Jump to content

Build Theme!
  •  
  • Unreplied Topics
  • Downloads
  • Infected?

WE'RE SURE THAT YOU'LL LOVE US!

Hey there! :wub: Looks like you're enjoying the discussion, but you're not signed up for an account. When you create an account, we remember exactly what you've read, so you always come right back where you left off. You also get notifications, here and via email, whenever new posts are made. You can like posts to share the love. :D Join 93112 other members! Anybody can ask, anybody can answer. Consistently helpful members may be invited to become staff. Here's how it works. Virus cleanup? Start here -> Malware Removal Forum.

Try What the Tech -- It's free!


Photo

Crazy Mouse

Started by Sam1Taz1 , Jun 28 2007 06:23 PM

  • This topic is locked This topic is locked
9 replies to this topic

#1 Sam1Taz1

Sam1Taz1

    New Member

  • New Member
  • Pip
  • 5 posts

Posted 28 June 2007 - 06:23 PM

Hi, recently my mouse has decided to develop a mind of its own and goes all over the screen. Grrr! I just ran Spybot, Ad-Aware, and AVG, all up-to-date. I've rebooted and still have a crazy mouse. Before I ran the above, I replaced my mouse. Here is my Hijack log.... created right after I rebooted. Thanks for any help! ~ Sam

Logfile of HijackThis v1.99.1
Scan saved at 5:10:01 PM, on 6/28/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
D:\WINDOWS\System32\smss.exe
D:\WINDOWS\system32\winlogon.exe
D:\WINDOWS\system32\services.exe
D:\WINDOWS\system32\lsass.exe
D:\WINDOWS\system32\svchost.exe
D:\WINDOWS\System32\svchost.exe
D:\WINDOWS\system32\brsvc01a.exe
D:\WINDOWS\system32\spoolsv.exe
D:\WINDOWS\system32\brss01a.exe
D:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe
D:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe
D:\PROGRA~1\Grisoft\AVGFRE~1\avgemc.exe
D:\Program Files\AVPersonal\AVWUPSRV.EXE
D:\WINDOWS\system32\Brmfrmps.exe
D:\WINDOWS\system32\nvsvc32.exe
D:\WINDOWS\system32\pctspk.exe
D:\WINDOWS\Explorer.EXE
D:\WINDOWS\system32\svchost.exe
D:\WINDOWS\wanmpsvc.exe
D:\Program Files\ScanSoft\PaperPort\pptd40nt.exe
D:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
D:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe
D:\Program Files\Common Files\Real\Update_OB\realsched.exe
D:\PROGRA~1\Sony\SONICS~1\SsAAD.exe
D:\Program Files\Java\jre1.6.0_01\bin\jusched.exe
D:\Program Files\QuickTime\qttask.exe
D:\Program Files\MSN Messenger\msnmsgr.exe
D:\Program Files\Google\Google Desktop Search\GoogleDesktopIndex.exe
D:\Program Files\BigFix\BigFix.exe
D:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
D:\PROGRA~1\Webshots\webshots.scr
D:\WINDOWS\system32\wuauclt.exe
D:\Documents and Settings\default\Desktop\TOOLS\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.yahoo.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://ca.rd.yahoo.c...earch.yahoo.com
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - D:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - D:\Program Files\Java\jre1.6.0_01\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: IEHlprObj Class - {8CA5ED52-F3FB-4414-A105-2E3491156990} - D:\PROGRA~1\IWINGA~1\IWINGA~1.DLL
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - D:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: (no name) - {FFFFFEF0-5B30-21D4-945D-000000000000} - D:\PROGRA~1\STARDO~1\SDIEInt.dll
O4 - HKLM\..\Run: [PaperPort PTD] D:\Program Files\ScanSoft\PaperPort\pptd40nt.exe
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE D:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [IndexSearch] D:\Program Files\ScanSoft\PaperPort\IndexSearch.exe
O4 - HKLM\..\Run: [Google Desktop Search] "D:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe" /startup
O4 - HKLM\..\Run: [ControlCenter2.0] D:\Program Files\Brother\ControlCenter2\brctrcen.exe /autorun
O4 - HKLM\..\Run: [AVG7_CC] D:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe /STARTUP
O4 - HKLM\..\Run: [TkBellExe] "D:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [SSBkgdUpdate] "D:\Program Files\Common Files\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe" -Embedding -boot
O4 - HKLM\..\Run: [Logitech Hardware Abstraction Layer] KHALMNPR.EXE
O4 - HKLM\..\Run: [SsAAD.exe] D:\PROGRA~1\Sony\SONICS~1\SsAAD.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "D:\Program Files\Java\jre1.6.0_01\bin\jusched.exe"
O4 - HKLM\..\Run: [QuickTime Task] "D:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKCU\..\Run: [msnmsgr] "D:\Program Files\MSN Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [SsAAD.exe] D:\PROGRA~1\Sony\SONICS~1\SsAAD.exe
O4 - Startup: Webshots.lnk = D:\Program Files\Webshots\Launcher.exe
O4 - Global Startup: Status Monitor.lnk = D:\Program Files\Brother\Brmfcmon\BrMfcWnd.exe
O4 - Global Startup: Microsoft Office.lnk = D:\Program Files\Microsoft Office\Office\OSA9.EXE
O4 - Global Startup: BigFix.lnk = D:\Program Files\BigFix\BigFix.exe
O4 - Global Startup: Adobe Reader Speed Launch.lnk = D:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O8 - Extra context menu item: &Search - http://edits.mywebse...html?p=ZJfox000
O8 - Extra context menu item: Download with Star Downloader - D:\PROGRA~1\STARDO~1\sdie.htm
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - D:\Program Files\Java\jre1.6.0_01\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - D:\Program Files\Java\jre1.6.0_01\bin\ssv.dll
O9 - Extra button: Run IMVU - {d9288080-1baa-4bc4-9cf8-a92d743db949} - D:\Documents and Settings\CoolDudeGoMoo\Start Menu\Programs\IMVU\Run IMVU.lnk
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - D:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - D:\Program Files\Messenger\msmsgs.exe
O9 - Extra button: WeatherBug - {AF6CABAB-61F9-4f12-A198-B7D41EF1CB52} - D:\Program Files\AWS\WeatherBug\Weather.exe (file missing) (HKCU)
O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zon...kr.cab31267.cab
O16 - DPF: {69EF49E5-FE46-4B92-B5FA-2193AB7A6B8A} (GameLauncher Control) - http://www.acclaim.c.../acclaim_v4.cab
O16 - DPF: {77E32299-629F-43C6-AB77-6A1E6D7663F6} (Groove Control) - http://www.nick.com/.../GrooveAX27.cab
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zon...nt.cab31267.cab
O16 - DPF: {D4323BF2-006A-4440-A2F5-27E3E7AB25F8} (Virtools WebPlayer Class) - http://a532.g.akamai...5/installer.exe
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - D:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - D:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O20 - AppInit_DLLs: D:\PROGRA~1\Google\GOOGLE~2\GOEC62~1.DLL
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - D:\WINDOWS\system32\WPDShServiceObj.dll
O23 - Service: AntiVir Service (AntiVirService) - H+BEDV Datentechnik GmbH - D:\Program Files\AVPersonal\AVGUARD.EXE
O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - D:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe
O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - D:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe
O23 - Service: AVG E-mail Scanner (AVGEMS) - GRISOFT, s.r.o. - D:\PROGRA~1\Grisoft\AVGFRE~1\avgemc.exe
O23 - Service: AntiVir Update (AVWUpSrv) - H+BEDV Datentechnik GmbH, Germany - D:\Program Files\AVPersonal\AVWUPSRV.EXE
O23 - Service: Brother Popup Suspend service for Resource manager (brmfrmps) - Unknown owner - D:\WINDOWS\system32\Brmfrmps.exe" -service (file missing)
O23 - Service: BrSplService (Brother XP spl Service) - brother Industries Ltd - D:\WINDOWS\system32\brsvc01a.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - D:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: MSCSPTISRV - Sony Corporation - D:\Program Files\Common Files\Sony Shared\AVLib\MSCSPTISRV.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - D:\WINDOWS\system32\nvsvc32.exe
O23 - Service: PACSPTISVR - Sony Corporation - D:\Program Files\Common Files\Sony Shared\AVLib\PACSPTISVR.exe
O23 - Service: PCTEL Speaker Phone (Pctspk) - PCtel, Inc. - D:\WINDOWS\system32\pctspk.exe
O23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - D:\Program Files\Common Files\Sony Shared\AVLib\SPTISRV.exe
O23 - Service: SonicStage SCSI Service (SSScsiSV) - Sony Corporation - D:\Program Files\Common Files\Sony Shared\AVLib\SSScsiSV.exe
O23 - Service: WAN Miniport (ATW) Service (WANMiniportService) - America Online, Inc. - D:\WINDOWS\wanmpsvc.exe
O23 - Service: Security Center (wscsvc) - Unknown owner - D:\WINDOWS\D:\WINDOWS\System32\svchost.exe (file missing)

    Advertisements

Register to Remove

#2 ken545

ken545

    Forum God

  • Retired Classroom Teacher
  • 23,225 posts
  • Interests:Fighting Malware and cooking some great Italian and TexMex food
  • MVP

Posted 05 July 2007 - 04:59 AM

Sam1Taz1 :D

Welcome to Tom Coyote . Sorry about the delay in responding but we are as most times just overwhelmed with logs.

First off you have two Anti Virus programs running and most times this will cause problems, it may or may not be related to your mouse problem but either way its your call but one of them needs to be uninstalled via the Add-Remove Programs in the Control Panel.

AVPersonal
AVGFRE


You also need to uninstall this program as its spyware
C:\Program Files\iWin Games



Open HijackThis > Do a System Scan Only, close your browser and all open windows, the only program or window you should have open is HijackThis, check the following entries and click on Fix Checked.

O2 - BHO: IEHlprObj Class - {8CA5ED52-F3FB-4414-A105-2E3491156990} - D:\PROGRA~1\IWINGA~1\IWINGA~1.DLL

O8 - Extra context menu item: &Search - http://edits.mywebse...html?p=ZJfox000


Run this system cleaner

If you don't want the Yahoo Toolbar, be sure to uncheck it during installation
Download and Install CCleaner
* Click on Run Cleaner
* Run the Issues Scan < -- After it scans your system, when you click on the Fix button and it asks you to backup the Registry..Say Yes
Tutorial for CCleaner



Run Panda's ActiveScan from here and perform a full system scan.
  • Once you are on the Panda site click the "Scan your PC" button
  • A new window will open...click the big "Check Now" button
  • Enter your Country
  • Enter your State/Province
  • Enter your e-mail address and click send
  • Select either Home User or Company
  • Click the big Scan Now button
  • If it wants to install an ActiveX component allow it
  • It will start downloading the files it requires for the scan (Note: It will take a couple minutes)
  • If you are on a slow connection it will take about 15 minuites for the scanner to load.
  • Click on "Local Disks" to start the scan
  • Once scan is done, click "see report" then "save report"
  • Save the log someplace you can find
  • 12. Reboot
  • Post the Panda scan results in your next reply


Post the Panda Report and a New HJT log and if all looks ok your problem may be hardware related.

 
 
The forum is staffed by volunteers who donate their time and expertise.
If you feel you have been helped, please consider a donation.
donate.gif
 
Find us on Facebook
Please LIKE and SHARE
 
 
Just a reminder that threads will be closed if no reply in 3 days.

#3 Sam1Taz1

Sam1Taz1

    New Member

  • New Member
  • Pip
  • 5 posts

Posted 06 July 2007 - 11:17 AM

Hi Ken, thanks for your time and your help! I know you all must be quite busy and I appreciate you taking your time to help me and others!

I uninstalled Anti-Vir (forgot I had that going!), removed the items with HJT, ran CCleaner, and then did Panda's ActiveScan... I'm really surprised that Ad-Aware and Spybot missed so much? Also, it does appear that I have some hacktools and viruses that aren't being taking care of with AVG? And, Iwon still appears but we've been using their web forever... is it really that damaging? Ok, here is the ActiveScan report and my latest HJT log.... is there any hope? Thanks again! ~ Samantha

Oh, I'll have to do a separate post with my ActiveScan... I guess my post is too long, not good!

HJT:

Logfile of HijackThis v1.99.1
Scan saved at 10:10:23 AM, on 7/6/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
D:\WINDOWS\System32\smss.exe
D:\WINDOWS\system32\winlogon.exe
D:\WINDOWS\system32\services.exe
D:\WINDOWS\system32\lsass.exe
D:\WINDOWS\system32\svchost.exe
D:\WINDOWS\System32\svchost.exe
D:\WINDOWS\system32\brsvc01a.exe
D:\WINDOWS\system32\spoolsv.exe
D:\WINDOWS\system32\brss01a.exe
D:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe
D:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe
D:\PROGRA~1\Grisoft\AVGFRE~1\avgemc.exe
D:\WINDOWS\system32\Brmfrmps.exe
D:\WINDOWS\system32\nvsvc32.exe
D:\WINDOWS\system32\pctspk.exe
D:\WINDOWS\system32\svchost.exe
D:\WINDOWS\wanmpsvc.exe
D:\WINDOWS\system32\winlogon.exe
D:\WINDOWS\Explorer.EXE
D:\Program Files\Common Files\Real\Update_OB\realsched.exe
D:\Program Files\Outlook Express\msimn.exe
D:\Program Files\Messenger\msmsgs.exe
D:\WINDOWS\system32\winlogon.exe
D:\WINDOWS\system32\wuauclt.exe
D:\Program Files\Mozilla Firefox\firefox.exe
D:\Program Files\Adobe\Acrobat 7.0\Reader\AcroRd32Info.exe
D:\Documents and Settings\default\Desktop\TOOLS\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.yahoo.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://ca.rd.yahoo.c...earch.yahoo.com
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - D:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - D:\Program Files\Java\jre1.6.0_01\bin\ssv.dll
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - D:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: (no name) - {FFFFFEF0-5B30-21D4-945D-000000000000} - D:\PROGRA~1\STARDO~1\SDIEInt.dll
O4 - HKLM\..\Run: [AVG7_CC] D:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe /STARTUP
O4 - HKLM\..\Run: [SSBkgdUpdate] "D:\Program Files\Common Files\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe" -Embedding -boot
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE D:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [TkBellExe] "D:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKCU\..\Run: [msnmsgr] "D:\Program Files\MSN Messenger\msnmsgr.exe" /background
O4 - Startup: Webshots.lnk = D:\Program Files\Webshots\Launcher.exe
O4 - Global Startup: Microsoft Office.lnk = D:\Program Files\Microsoft Office\Office\OSA9.EXE
O4 - Global Startup: BigFix.lnk = D:\Program Files\BigFix\BigFix.exe
O4 - Global Startup: Adobe Reader Speed Launch.lnk = D:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O8 - Extra context menu item: Download with Star Downloader - D:\PROGRA~1\STARDO~1\sdie.htm
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - D:\Program Files\Java\jre1.6.0_01\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - D:\Program Files\Java\jre1.6.0_01\bin\ssv.dll
O9 - Extra button: Run IMVU - {d9288080-1baa-4bc4-9cf8-a92d743db949} - D:\Documents and Settings\CoolDudeGoMoo\Start Menu\Programs\IMVU\Run IMVU.lnk
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - D:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - D:\Program Files\Messenger\msmsgs.exe
O9 - Extra button: WeatherBug - {AF6CABAB-61F9-4f12-A198-B7D41EF1CB52} - D:\Program Files\AWS\WeatherBug\Weather.exe (file missing) (HKCU)
O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zon...kr.cab31267.cab
O16 - DPF: {69EF49E5-FE46-4B92-B5FA-2193AB7A6B8A} (GameLauncher Control) - http://www.acclaim.c.../acclaim_v4.cab
O16 - DPF: {77E32299-629F-43C6-AB77-6A1E6D7663F6} (Groove Control) - http://www.nick.com/.../GrooveAX27.cab
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zon...nt.cab31267.cab
O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) - http://acs.pandasoft...free/asinst.cab
O16 - DPF: {D4323BF2-006A-4440-A2F5-27E3E7AB25F8} (Virtools WebPlayer Class) - http://a532.g.akamai...5/installer.exe
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - D:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - D:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O20 - AppInit_DLLs: D:\PROGRA~1\Google\GOOGLE~2\GOEC62~1.DLL
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - D:\WINDOWS\system32\WPDShServiceObj.dll
O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - D:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe
O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - D:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe
O23 - Service: AVG E-mail Scanner (AVGEMS) - GRISOFT, s.r.o. - D:\PROGRA~1\Grisoft\AVGFRE~1\avgemc.exe
O23 - Service: Brother Popup Suspend service for Resource manager (brmfrmps) - Unknown owner - D:\WINDOWS\system32\Brmfrmps.exe" -service (file missing)
O23 - Service: BrSplService (Brother XP spl Service) - brother Industries Ltd - D:\WINDOWS\system32\brsvc01a.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - D:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: MSCSPTISRV - Sony Corporation - D:\Program Files\Common Files\Sony Shared\AVLib\MSCSPTISRV.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - D:\WINDOWS\system32\nvsvc32.exe
O23 - Service: PACSPTISVR - Sony Corporation - D:\Program Files\Common Files\Sony Shared\AVLib\PACSPTISVR.exe
O23 - Service: PCTEL Speaker Phone (Pctspk) - PCtel, Inc. - D:\WINDOWS\system32\pctspk.exe
O23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - D:\Program Files\Common Files\Sony Shared\AVLib\SPTISRV.exe
O23 - Service: SonicStage SCSI Service (SSScsiSV) - Sony Corporation - D:\Program Files\Common Files\Sony Shared\AVLib\SSScsiSV.exe
O23 - Service: WAN Miniport (ATW) Service (WANMiniportService) - America Online, Inc. - D:\WINDOWS\wanmpsvc.exe
O23 - Service: Security Center (wscsvc) - Unknown owner - D:\WINDOWS\D:\WINDOWS\System32\svchost.exe (file missing)

#4 Sam1Taz1

Sam1Taz1

    New Member

  • New Member
  • Pip
  • 5 posts

Posted 06 July 2007 - 11:32 AM

Ok, here is my ActiveScan report.... carp**, it's too long... I'll do it in 2 sections. Thanks again! Incident Status Location Potentially unwanted tool:Application/PRScheduler Not disinfected C:\WINDOWS\Desktop\backups\backup-20050223-195614-832-PowerReg Scheduler.exe Adware:Adware/GXB Not disinfected C:\WINDOWS\Desktop\Tools\backups\backup-20050222-111642-387.dll Potentially unwanted tool:Application/iWon Not disinfected C:\WINDOWS\Desktop\Tools\backups\backup-20050222-111824-467.inf Potentially unwanted tool:Application/iWon Not disinfected C:\WINDOWS\Desktop\Tools\backups\backup-20050222-111824-467.dll Spyware:Spyware/Media-motor Not disinfected C:\WINDOWS\Downloaded Program Files\CONFLICT.1\mm21.INF Adware:Adware/Gator Not disinfected C:\WINDOWS\Downloaded Program Files\CONFLICT.1\HDPlugin1019.inf Adware:Adware/Gator Not disinfected C:\WINDOWS\Downloaded Program Files\CONFLICT.2\HDPlugin1019.inf Adware:Adware/Gator Not disinfected C:\WINDOWS\Downloaded Program Files\CONFLICT.4\HDPlugin1019.inf Adware:Adware/Gator Not disinfected C:\WINDOWS\Downloaded Program Files\CONFLICT.5\HDPlugin1019.inf Potentially unwanted tool:Application/FunWeb Not disinfected C:\WINDOWS\Downloaded Program Files\f3initialsetup1.0.0.6.inf Adware:Adware Program Not disinfected C:\WINDOWS\Downloaded Program Files\test.INF Adware:Adware/Gator Not disinfected C:\WINDOWS\Downloaded Program Files\CONFLICT.6\HDPlugin1019.inf Adware:Adware/Gator Not disinfected C:\WINDOWS\Downloaded Program Files\CONFLICT.8\HDPlugin1019.inf Adware:Adware/TopRebates Not disinfected C:\WINDOWS\Downloaded Program Files\UpromiseRemindU_InstallSilent.inf Adware:Adware/Gator Not disinfected C:\WINDOWS\Downloaded Program Files\CONFLICT.7\HDPlugin1019.inf Spyware:Cookie/Atwola Not disinfected C:\WINDOWS\Cookies\compaq@atwola[2].txt Spyware:Cookie/Atwola Not disinfected C:\WINDOWS\Cookies\anyuser@atwola[1].txt Spyware:Cookie/Atwola Not disinfected C:\WINDOWS\Cookies\anyuser@atwola[2].txt Spyware:Cookie/Rightmedia Not disinfected C:\WINDOWS\Cookies\compaq@rightmedia[1].txt Spyware:Cookie/Kount Not disinfected C:\WINDOWS\Cookies\compaq@kount[1].txt Spyware:Cookie/Kount Not disinfected C:\WINDOWS\Cookies\anyuser@kount[2].txt Spyware:Cookie/Servlet Not disinfected C:\WINDOWS\Cookies\anyuser@servlet[2].txt Spyware:Cookie/Azjmp Not disinfected C:\WINDOWS\Cookies\anyuser@azjmp[2].txt Spyware:Cookie/Atwola Not disinfected C:\WINDOWS\Cookies\anyuser@atwola[3].txt Spyware:Cookie/myaffiliateprogram Not disinfected C:\WINDOWS\Cookies\anyuser@www.myaffiliateprogram[1].txt Spyware:Cookie/did-it Not disinfected C:\WINDOWS\Cookies\anyuser@did-it[2].txt Spyware:Cookie/Rightmedia Not disinfected C:\WINDOWS\Cookies\anyuser@rightmedia[2].txt Spyware:Cookie/Kount Not disinfected C:\WINDOWS\Cookies\compaq@kount[2].txt Spyware:Cookie/Enhance Not disinfected C:\WINDOWS\Cookies\anyuser@c.enhance[1].txt Spyware:Cookie/888 Not disinfected C:\WINDOWS\Cookies\compaq@888[2].txt Spyware:Cookie/Dashbar Not disinfected C:\WINDOWS\Cookies\anyuser@results.dashbar[2].txt Spyware:Cookie/Azjmp Not disinfected C:\WINDOWS\Cookies\anyuser@azjmp[1].txt Spyware:Cookie/BurstBeacon Not disinfected C:\WINDOWS\Cookies\anyuser@www.burstbeacon[1].txt Spyware:Cookie/fe.lea.lycos Not disinfected C:\WINDOWS\Cookies\compaq@fe.lea.lycos[1].txt Spyware:Cookie/Belnk Not disinfected C:\WINDOWS\Cookies\anyuser@dist.belnk[2].txt Spyware:Cookie/Kount Not disinfected C:\WINDOWS\Cookies\anyuser@kount[3].txt Spyware:Cookie/888 Not disinfected C:\WINDOWS\Cookies\anyuser@888[1].txt Spyware:Cookie/Kount Not disinfected C:\WINDOWS\Cookies\compaq@kount[3].txt Spyware:Cookie/myaffiliateprogram Not disinfected C:\WINDOWS\Cookies\compaq@www.myaffiliateprogram[2].txt Spyware:Cookie/Belnk Not disinfected C:\WINDOWS\Cookies\compaq@dist.belnk[2].txt Spyware:Cookie/Rightmedia Not disinfected C:\WINDOWS\Cookies\compaq@rightmedia[3].txt Spyware:Cookie/Target Not disinfected C:\WINDOWS\Cookies\anyuser@target[1].txt Spyware:Cookie/Go Not disinfected C:\WINDOWS\Cookies\anyuser@go[2].txt Spyware:Cookie/BurstNet Not disinfected C:\WINDOWS\Cookies\anyuser@burstnet[2].txt Spyware:Cookie/Go Not disinfected C:\WINDOWS\Cookies\compaq@go[1].txt Spyware:Cookie/Toplist Not disinfected C:\WINDOWS\Cookies\anyuser@toplist[2].txt Spyware:Cookie/Rightmedia Not disinfected C:\WINDOWS\Cookies\anyuser@rightmedia[1].txt Spyware:Cookie/Atwola Not disinfected C:\WINDOWS\Cookies\compaq@atwola[1].txt Spyware:Cookie/Hbmediapro Not disinfected C:\WINDOWS\Cookies\anyuser@adopt.hbmediapro[1].txt Spyware:Cookie/Abetterinternet Not disinfected C:\WINDOWS\Cookies\compaq@abetterinternet[1].txt Spyware:Cookie/SpywareStormer Not disinfected C:\WINDOWS\Cookies\anyuser@spywarestormer[1].txt Spyware:Cookie/64.62.232 Not disinfected C:\WINDOWS\Cookies\anyuser@64.62.232[4].txt Spyware:Cookie/64.62.232 Not disinfected C:\WINDOWS\Cookies\compaq@64.62.232[3].txt Spyware:Cookie/Twain-Tech Not disinfected C:\WINDOWS\Cookies\anyuser@cliks[2].txt Spyware:Cookie/Toplist Not disinfected C:\WINDOWS\Cookies\compaq@toplist[1].txt Spyware:Cookie/myaffiliateprogram Not disinfected C:\WINDOWS\Cookies\anyuser@www.myaffiliateprogram[3].txt Spyware:Cookie/Twain-Tech Not disinfected C:\WINDOWS\Cookies\compaq@cliks[1].txt Spyware:Cookie/OfferOptimizer Not disinfected C:\WINDOWS\Cookies\anyuser@offeroptimizer[2].txt Spyware:Cookie/Abetterinternet Not disinfected C:\WINDOWS\Cookies\anyuser@abetterinternet[1].txt Spyware:Cookie/Enhance Not disinfected C:\WINDOWS\Cookies\compaq@c.enhance[1].txt Spyware:Cookie/OfferOptimizer Not disinfected C:\WINDOWS\Cookies\compaq@offeroptimizer[2].txt Spyware:Cookie/Hbmediapro Not disinfected C:\WINDOWS\Cookies\compaq@adopt.hbmediapro[1].txt Spyware:Cookie/Yadro Not disinfected C:\WINDOWS\Cookies\anyuser@yadro[2].txt Spyware:Cookie/BurstBeacon Not disinfected C:\WINDOWS\Cookies\compaq@www.burstbeacon[2].txt Spyware:Cookie/BurstBeacon Not disinfected C:\WINDOWS\Cookies\anyuser@www.burstbeacon[2].txt Spyware:Cookie/BurstNet Not disinfected C:\WINDOWS\Cookies\compaq@burstnet[1].txt Spyware:Cookie/BurstNet Not disinfected C:\WINDOWS\Cookies\anyuser@burstnet[3].txt Spyware:Cookie/Com.com Not disinfected C:\WINDOWS\Cookies\anyuser@image.checkmystats.com[2].txt Spyware:Cookie/Belnk Not disinfected C:\WINDOWS\Cookies\compaq@dist.belnk[3].txt Spyware:Cookie/Go Not disinfected C:\WINDOWS\Cookies\compaq@go[3].txt Spyware:Cookie/Paypopup Not disinfected C:\WINDOWS\Cookies\anyuser@paypopup[1].txt Spyware:Cookie/Kount Not disinfected C:\WINDOWS\Cookies\compaq@kount[5].txt Spyware:Cookie/888 Not disinfected C:\WINDOWS\Cookies\compaq@888[1].txt Spyware:Cookie/888 Not disinfected C:\WINDOWS\Cookies\compaq@888[3].txt Spyware:Cookie/Cassava Not disinfected C:\WINDOWS\Cookies\compaq@cassava[1].txt Spyware:Cookie/Cgi-bin Not disinfected C:\WINDOWS\Cookies\anyuser@cgi-bin[3].txt Spyware:Cookie/Belnk Not disinfected C:\WINDOWS\Cookies\anyuser@dist.belnk[3].txt Spyware:Cookie/Azjmp Not disinfected C:\WINDOWS\Cookies\anyuser@azjmp[4].txt Spyware:Cookie/Atwola Not disinfected C:\WINDOWS\Cookies\compaq@atwola[3].txt Spyware:Cookie/Atwola Not disinfected C:\WINDOWS\Cookies\anyuser@atwola[4].txt Spyware:Cookie/Hbmediapro Not disinfected C:\WINDOWS\Cookies\anyuser@adopt.hbmediapro[3].txt Spyware:Cookie/web-stat Not disinfected C:\WINDOWS\Cookies\anyuser@www.web-stat[1].txt Spyware:Cookie/BurstNet Not disinfected C:\WINDOWS\Cookies\compaq@burstnet[2].txt Spyware:Cookie/Belnk Not disinfected C:\WINDOWS\Cookies\anyuser@belnk[1].txt Spyware:Cookie/Hbmediapro Not disinfected C:\WINDOWS\Cookies\compaq@adopt.hbmediapro[2].txt Spyware:Cookie/ademails Not disinfected C:\WINDOWS\Cookies\anyuser@www.ademails[2].txt Spyware:Cookie/Go Not disinfected C:\WINDOWS\Cookies\anyuser@go[1].txt Spyware:Cookie/Yadro Not disinfected C:\WINDOWS\Cookies\anyuser@yadro[1].txt Spyware:Cookie/Rn11 Not disinfected C:\WINDOWS\Cookies\anyuser@rn11[2].txt Adware:Adware/SAHAgent Not disinfected C:\WINDOWS\unstall.exe Adware:Adware/Transponder Not disinfected C:\_RESTORE\TEMP\A0166997.CPY Adware:Adware/Transponder Not disinfected C:\_RESTORE\TEMP\A0167000.CPY Adware:Adware/Transponder Not disinfected C:\_RESTORE\TEMP\A0167001.CPY Adware:Adware/Transponder Not disinfected C:\_RESTORE\TEMP\A0167002.CPY Adware:Adware/Transponder Not disinfected C:\_RESTORE\TEMP\A0167003.CPY Adware:Adware/Transponder Not disinfected C:\_RESTORE\TEMP\A0167004.CPY Adware:Adware/Transponder Not disinfected C:\_RESTORE\TEMP\A0167005.CPY Adware:Adware/Transponder Not disinfected C:\_RESTORE\TEMP\A0167006.CPY Adware:Adware/Transponder Not disinfected C:\_RESTORE\TEMP\A0167007.CPY Adware:Adware/Transponder Not disinfected C:\_RESTORE\TEMP\A0167008.CPY Adware:Adware/Transponder Not disinfected C:\_RESTORE\TEMP\A0167009.CPY Adware:Adware/Transponder Not disinfected C:\_RESTORE\TEMP\A0167010.CPY Adware:Adware/Transponder Not disinfected C:\_RESTORE\TEMP\A0167011.CPY Adware:Adware/Transponder Not disinfected C:\_RESTORE\TEMP\A0167012.CPY Adware:Adware/Transponder Not disinfected C:\_RESTORE\TEMP\A0167013.CPY Adware:Adware/Transponder Not disinfected C:\_RESTORE\TEMP\A0167014.CPY Adware:Adware/Transponder Not disinfected C:\_RESTORE\TEMP\A0167015.CPY Adware:Adware/Transponder Not disinfected C:\_RESTORE\TEMP\A0167016.CPY Adware:Adware/Transponder Not disinfected C:\_RESTORE\TEMP\A0167017.CPY Adware:Adware/Transponder Not disinfected C:\_RESTORE\TEMP\A0167018.CPY Adware:Adware/Transponder Not disinfected C:\_RESTORE\TEMP\A0167019.CPY Adware:Adware/Transponder Not disinfected C:\_RESTORE\TEMP\A0167020.CPY Adware:Adware/Transponder Not disinfected C:\_RESTORE\TEMP\A0167021.CPY Adware:Adware/Transponder Not disinfected C:\_RESTORE\TEMP\A0167022.CPY Adware:Adware/Transponder Not disinfected C:\_RESTORE\TEMP\A0167023.CPY Adware:Adware/Transponder Not disinfected C:\_RESTORE\TEMP\A0167024.CPY Adware:Adware/Transponder Not disinfected C:\_RESTORE\TEMP\A0167025.CPY Adware:Adware/Transponder Not disinfected C:\_RESTORE\TEMP\A0167026.CPY Adware:Adware/Transponder Not disinfected C:\_RESTORE\TEMP\A0167027.CPY Adware:Adware/Transponder Not disinfected C:\_RESTORE\TEMP\A0167028.CPY Adware:Adware/Transponder Not disinfected C:\_RESTORE\TEMP\A0167029.CPY Adware:Adware/Transponder Not disinfected C:\_RESTORE\TEMP\A0167032.CPY Adware:Adware/Transponder Not disinfected C:\_RESTORE\TEMP\A0167033.CPY Adware:Adware/Transponder Not disinfected C:\_RESTORE\TEMP\A0167035.CPY Adware:Adware/Transponder Not disinfected C:\_RESTORE\TEMP\A0167037.CPY Adware:Adware/Transponder Not disinfected C:\_RESTORE\TEMP\A0167039.CPY Adware:Adware/Transponder Not disinfected C:\_RESTORE\TEMP\A0167041.CPY Adware:Adware/Transponder Not disinfected C:\_RESTORE\TEMP\A0167043.CPY Adware:Adware/Transponder Not disinfected C:\_RESTORE\TEMP\A0167045.CPY Adware:Adware/Transponder Not disinfected C:\_RESTORE\TEMP\A0167047.CPY Adware:Adware/Transponder Not disinfected C:\_RESTORE\TEMP\A0167049.CPY Adware:Adware/Transponder Not disinfected C:\_RESTORE\TEMP\A0167051.CPY Adware:Adware/LocalNRD Not disinfected C:\_RESTORE\TEMP\A0195307.CPY Adware:Adware/Transponder Not disinfected C:\_RESTORE\TEMP\A0196370.CPY Adware:Adware/Transponder Not disinfected C:\_RESTORE\TEMP\A0196371.CPY Adware:Adware/Transponder Not disinfected C:\_RESTORE\TEMP\A0196372.CPY Adware:Adware/Transponder Not disinfected C:\_RESTORE\TEMP\A0196373.CPY Adware:Adware/Transponder Not disinfected C:\_RESTORE\TEMP\A0196374.CPY Adware:Adware/Transponder Not disinfected C:\_RESTORE\TEMP\A0196375.CPY Adware:Adware/Transponder Not disinfected C:\_RESTORE\TEMP\A0196376.CPY Adware:Adware/Transponder Not disinfected C:\_RESTORE\TEMP\A0196377.CPY Adware:Adware/Transponder Not disinfected C:\_RESTORE\TEMP\A0196378.CPY Adware:Adware/Transponder Not disinfected C:\_RESTORE\TEMP\A0196379.CPY Adware:Adware/Transponder Not disinfected C:\_RESTORE\TEMP\A0196380.CPY Adware:Adware/Transponder Not disinfected C:\_RESTORE\TEMP\A0196381.CPY Adware:Adware/Transponder Not disinfected C:\_RESTORE\TEMP\A0196382.CPY Adware:Adware/Transponder Not disinfected C:\_RESTORE\TEMP\A0196383.CPY Adware:Adware/Transponder Not disinfected C:\_RESTORE\TEMP\A0196384.CPY Adware:Adware/Transponder Not disinfected C:\_RESTORE\TEMP\A0196385.CPY Adware:Adware/Transponder Not disinfected C:\_RESTORE\TEMP\A0196386.CPY Potentially unwanted tool:Application/PRScheduler Not disinfected C:\_RESTORE\TEMP\A0214283.CPY Adware:Adware/Exact.BargainBuddy Not disinfected C:\_RESTORE\TEMP\A0225617.CPY Adware:Adware/SearchRelevancy Not disinfected C:\_RESTORE\TEMP\A0235909.CPY Adware:Adware/Exact.SearchBar Not disinfected C:\_RESTORE\TEMP\A0235910.CPY Adware:Adware/Exact.SearchBar Not disinfected C:\_RESTORE\TEMP\A0235911.CPY Adware:Adware/Exact.SearchBar Not disinfected C:\_RESTORE\TEMP\A0235912.CPY Potentially unwanted tool:Application/iWon Not disinfected C:\_RESTORE\TEMP\A0296473.CPY Potentially unwanted tool:Application/PRScheduler Not disinfected C:\_RESTORE\TEMP\A0301716.CPY Adware:Adware/Exact.SearchBar Not disinfected C:\_RESTORE\TEMP\A0324800.CPY[C:/WINDOWS/SYSTEM/exdl.exe] Adware:Adware/Exact.SearchBar Not disinfected C:\_RESTORE\TEMP\A0324800.CPY[C:/WINDOWS/SYSTEM/mqexdlm.srg] Adware:Adware/Exact.SearchBar Not disinfected C:\_RESTORE\TEMP\A0324800.CPY[C:/WINDOWS/SYSTEM/exul.exe] Adware:Adware/Exact.SearchBar Not disinfected C:\_RESTORE\TEMP\A0324800.CPY[C:/WINDOWS/SYSTEM/javexulm.vxd] Adware:Adware/Exact.BargainBuddy Not disinfected C:\_RESTORE\TEMP\A0324800.CPY[C:/WINDOWS/SYSTEM/msexreg.exe] Hacktool:HackTool/SRunner.B Not disinfected C:\_RESTORE\TEMP\A0324800.CPY[C:/WINDOWS/SYSTEM/instsrv.exe] Adware:Adware/Exact.SearchBar Not disinfected C:\_RESTORE\TEMP\A0324800.CPY[C:/WINDOWS/SYSTEM/exclean.exe] Adware:Adware/Exact.SearchBar Not disinfected C:\_RESTORE\TEMP\A0324801.CPY Hacktool:HackTool/SRunner.B Not disinfected C:\_RESTORE\TEMP\A0225641.CPY[C:/WINDOWS/SYSTEM/instsrv.exe] Virus:Trj/Downloader.AXA Not disinfected C:\_RESTORE\ARCHIVE\FS1638.CAB[A0142700.CPY] Adware:Adware/BHO Not disinfected C:\_RESTORE\ARCHIVE\FS1647.CAB[W0237163.CPY] Potentially unwanted tool:Application/PRScheduler Not disinfected C:\_RESTORE\ARCHIVE\FS1408.CAB[A0089155.CPY] Virus:Trj/Downloader.AXA Not disinfected C:\_RESTORE\ARCHIVE\FS1592.CAB[A0107661.CPY] Adware:Adware/Trymedia Not disinfected C:\My Documents\Alex\CoffeeTycoon_Setup-dm.exe Potentially unwanted tool:Application/iWon Not disinfected C:\Program Files\iWon\iWonSlot\2.bin\IWONSLOT.DLL Adware:Adware/TopMoxie Not disinfected C:\Program Files\WebSavingsfromEbates\System\Code\a.class Adware:Adware/TopMoxie Not disinfected C:\Program Files\WebSavingsfromEbates\System\Code\b.class Adware:Adware/TopMoxie Not disinfected C:\Program Files\WebSavingsfromEbates\System\Code\ba.class Adware:Adware/TopMoxie Not disinfected C:\Program Files\WebSavingsfromEbates\System\Code\bb.class Adware:Adware/TopMoxie Not disinfected C:\Program Files\WebSavingsfromEbates\System\Code\bc.class Adware:Adware/TopMoxie Not disinfected C:\Program Files\WebSavingsfromEbates\System\Code\bd.class Adware:Adware/MoeMoney Not disinfected C:\Program Files\WebSavingsfromEbates\System\Code\be.class Adware:Adware/MoeMoney Not disinfected C:\Program Files\WebSavingsfromEbates\System\Code\bf.class Adware:Adware/TopMoxie Not disinfected C:\Program Files\WebSavingsfromEbates\System\Code\bg.class Adware:Adware/MoeMoney Not disinfected C:\Program Files\WebSavingsfromEbates\System\Code\bh.class Adware:Adware/TopMoxie Not disinfected C:\Program Files\WebSavingsfromEbates\System\Code\bi.class Adware:Adware/TopMoxie Not disinfected C:\Program Files\WebSavingsfromEbates\System\Code\bj.class Adware:Adware/MoeMoney Not disinfected C:\Program Files\WebSavingsfromEbates\System\Code\bk.class Adware:Adware/TopMoxie Not disinfected C:\Program Files\WebSavingsfromEbates\System\Code\bl.class Adware:Adware/TopMoxie Not disinfected C:\Program Files\WebSavingsfromEbates\System\Code\bm.class Adware:Adware/TopMoxie Not disinfected C:\Program Files\WebSavingsfromEbates\System\Code\bn.class Adware:Adware/MoeMoney Not disinfected C:\Program Files\WebSavingsfromEbates\System\Code\bo.class Adware:Adware/MoeMoney Not disinfected C:\Program Files\WebSavingsfromEbates\System\Code\bp.class Adware:Adware/TopMoxie Not disinfected C:\Program Files\WebSavingsfromEbates\System\Code\bq.class Adware:Adware/MoeMoney Not disinfected C:\Program Files\WebSavingsfromEbates\System\Code\br.class Adware:Adware/TopMoxie Not disinfected C:\Program Files\WebSavingsfromEbates\System\Code\bs.class Adware:Adware/TopMoxie Not disinfected C:\Program Files\WebSavingsfromEbates\System\Code\bt.class Adware:Adware/TopMoxie Not disinfected C:\Program Files\WebSavingsfromEbates\System\Code\bu.class Adware:Adware/TopMoxie Not disinfected C:\Program Files\WebSavingsfromEbates\System\Code\bv.class Adware:Adware/TopMoxie Not disinfected C:\Program Files\WebSavingsfromEbates\System\Code\bw.class Adware:Adware/TopMoxie Not disinfected C:\Program Files\WebSavingsfromEbates\System\Code\bx.class Adware:Adware/TopMoxie Not disinfected C:\Program Files\WebSavingsfromEbates\System\Code\by.class Adware:Adware/TopMoxie Not disinfected C:\Program Files\WebSavingsfromEbates\System\Code\bz.class Adware:Adware/TopMoxie Not disinfected C:\Program Files\WebSavingsfromEbates\System\Code\c.class Adware:Adware/TopMoxie Not disinfected C:\Program Files\WebSavingsfromEbates\System\Code\ca.class Adware:Adware/TopMoxie Not disinfected C:\Program Files\WebSavingsfromEbates\System\Code\cb.class Adware:Adware/TopMoxie Not disinfected C:\Program Files\WebSavingsfromEbates\System\Code\cc.class Adware:Adware/TopMoxie Not disinfected C:\Program Files\WebSavingsfromEbates\System\Code\cd.class Adware:Adware/MoeMoney Not disinfected C:\Program Files\WebSavingsfromEbates\System\Code\ce.class Adware:Adware/TopMoxie Not disinfected C:\Program Files\WebSavingsfromEbates\System\Code\cf.class Adware:Adware/TopMoxie Not disinfected C:\Program Files\WebSavingsfromEbates\System\Code\cg.class Adware:Adware/TopMoxie Not disinfected C:\Program Files\WebSavingsfromEbates\System\Code\ch.class Adware:Adware/TopMoxie Not disinfected C:\Program Files\WebSavingsfromEbates\System\Code\ci.class Adware:Adware/TopMoxie Not disinfected C:\Program Files\WebSavingsfromEbates\System\Code\cj.class Adware:Adware/TopMoxie Not disinfected C:\Program Files\WebSavingsfromEbates\System\Code\ck.class Adware:Adware/TopMoxie Not disinfected C:\Program Files\WebSavingsfromEbates\System\Code\cl.class Adware:Adware/TopMoxie Not disinfected C:\Program Files\WebSavingsfromEbates\System\Code\cm.class Adware:Adware/TopMoxie Not disinfected C:\Program Files\WebSavingsfromEbates\System\Code\cn.class Adware:Adware/TopMoxie Not disinfected C:\Program Files\WebSavingsfromEbates\System\Code\co.class Adware:Adware/TopMoxie Not disinfected C:\Program Files\WebSavingsfromEbates\System\Code\cp.class Adware:Adware/MoeMoney Not disinfected C:\Program Files\WebSavingsfromEbates\System\Code\cq.class Adware:Adware/MoeMoney Not disinfected C:\Program Files\WebSavingsfromEbates\System\Code\cr.class Adware:Adware/TopMoxie Not disinfected C:\Program Files\WebSavingsfromEbates\System\Code\cs.class Adware:Adware/MoeMoney Not disinfected C:\Program Files\WebSavingsfromEbates\System\Code\ct.class Adware:Adware/TopMoxie Not disinfected C:\Program Files\WebSavingsfromEbates\System\Code\cu.class Adware:Adware/TopMoxie Not disinfected C:\Program Files\WebSavingsfromEbates\System\Code\cv.class Adware:Adware/TopMoxie Not disinfected C:\Program Files\WebSavingsfromEbates\System\Code\cx.class Adware:Adware/MoeMoney Not disinfected C:\Program Files\WebSavingsfromEbates\System\Code\cz.class Adware:Adware/TopMoxie Not disinfected C:\Program Files\WebSavingsfromEbates\System\Code\d.class Adware:Adware/TopMoxie Not disinfected C:\Program Files\WebSavingsfromEbates\System\Code\da.class Adware:Adware/TopMoxie Not disinfected C:\Program Files\WebSavingsfromEbates\System\Code\db.class Adware:Adware/TopMoxie Not disinfected C:\Program Files\WebSavingsfromEbates\System\Code\dc.class Adware:Adware/TopMoxie Not disinfected C:\Program Files\WebSavingsfromEbates\System\Code\dd.class Adware:Adware/MoeMoney Not disinfected C:\Program Files\WebSavingsfromEbates\System\Code\de.class Adware:Adware/MoeMoney Not disinfected C:\Program Files\WebSavingsfromEbates\System\Code\df.class Adware:Adware/TopMoxie Not disinfected C:\Program Files\WebSavingsfromEbates\System\Code\di.class Adware:Adware/TopMoxie Not disinfected C:\Program Files\WebSavingsfromEbates\System\Code\dl.class Adware:Adware/MoeMoney Not disinfected C:\Program Files\WebSavingsfromEbates\System\Code\dn.class Adware:Adware/MoeMoney Not disinfected C:\Program Files\WebSavingsfromEbates\System\Code\dp.class Adware:Adware/TopMoxie Not disinfected C:\Program Files\WebSavingsfromEbates\System\Code\dr.class Adware:Adware/TopMoxie Not disinfected C:\Program Files\WebSavingsfromEbates\System\Code\ds.class Adware:Adware/TopMoxie Not disinfected C:\Program Files\WebSavingsfromEbates\System\Code\dt.class Adware:Adware/TopMoxie Not disinfected C:\Program Files\WebSavingsfromEbates\System\Code\du.class Adware:Adware/TopMoxie Not disinfected C:\Program Files\WebSavingsfromEbates\System\Code\dv.class Adware:Adware/TopMoxie Not disinfected C:\Program Files\WebSavingsfromEbates\System\Code\dw.class Adware:Adware/MoeMoney Not disinfected C:\Program Files\WebSavingsfromEbates\System\Code\dy.class Adware:Adware/MoeMoney Not disinfected C:\Program Files\WebSavingsfromEbates\System\Code\dz.class Adware:Adware/TopMoxie Not disinfected C:\Program Files\WebSavingsfromEbates\System\Code\ed.class Adware:Adware/TopMoxie Not disinfected C:\Program Files\WebSavingsfromEbates\System\Code\f.class Adware:Adware/TopMoxie Not disinfected C:\Program Files\WebSavingsfromEbates\System\Code\h.class Adware:Adware/TopMoxie Not disinfected C:\Program Files\WebSavingsfromEbates\System\Code\i.class Adware:Adware/TopMoxie Not disinfected C:\Program Files\WebSavingsfromEbates\System\Code\j.class Adware:Adware/TopMoxie Not disinfected C:\Program Files\WebSavingsfromEbates\System\Code\l.class Adware:Adware/TopMoxie Not disinfected C:\Program Files\WebSavingsfromEbates\System\Code\m.class Adware:Adware/TopMoxie Not disinfected C:\Program Files\WebSavingsfromEbates\System\Code\Main.class Adware:Adware/MoeMoney Not disinfected C:\Program Files\WebSavingsfromEbates\System\Code\n.class Adware:Adware/TopMoxie Not disinfected C:\Program Files\WebSavingsfromEbates\System\Code\p.class Adware:Adware/TopMoxie Not disinfected C:\Program Files\WebSavingsfromEbates\System\Code\q.class Adware:Adware/TopMoxie Not disinfected C:\Program Files\WebSavingsfromEbates\System\Code\r.class Adware:Adware/TopMoxie Not disinfected C:\Program Files\WebSavingsfromEbates\System\Code\s.class Adware:Adware/TopMoxie Not disinfected C:\Program Files\WebSavingsfromEbates\System\Code\t.class Adware:Adware/TopMoxie Not disinfected C:\Program Files\WebSavingsfromEbates\System\Code\u.class Adware:Adware/TopMoxie Not disinfected C:\Program Files\WebSavingsfromEbates\System\Code\w.class Adware:Adware/TopMoxie Not disinfected C:\Program Files\WebSavingsfromEbates\System\Code\x.class

#5 Sam1Taz1

Sam1Taz1

    New Member

  • New Member
  • Pip
  • 5 posts

Posted 06 July 2007 - 11:34 AM

Here's the 2nd half... Adware:Adware/MoeMoney Not disinfected C:\Program Files\WebSavingsfromEbates\System\Code\y.class Adware:Adware/IPInsight Not disinfected C:\Program Files\iolo\System Mechanic 5\Undo\Manual\{3433A6C6-0711-409F-A9E6-03E617FA7C79}\{901CAC7B-DDEB-40CE-A6D3-2F08D9E161B0}.inf[{901CAC7B-DDEB-40CE-A6D3-2F08D9E161B0}.inf] Adware:Adware/IPInsight Not disinfected C:\Program Files\iolo\System Mechanic 5\Undo\Manual\{3433A6C6-0711-409F-A9E6-03E617FA7C79}\{D61849EA-9B8D-4D31-81C3-E089691FA583}.ini[{D61849EA-9B8D-4D31-81C3-E089691FA583}.ini] Adware:Adware/Comet Not disinfected C:\Program Files\iolo\System Mechanic 5\Undo\Manual\{3433A6C6-0711-409F-A9E6-03E617FA7C79}\{FC694B79-92DA-40C5-9970-0419526E183A}.cab[{FC694B79-92DA-40C5-9970-0419526E183A}.cab][CSBand.dll] Adware:Adware/Comet Not disinfected C:\Program Files\iolo\System Mechanic 5\Undo\Manual\{3433A6C6-0711-409F-A9E6-03E617FA7C79}\{FC694B79-92DA-40C5-9970-0419526E183A}.cab[{FC694B79-92DA-40C5-9970-0419526E183A}.cab][csbho.dll] Adware:Adware/Comet Not disinfected C:\Program Files\iolo\System Mechanic 5\Undo\Manual\{3433A6C6-0711-409F-A9E6-03E617FA7C79}\{FC694B79-92DA-40C5-9970-0419526E183A}.cab[{FC694B79-92DA-40C5-9970-0419526E183A}.cab][cscore.dll] Adware:Adware/Comet Not disinfected C:\Program Files\iolo\System Mechanic 5\Undo\Manual\{3433A6C6-0711-409F-A9E6-03E617FA7C79}\{FC694B79-92DA-40C5-9970-0419526E183A}.cab[{FC694B79-92DA-40C5-9970-0419526E183A}.cab][csctx.dll] Adware:Adware/Comet Not disinfected C:\Program Files\iolo\System Mechanic 5\Undo\Manual\{3433A6C6-0711-409F-A9E6-03E617FA7C79}\{FC694B79-92DA-40C5-9970-0419526E183A}.cab[{FC694B79-92DA-40C5-9970-0419526E183A}.cab][cseng.dll] Adware:Adware/Comet Not disinfected C:\Program Files\iolo\System Mechanic 5\Undo\Manual\{3433A6C6-0711-409F-A9E6-03E617FA7C79}\{FC694B79-92DA-40C5-9970-0419526E183A}.cab[{FC694B79-92DA-40C5-9970-0419526E183A}.cab][csietb.dll] Adware:Adware/Comet Not disinfected C:\Program Files\iolo\System Mechanic 5\Undo\Manual\{3433A6C6-0711-409F-A9E6-03E617FA7C79}\{FC694B79-92DA-40C5-9970-0419526E183A}.cab[{FC694B79-92DA-40C5-9970-0419526E183A}.cab][csip.dll] Adware:Adware/Comet Not disinfected C:\Program Files\iolo\System Mechanic 5\Undo\Manual\{3433A6C6-0711-409F-A9E6-03E617FA7C79}\{FC694B79-92DA-40C5-9970-0419526E183A}.cab[{FC694B79-92DA-40C5-9970-0419526E183A}.cab][skinui.dll] Adware:Adware/Comet Not disinfected C:\Program Files\iolo\System Mechanic 5\Undo\Manual\{3433A6C6-0711-409F-A9E6-03E617FA7C79}\{FC694B79-92DA-40C5-9970-0419526E183A}.cab[{FC694B79-92DA-40C5-9970-0419526E183A}.cab][comet.exe] Adware:Adware/Gator Not disinfected C:\Program Files\iolo\System Mechanic 5\Undo\Manual\{3433A6C6-0711-409F-A9E6-03E617FA7C79}\{0EF86B5C-1FE9-4D30-9C88-02DFA218593C}.inf[{0EF86B5C-1FE9-4D30-9C88-02DFA218593C}.inf] Dialer:Dialer.ISB Not disinfected C:\Program Files\iolo\System Mechanic 5\Undo\Manual\{3433A6C6-0711-409F-A9E6-03E617FA7C79}\{4D97D9F7-BBE0-4058-B879-33157ADEA23D}.ocx[{4D97D9F7-BBE0-4058-B879-33157ADEA23D}.ocx] Adware:Adware/NetPals Not disinfected C:\Program Files\iolo\System Mechanic 5\Undo\Manual\{3433A6C6-0711-409F-A9E6-03E617FA7C79}\{19526E57-E2CE-425D-97BD-9F6D3B2706EA}.inf[{19526E57-E2CE-425D-97BD-9F6D3B2706EA}.inf] Adware:Adware/NetPals Not disinfected C:\Program Files\iolo\System Mechanic 5\Undo\Manual\{3433A6C6-0711-409F-A9E6-03E617FA7C79}\{BE9A244A-95BF-4BD2-8E26-6EFD696D2A9E}.inf[{BE9A244A-95BF-4BD2-8E26-6EFD696D2A9E}.inf] Adware:Adware/NetPals Not disinfected C:\Program Files\iolo\System Mechanic 5\Undo\Manual\{3433A6C6-0711-409F-A9E6-03E617FA7C79}\{DB5D0F61-5788-40CC-8BEF-61B7C94183BD}.inf[{DB5D0F61-5788-40CC-8BEF-61B7C94183BD}.inf] Adware:Adware/LocalNRD Not disinfected C:\Program Files\iolo\System Mechanic 5\Undo\Manual\{3433A6C6-0711-409F-A9E6-03E617FA7C79}\{75DF7629-FF9D-42A2-9D83-F784A08D5A45}.inf[{75DF7629-FF9D-42A2-9D83-F784A08D5A45}.inf] Potentially unwanted tool:Application/FunWeb Not disinfected D:\Program Files\Microsoft AntiSpyware\DeactivatedItems\FAB973B5-1DFD-4719-9FC2-4EE246.asq Potentially unwanted tool:Application/MyWay Not disinfected D:\Program Files\Microsoft AntiSpyware\Quarantine\B1067219-F96A-42E7-A73B-C626A6\190807DB-E97E-4496-A4B0-EB90FD Potentially unwanted tool:Application/iWon Not disinfected D:\Program Files\Microsoft AntiSpyware\Quarantine\B1067219-F96A-42E7-A73B-C626A6\92EAEF65-6974-471A-A394-A657ED Potentially unwanted tool:Application/iWon Not disinfected D:\Program Files\Microsoft AntiSpyware\Quarantine\B1067219-F96A-42E7-A73B-C626A6\BE25A17B-5BCE-4A41-92F3-F683D2 Potentially unwanted tool:Application/PRScheduler Not disinfected D:\Program Files\Microsoft AntiSpyware\Quarantine\E1BC237B-2BD5-4AAD-8E5B-A80EA1\2EAD7100-5718-43C2-8E36-24D525 Potentially unwanted tool:Application/PRScheduler Not disinfected D:\Program Files\Microsoft AntiSpyware\Quarantine\DBBD9ACD-55A8-429C-A3F6-FDC4F7\3EC18036-85CB-4EA9-8A95-539705 Potentially unwanted tool:Application/PRScheduler Not disinfected D:\Program Files\Microsoft AntiSpyware\Quarantine\69F15525-0F9A-4640-AA04-B7DF23\491AFEA6-3116-49C3-96DE-E6A195 Virus:Generic Malware Disinfected D:\Program Files\AWS\WeatherBug\MiniBugTransporter.dll Potentially unwanted tool:Application/iWon Not disinfected D:\Program Files\iWon\iWonSlot\1.BIN\IWONSLOT.DLL Potentially unwanted tool:Application/FunWeb Not disinfected D:\Program Files\MSN Messenger\MSIMG32.DLL Spyware:Spyware/Iehelp Not disinfected D:\Program Files\iWin Games\iWinGamesHookIE.dll Potentially unwanted tool:Application/MSNContentPlus Not disinfected D:\WINDOWS\MSNLOGM.EXE Potentially unwanted tool:Application/MSNContentPlus Not disinfected D:\WINDOWS\MSNLOGS.EXE Potentially unwanted tool:Application/MyWebSearch Not disinfected D:\Documents and Settings\DEFAULT\Desktop\TOOLS\BACKUPS\backup-20061009-141906-359.dll Spyware:Cookie/myaffiliateprogram Not disinfected D:\Documents and Settings\DEFAULT\Cookies\default@www.myaffiliateprogram[2].txt Spyware:Cookie/NewMedia Not disinfected D:\Documents and Settings\DEFAULT\Cookies\default@anm.co[2].txt Spyware:Cookie/Yadro Not disinfected D:\Documents and Settings\DEFAULT\Cookies\default@yadro[1].txt Spyware:Cookie/888 Not disinfected D:\Documents and Settings\DEFAULT\Cookies\default@888[2].txt Spyware:Cookie/Xiti Not disinfected D:\Documents and Settings\DEFAULT\Cookies\default@xiti[1].txt Spyware:Cookie/2o7 Not disinfected D:\Documents and Settings\DEFAULT\Application Data\Mozilla\Firefox\Profilesjllnbl4.default\COOKIES.TXT[.2o7.net/] Spyware:Cookie/Doubleclick Not disinfected D:\Documents and Settings\DEFAULT\Application Data\Mozilla\Firefox\Profilesjllnbl4.default\COOKIES.TXT[.doubleclick.net/] Spyware:Cookie/Serving-sys Not disinfected D:\Documents and Settings\DEFAULT\Application Data\Mozilla\Firefox\Profilesjllnbl4.default\COOKIES.TXT[.serving-sys.com/] Spyware:Cookie/Serving-sys Not disinfected D:\Documents and Settings\DEFAULT\Application Data\Mozilla\Firefox\Profilesjllnbl4.default\COOKIES.TXT[.bs.serving-sys.com/] Spyware:Cookie/Mediaplex Not disinfected D:\Documents and Settings\DEFAULT\Application Data\Mozilla\Firefox\Profilesjllnbl4.default\COOKIES.TXT[.mediaplex.com/] Spyware:Cookie/Tribalfusion Not disinfected D:\Documents and Settings\DEFAULT\Application Data\Mozilla\Firefox\Profilesjllnbl4.default\COOKIES.TXT[.tribalfusion.com/] Spyware:Cookie/WebtrendsLive Not disinfected D:\Documents and Settings\DEFAULT\Application Data\Mozilla\Firefox\Profilesjllnbl4.default\COOKIES.TXT[statse.webtrendslive.com/] Spyware:Cookie/Atlas DMT Not disinfected D:\Documents and Settings\DEFAULT\Application Data\Mozilla\Firefox\Profilesjllnbl4.default\COOKIES.TXT[.atdmt.com/] Spyware:Cookie/Casalemedia Not disinfected D:\Documents and Settings\DEFAULT\Application Data\Mozilla\Firefox\Profilesjllnbl4.default\COOKIES.TXT[.casalemedia.com/] Spyware:Cookie/DomainSponsor Not disinfected D:\Documents and Settings\DEFAULT\Application Data\Mozilla\Firefox\Profilesjllnbl4.default\COOKIES.TXT[landing.domainsponsor.com/] Spyware:Cookie/Advertising Not disinfected D:\Documents and Settings\DEFAULT\Application Data\Mozilla\Firefox\Profilesjllnbl4.default\COOKIES.TXT[.advertising.com/] Spyware:Cookie/FastClick Not disinfected D:\Documents and Settings\DEFAULT\Application Data\Mozilla\Firefox\Profilesjllnbl4.default\COOKIES.TXT[.fastclick.net/] Spyware:Cookie/YieldManager Not disinfected D:\Documents and Settings\DEFAULT\Application Data\Mozilla\Firefox\Profilesjllnbl4.default\COOKIES.TXT[ad.yieldmanager.com/] Spyware:Cookie/Zedo Not disinfected D:\Documents and Settings\DEFAULT\Application Data\Mozilla\Firefox\Profilesjllnbl4.default\COOKIES.TXT[.zedo.com/] Spyware:Cookie/Com.com Not disinfected D:\Documents and Settings\DEFAULT\Application Data\Mozilla\Firefox\Profilesjllnbl4.default\COOKIES.TXT[.com.com/] Spyware:Cookie/Overture Not disinfected D:\Documents and Settings\DEFAULT\Application Data\Mozilla\Firefox\Profilesjllnbl4.default\COOKIES.TXT[.overture.com/] Spyware:Cookie/Overture Not disinfected D:\Documents and Settings\DEFAULT\Application Data\Mozilla\Firefox\Profilesjllnbl4.default\COOKIES.TXT[.perf.overture.com/] Spyware:Cookie/Overture Not disinfected D:\Documents and Settings\DEFAULT\Application Data\Mozilla\Firefox\Profilesjllnbl4.default\COOKIES.TXT[.overture.com/] Spyware:Cookie/PointRoll Not disinfected D:\Documents and Settings\DEFAULT\Application Data\Mozilla\Firefox\Profilesjllnbl4.default\COOKIES.TXT[.ads.pointroll.com/] Spyware:Cookie/Searchportal Not disinfected D:\Documents and Settings\DEFAULT\Application Data\Mozilla\Firefox\Profilesjllnbl4.default\COOKIES.TXT[searchportal.information.com/] Spyware:Cookie/RealMedia Not disinfected D:\Documents and Settings\DEFAULT\Application Data\Mozilla\Firefox\Profilesjllnbl4.default\COOKIES.TXT[.247realmedia.com/] Spyware:Cookie/Adtech Not disinfected D:\Documents and Settings\DEFAULT\Application Data\Mozilla\Firefox\Profilesjllnbl4.default\COOKIES.TXT[.adtech.de/] Spyware:Cookie/Falkag Not disinfected D:\Documents and Settings\DEFAULT\Application Data\Mozilla\Firefox\Profilesjllnbl4.default\COOKIES.TXT[.as-us.falkag.net/] Spyware:Cookie/Atwola Not disinfected D:\Documents and Settings\DEFAULT\Application Data\Mozilla\Firefox\Profilesjllnbl4.default\COOKIES.TXT[.atwola.com/] Spyware:Cookie/bravenetA Not disinfected D:\Documents and Settings\DEFAULT\Application Data\Mozilla\Firefox\Profilesjllnbl4.default\COOKIES.TXT[.bravenet.com/] Spyware:Cookie/BurstNet Not disinfected D:\Documents and Settings\DEFAULT\Application Data\Mozilla\Firefox\Profilesjllnbl4.default\COOKIES.TXT[.burstnet.com/] Spyware:Cookie/Go Not disinfected D:\Documents and Settings\DEFAULT\Application Data\Mozilla\Firefox\Profilesjllnbl4.default\COOKIES.TXT[.go.com/] Spyware:Cookie/Screensavers Not disinfected D:\Documents and Settings\DEFAULT\Application Data\Mozilla\Firefox\Profilesjllnbl4.default\COOKIES.TXT[.i.screensavers.com/] Spyware:Cookie/AspinallsOnlineCasino Not disinfected D:\Documents and Settings\DEFAULT\Application Data\Mozilla\Firefox\Profilesjllnbl4.default\COOKIES.TXT[.pacificpoker.com/] Spyware:Cookie/QuestionMarket Not disinfected D:\Documents and Settings\DEFAULT\Application Data\Mozilla\Firefox\Profilesjllnbl4.default\COOKIES.TXT[.questionmarket.com/] Spyware:Cookie/RealMedia Not disinfected D:\Documents and Settings\DEFAULT\Application Data\Mozilla\Firefox\Profilesjllnbl4.default\COOKIES.TXT[.realmedia.com/] Spyware:Cookie/WUpd Not disinfected D:\Documents and Settings\DEFAULT\Application Data\Mozilla\Firefox\Profilesjllnbl4.default\COOKIES.TXT[.revenue.net/] Spyware:Cookie/Traffic Marketplace Not disinfected D:\Documents and Settings\DEFAULT\Application Data\Mozilla\Firefox\Profilesjllnbl4.default\COOKIES.TXT[.trafficmp.com/] Spyware:Cookie/Humanclick Not disinfected D:\Documents and Settings\DEFAULT\Application Data\Mozilla\Firefox\Profilesjllnbl4.default\COOKIES.TXT[hc2.humanclick.com/] Spyware:Cookie/2o7 Not disinfected D:\Documents and Settings\DEFAULT\Application Data\Mozilla\Firefox\Profilesjllnbl4.default\cookies-1.txt[.2o7.net/] Spyware:Cookie/2o7 Not disinfected D:\Documents and Settings\DEFAULT\Application Data\Mozilla\Firefox\Profilesjllnbl4.default\cookies-2.txt[.2o7.net/] Spyware:Cookie/RealMedia Not disinfected D:\Documents and Settings\DEFAULT\Application Data\Mozilla\Firefox\Profiles\hzlod0cj.Default User\COOKIES.TXT[.247realmedia.com/] Spyware:Cookie/2o7 Not disinfected D:\Documents and Settings\DEFAULT\Application Data\Mozilla\Firefox\Profiles\hzlod0cj.Default User\COOKIES.TXT[.2o7.net/] Spyware:Cookie/PointRoll Not disinfected D:\Documents and Settings\DEFAULT\Application Data\Mozilla\Firefox\Profiles\hzlod0cj.Default User\COOKIES.TXT[.ads.pointroll.com/] Spyware:Cookie/Atwola Not disinfected D:\Documents and Settings\DEFAULT\Application Data\Mozilla\Firefox\Profiles\hzlod0cj.Default User\COOKIES.TXT[.atwola.com/] Spyware:Cookie/Belnk Not disinfected D:\Documents and Settings\DEFAULT\Application Data\Mozilla\Firefox\Profiles\hzlod0cj.Default User\COOKIES.TXT[.belnk.com/] Spyware:Cookie/BurstNet Not disinfected D:\Documents and Settings\DEFAULT\Application Data\Mozilla\Firefox\Profiles\hzlod0cj.Default User\COOKIES.TXT[.burstnet.com/] Spyware:Cookie/CentrPort Not disinfected D:\Documents and Settings\DEFAULT\Application Data\Mozilla\Firefox\Profiles\hzlod0cj.Default User\COOKIES.TXT[.centrport.net/] Spyware:Cookie/Com.com Not disinfected D:\Documents and Settings\DEFAULT\Application Data\Mozilla\Firefox\Profiles\hzlod0cj.Default User\COOKIES.TXT[.com.com/] Spyware:Cookie/Go Not disinfected D:\Documents and Settings\DEFAULT\Application Data\Mozilla\Firefox\Profiles\hzlod0cj.Default User\COOKIES.TXT[.go.com/] Spyware:Cookie/Maxserving Not disinfected D:\Documents and Settings\DEFAULT\Application Data\Mozilla\Firefox\Profiles\hzlod0cj.Default User\COOKIES.TXT[.maxserving.com/] Spyware:Cookie/Overture Not disinfected D:\Documents and Settings\DEFAULT\Application Data\Mozilla\Firefox\Profiles\hzlod0cj.Default User\COOKIES.TXT[.perf.overture.com/] Spyware:Cookie/QkSrv Not disinfected D:\Documents and Settings\DEFAULT\Application Data\Mozilla\Firefox\Profiles\hzlod0cj.Default User\COOKIES.TXT[.qksrv.net/] Spyware:Cookie/QuestionMarket Not disinfected D:\Documents and Settings\DEFAULT\Application Data\Mozilla\Firefox\Profiles\hzlod0cj.Default User\COOKIES.TXT[.questionmarket.com/] Spyware:Cookie/RealMedia Not disinfected D:\Documents and Settings\DEFAULT\Application Data\Mozilla\Firefox\Profiles\hzlod0cj.Default User\COOKIES.TXT[.realmedia.com/] Spyware:Cookie/Serving-sys Not disinfected D:\Documents and Settings\DEFAULT\Application Data\Mozilla\Firefox\Profiles\hzlod0cj.Default User\COOKIES.TXT[.serving-sys.com/] Spyware:Cookie/Target Not disinfected D:\Documents and Settings\DEFAULT\Application Data\Mozilla\Firefox\Profiles\hzlod0cj.Default User\COOKIES.TXT[.target.com/] Spyware:Cookie/Tickle Not disinfected D:\Documents and Settings\DEFAULT\Application Data\Mozilla\Firefox\Profiles\hzlod0cj.Default User\COOKIES.TXT[.tickle.com/] Spyware:Cookie/Toplist Not disinfected D:\Documents and Settings\DEFAULT\Application Data\Mozilla\Firefox\Profiles\hzlod0cj.Default User\COOKIES.TXT[.toplist.cz/] Spyware:Cookie/Traffic Marketplace Not disinfected D:\Documents and Settings\DEFAULT\Application Data\Mozilla\Firefox\Profiles\hzlod0cj.Default User\COOKIES.TXT[.trafficmp.com/] Spyware:Cookie/Tribalfusion Not disinfected D:\Documents and Settings\DEFAULT\Application Data\Mozilla\Firefox\Profiles\hzlod0cj.Default User\COOKIES.TXT[.tribalfusion.com/] Spyware:Cookie/YieldManager Not disinfected D:\Documents and Settings\DEFAULT\Application Data\Mozilla\Firefox\Profiles\hzlod0cj.Default User\COOKIES.TXT[ad.yieldmanager.com/] Spyware:Cookie/Serving-sys Not disinfected D:\Documents and Settings\DEFAULT\Application Data\Mozilla\Firefox\Profiles\hzlod0cj.Default User\COOKIES.TXT[bs.serving-sys.com/] Spyware:Cookie/Bridgetrack Not disinfected D:\Documents and Settings\DEFAULT\Application Data\Mozilla\Firefox\Profiles\hzlod0cj.Default User\COOKIES.TXT[citi.bridgetrack.com/] Spyware:Cookie/Server.iad.Liveperson Not disinfected D:\Documents and Settings\DEFAULT\Application Data\Mozilla\Firefox\Profiles\hzlod0cj.Default User\COOKIES.TXT[server.iad.liveperson.net/] Spyware:Cookie/Server.iad.Liveperson Not disinfected D:\Documents and Settings\DEFAULT\Application Data\Mozilla\Firefox\Profiles\hzlod0cj.Default User\COOKIES.TXT[server.iad.liveperson.net/hc/88244075] Adware:Adware/FlashTrack Not disinfected D:\Documents and Settings\DEFAULT\Local Settings\Temporary Internet Files\Content.IE5\M7A3YLER\channels_02[1].gif Adware:Adware/IST.ISTBar Not disinfected D:\Documents and Settings\DEFAULT\Local Settings\Temp\iinstall24649.exe Virus:Trj/Agent.DIL Disinfected D:\Documents and Settings\DEFAULT\Local Settings\Temp\Install-Emoticons.exe Spyware:Cookie/2o7 Not disinfected D:\Documents and Settings\Test\Application Data\Mozilla\Firefox\Profiles\zgyyflbw.default\COOKIES.TXT[.2o7.net/] Spyware:Cookie/Casalemedia Not disinfected D:\Documents and Settings\Test\Application Data\Mozilla\Firefox\Profiles\zgyyflbw.default\COOKIES.TXT[.casalemedia.com/] Spyware:Cookie/FastClick Not disinfected D:\Documents and Settings\Test\Application Data\Mozilla\Firefox\Profiles\zgyyflbw.default\COOKIES.TXT[.fastclick.net/] Spyware:Cookie/Tribalfusion Not disinfected D:\Documents and Settings\Test\Application Data\Mozilla\Firefox\Profiles\zgyyflbw.default\COOKIES.TXT[.tribalfusion.com/] Spyware:Cookie/Atlas DMT Not disinfected D:\Documents and Settings\Test\Application Data\Mozilla\Firefox\Profiles\zgyyflbw.default\COOKIES.TXT[.atdmt.com/] Spyware:Cookie/Doubleclick Not disinfected D:\Documents and Settings\Test\Application Data\Mozilla\Firefox\Profiles\zgyyflbw.default\COOKIES.TXT[.doubleclick.net/] Spyware:Cookie/YieldManager Not disinfected D:\Documents and Settings\Test\Application Data\Mozilla\Firefox\Profiles\zgyyflbw.default\COOKIES.TXT[ad.yieldmanager.com/] Spyware:Cookie/Traffic Marketplace Not disinfected D:\Documents and Settings\Test\Application Data\Mozilla\Firefox\Profiles\zgyyflbw.default\COOKIES.TXT[.trafficmp.com/] Spyware:Cookie/Advertising Not disinfected D:\Documents and Settings\Test\Application Data\Mozilla\Firefox\Profiles\zgyyflbw.default\COOKIES.TXT[.advertising.com/] Adware:Adware/FlashTrack Not disinfected D:\Documents and Settings\CoolDudeGoMoo\Local Settings\Temporary Internet Files\Content.IE5\8T6ZOHEB\channels_02[1].gif Spyware:Cookie/Screensavers Not disinfected D:\Documents and Settings\CoolDudeGoMoo\Cookies\cooldudegomoo@i.screensavers[1].txt Spyware:Cookie/Atlas DMT Not disinfected D:\Documents and Settings\CoolDudeGoMoo\Application Data\Mozilla\Firefox\Profiles\ykc7pj3p.default\COOKIES.TXT[.atdmt.com/] Spyware:Cookie/Advertising Not disinfected D:\Documents and Settings\CoolDudeGoMoo\Application Data\Mozilla\Firefox\Profiles\ykc7pj3p.default\COOKIES.TXT[.advertising.com/] Spyware:Cookie/BurstNet Not disinfected D:\Documents and Settings\CoolDudeGoMoo\Application Data\Mozilla\Firefox\Profiles\ykc7pj3p.default\COOKIES.TXT[.burstnet.com/] Spyware:Cookie/Doubleclick Not disinfected D:\Documents and Settings\CoolDudeGoMoo\Application Data\Mozilla\Firefox\Profiles\ykc7pj3p.default\COOKIES.TXT[.doubleclick.net/] Spyware:Cookie/YieldManager Not disinfected D:\Documents and Settings\CoolDudeGoMoo\Application Data\Mozilla\Firefox\Profiles\ykc7pj3p.default\COOKIES.TXT[ad.yieldmanager.com/] Spyware:Cookie/Casalemedia Not disinfected D:\Documents and Settings\CoolDudeGoMoo\Application Data\Mozilla\Firefox\Profiles\ykc7pj3p.default\COOKIES.TXT[.casalemedia.com/] Spyware:Cookie/Mediaplex Not disinfected D:\Documents and Settings\CoolDudeGoMoo\Application Data\Mozilla\Firefox\Profiles\ykc7pj3p.default\COOKIES.TXT[.mediaplex.com/] Spyware:Cookie/Tribalfusion Not disinfected D:\Documents and Settings\CoolDudeGoMoo\Application Data\Mozilla\Firefox\Profiles\ykc7pj3p.default\COOKIES.TXT[.tribalfusion.com/] Spyware:Cookie/FastClick Not disinfected D:\Documents and Settings\CoolDudeGoMoo\Application Data\Mozilla\Firefox\Profiles\ykc7pj3p.default\COOKIES.TXT[.fastclick.net/] Spyware:Cookie/Statcounter Not disinfected D:\Documents and Settings\CoolDudeGoMoo\Application Data\Mozilla\Firefox\Profiles\ykc7pj3p.default\COOKIES.TXT[.statcounter.com/] Spyware:Cookie/FastClick Not disinfected D:\Documents and Settings\CoolDudeGoMoo\Application Data\Mozilla\Firefox\Profiles\ykc7pj3p.default\COOKIES.TXT[.fastclick.net/] Spyware:Cookie/WUpd Not disinfected D:\Documents and Settings\CoolDudeGoMoo\Application Data\Mozilla\Firefox\Profiles\ykc7pj3p.default\COOKIES.TXT[.revenue.net/] Spyware:Cookie/Searchportal Not disinfected D:\Documents and Settings\CoolDudeGoMoo\Application Data\Mozilla\Firefox\Profiles\ykc7pj3p.default\COOKIES.TXT[searchportal.information.com/] Spyware:Cookie/2o7 Not disinfected D:\Documents and Settings\CoolDudeGoMoo\Application Data\Mozilla\Firefox\Profiles\ykc7pj3p.default\COOKIES.TXT[.2o7.net/] Spyware:Cookie/Toplist Not disinfected D:\Documents and Settings\CoolDudeGoMoo\Application Data\Mozilla\Firefox\Profiles\ykc7pj3p.default\COOKIES.TXT[.toplist.cz/] Spyware:Cookie/Com.com Not disinfected D:\Documents and Settings\CoolDudeGoMoo\Application Data\Mozilla\Firefox\Profiles\ykc7pj3p.default\COOKIES.TXT[.com.com/] Spyware:Cookie/PointRoll Not disinfected D:\Documents and Settings\CoolDudeGoMoo\Application Data\Mozilla\Firefox\Profiles\ykc7pj3p.default\COOKIES.TXT[.ads.pointroll.com/] Spyware:Cookie/Zedo Not disinfected D:\Documents and Settings\CoolDudeGoMoo\Application Data\Mozilla\Firefox\Profiles\ykc7pj3p.default\COOKIES.TXT[.zedo.com/] Spyware:Cookie/RealMedia Not disinfected D:\Documents and Settings\CoolDudeGoMoo\Application Data\Mozilla\Firefox\Profiles\ykc7pj3p.default\COOKIES.TXT[.247realmedia.com/] Spyware:Cookie/Falkag Not disinfected D:\Documents and Settings\CoolDudeGoMoo\Application Data\Mozilla\Firefox\Profiles\ykc7pj3p.default\COOKIES.TXT[.as-us.falkag.net/] Spyware:Cookie/Atwola Not disinfected D:\Documents and Settings\CoolDudeGoMoo\Application Data\Mozilla\Firefox\Profiles\ykc7pj3p.default\COOKIES.TXT[.atwola.com/] Spyware:Cookie/Serving-sys Not disinfected D:\Documents and Settings\CoolDudeGoMoo\Application Data\Mozilla\Firefox\Profiles\ykc7pj3p.default\COOKIES.TXT[.bs.serving-sys.com/] Spyware:Cookie/cs.sexcounter Not disinfected D:\Documents and Settings\CoolDudeGoMoo\Application Data\Mozilla\Firefox\Profiles\ykc7pj3p.default\COOKIES.TXT[.cs.sexcounter.com/] Spyware:Cookie/Go Not disinfected D:\Documents and Settings\CoolDudeGoMoo\Application Data\Mozilla\Firefox\Profiles\ykc7pj3p.default\COOKIES.TXT[.go.com/] Spyware:Cookie/Screensavers Not disinfected D:\Documents and Settings\CoolDudeGoMoo\Application Data\Mozilla\Firefox\Profiles\ykc7pj3p.default\COOKIES.TXT[.i.screensavers.com/] Spyware:Cookie/Overture Not disinfected D:\Documents and Settings\CoolDudeGoMoo\Application Data\Mozilla\Firefox\Profiles\ykc7pj3p.default\COOKIES.TXT[.overture.com/] Spyware:Cookie/Overture Not disinfected D:\Documents and Settings\CoolDudeGoMoo\Application Data\Mozilla\Firefox\Profiles\ykc7pj3p.default\COOKIES.TXT[.perf.overture.com/] Spyware:Cookie/QuestionMarket Not disinfected D:\Documents and Settings\CoolDudeGoMoo\Application Data\Mozilla\Firefox\Profiles\ykc7pj3p.default\COOKIES.TXT[.questionmarket.com/] Spyware:Cookie/RealMedia Not disinfected D:\Documents and Settings\CoolDudeGoMoo\Application Data\Mozilla\Firefox\Profiles\ykc7pj3p.default\COOKIES.TXT[.realmedia.com/] Spyware:Cookie/Serving-sys Not disinfected D:\Documents and Settings\CoolDudeGoMoo\Application Data\Mozilla\Firefox\Profiles\ykc7pj3p.default\COOKIES.TXT[.serving-sys.com/] Spyware:Cookie/Tickle Not disinfected D:\Documents and Settings\CoolDudeGoMoo\Application Data\Mozilla\Firefox\Profiles\ykc7pj3p.default\COOKIES.TXT[.tickle.com/] Spyware:Cookie/Traffic Marketplace Not disinfected D:\Documents and Settings\CoolDudeGoMoo\Application Data\Mozilla\Firefox\Profiles\ykc7pj3p.default\COOKIES.TXT[.trafficmp.com/] Spyware:Cookie/Serving-sys Not disinfected D:\Documents and Settings\CoolDudeGoMoo\Application Data\Mozilla\Firefox\Profiles\ykc7pj3p.default\COOKIES.TXT[bs.serving-sys.com/] Spyware:Cookie/Comclick Not disinfected D:\Documents and Settings\CoolDudeGoMoo\Application Data\Mozilla\Firefox\Profiles\ykc7pj3p.default\COOKIES.TXT[fl01.ct2.comclick.com/] Spyware:Cookie/onestat.com Not disinfected D:\Documents and Settings\CoolDudeGoMoo\Application Data\Mozilla\Firefox\Profiles\ykc7pj3p.default\COOKIES.TXT[stat.onestat.com/] Spyware:Cookie/Atwola Not disinfected D:\Documents and Settings\Dad\Cookies\dad@atwola[3].txt Spyware:Cookie/Atwola Not disinfected D:\Documents and Settings\Dad\Cookies\dad@atwola[2].txt Spyware:Cookie/Atwola Not disinfected D:\Documents and Settings\Dad\Cookies\dad@atwola[1].txt Spyware:Cookie/2o7 Not disinfected D:\Documents and Settings\Dad\Application Data\Mozilla\Firefox\Profiles\wkmj85rv.default\COOKIES.TXT[.2o7.net/] Spyware:Cookie/2o7 Not disinfected D:\Documents and Settings\Dad\Application Data\Mozilla\Firefox\Profiles\wkmj85rv.default\COOKIES.TXT[.112.2o7.net/] Spyware:Cookie/2o7 Not disinfected D:\Documents and Settings\Dad\Application Data\Mozilla\Firefox\Profiles\wkmj85rv.default\COOKIES.TXT[.2o7.net/] Spyware:Cookie/Doubleclick Not disinfected D:\Documents and Settings\Dad\Application Data\Mozilla\Firefox\Profiles\wkmj85rv.default\COOKIES.TXT[.doubleclick.net/] Spyware:Cookie/2o7 Not disinfected D:\Documents and Settings\Dad\Application Data\Mozilla\Firefox\Profiles\wkmj85rv.default\COOKIES.TXT[.2o7.net/] Spyware:Cookie/Serving-sys Not disinfected D:\Documents and Settings\Dad\Application Data\Mozilla\Firefox\Profiles\wkmj85rv.default\COOKIES.TXT[.serving-sys.com/] Spyware:Cookie/Serving-sys Not disinfected D:\Documents and Settings\Dad\Application Data\Mozilla\Firefox\Profiles\wkmj85rv.default\COOKIES.TXT[bs.serving-sys.com/] Spyware:Cookie/Serving-sys Not disinfected D:\Documents and Settings\Dad\Application Data\Mozilla\Firefox\Profiles\wkmj85rv.default\COOKIES.TXT[.serving-sys.com/] Spyware:Cookie/Serving-sys Not disinfected D:\Documents and Settings\Dad\Application Data\Mozilla\Firefox\Profiles\wkmj85rv.default\COOKIES.TXT[.bs.serving-sys.com/] Spyware:Cookie/Clickbank Not disinfected D:\Documents and Settings\Dad\Application Data\Mozilla\Firefox\Profiles\wkmj85rv.default\COOKIES.TXT[.clickbank.net/] Spyware:Cookie/WebtrendsLive Not disinfected D:\Documents and Settings\Dad\Application Data\Mozilla\Firefox\Profiles\wkmj85rv.default\COOKIES.TXT[statse.webtrendslive.com/] Spyware:Cookie/YieldManager Not disinfected D:\Documents and Settings\Dad\Application Data\Mozilla\Firefox\Profiles\wkmj85rv.default\COOKIES.TXT[ad.yieldmanager.com/] Spyware:Cookie/FastClick Not disinfected D:\Documents and Settings\Dad\Application Data\Mozilla\Firefox\Profiles\wkmj85rv.default\COOKIES.TXT[.fastclick.net/] Spyware:Cookie/Overture Not disinfected D:\Documents and Settings\Dad\Application Data\Mozilla\Firefox\Profiles\wkmj85rv.default\COOKIES.TXT[.overture.com/] Spyware:Cookie/Atwola Not disinfected D:\Documents and Settings\Dad\Application Data\Mozilla\Firefox\Profiles\wkmj85rv.default\COOKIES.TXT[.atwola.com/] Spyware:Cookie/Maxserving Not disinfected D:\Documents and Settings\Dad\Application Data\Mozilla\Firefox\Profiles\wkmj85rv.default\COOKIES.TXT[.maxserving.com/] Spyware:Cookie/Atlas DMT Not disinfected D:\Documents and Settings\Dad\Application Data\Mozilla\Firefox\Profiles\wkmj85rv.default\COOKIES.TXT[.atdmt.com/] Spyware:Cookie/Mediaplex Not disinfected D:\Documents and Settings\Dad\Application Data\Mozilla\Firefox\Profiles\wkmj85rv.default\COOKIES.TXT[.mediaplex.com/] Spyware:Cookie/Advertising Not disinfected D:\Documents and Settings\Dad\Application Data\Mozilla\Firefox\Profiles\wkmj85rv.default\COOKIES.TXT[.advertising.com/] Spyware:Cookie/Server.iad.Liveperson Not disinfected D:\Documents and Settings\Dad\Application Data\Mozilla\Firefox\Profiles\wkmj85rv.default\COOKIES.TXT[server.iad.liveperson.net/hc/71648812] Spyware:Cookie/Server.iad.Liveperson Not disinfected D:\Documents and Settings\Dad\Application Data\Mozilla\Firefox\Profiles\wkmj85rv.default\COOKIES.TXT[server.iad.liveperson.net/] Spyware:Cookie/Server.iad.Liveperson Not disinfected D:\Documents and Settings\Dad\Application Data\Mozilla\Firefox\Profiles\wkmj85rv.default\COOKIES.TXT[server.iad.liveperson.net/hc/71648812] Spyware:Cookie/Statcounter Not disinfected D:\Documents and Settings\Dad\Application Data\Mozilla\Firefox\Profiles\wkmj85rv.default\COOKIES.TXT[.statcounter.com/] Spyware:Cookie/Zedo Not disinfected D:\Documents and Settings\Dad\Application Data\Mozilla\Firefox\Profiles\wkmj85rv.default\COOKIES.TXT[.zedo.com/] Spyware:Cookie/Apmebf Not disinfected D:\Documents and Settings\Dad\Application Data\Mozilla\Firefox\Profiles\wkmj85rv.default\COOKIES.TXT[.apmebf.com/] Spyware:Cookie/Overture Not disinfected D:\Documents and Settings\Dad\Application Data\Mozilla\Firefox\Profiles\wkmj85rv.default\COOKIES.TXT[.perf.overture.com/] Spyware:Cookie/Casalemedia Not disinfected D:\Documents and Settings\Dad\Application Data\Mozilla\Firefox\Profiles\wkmj85rv.default\COOKIES.TXT[.casalemedia.com/] Spyware:Cookie/QuestionMarket Not disinfected D:\Documents and Settings\Dad\Application Data\Mozilla\Firefox\Profiles\wkmj85rv.default\COOKIES.TXT[.questionmarket.com/] Spyware:Cookie/Tribalfusion Not disinfected D:\Documents and Settings\Dad\Application Data\Mozilla\Firefox\Profiles\wkmj85rv.default\COOKIES.TXT[.tribalfusion.com/] Spyware:Cookie/RealMedia Not disinfected D:\Documents and Settings\Dad\Application Data\Mozilla\Firefox\Profiles\wkmj85rv.default\COOKIES.TXT[.realmedia.com/] Spyware:Cookie/Bridgetrack Not disinfected D:\Documents and Settings\Dad\Application Data\Mozilla\Firefox\Profiles\wkmj85rv.default\COOKIES.TXT[citi.bridgetrack.com/] Spyware:Cookie/PointRoll Not disinfected D:\Documents and Settings\Dad\Application Data\Mozilla\Firefox\Profiles\wkmj85rv.default\COOKIES.TXT[.ads.pointroll.com/] Spyware:Cookie/Bfast Not disinfected D:\Documents and Settings\Dad\Application Data\Mozilla\Firefox\Profiles\wkmj85rv.default\COOKIES.TXT[.bfast.com/] Spyware:Cookie/Bluestreak Not disinfected D:\Documents and Settings\Dad\Application Data\Mozilla\Firefox\Profiles\wkmj85rv.default\COOKIES.TXT[.bluestreak.com/] Spyware:Cookie/Valueclick Not disinfected D:\Documents and Settings\Dad\Application Data\Mozilla\Firefox\Profiles\wkmj85rv.default\COOKIES.TXT[.valueclick.com/] Spyware:Cookie/CentrPort Not disinfected D:\Documents and Settings\Dad\Application Data\Mozilla\Firefox\Profiles\wkmj85rv.default\COOKIES.TXT[.centrport.net/] Spyware:Cookie/Com.com Not disinfected D:\Documents and Settings\Dad\Application Data\Mozilla\Firefox\Profiles\wkmj85rv.default\COOKIES.TXT[.com.com/] Spyware:Cookie/Inet-Traffic Not disinfected D:\Documents and Settings\Dad\Application Data\Mozilla\Firefox\Profiles\wkmj85rv.default\COOKIES.TXT[.inet-traffic.com/] Spyware:Cookie/Belnk Not disinfected D:\Documents and Settings\Dad\Application Data\Mozilla\Firefox\Profiles\wkmj85rv.default\COOKIES.TXT[.belnk.com/] Spyware:Cookie/Belnk Not disinfected D:\Documents and Settings\Dad\Application Data\Mozilla\Firefox\Profiles\wkmj85rv.default\COOKIES.TXT[.ath.belnk.com/] Spyware:Cookie/WebtrendsLive Not disinfected D:\Documents and Settings\Dad\Application Data\Mozilla\Firefox\Profiles\wkmj85rv.default\COOKIES.TXT[statse.webtrendslive.com/dcsxkp5s7qljwpspv9fkjpq2u_6n4h] Spyware:Cookie/web-stat Not disinfected D:\Documents and Settings\Dad\Application Data\Mozilla\Firefox\Profiles\wkmj85rv.default\COOKIES.TXT[www.web-stat.com/] Spyware:Cookie/BurstBeacon Not disinfected D:\Documents and Settings\Kylee\Cookies\kylee@www.burstbeacon[2].txt Spyware:Cookie/BurstNet Not disinfected D:\Documents and Settings\Kylee\Cookies\kylee@burstnet[2].txt Spyware:Cookie/Atlas DMT Not disinfected D:\Documents and Settings\Kylee\Cookies\kylee@atdmt[2].txt Spyware:Cookie/BurstNet Not disinfected D:\Documents and Settings\Kylee\Cookies\kylee@burstnet[3].txt Spyware:Cookie/Belnk Not disinfected D:\Documents and Settings\Kylee\Cookies\kylee@belnk[1].txt Spyware:Cookie/Belnk Not disinfected D:\Documents and Settings\Kylee\Cookies\kylee@dist.belnk[2].txt Spyware:Cookie/Tribalfusion Not disinfected D:\Documents and Settings\Kylee\Application Data\Mozilla\Firefox\Profiles\jrnhris9.default\COOKIES.TXT[.tribalfusion.com/] Spyware:Cookie/Casalemedia Not disinfected D:\Documents and Settings\Kylee\Application Data\Mozilla\Firefox\Profiles\jrnhris9.default\COOKIES.TXT[.casalemedia.com/] Spyware:Cookie/FastClick Not disinfected D:\Documents and Settings\Kylee\Application Data\Mozilla\Firefox\Profiles\jrnhris9.default\COOKIES.TXT[.fastclick.net/] Spyware:Cookie/2o7 Not disinfected D:\Documents and Settings\Kylee\Application Data\Mozilla\Firefox\Profiles\jrnhris9.default\COOKIES.TXT[.2o7.net/] Spyware:Cookie/YieldManager Not disinfected D:\Documents and Settings\Kylee\Application Data\Mozilla\Firefox\Profiles\jrnhris9.default\COOKIES.TXT[ad.yieldmanager.com/] Spyware:Cookie/RealMedia Not disinfected D:\Documents and Settings\Kylee\Application Data\Mozilla\Firefox\Profiles\jrnhris9.default\COOKIES.TXT[.247realmedia.com/] Spyware:Cookie/Tradedoubler Not disinfected D:\Documents and Settings\Kylee\Application Data\Mozilla\Firefox\Profiles\jrnhris9.default\COOKIES.TXT[.tradedoubler.com/] Spyware:Cookie/Mammamediasolutions Not disinfected D:\Documents and Settings\Kylee\Application Data\Mozilla\Firefox\Profiles\jrnhris9.default\COOKIES.TXT[.targetnet.com/] Spyware:Cookie/Doubleclick Not disinfected D:\Documents and Settings\Kylee\Application Data\Mozilla\Firefox\Profiles\jrnhris9.default\COOKIES.TXT[.doubleclick.net/] Spyware:Cookie/Atlas DMT Not disinfected D:\Documents and Settings\Kylee\Application Data\Mozilla\Firefox\Profiles\jrnhris9.default\COOKIES.TXT[.atdmt.com/] Spyware:Cookie/QuestionMarket Not disinfected D:\Documents and Settings\Kylee\Application Data\Mozilla\Firefox\Profiles\jrnhris9.default\COOKIES.TXT[.questionmarket.com/] Spyware:Cookie/Advertising Not disinfected D:\Documents and Settings\Kylee\Application Data\Mozilla\Firefox\Profiles\jrnhris9.default\COOKIES.TXT[.advertising.com/] Spyware:Cookie/Adrevolver Not disinfected D:\Documents and Settings\Kylee\Application Data\Mozilla\Firefox\Profiles\jrnhris9.default\COOKIES.TXT[.adrevolver.com/] Spyware:Cookie/PointRoll Not disinfected D:\Documents and Settings\Kylee\Application Data\Mozilla\Firefox\Profiles\jrnhris9.default\COOKIES.TXT[.ads.pointroll.com/] Spyware:Cookie/Statcounter Not disinfected D:\Documents and Settings\Kylee\Application Data\Mozilla\Firefox\Profiles\jrnhris9.default\COOKIES.TXT[.statcounter.com/] Spyware:Cookie/Serving-sys Not disinfected D:\Documents and Settings\Kylee\Application Data\Mozilla\Firefox\Profiles\jrnhris9.default\COOKIES.TXT[.serving-sys.com/] Spyware:Cookie/Serving-sys Not disinfected D:\Documents and Settings\Kylee\Application Data\Mozilla\Firefox\Profiles\jrnhris9.default\COOKIES.TXT[.bs.serving-sys.com/] Spyware:Cookie/Serving-sys Not disinfected D:\Documents and Settings\Kylee\Application Data\Mozilla\Firefox\Profiles\jrnhris9.default\COOKIES.TXT[bs.serving-sys.com/] Spyware:Cookie/Serving-sys Not disinfected D:\Documents and Settings\Kylee\Application Data\Mozilla\Firefox\Profiles\jrnhris9.default\COOKIES.TXT[.serving-sys.com/] Spyware:Cookie/Falkag Not disinfected D:\Documents and Settings\Kylee\Application Data\Mozilla\Firefox\Profiles\jrnhris9.default\COOKIES.TXT[.as-eu.falkag.net/] Spyware:Cookie/Zedo Not disinfected D:\Documents and Settings\Kylee\Application Data\Mozilla\Firefox\Profiles\jrnhris9.default\COOKIES.TXT[.zedo.com/] Spyware:Cookie/Mediaplex Not disinfected D:\Documents and Settings\Kylee\Application Data\Mozilla\Firefox\Profiles\jrnhris9.default\COOKIES.TXT[.mediaplex.com/] Spyware:Cookie/BurstNet Not disinfected D:\Documents and Settings\Kylee\Application Data\Mozilla\Firefox\Profiles\jrnhris9.default\COOKIES.TXT[.burstnet.com/] Spyware:Cookie/Bluestreak Not disinfected D:\Documents and Settings\Kylee\Application Data\Mozilla\Firefox\Profiles\jrnhris9.default\COOKIES.TXT[.bluestreak.com/] Spyware:Cookie/Bridgetrack Not disinfected D:\Documents and Settings\Kylee\Application Data\Mozilla\Firefox\Profiles\jrnhris9.default\COOKIES.TXT[citi.bridgetrack.com/] Spyware:Cookie/RealMedia Not disinfected D:\Documents and Settings\Kylee\Application Data\Mozilla\Firefox\Profiles\jrnhris9.default\COOKIES.TXT[.realmedia.com/] Spyware:Cookie/Adtech Not disinfected D:\Documents and Settings\Kylee\Application Data\Mozilla\Firefox\Profiles\jrnhris9.default\COOKIES.TXT[.adtech.de/] Spyware:Cookie/Overture Not disinfected D:\Documents and Settings\Kylee\Application Data\Mozilla\Firefox\Profiles\jrnhris9.default\COOKIES.TXT[.overture.com/] Spyware:Cookie/Com.com Not disinfected D:\Documents and Settings\Kylee\Application Data\Mozilla\Firefox\Profiles\jrnhris9.default\COOKIES.TXT[.com.com/] Spyware:Cookie/Bfast Not disinfected D:\Documents and Settings\Kylee\Application Data\Mozilla\Firefox\Profiles\jrnhris9.default\COOKIES.TXT[.bfast.com/] Spyware:Cookie/AdDynamix Not disinfected D:\Documents and Settings\Kylee\Application Data\Mozilla\Firefox\Profiles\jrnhris9.default\COOKIES.TXT[.ads.addynamix.com/] Spyware:Cookie/Atwola Not disinfected D:\Documents and Settings\Kylee\Application Data\Mozilla\Firefox\Profiles\jrnhris9.default\COOKIES.TXT[.atwola.com/] Spyware:Cookie/Searchportal Not disinfected D:\Documents and Settings\Kylee\Application Data\Mozilla\Firefox\Profiles\jrnhris9.default\COOKIES.TXT[searchportal.information.com/] Spyware:Cookie/WUpd Not disinfected D:\Documents and Settings\Kylee\Application Data\Mozilla\Firefox\Profiles\jrnhris9.default\COOKIES.TXT[.revenue.net/] Spyware:Cookie/Go Not disinfected D:\Documents and Settings\Kylee\Application Data\Mozilla\Firefox\Profiles\jrnhris9.default\COOKIES.TXT[.go.com/] Spyware:Cookie/Reliablestats Not disinfected D:\Documents and Settings\Kylee\Application Data\Mozilla\Firefox\Profiles\jrnhris9.default\COOKIES.TXT[stats1.reliablestats.com/] Spyware:Cookie/Systemdoctor Not disinfected D:\Documents and Settings\Kylee\Application Data\Mozilla\Firefox\Profiles\jrnhris9.default\COOKIES.TXT[.systemdoctor.com/] Spyware:Cookie/Reliablestats Not disinfected D:\Documents and Settings\Kylee\Application Data\Mozilla\Firefox\Profiles\jrnhris9.default\COOKIES.TXT[stats1.reliablestats.com/] Spyware:Cookie/ErrorSafe Not disinfected D:\Documents and Settings\Kylee\Application Data\Mozilla\Firefox\Profiles\jrnhris9.default\COOKIES.TXT[.errorsafe.com/] Spyware:Cookie/Traffic Marketplace Not disinfected D:\Documents and Settings\Kylee\Application Data\Mozilla\Firefox\Profiles\jrnhris9.default\COOKIES.TXT[.trafficmp.com/] Spyware:Cookie/Apmebf Not disinfected D:\Documents and Settings\Kylee\Application Data\Mozilla\Firefox\Profiles\jrnhris9.default\COOKIES.TXT[.apmebf.com/] Spyware:Cookie/Falkag Not disinfected D:\Documents and Settings\Kylee\Application Data\Mozilla\Firefox\Profiles\jrnhris9.default\COOKIES.TXT[.as-us.falkag.net/] Spyware:Cookie/Valueclick Not disinfected D:\Documents and Settings\Kylee\Application Data\Mozilla\Firefox\Profiles\jrnhris9.default\COOKIES.TXT[.valueclick.com/] Spyware:Cookie/Omniture Not disinfected D:\Documents and Settings\Kylee\Application Data\Mozilla\Firefox\Profiles\jrnhris9.default\COOKIES.TXT[.omniture.com/] Spyware:Cookie/WebtrendsLive Not disinfected D:\Documents and Settings\Kylee\Application Data\Mozilla\Firefox\Profiles\jrnhris9.default\COOKIES.TXT[statse.webtrendslive.com/] Spyware:Cookie/DomainSponsor Not disinfected D:\Documents and Settings\Kylee\Application Data\Mozilla\Firefox\Profiles\jrnhris9.default\COOKIES.TXT[landing.domainsponsor.com/] Spyware:Cookie/888 Not disinfected D:\Documents and Settings\Kylee\Application Data\Mozilla\Firefox\Profiles\jrnhris9.default\COOKIES.TXT[.888.com/] Spyware:Cookie/Hbmediapro Not disinfected D:\Documents and Settings\Kylee\Application Data\Mozilla\Firefox\Profiles\jrnhris9.default\COOKIES.TXT[.adopt.hbmediapro.com/] Spyware:Cookie/Yadro Not disinfected D:\Documents and Settings\Kylee\Application Data\Mozilla\Firefox\Profiles\jrnhris9.default\COOKIES.TXT[.yadro.ru/] Spyware:Cookie/QkSrv Not disinfected D:\Documents and Settings\Kylee\Application Data\Mozilla\Firefox\Profiles\jrnhris9.default\COOKIES.TXT[.qksrv.net/] Spyware:Cookie/onestat.com Not disinfected D:\Documents and Settings\Kylee\Application Data\Mozilla\Firefox\Profiles\jrnhris9.default\COOKIES.TXT[stat.onestat.com/] Spyware:Cookie/RealMedia Not disinfected D:\Documents and Settings\DD!\Application Data\Mozilla\Firefox\Profiles\6c34wt6e.default\COOKIES.TXT[.247realmedia.com/] Spyware:Cookie/2o7 Not disinfected D:\Documents and Settings\DD!\Application Data\Mozilla\Firefox\Profiles\6c34wt6e.default\COOKIES.TXT[.2o7.net/] Spyware:Cookie/PointRoll Not disinfected D:\Documents and Settings\DD!\Application Data\Mozilla\Firefox\Profiles\6c34wt6e.default\COOKIES.TXT[.ads.pointroll.com/] Spyware:Cookie/Atwola Not disinfected D:\Documents and Settings\DD!\Application Data\Mozilla\Firefox\Profiles\6c34wt6e.default\COOKIES.TXT[.atwola.com/] Spyware:Cookie/Com.com Not disinfected D:\Documents and Settings\DD!\Application Data\Mozilla\Firefox\Profiles\6c34wt6e.default\COOKIES.TXT[.com.com/] Spyware:Cookie/Go Not disinfected D:\Documents and Settings\DD!\Application Data\Mozilla\Firefox\Profiles\6c34wt6e.default\COOKIES.TXT[.go.com/] Spyware:Cookie/Overture Not disinfected D:\Documents and Settings\DD!\Application Data\Mozilla\Firefox\Profiles\6c34wt6e.default\COOKIES.TXT[.overture.com/] Spyware:Cookie/QuestionMarket Not disinfected D:\Documents and Settings\DD!\Application Data\Mozilla\Firefox\Profiles\6c34wt6e.default\COOKIES.TXT[.questionmarket.com/] Spyware:Cookie/Tribalfusion Not disinfected D:\Documents and Settings\DD!\Application Data\Mozilla\Firefox\Profiles\6c34wt6e.default\COOKIES.TXT[.tribalfusion.com/] Spyware:Cookie/YieldManager Not disinfected D:\Documents and Settings\DD!\Application Data\Mozilla\Firefox\Profiles\6c34wt6e.default\COOKIES.TXT[ad.yieldmanager.com/] Spyware:Cookie/Server.iad.Liveperson Not disinfected D:\Documents and Settings\DD!\Application Data\Mozilla\Firefox\Profiles\6c34wt6e.default\COOKIES.TXT[server.iad.liveperson.net/] Spyware:Cookie/Server.iad.Liveperson Not disinfected D:\Documents and Settings\DD!\Application Data\Mozilla\Firefox\Profiles\6c34wt6e.default\COOKIES.TXT[server.iad.liveperson.net/hc/16847762] Spyware:Cookie/BurstBeacon Not disinfected D:\Documents and Settings\DD!\Application Data\Mozilla\Firefox\Profiles\6c34wt6e.default\COOKIES.TXT[www.burstbeacon.com/]

#6 ken545

ken545

    Forum God

  • Retired Classroom Teacher
  • 23,225 posts
  • Interests:Fighting Malware and cooking some great Italian and TexMex food
  • MVP

Posted 06 July 2007 - 12:34 PM

Sam, :D

What you keep or remove is up to you, we only advise, but iWon is known as adware and I wouldn't want it on my system. It looks like it also installed a few other things with it.

Down load the Gator Removal tool from either of these locations and run the tool.

http://www.majorgeek...Tool_d4434.html
http://www.tucows.com/preview/386892


You have a ton of cookies still on your system, CCleaner should have removed them. Run this other cleaner.

Please download ATF Cleaner by Atribune to your desktop.
  • This program is for XP and Windows 2000 only
  • Double-click ATF-Cleaner.exe to run the program.
  • Under Main choose: Select All
  • Click the Empty Selected button.
Your system may start up slower after running ATF Cleaner, this is expected but will be back to normal after the first or second boot up


You also have some bad stuff in your System Restore Program, do this.

System Restore makes regular backups of all your settings, if you ever had to use this program to restore your system to a previous date, you will be infected all over again so we need to clean out the previous Restore Points

Turn off System Restore.
  • Right-click My Computer.
  • Click Properties.
  • Click the System Restore tab.
  • Check Turn off System Restore on all Drives.
  • Click Apply, and then click OK.

Reboot your computer


Turn ON System Restore.
  • Right-click My Computer.
  • ClickProperties.
  • Click the System Restore tab.
  • UN-Check Turn off System Restore on all Drives.
  • Click Apply, and then click OK.

Create a new Restore Point <-- Very Important
  • Go to Start/ Control Panel/ Performance and Maintenance/ System Restore/ Create a New Restore Point
    You need to go into the Control Panel and switch to Catagory View to be able to Create a New Restore Point
System Restore Tutorial <-- If you need it



Run AVG Anti Spyware in Safemode and post the report along with a new HJT log.
To Enter Safemode
  • Go to Start> Shut off your Computer> Restart
  • As the computer starts to boot-up, Tap the F8 KEY somewhat rapidly,
    this will bring up a menu.
  • Use the Up and Down Arrow Keys to scroll up to Safemode
  • Then press the Enter Key on your Keyboard
Tutorial if you need it How to boot into Safemode

 
 
The forum is staffed by volunteers who donate their time and expertise.
If you feel you have been helped, please consider a donation.
donate.gif
 
Find us on Facebook
Please LIKE and SHARE
 
 
Just a reminder that threads will be closed if no reply in 3 days.

#7 ken545

ken545

    Forum God

  • Retired Classroom Teacher
  • 23,225 posts
  • Interests:Fighting Malware and cooking some great Italian and TexMex food
  • MVP

Posted 06 July 2007 - 01:09 PM

Sam,

This is most likely bad but don't remove it yet.

O23 - Service: Security Center (wscsvc) - Unknown owner - D:\WINDOWS\D:\WINDOWS\System32\svchost.exe (file missing)

svchost.exe is a legit windows file that would give you major problems if you deleted it, BUT, it only runs out of your System32 folder. If its installed in, D:\WINDOWS, then its a virus.

Do this.

You need to enable windows to show all files and folders, instructions Here

Look in D:\windows for svchost , right click on it and go to properties and let me know who owns the file.

 
 
The forum is staffed by volunteers who donate their time and expertise.
If you feel you have been helped, please consider a donation.
donate.gif
 
Find us on Facebook
Please LIKE and SHARE
 
 
Just a reminder that threads will be closed if no reply in 3 days.

#8 Sam1Taz1

Sam1Taz1

    New Member

  • New Member
  • Pip
  • 5 posts

Posted 06 July 2007 - 05:30 PM

Hi Ken, thanks... I'll do your suggestions and post my new logs. BTW, I do have a dual hard drive and when the tech installed my 2nd, he transfered my old C: to the new and set my new D: as my main hard drive... could that be why O23 - Service: Security Center (wscsvc) - Unknown owner - D:\WINDOWS\D:\WINDOWS\System32\svchost.exe (file missing) on my D:? Thanks again!!!

#9 ken545

ken545

    Forum God

  • Retired Classroom Teacher
  • 23,225 posts
  • Interests:Fighting Malware and cooking some great Italian and TexMex food
  • MVP

Posted 06 July 2007 - 05:59 PM

No, because I have seen the same entry in C:.

 
 
The forum is staffed by volunteers who donate their time and expertise.
If you feel you have been helped, please consider a donation.
donate.gif
 
Find us on Facebook
Please LIKE and SHARE
 
 
Just a reminder that threads will be closed if no reply in 3 days.

#10 ken545

ken545

    Forum God

  • Retired Classroom Teacher
  • 23,225 posts
  • Interests:Fighting Malware and cooking some great Italian and TexMex food
  • MVP

Posted 17 July 2007 - 02:53 PM

This topic is being closed due to lack of response, if you need this topic reopened, please request this by sending an email to us at the following link
(Click for address)
Include your post user name and detail why you need it reopened with a valid link to your post.
Any bad links or emails that are not from the original poster will be deleted without response.
Any emails without the subject "Reopen" will be deleted without being looked at.

If this is not your thread please start a New Topic.

 
 
The forum is staffed by volunteers who donate their time and expertise.
If you feel you have been helped, please consider a donation.
donate.gif
 
Find us on Facebook
Please LIKE and SHARE
 
 
Just a reminder that threads will be closed if no reply in 3 days.

Related Topics

Back to Virus, Spyware & Malware Removal · Next Unread Topic →

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

  1. What the Tech
  2. Spyware / Malware / Virus Removal
  3. Virus, Spyware & Malware Removal
  4. Privacy Policy
  5. Terms of Use ·