View Full Version : c:\rapport.txt The HJT log
Thanks for the wealth of infomation, that helped me rid my maleware problems.
--------------------------------------------------------------------------
SmitFraudFix v2.131
Scan done at 19:35:51.00, Thu 12/28/2006
Run from C:\Documents and Settings\Kevin\Desktop\SmitfraudFix
OS: Microsoft Windows XP [Version 5.1.2600] - Windows_NT
The filesystem type is NTFS
Fix run in normal mode
»»»»»»»»»»»»»»»»»»»»»»»» C:\
»»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS
»»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS\system
»»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS\Web
»»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS\system32
»»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS\system32\LogFiles
»»»»»»»»»»»»»»»»»»»»»»»» C:\Documents and Settings\Kevin
»»»»»»»»»»»»»»»»»»»»»»»» C:\Documents and Settings\Kevin\Application Data
»»»»»»»»»»»»»»»»»»»»»»»» Start Menu
»»»»»»»»»»»»»»»»»»»»»»»» C:\DOCUME~1\Kevin\FAVORI~1
»»»»»»»»»»»»»»»»»»»»»»»» Desktop
»»»»»»»»»»»»»»»»»»»»»»»» C:\Program Files
»»»»»»»»»»»»»»»»»»»»»»»» Corrupted keys
»»»»»»»»»»»»»»»»»»»»»»»» Desktop Components
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Desktop\Components\0]
"Source"="About:Home"
"SubscribedURL"="About:Home"
"FriendlyName"="My Current Home Page"
»»»»»»»»»»»»»»»»»»»»»»»» Sharedtaskscheduler
!!!Attention, following keys are not inevitably infected!!!
SrchSTS.exe by S!Ri
Search SharedTaskScheduler's .dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SharedTaskScheduler]
"{b59f3ba4-98da-4b5f-8a2d-7b56fb11140b}"="buprestidae"
[HKEY_CLASSES_ROOT\CLSID\{b59f3ba4-98da-4b5f-8a2d-7b56fb11140b}\InProcServer32]
@="C:\WINDOWS\system32\cthkpcv.dll"
[HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{b59f3ba4-98da-4b5f-8a2d-7b56fb11140b}\InProcServer32]
@="C:\WINDOWS\system32\cthkpcv.dll"
»»»»»»»»»»»»»»»»»»»»»»»» AppInit_DLLs
!!!Attention, following keys are not inevitably infected!!!
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"=""
»»»»»»»»»»»»»»»»»»»»»»»» Winlogon.System
!!!Attention, following keys are not inevitably infected!!!
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon]
"System"=""
»»»»»»»»»»»»»»»»»»»»»»»» pe386-msguard-lzx32
»»»»»»»»»»»»»»»»»»»»»»»» Scanning wininet.dll infection
»»»»»»»»»»»»»»»»»»»»»»»» End
==========================================================
Logfile of HijackThis v1.99.1
Scan saved at 9:12:59 PM, on 12/28/2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.5730.0011)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\SYSTEM32\ZoneLabs\vsmon.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\SearchIndexer.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\ZoneLabs\isafe.exe
C:\Program Files\TweakNow PowerPack 2006\RAM2_XP.exe
C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
C:\Program Files\Microsoft ActiveSync\wcescomm.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Siber Systems\AI RoboForm\RoboTaskBarIcon.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\PROGRA~1\MICROS~3\rapimgr.exe
C:\Program Files\MSN Messenger\msnmsgr.exe
C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
C:\Program Files\Windows Desktop Search\WindowsSearch.exe
C:\PROGRA~1\WIDCOMM\BLUETO~1\BTSTAC~1.EXE
C:\PROGRA~1\ZONELA~1\ZONEAL~1\MAILFR~1\mantispm.exe
C:\Documents and Settings\Kevin\Desktop\hijackthis\HijackThis.exe
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = 205.238.235.120:80
O1 - Hosts: 127.255.255.255 serial.alcohol-soft.com
O1 - Hosts: 127.255.255.255 www.alcohol-soft.com
O1 - Hosts: 127.255.255.255 images.alcohol-soft.com
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Adobe Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: Skype add-on (mastermind) - {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - C:\PROGRA~1\Skype\Phone\IEPlugin\SKYPEI~1.DLL
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O2 - BHO: (no name) - {67982BB7-0F95-44C5-92DC-E3AF3DC19D6D} - C:\Program Files\Video ActiveX Object\isaddon.dll (file missing)
O2 - BHO: (no name) - {724d43a9-0d85-11d4-9908-00400523e39a} - C:\Program Files\Siber Systems\AI RoboForm\roboform.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MICROS~2\Office12\GRA8E1~1.DLL
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Encarta Web Companion Helper Object - {955BE0B8-BC85-4CAF-856E-8E0D8B610560} - C:\Program Files\Common Files\Microsoft Shared\Encarta Web Companion\2007\ENCWCBAR.DLL
O2 - BHO: Adobe PDF Conversion Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files\Adobe\Adobe Acrobat 7.0\Acrobat\AcroIEFavClient.dll
O2 - BHO: FlashFXP Helper for Internet Explorer - {E5A1691B-D188-4419-AD02-90002030B8EE} - C:\PROGRA~1\FlashFXP\IEFlash.dll
O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Adobe\Adobe Acrobat 7.0\Acrobat\AcroIEFavClient.dll
O3 - Toolbar: &RoboForm - {724d43a0-0d85-11d4-9908-00400523e39a} - C:\Program Files\Siber Systems\AI RoboForm\roboform.dll
O3 - Toolbar: Encarta Web Companion - {147D6308-0614-4112-89B1-31402F9B82C4} - C:\Program Files\Common Files\Microsoft Shared\Encarta Web Companion\2007\ENCWCBAR.DLL
O3 - Toolbar: Protection Bar - {0D045BAA-4BD3-4C94-BE8B-21536BD6BD9F} - C:\Program Files\Video ActiveX Object\iesplugin.dll (file missing)
O4 - HKLM\..\Run: [RAM Idle Professional] C:\Program Files\TweakNow PowerPack 2006\RAM2_XP.exe
O4 - HKLM\..\Run: [BluetoothAuthenticationAgent] rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [Zone Labs Client] "C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe"
O4 - HKCU\..\Run: [H/PC Connection Agent] "C:\Program Files\Microsoft ActiveSync\wcescomm.exe"
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [RoboForm] "C:\Program Files\Siber Systems\AI RoboForm\RoboTaskBarIcon.exe"
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background
O4 - Global Startup: Bluetooth.lnk = ?
O4 - Global Startup: Windows Desktop Search.lnk = C:\Program Files\Windows Desktop Search\WindowsSearch.exe
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_02\bin\npjpi150_02.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_02\bin\npjpi150_02.dll
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: Fill Forms - {320AF880-6646-11D3-ABEE-C5DBF3571F46} - file://C:\Program Files\Siber Systems\AI RoboForm\RoboFormComFillForms.html
O9 - Extra 'Tools' menuitem: Fill Forms - {320AF880-6646-11D3-ABEE-C5DBF3571F46} - file://C:\Program Files\Siber Systems\AI RoboForm\RoboFormComFillForms.html
O9 - Extra button: Save - {320AF880-6646-11D3-ABEE-C5DBF3571F49} - file://C:\Program Files\Siber Systems\AI RoboForm\RoboFormComSavePass.html
O9 - Extra 'Tools' menuitem: Save Forms - {320AF880-6646-11D3-ABEE-C5DBF3571F49} - file://C:\Program Files\Siber Systems\AI RoboForm\RoboFormComSavePass.html
O9 - Extra button: RoboForm - {724d43aa-0d85-11d4-9908-00400523e39a} - file://C:\Program Files\Siber Systems\AI RoboForm\RoboFormComShowToolbar.html
O9 - Extra 'Tools' menuitem: RoboForm Toolbar - {724d43aa-0d85-11d4-9908-00400523e39a} - file://C:\Program Files\Siber Systems\AI RoboForm\RoboFormComShowToolbar.html
O9 - Extra button: Skype add-on - {77BF5300-1474-4EC7-9980-D32B190E9B07} - C:\PROGRA~1\Skype\Phone\IEPlugin\SKYPEI~1.DLL
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: Encarta Search Bar - {B205A35E-1FC4-4CE3-818B-899DBBB3388C} - C:\Program Files\Common Files\Microsoft Shared\Encarta Search Bar\ENCSBAR.DLL
O9 - Extra button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: @btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: (no name) - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - (no file)
O9 - Extra button: Trend Micro Security Services - {D5E1CDC8-64B9-4f8c-8155-FC3B6D6749F7} - http://tmss.trendmicro.com/dashboard/dashboard.aspx?EJHHGHEJFCHDJGEHFGFFBAHBFHCHBJCHEGCIE (file missing)
O9 - Extra 'Tools' menuitem: Trend Micro Security Services - {D5E1CDC8-64B9-4f8c-8155-FC3B6D6749F7} - http://tmss.trendmicro.com/dashboard/dashboard.aspx?EJHHGHEJFCHDJGEHFGFFBAHBFHCHBJCHEGCIE (file missing)
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O11 - Options group: [INTERNATIONAL] International*
O16 - DPF: {4ED9DDF0-7479-4BBE-9335-5A1EDB1D8A21} - http://download.mcafee.com/molbin/shared/mcinsctl/4,0,0,101/mcinsctl.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\PROGRA~1\MICROS~2\Office12\GR99D3~1.DLL
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: ms-help - {314111C7-A502-11D2-BBCA-00C04F8EC294} - C:\Program Files\Common Files\Microsoft Shared\Help\hxds.dll
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: offline-8876480 - {7C5A8514-32A3-4DB7-BD1A-7F0708221FA1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Filter hijack: text/xml - {807563E5-5146-11D5-A672-00B0D022E945} - C:\PROGRA~1\COMMON~1\MICROS~1\OFFICE12\MSOXMLMF.DLL
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
O23 - Service: CA ISafe (CAISafe) - Computer Associates International, Inc. - C:\WINDOWS\system32\ZoneLabs\isafe.exe
O23 - Service: iPod Service - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - C:\WINDOWS\SYSTEM32\ZoneLabs\vsmon.exe
--------------------------------------------------------------------------
Kalonji
Hi Kalonji and welcome to the forums :D:
Does your ZoneAlarm include an antivirus ?
You got some infections...
You should print these instructions or save these to a text file. Follow these instructions carefully.
Please download AVG Anti-Spyware to your Desktop or to your usual Download Folder.
http://www.ewido.net/en/download/
Install AVG Anti-Spyware by double clicking the installer.
Follow the prompts. Make sure that Launch AVG Anti-Spyware is checked.
On the main screen under Your Computer's security.
Click on Change state next to Resident shield. It should now change to inactive.
Click on Change state next to Automatic updates. It should now change to inactive.
Next to Last Update, click on Update now. (You will need an active internet connection to perform this)
Wait until you see the Update succesfull message.
Right-click the AVG Anti-Spyware Tray Icon and uncheck Start with Windows.
Right-click the AVG Anti-Spyware Tray Icon and select Exit. Confirm by clicking Yes.
If you are having problems with the updater, you can use this link to manually update ewido.
AVG Anti-Spyware manual updates (http://www.ewido.net/en/download/updates/).
Download the Full database to your Desktop or to your usual Download Folder and install it by double clicking the file. Make sure that AVG Anti-Spyware is closed before installing the update.
Download ATF Cleaner (http://www.atribune.org/ccount/click.php?id=1) by Atribune to your desktop.
Do NOT run yet.
==================
Next, please reboot your computer in Safe Mode by doing the following :
Restart your computer
After hearing your computer beep once during startup, but before the Windows icon appears, tap the F8 key continually;
Instead of Windows loading as normal, a menu with options should appear;
Select the first option, to run Windows in Safe Mode, then press "Enter".
Choose your usual account.
Once in Safe Mode, double-click on SmitfraudFix.exe
Select option #2 - Clean by typing 2 and press "Enter" to delete infected files.
You will be prompted : "Registry cleaning - Do you want to clean the registry ?"; answer "Yes" by typing Y and press "Enter" in order to remove the Desktop background and clean registry keys associated with the infection.
The tool will now check if wininet.dll is infected. You may be prompted to replace the infected file (if found); answer "Yes" by typing Y and press "Enter".
The tool may need to restart your computer to finish the cleaning process; if it doesn't, please restart it into Normal Windows.
A text file will appear onscreen, with results from the cleaning process; please copy/paste the content of that report into your next reply.
The report can also be found at the root of the system drive, usually at C:\rapport.txt
Open the SmitfraudFix folder and double-click smitfraudfix.cmd
Select option #3 - Delete Trusted zone by typing 3 and press Enter.
Answer Yes to the question "Restore Trusted Zone ?" by typing Y and hit Enter.
Note, if you use SpywareBlaster and/or IE-SPYAD, it will be necessary to re-install the protection both afford. For SpywareBlaster, run the program and re-protect all items. For IE-SPYAD, run the batch file and reinstall the protection.
Warning : running option #2 on a non infected computer will remove your Desktop background.
Run HijackThis, click Do a system scan only, and check the box next to each of these entries if still present. Close all other windows and press Fix checked. If something isn't there, please continue with the next entry in the list.
O2 - BHO: (no name) - {67982BB7-0F95-44C5-92DC-E3AF3DC19D6D} - C:\Program Files\Video ActiveX Object\isaddon.dll (file missing)
O3 - Toolbar: Protection Bar - {0D045BAA-4BD3-4C94-BE8B-21536BD6BD9F} - C:\Program Files\Video ActiveX Object\iesplugin.dll (file missing)
O9 - Extra button: (no name) - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - (no file)
Restart your computer to the safe mode:
Restart your computer
Start tapping the F8 key when the computer restarts.
When the start menu opens, choose Safe mode
Press Enter. The computer then begins to start in Safe mode.
Run ATF Cleaner Under Main choose: Select All
Click the Empty Selected button.
If you use Firefox browserClick Firefox at the top and choose: Select All
Click the Empty Selected button.
NOTE: If you would like to keep your saved passwords, please click No at the prompt.
If you use Opera browserClick Opera at the top and choose: Select All
Click the Empty Selected button.
NOTE: If you would like to keep your saved passwords, please click No at the prompt.
Click Exit on the Main menu to close the program.
Close ALL open Windows / Programs / Folders. Please start AVG Anti-Spyware and run a full scan.
Click on Scanner on the toolbar.
Click on the Settings tab.
Under How to act?
Click on Recommended Action and choose Quarantine from the popup menu.
Under How to scan?
All checkboxes should be ticked.
Under Possibly unwanted software:
All checkboxes should be ticked.
Under Reports:
Select Automatically generate report after every scan and uncheck Only if threats were found.
Under What to scan?
Select Scan every file.
Click on the Scan tab.
Click on Complete System Scan to start the scan process.
Let the program scan the machine.
When the scan has finished, follow the instructions below.
IMPORTANT : Don't click on the "Save Scan Report" button before you did hit the "Apply all Actions" button.
Make sure that Set all elements to: shows Quarantine (1), if not click on the link and choose Quarantine from the popup menu. (2)
At the bottom of the window click on the Apply all Actions button. (3)
http://img509.imageshack.us/img509/4851/scanavgjk2.jpg
When done, click the Save Scan Report button. (4)
Click the Save Report as button.
Save the report to your Desktop.
Right-click the AVG Anti-Spyware Tray Icon and select Exit. Confirm by clicking Yes.
Reboot in Normal Mode.
================
When you're ready, please post the following logs to here:
- AVG's report
- a fresh HijackThis log
- contents of C:\Rapport.txt
Thank you so much for you reply. I uninstalled zonelalarm cause it doesn't detect anything, and prevents my msn for working with voicechat.
Im going to work on the new problem now...
-Kalonji
Logfile of HijackThis v1.99.1
Scan saved at 8:06:28 PM, on 12/29/2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.5730.0011)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\SearchIndexer.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\TweakNow PowerPack 2006\RAM2_XP.exe
C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Microsoft ActiveSync\wcescomm.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Siber Systems\AI RoboForm\RoboTaskBarIcon.exe
C:\Program Files\MSN Messenger\msnmsgr.exe
C:\PROGRA~1\MICROS~3\rapimgr.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
C:\Program Files\Windows Desktop Search\WindowsSearch.exe
C:\PROGRA~1\WIDCOMM\BLUETO~1\BTSTAC~1.EXE
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\WINDOWS\system32\NOTEPAD.EXE
C:\WINDOWS\system32\NOTEPAD.EXE
C:\WINDOWS\system32\SearchProtocolHost.exe
C:\Documents and Settings\Kevin\Desktop\Unused Desktop Shortcuts\Maleware removaltools\hijackthis\HijackThis.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,First Home Page = http://go.microsoft.com/fwlink/?LinkId=54843
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = 205.238.235.120:80
O1 - Hosts: 127.255.255.255 serial.alcohol-soft.com
O1 - Hosts: 127.255.255.255 www.alcohol-soft.com
O1 - Hosts: 127.255.255.255 images.alcohol-soft.com
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Adobe Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: Skype add-on (mastermind) - {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - C:\PROGRA~1\Skype\Phone\IEPlugin\SKYPEI~1.DLL
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O2 - BHO: (no name) - {724d43a9-0d85-11d4-9908-00400523e39a} - C:\Program Files\Siber Systems\AI RoboForm\roboform.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MICROS~2\Office12\GRA8E1~1.DLL
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Encarta Web Companion Helper Object - {955BE0B8-BC85-4CAF-856E-8E0D8B610560} - C:\Program Files\Common Files\Microsoft Shared\Encarta Web Companion\2007\ENCWCBAR.DLL
O2 - BHO: Adobe PDF Conversion Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files\Adobe\Adobe Acrobat 7.0\Acrobat\AcroIEFavClient.dll
O2 - BHO: McAfee Popup Blocker - {C68AE9C0-0909-4DDC-B661-C1AFB9F5AE53} - c:\program files\mcafee\mps\mcpopup.dll (file missing)
O2 - BHO: FlashFXP Helper for Internet Explorer - {E5A1691B-D188-4419-AD02-90002030B8EE} - C:\PROGRA~1\FlashFXP\IEFlash.dll
O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Adobe\Adobe Acrobat 7.0\Acrobat\AcroIEFavClient.dll
O3 - Toolbar: &RoboForm - {724d43a0-0d85-11d4-9908-00400523e39a} - C:\Program Files\Siber Systems\AI RoboForm\roboform.dll
O3 - Toolbar: Encarta Web Companion - {147D6308-0614-4112-89B1-31402F9B82C4} - C:\Program Files\Common Files\Microsoft Shared\Encarta Web Companion\2007\ENCWCBAR.DLL
O4 - HKLM\..\Run: [RAM Idle Professional] C:\Program Files\TweakNow PowerPack 2006\RAM2_XP.exe
O4 - HKLM\..\Run: [BluetoothAuthenticationAgent] rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKCU\..\Run: [H/PC Connection Agent] "C:\Program Files\Microsoft ActiveSync\wcescomm.exe"
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [RoboForm] "C:\Program Files\Siber Systems\AI RoboForm\RoboTaskBarIcon.exe"
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background
O4 - Global Startup: Bluetooth.lnk = ?
O4 - Global Startup: Windows Desktop Search.lnk = C:\Program Files\Windows Desktop Search\WindowsSearch.exe
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_02\bin\npjpi150_02.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_02\bin\npjpi150_02.dll
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: Fill Forms - {320AF880-6646-11D3-ABEE-C5DBF3571F46} - file://C:\Program Files\Siber Systems\AI RoboForm\RoboFormComFillForms.html
O9 - Extra 'Tools' menuitem: Fill Forms - {320AF880-6646-11D3-ABEE-C5DBF3571F46} - file://C:\Program Files\Siber Systems\AI RoboForm\RoboFormComFillForms.html
O9 - Extra button: Save - {320AF880-6646-11D3-ABEE-C5DBF3571F49} - file://C:\Program Files\Siber Systems\AI RoboForm\RoboFormComSavePass.html
O9 - Extra 'Tools' menuitem: Save Forms - {320AF880-6646-11D3-ABEE-C5DBF3571F49} - file://C:\Program Files\Siber Systems\AI RoboForm\RoboFormComSavePass.html
O9 - Extra button: RoboForm - {724d43aa-0d85-11d4-9908-00400523e39a} - file://C:\Program Files\Siber Systems\AI RoboForm\RoboFormComShowToolbar.html
O9 - Extra 'Tools' menuitem: RoboForm Toolbar - {724d43aa-0d85-11d4-9908-00400523e39a} - file://C:\Program Files\Siber Systems\AI RoboForm\RoboFormComShowToolbar.html
O9 - Extra button: Skype add-on - {77BF5300-1474-4EC7-9980-D32B190E9B07} - C:\PROGRA~1\Skype\Phone\IEPlugin\SKYPEI~1.DLL
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: Encarta Search Bar - {B205A35E-1FC4-4CE3-818B-899DBBB3388C} - C:\Program Files\Common Files\Microsoft Shared\Encarta Search Bar\ENCSBAR.DLL
O9 - Extra button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: @btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: Trend Micro Security Services - {D5E1CDC8-64B9-4f8c-8155-FC3B6D6749F7} - http://tmss.trendmicro.com/dashboard/dashboard.aspx?EJHHGHEJFCHDJGEHFGFFBAHBFHCHBJCHEGCIE (file missing)
O9 - Extra 'Tools' menuitem: Trend Micro Security Services - {D5E1CDC8-64B9-4f8c-8155-FC3B6D6749F7} - http://tmss.trendmicro.com/dashboard/dashboard.aspx?EJHHGHEJFCHDJGEHFGFFBAHBFHCHBJCHEGCIE (file missing)
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O11 - Options group: [INTERNATIONAL] International*
O16 - DPF: {4ED9DDF0-7479-4BBE-9335-5A1EDB1D8A21} - http://download.mcafee.com/molbin/shared/mcinsctl/4,0,0,101/mcinsctl.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\PROGRA~1\MICROS~2\Office12\GR99D3~1.DLL
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: ms-help - {314111C7-A502-11D2-BBCA-00C04F8EC294} - C:\Program Files\Common Files\Microsoft Shared\Help\hxds.dll
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: offline-8876480 - {7C5A8514-32A3-4DB7-BD1A-7F0708221FA1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Filter hijack: text/xml - {807563E5-5146-11D5-A672-00B0D022E945} - C:\PROGRA~1\COMMON~1\MICROS~1\OFFICE12\MSOXMLMF.DLL
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
O23 - Service: AVG Anti-Spyware Guard - Anti-Malware Development a.s. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: iPod Service - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
SmitFraudFix v2.131
Scan done at 18:10:45.01, Fri 12/29/2006
Run from C:\Documents and Settings\Kevin\Desktop\Unused Desktop Shortcuts\Maleware removaltools\SmitfraudFix
OS: Microsoft Windows XP [Version 5.1.2600] - Windows_NT
The filesystem type is NTFS
Fix run in safe mode
»»»»»»»»»»»»»»»»»»»»»»»» Before SmitFraudFix
!!!Attention, following keys are not inevitably infected!!!
SrchSTS.exe by S!Ri
Search SharedTaskScheduler's .dll
»»»»»»»»»»»»»»»»»»»»»»»» Killing process
»»»»»»»»»»»»»»»»»»»»»»»» Generic Renos Fix
GenericRenosFix by S!Ri
»»»»»»»»»»»»»»»»»»»»»»»» Deleting infected files
»»»»»»»»»»»»»»»»»»»»»»»» Deleting Temp Files
»»»»»»»»»»»»»»»»»»»»»»»» Winlogon.System
!!!Attention, following keys are not inevitably infected!!!
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon]
"System"=""
»»»»»»»»»»»»»»»»»»»»»»»» Registry Cleaning
Registry Cleaning done.
»»»»»»»»»»»»»»»»»»»»»»»» After SmitFraudFix
!!!Attention, following keys are not inevitably infected!!!
SrchSTS.exe by S!Ri
Search SharedTaskScheduler's .dll
»»»»»»»»»»»»»»»»»»»»»»»» End
---------------------------------------------------------
AVG Anti-Spyware - Scan Report
---------------------------------------------------------
+ Created at: 7:52:58 PM 12/29/2006
+ Scan result:
C:\Documents and Settings\Kevin\My Documents\My Downloads\SB5100\Cable-Modem-Modification-KitV8\Cable-Modem-Modification-KitV8\Step2.exe -> Dropper.Delf.vp : Cleaned with backup (quarantined).
C:\Documents and Settings\Kevin\My Documents\My Downloads\Wincomm\BTW_5.1.0.2700_x86\Widcomm_patcher_v2\Widcomm_patcher_v2\Widcomm_patcher_v2.exe -> Not-A-Virus.VirTool.Win32.AvSpoffer.a : Cleaned with backup (quarantined).
:mozilla.31:C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\ufyha7d3.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.33:C:\Documents and Settings\Steve\Application Data\Mozilla\Firefox\Profiles\wf17yh5w.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.34:C:\Documents and Settings\Steve\Application Data\Mozilla\Firefox\Profiles\wf17yh5w.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.35:C:\Documents and Settings\Steve\Application Data\Mozilla\Firefox\Profiles\wf17yh5w.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.36:C:\Documents and Settings\Steve\Application Data\Mozilla\Firefox\Profiles\wf17yh5w.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.39:C:\Documents and Settings\Steve\Application Data\Mozilla\Firefox\Profiles\wf17yh5w.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.40:C:\Documents and Settings\Steve\Application Data\Mozilla\Firefox\Profiles\wf17yh5w.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.287:C:\Documents and Settings\Kevin\Application Data\Mozilla\Firefox\Profiles\8jublrbf.default\cookies-1.txt -> TrackingCookie.Adbrite : Cleaned.
:mozilla.288:C:\Documents and Settings\Kevin\Application Data\Mozilla\Firefox\Profiles\8jublrbf.default\cookies-1.txt -> TrackingCookie.Adbrite : Cleaned.
:mozilla.342:C:\Documents and Settings\Kevin\Application Data\Mozilla\Firefox\Profiles\8jublrbf.default\cookies-2.txt -> TrackingCookie.Adbrite : Cleaned.
:mozilla.343:C:\Documents and Settings\Kevin\Application Data\Mozilla\Firefox\Profiles\8jublrbf.default\cookies-2.txt -> TrackingCookie.Adbrite : Cleaned.
:mozilla.580:C:\Documents and Settings\Kevin\Application Data\Mozilla\Firefox\Profiles\8jublrbf.default\cookies-1.txt -> TrackingCookie.Adbrite : Cleaned.
:mozilla.581:C:\Documents and Settings\Kevin\Application Data\Mozilla\Firefox\Profiles\8jublrbf.default\cookies-1.txt -> TrackingCookie.Adbrite : Cleaned.
:mozilla.58:C:\Documents and Settings\Kevin\Application Data\Mozilla\Firefox\Profiles\8jublrbf.default\cookies-2.txt -> TrackingCookie.Adbrite : Cleaned.
:mozilla.593:C:\Documents and Settings\Kevin\Application Data\Mozilla\Firefox\Profiles\8jublrbf.default\cookies-1.txt -> TrackingCookie.Adbrite : Cleaned.
:mozilla.59:C:\Documents and Settings\Kevin\Application Data\Mozilla\Firefox\Profiles\8jublrbf.default\cookies-2.txt -> TrackingCookie.Adbrite : Cleaned.
:mozilla.60:C:\Documents and Settings\Kevin\Application Data\Mozilla\Firefox\Profiles\8jublrbf.default\cookies-1.txt -> TrackingCookie.Adbrite : Cleaned.
:mozilla.60:C:\Documents and Settings\Kevin\Application Data\Mozilla\Firefox\Profiles\8jublrbf.default\cookies-2.txt -> TrackingCookie.Adbrite : Cleaned.
:mozilla.614:C:\Documents and Settings\Kevin\Application Data\Mozilla\Firefox\Profiles\8jublrbf.default\cookies-2.txt -> TrackingCookie.Adbrite : Cleaned.
:mozilla.615:C:\Documents and Settings\Kevin\Application Data\Mozilla\Firefox\Profiles\8jublrbf.default\cookies-2.txt -> TrackingCookie.Adbrite : Cleaned.
:mozilla.61:C:\Documents and Settings\Kevin\Application Data\Mozilla\Firefox\Profiles\8jublrbf.default\cookies-1.txt -> TrackingCookie.Adbrite : Cleaned.
:mozilla.626:C:\Documents and Settings\Kevin\Application Data\Mozilla\Firefox\Profiles\8jublrbf.default\cookies-2.txt -> TrackingCookie.Adbrite : Cleaned.
:mozilla.62:C:\Documents and Settings\Kevin\Application Data\Mozilla\Firefox\Profiles\8jublrbf.default\cookies-1.txt -> TrackingCookie.Adbrite : Cleaned.
:mozilla.99:C:\Documents and Settings\Kevin\Application Data\Mozilla\Firefox\Profiles\8jublrbf.default\cookies-2.txt -> TrackingCookie.Adbrite : Cleaned.
:mozilla.316:C:\Documents and Settings\Kevin\Application Data\Mozilla\Firefox\Profiles\8jublrbf.default\cookies-1.txt -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.317:C:\Documents and Settings\Kevin\Application Data\Mozilla\Firefox\Profiles\8jublrbf.default\cookies-1.txt -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.318:C:\Documents and Settings\Kevin\Application Data\Mozilla\Firefox\Profiles\8jublrbf.default\cookies-1.txt -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.319:C:\Documents and Settings\Kevin\Application Data\Mozilla\Firefox\Profiles\8jublrbf.default\cookies-1.txt -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.320:C:\Documents and Settings\Kevin\Application Data\Mozilla\Firefox\Profiles\8jublrbf.default\cookies-1.txt -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.321:C:\Documents and Settings\Kevin\Application Data\Mozilla\Firefox\Profiles\8jublrbf.default\cookies-1.txt -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.370:C:\Documents and Settings\Kevin\Application Data\Mozilla\Firefox\Profiles\8jublrbf.default\cookies-2.txt -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.371:C:\Documents and Settings\Kevin\Application Data\Mozilla\Firefox\Profiles\8jublrbf.default\cookies-2.txt -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.372:C:\Documents and Settings\Kevin\Application Data\Mozilla\Firefox\Profiles\8jublrbf.default\cookies-2.txt -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.373:C:\Documents and Settings\Kevin\Application Data\Mozilla\Firefox\Profiles\8jublrbf.default\cookies-2.txt -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.374:C:\Documents and Settings\Kevin\Application Data\Mozilla\Firefox\Profiles\8jublrbf.default\cookies-2.txt -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.375:C:\Documents and Settings\Kevin\Application Data\Mozilla\Firefox\Profiles\8jublrbf.default\cookies-2.txt -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.46:C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\ufyha7d3.default\cookies.txt -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.47:C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\ufyha7d3.default\cookies.txt -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.48:C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\ufyha7d3.default\cookies.txt -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.49:C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\ufyha7d3.default\cookies.txt -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.50:C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\ufyha7d3.default\cookies.txt -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.37:C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\ufyha7d3.default\cookies.txt -> TrackingCookie.Adserver : Cleaned.
:mozilla.38:C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\ufyha7d3.default\cookies.txt -> TrackingCookie.Adserver : Cleaned.
:mozilla.39:C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\ufyha7d3.default\cookies.txt -> TrackingCookie.Adserver : Cleaned.
:mozilla.125:C:\Documents and Settings\Kevin\Application Data\Mozilla\Firefox\Profiles\8jublrbf.default\cookies-2.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.126:C:\Documents and Settings\Kevin\Application Data\Mozilla\Firefox\Profiles\8jublrbf.default\cookies-2.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.128:C:\Documents and Settings\Kevin\Application Data\Mozilla\Firefox\Profiles\8jublrbf.default\cookies-2.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.129:C:\Documents and Settings\Kevin\Application Data\Mozilla\Firefox\Profiles\8jublrbf.default\cookies-2.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.130:C:\Documents and Settings\Kevin\Application Data\Mozilla\Firefox\Profiles\8jublrbf.default\cookies-2.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.191:C:\Documents and Settings\Kevin\Application Data\Mozilla\Firefox\Profiles\8jublrbf.default\cookies-1.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.192:C:\Documents and Settings\Kevin\Application Data\Mozilla\Firefox\Profiles\8jublrbf.default\cookies-1.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.193:C:\Documents and Settings\Kevin\Application Data\Mozilla\Firefox\Profiles\8jublrbf.default\cookies-1.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.194:C:\Documents and Settings\Kevin\Application Data\Mozilla\Firefox\Profiles\8jublrbf.default\cookies-1.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.195:C:\Documents and Settings\Kevin\Application Data\Mozilla\Firefox\Profiles\8jublrbf.default\cookies-1.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.40:C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\ufyha7d3.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.41:C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\ufyha7d3.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.42:C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\ufyha7d3.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.51:C:\Documents and Settings\Steve\Application Data\Mozilla\Firefox\Profiles\wf17yh5w.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.52:C:\Documents and Settings\Steve\Application Data\Mozilla\Firefox\Profiles\wf17yh5w.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.53:C:\Documents and Settings\Steve\Application Data\Mozilla\Firefox\Profiles\wf17yh5w.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.54:C:\Documents and Settings\Steve\Application Data\Mozilla\Firefox\Profiles\wf17yh5w.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.55:C:\Documents and Settings\Steve\Application Data\Mozilla\Firefox\Profiles\wf17yh5w.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.21:C:\Documents and Settings\Steve\Application Data\Mozilla\Firefox\Profiles\wf17yh5w.default\cookies.txt -> TrackingCookie.Atdmt : Cleaned.
:mozilla.27:C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\ufyha7d3.default\cookies.txt -> TrackingCookie.Atdmt : Cleaned.
:mozilla.32:C:\Documents and Settings\Kevin\Application Data\Mozilla\Firefox\Profiles\8jublrbf.default\cookies-2.txt -> TrackingCookie.Atdmt : Cleaned.
:mozilla.37:C:\Documents and Settings\Kevin\Application Data\Mozilla\Firefox\Profiles\8jublrbf.default\cookies-1.txt -> TrackingCookie.Atdmt : Cleaned.
:mozilla.122:C:\Documents and Settings\Kevin\Application Data\Mozilla\Firefox\Profiles\8jublrbf.default\cookies-1.txt -> TrackingCookie.Bfast : Cleaned.
:mozilla.204:C:\Documents and Settings\Kevin\Application Data\Mozilla\Firefox\Profiles\8jublrbf.default\cookies-2.txt -> TrackingCookie.Bfast : Cleaned.
:mozilla.73:C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\ufyha7d3.default\cookies.txt -> TrackingCookie.Bfast : Cleaned.
:mozilla.74:C:\Documents and Settings\Steve\Application Data\Mozilla\Firefox\Profiles\wf17yh5w.default\cookies.txt -> TrackingCookie.Bluestreak : Cleaned.
:mozilla.56:C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\ufyha7d3.default\cookies.txt -> TrackingCookie.Bridgetrack : Cleaned.
:mozilla.56:C:\Documents and Settings\Kevin\Application Data\Mozilla\Firefox\Profiles\8jublrbf.default\cookies-1.txt -> TrackingCookie.Burstbeacon : Cleaned.
:mozilla.90:C:\Documents and Settings\Kevin\Application Data\Mozilla\Firefox\Profiles\8jublrbf.default\cookies-2.txt -> TrackingCookie.Burstbeacon : Cleaned.
:mozilla.27:C:\Documents and Settings\Kevin\Application Data\Mozilla\Firefox\Profiles\8jublrbf.default\cookies-1.txt -> TrackingCookie.Burstnet : Cleaned.
:mozilla.28:C:\Documents and Settings\Kevin\Application Data\Mozilla\Firefox\Profiles\8jublrbf.default\cookies-1.txt -> TrackingCookie.Burstnet : Cleaned.
:mozilla.29:C:\Documents and Settings\Kevin\Application Data\Mozilla\Firefox\Profiles\8jublrbf.default\cookies-1.txt -> TrackingCookie.Burstnet : Cleaned.
:mozilla.30:C:\Documents and Settings\Kevin\Application Data\Mozilla\Firefox\Profiles\8jublrbf.default\cookies-1.txt -> TrackingCookie.Burstnet : Cleaned.
:mozilla.52:C:\Documents and Settings\Kevin\Application Data\Mozilla\Firefox\Profiles\8jublrbf.default\cookies-2.txt -> TrackingCookie.Burstnet : Cleaned.
:mozilla.53:C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\ufyha7d3.default\cookies.txt -> TrackingCookie.Burstnet : Cleaned.
:mozilla.53:C:\Documents and Settings\Kevin\Application Data\Mozilla\Firefox\Profiles\8jublrbf.default\cookies-2.txt -> TrackingCookie.Burstnet : Cleaned.
:mozilla.54:C:\Documents and Settings\Kevin\Application Data\Mozilla\Firefox\Profiles\8jublrbf.default\cookies-2.txt -> TrackingCookie.Burstnet : Cleaned.
:mozilla.55:C:\Documents and Settings\Kevin\Application Data\Mozilla\Firefox\Profiles\8jublrbf.default\cookies-2.txt -> TrackingCookie.Burstnet : Cleaned.
:mozilla.159:C:\Documents and Settings\Steve\Application Data\Mozilla\Firefox\Profiles\wf17yh5w.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned.
:mozilla.160:C:\Documents and Settings\Steve\Application Data\Mozilla\Firefox\Profiles\wf17yh5w.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned.
:mozilla.52:C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\ufyha7d3.default\cookies.txt -> TrackingCookie.Clickagents : Cleaned.
:mozilla.130:C:\Documents and Settings\Kevin\Application Data\Mozilla\Firefox\Profiles\8jublrbf.default\cookies-1.txt -> TrackingCookie.Com : Cleaned.
:mozilla.131:C:\Documents and Settings\Kevin\Application Data\Mozilla\Firefox\Profiles\8jublrbf.default\cookies-1.txt -> TrackingCookie.Com : Cleaned.
:mozilla.132:C:\Documents and Settings\Kevin\Application Data\Mozilla\Firefox\Profiles\8jublrbf.default\cookies-1.txt -> TrackingCookie.Com : Cleaned.
:mozilla.133:C:\Documents and Settings\Kevin\Application Data\Mozilla\Firefox\Profiles\8jublrbf.default\cookies-1.txt -> TrackingCookie.Com : Cleaned.
:mozilla.134:C:\Documents and Settings\Kevin\Application Data\Mozilla\Firefox\Profiles\8jublrbf.default\cookies-1.txt -> TrackingCookie.Com : Cleaned.
:mozilla.210:C:\Documents and Settings\Kevin\Application Data\Mozilla\Firefox\Profiles\8jublrbf.default\cookies-2.txt -> TrackingCookie.Com : Cleaned.
:mozilla.211:C:\Documents and Settings\Kevin\Application Data\Mozilla\Firefox\Profiles\8jublrbf.default\cookies-2.txt -> TrackingCookie.Com : Cleaned.
:mozilla.212:C:\Documents and Settings\Kevin\Application Data\Mozilla\Firefox\Profiles\8jublrbf.default\cookies-2.txt -> TrackingCookie.Com : Cleaned.
:mozilla.213:C:\Documents and Settings\Kevin\Application Data\Mozilla\Firefox\Profiles\8jublrbf.default\cookies-2.txt -> TrackingCookie.Com : Cleaned.
:mozilla.214:C:\Documents and Settings\Kevin\Application Data\Mozilla\Firefox\Profiles\8jublrbf.default\cookies-2.txt -> TrackingCookie.Com : Cleaned.
:mozilla.104:C:\Documents and Settings\Kevin\Application Data\Mozilla\Firefox\Profiles\8jublrbf.default\cookies-2.txt -> TrackingCookie.Coremetrics : Cleaned.
:mozilla.484:C:\Documents and Settings\Kevin\Application Data\Mozilla\Firefox\Profiles\8jublrbf.default\cookies-1.txt -> TrackingCookie.Coremetrics : Cleaned.
:mozilla.26:C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\ufyha7d3.default\cookies.txt -> TrackingCookie.Doubleclick : Cleaned.
:mozilla.168:C:\Documents and Settings\Kevin\Application Data\Mozilla\Firefox\Profiles\8jublrbf.default\cookies-2.txt -> TrackingCookie.Esomniture : Cleaned.
:mozilla.169:C:\Documents and Settings\Kevin\Application Data\Mozilla\Firefox\Profiles\8jublrbf.default\cookies-2.txt -> TrackingCookie.Esomniture : Cleaned.
:mozilla.172:C:\Documents and Settings\Kevin\Application Data\Mozilla\Firefox\Profiles\8jublrbf.default\cookies-2.txt -> TrackingCookie.Esomniture : Cleaned.
:mozilla.173:C:\Documents and Settings\Kevin\Application Data\Mozilla\Firefox\Profiles\8jublrbf.default\cookies-2.txt -> TrackingCookie.Esomniture : Cleaned.
:mozilla.301:C:\Documents and Settings\Kevin\Application Data\Mozilla\Firefox\Profiles\8jublrbf.default\cookies-1.txt -> TrackingCookie.Esomniture : Cleaned.
:mozilla.356:C:\Documents and Settings\Kevin\Application Data\Mozilla\Firefox\Profiles\8jublrbf.default\cookies-2.txt -> TrackingCookie.Esomniture : Cleaned.
:mozilla.569:C:\Documents and Settings\Kevin\Application Data\Mozilla\Firefox\Profiles\8jublrbf.default\cookies-1.txt -> TrackingCookie.Esomniture : Cleaned.
:mozilla.583:C:\Documents and Settings\Kevin\Application Data\Mozilla\Firefox\Profiles\8jublrbf.default\cookies-1.txt -> TrackingCookie.Esomniture : Cleaned.
:mozilla.603:C:\Documents and Settings\Kevin\Application Data\Mozilla\Firefox\Profiles\8jublrbf.default\cookies-2.txt -> TrackingCookie.Esomniture : Cleaned.
:mozilla.617:C:\Documents and Settings\Kevin\Application Data\Mozilla\Firefox\Profiles\8jublrbf.default\cookies-2.txt -> TrackingCookie.Esomniture : Cleaned.
:mozilla.65:C:\Documents and Settings\Kevin\Application Data\Mozilla\Firefox\Profiles\8jublrbf.default\cookies-1.txt -> TrackingCookie.Esomniture : Cleaned.
:mozilla.660:C:\Documents and Settings\Kevin\Application Data\Mozilla\Firefox\Profiles\8jublrbf.default\cookies-1.txt -> TrackingCookie.Esomniture : Cleaned.
:mozilla.66:C:\Documents and Settings\Kevin\Application Data\Mozilla\Firefox\Profiles\8jublrbf.default\cookies-1.txt -> TrackingCookie.Esomniture : Cleaned.
:mozilla.691:C:\Documents and Settings\Kevin\Application Data\Mozilla\Firefox\Profiles\8jublrbf.default\cookies-2.txt -> TrackingCookie.Esomniture : Cleaned.
:mozilla.69:C:\Documents and Settings\Kevin\Application Data\Mozilla\Firefox\Profiles\8jublrbf.default\cookies-1.txt -> TrackingCookie.Esomniture : Cleaned.
:mozilla.70:C:\Documents and Settings\Kevin\Application Data\Mozilla\Firefox\Profiles\8jublrbf.default\cookies-1.txt -> TrackingCookie.Esomniture : Cleaned.
:mozilla.395:C:\Documents and Settings\Kevin\Application Data\Mozilla\Firefox\Profiles\8jublrbf.default\cookies-1.txt -> TrackingCookie.Googleadservices : Cleaned.
:mozilla.410:C:\Documents and Settings\Kevin\Application Data\Mozilla\Firefox\Profiles\8jublrbf.default\cookies-1.txt -> TrackingCookie.Googleadservices : Cleaned.
:mozilla.441:C:\Documents and Settings\Kevin\Application Data\Mozilla\Firefox\Profiles\8jublrbf.default\cookies-2.txt -> TrackingCookie.Googleadservices : Cleaned.
:mozilla.456:C:\Documents and Settings\Kevin\Application Data\Mozilla\Firefox\Profiles\8jublrbf.default\cookies-2.txt -> TrackingCookie.Googleadservices : Cleaned.
:mozilla.479:C:\Documents and Settings\Kevin\Application Data\Mozilla\Firefox\Profiles\8jublrbf.default\cookies-1.txt -> TrackingCookie.Googleadservices : Cleaned.
:mozilla.521:C:\Documents and Settings\Kevin\Application Data\Mozilla\Firefox\Profiles\8jublrbf.default\cookies-2.txt -> TrackingCookie.Googleadservices : Cleaned.
:mozilla.659:C:\Documents and Settings\Kevin\Application Data\Mozilla\Firefox\Profiles\8jublrbf.default\cookies-1.txt -> TrackingCookie.Googleadservices : Cleaned.
:mozilla.690:C:\Documents and Settings\Kevin\Application Data\Mozilla\Firefox\Profiles\8jublrbf.default\cookies-2.txt -> TrackingCookie.Googleadservices : Cleaned.
:mozilla.60:C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\ufyha7d3.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned.
:mozilla.61:C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\ufyha7d3.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned.
:mozilla.183:C:\Documents and Settings\Kevin\Application Data\Mozilla\Firefox\Profiles\8jublrbf.default\cookies-1.txt -> TrackingCookie.Hitslink : Cleaned.
:mozilla.256:C:\Documents and Settings\Kevin\Application Data\Mozilla\Firefox\Profiles\8jublrbf.default\cookies-2.txt -> TrackingCookie.Hitslink : Cleaned.
:mozilla.474:C:\Documents and Settings\Kevin\Application Data\Mozilla\Firefox\Profiles\8jublrbf.default\cookies-1.txt -> TrackingCookie.Linksynergy : Cleaned.
:mozilla.475:C:\Documents and Settings\Kevin\Application Data\Mozilla\Firefox\Profiles\8jublrbf.default\cookies-1.txt -> TrackingCookie.Linksynergy : Cleaned.
:mozilla.516:C:\Documents and Settings\Kevin\Application Data\Mozilla\Firefox\Profiles\8jublrbf.default\cookies-2.txt -> TrackingCookie.Linksynergy : Cleaned.
:mozilla.517:C:\Documents and Settings\Kevin\Application Data\Mozilla\Firefox\Profiles\8jublrbf.default\cookies-2.txt -> TrackingCookie.Linksynergy : Cleaned.
:mozilla.284:C:\Documents and Settings\Kevin\Application Data\Mozilla\Firefox\Profiles\8jublrbf.default\cookies-1.txt -> TrackingCookie.Liveperson : Cleaned.
:mozilla.327:C:\Documents and Settings\Kevin\Application Data\Mozilla\Firefox\Profiles\8jublrbf.default\cookies-1.txt -> TrackingCookie.Liveperson : Cleaned.
:mozilla.339:C:\Documents and Settings\Kevin\Application Data\Mozilla\Firefox\Profiles\8jublrbf.default\cookies-2.txt -> TrackingCookie.Liveperson : Cleaned.
:mozilla.380:C:\Documents and Settings\Kevin\Application Data\Mozilla\Firefox\Profiles\8jublrbf.default\cookies-2.txt -> TrackingCookie.Liveperson : Cleaned.
:mozilla.462:C:\Documents and Settings\Kevin\Application Data\Mozilla\Firefox\Profiles\8jublrbf.default\cookies-1.txt -> TrackingCookie.Liveperson : Cleaned.
:mozilla.463:C:\Documents and Settings\Kevin\Application Data\Mozilla\Firefox\Profiles\8jublrbf.default\cookies-1.txt -> TrackingCookie.Liveperson : Cleaned.
:mozilla.504:C:\Documents and Settings\Kevin\Application Data\Mozilla\Firefox\Profiles\8jublrbf.default\cookies-2.txt -> TrackingCookie.Liveperson : Cleaned.
:mozilla.505:C:\Documents and Settings\Kevin\Application Data\Mozilla\Firefox\Profiles\8jublrbf.default\cookies-2.txt -> TrackingCookie.Liveperson : Cleaned.
:mozilla.6:C:\Documents and Settings\Steve\Application Data\Mozilla\Firefox\Profiles\wf17yh5w.default\cookies.txt -> TrackingCookie.Liveperson : Cleaned.
:mozilla.7:C:\Documents and Settings\Steve\Application Data\Mozilla\Firefox\Profiles\wf17yh5w.default\cookies.txt -> TrackingCookie.Liveperson : Cleaned.
:mozilla.8:C:\Documents and Settings\Steve\Application Data\Mozilla\Firefox\Profiles\wf17yh5w.default\cookies.txt -> TrackingCookie.Liveperson : Cleaned.
:mozilla.9:C:\Documents and Settings\Steve\Application Data\Mozilla\Firefox\Profiles\wf17yh5w.default\cookies.txt -> TrackingCookie.Liveperson : Cleaned.
:mozilla.32:C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\ufyha7d3.default\cookies.txt -> TrackingCookie.Mediaplex : Cleaned.
:mozilla.33:C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\ufyha7d3.default\cookies.txt -> TrackingCookie.Mediaplex : Cleaned.
:mozilla.44:C:\Documents and Settings\Kevin\Application Data\Mozilla\Firefox\Profiles\8jublrbf.default\cookies-1.txt -> TrackingCookie.Mediaplex : Cleaned.
:mozilla.45:C:\Documents and Settings\Kevin\Application Data\Mozilla\Firefox\Profiles\8jublrbf.default\cookies-1.txt -> TrackingCookie.Mediaplex : Cleaned.
:mozilla.46:C:\Documents and Settings\Steve\Application Data\Mozilla\Firefox\Profiles\wf17yh5w.default\cookies.txt -> TrackingCookie.Mediaplex : Cleaned.
:mozilla.81:C:\Documents and Settings\Kevin\Application Data\Mozilla\Firefox\Profiles\8jublrbf.default\cookies-2.txt -> TrackingCookie.Mediaplex : Cleaned.
:mozilla.82:C:\Documents and Settings\Kevin\Application Data\Mozilla\Firefox\Profiles\8jublrbf.default\cookies-2.txt -> TrackingCookie.Mediaplex : Cleaned.
:mozilla.239:C:\Documents and Settings\Kevin\Application Data\Mozilla\Firefox\Profiles\8jublrbf.default\cookies-1.txt -> TrackingCookie.Onestat : Cleaned.
:mozilla.240:C:\Documents and Settings\Kevin\Application Data\Mozilla\Firefox\Profiles\8jublrbf.default\cookies-1.txt -> TrackingCookie.Onestat : Cleaned.
:mozilla.297:C:\Documents and Settings\Kevin\Application Data\Mozilla\Firefox\Profiles\8jublrbf.default\cookies-2.txt -> TrackingCookie.Onestat : Cleaned.
:mozilla.298:C:\Documents and Settings\Kevin\Application Data\Mozilla\Firefox\Profiles\8jublrbf.default\cookies-2.txt -> TrackingCookie.Onestat : Cleaned.
:mozilla.119:C:\Documents and Settings\Steve\Application Data\Mozilla\Firefox\Profiles\wf17yh5w.default\cookies.txt -> TrackingCookie.Overture : Cleaned.
:mozilla.11:C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\ufyha7d3.default\cookies.txt -> TrackingCookie.Overture : Cleaned.
:mozilla.120:C:\Documents and Settings\Steve\Application Data\Mozilla\Firefox\Profiles\wf17yh5w.default\cookies.txt -> TrackingCookie.Overture : Cleaned.
:mozilla.121:C:\Documents and Settings\Steve\Application Data\Mozilla\Firefox\Profiles\wf17yh5w.default\cookies.txt -> TrackingCookie.Overture : Cleaned.
:mozilla.693:C:\Documents and Settings\Kevin\Application Data\Mozilla\Firefox\Profiles\8jublrbf.default\cookies-1.txt -> TrackingCookie.Overture : Cleaned.
:mozilla.694:C:\Documents and Settings\Kevin\Application Data\Mozilla\Firefox\Profiles\8jublrbf.default\cookies-1.txt -> TrackingCookie.Overture : Cleaned.
:mozilla.724:C:\Documents and Settings\Kevin\Application Data\Mozilla\Firefox\Profiles\8jublrbf.default\cookies-2.txt -> TrackingCookie.Overture : Cleaned.
:mozilla.725:C:\Documents and Settings\Kevin\Application Data\Mozilla\Firefox\Profiles\8jublrbf.default\cookies-2.txt -> TrackingCookie.Overture : Cleaned.
:mozilla.131:C:\Documents and Settings\Steve\Application Data\Mozilla\Firefox\Profiles\wf17yh5w.default\cookies.txt -> TrackingCookie.Pointroll : Cleaned.
:mozilla.132:C:\Documents and Settings\Steve\Application Data\Mozilla\Firefox\Profiles\wf17yh5w.default\cookies.txt -> TrackingCookie.Pointroll : Cleaned.
:mozilla.133:C:\Documents and Settings\Steve\Application Data\Mozilla\Firefox\Profiles\wf17yh5w.default\cookies.txt -> TrackingCookie.Pointroll : Cleaned.
:mozilla.134:C:\Documents and Settings\Steve\Application Data\Mozilla\Firefox\Profiles\wf17yh5w.default\cookies.txt -> TrackingCookie.Pointroll : Cleaned.
:mozilla.362:C:\Documents and Settings\Kevin\Application Data\Mozilla\Firefox\Profiles\8jublrbf.default\cookies-1.txt -> TrackingCookie.Pointroll : Cleaned.
:mozilla.363:C:\Documents and Settings\Kevin\Application Data\Mozilla\Firefox\Profiles\8jublrbf.default\cookies-1.txt -> TrackingCookie.Pointroll : Cleaned.
:mozilla.364:C:\Documents and Settings\Kevin\Application Data\Mozilla\Firefox\Profiles\8jublrbf.default\cookies-1.txt -> TrackingCookie.Pointroll : Cleaned.
:mozilla.365:C:\Documents and Settings\Kevin\Application Data\Mozilla\Firefox\Profiles\8jublrbf.default\cookies-1.txt -> TrackingCookie.Pointroll : Cleaned.
:mozilla.366:C:\Documents and Settings\Kevin\Application Data\Mozilla\Firefox\Profiles\8jublrbf.default\cookies-1.txt -> TrackingCookie.Pointroll : Cleaned.
:mozilla.76:C:\Documents and Settings\Kevin\Application Data\Mozilla\Firefox\Profiles\8jublrbf.default\cookies-2.txt -> TrackingCookie.Pointroll : Cleaned.
:mozilla.77:C:\Documents and Settings\Kevin\Application Data\Mozilla\Firefox\Profiles\8jublrbf.default\cookies-2.txt -> TrackingCookie.Pointroll : Cleaned.
:mozilla.78:C:\Documents and Settings\Kevin\Application Data\Mozilla\Firefox\Profiles\8jublrbf.default\cookies-2.txt -> TrackingCookie.Pointroll : Cleaned.
:mozilla.79:C:\Documents and Settings\Kevin\Application Data\Mozilla\Firefox\Profiles\8jublrbf.default\cookies-2.txt -> TrackingCookie.Pointroll : Cleaned.
:mozilla.80:C:\Documents and Settings\Kevin\Application Data\Mozilla\Firefox\Profiles\8jublrbf.default\cookies-2.txt -> TrackingCookie.Pointroll : Cleaned.
:mozilla.75:C:\Documents and Settings\Steve\Application Data\Mozilla\Firefox\Profiles\wf17yh5w.default\cookies.txt -> TrackingCookie.Questionmarket : Cleaned.
:mozilla.76:C:\Documents and Settings\Steve\Application Data\Mozilla\Firefox\Profiles\wf17yh5w.default\cookies.txt -> TrackingCookie.Questionmarket : Cleaned.
:mozilla.77:C:\Documents and Settings\Steve\Application Data\Mozilla\Firefox\Profiles\wf17yh5w.default\cookies.txt -> TrackingCookie.Questionmarket : Cleaned.
:mozilla.611:C:\Documents and Settings\Kevin\Application Data\Mozilla\Firefox\Profiles\8jublrbf.default\cookies-1.txt -> TrackingCookie.Ru4 : Cleaned.
:mozilla.644:C:\Documents and Settings\Kevin\Application Data\Mozilla\Firefox\Profiles\8jublrbf.default\cookies-2.txt -> TrackingCookie.Ru4 : Cleaned.
:mozilla.152:C:\Documents and Settings\Steve\Application Data\Mozilla\Firefox\Profiles\wf17yh5w.default\cookies.txt -> TrackingCookie.Serving-sys : Cleaned.
:mozilla.153:C:\Documents and Settings\Steve\Application Data\Mozilla\Firefox\Profiles\wf17yh5w.default\cookies.txt -> TrackingCookie.Serving-sys : Cleaned.
:mozilla.154:C:\Documents and Settings\Steve\Application Data\Mozilla\Firefox\Profiles\wf17yh5w.default\cookies.txt -> TrackingCookie.Serving-sys : Cleaned.
:mozilla.155:C:\Documents and Settings\Steve\Application Data\Mozilla\Firefox\Profiles\wf17yh5w.default\cookies.txt -> TrackingCookie.Serving-sys : Cleaned.
:mozilla.156:C:\Documents and Settings\Steve\Application Data\Mozilla\Firefox\Profiles\wf17yh5w.default\cookies.txt -> TrackingCookie.Serving-sys : Cleaned.
:mozilla.157:C:\Documents and Settings\Steve\Application Data\Mozilla\Firefox\Profiles\wf17yh5w.default\cookies.txt -> TrackingCookie.Serving-sys : Cleaned.
:mozilla.90:C:\Documents and Settings\Steve\Application Data\Mozilla\Firefox\Profiles\wf17yh5w.default\cookies.txt -> TrackingCookie.Specificclick : Cleaned.
:mozilla.91:C:\Documents and Settings\Steve\Application Data\Mozilla\Firefox\Profiles\wf17yh5w.default\cookies.txt -> TrackingCookie.Specificclick : Cleaned.
:mozilla.250:C:\Documents and Settings\Kevin\Application Data\Mozilla\Firefox\Profiles\8jublrbf.default\cookies-1.txt -> TrackingCookie.Statcounter : Cleaned.
:mozilla.251:C:\Documents and Settings\Kevin\Application Data\Mozilla\Firefox\Profiles\8jublrbf.default\cookies-1.txt -> TrackingCookie.Statcounter : Cleaned.
:mozilla.252:C:\Documents and Settings\Kevin\Application Data\Mozilla\Firefox\Profiles\8jublrbf.default\cookies-1.txt -> TrackingCookie.Statcounter : Cleaned.
:mozilla.253:C:\Documents and Settings\Kevin\Application Data\Mozilla\Firefox\Profiles\8jublrbf.default\cookies-1.txt -> TrackingCookie.Statcounter : Cleaned.
:mozilla.308:C:\Documents and Settings\Kevin\Application Data\Mozilla\Firefox\Profiles\8jublrbf.default\cookies-2.txt -> TrackingCookie.Statcounter : Cleaned.
:mozilla.309:C:\Documents and Settings\Kevin\Application Data\Mozilla\Firefox\Profiles\8jublrbf.default\cookies-2.txt -> TrackingCookie.Statcounter : Cleaned.
:mozilla.310:C:\Documents and Settings\Kevin\Application Data\Mozilla\Firefox\Profiles\8jublrbf.default\cookies-2.txt -> TrackingCookie.Statcounter : Cleaned.
:mozilla.311:C:\Documents and Settings\Kevin\Application Data\Mozilla\Firefox\Profiles\8jublrbf.default\cookies-2.txt -> TrackingCookie.Statcounter : Cleaned.
:mozilla.84:C:\Documents and Settings\Steve\Application Data\Mozilla\Firefox\Profiles\wf17yh5w.default\cookies.txt -> TrackingCookie.Tacoda : Cleaned.
:mozilla.89:C:\Documents and Settings\Steve\Application Data\Mozilla\Firefox\Profiles\wf17yh5w.default\cookies.txt -> TrackingCookie.Tacoda : Cleaned.
:mozilla.178:C:\Documents and Settings\Kevin\Application Data\Mozilla\Firefox\Profiles\8jublrbf.default\cookies-2.txt -> TrackingCookie.Trafic : Cleaned.
:mozilla.79:C:\Documents and Settings\Kevin\Application Data\Mozilla\Firefox\Profiles\8jublrbf.default\cookies-1.txt -> TrackingCookie.Trafic : Cleaned.
:mozilla.178:C:\Documents and Settings\Kevin\Application Data\Mozilla\Firefox\Profiles\8jublrbf.default\cookies-1.txt -> TrackingCookie.Tribalfusion : Cleaned.
:mozilla.179:C:\Documents and Settings\Kevin\Application Data\Mozilla\Firefox\Profiles\8jublrbf.default\cookies-1.txt -> TrackingCookie.Tribalfusion : Cleaned.
:mozilla.180:C:\Documents and Settings\Kevin\Application Data\Mozilla\Firefox\Profiles\8jublrbf.default\cookies-1.txt -> TrackingCookie.Tribalfusion : Cleaned.
:mozilla.181:C:\Documents and Settings\Kevin\Application Data\Mozilla\Firefox\Profiles\8jublrbf.default\cookies-1.txt -> TrackingCookie.Tribalfusion : Cleaned.
:mozilla.182:C:\Documents and Settings\Kevin\Application Data\Mozilla\Firefox\Profiles\8jublrbf.default\cookies-1.txt -> TrackingCookie.Tribalfusion : Cleaned.
:mozilla.23:C:\Documents and Settings\Kevin\Application Data\Mozilla\Firefox\Profiles\8jublrbf.default\cookies-2.txt -> TrackingCookie.Tribalfusion : Cleaned.
:mozilla.24:C:\Documents and Settings\Kevin\Application Data\Mozilla\Firefox\Profiles\8jublrbf.default\cookies-2.txt -> TrackingCookie.Tribalfusion : Cleaned.
:mozilla.25:C:\Documents and Settings\Kevin\Application Data\Mozilla\Firefox\Profiles\8jublrbf.default\cookies-2.txt -> TrackingCookie.Tribalfusion : Cleaned.
:mozilla.27:C:\Documents and Settings\Kevin\Application Data\Mozilla\Firefox\Profiles\8jublrbf.default\cookies-2.txt -> TrackingCookie.Tribalfusion : Cleaned.
:mozilla.28:C:\Documents and Settings\Kevin\Application Data\Mozilla\Firefox\Profiles\8jublrbf.default\cookies-2.txt -> TrackingCookie.Tribalfusion : Cleaned.
:mozilla.29:C:\Documents and Settings\Kevin\Application Data\Mozilla\Firefox\Profiles\8jublrbf.default\cookies-2.txt -> TrackingCookie.Tribalfusion : Cleaned.
:mozilla.30:C:\Documents and Settings\Kevin\Application Data\Mozilla\Firefox\Profiles\8jublrbf.default\cookies-2.txt -> TrackingCookie.Tribalfusion : Cleaned.
:mozilla.31:C:\Documents and Settings\Kevin\Application Data\Mozilla\Firefox\Profiles\8jublrbf.default\cookies-2.txt -> TrackingCookie.Tribalfusion : Cleaned.
:mozilla.267:C:\Documents and Settings\Kevin\Application Data\Mozilla\Firefox\Profiles\8jublrbf.default\cookies-1.txt -> TrackingCookie.Valuead : Cleaned.
:mozilla.268:C:\Documents and Settings\Kevin\Application Data\Mozilla\Firefox\Profiles\8jublrbf.default\cookies-1.txt -> TrackingCookie.Valuead : Cleaned.
:mozilla.269:C:\Documents and Settings\Kevin\Application Data\Mozilla\Firefox\Profiles\8jublrbf.default\cookies-1.txt -> TrackingCookie.Valuead : Cleaned.
:mozilla.270:C:\Documents and Settings\Kevin\Application Data\Mozilla\Firefox\Profiles\8jublrbf.default\cookies-1.txt -> TrackingCookie.Valuead : Cleaned.
:mozilla.271:C:\Documents and Settings\Kevin\Application Data\Mozilla\Firefox\Profiles\8jublrbf.default\cookies-1.txt -> TrackingCookie.Valuead : Cleaned.
:mozilla.272:C:\Documents and Settings\Kevin\Application Data\Mozilla\Firefox\Profiles\8jublrbf.default\cookies-1.txt -> TrackingCookie.Valuead : Cleaned.
:mozilla.322:C:\Documents and Settings\Kevin\Application Data\Mozilla\Firefox\Profiles\8jublrbf.default\cookies-2.txt -> TrackingCookie.Valuead : Cleaned.
:mozilla.323:C:\Documents and Settings\Kevin\Application Data\Mozilla\Firefox\Profiles\8jublrbf.default\cookies-2.txt -> TrackingCookie.Valuead : Cleaned.
:mozilla.324:C:\Documents and Settings\Kevin\Application Data\Mozilla\Firefox\Profiles\8jublrbf.default\cookies-2.txt -> TrackingCookie.Valuead : Cleaned.
:mozilla.325:C:\Documents and Settings\Kevin\Application Data\Mozilla\Firefox\Profiles\8jublrbf.default\cookies-2.txt -> TrackingCookie.Valuead : Cleaned.
:mozilla.326:C:\Documents and Settings\Kevin\Application Data\Mozilla\Firefox\Profiles\8jublrbf.default\cookies-2.txt -> TrackingCookie.Valuead : Cleaned.
:mozilla.327:C:\Documents and Settings\Kevin\Application Data\Mozilla\Firefox\Profiles\8jublrbf.default\cookies-2.txt -> TrackingCookie.Valuead : Cleaned.
:mozilla.416:C:\Documents and Settings\Kevin\Application Data\Mozilla\Firefox\Profiles\8jublrbf.default\cookies-1.txt -> TrackingCookie.Webtrendslive : Cleaned.
:mozilla.462:C:\Documents and Settings\Kevin\Application Data\Mozilla\Firefox\Profiles\8jublrbf.default\cookies-2.txt -> TrackingCookie.Webtrendslive : Cleaned.
:mozilla.105:C:\Documents and Settings\Kevin\Application Data\Mozilla\Firefox\Profiles\8jublrbf.default\cookies-2.txt -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.106:C:\Documents and Settings\Kevin\Application Data\Mozilla\Firefox\Profiles\8jublrbf.default\cookies-2.txt -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.107:C:\Documents and Settings\Kevin\Application Data\Mozilla\Firefox\Profiles\8jublrbf.default\cookies-2.txt -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.261:C:\Documents and Settings\Kevin\Application Data\Mozilla\Firefox\Profiles\8jublrbf.default\cookies-1.txt -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.262:C:\Documents and Settings\Kevin\Application Data\Mozilla\Firefox\Profiles\8jublrbf.default\cookies-1.txt -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.263:C:\Documents and Settings\Kevin\Application Data\Mozilla\Firefox\Profiles\8jublrbf.default\cookies-1.txt -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.87:C:\Documents and Settings\Steve\Application Data\Mozilla\Firefox\Profiles\wf17yh5w.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.44:C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\ufyha7d3.default\cookies.txt -> TrackingCookie.Zedo : Cleaned.
:mozilla.45:C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\ufyha7d3.default\cookies.txt -> TrackingCookie.Zedo : Cleaned.
::Report end
At this present time, Im running no anitvirus nor firewall. I have to do some research and find a reliable software...
Any insight will be greatly appreciated....
-Kalonji
Lookin good :)
You really need to install a firewall and an antivirus.
These are good (free) firewalls: Sunbelt-Kerio (http://www.sunbelt-software.com/Kerio.cfm)
ZoneAlarm (http://www.zonelabs.com/)
Sygate (http://http://www.majorgeeks.com/download.php?det=3356)
Outpost (http://www.majorgeeks.com/download.php?det=1056)
These are good (free) antiviruses: AVG (http://free.grisoft.com)
Antivir (http://www.free-av.com)
Avast (http://www.avast.com)
Let me know how things are running :bigthumb:
I really appreciate all the support.
Thanks a million
Kalonji
Hi again, it is looking clean now :)
Now you can clean AVG's Quarantine:
Open AVG Anti-Spyware
Click Infections
Click Quarantine tab
Click Select all
Click Remove finally
Close the program
You can remove the tools we used.
Then you should update your Java to the latest version (6.0) Start
Control Panel
Add/Remove Programs
Delete the old Java, J2SE Runtime Environment 5.0 Update 2
Download the latest version of Java Runtime Environment (JRE) 6.0 (http://java.sun.com/javase/downloads/index.jsp).
Scroll down to where it says "The J2SE Runtime Environment (JRE) allows end-users to run Java applications."
Click the "Download" button to the right.
Check the box that says: "Accept License Agreement."
The page will refresh.
Click on the link to download Windows Offline Installation with or without Multi-language and save to your desktop.
Install it
=============
Now that you seem to be clean, please follow these simple steps in order to keep your computer clean and secure:
Clear your system restore (http://www.microsoft.com/windowsxp/using/helpandsupport/learnmore/tips/mcgill1.mspx)
This will clear the system restore folders from possible malware that was left behind during the cleaning process.
Use ATF Cleaner (http://www.atribune.org/ccount/click.php?id=1)
Download and install ATF Cleaner. Clean your temporary files & folders with it regularly.
Use Ad-Aware (http://www.bleepingcomputer.com/forums/?showtutorial=48)
Download and install Ad-Aware. Update it and scan your computer regularly with it.
Use AVG Anti-Spyware (http://www.ewido.net/en/)
Update it and scan your computer regularly with it.
Use Spybot S&D (http://www.bleepingcomputer.com/forums/?showtutorial=43)
Download and install Spybot S&D. Update it and scan your computer regularly with it.
Install SpywareBlaster (http://www.javacoolsoftware.com/spywareblaster.html)
SpywareBlaster will prevent spyware from being installed.
Install MVPS Hosts file (http://mvps.org/winhelp2002/hosts.htm)
This prevents your computer from connecting to harmful sites.
Use Firefox browser (http://www.mozilla.org)
Firefox is faster, safer and better browser than Internet Explorer.
Keep your systen up-to-date (http://windowsupdate.microsoft.com)
Visit Windows Update regularly.
Keep your antivirus and firewall up-to-date
Scan your computer regularly with your antivirus.
Read this article by TonyKlein (http://forums.spybot.info/showthread.php?t=279)
So how did I get infected in the first place?
Stand Up and Be Counted ! (http://www.malwarecomplaints.info/index.php)
The site offers people who have been (or are) victims of malware the opportunity to document their story and, in that way, launch a complaint against the malware and the makers of the malware.
Stay clean and be safe ;)
Glad we could help, as the problem appears to be resolved this topic has been archived.
If you need it re-opened please send me or your helper a private message (pm) and provide a link to the thread; this applies only to the original topic starter.
Anyone else with similar problems please start a new topic.