Hi, Thanks so much for taking the time out to help me with my spyware problem!

I am following instructions from this forum on how to remove the bugs...

Here are my logs: (but I have to do it in 3 threads since I can only type out 20,000 characters)

1. 1st Highjack This log

Logfile of HijackThis v1.99.1
Scan saved at 10:04:43 AM, on 1/7/2006
Platform: Windows XP (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 (6.00.2600.0000)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\System32\ibmpmsvc.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\addkt32.exe
C:\PROGRA~1\COMMON~1\AOL\ACS\acsd.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\wanmpsvc.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\System32\tp4mon.exe
C:\Documents and Settings\ShilohRayne\My Documents\Winamp3\winampa.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\Viewpoint\Viewpoint Manager\ViewMgr.exe
C:\Program Files\MSN Apps\Updater\01.02.3000.1001\en-us\msnappau.exe
C:\PROGRA~1\COMMON~1\AOL\AOLSPY~1\AOLSP Scheduler.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\Program Files\NaviSearch\bin\nls.exe
C:\WINDOWS\addas32.exe
C:\DOCUME~1\SHILOH~1\LOCALS~1\Temp\11.tmp.exe
C:\DOCUME~1\SHILOH~1\LOCALS~1\Temp\12.tmp.exe
C:\PROGRA~1\AIM\aim.exe
C:\winstall.exe
C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
C:\Program Files\America Online 9.0\aoltray.exe
C:\WINDOWS\System32\wuauclt.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Hijackthis\HijackThis.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\ewido anti-malware\ewidoctrl.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = res://C:\WINDOWS\system32\rghvj.dll/sp.html#88449%resultposition.net
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = res://C:\WINDOWS\slvqr.dll/sp.html#88449%resultposition.net
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = about:blank
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = res://C:\WINDOWS\slvqr.dll/sp.html#88449%resultposition.net
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = res://C:\WINDOWS\slvqr.dll/sp.html#88449%resultposition.net
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = res://C:\WINDOWS\slvqr.dll/sp.html#88449%resultposition.net
R1 - HKCU\Software\Microsoft\Internet Explorer\Search,SearchAssistant = res://C:\WINDOWS\slvqr.dll/sp.html#88449%resultposition.net
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = res://C:\WINDOWS\slvqr.dll/sp.html#88449%resultposition.net
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = proxy.ucr.edu:8080
R3 - Default URLSearchHook is missing
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: Class - {1A15F225-55D1-2004-F817-B224A68490B9} - C:\WINDOWS\system32\syszj.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: BHOmodObj Class - {7F6828CA-9E42-462C-BC60-418C8144012C} - c:\windows\system\BHOmod.dll
O2 - BHO: ST - {9394EDE7-C8B5-483E-8773-474BF36AF6E4} - C:\Program Files\MSN Apps\ST\01.02.3000.1001\en-xu\stmain.dll
O2 - BHO: Viewpoint Toolbar BHO - {A7327C09-B521-4EDB-8509-7D2660C9EC98} - C:\Program Files\Viewpoint\Viewpoint Toolbar\ViewBarBHO.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O2 - BHO: NLS UrlCatcher Class - {AEECBFDA-12FA-4881-BDCE-8C3E1CE4B344} - C:\WINDOWS\System32\nvms.dll
O2 - BHO: Class - {B10A9A8A-BFE0-3A30-47B5-BF3A196D2B94} - C:\WINDOWS\crom.dll
O2 - BHO: MSNToolBandBHO - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Apps\MSN Toolbar\01.02.3000.1001\en-us\msntb.dll
O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\System32\msdxm.ocx
O3 - Toolbar: AIM Search - {40D41A8B-D79B-43d7-99A7-9EE0F344C385} - C:\Program Files\AIM Toolbar\AIMBar.dll
O3 - Toolbar: Viewpoint Toolbar - {F8AD5AA5-D966-4667-9DAF-2561D68B2012} - C:\Program Files\Viewpoint\Viewpoint Toolbar\ViewBar.dll
O3 - Toolbar: MSN - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Apps\MSN Toolbar\01.02.3000.1001\en-us\msntb.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O4 - HKLM\..\Run: [TrackPointSrv] tp4mon.exe
O4 - HKLM\..\Run: [WinampAgent] "C:\Documents and Settings\ShilohRayne\My Documents\Winamp3\winampa.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [ViewMgr] C:\Program Files\Viewpoint\Viewpoint Manager\ViewMgr.exe
O4 - HKLM\..\Run: [msnappau] "C:\Program Files\MSN Apps\Updater\01.02.3000.1001\en-us\msnappau.exe"
O4 - HKLM\..\Run: [AOL Spyware Protection] "C:\PROGRA~1\COMMON~1\AOL\AOLSPY~1\AOLSP Scheduler.exe"
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [BullsEye Network] C:\Program Files\BullsEye Network\bin\bargains.exe
O4 - HKLM\..\Run: [NaviSearch] C:\Program Files\NaviSearch\bin\nls.exe
O4 - HKLM\..\Run: [vmcleaner] gxlib.exe
O4 - HKLM\..\Run: [PSGuard] C:\Program Files\PSGuard\PSGuard.exe
O4 - HKLM\..\Run: [addas32.exe] C:\WINDOWS\addas32.exe
O4 - HKLM\..\Run: [11.tmp] C:\DOCUME~1\SHILOH~1\LOCALS~1\Temp\11.tmp.exe
O4 - HKLM\..\Run: [12.tmp] C:\DOCUME~1\SHILOH~1\LOCALS~1\Temp\12.tmp.exe
O4 - HKLM\..\Run: [12.tmp.exe] C:\DOCUME~1\SHILOH~1\LOCALS~1\Temp\12.tmp.exe
O4 - HKLM\..\Run: [11.tmp.exe] C:\DOCUME~1\SHILOH~1\LOCALS~1\Temp\11.tmp.exe
O4 - HKCU\..\Run: [AIM] C:\PROGRA~1\AIM\aim.exe -cnetwait.odl
O4 - HKCU\..\Run: [Windows installer] C:\winstall.exe
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: America Online Tray Icon.lnk = C:\Program Files\America Online 9.0\aoltray.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE
O4 - Global Startup: SpyCatcher Protector.lnk = C:\Program Files\SpyCatcher 2006\Protector.exe
O8 - Extra context menu item: &AIM Search - res://C:\Program Files\AIM Toolbar\AIMBar.dll/aimsearch.htm
O8 - Extra context menu item: &Google Search - res://c:\program files\google\GoogleToolbar1.dll/cmsearch.html
O8 - Extra context menu item: &Translate English Word - res://c:\program files\google\GoogleToolbar1.dll/cmwordtrans.html
O8 - Extra context menu item: &Viewpoint Search - res://C:\Program Files\Viewpoint\Viewpoint Toolbar\ViewBar.dll/CXTSEARCH.HTML
O8 - Extra context menu item: Backward Links - res://c:\program files\google\GoogleToolbar1.dll/cmbacklinks.html
O8 - Extra context menu item: Cached Snapshot of Page - res://c:\program files\google\GoogleToolbar1.dll/cmcache.html
O8 - Extra context menu item: Similar Pages - res://c:\program files\google\GoogleToolbar1.dll/cmsimilar.html
O8 - Extra context menu item: Translate Page into English - res://c:\program files\google\GoogleToolbar1.dll/cmtrans.html
O9 - Extra button: AIM - {AC9E2541-2814-11d5-BC6D-00B0D0A1DE45} - C:\PROGRA~1\AIM\aim.exe
O9 - Extra button: Related - {c95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\WINDOWS\web\related.htm
O9 - Extra 'Tools' menuitem: Show &Related Links - {c95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\WINDOWS\web\related.htm
O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\System32\Shdocvw.dll
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\MSMSGS.EXE
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\MSMSGS.EXE
O9 - Extra button: WeatherBug - {AF6CABAB-61F9-4f12-A198-B7D41EF1CB52} - C:\Program Files\AWS\WeatherBug\Weather.exe (file missing) (HKCU)
O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab31267.cab
O16 - DPF: {0878B424-1F95-4E26-B5AB-F0D349D89650} - http://download.bargain-buddy.net/download/bargain_buddy/cab/installer_MARKETING32.cab
O16 - DPF: {406B5949-7190-4245-91A9-30A17DE16AD0} (Snapfish Activia) - http://www.snapfish.com/SnapfishActivia.cab
O16 - DPF: {640B39C1-D713-464F-92C3-75BD972B95EE} - http://www.sidestep.com/get/k42037/sb02a.cab
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
O16 - DPF: {BAC01377-73DD-4796-854D-2A8997E3D68A} (Yahoo! Photos Easy Upload Tool Class) - http://us.dl1.yimg.com/download.yahoo.com/dl/installs/ydropper/ydropper1_6us.cab
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)
O23 - Service: Network Security Service (NSS) ( 11Fßä#·ºÄÖ`I) - Unknown owner - C:\WINDOWS\system32\addkt32.exe
O23 - Service: AOL Connectivity Service (AOL ACS) - America Online, Inc. - C:\PROGRA~1\COMMON~1\AOL\ACS\acsd.exe
O23 - Service: AOL Spyware Protection Service (AOLService) - Unknown owner - C:\Program Files\Common Files\AOL\AOL Spyware Protection\aolserv.exe
O23 - Service: ewido security suite control - ewido networks - C:\Program Files\ewido anti-malware\ewidoctrl.exe
O23 - Service: IBM PM Service (IBMPMSVC) - Unknown owner - C:\WINDOWS\System32\ibmpmsvc.exe
O23 - Service: WAN Miniport (ATW) Service (WANMiniportService) - America Online, Inc. - C:\WINDOWS\wanmpsvc.exe

2. Smitfiles.txt Log


smitRem © log file
version 2.8

by noahdfear


Microsoft Windows XP [Version 5.1.2600]
The current date is: Sat 01/07/2006
The current time is: 10:55:33.20

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

checking for ShudderLTD key

ShudderLTD key present!

Running LTDFix/PSGuard.com fix!

checking for PSGuard.com key


PSGuard.com key not present!



ShudderLTD key was successfully removed! :)


if previously present, PSGuard.com key was successfully removed! :)


checking for WinHound.com key


WinHound.com key not present!

spyaxe uninstaller NOT present
Winhound uninstaller NOT present
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

Existing Pre-run Files


~~~ Program Files ~~~

PSGuard
SpySheriff


~~~ Shortcuts ~~~

Install.dat


~~~ Favorites ~~~



~~~ system32 folder ~~~

oleext.dll


~~~ Icons in System32 ~~~

ptainfo1
ptainfo2


~~~ Windows directory ~~~

warnhp.html
uninstIU.exe
desktop.html


~~~ Drive root ~~~

winstall.exe

~~~ Miscellaneous Files/folders ~~~


shudder global limited


~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~



Command Line Process Viewer/Killer/Suspender for Windows NT/2000/XP V2.03
Copyright(C) 2002-2003 Craig.Peacock@beyondlogic.org
Killing PID 708 'explorer.exe'
Killing PID 708 'explorer.exe'

Starting registry repairs

Deleting files


Remaining Post-run Files


~~~ Program Files ~~~



~~~ Shortcuts ~~~



~~~ Favorites ~~~



~~~ system32 folder ~~~



~~~ Icons in System32 ~~~



~~~ Windows directory ~~~



~~~ Drive root ~~~



~~~ Miscellaneous Files/folders ~~~




~~~ Wininet.dll ~~~

CLEAN! :)

3. Ewido Log: Part A

---------------------------------------------------------
ewido anti-malware - Scan report
---------------------------------------------------------

+ Created on: 12:15:58 PM, 1/7/2006
+ Report-Checksum: F12F8C5F

+ Scan result:

HKLM\SOFTWARE\Classes\CLSID\{1A15F225-55D1-2004-F817-B224A68490B9} -> Spyware.CoolWebSearch : Cleaned with backup
HKLM\SOFTWARE\Classes\CLSID\{2B96D5CC-C5B5-49A5-A69D-CC0A30F9028C} -> Spyware.MiniBug : Cleaned with backup
HKLM\SOFTWARE\Classes\CLSID\{7F6828CA-9E42-462C-BC60-418C8144012C} -> Dialer.Generic : Cleaned with backup
HKLM\SOFTWARE\Classes\TypeLib\{09CA52B3-703C-4B17-9690-C13F736E3DCD} -> Dialer.Generic : Cleaned with backup
HKLM\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{640B39C1-D713-464F-92C3-75BD972B95EE} -> Spyware.SideStep : Cleaned with backup
HKLM\SOFTWARE\Microsoft\Internet Explorer\Extensions\{c95fe080-8f5d-11d2-a20b-00aa003c157a} -> Spyware.Alexa : Cleaned with backup
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1A15F225-55D1-2004-F817-B224A68490B9} -> Spyware.CoolWebSearch : Cleaned with backup
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7F6828CA-9E42-462C-BC60-418C8144012C} -> Dialer.Generic : Cleaned with backup
:mozilla.6:C:\Documents and Settings\ShilohRayne\Application Data\Mozilla\Firefox\Profiles\ajz77zb4.default\cookies.txt -> Spyware.Cookie.2o7 : Cleaned with backup
:mozilla.7:C:\Documents and Settings\ShilohRayne\Application Data\Mozilla\Firefox\Profiles\ajz77zb4.default\cookies.txt -> Spyware.Cookie.2o7 : Cleaned with backup
:mozilla.8:C:\Documents and Settings\ShilohRayne\Application Data\Mozilla\Firefox\Profiles\ajz77zb4.default\cookies.txt -> Spyware.Cookie.2o7 : Cleaned with backup
:mozilla.9:C:\Documents and Settings\ShilohRayne\Application Data\Mozilla\Firefox\Profiles\ajz77zb4.default\cookies.txt -> Spyware.Cookie.2o7 : Cleaned with backup
:mozilla.10:C:\Documents and Settings\ShilohRayne\Application Data\Mozilla\Firefox\Profiles\ajz77zb4.default\cookies.txt -> Spyware.Cookie.2o7 : Cleaned with backup
:mozilla.11:C:\Documents and Settings\ShilohRayne\Application Data\Mozilla\Firefox\Profiles\ajz77zb4.default\cookies.txt -> Spyware.Cookie.2o7 : Cleaned with backup
:mozilla.12:C:\Documents and Settings\ShilohRayne\Application Data\Mozilla\Firefox\Profiles\ajz77zb4.default\cookies.txt -> Spyware.Cookie.2o7 : Cleaned with backup
:mozilla.13:C:\Documents and Settings\ShilohRayne\Application Data\Mozilla\Firefox\Profiles\ajz77zb4.default\cookies.txt -> Spyware.Cookie.2o7 : Cleaned with backup
:mozilla.14:C:\Documents and Settings\ShilohRayne\Application Data\Mozilla\Firefox\Profiles\ajz77zb4.default\cookies.txt -> Spyware.Cookie.2o7 : Cleaned with backup
:mozilla.15:C:\Documents and Settings\ShilohRayne\Application Data\Mozilla\Firefox\Profiles\ajz77zb4.default\cookies.txt -> Spyware.Cookie.2o7 : Cleaned with backup
:mozilla.16:C:\Documents and Settings\ShilohRayne\Application Data\Mozilla\Firefox\Profiles\ajz77zb4.default\cookies.txt -> Spyware.Cookie.2o7 : Cleaned with backup
:mozilla.17:C:\Documents and Settings\ShilohRayne\Application Data\Mozilla\Firefox\Profiles\ajz77zb4.default\cookies.txt -> Spyware.Cookie.2o7 : Cleaned with backup
:mozilla.18:C:\Documents and Settings\ShilohRayne\Application Data\Mozilla\Firefox\Profiles\ajz77zb4.default\cookies.txt -> Spyware.Cookie.2o7 : Cleaned with backup
:mozilla.19:C:\Documents and Settings\ShilohRayne\Application Data\Mozilla\Firefox\Profiles\ajz77zb4.default\cookies.txt -> Spyware.Cookie.2o7 : Cleaned with backup
:mozilla.20:C:\Documents and Settings\ShilohRayne\Application Data\Mozilla\Firefox\Profiles\ajz77zb4.default\cookies.txt -> Spyware.Cookie.2o7 : Cleaned with backup
:mozilla.21:C:\Documents and Settings\ShilohRayne\Application Data\Mozilla\Firefox\Profiles\ajz77zb4.default\cookies.txt -> Spyware.Cookie.2o7 : Cleaned with backup
:mozilla.34:C:\Documents and Settings\ShilohRayne\Application Data\Mozilla\Firefox\Profiles\ajz77zb4.default\cookies.txt -> Spyware.Cookie.Specificclick : Cleaned with backup
:mozilla.36:C:\Documents and Settings\ShilohRayne\Application Data\Mozilla\Firefox\Profiles\ajz77zb4.default\cookies.txt -> Spyware.Cookie.Pointroll : Cleaned with backup
:mozilla.37:C:\Documents and Settings\ShilohRayne\Application Data\Mozilla\Firefox\Profiles\ajz77zb4.default\cookies.txt -> Spyware.Cookie.Pointroll : Cleaned with backup
:mozilla.38:C:\Documents and Settings\ShilohRayne\Application Data\Mozilla\Firefox\Profiles\ajz77zb4.default\cookies.txt -> Spyware.Cookie.Pointroll : Cleaned with backup
:mozilla.39:C:\Documents and Settings\ShilohRayne\Application Data\Mozilla\Firefox\Profiles\ajz77zb4.default\cookies.txt -> Spyware.Cookie.Pointroll : Cleaned with backup
:mozilla.40:C:\Documents and Settings\ShilohRayne\Application Data\Mozilla\Firefox\Profiles\ajz77zb4.default\cookies.txt -> Spyware.Cookie.Adtech : Cleaned with backup
:mozilla.41:C:\Documents and Settings\ShilohRayne\Application Data\Mozilla\Firefox\Profiles\ajz77zb4.default\cookies.txt -> Spyware.Cookie.Adtech : Cleaned with backup
:mozilla.52:C:\Documents and Settings\ShilohRayne\Application Data\Mozilla\Firefox\Profiles\ajz77zb4.default\cookies.txt -> Spyware.Cookie.Falkag : Cleaned with backup
:mozilla.68:C:\Documents and Settings\ShilohRayne\Application Data\Mozilla\Firefox\Profiles\ajz77zb4.default\cookies.txt -> Spyware.Cookie.Burstnet : Cleaned with backup
:mozilla.69:C:\Documents and Settings\ShilohRayne\Application Data\Mozilla\Firefox\Profiles\ajz77zb4.default\cookies.txt -> Spyware.Cookie.Burstnet : Cleaned with backup
:mozilla.70:C:\Documents and Settings\ShilohRayne\Application Data\Mozilla\Firefox\Profiles\ajz77zb4.default\cookies.txt -> Spyware.Cookie.Casalemedia : Cleaned with backup
:mozilla.71:C:\Documents and Settings\ShilohRayne\Application Data\Mozilla\Firefox\Profiles\ajz77zb4.default\cookies.txt -> Spyware.Cookie.Casalemedia : Cleaned with backup
:mozilla.72:C:\Documents and Settings\ShilohRayne\Application Data\Mozilla\Firefox\Profiles\ajz77zb4.default\cookies.txt -> Spyware.Cookie.Casalemedia : Cleaned with backup
:mozilla.73:C:\Documents and Settings\ShilohRayne\Application Data\Mozilla\Firefox\Profiles\ajz77zb4.default\cookies.txt -> Spyware.Cookie.2o7 : Cleaned with backup
:mozilla.74:C:\Documents and Settings\ShilohRayne\Application Data\Mozilla\Firefox\Profiles\ajz77zb4.default\cookies.txt -> Spyware.Cookie.Centrport : Cleaned with backup
:mozilla.75:C:\Documents and Settings\ShilohRayne\Application Data\Mozilla\Firefox\Profiles\ajz77zb4.default\cookies.txt -> Spyware.Cookie.Centrport : Cleaned with backup
:mozilla.84:C:\Documents and Settings\ShilohRayne\Application Data\Mozilla\Firefox\Profiles\ajz77zb4.default\cookies.txt -> Spyware.Cookie.Esomniture : Cleaned with backup
:mozilla.85:C:\Documents and Settings\ShilohRayne\Application Data\Mozilla\Firefox\Profiles\ajz77zb4.default\cookies.txt -> Spyware.Cookie.Esomniture : Cleaned with backup
:mozilla.86:C:\Documents and Settings\ShilohRayne\Application Data\Mozilla\Firefox\Profiles\ajz77zb4.default\cookies.txt -> Spyware.Cookie.Esomniture : Cleaned with backup
:mozilla.87:C:\Documents and Settings\ShilohRayne\Application Data\Mozilla\Firefox\Profiles\ajz77zb4.default\cookies.txt -> Spyware.Cookie.Esomniture : Cleaned with backup
:mozilla.88:C:\Documents and Settings\ShilohRayne\Application Data\Mozilla\Firefox\Profiles\ajz77zb4.default\cookies.txt -> Spyware.Cookie.Esomniture : Cleaned with backup
:mozilla.89:C:\Documents and Settings\ShilohRayne\Application Data\Mozilla\Firefox\Profiles\ajz77zb4.default\cookies.txt -> Spyware.Cookie.Esomniture : Cleaned with backup
:mozilla.90:C:\Documents and Settings\ShilohRayne\Application Data\Mozilla\Firefox\Profiles\ajz77zb4.default\cookies.txt -> Spyware.Cookie.Esomniture : Cleaned with backup
:mozilla.91:C:\Documents and Settings\ShilohRayne\Application Data\Mozilla\Firefox\Profiles\ajz77zb4.default\cookies.txt -> Spyware.Cookie.Esomniture : Cleaned with backup
:mozilla.98:C:\Documents and Settings\ShilohRayne\Application Data\Mozilla\Firefox\Profiles\ajz77zb4.default\cookies.txt -> Spyware.Cookie.Ru4 : Cleaned with backup
:mozilla.99:C:\Documents and Settings\ShilohRayne\Application Data\Mozilla\Firefox\Profiles\ajz77zb4.default\cookies.txt -> Spyware.Cookie.Ru4 : Cleaned with backup
:mozilla.100:C:\Documents and Settings\ShilohRayne\Application Data\Mozilla\Firefox\Profiles\ajz77zb4.default\cookies.txt -> Spyware.Cookie.Ru4 : Cleaned with backup
:mozilla.101:C:\Documents and Settings\ShilohRayne\Application Data\Mozilla\Firefox\Profiles\ajz77zb4.default\cookies.txt -> Spyware.Cookie.Ru4 : Cleaned with backup
:mozilla.102:C:\Documents and Settings\ShilohRayne\Application Data\Mozilla\Firefox\Profiles\ajz77zb4.default\cookies.txt -> Spyware.Cookie.Ru4 : Cleaned with backup
:mozilla.170:C:\Documents and Settings\ShilohRayne\Application Data\Mozilla\Firefox\Profiles\ajz77zb4.default\cookies.txt -> Spyware.Cookie.2o7 : Cleaned with backup
:mozilla.183:C:\Documents and Settings\ShilohRayne\Application Data\Mozilla\Firefox\Profiles\ajz77zb4.default\cookies.txt -> Spyware.Cookie.2o7 : Cleaned with backup
:mozilla.220:C:\Documents and Settings\ShilohRayne\Application Data\Mozilla\Firefox\Profiles\ajz77zb4.default\cookies.txt -> Spyware.Cookie.Overture : Cleaned with backup
:mozilla.223:C:\Documents and Settings\ShilohRayne\Application Data\Mozilla\Firefox\Profiles\ajz77zb4.default\cookies.txt -> Spyware.Cookie.Questionmarket : Cleaned with backup
:mozilla.234:C:\Documents and Settings\ShilohRayne\Application Data\Mozilla\Firefox\Profiles\ajz77zb4.default\cookies.txt -> Spyware.Cookie.Revenue : Cleaned with backup
:mozilla.242:C:\Documents and Settings\ShilohRayne\Application Data\Mozilla\Firefox\Profiles\ajz77zb4.default\cookies.txt -> Spyware.Cookie.Serving-sys : Cleaned with backup
:mozilla.243:C:\Documents and Settings\ShilohRayne\Application Data\Mozilla\Firefox\Profiles\ajz77zb4.default\cookies.txt -> Spyware.Cookie.Serving-sys : Cleaned with backup
:mozilla.244:C:\Documents and Settings\ShilohRayne\Application Data\Mozilla\Firefox\Profiles\ajz77zb4.default\cookies.txt -> Spyware.Cookie.Serving-sys : Cleaned with backup
:mozilla.245:C:\Documents and Settings\ShilohRayne\Application Data\Mozilla\Firefox\Profiles\ajz77zb4.default\cookies.txt -> Spyware.Cookie.Serving-sys : Cleaned with backup
:mozilla.246:C:\Documents and Settings\ShilohRayne\Application Data\Mozilla\Firefox\Profiles\ajz77zb4.default\cookies.txt -> Spyware.Cookie.Serving-sys : Cleaned with backup
:mozilla.250:C:\Documents and Settings\ShilohRayne\Application Data\Mozilla\Firefox\Profiles\ajz77zb4.default\cookies.txt -> Spyware.Cookie.Spinbox : Cleaned with backup
:mozilla.252:C:\Documents and Settings\ShilohRayne\Application Data\Mozilla\Firefox\Profiles\ajz77zb4.default\cookies.txt -> Spyware.Cookie.Statcounter : Cleaned with backup
:mozilla.253:C:\Documents and Settings\ShilohRayne\Application Data\Mozilla\Firefox\Profiles\ajz77zb4.default\cookies.txt -> Spyware.Cookie.Statcounter : Cleaned with backup
:mozilla.264:C:\Documents and Settings\ShilohRayne\Application Data\Mozilla\Firefox\Profiles\ajz77zb4.default\cookies.txt -> Spyware.Cookie.Tradedoubler : Cleaned with backup
:mozilla.265:C:\Documents and Settings\ShilohRayne\Application Data\Mozilla\Firefox\Profiles\ajz77zb4.default\cookies.txt -> Spyware.Cookie.Trafficmp : Cleaned with backup
:mozilla.266:C:\Documents and Settings\ShilohRayne\Application Data\Mozilla\Firefox\Profiles\ajz77zb4.default\cookies.txt -> Spyware.Cookie.Trafficmp : Cleaned with backup
:mozilla.267:C:\Documents and Settings\ShilohRayne\Application Data\Mozilla\Firefox\Profiles\ajz77zb4.default\cookies.txt -> Spyware.Cookie.Trafic : Cleaned with backup
:mozilla.268:C:\Documents and Settings\ShilohRayne\Application Data\Mozilla\Firefox\Profiles\ajz77zb4.default\cookies.txt -> Spyware.Cookie.Tribalfusion : Cleaned with backup
:mozilla.288:C:\Documents and Settings\ShilohRayne\Application Data\Mozilla\Firefox\Profiles\ajz77zb4.default\cookies.txt -> Spyware.Cookie.Adserver : Cleaned with backup
:mozilla.289:C:\Documents and Settings\ShilohRayne\Application Data\Mozilla\Firefox\Profiles\ajz77zb4.default\cookies.txt -> Spyware.Cookie.Adserver : Cleaned with backup
:mozilla.290:C:\Documents and Settings\ShilohRayne\Application Data\Mozilla\Firefox\Profiles\ajz77zb4.default\cookies.txt -> Spyware.Cookie.Adserver : Cleaned with backup
:mozilla.302:C:\Documents and Settings\ShilohRayne\Application Data\Mozilla\Firefox\Profiles\ajz77zb4.default\cookies.txt -> Spyware.Cookie.Falkag : Cleaned with backup
:mozilla.303:C:\Documents and Settings\ShilohRayne\Application Data\Mozilla\Firefox\Profiles\ajz77zb4.default\cookies.txt -> Spyware.Cookie.Falkag : Cleaned with backup
:mozilla.304:C:\Documents and Settings\ShilohRayne\Application Data\Mozilla\Firefox\Profiles\ajz77zb4.default\cookies.txt -> Spyware.Cookie.Falkag : Cleaned with backup
:mozilla.305:C:\Documents and Settings\ShilohRayne\Application Data\Mozilla\Firefox\Profiles\ajz77zb4.default\cookies.txt -> Spyware.Cookie.Falkag : Cleaned with backup
:mozilla.307:C:\Documents and Settings\ShilohRayne\Application Data\Mozilla\Firefox\Profiles\ajz77zb4.default\cookies.txt -> Spyware.Cookie.Bridgetrack : Cleaned with backup
:mozilla.308:C:\Documents and Settings\ShilohRayne\Application Data\Mozilla\Firefox\Profiles\ajz77zb4.default\cookies.txt -> Spyware.Cookie.Bridgetrack : Cleaned with backup
:mozilla.332:C:\Documents and Settings\ShilohRayne\Application Data\Mozilla\Firefox\Profiles\ajz77zb4.default\cookies.txt -> Spyware.Cookie.Bridgetrack : Cleaned with backup
:mozilla.333:C:\Documents and Settings\ShilohRayne\Application Data\Mozilla\Firefox\Profiles\ajz77zb4.default\cookies.txt -> Spyware.Cookie.Bridgetrack : Cleaned with backup
:mozilla.335:C:\Documents and Settings\ShilohRayne\Application Data\Mozilla\Firefox\Profiles\ajz77zb4.default\cookies.txt -> Spyware.Cookie.Liveperson : Cleaned with backup
:mozilla.336:C:\Documents and Settings\ShilohRayne\Application Data\Mozilla\Firefox\Profiles\ajz77zb4.default\cookies.txt -> Spyware.Cookie.Liveperson : Cleaned with backup
:mozilla.337:C:\Documents and Settings\ShilohRayne\Application Data\Mozilla\Firefox\Profiles\ajz77zb4.default\cookies.txt -> Spyware.Cookie.Liveperson : Cleaned with backup
:mozilla.342:C:\Documents and Settings\ShilohRayne\Application Data\Mozilla\Firefox\Profiles\ajz77zb4.default\cookies.txt -> Spyware.Cookie.Liveperson : Cleaned with backup
:mozilla.343:C:\Documents and Settings\ShilohRayne\Application Data\Mozilla\Firefox\Profiles\ajz77zb4.default\cookies.txt -> Spyware.Cookie.Liveperson : Cleaned with backup
:mozilla.344:C:\Documents and Settings\ShilohRayne\Application Data\Mozilla\Firefox\Profiles\ajz77zb4.default\cookies.txt -> Spyware.Cookie.Liveperson : Cleaned with backup
:mozilla.345:C:\Documents and Settings\ShilohRayne\Application Data\Mozilla\Firefox\Profiles\ajz77zb4.default\cookies.txt -> Spyware.Cookie.Liveperson : Cleaned with backup
:mozilla.346:C:\Documents and Settings\ShilohRayne\Application Data\Mozilla\Firefox\Profiles\ajz77zb4.default\cookies.txt -> Spyware.Cookie.Liveperson : Cleaned with backup
:mozilla.347:C:\Documents and Settings\ShilohRayne\Application Data\Mozilla\Firefox\Profiles\ajz77zb4.default\cookies.txt -> Spyware.Cookie.Liveperson : Cleaned with backup
:mozilla.348:C:\Documents and Settings\ShilohRayne\Application Data\Mozilla\Firefox\Profiles\ajz77zb4.default\cookies.txt -> Spyware.Cookie.Liveperson : Cleaned with backup
:mozilla.349:C:\Documents and Settings\ShilohRayne\Application Data\Mozilla\Firefox\Profiles\ajz77zb4.default\cookies.txt -> Spyware.Cookie.Liveperson : Cleaned with backup
:mozilla.360:C:\Documents and Settings\ShilohRayne\Application Data\Mozilla\Firefox\Profiles\ajz77zb4.default\cookies.txt -> Spyware.Cookie.Burstbeacon : Cleaned with backup
:mozilla.372:C:\Documents and Settings\ShilohRayne\Application Data\Mozilla\Firefox\Profiles\ajz77zb4.default\cookies.txt -> Spyware.Cookie.Googleadservices : Cleaned with backup
:mozilla.373:C:\Documents and Settings\ShilohRayne\Application Data\Mozilla\Firefox\Profiles\ajz77zb4.default\cookies.txt -> Spyware.Cookie.Googleadservices : Cleaned with backup
:mozilla.415:C:\Documents and Settings\ShilohRayne\Application Data\Mozilla\Firefox\Profiles\ajz77zb4.default\cookies.txt -> Spyware.Cookie.Smartadserver : Cleaned with backup
:mozilla.416:C:\Documents and Settings\ShilohRayne\Application Data\Mozilla\Firefox\Profiles\ajz77zb4.default\cookies.txt -> Spyware.Cookie.Smartadserver : Cleaned with backup
:mozilla.417:C:\Documents and Settings\ShilohRayne\Application

3. Ewido Log: Part B

Data\Mozilla\Firefox\Profiles\ajz77zb4.default\cookies.txt -> Spyware.Cookie.Smartadserver : Cleaned with backup
C:\Documents and Settings\ShilohRayne\Cookies\shilohrayne@112.2o7[2].txt -> Spyware.Cookie.2o7 : Cleaned with backup
C:\Documents and Settings\ShilohRayne\Cookies\shilohrayne@247realmedia[2].txt -> Spyware.Cookie.247realmedia : Cleaned with backup
C:\Documents and Settings\ShilohRayne\Cookies\shilohrayne@2o7[2].txt -> Spyware.Cookie.2o7 : Cleaned with backup
C:\Documents and Settings\ShilohRayne\Cookies\shilohrayne@a-1shz2prbmdj6wvny-1sez2pra2dj6wjkoulazkbqa-1dj6x9ny-1seq-2-2.stats.esomniture[1].txt -> Spyware.Cookie.Esomniture : Cleaned with backup
C:\Documents and Settings\ShilohRayne\Cookies\shilohrayne@a-1shz2prbmdj6wvny-1sez2pra2dj6wjlyejdzidqa-1dj6x9ny-1seq-2-2.stats.esomniture[2].txt -> Spyware.Cookie.Esomniture : Cleaned with backup
C:\Documents and Settings\ShilohRayne\Cookies\shilohrayne@a-1shz2prbmdj6wvny-1sez2pra2dj6wjmikkdzsgoa-1dj6x9ny-1seq-2-2.stats.esomniture[2].txt -> Spyware.Cookie.Esomniture : Cleaned with backup
C:\Documents and Settings\ShilohRayne\Cookies\shilohrayne@a-1shz2prbmdj6wvny-1sez2pra2dj6wjnycgd5obqq-1dj6x9ny-1seq-2-2.stats.esomniture[1].txt -> Spyware.Cookie.Esomniture : Cleaned with backup
C:\Documents and Settings\ShilohRayne\Cookies\shilohrayne@ad.yieldmanager[2].txt -> Spyware.Cookie.Yieldmanager : Cleaned with backup
C:\Documents and Settings\ShilohRayne\Cookies\shilohrayne@adopt.euroclick[1].txt -> Spyware.Cookie.Euroclick : Cleaned with backup
C:\Documents and Settings\ShilohRayne\Cookies\shilohrayne@adopt.specificclick[2].txt -> Spyware.Cookie.Specificclick : Cleaned with backup
C:\Documents and Settings\ShilohRayne\Cookies\shilohrayne@ads.addynamix[1].txt -> Spyware.Cookie.Addynamix : Cleaned with backup
C:\Documents and Settings\ShilohRayne\Cookies\shilohrayne@ads.pointroll[1].txt -> Spyware.Cookie.Pointroll : Cleaned with backup
C:\Documents and Settings\ShilohRayne\Cookies\shilohrayne@ads.specificpop[1].txt -> Spyware.Cookie.Specificpop : Cleaned with backup
C:\Documents and Settings\ShilohRayne\Cookies\shilohrayne@ads.x10[2].txt -> Spyware.Cookie.X10 : Cleaned with backup
C:\Documents and Settings\ShilohRayne\Cookies\shilohrayne@ads06.bpath[2].txt -> Spyware.Cookie.Bpath : Cleaned with backup
C:\Documents and Settings\ShilohRayne\Cookies\shilohrayne@adtech[2].txt -> Spyware.Cookie.Adtech : Cleaned with backup
C:\Documents and Settings\ShilohRayne\Cookies\shilohrayne@as-us.falkag[2].txt -> Spyware.Cookie.Falkag : Cleaned with backup
C:\Documents and Settings\ShilohRayne\Cookies\shilohrayne@as1.falkag[2].txt -> Spyware.Cookie.Falkag : Cleaned with backup
C:\Documents and Settings\ShilohRayne\Cookies\shilohrayne@bilbo.counted[1].txt -> Spyware.Cookie.Counted : Cleaned with backup
C:\Documents and Settings\ShilohRayne\Cookies\shilohrayne@bluestreak[2].txt -> Spyware.Cookie.Bluestreak : Cleaned with backup
C:\Documents and Settings\ShilohRayne\Cookies\shilohrayne@bs.serving-sys[1].txt -> Spyware.Cookie.Serving-sys : Cleaned with backup
C:\Documents and Settings\ShilohRayne\Cookies\shilohrayne@burstnet[2].txt -> Spyware.Cookie.Burstnet : Cleaned with backup
C:\Documents and Settings\ShilohRayne\Cookies\shilohrayne@c.porngraph[1].txt -> Spyware.Cookie.Porngraph : Cleaned with backup
C:\Documents and Settings\ShilohRayne\Cookies\shilohrayne@casalemedia[2].txt -> Spyware.Cookie.Casalemedia : Cleaned with backup
C:\Documents and Settings\ShilohRayne\Cookies\shilohrayne@cc.bridgetrack[2].txt -> Spyware.Cookie.Bridgetrack : Cleaned with backup
C:\Documents and Settings\ShilohRayne\Cookies\shilohrayne@centrport[1].txt -> Spyware.Cookie.Centrport : Cleaned with backup
C:\Documents and Settings\ShilohRayne\Cookies\shilohrayne@citi.bridgetrack[2].txt -> Spyware.Cookie.Bridgetrack : Cleaned with backup
C:\Documents and Settings\ShilohRayne\Cookies\shilohrayne@com[2].txt -> Spyware.Cookie.Com : Cleaned with backup
C:\Documents and Settings\ShilohRayne\Cookies\shilohrayne@coxhsi.112.2o7[2].txt -> Spyware.Cookie.2o7 : Cleaned with backup
C:\Documents and Settings\ShilohRayne\Cookies\shilohrayne@cs.sexcounter[2].txt -> Spyware.Cookie.Sexcounter : Cleaned with backup
C:\Documents and Settings\ShilohRayne\Cookies\shilohrayne@cz3.clickzs[1].txt -> Spyware.Cookie.Clickzs : Cleaned with backup
C:\Documents and Settings\ShilohRayne\Cookies\shilohrayne@cz4.clickzs[1].txt -> Spyware.Cookie.Clickzs : Cleaned with backup
C:\Documents and Settings\ShilohRayne\Cookies\shilohrayne@cz8.clickzs[1].txt -> Spyware.Cookie.Clickzs : Cleaned with backup
C:\Documents and Settings\ShilohRayne\Cookies\shilohrayne@data3.perf.overture[1].txt -> Spyware.Cookie.Overture : Cleaned with backup
C:\Documents and Settings\ShilohRayne\Cookies\shilohrayne@e-2dj6wfk4emd5aco.stats.esomniture[2].txt -> Spyware.Cookie.Esomniture : Cleaned with backup
C:\Documents and Settings\ShilohRayne\Cookies\shilohrayne@e-2dj6wfk4kndjeao.stats.esomniture[2].txt -> Spyware.Cookie.Esomniture : Cleaned with backup
C:\Documents and Settings\ShilohRayne\Cookies\shilohrayne@e-2dj6wfk4wgdpgdo.stats.esomniture[1].txt -> Spyware.Cookie.Esomniture : Cleaned with backup
C:\Documents and Settings\ShilohRayne\Cookies\shilohrayne@e-2dj6wfkiopczgho.stats.esomniture[2].txt -> Spyware.Cookie.Esomniture : Cleaned with backup
C:\Documents and Settings\ShilohRayne\Cookies\shilohrayne@e-2dj6wfkouhc5gap.stats.esomniture[2].txt -> Spyware.Cookie.Esomniture : Cleaned with backup
C:\Documents and Settings\ShilohRayne\Cookies\shilohrayne@e-2dj6wfkyqld5cap.stats.esomniture[1].txt -> Spyware.Cookie.Esomniture : Cleaned with backup
C:\Documents and Settings\ShilohRayne\Cookies\shilohrayne@e-2dj6wfliegcpchp.stats.esomniture[2].txt -> Spyware.Cookie.Esomniture : Cleaned with backup
C:\Documents and Settings\ShilohRayne\Cookies\shilohrayne@e-2dj6wflokpdpgbp.stats.esomniture[2].txt -> Spyware.Cookie.Esomniture : Cleaned with backup
C:\Documents and Settings\ShilohRayne\Cookies\shilohrayne@e-2dj6wfloqgd5saq.stats.esomniture[2].txt -> Spyware.Cookie.Esomniture : Cleaned with backup
C:\Documents and Settings\ShilohRayne\Cookies\shilohrayne@e-2dj6wfmyokdjwao.stats.esomniture[1].txt -> Spyware.Cookie.Esomniture : Cleaned with backup
C:\Documents and Settings\ShilohRayne\Cookies\shilohrayne@e-2dj6wjk4cicpkfp.stats.esomniture[2].txt -> Spyware.Cookie.Esomniture : Cleaned with backup
C:\Documents and Settings\ShilohRayne\Cookies\shilohrayne@e-2dj6wjk4opdpelo.stats.esomniture[2].txt -> Spyware.Cookie.Esomniture : Cleaned with backup
C:\Documents and Settings\ShilohRayne\Cookies\shilohrayne@e-2dj6wjk4ukd5wkq.stats.esomniture[2].txt -> Spyware.Cookie.Esomniture : Cleaned with backup
C:\Documents and Settings\ShilohRayne\Cookies\shilohrayne@e-2dj6wjkoulazkbq.stats.esomniture[2].txt -> Spyware.Cookie.Esomniture : Cleaned with backup
C:\Documents and Settings\ShilohRayne\Cookies\shilohrayne@e-2dj6wjkyemajmho.stats.esomniture[2].txt -> Spyware.Cookie.Esomniture : Cleaned with backup
C:\Documents and Settings\ShilohRayne\Cookies\shilohrayne@e-2dj6wjkykhcpcdp.stats.esomniture[2].txt -> Spyware.Cookie.Esomniture : Cleaned with backup
C:\Documents and Settings\ShilohRayne\Cookies\shilohrayne@e-2dj6wjl4egcpckq.stats.esomniture[1].txt -> Spyware.Cookie.Esomniture : Cleaned with backup
C:\Documents and Settings\ShilohRayne\Cookies\shilohrayne@e-2dj6wjlioidjmko.stats.esomniture[1].txt -> Spyware.Cookie.Esomniture : Cleaned with backup
C:\Documents and Settings\ShilohRayne\Cookies\shilohrayne@e-2dj6wjliqndjslp.stats.esomniture[2].txt -> Spyware.Cookie.Esomniture : Cleaned with backup
C:\Documents and Settings\ShilohRayne\Cookies\shilohrayne@e-2dj6wjliwgd5sep.stats.esomniture[2].txt -> Spyware.Cookie.Esomniture : Cleaned with backup
C:\Documents and Settings\ShilohRayne\Cookies\shilohrayne@e-2dj6wjlocncjgho.stats.esomniture[1].txt -> Spyware.Cookie.Esomniture : Cleaned with backup
C:\Documents and Settings\ShilohRayne\Cookies\shilohrayne@e-2dj6wjlokncpwko.stats.esomniture[1].txt -> Spyware.Cookie.Esomniture : Cleaned with backup
C:\Documents and Settings\ShilohRayne\Cookies\shilohrayne@e-2dj6wjlyuld5acq.stats.esomniture[1].txt -> Spyware.Cookie.Esomniture : Cleaned with backup
C:\Documents and Settings\ShilohRayne\Cookies\shilohrayne@e-2dj6wjmiajdjgbo.stats.esomniture[1].txt -> Spyware.Cookie.Esomniture : Cleaned with backup
C:\Documents and Settings\ShilohRayne\Cookies\shilohrayne@e-2dj6wjmiqkc5mfo.stats.esomniture[2].txt -> Spyware.Cookie.Esomniture : Cleaned with backup
C:\Documents and Settings\ShilohRayne\Cookies\shilohrayne@e-2dj6wjmykiazwkq.stats.esomniture[2].txt -> Spyware.Cookie.Esomniture : Cleaned with backup
C:\Documents and Settings\ShilohRayne\Cookies\shilohrayne@e-2dj6wjmyood5kep.stats.esomniture[2].txt -> Spyware.Cookie.Esomniture : Cleaned with backup
C:\Documents and Settings\ShilohRayne\Cookies\shilohrayne@e-2dj6wjmywjdpwkq.stats.esomniture[2].txt -> Spyware.Cookie.Esomniture : Cleaned with backup
C:\Documents and Settings\ShilohRayne\Cookies\shilohrayne@e-2dj6wjny-1pc5ah.stats.esomniture[2].txt -> Spyware.Cookie.Esomniture : Cleaned with backup
C:\Documents and Settings\ShilohRayne\Cookies\shilohrayne@e-2dj6wjnyelczkhq.stats.esomniture[1].txt -> Spyware.Cookie.Esomniture : Cleaned with backup
C:\Documents and Settings\ShilohRayne\Cookies\shilohrayne@e-2dj6wjnyemd5mao.stats.esomniture[2].txt -> Spyware.Cookie.Esomniture : Cleaned with backup
C:\Documents and Settings\ShilohRayne\Cookies\shilohrayne@e-2dj6wjnyqhc5obo.stats.esomniture[2].txt -> Spyware.Cookie.Esomniture : Cleaned with backup
C:\Documents and Settings\ShilohRayne\Cookies\shilohrayne@e-2dj6wjnyumczifo.stats.esomniture[1].txt -> Spyware.Cookie.Esomniture : Cleaned with backup
C:\Documents and Settings\ShilohRayne\Cookies\shilohrayne@edge.ru4[2].txt -> Spyware.Cookie.Ru4 : Cleaned with backup
C:\Documents and Settings\ShilohRayne\Cookies\shilohrayne@estat[1].txt -> Spyware.Cookie.Estat : Cleaned with backup
C:\Documents and Settings\ShilohRayne\Cookies\shilohrayne@euniverseads[2].txt -> Spyware.Cookie.Euniverseads : Cleaned with backup
C:\Documents and Settings\ShilohRayne\Cookies\shilohrayne@findwhat[1].txt -> Spyware.Cookie.Findwhat : Cleaned with backup
C:\Documents and Settings\ShilohRayne\Cookies\shilohrayne@fl01.ct2.comclick[2].txt -> Spyware.Cookie.Comclick : Cleaned with backup
C:\Documents and Settings\ShilohRayne\Cookies\shilohrayne@free.wegcash[2].txt -> Spyware.Cookie.Wegcash : Cleaned with backup
C:\Documents and Settings\ShilohRayne\Cookies\shilohrayne@hestia.sextrail.trakkerd[2].txt -> Spyware.Cookie.Trakkerd : Cleaned with backup
C:\Documents and Settings\ShilohRayne\Cookies\shilohrayne@image.masterstats[2].txt -> Spyware.Cookie.Masterstats : Cleaned with backup
C:\Documents and Settings\ShilohRayne\Cookies\shilohrayne@msnportal.112.2o7[1].txt -> Spyware.Cookie.2o7 : Cleaned with backup
C:\Documents and Settings\ShilohRayne\Cookies\shilohrayne@overture[1].txt -> Spyware.Cookie.Overture : Cleaned with backup
C:\Documents and Settings\ShilohRayne\Cookies\shilohrayne@oxcash[2].txt -> Spyware.Cookie.Oxcash : Cleaned with backup
C:\Documents and Settings\ShilohRayne\Cookies\shilohrayne@paycounter[1].txt -> Spyware.Cookie.Paycounter : Cleaned with backup
C:\Documents and Settings\ShilohRayne\Cookies\shilohrayne@perf.overture[1].txt -> Spyware.Cookie.Overture : Cleaned with backup
C:\Documents and Settings\ShilohRayne\Cookies\shilohrayne@pro-market[1].txt -> Spyware.Cookie.Pro-market : Cleaned with backup
C:\Documents and Settings\ShilohRayne\Cookies\shilohrayne@programs.wegcash[2].txt -> Spyware.Cookie.Wegcash : Cleaned with backup
C:\Documents and Settings\ShilohRayne\Cookies\shilohrayne@qksrv[1].txt -> Spyware.Cookie.Qksrv : Cleaned with backup
C:\Documents and Settings\ShilohRayne\Cookies\shilohrayne@questionmarket[2].txt -> Spyware.Cookie.Questionmarket : Cleaned with backup
C:\Documents and Settings\ShilohRayne\Cookies\shilohrayne@revenue[2].txt -> Spyware.Cookie.Revenue : Cleaned with backup
C:\Documents and Settings\ShilohRayne\Cookies\shilohrayne@rotator.adjuggler[1].txt -> Spyware.Cookie.Adjuggler : Cleaned with backup
C:\Documents and Settings\ShilohRayne\Cookies\shilohrayne@sales.liveperson[2].txt -> Spyware.Cookie.Liveperson : Cleaned with backup
C:\Documents and Settings\ShilohRayne\Cookies\shilohrayne@server.iad.liveperson[1].txt -> Spyware.Cookie.Liveperson : Cleaned with backup
C:\Documents and

3. Ewido Log: Part C


Settings\ShilohRayne\Cookies\shilohrayne@serving-sys[2].txt -> Spyware.Cookie.Serving-sys : Cleaned with backup
C:\Documents and Settings\ShilohRayne\Cookies\shilohrayne@specificpop[1].txt -> Spyware.Cookie.Specificpop : Cleaned with backup
C:\Documents and Settings\ShilohRayne\Cookies\shilohrayne@spinbox[2].txt -> Spyware.Cookie.Spinbox : Cleaned with backup
C:\Documents and Settings\ShilohRayne\Cookies\shilohrayne@spylog[1].txt -> Spyware.Cookie.Spylog : Cleaned with backup
C:\Documents and Settings\ShilohRayne\Cookies\shilohrayne@stat.onestat[1].txt -> Spyware.Cookie.Onestat : Cleaned with backup
C:\Documents and Settings\ShilohRayne\Cookies\shilohrayne@statcounter[1].txt -> Spyware.Cookie.Statcounter : Cleaned with backup
C:\Documents and Settings\ShilohRayne\Cookies\shilohrayne@tradedoubler[2].txt -> Spyware.Cookie.Tradedoubler : Cleaned with backup
C:\Documents and Settings\ShilohRayne\Cookies\shilohrayne@trafficmp[2].txt -> Spyware.Cookie.Trafficmp : Cleaned with backup
C:\Documents and Settings\ShilohRayne\Cookies\shilohrayne@tribalfusion[2].txt -> Spyware.Cookie.Tribalfusion : Cleaned with backup
C:\Documents and Settings\ShilohRayne\Cookies\shilohrayne@valueclick[1].txt -> Spyware.Cookie.Valueclick : Cleaned with backup
C:\Documents and Settings\ShilohRayne\Cookies\shilohrayne@web4.realtracker[2].txt -> Spyware.Cookie.Realtracker : Cleaned with backup
C:\Documents and Settings\ShilohRayne\Cookies\shilohrayne@weborama[2].txt -> Spyware.Cookie.Weborama : Cleaned with backup
C:\Documents and Settings\ShilohRayne\Cookies\shilohrayne@www.burstbeacon[2].txt -> Spyware.Cookie.Burstbeacon : Cleaned with backup
C:\Documents and Settings\ShilohRayne\Cookies\shilohrayne@www.myaffiliateprogram[1].txt -> Spyware.Cookie.Myaffiliateprogram : Cleaned with backup
C:\Documents and Settings\ShilohRayne\Cookies\shilohrayne@www.smartadserver[1].txt -> Spyware.Cookie.Smartadserver : Cleaned with backup
C:\Documents and Settings\ShilohRayne\Cookies\shilohrayne@xxxcounter[1].txt -> Spyware.Cookie.Xxxcounter : Cleaned with backup
C:\Documents and Settings\ShilohRayne\Cookies\shilohrayne@y-1shz2prbmdj6wvny-1sez2pra2dj6wfk4chd5gepwwdj6x9ny-1seq-2-2.stats.esomniture[1].txt -> Spyware.Cookie.Esomniture : Cleaned with backup
C:\Documents and Settings\ShilohRayne\Cookies\shilohrayne@y-1shz2prbmdj6wvny-1sez2pra2dj6wfk4oldjkbpqidj6x9ny-1seq-2-2.stats.esomniture[2].txt -> Spyware.Cookie.Esomniture : Cleaned with backup
C:\Documents and Settings\ShilohRayne\Cookies\shilohrayne@y-1shz2prbmdj6wvny-1sez2pra2dj6wfkikpdzeeoqudj6x9ny-1seq-2-2.stats.esomniture[2].txt -> Spyware.Cookie.Esomniture : Cleaned with backup
C:\Documents and Settings\ShilohRayne\Cookies\shilohrayne@y-1shz2prbmdj6wvny-1sez2pra2dj6wfkoaiajigqaidj6x9ny-1seq-2-2.stats.esomniture[2].txt -> Spyware.Cookie.Esomniture : Cleaned with backup
C:\Documents and Settings\ShilohRayne\Cookies\shilohrayne@y-1shz2prbmdj6wvny-1sez2pra2dj6wfkyckajkkpa6dj6x9ny-1seq-2-2.stats.esomniture[2].txt -> Spyware.Cookie.Esomniture : Cleaned with backup
C:\Documents and Settings\ShilohRayne\Cookies\shilohrayne@y-1shz2prbmdj6wvny-1sez2pra2dj6wfliahdpwlpqidj6x9ny-1seq-2-2.stats.esomniture[2].txt -> Spyware.Cookie.Esomniture : Cleaned with backup
C:\Documents and Settings\ShilohRayne\Cookies\shilohrayne@y-1shz2prbmdj6wvny-1sez2pra2dj6wjk4kgd5ikpgsdj6x9ny-1seq-2-2.stats.esomniture[2].txt -> Spyware.Cookie.Esomniture : Cleaned with backup
C:\Documents and Settings\ShilohRayne\Cookies\shilohrayne@y-1shz2prbmdj6wvny-1sez2pra2dj6wjk4whd5alpgidj6x9ny-1seq-2-2.stats.esomniture[1].txt -> Spyware.Cookie.Esomniture : Cleaned with backup
C:\Documents and Settings\ShilohRayne\Cookies\shilohrayne@y-1shz2prbmdj6wvny-1sez2pra2dj6wjkokhdpmhowqdj6x9ny-1seq-2-2.stats.esomniture[2].txt -> Spyware.Cookie.Esomniture : Cleaned with backup
C:\Documents and Settings\ShilohRayne\Cookies\shilohrayne@y-1shz2prbmdj6wvny-1sez2pra2dj6wjkosocpmbpw2dj6x9ny-1seq-2-2.stats.esomniture[2].txt -> Spyware.Cookie.Esomniture : Cleaned with backup
C:\Documents and Settings\ShilohRayne\Cookies\shilohrayne@y-1shz2prbmdj6wvny-1sez2pra2dj6wjkoumdzglqqudj6x9ny-1seq-2-2.stats.esomniture[2].txt -> Spyware.Cookie.Esomniture : Cleaned with backup
C:\Documents and Settings\ShilohRayne\Cookies\shilohrayne@y-1shz2prbmdj6wvny-1sez2pra2dj6wjkoupcjccoqydj6x9ny-1seq-2-2.stats.esomniture[2].txt -> Spyware.Cookie.Esomniture : Cleaned with backup
C:\Documents and Settings\ShilohRayne\Cookies\shilohrayne@y-1shz2prbmdj6wvny-1sez2pra2dj6wjkowod5egqqqdj6x9ny-1seq-2-2.stats.esomniture[1].txt -> Spyware.Cookie.Esomniture : Cleaned with backup
C:\Documents and Settings\ShilohRayne\Cookies\shilohrayne@y-1shz2prbmdj6wvny-1sez2pra2dj6wjkyelajsapqqdj6x9ny-1seq-2-2.stats.esomniture[2].txt -> Spyware.Cookie.Esomniture : Cleaned with backup
C:\Documents and Settings\ShilohRayne\Cookies\shilohrayne@y-1shz2prbmdj6wvny-1sez2pra2dj6wjkyolcjwfow2dj6x9ny-1seq-2-2.stats.esomniture[2].txt -> Spyware.Cookie.Esomniture : Cleaned with backup
C:\Documents and Settings\ShilohRayne\Cookies\shilohrayne@y-1shz2prbmdj6wvny-1sez2pra2dj6wjliajd5odoqwdj6x9ny-1seq-2-2.stats.esomniture[1].txt -> Spyware.Cookie.Esomniture : Cleaned with backup
C:\Documents and Settings\ShilohRayne\Cookies\shilohrayne@y-1shz2prbmdj6wvny-1sez2pra2dj6wjlyckczcdoqmdj6x9ny-1seq-2-2.stats.esomniture[2].txt -> Spyware.Cookie.Esomniture : Cleaned with backup
C:\Documents and Settings\ShilohRayne\Cookies\shilohrayne@y-1shz2prbmdj6wvny-1sez2pra2dj6wjlyemdjkfpw2dj6x9ny-1seq-2-2.stats.esomniture[2].txt -> Spyware.Cookie.Esomniture : Cleaned with backup
C:\Documents and Settings\ShilohRayne\Cookies\shilohrayne@y-1shz2prbmdj6wvny-1sez2pra2dj6wjlyskc5akoamdj6x9ny-1seq-2-2.stats.esomniture[2].txt -> Spyware.Cookie.Esomniture : Cleaned with backup
C:\Documents and Settings\ShilohRayne\Cookies\shilohrayne@y-1shz2prbmdj6wvny-1sez2pra2dj6wjlyuodzwdqaydj6x9ny-1seq-2-2.stats.esomniture[2].txt -> Spyware.Cookie.Esomniture : Cleaned with backup
C:\Documents and Settings\ShilohRayne\Cookies\shilohrayne@y-1shz2prbmdj6wvny-1sez2pra2dj6wjmigkcziaowudj6x9ny-1seq-2-2.stats.esomniture[2].txt -> Spyware.Cookie.Esomniture : Cleaned with backup
C:\Documents and Settings\ShilohRayne\Cookies\shilohrayne@y-1shz2prbmdj6wvny-1sez2pra2dj6wjmioiczckogidj6x9ny-1seq-2-2.stats.esomniture[2].txt -> Spyware.Cookie.Esomniture : Cleaned with backup
C:\Documents and Settings\ShilohRayne\Cookies\shilohrayne@y-1shz2prbmdj6wvny-1sez2pra2dj6wjmiskdzofpgudj6x9ny-1seq-2-2.stats.esomniture[2].txt -> Spyware.Cookie.Esomniture : Cleaned with backup
C:\Documents and Settings\ShilohRayne\Cookies\shilohrayne@y-1shz2prbmdj6wvny-1sez2pra2dj6wjmiwkc5ibow2dj6x9ny-1seq-2-2.stats.esomniture[2].txt -> Spyware.Cookie.Esomniture : Cleaned with backup
C:\Documents and Settings\ShilohRayne\Cookies\shilohrayne@y-1shz2prbmdj6wvny-1sez2pra2dj6wjmiwkd5mcogmdj6x9ny-1seq-2-2.stats.esomniture[1].txt -> Spyware.Cookie.Esomniture : Cleaned with backup
C:\Documents and Settings\ShilohRayne\Cookies\shilohrayne@y-1shz2prbmdj6wvny-1sez2pra2dj6wjmycpc5edoasdj6x9ny-1seq-2-2.stats.esomniture[2].txt -> Spyware.Cookie.Esomniture : Cleaned with backup
C:\Documents and Settings\ShilohRayne\Cookies\shilohrayne@y-1shz2prbmdj6wvny-1sez2pra2dj6wjmygldjafqa2dj6x9ny-1seq-2-2.stats.esomniture[2].txt -> Spyware.Cookie.Esomniture : Cleaned with backup
C:\Documents and Settings\ShilohRayne\Cookies\shilohrayne@y-1shz2prbmdj6wvny-1sez2pra2dj6wjmygocjolpqidj6x9ny-1seq-2-2.stats.esomniture[1].txt -> Spyware.Cookie.Esomniture : Cleaned with backup
C:\Documents and Settings\ShilohRayne\Cookies\shilohrayne@y-1shz2prbmdj6wvny-1sez2pra2dj6wjnyanczedowidj6x9ny-1seq-2-2.stats.esomniture[1].txt -> Spyware.Cookie.Esomniture : Cleaned with backup
C:\Documents and Settings\ShilohRayne\Cookies\shilohrayne@y-1shz2prbmdj6wvny-1sez2pra2dj6wjnyekc5egoqudj6x9ny-1seq-2-2.stats.esomniture[2].txt -> Spyware.Cookie.Esomniture : Cleaned with backup
C:\Documents and Settings\ShilohRayne\Cookies\shilohrayne@y-1shz2prbmdj6wvny-1sez2pra2dj6wjnyemd5maogwdj6x9ny-1seq-2-2.stats.esomniture[2].txt -> Spyware.Cookie.Esomniture : Cleaned with backup
C:\Documents and Settings\ShilohRayne\Cookies\shilohrayne@z1.adserver[2].txt -> Spyware.Cookie.Adserver : Cleaned with backup
C:\Program Files\AWS\WeatherBug\MiniBugTransporter.dll -> Spyware.Wheaterbug : Cleaned with backup
C:\WINDOWS\addas32.exe -> Downloader.Agent.td : Cleaned with backup
C:\WINDOWS\crom.dll -> Downloader.Agent.bc : Cleaned with backup
C:\WINDOWS\Downloaded Program Files\installer_MARKETING32.exe -> Downloader.Adload.a : Cleaned with backup
C:\WINDOWS\javadi.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\mozver.dat:rwsdk -> Downloader.Agent.td : Cleaned with backup
C:\WINDOWS\setupapi.log.0.old:lslvq -> Downloader.Agent.bc : Cleaned with backup
C:\WINDOWS\system\BHOmod.dll -> Downloader.Agent.mk : Cleaned with backup
C:\WINDOWS\system\Loader.dll -> Downloader.Agent.li : Cleaned with backup
C:\WINDOWS\system32\addkt32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\system32\apiid32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\system32\syszj.dll -> Downloader.Agent.bc : Cleaned with backup


::Report End

4. 2nd Highjack This Log

Logfile of HijackThis v1.99.1
Scan saved at 12:51:24 PM, on 1/7/2006
Platform: Windows XP (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 (6.00.2600.0000)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\System32\ibmpmsvc.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\PROGRA~1\COMMON~1\AOL\ACS\acsd.exe
C:\Program Files\ewido anti-malware\ewidoctrl.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\wanmpsvc.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\System32\tp4mon.exe
C:\Documents and Settings\ShilohRayne\My Documents\Winamp3\winampa.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\Viewpoint\Viewpoint Manager\ViewMgr.exe
C:\Program Files\MSN Apps\Updater\01.02.3000.1001\en-us\msnappau.exe
C:\PROGRA~1\COMMON~1\AOL\AOLSPY~1\AOLSP Scheduler.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\PROGRA~1\AIM\aim.exe
C:\WINDOWS\System32\wuauclt.exe
C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
C:\Program Files\America Online 9.0\aoltray.exe
C:\Program Files\Microsoft Office\Office\WINWORD.EXE
C:\Program Files\Hijackthis\HijackThis.exe

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = about:blank
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = about:blank
R1 - HKCU\Software\Microsoft\Internet Explorer\Search,SearchAssistant = about:blank
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = proxy.ucr.edu:8080
R3 - Default URLSearchHook is missing
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: ST - {9394EDE7-C8B5-483E-8773-474BF36AF6E4} - C:\Program Files\MSN Apps\ST\01.02.3000.1001\en-xu\stmain.dll
O2 - BHO: Viewpoint Toolbar BHO - {A7327C09-B521-4EDB-8509-7D2660C9EC98} - C:\Program Files\Viewpoint\Viewpoint Toolbar\ViewBarBHO.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O2 - BHO: Class - {B10A9A8A-BFE0-3A30-47B5-BF3A196D2B94} - C:\WINDOWS\crom.dll (file missing)
O2 - BHO: MSNToolBandBHO - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Apps\MSN Toolbar\01.02.3000.1001\en-us\msntb.dll
O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\System32\msdxm.ocx
O3 - Toolbar: AIM Search - {40D41A8B-D79B-43d7-99A7-9EE0F344C385} - C:\Program Files\AIM Toolbar\AIMBar.dll
O3 - Toolbar: Viewpoint Toolbar - {F8AD5AA5-D966-4667-9DAF-2561D68B2012} - C:\Program Files\Viewpoint\Viewpoint Toolbar\ViewBar.dll
O3 - Toolbar: MSN - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Apps\MSN Toolbar\01.02.3000.1001\en-us\msntb.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O4 - HKLM\..\Run: [TrackPointSrv] tp4mon.exe
O4 - HKLM\..\Run: [WinampAgent] "C:\Documents and Settings\ShilohRayne\My Documents\Winamp3\winampa.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [ViewMgr] C:\Program Files\Viewpoint\Viewpoint Manager\ViewMgr.exe
O4 - HKLM\..\Run: [msnappau] "C:\Program Files\MSN Apps\Updater\01.02.3000.1001\en-us\msnappau.exe"
O4 - HKLM\..\Run: [AOL Spyware Protection] "C:\PROGRA~1\COMMON~1\AOL\AOLSPY~1\AOLSP Scheduler.exe"
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [vmcleaner] gxlib.exe
O4 - HKLM\..\Run: [11.tmp] C:\DOCUME~1\SHILOH~1\LOCALS~1\Temp\11.tmp.exe
O4 - HKLM\..\Run: [12.tmp] C:\DOCUME~1\SHILOH~1\LOCALS~1\Temp\12.tmp.exe
O4 - HKLM\..\Run: [12.tmp.exe] C:\DOCUME~1\SHILOH~1\LOCALS~1\Temp\12.tmp.exe
O4 - HKLM\..\Run: [11.tmp.exe] C:\DOCUME~1\SHILOH~1\LOCALS~1\Temp\11.tmp.exe
O4 - HKCU\..\Run: [AIM] C:\PROGRA~1\AIM\aim.exe -cnetwait.odl
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: America Online Tray Icon.lnk = C:\Program Files\America Online 9.0\aoltray.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE
O4 - Global Startup: SpyCatcher Protector.lnk = C:\Program Files\SpyCatcher 2006\Protector.exe
O8 - Extra context menu item: &AIM Search - res://C:\Program Files\AIM Toolbar\AIMBar.dll/aimsearch.htm
O8 - Extra context menu item: &Google Search - res://c:\program files\google\GoogleToolbar1.dll/cmsearch.html
O8 - Extra context menu item: &Translate English Word - res://c:\program files\google\GoogleToolbar1.dll/cmwordtrans.html
O8 - Extra context menu item: &Viewpoint Search - res://C:\Program Files\Viewpoint\Viewpoint Toolbar\ViewBar.dll/CXTSEARCH.HTML
O8 - Extra context menu item: Backward Links - res://c:\program files\google\GoogleToolbar1.dll/cmbacklinks.html
O8 - Extra context menu item: Cached Snapshot of Page - res://c:\program files\google\GoogleToolbar1.dll/cmcache.html
O8 - Extra context menu item: Similar Pages - res://c:\program files\google\GoogleToolbar1.dll/cmsimilar.html
O8 - Extra context menu item: Translate Page into English - res://c:\program files\google\GoogleToolbar1.dll/cmtrans.html
O9 - Extra button: AIM - {AC9E2541-2814-11d5-BC6D-00B0D0A1DE45} - C:\PROGRA~1\AIM\aim.exe
O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\System32\Shdocvw.dll
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\MSMSGS.EXE
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\MSMSGS.EXE
O9 - Extra button: WeatherBug - {AF6CABAB-61F9-4f12-A198-B7D41EF1CB52} - C:\Program Files\AWS\WeatherBug\Weather.exe (file missing) (HKCU)
O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab31267.cab
O16 - DPF: {406B5949-7190-4245-91A9-30A17DE16AD0} (Snapfish Activia) - http://www.snapfish.com/SnapfishActivia.cab
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
O16 - DPF: {BAC01377-73DD-4796-854D-2A8997E3D68A} (Yahoo! Photos Easy Upload Tool Class) - http://us.dl1.yimg.com/download.yahoo.com/dl/installs/ydropper/ydropper1_6us.cab
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)
O20 - AppInit_DLLs: Interceptor.dll
O23 - Service: AOL Connectivity Service (AOL ACS) - America Online, Inc. - C:\PROGRA~1\COMMON~1\AOL\ACS\acsd.exe
O23 - Service: AOL Spyware Protection Service (AOLService) - Unknown owner - C:\Program Files\Common Files\AOL\AOL Spyware Protection\aolserv.exe
O23 - Service: ewido security suite control - ewido networks - C:\Program Files\ewido anti-malware\ewidoctrl.exe
O23 - Service: IBM PM Service (IBMPMSVC) - Unknown owner - C:\WINDOWS\System32\ibmpmsvc.exe
O23 - Service: WAN Miniport (ATW) Service (WANMiniportService) - America Online, Inc. - C:\WINDOWS\wanmpsvc.exe



That's all..... I mean that's a lot!

Is my system safe now? Can I buy things online with my credit card?.... Should I change all my passwords?

Hello and sorry for the wait.
Please go here and post a link back to this topic to flag a helper.

If you have waited three days for advice post here. (http://forums.spybot.info/showthread.php?p=4836#post4836)

Your post sliped by, sorry about that
For now Please disable SpybotSD TeaTimer
You can enable it after you're clean.
To disable SpybotSD TeaTimer:
Open Spybot and click on Mode and check Advanced Mode
Check yes to next window.
Click on Tools in bottom left hand corner.
Click on Resident icon and Uncheck the box next to Teatimer.
"resident tea timer"protection of all-over system settings) active"
Close SpyBot.

Post back with a new HJT log prlease

I hope you have resolved the problems

Due to lack of responses this thread is closed
If you still need assistance a new log will be needed, send me or Tashi a PM or email and we will re-open it.