1. Computer problem? Tech Support Guy is completely free -- paid for by advertisers and donations. Click here to join today! If you're new to Tech Support Guy, we highly recommend that you visit our Guide for New Members.

Solved: Spyware I think...

Discussion in 'Virus & Other Malware Removal' started by Kipsy, Jul 16, 2006.

Thread Status:
Not open for further replies.
Advertisement
  1. Kipsy

    Kipsy Thread Starter

    Joined:
    Jul 15, 2006
    Messages:
    37
    I keep getting zonealarm pop-ups to the tune of win44a.tmp.exe or win45a.tmp.exe wanting internet access. I'm blocking them, but I'd like to get rid of whatever's causing them.

    I've ran both Spybot S&D and Ad-Aware but the pop-ups persist.

    Any help you can offer would be appreciated.
     
  2. MFDnNC

    MFDnNC

    Joined:
    Sep 7, 2004
    Messages:
    49,014
    Click here to download HJTsetup.exe:

    http://www.thespykiller.co.uk/forum/index.php?action=tpmod;dl=item5
    Scroll down to the download section

    Save HJTsetup.exe to your desktop.

    Double click on the HJTsetup.exe icon on your desktop.
    By default it will install to C:\Program Files\Hijack This.
    Continue to click Next in the setup dialogue boxes until you get to the Select Addition Tasks dialogue.
    Put a check by Create a desktop icon then click Next again.
    Continue to follow the rest of the prompts from there.
    At the final dialogue box click Finish and it will launch Hijack This.
    Click on the Do a system scan and save a log file button. It will scan and then ask you to save the log.
    Click Save to save the log file and then the log will open in notepad.
    Click on "Edit > Select All" then click on "Edit > Copy" to copy the entire contents of the log.
    Come back here to this thread and Paste the log in your next reply.
    DO NOT have Hijack This fix anything yet. Most of what it finds will be harmless or even required.
     
  3. Kipsy

    Kipsy Thread Starter

    Joined:
    Jul 15, 2006
    Messages:
    37
    Alright, here's the HijackThis log.


    Running processes:
    C:\WINDOWS\System32\smss.exe
    C:\WINDOWS\system32\winlogon.exe
    C:\WINDOWS\system32\services.exe
    C:\WINDOWS\system32\lsass.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\System32\svchost.exe
    C:\Program Files\TGTSoft\StyleXP\StyleXPService.exe
    C:\WINDOWS\system32\spoolsv.exe
    C:\WINDOWS\Explorer.EXE
    C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
    C:\WINDOWS\System32\Atievxx.exe
    C:\Program Files\Alwil Software\Avast4\ashServ.exe
    C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
    C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
    C:\Program Files\Common Files\Real\Update_OB\realsched.exe
    C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe
    C:\Program Files\Winamp\winampa.exe
    C:\Program Files\iTunes\iTunesHelper.exe
    C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
    C:\WINDOWS\System32\svchost.exe
    C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe
    C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpotdd01.exe
    C:\Program Files\Common Files\Microsoft Shared\Works Shared\wkcalrem.exe
    C:\Program Files\Trillian\trillian.exe
    C:\WINDOWS\system32\ZoneLabs\vsmon.exe
    C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
    C:\Program Files\iPod\bin\iPodService.exe
    C:\Program Files\Microsoft Office\Office\WINWORD.EXE
    C:\Program Files\Microsoft Works\MSWorks.exe
    C:\Program Files\eDonkey2000\edonkey2000.exe
    C:\Program Files\Plantasia\plantasia.exe
    C:\Program Files\Winamp\winamp.exe
    C:\Program Files\Mozilla Firefox\firefox.exe
    C:\Program Files\Outlook Express\msimn.exe
    C:\Program Files\Hijackthis\HijackThis.exe

    R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Microsoft Internet Explorer provided by Comcast
    R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = 127.0.0.1
    O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\System32\msdxm.ocx
    O4 - HKLM\..\Run: [IMJPMIG8.1] "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32
    O4 - HKLM\..\Run: [PHIME2002ASync] C:\WINDOWS\System32\IME\TINTLGNT\TINTSETP.EXE /SYNC
    O4 - HKLM\..\Run: [PHIME2002A] C:\WINDOWS\System32\IME\TINTLGNT\TINTSETP.EXE /IMEName
    O4 - HKLM\..\Run: [tgcmd] "C:\Program Files\support.com\bin\tgcmd.exe" /server
    O4 - HKLM\..\Run: [Zone Labs Client] C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
    O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
    O4 - HKLM\..\Run: [eDonkey2000] "C:\Program Files\eDonkey2000\edonkey2000.exe" -t
    O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
    O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
    O4 - HKLM\..\Run: [RemoteControl] "C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe"
    O4 - HKLM\..\Run: [WinampAgent] C:\Program Files\Winamp\winampa.exe
    O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
    O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
    O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
    O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
    O4 - HKCU\..\Run: [Yahoo! Pager] "C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe" -quiet
    O4 - HKCU\..\Run: [STYLEXP] C:\Program Files\TGTSoft\StyleXP\StyleXP.exe -Hide
    O4 - HKCU\..\Run: [PicoZip] C:\Program Files\PicoZip\PicoZipTray.exe
    O4 - Startup: Adobe Gamma.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
    O4 - Startup: Trillian.lnk = C:\Program Files\Trillian\trillian.exe
    O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
    O4 - Global Startup: hp psc 1000 series.lnk = ?
    O4 - Global Startup: hpoddt01.exe.lnk = ?
    O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE
    O4 - Global Startup: Microsoft Works Calendar Reminders.lnk = ?
    O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
    O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
    O9 - Extra button: ComcastHSI - {669B269B-0D4E-41FB-A3D8-FD67CA94F646} - http://www.comcast.net/ (file missing)
    O9 - Extra button: Support - {8828075D-D097-4055-AA02-2DBFA9D85E8A} - http://www.comcastsupport.com/ (file missing)
    O9 - Extra button: Help - {97809617-3937-4F84-B335-9BB05EF1A8D4} - http://online.comcast.net/help/ (file missing)
    O9 - Extra button: Yahoo! Messenger - {E5D12C4E-7B4F-11D3-B5C9-0050045C3C96} - C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe
    O9 - Extra 'Tools' menuitem: Yahoo! Messenger - {E5D12C4E-7B4F-11D3-B5C9-0050045C3C96} - C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe
    O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\MSMSGS.EXE
    O9 - Extra 'Tools' menuitem: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\MSMSGS.EXE
    O16 - DPF: {55332B3B-3000-78CF-3885-5446135AD4D3} - http://85.255.113.214/1/gdnUS2339.exe
    O16 - DPF: {F58E1CEF-A068-4C15-BA5E-587CAF3EE8C6} (MSN Chat Control 4.5) - http://chat.msn.com/controls/msnchat45.cab
    O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
    O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
    O23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exe
    O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
    O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
    O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
    O23 - Service: iPodService - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
    O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\System32\HPZipm12.exe
    O23 - Service: StyleXPService - Unknown owner - C:\Program Files\TGTSoft\StyleXP\StyleXPService.exe
    O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - C:\WINDOWS\system32\ZoneLabs\vsmon.exe
     
  4. MFDnNC

    MFDnNC

    Joined:
    Sep 7, 2004
    Messages:
    49,014
    You have cut off the top of the log - we need to see all of it

    Open the log in notepad

    EDIT - SELECT ALL
    EDIT - COPY

    Then come to this message, and in the quick reply box click in the white space and then EDIT - PASTE
    ========================

    Download the trial version of Ewido Security Suite http://www.ewido.net/en/download/ (W2K/XP Only)
    · Install ewido.
    · Run the application
    · Click on scanner
    · Click Complete System Scan and the scan will begin.
    · When the scan is finished, Set all items to delete
    · Apply all actions
    · look at the bottom of the screen and click the Save report button.
    · Save the report to your C: Drive
    This will take some time to run!
    RE-Boot
    Post that log and a new HiJack log
     
  5. Kipsy

    Kipsy Thread Starter

    Joined:
    Jul 15, 2006
    Messages:
    37
    Erg, sorry...downloading ewido now...here's the full HijackThis log...

    Logfile of HijackThis v1.99.1
    Scan saved at 4:01:29 PM, on 7/16/2006
    Platform: Windows XP SP1 (WinNT 5.01.2600)
    MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106)

    Running processes:
    C:\WINDOWS\System32\smss.exe
    C:\WINDOWS\system32\winlogon.exe
    C:\WINDOWS\system32\services.exe
    C:\WINDOWS\system32\lsass.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\System32\svchost.exe
    C:\Program Files\TGTSoft\StyleXP\StyleXPService.exe
    C:\WINDOWS\system32\spoolsv.exe
    C:\WINDOWS\Explorer.EXE
    C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
    C:\WINDOWS\System32\Atievxx.exe
    C:\Program Files\Alwil Software\Avast4\ashServ.exe
    C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
    C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
    C:\Program Files\Common Files\Real\Update_OB\realsched.exe
    C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe
    C:\Program Files\Winamp\winampa.exe
    C:\Program Files\iTunes\iTunesHelper.exe
    C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
    C:\WINDOWS\System32\svchost.exe
    C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe
    C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpotdd01.exe
    C:\Program Files\Common Files\Microsoft Shared\Works Shared\wkcalrem.exe
    C:\Program Files\Trillian\trillian.exe
    C:\WINDOWS\system32\ZoneLabs\vsmon.exe
    C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
    C:\Program Files\iPod\bin\iPodService.exe
    C:\Program Files\Microsoft Office\Office\WINWORD.EXE
    C:\Program Files\Microsoft Works\MSWorks.exe
    C:\Program Files\eDonkey2000\edonkey2000.exe
    C:\Program Files\Plantasia\plantasia.exe
    C:\Program Files\Winamp\winamp.exe
    C:\Program Files\Mozilla Firefox\firefox.exe
    C:\Program Files\Outlook Express\msimn.exe
    C:\WINDOWS\TEMP\win21.tmp.exe
    C:\Program Files\Hijackthis\HijackThis.exe

    R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Microsoft Internet Explorer provided by Comcast
    R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = 127.0.0.1
    O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\System32\msdxm.ocx
    O4 - HKLM\..\Run: [IMJPMIG8.1] "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32
    O4 - HKLM\..\Run: [PHIME2002ASync] C:\WINDOWS\System32\IME\TINTLGNT\TINTSETP.EXE /SYNC
    O4 - HKLM\..\Run: [PHIME2002A] C:\WINDOWS\System32\IME\TINTLGNT\TINTSETP.EXE /IMEName
    O4 - HKLM\..\Run: [tgcmd] "C:\Program Files\support.com\bin\tgcmd.exe" /server
    O4 - HKLM\..\Run: [Zone Labs Client] C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
    O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
    O4 - HKLM\..\Run: [eDonkey2000] "C:\Program Files\eDonkey2000\edonkey2000.exe" -t
    O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
    O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
    O4 - HKLM\..\Run: [RemoteControl] "C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe"
    O4 - HKLM\..\Run: [WinampAgent] C:\Program Files\Winamp\winampa.exe
    O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
    O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
    O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
    O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
    O4 - HKCU\..\Run: [Yahoo! Pager] "C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe" -quiet
    O4 - HKCU\..\Run: [STYLEXP] C:\Program Files\TGTSoft\StyleXP\StyleXP.exe -Hide
    O4 - HKCU\..\Run: [PicoZip] C:\Program Files\PicoZip\PicoZipTray.exe
    O4 - Startup: Adobe Gamma.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
    O4 - Startup: Trillian.lnk = C:\Program Files\Trillian\trillian.exe
    O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
    O4 - Global Startup: hp psc 1000 series.lnk = ?
    O4 - Global Startup: hpoddt01.exe.lnk = ?
    O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE
    O4 - Global Startup: Microsoft Works Calendar Reminders.lnk = ?
    O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
    O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
    O9 - Extra button: ComcastHSI - {669B269B-0D4E-41FB-A3D8-FD67CA94F646} - http://www.comcast.net/ (file missing)
    O9 - Extra button: Support - {8828075D-D097-4055-AA02-2DBFA9D85E8A} - http://www.comcastsupport.com/ (file missing)
    O9 - Extra button: Help - {97809617-3937-4F84-B335-9BB05EF1A8D4} - http://online.comcast.net/help/ (file missing)
    O9 - Extra button: Yahoo! Messenger - {E5D12C4E-7B4F-11D3-B5C9-0050045C3C96} - C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe
    O9 - Extra 'Tools' menuitem: Yahoo! Messenger - {E5D12C4E-7B4F-11D3-B5C9-0050045C3C96} - C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe
    O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\MSMSGS.EXE
    O9 - Extra 'Tools' menuitem: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\MSMSGS.EXE
    O16 - DPF: {55332B3B-3000-78CF-3885-5446135AD4D3} - http://85.255.113.214/1/gdnUS2339.exe
    O16 - DPF: {F58E1CEF-A068-4C15-BA5E-587CAF3EE8C6} (MSN Chat Control 4.5) - http://chat.msn.com/controls/msnchat45.cab
    O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
    O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
    O23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exe
    O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
    O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
    O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
    O23 - Service: iPodService - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
    O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\System32\HPZipm12.exe
    O23 - Service: StyleXPService - Unknown owner - C:\Program Files\TGTSoft\StyleXP\StyleXPService.exe
    O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - C:\WINDOWS\system32\ZoneLabs\vsmon.exe
     
  6. Kipsy

    Kipsy Thread Starter

    Joined:
    Jul 15, 2006
    Messages:
    37
    C:\Documents and Settings\Owner\Local Settings\Temporary Internet Files\Content.IE5\K5ZTO3N6\trustinbar[1].exe -> Adware.Azesearch : Cleaned.
    C:\Program Files\themexp\Themexp.org File\NNWDAB638.EXE -> Adware.NewDotNet : Cleaned.
    C:\WINDOWS\NDNuninstall6_38-2.exe -> Adware.NewDotNet : Cleaned.
    C:\WINDOWS\NDNuninstall7_22-1.exe -> Adware.NewDotNet : Cleaned.
    C:\Program Files\themexp\Themexp.org File\VVSNInst.exe -> Adware.SaveNow : Cleaned.
    C:\Program Files\Common Files\Sandlot Shared\slghex.dll -> Adware.SpywareStorm : Cleaned.
    HKLM\SOFTWARE\Classes\CLSID\{07A78AEA-4A54-4967-9A60-4B68592D30C7} -> Adware.TrustCleaner : Cleaned.
    HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{07A78AEA-4A54-4967-9A60-4B68592D30C7} -> Adware.TrustCleaner : Cleaned.
    C:\Documents and Settings\Owner\Local Settings\Temporary Internet Files\Content.IE5\IFBDSHA0\anti4[1].exe -> Adware.Virtumonde : Cleaned.
    C:\Documents and Settings\Owner\Local Settings\Temporary Internet Files\Content.IE5\K5ZTO3N6\ff3[1] -> Adware.Virtumonde : Cleaned.
    C:\WINDOWS\system32\fccdb.dll -> Adware.Virtumonde : Cleaned.
    C:\WINDOWS\system32\gebaxvw.dll -> Adware.Virtumonde : Cleaned.
    HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\ins -> Adware.WebRebates : Cleaned.
    C:\Documents and Settings\Owner\Local Settings\Temporary Internet Files\Content.IE5\CBC8HI62\mulbin32[1].exe -> Downloader.Small : Cleaned.
    C:\Documents and Settings\Owner\Local Settings\Temporary Internet Files\Content.IE5\XPHR1BUD\mxd[1].exe -> Downloader.Small.cwj : Cleaned.
    C:\WINDOWS\mxd.exe -> Downloader.Small.cwj : Cleaned.
    C:\Documents and Settings\Owner\Local Settings\Temporary Internet Files\Content.IE5\K5ZTO3N6\ticads[1].exe -> Downloader.Small.ddp : Cleaned.
    C:\Documents and Settings\Owner\Local Settings\Temporary Internet Files\Content.IE5\XPHR1BUD\tse[1].exe -> Downloader.Small.ddp : Cleaned.
    C:\WINDOWS\__delete_on_reboot__s_e___s_p_o_o_f_._d_l_l_ -> Downloader.Small.ddp : Cleaned.
    C:\Documents and Settings\Owner\Local Settings\Temporary Internet Files\Content.IE5\CBC8HI62\tctool[1].exe -> Downloader.WarSpy.d : Cleaned.
    C:\WINDOWS\system32\components\flx5.dll -> Not-A-Virus.Hoax.Win32.Renos.dw : Cleaned.
    :mozilla.214:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
    :mozilla.215:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
    :mozilla.216:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
    :mozilla.217:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
    :mozilla.218:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
    :mozilla.219:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
    :mozilla.220:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
    :mozilla.221:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
    :mozilla.222:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
    :mozilla.223:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
    :mozilla.224:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
    :mozilla.225:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
    :mozilla.226:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
    :mozilla.227:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
    :mozilla.228:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
    :mozilla.229:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
    :mozilla.230:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
    :mozilla.231:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
    :mozilla.232:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
    :mozilla.233:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
    :mozilla.234:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
    :mozilla.235:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
    :mozilla.236:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
    :mozilla.237:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
    :mozilla.238:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
    :mozilla.239:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
    :mozilla.240:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
    :mozilla.241:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
    :mozilla.242:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
    :mozilla.243:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
    :mozilla.244:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
    :mozilla.245:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
    :mozilla.246:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
    :mozilla.247:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
    :mozilla.248:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
    :mozilla.352:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
    :mozilla.542:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
    :mozilla.549:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
    :mozilla.550:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
    :mozilla.564:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
    :mozilla.570:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
    :mozilla.571:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
    :mozilla.588:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
    C:\Documents and Settings\Owner\Cookies\[email protected][1].txt -> TrackingCookie.2o7 : Cleaned.
    C:\Documents and Settings\Owner\Cookies\[email protected][1].txt -> TrackingCookie.2o7 : Cleaned.
    C:\Documents and Settings\Owner\Cookies\[email protected][1].txt -> TrackingCookie.2o7 : Cleaned.
    C:\Documents and Settings\Owner\Cookies\[email protected][1].txt -> TrackingCookie.2o7 : Cleaned.
    :mozilla.51:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Adbrite : Cleaned.
    :mozilla.159:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Adrevolver : Cleaned.
    :mozilla.160:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Adrevolver : Cleaned.
    :mozilla.161:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Adrevolver : Cleaned.
    :mozilla.169:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Adrevolver : Cleaned.
    :mozilla.170:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Adrevolver : Cleaned.
    :mozilla.171:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Adrevolver : Cleaned.
    :mozilla.172:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Adrevolver : Cleaned.
    :mozilla.125:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Atdmt : Cleaned.
    :mozilla.830:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Burstbeacon : Cleaned.
    :mozilla.335:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Burstnet : Cleaned.
    :mozilla.336:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Burstnet : Cleaned.
    :mozilla.337:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Burstnet : Cleaned.
    :mozilla.338:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Burstnet : Cleaned.
    :mozilla.831:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Burstnet : Cleaned.
    C:\Documents and Settings\Owner\Cookies\[email protected][2].txt -> TrackingCookie.Burstnet : Cleaned.
    :mozilla.200:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Com : Cleaned.
    :mozilla.202:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Com : Cleaned.
    :mozilla.359:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Cpvfeed : Cleaned.
    C:\Documents and Settings\Owner\Cookies\[email protected][2].txt -> TrackingCookie.Cpvfeed : Cleaned.
    :mozilla.737:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Cqcounter : Cleaned.
    :mozilla.122:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Doubleclick : Cleaned.
    :mozilla.274:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Euroclick : Cleaned.
    :mozilla.275:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Euroclick : Cleaned.
    :mozilla.276:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Euroclick : Cleaned.
    :mozilla.277:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Euroclick : Cleaned.
    C:\Documents and Settings\Owner\Cookies\[email protected][2].txt -> TrackingCookie.Euroclick : Cleaned.
    :mozilla.301:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Falkag : Cleaned.
    :mozilla.302:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Falkag : Cleaned.
    :mozilla.303:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Falkag : Cleaned.
    :mozilla.304:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Falkag : Cleaned.
    :mozilla.305:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Falkag : Cleaned.
    :mozilla.74:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Falkag : Cleaned.
    :mozilla.75:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Falkag : Cleaned.
     
  7. Kipsy

    Kipsy Thread Starter

    Joined:
    Jul 15, 2006
    Messages:
    37
    :mozilla.76:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Falkag : Cleaned.
    :mozilla.77:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Falkag : Cleaned.
    :mozilla.78:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Falkag : Cleaned.
    :mozilla.79:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Falkag : Cleaned.
    :mozilla.80:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Falkag : Cleaned.
    :mozilla.81:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Falkag : Cleaned.
    :mozilla.153:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Findwhat : Cleaned.
    :mozilla.841:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Googleadservices : Cleaned.
    :mozilla.842:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Googleadservices : Cleaned.
    :mozilla.843:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Googleadservices : Cleaned.
    :mozilla.844:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Googleadservices : Cleaned.
    :mozilla.145:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Hotlog : Cleaned.
    :mozilla.793:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Liveperson : Cleaned.
    :mozilla.794:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Liveperson : Cleaned.
    :mozilla.795:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Liveperson : Cleaned.
    :mozilla.796:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Liveperson : Cleaned.
    :mozilla.797:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Liveperson : Cleaned.
    :mozilla.798:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Liveperson : Cleaned.
    :mozilla.799:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Liveperson : Cleaned.
    :mozilla.800:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Liveperson : Cleaned.
    :mozilla.801:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Liveperson : Cleaned.
    :mozilla.696:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Ne : Cleaned.
    :mozilla.804:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Onestat : Cleaned.
    :mozilla.805:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Onestat : Cleaned.
    :mozilla.806:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Onestat : Cleaned.
    :mozilla.807:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Onestat : Cleaned.
    :mozilla.808:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Onestat : Cleaned.
    :mozilla.581:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Overture : Cleaned.
    :mozilla.582:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Overture : Cleaned.
    :mozilla.597:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Overture : Cleaned.
    :mozilla.278:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Pointroll : Cleaned.
    :mozilla.279:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Pointroll : Cleaned.
    :mozilla.280:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Pointroll : Cleaned.
    :mozilla.281:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Pointroll : Cleaned.
    :mozilla.282:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Pointroll : Cleaned.
    :mozilla.603:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Qksrv : Cleaned.
    :mozilla.604:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Qksrv : Cleaned.
    :mozilla.607:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Questionmarket : Cleaned.
    :mozilla.608:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Questionmarket : Cleaned.
    :mozilla.609:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Questionmarket : Cleaned.
    :mozilla.610:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Questionmarket : Cleaned.
    :mozilla.611:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Questionmarket : Cleaned.
    :mozilla.612:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Questionmarket : Cleaned.
    :mozilla.809:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Reliablestats : Cleaned.
    :mozilla.810:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Reliablestats : Cleaned.
    :mozilla.811:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Reliablestats : Cleaned.
    :mozilla.812:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Reliablestats : Cleaned.
    :mozilla.813:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Reliablestats : Cleaned.
    :mozilla.637:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Revenue : Cleaned.
    C:\Documents and Settings\Owner\Cookies\[email protected][1].txt -> TrackingCookie.Revenue : Cleaned.
    :mozilla.162:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Ru4 : Cleaned.
    :mozilla.163:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Ru4 : Cleaned.
    :mozilla.164:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Ru4 : Cleaned.
    :mozilla.165:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Ru4 : Cleaned.
    :mozilla.166:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Ru4 : Cleaned.
    :mozilla.167:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Ru4 : Cleaned.
    :mozilla.168:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Ru4 : Cleaned.
    :mozilla.333:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Serving-sys : Cleaned.
    :mozilla.651:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Serving-sys : Cleaned.
    :mozilla.652:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Serving-sys : Cleaned.
    :mozilla.653:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Serving-sys : Cleaned.
    :mozilla.654:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Serving-sys : Cleaned.
    :mozilla.128:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Specificclick : Cleaned.
    :mozilla.129:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Specificclick : Cleaned.
    :mozilla.141:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Specificclick : Cleaned.
    :mozilla.142:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Specificclick : Cleaned.
    :mozilla.143:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Specificclick : Cleaned.
    C:\Documents and Settings\Owner\Cookies\[email protected][2].txt -> TrackingCookie.Specificclick : Cleaned.
    :mozilla.157:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Spylog : Cleaned.
    :mozilla.100:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
    :mozilla.102:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
    :mozilla.103:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
    :mozilla.104:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
    :mozilla.106:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
    :mozilla.107:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
    :mozilla.89:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
    :mozilla.90:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
    :mozilla.91:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
    :mozilla.92:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
    :mozilla.93:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
    :mozilla.94:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
    :mozilla.95:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
    :mozilla.96:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
    :mozilla.97:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
    :mozilla.98:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
    :mozilla.99:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
    :mozilla.126:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Tacoda : Cleaned.
    :mozilla.127:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Tacoda : Cleaned.
    :mozilla.133:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Tacoda : Cleaned.
    :mozilla.134:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Tacoda : Cleaned.
    :mozilla.135:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Tacoda : Cleaned.
    :mozilla.736:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Tacoda : Cleaned.
    C:\Documents and Settings\Owner\Cookies\[email protected][1].txt -> TrackingCookie.Tacoda : Cleaned.
    C:\Documents and Settings\Owner\Cookies\[email protected][2].txt -> TrackingCookie.Tacoda : Cleaned.
    C:\Documents and Settings\Owner\Cookies\[email protected][2].txt -> TrackingCookie.Tracking101 : Cleaned.
    :mozilla.677:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Trafficmp : Cleaned.
    :mozilla.678:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Trafficmp : Cleaned.
    :mozilla.679:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Trafficmp : Cleaned.
    :mozilla.680:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Trafficmp : Cleaned.
    :mozilla.681:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Trafficmp : Cleaned.
    :mozilla.682:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Trafficmp : Cleaned.
    :mozilla.683:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Trafficmp : Cleaned.
    :mozilla.684:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Trafficmp : Cleaned.
    C:\Documents and Settings\Owner\Cookies\[email protected][2].txt -> TrackingCookie.Trafficmp : Cleaned.
    :mozilla.117:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Tribalfusion : Cleaned.
    :mozilla.118:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Tribalfusion : Cleaned.
    :mozilla.119:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Tribalfusion : Cleaned.
    :mozilla.120:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Tribalfusion : Cleaned.
    :mozilla.121:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Tribalfusion : Cleaned.
    :mozilla.630:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Valuead : Cleaned.
    :mozilla.631:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Valuead : Cleaned.
    :mozilla.632:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Valuead : Cleaned.
    :mozilla.633:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Valuead : Cleaned.
    :mozilla.634:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Valuead : Cleaned.
    :mozilla.146:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Yadro : Cleaned.
    :mozilla.178:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned.
    :mozilla.179:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned.
    :mozilla.180:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned.
    :mozilla.181:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned.
    :mozilla.182:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned.
    C:\Documents and Settings\Owner\Cookies\[email protected][2].txt -> TrackingCookie.Yieldmanager : Cleaned.
    C:\Documents and Settings\Owner\Cookies\[email protected][1].txt -> TrackingCookie.Yieldmanager : Cleaned.
    :mozilla.130:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Zedo : Cleaned.
    :mozilla.131:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Zedo : Cleaned.
    :mozilla.132:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Zedo : Cleaned.
    C:\Documents and Settings\Owner\Local Settings\Temporary Internet Files\Content.IE5\XPHR1BUD\bgates[1].exe -> Trojan.Dialer.pz : Cleaned.
    C:\Documents and Settings\Owner\Local Settings\Temporary Internet Files\Content.IE5\CBC8HI62\srvdfh[1].exe -> Trojan.Pakes : Cleaned.
    C:\Documents and Settings\Owner\Local Settings\Temporary Internet Files\Content.IE5\CBC8HI62\srvwgl[1].exe -> Trojan.Pakes : Cleaned.

    ::Report end

    Logfile of HijackThis v1.99.1
    Scan saved at 4:39:26 AM, on 7/17/2006
    Platform: Windows XP SP1 (WinNT 5.01.2600)
    MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106)

    Running processes:
    C:\WINDOWS\System32\smss.exe
    C:\WINDOWS\system32\winlogon.exe
    C:\WINDOWS\system32\services.exe
    C:\WINDOWS\system32\lsass.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\System32\svchost.exe
    C:\Program Files\TGTSoft\StyleXP\StyleXPService.exe
    C:\WINDOWS\system32\spoolsv.exe
    C:\WINDOWS\Explorer.EXE
    C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
    C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
    C:\Program Files\Common Files\Real\Update_OB\realsched.exe
    C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe
    C:\Program Files\Winamp\winampa.exe
    C:\Program Files\iTunes\iTunesHelper.exe
    C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
    C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe
    C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
    C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
    C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpotdd01.exe
    C:\WINDOWS\System32\Atievxx.exe
    C:\Program Files\Alwil Software\Avast4\ashServ.exe
    C:\Program Files\Common Files\Microsoft Shared\Works Shared\wkcalrem.exe
    C:\Program Files\Trillian\trillian.exe
    C:\Program Files\ewido anti-spyware 4.0\guard.exe
    C:\WINDOWS\System32\svchost.exe
    C:\WINDOWS\system32\ZoneLabs\vsmon.exe
    C:\Program Files\iPod\bin\iPodService.exe
    C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
    C:\WINDOWS\System32\wuauclt.exe
    C:\Program Files\Hijackthis\HijackThis.exe

    R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Microsoft Internet Explorer provided by Comcast
    R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = 127.0.0.1
    O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\System32\msdxm.ocx
    O4 - HKLM\..\Run: [IMJPMIG8.1] "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32
    O4 - HKLM\..\Run: [PHIME2002ASync] C:\WINDOWS\System32\IME\TINTLGNT\TINTSETP.EXE /SYNC
    O4 - HKLM\..\Run: [PHIME2002A] C:\WINDOWS\System32\IME\TINTLGNT\TINTSETP.EXE /IMEName
    O4 - HKLM\..\Run: [tgcmd] "C:\Program Files\support.com\bin\tgcmd.exe" /server
    O4 - HKLM\..\Run: [Zone Labs Client] C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
    O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
    O4 - HKLM\..\Run: [eDonkey2000] "C:\Program Files\eDonkey2000\edonkey2000.exe" -t
    O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
    O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
    O4 - HKLM\..\Run: [RemoteControl] "C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe"
    O4 - HKLM\..\Run: [WinampAgent] C:\Program Files\Winamp\winampa.exe
    O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
    O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
    O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
    O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
    O4 - HKCU\..\Run: [Yahoo! Pager] "C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe" -quiet
    O4 - HKCU\..\Run: [STYLEXP] C:\Program Files\TGTSoft\StyleXP\StyleXP.exe -Hide
    O4 - HKCU\..\Run: [PicoZip] C:\Program Files\PicoZip\PicoZipTray.exe
    O4 - Startup: Adobe Gamma.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
    O4 - Startup: Trillian.lnk = C:\Program Files\Trillian\trillian.exe
    O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
    O4 - Global Startup: hp psc 1000 series.lnk = ?
    O4 - Global Startup: hpoddt01.exe.lnk = ?
    O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE
    O4 - Global Startup: Microsoft Works Calendar Reminders.lnk = ?
    O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
    O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
    O9 - Extra button: ComcastHSI - {669B269B-0D4E-41FB-A3D8-FD67CA94F646} - http://www.comcast.net/ (file missing)
    O9 - Extra button: Support - {8828075D-D097-4055-AA02-2DBFA9D85E8A} - http://www.comcastsupport.com/ (file missing)
    O9 - Extra button: Help - {97809617-3937-4F84-B335-9BB05EF1A8D4} - http://online.comcast.net/help/ (file missing)
    O9 - Extra button: Yahoo! Messenger - {E5D12C4E-7B4F-11D3-B5C9-0050045C3C96} - C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe
    O9 - Extra 'Tools' menuitem: Yahoo! Messenger - {E5D12C4E-7B4F-11D3-B5C9-0050045C3C96} - C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe
    O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\MSMSGS.EXE
    O9 - Extra 'Tools' menuitem: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\MSMSGS.EXE
    O16 - DPF: {55332B3B-3000-78CF-3885-5446135AD4D3} - http://85.255.113.214/1/gdnUS2339.exe
    O16 - DPF: {F58E1CEF-A068-4C15-BA5E-587CAF3EE8C6} (MSN Chat Control 4.5) - http://chat.msn.com/controls/msnchat45.cab
    O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
    O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
    O23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exe
    O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
    O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
    O23 - Service: ewido anti-spyware 4.0 guard - Anti-Malware Development a.s. - C:\Program Files\ewido anti-spyware 4.0\guard.exe
    O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
    O23 - Service: iPodService - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
    O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\System32\HPZipm12.exe
    O23 - Service: StyleXPService - Unknown owner - C:\Program Files\TGTSoft\StyleXP\StyleXPService.exe
    O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - C:\WINDOWS\system32\ZoneLabs\vsmon.exe
     
  8. Kipsy

    Kipsy Thread Starter

    Joined:
    Jul 15, 2006
    Messages:
    37
    Bump. Someone please help me with this, the problem has not gone away.
     
  9. Kipsy

    Kipsy Thread Starter

    Joined:
    Jul 15, 2006
    Messages:
    37
    Bump again. Please T_T
     
  10. MFDnNC

    MFDnNC

    Joined:
    Sep 7, 2004
    Messages:
    49,014
    In firefox - TOOLS - OPTIONS - PRIVACY - COOKIES - Check originating site only

    You may want to print this or save it to notepad as we will go to safe mode.

    Add remove programs – remove Edonkey

    Fix these with HJT – mark them, close IE, click fix checked

    O4 - HKLM\..\Run: [eDonkey2000] "C:\Program Files\eDonkey2000\edonkey2000.exe" –t

    O16 - DPF: {55332B3B-3000-78CF-3885-5446135AD4D3} - http://85.255.113.214/1/gdnUS2339.exe


    DownLoad http://www.downloads.subratam.org/KillBox.zip

    Restart your computer into safe mode now. (Tapping F8 at the first black screen) Perform the following steps in safe mode:

    Double-click on Killbox.exe to run it. Now put a tick by Standard File Kill. In the "Full Path of File to Delete" box, copy and paste each of the following lines one at a time then click on the button that has the red circle with the X in the middle after you enter each file. It will ask for confimation to delete the file. Click Yes. Continue with that same procedure until you have copied and pasted all of these in the "Paste Full Path of File to Delete" box.

    C:\Program Files\eDonkey2000

    Note: It is possible that Killbox will tell you that one or more files do not exist. If that happens, just continue on with all the files. Be sure you don't miss any.

    START – RUN – type in %temp% - OK - Edit – Select all – File – Delete

    Delete everything in the C:\Windows\Temp folder or C:\WINNT\temp

    Not all temp files will delete and that is normal
    Empty the recycle bin
    Boot and post a new log from normal NOT safe mode

    Please give feedback on what worked/didn’t work and the current status of your system
     
  11. Kipsy

    Kipsy Thread Starter

    Joined:
    Jul 15, 2006
    Messages:
    37
    Logfile of HijackThis v1.99.1
    Scan saved at 10:34:09 PM, on 7/17/2006
    Platform: Windows XP SP1 (WinNT 5.01.2600)
    MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106)

    Running processes:
    C:\WINDOWS\System32\smss.exe
    C:\WINDOWS\system32\winlogon.exe
    C:\WINDOWS\system32\services.exe
    C:\WINDOWS\system32\lsass.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\System32\svchost.exe
    C:\Program Files\TGTSoft\StyleXP\StyleXPService.exe
    C:\WINDOWS\system32\spoolsv.exe
    C:\WINDOWS\Explorer.EXE
    C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
    C:\Program Files\Common Files\Real\Update_OB\realsched.exe
    C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe
    C:\Program Files\Winamp\winampa.exe
    C:\Program Files\iTunes\iTunesHelper.exe
    C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
    C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
    C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe
    C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
    C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpotdd01.exe
    C:\Program Files\Common Files\Microsoft Shared\Works Shared\wkcalrem.exe
    C:\Program Files\Trillian\trillian.exe
    C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
    C:\WINDOWS\System32\Atievxx.exe
    C:\Program Files\Alwil Software\Avast4\ashServ.exe
    C:\Program Files\ewido anti-spyware 4.0\guard.exe
    C:\WINDOWS\System32\svchost.exe
    C:\WINDOWS\system32\ZoneLabs\vsmon.exe
    C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
    C:\Program Files\iPod\bin\iPodService.exe
    C:\WINDOWS\System32\wuauclt.exe
    C:\Program Files\Hijackthis\HijackThis.exe

    R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Microsoft Internet Explorer provided by Comcast
    R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = 127.0.0.1
    O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
    O2 - BHO: ChangerBHO Class - {0D4C7057-EAD2-44C6-AD18-9092905F28F1} - C:\WINDOWS\system32\advpacks.dll
    O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
    O2 - BHO: (no name) - {873eb32d-ae1a-4183-89bd-45a77f761be4} - C:\WINDOWS\System32\ixt1.dll (file missing)
    O2 - BHO: (no name) - {BD5152C9-AB5B-4A66-A08C-4BF3A9C0F965} - C:\WINDOWS\System32\fccdb.dll
    O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\System32\msdxm.ocx
    O4 - HKLM\..\Run: [IMJPMIG8.1] "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32
    O4 - HKLM\..\Run: [PHIME2002ASync] C:\WINDOWS\System32\IME\TINTLGNT\TINTSETP.EXE /SYNC
    O4 - HKLM\..\Run: [PHIME2002A] C:\WINDOWS\System32\IME\TINTLGNT\TINTSETP.EXE /IMEName
    O4 - HKLM\..\Run: [tgcmd] "C:\Program Files\support.com\bin\tgcmd.exe" /server
    O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
    O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
    O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
    O4 - HKLM\..\Run: [RemoteControl] "C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe"
    O4 - HKLM\..\Run: [WinampAgent] C:\Program Files\Winamp\winampa.exe
    O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
    O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
    O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
    O4 - HKLM\..\Run: [Zone Labs Client] "C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe"
    O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
    O4 - HKCU\..\Run: [Yahoo! Pager] "C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe" -quiet
    O4 - HKCU\..\Run: [STYLEXP] C:\Program Files\TGTSoft\StyleXP\StyleXP.exe -Hide
    O4 - HKCU\..\Run: [PicoZip] C:\Program Files\PicoZip\PicoZipTray.exe
    O4 - Startup: Adobe Gamma.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
    O4 - Startup: Trillian.lnk = C:\Program Files\Trillian\trillian.exe
    O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
    O4 - Global Startup: hp psc 1000 series.lnk = ?
    O4 - Global Startup: hpoddt01.exe.lnk = ?
    O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE
    O4 - Global Startup: Microsoft Works Calendar Reminders.lnk = ?
    O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
    O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
    O9 - Extra button: ComcastHSI - {669B269B-0D4E-41FB-A3D8-FD67CA94F646} - http://www.comcast.net/ (file missing)
    O9 - Extra button: Support - {8828075D-D097-4055-AA02-2DBFA9D85E8A} - http://www.comcastsupport.com/ (file missing)
    O9 - Extra button: Help - {97809617-3937-4F84-B335-9BB05EF1A8D4} - http://online.comcast.net/help/ (file missing)
    O9 - Extra button: Yahoo! Messenger - {E5D12C4E-7B4F-11D3-B5C9-0050045C3C96} - C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe
    O9 - Extra 'Tools' menuitem: Yahoo! Messenger - {E5D12C4E-7B4F-11D3-B5C9-0050045C3C96} - C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe
    O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\MSMSGS.EXE
    O9 - Extra 'Tools' menuitem: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\MSMSGS.EXE
    O16 - DPF: {F58E1CEF-A068-4C15-BA5E-587CAF3EE8C6} (MSN Chat Control 4.5) - http://chat.msn.com/controls/msnchat45.cab
    O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
    O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
    O23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exe
    O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
    O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
    O23 - Service: ewido anti-spyware 4.0 guard - Anti-Malware Development a.s. - C:\Program Files\ewido anti-spyware 4.0\guard.exe
    O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
    O23 - Service: iPodService - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
    O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\System32\HPZipm12.exe
    O23 - Service: StyleXPService - Unknown owner - C:\Program Files\TGTSoft\StyleXP\StyleXPService.exe
    O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - C:\WINDOWS\system32\ZoneLabs\vsmon.exe



    The computer is running slightly faster, and I have yet to see another win tmp.exe file, however it took nearly five minutes to start up yahoo messanger, and it's still rather slow loading.

    I'll tell you if the win tmp.exe pops up again.

    Edit: I wanted to thank you for your patience and clarity of instructions. I'm not a complete beginner at PC's, but I've got a lot to learn.
     
  12. MFDnNC

    MFDnNC

    Joined:
    Sep 7, 2004
    Messages:
    49,014
    You have some new stuff

    Please download SmitfraudFix (by S!Ri)
    Extract the content (a folder named SmitfraudFix) to your Desktop.

    Open the SmitfraudFix folder and double-click smitfraudfix.cmd
    Select option #1 - Search by typing 1 and press "Enter"; a text file will appear, which lists infected files (if present). We’ll get them next step.
    Please copy/paste the content of that report into your next reply.

    Note : process.exe is detected by some antivirus programs (AntiVir, Dr.Web, Kaspersky) as a "RiskTool"; it is not a virus, but a program used to stop system processes. Antivirus programs cannot distinguish between "good" and "malicious" use of such programs, therefore they may alert the user.
    http://www.beyondlogic.org/consulting/proc...processutil.htm
    =========================

    http://www.atribune.org/ccount/click.php?id=7 to download Look2Me-Destroyer.exe and save it to your desktop.
    · Close all windows before continuing.
    · Double-click Look2Me-Destroyer.exe to run it.
    · click the Scan for L2M button, your desktop icons will disappear, this is normal.
    · Once it's done scanning, click the Remove L2M button.
    · You will receive a Done Scanning message, click OK.
    · When completed, you will receive this message: Done removing infected files! Look2Me-Destroyer will now shutdown your computer, click OK.
    · Your computer will then shutdown.
    · Turn your computer back on.
    · Please post the contents of C:\Look2Me-Destroyer.txt and a new HiJackThis log.
    If Look2Me-Destroyer does not reopen automatically, reboot and try again.

    If you receive a message from your firewall about this program accessing the internet please allow it.

    If you receive a runtime error '339' please download MSWINSCK.OCX from the link below and place it in your C:\Windows\System32 Directory.

    http://www.ascentive.com/support/new/images/lib/MSWINSCK.OCX
    ================
    Run Ewido again

    post the logs and a new hijack log
     
  13. Kipsy

    Kipsy Thread Starter

    Joined:
    Jul 15, 2006
    Messages:
    37
    I managed to lose the Look2Me-Destoyer.txt along the way, but it was empty just like the Smitfraudfix...I fixed the win##.tmp.exe problem on my own, but I still appear to be having some issues. The win##.tmp.exe alerts have stopped, but I just got a pop-up a bit ago >_<

    SmitFraudFix v2.73

    Scan done at 15:23:23.12, Tue 07/18/2006
    Run from C:\Documents and Settings\Owner\Desktop\SmitfraudFix
    OS: Microsoft Windows XP [Version 5.1.2600] - Windows_NT
    Fix ran in normal mode

    »»»»»»»»»»»»»»»»»»»»»»»» C:\


    »»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS


    »»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS\system


    »»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS\Web


    »»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS\system32


    »»»»»»»»»»»»»»»»»»»»»»»» C:\Documents and Settings\Owner\Application Data


    »»»»»»»»»»»»»»»»»»»»»»»» Start Menu


    »»»»»»»»»»»»»»»»»»»»»»»» C:\DOCUME~1\Owner\FAVORI~1


    »»»»»»»»»»»»»»»»»»»»»»»» Desktop


    »»»»»»»»»»»»»»»»»»»»»»»» C:\Program Files


    »»»»»»»»»»»»»»»»»»»»»»»» Corrupted keys


    »»»»»»»»»»»»»»»»»»»»»»»» Desktop Components



    »»»»»»»»»»»»»»»»»»»»»»»» Sharedtaskscheduler
    !!!Attention, following keys are not inevitably infected!!!

    SrchSTS.exe by S!Ri
    Search SharedTaskScheduler's .dll

    »»»»»»»»»»»»»»»»»»»»»»»» Scanning wininet.dll infection


    »»»»»»»»»»»»»»»»»»»»»»»» End

    Look2Me looked similar, no files deleted or found, I did run it to delete anyway per your instructions though.

    ---------------------------------------------------------
    ewido anti-spyware - Scan Report
    ---------------------------------------------------------

    + Created at: 6:45:31 PM 7/18/2006

    + Scan result:



    C:\WINDOWS\system32\fccdb.dll -> Adware.Virtumonde : Cleaned.
    C:\WINDOWS\__delete_on_reboot__s_e___s_p_o_o_f_._d_l_l_ -> Downloader.Small.ddp : Cleaned.
    :mozilla.208:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
    :mozilla.209:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
    :mozilla.510:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
    :mozilla.516:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
    :mozilla.517:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
    :mozilla.529:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
    :mozilla.534:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
    :mozilla.535:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
    :mozilla.548:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
    :mozilla.293:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Adrevolver : Cleaned.
    :mozilla.294:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Adrevolver : Cleaned.
    :mozilla.129:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
    :mozilla.130:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
    :mozilla.131:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
    :mozilla.132:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
    :mozilla.85:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Atdmt : Cleaned.
    :mozilla.207:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Burstbeacon : Cleaned.
    :mozilla.159:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Burstnet : Cleaned.
    :mozilla.160:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Burstnet : Cleaned.
    :mozilla.161:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Burstnet : Cleaned.
    :mozilla.264:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned.
    :mozilla.308:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Com : Cleaned.
    :mozilla.94:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Cpvfeed : Cleaned.
    :mozilla.652:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Cqcounter : Cleaned.
    :mozilla.143:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Doubleclick : Cleaned.
    :mozilla.101:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Falkag : Cleaned.
    :mozilla.103:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Falkag : Cleaned.
    :mozilla.105:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Falkag : Cleaned.
    :mozilla.278:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Falkag : Cleaned.
    :mozilla.279:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Falkag : Cleaned.
    :mozilla.280:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Falkag : Cleaned.
    :mozilla.97:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Falkag : Cleaned.
    :mozilla.265:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Fastclick : Cleaned.
    :mozilla.266:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Fastclick : Cleaned.
    :mozilla.292:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Findwhat : Cleaned.
    :mozilla.715:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Googleadservices : Cleaned.
    :mozilla.716:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Googleadservices : Cleaned.
    :mozilla.286:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Hotlog : Cleaned.
    :mozilla.693:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Liveperson : Cleaned.
    :mozilla.694:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Liveperson : Cleaned.
    :mozilla.84:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Mediaplex : Cleaned.
    :mozilla.619:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Ne : Cleaned.
    :mozilla.695:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Onestat : Cleaned.
    :mozilla.696:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Onestat : Cleaned.
    :mozilla.543:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Overture : Cleaned.
    :mozilla.544:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Overture : Cleaned.
    :mozilla.553:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Overture : Cleaned.
    :mozilla.80:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Pointroll : Cleaned.
    :mozilla.81:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Pointroll : Cleaned.
    :mozilla.82:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Pointroll : Cleaned.
    :mozilla.83:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Pointroll : Cleaned.
    :mozilla.557:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Qksrv : Cleaned.
    :mozilla.558:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Qksrv : Cleaned.
    :mozilla.204:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Questionmarket : Cleaned.
    :mozilla.205:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Questionmarket : Cleaned.
    :mozilla.206:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Questionmarket : Cleaned.
    :mozilla.575:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Revenue : Cleaned.
    :mozilla.117:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Serving-sys : Cleaned.
    :mozilla.118:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Serving-sys : Cleaned.
    :mozilla.119:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Serving-sys : Cleaned.
    :mozilla.120:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Serving-sys : Cleaned.
    :mozilla.121:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Serving-sys : Cleaned.
    :mozilla.285:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Specificclick : Cleaned.
    :mozilla.175:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
    :mozilla.176:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
    :mozilla.177:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
    :mozilla.178:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
    :mozilla.179:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
    :mozilla.180:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
    :mozilla.181:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
    :mozilla.182:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
    :mozilla.183:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
    :mozilla.184:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
    :mozilla.185:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
    :mozilla.186:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
    :mozilla.187:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
    :mozilla.188:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
    :mozilla.189:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
    :mozilla.190:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
    :mozilla.191:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
    :mozilla.128:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Tacoda : Cleaned.
    :mozilla.133:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Tacoda : Cleaned.
    :mozilla.134:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Tacoda : Cleaned.
    :mozilla.135:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Tacoda : Cleaned.
    :mozilla.144:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Tacoda : Cleaned.
    :mozilla.608:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Trafficmp : Cleaned.
    :mozilla.609:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Trafficmp : Cleaned.
    :mozilla.141:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Tribalfusion : Cleaned.
    :mozilla.142:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Tribalfusion : Cleaned.
    :mozilla.573:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Valuead : Cleaned.
    :mozilla.574:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Valuead : Cleaned.
    :mozilla.287:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Yadro : Cleaned.
    :mozilla.296:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned.
    :mozilla.297:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned.
    :mozilla.145:C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\mc876lof.default\cookies.txt -> TrackingCookie.Zedo : Cleaned.
    C:\Documents and Settings\Owner\Local Settings\Temporary Internet Files\Content.IE5\JE34NUV2\bgates[1].exe -> Trojan.Dialer.pz : Cleaned.


    ::Report end

    Logfile of HijackThis v1.99.1
    Scan saved at 6:46:01 PM, on 7/18/2006
    Platform: Windows XP SP1 (WinNT 5.01.2600)
    MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106)

    Running processes:
    C:\WINDOWS\System32\smss.exe
    C:\WINDOWS\system32\winlogon.exe
    C:\WINDOWS\system32\services.exe
    C:\WINDOWS\system32\lsass.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\System32\svchost.exe
    C:\Program Files\TGTSoft\StyleXP\StyleXPService.exe
    C:\WINDOWS\system32\spoolsv.exe
    C:\WINDOWS\Explorer.EXE
    C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
    C:\Program Files\Common Files\Real\Update_OB\realsched.exe
    C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe
    C:\Program Files\Winamp\winampa.exe
    C:\Program Files\iTunes\iTunesHelper.exe
    C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
    C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
    C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe
    C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
    C:\WINDOWS\System32\Atievxx.exe
    C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpotdd01.exe
    C:\Program Files\Common Files\Microsoft Shared\Works Shared\wkcalrem.exe
    C:\Program Files\Alwil Software\Avast4\ashServ.exe
    C:\Program Files\Trillian\trillian.exe
    C:\WINDOWS\System32\svchost.exe
    C:\WINDOWS\system32\ZoneLabs\vsmon.exe
    C:\Program Files\iPod\bin\iPodService.exe
    C:\PROGRA~1\Yahoo!\MESSEN~1\YServer.exe
    C:\Program Files\Mozilla Firefox\firefox.exe
    C:\WINDOWS\system32\NOTEPAD.EXE
    C:\Program Files\Hijackthis\HijackThis.exe

    R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Microsoft Internet Explorer provided by Comcast
    R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = 127.0.0.1
    O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\System32\msdxm.ocx
    O4 - HKLM\..\Run: [IMJPMIG8.1] "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32
    O4 - HKLM\..\Run: [PHIME2002ASync] C:\WINDOWS\System32\IME\TINTLGNT\TINTSETP.EXE /SYNC
    O4 - HKLM\..\Run: [PHIME2002A] C:\WINDOWS\System32\IME\TINTLGNT\TINTSETP.EXE /IMEName
    O4 - HKLM\..\Run: [tgcmd] "C:\Program Files\support.com\bin\tgcmd.exe" /server
    O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
    O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
    O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
    O4 - HKLM\..\Run: [RemoteControl] "C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe"
    O4 - HKLM\..\Run: [WinampAgent] C:\Program Files\Winamp\winampa.exe
    O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
    O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
    O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
    O4 - HKLM\..\Run: [Zone Labs Client] "C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe"
    O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
    O4 - HKCU\..\Run: [Yahoo! Pager] "C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe" -quiet
    O4 - HKCU\..\Run: [STYLEXP] C:\Program Files\TGTSoft\StyleXP\StyleXP.exe -Hide
    O4 - HKCU\..\Run: [PicoZip] C:\Program Files\PicoZip\PicoZipTray.exe
    O4 - Startup: Adobe Gamma.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
    O4 - Startup: Trillian.lnk = C:\Program Files\Trillian\trillian.exe
    O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
    O4 - Global Startup: hp psc 1000 series.lnk = ?
    O4 - Global Startup: hpoddt01.exe.lnk = ?
    O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE
    O4 - Global Startup: Microsoft Works Calendar Reminders.lnk = ?
    O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
    O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
    O9 - Extra button: ComcastHSI - {669B269B-0D4E-41FB-A3D8-FD67CA94F646} - http://www.comcast.net/ (file missing)
    O9 - Extra button: Support - {8828075D-D097-4055-AA02-2DBFA9D85E8A} - http://www.comcastsupport.com/ (file missing)
    O9 - Extra button: Help - {97809617-3937-4F84-B335-9BB05EF1A8D4} - http://online.comcast.net/help/ (file missing)
    O9 - Extra button: Yahoo! Messenger - {E5D12C4E-7B4F-11D3-B5C9-0050045C3C96} - C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe
    O9 - Extra 'Tools' menuitem: Yahoo! Messenger - {E5D12C4E-7B4F-11D3-B5C9-0050045C3C96} - C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe
    O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\MSMSGS.EXE
    O9 - Extra 'Tools' menuitem: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\MSMSGS.EXE
    O16 - DPF: {F58E1CEF-A068-4C15-BA5E-587CAF3EE8C6} (MSN Chat Control 4.5) - http://chat.msn.com/controls/msnchat45.cab
    O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
    O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
    O23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exe
    O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
    O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
    O23 - Service: ewido anti-spyware 4.0 guard - Anti-Malware Development a.s. - C:\Program Files\ewido anti-spyware 4.0\guard.exe
    O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
    O23 - Service: iPodService - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
    O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\System32\HPZipm12.exe
    O23 - Service: StyleXPService - Unknown owner - C:\Program Files\TGTSoft\StyleXP\StyleXPService.exe
    O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - C:\WINDOWS\system32\ZoneLabs\vsmon.exe

    Thanks for your continuing help...
     
  14. MFDnNC

    MFDnNC

    Joined:
    Sep 7, 2004
    Messages:
    49,014
  15. Kipsy

    Kipsy Thread Starter

    Joined:
    Jul 15, 2006
    Messages:
    37
    I got a pop-up or two, but nothing like before. And one of them was from a site that I know has a pop-up ad that works around firefox. Thank you very much for your help. It seems everything is working properly now.
     
  16. Sponsor

As Seen On
As Seen On...

Welcome to Tech Support Guy!

Are you looking for the solution to your computer problem? Join our site today to ask your question. This site is completely free -- paid for by advertisers and donations.

If you're not already familiar with forums, watch our Welcome Guide to get started.

Join over 733,556 other people just like you!

Thread Status:
Not open for further replies.

Short URL to this thread: https://techguy.org/483722

  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.
    Dismiss Notice