Jump to content

Welcome to Geeks to Go - Register now for FREE

Geeks To Go is a helpful hub, where thousands of volunteer geeks quickly serve friendly answers and support. Check out the forums and get free advice from the experts. Register now to gain access to all of our features, it's FREE and only takes one minute. Once registered and logged in, you will be able to create topics, post replies to existing threads, give reputation to your fellow members, get your own private messenger, post status updates, manage your profile and so much more.

Create Account How it Works
Photo

Malware Removal

Started by C_I_C , Jun 18 2006 12:42 AM

  • Please log in to reply

#1
C_I_C
Posted 18 June 2006 - 12:42 AM

C_I_C

    New Member

  • Member
  • Pip
  • 3 posts
Hijack this log info:

Logfile of HijackThis v1.99.1
Scan saved at 2:35:02 PM, on 6/18/2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
D:\WINDOWS\System32\smss.exe
D:\WINDOWS\system32\winlogon.exe
D:\WINDOWS\system32\services.exe
D:\WINDOWS\system32\lsass.exe
D:\WINDOWS\system32\svchost.exe
D:\WINDOWS\System32\svchost.exe
D:\WINDOWS\Explorer.EXE
D:\WINDOWS\system32\spoolsv.exe
D:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
D:\Program Files\Common Files\Real\Update_OB\realsched.exe
D:\Program Files\iTunes\iTunesHelper.exe
D:\Program Files\QuickTime\qttask.exe
D:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe
D:\Program Files\TrojanHunter 4.5\THGuard.exe
D:\Program Files\Messenger\msmsgs.exe
D:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe
D:\Program Files\LimeWire\LimeWire.exe
D:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe
D:\PROGRA~1\Grisoft\AVGFRE~1\avgemc.exe
C:\Program Files\ewido anti-malware\ewidoctrl.exe
C:\Program Files\ewido anti-malware\ewidoguard.exe
D:\Program Files\iPod\bin\iPodService.exe
D:\Program Files\Maxthon\Maxthon.exe
D:\Documents and Settings\Main\My Documents\My Received Files\HijackThis.exe

O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - D:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: Seekmo Search Assistant Helper /fleok=1D8A83A5C7E1167B9FAF75760EA83FA5EF80752B94E3D87C587E4F2C37CE - {5929CD6E-2062-44a4-B2C5-2C7E78FBAB38} - d:\program files\seekmo\seekmohook.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - D:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O4 - HKLM\..\Run: [Gnetmous] D:\Program Files\ViewMate Optical Travel Mouse MU203\gnetmous.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] D:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
O4 - HKLM\..\Run: [TkBellExe] "D:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [seekmo] "d:\program files\seekmo\seekmo.exe"
O4 - HKLM\..\Run: [iTunesHelper] "D:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [QuickTime Task] "D:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [AVG7_CC] D:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe /STARTUP
O4 - HKLM\..\Run: [THGuard] "D:\Program Files\TrojanHunter 4.5\THGuard.exe"
O4 - HKCU\..\Run: [MSMSGS] "D:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "D:\Program Files\Common Files\Ahead\lib\NMBgMonitor.exe"
O4 - Startup: LimeWire On Startup.lnk = D:\Program Files\LimeWire\LimeWire.exe
O4 - Global Startup: Adobe Reader Speed Launch.lnk = D:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - D:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - D:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - D:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - D:\Program Files\Messenger\msmsgs.exe
O12 - Plugin for .spop: D:\Program Files\Internet Explorer\Plugins\NPDocBox.dll
O17 - HKLM\System\CCS\Services\Tcpip\..\{89174DDA-196B-4A04-ADDF-4DF96FE2EA89}: NameServer = 202.96.209.134 202.96.209.6
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "D:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)
O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - D:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe
O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - D:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe
O23 - Service: AVG E-mail Scanner (AVGEMS) - GRISOFT, s.r.o. - D:\PROGRA~1\Grisoft\AVGFRE~1\avgemc.exe
O23 - Service: ewido security suite control - ewido networks - C:\Program Files\ewido anti-malware\ewidoctrl.exe
O23 - Service: ewido security suite guard - ewido networks - C:\Program Files\ewido anti-malware\ewidoguard.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - D:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iPodService - Apple Computer, Inc. - D:\Program Files\iPod\bin\iPodService.exe

Ewido Anti-Malware log info:

---------------------------------------------------------
ewido anti-malware - Scan report
---------------------------------------------------------

+ Created on: 6:40:33 PM, 6/17/2006
+ Report-Checksum: 45E35651

+ Scan result:

HKLM\SOFTWARE\Classes\ClientAX.ClientInstaller -> Adware.180Solutions : Cleaned with backup
HKLM\SOFTWARE\Classes\ClientAX.ClientInstaller\CLSID -> Adware.180Solutions : Cleaned with backup
HKLM\SOFTWARE\Classes\ClientAX.ClientInstaller\CurVer -> Adware.180Solutions : Cleaned with backup
HKLM\SOFTWARE\Classes\ClientAX.ClientInstaller.1 -> Adware.180Solutions : Cleaned with backup
HKLM\SOFTWARE\Classes\ClientAX.RequiredComponent -> Adware.Zango : Cleaned with backup
HKLM\SOFTWARE\Classes\ClientAX.RequiredComponent\CLSID -> Adware.Zango : Cleaned with backup
HKLM\SOFTWARE\Classes\ClientAX.RequiredComponent\CurVer -> Adware.Zango : Cleaned with backup
HKLM\SOFTWARE\Classes\ClientAX.RequiredComponent.1 -> Adware.Zango : Cleaned with backup
HKU\S-1-5-21-790525478-1682526488-1957994488-1003\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{5929CD6E-2062-44A4-B2C5-2C7E78FBAB38} -> Adware.Generic : Cleaned with backup
C:\WINDOWS\system32\navshext1.dll -> Adware.Chiem : Cleaned with backup
C:\WINDOWS\system32\NaviHelper.dll -> Adware.Navi : Cleaned with backup
C:\WINDOWS\NaviHelper.dll -> Adware.Navi : Cleaned with backup
C:\System Volume Information\_restore{87348850-5FD0-4AC4-853E-FB8A0C26A98B}\RP129\A0093349.sys -> Hijacker.CnsMin : Cleaned with backup
C:\System Volume Information\_restore{87348850-5FD0-4AC4-853E-FB8A0C26A98B}\RP129\A0093351.exe -> Adware.Chiem : Cleaned with backup
C:\System Volume Information\_restore{87348850-5FD0-4AC4-853E-FB8A0C26A98B}\RP129\A0093353.dll -> Adware.Chiem : Cleaned with backup
C:\System Volume Information\_restore{87348850-5FD0-4AC4-853E-FB8A0C26A98B}\RP129\A0093355.exe -> Adware.Chiem : Cleaned with backup
:mozilla.12:C:\FOUND.001\FILE0000.CHK -> TrackingCookie.Yieldmanager : Cleaned with backup
:mozilla.13:C:\FOUND.001\FILE0000.CHK -> TrackingCookie.Yieldmanager : Cleaned with backup
:mozilla.14:C:\FOUND.001\FILE0000.CHK -> TrackingCookie.Yieldmanager : Cleaned with backup
:mozilla.15:C:\FOUND.001\FILE0000.CHK -> TrackingCookie.Yieldmanager : Cleaned with backup
:mozilla.29:C:\FOUND.001\FILE0000.CHK -> TrackingCookie.Tacoda : Cleaned with backup
:mozilla.30:C:\FOUND.001\FILE0000.CHK -> TrackingCookie.Tacoda : Cleaned with backup
:mozilla.31:C:\FOUND.001\FILE0000.CHK -> TrackingCookie.Tacoda : Cleaned with backup
:mozilla.44:C:\FOUND.001\FILE0000.CHK -> TrackingCookie.Burstnet : Cleaned with backup
:mozilla.45:C:\FOUND.001\FILE0000.CHK -> TrackingCookie.Tacoda : Cleaned with backup
:mozilla.46:C:\FOUND.001\FILE0000.CHK -> TrackingCookie.Tacoda : Cleaned with backup
:mozilla.47:C:\FOUND.001\FILE0000.CHK -> TrackingCookie.Burstnet : Cleaned with backup
:mozilla.48:C:\FOUND.001\FILE0000.CHK -> TrackingCookie.Fastclick : Cleaned with backup
:mozilla.49:C:\FOUND.001\FILE0000.CHK -> TrackingCookie.Fastclick : Cleaned with backup
:mozilla.50:C:\FOUND.001\FILE0000.CHK -> TrackingCookie.Fastclick : Cleaned with backup
:mozilla.51:C:\FOUND.001\FILE0000.CHK -> TrackingCookie.Fastclick : Cleaned with backup
:mozilla.52:C:\FOUND.001\FILE0000.CHK -> TrackingCookie.Fastclick : Cleaned with backup
:mozilla.54:C:\FOUND.001\FILE0000.CHK -> TrackingCookie.Falkag : Cleaned with backup
:mozilla.55:C:\FOUND.001\FILE0000.CHK -> TrackingCookie.Casalemedia : Cleaned with backup
:mozilla.56:C:\FOUND.001\FILE0000.CHK -> TrackingCookie.Casalemedia : Cleaned with backup
:mozilla.57:C:\FOUND.001\FILE0000.CHK -> TrackingCookie.Casalemedia : Cleaned with backup
:mozilla.58:C:\FOUND.001\FILE0000.CHK -> TrackingCookie.Casalemedia : Cleaned with backup
:mozilla.59:C:\FOUND.001\FILE0000.CHK -> TrackingCookie.Casalemedia : Cleaned with backup
:mozilla.60:C:\FOUND.001\FILE0000.CHK -> TrackingCookie.Casalemedia : Cleaned with backup
:mozilla.61:C:\FOUND.001\FILE0000.CHK -> TrackingCookie.Casalemedia : Cleaned with backup
:mozilla.62:C:\FOUND.001\FILE0000.CHK -> TrackingCookie.Casalemedia : Cleaned with backup
:mozilla.63:C:\FOUND.001\FILE0000.CHK -> TrackingCookie.Casalemedia : Cleaned with backup
:mozilla.64:C:\FOUND.001\FILE0000.CHK -> TrackingCookie.Trafficmp : Cleaned with backup
:mozilla.65:C:\FOUND.001\FILE0000.CHK -> TrackingCookie.Trafficmp : Cleaned with backup
:mozilla.66:C:\FOUND.001\FILE0000.CHK -> TrackingCookie.Trafficmp : Cleaned with backup
:mozilla.67:C:\FOUND.001\FILE0000.CHK -> TrackingCookie.Trafficmp : Cleaned with backup
:mozilla.68:C:\FOUND.001\FILE0000.CHK -> TrackingCookie.Trafficmp : Cleaned with backup
:mozilla.69:C:\FOUND.001\FILE0000.CHK -> TrackingCookie.Tribalfusion : Cleaned with backup
:mozilla.70:C:\FOUND.001\FILE0000.CHK -> TrackingCookie.Tribalfusion : Cleaned with backup
:mozilla.74:C:\FOUND.001\FILE0000.CHK -> TrackingCookie.Doubleclick : Cleaned with backup
:mozilla.75:C:\FOUND.001\FILE0000.CHK -> TrackingCookie.Doubleclick : Cleaned with backup
:mozilla.90:C:\FOUND.001\FILE0000.CHK -> TrackingCookie.2o7 : Cleaned with backup
:mozilla.91:C:\FOUND.001\FILE0000.CHK -> TrackingCookie.2o7 : Cleaned with backup
:mozilla.92:C:\FOUND.001\FILE0000.CHK -> TrackingCookie.2o7 : Cleaned with backup
:mozilla.93:C:\FOUND.001\FILE0000.CHK -> TrackingCookie.2o7 : Cleaned with backup
:mozilla.94:C:\FOUND.001\FILE0000.CHK -> TrackingCookie.2o7 : Cleaned with backup
:mozilla.95:C:\FOUND.001\FILE0000.CHK -> TrackingCookie.2o7 : Cleaned with backup
:mozilla.96:C:\FOUND.001\FILE0000.CHK -> TrackingCookie.2o7 : Cleaned with backup
:mozilla.97:C:\FOUND.001\FILE0000.CHK -> TrackingCookie.2o7 : Cleaned with backup
:mozilla.98:C:\FOUND.001\FILE0000.CHK -> TrackingCookie.2o7 : Cleaned with backup
:mozilla.99:C:\FOUND.001\FILE0000.CHK -> TrackingCookie.2o7 : Cleaned with backup
:mozilla.100:C:\FOUND.001\FILE0000.CHK -> TrackingCookie.2o7 : Cleaned with backup
:mozilla.101:C:\FOUND.001\FILE0000.CHK -> TrackingCookie.2o7 : Cleaned with backup
:mozilla.102:C:\FOUND.001\FILE0000.CHK -> TrackingCookie.2o7 : Cleaned with backup
:mozilla.103:C:\FOUND.001\FILE0000.CHK -> TrackingCookie.2o7 : Cleaned with backup
:mozilla.104:C:\FOUND.001\FILE0000.CHK -> TrackingCookie.2o7 : Cleaned with backup
:mozilla.105:C:\FOUND.001\FILE0000.CHK -> TrackingCookie.2o7 : Cleaned with backup
:mozilla.106:C:\FOUND.001\FILE0000.CHK -> TrackingCookie.2o7 : Cleaned with backup
:mozilla.107:C:\FOUND.001\FILE0000.CHK -> TrackingCookie.2o7 : Cleaned with backup
:mozilla.108:C:\FOUND.001\FILE0000.CHK -> TrackingCookie.2o7 : Cleaned with backup
:mozilla.109:C:\FOUND.001\FILE0000.CHK -> TrackingCookie.2o7 : Cleaned with backup
:mozilla.110:C:\FOUND.001\FILE0000.CHK -> TrackingCookie.2o7 : Cleaned with backup
:mozilla.111:C:\FOUND.001\FILE0000.CHK -> TrackingCookie.2o7 : Cleaned with backup
:mozilla.112:C:\FOUND.001\FILE0000.CHK -> TrackingCookie.2o7 : Cleaned with backup
:mozilla.113:C:\FOUND.001\FILE0000.CHK -> TrackingCookie.2o7 : Cleaned with backup
:mozilla.114:C:\FOUND.001\FILE0000.CHK -> TrackingCookie.2o7 : Cleaned with backup
:mozilla.132:C:\FOUND.001\FILE0000.CHK -> TrackingCookie.Serving-sys : Cleaned with backup
:mozilla.133:C:\FOUND.001\FILE0000.CHK -> TrackingCookie.Serving-sys : Cleaned with backup
:mozilla.134:C:\FOUND.001\FILE0000.CHK -> TrackingCookie.Serving-sys : Cleaned with backup
:mozilla.135:C:\FOUND.001\FILE0000.CHK -> TrackingCookie.Serving-sys : Cleaned with backup
:mozilla.136:C:\FOUND.001\FILE0000.CHK -> TrackingCookie.Serving-sys : Cleaned with backup
:mozilla.137:C:\FOUND.001\FILE0000.CHK -> TrackingCookie.Serving-sys : Cleaned with backup
:mozilla.141:C:\FOUND.001\FILE0000.CHK -> TrackingCookie.Bluestreak : Cleaned with backup
:mozilla.143:C:\FOUND.001\FILE0000.CHK -> TrackingCookie.Hitbox : Cleaned with backup
:mozilla.144:C:\FOUND.001\FILE0000.CHK -> TrackingCookie.Hitbox : Cleaned with backup
:mozilla.145:C:\FOUND.001\FILE0000.CHK -> TrackingCookie.Hitbox : Cleaned with backup
:mozilla.156:C:\FOUND.001\FILE0000.CHK -> TrackingCookie.Specificclick : Cleaned with backup
:mozilla.157:C:\FOUND.001\FILE0000.CHK -> TrackingCookie.Specificclick : Cleaned with backup
:mozilla.158:C:\FOUND.001\FILE0000.CHK -> TrackingCookie.Pointroll : Cleaned with backup
:mozilla.159:C:\FOUND.001\FILE0000.CHK -> TrackingCookie.Pointroll : Cleaned with backup
:mozilla.160:C:\FOUND.001\FILE0000.CHK -> TrackingCookie.Pointroll : Cleaned with backup
:mozilla.161:C:\FOUND.001\FILE0000.CHK -> TrackingCookie.Pointroll : Cleaned with backup
:mozilla.164:C:\FOUND.001\FILE0000.CHK -> TrackingCookie.Falkag : Cleaned with backup
:mozilla.165:C:\FOUND.001\FILE0000.CHK -> TrackingCookie.Falkag : Cleaned with backup
:mozilla.166:C:\FOUND.001\FILE0000.CHK -> TrackingCookie.Falkag : Cleaned with backup
:mozilla.167:C:\FOUND.001\FILE0000.CHK -> TrackingCookie.Falkag : Cleaned with backup
:mozilla.173:C:\FOUND.001\FILE0000.CHK -> TrackingCookie.Atdmt : Cleaned with backup
:mozilla.191:C:\FOUND.001\FILE0000.CHK -> TrackingCookie.Com : Cleaned with backup
:mozilla.192:C:\FOUND.001\FILE0000.CHK -> TrackingCookie.Com : Cleaned with backup
:mozilla.200:C:\FOUND.001\FILE0000.CHK -> TrackingCookie.Advertising : Cleaned with backup
:mozilla.201:C:\FOUND.001\FILE0000.CHK -> TrackingCookie.Advertising : Cleaned with backup
:mozilla.202:C:\FOUND.001\FILE0000.CHK -> TrackingCookie.Advertising : Cleaned with backup
:mozilla.203:C:\FOUND.001\FILE0000.CHK -> TrackingCookie.Advertising : Cleaned with backup
:mozilla.205:C:\FOUND.001\FILE0000.CHK -> TrackingCookie.Adserver : Cleaned with backup
:mozilla.206:C:\FOUND.001\FILE0000.CHK -> TrackingCookie.Adserver : Cleaned with backup
:mozilla.207:C:\FOUND.001\FILE0000.CHK -> TrackingCookie.Adserver : Cleaned with backup
:mozilla.208:C:\FOUND.001\FILE0000.CHK -> TrackingCookie.Adserver : Cleaned with backup
:mozilla.209:C:\FOUND.001\FILE0000.CHK -> TrackingCookie.Adserver : Cleaned with backup
:mozilla.212:C:\FOUND.001\FILE0000.CHK -> TrackingCookie.Zedo : Cleaned with backup
:mozilla.213:C:\FOUND.001\FILE0000.CHK -> TrackingCookie.Zedo : Cleaned with backup
:mozilla.214:C:\FOUND.001\FILE0000.CHK -> TrackingCookie.Zedo : Cleaned with backup
:mozilla.229:C:\FOUND.001\FILE0000.CHK -> TrackingCookie.Valuead : Cleaned with backup
:mozilla.230:C:\FOUND.001\FILE0000.CHK -> TrackingCookie.Valuead : Cleaned with backup
:mozilla.231:C:\FOUND.001\FILE0000.CHK -> TrackingCookie.Valuead : Cleaned with backup
:mozilla.232:C:\FOUND.001\FILE0000.CHK -> TrackingCookie.Overture : Cleaned with backup
:mozilla.233:C:\FOUND.001\FILE0000.CHK -> TrackingCookie.Overture : Cleaned with backup
:mozilla.236:C:\FOUND.001\FILE0000.CHK -> TrackingCookie.Statcounter : Cleaned with backup
:mozilla.238:C:\FOUND.001\FILE0000.CHK -> TrackingCookie.Statcounter : Cleaned with backup
:mozilla.239:C:\FOUND.001\FILE0000.CHK -> TrackingCookie.Statcounter : Cleaned with backup
:mozilla.240:C:\FOUND.001\FILE0000.CHK -> TrackingCookie.Statcounter : Cleaned with backup
:mozilla.241:C:\FOUND.001\FILE0000.CHK -> TrackingCookie.Statcounter : Cleaned with backup
:mozilla.242:C:\FOUND.001\FILE0000.CHK -> TrackingCookie.Statcounter : Cleaned with backup
:mozilla.243:C:\FOUND.001\FILE0000.CHK -> TrackingCookie.Statcounter : Cleaned with backup
:mozilla.244:C:\FOUND.001\FILE0000.CHK -> TrackingCookie.Statcounter : Cleaned with backup
:mozilla.245:C:\FOUND.001\FILE0000.CHK -> TrackingCookie.Statcounter : Cleaned with backup
:mozilla.246:C:\FOUND.001\FILE0000.CHK -> TrackingCookie.Statcounter : Cleaned with backup
:mozilla.247:C:\FOUND.001\FILE0000.CHK -> TrackingCookie.Masterstats : Cleaned with backup
:mozilla.260:C:\FOUND.001\FILE0000.CHK -> TrackingCookie.Realcastmedia : Cleaned with backup
:mozilla.280:C:\FOUND.001\FILE0000.CHK -> TrackingCookie.Qksrv : Cleaned with backup
:mozilla.282:C:\FOUND.001\FILE0000.CHK -> TrackingCookie.Qksrv : Cleaned with backup
:mozilla.283:C:\FOUND.001\FILE0000.CHK -> TrackingCookie.Mediaplex : Cleaned with backup
:mozilla.310:C:\FOUND.001\FILE0000.CHK -> TrackingCookie.Liveperson : Cleaned with backup
:mozilla.311:C:\FOUND.001\FILE0000.CHK -> TrackingCookie.Liveperson : Cleaned with backup
:mozilla.337:C:\FOUND.001\FILE0000.CHK -> TrackingCookie.Coremetrics : Cleaned with backup
:mozilla.348:C:\FOUND.001\FILE0000.CHK -> TrackingCookie.Adition : Cleaned with backup
:mozilla.349:C:\FOUND.001\FILE0000.CHK -> TrackingCookie.Adition : Cleaned with backup
:mozilla.357:C:\FOUND.001\FILE0000.CHK -> TrackingCookie.Questionmarket : Cleaned with backup
:mozilla.379:C:\FOUND.001\FILE0000.CHK -> TrackingCookie.Estat : Cleaned with backup
:mozilla.394:C:\FOUND.001\FILE0000.CHK -> TrackingCookie.Hitbox : Cleaned with backup
:mozilla.395:C:\FOUND.001\FILE0000.CHK -> TrackingCookie.Hitbox : Cleaned with backup
:mozilla.396:C:\FOUND.001\FILE0000.CHK -> TrackingCookie.Hitbox : Cleaned with backup
:mozilla.397:C:\FOUND.001\FILE0000.CHK -> TrackingCookie.Hitbox : Cleaned with backup
:mozilla.398:C:\FOUND.001\FILE0000.CHK -> TrackingCookie.Hitbox : Cleaned with backup
:mozilla.400:C:\FOUND.001\FILE0000.CHK -> TrackingCookie.Esomniture : Cleaned with backup
:mozilla.408:C:\FOUND.001\FILE0000.CHK -> TrackingCookie.Hitbox : Cleaned with backup
:mozilla.409:C:\FOUND.001\FILE0000.CHK -> TrackingCookie.Hitbox : Cleaned with backup
:mozilla.428:C:\FOUND.001\FILE0000.CHK -> TrackingCookie.Adjuggler : Cleaned with backup
:mozilla.443:C:\FOUND.001\FILE0000.CHK -> TrackingCookie.Webtrendslive : Cleaned with backup
:mozilla.445:C:\FOUND.001\FILE0000.CHK -> TrackingCookie.Hitbox : Cleaned with backup
:mozilla.482:C:\FOUND.001\FILE0000.CHK -> TrackingCookie.Ru4 : Cleaned with backup
:mozilla.483:C:\FOUND.001\FILE0000.CHK -> TrackingCookie.Ru4 : Cleaned with backup
:mozilla.484:C:\FOUND.001\FILE0000.CHK -> TrackingCookie.Ru4 : Cleaned with backup
:mozilla.487:C:\FOUND.001\FILE0000.CHK -> TrackingCookie.Webtrendslive : Cleaned with backup
:mozilla.492:C:\FOUND.001\FILE0000.CHK -> TrackingCookie.Hotlog : Cleaned with backup
:mozilla.493:C:\FOUND.001\FILE0000.CHK -> TrackingCookie.Hitbox : Cleaned with backup
:mozilla.494:C:\FOUND.001\FILE0000.CHK -> TrackingCookie.Hitbox : Cleaned with backup
:mozilla.495:C:\FOUND.001\FILE0000.CHK -> TrackingCookie.Hitbox : Cleaned with backup
:mozilla.496:C:\FOUND.001\FILE0000.CHK -> TrackingCookie.Hitbox : Cleaned with backup
:mozilla.566:C:\FOUND.001\FILE0000.CHK -> TrackingCookie.Clickbank : Cleaned with backup
:mozilla.571:C:\FOUND.001\FILE0000.CHK -> TrackingCookie.Googleadservices : Cleaned with backup
:mozilla.584:C:\FOUND.001\FILE0000.CHK -> TrackingCookie.Googleadservices : Cleaned with backup
:mozilla.600:C:\FOUND.001\FILE0000.CHK -> TrackingCookie.Hitbox : Cleaned with backup
:mozilla.609:C:\FOUND.001\FILE0000.CHK -> TrackingCookie.Spylog : Cleaned with backup
:mozilla.613:C:\FOUND.001\FILE0000.CHK -> TrackingCookie.Googleadservices : Cleaned with backup
:mozilla.615:C:\FOUND.001\FILE0000.CHK -> TrackingCookie.Googleadservices : Cleaned with backup
:mozilla.625:C:\FOUND.001\FILE0000.CHK -> TrackingCookie.Googleadservices : Cleaned with backup
:mozilla.668:C:\FOUND.001\FILE0000.CHK -> TrackingCookie.Bridgetrack : Cleaned with backup
:mozilla.669:C:\FOUND.001\FILE0000.CHK -> TrackingCookie.Bridgetrack : Cleaned with backup
:mozilla.684:C:\FOUND.001\FILE0000.CHK -> TrackingCookie.Valueclick : Cleaned with backup
:mozilla.685:C:\FOUND.001\FILE0000.CHK -> TrackingCookie.Valueclick : Cleaned with backup
:mozilla.687:C:\FOUND.001\FILE0000.CHK -> TrackingCookie.Hitbox : Cleaned with backup
:mozilla.689:C:\FOUND.001\FILE0000.CHK -> TrackingCookie.Enhance : Cleaned with backup
:mozilla.690:C:\FOUND.001\FILE0000.CHK -> TrackingCookie.Goclick : Cleaned with backup
:mozilla.691:C:\FOUND.001\FILE0000.CHK -> TrackingCookie.Goclick : Cleaned with backup
:mozilla.694:C:\FOUND.001\FILE0000.CHK -> TrackingCookie.Smartadserver : Cleaned with backup
:mozilla.698:C:\FOUND.001\FILE0000.CHK -> TrackingCookie.Overture : Cleaned with backup
:mozilla.755:C:\FOUND.001\FILE0000.CHK -> TrackingCookie.Bfast : Cleaned with backup
:mozilla.756:C:\FOUND.001\FILE0000.CHK -> TrackingCookie.Bfast : Cleaned with backup
:mozilla.769:C:\FOUND.001\FILE0000.CHK -> TrackingCookie.Hitbox : Cleaned with backup
:mozilla.770:C:\FOUND.001\FILE0000.CHK -> TrackingCookie.Hitbox : Cleaned with backup
:mozilla.774:C:\FOUND.001\FILE0000.CHK -> TrackingCookie.Esomniture : Cleaned with backup
:mozilla.775:C:\FOUND.001\FILE0000.CHK -> TrackingCookie.Esomniture : Cleaned with backup
:mozilla.783:C:\FOUND.001\FILE0000.CHK -> TrackingCookie.Esomniture : Cleaned with backup
:mozilla.784:C:\FOUND.001\FILE0000.CHK -> TrackingCookie.Hitbox : Cleaned with backup
:mozilla.795:C:\FOUND.001\FILE0000.CHK -> TrackingCookie.Adrevolver : Cleaned with backup
:mozilla.796:C:\FOUND.001\FILE0000.CHK -> TrackingCookie.Adrevolver : Cleaned with backup
:mozilla.797:C:\FOUND.001\FILE0000.CHK -> TrackingCookie.Adrevolver : Cleaned with backup
:mozilla.798:C:\FOUND.001\FILE0000.CHK -> TrackingCookie.Adrevolver : Cleaned with backup
:mozilla.799:C:\FOUND.001\FILE0000.CHK -> TrackingCookie.Adrevolver : Cleaned with backup
:mozilla.806:C:\FOUND.001\FILE0000.CHK -> TrackingCookie.Hitbox : Cleaned with backup
:mozilla.807:C:\FOUND.001\FILE0000.CHK -> TrackingCookie.Hitbox : Cleaned with backup
:mozilla.808:C:\FOUND.001\FILE0000.CHK -> TrackingCookie.Hitbox : Cleaned with backup
:mozilla.829:C:\FOUND.001\FILE0000.CHK -> TrackingCookie.Centrport : Cleaned with backup
:mozilla.830:C:\FOUND.001\FILE0000.CHK -> TrackingCookie.Centrport : Cleaned with backup
:mozilla.838:C:\FOUND.001\FILE0000.CHK -> TrackingCookie.Etracker : Cleaned with backup
:mozilla.859:C:\FOUND.001\FILE0000.CHK -> TrackingCookie.Hitbox : Cleaned with backup
:mozilla.881:C:\FOUND.001\FILE0000.CHK -> TrackingCookie.247realmedia : Cleaned with backup
:mozilla.903:C:\FOUND.001\FILE0000.CHK -> TrackingCookie.Counted : Cleaned with backup
:mozilla.910:C:\FOUND.001\FILE0000.CHK -> TrackingCookie.Hitbox : Cleaned with backup
:mozilla.917:C:\FOUND.001\FILE0000.CHK -> TrackingCookie.2o7 : Cleaned with backup
:mozilla.946:C:\FOUND.001\FILE0000.CHK -> TrackingCookie.Onestat : Cleaned with backup
:mozilla.947:C:\FOUND.001\FILE0000.CHK -> TrackingCookie.Onestat : Cleaned with backup
C:\Documents and Settings\Stephens Crap\Programs1\bd111419.exe -> Adware.Beginto : Cleaned with backup
D:\Documents and Settings\Main\Cookies\[email protected][1].txt -> TrackingCookie.Clickhype : Cleaned with backup
D:\Documents and Settings\Main\Cookies\[email protected][2].txt -> TrackingCookie.Ivwbox : Cleaned with backup
D:\Documents and Settings\Main\Cookies\[email protected][1].txt -> TrackingCookie.Yieldmanager : Cleaned with backup
D:\Documents and Settings\Main\Cookies\[email protected][1].txt -> TrackingCookie.Com : Cleaned with backup
:mozilla.6:D:\Documents and Settings\Main\Application Data\Mozilla\Firefox\Profiles\kh1uz5sh.default\cookies.txt -> TrackingCookie.2o7 : Cleaned with backup
:mozilla.38:D:\Documents and Settings\Main\Application Data\Mozilla\Firefox\Profiles\kh1uz5sh.default\cookies.txt -> TrackingCookie.Tribalfusion : Cleaned with backup
:mozilla.54:D:\Documents and Settings\Main\Application Data\Mozilla\Firefox\Profiles\kh1uz5sh.default\cookies.txt -> TrackingCookie.Adjuggler : Cleaned with backup
:mozilla.8:D:\Documents and Settings\Main\Application Data\Mozilla\Firefox\Profiles\kh1uz5sh.default\cookies-24.txt -> TrackingCookie.Doubleclick : Cleaned with backup
:mozilla.22:D:\Documents and Settings\Main\Application Data\Mozilla\Firefox\Profiles\kh1uz5sh.default\cookies-24.txt -> TrackingCookie.Atdmt : Cleaned with backup
:mozilla.6:D:\Documents and Settings\Main\Application Data\Mozilla\Firefox\Profiles\kh1uz5sh.default\cookies-1.txt -> TrackingCookie.Doubleclick : Cleaned with backup
:mozilla.6:D:\Documents and Settings\Main\Application Data\Mozilla\Firefox\Profiles\kh1uz5sh.default\cookies-2.txt -> TrackingCookie.Doubleclick : Cleaned with backup
:mozilla.6:D:\Documents and Settings\Main\Application Data\Mozilla\Firefox\Profiles\kh1uz5sh.default\cookies-3.txt -> TrackingCookie.Doubleclick : Cleaned with backup
:mozilla.8:D:\Documents and Settings\Main\Application Data\Mozilla\Firefox\Profiles\kh1uz5sh.default\cookies-4.txt -> TrackingCookie.Doubleclick : Cleaned with backup
:mozilla.14:D:\Documents and Settings\Main\Application Data\Mozilla\Firefox\Profiles\kh1uz5sh.default\cookies-5.txt -> TrackingCookie.Doubleclick : Cleaned with backup
:mozilla.14:D:\Documents and Settings\Main\Application Data\Mozilla\Firefox\Profiles\kh1uz5sh.default\cookies-6.txt -> TrackingCookie.Doubleclick : Cleaned with backup
:mozilla.14:D:\Documents and Settings\Main\Application Data\Mozilla\Firefox\Profiles\kh1uz5sh.default\cookies-7.txt -> TrackingCookie.Doubleclick : Cleaned with backup
:mozilla.6:D:\Documents and Settings\Main\Application Data\Mozilla\Firefox\Profiles\kh1uz5sh.default\cookies-8.txt -> TrackingCookie.Atdmt : Cleaned with backup
:mozilla.15:D:\Documents and Settings\Main\Application Data\Mozilla\Firefox\Profiles\kh1uz5sh.default\cookies-8.txt -> TrackingCookie.Doubleclick : Cleaned with backup
:mozilla.17:D:\Documents and Settings\Main\Application Data\Mozilla\Firefox\Profiles\kh1uz5sh.default\cookies-9.txt -> TrackingCookie.Atdmt : Cleaned with backup
:mozilla.21:D:\Documents and Settings\Main\Application Data\Mozilla\Firefox\Profiles\kh1uz5sh.default\cookies-9.txt -> TrackingCookie.Doubleclick : Cleaned with backup
:mozilla.18:D:\Documents and Settings\Main\Application Data\Mozilla\Firefox\Profiles\kh1uz5sh.default\cookies-10.txt -> TrackingCookie.Atdmt : Cleaned with backup
:mozilla.22:D:\Documents and Settings\Main\Application Data\Mozilla\Firefox\Profiles\kh1uz5sh.default\cookies-10.txt -> TrackingCookie.Doubleclick : Cleaned with backup
:mozilla.18:D:\Documents and Settings\Main\Application Data\Mozilla\Firefox\Profiles\kh1uz5sh.default\cookies-11.txt -> TrackingCookie.Atdmt : Cleaned with backup
:mozilla.22:D:\Documents and Settings\Main\Application Data\Mozilla\Firefox\Profiles\kh1uz5sh.default\cookies-11.txt -> TrackingCookie.Doubleclick : Cleaned with backup
:mozilla.18:D:\Documents and Settings\Main\Application Data\Mozilla\Firefox\Profiles\kh1uz5sh.default\cookies-12.txt -> TrackingCookie.Atdmt : Cleaned with backup
:mozilla.22:D:\Documents and Settings\Main\Application Data\Mozilla\Firefox\Profiles\kh1uz5sh.default\cookies-12.txt -> TrackingCookie.Doubleclick : Cleaned with backup
:mozilla.18:D:\Documents and Settings\Main\Application Data\Mozilla\Firefox\Profiles\kh1uz5sh.default\cookies-13.txt -> TrackingCookie.Atdmt : Cleaned with backup
:mozilla.22:D:\Documents and Settings\Main\Application Data\Mozilla\Firefox\Profiles\kh1uz5sh.default\cookies-13.txt -> TrackingCookie.Doubleclick : Cleaned with backup
:mozilla.18:D:\Documents and Settings\Main\Application Data\Mozilla\Firefox\Profiles\kh1uz5sh.default\cookies-14.txt -> TrackingCookie.Atdmt : Cleaned with backup
:mozilla.22:D:\Documents and Settings\Main\Application Data\Mozilla\Firefox\Profiles\kh1uz5sh.default\cookies-14.txt -> TrackingCookie.Doubleclick : Cleaned with backup
:mozilla.18:D:\Documents and Settings\Main\Application Data\Mozilla\Firefox\Profiles\kh1uz5sh.default\cookies-15.txt -> TrackingCookie.Atdmt : Cleaned with backup
:mozilla.22:D:\Documents and Settings\Main\Application Data\Mozilla\Firefox\Profiles\kh1uz5sh.default\cookies-15.txt -> TrackingCookie.Doubleclick : Cleaned with backup
:mozilla.12:D:\Documents and Settings\Main\Application Data\Mozilla\Firefox\Profiles\kh1uz5sh.default\cookies-16.txt -> TrackingCookie.Doubleclick : Cleaned with backup
:mozilla.20:D:\Documents and Settings\Main\Application Data\Mozilla\Firefox\Profiles\kh1uz5sh.default\cookies-16.txt -> TrackingCookie.Atdmt : Cleaned with backup
:mozilla.12:D:\Documents and Settings\Main\Application Data\Mozilla\Firefox\Profiles\kh1uz5sh.default\cookies-17.txt -> TrackingCookie.Doubleclick : Cleaned with backup
:mozilla.20:D:\Documents and Settings\Main\Application Data\Mozilla\Firefox\Profiles\kh1uz5sh.default\cookies-17.txt -> TrackingCookie.Atdmt : Cleaned with backup
:mozilla.6:D:\Documents and Settings\Main\Application Data\Mozilla\Firefox\Profiles\kh1uz5sh.default\cookies-18.txt -> TrackingCookie.Doubleclick : Cleaned with backup
:mozilla.20:D:\Documents and Settings\Main\Application Data\Mozilla\Firefox\Profiles\kh1uz5sh.default\cookies-18.txt -> TrackingCookie.Atdmt : Cleaned with backup
:mozilla.8:D:\Documents and Settings\Main\Application Data\Mozilla\Firefox\Profiles\kh1uz5sh.default\cookies-19.txt -> TrackingCookie.Doubleclick : Cleaned with backup
:mozilla.22:D:\Documents and Settings\Main\Application Data\Mozilla\Firefox\Profiles\kh1uz5sh.default\cookies-19.txt -> TrackingCookie.Atdmt : Cleaned with backup
:mozilla.8:D:\Documents and Settings\Main\Application Data\Mozilla\Firefox\Profiles\kh1uz5sh.default\cookies-20.txt -> TrackingCookie.Doubleclick : Cleaned with backup
:mozilla.22:D:\Documents and Settings\Main\Application Data\Mozilla\Firefox\Profiles\kh1uz5sh.default\cookies-20.txt -> TrackingCookie.Atdmt : Cleaned with backup
:mozilla.8:D:\Documents and Settings\Main\Application Data\Mozilla\Firefox\Profiles\kh1uz5sh.default\cookies-21.txt -> TrackingCookie.Doubleclick : Cleaned with backup
:mozilla.22:D:\Documents and Settings\Main\Application Data\Mozilla\Firefox\Profiles\kh1uz5sh.default\cookies-21.txt -> TrackingCookie.Atdmt : Cleaned with backup
:mozilla.8:D:\Documents and Settings\Main\Application Data\Mozilla\Firefox\Profiles\kh1uz5sh.default\cookies-22.txt -> TrackingCookie.Doubleclick : Cleaned with backup
:mozilla.22:D:\Documents and Settings\Main\Application Data\Mozilla\Firefox\Profiles\kh1uz5sh.default\cookies-22.txt -> TrackingCookie.Atdmt : Cleaned with backup
:mozilla.8:D:\Documents and Settings\Main\Application Data\Mozilla\Firefox\Profiles\kh1uz5sh.default\cookies-23.txt -> TrackingCookie.Doubleclick : Cleaned with backup
:mozilla.22:D:\Documents and Settings\Main\Application Data\Mozilla\Firefox\Profiles\kh1uz5sh.default\cookies-23.txt -> TrackingCookie.Atdmt : Cleaned with backup
D:\System Volume Information\_restore{87348850-5FD0-4AC4-853E-FB8A0C26A98B}\RP125\A0092867.exe -> Adware.Beginto : Cleaned with backup
:mozilla.6:D:\FOUND.007\FILE0002.CHK -> TrackingCookie.Doubleclick : Cleaned with backup
:mozilla.17:D:\FOUND.007\FILE0002.CHK -> TrackingCookie.Atdmt : Cleaned with backup
:mozilla.19:D:\FOUND.007\FILE0002.CHK -> TrackingCookie.Serving-sys : Cleaned with backup
:mozilla.20:D:\FOUND.007\FILE0002.CHK -> TrackingCookie.Serving-sys : Cleaned with backup
:mozilla.21:D:\FOUND.007\FILE0002.CHK -> TrackingCookie.Serving-sys : Cleaned with backup
:mozilla.22:D:\FOUND.007\FILE0002.CHK -> TrackingCookie.Serving-sys : Cleaned with backup
:mozilla.23:D:\FOUND.007\FILE0002.CHK -> TrackingCookie.Serving-sys : Cleaned with backup
:mozilla.26:D:\FOUND.007\FILE0002.CHK -> TrackingCookie.Mediaplex : Cleaned with backup
:mozilla.28:D:\FOUND.007\FILE0002.CHK -> TrackingCookie.Hitbox : Cleaned with backup
:mozilla.29:D:\FOUND.007\FILE0002.CHK -> TrackingCookie.Hitbox : Cleaned with backup
:mozilla.30:D:\FOUND.007\FILE0002.CHK -> TrackingCookie.Hitbox : Cleaned with backup
:mozilla.31:D:\FOUND.007\FILE0002.CHK -> TrackingCookie.2o7 : Cleaned with backup
:mozilla.32:D:\FOUND.007\FILE0002.CHK -> TrackingCookie.2o7 : Cleaned with backup
:mozilla.33:D:\FOUND.007\FILE0002.CHK -> TrackingCookie.2o7 : Cleaned with backup
:mozilla.34:D:\FOUND.007\FILE0002.CHK -> TrackingCookie.2o7 : Cleaned with backup
:mozilla.35:D:\FOUND.007\FILE0002.CHK -> TrackingCookie.2o7 : Cleaned with backup
:mozilla.36:D:\FOUND.007\FILE0002.CHK -> TrackingCookie.2o7 : Cleaned with backup
:mozilla.37:D:\FOUND.007\FILE0002.CHK -> TrackingCookie.2o7 : Cleaned with backup
:mozilla.42:D:\FOUND.007\FILE0002.CHK -> TrackingCookie.Bluestreak : Cleaned with backup
:mozilla.57:D:\FOUND.007\FILE0002.CHK -> TrackingCookie.Coremetrics : Cleaned with backup
:mozilla.100:D:\FOUND.007\FILE0002.CHK -> TrackingCookie.Hitslink : Cleaned with backup
:mozilla.101:D:\FOUND.007\FILE0002.CHK -> TrackingCookie.Hitslink : Cleaned with backup
:mozilla.102:D:\FOUND.007\FILE0002.CHK -> TrackingCookie.Hitslink : Cleaned with backup
:mozilla.103:D:\FOUND.007\FILE0002.CHK -> TrackingCookie.Hitslink : Cleaned with backup
:mozilla.104:D:\FOUND.007\FILE0002.CHK -> TrackingCookie.Overture : Cleaned with backup
:mozilla.105:D:\FOUND.007\FILE0002.CHK -> TrackingCookie.Overture : Cleaned with backup
:mozilla.106:D:\FOUND.007\FILE0002.CHK -> TrackingCookie.Overture : Cleaned with backup
:mozilla.107:D:\FOUND.007\FILE0002.CHK -> TrackingCookie.Googleadservices : Cleaned with backup
:mozilla.108:D:\FOUND.007\FILE0002.CHK -> TrackingCookie.Googleadservices : Cleaned with backup
:mozilla.116:D:\FOUND.007\FILE0002.CHK -> TrackingCookie.Com : Cleaned with backup
:mozilla.120:D:\FOUND.007\FILE0002.CHK -> TrackingCookie.Tribalfusion : Cleaned with backup
:mozilla.121:D:\FOUND.007\FILE0002.CHK -> TrackingCookie.Zedo : Cleaned with backup
:mozilla.122:D:\FOUND.007\FILE0002.CHK -> TrackingCookie.Zedo : Cleaned with backup
:mozilla.123:D:\FOUND.007\FILE0002.CHK -> TrackingCookie.Zedo : Cleaned with backup
:mozilla.124:D:\FOUND.007\FILE0002.CHK -> TrackingCookie.Fastclick : Cleaned with backup
:mozilla.125:D:\FOUND.007\FILE0002.CHK -> TrackingCookie.Casalemedia : Cleaned with backup
:mozilla.126:D:\FOUND.007\FILE0002.CHK -> TrackingCookie.Casalemedia : Cleaned with backup
:mozilla.127:D:\FOUND.007\FILE0002.CHK -> TrackingCookie.Casalemedia : Cleaned with backup
:mozilla.128:D:\FOUND.007\FILE0002.CHK -> TrackingCookie.Casalemedia : Cleaned with backup
:mozilla.129:D:\FOUND.007\FILE0002.CHK -> TrackingCookie.Fastclick : Cleaned with backup
:mozilla.132:D:\FOUND.007\FILE0002.CHK -> TrackingCookie.Questionmarket : Cleaned with backup
:mozilla.139:D:\FOUND.007\FILE0002.CHK -> TrackingCookie.Advertising : Cleaned with backup
:mozilla.140:D:\FOUND.007\FILE0002.CHK -> TrackingCookie.Advertising : Cleaned with backup
:mozilla.145:D:\FOUND.007\FILE0002.CHK -> TrackingCookie.Webtrendslive : Cleaned with backup
:mozilla.146:D:\FOUND.007\FILE0002.CHK -> TrackingCookie.Webtrendslive : Cleaned with backup
:mozilla.152:D:\FOUND.007\FILE0002.CHK -> TrackingCookie.Hitbox : Cleaned with backup
:mozilla.155:D:\FOUND.007\FILE0002.CHK -> TrackingCookie.Pointroll : Cleaned with backup
:mozilla.156:D:\FOUND.007\FILE0002.CHK -> TrackingCookie.Pointroll : Cleaned with backup
:mozilla.157:D:\FOUND.007\FILE0002.CHK -> TrackingCookie.Pointroll : Cleaned with backup
:mozilla.158:D:\FOUND.007\FILE0002.CHK -> TrackingCookie.Pointroll : Cleaned with backup
:mozilla.178:D:\FOUND.007\FILE0002.CHK -> TrackingCookie.2o7 : Cleaned with backup
:mozilla.179:D:\FOUND.007\FILE0002.CHK -> TrackingCookie.247realmedia : Cleaned with backup
:mozilla.201:D:\FOUND.007\FILE0002.CHK -> TrackingCookie.Googleadservices : Cleaned with backup
E:\Programs Downloaded\regular_plugin.exe -> Downloader.INService.ja : Cleaned with backup
H:\Stephens Crap\Programs1\bd111419.exe -> Adware.Beginto : Cleaned with backup


::Report End
  • 0

Advertisements

#2
Noviciate
Posted 18 June 2006 - 02:35 PM

Noviciate

    Confused Helper

  • Malware Removal
  • 1,567 posts
Run the following scan: Kaspersky Online Scanner.
When you see "Please select a target to scan", click on "My Computer".
When the scan has completed and the results are displayed, click on the Save as text button and save the report with an appropriate name to your Desktop.
Copy and paste this report into your next reply along with a new HJT log AND a description of how your PC is running.

** Please note **
a) I.E. is required to run this scan.
b) You will need to remain online for the duration of the scan.

Also, run HJT and click on Open the Misc Tools section.
In the next window, click on Open Uninstall Manager...
In the final window, click on Save list... and save it to your Desktop.
Copy and paste this file: uninstall_list.txt into your next reply.
  • 0

#3
C_I_C
Posted 20 June 2006 - 03:44 AM

C_I_C

    New Member

  • Topic Starter
  • Member
  • Pip
  • 3 posts
After running Kapersky. here is my log file.
should i re-run hijackthis?

C_I_C

Attached Files


  • 0

#4
C_I_C
Posted 20 June 2006 - 04:05 AM

C_I_C

    New Member

  • Topic Starter
  • Member
  • Pip
  • 3 posts
It helps if you read things.... :~(

Logfile of HijackThis v1.99.1
Scan saved at 5:48:38 PM, on 6/20/2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
D:\WINDOWS\System32\smss.exe
D:\WINDOWS\system32\winlogon.exe
D:\WINDOWS\system32\services.exe
D:\WINDOWS\system32\lsass.exe
D:\WINDOWS\system32\svchost.exe
D:\WINDOWS\System32\svchost.exe
D:\WINDOWS\system32\spoolsv.exe
D:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe
D:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe
D:\PROGRA~1\Grisoft\AVGFRE~1\avgemc.exe
C:\Program Files\ewido anti-malware\ewidoctrl.exe
C:\Program Files\ewido anti-malware\ewidoguard.exe
D:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
D:\Program Files\iTunes\iTunesHelper.exe
D:\Program Files\QuickTime\qttask.exe
D:\Program Files\TrojanHunter 4.5\THGuard.exe
D:\Program Files\Messenger\msmsgs.exe
D:\Program Files\LimeWire\LimeWire.exe
D:\Program Files\iPod\bin\iPodService.exe
D:\Program Files\Azureus\Azureus.exe
D:\Program Files\Maxthon\Maxthon.exe
D:\Program Files\Windows Media Player\wmplayer.exe
D:\WINDOWS\explorer.exe
D:\Program Files\Common Files\Real\Update_OB\realsched.exe
D:\WINDOWS\system32\calc.exe
D:\Documents and Settings\Main\My Documents\My Received Files\HijackThis.exe

O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - D:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: Seekmo Search Assistant Helper /fleok=1D8A83A5C7E1167B9FAF75760EA83FA5EF80752B94E3D87C587E4F2C37CE - {5929CD6E-2062-44a4-B2C5-2C7E78FBAB38} - d:\program files\seekmo\seekmohook.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - D:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O4 - HKLM\..\Run: [Gnetmous] D:\Program Files\ViewMate Optical Travel Mouse MU203\gnetmous.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] D:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
O4 - HKLM\..\Run: [TkBellExe] "D:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [seekmo] "d:\program files\seekmo\seekmo.exe"
O4 - HKLM\..\Run: [iTunesHelper] "D:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [QuickTime Task] "D:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [AVG7_CC] D:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe /STARTUP
O4 - HKLM\..\Run: [THGuard] "D:\Program Files\TrojanHunter 4.5\THGuard.exe"
O4 - HKCU\..\Run: [MSMSGS] "D:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "D:\Program Files\Common Files\Ahead\lib\NMBgMonitor.exe"
O4 - Startup: LimeWire On Startup.lnk = D:\Program Files\LimeWire\LimeWire.exe
O4 - Global Startup: Adobe Reader Speed Launch.lnk = D:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - D:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - D:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - D:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - D:\Program Files\Messenger\msmsgs.exe
O12 - Plugin for .spop: D:\Program Files\Internet Explorer\Plugins\NPDocBox.dll
O16 - DPF: {0EB0E74A-2A76-4AB3-A7FB-9BD8C29F7F75} (CKAVWebScan Object) - http://www.kaspersky...can_unicode.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{89174DDA-196B-4A04-ADDF-4DF96FE2EA89}: NameServer = 202.96.209.134 202.96.209.6
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "D:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)
O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - D:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe
O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - D:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe
O23 - Service: AVG E-mail Scanner (AVGEMS) - GRISOFT, s.r.o. - D:\PROGRA~1\Grisoft\AVGFRE~1\avgemc.exe
O23 - Service: ewido security suite control - ewido networks - C:\Program Files\ewido anti-malware\ewidoctrl.exe
O23 - Service: ewido security suite guard - ewido networks - C:\Program Files\ewido anti-malware\ewidoguard.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - D:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iPodService - Apple Computer, Inc. - D:\Program Files\iPod\bin\iPodService.exe

Here is the unistall list


ACE Mega CoDecS Pack
Ad-Aware SE Personal
Adobe Acrobat 5.0
Adobe Reader 7.0.8
AVG Free Edition
Azureus
CueClub
DivX
DivX Converter
DivX Player
DivX Web Player
EVEREST Home Edition v2.20
ewido anti-malware
HijackThis 1.99.1
InterActual Player
iTunes
J2SE Runtime Environment 5.0 Update 6
Kaspersky On-line Scanner
LimeWire 4.10.5
Macromedia Flash Player 8
Magic Online
Magic: The Gathering
Magic: The Gathering "Manalink"
Maxthon Browser (remove only)
MSN Messenger 7.5
QuickTime
RealPlayer
Realtek AC'97 Audio
Security Update for Windows Media Player (KB911564)
Security Update for Windows XP (KB890046)
Security Update for Windows XP (KB893756)
Security Update for Windows XP (KB896358)
Security Update for Windows XP (KB896422)
Security Update for Windows XP (KB896423)
Security Update for Windows XP (KB896424)
Security Update for Windows XP (KB896428)
Security Update for Windows XP (KB899587)
Security Update for Windows XP (KB899589)
Security Update for Windows XP (KB899591)
Security Update for Windows XP (KB900725)
Security Update for Windows XP (KB901017)
Security Update for Windows XP (KB901214)
Security Update for Windows XP (KB902400)
Security Update for Windows XP (KB904706)
Security Update for Windows XP (KB905414)
Security Update for Windows XP (KB905749)
Security Update for Windows XP (KB905915)
Security Update for Windows XP (KB908519)
Security Update for Windows XP (KB911927)
Security Update for Windows XP (KB912919)
Security Update for Windows XP (KB913446)
Seekmo Search Assistant
Skype 2.0
Spybot - Search & Destroy 1.4
Trillian
TrojanHunter 4.5
Update for Windows XP (KB894391)
Update for Windows XP (KB898461)
Update for Windows XP (KB910437)
VideoLAN VLC media player 0.8.4a
ViewMate Optical Travel Mouse MU203
Windows Installer 3.1 (KB893803)
Windows Media Format Runtime
Windows Media Player 10
Windows XP Hotfix - KB873339
Windows XP Hotfix - KB885250
Windows XP Hotfix - KB885835
Windows XP Hotfix - KB885836
Windows XP Hotfix - KB886185
Windows XP Hotfix - KB887472
Windows XP Hotfix - KB887742
Windows XP Hotfix - KB888113
Windows XP Hotfix - KB888302
Windows XP Hotfix - KB890859
Windows XP Hotfix - KB891781
WinRAR archiver

Also I have found out that I may have already installed windows sp2.
What does that mean in terms of deleting things?
As for problems, I think my Maxthon browser takes care of most of my spyware issues. So as for problems I don't think I many problems. This is just a general check-up, to see if there IS anything wrong.

Many thanks,

C_I_C
  • 0

#5
Noviciate
Posted 20 June 2006 - 02:34 PM

Noviciate

    Confused Helper

  • Malware Removal
  • 1,567 posts
Things look pretty good, just a little tinkering to do:

1) Go to Start > Control Panel > Add/Remove Programs and remove the following, and then reboot your PC:

Seekmo Search Assistant

2) Delete the following folder, if it still exists:

d:\program files\seekmo

As an example:
To delete C:\WINDOWS\system32\foldertogo
Double click the My Computer icon on your Desktop.
Double click on Local Disc (C:)
Double click on the Windows folder,
Double click on the System 32 folder,
Right click on foldertogo and from the menu that appears, click on 'Delete'

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
You are running an old version of Sun Java which needs updating:

1) Go here and and click on the "Download JRE 5.0 Update 7" link.
Under Windows Platform - J2SE™ Runtime Environment 5.0 Update 7, click on "Windows Offline Installation, Multi-language".
* You will need to accept the license agreement before you can download the installation file.

2) Go to Add/Remove Programs and remove any entries that refer to Java 2 Runtime Enviroment and then reboot your PC.

3) Navigate to and delete the following folder, if it exists: C:\Program Files\Java.

4) Finally double click the installation file that you downloaded earlier.

That should be your lot! :whistling: If you have any problems with any of the above, let me know.
  • 0
Back to Virus, Spyware, Malware Removal · Next Unread Topic →




Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

  1. Geeks to Go Forum
  2. Security
  3. Virus, Spyware, Malware Removal

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP