings\lucy denny\Cookies\lucy denny@112.2o7[1].txt -> TrackingCookie.2o7 : Ignored.

C:\Documents and Settings\lucy denny\Cookies\lucy denny@2o7[2].txt -> TrackingCookie.2o7 : Ignored.

C:\Documents and Settings\lucy denny\Cookies\lucy denny@americanexpress.122.2o7[1].txt -> TrackingCookie.2o7 : Ignored.

C:\Documents and Settings\lucy denny\Cookies\lucy denny@bnkicom.112.2o7[1].txt -> TrackingCookie.2o7 : Ignored.

C:\Documents and Settings\lucy denny\Cookies\lucy denny@digitalclarity.112.2o7[1].txt -> TrackingCookie.2o7 : Ignored.

C:\Documents and Settings\lucy denny\Cookies\lucy denny@heavycom.122.2o7[1].txt -> TrackingCookie.2o7 : Ignored.

C:\Documents and Settings\lucy denny\Cookies\lucy denny@msnportal.112.2o7[1].txt -> TrackingCookie.2o7 : Ignored.

C:\Documents and Settings\lucy denny\Cookies\lucy denny@workopolis.122.2o7[1].txt -> TrackingCookie.2o7 : Ignored.

:mozilla.303:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.7search : Ignored.

:mozilla.313:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.7search : Ignored.

C:\Documents and Settings\lucy denny\Cookies\lucy denny@7search[1].txt -> TrackingCookie.7search : Ignored.

C:\Documents and Settings\lucy denny\Cookies\lucy denny@adbrite[1].txt -> TrackingCookie.Adbrite : Ignored.

C:\Documents and Settings\lucy denny\Cookies\lucy denny@rotator.adjuggler[1].txt -> TrackingCookie.Adjuggler : Ignored.

:mozilla.127:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Adobe : Ignored.

C:\Documents and Settings\lucy denny\Cookies\lucy denny@www.adobe[1].txt -> TrackingCookie.Adobe : Ignored.

C:\Documents and Settings\lucy denny\Cookies\lucy denny@ad.adocean[2].txt -> TrackingCookie.Adocean : Ignored.

:mozilla.107:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Adrevolver : Ignored.

:mozilla.108:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Adrevolver : Ignored.

:mozilla.109:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Adrevolver : Ignored.

:mozilla.110:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Adrevolver : Ignored.

:mozilla.22:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Adrevolver : Ignored.

:mozilla.23:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Adrevolver : Ignored.

:mozilla.24:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Adrevolver : Ignored.

C:\Documents and Settings\lucy denny\Cookies\lucy denny@adrevolver[2].txt -> TrackingCookie.Adrevolver : Ignored.

:mozilla.8:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Adtech : Ignored.

:mozilla.9:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Adtech : Ignored.

C:\Documents and Settings\lucy denny\Cookies\lucy denny@adtech[2].txt -> TrackingCookie.Adtech : Ignored.

:mozilla.13:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Advertising : Ignored.

C:\Documents and Settings\lucy denny\Cookies\lucy denny@advertising[1].txt -> TrackingCookie.Advertising : Ignored.

:mozilla.97:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Adviva : Ignored.

C:\Documents and Settings\lucy denny\Cookies\lucy denny@adviva[2].txt -> TrackingCookie.Adviva : Ignored.

:mozilla.11:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Atdmt : Ignored.

C:\Documents and Settings\lucy denny\Cookies\lucy denny@atdmt[2].txt -> TrackingCookie.Atdmt : Ignored.

:mozilla.318:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Bfast : Ignored.

C:\Documents and Settings\lucy denny\Cookies\lucy denny@bfast[1].txt -> TrackingCookie.Bfast : Ignored.

C:\Documents and Settings\lucy denny\Cookies\lucy denny@bluestreak[1].txt -> TrackingCookie.Bluestreak : Ignored.

:mozilla.46:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Burstnet : Ignored.

C:\Documents and Settings\lucy denny\Cookies\lucy denny@burstnet[2].txt -> TrackingCookie.Burstnet : Ignored.

C:\Documents and Settings\lucy denny\Cookies\lucy denny@www.burstnet[2].txt -> TrackingCookie.Burstnet : Ignored.

C:\Documents and Settings\lucy denny\Cookies\lucy denny@casalemedia[1].txt -> TrackingCookie.Casalemedia : Ignored.

:mozilla.338:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Clickbank : Ignored.

C:\Documents and Settings\lucy denny\Cookies\lucy denny@clickbank[1].txt -> TrackingCookie.Clickbank : Ignored.

:mozilla.89:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Clickhype : Ignored.

C:\Documents and Settings\lucy denny\Cookies\lucy denny@ad1.clickhype[2].txt -> TrackingCookie.Clickhype : Ignored.

C:\Documents and Settings\lucy denny\Cookies\lucy denny@cz7.clickzs[1].txt -> TrackingCookie.Clickzs : Ignored.

:mozilla.63:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Com : Ignored.

C:\Documents and Settings\lucy denny\Cookies\lucy denny@com[1].txt -> TrackingCookie.Com : Ignored.

C:\Documents and Settings\lucy denny\Cookies\lucy denny@techrepublic.com[2].txt -> TrackingCookie.Com : Ignored.

:mozilla.71:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Connextra : Ignored.

C:\Documents and Settings\lucy denny\Cookies\lucy denny@connextra[2].txt -> TrackingCookie.Connextra : Ignored.

C:\Documents and Settings\lucy denny\Cookies\lucy denny@doubleclick[2].txt -> TrackingCookie.Doubleclick : Ignored.

C:\WINDOWS\Temp\Cookies\lucy denny@doubleclick[1].txt -> TrackingCookie.Doubleclick : Ignored.

C:\Documents and Settings\lucy denny\Cookies\lucy denny@adopt.euroclick[1].txt -> TrackingCookie.Euroclick : Ignored.

:mozilla.93:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Falkag : Ignored.

C:\Documents and Settings\lucy denny\Cookies\lucy denny@as-eu.falkag[2].txt -> TrackingCookie.Falkag : Ignored.

C:\Documents and Settings\lucy denny\Cookies\lucy denny@as-us.falkag[1].txt -> TrackingCookie.Falkag : Ignored.

C:\Documents and Settings\lucy denny\Cookies\lucy denny@as1.falkag[2].txt -> TrackingCookie.Falkag : Ignored.

C:\Documents and Settings\lucy denny\Cookies\lucy denny@fastclick[2].txt -> TrackingCookie.Fastclick : Ignored.

:mozilla.245:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Gemius : Ignored.

:mozilla.246:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Gemius : Ignored.

:mozilla.247:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Gemius : Ignored.

C:\Documents and Settings\lucy denny\Cookies\lucy denny@hit.gemius[2].txt -> TrackingCookie.Gemius : Ignored.

:mozilla.201:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Hitbox : Ignored.

:mozilla.244:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Hitbox : Ignored.

:mozilla.280:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Hitbox : Ignored.

:mozilla.281:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Hitbox : Ignored.

:mozilla.282:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Hitbox : Ignored.

:mozilla.283:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Hitbox : Ignored.

:mozilla.292:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Hitbox : Ignored.

:mozilla.294:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Hitbox : Ignored.

C:\Documents and Settings\lucy denny\Cookies\lucy denny@ehg-bskyb.hitbox[2].txt -> TrackingCookie.Hitbox : Ignored.

C:\Documents and Settings\lucy denny\Cookies\lucy denny@ehg-capitalgroup.hitbox[2].txt -> TrackingCookie.Hitbox : Ignored.

C:\Documents and Settings\lucy denny\Cookies\lucy denny@ehg-foxinteractive.hitbox[2].txt -> TrackingCookie.Hitbox : Ignored.

C:\Documents and Settings\lucy denny\Cookies\lucy denny@ehg-newsinteractive.hitbox[1].txt -> TrackingCookie.Hitbox : Ignored.

C:\Documents and Settings\lucy denny\Cookies\lucy denny@ehg-nokiafin.hitbox[1].txt -> TrackingCookie.Hitbox : Ignored.

C:\Documents and Settings\lucy denny\Cookies\lucy denny@ehg-techtarget.hitbox[2].txt -> TrackingCookie.Hitbox : Ignored.

C:\Documents and Settings\lucy denny\Cookies\lucy denny@ehg-tfl.hitbox[2].txt -> TrackingCookie.Hitbox : Ignored.

C:\Documents and Settings\lucy denny\Cookies\lucy denny@ehg-ti.hitbox[1].txt -> TrackingCookie.Hitbox : Ignored.

C:\Documents and Settings\lucy denny\Cookies\lucy denny@hitbox[1].txt -> TrackingCookie.Hitbox : Ignored.

C:\Documents and Settings\lucy denny\Cookies\lucy denny@phg.hitbox[1].txt -> TrackingCookie.Hitbox : Ignored.

C:\Documents and Settings\lucy denny\Cookies\lucy denny@hypertracker[1].txt -> TrackingCookie.Hypertracker : Ignored.

:mozilla.27:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Imrworldwide : Ignored.

:mozilla.28:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Imrworldwide : Ignored.

C:\Documents and Settings\lucy denny\Cookies\lucy denny@www.intelli-tracker[1].txt -> TrackingCookie.Intelli-tracker : Ignored.

C:\Documents and Settings\lucy denny\Cookies\lucy denny@image.masterstats[1].txt -> TrackingCookie.Masterstats : Ignored.

:mozilla.10:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Mediaplex : Ignored.

C:\Documents and Settings\lucy denny\Cookies\lucy denny@mediaplex[2].txt -> TrackingCookie.Mediaplex : Ignored.

:mozilla.104:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Netflame : Ignored.

C:\Documents and Settings\lucy denny\Cookies\lucy denny@ssl-hints.netflame[1].txt -> TrackingCookie.Netflame : Ignored.

:mozilla.111:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Overture : Ignored.

:mozilla.56:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Overture : Ignored.

C:\Documents and Settings\lucy denny\Cookies\lucy denny@data3.perf.overture[1].txt -> TrackingCookie.Overture : Ignored.

C:\Documents and Settings\lucy denny\Cookies\lucy denny@overture[1].txt -> TrackingCookie.Overture : Ignored.

C:\Documents and Settings\lucy denny\Cookies\lucy denny@perf.overture[1].txt -> TrackingCookie.Overture : Ignored.

:mozilla.65:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Pointroll : Ignored.

C:\Documents and Settings\lucy denny\Cookies\lucy denny@ads.pointroll[2].txt -> TrackingCookie.Pointroll : Ignored.

:mozilla.198:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Pro-market : Ignored.

:mozilla.199:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Pro-market : Ignored.

C:\Documents and Settings\lucy denny\Cookies\lucy denny@pro-market[2].txt -> TrackingCookie.Pro-market : Ignored.

C:\Documents and Settings\lucy denny\Cookies\lucy denny@questionmarket[1].txt -> TrackingCookie.Questionmarket : Ignored.

C:\Documents and Settings\lucy denny\Cookies\lucy denny@real[2].txt -> TrackingCookie.Real : Ignored.

C:\Documents and Settings\lucy denny\Cookies\lucy denny@realguide.real[1].txt -> TrackingCookie.Real : Ignored.

:mozilla.100:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Realmedia : Ignored.

:mozilla.101:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Realmedia : Ignored.

:mozilla.99:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Realmedia : Ignored.

C:\Documents and Settings\lucy denny\Cookies\lucy denny@realmedia[1].txt -> TrackingCookie.Realmedia : Ignored.

C:\Documents and Settings\lucy denny\Cookies\lucy denny@stats1.reliablestats[1].txt -> TrackingCookie.Reliablestats : Ignored.

C:\Documents and Settings\lucy denny\Cookies\lucy denny@revenue[1].txt -> TrackingCookie.Revenue : Ignored.

:mozilla.47:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Revsci : Ignored.

:mozilla.48:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Revsci : Ignored.

:mozilla.49:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Revsci : Ignored.

C:\Documents and Settings\lucy denny\Cookies\lucy denny@revsci[1].txt -> TrackingCookie.Revsci : Ignored.

:mozilla.242:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Ru4 : Ignored.

:mozilla.243:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Ru4 : Ignored.

C:\Documents and Settings\lucy denny\Cookies\lucy denny@edge.ru4[1].txt -> TrackingCookie.Ru4 : Ignored.

C:\Documents and Settings\lucy denny\Cookies\lucy denny@bs.serving-sys[1].txt -> TrackingCookie.Serving-sys : Ignored.

C:\Documents and Settings\lucy denny\Cookies\lucy denny@serving-sys[2].txt -> TrackingCookie.Serving-sys : Ignored.

C:\Documents and Settings\lucy denny\Cookies\lucy denny@cs.sexcounter[2].txt -> TrackingCookie.Sexcounter : Ignored.

C:\Documents and Settings\lucy denny\Cookies\lucy denny@counter1.sextracker[1].txt -> TrackingCookie.Sextracker : Ignored.

C:\Documents and Settings\lucy denny\Cookies\lucy denny@sextracker[1].txt -> TrackingCookie.Sextracker : Ignored.

:mozilla.59:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Statcounter : Ignored.

:mozilla.60:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Statcounter : Ignored.

:mozilla.61:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Statcounter : Ignored.

C:\Documents and Settings\lucy denny\Cookies\lucy denny@statcounter[2].txt -> TrackingCookie.Statcounter : Ignored.

:mozilla.16:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Tacoda : Ignored.

:mozilla.17:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Tacoda : Ignored.

C:\Documents and Settings\lucy denny\Cookies\lucy denny@anad.tacoda[1].txt -> TrackingCookie.Tacoda : Ignored.

C:\Documents and Settings\lucy denny\Cookies\lucy denny@anat.tacoda[1].txt -> TrackingCookie.Tacoda : Ignored.

C:\Documents and Settings\lucy denny\Cookies\lucy denny@tacoda[1].txt -> TrackingCookie.Tacoda : Ignored.

C:\Documents and Settings\lucy denny\Cookies\lucy denny@login.tracking101[2].txt -> TrackingCookie.Tracking101 : Ignored.

C:\Documents and Settings\lucy denny\Cookies\lucy denny@tradedoubler[1].txt -> TrackingCookie.Tradedoubler : Ignored.

:mozilla.42:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Trafficmp : Ignored.

:mozilla.43:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Trafficmp : Ignored.

C:\Documents and Settings\lucy denny\Cookies\lucy denny@trafficmp[2].txt -> TrackingCookie.Trafficmp : Ignored.

C:\Documents and Settings\lucy denny\Cookies\lucy denny@tribalfusion[1].txt -> TrackingCookie.Tribalfusion : Ignored.

:mozilla.98:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Valueclick : Ignored.

C:\Documents and Settings\lucy denny\Cookies\lucy denny@valueclick[1].txt -> TrackingCookie.Valueclick : Ignored.

C:\Documents and Settings\lucy denny\Cookies\lucy denny@web-stat[1].txt -> TrackingCookie.Web-stat : Ignored.

C:\Documents and Settings\lucy denny\Cookies\lucy denny@m.webtrends[1].txt -> TrackingCookie.Webtrends : Ignored.

:mozilla.84:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Webtrendslive : Ignored.

C:\Documents and Settings\lucy denny\Cookies\lucy denny@statse.webtrendslive[2].txt -> TrackingCookie.Webtrendslive : Ignored.

:mozilla.14:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Yieldmanager : Ignored.

:mozilla.15:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Yieldmanager : Ignored.

C:\Documents and Settings\lucy denny\Cookies\lucy denny@ad.yieldmanager[2].txt -> TrackingCookie.Yieldmanager : Ignored.

:mozilla.50:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Zedo : Ignored.

C:\Documents and Settings\lucy denny\Cookies\lucy denny@c5.zedo[2].txt -> TrackingCookie.Zedo : Ignored.

C:\Documents and Settings\lucy denny\Cookies\lucy denny@zedo[1].txt -> TrackingCookie.Zedo : Ignored.

 

 

::Report end

Share this post


Link to post
Share on other sites

Welcome to SWI. We apologize for the delay; our helpers have been very busy.

If you have not received help after 3 days, please CLICK HERE, and post a link to your log and the date it was originally posted.

 

Thank you for your patience.

 

[this is an automated reply]

Share this post


Link to post
Share on other sites

Hi,

 

Sorry about the wait.

 

Download Dr.Web CureIt to the desktop:

ftp://ftp.drweb.com/pub/drweb/cureit/drweb-cureit.exe

Next, please reboot your computer in Safe Mode by doing the following:

1) Restart your computer

2) After hearing your computer beep once during startup, but before the Windows icon appears, press F8.

3) Instead of Windows loading as normal, a menu should appear

4) Select the first option, to run Windows in Safe Mode.

 

For additional help in booting into Safe Mode, see the following site:

http://www.pchell.com/support/safemode.shtml

  • Doubleclick the drweb-cureit.exe file and Allow to run the express scan
  • This will scan the files currently running in memory and when something is found, click the yes button when it asks you if you want to cure it. This is only a short scan.
  • Once the short scan has finished, mark the drives that you want to scan.
  • Select all drives. A red dot shows which drives have been chosen.
  • Click the green arrow at the right, and the scan will start.
  • Click 'Yes to all' if it asks if you want to cure/move the file.
  • When the scan has finished, look if you can click next icon next to the files found: check.gif
  • If so, click it and then click the next icon right below and select Move incurable as you'll see in next image:
    move.gif
    This will move it to the %userprofile%\DoctorWeb\quarantaine-folder if it can't be cured. (this in case if we need samples)
  • After selecting, in the Dr.Web CureIt menu on top, click file and choose save report list
  • Save the report to your desktop. The report will be called DrWeb.csv
  • Close Dr.Web Cureit.
  • Reboot your computer!! Because it could be possible that files in use will be moved/deleted during reboot.
  • After reboot, post the contents of the log from Dr.Web you saved previously in your next reply.

jedi

Share this post


Link to post
Share on other sites

Hi,

 

Sorry about the wait, I am back from holiday now.

 

Here is a fresh DrWeb .csv file followed by a fresh HJT log from after DrWeb scan.

 

 

DrWeb

 

Winner of Miss Norway.exe;C:\Documents and Settings\lucy denny\My Documents\Downloads;Trojan.DownLoader.2667;Incurable.Moved.;

qdiagd.ocx;C:\Program Files\DellSupport;Probably DLOADER.Trojan;Incurable.Moved.;

A0025448.exe;C:\System Volume Information\_restore{202550A8-7A33-4BCA-9586-051D24DDBF8F}\RP205;Trojan.Click.1487;Deleted.;

A0025449.exe;C:\System Volume Information\_restore{202550A8-7A33-4BCA-9586-051D24DDBF8F}\RP205;Trojan.Click.1487;Deleted.;

gtdownlr_134.ocx;C:\WINDOWS\system32;Adware.Gdown;Incurable.Moved.;

 

 

HJT

 

 

Logfile of HijackThis v1.99.1

Scan saved at 1:00:59 PM, on 6/22/2007

Platform: Windows XP SP2 (WinNT 5.01.2600)

MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

 

Running processes:

C:\WINDOWS\System32\smss.exe

C:\WINDOWS\system32\winlogon.exe

C:\WINDOWS\system32\services.exe

C:\WINDOWS\system32\lsass.exe

C:\WINDOWS\system32\svchost.exe

C:\WINDOWS\System32\svchost.exe

C:\WINDOWS\Explorer.EXE

C:\WINDOWS\System32\WLTRYSVC.EXE

C:\WINDOWS\System32\bcmwltry.exe

C:\WINDOWS\system32\spoolsv.exe

C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe

C:\PROGRA~1\Grisoft\AVG7\avgamsvr.exe

C:\PROGRA~1\Grisoft\AVG7\avgupsvc.exe

C:\PROGRA~1\Grisoft\AVG7\avgemc.exe

C:\Program Files\ewido anti-malware\ewidoctrl.exe

C:\Program Files\Dell\NICCONFIGSVC\NICCONFIGSVC.exe

C:\WINDOWS\system32\hkcmd.exe

C:\WINDOWS\system32\igfxpers.exe

C:\Program Files\Synaptics\SynTP\SynTPEnh.exe

C:\WINDOWS\system32\WLTRAY.exe

C:\WINDOWS\stsystra.exe

C:\Program Files\Dell\QuickSet\quickset.exe

C:\Program Files\CyberLink\PowerDVD\DVDLauncher.exe

C:\WINDOWS\system32\dla\tfswctrl.exe

C:\Program Files\Musicmatch\Musicmatch Jukebox\mm_tray.exe

C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe

C:\WINDOWS\system32\igfxsrvc.exe

C:\Program Files\Corel\Corel Photo Album 6\MediaDetect.exe

C:\PROGRA~1\MUSICM~1\MUSICM~3\MMDiag.exe

C:\Program Files\Thomson\SpeedTouch USB\Dragdiag.exe

C:\WINDOWS\system32\svchost.exe

C:\Program Files\Google\Google Desktop Search\GoogleDesktopIndex.exe

C:\Program Files\HP\hpcoretech\hpcmpmgr.exe

C:\Program Files\Google\Google Desktop Search\GoogleDesktopDisplay.exe

C:\Program Files\Hewlett-Packard\HP Software Update\HPWuSchd2.exe

C:\WINDOWS\system32\hphmon05.exe

C:\Program Files\Java\jre1.6.0_01\bin\jusched.exe

C:\Program Files\QuickTime\qttask.exe

C:\Program Files\MUSICMATCH\Musicmatch Jukebox\mim.exe

C:\Program Files\Common Files\Real\Update_OB\realsched.exe

C:\Program Files\HighCriteria\TotalRecorder\TotRecSched.exe

C:\PROGRA~1\Grisoft\AVG7\avgcc.exe

C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe

C:\Program Files\NetWaiting\netWaiting.exe

C:\WINDOWS\system32\wuauclt.exe

C:\PROGRA~1\Grisoft\AVG7\avgw.exe

C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe

C:\Program Files\MSN Messenger\MsnMsgr.Exe

C:\PROGRA~1\MI3AA1~1\wcescomm.exe

C:\Program Files\DellSupport\DSAgnt.exe

C:\Program Files\Digital Line Detect\DLG.exe

C:\PROGRA~1\MI3AA1~1\rapimgr.exe

C:\Documents and Settings\lucy denny\Desktop\Charlie's Folder\HijackThis.exe

 

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.yahoo.com/

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.dell.com

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.dell.com

O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll

O2 - BHO: DriveLetterAccess - {5CA3D70E-1895-11CF-8E15-001234567890} - C:\WINDOWS\system32\dla\tfswshx.dll

O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll

O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)

O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar4.dll

O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar4.dll

O4 - HKLM\..\Run: [igfxtray] C:\WINDOWS\system32\igfxtray.exe

O4 - HKLM\..\Run: [igfxhkcmd] C:\WINDOWS\system32\hkcmd.exe

O4 - HKLM\..\Run: [igfxpers] C:\WINDOWS\system32\igfxpers.exe

O4 - HKLM\..\Run: [synTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe

O4 - HKLM\..\Run: [broadcom Wireless Manager UI] C:\WINDOWS\system32\WLTRAY.exe

O4 - HKLM\..\Run: [sigmatelSysTrayApp] stsystra.exe

O4 - HKLM\..\Run: [Dell QuickSet] C:\Program Files\Dell\QuickSet\quickset.exe

O4 - HKLM\..\Run: [DVDLauncher] "C:\Program Files\CyberLink\PowerDVD\DVDLauncher.exe"

O4 - HKLM\..\Run: [dla] C:\WINDOWS\system32\dla\tfswctrl.exe

O4 - HKLM\..\Run: [iSUSPM Startup] "C:\Program Files\Common Files\InstallShield\UpdateService\isuspm.exe" -startup

O4 - HKLM\..\Run: [iSUSScheduler] "C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe" -start

O4 - HKLM\..\Run: [MimBoot] C:\PROGRA~1\MUSICM~1\MUSICM~3\mimboot.exe

O4 - HKLM\..\Run: [MMTray] "C:\Program Files\Musicmatch\Musicmatch Jukebox\mm_tray.exe"

O4 - HKLM\..\Run: [Google Desktop Search] "C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe" /startup

O4 - HKLM\..\Run: [Corel Photo Downloader] C:\Program Files\Corel\Corel Photo Album 6\MediaDetect.exe

O4 - HKLM\..\Run: [speedTouch USB Diagnostics] "C:\Program Files\Thomson\SpeedTouch USB\Dragdiag.exe" /icon

O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe

O4 - HKLM\..\Run: [HPHUPD05] C:\Program Files\Hewlett-Packard\{D946675D-1D6C-4dc8-9E0D-B4B8EAA30EAA}\hphupd05.exe

O4 - HKLM\..\Run: [HP Component Manager] "C:\Program Files\HP\hpcoretech\hpcmpmgr.exe"

O4 - HKLM\..\Run: [HP Software Update] "C:\Program Files\Hewlett-Packard\HP Software Update\HPWuSchd2.exe"

O4 - HKLM\..\Run: [HPHmon05] C:\WINDOWS\system32\hphmon05.exe

O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_01\bin\jusched.exe"

O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime

O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot

O4 - HKLM\..\Run: [MSKDetectorExe] C:\Program Files\McAfee\SpamKiller\MSKDetct.exe /uninstall

O4 - HKLM\..\Run: [TotalRecorderScheduler] "C:\Program Files\HighCriteria\TotalRecorder\TotRecSched.exe"

O4 - HKLM\..\Run: [AVG7_CC] C:\PROGRA~1\Grisoft\AVG7\avgcc.exe /STARTUP

O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized

O4 - HKCU\..\Run: [ModemOnHold] C:\Program Files\NetWaiting\netWaiting.exe

O4 - HKCU\..\Run: [bgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Common Files\Ahead\lib\NMBgMonitor.exe"

O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe

O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background

O4 - HKCU\..\Run: [H/PC Connection Agent] "C:\PROGRA~1\MI3AA1~1\wcescomm.exe"

O4 - HKCU\..\Run: [DellSupport] "C:\Program Files\DellSupport\DSAgnt.exe" /startup

O4 - Global Startup: Digital Line Detect.lnk = ?

O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE

O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll

O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll

O9 - Extra button: Create Mobile Favorite - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MI3AA1~1\INetRepl.dll

O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MI3AA1~1\INetRepl.dll

O9 - Extra 'Tools' menuitem: Create Mobile Favorite... - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MI3AA1~1\INetRepl.dll

O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\system32\Shdocvw.dll

O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe

O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe

O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204

O16 - DPF: {20A60F0D-9AFA-4515-A0FD-83BD84642501} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab56986.cab

O16 - DPF: {25365FF3-2746-4230-9DA7-163CCA318309} (Automatic Driver Installation Control) - http://inst.c-wss.com/n033p/EN/install/gtdownlr.cab

O16 - DPF: {4ED9DDF0-7479-4BBE-9335-5A1EDB1D8A21} - http://download.mcafee.com/molbin/shared/m...01/mcinsctl.cab

O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/EN-US/a-UNO1/GAME_UNO1.cab

O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/Messe...nt.cab56907.cab

O17 - HKLM\System\CCS\Services\Tcpip\..\{6C08C4DE-5E56-4204-8D95-DFA975C65946}: NameServer = 158.152.1.58 158.152.1.43

O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL

O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL

O20 - AppInit_DLLs: C:\PROGRA~1\Google\GOOGLE~1\GOEC62~1.DLL

O20 - Winlogon Notify: igfxcui - C:\WINDOWS\SYSTEM32\igfxdev.dll

O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\

O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe

O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgamsvr.exe

O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgupsvc.exe

O23 - Service: AVG E-mail Scanner (AVGEMS) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgemc.exe

O23 - Service: DSBrokerService - Unknown owner - C:\Program Files\DellSupport\brkrsvc.exe

O23 - Service: ewido security suite control - ewido networks - C:\Program Files\ewido anti-malware\ewidoctrl.exe

O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe

O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe

O23 - Service: NICCONFIGSVC - Dell Inc. - C:\Program Files\Dell\NICCONFIGSVC\NICCONFIGSVC.exe

O23 - Service: Dell Wireless WLAN Tray Service (wltrysvc) - Unknown owner - C:\WINDOWS\System32\WLTRYSVC.EXE

Share this post


Link to post
Share on other sites

Hi again, welcome back.

 

1. Download this file - ComboFix

2. Double click combofix.exe & follow the prompts.

3. When finished, it will produce a log for you. Post that log in your next reply

 

Note:

Do not mouseclick combofix's window whilst it's running. That may cause it to stall

 

Please also post a fresh HiJackThis log.

 

jedi

Share this post


Link to post
Share on other sites

ComboFix 07-06-18.2 - C:\Documents and Settings\lucy denny\Desktop\ComboFix.exe

"lucy denny" - 2007-06-23 3:24:55 - Service Pack 2 NTFS

 

 

((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))

 

 

C:\WINDOWS\system32\jkuollqfum.dat

C:\WINDOWS\system32\jkuollqfum.exe

C:\WINDOWS\system32\jkuollqfum_nav.dat

C:\WINDOWS\system32\jkuollqfum_navps.dat

C:\WINDOWS\system32\msxml3a.dll

C:\WINDOWS\system32\nvs2.inf

 

 

((((((((((((((((((((((((( Files Created from 2007-05-23 to 2007-06-23 )))))))))))))))))))))))))))))))

 

 

2007-06-23 03:24 49,152 --a------ C:\WINDOWS\nircmd.exe

2007-06-19 21:43 <DIR> d-------- C:\DOCUME~1\LUCYDE~1\DoctorWeb

2007-06-18 17:43 765,952 --a------ C:\WINDOWS\system32\xvidcore.dll

2007-06-18 17:43 180,224 --a------ C:\WINDOWS\system32\xvidvfw.dll

2007-06-18 17:43 <DIR> d-------- C:\Program Files\Xvid

2007-06-18 17:40 2,560 --------- C:\WINDOWS\system32\drivers\cdralw2k.sys

2007-06-18 17:40 2,432 --------- C:\WINDOWS\system32\drivers\cdr4_xp.sys

2007-06-18 17:39 129,784 --------- C:\WINDOWS\system32\pxafs.dll

2007-06-18 17:39 <DIR> d-------- C:\Program Files\DivX

2007-06-15 20:18 10,872 --a------ C:\WINDOWS\system32\drivers\AvgAsCln.sys

2007-06-15 11:44 395,776 --a------ C:\WINDOWS\system32\libmplayer.dll

2007-06-15 11:44 262,144 --a------ C:\WINDOWS\system32\TomsMoComp_ff.dll

2007-06-15 11:44 2,255,360 --a------ C:\WINDOWS\system32\libavcodec.dll

2007-06-15 11:44 112,640 --a------ C:\WINDOWS\system32\libmpeg2_ff.dll

2007-06-15 11:44 <DIR> d-------- C:\Program Files\Cucusoft

2007-06-15 11:44 <DIR> d-------- C:\ConverterOutput

2007-06-14 13:55 <DIR> d-------- C:\Program Files\ffdshow

2007-06-14 12:51 <DIR> d-------- C:\DOCUME~1\LUCYDE~1\APPLIC~1\Media Player Classic

2007-06-12 00:21 <DIR> d-------- C:\DOCUME~1\LUCYDE~1\APPLIC~1\uTorrent

2007-05-31 07:45 524,288 --a------ C:\WINDOWS\system32\DivXsm.exe

2007-05-31 07:44 823,296 --a------ C:\WINDOWS\system32\divx_xx0c.dll

2007-05-31 07:44 823,296 --a------ C:\WINDOWS\system32\divx_xx07.dll

2007-05-31 07:44 802,816 --a------ C:\WINDOWS\system32\divx_xx11.dll

2007-05-31 07:44 740,442 --a------ C:\WINDOWS\system32\DivX.dll

 

 

(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))

 

2007-06-15 19:15:01 -------- d-----w C:\Program Files\ewido anti-malware

2007-06-11 23:18:55 -------- d-----w C:\Program Files\Azureus

2007-05-17 00:41:51 -------- d-----w C:\DOCUME~1\LUCYDE~1\APPLIC~1\Skype

2007-05-16 15:12:02 683,520 ----a-w C:\WINDOWS\system32\inetcomm.dll

2007-05-11 20:37:55 -------- d-----w C:\Program Files\HighCriteria

2007-04-25 14:21:15 144,896 ----a-w C:\WINDOWS\system32\schannel.dll

2007-04-23 00:15:29 3,596,288 ----a-w C:\WINDOWS\system32\qt-dx331.dll

2007-04-23 00:15:25 36,624 ------w C:\WINDOWS\system32\drivers\pxhelp20.sys

2007-04-23 00:15:24 118,520 ------w C:\WINDOWS\system32\pxinsi64.exe

2007-04-23 00:15:24 116,472 ------w C:\WINDOWS\system32\pxcpyi64.exe

2007-04-23 00:15:18 200,704 ----a-w C:\WINDOWS\system32\ssldivx.dll

2007-04-23 00:15:18 1,044,480 ----a-w C:\WINDOWS\system32\libdivx.dll

2007-04-23 00:02:34 73,728 ----a-w C:\WINDOWS\system32\dpl100.dll

2007-04-23 00:02:34 196,608 ----a-w C:\WINDOWS\system32\dtu100.dll

2007-04-23 00:02:33 53,248 ----a-w C:\WINDOWS\system32\dpuGUI10.dll

2007-04-23 00:02:31 593,920 ----a-w C:\WINDOWS\system32\dpuGUI11.dll

2007-04-23 00:02:31 57,344 ----a-w C:\WINDOWS\system32\dpv11.dll

2007-04-23 00:02:31 344,064 ----a-w C:\WINDOWS\system32\dpus11.dll

2007-04-23 00:02:31 294,912 ----a-w C:\WINDOWS\system32\dpu11.dll

2007-04-23 00:02:31 294,912 ----a-w C:\WINDOWS\system32\dpu10.dll

2007-04-23 00:01:47 12,288 ----a-w C:\WINDOWS\system32\DivXWMPExtType.dll

2007-04-23 00:01:46 124,472 ----a-w C:\WINDOWS\system32\DivXCodecUpdateChecker.exe

2007-04-18 16:12:23 2,854,400 ----a-w C:\WINDOWS\system32\msi.dll

2007-04-16 21:47:36 33,624 ----a-w C:\WINDOWS\system32\wups.dll

2007-04-16 21:45:54 1,710,936 ----a-w C:\WINDOWS\system32\wuaueng.dll

2007-04-16 21:45:48 549,720 ----a-w C:\WINDOWS\system32\wuapi.dll

2007-04-16 21:45:42 325,976 ----a-w C:\WINDOWS\system32\wucltui.dll

2007-04-16 21:45:36 203,096 ----a-w C:\WINDOWS\system32\wuweb.dll

2007-04-16 21:45:28 92,504 ----a-w C:\WINDOWS\system32\cdm.dll

2007-04-16 21:45:20 53,080 ----a-w C:\WINDOWS\system32\wuauclt.exe

2007-04-16 21:45:20 43,352 ----a-w C:\WINDOWS\system32\wups2.dll

2007-03-30 12:17:40 1,338 ----a-w C:\WINDOWS\mozver.dat

2006-10-09 09:05:52 56 --sh--r C:\WINDOWS\system32\F0E7935E7F.sys

2006-10-09 09:05:52 2,828 --sha-w C:\WINDOWS\system32\KGyGaAvL.sys

 

 

((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))

 

 

*Note* empty entries & legit default entries are not shown

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects]

{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}=C:\Program Files\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll [2003-11-03 21:17]

{5CA3D70E-1895-11CF-8E15-001234567890}=C:\WINDOWS\system32\dla\tfswshx.dll [2004-12-06 08:05]

{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}=C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll [2007-03-14 03:43]

{AA58ED58-01DD-4d91-8333-CF10577473F7}=c:\program files\google\googletoolbar4.dll [2007-01-20 00:55]

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"SynTPEnh"="C:\Program Files\Synaptics\SynTP\SynTPEnh.exe" [2005-11-29 11:56]

"SigmatelSysTrayApp"="stsystra.exe" [2005-09-10 06:19 C:\WINDOWS\stsystra.exe]

"Dell QuickSet"="C:\Program Files\Dell\QuickSet\quickset.exe" [2005-12-15 17:44]

"DVDLauncher"="C:\Program Files\CyberLink\PowerDVD\DVDLauncher.exe" [2005-02-23 23:19]

"ISUSPM Startup"="C:\Program Files\Common Files\InstallShield\UpdateService\isuspm.exe" [2005-06-10 17:44]

"ISUSScheduler"="C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe" [2005-06-10 17:44]

"MimBoot"="C:\PROGRA~1\MUSICM~1\MUSICM~3\mimboot.exe" [2005-09-09 02:20]

"MMTray"="C:\Program Files\Musicmatch\Musicmatch Jukebox\mm_tray.exe" [2005-09-09 02:20]

"Google Desktop Search"="C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe" [2006-03-24 08:15]

"Corel Photo Downloader"="C:\Program Files\Corel\Corel Photo Album 6\MediaDetect.exe" [2005-08-31 18:06]

"SpeedTouch USB Diagnostics"="C:\Program Files\Thomson\SpeedTouch USB\Dragdiag.exe" [2004-01-26 11:38]

"HPHUPD05"="C:\Program Files\Hewlett-Packard\{D946675D-1D6C-4dc8-9E0D-B4B8EAA30EAA}\hphupd05.exe" [2003-11-12 23:12]

"HP Component Manager"="C:\Program Files\HP\hpcoretech\hpcmpmgr.exe" [2003-12-22 08:38]

"HP Software Update"="C:\Program Files\Hewlett-Packard\HP Software Update\HPWuSchd2.exe" [2003-12-05 15:41]

"SunJavaUpdateSched"="C:\Program Files\Java\jre1.6.0_01\bin\jusched.exe" [2007-03-14 03:43]

"QuickTime Task"="C:\Program Files\QuickTime\qttask.exe" [2006-09-24 03:24]

"TkBellExe"="C:\Program Files\Common Files\Real\Update_OB\realsched.exe" [2007-03-30 13:12]

"MSKDetectorExe"="C:\Program Files\McAfee\SpamKiller\MSKDetct.exe" [2005-08-12 16:16]

"TotalRecorderScheduler"="C:\Program Files\HighCriteria\TotalRecorder\TotRecSched.exe" [2005-05-18 22:51]

"AVG7_CC"="C:\PROGRA~1\Grisoft\AVG7\avgcc.exe" [2007-05-11 21:47]

"!AVG Anti-Spyware"="C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" [2007-06-11 10:25]

 

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"ModemOnHold"="C:\Program Files\NetWaiting\netWaiting.exe" [2003-09-10 09:24]

"BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"="C:\Program Files\Common Files\Ahead\lib\NMBgMonitor.exe" [2006-06-01 13:32]

"swg"="C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe" [2007-02-07 21:26]

"MsnMsgr"="C:\Program Files\MSN Messenger\MsnMsgr.exe" [2007-01-19 12:54]

"H/PC Connection Agent"="C:\PROGRA~1\MI3AA1~1\wcescomm.exe" [2005-11-15 19:44]

"DellSupport"="C:\Program Files\DellSupport\DSAgnt.exe" [2007-03-15 11:09]

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]

"{57B86673-276A-48B2-BAE7-C6DBB3020EB8}"="C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\shellexecutehook.dll" [2007-05-30 13:29]

 

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\windows]

"appinit_dlls"=C:\PROGRA~1\Google\GOOGLE~1\GOEC62~1.DLL

 

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\safeboot\minimal\AVG Anti-Spyware Driver]

 

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\safeboot\minimal\AVG Anti-Spyware Guard]

 

 

Contents of the 'Scheduled Tasks' folder

2007-06-18 12:52:06 C:\WINDOWS\tasks\AppleSoftwareUpdate.job

 

**************************************************************************

 

catchme 0.3.721 W2K/XP/Vista - userland rootkit detector by Gmer, http://www.gmer.net

Rootkit scan 2007-06-23 03:29:04

Windows 5.1.2600 Service Pack 2 NTFS

 

scanning hidden processes ...

 

scanning hidden autostart entries ...

 

scanning hidden files ...

 

scan completed successfully

hidden files: 0

 

**************************************************************************

 

Completion time: 2007-06-23 3:30:18

C:\ComboFix-quarantined-files.txt ... 2007-06-23 03:30

 

--- E O F ---

 

 

 

 

 

 

Logfile of HijackThis v1.99.1

Scan saved at 1:54:08 PM, on 6/23/2007

Platform: Windows XP SP2 (WinNT 5.01.2600)

MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

 

Running processes:

C:\WINDOWS\System32\smss.exe

C:\WINDOWS\system32\winlogon.exe

C:\WINDOWS\system32\services.exe

C:\WINDOWS\system32\lsass.exe

C:\WINDOWS\system32\svchost.exe

C:\WINDOWS\System32\svchost.exe

C:\WINDOWS\System32\WLTRYSVC.EXE

C:\WINDOWS\System32\bcmwltry.exe

C:\WINDOWS\Explorer.EXE

C:\WINDOWS\system32\spoolsv.exe

C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe

C:\PROGRA~1\Grisoft\AVG7\avgamsvr.exe

C:\PROGRA~1\Grisoft\AVG7\avgupsvc.exe

C:\PROGRA~1\Grisoft\AVG7\avgemc.exe

C:\Program Files\ewido anti-malware\ewidoctrl.exe

C:\Program Files\Dell\NICCONFIGSVC\NICCONFIGSVC.exe

C:\Program Files\Synaptics\SynTP\SynTPEnh.exe

C:\WINDOWS\stsystra.exe

C:\Program Files\Dell\QuickSet\quickset.exe

C:\Program Files\CyberLink\PowerDVD\DVDLauncher.exe

C:\Program Files\Musicmatch\Musicmatch Jukebox\mm_tray.exe

C:\PROGRA~1\MUSICM~1\MUSICM~3\MMDiag.exe

C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe

C:\Program Files\Corel\Corel Photo Album 6\MediaDetect.exe

C:\Program Files\MUSICMATCH\Musicmatch Jukebox\mim.exe

C:\Program Files\Thomson\SpeedTouch USB\Dragdiag.exe

C:\Program Files\Google\Google Desktop Search\GoogleDesktopIndex.exe

C:\Program Files\HP\hpcoretech\hpcmpmgr.exe

C:\Program Files\Google\Google Desktop Search\GoogleDesktopDisplay.exe

C:\Program Files\Hewlett-Packard\HP Software Update\HPWuSchd2.exe

C:\WINDOWS\system32\svchost.exe

C:\Program Files\Java\jre1.6.0_01\bin\jusched.exe

C:\Program Files\QuickTime\qttask.exe

C:\Program Files\Common Files\Real\Update_OB\realsched.exe

C:\Program Files\HighCriteria\TotalRecorder\TotRecSched.exe

C:\PROGRA~1\Grisoft\AVG7\avgcc.exe

C:\Program Files\HP\hpcoretech\comp\hptskmgr.exe

C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe

C:\Program Files\NetWaiting\netWaiting.exe

C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe

C:\WINDOWS\system32\wuauclt.exe

C:\Program Files\MSN Messenger\MsnMsgr.Exe

C:\PROGRA~1\MI3AA1~1\wcescomm.exe

C:\Program Files\DellSupport\DSAgnt.exe

C:\PROGRA~1\MI3AA1~1\rapimgr.exe

C:\Program Files\Digital Line Detect\DLG.exe

C:\Documents and Settings\lucy denny\Desktop\Charlie's Folder\HijackThis.exe

 

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.yahoo.com/

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.dell.com

O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll

O2 - BHO: DriveLetterAccess - {5CA3D70E-1895-11CF-8E15-001234567890} - C:\WINDOWS\system32\dla\tfswshx.dll

O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll

O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)

O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar4.dll

O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar4.dll

O4 - HKLM\..\Run: [synTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe

O4 - HKLM\..\Run: [sigmatelSysTrayApp] stsystra.exe

O4 - HKLM\..\Run: [Dell QuickSet] C:\Program Files\Dell\QuickSet\quickset.exe

O4 - HKLM\..\Run: [DVDLauncher] "C:\Program Files\CyberLink\PowerDVD\DVDLauncher.exe"

O4 - HKLM\..\Run: [iSUSPM Startup] "C:\Program Files\Common Files\InstallShield\UpdateService\isuspm.exe" -startup

O4 - HKLM\..\Run: [iSUSScheduler] "C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe" -start

O4 - HKLM\..\Run: [MimBoot] C:\PROGRA~1\MUSICM~1\MUSICM~3\mimboot.exe

O4 - HKLM\..\Run: [MMTray] "C:\Program Files\Musicmatch\Musicmatch Jukebox\mm_tray.exe"

O4 - HKLM\..\Run: [Google Desktop Search] "C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe" /startup

O4 - HKLM\..\Run: [Corel Photo Downloader] C:\Program Files\Corel\Corel Photo Album 6\MediaDetect.exe

O4 - HKLM\..\Run: [speedTouch USB Diagnostics] "C:\Program Files\Thomson\SpeedTouch USB\Dragdiag.exe" /icon

O4 - HKLM\..\Run: [HPHUPD05] C:\Program Files\Hewlett-Packard\{D946675D-1D6C-4dc8-9E0D-B4B8EAA30EAA}\hphupd05.exe

O4 - HKLM\..\Run: [HP Component Manager] "C:\Program Files\HP\hpcoretech\hpcmpmgr.exe"

O4 - HKLM\..\Run: [HP Software Update] "C:\Program Files\Hewlett-Packard\HP Software Update\HPWuSchd2.exe"

O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_01\bin\jusched.exe"

O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime

O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot

O4 - HKLM\..\Run: [MSKDetectorExe] C:\Program Files\McAfee\SpamKiller\MSKDetct.exe /uninstall

O4 - HKLM\..\Run: [TotalRecorderScheduler] "C:\Program Files\HighCriteria\TotalRecorder\TotRecSched.exe"

O4 - HKLM\..\Run: [AVG7_CC] C:\PROGRA~1\Grisoft\AVG7\avgcc.exe /STARTUP

O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized

O4 - HKCU\..\Run: [ModemOnHold] C:\Program Files\NetWaiting\netWaiting.exe

O4 - HKCU\..\Run: [bgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Common Files\Ahead\lib\NMBgMonitor.exe"

O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe

O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background

O4 - HKCU\..\Run: [H/PC Connection Agent] "C:\PROGRA~1\MI3AA1~1\wcescomm.exe"

O4 - HKCU\..\Run: [DellSupport] "C:\Program Files\DellSupport\DSAgnt.exe" /startup

O4 - Global Startup: Digital Line Detect.lnk = ?

O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE

O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll

O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll

O9 - Extra button: Create Mobile Favorite - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MI3AA1~1\INetRepl.dll

O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MI3AA1~1\INetRepl.dll

O9 - Extra 'Tools' menuitem: Create Mobile Favorite... - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MI3AA1~1\INetRepl.dll

O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\system32\Shdocvw.dll

O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe

O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe

O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204

O16 - DPF: {20A60F0D-9AFA-4515-A0FD-83BD84642501} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab56986.cab

O16 - DPF: {25365FF3-2746-4230-9DA7-163CCA318309} (Automatic Driver Installation Control) - http://inst.c-wss.com/n033p/EN/install/gtdownlr.cab

O16 - DPF: {4ED9DDF0-7479-4BBE-9335-5A1EDB1D8A21} - http://download.mcafee.com/molbin/shared/m...01/mcinsctl.cab

O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/EN-US/a-UNO1/GAME_UNO1.cab

O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/Messe...nt.cab56907.cab

O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL

O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL

O20 - AppInit_DLLs: C:\PROGRA~1\Google\GOOGLE~1\GOEC62~1.DLL

O20 - Winlogon Notify: igfxcui - C:\WINDOWS\SYSTEM32\igfxdev.dll

O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\

O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe

O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgamsvr.exe

O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgupsvc.exe

O23 - Service: AVG E-mail Scanner (AVGEMS) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgemc.exe

O23 - Service: DSBrokerService - Unknown owner - C:\Program Files\DellSupport\brkrsvc.exe

O23 - Service: ewido security suite control - ewido networks - C:\Program Files\ewido anti-malware\ewidoctrl.exe

O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe

O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe

O23 - Service: NICCONFIGSVC - Dell Inc. - C:\Program Files\Dell\NICCONFIGSVC\NICCONFIGSVC.exe

O23 - Service: Dell Wireless WLAN Tray Service (wltrysvc) - Unknown owner - C:\WINDOWS\System32\WLTRYSVC.EXE

Share this post


Link to post
Share on other sites

Hi again,

 

Ok, that's looking a lot better. There's one file I want to check out though, please go here:

http://www.virustotal.com/en/indexf.html

and upload and scan this file:

C:\WINDOWS\system32\F0E7935E7F.sys

and post the results here.

 

jedi

Share this post


Link to post
Share on other sites

Complete scanning result of "F0E7935E7F.sys", received in VirusTotal at 06.24.2007, 16:28:37 (CET).

 

Antivirus Version Update Result

AhnLab-V3 2007.6.21.1 06.22.2007 no virus found

AntiVir 7.4.0.34 06.24.2007 no virus found

Authentium 4.93.8 06.22.2007 no virus found

Avast 4.7.997.0 06.23.2007 no virus found

AVG 7.5.0.476 06.24.2007 no virus found

BitDefender 7.2 06.24.2007 no virus found

CAT-QuickHeal 9.00 06.23.2007 no virus found

ClamAV devel-20070416 06.24.2007 no virus found

DrWeb 4.33 06.24.2007 no virus found

eSafe 7.0.15.0 06.24.2007 no virus found

eTrust-Vet 30.8.3736 06.22.2007 no virus found

Ewido 4.0 06.24.2007 no virus found

FileAdvisor 1 06.24.2007 no virus found

Fortinet 2.91.0.0 06.24.2007 no virus found

F-Prot 4.3.2.48 06.22.2007 no virus found

F-Secure 6.70.13030.0 06.22.2007 no virus found

Ikarus T3.1.1.8 06.24.2007 no virus found

Kaspersky 4.0.2.24 06.24.2007 no virus found

McAfee 5059 06.22.2007 no virus found

Microsoft 1.2701 06.23.2007 no virus found

Norman 5.80.02 06.22.2007 no virus found

Panda 9.0.0.4 06.24.2007 no virus found

Sophos 4.19.0 06.22.2007 no virus found

Sunbelt 2.2.907.0 06.21.2007 no virus found

Symantec 10 06.24.2007 no virus found

TheHacker 6.1.6.137 06.22.2007 no virus found

VBA32 3.12.0.2 06.23.2007 no virus found

VirusBuster 4.3.23:9 06.23.2007 no virus found

Webwasher-Gateway 6.0.1 06.22.2007 no virus found

 

Aditional Information

File size: 56 bytes

MD5: 05e7e8b817d451e85edc83f5e560ce79

SHA1: c515d73b28d557c97e0d46c68fc5ad218dff8e15

Share this post


Link to post
Share on other sites

Hi again,

 

That looks clean. To check for leftovers please do the following:

Run a BitDefender Online scan Here and post the results.

 

jedi

Share this post


Link to post
Share on other sites

BitDefender Online Scanner

 

 

 

Scan report generated at: Sun, Jun 24, 2007 - 21:40:51

 

 

 

 

 

Scan path: C:\;D:\;E:\;

 

 

 

 

 

 

 

Statistics

 

Time

02:09:12

 

Files

211025

 

Folders

6154

 

Boot Sectors

6

 

Archives

3220

 

Packed Files

8743

 

 

 

 

Results

 

Identified Viruses

3

 

Infected Files

7

 

Suspect Files

0

 

Warnings

0

 

Disinfected

0

 

Deleted Files

7

 

 

 

 

Engines Info

 

Virus Definitions

571190

 

Engine build

AVCORE v1.0 (build 2410) (i386) (Jun 12 2007 21:08:27)

 

Scan plugins

14

 

Archive plugins

38

 

Unpack plugins

6

 

E-mail plugins

6

 

System plugins

1

 

 

 

 

Scan Settings

 

First Action

Disinfect

 

Second Action

Delete

 

Heuristics

Yes

 

Enable Warnings

Yes

 

Scanned Extensions

*;

 

Exclude Extensions

 

 

Scan Emails

Yes

 

Scan Archives

Yes

 

Scan Packed

Yes

 

Scan Files

Yes

 

Scan Boot

Yes

 

 

 

 

Scanned File

Status

 

C:\Documents and Settings\lucy denny\Application Data\Sun\Java\Deployment\cache\6.0\6\20abe06-20474dba=>NewSecurityClassLoader.class

Infected with: Java.Trojan.Exploit.Byteverify.G

 

C:\Documents and Settings\lucy denny\Application Data\Sun\Java\Deployment\cache\6.0\6\20abe06-20474dba=>NewSecurityClassLoader.class

Disinfection failed

 

C:\Documents and Settings\lucy denny\Application Data\Sun\Java\Deployment\cache\6.0\6\20abe06-20474dba=>NewSecurityClassLoader.class

Deleted

 

C:\Documents and Settings\lucy denny\Application Data\Sun\Java\Deployment\cache\6.0\6\20abe06-20474dba

Updated

 

C:\Documents and Settings\lucy denny\Application Data\Sun\Java\Deployment\cache\6.0\6\20abe06-20474dba=>NewURLClassLoader.class

Infected with: Java.Trojan.Exploit.Bytverify

 

C:\Documents and Settings\lucy denny\Application Data\Sun\Java\Deployment\cache\6.0\6\20abe06-20474dba=>NewURLClassLoader.class

Disinfection failed

 

C:\Documents and Settings\lucy denny\Application Data\Sun\Java\Deployment\cache\6.0\6\20abe06-20474dba=>NewURLClassLoader.class

Deleted

 

C:\Documents and Settings\lucy denny\Application Data\Sun\Java\Deployment\cache\6.0\6\20abe06-20474dba

Updated

 

C:\Program Files\ewido anti-malware\Quarantine\fil0CEE1429.dat=>(gzip)=>REMOVED_NULLS

Detected with: Application.JS.ForcePopup.D

 

C:\Program Files\ewido anti-malware\Quarantine\fil0CEE1429.dat=>(gzip)=>REMOVED_NULLS

Disinfection failed

 

C:\Program Files\ewido anti-malware\Quarantine\fil0CEE1429.dat=>(gzip)=>REMOVED_NULLS

Deleted

 

C:\Program Files\ewido anti-malware\Quarantine\fil0CEE1429.dat=>(gzip)

Update failed

 

C:\Program Files\ewido anti-malware\Quarantine\fil18275390.dat=>(gzip)=>REMOVED_NULLS

Detected with: Application.JS.ForcePopup.D

 

C:\Program Files\ewido anti-malware\Quarantine\fil18275390.dat=>(gzip)=>REMOVED_NULLS

Disinfection failed

 

C:\Program Files\ewido anti-malware\Quarantine\fil18275390.dat=>(gzip)=>REMOVED_NULLS

Deleted

 

C:\Program Files\ewido anti-malware\Quarantine\fil18275390.dat=>(gzip)

Update failed

 

C:\Program Files\ewido anti-malware\Quarantine\filA375B0A1.dat=>(gzip)=>REMOVED_NULLS

Detected with: Application.JS.ForcePopup.D

 

C:\Program Files\ewido anti-malware\Quarantine\filA375B0A1.dat=>(gzip)=>REMOVED_NULLS

Disinfection failed

 

C:\Program Files\ewido anti-malware\Quarantine\filA375B0A1.dat=>(gzip)=>REMOVED_NULLS

Deleted

 

C:\Program Files\ewido anti-malware\Quarantine\filA375B0A1.dat=>(gzip)

Update failed

 

C:\Program Files\ewido anti-malware\Quarantine\filEDD76D01.dat=>(gzip)=>REMOVED_NULLS

Detected with: Application.JS.ForcePopup.D

 

C:\Program Files\ewido anti-malware\Quarantine\filEDD76D01.dat=>(gzip)=>REMOVED_NULLS

Disinfection failed

 

C:\Program Files\ewido anti-malware\Quarantine\filEDD76D01.dat=>(gzip)=>REMOVED_NULLS

Deleted

 

C:\Program Files\ewido anti-malware\Quarantine\filEDD76D01.dat=>(gzip)

Update failed

 

C:\Program Files\ewido anti-malware\Quarantine\filFA41F359.dat=>(gzip)=>REMOVED_NULLS

Detected with: Application.JS.ForcePopup.D

 

C:\Program Files\ewido anti-malware\Quarantine\filFA41F359.dat=>(gzip)=>REMOVED_NULLS

Disinfection failed

 

C:\Program Files\ewido anti-malware\Quarantine\filFA41F359.dat=>(gzip)=>REMOVED_NULLS

Deleted

 

C:\Program Files\ewido anti-malware\Quarantine\filFA41F359.dat=>(gzip)

Update failed

Share this post


Link to post
Share on other sites

Hi again,

 

Ok, that looks good, please post a fresh HiJackThis log.

 

jedi

Share this post


Link to post
Share on other sites

BitDefender Online Scanner

 

 

 

Scan report generated at: Sun, Jun 24, 2007 - 21:40:51

 

 

 

 

 

Scan path: C:\;D:\;E:\;

 

 

 

 

 

 

 

Statistics

 

Time

02:09:12

 

Files

211025

 

Folders

6154

 

Boot Sectors

6

 

Archives

3220

 

Packed Files

8743

 

 

 

 

Results

 

Identified Viruses

3

 

Infected Files

7

 

Suspect Files

0

 

Warnings

0

 

Disinfected

0

 

Deleted Files

7

 

 

 

 

Engines Info

 

Virus Definitions

571190

 

Engine build

AVCORE v1.0 (build 2410) (i386) (Jun 12 2007 21:08:27)

 

Scan plugins

14

 

Archive plugins

38

 

Unpack plugins

6

 

E-mail plugins

6

 

System plugins

1

 

 

 

 

Scan Settings

 

First Action

Disinfect

 

Second Action

Delete

 

Heuristics

Yes

 

Enable Warnings

Yes

 

Scanned Extensions

*;

 

Exclude Extensions

 

 

Scan Emails

Yes

 

Scan Archives

Yes

 

Scan Packed

Yes

 

Scan Files

Yes

 

Scan Boot

Yes

 

 

 

 

Scanned File

Status

 

C:\Documents and Settings\lucy denny\Application Data\Sun\Java\Deployment\cache\6.0\6\20abe06-20474dba=>NewSecurityClassLoader.class

Infected with: Java.Trojan.Exploit.Byteverify.G

 

C:\Documents and Settings\lucy denny\Application Data\Sun\Java\Deployment\cache\6.0\6\20abe06-20474dba=>NewSecurityClassLoader.class

Disinfection failed

 

C:\Documents and Settings\lucy denny\Application Data\Sun\Java\Deployment\cache\6.0\6\20abe06-20474dba=>NewSecurityClassLoader.class

Deleted

 

C:\Documents and Settings\lucy denny\Application Data\Sun\Java\Deployment\cache\6.0\6\20abe06-20474dba

Updated

 

C:\Documents and Settings\lucy denny\Application Data\Sun\Java\Deployment\cache\6.0\6\20abe06-20474dba=>NewURLClassLoader.class

Infected with: Java.Trojan.Exploit.Bytverify

 

C:\Documents and Settings\lucy denny\Application Data\Sun\Java\Deployment\cache\6.0\6\20abe06-20474dba=>NewURLClassLoader.class

Disinfection failed

 

C:\Documents and Settings\lucy denny\Application Data\Sun\Java\Deployment\cache\6.0\6\20abe06-20474dba=>NewURLClassLoader.class

Deleted

 

C:\Documents and Settings\lucy denny\Application Data\Sun\Java\Deployment\cache\6.0\6\20abe06-20474dba

Updated

 

C:\Program Files\ewido anti-malware\Quarantine\fil0CEE1429.dat=>(gzip)=>REMOVED_NULLS

Detected with: Application.JS.ForcePopup.D

 

C:\Program Files\ewido anti-malware\Quarantine\fil0CEE1429.dat=>(gzip)=>REMOVED_NULLS

Disinfection failed

 

C:\Program Files\ewido anti-malware\Quarantine\fil0CEE1429.dat=>(gzip)=>REMOVED_NULLS

Deleted

 

C:\Program Files\ewido anti-malware\Quarantine\fil0CEE1429.dat=>(gzip)

Update failed

 

C:\Program Files\ewido anti-malware\Quarantine\fil18275390.dat=>(gzip)=>REMOVED_NULLS

Detected with: Application.JS.ForcePopup.D

 

C:\Program Files\ewido anti-malware\Quarantine\fil18275390.dat=>(gzip)=>REMOVED_NULLS

Disinfection failed

 

C:\Program Files\ewido anti-malware\Quarantine\fil18275390.dat=>(gzip)=>REMOVED_NULLS

Deleted

 

C:\Program Files\ewido anti-malware\Quarantine\fil18275390.dat=>(gzip)

Update failed

 

C:\Program Files\ewido anti-malware\Quarantine\filA375B0A1.dat=>(gzip)=>REMOVED_NULLS

Detected with: Application.JS.ForcePopup.D

 

C:\Program Files\ewido anti-malware\Quarantine\filA375B0A1.dat=>(gzip)=>REMOVED_NULLS

Disinfection failed

 

C:\Program Files\ewido anti-malware\Quarantine\filA375B0A1.dat=>(gzip)=>REMOVED_NULLS

Deleted

 

C:\Program Files\ewido anti-malware\Quarantine\filA375B0A1.dat=>(gzip)

Update failed

 

C:\Program Files\ewido anti-malware\Quarantine\filEDD76D01.dat=>(gzip)=>REMOVED_NULLS

Detected with: Application.JS.ForcePopup.D

 

C:\Program Files\ewido anti-malware\Quarantine\filEDD76D01.dat=>(gzip)=>REMOVED_NULLS

Disinfection failed

 

C:\Program Files\ewido anti-malware\Quarantine\filEDD76D01.dat=>(gzip)=>REMOVED_NULLS

Deleted

 

C:\Program Files\ewido anti-malware\Quarantine\filEDD76D01.dat=>(gzip)

Update failed

 

C:\Program Files\ewido anti-malware\Quarantine\filFA41F359.dat=>(gzip)=>REMOVED_NULLS

Detected with: Application.JS.ForcePopup.D

 

C:\Program Files\ewido anti-malware\Quarantine\filFA41F359.dat=>(gzip)=>REMOVED_NULLS

Disinfection failed

 

C:\Program Files\ewido anti-malware\Quarantine\filFA41F359.dat=>(gzip)=>REMOVED_NULLS

Deleted

 

C:\Program Files\ewido anti-malware\Quarantine\filFA41F359.dat=>(gzip)

Update failed

Share this post


Link to post
Share on other sites

Hi again,

 

Ok, that looks good, please post a fresh HiJackThis log.

 

jedi

Share this post


Link to post
Share on other sites

Logfile of HijackThis v1.99.1

Scan saved at 2:55:11 PM, on 6/25/2007

Platform: Windows XP SP2 (WinNT 5.01.2600)

MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

 

Running processes:

C:\WINDOWS\System32\smss.exe

C:\WINDOWS\system32\winlogon.exe

C:\WINDOWS\system32\services.exe

C:\WINDOWS\system32\lsass.exe

C:\WINDOWS\system32\svchost.exe

C:\WINDOWS\System32\svchost.exe

C:\WINDOWS\Explorer.EXE

C:\WINDOWS\System32\WLTRYSVC.EXE

C:\WINDOWS\System32\bcmwltry.exe

C:\WINDOWS\system32\spoolsv.exe

C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe

C:\PROGRA~1\Grisoft\AVG7\avgamsvr.exe

C:\PROGRA~1\Grisoft\AVG7\avgupsvc.exe

C:\PROGRA~1\Grisoft\AVG7\avgemc.exe

C:\Program Files\ewido anti-malware\ewidoctrl.exe

C:\Program Files\Dell\NICCONFIGSVC\NICCONFIGSVC.exe

C:\Program Files\Synaptics\SynTP\SynTPEnh.exe

C:\WINDOWS\stsystra.exe

C:\Program Files\Dell\QuickSet\quickset.exe

C:\Program Files\CyberLink\PowerDVD\DVDLauncher.exe

C:\Program Files\Musicmatch\Musicmatch Jukebox\mm_tray.exe

C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe

C:\PROGRA~1\MUSICM~1\MUSICM~3\MMDiag.exe

C:\Program Files\Corel\Corel Photo Album 6\MediaDetect.exe

C:\Program Files\Thomson\SpeedTouch USB\Dragdiag.exe

C:\Program Files\HP\hpcoretech\hpcmpmgr.exe

C:\Program Files\Hewlett-Packard\HP Software Update\HPWuSchd2.exe

C:\Program Files\Google\Google Desktop Search\GoogleDesktopIndex.exe

C:\Program Files\Java\jre1.6.0_01\bin\jusched.exe

C:\Program Files\QuickTime\qttask.exe

C:\WINDOWS\system32\svchost.exe

C:\Program Files\Google\Google Desktop Search\GoogleDesktopDisplay.exe

C:\Program Files\MUSICMATCH\Musicmatch Jukebox\mim.exe

C:\Program Files\Common Files\Real\Update_OB\realsched.exe

C:\Program Files\HighCriteria\TotalRecorder\TotRecSched.exe

C:\PROGRA~1\Grisoft\AVG7\avgcc.exe

C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe

C:\Program Files\NetWaiting\netWaiting.exe

C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe

C:\Program Files\MSN Messenger\MsnMsgr.Exe

C:\PROGRA~1\MI3AA1~1\wcescomm.exe

C:\Program Files\DellSupport\DSAgnt.exe

C:\PROGRA~1\MI3AA1~1\rapimgr.exe

C:\PROGRA~1\Yahoo!\MESSEN~1\YAHOOM~1.EXE

C:\Program Files\Digital Line Detect\DLG.exe

C:\Documents and Settings\lucy denny\Desktop\Charlie's Folder\HijackThis.exe

 

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.yahoo.com/

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.dell.com

O2 - BHO: (no name) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - (no file)

O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll

O2 - BHO: DriveLetterAccess - {5CA3D70E-1895-11CF-8E15-001234567890} - C:\WINDOWS\system32\dla\tfswshx.dll

O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll

O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)

O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar4.dll

O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar4.dll

O4 - HKLM\..\Run: [synTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe

O4 - HKLM\..\Run: [sigmatelSysTrayApp] stsystra.exe

O4 - HKLM\..\Run: [Dell QuickSet] C:\Program Files\Dell\QuickSet\quickset.exe

O4 - HKLM\..\Run: [DVDLauncher] "C:\Program Files\CyberLink\PowerDVD\DVDLauncher.exe"

O4 - HKLM\..\Run: [iSUSPM Startup] "C:\Program Files\Common Files\InstallShield\UpdateService\isuspm.exe" -startup

O4 - HKLM\..\Run: [iSUSScheduler] "C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe" -start

O4 - HKLM\..\Run: [MimBoot] C:\PROGRA~1\MUSICM~1\MUSICM~3\mimboot.exe

O4 - HKLM\..\Run: [MMTray] "C:\Program Files\Musicmatch\Musicmatch Jukebox\mm_tray.exe"

O4 - HKLM\..\Run: [Google Desktop Search] "C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe" /startup

O4 - HKLM\..\Run: [Corel Photo Downloader] C:\Program Files\Corel\Corel Photo Album 6\MediaDetect.exe

O4 - HKLM\..\Run: [speedTouch USB Diagnostics] "C:\Program Files\Thomson\SpeedTouch USB\Dragdiag.exe" /icon

O4 - HKLM\..\Run: [HPHUPD05] C:\Program Files\Hewlett-Packard\{D946675D-1D6C-4dc8-9E0D-B4B8EAA30EAA}\hphupd05.exe

O4 - HKLM\..\Run: [HP Component Manager] "C:\Program Files\HP\hpcoretech\hpcmpmgr.exe"

O4 - HKLM\..\Run: [HP Software Update] "C:\Program Files\Hewlett-Packard\HP Software Update\HPWuSchd2.exe"

O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_01\bin\jusched.exe"

O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime

O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot

O4 - HKLM\..\Run: [MSKDetectorExe] C:\Program Files\McAfee\SpamKiller\MSKDetct.exe /uninstall

O4 - HKLM\..\Run: [TotalRecorderScheduler] "C:\Program Files\HighCriteria\TotalRecorder\TotRecSched.exe"

O4 - HKLM\..\Run: [AVG7_CC] C:\PROGRA~1\Grisoft\AVG7\avgcc.exe /STARTUP

O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized

O4 - HKCU\..\Run: [ModemOnHold] C:\Program Files\NetWaiting\netWaiting.exe

O4 - HKCU\..\Run: [bgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Common Files\Ahead\lib\NMBgMonitor.exe"

O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe

O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background

O4 - HKCU\..\Run: [H/PC Connection Agent] "C:\PROGRA~1\MI3AA1~1\wcescomm.exe"

O4 - HKCU\..\Run: [DellSupport] "C:\Program Files\DellSupport\DSAgnt.exe" /startup

O4 - HKCU\..\Run: [Yahoo! Pager] "C:\PROGRA~1\Yahoo!\MESSEN~1\YAHOOM~1.EXE" -quiet

O4 - Global Startup: Digital Line Detect.lnk = ?

O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE

O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll

O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll

O9 - Extra button: Create Mobile Favorite - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MI3AA1~1\INetRepl.dll

O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MI3AA1~1\INetRepl.dll

O9 - Extra 'Tools' menuitem: Create Mobile Favorite... - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MI3AA1~1\INetRepl.dll

O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)

O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)

O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\system32\Shdocvw.dll

O9 - Extra button: Run IMVU - {d9288080-1baa-4bc4-9cf8-a92d743db949} - C:\Documents and Settings\lucy denny\Start Menu\Programs\IMVU\Run IMVU.lnk (file missing)

O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe

O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe

O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204

O16 - DPF: {20A60F0D-9AFA-4515-A0FD-83BD84642501} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab56986.cab

O16 - DPF: {25365FF3-2746-4230-9DA7-163CCA318309} (Automatic Driver Installation Control) - http://inst.c-wss.com/n033p/EN/install/gtdownlr.cab

O16 - DPF: {4ED9DDF0-7479-4BBE-9335-5A1EDB1D8A21} - http://download.mcafee.com/molbin/shared/m...01/mcinsctl.cab

O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/EN-US/a-UNO1/GAME_UNO1.cab

O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://download.bitdefender.com/resources/scan8/oscan8.cab

O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/Messe...nt.cab56907.cab

O17 - HKLM\System\CCS\Services\Tcpip\..\{6C08C4DE-5E56-4204-8D95-DFA975C65946}: NameServer = 158.152.1.58 158.152.1.43

O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL

O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL

O20 - AppInit_DLLs: C:\PROGRA~1\Google\GOOGLE~1\GOEC62~1.DLL

O20 - Winlogon Notify: igfxcui - C:\WINDOWS\SYSTEM32\igfxdev.dll

O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\

O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe

O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgamsvr.exe

O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgupsvc.exe

O23 - Service: AVG E-mail Scanner (AVGEMS) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgemc.exe

O23 - Service: DSBrokerService - Unknown owner - C:\Program Files\DellSupport\brkrsvc.exe

O23 - Service: ewido security suite control - ewido networks - C:\Program Files\ewido anti-malware\ewidoctrl.exe

O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe

O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe

O23 - Service: NICCONFIGSVC - Dell Inc. - C:\Program Files\Dell\NICCONFIGSVC\NICCONFIGSVC.exe

O23 - Service: Dell Wireless WLAN Tray Service (wltrysvc) - Unknown owner - C:\WINDOWS\System32\WLTRYSVC.EXE

Share this post


Link to post
Share on other sites

Hi again,

 

OK, that looks clean, how's the PC running now?

 

jedi

Share this post


Link to post
Share on other sites

It seems good, but it does seem a little slower than it used to be.

 

Thanks for your help, you all do a great job here.

Edited by fdsa

Share this post


Link to post
Share on other sites

Glad we could help. :)

 

If you need this topic reopened, please tell the moderating team by replying here with the address of the thread. This applies only to the original topic starter. Everyone else please begin a New Topic.

Share this post


Link to post
Share on other sites
Guest
This topic is now closed to further replies.
Sign in to follow this  
Followers 0