1. Computer problem? Tech Support Guy is completely free -- paid for by advertisers and donations. Click here to join today! If you're new to Tech Support Guy, we highly recommend that you visit our Guide for New Members.

Need Help Spybot found these

Discussion in 'Virus & Other Malware Removal' started by horrorofdeb, Jul 19, 2006.

Thread Status:
Not open for further replies.
Advertisement
  1. horrorofdeb

    horrorofdeb Thread Starter

    Joined:
    Oct 16, 2002
    Messages:
    567
    vcodec.emedia
    smithfraud-c
    vcodec
    subseven
    zlob.downloader
    adviva
    casale.media
    dkandsuns fake security toolbar

    Logfile of HijackThis v1.99.1
    Scan saved at 1:38:47 PM, on 7/19/2006
    Platform: Windows XP SP2 (WinNT 5.01.2600)
    MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

    Running processes:
    C:\WINDOWS\System32\smss.exe
    C:\WINDOWS\system32\winlogon.exe
    C:\WINDOWS\system32\services.exe
    C:\WINDOWS\system32\lsass.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\System32\svchost.exe
    C:\WINDOWS\system32\LEXBCES.EXE
    C:\WINDOWS\system32\LEXPPS.EXE
    C:\WINDOWS\system32\spoolsv.exe
    C:\Program Files\CA\eTrust Internet Security Suite\eTrust EZ Antivirus\ISafe.exe
    C:\Program Files\ewido anti-malware\ewidoctrl.exe
    C:\Program Files\Softex\OmniPass\Omniserv.exe
    C:\Program Files\Prevx1\PXAgent.exe
    C:\WINDOWS\System32\svchost.exe
    C:\WINDOWS\system32\ZoneLabs\vsmon.exe
    C:\Program Files\CA\eTrust Internet Security Suite\eTrust EZ Antivirus\VetMsg.exe
    C:\Program Files\Softex\OmniPass\OPXPApp.exe
    C:\WINDOWS\Explorer.EXE
    C:\WINDOWS\System32\svchost.exe
    C:\Program Files\Internet Explorer\iexplore.exe
    C:\WINDOWS\system32\ctfmon.exe
    C:\Program Files\Hijackthis\HijackThis.exe

    R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://frontier.myway.com/
    R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = :
    O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx
    O2 - BHO: EffBarBHO - {15E38167-B065-4BB5-B987-9F04B1E85AEA} - C:\Program Files\EngageSidebar\EffBar.dll
    O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
    O2 - BHO: Malicious Scripts Scanner - {55EA1964-F5E4-4D6A-B9B2-125B37655FCB} - C:\Documents and Settings\All Users\Application Data\Prevx\pxbho.dll
    O2 - BHO: Seekmo Search Assistant Helper /fleok=1D8A83A5C7E3137A9EA475760EA83FA5EF80752B94E3D87B5978462F36C0 - {5929CD6E-2062-44a4-B2C5-2C7E78FBAB38} - c:\program files\seekmo\seekmohook.dll (file missing)
    O2 - BHO: Yahoo! IE Services Button - {5BAB4B5B-68BC-4B02-94D6-2FC0DE4A7897} - C:\Program Files\Yahoo!\Common\yiesrvc.dll
    O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
    O2 - BHO: System Process - {C2EEB4FA-B6D6-41b9-9CFA-ABA87F862BCB} - (no file)
    O2 - BHO: (no name) - {f7d40011-29bb-43eb-9c97-875ce89e9e36} - (no file)
    O4 - HKCU\..\Run: [PSwitch] C:\Program Files\Proxy Switcher Standard\ProxySwitcher.exe
    O4 - HKCU\..\Run: [AIM] C:\Program Files\AIM\aim.exe -cnetwait.odl
    O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
    O4 - Startup: Adobe Gamma Loader.exe
    O8 - Extra context menu item: &Translate English Word - res://c:\program files\google\GoogleToolbar1.dll/cmwordtrans.html
    O8 - Extra context menu item: Backward Links - res://c:\program files\google\GoogleToolbar1.dll/cmbacklinks.html
    O8 - Extra context menu item: Cached Snapshot of Page - res://c:\program files\google\GoogleToolbar1.dll/cmcache.html
    O8 - Extra context menu item: Similar Pages - res://c:\program files\google\GoogleToolbar1.dll/cmsimilar.html
    O8 - Extra context menu item: Translate Page into English - res://c:\program files\google\GoogleToolbar1.dll/cmtrans.html
    O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
    O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
    O9 - Extra button: Yahoo! Services - {5BAB4B5B-68BC-4B02-94D6-2FC0DE4A7897} - C:\Program Files\Yahoo!\Common\yiesrvc.dll
    O9 - Extra button: AIM - {AC9E2541-2814-11d5-BC6D-00B0D0A1DE45} - C:\Program Files\AIM\aim.exe
    O9 - Extra button: PartyPoker.com - {B7FE5D70-9AA2-40F1-9C6B-12A255F085E1} - C:\Program Files\PartyGaming\PartyPoker\RunApp.exe
    O9 - Extra 'Tools' menuitem: PartyPoker.com - {B7FE5D70-9AA2-40F1-9C6B-12A255F085E1} - C:\Program Files\PartyGaming\PartyPoker\RunApp.exe
    O9 - Extra button: Run IMVU - {d9288080-1baa-4bc4-9cf8-a92d743db949} - C:\Documents and Settings\Jeremy\Start Menu\Programs\>eTrust Internet Security Suite\IMVU\Run IMVU.lnk (file missing)
    O9 - Extra button: Bodog Poker - {F47C1DB5-ED21-4dc1-853E-D1495792D4C5} - C:\Program Files\Bodog Poker\GameClient.exe (file missing)
    O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
    O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
    O12 - Plugin for .spop: C:\Program Files\Internet Explorer\Plugins\NPDocBox.dll
    O16 - DPF: Aces Up! by pogo - http://game1.pogo.com/applet-6.5.0.45/aces/aces-ob-assets.cab
    O16 - DPF: Ali Baba Slots TM by pogo - http://game1.pogo.com/applet-6.5.1.31/slots/alibaba-en_US.cab
    O16 - DPF: Backgammon by pogo - http://game1.pogo.com/applet-6.4.4.34/backgammon/backgammon-ob-assets.cab
    O16 - DPF: Battle Phlinx by pogo - http://game1.pogo.com/applet-6.5.0.45/battlephlinx/battlephlinx-ob-assets.cab
    O16 - DPF: Blackjack by pogo - http://game1.pogo.com/applet-6.5.0.45/blackjack/blackjack-ob-assets.cab
    O16 - DPF: Bridge by pogo - http://game1.pogo.com/applet-6.4.4.34/bridge/bridge-ob-assets.cab
    O16 - DPF: Buckaroo Blackjack TM by pogo - http://game1.pogo.com/applet-6.5.0.45/videoblackjack/videoblackjack-ob-assets.cab
    O16 - DPF: Canasta by pogo - http://game1.pogo.com/applet-6.6.1.29/canasta/canasta-en_US.cab
    O16 - DPF: Checkers by pogo - http://game1.pogo.com/applet-6.4.4.34/checkers2/checkers-ob-assets.cab
    O16 - DPF: Chess by pogo - http://game1.pogo.com/applet-6.5.0.45/chess2/chess2-ob-assets.cab
    O16 - DPF: Cribbage by pogo - http://game1.pogo.com/applet-6.4.4.34/cribbage/cribbage-ob-assets.cab
    O16 - DPF: Dice Derby by pogo - http://game1.pogo.com/applet-6.4.4.34/checkeredflag/checkeredflag-ob-assets.cab
    O16 - DPF: Euchre by pogo - http://game1.pogo.com/applet-6.5.1.31/euchre/euchre-en_US.cab
    O16 - DPF: Fortune Bingo by pogo - http://game1.pogo.com/applet-6.5.1.31/superbingo/superbingo-en_US.cab
    O16 - DPF: Greenback Bayou by pogo - http://game1.pogo.com/applet-6.4.4.34/greenback/greenback-ob-assets.cab
    O16 - DPF: Harvest Mania by pogo - http://game1.pogo.com/applet-6.4.4.34/harvest/harvest-ob-assets.cab
    O16 - DPF: Jigsaw Detective by pogo - http://game1.pogo.com/applet-6.5.1.24/jigsaw/jigsaw-en_US.cab
    O16 - DPF: Jokers Wild Poker by pogo - http://game1.pogo.com/applet-6.5.1.31/videopoker2/jokerswild-en_US.cab
    O16 - DPF: Jungle Gin by pogo - http://game1.pogo.com/applet-6.5.1.24/gin/gin-en_US.cab
    O16 - DPF: Lottso by pogo - http://game1.pogo.com/applet-6.5.1.24/lottso/lottso-en_US.cab
    O16 - DPF: Mah Jong Garden by pogo - http://game1.pogo.com/applet-6.6.0.34/mahjong/mahjong-en_US.cab
    O16 - DPF: Pai Gow by pogo - http://game1.pogo.com/applet-6.4.4.34/paigow/paigow-ob-assets.cab
    O16 - DPF: Payday FreeCell by pogo - http://game1.pogo.com/applet-6.5.0.45/freecell/freecell-ob-assets.cab
    O16 - DPF: Penguin Blocks by pogo - http://game1.pogo.com/applet-6.6.0.34/penguins/penguins-en_US.cab
    O16 - DPF: Phlinx by pogo - http://game1.pogo.com/applet-6.4.4.34/flinger/flinger-ob-assets.cab
    O16 - DPF: Pop Fu by pogo - http://game1.pogo.com/applet-6.5.1.31/popfu/popfu-en_US.cab
    O16 - DPF: Poppit by pogo - http://game1.pogo.com/applet-6.6.0.34/poppit2/poppit2-en_US.cab
    O16 - DPF: Quick Quack by pogo - http://game1.pogo.com/applet-6.5.1.24/hotstreak/hotstreak-en_US.cab
    O16 - DPF: QWERTY by pogo - http://game1.pogo.com/applet-6.5.1.31/squares/squares-en_US.cab
    O16 - DPF: Ride The Tide by pogo - http://game1.pogo.com/applet-6.6.0.34/ride/ride-en_US.cab
    O16 - DPF: SciFi Slots by pogo - http://game1.pogo.com/applet-6.5.1.31/slots/scifi-en_US.cab
    O16 - DPF: Showbiz Slots 2 by pogo - http://game1.pogo.com/applet-6.6.1.29/slots/showbiz2-en_US.cab
    O16 - DPF: Shuffle Bump by pogo - http://game1.pogo.com/applet-6.6.1.29/puck/puck-en_US.cab
    O16 - DPF: Spades 2 by pogo - http://game1.pogo.com/applet-6.6.0.34/spades2/spades2-en_US.cab
    O16 - DPF: Spades by pogo - http://game1.pogo.com/applet-6.4.4.34/spades/spades-ob-assets.cab
    O16 - DPF: Spider Solitaire by pogo - http://game1.pogo.com/applet-6.4.4.34/spider/spider-ob-assets.cab
    O16 - DPF: Squelchies by pogo - http://game1.pogo.com/applet-6.5.1.24/squelchies/squelchies-en_US.cab
    O16 - DPF: Stax by pogo - http://game1.pogo.com/applet-6.5.1.24/stax/stax-en_US.cab
    O16 - DPF: Stellar Sweeper by pogo - http://game1.pogo.com/applet-6.5.0.45/sweeper/sweeper-ob-assets.cab
    O16 - DPF: Sweet Tooth TM by pogo - http://game1.pogo.com/applet-6.5.1.31/sweettooth/sweettooth-en_US.cab
    O16 - DPF: Texas Hold'em Poker by pogo - http://game1.pogo.com/applet-6.5.1.24/holdem/holdem-en_US.cab
    O16 - DPF: Tri-Peaks by pogo - http://game1.pogo.com/applet-6.5.1.24/peaks/peaks-en_US.cab
    O16 - DPF: Wonderland Memories by pogo - http://game1.pogo.com/applet-6.6.0.34/memories/memories-en_US.cab
    O16 - DPF: Word Whomp by pogo - http://game1.pogo.com/applet-6.6.1.29/wordwhomp2/whomp2-en_US.cab
    O16 - DPF: Word Whomp Whackdown by pogo - http://game1.pogo.com/applet-6.6.0.34/whackdown/whackdown-en_US.cab
    O16 - DPF: WordJong by pogo - http://game1.pogo.com/applet-6.4.4.34/wordjong/wordjong-ob-assets.cab
    O16 - DPF: World Class Solitaire by pogo - http://game1.pogo.com/applet-6.5.1.24/worldclass/worldclass-en_US.cab
    O16 - DPF: Yahoo! Literati - http://download.games.yahoo.com/games/clients/y/tt4_x.cab
    O16 - DPF: Yahoo! Spades - http://download.games.yahoo.com/games/clients/y/st2_x.cab
    O16 - DPF: {0E5F0222-96B9-11D3-8997-00104BD12D94} (PCPitstop Utility) - http://www.pcpitstop.com/pcpitstop/PCPitStop.CAB
    O16 - DPF: {13EC55CF-D993-475B-9ACA-F4A384957956} (Controller Class) - https://www.windowsonecare.com/install/cli/0.8.0794.48/WinSSWebAgent.CAB
    O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204
    O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:\Program Files\Yahoo!\Common\yinsthelper.dll
    O16 - DPF: {58172624-85DD-4482-9E64-02ADCA637E96} (shizmoo Class) - http://kungfuchess.com/activex/web665.cab
    O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1135828122718
    O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1147408409156
    O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
    O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) - http://acs.pandasoftware.com/activescan/as5free/asinst.cab
    O16 - DPF: {A922B6AB-3B87-11D3-B3C2-0008C7DA6CB9} (InetDownload Class) - https://media.pineconeresearch.com/ActiveX/downloadcontrol.cab
    O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/MsnMessengerSetupDownloader.cab
    O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (ZoneIntro Class) - http://cdn2.zone.msn.com/binFramework/v10/ZIntro.cab34246.cab
    O16 - DPF: {DC75FEF6-165D-4D25-A518-C8C4BDA7BAA6} (CPlayFirstDinerDashControl Object) - http://www.playfirst.com/play/game/dinerdash/dinerdash.cab
    O16 - DPF: {DF780F87-FF2B-4DF8-92D0-73DB16A1543A} (PopCapLoader Object) - http://www.popcap.com/games/popcaploader_v6.cab
    O16 - DPF: {E5D419D6-A846-4514-9FAD-97E826C84822} (HeartbeatCtl Class) - http://fdl.msn.com/zone/datafiles/heartbeat.cab
    O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)
    O20 - Winlogon Notify: igfxcui - C:\WINDOWS\SYSTEM32\igfxsrvc.dll
    O20 - Winlogon Notify: OPXPGina - C:\Program Files\Softex\OmniPass\opxpgina.dll
    O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
    O20 - Winlogon Notify: WRNotifier - WRLogonNTF.dll (file missing)
    O21 - SSODL: cholecyst - {ee2975b6-e8d5-405e-8448-8fe9590f6cfb} - C:\WINDOWS\system32\mzoeut.dll (file missing)
    O23 - Service: CAISafe - Computer Associates International, Inc. - C:\Program Files\CA\eTrust Internet Security Suite\eTrust EZ Antivirus\ISafe.exe
    O23 - Service: ewido security suite control - ewido networks - C:\Program Files\ewido anti-malware\ewidoctrl.exe
    O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
    O23 - Service: LexBce Server (LexBceS) - Lexmark International, Inc. - C:\WINDOWS\system32\LEXBCES.EXE
    O23 - Service: Softex OmniPass Service (omniserv) - Unknown owner - C:\Program Files\Softex\OmniPass\Omniserv.exe
    O23 - Service: Prevx Agent (PREVXAgent) - Unknown owner - C:\Program Files\Prevx1\PXAgent.exe" -f (file missing)
    O23 - Service: VET Message Service (VETMSGNT) - Computer Associates International, Inc. - C:\Program Files\CA\eTrust Internet Security Suite\eTrust EZ Antivirus\VetMsg.exe
    O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs Inc. - C:\WINDOWS\system32\ZoneLabs\vsmon.exe
     
  2. MFDnNC

    MFDnNC

    Joined:
    Sep 7, 2004
    Messages:
    49,014
    Please download SmitfraudFix (by S!Ri)
    Extract the content (a folder named SmitfraudFix) to your Desktop.

    Open the SmitfraudFix folder and double-click smitfraudfix.cmd
    Select option #1 - Search by typing 1 and press "Enter"; a text file will appear, which lists infected files (if present). We’ll get them next step.
    Please copy/paste the content of that report into your next reply.

    Note : process.exe is detected by some antivirus programs (AntiVir, Dr.Web, Kaspersky) as a "RiskTool"; it is not a virus, but a program used to stop system processes. Antivirus programs cannot distinguish between "good" and "malicious" use of such programs, therefore they may alert the user.
    http://www.beyondlogic.org/consulting/proc...processutil.htm
    =========================

    You have an old version of Ewido

    Download the trial version of Ewido Security Suite 4.0 http://www.ewido.net/en/download/ (W2K/XP Only)
    · Install ewido.
    · Run the application
    · Click on scanner
    · Click Complete System Scan and the scan will begin.
    · When the scan is finished, Set all items to delete
    · Apply all actions
    · look at the bottom of the screen and click the Save report button.
    · Save the report to your C: Drive
    This will take some time to run!
    RE-Boot
    Post that log and a new HiJack log
     
  3. horrorofdeb

    horrorofdeb Thread Starter

    Joined:
    Oct 16, 2002
    Messages:
    567
    SmitFraudFix v2.74

    Scan done at 16:00:27.79, Wed 07/19/2006
    Run from C:\Documents and Settings\Owner\Desktop\SmitfraudFix
    OS: Microsoft Windows XP [Version 5.1.2600] - Windows_NT
    Fix ran in normal mode

    »»»»»»»»»»»»»»»»»»»»»»»» C:\


    »»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS


    »»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS\system


    »»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS\Web


    »»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS\system32

    C:\WINDOWS\system32\hp???.tmp FOUND !
    C:\WINDOWS\system32\hp????.tmp FOUND !
    C:\WINDOWS\system32\ot.ico FOUND !
    C:\WINDOWS\system32\1024\ FOUND !

    »»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS\system32\LogFiles


    »»»»»»»»»»»»»»»»»»»»»»»» C:\Documents and Settings\Owner\Application Data


    »»»»»»»»»»»»»»»»»»»»»»»» Start Menu


    »»»»»»»»»»»»»»»»»»»»»»»» C:\DOCUME~1\Owner\FAVORI~1


    »»»»»»»»»»»»»»»»»»»»»»»» Desktop


    »»»»»»»»»»»»»»»»»»»»»»»» C:\Program Files

    C:\Program Files\Media-Codec\ FOUND !
    C:\Program Files\Security Toolbar\ FOUND !

    »»»»»»»»»»»»»»»»»»»»»»»» Corrupted keys


    »»»»»»»»»»»»»»»»»»»»»»»» Desktop Components

    [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Desktop\Components\0]
    "Source"="About:Home"
    "SubscribedURL"="About:Home"
    "FriendlyName"="My Current Home Page"


    »»»»»»»»»»»»»»»»»»»»»»»» Sharedtaskscheduler
    !!!Attention, following keys are not inevitably infected!!!

    SrchSTS.exe by S!Ri
    Search SharedTaskScheduler's .dll

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SharedTaskScheduler]
    "cholecyst"="{ee2975b6-e8d5-405e-8448-8fe9590f6cfb}"


    »»»»»»»»»»»»»»»»»»»»»»»» Scanning wininet.dll infection


    »»»»»»»»»»»»»»»»»»»»»»»» End
     
  4. MFDnNC

    MFDnNC

    Joined:
    Sep 7, 2004
    Messages:
    49,014
    You should print out these instructions, or copy them to a NotePad file for reading while in Safe Mode, because you will not be able to connect to the Internet to read from this site.

    Next, please reboot your computer in Safe Mode by doing the following :
    • Restart your computer
    • After hearing your computer beep once during startup, but before the Windows icon appears, tap the F8 key continually;
    • Instead of Windows loading as normal, a menu with options should appear;
    • Select the first option, to run Windows in Safe Mode, then press "Enter".
    • Choose your usual account.
    Once in Safe Mode, open the SmitfraudFix folder again and double-click smitfraudfix.cmd
    Select option #2 - Clean by typing 2 and press "Enter" to delete infected files.

    You will be prompted: "Registry cleaning - Do you want to clean the registry?"; answer "Yes" by typing Y and press "Enter" in order to remove the Desktop background and clean registry keys associated with the infection.

    The tool will now check if wininet.dll is infected. You may be prompted to replace the infected file (if found); answer "Yes" by typing Y and press "Enter".

    The tool may need to restart your computer to finish the cleaning process; if it doesn't, please restart it into Normal Windows.

    A text file will appear onscreen, with results from the cleaning process; please copy/paste the content of that report into your next reply along with a new hijack log.

    The report can also be found at the root of the system drive, usually at C:\rapport.txt

    Warning: running option #2 on a non infected computer will remove your Desktop background.
     
  5. horrorofdeb

    horrorofdeb Thread Starter

    Joined:
    Oct 16, 2002
    Messages:
    567
    ---------------------------------------------------------
    ewido anti-spyware - Scan Report
    ---------------------------------------------------------

    + Created at: 6:58:32 PM 7/19/2006

    + Scan result:



    C:\Documents and Settings\Owner\Local Settings\Temp\1802B0.tmp -> Adware.180Solutions : Cleaned.
    C:\WINDOWS\system32\ccapp.exe -> Adware.Chiem : Cleaned.
    C:\WINDOWS\system32\navshext.dll -> Adware.Chiem : Cleaned.
    HKLM\SOFTWARE\Classes\CLSID\{5929CD6E-2062-44a4-B2C5-2C7E78FBAB38} -> Adware.Generic : Cleaned.
    HKLM\SOFTWARE\Classes\CLSID\{C2EEB4FA-B6D6-41b9-9CFA-ABA87F862BCB} -> Adware.Generic : Cleaned.
    HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5929CD6E-2062-44a4-B2C5-2C7E78FBAB38} -> Adware.Generic : Cleaned.
    HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C2EEB4FA-B6D6-41b9-9CFA-ABA87F862BCB} -> Adware.Generic : Cleaned.
    C:\Program Files\RSSoft\RSEDNClient.exe -> Adware.RedSwoosh : Cleaned.
    C:\WINDOWS\Downloaded Program Files\popcaploader.dll -> Not-A-Virus.Downloader.Win32.PopCap.b : Cleaned.
    C:\Documents and Settings\B\Cookies\[email protected][1].txt -> TrackingCookie.2o7 : Cleaned.
    C:\Documents and Settings\B\Cookies\[email protected][1].txt -> TrackingCookie.2o7 : Cleaned.
    C:\Documents and Settings\J U S T I N\Cookies\j u s t i [email protected][1].txt -> TrackingCookie.2o7 : Cleaned.
    C:\Documents and Settings\J U S T I N\Cookies\j u s t i [email protected][1].txt -> TrackingCookie.2o7 : Cleaned.
    C:\Documents and Settings\J U S T I N\Cookies\j u s t i [email protected][1].txt -> TrackingCookie.2o7 : Cleaned.
    C:\Documents and Settings\Owner\Cookies\[email protected][2].txt -> TrackingCookie.2o7 : Cleaned.
    C:\Documents and Settings\Owner\Cookies\[email protected][1].txt -> TrackingCookie.2o7 : Cleaned.
    C:\Documents and Settings\Owner\Cookies\[email protected][1].txt -> TrackingCookie.2o7 : Cleaned.
    C:\Documents and Settings\Owner\Cookies\[email protected]nk.122.2o7[1].txt -> TrackingCookie.2o7 : Cleaned.
    C:\Documents and Settings\Owner\Cookies\[email protected][1].txt -> TrackingCookie.2o7 : Cleaned.
    C:\Documents and Settings\Owner\Cookies\[email protected][1].txt -> TrackingCookie.2o7 : Cleaned.
    C:\Documents and Settings\Owner\Cookies\[email protected][1].txt -> TrackingCookie.2o7 : Cleaned.
    C:\Documents and Settings\Owner\Cookies\[email protected][1].txt -> TrackingCookie.2o7 : Cleaned.
    C:\Documents and Settings\Owner\Cookies\[email protected][1].txt -> TrackingCookie.2o7 : Cleaned.
    C:\Documents and Settings\~Jeremy~\Cookies\[email protected][2].txt -> TrackingCookie.2o7 : Cleaned.
    C:\Documents and Settings\Owner\Cookies\[email protected][2].txt -> TrackingCookie.Aavalue : Cleaned.
    C:\Documents and Settings\Owner\Cookies\[email protected][1].txt -> TrackingCookie.Aavalue : Cleaned.
    C:\Documents and Settings\Owner\Cookies\[email protected][2].txt -> TrackingCookie.Aavalue : Cleaned.
    C:\Documents and Settings\J U S T I N\Cookies\j u s t i [email protected][1].txt -> TrackingCookie.Adbrite : Cleaned.
    C:\Documents and Settings\B\Cookies\[email protected][2].txt -> TrackingCookie.Addynamix : Cleaned.
    C:\Documents and Settings\J U S T I N\Cookies\j u s t i [email protected][1].txt -> TrackingCookie.Addynamix : Cleaned.
    C:\Documents and Settings\Owner\Cookies\[email protected][2].txt -> TrackingCookie.Addynamix : Cleaned.
    C:\Documents and Settings\~Jeremy~\Cookies\[email protected][2].txt -> TrackingCookie.Addynamix : Cleaned.
    C:\Documents and Settings\J U S T I N\Cookies\j u s t i [email protected][2].txt -> TrackingCookie.Adition : Cleaned.
    C:\Documents and Settings\J U S T I N\Cookies\j u s t i [email protected][1].txt -> TrackingCookie.Adjuggler : Cleaned.
    C:\Documents and Settings\B\Cookies\[email protected][2].txt -> TrackingCookie.Adrevolver : Cleaned.
    C:\Documents and Settings\J U S T I N\Cookies\j u s t i [email protected][3].txt -> TrackingCookie.Adrevolver : Cleaned.
    C:\Documents and Settings\J U S T I N\Cookies\j u s t i [email protected][1].txt -> TrackingCookie.Adrevolver : Cleaned.
    C:\Documents and Settings\Owner\Cookies\[email protected][1].txt -> TrackingCookie.Adrevolver : Cleaned.
    C:\Documents and Settings\~Jeremy~\Cookies\[email protected][1].txt -> TrackingCookie.Adrevolver : Cleaned.
    C:\Documents and Settings\J U S T I N\Cookies\j u s t i [email protected][1].txt -> TrackingCookie.Adserver : Cleaned.
    C:\Documents and Settings\Owner\Cookies\[email protected][1].txt -> TrackingCookie.Adserver : Cleaned.
    C:\Documents and Settings\Owner\Cookies\[email protected][2].txt -> TrackingCookie.Adtech : Cleaned.
    C:\Documents and Settings\B\Cookies\[email protected][2].txt -> TrackingCookie.Advertising : Cleaned.
    C:\Documents and Settings\J U S T I N\Cookies\j u s t i [email protected][1].txt -> TrackingCookie.Advertising : Cleaned.
    C:\Documents and Settings\J U S T I N\Cookies\j u s t i [email protected][1].txt -> TrackingCookie.Advertising : Cleaned.
    C:\Documents and Settings\~Jeremy~\Cookies\[email protected][1].txt -> TrackingCookie.Advertising : Cleaned.
    C:\Documents and Settings\B\Cookies\[email protected][2].txt -> TrackingCookie.Atdmt : Cleaned.
    C:\Documents and Settings\J U S T I N\Cookies\j u s t i [email protected][2].txt -> TrackingCookie.Atdmt : Cleaned.
    C:\Documents and Settings\~Jeremy~\Cookies\[email protected][2].txt -> TrackingCookie.Atdmt : Cleaned.
    C:\Documents and Settings\J U S T I N\Cookies\j u s t i [email protected][2].txt -> TrackingCookie.Bfast : Cleaned.
    C:\Documents and Settings\B\Cookies\[email protected][2].txt -> TrackingCookie.Bluestreak : Cleaned.
    C:\Documents and Settings\Owner\Cookies\[email protected][1].txt -> TrackingCookie.Bluestreak : Cleaned.
    C:\Documents and Settings\~Jeremy~\Cookies\[email protected][1].txt -> TrackingCookie.Bluestreak : Cleaned.
    C:\Documents and Settings\B\Cookies\[email protected][1].txt -> TrackingCookie.Bridgetrack : Cleaned.
    C:\Documents and Settings\J U S T I N\Cookies\j u s t i [email protected][1].txt -> TrackingCookie.Bridgetrack : Cleaned.
    C:\Documents and Settings\Owner\Cookies\[email protected][2].txt -> TrackingCookie.Bridgetrack : Cleaned.
    C:\Documents and Settings\Owner\Cookies\[email protected][1].txt -> TrackingCookie.Bridgetrack : Cleaned.
    C:\Documents and Settings\J U S T I N\Cookies\j u s t i [email protected][2].txt -> TrackingCookie.Burstbeacon : Cleaned.
    C:\Documents and Settings\Owner\Cookies\[email protected][2].txt -> TrackingCookie.Burstbeacon : Cleaned.
    C:\Documents and Settings\B\Cookies\[email protected][2].txt -> TrackingCookie.Burstnet : Cleaned.
    C:\Documents and Settings\J U S T I N\Cookies\j u s t i [email protected][1].txt -> TrackingCookie.Burstnet : Cleaned.
    C:\Documents and Settings\J U S T I N\Cookies\j u s t i [email protected][2].txt -> TrackingCookie.Burstnet : Cleaned.
    C:\Documents and Settings\Owner\Cookies\[email protected][1].txt -> TrackingCookie.Burstnet : Cleaned.
    C:\Documents and Settings\Owner\Cookies\[email protected][2].txt -> TrackingCookie.Burstnet : Cleaned.
    C:\Documents and Settings\B\Cookies\[email protected][1].txt -> TrackingCookie.Casalemedia : Cleaned.
    C:\Documents and Settings\J U S T I N\Cookies\j u s t i [email protected][2].txt -> TrackingCookie.Casalemedia : Cleaned.
    C:\Documents and Settings\~Jeremy~\Cookies\[email protected][1].txt -> TrackingCookie.Casalemedia : Cleaned.
    C:\Documents and Settings\J U S T I N\Cookies\j u s t i [email protected][1].txt -> TrackingCookie.Clickbank : Cleaned.
    C:\Documents and Settings\Owner\Cookies\[email protected][2].txt -> TrackingCookie.Clickbank : Cleaned.
    C:\Documents and Settings\J U S T I N\Cookies\j u s t i [email protected][1].txt -> TrackingCookie.Clickhype : Cleaned.
    C:\Documents and Settings\Owner\Cookies\[email protected][2].txt -> TrackingCookie.Clickhype : Cleaned.
    C:\Documents and Settings\J U S T I N\Cookies\j u s t i [email protected][2].txt -> TrackingCookie.Clickzs : Cleaned.
    C:\Documents and Settings\J U S T I N\Cookies\j u s t i [email protected][2].txt -> TrackingCookie.Clickzs : Cleaned.
    C:\Documents and Settings\J U S T I N\Cookies\j u s t i [email protected][1].txt -> TrackingCookie.Clickzs : Cleaned.
    C:\Documents and Settings\J U S T I N\Cookies\j u s t i [email protected][2].txt -> TrackingCookie.Clickzs : Cleaned.
    C:\Documents and Settings\Owner\Cookies\[email protected][2].txt -> TrackingCookie.Clickzs : Cleaned.
    C:\Documents and Settings\J U S T I N\Cookies\j u s t i [email protected][1].txt -> TrackingCookie.Com : Cleaned.
    C:\Documents and Settings\Owner\Cookies\[email protected][1].txt -> TrackingCookie.Com : Cleaned.
    C:\Documents and Settings\Owner\Cookies\[email protected][1].txt -> TrackingCookie.Com : Cleaned.
    C:\Documents and Settings\~Jeremy~\Cookies\[email protected][2].txt -> TrackingCookie.Counted : Cleaned.
    C:\Documents and Settings\J U S T I N\Cookies\j u s t i [email protected][2].txt -> TrackingCookie.Cpvfeed : Cleaned.
    C:\Documents and Settings\Owner\Cookies\[email protected][1].txt -> TrackingCookie.Cpvfeed : Cleaned.
    C:\Documents and Settings\B\Cookies\[email protected][1].txt -> TrackingCookie.Doubleclick : Cleaned.
    C:\Documents and Settings\J U S T I N\Cookies\j u s t i [email protected][1].txt -> TrackingCookie.Doubleclick : Cleaned.
    C:\Documents and Settings\~Jeremy~\Cookies\[email protected][1].txt -> TrackingCookie.Doubleclick : Cleaned.
    C:\Documents and Settings\Owner\Cookies\[email protected][1].txt -> TrackingCookie.Enhance : Cleaned.
    C:\Documents and Settings\Owner\Cookies\[email protected][1].txt -> TrackingCookie.Epilot : Cleaned.
    C:\Documents and Settings\J U S T I N\Cookies\j u s t i [email protected][2].txt -> TrackingCookie.Esomniture : Cleaned.
    C:\Documents and Settings\J U S T I N\Cookies\j u s t i [email protected][1].txt -> TrackingCookie.Esomniture : Cleaned.
    C:\Documents and Settings\J U S T I N\Cookies\j u s t i [email protected][1].txt -> TrackingCookie.Esomniture : Cleaned.
    C:\Documents and Settings\J U S T I N\Cookies\j u s t i [email protected][2].txt -> TrackingCookie.Esomniture : Cleaned.
    C:\Documents and Settings\J U S T I N\Cookies\j u s t i [email protected][2].txt -> TrackingCookie.Esomniture : Cleaned.
    C:\Documents and Settings\J U S T I N\Cookies\j u s t i [email protected][2].txt -> TrackingCookie.Esomniture : Cleaned.
    C:\Documents and Settings\J U S T I N\Cookies\j u s t i [email protected][2].txt -> TrackingCookie.Esomniture : Cleaned.
    C:\Documents and Settings\J U S T I N\Cookies\j u s t i [email protected][2].txt -> TrackingCookie.Esomniture : Cleaned.
    C:\Documents and Settings\J U S T I N\Cookies\j u s t i [email protected][2].txt -> TrackingCookie.Esomniture : Cleaned.
    C:\Documents and Settings\J U S T I N\Cookies\j u s t i [email protected][2].txt -> TrackingCookie.Esomniture : Cleaned.
    C:\Documents and Settings\J U S T I N\Cookies\j u s t i [email protected][1].txt -> TrackingCookie.Esomniture : Cleaned.
    C:\Documents and Settings\J U S T I N\Cookies\j u s t i [email protected][1].txt -> TrackingCookie.Esomniture : Cleaned.
    C:\Documents and Settings\J U S T I N\Cookies\j u s t i [email protected][2].txt -> TrackingCookie.Esomniture : Cleaned.
    C:\Documents and Settings\J U S T I N\Cookies\j u s t i [email protected][2].txt -> TrackingCookie.Esomniture : Cleaned.
    C:\Documents and Settings\J U S T I N\Cookies\j u s t i [email protected][2].txt -> TrackingCookie.Esomniture : Cleaned.
    C:\Documents and Settings\J U S T I N\Cookies\j u s t i [email protected][2].txt -> TrackingCookie.Esomniture : Cleaned.
    C:\Documents and Settings\J U S T I N\Cookies\j u s t i [email protected][2].txt -> TrackingCookie.Esomniture : Cleaned.
    C:\Documents and Settings\J U S T I N\Cookies\j u s t i [email protected][2].txt -> TrackingCookie.Esomniture : Cleaned.
    C:\Documents and Settings\Owner\Cookies\[email protected][2].txt -> TrackingCookie.Esomniture : Cleaned.
    C:\Documents and Settings\Owner\Cookies\[email protected][2].txt -> TrackingCookie.Esomniture : Cleaned.
    C:\Documents and Settings\Owner\Cookies\[email protected][2].txt -> TrackingCookie.Esomniture : Cleaned.
    C:\Documents and Settings\Owner\Cookies\[email protected][2].txt -> TrackingCookie.Esomniture : Cleaned.
    C:\Documents and Settings\Owner\Cookies\[email protected][2].txt -> TrackingCookie.Esomniture : Cleaned.
    C:\Documents and Settings\Owner\Cookies\[email protected][2].txt -> TrackingCookie.Esomniture : Cleaned.
    C:\Documents and Settings\Owner\Cookies\[email protected][2].txt -> TrackingCookie.Esomniture : Cleaned.
    C:\Documents and Settings\Owner\Cookies\[email protected][1].txt -> TrackingCookie.Esomniture : Cleaned.
    C:\Documents and Settings\Owner\Cookies\[email protected][2].txt -> TrackingCookie.Esomniture : Cleaned.
    C:\Documents and Settings\Owner\Cookies\[email protected][1].txt -> TrackingCookie.Esomniture : Cleaned.
    C:\Documents and Settings\Owner\Cookies\[email protected][2].txt -> TrackingCookie.Esomniture : Cleaned.
    C:\Documents and Settings\Owner\Cookies\[email protected][2].txt -> TrackingCookie.Esomniture : Cleaned.
    C:\Documents and Settings\Owner\Cookies\[email protected][2].txt -> TrackingCookie.Esomniture : Cleaned.
    C:\Documents and Settings\Owner\Cookies\[email protected][1].txt -> TrackingCookie.Esomniture : Cleaned.
    C:\Documents and Settings\Owner\Cookies\[email protected][2].txt -> TrackingCookie.Esomniture : Cleaned.
    C:\Documents and Settings\Owner\Cookies\[email protected][2].txt -> TrackingCookie.Esomniture : Cleaned.
    C:\Documents and Settings\Owner\Cookies\[email protected][2].txt -> TrackingCookie.Esomniture : Cleaned.
    C:\Documents and Settings\Owner\Cookies\[email protected][1].txt -> TrackingCookie.Esomniture : Cleaned.
    C:\Documents and Settings\Owner\Cookies\[email protected][2].txt -> TrackingCookie.Esomniture : Cleaned.
    C:\Documents and Settings\Owner\Cookies\[email protected][1].txt -> TrackingCookie.Esomniture : Cleaned.
     
  6. horrorofdeb

    horrorofdeb Thread Starter

    Joined:
    Oct 16, 2002
    Messages:
    567
    C:\Documents and Settings\Owner\Cookies\[email protected][1].txt -> TrackingCookie.Esomniture : Cleaned.
    C:\Documents and Settings\Owner\Cookies\[email protected][1].txt -> TrackingCookie.Esomniture : Cleaned.
    C:\Documents and Settings\Owner\Cookies\[email protected][1].txt -> TrackingCookie.Esomniture : Cleaned.
    C:\Documents and Settings\Owner\Cookies\[email protected].stats.esomniture[2].txt -> TrackingCookie.Esomniture : Cleaned.
    C:\Documents and Settings\Owner\Cookies\[email protected][2].txt -> TrackingCookie.Esomniture : Cleaned.
    C:\Documents and Settings\Owner\Cookies\[email protected][2].txt -> TrackingCookie.Esomniture : Cleaned.
    C:\Documents and Settings\Owner\Cookies\[email protected][2].txt -> TrackingCookie.Esomniture : Cleaned.
    C:\Documents and Settings\Owner\Cookies\[email protected][2].txt -> TrackingCookie.Esomniture : Cleaned.
    C:\Documents and Settings\Owner\Cookies\[email protected][2].txt -> TrackingCookie.Esomniture : Cleaned.
    C:\Documents and Settings\Owner\Cookies\[email protected][1].txt -> TrackingCookie.Esomniture : Cleaned.
    C:\Documents and Settings\Owner\Cookies\[email protected][2].txt -> TrackingCookie.Esomniture : Cleaned.
    C:\Documents and Settings\Owner\Cookies\[email protected][2].txt -> TrackingCookie.Esomniture : Cleaned.
    C:\Documents and Settings\B\Cookies\[email protected][1].txt -> TrackingCookie.Falkag : Cleaned.
    C:\Documents and Settings\J U S T I N\Cookies\j u s t i [email protected][1].txt -> TrackingCookie.Falkag : Cleaned.
    C:\Documents and Settings\J U S T I N\Cookies\j u s t i [email protected][2].txt -> TrackingCookie.Falkag : Cleaned.
    C:\Documents and Settings\Owner\Cookies\[email protected][2].txt -> TrackingCookie.Falkag : Cleaned.
    C:\Documents and Settings\Owner\Cookies\[email protected][1].txt -> TrackingCookie.Falkag : Cleaned.
    C:\Documents and Settings\~Jeremy~\Cookies\[email protected][2].txt -> TrackingCookie.Falkag : Cleaned.
    C:\Documents and Settings\B\Cookies\[email protected][1].txt -> TrackingCookie.Fastclick : Cleaned.
    C:\Documents and Settings\B\Cookies\[email protected][2].txt -> TrackingCookie.Fastclick : Cleaned.
    C:\Documents and Settings\J U S T I N\Cookies\j u s t i [email protected][2].txt -> TrackingCookie.Fastclick : Cleaned.
    C:\Documents and Settings\~Jeremy~\Cookies\[email protected][1].txt -> TrackingCookie.Fastclick : Cleaned.
    C:\Documents and Settings\~Jeremy~\Cookies\[email protected][2].txt -> TrackingCookie.Fastclick : Cleaned.
    C:\Documents and Settings\J U S T I N\Cookies\j u s t i [email protected][1].txt -> TrackingCookie.Findwhat : Cleaned.
    C:\Documents and Settings\J U S T I N\Cookies\j u s t i [email protected][2].txt -> TrackingCookie.Hitbox : Cleaned.
    C:\Documents and Settings\J U S T I N\Cookies\j u s t i [email protected][2].txt -> TrackingCookie.Hitbox : Cleaned.
    C:\Documents and Settings\J U S T I N\Cookies\j u s t i [email protected][2].txt -> TrackingCookie.Hitbox : Cleaned.
    C:\Documents and Settings\J U S T I N\Cookies\j u s t i [email protected][1].txt -> TrackingCookie.Hitbox : Cleaned.
    C:\Documents and Settings\J U S T I N\Cookies\j u s t i [email protected][2].txt -> TrackingCookie.Hotlog : Cleaned.
    C:\Documents and Settings\Owner\Cookies\[email protected][2].txt -> TrackingCookie.Hotlog : Cleaned.
    C:\Documents and Settings\J U S T I N\Cookies\j u s t i [email protected][1].txt -> TrackingCookie.Kmpads : Cleaned.
    C:\Documents and Settings\J U S T I N\Cookies\j u s t i [email protected][1].txt -> TrackingCookie.Liveperson : Cleaned.
    C:\Documents and Settings\Owner\Cookies\[email protected]es.liveperson[1].txt -> TrackingCookie.Liveperson : Cleaned.
    C:\Documents and Settings\Owner\Cookies\[email protected][2].txt -> TrackingCookie.Liveperson : Cleaned.
    C:\Documents and Settings\B\Cookies\[email protected][1].txt -> TrackingCookie.Mediaplex : Cleaned.
    C:\Documents and Settings\J U S T I N\Cookies\j u s t i [email protected][1].txt -> TrackingCookie.Mediaplex : Cleaned.
    C:\Documents and Settings\~Jeremy~\Cookies\[email protected][2].txt -> TrackingCookie.Mediaplex : Cleaned.
    C:\Documents and Settings\J U S T I N\Cookies\j u s t i [email protected][1].txt -> TrackingCookie.Onestat : Cleaned.
    C:\Documents and Settings\Owner\Cookies\[email protected][2].txt -> TrackingCookie.Onestat : Cleaned.
    C:\Documents and Settings\J U S T I N\Cookies\j u s t i [email protected][1].txt -> TrackingCookie.Overture : Cleaned.
    C:\Documents and Settings\Owner\Cookies\[email protected][2].txt -> TrackingCookie.Overture : Cleaned.
    C:\Documents and Settings\Owner\Cookies\[email protected][1].txt -> TrackingCookie.Overture : Cleaned.
    C:\Documents and Settings\Owner\Cookies\[email protected][1].txt -> TrackingCookie.Overture : Cleaned.
    C:\Documents and Settings\Owner\Cookies\[email protected][1].txt -> TrackingCookie.Overture : Cleaned.
    C:\Documents and Settings\J U S T I N\Cookies\j u s t i [email protected][1].txt -> TrackingCookie.Paycounter : Cleaned.
    C:\Documents and Settings\Owner\Cookies\[email protected][2].txt -> TrackingCookie.Paycounter : Cleaned.
    C:\Documents and Settings\J U S T I N\Cookies\j u s t i [email protected][2].txt -> TrackingCookie.Pointroll : Cleaned.
    C:\Documents and Settings\Owner\Cookies\[email protected][1].txt -> TrackingCookie.Pointroll : Cleaned.
    C:\Documents and Settings\~Jeremy~\Cookies\[email protected][2].txt -> TrackingCookie.Pointroll : Cleaned.
    C:\Documents and Settings\Owner\Cookies\[email protected][2].txt -> TrackingCookie.Popularix : Cleaned.
    C:\Documents and Settings\B\Cookies\[email protected][2].txt -> TrackingCookie.Qksrv : Cleaned.
    C:\Documents and Settings\J U S T I N\Cookies\j u s t i [email protected][2].txt -> TrackingCookie.Qksrv : Cleaned.
    C:\Documents and Settings\Owner\Cookies\[email protected][1].txt -> TrackingCookie.Qksrv : Cleaned.
    C:\Documents and Settings\~Jeremy~\Cookies\[email protected][2].txt -> TrackingCookie.Qksrv : Cleaned.
    C:\Documents and Settings\B\Cookies\[email protected][1].txt -> TrackingCookie.Questionmarket : Cleaned.
    C:\Documents and Settings\J U S T I N\Cookies\j u s t i [email protected][2].txt -> TrackingCookie.Questionmarket : Cleaned.
    C:\Documents and Settings\Owner\Cookies\[email protected][2].txt -> TrackingCookie.Questionmarket : Cleaned.
    C:\Documents and Settings\~Jeremy~\Cookies\[email protected][2].txt -> TrackingCookie.Questionmarket : Cleaned.
    C:\Documents and Settings\Owner\Cookies\[email protected][1].txt -> TrackingCookie.Realtracker : Cleaned.
    C:\Documents and Settings\J U S T I N\Cookies\j u s t i [email protected][1].txt -> TrackingCookie.Reliablestats : Cleaned.
    C:\Documents and Settings\Owner\Cookies\[email protected][1].txt -> TrackingCookie.Reliablestats : Cleaned.
    C:\Documents and Settings\B\Cookies\[email protected][2].txt -> TrackingCookie.Revenue : Cleaned.
    C:\Documents and Settings\J U S T I N\Cookies\j u s t i [email protected][1].txt -> TrackingCookie.Revenue : Cleaned.
    C:\Documents and Settings\Owner\Cookies\[email protected][2].txt -> TrackingCookie.Revenue : Cleaned.
    C:\Documents and Settings\B\Cookies\[email protected][1].txt -> TrackingCookie.Ru4 : Cleaned.
    C:\Documents and Settings\J U S T I N\Cookies\j u s t i [email protected][1].txt -> TrackingCookie.Ru4 : Cleaned.
    C:\Documents and Settings\Owner\Cookies\[email protected][2].txt -> TrackingCookie.Ru4 : Cleaned.
    C:\Documents and Settings\~Jeremy~\Cookies\[email protected][1].txt -> TrackingCookie.Ru4 : Cleaned.
    C:\Documents and Settings\J U S T I N\Cookies\j u s t i [email protected][1].txt -> TrackingCookie.Serving-sys : Cleaned.
    C:\Documents and Settings\J U S T I N\Cookies\j u s t i [email protected][1].txt -> TrackingCookie.Serving-sys : Cleaned.
    C:\Documents and Settings\Owner\Cookies\[email protected][1].txt -> TrackingCookie.Serving-sys : Cleaned.
    C:\Documents and Settings\~Jeremy~\Cookies\[email protected][1].txt -> TrackingCookie.Serving-sys : Cleaned.
    C:\Documents and Settings\J U S T I N\Cookies\j u s t i [email protected][2].txt -> TrackingCookie.Sexcounter : Cleaned.
    C:\Documents and Settings\Owner\Cookies\[email protected][2].txt -> TrackingCookie.Sexcounter : Cleaned.
    C:\Documents and Settings\J U S T I N\Cookies\j u s t i [email protected][1].txt -> TrackingCookie.Sextracker : Cleaned.
    C:\Documents and Settings\J U S T I N\Cookies\j u s t i [email protected][1].txt -> TrackingCookie.Sextracker : Cleaned.
    C:\Documents and Settings\J U S T I N\Cookies\j u s t i [email protected][1].txt -> TrackingCookie.Sextracker : Cleaned.
    C:\Documents and Settings\J U S T I N\Cookies\j u s t i [email protected][2].txt -> TrackingCookie.Specificclick : Cleaned.
    C:\Documents and Settings\Owner\Cookies\[email protected][2].txt -> TrackingCookie.Specificclick : Cleaned.
    C:\Documents and Settings\~Jeremy~\Cookies\[email protected][2].txt -> TrackingCookie.Specificclick : Cleaned.
    C:\Documents and Settings\J U S T I N\Cookies\j u s t i [email protected][2].txt -> TrackingCookie.Spylog : Cleaned.
    C:\Documents and Settings\Owner\Cookies\[email protected][2].txt -> TrackingCookie.Spylog : Cleaned.
    C:\Documents and Settings\B\Cookies\[email protected][1].txt -> TrackingCookie.Starware : Cleaned.
    C:\Documents and Settings\B\Cookies\[email protected][1].txt -> TrackingCookie.Starware : Cleaned.
    C:\Documents and Settings\~Jeremy~\Cookies\[email protected][1].txt -> TrackingCookie.Starware : Cleaned.
    C:\Documents and Settings\~Jeremy~\Cookies\[email protected][1].txt -> TrackingCookie.Starware : Cleaned.
    C:\Documents and Settings\J U S T I N\Cookies\j u s t i [email protected][2].txt -> TrackingCookie.Statcounter : Cleaned.
    C:\Documents and Settings\Owner\Cookies\[email protected][2].txt -> TrackingCookie.Statcounter : Cleaned.
    C:\Documents and Settings\~Jeremy~\Cookies\[email protected][2].txt -> TrackingCookie.Statcounter : Cleaned.
    C:\Documents and Settings\B\Cookies\[email protected][1].txt -> TrackingCookie.Tacoda : Cleaned.
    C:\Documents and Settings\B\Cookies\[email protected][1].txt -> TrackingCookie.Tacoda : Cleaned.
    C:\Documents and Settings\J U S T I N\Cookies\j u s t i [email protected][1].txt -> TrackingCookie.Tacoda : Cleaned.
    C:\Documents and Settings\J U S T I N\Cookies\j u s t i [email protected][2].txt -> TrackingCookie.Tacoda : Cleaned.
    C:\Documents and Settings\Owner\Cookies\[email protected][1].txt -> TrackingCookie.Tacoda : Cleaned.
    C:\Documents and Settings\Owner\Cookies\[email protected][1].txt -> TrackingCookie.Tacoda : Cleaned.
    C:\Documents and Settings\Owner\Cookies\[email protected][1].txt -> TrackingCookie.Tacoda : Cleaned.
    C:\Documents and Settings\~Jeremy~\Cookies\[email protected][1].txt -> TrackingCookie.Tacoda : Cleaned.
    C:\Documents and Settings\~Jeremy~\Cookies\[email protected][1].txt -> TrackingCookie.Tacoda : Cleaned.
    C:\Documents and Settings\B\Cookies\[email protected][2].txt -> TrackingCookie.Targetnet : Cleaned.
    C:\Documents and Settings\J U S T I N\Cookies\j u s t i [email protected][1].txt -> TrackingCookie.Targetnet : Cleaned.
    C:\Documents and Settings\J U S T I N\Cookies\j u s t i [email protected][1].txt -> TrackingCookie.Targetnet : Cleaned.
    C:\Documents and Settings\J U S T I N\Cookies\j u s t i [email protected][1].txt -> TrackingCookie.Targetnet : Cleaned.
    C:\Documents and Settings\J U S T I N\Cookies\j u s t i [email protected][1].txt -> TrackingCookie.Targetnet : Cleaned.
    C:\Documents and Settings\~Jeremy~\Cookies\[email protected][1].txt -> TrackingCookie.Targetnet : Cleaned.
    C:\Documents and Settings\J U S T I N\Cookies\j u s t i [email protected][2].txt -> TrackingCookie.Tracking101 : Cleaned.
    C:\Documents and Settings\J U S T I N\Cookies\j u s t i [email protected][1].txt -> TrackingCookie.Tradedoubler : Cleaned.
    C:\Documents and Settings\Owner\Cookies\[email protected][1].txt -> TrackingCookie.Tradedoubler : Cleaned.
    C:\Documents and Settings\~Jeremy~\Cookies\[email protected][2].txt -> TrackingCookie.Tradedoubler : Cleaned.
    C:\Documents and Settings\B\Cookies\[email protected][2].txt -> TrackingCookie.Trafficmp : Cleaned.
    C:\Documents and Settings\J U S T I N\Cookies\j u s t i [email protected][2].txt -> TrackingCookie.Trafficmp : Cleaned.
    C:\Documents and Settings\Owner\Cookies\[email protected][1].txt -> TrackingCookie.Trafficmp : Cleaned.
    C:\Documents and Settings\~Jeremy~\Cookies\[email protected][1].txt -> TrackingCookie.Trafficmp : Cleaned.
    C:\Documents and Settings\J U S T I N\Cookies\j u s t i [email protected][2].txt -> TrackingCookie.Tribalfusion : Cleaned.
    C:\Documents and Settings\J U S T I N\Cookies\j u s t i [email protected][1].txt -> TrackingCookie.Tribalfusion : Cleaned.
    C:\Documents and Settings\Owner\Cookies\[email protected][1].txt -> TrackingCookie.Tribalfusion : Cleaned.
    C:\Documents and Settings\~Jeremy~\Cookies\[email protected][1].txt -> TrackingCookie.Tribalfusion : Cleaned.
    C:\Documents and Settings\~Jeremy~\Cookies\[email protected][1].txt -> TrackingCookie.Tribalfusion : Cleaned.
    C:\Documents and Settings\B\Cookies\[email protected][1].txt -> TrackingCookie.Valuead : Cleaned.
    C:\Documents and Settings\Owner\Cookies\[email protected][1].txt -> TrackingCookie.Valuead : Cleaned.
    C:\Documents and Settings\~Jeremy~\Cookies\[email protected][1].txt -> TrackingCookie.Valuead : Cleaned.
    C:\Documents and Settings\Owner\Cookies\[email protected][1].txt -> TrackingCookie.Weborama : Cleaned.
    C:\Documents and Settings\J U S T I N\Cookies\j u s t i [email protected][1].txt -> TrackingCookie.Webtrendslive : Cleaned.
    C:\Documents and Settings\J U S T I N\Cookies\j u s t i [email protected][2].txt -> TrackingCookie.Wegcash : Cleaned.
    C:\Documents and Settings\J U S T I N\Cookies\j u s t i [email protected][1].txt -> TrackingCookie.Yadro : Cleaned.
    C:\Documents and Settings\Owner\Cookies\[email protected][1].txt -> TrackingCookie.Yadro : Cleaned.
    C:\Documents and Settings\B\Cookies\[email protected][1].txt -> TrackingCookie.Yieldmanager : Cleaned.
    C:\Documents and Settings\B\Cookies\[email protected][1].txt -> TrackingCookie.Yieldmanager : Cleaned.
    C:\Documents and Settings\J U S T I N\Cookies\j u s t i [email protected][2].txt -> TrackingCookie.Yieldmanager : Cleaned.
    C:\Documents and Settings\J U S T I N\Cookies\j u s t i [email protected][1].txt -> TrackingCookie.Yieldmanager : Cleaned.
    C:\Documents and Settings\Owner\Cookies\[email protected][2].txt -> TrackingCookie.Yieldmanager : Cleaned.
    C:\Documents and Settings\Owner\Cookies\[email protected][2].txt -> TrackingCookie.Yieldmanager : Cleaned.
    C:\Documents and Settings\~Jeremy~\Cookies\[email protected][2].txt -> TrackingCookie.Yieldmanager : Cleaned.
    C:\Documents and Settings\~Jeremy~\Cookies\[email protected][2].txt -> TrackingCookie.Yieldmanager : Cleaned.
    C:\Documents and Settings\B\Cookies\[email protected][1].txt -> TrackingCookie.Zedo : Cleaned.
    C:\Documents and Settings\J U S T I N\Cookies\j u s t i [email protected][2].txt -> TrackingCookie.Zedo : Cleaned.
    C:\Documents and Settings\Owner\Cookies\[email protected][1].txt -> TrackingCookie.Zedo : Cleaned.
    C:\Documents and Settings\~Jeremy~\Cookies\[email protected][1].txt -> TrackingCookie.Zedo : Cleaned.
    C:\Documents and Settings\~Jeremy~\Cookies\[email protected][1].txt -> TrackingCookie.Zedo : Cleaned.
    C:\Documents and Settings\J U S T I N\Local Settings\Temporary Internet Files\Content.IE5\A9WJYF43\_cnt2[1].htm -> Trojan.ObjID.e : Cleaned.
    C:\Documents and Settings\Owner\Local Settings\Temporary Internet Files\Content.IE5\UFUN6LYR\_cnt2[1].htm -> Trojan.ObjID.e : Cleaned.
    C:\Program Files\Media-Codec -> Trojan.Small : Cleaned.
    C:\Program Files\Media-Codec\uninst.exe -> Trojan.Small : Cleaned.
    C:\WINDOWS\system32\1024 -> Trojan.Small : Cleaned.
    C:\WINDOWS\system32\1024\ld46B3.tmp -> Trojan.Small : Cleaned.
    C:\WINDOWS\system32\1024\ld562F.tmp -> Trojan.Small : Cleaned.
    C:\WINDOWS\system32\1024\ld6800.tmp -> Trojan.Small : Cleaned.
    C:\WINDOWS\system32\1024\ld8774.tmp -> Trojan.Small : Cleaned.
    C:\WINDOWS\system32\1024\ld9058.tmp -> Trojan.Small : Cleaned.
    C:\WINDOWS\system32\1024\ldA8B1.tmp -> Trojan.Small : Cleaned.
    C:\WINDOWS\system32\1024\ldC3B1.tmp -> Trojan.Small : Cleaned.
    C:\WINDOWS\system32\1024\ldE962.tmp -> Trojan.Small : Cleaned.
    C:\WINDOWS\system32\1024\ldFD21.tmp -> Trojan.Small : Cleaned.
    C:\Documents and Settings\Owner\Start Menu\Programs\Startup\Adobe Gamma Loader.exe -> Trojan.VB.ami : Cleaned.


    ::Report end
     
  7. MFDnNC

    MFDnNC

    Joined:
    Sep 7, 2004
    Messages:
    49,014
    Looks like you missed my post #4
    ==============================
    IE - Block Third party cookies
    1. Click on the Tools button on the Internet Explorer tool bar.
    2. Highlight and click on Internet options at the bottom of the Tools menu.
    3. Select the Privacy Tab of the Internet Options menu.
    4. Select the Advanced... button at the bottom of the screen.
    5. Select override automatic cookie handling button.
    6. To block third party cookies select block under "Third-party cookies".
    7. Select "always allow session cookies".
    8. Click on the OK button at the bottom of the screen.
    ===============
    In firefox - TOOLS - OPTIONS - PRIVACY - COOKIES - Check originating site only
    =====================
     
  8. Sponsor

As Seen On
As Seen On...

Welcome to Tech Support Guy!

Are you looking for the solution to your computer problem? Join our site today to ask your question. This site is completely free -- paid for by advertisers and donations.

If you're not already familiar with forums, watch our Welcome Guide to get started.

Join over 733,556 other people just like you!

Loading...
Thread Status:
Not open for further replies.

Short URL to this thread: https://techguy.org/484534

  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.
    Dismiss Notice