Jump to content


Photo

Malware Infestation


  • This topic is locked This topic is locked
20 replies to this topic

#1 fdsa

fdsa

    Member

  • Full Member
  • Pip
  • 13 posts

Posted 13 June 2007 - 05:02 PM

Hi there,

I have used you guys before and I think the service is fantastic, great job to all who make this possible. If possible as well as deleting the bad, is it possible for you to know the useless and the space wasting??

Here is my hjt log.


Logfile of HijackThis v1.99.1
Scan saved at 10:15:23 PM, on 6/13/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\System32\WLTRYSVC.EXE
C:\WINDOWS\System32\bcmwltry.exe
C:\WINDOWS\system32\spoolsv.exe
C:\PROGRA~1\Grisoft\AVG7\avgamsvr.exe
C:\PROGRA~1\Grisoft\AVG7\avgupsvc.exe
C:\PROGRA~1\Grisoft\AVG7\avgemc.exe
C:\Program Files\ewido anti-malware\ewidoctrl.exe
C:\Program Files\Dell\NICCONFIGSVC\NICCONFIGSVC.exe
C:\WINDOWS\system32\hkcmd.exe
C:\WINDOWS\system32\igfxpers.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\WINDOWS\system32\WLTRAY.exe
C:\WINDOWS\stsystra.exe
C:\Program Files\Dell\QuickSet\quickset.exe
C:\Program Files\CyberLink\PowerDVD\DVDLauncher.exe
C:\WINDOWS\system32\dla\tfswctrl.exe
C:\WINDOWS\system32\igfxsrvc.exe
C:\Program Files\Musicmatch\Musicmatch Jukebox\mm_tray.exe
C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
C:\Program Files\Corel\Corel Photo Album 6\MediaDetect.exe
C:\Program Files\Thomson\SpeedTouch USB\Dragdiag.exe
C:\Program Files\HP\hpcoretech\hpcmpmgr.exe
C:\Program Files\Hewlett-Packard\HP Software Update\HPWuSchd2.exe
C:\WINDOWS\system32\hphmon05.exe
C:\Program Files\Java\jre1.6.0_01\bin\jusched.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\PROGRA~1\MUSICM~1\MUSICM~3\MMDiag.exe
C:\Program Files\HighCriteria\TotalRecorder\TotRecSched.exe
C:\Program Files\Google\Google Desktop Search\GoogleDesktopIndex.exe
C:\PROGRA~1\Grisoft\AVG7\avgcc.exe
C:\Program Files\Google\Google Desktop Search\GoogleDesktopDisplay.exe
C:\Program Files\NetWaiting\netWaiting.exe
C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe
C:\Program Files\MUSICMATCH\Musicmatch Jukebox\mim.exe
C:\Program Files\MSN Messenger\MsnMsgr.Exe
C:\PROGRA~1\MI3AA1~1\wcescomm.exe
C:\Program Files\DellSupport\DSAgnt.exe
C:\Program Files\Digital Line Detect\DLG.exe
C:\PROGRA~1\MI3AA1~1\rapimgr.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Real\RealPlayer\RealPlay.exe
C:\Documents and Settings\lucy denny\Desktop\Charlie's Folder\HijackThis.exe
C:\WINDOWS\system32\wuauclt.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.yahoo.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.dell.com
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.dell.com
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll
O2 - BHO: DriveLetterAccess - {5CA3D70E-1895-11CF-8E15-001234567890} - C:\WINDOWS\system32\dla\tfswshx.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar4.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar4.dll
O4 - HKLM\..\Run: [igfxtray] C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [igfxhkcmd] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [igfxpers] C:\WINDOWS\system32\igfxpers.exe
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [Broadcom Wireless Manager UI] C:\WINDOWS\system32\WLTRAY.exe
O4 - HKLM\..\Run: [SigmatelSysTrayApp] stsystra.exe
O4 - HKLM\..\Run: [Dell QuickSet] C:\Program Files\Dell\QuickSet\quickset.exe
O4 - HKLM\..\Run: [DVDLauncher] "C:\Program Files\CyberLink\PowerDVD\DVDLauncher.exe"
O4 - HKLM\..\Run: [dla] C:\WINDOWS\system32\dla\tfswctrl.exe
O4 - HKLM\..\Run: [ISUSPM Startup] "C:\Program Files\Common Files\InstallShield\UpdateService\isuspm.exe" -startup
O4 - HKLM\..\Run: [ISUSScheduler] "C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe" -start
O4 - HKLM\..\Run: [MimBoot] C:\PROGRA~1\MUSICM~1\MUSICM~3\mimboot.exe
O4 - HKLM\..\Run: [MMTray] "C:\Program Files\Musicmatch\Musicmatch Jukebox\mm_tray.exe"
O4 - HKLM\..\Run: [Google Desktop Search] "C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe" /startup
O4 - HKLM\..\Run: [Corel Photo Downloader] C:\Program Files\Corel\Corel Photo Album 6\MediaDetect.exe
O4 - HKLM\..\Run: [SpeedTouch USB Diagnostics] "C:\Program Files\Thomson\SpeedTouch USB\Dragdiag.exe" /icon
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [HPHUPD05] C:\Program Files\Hewlett-Packard\{D946675D-1D6C-4dc8-9E0D-B4B8EAA30EAA}\hphupd05.exe
O4 - HKLM\..\Run: [HP Component Manager] "C:\Program Files\HP\hpcoretech\hpcmpmgr.exe"
O4 - HKLM\..\Run: [HP Software Update] "C:\Program Files\Hewlett-Packard\HP Software Update\HPWuSchd2.exe"
O4 - HKLM\..\Run: [HPHmon05] C:\WINDOWS\system32\hphmon05.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_01\bin\jusched.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [MSKDetectorExe] C:\Program Files\McAfee\SpamKiller\MSKDetct.exe /uninstall
O4 - HKLM\..\Run: [TotalRecorderScheduler] "C:\Program Files\HighCriteria\TotalRecorder\TotRecSched.exe"
O4 - HKLM\..\Run: [AVG7_CC] C:\PROGRA~1\Grisoft\AVG7\avgcc.exe /STARTUP
O4 - HKCU\..\Run: [ModemOnHold] C:\Program Files\NetWaiting\netWaiting.exe
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Common Files\Ahead\lib\NMBgMonitor.exe"
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [H/PC Connection Agent] "C:\PROGRA~1\MI3AA1~1\wcescomm.exe"
O4 - HKCU\..\Run: [DellSupport] "C:\Program Files\DellSupport\DSAgnt.exe" /startup
O4 - Global Startup: Digital Line Detect.lnk = ?
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll
O9 - Extra button: Create Mobile Favorite - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MI3AA1~1\INetRepl.dll
O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MI3AA1~1\INetRepl.dll
O9 - Extra 'Tools' menuitem: Create Mobile Favorite... - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MI3AA1~1\INetRepl.dll
O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\system32\Shdocvw.dll
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft....k/?linkid=39204
O16 - DPF: {20A60F0D-9AFA-4515-A0FD-83BD84642501} (Checkers Class) - http://messenger.zon...kr.cab56986.cab
O16 - DPF: {25365FF3-2746-4230-9DA7-163CCA318309} (Automatic Driver Installation Control) - http://inst.c-wss.co...ll/gtdownlr.cab
O16 - DPF: {4ED9DDF0-7479-4BBE-9335-5A1EDB1D8A21} - http://download.mcaf...01/mcinsctl.cab
O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zon...1/GAME_UNO1.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zon...nt.cab56907.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{6C08C4DE-5E56-4204-8D95-DFA975C65946}: NameServer = 158.152.1.58 158.152.1.43
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O20 - AppInit_DLLs: C:\PROGRA~1\Google\GOOGLE~1\GOEC62~1.DLL
O20 - Winlogon Notify: igfxcui - C:\WINDOWS\SYSTEM32\igfxdev.dll
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\
O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgamsvr.exe
O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgupsvc.exe
O23 - Service: AVG E-mail Scanner (AVGEMS) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgemc.exe
O23 - Service: DSBrokerService - Unknown owner - C:\Program Files\DellSupport\brkrsvc.exe
O23 - Service: ewido security suite control - ewido networks - C:\Program Files\ewido anti-malware\ewidoctrl.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: NICCONFIGSVC - Dell Inc. - C:\Program Files\Dell\NICCONFIGSVC\NICCONFIGSVC.exe
O23 - Service: Dell Wireless WLAN Tray Service (wltrysvc) - Unknown owner - C:\WINDOWS\System32\WLTRYSVC.EXE



AVG scan is clean every time.



Cheers :)

#2 fdsa

fdsa

    Member

  • Full Member
  • Pip
  • 13 posts

Posted 15 June 2007 - 03:00 PM

The new ewido/ AVG scan


---------------------------------------------------------
AVG Anti-Spyware - Scan Report
---------------------------------------------------------

+ Created at: 8:57:22 PM 6/15/2007

+ Scan result:



HKLM\SOFTWARE\Classes\Interface\{636FF82A-830A-42EA-938B-6DC78B2AC30C} -> Adware.Generic : Ignored.
HKLM\SOFTWARE\Classes\Interface\{81CDDAE8-3B92-4F0D-86C1-8DD5DB6A8471} -> Adware.Generic : Ignored.
HKLM\SOFTWARE\Classes\Interface\{8C88AAE2-A341-4DE8-B064-062194307E5F} -> Adware.Generic : Ignored.
HKLM\SOFTWARE\Classes\Interface\{A55C3BA7-DB1E-4652-867E-055CEAFE8018} -> Adware.Generic : Ignored.
HKLM\SOFTWARE\Classes\Interface\{C28EB22A-6966-4E4B-8592-E84C28D38402} -> Adware.Generic : Ignored.
HKLM\SOFTWARE\Classes\TypeLib\{42FC3840-020C-4E93-A34C-4DF1A6330FBB} -> Adware.Generic : Ignored.
HKLM\SOFTWARE\Classes\TypeLib\{506146FD-9499-49A8-AEDE-692C173B2AA4} -> Adware.Generic : Ignored.
HKLM\SOFTWARE\Classes\TypeLib\{B1C54189-72F0-4353-987B-18FA221BEF09} -> Adware.Generic : Ignored.
HKLM\SOFTWARE\Classes\TypeLib\{EFA1EC0F-8359-41B7-A178-7DD6805A0C79} -> Adware.Generic : Ignored.
HKU\S-1-5-21-1632652722-1721386803-531504974-1006\Software\TrustIn -> Adware.Generic : Ignored.
HKU\S-1-5-21-1632652722-1721386803-531504974-1006\Software\TrustIn\Contextual Ads -> Adware.Generic : Ignored.
HKU\S-1-5-21-1632652722-1721386803-531504974-1006\Software\TrustIn\Search Results Spoofer -> Adware.Generic : Ignored.
HKU\S-1-5-21-1632652722-1721386803-531504974-1006\Software\TrustIn\Search Results Spoofer\se -> Adware.Generic : Ignored.
HKU\S-1-5-21-1632652722-1721386803-531504974-1006\Software\TrustIn\Weekly Executer -> Adware.Generic : Ignored.
:mozilla.86:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.247realmedia : Ignored.
:mozilla.87:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.247realmedia : Ignored.
:mozilla.88:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.247realmedia : Ignored.
C:\Documents and Settings\lucy denny\Cookies\lucy denny@247realmedia[1].txt -> TrackingCookie.247realmedia : Ignored.
:mozilla.30:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.2o7 : Ignored.
:mozilla.31:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.2o7 : Ignored.
:mozilla.32:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.2o7 : Ignored.
:mozilla.330:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.2o7 : Ignored.
:mozilla.336:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.2o7 : Ignored.
:mozilla.33:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.2o7 : Ignored.
:mozilla.34:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.2o7 : Ignored.
:mozilla.35:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.2o7 : Ignored.
:mozilla.83:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.2o7 : Ignored.
C:\Documents and Settings\lucy denny\Cookies\lucy denny@112.2o7[1].txt -> TrackingCookie.2o7 : Ignored.
C:\Documents and Settings\lucy denny\Cookies\lucy denny@2o7[2].txt -> TrackingCookie.2o7 : Ignored.
C:\Documents and Settings\lucy denny\Cookies\lucy denny@americanexpress.122.2o7[1].txt -> TrackingCookie.2o7 : Ignored.
C:\Documents and Settings\lucy denny\Cookies\lucy denny@bnkicom.112.2o7[1].txt -> TrackingCookie.2o7 : Ignored.
C:\Documents and Settings\lucy denny\Cookies\lucy denny@digitalclarity.112.2o7[1].txt -> TrackingCookie.2o7 : Ignored.
C:\Documents and Settings\lucy denny\Cookies\lucy denny@heavycom.122.2o7[1].txt -> TrackingCookie.2o7 : Ignored.
C:\Documents and Settings\lucy denny\Cookies\lucy denny@msnportal.112.2o7[1].txt -> TrackingCookie.2o7 : Ignored.
C:\Documents and Settings\lucy denny\Cookies\lucy denny@workopolis.122.2o7[1].txt -> TrackingCookie.2o7 : Ignored.
:mozilla.303:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.7search : Ignored.
:mozilla.313:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.7search : Ignored.
C:\Documents and Settings\lucy denny\Cookies\lucy denny@7search[1].txt -> TrackingCookie.7search : Ignored.
C:\Documents and Settings\lucy denny\Cookies\lucy denny@adbrite[1].txt -> TrackingCookie.Adbrite : Ignored.
C:\Documents and Settings\lucy denny\Cookies\lucy denny@rotator.adjuggler[1].txt -> TrackingCookie.Adjuggler : Ignored.
:mozilla.127:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Adobe : Ignored.
C:\Documents and Settings\lucy denny\Cookies\lucy denny@www.adobe[1].txt -> TrackingCookie.Adobe : Ignored.
C:\Documents and Settings\lucy denny\Cookies\lucy denny@ad.adocean[2].txt -> TrackingCookie.Adocean : Ignored.
:mozilla.107:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Adrevolver : Ignored.
:mozilla.108:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Adrevolver : Ignored.
:mozilla.109:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Adrevolver : Ignored.
:mozilla.110:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Adrevolver : Ignored.
:mozilla.22:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Adrevolver : Ignored.
:mozilla.23:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Adrevolver : Ignored.
:mozilla.24:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Adrevolver : Ignored.
C:\Documents and Settings\lucy denny\Cookies\lucy denny@adrevolver[2].txt -> TrackingCookie.Adrevolver : Ignored.
:mozilla.8:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Adtech : Ignored.
:mozilla.9:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Adtech : Ignored.
C:\Documents and Settings\lucy denny\Cookies\lucy denny@adtech[2].txt -> TrackingCookie.Adtech : Ignored.
:mozilla.13:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Advertising : Ignored.
C:\Documents and Settings\lucy denny\Cookies\lucy denny@advertising[1].txt -> TrackingCookie.Advertising : Ignored.
:mozilla.97:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Adviva : Ignored.
C:\Documents and Settings\lucy denny\Cookies\lucy denny@adviva[2].txt -> TrackingCookie.Adviva : Ignored.
:mozilla.11:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Atdmt : Ignored.
C:\Documents and Settings\lucy denny\Cookies\lucy denny@atdmt[2].txt -> TrackingCookie.Atdmt : Ignored.
:mozilla.318:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Bfast : Ignored.
C:\Documents and Settings\lucy denny\Cookies\lucy denny@bfast[1].txt -> TrackingCookie.Bfast : Ignored.
C:\Documents and Settings\lucy denny\Cookies\lucy denny@bluestreak[1].txt -> TrackingCookie.Bluestreak : Ignored.
:mozilla.46:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Burstnet : Ignored.
C:\Documents and Settings\lucy denny\Cookies\lucy denny@burstnet[2].txt -> TrackingCookie.Burstnet : Ignored.
C:\Documents and Settings\lucy denny\Cookies\lucy denny@www.burstnet[2].txt -> TrackingCookie.Burstnet : Ignored.
C:\Documents and Settings\lucy denny\Cookies\lucy denny@casalemedia[1].txt -> TrackingCookie.Casalemedia : Ignored.
:mozilla.338:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Clickbank : Ignored.
C:\Documents and Settings\lucy denny\Cookies\lucy denny@clickbank[1].txt -> TrackingCookie.Clickbank : Ignored.
:mozilla.89:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Clickhype : Ignored.
C:\Documents and Settings\lucy denny\Cookies\lucy denny@ad1.clickhype[2].txt -> TrackingCookie.Clickhype : Ignored.
C:\Documents and Settings\lucy denny\Cookies\lucy denny@cz7.clickzs[1].txt -> TrackingCookie.Clickzs : Ignored.
:mozilla.63:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Com : Ignored.
C:\Documents and Settings\lucy denny\Cookies\lucy denny@com[1].txt -> TrackingCookie.Com : Ignored.
C:\Documents and Settings\lucy denny\Cookies\lucy denny@techrepublic.com[2].txt -> TrackingCookie.Com : Ignored.
:mozilla.71:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Connextra : Ignored.
C:\Documents and Settings\lucy denny\Cookies\lucy denny@connextra[2].txt -> TrackingCookie.Connextra : Ignored.
C:\Documents and Settings\lucy denny\Cookies\lucy denny@doubleclick[2].txt -> TrackingCookie.Doubleclick : Ignored.
C:\WINDOWS\Temp\Cookies\lucy denny@doubleclick[1].txt -> TrackingCookie.Doubleclick : Ignored.
C:\Documents and Settings\lucy denny\Cookies\lucy denny@adopt.euroclick[1].txt -> TrackingCookie.Euroclick : Ignored.
:mozilla.93:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Falkag : Ignored.
C:\Documents and Settings\lucy denny\Cookies\lucy denny@as-eu.falkag[2].txt -> TrackingCookie.Falkag : Ignored.
C:\Documents and Settings\lucy denny\Cookies\lucy denny@as-us.falkag[1].txt -> TrackingCookie.Falkag : Ignored.
C:\Documents and Settings\lucy denny\Cookies\lucy denny@as1.falkag[2].txt -> TrackingCookie.Falkag : Ignored.
C:\Documents and Settings\lucy denny\Cookies\lucy denny@fastclick[2].txt -> TrackingCookie.Fastclick : Ignored.
:mozilla.245:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Gemius : Ignored.
:mozilla.246:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Gemius : Ignored.
:mozilla.247:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Gemius : Ignored.
C:\Documents and Settings\lucy denny\Cookies\lucy denny@hit.gemius[2].txt -> TrackingCookie.Gemius : Ignored.
:mozilla.201:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Hitbox : Ignored.
:mozilla.244:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Hitbox : Ignored.
:mozilla.280:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Hitbox : Ignored.
:mozilla.281:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Hitbox : Ignored.
:mozilla.282:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Hitbox : Ignored.
:mozilla.283:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Hitbox : Ignored.
:mozilla.292:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Hitbox : Ignored.
:mozilla.294:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Hitbox : Ignored.
C:\Documents and Settings\lucy denny\Cookies\lucy denny@ehg-bskyb.hitbox[2].txt -> TrackingCookie.Hitbox : Ignored.
C:\Documents and Settings\lucy denny\Cookies\lucy denny@ehg-capitalgroup.hitbox[2].txt -> TrackingCookie.Hitbox : Ignored.
C:\Documents and Settings\lucy denny\Cookies\lucy denny@ehg-foxinteractive.hitbox[2].txt -> TrackingCookie.Hitbox : Ignored.
C:\Documents and Settings\lucy denny\Cookies\lucy denny@ehg-newsinteractive.hitbox[1].txt -> TrackingCookie.Hitbox : Ignored.
C:\Documents and Settings\lucy denny\Cookies\lucy denny@ehg-nokiafin.hitbox[1].txt -> TrackingCookie.Hitbox : Ignored.
C:\Documents and Settings\lucy denny\Cookies\lucy denny@ehg-techtarget.hitbox[2].txt -> TrackingCookie.Hitbox : Ignored.
C:\Documents and Settings\lucy denny\Cookies\lucy denny@ehg-tfl.hitbox[2].txt -> TrackingCookie.Hitbox : Ignored.
C:\Documents and Settings\lucy denny\Cookies\lucy denny@ehg-ti.hitbox[1].txt -> TrackingCookie.Hitbox : Ignored.
C:\Documents and Settings\lucy denny\Cookies\lucy denny@hitbox[1].txt -> TrackingCookie.Hitbox : Ignored.
C:\Documents and Settings\lucy denny\Cookies\lucy denny@phg.hitbox[1].txt -> TrackingCookie.Hitbox : Ignored.
C:\Documents and Settings\lucy denny\Cookies\lucy denny@hypertracker[1].txt -> TrackingCookie.Hypertracker : Ignored.
:mozilla.27:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Imrworldwide : Ignored.
:mozilla.28:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Imrworldwide : Ignored.
C:\Documents and Settings\lucy denny\Cookies\lucy denny@www.intelli-tracker[1].txt -> TrackingCookie.Intelli-tracker : Ignored.
C:\Documents and Settings\lucy denny\Cookies\lucy denny@image.masterstats[1].txt -> TrackingCookie.Masterstats : Ignored.
:mozilla.10:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Mediaplex : Ignored.
C:\Documents and Settings\lucy denny\Cookies\lucy denny@mediaplex[2].txt -> TrackingCookie.Mediaplex : Ignored.
:mozilla.104:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Netflame : Ignored.
C:\Documents and Settings\lucy denny\Cookies\lucy denny@ssl-hints.netflame[1].txt -> TrackingCookie.Netflame : Ignored.
:mozilla.111:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Overture : Ignored.
:mozilla.56:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Overture : Ignored.
C:\Documents and Settings\lucy denny\Cookies\lucy denny@data3.perf.overture[1].txt -> TrackingCookie.Overture : Ignored.
C:\Documents and Settings\lucy denny\Cookies\lucy denny@overture[1].txt -> TrackingCookie.Overture : Ignored.
C:\Documents and Settings\lucy denny\Cookies\lucy denny@perf.overture[1].txt -> TrackingCookie.Overture : Ignored.
:mozilla.65:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Pointroll : Ignored.
C:\Documents and Settings\lucy denny\Cookies\lucy denny@ads.pointroll[2].txt -> TrackingCookie.Pointroll : Ignored.
:mozilla.198:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Pro-market : Ignored.
:mozilla.199:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Pro-market : Ignored.
C:\Documents and Settings\lucy denny\Cookies\lucy denny@pro-market[2].txt -> TrackingCookie.Pro-market : Ignored.
C:\Documents and Settings\lucy denny\Cookies\lucy denny@questionmarket[1].txt -> TrackingCookie.Questionmarket : Ignored.
C:\Documents and Settings\lucy denny\Cookies\lucy denny@real[2].txt -> TrackingCookie.Real : Ignored.
C:\Documents and Settings\lucy denny\Cookies\lucy denny@realguide.real[1].txt -> TrackingCookie.Real : Ignored.
:mozilla.100:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Realmedia : Ignored.
:mozilla.101:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Realmedia : Ignored.
:mozilla.99:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Realmedia : Ignored.
C:\Documents and Settings\lucy denny\Cookies\lucy denny@realmedia[1].txt -> TrackingCookie.Realmedia : Ignored.
C:\Documents and Settings\lucy denny\Cookies\lucy denny@stats1.reliablestats[1].txt -> TrackingCookie.Reliablestats : Ignored.
C:\Documents and Settings\lucy denny\Cookies\lucy denny@revenue[1].txt -> TrackingCookie.Revenue : Ignored.
:mozilla.47:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Revsci : Ignored.
:mozilla.48:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Revsci : Ignored.
:mozilla.49:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Revsci : Ignored.
C:\Documents and Settings\lucy denny\Cookies\lucy denny@revsci[1].txt -> TrackingCookie.Revsci : Ignored.
:mozilla.242:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Ru4 : Ignored.
:mozilla.243:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Ru4 : Ignored.
C:\Documents and Settings\lucy denny\Cookies\lucy denny@edge.ru4[1].txt -> TrackingCookie.Ru4 : Ignored.
C:\Documents and Settings\lucy denny\Cookies\lucy denny@bs.serving-sys[1].txt -> TrackingCookie.Serving-sys : Ignored.
C:\Documents and Settings\lucy denny\Cookies\lucy denny@serving-sys[2].txt -> TrackingCookie.Serving-sys : Ignored.
C:\Documents and Settings\lucy denny\Cookies\lucy denny@cs.sexcounter[2].txt -> TrackingCookie.Sexcounter : Ignored.
C:\Documents and Settings\lucy denny\Cookies\lucy denny@counter1.sextracker[1].txt -> TrackingCookie.Sextracker : Ignored.
C:\Documents and Settings\lucy denny\Cookies\lucy denny@sextracker[1].txt -> TrackingCookie.Sextracker : Ignored.
:mozilla.59:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Statcounter : Ignored.
:mozilla.60:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Statcounter : Ignored.
:mozilla.61:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Statcounter : Ignored.
C:\Documents and Settings\lucy denny\Cookies\lucy denny@statcounter[2].txt -> TrackingCookie.Statcounter : Ignored.
:mozilla.16:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Tacoda : Ignored.
:mozilla.17:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Tacoda : Ignored.
C:\Documents and Settings\lucy denny\Cookies\lucy denny@anad.tacoda[1].txt -> TrackingCookie.Tacoda : Ignored.
C:\Documents and Settings\lucy denny\Cookies\lucy denny@anat.tacoda[1].txt -> TrackingCookie.Tacoda : Ignored.
C:\Documents and Settings\lucy denny\Cookies\lucy denny@tacoda[1].txt -> TrackingCookie.Tacoda : Ignored.
C:\Documents and Settings\lucy denny\Cookies\lucy denny@login.tracking101[2].txt -> TrackingCookie.Tracking101 : Ignored.
C:\Documents and Settings\lucy denny\Cookies\lucy denny@tradedoubler[1].txt -> TrackingCookie.Tradedoubler : Ignored.
:mozilla.42:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Trafficmp : Ignored.
:mozilla.43:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Trafficmp : Ignored.
C:\Documents and Settings\lucy denny\Cookies\lucy denny@trafficmp[2].txt -> TrackingCookie.Trafficmp : Ignored.
C:\Documents and Settings\lucy denny\Cookies\lucy denny@tribalfusion[1].txt -> TrackingCookie.Tribalfusion : Ignored.
:mozilla.98:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Valueclick : Ignored.
C:\Documents and Settings\lucy denny\Cookies\lucy denny@valueclick[1].txt -> TrackingCookie.Valueclick : Ignored.
C:\Documents and Settings\lucy denny\Cookies\lucy denny@web-stat[1].txt -> TrackingCookie.Web-stat : Ignored.
C:\Documents and Settings\lucy denny\Cookies\lucy denny@m.webtrends[1].txt -> TrackingCookie.Webtrends : Ignored.
:mozilla.84:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Webtrendslive : Ignored.
C:\Documents and Settings\lucy denny\Cookies\lucy denny@statse.webtrendslive[2].txt -> TrackingCookie.Webtrendslive : Ignored.
:mozilla.14:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Yieldmanager : Ignored.
:mozilla.15:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Yieldmanager : Ignored.
C:\Documents and Settings\lucy denny\Cookies\lucy denny@ad.yieldmanager[2].txt -> TrackingCookie.Yieldmanager : Ignored.
:mozilla.50:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Zedo : Ignored.
C:\Documents and Settings\lucy denny\Cookies\lucy denny@c5.zedo[2].txt -> TrackingCookie.Zedo : Ignored.
C:\Documents and Settings\lucy denny\Cookies\lucy denny@zedo[1].txt -> TrackingCookie.Zedo : Ignored.


::Report end

#3 fdsa

fdsa

    Member

  • Full Member
  • Pip
  • 13 posts

Posted 15 June 2007 - 03:02 PM

The new ewido/ AVG scan


---------------------------------------------------------
AVG Anti-Spyware - Scan Report
---------------------------------------------------------

+ Created at: 8:57:22 PM 6/15/2007

+ Scan result:



HKLM\SOFTWARE\Classes\Interface\{636FF82A-830A-42EA-938B-6DC78B2AC30C} -> Adware.Generic : Ignored.
HKLM\SOFTWARE\Classes\Interface\{81CDDAE8-3B92-4F0D-86C1-8DD5DB6A8471} -> Adware.Generic : Ignored.
HKLM\SOFTWARE\Classes\Interface\{8C88AAE2-A341-4DE8-B064-062194307E5F} -> Adware.Generic : Ignored.
HKLM\SOFTWARE\Classes\Interface\{A55C3BA7-DB1E-4652-867E-055CEAFE8018} -> Adware.Generic : Ignored.
HKLM\SOFTWARE\Classes\Interface\{C28EB22A-6966-4E4B-8592-E84C28D38402} -> Adware.Generic : Ignored.
HKLM\SOFTWARE\Classes\TypeLib\{42FC3840-020C-4E93-A34C-4DF1A6330FBB} -> Adware.Generic : Ignored.
HKLM\SOFTWARE\Classes\TypeLib\{506146FD-9499-49A8-AEDE-692C173B2AA4} -> Adware.Generic : Ignored.
HKLM\SOFTWARE\Classes\TypeLib\{B1C54189-72F0-4353-987B-18FA221BEF09} -> Adware.Generic : Ignored.
HKLM\SOFTWARE\Classes\TypeLib\{EFA1EC0F-8359-41B7-A178-7DD6805A0C79} -> Adware.Generic : Ignored.
HKU\S-1-5-21-1632652722-1721386803-531504974-1006\Software\TrustIn -> Adware.Generic : Ignored.
HKU\S-1-5-21-1632652722-1721386803-531504974-1006\Software\TrustIn\Contextual Ads -> Adware.Generic : Ignored.
HKU\S-1-5-21-1632652722-1721386803-531504974-1006\Software\TrustIn\Search Results Spoofer -> Adware.Generic : Ignored.
HKU\S-1-5-21-1632652722-1721386803-531504974-1006\Software\TrustIn\Search Results Spoofer\se -> Adware.Generic : Ignored.
HKU\S-1-5-21-1632652722-1721386803-531504974-1006\Software\TrustIn\Weekly Executer -> Adware.Generic : Ignored.
:mozilla.86:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.247realmedia : Ignored.
:mozilla.87:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.247realmedia : Ignored.
:mozilla.88:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.247realmedia : Ignored.
C:\Documents and Settings\lucy denny\Cookies\lucy denny@247realmedia[1].txt -> TrackingCookie.247realmedia : Ignored.
:mozilla.30:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.2o7 : Ignored.
:mozilla.31:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.2o7 : Ignored.
:mozilla.32:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.2o7 : Ignored.
:mozilla.330:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.2o7 : Ignored.
:mozilla.336:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.2o7 : Ignored.
:mozilla.33:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.2o7 : Ignored.
:mozilla.34:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.2o7 : Ignored.
:mozilla.35:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.2o7 : Ignored.
:mozilla.83:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.2o7 : Ignored.
C:\Documents and Settings\lucy denny\Cookies\lucy denny@112.2o7[1].txt -> TrackingCookie.2o7 : Ignored.
C:\Documents and Settings\lucy denny\Cookies\lucy denny@2o7[2].txt -> TrackingCookie.2o7 : Ignored.
C:\Documents and Settings\lucy denny\Cookies\lucy denny@americanexpress.122.2o7[1].txt -> TrackingCookie.2o7 : Ignored.
C:\Documents and Settings\lucy denny\Cookies\lucy denny@bnkicom.112.2o7[1].txt -> TrackingCookie.2o7 : Ignored.
C:\Documents and Settings\lucy denny\Cookies\lucy denny@digitalclarity.112.2o7[1].txt -> TrackingCookie.2o7 : Ignored.
C:\Documents and Settings\lucy denny\Cookies\lucy denny@heavycom.122.2o7[1].txt -> TrackingCookie.2o7 : Ignored.
C:\Documents and Settings\lucy denny\Cookies\lucy denny@msnportal.112.2o7[1].txt -> TrackingCookie.2o7 : Ignored.
C:\Documents and Settings\lucy denny\Cookies\lucy denny@workopolis.122.2o7[1].txt -> TrackingCookie.2o7 : Ignored.
:mozilla.303:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.7search : Ignored.
:mozilla.313:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.7search : Ignored.
C:\Documents and Settings\lucy denny\Cookies\lucy denny@7search[1].txt -> TrackingCookie.7search : Ignored.
C:\Documents and Settings\lucy denny\Cookies\lucy denny@adbrite[1].txt -> TrackingCookie.Adbrite : Ignored.
C:\Documents and Settings\lucy denny\Cookies\lucy denny@rotator.adjuggler[1].txt -> TrackingCookie.Adjuggler : Ignored.
:mozilla.127:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Adobe : Ignored.
C:\Documents and Settings\lucy denny\Cookies\lucy denny@www.adobe[1].txt -> TrackingCookie.Adobe : Ignored.
C:\Documents and Settings\lucy denny\Cookies\lucy denny@ad.adocean[2].txt -> TrackingCookie.Adocean : Ignored.
:mozilla.107:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Adrevolver : Ignored.
:mozilla.108:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Adrevolver : Ignored.
:mozilla.109:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Adrevolver : Ignored.
:mozilla.110:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Adrevolver : Ignored.
:mozilla.22:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Adrevolver : Ignored.
:mozilla.23:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Adrevolver : Ignored.
:mozilla.24:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Adrevolver : Ignored.
C:\Documents and Settings\lucy denny\Cookies\lucy denny@adrevolver[2].txt -> TrackingCookie.Adrevolver : Ignored.
:mozilla.8:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Adtech : Ignored.
:mozilla.9:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Adtech : Ignored.
C:\Documents and Settings\lucy denny\Cookies\lucy denny@adtech[2].txt -> TrackingCookie.Adtech : Ignored.
:mozilla.13:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Advertising : Ignored.
C:\Documents and Settings\lucy denny\Cookies\lucy denny@advertising[1].txt -> TrackingCookie.Advertising : Ignored.
:mozilla.97:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Adviva : Ignored.
C:\Documents and Settings\lucy denny\Cookies\lucy denny@adviva[2].txt -> TrackingCookie.Adviva : Ignored.
:mozilla.11:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Atdmt : Ignored.
C:\Documents and Settings\lucy denny\Cookies\lucy denny@atdmt[2].txt -> TrackingCookie.Atdmt : Ignored.
:mozilla.318:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Bfast : Ignored.
C:\Documents and Settings\lucy denny\Cookies\lucy denny@bfast[1].txt -> TrackingCookie.Bfast : Ignored.
C:\Documents and Settings\lucy denny\Cookies\lucy denny@bluestreak[1].txt -> TrackingCookie.Bluestreak : Ignored.
:mozilla.46:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Burstnet : Ignored.
C:\Documents and Settings\lucy denny\Cookies\lucy denny@burstnet[2].txt -> TrackingCookie.Burstnet : Ignored.
C:\Documents and Settings\lucy denny\Cookies\lucy denny@www.burstnet[2].txt -> TrackingCookie.Burstnet : Ignored.
C:\Documents and Settings\lucy denny\Cookies\lucy denny@casalemedia[1].txt -> TrackingCookie.Casalemedia : Ignored.
:mozilla.338:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Clickbank : Ignored.
C:\Documents and Settings\lucy denny\Cookies\lucy denny@clickbank[1].txt -> TrackingCookie.Clickbank : Ignored.
:mozilla.89:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Clickhype : Ignored.
C:\Documents and Settings\lucy denny\Cookies\lucy denny@ad1.clickhype[2].txt -> TrackingCookie.Clickhype : Ignored.
C:\Documents and Settings\lucy denny\Cookies\lucy denny@cz7.clickzs[1].txt -> TrackingCookie.Clickzs : Ignored.
:mozilla.63:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Com : Ignored.
C:\Documents and Settings\lucy denny\Cookies\lucy denny@com[1].txt -> TrackingCookie.Com : Ignored.
C:\Documents and Settings\lucy denny\Cookies\lucy denny@techrepublic.com[2].txt -> TrackingCookie.Com : Ignored.
:mozilla.71:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Connextra : Ignored.
C:\Documents and Settings\lucy denny\Cookies\lucy denny@connextra[2].txt -> TrackingCookie.Connextra : Ignored.
C:\Documents and Settings\lucy denny\Cookies\lucy denny@doubleclick[2].txt -> TrackingCookie.Doubleclick : Ignored.
C:\WINDOWS\Temp\Cookies\lucy denny@doubleclick[1].txt -> TrackingCookie.Doubleclick : Ignored.
C:\Documents and Settings\lucy denny\Cookies\lucy denny@adopt.euroclick[1].txt -> TrackingCookie.Euroclick : Ignored.
:mozilla.93:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Falkag : Ignored.
C:\Documents and Settings\lucy denny\Cookies\lucy denny@as-eu.falkag[2].txt -> TrackingCookie.Falkag : Ignored.
C:\Documents and Settings\lucy denny\Cookies\lucy denny@as-us.falkag[1].txt -> TrackingCookie.Falkag : Ignored.
C:\Documents and Settings\lucy denny\Cookies\lucy denny@as1.falkag[2].txt -> TrackingCookie.Falkag : Ignored.
C:\Documents and Settings\lucy denny\Cookies\lucy denny@fastclick[2].txt -> TrackingCookie.Fastclick : Ignored.
:mozilla.245:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Gemius : Ignored.
:mozilla.246:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Gemius : Ignored.
:mozilla.247:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Gemius : Ignored.
C:\Documents and Settings\lucy denny\Cookies\lucy denny@hit.gemius[2].txt -> TrackingCookie.Gemius : Ignored.
:mozilla.201:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Hitbox : Ignored.
:mozilla.244:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Hitbox : Ignored.
:mozilla.280:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Hitbox : Ignored.
:mozilla.281:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Hitbox : Ignored.
:mozilla.282:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Hitbox : Ignored.
:mozilla.283:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Hitbox : Ignored.
:mozilla.292:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Hitbox : Ignored.
:mozilla.294:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Hitbox : Ignored.
C:\Documents and Settings\lucy denny\Cookies\lucy denny@ehg-bskyb.hitbox[2].txt -> TrackingCookie.Hitbox : Ignored.
C:\Documents and Settings\lucy denny\Cookies\lucy denny@ehg-capitalgroup.hitbox[2].txt -> TrackingCookie.Hitbox : Ignored.
C:\Documents and Settings\lucy denny\Cookies\lucy denny@ehg-foxinteractive.hitbox[2].txt -> TrackingCookie.Hitbox : Ignored.
C:\Documents and Settings\lucy denny\Cookies\lucy denny@ehg-newsinteractive.hitbox[1].txt -> TrackingCookie.Hitbox : Ignored.
C:\Documents and Settings\lucy denny\Cookies\lucy denny@ehg-nokiafin.hitbox[1].txt -> TrackingCookie.Hitbox : Ignored.
C:\Documents and Settings\lucy denny\Cookies\lucy denny@ehg-techtarget.hitbox[2].txt -> TrackingCookie.Hitbox : Ignored.
C:\Documents and Settings\lucy denny\Cookies\lucy denny@ehg-tfl.hitbox[2].txt -> TrackingCookie.Hitbox : Ignored.
C:\Documents and Settings\lucy denny\Cookies\lucy denny@ehg-ti.hitbox[1].txt -> TrackingCookie.Hitbox : Ignored.
C:\Documents and Settings\lucy denny\Cookies\lucy denny@hitbox[1].txt -> TrackingCookie.Hitbox : Ignored.
C:\Documents and Settings\lucy denny\Cookies\lucy denny@phg.hitbox[1].txt -> TrackingCookie.Hitbox : Ignored.
C:\Documents and Settings\lucy denny\Cookies\lucy denny@hypertracker[1].txt -> TrackingCookie.Hypertracker : Ignored.
:mozilla.27:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Imrworldwide : Ignored.
:mozilla.28:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Imrworldwide : Ignored.
C:\Documents and Settings\lucy denny\Cookies\lucy denny@www.intelli-tracker[1].txt -> TrackingCookie.Intelli-tracker : Ignored.
C:\Documents and Settings\lucy denny\Cookies\lucy denny@image.masterstats[1].txt -> TrackingCookie.Masterstats : Ignored.
:mozilla.10:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Mediaplex : Ignored.
C:\Documents and Settings\lucy denny\Cookies\lucy denny@mediaplex[2].txt -> TrackingCookie.Mediaplex : Ignored.
:mozilla.104:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Netflame : Ignored.
C:\Documents and Settings\lucy denny\Cookies\lucy denny@ssl-hints.netflame[1].txt -> TrackingCookie.Netflame : Ignored.
:mozilla.111:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Overture : Ignored.
:mozilla.56:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Overture : Ignored.
C:\Documents and Settings\lucy denny\Cookies\lucy denny@data3.perf.overture[1].txt -> TrackingCookie.Overture : Ignored.
C:\Documents and Settings\lucy denny\Cookies\lucy denny@overture[1].txt -> TrackingCookie.Overture : Ignored.
C:\Documents and Settings\lucy denny\Cookies\lucy denny@perf.overture[1].txt -> TrackingCookie.Overture : Ignored.
:mozilla.65:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Pointroll : Ignored.
C:\Documents and Settings\lucy denny\Cookies\lucy denny@ads.pointroll[2].txt -> TrackingCookie.Pointroll : Ignored.
:mozilla.198:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Pro-market : Ignored.
:mozilla.199:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Pro-market : Ignored.
C:\Documents and Settings\lucy denny\Cookies\lucy denny@pro-market[2].txt -> TrackingCookie.Pro-market : Ignored.
C:\Documents and Settings\lucy denny\Cookies\lucy denny@questionmarket[1].txt -> TrackingCookie.Questionmarket : Ignored.
C:\Documents and Settings\lucy denny\Cookies\lucy denny@real[2].txt -> TrackingCookie.Real : Ignored.
C:\Documents and Settings\lucy denny\Cookies\lucy denny@realguide.real[1].txt -> TrackingCookie.Real : Ignored.
:mozilla.100:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Realmedia : Ignored.
:mozilla.101:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Realmedia : Ignored.
:mozilla.99:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Realmedia : Ignored.
C:\Documents and Settings\lucy denny\Cookies\lucy denny@realmedia[1].txt -> TrackingCookie.Realmedia : Ignored.
C:\Documents and Settings\lucy denny\Cookies\lucy denny@stats1.reliablestats[1].txt -> TrackingCookie.Reliablestats : Ignored.
C:\Documents and Settings\lucy denny\Cookies\lucy denny@revenue[1].txt -> TrackingCookie.Revenue : Ignored.
:mozilla.47:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Revsci : Ignored.
:mozilla.48:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Revsci : Ignored.
:mozilla.49:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Revsci : Ignored.
C:\Documents and Settings\lucy denny\Cookies\lucy denny@revsci[1].txt -> TrackingCookie.Revsci : Ignored.
:mozilla.242:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Ru4 : Ignored.
:mozilla.243:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Ru4 : Ignored.
C:\Documents and Settings\lucy denny\Cookies\lucy denny@edge.ru4[1].txt -> TrackingCookie.Ru4 : Ignored.
C:\Documents and Settings\lucy denny\Cookies\lucy denny@bs.serving-sys[1].txt -> TrackingCookie.Serving-sys : Ignored.
C:\Documents and Settings\lucy denny\Cookies\lucy denny@serving-sys[2].txt -> TrackingCookie.Serving-sys : Ignored.
C:\Documents and Settings\lucy denny\Cookies\lucy denny@cs.sexcounter[2].txt -> TrackingCookie.Sexcounter : Ignored.
C:\Documents and Settings\lucy denny\Cookies\lucy denny@counter1.sextracker[1].txt -> TrackingCookie.Sextracker : Ignored.
C:\Documents and Settings\lucy denny\Cookies\lucy denny@sextracker[1].txt -> TrackingCookie.Sextracker : Ignored.
:mozilla.59:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Statcounter : Ignored.
:mozilla.60:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Statcounter : Ignored.
:mozilla.61:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Statcounter : Ignored.
C:\Documents and Settings\lucy denny\Cookies\lucy denny@statcounter[2].txt -> TrackingCookie.Statcounter : Ignored.
:mozilla.16:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Tacoda : Ignored.
:mozilla.17:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Tacoda : Ignored.
C:\Documents and Settings\lucy denny\Cookies\lucy denny@anad.tacoda[1].txt -> TrackingCookie.Tacoda : Ignored.
C:\Documents and Settings\lucy denny\Cookies\lucy denny@anat.tacoda[1].txt -> TrackingCookie.Tacoda : Ignored.
C:\Documents and Settings\lucy denny\Cookies\lucy denny@tacoda[1].txt -> TrackingCookie.Tacoda : Ignored.
C:\Documents and Settings\lucy denny\Cookies\lucy denny@login.tracking101[2].txt -> TrackingCookie.Tracking101 : Ignored.
C:\Documents and Settings\lucy denny\Cookies\lucy denny@tradedoubler[1].txt -> TrackingCookie.Tradedoubler : Ignored.
:mozilla.42:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Trafficmp : Ignored.
:mozilla.43:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Trafficmp : Ignored.
C:\Documents and Settings\lucy denny\Cookies\lucy denny@trafficmp[2].txt -> TrackingCookie.Trafficmp : Ignored.
C:\Documents and Settings\lucy denny\Cookies\lucy denny@tribalfusion[1].txt -> TrackingCookie.Tribalfusion : Ignored.
:mozilla.98:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Valueclick : Ignored.
C:\Documents and Settings\lucy denny\Cookies\lucy denny@valueclick[1].txt -> TrackingCookie.Valueclick : Ignored.
C:\Documents and Settings\lucy denny\Cookies\lucy denny@web-stat[1].txt -> TrackingCookie.Web-stat : Ignored.
C:\Documents and Settings\lucy denny\Cookies\lucy denny@m.webtrends[1].txt -> TrackingCookie.Webtrends : Ignored.
:mozilla.84:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Webtrendslive : Ignored.
C:\Documents and Settings\lucy denny\Cookies\lucy denny@statse.webtrendslive[2].txt -> TrackingCookie.Webtrendslive : Ignored.
:mozilla.14:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Yieldmanager : Ignored.
:mozilla.15:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Yieldmanager : Ignored.
C:\Documents and Settings\lucy denny\Cookies\lucy denny@ad.yieldmanager[2].txt -> TrackingCookie.Yieldmanager : Ignored.
:mozilla.50:C:\Documents and Settings\lucy denny\Application Data\Mozilla\Firefox\Profiles\ehw9pcxq.default\cookies.txt -> TrackingCookie.Zedo : Ignored.
C:\Documents and Settings\lucy denny\Cookies\lucy denny@c5.zedo[2].txt -> TrackingCookie.Zedo : Ignored.
C:\Documents and Settings\lucy denny\Cookies\lucy denny@zedo[1].txt -> TrackingCookie.Zedo : Ignored.


::Report end

#4 SWI Support Robot

SWI Support Robot

    Helper robot

  • SWI Bot
  • PipPipPipPipPip
  • 23,520 posts

Posted 16 June 2007 - 06:31 AM

Welcome to SWI. We apologize for the delay; our helpers have been very busy.
If you have not received help after 3 days, please CLICK HERE, and post a link to your log and the date it was originally posted.

Thank you for your patience.

[this is an automated reply]
This is an automated message. It does not count as help.

#5 jedi

jedi

    aequam memento rebus in arduis servare mentem

  • Emeritus
  • PipPipPipPipPip
  • 15,830 posts

Posted 19 June 2007 - 01:14 PM

Hi,

Sorry about the wait.

Download Dr.Web CureIt to the desktop:
ftp://ftp.drweb.com/pub/drweb/cureit/drweb-cureit.exe
Next, please reboot your computer in Safe Mode by doing the following:
1) Restart your computer
2) After hearing your computer beep once during startup, but before the Windows icon appears, press F8.
3) Instead of Windows loading as normal, a menu should appear
4) Select the first option, to run Windows in Safe Mode.

For additional help in booting into Safe Mode, see the following site:
http://www.pchell.co.../safemode.shtml
  • Doubleclick the drweb-cureit.exe file and Allow to run the express scan
  • This will scan the files currently running in memory and when something is found, click the yes button when it asks you if you want to cure it. This is only a short scan.
  • Once the short scan has finished, mark the drives that you want to scan.
  • Select all drives. A red dot shows which drives have been chosen.
  • Click the green arrow at the right, and the scan will start.
  • Click 'Yes to all' if it asks if you want to cure/move the file.
  • When the scan has finished, look if you can click next icon next to the files found: Posted Image
  • If so, click it and then click the next icon right below and select Move incurable as you'll see in next image:
    Posted Image
    This will move it to the %userprofile%\DoctorWeb\quarantaine-folder if it can't be cured. (this in case if we need samples)
  • After selecting, in the Dr.Web CureIt menu on top, click file and choose save report list
  • Save the report to your desktop. The report will be called DrWeb.csv
  • Close Dr.Web Cureit.
  • Reboot your computer!! Because it could be possible that files in use will be moved/deleted during reboot.
  • After reboot, post the contents of the log from Dr.Web you saved previously in your next reply.
jedi
jedi

My help is free, but if you wish to help keep these forums running please consider a donation, see This Topic for details.

#6 fdsa

fdsa

    Member

  • Full Member
  • Pip
  • 13 posts

Posted 22 June 2007 - 07:05 AM

Hi,

Sorry about the wait, I am back from holiday now.

Here is a fresh DrWeb .csv file followed by a fresh HJT log from after DrWeb scan.


DrWeb

Winner of Miss Norway.exe;C:\Documents and Settings\lucy denny\My Documents\Downloads;Trojan.DownLoader.2667;Incurable.Moved.;
qdiagd.ocx;C:\Program Files\DellSupport;Probably DLOADER.Trojan;Incurable.Moved.;
A0025448.exe;C:\System Volume Information\_restore{202550A8-7A33-4BCA-9586-051D24DDBF8F}\RP205;Trojan.Click.1487;Deleted.;
A0025449.exe;C:\System Volume Information\_restore{202550A8-7A33-4BCA-9586-051D24DDBF8F}\RP205;Trojan.Click.1487;Deleted.;
gtdownlr_134.ocx;C:\WINDOWS\system32;Adware.Gdown;Incurable.Moved.;


HJT


Logfile of HijackThis v1.99.1
Scan saved at 1:00:59 PM, on 6/22/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\System32\WLTRYSVC.EXE
C:\WINDOWS\System32\bcmwltry.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\PROGRA~1\Grisoft\AVG7\avgamsvr.exe
C:\PROGRA~1\Grisoft\AVG7\avgupsvc.exe
C:\PROGRA~1\Grisoft\AVG7\avgemc.exe
C:\Program Files\ewido anti-malware\ewidoctrl.exe
C:\Program Files\Dell\NICCONFIGSVC\NICCONFIGSVC.exe
C:\WINDOWS\system32\hkcmd.exe
C:\WINDOWS\system32\igfxpers.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\WINDOWS\system32\WLTRAY.exe
C:\WINDOWS\stsystra.exe
C:\Program Files\Dell\QuickSet\quickset.exe
C:\Program Files\CyberLink\PowerDVD\DVDLauncher.exe
C:\WINDOWS\system32\dla\tfswctrl.exe
C:\Program Files\Musicmatch\Musicmatch Jukebox\mm_tray.exe
C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
C:\WINDOWS\system32\igfxsrvc.exe
C:\Program Files\Corel\Corel Photo Album 6\MediaDetect.exe
C:\PROGRA~1\MUSICM~1\MUSICM~3\MMDiag.exe
C:\Program Files\Thomson\SpeedTouch USB\Dragdiag.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Google\Google Desktop Search\GoogleDesktopIndex.exe
C:\Program Files\HP\hpcoretech\hpcmpmgr.exe
C:\Program Files\Google\Google Desktop Search\GoogleDesktopDisplay.exe
C:\Program Files\Hewlett-Packard\HP Software Update\HPWuSchd2.exe
C:\WINDOWS\system32\hphmon05.exe
C:\Program Files\Java\jre1.6.0_01\bin\jusched.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\MUSICMATCH\Musicmatch Jukebox\mim.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\Program Files\HighCriteria\TotalRecorder\TotRecSched.exe
C:\PROGRA~1\Grisoft\AVG7\avgcc.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
C:\Program Files\NetWaiting\netWaiting.exe
C:\WINDOWS\system32\wuauclt.exe
C:\PROGRA~1\Grisoft\AVG7\avgw.exe
C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe
C:\Program Files\MSN Messenger\MsnMsgr.Exe
C:\PROGRA~1\MI3AA1~1\wcescomm.exe
C:\Program Files\DellSupport\DSAgnt.exe
C:\Program Files\Digital Line Detect\DLG.exe
C:\PROGRA~1\MI3AA1~1\rapimgr.exe
C:\Documents and Settings\lucy denny\Desktop\Charlie's Folder\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.yahoo.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.dell.com
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.dell.com
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll
O2 - BHO: DriveLetterAccess - {5CA3D70E-1895-11CF-8E15-001234567890} - C:\WINDOWS\system32\dla\tfswshx.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar4.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar4.dll
O4 - HKLM\..\Run: [igfxtray] C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [igfxhkcmd] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [igfxpers] C:\WINDOWS\system32\igfxpers.exe
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [Broadcom Wireless Manager UI] C:\WINDOWS\system32\WLTRAY.exe
O4 - HKLM\..\Run: [SigmatelSysTrayApp] stsystra.exe
O4 - HKLM\..\Run: [Dell QuickSet] C:\Program Files\Dell\QuickSet\quickset.exe
O4 - HKLM\..\Run: [DVDLauncher] "C:\Program Files\CyberLink\PowerDVD\DVDLauncher.exe"
O4 - HKLM\..\Run: [dla] C:\WINDOWS\system32\dla\tfswctrl.exe
O4 - HKLM\..\Run: [ISUSPM Startup] "C:\Program Files\Common Files\InstallShield\UpdateService\isuspm.exe" -startup
O4 - HKLM\..\Run: [ISUSScheduler] "C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe" -start
O4 - HKLM\..\Run: [MimBoot] C:\PROGRA~1\MUSICM~1\MUSICM~3\mimboot.exe
O4 - HKLM\..\Run: [MMTray] "C:\Program Files\Musicmatch\Musicmatch Jukebox\mm_tray.exe"
O4 - HKLM\..\Run: [Google Desktop Search] "C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe" /startup
O4 - HKLM\..\Run: [Corel Photo Downloader] C:\Program Files\Corel\Corel Photo Album 6\MediaDetect.exe
O4 - HKLM\..\Run: [SpeedTouch USB Diagnostics] "C:\Program Files\Thomson\SpeedTouch USB\Dragdiag.exe" /icon
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [HPHUPD05] C:\Program Files\Hewlett-Packard\{D946675D-1D6C-4dc8-9E0D-B4B8EAA30EAA}\hphupd05.exe
O4 - HKLM\..\Run: [HP Component Manager] "C:\Program Files\HP\hpcoretech\hpcmpmgr.exe"
O4 - HKLM\..\Run: [HP Software Update] "C:\Program Files\Hewlett-Packard\HP Software Update\HPWuSchd2.exe"
O4 - HKLM\..\Run: [HPHmon05] C:\WINDOWS\system32\hphmon05.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_01\bin\jusched.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [MSKDetectorExe] C:\Program Files\McAfee\SpamKiller\MSKDetct.exe /uninstall
O4 - HKLM\..\Run: [TotalRecorderScheduler] "C:\Program Files\HighCriteria\TotalRecorder\TotRecSched.exe"
O4 - HKLM\..\Run: [AVG7_CC] C:\PROGRA~1\Grisoft\AVG7\avgcc.exe /STARTUP
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKCU\..\Run: [ModemOnHold] C:\Program Files\NetWaiting\netWaiting.exe
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Common Files\Ahead\lib\NMBgMonitor.exe"
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [H/PC Connection Agent] "C:\PROGRA~1\MI3AA1~1\wcescomm.exe"
O4 - HKCU\..\Run: [DellSupport] "C:\Program Files\DellSupport\DSAgnt.exe" /startup
O4 - Global Startup: Digital Line Detect.lnk = ?
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll
O9 - Extra button: Create Mobile Favorite - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MI3AA1~1\INetRepl.dll
O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MI3AA1~1\INetRepl.dll
O9 - Extra 'Tools' menuitem: Create Mobile Favorite... - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MI3AA1~1\INetRepl.dll
O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\system32\Shdocvw.dll
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft....k/?linkid=39204
O16 - DPF: {20A60F0D-9AFA-4515-A0FD-83BD84642501} (Checkers Class) - http://messenger.zon...kr.cab56986.cab
O16 - DPF: {25365FF3-2746-4230-9DA7-163CCA318309} (Automatic Driver Installation Control) - http://inst.c-wss.co...ll/gtdownlr.cab
O16 - DPF: {4ED9DDF0-7479-4BBE-9335-5A1EDB1D8A21} - http://download.mcaf...01/mcinsctl.cab
O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zon...1/GAME_UNO1.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zon...nt.cab56907.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{6C08C4DE-5E56-4204-8D95-DFA975C65946}: NameServer = 158.152.1.58 158.152.1.43
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O20 - AppInit_DLLs: C:\PROGRA~1\Google\GOOGLE~1\GOEC62~1.DLL
O20 - Winlogon Notify: igfxcui - C:\WINDOWS\SYSTEM32\igfxdev.dll
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\
O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgamsvr.exe
O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgupsvc.exe
O23 - Service: AVG E-mail Scanner (AVGEMS) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgemc.exe
O23 - Service: DSBrokerService - Unknown owner - C:\Program Files\DellSupport\brkrsvc.exe
O23 - Service: ewido security suite control - ewido networks - C:\Program Files\ewido anti-malware\ewidoctrl.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: NICCONFIGSVC - Dell Inc. - C:\Program Files\Dell\NICCONFIGSVC\NICCONFIGSVC.exe
O23 - Service: Dell Wireless WLAN Tray Service (wltrysvc) - Unknown owner - C:\WINDOWS\System32\WLTRYSVC.EXE

#7 jedi

jedi

    aequam memento rebus in arduis servare mentem

  • Emeritus
  • PipPipPipPipPip
  • 15,830 posts

Posted 22 June 2007 - 08:23 AM

Hi again, welcome back.

1. Download this file - ComboFix
2. Double click combofix.exe & follow the prompts.
3. When finished, it will produce a log for you. Post that log in your next reply

Note:
Do not mouseclick combofix's window whilst it's running. That may cause it to stall

Please also post a fresh HiJackThis log.

jedi
jedi

My help is free, but if you wish to help keep these forums running please consider a donation, see This Topic for details.

#8 fdsa

fdsa

    Member

  • Full Member
  • Pip
  • 13 posts

Posted 23 June 2007 - 08:38 AM

ComboFix 07-06-18.2 - C:\Documents and Settings\lucy denny\Desktop\ComboFix.exe
"lucy denny" - 2007-06-23 3:24:55 - Service Pack 2 NTFS


((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))


C:\WINDOWS\system32\jkuollqfum.dat
C:\WINDOWS\system32\jkuollqfum.exe
C:\WINDOWS\system32\jkuollqfum_nav.dat
C:\WINDOWS\system32\jkuollqfum_navps.dat
C:\WINDOWS\system32\msxml3a.dll
C:\WINDOWS\system32\nvs2.inf


((((((((((((((((((((((((( Files Created from 2007-05-23 to 2007-06-23 )))))))))))))))))))))))))))))))


2007-06-23 03:24 49,152 --a------ C:\WINDOWS\nircmd.exe
2007-06-19 21:43 <DIR> d-------- C:\DOCUME~1\LUCYDE~1\DoctorWeb
2007-06-18 17:43 765,952 --a------ C:\WINDOWS\system32\xvidcore.dll
2007-06-18 17:43 180,224 --a------ C:\WINDOWS\system32\xvidvfw.dll
2007-06-18 17:43 <DIR> d-------- C:\Program Files\Xvid
2007-06-18 17:40 2,560 --------- C:\WINDOWS\system32\drivers\cdralw2k.sys
2007-06-18 17:40 2,432 --------- C:\WINDOWS\system32\drivers\cdr4_xp.sys
2007-06-18 17:39 129,784 --------- C:\WINDOWS\system32\pxafs.dll
2007-06-18 17:39 <DIR> d-------- C:\Program Files\DivX
2007-06-15 20:18 10,872 --a------ C:\WINDOWS\system32\drivers\AvgAsCln.sys
2007-06-15 11:44 395,776 --a------ C:\WINDOWS\system32\libmplayer.dll
2007-06-15 11:44 262,144 --a------ C:\WINDOWS\system32\TomsMoComp_ff.dll
2007-06-15 11:44 2,255,360 --a------ C:\WINDOWS\system32\libavcodec.dll
2007-06-15 11:44 112,640 --a------ C:\WINDOWS\system32\libmpeg2_ff.dll
2007-06-15 11:44 <DIR> d-------- C:\Program Files\Cucusoft
2007-06-15 11:44 <DIR> d-------- C:\ConverterOutput
2007-06-14 13:55 <DIR> d-------- C:\Program Files\ffdshow
2007-06-14 12:51 <DIR> d-------- C:\DOCUME~1\LUCYDE~1\APPLIC~1\Media Player Classic
2007-06-12 00:21 <DIR> d-------- C:\DOCUME~1\LUCYDE~1\APPLIC~1\uTorrent
2007-05-31 07:45 524,288 --a------ C:\WINDOWS\system32\DivXsm.exe
2007-05-31 07:44 823,296 --a------ C:\WINDOWS\system32\divx_xx0c.dll
2007-05-31 07:44 823,296 --a------ C:\WINDOWS\system32\divx_xx07.dll
2007-05-31 07:44 802,816 --a------ C:\WINDOWS\system32\divx_xx11.dll
2007-05-31 07:44 740,442 --a------ C:\WINDOWS\system32\DivX.dll


(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))

2007-06-15 19:15:01 -------- d-----w C:\Program Files\ewido anti-malware
2007-06-11 23:18:55 -------- d-----w C:\Program Files\Azureus
2007-05-17 00:41:51 -------- d-----w C:\DOCUME~1\LUCYDE~1\APPLIC~1\Skype
2007-05-16 15:12:02 683,520 ----a-w C:\WINDOWS\system32\inetcomm.dll
2007-05-11 20:37:55 -------- d-----w C:\Program Files\HighCriteria
2007-04-25 14:21:15 144,896 ----a-w C:\WINDOWS\system32\schannel.dll
2007-04-23 00:15:29 3,596,288 ----a-w C:\WINDOWS\system32\qt-dx331.dll
2007-04-23 00:15:25 36,624 ------w C:\WINDOWS\system32\drivers\pxhelp20.sys
2007-04-23 00:15:24 118,520 ------w C:\WINDOWS\system32\pxinsi64.exe
2007-04-23 00:15:24 116,472 ------w C:\WINDOWS\system32\pxcpyi64.exe
2007-04-23 00:15:18 200,704 ----a-w C:\WINDOWS\system32\ssldivx.dll
2007-04-23 00:15:18 1,044,480 ----a-w C:\WINDOWS\system32\libdivx.dll
2007-04-23 00:02:34 73,728 ----a-w C:\WINDOWS\system32\dpl100.dll
2007-04-23 00:02:34 196,608 ----a-w C:\WINDOWS\system32\dtu100.dll
2007-04-23 00:02:33 53,248 ----a-w C:\WINDOWS\system32\dpuGUI10.dll
2007-04-23 00:02:31 593,920 ----a-w C:\WINDOWS\system32\dpuGUI11.dll
2007-04-23 00:02:31 57,344 ----a-w C:\WINDOWS\system32\dpv11.dll
2007-04-23 00:02:31 344,064 ----a-w C:\WINDOWS\system32\dpus11.dll
2007-04-23 00:02:31 294,912 ----a-w C:\WINDOWS\system32\dpu11.dll
2007-04-23 00:02:31 294,912 ----a-w C:\WINDOWS\system32\dpu10.dll
2007-04-23 00:01:47 12,288 ----a-w C:\WINDOWS\system32\DivXWMPExtType.dll
2007-04-23 00:01:46 124,472 ----a-w C:\WINDOWS\system32\DivXCodecUpdateChecker.exe
2007-04-18 16:12:23 2,854,400 ----a-w C:\WINDOWS\system32\msi.dll
2007-04-16 21:47:36 33,624 ----a-w C:\WINDOWS\system32\wups.dll
2007-04-16 21:45:54 1,710,936 ----a-w C:\WINDOWS\system32\wuaueng.dll
2007-04-16 21:45:48 549,720 ----a-w C:\WINDOWS\system32\wuapi.dll
2007-04-16 21:45:42 325,976 ----a-w C:\WINDOWS\system32\wucltui.dll
2007-04-16 21:45:36 203,096 ----a-w C:\WINDOWS\system32\wuweb.dll
2007-04-16 21:45:28 92,504 ----a-w C:\WINDOWS\system32\cdm.dll
2007-04-16 21:45:20 53,080 ----a-w C:\WINDOWS\system32\wuauclt.exe
2007-04-16 21:45:20 43,352 ----a-w C:\WINDOWS\system32\wups2.dll
2007-03-30 12:17:40 1,338 ----a-w C:\WINDOWS\mozver.dat
2006-10-09 09:05:52 56 --sh--r C:\WINDOWS\system32\F0E7935E7F.sys
2006-10-09 09:05:52 2,828 --sha-w C:\WINDOWS\system32\KGyGaAvL.sys


((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))


*Note* empty entries & legit default entries are not shown

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects]
{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}=C:\Program Files\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll [2003-11-03 21:17]
{5CA3D70E-1895-11CF-8E15-001234567890}=C:\WINDOWS\system32\dla\tfswshx.dll [2004-12-06 08:05]
{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}=C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll [2007-03-14 03:43]
{AA58ED58-01DD-4d91-8333-CF10577473F7}=c:\program files\google\googletoolbar4.dll [2007-01-20 00:55]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SynTPEnh"="C:\Program Files\Synaptics\SynTP\SynTPEnh.exe" [2005-11-29 11:56]
"SigmatelSysTrayApp"="stsystra.exe" [2005-09-10 06:19 C:\WINDOWS\stsystra.exe]
"Dell QuickSet"="C:\Program Files\Dell\QuickSet\quickset.exe" [2005-12-15 17:44]
"DVDLauncher"="C:\Program Files\CyberLink\PowerDVD\DVDLauncher.exe" [2005-02-23 23:19]
"ISUSPM Startup"="C:\Program Files\Common Files\InstallShield\UpdateService\isuspm.exe" [2005-06-10 17:44]
"ISUSScheduler"="C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe" [2005-06-10 17:44]
"MimBoot"="C:\PROGRA~1\MUSICM~1\MUSICM~3\mimboot.exe" [2005-09-09 02:20]
"MMTray"="C:\Program Files\Musicmatch\Musicmatch Jukebox\mm_tray.exe" [2005-09-09 02:20]
"Google Desktop Search"="C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe" [2006-03-24 08:15]
"Corel Photo Downloader"="C:\Program Files\Corel\Corel Photo Album 6\MediaDetect.exe" [2005-08-31 18:06]
"SpeedTouch USB Diagnostics"="C:\Program Files\Thomson\SpeedTouch USB\Dragdiag.exe" [2004-01-26 11:38]
"HPHUPD05"="C:\Program Files\Hewlett-Packard\{D946675D-1D6C-4dc8-9E0D-B4B8EAA30EAA}\hphupd05.exe" [2003-11-12 23:12]
"HP Component Manager"="C:\Program Files\HP\hpcoretech\hpcmpmgr.exe" [2003-12-22 08:38]
"HP Software Update"="C:\Program Files\Hewlett-Packard\HP Software Update\HPWuSchd2.exe" [2003-12-05 15:41]
"SunJavaUpdateSched"="C:\Program Files\Java\jre1.6.0_01\bin\jusched.exe" [2007-03-14 03:43]
"QuickTime Task"="C:\Program Files\QuickTime\qttask.exe" [2006-09-24 03:24]
"TkBellExe"="C:\Program Files\Common Files\Real\Update_OB\realsched.exe" [2007-03-30 13:12]
"MSKDetectorExe"="C:\Program Files\McAfee\SpamKiller\MSKDetct.exe" [2005-08-12 16:16]
"TotalRecorderScheduler"="C:\Program Files\HighCriteria\TotalRecorder\TotRecSched.exe" [2005-05-18 22:51]
"AVG7_CC"="C:\PROGRA~1\Grisoft\AVG7\avgcc.exe" [2007-05-11 21:47]
"!AVG Anti-Spyware"="C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" [2007-06-11 10:25]

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ModemOnHold"="C:\Program Files\NetWaiting\netWaiting.exe" [2003-09-10 09:24]
"BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"="C:\Program Files\Common Files\Ahead\lib\NMBgMonitor.exe" [2006-06-01 13:32]
"swg"="C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe" [2007-02-07 21:26]
"MsnMsgr"="C:\Program Files\MSN Messenger\MsnMsgr.exe" [2007-01-19 12:54]
"H/PC Connection Agent"="C:\PROGRA~1\MI3AA1~1\wcescomm.exe" [2005-11-15 19:44]
"DellSupport"="C:\Program Files\DellSupport\DSAgnt.exe" [2007-03-15 11:09]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{57B86673-276A-48B2-BAE7-C6DBB3020EB8}"="C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\shellexecutehook.dll" [2007-05-30 13:29]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\windows]
"appinit_dlls"=C:\PROGRA~1\Google\GOOGLE~1\GOEC62~1.DLL

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\safeboot\minimal\AVG Anti-Spyware Driver]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\safeboot\minimal\AVG Anti-Spyware Guard]


Contents of the 'Scheduled Tasks' folder
2007-06-18 12:52:06 C:\WINDOWS\tasks\AppleSoftwareUpdate.job

**************************************************************************

catchme 0.3.721 W2K/XP/Vista - userland rootkit detector by Gmer, http://www.gmer.net
Rootkit scan 2007-06-23 03:29:04
Windows 5.1.2600 Service Pack 2 NTFS

scanning hidden processes ...

scanning hidden autostart entries ...

scanning hidden files ...

scan completed successfully
hidden files: 0

**************************************************************************

Completion time: 2007-06-23 3:30:18
C:\ComboFix-quarantined-files.txt ... 2007-06-23 03:30

--- E O F ---






Logfile of HijackThis v1.99.1
Scan saved at 1:54:08 PM, on 6/23/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\WLTRYSVC.EXE
C:\WINDOWS\System32\bcmwltry.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\PROGRA~1\Grisoft\AVG7\avgamsvr.exe
C:\PROGRA~1\Grisoft\AVG7\avgupsvc.exe
C:\PROGRA~1\Grisoft\AVG7\avgemc.exe
C:\Program Files\ewido anti-malware\ewidoctrl.exe
C:\Program Files\Dell\NICCONFIGSVC\NICCONFIGSVC.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\WINDOWS\stsystra.exe
C:\Program Files\Dell\QuickSet\quickset.exe
C:\Program Files\CyberLink\PowerDVD\DVDLauncher.exe
C:\Program Files\Musicmatch\Musicmatch Jukebox\mm_tray.exe
C:\PROGRA~1\MUSICM~1\MUSICM~3\MMDiag.exe
C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
C:\Program Files\Corel\Corel Photo Album 6\MediaDetect.exe
C:\Program Files\MUSICMATCH\Musicmatch Jukebox\mim.exe
C:\Program Files\Thomson\SpeedTouch USB\Dragdiag.exe
C:\Program Files\Google\Google Desktop Search\GoogleDesktopIndex.exe
C:\Program Files\HP\hpcoretech\hpcmpmgr.exe
C:\Program Files\Google\Google Desktop Search\GoogleDesktopDisplay.exe
C:\Program Files\Hewlett-Packard\HP Software Update\HPWuSchd2.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Java\jre1.6.0_01\bin\jusched.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\Program Files\HighCriteria\TotalRecorder\TotRecSched.exe
C:\PROGRA~1\Grisoft\AVG7\avgcc.exe
C:\Program Files\HP\hpcoretech\comp\hptskmgr.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
C:\Program Files\NetWaiting\netWaiting.exe
C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\MSN Messenger\MsnMsgr.Exe
C:\PROGRA~1\MI3AA1~1\wcescomm.exe
C:\Program Files\DellSupport\DSAgnt.exe
C:\PROGRA~1\MI3AA1~1\rapimgr.exe
C:\Program Files\Digital Line Detect\DLG.exe
C:\Documents and Settings\lucy denny\Desktop\Charlie's Folder\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.yahoo.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.dell.com
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll
O2 - BHO: DriveLetterAccess - {5CA3D70E-1895-11CF-8E15-001234567890} - C:\WINDOWS\system32\dla\tfswshx.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar4.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar4.dll
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [SigmatelSysTrayApp] stsystra.exe
O4 - HKLM\..\Run: [Dell QuickSet] C:\Program Files\Dell\QuickSet\quickset.exe
O4 - HKLM\..\Run: [DVDLauncher] "C:\Program Files\CyberLink\PowerDVD\DVDLauncher.exe"
O4 - HKLM\..\Run: [ISUSPM Startup] "C:\Program Files\Common Files\InstallShield\UpdateService\isuspm.exe" -startup
O4 - HKLM\..\Run: [ISUSScheduler] "C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe" -start
O4 - HKLM\..\Run: [MimBoot] C:\PROGRA~1\MUSICM~1\MUSICM~3\mimboot.exe
O4 - HKLM\..\Run: [MMTray] "C:\Program Files\Musicmatch\Musicmatch Jukebox\mm_tray.exe"
O4 - HKLM\..\Run: [Google Desktop Search] "C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe" /startup
O4 - HKLM\..\Run: [Corel Photo Downloader] C:\Program Files\Corel\Corel Photo Album 6\MediaDetect.exe
O4 - HKLM\..\Run: [SpeedTouch USB Diagnostics] "C:\Program Files\Thomson\SpeedTouch USB\Dragdiag.exe" /icon
O4 - HKLM\..\Run: [HPHUPD05] C:\Program Files\Hewlett-Packard\{D946675D-1D6C-4dc8-9E0D-B4B8EAA30EAA}\hphupd05.exe
O4 - HKLM\..\Run: [HP Component Manager] "C:\Program Files\HP\hpcoretech\hpcmpmgr.exe"
O4 - HKLM\..\Run: [HP Software Update] "C:\Program Files\Hewlett-Packard\HP Software Update\HPWuSchd2.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_01\bin\jusched.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [MSKDetectorExe] C:\Program Files\McAfee\SpamKiller\MSKDetct.exe /uninstall
O4 - HKLM\..\Run: [TotalRecorderScheduler] "C:\Program Files\HighCriteria\TotalRecorder\TotRecSched.exe"
O4 - HKLM\..\Run: [AVG7_CC] C:\PROGRA~1\Grisoft\AVG7\avgcc.exe /STARTUP
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKCU\..\Run: [ModemOnHold] C:\Program Files\NetWaiting\netWaiting.exe
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Common Files\Ahead\lib\NMBgMonitor.exe"
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [H/PC Connection Agent] "C:\PROGRA~1\MI3AA1~1\wcescomm.exe"
O4 - HKCU\..\Run: [DellSupport] "C:\Program Files\DellSupport\DSAgnt.exe" /startup
O4 - Global Startup: Digital Line Detect.lnk = ?
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll
O9 - Extra button: Create Mobile Favorite - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MI3AA1~1\INetRepl.dll
O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MI3AA1~1\INetRepl.dll
O9 - Extra 'Tools' menuitem: Create Mobile Favorite... - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MI3AA1~1\INetRepl.dll
O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\system32\Shdocvw.dll
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft....k/?linkid=39204
O16 - DPF: {20A60F0D-9AFA-4515-A0FD-83BD84642501} (Checkers Class) - http://messenger.zon...kr.cab56986.cab
O16 - DPF: {25365FF3-2746-4230-9DA7-163CCA318309} (Automatic Driver Installation Control) - http://inst.c-wss.co...ll/gtdownlr.cab
O16 - DPF: {4ED9DDF0-7479-4BBE-9335-5A1EDB1D8A21} - http://download.mcaf...01/mcinsctl.cab
O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zon...1/GAME_UNO1.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zon...nt.cab56907.cab
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O20 - AppInit_DLLs: C:\PROGRA~1\Google\GOOGLE~1\GOEC62~1.DLL
O20 - Winlogon Notify: igfxcui - C:\WINDOWS\SYSTEM32\igfxdev.dll
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\
O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgamsvr.exe
O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgupsvc.exe
O23 - Service: AVG E-mail Scanner (AVGEMS) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgemc.exe
O23 - Service: DSBrokerService - Unknown owner - C:\Program Files\DellSupport\brkrsvc.exe
O23 - Service: ewido security suite control - ewido networks - C:\Program Files\ewido anti-malware\ewidoctrl.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: NICCONFIGSVC - Dell Inc. - C:\Program Files\Dell\NICCONFIGSVC\NICCONFIGSVC.exe
O23 - Service: Dell Wireless WLAN Tray Service (wltrysvc) - Unknown owner - C:\WINDOWS\System32\WLTRYSVC.EXE

#9 jedi

jedi

    aequam memento rebus in arduis servare mentem

  • Emeritus
  • PipPipPipPipPip
  • 15,830 posts

Posted 24 June 2007 - 08:31 AM

Hi again,

Ok, that's looking a lot better. There's one file I want to check out though, please go here:
http://www.virustota.../en/indexf.html
and upload and scan this file:
C:\WINDOWS\system32\F0E7935E7F.sys
and post the results here.

jedi
jedi

My help is free, but if you wish to help keep these forums running please consider a donation, see This Topic for details.

#10 fdsa

fdsa

    Member

  • Full Member
  • Pip
  • 13 posts

Posted 24 June 2007 - 10:11 AM

Complete scanning result of "F0E7935E7F.sys", received in VirusTotal at 06.24.2007, 16:28:37 (CET).

Antivirus Version Update Result
AhnLab-V3 2007.6.21.1 06.22.2007 no virus found
AntiVir 7.4.0.34 06.24.2007 no virus found
Authentium 4.93.8 06.22.2007 no virus found
Avast 4.7.997.0 06.23.2007 no virus found
AVG 7.5.0.476 06.24.2007 no virus found
BitDefender 7.2 06.24.2007 no virus found
CAT-QuickHeal 9.00 06.23.2007 no virus found
ClamAV devel-20070416 06.24.2007 no virus found
DrWeb 4.33 06.24.2007 no virus found
eSafe 7.0.15.0 06.24.2007 no virus found
eTrust-Vet 30.8.3736 06.22.2007 no virus found
Ewido 4.0 06.24.2007 no virus found
FileAdvisor 1 06.24.2007 no virus found
Fortinet 2.91.0.0 06.24.2007 no virus found
F-Prot 4.3.2.48 06.22.2007 no virus found
F-Secure 6.70.13030.0 06.22.2007 no virus found
Ikarus T3.1.1.8 06.24.2007 no virus found
Kaspersky 4.0.2.24 06.24.2007 no virus found
McAfee 5059 06.22.2007 no virus found
Microsoft 1.2701 06.23.2007 no virus found
Norman 5.80.02 06.22.2007 no virus found
Panda 9.0.0.4 06.24.2007 no virus found
Sophos 4.19.0 06.22.2007 no virus found
Sunbelt 2.2.907.0 06.21.2007 no virus found
Symantec 10 06.24.2007 no virus found
TheHacker 6.1.6.137 06.22.2007 no virus found
VBA32 3.12.0.2 06.23.2007 no virus found
VirusBuster 4.3.23:9 06.23.2007 no virus found
Webwasher-Gateway 6.0.1 06.22.2007 no virus found

Aditional Information
File size: 56 bytes
MD5: 05e7e8b817d451e85edc83f5e560ce79
SHA1: c515d73b28d557c97e0d46c68fc5ad218dff8e15

#11 jedi

jedi

    aequam memento rebus in arduis servare mentem

  • Emeritus
  • PipPipPipPipPip
  • 15,830 posts

Posted 24 June 2007 - 11:43 AM

Hi again,

That looks clean. To check for leftovers please do the following:
Run a BitDefender Online scan Here and post the results.

jedi
jedi

My help is free, but if you wish to help keep these forums running please consider a donation, see This Topic for details.

#12 fdsa

fdsa

    Member

  • Full Member
  • Pip
  • 13 posts

Posted 24 June 2007 - 03:49 PM

BitDefender Online Scanner



Scan report generated at: Sun, Jun 24, 2007 - 21:40:51





Scan path: C:\;D:\;E:\;







Statistics

Time
02:09:12

Files
211025

Folders
6154

Boot Sectors
6

Archives
3220

Packed Files
8743




Results

Identified Viruses
3

Infected Files
7

Suspect Files
0

Warnings
0

Disinfected
0

Deleted Files
7




Engines Info

Virus Definitions
571190

Engine build
AVCORE v1.0 (build 2410) (i386) (Jun 12 2007 21:08:27)

Scan plugins
14

Archive plugins
38

Unpack plugins
6

E-mail plugins
6

System plugins
1




Scan Settings

First Action
Disinfect

Second Action
Delete

Heuristics
Yes

Enable Warnings
Yes

Scanned Extensions
*;

Exclude Extensions


Scan Emails
Yes

Scan Archives
Yes

Scan Packed
Yes

Scan Files
Yes

Scan Boot
Yes




Scanned File
Status

C:\Documents and Settings\lucy denny\Application Data\Sun\Java\Deployment\cache\6.0\6\20abe06-20474dba=>NewSecurityClassLoader.class
Infected with: Java.Trojan.Exploit.Byteverify.G

C:\Documents and Settings\lucy denny\Application Data\Sun\Java\Deployment\cache\6.0\6\20abe06-20474dba=>NewSecurityClassLoader.class
Disinfection failed

C:\Documents and Settings\lucy denny\Application Data\Sun\Java\Deployment\cache\6.0\6\20abe06-20474dba=>NewSecurityClassLoader.class
Deleted

C:\Documents and Settings\lucy denny\Application Data\Sun\Java\Deployment\cache\6.0\6\20abe06-20474dba
Updated

C:\Documents and Settings\lucy denny\Application Data\Sun\Java\Deployment\cache\6.0\6\20abe06-20474dba=>NewURLClassLoader.class
Infected with: Java.Trojan.Exploit.Bytverify

C:\Documents and Settings\lucy denny\Application Data\Sun\Java\Deployment\cache\6.0\6\20abe06-20474dba=>NewURLClassLoader.class
Disinfection failed

C:\Documents and Settings\lucy denny\Application Data\Sun\Java\Deployment\cache\6.0\6\20abe06-20474dba=>NewURLClassLoader.class
Deleted

C:\Documents and Settings\lucy denny\Application Data\Sun\Java\Deployment\cache\6.0\6\20abe06-20474dba
Updated

C:\Program Files\ewido anti-malware\Quarantine\fil0CEE1429.dat=>(gzip)=>REMOVED_NULLS
Detected with: Application.JS.ForcePopup.D

C:\Program Files\ewido anti-malware\Quarantine\fil0CEE1429.dat=>(gzip)=>REMOVED_NULLS
Disinfection failed

C:\Program Files\ewido anti-malware\Quarantine\fil0CEE1429.dat=>(gzip)=>REMOVED_NULLS
Deleted

C:\Program Files\ewido anti-malware\Quarantine\fil0CEE1429.dat=>(gzip)
Update failed

C:\Program Files\ewido anti-malware\Quarantine\fil18275390.dat=>(gzip)=>REMOVED_NULLS
Detected with: Application.JS.ForcePopup.D

C:\Program Files\ewido anti-malware\Quarantine\fil18275390.dat=>(gzip)=>REMOVED_NULLS
Disinfection failed

C:\Program Files\ewido anti-malware\Quarantine\fil18275390.dat=>(gzip)=>REMOVED_NULLS
Deleted

C:\Program Files\ewido anti-malware\Quarantine\fil18275390.dat=>(gzip)
Update failed

C:\Program Files\ewido anti-malware\Quarantine\filA375B0A1.dat=>(gzip)=>REMOVED_NULLS
Detected with: Application.JS.ForcePopup.D

C:\Program Files\ewido anti-malware\Quarantine\filA375B0A1.dat=>(gzip)=>REMOVED_NULLS
Disinfection failed

C:\Program Files\ewido anti-malware\Quarantine\filA375B0A1.dat=>(gzip)=>REMOVED_NULLS
Deleted

C:\Program Files\ewido anti-malware\Quarantine\filA375B0A1.dat=>(gzip)
Update failed

C:\Program Files\ewido anti-malware\Quarantine\filEDD76D01.dat=>(gzip)=>REMOVED_NULLS
Detected with: Application.JS.ForcePopup.D

C:\Program Files\ewido anti-malware\Quarantine\filEDD76D01.dat=>(gzip)=>REMOVED_NULLS
Disinfection failed

C:\Program Files\ewido anti-malware\Quarantine\filEDD76D01.dat=>(gzip)=>REMOVED_NULLS
Deleted

C:\Program Files\ewido anti-malware\Quarantine\filEDD76D01.dat=>(gzip)
Update failed

C:\Program Files\ewido anti-malware\Quarantine\filFA41F359.dat=>(gzip)=>REMOVED_NULLS
Detected with: Application.JS.ForcePopup.D

C:\Program Files\ewido anti-malware\Quarantine\filFA41F359.dat=>(gzip)=>REMOVED_NULLS
Disinfection failed

C:\Program Files\ewido anti-malware\Quarantine\filFA41F359.dat=>(gzip)=>REMOVED_NULLS
Deleted

C:\Program Files\ewido anti-malware\Quarantine\filFA41F359.dat=>(gzip)
Update failed

#13 jedi

jedi

    aequam memento rebus in arduis servare mentem

  • Emeritus
  • PipPipPipPipPip
  • 15,830 posts

Posted 24 June 2007 - 04:07 PM

Hi again,

Ok, that looks good, please post a fresh HiJackThis log.

jedi
jedi

My help is free, but if you wish to help keep these forums running please consider a donation, see This Topic for details.

#14 fdsa

fdsa

    Member

  • Full Member
  • Pip
  • 13 posts

Posted 24 June 2007 - 04:13 PM

BitDefender Online Scanner



Scan report generated at: Sun, Jun 24, 2007 - 21:40:51





Scan path: C:\;D:\;E:\;







Statistics

Time
02:09:12

Files
211025

Folders
6154

Boot Sectors
6

Archives
3220

Packed Files
8743




Results

Identified Viruses
3

Infected Files
7

Suspect Files
0

Warnings
0

Disinfected
0

Deleted Files
7




Engines Info

Virus Definitions
571190

Engine build
AVCORE v1.0 (build 2410) (i386) (Jun 12 2007 21:08:27)

Scan plugins
14

Archive plugins
38

Unpack plugins
6

E-mail plugins
6

System plugins
1




Scan Settings

First Action
Disinfect

Second Action
Delete

Heuristics
Yes

Enable Warnings
Yes

Scanned Extensions
*;

Exclude Extensions


Scan Emails
Yes

Scan Archives
Yes

Scan Packed
Yes

Scan Files
Yes

Scan Boot
Yes




Scanned File
Status

C:\Documents and Settings\lucy denny\Application Data\Sun\Java\Deployment\cache\6.0\6\20abe06-20474dba=>NewSecurityClassLoader.class
Infected with: Java.Trojan.Exploit.Byteverify.G

C:\Documents and Settings\lucy denny\Application Data\Sun\Java\Deployment\cache\6.0\6\20abe06-20474dba=>NewSecurityClassLoader.class
Disinfection failed

C:\Documents and Settings\lucy denny\Application Data\Sun\Java\Deployment\cache\6.0\6\20abe06-20474dba=>NewSecurityClassLoader.class
Deleted

C:\Documents and Settings\lucy denny\Application Data\Sun\Java\Deployment\cache\6.0\6\20abe06-20474dba
Updated

C:\Documents and Settings\lucy denny\Application Data\Sun\Java\Deployment\cache\6.0\6\20abe06-20474dba=>NewURLClassLoader.class
Infected with: Java.Trojan.Exploit.Bytverify

C:\Documents and Settings\lucy denny\Application Data\Sun\Java\Deployment\cache\6.0\6\20abe06-20474dba=>NewURLClassLoader.class
Disinfection failed

C:\Documents and Settings\lucy denny\Application Data\Sun\Java\Deployment\cache\6.0\6\20abe06-20474dba=>NewURLClassLoader.class
Deleted

C:\Documents and Settings\lucy denny\Application Data\Sun\Java\Deployment\cache\6.0\6\20abe06-20474dba
Updated

C:\Program Files\ewido anti-malware\Quarantine\fil0CEE1429.dat=>(gzip)=>REMOVED_NULLS
Detected with: Application.JS.ForcePopup.D

C:\Program Files\ewido anti-malware\Quarantine\fil0CEE1429.dat=>(gzip)=>REMOVED_NULLS
Disinfection failed

C:\Program Files\ewido anti-malware\Quarantine\fil0CEE1429.dat=>(gzip)=>REMOVED_NULLS
Deleted

C:\Program Files\ewido anti-malware\Quarantine\fil0CEE1429.dat=>(gzip)
Update failed

C:\Program Files\ewido anti-malware\Quarantine\fil18275390.dat=>(gzip)=>REMOVED_NULLS
Detected with: Application.JS.ForcePopup.D

C:\Program Files\ewido anti-malware\Quarantine\fil18275390.dat=>(gzip)=>REMOVED_NULLS
Disinfection failed

C:\Program Files\ewido anti-malware\Quarantine\fil18275390.dat=>(gzip)=>REMOVED_NULLS
Deleted

C:\Program Files\ewido anti-malware\Quarantine\fil18275390.dat=>(gzip)
Update failed

C:\Program Files\ewido anti-malware\Quarantine\filA375B0A1.dat=>(gzip)=>REMOVED_NULLS
Detected with: Application.JS.ForcePopup.D

C:\Program Files\ewido anti-malware\Quarantine\filA375B0A1.dat=>(gzip)=>REMOVED_NULLS
Disinfection failed

C:\Program Files\ewido anti-malware\Quarantine\filA375B0A1.dat=>(gzip)=>REMOVED_NULLS
Deleted

C:\Program Files\ewido anti-malware\Quarantine\filA375B0A1.dat=>(gzip)
Update failed

C:\Program Files\ewido anti-malware\Quarantine\filEDD76D01.dat=>(gzip)=>REMOVED_NULLS
Detected with: Application.JS.ForcePopup.D

C:\Program Files\ewido anti-malware\Quarantine\filEDD76D01.dat=>(gzip)=>REMOVED_NULLS
Disinfection failed

C:\Program Files\ewido anti-malware\Quarantine\filEDD76D01.dat=>(gzip)=>REMOVED_NULLS
Deleted

C:\Program Files\ewido anti-malware\Quarantine\filEDD76D01.dat=>(gzip)
Update failed

C:\Program Files\ewido anti-malware\Quarantine\filFA41F359.dat=>(gzip)=>REMOVED_NULLS
Detected with: Application.JS.ForcePopup.D

C:\Program Files\ewido anti-malware\Quarantine\filFA41F359.dat=>(gzip)=>REMOVED_NULLS
Disinfection failed

C:\Program Files\ewido anti-malware\Quarantine\filFA41F359.dat=>(gzip)=>REMOVED_NULLS
Deleted

C:\Program Files\ewido anti-malware\Quarantine\filFA41F359.dat=>(gzip)
Update failed

#15 jedi

jedi

    aequam memento rebus in arduis servare mentem

  • Emeritus
  • PipPipPipPipPip
  • 15,830 posts

Posted 25 June 2007 - 04:43 AM

Hi again,

Ok, that looks good, please post a fresh HiJackThis log.

jedi
jedi

My help is free, but if you wish to help keep these forums running please consider a donation, see This Topic for details.

#16 fdsa

fdsa

    Member

  • Full Member
  • Pip
  • 13 posts

Posted 25 June 2007 - 08:56 AM

Logfile of HijackThis v1.99.1
Scan saved at 2:55:11 PM, on 6/25/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\System32\WLTRYSVC.EXE
C:\WINDOWS\System32\bcmwltry.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\PROGRA~1\Grisoft\AVG7\avgamsvr.exe
C:\PROGRA~1\Grisoft\AVG7\avgupsvc.exe
C:\PROGRA~1\Grisoft\AVG7\avgemc.exe
C:\Program Files\ewido anti-malware\ewidoctrl.exe
C:\Program Files\Dell\NICCONFIGSVC\NICCONFIGSVC.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\WINDOWS\stsystra.exe
C:\Program Files\Dell\QuickSet\quickset.exe
C:\Program Files\CyberLink\PowerDVD\DVDLauncher.exe
C:\Program Files\Musicmatch\Musicmatch Jukebox\mm_tray.exe
C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
C:\PROGRA~1\MUSICM~1\MUSICM~3\MMDiag.exe
C:\Program Files\Corel\Corel Photo Album 6\MediaDetect.exe
C:\Program Files\Thomson\SpeedTouch USB\Dragdiag.exe
C:\Program Files\HP\hpcoretech\hpcmpmgr.exe
C:\Program Files\Hewlett-Packard\HP Software Update\HPWuSchd2.exe
C:\Program Files\Google\Google Desktop Search\GoogleDesktopIndex.exe
C:\Program Files\Java\jre1.6.0_01\bin\jusched.exe
C:\Program Files\QuickTime\qttask.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Google\Google Desktop Search\GoogleDesktopDisplay.exe
C:\Program Files\MUSICMATCH\Musicmatch Jukebox\mim.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\Program Files\HighCriteria\TotalRecorder\TotRecSched.exe
C:\PROGRA~1\Grisoft\AVG7\avgcc.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
C:\Program Files\NetWaiting\netWaiting.exe
C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe
C:\Program Files\MSN Messenger\MsnMsgr.Exe
C:\PROGRA~1\MI3AA1~1\wcescomm.exe
C:\Program Files\DellSupport\DSAgnt.exe
C:\PROGRA~1\MI3AA1~1\rapimgr.exe
C:\PROGRA~1\Yahoo!\MESSEN~1\YAHOOM~1.EXE
C:\Program Files\Digital Line Detect\DLG.exe
C:\Documents and Settings\lucy denny\Desktop\Charlie's Folder\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.yahoo.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.dell.com
O2 - BHO: (no name) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - (no file)
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll
O2 - BHO: DriveLetterAccess - {5CA3D70E-1895-11CF-8E15-001234567890} - C:\WINDOWS\system32\dla\tfswshx.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar4.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar4.dll
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [SigmatelSysTrayApp] stsystra.exe
O4 - HKLM\..\Run: [Dell QuickSet] C:\Program Files\Dell\QuickSet\quickset.exe
O4 - HKLM\..\Run: [DVDLauncher] "C:\Program Files\CyberLink\PowerDVD\DVDLauncher.exe"
O4 - HKLM\..\Run: [ISUSPM Startup] "C:\Program Files\Common Files\InstallShield\UpdateService\isuspm.exe" -startup
O4 - HKLM\..\Run: [ISUSScheduler] "C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe" -start
O4 - HKLM\..\Run: [MimBoot] C:\PROGRA~1\MUSICM~1\MUSICM~3\mimboot.exe
O4 - HKLM\..\Run: [MMTray] "C:\Program Files\Musicmatch\Musicmatch Jukebox\mm_tray.exe"
O4 - HKLM\..\Run: [Google Desktop Search] "C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe" /startup
O4 - HKLM\..\Run: [Corel Photo Downloader] C:\Program Files\Corel\Corel Photo Album 6\MediaDetect.exe
O4 - HKLM\..\Run: [SpeedTouch USB Diagnostics] "C:\Program Files\Thomson\SpeedTouch USB\Dragdiag.exe" /icon
O4 - HKLM\..\Run: [HPHUPD05] C:\Program Files\Hewlett-Packard\{D946675D-1D6C-4dc8-9E0D-B4B8EAA30EAA}\hphupd05.exe
O4 - HKLM\..\Run: [HP Component Manager] "C:\Program Files\HP\hpcoretech\hpcmpmgr.exe"
O4 - HKLM\..\Run: [HP Software Update] "C:\Program Files\Hewlett-Packard\HP Software Update\HPWuSchd2.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_01\bin\jusched.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [MSKDetectorExe] C:\Program Files\McAfee\SpamKiller\MSKDetct.exe /uninstall
O4 - HKLM\..\Run: [TotalRecorderScheduler] "C:\Program Files\HighCriteria\TotalRecorder\TotRecSched.exe"
O4 - HKLM\..\Run: [AVG7_CC] C:\PROGRA~1\Grisoft\AVG7\avgcc.exe /STARTUP
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKCU\..\Run: [ModemOnHold] C:\Program Files\NetWaiting\netWaiting.exe
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Common Files\Ahead\lib\NMBgMonitor.exe"
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [H/PC Connection Agent] "C:\PROGRA~1\MI3AA1~1\wcescomm.exe"
O4 - HKCU\..\Run: [DellSupport] "C:\Program Files\DellSupport\DSAgnt.exe" /startup
O4 - HKCU\..\Run: [Yahoo! Pager] "C:\PROGRA~1\Yahoo!\MESSEN~1\YAHOOM~1.EXE" -quiet
O4 - Global Startup: Digital Line Detect.lnk = ?
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll
O9 - Extra button: Create Mobile Favorite - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MI3AA1~1\INetRepl.dll
O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MI3AA1~1\INetRepl.dll
O9 - Extra 'Tools' menuitem: Create Mobile Favorite... - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MI3AA1~1\INetRepl.dll
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\system32\Shdocvw.dll
O9 - Extra button: Run IMVU - {d9288080-1baa-4bc4-9cf8-a92d743db949} - C:\Documents and Settings\lucy denny\Start Menu\Programs\IMVU\Run IMVU.lnk (file missing)
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft....k/?linkid=39204
O16 - DPF: {20A60F0D-9AFA-4515-A0FD-83BD84642501} (Checkers Class) - http://messenger.zon...kr.cab56986.cab
O16 - DPF: {25365FF3-2746-4230-9DA7-163CCA318309} (Automatic Driver Installation Control) - http://inst.c-wss.co...ll/gtdownlr.cab
O16 - DPF: {4ED9DDF0-7479-4BBE-9335-5A1EDB1D8A21} - http://download.mcaf...01/mcinsctl.cab
O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zon...1/GAME_UNO1.cab
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://download.bitd...can8/oscan8.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zon...nt.cab56907.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{6C08C4DE-5E56-4204-8D95-DFA975C65946}: NameServer = 158.152.1.58 158.152.1.43
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O20 - AppInit_DLLs: C:\PROGRA~1\Google\GOOGLE~1\GOEC62~1.DLL
O20 - Winlogon Notify: igfxcui - C:\WINDOWS\SYSTEM32\igfxdev.dll
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\
O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgamsvr.exe
O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgupsvc.exe
O23 - Service: AVG E-mail Scanner (AVGEMS) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgemc.exe
O23 - Service: DSBrokerService - Unknown owner - C:\Program Files\DellSupport\brkrsvc.exe
O23 - Service: ewido security suite control - ewido networks - C:\Program Files\ewido anti-malware\ewidoctrl.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: NICCONFIGSVC - Dell Inc. - C:\Program Files\Dell\NICCONFIGSVC\NICCONFIGSVC.exe
O23 - Service: Dell Wireless WLAN Tray Service (wltrysvc) - Unknown owner - C:\WINDOWS\System32\WLTRYSVC.EXE

#17 jedi

jedi

    aequam memento rebus in arduis servare mentem

  • Emeritus
  • PipPipPipPipPip
  • 15,830 posts

Posted 25 June 2007 - 12:59 PM

Hi again,

OK, that looks clean, how's the PC running now?

jedi
jedi

My help is free, but if you wish to help keep these forums running please consider a donation, see This Topic for details.

#18 fdsa

fdsa

    Member

  • Full Member
  • Pip
  • 13 posts

Posted 26 June 2007 - 10:00 AM

It seems good, but it does seem a little slower than it used to be.

Thanks for your help, you all do a great job here.

Edited by fdsa, 26 June 2007 - 10:02 AM.


#19 jedi

jedi

    aequam memento rebus in arduis servare mentem

  • Emeritus
  • PipPipPipPipPip
  • 15,830 posts

Posted 26 June 2007 - 12:23 PM

You're welcome. :)

miekiemoes, one of our Mods, have written some good advice on computer slowness which may be useful:
http://users.telenet...owcomputer.html

jedi
jedi

My help is free, but if you wish to help keep these forums running please consider a donation, see This Topic for details.

#20 fdsa

fdsa

    Member

  • Full Member
  • Pip
  • 13 posts

Posted 26 June 2007 - 02:54 PM

Thanks, a great help.

Everything seems to be running smoothly now.

#21 jedi

jedi

    aequam memento rebus in arduis servare mentem

  • Emeritus
  • PipPipPipPipPip
  • 15,830 posts

Posted 26 June 2007 - 04:15 PM

Glad we could help. :)

If you need this topic reopened, please tell the moderating team by replying here with the address of the thread. This applies only to the original topic starter. Everyone else please begin a New Topic.
jedi

My help is free, but if you wish to help keep these forums running please consider a donation, see This Topic for details.




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

Member of ASAP and UNITE
Support SpywareInfo Forum - click the button