Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

My Computer Is A Dog


  • This topic is locked This topic is locked
7 replies to this topic

#1 keemje

keemje

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:04:02 AM

Posted 24 August 2006 - 11:58 AM

My computer recently took a nosedive with respect to performance. I have scanned for virus (EZ Antivirus), spyware (Spybot), and malware (Adware). Below are hijack logs. Any help is greatly appreciated. Thanks

Logfile of HijackThis v1.99.1
Scan saved at 12:38:31 PM, on 8/24/2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\System32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\brsvc01a.exe
C:\WINDOWS\System32\brss01a.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\CA\eTrust Internet Security Suite\eTrust EZ Antivirus\ISafe.exe
C:\Program Files\Microsoft SQL Server\MSSQL$MICROSOFTSMLBIZ\Binn\sqlservr.exe
C:\Program Files\Linksys\Wireless-G Notebook Adapter\NICServ.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\htpatch.exe
C:\WINDOWS\System32\sistray.EXE
C:\WINDOWS\system32\pctspk.exe
C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\Java\jre1.5.0_08\bin\jusched.exe
C:\Program Files\CA\eTrust Internet Security Suite\caissdt.exe
C:\Program Files\CA\eTrust Internet Security Suite\eTrust EZ Antivirus\CAVTray.exe
C:\Program Files\CA\eTrust Internet Security Suite\eTrust EZ Antivirus\CAVRID.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\1&1\1&1 EasyLogin\EasyLogin.exe
C:\Program Files\Adobe\Acrobat 5.0\Distillr\AcroTray.exe
C:\Program Files\Southwest Airlines\Ding\Ding.exe
C:\Program Files\Common Files\Sonic Shared\cinetray.exe
C:\Program Files\CA\eTrust Internet Security Suite\eTrust EZ Antivirus\VetMsg.exe
C:\Program Files\Microsoft Office\OFFICE11\OUTLOOK.EXE
C:\WINDOWS\system32\ntvdm.exe
C:\PROGRA~1\Intuit\QUICKB~1\COMPON~1\qbagent\qbdagent.exe
C:\WINDOWS\system32\mrtMngr.EXE
C:\Documents and Settings\<myname>\My Documents\HiJackThis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.sorvive.com/loginmain.asp
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn2\yt.dll
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_08\bin\ssv.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn2\yt.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O4 - HKLM\..\Run: [HTpatch] C:\WINDOWS\htpatch.exe
O4 - HKLM\..\Run: [SiS Tray] C:\WINDOWS\System32\sistray.EXE
O4 - HKLM\..\Run: [PCTVOICE] pctspk.exe
O4 - HKLM\..\Run: [BluetoothAuthenticationAgent] rundll32.exe irprops.cpl,,BluetoothAuthenticationAgent
O4 - HKLM\..\Run: [SynTPLpr] C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.5.0_08\bin\jusched.exe"
O4 - HKLM\..\Run: [PinnacleDriverCheck] C:\WINDOWS\System32\PSDrvCheck.exe -CheckReg
O4 - HKLM\..\Run: [CaISSDT] "C:\Program Files\CA\eTrust Internet Security Suite\caissdt.exe"
O4 - HKLM\..\Run: [CaAvTray] "C:\Program Files\CA\eTrust Internet Security Suite\eTrust EZ Antivirus\CAVTray.exe"
O4 - HKLM\..\Run: [CAVRID] "C:\Program Files\CA\eTrust Internet Security Suite\eTrust EZ Antivirus\CAVRID.exe"
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [1&1 EasyLogin] "C:\Program Files\1&1\1&1 EasyLogin\EasyLogin.exe" HIDE
O4 - Global Startup: Acrobat Assistant.lnk = C:\Program Files\Adobe\Acrobat 5.0\Distillr\AcroTray.exe
O4 - Global Startup: DING!.lnk = C:\Program Files\Southwest Airlines\Ding\Ding.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE
O4 - Global Startup: Sonic CinePlayer Quick Launch.lnk = ?
O8 - Extra context menu item: &Google Search - res://c:\program files\google\GoogleToolbar1.dll/cmsearch.html
O8 - Extra context menu item: &Translate English Word - res://c:\program files\google\GoogleToolbar1.dll/cmwordtrans.html
O8 - Extra context menu item: Backward Links - res://c:\program files\google\GoogleToolbar1.dll/cmbacklinks.html
O8 - Extra context menu item: Cached Snapshot of Page - res://c:\program files\google\GoogleToolbar1.dll/cmcache.html
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: Similar Pages - res://c:\program files\google\GoogleToolbar1.dll/cmsimilar.html
O8 - Extra context menu item: Translate Page into English - res://c:\program files\google\GoogleToolbar1.dll/cmtrans.html
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_08\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_08\bin\ssv.dll
O9 - Extra button: Create Mobile Favorite - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MICROS~4\inetrepl.dll
O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MICROS~4\inetrepl.dll
O9 - Extra 'Tools' menuitem: Create Mobile Favorite... - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MICROS~4\inetrepl.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: eBay - Homepage - {EF79EAC5-3452-4E02-B8BD-BA4C89F1AC7A} - C:\Program Files\IrfanView\Ebay\Ebay.htm
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O12 - Plugin for .spop: C:\Program Files\Internet Explorer\Plugins\NPDocBox.dll
O16 - DPF: {01111F00-3E00-11D2-8470-0060089874ED} (Support.com Installer) - http://supportsoft.adelphia.net/sdccommon/...ad/tgctlins.cab
O16 - DPF: {08BEF711-06DA-48B2-9534-802ECAA2E4F9} (PlxInstall Class) - https://www.plaxo.com/down/latest/PlaxoInstall.cab
O16 - DPF: {0D9633EB-D799-4626-B34E-FCC17AFA2BCF} (osi_valid.uCltValid10) - http://www.delmls.com/sus/valid/osi_valid9j.ocx
O16 - DPF: {106E49CF-797A-11D2-81A2-00E02C015623} (AlternaTIFF ActiveX) - http://www.alternatiff.com/install/00/alttiff.cab
O16 - DPF: {11260943-421B-11D0-8EAC-0000C07D88CF} (iPIX ActiveX Control) - http://www.ipix.com/viewers/ipixx.cab
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204
O16 - DPF: {2359626E-7524-4F87-B04E-22CD38A0C88C} (ICSScannerLight Class) - http://download.zonelabs.com/bin/free/cm/ICSCM_ca.cab
O16 - DPF: {30528230-99F7-4BB4-88D8-FA1D4F56A2AB} (YInstStarter Class) - C:\Program Files\Yahoo!\Common\yinsthelper.dll
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupdate/...b?1135980238843
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftupdat...b?1153782250265
O16 - DPF: {74FFE28D-2378-11D5-990C-006094235084} (IBM Access Support) - https://www.ibm.com/pc/support/access/sdcco...ad/IbmEgath.cab
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (ZoneIntro Class) - http://zone.msn.com/binFramework/v10/ZIntro.cab34246.cab
O16 - DPF: {C4847596-972C-11D0-9567-00A0C9273C2A} (Crystal Report Viewer Control) - https://www.sorvive.com/viewer/activeXViewe...tivexviewer.cab
O16 - DPF: {DF780F87-FF2B-4DF8-92D0-73DB16A1543A} - http://zone.msn.com/bingame/zuma/default/popcaploader_v6.cab
O16 - DPF: {ED28050F-D713-43BA-A376-DCC5C35407D5} (MsnMusicAx Class) - https://music.msn.com/client/msnmusax2729.cab
O20 - Winlogon Notify: Asr - C:\WINDOWS\system32\amaamon.dll (file missing)
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O23 - Service: BrSplService (Brother XP spl Service) - brother Industries Ltd - C:\WINDOWS\System32\brsvc01a.exe
O23 - Service: CAISafe - Computer Associates International, Inc. - C:\Program Files\CA\eTrust Internet Security Suite\eTrust EZ Antivirus\ISafe.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iPodService - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: MSSQL$MICROSOFTSMLBIZ - Unknown owner - C:\Program Files\Microsoft SQL Server\MSSQL$MICROSOFTSMLBIZ\Binn\sqlservr.exe" -sMICROSOFTSMLBIZ (file missing)
O23 - Service: NICSer_WPC54G - Unknown owner - C:\Program Files\Linksys\Wireless-G Notebook Adapter\NICServ.exe
O23 - Service: LiveShare P2P Server (RoxLiveShare) - Sonic Solutions - C:\Program Files\Common Files\Roxio Shared\SharedCOM8\RoxLiveShare.exe
O23 - Service: RoxUpnpRenderer (RoxUPnPRenderer) - Sonic Solutions - C:\Program Files\Common Files\Roxio Shared\SharedCom\RoxUpnpRenderer.exe
O23 - Service: RoxUpnpServer - Sonic Solutions - C:\Program Files\Roxio\Easy Media Creator 8\Digital Home\RoxUpnpServer.exe
O23 - Service: Roxio Hard Drive Watcher (RoxWatch) - Sonic Solutions - C:\Program Files\Common Files\Roxio Shared\SharedCOM8\RoxWatch.exe
O23 - Service: SQLAgent$MICROSOFTSMLBIZ - Unknown owner - C:\Program Files\Microsoft SQL Server\MSSQL$MICROSOFTSMLBIZ\Binn\sqlagent.EXE" -i MICROSOFTSMLBIZ (file missing)
O23 - Service: VET Message Service (VETMSGNT) - Computer Associates International, Inc. - C:\Program Files\CA\eTrust Internet Security Suite\eTrust EZ Antivirus\VetMsg.exe

StartupList report, 8/24/2006, 12:43:59 PM
StartupList version: 1.52.2
Started from : C:\Documents and Settings\<myname>\My Documents\HiJackThis\HijackThis.EXE
Detected: Windows XP SP2 (WinNT 5.01.2600)
Detected: Internet Explorer v6.00 SP2 (6.00.2900.2180)
* Using default options
* Including empty and uninteresting sections
* Showing rarely important sections
==================================================

Running processes:

C:\WINDOWS\System32\smss.exe
C:\WINDOWS\System32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\brsvc01a.exe
C:\WINDOWS\System32\brss01a.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\CA\eTrust Internet Security Suite\eTrust EZ Antivirus\ISafe.exe
C:\Program Files\Microsoft SQL Server\MSSQL$MICROSOFTSMLBIZ\Binn\sqlservr.exe
C:\Program Files\Linksys\Wireless-G Notebook Adapter\NICServ.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\htpatch.exe
C:\WINDOWS\System32\sistray.EXE
C:\WINDOWS\system32\pctspk.exe
C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\Java\jre1.5.0_08\bin\jusched.exe
C:\Program Files\CA\eTrust Internet Security Suite\caissdt.exe
C:\Program Files\CA\eTrust Internet Security Suite\eTrust EZ Antivirus\CAVTray.exe
C:\Program Files\CA\eTrust Internet Security Suite\eTrust EZ Antivirus\CAVRID.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\1&1\1&1 EasyLogin\EasyLogin.exe
C:\Program Files\Adobe\Acrobat 5.0\Distillr\AcroTray.exe
C:\Program Files\Southwest Airlines\Ding\Ding.exe
C:\Program Files\Common Files\Sonic Shared\cinetray.exe
C:\Program Files\CA\eTrust Internet Security Suite\eTrust EZ Antivirus\VetMsg.exe
C:\Program Files\Microsoft Office\OFFICE11\OUTLOOK.EXE
C:\WINDOWS\system32\ntvdm.exe
C:\PROGRA~1\Intuit\QUICKB~1\COMPON~1\qbagent\qbdagent.exe
C:\WINDOWS\system32\mrtMngr.EXE
C:\WINDOWS\system32\NOTEPAD.EXE
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Documents and Settings\<myname>\My Documents\HiJackThis\HijackThis.exe

--------------------------------------------------

Listing of startup folders:

Shell folders Startup:
[C:\Documents and Settings\<myname>\Start Menu\Programs\Startup]
*No files*

Shell folders AltStartup:
*Folder not found*

User shell folders Startup:
*Folder not found*

Edited by keemje, 24 August 2006 - 12:03 PM.


BC AdBot (Login to Remove)

 


#2 OldTimer

OldTimer

    Malware Expert


  • Members
  • 11,092 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:North Carolina
  • Local time:05:02 AM

Posted 03 September 2006 - 02:26 PM

Hello keemje and welcome to the BC HijackThis forum. Let's start with this:

Step #1

Download Look2Me-Destroyer.exe and save it to your desktop.
  • Close all windows before continuing.
  • Double-click Look2Me-Destroyer.exe to run it.
  • Put a check next to Run this program as a task.
  • You will receive a message saying Look2Me-Destroyer will close and re-open in approximately 10 seconds. Click OK
  • When Look2Me-Destroyer re-opens, click the Scan for L2M button, your desktop icons will disappear, this is normal.
  • Once it's done scanning, click the Remove L2M button.
  • You will receive a Done Scanning message, click OK.
  • When completed, you will receive this message: Done removing infected files! Look2Me-Destroyer will now shutdown your computer, click OK.
  • Your computer will then shutdown.
  • Turn your computer back on.
Note: If Look2Me-Destroyer does not reopen automatically, reboot and try again.

If you receive a message from your firewall about this program accessing the internet please allow it.

If you receive a runtime error '339' please download MSWINSCK.OCX and place it in your C:\Windows\System32 folder.

Step #2

Download and install the trial version of the ewido security suite. Update the program and then close it. Do not run it yet.

Start in Safe Mode Using the F8 method:
  • Restart the computer.
  • As soon as the BIOS is loaded begin tapping the F8 key until the boot menu appears.
  • Use the arrow keys to select the Safe Mode menu item.
  • Press the Enter key.
Start ewido and do the following:
  • Click on the Scanner button.
  • Click on the Complete System Scan.
  • If anything is found you will be prompted to clean the first infected file found. Choose Clean and put a checkmark in the checkbox for Perform action on all infections and click the Ok button to continue the scan.
  • When the scan is complete save the log file, close ewido and reboot the computer normally.
Step #3

Post the following information back here using the Add Reply button and I will review it when it comes in:C:\Look2Me-Destroyer.txt
The log file from Ewido
A new HijackThis log

Cheers.

OT
I do not respond to PM's requesting help. That's what the forums are here for. Please use them so that others may benefit from your questions and the responses you receive.
OldTimer

Posted Image

#3 keemje

keemje
  • Topic Starter

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:04:02 AM

Posted 03 September 2006 - 09:36 PM

Thank you very much for your reply. I performed the steps in your email. Below are the logs:

Look2Me:

Look2Me-Destroyer V1.0.12

Scanning for infected files.....
Scan started at 9/3/2006 6:40:03 PM


Attempting to delete infected files...

Making registry repairs.


Restoring Windows certificates.

Replaced hosts file with default windows hosts file


Restoring SeDebugPrivilege for Administrators - Succeeded

ewido:
---------------------------------------------------------
ewido anti-spyware - Scan Report
---------------------------------------------------------

+ Created at: 10:11:10 PM 9/3/2006

+ Scan result:



C:\WINDOWS\Downloaded Program Files\flash.inf -> Adware.BetterInternet : Cleaned with backup (quarantined).
C:\WINDOWS\Downloaded Program Files\turbo.inf -> Adware.BetterInternet : Cleaned with backup (quarantined).
C:\WINDOWS\system32\fonts\system\explorer\mru\nl.exe -> Logger.IamBigBrother.90 : Cleaned with backup (quarantined).
C:\WINDOWS\system32\fonts\system\explorer\mru\winl.dll -> Logger.IamBigBrother.91 : Cleaned with backup (quarantined).
:mozilla.143:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.247realmedia : Cleaned.
:mozilla.144:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.247realmedia : Cleaned.
:mozilla.347:C:\Documents and Settings\<my name>\Application Data\Mozilla\Firefox\Profiles\dptvn2sa.default\cookies.txt -> TrackingCookie.247realmedia : Cleaned.
:mozilla.24:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.25:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.26:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.27:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.28:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.29:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.30:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.31:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.32:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.33:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.348:C:\Documents and Settings\<my name>\Application Data\Mozilla\Firefox\Profiles\dptvn2sa.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.349:C:\Documents and Settings\<my name>\Application Data\Mozilla\Firefox\Profiles\dptvn2sa.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.34:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.350:C:\Documents and Settings\<my name>\Application Data\Mozilla\Firefox\Profiles\dptvn2sa.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.351:C:\Documents and Settings\<my name>\Application Data\Mozilla\Firefox\Profiles\dptvn2sa.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.352:C:\Documents and Settings\<my name>\Application Data\Mozilla\Firefox\Profiles\dptvn2sa.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.353:C:\Documents and Settings\<my name>\Application Data\Mozilla\Firefox\Profiles\dptvn2sa.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.354:C:\Documents and Settings\<my name>\Application Data\Mozilla\Firefox\Profiles\dptvn2sa.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.35:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.36:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.37:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.38:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.399:C:\Documents and Settings\<my name>\Application Data\Mozilla\Firefox\Profiles\dptvn2sa.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.39:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.40:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.41:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.42:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.43:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.44:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.45:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.46:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.47:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.48:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.49:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.50:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.51:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.52:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.53:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.54:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.55:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.56:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.57:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.58:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.6:C:\Documents and Settings\<my name>\Application Data\Mozilla\Profiles\default\q1imbx6z.slt\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.7:C:\Documents and Settings\<my name>\Application Data\Mozilla\Profiles\default\q1imbx6z.slt\cookies.txt -> TrackingCookie.2o7 : Cleaned.
C:\Documents and Settings\<my name>\Cookies\<my name>@metacafe.122.2o7[1].txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.286:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.Addynamix : Cleaned.
:mozilla.560:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.Adjuggler : Cleaned.
:mozilla.408:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.Adserver : Cleaned.
:mozilla.409:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.Adserver : Cleaned.
:mozilla.410:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.Adserver : Cleaned.
:mozilla.411:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.Adserver : Cleaned.
:mozilla.412:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.Adserver : Cleaned.
:mozilla.413:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.Adserver : Cleaned.
:mozilla.414:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.Adserver : Cleaned.
:mozilla.415:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.Adserver : Cleaned.
:mozilla.800:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.Adtech : Cleaned.
:mozilla.801:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.Adtech : Cleaned.
:mozilla.757:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.758:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.759:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.760:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.761:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.762:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.763:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.764:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.765:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.766:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.767:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.768:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.769:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.770:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.771:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.772:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.773:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.774:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.775:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.776:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.777:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.778:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.779:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.780:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.781:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.782:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.783:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.784:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.785:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.786:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.787:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.788:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.855:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.Adviva : Cleaned.
:mozilla.66:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.Atdmt : Cleaned.
:mozilla.293:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.Bluestreak : Cleaned.
:mozilla.438:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.Burstbeacon : Cleaned.
:mozilla.300:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.Burstnet : Cleaned.
:mozilla.9:C:\Documents and Settings\<my name>\Application Data\Mozilla\Profiles\default\q1imbx6z.slt\cookies.txt -> TrackingCookie.Burstnet : Cleaned.
:mozilla.172:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned.
:mozilla.173:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned.
:mozilla.174:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned.
:mozilla.175:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned.
:mozilla.176:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned.
:mozilla.177:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned.
:mozilla.360:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.Centrport : Cleaned.
:mozilla.361:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.Centrport : Cleaned.
:mozilla.362:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.Centrport : Cleaned.
:mozilla.363:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.Centrport : Cleaned.
:mozilla.847:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.Clickagents : Cleaned.
:mozilla.848:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.Clickagents : Cleaned.
:mozilla.849:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.Clickagents : Cleaned.
:mozilla.850:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.Clickagents : Cleaned.
:mozilla.851:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.Clickagents : Cleaned.
:mozilla.811:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.Com : Cleaned.
:mozilla.812:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.Com : Cleaned.
:mozilla.168:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.Coremetrics : Cleaned.
:mozilla.204:C:\Documents and Settings\<my name>\Application Data\Mozilla\Firefox\Profiles\dptvn2sa.default\cookies.txt -> TrackingCookie.Coremetrics : Cleaned.
:mozilla.289:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.Coremetrics : Cleaned.
:mozilla.68:C:\Documents and Settings\<my name>\Application Data\Mozilla\Firefox\Profiles\dptvn2sa.default\cookies.txt -> TrackingCookie.Coremetrics : Cleaned.
:mozilla.150:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.Doubleclick : Cleaned.
:mozilla.425:C:\Documents and Settings\<my name>\Application Data\Mozilla\Firefox\Profiles\dptvn2sa.default\cookies.txt -> TrackingCookie.Esomniture : Cleaned.
:mozilla.426:C:\Documents and Settings\<my name>\Application Data\Mozilla\Firefox\Profiles\dptvn2sa.default\cookies.txt -> TrackingCookie.Esomniture : Cleaned.
:mozilla.427:C:\Documents and Settings\<my name>\Application Data\Mozilla\Firefox\Profiles\dptvn2sa.default\cookies.txt -> TrackingCookie.Esomniture : Cleaned.
:mozilla.428:C:\Documents and Settings\<my name>\Application Data\Mozilla\Firefox\Profiles\dptvn2sa.default\cookies.txt -> TrackingCookie.Esomniture : Cleaned.
:mozilla.429:C:\Documents and Settings\<my name>\Application Data\Mozilla\Firefox\Profiles\dptvn2sa.default\cookies.txt -> TrackingCookie.Esomniture : Cleaned.
:mozilla.574:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.Esomniture : Cleaned.
:mozilla.575:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.Esomniture : Cleaned.
:mozilla.576:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.Esomniture : Cleaned.
:mozilla.577:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.Esomniture : Cleaned.
:mozilla.531:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.Falkag : Cleaned.
:mozilla.532:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.Falkag : Cleaned.
:mozilla.533:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.Falkag : Cleaned.
:mozilla.534:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.Falkag : Cleaned.
:mozilla.269:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.Fastclick : Cleaned.
:mozilla.270:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.Fastclick : Cleaned.
:mozilla.271:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.Fastclick : Cleaned.
:mozilla.272:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.Fastclick : Cleaned.
:mozilla.336:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.Googleadservices : Cleaned.
:mozilla.375:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.Googleadservices : Cleaned.
:mozilla.650:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.Googleadservices : Cleaned.
:mozilla.879:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.Googleadservices : Cleaned.
:mozilla.896:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.Googleadservices : Cleaned.
:mozilla.962:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.Googleadservices : Cleaned.
:mozilla.155:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned.
:mozilla.156:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned.
:mozilla.157:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned.
:mozilla.252:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned.
:mozilla.284:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned.
:mozilla.285:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned.
:mozilla.350:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned.
:mozilla.351:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned.
:mozilla.352:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned.
:mozilla.353:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned.
:mozilla.354:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned.
:mozilla.355:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned.
:mozilla.356:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned.
:mozilla.357:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned.
:mozilla.358:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned.
:mozilla.366:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned.
:mozilla.403:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned.
:mozilla.407:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned.
:mozilla.522:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned.
:mozilla.536:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned.
:mozilla.586:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned.
:mozilla.590:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned.
:mozilla.592:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned.
:mozilla.593:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned.
:mozilla.594:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned.
:mozilla.658:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned.
:mozilla.695:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned.
:mozilla.713:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned.
:mozilla.714:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned.
:mozilla.798:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned.
:mozilla.901:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned.
:mozilla.376:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.Hitslink : Cleaned.
:mozilla.377:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.Hitslink : Cleaned.
:mozilla.378:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.Hitslink : Cleaned.
:mozilla.379:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.Hitslink : Cleaned.
:mozilla.563:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.Hitslink : Cleaned.
:mozilla.564:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.Hitslink : Cleaned.
:mozilla.565:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.Hitslink : Cleaned.
:mozilla.566:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.Hitslink : Cleaned.
:mozilla.626:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.Linksynergy : Cleaned.
:mozilla.627:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.Linksynergy : Cleaned.
:mozilla.273:C:\Documents and Settings\<my name>\Application Data\Mozilla\Firefox\Profiles\dptvn2sa.default\cookies.txt -> TrackingCookie.Liveperson : Cleaned.
:mozilla.274:C:\Documents and Settings\<my name>\Application Data\Mozilla\Firefox\Profiles\dptvn2sa.default\cookies.txt -> TrackingCookie.Liveperson : Cleaned.
:mozilla.323:C:\Documents and Settings\<my name>\Application Data\Mozilla\Firefox\Profiles\dptvn2sa.default\cookies.txt -> TrackingCookie.Liveperson : Cleaned.
:mozilla.324:C:\Documents and Settings\<my name>\Application Data\Mozilla\Firefox\Profiles\dptvn2sa.default\cookies.txt -> TrackingCookie.Liveperson : Cleaned.
:mozilla.325:C:\Documents and Settings\<my name>\Application Data\Mozilla\Firefox\Profiles\dptvn2sa.default\cookies.txt -> TrackingCookie.Liveperson : Cleaned.
:mozilla.328:C:\Documents and Settings\<my name>\Application Data\Mozilla\Firefox\Profiles\dptvn2sa.default\cookies.txt -> TrackingCookie.Liveperson : Cleaned.
:mozilla.329:C:\Documents and Settings\<my name>\Application Data\Mozilla\Firefox\Profiles\dptvn2sa.default\cookies.txt -> TrackingCookie.Liveperson : Cleaned.
:mozilla.751:C:\Documents and Settings\<my name>\Application Data\Mozilla\Firefox\Profiles\dptvn2sa.default\cookies.txt -> TrackingCookie.Liveperson : Cleaned.
:mozilla.752:C:\Documents and Settings\<my name>\Application Data\Mozilla\Firefox\Profiles\dptvn2sa.default\cookies.txt -> TrackingCookie.Liveperson : Cleaned.
:mozilla.753:C:\Documents and Settings\<my name>\Application Data\Mozilla\Firefox\Profiles\dptvn2sa.default\cookies.txt -> TrackingCookie.Liveperson : Cleaned.
:mozilla.754:C:\Documents and Settings\<my name>\Application Data\Mozilla\Firefox\Profiles\dptvn2sa.default\cookies.txt -> TrackingCookie.Liveperson : Cleaned.
:mozilla.755:C:\Documents and Settings\<my name>\Application Data\Mozilla\Firefox\Profiles\dptvn2sa.default\cookies.txt -> TrackingCookie.Liveperson : Cleaned.
:mozilla.756:C:\Documents and Settings\<my name>\Application Data\Mozilla\Firefox\Profiles\dptvn2sa.default\cookies.txt -> TrackingCookie.Liveperson : Cleaned.
:mozilla.757:C:\Documents and Settings\<my name>\Application Data\Mozilla\Firefox\Profiles\dptvn2sa.default\cookies.txt -> TrackingCookie.Liveperson : Cleaned.
:mozilla.758:C:\Documents and Settings\<my name>\Application Data\Mozilla\Firefox\Profiles\dptvn2sa.default\cookies.txt -> TrackingCookie.Liveperson : Cleaned.
:mozilla.759:C:\Documents and Settings\<my name>\Application Data\Mozilla\Firefox\Profiles\dptvn2sa.default\cookies.txt -> TrackingCookie.Liveperson : Cleaned.
:mozilla.760:C:\Documents and Settings\<my name>\Application Data\Mozilla\Firefox\Profiles\dptvn2sa.default\cookies.txt -> TrackingCookie.Liveperson : Cleaned.
:mozilla.761:C:\Documents and Settings\<my name>\Application Data\Mozilla\Firefox\Profiles\dptvn2sa.default\cookies.txt -> TrackingCookie.Liveperson : Cleaned.
:mozilla.762:C:\Documents and Settings\<my name>\Application Data\Mozilla\Firefox\Profiles\dptvn2sa.default\cookies.txt -> TrackingCookie.Liveperson : Cleaned.
:mozilla.763:C:\Documents and Settings\<my name>\Application Data\Mozilla\Firefox\Profiles\dptvn2sa.default\cookies.txt -> TrackingCookie.Liveperson : Cleaned.
:mozilla.764:C:\Documents and Settings\<my name>\Application Data\Mozilla\Firefox\Profiles\dptvn2sa.default\cookies.txt -> TrackingCookie.Liveperson : Cleaned.
:mozilla.765:C:\Documents and Settings\<my name>\Application Data\Mozilla\Firefox\Profiles\dptvn2sa.default\cookies.txt -> TrackingCookie.Liveperson : Cleaned.
:mozilla.766:C:\Documents and Settings\<my name>\Application Data\Mozilla\Firefox\Profiles\dptvn2sa.default\cookies.txt -> TrackingCookie.Liveperson : Cleaned.
:mozilla.767:C:\Documents and Settings\<my name>\Application Data\Mozilla\Firefox\Profiles\dptvn2sa.default\cookies.txt -> TrackingCookie.Liveperson : Cleaned.
:mozilla.768:C:\Documents and Settings\<my name>\Application Data\Mozilla\Firefox\Profiles\dptvn2sa.default\cookies.txt -> TrackingCookie.Liveperson : Cleaned.
:mozilla.769:C:\Documents and Settings\<my name>\Application Data\Mozilla\Firefox\Profiles\dptvn2sa.default\cookies.txt -> TrackingCookie.Liveperson : Cleaned.
:mozilla.770:C:\Documents and Settings\<my name>\Application Data\Mozilla\Firefox\Profiles\dptvn2sa.default\cookies.txt -> TrackingCookie.Liveperson : Cleaned.
:mozilla.771:C:\Documents and Settings\<my name>\Application Data\Mozilla\Firefox\Profiles\dptvn2sa.default\cookies.txt -> TrackingCookie.Liveperson : Cleaned.
:mozilla.772:C:\Documents and Settings\<my name>\Application Data\Mozilla\Firefox\Profiles\dptvn2sa.default\cookies.txt -> TrackingCookie.Liveperson : Cleaned.
:mozilla.773:C:\Documents and Settings\<my name>\Application Data\Mozilla\Firefox\Profiles\dptvn2sa.default\cookies.txt -> TrackingCookie.Liveperson : Cleaned.
:mozilla.774:C:\Documents and Settings\<my name>\Application Data\Mozilla\Firefox\Profiles\dptvn2sa.default\cookies.txt -> TrackingCookie.Liveperson : Cleaned.
:mozilla.838:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.Liveperson : Cleaned.
:mozilla.839:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.Liveperson : Cleaned.
:mozilla.840:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.Liveperson : Cleaned.
:mozilla.905:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.Liveperson : Cleaned.
:mozilla.906:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.Liveperson : Cleaned.
:mozilla.545:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.Masterstats : Cleaned.
:mozilla.105:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.Mediaplex : Cleaned.
:mozilla.106:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.Mediaplex : Cleaned.
:mozilla.931:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.Onestat : Cleaned.
:mozilla.932:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.Onestat : Cleaned.
:mozilla.933:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.Onestat : Cleaned.
:mozilla.333:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.Overture : Cleaned.
:mozilla.334:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.Overture : Cleaned.
:mozilla.381:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.Overture : Cleaned.
:mozilla.585:C:\Documents and Settings\<my name>\Application Data\Mozilla\Firefox\Profiles\dptvn2sa.default\cookies.txt -> TrackingCookie.Overture : Cleaned.
:mozilla.586:C:\Documents and Settings\<my name>\Application Data\Mozilla\Firefox\Profiles\dptvn2sa.default\cookies.txt -> TrackingCookie.Overture : Cleaned.
:mozilla.205:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.Pointroll : Cleaned.
:mozilla.206:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.Pointroll : Cleaned.
:mozilla.207:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.Pointroll : Cleaned.
:mozilla.208:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.Pointroll : Cleaned.
:mozilla.572:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.Qksrv : Cleaned.
:mozilla.573:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.Qksrv : Cleaned.
:mozilla.607:C:\Documents and Settings\<my name>\Application Data\Mozilla\Firefox\Profiles\dptvn2sa.default\cookies.txt -> TrackingCookie.Qksrv : Cleaned.
:mozilla.608:C:\Documents and Settings\<my name>\Application Data\Mozilla\Firefox\Profiles\dptvn2sa.default\cookies.txt -> TrackingCookie.Qksrv : Cleaned.
:mozilla.335:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.Questionmarket : Cleaned.
:mozilla.10:C:\Documents and Settings\<my name>\Application Data\Mozilla\Profiles\default\q1imbx6z.slt\cookies.txt -> TrackingCookie.Ru4 : Cleaned.
:mozilla.11:C:\Documents and Settings\<my name>\Application Data\Mozilla\Profiles\default\q1imbx6z.slt\cookies.txt -> TrackingCookie.Ru4 : Cleaned.
:mozilla.441:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.Ru4 : Cleaned.
:mozilla.442:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.Ru4 : Cleaned.
:mozilla.443:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.Ru4 : Cleaned.
:mozilla.803:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.Serving-sys : Cleaned.
:mozilla.804:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.Serving-sys : Cleaned.
:mozilla.805:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.Serving-sys : Cleaned.
:mozilla.806:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.Serving-sys : Cleaned.
:mozilla.221:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.Specificclick : Cleaned.
:mozilla.222:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.Specificclick : Cleaned.
:mozilla.223:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.Specificclick : Cleaned.
:mozilla.224:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.Specificclick : Cleaned.
:mozilla.342:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
:mozilla.343:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
:mozilla.344:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
:mozilla.345:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
:mozilla.346:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
:mozilla.347:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
:mozilla.348:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
:mozilla.349:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
:mozilla.552:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.Trafficmp : Cleaned.
:mozilla.553:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.Trafficmp : Cleaned.
:mozilla.554:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.Trafficmp : Cleaned.
:mozilla.555:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.Trafficmp : Cleaned.
:mozilla.117:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.Tribalfusion : Cleaned.
:mozilla.118:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.Tribalfusion : Cleaned.
:mozilla.119:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.Tribalfusion : Cleaned.
:mozilla.120:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.Tribalfusion : Cleaned.
:mozilla.121:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.Tribalfusion : Cleaned.
:mozilla.122:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.Tribalfusion : Cleaned.
:mozilla.470:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.Valuead : Cleaned.
:mozilla.471:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.Valuead : Cleaned.
:mozilla.472:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.Valuead : Cleaned.
:mozilla.473:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.Valuead : Cleaned.
:mozilla.682:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.Valuead : Cleaned.
:mozilla.683:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.Valuead : Cleaned.
:mozilla.684:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.Valuead : Cleaned.
:mozilla.685:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.Valuead : Cleaned.
:mozilla.454:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.Valueclick : Cleaned.
:mozilla.455:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.Valueclick : Cleaned.
:mozilla.549:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.Valueclick : Cleaned.
:mozilla.922:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.Web-stat : Cleaned.
:mozilla.541:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.Webtrendslive : Cleaned.
:mozilla.542:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.Webtrendslive : Cleaned.
:mozilla.600:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.Webtrendslive : Cleaned.
:mozilla.790:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.Webtrendslive : Cleaned.
:mozilla.792:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.Webtrendslive : Cleaned.
:mozilla.860:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.Webtrendslive : Cleaned.
:mozilla.862:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.Webtrendslive : Cleaned.
:mozilla.909:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.Webtrendslive : Cleaned.
:mozilla.926:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.Webtrendslive : Cleaned.
:mozilla.927:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.Webtrendslive : Cleaned.
:mozilla.556:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.557:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.558:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned.
C:\Documents and Settings\<my name>\Cookies\<my name>@ad.yieldmanager[1].txt -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.238:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.Zedo : Cleaned.
:mozilla.239:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.Zedo : Cleaned.
:mozilla.240:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.Zedo : Cleaned.
:mozilla.241:C:\Documents and Settings\<my name>\My Documents\dptvn2sa.default\cookies.txt -> TrackingCookie.Zedo : Cleaned.


::Report end

Hijack This:
Logfile of HijackThis v1.99.1
Scan saved at 10:21:59 PM, on 9/3/2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\System32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\brsvc01a.exe
C:\WINDOWS\System32\brss01a.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\CA\eTrust Internet Security Suite\eTrust EZ Antivirus\ISafe.exe
C:\Program Files\ewido anti-spyware 4.0\guard.exe
C:\Program Files\Linksys\Wireless-G Notebook Adapter\NICServ.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\System32\svchost.exe
C:\Program Files\CA\eTrust Internet Security Suite\eTrust EZ Antivirus\VetMsg.exe
C:\WINDOWS\htpatch.exe
C:\WINDOWS\System32\sistray.EXE
C:\WINDOWS\system32\pctspk.exe
C:\WINDOWS\system32\rundll32.exe
C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\Java\jre1.5.0_08\bin\jusched.exe
C:\Program Files\CA\eTrust Internet Security Suite\caissdt.exe
C:\Program Files\CA\eTrust Internet Security Suite\eTrust EZ Antivirus\CAVTray.exe
C:\Program Files\CA\eTrust Internet Security Suite\eTrust EZ Antivirus\CAVRID.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\1&1\1&1 EasyLogin\EasyLogin.exe
C:\Program Files\Adobe\Acrobat 5.0\Distillr\AcroTray.exe
C:\Program Files\Southwest Airlines\Ding\Ding.exe
C:\Program Files\Common Files\Sonic Shared\cinetray.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Documents and Settings\<my name>\My Documents\HiJackThis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.sorvive.com/loginmain.asp
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn2\yt.dll
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_08\bin\ssv.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn2\yt.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O4 - HKLM\..\Run: [HTpatch] C:\WINDOWS\htpatch.exe
O4 - HKLM\..\Run: [SiS Tray] C:\WINDOWS\System32\sistray.EXE
O4 - HKLM\..\Run: [PCTVOICE] pctspk.exe
O4 - HKLM\..\Run: [BluetoothAuthenticationAgent] rundll32.exe irprops.cpl,,BluetoothAuthenticationAgent
O4 - HKLM\..\Run: [SynTPLpr] C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.5.0_08\bin\jusched.exe"
O4 - HKLM\..\Run: [PinnacleDriverCheck] C:\WINDOWS\System32\PSDrvCheck.exe -CheckReg
O4 - HKLM\..\Run: [CaISSDT] "C:\Program Files\CA\eTrust Internet Security Suite\caissdt.exe"
O4 - HKLM\..\Run: [CaAvTray] "C:\Program Files\CA\eTrust Internet Security Suite\eTrust EZ Antivirus\CAVTray.exe"
O4 - HKLM\..\Run: [CAVRID] "C:\Program Files\CA\eTrust Internet Security Suite\eTrust EZ Antivirus\CAVRID.exe"
O4 - HKLM\..\Run: [!ewido] "C:\Program Files\ewido anti-spyware 4.0\ewido.exe" /minimized
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [1&1 EasyLogin] "C:\Program Files\1&1\1&1 EasyLogin\EasyLogin.exe" HIDE
O4 - Global Startup: Acrobat Assistant.lnk = C:\Program Files\Adobe\Acrobat 5.0\Distillr\AcroTray.exe
O4 - Global Startup: DING!.lnk = C:\Program Files\Southwest Airlines\Ding\Ding.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE
O4 - Global Startup: Sonic CinePlayer Quick Launch.lnk = ?
O8 - Extra context menu item: &Google Search - res://c:\program files\google\GoogleToolbar1.dll/cmsearch.html
O8 - Extra context menu item: &Translate English Word - res://c:\program files\google\GoogleToolbar1.dll/cmwordtrans.html
O8 - Extra context menu item: Backward Links - res://c:\program files\google\GoogleToolbar1.dll/cmbacklinks.html
O8 - Extra context menu item: Cached Snapshot of Page - res://c:\program files\google\GoogleToolbar1.dll/cmcache.html
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: Similar Pages - res://c:\program files\google\GoogleToolbar1.dll/cmsimilar.html
O8 - Extra context menu item: Translate Page into English - res://c:\program files\google\GoogleToolbar1.dll/cmtrans.html
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_08\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_08\bin\ssv.dll
O9 - Extra button: Create Mobile Favorite - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MICROS~4\inetrepl.dll
O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MICROS~4\inetrepl.dll
O9 - Extra 'Tools' menuitem: Create Mobile Favorite... - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MICROS~4\inetrepl.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: eBay - Homepage - {EF79EAC5-3452-4E02-B8BD-BA4C89F1AC7A} - C:\Program Files\IrfanView\Ebay\Ebay.htm
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O12 - Plugin for .spop: C:\Program Files\Internet Explorer\Plugins\NPDocBox.dll
O16 - DPF: {01111F00-3E00-11D2-8470-0060089874ED} (Support.com Installer) - http://supportsoft.adelphia.net/sdccommon/...ad/tgctlins.cab
O16 - DPF: {08BEF711-06DA-48B2-9534-802ECAA2E4F9} (PlxInstall Class) - https://www.plaxo.com/down/latest/PlaxoInstall.cab
O16 - DPF: {0D9633EB-D799-4626-B34E-FCC17AFA2BCF} (osi_valid.uCltValid10) - http://www.delmls.com/sus/valid/osi_valid9j.ocx
O16 - DPF: {106E49CF-797A-11D2-81A2-00E02C015623} (AlternaTIFF ActiveX) - http://www.alternatiff.com/install/00/alttiff.cab
O16 - DPF: {11260943-421B-11D0-8EAC-0000C07D88CF} (iPIX ActiveX Control) - http://www.ipix.com/viewers/ipixx.cab
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204
O16 - DPF: {2359626E-7524-4F87-B04E-22CD38A0C88C} (ICSScannerLight Class) - http://download.zonelabs.com/bin/free/cm/ICSCM_ca.cab
O16 - DPF: {30528230-99F7-4BB4-88D8-FA1D4F56A2AB} (YInstStarter Class) - C:\Program Files\Yahoo!\Common\yinsthelper.dll
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupdate/...b?1135980238843
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftupdat...b?1153782250265
O16 - DPF: {74FFE28D-2378-11D5-990C-006094235084} (IBM Access Support) - https://www.ibm.com/pc/support/access/sdcco...ad/IbmEgath.cab
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (ZoneIntro Class) - http://zone.msn.com/binFramework/v10/ZIntro.cab34246.cab
O16 - DPF: {C4847596-97

#4 OldTimer

OldTimer

    Malware Expert


  • Members
  • 11,092 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:North Carolina
  • Local time:05:02 AM

Posted 04 September 2006 - 08:20 AM

Hi keemje. It looks like the HijackThis log was cut off at the end. Can you please rerun the scan and post a new log.

Thanks.

OT
I do not respond to PM's requesting help. That's what the forums are here for. Please use them so that others may benefit from your questions and the responses you receive.
OldTimer

Posted Image

#5 keemje

keemje
  • Topic Starter

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:04:02 AM

Posted 04 September 2006 - 08:33 AM

Sorry about that.
Logfile of HijackThis v1.99.1
Scan saved at 10:21:59 PM, on 9/3/2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\System32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\brsvc01a.exe
C:\WINDOWS\System32\brss01a.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\CA\eTrust Internet Security Suite\eTrust EZ Antivirus\ISafe.exe
C:\Program Files\ewido anti-spyware 4.0\guard.exe
C:\Program Files\Linksys\Wireless-G Notebook Adapter\NICServ.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\System32\svchost.exe
C:\Program Files\CA\eTrust Internet Security Suite\eTrust EZ Antivirus\VetMsg.exe
C:\WINDOWS\htpatch.exe
C:\WINDOWS\System32\sistray.EXE
C:\WINDOWS\system32\pctspk.exe
C:\WINDOWS\system32\rundll32.exe
C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\Java\jre1.5.0_08\bin\jusched.exe
C:\Program Files\CA\eTrust Internet Security Suite\caissdt.exe
C:\Program Files\CA\eTrust Internet Security Suite\eTrust EZ Antivirus\CAVTray.exe
C:\Program Files\CA\eTrust Internet Security Suite\eTrust EZ Antivirus\CAVRID.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\1&1\1&1 EasyLogin\EasyLogin.exe
C:\Program Files\Adobe\Acrobat 5.0\Distillr\AcroTray.exe
C:\Program Files\Southwest Airlines\Ding\Ding.exe
C:\Program Files\Common Files\Sonic Shared\cinetray.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Documents and Settings\<my name>\My Documents\HiJackThis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.sorvive.com/loginmain.asp
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn2\yt.dll
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_08\bin\ssv.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn2\yt.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O4 - HKLM\..\Run: [HTpatch] C:\WINDOWS\htpatch.exe
O4 - HKLM\..\Run: [SiS Tray] C:\WINDOWS\System32\sistray.EXE
O4 - HKLM\..\Run: [PCTVOICE] pctspk.exe
O4 - HKLM\..\Run: [BluetoothAuthenticationAgent] rundll32.exe irprops.cpl,,BluetoothAuthenticationAgent
O4 - HKLM\..\Run: [SynTPLpr] C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.5.0_08\bin\jusched.exe"
O4 - HKLM\..\Run: [PinnacleDriverCheck] C:\WINDOWS\System32\PSDrvCheck.exe -CheckReg
O4 - HKLM\..\Run: [CaISSDT] "C:\Program Files\CA\eTrust Internet Security Suite\caissdt.exe"
O4 - HKLM\..\Run: [CaAvTray] "C:\Program Files\CA\eTrust Internet Security Suite\eTrust EZ Antivirus\CAVTray.exe"
O4 - HKLM\..\Run: [CAVRID] "C:\Program Files\CA\eTrust Internet Security Suite\eTrust EZ Antivirus\CAVRID.exe"
O4 - HKLM\..\Run: [!ewido] "C:\Program Files\ewido anti-spyware 4.0\ewido.exe" /minimized
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [1&1 EasyLogin] "C:\Program Files\1&1\1&1 EasyLogin\EasyLogin.exe" HIDE
O4 - Global Startup: Acrobat Assistant.lnk = C:\Program Files\Adobe\Acrobat 5.0\Distillr\AcroTray.exe
O4 - Global Startup: DING!.lnk = C:\Program Files\Southwest Airlines\Ding\Ding.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE
O4 - Global Startup: Sonic CinePlayer Quick Launch.lnk = ?
O8 - Extra context menu item: &Google Search - res://c:\program files\google\GoogleToolbar1.dll/cmsearch.html
O8 - Extra context menu item: &Translate English Word - res://c:\program files\google\GoogleToolbar1.dll/cmwordtrans.html
O8 - Extra context menu item: Backward Links - res://c:\program files\google\GoogleToolbar1.dll/cmbacklinks.html
O8 - Extra context menu item: Cached Snapshot of Page - res://c:\program files\google\GoogleToolbar1.dll/cmcache.html
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: Similar Pages - res://c:\program files\google\GoogleToolbar1.dll/cmsimilar.html
O8 - Extra context menu item: Translate Page into English - res://c:\program files\google\GoogleToolbar1.dll/cmtrans.html
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_08\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_08\bin\ssv.dll
O9 - Extra button: Create Mobile Favorite - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MICROS~4\inetrepl.dll
O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MICROS~4\inetrepl.dll
O9 - Extra 'Tools' menuitem: Create Mobile Favorite... - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MICROS~4\inetrepl.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: eBay - Homepage - {EF79EAC5-3452-4E02-B8BD-BA4C89F1AC7A} - C:\Program Files\IrfanView\Ebay\Ebay.htm
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O12 - Plugin for .spop: C:\Program Files\Internet Explorer\Plugins\NPDocBox.dll
O16 - DPF: {01111F00-3E00-11D2-8470-0060089874ED} (Support.com Installer) - http://supportsoft.adelphia.net/sdccommon/...ad/tgctlins.cab
O16 - DPF: {08BEF711-06DA-48B2-9534-802ECAA2E4F9} (PlxInstall Class) - https://www.plaxo.com/down/latest/PlaxoInstall.cab
O16 - DPF: {0D9633EB-D799-4626-B34E-FCC17AFA2BCF} (osi_valid.uCltValid10) - http://www.delmls.com/sus/valid/osi_valid9j.ocx
O16 - DPF: {106E49CF-797A-11D2-81A2-00E02C015623} (AlternaTIFF ActiveX) - http://www.alternatiff.com/install/00/alttiff.cab
O16 - DPF: {11260943-421B-11D0-8EAC-0000C07D88CF} (iPIX ActiveX Control) - http://www.ipix.com/viewers/ipixx.cab
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204
O16 - DPF: {2359626E-7524-4F87-B04E-22CD38A0C88C} (ICSScannerLight Class) - http://download.zonelabs.com/bin/free/cm/ICSCM_ca.cab
O16 - DPF: {30528230-99F7-4BB4-88D8-FA1D4F56A2AB} (YInstStarter Class) - C:\Program Files\Yahoo!\Common\yinsthelper.dll
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupdate/...b?1135980238843
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftupdat...b?1153782250265
O16 - DPF: {74FFE28D-2378-11D5-990C-006094235084} (IBM Access Support) - https://www.ibm.com/pc/support/access/sdcco...ad/IbmEgath.cab
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (ZoneIntro Class) - http://zone.msn.com/binFramework/v10/ZIntro.cab34246.cab
O16 - DPF: {C4847596-972C-11D0-9567-00A0C9273C2A} (Crystal Report Viewer Control) - https://www.sorvive.com/viewer/activeXViewe...tivexviewer.cab
O16 - DPF: {DF780F87-FF2B-4DF8-92D0-73DB16A1543A} - http://zone.msn.com/bingame/zuma/default/popcaploader_v6.cab
O16 - DPF: {ED28050F-D713-43BA-A376-DCC5C35407D5} (MsnMusicAx Class) - https://music.msn.com/client/msnmusax2729.cab
O20 - Winlogon Notify: Asr - C:\WINDOWS\system32\amaamon.dll (file missing)
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O23 - Service: BrSplService (Brother XP spl Service) - brother Industries Ltd - C:\WINDOWS\System32\brsvc01a.exe
O23 - Service: CAISafe - Computer Associates International, Inc. - C:\Program Files\CA\eTrust Internet Security Suite\eTrust EZ Antivirus\ISafe.exe
O23 - Service: ewido anti-spyware 4.0 guard - Anti-Malware Development a.s. - C:\Program Files\ewido anti-spyware 4.0\guard.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iPodService - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: MSSQL$MICROSOFTSMLBIZ - Unknown owner - C:\Program Files\Microsoft SQL Server\MSSQL$MICROSOFTSMLBIZ\Binn\sqlservr.exe" -sMICROSOFTSMLBIZ (file missing)
O23 - Service: NICSer_WPC54G - Unknown owner - C:\Program Files\Linksys\Wireless-G Notebook Adapter\NICServ.exe
O23 - Service: LiveShare P2P Server (RoxLiveShare) - Sonic Solutions - C:\Program Files\Common Files\Roxio Shared\SharedCOM8\RoxLiveShare.exe
O23 - Service: RoxUpnpRenderer (RoxUPnPRenderer) - Sonic Solutions - C:\Program Files\Common Files\Roxio Shared\SharedCom\RoxUpnpRenderer.exe
O23 - Service: RoxUpnpServer - Sonic Solutions - C:\Program Files\Roxio\Easy Media Creator 8\Digital Home\RoxUpnpServer.exe
O23 - Service: Roxio Hard Drive Watcher (RoxWatch) - Sonic Solutions - C:\Program Files\Common Files\Roxio Shared\SharedCOM8\RoxWatch.exe
O23 - Service: SQLAgent$MICROSOFTSMLBIZ - Unknown owner - C:\Program Files\Microsoft SQL Server\MSSQL$MICROSOFTSMLBIZ\Binn\sqlagent.EXE" -i MICROSOFTSMLBIZ (file missing)
O23 - Service: VET Message Service (VETMSGNT) - Computer Associates International, Inc. - C:\Program Files\CA\eTrust Internet Security Suite\eTrust EZ Antivirus\VetMsg.exe

#6 OldTimer

OldTimer

    Malware Expert


  • Members
  • 11,092 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:North Carolina
  • Local time:05:02 AM

Posted 04 September 2006 - 10:20 AM

Hi keemje. I only see a couple of minor items to fix so let's take care of those.

Start HijackThis and click the Scan button to perform a scan. Look for the following items and click in the checkbox in front of each item to select it:R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
O20 - Winlogon Notify: Asr - C:\WINDOWS\system32\amaamon.dll (file missing)

Now close ALL open windows except HijackThis and click the Fix Checked button to finish the repair and then reboot the machine.

Let's also clean out the temporary folders. Download and install ATF Cleaner by Atribune.
This program is for XP and Windows 2000 only
  • Double-click ATF-Cleaner.exe to run the program.
  • Under Main choose: Select All
  • Click the Empty Selected button.
If you use Firefox browser
  • Click Firefox at the top and choose: Select All
  • Click the Empty Selected button.
  • NOTE: If you would like to keep your saved passwords, please click No at the prompt.
If you use Opera browser
  • Click Opera at the top and choose: Select All
  • Click the Empty Selected button.
  • NOTE: If you would like to keep your saved passwords, please click No at the prompt.
Click Exit on the Main menu to close the program.
For Technical Support, double-click the e-mail address located at the bottom of each menu.

Other than that the log looks good.

Cheers.

OT
I do not respond to PM's requesting help. That's what the forums are here for. Please use them so that others may benefit from your questions and the responses you receive.
OldTimer

Posted Image

#7 keemje

keemje
  • Topic Starter

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:04:02 AM

Posted 04 September 2006 - 04:30 PM

Thanks a million. Is that ewido worth buying (better than Spybot)? Thanks again.

#8 OldTimer

OldTimer

    Malware Expert


  • Members
  • 11,092 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:North Carolina
  • Local time:05:02 AM

Posted 05 September 2006 - 05:04 PM

Hi keemje. Ewido is pretty good. The free version can be updated and used for running scans indefinitely. The only difference from the paid version is that the full-time guard is disabled. I just use it to run a scan once a month or so so I do not use the full-time guard anyway. It depends on your surfing habits (or the habits of others who use this computer). Ewido will probably find different things than Spybot because Spybot does not look for all of the malware that Ewido does. Both are good products.

I will now close this topic. If you have any new malware questions or issues in the future please start a new topic.

Cheers and happy computing!

OT
I do not respond to PM's requesting help. That's what the forums are here for. Please use them so that others may benefit from your questions and the responses you receive.
OldTimer

Posted Image




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users