Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Malware I Cant Get Rid Of!


  • This topic is locked This topic is locked
21 replies to this topic

#1 trevorveasey

trevorveasey

  • Members
  • 83 posts
  • OFFLINE
  •  
  • Location:AVON PARK, FL
  • Local time:11:12 AM

Posted 29 July 2006 - 09:32 PM

Logfile of HijackThis v1.99.1
Scan saved at 10:27:17 PM, on 7/29/2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Sygate\SPF\smc.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
c:\program files\common files\logitech\lvmvfm\LVPrcSrv.exe
C:\PROGRA~1\COMMON~1\AOL\ACS\acsd.exe
C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe
C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\wanmpsvc.exe
C:\WINDOWS\system32\fxssvc.exe
C:\Program Files\IntCodec\isamonitor.exe
C:\Program Files\IntCodec\pmsngr.exe
C:\WINDOWS\System32\hkcmd.exe
C:\Program Files\Logitech\iTouch\iTouch.exe
C:\Program Files\QuickTime\qttask.exe
C:\PROGRA~1\Grisoft\AVGFRE~1\avgemc.exe
C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
C:\Program Files\IntCodec\pmmon.exe
C:\WINDOWS\system32\dla\tfswctrl.exe
C:\WINDOWS\system32\LVCOMSX.EXE
C:\Program Files\Logitech\Video\CameraAssistant.exe
C:\WINDOWS\system32\ElkCtrl.exe
C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
C:\Program Files\Dell Support\DSAgnt.exe
C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
C:\Program Files\IntCodec\isamini.exe
C:\Program Files\Digital Line Detect\DLG.exe
C:\Program Files\Logitech\MouseWare\system\em_exec.exe
C:\hijackthis\HijackThis.exe
C:\WINDOWS\SYSTEM32\notepad.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.dell4me.com/myway
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.comcast.net/
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.yahoo.com
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost
R3 - Default URLSearchHook is missing
F2 - REG:system.ini: UserInit=C:\WINDOWS\system32\Userinit.exe
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {5753791b-f607-48ca-814e-91c14d081f9e} - C:\Program Files\IntCodec\isaddon.dll
O2 - BHO: DriveLetterAccess - {5CA3D70E-1895-11CF-8E15-001234567890} - C:\WINDOWS\system32\dla\tfswshx.dll
O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\System32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\System32\hkcmd.exe
O4 - HKLM\..\Run: [UserFaultCheck] %systemroot%\system32\dumprep 0 -u
O4 - HKLM\..\Run: [zBrowser Launcher] C:\Program Files\Logitech\iTouch\iTouch.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [AVG7_EMC] C:\PROGRA~1\Grisoft\AVGFRE~1\avgemc.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
O4 - HKLM\..\Run: [dla] C:\WINDOWS\system32\dla\tfswctrl.exe
O4 - HKLM\..\Run: [SmcService] C:\PROGRA~1\Sygate\SPF\smc.exe -startgui
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [Logitech Utility] Logi_MwX.Exe
O4 - HKLM\..\Run: [LVCOMSX] C:\WINDOWS\system32\LVCOMSX.EXE
O4 - HKLM\..\Run: [LogitechCameraAssistant] C:\Program Files\Logitech\Video\CameraAssistant.exe
O4 - HKLM\..\Run: [LogitechVideo[inspector]] C:\Program Files\Logitech\Video\InstallHelper.exe /inspect
O4 - HKLM\..\Run: [LogitechCameraService(E)] C:\WINDOWS\system32\ElkCtrl.exe /automation
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKCU\..\Run: [DellSupport] "C:\Program Files\Dell Support\DSAgnt.exe" /startup
O4 - HKCU\..\Run: [LDM] C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
O4 - Global Startup: Digital Line Detect.lnk = ?
O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe
O8 - Extra context menu item: &eBay Search - res://C:\Program Files\eBay\eBay Toolbar2\eBayTb.dll/RCSearch.html
O8 - Extra context menu item: Download all with Free Download Manager - file://C:\Program Files\Free Download Manager\dlall.htm
O8 - Extra context menu item: Download selected with Free Download Manager - file://C:\Program Files\Free Download Manager\dlselected.htm
O8 - Extra context menu item: Download web site with Free Download Manager - file://C:\Program Files\Free Download Manager\dlpage.htm
O8 - Extra context menu item: Download with Free Download Manager - file://C:\Program Files\Free Download Manager\dllink.htm
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\npjpi150_06.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\npjpi150_06.dll
O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\System32\Shdocvw.dll
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O10 - Broken Internet access because of LSP provider 'xfire_lsp_10650.dll' missing
O16 - DPF: {01113300-3E00-11D2-8470-0060089874ED} (Support.com Configuration Class) - http://www.comcastsupport.com/sdccommon/download/tgctlcm.cab
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=36467&clcid=0x409
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://v5.windowsupdate.microsoft.com/v5co...b?1107681204906
O16 - DPF: {AB86CE53-AC9F-449F-9399-D8ABCA09EC09} (Get_ActiveX Control) - https://h17000.www1.hp.com/ewfrf-JAVA/Secur...loadManager.ocx
O16 - DPF: {F58E1CEF-A068-4C15-BA5E-587CAF3EE8C6} (MSN Chat Control 4.5) - http://chat.msn.com/bin/msnchat45.cab
O18 - Protocol: bw+0 - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw+0s - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0 - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0s - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00 - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00s - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10 - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10s - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20 - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20s - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30 - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30s - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40 - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40s - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50 - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50s - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60 - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60s - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70 - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70s - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80 - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80s - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90 - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90s - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0 - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0s - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0 - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0s - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0 - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0s - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0 - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0s - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0 - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0s - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0 - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0s - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O18 - Protocol: bwg0 - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwg0s - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0 - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0s - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0 - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0s - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0 - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0s - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0 - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0s - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0 - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0s - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0 - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0s - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0 - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0s - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0 - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0s - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0 - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0s - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0 - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0s - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0 - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0s - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0 - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0s - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0 - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0s - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0 - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0s - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0 - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0s - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0 - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0s - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0 - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0s - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0 - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0s - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0 - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0s - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: ms-help - {314111C7-A502-11D2-BBCA-00C04F8EC294} - C:\Program Files\Common Files\Microsoft Shared\Help\hxds.dll
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)
O18 - Protocol: offline-8876480 - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O20 - Winlogon Notify: igfxcui - C:\WINDOWS\SYSTEM32\igfxsrvc.dll
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O20 - Winlogon Notify: WRNotifier - WRLogonNTF.dll (file missing)
O23 - Service: AOL Connectivity Service (AOL ACS) - America Online, Inc. - C:\PROGRA~1\COMMON~1\AOL\ACS\acsd.exe
O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe
O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Logitech Process Monitor (LVPrcSrv) - Logitech Inc. - c:\program files\common files\logitech\lvmvfm\LVPrcSrv.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Sygate Personal Firewall (SmcService) - Sygate Technologies, Inc. - C:\Program Files\Sygate\SPF\smc.exe
O23 - Service: WAN Miniport (ATW) Service (WANMiniportService) - America Online, Inc. - C:\WINDOWS\wanmpsvc.exe
Trevor

BC AdBot (Login to Remove)

 


#2 Navigator

Navigator

    Gas Passer


  • Members
  • 72 posts
  • OFFLINE
  •  
  • Local time:10:12 AM

Posted 29 July 2006 - 10:09 PM

Hello trevorveasey...welcome to BC HJT forum!

You have a very new/recent variant of Smitfraud....but I think this should remove it:

You may want to print out these instructions as they will be unavailable to you in safe mode later

Download smitRem.exe ©noahdfear, and save the file to your desktop.
Double click on the file to extract it to it's own folder on the desktop.

Place a shortcut to Panda ActiveScan on your desktop (in Internet Explorer, right click on Panda ActiveScan link select "Copy Shortcut" then right click on your desktop and select "Paste Shortcut" or in FireFox right-click the link and select "Save Link As" and save it to your desktop).

Download ewido anti-spyware from HERE and save that file to your desktop.
This is a 30 day trial of the program
  • Once you have downloaded ewido anti-spyware, locate the icon on the desktop and double-click it to launch the set up program.
  • Once the setup is complete you will need run ewido and update the definition files.
  • On the main screen select the icon "Update" then select the "Update now" link.
    • Next select the "Start Update" button, the update will start and a progress bar will show the updates being installed.
  • Once the update has completed select the "Scanner" icon at the top of the screen, then select the "Settings" tab.
  • Once in the Settings screen click on "Recommended actions" and then select "Quarantine".
  • Under "Reports"
    • Select "Automatically generate report after every scan"
    • Un-Select "Only if threats were found"
Close ewido anti-spyware, Do Not run a scan just yet, we will shortly.

Next, please reboot your computer in SafeMode by doing the following:
  • Restart your computer
  • After hearing your computer beep once during startup, but before the Windows icon appears, press F8.
  • Instead of Windows loading as normal, a menu should appear
  • Select the first option, to run Windows in Safe Mode.
Open the smitRem folder, then double click the RunThis.bat file to start the tool. Follow the prompts on screen.
Wait for the tool to complete and disk cleanup to finish.

The tool will create a log named smitfiles.txt in the root of your drive, eg; Local Disk C: or partition where your operating system is installed. Please post that log along with all others requested in your next reply.

Run Ewido:
  • IMPORTANT: Do not open any other windows or programs while ewido is scanning, it may interfere with the scanning proccess:
  • Lauch ewido-anti-spyware by double-clicking the icon on your desktop.
  • Select the "Scanner" icon at the top and then the "Scan" tab then click on "Complete System Scan".
  • ewido will now begin the scanning process, be patient this may take a little time.
    Once the scan is complete do the following:
  • If you have any infections you will prompted, then select "Apply all actions"
  • Next select the "Reports" icon at the top.
  • Select the "Save report as" button in the lower left hand of the screen and save it to a text file on your system (make sure to remember where you saved that file, this is important).
  • Close ewido.
Next go to Control Panel click Display > Desktop > Customize Desktop > Web > Uncheck "Security Info" if present.

Reboot back into Windows and click the Panda ActiveScan shortcut.
  • Once you are on the Panda site click the Scan your PC button.
  • A new window will open...click the Check Now button.
    • Enter your Country
    • Enter your State/Province
    • Enter your e-mail address and click send
    • Select either Home User or Company
    • Click the big Scan Now button
  • If it wants to install an ActiveX component allow it
  • It will start downloading the files it requires for the scan (Note: It may take a couple of minutes)
  • When the download is complete, click on My Computer to start the scan
  • When the scan completes, if anything malicious is detected, click the See Report button, then Save Report and save it to a convenient location.
Post the contents of the Panda scan report, along with a new HijackThis Log, the contents of smitfiles.txt and the Ewido Log by using Add Reply.
Posted Image

#3 trevorveasey

trevorveasey
  • Topic Starter

  • Members
  • 83 posts
  • OFFLINE
  •  
  • Location:AVON PARK, FL
  • Local time:11:12 AM

Posted 30 July 2006 - 06:11 PM

Ok got Ewido log and another hijackthis log. Internet explorer will not let me go to any pages unless I get rid of the adware and Panda does not support Firefox. Thank you for having me here and helping. You are the best!!!!

---------------------------------------------------------
ewido anti-spyware - Scan Report
---------------------------------------------------------

+ Created at: 6:47:05 PM 7/30/2006

+ Scan result:



HKLM\SOFTWARE\Classes\CLSID\{5753791b-f607-48ca-814e-91c14d081f9e} -> Adware.Generic : No action taken.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5753791b-f607-48ca-814e-91c14d081f9e} -> Adware.Generic : No action taken.
HKU\S-1-5-21-777356629-3345111597-2529335102-1007\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{5753791B-F607-48CA-814E-91C14D081F9E} -> Adware.Generic : No action taken.
:mozilla.30:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\7d4rmd50.default\cookies.txt -> TrackingCookie.247realmedia : No action taken.
:mozilla.31:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\7d4rmd50.default\cookies.txt -> TrackingCookie.247realmedia : No action taken.
:mozilla.10:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\acee0oe2.Default User\cookies.txt -> TrackingCookie.2o7 : No action taken.
:mozilla.11:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\acee0oe2.Default User\cookies.txt -> TrackingCookie.2o7 : No action taken.
:mozilla.12:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\acee0oe2.Default User\cookies.txt -> TrackingCookie.2o7 : No action taken.
:mozilla.13:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\acee0oe2.Default User\cookies.txt -> TrackingCookie.2o7 : No action taken.
:mozilla.14:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\acee0oe2.Default User\cookies.txt -> TrackingCookie.2o7 : No action taken.
:mozilla.15:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\acee0oe2.Default User\cookies.txt -> TrackingCookie.2o7 : No action taken.
:mozilla.16:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\acee0oe2.Default User\cookies.txt -> TrackingCookie.2o7 : No action taken.
:mozilla.17:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\acee0oe2.Default User\cookies.txt -> TrackingCookie.2o7 : No action taken.
:mozilla.183:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\7d4rmd50.default\cookies.txt -> TrackingCookie.2o7 : No action taken.
:mozilla.18:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\acee0oe2.Default User\cookies.txt -> TrackingCookie.2o7 : No action taken.
:mozilla.19:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\acee0oe2.Default User\cookies.txt -> TrackingCookie.2o7 : No action taken.
:mozilla.20:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\acee0oe2.Default User\cookies.txt -> TrackingCookie.2o7 : No action taken.
:mozilla.21:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\acee0oe2.Default User\cookies.txt -> TrackingCookie.2o7 : No action taken.
:mozilla.22:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\acee0oe2.Default User\cookies.txt -> TrackingCookie.2o7 : No action taken.
:mozilla.237:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\7d4rmd50.default\cookies.txt -> TrackingCookie.2o7 : No action taken.
:mozilla.23:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\acee0oe2.Default User\cookies.txt -> TrackingCookie.2o7 : No action taken.
:mozilla.32:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\7d4rmd50.default\cookies.txt -> TrackingCookie.2o7 : No action taken.
:mozilla.33:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\7d4rmd50.default\cookies.txt -> TrackingCookie.2o7 : No action taken.
:mozilla.34:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\7d4rmd50.default\cookies.txt -> TrackingCookie.2o7 : No action taken.
:mozilla.35:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\7d4rmd50.default\cookies.txt -> TrackingCookie.2o7 : No action taken.
:mozilla.36:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\7d4rmd50.default\cookies.txt -> TrackingCookie.2o7 : No action taken.
:mozilla.37:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\7d4rmd50.default\cookies.txt -> TrackingCookie.2o7 : No action taken.
:mozilla.38:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\7d4rmd50.default\cookies.txt -> TrackingCookie.2o7 : No action taken.
:mozilla.39:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\7d4rmd50.default\cookies.txt -> TrackingCookie.2o7 : No action taken.
:mozilla.40:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\7d4rmd50.default\cookies.txt -> TrackingCookie.2o7 : No action taken.
:mozilla.41:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\7d4rmd50.default\cookies.txt -> TrackingCookie.2o7 : No action taken.
:mozilla.42:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\7d4rmd50.default\cookies.txt -> TrackingCookie.2o7 : No action taken.
:mozilla.43:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\7d4rmd50.default\cookies.txt -> TrackingCookie.2o7 : No action taken.
:mozilla.44:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\7d4rmd50.default\cookies.txt -> TrackingCookie.2o7 : No action taken.
:mozilla.45:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\7d4rmd50.default\cookies.txt -> TrackingCookie.2o7 : No action taken.
:mozilla.46:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\7d4rmd50.default\cookies.txt -> TrackingCookie.2o7 : No action taken.
:mozilla.47:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\7d4rmd50.default\cookies.txt -> TrackingCookie.2o7 : No action taken.
:mozilla.48:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\7d4rmd50.default\cookies.txt -> TrackingCookie.2o7 : No action taken.
:mozilla.49:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\7d4rmd50.default\cookies.txt -> TrackingCookie.2o7 : No action taken.
:mozilla.50:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\7d4rmd50.default\cookies.txt -> TrackingCookie.2o7 : No action taken.
:mozilla.51:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\7d4rmd50.default\cookies.txt -> TrackingCookie.2o7 : No action taken.
:mozilla.52:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\7d4rmd50.default\cookies.txt -> TrackingCookie.2o7 : No action taken.
:mozilla.53:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\7d4rmd50.default\cookies.txt -> TrackingCookie.2o7 : No action taken.
:mozilla.54:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\7d4rmd50.default\cookies.txt -> TrackingCookie.2o7 : No action taken.
:mozilla.55:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\7d4rmd50.default\cookies.txt -> TrackingCookie.2o7 : No action taken.
:mozilla.56:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\7d4rmd50.default\cookies.txt -> TrackingCookie.2o7 : No action taken.
:mozilla.57:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\7d4rmd50.default\cookies.txt -> TrackingCookie.2o7 : No action taken.
:mozilla.58:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\7d4rmd50.default\cookies.txt -> TrackingCookie.2o7 : No action taken.
:mozilla.81:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\acee0oe2.Default User\cookies.txt -> TrackingCookie.2o7 : No action taken.
:mozilla.8:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\acee0oe2.Default User\cookies.txt -> TrackingCookie.2o7 : No action taken.
:mozilla.9:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\acee0oe2.Default User\cookies.txt -> TrackingCookie.2o7 : No action taken.
:mozilla.98:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\7d4rmd50.default\cookies.txt -> TrackingCookie.Addynamix : No action taken.
:mozilla.344:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\acee0oe2.Default User\cookies.txt -> TrackingCookie.Adrevolver : No action taken.
:mozilla.345:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\acee0oe2.Default User\cookies.txt -> TrackingCookie.Adrevolver : No action taken.
:mozilla.346:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\acee0oe2.Default User\cookies.txt -> TrackingCookie.Adrevolver : No action taken.
:mozilla.347:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\acee0oe2.Default User\cookies.txt -> TrackingCookie.Adrevolver : No action taken.
:mozilla.35:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\acee0oe2.Default User\cookies.txt -> TrackingCookie.Adrevolver : No action taken.
:mozilla.97:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\7d4rmd50.default\cookies.txt -> TrackingCookie.Adrevolver : No action taken.
:mozilla.308:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\acee0oe2.Default User\cookies.txt -> TrackingCookie.Adserver : No action taken.
:mozilla.309:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\acee0oe2.Default User\cookies.txt -> TrackingCookie.Adserver : No action taken.
:mozilla.310:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\acee0oe2.Default User\cookies.txt -> TrackingCookie.Adserver : No action taken.
:mozilla.103:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\7d4rmd50.default\cookies.txt -> TrackingCookie.Adtech : No action taken.
:mozilla.104:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\7d4rmd50.default\cookies.txt -> TrackingCookie.Adtech : No action taken.
:mozilla.29:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\7d4rmd50.default\cookies.txt -> TrackingCookie.Atdmt : No action taken.
:mozilla.328:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\acee0oe2.Default User\cookies.txt -> TrackingCookie.Bridgetrack : No action taken.
:mozilla.329:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\acee0oe2.Default User\cookies.txt -> TrackingCookie.Bridgetrack : No action taken.
:mozilla.330:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\acee0oe2.Default User\cookies.txt -> TrackingCookie.Bridgetrack : No action taken.
:mozilla.512:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\7d4rmd50.default\cookies.txt -> TrackingCookie.Bridgetrack : No action taken.
:mozilla.513:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\7d4rmd50.default\cookies.txt -> TrackingCookie.Bridgetrack : No action taken.
:mozilla.514:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\7d4rmd50.default\cookies.txt -> TrackingCookie.Bridgetrack : No action taken.
:mozilla.387:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\acee0oe2.Default User\cookies.txt -> TrackingCookie.Burstbeacon : No action taken.
:mozilla.188:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\7d4rmd50.default\cookies.txt -> TrackingCookie.Burstnet : No action taken.
:mozilla.61:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\acee0oe2.Default User\cookies.txt -> TrackingCookie.Burstnet : No action taken.
:mozilla.66:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\acee0oe2.Default User\cookies.txt -> TrackingCookie.Centrport : No action taken.
:mozilla.67:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\acee0oe2.Default User\cookies.txt -> TrackingCookie.Centrport : No action taken.
:mozilla.231:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\7d4rmd50.default\cookies.txt -> TrackingCookie.Clickbank : No action taken.
:mozilla.232:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\7d4rmd50.default\cookies.txt -> TrackingCookie.Clickbank : No action taken.
:mozilla.79:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\acee0oe2.Default User\cookies.txt -> TrackingCookie.Clickbank : No action taken.
:mozilla.233:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\7d4rmd50.default\cookies.txt -> TrackingCookie.Clickhype : No action taken.
:mozilla.150:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\acee0oe2.Default User\cookies.txt -> TrackingCookie.Clickzs : No action taken.
:mozilla.151:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\acee0oe2.Default User\cookies.txt -> TrackingCookie.Clickzs : No action taken.
:mozilla.152:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\acee0oe2.Default User\cookies.txt -> TrackingCookie.Clickzs : No action taken.
:mozilla.153:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\acee0oe2.Default User\cookies.txt -> TrackingCookie.Clickzs : No action taken.
:mozilla.154:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\acee0oe2.Default User\cookies.txt -> TrackingCookie.Clickzs : No action taken.
:mozilla.155:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\acee0oe2.Default User\cookies.txt -> TrackingCookie.Clickzs : No action taken.
:mozilla.156:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\acee0oe2.Default User\cookies.txt -> TrackingCookie.Clickzs : No action taken.
:mozilla.157:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\acee0oe2.Default User\cookies.txt -> TrackingCookie.Clickzs : No action taken.
:mozilla.158:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\acee0oe2.Default User\cookies.txt -> TrackingCookie.Clickzs : No action taken.
:mozilla.159:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\acee0oe2.Default User\cookies.txt -> TrackingCookie.Clickzs : No action taken.
:mozilla.160:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\acee0oe2.Default User\cookies.txt -> TrackingCookie.Clickzs : No action taken.
:mozilla.161:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\acee0oe2.Default User\cookies.txt -> TrackingCookie.Clickzs : No action taken.
:mozilla.281:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\acee0oe2.Default User\cookies.txt -> TrackingCookie.Clickzs : No action taken.
:mozilla.282:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\acee0oe2.Default User\cookies.txt -> TrackingCookie.Clickzs : No action taken.
:mozilla.283:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\acee0oe2.Default User\cookies.txt -> TrackingCookie.Clickzs : No action taken.
:mozilla.284:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\acee0oe2.Default User\cookies.txt -> TrackingCookie.Clickzs : No action taken.
:mozilla.312:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\7d4rmd50.default\cookies.txt -> TrackingCookie.Clickzs : No action taken.
:mozilla.313:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\7d4rmd50.default\cookies.txt -> TrackingCookie.Clickzs : No action taken.
:mozilla.314:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\7d4rmd50.default\cookies.txt -> TrackingCookie.Clickzs : No action taken.
:mozilla.315:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\7d4rmd50.default\cookies.txt -> TrackingCookie.Clickzs : No action taken.
:mozilla.316:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\7d4rmd50.default\cookies.txt -> TrackingCookie.Clickzs : No action taken.
:mozilla.317:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\7d4rmd50.default\cookies.txt -> TrackingCookie.Clickzs : No action taken.
:mozilla.318:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\7d4rmd50.default\cookies.txt -> TrackingCookie.Clickzs : No action taken.
:mozilla.319:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\7d4rmd50.default\cookies.txt -> TrackingCookie.Clickzs : No action taken.
:mozilla.320:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\7d4rmd50.default\cookies.txt -> TrackingCookie.Clickzs : No action taken.
:mozilla.321:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\7d4rmd50.default\cookies.txt -> TrackingCookie.Clickzs : No action taken.
:mozilla.322:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\7d4rmd50.default\cookies.txt -> TrackingCookie.Clickzs : No action taken.
:mozilla.323:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\7d4rmd50.default\cookies.txt -> TrackingCookie.Clickzs : No action taken.
:mozilla.324:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\7d4rmd50.default\cookies.txt -> TrackingCookie.Clickzs : No action taken.
:mozilla.325:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\7d4rmd50.default\cookies.txt -> TrackingCookie.Clickzs : No action taken.
:mozilla.326:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\7d4rmd50.default\cookies.txt -> TrackingCookie.Clickzs : No action taken.
:mozilla.327:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\7d4rmd50.default\cookies.txt -> TrackingCookie.Clickzs : No action taken.
:mozilla.478:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\7d4rmd50.default\cookies.txt -> TrackingCookie.Clickzs : No action taken.
:mozilla.479:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\7d4rmd50.default\cookies.txt -> TrackingCookie.Clickzs : No action taken.
:mozilla.480:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\7d4rmd50.default\cookies.txt -> TrackingCookie.Clickzs : No action taken.
:mozilla.481:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\7d4rmd50.default\cookies.txt -> TrackingCookie.Clickzs : No action taken.
:mozilla.243:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\7d4rmd50.default\cookies.txt -> TrackingCookie.Com : No action taken.
:mozilla.84:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\acee0oe2.Default User\cookies.txt -> TrackingCookie.Com : No action taken.
:mozilla.85:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\acee0oe2.Default User\cookies.txt -> TrackingCookie.Com : No action taken.
:mozilla.350:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\7d4rmd50.default\cookies.txt -> TrackingCookie.Esomniture : No action taken.
:mozilla.351:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\7d4rmd50.default\cookies.txt -> TrackingCookie.Esomniture : No action taken.
:mozilla.352:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\7d4rmd50.default\cookies.txt -> TrackingCookie.Esomniture : No action taken.
:mozilla.353:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\7d4rmd50.default\cookies.txt -> TrackingCookie.Esomniture : No action taken.
:mozilla.354:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\7d4rmd50.default\cookies.txt -> TrackingCookie.Esomniture : No action taken.
:mozilla.94:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\7d4rmd50.default\cookies.txt -> TrackingCookie.Euroclick : No action taken.
:mozilla.95:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\7d4rmd50.default\cookies.txt -> TrackingCookie.Euroclick : No action taken.
C:\Documents and Settings\Trevor Veasey.D3H36G41\Cookies\trevor veasey@adopt.euroclick[1].txt -> TrackingCookie.Euroclick : No action taken.
:mozilla.132:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\7d4rmd50.default\cookies.txt -> TrackingCookie.Falkag : No action taken.
:mozilla.133:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\7d4rmd50.default\cookies.txt -> TrackingCookie.Falkag : No action taken.
:mozilla.134:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\7d4rmd50.default\cookies.txt -> TrackingCookie.Falkag : No action taken.
:mozilla.135:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\7d4rmd50.default\cookies.txt -> TrackingCookie.Falkag : No action taken.
:mozilla.144:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\7d4rmd50.default\cookies.txt -> TrackingCookie.Falkag : No action taken.
:mozilla.145:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\7d4rmd50.default\cookies.txt -> TrackingCookie.Falkag : No action taken.
:mozilla.146:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\7d4rmd50.default\cookies.txt -> TrackingCookie.Falkag : No action taken.
:mozilla.147:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\7d4rmd50.default\cookies.txt -> TrackingCookie.Falkag : No action taken.
:mozilla.148:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\7d4rmd50.default\cookies.txt -> TrackingCookie.Falkag : No action taken.
:mozilla.149:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\7d4rmd50.default\cookies.txt -> TrackingCookie.Falkag : No action taken.
:mozilla.352:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\acee0oe2.Default User\cookies.txt -> TrackingCookie.Falkag : No action taken.
:mozilla.49:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\acee0oe2.Default User\cookies.txt -> TrackingCookie.Falkag : No action taken.
:mozilla.50:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\acee0oe2.Default User\cookies.txt -> TrackingCookie.Falkag : No action taken.
:mozilla.376:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\7d4rmd50.default\cookies.txt -> TrackingCookie.Findwhat : No action taken.
:mozilla.416:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\acee0oe2.Default User\cookies.txt -> TrackingCookie.Googleadservices : No action taken.
:mozilla.567:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\7d4rmd50.default\cookies.txt -> TrackingCookie.Googleadservices : No action taken.
:mozilla.353:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\acee0oe2.Default User\cookies.txt -> TrackingCookie.Liveperson : No action taken.
:mozilla.354:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\acee0oe2.Default User\cookies.txt -> TrackingCookie.Liveperson : No action taken.
:mozilla.341:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\acee0oe2.Default User\cookies.txt -> TrackingCookie.Masterstats : No action taken.
:mozilla.526:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\7d4rmd50.default\cookies.txt -> TrackingCookie.Masterstats : No action taken.
:mozilla.359:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\acee0oe2.Default User\cookies.txt -> TrackingCookie.Onestat : No action taken.
:mozilla.360:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\acee0oe2.Default User\cookies.txt -> TrackingCookie.Onestat : No action taken.
:mozilla.534:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\7d4rmd50.default\cookies.txt -> TrackingCookie.Onestat : No action taken.
:mozilla.535:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\7d4rmd50.default\cookies.txt -> TrackingCookie.Onestat : No action taken.
:mozilla.210:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\acee0oe2.Default User\cookies.txt -> TrackingCookie.Overture : No action taken.
:mozilla.211:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\acee0oe2.Default User\cookies.txt -> TrackingCookie.Overture : No action taken.
:mozilla.215:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\acee0oe2.Default User\cookies.txt -> TrackingCookie.Overture : No action taken.
:mozilla.332:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\acee0oe2.Default User\cookies.txt -> TrackingCookie.Overture : No action taken.
:mozilla.442:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\7d4rmd50.default\cookies.txt -> TrackingCookie.Overture : No action taken.
:mozilla.443:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\7d4rmd50.default\cookies.txt -> TrackingCookie.Overture : No action taken.
:mozilla.445:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\7d4rmd50.default\cookies.txt -> TrackingCookie.Overture : No action taken.
C:\Documents and Settings\Trevor Veasey.D3H36G41\Cookies\trevor veasey@data2.perf.overture[1].txt -> TrackingCookie.Overture : No action taken.
:mozilla.214:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\acee0oe2.Default User\cookies.txt -> TrackingCookie.Paycounter : No action taken.
:mozilla.444:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\7d4rmd50.default\cookies.txt -> TrackingCookie.Paycounter : No action taken.
:mozilla.100:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\7d4rmd50.default\cookies.txt -> TrackingCookie.Pointroll : No action taken.
:mozilla.101:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\7d4rmd50.default\cookies.txt -> TrackingCookie.Pointroll : No action taken.
:mozilla.102:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\7d4rmd50.default\cookies.txt -> TrackingCookie.Pointroll : No action taken.
:mozilla.36:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\acee0oe2.Default User\cookies.txt -> TrackingCookie.Pointroll : No action taken.
:mozilla.37:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\acee0oe2.Default User\cookies.txt -> TrackingCookie.Pointroll : No action taken.
:mozilla.38:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\acee0oe2.Default User\cookies.txt -> TrackingCookie.Pointroll : No action taken.
:mozilla.39:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\acee0oe2.Default User\cookies.txt -> TrackingCookie.Pointroll : No action taken.
:mozilla.40:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\acee0oe2.Default User\cookies.txt -> TrackingCookie.Pointroll : No action taken.
:mozilla.99:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\7d4rmd50.default\cookies.txt -> TrackingCookie.Pointroll : No action taken.
:mozilla.224:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\acee0oe2.Default User\cookies.txt -> TrackingCookie.Qksrv : No action taken.
:mozilla.225:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\acee0oe2.Default User\cookies.txt -> TrackingCookie.Qksrv : No action taken.
:mozilla.226:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\acee0oe2.Default User\cookies.txt -> TrackingCookie.Questionmarket : No action taken.
:mozilla.450:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\7d4rmd50.default\cookies.txt -> TrackingCookie.Questionmarket : No action taken.
:mozilla.451:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\7d4rmd50.default\cookies.txt -> TrackingCookie.Questionmarket : No action taken.
:mozilla.452:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\7d4rmd50.default\cookies.txt -> TrackingCookie.Questionmarket : No action taken.
:mozilla.367:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\acee0oe2.Default User\cookies.txt -> TrackingCookie.Realtracker : No action taken.
:mozilla.368:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\acee0oe2.Default User\cookies.txt -> TrackingCookie.Realtracker : No action taken.
:mozilla.229:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\acee0oe2.Default User\cookies.txt -> TrackingCookie.Revenue : No action taken.
:mozilla.166:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\acee0oe2.Default User\cookies.txt -> TrackingCookie.Ru4 : No action taken.
:mozilla.167:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\acee0oe2.Default User\cookies.txt -> TrackingCookie.Ru4 : No action taken.
:mozilla.168:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\acee0oe2.Default User\cookies.txt -> TrackingCookie.Ru4 : No action taken.
:mozilla.366:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\7d4rmd50.default\cookies.txt -> TrackingCookie.Ru4 : No action taken.
:mozilla.367:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\7d4rmd50.default\cookies.txt -> TrackingCookie.Ru4 : No action taken.
:mozilla.368:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\7d4rmd50.default\cookies.txt -> TrackingCookie.Ru4 : No action taken.
:mozilla.369:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\7d4rmd50.default\cookies.txt -> TrackingCookie.Ru4 : No action taken.
:mozilla.370:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\7d4rmd50.default\cookies.txt -> TrackingCookie.Ru4 : No action taken.
:mozilla.371:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\7d4rmd50.default\cookies.txt -> TrackingCookie.Ru4 : No action taken.
:mozilla.372:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\7d4rmd50.default\cookies.txt -> TrackingCookie.Ru4 : No action taken.
:mozilla.185:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\7d4rmd50.default\cookies.txt -> TrackingCookie.Serving-sys : No action taken.
:mozilla.230:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\acee0oe2.Default User\cookies.txt -> TrackingCookie.Serving-sys : No action taken.
:mozilla.231:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\acee0oe2.Default User\cookies.txt -> TrackingCookie.Serving-sys : No action taken.
:mozilla.232:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\acee0oe2.Default User\cookies.txt -> TrackingCookie.Serving-sys : No action taken.
:mozilla.233:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\acee0oe2.Default User\cookies.txt -> TrackingCookie.Serving-sys : No action taken.
:mozilla.234:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\acee0oe2.Default User\cookies.txt -> TrackingCookie.Serving-sys : No action taken.
:mozilla.60:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\acee0oe2.Default User\cookies.txt -> TrackingCookie.Serving-sys : No action taken.
:mozilla.100:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\acee0oe2.Default User\cookies.txt -> TrackingCookie.Sexcounter : No action taken.
:mozilla.101:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\acee0oe2.Default User\cookies.txt -> TrackingCookie.Sexcounter : No action taken.
:mozilla.102:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\acee0oe2.Default User\cookies.txt -> TrackingCookie.Sexcounter : No action taken.
:mozilla.103:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\acee0oe2.Default User\cookies.txt -> TrackingCookie.Sexcounter : No action taken.
:mozilla.104:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\acee0oe2.Default User\cookies.txt -> TrackingCookie.Sexcounter : No action taken.
:mozilla.105:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\acee0oe2.Default User\cookies.txt -> TrackingCookie.Sexcounter : No action taken.
:mozilla.106:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\acee0oe2.Default User\cookies.txt -> TrackingCookie.Sexcounter : No action taken.
:mozilla.107:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\acee0oe2.Default User\cookies.txt -> TrackingCookie.Sexcounter : No action taken.
:mozilla.108:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\acee0oe2.Default User\cookies.txt -> TrackingCookie.Sexcounter : No action taken.
:mozilla.109:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\acee0oe2.Default User\cookies.txt -> TrackingCookie.Sexcounter : No action taken.
:mozilla.110:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\acee0oe2.Default User\cookies.txt -> TrackingCookie.Sexcounter : No action taken.
:mozilla.111:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\acee0oe2.Default User\cookies.txt -> TrackingCookie.Sexcounter : No action taken.
:mozilla.112:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\acee0oe2.Default User\cookies.txt -> TrackingCookie.Sexcounter : No action taken.
:mozilla.113:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\acee0oe2.Default User\cookies.txt -> TrackingCookie.Sexcounter : No action taken.
:mozilla.114:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\acee0oe2.Default User\cookies.txt -> TrackingCookie.Sexcounter : No action taken.
:mozilla.115:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\acee0oe2.Default User\cookies.txt -> TrackingCookie.Sexcounter : No action taken.
:mozilla.116:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\acee0oe2.Default User\cookies.txt -> TrackingCookie.Sexcounter : No action taken.
:mozilla.117:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\acee0oe2.Default User\cookies.txt -> TrackingCookie.Sexcounter : No action taken.
:mozilla.118:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\acee0oe2.Default User\cookies.txt -> TrackingCookie.Sexcounter : No action taken.
:mozilla.119:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\acee0oe2.Default User\cookies.txt -> TrackingCookie.Sexcounter : No action taken.
:mozilla.120:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\acee0oe2.Default User\cookies.txt -> TrackingCookie.Sexcounter : No action taken.
:mozilla.121:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\acee0oe2.Default User\cookies.txt -> TrackingCookie.Sexcounter : No action taken.
:mozilla.122:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\acee0oe2.Default User\cookies.txt -> TrackingCookie.Sexcounter : No action taken.
:mozilla.123:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\acee0oe2.Default User\cookies.txt -> TrackingCookie.Sexcounter : No action taken.
:mozilla.124:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\acee0oe2.Default User\cookies.txt -> TrackingCookie.Sexcounter : No action taken.
:mozilla.125:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\acee0oe2.Default User\cookies.txt -> TrackingCookie.Sexcounter : No action taken.
:mozilla.126:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\acee0oe2.Default User\cookies.txt -> TrackingCookie.Sexcounter : No action taken.
:mozilla.127:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\acee0oe2.Default User\cookies.txt -> TrackingCookie.Sexcounter : No action taken.
:mozilla.128:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\acee0oe2.Default User\cookies.txt -> TrackingCookie.Sexcounter : No action taken.
:mozilla.129:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\acee0oe2.Default User\cookies.txt -> TrackingCookie.Sexcounter : No action taken.
:mozilla.130:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\acee0oe2.Default User\cookies.txt -> TrackingCookie.Sexcounter : No action taken.
:mozilla.131:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\acee0oe2.Default User\cookies.txt -> TrackingCookie.Sexcounter : No action taken.
:mozilla.132:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\acee0oe2.Default User\cookies.txt -> TrackingCookie.Sexcounter : No action taken.
:mozilla.133:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\acee0oe2.Default User\cookies.txt -> TrackingCookie.Sexcounter : No action taken.
:mozilla.134:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\acee0oe2.Default User\cookies.txt -> TrackingCookie.Sexcounter : No action taken.
:mozilla.135:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\acee0oe2.Default User\cookies.txt -> TrackingCookie.Sexcounter : No action taken.
:mozilla.136:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\acee0oe2.Default User\cookies.txt -> TrackingCookie.Sexcounter : No action taken.
:mozilla.137:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\acee0oe2.Default User\cookies.txt -> TrackingCookie.Sexcounter : No action taken.
:mozilla.138:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\acee0oe2.Default User\cookies.txt -> TrackingCookie.Sexcounter : No action taken.
:mozilla.139:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\acee0oe2.Default User\cookies.txt -> TrackingCookie.Sexcounter : No action taken.
:mozilla.140:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\acee0oe2.Default User\cookies.txt -> TrackingCookie.Sexcounter : No action taken.
:mozilla.141:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\acee0oe2.Default User\cookies.txt -> TrackingCookie.Sexcounter : No action taken.
:mozilla.142:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\acee0oe2.Default User\cookies.txt -> TrackingCookie.Sexcounter : No action taken.
:mozilla.143:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\acee0oe2.Default User\cookies.txt -> TrackingCookie.Sexcounter : No action taken.
:mozilla.144:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\acee0oe2.Default User\cookies.txt -> TrackingCookie.Sexcounter : No action taken.
:mozilla.145:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\acee0oe2.Default User\cookies.txt -> TrackingCookie.Sexcounter : No action taken.
:mozilla.146:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\acee0oe2.Default User\cookies.txt -> TrackingCookie.Sexcounter : No action taken.
:mozilla.147:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\acee0oe2.Default User\cookies.txt -> TrackingCookie.Sexcounter : No action taken.
:mozilla.148:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\acee0oe2.Default User\cookies.txt -> TrackingCookie.Sexcounter : No action taken.
:mozilla.149:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\acee0oe2.Default User\cookies.txt -> TrackingCookie.Sexcounter : No action taken.
:mozilla.256:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\7d4rmd50.default\cookies.txt -> TrackingCookie.Sexcounter : No action taken.
:mozilla.257:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\7d4rmd50.default\cookies.txt -> TrackingCookie.Sexcounter : No action taken.
:mozilla.258:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\7d4rmd50.default\cookies.txt -> TrackingCookie.Sexcounter : No action taken.
:mozilla.259:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\7d4rmd50.default\cookies.txt -> TrackingCookie.Sexcounter : No action taken.
:mozilla.260:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\7d4rmd50.default\cookies.txt -> TrackingCookie.Sexcounter : No action taken.
:mozilla.261:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\7d4rmd50.default\cookies.txt -> TrackingCookie.Sexcounter : No action taken.
:mozilla.262:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\7d4rmd50.default\cookies.txt -> TrackingCookie.Sexcounter : No action taken.
:mozilla.263:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\7d4rmd50.default\cookies.txt -> TrackingCookie.Sexcounter : No action taken.
:mozilla.264:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\7d4rmd50.default\cookies.txt -> TrackingCookie.Sexcounter : No action taken.
:mozilla.265:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\7d4rmd50.default\cookies.txt -> TrackingCookie.Sexcounter : No action taken.
:mozilla.266:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\7d4rmd50.default\cookies.txt -> TrackingCookie.Sexcounter : No action taken.
:mozilla.267:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\7d4rmd50.default\cookies.txt -> TrackingCookie.Sexcounter : No action taken.
:mozilla.268:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\7d4rmd50.default\cookies.txt -> TrackingCookie.Sexcounter : No action taken.
:mozilla.269:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\7d4rmd50.default\cookies.txt -> TrackingCookie.Sexcounter : No action taken.
:mozilla.270:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\7d4rmd50.default\cookies.txt -> TrackingCookie.Sexcounter : No action taken.
:mozilla.271:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\7d4rmd50.default\cookies.txt -> TrackingCookie.Sexcounter : No action taken.
:mozilla.272:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\7d4rmd50.default\cookies.txt -> TrackingCookie.Sexcounter : No action taken.
:mozilla.273:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\7d4rmd50.default\cookies.txt -> TrackingCookie.Sexcounter : No action taken.
:mozilla.274:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\7d4rmd50.default\cookies.txt -> TrackingCookie.Sexcounter : No action taken.
:mozilla.275:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\7d4rmd50.default\cookies.txt -> TrackingCookie.Sexcounter : No action taken.
:mozilla.276:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\7d4rmd50.default\cookies.txt -> TrackingCookie.Sexcounter : No action taken.
:mozilla.277:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\7d4rmd50.default\cookies.txt -> TrackingCookie.Sexcounter : No action taken.
:mozilla.278:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\7d4rmd50.default\cookies.txt -> TrackingCookie.Sexcounter : No action taken.
:mozilla.279:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\7d4rmd50.default\cookies.txt -> TrackingCookie.Sexcounter : No action taken.
:mozilla.280:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\7d4rmd50.default\cookies.txt -> TrackingCookie.Sexcounter : No action taken.
:mozilla.281:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\7d4rmd50.default\cookies.txt -> TrackingCookie.Sexcounter : No action taken.
:mozilla.282:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\7d4rmd50.default\cookies.txt -> TrackingCookie.Sexcounter : No action taken.
:mozilla.283:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\7d4rmd50.default\cookies.txt -> TrackingCookie.Sexcounter : No action taken.
:mozilla.284:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\7d4rmd50.default\cookies.txt -> TrackingCookie.Sexcounter : No action taken.
:mozilla.285:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\7d4rmd50.default\cookies.txt -> TrackingCookie.Sexcounter : No action taken.
:mozilla.286:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\7d4rmd50.default\cookies.txt -> TrackingCookie.Sexcounter : No action taken.
:mozilla.287:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\7d4rmd50.default\cookies.txt -> TrackingCookie.Sexcounter : No action taken.
:mozilla.288:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\7d4rmd50.default\cookies.txt -> TrackingCookie.Sexcounter : No action taken.
:mozilla.289:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\7d4rmd50.default\cookies.txt -> TrackingCookie.Sexcounter : No action taken.
:mozilla.290:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\7d4rmd50.default\cookies.txt -> TrackingCookie.Sexcounter : No action taken.
:mozilla.291:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\7d4rmd50.default\cookies.txt -> TrackingCookie.Sexcounter : No action taken.
:mozilla.292:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\7d4rmd50.default\cookies.txt -> TrackingCookie.Sexcounter : No action taken.
:mozilla.293:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\7d4rmd50.default\cookies.txt -> TrackingCookie.Sexcounter : No action taken.
:mozilla.294:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\7d4rmd50.default\cookies.txt -> TrackingCookie.Sexcounter : No action taken.
:mozilla.295:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\7d4rmd50.default\cookies.txt -> TrackingCookie.Sexcounter : No action taken.
:mozi
Trevor

#4 Navigator

Navigator

    Gas Passer


  • Members
  • 72 posts
  • OFFLINE
  •  
  • Local time:10:12 AM

Posted 30 July 2006 - 07:08 PM

The Ewido log got cut off, and I think that you didn't set it up to quarantine found items as No Action Taken is seen throughout the log.

I need the full Ewido log, the smitrem.txt file and a new HJT log to look at before we can proceed.

Are you still having IE problems after using the smitrem tool?

Edited by Navigator, 30 July 2006 - 07:09 PM.

Posted Image

#5 trevorveasey

trevorveasey
  • Topic Starter

  • Members
  • 83 posts
  • OFFLINE
  •  
  • Location:AVON PARK, FL
  • Local time:11:12 AM

Posted 30 July 2006 - 08:40 PM

First, how do you run smitrem? I clicked on the "runthis" file and it says extracted to desktop and i open the file and has all weird files that do nothing. Is there a detailed instruction for it?
Trevor

#6 Navigator

Navigator

    Gas Passer


  • Members
  • 72 posts
  • OFFLINE
  •  
  • Local time:10:12 AM

Posted 30 July 2006 - 09:00 PM

First, how do you run smitrem? I clicked on the "runthis" file and it says extracted to desktop and i open the file and has all weird files that do nothing. Is there a detailed instruction for it?



OK.....let's start from the top.

You are going to have to go back to my original instructions and repeat all of the steps except for the Panda part since you need IE to run it.

Did you save smitrem.exe to your desktop?

Once you have saved smitrem.exe to your desktop, double-clicking the smitrem.exe icon on your desktop will extract all of the necessary files to a newly created smitrem folder on your desktop.

Double click the smitrem folder on your desktop to open it. Look for the file inside the opened folder called runthis.bat. Double-click runthis.bat to run the program....do not 'open' the runthis.bat file, it is a batch file which when double-clicked will run the batch file (a program), in this case is designed to remove the infection from your computer.

Since you did not run smitrem go back and repeat my first set of instructions in the order listed, which is important...just leave out the Panda parts if you cannot use IE. Make sure you set up Ewido to quarantine the items found in the Ewido set up part of the fix.

Let me know if you still have problems.
Posted Image

#7 trevorveasey

trevorveasey
  • Topic Starter

  • Members
  • 83 posts
  • OFFLINE
  •  
  • Location:AVON PARK, FL
  • Local time:11:12 AM

Posted 31 July 2006 - 12:59 AM

OK think I have it right now, lol.

IE still doesn't let me do anything. Also, still getting damn ads.....

Here is the Hijackthis log:
Logfile of HijackThis v1.99.1
Scan saved at 1:50:51 AM, on 7/31/2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Sygate\SPF\smc.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
c:\program files\common files\logitech\lvmvfm\LVPrcSrv.exe
C:\PROGRA~1\COMMON~1\AOL\ACS\acsd.exe
C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe
C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe
C:\Program Files\ewido anti-spyware 4.0\guard.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\wanmpsvc.exe
C:\WINDOWS\system32\fxssvc.exe
C:\Program Files\IntCodec\pmsngr.exe
C:\Program Files\IntCodec\isamonitor.exe
C:\Program Files\IntCodec\pmmon.exe
C:\WINDOWS\System32\hkcmd.exe
C:\Program Files\IntCodec\isamini.exe
C:\Program Files\Logitech\iTouch\iTouch.exe
C:\Program Files\QuickTime\qttask.exe
C:\PROGRA~1\Grisoft\AVGFRE~1\avgemc.exe
C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
C:\WINDOWS\system32\dla\tfswctrl.exe
C:\WINDOWS\system32\LVCOMSX.EXE
C:\Program Files\Logitech\Video\CameraAssistant.exe
C:\Program Files\Logitech\MouseWare\system\em_exec.exe
C:\WINDOWS\system32\ElkCtrl.exe
C:\Program Files\ewido anti-spyware 4.0\ewido.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\WINDOWS\system32\RUNDLL32.EXE
C:\WINDOWS\System32\DSentry.exe
C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe
C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
C:\Program Files\Dell Support\DSAgnt.exe
C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
C:\Program Files\Plaxo\2.6.2.9\PlaxoHelper.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\Free Download Manager\fdm.exe
C:\Program Files\Digital Line Detect\DLG.exe
C:\hijackthis\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.dell4me.com/myway
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.yahoo.com
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost
R3 - Default URLSearchHook is missing
F2 - REG:system.ini: UserInit=C:\WINDOWS\system32\Userinit.exe
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {5753791b-f607-48ca-814e-91c14d081f9e} - C:\Program Files\IntCodec\isaddon.dll
O2 - BHO: DriveLetterAccess - {5CA3D70E-1895-11CF-8E15-001234567890} - C:\WINDOWS\system32\dla\tfswshx.dll
O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\System32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\System32\hkcmd.exe
O4 - HKLM\..\Run: [UserFaultCheck] %systemroot%\system32\dumprep 0 -u
O4 - HKLM\..\Run: [zBrowser Launcher] C:\Program Files\Logitech\iTouch\iTouch.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [AVG7_EMC] C:\PROGRA~1\Grisoft\AVGFRE~1\avgemc.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
O4 - HKLM\..\Run: [dla] C:\WINDOWS\system32\dla\tfswctrl.exe
O4 - HKLM\..\Run: [SmcService] C:\PROGRA~1\Sygate\SPF\smc.exe -startgui
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [Logitech Utility] Logi_MwX.Exe
O4 - HKLM\..\Run: [LVCOMSX] C:\WINDOWS\system32\LVCOMSX.EXE
O4 - HKLM\..\Run: [LogitechCameraAssistant] C:\Program Files\Logitech\Video\CameraAssistant.exe
O4 - HKLM\..\Run: [LogitechVideo[inspector]] C:\Program Files\Logitech\Video\InstallHelper.exe /inspect
O4 - HKLM\..\Run: [LogitechCameraService(E)] C:\WINDOWS\system32\ElkCtrl.exe /automation
O4 - HKLM\..\Run: [!ewido] "C:\Program Files\ewido anti-spyware 4.0\ewido.exe" /minimized
O4 - HKLM\..\Run: [UpdateManager] "C:\Program Files\Common Files\Sonic\Update Manager\sgtray.exe" /r
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [MMTray] "C:\Program Files\MUSICMATCH\MUSICMATCH Jukebox\mm_tray.exe"
O4 - HKLM\..\Run: [HostManager] C:\Program Files\Common Files\AOL\1139496703\ee\AOLSoftware.exe
O4 - HKLM\..\Run: [DVDSentry] C:\WINDOWS\System32\DSentry.exe
O4 - HKLM\..\Run: [dvd43] C:\Program Files\dvd43\dvd43_tray.exe
O4 - HKLM\..\Run: [BuildBU] c:\dell\bldbubg.exe
O4 - HKLM\..\Run: [AVG7_CC] C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe /STARTUP
O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKCU\..\Run: [DellSupport] "C:\Program Files\Dell Support\DSAgnt.exe" /startup
O4 - HKCU\..\Run: [LDM] C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
O4 - HKCU\..\Run: [Yahoo! Pager] C:\Program Files\Yahoo!\Messenger\ypager.exe -quiet
O4 - HKCU\..\Run: [Steam] C:\Program Files\Valve\Steam\\Steam.exe -silent
O4 - HKCU\..\Run: [PlaxoUpdate] C:\Program Files\Plaxo\2.6.2.9\PlaxoHelper.exe -a
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [MoneyAgent] "C:\Program Files\Microsoft Money\System\mnyexpr.exe"
O4 - HKCU\..\Run: [Free Download Manager] C:\Program Files\Free Download Manager\fdm.exe -autorun
O4 - HKCU\..\Run: [FolderShare] "C:\Program Files\FolderShare\FolderShare.exe" /background
O4 - HKCU\..\Run: [Desktop Weather 3] C:\PROGRA~1\THEWEA~1\The Weather Channel.exe
O4 - HKCU\..\Run: [Aim6] "C:\Program Files\Common Files\AOL\Launch\AOLLaunch.exe" /d locale=en-US ee://aol/imApp
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: Digital Line Detect.lnk = ?
O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe
O4 - Global Startup: M8Clips.lnk = C:\Program Files\ClipM8\ClipM8.exe
O8 - Extra context menu item: &eBay Search - res://C:\Program Files\eBay\eBay Toolbar2\eBayTb.dll/RCSearch.html
O8 - Extra context menu item: Download all with Free Download Manager - file://C:\Program Files\Free Download Manager\dlall.htm
O8 - Extra context menu item: Download selected with Free Download Manager - file://C:\Program Files\Free Download Manager\dlselected.htm
O8 - Extra context menu item: Download web site with Free Download Manager - file://C:\Program Files\Free Download Manager\dlpage.htm
O8 - Extra context menu item: Download with Free Download Manager - file://C:\Program Files\Free Download Manager\dllink.htm
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\npjpi150_06.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\npjpi150_06.dll
O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\System32\Shdocvw.dll
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O10 - Broken Internet access because of LSP provider 'xfire_lsp_10650.dll' missing
O16 - DPF: {01113300-3E00-11D2-8470-0060089874ED} (Support.com Configuration Class) - http://www.comcastsupport.com/sdccommon/download/tgctlcm.cab
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=36467&clcid=0x409
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://v5.windowsupdate.microsoft.com/v5co...b?1107681204906
O16 - DPF: {AB86CE53-AC9F-449F-9399-D8ABCA09EC09} (Get_ActiveX Control) - https://h17000.www1.hp.com/ewfrf-JAVA/Secur...loadManager.ocx
O16 - DPF: {F58E1CEF-A068-4C15-BA5E-587CAF3EE8C6} (MSN Chat Control 4.5) - http://chat.msn.com/bin/msnchat45.cab
O18 - Protocol: bw+0 - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw+0s - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0 - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0s - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00 - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00s - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10 - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10s - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20 - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20s - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30 - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30s - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40 - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40s - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50 - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50s - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60 - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60s - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70 - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70s - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80 - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80s - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90 - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90s - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0 - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0s - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0 - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0s - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0 - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0s - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0 - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0s - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0 - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0s - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0 - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0s - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O18 - Protocol: bwg0 - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwg0s - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0 - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0s - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0 - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0s - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0 - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0s - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0 - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0s - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0 - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0s - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0 - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0s - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0 - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0s - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0 - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0s - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0 - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0s - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0 - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0s - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0 - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0s - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0 - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0s - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0 - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0s - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0 - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0s - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0 - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0s - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0 - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0s - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0 - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0s - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0 - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0s - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0 - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0s - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: ms-help - {314111C7-A502-11D2-BBCA-00C04F8EC294} - C:\Program Files\Common Files\Microsoft Shared\Help\hxds.dll
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)
O18 - Protocol: offline-8876480 - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O20 - Winlogon Notify: igfxcui - C:\WINDOWS\SYSTEM32\igfxsrvc.dll
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O20 - Winlogon Notify: WRNotifier - WRLogonNTF.dll (file missing)
O23 - Service: AOL Connectivity Service (AOL ACS) - America Online, Inc. - C:\PROGRA~1\COMMON~1\AOL\ACS\acsd.exe
O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe
O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe
O23 - Service: ewido anti-spyware 4.0 guard - Anti-Malware Development a.s. - C:\Program Files\ewido anti-spyware 4.0\guard.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Logitech Process Monitor (LVPrcSrv) - Logitech Inc. - c:\program files\common files\logitech\lvmvfm\LVPrcSrv.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Sygate Personal Firewall (SmcService) - Sygate Technologies, Inc. - C:\Program Files\Sygate\SPF\smc.exe
O23 - Service: WAN Miniport (ATW) Service (WANMiniportService) - America Online, Inc. - C:\WINDOWS\wanmpsvc.exe

-----------------------------------------------------------------------------------------------

And ewido log:

---------------------------------------------------------
ewido anti-spyware - Scan Report
---------------------------------------------------------

+ Created at: 1:40:12 AM 7/31/2006

+ Scan result:



HKLM\SOFTWARE\Classes\CLSID\{5753791b-f607-48ca-814e-91c14d081f9e} -> Adware.Generic : Cleaned with backup (quarantined).
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5753791b-f607-48ca-814e-91c14d081f9e} -> Adware.Generic : Cleaned with backup (quarantined).
:mozilla.27:C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\7d4rmd50.default\cookies.txt -> TrackingCookie.Atdmt : Cleaned with backup (quarantined).


::Report end
Trevor

#8 Navigator

Navigator

    Gas Passer


  • Members
  • 72 posts
  • OFFLINE
  •  
  • Local time:10:12 AM

Posted 31 July 2006 - 07:04 AM

Trevor....

I also need the contents of C:\smitfiles.txt that the tool produced after you ran smitrem...this text file tells me what the tool found, what it fixed, what still needs to be done....

Post it here please...
Posted Image

#9 trevorveasey

trevorveasey
  • Topic Starter

  • Members
  • 83 posts
  • OFFLINE
  •  
  • Location:AVON PARK, FL
  • Local time:11:12 AM

Posted 31 July 2006 - 12:03 PM

Sorry, I had to search for it. It wasn't where I could find it, but here it is:


smitRem © log file
version 3.1

by noahdfear


Microsoft Windows XP [Version 5.1.2600]
"IE"="6.0000"
The current date is: Mon 07/31/2006
The current time is: 12:49:11.10

Running from
C:\Documents and Settings\Trevor Veasey.D3H36G41\Desktop\smitRem

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

Pre-run SharedTask Export

(GetSTS.exe) SharedTaskScheduler exporter by Lawrence Abrams (Grinler)
Copyright© 2006 BleepingComputer.com

Registry Pseudo-Format Mode (Not a valid reg file):

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SharedTaskScheduler]
"{438755C2-A8BA-11D1-B96B-00A0C90312E1}"="Browseui preloader"
"{8C7461EF-2B13-11d2-BE35-3078302C2030}"="Component Categories cache daemon"

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{438755C2-A8BA-11D1-B96B-00A0C90312E1}\InProcServer32]
@="%SystemRoot%\System32\browseui.dll"


[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{8C7461EF-2B13-11d2-BE35-3078302C2030}\InProcServer32]
@="%SystemRoot%\System32\browseui.dll"


~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

checking for ShudderLTD key

ShudderLTD key not present!

checking for PSGuard.com key


PSGuard.com key not present!


checking for WinHound.com key


WinHound.com key not present!


checking for drsmartload2 key


drsmartload2 key not present!

spyaxe uninstaller NOT present
Winhound uninstaller NOT present
SpywareStrike uninstaller NOT present
AlfaCleaner uninstaller NOT present
SpyFalcon uninstaller NOT present
SpywareQuake uninstaller NOT present
SpywareSheriff uninstaller NOT present
Trust Cleaner uninstaller NOT present
SpyHeal uninstaller NOT present

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

Existing Pre-run Files


~~~ Program Files ~~~

IntCodec


~~~ Shortcuts ~~~



~~~ Favorites ~~~



~~~ system32 folder ~~~



~~~ Icons in System32 ~~~



~~~ Windows directory ~~~



~~~ Drive root ~~~


~~~ Miscellaneous Files/folders ~~~




~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

Command Line Process Viewer/Killer/Suspender for Windows NT/2000/XP V2.03
Copyright© 2002-2003 Craig.Peacock@beyondlogic.org
Killing PID 1344 'explorer.exe'
Killing PID 1344 'explorer.exe'
Killing PID 1344 'explorer.exe'

Starting registry repairs

Registry repairs complete

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

SharedTask Export after registry fix

(GetSTS.exe) SharedTaskScheduler exporter by Lawrence Abrams (Grinler)
Copyright© 2006 BleepingComputer.com

Registry Pseudo-Format Mode (Not a valid reg file):

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SharedTaskScheduler]
"{438755C2-A8BA-11D1-B96B-00A0C90312E1}"="Browseui preloader"
"{8C7461EF-2B13-11d2-BE35-3078302C2030}"="Component Categories cache daemon"

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{438755C2-A8BA-11D1-B96B-00A0C90312E1}\InProcServer32]
@="%SystemRoot%\System32\browseui.dll"


[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{8C7461EF-2B13-11d2-BE35-3078302C2030}\InProcServer32]
@="%SystemRoot%\System32\browseui.dll"


~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

Deleting files

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

Remaining Post-run Files


~~~ Program Files ~~~

IntCodec


~~~ Shortcuts ~~~



~~~ Favorites ~~~



~~~ system32 folder ~~~



~~~ Icons in System32 ~~~



~~~ Windows directory ~~~



~~~ Drive root ~~~


~~~ Miscellaneous Files/folders ~~~


~~~ Wininet.dll ~~~

CLEAN! :thumbsup:
Trevor

#10 Navigator

Navigator

    Gas Passer


  • Members
  • 72 posts
  • OFFLINE
  •  
  • Local time:10:12 AM

Posted 31 July 2006 - 09:22 PM

You have Spybot's Tea Tiimer and Ewido Guard installed and enabled. While these are great programs, we need to temporarily disable (not uninstall) the programs because they might be stopping our fix. After you are clean, be sure to remember to reverse these steps to re-enable these programs!

1) Run Spybot-S&D
2) Go to the Mode menu, and make sure "Advanced Mode" is selected
3) On the left hand side, choose Tools -> Resident
4) Uncheck "Resident TeaTimer" and OK any prompts

reference page here: http://www.russelltexas.com/malware/teatimer.htm

Open ewido by double-clicking the yellow 'e' icon in the system tray.
In the 'Your security status' section, toggle the ewido Guard realtime protection 'off' by clicking 'active' which will then change the protection status to 'inactive'.
When you reboot, ewido will prompt you as to whether you would like to "Restart the guard?".
Reply 'no' and set it to 'inactive' for the duration of your cleanup.

After the computer reboots, make sure these programs are not running by checking your system tray.

After doing the above, let's do this:

1. Please download SmitfraudFix (by S!Ri)
Extract the content (a folder named SmitfraudFix) to your Desktop.

Open the SmitfraudFix folder and double-click smitfraudfix.cmd
Select option #1 - Search by typing 1 and press "Enter"; a text file will appear, which lists infected files (if present).
Please copy/paste the content of that report into your next reply.

IMPORTANT: Do NOT run option #2 OR any other option until you are directed to do so!

Note : process.exe is detected by some antivirus programs (AntiVir, Dr.Web, Kaspersky) as a "RiskTool"; it is not a virus, but a program used to stop system processes. Antivirus programs cannot distinguish between "good" and "malicious" use of such programs, therefore they may alert the user.
http://www.beyondlogic.org/consulting/proc...processutil.htm
Posted Image

#11 trevorveasey

trevorveasey
  • Topic Starter

  • Members
  • 83 posts
  • OFFLINE
  •  
  • Location:AVON PARK, FL
  • Local time:11:12 AM

Posted 31 July 2006 - 10:20 PM

OK...

SmitFraudFix v2.76

Scan done at 23:19:04.28, Mon 07/31/2006
Run from C:\Documents and Settings\Trevor Veasey.D3H36G41\Desktop\SmitfraudFix\SmitfraudFix
OS: Microsoft Windows XP [Version 5.1.2600] - Windows_NT
Fix ran in normal mode

»»»»»»»»»»»»»»»»»»»»»»»» C:\


»»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS


»»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS\system


»»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS\Web

C:\WINDOWS\Web\desktop.html FOUND !

»»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS\system32


»»»»»»»»»»»»»»»»»»»»»»»» C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data


»»»»»»»»»»»»»»»»»»»»»»»» Start Menu


»»»»»»»»»»»»»»»»»»»»»»»» C:\DOCUME~1\TREVOR~1.D3H\FAVORI~1


»»»»»»»»»»»»»»»»»»»»»»»» Desktop


»»»»»»»»»»»»»»»»»»»»»»»» C:\Program Files

C:\Program Files\IntCodec\ FOUND !

»»»»»»»»»»»»»»»»»»»»»»»» Corrupted keys


»»»»»»»»»»»»»»»»»»»»»»»» Desktop Components

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Desktop\Components\0]
"Source"="About:Home"
"SubscribedURL"="About:Home"
"FriendlyName"="My Current Home Page"


»»»»»»»»»»»»»»»»»»»»»»»» Sharedtaskscheduler
!!!Attention, following keys are not inevitably infected!!!

SrchSTS.exe by S!Ri
Search SharedTaskScheduler's .dll

»»»»»»»»»»»»»»»»»»»»»»»» Scanning wininet.dll infection


»»»»»»»»»»»»»»»»»»»»»»»» End
Trevor

#12 Navigator

Navigator

    Gas Passer


  • Members
  • 72 posts
  • OFFLINE
  •  
  • Local time:10:12 AM

Posted 31 July 2006 - 10:34 PM

OK Trevor...

You should print out these instructions, or copy them to a NotePad file for reading while in Safe Mode, because you will not be able to connect to the Internet to read from this site.

Next, please reboot your computer in Safe Mode by doing the following :
  • Restart your computer
  • After hearing your computer beep once during startup, but before the Windows icon appears, tap the F8 key continually;
  • Instead of Windows loading as normal, a menu with options should appear;
  • Select the first option, to run Windows in Safe Mode, then press "Enter".
  • Choose your usual account.
Once in Safe Mode, open the SmitfraudFix folder again and double-click smitfraudfix.cmd
Select option #2 - Clean by typing 2 and press "Enter" to delete infected files.

You will be prompted : "Registry cleaning - Do you want to clean the registry ?"; answer "Yes" by typing Y and press "Enter" in order to remove the Desktop background and clean registry keys associated with the infection.

The tool will now check if wininet.dll is infected. You may be prompted to replace the infected file (if found); answer "Yes" by typing Y and press "Enter".

The tool may need to restart your computer to finish the cleaning process; if it doesn't, please restart it into Normal Windows.
A text file will appear onscreen, with results from the cleaning process; please copy/paste the content of that report into your next reply.
The report can also be found at the root of the system drive, usually at C:\rapport.txt

Post back with the C:\rapport.txt and a new HJT log.
Posted Image

#13 trevorveasey

trevorveasey
  • Topic Starter

  • Members
  • 83 posts
  • OFFLINE
  •  
  • Location:AVON PARK, FL
  • Local time:11:12 AM

Posted 01 August 2006 - 01:11 AM

OK...

SmitFraudFix v2.76

Scan done at 2:02:02.20, Tue 08/01/2006
Run from C:\Documents and Settings\Trevor Veasey.D3H36G41\Desktop\SmitfraudFix\SmitfraudFix
OS: Microsoft Windows XP [Version 5.1.2600] - Windows_NT
Fix ran in safe mode

»»»»»»»»»»»»»»»»»»»»»»»» Before SmitFraudFix
!!!Attention, following keys are not inevitably infected!!!

SrchSTS.exe by S!Ri
Search SharedTaskScheduler's .dll

»»»»»»»»»»»»»»»»»»»»»»»» Killing process


»»»»»»»»»»»»»»»»»»»»»»»» Generic Renos Fix

GenericRenosFix by S!Ri


»»»»»»»»»»»»»»»»»»»»»»»» Deleting infected files

C:\WINDOWS\Web\desktop.html Deleted
C:\Program Files\IntCodec\ Deleted

»»»»»»»»»»»»»»»»»»»»»»»» Deleting Temp Files


»»»»»»»»»»»»»»»»»»»»»»»» Registry Cleaning

Registry Cleaning done.

»»»»»»»»»»»»»»»»»»»»»»»» After SmitFraudFix
!!!Attention, following keys are not inevitably infected!!!

SrchSTS.exe by S!Ri
Search SharedTaskScheduler's .dll


»»»»»»»»»»»»»»»»»»»»»»»» End


>Edit:Not getting anymore popups now, and IE is back to normal. Just that it doesnt let me go to BC, but i can go to any other web site just fine.......says "Page Cannot Be Displayed"....Weird....

Edited by trevorveasey, 01 August 2006 - 02:24 AM.

Trevor

#14 Navigator

Navigator

    Gas Passer


  • Members
  • 72 posts
  • OFFLINE
  •  
  • Local time:10:12 AM

Posted 01 August 2006 - 04:23 AM

Good job Trevor....you didn't post a new HJT log, but we'll get one in a moment. I'm glad that you are not getting pop-ups anymore and that IE is working:

1. Please download ATF Cleaner by Atribune.
This program is for XP and Windows 2000 onlyDouble-click ATF-Cleaner.exe to run the program.
Under Main choose: Select All
Click the Empty Selected button.
If you use Firefox browserClick Firefox at the top and choose: Select All
Click the Empty Selected button.
NOTE: If you would like to keep your saved passwords, please click No at the prompt.
If you use Opera browserClick Opera at the top and choose: Select All
Click the Empty Selected button.
NOTE: If you would like to keep your saved passwords, please click No at the prompt.
Click Exit on the Main menu to close the program.

2. Please go HERE to run Panda's ActiveScan
  • Once you are on the Panda site click the Scan your PC button
  • A new window will open...click the Check Now button
  • Enter your Country
  • Enter your State/Province
  • Enter your e-mail address and click send
  • Select either Home User or Company
  • Click the big Scan Now button
  • If it wants to install an ActiveX component allow it
  • It will start downloading the files it requires for the scan (Note: It may take a couple of minutes)
  • When download is complete, click on My Computer to start the scan
  • When the scan completes, if anything malicious is detected, click the See Report button, then Save Report and save it to a convenient location.
3. Post the contents of the ActiveScan report AND a NEW HJT log.
Posted Image

#15 trevorveasey

trevorveasey
  • Topic Starter

  • Members
  • 83 posts
  • OFFLINE
  •  
  • Location:AVON PARK, FL
  • Local time:11:12 AM

Posted 01 August 2006 - 11:38 AM

OK..

Logfile of HijackThis v1.99.1
Scan saved at 12:34:22 PM, on 8/1/2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Sygate\SPF\smc.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
c:\program files\common files\logitech\lvmvfm\LVPrcSrv.exe
C:\WINDOWS\System32\hkcmd.exe
C:\Program Files\Logitech\iTouch\iTouch.exe
C:\PROGRA~1\Grisoft\AVGFRE~1\avgemc.exe
C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
C:\WINDOWS\system32\dla\tfswctrl.exe
C:\WINDOWS\system32\LVCOMSX.EXE
C:\Program Files\Logitech\Video\CameraAssistant.exe
C:\WINDOWS\system32\ElkCtrl.exe
C:\Program Files\ewido anti-spyware 4.0\ewido.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\Program Files\Logitech\MouseWare\system\em_exec.exe
C:\WINDOWS\system32\RUNDLL32.EXE
C:\WINDOWS\System32\DSentry.exe
C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe
C:\Program Files\Dell Support\DSAgnt.exe
C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
C:\Program Files\Plaxo\2.6.2.9\PlaxoHelper.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
C:\Program Files\Digital Line Detect\DLG.exe
C:\PROGRA~1\COMMON~1\AOL\ACS\acsd.exe
C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe
C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe
C:\Program Files\ewido anti-spyware 4.0\guard.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\wanmpsvc.exe
C:\WINDOWS\system32\fxssvc.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\hijackthis\HijackThis.exe

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.yahoo.com
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost
R3 - Default URLSearchHook is missing
F2 - REG:system.ini: UserInit=C:\WINDOWS\system32\Userinit.exe
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {5753791b-f607-48ca-814e-91c14d081f9e} - (no file)
O2 - BHO: DriveLetterAccess - {5CA3D70E-1895-11CF-8E15-001234567890} - C:\WINDOWS\system32\dla\tfswshx.dll
O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\System32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\System32\hkcmd.exe
O4 - HKLM\..\Run: [UserFaultCheck] %systemroot%\system32\dumprep 0 -u
O4 - HKLM\..\Run: [zBrowser Launcher] C:\Program Files\Logitech\iTouch\iTouch.exe
O4 - HKLM\..\Run: [AVG7_EMC] C:\PROGRA~1\Grisoft\AVGFRE~1\avgemc.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
O4 - HKLM\..\Run: [dla] C:\WINDOWS\system32\dla\tfswctrl.exe
O4 - HKLM\..\Run: [SmcService] C:\PROGRA~1\Sygate\SPF\smc.exe -startgui
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [Logitech Utility] Logi_MwX.Exe
O4 - HKLM\..\Run: [LVCOMSX] C:\WINDOWS\system32\LVCOMSX.EXE
O4 - HKLM\..\Run: [LogitechCameraAssistant] C:\Program Files\Logitech\Video\CameraAssistant.exe
O4 - HKLM\..\Run: [LogitechVideo[inspector]] C:\Program Files\Logitech\Video\InstallHelper.exe /inspect
O4 - HKLM\..\Run: [LogitechCameraService(E)] C:\WINDOWS\system32\ElkCtrl.exe /automation
O4 - HKLM\..\Run: [!ewido] "C:\Program Files\ewido anti-spyware 4.0\ewido.exe" /minimized
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [DVDSentry] C:\WINDOWS\System32\DSentry.exe
O4 - HKLM\..\Run: [BuildBU] c:\dell\bldbubg.exe
O4 - HKLM\..\Run: [AVG7_CC] C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe /STARTUP
O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
O4 - HKCU\..\Run: [DellSupport] "C:\Program Files\Dell Support\DSAgnt.exe" /startup
O4 - HKCU\..\Run: [LDM] C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
O4 - HKCU\..\Run: [PlaxoUpdate] C:\Program Files\Plaxo\2.6.2.9\PlaxoHelper.exe -a
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [MoneyAgent] "C:\Program Files\Microsoft Money\System\mnyexpr.exe"
O4 - HKCU\..\Run: [FolderShare] "C:\Program Files\FolderShare\FolderShare.exe" /background
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKCU\..\Run: [Yahoo! Pager] C:\Program Files\Yahoo!\Messenger\ypager.exe -quiet
O4 - HKCU\..\Run: [Aim6] "C:\Program Files\Common Files\AOL\Launch\AOLLaunch.exe" /d locale=en-US ee://aol/imApp
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: Digital Line Detect.lnk = ?
O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe
O4 - Global Startup: M8Clips.lnk = C:\Program Files\ClipM8\ClipM8.exe
O8 - Extra context menu item: &eBay Search - res://C:\Program Files\eBay\eBay Toolbar2\eBayTb.dll/RCSearch.html
O8 - Extra context menu item: Download all with Free Download Manager - file://C:\Program Files\Free Download Manager\dlall.htm
O8 - Extra context menu item: Download selected with Free Download Manager - file://C:\Program Files\Free Download Manager\dlselected.htm
O8 - Extra context menu item: Download web site with Free Download Manager - file://C:\Program Files\Free Download Manager\dlpage.htm
O8 - Extra context menu item: Download with Free Download Manager - file://C:\Program Files\Free Download Manager\dllink.htm
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\npjpi150_06.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\npjpi150_06.dll
O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\System32\Shdocvw.dll
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O10 - Broken Internet access because of LSP provider 'xfire_lsp_10650.dll' missing
O16 - DPF: {01113300-3E00-11D2-8470-0060089874ED} (Support.com Configuration Class) - http://www.comcastsupport.com/sdccommon/download/tgctlcm.cab
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=36467&clcid=0x409
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://v5.windowsupdate.microsoft.com/v5co...b?1107681204906
O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) - http://acs.pandasoftware.com/activescan/as5free/asinst.cab
O16 - DPF: {AB86CE53-AC9F-449F-9399-D8ABCA09EC09} (Get_ActiveX Control) - https://h17000.www1.hp.com/ewfrf-JAVA/Secur...loadManager.ocx
O16 - DPF: {F58E1CEF-A068-4C15-BA5E-587CAF3EE8C6} (MSN Chat Control 4.5) - http://chat.msn.com/bin/msnchat45.cab
O18 - Protocol: bw+0 - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw+0s - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0 - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0s - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00 - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00s - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10 - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10s - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20 - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20s - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30 - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30s - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40 - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40s - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50 - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50s - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60 - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60s - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70 - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70s - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80 - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80s - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90 - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90s - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0 - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0s - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0 - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0s - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0 - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0s - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0 - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0s - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0 - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0s - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0 - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0s - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O18 - Protocol: bwg0 - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwg0s - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0 - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0s - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0 - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0s - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0 - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0s - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0 - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0s - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0 - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0s - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0 - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0s - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0 - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0s - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0 - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0s - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0 - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0s - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0 - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0s - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0 - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0s - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0 - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0s - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0 - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0s - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0 - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0s - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0 - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0s - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0 - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0s - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0 - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0s - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0 - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0s - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0 - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0s - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: ms-help - {314111C7-A502-11D2-BBCA-00C04F8EC294} - C:\Program Files\Common Files\Microsoft Shared\Help\hxds.dll
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)
O18 - Protocol: offline-8876480 - {E9F7E425-C839-428A-80E5-B3E47A0AEAC0} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O20 - Winlogon Notify: igfxcui - C:\WINDOWS\SYSTEM32\igfxsrvc.dll
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O20 - Winlogon Notify: WRNotifier - WRLogonNTF.dll (file missing)
O23 - Service: AOL Connectivity Service (AOL ACS) - America Online, Inc. - C:\PROGRA~1\COMMON~1\AOL\ACS\acsd.exe
O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe
O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe
O23 - Service: ewido anti-spyware 4.0 guard - Anti-Malware Development a.s. - C:\Program Files\ewido anti-spyware 4.0\guard.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Logitech Process Monitor (LVPrcSrv) - Logitech Inc. - c:\program files\common files\logitech\lvmvfm\LVPrcSrv.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Sygate Personal Firewall (SmcService) - Sygate Technologies, Inc. - C:\Program Files\Sygate\SPF\smc.exe
O23 - Service: WAN Miniport (ATW) Service (WANMiniportService) - America Online, Inc. - C:\WINDOWS\wanmpsvc.exe
-----------------------------------------------------------------------------


Incident Status Location

Spyware:Cookie/adultfriendfinder Not disinfected C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\7d4rmd50.default\cookies.txt[.adultfriendfinder.com/]
Spyware:Cookie/Apmebf Not disinfected C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\7d4rmd50.default\cookies.txt[.apmebf.com/]
Spyware:Cookie/Atwola Not disinfected C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\7d4rmd50.default\cookies.txt[.atwola.com/]
Spyware:Cookie/Belnk Not disinfected C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\7d4rmd50.default\cookies.txt[.belnk.com/]
Spyware:Cookie/bravenetA Not disinfected C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\7d4rmd50.default\cookies.txt[.bravenet.com/]
Spyware:Cookie/Ccbill Not disinfected C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\7d4rmd50.default\cookies.txt[.ccbill.com/]
Spyware:Cookie/Cd Freaks Not disinfected C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\7d4rmd50.default\cookies.txt[.cdfreaks.com/]
Spyware:Cookie/Cd Freaks Not disinfected C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\7d4rmd50.default\cookies.txt[.club.cdfreaks.com/]
Spyware:Cookie/cs.sexcounter Not disinfected C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\7d4rmd50.default\cookies.txt[.cs.sexcounter.com/]
Spyware:Cookie/did-it Not disinfected C:\Documents and Settings\Trevor Veasey.D3H36G41\Application Data\Mozilla\Firefox\Profiles\7d4rmd50.default\cookies.txt[.did-it.com/]
Potentially unwanted tool:Application/Processor Not disinfected C:\Documents and Settings\Trevor Veasey.D3H36G41\Desktop\SmitfraudFix\SmitfraudFix\Process.exe
Potentially unwanted tool:Application/Processor
Trevor




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users