Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Not-a-virus.exploit And Downloader.openconnection Trojans ---_!


  • Please log in to reply
1 reply to this topic

#1 EnricotheIV

EnricotheIV

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Local time:02:51 PM

Posted 05 June 2007 - 02:10 PM

Hey Team,

AVG 7.5 found these three trojans as of 5 minutes ago:

Not-a-virus.exploit.java.bytverify
Trojan.classloader.c
Downloader.openconnection


Heres my latest HJT and AVG log:

Any other info you need, just ask!

THanks






Logfile of HijackThis v1.99.1
Scan saved at 2:00:21 PM, on 6/5/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\CTsvcCDA.EXE
C:\WINDOWS\System32\nvsvc32.exe
C:\Program Files\Softex\OmniPass\Omniserv.exe
C:\WINDOWS\system32\HPZipm12.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Viewpoint\Common\ViewpointService.exe
C:\WINDOWS\wanmpsvc.exe
C:\WINDOWS\system32\MsPMSPSv.exe
C:\Program Files\Viewpoint\Viewpoint Manager\ViewMgr.exe
C:\Program Files\Softex\OmniPass\OPXPApp.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Hewlett-Packard\HP Share-to-Web\hpgs2wnd.exe
C:\windows\system\hpsysdrv.exe
C:\Program Files\Hewlett-Packard\Digital Imaging\Unload\hpqcmon.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\Program Files\WildTangent\Apps\CDA\GameDrvr.exe
C:\Program Files\Java\jre1.5.0_04\bin\jusched.exe
C:\WINDOWS\Mixer.exe
C:\Program Files\Hewlett-Packard\HP Software Update\HPWuSchd2.exe
C:\HP\KBD\KBD.EXE
C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqtra08.exe
c:\Program Files\Hewlett-Packard\HP Share-to-Web\hpgs2wnf.exe
C:\Program Files\Updates from HP\137903\Program\BackWeb-137903.exe
C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqSTE08.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
C:\Documents and Settings\Owner\Desktop\Spyware combat\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://us8.hpwis.com/
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://srch-us8.hpwis.com/
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.comcast.net/home.html
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://srch-us8.hpwis.com/
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://us8.hpwis.com/
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://redirect.paviliondownload.com/2.0/c...hp.my.yahoo.com
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost
F2 - REG:system.ini: UserInit=C:\WINDOWS\system32\Userinit.exe
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar4.dll
O3 - Toolbar: hp toolkit - {B2847E28-5D7D-4DEB-8B67-05D28BCF79F5} - C:\HP\EXPLOREBAR\HPTOOLKT.DLL
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar4.dll
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\System32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [Share-to-Web Namespace Daemon] c:\Program Files\Hewlett-Packard\HP Share-to-Web\hpgs2wnd.exe
O4 - HKLM\..\Run: [REGSHAVE] C:\Program Files\REGSHAVE\REGSHAVE.EXE /AUTORUN
O4 - HKLM\..\Run: [Recguard] C:\WINDOWS\SMINST\RECGUARD.EXE
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [hpsysdrv] c:\windows\system\hpsysdrv.exe
O4 - HKLM\..\Run: [HPDJ Taskbar Utility] C:\WINDOWS\System32\spool\drivers\w32x86\3\hpztsb05.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\System32\hkcmd.exe
O4 - HKLM\..\Run: [CamMonitor] c:\Program Files\Hewlett-Packard\Digital Imaging\Unload\hpqcmon.exe
O4 - HKLM\..\Run: [AlcxMonitor] ALCXMNTR.EXE
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [WildTangent CDA] "C:\Program Files\WildTangent\Apps\CDA\GameDrvr.exe" /startup "C:\Program Files\WildTangent\Apps\CDA\cdaEngine0500.dll"
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_04\bin\jusched.exe
O4 - HKLM\..\Run: [C-Media Mixer] Mixer.exe /startup
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\Hewlett-Packard\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [KBD] C:\HP\KBD\KBD.EXE
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKCU\..\Run: [updateMgr] "C:\Program Files\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.exe" AcRdB7_0_8 -reboot 1
O4 - Startup: PowerReg Scheduler.exe
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqtra08.exe
O4 - Global Startup: Updates from HP.lnk = C:\Program Files\Updates from HP\137903\Program\BackWeb-137903.exe
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_04\bin\npjpi150_04.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_04\bin\npjpi150_04.dll
O9 - Extra button: AIM - {AC9E2541-2814-11d5-BC6D-00B0D0A1DE45} - C:\Program Files\AIM\aim.exe
O9 - Extra button: MANSION - {CD03D14B-0EF6-4f5a-BB81-1ECAFFC676AF} - C:\Program Files\MANSION\FreePoker\MANSION.exe (file missing)
O9 - Extra 'Tools' menuitem: MANSION - {CD03D14B-0EF6-4f5a-BB81-1ECAFFC676AF} - C:\Program Files\MANSION\FreePoker\MANSION.exe (file missing)
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O12 - Plugin for .spop: C:\Program Files\Internet Explorer\Plugins\NPDocBox.dll
O16 - DPF: RaptisoftGameLoader - http://real.gamehouse.com/real/games/rapti...tgameloader.cab
O16 - DPF: {2DFF31F9-7893-4922-AF66-C9A1EB4EBB31} (Rhapsody Player Engine) - http://forms.real.com/real/player/download...ne_Inst_Win.cab
O16 - DPF: {5F8469B4-B055-49DD-83F7-62B522420ECC} (Facebook Photo Uploader Control) - http://upload.facebook.com/controls/Facebo...otoUploader.cab
O16 - DPF: {62475759-9E84-458E-A1AB-5D2C442ADFDE} - http://a1540.g.akamai.net/7/1540/52/200312...meInstaller.exe
O16 - DPF: {A7798D6C-C6B5-4F26-9363-F7CDBBFFA607} (download Class) - http://www.gigex.com/ActiveX/vxpspeeddelivery.dll
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)
O18 - Filter: text/html - (no CLSID) - (no file)
O18 - Filter: text/plain - (no CLSID) - (no file)
O20 - Winlogon Notify: igfxcui - C:\WINDOWS\SYSTEM32\igfxsrvc.dll
O20 - Winlogon Notify: OPXPGina - C:\Program Files\Softex\OmniPass\opxpgina.dll
O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: Creative Service for CDROM Access - Creative Technology Ltd - C:\WINDOWS\system32\CTsvcCDA.EXE
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: HP Port Resolver - Hewlett-Packard Company - C:\WINDOWS\system32\spool\drivers\w32x86\3\HPBPRO.EXE
O23 - Service: HP Status Server - Hewlett-Packard Company - C:\WINDOWS\system32\spool\drivers\w32x86\3\HPBOID.EXE
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe
O23 - Service: Softex OmniPass Service (omniserv) - Unknown owner - C:\Program Files\Softex\OmniPass\Omniserv.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
O23 - Service: SymWMI Service (SymWSC) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\Security Center\SymWSC.exe
O23 - Service: Ventrilo - Unknown owner - C:\Program Files\VentSrv\ventrilo_svc.exe (file missing)
O23 - Service: Viewpoint Manager Service - Viewpoint Corporation - C:\Program Files\Viewpoint\Common\ViewpointService.exe
O23 - Service: WAN Miniport (ATW) Service (WANMiniportService) - America Online, Inc. - C:\WINDOWS\wanmpsvc.exe


_____



AVG log



---------------------------------------------------------
AVG Anti-Spyware - Scan Report
---------------------------------------------------------

+ Created at: 2:56:41 PM 6/5/2007

+ Scan result:



HKLM\SOFTWARE\AutoLoader -> Adware.Apropos : Cleaned with backup (quarantined).
HKLM\SOFTWARE\Envolo -> Adware.Apropos : Cleaned with backup (quarantined).
HKLM\SOFTWARE\Envolo\AutoUpdate -> Adware.Apropos : Cleaned with backup (quarantined).
HKLM\SOFTWARE\Envolo\AutoUpdate\State -> Adware.Apropos : Cleaned with backup (quarantined).
C:\Documents and Settings\Owner\Local Settings\Temp\THI31EC.tmp\preInsTT.exe -> Adware.BiSpy : Cleaned with backup (quarantined).
C:\Documents and Settings\Owner\Local Settings\Temp\THI31EC.tmp\twaintec.cab/preInsTT.exe -> Adware.BiSpy : Cleaned with backup (quarantined).
C:\Documents and Settings\Owner\Local Settings\Temp\THI31EC.tmp\twaintec.cab/twaintec.dll -> Adware.BiSpy : Cleaned with backup (quarantined).
C:\Documents and Settings\Owner\Local Settings\Temp\THI31EC.tmp\twaintec.dll -> Adware.BiSpy : Cleaned with backup (quarantined).
HKLM\SOFTWARE\Classes\AppID\{70F17C8C-1744-41B6-9D07-575DB448DCC5} -> Adware.Malwarewipe : Cleaned with backup (quarantined).
C:\Program Files\WebSavingsfromEbates -> Adware.MoneyMaker : Cleaned with backup (quarantined).
C:\Program Files\WebSavingsfromEbates\ApplicationData(2) -> Adware.MoneyMaker : Cleaned with backup (quarantined).
C:\Program Files\WebSavingsfromEbates\ApplicationData(2)\Administrator(2) -> Adware.MoneyMaker : Cleaned with backup (quarantined).
C:\Program Files\WebSavingsfromEbates\ApplicationData(2)\Administrator(2)\ebateswebsavingsdr0data.dls -> Adware.MoneyMaker : Cleaned with backup (quarantined).
C:\Program Files\WebSavingsfromEbates\ApplicationData(2)\Owner(2) -> Adware.MoneyMaker : Cleaned with backup (quarantined).
C:\Program Files\WebSavingsfromEbates\ApplicationData(2)\Owner(2)\dataexcludeebateswebsavingsdr0saved.dls -> Adware.MoneyMaker : Cleaned with backup (quarantined).
C:\Program Files\WebSavingsfromEbates\ApplicationData(2)\Owner(2)\ebateswebsavingsdr0data.dls -> Adware.MoneyMaker : Cleaned with backup (quarantined).
C:\Program Files\WebSavingsfromEbates\ApplicationData(2)\merchants.dls -> Adware.MoneyMaker : Cleaned with backup (quarantined).
C:\Program Files\WebSavingsfromEbates\ApplicationData(2)\systemdata.dls -> Adware.MoneyMaker : Cleaned with backup (quarantined).
C:\Program Files\WebSavingsfromEbates\ApplicationData(2)\systemdata1.dls -> Adware.MoneyMaker : Cleaned with backup (quarantined).
C:\Program Files\WebSavingsfromEbates\ApplicationData(2)\updates.dls -> Adware.MoneyMaker : Cleaned with backup (quarantined).
C:\Program Files\WebSavingsfromEbates\Applications(2) -> Adware.MoneyMaker : Cleaned with backup (quarantined).
C:\Program Files\WebSavingsfromEbates\Applications(2)\cmpck.dls -> Adware.MoneyMaker : Cleaned with backup (quarantined).
C:\Program Files\WebSavingsfromEbates\Applications(2)\ebatesdatamerchCust.dls -> Adware.MoneyMaker : Cleaned with backup (quarantined).
C:\Program Files\WebSavingsfromEbates\Applications(2)\ebateswebsavingsdr0.dls -> Adware.MoneyMaker : Cleaned with backup (quarantined).
C:\Program Files\WebSavingsfromEbates\System(2) -> Adware.MoneyMaker : Cleaned with backup (quarantined).
C:\Program Files\WebSavingsfromEbates\System(2)\Code(2) -> Adware.MoneyMaker : Cleaned with backup (quarantined).
C:\Program Files\WebSavingsfromEbates\System(2)\Code(2)\Main.class -> Adware.MoneyMaker : Cleaned with backup (quarantined).
C:\Program Files\WebSavingsfromEbates\System(2)\Code(2)\a.class -> Adware.MoneyMaker : Cleaned with backup (quarantined).
C:\Program Files\WebSavingsfromEbates\System(2)\Code(2)\b.class -> Adware.MoneyMaker : Cleaned with backup (quarantined).
C:\Program Files\WebSavingsfromEbates\System(2)\Code(2)\ba.class -> Adware.MoneyMaker : Cleaned with backup (quarantined).
C:\Program Files\WebSavingsfromEbates\System(2)\Code(2)\bb.class -> Adware.MoneyMaker : Cleaned with backup (quarantined).
C:\Program Files\WebSavingsfromEbates\System(2)\Code(2)\bc.class -> Adware.MoneyMaker : Cleaned with backup (quarantined).
C:\Program Files\WebSavingsfromEbates\System(2)\Code(2)\bd.class -> Adware.MoneyMaker : Cleaned with backup (quarantined).
C:\Program Files\WebSavingsfromEbates\System(2)\Code(2)\be.class -> Adware.MoneyMaker : Cleaned with backup (quarantined).
C:\Program Files\WebSavingsfromEbates\System(2)\Code(2)\bf.class -> Adware.MoneyMaker : Cleaned with backup (quarantined).
C:\Program Files\WebSavingsfromEbates\System(2)\Code(2)\bg.class -> Adware.MoneyMaker : Cleaned with backup (quarantined).
C:\Program Files\WebSavingsfromEbates\System(2)\Code(2)\bh.class -> Adware.MoneyMaker : Cleaned with backup (quarantined).
C:\Program Files\WebSavingsfromEbates\System(2)\Code(2)\bi.class -> Adware.MoneyMaker : Cleaned with backup (quarantined).
C:\Program Files\WebSavingsfromEbates\System(2)\Code(2)\bj.class -> Adware.MoneyMaker : Cleaned with backup (quarantined).
C:\Program Files\WebSavingsfromEbates\System(2)\Code(2)\bk.class -> Adware.MoneyMaker : Cleaned with backup (quarantined).
C:\Program Files\WebSavingsfromEbates\System(2)\Code(2)\bl.class -> Adware.MoneyMaker : Cleaned with backup (quarantined).
C:\Program Files\WebSavingsfromEbates\System(2)\Code(2)\bm.class -> Adware.MoneyMaker : Cleaned with backup (quarantined).
C:\Program Files\WebSavingsfromEbates\System(2)\Code(2)\bn.class -> Adware.MoneyMaker : Cleaned with backup (quarantined).
C:\Program Files\WebSavingsfromEbates\System(2)\Code(2)\bo.class -> Adware.MoneyMaker : Cleaned with backup (quarantined).
C:\Program Files\WebSavingsfromEbates\System(2)\Code(2)\bp.class -> Adware.MoneyMaker : Cleaned with backup (quarantined).
C:\Program Files\WebSavingsfromEbates\System(2)\Code(2)\bq.class -> Adware.MoneyMaker : Cleaned with backup (quarantined).
C:\Program Files\WebSavingsfromEbates\System(2)\Code(2)\br.class -> Adware.MoneyMaker : Cleaned with backup (quarantined).
C:\Program Files\WebSavingsfromEbates\System(2)\Code(2)\bs.class -> Adware.MoneyMaker : Cleaned with backup (quarantined).
C:\Program Files\WebSavingsfromEbates\System(2)\Code(2)\bt.class -> Adware.MoneyMaker : Cleaned with backup (quarantined).
C:\Program Files\WebSavingsfromEbates\System(2)\Code(2)\bu.class -> Adware.MoneyMaker : Cleaned with backup (quarantined).
C:\Program Files\WebSavingsfromEbates\System(2)\Code(2)\bv.class -> Adware.MoneyMaker : Cleaned with backup (quarantined).
C:\Program Files\WebSavingsfromEbates\System(2)\Code(2)\bw.class -> Adware.MoneyMaker : Cleaned with backup (quarantined).
C:\Program Files\WebSavingsfromEbates\System(2)\Code(2)\bx.class -> Adware.MoneyMaker : Cleaned with backup (quarantined).
C:\Program Files\WebSavingsfromEbates\System(2)\Code(2)\by.class -> Adware.MoneyMaker : Cleaned with backup (quarantined).
C:\Program Files\WebSavingsfromEbates\System(2)\Code(2)\bz.class -> Adware.MoneyMaker : Cleaned with backup (quarantined).
C:\Program Files\WebSavingsfromEbates\System(2)\Code(2)\c.class -> Adware.MoneyMaker : Cleaned with backup (quarantined).
C:\Program Files\WebSavingsfromEbates\System(2)\Code(2)\ca.class -> Adware.MoneyMaker : Cleaned with backup (quarantined).
C:\Program Files\WebSavingsfromEbates\System(2)\Code(2)\cb.class -> Adware.MoneyMaker : Cleaned with backup (quarantined).
C:\Program Files\WebSavingsfromEbates\System(2)\Code(2)\cc.class -> Adware.MoneyMaker : Cleaned with backup (quarantined).
C:\Program Files\WebSavingsfromEbates\System(2)\Code(2)\cd.class -> Adware.MoneyMaker : Cleaned with backup (quarantined).
C:\Program Files\WebSavingsfromEbates\System(2)\Code(2)\ce.class -> Adware.MoneyMaker : Cleaned with backup (quarantined).
C:\Program Files\WebSavingsfromEbates\System(2)\Code(2)\cf.class -> Adware.MoneyMaker : Cleaned with backup (quarantined).
C:\Program Files\WebSavingsfromEbates\System(2)\Code(2)\cg.class -> Adware.MoneyMaker : Cleaned with backup (quarantined).
C:\Program Files\WebSavingsfromEbates\System(2)\Code(2)\ch.class -> Adware.MoneyMaker : Cleaned with backup (quarantined).
C:\Program Files\WebSavingsfromEbates\System(2)\Code(2)\ci.class -> Adware.MoneyMaker : Cleaned with backup (quarantined).
C:\Program Files\WebSavingsfromEbates\System(2)\Code(2)\cj.class -> Adware.MoneyMaker : Cleaned with backup (quarantined).
C:\Program Files\WebSavingsfromEbates\System(2)\Code(2)\ck.class -> Adware.MoneyMaker : Cleaned with backup (quarantined).
C:\Program Files\WebSavingsfromEbates\System(2)\Code(2)\cl.class -> Adware.MoneyMaker : Cleaned with backup (quarantined).
C:\Program Files\WebSavingsfromEbates\System(2)\Code(2)\cm.class -> Adware.MoneyMaker : Cleaned with backup (quarantined).
C:\Program Files\WebSavingsfromEbates\System(2)\Code(2)\cn.class -> Adware.MoneyMaker : Cleaned with backup (quarantined).
C:\Program Files\WebSavingsfromEbates\System(2)\Code(2)\co.class -> Adware.MoneyMaker : Cleaned with backup (quarantined).
C:\Program Files\WebSavingsfromEbates\System(2)\Code(2)\cp.class -> Adware.MoneyMaker : Cleaned with backup (quarantined).
C:\Program Files\WebSavingsfromEbates\System(2)\Code(2)\cq.class -> Adware.MoneyMaker : Cleaned with backup (quarantined).
C:\Program Files\WebSavingsfromEbates\System(2)\Code(2)\cr.class -> Adware.MoneyMaker : Cleaned with backup (quarantined).
C:\Program Files\WebSavingsfromEbates\System(2)\Code(2)\cs.class -> Adware.MoneyMaker : Cleaned with backup (quarantined).
C:\Program Files\WebSavingsfromEbates\System(2)\Code(2)\ct.class -> Adware.MoneyMaker : Cleaned with backup (quarantined).
C:\Program Files\WebSavingsfromEbates\System(2)\Code(2)\cu.class -> Adware.MoneyMaker : Cleaned with backup (quarantined).
C:\Program Files\WebSavingsfromEbates\System(2)\Code(2)\cv.class -> Adware.MoneyMaker : Cleaned with backup (quarantined).
C:\Program Files\WebSavingsfromEbates\System(2)\Code(2)\cw.class -> Adware.MoneyMaker : Cleaned with backup (quarantined).
C:\Program Files\WebSavingsfromEbates\System(2)\Code(2)\cx.class -> Adware.MoneyMaker : Cleaned with backup (quarantined).
C:\Program Files\WebSavingsfromEbates\System(2)\Code(2)\cy.class -> Adware.MoneyMaker : Cleaned with backup (quarantined).
C:\Program Files\WebSavingsfromEbates\System(2)\Code(2)\cz.class -> Adware.MoneyMaker : Cleaned with backup (quarantined).
C:\Program Files\WebSavingsfromEbates\System(2)\Code(2)\d.class -> Adware.MoneyMaker : Cleaned with backup (quarantined).
C:\Program Files\WebSavingsfromEbates\System(2)\Code(2)\da.class -> Adware.MoneyMaker : Cleaned with backup (quarantined).
C:\Program Files\WebSavingsfromEbates\System(2)\Code(2)\db.class -> Adware.MoneyMaker : Cleaned with backup (quarantined).
C:\Program Files\WebSavingsfromEbates\System(2)\Code(2)\dc.class -> Adware.MoneyMaker : Cleaned with backup (quarantined).
C:\Program Files\WebSavingsfromEbates\System(2)\Code(2)\dd.class -> Adware.MoneyMaker : Cleaned with backup (quarantined).
C:\Program Files\WebSavingsfromEbates\System(2)\Code(2)\de.class -> Adware.MoneyMaker : Cleaned with backup (quarantined).
C:\Program Files\WebSavingsfromEbates\System(2)\Code(2)\df.class -> Adware.MoneyMaker : Cleaned with backup (quarantined).
C:\Program Files\WebSavingsfromEbates\System(2)\Code(2)\dg.class -> Adware.MoneyMaker : Cleaned with backup (quarantined).
C:\Program Files\WebSavingsfromEbates\System(2)\Code(2)\dh.class -> Adware.MoneyMaker : Cleaned with backup (quarantined).
C:\Program Files\WebSavingsfromEbates\System(2)\Code(2)\di.class -> Adware.MoneyMaker : Cleaned with backup (quarantined).
C:\Program Files\WebSavingsfromEbates\System(2)\Code(2)\dj.class -> Adware.MoneyMaker : Cleaned with backup (quarantined).
C:\Program Files\WebSavingsfromEbates\System(2)\Code(2)\dk.class -> Adware.MoneyMaker : Cleaned with backup (quarantined).
C:\Program Files\WebSavingsfromEbates\System(2)\Code(2)\dl.class -> Adware.MoneyMaker : Cleaned with backup (quarantined).
C:\Program Files\WebSavingsfromEbates\System(2)\Code(2)\dn.class -> Adware.MoneyMaker : Cleaned with backup (quarantined).
C:\Program Files\WebSavingsfromEbates\System(2)\Code(2)\dp.class -> Adware.MoneyMaker : Cleaned with backup (quarantined).
C:\Program Files\WebSavingsfromEbates\System(2)\Code(2)\dq.class -> Adware.MoneyMaker : Cleaned with backup (quarantined).
C:\Program Files\WebSavingsfromEbates\System(2)\Code(2)\dr.class -> Adware.MoneyMaker : Cleaned with backup (quarantined).
C:\Program Files\WebSavingsfromEbates\System(2)\Code(2)\ds.class -> Adware.MoneyMaker : Cleaned with backup (quarantined).
C:\Program Files\WebSavingsfromEbates\System(2)\Code(2)\dt.class -> Adware.MoneyMaker : Cleaned with backup (quarantined).
C:\Program Files\WebSavingsfromEbates\System(2)\Code(2)\du.class -> Adware.MoneyMaker : Cleaned with backup (quarantined).
C:\Program Files\WebSavingsfromEbates\System(2)\Code(2)\dv.class -> Adware.MoneyMaker : Cleaned with backup (quarantined).
C:\Program Files\WebSavingsfromEbates\System(2)\Code(2)\dw.class -> Adware.MoneyMaker : Cleaned with backup (quarantined).
C:\Program Files\WebSavingsfromEbates\System(2)\Code(2)\dy.class -> Adware.MoneyMaker : Cleaned with backup (quarantined).
C:\Program Files\WebSavingsfromEbates\System(2)\Code(2)\dz.class -> Adware.MoneyMaker : Cleaned with backup (quarantined).
C:\Program Files\WebSavingsfromEbates\System(2)\Code(2)\e.class -> Adware.MoneyMaker : Cleaned with backup (quarantined).
C:\Program Files\WebSavingsfromEbates\System(2)\Code(2)\ea.class -> Adware.MoneyMaker : Cleaned with backup (quarantined).
C:\Program Files\WebSavingsfromEbates\System(2)\Code(2)\eb.class -> Adware.MoneyMaker : Cleaned with backup (quarantined).
C:\Program Files\WebSavingsfromEbates\System(2)\Code(2)\ec.class -> Adware.MoneyMaker : Cleaned with backup (quarantined).
C:\Program Files\WebSavingsfromEbates\System(2)\Code(2)\ed.class -> Adware.MoneyMaker : Cleaned with backup (quarantined).
C:\Program Files\WebSavingsfromEbates\System(2)\Code(2)\f.class -> Adware.MoneyMaker : Cleaned with backup (quarantined).
C:\Program Files\WebSavingsfromEbates\System(2)\Code(2)\g.class -> Adware.MoneyMaker : Cleaned with backup (quarantined).
C:\Program Files\WebSavingsfromEbates\System(2)\Code(2)\h.class -> Adware.MoneyMaker : Cleaned with backup (quarantined).
C:\Program Files\WebSavingsfromEbates\System(2)\Code(2)\i.class -> Adware.MoneyMaker : Cleaned with backup (quarantined).
C:\Program Files\WebSavingsfromEbates\System(2)\Code(2)\j.class -> Adware.MoneyMaker : Cleaned with backup (quarantined).
C:\Program Files\WebSavingsfromEbates\System(2)\Code(2)\k.class -> Adware.MoneyMaker : Cleaned with backup (quarantined).
C:\Program Files\WebSavingsfromEbates\System(2)\Code(2)\l.class -> Adware.MoneyMaker : Cleaned with backup (quarantined).
C:\Program Files\WebSavingsfromEbates\System(2)\Code(2)\m.class -> Adware.MoneyMaker : Cleaned with backup (quarantined).
C:\Program Files\WebSavingsfromEbates\System(2)\Code(2)\n.class -> Adware.MoneyMaker : Cleaned with backup (quarantined).
C:\Program Files\WebSavingsfromEbates\System(2)\Code(2)\o.class -> Adware.MoneyMaker : Cleaned with backup (quarantined).
C:\Program Files\WebSavingsfromEbates\System(2)\Code(2)\p.class -> Adware.MoneyMaker : Cleaned with backup (quarantined).
C:\Program Files\WebSavingsfromEbates\System(2)\Code(2)\q.class -> Adware.MoneyMaker : Cleaned with backup (quarantined).
C:\Program Files\WebSavingsfromEbates\System(2)\Code(2)\r.class -> Adware.MoneyMaker : Cleaned with backup (quarantined).
C:\Program Files\WebSavingsfromEbates\System(2)\Code(2)\s.class -> Adware.MoneyMaker : Cleaned with backup (quarantined).
C:\Program Files\WebSavingsfromEbates\System(2)\Code(2)\t.class -> Adware.MoneyMaker : Cleaned with backup (quarantined).
C:\Program Files\WebSavingsfromEbates\System(2)\Code(2)\u.class -> Adware.MoneyMaker : Cleaned with backup (quarantined).
C:\Program Files\WebSavingsfromEbates\System(2)\Code(2)\v.class -> Adware.MoneyMaker : Cleaned with backup (quarantined).
C:\Program Files\WebSavingsfromEbates\System(2)\Code(2)\w.class -> Adware.MoneyMaker : Cleaned with backup (quarantined).
C:\Program Files\WebSavingsfromEbates\System(2)\Code(2)\x.class -> Adware.MoneyMaker : Cleaned with backup (quarantined).
C:\Program Files\WebSavingsfromEbates\System(2)\Code(2)\y.class -> Adware.MoneyMaker : Cleaned with backup (quarantined).
C:\Program Files\WebSavingsfromEbates\System(2)\Html(2) -> Adware.MoneyMaker : Cleaned with backup (quarantined).
C:\Program Files\WebSavingsfromEbates\System(2)\Html(2)\ebateswebsavings_confirmredir0.htm -> Adware.MoneyMaker : Cleaned with backup (quarantined).
C:\Program Files\WebSavingsfromEbates\System(2)\Html(2)\ebateswebsavings_preferences0.htm -> Adware.MoneyMaker : Cleaned with backup (quarantined).
C:\Program Files\WebSavingsfromEbates\System(2)\Html(2)\ebateswebsavings_script0.htm -> Adware.MoneyMaker : Cleaned with backup (quarantined).
C:\Program Files\WebSavingsfromEbates\System(2)\Html(2)\topmoxie_conflicts2.htm -> Adware.MoneyMaker : Cleaned with backup (quarantined).
C:\Program Files\WebSavingsfromEbates\System(2)\Html(2)\topmoxie_proxy.htm -> Adware.MoneyMaker : Cleaned with backup (quarantined).
C:\Program Files\WebSavingsfromEbates\System(2)\Images(2) -> Adware.MoneyMaker : Cleaned with backup (quarantined).
C:\Program Files\WebSavingsfromEbates\System(2)\Images(2)\ebateswebsavings_button_submit.gif -> Adware.MoneyMaker : Cleaned with backup (quarantined).
C:\Program Files\WebSavingsfromEbates\System(2)\Images(2)\ebateswebsavings_ebates.gif -> Adware.MoneyMaker : Cleaned with backup (quarantined).
C:\Program Files\WebSavingsfromEbates\System(2)\MTemp(2) -> Adware.MoneyMaker : Cleaned with backup (quarantined).
C:\Program Files\WebSavingsfromEbates\System(2)\MTemp(2)\lock.txt -> Adware.MoneyMaker : Cleaned with backup (quarantined).
C:\Program Files\WebSavingsfromEbates\System(2)\MTemp(2)\logfile.txt -> Adware.MoneyMaker : Cleaned with backup (quarantined).
C:\Program Files\WebSavingsfromEbates\System(2)\System(2) -> Adware.MoneyMaker : Cleaned with backup (quarantined).
C:\Program Files\WebSavingsfromEbates\System(2)\System(2)\browsers.dls -> Adware.MoneyMaker : Cleaned with backup (quarantined).
C:\Program Files\WebSavingsfromEbates\System(2)\System(2)\loader.dls -> Adware.MoneyMaker : Cleaned with backup (quarantined).
C:\Program Files\WebSavingsfromEbates\System(2)\System(2)\personality.dls -> Adware.MoneyMaker : Cleaned with backup (quarantined).
C:\Program Files\WebSavingsfromEbates\System(2)\System(2)\shopping.dls -> Adware.MoneyMaker : Cleaned with backup (quarantined).
C:\Program Files\WebSavingsfromEbates\System(2)\System(2)\system.dls -> Adware.MoneyMaker : Cleaned with backup (quarantined).
C:\Program Files\WebSavingsfromEbates\System(2)\Temp(2) -> Adware.MoneyMaker : Cleaned with backup (quarantined).
C:\Program Files\WebSavingsfromEbates\System(2)\Temp(2)\dump.txt -> Adware.MoneyMaker : Cleaned with backup (quarantined).
C:\Program Files\WebSavingsfromEbates\System(2)\Temp(2)\ebateswebsavings_confirmredir0.htm -> Adware.MoneyMaker : Cleaned with backup (quarantined).
C:\Program Files\WebSavingsfromEbates\System(2)\Temp(2)\ebateswebsavings_confirmredir0_wo.htm -> Adware.MoneyMaker : Cleaned with backup (quarantined).
C:\Program Files\WebSavingsfromEbates\System(2)\Temp(2)\ebateswebsavings_preferences0.htm -> Adware.MoneyMaker : Cleaned with backup (quarantined).
C:\Program Files\WebSavingsfromEbates\System(2)\Temp(2)\ebateswebsavings_preferences0_wo.htm -> Adware.MoneyMaker : Cleaned with backup (quarantined).
C:\Program Files\WebSavingsfromEbates\System(2)\Temp(2)\ebateswebsavings_script0.htm -> Adware.MoneyMaker : Cleaned with backup (quarantined).
C:\Program Files\WebSavingsfromEbates\System(2)\Temp(2)\ebateswebsavings_script0_wo.htm -> Adware.MoneyMaker : Cleaned with backup (quarantined).
C:\Program Files\WebSavingsfromEbates\System(2)\Temp(2)\run.txt -> Adware.MoneyMaker : Cleaned with backup (quarantined).
C:\Program Files\WebSavingsfromEbates\websavings_readme.txt -> Adware.MoneyMaker : Cleaned with backup (quarantined).
C:\WINDOWS\NDNuninstall6_10.exe -> Adware.NewDotNet : Cleaned with backup (quarantined).
C:\WINDOWS\NDNuninstall6_22.exe -> Adware.NewDotNet : Cleaned with backup (quarantined).
C:\WINDOWS\NDNuninstall6_30.exe -> Adware.NewDotNet : Cleaned with backup (quarantined).
C:\WINDOWS\NDNuninstall6_38.exe -> Adware.NewDotNet : Cleaned with backup (quarantined).
HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{4A2AACF3-ADF6-11D5-98A9-00E018981B9E} -> Adware.NewDotNet : Cleaned with backup (quarantined).
HKU\.DEFAULT\Software\New.net -> Adware.NewDotNet : Cleaned with backup (quarantined).
HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{4A2AACF3-ADF6-11D5-98A9-00E018981B9E} -> Adware.NewDotNet : Cleaned with backup (quarantined).
HKU\S-1-5-18\Software\New.net -> Adware.NewDotNet : Cleaned with backup (quarantined).
HKLM\SOFTWARE\Classes\WUSN.1 -> Adware.SaveNow : Cleaned with backup (quarantined).
HKU\S-1-5-21-2359576055-3785123059-410796368-1003\Software\WhenU -> Adware.SaveNow : Cleaned with backup (quarantined).
C:\WINDOWS\system32\ioctrl.dll -> Adware.Spyaxe : Cleaned with backup (quarantined).
C:\WINDOWS\Downloaded Program Files\ISTactivex.dll -> Downloader.IstBar : Cleaned with backup (quarantined).
C:\Documents and Settings\Owner\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\classload.jar-26acfdd0-3ac2149a.zip/Installer.class -> Downloader.OpenConnection.v : Cleaned with backup (quarantined).
C:\WINDOWS\Downloaded Program Files\ISTactivex.inf -> Downloader.Small : Cleaned with backup (quarantined).
C:\WINDOWS\system32\ldC10D.tmp -> Downloader.Zlob.bv : Cleaned with backup (quarantined).
C:\WINDOWS\system32\mscornet.exe -> Downloader.Zlob.bv : Cleaned with backup (quarantined).
C:\WINDOWS\system32\hpC330.tmp -> Downloader.Zlob.dk : Cleaned with backup (quarantined).
C:\WINDOWS\system32\msvol.tlb -> Downloader.Zlob.dk : Cleaned with backup (quarantined).
C:\Program Files\SpyAxe -> Hijacker.SpyAxe : Cleaned with backup (quarantined).
C:\Program Files\SpyAxe\SpyAxe.exe -> Hijacker.SpyAxe : Cleaned with backup (quarantined).
C:\WINDOWS\system32\mssearchnet.exe -> Hijacker.SpyAxe : Cleaned with backup (quarantined).
C:\WINDOWS\system32\nvctrl.exe -> Hijacker.SpyAxe : Cleaned with backup (quarantined).
C:\Documents and Settings\Owner\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\classload.jar-26acfdd0-3ac2149a.zip/InsecureClassLoader.class -> Not-A-Virus.Exploit.Java.Bytverify : Cleaned with backup (quarantined).
:mozilla.141:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\524f5j11.default\cookies.txt -> TrackingCookie.247realmedia : Cleaned.
:mozilla.142:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\524f5j11.default\cookies.txt -> TrackingCookie.247realmedia : Cleaned.
C:\Documents and Settings\Owner\Cookies\owner@247realmedia[2].txt -> TrackingCookie.247realmedia : Cleaned.
C:\Documents and Settings\Owner\Cookies\owner@oasc02.247realmedia[2].txt -> TrackingCookie.247realmedia : Cleaned.
C:\Documents and Settings\Owner\Local Settings\Temp\Cookies\owner@247realmedia[1].txt -> TrackingCookie.247realmedia : Cleaned.
C:\Documents and Settings\Owner\Local Settings\Temp\Cookies\owner@oasc02.247realmedia[1].txt -> TrackingCookie.247realmedia : Cleaned.
C:\Documents and Settings\YO MAMA's\Cookies\yo mama's@247realmedia[2].txt -> TrackingCookie.247realmedia : Cleaned.
C:\Documents and Settings\Owner\Cookies\owner@2o7[2].txt -> TrackingCookie.2o7 : Cleaned.
C:\Documents and Settings\Owner\Cookies\owner@chicagosuntimes.122.2o7[1].txt -> TrackingCookie.2o7 : Cleaned.
C:\Documents and Settings\Owner\Cookies\owner@dtag.112.2o7[1].txt -> TrackingCookie.2o7 : Cleaned.
C:\Documents and Settings\Owner\Cookies\owner@hertz.122.2o7[1].txt -> TrackingCookie.2o7 : Cleaned.
C:\Documents and Settings\Owner\Cookies\owner@imc2.122.2o7[1].txt -> TrackingCookie.2o7 : Cleaned.
C:\Documents and Settings\Owner\Cookies\owner@marketlive.122.2o7[1].txt -> TrackingCookie.2o7 : Cleaned.
C:\Documents and Settings\Owner\Cookies\owner@marthastewart.122.2o7[1].txt -> TrackingCookie.2o7 : Cleaned.
C:\Documents and Settings\Owner\Local Settings\Temp\Cookies\owner@2o7[2].txt -> TrackingCookie.2o7 : Cleaned.
C:\Documents and Settings\Owner\Local Settings\Temp\Cookies\owner@cbs.112.2o7[1].txt -> TrackingCookie.2o7 : Cleaned.
C:\Documents and Settings\Owner\Local Settings\Temp\Cookies\owner@chicagosuntimes.122.2o7[1].txt -> TrackingCookie.2o7 : Cleaned.
C:\Documents and Settings\Owner\Local Settings\Temp\Cookies\owner@chumtv.122.2o7[1].txt -> TrackingCookie.2o7 : Cleaned.
C:\Documents and Settings\Owner\Local Settings\Temp\Cookies\owner@cnn.122.2o7[1].txt -> TrackingCookie.2o7 : Cleaned.
C:\Documents and Settings\Owner\Local Settings\Temp\Cookies\owner@leeenterprises.112.2o7[1].txt -> TrackingCookie.2o7 : Cleaned.
C:\Documents and Settings\Owner\Local Settings\Temp\Cookies\owner@livenation.122.2o7[1].txt -> TrackingCookie.2o7 : Cleaned.
C:\Documents and Settings\Owner\Local Settings\Temp\Cookies\owner@sixapart.112.2o7[1].txt -> TrackingCookie.2o7 : Cleaned.
C:\Documents and Settings\Owner\Local Settings\Temp\Cookies\owner@wpni.112.2o7[1].txt -> TrackingCookie.2o7 : Cleaned.
C:\Documents and Settings\YO MAMA's\Cookies\yo mama's@2o7[1].txt -> TrackingCookie.2o7 : Cleaned.
C:\Documents and Settings\YO MAMA's\Cookies\yo mama's@msnportal.112.2o7[1].txt -> TrackingCookie.2o7 : Cleaned.
C:\Documents and Settings\Owner\Cookies\owner@adbrite[1].txt -> TrackingCookie.Adbrite : Cleaned.
C:\Documents and Settings\Owner\Cookies\owner@ads.adbrite[2].txt -> TrackingCookie.Adbrite : Cleaned.
C:\Documents and Settings\Owner\Local Settings\Temp\Cookies\owner@adbrite[2].txt -> TrackingCookie.Adbrite : Cleaned.
C:\Documents and Settings\Owner\Cookies\owner@ads.addynamix[2].txt -> TrackingCookie.Addynamix : Cleaned.
C:\Documents and Settings\Owner\Local Settings\Temp\Cookies\owner@ads.addynamix[2].txt -> TrackingCookie.Addynamix : Cleaned.
C:\Documents and Settings\Owner\Local Settings\Temp\Cookies\owner@www.adobe[2].txt -> TrackingCookie.Adobe : Cleaned.
:mozilla.107:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\524f5j11.default\cookies.txt -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.108:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\524f5j11.default\cookies.txt -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.109:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\524f5j11.default\cookies.txt -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.110:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\524f5j11.default\cookies.txt -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.111:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\524f5j11.default\cookies.txt -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.112:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\524f5j11.default\cookies.txt -> TrackingCookie.Adrevolver : Cleaned.
C:\Documents and Settings\Owner\Cookies\owner@adrevolver[2].txt -> TrackingCookie.Adrevolver : Cleaned.
C:\Documents and Settings\Owner\Local Settings\Temp\Cookies\owner@adrevolver[2].txt -> TrackingCookie.Adrevolver : Cleaned.
C:\Documents and Settings\Owner\Local Settings\Temp\Cookies\owner@z1.adserver[1].txt -> TrackingCookie.Adserver : Cleaned.
C:\Documents and Settings\Owner\Cookies\owner@adtech[2].txt -> TrackingCookie.Adtech : Cleaned.
C:\Documents and Settings\Owner\Local Settings\Temp\Cookies\owner@adtech[2].txt -> TrackingCookie.Adtech : Cleaned.
:mozilla.45:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\524f5j11.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.46:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\524f5j11.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.47:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\524f5j11.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.48:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\524f5j11.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.49:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\524f5j11.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
C:\Documents and Settings\Owner\Cookies\owner@advertising[1].txt -> TrackingCookie.Advertising : Cleaned.
C:\Documents and Settings\Owner\Cookies\owner@advertising[2].txt -> TrackingCookie.Advertising : Cleaned.
C:\Documents and Settings\Owner\Local Settings\Temp\Cookies\owner@advertising[2].txt -> TrackingCookie.Advertising : Cleaned.
C:\Documents and Settings\YO MAMA's\Cookies\yo mama's@advertising[2].txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.31:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\524f5j11.default\cookies.txt -> TrackingCookie.Atdmt : Cleaned.
C:\Documents and Settings\Owner\Cookies\owner@atdmt[2].txt -> TrackingCookie.Atdmt : Cleaned.
C:\Documents and Settings\Owner\Local Settings\Temp\Cookies\owner@atdmt[2].txt -> TrackingCookie.Atdmt : Cleaned.
C:\Documents and Settings\YO MAMA's\Cookies\yo mama's@atdmt[2].txt -> TrackingCookie.Atdmt : Cleaned.
C:\Documents and Settings\Owner\Cookies\owner@bluestreak[1].txt -> TrackingCookie.Bluestreak : Cleaned.
C:\Documents and Settings\Owner\Local Settings\Temp\Cookies\owner@bluestreak[2].txt -> TrackingCookie.Bluestreak : Cleaned.
C:\Documents and Settings\Owner\Cookies\owner@www.burstbeacon[2].txt -> TrackingCookie.Burstbeacon : Cleaned.
C:\Documents and Settings\Owner\Local Settings\Temp\Cookies\owner@www.burstbeacon[2].txt -> TrackingCookie.Burstbeacon : Cleaned.
C:\Documents and Settings\Owner\Cookies\owner@burstnet[1].txt -> TrackingCookie.Burstnet : Cleaned.
C:\Documents and Settings\Owner\Cookies\owner@www.burstnet[1].txt -> TrackingCookie.Burstnet : Cleaned.
C:\Documents and Settings\Owner\Local Settings\Temp\Cookies\owner@burstnet[2].txt -> TrackingCookie.Burstnet : Cleaned.
C:\Documents and Settings\Owner\Local Settings\Temp\Cookies\owner@www.burstnet[2].txt -> TrackingCookie.Burstnet : Cleaned.
:mozilla.16:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\524f5j11.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned.
:mozilla.17:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\524f5j11.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned.
:mozilla.18:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\524f5j11.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned.
:mozilla.19:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\524f5j11.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned.
:mozilla.20:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\524f5j11.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned.
:mozilla.21:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\524f5j11.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned.
:mozilla.22:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\524f5j11.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned.
:mozilla.23:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\524f5j11.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned.
:mozilla.24:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\524f5j11.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned.
C:\Documents and Settings\Owner\Cookies\owner@casalemedia[1].txt -> TrackingCookie.Casalemedia : Cleaned.
C:\Documents and Settings\Owner\Local Settings\Temp\Cookies\owner@casalemedia[1].txt -> TrackingCookie.Casalemedia : Cleaned.
C:\Documents and Settings\Owner\Local Settings\Temp\Cookies\owner@cz3.clickzs[2].txt -> TrackingCookie.Clickzs : Cleaned.
C:\Documents and Settings\Owner\Local Settings\Temp\Cookies\owner@ads.cnn[2].txt -> TrackingCookie.Cnn : Cleaned.
C:\Documents and Settings\Owner\Cookies\owner@com[1].txt -> TrackingCookie.Com : Cleaned.
C:\Documents and Settings\Owner\Local Settings\Temp\Cookies\owner@com[1].txt -> TrackingCookie.Com : Cleaned.
C:\Documents and Settings\Owner\Cookies\owner@data.coremetrics[1].txt -> TrackingCookie.Coremetrics : Cleaned.
C:\Documents and Settings\Owner\Cookies\owner@twci.coremetrics[1].txt -> TrackingCookie.Coremetrics : Cleaned.
C:\Documents and Settings\Owner\Local Settings\Temp\Cookies\owner@data.coremetrics[1].txt -> TrackingCookie.Coremetrics : Cleaned.
:mozilla.15:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\524f5j11.default\cookies.txt -> TrackingCookie.Doubleclick : Cleaned.
C:\Documents and Settings\Owner\Cookies\owner@doubleclick[1].txt -> TrackingCookie.Doubleclick : Cleaned.
C:\Documents and Settings\Owner\Local Settings\Temp\Cookies\owner@doubleclick[1].txt -> TrackingCookie.Doubleclick : Cleaned.
C:\Documents and Settings\YO MAMA's\Cookies\yo mama's@doubleclick[1].txt -> TrackingCookie.Doubleclick : Cleaned.
C:\Documents and Settings\Owner\Cookies\owner@e-2dj6wjnyakaziaq.stats.esomniture[2].txt -> TrackingCookie.Esomniture : Cleaned.
C:\Documents and Settings\Owner\Local Settings\Temp\Cookies\owner@e-2dj6wfl4wmczkbq.stats.esomniture[2].txt -> TrackingCookie.Esomniture : Cleaned.
C:\Documents and Settings\Owner\Local Settings\Temp\Cookies\owner@e-2dj6wfliwkdzahq.stats.esomniture[2].txt -> TrackingCookie.Esomniture : Cleaned.
C:\Documents and Settings\Owner\Local Settings\Temp\Cookies\owner@e-2dj6wfloamdpkfo.stats.esomniture[2].txt -> TrackingCookie.Esomniture : Cleaned.
C:\Documents and Settings\Owner\Local Settings\Temp\Cookies\owner@e-2dj6wgkikhc5mgp.stats.esomniture[1].txt -> TrackingCookie.Esomniture : Cleaned.
C:\Documents and Settings\Owner\Local Settings\Temp\Cookies\owner@e-2dj6wjnywnc5eeo.stats.esomniture[2].txt -> TrackingCookie.Esomniture : Cleaned.
C:\Documents and Settings\Owner\Cookies\owner@adopt.euroclick[2].txt -> TrackingCookie.Euroclick : Cleaned.
C:\Documents and Settings\Owner\Local Settings\Temp\Cookies\owner@adopt.euroclick[2].txt -> TrackingCookie.Euroclick : Cleaned.
C:\Documents and Settings\Owner\Cookies\owner@as-eu.falkag[2].txt -> TrackingCookie.Falkag : Cleaned.
C:\Documents and Settings\Owner\Cookies\owner@as-us.falkag[1].txt -> TrackingCookie.Falkag : Cleaned.
C:\Documents and Settings\Owner\Local Settings\Temp\Cookies\owner@as-us.falkag[1].txt -> TrackingCookie.Falkag : Cleaned.
:mozilla.50:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\524f5j11.default\cookies.txt -> TrackingCookie.Fastclick : Cleaned.
:mozilla.51:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\524f5j11.default\cookies.txt -> TrackingCookie.Fastclick : Cleaned.
:mozilla.52:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\524f5j11.default\cookies.txt -> TrackingCookie.Fastclick : Cleaned.
C:\Documents and Settings\Owner\Cookies\owner@fastclick[2].txt -> TrackingCookie.Fastclick : Cleaned.
C:\Documents and Settings\Owner\Local Settings\Temp\Cookies\owner@fastclick[2].txt -> TrackingCookie.Fastclick : Cleaned.
C:\Documents and Settings\Owner\Cookies\owner@ehg-bestwestern.hitbox[2].txt -> TrackingCookie.Hitbox : Cleaned.
C:\Documents and Settings\Owner\Cookies\owner@ehg-comcast.hitbox[2].txt -> TrackingCookie.Hitbox : Cleaned.
C:\Documents and Settings\Owner\Cookies\owner@ehg-dig.hitbox[2].txt -> TrackingCookie.Hitbox : Cleaned.
C:\Documents and Settings\Owner\Cookies\owner@ehg-savvydogdesign.hitbox[2].txt -> TrackingCookie.Hitbox : Cleaned.
C:\Documents and Settings\Owner\Cookies\owner@hitbox[1].txt -> TrackingCookie.Hitbox : Cleaned.
C:\Documents and Settings\Owner\Cookies\owner@phg.hitbox[2].txt -> TrackingCookie.Hitbox : Cleaned.
C:\Documents and Settings\Owner\Local Settings\Temp\Cookies\owner@ehg-comcast.hitbox[1].txt -> TrackingCookie.Hitbox : Cleaned.
C:\Documents and Settings\Owner\Local Settings\Temp\Cookies\owner@ehg-knightridder.hitbox[2].txt -> TrackingCookie.Hitbox : Cleaned.
C:\Documents and Settings\Owner\Local Settings\Temp\Cookies\owner@ehg-simon.hitbox[2].txt -> TrackingCookie.Hitbox : Cleaned.
C:\Documents and Settings\Owner\Local Settings\Temp\Cookies\owner@ehg-uop.hitbox[1].txt -> TrackingCookie.Hitbox : Cleaned.
C:\Documents and Settings\Owner\Local Settings\Temp\Cookies\owner@hitbox[1].txt -> TrackingCookie.Hitbox : Cleaned.
C:\Documents and Settings\YO MAMA's\Cookies\yo mama's@ehg-aol.hitbox[2].txt -> TrackingCookie.Hitbox : Cleaned.
C:\Documents and Settings\YO MAMA's\Cookies\yo mama's@ehg-comcast.hitbox[1].txt -> TrackingCookie.Hitbox : Cleaned.
:mozilla.116:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\524f5j11.default\cookies.txt -> TrackingCookie.Imrworldwide : Cleaned.
:mozilla.117:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\524f5j11.default\cookies.txt -> TrackingCookie.Imrworldwide : Cleaned.
C:\Documents and Settings\Owner\Cookies\owner@searchportal.information[1].txt -> TrackingCookie.Information : Cleaned.
C:\Documents and Settings\Owner\Cookies\owner@intelli-direct[1].txt -> TrackingCookie.Intelli-direct : Cleaned.
C:\Documents and Settings\Owner\Local Settings\Temp\Cookies\owner@intelli-direct[1].txt -> TrackingCookie.Intelli-direct : Cleaned.
C:\Documents and Settings\YO MAMA's\Cookies\yo mama's@search.live[2].txt -> TrackingCookie.Live : Cleaned.
C:\Documents and Settings\Owner\Local Settings\Temp\Cookies\owner@image.masterstats[1].txt -> TrackingCookie.Masterstats : Cleaned.
C:\Documents and Settings\Owner\Cookies\owner@mediaplex[2].txt -> TrackingCookie.Mediaplex : Cleaned.
C:\Documents and Settings\Owner\Local Settings\Temp\Cookies\owner@mediaplex[2].txt -> TrackingCookie.Mediaplex : Cleaned.
C:\Documents and Settings\YO MAMA's\Cookies\yo mama's@mediaplex[1].txt -> TrackingCookie.Mediaplex : Cleaned.
C:\Documents and Settings\Owner\Cookies\owner@search.msn[1].txt -> TrackingCookie.Msn : Cleaned.
C:\Documents and Settings\Owner\Local Settings\Temp\Cookies\owner@search.msn[1].txt -> TrackingCookie.Msn : Cleaned.
C:\Documents and Settings\YO MAMA's\Cookies\yo mama's@search.msn[1].txt -> TrackingCookie.Msn : Cleaned.
C:\Documents and Settings\Owner\Local Settings\Temp\Cookies\owner@stat.onestat[2].txt -> TrackingCookie.Onestat : Cleaned.
C:\Documents and Settings\Owner\Cookies\owner@overture[1].txt -> TrackingCookie.Overture : Cleaned.
C:\Documents and Settings\Owner\Cookies\owner@perf.overture[1].txt -> TrackingCookie.Overture : Cleaned.
C:\Documents and Settings\Owner\Local Settings\Temp\Cookies\owner@data1.perf.overture[2].txt -> TrackingCookie.Overture : Cleaned.
C:\Documents and Settings\Owner\Local Settings\Temp\Cookies\owner@data2.perf.overture[2].txt -> TrackingCookie.Overture : Cleaned.
C:\Documents and Settings\Owner\Local Settings\Temp\Cookies\owner@overture[2].txt -> TrackingCookie.Overture : Cleaned.
C:\Documents and Settings\Owner\Local Settings\Temp\Cookies\owner@perf.overture[1].txt -> TrackingCookie.Overture : Cleaned.
C:\Documents and Settings\Owner\Local Settings\Temp\Cookies\owner@paycounter[2].txt -> TrackingCookie.Paycounter : Cleaned.
:mozilla.137:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\524f5j11.default\cookies.txt -> TrackingCookie.Paypal : Cleaned.
C:\Documents and Settings\Owner\Cookies\owner@ads.pointroll[1].txt -> TrackingCookie.Pointroll : Cleaned.
C:\Documents and Settings\Owner\Local Settings\Temp\Cookies\owner@ads.pointroll[1].txt -> TrackingCookie.Pointroll : Cleaned.
C:\Documents and Settings\YO MAMA's\Cookies\yo mama's@ads.pointroll[2].txt -> TrackingCookie.Pointroll : Cleaned.
C:\Documents and Settings\Owner\Cookies\owner@questionmarket[1].txt -> TrackingCookie.Questionmarket : Cleaned.
C:\Documents and Settings\Owner\Local Settings\Temp\Cookies\owner@questionmarket[2].txt -> TrackingCookie.Questionmarket : Cleaned.
C:\Documents and Settings\YO MAMA's\Cookies\yo mama's@questionmarket[1].txt -> TrackingCookie.Questionmarket : Cleaned.
:mozilla.100:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\524f5j11.default\cookies.txt -> TrackingCookie.Realmedia : Cleaned.
:mozilla.101:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\524f5j11.default\cookies.txt -> TrackingCookie.Realmedia : Cleaned.
:mozilla.102:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\524f5j11.default\cookies.txt -> TrackingCookie.Realmedia : Cleaned.
:mozilla.99:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\524f5j11.default\cookies.txt -> TrackingCookie.Realmedia : Cleaned.
C:\Documents and Settings\Owner\Cookies\owner@realmedia[1].txt -> TrackingCookie.Realmedia : Cleaned.
C:\Documents and Settings\Owner\Local Settings\Temp\Cookies\owner@realmedia[1].txt -> TrackingCookie.Realmedia : Cleaned.
C:\Documents and Settings\Owner\Cookies\owner@revenue[2].txt -> TrackingCookie.Revenue : Cleaned.
:mozilla.62:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\524f5j11.default\cookies.txt -> TrackingCookie.Revsci : Cleaned.
:mozilla.63:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\524f5j11.default\cookies.txt -> TrackingCookie.Revsci : Cleaned.
C:\Documents and Settings\Owner\Cookies\owner@revsci[1].txt -> TrackingCookie.Revsci : Cleaned.
C:\Documents and Settings\Owner\Local Settings\Temp\Cookies\owner@revsci[2].txt -> TrackingCookie.Revsci : Cleaned.
C:\Documents and Settings\YO MAMA's\Cookies\yo mama's@revsci[2].txt -> TrackingCookie.Revsci : Cleaned.
C:\Documents and Settings\Owner\Cookies\owner@edge.ru4[2].txt -> TrackingCookie.Ru4 : Cleaned.
C:\Documents and Settings\Owner\Local Settings\Temp\Cookies\owner@edge.ru4[2].txt -> TrackingCookie.Ru4 : Cleaned.
C:\Documents and Settings\YO MAMA's\Cookies\yo mama's@edge.ru4[1].txt -> TrackingCookie.Ru4 : Cleaned.
C:\Documents and Settings\Owner\Cookies\owner@bs.serving-sys[2].txt -> TrackingCookie.Serving-sys : Cleaned.
C:\Documents and Settings\Owner\Cookies\owner@serving-sys[2].txt -> TrackingCookie.Serving-sys : Cleaned.
C:\Documents and Settings\Owner\Local Settings\Temp\Cookies\owner@serving-sys[1].txt -> TrackingCookie.Serving-sys : Cleaned.
C:\Documents and Settings\Owner\Local Settings\Temp\Cookies\owner@cs.sexcounter[2].txt -> TrackingCookie.Sexcounter : Cleaned.
C:\Documents and Settings\Owner\Local Settings\Temp\Cookies\owner@sexlist[2].txt -> TrackingCookie.Sexlist : Cleaned.
C:\Documents and Settings\Owner\Local Settings\Temp\Cookies\owner@counter12.sextracker[2].txt -> TrackingCookie.Sextracker : Cleaned.
C:\Documents and Settings\Owner\Local Settings\Temp\Cookies\owner@counter2.sextracker[1].txt -> TrackingCookie.Sextracker : Cleaned.
C:\Documents and Settings\Owner\Local Settings\Temp\Cookies\owner@counter4.sextracker[1].txt -> TrackingCookie.Sextracker : Cleaned.
C:\Documents and Settings\Owner\Local Settings\Temp\Cookies\owner@counter7.sextracker[1].txt -> TrackingCookie.Sextracker : Cleaned.
C:\Documents and Settings\Owner\Local Settings\Temp\Cookies\owner@counter9.sextracker[2].txt -> TrackingCookie.Sextracker : Cleaned.
C:\Documents and Settings\Owner\Local Settings\Temp\Cookies\owner@sextracker[1].txt -> TrackingCookie.Sextracker : Cleaned.
C:\Documents and Settings\Owner\Cookies\owner@adopt.specificclick[1].txt -> TrackingCookie.Specificclick : Cleaned.
C:\Documents and Settings\Owner\Cookies\owner@specificclick[2].txt -> TrackingCookie.Specificclick : Cleaned.
C:\Documents and Settings\Owner\Local Settings\Temp\Cookies\owner@adopt.specificclick[2].txt -> TrackingCookie.Specificclick : Cleaned.
C:\Documents and Settings\YO MAMA's\Cookies\yo mama's@adopt.specificclick[1].txt -> TrackingCookie.Specificclick : Cleaned.
C:\Documents and Settings\YO MAMA's\Cookies\yo mama's@ads.specificpop[2].txt -> TrackingCookie.Specificpop : Cleaned.
C:\Documents and Settings\Owner\Local Settings\Temp\Cookies\owner@spylog[2].txt -> TrackingCookie.Spylog : Cleaned.
C:\Documents and Settings\Owner\Cookies\owner@statcounter[1].txt -> TrackingCookie.Statcounter : Cleaned.
C:\Documents and Settings\Owner\Local Settings\Temp\Cookies\owner@statcounter[1].txt -> TrackingCookie.Statcounter : Cleaned.
C:\Documents and Settings\Owner\Cookies\owner@anad.tacoda[2].txt -> TrackingCookie.Tacoda : Cleaned.
C:\Documents and Settings\Owner\Cookies\owner@anat.tacoda[2].txt -> TrackingCookie.Tacoda : Cleaned.
C:\Documents and Settings\Owner\Cookies\owner@tacoda[2].txt -> TrackingCookie.Tacoda : Cleaned.
C:\Documents and Settings\Owner\Local Settings\Temp\Cookies\owner@anad.tacoda[2].txt -> TrackingCookie.Tacoda : Cleaned.
C:\Documents and Settings\Owner\Local Settings\Temp\Cookies\owner@anat.tacoda[1].txt -> TrackingCookie.Tacoda : Cleaned.
C:\Documents and Settings\Owner\Local Settings\Temp\Cookies\owner@tacoda[1].txt -> TrackingCookie.Tacoda : Cleaned.
C:\Documents and Settings\Owner\Local Settings\Temp\Cookies\owner@toplist[1].txt -> TrackingCookie.Toplist : Cleaned.
:mozilla.37:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\524f5j11.default\cookies.txt -> TrackingCookie.Trafficmp : Cleaned.
:mozilla.38:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\524f5j11.default\cookies.txt -> TrackingCookie.Trafficmp : Cleaned.
:mozilla.39:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\524f5j11.default\cookies.txt -> TrackingCookie.Trafficmp : Cleaned.
:mozilla.40:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\524f5j11.default\cookies.txt -> TrackingCookie.Trafficmp : Cleaned.
:mozilla.41:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\524f5j11.default\cookies.txt -> TrackingCookie.Trafficmp : Cleaned.
:mozilla.42:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\524f5j11.default\cookies.txt -> TrackingCookie.Trafficmp : Cleaned.
:mozilla.43:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\524f5j11.default\cookies.txt -> TrackingCookie.Trafficmp : Cleaned.
:mozilla.44:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\524f5j11.default\cookies.txt -> TrackingCookie.Trafficmp : Cleaned.
C:\Documents and Settings\Owner\Cookies\owner@trafficmp[2].txt -> TrackingCookie.Trafficmp : Cleaned.
C:\Documents and Settings\Owner\Local Settings\Temp\Cookies\owner@trafficmp[2].txt -> TrackingCookie.Trafficmp : Cleaned.
C:\Documents and Settings\YO MAMA's\Cookies\yo mama's@trafficmp[1].txt -> TrackingCookie.Trafficmp : Cleaned.
C:\Documents and Settings\Owner\Cookies\owner@tribalfusion[1].txt -> TrackingCookie.Tribalfusion : Cleaned.
C:\Documents and Settings\Owner\Local Settings\Temp\Cookies\owner@tribalfusion[2].txt -> TrackingCookie.Tribalfusion : Cleaned.
C:\Documents and Settings\Owner\Cookies\owner@reduxads.valuead[2].txt -> TrackingCookie.Valuead : Cleaned.
C:\Documents and Settings\Owner\Local Settings\Temp\Cookies\owner@reduxads.valuead[1].txt -> TrackingCookie.Valuead : Cleaned.
C:\Documents and Settings\Owner\Local Settings\Temp\Cookies\owner@valueclick[2].txt -> TrackingCookie.Valueclick : Cleaned.
C:\Documents and Settings\Owner\Cookies\owner@statse.webtrendslive[2].txt -> TrackingCookie.Webtrendslive : Cleaned.
C:\Documents and Settings\Owner\Local Settings\Temp\Cookies\owner@statse.webtrendslive[1].txt -> TrackingCookie.Webtrendslive : Cleaned.
C:\Documents and Settings\YO MAMA's\Cookies\yo mama's@statse.webtrendslive[2].txt -> TrackingCookie.Webtrendslive : Cleaned.
C:\Documents and Settings\Owner\Local Settings\Temp\Cookies\owner@yadro[2].txt -> TrackingCookie.Yadro : Cleaned.
:mozilla.54:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\524f5j11.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.55:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\524f5j11.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.58:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\524f5j11.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.59:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\524f5j11.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.60:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\524f5j11.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned.
C:\Documents and Settings\Owner\Cookies\owner@ad.yieldmanager[2].txt -> TrackingCookie.Yieldmanager : Cleaned.
C:\Documents and Settings\Owner\Local Settings\Temp\Cookies\owner@ad.yieldmanager[2].txt -> TrackingCookie.Yieldmanager : Cleaned.
C:\Documents and Settings\Owner\Cookies\owner@zedo[1].txt -> TrackingCookie.Zedo : Cleaned.
C:\Documents and Settings\Owner\Local Settings\Temp\Cookies\owner@c1.zedo[1].txt -> TrackingCookie.Zedo : Cleaned.
C:\Documents and Settings\Owner\Local Settings\Temp\Cookies\owner@zedo[2].txt -> TrackingCookie.Zedo : Cleaned.
C:\Documents and Settings\Owner\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\classload.jar-26acfdd0-3ac2149a.zip/GetAccess.class -> Trojan.ClassLoader.c : Cleaned with backup (quarantined).
C:\WINDOWS\system32\1024 -> Trojan.Small : Cleaned with backup (quarantined).
C:\WINDOWS\system32\1024\ld975A.tmp -> Trojan.Small : Cleaned with backup (quarantined).


::Report end

Edited by EnricotheIV, 05 June 2007 - 06:05 PM.

The only constant is change.

BC AdBot (Login to Remove)

 


#2 OldTimer

OldTimer

    Malware Expert


  • Members
  • 11,092 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:North Carolina
  • Local time:03:51 PM

Posted 10 June 2007 - 07:55 PM

Hello EnricotheIV and welcome to the BC HijackThis forum. I don't see any signs of viruses or malware in the log. It is clean but there are a couple of things that should be taken care of.

I do not see an anti-virus application running on this computer. An anti-virus program is your first line of defense in protecting your computer from all of the internet and email infections circulating today. I strongly recommend installing an anti-virus application as quickly as possible. Here are 2 free anti-virus programs that are available for personal use (I use these on various machines and they are both good):Your Java is out of date. Older versions have vulnerabilities that malware can use to infect your system. Please follow these steps to remove older version Java components and update.

Updating Java:
Note: If there is an Update XX in the name then the "XX" in the version will be whatever the latest version is.
  • Download the latest version of Java Runtime Environment (JRE) 6.0 Update XX (if present).
  • Scroll down to where it says "The J2SE Runtime Environment (JRE) allows end-users to run Java applications".
  • Click the "Download" button to the right.
  • Check the box that says: "Accept License Agreement".
  • The page will refresh.
  • Click on the link to download Windows Offline Installation with or without Multi-language and save to your desktop.
  • Close any programs you may have running - especially your web browser.
  • Go to Start > Control Panel double-click on Add/Remove programs and remove all older versions of Java.
  • Check any item with Java Runtime Environment (JRE or J2SE) in the name.
  • Click the Remove or Change/Remove button.
  • Repeat as many times as necessary to remove each Java versions.
  • Reboot your computer once all Java components are removed.
  • Then from your desktop double-click on jre-1_6_0_XX-windowsi586-p.exe to install the newest version.
The temp folders and java cache should be cleaned out. Download ATF Cleaner
  • Double-click ATF-Cleaner.exe to run the program.
  • Click Select All found at the bottom of the list.
  • Click the Empty Selected button.
If you use Firefox browser, do this also:
  • Click Firefox at the top and choose Select All from the list.
  • Click the Empty Selected button.
  • NOTE : If you would like to keep your saved passwords, please click No at the prompt.
If you use Opera browser, do this also:
  • Click Opera at the top and choose Select All from the list.
  • Click the Empty Selected button.
  • NOTE : If you would like to keep your saved passwords, please click No at the prompt.
Click Exit on the Main menu to close the program.

Other than that it looks pretty good.

Cheers.

OT
I do not respond to PM's requesting help. That's what the forums are here for. Please use them so that others may benefit from your questions and the responses you receive.
OldTimer

Posted Image




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users