Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Infected With Spyware


  • This topic is locked This topic is locked
9 replies to this topic

#1 arturd2

arturd2

  • Members
  • 5 posts
  • OFFLINE
  •  
  • Local time:09:16 AM

Posted 02 June 2006 - 09:14 AM

Hi all,

This is my first post, sorry for the intoduction in this section.

I have removed Spyfalcon sometime ago using the 'Removal Guide', thanks for the guide.

However today i ran a scan using Norton and it found a virus, not sure how i got it but this things tend to find a way, it was Trojan.Nebuler. I removed using the instructuions but during the process i was infected by Spywarequake. Once again i used the instructions and removed it.

Currently it seems my computer is fairely clean to me as i ran all suggested software, however Panda Online is reporting few detections and Internet Explorer seems to be infected by something, as i cannot change the home page in options - this is the site that keeps poping up everytime i start it - //www.guarduptodate.net/ It states:
WARNING! YOUR SYSTEM IS VULNERABLE TO HACKERS' ATTACKS AND BREAKDOWNS! etc...
I have uploaded a link: //arturd2.customer.netspace.net.au/IE.JPG
Im not sure how to fix this issue.

EDIT: Apperantly it is W32.Myzor FK@yf VIRUS

At the same time if it is possible i would to know if there is anything else infecting my computer.

If someone could help me out it would be greatly appreciated.


Logfile of HijackThis v1.99.1
Scan saved at 12:09:39 AM, on 6/3/2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe
C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\Program Files\Norton AntiVirus\navapsvc.exe
C:\Program Files\Norton AntiVirus\IWP\NPFMntor.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\Program Files\Common Files\Symantec Shared\SNDSrvc.exe
C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCSvc.exe
C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe
C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe
C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe
C:\WINDOWS\system32\dcomcfg.exe
C:\Program Files\Common Files\Symantec Shared\ccApp.exe
C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\WINDOWS\system32\RUNDLL32.EXE
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Razer\Copperhead\razerhid.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\DAEMON Tools\daemon.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\Razer\Copperhead\razertra.exe
C:\Program Files\Razer\Copperhead\razerofa.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\WINDOWS\explorer.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\HijackThis\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = prosearching.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = www.google.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,SearchURL = prosearching.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = prosearching.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = about:blank
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = www.google.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,SearchURL = prosearching.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Search,SearchAssistant = about:blank
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = prosearching.com
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = prosearching.com
R3 - Default URLSearchHook is missing
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O2 - BHO: Nothing - {6ab7158b-4bff-4160-ad7d-4d622df548cf} - C:\WINDOWS\system32\hp100.tmp
O3 - Toolbar: Norton AntiVirus - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - C:\Program Files\Norton AntiVirus\NavShExt.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Common Files\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [Symantec NetDriver Monitor] C:\PROGRA~1\SYMNET~1\SNDMon.exe /Consumer
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [Copperhead] C:\Program Files\Razer\Copperhead\razerhid.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [DAEMON Tools] "C:\Program Files\DAEMON Tools\daemon.exe" -lang 1033
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O8 - Extra context menu item: &Google Search - res://c:\program files\google\GoogleToolbar1.dll/cmsearch.html
O8 - Extra context menu item: &Translate English Word - res://c:\program files\google\GoogleToolbar1.dll/cmwordtrans.html
O8 - Extra context menu item: Backward Links - res://c:\program files\google\GoogleToolbar1.dll/cmbacklinks.html
O8 - Extra context menu item: Cached Snapshot of Page - res://c:\program files\google\GoogleToolbar1.dll/cmcache.html
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: Similar Pages - res://c:\program files\google\GoogleToolbar1.dll/cmsimilar.html
O8 - Extra context menu item: Translate Page into English - res://c:\program files\google\GoogleToolbar1.dll/cmtrans.html
O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab31267.cab
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupdate/...b?1128586965203
O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) - http://acs.pandasoftware.com/activescan/as5free/asinst.cab
O16 - DPF: {B49C4597-8721-4789-9250-315DFBD9F525} (IWinAmpActiveX Class) - http://cdn.digitalcity.com/radio/ampx/ampx2.6.1.11_en_dl.cab
O16 - DPF: {DF780F87-FF2B-4DF8-92D0-73DB16A1543A} - http://arcade.icq.com/carlo/zuma/popcaploader_v5.cab
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)
O20 - AppInit_DLLs: C:\WINDOWS\system32\userinit.dll C:\WINDOWS\system32\rundll.dll
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O23 - Service: Automatic LiveUpdate Scheduler - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe
O23 - Service: Symantec Password Validation (ccPwdSvc) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccPwdSvc.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iPodService - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
O23 - Service: Norton AntiVirus Auto-Protect Service (navapsvc) - Symantec Corporation - C:\Program Files\Norton AntiVirus\navapsvc.exe
O23 - Service: Norton AntiVirus Firewall Monitor Service (NPFMntor) - Symantec Corporation - C:\Program Files\Norton AntiVirus\IWP\NPFMntor.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: SAVScan - Symantec Corporation - C:\Program Files\Norton AntiVirus\SAVScan.exe
O23 - Service: ScriptBlocking Service (SBService) - Symantec Corporation - C:\PROGRA~1\COMMON~1\SYMANT~1\SCRIPT~1\SBServ.exe
O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\SNDSrvc.exe
O23 - Service: Symantec SPBBCSvc (SPBBCSvc) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCSvc.exe
O23 - Service: StarWind iSCSI Service (StarWindService) - Rocket Division Software - C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe
O23 - Service: Symantec Core LC - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe


Thanks in advance!

Edited by KoanYorel, 02 June 2006 - 01:38 PM.


BC AdBot (Login to Remove)

 


m

#2 teacup61

teacup61

    Bleepin' Texan!


  • Malware Response Team
  • 17,075 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:Wills Point, Texas
  • Local time:05:16 PM

Posted 02 June 2006 - 11:43 PM

Hello arturd2,

Welcome to Bleeping Computer :thumbsup:

Stubborn stuff, isn't it. :flowers:

You should print out these instructions, or copy them to a Notepad file for reading while in Safe Mode, because you will not be able to connect to the Internet to read from this site.

Please download SmitfraudFix (by S!Ri)
Extract the content (a folder named SmitfraudFix) to your Desktop.Do not run it yet.

Please download, install, and update the free version of Ewido Anti-Malware:
  • When installing, under "Additional Options" uncheck "Install background guard" and "Install scan via context menu".
  • When you run Ewido for the first time, you might get a warning "Database could not be found!". Click OK. We will fix this in a moment.
  • From the main Ewido screen, click on update in the left menu, then click the Start update button.
  • After the update finishes, the status bar at the bottom will display "Update successful"
  • Exit Ewido. DO NOT run a scan yet.
Next, please reboot your computer in Safe Mode by doing the following :
  • Restart your computer
  • After hearing your computer beep once during startup, but before the Windows icon appears, tap the F8 key;
  • Instead of Windows loading as normal, a menu with options should appear;
  • Select the first option, to run Windows in Safe Mode, then press "Enter".
  • Choose your usual account.
Once in Safe Mode, open the SmitfraudFix folder again and double-click smitfraudfix.cmd
Select option #2 - Clean by typing 2 and press "Enter" to delete infected files.

You will be prompted : "Registry cleaning - Do you want to clean the registry ?"; answer "Yes" by typing Y and press "Enter" in order to remove the Desktop background and clean registry keys associated with the infection.

The tool will now check if wininet.dll is infected. You may be prompted to replace the infected file (if found); answer "Yes" by typing Y and press "Enter".

The tool may need to restart your computer to finish the cleaning process. A text file will appear onscreen, with results from the cleaning process; please copy/paste the content of that report into your next reply.

After SmitfraudFix finishes (and after a reboot if required), please open Ewido. (If a reboot is required, please boot BACK into Safe Mode.)
  • Click on Scanner
  • Click on Complete System Scan and the scan will begin.
  • If ewido finds anything, it will pop up a notification. You can select "clean" and check the boxes "Perform action with all infections" and "Create encrypted backup" before clicking on OK.
  • When the scan is finished, click the Save report button at the bottom of the screen.
  • Save the report to your desktop
  • Close Ewido
Then please restart it into Normal Windows. Please post the contents of the SmitfraudFix log located at C:\rapport.txt into this thread, along with the Ewido report and a new HijackThis log. Also, please let me know how your computer is running. It helps! :huh:

Thanks,
tea
Please make a donation so I can keep helping people just like you.
Every little bit helps! :)
You can even use your credit card! Thank you!

Posted Image


Error reading poptart in Drive A: Delete kids y/n?

#3 arturd2

arturd2
  • Topic Starter

  • Members
  • 5 posts
  • OFFLINE
  •  
  • Local time:09:16 AM

Posted 03 June 2006 - 07:04 AM

Hi Tea,

Thanks for a quick reply, by the looks of things i was able to remove the W32.Myzor FK@yf VIRUS by using SmitfraudFix prior receiving your reply as i did some searching. Im not sure if you still want me to run it again, please let me know, thanks.

I have downloaded Ewido Anti-Malware and scanned my computer, see report below.

Below is the latest HijackThis log, hopefully it is fine.

Logfile of HijackThis v1.99.1
Scan saved at 9:58:26 PM, on 6/3/2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Common Files\Symantec Shared\ccApp.exe
C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\WINDOWS\system32\RUNDLL32.EXE
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Razer\Copperhead\razerhid.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\DAEMON Tools\daemon.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe
C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\Program Files\Norton AntiVirus\navapsvc.exe
C:\Program Files\Norton AntiVirus\IWP\NPFMntor.exe
C:\Program Files\MSN Messenger\msnmsgr.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\Program Files\Common Files\Symantec Shared\SNDSrvc.exe
C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCSvc.exe
C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe
C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe
C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe
C:\Program Files\Razer\Copperhead\razertra.exe
C:\Program Files\Razer\Copperhead\razerofa.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\ewido anti-malware\ewidoctrl.exe
C:\Program Files\ewido anti-malware\SecuritySuite.exe
C:\WINDOWS\system32\NOTEPAD.EXE
C:\Program Files\HijackThis\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,SearchURL = prosearching.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,SearchURL = prosearching.com
R3 - Default URLSearchHook is missing
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O2 - BHO: Nothing - {6ab7158b-4bff-4160-ad7d-4d622df548cf} - C:\WINDOWS\system32\hp100.tmp (file missing)
O3 - Toolbar: Norton AntiVirus - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - C:\Program Files\Norton AntiVirus\NavShExt.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Common Files\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [Symantec NetDriver Monitor] C:\PROGRA~1\SYMNET~1\SNDMon.exe /Consumer
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [Copperhead] C:\Program Files\Razer\Copperhead\razerhid.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [DAEMON Tools] "C:\Program Files\DAEMON Tools\daemon.exe" -lang 1033
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O8 - Extra context menu item: &Google Search - res://c:\program files\google\GoogleToolbar1.dll/cmsearch.html
O8 - Extra context menu item: &Translate English Word - res://c:\program files\google\GoogleToolbar1.dll/cmwordtrans.html
O8 - Extra context menu item: Backward Links - res://c:\program files\google\GoogleToolbar1.dll/cmbacklinks.html
O8 - Extra context menu item: Cached Snapshot of Page - res://c:\program files\google\GoogleToolbar1.dll/cmcache.html
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: Similar Pages - res://c:\program files\google\GoogleToolbar1.dll/cmsimilar.html
O8 - Extra context menu item: Translate Page into English - res://c:\program files\google\GoogleToolbar1.dll/cmtrans.html
O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab31267.cab
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupdate/...b?1128586965203
O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) - http://acs.pandasoftware.com/activescan/as5free/asinst.cab
O16 - DPF: {B49C4597-8721-4789-9250-315DFBD9F525} (IWinAmpActiveX Class) - http://cdn.digitalcity.com/radio/ampx/ampx2.6.1.11_en_dl.cab
O16 - DPF: {DF780F87-FF2B-4DF8-92D0-73DB16A1543A} - http://arcade.icq.com/carlo/zuma/popcaploader_v5.cab
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)
O20 - AppInit_DLLs: C:\WINDOWS\system32\userinit.dll C:\WINDOWS\system32\rundll.dll
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O20 - Winlogon Notify: WRNotifier - WRLogonNTF.dll (file missing)
O23 - Service: Automatic LiveUpdate Scheduler - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe
O23 - Service: Symantec Password Validation (ccPwdSvc) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccPwdSvc.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe
O23 - Service: ewido security suite control - ewido networks - C:\Program Files\ewido anti-malware\ewidoctrl.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iPodService - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
O23 - Service: Norton AntiVirus Auto-Protect Service (navapsvc) - Symantec Corporation - C:\Program Files\Norton AntiVirus\navapsvc.exe
O23 - Service: Norton AntiVirus Firewall Monitor Service (NPFMntor) - Symantec Corporation - C:\Program Files\Norton AntiVirus\IWP\NPFMntor.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: SAVScan - Symantec Corporation - C:\Program Files\Norton AntiVirus\SAVScan.exe
O23 - Service: ScriptBlocking Service (SBService) - Symantec Corporation - C:\PROGRA~1\COMMON~1\SYMANT~1\SCRIPT~1\SBServ.exe
O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\SNDSrvc.exe
O23 - Service: Symantec SPBBCSvc (SPBBCSvc) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCSvc.exe
O23 - Service: StarWind iSCSI Service (StarWindService) - Rocket Division Software - C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe
O23 - Service: Symantec Core LC - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe


---------------------------------------------------------

Edited by arturd2, 03 June 2006 - 07:07 AM.


#4 arturd2

arturd2
  • Topic Starter

  • Members
  • 5 posts
  • OFFLINE
  •  
  • Local time:09:16 AM

Posted 03 June 2006 - 07:08 AM

---------------------------------------------------------
ewido anti-malware - Scan report
---------------------------------------------------------

+ Created on: 12:26:56 AM, 6/4/2006
+ Report-Checksum: 16F5CABF

+ Scan result:

:mozilla.21:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.Atdmt : Cleaned with backup
:mozilla.33:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned with backup
:mozilla.34:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned with backup
:mozilla.36:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned with backup
:mozilla.37:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned with backup
:mozilla.38:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned with backup
:mozilla.39:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned with backup
:mozilla.40:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned with backup
:mozilla.41:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned with backup
:mozilla.42:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned with backup
:mozilla.43:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned with backup
:mozilla.44:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned with backup
:mozilla.45:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned with backup
:mozilla.52:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.Falkag : Cleaned with backup
:mozilla.53:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.Falkag : Cleaned with backup
:mozilla.54:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.Falkag : Cleaned with backup
:mozilla.55:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.Falkag : Cleaned with backup
:mozilla.62:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.Tribalfusion : Cleaned with backup
:mozilla.63:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.Tribalfusion : Cleaned with backup
:mozilla.71:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.Pointroll : Cleaned with backup
:mozilla.72:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.Pointroll : Cleaned with backup
:mozilla.73:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.Com : Cleaned with backup
:mozilla.74:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.Com : Cleaned with backup
:mozilla.75:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.Com : Cleaned with backup
:mozilla.92:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.Pointroll : Cleaned with backup
:mozilla.93:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.Pointroll : Cleaned with backup
:mozilla.94:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.Doubleclick : Cleaned with backup
:mozilla.125:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.2o7 : Cleaned with backup
:mozilla.126:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.2o7 : Cleaned with backup
:mozilla.127:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.2o7 : Cleaned with backup
:mozilla.128:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.2o7 : Cleaned with backup
:mozilla.129:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.2o7 : Cleaned with backup
:mozilla.130:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.2o7 : Cleaned with backup
:mozilla.131:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.2o7 : Cleaned with backup
:mozilla.132:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.2o7 : Cleaned with backup
:mozilla.133:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.2o7 : Cleaned with backup
:mozilla.134:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.2o7 : Cleaned with backup
:mozilla.135:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.2o7 : Cleaned with backup
:mozilla.136:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.2o7 : Cleaned with backup
:mozilla.137:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.2o7 : Cleaned with backup
:mozilla.138:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.2o7 : Cleaned with backup
:mozilla.139:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.2o7 : Cleaned with backup
:mozilla.140:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.2o7 : Cleaned with backup
:mozilla.141:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.2o7 : Cleaned with backup
:mozilla.142:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.2o7 : Cleaned with backup
:mozilla.143:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.2o7 : Cleaned with backup
:mozilla.144:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.2o7 : Cleaned with backup
:mozilla.145:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.2o7 : Cleaned with backup
:mozilla.146:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.2o7 : Cleaned with backup
:mozilla.147:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.2o7 : Cleaned with backup
:mozilla.148:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.2o7 : Cleaned with backup
:mozilla.149:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.2o7 : Cleaned with backup
:mozilla.150:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.2o7 : Cleaned with backup
:mozilla.151:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.2o7 : Cleaned with backup
:mozilla.152:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.2o7 : Cleaned with backup
:mozilla.153:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.2o7 : Cleaned with backup
:mozilla.154:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.2o7 : Cleaned with backup
:mozilla.155:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.2o7 : Cleaned with backup
:mozilla.156:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.2o7 : Cleaned with backup
:mozilla.157:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.2o7 : Cleaned with backup
:mozilla.158:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.2o7 : Cleaned with backup
:mozilla.159:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.2o7 : Cleaned with backup
:mozilla.160:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.2o7 : Cleaned with backup
:mozilla.161:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.2o7 : Cleaned with backup
:mozilla.167:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.Advertising : Cleaned with backup
:mozilla.168:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.Advertising : Cleaned with backup
:mozilla.169:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.Questionmarket : Cleaned with backup
:mozilla.170:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.Questionmarket : Cleaned with backup
:mozilla.171:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.Questionmarket : Cleaned with backup
:mozilla.172:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.Zedo : Cleaned with backup
:mozilla.173:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.Zedo : Cleaned with backup
:mozilla.174:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.Zedo : Cleaned with backup
:mozilla.192:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.2o7 : Cleaned with backup
:mozilla.193:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.2o7 : Cleaned with backup
:mozilla.194:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.2o7 : Cleaned with backup
:mozilla.195:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.2o7 : Cleaned with backup
:mozilla.196:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.2o7 : Cleaned with backup
:mozilla.197:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.2o7 : Cleaned with backup
:mozilla.198:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.2o7 : Cleaned with backup
:mozilla.199:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.2o7 : Cleaned with backup
:mozilla.200:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.2o7 : Cleaned with backup
:mozilla.201:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.2o7 : Cleaned with backup
:mozilla.232:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.Adbrite : Cleaned with backup
:mozilla.233:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.Clickhype : Cleaned with backup
:mozilla.234:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.Clickhype : Cleaned with backup
:mozilla.320:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.Serving-sys : Cleaned with backup
:mozilla.321:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.Burstnet : Cleaned with backup
:mozilla.322:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.Burstnet : Cleaned with backup
:mozilla.329:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.Clickbank : Cleaned with backup
:mozilla.341:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.Sexcounter : Cleaned with backup
:mozilla.342:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.Sexcounter : Cleaned with backup
:mozilla.343:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.Sexcounter : Cleaned with backup
:mozilla.344:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.Sexcounter : Cleaned with backup
:mozilla.345:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.Sexcounter : Cleaned with backup
:mozilla.346:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.Sexcounter : Cleaned with backup
:mozilla.347:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.Sexcounter : Cleaned with backup
:mozilla.348:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.Sexcounter : Cleaned with backup
:mozilla.349:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.Sexcounter : Cleaned with backup
:mozilla.350:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.Sexcounter : Cleaned with backup
:mozilla.351:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.Sexcounter : Cleaned with backup
:mozilla.352:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.Sexcounter : Cleaned with backup
:mozilla.353:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.Sexcounter : Cleaned with backup
:mozilla.354:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.Sexcounter : Cleaned with backup
:mozilla.355:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.Sexcounter : Cleaned with backup
:mozilla.356:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.Sexcounter : Cleaned with backup
:mozilla.357:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.Sexcounter : Cleaned with backup
:mozilla.358:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.Sexcounter : Cleaned with backup
:mozilla.359:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.Sexcounter : Cleaned with backup
:mozilla.360:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.Sexcounter : Cleaned with backup
:mozilla.361:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.Sexcounter : Cleaned with backup
:mozilla.362:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.Sexcounter : Cleaned with backup
:mozilla.363:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.Sexcounter : Cleaned with backup
:mozilla.364:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.Sexcounter : Cleaned with backup
:mozilla.365:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.Sexcounter : Cleaned with backup
:mozilla.366:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.Sexcounter : Cleaned with backup
:mozilla.367:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.Sexcounter : Cleaned with backup
:mozilla.368:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.Sexcounter : Cleaned with backup
:mozilla.369:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.Sexcounter : Cleaned with backup
:mozilla.370:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.Sexcounter : Cleaned with backup
:mozilla.371:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.Clickzs : Cleaned with backup
:mozilla.372:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.Clickzs : Cleaned with backup
:mozilla.373:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.Clickzs : Cleaned with backup
:mozilla.374:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.Clickzs : Cleaned with backup
:mozilla.375:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.Clickzs : Cleaned with backup
:mozilla.376:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.Clickzs : Cleaned with backup
:mozilla.377:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.Clickzs : Cleaned with backup
:mozilla.378:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.Clickzs : Cleaned with backup
:mozilla.379:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.Clickzs : Cleaned with backup
:mozilla.380:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.Clickzs : Cleaned with backup
:mozilla.406:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.Ru4 : Cleaned with backup
:mozilla.407:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.Ru4 : Cleaned with backup
:mozilla.408:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.Ru4 : Cleaned with backup
:mozilla.409:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.Ru4 : Cleaned with backup
:mozilla.410:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.Ru4 : Cleaned with backup
:mozilla.430:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.Findwhat : Cleaned with backup
:mozilla.465:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.Hotlog : Cleaned with backup
:mozilla.467:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.Hypertracker : Cleaned with backup
:mozilla.532:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.2o7 : Cleaned with backup
:mozilla.550:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.2o7 : Cleaned with backup
:mozilla.570:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.Overture : Cleaned with backup
:mozilla.571:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.Overture : Cleaned with backup
:mozilla.593:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.2o7 : Cleaned with backup
:mozilla.603:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.Overture : Cleaned with backup
:mozilla.616:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.Qksrv : Cleaned with backup
:mozilla.617:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.Qksrv : Cleaned with backup
:mozilla.632:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.Revenue : Cleaned with backup
:mozilla.634:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.2o7 : Cleaned with backup
:mozilla.648:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.Serving-sys : Cleaned with backup
:mozilla.649:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.Serving-sys : Cleaned with backup
:mozilla.650:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.Serving-sys : Cleaned with backup
:mozilla.651:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.Serving-sys : Cleaned with backup
:mozilla.652:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.Serving-sys : Cleaned with backup
:mozilla.653:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.Serving-sys : Cleaned with backup
:mozilla.669:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.Spylog : Cleaned with backup
:mozilla.671:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.Onestat : Cleaned with backup
:mozilla.672:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.Onestat : Cleaned with backup
:mozilla.673:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned with backup
:mozilla.674:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned with backup
:mozilla.675:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned with backup
:mozilla.676:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned with backup
:mozilla.677:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned with backup
:mozilla.678:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned with backup
:mozilla.679:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned with backup
:mozilla.680:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned with backup
:mozilla.681:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned with backup
:mozilla.682:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned with backup
:mozilla.683:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned with backup
:mozilla.684:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned with backup
:mozilla.685:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned with backup
:mozilla.686:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned with backup
:mozilla.687:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned with backup
:mozilla.688:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned with backup
:mozilla.689:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned with backup
:mozilla.690:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned with backup
:mozilla.691:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned with backup
:mozilla.692:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned with backup
:mozilla.693:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned with backup
:mozilla.694:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned with backup
:mozilla.695:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned with backup
:mozilla.696:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned with backup
:mozilla.697:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned with backup
:mozilla.698:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned with backup
:mozilla.699:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned with backup
:mozilla.700:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned with backup
:mozilla.701:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned with backup
:mozilla.702:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned with backup
:mozilla.703:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned with backup
:mozilla.704:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned with backup
:mozilla.705:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned with backup
:mozilla.706:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned with backup
:mozilla.707:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned with backup
:mozilla.708:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned with backup
:mozilla.709:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned with backup
:mozilla.710:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned with backup
:mozilla.711:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned with backup
:mozilla.712:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned with backup
:mozilla.713:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned with backup
:mozilla.720:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.Tacoda : Cleaned with backup
:mozilla.721:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.Tacoda : Cleaned with backup
:mozilla.722:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.Tacoda : Cleaned with backup
:mozilla.740:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.2o7 : Cleaned with backup
:mozilla.745:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.Trafficmp : Cleaned with backup
:mozilla.746:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.Trafficmp : Cleaned with backup
:mozilla.747:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.Trafficmp : Cleaned with backup
:mozilla.748:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.Trafficmp : Cleaned with backup
:mozilla.749:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.Trafficmp : Cleaned with backup
:mozilla.750:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.Trafficmp : Cleaned with backup
:mozilla.751:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.Trafficmp : Cleaned with backup
:mozilla.772:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.Clickzs : Cleaned with backup
:mozilla.773:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.Clickzs : Cleaned with backup
:mozilla.775:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.Web-stat : Cleaned with backup
:mozilla.776:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.Web-stat : Cleaned with backup
:mozilla.777:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.Web-stat : Cleaned with backup
:mozilla.814:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.Yadro : Cleaned with backup
:mozilla.815:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.Cqcounter : Cleaned with backup
:mozilla.858:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.Enhance : Cleaned with backup
:mozilla.859:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.Goclick : Cleaned with backup
:mozilla.860:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.Goclick : Cleaned with backup
:mozilla.892:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.Masterstats : Cleaned with backup
:mozilla.893:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.Sitestat : Cleaned with backup
:mozilla.894:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.Sitestat : Cleaned with backup
:mozilla.895:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.Sitestat : Cleaned with backup
:mozilla.902:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.Adrevolver : Cleaned with backup
:mozilla.916:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.Liveperson : Cleaned with backup
:mozilla.917:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.Liveperson : Cleaned with backup
:mozilla.918:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.Liveperson : Cleaned with backup
:mozilla.919:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.Liveperson : Cleaned with backup
:mozilla.920:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.Liveperson : Cleaned with backup
:mozilla.921:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.Liveperson : Cleaned with backup
:mozilla.922:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.Liveperson : Cleaned with backup
:mozilla.923:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.Liveperson : Cleaned with backup
:mozilla.924:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.Liveperson : Cleaned with backup
:mozilla.925:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.Onestat : Cleaned with backup
:mozilla.926:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.Onestat : Cleaned with backup
:mozilla.927:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.Onestat : Cleaned with backup
:mozilla.928:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.Onestat : Cleaned with backup
:mozilla.935:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.Realtracker : Cleaned with backup
:mozilla.950:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.Googleadservices : Cleaned with backup
:mozilla.951:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.Googleadservices : Cleaned with backup
:mozilla.952:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.Googleadservices : Cleaned with backup
:mozilla.953:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.Googleadservices : Cleaned with backup
:mozilla.954:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.Googleadservices : Cleaned with backup
:mozilla.955:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.Googleadservices : Cleaned with backup
:mozilla.956:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.Googleadservices : Cleaned with backup
:mozilla.957:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.Googleadservices : Cleaned with backup
:mozilla.958:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.Googleadservices : Cleaned with backup
:mozilla.959:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.Googleadservices : Cleaned with backup
:mozilla.960:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.Googleadservices : Cleaned with backup
:mozilla.961:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.Googleadservices : Cleaned with backup
:mozilla.962:C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt -> TrackingCookie.Googleadservices : Cleaned with backup
C:\Documents and Settings\Artur Iliagouev\Cookies\artur iliagouev@atdmt[2].txt -> TrackingCookie.Atdmt : Cleaned with backup
C:\Documents and Settings\Artur Iliagouev\Cookies\artur iliagouev@doubleclick[2].txt -> TrackingCookie.Doubleclick : Cleaned with backup
C:\Documents and Settings\Artur Iliagouev\Cookies\artur iliagouev@msnportal.112.2o7[1].txt -> TrackingCookie.2o7 : Cleaned with backup
C:\Documents and Settings\Artur Iliagouev\Cookies\artur iliagouev@serving-sys[2].txt -> TrackingCookie.Serving-sys : Cleaned with backup
C:\Program Files\NoAdware\NoAdwareBackup\5,15,2006_23,35,34.zip/artur iliagouev@adopt.specificclick[1].txt -> TrackingCookie.Specificclick : Cleaned with backup


::Report End

Thanks in advance,

arturd2

Edited by arturd2, 03 June 2006 - 09:33 AM.


#5 teacup61

teacup61

    Bleepin' Texan!


  • Malware Response Team
  • 17,075 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:Wills Point, Texas
  • Local time:05:16 PM

Posted 03 June 2006 - 03:57 PM

Hello again,

Well you certainly were busy....excellent job! NO, do not run smitfraudfix again. You'll lose your desktop if you do. No biggie, but it takes time to go in and reset it. :thumbsup:

Please run HijackThis! and click "Scan." Place checks next to the following entries, if present:

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,SearchURL = prosearching.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,SearchURL = prosearching.com
R3 - Default URLSearchHook is missing
O2 - BHO: Nothing - {6ab7158b-4bff-4160-ad7d-4d622df548cf} - C:\WINDOWS\system32\hp100.tmp (file missing)
O20 - AppInit_DLLs: C:\WINDOWS\system32\userinit.dll C:\WINDOWS\system32\rundll.dll
O20 - Winlogon Notify: WRNotifier - WRLogonNTF.dll (file missing)


Close all browser and other windows except for HijackThis!, and click "Fix Checked".

Also, delete the following files (if they exist):

C:\WINDOWS\system32\rundll.dll <-----Make sure of the EXACT spelling here

Reboot your computer

Delete Temp Files:
To clean out your temp files, click on Start and then run, and type %temp% and press the ok button.
This should open up the temp directory that your machine uses. Please delete all files that are found there.

Delete Temporary Internet Files:
Now I want you to open up Internet Explorer, and click on the Tools menu and then Internet Options. At the General tab, which should be the first tab you are currently on, click on the Delete Files button and put a checkmark in Delete offline content. Then press the OK button. This may take quite a while, so do not be alarmed with how long it takes. When it is done, your Temporary Internet Files will now be deleted.

Navigate to the Prefetch folder and empty everything in it. Not the folder itself!

Empty your Recycle Bin

Perform an onlinescan with panda: (please use this scanner instead of any other scanner!)
Panda Online http://www.pandasoftware.com/products/activescan.htm
- Once you are on the Panda site click the Scan your PC button
- A new window will open...click the Check Now button
- Enter your Country
- Enter your State/Province
- Enter your e-mail address and click send
- Select either Home User or Company
- Click the big Scan Now button
- If it wants to install an ActiveX component allow it
- It will start downloading the files it requires for the scan (Note: It may take a couple of minutes)
- When download is complete, click on Local Disks to start the scan
- When the scan completes, if anything malicious is detected, click the See Report button, then Save Report and save it to a convenient location.

Post the contents of the Panda scan report in your next reply together with a fresh HijackThis log. How is your computer running?

Thanks,
tea
Please make a donation so I can keep helping people just like you.
Every little bit helps! :)
You can even use your credit card! Thank you!

Posted Image


Error reading poptart in Drive A: Delete kids y/n?

#6 arturd2

arturd2
  • Topic Starter

  • Members
  • 5 posts
  • OFFLINE
  •  
  • Local time:09:16 AM

Posted 04 June 2006 - 05:02 AM

Hi tea,

Thanks very much for your help, the computer seems to be running quite well.

I have performed all the steps instructed by you.


Logfile of HijackThis v1.99.1
Scan saved at 7:58:21 PM, on 6/4/2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Common Files\Symantec Shared\ccApp.exe
C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\WINDOWS\system32\RUNDLL32.EXE
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Razer\Copperhead\razerhid.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\DAEMON Tools\daemon.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe
C:\Program Files\ewido anti-malware\ewidoctrl.exe
C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\Program Files\Norton AntiVirus\navapsvc.exe
C:\Program Files\Norton AntiVirus\IWP\NPFMntor.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\Program Files\Common Files\Symantec Shared\SNDSrvc.exe
C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCSvc.exe
C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe
C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe
C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe
C:\Program Files\Razer\Copperhead\razertra.exe
C:\Program Files\Razer\Copperhead\razerofa.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\MSN Messenger\msnmsgr.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\HijackThis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.netspace.net.au/
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O3 - Toolbar: Norton AntiVirus - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - C:\Program Files\Norton AntiVirus\NavShExt.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Common Files\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [Symantec NetDriver Monitor] C:\PROGRA~1\SYMNET~1\SNDMon.exe /Consumer
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [Copperhead] C:\Program Files\Razer\Copperhead\razerhid.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [DAEMON Tools] "C:\Program Files\DAEMON Tools\daemon.exe" -lang 1033
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O8 - Extra context menu item: &Google Search - res://c:\program files\google\GoogleToolbar1.dll/cmsearch.html
O8 - Extra context menu item: &Translate English Word - res://c:\program files\google\GoogleToolbar1.dll/cmwordtrans.html
O8 - Extra context menu item: Backward Links - res://c:\program files\google\GoogleToolbar1.dll/cmbacklinks.html
O8 - Extra context menu item: Cached Snapshot of Page - res://c:\program files\google\GoogleToolbar1.dll/cmcache.html
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: Similar Pages - res://c:\program files\google\GoogleToolbar1.dll/cmsimilar.html
O8 - Extra context menu item: Translate Page into English - res://c:\program files\google\GoogleToolbar1.dll/cmtrans.html
O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab31267.cab
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupdate/...b?1128586965203
O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) - http://acs.pandasoftware.com/activescan/as5free/asinst.cab
O16 - DPF: {B49C4597-8721-4789-9250-315DFBD9F525} (IWinAmpActiveX Class) - http://cdn.digitalcity.com/radio/ampx/ampx2.6.1.11_en_dl.cab
O16 - DPF: {DF780F87-FF2B-4DF8-92D0-73DB16A1543A} - http://arcade.icq.com/carlo/zuma/popcaploader_v5.cab
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O23 - Service: Automatic LiveUpdate Scheduler - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe
O23 - Service: Symantec Password Validation (ccPwdSvc) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccPwdSvc.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe
O23 - Service: ewido security suite control - ewido networks - C:\Program Files\ewido anti-malware\ewidoctrl.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iPodService - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
O23 - Service: Norton AntiVirus Auto-Protect Service (navapsvc) - Symantec Corporation - C:\Program Files\Norton AntiVirus\navapsvc.exe
O23 - Service: Norton AntiVirus Firewall Monitor Service (NPFMntor) - Symantec Corporation - C:\Program Files\Norton AntiVirus\IWP\NPFMntor.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: SAVScan - Symantec Corporation - C:\Program Files\Norton AntiVirus\SAVScan.exe
O23 - Service: ScriptBlocking Service (SBService) - Symantec Corporation - C:\PROGRA~1\COMMON~1\SYMANT~1\SCRIPT~1\SBServ.exe
O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\SNDSrvc.exe
O23 - Service: Symantec SPBBCSvc (SPBBCSvc) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCSvc.exe
O23 - Service: StarWind iSCSI Service (StarWindService) - Rocket Division Software - C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe
O23 - Service: Symantec Core LC - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe


Panda Online:

Incident Status Location

Spyware:Cookie/2o7 Not disinfected C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt[.2o7.net/]
Spyware:Cookie/Atwola Not disinfected C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt[.atwola.com/]
Spyware:Cookie/Doubleclick Not disinfected C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt[.doubleclick.net/]
Spyware:Cookie/YieldManager Not disinfected C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt[ad.yieldmanager.com/]
Spyware:Cookie/Maxserving Not disinfected C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt[.maxserving.com/]
Spyware:Cookie/YieldManager Not disinfected C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt[ad.yieldmanager.com/]
Spyware:Cookie/Advertising Not disinfected C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt[.advertising.com/]
Spyware:Cookie/Advertising Not disinfected C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt[servedby.advertising.com/]
Spyware:Cookie/PointRoll Not disinfected C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt[.ads.pointroll.com/]
Spyware:Cookie/Atlas DMT Not disinfected C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt[.atdmt.com/]
Spyware:Cookie/Serving-sys Not disinfected C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt[.serving-sys.com/]
Spyware:Cookie/QuestionMarket Not disinfected C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt[.questionmarket.com/]
Spyware:Cookie/Serving-sys Not disinfected C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt[.serving-sys.com/]
Spyware:Cookie/Yadro Not disinfected C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt[.yadro.ru/]
Spyware:Cookie/FastClick Not disinfected C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt[.fastclick.net/]
Spyware:Cookie/Mediaplex Not disinfected C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt[.mediaplex.com/]
Spyware:Cookie/bravenetA Not disinfected C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt[.bravenet.com/]
Spyware:Cookie/Zedo Not disinfected C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt[.zedo.com/]
Spyware:Cookie/Zedo Not disinfected C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt[.c5.zedo.com/]
Spyware:Cookie/Casalemedia Not disinfected C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt[.casalemedia.com/]
Spyware:Cookie/Overture Not disinfected C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt[.perf.overture.com/]
Spyware:Cookie/Hbmediapro Not disinfected C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt[.adopt.hbmediapro.com/]
Spyware:Cookie/Com.com Not disinfected C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt[.com.com/]
Spyware:Cookie/Com.com Not disinfected C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt[.ad.sensismediasmart.com.au/]
Spyware:Cookie/Apmebf Not disinfected C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt[.apmebf.com/]
Spyware:Cookie/AspinallsOnlineCasino Not disinfected C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt[.pacificpoker.com/]
Spyware:Cookie/RealMedia Not disinfected C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt[.realmedia.com/]
Spyware:Cookie/Toplist Not disinfected C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt[.toplist.cz/]
Spyware:Cookie/Humanclick Not disinfected C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt[hc2.humanclick.com/]
Spyware:Cookie/Humanclick Not disinfected C:\Documents and Settings\Artur Iliagouev\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\cookies.txt[hc2.humanclick.com/hc/18583751]
Spyware:Cookie/Atlas DMT Not disinfected C:\Documents and Settings\Artur Iliagouev\Cookies\artur iliagouev@atdmt[2].txt
Spyware:Cookie/Atwola Not disinfected C:\Documents and Settings\Artur Iliagouev\Cookies\artur iliagouev@atwola[1].txt
Spyware:Cookie/Doubleclick Not disinfected C:\Documents and Settings\Artur Iliagouev\Cookies\artur iliagouev@doubleclick[1].txt
Spyware:Cookie/Serving-sys Not disinfected C:\Documents and Settings\Artur Iliagouev\Cookies\artur iliagouev@serving-sys[2].txt
Potentially unwanted tool:Application/Processor Not disinfected C:\Documents and Settings\Artur Iliagouev\Desktop\SmitfraudFix\Process.exe
Potentially unwanted tool:Application/Processor Not disinfected C:\Documents and Settings\Artur Iliagouev\Desktop\smitRem\Process.exe
Potentially unwanted tool:Application/Processor Not disinfected C:\Documents and Settings\Artur Iliagouev\Local Settings\Application Data\Mozilla\Firefox\Profiles\edy2f9g2.default\Cache\633285D9d01[SmitfraudFix/Process.exe]

Thanks,

arturd2

#7 teacup61

teacup61

    Bleepin' Texan!


  • Malware Response Team
  • 17,075 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:Wills Point, Texas
  • Local time:05:16 PM

Posted 04 June 2006 - 08:17 PM

Hello again,

Guess what? Panda showed only cookies, and your log looks clean. :thumbsup: I believe all is well here.

Below I have included a number of recommendations on how to protect your computer in order to prevent future malware infections. Please take these recommendations seriously! These few simple steps can stave off the vast majority of spyware problems.

Regularly go to http://windowsupdate.microsoft.com and download all the "critical updates" for Windows, including the latest version of Internet Explorer. This can patch many of the security holes through which attackers can gain access to your computer. You should also turn on the Windows automatic update feature.

It is very important to maintain your Firewall.
A tutorial on understanding and using firewalls may be found here.

In order to protect yourself against spyware, you should consider installing and running the following free programs:

SpywareBlaster
A tutorial on using SpywareBlaster to prevent spyware from ever installing on your computer may be found here.

SpywareGuard
A tutorial on using SpywareGuard for realtime protection against spyware and hijackers may be found here.

Ad-Aware SE
A tutorial on using Ad-Aware to remove spyware from your computer may be found here.

A tutorial on using Spybot to remove spyware from your computer may be found here. Please also remember to enable Spybot's "Immunize" and "TeaTimer" features.

IE/Spyad:
It places over 5000 malicious websites and domains in your IE's restricted zone.
IE/Spyad

Make sure to keep these programs up-to-date and to run them regularly, as this can prevent a great deal of spyware hassle.

Please make sure to run your antivirus software regularly, and to keep it up-to-date.

Take care!
tea
Please make a donation so I can keep helping people just like you.
Every little bit helps! :)
You can even use your credit card! Thank you!

Posted Image


Error reading poptart in Drive A: Delete kids y/n?

#8 arturd2

arturd2
  • Topic Starter

  • Members
  • 5 posts
  • OFFLINE
  •  
  • Local time:09:16 AM

Posted 05 June 2006 - 06:35 AM

Appreciate all your help tea, ill try to keep the computer clean from now on!

#9 teacup61

teacup61

    Bleepin' Texan!


  • Malware Response Team
  • 17,075 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:Wills Point, Texas
  • Local time:05:16 PM

Posted 05 June 2006 - 08:36 AM

You're most welcome! :thumbsup:
Please make a donation so I can keep helping people just like you.
Every little bit helps! :)
You can even use your credit card! Thank you!

Posted Image


Error reading poptart in Drive A: Delete kids y/n?

#10 teacup61

teacup61

    Bleepin' Texan!


  • Malware Response Team
  • 17,075 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:Wills Point, Texas
  • Local time:05:16 PM

Posted 12 June 2006 - 05:43 PM

Since this issue appears resolved ... this Topic is closed.

If you need this topic reopened, please request this by sending the moderating team a PM with the address of the thread. This applies only to the original topic starter.

Everyone else please begin a New Topic.
Please make a donation so I can keep helping people just like you.
Every little bit helps! :)
You can even use your credit card! Thank you!

Posted Image


Error reading poptart in Drive A: Delete kids y/n?




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users