Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Please Help And Take A Look At This Log


  • Please log in to reply
11 replies to this topic

#1 rosadom

rosadom

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Local time:08:48 PM

Posted 01 June 2007 - 09:52 PM

Hi,

My laptop has become almost unusable. It all happened when my laptop was without any anti antivirus for 2 days and in these 2 days I don’t know what happened my computer has become dead slow, internet explorer keeps opening new and new sites and my Norton internet security keeps popping up infostealer blocked, vundo blocked messages. Also after some time my laptop hangs and I have to switch it off to restart. My OS is windows XP home edition and i am using norton internet security.

Please take a look at my hijack this log and suggest, appreciate your help.

Thanks

****************************************************************************************************

Logfile of HijackThis v1.99.1
Scan saved at 10:46:49 PM, on 6/1/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16441)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Windows Defender\MsMpEng.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
C:\Program Files\Common Files\Symantec Shared\AppCore\AppSvc32.exe
C:\WINDOWS\system32\spoolsv.exe
C:\PROGRA~1\COMMON~1\AOL\ACS\acsd.exe
C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\wanmpsvc.exe
C:\WINDOWS\System32\WLTRYSVC.EXE
C:\WINDOWS\System32\bcmwltry.exe
C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\BCMSMMSG.exe
C:\Program Files\Apoint\Apoint.exe
C:\Program Files\Java\j2re1.4.2_03\bin\jusched.exe
C:\WINDOWS\system32\BacsTray.exe
C:\WINDOWS\system32\dla\tfswctrl.exe
C:\Program Files\Dell\Media Experience\PCMService.exe
C:\Program Files\CyberLink\PowerDVD\DVDLauncher.exe
C:\Program Files\Apoint\Apntex.exe
C:\Program Files\Dell\QuickSet\quickset.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\WINDOWS\system32\LVCOMSX.EXE
C:\Program Files\Logitech\Video\LogiTray.exe
C:\Program Files\Winamp\winampa.exe
C:\Program Files\Windows Defender\MSASCui.exe
C:\Program Files\Common Files\Symantec Shared\ccApp.exe
C:\Program Files\DellSupport\DSAgnt.exe
C:\Program Files\Google\Google Talk\googletalk.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe
C:\PROGRA~1\MI3AA1~1\wcescomm.exe
C:\PROGRA~1\MI3AA1~1\rapimgr.exe
C:\DOCUME~1\SATYEN~1\LOCALS~1\Temp\bwgo0018a711.exe
C:\Program Files\Logitech\Video\FxSvr2.exe
C:\Program Files\Yahoo!\Messenger\ymsgr_tray.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Microsoft Office\Office10\WINWORD.EXE
C:\Program Files\Hijackthis\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.dell4me.com/myway
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://securityresponse.symantec.com/avcenter/fix_homepage/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.yahoo.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://us.rd.yahoo.com/customize/ie/defaul...rch/search.html
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=566...k/?LinkId=69157
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://www.dell4me.com/myway
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)
O3 - Toolbar: FlashGet Bar - {E0E899AB-F487-11D5-8D29-0050BA6940E3} - C:\FlashGet\fgiebar.dll
O3 - Toolbar: ZeroBar - {F5735C15-1FB2-41FE-BA12-242757E69DDE} - C:\Program Files\NetZero\toolbar.dll
O3 - Toolbar: My Global Search Bar - {37B85A29-692B-4205-9CAD-2626E4993404} - C:\Program Files\MyGlobalSearch\bar\1.bin\MGSBAR.DLL
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar4.dll
O3 - Toolbar: Show Norton Toolbar - {90222687-F593-4738-B738-FBEE9C7B26DF} - C:\Program Files\Common Files\Symantec Shared\coShared\Browser\1.5\UIBHO.dll
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /installquiet
O4 - HKLM\..\Run: [BCMSMMSG] BCMSMMSG.exe
O4 - HKLM\..\Run: [Apoint] C:\Program Files\Apoint\Apoint.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\j2re1.4.2_03\bin\jusched.exe
O4 - HKLM\..\Run: [bacstray] BacsTray.exe
O4 - HKLM\..\Run: [dla] C:\WINDOWS\system32\dla\tfswctrl.exe
O4 - HKLM\..\Run: [UpdateManager] "C:\Program Files\Common Files\Sonic\Update Manager\sgtray.exe" /r
O4 - HKLM\..\Run: [PCMService] "C:\Program Files\Dell\Media Experience\PCMService.exe"
O4 - HKLM\..\Run: [DVDLauncher] "C:\Program Files\CyberLink\PowerDVD\DVDLauncher.exe"
O4 - HKLM\..\Run: [Dell QuickSet] C:\Program Files\Dell\QuickSet\quickset.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [LVCOMSX] C:\WINDOWS\system32\LVCOMSX.EXE
O4 - HKLM\..\Run: [LogitechVideoRepair] C:\Program Files\Logitech\Video\ISStart.exe
O4 - HKLM\..\Run: [LogitechVideoTray] C:\Program Files\Logitech\Video\LogiTray.exe
O4 - HKLM\..\Run: [WinampAgent] C:\Program Files\Winamp\winampa.exe
O4 - HKLM\..\Run: [Windows Defender] "C:\Program Files\Windows Defender\MSASCui.exe" -hide
O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Common Files\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [osCheck] "C:\Program Files\Norton Internet Security\osCheck.exe"
O4 - HKLM\..\Run: [Symantec PIF AlertEng] "C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe" /a /m "C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\AlertEng.dll"
O4 - HKLM\..\Run: [j8241737] rundll32 C:\WINDOWS\system32\j8241737.dll sook
O4 - HKLM\..\Run: [Genuine] rundll32.exe "C:\WINDOWS\system32\wbvbufku.dll",realset
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [Yahoo! Pager] "C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe" -quiet
O4 - HKCU\..\Run: [DellSupport] "C:\Program Files\DellSupport\DSAgnt.exe" /startup
O4 - HKCU\..\Run: [LogitechSoftwareUpdate] "C:\Program Files\Logitech\Video\ManifestEngine.exe" boot
O4 - HKCU\..\Run: [LDM] C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BackWeb-8876480.exe
O4 - HKCU\..\Run: [googletalk] "C:\Program Files\Google\Google Talk\googletalk.exe" /autostart
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [H/PC Connection Agent] "C:\PROGRA~1\MI3AA1~1\wcescomm.exe"
O4 - HKCU\..\Run: [MoneyAgent] "C:\Program Files\Microsoft Money\System\mnyexpr.exe"
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: America Online 9.0 Tray Icon.lnk = C:\Program Files\America Online 9.0\aoltray.exe
O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O8 - Extra context menu item: &Search - http://ka.bar.need2find.com/KA/menusearch.html?p=KA
O8 - Extra context menu item: Display All Images with Full Quality - "res://C:\Program Files\NetZero\qsacc\appres.dll/228"
O8 - Extra context menu item: Display Image with Full Quality - "res://C:\Program Files\NetZero\qsacc\appres.dll/227"
O8 - Extra context menu item: Download All by FlashGet - C:\FlashGet\jc_all.htm
O8 - Extra context menu item: Download using FlashGet - C:\FlashGet\jc_link.htm
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~4\Office10\EXCEL.EXE/3000
O8 - Extra context menu item: Yahoo! &SMS - file:///C:\Program Files\Yahoo!\Common/ycsms.htm
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\WINDOWS\system32\msjava.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\WINDOWS\system32\msjava.dll
O9 - Extra button: Create Mobile Favorite - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MI3AA1~1\INetRepl.dll
O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MI3AA1~1\INetRepl.dll
O9 - Extra 'Tools' menuitem: Create Mobile Favorite... - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MI3AA1~1\INetRepl.dll
O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\system32\Shdocvw.dll
O9 - Extra button: FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\FlashGet\flashget.exe
O9 - Extra 'Tools' menuitem: &FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\FlashGet\flashget.exe
O9 - Extra button: MUSICMATCH MX Web Player - {d81ca86b-ef63-42af-bee3-4502d9a03c2d} - http://wwws.musicmatch.com/mmz/openWebRadio.html (file missing)
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O11 - Options group: [INTERNATIONAL] International*
O16 - DPF: {0246ECA8-996F-11D1-BE2F-00A0C9037DFE} (TDServer Control) - http://www.bitstream.com/wfplayer/tdserver.cab
O16 - DPF: {0E5F0222-96B9-11D3-8997-00104BD12D94} (PCPitstop Utility) - http://www.pcpitstop.com/pcpitstop/PCPitStop.CAB
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:\Program Files\Yahoo!\Common\yinsthelper.dll
O16 - DPF: {3EA4FA88-E0BE-419A-A732-9B79B87A6ED0} (CTVUAxCtrl Object) - http://dl.tvunetworks.com/TVUAx.cab
O16 - DPF: {56393399-041A-4650-94C7-13DFCB1F4665} - http://www.my-etrust.com/Support/PestScanner/pestscan.cab
O16 - DPF: {5ED80217-570B-4DA9-BF44-BE107C0EC166} (Windows Live Safety Center Base Module) - http://cdn.scan.onecare.live.com/resource/...lscbase9602.cab
O16 - DPF: {640B39C1-D713-464F-92C3-75BD972B95EE} - http://www.sidestep.com/get/k42037/sb02a.cab
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftupdat...b?1149977597449
O16 - DPF: {95EEE69E-27B4-4D13-BD32-766617A16909} (NDTVVideo.MPlayer) - http://www.ndtv.com/video/NDTVseekvideo.CAB
O23 - Service: AOL Connectivity Service (AOL ACS) - America Online, Inc. - C:\PROGRA~1\COMMON~1\AOL\ACS\acsd.exe
O23 - Service: Automatic LiveUpdate Scheduler - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
O23 - Service: Symantec Event Manager (ccEvtMgr) - Unknown owner - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe" /h ccCommon (file missing)
O23 - Service: Symantec Settings Manager (ccSetMgr) - Unknown owner - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe" /h ccCommon (file missing)
O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Unknown owner - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe" /h cltCommon (file missing)
O23 - Service: COM Host (comHost) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\VAScanner\comHost.exe
O23 - Service: DSBrokerService - Unknown owner - C:\Program Files\DellSupport\brkrsvc.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Symantec IS Password Validation (ISPwdSvc) - Symantec Corporation - C:\Program Files\Norton Internet Security\isPwdSvc.exe
O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
O23 - Service: LiveUpdate Notice Service Ex (LiveUpdate Notice Ex) - Unknown owner - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe" /h ccCommon (file missing)
O23 - Service: LiveUpdate Notice Service - Unknown owner - C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe" /m "C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PifEng.dll (file missing)
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Symantec Core LC - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe
O23 - Service: Symantec AppCore Service (SymAppCore) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\AppCore\AppSvc32.exe
O23 - Service: WAN Miniport (ATW) Service (WANMiniportService) - America Online, Inc. - C:\WINDOWS\wanmpsvc.exe
O23 - Service: WLTRYSVC - Unknown owner - C:\WINDOWS\System32\WLTRYSVC.EXE

BC AdBot (Login to Remove)

 


#2 RichieUK

RichieUK

    Malware Assassin


  • Malware Response Team
  • 13,614 posts
  • OFFLINE
  •  
  • Local time:01:48 AM

Posted 02 June 2007 - 07:06 AM

Welcome to the BleepingComputer HijackThis Logs and Analysis forum rosadom :thumbsup:

My name is Richie and i'll be helping you to fix your problems.

Please download VundoFix.exe to your desktop.
Double-click VundoFix.exe to run it.
When VundoFix re-opens,click the "Scan for Vundo" button.
Once it's done scanning,click the "Remove Vundo" button.
You will receive a prompt asking if you want to remove the files, click "YES".
Once you click yes, your desktop will go blank as it starts removing Vundo.
When completed,it will prompt that it will reboot your computer,click "OK".
Post the contents of C:\vundofix.txt into your next reply.

Note:
It is possible that VundoFix encountered a file it could not remove.
In this case,VundoFix will run on reboot,simply follow the above instructions starting from "Click the Scan for Vundo button." when VundoFix appears at reboot.

*******************

Please download Combofix and save to your desktop:
http://download.bleepingcomputer.com/sUBs/Beta/ComboFix.exe
Note:
It is important that it is saved directly to your desktop

Close any open browsers.
Double click on combofix.exe and follow the prompts.
When it's finished it will produce a log.
Post the C:\ComboFix.txt into your next reply.
Note:
Do not mouseclick combofix's window whilst it's running.
That may cause the program to freeze/hang.


*******************

Now go to:
C:\Program Files\HijackThis\HijackThis.exe
Right click on Hijackthis.exe and select 'Rename', rename it to abc.bat
Double click on abc.bat(which is still Hijackthis.exe),post that log into your next reply please.
Posted Image
Posted Image

#3 rosadom

rosadom
  • Topic Starter

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Local time:08:48 PM

Posted 02 June 2007 - 11:31 AM

Thanks Richie.

below are the contents of my VundoFix.txt file, will post the hijack this log shortly.

Thanks again..





VundoFix V6.4.1

Checking Java version...

Java version is 1.4.2.3
Old versions of java are exploitable and should be removed.

Scan started at 12:06:14 PM 6/2/2007

Listing files found while scanning....

C:\WINDOWS\SYSTEM32\byxwvwu.dll
C:\WINDOWS\system32\vxwxx.bak1
C:\WINDOWS\system32\vxwxx.bak2
C:\WINDOWS\system32\vxwxx.ini
C:\WINDOWS\system32\vxwxx.ini2
C:\WINDOWS\system32\vxwxx.tmp
C:\WINDOWS\system32\xxwxv.dll

Beginning removal...

Attempting to delete C:\WINDOWS\SYSTEM32\byxwvwu.dll
C:\WINDOWS\SYSTEM32\byxwvwu.dll Could not be deleted.

Attempting to delete C:\WINDOWS\system32\vxwxx.bak1
C:\WINDOWS\system32\vxwxx.bak1 Has been deleted!

Attempting to delete C:\WINDOWS\system32\vxwxx.bak2
C:\WINDOWS\system32\vxwxx.bak2 Has been deleted!

Attempting to delete C:\WINDOWS\system32\vxwxx.ini
C:\WINDOWS\system32\vxwxx.ini Has been deleted!

Attempting to delete C:\WINDOWS\system32\vxwxx.ini2
C:\WINDOWS\system32\vxwxx.ini2 Has been deleted!

Attempting to delete C:\WINDOWS\system32\vxwxx.tmp
C:\WINDOWS\system32\vxwxx.tmp Has been deleted!

Attempting to delete C:\WINDOWS\system32\xxwxv.dll
C:\WINDOWS\system32\xxwxv.dll Has been deleted!

Performing Repairs to the registry.
Done!

Beginning removal...

Attempting to delete C:\WINDOWS\SYSTEM32\byxwvwu.dll
C:\WINDOWS\SYSTEM32\byxwvwu.dll Has been deleted!

Performing Repairs to the registry.
Done!

#4 rosadom

rosadom
  • Topic Starter

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Local time:08:48 PM

Posted 02 June 2007 - 11:36 AM

"rosado" - 2007-06-02 12:36:59 Service Pack 2 NTFS
ComboFix 07-06-2.5.Ex - Running from: "C:\Documents and Settings\satyendra\Desktop\"


(((((((((((((((((((((((((((((((((((((((((((( V Log )))))))))))))))))))))))))))))))))))))))))))))))))))))))


C:\WINDOWS\system32\mwwlsubt.dll


* * * POST RUN FILES/FOLDERS * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * *


((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))



-- Purity Folders:
C:\DOCUME~1\SATYEN~1\APPLIC~1.\macromedia\Flash Player\#SharedObjects\6SW6AZSL\www.broadcaster.com
C:\DOCUME~1\SATYEN~1\APPLIC~1.\macromedia\Flash Player\macromedia.com\support\flashplayer\sys\#www.broadcaster.com
C:\DOCUME~1\SATYEN~1\APPLIC~1.\macromedia\Flash Player\macromedia.com\support\flashplayer\sys\#www.broadcaster.com\settings.sol
C:\DOCUME~1\SATYEN~1\APPLIC~1\MCROSO~1
C:\DOCUME~1\SATYEN~1\MYDOCU~1\MCROSO~1
C:\install.log
C:\Program Files\Common Files\Yazzle1281OinUninstaller.exe
C:\Temp\17O7
C:\Temp\17O7\tmpTF.log
C:\Temp\tn3
C:\WINDOWS\DOWNLO~1.\Quarantine
C:\WINDOWS\DOWNLO~1.\Quarantine\ppqdb.dat
C:\WINDOWS\DOWNLO~1.\Quarantine\ppqsdb.dat
C:\WINDOWS\FNTS~1
C:\WINDOWS\MCROSO~1
C:\WINDOWS\system32\drivers\fad.sys
C:\WINDOWS\SYSTEM32\PPPATC~1
C:\WINDOWS\SYSTEM32\SEMBLY~1
C:\WINDOWS\SYSTEM32\YMANTE~1


((((((((((((((((((((((((( Files Created from 2007-05-02 to 2007-06-02 )))))))))))))))))))))))))))))))


2007-06-02 12:06 <DIR> d-------- C:\VundoFix Backups
2007-06-02 11:38 2,580 --a------ C:\WINDOWS\SYSTEM32\etbrknqb.exe
2007-06-01 23:27 2,580 --a------ C:\WINDOWS\SYSTEM32\oyhubbil.exe
2007-06-01 19:27 2,580 --a------ C:\WINDOWS\SYSTEM32\qikjyoui.exe
2007-06-01 18:24 2,580 --a------ C:\WINDOWS\SYSTEM32\urqlgsao.exe
2007-06-01 13:26 131,124 --a------ C:\WINDOWS\SYSTEM32\wbvbufku.dll
2007-06-01 10:39 14,868 --a------ C:\WINDOWS\SYSTEM32\eparywod.exe
2007-06-01 10:39 10,752 --a------ C:\WINDOWS\SYSTEM32\j8241737.dll
2007-05-31 19:43 <DIR> d-------- C:\hijackthis
2007-05-27 10:27 72,192 --a------ C:\WINDOWS\SYSTEM32\zlib.dll
2007-05-27 10:27 25,088 --a------ C:\WINDOWS\SYSTEM32\msxml3a.dll
2007-05-27 00:48 <DIR> d-------- C:\WINDOWS\SYSTEM32\T1QaSQ
2007-05-27 00:48 <DIR> d-------- C:\Temp\0b9
2007-05-26 22:24 <DIR> d-------- C:\WINDOWS\SYSTEM32\AdCache
2007-05-17 08:39 22,112 -ra------ C:\WINDOWS\SYSTEM32\DRIVERS\COH_Mon.sys
2007-05-15 19:43 <DIR> d-------- C:\Program Files\Norton Internet Security
2007-05-15 19:40 48,776 --a------ C:\WINDOWS\SYSTEM32\S32EVNT1.DLL
2007-05-15 19:40 115,000 --a------ C:\WINDOWS\SYSTEM32\DRIVERS\SYMEVENT.SYS
2007-05-15 19:39 <DIR> d-------- C:\Program Files\Symantec
2007-05-11 21:47 <DIR> d-------- C:\Program Files\Common Files\Scanner
2007-05-08 21:41 <DIR> d-------- C:\Program Files\Microsoft CAPICOM 2.1.0.2
2007-05-07 08:02 <DIR> d-------- C:\WINDOWS\zwiq
2007-05-07 08:02 <DIR> d-------- C:\Program Files\Common Files\zwiq
2007-05-06 17:55 <DIR> d-------- C:\{000043E5-0000-0000-D133-0EDB6191F12C}
2007-05-06 17:55 <DIR> d-------- C:\{000043C0-0000-0000-EDF1-65AC4D6EDDCC}
2007-05-06 11:19 <DIR> d-------- C:\{80005DCA-0000-0000-7091-E11A01D02FC6}
2007-05-05 11:51 <DIR> d-------- C:\{80005DCA-0000-0000-AEC3-C5F680ABC837}
2007-05-05 09:40 <DIR> d-------- C:\Program Files\Dell Support
2007-05-05 09:40 <DIR> d-------- C:\DOCUME~1\ADMINI~1.SAT\APPLIC~1\AdobeUM


(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))

2007-06-01 22:30:04 -------- d-----w C:\Program Files\Common Files\Symantec Shared
2007-05-28 15:37:14 -------- d-----w C:\Program Files\WordPerfect Office 12
2007-05-28 15:37:13 -------- d-----w C:\Program Files\Windows Live Safety Center
2007-05-28 15:36:58 -------- d-----w C:\Program Files\NetZero
2007-05-28 15:36:02 -------- d-----w C:\Program Files\Modem Helper
2007-05-28 15:35:53 -------- d-----w C:\Program Files\Kazaa
2007-05-28 15:35:18 -------- d-----w C:\Program Files\ICOO Loader
2007-05-28 15:35:17 -------- d-----w C:\Program Files\EditPlus 2
2007-05-28 15:35:16 -------- d-----w C:\Program Files\DivX
2007-05-28 15:34:56 -------- d-----w C:\Program Files\America Online 9.0
2007-05-15 23:27:02 -------- d-----w C:\Program Files\Yahoo!
2007-05-15 23:22:43 -------- d-----w C:\Program Files\Kodak
2007-05-12 15:05:35 -------- d-----w C:\Program Files\Winamp
2007-05-07 12:15:47 -------- d--h--w C:\DOCUME~1\SATYEN~1\APPLIC~1\GTek
2007-05-07 12:14:49 -------- d-----w C:\Program Files\DellSupport
2007-04-29 05:26:50 -------- d-----w C:\Program Files\Dealio
2007-04-29 05:26:10 1,400,082 --sh--w C:\WINDOWS\system32\ttuvw.ini2
2007-04-29 05:09:57 1,399,855 --sh--w C:\WINDOWS\system32\ttuvw.bak1
2007-04-18 16:12:23 2,854,400 ----a-w C:\WINDOWS\system32\msi.dll
2007-04-17 02:47:36 33,624 ----a-w C:\WINDOWS\system32\wups.dll
2007-04-17 02:45:54 1,710,936 ----a-w C:\WINDOWS\system32\wuaueng.dll
2007-04-17 02:45:48 549,720 ----a-w C:\WINDOWS\system32\wuapi.dll
2007-04-17 02:45:42 325,976 ----a-w C:\WINDOWS\system32\wucltui.dll
2007-04-17 02:45:36 203,096 ----a-w C:\WINDOWS\system32\wuweb.dll
2007-04-17 02:45:28 92,504 ----a-w C:\WINDOWS\system32\cdm.dll
2007-04-17 02:45:20 53,080 ----a-w C:\WINDOWS\system32\wuauclt.exe
2007-04-17 02:45:20 43,352 ----a-w C:\WINDOWS\system32\wups2.dll
2007-04-17 02:44:20 271,224 ----a-w C:\WINDOWS\system32\mucltui.dll
2007-04-17 02:44:18 208,248 ----a-w C:\WINDOWS\system32\muweb.dll
2007-03-22 00:39:00 1,060,864 ----a-w C:\WINDOWS\system32\MFC71.DLL
2007-03-22 00:33:00 503,808 ----a-w C:\WINDOWS\system32\MSVCP71.DLL
2007-03-22 00:33:00 348,160 ----a-w C:\WINDOWS\system32\MSVCR71.DLL
2007-03-17 13:43:01 292,864 ----a-w C:\WINDOWS\system32\winsrv.dll
2007-03-17 13:43:01 292,864 ----a-w C:\WINDOWS\system32\winsrv(2).dll
2007-03-15 22:16:42 236,928 ----a-w C:\WINDOWS\system32\WgaLogon(2).dll
2007-03-08 15:36:28 577,536 ----a-w C:\WINDOWS\system32\user32.dll
2007-03-08 15:36:28 577,536 ----a-w C:\WINDOWS\system32\user32(2).dll
2007-03-08 15:36:28 40,960 ----a-w C:\WINDOWS\system32\mf3216.dll
2007-03-08 15:36:28 281,600 ----a-w C:\WINDOWS\system32\gdi32.dll
2007-03-08 15:36:28 281,600 ----a-w C:\WINDOWS\system32\gdi32(2).dll
2007-03-08 13:47:48 1,843,584 ----a-w C:\WINDOWS\system32\win32k.sys
2007-03-08 13:47:48 1,843,584 ----a-w C:\WINDOWS\system32\win32k(2).sys
2005-02-12 05:33:38 56 --sh--r C:\WINDOWS\SYSTEM32\0395E1E015.sys


((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))


*Note* empty entries & legit default entries are not shown

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects]
{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}=C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll [2006-01-12 20:38]
{1E8A6170-7264-4D0F-BEAE-D42A53123C75}=C:\Program Files\Common Files\Symantec Shared\coShared\Browser\1.5\NppBho.dll [2007-01-12 03:04]
{37B85A21-692B-4205-9CAD-2626E4993404}=C:\Program Files\MyGlobalSearch\bar\1.bin\MGSBAR.DLL [2006-08-17 19:12]
{52706EF7-D7A2-49AD-A615-E903858CF284}=C:\Program Files\NetZero\qsacc\x1IEBHO.dll [2004-02-05 18:26]
{5CA3D70E-1895-11CF-8E15-001234567890}=C:\WINDOWS\system32\dla\tfswshx.dll [2004-03-15 02:04]
{A5366673-E8CA-11D3-9CD9-0090271D075B}=C:\FlashGet\jccatch.dll [2002-01-16 20:12]
{A5D06FE3-F170-45C6-A8C9-5FBAD085EAE5}=C:\WINDOWS\system32\xxwxv.dll []
{AA58ED58-01DD-4d91-8333-CF10577473F7}=c:\program files\google\googletoolbar4.dll [2007-01-20 00:55]
{CA2CFBDE-0F94-491B-9286-00C60C553954}=C:\WINDOWS\system32\byxwvwu.dll []

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"nwiz"="nwiz.exe" [2004-10-26 13:01 C:\WINDOWS\SYSTEM32\nwiz.exe]
"BCMSMMSG"="BCMSMMSG.exe" []
"Apoint"="C:\Program Files\Apoint\Apoint.exe" [2004-02-02 16:32]
"SunJavaUpdateSched"="C:\Program Files\Java\j2re1.4.2_03\bin\jusched.exe" [2003-11-19 18:48]
"bacstray"="BacsTray.exe" [2003-05-14 19:37 C:\WINDOWS\SYSTEM32\BacsTray.exe]
"UpdateManager"="C:\Program Files\Common Files\Sonic\Update Manager\sgtray.exe" [2003-08-19 02:01]
"PCMService"="C:\Program Files\Dell\Media Experience\PCMService.exe" [2004-04-11 21:15]
"DVDLauncher"="C:\Program Files\CyberLink\PowerDVD\DVDLauncher.exe" [2004-04-11 12:43]
"Dell QuickSet"="C:\Program Files\Dell\QuickSet\quickset.exe" [2004-05-16 21:18]
"QuickTime Task"="C:\Program Files\QuickTime\qttask.exe" [2005-01-12 23:45]
"TkBellExe"="C:\Program Files\Common Files\Real\Update_OB\realsched.exe" [2005-02-27 14:43]
"LogitechVideoRepair"="C:\Program Files\Logitech\Video\ISStart.exe" [2005-01-18 17:47]
"LogitechVideoTray"="C:\Program Files\Logitech\Video\LogiTray.exe" [2005-01-18 17:37]
"WinampAgent"="C:\Program Files\Winamp\winampa.exe" [2006-06-21 13:14]
"Windows Defender"="C:\Program Files\Windows Defender\MSASCui.exe" [2006-11-03 19:20]
"ccApp"="C:\Program Files\Common Files\Symantec Shared\ccApp.exe" [2007-01-10 01:59]
"osCheck"="C:\Program Files\Norton Internet Security\osCheck.exe" [2007-01-14 03:11]
"Symantec PIF AlertEng"="C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe" [2007-03-12 18:30]

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"MSMSGS"="C:\Program Files\Messenger\msmsgs.exe" [2004-10-13 12:24]
"Yahoo! Pager"="C:\PROGRA~1\Yahoo!\MESSEN~1\YAHOOM~1.exe" [2007-03-01 18:11]
"DellSupport"="C:\Program Files\DellSupport\DSAgnt.exe" [2007-03-15 11:09]
"LogitechSoftwareUpdate"="C:\Program Files\Logitech\Video\ManifestEngine.exe" [2005-01-18 17:07]
"LDM"="C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BackWeb-8876480.exe" [2005-10-04 18:59]
"googletalk"="C:\Program Files\Google\Google Talk\googletalk.exe" [2007-01-01 17:22]
"ctfmon.exe"="C:\WINDOWS\system32\ctfmon.exe" [2004-08-04 06:00]
"swg"="C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe" [2007-01-31 19:49]
"H/PC Connection Agent"="C:\PROGRA~1\MI3AA1~1\wcescomm.exe" [2006-06-20 22:36]
"MoneyAgent"="C:\Program Files\Microsoft Money\System\mnyexpr.exe" [2003-06-18 13:00]
"@"="" []

[HKEY_USERS\.default\software\microsoft\windows\currentversion\run]
"DWQueuedReporting"="C:\PROGRA~1\COMMON~1\MICROS~1\DW\dwtrig20.exe" -t

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{CA2CFBDE-0F94-491B-9286-00C60C553954}"="C:\WINDOWS\system32\byxwvwu.dll" []

HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost *netsvcs*

*Newly Created Service* - COMHOST

Contents of the 'Scheduled Tasks' folder
2007-06-02 16:23:15 C:\WINDOWS\tasks\MP Scheduled Scan.job

**************************************************************************

catchme 0.3.692 W2K/XP/Vista - userland rootkit detector by Gmer, http://www.gmer.net
Rootkit scan 2007-06-02 12:45:44
Windows 5.1.2600 Service Pack 2 NTFS

scanning hidden processes ...

scanning hidden autostart entries ...

scanning hidden files ...

scan completed successfully
hidden files: 0

**************************************************************************

Completion time: 2007-06-02 12:46:32
C:\ComboFix-quarantined-files.txt ... 2007-06-02 12:46

--- E O F ---

Edited by rosadom, 02 June 2007 - 11:54 AM.


#5 rosadom

rosadom
  • Topic Starter

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Local time:08:48 PM

Posted 02 June 2007 - 11:57 AM

Hi,

hijackthis log after running vundofix and combofix, thanks.

*********************************************************



Logfile of HijackThis v1.99.1
Scan saved at 12:51:58 PM, on 6/2/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16441)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Windows Defender\MsMpEng.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
C:\Program Files\Common Files\Symantec Shared\AppCore\AppSvc32.exe
C:\WINDOWS\system32\spoolsv.exe
C:\PROGRA~1\COMMON~1\AOL\ACS\acsd.exe
C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\wanmpsvc.exe
C:\WINDOWS\System32\WLTRYSVC.EXE
C:\WINDOWS\System32\bcmwltry.exe
C:\WINDOWS\BCMSMMSG.exe
C:\Program Files\Apoint\Apoint.exe
C:\Program Files\Java\j2re1.4.2_03\bin\jusched.exe
C:\WINDOWS\system32\BacsTray.exe
C:\WINDOWS\system32\dla\tfswctrl.exe
C:\Program Files\Dell\Media Experience\PCMService.exe
C:\Program Files\CyberLink\PowerDVD\DVDLauncher.exe
C:\Program Files\Apoint\Apntex.exe
C:\Program Files\Dell\QuickSet\quickset.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\WINDOWS\system32\LVCOMSX.EXE
C:\Program Files\Logitech\Video\LogiTray.exe
C:\Program Files\Winamp\winampa.exe
C:\Program Files\Windows Defender\MSASCui.exe
C:\Program Files\Common Files\Symantec Shared\ccApp.exe
C:\Program Files\DellSupport\DSAgnt.exe
C:\Program Files\Google\Google Talk\googletalk.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe
C:\PROGRA~1\MI3AA1~1\wcescomm.exe
C:\PROGRA~1\MI3AA1~1\rapimgr.exe
C:\DOCUME~1\SATYEN~1\LOCALS~1\Temp\bwgo0003b4bf.exe
C:\PROGRA~1\Yahoo!\MESSEN~1\ymsgr_tray.exe
C:\Program Files\Logitech\Video\FxSvr2.exe
C:\WINDOWS\explorer.exe
C:\Program Files\Hijackthis\abc.dat.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://securityresponse.symantec.com/avcenter/fix_homepage/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.yahoo.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://us.rd.yahoo.com/customize/ie/defaul...rch/search.html
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://www.dell4me.com/myway
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {1E8A6170-7264-4D0F-BEAE-D42A53123C75} - C:\Program Files\Common Files\Symantec Shared\coShared\Browser\1.5\NppBho.dll
O2 - BHO: My Global Search Bar BHO - {37B85A21-692B-4205-9CAD-2626E4993404} - C:\Program Files\MyGlobalSearch\bar\1.bin\MGSBAR.DLL
O2 - BHO: X1IEHook Class - {52706EF7-D7A2-49AD-A615-E903858CF284} - C:\Program Files\NetZero\qsacc\x1IEBHO.dll
O2 - BHO: (no name) - {549B5CA7-4A86-11D7-A4DF-000874180BB3} - (no file)
O2 - BHO: (no name) - {5C8B2A36-3DB1-42A4-A3CB-D426709BBFEB} - (no file)
O2 - BHO: DriveLetterAccess - {5CA3D70E-1895-11CF-8E15-001234567890} - C:\WINDOWS\system32\dla\tfswshx.dll
O2 - BHO: (no name) - {62B2AE35-61F1-4927-A34B-67E34AEFF9B8} - (no file)
O2 - BHO: IeCatch2 Class - {A5366673-E8CA-11D3-9CD9-0090271D075B} - C:\FlashGet\jccatch.dll
O2 - BHO: (no name) - {A5D06FE3-F170-45C6-A8C9-5FBAD085EAE5} - C:\WINDOWS\system32\xxwxv.dll (file missing)
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar4.dll
O2 - BHO: (no name) - {CA2CFBDE-0F94-491B-9286-00C60C553954} - C:\WINDOWS\system32\byxwvwu.dll (file missing)
O2 - BHO: (no name) - {FDD3B846-8D59-4ffb-8758-209B6AD74ACC} - (no file)
O3 - Toolbar: FlashGet Bar - {E0E899AB-F487-11D5-8D29-0050BA6940E3} - C:\FlashGet\fgiebar.dll
O3 - Toolbar: ZeroBar - {F5735C15-1FB2-41FE-BA12-242757E69DDE} - C:\Program Files\NetZero\toolbar.dll
O3 - Toolbar: My Global Search Bar - {37B85A29-692B-4205-9CAD-2626E4993404} - C:\Program Files\MyGlobalSearch\bar\1.bin\MGSBAR.DLL
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar4.dll
O3 - Toolbar: Show Norton Toolbar - {90222687-F593-4738-B738-FBEE9C7B26DF} - C:\Program Files\Common Files\Symantec Shared\coShared\Browser\1.5\UIBHO.dll
O4 - HKLM\..\Run: [nwiz] nwiz.exe /installquiet
O4 - HKLM\..\Run: [BCMSMMSG] BCMSMMSG.exe
O4 - HKLM\..\Run: [Apoint] C:\Program Files\Apoint\Apoint.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\j2re1.4.2_03\bin\jusched.exe
O4 - HKLM\..\Run: [bacstray] BacsTray.exe
O4 - HKLM\..\Run: [UpdateManager] "C:\Program Files\Common Files\Sonic\Update Manager\sgtray.exe" /r
O4 - HKLM\..\Run: [PCMService] "C:\Program Files\Dell\Media Experience\PCMService.exe"
O4 - HKLM\..\Run: [DVDLauncher] "C:\Program Files\CyberLink\PowerDVD\DVDLauncher.exe"
O4 - HKLM\..\Run: [Dell QuickSet] C:\Program Files\Dell\QuickSet\quickset.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [LogitechVideoRepair] C:\Program Files\Logitech\Video\ISStart.exe
O4 - HKLM\..\Run: [LogitechVideoTray] C:\Program Files\Logitech\Video\LogiTray.exe
O4 - HKLM\..\Run: [WinampAgent] C:\Program Files\Winamp\winampa.exe
O4 - HKLM\..\Run: [Windows Defender] "C:\Program Files\Windows Defender\MSASCui.exe" -hide
O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Common Files\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [osCheck] "C:\Program Files\Norton Internet Security\osCheck.exe"
O4 - HKLM\..\Run: [Symantec PIF AlertEng] "C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe" /a /m "C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\AlertEng.dll"
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [Yahoo! Pager] "C:\PROGRA~1\Yahoo!\MESSEN~1\YAHOOM~1.EXE" -quiet
O4 - HKCU\..\Run: [DellSupport] "C:\Program Files\DellSupport\DSAgnt.exe" /startup
O4 - HKCU\..\Run: [LogitechSoftwareUpdate] "C:\Program Files\Logitech\Video\ManifestEngine.exe" boot
O4 - HKCU\..\Run: [LDM] C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BackWeb-8876480.exe
O4 - HKCU\..\Run: [googletalk] "C:\Program Files\Google\Google Talk\googletalk.exe" /autostart
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [H/PC Connection Agent] "C:\PROGRA~1\MI3AA1~1\wcescomm.exe"
O4 - HKCU\..\Run: [MoneyAgent] "C:\Program Files\Microsoft Money\System\mnyexpr.exe"
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: America Online 9.0 Tray Icon.lnk = C:\Program Files\America Online 9.0\aoltray.exe
O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O8 - Extra context menu item: &Search - http://ka.bar.need2find.com/KA/menusearch.html?p=KA
O8 - Extra context menu item: Display All Images with Full Quality - "res://C:\Program Files\NetZero\qsacc\appres.dll/228"
O8 - Extra context menu item: Display Image with Full Quality - "res://C:\Program Files\NetZero\qsacc\appres.dll/227"
O8 - Extra context menu item: Download All by FlashGet - C:\FlashGet\jc_all.htm
O8 - Extra context menu item: Download using FlashGet - C:\FlashGet\jc_link.htm
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~4\Office10\EXCEL.EXE/3000
O8 - Extra context menu item: Yahoo! &SMS - file:///C:\Program Files\Yahoo!\Common/ycsms.htm
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\WINDOWS\system32\msjava.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\WINDOWS\system32\msjava.dll
O9 - Extra button: Create Mobile Favorite - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MI3AA1~1\INetRepl.dll
O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MI3AA1~1\INetRepl.dll
O9 - Extra 'Tools' menuitem: Create Mobile Favorite... - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MI3AA1~1\INetRepl.dll
O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\system32\Shdocvw.dll
O9 - Extra button: FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\FlashGet\flashget.exe
O9 - Extra 'Tools' menuitem: &FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\FlashGet\flashget.exe
O9 - Extra button: MUSICMATCH MX Web Player - {d81ca86b-ef63-42af-bee3-4502d9a03c2d} - http://wwws.musicmatch.com/mmz/openWebRadio.html (file missing)
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O11 - Options group: [INTERNATIONAL] International*
O16 - DPF: {0246ECA8-996F-11D1-BE2F-00A0C9037DFE} (TDServer Control) - http://www.bitstream.com/wfplayer/tdserver.cab
O16 - DPF: {0E5F0222-96B9-11D3-8997-00104BD12D94} (PCPitstop Utility) - http://www.pcpitstop.com/pcpitstop/PCPitStop.CAB
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:\Program Files\Yahoo!\Common\yinsthelper.dll
O16 - DPF: {3EA4FA88-E0BE-419A-A732-9B79B87A6ED0} (CTVUAxCtrl Object) - http://dl.tvunetworks.com/TVUAx.cab
O16 - DPF: {56393399-041A-4650-94C7-13DFCB1F4665} - http://www.my-etrust.com/Support/PestScanner/pestscan.cab
O16 - DPF: {5ED80217-570B-4DA9-BF44-BE107C0EC166} (Windows Live Safety Center Base Module) - http://cdn.scan.onecare.live.com/resource/...lscbase9602.cab
O16 - DPF: {640B39C1-D713-464F-92C3-75BD972B95EE} - http://www.sidestep.com/get/k42037/sb02a.cab
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftupdat...b?1149977597449
O16 - DPF: {95EEE69E-27B4-4D13-BD32-766617A16909} (NDTVVideo.MPlayer) - http://www.ndtv.com/video/NDTVseekvideo.CAB
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O23 - Service: AOL Connectivity Service (AOL ACS) - America Online, Inc. - C:\PROGRA~1\COMMON~1\AOL\ACS\acsd.exe
O23 - Service: Automatic LiveUpdate Scheduler - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
O23 - Service: Symantec Event Manager (ccEvtMgr) - Unknown owner - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe" /h ccCommon (file missing)
O23 - Service: Symantec Settings Manager (ccSetMgr) - Unknown owner - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe" /h ccCommon (file missing)
O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Unknown owner - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe" /h cltCommon (file missing)
O23 - Service: COM Host (comHost) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\VAScanner\comHost.exe
O23 - Service: DSBrokerService - Unknown owner - C:\Program Files\DellSupport\brkrsvc.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Symantec IS Password Validation (ISPwdSvc) - Symantec Corporation - C:\Program Files\Norton Internet Security\isPwdSvc.exe
O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
O23 - Service: LiveUpdate Notice Service Ex (LiveUpdate Notice Ex) - Unknown owner - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe" /h ccCommon (file missing)
O23 - Service: LiveUpdate Notice Service - Unknown owner - C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe" /m "C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PifEng.dll (file missing)
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Symantec Core LC - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe
O23 - Service: Symantec AppCore Service (SymAppCore) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\AppCore\AppSvc32.exe
O23 - Service: WAN Miniport (ATW) Service (WANMiniportService) - America Online, Inc. - C:\WINDOWS\wanmpsvc.exe
O23 - Service: WLTRYSVC - Unknown owner - C:\WINDOWS\System32\WLTRYSVC.EXE

#6 RichieUK

RichieUK

    Malware Assassin


  • Malware Response Team
  • 13,614 posts
  • OFFLINE
  •  
  • Local time:01:48 AM

Posted 02 June 2007 - 12:22 PM

Click on Start/Control Panel/Add or Remove Programs and remove/uninstall MyGlobalSearch if present,then restart your pc.

******************************

Download Avenger from the link below:
http://swandog46.geekstogo.com/avenger.zip
Unzip/extract it to your desktop.

Start up Avenger.
Check the 'Input script manually' option.
Click the Magnifying Glass icon.
In the box that opens,copy and paste ALL the following bold blue text in the Quote box below:

Files to delete:
C:\WINDOWS\SYSTEM32\etbrknqb.exe
C:\WINDOWS\SYSTEM32\oyhubbil.exe
C:\WINDOWS\SYSTEM32\qikjyoui.exe
C:\WINDOWS\SYSTEM32\urqlgsao.exe
C:\WINDOWS\SYSTEM32\wbvbufku.dll
C:\WINDOWS\SYSTEM32\eparywod.exe
C:\WINDOWS\SYSTEM32\j8241737.dll
C:\WINDOWS\system32\ttuvw.ini2
C:\WINDOWS\system32\ttuvw.bak1
C:\DOCUME~1\SATYEN~1\LOCALS~1\Temp\bwgo0003b4bf.exe

Folders to delete:
C:\WINDOWS\SYSTEM32\T1QaSQ
C:\Temp\0b9
C:\Program Files\MyGlobalSearch

Then click on 'Done'.
Click the Traffic Light icon to start the program.
Then press OK at the prompts to reboot your PC.

Post the Avenger output.txt, which you can find at C:\Avenger\.txt into your next reply.
Also post a new Hijackthis log please.

Posted Image
Posted Image

#7 rosadom

rosadom
  • Topic Starter

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Local time:08:48 PM

Posted 02 June 2007 - 11:12 PM

Logfile of The Avenger version 1, by Swandog46
Running from registry key:
\Registry\Machine\System\CurrentControlSet\Services\inydvrgy

*******************

Script file located at: \??\C:\WINDOWS\wgyjheje.txt
Script file opened successfully.

Script file read successfully

Backups directory opened successfully at C:\Avenger

*******************

Beginning to process script file:

File C:\WINDOWS\SYSTEM32\etbrknqb.exe deleted successfully.
File C:\WINDOWS\SYSTEM32\oyhubbil.exe deleted successfully.
File C:\WINDOWS\SYSTEM32\qikjyoui.exe deleted successfully.
File C:\WINDOWS\SYSTEM32\urqlgsao.exe deleted successfully.
File C:\WINDOWS\SYSTEM32\wbvbufku.dll deleted successfully.
File C:\WINDOWS\SYSTEM32\eparywod.exe deleted successfully.
File C:\WINDOWS\SYSTEM32\j8241737.dll deleted successfully.
File C:\WINDOWS\system32\ttuvw.ini2 deleted successfully.
File C:\WINDOWS\system32\ttuvw.bak1 deleted successfully.
File C:\DOCUME~1\SATYEN~1\LOCALS~1\Temp\bwgo0003b4bf.exe deleted successfully.
Folder C:\WINDOWS\SYSTEM32\T1QaSQ deleted successfully.
Folder C:\Temp\0b9 deleted successfully.
Folder C:\Program Files\MyGlobalSearch deleted successfully.

Completed script processing.

*******************

Finished! Terminate.

#8 rosadom

rosadom
  • Topic Starter

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Local time:08:48 PM

Posted 02 June 2007 - 11:13 PM

Logfile of HijackThis v1.99.1
Scan saved at 12:09:16 AM, on 6/3/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16441)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Windows Defender\MsMpEng.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
C:\Program Files\Common Files\Symantec Shared\AppCore\AppSvc32.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\PROGRA~1\COMMON~1\AOL\ACS\acsd.exe
C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\wanmpsvc.exe
C:\WINDOWS\System32\WLTRYSVC.EXE
C:\WINDOWS\System32\bcmwltry.exe
C:\WINDOWS\BCMSMMSG.exe
C:\Program Files\Apoint\Apoint.exe
C:\Program Files\Java\j2re1.4.2_03\bin\jusched.exe
C:\WINDOWS\system32\BacsTray.exe
C:\Program Files\Dell\Media Experience\PCMService.exe
C:\Program Files\CyberLink\PowerDVD\DVDLauncher.exe
C:\Program Files\Dell\QuickSet\quickset.exe
C:\Program Files\Apoint\Apntex.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\Program Files\Logitech\Video\LogiTray.exe
C:\Program Files\Winamp\winampa.exe
C:\Program Files\Windows Defender\MSASCui.exe
C:\Program Files\Common Files\Symantec Shared\ccApp.exe
C:\Program Files\DellSupport\DSAgnt.exe
C:\Program Files\Logitech\Video\ManifestEngine.exe
C:\Program Files\Google\Google Talk\googletalk.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe
C:\PROGRA~1\MI3AA1~1\wcescomm.exe
C:\WINDOWS\system32\NOTEPAD.EXE
C:\PROGRA~1\MI3AA1~1\rapimgr.exe
C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
C:\DOCUME~1\SATYEN~1\LOCALS~1\Temp\bwgo0003d6d1.exe
C:\PROGRA~1\Yahoo!\MESSEN~1\ymsgr_tray.exe
C:\WINDOWS\system32\LVComsX.exe
C:\Program Files\Logitech\Video\FxSvr2.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Hijackthis\abc.dat.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://securityresponse.symantec.com/avcenter/fix_homepage/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.yahoo.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://us.rd.yahoo.com/customize/ie/defaul...rch/search.html
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://www.dell4me.com/myway
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {1E8A6170-7264-4D0F-BEAE-D42A53123C75} - C:\Program Files\Common Files\Symantec Shared\coShared\Browser\1.5\NppBho.dll
O2 - BHO: My Global Search Bar BHO - {37B85A21-692B-4205-9CAD-2626E4993404} - C:\Program Files\MyGlobalSearch\bar\1.bin\MGSBAR.DLL (file missing)
O2 - BHO: X1IEHook Class - {52706EF7-D7A2-49AD-A615-E903858CF284} - C:\Program Files\NetZero\qsacc\x1IEBHO.dll
O2 - BHO: (no name) - {549B5CA7-4A86-11D7-A4DF-000874180BB3} - (no file)
O2 - BHO: (no name) - {5C8B2A36-3DB1-42A4-A3CB-D426709BBFEB} - (no file)
O2 - BHO: DriveLetterAccess - {5CA3D70E-1895-11CF-8E15-001234567890} - C:\WINDOWS\system32\dla\tfswshx.dll
O2 - BHO: (no name) - {62B2AE35-61F1-4927-A34B-67E34AEFF9B8} - (no file)
O2 - BHO: IeCatch2 Class - {A5366673-E8CA-11D3-9CD9-0090271D075B} - C:\FlashGet\jccatch.dll
O2 - BHO: (no name) - {A5D06FE3-F170-45C6-A8C9-5FBAD085EAE5} - C:\WINDOWS\system32\xxwxv.dll (file missing)
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar4.dll
O2 - BHO: (no name) - {CA2CFBDE-0F94-491B-9286-00C60C553954} - C:\WINDOWS\system32\byxwvwu.dll (file missing)
O2 - BHO: (no name) - {FDD3B846-8D59-4ffb-8758-209B6AD74ACC} - (no file)
O3 - Toolbar: FlashGet Bar - {E0E899AB-F487-11D5-8D29-0050BA6940E3} - C:\FlashGet\fgiebar.dll
O3 - Toolbar: ZeroBar - {F5735C15-1FB2-41FE-BA12-242757E69DDE} - C:\Program Files\NetZero\toolbar.dll
O3 - Toolbar: My Global Search Bar - {37B85A29-692B-4205-9CAD-2626E4993404} - C:\Program Files\MyGlobalSearch\bar\1.bin\MGSBAR.DLL (file missing)
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar4.dll
O3 - Toolbar: Show Norton Toolbar - {90222687-F593-4738-B738-FBEE9C7B26DF} - C:\Program Files\Common Files\Symantec Shared\coShared\Browser\1.5\UIBHO.dll
O4 - HKLM\..\Run: [nwiz] nwiz.exe /installquiet
O4 - HKLM\..\Run: [BCMSMMSG] BCMSMMSG.exe
O4 - HKLM\..\Run: [Apoint] C:\Program Files\Apoint\Apoint.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\j2re1.4.2_03\bin\jusched.exe
O4 - HKLM\..\Run: [bacstray] BacsTray.exe
O4 - HKLM\..\Run: [UpdateManager] "C:\Program Files\Common Files\Sonic\Update Manager\sgtray.exe" /r
O4 - HKLM\..\Run: [PCMService] "C:\Program Files\Dell\Media Experience\PCMService.exe"
O4 - HKLM\..\Run: [DVDLauncher] "C:\Program Files\CyberLink\PowerDVD\DVDLauncher.exe"
O4 - HKLM\..\Run: [Dell QuickSet] C:\Program Files\Dell\QuickSet\quickset.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [LogitechVideoRepair] C:\Program Files\Logitech\Video\ISStart.exe
O4 - HKLM\..\Run: [LogitechVideoTray] C:\Program Files\Logitech\Video\LogiTray.exe
O4 - HKLM\..\Run: [WinampAgent] C:\Program Files\Winamp\winampa.exe
O4 - HKLM\..\Run: [Windows Defender] "C:\Program Files\Windows Defender\MSASCui.exe" -hide
O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Common Files\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [osCheck] "C:\Program Files\Norton Internet Security\osCheck.exe"
O4 - HKLM\..\Run: [Symantec PIF AlertEng] "C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe" /a /m "C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\AlertEng.dll"
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [Yahoo! Pager] "C:\PROGRA~1\Yahoo!\MESSEN~1\YAHOOM~1.EXE" -quiet
O4 - HKCU\..\Run: [DellSupport] "C:\Program Files\DellSupport\DSAgnt.exe" /startup
O4 - HKCU\..\Run: [LogitechSoftwareUpdate] "C:\Program Files\Logitech\Video\ManifestEngine.exe" boot
O4 - HKCU\..\Run: [LDM] C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BackWeb-8876480.exe
O4 - HKCU\..\Run: [googletalk] "C:\Program Files\Google\Google Talk\googletalk.exe" /autostart
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [H/PC Connection Agent] "C:\PROGRA~1\MI3AA1~1\wcescomm.exe"
O4 - HKCU\..\Run: [MoneyAgent] "C:\Program Files\Microsoft Money\System\mnyexpr.exe"
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: America Online 9.0 Tray Icon.lnk = C:\Program Files\America Online 9.0\aoltray.exe
O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O8 - Extra context menu item: &Search - http://ka.bar.need2find.com/KA/menusearch.html?p=KA
O8 - Extra context menu item: Display All Images with Full Quality - "res://C:\Program Files\NetZero\qsacc\appres.dll/228"
O8 - Extra context menu item: Display Image with Full Quality - "res://C:\Program Files\NetZero\qsacc\appres.dll/227"
O8 - Extra context menu item: Download All by FlashGet - C:\FlashGet\jc_all.htm
O8 - Extra context menu item: Download using FlashGet - C:\FlashGet\jc_link.htm
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~4\Office10\EXCEL.EXE/3000
O8 - Extra context menu item: Yahoo! &SMS - file:///C:\Program Files\Yahoo!\Common/ycsms.htm
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\WINDOWS\system32\msjava.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\WINDOWS\system32\msjava.dll
O9 - Extra button: Create Mobile Favorite - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MI3AA1~1\INetRepl.dll
O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MI3AA1~1\INetRepl.dll
O9 - Extra 'Tools' menuitem: Create Mobile Favorite... - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MI3AA1~1\INetRepl.dll
O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\system32\Shdocvw.dll
O9 - Extra button: FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\FlashGet\flashget.exe
O9 - Extra 'Tools' menuitem: &FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\FlashGet\flashget.exe
O9 - Extra button: MUSICMATCH MX Web Player - {d81ca86b-ef63-42af-bee3-4502d9a03c2d} - http://wwws.musicmatch.com/mmz/openWebRadio.html (file missing)
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O11 - Options group: [INTERNATIONAL] International*
O16 - DPF: {0246ECA8-996F-11D1-BE2F-00A0C9037DFE} (TDServer Control) - http://www.bitstream.com/wfplayer/tdserver.cab
O16 - DPF: {0E5F0222-96B9-11D3-8997-00104BD12D94} (PCPitstop Utility) - http://www.pcpitstop.com/pcpitstop/PCPitStop.CAB
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:\Program Files\Yahoo!\Common\yinsthelper.dll
O16 - DPF: {3EA4FA88-E0BE-419A-A732-9B79B87A6ED0} (CTVUAxCtrl Object) - http://dl.tvunetworks.com/TVUAx.cab
O16 - DPF: {56393399-041A-4650-94C7-13DFCB1F4665} - http://www.my-etrust.com/Support/PestScanner/pestscan.cab
O16 - DPF: {5ED80217-570B-4DA9-BF44-BE107C0EC166} (Windows Live Safety Center Base Module) - http://cdn.scan.onecare.live.com/resource/...lscbase9602.cab
O16 - DPF: {640B39C1-D713-464F-92C3-75BD972B95EE} - http://www.sidestep.com/get/k42037/sb02a.cab
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftupdat...b?1149977597449
O16 - DPF: {95EEE69E-27B4-4D13-BD32-766617A16909} (NDTVVideo.MPlayer) - http://www.ndtv.com/video/NDTVseekvideo.CAB
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O23 - Service: AOL Connectivity Service (AOL ACS) - America Online, Inc. - C:\PROGRA~1\COMMON~1\AOL\ACS\acsd.exe
O23 - Service: Automatic LiveUpdate Scheduler - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
O23 - Service: Symantec Event Manager (ccEvtMgr) - Unknown owner - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe" /h ccCommon (file missing)
O23 - Service: Symantec Settings Manager (ccSetMgr) - Unknown owner - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe" /h ccCommon (file missing)
O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Unknown owner - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe" /h cltCommon (file missing)
O23 - Service: COM Host (comHost) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\VAScanner\comHost.exe
O23 - Service: DSBrokerService - Unknown owner - C:\Program Files\DellSupport\brkrsvc.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Symantec IS Password Validation (ISPwdSvc) - Symantec Corporation - C:\Program Files\Norton Internet Security\isPwdSvc.exe
O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
O23 - Service: LiveUpdate Notice Service Ex (LiveUpdate Notice Ex) - Unknown owner - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe" /h ccCommon (file missing)
O23 - Service: LiveUpdate Notice Service - Unknown owner - C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe" /m "C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PifEng.dll (file missing)
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Symantec Core LC - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe
O23 - Service: Symantec AppCore Service (SymAppCore) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\AppCore\AppSvc32.exe
O23 - Service: WAN Miniport (ATW) Service (WANMiniportService) - America Online, Inc. - C:\WINDOWS\wanmpsvc.exe
O23 - Service: WLTRYSVC - Unknown owner - C:\WINDOWS\System32\WLTRYSVC.EXE




******************************************




Thank you very much for your help. :thumbsup:

#9 RichieUK

RichieUK

    Malware Assassin


  • Malware Response Team
  • 13,614 posts
  • OFFLINE
  •  
  • Local time:01:48 AM

Posted 03 June 2007 - 03:32 AM

First disable Windows Defender's real-time protection,as it may interfere.
* Open Microsoft Windows Defender. Click Start>All Programs>Windows Defender.
* Click on 'Tools'>'Options'.
* Under 'Real-time protection options', unselect the 'Turn on real-time protection' check box
* Click 'Save'.

****************************

Please make sure all hidden files are showing:

* Click 'Start'.
* Open 'My Computer'.
* Select the 'Tools' menu and click 'Folder Options'.
* Select the 'View' tab.
* Under the 'Hidden files and folders' heading select 'Show hidden files and folders'.
* Uncheck the 'Hide file extensions for known types' option.
* Uncheck the 'Hide protected operating system files (recommended)' option.
* Click Yes to confirm.
* Click OK.

****************************

Download/install AVG Anti-Spyware 7.5.

Please follow these instructions very carefully.

Launch/start up AVG Anti-Spyware.
On the main page click the 'Update' tab,and then 'Start Update'.
Note:
If you have any problems running the update process prior to running the scan,download/install the 'Full Database' from here:
http://download.ewido.net/avgas-signatures-full-current.exe

Once the updates have been installed,do the following:
Select the 'Scanner' icon at the top of the screen, then select the 'Settings' tab.
Once in the 'Settings' screen,under 'How to act?',then under 'Set default action for detected malware to:', click on 'Recommended actions',then click on 'Quarantine'.
Under 'Reports' select 'Automatically generate report after every scan' and unselect 'Only if threats were found'.
Exit AVG Anti-Spyware,don't run the scan just yet.

You might want to print/copy the following as you need to be in Safe Mode from here on.

Reboot your computer into SAFE MODE using the F8 method.
To do this,restart your computer and after hearing your computer beep once during startup (but before the Windows icon appears) press the F8 key repeatedly.
A menu will appear with several options.
Use the arrow keys on your keyboard to navigate and select the option to run Windows in "Safe Mode".

Have Hijack This fix the following [If still present], by placing a check in the appropriate boxes and selecting 'Fix checked'.
Make sure all browser and all Windows Explorer windows are closed before fixing:

O2 - BHO: My Global Search Bar BHO - {37B85A21-692B-4205-9CAD-2626E4993404} - C:\Program Files\MyGlobalSearch\bar\1.bin\MGSBAR.DLL (file missing)
O2 - BHO: (no name) - {549B5CA7-4A86-11D7-A4DF-000874180BB3} - (no file)
O2 - BHO: (no name) - {5C8B2A36-3DB1-42A4-A3CB-D426709BBFEB} - (no file)
O2 - BHO: (no name) - {62B2AE35-61F1-4927-A34B-67E34AEFF9B8} - (no file)
O2 - BHO: (no name) - {A5D06FE3-F170-45C6-A8C9-5FBAD085EAE5} - C:\WINDOWS\system32\xxwxv.dll (file missing)
O2 - BHO: (no name) - {CA2CFBDE-0F94-491B-9286-00C60C553954} - C:\WINDOWS\system32\byxwvwu.dll (file missing)
O2 - BHO: (no name) - {FDD3B846-8D59-4ffb-8758-209B6AD74ACC} - (no file)
O3 - Toolbar: My Global Search Bar - {37B85A29-692B-4205-9CAD-2626E4993404} - C:\Program Files\MyGlobalSearch\bar\1.bin\MGSBAR.DLL (file missing)
O8 - Extra context menu item: &Search - http://ka.bar.need2find.com/KA/menusearch.html?p=KA
O9 - Extra button: MUSICMATCH MX Web Player - {d81ca86b-ef63-42af-bee3-4502d9a03c2d} - http://wwws.musicmatch.com/mmz/openWebRadio.html (file missing)
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O16 - DPF: {0246ECA8-996F-11D1-BE2F-00A0C9037DFE} (TDServer Control) - http://www.bitstream.com/wfplayer/tdserver.cab
O16 - DPF: {640B39C1-D713-464F-92C3-75BD972B95EE} - http://www.sidestep.com/get/k42037/sb02a.cab

Exit Hijackthis,find and delete:
C:\Documents and Settings\SATYEN~1\Local Settings\Temp<-Delete everything inside this Temp folder.

Still in Safe Mode launch AVG Anti-Spyware.
Click the 'Scanner' icon at the top.
To start the scan click on 'Complete System Scan'.
Please be patient,it takes a while for the scan to finish.

Once the scan is complete,do the following.
If AVG Anti-Spyware detected any infected objects:,click on 'Apply All Actions'.

Next click on 'Save Report'.
Copy and paste that report into your next reply.
The report can be found under the 'Reports' tab at the top.
Close AVG Anti-Spyware when you've done.
Reboot normally.

Post the AVG Anti Spyware report and a new Hijackthis log into your next reply.
Let me know how your pc is running now please.
Posted Image
Posted Image

#10 rosadom

rosadom
  • Topic Starter

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Local time:08:48 PM

Posted 03 June 2007 - 04:02 PM

Hi,

I did the everything except >> “If AVG Anti-Spyware detected any infected objects:,click on 'Apply All Actions”

The AVG scan took over two hours and found bunch of items but “Apply All Actions” button was disabled at the completion of scan hence I could do nothing after the scan. I am trying once more and see if I can delete the items found.

Meantime attached below is the AVG report, Thanks again for your help.


****************************************************************

---------------------------------------------------------
AVG Anti-Spyware - Scan Report
---------------------------------------------------------

+ Created at: 4:00:46 PM 6/3/2007

+ Scan result:



C:\System Volume Information\_restore{202550A8-7A33-4BCA-9586-051D24DDBF8F}\RP1217\A0093184.dll -> Adware.BHO : Ignored.
C:\System Volume Information\_restore{202550A8-7A33-4BCA-9586-051D24DDBF8F}\RP1234\A0097779.dll -> Adware.BHO : Ignored.
C:\System Volume Information\_restore{202550A8-7A33-4BCA-9586-051D24DDBF8F}\RP1235\A0097806.dll -> Adware.BHO : Ignored.
C:\System Volume Information\_restore{202550A8-7A33-4BCA-9586-051D24DDBF8F}\RP1235\A0097807.dll -> Adware.BHO : Ignored.
C:\System Volume Information\_restore{202550A8-7A33-4BCA-9586-051D24DDBF8F}\RP1235\A0097808.dll -> Adware.BHO : Ignored.
C:\System Volume Information\_restore{202550A8-7A33-4BCA-9586-051D24DDBF8F}\RP1235\A0097809.dll -> Adware.BHO : Ignored.
C:\System Volume Information\_restore{202550A8-7A33-4BCA-9586-051D24DDBF8F}\RP1235\A0097810.dll -> Adware.BHO : Ignored.
C:\System Volume Information\_restore{202550A8-7A33-4BCA-9586-051D24DDBF8F}\RP1235\A0097811.dll -> Adware.BHO : Ignored.
C:\System Volume Information\_restore{202550A8-7A33-4BCA-9586-051D24DDBF8F}\RP1235\A0097812.dll -> Adware.BHO : Ignored.
C:\System Volume Information\_restore{202550A8-7A33-4BCA-9586-051D24DDBF8F}\RP1235\A0097818.dll -> Adware.BHO : Ignored.
C:\System Volume Information\_restore{202550A8-7A33-4BCA-9586-051D24DDBF8F}\RP1236\A0097853.dll -> Adware.BHO : Ignored.
C:\System Volume Information\_restore{202550A8-7A33-4BCA-9586-051D24DDBF8F}\RP1236\A0097862.dll -> Adware.BHO : Ignored.
C:\System Volume Information\_restore{202550A8-7A33-4BCA-9586-051D24DDBF8F}\RP1237\A0097895.dll -> Adware.BHO : Ignored.
C:\System Volume Information\_restore{202550A8-7A33-4BCA-9586-051D24DDBF8F}\RP1237\A0097896.dll -> Adware.BHO : Ignored.
C:\System Volume Information\_restore{202550A8-7A33-4BCA-9586-051D24DDBF8F}\RP1238\A0097953.dll -> Adware.BHO : Ignored.
C:\System Volume Information\_restore{202550A8-7A33-4BCA-9586-051D24DDBF8F}\RP1240\A0099007.dll -> Adware.BHO : Ignored.
C:\System Volume Information\_restore{202550A8-7A33-4BCA-9586-051D24DDBF8F}\RP1241\A0099032.dll -> Adware.BHO : Ignored.
C:\System Volume Information\_restore{202550A8-7A33-4BCA-9586-051D24DDBF8F}\RP1246\A0101040.dll -> Adware.BHO : Ignored.
C:\System Volume Information\_restore{202550A8-7A33-4BCA-9586-051D24DDBF8F}\RP1247\A0101158.dll -> Adware.BHO : Ignored.
C:\System Volume Information\_restore{202550A8-7A33-4BCA-9586-051D24DDBF8F}\RP1248\A0101183.dll -> Adware.BHO : Ignored.
C:\System Volume Information\_restore{202550A8-7A33-4BCA-9586-051D24DDBF8F}\RP1248\A0101214.dll -> Adware.BHO : Ignored.
C:\System Volume Information\_restore{202550A8-7A33-4BCA-9586-051D24DDBF8F}\RP1254\A0101460.dll -> Adware.BHO : Ignored.
C:\System Volume Information\_restore{202550A8-7A33-4BCA-9586-051D24DDBF8F}\RP1259\A0101703.dll -> Adware.BHO : Ignored.
C:\WINDOWS\SYSTEM32\AdCache -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_0_445800.htm -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_0_445900.htm -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_0_446000.htm -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_1_512000.htm -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_1_512000.swf -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_1_514400.htm -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_1_514400.swf -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_1_514900.htm -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_1_514900.swf -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_1_515500.htm -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_1_515500.swf -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_1_517400.htm -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_1_517400.swf -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_1_518300.htm -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_1_518300.swf -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_1_519100.htm -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_1_519100.swf -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_1_519600.htm -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_1_519600.swf -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_1_520100.htm -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_1_520100.swf -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_1_520200.htm -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_1_520200.swf -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_1_520500.htm -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_1_520500.swf -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_1_521100.htm -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_1_521100.swf -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_1_521400.htm -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_1_521400.swf -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_1_522000.htm -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_1_522000.swf -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_1_522900.htm -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_1_522900.swf -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_1_523600.htm -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_1_523600.swf -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_1_523700.htm -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_1_523700.swf -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_1_526100.htm -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_1_526100.swf -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_1_526700.htm -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_1_526700.swf -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_1_526900.htm -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_1_526900.swf -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_1_527900.htm -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_1_527900.swf -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_1_529300.htm -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_1_529300.swf -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_1_529900.htm -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_1_529900.swf -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_1_531800.htm -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_1_531800.swf -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_1_535000.htm -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_1_535000.swf -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_1_537500.gif -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_1_548600.gif -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_1_553900.htm -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_1_553900.swf -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_1_554500.htm -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_1_554500.swf -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_1_555500.htm -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_1_555500.swf -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_1_559300.htm -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_1_559300.swf -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_1_561500.htm -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_1_561500.swf -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_1_562400.gif -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_1_569900.htm -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_1_569900.swf -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_1_570100.htm -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_1_570100.swf -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_1_571100.htm -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_1_571100.swf -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_1_571500.htm -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_1_571500.swf -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_1_572100.gif -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_1_572700.htm -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_1_572700.swf -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_1_572900.htm -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_1_572900.swf -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_1_573100.htm -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_1_573100.swf -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_1_574200.htm -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_1_574200.swf -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_1_575600.gif -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_1_577900.htm -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_1_577900.swf -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_1_578100.htm -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_1_578100.swf -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_1_578500.htm -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_1_578500.swf -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_1_578700.htm -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_1_578700.swf -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_1_579700.htm -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_1_579700.jpg -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_1_584700.htm -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_1_584700.swf -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_1_585000.htm -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_1_585000.swf -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_1_585100.htm -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_1_585100.swf -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_1_586100.gif -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_1_588400.htm -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_1_588400.swf -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_1_589500.htm -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_1_589500.swf -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_1_591600.htm -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_1_591600.swf -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_1_592100.gif -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_1_593600.htm -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_1_593600.swf -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_1_596300.gif -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_1_599300.gif -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_1_599600.htm -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_1_599600.swf -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_1_600900.htm -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_1_600900.swf -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_1_601600.htm -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_1_601600.swf -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_1_602100.htm -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_1_602100.swf -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_1_605600.htm -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_1_605600.swf -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_1_608500.gif -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_1_611400.htm -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_1_611400.swf -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_1_623500.gif -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_1_625700.htm -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_1_625700.swf -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_1_630700.htm -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_1_630700.swf -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_1_630800.htm -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_1_630800.swf -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_1_630900.htm -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_1_630900.swf -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_1_631100.htm -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_1_631100.swf -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_1_632000.htm -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_1_632000.swf -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_1_639000.htm -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_1_639000.swf -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_1_639200.htm -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_1_639200.swf -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_1_639500.htm -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_1_639500.swf -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_1_639600.htm -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_1_639600.swf -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_1_642900.gif -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_1_643800.gif -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_1_653300.htm -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_1_653300.swf -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_1_653400.htm -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_1_653400.swf -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_1_657400.gif -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_1_657700.gif -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_1_658200.gif -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_1_659700.htm -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_1_659700.swf -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_1_660300.htm -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_1_660300.swf -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_1_660800.htm -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_1_660800.swf -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_1_667400.htm -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_1_667400.swf -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_1_697700.htm -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_1_697700.swf -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_1_699800.htm -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_1_699800.swf -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_1_708100.htm -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_1_708100.swf -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_1_708400.htm -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_1_708400.swf -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_2_557400.htm -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_2_557400.swf -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_2_557700.htm -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_2_557700.swf -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_2_575400.gif -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_2_607600.gif -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_2_651200.htm -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_2_651200.swf -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_2_658500.gif -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_2_660300.htm -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_2_660300.swf -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_2_668500.htm -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_2_668500.swf -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_2_737400.htm -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_2_737400.swf -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_2_759800.htm -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_2_759800.swf -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_3_585800.htm -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_3_585800.swf -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_3_589500.htm -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_3_589500.swf -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_3_621800.htm -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_3_621800.swf -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_3_634300.htm -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_3_634300.swf -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_3_660700.htm -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_3_660700.swf -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_3_674300.htm -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_3_674300.swf -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_3_676300.htm -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_3_676300.swf -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_3_689900.gif -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_3_690000.gif -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_3_690100.htm -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_3_690100.swf -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_3_737100.htm -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_3_737100.swf -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_3_775800.htm -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_3_775800.swf -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_4_534200.htm -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_4_534200.swf -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_4_545600.htm -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_4_545600.swf -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_4_571800.gif -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_4_572100.gif -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_4_588000.htm -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_4_588000.swf -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_4_591600.htm -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_4_591600.swf -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_4_645300.htm -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_4_645300.swf -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_4_656900.gif -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_4_657400.gif -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_4_657700.gif -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_4_658200.gif -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_0_4_693600.gif -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_1_0_448500.htm -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_1_0_448600.gif -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_1_0_448600.htm -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_1_0_453800.htm -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_2_0_447600.htm -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_2_0_447700.htm -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_2_0_453200.htm -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_2_0_526700.htm -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_2_0_573300.htm -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_2_0_814200.htm -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_2_0_815600.htm -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_2_0_815900.htm -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_2_1_519000.gif -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_2_1_519000.htm -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_2_1_526900.htm -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_2_1_526900.swf -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_2_1_539800.htm -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_2_1_539800.swf -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_2_1_549800.htm -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_2_1_557900.htm -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_2_1_566600.htm -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_2_1_566600.swf -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_2_1_573300.htm -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_2_1_576700.gif -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_2_1_576700.htm -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_2_1_579200.htm -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_2_1_585300.htm -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_2_1_586500.htm -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_2_1_586500.swf -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_2_1_593000.gif -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_2_1_593000.htm -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_2_1_596300.htm -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_2_1_606800.htm -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_2_1_606800.swf -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_2_1_608200.gif -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_2_1_608200.htm -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_2_1_611800.htm -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_2_1_612000.gif -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_2_1_612000.htm -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_2_1_624200.htm -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_2_1_631600.htm -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_2_1_631600.swf -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_2_1_636500.gif -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_2_1_636500.htm -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_2_1_642300.htm -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_2_1_645800.gif -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_2_1_645800.htm -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_2_1_658800.htm -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_2_1_659300.htm -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_2_1_674200.gif -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_2_1_674200.htm -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_2_1_683100.gif -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_2_1_683100.htm -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_2_1_707300.htm -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_2_1_713900.htm -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_2_1_738900.htm -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_2_1_738900.swf -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_2_2_512500.htm -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_2_2_514600.htm -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_2_2_515500.htm -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_2_2_545700.htm -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_2_2_545700.swf -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_2_2_548200.htm -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_2_2_558300.htm -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_2_2_568800.gif -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_2_2_568800.htm -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_2_2_576300.htm -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_2_2_576300.swf -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_2_2_578000.htm -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_2_2_578000.swf -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_2_2_579200.htm -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_2_2_585000.htm -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_2_2_585000.swf -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_2_2_585100.htm -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_2_2_585100.swf -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_2_2_586800.htm -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_2_2_586800.swf -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_2_2_601500.gif -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_2_2_601500.htm -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_2_2_602800.htm -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_2_2_608200.gif -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_2_2_608200.htm -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_2_2_608900.htm -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_2_2_608900.swf -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_2_2_610700.htm -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_2_2_610700.swf -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_2_2_614800.htm -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_2_2_614800.jpg -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_2_2_615400.htm -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_2_2_615400.jpg -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_2_2_617600.htm -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_2_2_618900.htm -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_2_2_619000.htm -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_2_2_632600.htm -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_2_2_632600.swf -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_2_2_632800.htm -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_2_2_632800.swf -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_2_2_638600.gif -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_2_2_638600.htm -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_2_2_646700.gif -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_2_2_646700.htm -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_2_2_648700.htm -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_2_2_668400.gif -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_2_2_668400.htm -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_2_2_673800.htm -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_2_2_673800.swf -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_2_2_673900.htm -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_2_2_673900.swf -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_2_2_674600.htm -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_2_2_689200.gif -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_2_2_689200.htm -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_2_2_689300.gif -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_2_2_689300.htm -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_2_2_689400.gif -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_2_2_689400.htm -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_2_2_689500.gif -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_2_2_689500.htm -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_2_2_689700.gif -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_2_2_689700.htm -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_2_2_689800.gif -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_2_2_689800.htm -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_2_2_710600.gif -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_2_2_710600.htm -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_2_2_711400.htm -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_2_2_711400.jpg -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_2_2_711500.gif -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_2_2_711500.htm -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_2_2_712100.htm -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_2_3_558300.htm -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_2_3_563400.htm -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_2_3_563400.jpg -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_2_3_577200.htm -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_2_3_577600.htm -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_2_3_577600.jpg -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_2_3_579200.htm -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_2_3_580500.htm -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_2_3_580500.jpg -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_2_3_585400.htm -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_2_3_585400.swf -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_2_3_588000.htm -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_2_3_588000.jpg -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_2_3_599400.htm -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_2_3_616100.htm -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_2_3_617600.htm -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_2_3_629200.htm -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_2_3_632700.htm -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_2_3_634300.htm -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_2_3_713100.gif -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_2_3_713100.htm -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_2_4_606800.gif -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_2_4_606800.htm -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_2_4_606900.gif -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_2_4_606900.htm -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_2_4_612000.gif -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_2_4_612000.htm -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_2_4_612300.htm -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_2_4_618600.htm -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_2_4_632700.gif -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_2_4_632700.htm -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_2_4_632900.htm -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_2_4_636700.htm -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_2_4_636800.htm -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_2_4_638500.htm -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_2_4_643200.gif -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_2_4_643200.htm -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_2_4_644100.gif -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_2_4_644100.htm -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_2_4_685500.gif -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_2_4_685500.htm -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_2_4_685600.gif -> Adware.Cydoor : Ignored.
C:\WINDOWS\SYSTEM32\AdCache\B_434_2_4_685600.htm -> Adware.Cydoor : Ignored.
C:\System Volume Information\_restore{202550A8-7A33-4BCA-9586-051D24DDBF8F}\RP1243\A0100568.dll -> Adware.ErrorSafe : Ignored.
C:\System Volume Information\_restore{202550A8-7A33-4BCA-9586-051D24DDBF8F}\RP1243\A0100575.exe -> Adware.Fakealert : Ignored.
C:\System Volume Information\_restore{202550A8-7A33-4BCA-9586-051D24DDBF8F}\RP1215\A0093144.dll -> Adware.PurityScan : Ignored.
C:\System Volume Information\_restore{202550A8-7A33-4BCA-9586-051D24DDBF8F}\RP1217\A0093194.exe -> Adware.PurityScan : Ignored.
C:\System Volume Information\_restore{202550A8-7A33-4BCA-9586-051D24DDBF8F}\RP1217\A0093195.dll -> Adware.PurityScan : Ignored.
C:\System Volume Information\_restore{202550A8-7A33-4BCA-9586-051D24DDBF8F}\RP1224\A0094302.exe -> Adware.PurityScan : Ignored.
C:\System Volume Information\_restore{202550A8-7A33-4BCA-9586-051D24DDBF8F}\RP1224\A0094303.dll -> Adware.PurityScan : Ignored.
C:\System Volume Information\_restore{202550A8-7A33-4BCA-9586-051D24DDBF8F}\RP1224\A0096146.dll -> Adware.PurityScan : Ignored.
C:\System Volume Information\_restore{202550A8-7A33-4BCA-9586-051D24DDBF8F}\RP1224\A0096147.exe -> Adware.PurityScan : Ignored.
C:\System Volume Information\_restore{202550A8-7A33-4BCA-9586-051D24DDBF8F}\RP1225\A0096196.dll -> Adware.PurityScan : Ignored.
C:\System Volume Information\_restore{202550A8-7A33-4BCA-9586-051D24DDBF8F}\RP1225\A0096197.exe -> Adware.PurityScan : Ignored.
C:\System Volume Information\_restore{202550A8-7A33-4BCA-9586-051D24DDBF8F}\RP1231\A0096721.dll -> Adware.PurityScan : Ignored.
C:\System Volume Information\_restore{202550A8-7A33-4BCA-9586-051D24DDBF8F}\RP1231\A0096723.exe -> Adware.PurityScan : Ignored.
C:\System Volume Information\_restore{202550A8-7A33-4BCA-9586-051D24DDBF8F}\RP1235\A0097844.dll -> Adware.PurityScan : Ignored.
C:\System Volume Information\_restore{202550A8-7A33-4BCA-9586-051D24DDBF8F}\RP1237\A0097929.exe -> Adware.PurityScan : Ignored.
C:\System Volume Information\_restore{202550A8-7A33-4BCA-9586-051D24DDBF8F}\RP1239\A0098956.dll -> Adware.PurityScan : Ignored.
C:\System Volume Information\_restore{202550A8-7A33-4BCA-9586-051D24DDBF8F}\RP1239\A0098957.exe -> Adware.PurityScan : Ignored.
HKU\S-1-5-21-3348534145-139882365-2848619955-1006\Software\RX Toolbar -> Adware.RXToolbar : Ignored.
C:\System Volume Information\_restore{202550A8-7A33-4BCA-9586-051D24DDBF8F}\RP1235\A0097846.dll -> Adware.TargetServer : Ignored.
C:\System Volume Information\_restore{202550A8-7A33-4BCA-9586-051D24DDBF8F}\RP1217\A0093197.dll -> Adware.Virtumonde : Ignored.
C:\System Volume Information\_restore{202550A8-7A33-4BCA-9586-051D24DDBF8F}\RP1224\A0094304.dll -> Adware.Virtumonde : Ignored.
C:\System Volume Information\_restore{202550A8-7A33-4BCA-9586-051D24DDBF8F}\RP1224\A0094316.dll -> Adware.Virtumonde : Ignored.
C:\System Volume Information\_restore{202550A8-7A33-4BCA-9586-051D24DDBF8F}\RP1250\A0101300.dll -> Adware.Virtumonde : Ignored.
C:\System Volume Information\_restore{202550A8-7A33-4BCA-9586-051D24DDBF8F}\RP1250\A0101301.dll -> Adware.Virtumonde : Ignored.
C:\System Volume Information\_restore{202550A8-7A33-4BCA-9586-051D24DDBF8F}\RP1250\A0101302.dll -> Adware.Virtumonde : Ignored.
C:\System Volume Information\_restore{202550A8-7A33-4BCA-9586-051D24DDBF8F}\RP1258\A0101663.dll -> Adware.Virtumonde : Ignored.
C:\System Volume Information\_restore{202550A8-7A33-4BCA-9586-051D24DDBF8F}\RP1258\A0101664.dll -> Adware.Virtumonde : Ignored.
C:\System Volume Information\_restore{202550A8-7A33-4BCA-9586-051D24DDBF8F}\RP1258\A0101665.dll -> Adware.Virtumonde : Ignored.
C:\System Volume Information\_restore{202550A8-7A33-4BCA-9586-051D24DDBF8F}\RP1265\A0102106.dll -> Adware.Virtumonde : Ignored.
C:\VundoFix Backups\byxwvwu.dll.bad -> Adware.Virtumonde : Ignored.
C:\System Volume Information\_restore{202550A8-7A33-4BCA-9586-051D24DDBF8F}\RP1217\A0093205.dll -> Adware.WebBuying : Ignored.
C:\System Volume Information\_restore{202550A8-7A33-4BCA-9586-051D24DDBF8F}\RP1217\A0093208.exe -> Adware.WebBuying : Ignored.
C:\System Volume Information\_restore{202550A8-7A33-4BCA-9586-051D24DDBF8F}\RP1226\A0096205.dll -> Adware.WebHancer : Ignored.
C:\System Volume Information\_restore{202550A8-7A33-4BCA-9586-051D24DDBF8F}\RP1226\A0096206.exe -> Adware.WebHancer : Ignored.
C:\System Volume Information\_restore{202550A8-7A33-4BCA-9586-051D24DDBF8F}\RP1226\A0096213.dll -> Adware.WebHancer : Ignored.
C:\System Volume Information\_restore{202550A8-7A33-4BCA-9586-051D24DDBF8F}\RP1228\A0096525.exe -> Adware.WebHancer : Ignored.
C:\System Volume Information\_restore{202550A8-7A33-4BCA-9586-051D24DDBF8F}\RP1230\A0096563.exe -> Adware.WebHancer : Ignored.
C:\System Volume Information\_restore{202550A8-7A33-4BCA-9586-051D24DDBF8F}\RP1217\A0093213.exe -> Adware.ZQuest : Ignored.
C:\System Volume Information\_restore{202550A8-7A33-4BCA-9586-051D24DDBF8F}\RP1217\A0093206.exe -> Downloader.Agent.bls : Ignored.
C:\System Volume Information\_restore{202550A8-7A33-4BCA-9586-051D24DDBF8F}\RP1217\A0093211.exe -> Downloader.Agent.bls : Ignored.
C:\System Volume Information\_restore{202550A8-7A33-4BCA-9586-051D24DDBF8F}\RP1224\A0094315.exe -> Downloader.Agent.bls : Ignored.
C:\System Volume Information\_restore{202550A8-7A33-4BCA-9586-051D24DDBF8F}\RP1235\A0097799.exe -> Downloader.Agent.bls : Ignored.
C:\System Volume Information\_restore{202550A8-7A33-4BCA-9586-051D24DDBF8F}\RP1246\A0101103.exe -> Downloader.Agent.bls : Ignored.
C:\System Volume Information\_restore{202550A8-7A33-4BCA-9586-051D24DDBF8F}\RP1217\A0093217.exe -> Downloader.PurityScan.af : Ignored.
C:\System Volume Information\_restore{202550A8-7A33-4BCA-9586-051D24DDBF8F}\RP1224\A0094314.exe -> Downloader.PurityScan.af : Ignored.
C:\System Volume Information\_restore{202550A8-7A33-4BCA-9586-051D24DDBF8F}\RP1239\A0098955.exe -> Downloader.PurityScan.af : Ignored.
C:\System Volume Information\_restore{202550A8-7A33-4BCA-9586-051D24DDBF8F}\RP1225\A0096183.exe -> Downloader.PurityScan.eg : Ignored.
C:\System Volume Information\_restore{202550A8-7A33-4BCA-9586-051D24DDBF8F}\RP1239\A0098964.exe -> Downloader.PurityScan.eg : Ignored.
C:\System Volume Information\_restore{202550A8-7A33-4BCA-9586-051D24DDBF8F}\RP1248\A0101233.exe -> Downloader.PurityScan.eg : Ignored.
C:\System Volume Information\_restore{202550A8-7A33-4BCA-9586-051D24DDBF8F}\RP1235\A0097845.exe -> Downloader.PurityScan.eh : Ignored.
C:\System Volume Information\_restore{202550A8-7A33-4BCA-9586-051D24DDBF8F}\RP1227\A0096227.exe -> Downloader.Small.buy : Ignored.
C:\System Volume Information\_restore{202550A8-7A33-4BCA-9586-051D24DDBF8F}\RP1230\A0096564.exe -> Downloader.Small.buy : Ignored.
C:\System Volume Information\_restore{202550A8-7A33-4BCA-9586-051D24DDBF8F}\RP1235\A0097848.exe -> Downloader.TSUpdate.f : Ignored.
C:\Program Files\Common Files\zwiq\zwiqd\vocabulary -> Downloader.TSUpdate.j : Ignored.
C:\System Volume Information\_restore{202550A8-7A33-4BCA-9586-051D24DDBF8F}\RP1230\A0096565.exe -> Downloader.TSUpdate.o : Ignored.
C:\System Volume Information\_restore{202550A8-7A33-4BCA-9586-051D24DDBF8F}\RP1235\A0097847.exe -> Downloader.TSUpdate.r : Ignored.
C:\System Volume Information\_restore{202550A8-7A33-4BCA-9586-051D24DDBF8F}\RP1266\A0102256.dll -> Hijacker.Small.mw : Ignored.
C:\avenger\backup.zip/avenger/j8241737.dll -> Hijacker.Small.mw : Ignored.
C:\System Volume Information\_restore{202550A8-7A33-4BCA-9586-051D24DDBF8F}\RP1243\A0100578.exe -> Not-A-Virus.Downloader.Win32.WinFixer.x : Ignored.
C:\System Volume Information\_restore{202550A8-7A33-4BCA-9586-051D24DDBF8F}\RP1229\A0096539.sys -> Rootkit.Agent.eq : Ignored.
:mozilla.402:C:\Documents and Settings\satyendra\Application Data\Netscape\NSB\Profiles\lmdabf4e.default\cookies.txt -> TrackingCookie.247realmedia : Ignored.
:mozilla.579:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.247realmedia : Ignored.
:mozilla.13:C:\Documents and Settings\satyendra\Application Data\Netscape\NSB\Profiles\lmdabf4e.default\cookies.txt -> TrackingCookie.2o7 : Ignored.
:mozilla.14:C:\Documents and Settings\satyendra\Application Data\Netscape\NSB\Profiles\lmdabf4e.default\cookies.txt -> TrackingCookie.2o7 : Ignored.
:mozilla.160:C:\Documents and Settings\satyendra\Application Data\Netscape\NSB\Profiles\lmdabf4e.default\cookies.txt -> TrackingCookie.2o7 : Ignored.
:mozilla.20:C:\Documents and Settings\satyendra\Application Data\Netscape\NSB\Profiles\lmdabf4e.default\cookies.txt -> TrackingCookie.2o7 : Ignored.
:mozilla.21:C:\Documents and Settings\satyendra\Application Data\Netscape\NSB\Profiles\lmdabf4e.default\cookies.txt -> TrackingCookie.2o7 : Ignored.
:mozilla.22:C:\Documents and Settings\satyendra\Application Data\Netscape\NSB\Profiles\lmdabf4e.default\cookies.txt -> TrackingCookie.2o7 : Ignored.
:mozilla.23:C:\Documents and Settings\satyendra\Application Data\Netscape\NSB\Profiles\lmdabf4e.default\cookies.txt -> TrackingCookie.2o7 : Ignored.
:mozilla.24:C:\Documents and Settings\satyendra\Application Data\Netscape\NSB\Profiles\lmdabf4e.default\cookies.txt -> TrackingCookie.2o7 : Ignored.
:mozilla.25:C:\Documents and Settings\satyendra\Application Data\Netscape\NSB\Profiles\lmdabf4e.default\cookies.txt -> TrackingCookie.2o7 : Ignored.
:mozilla.26:C:\Documents and Settings\satyendra\Application Data\Netscape\NSB\Profiles\lmdabf4e.default\cookies.txt -> TrackingCookie.2o7 : Ignored.
:mozilla.27:C:\Documents and Settings\satyendra\Application Data\Netscape\NSB\Profiles\lmdabf4e.default\cookies.txt -> TrackingCookie.2o7 : Ignored.
:mozilla.28:C:\Documents and Settings\satyendra\Application Data\Netscape\NSB\Profiles\lmdabf4e.default\cookies.txt -> TrackingCookie.2o7 : Ignored.
:mozilla.29:C:\Documents and Settings\satyendra\Application Data\Netscape\NSB\Profiles\lmdabf4e.default\cookies.txt -> TrackingCookie.2o7 : Ignored.
:mozilla.30:C:\Documents and Settings\satyendra\Application Data\Netscape\NSB\Profiles\lmdabf4e.default\cookies.txt -> TrackingCookie.2o7 : Ignored.
:mozilla.316:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.2o7 : Ignored.
:mozilla.317:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.2o7 : Ignored.
:mozilla.318:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.2o7 : Ignored.
:mozilla.319:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.2o7 : Ignored.
:mozilla.31:C:\Documents and Settings\satyendra\Application Data\Netscape\NSB\Profiles\lmdabf4e.default\cookies.txt -> TrackingCookie.2o7 : Ignored.
:mozilla.320:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.2o7 : Ignored.
:mozilla.321:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.2o7 : Ignored.
:mozilla.322:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.2o7 : Ignored.
:mozilla.323:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.2o7 : Ignored.
:mozilla.325:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.2o7 : Ignored.
:mozilla.326:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.2o7 : Ignored.
:mozilla.32:C:\Documents and Settings\satyendra\Application Data\Netscape\NSB\Profiles\lmdabf4e.default\cookies.txt -> TrackingCookie.2o7 : Ignored.
:mozilla.33:C:\Documents and Settings\satyendra\Application Data\Netscape\NSB\Profiles\lmdabf4e.default\cookies.txt -> TrackingCookie.2o7 : Ignored.
:mozilla.34:C:\Documents and Settings\satyendra\Application Data\Netscape\NSB\Profiles\lmdabf4e.default\cookies.txt -> TrackingCookie.2o7 : Ignored.
:mozilla.35:C:\Documents and Settings\satyendra\Application Data\Netscape\NSB\Profiles\lmdabf4e.default\cookies.txt -> TrackingCookie.2o7 : Ignored.
:mozilla.403:C:\Documents and Settings\satyendra\Application Data\Netscape\NSB\Profiles\lmdabf4e.default\cookies.txt -> TrackingCookie.2o7 : Ignored.
:mozilla.407:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.2o7 : Ignored.
:mozilla.415:C:\Documents and Settings\satyendra\Application Data\Netscape\NSB\Profiles\lmdabf4e.default\cookies.txt -> TrackingCookie.2o7 : Ignored.
:mozilla.817:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.2o7 : Ignored.
:mozilla.879:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.2o7 : Ignored.
:mozilla.923:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.2o7 : Ignored.
C:\Documents and Settings\Administrator.SATYA\Cookies\administrator@2o7[2].txt -> TrackingCookie.2o7 : Ignored.
C:\Documents and Settings\Administrator.SATYA\Cookies\administrator@msnservices.112.2o7[2].txt -> TrackingCookie.2o7 : Ignored.
C:\Documents and Settings\satyendra\Cookies\satyendra@2o7[1].txt -> TrackingCookie.2o7 : Ignored.
C:\Documents and Settings\satyendra\Cookies\satyendra@heavycom.122.2o7[1].txt -> TrackingCookie.2o7 : Ignored.
C:\Documents and Settings\satyendra\Cookies\satyendra@msnportal.112.2o7[1].txt -> TrackingCookie.2o7 : Ignored.
C:\Documents and Settings\satyendra\Cookies\satyendra@msnservices.112.2o7[2].txt -> TrackingCookie.2o7 : Ignored.
C:\Documents and Settings\satyendra\Cookies\satyendra@aavalue[1].txt -> TrackingCookie.Aavalue : Ignored.
C:\Documents and Settings\satyendra\Cookies\satyendra@arn.aavalue[2].txt -> TrackingCookie.Aavalue : Ignored.
:mozilla.238:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.Adbrite : Ignored.
:mozilla.275:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.Adbrite : Ignored.
:mozilla.294:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.Adbrite : Ignored.
:mozilla.553:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.Adbrite : Ignored.
:mozilla.64:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.Adbrite : Ignored.
:mozilla.651:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.Adbrite : Ignored.
:mozilla.65:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.Adbrite : Ignored.
:mozilla.66:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.Adbrite : Ignored.
:mozilla.67:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.Adbrite : Ignored.
:mozilla.68:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.Adbrite : Ignored.
:mozilla.69:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.Adbrite : Ignored.
:mozilla.70:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.Adbrite : Ignored.
:mozilla.71:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.Adbrite : Ignored.
:mozilla.72:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.Adbrite : Ignored.
:mozilla.73:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.Adbrite : Ignored.
:mozilla.746:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.Adbrite : Ignored.
:mozilla.74:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.Adbrite : Ignored.
:mozilla.75:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.Adbrite : Ignored.
:mozilla.76:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.Adbrite : Ignored.
:mozilla.77:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.Adbrite : Ignored.
:mozilla.783:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.Adbrite : Ignored.
:mozilla.78:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.Adbrite : Ignored.
:mozilla.79:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.Adbrite : Ignored.
:mozilla.80:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.Adbrite : Ignored.
:mozilla.868:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.Adbrite : Ignored.
C:\Documents and Settings\satyendra\Cookies\satyendra@4.adbrite[2].txt -> TrackingCookie.Adbrite : Ignored.
C:\Documents and Settings\satyendra\Cookies\satyendra@adbrite[1].txt -> TrackingCookie.Adbrite : Ignored.
C:\Documents and Settings\satyendra\Cookies\satyendra@ads.adbrite[1].txt -> TrackingCookie.Adbrite : Ignored.
C:\Documents and Settings\satyendra\Cookies\satyendra@stats.adbrite[2].txt -> TrackingCookie.Adbrite : Ignored.
:mozilla.239:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.Addynamix : Ignored.
C:\Documents and Settings\satyendra\Cookies\satyendra@ads.addynamix[1].txt -> TrackingCookie.Addynamix : Ignored.
:mozilla.700:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.Adengage : Ignored.
:mozilla.92:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.Adjuggler : Ignored.
:mozilla.93:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.Adjuggler : Ignored.
:mozilla.94:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.Adjuggler : Ignored.
:mozilla.95:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.Adjuggler : Ignored.
C:\Documents and Settings\satyendra\Cookies\satyendra@rotator.its.adjuggler[2].txt -> TrackingCookie.Adjuggler : Ignored.
:mozilla.249:C:\Documents and Settings\satyendra\Application Data\Netscape\NSB\Profiles\lmdabf4e.default\cookies.txt -> TrackingCookie.Admarketplace : Ignored.
:mozilla.111:C:\Documents and Settings\Administrator.SATYA\Application Data\Mozilla\Firefox\Profiles\dc81yrw9.default\cookies.txt -> TrackingCookie.Adrevolver : Ignored.
:mozilla.113:C:\Documents and Settings\Administrator.SATYA\Application Data\Mozilla\Firefox\Profiles\dc81yrw9.default\cookies.txt -> TrackingCookie.Adrevolver : Ignored.
:mozilla.114:C:\Documents and Settings\Administrator.SATYA\Application Data\Mozilla\Firefox\Profiles\dc81yrw9.default\cookies.txt -> TrackingCookie.Adrevolver : Ignored.
:mozilla.115:C:\Documents and Settings\Administrator.SATYA\Application Data\Mozilla\Firefox\Profiles\dc81yrw9.default\cookies.txt -> TrackingCookie.Adrevolver : Ignored.
:mozilla.116:C:\Documents and Settings\Administrator.SATYA\Application Data\Mozilla\Firefox\Profiles\dc81yrw9.default\cookies.txt -> TrackingCookie.Adrevolver : Ignored.
:mozilla.117:C:\Documents and Settings\Administrator.SATYA\Application Data\Mozilla\Firefox\Profiles\dc81yrw9.default\cookies.txt -> TrackingCookie.Adrevolver : Ignored.
:mozilla.118:C:\Documents and Settings\Administrator.SATYA\Application Data\Mozilla\Firefox\Profiles\dc81yrw9.default\cookies.txt -> TrackingCookie.Adrevolver : Ignored.
:mozilla.235:C:\Documents and Settings\satyendra\Application Data\Netscape\NSB\Profiles\lmdabf4e.default\cookies.txt -> TrackingCookie.Adrevolver : Ignored.
:mozilla.236:C:\Documents and Settings\satyendra\Application Data\Netscape\NSB\Profiles\lmdabf4e.default\cookies.txt -> TrackingCookie.Adrevolver : Ignored.
:mozilla.237:C:\Documents and Settings\satyendra\Application Data\Netscape\NSB\Profiles\lmdabf4e.default\cookies.txt -> TrackingCookie.Adrevolver : Ignored.
:mozilla.238:C:\Documents and Settings\satyendra\Application Data\Netscape\NSB\Profiles\lmdabf4e.default\cookies.txt -> TrackingCookie.Adrevolver : Ignored.
:mozilla.239:C:\Documents and Settings\satyendra\Application Data\Netscape\NSB\Profiles\lmdabf4e.default\cookies.txt -> TrackingCookie.Adrevolver : Ignored.
:mozilla.502:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.Adrevolver : Ignored.
:mozilla.503:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.Adrevolver : Ignored.
:mozilla.504:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.Adrevolver : Ignored.
:mozilla.505:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.Adrevolver : Ignored.
:mozilla.506:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.Adrevolver : Ignored.
:mozilla.507:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.Adrevolver : Ignored.
:mozilla.508:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.Adrevolver : Ignored.
C:\Documents and Settings\satyendra\Cookies\satyendra@adrevolver[1].txt -> TrackingCookie.Adrevolver : Ignored.
:mozilla.219:C:\Documents and Settings\satyendra\Application Data\Netscape\NSB\Profiles\lmdabf4e.default\cookies.txt -> TrackingCookie.Adserver : Ignored.
:mozilla.220:C:\Documents and Settings\satyendra\Application Data\Netscape\NSB\Profiles\lmdabf4e.default\cookies.txt -> TrackingCookie.Adserver : Ignored.
:mozilla.152:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.Adtech : Ignored.
:mozilla.12:C:\Documents and Settings\satyendra\Application Data\Netscape\NSB\Profiles\lmdabf4e.default\cookies.txt -> TrackingCookie.Advertising : Ignored.
:mozilla.16:C:\Documents and Settings\satyendra\Application Data\Netscape\NSB\Profiles\lmdabf4e.default\cookies.txt -> TrackingCookie.Advertising : Ignored.
:mozilla.17:C:\Documents and Settings\satyendra\Application Data\Netscape\NSB\Profiles\lmdabf4e.default\cookies.txt -> TrackingCookie.Advertising : Ignored.
:mozilla.18:C:\Documents and Settings\satyendra\Application Data\Netscape\NSB\Profiles\lmdabf4e.default\cookies.txt -> TrackingCookie.Advertising : Ignored.
:mozilla.258:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.Advertising : Ignored.
:mozilla.259:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.Advertising : Ignored.
:mozilla.260:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.Advertising : Ignored.
:mozilla.261:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.Advertising : Ignored.
:mozilla.262:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.Advertising : Ignored.
:mozilla.72:C:\Documents and Settings\Administrator.SATYA\Application Data\Mozilla\Firefox\Profiles\dc81yrw9.default\cookies.txt -> TrackingCookie.Advertising : Ignored.
:mozilla.73:C:\Documents and Settings\Administrator.SATYA\Application Data\Mozilla\Firefox\Profiles\dc81yrw9.default\cookies.txt -> TrackingCookie.Advertising : Ignored.
:mozilla.74:C:\Documents and Settings\Administrator.SATYA\Application Data\Mozilla\Firefox\Profiles\dc81yrw9.default\cookies.txt -> TrackingCookie.Advertising : Ignored.
:mozilla.75:C:\Documents and Settings\Administrator.SATYA\Application Data\Mozilla\Firefox\Profiles\dc81yrw9.default\cookies.txt -> TrackingCookie.Advertising : Ignored.
C:\Documents and Settings\satyendra\Cookies\satyendra@advertising[2].txt -> TrackingCookie.Advertising : Ignored.
:mozilla.103:C:\Documents and Settings\Administrator.SATYA\Application Data\Mozilla\Firefox\Profiles\dc81yrw9.default\cookies.txt -> TrackingCookie.Atdmt : Ignored.
:mozilla.34:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.Atdmt : Ignored.
:mozilla.81:C:\Documents and Settings\satyendra\Application Data\Netscape\NSB\Profiles\lmdabf4e.default\cookies.txt -> TrackingCookie.Atdmt : Ignored.
C:\Documents and Settings\Administrator.SATYA\Cookies\administrator@atdmt[1].txt -> TrackingCookie.Atdmt : Ignored.
C:\Documents and Settings\satyendra\Cookies\satyendra@atdmt[1].txt -> TrackingCookie.Atdmt : Ignored.
:mozilla.342:C:\Documents and Settings\satyendra\Application Data\Netscape\NSB\Profiles\lmdabf4e.default\cookies.txt -> TrackingCookie.Bfast : Ignored.
:mozilla.125:C:\Documents and Settings\Administrator.SATYA\Application Data\Mozilla\Firefox\Profiles\dc81yrw9.default\cookies.txt -> TrackingCookie.Bluestreak : Ignored.
:mozilla.720:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.Bluestreak : Ignored.
:mozilla.80:C:\Documents and Settings\satyendra\Application Data\Netscape\NSB\Profiles\lmdabf4e.default\cookies.txt -> TrackingCookie.Bluestreak : Ignored.
:mozilla.218:C:\Documents and Settings\satyendra\Application Data\Netscape\NSB\Profiles\lmdabf4e.default\cookies.txt -> TrackingCookie.Burstbeacon : Ignored.
:mozilla.702:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.Burstbeacon : Ignored.
:mozilla.216:C:\Documents and Settings\satyendra\Application Data\Netscape\NSB\Profiles\lmdabf4e.default\cookies.txt -> TrackingCookie.Burstnet : Ignored.
:mozilla.217:C:\Documents and Settings\satyendra\Application Data\Netscape\NSB\Profiles\lmdabf4e.default\cookies.txt -> TrackingCookie.Burstnet : Ignored.
:mozilla.701:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.Burstnet : Ignored.
:mozilla.703:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.Burstnet : Ignored.
:mozilla.704:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.Burstnet : Ignored.
:mozilla.201:C:\Documents and Settings\satyendra\Application Data\Netscape\NSB\Profiles\lmdabf4e.default\cookies.txt -> TrackingCookie.Casalemedia : Ignored.
:mozilla.202:C:\Documents and Settings\satyendra\Application Data\Netscape\NSB\Profiles\lmdabf4e.default\cookies.txt -> TrackingCookie.Casalemedia : Ignored.
:mozilla.203:C:\Documents and Settings\satyendra\Application Data\Netscape\NSB\Profiles\lmdabf4e.default\cookies.txt -> TrackingCookie.Casalemedia : Ignored.
:mozilla.204:C:\Documents and Settings\satyendra\Application Data\Netscape\NSB\Profiles\lmdabf4e.default\cookies.txt -> TrackingCookie.Casalemedia : Ignored.
:mozilla.205:C:\Documents and Settings\satyendra\Application Data\Netscape\NSB\Profiles\lmdabf4e.default\cookies.txt -> TrackingCookie.Casalemedia : Ignored.
:mozilla.300:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.Casalemedia : Ignored.
:mozilla.301:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.Casalemedia : Ignored.
:mozilla.302:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.Casalemedia : Ignored.
:mozilla.303:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.Casalemedia : Ignored.
:mozilla.304:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.Casalemedia : Ignored.
:mozilla.305:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.Casalemedia : Ignored.
:mozilla.306:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.Casalemedia : Ignored.
:mozilla.307:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.Casalemedia : Ignored.
C:\Documents and Settings\satyendra\Cookies\satyendra@casalemedia[1].txt -> TrackingCookie.Casalemedia : Ignored.
:mozilla.62:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.Clickzs : Ignored.
:mozilla.63:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.Clickzs : Ignored.
:mozilla.406:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.Cnn : Ignored.
:mozilla.417:C:\Documents and Settings\satyendra\Application Data\Netscape\NSB\Profiles\lmdabf4e.default\cookies.txt -> TrackingCookie.Com : Ignored.
:mozilla.908:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.Com : Ignored.
:mozilla.909:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.Com : Ignored.
:mozilla.128:C:\Documents and Settings\Administrator.SATYA\Application Data\Mozilla\Firefox\Profiles\dc81yrw9.default\cookies.txt -> TrackingCookie.Connextra : Ignored.
:mozilla.129:C:\Documents and Settings\Administrator.SATYA\Application Data\Mozilla\Firefox\Profiles\dc81yrw9.default\cookies.txt -> TrackingCookie.Connextra : Ignored.
:mozilla.270:C:\Documents and Settings\satyendra\Application Data\Netscape\NSB\Profiles\lmdabf4e.default\cookies.txt -> TrackingCookie.Connextra : Ignored.
:mozilla.275:C:\Documents and Settings\satyendra\Application Data\Netscape\NSB\Profiles\lmdabf4e.default\cookies.txt -> TrackingCookie.Coremetrics : Ignored.
:mozilla.846:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.Coremetrics : Ignored.
:mozilla.902:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.Coremetrics : Ignored.
:mozilla.200:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.Cpvfeed : Ignored.
:mozilla.201:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.Cpvfeed : Ignored.
:mozilla.202:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.Cpvfeed : Ignored.
:mozilla.203:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.Cpvfeed : Ignored.
C:\Documents and Settings\satyendra\Cookies\satyendra@cpvfeed[2].txt -> TrackingCookie.Cpvfeed : Ignored.
C:\Documents and Settings\satyendra\Cookies\satyendra@cpvfeed[3].txt -> TrackingCookie.Cpvfeed : Ignored.
:mozilla.332:C:\Documents and Settings\satyendra\Application Data\Netscape\NSB\Profiles\lmdabf4e.default\cookies.txt -> TrackingCookie.Cqcounter : Ignored.
:mozilla.13:C:\Documents and Settings\Administrator.SATYA\Application Data\Mozilla\Firefox\Profiles\dc81yrw9.default\cookies.txt -> TrackingCookie.Doubleclick : Ignored.
:mozilla.19:C:\Documents and Settings\satyendra\Application Data\Netscape\NSB\Profiles\lmdabf4e.default\cookies.txt -> TrackingCookie.Doubleclick : Ignored.
:mozilla.51:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.Doubleclick : Ignored.
C:\Documents and Settings\satyendra\Cookies\satyendra@doubleclick[1].txt -> TrackingCookie.Doubleclick : Ignored.
:mozilla.516:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.Esomniture : Ignored.
:mozilla.310:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.Euroclick : Ignored.
:mozilla.311:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.Euroclick : Ignored.
:mozilla.312:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.Euroclick : Ignored.
:mozilla.313:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.Euroclick : Ignored.
:mozilla.314:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.Euroclick : Ignored.
:mozilla.315:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.Euroclick : Ignored.
:mozilla.266:C:\Documents and Settings\satyendra\Application Data\Netscape\NSB\Profiles\lmdabf4e.default\cookies.txt -> TrackingCookie.Falkag : Ignored.
:mozilla.267:C:\Documents and Settings\satyendra\Application Data\Netscape\NSB\Profiles\lmdabf4e.default\cookies.txt -> TrackingCookie.Falkag : Ignored.
:mozilla.268:C:\Documents and Settings\satyendra\Application Data\Netscape\NSB\Profiles\lmdabf4e.default\cookies.txt -> TrackingCookie.Falkag : Ignored.
:mozilla.269:C:\Documents and Settings\satyendra\Application Data\Netscape\NSB\Profiles\lmdabf4e.default\cookies.txt -> TrackingCookie.Falkag : Ignored.
:mozilla.333:C:\Documents and Settings\satyendra\Application Data\Netscape\NSB\Profiles\lmdabf4e.default\cookies.txt -> TrackingCookie.Falkag : Ignored.
:mozilla.334:C:\Documents and Settings\satyendra\Application Data\Netscape\NSB\Profiles\lmdabf4e.default\cookies.txt -> TrackingCookie.Falkag : Ignored.
:mozilla.335:C:\Documents and Settings\satyendra\Application Data\Netscape\NSB\Profiles\lmdabf4e.default\cookies.txt -> TrackingCookie.Falkag : Ignored.
:mozilla.336:C:\Documents and Settings\satyendra\Application Data\Netscape\NSB\Profiles\lmdabf4e.default\cookies.txt -> TrackingCookie.Falkag : Ignored.
:mozilla.337:C:\Documents and Settings\satyendra\Application Data\Netscape\NSB\Profiles\lmdabf4e.default\cookies.txt -> TrackingCookie.Falkag : Ignored.
:mozilla.351:C:\Documents and Settings\satyendra\Application Data\Netscape\NSB\Profiles\lmdabf4e.default\cookies.txt -> TrackingCookie.Falkag : Ignored.
:mozilla.58:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.Falkag : Ignored.
:mozilla.59:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.Falkag : Ignored.
:mozilla.60:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.Falkag : Ignored.
:mozilla.61:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.Falkag : Ignored.
:mozilla.186:C:\Documents and Settings\satyendra\Application Data\Netscape\NSB\Profiles\lmdabf4e.default\cookies.txt -> TrackingCookie.Fastclick : Ignored.
:mozilla.187:C:\Documents and Settings\satyendra\Application Data\Netscape\NSB\Profiles\lmdabf4e.default\cookies.txt -> TrackingCookie.Fastclick : Ignored.
:mozilla.188:C:\Documents and Settings\satyendra\Application Data\Netscape\NSB\Profiles\lmdabf4e.default\cookies.txt -> TrackingCookie.Fastclick : Ignored.
:mozilla.189:C:\Documents and Settings\satyendra\Application Data\Netscape\NSB\Profiles\lmdabf4e.default\cookies.txt -> TrackingCookie.Fastclick : Ignored.
:mozilla.190:C:\Documents and Settings\satyendra\Application Data\Netscape\NSB\Profiles\lmdabf4e.default\cookies.txt -> TrackingCookie.Fastclick : Ignored.
:mozilla.191:C:\Documents and Settings\satyendra\Application Data\Netscape\NSB\Profiles\lmdabf4e.default\cookies.txt -> TrackingCookie.Fastclick : Ignored.
:mozilla.277:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.Fastclick : Ignored.
:mozilla.278:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.Fastclick : Ignored.
:mozilla.279:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.Fastclick : Ignored.
:mozilla.280:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.Fastclick : Ignored.
:mozilla.281:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.Fastclick : Ignored.
:mozilla.282:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.Fastclick : Ignored.
:mozilla.283:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.Fastclick : Ignored.
:mozilla.38:C:\Documents and Settings\Administrator.SATYA\Application Data\Mozilla\Firefox\Profiles\dc81yrw9.default\cookies.txt -> TrackingCookie.Fastclick : Ignored.
:mozilla.418:C:\Documents and Settings\satyendra\Application Data\Netscape\NSB\Profiles\lmdabf4e.default\cookies.txt -> TrackingCookie.Findwhat : Ignored.
:mozilla.338:C:\Documents and Settings\satyendra\Application Data\Netscape\NSB\Profiles\lmdabf4e.default\cookies.txt -> TrackingCookie.Fortunecity : Ignored.
:mozilla.339:C:\Documents and Settings\satyendra\Application Data\Netscape\NSB\Profiles\lmdabf4e.default\cookies.txt -> TrackingCookie.Fortunecity : Ignored.
:mozilla.465:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.Fortunecity : Ignored.
C:\Documents and Settings\satyendra\Cookies\satyendra@fortunecity[1].txt -> TrackingCookie.Fortunecity : Ignored.
:mozilla.315:C:\Documents and Settings\satyendra\Application Data\Netscape\NSB\Profiles\lmdabf4e.default\cookies.txt -> TrackingCookie.Googleadservices : Ignored.
:mozilla.340:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.Googleadservices : Ignored.
:mozilla.379:C:\Documents and Settings\satyendra\Application Data\Netscape\NSB\Profiles\lmdabf4e.default\cookies.txt -> TrackingCookie.Googleadservices : Ignored.
:mozilla.774:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.Googleadservices : Ignored.
:mozilla.78:C:\Documents and Settings\satyendra\Application Data\Netscape\NSB\Profiles\lmdabf4e.default\cookies.txt -> TrackingCookie.Googleadservices : Ignored.
:mozilla.901:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.Googleadservices : Ignored.
:mozilla.263:C:\Documents and Settings\satyendra\Application Data\Netscape\NSB\Profiles\lmdabf4e.default\cookies.txt -> TrackingCookie.Hitbox : Ignored.
:mozilla.264:C:\Documents and Settings\satyendra\Application Data\Netscape\NSB\Profiles\lmdabf4e.default\cookies.txt -> TrackingCookie.Hitbox : Ignored.
:mozilla.265:C:\Documents and Settings\satyendra\Application Data\Netscape\NSB\Profiles\lmdabf4e.default\cookies.txt -> TrackingCookie.Hitbox : Ignored.
:mozilla.383:C:\Documents and Settings\satyendra\Application Data\Netscape\NSB\Profiles\lmdabf4e.default\cookies.txt -> TrackingCookie.Hitbox : Ignored.
:mozilla.562:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.Hitbox : Ignored.
:mozilla.57:C:\Documents and Settings\Administrator.SATYA\Application Data\Mozilla\Firefox\Profiles\dc81yrw9.default\cookies.txt -> TrackingCookie.Hitbox : Ignored.
:mozilla.59:C:\Documents and Settings\Administrator.SATYA\Application Data\Mozilla\Firefox\Profiles\dc81yrw9.default\cookies.txt -> TrackingCookie.Hitbox : Ignored.
:mozilla.60:C:\Documents and Settings\Administrator.SATYA\Application Data\Mozilla\Firefox\Profiles\dc81yrw9.default\cookies.txt -> TrackingCookie.Hitbox : Ignored.
C:\Documents and Settings\satyendra\Cookies\satyendra@ehg-maniatv.hitbox[1].txt -> TrackingCookie.Hitbox : Ignored.
C:\Documents and Settings\satyendra\Cookies\satyendra@ehg-meevee.hitbox[2].txt -> TrackingCookie.Hitbox : Ignored.
C:\Documents and Settings\satyendra\Cookies\satyendra@hitbox[2].txt -> TrackingCookie.Hitbox : Ignored.
:mozilla.397:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.Imrworldwide : Ignored.
:mozilla.398:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.Imrworldwide : Ignored.
:mozilla.90:C:\Documents and Settings\satyendra\Application Data\Netscape\NSB\Profiles\lmdabf4e.default\cookies.txt -> TrackingCookie.Imrworldwide : Ignored.
:mozilla.91:C:\Documents and Settings\satyendra\Application Data\Netscape\NSB\Profiles\lmdabf4e.default\cookies.txt -> TrackingCookie.Imrworldwide : Ignored.
:mozilla.96:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.Infinite-ads : Ignored.
:mozilla.97:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.Infinite-ads : Ignored.
:mozilla.98:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.Infinite-ads : Ignored.
C:\Documents and Settings\satyendra\Cookies\satyendra@ads.infinite-ads[2].txt -> TrackingCookie.Infinite-ads : Ignored.
:mozilla.110:C:\Documents and Settings\satyendra\Application Data\Netscape\NSB\Profiles\lmdabf4e.default\cookies.txt -> TrackingCookie.Mediaplex : Ignored.
:mozilla.111:C:\Documents and Settings\satyendra\Application Data\Netscape\NSB\Profiles\lmdabf4e.default\cookies.txt -> TrackingCookie.Mediaplex : Ignored.
:mozilla.185:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.Mediaplex : Ignored.
C:\Documents and Settings\Administrator.SATYA\Cookies\administrator@mediaplex[1].txt -> TrackingCookie.Mediaplex : Ignored.
C:\Documents and Settings\satyendra\Cookies\satyendra@mediaplex[1].txt -> TrackingCookie.Mediaplex : Ignored.
:mozilla.47:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.Onestat : Ignored.
:mozilla.48:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.Onestat : Ignored.
:mozilla.617:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.Overture : Ignored.
:mozilla.618:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.Overture : Ignored.
:mozilla.619:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.Overture : Ignored.
:mozilla.196:C:\Documents and Settings\satyendra\Application Data\Netscape\NSB\Profiles\lmdabf4e.default\cookies.txt -> TrackingCookie.Paypal : Ignored.
:mozilla.8:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.Paypal : Ignored.
C:\Documents and Settings\satyendra\Cookies\satyendra@www.paypal[2].txt -> TrackingCookie.Paypal : Ignored.
:mozilla.156:C:\Documents and Settings\satyendra\Application Data\Netscape\NSB\Profiles\lmdabf4e.default\cookies.txt -> TrackingCookie.Pointroll : Ignored.
:mozilla.157:C:\Documents and Settings\satyendra\Application Data\Netscape\NSB\Profiles\lmdabf4e.default\cookies.txt -> TrackingCookie.Pointroll : Ignored.
:mozilla.158:C:\Documents and Settings\satyendra\Application Data\Netscape\NSB\Profiles\lmdabf4e.default\cookies.txt -> TrackingCookie.Pointroll : Ignored.
:mozilla.159:C:\Documents and Settings\satyendra\Application Data\Netscape\NSB\Profiles\lmdabf4e.default\cookies.txt -> TrackingCookie.Pointroll : Ignored.
:mozilla.383:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.Pointroll : Ignored.
:mozilla.384:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.Pointroll : Ignored.
:mozilla.385:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.Pointroll : Ignored.
:mozilla.386:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.Pointroll : Ignored.
:mozilla.387:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.Pointroll : Ignored.
:mozilla.388:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.Pointroll : Ignored.
C:\Documents and Settings\satyendra\Cookies\satyendra@ads.pointroll[1].txt -> TrackingCookie.Pointroll : Ignored.
:mozilla.149:C:\Documents and Settings\satyendra\Application Data\Netscape\NSB\Profiles\lmdabf4e.default\cookies.txt -> TrackingCookie.Qksrv : Ignored.
:mozilla.150:C:\Documents and Settings\satyendra\Application Data\Netscape\NSB\Profiles\lmdabf4e.default\cookies.txt -> TrackingCookie.Qksrv : Ignored.
:mozilla.116:C:\Documents and Settings\satyendra\Application Data\Netscape\NSB\Profiles\lmdabf4e.default\cookies.txt -> TrackingCookie.Questionmarket : Ignored.
:mozilla.117:C:\Documents and Settings\satyendra\Application Data\Netscape\NSB\Profiles\lmdabf4e.default\cookies.txt -> TrackingCookie.Questionmarket : Ignored.
:mozilla.118:C:\Documents and Settings\satyendra\Application Data\Netscape\NSB\Profiles\lmdabf4e.default\cookies.txt -> TrackingCookie.Questionmarket : Ignored.
:mozilla.395:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.Questionmarket : Ignored.
:mozilla.396:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.Questionmarket : Ignored.
C:\Documents and Settings\satyendra\Cookies\satyendra@questionmarket[1].txt -> TrackingCookie.Questionmarket : Ignored.
:mozilla.10:C:\Documents and Settings\Administrator.SATYA\Application Data\Mozilla\Firefox\Profiles\dc81yrw9.default\cookies.txt -> TrackingCookie.Realmedia : Ignored.
:mozilla.15:C:\Documents and Settings\Administrator.SATYA\Application Data\Mozilla\Firefox\Profiles\dc81yrw9.default\cookies.txt -> TrackingCookie.Realmedia : Ignored.
:mozilla.16:C:\Documents and Settings\Administrator.SATYA\Application Data\Mozilla\Firefox\Profiles\dc81yrw9.default\cookies.txt -> TrackingCookie.Realmedia : Ignored.
:mozilla.222:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.Realmedia : Ignored.
:mozilla.223:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.Realmedia : Ignored.
:mozilla.224:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.Realmedia : Ignored.
:mozilla.225:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.Realmedia : Ignored.
:mozilla.226:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.Realmedia : Ignored.
:mozilla.227:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.Realmedia : Ignored.
:mozilla.228:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.Realmedia : Ignored.
:mozilla.240:C:\Documents and Settings\satyendra\Application Data\Netscape\NSB\Profiles\lmdabf4e.default\cookies.txt -> TrackingCookie.Realmedia : Ignored.
:mozilla.241:C:\Documents and Settings\satyendra\Application Data\Netscape\NSB\Profiles\lmdabf4e.default\cookies.txt -> TrackingCookie.Realmedia : Ignored.
:mozilla.242:C:\Documents and Settings\satyendra\Application Data\Netscape\NSB\Profiles\lmdabf4e.default\cookies.txt -> TrackingCookie.Realmedia : Ignored.
:mozilla.243:C:\Documents and Settings\satyendra\Application Data\Netscape\NSB\Profiles\lmdabf4e.default\cookies.txt -> TrackingCookie.Realmedia : Ignored.
:mozilla.244:C:\Documents and Settings\satyendra\Application Data\Netscape\NSB\Profiles\lmdabf4e.default\cookies.txt -> TrackingCookie.Realmedia : Ignored.
C:\Documents and Settings\satyendra\Cookies\satyendra@network.realmedia[2].txt -> TrackingCookie.Realmedia : Ignored.
C:\Documents and Settings\satyendra\Cookies\satyendra@realmedia[1].txt -> TrackingCookie.Realmedia : Ignored.
:mozilla.426:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.Reliablestats : Ignored.
:mozilla.427:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.Reliablestats : Ignored.
:mozilla.428:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.Reliablestats : Ignored.
:mozilla.429:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.Reliablestats : Ignored.
:mozilla.430:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.Reliablestats : Ignored.
:mozilla.431:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.Reliablestats : Ignored.
:mozilla.432:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.Reliablestats : Ignored.
:mozilla.433:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.Reliablestats : Ignored.
:mozilla.434:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.Reliablestats : Ignored.
:mozilla.435:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.Reliablestats : Ignored.
:mozilla.436:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.Reliablestats : Ignored.
C:\Documents and Settings\Administrator.SATYA\Cookies\administrator@stats1.reliablestats[2].txt -> TrackingCookie.Reliablestats : Ignored.
C:\Documents and Settings\satyendra\Cookies\satyendra@stats1.reliablestats[2].txt -> TrackingCookie.Reliablestats : Ignored.
:mozilla.173:C:\Documents and Settings\satyendra\Application Data\Netscape\NSB\Profiles\lmdabf4e.default\cookies.txt -> TrackingCookie.Revenue : Ignored.
:mozilla.174:C:\Documents and Settings\satyendra\Application Data\Netscape\NSB\Profiles\lmdabf4e.default\cookies.txt -> TrackingCookie.Revenue : Ignored.
:mozilla.188:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.Revsci : Ignored.
:mozilla.189:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.Revsci : Ignored.
:mozilla.190:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.Revsci : Ignored.
:mozilla.191:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.Revsci : Ignored.
:mozilla.192:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.Revsci : Ignored.
:mozilla.370:C:\Documents and Settings\satyendra\Application Data\Netscape\NSB\Profiles\lmdabf4e.default\cookies.txt -> TrackingCookie.Revsci : Ignored.
:mozilla.371:C:\Documents and Settings\satyendra\Application Data\Netscape\NSB\Profiles\lmdabf4e.default\cookies.txt -> TrackingCookie.Revsci : Ignored.
:mozilla.372:C:\Documents and Settings\satyendra\Application Data\Netscape\NSB\Profiles\lmdabf4e.default\cookies.txt -> TrackingCookie.Revsci : Ignored.
:mozilla.480:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.Revsci : Ignored.
:mozilla.126:C:\Documents and Settings\Administrator.SATYA\Application Data\Mozilla\Firefox\Profiles\dc81yrw9.default\cookies.txt -> TrackingCookie.Ru4 : Ignored.
:mozilla.127:C:\Documents and Settings\Administrator.SATYA\Application Data\Mozilla\Firefox\Profiles\dc81yrw9.default\cookies.txt -> TrackingCookie.Ru4 : Ignored.
:mozilla.142:C:\Documents and Settings\satyendra\Application Data\Netscape\NSB\Profiles\lmdabf4e.default\cookies.txt -> TrackingCookie.Ru4 : Ignored.
:mozilla.144:C:\Documents and Settings\satyendra\Application Data\Netscape\NSB\Profiles\lmdabf4e.default\cookies.txt -> TrackingCookie.Ru4 : Ignored.
:mozilla.145:C:\Documents and Settings\satyendra\Application Data\Netscape\NSB\Profiles\lmdabf4e.default\cookies.txt -> TrackingCookie.Ru4 : Ignored.
:mozilla.158:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.Ru4 : Ignored.
:mozilla.159:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.Ru4 : Ignored.
:mozilla.160:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.Ru4 : Ignored.
:mozilla.161:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.Ru4 : Ignored.
:mozilla.162:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.Ru4 : Ignored.
:mozilla.373:C:\Documents and Settings\satyendra\Application Data\Netscape\NSB\Profiles\lmdabf4e.default\cookies.txt -> TrackingCookie.Saxobank : Ignored.
:mozilla.352:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.Serving-sys : Ignored.
:mozilla.353:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.Serving-sys : Ignored.
:mozilla.354:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.Serving-sys : Ignored.
:mozilla.355:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.Serving-sys : Ignored.
:mozilla.356:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.Serving-sys : Ignored.
:mozilla.364:C:\Documents and Settings\satyendra\Application Data\Netscape\NSB\Profiles\lmdabf4e.default\cookies.txt -> TrackingCookie.Serving-sys : Ignored.
:mozilla.365:C:\Documents and Settings\satyendra\Application Data\Netscape\NSB\Profiles\lmdabf4e.default\cookies.txt -> TrackingCookie.Serving-sys : Ignored.
:mozilla.366:C:\Documents and Settings\satyendra\Application Data\Netscape\NSB\Profiles\lmdabf4e.default\cookies.txt -> TrackingCookie.Serving-sys : Ignored.
:mozilla.367:C:\Documents and Settings\satyendra\Application Data\Netscape\NSB\Profiles\lmdabf4e.default\cookies.txt -> TrackingCookie.Serving-sys : Ignored.
:mozilla.389:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.Serving-sys : Ignored.
:mozilla.372:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.Specificclick : Ignored.
:mozilla.373:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.Specificclick : Ignored.
:mozilla.374:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.Specificclick : Ignored.
:mozilla.375:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.Specificclick : Ignored.
:mozilla.376:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.Specificclick : Ignored.
:mozilla.377:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.Specificclick : Ignored.
:mozilla.378:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.Specificclick : Ignored.
:mozilla.379:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.Specificclick : Ignored.
:mozilla.380:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.Specificclick : Ignored.
:mozilla.381:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.Specificclick : Ignored.
:mozilla.382:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.Specificclick : Ignored.
:mozilla.86:C:\Documents and Settings\Administrator.SATYA\Application Data\Mozilla\Firefox\Profiles\dc81yrw9.default\cookies.txt -> TrackingCookie.Specificclick : Ignored.
:mozilla.89:C:\Documents and Settings\Administrator.SATYA\Application Data\Mozilla\Firefox\Profiles\dc81yrw9.default\cookies.txt -> TrackingCookie.Specificclick : Ignored.
:mozilla.90:C:\Documents and Settings\Administrator.SATYA\Application Data\Mozilla\Firefox\Profiles\dc81yrw9.default\cookies.txt -> TrackingCookie.Specificclick : Ignored.
:mozilla.91:C:\Documents and Settings\Administrator.SATYA\Application Data\Mozilla\Firefox\Profiles\dc81yrw9.default\cookies.txt -> TrackingCookie.Specificclick : Ignored.
C:\Documents and Settings\satyendra\Cookies\satyendra@specificclick[2].txt -> TrackingCookie.Specificclick : Ignored.
:mozilla.62:C:\Documents and Settings\Administrator.SATYA\Application Data\Mozilla\Firefox\Profiles\dc81yrw9.default\cookies.txt -> TrackingCookie.Spinbox : Ignored.
:mozilla.17:C:\Documents and Settings\Administrator.SATYA\Application Data\Mozilla\Firefox\Profiles\dc81yrw9.default\cookies.txt -> TrackingCookie.Statcounter : Ignored.
:mozilla.29:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.Statcounter : Ignored.
:mozilla.30:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.Statcounter : Ignored.
:mozilla.31:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.Statcounter : Ignored.
:mozilla.75:C:\Documents and Settings\satyendra\Application Data\Netscape\NSB\Profiles\lmdabf4e.default\cookies.txt -> TrackingCookie.Statcounter : Ignored.
:mozilla.76:C:\Documents and Settings\satyendra\Application Data\Netscape\NSB\Profiles\lmdabf4e.default\cookies.txt -> TrackingCookie.Statcounter : Ignored.
:mozilla.77:C:\Documents and Settings\satyendra\Application Data\Netscape\NSB\Profiles\lmdabf4e.default\cookies.txt -> TrackingCookie.Statcounter : Ignored.
:mozilla.205:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.Tacoda : Ignored.
:mozilla.206:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.Tacoda : Ignored.
:mozilla.208:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.Tacoda : Ignored.
:mozilla.210:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.Tacoda : Ignored.
:mozilla.211:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.Tacoda : Ignored.
:mozilla.214:C:\Documents and Settings\satyendra\Application Data\Netscape\NSB\Profiles\lmdabf4e.default\cookies.txt -> TrackingCookie.Tacoda : Ignored.
:mozilla.215:C:\Documents and Settings\satyendra\Application Data\Netscape\NSB\Profiles\lmdabf4e.default\cookies.txt -> TrackingCookie.Tacoda : Ignored.
:mozilla.40:C:\Documents and Settings\Administrator.SATYA\Application Data\Mozilla\Firefox\Profiles\dc81yrw9.default\cookies.txt -> TrackingCookie.Tacoda : Ignored.
:mozilla.41:C:\Documents and Settings\Administrator.SATYA\Application Data\Mozilla\Firefox\Profiles\dc81yrw9.default\cookies.txt -> TrackingCookie.Tacoda : Ignored.
:mozilla.42:C:\Documents and Settings\Administrator.SATYA\Application Data\Mozilla\Firefox\Profiles\dc81yrw9.default\cookies.txt -> TrackingCookie.Tacoda : Ignored.
:mozilla.43:C:\Documents and Settings\Administrator.SATYA\Application Data\Mozilla\Firefox\Profiles\dc81yrw9.default\cookies.txt -> TrackingCookie.Tacoda : Ignored.
:mozilla.792:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.Tacoda : Ignored.
:mozilla.793:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.Tacoda : Ignored.
C:\Documents and Settings\satyendra\Cookies\satyendra@anad.tacoda[1].txt -> TrackingCookie.Tacoda : Ignored.
C:\Documents and Settings\satyendra\Cookies\satyendra@anat.tacoda[1].txt -> TrackingCookie.Tacoda : Ignored.
C:\Documents and Settings\satyendra\Cookies\satyendra@tacoda[2].txt -> TrackingCookie.Tacoda : Ignored.
:mozilla.331:C:\Documents and Settings\satyendra\Application Data\Netscape\NSB\Profiles\lmdabf4e.default\cookies.txt -> TrackingCookie.Targetnet : Ignored.
:mozilla.178:C:\Documents and Settings\satyendra\Application Data\Netscape\NSB\Profiles\lmdabf4e.default\cookies.txt -> TrackingCookie.Trafficmp : Ignored.
:mozilla.179:C:\Documents and Settings\satyendra\Application Data\Netscape\NSB\Profiles\lmdabf4e.default\cookies.txt -> TrackingCookie.Trafficmp : Ignored.
:mozilla.180:C:\Documents and Settings\satyendra\Application Data\Netscape\NSB\Profiles\lmdabf4e.default\cookies.txt -> TrackingCookie.Trafficmp : Ignored.
:mozilla.181:C:\Documents and Settings\satyendra\Application Data\Netscape\NSB\Profiles\lmdabf4e.default\cookies.txt -> TrackingCookie.Trafficmp : Ignored.
:mozilla.182:C:\Documents and Settings\satyendra\Application Data\Netscape\NSB\Profiles\lmdabf4e.default\cookies.txt -> TrackingCookie.Trafficmp : Ignored.
:mozilla.183:C:\Documents and Settings\satyendra\Application Data\Netscape\NSB\Profiles\lmdabf4e.default\cookies.txt -> TrackingCookie.Trafficmp : Ignored.
:mozilla.184:C:\Documents and Settings\satyendra\Application Data\Netscape\NSB\Profiles\lmdabf4e.default\cookies.txt -> TrackingCookie.Trafficmp : Ignored.
:mozilla.185:C:\Documents and Settings\satyendra\Application Data\Netscape\NSB\Profiles\lmdabf4e.default\cookies.txt -> TrackingCookie.Trafficmp : Ignored.
:mozilla.240:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.Trafficmp : Ignored.
:mozilla.241:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.Trafficmp : Ignored.
:mozilla.242:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.Trafficmp : Ignored.
:mozilla.243:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.Trafficmp : Ignored.
:mozilla.244:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.Trafficmp : Ignored.
:mozilla.245:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.Trafficmp : Ignored.
:mozilla.246:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.Trafficmp : Ignored.
:mozilla.247:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.Trafficmp : Ignored.
:mozilla.248:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.Trafficmp : Ignored.
:mozilla.107:C:\Documents and Settings\Administrator.SATYA\Application Data\Mozilla\Firefox\Profiles\dc81yrw9.default\cookies.txt -> TrackingCookie.Tribalfusion : Ignored.
:mozilla.35:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.Tribalfusion : Ignored.
:mozilla.62:C:\Documents and Settings\satyendra\Application Data\Netscape\NSB\Profiles\lmdabf4e.default\cookies.txt -> TrackingCookie.Tribalfusion : Ignored.
:mozilla.63:C:\Documents and Settings\satyendra\Application Data\Netscape\NSB\Profiles\lmdabf4e.default\cookies.txt -> TrackingCookie.Tribalfusion : Ignored.
:mozilla.64:C:\Documents and Settings\satyendra\Application Data\Netscape\NSB\Profiles\lmdabf4e.default\cookies.txt -> TrackingCookie.Tribalfusion : Ignored.
:mozilla.65:C:\Documents and Settings\satyendra\Application Data\Netscape\NSB\Profiles\lmdabf4e.default\cookies.txt -> TrackingCookie.Tribalfusion : Ignored.
:mozilla.66:C:\Documents and Settings\satyendra\Application Data\Netscape\NSB\Profiles\lmdabf4e.default\cookies.txt -> TrackingCookie.Tribalfusion : Ignored.
:mozilla.67:C:\Documents and Settings\satyendra\Application Data\Netscape\NSB\Profiles\lmdabf4e.default\cookies.txt -> TrackingCookie.Tribalfusion : Ignored.
:mozilla.68:C:\Documents and Settings\satyendra\Application Data\Netscape\NSB\Profiles\lmdabf4e.default\cookies.txt -> TrackingCookie.Tribalfusion : Ignored.
:mozilla.69:C:\Documents and Settings\satyendra\Application Data\Netscape\NSB\Profiles\lmdabf4e.default\cookies.txt -> TrackingCookie.Tribalfusion : Ignored.
:mozilla.70:C:\Documents and Settings\satyendra\Application Data\Netscape\NSB\Profiles\lmdabf4e.default\cookies.txt -> TrackingCookie.Tribalfusion : Ignored.
:mozilla.71:C:\Documents and Settings\satyendra\Application Data\Netscape\NSB\Profiles\lmdabf4e.default\cookies.txt -> TrackingCookie.Tribalfusion : Ignored.
:mozilla.72:C:\Documents and Settings\satyendra\Application Data\Netscape\NSB\Profiles\lmdabf4e.default\cookies.txt -> TrackingCookie.Tribalfusion : Ignored.
:mozilla.73:C:\Documents and Settings\satyendra\Application Data\Netscape\NSB\Profiles\lmdabf4e.default\cookies.txt -> TrackingCookie.Tribalfusion : Ignored.
:mozilla.74:C:\Documents and Settings\satyendra\Application Data\Netscape\NSB\Profiles\lmdabf4e.default\cookies.txt -> TrackingCookie.Tribalfusion : Ignored.
C:\Documents and Settings\satyendra\Cookies\satyendra@tribalfusion[2].txt -> TrackingCookie.Tribalfusion : Ignored.
:mozilla.263:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.Valuead : Ignored.
:mozilla.264:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.Valuead : Ignored.
:mozilla.265:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.Valuead : Ignored.
:mozilla.266:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.Valuead : Ignored.
:mozilla.267:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.Valuead : Ignored.
:mozilla.268:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.Valuead : Ignored.
C:\Documents and Settings\satyendra\Cookies\satyendra@reduxads.valuead[1].txt -> TrackingCookie.Valuead : Ignored.
:mozilla.252:C:\Documents and Settings\satyendra\Application Data\Netscape\NSB\Profiles\lmdabf4e.default\cookies.txt -> TrackingCookie.Valueclick : Ignored.
:mozilla.887:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.Webtrends : Ignored.
C:\Documents and Settings\Administrator.SATYA\Cookies\administrator@m.webtrends[1].txt -> TrackingCookie.Webtrends : Ignored.
:mozilla.291:C:\Documents and Settings\satyendra\Application Data\Netscape\NSB\Profiles\lmdabf4e.default\cookies.txt -> TrackingCookie.Webtrendslive : Ignored.
:mozilla.292:C:\Documents and Settings\satyendra\Application Data\Netscape\NSB\Profiles\lmdabf4e.default\cookies.txt -> TrackingCookie.Webtrendslive : Ignored.
:mozilla.387:C:\Documents and Settings\satyendra\Application Data\Netscape\NSB\Profiles\lmdabf4e.default\cookies.txt -> TrackingCookie.Webtrendslive : Ignored.
:mozilla.388:C:\Documents and Settings\satyendra\Application Data\Netscape\NSB\Profiles\lmdabf4e.default\cookies.txt -> TrackingCookie.Webtrendslive : Ignored.
:mozilla.389:C:\Documents and Settings\satyendra\Application Data\Netscape\NSB\Profiles\lmdabf4e.default\cookies.txt -> TrackingCookie.Webtrendslive : Ignored.
:mozilla.421:C:\Documents and Settings\satyendra\Application Data\Netscape\NSB\Profiles\lmdabf4e.default\cookies.txt -> TrackingCookie.Webtrendslive : Ignored.
C:\Documents and Settings\satyendra\Cookies\satyendra@statse.webtrendslive[2].txt -> TrackingCookie.Webtrendslive : Ignored.
:mozilla.233:C:\Documents and Settings\satyendra\Application Data\Netscape\NSB\Profiles\lmdabf4e.default\cookies.txt -> TrackingCookie.Yieldmanager : Ignored.
:mozilla.234:C:\Documents and Settings\satyendra\Application Data\Netscape\NSB\Profiles\lmdabf4e.default\cookies.txt -> TrackingCookie.Yieldmanager : Ignored.
:mozilla.49:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.Yieldmanager : Ignored.
:mozilla.50:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.Yieldmanager : Ignored.
:mozilla.52:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.Yieldmanager : Ignored.
:mozilla.53:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.Yieldmanager : Ignored.
:mozilla.54:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.Yieldmanager : Ignored.
:mozilla.55:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.Yieldmanager : Ignored.
:mozilla.56:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.Yieldmanager : Ignored.
:mozilla.57:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.Yieldmanager : Ignored.
C:\Documents and Settings\satyendra\Cookies\satyendra@ad.yieldmanager[1].txt -> TrackingCookie.Yieldmanager : Ignored.
C:\Documents and Settings\satyendra\Cookies\satyendra@ad.yieldmanager[2].txt -> TrackingCookie.Yieldmanager : Ignored.
C:\Documents and Settings\satyendra\Cookies\satyendra@ad.yieldmanager[3].txt -> TrackingCookie.Yieldmanager : Ignored.
:mozilla.192:C:\Documents and Settings\satyendra\Application Data\Netscape\NSB\Profiles\lmdabf4e.default\cookies.txt -> TrackingCookie.Zedo : Ignored.
:mozilla.193:C:\Documents and Settings\satyendra\Application Data\Netscape\NSB\Profiles\lmdabf4e.default\cookies.txt -> TrackingCookie.Zedo : Ignored.
:mozilla.194:C:\Documents and Settings\satyendra\Application Data\Netscape\NSB\Profiles\lmdabf4e.default\cookies.txt -> TrackingCookie.Zedo : Ignored.
:mozilla.212:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.Zedo : Ignored.
:mozilla.213:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.Zedo : Ignored.
:mozilla.214:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.Zedo : Ignored.
:mozilla.215:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.Zedo : Ignored.
:mozilla.216:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.Zedo : Ignored.
:mozilla.217:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.Zedo : Ignored.
:mozilla.218:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.Zedo : Ignored.
:mozilla.219:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.Zedo : Ignored.
:mozilla.220:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.Zedo : Ignored.
:mozilla.221:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.Zedo : Ignored.
:mozilla.25:C:\Documents and Settings\Administrator.SATYA\Application Data\Mozilla\Firefox\Profiles\dc81yrw9.default\cookies.txt -> TrackingCookie.Zedo : Ignored.
:mozilla.26:C:\Documents and Settings\Administrator.SATYA\Application Data\Mozilla\Firefox\Profiles\dc81yrw9.default\cookies.txt -> TrackingCookie.Zedo : Ignored.
:mozilla.27:C:\Documents and Settings\Administrator.SATYA\Application Data\Mozilla\Firefox\Profiles\dc81yrw9.default\cookies.txt -> TrackingCookie.Zedo : Ignored.
:mozilla.28:C:\Documents and Settings\Administrator.SATYA\Application Data\Mozilla\Firefox\Profiles\dc81yrw9.default\cookies.txt -> TrackingCookie.Zedo : Ignored.
:mozilla.29:C:\Documents and Settings\Administrator.SATYA\Application Data\Mozilla\Firefox\Profiles\dc81yrw9.default\cookies.txt -> TrackingCookie.Zedo : Ignored.
:mozilla.525:C:\Documents and Settings\satyendra\Application Data\Mozilla\Firefox\Profiles\0y7g29kc.default\cookies.txt -> TrackingCookie.Zedo : Ignored.
C:\Documents and Settings\satyendra\Cookies\satyendra@zedo[1].txt -> TrackingCookie.Zedo : Ignored.
C:\System Volume Information\_restore{202550A8-7A33-4BCA-9586-051D24DDBF8F}\RP1217\A0093212.exe -> Trojan.Agent : Ignored.
C:\System Volume Information\_restore{202550A8-7A33-4BCA-9586-051D24DDBF8F}\RP1243\A0100569.exe -> Trojan.Fakealert.fb : Ignored.
C:\System Volume Information\_restore{202550A8-7A33-4BCA-9586-051D24DDBF8F}\RP1224\A0094308.exe -> Trojan.Rond : Ignored.
C:\System Volume Information\_restore{202550A8-7A33-4BCA-9586-051D24DDBF8F}\RP1224\A0094309.dll -> Trojan.Rond : Ignored.
C:\System Volume Information\_restore{202550A8-7A33-4BCA-9586-051D24DDBF8F}\RP1246\A0101136.exe -> Trojan.Rond : Ignored.
C:\System Volume Information\_restore{202550A8-7A33-4BCA-9586-051D24DDBF8F}\RP1246\A0101137.dll -> Trojan.Rond : Ignored.
C:\System Volume Information\_restore{202550A8-7A33-4BCA-9586-051D24DDBF8F}\RP1217\A0093193.exe -> Trojan.Small : Ignored.
C:\System Volume Information\_restore{202550A8-7A33-4BCA-9586-051D24DDBF8F}\RP1224\A0094301.exe -> Trojan.Small : Ignored.
C:\System Volume Information\_restore{202550A8-7A33-4BCA-9586-051D24DDBF8F}\RP1224\A0096150.exe -> Trojan.Small : Ignored.
C:\System Volume Information\_restore{202550A8-7A33-4BCA-9586-051D24DDBF8F}\RP1225\A0096201.exe -> Trojan.Small : Ignored.
C:\System Volume Information\_restore{202550A8-7A33-4BCA-9586-051D24DDBF8F}\RP1231\A0096726.exe -> Trojan.Small : Ignored.
C:\System Volume Information\_restore{202550A8-7A33-4BCA-9586-051D24DDBF8F}\RP1237\A0097932.exe -> Trojan.Small : Ignored.
C:\System Volume Information\_restore{202550A8-7A33-4BCA-9586-051D24DDBF8F}\RP1239\A0098958.exe -> Trojan.Small : Ignored.


::Report end

#11 RichieUK

RichieUK

    Malware Assassin


  • Malware Response Team
  • 13,614 posts
  • OFFLINE
  •  
  • Local time:01:48 AM

Posted 04 June 2007 - 03:09 AM

Download\install 'SuperAntiSpyware Home Edition Free Version' from here:
http://www.superantispyware.com/downloadfi...ANTISPYWAREFREE

Launch SuperAntiSpyware and click on 'Check for updates'.
Once the updates have been installed,on the main screen click on 'Scan your computer'.
Check: 'Perform Complete Scan'.
Click 'Next' to start the scan.

Superantispyware will now scan your computer,when it's finished it will list all/any infections found.
Make sure everything found has a checkmark next to it,then press 'Next'.
Click on 'Finish' when you've done.

It's possible that the program will ask you to reboot in order to delete some files.

Obtain the SuperAntiSpyware log as follows:
Click on 'Preferences'.
Click on the 'Statistics/Logs' tab.
Under 'Scanner Logs' double click on 'SuperAntiSpyware Scan Log'.
It will then open in your default text editor,such as Notepad.
Copy and paste the contents of that report into your next reply.

********************************

Please download DrWeb-CureIt & save it to your desktop. DO NOT perform a scan yet.

You should copy/print the following because you need to be in Safe Mode from here on.

Reboot your computer into SAFE MODE" using the F8 method.
To do this,restart your computer and after hearing your computer beep once during startup (but before the Windows icon appears) press the F8 key repeatedly.
A menu will appear with several options.
Use the arrow keys on your keyboard to navigate and select the option to run Windows in "Safe Mode".

Scan with DrWeb-CureIt as follows:
* Double-click on drweb-cureit.exe to start the program. An "Express Scan of your PC" notice will appear.
* Under "Start the Express Scan Now", Click "OK" to start. This is a short scan that will scan the files currently running in memory and when something is found, click the Yes button when it asks you if you want to cure it.
* Once the short scan has finished, Click Options > Change settings
* Choose the "Scan tab" and UNcheck "Heuristic analysis"
* Back at the main window, click "Select drives" (a red dot will show which drives have been chosen)
* Then click the "Start/Stop Scanning" button (green arrow on the right) and the scan will start.
* When done, a message will be displayed at the bottom advising if any viruses were found.
* Click "Yes to all" if it asks if you want to cure/move the file.
* When the scan has finished, look if you can see the icon next to the files found. If so, click it, then click the next icon right below and select "Move incurable".
(This will move it to the C:\Documents and Settings\userprofile\DoctorWeb\Quarantine folder if it can't be cured)
* Next, in the Dr.Web CureIt menu on top, click file and choose save report list.
* Save the DrWeb.csv report to your desktop.
* Exit Dr.Web Cureit when done.
* Important! Reboot your computer because it could be possible that files in use will be moved/deleted during reboot.
* After reboot, post the contents of the log from Dr.Web in your next reply. (You can use Notepad to open the DrWeb.cvs report)

Also post a new Hijackthis log please.
Posted Image
Posted Image

#12 rosadom

rosadom
  • Topic Starter

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Local time:08:48 PM

Posted 04 June 2007 - 10:11 PM

Hi,

I have not yet followed your last instruction as I could not complete the previous one correctly. Please findlatest hijack this log. At this point my computer runs much better than earlier, I will be now be completing the last instruction and posts the logs. Thanks again...



Logfile of HijackThis v1.99.1
Scan saved at 11:00:55 PM, on 6/4/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16441)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Windows Defender\MsMpEng.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
C:\Program Files\Common Files\Symantec Shared\AppCore\AppSvc32.exe
C:\WINDOWS\system32\spoolsv.exe
C:\PROGRA~1\COMMON~1\AOL\ACS\acsd.exe
C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\wanmpsvc.exe
C:\WINDOWS\System32\WLTRYSVC.EXE
C:\WINDOWS\System32\bcmwltry.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\BCMSMMSG.exe
C:\Program Files\Apoint\Apoint.exe
C:\Program Files\Java\j2re1.4.2_03\bin\jusched.exe
C:\WINDOWS\system32\BacsTray.exe
C:\Program Files\Dell\Media Experience\PCMService.exe
C:\Program Files\CyberLink\PowerDVD\DVDLauncher.exe
C:\Program Files\Dell\QuickSet\quickset.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\Program Files\Logitech\Video\LogiTray.exe
C:\Program Files\Winamp\winampa.exe
C:\Program Files\Windows Defender\MSASCui.exe
C:\Program Files\Common Files\Symantec Shared\ccApp.exe
C:\Program Files\Apoint\Apntex.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
C:\Program Files\DellSupport\DSAgnt.exe
C:\Program Files\Google\Google Talk\googletalk.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe
C:\PROGRA~1\MI3AA1~1\wcescomm.exe
C:\PROGRA~1\MI3AA1~1\rapimgr.exe
C:\DOCUME~1\SATYEN~1\LOCALS~1\Temp\bwgo000baf19.exe
C:\PROGRA~1\Yahoo!\MESSEN~1\ymsgr_tray.exe
C:\WINDOWS\system32\LVComsX.exe
C:\Program Files\Logitech\Video\FxSvr2.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Hijackthis\abc.dat.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://securityresponse.symantec.com/avcenter/fix_homepage/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.yahoo.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://us.rd.yahoo.com/customize/ie/defaul...rch/search.html
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://www.dell4me.com/myway
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {1E8A6170-7264-4D0F-BEAE-D42A53123C75} - C:\Program Files\Common Files\Symantec Shared\coShared\Browser\1.5\NppBho.dll
O2 - BHO: X1IEHook Class - {52706EF7-D7A2-49AD-A615-E903858CF284} - C:\Program Files\NetZero\qsacc\x1IEBHO.dll
O2 - BHO: DriveLetterAccess - {5CA3D70E-1895-11CF-8E15-001234567890} - C:\WINDOWS\system32\dla\tfswshx.dll
O2 - BHO: IeCatch2 Class - {A5366673-E8CA-11D3-9CD9-0090271D075B} - C:\FlashGet\jccatch.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar4.dll
O3 - Toolbar: FlashGet Bar - {E0E899AB-F487-11D5-8D29-0050BA6940E3} - C:\FlashGet\fgiebar.dll
O3 - Toolbar: ZeroBar - {F5735C15-1FB2-41FE-BA12-242757E69DDE} - C:\Program Files\NetZero\toolbar.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar4.dll
O3 - Toolbar: Show Norton Toolbar - {90222687-F593-4738-B738-FBEE9C7B26DF} - C:\Program Files\Common Files\Symantec Shared\coShared\Browser\1.5\UIBHO.dll
O4 - HKLM\..\Run: [nwiz] nwiz.exe /installquiet
O4 - HKLM\..\Run: [BCMSMMSG] BCMSMMSG.exe
O4 - HKLM\..\Run: [Apoint] C:\Program Files\Apoint\Apoint.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\j2re1.4.2_03\bin\jusched.exe
O4 - HKLM\..\Run: [bacstray] BacsTray.exe
O4 - HKLM\..\Run: [UpdateManager] "C:\Program Files\Common Files\Sonic\Update Manager\sgtray.exe" /r
O4 - HKLM\..\Run: [PCMService] "C:\Program Files\Dell\Media Experience\PCMService.exe"
O4 - HKLM\..\Run: [DVDLauncher] "C:\Program Files\CyberLink\PowerDVD\DVDLauncher.exe"
O4 - HKLM\..\Run: [Dell QuickSet] C:\Program Files\Dell\QuickSet\quickset.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [LogitechVideoRepair] C:\Program Files\Logitech\Video\ISStart.exe
O4 - HKLM\..\Run: [LogitechVideoTray] C:\Program Files\Logitech\Video\LogiTray.exe
O4 - HKLM\..\Run: [WinampAgent] C:\Program Files\Winamp\winampa.exe
O4 - HKLM\..\Run: [Windows Defender] "C:\Program Files\Windows Defender\MSASCui.exe" -hide
O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Common Files\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [osCheck] "C:\Program Files\Norton Internet Security\osCheck.exe"
O4 - HKLM\..\Run: [Symantec PIF AlertEng] "C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe" /a /m "C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\AlertEng.dll"
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [Yahoo! Pager] "C:\PROGRA~1\Yahoo!\MESSEN~1\YAHOOM~1.EXE" -quiet
O4 - HKCU\..\Run: [DellSupport] "C:\Program Files\DellSupport\DSAgnt.exe" /startup
O4 - HKCU\..\Run: [LogitechSoftwareUpdate] "C:\Program Files\Logitech\Video\ManifestEngine.exe" boot
O4 - HKCU\..\Run: [LDM] C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BackWeb-8876480.exe
O4 - HKCU\..\Run: [googletalk] "C:\Program Files\Google\Google Talk\googletalk.exe" /autostart
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [H/PC Connection Agent] "C:\PROGRA~1\MI3AA1~1\wcescomm.exe"
O4 - HKCU\..\Run: [MoneyAgent] "C:\Program Files\Microsoft Money\System\mnyexpr.exe"
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: America Online 9.0 Tray Icon.lnk = C:\Program Files\America Online 9.0\aoltray.exe
O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O8 - Extra context menu item: Display All Images with Full Quality - "res://C:\Program Files\NetZero\qsacc\appres.dll/228"
O8 - Extra context menu item: Display Image with Full Quality - "res://C:\Program Files\NetZero\qsacc\appres.dll/227"
O8 - Extra context menu item: Download All by FlashGet - C:\FlashGet\jc_all.htm
O8 - Extra context menu item: Download using FlashGet - C:\FlashGet\jc_link.htm
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~4\Office10\EXCEL.EXE/3000
O8 - Extra context menu item: Yahoo! &SMS - file:///C:\Program Files\Yahoo!\Common/ycsms.htm
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\WINDOWS\system32\msjava.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\WINDOWS\system32\msjava.dll
O9 - Extra button: Create Mobile Favorite - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MI3AA1~1\INetRepl.dll
O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MI3AA1~1\INetRepl.dll
O9 - Extra 'Tools' menuitem: Create Mobile Favorite... - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MI3AA1~1\INetRepl.dll
O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\system32\Shdocvw.dll
O9 - Extra button: FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\FlashGet\flashget.exe
O9 - Extra 'Tools' menuitem: &FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\FlashGet\flashget.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O11 - Options group: [INTERNATIONAL] International*
O16 - DPF: {0E5F0222-96B9-11D3-8997-00104BD12D94} (PCPitstop Utility) - http://www.pcpitstop.com/pcpitstop/PCPitStop.CAB
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:\Program Files\Yahoo!\Common\yinsthelper.dll
O16 - DPF: {3EA4FA88-E0BE-419A-A732-9B79B87A6ED0} (CTVUAxCtrl Object) - http://dl.tvunetworks.com/TVUAx.cab
O16 - DPF: {56393399-041A-4650-94C7-13DFCB1F4665} - http://www.my-etrust.com/Support/PestScanner/pestscan.cab
O16 - DPF: {5ED80217-570B-4DA9-BF44-BE107C0EC166} (Windows Live Safety Center Base Module) - http://cdn.scan.onecare.live.com/resource/...lscbase9602.cab
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftupdat...b?1149977597449
O16 - DPF: {95EEE69E-27B4-4D13-BD32-766617A16909} (NDTVVideo.MPlayer) - http://www.ndtv.com/video/NDTVseekvideo.CAB
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O23 - Service: AOL Connectivity Service (AOL ACS) - America Online, Inc. - C:\PROGRA~1\COMMON~1\AOL\ACS\acsd.exe
O23 - Service: Automatic LiveUpdate Scheduler - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
O23 - Service: AVG Anti-Spyware Guard - Anti-Malware Development a.s. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: Symantec Event Manager (ccEvtMgr) - Unknown owner - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe" /h ccCommon (file missing)
O23 - Service: Symantec Settings Manager (ccSetMgr) - Unknown owner - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe" /h ccCommon (file missing)
O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Unknown owner - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe" /h cltCommon (file missing)
O23 - Service: COM Host (comHost) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\VAScanner\comHost.exe
O23 - Service: DSBrokerService - Unknown owner - C:\Program Files\DellSupport\brkrsvc.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Symantec IS Password Validation (ISPwdSvc) - Symantec Corporation - C:\Program Files\Norton Internet Security\isPwdSvc.exe
O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
O23 - Service: LiveUpdate Notice Service Ex (LiveUpdate Notice Ex) - Unknown owner - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe" /h ccCommon (file missing)
O23 - Service: LiveUpdate Notice Service - Unknown owner - C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe" /m "C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PifEng.dll (file missing)
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Symantec Core LC - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe
O23 - Service: Symantec AppCore Service (SymAppCore) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\AppCore\AppSvc32.exe
O23 - Service: WAN Miniport (ATW) Service (WANMiniportService) - America Online, Inc. - C:\WINDOWS\wanmpsvc.exe
O23 - Service: WLTRYSVC - Unknown owner - C:\WINDOWS\System32\WLTRYSVC.EXE




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users