i have been having trouble all week with this, it hijacks your homepage, disables IE settings, as well as windows firewall, task manager, and constantly displays a small pop-up near the status bar, and some times a fake warning of system shutdown, however hiting cancel or X just take you to their site.


here is my Panda active scan results:



Incident Status Location

Adware:Adware/TitanShield Not disinfected C:\WINDOWS\system32\users32.exe
Adware:adware/alexa-toolbar Not disinfected c:\windows\system32\alxres.dll
Adware:adware/dailytoolbar Not disinfected c:\windows\system32\dailytoolbar.dll
Adware:adware/antivirus-gold Not disinfected c:\windows\system32\runsrv32.exe
Adware:adware/thespyguard Not disinfected c:\windows\system32\shellgui32.dll
Adware:adware/admess Not disinfected c:\windows\system32\tcpservice2.exe
Adware:adware/topspyware Not disinfected c:\windows\system32\txfdb32.dll
Adware:adware/btgrab Not disinfected c:\windows\BTGrab.dll
Adware:adware/transponder Not disinfected c:\windows\dlmax.dll
Adware:adware/gator Not disinfected c:\windows\GatorPdpLoudInstaller.log
Adware:adware program Not disinfected c:\windows\ss3unstl.exe
Spyware:Cookie/Com.com Not disinfected C:\Documents and Settings\Ralph Davis\Application Data\Mozilla\Firefox\Profiles\bwwev0c2.default\cookies.txt[.com.com/]
Spyware:Cookie/Statcounter Not disinfected C:\Documents and Settings\Ralph Davis\Application Data\Mozilla\Firefox\Profiles\bwwev0c2.default\cookies.txt[.statcounter.com/]
Spyware:Cookie/Atlas DMT Not disinfected C:\Documents and Settings\Ralph Davis\Application Data\Mozilla\Firefox\Profiles\bwwev0c2.default\cookies.txt[.atdmt.com/]
Spyware:Cookie/2o7 Not disinfected C:\Documents and Settings\Ralph Davis\Application Data\Mozilla\Firefox\Profiles\bwwev0c2.default\cookies.txt[.2o7.net/]
Spyware:Cookie/Adrevolver Not disinfected C:\Documents and Settings\Ralph Davis\Application Data\Mozilla\Firefox\Profiles\bwwev0c2.default\cookies.txt[.adrevolver.com/]
Spyware:Cookie/PointRoll Not disinfected C:\Documents and Settings\Ralph Davis\Application Data\Mozilla\Firefox\Profiles\bwwev0c2.default\cookies.txt[.ads.pointroll.com/]
Spyware:Cookie/Falkag Not disinfected C:\Documents and Settings\Ralph Davis\Application Data\Mozilla\Firefox\Profiles\bwwev0c2.default\cookies.txt[.as-us.falkag.net/]
Spyware:Cookie/Serving-sys Not disinfected C:\Documents and Settings\Ralph Davis\Application Data\Mozilla\Firefox\Profiles\bwwev0c2.default\cookies.txt[.bs.serving-sys.com/]
Spyware:Cookie/BurstNet Not disinfected C:\Documents and Settings\Ralph Davis\Application Data\Mozilla\Firefox\Profiles\bwwev0c2.default\cookies.txt[.burstnet.com/]
Spyware:Cookie/Zedo Not disinfected C:\Documents and Settings\Ralph Davis\Application Data\Mozilla\Firefox\Profiles\bwwev0c2.default\cookies.txt[.c5.zedo.com/]
Spyware:Cookie/QuestionMarket Not disinfected C:\Documents and Settings\Ralph Davis\Application Data\Mozilla\Firefox\Profiles\bwwev0c2.default\cookies.txt[.questionmarket.com/]
Spyware:Cookie/Serving-sys Not disinfected C:\Documents and Settings\Ralph Davis\Application Data\Mozilla\Firefox\Profiles\bwwev0c2.default\cookies.txt[.serving-sys.com/]
Spyware:Cookie/Tribalfusion Not disinfected C:\Documents and Settings\Ralph Davis\Application Data\Mozilla\Firefox\Profiles\bwwev0c2.default\cookies.txt[.tribalfusion.com/]
Spyware:Cookie/Zedo Not disinfected C:\Documents and Settings\Ralph Davis\Application Data\Mozilla\Firefox\Profiles\bwwev0c2.default\cookies.txt[.zedo.com/]
Spyware:Cookie/YieldManager Not disinfected C:\Documents and Settings\Ralph Davis\Application Data\Mozilla\Firefox\Profiles\bwwev0c2.default\cookies.txt[ad.yieldmanager.com/]
Spyware:Cookie/Zedo Not disinfected C:\Documents and Settings\Ralph Davis\Application Data\Mozilla\Firefox\Profiles\bwwev0c2.default\cookies.txt[c5.zedo.com/]
Spyware:Cookie/BurstBeacon Not disinfected C:\Documents and Settings\Ralph Davis\Application Data\Mozilla\Firefox\Profiles\bwwev0c2.default\cookies.txt[www.burstbeacon.com/]
Spyware:Cookie/QuestionMarket Not disinfected C:\Documents and Settings\Ralph Davis\Local Settings\Temp\Cookies\ralph davis@questionmarket[1].txt
Spyware:Cookie/Zedo Not disinfected C:\Documents and Settings\Ralph Davis\Local Settings\Temp\Cookies\ralph davis@zedo[2].txt
Spyware:Cookie/Zedo Not disinfected C:\Program Files\Yahoo!\YPSR\Quarantine\ppq10.tmp