Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

computer still slow and browser hijacked after antivirus maleware infectoin


  • Please log in to reply
12 replies to this topic

#1 ppate10

ppate10

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Local time:12:06 AM

Posted 29 August 2010 - 09:04 PM

I was browsing the internet when I noticed a popup warning me that I had a dozen or so infected files on my computer so I should download a antivirus program. I instantly 'x'-ed out of the widnow, but the pop up kept coming back. So I did the following:

1. I ran a complete scan on my regular antivirus (McAfee) but when that didn't find anything..
2. I next ran Malewarebytes anti-malware, which removed a couple files (trojans)
3. I ran Spybot search and destroy which removed about 73 suspicious files.

After all this I was so sure that my computer was clean again.
However currently when I browse the internet I see recurrent popups for the antivirus removal download and the browser opens up new tabs to www.google.com/webhp on its own! Worst of all, my computer is extremely slow. Please guide me as to what to do next. I hope we can resolve this without having to reformat my whole computer. THanks

BC AdBot (Login to Remove)

 


#2 Budapest

Budapest

    Bleepin' Cynic


  • Moderator
  • 23,579 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:03:06 PM

Posted 06 September 2010 - 01:32 AM

Download this file and save it to your desktop:

http://download.bleepingcomputer.com/grinler/rkill.scr

Double-click the file to run it. A command window will open briefly. Then run a quick scan with Malwarebytes. Post the Malwarebytes log.
The power of accurate observation is commonly called cynicism by those who haven't got it.

—George Bernard Shaw

#3 ppate10

ppate10
  • Topic Starter

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Local time:12:06 AM

Posted 08 September 2010 - 09:03 PM

This log file is located at C:\rkill.log.
Please post this only if requested to by the person helping you.
Otherwise you can close this log when you wish.
Ran as Owner on 09/08/2010 at 21:01:50.


Services Stopped:


Processes terminated by Rkill or while it was running:


C:\Documents and Settings\Owner\Desktop\rkill.scr


Rkill completed on 09/08/2010 at 21:02:13.

#4 ppate10

ppate10
  • Topic Starter

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Local time:12:06 AM

Posted 08 September 2010 - 10:59 PM

Malwarebytes' Anti-Malware 1.46
www.malwarebytes.org

Database version: 4577

Windows 5.1.2600 Service Pack 3
Internet Explorer 8.0.6001.18702

9/8/2010 10:58:54 PM
mbam-log-2010-09-08 (22-58-54).txt

Scan type: Full scan (A:\|C:\|D:\|E:\|F:\|)
Objects scanned: 169043
Time elapsed: 1 hour(s), 22 minute(s), 11 second(s)

Memory Processes Infected: 0
Memory Modules Infected: 1
Registry Keys Infected: 4
Registry Values Infected: 2
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 1

Memory Processes Infected:
(No malicious items detected)

Memory Modules Infected:
C:\Documents and Settings\All Users\Application Data\Adobe\sp.DLL (TrojanProxy.Agent) -> Delete on reboot.

Registry Keys Infected:
HKEY_CLASSES_ROOT\sp (TrojanProxy.Agent) -> Delete on reboot.
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\spservice (TrojanProxy.Agent) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{96afbe69-c3b0-4b00-8578-d933d2896ee2} (TrojanProxy.Agent) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\sp (TrojanProxy.Agent) -> Quarantined and deleted successfully.

Registry Values Infected:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\{96afbe69-c3b0-4b00-8578-d933d2896ee2} (TrojanProxy.Agent) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\netsvc (TrojanProxy.Agent) -> Quarantined and deleted successfully.

Registry Data Items Infected:
(No malicious items detected)

Folders Infected:
(No malicious items detected)

Files Infected:
C:\Documents and Settings\All Users\Application Data\Adobe\sp.DLL (TrojanProxy.Agent) -> Delete on reboot.

#5 Budapest

Budapest

    Bleepin' Cynic


  • Moderator
  • 23,579 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:03:06 PM

Posted 08 September 2010 - 11:57 PM

Please download and scan with SUPERAntiSpyware Free
  • Double-click SUPERAntiSypware.exe and use the default settings for installation.
  • An icon will be created on your desktop. Double-click that icon to launch the program.
  • If it will not start, go to Start > All Prgrams > SUPERAntiSpyware and click on Alternate Start.
  • If asked to update the program definitions, click "Yes". If not, update the definitions before scanning by selecting "Check for Updates". (If you encounter any problems while downloading the updates, manually download them from here. Double-click on the hyperlink for Download Installer and save SASDEFINITIONS.EXE to your desktop. Then double-click on SASDEFINITIONS.EXE to install the definitions.)
  • In the Main Menu, click the Preferences... button.
  • Click the "General and Startup" tab, and under Start-up Options, make sure "Start SUPERAntiSpyware when Windows starts" box is unchecked.
  • Click the "Scanning Control" tab, and under Scanner Options, make sure the following are checked (leave all others unchecked):
    • Close browsers before scanning.
    • Scan for tracking cookies.
    • Terminate memory threats before quarantining.
  • Click the "Close" button to leave the control center screen and exit the program.
  • Do not run a scan just yet.
Reboot your computer in "Safe Mode" using the F8 method. To do this, restart your computer and after hearing your computer beep once during startup (but before the Windows icon appears) press the F8 key repeatedly. A menu will appear with several options. Use the arrow keys to navigate and select the option to run Windows in "Safe Mode".

Scan with SUPERAntiSpyware as follows:
  • Launch the program and back on the main screen, under "Scan for Harmful Software" click Scan your computer.
  • On the left, make sure you check C:\Fixed Drive.
  • On the right, under "Complete Scan", choose Perform Complete Scan and click "Next".
  • After the scan is complete, a Scan Summary box will appear with potentially harmful items that were detected. Click "OK".
  • Make sure everything has a checkmark next to it and click "Next".
  • A notification will appear that "Quarantine and Removal is Complete". Click "OK" and then click the "Finish" button to return to the main menu.
  • If asked if you want to reboot, click "Yes" and reboot normally.
  • To retrieve the removal information after reboot, launch SUPERAntispyware again.
    • Click Preferences, then click the Statistics/Logs tab.
    • Under Scanner Logs, double-click SUPERAntiSpyware Scan Log.
    • If there are several logs, click the current dated log and press View log. A text file will open in your default text editor.
    • Please copy and paste the Scan Log results in your next reply.
  • Click Close to exit the program.
If you have a problem downloading, installing or getting SAS to run, try downloading and using the SUPERAntiSpyware Portable Scanner instead. Save the randomly named file (i.e. SAS_1710895.COM) to a usb drive or CD and transfer to the infected computer. Then double-click on it to launch and scan. The file is randomly named to help keep malware from blocking the scanner.
The power of accurate observation is commonly called cynicism by those who haven't got it.

—George Bernard Shaw

#6 ppate10

ppate10
  • Topic Starter

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Local time:12:06 AM

Posted 15 September 2010 - 10:23 PM

SUPERAntiSpyware Scan Log
http://www.superantispyware.com

Generated 09/15/2010 at 09:58 PM

Application Version : 4.43.1000

Core Rules Database Version : 5514
Trace Rules Database Version: 3326

Scan type : Complete Scan
Total Scan Time : 01:21:55

Memory items scanned : 294
Memory threats detected : 0
Registry items scanned : 5756
Registry threats detected : 0
File items scanned : 17080
File threats detected : 565

Adware.Tracking Cookie
C:\Documents and Settings\Owner\Cookies\owner@cdn4.specificclick[1].txt
C:\Documents and Settings\Owner\Cookies\owner@content.yieldmanager[2].txt
C:\Documents and Settings\Owner\Cookies\owner@advertising[2].txt
C:\Documents and Settings\Owner\Cookies\owner@oasn04.247realmedia[1].txt
C:\Documents and Settings\Owner\Cookies\owner@247realmedia[2].txt
C:\Documents and Settings\Owner\Cookies\owner@bs.serving-sys[2].txt
C:\Documents and Settings\Owner\Cookies\owner@ad.wsod[1].txt
C:\Documents and Settings\Owner\Cookies\owner@kontera[1].txt
C:\Documents and Settings\Owner\Cookies\owner@realmedia[2].txt
C:\Documents and Settings\Owner\Cookies\owner@smartmoney.112.2o7[1].txt
C:\Documents and Settings\Owner\Cookies\owner@tribalfusion[1].txt
C:\Documents and Settings\Owner\Cookies\owner@specificclick[2].txt
C:\Documents and Settings\Owner\Cookies\owner@lucidmedia[2].txt
C:\Documents and Settings\Owner\Cookies\owner@interclick[2].txt
C:\Documents and Settings\Owner\Cookies\owner@a1.interclick[2].txt
C:\Documents and Settings\Owner\Cookies\owner@revsci[2].txt
C:\Documents and Settings\Owner\Cookies\owner@atdmt[1].txt
C:\Documents and Settings\Owner\Cookies\owner@collective-media[1].txt
C:\Documents and Settings\Owner\Cookies\owner@yieldmanager[1].txt
C:\Documents and Settings\Owner\Cookies\owner@microsoftwindows.112.2o7[1].txt
C:\Documents and Settings\Owner\Cookies\owner@content.yieldmanager[3].txt
C:\Documents and Settings\Owner\Cookies\owner@msnportal.112.2o7[1].txt
C:\Documents and Settings\Owner\Cookies\owner@specificmedia[1].txt
C:\Documents and Settings\Owner\Cookies\owner@trafficmp[1].txt
C:\Documents and Settings\Owner\Cookies\owner@serving-sys[2].txt
C:\Documents and Settings\Owner\Cookies\owner@invitemedia[2].txt
media.mtvnservices.com [ C:\Documents and Settings\LocalService\Application Data\Macromedia\Flash Player\#SharedObjects\BM5ZSQTV ]
media.scanscout.com [ C:\Documents and Settings\LocalService\Application Data\Macromedia\Flash Player\#SharedObjects\BM5ZSQTV ]
objects.tremormedia.com [ C:\Documents and Settings\LocalService\Application Data\Macromedia\Flash Player\#SharedObjects\BM5ZSQTV ]
secure-us.imrworldwide.com [ C:\Documents and Settings\LocalService\Application Data\Macromedia\Flash Player\#SharedObjects\BM5ZSQTV ]
C:\Documents and Settings\LocalService\Cookies\system@tribalfusion[1].txt
C:\Documents and Settings\LocalService\Cookies\system@dc.tremormedia[2].txt
core.insightexpressai.com [ C:\Documents and Settings\NetworkService\Application Data\Macromedia\Flash Player\#SharedObjects\KDM5LWA7 ]
media.entertonement.com [ C:\Documents and Settings\NetworkService\Application Data\Macromedia\Flash Player\#SharedObjects\KDM5LWA7 ]
media.mtvnservices.com [ C:\Documents and Settings\NetworkService\Application Data\Macromedia\Flash Player\#SharedObjects\KDM5LWA7 ]
media.scanscout.com [ C:\Documents and Settings\NetworkService\Application Data\Macromedia\Flash Player\#SharedObjects\KDM5LWA7 ]
media1.break.com [ C:\Documents and Settings\NetworkService\Application Data\Macromedia\Flash Player\#SharedObjects\KDM5LWA7 ]
objects.tremormedia.com [ C:\Documents and Settings\NetworkService\Application Data\Macromedia\Flash Player\#SharedObjects\KDM5LWA7 ]
secure-us.imrworldwide.com [ C:\Documents and Settings\NetworkService\Application Data\Macromedia\Flash Player\#SharedObjects\KDM5LWA7 ]
C:\Documents and Settings\NetworkService\Cookies\system@apmebf[1].txt
C:\Documents and Settings\NetworkService\Cookies\system@clickpayz9.91469.searchtigo[1].txt
C:\Documents and Settings\NetworkService\Cookies\system@247realmedia[1].txt
C:\Documents and Settings\NetworkService\Cookies\system@ads.pointroll[1].txt
C:\Documents and Settings\NetworkService\Cookies\system@247realmedia[2].txt
C:\Documents and Settings\NetworkService\Cookies\system@dc.tremormedia[3].txt
C:\Documents and Settings\NetworkService\Cookies\system@247realmedia[3].txt
C:\Documents and Settings\NetworkService\Cookies\system@dc.tremormedia[1].txt
C:\Documents and Settings\NetworkService\Cookies\system@doubleclick[2].txt
C:\Documents and Settings\NetworkService\Cookies\system@doubleclick[1].txt
C:\Documents and Settings\NetworkService\Cookies\system@ads.lycos[2].txt
C:\Documents and Settings\NetworkService\Cookies\system@bizzclick[1].txt
C:\Documents and Settings\NetworkService\Cookies\system@adecn[4].txt
C:\Documents and Settings\NetworkService\Cookies\system@adecn[2].txt
C:\Documents and Settings\NetworkService\Cookies\system@adecn[3].txt
C:\Documents and Settings\NetworkService\Cookies\system@atdmt[3].txt
C:\Documents and Settings\NetworkService\Cookies\system@atdmt[2].txt
C:\Documents and Settings\NetworkService\Cookies\system@atdmt[1].txt
C:\Documents and Settings\NetworkService\Cookies\system@azjmp[2].txt
C:\Documents and Settings\NetworkService\Cookies\system@bridge2.admarketplace[1].txt
C:\Documents and Settings\NetworkService\Cookies\system@ads.bighealthtree[2].txt
C:\Documents and Settings\NetworkService\Cookies\system@ads.bighealthtree[1].txt
C:\Documents and Settings\NetworkService\Cookies\system@bizzclick[3].txt
C:\Documents and Settings\NetworkService\Cookies\system@bizzclick[2].txt
C:\Documents and Settings\NetworkService\Cookies\system@tracking.realtor[1].txt
C:\Documents and Settings\NetworkService\Cookies\system@admarketplace[1].txt
C:\Documents and Settings\NetworkService\Cookies\system@advertise[3].txt
C:\Documents and Settings\NetworkService\Cookies\system@apmebf[3].txt
C:\Documents and Settings\NetworkService\Cookies\system@interclick[2].txt
C:\Documents and Settings\NetworkService\Cookies\system@advertise[5].txt
C:\Documents and Settings\NetworkService\Cookies\system@advertise[4].txt
C:\Documents and Settings\NetworkService\Cookies\system@advertise[2].txt
C:\Documents and Settings\NetworkService\Cookies\system@advertise[1].txt
C:\Documents and Settings\NetworkService\Cookies\system@ads.wallst[2].txt
C:\Documents and Settings\NetworkService\Cookies\system@specificmedia[2].txt
C:\Documents and Settings\NetworkService\Cookies\system@specificmedia[1].txt
C:\Documents and Settings\NetworkService\Cookies\system@ru4[3].txt
C:\Documents and Settings\NetworkService\Cookies\system@ru4[2].txt
C:\Documents and Settings\NetworkService\Cookies\system@burstnet[2].txt
C:\Documents and Settings\NetworkService\Cookies\system@adbrite[3].txt
C:\Documents and Settings\NetworkService\Cookies\system@adbrite[2].txt
C:\Documents and Settings\NetworkService\Cookies\system@adbrite[1].txt
C:\Documents and Settings\NetworkService\Cookies\system@videoegg.adbureau[3].txt
C:\Documents and Settings\NetworkService\Cookies\system@videoegg.adbureau[2].txt
C:\Documents and Settings\NetworkService\Cookies\system@invitemedia[5].txt
C:\Documents and Settings\NetworkService\Cookies\system@invitemedia[6].txt
C:\Documents and Settings\NetworkService\Cookies\system@invitemedia[3].txt
C:\Documents and Settings\NetworkService\Cookies\system@invitemedia[4].txt
C:\Documents and Settings\NetworkService\Cookies\system@invitemedia[1].txt
C:\Documents and Settings\NetworkService\Cookies\system@invitemedia[2].txt
C:\Documents and Settings\NetworkService\Cookies\system@crackle[1].txt
C:\Documents and Settings\NetworkService\Cookies\system@www.businessfind[1].txt
C:\Documents and Settings\NetworkService\Cookies\system@click.fastpartner[1].txt
C:\Documents and Settings\NetworkService\Cookies\system@burstnet[1].txt
C:\Documents and Settings\NetworkService\Cookies\system@ads.financialcontent[2].txt
C:\Documents and Settings\NetworkService\Cookies\system@ads.financialcontent[3].txt
C:\Documents and Settings\NetworkService\Cookies\system@media6degrees[3].txt
C:\Documents and Settings\NetworkService\Cookies\system@media6degrees[2].txt
C:\Documents and Settings\NetworkService\Cookies\system@media6degrees[1].txt
C:\Documents and Settings\NetworkService\Cookies\system@mediaplex[2].txt
C:\Documents and Settings\NetworkService\Cookies\system@adserver.adtechus[3].txt
C:\Documents and Settings\NetworkService\Cookies\system@adserver.adtechus[2].txt
C:\Documents and Settings\NetworkService\Cookies\system@adserver.adtechus[1].txt
C:\Documents and Settings\NetworkService\Cookies\system@insightexpressai[1].txt
C:\Documents and Settings\NetworkService\Cookies\system@bs.serving-sys[1].txt
C:\Documents and Settings\NetworkService\Cookies\system@ads.pubmatic[3].txt
C:\Documents and Settings\NetworkService\Cookies\system@bs.serving-sys[5].txt
C:\Documents and Settings\NetworkService\Cookies\system@casalemedia[1].txt
C:\Documents and Settings\NetworkService\Cookies\system@ads.pubmatic[4].txt
C:\Documents and Settings\NetworkService\Cookies\system@bs.serving-sys[2].txt
C:\Documents and Settings\NetworkService\Cookies\system@ads.pubmatic[1].txt
C:\Documents and Settings\NetworkService\Cookies\system@ads.pubmatic[5].txt
C:\Documents and Settings\NetworkService\Cookies\system@bs.serving-sys[3].txt
C:\Documents and Settings\NetworkService\Cookies\system@ad.yieldmanager[3].txt
C:\Documents and Settings\NetworkService\Cookies\system@ad.yieldmanager[2].txt
C:\Documents and Settings\NetworkService\Cookies\system@ad.yieldmanager[1].txt
C:\Documents and Settings\NetworkService\Cookies\system@ad.yieldmanager[4].txt
C:\Documents and Settings\NetworkService\Cookies\system@content.yieldmanager[4].txt
C:\Documents and Settings\NetworkService\Cookies\system@realmedia[3].txt
C:\Documents and Settings\NetworkService\Cookies\system@realmedia[2].txt
C:\Documents and Settings\NetworkService\Cookies\system@realmedia[1].txt
C:\Documents and Settings\NetworkService\Cookies\system@picadmedia[1].txt
C:\Documents and Settings\NetworkService\Cookies\system@content.yieldmanager[1].txt
C:\Documents and Settings\NetworkService\Cookies\system@content.yieldmanager[5].txt
C:\Documents and Settings\NetworkService\Cookies\system@content.yieldmanager[2].txt
C:\Documents and Settings\NetworkService\Cookies\system@content.yieldmanager[3].txt
C:\Documents and Settings\NetworkService\Cookies\system@ad.yieldmanager[8].txt
C:\Documents and Settings\NetworkService\Cookies\system@ad.yieldmanager[6].txt
C:\Documents and Settings\NetworkService\Cookies\system@ad.yieldmanager[5].txt
C:\Documents and Settings\NetworkService\Cookies\system@fastclick[1].txt
C:\Documents and Settings\NetworkService\Cookies\system@realmedia[5].txt
C:\Documents and Settings\NetworkService\Cookies\system@realmedia[4].txt
C:\Documents and Settings\NetworkService\Cookies\system@zedo[1].txt
C:\Documents and Settings\NetworkService\Cookies\system@ads.undertone[2].txt
C:\Documents and Settings\NetworkService\Cookies\system@ads.undertone[1].txt
C:\Documents and Settings\NetworkService\Cookies\system@zedo[2].txt
C:\Documents and Settings\NetworkService\Cookies\system@p216t1s859074.kronos.bravenetmedia[1].txt
C:\Documents and Settings\NetworkService\Cookies\system@ads.gossipcenter[1].txt
C:\Documents and Settings\NetworkService\Cookies\system@www.burstbeacon[2].txt
C:\Documents and Settings\NetworkService\Cookies\system@www.burstbeacon[1].txt
C:\Documents and Settings\NetworkService\Cookies\system@homestore.122.2o7[1].txt
C:\Documents and Settings\NetworkService\Cookies\system@tribalfusion[4].txt
C:\Documents and Settings\NetworkService\Cookies\system@a1.interclick[2].txt
C:\Documents and Settings\NetworkService\Cookies\system@tribalfusion[1].txt
C:\Documents and Settings\NetworkService\Cookies\system@tribalfusion[2].txt
C:\Documents and Settings\NetworkService\Cookies\system@www.burstnet[1].txt
C:\Documents and Settings\NetworkService\Cookies\system@gotacha.rotator.hadj7.adjuggler[1].txt
C:\Documents and Settings\NetworkService\Cookies\system@tribalfusion[3].txt
C:\Documents and Settings\NetworkService\Cookies\system@serving-sys[3].txt
C:\Documents and Settings\NetworkService\Cookies\system@serving-sys[2].txt
C:\Documents and Settings\NetworkService\Cookies\system@serving-sys[1].txt
C:\Documents and Settings\NetworkService\Cookies\system@www.burstnet[2].txt
C:\Documents and Settings\NetworkService\Cookies\system@cdn1.trafficmp[4].txt
C:\Documents and Settings\NetworkService\Cookies\system@clickpayz3.91457.asklots[1].txt
C:\Documents and Settings\NetworkService\Cookies\system@oasn04.247realmedia[2].txt
C:\Documents and Settings\NetworkService\Cookies\system@cdn1.trafficmp[1].txt
C:\Documents and Settings\NetworkService\Cookies\system@questionmarket[1].txt
C:\Documents and Settings\NetworkService\Cookies\system@cdn1.trafficmp[2].txt
C:\Documents and Settings\NetworkService\Cookies\system@trafficmp[3].txt
C:\Documents and Settings\NetworkService\Cookies\system@trafficmp[2].txt
C:\Documents and Settings\NetworkService\Cookies\system@trafficmp[4].txt
C:\Documents and Settings\NetworkService\Cookies\system@oasn04.247realmedia[1].txt
C:\Documents and Settings\NetworkService\Cookies\system@questionmarket[2].txt
C:\Documents and Settings\NetworkService\Cookies\system@revsci[2].txt
C:\Documents and Settings\NetworkService\Cookies\system@serving-sys[5].txt
C:\Documents and Settings\NetworkService\Cookies\system@network.realmedia[4].txt
C:\Documents and Settings\NetworkService\Cookies\system@network.realmedia[1].txt
C:\Documents and Settings\NetworkService\Cookies\system@network.realmedia[2].txt
C:\Documents and Settings\NetworkService\Cookies\system@eas.apm.emediate[1].txt
C:\Documents and Settings\NetworkService\Cookies\system@specificclick[3].txt
C:\Documents and Settings\NetworkService\Cookies\system@specificclick[2].txt
C:\Documents and Settings\NetworkService\Cookies\system@ad.candystand[3].txt
C:\Documents and Settings\NetworkService\Cookies\system@ad.candystand[2].txt
C:\Documents and Settings\NetworkService\Cookies\system@t.pointroll[2].txt
C:\Documents and Settings\NetworkService\Cookies\system@mediabrandsww[1].txt
C:\Documents and Settings\NetworkService\Cookies\system@imrworldwide[3].txt
C:\Documents and Settings\NetworkService\Cookies\system@businessfind[1].txt
C:\Documents and Settings\NetworkService\Cookies\system@xml.titusmedia[3].txt
C:\Documents and Settings\NetworkService\Cookies\system@collective-media[6].txt
C:\Documents and Settings\NetworkService\Cookies\system@collective-media[2].txt
C:\Documents and Settings\NetworkService\Cookies\system@imrworldwide[4].txt
C:\Documents and Settings\NetworkService\Cookies\system@media.mtvnservices[1].txt
C:\Documents and Settings\NetworkService\Cookies\system@xml.titusmedia[4].txt
C:\Documents and Settings\NetworkService\Cookies\system@collective-media[3].txt
C:\Documents and Settings\NetworkService\Cookies\system@xml.titusmedia[1].txt
C:\Documents and Settings\NetworkService\Cookies\system@amex-insights[1].txt
C:\Documents and Settings\NetworkService\Cookies\system@imrworldwide[2].txt
C:\Documents and Settings\NetworkService\Cookies\system@pointroll[2].txt
C:\Documents and Settings\NetworkService\Cookies\system@xml.titusmedia[2].txt
C:\Documents and Settings\NetworkService\Cookies\system@collective-media[1].txt
C:\Documents and Settings\NetworkService\Cookies\system@collective-media[5].txt
C:\Documents and Settings\NetworkService\Cookies\system@adecn[1].txt
C:\Documents and Settings\NetworkService\Cookies\system@statcounter[1].txt
a.ads2.msads.net [ C:\Documents and Settings\Owner\Application Data\Macromedia\Flash Player\#SharedObjects\BMPSQX4L ]
b.ads2.msads.net [ C:\Documents and Settings\Owner\Application Data\Macromedia\Flash Player\#SharedObjects\BMPSQX4L ]
broadcast.piximedia.fr [ C:\Documents and Settings\Owner\Application Data\Macromedia\Flash Player\#SharedObjects\BMPSQX4L ]
cdn4.specificclick.net [ C:\Documents and Settings\Owner\Application Data\Macromedia\Flash Player\#SharedObjects\BMPSQX4L ]
imagec05.247realmedia.com [ C:\Documents and Settings\Owner\Application Data\Macromedia\Flash Player\#SharedObjects\BMPSQX4L ]
interclick.com [ C:\Documents and Settings\Owner\Application Data\Macromedia\Flash Player\#SharedObjects\BMPSQX4L ]
mediaforgews.com [ C:\Documents and Settings\Owner\Application Data\Macromedia\Flash Player\#SharedObjects\BMPSQX4L ]
serving-sys.com [ C:\Documents and Settings\Owner\Application Data\Macromedia\Flash Player\#SharedObjects\BMPSQX4L ]
udn.specificclick.net [ C:\Documents and Settings\Owner\Application Data\Macromedia\Flash Player\#SharedObjects\BMPSQX4L ]
.247realmedia.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.247realmedia.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.advertising.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.atdmt.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.collective-media.net [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.interclick.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.specificclick.net [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.specificclick.net [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.trafficmp.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.advertising.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.advertising.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.advertising.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.advertising.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.specificclick.net [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.specificmedia.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.a1.interclick.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.interclick.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.adserver.adtechus.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.trafficmp.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.trafficmp.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.trafficmp.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.trafficmp.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.media6degrees.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.media6degrees.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.richmedia.yahoo.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.bs.serving-sys.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.serving-sys.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.serving-sys.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.serving-sys.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.serving-sys.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.serving-sys.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.questionmarket.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.banners.exitexchange.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.ads.pointroll.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.ads.pointroll.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.ads.pointroll.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.ads.pointroll.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.ads.pointroll.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.ads.pointroll.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.insightexpressai.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.insightexpressai.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.tacoda.net [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.tacoda.net [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.usatoday1.112.2o7.net [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.advertising.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.at.atwola.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.revsci.net [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.imrworldwide.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.112.2o7.net [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.chitika.net [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.ads.ozonemedia.co.in [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.yieldmanager.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.ads.ozonemedia.co.in [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.media6degrees.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.media6degrees.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
ads.bridgetrack.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.ldproducts.122.2o7.net [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.realmedia.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.realmedia.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.overture.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.overture.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.bizrate.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
tracking.foundry42.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
tracking.foundry42.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.nextag.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.nextag.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.nextag.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.nextag.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.nextag.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.experianservicescorp.122.2o7.net [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.atdmt.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.overture.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.adinterax.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.adinterax.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.adopt.specificclick.net [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.ads.ozonemedia.co.in [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.msnportal.112.2o7.net [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.eb.adbureau.net [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.eb.adbureau.net [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.eb.adbureau.net [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.eb.adbureau.net [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.eb.adbureau.net [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.eb.adbureau.net [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.smartmoney.112.2o7.net [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.adlegend.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.pro-market.net [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.at.atwola.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.atdmt.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.farecastcom.122.2o7.net [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.atdmt.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.trvlnet.adbureau.net [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.triseptsolutions.122.2o7.net [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.realmedia.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.roiservice.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.trvlnet.adbureau.net [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.realmedia.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.trvlnet.adbureau.net [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.trvlnet.adbureau.net [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.trvlnet.adbureau.net [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.trvlnet.adbureau.net [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.trvlnet.adbureau.net [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.hotelscom.122.2o7.net [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.nextag.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.nextag.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.roiservice.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.2o7.net [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.yieldmanager.net [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.dailyheraldpaddockpublication.112.2o7.net [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.overture.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.dmtracker.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.chicagosuntimes.122.2o7.net [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.specificclick.net [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
cdn4.specificclick.net [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
cdn4.specificclick.net [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.specificclick.net [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.2o7.net [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.etrade.122.2o7.net [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.247realmedia.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.media.medhelp.org [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.medhelpinternational.112.2o7.net [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
stat.onestat.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
stat.onestat.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.freefind.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.2o7.net [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.2o7.net [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.imrworldwide.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.2o7.net [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.invitemedia.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.invitemedia.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.invitemedia.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.paypal.112.2o7.net [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.stats.paypal.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.2o7.net [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.2o7.net [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
adserving.autotrader.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.lucidmedia.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.lucidmedia.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.lucidmedia.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.ctabustracker.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
www.ctabustracker.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
www.ctabustracker.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
www.ctabustracker.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
rotator.adjuggler.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
rotator.adjuggler.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
stat.dealtime.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.shopping.112.2o7.net [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.a1.interclick.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.iacas.adbureau.net [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.iacas.adbureau.net [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.iacas.adbureau.net [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.pointroll.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
ad.yieldmanager.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.ads.specificmedia.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.invitemedia.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.ads.pointroll.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.pointroll.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
ad.yieldmanager.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.eyewonder.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.roiservice.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.interclick.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.specificclick.net [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
ad.yieldmanager.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
sales.liveperson.net [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
www.windowsmedia.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.www.windowsmedia.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.ads.pointroll.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.invitemedia.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.invitemedia.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.invitemedia.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.traveladvertising.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
ad.yieldmanager.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
findkrishna.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
www.dollsofindia.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.dollsofindia.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
www5.addfreestats.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.trafficmp.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.media6degrees.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.azjmp.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
ad1.emediate.dk [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
ad1.emediate.dk [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.2o7.net [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
server.iad.liveperson.net [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.at.atwola.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.2o7.net [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.a1.interclick.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
cdn4.specificclick.net [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.adecn.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
cdn4.specificclick.net [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
cdn4.specificclick.net [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
cdn4.specificclick.net [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.a.websponsors.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.mediaforgews.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.adxpose.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.goodyear.122.2o7.net [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.specificclick.net [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.bs.serving-sys.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.trafficmp.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.nextag.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.tacoda.net [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.nextag.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.intermundomedia.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.serving-sys.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.serving-sys.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.2o7.net [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.insightexpressai.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.insightexpressai.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.insightexpressai.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.insightexpressai.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.insightexpressai.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.insightexpressai.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.insightexpressai.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.insightexpressai.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.insightexpressai.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.insightexpressai.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.insightexpressai.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.a1.interclick.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.interclick.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.ru4.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.ru4.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.ru4.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.ru4.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.trafficmp.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.trafficmp.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
cdn4.specificclick.net [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.media6degrees.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.insightexpressai.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.insightexpressai.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
findkrishna.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
findkrishna.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.edge.ru4.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.edge.ru4.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.tribalfusion.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.liveperson.net [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.liveperson.net [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.media6degrees.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.nextag.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.nextag.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
traffic.buyservices.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.buycom.122.2o7.net [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.liveperson.net [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.liveperson.net [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.liveperson.net [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.interclick.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.revsci.net [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.insightexpressai.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.insightexpressai.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.insightexpressai.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.insightexpressai.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.insightexpressai.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.insightexpressai.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.insightexpressai.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
www6.addfreestats.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.hotlog.ru [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.a1.interclick.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.invitemedia.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.insightexpressai.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.oasn04.247realmedia.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.insightexpressai.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.kontera.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.2o7.net [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.liveperson.net [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.insightexpressai.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.insightexpressai.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.insightexpressai.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.insightexpressai.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.insightexpressai.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.nextag.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.liveperson.net [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.dealtime.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.dealtime.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
citi.bridgetrack.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
citi.bridgetrack.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
ad.yieldmanager.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.adlegend.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.247realmedia.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.insightexpressai.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.insightexpressai.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.insightexpressai.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.insightexpressai.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.insightexpressai.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.traveladvertising.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.microsoftwindows.112.2o7.net [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.atdmt.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.atdmt.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.lynxtrack.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.insightexpressai.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.insightexpressai.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.insightexpressai.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.insightexpressai.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.insightexpressai.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
www.burstbeacon.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.burstbeacon.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.lucidmedia.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.lucidmedia.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.kontera.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.couponmountain.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.couponmountain.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.couponmountain.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
cdn4.specificclick.net [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
cdn4.specificclick.net [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.specificclick.net [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
cdn4.specificclick.net [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
ad.yieldmanager.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
ad.yieldmanager.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.lucidmedia.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.lucidmedia.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.lucidmedia.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.lucidmedia.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.lucidmedia.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.insightexpressai.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.insightexpressai.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
gjadserver.securesites.net [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
in.getclicky.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.insightexpressai.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.insightexpressai.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.lucidmedia.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.lucidmedia.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.thomsonscientificaccounting.112.2o7.net [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.insightexpressai.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.insightexpressai.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.revsci.net [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.revsci.net [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
banner.adchemy.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
banner.adchemy.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.myroitracking.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.clicksor.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.clicksor.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.clicksor.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.clicksor.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.clicksor.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.insightexpressai.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.revsci.net [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.advertise.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
counter.surfcounters.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
bridge2.admarketplace.net [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.admarketplace.net [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
www.apartmentfinder.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.apartmentfinder.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.apartmentfinder.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.apartmentfinder.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.apartmentfinder.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.apartmentfinder.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.oasn04.247realmedia.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.collective-media.net [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.collective-media.net [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.walmart.112.2o7.net [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.insightexpressai.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.insightexpressai.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.insightexpressai.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.insightexpressai.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.content.yieldmanager.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.revsci.net [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.questionmarket.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.lucidmedia.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.lucidmedia.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.trafficmp.com [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.revsci.net [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.scotts.122.2o7.net [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.revsci.net [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]
.revsci.net [ C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\5xex7xu6.default\cookies.sqlite ]

Rogue.AntiMalwareDoctor
C:\Documents and Settings\Owner\Application Data\BCE42CDBB4E704230E2E657E7EC4B3D1

Trojan.Agent/Gen
C:\DOCUMENTS AND SETTINGS\OWNER\DESKTOP\RKILL.SCR
C:\WINDOWS\Prefetch\RKILL.SCR-1777C016.pf

Trojan.Agent/Gen-Nullo[Short]
C:\SYSTEM VOLUME INFORMATION\_RESTORE{AA8A7585-5172-4F5A-A15B-B9B2132F92B4}\RP294\A0021521.EXE

#7 ppate10

ppate10
  • Topic Starter

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Local time:12:06 AM

Posted 15 September 2010 - 10:25 PM

Just as an update: even after removing lots of spyware using spybot search and destroy and this SUPER anti-spyware, I still have random ads popping up in new tabs in firefox as i browse the net. Please advise further. Thanks

#8 Budapest

Budapest

    Bleepin' Cynic


  • Moderator
  • 23,579 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:03:06 PM

Posted 16 September 2010 - 12:18 AM

Try this:

http://www.bleepingcomputer.com/virus-remo...sing-tdsskiller
The power of accurate observation is commonly called cynicism by those who haven't got it.

—George Bernard Shaw

#9 ppate10

ppate10
  • Topic Starter

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Local time:12:06 AM

Posted 16 September 2010 - 10:43 PM

2010/09/16 20:53:03.0483 TDSS rootkit removing tool 2.4.2.1 Sep 7 2010 14:43:44
2010/09/16 20:53:03.0483 ================================================================================
2010/09/16 20:53:03.0483 SystemInfo:
2010/09/16 20:53:03.0483
2010/09/16 20:53:03.0483 OS Version: 5.1.2600 ServicePack: 3.0
2010/09/16 20:53:03.0483 Product type: Workstation
2010/09/16 20:53:03.0483 ComputerName: SURAJ_SUN
2010/09/16 20:53:03.0483 UserName: Owner
2010/09/16 20:53:03.0483 Windows directory: C:\WINDOWS
2010/09/16 20:53:03.0483 System windows directory: C:\WINDOWS
2010/09/16 20:53:03.0483 Processor architecture: Intel x86
2010/09/16 20:53:03.0483 Number of processors: 1
2010/09/16 20:53:03.0483 Page size: 0x1000
2010/09/16 20:53:03.0483 Boot type: Normal boot
2010/09/16 20:53:03.0483 ================================================================================
2010/09/16 20:53:04.0811 Initialize success
2010/09/16 20:53:07.0498 ================================================================================
2010/09/16 20:53:07.0498 Scan started
2010/09/16 20:53:07.0498 Mode: Manual;
2010/09/16 20:53:07.0498 ================================================================================
2010/09/16 20:53:09.0483 ACPI (8fd99680a539792a30e97944fdaecf17) C:\WINDOWS\system32\DRIVERS\ACPI.sys
2010/09/16 20:53:09.0623 ACPIEC (9859c0f6936e723e4892d7141b1327d5) C:\WINDOWS\system32\drivers\ACPIEC.sys
2010/09/16 20:53:09.0795 aec (8bed39e3c35d6a489438b8141717a557) C:\WINDOWS\system32\drivers\aec.sys
2010/09/16 20:53:09.0920 AFD (7e775010ef291da96ad17ca4b17137d7) C:\WINDOWS\System32\drivers\afd.sys
2010/09/16 20:53:10.0530 AsyncMac (b153affac761e7f5fcfa822b9c4e97bc) C:\WINDOWS\system32\DRIVERS\asyncmac.sys
2010/09/16 20:53:10.0670 atapi (9f3a2f5aa6875c72bf062c712cfa2674) C:\WINDOWS\system32\DRIVERS\atapi.sys
2010/09/16 20:53:10.0811 Atmarpc (9916c1225104ba14794209cfa8012159) C:\WINDOWS\system32\DRIVERS\atmarpc.sys
2010/09/16 20:53:10.0983 audstub (d9f724aa26c010a217c97606b160ed68) C:\WINDOWS\system32\DRIVERS\audstub.sys
2010/09/16 20:53:11.0108 bcm4sbxp (b60f57b4d9cdbc663cc03eb8af7ec34e) C:\WINDOWS\system32\DRIVERS\bcm4sbxp.sys
2010/09/16 20:53:11.0561 BCMModem (41347688046d49cde0f6d138a534f73d) C:\WINDOWS\system32\DRIVERS\BCMSM.sys
2010/09/16 20:53:12.0514 Beep (da1f27d85e0d1525f6621372e7b685e9) C:\WINDOWS\system32\drivers\Beep.sys
2010/09/16 20:53:12.0733 cbidf2k (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\drivers\cbidf2k.sys
2010/09/16 20:53:12.0998 Cdaudio (c1b486a7658353d33a10cc15211a873b) C:\WINDOWS\system32\drivers\Cdaudio.sys
2010/09/16 20:53:13.0170 Cdfs (c885b02847f5d2fd45a24e219ed93b32) C:\WINDOWS\system32\drivers\Cdfs.sys
2010/09/16 20:53:13.0561 Cdrom (1f4260cc5b42272d71f79e570a27a4fe) C:\WINDOWS\system32\DRIVERS\cdrom.sys
2010/09/16 20:53:14.0780 Disk (044452051f3e02e7963599fc8f4f3e25) C:\WINDOWS\system32\DRIVERS\disk.sys
2010/09/16 20:53:15.0655 dmboot (d992fe1274bde0f84ad826acae022a41) C:\WINDOWS\system32\drivers\dmboot.sys
2010/09/16 20:53:16.0951 dmio (7c824cf7bbde77d95c08005717a95f6f) C:\WINDOWS\system32\drivers\dmio.sys
2010/09/16 20:53:17.0498 dmload (e9317282a63ca4d188c0df5e09c6ac5f) C:\WINDOWS\system32\drivers\dmload.sys
2010/09/16 20:53:17.0764 DMusic (8a208dfcf89792a484e76c40e5f50b45) C:\WINDOWS\system32\drivers\DMusic.sys
2010/09/16 20:53:18.0217 drmkaud (8f5fcff8e8848afac920905fbd9d33c8) C:\WINDOWS\system32\drivers\drmkaud.sys
2010/09/16 20:53:20.0248 Fastfat (38d332a6d56af32635675f132548343e) C:\WINDOWS\system32\drivers\Fastfat.sys
2010/09/16 20:53:21.0389 Fdc (92cdd60b6730b9f50f6a1a0c1f8cdc81) C:\WINDOWS\system32\DRIVERS\fdc.sys
2010/09/16 20:53:22.0092 Fips (d45926117eb9fa946a6af572fbe1caa3) C:\WINDOWS\system32\drivers\Fips.sys
2010/09/16 20:53:23.0342 Flpydisk (9d27e7b80bfcdf1cdd9b555862d5e7f0) C:\WINDOWS\system32\DRIVERS\flpydisk.sys
2010/09/16 20:53:24.0217 FltMgr (b2cf4b0786f8212cb92ed2b50c6db6b0) C:\WINDOWS\system32\drivers\fltmgr.sys
2010/09/16 20:53:24.0983 FPAV_RTP (3dd4ea01b29aabeb697b44f28d1d4bb9) C:\WINDOWS\system32\DRIVERS\FStopW.sys
2010/09/16 20:53:25.0561 Fs_Rec (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) C:\WINDOWS\system32\drivers\Fs_Rec.sys
2010/09/16 20:53:25.0733 Ftdisk (6ac26732762483366c3969c9e4d2259d) C:\WINDOWS\system32\DRIVERS\ftdisk.sys
2010/09/16 20:53:25.0858 Gpc (0a02c63c8b144bd8c86b103dee7c86a2) C:\WINDOWS\system32\DRIVERS\msgpc.sys
2010/09/16 20:53:26.0170 HCF_MSFT (4236e014632f4163f53ebb717f41594c) C:\WINDOWS\system32\DRIVERS\HCF_MSFT.sys
2010/09/16 20:53:26.0498 hidusb (ccf82c5ec8a7326c3066de870c06daf1) C:\WINDOWS\system32\DRIVERS\hidusb.sys
2010/09/16 20:53:27.0139 HTTP (f80a415ef82cd06ffaf0d971528ead38) C:\WINDOWS\system32\Drivers\HTTP.sys
2010/09/16 20:53:28.0311 i8042prt (9744e8132c27744c389ff978d36fe560) C:\WINDOWS\system32\DRIVERS\i8042prt.sys
2010/09/16 20:53:28.0311 Suspicious file (Forged): C:\WINDOWS\system32\DRIVERS\i8042prt.sys. Real md5: 9744e8132c27744c389ff978d36fe560, Fake md5: 4a0b06aa8943c1e332520f7440c0aa30
2010/09/16 20:53:28.0342 i8042prt - detected Rootkit.Win32.TDSS.tdl3 (0)
2010/09/16 20:53:28.0764 ialm (0acebb31989cbf9a5663fe4a33d28d21) C:\WINDOWS\system32\DRIVERS\ialmnt5.sys
2010/09/16 20:53:29.0326 Imapi (083a052659f5310dd8b6a6cb05edcf8e) C:\WINDOWS\system32\DRIVERS\imapi.sys
2010/09/16 20:53:29.0623 IntelIde (b5466a9250342a7aa0cd1fba13420678) C:\WINDOWS\system32\DRIVERS\intelide.sys
2010/09/16 20:53:29.0811 intelppm (8c953733d8f36eb2133f5bb58808b66b) C:\WINDOWS\system32\DRIVERS\intelppm.sys
2010/09/16 20:53:30.0030 ip6fw (3bb22519a194418d5fec05d800a19ad0) C:\WINDOWS\system32\drivers\ip6fw.sys
2010/09/16 20:53:30.0217 IpFilterDriver (731f22ba402ee4b62748adaf6363c182) C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
2010/09/16 20:53:30.0311 IpInIp (b87ab476dcf76e72010632b5550955f5) C:\WINDOWS\system32\DRIVERS\ipinip.sys
2010/09/16 20:53:30.0717 IpNat (cc748ea12c6effde940ee98098bf96bb) C:\WINDOWS\system32\DRIVERS\ipnat.sys
2010/09/16 20:53:31.0030 IPSec (23c74d75e36e7158768dd63d92789a91) C:\WINDOWS\system32\DRIVERS\ipsec.sys
2010/09/16 20:53:31.0373 IRENUM (c93c9ff7b04d772627a3646d89f7bf89) C:\WINDOWS\system32\DRIVERS\irenum.sys
2010/09/16 20:53:31.0655 isapnp (05a299ec56e52649b1cf2fc52d20f2d7) C:\WINDOWS\system32\DRIVERS\isapnp.sys
2010/09/16 20:53:31.0858 Kbdclass (463c1ec80cd17420a542b7f36a36f128) C:\WINDOWS\system32\DRIVERS\kbdclass.sys
2010/09/16 20:53:32.0201 kmixer (692bcf44383d056aed41b045a323d378) C:\WINDOWS\system32\drivers\kmixer.sys
2010/09/16 20:53:32.0545 KSecDD (b467646c54cc746128904e1654c750c1) C:\WINDOWS\system32\drivers\KSecDD.sys
2010/09/16 20:53:33.0326 MBAMSwissArmy (c7dd7d9739785bd3a6b8499eec1dee7e) C:\WINDOWS\system32\drivers\mbamswissarmy.sys
2010/09/16 20:53:34.0030 mfeavfk (bafdd5e28baea99d7f4772af2f5ec7ee) C:\WINDOWS\system32\drivers\mfeavfk.sys
2010/09/16 20:53:34.0639 mfebopk (1d003e3056a43d881597d6763e83b943) C:\WINDOWS\system32\drivers\mfebopk.sys
2010/09/16 20:53:34.0842 mfehidk (3f138a1c8a0659f329f242d1e389b2cf) C:\WINDOWS\system32\drivers\mfehidk.sys
2010/09/16 20:53:36.0405 mferkdk (41fe2f288e05a6c8ab85dd56770ffbad) C:\WINDOWS\system32\drivers\mferkdk.sys
2010/09/16 20:53:36.0795 mfesmfk (096b52ea918aa909ba5903d79e129005) C:\WINDOWS\system32\drivers\mfesmfk.sys
2010/09/16 20:53:37.0233 mnmdd (4ae068242760a1fb6e1a44bf4e16afa6) C:\WINDOWS\system32\drivers\mnmdd.sys
2010/09/16 20:53:37.0451 Modem (dfcbad3cec1c5f964962ae10e0bcc8e1) C:\WINDOWS\system32\drivers\Modem.sys
2010/09/16 20:53:37.0608 MODEMCSA (1992e0d143b09653ab0f9c5e04b0fd65) C:\WINDOWS\system32\drivers\MODEMCSA.sys
2010/09/16 20:53:38.0014 Mouclass (35c9e97194c8cfb8430125f8dbc34d04) C:\WINDOWS\system32\DRIVERS\mouclass.sys
2010/09/16 20:53:38.0358 MountMgr (a80b9a0bad1b73637dbcbba7df72d3fd) C:\WINDOWS\system32\drivers\MountMgr.sys
2010/09/16 20:53:38.0498 MPFP (bc2a92cff784555ed622f861cb34f2e6) C:\WINDOWS\system32\Drivers\Mpfp.sys
2010/09/16 20:53:39.0420 MRxDAV (11d42bb6206f33fbb3ba0288d3ef81bd) C:\WINDOWS\system32\DRIVERS\mrxdav.sys
2010/09/16 20:53:40.0545 MRxSmb (f3aefb11abc521122b67095044169e98) C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
2010/09/16 20:53:41.0014 Msfs (c941ea2454ba8350021d774daf0f1027) C:\WINDOWS\system32\drivers\Msfs.sys
2010/09/16 20:53:41.0483 MSKSSRV (d1575e71568f4d9e14ca56b7b0453bf1) C:\WINDOWS\system32\drivers\MSKSSRV.sys
2010/09/16 20:53:42.0030 MSPCLOCK (325bb26842fc7ccc1fcce2c457317f3e) C:\WINDOWS\system32\drivers\MSPCLOCK.sys
2010/09/16 20:53:42.0342 MSPQM (bad59648ba099da4a17680b39730cb3d) C:\WINDOWS\system32\drivers\MSPQM.sys
2010/09/16 20:53:42.0514 mssmbios (af5f4f3f14a8ea2c26de30f7a1e17136) C:\WINDOWS\system32\DRIVERS\mssmbios.sys
2010/09/16 20:53:42.0701 Mup (2f625d11385b1a94360bfc70aaefdee1) C:\WINDOWS\system32\drivers\Mup.sys
2010/09/16 20:53:42.0905 NDIS (1df7f42665c94b825322fae71721130d) C:\WINDOWS\system32\drivers\NDIS.sys
2010/09/16 20:53:43.0233 NdisTapi (1ab3d00c991ab086e69db84b6c0ed78f) C:\WINDOWS\system32\DRIVERS\ndistapi.sys
2010/09/16 20:53:43.0420 Ndisuio (f927a4434c5028758a842943ef1a3849) C:\WINDOWS\system32\DRIVERS\ndisuio.sys
2010/09/16 20:53:43.0764 NdisWan (edc1531a49c80614b2cfda43ca8659ab) C:\WINDOWS\system32\DRIVERS\ndiswan.sys
2010/09/16 20:53:44.0076 NDProxy (6215023940cfd3702b46abc304e1d45a) C:\WINDOWS\system32\drivers\NDProxy.sys
2010/09/16 20:53:44.0295 NetBIOS (5d81cf9a2f1a3a756b66cf684911cdf0) C:\WINDOWS\system32\DRIVERS\netbios.sys
2010/09/16 20:53:44.0655 NetBT (74b2b2f5bea5e9a3dc021d685551bd3d) C:\WINDOWS\system32\DRIVERS\netbt.sys
2010/09/16 20:53:45.0139 Npfs (3182d64ae053d6fb034f44b6def8034a) C:\WINDOWS\system32\drivers\Npfs.sys
2010/09/16 20:53:45.0701 Ntfs (78a08dd6a8d65e697c18e1db01c5cdca) C:\WINDOWS\system32\drivers\Ntfs.sys
2010/09/16 20:53:45.0951 Null (73c1e1f395918bc2c6dd67af7591a3ad) C:\WINDOWS\system32\drivers\Null.sys
2010/09/16 20:53:46.0092 NwlnkFlt (b305f3fad35083837ef46a0bbce2fc57) C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
2010/09/16 20:53:46.0248 NwlnkFwd (c99b3415198d1aab7227f2c88fd664b9) C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
2010/09/16 20:53:46.0576 OMCI (cec7e2c6c1fa00c7ab2f5434f848ae51) C:\WINDOWS\SYSTEM32\DRIVERS\OMCI.SYS
2010/09/16 20:53:46.0983 Parport (5575faf8f97ce5e713d108c2a58d7c7c) C:\WINDOWS\system32\DRIVERS\parport.sys
2010/09/16 20:53:47.0342 PartMgr (beb3ba25197665d82ec7065b724171c6) C:\WINDOWS\system32\drivers\PartMgr.sys
2010/09/16 20:53:47.0842 ParVdm (70e98b3fd8e963a6a46a2e6247e0bea1) C:\WINDOWS\system32\drivers\ParVdm.sys
2010/09/16 20:53:48.0014 PCI (a219903ccf74233761d92bef471a07b1) C:\WINDOWS\system32\DRIVERS\pci.sys
2010/09/16 20:53:48.0451 PCIIde (ccf5f451bb1a5a2a522a76e670000ff0) C:\WINDOWS\system32\drivers\PCIIde.sys
2010/09/16 20:53:48.0608 Pcmcia (9e89ef60e9ee05e3f2eef2da7397f1c1) C:\WINDOWS\system32\drivers\Pcmcia.sys
2010/09/16 20:53:49.0373 PptpMiniport (efeec01b1d3cf84f16ddd24d9d9d8f99) C:\WINDOWS\system32\DRIVERS\raspptp.sys
2010/09/16 20:53:49.0530 Processor (a32bebaf723557681bfc6bd93e98bd26) C:\WINDOWS\system32\DRIVERS\processr.sys
2010/09/16 20:53:49.0686 PSched (09298ec810b07e5d582cb3a3f9255424) C:\WINDOWS\system32\DRIVERS\psched.sys
2010/09/16 20:53:49.0826 Ptilink (80d317bd1c3dbc5d4fe7b1678c60cadd) C:\WINDOWS\system32\DRIVERS\ptilink.sys
2010/09/16 20:53:51.0217 RasAcd (fe0d99d6f31e4fad8159f690d68ded9c) C:\WINDOWS\system32\DRIVERS\rasacd.sys
2010/09/16 20:53:51.0858 Rasl2tp (11b4a627bc9614b885c4969bfa5ff8a6) C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
2010/09/16 20:53:52.0592 RasPppoe (5bc962f2654137c9909c3d4603587dee) C:\WINDOWS\system32\DRIVERS\raspppoe.sys
2010/09/16 20:53:53.0217 Raspti (fdbb1d60066fcfbb7452fd8f9829b242) C:\WINDOWS\system32\DRIVERS\raspti.sys
2010/09/16 20:53:53.0686 Rdbss (7ad224ad1a1437fe28d89cf22b17780a) C:\WINDOWS\system32\DRIVERS\rdbss.sys
2010/09/16 20:53:54.0108 RDPCDD (4912d5b403614ce99c28420f75353332) C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
2010/09/16 20:53:54.0451 RDPWD (6728e45b66f93c08f11de2e316fc70dd) C:\WINDOWS\system32\drivers\RDPWD.sys
2010/09/16 20:53:54.0655 redbook (f828dd7e1419b6653894a8f97a0094c5) C:\WINDOWS\system32\DRIVERS\redbook.sys
2010/09/16 20:53:55.0123 SASDIFSV (a3281aec37e0720a2bc28034c2df2a56) D:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS
2010/09/16 20:53:55.0342 SASKUTIL (61db0d0756a99506207fd724e3692b25) D:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS
2010/09/16 20:53:55.0655 Secdrv (90a3935d05b494a5a39d37e71f09a677) C:\WINDOWS\system32\DRIVERS\secdrv.sys
2010/09/16 20:53:55.0889 senfilt (b9c7617c1e8ab6fdff75d3c8dafcb4c8) C:\WINDOWS\system32\drivers\senfilt.sys
2010/09/16 20:53:56.0311 serenum (0f29512ccd6bead730039fb4bd2c85ce) C:\WINDOWS\system32\DRIVERS\serenum.sys
2010/09/16 20:53:56.0514 Serial (cca207a8896d4c6a0c9ce29a4ae411a7) C:\WINDOWS\system32\DRIVERS\serial.sys
2010/09/16 20:53:56.0889 Sfloppy (8e6b8c671615d126fdc553d1e2de5562) C:\WINDOWS\system32\drivers\Sfloppy.sys
2010/09/16 20:53:57.0217 smwdm (c6d9959e493682f872a639b6ec1b4a08) C:\WINDOWS\system32\drivers\smwdm.sys
2010/09/16 20:53:57.0748 splitter (ab8b92451ecb048a4d1de7c3ffcb4a9f) C:\WINDOWS\system32\drivers\splitter.sys
2010/09/16 20:53:57.0983 sr (76bb022c2fb6902fd5bdd4f78fc13a5d) C:\WINDOWS\system32\DRIVERS\sr.sys
2010/09/16 20:53:58.0264 Srv (da852e3e0bf1cea75d756f9866241e57) C:\WINDOWS\system32\DRIVERS\srv.sys
2010/09/16 20:53:58.0576 ssoftnt4 (f9dadfeee46448b820f2e91ad6b7caae) C:\WINDOWS\system32\Drivers\ssoftnt4.sys
2010/09/16 20:53:58.0873 swenum (3941d127aef12e93addf6fe6ee027e0f) C:\WINDOWS\system32\DRIVERS\swenum.sys
2010/09/16 20:53:59.0108 swmidi (8ce882bcc6cf8a62f2b2323d95cb3d01) C:\WINDOWS\system32\drivers\swmidi.sys
2010/09/16 20:54:00.0670 sysaudio (8b83f3ed0f1688b4958f77cd6d2bf290) C:\WINDOWS\system32\drivers\sysaudio.sys
2010/09/16 20:54:01.0076 Tcpip (9aefa14bd6b182d61e3119fa5f436d3d) C:\WINDOWS\system32\DRIVERS\tcpip.sys
2010/09/16 20:54:01.0326 TDPIPE (6471a66807f5e104e4885f5b67349397) C:\WINDOWS\system32\drivers\TDPIPE.sys
2010/09/16 20:54:01.0545 TDTCP (c56b6d0402371cf3700eb322ef3aaf61) C:\WINDOWS\system32\drivers\TDTCP.sys
2010/09/16 20:54:01.0733 TermDD (88155247177638048422893737429d9e) C:\WINDOWS\system32\DRIVERS\termdd.sys
2010/09/16 20:54:02.0108 Udfs (5787b80c2e3c5e2f56c2a233d91fa2c9) C:\WINDOWS\system32\drivers\Udfs.sys
2010/09/16 20:54:02.0748 Update (402ddc88356b1bac0ee3dd1580c76a31) C:\WINDOWS\system32\DRIVERS\update.sys
2010/09/16 20:54:03.0076 usbccgp (173f317ce0db8e21322e71b7e60a27e8) C:\WINDOWS\system32\DRIVERS\usbccgp.sys
2010/09/16 20:54:03.0264 usbehci (65dcf09d0e37d4c6b11b5b0b76d470a7) C:\WINDOWS\system32\DRIVERS\usbehci.sys
2010/09/16 20:54:03.0436 usbhub (1ab3cdde553b6e064d2e754efe20285c) C:\WINDOWS\system32\DRIVERS\usbhub.sys
2010/09/16 20:54:03.0608 usbprint (a717c8721046828520c9edf31288fc00) C:\WINDOWS\system32\DRIVERS\usbprint.sys
2010/09/16 20:54:03.0748 usbscan (a0b8cf9deb1184fbdd20784a58fa75d4) C:\WINDOWS\system32\DRIVERS\usbscan.sys
2010/09/16 20:54:04.0201 USBSTOR (a32426d9b14a089eaa1d922e0c5801a9) C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
2010/09/16 20:54:04.0623 usbuhci (26496f9dee2d787fc3e61ad54821ffe6) C:\WINDOWS\system32\DRIVERS\usbuhci.sys
2010/09/16 20:54:04.0826 VgaSave (0d3a8fafceacd8b7625cd549757a7df1) C:\WINDOWS\System32\drivers\vga.sys
2010/09/16 20:54:05.0155 VolSnap (4c8fcb5cc53aab716d810740fe59d025) C:\WINDOWS\system32\drivers\VolSnap.sys
2010/09/16 20:54:05.0405 Wanarp (e20b95baedb550f32dd489265c1da1f6) C:\WINDOWS\system32\DRIVERS\wanarp.sys
2010/09/16 20:54:05.0592 wceusbsh (56242d5be3bfc8f2a212e6d1f9a16697) C:\WINDOWS\system32\DRIVERS\wceusbsh.sys
2010/09/16 20:54:05.0889 wdmaud (6768acf64b18196494413695f0c3a00f) C:\WINDOWS\system32\drivers\wdmaud.sys
2010/09/16 20:54:06.0514 WS2IFSL (6abe6e225adb5a751622a9cc3bc19ce8) C:\WINDOWS\System32\drivers\ws2ifsl.sys
2010/09/16 20:54:06.0733 ================================================================================
2010/09/16 20:54:06.0733 Scan finished
2010/09/16 20:54:06.0733 ================================================================================
2010/09/16 20:54:06.0826 Detected object count: 1
2010/09/16 20:54:16.0405 i8042prt (9744e8132c27744c389ff978d36fe560) C:\WINDOWS\system32\DRIVERS\i8042prt.sys
2010/09/16 20:54:16.0405 Suspicious file (Forged): C:\WINDOWS\system32\DRIVERS\i8042prt.sys. Real md5: 9744e8132c27744c389ff978d36fe560, Fake md5: 4a0b06aa8943c1e332520f7440c0aa30
2010/09/16 20:54:17.0873 Backup copy found, using it..
2010/09/16 20:54:18.0108 C:\WINDOWS\system32\DRIVERS\i8042prt.sys - will be cured after reboot
2010/09/16 20:54:18.0108 Rootkit.Win32.TDSS.tdl3(i8042prt) - User select action: Cure

#10 Budapest

Budapest

    Bleepin' Cynic


  • Moderator
  • 23,579 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:03:06 PM

Posted 16 September 2010 - 11:43 PM

How's your computer running now?
The power of accurate observation is commonly called cynicism by those who haven't got it.

—George Bernard Shaw

#11 ppate10

ppate10
  • Topic Starter

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Local time:12:06 AM

Posted 18 September 2010 - 09:16 PM

Google is working normally now but still have very slow internet when using firefox.. It is a lot faster if I am using other programs that use the internet such as realplayer. It was not always like this. Please advise if you know what may be causing this. THanks.

#12 Budapest

Budapest

    Bleepin' Cynic


  • Moderator
  • 23,579 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:03:06 PM

Posted 19 September 2010 - 02:37 AM

I would suggest uninstalling and then reinstalling Firefox to see if that resolves the issue.
The power of accurate observation is commonly called cynicism by those who haven't got it.

—George Bernard Shaw

#13 ppate10

ppate10
  • Topic Starter

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Local time:12:06 AM

Posted 19 September 2010 - 06:06 PM

Will do. thanks for all of your help.




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users