PDA

View Full Version : Halp! Spyware keeps coming back.



kyotoyoshi
2007-10-05, 12:34
I ran hijackthis since I seem to be having issues with my computer starting up properly. It's a brand new computer so it shouldn't be running slowly, in fact it wasn't running slowly up until this evening. I also downloaded and ran spybot and found 63 problems. I fixed those and ran spybot again only to have it find 59 problems that hadn't been removed. I turned off system restore, fixed and rescanned and still came up with those 59 problems.

Here's my hijack this log:

Logfile of Trend Micro HijackThis v2.0.0 (BETA)
Scan saved at 1:09:52 AM, on 10/5/2007
Platform: Windows Vista (WinNT 6.00.1904)
Boot mode: Normal

Running processes:
C:\Windows\system32\taskeng.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Windows Defender\MSASCui.exe
C:\Program Files\Lenovo\NPDIRECT\tpfnf7sp.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\Lenovo\HOTKEY\TPOSDSVC.exe
C:\Windows\System32\rundll32.exe
C:\Windows\System32\TpShocks.exe
C:\Program Files\ThinkPad\Utilities\EZEJMNAP.EXE
C:\Program Files\Analog Devices\Core\smax4pnp.exe
C:\Windows\System32\hkcmd.exe
C:\Program Files\Lenovo\HOTKEY\TPONSCR.exe
C:\Windows\System32\igfxpers.exe
C:\Program Files\Common Files\Lenovo\Scheduler\scheduler_proxy.exe
C:\Program Files\Lenovo\Zoom\TpScrex.exe
C:\Program Files\Lenovo\AwayTask\AwaySch.EXE
C:\Program Files\ThinkVantage\PrdCtr\LPMGR.EXE
C:\Program Files\Lenovo\Drag-to-Disc\DrgToDsc.exe
C:\Program Files\Java\jre1.6.0_01\bin\jusched.exe
C:\Program Files\ThinkPad\ConnectUtilities\ACTray.exe
C:\Program Files\ThinkPad\ConnectUtilities\ACWLIcon.exe
C:\Program Files\Lenovo\Client Security Solution\cssauth.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Common Files\Symantec Shared\ccApp.exe
C:\Program Files\Symantec AntiVirus\VPTray.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\ThinkPad\Bluetooth Software\BTTray.exe
C:\Program Files\Digital Line Detect\DLG.exe
C:\Program Files\Diskeeper Corporation\Diskeeper\DkIcon.exe
C:\Windows\system32\igfxsrvc.exe
C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
C:\Program Files\Lenovo\Client Security Solution\tvtpwm_tray.exe
C:\Users\J\Desktop\HiJackThis_v2.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Users\J\Desktop\HiJackThis_v2(2).exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://g.msn.com/0SEENUS/SAOS01?FORM=TOOLBR
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://g.msn.com/0SEENUS/SAOS01?FORM=TOOLBR
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://lenovo.live.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://lenovo.live.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://g.msn.com/0SEENUS/SAOS01?FORM=TOOLBR
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O1 - Hosts: ::1 localhost
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: BitComet ClickCapture - {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} - C:\Program Files\BitComet\tools\BitCometBHO_1.1.8.30.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll
O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - c:\Program Files\Windows Live Toolbar\msntb.dll
O2 - BHO: ThinkVantage Password Manager - {F040E541-A427-4CF7-85D8-75E3E0F476C5} - C:\Program Files\Lenovo\Client Security Solution\tvtpwm_ie_com.dll
O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - c:\Program Files\Windows Live Toolbar\msntb.dll
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [TPFNF7] C:\Program Files\Lenovo\NPDIRECT\TPFNF7SP.exe /r
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [TPHOTKEY] C:\Program Files\Lenovo\HOTKEY\TPOSDSVC.exe
O4 - HKLM\..\Run: [PWMTRV] rundll32 C:\PROGRA~1\ThinkPad\UTILIT~1\PWMTR32V.DLL,PwrMgrBkGndMonitor
O4 - HKLM\..\Run: [BLOG] rundll32 C:\PROGRA~1\ThinkPad\UTILIT~1\BTVLogEx.DLL,StartBattLog
O4 - HKLM\..\Run: [TpShocks] TpShocks.exe
O4 - HKLM\..\Run: [EZEJMNAP] C:\PROGRA~1\ThinkPad\UTILIT~1\EzEjMnAp.Exe
O4 - HKLM\..\Run: [SoundMAXPnP] C:\Program Files\Analog Devices\Core\smax4pnp.exe
O4 - HKLM\..\Run: [IgfxTray] C:\Windows\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\Windows\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\Windows\system32\igfxpers.exe
O4 - HKLM\..\Run: [TVT Scheduler Proxy] C:\Program Files\Common Files\Lenovo\Scheduler\scheduler_proxy.exe
O4 - HKLM\..\Run: [DiskeeperSystray] "C:\Program Files\Diskeeper Corporation\Diskeeper\DkIcon.exe"
O4 - HKLM\..\Run: [AwaySch] C:\Program Files\Lenovo\AwayTask\AwaySch.EXE
O4 - HKLM\..\Run: [LPManager] C:\PROGRA~1\THINKV~1\PrdCtr\LPMGR.exe
O4 - HKLM\..\Run: [AMSG] C:\Program Files\ThinkVantage\AMSG\Amsg.exe /startup
O4 - HKLM\..\Run: [RoxioDragToDisc] "C:\Program Files\Lenovo\Drag-to-Disc\DrgToDsc.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_01\bin\jusched.exe"
O4 - HKLM\..\Run: [ACTray] C:\Program Files\ThinkPad\ConnectUtilities\ACTray.exe
O4 - HKLM\..\Run: [ACWLIcon] C:\Program Files\ThinkPad\ConnectUtilities\ACWLIcon.exe
O4 - HKLM\..\Run: [cssauth] "C:\Program Files\Lenovo\Client Security Solution\cssauth.exe" silent
O4 - HKLM\..\Run: [LenovoOobeOffers] c:\SWTOOLS\LenovoWelcome\LenovoOobeOffers.exe /filePath="c:\swshare\firstrun.txt"
O4 - HKLM\..\Run: [WinampAgent] C:\Program Files\Winamp\winampa.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Common Files\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [vptray] C:\PROGRA~1\SYMANT~1\VPTray.exe
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'NETWORK SERVICE')
O4 - Startup: Lenovo Registration.lnk = C:\Program Files\Lenovo Registration\Lenovo.exe
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Reader 8.0\Reader\reader_sl.exe
O4 - Global Startup: Adobe Reader Synchronizer.lnk = C:\Program Files\Adobe\Reader 8.0\Reader\AdobeCollabSync.exe
O4 - Global Startup: Bluetooth.lnk = ?
O4 - Global Startup: Digital Line Detect.lnk = C:\Program Files\Digital Line Detect\DLG.exe
O8 - Extra context menu item: &D&ownload &with BitComet - res://C:\Program Files\BitComet\BitComet.exe/AddLink.htm
O8 - Extra context menu item: &D&ownload all video with BitComet - res://C:\Program Files\BitComet\BitComet.exe/AddVideo.htm
O8 - Extra context menu item: &D&ownload all with BitComet - res://C:\Program Files\BitComet\BitComet.exe/AddAllLink.htm
O8 - Extra context menu item: &Windows Live Search - res://c:\Program Files\Windows Live Toolbar\msntb.dll/search.htm
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: (no name) - {0045D4BC-5189-4b67-969C-83BB1906C421} - C:\Program Files\Lenovo\Client Security Solution\tvtpwm_ie_com.dll
O9 - Extra 'Tools' menuitem: ThinkVantage Password Manager... - {0045D4BC-5189-4b67-969C-83BB1906C421} - C:\Program Files\Lenovo\Client Security Solution\tvtpwm_ie_com.dll
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll
O9 - Extra button: BitComet Search - {461CC20B-FB6E-4f16-8FE8-C29359DB100E} - C:\Program Files\BitComet\tools\BitCometBHO_1.1.8.30.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\ThinkPad\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: @btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\ThinkPad\Bluetooth Software\btsendto_ie.htm
O13 - Gopher Prefix:
O17 - HKLM\System\CS1\Services\Tcpip\Parameters: SearchList = usc.edu
O17 - HKLM\System\CS2\Services\Tcpip\Parameters: SearchList = usc.edu
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: SearchList = usc.edu
O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\Windows\system32\browseui.dll
O23 - Service: Ac Profile Manager Service (AcPrfMgrSvc) - Lenovo - C:\Program Files\ThinkPad\ConnectUtilities\AcPrfMgrSvc.exe
O23 - Service: Access Connections Main Service (AcSvc) - Lenovo - C:\Program Files\ThinkPad\ConnectUtilities\AcSvc.exe
O23 - Service: Andrea ADI Filters Service (AEADIFilters) - Andrea Electronics Corporation - C:\Windows\system32\AEADISRV.EXE
O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\ThinkPad\Bluetooth Software\bin\btwdins.exe
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: Symantec AntiVirus Definition Watcher (DefWatch) - Symantec Corporation - C:\Program Files\Symantec AntiVirus\DefWatch.exe
O23 - Service: Diskeeper - Diskeeper Corporation - C:\Program Files\Diskeeper Corporation\Diskeeper\DkService.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: ThinkPad PM Service (IBMPMSVC) - Lenovo - C:\Windows\system32\ibmpmsvc.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: IPS Core Service (IPSSVC) - Lenovo Group Limited - C:\Windows\system32\IPSSVC.EXE
O23 - Service: IviRegMgr - InterVideo - C:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe
O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
O23 - Service: Roxio UPnP Renderer 9 - Sonic Solutions - C:\Program Files\Roxio\Digital Home 9\RoxioUPnPRenderer9.exe
O23 - Service: Roxio Upnp Server 9 - Sonic Solutions - C:\Program Files\Roxio\Digital Home 9\RoxioUpnpService9.exe
O23 - Service: RoxMediaDB9 - Sonic Solutions - C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxMediaDB9.exe
O23 - Service: SAVRoam (SavRoam) - symantec - C:\Program Files\Symantec AntiVirus\SavRoam.exe
O23 - Service: stllssvr - MicroVision Development, Inc. - C:\Program Files\Common Files\SureThing Shared\stllssvr.exe
O23 - Service: System Update (SUService) - - c:\Program Files\Lenovo\System Update\SUService.exe
O23 - Service: Symantec AntiVirus - Symantec Corporation - C:\Program Files\Symantec AntiVirus\Rtvscan.exe
O23 - Service: ThinkVantage Registry Monitor Service - Lenovo Group Limited - C:\Program Files\Common Files\Lenovo\tvt_reg_monitor_svc.exe
O23 - Service: ThinkPad HDD APS Logging Service (TPHDEXLGSVC) - Lenovo. - C:\Windows\System32\TPHDEXLG.exe
O23 - Service: On Screen Display (TPHKSVC) - Unknown owner - C:\Program Files\LENOVO\HOTKEY\TPHKSVC.exe
O23 - Service: TSS Core Service (TSSCoreService) - IBM - C:\Program Files\Lenovo\Client Security Solution\tvttcsd.exe
O23 - Service: TVT Backup Protection Service - Unknown owner - C:\Program Files\Lenovo\Rescue and Recovery\rrpservice.exe
O23 - Service: TVT Backup Service - Lenovo Group Limited - C:\Program Files\Lenovo\Rescue and Recovery\rrservice.exe
O23 - Service: TVT Scheduler - Lenovo Group Limited - c:\Program Files\Common Files\Lenovo\Scheduler\tvtsched.exe
O23 - Service: tvtnetwk - Unknown owner - C:\Program Files\Lenovo\Rescue and Recovery\ADM\IUService.exe
O23 - Service: Viewpoint Manager Service - Viewpoint Corporation - C:\Program Files\Viewpoint\Common\ViewpointService.exe
O23 - Service: XAudioService - Conexant Systems, Inc. - C:\Windows\system32\DRIVERS\xaudio.exe

--
End of file - 13012 bytes

Keith Warner
2007-10-05, 13:32
Please do NOT post hjt logs in the Spybot forum, see here for link to malware removal

http://forums.spybot.info/showthread.php?t=1266

When joining a forum it's always a good idea to read the 'Stickies' before posting.

:bigthumb:

md usa spybot fan
2007-10-05, 15:39
kyotoyoshi:

Please post a log of the 59 problems not being fixed by Spybot. To do that:
Run another scan.
When the scan completes, right click on the results list, select "Copy results to clipboard".
Then paste (Ctrl+V) those results to a new post in this thread.
Thanks

kyotoyoshi
2007-10-05, 19:03
Please do NOT post hjt logs in the Spybot forum, see here for link to malware removal

http://forums.spybot.info/showthread.php?t=1266

When joining a forum it's always a good idea to read the 'Stickies' before posting.

:bigthumb:



Except if you read, this is spybot related.

I'll remove the log of hijack this.
eta: Doesn't look like I can, sorry.

md usa spybot fan
2007-10-05, 19:12
kyotoyoshi:

A debate isn't going to help resolve your problem.

Since the issue involves Spybot, please post the Spybot log I requested!!!

kyotoyoshi
2007-10-05, 19:38
kyotoyoshi:

A debate isn't going to help resolve your problem.

Since the issue involves Spybot, please post the Spybot log I requested!!!

I wasn't debating.

Also, I was working on posting the spybot log. I had to rescan in order to do it and as I said, my computer is running slowly so it was taking a while.

Here you go:

AdRevolver: [SBI $4CDCC3D5] Tracking cookie (Firefox: default) (Cookie, nothing done)


AdRevolver: [SBI $4CDCC3D5] Tracking cookie (Firefox: default) (Cookie, nothing done)


AdRevolver: [SBI $4CDCC3D5] Tracking cookie (Firefox: default) (Cookie, nothing done)


Advertising.com: [SBI $4CDCC3D5] Tracking cookie (Firefox: default) (Cookie, nothing done)


Advertising.com: [SBI $4CDCC3D5] Tracking cookie (Firefox: default) (Cookie, nothing done)


Advertising.com: [SBI $4CDCC3D5] Tracking cookie (Firefox: default) (Cookie, nothing done)


Advertising.com: [SBI $4CDCC3D5] Tracking cookie (Firefox: default) (Cookie, nothing done)


Advertising.com: [SBI $4CDCC3D5] Tracking cookie (Firefox: default) (Cookie, nothing done)


MediaPlex: [SBI $4CDCC3D5] Tracking cookie (Firefox: default) (Cookie, nothing done)


MediaPlex: [SBI $4CDCC3D5] Tracking cookie (Firefox: default) (Cookie, nothing done)


BurstMedia: [SBI $4CDCC3D5] Tracking cookie (Firefox: default) (Cookie, nothing done)


CasaleMedia: [SBI $4CDCC3D5] Tracking cookie (Firefox: default) (Cookie, nothing done)


CasaleMedia: [SBI $4CDCC3D5] Tracking cookie (Firefox: default) (Cookie, nothing done)


CasaleMedia: [SBI $4CDCC3D5] Tracking cookie (Firefox: default) (Cookie, nothing done)


CasaleMedia: [SBI $4CDCC3D5] Tracking cookie (Firefox: default) (Cookie, nothing done)


DoubleClick: [SBI $4CDCC3D5] Tracking cookie (Firefox: default) (Cookie, nothing done)


HitBox: [SBI $4CDCC3D5] Tracking cookie (Firefox: default) (Cookie, nothing done)


HitBox: [SBI $4CDCC3D5] Tracking cookie (Firefox: default) (Cookie, nothing done)


HitBox: [SBI $4CDCC3D5] Tracking cookie (Firefox: default) (Cookie, nothing done)


MediaPlex: [SBI $4CDCC3D5] Tracking cookie (Firefox: default) (Cookie, nothing done)


MediaPlex: [SBI $4CDCC3D5] Tracking cookie (Firefox: default) (Cookie, nothing done)


FastClick: [SBI $4CDCC3D5] Tracking cookie (Firefox: default) (Cookie, nothing done)


FastClick: [SBI $4CDCC3D5] Tracking cookie (Firefox: default) (Cookie, nothing done)


FastClick: [SBI $4CDCC3D5] Tracking cookie (Firefox: default) (Cookie, nothing done)


FastClick: [SBI $4CDCC3D5] Tracking cookie (Firefox: default) (Cookie, nothing done)


FastClick: [SBI $4CDCC3D5] Tracking cookie (Firefox: default) (Cookie, nothing done)


FastClick: [SBI $4CDCC3D5] Tracking cookie (Firefox: default) (Cookie, nothing done)


FastClick: [SBI $4CDCC3D5] Tracking cookie (Firefox: default) (Cookie, nothing done)


FastClick: [SBI $4CDCC3D5] Tracking cookie (Firefox: default) (Cookie, nothing done)


HitBox: [SBI $4CDCC3D5] Tracking cookie (Firefox: default) (Cookie, nothing done)


HitBox: [SBI $4CDCC3D5] Tracking cookie (Firefox: default) (Cookie, nothing done)


MediaPlex: [SBI $4CDCC3D5] Tracking cookie (Firefox: default) (Cookie, nothing done)


MediaPlex: [SBI $4CDCC3D5] Tracking cookie (Firefox: default) (Cookie, nothing done)


Statcounter: [SBI $4CDCC3D5] Tracking cookie (Firefox: default) (Cookie, nothing done)


Statcounter: [SBI $4CDCC3D5] Tracking cookie (Firefox: default) (Cookie, nothing done)


Statcounter: [SBI $4CDCC3D5] Tracking cookie (Firefox: default) (Cookie, nothing done)


Statcounter: [SBI $4CDCC3D5] Tracking cookie (Firefox: default) (Cookie, nothing done)


Statcounter: [SBI $4CDCC3D5] Tracking cookie (Firefox: default) (Cookie, nothing done)


Statcounter: [SBI $4CDCC3D5] Tracking cookie (Firefox: default) (Cookie, nothing done)


Statcounter: [SBI $4CDCC3D5] Tracking cookie (Firefox: default) (Cookie, nothing done)


Statcounter: [SBI $4CDCC3D5] Tracking cookie (Firefox: default) (Cookie, nothing done)


Statcounter: [SBI $4CDCC3D5] Tracking cookie (Firefox: default) (Cookie, nothing done)


Statcounter: [SBI $4CDCC3D5] Tracking cookie (Firefox: default) (Cookie, nothing done)


Statcounter: [SBI $4CDCC3D5] Tracking cookie (Firefox: default) (Cookie, nothing done)


Statcounter: [SBI $4CDCC3D5] Tracking cookie (Firefox: default) (Cookie, nothing done)


Statcounter: [SBI $4CDCC3D5] Tracking cookie (Firefox: default) (Cookie, nothing done)


Statcounter: [SBI $4CDCC3D5] Tracking cookie (Firefox: default) (Cookie, nothing done)


Zedo: [SBI $4CDCC3D5] Tracking cookie (Firefox: default) (Cookie, nothing done)


Zedo: [SBI $4CDCC3D5] Tracking cookie (Firefox: default) (Cookie, nothing done)


Zedo: [SBI $4CDCC3D5] Tracking cookie (Firefox: default) (Cookie, nothing done)


Zedo: [SBI $4CDCC3D5] Tracking cookie (Firefox: default) (Cookie, nothing done)


Zedo: [SBI $4CDCC3D5] Tracking cookie (Firefox: default) (Cookie, nothing done)


Zedo: [SBI $4CDCC3D5] Tracking cookie (Firefox: default) (Cookie, nothing done)


HitsLink: [SBI $4CDCC3D5] Tracking cookie (Firefox: default) (Cookie, nothing done)


AdRevolver: [SBI $4CDCC3D5] Tracking cookie (Firefox: default) (Cookie, nothing done)


AdRevolver: [SBI $4CDCC3D5] Tracking cookie (Firefox: default) (Cookie, nothing done)


AdRevolver: [SBI $4CDCC3D5] Tracking cookie (Firefox: default) (Cookie, nothing done)


AdRevolver: [SBI $4CDCC3D5] Tracking cookie (Firefox: default) (Cookie, nothing done)


AdRevolver: [SBI $4CDCC3D5] Tracking cookie (Firefox: default) (Cookie, nothing done)


WebTrends live: [SBI $4CDCC3D5] Tracking cookie (Firefox: default) (Cookie, nothing done)


BurstMedia: [SBI $4CDCC3D5] Tracking cookie (Firefox: default) (Cookie, nothing done)



--- Spybot - Search & Destroy version: 1.5 (build: 20070830) ---

2007-08-31 blindman.exe (1.0.0.6)
2007-08-31 SDMain.exe (1.0.0.4)
2007-08-31 SDUpdate.exe (1.0.6.4)
2007-08-31 SDWinSec.exe (1.0.0.8)
2007-08-31 SpybotSD.exe (1.5.1.15)
2007-08-31 TeaTimer.exe (1.5.0.9)
2007-10-05 unins000.exe (51.46.0.0)
2007-08-31 Update.exe (1.4.0.5)
2007-08-31 advcheck.dll (1.5.3.0)
2007-04-02 aports.dll (2.1.0.0)
2007-04-02 DelZip179.dll (1.79.5.3)
2007-08-31 SDHelper.dll (1.5.0.8)
2007-08-31 Tools.dll (2.1.2.0)
2007-10-04 Includes\Cookies.sbi (*)
2007-07-25 Includes\Dialer.sbi (*)
2007-10-04 Includes\DialerC.sbi (*)
2007-08-29 Includes\Hijackers.sbi (*)
2007-10-04 Includes\HijackersC.sbi (*)
2007-10-04 Includes\Keyloggers.sbi (*)
2007-10-04 Includes\KeyloggersC.sbi (*)
2004-11-29 Includes\LSP.sbi (*)
2007-10-04 Includes\Malware.sbi (*)
2007-10-04 Includes\MalwareC.sbi (*)
2007-09-05 Includes\PUPS.sbi (*)
2007-10-04 Includes\PUPSC.sbi (*)
2007-10-04 Includes\Revision.sbi (*)
2007-05-30 Includes\Security.sbi (*)
2007-10-04 Includes\SecurityC.sbi (*)
2007-09-12 Includes\Spybots.sbi (*)
2007-10-04 Includes\SpybotsC.sbi (*)
2007-08-21 Includes\Tracks.uti
2007-10-04 Includes\Trojans.sbi (*)
2007-10-04 Includes\TrojansC.sbi (*)
2008-12-24 Plugins\TCPIPAddress.dll

md usa spybot fan
2007-10-05, 19:46
Sometimes Spybot has trouble removing Firefox tracking cookies. There are suggestions in the following post on how to remove them as well as block them from being stored in the future:
http://forums.spybot.info/showpost.php?p=64081&postcount=4
Added with edit:

In addition if you immunize with Spybot 1.5 it should block those cookies from being stored after they are removed.

kyotoyoshi
2007-10-05, 20:16
Sometimes Spybot has trouble removing Firefox tracking cookies. There are suggestions in the following post on how to remove them as well as block them from being stored in the future:
http://forums.spybot.info/showpost.php?p=64081&postcount=4
Added with edit:

In addition if you immunize with Spybot 1.5 it should block those cookies from being stored after they are removed.

Thanks much, I'm working on the issue right now.

And sorry again for the hijack log.