Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Search engine results redirected - I use Windows XP and Firefox


  • Please log in to reply
5 replies to this topic

#1 VadidNanko

VadidNanko

  • Members
  • 3 posts
  • OFFLINE
  •  
  • Local time:04:11 AM

Posted 03 October 2010 - 04:30 PM

Hello! I'm writing because just recently I've noticed that most times I use a search engine like Google to look up various things, the linked results will redirect me instead to undesired websites. Often times these are sites offering products to remove spyware and similar items from my PC (Stopzilla Virus & Malware Remover, for example). Also, I will get redirected to apparently harmful websites that my AVG blocks.

At the same time, I encountered a warning from something called Microsoft Security Essentials. I didn't remember having such a program so I avoided the option it gave to "scan online" after the claimed threat couldn't be removed initially. Apparently, this is a scam?

While running AVG on Safe Mode, it kept listing Sheur3.BDJI as a threat. (About fifteen times in one scan.)

I have deleted temp files and cookies and installed and ran Malwarebytes Anti-Malware. The Microsoft Security Essentials warnings haven't popped up since (but I've only added the software recently) but I'm still having problems using search engines, being redirected from my search results to other webpages.

I wouldn't mind doing a reformat but would like to avoid the process as I have games, software, and pics that I would have to burn to disc first or reinstall. I would need to know the proper methods to reformat, however, considering the circumstances. I don't want to get reinfected.

Your help would be greatly appreciated!

BC AdBot (Login to Remove)

 


#2 quietman7

quietman7

    Bleepin' Janitor


  • Global Moderator
  • 51,608 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Virginia, USA
  • Local time:04:11 AM

Posted 04 October 2010 - 09:23 AM

Please follow these instructions: How to remove Google Redirects or the TDSS, TDL3, Alureon rootkit using TDSSKiller
  • Double-click on TDSSKiller.exe to run the tool for known TDSS variants.
    Vista/Windows 7 users right-click and select Run As Administrator.
  • When the program opens, click the Start Scan button.
  • If malicious objects are found, they will show in the Scan results - Select action for found objects and offer three options.
  • Ensure Cure is selected, then click Continue > Reboot now to finish the cleaning process. <- Important!!
    Note: If 'Suspicious' objects are detected, you will be given the option to Skip or Quarantine. Skip will be the default selection.
  • A log file named TDSSKiller_version_date_time_log.txt will be created and saved to the root directory (usually Local Disk C:).
  • Copy and paste the contents of that file in your next reply.
-- For any files detected as 'Suspicious' (except those identified as Forged to be cured after reboot) get a second opinion by submitting to Jotti's virusscan or VirusTotal. In the "File to upload & scan" box, browse to the location of the suspicious file and submit (upload) it for scanning/analysis.
.
.
Windows Insider MVP 2017-2018
Microsoft MVP Reconnect 2016
Microsoft MVP Consumer Security 2007-2015 kO7xOZh.gif
Member of UNITE, Unified Network of Instructors and Trusted Eliminators

If I have been helpful & you'd like to consider a donation, click 38WxTfO.gif

#3 VadidNanko

VadidNanko
  • Topic Starter

  • Members
  • 3 posts
  • OFFLINE
  •  
  • Local time:04:11 AM

Posted 04 October 2010 - 02:10 PM

Hi quietman7, and thanks for your assistance. I ran TDSSKiller as instructed but it detected no threats. The redirect problem still exists, though. Here's the TDSSKiller_version_date_time_log.txt:

2010/10/04 15:01:11.0750 TDSS rootkit removing tool 2.4.4.0 Oct 4 2010 09:06:59
2010/10/04 15:01:11.0750 ================================================================================
2010/10/04 15:01:11.0750 SystemInfo:
2010/10/04 15:01:11.0750
2010/10/04 15:01:11.0750 OS Version: 5.1.2600 ServicePack: 3.0
2010/10/04 15:01:11.0750 Product type: Workstation
2010/10/04 15:01:11.0750 ComputerName: DEFAULT-B306AE3
2010/10/04 15:01:11.0750 UserName: default
2010/10/04 15:01:11.0750 Windows directory: C:\WINDOWS1
2010/10/04 15:01:11.0750 System windows directory: C:\WINDOWS1
2010/10/04 15:01:11.0750 Processor architecture: Intel x86
2010/10/04 15:01:11.0750 Number of processors: 1
2010/10/04 15:01:11.0750 Page size: 0x1000
2010/10/04 15:01:11.0750 Boot type: Normal boot
2010/10/04 15:01:11.0750 ================================================================================
2010/10/04 15:01:12.0421 Initialize success
2010/10/04 15:01:23.0093 ================================================================================
2010/10/04 15:01:23.0093 Scan started
2010/10/04 15:01:23.0093 Mode: Manual;
2010/10/04 15:01:23.0093 ================================================================================
2010/10/04 15:01:24.0390 ACPI (8fd99680a539792a30e97944fdaecf17) C:\WINDOWS1\system32\DRIVERS\ACPI.sys
2010/10/04 15:01:24.0562 ACPIEC (9859c0f6936e723e4892d7141b1327d5) C:\WINDOWS1\system32\drivers\ACPIEC.sys
2010/10/04 15:01:24.0796 aec (8bed39e3c35d6a489438b8141717a557) C:\WINDOWS1\system32\drivers\aec.sys
2010/10/04 15:01:24.0937 Afc (a7b8a3a79d35215d798a300df49ed23f) C:\WINDOWS1\system32\drivers\Afc.sys
2010/10/04 15:01:25.0031 AFD (7e775010ef291da96ad17ca4b17137d7) C:\WINDOWS1\System32\drivers\afd.sys
2010/10/04 15:01:25.0406 ALCXWDM (3cb2e2c258bfff962f90e26c0649c638) C:\WINDOWS1\system32\drivers\ALCXWDM.SYS
2010/10/04 15:01:25.0718 AnyDVD (c6a45fee274fb31daf3de1e12d53a191) C:\WINDOWS1\system32\Drivers\AnyDVD.sys
2010/10/04 15:01:26.0078 AsyncMac (b153affac761e7f5fcfa822b9c4e97bc) C:\WINDOWS1\system32\DRIVERS\asyncmac.sys
2010/10/04 15:01:26.0250 atapi (9f3a2f5aa6875c72bf062c712cfa2674) C:\WINDOWS1\system32\DRIVERS\atapi.sys
2010/10/04 15:01:26.0453 Atmarpc (9916c1225104ba14794209cfa8012159) C:\WINDOWS1\system32\DRIVERS\atmarpc.sys
2010/10/04 15:01:26.0609 audstub (d9f724aa26c010a217c97606b160ed68) C:\WINDOWS1\system32\DRIVERS\audstub.sys
2010/10/04 15:01:26.0718 AvgLdx86 (b8c187439d27aba430dd69fdcf1fa657) C:\WINDOWS1\System32\Drivers\avgldx86.sys
2010/10/04 15:01:26.0906 AvgMfx86 (53b3f979930a786a614d29cafe99f645) C:\WINDOWS1\System32\Drivers\avgmfx86.sys
2010/10/04 15:01:27.0046 AvgTdiX (22e3b793c3e61720f03d3a22351af410) C:\WINDOWS1\System32\Drivers\avgtdix.sys
2010/10/04 15:01:27.0218 Beep (da1f27d85e0d1525f6621372e7b685e9) C:\WINDOWS1\system32\drivers\Beep.sys
2010/10/04 15:01:27.0328 cbidf2k (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS1\system32\drivers\cbidf2k.sys
2010/10/04 15:01:27.0468 CCDECODE (0be5aef125be881c4f854c554f2b025c) C:\WINDOWS1\system32\DRIVERS\CCDECODE.sys
2010/10/04 15:01:27.0609 Cdaudio (c1b486a7658353d33a10cc15211a873b) C:\WINDOWS1\system32\drivers\Cdaudio.sys
2010/10/04 15:01:27.0765 Cdfs (c885b02847f5d2fd45a24e219ed93b32) C:\WINDOWS1\system32\drivers\Cdfs.sys
2010/10/04 15:01:27.0906 Cdrom (1f4260cc5b42272d71f79e570a27a4fe) C:\WINDOWS1\system32\DRIVERS\cdrom.sys
2010/10/04 15:01:28.0343 Disk (044452051f3e02e7963599fc8f4f3e25) C:\WINDOWS1\system32\DRIVERS\disk.sys
2010/10/04 15:01:28.0453 dmboot (d992fe1274bde0f84ad826acae022a41) C:\WINDOWS1\system32\drivers\dmboot.sys
2010/10/04 15:01:28.0609 dmio (7c824cf7bbde77d95c08005717a95f6f) C:\WINDOWS1\system32\drivers\dmio.sys
2010/10/04 15:01:28.0781 dmload (e9317282a63ca4d188c0df5e09c6ac5f) C:\WINDOWS1\system32\drivers\dmload.sys
2010/10/04 15:01:28.0875 DMusic (8a208dfcf89792a484e76c40e5f50b45) C:\WINDOWS1\system32\drivers\DMusic.sys
2010/10/04 15:01:29.0109 drmkaud (8f5fcff8e8848afac920905fbd9d33c8) C:\WINDOWS1\system32\drivers\drmkaud.sys
2010/10/04 15:01:29.0281 E100B (7d91dc6342248369f94d6eba0cf42e99) C:\WINDOWS1\system32\DRIVERS\e100b325.sys
2010/10/04 15:01:29.0406 ElbyCDIO (309ac30471a0f1c3a89dee1c81230576) C:\WINDOWS1\system32\Drivers\ElbyCDIO.sys
2010/10/04 15:01:29.0609 Fastfat (38d332a6d56af32635675f132548343e) C:\WINDOWS1\system32\drivers\Fastfat.sys
2010/10/04 15:01:29.0796 Fdc (92cdd60b6730b9f50f6a1a0c1f8cdc81) C:\WINDOWS1\system32\DRIVERS\fdc.sys
2010/10/04 15:01:29.0875 Fips (d45926117eb9fa946a6af572fbe1caa3) C:\WINDOWS1\system32\drivers\Fips.sys
2010/10/04 15:01:30.0015 Flpydisk (9d27e7b80bfcdf1cdd9b555862d5e7f0) C:\WINDOWS1\system32\drivers\Flpydisk.sys
2010/10/04 15:01:30.0093 FltMgr (b2cf4b0786f8212cb92ed2b50c6db6b0) C:\WINDOWS1\system32\drivers\fltmgr.sys
2010/10/04 15:01:30.0281 Fs_Rec (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) C:\WINDOWS1\system32\drivers\Fs_Rec.sys
2010/10/04 15:01:30.0406 Ftdisk (6ac26732762483366c3969c9e4d2259d) C:\WINDOWS1\system32\DRIVERS\ftdisk.sys
2010/10/04 15:01:30.0562 Gpc (0a02c63c8b144bd8c86b103dee7c86a2) C:\WINDOWS1\system32\DRIVERS\msgpc.sys
2010/10/04 15:01:30.0687 HidUsb (ccf82c5ec8a7326c3066de870c06daf1) C:\WINDOWS1\system32\DRIVERS\hidusb.sys
2010/10/04 15:01:30.0890 HSFHWBS2 (b6b0721a86e51d141ec55c3cc1ca5686) C:\WINDOWS1\system32\DRIVERS\HSFHWBS2.sys
2010/10/04 15:01:31.0093 HSF_DPV (698204d9c2832e53633e53a30a53fc3d) C:\WINDOWS1\system32\DRIVERS\HSF_DPV.sys
2010/10/04 15:01:31.0281 HTTP (f80a415ef82cd06ffaf0d971528ead38) C:\WINDOWS1\system32\Drivers\HTTP.sys
2010/10/04 15:01:31.0546 i8042prt (4a0b06aa8943c1e332520f7440c0aa30) C:\WINDOWS1\system32\DRIVERS\i8042prt.sys
2010/10/04 15:01:31.0718 ialm (0294a30b302ca71a2c26e582dda93486) C:\WINDOWS1\system32\DRIVERS\ialmnt5.sys
2010/10/04 15:01:31.0921 Imapi (083a052659f5310dd8b6a6cb05edcf8e) C:\WINDOWS1\system32\DRIVERS\imapi.sys
2010/10/04 15:01:32.0140 IntelIde (b5466a9250342a7aa0cd1fba13420678) C:\WINDOWS1\system32\DRIVERS\intelide.sys
2010/10/04 15:01:32.0281 intelppm (8c953733d8f36eb2133f5bb58808b66b) C:\WINDOWS1\system32\DRIVERS\intelppm.sys
2010/10/04 15:01:32.0359 Ip6Fw (3bb22519a194418d5fec05d800a19ad0) C:\WINDOWS1\system32\drivers\ip6fw.sys
2010/10/04 15:01:32.0500 IpFilterDriver (731f22ba402ee4b62748adaf6363c182) C:\WINDOWS1\system32\DRIVERS\ipfltdrv.sys
2010/10/04 15:01:32.0593 IpInIp (b87ab476dcf76e72010632b5550955f5) C:\WINDOWS1\system32\DRIVERS\ipinip.sys
2010/10/04 15:01:32.0718 IpNat (cc748ea12c6effde940ee98098bf96bb) C:\WINDOWS1\system32\DRIVERS\ipnat.sys
2010/10/04 15:01:32.0828 IPSec (23c74d75e36e7158768dd63d92789a91) C:\WINDOWS1\system32\DRIVERS\ipsec.sys
2010/10/04 15:01:32.0984 IRENUM (c93c9ff7b04d772627a3646d89f7bf89) C:\WINDOWS1\system32\DRIVERS\irenum.sys
2010/10/04 15:01:33.0109 isapnp (05a299ec56e52649b1cf2fc52d20f2d7) C:\WINDOWS1\system32\DRIVERS\isapnp.sys
2010/10/04 15:01:33.0265 Kbdclass (463c1ec80cd17420a542b7f36a36f128) C:\WINDOWS1\system32\DRIVERS\kbdclass.sys
2010/10/04 15:01:33.0359 kmixer (692bcf44383d056aed41b045a323d378) C:\WINDOWS1\system32\drivers\kmixer.sys
2010/10/04 15:01:33.0515 KSecDD (b467646c54cc746128904e1654c750c1) C:\WINDOWS1\system32\drivers\KSecDD.sys
2010/10/04 15:01:33.0625 Lbd (419590ebe7855215bb157ea0cf0d0531) C:\WINDOWS1\system32\DRIVERS\Lbd.sys
2010/10/04 15:01:33.0890 mdmxsdk (e246a32c445056996074a397da56e815) C:\WINDOWS1\system32\DRIVERS\mdmxsdk.sys
2010/10/04 15:01:34.0078 mnmdd (4ae068242760a1fb6e1a44bf4e16afa6) C:\WINDOWS1\system32\drivers\mnmdd.sys
2010/10/04 15:01:34.0156 Modem (dfcbad3cec1c5f964962ae10e0bcc8e1) C:\WINDOWS1\system32\drivers\Modem.sys
2010/10/04 15:01:34.0296 Mouclass (35c9e97194c8cfb8430125f8dbc34d04) C:\WINDOWS1\system32\DRIVERS\mouclass.sys
2010/10/04 15:01:34.0375 MountMgr (a80b9a0bad1b73637dbcbba7df72d3fd) C:\WINDOWS1\system32\drivers\MountMgr.sys
2010/10/04 15:01:34.0578 MRxDAV (11d42bb6206f33fbb3ba0288d3ef81bd) C:\WINDOWS1\system32\DRIVERS\mrxdav.sys
2010/10/04 15:01:34.0765 MRxSmb (f3aefb11abc521122b67095044169e98) C:\WINDOWS1\system32\DRIVERS\mrxsmb.sys
2010/10/04 15:01:34.0953 Msfs (c941ea2454ba8350021d774daf0f1027) C:\WINDOWS1\system32\drivers\Msfs.sys
2010/10/04 15:01:35.0046 MSKSSRV (d1575e71568f4d9e14ca56b7b0453bf1) C:\WINDOWS1\system32\drivers\MSKSSRV.sys
2010/10/04 15:01:35.0187 MSPCLOCK (325bb26842fc7ccc1fcce2c457317f3e) C:\WINDOWS1\system32\drivers\MSPCLOCK.sys
2010/10/04 15:01:35.0265 MSPQM (bad59648ba099da4a17680b39730cb3d) C:\WINDOWS1\system32\drivers\MSPQM.sys
2010/10/04 15:01:35.0421 mssmbios (af5f4f3f14a8ea2c26de30f7a1e17136) C:\WINDOWS1\system32\DRIVERS\mssmbios.sys
2010/10/04 15:01:35.0500 MSTEE (e53736a9e30c45fa9e7b5eac55056d1d) C:\WINDOWS1\system32\drivers\MSTEE.sys
2010/10/04 15:01:35.0671 Mup (2f625d11385b1a94360bfc70aaefdee1) C:\WINDOWS1\system32\drivers\Mup.sys
2010/10/04 15:01:35.0750 NABTSFEC (5b50f1b2a2ed47d560577b221da734db) C:\WINDOWS1\system32\DRIVERS\NABTSFEC.sys
2010/10/04 15:01:35.0906 NDIS (1df7f42665c94b825322fae71721130d) C:\WINDOWS1\system32\drivers\NDIS.sys
2010/10/04 15:01:36.0078 NdisIP (7ff1f1fd8609c149aa432f95a8163d97) C:\WINDOWS1\system32\DRIVERS\NdisIP.sys
2010/10/04 15:01:36.0171 NdisTapi (1ab3d00c991ab086e69db84b6c0ed78f) C:\WINDOWS1\system32\DRIVERS\ndistapi.sys
2010/10/04 15:01:36.0328 Ndisuio (f927a4434c5028758a842943ef1a3849) C:\WINDOWS1\system32\DRIVERS\ndisuio.sys
2010/10/04 15:01:36.0421 NdisWan (edc1531a49c80614b2cfda43ca8659ab) C:\WINDOWS1\system32\DRIVERS\ndiswan.sys
2010/10/04 15:01:36.0562 NDProxy (6215023940cfd3702b46abc304e1d45a) C:\WINDOWS1\system32\drivers\NDProxy.sys
2010/10/04 15:01:36.0640 NetBIOS (5d81cf9a2f1a3a756b66cf684911cdf0) C:\WINDOWS1\system32\DRIVERS\netbios.sys
2010/10/04 15:01:36.0796 NetBT (74b2b2f5bea5e9a3dc021d685551bd3d) C:\WINDOWS1\system32\DRIVERS\netbt.sys
2010/10/04 15:01:37.0046 Npfs (3182d64ae053d6fb034f44b6def8034a) C:\WINDOWS1\system32\drivers\Npfs.sys
2010/10/04 15:01:37.0171 Ntfs (78a08dd6a8d65e697c18e1db01c5cdca) C:\WINDOWS1\system32\drivers\Ntfs.sys
2010/10/04 15:01:37.0375 Null (73c1e1f395918bc2c6dd67af7591a3ad) C:\WINDOWS1\system32\drivers\Null.sys
2010/10/04 15:01:37.0453 NwlnkFlt (b305f3fad35083837ef46a0bbce2fc57) C:\WINDOWS1\system32\DRIVERS\nwlnkflt.sys
2010/10/04 15:01:37.0609 NwlnkFwd (c99b3415198d1aab7227f2c88fd664b9) C:\WINDOWS1\system32\DRIVERS\nwlnkfwd.sys
2010/10/04 15:01:37.0718 Parport (5575faf8f97ce5e713d108c2a58d7c7c) C:\WINDOWS1\system32\DRIVERS\parport.sys
2010/10/04 15:01:37.0859 PartMgr (beb3ba25197665d82ec7065b724171c6) C:\WINDOWS1\system32\drivers\PartMgr.sys
2010/10/04 15:01:37.0937 ParVdm (70e98b3fd8e963a6a46a2e6247e0bea1) C:\WINDOWS1\system32\drivers\ParVdm.sys
2010/10/04 15:01:38.0093 PCI (a219903ccf74233761d92bef471a07b1) C:\WINDOWS1\system32\DRIVERS\pci.sys
2010/10/04 15:01:38.0234 PCIIde (ccf5f451bb1a5a2a522a76e670000ff0) C:\WINDOWS1\system32\drivers\PCIIde.sys
2010/10/04 15:01:38.0375 Pcmcia (9e89ef60e9ee05e3f2eef2da7397f1c1) C:\WINDOWS1\system32\drivers\Pcmcia.sys
2010/10/04 15:01:38.0937 pfc (6c1618a07b49e3873582b6449e744088) C:\WINDOWS1\system32\drivers\pfc.sys
2010/10/04 15:01:39.0078 PptpMiniport (efeec01b1d3cf84f16ddd24d9d9d8f99) C:\WINDOWS1\system32\DRIVERS\raspptp.sys
2010/10/04 15:01:39.0218 PSched (09298ec810b07e5d582cb3a3f9255424) C:\WINDOWS1\system32\DRIVERS\psched.sys
2010/10/04 15:01:39.0343 Ptilink (80d317bd1c3dbc5d4fe7b1678c60cadd) C:\WINDOWS1\system32\DRIVERS\ptilink.sys
2010/10/04 15:01:39.0671 RasAcd (fe0d99d6f31e4fad8159f690d68ded9c) C:\WINDOWS1\system32\DRIVERS\rasacd.sys
2010/10/04 15:01:39.0781 Rasl2tp (11b4a627bc9614b885c4969bfa5ff8a6) C:\WINDOWS1\system32\DRIVERS\rasl2tp.sys
2010/10/04 15:01:39.0937 RasPppoe (5bc962f2654137c9909c3d4603587dee) C:\WINDOWS1\system32\DRIVERS\raspppoe.sys
2010/10/04 15:01:40.0031 Raspti (fdbb1d60066fcfbb7452fd8f9829b242) C:\WINDOWS1\system32\DRIVERS\raspti.sys
2010/10/04 15:01:40.0187 Rdbss (7ad224ad1a1437fe28d89cf22b17780a) C:\WINDOWS1\system32\DRIVERS\rdbss.sys
2010/10/04 15:01:40.0343 RDPCDD (4912d5b403614ce99c28420f75353332) C:\WINDOWS1\system32\DRIVERS\RDPCDD.sys
2010/10/04 15:01:40.0468 RDPWD (6728e45b66f93c08f11de2e316fc70dd) C:\WINDOWS1\system32\drivers\RDPWD.sys
2010/10/04 15:01:40.0609 redbook (f828dd7e1419b6653894a8f97a0094c5) C:\WINDOWS1\system32\DRIVERS\redbook.sys
2010/10/04 15:01:40.0781 Secdrv (90a3935d05b494a5a39d37e71f09a677) C:\WINDOWS1\system32\DRIVERS\secdrv.sys
2010/10/04 15:01:40.0937 serenum (0f29512ccd6bead730039fb4bd2c85ce) C:\WINDOWS1\system32\DRIVERS\serenum.sys
2010/10/04 15:01:40.0984 Serial (cca207a8896d4c6a0c9ce29a4ae411a7) C:\WINDOWS1\system32\DRIVERS\serial.sys
2010/10/04 15:01:41.0078 Sfloppy (8e6b8c671615d126fdc553d1e2de5562) C:\WINDOWS1\system32\drivers\Sfloppy.sys
2010/10/04 15:01:41.0359 SLIP (866d538ebe33709a5c9f5c62b73b7d14) C:\WINDOWS1\system32\DRIVERS\SLIP.sys
2010/10/04 15:01:41.0875 SNP2STD (bbff0acddea8357a065af13176d0e15d) C:\WINDOWS1\system32\DRIVERS\snp2sxp.sys
2010/10/04 15:01:42.0406 splitter (ab8b92451ecb048a4d1de7c3ffcb4a9f) C:\WINDOWS1\system32\drivers\splitter.sys
2010/10/04 15:01:42.0578 sr (76bb022c2fb6902fd5bdd4f78fc13a5d) C:\WINDOWS1\system32\DRIVERS\sr.sys
2010/10/04 15:01:42.0750 Srv (da852e3e0bf1cea75d756f9866241e57) C:\WINDOWS1\system32\DRIVERS\srv.sys
2010/10/04 15:01:42.0937 streamip (77813007ba6265c4b6098187e6ed79d2) C:\WINDOWS1\system32\DRIVERS\StreamIP.sys
2010/10/04 15:01:43.0015 swenum (3941d127aef12e93addf6fe6ee027e0f) C:\WINDOWS1\system32\DRIVERS\swenum.sys
2010/10/04 15:01:43.0171 swmidi (8ce882bcc6cf8a62f2b2323d95cb3d01) C:\WINDOWS1\system32\drivers\swmidi.sys
2010/10/04 15:01:43.0640 sysaudio (8b83f3ed0f1688b4958f77cd6d2bf290) C:\WINDOWS1\system32\drivers\sysaudio.sys
2010/10/04 15:01:43.0828 Tcpip (9aefa14bd6b182d61e3119fa5f436d3d) C:\WINDOWS1\system32\DRIVERS\tcpip.sys
2010/10/04 15:01:44.0000 TDPIPE (6471a66807f5e104e4885f5b67349397) C:\WINDOWS1\system32\drivers\TDPIPE.sys
2010/10/04 15:01:44.0093 TDTCP (c56b6d0402371cf3700eb322ef3aaf61) C:\WINDOWS1\system32\drivers\TDTCP.sys
2010/10/04 15:01:44.0234 TermDD (88155247177638048422893737429d9e) C:\WINDOWS1\system32\DRIVERS\termdd.sys
2010/10/04 15:01:44.0484 Udfs (5787b80c2e3c5e2f56c2a233d91fa2c9) C:\WINDOWS1\system32\drivers\Udfs.sys
2010/10/04 15:01:44.0609 Update (402ddc88356b1bac0ee3dd1580c76a31) C:\WINDOWS1\system32\DRIVERS\update.sys
2010/10/04 15:01:44.0796 usbaudio (e919708db44ed8543a7c017953148330) C:\WINDOWS1\system32\drivers\usbaudio.sys
2010/10/04 15:01:44.0859 usbccgp (173f317ce0db8e21322e71b7e60a27e8) C:\WINDOWS1\system32\DRIVERS\usbccgp.sys
2010/10/04 15:01:45.0015 usbehci (65dcf09d0e37d4c6b11b5b0b76d470a7) C:\WINDOWS1\system32\DRIVERS\usbehci.sys
2010/10/04 15:01:45.0093 usbhub (1ab3cdde553b6e064d2e754efe20285c) C:\WINDOWS1\system32\DRIVERS\usbhub.sys
2010/10/04 15:01:45.0250 usbprint (a717c8721046828520c9edf31288fc00) C:\WINDOWS1\system32\DRIVERS\usbprint.sys
2010/10/04 15:01:45.0359 usbscan (a0b8cf9deb1184fbdd20784a58fa75d4) C:\WINDOWS1\system32\DRIVERS\usbscan.sys
2010/10/04 15:01:45.0500 usbstor (a32426d9b14a089eaa1d922e0c5801a9) C:\WINDOWS1\system32\DRIVERS\USBSTOR.SYS
2010/10/04 15:01:45.0546 usbuhci (26496f9dee2d787fc3e61ad54821ffe6) C:\WINDOWS1\system32\DRIVERS\usbuhci.sys
2010/10/04 15:01:45.0703 USB_RNDIS (bee793d4a059caea55d6ac20e19b3a8f) C:\WINDOWS1\system32\DRIVERS\usb8023.sys
2010/10/04 15:01:45.0781 VgaSave (0d3a8fafceacd8b7625cd549757a7df1) C:\WINDOWS1\System32\drivers\vga.sys
2010/10/04 15:01:45.0984 VolSnap (4c8fcb5cc53aab716d810740fe59d025) C:\WINDOWS1\system32\drivers\VolSnap.sys
2010/10/04 15:01:46.0171 Wanarp (e20b95baedb550f32dd489265c1da1f6) C:\WINDOWS1\system32\DRIVERS\wanarp.sys
2010/10/04 15:01:46.0281 wdmaud (6768acf64b18196494413695f0c3a00f) C:\WINDOWS1\system32\drivers\wdmaud.sys
2010/10/04 15:01:46.0500 winachsf (74cf3f2e4e40c4a2e18d39d6300a5c24) C:\WINDOWS1\system32\DRIVERS\HSF_CNXT.sys
2010/10/04 15:01:46.0750 WLAN(WLAN) (9abbef89daa6d6fdbbcc12a35f2c8799) C:\WINDOWS1\system32\DRIVERS\zd1211u.sys
2010/10/04 15:01:46.0984 WSTCODEC (c98b39829c2bbd34e454150633c62c78) C:\WINDOWS1\system32\DRIVERS\WSTCODEC.SYS
2010/10/04 15:01:47.0093 WudfPf (f15feafffbb3644ccc80c5da584e6311) C:\WINDOWS1\system32\DRIVERS\WudfPf.sys
2010/10/04 15:01:47.0265 WudfRd (28b524262bce6de1f7ef9f510ba3985b) C:\WINDOWS1\system32\DRIVERS\wudfrd.sys
2010/10/04 15:01:47.0578 ================================================================================
2010/10/04 15:01:47.0578 Scan finished
2010/10/04 15:01:47.0578 ================================================================================

#4 quietman7

quietman7

    Bleepin' Janitor


  • Global Moderator
  • 51,608 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Virginia, USA
  • Local time:04:11 AM

Posted 04 October 2010 - 02:28 PM

Please post the complete results of your last MBAM scan for review.

To retrieve the Malwarebytes Anti-Malware scan log information, launch MBAM.
  • Click the Logs Tab at the top.
    • The log will be named by the date of scan in the following format: mbam-log-date(time).txt
      -- If you have previously used MBAM, there may be several logs showing in the list.
  • Click on the log name to highlight it.
  • Go to the bottom and click on Open.
  • The log should automatically open in notepad as a text file.
  • Go to Edit and choose Select all.
  • Go back to Edit and choose Copy or right-click on the highlighted text and choose Copy from there.
  • Come back to this thread, click Add Reply, then right-click and choose Paste.
  • Be sure to post the complete log to include the top portion which shows MBAM's database version and your operating system.
  • Exit MBAM when done.
Logs are saved to the following locations:
-- XP: C:\Documents and Settings\<Username>\Application Data\Malwarebytes\Malwarebytes' Anti-Malware\Logs
-- Vista, Windows 7, 2008: C:\ProgramData\Malwarebytes\Malwarebytes' Anti-Malware\Logs


Please download and scan with SUPERAntiSpyware Free
-- If you already use SUPERAntispyware, make sure you are using the most current version as it is frequently updated.
  • Double-click SUPERAntiSypware.exe and use the default settings for installation.
  • Follow these instructions: How to use SUPERAntiSpyware to scan and remove malware from your computer Guide.
  • To retrieve the removal information after reboot, launch SUPERAntispyware again.
    • Click Preferences, then click the Statistics/Logs tab.
    • Under Scanner Logs, double-click SUPERAntiSpyware Scan Log.
    • If there are several logs, click the current dated log and press View log. A text file will open in your default text editor.
    • Please copy and paste the Scan Log results in your next reply.
  • Click Close to exit the program.
-- If you have a problem downloading, installing or getting SAS to run, try downloading and using the SUPERAntiSpyware Portable Scanner (listed under Popular Links) instead. Save the randomly named file (i.e. SAS_1710895.COM) to a usb drive or CD and transfer to the infected computer. Then double-click on it to launch and scan. The file is randomly named to help keep malware from blocking the scanner.
.
.
Windows Insider MVP 2017-2018
Microsoft MVP Reconnect 2016
Microsoft MVP Consumer Security 2007-2015 kO7xOZh.gif
Member of UNITE, Unified Network of Instructors and Trusted Eliminators

If I have been helpful & you'd like to consider a donation, click 38WxTfO.gif

#5 VadidNanko

VadidNanko
  • Topic Starter

  • Members
  • 3 posts
  • OFFLINE
  •  
  • Local time:04:11 AM

Posted 04 October 2010 - 07:52 PM

Here they are:

Malwarebytes' Anti-Malware 1.46
www.malwarebytes.org

Database version: 4735

Windows 5.1.2600 Service Pack 3
Internet Explorer 7.0.5730.13

10/3/2010 2:43:07 PM
mbam-log-2010-10-03 (14-43-07).txt

Scan type: Full scan (C:\|H:\|)
Objects scanned: 286161
Time elapsed: 2 hour(s), 8 minute(s), 27 second(s)

Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 0
Registry Values Infected: 1
Registry Data Items Infected: 0
Folders Infected: 4
Files Infected: 11

Memory Processes Infected:
(No malicious items detected)

Memory Modules Infected:
(No malicious items detected)

Registry Keys Infected:
(No malicious items detected)

Registry Values Infected:
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\shell (Trojan.Agent) -> Quarantined and deleted successfully.

Registry Data Items Infected:
(No malicious items detected)

Folders Infected:
C:\Program Files\AntiSpywareXP2009 (Rogue.AntiSpywareXP) -> Quarantined and deleted successfully.
C:\Program Files\AntiSpywareXP2009\data (Rogue.AntiSpywareXP) -> Quarantined and deleted successfully.
C:\Program Files\AntiSpywareXP2009\Microsoft.VC80.CRT (Rogue.AntiSpywareXP) -> Quarantined and deleted successfully.
C:\Documents and Settings\Owner\Start Menu\Programs\AntiSpywareXP2009 (Rogue.AntiSpywareXP) -> Quarantined and deleted successfully.

Files Infected:
C:\System Volume Information\_restore{3003B2F0-5F9A-4152-B08A-C0461E333210}\RP0\A0000022.exe (Trojan.FakeAlert) -> Quarantined and deleted successfully.
C:\Documents and Settings\All Users.WINDOWS1\Start Menu\Programs\WinRAR\OJOsoft.Total.Video.Converter.v2.6.2.0207.Incl.Serial-AT4RE\OJOsoft.Total.Video.Converter.v2.6.2.0207.Incl.Serial-AT4RE\AT4RE\keygen.exe (Trojan.Dropper.PGen) -> Quarantined and deleted successfully.
C:\Documents and Settings\default\Desktop\OJOsoft.Total.Video.Converter.v2.6.2.0207.Incl.Serial-AT4RE\AT4RE\keygen.exe (Trojan.Dropper.PGen) -> Quarantined and deleted successfully.
C:\Program Files\AntiSpywareXP2009\AntiSpywareXP2009.cfg (Rogue.AntiSpywareXP) -> Quarantined and deleted successfully.
C:\Program Files\AntiSpywareXP2009\pthreadVC2.dll (Rogue.AntiSpywareXP) -> Quarantined and deleted successfully.
C:\Program Files\AntiSpywareXP2009\data\daily.cvd (Rogue.AntiSpywareXP) -> Quarantined and deleted successfully.
C:\Documents and Settings\Owner\Start Menu\Programs\AntiSpywareXP2009\Uninstall.lnk (Rogue.AntiSpywareXP) -> Quarantined and deleted successfully.
C:\Documents and Settings\Owner\Application Data\piqypyb.reg (Rogue.AntiVirusPro) -> Quarantined and deleted successfully.
C:\Documents and Settings\Owner\Application Data\Microsoft\Internet Explorer\Quick Launch\AntiSpywareXP2009.lnk (Rogue.AntiSpyware) -> Quarantined and deleted successfully.
C:\Documents and Settings\All Users.WINDOWS1\Documents\Server\admin.txt (Malware.Trace) -> Quarantined and deleted successfully.
C:\Documents and Settings\All Users.WINDOWS1\Documents\Server\server.dat (Malware.Trace) -> Quarantined and deleted successfully.

---------

SUPERAntiSpyware Scan Log
http://www.superantispyware.com

Generated 10/04/2010 at 07:57 PM

Application Version : 4.44.1000

Core Rules Database Version : 5629
Trace Rules Database Version: 3441

Scan type : Complete Scan
Total Scan Time : 01:19:26

Memory items scanned : 414
Memory threats detected : 0
Registry items scanned : 6911
Registry threats detected : 0
File items scanned : 34866
File threats detected : 424

Adware.Tracking Cookie
a.media.community.abcfamily.go.com [ C:\Documents and Settings\default\Application Data\Macromedia\Flash Player\#SharedObjects\MF5W9CQK ]
ao1.crosscutmedia.com [ C:\Documents and Settings\default\Application Data\Macromedia\Flash Player\#SharedObjects\MF5W9CQK ]
cdn.insights.gravity.com [ C:\Documents and Settings\default\Application Data\Macromedia\Flash Player\#SharedObjects\MF5W9CQK ]
cdn2.invitemedia.com [ C:\Documents and Settings\default\Application Data\Macromedia\Flash Player\#SharedObjects\MF5W9CQK ]
cdn4.specificclick.net [ C:\Documents and Settings\default\Application Data\Macromedia\Flash Player\#SharedObjects\MF5W9CQK ]
content.yieldmanager.edgesuite.net [ C:\Documents and Settings\default\Application Data\Macromedia\Flash Player\#SharedObjects\MF5W9CQK ]
convoad.technoratimedia.com [ C:\Documents and Settings\default\Application Data\Macromedia\Flash Player\#SharedObjects\MF5W9CQK ]
ds.serving-sys.com [ C:\Documents and Settings\default\Application Data\Macromedia\Flash Player\#SharedObjects\MF5W9CQK ]
funnisexi.smartvideochannel.com [ C:\Documents and Settings\default\Application Data\Macromedia\Flash Player\#SharedObjects\MF5W9CQK ]
i.adultswim.com [ C:\Documents and Settings\default\Application Data\Macromedia\Flash Player\#SharedObjects\MF5W9CQK ]
ia.media-imdb.com [ C:\Documents and Settings\default\Application Data\Macromedia\Flash Player\#SharedObjects\MF5W9CQK ]
interclick.com [ C:\Documents and Settings\default\Application Data\Macromedia\Flash Player\#SharedObjects\MF5W9CQK ]
m1.2mdn.net [ C:\Documents and Settings\default\Application Data\Macromedia\Flash Player\#SharedObjects\MF5W9CQK ]
media.amctv.com [ C:\Documents and Settings\default\Application Data\Macromedia\Flash Player\#SharedObjects\MF5W9CQK ]
media.fleshlight.com [ C:\Documents and Settings\default\Application Data\Macromedia\Flash Player\#SharedObjects\MF5W9CQK ]
media.ign.com [ C:\Documents and Settings\default\Application Data\Macromedia\Flash Player\#SharedObjects\MF5W9CQK ]
media.king5.com [ C:\Documents and Settings\default\Application Data\Macromedia\Flash Player\#SharedObjects\MF5W9CQK ]
media.mtvnservices.com [ C:\Documents and Settings\default\Application Data\Macromedia\Flash Player\#SharedObjects\MF5W9CQK ]
media.nbcaugusta.com [ C:\Documents and Settings\default\Application Data\Macromedia\Flash Player\#SharedObjects\MF5W9CQK ]
media.nbcphiladelphia.com [ C:\Documents and Settings\default\Application Data\Macromedia\Flash Player\#SharedObjects\MF5W9CQK ]
media.scanscout.com [ C:\Documents and Settings\default\Application Data\Macromedia\Flash Player\#SharedObjects\MF5W9CQK ]
media.wholesite.com [ C:\Documents and Settings\default\Application Data\Macromedia\Flash Player\#SharedObjects\MF5W9CQK ]
media1.break.com [ C:\Documents and Settings\default\Application Data\Macromedia\Flash Player\#SharedObjects\MF5W9CQK ]
media10.washingtonpost.com [ C:\Documents and Settings\default\Application Data\Macromedia\Flash Player\#SharedObjects\MF5W9CQK ]
media2.firstshowing.net [ C:\Documents and Settings\default\Application Data\Macromedia\Flash Player\#SharedObjects\MF5W9CQK ]
msnbcmedia.msn.com [ C:\Documents and Settings\default\Application Data\Macromedia\Flash Player\#SharedObjects\MF5W9CQK ]
multimedia.msn.com [ C:\Documents and Settings\default\Application Data\Macromedia\Flash Player\#SharedObjects\MF5W9CQK ]
objects.tremormedia.com [ C:\Documents and Settings\default\Application Data\Macromedia\Flash Player\#SharedObjects\MF5W9CQK ]
secure-it.imrworldwide.com [ C:\Documents and Settings\default\Application Data\Macromedia\Flash Player\#SharedObjects\MF5W9CQK ]
secure-us.imrworldwide.com [ C:\Documents and Settings\default\Application Data\Macromedia\Flash Player\#SharedObjects\MF5W9CQK ]
udn.specificclick.net [ C:\Documents and Settings\default\Application Data\Macromedia\Flash Player\#SharedObjects\MF5W9CQK ]
wdw1.wdpromedia.com [ C:\Documents and Settings\default\Application Data\Macromedia\Flash Player\#SharedObjects\MF5W9CQK ]
wdw2.wdpromedia.com [ C:\Documents and Settings\default\Application Data\Macromedia\Flash Player\#SharedObjects\MF5W9CQK ]
www.countryinns.com [ C:\Documents and Settings\default\Application Data\Macromedia\Flash Player\#SharedObjects\MF5W9CQK ]
www.naiadsystems.com [ C:\Documents and Settings\default\Application Data\Macromedia\Flash Player\#SharedObjects\MF5W9CQK ]
www.pornhub.com [ C:\Documents and Settings\default\Application Data\Macromedia\Flash Player\#SharedObjects\MF5W9CQK ]
www.soundclick.com [ C:\Documents and Settings\default\Application Data\Macromedia\Flash Player\#SharedObjects\MF5W9CQK ]
www.statscounteronline.com [ C:\Documents and Settings\default\Application Data\Macromedia\Flash Player\#SharedObjects\MF5W9CQK ]
wwwstatic.megaporn.com [ C:\Documents and Settings\default\Application Data\Macromedia\Flash Player\#SharedObjects\MF5W9CQK ]
.2o7.net [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.dmtracker.com [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.imrworldwide.com [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.imrworldwide.com [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.msnbc.112.2o7.net [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.msnportal.112.2o7.net [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.revsci.net [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.revsci.net [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.revsci.net [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.specificclick.net [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.specificclick.net [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.specificclick.net [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.specificclick.net [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.specificmedia.com [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
forums.profiletracker.us [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
forums.profiletracker.us [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.2o7.net [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.2o7.net [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.2o7.net [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.2o7.net [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.2o7.net [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.2o7.net [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.revsci.net [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.2o7.net [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.2o7.net [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.2o7.net [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.2o7.net [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.2o7.net [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.2o7.net [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.brighthouse.122.2o7.net [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.2o7.net [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.2o7.net [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.2o7.net [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.2o7.net [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.2o7.net [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.2o7.net [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.2o7.net [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.2o7.net [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.revsci.net [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.2o7.net [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.2o7.net [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.2o7.net [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.2o7.net [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.2o7.net [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.2o7.net [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.2o7.net [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.2o7.net [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.invitemedia.com [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.invitemedia.com [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.revsci.net [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.2o7.net [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.invitemedia.com [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.invitemedia.com [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.revsci.net [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.specificclick.net [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.2o7.net [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.2o7.net [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.revsci.net [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.2o7.net [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.revsci.net [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.2o7.net [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.2o7.net [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.2o7.net [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.media.mtvnservices.com [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.media.mtvnservices.com [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.2o7.net [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.2o7.net [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.2o7.net [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.2o7.net [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.invitemedia.com [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.invitemedia.com [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.revsci.net [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.associatedcontent.112.2o7.net [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.stpetersburgtimes.122.2o7.net [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.2o7.net [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.specificclick.net [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.invitemedia.com [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.invitemedia.com [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.invitemedia.com [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.2o7.net [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.s.clickability.com [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.s.clickability.com [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.revsci.net [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
in.getclicky.com [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
server.iad.liveperson.net [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.tracking.foxnews.com [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.tracking.foxnews.com [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.cbsdigitalmedia.112.2o7.net [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.revsci.net [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.twittercounter.com [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.twittercounter.com [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.revsci.net [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.revsci.net [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.specificclick.net [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.ads.pointroll.com [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.pointroll.com [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.pointroll.com [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.ads.pointroll.com [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.ads.pointroll.com [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.ads.pointroll.com [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.ads.pointroll.com [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.ads.pointroll.com [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.ads.pointroll.com [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.liveperson.net [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.2o7.net [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.revsci.net [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.revsci.net [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.revsci.net [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.revsci.net [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.2o7.net [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.revsci.net [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.adultfriendfinder.com [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.adultfriendfinder.com [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.ads.pointroll.com [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.revsci.net [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.media.photobucket.com [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
forums.profiletracker.us [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.2o7.net [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.facebookofsex.com [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.facebookofsex.com [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.revsci.net [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.specificclick.net [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.bravenet.com [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.e-2dj6wfl4uhdzoho.stats.esomniture.com [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.wpni.112.2o7.net [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.hearstmagazines.112.2o7.net [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.media6degrees.com [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.media6degrees.com [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.media6degrees.com [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.revsci.net [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.yadro.ru [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.bizrate.com [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.mediaforge.com [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.trafficmp.com [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.trafficmp.com [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.healthgrades.112.2o7.net [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
www.baystonemedia.com [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
www.baystonemedia.com [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
tracking.hostgator.com [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.hotlog.ru [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.pornhub.com [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.pornhub.com [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.revsci.net [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.elitetraininginc.com [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.elitetraininginc.com [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.questionmarket.com [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.2o7.net [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.2o7.net [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.gostats.com [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.247realmedia.com [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.oasn04.247realmedia.com [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.e-2dj6wclyemczagp.stats.esomniture.com [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.e-2dj6wmlywpaziko.stats.esomniture.com [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
magnet.traffic.com [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.e-2dj6wjlyejdzsdp.stats.esomniture.com [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.e-2dj6wnlyomdzacq.stats.esomniture.com [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.media6degrees.com [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.rainbowmedia.122.2o7.net [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
stats.townnews.com [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
stats.townnews.com [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
stats.townnews.com [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
stats.townnews.com [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.leeenterprises.112.2o7.net [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
s03.flagcounter.com [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
media.ps3.ign.com [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.examinercom.122.2o7.net [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
timesofindia.indiatimes.com [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
timesofindia.indiatimes.com [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
timesofindia.indiatimes.com [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
forums.profiletracker.us [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
forums.profiletracker.us [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.e-2dj6wjnyepcjilp.stats.esomniture.com [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.e-2dj6wjliugdzkho.stats.esomniture.com [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
www.free-counter.com [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.tripod.com [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.cracked.com [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.cracked.com [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.cracked.com [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.pornhost.com [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.pornhost.com [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.torstardigital.122.2o7.net [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.twittercounter.com [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.twittercounter.com [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.timeinc.122.2o7.net [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
media.xbox360.ign.com [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
media.xbox360.ign.com [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
media.xbox360.ign.com [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.oasn04.247realmedia.com [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.foxinteractivemedia.122.2o7.net [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.revsci.net [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.bubblestat.com [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.bubblestat.com [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.mediaforge.com [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.trafficmp.com [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
dc.tremormedia.com [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.e-2dj6wfl4epc5mgq.stats.esomniture.com [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.tripod.com [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.prnewswire.122.2o7.net [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.liveperson.net [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.2o7.net [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.exitexchange.com [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.exitexchange.com [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.analytics.rogersmedia.com [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.rogersmedia.com [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.mediafire.com [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.mediafire.com [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.mediafire.com [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.mediafire.com [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.2o7.net [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.chicagosuntimes.122.2o7.net [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.insightexpressai.com [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.insightexpressai.com [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.insightexpressai.com [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.insightexpressai.com [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.insightexpressai.com [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.bs.serving-sys.com [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.serving-sys.com [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.serving-sys.com [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.serving-sys.com [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.serving-sys.com [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.serving-sys.com [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.serving-sys.com [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.serving-sys.com [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.questionmarket.com [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.content.yieldmanager.com [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.themis-media.com [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.e-2dj6wmkiwpcjaho.stats.esomniture.com [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.e-2dj6wjmyohc5mbp.stats.esomniture.com [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.e-2dj6wjnyakazcbp.stats.esomniture.com [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.usatoday1.112.2o7.net [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.revsci.net [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.highbeam.122.2o7.net [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.e-2dj6wjmiukczmfo.stats.esomniture.com [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.revsci.net [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.revsci.net [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.hesscorporation.122.2o7.net [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
counter.surfcounters.com [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
bridge1.admarketplace.net [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.admarketplace.net [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.euronetresponse.122.2o7.net [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
c.searchfeedengine-us.com [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.stopzilla.com [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
www.stopzilla.com [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.stopzilla.com [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.stopzilla.com [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
sdesapio-conversiontracker.appspot.com [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
sdesapio-conversiontracker.appspot.com [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
sdesapio-conversiontracker.appspot.com [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
sdesapio-conversiontracker.appspot.com [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
findmyhood.com [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.interchangecorporation.122.2o7.net [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.revsci.net [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.revsci.net [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
n-traffic.com [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
.kaspersky.122.2o7.net [ C:\Documents and Settings\default\Application Data\Mozilla\Firefox\Profiles\c5z8pxs9.default\cookies.sqlite ]
105-bmp.googleadservices.com [ C:\Documents and Settings\Owner\Application Data\Macromedia\Flash Player\#SharedObjects\VE66QNUD ]
2mdn.net [ C:\Documents and Settings\Owner\Application Data\Macromedia\Flash Player\#SharedObjects\VE66QNUD ]
adknowledge.com [ C:\Documents and Settings\Owner\Application Data\Macromedia\Flash Player\#SharedObjects\VE66QNUD ]
ads1.msn.com [ C:\Documents and Settings\Owner\Application Data\Macromedia\Flash Player\#SharedObjects\VE66QNUD ]
homedepot98home.crossmediaservices.com [ C:\Documents and Settings\Owner\Application Data\Macromedia\Flash Player\#SharedObjects\VE66QNUD ]
interclick.com [ C:\Documents and Settings\Owner\Application Data\Macromedia\Flash Player\#SharedObjects\VE66QNUD ]
oddcast.com [ C:\Documents and Settings\Owner\Application Data\Macromedia\Flash Player\#SharedObjects\VE66QNUD ]
web.adknowledge.com [ C:\Documents and Settings\Owner\Application Data\Macromedia\Flash Player\#SharedObjects\VE66QNUD ]
C:\Documents and Settings\Owner\Cookies\owner@www.discountcontactlenses[2].txt
C:\Documents and Settings\Owner\Cookies\owner@ad.pitattomatch[2].txt
C:\Documents and Settings\Owner\Cookies\owner@track.bestbuy[2].txt
C:\Documents and Settings\Owner\Cookies\owner@ad.mainichi[1].txt
C:\Documents and Settings\Owner\Cookies\owner@www.totaldiscountvitamins[1].txt
C:\Documents and Settings\Owner\Cookies\owner@www.clickmanage[2].txt
C:\Documents and Settings\Owner\Cookies\owner@go.drivecleaner[1].txt
C:\Documents and Settings\Owner\Cookies\owner@counter.xrea[1].txt
C:\Documents and Settings\Owner\Cookies\owner@questionbox.jp.msn[2].txt
C:\Documents and Settings\Owner\Cookies\owner@servedby.adxpower[2].txt
C:\Documents and Settings\Owner\Cookies\owner@dmtracker[1].txt
C:\Documents and Settings\Owner\Cookies\owner@ads.gmodules[1].txt
C:\Documents and Settings\Owner\Cookies\owner@pinellascounty[1].txt
C:\Documents and Settings\Owner\Cookies\owner@pt.crossmediaservices[1].txt
C:\Documents and Settings\Owner\Cookies\owner@requestion.ameba[2].txt
C:\Documents and Settings\Owner\Cookies\owner@jp.drivecleaner[2].txt
C:\Documents and Settings\Owner\Cookies\owner@find.2ch[1].txt
C:\Documents and Settings\Owner\Cookies\owner@ad.adplan-ds[1].txt
C:\Documents and Settings\Owner\Cookies\owner@www.ipstats[2].txt
C:\Documents and Settings\Owner\Cookies\owner@ad.pitta.ne[1].txt
C:\Documents and Settings\Owner\Cookies\owner@media.miyako-ma[2].txt
C:\Documents and Settings\Owner\Cookies\owner@lynxtrack[2].txt
C:\Documents and Settings\Owner\Cookies\owner@www.adult-ch[1].txt
C:\Documents and Settings\Owner\Cookies\owner@media6degrees[2].txt
C:\Documents and Settings\Owner\Cookies\owner@tracking.dsmmadvantage[1].txt
C:\Documents and Settings\Owner\Cookies\owner@theonlinesavingsaccounts[1].txt
C:\Documents and Settings\Owner\Cookies\owner@free.adult-mb[1].txt
C:\Documents and Settings\Owner\Cookies\owner@track.affiliate-b[2].txt
C:\Documents and Settings\Owner\Cookies\owner@movie.jp-sex[2].txt
C:\Documents and Settings\Owner\Cookies\owner@v.peoplefinders[2].txt
C:\Documents and Settings\Owner\Cookies\owner@ad.agilemedia[1].txt
C:\Documents and Settings\Owner\Cookies\owner@ads.as4x.tmcs[1].txt
C:\Documents and Settings\Owner\Cookies\owner@publicrecordfinder[1].txt
C:\Documents and Settings\Owner\Cookies\owner@usatourist.advertserve[2].txt
C:\Documents and Settings\Owner\Cookies\owner@discountcontactlenses[2].txt
C:\Documents and Settings\Owner\Cookies\owner@cnt3.millioncounter[2].txt
C:\Documents and Settings\Owner\Cookies\owner@images.crossmediaservices[1].txt
C:\Documents and Settings\Owner\Cookies\owner@ads.mixi[1].txt
C:\Documents and Settings\Owner\Cookies\owner@ad.interclick[2].txt
C:\Documents and Settings\Owner\Cookies\owner@ad.nikkansports[1].txt
C:\Documents and Settings\Owner\Cookies\owner@cf-db01.clickfacts[2].txt
C:\Documents and Settings\Owner\Cookies\owner@ad.adlantis[2].txt
C:\Documents and Settings\Owner\Cookies\owner@countrywide[2].txt
C:\Documents and Settings\Owner\Cookies\owner@qnsr[1].txt
C:\Documents and Settings\Owner\Cookies\owner@bluestreak[2].txt
C:\Documents and Settings\Owner\Cookies\owner@peoplefinders[2].txt
C:\Documents and Settings\Owner\Cookies\owner@itmedia.co[1].txt
C:\Documents and Settings\Owner\Cookies\owner@torrent-finder[2].txt
C:\Documents and Settings\Owner\Cookies\owner@accounts[1].txt
C:\Documents and Settings\Owner\Cookies\owner@rismedia[1].txt
C:\Documents and Settings\Owner\Cookies\owner@interclick[2].txt
C:\Documents and Settings\Owner\Cookies\owner@adinterax[2].txt
C:\Documents and Settings\Owner\Cookies\owner@ad.axyzconductor[2].txt
C:\Documents and Settings\Owner\Cookies\owner@discounterectionpills[2].txt
C:\Documents and Settings\Owner\Cookies\owner@discountautoparts[2].txt
C:\Documents and Settings\Owner\Cookies\owner@Stats[1].txt
C:\Documents and Settings\Owner\Cookies\owner@eyewonder[2].txt
C:\Documents and Settings\Owner\Cookies\owner@www.alamedacountyinfo[1].txt
C:\Documents and Settings\Owner\Cookies\owner@adultcity[2].txt
C:\Documents and Settings\Owner\Cookies\owner@account.live[2].txt
C:\Documents and Settings\Owner\Cookies\owner@collective-media[2].txt
C:\Documents and Settings\Owner\Cookies\owner@media.hotels[1].txt
C:\Documents and Settings\Owner\Cookies\owner@www.adult-angel[2].txt
C:\Documents and Settings\Owner\Cookies\owner@drivecleaner[1].txt
C:\Documents and Settings\Owner\Cookies\owner@stat.dealtime[1].txt
C:\Documents and Settings\Owner\Cookies\owner@myroitracking[1].txt
C:\Documents and Settings\Owner\Cookies\owner@stats.officite[1].txt
C:\Documents and Settings\Owner\Cookies\owner@www.peoplefinders[1].txt
C:\Documents and Settings\Owner\Cookies\owner@neocounter2[2].txt
C:\Documents and Settings\Owner\Cookies\owner@sec1.liveperson[2].txt
C:\Documents and Settings\Owner\Cookies\owner@clicktorrent[1].txt
C:\Documents and Settings\Owner\Cookies\owner@www.scripttrack433[1].txt
C:\Documents and Settings\Owner\Cookies\owner@track.siteleaf[1].txt
C:\Documents and Settings\Owner\Cookies\owner@ads.expedia[1].txt
C:\Documents and Settings\Owner\Cookies\owner@petfinder[1].txt
C:\Documents and Settings\Owner\Cookies\owner@yx0banners[2].txt
C:\Documents and Settings\Owner\Cookies\owner@gtb15.acecounter[2].txt
C:\Documents and Settings\Owner\Cookies\owner@stat.umn[1].txt
C:\Documents and Settings\Owner\Cookies\owner@partner2profit[2].txt
C:\Documents and Settings\Owner\Cookies\owner@insightfirst[1].txt
C:\Documents and Settings\Owner\Cookies\owner@cast.trustclick.ne[1].txt
C:\Documents and Settings\Owner\Cookies\owner@questionbox.msn.co[2].txt
C:\Documents and Settings\Owner\Cookies\owner@specificmedia[1].txt
C:\Documents and Settings\Owner\Cookies\owner@www.publicrecordfinder[1].txt
C:\Documents and Settings\Owner\Cookies\owner@ad.orange-park[1].txt
C:\Documents and Settings\Owner\Cookies\owner@www.counter-hosting[1].txt
C:\Documents and Settings\Owner\Cookies\owner@www.01adult[1].txt
C:\Documents and Settings\Owner\Cookies\owner@counter.hatena.ne[1].txt
C:\Documents and Settings\Owner\Cookies\owner@www.counter-hosting[2].txt
C:\Documents and Settings\Owner\Cookies\owner@chitika[2].txt
C:\Documents and Settings\Owner\Cookies\owner@tracking.evisibility[1].txt
C:\Documents and Settings\Owner\Cookies\owner@xiti[1].txt
C:\Documents and Settings\Owner\Cookies\owner@adprofile[2].txt
C:\Documents and Settings\Owner\Cookies\owner@ads.namx[1].txt
C:\Documents and Settings\Owner\Cookies\owner@banner[1].txt
C:\Documents and Settings\Owner\Cookies\owner@richmedia.yahoo[2].txt
C:\Documents and Settings\Owner\Cookies\owner@ad.ntv.co[1].txt
C:\Documents and Settings\Owner\Cookies\owner@ads.as4x.tmcs.ticketmaster[1].txt
C:\Documents and Settings\Owner\Cookies\owner@ads.traderonline[2].txt
C:\Documents and Settings\Owner\Cookies\owner@nextag[2].txt
C:\Documents and Settings\Owner\Cookies\owner@revsci[2].txt
C:\Documents and Settings\Owner\Cookies\owner@find.intelius[2].txt
C:\Documents and Settings\Owner\Cookies\owner@stats.drivecleaner[2].txt
C:\Documents and Settings\Owner\Cookies\owner@adult.misty.ne[1].txt
C:\Documents and Settings\Owner\Cookies\owner@adv.yomiuri.co[2].txt
C:\Documents and Settings\Owner\Cookies\owner@ads.allaboutvision[1].txt
C:\Documents and Settings\Owner\Cookies\owner@jump.joyfulclick[1].txt
C:\Documents and Settings\Owner\Cookies\owner@bank.countrywide[2].txt
C:\Documents and Settings\Owner\Cookies\owner@www.precisioncounter[1].txt
C:\Documents and Settings\Owner\Cookies\owner@00count[2].txt
C:\Documents and Settings\Owner\Cookies\owner@cast.custom-click[2].txt
C:\Documents and Settings\Owner\Cookies\owner@serv.clicksor[2].txt
C:\Documents and Settings\Owner\Cookies\owner@ecnext.advertserve[1].txt
C:\Documents and Settings\Owner\Cookies\owner@sales.liveperson[1].txt
C:\Documents and Settings\Owner\Cookies\owner@adserver[2].txt
C:\Documents and Settings\Owner\Cookies\owner@signin.questionbox.jp.msn[2].txt
C:\Documents and Settings\Owner\Cookies\owner@atwola[2].txt
C:\Documents and Settings\Owner\Cookies\owner@click.email.hotels[2].txt

Trojan.Agent/Gen-Nullo[Short]
C:\SYSTEM VOLUME INFORMATION\_RESTORE{3003B2F0-5F9A-4152-B08A-C0461E333210}\RP1\A0000032.EXE
C:\SYSTEM VOLUME INFORMATION\_RESTORE{3003B2F0-5F9A-4152-B08A-C0461E333210}\RP1\A0000033.EXE
C:\SYSTEM VOLUME INFORMATION\_RESTORE{3003B2F0-5F9A-4152-B08A-C0461E333210}\RP1\A0000035.DLL

Rootkit.TDSServ-Trace
C:\WINDOWS\SYSTEM32\TDSSLXWP.DLL

---------

(I noticed the TDSServ Rootkit above. I'm going to recheck to see that I have the latest update for the TDSSKiller. Also, I don't know if it matters but I received this computer from a Japanese friend of my mother. He or his family installed Japanese software into the PC. Again, I don't know if this is important but I thought to mention it. I've checked to see if the problem still exists and it does, unfortunately.)

Thanks again quietman7 for your assistance!

Edited by VadidNanko, 04 October 2010 - 07:53 PM.


#6 quietman7

quietman7

    Bleepin' Janitor


  • Global Moderator
  • 51,608 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Virginia, USA
  • Local time:04:11 AM

Posted 21 October 2010 - 09:16 PM

I apologize but I did not receive an email notification that you had replied again so I was not aware until I conducted a search.

How is your computer running now? Are there any more signs of infection, strange audio ads, unwanted pop-ups, security alerts, or browser redirects?
.
.
Windows Insider MVP 2017-2018
Microsoft MVP Reconnect 2016
Microsoft MVP Consumer Security 2007-2015 kO7xOZh.gif
Member of UNITE, Unified Network of Instructors and Trusted Eliminators

If I have been helpful & you'd like to consider a donation, click 38WxTfO.gif




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users