Adware: winsyban5.exe?

Computing.Net > Forums > Security and Virus > Adware: winsyban5.exe?

Computer Problems? Computing.Net has over 1,000,000 posts about all things technology related! Over 90% answered within 24 hours! Click here to start participating now! Also, be sure to check out the New User Guide.

Adware: winsyban5.exe?

Name: DJ_Kaos
Date: February 5, 2006 at 03:09:07 Pacific
OS: XP
CPU/Ram: 1.2

Comment:

I have searched for "winsyban5.exe" on Google but not one site was found with the containing text. So I am assuming nobody has anything on this .exe I have found running as a process on my computer. Perhaps one of you know what it is?
Life, is like a cookie.

Sponsored Link

Ads by Google

Response Number 1

Name: Bob (by BigBob)
Date: February 5, 2006 at 03:34:36 Pacific

Reply:

It comes up empty , but there are lots for "winy.exe"
Have you tried running Spybot Search & destroy and also Ewido Anti-Malware
" It'll Get Ya When You Aint Lookin "
Please Post back to let us know if we helped

Response Number 2

Name: jabuck
Date: February 5, 2006 at 03:42:29 Pacific

Reply:

Please post a Hijack This log so that the files associated with the virus/spyware/hijacker can be identified. You can download Hijack This at this link http://www.tomcoyote.org/hjt/ then place it into a folder of it's on, such as C:\HJT, so that back up copies can be made and not clutter your desktop or other folders and the backup copies of deleted items can be easily located if needed.
Once saved double click HijackThis.exe, and press "Scan". When the scan is finished, the "Scan" button will change into a "Save Log" button.
Press that, save the log, Ctrl-A to Select All, and copy its contents into the text editor at this forum.
Do not fix anything yet unless you know what you are doing. This is a powerful tool that can crash the computer if used improperly.

Response Number 3

Name: DJ_Kaos
Date: February 5, 2006 at 12:49:36 Pacific

Reply:

I have used Spyware doctor and that has not picked it up. Spybot search and destroy, I'll try because I get mad pop-ups all the time now. I already got rid of a Jarmd.dll which was much fun. And I have used HijackThis but nothing comes up on the winsyban5.exe.
Here it is:
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\cisvc.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\wdfmgr.exe
C:\WINDOWS\System32\alg.exe
C:\WINDOWS\Explorer.exe
C:\Program Files\Logitech\iTouch\iTouch.exe
C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
C:\WINDOWS\system32\Rundll32.exe
C:\WINDOWS\system32\RUNDLL32.exe
C:\windows\winsysban5.exe
C:\PROGRA~1\BILLPS~1\WINPAT~1\winpatrol.exe
C:\Program Files\Logitech\SetPoint\SetPoint.exe
C:\Program Files\Spyware Doctor\swdoctor.exe
C:\Program Files\Windows Media Player\wmplayer.exe
C:\WINDOWS\system32\cidaemon.exe
C:\Program Files\Internet Explorer\IEXPLORE.exe
C:\Documents and Settings\sxlNiGhTmArEl\My Documents\My Received Files\HijackThis.exe
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://yahoo.sbc.com/dsl
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://yahoo.sbc.com/dsl
R3 - Default URLSearchHook is missing
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O3 - Toolbar: &Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O4 - HKLM\..\Run: [LiveMonitor] C:\Program Files\MSI\Live Update 3\LMonitor.exe
O4 - HKLM\..\Run: [zBrowser Launcher] C:\Program Files\Logitech\iTouch\iTouch.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
O4 - HKLM\..\Run: [P17Helper] Rundll32 P17.dll,P17Helper
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.exe C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.exe C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [ymetray] "C:\Program Files\Yahoo!\Yahoo! Music Engine\ymetray.exe"
O4 - HKLM\..\Run: [0wso0fis.dll] RUNDLL32.exe 0wso0fis.dll,b 1308561
O4 - HKLM\..\Run: [NewFrn] C:\WINDOWS\newfrn.exe
O4 - HKLM\..\Run: [winsysban] C:\windows\winsysban5.exe
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [WinPatrol] C:\PROGRA~1\BILLPS~1\WINPAT~1\winpatrol.exe
O4 - HKCU\..\Run: [googletalk] "C:\Program Files\Google\Google Talk\googletalk.exe" /autostart
O4 - HKCU\..\Run: [AIM] C:\Program Files\AIM\aim.exe -cnetwait.odl
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Common Files\Ahead\lib\NMBgMonitor.exe"
O4 - HKCU\..\Run: [CU1] C:\Program Files\Common Files\VCClient\VCClient.exe
O4 - HKCU\..\Run: [CU2] C:\Program Files\Common Files\VCClient\VCMain.exe
O4 - HKCU\..\Run: [ffom] C:\PROGRA~1\COMMON~1\ffom\ffomm.exe
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: Logitech SetPoint.lnk = C:\Program Files\Logitech\SetPoint\SetPoint.exe
O8 - Extra context menu item: &Google Search - res://C:\Program Files\Google\GoogleToolbar1.dll/cmsearch.html
O8 - Extra context menu item: &Translate English Word - res://C:\Program Files\Google\GoogleToolbar1.dll/cmwordtrans.html
O8 - Extra context menu item: Backward Links - res://C:\Program Files\Google\GoogleToolbar1.dll/cmbacklinks.html
O8 - Extra context menu item: Cached Snapshot of Page - res://C:\Program Files\Google\GoogleToolbar1.dll/cmcache.html
O8 - Extra context menu item: Similar Pages - res://C:\Program Files\Google\GoogleToolbar1.dll/cmsimilar.html
O8 - Extra context menu item: Translate Page into English - res://C:\Program Files\Google\GoogleToolbar1.dll/cmtrans.html
O9 - Extra button: AIM - {AC9E2541-2814-11d5-BC6D-00B0D0A1DE45} - C:\Program Files\AIM\aim.exe
O9 - Extra button: Yahoo! Messenger - {E5D12C4E-7B4F-11D3-B5C9-0050045C3C96} - C:\PROGRA~1\Yahoo!\MESSEN~1\YPager.exe
O9 - Extra 'Tools' menuitem: Yahoo! Messenger - {E5D12C4E-7B4F-11D3-B5C9-0050045C3C96} - C:\PROGRA~1\Yahoo!\MESSEN~1\YPager.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/MsnMessengerSetupDownloader.cab
O16 - DPF: {B8A23E08-0B26-4348-AA96-33395A51DDD9} (CantocheLivingActor Class) - file://C:\Documents and Settings\sxlNiGhTmArEl\Local Settings\Temp\rd135.tmp\livingActor.exe
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)
O23 - Service: Adobe LM Service - Unknown owner - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iPodService - Unknown owner - C:\Program Files\iPod\bin\iPodService.exe (file missing)
O23 - Service: Network Monitor - Unknown owner - C:\Program Files\Network Monitor\netmon.exe (file missing)
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe

Life, is like a cookie.

Response Number 4

Name: jabuck
Date: February 5, 2006 at 13:49:55 Pacific

Reply:

Run Ht again,close all windows and browsers except HT,place a check in the box to the left of the following items and press "fix checked":
R3 - Default URLSearchHook is missing
O4 - HKLM\..\Run: [0wso0fis.dll] RUNDLL32.exe 0wso0fis.dll,b 1308561
O4 - HKLM\..\Run: [NewFrn] C:\WINDOWS\newfrn.exe
O4 - HKLM\..\Run: [winsysban] C:\windows\winsysban5.exe
O4 - HKCU\..\Run: [ffom] C:\PROGRA~1\COMMON~1\ffom\ffomm.exe
O16 - DPF: {B8A23E08-0B26-4348-AA96-33395A51DDD9} (CantocheLivingActor Class) - file://C:\Documents and Settings\sxlNiGhTmArEl\Local Settings\Temp\rd135.tmp\livingActor.exe
O23 - Service: iPodService - Unknown owner - C:\Program Files\iPod\bin\iPodService.exe (file missing)
O23 - Service: Network Monitor - Unknown owner - C:\Program Files\Network Monitor\netmon.exe (file missing)
Next reboot the computer into safe mode by following the directions at this link if you need them safe mode
Set up the computer to view hidden files by going to start>control panel>folder options>view tab>tick the circle beside "show hidden files and folders" and untick the box beside "hide extensions of known file types" and "hide protected system operating files">apply>ok.
Navigate to and delete these files if found:
C:\WINDOWS\0wso0fis.dll
C:\WINDOWS\System32\0wso0fis.dll
C:\Program Files\0wso0fis.dll
Do a manual search for 0wso0fis.dll and delete all instances
C:\WINDOWS\newfrn.exe
C:\windows\winsysban5.exe
I'm almost certain this is a virus if you don't know what it is, delete it
C:\Program Files\Common Files\ffom (Folder)
Reboot the computer, download Ewido Security Suite then set it up this way Ewido Setup Instructions reboot into Safe Mode and run Ewido
When the scan has completed, Ewido will create a report.txt file. Click the "Save Report" button on the bottom of the screen and save the log to your desktop.
Please reboot into normal mode and post the ewido log and a new HT log.

Response Number 5

Name: DJ_Kaos
Date: February 5, 2006 at 21:19:48 Pacific

Reply:

ewido anti-malware - Scan report

+ Created on: 9:10:23 PM, 2/5/2006
+ Report-Checksum: DCB6BBE7
+ Scan result:
HKU\S-1-5-21-1708537768-1202660629-1060284298-1004\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{4A2AACF3-ADF6-11D5-98A9-00E018981B9E} -> Spyware.NewDotNet : Cleaned with backup
:mozilla.11:C:\Documents and Settings\sxlNiGhTmArEl\Application Data\Mozilla\Firefox\Profiles\8n3xjvul.default\cookies.txt -> Spyware.Cookie.Serving-sys : Cleaned with backup
:mozilla.12:C:\Documents and Settings\sxlNiGhTmArEl\Application Data\Mozilla\Firefox\Profiles\8n3xjvul.default\cookies.txt -> Spyware.Cookie.Serving-sys : Cleaned with backup
:mozilla.13:C:\Documents and Settings\sxlNiGhTmArEl\Application Data\Mozilla\Firefox\Profiles\8n3xjvul.default\cookies.txt -> Spyware.Cookie.Serving-sys : Cleaned with backup
:mozilla.14:C:\Documents and Settings\sxlNiGhTmArEl\Application Data\Mozilla\Firefox\Profiles\8n3xjvul.default\cookies.txt -> Spyware.Cookie.Serving-sys : Cleaned with backup
:mozilla.18:C:\Documents and Settings\sxlNiGhTmArEl\Application Data\Mozilla\Firefox\Profiles\8n3xjvul.default\cookies.txt -> Spyware.Cookie.Advertising : Cleaned with backup
:mozilla.19:C:\Documents and Settings\sxlNiGhTmArEl\Application Data\Mozilla\Firefox\Profiles\8n3xjvul.default\cookies.txt -> Spyware.Cookie.Advertising : Cleaned with backup
:mozilla.20:C:\Documents and Settings\sxlNiGhTmArEl\Application Data\Mozilla\Firefox\Profiles\8n3xjvul.default\cookies.txt -> Spyware.Cookie.Advertising : Cleaned with backup
:mozilla.21:C:\Documents and Settings\sxlNiGhTmArEl\Application Data\Mozilla\Firefox\Profiles\8n3xjvul.default\cookies.txt -> Spyware.Cookie.Advertising : Cleaned with backup
:mozilla.22:C:\Documents and Settings\sxlNiGhTmArEl\Application Data\Mozilla\Firefox\Profiles\8n3xjvul.default\cookies.txt -> Spyware.Cookie.Doubleclick : Cleaned with backup
:mozilla.23:C:\Documents and Settings\sxlNiGhTmArEl\Application Data\Mozilla\Firefox\Profiles\8n3xjvul.default\cookies.txt -> Spyware.Cookie.2o7 : Cleaned with backup
:mozilla.24:C:\Documents and Settings\sxlNiGhTmArEl\Application Data\Mozilla\Firefox\Profiles\8n3xjvul.default\cookies.txt -> Spyware.Cookie.2o7 : Cleaned with backup
:mozilla.25:C:\Documents and Settings\sxlNiGhTmArEl\Application Data\Mozilla\Firefox\Profiles\8n3xjvul.default\cookies.txt -> Spyware.Cookie.2o7 : Cleaned with backup
:mozilla.26:C:\Documents and Settings\sxlNiGhTmArEl\Application Data\Mozilla\Firefox\Profiles\8n3xjvul.default\cookies.txt -> Spyware.Cookie.Atdmt : Cleaned with backup
:mozilla.28:C:\Documents and Settings\sxlNiGhTmArEl\Application Data\Mozilla\Firefox\Profiles\8n3xjvul.default\cookies.txt -> Spyware.Cookie.Hitbox : Cleaned with backup
:mozilla.29:C:\Documents and Settings\sxlNiGhTmArEl\Application Data\Mozilla\Firefox\Profiles\8n3xjvul.default\cookies.txt -> Spyware.Cookie.Hitbox : Cleaned with backup
:mozilla.31:C:\Documents and Settings\sxlNiGhTmArEl\Application Data\Mozilla\Firefox\Profiles\8n3xjvul.default\cookies.txt -> Spyware.Cookie.Hitbox : Cleaned with backup
:mozilla.32:C:\Documents and Settings\sxlNiGhTmArEl\Application Data\Mozilla\Firefox\Profiles\8n3xjvul.default\cookies.txt -> Spyware.Cookie.Mediaplex : Cleaned with backup
:mozilla.41:C:\Documents and Settings\sxlNiGhTmArEl\Application Data\Mozilla\Firefox\Profiles\8n3xjvul.default\cookies.txt -> Spyware.Cookie.Com : Cleaned with backup
:mozilla.42:C:\Documents and Settings\sxlNiGhTmArEl\Application Data\Mozilla\Firefox\Profiles\8n3xjvul.default\cookies.txt -> Spyware.Cookie.Com : Cleaned with backup
:mozilla.49:C:\Documents and Settings\sxlNiGhTmArEl\Application Data\Mozilla\Firefox\Profiles\8n3xjvul.default\cookies.txt -> Spyware.Cookie.Cqcounter : Cleaned with backup
:mozilla.53:C:\Documents and Settings\sxlNiGhTmArEl\Application Data\Mozilla\Firefox\Profiles\8n3xjvul.default\cookies.txt -> Spyware.Cookie.Sexcounter : Cleaned with backup
:mozilla.54:C:\Documents and Settings\sxlNiGhTmArEl\Application Data\Mozilla\Firefox\Profiles\8n3xjvul.default\cookies.txt -> Spyware.Cookie.Sexcounter : Cleaned with backup
:mozilla.55:C:\Documents and Settings\sxlNiGhTmArEl\Application Data\Mozilla\Firefox\Profiles\8n3xjvul.default\cookies.txt -> Spyware.Cookie.Sexcounter : Cleaned with backup
:mozilla.56:C:\Documents and Settings\sxlNiGhTmArEl\Application Data\Mozilla\Firefox\Profiles\8n3xjvul.default\cookies.txt -> Spyware.Cookie.Sexcounter : Cleaned with backup
:mozilla.57:C:\Documents and Settings\sxlNiGhTmArEl\Application Data\Mozilla\Firefox\Profiles\8n3xjvul.default\cookies.txt -> Spyware.Cookie.Sexcounter : Cleaned with backup
:mozilla.58:C:\Documents and Settings\sxlNiGhTmArEl\Application Data\Mozilla\Firefox\Profiles\8n3xjvul.default\cookies.txt -> Spyware.Cookie.Sexcounter : Cleaned with backup
:mozilla.59:C:\Documents and Settings\sxlNiGhTmArEl\Application Data\Mozilla\Firefox\Profiles\8n3xjvul.default\cookies.txt -> Spyware.Cookie.Sexcounter : Cleaned with backup
:mozilla.60:C:\Documents and Settings\sxlNiGhTmArEl\Application Data\Mozilla\Firefox\Profiles\8n3xjvul.default\cookies.txt -> Spyware.Cookie.Sexcounter : Cleaned with backup
:mozilla.61:C:\Documents and Settings\sxlNiGhTmArEl\Application Data\Mozilla\Firefox\Profiles\8n3xjvul.default\cookies.txt -> Spyware.Cookie.Sexcounter : Cleaned with backup
:mozilla.62:C:\Documents and Settings\sxlNiGhTmArEl\Application Data\Mozilla\Firefox\Profiles\8n3xjvul.default\cookies.txt -> Spyware.Cookie.Sexcounter : Cleaned with backup
:mozilla.63:C:\Documents and Settings\sxlNiGhTmArEl\Application Data\Mozilla\Firefox\Profiles\8n3xjvul.default\cookies.txt -> Spyware.Cookie.Sexcounter : Cleaned with backup
:mozilla.64:C:\Documents and Settings\sxlNiGhTmArEl\Application Data\Mozilla\Firefox\Profiles\8n3xjvul.default\cookies.txt -> Spyware.Cookie.Sexcounter : Cleaned with backup
:mozilla.65:C:\Documents and Settings\sxlNiGhTmArEl\Application Data\Mozilla\Firefox\Profiles\8n3xjvul.default\cookies.txt -> Spyware.Cookie.Sexcounter : Cleaned with backup
:mozilla.66:C:\Documents and Settings\sxlNiGhTmArEl\Application Data\Mozilla\Firefox\Profiles\8n3xjvul.default\cookies.txt -> Spyware.Cookie.Sexcounter : Cleaned with backup
:mozilla.67:C:\Documents and Settings\sxlNiGhTmArEl\Application Data\Mozilla\Firefox\Profiles\8n3xjvul.default\cookies.txt -> Spyware.Cookie.Sexcounter : Cleaned with backup
:mozilla.68:C:\Documents and Settings\sxlNiGhTmArEl\Application Data\Mozilla\Firefox\Profiles\8n3xjvul.default\cookies.txt -> Spyware.Cookie.Sexcounter : Cleaned with backup
:mozilla.69:C:\Documents and Settings\sxlNiGhTmArEl\Application Data\Mozilla\Firefox\Profiles\8n3xjvul.default\cookies.txt -> Spyware.Cookie.Sexcounter : Cleaned with backup
:mozilla.70:C:\Documents and Settings\sxlNiGhTmArEl\Application Data\Mozilla\Firefox\Profiles\8n3xjvul.default\cookies.txt -> Spyware.Cookie.Sexcounter : Cleaned with backup
:mozilla.78:C:\Documents and Settings\sxlNiGhTmArEl\Application Data\Mozilla\Firefox\Profiles\8n3xjvul.default\cookies.txt -> Spyware.Cookie.Yieldmanager : Cleaned with backup
:mozilla.79:C:\Documents and Settings\sxlNiGhTmArEl\Application Data\Mozilla\Firefox\Profiles\8n3xjvul.default\cookies.txt -> Spyware.Cookie.Yieldmanager : Cleaned with backup
:mozilla.80:C:\Documents and Settings\sxlNiGhTmArEl\Application Data\Mozilla\Firefox\Profiles\8n3xjvul.default\cookies.txt -> Spyware.Cookie.Yieldmanager : Cleaned with backup
:mozilla.81:C:\Documents and Settings\sxlNiGhTmArEl\Application Data\Mozilla\Firefox\Profiles\8n3xjvul.default\cookies.txt -> Spyware.Cookie.Yieldmanager : Cleaned with backup
:mozilla.82:C:\Documents and Settings\sxlNiGhTmArEl\Application Data\Mozilla\Firefox\Profiles\8n3xjvul.default\cookies.txt -> Spyware.Cookie.Yieldmanager : Cleaned with backup
:mozilla.83:C:\Documents and Settings\sxlNiGhTmArEl\Application Data\Mozilla\Firefox\Profiles\8n3xjvul.default\cookies.txt -> Spyware.Cookie.Yieldmanager : Cleaned with backup
:mozilla.84:C:\Documents and Settings\sxlNiGhTmArEl\Application Data\Mozilla\Firefox\Profiles\8n3xjvul.default\cookies.txt -> Spyware.Cookie.Yieldmanager : Cleaned with backup
:mozilla.85:C:\Documents and Settings\sxlNiGhTmArEl\Application Data\Mozilla\Firefox\Profiles\8n3xjvul.default\cookies.txt -> Spyware.Cookie.Yieldmanager : Cleaned with backup
:mozilla.86:C:\Documents and Settings\sxlNiGhTmArEl\Application Data\Mozilla\Firefox\Profiles\8n3xjvul.default\cookies.txt -> Spyware.Cookie.Yieldmanager : Cleaned with backup
:mozilla.87:C:\Documents and Settings\sxlNiGhTmArEl\Application Data\Mozilla\Firefox\Profiles\8n3xjvul.default\cookies.txt -> Spyware.Cookie.Yieldmanager : Cleaned with backup
:mozilla.91:C:\Documents and Settings\sxlNiGhTmArEl\Application Data\Mozilla\Firefox\Profiles\8n3xjvul.default\cookies.txt -> Spyware.Cookie.Yieldmanager : Cleaned with backup
:mozilla.92:C:\Documents and Settings\sxlNiGhTmArEl\Application Data\Mozilla\Firefox\Profiles\8n3xjvul.default\cookies.txt -> Spyware.Cookie.Yieldmanager : Cleaned with backup
:mozilla.93:C:\Documents and Settings\sxlNiGhTmArEl\Application Data\Mozilla\Firefox\Profiles\8n3xjvul.default\cookies.txt -> Spyware.Cookie.Yieldmanager : Cleaned with backup
:mozilla.105:C:\Documents and Settings\sxlNiGhTmArEl\Application Data\Mozilla\Firefox\Profiles\8n3xjvul.default\cookies.txt -> Spyware.Cookie.Trafficmp : Cleaned with backup
:mozilla.106:C:\Documents and Settings\sxlNiGhTmArEl\Application Data\Mozilla\Firefox\Profiles\8n3xjvul.default\cookies.txt -> Spyware.Cookie.Trafficmp : Cleaned with backup
:mozilla.107:C:\Documents and Settings\sxlNiGhTmArEl\Application Data\Mozilla\Firefox\Profiles\8n3xjvul.default\cookies.txt -> Spyware.Cookie.Trafficmp : Cleaned with backup
:mozilla.108:C:\Documents and Settings\sxlNiGhTmArEl\Application Data\Mozilla\Firefox\Profiles\8n3xjvul.default\cookies.txt -> Spyware.Cookie.Trafficmp : Cleaned with backup
:mozilla.109:C:\Documents and Settings\sxlNiGhTmArEl\Application Data\Mozilla\Firefox\Profiles\8n3xjvul.default\cookies.txt -> Spyware.Cookie.Trafficmp : Cleaned with backup
:mozilla.110:C:\Documents and Settings\sxlNiGhTmArEl\Application Data\Mozilla\Firefox\Profiles\8n3xjvul.default\cookies.txt -> Spyware.Cookie.Trafficmp : Cleaned with backup
:mozilla.111:C:\Documents and Settings\sxlNiGhTmArEl\Application Data\Mozilla\Firefox\Profiles\8n3xjvul.default\cookies.txt -> Spyware.Cookie.Trafficmp : Cleaned with backup
:mozilla.124:C:\Documents and Settings\sxlNiGhTmArEl\Application Data\Mozilla\Firefox\Profiles\8n3xjvul.default\cookies.txt -> Spyware.Cookie.Statcounter : Cleaned with backup
:mozilla.125:C:\Documents and Settings\sxlNiGhTmArEl\Application Data\Mozilla\Firefox\Profiles\8n3xjvul.default\cookies.txt -> Spyware.Cookie.Statcounter : Cleaned with backup
:mozilla.126:C:\Documents and Settings\sxlNiGhTmArEl\Application Data\Mozilla\Firefox\Profiles\8n3xjvul.default\cookies.txt -> Spyware.Cookie.Statcounter : Cleaned with backup
:mozilla.127:C:\Documents and Settings\sxlNiGhTmArEl\Application Data\Mozilla\Firefox\Profiles\8n3xjvul.default\cookies.txt -> Spyware.Cookie.Statcounter : Cleaned with backup
:mozilla.128:C:\Documents and Settings\sxlNiGhTmArEl\Application Data\Mozilla\Firefox\Profiles\8n3xjvul.default\cookies.txt -> Spyware.Cookie.Statcounter : Cleaned with backup
:mozilla.129:C:\Documents and Settings\sxlNiGhTmArEl\Application Data\Mozilla\Firefox\Profiles\8n3xjvul.default\cookies.txt -> Spyware.Cookie.Statcounter : Cleaned with backup
:mozilla.130:C:\Documents and Settings\sxlNiGhTmArEl\Application Data\Mozilla\Firefox\Profiles\8n3xjvul.default\cookies.txt -> Spyware.Cookie.Statcounter : Cleaned with backup
:mozilla.131:C:\Documents and Settings\sxlNiGhTmArEl\Application Data\Mozilla\Firefox\Profiles\8n3xjvul.default\cookies.txt -> Spyware.Cookie.Statcounter : Cleaned with backup
:mozilla.132:C:\Documents and Settings\sxlNiGhTmArEl\Application Data\Mozilla\Firefox\Profiles\8n3xjvul.default\cookies.txt -> Spyware.Cookie.Statcounter : Cleaned with backup
:mozilla.133:C:\Documents and Settings\sxlNiGhTmArEl\Application Data\Mozilla\Firefox\Profiles\8n3xjvul.default\cookies.txt -> Spyware.Cookie.Statcounter : Cleaned with backup
:mozilla.134:C:\Documents and Settings\sxlNiGhTmArEl\Application Data\Mozilla\Firefox\Profiles\8n3xjvul.default\cookies.txt -> Spyware.Cookie.Statcounter : Cleaned with backup
:mozilla.135:C:\Documents and Settings\sxlNiGhTmArEl\Application Data\Mozilla\Firefox\Profiles\8n3xjvul.default\cookies.txt -> Spyware.Cookie.Statcounter : Cleaned with backup
:mozilla.136:C:\Documents and Settings\sxlNiGhTmArEl\Application Data\Mozilla\Firefox\Profiles\8n3xjvul.default\cookies.txt -> Spyware.Cookie.Statcounter : Cleaned with backup
:mozilla.137:C:\Documents and Settings\sxlNiGhTmArEl\Application Data\Mozilla\Firefox\Profiles\8n3xjvul.default\cookies.txt -> Spyware.Cookie.Statcounter : Cleaned with backup
:mozilla.138:C:\Documents and Settings\sxlNiGhTmArEl\Application Data\Mozilla\Firefox\Profiles\8n3xjvul.default\cookies.txt -> Spyware.Cookie.Statcounter : Cleaned with backup
:mozilla.139:C:\Documents and Settings\sxlNiGhTmArEl\Application Data\Mozilla\Firefox\Profiles\8n3xjvul.default\cookies.txt -> Spyware.Cookie.Statcounter : Cleaned with backup
:mozilla.140:C:\Documents and Settings\sxlNiGhTmArEl\Application Data\Mozilla\Firefox\Profiles\8n3xjvul.default\cookies.txt -> Spyware.Cookie.Statcounter : Cleaned with backup
:mozilla.141:C:\Documents and Settings\sxlNiGhTmArEl\Application Data\Mozilla\Firefox\Profiles\8n3xjvul.default\cookies.txt -> Spyware.Cookie.Statcounter : Cleaned with backup
:mozilla.167:C:\Documents and Settings\sxlNiGhTmArEl\Application Data\Mozilla\Firefox\Profiles\8n3xjvul.default\cookies.txt -> Spyware.Cookie.Burstbeacon : Cleaned with backup
:mozilla.168:C:\Documents and Settings\sxlNiGhTmArEl\Application Data\Mozilla\Firefox\Profiles\8n3xjvul.default\cookies.txt -> Spyware.Cookie.Burstnet : Cleaned with backup
:mozilla.169:C:\Documents and Settings\sxlNiGhTmArEl\Application Data\Mozilla\Firefox\Profiles\8n3xjvul.default\cookies.txt -> Spyware.Cookie.Casalemedia : Cleaned with backup
:mozilla.170:C:\Documents and Settings\sxlNiGhTmArEl\Application Data\Mozilla\Firefox\Profiles\8n3xjvul.default\cookies.txt -> Spyware.Cookie.Casalemedia : Cleaned with backup
:mozilla.171:C:\Documents and Settings\sxlNiGhTmArEl\Application Data\Mozilla\Firefox\Profiles\8n3xjvul.default\cookies.txt -> Spyware.Cookie.Casalemedia : Cleaned with backup
:mozilla.172:C:\Documents and Settings\sxlNiGhTmArEl\Application Data\Mozilla\Firefox\Profiles\8n3xjvul.default\cookies.txt -> Spyware.Cookie.Casalemedia : Cleaned with backup
:mozilla.173:C:\Documents and Settings\sxlNiGhTmArEl\Application Data\Mozilla\Firefox\Profiles\8n3xjvul.default\cookies.txt -> Spyware.Cookie.Burstnet : Cleaned with backup
:mozilla.174:C:\Documents and Settings\sxlNiGhTmArEl\Application Data\Mozilla\Firefox\Profiles\8n3xjvul.default\cookies.txt -> Spyware.Cookie.Casalemedia : Cleaned with backup
:mozilla.175:C:\Documents and Settings\sxlNiGhTmArEl\Application Data\Mozilla\Firefox\Profiles\8n3xjvul.default\cookies.txt -> Spyware.Cookie.Casalemedia : Cleaned with backup
:mozilla.176:C:\Documents and Settings\sxlNiGhTmArEl\Application Data\Mozilla\Firefox\Profiles\8n3xjvul.default\cookies.txt -> Spyware.Cookie.Clickzs : Cleaned with backup
:mozilla.177:C:\Documents and Settings\sxlNiGhTmArEl\Application Data\Mozilla\Firefox\Profiles\8n3xjvul.default\cookies.txt -> Spyware.Cookie.Clickzs : Cleaned with backup
:mozilla.178:C:\Documents and Settings\sxlNiGhTmArEl\Application Data\Mozilla\Firefox\Profiles\8n3xjvul.default\cookies.txt -> Spyware.Cookie.Fastclick : Cleaned with backup
:mozilla.179:C:\Documents and Settings\sxlNiGhTmArEl\Application Data\Mozilla\Firefox\Profiles\8n3xjvul.default\cookies.txt -> Spyware.Cookie.Fastclick : Cleaned with backup
:mozilla.180:C:\Documents and Settings\sxlNiGhTmArEl\Application Data\Mozilla\Firefox\Profiles\8n3xjvul.default\cookies.txt -> Spyware.Cookie.Fastclick : Cleaned with backup
:mozilla.181:C:\Documents and Settings\sxlNiGhTmArEl\Application Data\Mozilla\Firefox\Profiles\8n3xjvul.default\cookies.txt -> Spyware.Cookie.Fastclick : Cleaned with backup
:mozilla.182:C:\Documents and Settings\sxlNiGhTmArEl\Application Data\Mozilla\Firefox\Profiles\8n3xjvul.default\cookies.txt -> Spyware.Cookie.Fastclick : Cleaned with backup
:mozilla.183:C:\Documents and Settings\sxlNiGhTmArEl\Application Data\Mozilla\Firefox\Profiles\8n3xjvul.default\cookies.txt -> Spyware.Cookie.Fastclick : Cleaned with backup
:mozilla.7:C:\Documents and Settings\sxlNiGhTmArEl\Application Data\Mozilla\Firefox\Profiles\8n3xjvul.default\cookiesnew.txt -> Spyware.Cookie.Atdmt : Cleaned with backup
:mozilla.9:C:\Documents and Settings\sxlNiGhTmArEl\Application Data\Mozilla\Firefox\Profiles\8n3xjvul.default\cookiesnew.txt -> Spyware.Cookie.Hitbox : Cleaned with backup
:mozilla.10:C:\Documents and Settings\sxlNiGhTmArEl\Application Data\Mozilla\Firefox\Profiles\8n3xjvul.default\cookiesnew.txt -> Spyware.Cookie.Hitbox : Cleaned with backup
:mozilla.12:C:\Documents and Settings\sxlNiGhTmArEl\Application Data\Mozilla\Firefox\Profiles\8n3xjvul.default\cookiesnew.txt -> Spyware.Cookie.Hitbox : Cleaned with backup
:mozilla.13:C:\Documents and Settings\sxlNiGhTmArEl\Application Data\Mozilla\Firefox\Profiles\8n3xjvul.default\cookiesnew.txt -> Spyware.Cookie.Doubleclick : Cleaned with backup
:mozilla.14:C:\Documents and Settings\sxlNiGhTmArEl\Application Data\Mozilla\Firefox\Profiles\8n3xjvul.default\cookiesnew.txt -> Spyware.Cookie.Mediaplex : Cleaned with backup
:mozilla.23:C:\Documents and Settings\sxlNiGhTmArEl\Application Data\Mozilla\Firefox\Profiles\8n3xjvul.default\cookiesnew.txt -> Spyware.Cookie.Com : Cleaned with backup
:mozilla.24:C:\Documents and Settings\sxlNiGhTmArEl\Application Data\Mozilla\Firefox\Profiles\8n3xjvul.default\cookiesnew.txt -> Spyware.Cookie.Com : Cleaned with backup
:mozilla.31:C:\Documents and Settings\sxlNiGhTmArEl\Application Data\Mozilla\Firefox\Profiles\8n3xjvul.default\cookiesnew.txt -> Spyware.Cookie.Cqcounter : Cleaned with backup
:mozilla.36:C:\Documents and Settings\sxlNiGhTmArEl\Application Data\Mozilla\Firefox\Profiles\8n3xjvul.default\cookiesnew.txt -> Spyware.Cookie.Sexcounter : Cleaned with backup
:mozilla.37:C:\Documents and Settings\sxlNiGhTmArEl\Application Data\Mozilla\Firefox\Profiles\8n3xjvul.default\cookiesnew.txt -> Spyware.Cookie.Sexcounter : Cleaned with backup
:mozilla.38:C:\Documents and Settings\sxlNiGhTmArEl\Application Data\Mozilla\Firefox\Profiles\8n3xjvul.default\cookiesnew.txt -> Spyware.Cookie.Sexcounter : Cleaned with backup
:mozilla.39:C:\Documents and Settings\sxlNiGhTmArEl\Application Data\Mozilla\Firefox\Profiles\8n3xjvul.default\cookiesnew.txt -> Spyware.Cookie.Sexcounter : Cleaned with backup
:mozilla.40:C:\Documents and Settings\sxlNiGhTmArEl\Application Data\Mozilla\Firefox\Profiles\8n3xjvul.default\cookiesnew.txt -> Spyware.Cookie.Sexcounter : Cleaned with backup
:mozilla.41:C:\Documents and Settings\sxlNiGhTmArEl\Application Data\Mozilla\Firefox\Profiles\8n3xjvul.default\cookiesnew.txt -> Spyware.Cookie.Sexcounter : Cleaned with backup
:mozilla.42:C:\Documents and Settings\sxlNiGhTmArEl\Application Data\Mozilla\Firefox\Profiles\8n3xjvul.default\cookiesnew.txt -> Spyware.Cookie.Sexcounter : Cleaned with backup
:mozilla.43:C:\Documents and Settings\sxlNiGhTmArEl\Application Data\Mozilla\Firefox\Profiles\8n3xjvul.default\cookiesnew.txt -> Spyware.Cookie.Sexcounter : Cleaned with backup
:mozilla.44:C:\Documents and Settings\sxlNiGhTmArEl\Application Data\Mozilla\Firefox\Profiles\8n3xjvul.default\cookiesnew.txt -> Spyware.Cookie.Sexcounter : Cleaned with backup
:mozilla.45:C:\Documents and Settings\sxlNiGhTmArEl\Application Data\Mozilla\Firefox\Profiles\8n3xjvul.default\cookiesnew.txt -> Spyware.Cookie.Sexcounter : Cleaned with backup
:mozilla.46:C:\Documents and Settings\sxlNiGhTmArEl\Application Data\Mozilla\Firefox\Profiles\8n3xjvul.default\cookiesnew.txt -> Spyware.Cookie.Sexcounter : Cleaned with backup
:mozilla.47:C:\Documents and Settings\sxlNiGhTmArEl\Application Data\Mozilla\Firefox\Profiles\8n3xjvul.default\cookiesnew.txt -> Spyware.Cookie.Sexcounter : Cleaned with backup
:mozilla.48:C:\Documents and Settings\sxlNiGhTmArEl\Application Data\Mozilla\Firefox\Profiles\8n3xjvul.default\cookiesnew.txt -> Spyware.Cookie.Sexcounter : Cleaned with backup
:mozilla.49:C:\Documents and Settings\sxlNiGhTmArEl\Application Data\Mozilla\Firefox\Profiles\8n3xjvul.default\cookiesnew.txt -> Spyware.Cookie.Sexcounter : Cleaned with backup
:mozilla.50:C:\Documents and Settings\sxlNiGhTmArEl\Application Data\Mozilla\Firefox\Profiles\8n3xjvul.default\cookiesnew.txt -> Spyware.Cookie.Sexcounter : Cleaned with backup
:mozilla.51:C:\Documents and Settings\sxlNiGhTmArEl\Application Data\Mozilla\Firefox\Profiles\8n3xjvul.default\cookiesnew.txt -> Spyware.Cookie.Sexcounter : Cleaned with backup
:mozilla.52:C:\Documents and Settings\sxlNiGhTmArEl\Application Data\Mozilla\Firefox\Profiles\8n3xjvul.default\cookiesnew.txt -> Spyware.Cookie.Sexcounter : Cleaned with backup
:mozilla.53:C:\Documents and Settings\sxlNiGhTmArEl\Application Data\Mozilla\Firefox\Profiles\8n3xjvul.default\cookiesnew.txt -> Spyware.Cookie.Sexcounter : Cleaned with backup
:mozilla.61:C:\Documents and Settings\sxlNiGhTmArEl\Application Data\Mozilla\Firefox\Profiles\8n3xjvul.default\cookiesnew.txt -> Spyware.Cookie.Yieldmanager : Cleaned with backup
:mozilla.62:C:\Documents and Settings\sxlNiGhTmArEl\Application Data\Mozilla\Firefox\Profiles\8n3xjvul.default\cookiesnew.txt -> Spyware.Cookie.Yieldmanager : Cleaned with backup
:mozilla.63:C:\Documents and Settings\sxlNiGhTmArEl\Application Data\Mozilla\Firefox\Profiles\8n3xjvul.default\cookiesnew.txt -> Spyware.Cookie.Yieldmanager : Cleaned with backup
:mozilla.64:C:\Documents and Settings\sxlNiGhTmArEl\Application Data\Mozilla\Firefox\Profiles\8n3xjvul.default\cookiesnew.txt -> Spyware.Cookie.Yieldmanager : Cleaned with backup
:mozilla.65:C:\Documents and Settings\sxlNiGhTmArEl\Application Data\Mozilla\Firefox\Profiles\8n3xjvul.default\cookiesnew.txt -> Spyware.Cookie.Yieldmanager : Cleaned with backup
:mozilla.66:C:\Documents and Settings\sxlNiGhTmArEl\Application Data\Mozilla\Firefox\Profiles\8n3xjvul.default\cookiesnew.txt -> Spyware.Cookie.Yieldmanager : Cleaned with backup
:mozilla.67:C:\Documents and Settings\sxlNiGhTmArEl\Application Data\Mozilla\Firefox\Profiles\8n3xjvul.default\cookiesnew.txt -> Spyware.Cookie.Yieldmanager : Cleaned with backup
:mozilla.68:C:\Documents and Settings\sxlNiGhTmArEl\Application Data\Mozilla\Firefox\Profiles\8n3xjvul.default\cookiesnew.txt -> Spyware.Cookie.Yieldmanager : Cleaned with backup
:mozilla.69:C:\Documents and Settings\sxlNiGhTmArEl\Application Data\Mozilla\Firefox\Profiles\8n3xjvul.default\cookiesnew.txt -> Spyware.Cookie.Yieldmanager : Cleaned with backup
:mozilla.70:C:\Documents and Settings\sxlNiGhTmArEl\Application Data\Mozilla\Firefox\Profiles\8n3xjvul.default\cookiesnew.txt -> Spyware.Cookie.Yieldmanager : Cleaned with backup
:mozilla.74:C:\Documents and Settings\sxlNiGhTmArEl\Application Data\Mozilla\Firefox\Profiles\8n3xjvul.default\cookiesnew.txt -> Spyware.Cookie.Yieldmanager : Cleaned with backup
:mozilla.75:C:\Documents and Settings\sxlNiGhTmArEl\Application Data\Mozilla\Firefox\Profiles\8n3xjvul.default\cookiesnew.txt -> Spyware.Cookie.Yieldmanager : Cleaned with backup
:mozilla.76:C:\Documents and Settings\sxlNiGhTmArEl\Application Data\Mozilla\Firefox\Profiles\8n3xjvul.default\cookiesnew.txt -> Spyware.Cookie.Yieldmanager : Cleaned with backup
:mozilla.88:C:\Documents and Settings\sxlNiGhTmArEl\Application Data\Mozilla\Firefox\Profiles\8n3xjvul.default\cookiesnew.txt -> Spyware.Cookie.Trafficmp : Cleaned with backup
:mozilla.89:C:\Documents and Settings\sxlNiGhTmArEl\Application Data\Mozilla\Firefox\Profiles\8n3xjvul.default\cookiesnew.txt -> Spyware.Cookie.Trafficmp : Cleaned with backup
:mozilla.90:C:\Documents and Settings\sxlNiGhTmArEl\Application Data\Mozilla\Firefox\Profiles\8n3xjvul.default\cookiesnew.txt -> Spyware.Cookie.Trafficmp : Cleaned with backup
:mozilla.91:C:\Documents and Settings\sxlNiGhTmArEl\Application Data\Mozilla\Firefox\Profiles\8n3xjvul.default\cookiesnew.txt -> Spyware.Cookie.Trafficmp : Cleaned with backup
:mozilla.92:C:\Documents and Settings\sxlNiGhTmArEl\Application Data\Mozilla\Firefox\Profiles\8n3xjvul.default\cookiesnew.txt -> Spyware.Cookie.Trafficmp : Cleaned with backup
:mozilla.93:C:\Documents and Settings\sxlNiGhTmArEl\Application Data\Mozilla\Firefox\Profiles\8n3xjvul.default\cookiesnew.txt -> Spyware.Cookie.Trafficmp : Cleaned with backup
:mozilla.94:C:\Documents and Settings\sxlNiGhTmArEl\Application Data\Mozilla\Firefox\Profiles\8n3xjvul.default\cookiesnew.txt -> Spyware.Cookie.Trafficmp : Cleaned with backup
:mozilla.95:C:\Documents and Settings\sxlNiGhTmArEl\Application Data\Mozilla\Firefox\Profiles\8n3xjvul.default\cookiesnew.txt -> Spyware.Cookie.Trafficmp : Cleaned with backup
:mozilla.109:C:\Documents and Settings\sxlNiGhTmArEl\Application Data\Mozilla\Firefox\Profiles\8n3xjvul.default\cookiesnew.txt -> Spyware.Cookie.Statcounter : Cleaned with backup
:mozilla.110:C:\Documents and Settings\sxlNiGhTmArEl\Application Data\Mozilla\Firefox\Profiles\8n3xjvul.default\cookiesnew.txt -> Spyware.Cookie.Statcounter : Cleaned with backup
:mozilla.111:C:\Documents and Settings\sxlNiGhTmArEl\Application Data\Mozilla\Firefox\Profiles\8n3xjvul.default\cookiesnew.txt -> Spyware.Cookie.Statcounter : Cleaned with backup
:mozilla.112:C:\Documents and Settings\sxlNiGhTmArEl\Application Data\Mozilla\Firefox\Profiles\8n3xjvul.default\cookiesnew.txt -> Spyware.Cookie.Statcounter : Cleaned with backup
:mozilla.113:C:\Documents and Settings\sxlNiGhTmArEl\Application Data\Mozilla\Firefox\Profiles\8n3xjvul.default\cookiesnew.txt -> Spyware.Cookie.Statcounter : Cleaned with backup
:mozilla.114:C:\Documents and Settings\sxlNiGhTmArEl\Application Data\Mozilla\Firefox\Profiles\8n3xjvul.default\cookiesnew.txt -> Spyware.Cookie.Statcounter : Cleaned with backup
:mozilla.115:C:\Documents and Settings\sxlNiGhTmArEl\Application Data\Mozilla\Firefox\Profiles\8n3xjvul.default\cookiesnew.txt -> Spyware.Cookie.Statcounter : Cleaned with backup
:mozilla.116:C:\Documents and Settings\sxlNiGhTmArEl\Application Data\Mozilla\Firefox\Profiles\8n3xjvul.default\cookiesnew.txt -> Spyware.Cookie.Statcounter : Cleaned with backup
:mozilla.117:C:\Documents and Settings\sxlNiGhTmArEl\Application Data\Mozilla\Firefox\Profiles\8n3xjvul.default\cookiesnew.txt -> Spyware.Cookie.Statcounter : Cleaned with backup
:mozilla.118:C:\Documents and Settings\sxlNiGhTmArEl\Application Data\Mozilla\Firefox\Profiles\8n3xjvul.default\cookiesnew.txt -> Spyware.Cookie.Statcounter : Cleaned with backup
:mozilla.119:C:\Documents and Settings\sxlNiGhTmArEl\Application Data\Mozilla\Firefox\Profiles\8n3xjvul.default\cookiesnew.txt -> Spyware.Cookie.Statcounter : Cleaned with backup
:mozilla.120:C:\Documents and Settings\sxlNiGhTmArEl\Application Data\Mozilla\Firefox\Profiles\8n3xjvul.default\cookiesnew.txt -> Spyware.Cookie.Statcounter : Cleaned with backup
:mozilla.121:C:\Documents and Settings\sxlNiGhTmArEl\Application Data\Mozilla\Firefox\Profiles\8n3xjvul.default\cookiesnew.txt -> Spyware.Cookie.Statcounter : Cleaned with backup
:mozilla.122:C:\Documents and Settings\sxlNiGhTmArEl\Application Data\Mozilla\Firefox\Profiles\8n3xjvul.default\cookiesnew.txt -> Spyware.Cookie.Statcounter : Cleaned with backup
:mozilla.123:C:\Documents and Settings\sxlNiGhTmArEl\Application Data\Mozilla\Firefox\Profiles\8n3xjvul.default\cookiesnew.txt -> Spyware.Cookie.Statcounter : Cleaned with backup
:mozilla.124:C:\Documents and Settings\sxlNiGhTmArEl\Application Data\Mozilla\Firefox\Profiles\8n3xjvul.default\cookiesnew.txt -> Spyware.Cookie.Statcounter : Cleaned with backup
:mozilla.125:C:\Documents and Settings\sxlNiGhTmArEl\Application Data\Mozilla\Firefox\Profiles\8n3xjvul.default\cookiesnew.txt -> Spyware.Cookie.Statcounter : Cleaned with backup
:mozilla.126:C:\Documents and Settings\sxlNiGhTmArEl\Application Data\Mozilla\Firefox\Profiles\8n3xjvul.default\cookiesnew.txt -> Spyware.Cookie.Statcounter : Cleaned with backup
:mozilla.154:C:\Documents and Settings\sxlNiGhTmArEl\Application Data\Mozilla\Firefox\Profiles\8n3xjvul.default\cookiesnew.txt -> Spyware.Cookie.Burstbeacon : Cleaned with backup
:mozilla.155:C:\Documents and Settings\sxlNiGhTmArEl\Application Data\Mozilla\Firefox\Profiles\8n3xjvul.default\cookiesnew.txt -> Spyware.Cookie.Burstnet : Cleaned with backup
:mozilla.156:C:\Documents and Settings\sxlNiGhTmArEl\Application Data\Mozilla\Firefox\Profiles\8n3xjvul.default\cookiesnew.txt -> Spyware.Cookie.Casalemedia : Cleaned with backup
:mozilla.157:C:\Documents and Settings\sxlNiGhTmArEl\Application Data\Mozilla\Firefox\Profiles\8n3xjvul.default\cookiesnew.txt -> Spyware.Cookie.Casalemedia : Cleaned with backup
:mozilla.158:C:\Documents and Settings\sxlNiGhTmArEl\Application Data\Mozilla\Firefox\Profiles\8n3xjvul.default\cookiesnew.txt -> Spyware.Cookie.Casalemedia : Cleaned with backup
:mozilla.159:C:\Documents and Settings\sxlNiGhTmArEl\Application Data\Mozilla\Firefox\Profiles\8n3xjvul.default\cookiesnew.txt -> Spyware.Cookie.Casalemedia : Cleaned with backup
:mozilla.160:C:\Documents and Settings\sxlNiGhTmArEl\Application Data\Mozilla\Firefox\Profiles\8n3xjvul.default\cookiesnew.txt -> Spyware.Cookie.Burstnet : Cleaned with backup
:mozilla.161:C:\Documents and Settings\sxlNiGhTmArEl\Application Data\Mozilla\Firefox\Profiles\8n3xjvul.default\cookiesnew.txt -> Spyware.Cookie.Casalemedia : Cleaned with backup
:mozilla.162:C:\Documents and Settings\sxlNiGhTmArEl\Application Data\Mozilla\Firefox\Profiles\8n3xjvul.default\cookiesnew.txt -> Spyware.Cookie.Casalemedia : Cleaned with backup
:mozilla.163:C:\Documents and Settings\sxlNiGhTmArEl\Application Data\Mozilla\Firefox\Profiles\8n3xjvul.default\cookiesnew.txt -> Spyware.Cookie.Casalemedia : Cleaned with backup
:mozilla.164:C:\Documents and Settings\sxlNiGhTmArEl\Application Data\Mozilla\Firefox\Profiles\8n3xjvul.default\cookiesnew.txt -> Spyware.Cookie.Casalemedia : Cleaned with backup
:mozilla.165:C:\Documents and Settings\sxlNiGhTmArEl\Application Data\Mozilla\Firefox\Profiles\8n3xjvul.default\cookiesnew.txt -> Spyware.Cookie.Casalemedia : Cleaned with backup
:mozilla.166:C:\Documents and Settings\sxlNiGhTmArEl\Application Data\Mozilla\Firefox\Profiles\8n3xjvul.default\cookiesnew.txt -> Spyware.Cookie.Clickzs : Cleaned with backup
:mozilla.167:C:\Documents and Settings\sxlNiGhTmArEl\Application Data\Mozilla\Firefox\Profiles\8n3xjvul.default\cookiesnew.txt -> Spyware.Cookie.Clickzs : Cleaned with backup
:mozilla.168:C:\Documents and Settings\sxlNiGhTmArEl\Application Data\Mozilla\Firefox\Profiles\8n3xjvul.default\cookiesnew.txt -> Spyware.Cookie.Fastclick : Cleaned with backup
:mozilla.169:C:\Documents and Settings\sxlNiGhTmArEl\Application Data\Mozilla\Firefox\Profiles\8n3xjvul.default\cookiesnew.txt -> Spyware.Cookie.Fastclick : Cleaned with backup
:mozilla.170:C:\Documents and Settings\sxlNiGhTmArEl\Application Data\Mozilla\Firefox\Profiles\8n3xjvul.default\cookiesnew.txt -> Spyware.Cookie.Fastclick : Cleaned with backup
:mozilla.171:C:\Documents and Settings\sxlNiGhTmArEl\Application Data\Mozilla\Firefox\Profiles\8n3xjvul.default\cookiesnew.txt -> Spyware.Cookie.Fastclick : Cleaned with backup
:mozilla.172:C:\Documents and Settings\sxlNiGhTmArEl\Application Data\Mozilla\Firefox\Profiles\8n3xjvul.default\cookiesnew.txt -> Spyware.Cookie.Fastclick : Cleaned with backup
:mozilla.173:C:\Documents and Settings\sxlNiGhTmArEl\Application Data\Mozilla\Firefox\Profiles\8n3xjvul.default\cookiesnew.txt -> Spyware.Cookie.Fastclick : Cleaned with backup
C:\Documents and Settings\sxlNiGhTmArEl\Cookies\sxlnightmarel@ad.yieldmanager[1].txt -> Spyware.Cookie.Yieldmanager : Cleaned with backup
C:\Documents and Settings\sxlNiGhTmArEl\Cookies\sxlnightmarel@adopt.specificclick[2].txt -> Spyware.Cookie.Specificclick : Cleaned with backup
C:\Documents and Settings\sxlNiGhTmArEl\Cookies\sxlnightmarel@ads.addynamix[1].txt -> Spyware.Cookie.Addynamix : Cleaned with backup
C:\Documents and Settings\sxlNiGhTmArEl\Cookies\sxlnightmarel@ads.pointroll[1].txt -> Spyware.Cookie.Pointroll : Cleaned with backup
C:\Documents and Settings\sxlNiGhTmArEl\Cookies\sxlnightmarel@adtech[2].txt -> Spyware.Cookie.Adtech : Cleaned with backup
C:\Documents and Settings\sxlNiGhTmArEl\Cookies\sxlnightmarel@advertising[2].txt -> Spyware.Cookie.Advertising : Cleaned with backup
C:\Documents and Settings\sxlNiGhTmArEl\Cookies\sxlnightmarel@as-eu.falkag[2].txt -> Spyware.Cookie.Falkag : Cleaned with backup
C:\Documents and Settings\sxlNiGhTmArEl\Cookies\sxlnightmarel@as-us.falkag[2].txt -> Spyware.Cookie.Falkag : Cleaned with backup
C:\Documents and Settings\sxlNiGhTmArEl\Cookies\sxlnightmarel@as1.falkag[2].txt -> Spyware.Cookie.Falkag : Cleaned with backup
C:\Documents and Settings\sxlNiGhTmArEl\Cookies\sxlnightmarel@atdmt[2].txt -> Spyware.Cookie.Atdmt : Cleaned with backup
C:\Documents and Settings\sxlNiGhTmArEl\Cookies\sxlnightmarel@casalemedia[2].txt -> Spyware.Cookie.Casalemedia : Cleaned with backup
C:\Documents and Settings\sxlNiGhTmArEl\Cookies\sxlnightmarel@doubleclick[1].txt -> Spyware.Cookie.Doubleclick : Cleaned with backup
C:\Documents and Settings\sxlNiGhTmArEl\Cookies\sxlnightmarel@fastclick[2].txt -> Spyware.Cookie.Fastclick : Cleaned with backup
C:\Documents and Settings\sxlNiGhTmArEl\Cookies\sxlnightmarel@findwhat[1].txt -> Spyware.Cookie.Findwhat : Cleaned with backup
C:\Documents and Settings\sxlNiGhTmArEl\Cookies\sxlnightmarel@hypertracker[1].txt -> Spyware.Cookie.Hypertracker : Cleaned with backup
C:\Documents and Settings\sxlNiGhTmArEl\Cookies\sxlnightmarel@mediaplex[1].txt -> Spyware.Cookie.Mediaplex : Cleaned with backup
C:\Documents and Settings\sxlNiGhTmArEl\Cookies\sxlnightmarel@overture[1].txt -> Spyware.Cookie.Overture : Cleaned with backup
C:\Documents and Settings\sxlNiGhTmArEl\Cookies\sxlnightmarel@partygaming.122.2o7[1].txt -> Spyware.Cookie.2o7 : Cleaned with backup
C:\Documents and Settings\sxlNiGhTmArEl\Cookies\sxlnightmarel@revenue[2].txt -> Spyware.Cookie.Revenue : Cleaned with backup
C:\Documents and Settings\sxlNiGhTmArEl\Cookies\sxlnightmarel@trafficmp[2].txt -> Spyware.Cookie.Trafficmp : Cleaned with backup
C:\Documents and Settings\sxlNiGhTmArEl\Cookies\sxlnightmarel@tribalfusion[1].txt -> Spyware.Cookie.Tribalfusion : Cleaned with backup
C:\Documents and Settings\sxlNiGhTmArEl\Cookies\sxlnightmarel@valueclick[1].txt -> Spyware.Cookie.Valueclick : Cleaned with backup
C:\Documents and Settings\sxlNiGhTmArEl\Cookies\sxlnightmarel@yieldmanager[1].txt -> Spyware.Cookie.Yieldmanager : Cleaned with backup
C:\Documents and Settings\sxlNiGhTmArEl\Local Settings\Temp\F6E24.tmp/titno.exe -> Adware.MDH : Cleaned with backup
C:\Documents and Settings\sxlNiGhTmArEl\Local Settings\Temp\i33.tmp -> Adware.SurfSide : Cleaned with backup
C:\Documents and Settings\sxlNiGhTmArEl\Local Settings\Temporary Internet Files\Content.IE5\73BAO78O\ltndload[1].dll -> Adware.Sud : Cleaned with backup
C:\WINDOWS\NDNuninstall6_38.exe -> Spyware.NewDotNet : Cleaned with backup

::Report End
Logfile of HijackThis v1.99.1
Scan saved at 9:19:01 PM, on 2/5/2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\cisvc.exe
C:\Program Files\ewido anti-malware\ewidoctrl.exe
C:\Program Files\ewido anti-malware\ewidoguard.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\Explorer.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Logitech\iTouch\iTouch.exe
C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
C:\WINDOWS\system32\Rundll32.exe
C:\PROGRA~1\BILLPS~1\WINPAT~1\winpatrol.exe
C:\Program Files\Google\Google Talk\googletalk.exe
C:\Program Files\Common Files\Ahead\lib\NMBgMonitor.exe
C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
C:\Program Files\Logitech\SetPoint\SetPoint.exe
C:\Program Files\Common Files\Logitech\KHAL\KHALMNPR.exe
C:\Documents and Settings\sxlNiGhTmArEl\My Documents\My Received Files\HijackThis.exe
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://yahoo.sbc.com/dsl
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://yahoo.sbc.com/dsl
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O3 - Toolbar: &Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O4 - HKLM\..\Run: [LiveMonitor] C:\Program Files\MSI\Live Update 3\LMonitor.exe
O4 - HKLM\..\Run: [zBrowser Launcher] C:\Program Files\Logitech\iTouch\iTouch.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
O4 - HKLM\..\Run: [P17Helper] Rundll32 P17.dll,P17Helper
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.exe C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.exe C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [NewFrn] C:\WINDOWS\newfrn.exe
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [WinPatrol] C:\PROGRA~1\BILLPS~1\WINPAT~1\winpatrol.exe
O4 - HKCU\..\Run: [googletalk] "C:\Program Files\Google\Google Talk\googletalk.exe" /autostart
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Common Files\Ahead\lib\NMBgMonitor.exe"
O4 - HKCU\..\Run: [CU1] C:\Program Files\Common Files\VCClient\VCClient.exe
O4 - HKCU\..\Run: [CU2] C:\Program Files\Common Files\VCClient\VCMain.exe
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: Logitech SetPoint.lnk = C:\Program Files\Logitech\SetPoint\SetPoint.exe
O8 - Extra context menu item: &Google Search - res://C:\Program Files\Google\GoogleToolbar1.dll/cmsearch.html
O8 - Extra context menu item: &Translate English Word - res://C:\Program Files\Google\GoogleToolbar1.dll/cmwordtrans.html
O8 - Extra context menu item: Backward Links - res://C:\Program Files\Google\GoogleToolbar1.dll/cmbacklinks.html
O8 - Extra context menu item: Cached Snapshot of Page - res://C:\Program Files\Google\GoogleToolbar1.dll/cmcache.html
O8 - Extra context menu item: Similar Pages - res://C:\Program Files\Google\GoogleToolbar1.dll/cmsimilar.html
O8 - Extra context menu item: Translate Page into English - res://C:\Program Files\Google\GoogleToolbar1.dll/cmtrans.html
O9 - Extra button: AIM - {AC9E2541-2814-11d5-BC6D-00B0D0A1DE45} - C:\Program Files\AIM\aim.exe
O9 - Extra button: Yahoo! Messenger - {E5D12C4E-7B4F-11D3-B5C9-0050045C3C96} - C:\PROGRA~1\Yahoo!\MESSEN~1\YPager.exe
O9 - Extra 'Tools' menuitem: Yahoo! Messenger - {E5D12C4E-7B4F-11D3-B5C9-0050045C3C96} - C:\PROGRA~1\Yahoo!\MESSEN~1\YPager.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/MsnMessengerSetupDownloader.cab
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)
O23 - Service: Adobe LM Service - Unknown owner - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: ewido security suite control - ewido networks - C:\Program Files\ewido anti-malware\ewidoctrl.exe
O23 - Service: ewido security suite guard - ewido networks - C:\Program Files\ewido anti-malware\ewidoguard.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
Life, is like a cookie.

cisvc.exe wuauclt.exe 65.55.158.80	cidaemon.exe cidaemon.exe adware A0065526.exe
See More

Response Number 6

Name: jabuck
Date: February 6, 2006 at 03:35:47 Pacific

Reply:

Looks better, one virus remaining.
Download killbox to your desktop from this link Killbox
Run HT again, close all windows and browsers except HT,place a check to the left of the floowing items and press "fix checked":
O4 - HKLM\..\Run: [NewFrn] C:\WINDOWS\newfrn.exe

Double-click on Killbox.exe to run it.
Put a tick by Standard File Kill.
In the "Full Path of File to Delete" box, copy and paste each of the following lines one at a time.
O4 - HKLM\..\Run: [NewFrn] C:\WINDOWS\newfrn.exe

Click on the button that has the red circle with the X in the middle after you enter each file.
It will ask for confimation to delete the file.
Click Yes.
Post a new HT log.

Response Number 7

Name: DJ_Kaos
Date: February 6, 2006 at 18:28:11 Pacific

Reply:

Logfile of HijackThis v1.99.1
Scan saved at 6:27:06 PM, on 2/6/2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\cisvc.exe
C:\Program Files\ewido anti-malware\ewidoctrl.exe
C:\Program Files\ewido anti-malware\ewidoguard.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Logitech\iTouch\iTouch.exe
C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
C:\WINDOWS\system32\Rundll32.exe
C:\PROGRA~1\BILLPS~1\WINPAT~1\winpatrol.exe
C:\Program Files\Google\Google Talk\googletalk.exe
C:\Program Files\Common Files\Ahead\lib\NMBgMonitor.exe
C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
C:\Program Files\Logitech\SetPoint\SetPoint.exe
C:\Program Files\Common Files\Logitech\KHAL\KHALMNPR.exe
C:\WINDOWS\explorer.exe
C:\Program Files\Spyware Doctor\swdoctor.exe
C:\Documents and Settings\sxlNiGhTmArEl\My Documents\My Received Files\HijackThis.exe
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://yahoo.sbc.com/dsl
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://yahoo.sbc.com/dsl
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O3 - Toolbar: &Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O4 - HKLM\..\Run: [LiveMonitor] C:\Program Files\MSI\Live Update 3\LMonitor.exe
O4 - HKLM\..\Run: [zBrowser Launcher] C:\Program Files\Logitech\iTouch\iTouch.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
O4 - HKLM\..\Run: [P17Helper] Rundll32 P17.dll,P17Helper
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.exe C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.exe C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [WinPatrol] C:\PROGRA~1\BILLPS~1\WINPAT~1\winpatrol.exe
O4 - HKCU\..\Run: [googletalk] "C:\Program Files\Google\Google Talk\googletalk.exe" /autostart
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Common Files\Ahead\lib\NMBgMonitor.exe"
O4 - HKCU\..\Run: [CU1] C:\Program Files\Common Files\VCClient\VCClient.exe
O4 - HKCU\..\Run: [CU2] C:\Program Files\Common Files\VCClient\VCMain.exe
O4 - HKCU\..\Run: [AIM] C:\Program Files\AIM\aim.exe -cnetwait.odl
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: Logitech SetPoint.lnk = C:\Program Files\Logitech\SetPoint\SetPoint.exe
O8 - Extra context menu item: &Google Search - res://C:\Program Files\Google\GoogleToolbar1.dll/cmsearch.html
O8 - Extra context menu item: &Translate English Word - res://C:\Program Files\Google\GoogleToolbar1.dll/cmwordtrans.html
O8 - Extra context menu item: Backward Links - res://C:\Program Files\Google\GoogleToolbar1.dll/cmbacklinks.html
O8 - Extra context menu item: Cached Snapshot of Page - res://C:\Program Files\Google\GoogleToolbar1.dll/cmcache.html
O8 - Extra context menu item: Similar Pages - res://C:\Program Files\Google\GoogleToolbar1.dll/cmsimilar.html
O8 - Extra context menu item: Translate Page into English - res://C:\Program Files\Google\GoogleToolbar1.dll/cmtrans.html
O9 - Extra button: AIM - {AC9E2541-2814-11d5-BC6D-00B0D0A1DE45} - C:\Program Files\AIM\aim.exe
O9 - Extra button: Yahoo! Messenger - {E5D12C4E-7B4F-11D3-B5C9-0050045C3C96} - C:\PROGRA~1\Yahoo!\MESSEN~1\YPager.exe
O9 - Extra 'Tools' menuitem: Yahoo! Messenger - {E5D12C4E-7B4F-11D3-B5C9-0050045C3C96} - C:\PROGRA~1\Yahoo!\MESSEN~1\YPager.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/MsnMessengerSetupDownloader.cab
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)
O23 - Service: Adobe LM Service - Unknown owner - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: ewido security suite control - ewido networks - C:\Program Files\ewido anti-malware\ewidoctrl.exe
O23 - Service: ewido security suite guard - ewido networks - C:\Program Files\ewido anti-malware\ewidoguard.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
Life, is like a cookie.

Response Number 8

Name: jabuck
Date: February 6, 2006 at 19:08:35 Pacific

Reply:

Looks good, is it runnnig ok?.

Response Number 9

Name: DJ_Kaos
Date: February 6, 2006 at 19:20:54 Pacific

Reply:

Yep, all is great once again. Thanks for your help. Cool that there is people like you out there to help out. To bad you can't give kudos for people on this website. =P
Life, is like a cookie.

Sponsored Link

Ads by Google

Winfix help!

SpywareBlaster Updates 04...

Post Locked

This post is quite old and has been locked from receiving new replies. Please create a new posting instead.

Go to Security and Virus Forum Home

Sponsored links

Ads by Google

Results for: Adware: winsyban5.exe?

adware - msmgt.exe

Summary

www.computing.net/answers/security/adware-msmgtexe/7062.html

explorer.exe CPU Hell!!

Summary

www.computing.net/answers/security/explorerexe-cpu-hell/9811.html

AIM Myspace Virus

Summary

www.computing.net/answers/security/aim-myspace-virus/17293.html

From the Geek Dictionary
Removable Storage - A portable method of storing information.

Ask a Question!

Weekly Poll
What do you think of the new preview of Chrome OS?

Poll Finishes In 7 Days.
Discuss in The Lounge
Poll History

Recent Posts
over heading

laptop turns off suddenly

Claris Cad

NIC not working

Framework Issues.

All Awaiting Reply

Tom's News
Woman Tracks Down Club Attacker on Facebook

Geolocation Functions Come to Twitter

New Craigslist Trend: Trade Sex for Rent?

Law Firm Investigates MS Over Xbox Live Bans

Amazon Charges $25 for Palm Pixi and $80 for Pre

More Tom's Guide News

Data Recovery

Manufacturer List | About Us | Advertising Info | Contact Us
The information on Computing.Net is the opinions of its users. Such opinions may not be accurate and they are to be used at your own risk. Computing.Net cannot verify the validity of the statements made on this site. Computing.Net and Computing.Net LLC hereby disclaim all responsibility and liability for the content of Computing.Net and its accuracy.
PLEASE READ THE FULL DISCLAIMER AND LEGAL TERMS BY CLICKING HERE