WE'RE SURE THAT YOU'LL LOVE US!

Hey there! :wub: Looks like you're enjoying the discussion, but you're not signed up for an account. When you create an account, we remember exactly what you've read, so you always come right back where you left off. You also get notifications, here and via email, whenever new posts are made. You can like posts to share the love. Join 93112 other members! Anybody can ask, anybody can answer. Consistently helpful members may be invited to become staff. Here's how it works. Virus cleanup? Start here -> Malware Removal Forum.

Try What the Tech -- It's free!

Javascript Disabled Detected

You currently have javascript disabled. Several functions may not work. Please re-enable javascript to access full functionality.

I Suspect I'm Infected

Started by Marc1964 , Mar 22 2007 06:38 AM

Please log in to reply

7 replies to this topic

#1 Marc1964

New Member

New Member
5 posts

Posted 22 March 2007 - 06:38 AM

Logfile of HijackThis v1.99.1
Scan saved at 8:17:39 AM, on 3/22/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\eHome\ehRecvr.exe
C:\WINDOWS\eHome\ehSched.exe
c:\program files\mcafee.com\agent\mcdetect.exe
c:\PROGRA~1\mcafee.com\vso\mcshield.exe
c:\PROGRA~1\mcafee.com\agent\mctskshd.exe
C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\PROGRA~1\McAfee.com\PERSON~1\MpfService.exe
C:\Program Files\MySQL\MySQL Server 5.0\bin\mysqld-nt.exe
c:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
C:\WINDOWS\system32\dllhost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\ehome\ehtray.exe
C:\WINDOWS\system32\hkcmd.exe
C:\WINDOWS\system32\igfxpers.exe
C:\Program Files\Java\j2re1.4.2_03\bin\jusched.exe
C:\Program Files\Dell\Media Experience\DMXLauncher.exe
C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe
C:\Program Files\Java\j2re1.4.2_03\bin\jucheck.exe
C:\WINDOWS\eHome\ehmsas.exe
C:\Program Files\McAfee.com\VSO\oasclnt.exe
C:\PROGRA~1\mcafee.com\agent\mcagent.exe
C:\WINDOWS\System32\DLA\DLACTRLW.EXE
C:\Program Files\McAfee.com\VSO\mcvsshld.exe
C:\WINDOWS\System32\svchost.exe
C:\PROGRA~1\McAfee.com\PERSON~1\MpfTray.exe
C:\Program Files\Corel\Corel Photo Album 6\MediaDetect.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Dell Support\DSAgnt.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\MSN Messenger\MsnMsgr.Exe
C:\PROGRA~1\McAfee.com\PERSON~1\MpfAgent.exe
C:\Program Files\WinZip\WZQKPICK.EXE
C:\Program Files\iPod\bin\iPodService.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\MSN Messenger\usnsvc.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Documents and Settings\Marc\Desktop\cwshredder.exe
C:\WINDOWS\system32\notepad.exe
C:\Program Files\HijackThis\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.dell.ca/myway
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://mysearch.mywa...idebar.jsp?p=DC
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.ca/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.dell.ca/myway
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.dell.ca/myway
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = "C:\Program Files\Outlook Express\msimn.exe"
R3 - URLSearchHook: (no name) - {4D25F926-B9FE-4682-BF72-8AB8210D6D75} - C:\Program Files\MyWaySA\SrchAsDe\deSrcAs.dll
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {4D25F921-B9FE-4682-BF72-8AB8210D6D75} - C:\Program Files\MyWaySA\SrchAsDe\deSrcAs.dll
O2 - BHO: DriveLetterAccess - {5CA3D70E-1895-11CF-8E15-001234567890} - C:\WINDOWS\System32\DLA\DLASHX_W.DLL
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O3 - Toolbar: McAfee VirusScan - {BA52B914-B692-46c4-B683-905236F6F655} - c:\progra~1\mcafee.com\vso\mcvsshl.dll
O4 - HKLM\..\Run: [ehTray] C:\WINDOWS\ehome\ehtray.exe
O4 - HKLM\..\Run: [igfxtray] C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [igfxhkcmd] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [igfxpers] C:\WINDOWS\system32\igfxpers.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\j2re1.4.2_03\bin\jusched.exe
O4 - HKLM\..\Run: [DMXLauncher] C:\Program Files\Dell\Media Experience\DMXLauncher.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [ISUSPM Startup] "C:\Program Files\Common Files\InstallShield\UpdateService\isuspm.exe" -startup
O4 - HKLM\..\Run: [ISUSScheduler] "C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe" -start
O4 - HKLM\..\Run: [VSOCheckTask] "C:\PROGRA~1\McAfee.com\VSO\mcmnhdlr.exe" /checktask
O4 - HKLM\..\Run: [OASClnt] C:\Program Files\McAfee.com\VSO\oasclnt.exe
O4 - HKLM\..\Run: [MCAgentExe] c:\PROGRA~1\mcafee.com\agent\mcagent.exe
O4 - HKLM\..\Run: [MCUpdateExe] c:\PROGRA~1\mcafee.com\agent\mcupdate.exe
O4 - HKLM\..\Run: [DLA] C:\WINDOWS\System32\DLA\DLACTRLW.EXE
O4 - HKLM\..\Run: [VirusScan Online] C:\Program Files\McAfee.com\VSO\mcvsshld.exe
O4 - HKLM\..\Run: [MPFExe] C:\PROGRA~1\McAfee.com\PERSON~1\MpfTray.exe
O4 - HKLM\..\Run: [Corel Photo Downloader] C:\Program Files\Corel\Corel Photo Album 6\MediaDetect.exe
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [MSKDetectorExe] C:\Program Files\McAfee\SpamKiller\MSKDetct.exe /uninstall
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKCU\..\Run: [DellSupport] "C:\Program Files\Dell Support\DSAgnt.exe" /startup
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
O4 - Global Startup: Adobe Gamma Loader.exe.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: WinZip Quick Pick.lnk = C:\Program Files\WinZip\WZQKPICK.EXE
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~4\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\j2re1.4.2_03\bin\npjpi142_03.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\j2re1.4.2_03\bin\npjpi142_03.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~4\OFFICE11\REFIEBAR.DLL
O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\system32\Shdocvw.dll
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: ms-help - {314111C7-A502-11D2-BBCA-00C04F8EC294} - C:\Program Files\Common Files\Microsoft Shared\Help\hxds.dll
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O20 - Winlogon Notify: igfxcui - C:\WINDOWS\SYSTEM32\igfxdev.dll
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
O23 - Service: iPod Service - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: McAfee WSC Integration (McDetect.exe) - McAfee, Inc - c:\program files\mcafee.com\agent\mcdetect.exe
O23 - Service: McAfee.com McShield (McShield) - McAfee Inc. - c:\PROGRA~1\mcafee.com\vso\mcshield.exe
O23 - Service: McAfee Task Scheduler (McTskshd.exe) - McAfee, Inc - c:\PROGRA~1\mcafee.com\agent\mctskshd.exe
O23 - Service: McAfee SecurityCenter Update Manager (mcupdmgr.exe) - McAfee, Inc - C:\PROGRA~1\McAfee.com\Agent\mcupdmgr.exe
O23 - Service: McAfee Personal Firewall Service (MpfService) - McAfee Corporation - C:\PROGRA~1\McAfee.com\PERSON~1\MpfService.exe
O23 - Service: SQL Server (SQLEXPRESS) (MSSQL$SQLEXPRESS) - Unknown owner - c:\Program Files\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe" -sSQLEXPRESS (file missing)
O23 - Service: MySQL - Unknown owner - C:\Program.exe (file missing)
O23 - Service: Intel NCS NetService (NetSvc) - Intel® Corporation - C:\Program Files\Intel\PROSetWired\NCS\Sync\NetSvc.exe

Advertisements

Register to Remove

#2 Markka

Advanced Member

Banned
784 posts

Posted 22 March 2007 - 07:09 AM

Hi and welcome to the forums.

I'm Markka and I will be helping you with your malware issues. I check your HijackThis log. Right now I'm MRU Undergrad, everything that I post to you must be checked by teachers of Malware Removal University. Please be patient.

#3 Marc1964

New Member

New Member
5 posts

Posted 22 March 2007 - 07:43 AM

For sure !

#4 Markka

Advanced Member

Banned
784 posts

Posted 22 March 2007 - 08:36 AM

Go to control panel -> add/remove programs -> delete these:
MyWaySA - or similar
j2re1.4.2_03

Open HijackThis, Click Do a system scan only, checkmark these and press fix checked:

R3 - URLSearchHook: (no name) - {4D25F926-B9FE-4682-BF72-8AB8210D6D75} - C:\Program Files\MyWaySA\SrchAsDe\deSrcAs.dll
O2 - BHO: (no name) - {4D25F921-B9FE-4682-BF72-8AB8210D6D75} - C:\Program Files\MyWaySA\SrchAsDe\deSrcAs.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)

Your java is out of date. Update your java.

Instruction:

-> Please download from here a new java and install it.
-> The latest java version is: Java Runtime Environment (JRE) 6.0

Please download ATF-cleaner and save it to your desktop.

Double-click ATF-Cleaner.exe to run the program.
Under Main choose: Select All
Click the Empty Selected button.

If you use Firefox browser:
Click Firefox at the top and choose: Select All
Click the Empty Selected button.
NOTE: If you would like to keep your saved passwords, please click No at the prompt.

If you use Opera browser:
Click Opera at the top and choose: Select All
Click the Empty Selected button.
NOTE: If you would like to keep your saved passwords, please click No at the prompt.
Click Exit on the Main menu to close the program.

Please download AVG Anti-Spyware to your Desktop or to your usual Download Folder.
http://www.ewido.net/en/download/

Install AVG Anti-Spyware by double clicking the installer.
Follow the prompts. Make sure that Launch AVG Anti-Spyware is checked.
On the main screen under Your Computer's security.
- Click on Change state next to Resident shield. It should now change to inactive.
- Click on Change state next to Automatic updates. It should now change to inactive.
- Next to Last Update, click on Update now. (You will need an active internet connection to perform this)
- Wait until you see the Update succesfull message.
Right-click the AVG Anti-Spyware Tray Icon and uncheck Start with Windows.
Right-click the AVG Anti-Spyware Tray Icon and select Exit. Confirm by clicking Yes.

If you are having problems with the updater, you can use this link to manually update ewido.
AVG Anti-Spyware manual updates.
Download the Full database to your Desktop or to your usual Download Folder and install it by double clicking the file. Make sure that AVG Anti-Spyware is closed before installing the update.

Please then reboot your computer in Safe Mode by doing the following:

Restart your computer
After hearing your computer beep once during startup, but before the Windows icon appears, tap the F8 key continually;
Instead of Windows loading as normal, the Advanced Options Menu should appear;
Select the first option, to run Windows in Safe Mode, then press Enter.
Choose your usual account.

Delete this folder: (if found)
C:\Program Files\MyWaySA

Close ALL open Windows / Programs / Folders. Please start AVG Anti-Spyware and run a full scan.

Click on Scanner on the toolbar.
Click on the Settings tab.
- Under How to act?
  - Click on Recommended Action and choose Quarantine from the popup menu.
- Under How to scan?
  - All checkboxes should be ticked.
- Under Possibly unwanted software:
  - All checkboxes should be ticked.
- Under Reports:
  - Select Automatically generate report after every scan and uncheck Only if threats were found.
- Under What to scan?
  - Select Scan every file.
Click on the Scan tab.
Click on Complete System Scan to start the scan process.
Let the program scan the machine.
When the scan has finished, follow the instructions below.
IMPORTANT : Don't click on the "Save Scan Report" button before you did hit the "Apply all Actions" button.
- Make sure that Set all elements to: shows Quarantine (1), if not click on the link and choose Quarantine from the popup menu. (2)
- At the bottom of the window click on the Apply all Actions button. (3)
When done, click the Save Scan Report button. (4)
- Click the Save Report as button.
- Save the report to your Desktop.
Right-click the AVG Anti-Spyware Tray Icon and select Exit. Confirm by clicking Yes.

Reboot in Normal Mode.

Post a fresh HijackThis log and AVG's log

#5 Marc1964

New Member

New Member
5 posts

Posted 22 March 2007 - 11:40 AM

HiJack This Log:

Logfile of HijackThis v1.99.1
Scan saved at 1:35:22 PM, on 3/22/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\WINDOWS\eHome\ehRecvr.exe
C:\WINDOWS\eHome\ehSched.exe
c:\program files\mcafee.com\agent\mcdetect.exe
c:\PROGRA~1\mcafee.com\vso\mcshield.exe
c:\PROGRA~1\mcafee.com\agent\mctskshd.exe
C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\PROGRA~1\McAfee.com\PERSON~1\MpfService.exe
C:\Program Files\MySQL\MySQL Server 5.0\bin\mysqld-nt.exe
c:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
C:\WINDOWS\system32\dllhost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\ehome\ehtray.exe
C:\WINDOWS\eHome\ehmsas.exe
C:\WINDOWS\system32\hkcmd.exe
C:\WINDOWS\system32\igfxpers.exe
C:\Program Files\Java\j2re1.4.2_03\bin\jusched.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Dell\Media Experience\DMXLauncher.exe
C:\Program Files\Java\j2re1.4.2_03\bin\jucheck.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe
C:\Program Files\McAfee.com\VSO\oasclnt.exe
C:\PROGRA~1\mcafee.com\agent\mcagent.exe
C:\WINDOWS\System32\DLA\DLACTRLW.EXE
c:\program files\mcafee.com\vso\mcvsshld.exe
c:\progra~1\mcafee.com\vso\mcvsescn.exe
C:\PROGRA~1\McAfee.com\PERSON~1\MpfTray.exe
C:\Program Files\Corel\Corel Photo Album 6\MediaDetect.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\PROGRA~1\McAfee.com\PERSON~1\MpfAgent.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
C:\Program Files\Dell Support\DSAgnt.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\MSN Messenger\MsnMsgr.Exe
C:\Program Files\WinZip\WZQKPICK.EXE
C:\Program Files\Mozilla Firefox\firefox.exe
c:\progra~1\mcafee.com\vso\mcvsftsn.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\MSN Messenger\usnsvc.exe
C:\Program Files\Microsoft Office\OFFICE11\OUTLOOK.EXE
C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE
C:\Program Files\HijackThis\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.dell.ca/myway
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.ca/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.dell.ca/myway
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.dell.ca/myway
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = "C:\Program Files\Outlook Express\msimn.exe"
O3 - Toolbar: McAfee VirusScan - {BA52B914-B692-46c4-B683-905236F6F655} - c:\progra~1\mcafee.com\vso\mcvsshl.dll
O4 - HKLM\..\Run: [ehTray] C:\WINDOWS\ehome\ehtray.exe
O4 - HKLM\..\Run: [igfxtray] C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [igfxhkcmd] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [igfxpers] C:\WINDOWS\system32\igfxpers.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\j2re1.4.2_03\bin\jusched.exe
O4 - HKLM\..\Run: [DMXLauncher] C:\Program Files\Dell\Media Experience\DMXLauncher.exe
O4 - HKLM\..\Run: [ISUSPM Startup] "C:\Program Files\Common Files\InstallShield\UpdateService\isuspm.exe" -startup
O4 - HKLM\..\Run: [ISUSScheduler] "C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe" -start
O4 - HKLM\..\Run: [VSOCheckTask] "C:\PROGRA~1\McAfee.com\VSO\mcmnhdlr.exe" /checktask
O4 - HKLM\..\Run: [OASClnt] C:\Program Files\McAfee.com\VSO\oasclnt.exe
O4 - HKLM\..\Run: [MCAgentExe] c:\PROGRA~1\mcafee.com\agent\mcagent.exe
O4 - HKLM\..\Run: [MCUpdateExe] c:\PROGRA~1\mcafee.com\agent\mcupdate.exe
O4 - HKLM\..\Run: [DLA] C:\WINDOWS\System32\DLA\DLACTRLW.EXE
O4 - HKLM\..\Run: [VirusScan Online] C:\Program Files\McAfee.com\VSO\mcvsshld.exe
O4 - HKLM\..\Run: [MPFExe] C:\PROGRA~1\McAfee.com\PERSON~1\MpfTray.exe
O4 - HKLM\..\Run: [Corel Photo Downloader] C:\Program Files\Corel\Corel Photo Album 6\MediaDetect.exe
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [MSKDetectorExe] C:\Program Files\McAfee\SpamKiller\MSKDetct.exe /uninstall
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKCU\..\Run: [DellSupport] "C:\Program Files\Dell Support\DSAgnt.exe" /startup
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
O4 - Global Startup: Adobe Gamma Loader.exe.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: WinZip Quick Pick.lnk = C:\Program Files\WinZip\WZQKPICK.EXE
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~4\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\j2re1.4.2_03\bin\npjpi142_03.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\j2re1.4.2_03\bin\npjpi142_03.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~4\OFFICE11\REFIEBAR.DLL
O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\system32\Shdocvw.dll
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: ms-help - {314111C7-A502-11D2-BBCA-00C04F8EC294} - C:\Program Files\Common Files\Microsoft Shared\Help\hxds.dll
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O20 - Winlogon Notify: igfxcui - C:\WINDOWS\SYSTEM32\igfxdev.dll
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
O23 - Service: AVG Anti-Spyware Guard - Anti-Malware Development a.s. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: iPod Service - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: McAfee WSC Integration (McDetect.exe) - McAfee, Inc - c:\program files\mcafee.com\agent\mcdetect.exe
O23 - Service: McAfee.com McShield (McShield) - McAfee Inc. - c:\PROGRA~1\mcafee.com\vso\mcshield.exe
O23 - Service: McAfee Task Scheduler (McTskshd.exe) - McAfee, Inc - c:\PROGRA~1\mcafee.com\agent\mctskshd.exe
O23 - Service: McAfee SecurityCenter Update Manager (mcupdmgr.exe) - McAfee, Inc - C:\PROGRA~1\McAfee.com\Agent\mcupdmgr.exe
O23 - Service: McAfee Personal Firewall Service (MpfService) - McAfee Corporation - C:\PROGRA~1\McAfee.com\PERSON~1\MpfService.exe
O23 - Service: SQL Server (SQLEXPRESS) (MSSQL$SQLEXPRESS) - Unknown owner - c:\Program Files\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe" -sSQLEXPRESS (file missing)
O23 - Service: MySQL - Unknown owner - C:\Program.exe (file missing)
O23 - Service: Intel NCS NetService (NetSvc) - Intel® Corporation - C:\Program Files\Intel\PROSetWired\NCS\Sync\NetSvc.exe

#6 Marc1964

New Member

New Member
5 posts

Posted 22 March 2007 - 11:41 AM

--------------------------------------------------------- AVG Anti-Spyware - Scan Report --------------------------------------------------------- + Created at: 1:15:15 PM 3/22/2007 + Scan result: C:\System Volume Information\_restore{129201FA-B0AC-49B3-96B2-DEB8B91E727B}\RP72\A0007785.dll -> Adware.WurldMedia : Ignored. C:\Program Files\DIGStream\digstream.exe -> Not-A-Virus.Downloader.Win32.DigStream : Ignored. :mozilla.201:C:\Documents and Settings\Hillary\Application Data\Mozilla\Firefox\Profiles\u40xl1vf.default\cookies.txt -> TrackingCookie.247realmedia : Cleaned. :mozilla.202:C:\Documents and Settings\Hillary\Application Data\Mozilla\Firefox\Profiles\u40xl1vf.default\cookies.txt -> TrackingCookie.247realmedia : Cleaned. :mozilla.203:C:\Documents and Settings\Hillary\Application Data\Mozilla\Firefox\Profiles\u40xl1vf.default\cookies.txt -> TrackingCookie.247realmedia : Cleaned. :mozilla.49:C:\Documents and Settings\Marc\Application Data\Mozilla\Firefox\Profiles\tfwqsgw8.default\cookies.txt -> TrackingCookie.247realmedia : Cleaned. :mozilla.50:C:\Documents and Settings\Marc\Application Data\Mozilla\Firefox\Profiles\tfwqsgw8.default\cookies.txt -> TrackingCookie.247realmedia : Cleaned. :mozilla.51:C:\Documents and Settings\Marc\Application Data\Mozilla\Firefox\Profiles\tfwqsgw8.default\cookies.txt -> TrackingCookie.247realmedia : Cleaned. :mozilla.140:C:\Documents and Settings\Hillary\Application Data\Mozilla\Firefox\Profiles\u40xl1vf.default\cookies.txt -> TrackingCookie.2o7 : Cleaned. :mozilla.141:C:\Documents and Settings\Hillary\Application Data\Mozilla\Firefox\Profiles\u40xl1vf.default\cookies.txt -> TrackingCookie.2o7 : Cleaned. :mozilla.142:C:\Documents and Settings\Hillary\Application Data\Mozilla\Firefox\Profiles\u40xl1vf.default\cookies.txt -> TrackingCookie.2o7 : Cleaned. :mozilla.143:C:\Documents and Settings\Hillary\Application Data\Mozilla\Firefox\Profiles\u40xl1vf.default\cookies.txt -> TrackingCookie.2o7 : Cleaned. :mozilla.144:C:\Documents and Settings\Hillary\Application Data\Mozilla\Firefox\Profiles\u40xl1vf.default\cookies.txt -> TrackingCookie.2o7 : Cleaned. :mozilla.145:C:\Documents and Settings\Hillary\Application Data\Mozilla\Firefox\Profiles\u40xl1vf.default\cookies.txt -> TrackingCookie.2o7 : Cleaned. :mozilla.146:C:\Documents and Settings\Hillary\Application Data\Mozilla\Firefox\Profiles\u40xl1vf.default\cookies.txt -> TrackingCookie.2o7 : Cleaned. :mozilla.147:C:\Documents and Settings\Hillary\Application Data\Mozilla\Firefox\Profiles\u40xl1vf.default\cookies.txt -> TrackingCookie.2o7 : Cleaned. :mozilla.148:C:\Documents and Settings\Hillary\Application Data\Mozilla\Firefox\Profiles\u40xl1vf.default\cookies.txt -> TrackingCookie.2o7 : Cleaned. :mozilla.14:C:\Documents and Settings\Marc\Application Data\Mozilla\Firefox\Profiles\tfwqsgw8.default\cookies.txt -> TrackingCookie.2o7 : Cleaned. :mozilla.154:C:\Documents and Settings\Hillary\Application Data\Mozilla\Firefox\Profiles\u40xl1vf.default\cookies.txt -> TrackingCookie.2o7 : Cleaned. :mozilla.155:C:\Documents and Settings\Hillary\Application Data\Mozilla\Firefox\Profiles\u40xl1vf.default\cookies.txt -> TrackingCookie.2o7 : Cleaned. :mozilla.158:C:\Documents and Settings\Hillary\Application Data\Mozilla\Firefox\Profiles\u40xl1vf.default\cookies.txt -> TrackingCookie.2o7 : Cleaned. :mozilla.15:C:\Documents and Settings\Marc\Application Data\Mozilla\Firefox\Profiles\tfwqsgw8.default\cookies.txt -> TrackingCookie.2o7 : Cleaned. :mozilla.240:C:\Documents and Settings\Hillary\Application Data\Mozilla\Firefox\Profiles\u40xl1vf.default\cookies.txt -> TrackingCookie.2o7 : Cleaned. :mozilla.270:C:\Documents and Settings\Hillary\Application Data\Mozilla\Firefox\Profiles\u40xl1vf.default\cookies.txt -> TrackingCookie.2o7 : Cleaned. :mozilla.283:C:\Documents and Settings\Hillary\Application Data\Mozilla\Firefox\Profiles\u40xl1vf.default\cookies.txt -> TrackingCookie.2o7 : Cleaned. :mozilla.65:C:\Documents and Settings\Marc\Application Data\Mozilla\Firefox\Profiles\tfwqsgw8.default\cookies.txt -> TrackingCookie.2o7 : Cleaned. :mozilla.72:C:\C\Documents and Settings\Marc g-orcey\Application Data\Mozilla\Firefox\Profiles\d6rv7ofe.default\cookies.txt -> TrackingCookie.2o7 : Cleaned. :mozilla.73:C:\C\Documents and Settings\Marc g-orcey\Application Data\Mozilla\Firefox\Profiles\d6rv7ofe.default\cookies.txt -> TrackingCookie.2o7 : Cleaned. :mozilla.74:C:\C\Documents and Settings\Marc g-orcey\Application Data\Mozilla\Firefox\Profiles\d6rv7ofe.default\cookies.txt -> TrackingCookie.2o7 : Cleaned. C:\C\Documents and Settings\Marc g-orcey\Cookies\marc g-orcey@2o7[1].txt -> TrackingCookie.2o7 : Cleaned. C:\C\Documents and Settings\Marc g-orcey\Cookies\marc g-orcey@chumtv.122.2o7[1].txt -> TrackingCookie.2o7 : Cleaned. :mozilla.363:C:\Documents and Settings\Hillary\Application Data\Mozilla\Firefox\Profiles\u40xl1vf.default\cookies.txt -> TrackingCookie.Adbrite : Cleaned. :mozilla.364:C:\Documents and Settings\Hillary\Application Data\Mozilla\Firefox\Profiles\u40xl1vf.default\cookies.txt -> TrackingCookie.Adbrite : Cleaned. :mozilla.320:C:\Documents and Settings\Hillary\Application Data\Mozilla\Firefox\Profiles\u40xl1vf.default\cookies.txt -> TrackingCookie.Adtech : Cleaned. :mozilla.321:C:\Documents and Settings\Hillary\Application Data\Mozilla\Firefox\Profiles\u40xl1vf.default\cookies.txt -> TrackingCookie.Adtech : Cleaned. :mozilla.133:C:\Documents and Settings\Hillary\Application Data\Mozilla\Firefox\Profiles\u40xl1vf.default\cookies.txt -> TrackingCookie.Advertising : Cleaned. :mozilla.134:C:\Documents and Settings\Hillary\Application Data\Mozilla\Firefox\Profiles\u40xl1vf.default\cookies.txt -> TrackingCookie.Advertising : Cleaned. :mozilla.135:C:\Documents and Settings\Hillary\Application Data\Mozilla\Firefox\Profiles\u40xl1vf.default\cookies.txt -> TrackingCookie.Advertising : Cleaned. :mozilla.136:C:\Documents and Settings\Hillary\Application Data\Mozilla\Firefox\Profiles\u40xl1vf.default\cookies.txt -> TrackingCookie.Advertising : Cleaned. :mozilla.137:C:\Documents and Settings\Hillary\Application Data\Mozilla\Firefox\Profiles\u40xl1vf.default\cookies.txt -> TrackingCookie.Advertising : Cleaned. :mozilla.13:C:\Documents and Settings\Marc\Application Data\Mozilla\Firefox\Profiles\tfwqsgw8.default\cookies.txt -> TrackingCookie.Advertising : Cleaned. :mozilla.16:C:\Documents and Settings\Marc\Application Data\Mozilla\Firefox\Profiles\tfwqsgw8.default\cookies.txt -> TrackingCookie.Advertising : Cleaned. :mozilla.17:C:\Documents and Settings\Marc\Application Data\Mozilla\Firefox\Profiles\tfwqsgw8.default\cookies.txt -> TrackingCookie.Advertising : Cleaned. :mozilla.18:C:\Documents and Settings\Marc\Application Data\Mozilla\Firefox\Profiles\tfwqsgw8.default\cookies.txt -> TrackingCookie.Advertising : Cleaned. :mozilla.19:C:\Documents and Settings\Marc\Application Data\Mozilla\Firefox\Profiles\tfwqsgw8.default\cookies.txt -> TrackingCookie.Advertising : Cleaned. :mozilla.47:C:\C\Documents and Settings\Marc g-orcey\Application Data\Mozilla\Firefox\Profiles\d6rv7ofe.default\cookies.txt -> TrackingCookie.Advertising : Cleaned. :mozilla.48:C:\C\Documents and Settings\Marc g-orcey\Application Data\Mozilla\Firefox\Profiles\d6rv7ofe.default\cookies.txt -> TrackingCookie.Advertising : Cleaned. :mozilla.49:C:\C\Documents and Settings\Marc g-orcey\Application Data\Mozilla\Firefox\Profiles\d6rv7ofe.default\cookies.txt -> TrackingCookie.Advertising : Cleaned. :mozilla.50:C:\C\Documents and Settings\Marc g-orcey\Application Data\Mozilla\Firefox\Profiles\d6rv7ofe.default\cookies.txt -> TrackingCookie.Advertising : Cleaned. :mozilla.51:C:\C\Documents and Settings\Marc g-orcey\Application Data\Mozilla\Firefox\Profiles\d6rv7ofe.default\cookies.txt -> TrackingCookie.Advertising : Cleaned. :mozilla.10:C:\C\Documents and Settings\Marc g-orcey\Application Data\Mozilla\Firefox\Profiles\d6rv7ofe.default\cookies.txt -> TrackingCookie.Atdmt : Cleaned. :mozilla.31:C:\Documents and Settings\Hillary\Application Data\Mozilla\Firefox\Profiles\u40xl1vf.default\cookies.txt -> TrackingCookie.Atdmt : Cleaned. :mozilla.37:C:\Documents and Settings\Marc\Application Data\Mozilla\Firefox\Profiles\tfwqsgw8.default\cookies.txt -> TrackingCookie.Atdmt : Cleaned. C:\C\Documents and Settings\Marc g-orcey\Cookies\marc g-orcey@atdmt[2].txt -> TrackingCookie.Atdmt : Cleaned. C:\Documents and Settings\Marc\Cookies\marc@atdmt[1].txt -> TrackingCookie.Atdmt : Cleaned. :mozilla.124:C:\Documents and Settings\Marc\Application Data\Mozilla\Firefox\Profiles\tfwqsgw8.default\cookies.txt -> TrackingCookie.Bluestreak : Cleaned. :mozilla.285:C:\Documents and Settings\Hillary\Application Data\Mozilla\Firefox\Profiles\u40xl1vf.default\cookies.txt -> TrackingCookie.Bluestreak : Cleaned. :mozilla.44:C:\Documents and Settings\Hillary\Application Data\Mozilla\Firefox\Profiles\u40xl1vf.default\cookies.txt -> TrackingCookie.Burstbeacon : Cleaned. :mozilla.103:C:\C\Documents and Settings\Marc g-orcey\Application Data\Mozilla\Firefox\Profiles\d6rv7ofe.default\cookies.txt -> TrackingCookie.Burstnet : Cleaned. :mozilla.19:C:\Documents and Settings\Hillary\Application Data\Mozilla\Firefox\Profiles\u40xl1vf.default\cookies.txt -> TrackingCookie.Burstnet : Cleaned. :mozilla.25:C:\Documents and Settings\Hillary\Application Data\Mozilla\Firefox\Profiles\u40xl1vf.default\cookies.txt -> TrackingCookie.Burstnet : Cleaned. :mozilla.27:C:\Documents and Settings\Hillary\Application Data\Mozilla\Firefox\Profiles\u40xl1vf.default\cookies.txt -> TrackingCookie.Burstnet : Cleaned. :mozilla.122:C:\Documents and Settings\Hillary\Application Data\Mozilla\Firefox\Profiles\u40xl1vf.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned. :mozilla.41:C:\Documents and Settings\Marc\Application Data\Mozilla\Firefox\Profiles\tfwqsgw8.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned. :mozilla.42:C:\Documents and Settings\Marc\Application Data\Mozilla\Firefox\Profiles\tfwqsgw8.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned. :mozilla.43:C:\Documents and Settings\Marc\Application Data\Mozilla\Firefox\Profiles\tfwqsgw8.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned. :mozilla.44:C:\Documents and Settings\Marc\Application Data\Mozilla\Firefox\Profiles\tfwqsgw8.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned. :mozilla.45:C:\Documents and Settings\Marc\Application Data\Mozilla\Firefox\Profiles\tfwqsgw8.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned. :mozilla.46:C:\Documents and Settings\Marc\Application Data\Mozilla\Firefox\Profiles\tfwqsgw8.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned. :mozilla.47:C:\Documents and Settings\Marc\Application Data\Mozilla\Firefox\Profiles\tfwqsgw8.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned. :mozilla.92:C:\C\Documents and Settings\Marc g-orcey\Application Data\Mozilla\Firefox\Profiles\d6rv7ofe.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned. :mozilla.93:C:\C\Documents and Settings\Marc g-orcey\Application Data\Mozilla\Firefox\Profiles\d6rv7ofe.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned. :mozilla.219:C:\Documents and Settings\Hillary\Application Data\Mozilla\Firefox\Profiles\u40xl1vf.default\cookies.txt -> TrackingCookie.Com : Cleaned. :mozilla.303:C:\Documents and Settings\Hillary\Application Data\Mozilla\Firefox\Profiles\u40xl1vf.default\cookies.txt -> TrackingCookie.Cqcounter : Cleaned. :mozilla.18:C:\Documents and Settings\Hillary\Application Data\Mozilla\Firefox\Profiles\u40xl1vf.default\cookies.txt -> TrackingCookie.Doubleclick : Cleaned. :mozilla.26:C:\Documents and Settings\Marc\Application Data\Mozilla\Firefox\Profiles\tfwqsgw8.default\cookies.txt -> TrackingCookie.Doubleclick : Cleaned. :mozilla.56:C:\C\Documents and Settings\Marc g-orcey\Application Data\Mozilla\Firefox\Profiles\d6rv7ofe.default\cookies.txt -> TrackingCookie.Doubleclick : Cleaned. C:\C\Documents and Settings\Marc g-orcey\Cookies\marc g-orcey@doubleclick[2].txt -> TrackingCookie.Doubleclick : Cleaned. :mozilla.327:C:\Documents and Settings\Hillary\Application Data\Mozilla\Firefox\Profiles\u40xl1vf.default\cookies.txt -> TrackingCookie.Esomniture : Cleaned. :mozilla.104:C:\Documents and Settings\Marc\Application Data\Mozilla\Firefox\Profiles\tfwqsgw8.default\cookies.txt -> TrackingCookie.Fastclick : Cleaned. :mozilla.105:C:\Documents and Settings\Marc\Application Data\Mozilla\Firefox\Profiles\tfwqsgw8.default\cookies.txt -> TrackingCookie.Fastclick : Cleaned. :mozilla.41:C:\Documents and Settings\Hillary\Application Data\Mozilla\Firefox\Profiles\u40xl1vf.default\cookies.txt -> TrackingCookie.Fastclick : Cleaned. :mozilla.42:C:\Documents and Settings\Hillary\Application Data\Mozilla\Firefox\Profiles\u40xl1vf.default\cookies.txt -> TrackingCookie.Fastclick : Cleaned. :mozilla.43:C:\Documents and Settings\Hillary\Application Data\Mozilla\Firefox\Profiles\u40xl1vf.default\cookies.txt -> TrackingCookie.Fastclick : Cleaned. :mozilla.181:C:\Documents and Settings\Hillary\Application Data\Mozilla\Firefox\Profiles\u40xl1vf.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned. :mozilla.182:C:\Documents and Settings\Hillary\Application Data\Mozilla\Firefox\Profiles\u40xl1vf.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned. :mozilla.287:C:\Documents and Settings\Hillary\Application Data\Mozilla\Firefox\Profiles\u40xl1vf.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned. :mozilla.289:C:\Documents and Settings\Hillary\Application Data\Mozilla\Firefox\Profiles\u40xl1vf.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned. :mozilla.376:C:\Documents and Settings\Hillary\Application Data\Mozilla\Firefox\Profiles\u40xl1vf.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned. :mozilla.381:C:\Documents and Settings\Hillary\Application Data\Mozilla\Firefox\Profiles\u40xl1vf.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned. :mozilla.220:C:\Documents and Settings\Hillary\Application Data\Mozilla\Firefox\Profiles\u40xl1vf.default\cookies.txt -> TrackingCookie.Liveperson : Cleaned. :mozilla.222:C:\Documents and Settings\Hillary\Application Data\Mozilla\Firefox\Profiles\u40xl1vf.default\cookies.txt -> TrackingCookie.Liveperson : Cleaned. :mozilla.223:C:\Documents and Settings\Hillary\Application Data\Mozilla\Firefox\Profiles\u40xl1vf.default\cookies.txt -> TrackingCookie.Liveperson : Cleaned. :mozilla.33:C:\C\Documents and Settings\Marc g-orcey\Application Data\Mozilla\Firefox\Profiles\d6rv7ofe.default\cookies.txt -> TrackingCookie.Liveperson : Cleaned. :mozilla.34:C:\C\Documents and Settings\Marc g-orcey\Application Data\Mozilla\Firefox\Profiles\d6rv7ofe.default\cookies.txt -> TrackingCookie.Liveperson : Cleaned. :mozilla.38:C:\C\Documents and Settings\Marc g-orcey\Application Data\Mozilla\Firefox\Profiles\d6rv7ofe.default\cookies.txt -> TrackingCookie.Liveperson : Cleaned. :mozilla.39:C:\C\Documents and Settings\Marc g-orcey\Application Data\Mozilla\Firefox\Profiles\d6rv7ofe.default\cookies.txt -> TrackingCookie.Liveperson : Cleaned. :mozilla.109:C:\Documents and Settings\Hillary\Application Data\Mozilla\Firefox\Profiles\u40xl1vf.default\cookies.txt -> TrackingCookie.Mediaplex : Cleaned. :mozilla.88:C:\C\Documents and Settings\Marc g-orcey\Application Data\Mozilla\Firefox\Profiles\d6rv7ofe.default\cookies.txt -> TrackingCookie.Mediaplex : Cleaned. C:\C\Documents and Settings\Marc g-orcey\Cookies\marc g-orcey@mediaplex[1].txt -> TrackingCookie.Mediaplex : Cleaned. :mozilla.291:C:\Documents and Settings\Hillary\Application Data\Mozilla\Firefox\Profiles\u40xl1vf.default\cookies.txt -> TrackingCookie.Onestat : Cleaned. :mozilla.292:C:\Documents and Settings\Hillary\Application Data\Mozilla\Firefox\Profiles\u40xl1vf.default\cookies.txt -> TrackingCookie.Onestat : Cleaned. :mozilla.349:C:\Documents and Settings\Hillary\Application Data\Mozilla\Firefox\Profiles\u40xl1vf.default\cookies.txt -> TrackingCookie.Overture : Cleaned. :mozilla.106:C:\Documents and Settings\Marc\Application Data\Mozilla\Firefox\Profiles\tfwqsgw8.default\cookies.txt -> TrackingCookie.Pointroll : Cleaned. :mozilla.107:C:\Documents and Settings\Marc\Application Data\Mozilla\Firefox\Profiles\tfwqsgw8.default\cookies.txt -> TrackingCookie.Pointroll : Cleaned. :mozilla.108:C:\Documents and Settings\Marc\Application Data\Mozilla\Firefox\Profiles\tfwqsgw8.default\cookies.txt -> TrackingCookie.Pointroll : Cleaned. :mozilla.149:C:\Documents and Settings\Hillary\Application Data\Mozilla\Firefox\Profiles\u40xl1vf.default\cookies.txt -> TrackingCookie.Pointroll : Cleaned. :mozilla.150:C:\Documents and Settings\Hillary\Application Data\Mozilla\Firefox\Profiles\u40xl1vf.default\cookies.txt -> TrackingCookie.Pointroll : Cleaned. :mozilla.151:C:\Documents and Settings\Hillary\Application Data\Mozilla\Firefox\Profiles\u40xl1vf.default\cookies.txt -> TrackingCookie.Pointroll : Cleaned. :mozilla.152:C:\Documents and Settings\Hillary\Application Data\Mozilla\Firefox\Profiles\u40xl1vf.default\cookies.txt -> TrackingCookie.Pointroll : Cleaned. :mozilla.224:C:\Documents and Settings\Hillary\Application Data\Mozilla\Firefox\Profiles\u40xl1vf.default\cookies.txt -> TrackingCookie.Qksrv : Cleaned. :mozilla.225:C:\Documents and Settings\Hillary\Application Data\Mozilla\Firefox\Profiles\u40xl1vf.default\cookies.txt -> TrackingCookie.Qksrv : Cleaned. :mozilla.100:C:\Documents and Settings\Hillary\Application Data\Mozilla\Firefox\Profiles\u40xl1vf.default\cookies.txt -> TrackingCookie.Questionmarket : Cleaned. :mozilla.109:C:\C\Documents and Settings\Marc g-orcey\Application Data\Mozilla\Firefox\Profiles\d6rv7ofe.default\cookies.txt -> TrackingCookie.Questionmarket : Cleaned. :mozilla.110:C:\C\Documents and Settings\Marc g-orcey\Application Data\Mozilla\Firefox\Profiles\d6rv7ofe.default\cookies.txt -> TrackingCookie.Questionmarket : Cleaned. :mozilla.110:C:\Documents and Settings\Marc\Application Data\Mozilla\Firefox\Profiles\tfwqsgw8.default\cookies.txt -> TrackingCookie.Questionmarket : Cleaned. :mozilla.111:C:\Documents and Settings\Marc\Application Data\Mozilla\Firefox\Profiles\tfwqsgw8.default\cookies.txt -> TrackingCookie.Questionmarket : Cleaned. :mozilla.99:C:\Documents and Settings\Hillary\Application Data\Mozilla\Firefox\Profiles\u40xl1vf.default\cookies.txt -> TrackingCookie.Questionmarket : Cleaned. :mozilla.113:C:\Documents and Settings\Marc\Application Data\Mozilla\Firefox\Profiles\tfwqsgw8.default\cookies.txt -> TrackingCookie.Revenue : Cleaned. :mozilla.343:C:\Documents and Settings\Hillary\Application Data\Mozilla\Firefox\Profiles\u40xl1vf.default\cookies.txt -> TrackingCookie.Serving-sys : Cleaned. :mozilla.344:C:\Documents and Settings\Hillary\Application Data\Mozilla\Firefox\Profiles\u40xl1vf.default\cookies.txt -> TrackingCookie.Serving-sys : Cleaned. :mozilla.345:C:\Documents and Settings\Hillary\Application Data\Mozilla\Firefox\Profiles\u40xl1vf.default\cookies.txt -> TrackingCookie.Serving-sys : Cleaned. :mozilla.346:C:\Documents and Settings\Hillary\Application Data\Mozilla\Firefox\Profiles\u40xl1vf.default\cookies.txt -> TrackingCookie.Serving-sys : Cleaned. :mozilla.347:C:\Documents and Settings\Hillary\Application Data\Mozilla\Firefox\Profiles\u40xl1vf.default\cookies.txt -> TrackingCookie.Serving-sys : Cleaned. :mozilla.348:C:\Documents and Settings\Hillary\Application Data\Mozilla\Firefox\Profiles\u40xl1vf.default\cookies.txt -> TrackingCookie.Serving-sys : Cleaned. :mozilla.206:C:\Documents and Settings\Hillary\Application Data\Mozilla\Firefox\Profiles\u40xl1vf.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned. :mozilla.207:C:\Documents and Settings\Hillary\Application Data\Mozilla\Firefox\Profiles\u40xl1vf.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned. :mozilla.208:C:\Documents and Settings\Hillary\Application Data\Mozilla\Firefox\Profiles\u40xl1vf.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned. :mozilla.100:C:\Documents and Settings\Marc\Application Data\Mozilla\Firefox\Profiles\tfwqsgw8.default\cookies.txt -> TrackingCookie.Tacoda : Cleaned. :mozilla.101:C:\Documents and Settings\Marc\Application Data\Mozilla\Firefox\Profiles\tfwqsgw8.default\cookies.txt -> TrackingCookie.Tacoda : Cleaned. :mozilla.28:C:\Documents and Settings\Hillary\Application Data\Mozilla\Firefox\Profiles\u40xl1vf.default\cookies.txt -> TrackingCookie.Tacoda : Cleaned. :mozilla.29:C:\Documents and Settings\Hillary\Application Data\Mozilla\Firefox\Profiles\u40xl1vf.default\cookies.txt -> TrackingCookie.Tacoda : Cleaned. :mozilla.97:C:\Documents and Settings\Marc\Application Data\Mozilla\Firefox\Profiles\tfwqsgw8.default\cookies.txt -> TrackingCookie.Tacoda : Cleaned. :mozilla.98:C:\Documents and Settings\Marc\Application Data\Mozilla\Firefox\Profiles\tfwqsgw8.default\cookies.txt -> TrackingCookie.Tacoda : Cleaned. :mozilla.99:C:\Documents and Settings\Marc\Application Data\Mozilla\Firefox\Profiles\tfwqsgw8.default\cookies.txt -> TrackingCookie.Tacoda : Cleaned. :mozilla.102:C:\Documents and Settings\Marc\Application Data\Mozilla\Firefox\Profiles\tfwqsgw8.default\cookies.txt -> TrackingCookie.Tribalfusion : Cleaned. :mozilla.20:C:\Documents and Settings\Hillary\Application Data\Mozilla\Firefox\Profiles\u40xl1vf.default\cookies.txt -> TrackingCookie.Tribalfusion : Cleaned. :mozilla.57:C:\C\Documents and Settings\Marc g-orcey\Application Data\Mozilla\Firefox\Profiles\d6rv7ofe.default\cookies.txt -> TrackingCookie.Tribalfusion : Cleaned. :mozilla.58:C:\C\Documents and Settings\Marc g-orcey\Application Data\Mozilla\Firefox\Profiles\d6rv7ofe.default\cookies.txt -> TrackingCookie.Tribalfusion : Cleaned. :mozilla.59:C:\C\Documents and Settings\Marc g-orcey\Application Data\Mozilla\Firefox\Profiles\d6rv7ofe.default\cookies.txt -> TrackingCookie.Tribalfusion : Cleaned. :mozilla.119:C:\C\Documents and Settings\Marc g-orcey\Application Data\Mozilla\Firefox\Profiles\d6rv7ofe.default\cookies.txt -> TrackingCookie.Webtrendslive : Cleaned. :mozilla.45:C:\Documents and Settings\Hillary\Application Data\Mozilla\Firefox\Profiles\u40xl1vf.default\cookies.txt -> TrackingCookie.Webtrendslive : Cleaned. :mozilla.78:C:\Documents and Settings\Marc\Application Data\Mozilla\Firefox\Profiles\tfwqsgw8.default\cookies.txt -> TrackingCookie.Webtrendslive : Cleaned. :mozilla.100:C:\C\Documents and Settings\Marc g-orcey\Application Data\Mozilla\Firefox\Profiles\d6rv7ofe.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned. :mozilla.22:C:\Documents and Settings\Hillary\Application Data\Mozilla\Firefox\Profiles\u40xl1vf.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned. :mozilla.23:C:\Documents and Settings\Hillary\Application Data\Mozilla\Firefox\Profiles\u40xl1vf.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned. :mozilla.39:C:\Documents and Settings\Marc\Application Data\Mozilla\Firefox\Profiles\tfwqsgw8.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned. :mozilla.40:C:\Documents and Settings\Marc\Application Data\Mozilla\Firefox\Profiles\tfwqsgw8.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned. :mozilla.237:C:\Documents and Settings\Hillary\Application Data\Mozilla\Firefox\Profiles\u40xl1vf.default\cookies.txt -> TrackingCookie.Zedo : Cleaned. :mozilla.238:C:\Documents and Settings\Hillary\Application Data\Mozilla\Firefox\Profiles\u40xl1vf.default\cookies.txt -> TrackingCookie.Zedo : Cleaned. :mozilla.94:C:\C\Documents and Settings\Marc g-orcey\Application Data\Mozilla\Firefox\Profiles\d6rv7ofe.default\cookies.txt -> TrackingCookie.Zedo : Cleaned. :mozilla.95:C:\C\Documents and Settings\Marc g-orcey\Application Data\Mozilla\Firefox\Profiles\d6rv7ofe.default\cookies.txt -> TrackingCookie.Zedo : Cleaned. :mozilla.96:C:\C\Documents and Settings\Marc g-orcey\Application Data\Mozilla\Firefox\Profiles\d6rv7ofe.default\cookies.txt -> TrackingCookie.Zedo : Cleaned. ::Report end

#7 Marc1964

New Member

New Member
5 posts

Posted 22 March 2007 - 11:42 AM

Maybe I didn't have anything after all... Interesting, though, as the 'date modified' value for a bunch of mp3 files seems to have been updated for no reason...

#8 Markka

Advanced Member

Banned
784 posts

Posted 25 March 2007 - 01:12 AM

Disable system restore:

Right click on my computer icon
Choose properties
Click on system restore tab
Select Turn off System Restore
Click apply and click OK
Reboot!

Enable system restore:

Right click on my computer icon
Choose properties
Click on system restore tab
un-check Turn off System Restore
Click apply and click OK
Reboot!

You didn't update your java? Some reasons? Is very necessary to keep java up-to-date, so update it

Instruction:

-> Go to Control panel -> Add/remove programs
-> Find java(s) from the list
-> Delete java(s)
-> Please download from here a new java and install it.
-> The latest java version is: Java Runtime Environment (JRE) 6.0

Post a fresh HijackThis log

Body Background

skin color theme