Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Virtumonde Infection Help Me!


  • Please log in to reply
9 replies to this topic

#1 hozzi19

hozzi19

  • Members
  • 25 posts
  • OFFLINE
  •  
  • Local time:10:26 AM

Posted 28 December 2007 - 11:01 PM

I have been infected with the Virtumonde virus on my Acer laptop. Im running windows xp pro. I have followed all of the instructions provided in the preparation guide. I am running GData antiviruskit as my antivirus, however when the virus was contracted I was running Avast antivirus. I had 600+ infected files prior to finally getting it down to a few of these bugs hanging around.

Just when I think Im clean, the stupid virus comes back. It deleted all of my restore points, and wont let me load my ePower management on my laptop. My hijack this log is posted below... Im about ready to reformat, Please help me!!!

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 10:59:35 PM, on 12/28/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16574)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Sygate\SPF\smc.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
C:\WINDOWS\system32\spoolsv.exe
c:\program files\common files\logitech\lvmvfm\LVPrcSrv.exe
C:\Acer\Empowering Technology\ePerformance\MemCheck.exe
C:\Program Files\G DATA AntiVirusKit\AVK\AVKService.exe
C:\Program Files\G DATA AntiVirusKit\AVK\AVKWCtl.exe
c:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
C:\Program Files\Common Files\LightScribe\LSSrvc.exe
C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Common Files\G DATA\AVKProxy\AVKProxy.exe
C:\WINDOWS\system32\wbem\wmiapsrv.exe
C:\WINDOWS\RTHDCPL.EXE
C:\WINDOWS\system32\rundll32.exe
C:\Acer\Empowering Technology\eDataSecurity\eDSloader.exe
C:\WINDOWS\system32\ctfmon.exe
C:\WINDOWS\System32\svchost.exe
C:\Acer\Empowering Technology\Acer.Empowering.Framework.Launcher.exe
C:\DOCUME~1\FOXY\LOCALS~1\Temp\RtkBtMnt.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Documents and Settings\FOXY\Desktop\Virus & Malware Detection\VundoFix.exe
C:\Documents and Settings\FOXY\Desktop\Virus & Malware Detection\HiJackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://us.rd.yahoo.com/customize/ycomp/def...//www.yahoo.com
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://en.us.acer.yahoo.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://us.rd.yahoo.com/customize/ycomp/def...//www.yahoo.com
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O3 - Toolbar: Acer eDataSecurity Management - {5CBE3B7C-1E47-477e-A7DD-396DB0476E29} - C:\WINDOWS\system32\eDStoolbar.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O4 - HKLM\..\Run: [ATICCC] "C:\Program Files\ATI Technologies\ATI.ACE\cli.exe" runtime -Delay
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [SkyTel] SkyTel.EXE
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [AzMixerSel] C:\Program Files\Realtek\InstallShield\AzMixerSel.exe
O4 - HKLM\..\Run: [SynTPLpr] C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [ntiMUI] C:\Program Files\NewTech Infosystems\NTI CD & DVD-Maker 7\ntiMUI.exe
O4 - HKLM\..\Run: [BluetoothAuthenticationAgent] rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent
O4 - HKLM\..\Run: [IMJPMIG8.1] "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32
O4 - HKLM\..\Run: [MSPY2002] C:\WINDOWS\system32\IME\PINTLGNT\ImScInst.exe /SYNC
O4 - HKLM\..\Run: [PHIME2002ASync] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC
O4 - HKLM\..\Run: [PHIME2002A] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName
O4 - HKLM\..\Run: [eDataSecurity Loader] C:\Acer\Empowering Technology\eDataSecurity\eDSloader.exe 0
O4 - HKLM\..\Run: [Acer ePresentation HPD] C:\Acer\Empowering Technology\ePresentation\ePresentation.exe
O4 - HKLM\..\Run: [ePower_DMC] C:\Acer\Empowering Technology\ePower\ePower_DMC.exe
O4 - HKLM\..\Run: [Boot] C:\Acer\Empowering Technology\ePower\Boot.exe
O4 - HKLM\..\Run: [RemoteControl] "C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe"
O4 - HKLM\..\Run: [LManager] C:\PROGRA~1\LAUNCH~1\QtZgAcer.EXE
O4 - HKLM\..\Run: [eRecoveryService] C:\Acer\Empowering Technology\eRecovery\eRAgent.exe
O4 - HKLM\..\Run: [voip phone charger] "C:\Program Files\Acer\VoIP Phone Charger\voip phone charger.exe"
O4 - HKLM\..\Run: [LVCOMSX] C:\WINDOWS\system32\LVCOMSX.EXE
O4 - HKLM\..\Run: [LogitechCameraAssistant] C:\Program Files\Acer\OrbiCam\CameraAssistant.exe
O4 - HKLM\..\Run: [LogitechVideo[inspector]] C:\Program Files\Acer\OrbiCam\InstallHelper.exe /inspect
O4 - HKLM\..\Run: [LogitechCameraService(E)] C:\WINDOWS\system32\ElkCtrl.exe /automation
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask .exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe"
O4 - HKLM\..\Run: [IntelliPoint] "C:\Program Files\Microsoft IntelliPoint\ipoint.exe"
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [AVKTray] "C:\Program Files\G DATA AntiVirusKit\AVKTray\AVKTray.exe"
O4 - HKLM\..\Run: [SmcService] C:\PROGRA~1\Sygate\SPF\smc.exe -startgui
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [updateMgr] c:\Program Files\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.exe AcRdB7_0_9
O4 - Global Startup: Acer Empowering Technology.lnk = ?
O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: hueyPROTray.lnk = C:\Program Files\Pantone\hueyPRO\hueyPROTray.exe
O8 - Extra context menu item: Send to &Bluetooth Device... - c:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - c:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: @btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - c:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {5ED80217-570B-4DA9-BF44-BE107C0EC166} (Windows Live Safety Center Base Module) - http://cdn.scan.onecare.live.com/resource/...lscbase4009.cab
O23 - Service: Ad-Aware 2007 Service (aawservice) - Lavasoft AB - C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
O23 - Service: Memory Check Service (AcerMemUsageCheckService) - Acer Inc. - C:\Acer\Empowering Technology\ePerformance\MemCheck.exe
O23 - Service: Adobe LM Service - Unknown owner - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: AVKProxy - G DATA Software AG - C:\Program Files\Common Files\G DATA\AVKProxy\AVKProxy.exe
O23 - Service: AVK Service (AVKService) - G DATA Software AG - C:\Program Files\G DATA AntiVirusKit\AVK\AVKService.exe
O23 - Service: AVK Monitor (AVKWCtl) - Unknown owner - C:\Program Files\G DATA AntiVirusKit\AVK\AVKWCtl.exe
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - c:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: iPod Service - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: Logitech Process Monitor (LVPrcSrv) - Logitech - c:\program files\common files\logitech\lvmvfm\LVPrcSrv.exe
O23 - Service: Sygate Personal Firewall (SmcService) - Sygate Technologies, Inc. - C:\Program Files\Sygate\SPF\smc.exe

--
End of file - 9674 bytes

BC AdBot (Login to Remove)

 


#2 RichieUK

RichieUK

    Malware Assassin


  • Malware Response Team
  • 13,614 posts
  • OFFLINE
  •  
  • Local time:03:26 PM

Posted 29 December 2007 - 07:18 AM

Welcome to the BleepingComputer HijackThis Logs and Analysis forum hozzi19
My name is Richie and i'll be helping you to fix your problems.

Please download VundoFix.exe to your desktop.
Double-click VundoFix.exe to run it.
When VundoFix re-opens,click the "Scan for Vundo" button.
Once it's done scanning,click the "Remove Vundo" button.
You will receive a prompt asking if you want to remove the files, click "YES".
Once you click yes, your desktop will go blank as it starts removing Vundo.
When completed,it will prompt that it will reboot your computer,click "OK".
Post the contents of C:\vundofix.txt into your next reply.
Note:
It is possible that VundoFix encountered a file it could not remove.
In this case,VundoFix will run on reboot,simply follow the above instructions starting from "Click the Scan for Vundo button." when VundoFix appears at reboot.


If you have previously downloaded ComboFix,please delete that version now.
Warning
You should NOT use Combofix unless you have been instructed to do so by a Malware Removal Expert.
It is intended by its creator to be used under the guidance and supervision of an expert,not for private use.
Using this tool incorrectly could render your system/pc inoperable.

Now download Combofix and save to your desktop:
Note
It is important that it is saved directly to your desktop

Close any open browsers.
Double click on combofix.exe and follow the prompts.
When it's finished it will produce a log.
Post the entire contents of C:\ComboFix.txt into your next reply.
Note
Do not mouseclick combofix's window while it's running.
That may cause the program to freeze/hang.

Do NOT post the ComboFix-quarantined-files.txt unless I ask.
Note
In case your Antivirus or any other realtime scanner is displaying an alert after you downloaded Combofix or while you use Combofix,please disable your scanner and redownload Combofix again.
Some scanners may see some combofix related components as suspicious and block or delete them while there's nothing wrong with them.

Also post a new Hijackthis log please.
Posted Image
Posted Image

#3 hozzi19

hozzi19
  • Topic Starter

  • Members
  • 25 posts
  • OFFLINE
  •  
  • Local time:10:26 AM

Posted 29 December 2007 - 11:49 AM

No viruses were detected with VundoFix this time, so it did not give me a log to post for you.

I did a scan last night with AdAware and it came up with 206 infected items and then froze. It wont let me complete a scan. My computer is running very slow now and certain programs are not opening unless I restart. My guess is that I have more than one virus other than the Vundo on this laptop.

My combo Fix log is as follows....



ComboFix 07-12-29.5 - FOXY 2007-12-29 11:19:29.1 - FAT32x86
Microsoft Windows XP Professional 5.1.2600.2.1252.1.1033.18.1473 [GMT -5:00]
Running from: C:\Documents and Settings\FOXY\Desktop\ComboFix.exe
* Created a new restore point
.

((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.

C:\Documents and Settings\FOXY\Start Menu\Programs\Internet Speed Monitor
C:\Documents and Settings\FOXY\Start Menu\Programs\Internet Speed Monitor\Check Now.lnk
C:\Documents and Settings\FOXY\Start Menu\Programs\Internet Speed Monitor\Uninstall.lnk
C:\Program Files\ISM
C:\Program Files\ISM\Uninstall.exe
C:\WINDOWS\setup.exe
C:\WINDOWS\system32\drivers\npf.sys
C:\WINDOWS\system32\Packet.dll
C:\WINDOWS\system32\WanPacket.dll
C:\WINDOWS\system32\wpcap.dll

.
((((((((((((((((((((((((( Files Created from 2007-11-28 to 2007-12-29 )))))))))))))))))))))))))))))))
.

2007-12-26 22:48 . 2007-12-26 22:48 <DIR> d-------- C:\Program Files\Sygate
2007-12-26 22:48 . 2004-10-15 18:32 83,096 --a------ C:\WINDOWS\system32\SSSensor.dll
2007-12-26 22:48 . 2004-10-15 18:17 60,496 --a------ C:\WINDOWS\system32\drivers\Teefer.sys
2007-12-26 22:48 . 2004-10-15 18:18 21,075 --a------ C:\WINDOWS\system32\drivers\wpsdrvnt.sys
2007-12-26 22:48 . 2004-10-15 18:32 14,568 --a------ C:\WINDOWS\system32\drivers\wg6n.sys
2007-12-26 22:48 . 2004-10-15 18:32 14,568 --a------ C:\WINDOWS\system32\drivers\wg5n.sys
2007-12-26 22:48 . 2004-10-15 18:32 14,568 --a------ C:\WINDOWS\system32\drivers\wg4n.sys
2007-12-26 22:48 . 2004-10-15 18:32 14,568 --a------ C:\WINDOWS\system32\drivers\wg3n.sys
2007-12-24 12:19 . 2007-12-24 12:19 <DIR> d-------- C:\Documents and Settings\FOXY\.housecall6.6
2007-12-24 09:57 . 2007-12-24 09:57 <DIR> d-------- C:\Program Files\Lavasoft
2007-12-24 09:57 . 2007-12-24 09:57 <DIR> d-------- C:\Documents and Settings\All Users\Application Data\Lavasoft
2007-12-24 09:56 . 2007-12-24 09:56 <DIR> d-------- C:\Program Files\Common Files\Wise Installation Wizard
2007-12-23 22:34 . 2007-10-10 18:55 6,065,664 --------- C:\WINDOWS\system32\dllcache\ieframe.dll
2007-12-23 22:34 . 2007-06-30 22:31 2,455,488 --------- C:\WINDOWS\system32\dllcache\ieapfltr.dat
2007-12-23 22:34 . 2007-06-30 22:36 991,232 --------- C:\WINDOWS\system32\dllcache\ieframe.dll.mui
2007-12-23 22:34 . 2007-10-10 18:55 459,264 --------- C:\WINDOWS\system32\dllcache\msfeeds.dll
2007-12-23 22:34 . 2007-10-10 18:55 383,488 --------- C:\WINDOWS\system32\dllcache\ieapfltr.dll
2007-12-23 22:34 . 2007-10-10 18:55 267,776 --------- C:\WINDOWS\system32\dllcache\iertutil.dll
2007-12-23 22:34 . 2007-10-10 18:55 63,488 --------- C:\WINDOWS\system32\dllcache\icardie.dll
2007-12-23 22:34 . 2007-10-10 18:55 52,224 --------- C:\WINDOWS\system32\dllcache\msfeedsbs.dll
2007-12-23 22:34 . 2007-10-10 05:59 13,824 --------- C:\WINDOWS\system32\dllcache\ieudinit.exe
2007-12-23 22:18 . 2007-12-23 22:18 <DIR> d-------- C:\VundoFix Backups
2007-12-23 18:05 . 2007-12-23 18:05 <DIR> d-------- C:\Program Files\Common Files\xing shared
2007-12-23 18:01 . 2007-12-23 18:01 <DIR> d-------- C:\Program Files\Real
2007-12-23 18:01 . 2007-12-23 18:01 <DIR> d-------- C:\Program Files\Common Files\Real
2007-12-23 16:39 . 2007-12-23 16:39 <DIR> d--hs---- C:\FOUND.002
2007-12-23 11:29 . 2007-12-23 11:29 <DIR> d-------- C:\Program Files\Windows Live Safety Center
2007-12-23 11:04 . 2007-12-23 11:04 <DIR> d-------- C:\Documents and Settings\FOXY\Application Data\AdwareAlert
2007-12-23 10:46 . 2007-12-23 10:46 <DIR> d--hs---- C:\FOUND.001
2007-12-22 18:20 . 2007-12-22 18:20 <DIR> d-------- C:\Documents and Settings\All Users\Application Data\G DATA
2007-12-22 18:16 . 2007-12-22 18:16 <DIR> d-------- C:\WINDOWS\gear_dlls
2007-12-22 18:16 . 2007-12-22 18:16 34,143 --a------ C:\WINDOWS\system32\drivers\MiniIcpt.sys
2007-12-22 18:16 . 2007-12-22 18:16 29,730 --a------ C:\WINDOWS\system32\drivers\HookCentre.sys
2007-12-22 18:16 . 2007-12-22 18:16 28,307 --a------ C:\WINDOWS\system32\drivers\GDTdiIcpt.sys
2007-12-22 12:14 . 2007-12-22 12:14 <DIR> d--hs---- C:\FOUND.000
2007-12-22 11:51 . 2007-12-22 11:51 <DIR> d-------- C:\Program Files\G DATA AntiVirusKit
2007-12-22 11:51 . 2007-12-22 11:51 <DIR> d-------- C:\Program Files\Common Files\G DATA
2007-12-22 10:38 . 2007-12-23 10:47 262,144 --a------ C:\WINDOWS\system32\ElkCtrl .exe
2007-12-22 10:38 . 2007-12-23 10:47 225,280 --a------ C:\WINDOWS\system32\LVCOMSX .EXE
2007-12-22 10:38 . 2007-12-23 10:48 155,648 --a------ C:\WINDOWS\system32\NeroCheck .exe
2007-12-22 10:38 . 2007-12-23 20:16 15,360 --a------ C:\WINDOWS\system32\ctfmon .exe
2007-12-22 10:08 . 2007-12-22 10:53 54,156 --ah----- C:\WINDOWS\QTFont.qfn
2007-12-22 10:08 . 2007-12-22 10:08 1,409 --a------ C:\WINDOWS\QTFont.for
2007-12-16 21:29 . 2007-12-16 21:29 <DIR> d-------- C:\Documents and Settings\FOXY\Application Data\Pantone
2007-12-16 21:27 . 2007-12-16 21:27 <DIR> d-------- C:\Program Files\Pantone

.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2007-11-22 05:14 --------- d-----w C:\Program Files\Alwil Software
2007-11-13 10:25 20,480 ----a-w C:\WINDOWS\system32\drivers\secdrv.sys
2007-10-31 10:12 3,590,656 ------w C:\WINDOWS\system32\dllcache\mshtml.dll
2007-10-29 22:43 1,287,680 ----a-w C:\WINDOWS\system32\quartz.dll
2007-10-29 22:43 1,287,680 ----a-w C:\WINDOWS\system32\dllcache\quartz.dll
2007-10-27 22:39 230,912 ----a-w C:\WINDOWS\system32\wmasf.dll
2007-10-27 22:39 230,912 ----a-w C:\WINDOWS\system32\dllcache\wmasf.dll
2007-10-27 22:37 2,109,440 ----a-w C:\WINDOWS\system32\dllcache\wmvcore.dll
2007-10-26 03:34 8,460,288 ----a-w C:\WINDOWS\system32\dllcache\shell32.dll
2007-10-11 06:13 474,112 ----a-w C:\WINDOWS\system32\dllcache\shlwapi.dll
2007-10-11 06:13 151,040 ----a-w C:\WINDOWS\system32\dllcache\cdfview.dll
2007-10-11 06:13 1,494,528 ----a-w C:\WINDOWS\system32\dllcache\shdocvw.dll
2007-10-11 06:13 1,054,208 ----a-w C:\WINDOWS\system32\dllcache\danim.dll
2007-10-11 06:13 1,023,488 ----a-w C:\WINDOWS\system32\dllcache\browseui.dll
2007-10-10 23:56 824,832 ------w C:\WINDOWS\system32\dllcache\wininet.dll
2007-10-10 23:56 671,232 ------w C:\WINDOWS\system32\dllcache\mstime.dll
2007-10-10 23:56 232,960 ------w C:\WINDOWS\system32\dllcache\webcheck.dll
2007-10-10 23:56 105,984 ------w C:\WINDOWS\system32\dllcache\url.dll
2007-10-10 23:56 102,400 ------w C:\WINDOWS\system32\dllcache\occache.dll
2007-10-10 23:56 1,159,680 ------w C:\WINDOWS\system32\dllcache\urlmon.dll
2007-10-10 23:55 478,208 ------w C:\WINDOWS\system32\dllcache\mshtmled.dll
2007-10-10 23:55 44,544 ------w C:\WINDOWS\system32\dllcache\iernonce.dll
2007-10-10 23:55 384,512 ------w C:\WINDOWS\system32\dllcache\iedkcs32.dll
2007-10-10 23:55 27,648 ------w C:\WINDOWS\system32\dllcache\jsproxy.dll
2007-10-10 23:55 230,400 ------w C:\WINDOWS\system32\dllcache\ieaksie.dll
2007-10-10 23:55 214,528 ------w C:\WINDOWS\system32\dllcache\dxtrans.dll
2007-10-10 23:55 193,024 ------w C:\WINDOWS\system32\dllcache\msrating.dll
2007-10-10 23:55 153,088 ------w C:\WINDOWS\system32\dllcache\ieakeng.dll
2007-10-10 23:55 132,608 ------w C:\WINDOWS\system32\dllcache\extmgr.dll
2007-10-10 23:55 124,928 ------w C:\WINDOWS\system32\dllcache\advpack.dll
2007-10-10 10:59 70,656 ------w C:\WINDOWS\system32\dllcache\ie4uinit.exe
2007-10-10 10:59 625,152 ------w C:\WINDOWS\system32\dllcache\iexplore.exe
2007-10-10 05:46 161,792 ------w C:\WINDOWS\system32\dllcache\ieakui.dll
.

((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ctfmon.exe"="C:\WINDOWS\system32\ctfmon.exe" [2004-08-04 05:00]
"updateMgr"="c:\Program Files\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.exe" []

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"LaunchApp"="" []
"ATICCC"="C:\Program Files\ATI Technologies\ATI.ACE\cli.exe" []
"RTHDCPL"="RTHDCPL.EXE" [2006-06-28 14:54 C:\WINDOWS\RTHDCPL.exe]
"SkyTel"="SkyTel.EXE" [2006-05-16 18:04 C:\WINDOWS\SkyTel.exe]
"AzMixerSel"="C:\Program Files\Realtek\InstallShield\AzMixerSel.exe" []
"SynTPLpr"="C:\Program Files\Synaptics\SynTP\SynTPLpr.exe" []
"SynTPEnh"="C:\Program Files\Synaptics\SynTP\SynTPEnh.exe" []
"ntiMUI"="C:\Program Files\NewTech Infosystems\NTI CD & DVD-Maker 7\ntiMUI.exe" []
"BluetoothAuthenticationAgent"="bthprops.cpl" [2004-08-04 05:00 C:\WINDOWS\system32\bthprops.cpl]
"IMJPMIG8.1"="C:\WINDOWS\IME\imjp8_1\IMJPMIG.exe" [2004-08-04 05:00]
"MSPY2002"="C:\WINDOWS\system32\IME\PINTLGNT\ImScInst.exe" [2004-08-04 05:00]
"PHIME2002ASync"="C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.exe" [2004-08-04 05:00]
"PHIME2002A"="C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.exe" [2004-08-04 05:00]
"eDataSecurity Loader"="C:\Acer\Empowering Technology\eDataSecurity\eDSloader.exe" [2006-03-17 15:00]
"Acer ePresentation HPD"="C:\Acer\Empowering Technology\ePresentation\ePresentation.exe" []
"ePower_DMC"="C:\Acer\Empowering Technology\ePower\ePower_DMC.exe" []
"Boot"="C:\Acer\Empowering Technology\ePower\Boot.exe" []
"RemoteControl"="C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe" []
"LManager"="C:\PROGRA~1\LAUNCH~1\QtZgAcer.EXE" []
"eRecoveryService"="C:\Acer\Empowering Technology\eRecovery\eRAgent.exe" []
"voip phone charger"="C:\Program Files\Acer\VoIP Phone Charger\voip phone charger.exe" []
"LVCOMSX"="C:\WINDOWS\system32\LVCOMSX.EXE" []
"LogitechCameraAssistant"="C:\Program Files\Acer\OrbiCam\CameraAssistant.exe" []
"LogitechVideo[inspector]"="C:\Program Files\Acer\OrbiCam\InstallHelper.exe" []
"LogitechCameraService(E)"="C:\WINDOWS\system32\ElkCtrl.exe" []
"QuickTime Task"="C:\Program Files\QuickTime\qttask .exe" []
"iTunesHelper"="C:\Program Files\iTunes\iTunesHelper.exe" []
"SunJavaUpdateSched"="C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe" []
"IntelliPoint"="C:\Program Files\Microsoft IntelliPoint\ipoint.exe" []
"NeroFilterCheck"="C:\WINDOWS\system32\NeroCheck.exe" []
"AVKTray"="C:\Program Files\G DATA AntiVirusKit\AVKTray\AVKTray.exe" []
"SmcService"="C:\PROGRA~1\Sygate\SPF\smc.exe" [2004-10-15 19:40]

C:\Documents and Settings\All Users\Start Menu\Programs\Startup\
Acer Empowering Technology.lnk - C:\Acer\Empowering Technology\Acer.Empowering.Framework.Launcher.exe [2006-06-29 10:45:00]
Adobe Gamma Loader.lnk - C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe [2007-08-26 21:34:29]
Adobe Reader Speed Launch.lnk - C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe [2005-09-23 22:05:26]
hueyPROTray.lnk - C:\Program Files\Pantone\hueyPRO\hueyPROTray.exe [2007-12-16 21:27:51]

R0 UBHelper;UBHelper;C:\WINDOWS\system32\drivers\UBHelper.sys [2004-12-17 16:14]
R2 AVKProxy;AVKProxy;"C:\Program Files\Common Files\G DATA\AVKProxy\AVKProxy.exe" [2006-10-18 13:13]
R2 AVKService;AVK Service;C:\Program Files\G DATA AntiVirusKit\AVK\AVKService.exe [2006-10-18 13:38]
R2 AVKWCtl;AVK Monitor;C:\Program Files\G DATA AntiVirusKit\AVK\AVKWCtl.exe [2006-10-06 21:22]
R2 GDTdiInterceptor;GDTdiInterceptor;C:\WINDOWS\system32\drivers\GDTdiIcpt.sys [2007-12-22 18:16]
R2 int15;int15;C:\WINDOWS\system32\drivers\int15.sys [2006-06-02 13:59]
R2 tvicport;tvicport;C:\WINDOWS\system32\drivers\tvicport.sys [2006-06-02 13:59]
R3 DKbFltr;Dritek Keyboard Filter Driver;C:\WINDOWS\system32\DRIVERS\DKbFltr.sys [2004-12-08 14:10]
R3 GDMnIcpt;GDMnIcpt;C:\WINDOWS\system32\drivers\MiniIcpt.sys [2007-12-22 18:16]
R3 HookCentre;HookCentre;C:\WINDOWS\system32\drivers\HookCentre.sys [2007-12-22 18:16]
R3 lv321av;Logitech USB PC Camera (VC0321);C:\WINDOWS\system32\DRIVERS\lv321av.sys [2006-04-05 12:46]
R3 LVPrcMon;Logitech LVPrcMon Driver;C:\WINDOWS\system32\drivers\LVPrcMon.sys [2006-04-06 19:30]
R3 psdfilter;psdfilter;C:\WINDOWS\system32\Drivers\psdfilter.sys [2006-04-07 20:17]
R3 psdvdisk;psdvdisk;C:\WINDOWS\system32\Drivers\psdvdisk.sys [2006-03-08 17:10]

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{be5a8056-541f-11dc-bfc4-001636a657cc}]
\Shell\AutoRun\command - F:\setupSNK.exe

.
Contents of the 'Scheduled Tasks' folder
"2007-12-23 21:40:56 C:\WINDOWS\Tasks\AdwareAlert Scheduled Scan.job"
- C:\Program Files\AdwareAlert\AdwareAlert .ex
- C:\Program Files\AdwareAlert
.
**************************************************************************

catchme 0.3.1333 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2007-12-29 11:22:33
Windows 5.1.2600 Service Pack 2 FAT NTAPI

scanning hidden processes ...

scanning hidden autostart entries ...

scanning hidden files ...

scan completed successfully
hidden files: 0

**************************************************************************
.
Completion time: 2007-12-29 11:23:07 - machine was rebooted
.
2007-12-27 04:03:30 --- E O F ---





Here is my Hijack log....


Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 11:40:56 AM, on 12/29/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16574)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Sygate\SPF\smc.exe
C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
c:\program files\common files\logitech\lvmvfm\LVPrcSrv.exe
C:\WINDOWS\RTHDCPL.EXE
C:\WINDOWS\system32\rundll32.exe
C:\Acer\Empowering Technology\eDataSecurity\eDSloader.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Acer\Empowering Technology\Acer.Empowering.Framework.Launcher.exe
C:\Program Files\Pantone\hueyPRO\hueyPROTray.exe
C:\DOCUME~1\FOXY\LOCALS~1\Temp\RtkBtMnt.exe
C:\Acer\Empowering Technology\ePerformance\MemCheck.exe
C:\Program Files\G DATA AntiVirusKit\AVK\AVKService.exe
C:\Program Files\G DATA AntiVirusKit\AVK\AVKWCtl.exe
c:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
C:\Program Files\Common Files\LightScribe\LSSrvc.exe
C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Common Files\G DATA\AVKProxy\AVKProxy.exe
C:\WINDOWS\system32\wbem\wmiapsrv.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\notepad.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Documents and Settings\FOXY\Desktop\Virus & Malware Detection\HiJackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://en.us.acer.yahoo.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://us.rd.yahoo.com/customize/ycomp/def...//www.yahoo.com
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O3 - Toolbar: Acer eDataSecurity Management - {5CBE3B7C-1E47-477e-A7DD-396DB0476E29} - C:\WINDOWS\system32\eDStoolbar.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O4 - HKLM\..\Run: [ATICCC] "C:\Program Files\ATI Technologies\ATI.ACE\cli.exe" runtime -Delay
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [SkyTel] SkyTel.EXE
O4 - HKLM\..\Run: [AzMixerSel] C:\Program Files\Realtek\InstallShield\AzMixerSel.exe
O4 - HKLM\..\Run: [SynTPLpr] C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [ntiMUI] C:\Program Files\NewTech Infosystems\NTI CD & DVD-Maker 7\ntiMUI.exe
O4 - HKLM\..\Run: [BluetoothAuthenticationAgent] rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent
O4 - HKLM\..\Run: [IMJPMIG8.1] "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32
O4 - HKLM\..\Run: [MSPY2002] C:\WINDOWS\system32\IME\PINTLGNT\ImScInst.exe /SYNC
O4 - HKLM\..\Run: [PHIME2002ASync] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC
O4 - HKLM\..\Run: [PHIME2002A] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName
O4 - HKLM\..\Run: [eDataSecurity Loader] C:\Acer\Empowering Technology\eDataSecurity\eDSloader.exe 0
O4 - HKLM\..\Run: [Acer ePresentation HPD] C:\Acer\Empowering Technology\ePresentation\ePresentation.exe
O4 - HKLM\..\Run: [ePower_DMC] C:\Acer\Empowering Technology\ePower\ePower_DMC.exe
O4 - HKLM\..\Run: [Boot] C:\Acer\Empowering Technology\ePower\Boot.exe
O4 - HKLM\..\Run: [RemoteControl] "C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe"
O4 - HKLM\..\Run: [LManager] C:\PROGRA~1\LAUNCH~1\QtZgAcer.EXE
O4 - HKLM\..\Run: [eRecoveryService] C:\Acer\Empowering Technology\eRecovery\eRAgent.exe
O4 - HKLM\..\Run: [voip phone charger] "C:\Program Files\Acer\VoIP Phone Charger\voip phone charger.exe"
O4 - HKLM\..\Run: [LVCOMSX] C:\WINDOWS\system32\LVCOMSX.EXE
O4 - HKLM\..\Run: [LogitechCameraAssistant] C:\Program Files\Acer\OrbiCam\CameraAssistant.exe
O4 - HKLM\..\Run: [LogitechVideo[inspector]] C:\Program Files\Acer\OrbiCam\InstallHelper.exe /inspect
O4 - HKLM\..\Run: [LogitechCameraService(E)] C:\WINDOWS\system32\ElkCtrl.exe /automation
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask .exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe"
O4 - HKLM\..\Run: [IntelliPoint] "C:\Program Files\Microsoft IntelliPoint\ipoint.exe"
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [AVKTray] "C:\Program Files\G DATA AntiVirusKit\AVKTray\AVKTray.exe"
O4 - HKLM\..\Run: [SmcService] C:\PROGRA~1\Sygate\SPF\smc.exe -startgui
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [updateMgr] c:\Program Files\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.exe AcRdB7_0_9
O4 - Global Startup: Acer Empowering Technology.lnk = ?
O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: hueyPROTray.lnk = C:\Program Files\Pantone\hueyPRO\hueyPROTray.exe
O8 - Extra context menu item: Send to &Bluetooth Device... - c:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - c:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: @btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - c:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {5ED80217-570B-4DA9-BF44-BE107C0EC166} (Windows Live Safety Center Base Module) - http://cdn.scan.onecare.live.com/resource/...lscbase4009.cab
O23 - Service: Ad-Aware 2007 Service (aawservice) - Lavasoft AB - C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
O23 - Service: Memory Check Service (AcerMemUsageCheckService) - Acer Inc. - C:\Acer\Empowering Technology\ePerformance\MemCheck.exe
O23 - Service: Adobe LM Service - Unknown owner - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: AVKProxy - G DATA Software AG - C:\Program Files\Common Files\G DATA\AVKProxy\AVKProxy.exe
O23 - Service: AVK Service (AVKService) - G DATA Software AG - C:\Program Files\G DATA AntiVirusKit\AVK\AVKService.exe
O23 - Service: AVK Monitor (AVKWCtl) - Unknown owner - C:\Program Files\G DATA AntiVirusKit\AVK\AVKWCtl.exe
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - c:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: iPod Service - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: Logitech Process Monitor (LVPrcSrv) - Logitech - c:\program files\common files\logitech\lvmvfm\LVPrcSrv.exe
O23 - Service: Sygate Personal Firewall (SmcService) - Sygate Technologies, Inc. - C:\Program Files\Sygate\SPF\smc.exe

--
End of file - 9499 bytes

#4 RichieUK

RichieUK

    Malware Assassin


  • Malware Response Team
  • 13,614 posts
  • OFFLINE
  •  
  • Local time:03:26 PM

Posted 29 December 2007 - 12:01 PM

Download\install 'SuperAntiSpyware Home Edition Free Version' from here:
http://www.superantispyware.com/downloadfi...ANTISPYWAREFREE

Launch SuperAntiSpyware and click on 'Check for updates'.
Once the updates have been installed,on the main screen click on 'Scan your computer'.
Check: 'Perform Complete Scan'.
Click 'Next' to start the scan.

Superantispyware will now scan your computer,when it's finished it will list all/any infections found.
Make sure everything found has a checkmark next to it,then press 'Next'.
Click on 'Finish' when you've done.

It's possible that the program will ask you to reboot in order to delete some files.

Obtain the SuperAntiSpyware log as follows:
Click on 'Preferences'.
Click on the 'Statistics/Logs' tab.
Under 'Scanner Logs' double click on 'SuperAntiSpyware Scan Log'.
It will then open in your default text editor,such as Notepad.
Copy and paste the contents of that report into your next reply.


Please run F-Secure Online Virus Scanner using Internet Explorer:
http://support.f-secure.com/enu/home/ols.shtml
In the opening page read:
1.General
2.System requirements
3.Start your scan,then click on 'Start scanning'.
The 'Internet Explorer-Security Warning' box will pop up,click on 'Install'
Read the Licence Agreement,then click on 'Accept'.
In the next window that opens click on 'Custom Scan'.
Under 'Virus Scan Options',make sure 'Scan whole system' is selected.
Under 'Other Scan Options',make sure the following are selected:
'Scan all files'
'Scan whole system for rootkits'
'Scan whole system for spyware'
'Scan inside archives'
'Use advanced heuristics'
Then click on 'Start'.
The 'scanner components and databases' will then be downloaded,this will take some time.
The virus scan will then start automatically.
The scan will take some time to finish,so please be patient.
When the scan completes, click the ‘I want to decide item by item’ button.
For each item found,Select ‘Disinfect’ and click ‘Next’.
Click the ‘Show Report’ button,then copy and paste the entire report into your next reply.
Posted Image
Posted Image

#5 hozzi19

hozzi19
  • Topic Starter

  • Members
  • 25 posts
  • OFFLINE
  •  
  • Local time:10:26 AM

Posted 29 December 2007 - 06:02 PM

I will post the other scan when completed



SUPERAntiSpyware Scan Log
http://www.superantispyware.com

Generated 12/29/2007 at 12:58 PM

Application Version : 3.9.1008

Core Rules Database Version : 3370
Trace Rules Database Version: 1365

Scan type : Complete Scan
Total Scan Time : 00:29:23

Memory items scanned : 491
Memory threats detected : 0
Registry items scanned : 5660
Registry threats detected : 0
File items scanned : 32096
File threats detected : 29

Adware.Tracking Cookie
C:\Documents and Settings\FOXY\Cookies\foxy@collective-media[2].txt
C:\Documents and Settings\FOXY\Cookies\foxy@msnportal.112.2o7[1].txt
C:\Documents and Settings\FOXY\Cookies\foxy@tribalfusion[2].txt
C:\Documents and Settings\FOXY\Cookies\foxy@ads.pointroll[1].txt
C:\Documents and Settings\FOXY\Cookies\foxy@revsci[1].txt
C:\Documents and Settings\FOXY\Cookies\foxy@mediatraffic[1].txt
C:\Documents and Settings\FOXY\Cookies\foxy@richmedia.yahoo[1].txt
C:\Documents and Settings\FOXY\Cookies\foxy@tremor.adbureau[2].txt
C:\Documents and Settings\FOXY\Cookies\foxy@cgi-bin[2].txt
C:\Documents and Settings\FOXY\Cookies\foxy@spamblockerutility[2].txt
C:\Documents and Settings\FOXY\Cookies\foxy@www.burstbeacon[2].txt
C:\Documents and Settings\FOXY\Cookies\foxy@interclick[2].txt
C:\Documents and Settings\FOXY\Cookies\foxy@a[1].txt
C:\Documents and Settings\FOXY\Cookies\foxy@adopt.specificclick[2].txt
C:\Documents and Settings\FOXY\Cookies\foxy@exitexchange[1].txt
C:\Documents and Settings\FOXY\Cookies\foxy@adsrevenue[1].txt
C:\Documents and Settings\FOXY\Cookies\foxy@atdmt[1].txt
C:\Documents and Settings\FOXY\Cookies\foxy@eyewonder[1].txt
C:\Documents and Settings\FOXY\Cookies\foxy@nielsen.112.2o7[1].txt
C:\Documents and Settings\FOXY\Cookies\foxy@homestore.122.2o7[2].txt
C:\Documents and Settings\FOXY\Cookies\foxy@specificclick[1].txt
C:\Documents and Settings\FOXY\Cookies\foxy@rotator.adjuggler[1].txt
C:\Documents and Settings\FOXY\Cookies\foxy@findwhat[1].txt
C:\Documents and Settings\FOXY\Cookies\foxy@adserver[1].txt
C:\Documents and Settings\FOXY\Cookies\foxy@stats.adbrite[2].txt
C:\Documents and Settings\FOXY\Cookies\foxy@2o7[2].txt
C:\Documents and Settings\FOXY\Cookies\foxy@questionmarket[1].txt
C:\Documents and Settings\FOXY\Cookies\foxy@msnservices.112.2o7[1].txt
C:\Documents and Settings\FOXY\Cookies\foxy@pro-market[2].txt

#6 hozzi19

hozzi19
  • Topic Starter

  • Members
  • 25 posts
  • OFFLINE
  •  
  • Local time:10:26 AM

Posted 29 December 2007 - 09:31 PM

Its saying there are no threat

Scanning Report
Saturday, December 29, 2007 18:13:58 - 20:07:02

Computer name: ACER-728C5152D8
Scanning type: Scan system for viruses, rootkits, spyware
Target: C:\ D:\
Result: 0 malware found
Statistics
Scanned:

* Files: 180435
* System: 4410
* Not scanned: 42

Actions:

* Disinfected: 0
* Renamed: 0
* Deleted: 0
* None: 0
* Submitted: 0

Files not scanned:

* C:\PAGEFILE.SYS
* C:\PROGRAM FILES\NEWTECH INFOSYSTEMS\NTI CD & DVD-MAKER 7\FILECD\FILECD.ISO
* C:\DOCUMENTS AND SETTINGS\FOXY\NTUSER.DAT.LOG
* C:\DOCUMENTS AND SETTINGS\FOXY\NTUSER.DAT
* C:\Documents and Settings\FOXY\Application Data\SUPERAntiSpyware.com\SUPERAntiSpyware\Quarantine\Quarantine - 12-29-2007 - 17-58-07.SBU\backup.db
* C:\DOCUMENTS AND SETTINGS\FOXY\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\4PQV7S39.DEFAULT\PARENT.LOCK
* C:\DOCUMENTS AND SETTINGS\FOXY\LOCAL SETTINGS\APPLICATION DATA\MICROSOFT\WINDOWS\USRCLASS.DAT.LOG
* C:\DOCUMENTS AND SETTINGS\FOXY\LOCAL SETTINGS\TEMP\PERFLIB_PERFDATA_594.DAT
* C:\DOCUMENTS AND SETTINGS\LOCALSERVICE\NTUSER.DAT.LOG
* C:\DOCUMENTS AND SETTINGS\LOCALSERVICE\NTUSER.DAT
* C:\DOCUMENTS AND SETTINGS\LOCALSERVICE\LOCAL SETTINGS\APPLICATION DATA\MICROSOFT\WINDOWS\USRCLASS.DAT.LOG
* C:\DOCUMENTS AND SETTINGS\NETWORKSERVICE\NTUSER.DAT.LOG
* C:\DOCUMENTS AND SETTINGS\NETWORKSERVICE\NTUSER.DAT
* C:\DOCUMENTS AND SETTINGS\NETWORKSERVICE\LOCAL SETTINGS\APPLICATION DATA\MICROSOFT\WINDOWS\USRCLASS.DAT.LOG
* C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\MicrosoftWindowsSecurityCenterAntiVirusDisableNotify.zip\sbRecovery.reg
* C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\Virtumonde.zip\removalfile.bat
* C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\AdwareAlert.zip\sbRecovery.reg
* C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\AdwareAlert1.zip\sbRecovery.reg
* C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\SpywareBOT.zip\sbRecovery.reg
* C:\WINDOWS\TEMP\PERFLIB_PERFDATA_774.DAT
* C:\WINDOWS\SYSTEM32\BIOS1.ROM
* C:\WINDOWS\SYSTEM32\CATROOT2\EDB.LOG
* C:\WINDOWS\SYSTEM32\CATROOT2\TMP.EDB
* C:\WINDOWS\SYSTEM32\CONFIG\SYSTEM.LOG
* C:\WINDOWS\SYSTEM32\CONFIG\SAM.LOG
* C:\WINDOWS\SYSTEM32\CONFIG\SECURITY
* C:\WINDOWS\SYSTEM32\CONFIG\SOFTWARE
* C:\WINDOWS\SYSTEM32\CONFIG\SYSTEM
* C:\WINDOWS\SYSTEM32\CONFIG\DEFAULT
* C:\WINDOWS\SYSTEM32\CONFIG\SAM
* C:\FOUND.001\FILE0000.CHK
* C:\FOUND.001\FILE0004.CHK
* C:\FOUND.001\FILE0005.CHK
* C:\FOUND.001\FILE0006.CHK
* C:\FOUND.001\FILE0007.CHK
* bios1.rom
* D:\MY MUSIC\EXECUTIONERS - IT'S GOING DOWN (FEAT LINKIN PARK).MP3
* D:\MY MUSIC\JUSTIN TIMBERLAKE - JUSTIFIED - CRY ME A RIVER.MP3
* D:\MY MUSIC\ROB THOMAS - FALLIN' TO PIECES.MP3
* D:\MY MUSIC\ICP - RARE - CHICKEN HUNTIN' ( CALIFORNIA LOVE REMIX) (1).MP3
* D:\MY MUSIC\WWE - HALLOWEEN SONGS - UNDERTAKER'S ORIGINAL WWF ENTRANCE MUSIC.MP3
* D:\JUNK\winzip110.exe\SETUP.WZ\WINZIP32.EX_

Options
Scanning engines:

* F-Secure Libra: 2.4.2, 2007-12-26
* F-Secure AVP: 7.0.171, 2007-12-28
* F-Secure Orion: 1.2.37, 2007-12-28
* F-Secure Blacklight: 1.0.64
* F-Secure Draco: 1.0.35, 0600-150-72
* F-Secure Pegasus: 1.19.0, 2007-11-18

Scanning options:

* Scan all files
* Scan inside archives
* Use Advanced heuristics

#7 hozzi19

hozzi19
  • Topic Starter

  • Members
  • 25 posts
  • OFFLINE
  •  
  • Local time:10:26 AM

Posted 30 December 2007 - 12:12 AM

Below is my log from AdAware, which found 206 privacy issues. I think I might have finally kicked this bug, but Im not sure.

Ad-Aware 2007 Build
Log File Created on: 2007-12-29 22:24:09
Using Definitions File: C:\Documents and Settings\All Users\Application Data\Lavasoft\Ad-Aware 2007\core.aawdef
Computer name: ACER-728C5152D8
Name of user performing scan: SYSTEM

System information
===========================
Number of processors: 2
Processor type: AMD Turion™ 64 X2 Mobile Technology TL-60
Memory Available: 68%
Total Physical Memory: 2145488896 Bytes
Available Physical Memory: 1458094080 Bytes
Total Page File Size: 4130516992 Bytes
Available On Page File: 3499147264 Bytes
Total Virtual Memory: 2147352576 Bytes
Available Virtual Memory: 1990762496 Bytes
OS: Microsoft Windows XP Service Pack 2 (Build 2600)

Ad-Aware 2007 Settings
===========================
Skipping files larger than 1048576 kB
Ignoring infections with lower TAI than: 2


Extended Ad-Aware 2007 Settings
===========================
Unloading known modules during scan
Ignoring spanned files when scanning cab archives
Reanalyzing results after scanning before displaying results
Trying to unload modules prior to removal
Let Windows remove files currently in use at next reboot
Removing quarantined objects after restore
Deactivating Ad-Watch during scans
Writeprotecting system files after repairs
Include info about ignored objects in log file
Including basic settings in log file
Including advanced settings in log file
Including user and computer name in log file
Create and save WebUpdate log file

Databaseinfo
===========================
Version number: 41
Build Number: 0
Build Date and Time: 2007/12/27 03:11:56

Scan Statistics
===========================
Method: Full
Scan tracking cookies.............................: On
Scan ADS filestreams..............................: Off

Item Scanned: 254259
Infections Detected: 206
Infections Ignored: 0

Scan detailed statistics
===========================
Type Critical Total
Process Scan....: 0 0
Registry Scan...: 0 0
Registry PE Scan: 0 0
Hosts File Scan.: 0 0
File Scan.......: 0 0
Folder Scan.....: 0 0
LSP Scan........: 0 0
ADS Scan........: 0 0
Cookie Scan.....: 204 204
File Hash Scan..: 0 0

Infections Found
===========================
Family Id: 725 Name: Tracking Cookie Category: DataMiner TAI:3
Item Id: 600000190 Value: Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt www.googleadservices.com Conversion /pagead/conversion/1068500656/
Item Id: 600000068 Value: Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt statse.webtrendslive.com ACOOKIE /
Item Id: 600000409 Value: Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt server.iad.liveperson.net HumanClickID /
Item Id: 600000409 Value: Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt server.iad.liveperson.net HumanClickACTIVE /
Item Id: 600000212 Value: Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt 2o7.net s_vi_ieeacdmieg /
Item Id: 600000212 Value: Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt 2o7.net s_vi_lfiegzmfkx60lozf /
Item Id: 600000212 Value: Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt 2o7.net s_vi_yixxczzyncs /
Item Id: 600000212 Value: Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt 2o7.net s_vi_x7Dmx7Cgx7Ex7Ex7Dfizxxx7Ex7Ca /
Item Id: 600000212 Value: Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt 2o7.net s_vi_xxhybx7Bx7Bxxclx7Fx7D /
Item Id: 600000212 Value: Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt 2o7.net s_vi_tfjdkre /
Item Id: 600000212 Value: Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt 2o7.net s_vi_x7Bmizx7Bkge /
Item Id: 600000212 Value: Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt 2o7.net s_vi_x7Fbynyjhx60hdf /
Item Id: 600000212 Value: Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt 2o7.net s_vi_atamox7Ecaihem /
Item Id: 600000212 Value: Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt 2o7.net s_vi_xxeaix7Fcyxxdix7Eb /
Item Id: 600000212 Value: Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt 2o7.net s_vi_x7Cjgfjyx7Fcdfn /
Item Id: 600000212 Value: Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt 2o7.net s_vi_hex7Foczix7Eomx7Eh /
Item Id: 600000212 Value: Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt 2o7.net s_vi_omnx60ix7Fyx7Cx7Ccx7Exx /
Item Id: 600000212 Value: Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt 2o7.net s_vi_sqrx7Cusqrx7Cufycyx7Fx7E /
Item Id: 600000212 Value: Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt 2o7.net s_vi_x7Dkfgkxxx7Eieg /
Item Id: 600000212 Value: Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt 2o7.net s_vi_jdgrngx7Bjlnxx /
Item Id: 600000212 Value: Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt 2o7.net s_vi_x7Divqx7Dyx7Ciqx7Esucdbi /
Item Id: 600000212 Value: Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt 2o7.net s_vi_kjodgjid /
Item Id: 600000212 Value: Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt 2o7.net s_vi_nzx60jshelz /
Item Id: 600000212 Value: Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt 2o7.net s_vi_fobbcox7Ceglcmac /
Item Id: 600000212 Value: Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt 2o7.net s_vi_clyjhblcdx60lax7E /
Item Id: 600000212 Value: Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt 2o7.net s_vi_bmxxkickx60cnmx60 /
Item Id: 600000212 Value: Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt 2o7.net s_vi_sqrx7Cux7Fx60dyx7Dex7Dx3Esx7Fx7D /
Item Id: 600000212 Value: Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt 2o7.net s_vi_gijupe /
Item Id: 600000212 Value: Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt 2o7.net s_vi_fhkpwjv /
Item Id: 600000212 Value: Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt paypal.112.2o7.net s_vi /
Item Id: 600000460 Value: Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt ad.yieldmanager.com uid /
Item Id: 600000460 Value: Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt ad.yieldmanager.com fl_inst /
Item Id: 600000460 Value: Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt ad.yieldmanager.com ih /
Item Id: 600000179 Value: Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt atdmt.com AA002 /
Item Id: 600000144 Value: Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt doubleclick.net id /
Item Id: 600000187 Value: Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt advertising.com C2 /
Item Id: 600000187 Value: Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt advertising.com F1 /
Item Id: 600000187 Value: Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt advertising.com ACID /
Item Id: 600000187 Value: Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt advertising.com BASE /
Item Id: 600000187 Value: Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt advertising.com ROLL /
Item Id: 600000073 Value: Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt adopt.specificclick.net DGI /
Item Id: 600000073 Value: Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt adopt.specificclick.net UI /
Item Id: 600000073 Value: Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt adopt.specificclick.net LO /
Item Id: 600000073 Value: Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt adopt.specificclick.net HS /
Item Id: 600000073 Value: Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt adopt.specificclick.net CTCI /
Item Id: 600000073 Value: Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt adopt.specificclick.net DMEXP /
Item Id: 600000073 Value: Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt specificclick.net dmc /
Item Id: 600000073 Value: Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt specificclick.net dmk /
Item Id: 600000073 Value: Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt specificclick.net smc /
Item Id: 600000073 Value: Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt specificclick.net smk /
Item Id: 600000073 Value: Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt specificclick.net dmp /
Item Id: 600000073 Value: Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt specificclick.net smx /
Item Id: 600000085 Value: Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt questionmarket.com CS1 /
Item Id: 600000085 Value: Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt questionmarket.com ES /
Item Id: 600000126 Value: Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt hitbox.com CTG /
Item Id: 600000126 Value: Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt hitbox.com WSS_GW /
Item Id: 600000126 Value: Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt ehg-stacksandstacks.hitbox.com DM56111554ZNV6 /
Item Id: 600000437 Value: Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt bizrate.com roi_cookie /
Item Id: 600000491 Value: Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt roiservice.com msid938449107000026 /
Item Id: 600000491 Value: Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt roiservice.com msid938905107000023 /
Item Id: 600000491 Value: Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt roiservice.com msid931775107000021 /
Item Id: 600000437 Value: Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt bizrate.com br /
Item Id: 600000437 Value: Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt bizrate.com rv_merchants /
Item Id: 600000050 Value: Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt tribalfusion.com ANON_ID /
Item Id: 600000661 Value: Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt kontera.com clcks /
Item Id: 600000661 Value: Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt kontera.com cluid /
Item Id: 600000661 Value: Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt kontera.com imprs /
Item Id: 600000661 Value: Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt kontera.com limps /
Item Id: 600000400 Value: Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt tacoda.net TID /
Item Id: 600000400 Value: Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt tacoda.net TData /
Item Id: 600000400 Value: Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt tacoda.net Tcc /
Item Id: 600000282 Value: Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt data.coremetrics.com CoreID6 /
Item Id: 600000505 Value: Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt www.bullguard.com dnb23key /
Item Id: 600000505 Value: Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt www.bullguard.com affiliate /
Item Id: 600000505 Value: Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt www.bullguard.com buyaffiliate /
Item Id: 600000505 Value: Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt www.bullguard.com subaffiliate /
Item Id: 600000505 Value: Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt www.bullguard.com fpc1000639991288 /
Item Id: 600000093 Value: Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt ads.pointroll.com PRpl /
Item Id: 600000093 Value: Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt ads.pointroll.com PRcr /
Item Id: 600000093 Value: Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt ads.pointroll.com PRcp /
Item Id: 600000093 Value: Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt ads.pointroll.com PRimp /
Item Id: 600000093 Value: Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt ads.pointroll.com PRpc /
Item Id: 600000093 Value: Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt ads.pointroll.com PRca /
Item Id: 600000093 Value: Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt ads.pointroll.com PRID /
Item Id: 600000093 Value: Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt ads.pointroll.com PRpb /
Item Id: 600000093 Value: Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt ads.pointroll.com PRaf /
Item Id: 600000093 Value: Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt ads.pointroll.com PRev5068.21916 /
Item Id: 600000390 Value: Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt www.buydig.com LastViewedProduct_bd /
Item Id: 600000212 Value: Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt beachcamera.122.2o7.net s_vi /
Item Id: 600000126 Value: Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt ehg-bestbuy.hitbox.com DM540724E8RDV6 /
Item Id: 600000126 Value: Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt ehg-bestbuy.hitbox.com WSS_MIGRATION /
Item Id: 600000138 Value: Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt fastclick.net rt /
Item Id: 600000138 Value: Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt fastclick.net zru /
Item Id: 600000415 Value: Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt revsci.net rsi_cls_1000000 /
Item Id: 600000415 Value: Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt revsci.net rsi_segs_1000000 /
Item Id: 600000415 Value: Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt revsci.net NETSEGS_C05504 /
Item Id: 600000415 Value: Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt revsci.net NETID01 /
Item Id: 600000415 Value: Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt revsci.net NETSEGS_A06544 /
Item Id: 600000415 Value: Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt revsci.net NETSEGS_K05540 /
Item Id: 600000415 Value: Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt revsci.net NETSEGS_G07610 /
Item Id: 600000488 Value: Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt indextools.com itvisitorid1000639991288 /
Item Id: 600000513 Value: Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt adbrite.com Apache /
Item Id: 600000513 Value: Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt adbrite.com b /
Item Id: 600000458 Value: Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt adlegend.com PrefID /
Item Id: 600000457 Value: Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt adopt.euroclick.com UI /
Item Id: 600000083 Value: Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt adwarealert.com stats_hop /
Item Id: 600000083 Value: Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt adwarealert.com stats_ref /
Item Id: 600000083 Value: Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt adwarealert.com stats_time /
Item Id: 600000083 Value: Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt adwarealert.com __utmz /
Item Id: 600000083 Value: Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt adwarealert.com __utma /
Item Id: 600000199 Value: Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt angelfire.lycos.com CookieStatus /
Item Id: 600000171 Value: Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt bs.serving-sys.com eyeblaster /
Item Id: 600000212 Value: Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt buycom.122.2o7.net s_vi /
Item Id: 600000304 Value: Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt cooking.adbureau.net GUID /
Item Id: 600000530 Value: Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt dealtime.com DealTimeUserID /
Item Id: 600000212 Value: Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt drugstore.112.2o7.net s_vi /
Item Id: 600000102 Value: Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt e-2dj6wfkykhazieq.stats.esomniture.com s_vi_0xxx3Bx7Bx0Ax2Cxxdx26x0Ax3Dx0Ax2Fgx0Ax25x27x0A781x3Fcx22x0Ax23x3Bx0Ax2Cxxdx26x0A0x0Ax2Fgx0Ax25x27x0A4g1x3Fcx22x0A3x3Ex0Ax2Cx0Ax3Ex3Dx0A4x0Ax2Fx3Cx0A0x24x0A4x0Ax221x3Fcx2Dlx3Bx0Ax2Cxxdx260x0Ax24xxgxxg /
Item Id: 600000102 Value: Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt e-2dj6wjkokjdjago.stats.esomniture.com s_vi_6x7Ex3Dx0Cx2Ax7Dx7Ebx20x0Cx3Bx0Cx29ax0Cx23x21x0C1x3E79ex24x0Cx25x3Dx0Cx2Ax7Ebx20x0C6x0Cx29ax0Cx23x21x0C2a79ex24x0C98x3Cx0C89x0C7x0C92x0C4x3Cx24x7Eb79ex2Bjx3Dx0Cx2Ax7Ebx206x0Cx22x7Eax7Ea /
Item Id: 600000332 Value: Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt edge.ru4.com ru4.1390 /
Item Id: 600000332 Value: Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt edge.ru4.com ru4.1230 /
Item Id: 600000332 Value: Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt edge.ru4.com ru4.1391 /
Item Id: 600000332 Value: Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt edge.ru4.com ru4.1312 /
Item Id: 600000332 Value: Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt edge.ru4.com ru4.1357 /
Item Id: 600000332 Value: Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt edge.ru4.com ru4.1358 /
Item Id: 600000332 Value: Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt edge.ru4.com ru4.1427 /
Item Id: 600000332 Value: Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt edge.ru4.com ru4.1473 /
Item Id: 600000332 Value: Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt edge.ru4.com ru4.224.track /
Item Id: 600000332 Value: Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt edge.ru4.com ru4.uid /
Item Id: 600000212 Value: Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt electronicarts.112.2o7.net s_vi /
Item Id: 600000212 Value: Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt firemountaingems.122.2o7.net s_vi /
Item Id: 600000610 Value: Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt freeze.com UserID /
Item Id: 600000610 Value: Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt freeze.com PrpGuid /
Item Id: 600000190 Value: Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt gcc-00.googleadservices.com GoogleCookieCrumble /gcc
Item Id: 600000190 Value: Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt gcc-08.googleadservices.com GoogleCookieCrumble /gcc
Item Id: 600000212 Value: Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt homestore.122.2o7.net s_vi /
Item Id: 600000425 Value: Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt indexstats.com itvisitorid10001713091966 /
Item Id: 600000425 Value: Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt indexstats.com itvisitorid10001016953320 /
Item Id: 600000555 Value: Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt insightexpressai.com IXAIBannerCounter20266 /
Item Id: 600000555 Value: Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt insightexpressai.com IXAIBanners755 /
Item Id: 600000555 Value: Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt insightexpressai.com IXAIBannerCounter23032 /
Item Id: 600000555 Value: Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt insightexpressai.com IXAIBanners816 /
Item Id: 600000555 Value: Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt insightexpressai.com IXAICampaignCounter816 /
Item Id: 600000555 Value: Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt insightexpressai.com IXAIControlCounter816 /
Item Id: 600000555 Value: Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt insightexpressai.com IXAIBannerCounter22489 /
Item Id: 600000555 Value: Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt insightexpressai.com IXAIBanners805 /
Item Id: 600000555 Value: Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt insightexpressai.com IXAIFirstHit898 /
Item Id: 600000555 Value: Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt insightexpressai.com IXAIBannerCounter25811 /
Item Id: 600000555 Value: Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt insightexpressai.com IXAIBannerCounter15938 /
Item Id: 600000555 Value: Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt insightexpressai.com IXAIBanners608 /
Item Id: 600000555 Value: Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt insightexpressai.com IXAIBannerCounter24318 /
Item Id: 600000555 Value: Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt insightexpressai.com IXAIBannerCounter25796 /
Item Id: 600000555 Value: Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt insightexpressai.com IXAIBanners848 /
Item Id: 600000555 Value: Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt insightexpressai.com IXAIBanners898 /
Item Id: 600000555 Value: Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt insightexpressai.com IXAICampaignCounter848 /
Item Id: 600000555 Value: Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt insightexpressai.com IXAICampaignCounter898 /
Item Id: 600000555 Value: Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt insightexpressai.com IXAIFirstHit848 /
Item Id: 600000555 Value: Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt insightexpressai.com IXAILastHit848 /
Item Id: 600000555 Value: Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt insightexpressai.com IXAILastHit898 /
Item Id: 600000613 Value: Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt keywordmax.com KMVisitor /
Item Id: 600000212 Value: Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt metacafe.122.2o7.net s_vi /
Item Id: 600000212 Value: Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt msnservices.112.2o7.net s_vi /
Item Id: 600000212 Value: Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt njmvc.112.2o7.net s_vi /
Item Id: 600000212 Value: Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt onetoone.112.2o7.net s_vi /
Item Id: 600000101 Value: Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt overture.com CMUserData /
Item Id: 600000101 Value: Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt overture.com ConvData /
Item Id: 600000101 Value: Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt overture.com UserData /
Item Id: 600000095 Value: Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt perf.overture.com SYSTEM_USER_ID /
Item Id: 600000253 Value: Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt qksrv.net S /
Item Id: 600000253 Value: Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt qksrv.net LCLK /
Item Id: 600000083 Value: Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt real.com RNsites /
Item Id: 600000083 Value: Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt realestate.nytimes.com __utmz /
Item Id: 600000083 Value: Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt realestate.nytimes.com __utma /
Item Id: 600000083 Value: Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt realestateshows.com _dmnid /
Item Id: 600000083 Value: Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt realmedia.com andersenwindows /
Item Id: 600000083 Value: Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt realmedia.com tfsm061504 /
Item Id: 600000083 Value: Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt realmedia.com NXCLICK2 /
Item Id: 600000083 Value: Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt realmedia.com RMFD /
Item Id: 600000083 Value: Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt realmedia.com RMFL /
Item Id: 600000083 Value: Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt realmedia.com RMID /
Item Id: 600000083 Value: Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt realtor.com __utmz /
Item Id: 600000083 Value: Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt realtor.com RCSitePrefs /
Item Id: 600000083 Value: Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt realtor.com DART /
Item Id: 600000083 Value: Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt realtor.com __utma /
Item Id: 600000083 Value: Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt realtor.com HSID /
Item Id: 600000212 Value: Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt sears.112.2o7.net s_vi /
Item Id: 600000408 Value: Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt serving-sys.com A2 /
Item Id: 600000408 Value: Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt serving-sys.com B2 /
Item Id: 600000408 Value: Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt serving-sys.com C3 /
Item Id: 600000408 Value: Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt serving-sys.com D3 /
Item Id: 600000408 Value: Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt serving-sys.com E2 /
Item Id: 600000408 Value: Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt serving-sys.com U /
Item Id: 600000212 Value: Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt shopping.112.2o7.net s_vi /
Item Id: 600000052 Value: Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt trafficmp.com ctime /
Item Id: 600000052 Value: Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt trafficmp.com u /
Item Id: 600000052 Value: Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt trafficmp.com dmg2 /
Item Id: 600000052 Value: Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt trafficmp.com dly2 /
Item Id: 600000052 Value: Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt trafficmp.com hst2 /
Item Id: 600000052 Value: Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt trafficmp.com POVisit /
Item Id: 600000052 Value: Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt trafficmp.com TMPCrByAS /
Item Id: 600000052 Value: Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt trafficmp.com TMPFreqCap /
Item Id: 600000052 Value: Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt trafficmp.com TMPPOByAS /
Item Id: 600000052 Value: Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt trafficmp.com uid2 /
Item Id: 600000052 Value: Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt trafficmp.com rth /
Item Id: 600000464 Value: Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt valueclick.net ksa /
Family Id: 9999 Name: MRU Object Category: MRU Object TAI:0
Item Id: 1 Value: MRU Path: C:\Documents and Settings\FOXY\Recent Count: 18
Item Id: 3 Value: MRU Registry Key: S-1-5-21-3361955952-2774363808-1528818316-1005\Software\Microsoft\Internet Explorer\TypedURLs Count: 1

Items Ignored During Scan
===========================


Listing of running processes
===========================
C:\WINDOWS\SYSTEM32\SMSS.EXE
c:\windows\system32\smss.exe

c:\windows\system32\ntdll.dll

C:\WINDOWS\SYSTEM32\CSRSS.EXE
c:\windows\system32\csrss.exe

c:\windows\system32\ntdll.dll

c:\windows\system32\csrsrv.dll

c:\windows\system32\basesrv.dll

c:\windows\system32\winsrv.dll

c:\windows\system32\gdi32.dll

c:\windows\system32\kernel32.dll

c:\windows\system32\user32.dll

c:\windows\system32\lpk.dll

c:\windows\system32\usp10.dll

c:\windows\system32\msvcrt.dll

c:\windows\system32\advapi32.dll

c:\windows\system32\rpcrt4.dll

c:\windows\system32\secur32.dll

c:\windows\system32\sxs.dll

C:\WINDOWS\SYSTEM32\WINLOGON.EXE
c:\windows\system32\winlogon.exe

c:\windows\system32\ntdll.dll

c:\windows\system32\kernel32.dll

c:\windows\system32\advapi32.dll

c:\windows\system32\rpcrt4.dll

c:\windows\system32\secur32.dll

c:\windows\system32\authz.dll

c:\windows\system32\msvcrt.dll

c:\windows\system32\crypt32.dll

c:\windows\system32\user32.dll

c:\windows\system32\gdi32.dll

c:\windows\system32\msasn1.dll

c:\windows\system32\nddeapi.dll

c:\windows\system32\profmap.dll

c:\windows\system32\netapi32.dll

c:\windows\system32\userenv.dll

c:\windows\system32\psapi.dll

c:\windows\system32\regapi.dll

c:\windows\system32\setupapi.dll

c:\windows\system32\version.dll

c:\windows\system32\winsta.dll

c:\windows\system32\wintrust.dll

c:\windows\system32\imagehlp.dll

c:\windows\system32\ws2_32.dll

c:\windows\system32\ws2help.dll

c:\windows\system32\imm32.dll

c:\windows\system32\lpk.dll

c:\windows\system32\usp10.dll

c:\windows\system32\msgina.dll

c:\windows\system32\shell32.dll

c:\windows\system32\shlwapi.dll

c:\windows\system32\comctl32.dll

c:\windows\system32\odbc32.dll

c:\windows\system32\comdlg32.dll

c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2982_x-ww_ac3f9c03\comctl32.dll

c:\windows\system32\odbcint.dll

c:\windows\system32\shsvcs.dll

c:\windows\system32\sfc.dll

c:\windows\system32\sfc_os.dll

c:\windows\system32\ole32.dll

c:\windows\system32\apphelp.dll

c:\windows\system32\msctfime.ime

c:\windows\system32\winscard.dll

c:\windows\system32\wtsapi32.dll

c:\windows\system32\sxs.dll

c:\windows\system32\uxtheme.dll

c:\windows\system32\winmm.dll

c:\program files\superantispyware\saswinlo.dll

c:\windows\system32\oleaut32.dll

c:\windows\system32\wininet.dll

c:\windows\system32\normaliz.dll

c:\windows\system32\iertutil.dll

c:\windows\system32\ati2evxx.dll

c:\windows\system32\rsaenh.dll

c:\windows\system32\cscdll.dll

c:\windows\system32\wlnotify.dll

c:\windows\system32\winspool.drv

c:\windows\system32\mpr.dll

c:\windows\system32\samlib.dll

c:\windows\system32\cscui.dll

c:\windows\system32\xpsp2res.dll

c:\windows\system32\ntmarta.dll

c:\windows\system32\wldap32.dll

c:\windows\system32\msv1_0.dll

c:\windows\system32\iphlpapi.dll

c:\windows\system32\wdmaud.drv

c:\windows\system32\msacm32.drv

c:\windows\system32\msacm32.dll

c:\windows\system32\midimap.dll

c:\windows\system32\comres.dll

c:\windows\system32\clbcatq.dll

C:\WINDOWS\SYSTEM32\SERVICES.EXE
c:\windows\system32\services.exe

c:\windows\system32\ntdll.dll

c:\windows\system32\kernel32.dll

c:\windows\system32\msvcrt.dll

c:\windows\system32\advapi32.dll

c:\windows\system32\rpcrt4.dll

c:\windows\system32\secur32.dll

c:\windows\system32\user32.dll

c:\windows\system32\gdi32.dll

c:\windows\system32\userenv.dll

c:\windows\system32\scesrv.dll

c:\windows\system32\authz.dll

c:\windows\system32\umpnpmgr.dll

c:\windows\system32\winsta.dll

c:\windows\system32\netapi32.dll

c:\windows\system32\ncobjapi.dll

c:\windows\system32\msvcp60.dll

c:\windows\system32\shimeng.dll

c:\windows\apppatch\acgenral.dll

c:\windows\system32\winmm.dll

c:\windows\system32\ole32.dll

c:\windows\system32\oleaut32.dll

c:\windows\system32\msacm32.dll

c:\windows\system32\version.dll

c:\windows\system32\shell32.dll

c:\windows\system32\shlwapi.dll

c:\windows\system32\uxtheme.dll

c:\windows\system32\imm32.dll

c:\windows\system32\lpk.dll

c:\windows\system32\usp10.dll

c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2982_x-ww_ac3f9c03\comctl32.dll

c:\windows\system32\comctl32.dll

c:\windows\system32\apphelp.dll

c:\windows\system32\eventlog.dll

c:\windows\system32\ws2_32.dll

c:\windows\system32\ws2help.dll

c:\windows\system32\psapi.dll

c:\windows\system32\wtsapi32.dll

C:\WINDOWS\SYSTEM32\LSASS.EXE
c:\windows\system32\lsass.exe

c:\windows\system32\ntdll.dll

c:\windows\system32\kernel32.dll

c:\windows\system32\advapi32.dll

c:\windows\system32\rpcrt4.dll

c:\windows\system32\secur32.dll

c:\windows\system32\lsasrv.dll

c:\windows\system32\mpr.dll

c:\windows\system32\user32.dll

c:\windows\system32\gdi32.dll

c:\windows\system32\msasn1.dll

c:\windows\system32\msvcrt.dll

c:\windows\system32\netapi32.dll

c:\windows\system32\ntdsapi.dll

c:\windows\system32\dnsapi.dll

c:\windows\system32\ws2_32.dll

c:\windows\system32\ws2help.dll

c:\windows\system32\wldap32.dll

c:\windows\system32\samlib.dll

c:\windows\system32\samsrv.dll

c:\windows\system32\cryptdll.dll

c:\windows\system32\shimeng.dll

c:\windows\apppatch\acgenral.dll

c:\windows\system32\winmm.dll

c:\windows\system32\ole32.dll

c:\windows\system32\oleaut32.dll

c:\windows\system32\msacm32.dll

c:\windows\system32\version.dll

c:\windows\system32\shell32.dll

c:\windows\system32\shlwapi.dll

c:\windows\system32\userenv.dll

c:\windows\system32\uxtheme.dll

c:\windows\system32\imm32.dll

c:\windows\system32\lpk.dll

c:\windows\system32\usp10.dll

c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2982_x-ww_ac3f9c03\comctl32.dll

c:\windows\system32\comctl32.dll

c:\windows\system32\msprivs.dll

c:\windows\system32\kerberos.dll

c:\windows\system32\msv1_0.dll

c:\windows\system32\iphlpapi.dll

c:\windows\system32\netlogon.dll

c:\windows\system32\w32time.dll

c:\windows\system32\msvcp60.dll

c:\windows\system32\schannel.dll

c:\windows\system32\crypt32.dll

c:\windows\system32\wdigest.dll

c:\windows\system32\rsaenh.dll

c:\windows\system32\setupapi.dll

c:\windows\system32\scecli.dll

c:\windows\system32\ipsecsvc.dll

c:\windows\system32\authz.dll

c:\windows\system32\oakley.dll

c:\windows\system32\winipsec.dll

c:\windows\system32\mswsock.dll

c:\windows\system32\hnetcfg.dll

c:\windows\system32\wshtcpip.dll

c:\windows\system32\pstorsvc.dll

c:\windows\system32\psbase.dll

c:\windows\system32\dssenh.dll

C:\WINDOWS\SYSTEM32\ATI2EVXX.EXE
c:\windows\system32\ati2evxx.exe

c:\windows\system32\ntdll.dll

c:\windows\system32\kernel32.dll

c:\windows\system32\user32.dll

c:\windows\system32\gdi32.dll

c:\windows\system32\ole32.dll

c:\windows\system32\advapi32.dll

c:\windows\system32\rpcrt4.dll

c:\windows\system32\secur32.dll

c:\windows\system32\msvcrt.dll

c:\windows\system32\oleaut32.dll

c:\windows\system32\imm32.dll

c:\windows\system32\lpk.dll

c:\windows\system32\usp10.dll

c:\windows\system32\msctfime.ime

c:\windows\system32\ati2edxx.dll

c:\windows\system32\uxtheme.dll

c:\windows\system32\sssensor.dll

C:\WINDOWS\SYSTEM32\SVCHOST.EXE
c:\windows\system32\svchost.exe

c:\windows\system32\ntdll.dll

c:\windows\system32\kernel32.dll

c:\windows\system32\advapi32.dll

c:\windows\system32\rpcrt4.dll

c:\windows\system32\secur32.dll

c:\windows\system32\shimeng.dll

c:\windows\apppatch\acgenral.dll

c:\windows\system32\user32.dll

c:\windows\system32\gdi32.dll

c:\windows\system32\winmm.dll

c:\windows\system32\ole32.dll

c:\windows\system32\msvcrt.dll

c:\windows\system32\oleaut32.dll

c:\windows\system32\msacm32.dll

c:\windows\system32\version.dll

c:\windows\system32\shell32.dll

c:\windows\system32\shlwapi.dll

c:\windows\system32\userenv.dll

c:\windows\system32\uxtheme.dll

c:\windows\system32\imm32.dll

c:\windows\system32\lpk.dll

c:\windows\system32\usp10.dll

c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2982_x-ww_ac3f9c03\comctl32.dll

c:\windows\system32\comctl32.dll

c:\windows\system32\ntmarta.dll

c:\windows\system32\wldap32.dll

c:\windows\system32\samlib.dll

c:\windows\system32\rpcss.dll

c:\windows\system32\ws2_32.dll

c:\windows\system32\ws2help.dll

c:\windows\system32\xpsp2res.dll

c:\windows\system32\termsrv.dll

c:\windows\system32\icaapi.dll

c:\windows\system32\setupapi.dll

c:\windows\system32\wintrust.dll

c:\windows\system32\crypt32.dll

c:\windows\system32\msasn1.dll

c:\windows\system32\imagehlp.dll

c:\windows\system32\authz.dll

c:\windows\system32\mstlsapi.dll

c:\windows\system32\activeds.dll

c:\windows\system32\adsldpc.dll

c:\windows\system32\netapi32.dll

c:\windows\system32\atl.dll

c:\windows\system32\regapi.dll

c:\windows\system32\rsaenh.dll

c:\windows\system32\clbcatq.dll

c:\windows\system32\comres.dll

c:\windows\system32\wtsapi32.dll

c:\windows\system32\winsta.dll

c:\windows\system32\msv1_0.dll

c:\windows\system32\iphlpapi.dll

c:\windows\system32\apphelp.dll

c:\windows\system32\svchost.exe

c:\windows\system32\ntdll.dll

c:\windows\system32\kernel32.dll

c:\windows\system32\advapi32.dll

c:\windows\system32\rpcrt4.dll

c:\windows\system32\secur32.dll

c:\windows\system32\shimeng.dll

c:\windows\apppatch\acgenral.dll

c:\windows\system32\user32.dll

c:\windows\system32\gdi32.dll

c:\windows\system32\winmm.dll

c:\windows\system32\ole32.dll

c:\windows\system32\msvcrt.dll

c:\windows\system32\oleaut32.dll

c:\windows\system32\msacm32.dll

c:\windows\system32\version.dll

c:\windows\system32\shell32.dll

c:\windows\system32\shlwapi.dll

c:\windows\system32\userenv.dll

c:\windows\system32\uxtheme.dll

c:\windows\system32\imm32.dll

c:\windows\system32\lpk.dll

c:\windows\system32\usp10.dll

c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2982_x-ww_ac3f9c03\comctl32.dll

c:\windows\system32\comctl32.dll

c:\windows\system32\rpcss.dll

c:\windows\system32\ws2_32.dll

c:\windows\system32\ws2help.dll

c:\windows\system32\xpsp2res.dll

c:\windows\system32\rsaenh.dll

c:\windows\system32\mswsock.dll

c:\windows\system32\hnetcfg.dll

c:\windows\system32\wshtcpip.dll

c:\windows\system32\dnsapi.dll

c:\windows\system32\iphlpapi.dll

c:\windows\system32\winrnr.dll

c:\windows\system32\wldap32.dll

c:\windows\system32\wshbth.dll

c:\windows\system32\setupapi.dll

c:\windows\system32\rasadhlp.dll

c:\windows\system32\clbcatq.dll

c:\windows\system32\comres.dll

c:\windows\system32\svchost.exe

c:\windows\system32\ntdll.dll

c:\windows\system32\kernel32.dll

c:\windows\system32\advapi32.dll

c:\windows\system32\rpcrt4.dll

c:\windows\system32\secur32.dll

c:\windows\system32\shimeng.dll

c:\windows\apppatch\acgenral.dll

c:\windows\system32\user32.dll

c:\windows\system32\gdi32.dll

c:\windows\system32\winmm.dll

c:\windows\system32\ole32.dll

c:\windows\system32\msvcrt.dll

c:\windows\system32\oleaut32.dll

c:\windows\system32\msacm32.dll

c:\windows\system32\version.dll

c:\windows\system32\shell32.dll

c:\windows\system32\shlwapi.dll

c:\windows\system32\userenv.dll

c:\windows\system32\uxtheme.dll

c:\windows\system32\imm32.dll

c:\windows\system32\lpk.dll

c:\windows\system32\usp10.dll

c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2982_x-ww_ac3f9c03\comctl32.dll

c:\windows\system32\comctl32.dll

c:\windows\system32\ntmarta.dll

c:\windows\system32\wldap32.dll

c:\windows\system32\samlib.dll

c:\windows\system32\xpsp2res.dll

c:\windows\system32\shsvcs.dll

c:\windows\system32\winsta.dll

c:\windows\system32\netapi32.dll

c:\windows\system32\dhcpcsvc.dll

c:\windows\system32\dnsapi.dll

c:\windows\system32\ws2_32.dll

c:\windows\system32\ws2help.dll

c:\windows\system32\iphlpapi.dll

c:\windows\system32\wzcsvc.dll

c:\windows\system32\rtutils.dll

c:\windows\system32\wmi.dll

c:\windows\system32\crypt32.dll

c:\windows\system32\msasn1.dll

c:\windows\system32\wtsapi32.dll

c:\windows\system32\esent.dll

c:\windows\system32\atl.dll

c:\windows\system32\irmon.dll

c:\windows\system32\rsaenh.dll

c:\windows\system32\msv1_0.dll

c:\windows\system32\mswsock.dll

c:\windows\system32\hnetcfg.dll

c:\windows\system32\clbcatq.dll

c:\windows\system32\comres.dll

c:\windows\system32\wshirda.dll

c:\windows\system32\msvcp60.dll

c:\windows\system32\wzcsapi.dll

c:\windows\system32\rastls.dll

c:\windows\system32\cryptui.dll

c:\windows\system32\wintrust.dll

c:\windows\system32\imagehlp.dll

c:\windows\system32\wininet.dll

c:\windows\system32\normaliz.dll

c:\windows\system32\iertutil.dll

c:\windows\system32\mprapi.dll

c:\windows\system32\activeds.dll

c:\windows\system32\adsldpc.dll

c:\windows\system32\setupapi.dll

c:\windows\system32\rasapi32.dll

c:\windows\system32\rasman.dll

c:\windows\system32\tapi32.dll

c:\windows\system32\schannel.dll

c:\windows\system32\winscard.dll

c:\windows\system32\raschap.dll

c:\windows\system32\schedsvc.dll

c:\windows\system32\ntdsapi.dll

c:\windows\system32\msidle.dll

c:\windows\system32\audiosrv.dll

c:\windows\system32\wkssvc.dll

c:\windows\system32\wshtcpip.dll

c:\windows\system32\cryptsvc.dll

c:\windows\system32\certcli.dll

c:\windows\system32\dmserver.dll

c:\windows\system32\ersvc.dll

c:\windows\system32\es.dll

c:\windows\pchealth\helpctr\binaries\pchsvc.dll

c:\windows\system32\hidserv.dll

c:\windows\system32\hid.dll

c:\windows\system32\srvsvc.dll

c:\windows\system32\netman.dll

c:\windows\system32\netshell.dll

c:\windows\system32\credui.dll

c:\windows\system32\seclogon.dll

c:\windows\system32\sens.dll

c:\windows\system32\srsvc.dll

c:\windows\system32\powrprof.dll

c:\windows\system32\tapisrv.dll

c:\windows\system32\psapi.dll

c:\windows\system32\trkwks.dll

c:\windows\system32\w32time.dll

c:\windows\system32\wbem\wmisvc.dll

c:\windows\system32\vssapi.dll

c:\windows\system32\wuauserv.dll

c:\windows\system32\wuaueng.dll

c:\windows\system32\winspool.drv

c:\windows\system32\winhttp.dll

c:\windows\system32\cabinet.dll

c:\windows\system32\mspatcha.dll

c:\windows\system32\browser.dll

c:\windows\system32\sxs.dll

c:\windows\system32\comsvcs.dll

c:\windows\system32\colbact.dll

c:\windows\system32\mtxclu.dll

c:\windows\system32\wsock32.dll

c:\windows\system32\clusapi.dll

c:\windows\system32\resutils.dll

c:\windows\system32\ipnathlp.dll

c:\windows\system32\authz.dll

c:\windows\system32\sfc.dll

c:\windows\system32\sfc_os.dll

c:\windows\system32\wscsvc.dll

c:\windows\system32\msi.dll

c:\windows\system32\wbem\wbemcomn.dll

c:\windows\system32\wbem\wbemcore.dll

c:\windows\system32\wbem\esscli.dll

c:\windows\system32\wbem\fastprox.dll

c:\windows\system32\wbem\wbemsvc.dll

c:\windows\system32\wbem\wmiutils.dll

c:\windows\system32\wbem\repdrvfs.dll

c:\windows\system32\wbem\wmiprvsd.dll

c:\windows\system32\ncobjapi.dll

c:\windows\system32\wbem\wbemess.dll

c:\windows\system32\wbem\ncprov.dll

c:\windows\system32\upnp.dll

c:\windows\system32\ssdpapi.dll

c:\windows\system32\rasadhlp.dll

c:\windows\system32\netcfgx.dll

c:\windows\system32\rasmans.dll

c:\windows\system32\winipsec.dll

c:\windows\system32\rastapi.dll

c:\windows\system32\unimdm.tsp

c:\windows\system32\uniplat.dll

c:\windows\system32\unimdmat.dll

c:\windows\system32\modemui.dll

c:\windows\system32\kmddsp.tsp

c:\windows\system32\ndptsp.tsp

c:\windows\system32\ipconf.tsp

c:\windows\system32\h323.tsp

c:\windows\system32\hidphone.tsp

c:\windows\system32\rasppp.dll

c:\windows\system32\ntlsapi.dll

c:\windows\system32\kerberos.dll

c:\windows\system32\cryptdll.dll

c:\windows\system32\rasdlg.dll

c:\windows\system32\msxml3.dll

c:\windows\system32\urlmon.dll

c:\windows\system32\apphelp.dll

c:\windows\system32\wups2.dll

c:\windows\system32\mlang.dll

c:\windows\system32\xmlprovi.dll

c:\windows\system32\catsrvut.dll

c:\windows\system32\catsrv.dll

c:\windows\system32\mfcsubs.dll

c:\windows\system32\mpr.dll

c:\windows\system32\wuapi.dll

C:\PROGRAM FILES\SYGATE\SPF\SMC.EXE
c:\program files\sygate\spf\smc.exe

c:\windows\system32\ntdll.dll

c:\windows\system32\kernel32.dll

c:\program files\sygate\spf\trident.dll

c:\program files\sygate\spf\tfman.dll

c:\windows\system32\user32.dll

c:\windows\system32\gdi32.dll

c:\windows\system32\advapi32.dll

c:\windows\system32\rpcrt4.dll

c:\windows\system32\secur32.dll

c:\windows\system32\shlwapi.dll

c:\windows\system32\msvcrt.dll

c:\program files\sygate\spf\tse.dll

c:\program files\sygate\spf\dataman.dll

c:\windows\system32\ole32.dll

c:\windows\system32\oleaut32.dll

c:\program files\sygate\spf\pssensor.dll

c:\windows\system32\sssensor.dll

c:\program files\sygate\spf\spnet.dll

c:\windows\system32\ws2_32.dll

c:\windows\system32\ws2help.dll

c:\windows\system32\shell32.dll

c:\windows\system32\comdlg32.dll

c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2982_x-ww_ac3f9c03\comctl32.dll

c:\windows\system32\winspool.drv

c:\windows\system32\version.dll

c:\program files\sygate\spf\idstrafficpipe.dll

c:\program files\sygate\spf\wpsman.dll

c:\program files\sygate\spf\wsman.dll

c:\windows\system32\snmpapi.dll

c:\windows\system32\iphlpapi.dll

c:\program files\sygate\spf\wgman.dll

c:\program files\sygate\spf\sylog.dll

c:\program files\sygate\spf\netport.dll

c:\windows\system32\wsock32.dll

c:\program files\sygate\spf\sylink.dll

c:\windows\system32\netapi32.dll

c:\windows\system32\wininet.dll

c:\windows\system32\normaliz.dll

c:\windows\system32\iertutil.dll

c:\windows\system32\oledlg.dll

c:\windows\system32\olepro32.dll

c:\windows\system32\imm32.dll

c:\windows\system32\lpk.dll

c:\windows\system32\usp10.dll

c:\windows\system32\clbcatq.dll

c:\windows\system32\comres.dll

c:\windows\system32\ntmarta.dll

c:\windows\system32\wldap32.dll

c:\windows\system32\samlib.dll

c:\windows\system32\wbem\wbemprox.dll

c:\windows\system32\wbem\wbemcomn.dll

c:\windows\system32\xpsp2res.dll

c:\windows\system32\wbem\wbemsvc.dll

c:\windows\system32\wbem\fastprox.dll

c:\windows\system32\msvcp60.dll

c:\windows\system32\ntdsapi.dll

c:\windows\system32\dnsapi.dll

c:\windows\system32\psapi.dll

c:\windows\system32\rasapi32.dll

c:\windows\system32\rasman.dll

c:\windows\system32\tapi32.dll

c:\windows\system32\rtutils.dll

c:\windows\system32\winmm.dll

c:\windows\system32\mprapi.dll

c:\windows\system32\activeds.dll

c:\windows\system32\adsldpc.dll

c:\windows\system32\atl.dll

c:\windows\system32\setupapi.dll

c:\windows\system32\mswsock.dll

c:\windows\system32\hnetcfg.dll

c:\windows\system32\wshtcpip.dll

c:\windows\system32\msxml3.dll

c:\windows\system32\userenv.dll

c:\windows\system32\msv1_0.dll

c:\windows\system32\crypt32.dll

c:\windows\system32\msasn1.dll

c:\windows\system32\rsaenh.dll

c:\windows\system32\uxtheme.dll

c:\windows\system32\cryptnet.dll

c:\windows\system32\winhttp.dll

c:\windows\system32\sensapi.dll

c:\windows\system32\winrnr.dll

c:\windows\system32\wshbth.dll

c:\windows\system32\rasadhlp.dll

c:\windows\system32\vdmdbg.dll

c:\windows\system32\msctfime.ime

c:\windows\system32\riched32.dll

c:\windows\system32\riched20.dll

C:\WINDOWS\SYSTEM32\SVCHOST.EXE
c:\windows\system32\svchost.exe

c:\windows\system32\ntdll.dll

c:\windows\system32\kernel32.dll

c:\windows\system32\advapi32.dll

c:\windows\system32\rpcrt4.dll

c:\windows\system32\secur32.dll

c:\windows\system32\shimeng.dll

c:\windows\apppatch\acgenral.dll

c:\windows\system32\user32.dll

c:\windows\system32\gdi32.dll

c:\windows\system32\winmm.dll

c:\windows\system32\ole32.dll

c:\windows\system32\msvcrt.dll

c:\windows\system32\oleaut32.dll

c:\windows\system32\msacm32.dll

c:\windows\system32\version.dll

c:\windows\system32\shell32.dll

c:\windows\system32\shlwapi.dll

c:\windows\system32\userenv.dll

c:\windows\system32\uxtheme.dll

c:\windows\system32\imm32.dll

c:\windows\system32\lpk.dll

c:\windows\system32\usp10.dll

c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2982_x-ww_ac3f9c03\comctl32.dll

c:\windows\system32\comctl32.dll

c:\windows\system32\dnsrslvr.dll

c:\windows\system32\dnsapi.dll

c:\windows\system32\ws2_32.dll

c:\windows\system32\ws2help.dll

c:\windows\system32\iphlpapi.dll

c:\windows\system32\mswsock.dll

c:\windows\system32\hnetcfg.dll

c:\windows\system32\wshtcpip.dll

c:\windows\system32\svchost.exe

c:\windows\system32\ntdll.dll

c:\windows\system32\kernel32.dll

c:\windows\system32\advapi32.dll

c:\windows\system32\rpcrt4.dll

c:\windows\system32\secur32.dll

c:\windows\system32\shimeng.dll

c:\windows\apppatch\acgenral.dll

c:\windows\system32\user32.dll

c:\windows\system32\gdi32.dll

c:\windows\system32\winmm.dll

c:\windows\system32\ole32.dll

c:\windows\system32\msvcrt.dll

c:\windows\system32\oleaut32.dll

c:\windows\system32\msacm32.dll

c:\windows\system32\version.dll

c:\windows\system32\shell32.dll

c:\windows\system32\shlwapi.dll

c:\windows\system32\userenv.dll

c:\windows\system32\uxtheme.dll

c:\windows\system32\imm32.dll

c:\windows\system32\lpk.dll

c:\windows\system32\usp10.dll

c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2982_x-ww_ac3f9c03\comctl32.dll

c:\windows\system32\comctl32.dll

c:\windows\system32\ntmarta.dll

c:\windows\system32\wldap32.dll

c:\windows\system32\samlib.dll

c:\windows\system32\xpsp2res.dll

c:\windows\system32\lmhsvc.dll

c:\windows\system32\iphlpapi.dll

c:\windows\system32\ws2_32.dll

c:\windows\system32\ws2help.dll

c:\windows\system32\webclnt.dll

c:\windows\system32\wininet.dll

c:\windows\system32\normaliz.dll

c:\windows\system32\iertutil.dll

c:\windows\system32\regsvc.dll

c:\windows\system32\ssdpsrv.dll

c:\windows\system32\hnetcfg.dll

c:\windows\system32\clbcatq.dll

c:\windows\system32\comres.dll

c:\windows\system32\mswsock.dll

c:\windows\system32\wshtcpip.dll

c:\windows\system32\rsaenh.dll

c:\windows\system32\httpapi.dll

c:\windows\system32\winhttp.dll

C:\PROGRAM FILES\LAVASOFT\AD-AWARE 2007\AAWSERVICE.EXE
c:\program files\lavasoft\ad-aware 2007\aawservice.exe

c:\windows\system32\ntdll.dll

c:\windows\system32\kernel32.dll

c:\program files\lavasoft\ad-aware 2007\ceapi.dll

c:\windows\system32\advapi32.dll

c:\windows\system32\rpcrt4.dll

c:\windows\system32\secur32.dll

c:\program files\lavasoft\ad-aware 2007\pkarchive84cb.dll

c:\windows\system32\shell32.dll

c:\windows\system32\gdi32.dll

c:\windows\system32\user32.dll

c:\windows\system32\msvcrt.dll

c:\windows\system32\shlwapi.dll

c:\windows\system32\ole32.dll

c:\windows\system32\crypt32.dll

c:\windows\system32\msasn1.dll

c:\windows\system32\wldap32.dll

c:\windows\system32\psapi.dll

c:\windows\system32\version.dll

c:\windows\system32\wininet.dll

c:\windows\system32\normaliz.dll

c:\windows\system32\iertutil.dll

c:\program files\lavasoft\ad-aware 2007\update.dll

c:\windows\system32\wsock32.dll

c:\windows\system32\ws2_32.dll

c:\windows\system32\ws2help.dll

c:\windows\system32\userenv.dll

c:\windows\system32\imm32.dll

c:\windows\system32\lpk.dll

c:\windows\system32\usp10.dll

c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2982_x-ww_ac3f9c03\comctl32.dll

c:\windows\system32\comctl32.dll

c:\windows\system32\rsaenh.dll

C:\WINDOWS\SYSTEM32\ATI2EVXX.EXE
c:\windows\system32\ati2evxx.exe

c:\windows\system32\ntdll.dll

c:\windows\system32\kernel32.dll

c:\windows\system32\user32.dll

c:\windows\system32\gdi32.dll

c:\windows\system32\ole32.dll

c:\windows\system32\advapi32.dll

c:\windows\system32\rpcrt4.dll

c:\windows\system32\secur32.dll

c:\windows\system32\msvcrt.dll

c:\windows\system32\oleaut32.dll

c:\windows\system32\imm32.dll

c:\windows\system32\lpk.dll

c:\windows\system32\usp10.dll

c:\windows\system32\uxtheme.dll

c:\windows\system32\msctfime.ime

c:\windows\system32\ati2edxx.dll

c:\windows\system32\xpsp2res.dll

c:\windows\system32\clbcatq.dll

c:\windows\system32\comres.dll

c:\windows\system32\version.dll

c:\windows\system32\msctf.dll

c:\windows\system32\msvcp60.dll

c:\windows\system32\msnchathook.dll

c:\windows\system32\sysenv.dll

c:\windows\system32\shlwapi.dll

c:\windows\system32\shell32.dll

c:\windows\system32\comctl32.dll

c:\windows\system32\oleacc.dll

c:\windows\system32\winspool.drv

c:\windows\system32\cryptoapi.dll

c:\windows\system32\msvcr71.dll

c:\windows\system32\winmm.dll

c:\windows\system32\mfc71u.dll

c:\windows\system32\msvcp71.dll

c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2982_x-ww_ac3f9c03\comctl32.dll

c:\windows\system32\mfc71enu.dll

c:\windows\system32\sssensor.dll

C:\WINDOWS\EXPLORER.EXE
c:\windows\explorer.exe

c:\windows\system32\ntdll.dll

c:\windows\system32\kernel32.dll

c:\windows\system32\advapi32.dll

c:\windows\system32\rpcrt4.dll

c:\windows\system32\secur32.dll

c:\windows\system32\browseui.dll

c:\windows\system32\gdi32.dll

c:\windows\system32\user32.dll

c:\windows\system32\msvcrt.dll

c:\windows\system32\ole32.dll

c:\windows\system32\shlwapi.dll

c:\windows\system32\oleaut32.dll

c:\windows\system32\shdocvw.dll

c:\windows\system32\crypt32.dll

c:\windows\system32\msasn1.dll

c:\windows\system32\cryptui.dll

c:\windows\system32\wintrust.dll

c:\windows\system32\imagehlp.dll

c:\windows\system32\netapi32.dll

c:\windows\system32\wininet.dll

c:\windows\system32\normaliz.dll

c:\windows\system32\iertutil.dll

c:\windows\system32\wldap32.dll

c:\windows\system32\version.dll

c:\windows\system32\shell32.dll

c:\windows\system32\uxtheme.dll

c:\windows\system32\shimeng.dll

c:\windows\apppatch\acgenral.dll

c:\windows\system32\winmm.dll

c:\windows\system32\msacm32.dll

c:\windows\system32\userenv.dll

c:\windows\system32\imm32.dll

c:\windows\system32\lpk.dll

c:\windows\system32\usp10.dll

c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2982_x-ww_ac3f9c03\comctl32.dll

c:\windows\system32\comctl32.dll

c:\windows\system32\msctfime.ime

c:\windows\system32\apphelp.dll

c:\windows\system32\clbcatq.dll

c:\windows\system32\comres.dll

c:\windows\system32\cscui.dll

c:\windows\system32\cscdll.dll

c:\windows\system32\themeui.dll

c:\windows\system32\msimg32.dll

c:\windows\system32\xpsp2res.dll

c:\windows\system32\actxprxy.dll

c:\windows\system32\samlib.dll

c:\windows\system32\linkinfo.dll

c:\windows\system32\ntshrui.dll

c:\windows\system32\atl.dll

c:\windows\system32\msi.dll

c:\windows\system32\setupapi.dll

c:\windows\system32\ieframe.dll

c:\windows\system32\psapi.dll

c:\windows\system32\netshell.dll

c:\windows\system32\rtutils.dll

c:\windows\system32\credui.dll

c:\windows\system32\ws2_32.dll

c:\windows\system32\ws2help.dll

c:\windows\system32\iphlpapi.dll

c:\windows\system32\urlmon.dll

c:\windows\system32\msctf.dll

c:\windows\system32\mslbui.dll

c:\windows\system32\rsaenh.dll

c:\windows\system32\winsta.dll

c:\windows\system32\webcheck.dll

c:\windows\system32\stobject.dll

c:\windows\system32\batmeter.dll

c:\windows\system32\powrprof.dll

c:\windows\system32\wtsapi32.dll

c:\windows\system32\wdmaud.drv

c:\windows\system32\msacm32.drv

c:\windows\system32\midimap.dll

c:\program files\common files\ahead\lib\nerodigitalext.dll

c:\program files\common files\ahead\lib\mfc71.dll

c:\program files\common files\ahead\lib\msvcr71.dll

c:\program files\common files\ahead\lib\msvcp71.dll

c:\windows\system32\mfc71enu.dll

c:\program files\pro imaging powertoys\microsoft raw image thumbnailer and viewer for windows xp\crawviewerextension.dll

c:\program files\pro imaging powertoys\microsoft photo info\msimgshellext.dll

c:\windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.42_x-ww_0de06acd\msvcr80.dll

c:\program files\adobe\acrobat 7.0\activex\pdfshell.dll

c:\program files\ati technologies\ati.ace\atiacmxx.dll

c:\program files\superantispyware\sasseh.dll

c:\windows\system32\msnchathook.dll

c:\windows\system32\sysenv.dll

c:\windows\system32\oleacc.dll

c:\windows\system32\msvcp60.dll

c:\windows\system32\winspool.drv

c:\windows\system32\cryptoapi.dll

c:\windows\system32\mfc71u.dll

c:\program files\common files\logitech\lvmvfm\lvprcinj.dll

c:\windows\system32\fxsst.dll

c:\windows\system32\fxsapi.dll

c:\windows\system32\wzcsapi.dll

c:\windows\system32\ntmarta.dll

c:\windows\system32\sssensor.dll

c:\windows\system32\mlang.dll

c:\windows\system32\mpr.dll

c:\windows\system32\drprov.dll

c:\windows\system32\ntlanman.dll

c:\windows\system32\netui0.dll

c:\windows\system32\netui1.dll

c:\windows\system32\netrap.dll

c:\windows\system32\davclnt.dll

c:\windows\system32\zipfldr.dll

c:\program files\winrar\rarext.dll

c:\program files\pro imaging powertoys\microsoft photo info\extractmetadata.dll

c:\windows\winsxs\x86_microsoft.vc80.atl_1fc8b3b9a1e18e3b_8.0.50727.42_x-ww_6e805841\atl80.dll

c:\windows\system32\browselc.dll

c:\windows\system32\sxs.dll

c:\windows\system32\duser.dll

c:\windows\system32\rasapi32.dll

c:\windows\system32\rasman.dll

c:\windows\system32\tapi32.dll

c:\acer\empowering technology\epower\syshook.dll

c:\windows\system32\mfc42.dll

c:\program files\superantispyware\sasctxmn.dll

c:\windows\system32\edsshellext.dll

c:\windows\system32\atl71.dll

c:\program files\g data antiviruskit\avk\shellext.dll

c:\windows\system32\btncopy.dll

c:\windows\system32\mydocs.dll

c:\program files\adobe\acrobat 7.0\activex\acroiehelper.dll

c:\progra~1\spybot~1\sdhelper.dll

c:\windows\system32\olepro32.dll

c:\program files\microsoft office\office11\msohev.dll

C:\WINDOWS\SYSTEM32\SPOOLSV.EXE
c:\windows\system32\spoolsv.exe

c:\windows\system32\ntdll.dll

c:\windows\system32\kernel32.dll

c:\windows\system32\advapi32.dll

c:\windows\system32\rpcrt4.dll

c:\windows\system32\secur32.dll

c:\windows\system32\gdi32.dll

c:\windows\system32\user32.dll

c:\windows\system32\msvcrt.dll

c:\windows\system32\shimeng.dll

c:\windows\apppatch\acgenral.dll

c:\windows\system32\winmm.dll

c:\windows\system32\ole32.dll

c:\windows\system32\oleaut32.dll

c:\windows\system32\msacm32.dll

c:\windows\system32\version.dll

c:\windows\system32\shell32.dll

c:\windows\system32\shlwapi.dll

c:\windows\system32\userenv.dll

c:\windows\system32\uxtheme.dll

c:\windows\system32\imm32.dll

c:\windows\system32\lpk.dll

c:\windows\system32\usp10.dll

c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2982_x-ww_ac3f9c03\comctl32.dll

c:\windows\system32\comctl32.dll

c:\windows\system32\spoolss.dll

c:\windows\system32\ws2_32.dll

c:\windows\system32\ws2help.dll

c:\windows\system32\dnsapi.dll

c:\windows\system32\iphlpapi.dll

c:\windows\system32\rasadhlp.dll

c:\windows\system32\localspl.dll

c:\windows\system32\sfc_os.dll

c:\windows\system32\wintrust.dll

c:\windows\system32\crypt32.dll

c:\windows\system32\msasn1.dll

c:\windows\system32\imagehlp.dll

c:\windows\system32\winspool.drv

c:\windows\system32\netapi32.dll

c:\windows\system32\cnbjmon.dll

c:\windows\system32\bthcrp.dll

c:\windows\system32\widcommsdk.dll

c:\windows\system32\wbtapi.dll

c:\windows\system32\setupapi.dll

c:\windows\system32\msi.dll

c:\windows\system32\mfc42.dll

c:\windows\system32\msvcp60.dll

c:\windows\system32\mswsock.dll

c:\windows\system32\mdimon.dll

c:\windows\system32\fxsmon.dll

c:\windows\system32\fxsevent.dll

c:\windows\system32\pjlmon.dll

c:\windows\system32\tcpmon.dll

c:\windows\system32\usbmon.dll

c:\windows\system32\spool\prtprocs\w32x86\mdippr.dll

c:\windows\system32\winrnr.dll

c:\windows\system32\wldap32.dll

c:\windows\system32\wshbth.dll

c:\windows\system32\win32spl.dll

c:\windows\system32\netrap.dll

c:\windows\system32\ntdsapi.dll

c:\windows\system32\clbcatq.dll

c:\windows\system32\comres.dll

c:\windows\system32\xpsp2res.dll

c:\windows\system32\inetpp.dll

C:\PROGRAM FILES\COMMON FILES\LOGITECH\LVMVFM\LVPRCSRV.EXE
c:\program files\common files\logitech\lvmvfm\lvprcsrv.exe

c:\windows\system32\ntdll.dll

c:\windows\system32\kernel32.dll

c:\windows\system32\version.dll

c:\windows\system32\psapi.dll

c:\windows\system32\user32.dll

c:\windows\system32\gdi32.dll

c:\windows\system32\advapi32.dll

c:\windows\system32\rpcrt4.dll

c:\windows\system32\secur32.dll

c:\windows\system32\shell32.dll

c:\windows\system32\msvcrt.dll

c:\windows\system32\shlwapi.dll

c:\windows\system32\imm32.dll

c:\windows\system32\lpk.dll

c:\windows\system32\usp10.dll

c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2982_x-ww_ac3f9c03\comctl32.dll

c:\windows\system32\comctl32.dll

C:\WINDOWS\RTHDCPL.EXE
c:\windows\rthdcpl.exe

c:\windows\system32\ntdll.dll

c:\windows\system32\kernel32.dll

c:\windows\system32\hhctrl.ocx

c:\windows\system32\msvcrt.dll

c:\windows\system32\user32.dll

c:\windows\system32\gdi32.dll

c:\windows\system32\advapi32.dll

c:\windows\system32\rpcrt4.dll

c:\windows\system32\secur32.dll

c:\windows\system32\shell32.dll

c:\windows\system32\shlwapi.dll

c:\windows\system32\comctl32.dll

c:\windows\system32\ole32.dll

c:\windows\system32\oleaut32.dll

c:\windows\system32\dsound.dll

c:\windows\system32\winmm.dll

c:\windows\system32\version.dll

c:\windows\system32\setupapi.dll

c:\windows\system32\mpr.dll

c:\windows\system32\winspool.drv

c:\windows\system32\comdlg32.dll

c:\windows\system32\imm32.dll

c:\windows\system32\lpk.dll

c:\windows\system32\usp10.dll

c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2982_x-ww_ac3f9c03\comctl32.dll

c:\windows\system32\uxtheme.dll

c:\windows\system32\msctfime.ime

c:\windows\system32\wintrust.dll

c:\windows\system32\crypt32.dll

c:\windows\system32\msasn1.dll

c:\windows\system32\imagehlp.dll

c:\windows\system32\wdmaud.drv

c:\windows\system32\msacm32.drv

c:\windows\system32\msacm32.dll

c:\windows\system32\midimap.dll

c:\windows\system32\msctf.dll

c:\windows\system32\apphelp.dll

c:\windows\system32\ksuser.dll

c:\windows\system32\msnchathook.dll

c:\windows\system32\sysenv.dll

c:\windows\system32\oleacc.dll

c:\windows\system32\msvcp60.dll

c:\windows\system32\cryptoapi.dll

c:\windows\system32\msvcr71.dll

c:\windows\system32\mfc71u.dll

c:\windows\system32\msvcp71.dll

c:\windows\system32\mfc71enu.dll

c:\windows\system32\sssensor.dll

C:\WINDOWS\SYSTEM32\RUNDLL32.EXE
c:\windows\system32\rundll32.exe

c:\windows\system32\ntdll.dll

c:\windows\system32\kernel32.dll

c:\windows\system32\msvcrt.dll

c:\windows\system32\gdi32.dll

c:\windows\system32\user32.dll

c:\windows\system32\imagehlp.dll

c:\windows\system32\shimeng.dll

c:\windows\apppatch\acgenral.dll

c:\windows\system32\advapi32.dll

c:\windows\system32\rpcrt4.dll

c:\windows\system32\secur32.dll

c:\windows\system32\winmm.dll

c:\windows\system32\ole32.dll

c:\windows\system32\oleaut32.dll

c:\windows\system32\msacm32.dll

c:\windows\system32\version.dll

c:\windows\system32\shell32.dll

c:\windows\system32\shlwapi.dll

c:\windows\system32\userenv.dll

c:\windows\system32\uxtheme.dll

c:\windows\system32\imm32.dll

c:\windows\system32\lpk.dll

c:\windows\system32\usp10.dll

c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2982_x-ww_ac3f9c03\comctl32.dll

c:\windows\system32\comctl32.dll

c:\windows\system32\bthprops.cpl

c:\windows\system32\devmgr.dll

c:\windows\system32\setupapi.dll

c:\windows\system32\wmi.dll

c:\windows\system32\mpr.dll

c:\windows\system32\msctfime.ime

c:\windows\system32\wintrust.dll

c:\windows\system32\crypt32.dll

c:\windows\system32\msasn1.dll

c:\windows\system32\msctf.dll

c:\windows\system32\msnchathook.dll

c:\windows\system32\sysenv.dll

c:\windows\system32\oleacc.dll

c:\windows\system32\msvcp60.dll

c:\windows\system32\winspool.drv

c:\windows\system32\cryptoapi.dll

c:\windows\system32\msvcr71.dll

c:\windows\system32\mfc71u.dll

c:\windows\system32\msvcp71.dll

c:\windows\system32\mfc71enu.dll

c:\windows\system32\sssensor.dll

C:\ACER\EMPOWERING TECHNOLOGY\EDATASECURITY\EDSLOADER.EXE
c:\acer\empowering technology\edatasecurity\edsloader.exe

c:\windows\system32\ntdll.dll

c:\windows\system32\kernel32.dll

c:\windows\system32\advapi32.dll

c:\windows\system32\rpcrt4.dll

c:\windows\system32\secur32.dll

c:\windows\system32\comctl32.dll

c:\windows\system32\gdi32.dll

c:\windows\system32\user32.dll

c:\windows\system32\keymanager.dll

c:\windows\system32\cryptoapi.dll

c:\windows\system32\msvcr71.dll

c:\windows\system32\winmm.dll

c:\windows\system32\msnchathook.dll

c:\windows\system32\sysenv.dll

c:\windows\system32\version.dll

c:\windows\system32\shlwapi.dll

c:\windows\system32\msvcrt.dll

c:\windows\system32\shell32.dll

c:\windows\system32\oleaut32.dll

c:\windows\system32\ole32.dll

c:\windows\system32\oleacc.dll

c:\windows\system32\msvcp60.dll

c:\windows\system32\winspool.drv

c:\windows\system32\mfc71u.dll

c:\windows\system32\msvcp71.dll

c:\windows\system32\psdutil.dll

c:\windows\system32\mpr.dll

c:\windows\system32\shfolder.dll

c:\windows\system32\showerrmsg.dll

c:\windows\system32\wtsapi32.dll

c:\windows\system32\winsta.dll

c:\windows\system32\netapi32.dll

c:\windows\system32\imm32.dll

c:\windows\system32\lpk.dll

c:\windows\system32\usp10.dll

c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2982_x-ww_ac3f9c03\comctl32.dll

c:\windows\system32\mfc71enu.dll

c:\windows\system32\uxtheme.dll

c:\windows\system32\msctf.dll

c:\windows\system32\msctfime.ime

c:\windows\system32\apphelp.dll

c:\windows\system32\clbcatq.dll

c:\windows\system32\comres.dll

c:\windows\system32\iertutil.dll

c:\windows\system32\urlmon.dll

c:\windows\system32\setupapi.dll

c:\windows\system32\sssensor.dll

C:\WINDOWS\SYSTEM32\CTFMON.EXE
c:\windows\system32\ctfmon.exe

c:\windows\system32\ntdll.dll

c:\windows\system32\kernel32.dll

c:\windows\system32\msvcrt.dll

c:\windows\system32\advapi32.dll

c:\windows\system32\rpcrt4.dll

c:\windows\system32\secur32.dll

c:\windows\system32\user32.dll

c:\windows\system32\gdi32.dll

c:\windows\system32\msctf.dll

c:\windows\system32\msutb.dll

c:\windows\system32\shimeng.dll

c:\windows\apppatch\acgenral.dll

c:\windows\system32\winmm.dll

c:\windows\system32\ole32.dll

c:\windows\system32\oleaut32.dll

c:\windows\system32\msacm32.dll

c:\windows\system32\version.dll

c:\windows\system32\shell32.dll

c:\windows\system32\shlwapi.dll

c:\windows\system32\userenv.dll

c:\windows\system32\uxtheme.dll

c:\windows\system32\imm32.dll

c:\windows\system32\lpk.dll

c:\windows\system32\usp10.dll

c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2982_x-ww_ac3f9c03\comctl32.dll

c:\windows\system32\msctfime.ime

c:\windows\system32\msnchathook.dll

c:\windows\system32\sysenv.dll

c:\windows\system32\oleacc.dll

c:\windows\system32\msvcp60.dll

c:\windows\system32\winspool.drv

c:\windows\system32\cryptoapi.dll

c:\windows\system32\msvcr71.dll

c:\windows\system32\mfc71u.dll

c:\windows\system32\msvcp71.dll

c:\windows\system32\mfc71enu.dll

c:\windows\system32\sssensor.dll

C:\PROGRAM FILES\SUPERANTISPYWARE\SUPERANTISPYWARE.EXE
c:\program files\superantispyware\superantispyware.exe

c:\windows\system32\ntdll.dll

c:\windows\system32\kernel32.dll

c:\windows\system32\user32.dll

c:\windows\system32\gdi32.dll

c:\windows\system32\shell32.dll

c:\windows\system32\advapi32.dll

c:\windows\system32\rpcrt4.dll

c:\windows\system32\secur32.dll

c:\windows\system32\msvcrt.dll

c:\windows\system32\shlwapi.dll

c:\windows\system32\ole32.dll

c:\windows\system32\oleaut32.dll

c:\windows\system32\winmm.dll

c:\windows\system32\version.dll

c:\windows\system32\imagehlp.dll

c:\program files\superantispyware\deupx.dll

c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2982_x-ww_ac3f9c03\comctl32.dll

c:\windows\system32\wininet.dll

c:\windows\system32\normaliz.dll

c:\windows\system32\iertutil.dll

c:\windows\system32\ws2_32.dll

c:\windows\system32\ws2help.dll

c:\windows\system32\comdlg32.dll

c:\windows\system32\imm32.dll

c:\windows\system32\lpk.dll

c:\windows\system32\usp10.dll

c:\windows\system32\uxtheme.dll

c:\windows\system32\msctf.dll

c:\windows\system32\hhctrl.ocx

c:\windows\system32\setupapi.dll

c:\windows\system32\urlmon.dll

c:\windows\system32\msctfime.ime

c:\windows\system32\psapi.dll

c:\windows\system32\clbcatq.dll

c:\windows\system32\comres.dll

c:\windows\system32\ieframe.dll

c:\windows\system32\msnchathook.dll

c:\windows\system32\sysenv.dll

c:\windows\system32\oleacc.dll

c:\windows\system32\msvcp60.dll

c:\windows\system32\winspool.drv

c:\windows\system32\cryptoapi.dll

c:\windows\system32\msvcr71.dll

c:\windows\system32\mfc71u.dll

c:\windows\system32\msvcp71.dll

c:\windows\system32\mfc71enu.dll

c:\windows\system32\apphelp.dll

c:\windows\system32\mshtml.dll

c:\windows\system32\msls31.dll

c:\windows\system32\mlang.dll

c:\program files\common files\microsoft shared\vs7debug\pdm.dll

c:\windows\system32\xpsp2res.dll

c:\program files\common files\microsoft shared\vs7debug\msdbg2.dll

c:\windows\system32\sssensor.dll

c:\windows\system32\msimtf.dll

c:\windows\system32\mslbui.dll

c:\windows\system32\netapi32.dll

c:\program files\superantispyware\sasseh.dll

c:\windows\ime\sptip.dll

c:\windows\ime\spgrmr.dll

c:\windows\system32\msi.dll

c:\program files\common files\microsoft shared\ink\skchui.dll

C:\PROGRAM FILES\PANTONE\HUEYPRO\HUEYPROTRAY.EXE
c:\program files\pantone\hueypro\hueyprotray.exe

c:\windows\system32\ntdll.dll

c:\windows\system32\kernel32.dll

c:\windows\system32\mscms.dll

c:\windows\system32\advapi32.dll

c:\windows\system32\rpcrt4.dll

c:\windows\system32\secur32.dll

c:\windows\system32\msvcrt.dll

c:\windows\system32\user32.dll

c:\windows\system32\gdi32.dll

c:\windows\system32\winspool.drv

c:\windows\system32\msimg32.dll

c:\windows\system32\setupapi.dll

c:\program files\pantone\hueypro\sipcal.dll

c:\program files\pantone\hueypro\cirrussdk.dll

c:\windows\system32\hid.dll

c:\windows\system32\comctl32.dll

c:\program files\pantone\hueypro\mfc42.dll

c:\windows\system32\shell32.dll

c:\windows\system32\shlwapi.dll

c:\windows\system32\ole32.dll

c:\program files\pantone\hueypro\msvcp60.dll

c:\windows\system32\imm32.dll

c:\windows\system32\lpk.dll

c:\windows\system32\usp10.dll

c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2982_x-ww_ac3f9c03\comctl32.dll

c:\program files\pantone\hueypro\hueytray_09.dll

c:\windows\system32\riched32.dll

c:\windows\system32\riched20.dll

c:\windows\system32\uxtheme.dll

c:\windows\system32\msctf.dll

c:\windows\system32\msctfime.ime

c:\windows\system32\msls31.dll

c:\windows\system32\wtsapi32.dll

c:\windows\system32\winsta.dll

c:\windows\system32\netapi32.dll

c:\windows\system32\icm32.dll

c:\windows\system32\msnchathook.dll

c:\windows\system32\sysenv.dll

c:\windows\system32\version.dll

c:\windows\system32\oleaut32.dll

c:\windows\system32\oleacc.dll

c:\windows\system32\cryptoapi.dll

c:\windows\system32\msvcr71.dll

c:\windows\system32\winmm.dll

c:\windows\system32\mfc71u.dll

c:\windows\system32\msvcp71.dll

c:\windows\system32\mfc71enu.dll

c:\windows\system32\sssensor.dll

C:\DOCUME~1\FOXY\LOCALS~1\TEMP\RTKBTMNT.EXE
c:\docume~1\foxy\locals~1\temp\rtkbtmnt.exe

c:\windows\system32\ntdll.dll

c:\windows\system32\kernel32.dll

c:\windows\system32\dsound.dll

c:\windows\system32\msvcrt.dll

c:\windows\system32\user32.dll

c:\windows\system32\gdi32.dll

c:\windows\system32\advapi32.dll

c:\windows\system32\rpcrt4.dll

c:\windows\system32\secur32.dll

c:\windows\system32\ole32.dll

c:\windows\system32\winmm.dll

c:\windows\system32\version.dll

c:\windows\system32\setupapi.dll

c:\windows\system32\comctl32.dll

c:\windows\system32\oleaut32.dll

c:\windows\system32\imm32.dll

c:\windows\system32\lpk.dll

c:\windows\system32\usp10.dll

c:\windows\system32\uxtheme.dll

c:\windows\system32\msctf.dll

c:\windows\system32\msctfime.ime

c:\windows\system32\wintrust.dll

c:\windows\system32\crypt32.dll

c:\windows\system32\msasn1.dll

c:\windows\system32\imagehlp.dll

c:\windows\system32\wdmaud.drv

c:\windows\system32\msacm32.drv

c:\windows\system32\msacm32.dll

c:\windows\system32\midimap.dll

c:\windows\system32\msnchathook.dll

c:\windows\system32\sysenv.dll

c:\windows\system32\shlwapi.dll

c:\windows\system32\shell32.dll

c:\windows\system32\oleacc.dll

c:\windows\system32\msvcp60.dll

c:\windows\system32\winspool.drv

c:\windows\system32\cryptoapi.dll

c:\windows\system32\msvcr71.dll

c:\windows\system32\mfc71u.dll

c:\windows\system32\msvcp71.dll

c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2982_x-ww_ac3f9c03\comctl32.dll

c:\windows\system32\mfc71enu.dll

c:\windows\system32\sssensor.dll

C:\ACER\EMPOWERING TECHNOLOGY\EPERFORMANCE\MEMCHECK.EXE
c:\acer\empowering technology\eperformance\memcheck.exe

c:\windows\system32\ntdll.dll

c:\windows\system32\mscoree.dll

c:\windows\system32\kernel32.dll

c:\windows\system32\advapi32.dll

c:\windows\system32\rpcrt4.dll

c:\windows\system32\secur32.dll

c:\windows\system32\shlwapi.dll

c:\windows\system32\gdi32.dll

c:\windows\system32\user32.dll

c:\windows\system32\msvcrt.dll

c:\windows\system32\imm32.dll

c:\windows\system32\lpk.dll

c:\windows\system32\usp10.dll

c:\windows\microsoft.net\framework\v1.1.4322\mscorwks.dll

c:\windows\microsoft.net\framework\v1.1.4322\msvcr71.dll

c:\windows\microsoft.net\framework\v1.1.4322\fusion.dll

c:\windows\system32\ole32.dll

c:\windows\system32\shell32.dll

c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2982_x-ww_ac3f9c03\comctl32.dll

c:\windows\system32\comctl32.dll

c:\windows\microsoft.net\framework\v1.1.4322\mscorlib.dll

c:\windows\assembly\nativeimages1_v1.1.4322\mscorlib\1.0.5000.0__b77a5c561934e089_f155bc3b\mscorlib.dll

c:\windows\microsoft.net\framework\v1.1.4322\mscorsn.dll

c:\windows\assembly\gac\system.serviceprocess\1.0.5000.0__b03f5f7f11d50a3a\system.serviceprocess.dll

c:\windows\assembly\gac\system\1.0.5000.0__b77a5c561934e089\system.dll

c:\windows\assembly\nativeimages1_v1.1.4322\system\1.0.5000.0__b77a5c561934e089_2ba7665d\system.dll

c:\acer\empowering technology\eperformance\acer.empowering.shared.dll

c:\windows\microsoft.net\framework\v1.1.4322\mscorjit.dll

c:\acer\empowering technology\eperformance\acermemusagecheckservinterface.dll

c:\windows\assembly\gac\system.runtime.remoting\1.0.5000.0__b77a5c561934e089\system.runtime.remoting.dll

c:\windows\system32\ws2_32.dll

c:\windows\system32\ws2help.dll

c:\windows\system32\mswsock.dll

c:\windows\system32\dnsapi.dll

c:\windows\system32\winrnr.dll

c:\windows\system32\wldap32.dll

c:\windows\system32\wshbth.dll

c:\windows\system32\setupapi.dll

c:\windows\system32\rasadhlp.dll

c:\windows\system32\hnetcfg.dll

c:\windows\system32\wshtcpip.dll

c:\windows\system32\rsaenh.dll

c:\windows\system32\psapi.dll

c:\windows\microsoft.net\framework\v1.1.4322\perfcounter.dll

c:\windows\system32\ntmarta.dll

c:\windows\system32\samlib.dll

c:\windows\system32\oleaut32.dll

c:\windows\microsoft.net\framework\v2.0.50727\aspnet_perf.dll

c:\windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.42_x-ww_0de06acd\msvcr80.dll

c:\windows\microsoft.net\framework\v1.1.4322\aspnet_isapi.dll

c:\windows\system32\userenv.dll

c:\windows\system32\netapi32.dll

c:\windows\system32\perfproc.dll

c:\windows\system32\rasman.dll

c:\windows\system32\mprapi.dll

c:\windows\system32\activeds.dll

c:\windows\system32\adsldpc.dll

c:\windows\system32\atl.dll

c:\windows\system32\rtutils.dll

c:\windows\microsoft.net\framework\v1.1.4322\diasymreader.dll

C:\WINDOWS\SYSTEM32\SVCHOST.EXE
c:\windows\system32\svchost.exe

c:\windows\system32\ntdll.dll

c:\windows\system32\kernel32.dll

c:\windows\system32\advapi32.dll

c:\windows\system32\rpcrt4.dll

c:\windows\system32\secur32.dll

c:\windows\system32\shimeng.dll

c:\windows\apppatch\acgenral.dll

c:\windows\system32\user32.dll

c:\windows\system32\gdi32.dll

c:\windows\system32\winmm.dll

c:\windows\system32\ole32.dll

c:\windows\system32\msvcrt.dll

c:\windows\system32\oleaut32.dll

c:\windows\system32\msacm32.dll

c:\windows\system32\version.dll

c:\windows\system32\shell32.dll

c:\windows\system32\shlwapi.dll

c:\windows\system32\userenv.dll

c:\windows\system32\uxtheme.dll

c:\windows\system32\imm32.dll

c:\windows\system32\lpk.dll

c:\windows\system32\usp10.dll

c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2982_x-ww_ac3f9c03\comctl32.dll

c:\windows\system32\comctl32.dll

c:\windows\system32\bthserv.dll

c:\windows\system32\setupapi.dll

c:\windows\system32\wintrust.dll

c:\windows\system32\crypt32.dll

c:\windows\system32\msasn1.dll

c:\windows\system32\imagehlp.dll

c:\windows\system32\msv1_0.dll

c:\windows\system32\ws2_32.dll

c:\windows\system32\ws2help.dll

c:\windows\system32\iphlpapi.dll

C:\PROGRAM FILES\WIDCOMM\BLUETOOTH SOFTWARE\BIN\BTWDINS.EXE
c:\program files\widcomm\bluetooth software\bin\btwdins.exe

c:\windows\system32\ntdll.dll

c:\windows\system32\kernel32.dll

c:\windows\system32\ws2_32.dll

c:\windows\system32\msvcrt.dll

c:\windows\system32\ws2help.dll

c:\windows\system32\advapi32.dll

c:\windows\system32\rpcrt4.dll

c:\windows\system32\secur32.dll

c:\windows\system32\user32.dll

c:\windows\system32\gdi32.dll

c:\windows\system32\ole32.dll

c:\windows\system32\oleaut32.dll

c:\windows\system32\imm32.dll

c:\windows\system32\lpk.dll

c:\windows\system32\usp10.dll

c:\windows\system32\uxtheme.dll

c:\windows\system32\xpsp2res.dll

c:\windows\system32\hid.dll

c:\windows\system32\wintrust.dll

c:\windows\system32\crypt32.dll

c:\windows\system32\msasn1.dll

c:\windows\system32\imagehlp.dll

C:\PROGRAM FILES\COMMON FILES\LIGHTSCRIBE\LSSRVC.EXE
c:\program files\common files\lightscribe\lssrvc.exe

c:\windows\system32\ntdll.dll

c:\windows\system32\kernel32.dll

c:\windows\system32\shlwapi.dll

c:\windows\system32\advapi32.dll

c:\windows\system32\rpcrt4.dll

c:\windows\system32\secur32.dll

c:\windows\system32\gdi32.dll

c:\windows\system32\user32.dll

c:\windows\system32\msvcrt.dll

c:\windows\system32\psapi.dll

c:\windows\system32\shell32.dll

c:\program files\common files\lightscribe\msvcr71.dll

c:\program files\common files\lightscribe\msvcp71.dll

c:\windows\system32\imm32.dll

c:\windows\system32\lpk.dll

c:\windows\system32\usp10.dll

c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2982_x-ww_ac3f9c03\comctl32.dll

c:\windows\system32\comctl32.dll

C:\PROGRAM FILES\COMMON FILES\MICROSOFT SHARED\VS7DEBUG\MDM.EXE
c:\program files\common files\microsoft shared\vs7debug\mdm.exe

c:\windows\system32\ntdll.dll

c:\windows\system32\kernel32.dll

c:\windows\system32\advapi32.dll

c:\windows\system32\rpcrt4.dll

c:\windows\system32\secur32.dll

c:\windows\system32\ole32.dll

c:\windows\system32\gdi32.dll

c:\windows\system32\user32.dll

c:\windows\system32\msvcrt.dll

c:\windows\system32\oleaut32.dll

c:\windows\system32\shell32.dll

c:\windows\system32\shlwapi.dll

c:\windows\system32\version.dll

c:\windows\system32\imm32.dll

c:\windows\system32\lpk.dll

c:\windows\system32\usp10.dll

c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2982_x-ww_ac3f9c03\comctl32.dll

c:\windows\system32\comctl32.dll

c:\windows\system32\psapi.dll

c:\windows\system32\xpsp2res.dll

c:\windows\system32\clbcatq.dll

c:\windows\system32\comres.dll

c:\windows\system32\sssensor.dll

c:\program files\common files\microsoft shared\vs7debug\msdbg2.dll

C:\WINDOWS\SYSTEM32\SVCHOST.EXE
c:\windows\system32\svchost.exe

c:\windows\system32\ntdll.dll

c:\windows\system32\kernel32.dll

c:\windows\system32\advapi32.dll

c:\windows\system32\rpcrt4.dll

c:\windows\system32\secur32.dll

c:\windows\system32\shimeng.dll

c:\windows\apppatch\acgenral.dll

c:\windows\system32\user32.dll

c:\windows\system32\gdi32.dll

c:\windows\system32\winmm.dll

c:\windows\system32\ole32.dll

c:\windows\system32\msvcrt.dll

c:\windows\system32\oleaut32.dll

c:\windows\system32\msacm32.dll

c:\windows\system32\version.dll

c:\windows\system32\shell32.dll

c:\windows\system32\shlwapi.dll

c:\windows\system32\userenv.dll

c:\windows\system32\uxtheme.dll

c:\windows\system32\imm32.dll

c:\windows\system32\lpk.dll

c:\windows\system32\usp10.dll

c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2982_x-ww_ac3f9c03\comctl32.dll

c:\windows\system32\comctl32.dll

c:\windows\system32\wiaservc.dll

c:\windows\system32\cfgmgr32.dll

c:\windows\system32\setupapi.dll

c:\windows\system32\mscms.dll

c:\windows\system32\winspool.drv

c:\windows\system32\winsta.dll

c:\windows\system32\netapi32.dll

c:\windows\system32\xpsp2res.dll

c:\windows\system32\clbcatq.dll

c:\windows\system32\comres.dll

c:\windows\system32\wintrust.dll

c:\windows\system32\crypt32.dll

c:\windows\system32\msasn1.dll

c:\windows\system32\imagehlp.dll

c:\windows\system32\wiavusd.dll

c:\windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.2600.2180_x-ww_522f9f82\gdiplus.dll

c:\windows\system32\shfolder.dll

c:\windows\system32\actxprxy.dll

c:\windows\system32\sti.dll

C:\WINDOWS\SYSTEM32\WBEM\WMIAPSRV.EXE
c:\windows\system32\wbem\wmiapsrv.exe

c:\windows\system32\ntdll.dll

c:\windows\system32\kernel32.dll

c:\windows\system32\msvcrt.dll

c:\windows\system32\advapi32.dll

c:\windows\system32\rpcrt4.dll

c:\windows\system32\secur32.dll

c:\windows\system32\user32.dll

c:\windows\system32\gdi32.dll

c:\windows\system32\oleaut32.dll

c:\windows\system32\ole32.dll

c:\windows\system32\loadperf.dll

c:\windows\system32\wbem\wbemcomn.dll

c:\windows\system32\shimeng.dll

c:\windows\apppatch\acgenral.dll

c:\windows\system32\winmm.dll

c:\windows\system32\msacm32.dll

c:\windows\system32\version.dll

c:\windows\system32\shell32.dll

c:\windows\system32\shlwapi.dll

c:\windows\system32\userenv.dll

c:\windows\system32\uxtheme.dll

c:\windows\system32\imm32.dll

c:\windows\system32\lpk.dll

c:\windows\system32\usp10.dll

c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2982_x-ww_ac3f9c03\comctl32.dll

c:\windows\system32\comctl32.dll

c:\windows\system32\wbem\wmiapres.dll

c:\windows\system32\ntmarta.dll

c:\windows\system32\wldap32.dll

c:\windows\system32\samlib.dll

c:\windows\system32\psapi.dll

c:\windows\system32\xpsp2res.dll

c:\windows\system32\clbcatq.dll

c:\windows\system32\comres.dll

c:\windows\system32\wbem\wbemprox.dll

c:\windows\system32\ws2_32.dll

c:\windows\system32\ws2help.dll

c:\windows\system32\wbem\wbemsvc.dll

c:\windows\system32\wbem\fastprox.dll

c:\windows\system32\msvcp60.dll

c:\windows\system32\ntdsapi.dll

c:\windows\system32\dnsapi.dll

c:\windows\system32\netapi32.dll

c:\windows\system32\wbem\wmiutils.dll

c:\windows\system32\wbem\wmiprov.dll

c:\windows\system32\wmi.dll

C:\WINDOWS\SYSTEM32\WBEM\WMIPRVSE.EXE
c:\windows\system32\wbem\wmiprvse.exe

c:\windows\system32\ntdll.dll

c:\windows\system32\kernel32.dll

c:\windows\system32\msvcrt.dll

c:\windows\system32\advapi32.dll

c:\windows\system32\rpcrt4.dll

c:\windows\system32\secur32.dll

c:\windows\system32\user32.dll

c:\windows\system32\gdi32.dll

c:\windows\system32\wbem\wbemcomn.dll

c:\windows\system32\oleaut32.dll

c:\windows\system32\ole32.dll

c:\windows\system32\wbem\fastprox.dll

c:\windows\system32\msvcp60.dll

c:\windows\system32\ntdsapi.dll

c:\windows\system32\dnsapi.dll

c:\windows\system32\ws2_32.dll

c:\windows\system32\ws2help.dll

c:\windows\system32\wldap32.dll

c:\windows\system32\netapi32.dll

c:\windows\system32\ncobjapi.dll

c:\windows\system32\shimeng.dll

c:\windows\apppatch\acgenral.dll

c:\windows\system32\winmm.dll

c:\windows\system32\msacm32.dll

c:\windows\system32\version.dll

c:\windows\system32\shell32.dll

c:\windows\system32\shlwapi.dll

c:\windows\system32\userenv.dll

c:\windows\system32\uxtheme.dll

c:\windows\system32\imm32.dll

c:\windows\system32\lpk.dll

c:\windows\system32\usp10.dll

c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2982_x-ww_ac3f9c03\comctl32.dll

c:\windows\system32\comctl32.dll

c:\windows\system32\xpsp2res.dll

c:\windows\system32\clbcatq.dll

c:\windows\system32\comres.dll

c:\windows\system32\wbem\wbemsvc.dll

c:\windows\system32\wbem\wmiutils.dll

c:\windows\system32\wbem\wmiprov.dll

c:\windows\system32\wmi.dll

c:\windows\system32\wbem\esscli.dll

c:\windows\system32\wbem\stdprov.dll

C:\WINDOWS\SYSTEM32\ALG.EXE
c:\windows\system32\alg.exe

c:\windows\system32\ntdll.dll

c:\windows\system32\kernel32.dll

c:\windows\system32\msvcrt.dll

c:\windows\system32\atl.dll

c:\windows\system32\user32.dll

c:\windows\system32\gdi32.dll

c:\windows\system32\advapi32.dll

c:\windows\system32\rpcrt4.dll

c:\windows\system32\secur32.dll

c:\windows\system32\ole32.dll

c:\windows\system32\oleaut32.dll

c:\windows\system32\wsock32.dll

c:\windows\system32\ws2_32.dll

c:\windows\system32\ws2help.dll

c:\windows\system32\mswsock.dll

c:\windows\system32\shimeng.dll

c:\windows\apppatch\acgenral.dll

c:\windows\system32\winmm.dll

c:\windows\system32\msacm32.dll

c:\windows\system32\version.dll

c:\windows\system32\shell32.dll

c:\windows\system32\shlwapi.dll

c:\windows\system32\userenv.dll

c:\windows\system32\uxtheme.dll

c:\windows\system32\imm32.dll

c:\windows\system32\lpk.dll

c:\windows\system32\usp10.dll

c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2982_x-ww_ac3f9c03\comctl32.dll

c:\windows\system32\comctl32.dll

c:\windows\system32\clbcatq.dll

c:\windows\system32\comres.dll

c:\windows\system32\xpsp2res.dll

c:\windows\system32\hnetcfg.dll

c:\windows\system32\wshtcpip.dll

C:\WINDOWS\SYSTEM32\SVCHOST.EXE
c:\windows\system32\svchost.exe

c:\windows\system32\ntdll.dll

c:\windows\system32\kernel32.dll

c:\windows\system32\advapi32.dll

c:\windows\system32\rpcrt4.dll

c:\windows\system32\secur32.dll

c:\windows\system32\shimeng.dll

c:\windows\apppatch\acgenral.dll

c:\windows\system32\user32.dll

c:\windows\system32\gdi32.dll

c:\windows\system32\winmm.dll

c:\windows\system32\ole32.dll

c:\windows\system32\msvcrt.dll

c:\windows\system32\oleaut32.dll

c:\windows\system32\msacm32.dll

c:\windows\system32\version.dll

c:\windows\system32\shell32.dll

c:\windows\system32\shlwapi.dll

c:\windows\system32\userenv.dll

c:\windows\system32\uxtheme.dll

c:\windows\system32\imm32.dll

c:\windows\system32\lpk.dll

c:\windows\system32\usp10.dll

c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2982_x-ww_ac3f9c03\comctl32.dll

c:\windows\system32\comctl32.dll

c:\windows\system32\ntmarta.dll

c:\windows\system32\wldap32.dll

c:\windows\system32\samlib.dll

c:\windows\system32\xpsp2res.dll

c:\windows\system32\w3ssl.dll

c:\windows\system32\strmfilt.dll

c:\windows\system32\crypt32.dll

c:\windows\system32\msasn1.dll

c:\windows\system32\httpapi.dll

c:\windows\system32\ws2_32.dll

c:\windows\system32\ws2help.dll

C:\ACER\EMPOWERING TECHNOLOGY\EPOWER\EPOWER_DMC.EXE
c:\acer\empowering technology\epower\epower_dmc.exe

c:\windows\system32\ntdll.dll

c:\windows\system32\mscoree.dll

c:\windows\system32\kernel32.dll

c:\windows\system32\advapi32.dll

c:\windows\system32\rpcrt4.dll

c:\windows\system32\secur32.dll

c:\windows\system32\user32.dll

c:\windows\system32\gdi32.dll

c:\windows\system32\setupapi.dll

c:\windows\system32\msvcrt.dll

c:\windows\system32\powrprof.dll

c:\windows\system32\ole32.dll

c:\windows\system32\psapi.dll

c:\windows\system32\wtsapi32.dll

c:\windows\system32\winsta.dll

c:\windows\system32\netapi32.dll

c:\windows\system32\shell32.dll

c:\windows\system32\shlwapi.dll

c:\windows\system32\oleaut32.dll

c:\windows\system32\imm32.dll

c:\windows\system32\lpk.dll

c:\windows\system32\usp10.dll

c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2982_x-ww_ac3f9c03\comctl32.dll

c:\windows\system32\comctl32.dll

c:\program files\common files\logitech\lvmvfm\lvprcinj.dll

c:\windows\microsoft.net\framework\v1.1.4322\mscorwks.dll

c:\windows\microsoft.net\framework\v1.1.4322\msvcr71.dll

c:\windows\microsoft.net\framework\v1.1.4322\fusion.dll

c:\windows\microsoft.net\framework\v1.1.4322\mscorlib.dll

c:\windows\assembly\nativeimages1_v1.1.4322\mscorlib\1.0.5000.0__b77a5c561934e089_f155bc3b\mscorlib.dll

c:\windows\microsoft.net\framework\v1.1.4322\mscorsn.dll

c:\windows\microsoft.net\framework\v1.1.4322\mscorjit.dll

c:\windows\assembly\gac\system.windows.forms\1.0.5000.0__b77a5c561934e089\system.windows.forms.dll

c:\windows\assembly\nativeimages1_v1.1.4322\system.windows.forms\1.0.5000.0__b77a5c561934e089_b560ebe2\system.windows.forms.dll

c:\windows\assembly\gac\system\1.0.5000.0__b77a5c561934e089\system.dll

c:\windows\assembly\nativeimages1_v1.1.4322\system\1.0.5000.0__b77a5c561934e089_2ba7665d\system.dll

c:\windows\assembly\gac\system.drawing\1.0.5000.0__b03f5f7f11d50a3a\system.drawing.dll

c:\windows\assembly\nativeimages1_v1.1.4322\system.drawing\1.0.5000.0__b03f5f7f11d50a3a_bb76e0b6\system.drawing.dll

c:\windows\system32\uxtheme.dll

c:\acer\empowering technology\epower\acer.empowering.windows.forms.dll

c:\windows\microsoft.net\framework\v1.1.4322\diasymreader.dll

c:\windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.2600.2180_x-ww_522f9f82\gdiplus.dll

c:\windows\system32\msnchathook.dll

c:\windows\system32\sysenv.dll

c:\windows\system32\version.dll

c:\windows\system32\oleacc.dll

c:\windows\system32\msvcp60.dll

c:\windows\system32\winspool.drv

c:\windows\system32\cryptoapi.dll

c:\windows\system32\winmm.dll

c:\windows\system32\mfc71u.dll

c:\windows\system32\msvcp71.dll

c:\windows\system32\mfc71enu.dll

c:\windows\system32\msctf.dll

c:\windows\system32\msctfime.ime

c:\windows\system32\sssensor.dll

c:\windows\system32\wintrust.dll

c:\windows\system32\crypt32.dll

c:\windows\system32\msasn1.dll

c:\windows\system32\imagehlp.dll

c:\windows\system32\xpsp2res.dll

c:\windows\system32\clbcatq.dll

c:\windows\system32\comres.dll

c:\windows\system32\wbem\wbemprox.dll

c:\windows\system32\wbem\wbemcomn.dll

c:\windows\system32\ws2_32.dll

c:\windows\system32\ws2help.dll

c:\windows\system32\wbem\wbemsvc.dll

c:\windows\system32\wbem\fastprox.dll

c:\windows\system32\ntdsapi.dll

c:\windows\system32\dnsapi.dll

c:\windows\system32\wldap32.dll

c:\windows\system32\atipdlxx.dll

c:\windows\system32\rsaenh.dll

c:\windows\system32\userenv.dll

c:\windows\system32\cabinet.dll

c:\acer\empowering technology\epower\syshook.dll

c:\windows\system32\mfc42.dll

c:\acer\empowering technology\epower\dialogdll.dll

C:\WINDOWS\SYSTEM32\WBEM\UNSECAPP.EXE
c:\windows\system32\wbem\unsecapp.exe

c:\windows\system32\ntdll.dll

c:\windows\system32\kernel32.dll

c:\windows\system32\msvcrt.dll

c:\windows\system32\wbem\wbemcomn.dll

c:\windows\system32\oleaut32.dll

c:\windows\system32\advapi32.dll

c:\windows\system32\rpcrt4.dll

c:\windows\system32\secur32.dll

c:\windows\system32\gdi32.dll

c:\windows\system32\user32.dll

c:\windows\system32\ole32.dll

c:\windows\system32\shimeng.dll

c:\windows\apppatch\acgenral.dll

c:\windows\system32\winmm.dll

c:\windows\system32\msacm32.dll

c:\windows\system32\version.dll

c:\windows\system32\shell32.dll

c:\windows\system32\shlwapi.dll

c:\windows\system32\userenv.dll

c:\windows\system32\uxtheme.dll

c:\windows\system32\imm32.dll

c:\windows\system32\lpk.dll

c:\windows\system32\usp10.dll

c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2982_x-ww_ac3f9c03\comctl32.dll

c:\windows\system32\comctl32.dll

c:\program files\common files\logitech\lvmvfm\lvprcinj.dll

c:\windows\system32\msnchathook.dll

c:\windows\system32\sysenv.dll

c:\windows\system32\oleacc.dll

c:\windows\system32\msvcp60.dll

c:\windows\system32\winspool.drv

c:\windows\system32\cryptoapi.dll

c:\windows\system32\msvcr71.dll

c:\windows\system32\mfc71u.dll

c:\windows\system32\msvcp71.dll

c:\windows\system32\mfc71enu.dll

c:\windows\system32\msctf.dll

c:\windows\system32\xpsp2res.dll

c:\windows\system32\clbcatq.dll

c:\windows\system32\comres.dll

c:\windows\system32\sssensor.dll

c:\windows\system32\wbem\wbemsvc.dll

c:\windows\system32\wbem\fastprox.dll

c:\windows\system32\ntdsapi.dll

c:\windows\system32\dnsapi.dll

c:\windows\system32\ws2_32.dll

c:\windows\system32\ws2help.dll

c:\windows\system32\wldap32.dll

c:\windows\system32\netapi32.dll

C:\WINDOWS\SYSTEM32\WBEM\WMIPRVSE.EXE
c:\windows\system32\wbem\wmiprvse.exe

c:\windows\system32\ntdll.dll

c:\windows\system32\kernel32.dll

c:\windows\system32\msvcrt.dll

c:\windows\system32\advapi32.dll

c:\windows\system32\rpcrt4.dll

c:\windows\system32\secur32.dll

c:\windows\system32\user32.dll

c:\windows\system32\gdi32.dll

c:\windows\system32\wbem\wbemcomn.dll

c:\windows\system32\oleaut32.dll

c:\windows\system32\ole32.dll

c:\windows\system32\wbem\fastprox.dll

c:\windows\system32\msvcp60.dll

c:\windows\system32\ntdsapi.dll

c:\windows\system32\dnsapi.dll

c:\windows\system32\ws2_32.dll

c:\windows\system32\ws2help.dll

c:\windows\system32\wldap32.dll

c:\windows\system32\netapi32.dll

c:\windows\system32\ncobjapi.dll

c:\windows\system32\shimeng.dll

c:\windows\apppatch\acgenral.dll

c:\windows\system32\winmm.dll

c:\windows\system32\msacm32.dll

c:\windows\system32\version.dll

c:\windows\system32\shell32.dll

c:\windows\system32\shlwapi.dll

c:\windows\system32\userenv.dll

c:\windows\system32\uxtheme.dll

c:\windows\system32\imm32.dll

c:\windows\system32\lpk.dll

c:\windows\system32\usp10.dll

c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2982_x-ww_ac3f9c03\comctl32.dll

c:\windows\system32\comctl32.dll

c:\windows\system32\xpsp2res.dll

c:\windows\system32\clbcatq.dll

c:\windows\system32\comres.dll

c:\windows\system32\wbem\wbemsvc.dll

c:\windows\system32\wbem\wmiutils.dll

c:\windows\system32\wbem\cimwin32.dll

c:\windows\system32\wbem\framedyn.dll

c:\windows\system32\setupapi.dll

c:\windows\system32\samlib.dll

c:\windows\system32\perfos.dll

c:\windows\system32\security.dll

c:\windows\system32\schannel.dll

c:\windows\system32\crypt32.dll

c:\windows\system32\msasn1.dll

c:\windows\system32\wintrust.dll

c:\windows\system32\imagehlp.dll

C:\ACER\EMPOWERING TECHNOLOGY\ACER.EMPOWERING.FRAMEWORK.LAUNCHER.EXE
c:\acer\empowering technology\acer.empowering.framework.launcher.exe

c:\windows\system32\ntdll.dll

c:\windows\system32\mscoree.dll

c:\windows\system32\kernel32.dll

c:\windows\system32\advapi32.dll

c:\windows\system32\rpcrt4.dll

c:\windows\system32\secur32.dll

c:\program files\common files\logitech\lvmvfm\lvprcinj.dll

c:\windows\system32\user32.dll

c:\windows\system32\gdi32.dll

c:\windows\system32\imm32.dll

c:\windows\system32\lpk.dll

c:\windows\system32\usp10.dll

c:\windows\system32\msvcrt.dll

c:\windows\system32\shlwapi.dll

c:\windows\microsoft.net\framework\v1.1.4322\mscorwks.dll

c:\windows\microsoft.net\framework\v1.1.4322\msvcr71.dll

c:\windows\microsoft.net\framework\v1.1.4322\fusion.dll

c:\windows\system32\ole32.dll

c:\windows\system32\shell32.dll

c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2982_x-ww_ac3f9c03\comctl32.dll

c:\windows\microsoft.net\framework\v1.1.4322\mscorlib.dll

c:\windows\assembly\nativeimages1_v1.1.4322\mscorlib\1.0.5000.0__b77a5c561934e089_f155bc3b\mscorlib.dll

c:\windows\microsoft.net\framework\v1.1.4322\mscorsn.dll

c:\windows\system32\uxtheme.dll

c:\windows\system32\msnchathook.dll

c:\windows\system32\sysenv.dll

c:\windows\system32\version.dll

c:\windows\system32\oleaut32.dll

c:\windows\system32\oleacc.dll

c:\windows\system32\msvcp60.dll

c:\windows\system32\winspool.drv

c:\windows\system32\cryptoapi.dll

c:\windows\system32\winmm.dll

c:\windows\system32\mfc71u.dll

c:\windows\system32\msvcp71.dll

c:\windows\system32\mfc71enu.dll

c:\windows\system32\msctf.dll

c:\windows\microsoft.net\framework\v1.1.4322\mscorjit.dll

c:\windows\system32\rsaenh.dll

c:\windows\system32\xpsp2res.dll

c:\acer\empowering technology\log4net.dll

c:\windows\assembly\gac\system\1.0.5000.0__b77a5c561934e089\system.dll

c:\windows\assembly\nativeimages1_v1.1.4322\system\1.0.5000.0__b77a5c561934e089_2ba7665d\system.dll

c:\windows\assembly\gac\system.xml\1.0.5000.0__b77a5c561934e089\system.xml.dll

c:\windows\assembly\nativeimages1_v1.1.4322\system.xml\1.0.5000.0__b77a5c561934e089_fc595649\system.xml.dll

c:\acer\empowering technology\acer.empowering.shared.dll

c:\acer\empowering technology\acer.empowering.framework.presenter.dll

c:\windows\assembly\gac\system.drawing\1.0.5000.0__b03f5f7f11d50a3a\system.drawing.dll

c:\windows\assembly\nativeimages1_v1.1.4322\system.drawing\1.0.5000.0__b03f5f7f11d50a3a_bb76e0b6\system.drawing.dll

c:\acer\empowering technology\acer.empowering.framework.launchbarview.dll

c:\windows\assembly\gac\system.windows.forms\1.0.5000.0__b77a5c561934e089\system.windows.forms.dll

c:\windows\assembly\nativeimages1_v1.1.4322\system.windows.forms\1.0.5000.0__b77a5c561934e089_b560ebe2\system.windows.forms.dll

c:\acer\empowering technology\acer.empowering.windows.forms.dll

c:\acer\empowering technology\acer.empowering.framework.host.dll

c:\windows\assembly\gac\system.management\1.0.5000.0__b03f5f7f11d50a3a\system.management.dll

c:\acer\empowering technology\acer.empowering.framework.passwordsetting.dll

c:\acer\empowering technology\acer.empowering.framework.interface.dll

c:\windows\system32\msctfime.ime

c:\acer\empowering technology\edatasecurity\edsplugin.dll

c:\acer\empowering technology\edatasecurity\edscs2cclasslib.dll

c:\windows\system32\psdutil.dll

c:\windows\system32\mpr.dll

c:\windows\system32\keymanager.dll

c:\windows\system32\showerrmsg.dll

c:\windows\system32\logspwusage.dll

c:\acer\empowering technology\eperformance\acer.empowering.eperformance.plugin.dll

c:\acer\empowering technology\eperformance\views.dll

c:\acer\empowering technology\eperformance\presenters.dll

c:\acer\empowering technology\eperformance\widget.dll

c:\acer\empowering technology\eperformance\acer.empowering.shared.patterns.dll

c:\acer\empowering technology\eperformance\models.dll

c:\windows\system32\wininet.dll

c:\windows\system32\normaliz.dll

c:\windows\system32\iertutil.dll

c:\windows\system32\setupapi.dll

c:\acer\empowering technology\eperformance\acer.empowering.eperformance.eperformancelibrary.dll

c:\acer\empowering technology\epower\epower_ui.dll

c:\acer\empowering technology\epower\epm_widget.dll

c:\acer\empowering technology\epower\epmwidget.dll

c:\windows\microsoft.net\framework\v1.1.4322\diasymreader.dll

c:\acer\empowering technology\epower\en\epower_ui.resources.dll

c:\windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.2600.2180_x-ww_522f9f82\gdiplus.dll

c:\acer\empowering technology\epresentation\epresentationctl.dll

c:\acer\empowering technology\erecovery\erecoveryui.dll

c:\acer\empowering technology\esettings\acer.empowering.esettings.plugin.dll

c:\acer\empowering technology\esettings\acer.empowering.esettings.interfaces.dll

c:\acer\empowering technology\esettings\acer.empowering.esettings.model.dll

c:\acer\empowering technology\esettings\acer.empowering.esettings.views.dll

c:\acer\empowering technology\esettings\acer.empowering.esettings.presenter.dll

c:\windows\system32\wintrust.dll

c:\windows\system32\crypt32.dll

c:\windows\system32\msasn1.dll

c:\windows\system32\imagehlp.dll

c:\windows\system32\clbcatq.dll

c:\windows\system32\comres.dll

c:\windows\microsoft.net\framework\v1.1.4322\wminet_utils.dll

c:\windows\system32\iphlpapi.dll

c:\windows\system32\ws2_32.dll

c:\windows\system32\ws2help.dll

c:\acer\empowering technology\esettings\cpuid.dll

c:\windows\system32\wbem\wmiutils.dll

c:\windows\system32\wbem\wbemprox.dll

c:\windows\system32\wbem\wbemcomn.dll

c:\windows\system32\wbem\wbemsvc.dll

c:\windows\system32\wbem\fastprox.dll

c:\windows\system32\ntdsapi.dll

c:\windows\system32\dnsapi.dll

c:\windows\system32\wldap32.dll

c:\windows\system32\netapi32.dll

c:\windows\assembly\gac\system.serviceprocess\1.0.5000.0__b03f5f7f11d50a3a\system.serviceprocess.dll

c:\windows\system32\netfxperf.dll

c:\windows\microsoft.net\framework\v1.1.4322\perfcounter.dll

c:\windows\system32\ntmarta.dll

c:\windows\system32\samlib.dll

c:\windows\microsoft.net\framework\v1.1.4322\corperfmonext.dll

c:\windows\system32\psapi.dll

c:\windows\microsoft.net\framework\v2.0.50727\aspnet_perf.dll

c:\windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.42_x-ww_0de06acd\msvcr80.dll

c:\windows\microsoft.net\framework\v1.1.4322\aspnet_isapi.dll

c:\windows\system32\userenv.dll

c:\windows\system32\query.dll

c:\windows\system32\fxsperf.dll

c:\windows\system32\perfdisk.dll

c:\windows\system32\perfnet.dll

c:\windows\system32\perfos.dll

c:\windows\system32\perfproc.dll

c:\windows\system32\pschdprf.dll

c:\windows\system32\traffic.dll

c:\windows\system32\wmi.dll

c:\windows\system32\rasctrs.dll

c:\windows\system32\rasman.dll

c:\windows\system32\msv1_0.dll

c:\windows\system32\rsvpperf.dll

c:\windows\system32\tapiperf.dll

c:\windows\system32\tapi32.dll

c:\windows\system32\rtutils.dll

c:\windows\system32\perfctrs.dll

c:\windows\system32\mprapi.dll

c:\windows\system32\activeds.dll

c:\windows\system32\adsldpc.dll

c:\windows\system32\atl.dll

c:\windows\system32\perfts.dll

c:\windows\system32\winsta.dll

c:\windows\system32\utildll.dll

c:\windows\system32\wbem\wmiaprpl.dll

c:\windows\system32\loadperf.dll

c:\acer\empowering technology\epower\win32pwrschemedll.dll

c:\windows\system32\powrprof.dll

c:\windows\system32\dciman32.dll

c:\windows\system32\sssensor.dll

c:\acer\empowering technology\epower\syshook.dll

c:\windows\system32\mfc42.dll

c:\windows\system32\mslbui.dll

c:\windows\assembly\gac\accessibility\1.0.5000.0__b03f5f7f11d50a3a\accessibility.dll

c:\windows\system32\apphelp.dll

c:\program files\superantispyware\sasseh.dll

c:\windows\system32\urlmon.dll

c:\acer\empowering technology\erecovery\win32pwrschemedll_r.dll

c:\acer\empowering technology\scrollbarlib.dll

C:\WINDOWS\SYSTEM32\WUAUCLT.EXE
c:\windows\system32\wuauclt.exe

c:\windows\system32\ntdll.dll

c:\windows\system32\kernel32.dll

c:\windows\system32\msvcrt.dll

c:\windows\system32\ole32.dll

c:\windows\system32\advapi32.dll

c:\windows\system32\rpcrt4.dll

c:\windows\system32\secur32.dll

c:\windows\system32\gdi32.dll

c:\windows\system32\user32.dll

c:\windows\system32\oleaut32.dll

c:\windows\system32\shlwapi.dll

c:\windows\system32\shimeng.dll

c:\windows\apppatch\acgenral.dll

c:\windows\system32\winmm.dll

c:\windows\system32\msacm32.dll

c:\windows\system32\version.dll

c:\windows\system32\shell32.dll

c:\windows\system32\userenv.dll

c:\windows\system32\uxtheme.dll

c:\windows\system32\imm32.dll

c:\windows\system32\lpk.dll

c:\windows\system32\usp10.dll

c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2982_x-ww_ac3f9c03\comctl32.dll

c:\windows\system32\wuaueng.dll

c:\windows\system32\ws2_32.dll

c:\windows\system32\ws2help.dll

c:\windows\system32\esent.dll

c:\windows\system32\wtsapi32.dll

c:\windows\system32\winsta.dll

c:\windows\system32\netapi32.dll

c:\windows\system32\winspool.drv

c:\windows\system32\iphlpapi.dll

c:\windows\system32\winhttp.dll

c:\windows\system32\wintrust.dll

c:\windows\system32\crypt32.dll

c:\windows\system32\msasn1.dll

c:\windows\system32\imagehlp.dll

c:\windows\system32\cabinet.dll

c:\windows\system32\mspatcha.dll

c:\windows\system32\xpsp2res.dll

c:\windows\system32\clbcatq.dll

c:\windows\system32\comres.dll

c:\windows\system32\wups2.dll

C:\PROGRAM FILES\LAVASOFT\AD-AWARE 2007\AD-AWARE2007.EXE
c:\program files\lavasoft\ad-aware 2007\ad-aware2007.exe

c:\windows\system32\ntdll.dll

c:\windows\system32\kernel32.dll

c:\windows\system32\user32.dll

c:\windows\system32\gdi32.dll

c:\windows\system32\imm32.dll

c:\windows\system32\advapi32.dll

c:\windows\system32\rpcrt4.dll

c:\windows\system32\secur32.dll

c:\windows\system32\lpk.dll

c:\windows\system32\usp10.dll

c:\windows\system32\msvcrt.dll

c:\program files\common files\logitech\lvmvfm\lvprcinj.dll

c:\windows\system32\comctl32.dll

c:\windows\system32\comdlg32.dll

c:\windows\system32\shlwapi.dll

c:\windows\system32\shell32.dll

c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2982_x-ww_ac3f9c03\comctl32.dll

c:\windows\system32\oleaut32.dll

c:\windows\system32\ole32.dll

c:\windows\system32\ws2_32.dll

c:\windows\system32\ws2help.dll

c:\windows\system32\inetmib1.dll

c:\windows\system32\iphlpapi.dll

c:\windows\system32\snmpapi.dll

c:\windows\system32\wsock32.dll

c:\windows\system32\mprapi.dll

c:\windows\system32\activeds.dll

c:\windows\system32\adsldpc.dll

c:\windows\system32\netapi32.dll

c:\windows\system32\wldap32.dll

c:\windows\system32\atl.dll

c:\windows\system32\rtutils.dll

c:\windows\system32\samlib.dll

c:\windows\system32\setupapi.dll

c:\windows\system32\version.dll

c:\windows\system32\mpr.dll

c:\windows\system32\winmm.dll

c:\windows\system32\oleacc.dll

c:\windows\system32\msvcp60.dll

c:\windows\system32\uxtheme.dll

c:\windows\system32\msnchathook.dll

c:\windows\system32\sysenv.dll

c:\windows\system32\winspool.drv

c:\windows\system32\cryptoapi.dll

c:\windows\system32\msvcr71.dll

c:\windows\system32\mfc71u.dll

c:\windows\system32\msvcp71.dll

c:\windows\system32\mfc71enu.dll

c:\windows\system32\msctf.dll

c:\windows\system32\msctfime.ime

c:\windows\system32\apphelp.dll

c:\windows\system32\clbcatq.dll

c:\windows\system32\comres.dll

c:\windows\system32\olepro32.dll

c:\windows\system32\sssensor.dll

c:\windows\system32\mslbui.dll

c:\acer\empowering technology\epower\syshook.dll

c:\windows\system32\mfc42.dll

End of Scan Section
===========================

Cleaned Infections
===========================
Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt www.googleadservices.com Conversion /pagead/conversion/1068500656/, Belonging to Tracking Cookie
Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt statse.webtrendslive.com ACOOKIE /, Belonging to Tracking Cookie
Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt server.iad.liveperson.net HumanClickID /, Belonging to Tracking Cookie
Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt server.iad.liveperson.net HumanClickACTIVE /, Belonging to Tracking Cookie
Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt 2o7.net s_vi_ieeacdmieg /, Belonging to Tracking Cookie
Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt 2o7.net s_vi_lfiegzmfkx60lozf /, Belonging to Tracking Cookie
Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt 2o7.net s_vi_yixxczzyncs /, Belonging to Tracking Cookie
Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt 2o7.net s_vi_x7Dmx7Cgx7Ex7Ex7Dfizxxx7Ex7Ca /, Belonging to Tracking Cookie
Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt 2o7.net s_vi_xxhybx7Bx7Bxxclx7Fx7D /, Belonging to Tracking Cookie
Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt 2o7.net s_vi_tfjdkre /, Belonging to Tracking Cookie
Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt 2o7.net s_vi_x7Bmizx7Bkge /, Belonging to Tracking Cookie
Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt 2o7.net s_vi_x7Fbynyjhx60hdf /, Belonging to Tracking Cookie
Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt 2o7.net s_vi_atamox7Ecaihem /, Belonging to Tracking Cookie
Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt 2o7.net s_vi_xxeaix7Fcyxxdix7Eb /, Belonging to Tracking Cookie
Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt 2o7.net s_vi_x7Cjgfjyx7Fcdfn /, Belonging to Tracking Cookie
Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt 2o7.net s_vi_hex7Foczix7Eomx7Eh /, Belonging to Tracking Cookie
Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt 2o7.net s_vi_omnx60ix7Fyx7Cx7Ccx7Exx /, Belonging to Tracking Cookie
Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt 2o7.net s_vi_sqrx7Cusqrx7Cufycyx7Fx7E /, Belonging to Tracking Cookie
Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt 2o7.net s_vi_x7Dkfgkxxx7Eieg /, Belonging to Tracking Cookie
Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt 2o7.net s_vi_jdgrngx7Bjlnxx /, Belonging to Tracking Cookie
Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt 2o7.net s_vi_x7Divqx7Dyx7Ciqx7Esucdbi /, Belonging to Tracking Cookie
Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt 2o7.net s_vi_kjodgjid /, Belonging to Tracking Cookie
Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt 2o7.net s_vi_nzx60jshelz /, Belonging to Tracking Cookie
Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt 2o7.net s_vi_fobbcox7Ceglcmac /, Belonging to Tracking Cookie
Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt 2o7.net s_vi_clyjhblcdx60lax7E /, Belonging to Tracking Cookie
Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt 2o7.net s_vi_bmxxkickx60cnmx60 /, Belonging to Tracking Cookie
Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt 2o7.net s_vi_sqrx7Cux7Fx60dyx7Dex7Dx3Esx7Fx7D /, Belonging to Tracking Cookie
Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt 2o7.net s_vi_gijupe /, Belonging to Tracking Cookie
Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt 2o7.net s_vi_fhkpwjv /, Belonging to Tracking Cookie
Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt paypal.112.2o7.net s_vi /, Belonging to Tracking Cookie
Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt ad.yieldmanager.com uid /, Belonging to Tracking Cookie
Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt ad.yieldmanager.com fl_inst /, Belonging to Tracking Cookie
Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt ad.yieldmanager.com ih /, Belonging to Tracking Cookie
Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt atdmt.com AA002 /, Belonging to Tracking Cookie
Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt doubleclick.net id /, Belonging to Tracking Cookie
Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt advertising.com C2 /, Belonging to Tracking Cookie
Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt advertising.com F1 /, Belonging to Tracking Cookie
Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt advertising.com ACID /, Belonging to Tracking Cookie
Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt advertising.com BASE /, Belonging to Tracking Cookie
Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt advertising.com ROLL /, Belonging to Tracking Cookie
Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt adopt.specificclick.net DGI /, Belonging to Tracking Cookie
Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt adopt.specificclick.net UI /, Belonging to Tracking Cookie
Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt adopt.specificclick.net LO /, Belonging to Tracking Cookie
Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt adopt.specificclick.net HS /, Belonging to Tracking Cookie
Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt adopt.specificclick.net CTCI /, Belonging to Tracking Cookie
Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt adopt.specificclick.net DMEXP /, Belonging to Tracking Cookie
Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt specificclick.net dmc /, Belonging to Tracking Cookie
Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt specificclick.net dmk /, Belonging to Tracking Cookie
Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt specificclick.net smc /, Belonging to Tracking Cookie
Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt specificclick.net smk /, Belonging to Tracking Cookie
Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt specificclick.net dmp /, Belonging to Tracking Cookie
Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt specificclick.net smx /, Belonging to Tracking Cookie
Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt questionmarket.com CS1 /, Belonging to Tracking Cookie
Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt questionmarket.com ES /, Belonging to Tracking Cookie
Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt hitbox.com CTG /, Belonging to Tracking Cookie
Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt hitbox.com WSS_GW /, Belonging to Tracking Cookie
Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt ehg-stacksandstacks.hitbox.com DM56111554ZNV6 /, Belonging to Tracking Cookie
Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt bizrate.com roi_cookie /, Belonging to Tracking Cookie
Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt roiservice.com msid938449107000026 /, Belonging to Tracking Cookie
Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt roiservice.com msid938905107000023 /, Belonging to Tracking Cookie
Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt roiservice.com msid931775107000021 /, Belonging to Tracking Cookie
Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt bizrate.com br /, Belonging to Tracking Cookie
Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt bizrate.com rv_merchants /, Belonging to Tracking Cookie
Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt tribalfusion.com ANON_ID /, Belonging to Tracking Cookie
Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt kontera.com clcks /, Belonging to Tracking Cookie
Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt kontera.com cluid /, Belonging to Tracking Cookie
Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt kontera.com imprs /, Belonging to Tracking Cookie
Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt kontera.com limps /, Belonging to Tracking Cookie
Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt tacoda.net TID /, Belonging to Tracking Cookie
Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt tacoda.net TData /, Belonging to Tracking Cookie
Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt tacoda.net Tcc /, Belonging to Tracking Cookie
Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt data.coremetrics.com CoreID6 /, Belonging to Tracking Cookie
Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt www.bullguard.com dnb23key /, Belonging to Tracking Cookie
Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt www.bullguard.com affiliate /, Belonging to Tracking Cookie
Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt www.bullguard.com buyaffiliate /, Belonging to Tracking Cookie
Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt www.bullguard.com subaffiliate /, Belonging to Tracking Cookie
Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt www.bullguard.com fpc1000639991288 /, Belonging to Tracking Cookie
Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt ads.pointroll.com PRpl /, Belonging to Tracking Cookie
Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt ads.pointroll.com PRcr /, Belonging to Tracking Cookie
Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt ads.pointroll.com PRcp /, Belonging to Tracking Cookie
Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt ads.pointroll.com PRimp /, Belonging to Tracking Cookie
Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt ads.pointroll.com PRpc /, Belonging to Tracking Cookie
Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt ads.pointroll.com PRca /, Belonging to Tracking Cookie
Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt ads.pointroll.com PRID /, Belonging to Tracking Cookie
Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt ads.pointroll.com PRpb /, Belonging to Tracking Cookie
Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt ads.pointroll.com PRaf /, Belonging to Tracking Cookie
Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt ads.pointroll.com PRev5068.21916 /, Belonging to Tracking Cookie
Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt www.buydig.com LastViewedProduct_bd /, Belonging to Tracking Cookie
Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt beachcamera.122.2o7.net s_vi /, Belonging to Tracking Cookie
Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt ehg-bestbuy.hitbox.com DM540724E8RDV6 /, Belonging to Tracking Cookie
Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt ehg-bestbuy.hitbox.com WSS_MIGRATION /, Belonging to Tracking Cookie
Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt fastclick.net rt /, Belonging to Tracking Cookie
Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt fastclick.net zru /, Belonging to Tracking Cookie
Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt revsci.net rsi_cls_1000000 /, Belonging to Tracking Cookie
Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt revsci.net rsi_segs_1000000 /, Belonging to Tracking Cookie
Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt revsci.net NETSEGS_C05504 /, Belonging to Tracking Cookie
Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt revsci.net NETID01 /, Belonging to Tracking Cookie
Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt revsci.net NETSEGS_A06544 /, Belonging to Tracking Cookie
Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt revsci.net NETSEGS_K05540 /, Belonging to Tracking Cookie
Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt revsci.net NETSEGS_G07610 /, Belonging to Tracking Cookie
Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt indextools.com itvisitorid1000639991288 /, Belonging to Tracking Cookie
Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt adbrite.com Apache /, Belonging to Tracking Cookie
Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt adbrite.com b /, Belonging to Tracking Cookie
Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt adlegend.com PrefID /, Belonging to Tracking Cookie
Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt adopt.euroclick.com UI /, Belonging to Tracking Cookie
Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt adwarealert.com stats_hop /, Belonging to Tracking Cookie
Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt adwarealert.com stats_ref /, Belonging to Tracking Cookie
Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt adwarealert.com stats_time /, Belonging to Tracking Cookie
Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt adwarealert.com __utmz /, Belonging to Tracking Cookie
Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt adwarealert.com __utma /, Belonging to Tracking Cookie
Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt angelfire.lycos.com CookieStatus /, Belonging to Tracking Cookie
Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt bs.serving-sys.com eyeblaster /, Belonging to Tracking Cookie
Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt buycom.122.2o7.net s_vi /, Belonging to Tracking Cookie
Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt cooking.adbureau.net GUID /, Belonging to Tracking Cookie
Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt dealtime.com DealTimeUserID /, Belonging to Tracking Cookie
Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt drugstore.112.2o7.net s_vi /, Belonging to Tracking Cookie
Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt e-2dj6wfkykhazieq.stats.esomniture.com s_vi_0xxx3Bx7Bx0Ax2Cxxdx26x0Ax3Dx0Ax2Fgx0Ax25x27x0A781x3Fcx22x0Ax23x3Bx0Ax2Cxxdx26x0A0x0Ax2Fgx0Ax25x27x0A4g1x3Fcx22x0A3x3Ex0Ax2Cx0Ax3Ex3Dx0A4x0Ax2Fx3Cx0A0x24x0A4x0Ax221x3Fcx2Dlx3Bx0Ax2Cxxdx260x0Ax24xxgxxg /, Belonging to Tracking Cookie
Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt e-2dj6wjkokjdjago.stats.esomniture.com s_vi_6x7Ex3Dx0Cx2Ax7Dx7Ebx20x0Cx3Bx0Cx29ax0Cx23x21x0C1x3E79ex24x0Cx25x3Dx0Cx2Ax7Ebx20x0C6x0Cx29ax0Cx23x21x0C2a79ex24x0C98x3Cx0C89x0C7x0C92x0C4x3Cx24x7Eb79ex2Bjx3Dx0Cx2Ax7Ebx206x0Cx22x7Eax7Ea /, Belonging to Tracking Cookie
Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt edge.ru4.com ru4.1390 /, Belonging to Tracking Cookie
Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt edge.ru4.com ru4.1230 /, Belonging to Tracking Cookie
Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt edge.ru4.com ru4.1391 /, Belonging to Tracking Cookie
Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt edge.ru4.com ru4.1312 /, Belonging to Tracking Cookie
Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt edge.ru4.com ru4.1357 /, Belonging to Tracking Cookie
Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt edge.ru4.com ru4.1358 /, Belonging to Tracking Cookie
Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt edge.ru4.com ru4.1427 /, Belonging to Tracking Cookie
Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt edge.ru4.com ru4.1473 /, Belonging to Tracking Cookie
Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt edge.ru4.com ru4.224.track /, Belonging to Tracking Cookie
Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt edge.ru4.com ru4.uid /, Belonging to Tracking Cookie
Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt electronicarts.112.2o7.net s_vi /, Belonging to Tracking Cookie
Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt firemountaingems.122.2o7.net s_vi /, Belonging to Tracking Cookie
Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt freeze.com UserID /, Belonging to Tracking Cookie
Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt freeze.com PrpGuid /, Belonging to Tracking Cookie
Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt gcc-00.googleadservices.com GoogleCookieCrumble /gcc, Belonging to Tracking Cookie
Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt gcc-08.googleadservices.com GoogleCookieCrumble /gcc, Belonging to Tracking Cookie
Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt homestore.122.2o7.net s_vi /, Belonging to Tracking Cookie
Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt indexstats.com itvisitorid10001713091966 /, Belonging to Tracking Cookie
Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt indexstats.com itvisitorid10001016953320 /, Belonging to Tracking Cookie
Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt insightexpressai.com IXAIBannerCounter20266 /, Belonging to Tracking Cookie
Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt insightexpressai.com IXAIBanners755 /, Belonging to Tracking Cookie
Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt insightexpressai.com IXAIBannerCounter23032 /, Belonging to Tracking Cookie
Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt insightexpressai.com IXAIBanners816 /, Belonging to Tracking Cookie
Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt insightexpressai.com IXAICampaignCounter816 /, Belonging to Tracking Cookie
Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt insightexpressai.com IXAIControlCounter816 /, Belonging to Tracking Cookie
Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt insightexpressai.com IXAIBannerCounter22489 /, Belonging to Tracking Cookie
Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt insightexpressai.com IXAIBanners805 /, Belonging to Tracking Cookie
Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt insightexpressai.com IXAIFirstHit898 /, Belonging to Tracking Cookie
Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt insightexpressai.com IXAIBannerCounter25811 /, Belonging to Tracking Cookie
Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt insightexpressai.com IXAIBannerCounter15938 /, Belonging to Tracking Cookie
Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt insightexpressai.com IXAIBanners608 /, Belonging to Tracking Cookie
Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt insightexpressai.com IXAIBannerCounter24318 /, Belonging to Tracking Cookie
Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt insightexpressai.com IXAIBannerCounter25796 /, Belonging to Tracking Cookie
Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt insightexpressai.com IXAIBanners848 /, Belonging to Tracking Cookie
Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt insightexpressai.com IXAIBanners898 /, Belonging to Tracking Cookie
Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt insightexpressai.com IXAICampaignCounter848 /, Belonging to Tracking Cookie
Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt insightexpressai.com IXAICampaignCounter898 /, Belonging to Tracking Cookie
Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt insightexpressai.com IXAIFirstHit848 /, Belonging to Tracking Cookie
Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt insightexpressai.com IXAILastHit848 /, Belonging to Tracking Cookie
Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt insightexpressai.com IXAILastHit898 /, Belonging to Tracking Cookie
Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt keywordmax.com KMVisitor /, Belonging to Tracking Cookie
Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt metacafe.122.2o7.net s_vi /, Belonging to Tracking Cookie
Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt msnservices.112.2o7.net s_vi /, Belonging to Tracking Cookie
Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt njmvc.112.2o7.net s_vi /, Belonging to Tracking Cookie
Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt onetoone.112.2o7.net s_vi /, Belonging to Tracking Cookie
Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt overture.com CMUserData /, Belonging to Tracking Cookie
Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt overture.com ConvData /, Belonging to Tracking Cookie
Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt overture.com UserData /, Belonging to Tracking Cookie
Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt perf.overture.com SYSTEM_USER_ID /, Belonging to Tracking Cookie
Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt qksrv.net S /, Belonging to Tracking Cookie
Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt qksrv.net LCLK /, Belonging to Tracking Cookie
Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt real.com RNsites /, Belonging to Tracking Cookie
Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt realestate.nytimes.com __utmz /, Belonging to Tracking Cookie
Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt realestate.nytimes.com __utma /, Belonging to Tracking Cookie
Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt realestateshows.com _dmnid /, Belonging to Tracking Cookie
Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt realmedia.com andersenwindows /, Belonging to Tracking Cookie
Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt realmedia.com tfsm061504 /, Belonging to Tracking Cookie
Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt realmedia.com NXCLICK2 /, Belonging to Tracking Cookie
Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt realmedia.com RMFD /, Belonging to Tracking Cookie
Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt realmedia.com RMFL /, Belonging to Tracking Cookie
Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt realmedia.com RMID /, Belonging to Tracking Cookie
Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt realtor.com __utmz /, Belonging to Tracking Cookie
Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt realtor.com RCSitePrefs /, Belonging to Tracking Cookie
Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt realtor.com DART /, Belonging to Tracking Cookie
Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt realtor.com __utma /, Belonging to Tracking Cookie
Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt realtor.com HSID /, Belonging to Tracking Cookie
Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt sears.112.2o7.net s_vi /, Belonging to Tracking Cookie
Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt serving-sys.com A2 /, Belonging to Tracking Cookie
Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt serving-sys.com B2 /, Belonging to Tracking Cookie
Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt serving-sys.com C3 /, Belonging to Tracking Cookie
Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt serving-sys.com D3 /, Belonging to Tracking Cookie
Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt serving-sys.com E2 /, Belonging to Tracking Cookie
Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt serving-sys.com U /, Belonging to Tracking Cookie
Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt shopping.112.2o7.net s_vi /, Belonging to Tracking Cookie
Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt trafficmp.com ctime /, Belonging to Tracking Cookie
Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt trafficmp.com u /, Belonging to Tracking Cookie
Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt trafficmp.com dmg2 /, Belonging to Tracking Cookie
Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt trafficmp.com dly2 /, Belonging to Tracking Cookie
Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt trafficmp.com hst2 /, Belonging to Tracking Cookie
Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt trafficmp.com POVisit /, Belonging to Tracking Cookie
Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt trafficmp.com TMPCrByAS /, Belonging to Tracking Cookie
Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt trafficmp.com TMPFreqCap /, Belonging to Tracking Cookie
Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt trafficmp.com TMPPOByAS /, Belonging to Tracking Cookie
Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt trafficmp.com uid2 /, Belonging to Tracking Cookie
Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt trafficmp.com rth /, Belonging to Tracking Cookie
Browser: Firefox Cookie: C:\Documents and Settings\FOXY\Application Data\Mozilla\Firefox\Profiles/4pqv7s39.default\cookies.txt valueclick.net ksa /, Belonging to Tracking Cookie
MRU Path: C:\Documents and Settings\FOXY\Recent Count: 18, Belonging to MRU Object
MRU Registry Key: S-1-5-21-3361955952-2774363808-1528818316-1005\Software\Microsoft\Internet Explorer\TypedURLs Count: 1, Belonging to MRU Object

End of Cleaned Infections
===========================

#8 RichieUK

RichieUK

    Malware Assassin


  • Malware Response Team
  • 13,614 posts
  • OFFLINE
  •  
  • Local time:03:26 PM

Posted 30 December 2007 - 06:37 AM

Post a new Hijackthis log,let me know how your pc is running now.
Posted Image
Posted Image

#9 hozzi19

hozzi19
  • Topic Starter

  • Members
  • 25 posts
  • OFFLINE
  •  
  • Local time:10:26 AM

Posted 30 December 2007 - 11:06 PM

Here is my new hijack this log. My computer seems to be running a little better. I tried defraging my D: drive and it ran for an entire 24 hours and kept restarting itself. It finally just hanged at 1%. I had to reload my epower management drivers and reset my desktop background. All seems to be ok. If anything new arises, I will post again. If you seen anything here that looks funky, please let me know...Thanks for your help!


Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 11:02:50 PM, on 12/30/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16574)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Sygate\SPF\smc.exe
C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
c:\program files\common files\logitech\lvmvfm\LVPrcSrv.exe
C:\WINDOWS\RTHDCPL.EXE
C:\WINDOWS\system32\rundll32.exe
C:\Acer\Empowering Technology\eDataSecurity\eDSloader.exe
C:\Acer\Empowering Technology\ePower\ePower_DMC.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
C:\Acer\Empowering Technology\Acer.Empowering.Framework.Launcher.exe
C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
C:\Program Files\Pantone\hueyPRO\hueyPROTray.exe
C:\DOCUME~1\FOXY\LOCALS~1\Temp\RtkBtMnt.exe
C:\Acer\Empowering Technology\ePerformance\MemCheck.exe
C:\Program Files\G DATA AntiVirusKit\AVK\AVKService.exe
C:\Program Files\G DATA AntiVirusKit\AVK\AVKWCtl.exe
c:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
C:\Program Files\Common Files\LightScribe\LSSrvc.exe
C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Common Files\G DATA\AVKProxy\AVKProxy.exe
C:\WINDOWS\system32\wbem\wmiapsrv.exe
C:\WINDOWS\system32\wbem\unsecapp.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Documents and Settings\FOXY\Desktop\Virus & Malware Detection\HiJackThis.exe

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://us.rd.yahoo.com/customize/ycomp/def...//www.yahoo.com
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O3 - Toolbar: Acer eDataSecurity Management - {5CBE3B7C-1E47-477e-A7DD-396DB0476E29} - C:\WINDOWS\system32\eDStoolbar.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O4 - HKLM\..\Run: [ATICCC] "C:\Program Files\ATI Technologies\ATI.ACE\cli.exe" runtime -Delay
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [SkyTel] SkyTel.EXE
O4 - HKLM\..\Run: [AzMixerSel] C:\Program Files\Realtek\InstallShield\AzMixerSel.exe
O4 - HKLM\..\Run: [SynTPLpr] C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [ntiMUI] C:\Program Files\NewTech Infosystems\NTI CD & DVD-Maker 7\ntiMUI.exe
O4 - HKLM\..\Run: [BluetoothAuthenticationAgent] rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent
O4 - HKLM\..\Run: [IMJPMIG8.1] "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32
O4 - HKLM\..\Run: [MSPY2002] C:\WINDOWS\system32\IME\PINTLGNT\ImScInst.exe /SYNC
O4 - HKLM\..\Run: [PHIME2002ASync] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC
O4 - HKLM\..\Run: [PHIME2002A] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName
O4 - HKLM\..\Run: [eDataSecurity Loader] C:\Acer\Empowering Technology\eDataSecurity\eDSloader.exe 0
O4 - HKLM\..\Run: [Acer ePresentation HPD] C:\Acer\Empowering Technology\ePresentation\ePresentation.exe
O4 - HKLM\..\Run: [Boot] C:\Acer\Empowering Technology\ePower\Boot.exe
O4 - HKLM\..\Run: [RemoteControl] "C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe"
O4 - HKLM\..\Run: [LManager] C:\PROGRA~1\LAUNCH~1\QtZgAcer.EXE
O4 - HKLM\..\Run: [eRecoveryService] C:\Acer\Empowering Technology\eRecovery\eRAgent.exe
O4 - HKLM\..\Run: [voip phone charger] "C:\Program Files\Acer\VoIP Phone Charger\voip phone charger.exe"
O4 - HKLM\..\Run: [LVCOMSX] C:\WINDOWS\system32\LVCOMSX.EXE
O4 - HKLM\..\Run: [LogitechCameraAssistant] C:\Program Files\Acer\OrbiCam\CameraAssistant.exe
O4 - HKLM\..\Run: [LogitechVideo[inspector]] C:\Program Files\Acer\OrbiCam\InstallHelper.exe /inspect
O4 - HKLM\..\Run: [LogitechCameraService(E)] C:\WINDOWS\system32\ElkCtrl.exe /automation
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask .exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe"
O4 - HKLM\..\Run: [IntelliPoint] "C:\Program Files\Microsoft IntelliPoint\ipoint.exe"
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [AVKTray] "C:\Program Files\G DATA AntiVirusKit\AVKTray\AVKTray.exe"
O4 - HKLM\..\Run: [SmcService] C:\PROGRA~1\Sygate\SPF\smc.exe -startgui
O4 - HKLM\..\Run: [ePower_DMC] C:\Acer\Empowering Technology\ePower\ePower_DMC.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [updateMgr] c:\Program Files\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.exe AcRdB7_0_9
O4 - HKCU\..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
O4 - Global Startup: Acer Empowering Technology.lnk = ?
O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: hueyPROTray.lnk = C:\Program Files\Pantone\hueyPRO\hueyPROTray.exe
O8 - Extra context menu item: Send to &Bluetooth Device... - c:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - c:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: @btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - c:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {0B79F48A-E8D6-11DB-9283-E25056D89593} (F-Secure Online Scanner 3.1) - http://support.f-secure.com/ols/fscax.cab
O16 - DPF: {5ED80217-570B-4DA9-BF44-BE107C0EC166} (Windows Live Safety Center Base Module) - http://cdn.scan.onecare.live.com/resource/...lscbase4009.cab
O20 - Winlogon Notify: !SASWinLogon - C:\Program Files\SUPERAntiSpyware\SASWINLO.dll
O23 - Service: Ad-Aware 2007 Service (aawservice) - Lavasoft AB - C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
O23 - Service: Memory Check Service (AcerMemUsageCheckService) - Acer Inc. - C:\Acer\Empowering Technology\ePerformance\MemCheck.exe
O23 - Service: Adobe LM Service - Unknown owner - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: AVKProxy - G DATA Software AG - C:\Program Files\Common Files\G DATA\AVKProxy\AVKProxy.exe
O23 - Service: AVK Service (AVKService) - G DATA Software AG - C:\Program Files\G DATA AntiVirusKit\AVK\AVKService.exe
O23 - Service: AVK Monitor (AVKWCtl) - Unknown owner - C:\Program Files\G DATA AntiVirusKit\AVK\AVKWCtl.exe
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - c:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: iPod Service - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: Logitech Process Monitor (LVPrcSrv) - Logitech - c:\program files\common files\logitech\lvmvfm\LVPrcSrv.exe
O23 - Service: Sygate Personal Firewall (SmcService) - Sygate Technologies, Inc. - C:\Program Files\Sygate\SPF\smc.exe

--
End of file - 9914 bytes

#10 RichieUK

RichieUK

    Malware Assassin


  • Malware Response Team
  • 13,614 posts
  • OFFLINE
  •  
  • Local time:03:26 PM

Posted 31 December 2007 - 09:02 AM

Your log is clean :thumbsup: ,please do the following:

Click on Start/Run,copy and paste ComboFix /u into the 'Open:' space,then press Ok.

Posted Image

Please double-click OTMoveIt.exe again to run it.
Click on the 'Cleanup' button Posted Image
When you do this a text file named cleanup.txt will be downloaded from the internet.
If you get a warning from your firewall or other security programs regarding OTMoveIt attempting to contact the internet you should allow it to do so.
When the 'Confirm' box appears click 'Yes'.
Restart your pc when prompted.

Click on Start/All Programs/Accessories/System Tools/System Restore.
In the 'System Restore' window,click on the 'Create a Restore Point' button,then click 'Next'.
In the window that appears,enter a description\name for the Restore Point,then click on 'Create',wait,then click 'Close'.
The date and time will be created automatically.

Next click on Start/All Programs/Accessories/System Tools/Disk Cleanup.
The 'Select Drive' box will appear,click on Ok.
The 'Disk Cleanup for [C:]' box will appear,click on the 'More Options' tab.
At the bottom in the 'System Restore' window,click on the 'Clean up...' button.
A box will pop up 'Are you sure you want to delete all but the most recent restore point?',click on 'Yes'.
Click on 'Yes' at 'Are you sure you want to perform these actions?'.
Now wait until 'Disk Cleanup' finishes and the box disappears.

You should take the time to read and follow the information found in the links below,to help you prevent any possible future infections and stay safe and secure while online:

Simple and easy ways to keep your computer safe and secure on the Internet:
http://www.bleepingcomputer.com/tutorials/keep-your-computer-safe-online/

How to prevent Malware:
http://users.telenet.be/bluepatchy/miekiem...prevention.html

So how did I get infected in the first place:
http://forums.spybot.info/showthread.php?t=279

Malware Cleanup Programs and Preventative Procedures:
http://russelltexas.com/malware/allclear.htm
Posted Image
Posted Image




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users