There's no such thing as a stupid question, but they're the easiest to answer.
JoinTour
Login
Search
 
Malware Removal & HijackThis Logs
Tag Cloud
audio bios blue screen boot bsod computer connection crash dcom dell driver drivers email error excel firefox google hard drive hardware hijackthis internet laptop logon logs off macro malware microsoft motherboard network networking problem ram recovery router screen slow software sound trojan usb userinit.exe virus vista webcam wifi windows windows 7 windows 7 64 bit windows xp wireless
Search
Search for:
Tech Support Guy Forums > Security & Malware Removal > Malware Removal & HijackThis Logs >
Two Computers/ProAgent Computer#1 (New)

Tip: Click here to scan for System Errors and Optimize PC performance
[ Sponsored Link ]

Closed Thread
 
Thread Tools
pandyz's Avatar
Computer Specs
Junior Member with 5 posts.
  
Join Date: Dec 2006
Location: San Jose, CA
Experience: Beginner
04-Dec-2006, 11:21 PM #1
Unhappy Two Computers/ProAgent Computer#1
Hello:

I'm new here. Someone sent viruses/Trojans to everyone on a motorcycle forum I belong to (through private message). It's infected both my computers (sharing a DSL line, but not networked). This is computer #1. I've been reading like a maniac and trying to do as much as I can on my own, but I think I'm stumped. When I ran Spyware Doctor, it said that I was infected with ProAgent, but I can't find much on this virus. Any help anyone can offer would be greatly appreciated.

Thanks in advance,
Staci
aka pandyz

P.S. I should add that this is only about computer #1...

Here's the hijackthis log:

Logfile of HijackThis v1.99.1
Scan saved at 3:30:20 PM, on 12/4/2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\SYSTEM32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\SYSTEM32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Intel\IDU\iptray.exe
C:\Program Files\Intel\IDU\awtray.exe
C:\Program Files\FarStone\RestoreIT\RestoreIT_XP\VBPTASK.EXE
C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
C:\Program Files\Canon\Memory Card Utility\iP6600D\PDUiP6600DMon.exe
C:\Program Files\Java\jre1.5.0_09\bin\jusched.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\Program Files\McAfee.com\VSO\mcvsshld.exe
C:\PROGRA~1\mcafee.com\agent\mcagent.exe
C:\PROGRA~1\mcafee.com\vso\mcvsescn.exe
C:\Program Files\McAfee.com\VSO\oasclnt.exe
C:\Program Files\ATI Multimedia\main\ATIDtct.EXE
C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
C:\Program Files\ATI Technologies\ATI.ACE\CLI.exe
C:\WINDOWS\system32\rundll32.exe
C:\Program Files\Adobe\Photoshop Elements 4.0\PhotoshopElementsFileAgent.exe
C:\Program Files\Executive Software\Diskeeper\DkService.exe
C:\Program Files\Intel\IDU\IDUServ.exe
c:\program files\mcafee.com\agent\mcdetect.exe
c:\PROGRA~1\mcafee.com\vso\mcshield.exe
c:\PROGRA~1\mcafee.com\agent\mctskshd.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\wdfmgr.exe
C:\Program Files\Canon\CAL\CALMAIN.exe
C:\WINDOWS\System32\alg.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
C:\Program Files\Spyware Doctor\sdhelp.exe
C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe
C:\WINDOWS\system32\igfxsrvc.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\hijack\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = https://login.live.com/ppsecure/md5auth.srf?lc=1033
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O2 - BHO: PCTools Site Guard - {5C8B2A36-3DB1-42A4-A3CB-D426709BBFEB} - C:\PROGRA~1\SPYWAR~1\tools\iesdsg.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_09\bin\ssv.dll
O2 - BHO: PCTools Browser Monitor - {B56A7D7D-6927-48C8-A975-17DF180C71AC} - C:\PROGRA~1\SPYWAR~1\tools\iesdpb.dll
O3 - Toolbar: Easy-WebPrint - {327C2873-E90D-4c37-AA9D-10AC9BABA46C} - C:\Program Files\Canon\Easy-WebPrint\Toolband.dll
O3 - Toolbar: McAfee VirusScan - {BA52B914-B692-46c4-B683-905236F6F655} - c:\progra~1\mcafee.com\vso\mcvsshl.dll
O4 - HKLM\..\Run: [igfxtray] C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [igfxhkcmd] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [igfxpers] C:\WINDOWS\system32\igfxpers.exe
O4 - HKLM\..\Run: [SigmatelSysTrayApp] sttray.exe
O4 - HKLM\..\Run: [IntelAudioStudio] "C:\Program Files\Intel Audio Studio\IntelAudioStudio.exe" BOOT
O4 - HKLM\..\Run: [ipTray.exe] "C:\Program Files\Intel\IDU\iptray.exe"
O4 - HKLM\..\Run: [awTray.exe] "C:\Program Files\Intel\IDU\awtray.exe"
O4 - HKLM\..\Run: [DiskeeperSystray] "C:\Program Files\Executive Software\Diskeeper\DkIcon.exe"
O4 - HKLM\..\Run: [RestoreIT!] "C:\Program Files\FarStone\RestoreIT\RestoreIT_XP\VBPTASK.EXE" VBStart
O4 - HKLM\..\Run: [StorageGuard] "C:\Program Files\Common Files\Sonic\Update Manager\sgtray.exe" /r
O4 - HKLM\..\Run: [ATIPTA] "C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe"
O4 - HKLM\..\Run: [ATICCC] "C:\Program Files\ATI Technologies\ATI.ACE\cli.exe" runtime
O4 - HKLM\..\Run: [PinnacleDriverCheck] C:\WINDOWS\system32\PSDrvCheck.exe -CheckReg
O4 - HKLM\..\Run: [PDUiP6600DMon] C:\Program Files\Canon\Memory Card Utility\iP6600D\PDUiP6600DMon.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [Adobe Photo Downloader] "C:\Program Files\Adobe\Photoshop Elements 4.0\apdproxy.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.5.0_09\bin\jusched.exe"
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [VSOCheckTask] "C:\PROGRA~1\McAfee.com\VSO\mcmnhdlr.exe" /checktask
O4 - HKLM\..\Run: [VirusScan Online] C:\Program Files\McAfee.com\VSO\mcvsshld.exe
O4 - HKLM\..\Run: [MCAgentExe] c:\PROGRA~1\mcafee.com\agent\mcagent.exe
O4 - HKLM\..\Run: [MCUpdateExe] C:\PROGRA~1\mcafee.com\agent\McUpdate.exe
O4 - HKLM\..\Run: [OASClnt] C:\Program Files\McAfee.com\VSO\oasclnt.exe
O4 - HKCU\..\Run: [ATI Launchpad] "C:\Program Files\ATI Multimedia\main\LaunchPd.exe"
O4 - HKCU\..\Run: [ATI DeviceDetect] C:\Program Files\ATI Multimedia\main\ATIDtct.EXE
O4 - HKCU\..\Run: [ATI Remote Control] C:\Program Files\ATI Multimedia\RemCtrl\ATIRW.exe
O4 - HKCU\..\Run: [LDM] C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
O4 - HKCU\..\Run: [Steam] "K:\Valve\Steam.exe" -silent
O4 - HKCU\..\Run: [Spyware Doctor] "C:\Program Files\Spyware Doctor\swdoctor.exe" /Q
O4 - Global Startup: ATI CATALYST System Tray.lnk = C:\Program Files\ATI Technologies\ATI.ACE\CLI.exe
O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe
O4 - Global Startup: Logitech Harmony Remote V5.lnk = C:\Program Files\Logitech\Harmony Remote\HarmonyClient.exe
O8 - Extra context menu item: Easy-WebPrint Add To Print List - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_AddToList.html
O8 - Extra context menu item: Easy-WebPrint High Speed Print - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_HSPrint.html
O8 - Extra context menu item: Easy-WebPrint Preview - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_Preview.html
O8 - Extra context menu item: Easy-WebPrint Print - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_Print.html
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_09\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_09\bin\ssv.dll
O9 - Extra button: Spyware Doctor - {2D663D1A-8670-49D9-A1A5-4C56B4E14E84} - C:\PROGRA~1\SPYWAR~1\tools\iesdpb.dll
O9 - Extra button: ATI TV - {44226DFF-747E-4edc-B30C-78752E50CD0C} - C:\Program Files\ATI Multimedia\dtv\EXPLBAR.DLL
O9 - Extra button: Yahoo! Messenger - {E5D12C4E-7B4F-11D3-B5C9-0050045C3C96} - C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe
O9 - Extra 'Tools' menuitem: Yahoo! Messenger - {E5D12C4E-7B4F-11D3-B5C9-0050045C3C96} - C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O12 - Plugin for .spop: C:\Program Files\Internet Explorer\Plugins\NPDocBox.dll
O16 - DPF: {2BC66F54-93A8-11D3-BEB6-00105AA9B6AE} (Symantec AntiVirus scanner) - http://security.symantec.com/sscv6/S...in/AvSniff.cab
O16 - DPF: {4ED9DDF0-7479-4BBE-9335-5A1EDB1D8A21} (McAfee.com Operating System Class) - http://download.mcafee.com/molbin/sh...1/mcinsctl.cab
O16 - DPF: {5ED80217-570B-4DA9-BF44-BE107C0EC166} (Windows Live Safety Center Base Module) - http://cdn.scan.safety.live.com/reso...scbase8460.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsu...?1149123160437
O16 - DPF: {644E432F-49D3-41A1-8DD5-E099162EEEC5} (Symantec RuFSI Utility Class) - http://security.symantec.com/sscv6/S.../bin/cabsa.cab
O16 - DPF: {BCC0FF27-31D9-4614-A68E-C18E1ADA4389} (DwnldGroupMgr Class) - http://download.mcafee.com/molbin/sh...26/mcgdmgr.cab
O18 - Protocol: bw+0 - {137913AF-0A76-4032-8582-393CE36250FB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw+0s - {137913AF-0A76-4032-8582-393CE36250FB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0 - {137913AF-0A76-4032-8582-393CE36250FB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0s - {137913AF-0A76-4032-8582-393CE36250FB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00 - {137913AF-0A76-4032-8582-393CE36250FB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00s - {137913AF-0A76-4032-8582-393CE36250FB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10 - {137913AF-0A76-4032-8582-393CE36250FB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10s - {137913AF-0A76-4032-8582-393CE36250FB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20 - {137913AF-0A76-4032-8582-393CE36250FB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20s - {137913AF-0A76-4032-8582-393CE36250FB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30 - {137913AF-0A76-4032-8582-393CE36250FB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30s - {137913AF-0A76-4032-8582-393CE36250FB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40 - {137913AF-0A76-4032-8582-393CE36250FB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40s - {137913AF-0A76-4032-8582-393CE36250FB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50 - {137913AF-0A76-4032-8582-393CE36250FB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50s - {137913AF-0A76-4032-8582-393CE36250FB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60 - {137913AF-0A76-4032-8582-393CE36250FB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60s - {137913AF-0A76-4032-8582-393CE36250FB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70 - {137913AF-0A76-4032-8582-393CE36250FB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70s - {137913AF-0A76-4032-8582-393CE36250FB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80 - {137913AF-0A76-4032-8582-393CE36250FB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80s - {137913AF-0A76-4032-8582-393CE36250FB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90 - {137913AF-0A76-4032-8582-393CE36250FB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90s - {137913AF-0A76-4032-8582-393CE36250FB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0 - {137913AF-0A76-4032-8582-393CE36250FB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0s - {137913AF-0A76-4032-8582-393CE36250FB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0 - {137913AF-0A76-4032-8582-393CE36250FB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0s - {137913AF-0A76-4032-8582-393CE36250FB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0 - {137913AF-0A76-4032-8582-393CE36250FB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0s - {137913AF-0A76-4032-8582-393CE36250FB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0 - {137913AF-0A76-4032-8582-393CE36250FB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0s - {137913AF-0A76-4032-8582-393CE36250FB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0 - {137913AF-0A76-4032-8582-393CE36250FB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0s - {137913AF-0A76-4032-8582-393CE36250FB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0 - {137913AF-0A76-4032-8582-393CE36250FB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0s - {137913AF-0A76-4032-8582-393CE36250FB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O18 - Protocol: bwg0 - {137913AF-0A76-4032-8582-393CE36250FB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwg0s - {137913AF-0A76-4032-8582-393CE36250FB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0 - {137913AF-0A76-4032-8582-393CE36250FB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0s - {137913AF-0A76-4032-8582-393CE36250FB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0 - {137913AF-0A76-4032-8582-393CE36250FB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0s - {137913AF-0A76-4032-8582-393CE36250FB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0 - {137913AF-0A76-4032-8582-393CE36250FB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0s - {137913AF-0A76-4032-8582-393CE36250FB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0 - {137913AF-0A76-4032-8582-393CE36250FB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0s - {137913AF-0A76-4032-8582-393CE36250FB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0 - {137913AF-0A76-4032-8582-393CE36250FB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0s - {137913AF-0A76-4032-8582-393CE36250FB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0 - {137913AF-0A76-4032-8582-393CE36250FB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0s - {137913AF-0A76-4032-8582-393CE36250FB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0 - {137913AF-0A76-4032-8582-393CE36250FB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0s - {137913AF-0A76-4032-8582-393CE36250FB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0 - {137913AF-0A76-4032-8582-393CE36250FB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0s - {137913AF-0A76-4032-8582-393CE36250FB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0 - {137913AF-0A76-4032-8582-393CE36250FB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0s - {137913AF-0A76-4032-8582-393CE36250FB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0 - {137913AF-0A76-4032-8582-393CE36250FB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0s - {137913AF-0A76-4032-8582-393CE36250FB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0 - {137913AF-0A76-4032-8582-393CE36250FB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0s - {137913AF-0A76-4032-8582-393CE36250FB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0 - {137913AF-0A76-4032-8582-393CE36250FB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0s - {137913AF-0A76-4032-8582-393CE36250FB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0 - {137913AF-0A76-4032-8582-393CE36250FB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0s - {137913AF-0A76-4032-8582-393CE36250FB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0 - {137913AF-0A76-4032-8582-393CE36250FB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0s - {137913AF-0A76-4032-8582-393CE36250FB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0 - {137913AF-0A76-4032-8582-393CE36250FB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0s - {137913AF-0A76-4032-8582-393CE36250FB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0 - {137913AF-0A76-4032-8582-393CE36250FB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0s - {137913AF-0A76-4032-8582-393CE36250FB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0 - {137913AF-0A76-4032-8582-393CE36250FB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0s - {137913AF-0A76-4032-8582-393CE36250FB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0 - {137913AF-0A76-4032-8582-393CE36250FB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0s - {137913AF-0A76-4032-8582-393CE36250FB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0 - {137913AF-0A76-4032-8582-393CE36250FB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0s - {137913AF-0A76-4032-8582-393CE36250FB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)
O18 - Protocol: offline-8876480 - {137913AF-0A76-4032-8582-393CE36250FB} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O20 - Winlogon Notify: igfxcui - C:\WINDOWS\SYSTEM32\igfxdev.dll
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O23 - Service: Adobe Active File Monitor V4 (AdobeActiveFileMonitor4.0) - Unknown owner - C:\Program Files\Adobe\Photoshop Elements 4.0\PhotoshopElementsFileAgent.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: Canon Camera Access Library 8 (CCALib8) - Canon Inc. - C:\Program Files\Canon\CAL\CALMAIN.exe
O23 - Service: Diskeeper - Executive Software International, Inc. - C:\Program Files\Executive Software\Diskeeper\DkService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Intel(R) Desktop Utilities Service (iHCService) - OSA Technologies, Inc. - C:\Program Files\Intel\IDU\IDUServ.exe
O23 - Service: McAfee WSC Integration (McDetect.exe) - McAfee, Inc - c:\program files\mcafee.com\agent\mcdetect.exe
O23 - Service: McAfee.com McShield (McShield) - McAfee Inc. - c:\PROGRA~1\mcafee.com\vso\mcshield.exe
O23 - Service: McAfee Task Scheduler (McTskshd.exe) - McAfee, Inc - c:\PROGRA~1\mcafee.com\agent\mctskshd.exe
O23 - Service: McAfee SecurityCenter Update Manager (mcupdmgr.exe) - McAfee, Inc - C:\PROGRA~1\McAfee.com\Agent\mcupdmgr.exe
O23 - Service: PC Tools Spyware Doctor (SDhelper) - PC Tools Research Pty Ltd - C:\Program Files\Spyware Doctor\sdhelp.exe
Last edited by pandyz : 04-Dec-2006 11:33 PM.
Register for free to hide this ad!
cybertech's Avatar
Computer Specs
Moderator with 68,814 posts.
  
Join Date: Apr 2002
Location: Washington State
08-Dec-2006, 10:22 AM #2
Go to Add/Remove programs and remove Logitech Desktop Messenger


Please download ATF Cleaner by Atribune.
This program is for XP and Windows 2000 only
  • Double-click ATF-Cleaner.exe to run the program.
    Under Main choose: Select All
    Click the Empty Selected button.
If you use Firefox browser
  • Click Firefox at the top and choose: Select All
    Click the Empty Selected button.
    NOTE: If you would like to keep your saved passwords, please click No at the prompt.
If you use Opera browser
  • Click Opera at the top and choose: Select All
    Click the Empty Selected button.
    NOTE: If you would like to keep your saved passwords, please click No at the prompt.
Click Exit on the Main menu to close the program.
For Technical Support, double-click the e-mail address located at the bottom of each menu.





Download and install AVG Anti-Spyware 7.5 AVG ANTI-SPYWARE IS ONLY FOR SYSTEMS RUNNING WIN 2K and XP
(This is Ewdio 4.0 renamed. If you already have Ewido installed, please update to this version which has a special "clean driver" for removing persistent malware)
1. After download, double click on the file to launch the install process.
2. Choose a language, click "OK" and then click "Next".
3. Read the "License Agreement" and click "I Agree".
4. Accept default installation path: C:\Program Files\Grisoft\AVG Anti-Spyware 7.5, click "Next", then click "Install".
5. After setup completes, click "Finish" to start the program automatically or launch AVG Anti-Spyware by double-clicking its icon on your desktop or in the system tray.
6. The main "Status" menu will appear. Select "Change state" to inactivate 'Resident Shield' and 'Automatic Updates'.
7. Then right click on AVG Anti-Spyware in the system tray and uncheck "Start with Windows".
8. Go to Start > Run and type: services.msc
  • Press "OK".
  • Click the "Extended tab" and scroll down the list to find AVG Anti-Spyware guard.
  • When you find the guard service, double-click on it.
  • In the Properties Window > General Tab that opens, click the "Stop" button.
  • From the drop-down menu next to "Startup Type", click on "Manual".
  • Now click "Apply", then "OK" and close the Services window.
9. Select the "Update" button and click "Start update". Wait until you see the "Update succesfull message. If you are having problems with the updater, manually update with the AVG Anti-Spyware Full database installer from here. Exit AVG Anti-Spyware when done - DO NOT perform a scan yet.

Reboot your computer in "SAFE MODE" using the F8 method. To do this, restart your computer and after hearing your computer beep once during startup [but before the Windows icon appears] press the F8 key repeatedly. A menu will appear with several options. Use the arrow keys to navigate and select the option to run Windows in "Safe Mode".

Scan with AVG Anti-Spyware as follows:
1. Launch AVG Anti-Spyware, click on the "Scanner" button and choose the "Settings" tab.
  • Under "How to act?", click on "Recommended actions" and choose "Quarantine" to set default action for detected malware.
  • Under "How to Scan?" check all (default).
  • Under "Possibly unwanted software" check all (default).
  • Under "What to Scan?" make sure "Scan every file" is selected (default).
  • Under "Reports" select "Automatically generate report after every scan" and UNcheck "Only if threats were found".
2. Click the "Scan" tab to return to scanning options.
3. Click "Complete System Scan" to start.
4. When the scan has finished you will be presented with a list of infected objects found. Click "Apply all actions" to place the files in Quarantine.

IMPORTANT! Do not save the report before you have clicked the Apply all actions button. If you do, the log that is created will indicate "No action taken", making it more difficult to interpret the report. So be sure you save it only AFTER clicking the "Apply all actions" button?

5. Click on "Save Report" to view all completed scans. Click on the most recent scan you just performed and select "Save report as" - the default file name will be in date/time format as follows: Report-Scan-20060620-142816.txt. Save to your desktop. A copy of each report will also be saved in C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\Reports\
6. Exit AVG Anti-Spyware when done, reboot normally and submit the log report in your next response.

Note: Close all open windows, programs, and DO NOT USE the computer while AVG Anti-Spyware is scanning. If Explorer or other programs are open during the scan that means certain files will also be in use. Some malware will insert itself and hide in areas that are "protected" by Windows when the files are being used. This can hamper AVG Anti-Spyware's ability to clean properly and may result in reinfection.

Note: If AVG Anti-Spyware "crashes" or "hangs" during the scan, try scanning again by doing this:
1. Scan one sector of the system at a time by using the "Custom Scan" feature. To do this select Scanner > Custom Scan and click on Add drive/directory/file. Browse to C:\Windows > System, add this folder to the list and click on "Start Scan". When the scan is complete, repeat the Custom Scan but this time, browse to and add the System32 folder. Then keep repeating this procedure until all your folders have been scanned. Make sure you include the Documents & Settings folder.

2. If this still does not help, then turn the ADS scanner off while making a Custom Scan. To do this select Scanner > Scan Settings and untick "Scan in NTFS Alternate Data Streams". Then repeat the steps above for performing a Custom Scan.
__________________
Microsoft MVP/Windows - Consumer Security
pandyz's Avatar
Computer Specs
Junior Member with 5 posts.
  
Join Date: Dec 2006
Location: San Jose, CA
Experience: Beginner
08-Dec-2006, 12:50 PM #3
Thank you SOOO much for your help!!!!!

Here's the new log (report split over two posts):

---------------------------------------------------------
AVG Anti-Spyware - Scan Report
---------------------------------------------------------

+ Created at: 9:40:35 AM 12/8/2006

+ Scan result:



:mozilla.107:H:\recover\seagate\Documents and Settings\ceek\Application Data\Mozilla\Firefox\Profiles\b1nymkrz.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.216:H:\recover\seagate\Documents and Settings\ceek\Application Data\Mozilla\Firefox\Profiles\b1nymkrz.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.404:H:\recover\seagate\Documents and Settings\ceek\Application Data\Mozilla\Firefox\Profiles\b1nymkrz.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.42:H:\recover\seagate\Documents and Settings\ceek\Application Data\Mozilla\Firefox\Profiles\b1nymkrz.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.431:H:\recover\seagate\Documents and Settings\ceek\Application Data\Mozilla\Firefox\Profiles\b1nymkrz.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.43:H:\recover\seagate\Documents and Settings\ceek\Application Data\Mozilla\Firefox\Profiles\b1nymkrz.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.44:H:\recover\seagate\Documents and Settings\ceek\Application Data\Mozilla\Firefox\Profiles\b1nymkrz.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.45:H:\recover\seagate\Documents and Settings\ceek\Application Data\Mozilla\Firefox\Profiles\b1nymkrz.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.46:H:\recover\seagate\Documents and Settings\ceek\Application Data\Mozilla\Firefox\Profiles\b1nymkrz.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.47:H:\recover\seagate\Documents and Settings\ceek\Application Data\Mozilla\Firefox\Profiles\b1nymkrz.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.48:H:\recover\seagate\Documents and Settings\ceek\Application Data\Mozilla\Firefox\Profiles\b1nymkrz.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.49:H:\recover\seagate\Documents and Settings\ceek\Application Data\Mozilla\Firefox\Profiles\b1nymkrz.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.50:H:\recover\seagate\Documents and Settings\ceek\Application Data\Mozilla\Firefox\Profiles\b1nymkrz.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.51:H:\recover\seagate\Documents and Settings\ceek\Application Data\Mozilla\Firefox\Profiles\b1nymkrz.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.52:H:\recover\seagate\Documents and Settings\ceek\Application Data\Mozilla\Firefox\Profiles\b1nymkrz.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.53:H:\recover\seagate\Documents and Settings\ceek\Application Data\Mozilla\Firefox\Profiles\b1nymkrz.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.54:H:\recover\seagate\Documents and Settings\ceek\Application Data\Mozilla\Firefox\Profiles\b1nymkrz.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.55:H:\recover\seagate\Documents and Settings\ceek\Application Data\Mozilla\Firefox\Profiles\b1nymkrz.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.56:H:\recover\seagate\Documents and Settings\ceek\Application Data\Mozilla\Firefox\Profiles\b1nymkrz.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.57:H:\recover\seagate\Documents and Settings\ceek\Application Data\Mozilla\Firefox\Profiles\b1nymkrz.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.58:H:\recover\seagate\Documents and Settings\ceek\Application Data\Mozilla\Firefox\Profiles\b1nymkrz.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.661:H:\recover\seagate\Documents and Settings\ceek\Application Data\Mozilla\Firefox\Profiles\b1nymkrz.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
H:\recover\seagate\Documents and Settings\ceek\Cookies\ceek@msnportal.112.2o7[1].txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.834:C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\qev8uuhg.default\cookies.txt -> TrackingCookie.Adbrite : Cleaned.
:mozilla.835:C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\qev8uuhg.default\cookies.txt -> TrackingCookie.Adbrite : Cleaned.
:mozilla.836:C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\qev8uuhg.default\cookies.txt -> TrackingCookie.Adbrite : Cleaned.
:mozilla.411:H:\recover\seagate\Documents and Settings\ceek\Application Data\Mozilla\Firefox\Profiles\b1nymkrz.default\cookies.txt -> TrackingCookie.Adjuggler : Cleaned.
:mozilla.412:H:\recover\seagate\Documents and Settings\ceek\Application Data\Mozilla\Firefox\Profiles\b1nymkrz.default\cookies.txt -> TrackingCookie.Adjuggler : Cleaned.
:mozilla.413:H:\recover\seagate\Documents and Settings\ceek\Application Data\Mozilla\Firefox\Profiles\b1nymkrz.default\cookies.txt -> TrackingCookie.Adjuggler : Cleaned.
:mozilla.414:H:\recover\seagate\Documents and Settings\ceek\Application Data\Mozilla\Firefox\Profiles\b1nymkrz.default\cookies.txt -> TrackingCookie.Adjuggler : Cleaned.
:mozilla.417:H:\recover\seagate\Documents and Settings\ceek\Application Data\Mozilla\Firefox\Profiles\b1nymkrz.default\cookies.txt -> TrackingCookie.Adjuggler : Cleaned.
H:\recover\seagate\Documents and Settings\ceek\Cookies\ceek@ad.admarketplace[2].txt -> TrackingCookie.Admarketplace : Cleaned.
:mozilla.584:H:\recover\seagate\Documents and Settings\ceek\Application Data\Mozilla\Firefox\Profiles\b1nymkrz.default\cookies.txt -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.585:H:\recover\seagate\Documents and Settings\ceek\Application Data\Mozilla\Firefox\Profiles\b1nymkrz.default\cookies.txt -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.586:H:\recover\seagate\Documents and Settings\ceek\Application Data\Mozilla\Firefox\Profiles\b1nymkrz.default\cookies.txt -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.587:H:\recover\seagate\Documents and Settings\ceek\Application Data\Mozilla\Firefox\Profiles\b1nymkrz.default\cookies.txt -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.588:H:\recover\seagate\Documents and Settings\ceek\Application Data\Mozilla\Firefox\Profiles\b1nymkrz.default\cookies.txt -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.611:H:\recover\seagate\Documents and Settings\ceek\Application Data\Mozilla\Firefox\Profiles\b1nymkrz.default\cookies.txt -> TrackingCookie.Adserver : Cleaned.
:mozilla.612:H:\recover\seagate\Documents and Settings\ceek\Application Data\Mozilla\Firefox\Profiles\b1nymkrz.default\cookies.txt -> TrackingCookie.Adserver : Cleaned.
:mozilla.391:C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\qev8uuhg.default\cookies.txt -> TrackingCookie.Adtech : Cleaned.
:mozilla.392:C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\qev8uuhg.default\cookies.txt -> TrackingCookie.Adtech : Cleaned.
:mozilla.173:H:\recover\seagate\Documents and Settings\ceek\Application Data\Mozilla\Firefox\Profiles\b1nymkrz.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.174:H:\recover\seagate\Documents and Settings\ceek\Application Data\Mozilla\Firefox\Profiles\b1nymkrz.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.175:H:\recover\seagate\Documents and Settings\ceek\Application Data\Mozilla\Firefox\Profiles\b1nymkrz.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.176:H:\recover\seagate\Documents and Settings\ceek\Application Data\Mozilla\Firefox\Profiles\b1nymkrz.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.40:C:\Documents and Settings\ceek\Application Data\Mozilla\Firefox\Profiles\mykbts3g.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.41:C:\Documents and Settings\ceek\Application Data\Mozilla\Firefox\Profiles\mykbts3g.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.93:C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\qev8uuhg.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.94:C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\qev8uuhg.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.95:C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\qev8uuhg.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.96:C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\qev8uuhg.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.97:C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\qev8uuhg.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.98:C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\qev8uuhg.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.68:H:\recover\seagate\Documents and Settings\ceek\Application Data\Mozilla\Firefox\Profiles\b1nymkrz.default\cookies.txt -> TrackingCookie.Atdmt : Cleaned.
:mozilla.75:C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\qev8uuhg.default\cookies.txt -> TrackingCookie.Atdmt : Cleaned.
H:\recover\seagate\Documents and Settings\ceek\Cookies\ceek@atdmt[2].txt -> TrackingCookie.Atdmt : Cleaned.
:mozilla.664:C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\qev8uuhg.default\cookies.txt -> TrackingCookie.Bfast : Cleaned.
:mozilla.269:C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\qev8uuhg.default\cookies.txt -> TrackingCookie.Bluestreak : Cleaned.
:mozilla.481:H:\recover\seagate\Documents and Settings\ceek\Application Data\Mozilla\Firefox\Profiles\b1nymkrz.default\cookies.txt -> TrackingCookie.Bluestreak : Cleaned.
:mozilla.476:H:\recover\seagate\Documents and Settings\ceek\Application Data\Mozilla\Firefox\Profiles\b1nymkrz.default\cookies.txt -> TrackingCookie.Bridgetrack : Cleaned.
:mozilla.477:H:\recover\seagate\Documents and Settings\ceek\Application Data\Mozilla\Firefox\Profiles\b1nymkrz.default\cookies.txt -> TrackingCookie.Bridgetrack : Cleaned.
:mozilla.371:H:\recover\seagate\Documents and Settings\ceek\Application Data\Mozilla\Firefox\Profiles\b1nymkrz.default\cookies.txt -> TrackingCookie.Burstbeacon : Cleaned.
:mozilla.156:H:\recover\seagate\Documents and Settings\ceek\Application Data\Mozilla\Firefox\Profiles\b1nymkrz.default\cookies.txt -> TrackingCookie.Burstnet : Cleaned.
:mozilla.157:H:\recover\seagate\Documents and Settings\ceek\Application Data\Mozilla\Firefox\Profiles\b1nymkrz.default\cookies.txt -> TrackingCookie.Burstnet : Cleaned.
:mozilla.158:H:\recover\seagate\Documents and Settings\ceek\Application Data\Mozilla\Firefox\Profiles\b1nymkrz.default\cookies.txt -> TrackingCookie.Burstnet : Cleaned.
:mozilla.54:C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\qev8uuhg.default\cookies.txt -> TrackingCookie.Burstnet : Cleaned.
:mozilla.72:C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\qev8uuhg.default\cookies.txt -> TrackingCookie.Burstnet : Cleaned.
:mozilla.73:C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\qev8uuhg.default\cookies.txt -> TrackingCookie.Burstnet : Cleaned.
:mozilla.74:C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\qev8uuhg.default\cookies.txt -> TrackingCookie.Burstnet : Cleaned.
:mozilla.301:H:\recover\seagate\Documents and Settings\ceek\Application Data\Mozilla\Firefox\Profiles\b1nymkrz.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned.
:mozilla.302:H:\recover\seagate\Documents and Settings\ceek\Application Data\Mozilla\Firefox\Profiles\b1nymkrz.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned.
:mozilla.303:H:\recover\seagate\Documents and Settings\ceek\Application Data\Mozilla\Firefox\Profiles\b1nymkrz.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned.
:mozilla.304:H:\recover\seagate\Documents and Settings\ceek\Application Data\Mozilla\Firefox\Profiles\b1nymkrz.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned.
:mozilla.305:H:\recover\seagate\Documents and Settings\ceek\Application Data\Mozilla\Firefox\Profiles\b1nymkrz.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned.
:mozilla.869:C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\qev8uuhg.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned.
H:\recover\seagate\Documents and Settings\ceek\Cookies\ceek@casalemedia[2].txt -> TrackingCookie.Casalemedia : Cleaned.
:mozilla.138:C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\qev8uuhg.default\cookies.txt -> TrackingCookie.Com : Cleaned.
:mozilla.139:C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\qev8uuhg.default\cookies.txt -> TrackingCookie.Com : Cleaned.
:mozilla.140:C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\qev8uuhg.default\cookies.txt -> TrackingCookie.Com : Cleaned.
:mozilla.141:C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\qev8uuhg.default\cookies.txt -> TrackingCookie.Com : Cleaned.
:mozilla.142:C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\qev8uuhg.default\cookies.txt -> TrackingCookie.Com : Cleaned.
:mozilla.143:C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\qev8uuhg.default\cookies.txt -> TrackingCookie.Com : Cleaned.
:mozilla.144:C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\qev8uuhg.default\cookies.txt -> TrackingCookie.Com : Cleaned.
:mozilla.156:C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\qev8uuhg.default\cookies.txt -> TrackingCookie.Com : Cleaned.
:mozilla.157:C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\qev8uuhg.default\cookies.txt -> TrackingCookie.Com : Cleaned.
:mozilla.158:C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\qev8uuhg.default\cookies.txt -> TrackingCookie.Com : Cleaned.
:mozilla.159:C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\qev8uuhg.default\cookies.txt -> TrackingCookie.Com : Cleaned.
:mozilla.220:H:\recover\seagate\Documents and Settings\ceek\Application Data\Mozilla\Firefox\Profiles\b1nymkrz.default\cookies.txt -> TrackingCookie.Com : Cleaned.
:mozilla.684:C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\qev8uuhg.default\cookies.txt -> TrackingCookie.Commission-junction : Cleaned.
:mozilla.685:C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\qev8uuhg.default\cookies.txt -> TrackingCookie.Commission-junction : Cleaned.
:mozilla.289:H:\recover\seagate\Documents and Settings\ceek\Application Data\Mozilla\Firefox\Profiles\b1nymkrz.default\cookies.txt -> TrackingCookie.Coremetrics : Cleaned.
:mozilla.356:H:\recover\seagate\Documents and Settings\ceek\Application Data\Mozilla\Firefox\Profiles\b1nymkrz.default\cookies.txt -> TrackingCookie.Cpvfeed : Cleaned.
:mozilla.39:C:\Documents and Settings\ceek\Application Data\Mozilla\Firefox\Profiles\mykbts3g.default\cookies.txt -> TrackingCookie.Doubleclick : Cleaned.
:mozilla.69:H:\recover\seagate\Documents and Settings\ceek\Application Data\Mozilla\Firefox\Profiles\b1nymkrz.default\cookies.txt -> TrackingCookie.Doubleclick : Cleaned.
:mozilla.79:C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\qev8uuhg.default\cookies.txt -> TrackingCookie.Doubleclick : Cleaned.
:mozilla.119:H:\recover\seagate\Documents and Settings\ceek\Application Data\Mozilla\Firefox\Profiles\b1nymkrz.default\cookies.txt -> TrackingCookie.Esomniture : Cleaned.
:mozilla.405:H:\recover\seagate\Documents and Settings\ceek\Application Data\Mozilla\Firefox\Profiles\b1nymkrz.default\cookies.txt -> TrackingCookie.Esomniture : Cleaned.
:mozilla.420:H:\recover\seagate\Documents and Settings\ceek\Application Data\Mozilla\Firefox\Profiles\b1nymkrz.default\cookies.txt -> TrackingCookie.Esomniture : Cleaned.
:mozilla.421:H:\recover\seagate\Documents and Settings\ceek\Application Data\Mozilla\Firefox\Profiles\b1nymkrz.default\cookies.txt -> TrackingCookie.Esomniture : Cleaned.
:mozilla.592:H:\recover\seagate\Documents and Settings\ceek\Application Data\Mozilla\Firefox\Profiles\b1nymkrz.default\cookies.txt -> TrackingCookie.Esomniture : Cleaned.
H:\recover\seagate\Documents and Settings\ceek\Cookies\ceek@e-2dj6wfkisjazglq.stats.esomniture[1].txt -> TrackingCookie.Esomniture : Cleaned.
H:\recover\seagate\Documents and Settings\ceek\Cookies\ceek@e-2dj6wjk4sgdzsao.stats.esomniture[1].txt -> TrackingCookie.Esomniture : Cleaned.
:mozilla.627:C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\qev8uuhg.default\cookies.txt -> TrackingCookie.Euroclick : Cleaned.
H:\recover\seagate\Documents and Settings\ceek\Cookies\ceek@adopt.euroclick[1].txt -> TrackingCookie.Euroclick : Cleaned.
:mozilla.389:C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\qev8uuhg.default\cookies.txt -> TrackingCookie.Falkag : Cleaned.
:mozilla.243:C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\qev8uuhg.default\cookies.txt -> TrackingCookie.Fastclick : Cleaned.
:mozilla.244:C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\qev8uuhg.default\cookies.txt -> TrackingCookie.Fastclick : Cleaned.
:mozilla.245:C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\qev8uuhg.default\cookies.txt -> TrackingCookie.Fastclick : Cleaned.
:mozilla.246:C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\qev8uuhg.default\cookies.txt -> TrackingCookie.Fastclick : Cleaned.
:mozilla.247:C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\qev8uuhg.default\cookies.txt -> TrackingCookie.Fastclick : Cleaned.
:mozilla.582:H:\recover\seagate\Documents and Settings\ceek\Application Data\Mozilla\Firefox\Profiles\b1nymkrz.default\cookies.txt -> TrackingCookie.Fastclick : Cleaned.
:mozilla.102:H:\recover\seagate\Documents and Settings\ceek\Application Data\Mozilla\Firefox\Profiles\b1nymkrz.default\cookies.txt -> TrackingCookie.Googleadservices : Cleaned.
:mozilla.393:C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\qev8uuhg.default\cookies.txt -> TrackingCookie.Googleadservices : Cleaned.
:mozilla.403:C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\qev8uuhg.default\cookies.txt -> TrackingCookie.Googleadservices : Cleaned.
:mozilla.459:H:\recover\seagate\Documents and Settings\ceek\Application Data\Mozilla\Firefox\Profiles\b1nymkrz.default\cookies.txt -> TrackingCookie.Googleadservices : Cleaned.
:mozilla.711:C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\qev8uuhg.default\cookies.txt -> TrackingCookie.Googleadservices : Cleaned.
:mozilla.712:C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\qev8uuhg.default\cookies.txt -> TrackingCookie.Googleadservices : Cleaned.
:mozilla.225:H:\recover\seagate\Documents and Settings\ceek\Application Data\Mozilla\Firefox\Profiles\b1nymkrz.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned.
:mozilla.226:H:\recover\seagate\Documents and Settings\ceek\Application Data\Mozilla\Firefox\Profiles\b1nymkrz.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned.
:mozilla.227:H:\recover\seagate\Documents and Settings\ceek\Application Data\Mozilla\Firefox\Profiles\b1nymkrz.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned.
:mozilla.257:H:\recover\seagate\Documents and Settings\ceek\Application Data\Mozilla\Firefox\Profiles\b1nymkrz.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned.
:mozilla.352:H:\recover\seagate\Documents and Settings\ceek\Application Data\Mozilla\Firefox\Profiles\b1nymkrz.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned.
:mozilla.392:H:\recover\seagate\Documents and Settings\ceek\Application Data\Mozilla\Firefox\Profiles\b1nymkrz.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned.
:mozilla.454:H:\recover\seagate\Documents and Settings\ceek\Application Data\Mozilla\Firefox\Profiles\b1nymkrz.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned.
:mozilla.465:H:\recover\seagate\Documents and Settings\ceek\Application Data\Mozilla\Firefox\Profiles\b1nymkrz.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned.
:mozilla.846:C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\qev8uuhg.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned.
H:\recover\seagate\Documents and Settings\ceek\Cookies\ceek@ehg-lexarmediacom.hitbox[1].txt -> TrackingCookie.Hitbox : Cleaned.
H:\recover\seagate\Documents and Settings\ceek\Cookies\ceek@hitbox[2].txt -> TrackingCookie.Hitbox : Cleaned.
:mozilla.235:H:\recover\seagate\Documents and Settings\ceek\Application Data\Mozilla\Firefox\Profiles\b1nymkrz.default\cookies.txt -> TrackingCookie.Hitslink : Cleaned.
:mozilla.236:H:\recover\seagate\Documents and Settings\ceek\Application Data\Mozilla\Firefox\Profiles\b1nymkrz.default\cookies.txt -> TrackingCookie.Hitslink : Cleaned.
:mozilla.237:H:\recover\seagate\Documents and Settings\ceek\Application Data\Mozilla\Firefox\Profiles\b1nymkrz.default\cookies.txt -> TrackingCookie.Hitslink : Cleaned.
:mozilla.238:H:\recover\seagate\Documents and Settings\ceek\Application Data\Mozilla\Firefox\Profiles\b1nymkrz.default\cookies.txt -> TrackingCookie.Hitslink : Cleaned.
:mozilla.374:H:\recover\seagate\Documents and Settings\ceek\Application Data\Mozilla\Firefox\Profiles\b1nymkrz.default\cookies.txt -> TrackingCookie.Hitslink : Cleaned.
:mozilla.375:H:\recover\seagate\Documents and Settings\ceek\Application Data\Mozilla\Firefox\Profiles\b1nymkrz.default\cookies.txt -> TrackingCookie.Hitslink : Cleaned.
:mozilla.376:H:\recover\seagate\Documents and Settings\ceek\Application Data\Mozilla\Firefox\Profiles\b1nymkrz.default\cookies.txt -> TrackingCookie.Hitslink : Cleaned.
:mozilla.377:H:\recover\seagate\Documents and Settings\ceek\Application Data\Mozilla\Firefox\Profiles\b1nymkrz.default\cookies.txt -> TrackingCookie.Hitslink : Cleaned.
H:\recover\seagate\Documents and Settings\ceek\Cookies\ceek@ivwbox[2].txt -> TrackingCookie.Ivwbox : Cleaned.
:mozilla.556:C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\qev8uuhg.default\cookies.txt -> TrackingCookie.Linksynergy : Cleaned.
:mozilla.557:C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\qev8uuhg.default\cookies.txt ->
pandyz's Avatar
Computer Specs
Junior Member with 5 posts.
  
Join Date: Dec 2006
Location: San Jose, CA
Experience: Beginner
08-Dec-2006, 12:50 PM #4
TrackingCookie.Linksynergy : Cleaned.
:mozilla.108:H:\recover\seagate\Documents and Settings\ceek\Application Data\Mozilla\Firefox\Profiles\b1nymkrz.default\cookies.txt -> TrackingCookie.Liveperson : Cleaned.
:mozilla.109:H:\recover\seagate\Documents and Settings\ceek\Application Data\Mozilla\Firefox\Profiles\b1nymkrz.default\cookies.txt -> TrackingCookie.Liveperson : Cleaned.
:mozilla.110:H:\recover\seagate\Documents and Settings\ceek\Application Data\Mozilla\Firefox\Profiles\b1nymkrz.default\cookies.txt -> TrackingCookie.Liveperson : Cleaned.
:mozilla.111:H:\recover\seagate\Documents and Settings\ceek\Application Data\Mozilla\Firefox\Profiles\b1nymkrz.default\cookies.txt -> TrackingCookie.Liveperson : Cleaned.
:mozilla.151:H:\recover\seagate\Documents and Settings\ceek\Application Data\Mozilla\Firefox\Profiles\b1nymkrz.default\cookies.txt -> TrackingCookie.Liveperson : Cleaned.
:mozilla.152:H:\recover\seagate\Documents and Settings\ceek\Application Data\Mozilla\Firefox\Profiles\b1nymkrz.default\cookies.txt -> TrackingCookie.Liveperson : Cleaned.
:mozilla.324:H:\recover\seagate\Documents and Settings\ceek\Application Data\Mozilla\Firefox\Profiles\b1nymkrz.default\cookies.txt -> TrackingCookie.Liveperson : Cleaned.
:mozilla.328:H:\recover\seagate\Documents and Settings\ceek\Application Data\Mozilla\Firefox\Profiles\b1nymkrz.default\cookies.txt -> TrackingCookie.Liveperson : Cleaned.
:mozilla.330:H:\recover\seagate\Documents and Settings\ceek\Application Data\Mozilla\Firefox\Profiles\b1nymkrz.default\cookies.txt -> TrackingCookie.Liveperson : Cleaned.
:mozilla.547:H:\recover\seagate\Documents and Settings\ceek\Application Data\Mozilla\Firefox\Profiles\b1nymkrz.default\cookies.txt -> TrackingCookie.Liveperson : Cleaned.
:mozilla.551:H:\recover\seagate\Documents and Settings\ceek\Application Data\Mozilla\Firefox\Profiles\b1nymkrz.default\cookies.txt -> TrackingCookie.Liveperson : Cleaned.
:mozilla.622:C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\qev8uuhg.default\cookies.txt -> TrackingCookie.Liveperson : Cleaned.
:mozilla.623:C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\qev8uuhg.default\cookies.txt -> TrackingCookie.Liveperson : Cleaned.
:mozilla.749:C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\qev8uuhg.default\cookies.txt -> TrackingCookie.Liveperson : Cleaned.
:mozilla.750:C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\qev8uuhg.default\cookies.txt -> TrackingCookie.Liveperson : Cleaned.
:mozilla.813:C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\qev8uuhg.default\cookies.txt -> TrackingCookie.Liveperson : Cleaned.
:mozilla.814:C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\qev8uuhg.default\cookies.txt -> TrackingCookie.Liveperson : Cleaned.
:mozilla.120:H:\recover\seagate\Documents and Settings\ceek\Application Data\Mozilla\Firefox\Profiles\b1nymkrz.default\cookies.txt -> TrackingCookie.Mediaplex : Cleaned.
:mozilla.76:C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\qev8uuhg.default\cookies.txt -> TrackingCookie.Mediaplex : Cleaned.
:mozilla.78:C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\qev8uuhg.default\cookies.txt -> TrackingCookie.Mediaplex : Cleaned.
H:\recover\seagate\Documents and Settings\ceek\Cookies\ceek@mediaplex[1].txt -> TrackingCookie.Mediaplex : Cleaned.
:mozilla.266:H:\recover\seagate\Documents and Settings\ceek\Application Data\Mozilla\Firefox\Profiles\b1nymkrz.default\cookies.txt -> TrackingCookie.Myaffiliateprogram : Cleaned.
:mozilla.267:H:\recover\seagate\Documents and Settings\ceek\Application Data\Mozilla\Firefox\Profiles\b1nymkrz.default\cookies.txt -> TrackingCookie.Myaffiliateprogram : Cleaned.
:mozilla.268:H:\recover\seagate\Documents and Settings\ceek\Application Data\Mozilla\Firefox\Profiles\b1nymkrz.default\cookies.txt -> TrackingCookie.Myaffiliateprogram : Cleaned.
:mozilla.223:C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\qev8uuhg.default\cookies.txt -> TrackingCookie.Overture : Cleaned.
:mozilla.224:C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\qev8uuhg.default\cookies.txt -> TrackingCookie.Overture : Cleaned.
:mozilla.225:C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\qev8uuhg.default\cookies.txt -> TrackingCookie.Overture : Cleaned.
:mozilla.26:C:\Documents and Settings\ceek\Application Data\Mozilla\Firefox\Profiles\mykbts3g.default\cookies.txt -> TrackingCookie.Overture : Cleaned.
:mozilla.28:C:\Documents and Settings\ceek\Application Data\Mozilla\Firefox\Profiles\mykbts3g.default\cookies.txt -> TrackingCookie.Overture : Cleaned.
:mozilla.494:C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\qev8uuhg.default\cookies.txt -> TrackingCookie.Overture : Cleaned.
:mozilla.563:H:\recover\seagate\Documents and Settings\ceek\Application Data\Mozilla\Firefox\Profiles\b1nymkrz.default\cookies.txt -> TrackingCookie.Overture : Cleaned.
:mozilla.126:H:\recover\seagate\Documents and Settings\ceek\Application Data\Mozilla\Firefox\Profiles\b1nymkrz.default\cookies.txt -> TrackingCookie.Pointroll : Cleaned.
:mozilla.127:H:\recover\seagate\Documents and Settings\ceek\Application Data\Mozilla\Firefox\Profiles\b1nymkrz.default\cookies.txt -> TrackingCookie.Pointroll : Cleaned.
:mozilla.128:H:\recover\seagate\Documents and Settings\ceek\Application Data\Mozilla\Firefox\Profiles\b1nymkrz.default\cookies.txt -> TrackingCookie.Pointroll : Cleaned.
:mozilla.129:H:\recover\seagate\Documents and Settings\ceek\Application Data\Mozilla\Firefox\Profiles\b1nymkrz.default\cookies.txt -> TrackingCookie.Pointroll : Cleaned.
:mozilla.272:C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\qev8uuhg.default\cookies.txt -> TrackingCookie.Pointroll : Cleaned.
:mozilla.273:C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\qev8uuhg.default\cookies.txt -> TrackingCookie.Pointroll : Cleaned.
:mozilla.274:C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\qev8uuhg.default\cookies.txt -> TrackingCookie.Pointroll : Cleaned.
:mozilla.275:C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\qev8uuhg.default\cookies.txt -> TrackingCookie.Pointroll : Cleaned.
:mozilla.121:H:\recover\seagate\Documents and Settings\ceek\Application Data\Mozilla\Firefox\Profiles\b1nymkrz.default\cookies.txt -> TrackingCookie.Qksrv : Cleaned.
:mozilla.122:H:\recover\seagate\Documents and Settings\ceek\Application Data\Mozilla\Firefox\Profiles\b1nymkrz.default\cookies.txt -> TrackingCookie.Qksrv : Cleaned.
:mozilla.160:C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\qev8uuhg.default\cookies.txt -> TrackingCookie.Questionmarket : Cleaned.
:mozilla.161:C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\qev8uuhg.default\cookies.txt -> TrackingCookie.Questionmarket : Cleaned.
:mozilla.201:H:\recover\seagate\Documents and Settings\ceek\Application Data\Mozilla\Firefox\Profiles\b1nymkrz.default\cookies.txt -> TrackingCookie.Questionmarket : Cleaned.
:mozilla.202:H:\recover\seagate\Documents and Settings\ceek\Application Data\Mozilla\Firefox\Profiles\b1nymkrz.default\cookies.txt -> TrackingCookie.Questionmarket : Cleaned.
:mozilla.134:H:\recover\seagate\Documents and Settings\ceek\Application Data\Mozilla\Firefox\Profiles\b1nymkrz.default\cookies.txt -> TrackingCookie.Ru4 : Cleaned.
:mozilla.135:H:\recover\seagate\Documents and Settings\ceek\Application Data\Mozilla\Firefox\Profiles\b1nymkrz.default\cookies.txt -> TrackingCookie.Ru4 : Cleaned.
:mozilla.136:H:\recover\seagate\Documents and Settings\ceek\Application Data\Mozilla\Firefox\Profiles\b1nymkrz.default\cookies.txt -> TrackingCookie.Ru4 : Cleaned.
:mozilla.137:H:\recover\seagate\Documents and Settings\ceek\Application Data\Mozilla\Firefox\Profiles\b1nymkrz.default\cookies.txt -> TrackingCookie.Ru4 : Cleaned.
:mozilla.138:H:\recover\seagate\Documents and Settings\ceek\Application Data\Mozilla\Firefox\Profiles\b1nymkrz.default\cookies.txt -> TrackingCookie.Ru4 : Cleaned.
:mozilla.217:C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\qev8uuhg.default\cookies.txt -> TrackingCookie.Ru4 : Cleaned.
:mozilla.218:C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\qev8uuhg.default\cookies.txt -> TrackingCookie.Ru4 : Cleaned.
:mozilla.207:H:\recover\seagate\Documents and Settings\ceek\Application Data\Mozilla\Firefox\Profiles\b1nymkrz.default\cookies.txt -> TrackingCookie.Serving-sys : Cleaned.
:mozilla.208:H:\recover\seagate\Documents and Settings\ceek\Application Data\Mozilla\Firefox\Profiles\b1nymkrz.default\cookies.txt -> TrackingCookie.Serving-sys : Cleaned.
:mozilla.209:H:\recover\seagate\Documents and Settings\ceek\Application Data\Mozilla\Firefox\Profiles\b1nymkrz.default\cookies.txt -> TrackingCookie.Serving-sys : Cleaned.
:mozilla.210:H:\recover\seagate\Documents and Settings\ceek\Application Data\Mozilla\Firefox\Profiles\b1nymkrz.default\cookies.txt -> TrackingCookie.Serving-sys : Cleaned.
:mozilla.255:C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\qev8uuhg.default\cookies.txt -> TrackingCookie.Serving-sys : Cleaned.
:mozilla.256:C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\qev8uuhg.default\cookies.txt -> TrackingCookie.Serving-sys : Cleaned.
:mozilla.257:C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\qev8uuhg.default\cookies.txt -> TrackingCookie.Serving-sys : Cleaned.
:mozilla.258:C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\qev8uuhg.default\cookies.txt -> TrackingCookie.Serving-sys : Cleaned.
:mozilla.259:C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\qev8uuhg.default\cookies.txt -> TrackingCookie.Serving-sys : Cleaned.
:mozilla.260:C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\qev8uuhg.default\cookies.txt -> TrackingCookie.Serving-sys : Cleaned.
:mozilla.874:C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\qev8uuhg.default\cookies.txt -> TrackingCookie.Smartadserver : Cleaned.
:mozilla.875:C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\qev8uuhg.default\cookies.txt -> TrackingCookie.Smartadserver : Cleaned.
:mozilla.876:C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\qev8uuhg.default\cookies.txt -> TrackingCookie.Smartadserver : Cleaned.
:mozilla.169:C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\qev8uuhg.default\cookies.txt -> TrackingCookie.Specificclick : Cleaned.
:mozilla.170:C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\qev8uuhg.default\cookies.txt -> TrackingCookie.Specificclick : Cleaned.
:mozilla.171:C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\qev8uuhg.default\cookies.txt -> TrackingCookie.Specificclick : Cleaned.
:mozilla.172:C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\qev8uuhg.default\cookies.txt -> TrackingCookie.Specificclick : Cleaned.
:mozilla.173:C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\qev8uuhg.default\cookies.txt -> TrackingCookie.Specificclick : Cleaned.
:mozilla.182:H:\recover\seagate\Documents and Settings\ceek\Application Data\Mozilla\Firefox\Profiles\b1nymkrz.default\cookies.txt -> TrackingCookie.Specificclick : Cleaned.
:mozilla.183:H:\recover\seagate\Documents and Settings\ceek\Application Data\Mozilla\Firefox\Profiles\b1nymkrz.default\cookies.txt -> TrackingCookie.Specificclick : Cleaned.
:mozilla.184:H:\recover\seagate\Documents and Settings\ceek\Application Data\Mozilla\Firefox\Profiles\b1nymkrz.default\cookies.txt -> TrackingCookie.Specificclick : Cleaned.
:mozilla.185:H:\recover\seagate\Documents and Settings\ceek\Application Data\Mozilla\Firefox\Profiles\b1nymkrz.default\cookies.txt -> TrackingCookie.Specificclick : Cleaned.
:mozilla.186:H:\recover\seagate\Documents and Settings\ceek\Application Data\Mozilla\Firefox\Profiles\b1nymkrz.default\cookies.txt -> TrackingCookie.Specificclick : Cleaned.
:mozilla.930:C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\qev8uuhg.default\cookies.txt -> TrackingCookie.Starware : Cleaned.
:mozilla.931:C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\qev8uuhg.default\cookies.txt -> TrackingCookie.Starware : Cleaned.
:mozilla.934:C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\qev8uuhg.default\cookies.txt -> TrackingCookie.Starware : Cleaned.
:mozilla.306:H:\recover\seagate\Documents and Settings\ceek\Application Data\Mozilla\Firefox\Profiles\b1nymkrz.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
:mozilla.33:C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\qev8uuhg.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
:mozilla.34:C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\qev8uuhg.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
:mozilla.35:C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\qev8uuhg.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
:mozilla.36:C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\qev8uuhg.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
:mozilla.37:C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\qev8uuhg.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
:mozilla.38:C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\qev8uuhg.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
:mozilla.155:H:\recover\seagate\Documents and Settings\ceek\Application Data\Mozilla\Firefox\Profiles\b1nymkrz.default\cookies.txt -> TrackingCookie.Tacoda : Cleaned.
:mozilla.164:H:\recover\seagate\Documents and Settings\ceek\Application Data\Mozilla\Firefox\Profiles\b1nymkrz.default\cookies.txt -> TrackingCookie.Tacoda : Cleaned.
:mozilla.165:H:\recover\seagate\Documents and Settings\ceek\Application Data\Mozilla\Firefox\Profiles\b1nymkrz.default\cookies.txt -> TrackingCookie.Tacoda : Cleaned.
:mozilla.484:H:\recover\seagate\Documents and Settings\ceek\Application Data\Mozilla\Firefox\Profiles\b1nymkrz.default\cookies.txt -> TrackingCookie.Tacoda : Cleaned.
:mozilla.50:C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\qev8uuhg.default\cookies.txt -> TrackingCookie.Tacoda : Cleaned.
:mozilla.51:C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\qev8uuhg.default\cookies.txt -> TrackingCookie.Tacoda : Cleaned.
:mozilla.52:C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\qev8uuhg.default\cookies.txt -> TrackingCookie.Tacoda : Cleaned.
:mozilla.53:C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\qev8uuhg.default\cookies.txt -> TrackingCookie.Tacoda : Cleaned.
:mozilla.844:C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\qev8uuhg.default\cookies.txt -> TrackingCookie.Tradedoubler : Cleaned.
:mozilla.161:H:\recover\seagate\Documents and Settings\ceek\Application Data\Mozilla\Firefox\Profiles\b1nymkrz.default\cookies.txt -> TrackingCookie.Trafficmp : Cleaned.
:mozilla.162:H:\recover\seagate\Documents and Settings\ceek\Application Data\Mozilla\Firefox\Profiles\b1nymkrz.default\cookies.txt -> TrackingCookie.Trafficmp : Cleaned.
:mozilla.163:H:\recover\seagate\Documents and Settings\ceek\Application Data\Mozilla\Firefox\Profiles\b1nymkrz.default\cookies.txt -> TrackingCookie.Trafficmp : Cleaned.
:mozilla.207:C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\qev8uuhg.default\cookies.txt -> TrackingCookie.Trafficmp : Cleaned.
:mozilla.208:C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\qev8uuhg.default\cookies.txt -> TrackingCookie.Trafficmp : Cleaned.
:mozilla.209:C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\qev8uuhg.default\cookies.txt -> TrackingCookie.Trafficmp : Cleaned.
:mozilla.210:C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\qev8uuhg.default\cookies.txt -> TrackingCookie.Trafficmp : Cleaned.
:mozilla.211:C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\qev8uuhg.default\cookies.txt -> TrackingCookie.Trafficmp : Cleaned.
:mozilla.212:C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\qev8uuhg.default\cookies.txt -> TrackingCookie.Trafficmp : Cleaned.
:mozilla.213:C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\qev8uuhg.default\cookies.txt -> TrackingCookie.Trafficmp : Cleaned.
:mozilla.214:C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\qev8uuhg.default\cookies.txt -> TrackingCookie.Trafficmp : Cleaned.
:mozilla.215:C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\qev8uuhg.default\cookies.txt -> TrackingCookie.Trafficmp : Cleaned.
:mozilla.102:C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\qev8uuhg.default\cookies.txt -> TrackingCookie.Trafic : Cleaned.
:mozilla.24:H:\recover\seagate\Documents and Settings\ceek\Application Data\Mozilla\Firefox\Profiles\b1nymkrz.default\cookies.txt -> TrackingCookie.Tribalfusion : Cleaned.
:mozilla.25:H:\recover\seagate\Documents and Settings\ceek\Application Data\Mozilla\Firefox\Profiles\b1nymkrz.default\cookies.txt -> TrackingCookie.Tribalfusion : Cleaned.
:mozilla.26:H:\recover\seagate\Documents and Settings\ceek\Application Data\Mozilla\Firefox\Profiles\b1nymkrz.default\cookies.txt -> TrackingCookie.Tribalfusion : Cleaned.
:mozilla.27:H:\recover\seagate\Documents and Settings\ceek\Application Data\Mozilla\Firefox\Profiles\b1nymkrz.default\cookies.txt -> TrackingCookie.Tribalfusion : Cleaned.
:mozilla.30:H:\recover\seagate\Documents and Settings\ceek\Application Data\Mozilla\Firefox\Profiles\b1nymkrz.default\cookies.txt -> TrackingCookie.Tribalfusion : Cleaned.
:mozilla.31:H:\recover\seagate\Documents and Settings\ceek\Application Data\Mozilla\Firefox\Profiles\b1nymkrz.default\cookies.txt -> TrackingCookie.Tribalfusion : Cleaned.
:mozilla.32:H:\recover\seagate\Documents and Settings\ceek\Application Data\Mozilla\Firefox\Profiles\b1nymkrz.default\cookies.txt -> TrackingCookie.Tribalfusion : Cleaned.
:mozilla.33:H:\recover\seagate\Documents and Settings\ceek\Application Data\Mozilla\Firefox\Profiles\b1nymkrz.default\cookies.txt -> TrackingCookie.Tribalfusion : Cleaned.
:mozilla.34:H:\recover\seagate\Documents and Settings\ceek\Application Data\Mozilla\Firefox\Profiles\b1nymkrz.default\cookies.txt -> TrackingCookie.Tribalfusion : Cleaned.
:mozilla.48:C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\qev8uuhg.default\cookies.txt -> TrackingCookie.Tribalfusion : Cleaned.
:mozilla.49:C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\qev8uuhg.default\cookies.txt -> TrackingCookie.Tribalfusion : Cleaned.
:mozilla.60:C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\qev8uuhg.default\cookies.txt -> TrackingCookie.Tribalfusion : Cleaned.
:mozilla.61:C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\qev8uuhg.default\cookies.txt -> TrackingCookie.Tribalfusion : Cleaned.
:mozilla.62:C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\qev8uuhg.default\cookies.txt -> TrackingCookie.Tribalfusion : Cleaned.
:mozilla.63:C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\qev8uuhg.default\cookies.txt -> TrackingCookie.Tribalfusion : Cleaned.
:mozilla.64:C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\qev8uuhg.default\cookies.txt -> TrackingCookie.Tribalfusion : Cleaned.
:mozilla.65:C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\qev8uuhg.default\cookies.txt -> TrackingCookie.Tribalfusion : Cleaned.
:mozilla.66:C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\qev8uuhg.default\cookies.txt -> TrackingCookie.Tribalfusion : Cleaned.
:mozilla.67:C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\qev8uuhg.default\cookies.txt -> TrackingCookie.Tribalfusion : Cleaned.
:mozilla.342:H:\recover\seagate\Documents and Settings\ceek\Application Data\Mozilla\Firefox\Profiles\b1nymkrz.default\cookies.txt -> TrackingCookie.Valueclick : Cleaned.
:mozilla.343:H:\recover\seagate\Documents and Settings\ceek\Application Data\Mozilla\Firefox\Profiles\b1nymkrz.default\cookies.txt -> TrackingCookie.Valueclick : Cleaned.
:mozilla.842:C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\qev8uuhg.default\cookies.txt -> TrackingCookie.Web-stat : Cleaned.
:mozilla.843:C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\qev8uuhg.default\cookies.txt -> TrackingCookie.Web-stat : Cleaned.
:mozilla.273:H:\recover\seagate\Documents and Settings\ceek\Application Data\Mozilla\Firefox\Profiles\b1nymkrz.default\cookies.txt -> TrackingCookie.Webtrendslive : Cleaned.
:mozilla.331:C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\qev8uuhg.default\cookies.txt -> TrackingCookie.Webtrendslive : Cleaned.
:mozilla.474:H:\recover\seagate\Documents and Settings\ceek\Application
Data\Mozilla\Firefox\Profiles\b1nymkrz.default\cookies.txt -> TrackingCookie.Webtrendslive : Cleaned.
:mozilla.166:H:\recover\seagate\Documents and Settings\ceek\Application Data\Mozilla\Firefox\Profiles\b1nymkrz.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.167:H:\recover\seagate\Documents and Settings\ceek\Application Data\Mozilla\Firefox\Profiles\b1nymkrz.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.168:H:\recover\seagate\Documents and Settings\ceek\Application Data\Mozilla\Firefox\Profiles\b1nymkrz.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.169:H:\recover\seagate\Documents and Settings\ceek\Application Data\Mozilla\Firefox\Profiles\b1nymkrz.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.170:H:\recover\seagate\Documents and Settings\ceek\Application Data\Mozilla\Firefox\Profiles\b1nymkrz.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.434:C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\qev8uuhg.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.435:C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\qev8uuhg.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.436:C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\qev8uuhg.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned.
H:\recover\seagate\Documents and Settings\ceek\Cookies\ceek@ad.yieldmanager[1].txt -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.135:C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\qev8uuhg.default\cookies.txt -> TrackingCookie.Zedo : Cleaned.
:mozilla.136:C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\qev8uuhg.default\cookies.txt -> TrackingCookie.Zedo : Cleaned.
:mozilla.137:C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\qev8uuhg.default\cookies.txt -> TrackingCookie.Zedo : Cleaned.
:mozilla.187:H:\recover\seagate\Documents and Settings\ceek\Application Data\Mozilla\Firefox\Profiles\b1nymkrz.default\cookies.txt -> TrackingCookie.Zedo : Cleaned.
:mozilla.188:H:\recover\seagate\Documents and Settings\ceek\Application Data\Mozilla\Firefox\Profiles\b1nymkrz.default\cookies.txt -> TrackingCookie.Zedo : Cleaned.
:mozilla.189:H:\recover\seagate\Documents and Settings\ceek\Application Data\Mozilla\Firefox\Profiles\b1nymkrz.default\cookies.txt -> TrackingCookie.Zedo : Cleaned.
H:\recover\seagate\Documents and Settings\ceek\Cookies\ceek@zedo[1].txt -> TrackingCookie.Zedo : Cleaned.


::Report end
cybertech's Avatar
Computer Specs
Moderator with 68,814 posts.
  
Join Date: Apr 2002
Location: Washington State
08-Dec-2006, 05:24 PM #5
You're welcome!


Please post your hijackthis log again.
pandyz's Avatar
Computer Specs
Junior Member with 5 posts.
  
Join Date: Dec 2006
Location: San Jose, CA
Experience: Beginner
08-Dec-2006, 06:00 PM #6
Thanks again!!!!

Here's the latest hijackthis log:

Logfile of HijackThis v1.99.1
Scan saved at 2:56:18 PM, on 12/8/2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\SYSTEM32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\SYSTEM32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Intel\IDU\iptray.exe
C:\Program Files\Intel\IDU\awtray.exe
C:\Program Files\FarStone\RestoreIT\RestoreIT_XP\VBPTASK.EXE
C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
C:\Program Files\Canon\Memory Card Utility\iP6600D\PDUiP6600DMon.exe
C:\Program Files\Java\jre1.5.0_09\bin\jusched.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\Program Files\McAfee.com\VSO\mcvsshld.exe
C:\PROGRA~1\mcafee.com\agent\mcagent.exe
C:\Program Files\McAfee.com\VSO\oasclnt.exe
C:\PROGRA~1\mcafee.com\vso\mcvsescn.exe
C:\Program Files\ATI Multimedia\main\ATIDtct.EXE
C:\Program Files\ATI Technologies\ATI.ACE\CLI.exe
C:\WINDOWS\system32\rundll32.exe
C:\Program Files\Adobe\Photoshop Elements 4.0\PhotoshopElementsFileAgent.exe
C:\Program Files\Executive Software\Diskeeper\DkService.exe
c:\program files\mcafee.com\agent\mcdetect.exe
c:\PROGRA~1\mcafee.com\vso\mcshield.exe
c:\PROGRA~1\mcafee.com\agent\mctskshd.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Canon\CAL\CALMAIN.exe
C:\Program Files\Intel\IDU\IDUServ.exe
C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe
C:\Program Files\MSN Messenger\msnmsgr.exe
c:\progra~1\mcafee.com\vso\mcvsftsn.exe
C:\Program Files\Messenger\msmsgs.exe
C:\hijack\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = https://login.live.com/ppsecure/md5auth.srf?lc=1033
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_09\bin\ssv.dll
O3 - Toolbar: Easy-WebPrint - {327C2873-E90D-4c37-AA9D-10AC9BABA46C} - C:\Program Files\Canon\Easy-WebPrint\Toolband.dll
O3 - Toolbar: McAfee VirusScan - {BA52B914-B692-46c4-B683-905236F6F655} - c:\progra~1\mcafee.com\vso\mcvsshl.dll
O4 - HKLM\..\Run: [igfxtray] C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [igfxhkcmd] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [igfxpers] C:\WINDOWS\system32\igfxpers.exe
O4 - HKLM\..\Run: [SigmatelSysTrayApp] sttray.exe
O4 - HKLM\..\Run: [IntelAudioStudio] "C:\Program Files\Intel Audio Studio\IntelAudioStudio.exe" BOOT
O4 - HKLM\..\Run: [ipTray.exe] "C:\Program Files\Intel\IDU\iptray.exe"
O4 - HKLM\..\Run: [awTray.exe] "C:\Program Files\Intel\IDU\awtray.exe"
O4 - HKLM\..\Run: [DiskeeperSystray] "C:\Program Files\Executive Software\Diskeeper\DkIcon.exe"
O4 - HKLM\..\Run: [RestoreIT!] "C:\Program Files\FarStone\RestoreIT\RestoreIT_XP\VBPTASK.EXE" VBStart
O4 - HKLM\..\Run: [StorageGuard] "C:\Program Files\Common Files\Sonic\Update Manager\sgtray.exe" /r
O4 - HKLM\..\Run: [ATIPTA] "C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe"
O4 - HKLM\..\Run: [ATICCC] "C:\Program Files\ATI Technologies\ATI.ACE\cli.exe" runtime
O4 - HKLM\..\Run: [PinnacleDriverCheck] C:\WINDOWS\system32\PSDrvCheck.exe -CheckReg
O4 - HKLM\..\Run: [PDUiP6600DMon] C:\Program Files\Canon\Memory Card Utility\iP6600D\PDUiP6600DMon.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [Adobe Photo Downloader] "C:\Program Files\Adobe\Photoshop Elements 4.0\apdproxy.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.5.0_09\bin\jusched.exe"
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [VSOCheckTask] "C:\PROGRA~1\McAfee.com\VSO\mcmnhdlr.exe" /checktask
O4 - HKLM\..\Run: [VirusScan Online] C:\Program Files\McAfee.com\VSO\mcvsshld.exe
O4 - HKLM\..\Run: [MCAgentExe] c:\PROGRA~1\mcafee.com\agent\mcagent.exe
O4 - HKLM\..\Run: [MCUpdateExe] C:\PROGRA~1\mcafee.com\agent\mcupdate.exe
O4 - HKLM\..\Run: [OASClnt] C:\Program Files\McAfee.com\VSO\oasclnt.exe
O4 - HKCU\..\Run: [ATI Launchpad] "C:\Program Files\ATI Multimedia\main\LaunchPd.exe"
O4 - HKCU\..\Run: [ATI DeviceDetect] C:\Program Files\ATI Multimedia\main\ATIDtct.EXE
O4 - HKCU\..\Run: [ATI Remote Control] C:\Program Files\ATI Multimedia\RemCtrl\ATIRW.exe
O4 - Global Startup: ATI CATALYST System Tray.lnk = C:\Program Files\ATI Technologies\ATI.ACE\CLI.exe
O8 - Extra context menu item: Easy-WebPrint Add To Print List - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_AddToList.html
O8 - Extra context menu item: Easy-WebPrint High Speed Print - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_HSPrint.html
O8 - Extra context menu item: Easy-WebPrint Preview - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_Preview.html
O8 - Extra context menu item: Easy-WebPrint Print - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_Print.html
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_09\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_09\bin\ssv.dll
O9 - Extra button: ATI TV - {44226DFF-747E-4edc-B30C-78752E50CD0C} - C:\Program Files\ATI Multimedia\dtv\EXPLBAR.DLL
O9 - Extra button: Yahoo! Messenger - {E5D12C4E-7B4F-11D3-B5C9-0050045C3C96} - C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe
O9 - Extra 'Tools' menuitem: Yahoo! Messenger - {E5D12C4E-7B4F-11D3-B5C9-0050045C3C96} - C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O12 - Plugin for .spop: C:\Program Files\Internet Explorer\Plugins\NPDocBox.dll
O16 - DPF: {2BC66F54-93A8-11D3-BEB6-00105AA9B6AE} (Symantec AntiVirus scanner) - http://security.symantec.com/sscv6/S...in/AvSniff.cab
O16 - DPF: {4ED9DDF0-7479-4BBE-9335-5A1EDB1D8A21} (McAfee.com Operating System Class) - http://download.mcafee.com/molbin/sh...1/mcinsctl.cab
O16 - DPF: {5ED80217-570B-4DA9-BF44-BE107C0EC166} (Windows Live Safety Center Base Module) - http://cdn.scan.safety.live.com/reso...scbase8460.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsu...?1149123160437
O16 - DPF: {644E432F-49D3-41A1-8DD5-E099162EEEC5} (Symantec RuFSI Utility Class) - http://security.symantec.com/sscv6/S.../bin/cabsa.cab
O16 - DPF: {BCC0FF27-31D9-4614-A68E-C18E1ADA4389} (DwnldGroupMgr Class) - http://download.mcafee.com/molbin/sh...26/mcgdmgr.cab
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)
O20 - Winlogon Notify: igfxcui - C:\WINDOWS\SYSTEM32\igfxdev.dll
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O23 - Service: Adobe Active File Monitor V4 (AdobeActiveFileMonitor4.0) - Unknown owner - C:\Program Files\Adobe\Photoshop Elements 4.0\PhotoshopElementsFileAgent.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: AVG Anti-Spyware Guard - Anti-Malware Development a.s. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: Canon Camera Access Library 8 (CCALib8) - Canon Inc. - C:\Program Files\Canon\CAL\CALMAIN.exe
O23 - Service: Diskeeper - Executive Software International, Inc. - C:\Program Files\Executive Software\Diskeeper\DkService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Intel(R) Desktop Utilities Service (iHCService) - OSA Technologies, Inc. - C:\Program Files\Intel\IDU\IDUServ.exe
O23 - Service: McAfee WSC Integration (McDetect.exe) - McAfee, Inc - c:\program files\mcafee.com\agent\mcdetect.exe
O23 - Service: McAfee.com McShield (McShield) - McAfee Inc. - c:\PROGRA~1\mcafee.com\vso\mcshield.exe
O23 - Service: McAfee Task Scheduler (McTskshd.exe) - McAfee, Inc - c:\PROGRA~1\mcafee.com\agent\mctskshd.exe
O23 - Service: McAfee SecurityCenter Update Manager (mcupdmgr.exe) - McAfee, Inc - C:\PROGRA~1\McAfee.com\Agent\mcupdmgr.exe
cybertech's Avatar
Computer Specs
Moderator with 68,814 posts.
  
Join Date: Apr 2002
Location: Washington State
08-Dec-2006, 06:16 PM #7
That one looks fine.

Are you getting help with the 2nd one or is that log in this thread too?

If so I would want to see a new HJT log from that one.
pandyz's Avatar
Computer Specs
Junior Member with 5 posts.
  
Join Date: Dec 2006
Location: San Jose, CA
Experience: Beginner
08-Dec-2006, 06:48 PM #8
Second Computer
Hello and thank you again.

The second computer was infected with Winfix (I believe it's called...a popup would open every time I opened IE, and I couldn't get rid of it...so I stopped opening IE and switched to Foxfire), and then it was infected with VirtuMonde (sp?). I scrubbed it last weekend using the various instructions I found here on techguy.org.

Here's the latest hijackthis log for computer #2:

Logfile of HijackThis v1.99.1
Scan saved at 3:37:25 PM, on 12/8/2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Windows Defender\MsMpEng.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe
C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe
C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe
C:\Program Files\Common Files\Microsoft Shared\VS7Debug\mdm.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Intel\Intel(R) Active Monitor\imonnt.exe
C:\Program Files\Hijackthis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.boulter.com/scrabble/
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [Yahoo! Pager] "C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe" -quiet
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background
O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) - http://acs.pandasoftware.com/actives...ree/asinst.cab
O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe
O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Intel(R) Active Monitor (imonNT) - Intel Corp. - C:\Program Files\Intel\Intel(R) Active Monitor\imonnt.exe
O23 - Service: McAfee SecurityCenter Update Manager (mcupdmgr.exe) - Unknown owner - C:\PROGRA~1\McAfee.com\Agent\mcupdmgr.exe (file missing)
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: SoundMAX Agent Service (SoundMAX Agent Service (default)) - Analog Devices, Inc. - C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
cybertech's Avatar
Computer Specs
Moderator with 68,814 posts.
  
Join Date: Apr 2002
Location: Washington State
08-Dec-2006, 06:52 PM #9
That one *looks* ok too.

Are you having any problems?

If not do this on both:

Flush your System Restore:
  • On the Desktop, right-click My Computer.
  • Click Properties.
  • Click the System Restore tab.
  • Check Turn off System Restore.
  • Click Apply, and then click OK.
  • Restart the computer.

To create a new restore point & Create a restore point:
  • Start go to All Programs
  • Accessories, System Tools and select System Restore.
  • In the System Restore wizard, select "Create a restore point" and click the Next button.
  • Type a description for your new restore point. Something like "After trojan/spyware cleanup".
  • Click Create and you're done.
__________________
Microsoft MVP/Windows - Consumer Security
Closed Thread Bookmark and Share   techguy.org/524105

THIS THREAD HAS EXPIRED.
Are you having the same problem? We have volunteers ready to answer your question, but first you'll have to join for free. Need help getting started? Check out our Welcome Guide.

Smart Search

Find your solution!


« Previous Thread | Malware Removal & HijackThis Logs | Next Thread »

Currently Active Users Viewing This Thread: 1 (0 members and 1 guests)
 
WELCOME TO TECH SUPPORT GUY! Are you looking for the solution to your computer problem? Join our site today to ask your question -- for free! Our site is run completely by volunteers who want to help you solve your computer problems. See our Welcome Guide to get started.

Thread Tools


Twitter Twitter! | Podcast | Mobile | Advertise
Contact Us - HelpOnThe.Net - Archive - Terms of Service - Top
You Are Using:
Server ID
Advertisements do not imply our endorsement of that product or service.
All times are GMT -5. The time now is 02:15 PM.
Copyright © 1996 - 2010 TechGuy, Inc. All rights reserved.
Powered by vBulletin, Copyright © 2000 - 2010, Jelsoft Enterprises Ltd.
 Powered by Cermak Technologies, Inc.