I had a message and red background advising privacy in danger. I logged onto this site and have since completed AVG, Super Antispyware and HiJack this logs. It seems that the file has been removed to some extent however I am still getting a message at the startup stage advising ''cannot find file ''privacy danger''please check the path or internet connection. Does anyone have any idea if this has been completely removed or if there are a few steps to complete it? Also the background is now white and I am unable to change for some reason. pLEASE SEE BELOW FOR LOG REPORTS
***********SUPER ANTI SPYWARE LOG*************
SUPERAntiSpyware Scan Log
Generated 02/01/2008 at 10:07 PM
Application Version : 3.6.1000
Core Rules Database Version : 3392
Trace Rules Database Version: 1384
Scan type : Complete Scan
Total Scan Time : 04:06:11
Memory items scanned : 449
Memory threats detected : 1
Registry items scanned : 7343
Registry threats detected : 65
File items scanned : 132464
File threats detected : 273
Trojan.Net-ASW/NMC
C:\WINDOWS\ASWMKLT.DLL
C:\WINDOWS\ASWMKLT.DLL
Adware.MyWay
HKLM\Software\Classes\CLSID\{0494D0D1-F8E0-41ad-92A3-14154ECE70AC}
HKCR\CLSID\{0494D0D1-F8E0-41AD-92A3-14154ECE70AC}
HKCR\CLSID\{0494D0D1-F8E0-41AD-92A3-14154ECE70AC}
HKCR\CLSID\{0494D0D1-F8E0-41AD-92A3-14154ECE70AC}\InprocServer32
HKCR\CLSID\{0494D0D1-F8E0-41AD-92A3-14154ECE70AC}\InprocServer32#ThreadingModel
HKCR\CLSID\{0494D0D1-F8E0-41AD-92A3-14154ECE70AC}\Programmable
HKCR\CLSID\{0494D0D1-F8E0-41AD-92A3-14154ECE70AC}\TypeLib
C:\PROGRAM FILES\MYWAY\MYBAR\1.BIN\MYBAR.DLL
HKLM\Software\Classes\CLSID\{0494D0D9-F8E0-41ad-92A3-14154ECE70AC}
HKCR\CLSID\{0494D0D9-F8E0-41AD-92A3-14154ECE70AC}
HKCR\CLSID\{0494D0D9-F8E0-41AD-92A3-14154ECE70AC}
HKCR\CLSID\{0494D0D9-F8E0-41AD-92A3-14154ECE70AC}\InprocServer32
HKCR\CLSID\{0494D0D9-F8E0-41AD-92A3-14154ECE70AC}\InprocServer32#ThreadingModel
HKCR\CLSID\{0494D0D9-F8E0-41AD-92A3-14154ECE70AC}\Programmable
HKCR\CLSID\{0494D0D9-F8E0-41AD-92A3-14154ECE70AC}\TypeLib
HKLM\Software\Microsoft\Internet Explorer\Toolbar#{0494D0D9-F8E0-41ad-92A3-14154ECE70AC}
HKCR\TypeLib\{0494D0D0-F8E0-41ad-92A3-14154ECE70AC}
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser#{0494D0D9-F8E0-41AD-92A3-14154ECE70AC}
HKU\S-1-5-21-3787359352-1294632049-2088665962-1007\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser#{0494D0D9-F8E0-41AD-92A3-14154ECE70AC}
HKU\S-1-5-18\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser#{0494D0D9-F8E0-41AD-92A3-14154ECE70AC}
HKCR\CLSID\{0494D0D2-F8E0-41ad-92A3-14154ECE70AC}
HKCR\CLSID\{0494D0D2-F8E0-41ad-92A3-14154ECE70AC}\Control
HKCR\CLSID\{0494D0D2-F8E0-41ad-92A3-14154ECE70AC}\InprocServer32
HKCR\CLSID\{0494D0D2-F8E0-41ad-92A3-14154ECE70AC}\InprocServer32#ThreadingModel
HKCR\CLSID\{0494D0D2-F8E0-41ad-92A3-14154ECE70AC}\MiscStatus
HKCR\CLSID\{0494D0D2-F8E0-41ad-92A3-14154ECE70AC}\MiscStatus\1
HKCR\CLSID\{0494D0D2-F8E0-41ad-92A3-14154ECE70AC}\Programmable
HKCR\CLSID\{0494D0D2-F8E0-41ad-92A3-14154ECE70AC}\TypeLib
HKCR\CLSID\{0494D0D2-F8E0-41ad-92A3-14154ECE70AC}\Version
HKCR\CLSID\{0494D0D3-F8E0-41ad-92A3-14154ECE70AC}
HKCR\CLSID\{0494D0D3-F8E0-41ad-92A3-14154ECE70AC}\Control
HKCR\CLSID\{0494D0D3-F8E0-41ad-92A3-14154ECE70AC}\InprocServer32
HKCR\CLSID\{0494D0D3-F8E0-41ad-92A3-14154ECE70AC}\InprocServer32#ThreadingModel
HKCR\CLSID\{0494D0D3-F8E0-41ad-92A3-14154ECE70AC}\MiscStatus
HKCR\CLSID\{0494D0D3-F8E0-41ad-92A3-14154ECE70AC}\MiscStatus\1
HKCR\CLSID\{0494D0D3-F8E0-41ad-92A3-14154ECE70AC}\Programmable
HKCR\CLSID\{0494D0D3-F8E0-41ad-92A3-14154ECE70AC}\TypeLib
HKCR\CLSID\{0494D0D3-F8E0-41ad-92A3-14154ECE70AC}\Version
Spyware.WebSearch (WinTools/HuntBar)
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser#{339BB23F-A864-48C0-A59F-29EA915965EC}
HKU\S-1-5-21-3787359352-1294632049-2088665962-1007\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser#{339BB23F-A864-48C0-A59F-29EA915965EC}
HKU\S-1-5-18\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser#{339BB23F-A864-48C0-A59F-29EA915965EC}
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\URLSearchHooks#{8952A998-1E7E-4716-B23D-3DBE03910972}
HKU\S-1-5-21-3787359352-1294632049-2088665962-1007\Software\Microsoft\Internet Explorer\URLSearchHooks#{87766247-311C-43B4-8499-3D5FEC94A183}
HKU\S-1-5-18\Software\Microsoft\Internet Explorer\URLSearchHooks#{8952A998-1E7E-4716-B23D-3DBE03910972}
C:\Program Files\Common Files\WinTools
Adware.Tracking Cookie
C:\Documents and Settings\TJ C\Cookies\tj_c@gomyhit[2].txt
C:\Documents and Settings\TJ C\Cookies\[email protected][2].txt
C:\Documents and Settings\TJ C\Cookies\[email protected][2].txt
C:\Documents and Settings\TJ C\Cookies\[email protected][2].txt
C:\Documents and Settings\TJ C\Cookies\tj_c@gomyhit[5].txt
C:\Documents and Settings\TJ C\Cookies\tj_c@systemerrorfixer[1].txt
C:\Documents and Settings\AMY\Cookies\[email protected][1].txt
C:\Documents and Settings\AMY\Cookies\[email protected][1].txt
C:\Documents and Settings\AMY\Cookies\amy@247realmedia[2].txt
C:\Documents and Settings\AMY\Cookies\amy@2o7[2].txt
C:\Documents and Settings\AMY\Cookies\amy@a-1shz2prbmdj6wvny-1sez2pra2dj6wjnyondpcfow-1dj6x9ny-1seq-2-2.stats.esomniture[2].txt
C:\Documents and Settings\AMY\Cookies\[email protected][2].txt
C:\Documents and Settings\AMY\Cookies\[email protected][1].txt
C:\Documents and Settings\AMY\Cookies\[email protected][2].txt
C:\Documents and Settings\AMY\Cookies\amy@adbrite[1].txt
C:\Documents and Settings\AMY\Cookies\amy@adinterax[2].txt
C:\Documents and Settings\AMY\Cookies\amy@adknowledge[1].txt
C:\Documents and Settings\AMY\Cookies\[email protected][2].txt
C:\Documents and Settings\AMY\Cookies\[email protected][2].txt
C:\Documents and Settings\AMY\Cookies\[email protected][2].txt
C:\Documents and Settings\AMY\Cookies\amy@adrevolver[1].txt
C:\Documents and Settings\AMY\Cookies\[email protected][1].txt
C:\Documents and Settings\AMY\Cookies\[email protected][3].txt
C:\Documents and Settings\AMY\Cookies\[email protected][1].txt
C:\Documents and Settings\AMY\Cookies\[email protected][1].txt
C:\Documents and Settings\AMY\Cookies\[email protected][2].txt
C:\Documents and Settings\AMY\Cookies\[email protected][2].txt
C:\Documents and Settings\AMY\Cookies\[email protected][1].txt
C:\Documents and Settings\AMY\Cookies\[email protected][1].txt
C:\Documents and Settings\AMY\Cookies\[email protected][2].txt
C:\Documents and Settings\AMY\Cookies\[email protected][1].txt
C:\Documents and Settings\AMY\Cookies\[email protected][2].txt
C:\Documents and Settings\AMY\Cookies\[email protected][2].txt
C:\Documents and Settings\AMY\Cookies\[email protected][2].txt
C:\Documents and Settings\AMY\Cookies\[email protected][1].txt
C:\Documents and Settings\AMY\Cookies\[email protected][1].txt
C:\Documents and Settings\AMY\Cookies\[email protected][2].txt
C:\Documents and Settings\AMY\Cookies\[email protected][2].txt
C:\Documents and Settings\AMY\Cookies\amy@adtech[2].txt
C:\Documents and Settings\AMY\Cookies\[email protected][1].txt
C:\Documents and Settings\AMY\Cookies\[email protected][1].txt
C:\Documents and Settings\AMY\Cookies\amy@advertising[2].txt
C:\Documents and Settings\AMY\Cookies\amy@adviva[1].txt
C:\Documents and Settings\AMY\Cookies\[email protected][2].txt
C:\Documents and Settings\AMY\Cookies\[email protected][1].txt
C:\Documents and Settings\AMY\Cookies\[email protected][1].txt
C:\Documents and Settings\AMY\Cookies\[email protected][2].txt
C:\Documents and Settings\AMY\Cookies\[email protected][1].txt
C:\Documents and Settings\AMY\Cookies\amy@apmebf[1].txt
C:\Documents and Settings\AMY\Cookies\[email protected][1].txt
C:\Documents and Settings\AMY\Cookies\[email protected][1].txt
C:\Documents and Settings\AMY\Cookies\[email protected][1].txt
C:\Documents and Settings\AMY\Cookies\[email protected][1].txt
C:\Documents and Settings\AMY\Cookies\amy@atdmt[2].txt
C:\Documents and Settings\AMY\Cookies\[email protected][1].txt
C:\Documents and Settings\AMY\Cookies\[email protected][1].txt
C:\Documents and Settings\AMY\Cookies\amy@atwola[2].txt
C:\Documents and Settings\AMY\Cookies\amy@azjmp[2].txt
C:\Documents and Settings\AMY\Cookies\[email protected][1].txt
C:\Documents and Settings\AMY\Cookies\[email protected][2].txt
C:\Documents and Settings\AMY\Cookies\amy@belnk[2].txt
C:\Documents and Settings\AMY\Cookies\amy@bizrate[1].txt
C:\Documents and Settings\AMY\Cookies\amy@bluestreak[2].txt
C:\Documents and Settings\AMY\Cookies\[email protected][1].txt
C:\Documents and Settings\AMY\Cookies\[email protected][1].txt
C:\Documents and Settings\AMY\Cookies\amy@burstnet[1].txt
C:\Documents and Settings\AMY\Cookies\[email protected][2].txt
C:\Documents and Settings\AMY\Cookies\amy@casalemedia[2].txt
C:\Documents and Settings\AMY\Cookies\amy@cassava[1].txt
C:\Documents and Settings\AMY\Cookies\[email protected][2].txt
C:\Documents and Settings\AMY\Cookies\amy@clicksor[1].txt
C:\Documents and Settings\AMY\Cookies\amy@cliks[1].txt
C:\Documents and Settings\AMY\Cookies\[email protected][2].txt
C:\Documents and Settings\AMY\Cookies\amy@commission-junction[2].txt
C:\Documents and Settings\AMY\Cookies\[email protected][1].txt
C:\Documents and Settings\AMY\Cookies\[email protected][1].txt
C:\Documents and Settings\AMY\Cookies\[email protected][1].txt
C:\Documents and Settings\AMY\Cookies\[email protected][1].txt
C:\Documents and Settings\AMY\Cookies\amy@dealtime[1].txt
C:\Documents and Settings\AMY\Cookies\[email protected][1].txt
C:\Documents and Settings\AMY\Cookies\amy@doubleclick[2].txt
C:\Documents and Settings\AMY\Cookies\[email protected][2].txt
C:\Documents and Settings\AMY\Cookies\[email protected][1].txt
C:\Documents and Settings\AMY\Cookies\[email protected][2].txt
C:\Documents and Settings\AMY\Cookies\[email protected][2].txt
C:\Documents and Settings\AMY\Cookies\[email protected][1].txt
C:\Documents and Settings\AMY\Cookies\[email protected][2].txt
C:\Documents and Settings\AMY\Cookies\[email protected][2].txt
C:\Documents and Settings\AMY\Cookies\[email protected][2].txt
C:\Documents and Settings\AMY\Cookies\[email protected][2].txt
C:\Documents and Settings\AMY\Cookies\[email protected][2].txt
C:\Documents and Settings\AMY\Cookies\[email protected][2].txt
C:\Documents and Settings\AMY\Cookies\[email protected][2].txt
C:\Documents and Settings\AMY\Cookies\[email protected][1].txt
C:\Documents and Settings\AMY\Cookies\[email protected][2].txt
C:\Documents and Settings\AMY\Cookies\[email protected][2].txt
C:\Documents and Settings\AMY\Cookies\[email protected][2].txt
C:\Documents and Settings\AMY\Cookies\[email protected][2].txt
C:\Documents and Settings\AMY\Cookies\[email protected][1].txt
C:\Documents and Settings\AMY\Cookies\[email protected][2].txt
C:\Documents and Settings\AMY\Cookies\[email protected][1].txt
C:\Documents and Settings\AMY\Cookies\[email protected][2].txt
C:\Documents and Settings\AMY\Cookies\[email protected][2].txt
C:\Documents and Settings\AMY\Cookies\[email protected][2].txt
C:\Documents and Settings\AMY\Cookies\[email protected][1].txt
C:\Documents and Settings\AMY\Cookies\[email protected][2].txt
C:\Documents and Settings\AMY\Cookies\[email protected][2].txt
C:\Documents and Settings\AMY\Cookies\[email protected][2].txt
C:\Documents and Settings\AMY\Cookies\[email protected][1].txt
C:\Documents and Settings\AMY\Cookies\[email protected][2].txt
C:\Documents and Settings\AMY\Cookies\[email protected][2].txt
C:\Documents and Settings\AMY\Cookies\[email protected][2].txt
C:\Documents and Settings\AMY\Cookies\[email protected][2].txt
C:\Documents and Settings\AMY\Cookies\[email protected][2].txt
C:\Documents and Settings\AMY\Cookies\[email protected][2].txt
C:\Documents and Settings\AMY\Cookies\[email protected][2].txt
C:\Documents and Settings\AMY\Cookies\[email protected][1].txt
C:\Documents and Settings\AMY\Cookies\[email protected][1].txt
C:\Documents and Settings\AMY\Cookies\[email protected][2].txt
C:\Documents and Settings\AMY\Cookies\[email protected][2].txt
C:\Documents and Settings\AMY\Cookies\[email protected][1].txt
C:\Documents and Settings\AMY\Cookies\[email protected][1].txt
C:\Documents and Settings\AMY\Cookies\[email protected][2].txt
C:\Documents and Settings\AMY\Cookies\[email protected][2].txt
C:\Documents and Settings\AMY\Cookies\[email protected][2].txt
C:\Documents and Settings\AMY\Cookies\[email protected][2].txt
C:\Documents and Settings\AMY\Cookies\[email protected][1].txt
C:\Documents and Settings\AMY\Cookies\[email protected][2].txt
C:\Documents and Settings\AMY\Cookies\[email protected][1].txt
C:\Documents and Settings\AMY\Cookies\[email protected][1].txt
C:\Documents and Settings\AMY\Cookies\[email protected][2].txt
C:\Documents and Settings\AMY\Cookies\[email protected][2].txt
C:\Documents and Settings\AMY\Cookies\[email protected][2].txt
C:\Documents and Settings\AMY\Cookies\[email protected][2].txt
C:\Documents and Settings\AMY\Cookies\[email protected][2].txt
C:\Documents and Settings\AMY\Cookies\[email protected][2].txt
C:\Documents and Settings\AMY\Cookies\[email protected][2].txt
C:\Documents and Settings\AMY\Cookies\[email protected][1].txt
C:\Documents and Settings\AMY\Cookies\[email protected][2].txt
C:\Documents and Settings\AMY\Cookies\[email protected][2].txt
C:\Documents and Settings\AMY\Cookies\[email protected][2].txt
C:\Documents and Settings\AMY\Cookies\[email protected][2].txt
C:\Documents and Settings\AMY\Cookies\[email protected][2].txt
C:\Documents and Settings\AMY\Cookies\[email protected][1].txt
C:\Documents and Settings\AMY\Cookies\[email protected][2].txt
C:\Documents and Settings\AMY\Cookies\[email protected][2].txt
C:\Documents and Settings\AMY\Cookies\[email protected][1].txt
C:\Documents and Settings\AMY\Cookies\[email protected][2].txt
C:\Documents and Settings\AMY\Cookies\[email protected][2].txt
C:\Documents and Settings\AMY\Cookies\[email protected][1].txt
C:\Documents and Settings\AMY\Cookies\[email protected][1].txt
C:\Documents and Settings\AMY\Cookies\[email protected][2].txt
C:\Documents and Settings\AMY\Cookies\[email protected][2].txt
C:\Documents and Settings\AMY\Cookies\[email protected][1].txt
C:\Documents and Settings\AMY\Cookies\[email protected][2].txt
C:\Documents and Settings\AMY\Cookies\[email protected][1].txt
C:\Documents and Settings\AMY\Cookies\[email protected][1].txt
C:\Documents and Settings\AMY\Cookies\[email protected][2].txt
C:\Documents and Settings\AMY\Cookies\[email protected][1].txt
C:\Documents and Settings\AMY\Cookies\[email protected][1].txt
C:\Documents and Settings\AMY\Cookies\[email protected][2].txt
C:\Documents and Settings\AMY\Cookies\[email protected][2].txt
C:\Documents and Settings\AMY\Cookies\[email protected][2].txt
C:\Documents and Settings\AMY\Cookies\[email protected][1].txt
C:\Documents and Settings\AMY\Cookies\[email protected][1].txt
C:\Documents and Settings\AMY\Cookies\[email protected][2].txt
C:\Documents and Settings\AMY\Cookies\[email protected][1].txt
C:\Documents and Settings\AMY\Cookies\[email protected][2].txt
C:\Documents and Settings\AMY\Cookies\[email protected][2].txt
C:\Documents and Settings\AMY\Cookies\[email protected][1].txt
C:\Documents and Settings\AMY\Cookies\amy@fastclick[2].txt
C:\Documents and Settings\AMY\Cookies\amy@fortunecity[2].txt
C:\Documents and Settings\AMY\Cookies\amy@freefind[1].txt
C:\Documents and Settings\AMY\Cookies\amy@gamestracker[2].txt
C:\Documents and Settings\AMY\Cookies\[email protected][1].txt
C:\Documents and Settings\AMY\Cookies\[email protected][2].txt
C:\Documents and Settings\AMY\Cookies\[email protected][1].txt
C:\Documents and Settings\AMY\Cookies\amy@hitbox[1].txt
C:\Documents and Settings\AMY\Cookies\amy@hypertracker[1].txt
C:\Documents and Settings\AMY\Cookies\amy@indexstats[1].txt
C:\Documents and Settings\AMY\Cookies\amy@indextools[1].txt
C:\Documents and Settings\AMY\Cookies\amy@interclick[2].txt
C:\Documents and Settings\AMY\Cookies\[email protected][1].txt
C:\Documents and Settings\AMY\Cookies\amy@keywordmax[1].txt
C:\Documents and Settings\AMY\Cookies\amy@linksynergy[1].txt
C:\Documents and Settings\AMY\Cookies\[email protected][1].txt
C:\Documents and Settings\AMY\Cookies\amy@maxserving[2].txt
C:\Documents and Settings\AMY\Cookies\[email protected][1].txt
C:\Documents and Settings\AMY\Cookies\[email protected][3].txt
C:\Documents and Settings\AMY\Cookies\amy@mediaplex[1].txt
C:\Documents and Settings\AMY\Cookies\[email protected][1].txt
C:\Documents and Settings\AMY\Cookies\[email protected][1].txt
C:\Documents and Settings\AMY\Cookies\[email protected][1].txt
C:\Documents and Settings\AMY\Cookies\[email protected][1].txt
C:\Documents and Settings\AMY\Cookies\[email protected][1].txt
C:\Documents and Settings\AMY\Cookies\amy@netmediagroup[1].txt
C:\Documents and Settings\AMY\Cookies\amy@nextag[2].txt
C:\Documents and Settings\AMY\Cookies\[email protected][1].txt
C:\Documents and Settings\AMY\Cookies\amy@overture[2].txt
C:\Documents and Settings\AMY\Cookies\[email protected][1].txt
C:\Documents and Settings\AMY\Cookies\[email protected][1].txt
C:\Documents and Settings\AMY\Cookies\amy@popularscreensavers[2].txt
C:\Documents and Settings\AMY\Cookies\amy@pro-market[1].txt
C:\Documents and Settings\AMY\Cookies\amy@qitraffic[1].txt
C:\Documents and Settings\AMY\Cookies\amy@qksrv[2].txt
C:\Documents and Settings\AMY\Cookies\amy@questionmarket[2].txt
C:\Documents and Settings\AMY\Cookies\amy@realmedia[1].txt
C:\Documents and Settings\AMY\Cookies\amy@revenue[1].txt
C:\Documents and Settings\AMY\Cookies\amy@revsci[1].txt
C:\Documents and Settings\AMY\Cookies\[email protected][1].txt
C:\Documents and Settings\AMY\Cookies\amy@roiservice[2].txt
C:\Documents and Settings\AMY\Cookies\[email protected][1].txt
C:\Documents and Settings\AMY\Cookies\[email protected][1].txt
C:\Documents and Settings\AMY\Cookies\[email protected][2].txt
C:\Documents and Settings\AMY\Cookies\[email protected][2].txt
C:\Documents and Settings\AMY\Cookies\amy@serving-sys[2].txt
C:\Documents and Settings\AMY\Cookies\amy@spylog[2].txt
C:\Documents and Settings\AMY\Cookies\amy@starware[2].txt
C:\Documents and Settings\AMY\Cookies\[email protected][1].txt
C:\Documents and Settings\AMY\Cookies\amy@statcounter[2].txt
C:\Documents and Settings\AMY\Cookies\[email protected][1].txt
C:\Documents and Settings\AMY\Cookies\[email protected][1].txt
C:\Documents and Settings\AMY\Cookies\[email protected][3].txt
C:\Documents and Settings\AMY\Cookies\amy@stats[1].txt
C:\Documents and Settings\AMY\Cookies\amy@superstats[2].txt
C:\Documents and Settings\AMY\Cookies\amy@tacoda[2].txt
C:\Documents and Settings\AMY\Cookies\amy@thinkmedia[1].txt
C:\Documents and Settings\AMY\Cookies\[email protected][1].txt
C:\Documents and Settings\AMY\Cookies\[email protected][2].txt
C:\Documents and Settings\AMY\Cookies\[email protected][1].txt
C:\Documents and Settings\AMY\Cookies\[email protected][1].txt
C:\Documents and Settings\AMY\Cookies\[email protected][1].txt
C:\Documents and Settings\AMY\Cookies\[email protected][1].txt
C:\Documents and Settings\AMY\Cookies\amy@tracking[1].txt
C:\Documents and Settings\AMY\Cookies\amy@tradedoubler[2].txt
C:\Documents and Settings\AMY\Cookies\[email protected][1].txt
C:\Documents and Settings\AMY\Cookies\amy@trafficmp[2].txt
C:\Documents and Settings\AMY\Cookies\amy@tribalfusion[2].txt
C:\Documents and Settings\AMY\Cookies\[email protected][1].txt
C:\Documents and Settings\AMY\Cookies\[email protected][1].txt
C:\Documents and Settings\AMY\Cookies\amy@valueclick[1].txt
C:\Documents and Settings\AMY\Cookies\amy@valueclick[2].txt
C:\Documents and Settings\AMY\Cookies\[email protected][2].txt
C:\Documents and Settings\AMY\Cookies\[email protected][1].txt
C:\Documents and Settings\AMY\Cookies\[email protected][1].txt
C:\Documents and Settings\AMY\Cookies\[email protected][1].txt
C:\Documents and Settings\AMY\Cookies\[email protected][2].txt
C:\Documents and Settings\AMY\Cookies\[email protected][3].txt
C:\Documents and Settings\AMY\Cookies\[email protected][4].txt
C:\Documents and Settings\AMY\Cookies\[email protected][1].txt
C:\Documents and Settings\AMY\Cookies\[email protected][1].txt
C:\Documents and Settings\AMY\Cookies\amy@xiti[1].txt
C:\Documents and Settings\AMY\Cookies\[email protected][1].txt
C:\Documents and Settings\AMY\Cookies\amy@y-1shz2prbmdj6wvny-1sez2pra2dj6wfkiqic5ieog6dj6x9ny-1seq-2-2.stats.esomniture[2].txt
C:\Documents and Settings\AMY\Cookies\[email protected][1].txt
C:\Documents and Settings\AMY\Cookies\amy@zedo[1].txt
Browser Hijacker.Internet Explorer Settings Hijack
HKU\S-1-5-21-3787359352-1294632049-2088665962-1007\Software\Microsoft\Internet Explorer\Main#Start Page [ http://softwarerefer...=...6Ojg5&lid=2 ]
Trojan.ErrorSafe
HKCR\ESSPChck.ESSPChck
HKCR\ESSPChck.ESSPChck\CLSID
HKCR\ESSPChck.ESSPChck\CurVer
HKCR\ESSPChck.ESSPChck.1
HKCR\ESSPChck.ESSPChck.1\CLSID
HKCR\clsid\{647b8364-79e0-48e2-a4ca-233abada0c2d}
HKCR\clsid\{647b8364-79e0-48e2-a4ca-233abada0c2d}\Implemented Categories
HKCR\clsid\{647b8364-79e0-48e2-a4ca-233abada0c2d}\Implemented Categories\{7DD95801-9882-11CF-9FA9-00AA006C42C4}
HKCR\clsid\{647b8364-79e0-48e2-a4ca-233abada0c2d}\Implemented Categories\{7DD95802-9882-11CF-9FA9-00AA006C42C4}
HKCR\clsid\{647b8364-79e0-48e2-a4ca-233abada0c2d}\InprocServer32
HKCR\clsid\{647b8364-79e0-48e2-a4ca-233abada0c2d}\InprocServer32#ThreadingModel
HKCR\clsid\{647b8364-79e0-48e2-a4ca-233abada0c2d}\ProgID
HKCR\clsid\{647b8364-79e0-48e2-a4ca-233abada0c2d}\Programmable
HKCR\clsid\{647b8364-79e0-48e2-a4ca-233abada0c2d}\TypeLib
HKCR\clsid\{647b8364-79e0-48e2-a4ca-233abada0c2d}\VersionIndependentProgID
HKCR\typelib\{1b197c22-561f-455f-8511-35b1a45c5c9f}
HKCR\typelib\{1b197c22-561f-455f-8511-35b1a45c5c9f}\1.0
HKCR\typelib\{1b197c22-561f-455f-8511-35b1a45c5c9f}\1.0\0
HKCR\typelib\{1b197c22-561f-455f-8511-35b1a45c5c9f}\1.0\0\win32
HKCR\typelib\{1b197c22-561f-455f-8511-35b1a45c5c9f}\1.0\FLAGS
HKCR\typelib\{1b197c22-561f-455f-8511-35b1a45c5c9f}\1.0\HELPDIR
Desktop Hijacker.AboutYourPrivacy
C:\WINDOWS\privacy_danger\images\capt.gif
C:\WINDOWS\privacy_danger\images\danger.jpg
C:\WINDOWS\privacy_danger\images\down.gif
C:\WINDOWS\privacy_danger\images\spacer.gif
C:\WINDOWS\privacy_danger\images
C:\WINDOWS\privacy_danger\index.htm
C:\WINDOWS\privacy_danger
C:\Documents and Settings\TJ C\Desktop\Error Cleaner.url
C:\Documents and Settings\TJ C\Desktop\Privacy Protector.url
C:\Documents and Settings\TJ C\Desktop\Spyware&Malware Protection.url
C:\Documents and Settings\TJ C\Favorites\Error Cleaner.url
C:\Documents and Settings\TJ C\Favorites\Privacy Protector.url
C:\Documents and Settings\TJ C\Favorites\Spyware&Malware Protection.url
Adware.GAIN/Gator
C:\WINDOWS\TEMP\ADWARE\FSG.EXE
***************HIJACK THIS LOG*******************
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 17:09:06, on 31/01/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16574)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\PROGRA~1\Grisoft\AVG7\avgamsvr.exe
C:\WINDOWS\Explorer.EXE
C:\PROGRA~1\Grisoft\AVG7\avgupsvc.exe
C:\PROGRA~1\Grisoft\AVG7\avgemc.exe
C:\Program Files\IVT Corporation\BlueSoleil\BTNtService.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\CA\SharedComponents\CA_LIC\LogWatNT.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe
C:\Program Files\Adobe\Photoshop Album Starter Edition\3.2\Apps\apdproxy.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\PROGRA~1\BLUEYO~1\SMARTB~1\MotiveSB.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
C:\PROGRA~1\Grisoft\AVG7\avgcc.exe
C:\Program Files\Messenger\msmsgs.exe
C:\WINDOWS\system32\ctfmon.exe
C:\WINDOWS\system32\wscntfy.exe
C:\Program Files\Windows Media Player\WMPNSCFG.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\IVT Corporation\BlueSoleil\BlueSoleil.exe
C:\Program Files\Microsoft Office\OFFICE11\ONENOTEM.EXE
C:\Program Files\GameSpot\GameSpotDownloadManager_Win32.exe
C:\Program Files\blueyonder IST\bin\mpbtn.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\internet explorer\iexplore.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://softwarerefer...=...6Ojg5&lid=2
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://www.aldi.com/
R3 - URLSearchHook: (no name) - {87766247-311C-43B4-8499-3D5FEC94A183} - (no file)
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: MorpheusToolbar BHO - {3F3714A1-89A4-46be-8AF3-D0C9D1FB03F9} - C:\Program Files\MorpheusBar\bar\2.bin\MORPHBAR.DLL
O2 - BHO: SXG Advisor - {44C762DC-7ECB-4D32-8A74-117CB882F10B} - C:\WINDOWS\dpvtporpxn.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar3.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.0.1121.2472\swg.dll
O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O2 - BHO: (no name) - {D73F49B1-B51B-4d32-A3B7-BD04B8342F53} - C:\Program Files\MorpheusBar\SrchAstt\2.bin\MBSRCAS.DLL
O2 - BHO: EpsonToolBandKicker Class - {E99421FB-68DD-40F0-B4AC-B7027CAE2F1A} - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll
O3 - Toolbar: My &Search Bar - {0494D0D9-F8E0-41ad-92A3-14154ECE70AC} - C:\Program Files\MyWay\myBar\1.bin\MYBAR.DLL (file missing)
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: Morpheus Toolbar - {3F3714A9-89A4-46be-8AF3-D0C9D1FB03F9} - C:\Program Files\MorpheusBar\bar\2.bin\MORPHBAR.DLL
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar3.dll
O3 - Toolbar: EPSON Web-To-Page - {EE5D279F-081B-4404-994D-C6B60AAEBA6D} - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll
O3 - Toolbar: elfwgps - {339074ED-B124-4693-AC31-6BCC08B76030} - C:\WINDOWS\elfwgps.dll
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe"
O4 - HKLM\..\Run: [Adobe Photo Downloader] "C:\Program Files\Adobe\Photoshop Album Starter Edition\3.2\Apps\apdproxy.exe"
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [pbmini] C:\Program Files\PCAST\PodcastbarMini\PodcastBar.exe -hide
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [Motive SmartBridge] C:\PROGRA~1\BLUEYO~1\SMARTB~1\MotiveSB.exe
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKLM\..\Run: [AVG7_CC] C:\PROGRA~1\Grisoft\AVG7\avgcc.exe /STARTUP
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe
O4 - HKUS\S-1-5-19\..\Run: [AVG7_Run] C:\PROGRA~1\Grisoft\AVG7\avgw.exe /RUNONCE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [AVG7_Run] C:\PROGRA~1\Grisoft\AVG7\avgw.exe /RUNONCE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Startup: GameSpot Download Manager.lnk = C:\Program Files\GameSpot\GameSpotDownloadManager_Win32.exe
O4 - Global Startup: BlueSoleil.lnk = ?
O4 - Global Startup: blueyonder Instant Support Tool.lnk = C:\Program Files\blueyonder IST\bin\matcli.exe
O4 - Global Startup: Microsoft Office OneNote 2003 Quick Launch.lnk = C:\Program Files\Microsoft Office\OFFICE11\ONENOTEM.EXE
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\npjpi160_03.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\npjpi160_03.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~4\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {B205A35E-1FC4-4CE3-818B-899DBBB3388C} - C:\Program Files\Common Files\Microsoft Shared\Encarta Search Bar\ENCSBAR.DLL
O9 - Extra button: PartyPoker.com - {B7FE5D70-9AA2-40F1-9C6B-12A255F085E1} - C:\Program Files\PartyGaming\PartyPoker\RunApp.exe (file missing)
O9 - Extra 'Tools' menuitem: PartyPoker.com - {B7FE5D70-9AA2-40F1-9C6B-12A255F085E1} - C:\Program Files\PartyGaming\PartyPoker\RunApp.exe (file missing)
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra button: 24Poker Poker - {FFE47880-6921-4586-9343-2726B1524F97} - C:\Program Files\24PokerMPP\MPPoker.exe
O14 - IERESET.INF: START_PAGE_URL=http://www.aldi.com
O16 - DPF: {3C38DEE8-BE1A-4DEC-B232-2C78706CC7EA} (GUpdate Class) - http://ps.itv.mop.co...0.10-signed.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://v5.windowsupd...b?1097053507402
O16 - DPF: {87CCFDB0-C4BE-4BC2-A78C-9EAA7CF96667} - http://ps.itv.mop.co...10_20080809.cab
O16 - DPF: {FEE1002D-90A5-4A5D-AABE-01803FFBCF7A} - http://ps.itv.mop.co...0.92_signed.cab
O20 - Winlogon Notify: req - C:\WINDOWS\system32\req.dat (file missing)
O20 - Winlogon Notify: wmsmain - C:\WINDOWS\assembly\temp\wmsmain.dll (file missing)
O21 - SSODL: bqxomdo - {F5585ED3-CC39-4F93-8AE6-691065890B3F} - C:\WINDOWS\bqxomdo.dll
O21 - SSODL: aswmklt - {F2698255-A812-42D2-B2AF-81F6C880B0D6} - C:\WINDOWS\aswmklt.dll
O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgamsvr.exe
O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgupsvc.exe
O23 - Service: AVG E-mail Scanner (AVGEMS) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgemc.exe
O23 - Service: BlueSoleil Hid Service - Unknown owner - C:\Program Files\IVT Corporation\BlueSoleil\BTNtService.exe
O23 - Service: CA License Client (CA_LIC_CLNT) - Computer Associates - C:\Program Files\CA\SharedComponents\CA_LIC\lic98rmt.exe
O23 - Service: CA License Server (CA_LIC_SRVR) - Computer Associates - C:\Program Files\CA\SharedComponents\CA_LIC\lic98rmtd.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Event Log Watch (LogWatch) - Computer Associates - C:\Program Files\CA\SharedComponents\CA_LIC\LogWatNT.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: X10 Device Network Service (x10nets) - X10 - C:\PROGRA~1\COMMON~1\X10\Common\x10nets.exe
O24 - Desktop Component 0: Privacy Protection - file:///C:\WINDOWS\privacy_danger\index.htm
--
End of file - 10368 bytes
Any ideas on how I can eradicate this for good?
Thanks