Here is the supplementary.txt ComboScan v20070306.20 run by NuclearRain on 2007-03-20 at 08:31:18 Supplementary logfile - please post this as an attachment with your post. ---------------------- -- System Informa----- Microsoft Windows XP Professional (build 2600) SP 2.0 Architecture: X86; Language: English CPU 0: Genuine Intel(R) CPU T2500 @ 2.00GHz CPU 1: Genuine Intel(R) CPU T2500 @ 2.00GHz Percentage of Memory in Use: 31% Physical Memory (total/avail): 2046.37 MiB / 1402.12 MiB Pagefile Memory (total/avail): 3938.91 MiB / 3247.07 MiB Virtual Memory (total/avail): 2047.88 MiB / 1996.76 MiB C: is Fixed (NTFS) - 65.2 GiB total, 5.21 GiB free. D: is Fixed (NTFS) - 21.69 GiB total, 0.06 GiB free. E: is CDROM (No Media) -- Security Ce-------- AUOptions is scheduled to auto-install. Windows Internal Firewall is enabled. FirstRunDisabled is set. AntiVirusDisableNotify is set. FirewallDisableNotify is set. FW: McAfee Personal Firewall v (McAfee) AV: McAfee VirusScan v (McAfee) -- Environment Varia-- ALLUSERSPROFILE=C:\Documents and Settings\All Users APPDATA=C:\Documents and Settings\NuclearRain\Application Data CLASSPATH=.;C:\Program Files\Java\jre1.5.0_08\lib\ext\QTJava.zip CLIENTNAME=Console CommonProgramFiles=C:\Program Files\Common Files COMPUTERNAME=D23C3CB1 ComSpec=C:\WINDOWS\system32\cmd.exe FP_NO_HOST_CHECK=NO HOMEDRIVE=C: HOMEPATH=\Documents and Settings\NuclearRain LOGONSERVER=\\D23C3CB1 NUMBER_OF_PROCESSORS=2 OS=Windows_NT Path=C:\Program Files\Mozilla Firefox\;C:\WINDOWS\system32;C:\WINDOWS;C:\WINDOWS\System32\Wbem;C:\Program Files\ATI Technologies\ATI.ACE\;C:\Program Files\Microsoft SQL Server\80\Tools\Binn\;C:\Program Files\QuickTime\QTSystem\ PATHEXT=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH PROCESSOR_ARCHITECTURE=x86 PROCESSOR_IDENTIFIER=x86 Family 6 Model 14 Stepping 8, GenuineIntel PROCESSOR_LEVEL=6 PROCESSOR_REVISION=0e08 ProgramFiles=C:\Program Files PROMPT=$P$G QTJAVA=C:\Program Files\Java\jre1.5.0_08\lib\ext\QTJava.zip SESSIONNAME=Console SonicCentral=C:\Program Files\Common Files\Sonic Shared\Sonic Central\ SystemDrive=C: SystemRoot=C:\WINDOWS TEMP=C:\DOCUME~1\NUCLEA~1\LOCALS~1\Temp TMP=C:\DOCUME~1\NUCLEA~1\LOCALS~1\Temp USERDOMAIN=D23C3CB1 USERNAME=NuclearRain USERPROFILE=C:\Documents and Settings\NuclearRain windir=C:\WINDOWS -- User Prof---------- NuclearRain [I](admin)[/I] Administrator [I](admin)[/I] Guest [I](new local, guest)[/I] -- Add/Remove Prog---- --> "C:\Program Files\Creative\SBAudigy\Program\CTZapxx.exe" ctsbmb.ini /U /N /S /W --> C:\WINDOWS\IsUninst.exe -fC:\WINDOWS\system32\UninstIPP.isu --> C:\WINDOWS\system32\\MSIEXEC.exe /x {075473F5-846A-448B-BCB3-104AA1760205} --> C:\WINDOWS\system32\\MSIEXEC.exe /x {1206EF92-2E83-4859-ACCB-2048C3CB7DA6} --> C:\WINDOWS\system32\\MSIEXEC.exe /x {AB708C9B-97C8-4AC9-899B-DBF226AC9382} --> C:\WINDOWS\system32\\MSIEXEC.exe /x {B12665F4-4E93-4AB4-B7FC-37053B524629} --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{0CF63063-BD94-4A8B-9966-B6FDC3F55B38}\setup.exe" -l0x9 --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{0B095086-7205-4D48-90DF-DCD16613C6D4}\setup.exe" -l0x9 --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{0B095086-7205-4D48-90DF-DCD16613C6D4}\setup.exe" -l0x9 /remove --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{103BCDA0-E063-46AC-8028-64E78722ABA7}\setup.exe" -l0x9 --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{103BCDA0-E063-46AC-8028-64E78722ABA7}\setup.exe" -l0x9 /remove --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{2616B36E-38CE-4357-8AB5-8B3EE9B1C117}\setup.exe" -l0x9 --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{2616B36E-38CE-4357-8AB5-8B3EE9B1C117}\setup.exe" -l0x9 /remove --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{32B4B536-4443-42F0-9676-98373BE9114F}\setup.exe" -l0x9 --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{32B4B536-4443-42F0-9676-98373BE9114F}\setup.exe" -l0x9 /remove --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{34EBD418-B8E6-4E86-89C4-33B72CF5663F}\setup.exe" -l0x9 --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{34EBD418-B8E6-4E86-89C4-33B72CF5663F}\setup.exe" -l0x9 /remove --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{52338F65-A1C3-4CDC-B733-50051682B297}\setup.exe" -l0x9 --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{52338F65-A1C3-4CDC-B733-50051682B297}\setup.exe" -l0x9 /remove --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{569A9538-86EC-44C3-8EE4-C68B165F2A75}\setup.exe" -l0x9 --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{569A9538-86EC-44C3-8EE4-C68B165F2A75}\setup.exe" -l0x9 /remove --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{5B17E626-7885-4FC3-A66A-73548A4F01FD}\setup.exe" -l0x9 --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{5B17E626-7885-4FC3-A66A-73548A4F01FD}\setup.exe" -l0x9 /remove --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{700932B3-A964-4878-82A2-96054622A1F7}\setup.exe" -l0x9 --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{700932B3-A964-4878-82A2-96054622A1F7}\setup.exe" -l0x9 /remove --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{73919E2B-725C-4FAA-8473-45E063A3575F}\setup.exe" -l0x9 --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{73919E2B-725C-4FAA-8473-45E063A3575F}\setup.exe" -l0x9 /remove --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{7AFFF09F-386B-4F7A-B3E0-EC24C13893AA}\setup.exe" -l0x9 --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{7AFFF09F-386B-4F7A-B3E0-EC24C13893AA}\setup.exe" -l0x9 /remove --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{8A3F2ADE-DEF2-4A50-866A-6B9357B5590F}\setup.exe" -l0x9 --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{8A3F2ADE-DEF2-4A50-866A-6B9357B5590F}\setup.exe" -l0x9 /remove --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{943884D4-B604-496F-B132-DFA9C63FAF6A}\setup.exe" -l0x9 --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{A82F10CB-18B5-4EAC-AEF2-FA49CD565626}\setup.exe" -l0x9 --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{DAAC5938-8026-4D0C-A476-D1954917B7F5}\setup.exe" -l0x9 --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{DAAC5938-8026-4D0C-A476-D1954917B7F5}\setup.exe" -l0x9 /remove --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{DE4A4C48-2232-4CCB-AD61-490ACD29BA85}\setup.exe" -l0x9 --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{DE4A4C48-2232-4CCB-AD61-490ACD29BA85}\setup.exe" -l0x9 /remove --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{EEEF992E-270C-4B4C-8389-4B3DEEE33190}\Setup.exe" -l0x9 --> rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:\WINDOWS\INF\PCHealth.inf Adobe Flash Player 9 --> C:\WINDOWS\system32\Macromed\Flash\FlashUtil9b.exe -uninstallDelete Adobe Reader 8 --> MsiExec.exe /I{AC76BA86-7AD7-1033-7B44-A80000000002} Adobe® Photoshop® Album Starter Edition 3.0 --> MsiExec.exe /I{4BDFD2CE-6329-42E4-9801-9B3D1F10D79B} Andrea VoiceCenter --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{8D2AE3F6-79DF-423C-91CB-389F6FB5837B}\Setup.exe" -Remove AOL Instant Messenger --> C:\Program Files\AIM\uninstll.exe -LOG= C:\Program Files\AIM\install.log -OEM= AOLIcon --> MsiExec.exe /I{62BD0AE0-4EB1-4BBB-8F43-B6400C8FEB2C} Apple Software Update --> MsiExec.exe /I{A50C25D7-62E9-4511-AD70-8E2DA5E79B7D} ATI Catalyst Control Center --> MsiExec.exe /I{0D251F37-10CB-46DF-BFA0-4702218DB0B6} ATI Display Driver --> rundll32 C:\WINDOWS\system32\atiiiexx.dll,_InfEngUnInstallINFFile_RunDLL@16 -force_restart -flags:0x2010001 -inf_class:DISPLAY -clean Bluetooth Stack for Windows by Toshiba --> MsiExec.exe /X{CEBB6BFB-D708-4F99-A633-BC2600E01EF6} Broadcom Management Programs --> MsiExec.exe /I{26E1BFB0-E87E-4696-9F89-B467F01F81E5} Canon Camera Access Library --> C:\Program Files\Common Files\InstallShield\Driver\8\Intel 32\IDriver.exe /M{901F8ED7-13E8-43EF-B738-2FE89B0588EB} /l1033 Canon Camera Support Core Library --> C:\Program Files\Common Files\InstallShield\Driver\8\Intel 32\IDriver.exe /M{A1D0D14A-B776-4907-BC00-5149F2298086} /l1033 Canon Camera Window DC_DV 5 for ZoomBrowser EX --> C:\Program Files\Common Files\InstallShield\Driver\8\Intel 32\IDriver.exe /M{A2EB8F2E-6D9B-4F8B-96EB-F976D33F416F} Canon Camera Window DC_DV 6 for ZoomBrowser EX --> C:\Program Files\Common Files\InstallShield\Driver\8\Intel 32\IDriver.exe /M{50E25180-3BDC-4B6D-80A2-3F1F0C9CF39D} Canon Camera Window DSLR 5 for ZoomBrowser EX --> C:\Program Files\Common Files\InstallShield\Driver\8\Intel 32\IDriver.exe /M{0A146245-DB79-4197-BF5D-FE1A699A2CC7} Canon Camera Window MC 6 for ZoomBrowser EX --> C:\Program Files\Common Files\InstallShield\Driver\8\Intel 32\IDriver.exe /M{6C3A75A6-9A90-44A3-A703-82AC1EA6A85D} Canon i9900 --> C:\WINDOWS\system32\CNMCP5p.exe "-PRINTERNAMECanon i9900" "-HELPERDLLC:\BJPrinter\CNMWINDOWS\Canon i9900 Installer\Inst2\cnmis.dll" "-RCDLLC:\BJPrinter\CNMWINDOWS\Canon i9900 Installer\Inst2\cnmi0409.dll" Canon MovieEdit Task for ZoomBrowser EX --> C:\Program Files\Common Files\InstallShield\Driver\8\Intel 32\IDriver.exe /M{B147DC1B-49B3-4368-8A01-5AD9992CD58D} Canon MP Navigator 2.2 --> "C:\Program Files\Canon\MP Navigator 2.2\Maint.exe" /UninstallRemove C:\Program Files\Canon\MP Navigator 2.2\uninst.ini Canon MP830 --> "C:\WINDOWS\system32\CanonMP Uninstaller Information\{0D25F7CC-B99C-44ee-9945-B14532B2BB7B}\DelDrv.exe" /U:{0D25F7CC-B99C-44ee-9945-B14532B2BB7B} /L0x0009 Canon PhotoRecord --> MsiExec.exe /X{BBBC2B89-E193-4348-A83C-C8DD8210A4AC} Canon RAW Image Task for ZoomBrowser EX --> C:\Program Files\Common Files\InstallShield\Driver\8\Intel 32\IDriver.exe /M{BAA43DA2-B6C5-46EC-B163-0E8EEAF975A4} Canon RemoteCapture Task for ZoomBrowser EX --> C:\Program Files\Common Files\InstallShield\Driver\8\Intel 32\IDriver.exe /M{821DC151-4691-4E26-AE7E-522921D0FD54} Canon Utilities Easy-PhotoPrint --> C:\Program Files\Canon\Easy-PhotoPrint\uninst.exe uninst.ini Canon Utilities PhotoStitch 3.1 --> C:\Program Files\Common Files\InstallShield\Driver\8\Intel 32\IDriver.exe /M{874E44F3-B9A7-4AA1-B4BA-83E5684ED9C6} Canon ZoomBrowser EX (E) --> MsiExec.exe /X{C1D76D7A-F3BB-47EA-A746-5B1E2FFC1DF2} Conexant HDA D110 MDC V.92 Modem --> C:\Program Files\CONEXANT\CNXT_MODEM_HDAUDIO_VEN_14F1&DEV_2BFA&SUBSYS_14F100C3\HXFSETUP.exe -U -Idel1028k.inf Consumer Complete Care Services Agreement --> MsiExec.exe /X{E8C06CB3-5DB2-4689-B1DC-4A0220DEA96C} Corel Photo Album 6 --> MsiExec.exe /X{8A9B8148-DDD7-448F-BD6C-358386D32354} Creative MediaSource --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{2E0C1913-886B-4C5C-8DAF-D1E649CE5FCC}\Setup.exe" -l0x9 /remove DeadAIM --> MsiExec.exe /I{0F8F3415-CB0A-49A6-A23A-D8390444B127} Dell Digital Jukebox Driver --> C:\Program Files\Dell\Digital Jukebox Drivers\DrvUnins.exe /s Dell Game Console --> "C:\Program Files\WildTangent\Apps\Dell Game Console\Uninstall.exe" Dell Support 3.1 --> MsiExec.exe /X{548EEA8E-8299-497F-8057-811D2D7097DC} Digital Content Portal --> MsiExec.exe /I{6D5FCA42-1486-4E32-AFE8-1B7E2AA59D33} Digital Line Detect --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{E646DCF0-5A68-11D5-B229-002078017FBF}\setup.exe" -l0x9 ControlPanel Documentation & Support Launcher --> MsiExec.exe /X{B0DF58A2-40DF-4465-AA56-38623EC9938C} Easy-WebPrint --> C:\WINDOWS\IsUninst.exe -f"C:\Program Files\Canon\Easy-WebPrint\Uninst.isu" EducateU --> MsiExec.exe /I{A683A2C0-821C-486F-858C-FA634DB5E864} ElectricSheep 2.6.6 --> C:\WINDOWS\system32\UninstallElectricSheep.exe ELIcon --> MsiExec.exe /I{4667B940-BB01-428B-986E-A0CC46497BF7} Games, Music, & Photos Launcher --> MsiExec.exe /X{B6884A07-0305-47AE-9969-8F26FADC17DE} GemMaster Mystic --> "C:\Program Files\GemMaster\uninstallgemmaster.exe" Google Desktop --> C:\Program Files\Google\Google Desktop Search\GoogleDesktopSetup.exe -uninstall Gutshot --> C:\Program Files\Gutshot\uninstall.exe High Definition Audio Driver Package - KB835221 --> C:\WINDOWS\$NtUninstallKB835221WXP$\spuninst\spuninst.exe Hijackthis 1.99.1 --> "C:\Program Files\Hijackthis\unins000.exe" HijackThis 1.99.1 --> C:\Program Files\Hijackthis\HijackThis.exe /uninstall Intel(R) PROSet/Wireless Software --> C:\WINDOWS\Installer\iProInst.exe Internet Service Offers Launcher --> MsiExec.exe /X{E42BD75A-FC23-4E3F-9F91-2658334C644F} iTunes --> MsiExec.exe /I{446DBFFA-4088-48E3-8932-74316BA4CAE4} J2SE Runtime Environment 5.0 Update 8 --> MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0150080} Java 2 Runtime Environment, SE v1.4.2_03 --> MsiExec.exe /I{7148F0A8-6813-11D6-A77B-00B0D0142030} LimeWire 4.12.6 --> "C:\Program Files\LimeWire\uninstall.exe" LiveReg (Symantec Corporation) --> C:\Program Files\Common Files\Symantec Shared\LiveReg\VcSetup.exe /REMOVE LiveUpdate 2.6 (Symantec Corporation) --> C:\Program Files\Symantec\LiveUpdate\LSETUP.exe /U Logitech SetPoint --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{2E8EAC71-BFE4-417A-88F0-5A1BDFBCF5D3}\setup.exe" -l0x9 McAfee SecurityCenter --> C:\Program Files\McAfee\MSC\mcuninst.exe McAfee Uninstaller --> C:\PROGRA~1\McAfee.com\Shared\mcappins.exe /v=3 /uninstall=1 /interact=1 /script_proactive=0 /start=c:\PROGRA~1\mcafee.com\agent\uninst\comrem.dll::uninstall.htm mCore --> MsiExec.exe /I{E81667C6-2856-46D6-ABEA-6A2F42166779} MCU --> MsiExec.exe /I{D2988E9B-C73F-422C-AD4B-A66EBE257120} mDrWiFi --> MsiExec.exe /I{F6090A17-0967-4A8A-B3C3-422A1B514D49} mHlpDell --> MsiExec.exe /I{49D687E5-6784-431B-A0A2-2F23B8CC5A1B} Microsoft Office Outlook 2003 with Business Contact Manager Update --> MsiExec.exe /I{BA68600E-96D9-4E92-80F2-26B9681B5A63} Microsoft Office Small Business Edition 2003 --> MsiExec.exe /I{91CA0409-6000-11D3-8CFE-0150048383C9} Microsoft Plus! Digital Media Edition Installer --> MsiExec.exe /X{6E45BA47-383C-4C1E-8ED0-0D4845C293D7} Microsoft Plus! Photo Story 2 LE --> MsiExec.exe /X{0EB5D9B7-8E6C-4A9E-B74F-16B7EE89A67B} Microsoft SQL Server Desktop Engine (MICROSOFTSMLBIZ) --> MsiExec.exe /X{E09B48B5-E141-427A-AB0C-D3605127224A} mIWA --> MsiExec.exe /I{3E9D596A-61D4-4239-BD19-2DB984D2A16F} mLogView --> MsiExec.exe /I{0E2B0B41-7E08-4F9F-B21F-41C4133F43B7} mMHouse --> MsiExec.exe /I{F0BFC7EF-9CF8-44EE-91B0-158884CD87C5} Modem Helper --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{7F142D56-3326-11D5-B229-002078017FBF}\setup.exe" -l0x9 ControlPanel Mozilla Firefox (1.5.0.10) --> C:\Program Files\Mozilla Firefox\uninstall\uninstall.exe /ua "1.5.0.10 (en-US)" mPfMgr --> MsiExec.exe /I{8B928BA1-EDEC-4227-A2DA-DD83026C36F5} mPfWiz --> MsiExec.exe /I{90B0D222-8C21-4B35-9262-53B042F18AF9} mProSafe --> MsiExec.exe /I{23FB368F-1399-4EAC-817C-4B83ECBE3D83} mSSO --> MsiExec.exe /I{06BE8AFD-A8E2-4B63-BAE7-287016D16ACB} Musicmatch® Jukebox --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{85D3CC30-8859-481A-9654-FD9B74310BEF}\setup.exe" -l0x9 -uninst mWlsSafe --> MsiExec.exe /I{FCA651F3-5BDA-4DDA-9E4A-5D87D6914CC4} mWMI --> MsiExec.exe /I{63DB9CCD-2B56-4217-9A3D-507AC78320CA} mXML --> MsiExec.exe /I{9CC89556-3578-48DD-8408-04E66EBEF401} mZConfig --> MsiExec.exe /I{94658027-9F16-4509-BBD7-A59FE57C3023} NetWaiting --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{3F92ABBB-6BBF-11D5-B229-002078017FBF}\setup.exe" -l0x9 ControlPanel Norton Ghost 10.0 --> MsiExec.exe /X{32F720F5-2D0D-4245-A2B0-9EB3CECF8101} OmniPage SE 2.0 --> MsiExec.exe /I{79D5997E-BF79-48BB-8B41-9BE59C15C2D7} Otto --> "C:\Program Files\EnglishOtto\uninstallotto.exe" PowerDVD 5.7 --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{6811CAA0-BF12-11D4-9EA1-0050BAE317E1}\setup.exe" -uninstall Presto! PageManager 7.15.11 --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{EA52A1AC-D35D-4D25-8686-9466FE2C5CE5}\SETUP.exe" -l0x9 anything Qualxserve Service Agreement --> MsiExec.exe /X{0F756CD9-4A1E-409B-B101-601DDC4C03AA} QuickSet --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{C5074CC4-0E26-4716-A307-960272A90040}\setup.exe" -l0x9 APPDRVNT4 QuickTime --> MsiExec.exe /I{50D8FFDD-90CD-4859-841F-AA1961C7767A} RealArcade --> C:\Program Files\Real\RealArcade\Update\rnuninst.exe RealNetworks|RealArcade|1.2 RealPlayer Basic --> C:\Program Files\Common Files\Real\Update\\rnuninst.exe RealNetworks|RealPlayer|6.0 SAP Front End --> "C:\WINDOWS\SAPwksta\setup\sapsetup.exe" /uninstall Sonic DLA --> MsiExec.exe /I{1206EF92-2E83-4859-ACCB-2048C3CB7DA6} Sonic Encoders --> MsiExec.exe /I{9941F0AA-B903-4AF4-A055-83A9815CC011} Sonic MyDVD LE --> MsiExec.exe /I{21657574-BD54-48A2-9450-EB03B2C7FC29} Sonic RecordNow Audio --> MsiExec.exe /I{AB708C9B-97C8-4AC9-899B-DBF226AC9382} Sonic RecordNow Copy --> MsiExec.exe /I{B12665F4-4E93-4AB4-B7FC-37053B524629} Sonic RecordNow Data --> MsiExec.exe /I{075473F5-846A-448B-BCB3-104AA1760205} Sonic Update Manager --> MsiExec.exe /I{30465B6C-B53F-49A1-9EBA-A3F187AD502E} Sound Blaster ADVANCED MB Drivers --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{943884D4-B604-496F-B132-DFA9C63FAF6A}\setup.exe" -l0x9 /remove Sound Blaster Audigy ADVANCED MB --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{53C6D09E-EAB6-49E5-BA4C-BA7FF13830FB}\Setup.exe" -l0x9 /remove Sound Blaster Audigy ADVANCED MB Product Registration --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{EEEF992E-270C-4B4C-8389-4B3DEEE33190}\Setup.exe" -l0x9 /remove Spy Sweeper --> "C:\Program Files\Maintenance\AntiSpyware\Webroot\Spy Sweeper\unins000.exe" Synaptics Pointing Device Driver --> rundll32.exe "C:\Program Files\Synaptics\SynTP\SynISDLL.dll",standAloneUninstall Update Rollup 2 for Windows XP Media Center Edition 2005 --> C:\WINDOWS\$NtUninstallKB900325$\spuninst\spuninst.exe Viewpoint Media Player --> C:\Program Files\Viewpoint\Viewpoint Experience Technology\mtsAxInstaller.exe /u WebCyberCoach 3.2 Dell --> "C:\Program Files\WebCyberCoach\b_Dell\WCC_Wipe.exe" "WebCyberCoach ext\wtrb" /inf "engine.inf,RealUninstallSection,,4" /infcfg "enginecf.inf,RealUninstallSection,,4" WildTangent Web Driver --> C:\Program Files\WildTangent\Apps\CDA\CDAUninstall.exe Windows XP Media Center Edition 2005 KB908246 --> "C:\WINDOWS\$NtUninstallKB908246$\spuninst\spuninst.exe" Windows XP Media Center Edition 2005 KB919803 --> "C:\WINDOWS\$NtUninstallKB919803$\spuninst\spuninst.exe" Yahoo! Toolbar --> C:\PROGRA~1\Yahoo!\Common\unyt.exe -- End of ComboScan: finished at 2007-03-20 at 08:3

0

The following will disable but not delete this item: O23 - Service: Network Log Provider (NETXMP) - Unknown owner - C:\WINDOWS\system32\nlbsvc.exe Go to start> control panel> administrative tools> services> scroll down toNETXMP (Network Log Provider) and double click it> click stop> click the drop down arrow on the far right of "startup type"> click disable> apply> ok. Please download ATF-Cleaner to your desktop from this link http://www.atribune.org/content/view/19/2/ We will need it later in safe mode Download and install AVG Anti-Spyware We will need this later in safe mode Be sure to update AVG Anti- Spyware Next, please reboot your computer in Safe Mode by doing the following : Restart your computer After hearing your computer beep once during startup, but before the Windows icon appears, tap the F8 key continually; Instead of Windows loading as normal, a menu with options should appear; Select the first option, to run Windows in Safe Mode, then press "Enter". Choose your usual account. Run ATF-Cleaner from safe mode.Double-click ATF-Cleaner.exe to run the program. Under Main choose: Select All Click the Empty Selected button. Empty the restore folder. Go to start>control panel>system>system restore tab>check the box beside "turn off system restore>apply (takes a minute)>ok. Go back and uncheck the box to turn system restore back on>apply>ok. In Safe Mode, run AVG Anti-spyware and click on the Scanner tab at the top. Click the "Settings" tab and then change the recommended action to Quarantine and click Automatically generate report after every scan. Click back to the "Scan" tab and then click on Complete System Scan. This scan can take quite a while to run, so be prepared. AVG Anti-Spyware will list any infections found on the left hand side. When the scan has finished, it will automatically set the recommended action. Click the Apply all actions button. AVG Anti-Spyware will display "All actions have been applied" on the right hand side. Click on "Save Report", then "Save Report As". This will create a text file. Make sure you know where to find this file again (like on the Desktop). please post the AVG-AntiSpyware report.

0

As soon as i installed AVG, i was notified of Malware: Downloader.small C:\Windows\System32\Rpcnet.exe and Rpcnet.dll Backdoor.SdBot.aad c:\windows\system32\nlbsvc.exe safemode scan in process

0

Go through the cleaning process in response #8 then we will delete the file "nlbsvc".

0

AVG Anti-Spyware - Scan Report + Created at: 9:02:34 PM 3/20/2007 + Scan result: C:\Program Files\AWS\WeatherBug\MiniBugTransporter.dll -> Adware.Aws : Ignored. C:\System Volume Information\_restore{129201FA-B0AC-49B3-96B2-DEB8B91E727B}\RP237\A0031415.exe -> Backdoor.SdBot.aad : Cleaned with backup (quarantined). :mozilla.286:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.2o7 : Cleaned. :mozilla.287:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.2o7 : Cleaned. :mozilla.288:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.2o7 : Cleaned. :mozilla.289:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.2o7 : Cleaned. :mozilla.290:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.2o7 : Cleaned. :mozilla.291:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.2o7 : Cleaned. :mozilla.292:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.2o7 : Cleaned. :mozilla.293:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.2o7 : Cleaned. :mozilla.294:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.2o7 : Cleaned. :mozilla.295:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.2o7 : Cleaned. :mozilla.296:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.2o7 : Cleaned. :mozilla.297:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.2o7 : Cleaned. :mozilla.298:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.2o7 : Cleaned. :mozilla.299:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.2o7 : Cleaned. :mozilla.300:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.2o7 : Cleaned. :mozilla.301:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.2o7 : Cleaned. :mozilla.302:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.2o7 : Cleaned. :mozilla.303:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.2o7 : Cleaned. :mozilla.304:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.2o7 : Cleaned. :mozilla.305:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.2o7 : Cleaned. :mozilla.306:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.2o7 : Cleaned. :mozilla.307:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.2o7 : Cleaned. :mozilla.308:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.2o7 : Cleaned. :mozilla.309:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.2o7 : Cleaned. :mozilla.310:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.2o7 : Cleaned. :mozilla.311:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.2o7 : Cleaned. :mozilla.312:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.2o7 : Cleaned. :mozilla.313:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.2o7 : Cleaned. :mozilla.314:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.2o7 : Cleaned. :mozilla.315:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.2o7 : Cleaned. :mozilla.316:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.2o7 : Cleaned. :mozilla.317:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.2o7 : Cleaned. :mozilla.318:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.2o7 : Cleaned. :mozilla.319:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.2o7 : Cleaned. :mozilla.320:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.2o7 : Cleaned. :mozilla.321:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.2o7 : Cleaned. :mozilla.360:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.2o7 : Cleaned. :mozilla.448:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.2o7 : Cleaned. :mozilla.574:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.2o7 : Cleaned. :mozilla.800:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.2o7 : Cleaned. :mozilla.877:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.2o7 : Cleaned. :mozilla.681:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.Aavalue : Cleaned. :mozilla.682:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.Aavalue : Cleaned. :mozilla.683:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.Aavalue : Cleaned. :mozilla.684:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.Aavalue : Cleaned. :mozilla.685:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.Aavalue : Cleaned. :mozilla.686:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.Aavalue : Cleaned. :mozilla.687:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.Aavalue : Cleaned. :mozilla.688:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.Aavalue : Cleaned. :mozilla.15:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.Adbrite : Cleaned. :mozilla.16:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.Adbrite : Cleaned. :mozilla.17:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.Adbrite : Cleaned. :mozilla.197:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.Adbrite : Cleaned. :mozilla.199:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.Adbrite : Cleaned. :mozilla.29:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.Adbrite : Cleaned. :mozilla.925:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.Adbrite : Cleaned. :mozilla.942:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.Adbrite : Cleaned. :mozilla.70:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.Addynamix : Cleaned. :mozilla.85:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.Adengage : Cleaned. :mozilla.123:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.Adrevolver : Cleaned. :mozilla.124:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.Adrevolver : Cleaned. :mozilla.125:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.Adrevolver : Cleaned. :mozilla.126:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.Adrevolver : Cleaned. :mozilla.127:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.Adrevolver : Cleaned. :mozilla.128:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.Adrevolver : Cleaned. :mozilla.86:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.Advertising : Cleaned. :mozilla.87:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.Advertising : Cleaned. :mozilla.88:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.Advertising : Cleaned. :mozilla.89:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.Advertising : Cleaned. :mozilla.90:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.Advertising : Cleaned. :mozilla.12:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.Atdmt : Cleaned. :mozilla.720:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.Bfast : Cleaned. :mozilla.721:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.Bfast : Cleaned. :mozilla.263:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.Bluestreak : Cleaned. :mozilla.465:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.Bridgetrack : Cleaned. :mozilla.466:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.Bridgetrack : Cleaned. :mozilla.467:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.Bridgetrack : Cleaned. :mozilla.454:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.Burstbeacon : Cleaned. :mozilla.373:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.Burstnet : Cleaned. :mozilla.374:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.Burstnet : Cleaned. :mozilla.407:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned. :mozilla.408:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned. :mozilla.409:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned. :mozilla.410:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned. :mozilla.411:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned. :mozilla.412:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned. :mozilla.131:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.Clickhype : Cleaned. :mozilla.749:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.Clickzs : Cleaned. :mozilla.750:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.Clickzs : Cleaned. :mozilla.555:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.Com : Cleaned. :mozilla.889:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.Coremetrics : Cleaned. :mozilla.608:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.Cpvfeed : Cleaned. :mozilla.609:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.Cpvfeed : Cleaned. :mozilla.610:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.Cpvfeed : Cleaned. :mozilla.611:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.Cpvfeed : Cleaned. :mozilla.805:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.Cqcounter : Cleaned. :mozilla.584:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.Dealtime : Cleaned. :mozilla.20:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.Doubleclick : Cleaned. :mozilla.21:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.Doubleclick : Cleaned. :mozilla.22:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.Doubleclick : Cleaned. :mozilla.23:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.Doubleclick : Cleaned. :mozilla.24:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.Doubleclick : Cleaned. :mozilla.25:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.Doubleclick : Cleaned. :mozilla.26:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.Doubleclick : Cleaned. :mozilla.705:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.Etracker : Cleaned. :mozilla.327:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.Euroclick : Cleaned. :mozilla.328:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.Euroclick : Cleaned. :mozilla.18:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.Falkag : Cleaned. :mozilla.19:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.Falkag : Cleaned. :mozilla.502:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.Falkag : Cleaned. :mozilla.503:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.Falkag : Cleaned. :mozilla.504:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.Falkag : Cleaned. :mozilla.505:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.Falkag : Cleaned. :mozilla.506:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.Falkag : Cleaned. :mozilla.76:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.Fastclick : Cleaned. :mozilla.77:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.Fastclick : Cleaned. :mozilla.78:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.Fastclick : Cleaned. :mozilla.79:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.Fastclick : Cleaned. :mozilla.433:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.Googleadservices : Cleaned. :mozilla.470:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.Googleadservices : Cleaned. :mozilla.870:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.Googleadservices : Cleaned. :mozilla.891:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.Googleadservices : Cleaned. :mozilla.946:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.Googleadservices : Cleaned. :mozilla.52:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned. :mozilla.53:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned. :mozilla.55:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned. :mozilla.623:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned. :mozilla.625:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned. :mozilla.857:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned. :mozilla.931:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned. :mozilla.427:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.Linksynergy : Cleaned. :mozilla.428:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.Linksynergy : Cleaned. :mozilla.425:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.Liveperson : Cleaned. :mozilla.426:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.Liveperson : Cleaned. :mozilla.435:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.Liveperson : Cleaned. :mozilla.436:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.Liveperson : Cleaned. :mozilla.886:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.Liveperson : Cleaned. :mozilla.888:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.Liveperson : Cleaned. :mozilla.82:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.Masterstats : Cleaned. :mozilla.30:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.Mediaplex : Cleaned. :mozilla.31:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.Mediaplex : Cleaned. :mozilla.192:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.Overture : Cleaned. :mozilla.193:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.Overture : Cleaned. :mozilla.194:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.Overture : Cleaned. :mozilla.432:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.Overture : Cleaned. :mozilla.804:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.Paypal : Cleaned. :mozilla.449:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.Pointroll : Cleaned. :mozilla.450:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.Pointroll : Cleaned. :mozilla.451:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.Pointroll : Cleaned. :mozilla.452:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.Pointroll : Cleaned. :mozilla.453:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.Pointroll : Cleaned. :mozilla.590:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.Pro-market : Cleaned. :mozilla.591:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.Pro-market : Cleaned. :mozilla.670:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.Questionmarket : Cleaned. :mozilla.671:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.Questionmarket : Cleaned. :mozilla.118:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.Realmedia : Cleaned. :mozilla.119:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.Realmedia : Cleaned. :mozilla.120:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.Realmedia : Cleaned. :mozilla.121:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.Realmedia : Cleaned. :mozilla.122:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.Realmedia : Cleaned. :mozilla.751:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.Realtracker : Cleaned. :mozilla.565:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.Reliablestats : Cleaned. :mozilla.566:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.Reliablestats : Cleaned. :mozilla.567:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.Reliablestats : Cleaned. :mozilla.568:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.Reliablestats : Cleaned. :mozilla.569:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.Reliablestats : Cleaned. :mozilla.334:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.Revsci : Cleaned. :mozilla.335:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.Revsci : Cleaned. :mozilla.336:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.Revsci : Cleaned. :mozilla.337:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.Revsci : Cleaned. :mozilla.338:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.Revsci : Cleaned. :mozilla.339:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.Revsci : Cleaned. :mozilla.340:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.Revsci : Cleaned. :mozilla.341:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.Revsci : Cleaned. :mozilla.342:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.Revsci : Cleaned. :mozilla.343:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.Revsci : Cleaned. :mozilla.344:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.Revsci : Cleaned. :mozilla.345:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.Revsci : Cleaned. :mozilla.414:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.Revsci : Cleaned. :mozilla.56:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.Ru4 : Cleaned. :mozilla.65:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.Ru4 : Cleaned. :mozilla.66:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.Ru4 : Cleaned. :mozilla.67:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.Ru4 : Cleaned. :mozilla.68:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.Ru4 : Cleaned. :mozilla.69:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.Ru4 : Cleaned. :mozilla.389:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.Specificclick : Cleaned. :mozilla.390:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.Specificclick : Cleaned. :mozilla.391:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.Specificclick : Cleaned. :mozilla.392:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.Specificclick : Cleaned. :mozilla.169:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned. :mozilla.170:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned. :mozilla.171:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned. :mozilla.172:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned. :mozilla.173:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned. :mozilla.174:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned. :mozilla.175:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned. :mozilla.176:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned. :mozilla.177:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned. :mozilla.178:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned. :mozilla.179:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned. :mozilla.180:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned. :mozilla.181:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned. :mozilla.182:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned. :mozilla.183:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned. :mozilla.184:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned. :mozilla.185:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned. :mozilla.186:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned. :mozilla.187:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned. :mozilla.152:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.Tacoda : Cleaned. :mozilla.153:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.Tacoda : Cleaned. :mozilla.154:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.Tacoda : Cleaned. :mozilla.672:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.Tacoda : Cleaned. :mozilla.455:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.Trafficmp : Cleaned. :mozilla.456:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.Trafficmp : Cleaned. :mozilla.457:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.Trafficmp : Cleaned. :mozilla.458:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.Trafficmp : Cleaned. :mozilla.459:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.Trafficmp : Cleaned. :mozilla.460:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.Trafficmp : Cleaned. :mozilla.461:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.Trafficmp : Cleaned. :mozilla.13:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.Tribalfusion : Cleaned. :mozilla.14:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.Tribalfusion : Cleaned. :mozilla.703:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.Valuead : Cleaned. :mozilla.704:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.Valuead : Cleaned. :mozilla.272:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.Webtrendslive : Cleaned. :mozilla.675:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.Yadro : Cleaned. :mozilla.135:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned. :mozilla.136:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned. :mozilla.137:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned. :mozilla.138:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned. :mozilla.139:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned. :mozilla.143:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned. :mozilla.73:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.Zedo : Cleaned. :mozilla.74:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.Zedo : Cleaned. :mozilla.75:C:\Documents and Settings\NuclearRain\Application Data\Mozilla\Firefox\Profiles\a2ay7nyj.default\cookies.txt -> TrackingCookie.Zedo : Cleaned. ::Report end

0

Please post a new comboscan log.

0

Have been running his AIM the last 30 minutes with no unintended instant messenges to the list yet ComboScan v20070306.20 run by NuclearRain on 2007-03-20 at 21:48:59 Computer is in Normal Mode. ---------------------- -- HijackThis (run as NuclearRain.----------------- Logfile of HijackThis v1.99.1 Scan saved at 9:49:17 PM, on 3/20/2007 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\Intel\Wireless\Bin\EvtEng.exe C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe C:\Program Files\Intel\Wireless\Bin\WLKeeper.exe C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe C:\WINDOWS\system32\Ati2evxx.exe C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe C:\WINDOWS\Explorer.exe C:\WINDOWS\system32\spoolsv.exe C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe C:\Program Files\Common Files\Creative Labs Shared\Service\CreativeLicensing.exe C:\WINDOWS\system32\CTsvcCDA.exe C:\WINDOWS\eHome\ehRecvr.exe C:\WINDOWS\eHome\ehSched.exe C:\Program Files\Common Files\McAfee\HackerWatch\HWAPI.exe C:\PROGRA~1\McAfee\MSC\mcmscsvc.exe c:\program files\common files\mcafee\mna\mcnasvc.exe C:\PROGRA~1\McAfee\VIRUSS~1\mcods.exe C:\WINDOWS\ehome\ehtray.exe C:\PROGRA~1\McAfee\MSC\mcpromgr.exe C:\Program Files\Intel\Wireless\bin\ZCfgSvc.exe C:\Program Files\Intel\Wireless\Bin\ifrmewrk.exe C:\WINDOWS\stsystra.exe c:\PROGRA~1\COMMON~1\mcafee\mcproxy\mcproxy.exe C:\Program Files\Dell\QuickSet\quickset.exe C:\Program Files\Synaptics\SynTP\SynTPEnh.exe C:\Program Files\ATI Technologies\ATI.ACE\cli.exe C:\Program Files\Creative\SBAudigy\Surround Mixer\CTSysVol.exe c:\PROGRA~1\COMMON~1\mcafee\redirsvc\redirsvc.exe C:\WINDOWS\system32\Rundll32.exe C:\PROGRA~1\McAfee\VIRUSS~1\mcshield.exe C:\Program Files\Creative\VoiceCenter\AndreaVC.exe C:\Program Files\CyberLink\PowerDVD\DVDLauncher.exe C:\WINDOWS\system32\dla\tfswctrl.exe C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe C:\Program Files\Common Files\Symantec Shared\ccApp.exe C:\Program Files\Norton Ghost\Agent\GhostTray.exe C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe C:\Program Files\Real\RealPlayer\RealPlay.exe C:\PROGRA~1\mcafee.com\agent\mcagent.exe C:\PROGRA~1\McAfee\VIRUSS~1\mcsysmon.exe C:\DOCUME~1\NUCLEA~1\LOCALS~1\Temp\clclean.0001 C:\Program Files\ScanSoft\OmniPageSE2.0\OpwareSE2.exe C:\Program Files\Google\Google Desktop Search\GoogleDesktopIndex.exe C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.exe C:\Program Files\McAfee\MPF\MPFSrv.exe C:\Program Files\Java\jre1.5.0_08\bin\jusched.exe C:\PROGRA~1\McAfee\MPS\mps.exe C:\Program Files\QuickTime\qttask.exe C:\Program Files\McAfee\MSK\MskSrver.exe C:\Program Files\iTunes\iTunesHelper.exe C:\Program Files\Microsoft SQL Server\MSSQL$MICROSOFTSMLBIZ\Binn\sqlservr.exe C:\Program Files\Adobe\Photoshop Album Starter Edition\3.0\Apps\apdproxy.exe C:\Program Files\McAfee\MSK\MskAgent.exe C:\Program Files\SiteAdvisor\6028\SiteAdv.exe C:\Program Files\McAfee\MPS\mpsevh.exe C:\Program Files\Dell\QuickSet\NICCONFIGSVC.exe C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\SiteAdvisor\6028\SAService.exe C:\WINDOWS\system32\svchost.exe C:\Program Files\Maintenance\AntiSpyware\Webroot\Spy Sweeper\SpySweeper.exe C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe C:\Program Files\Maintenance\AntiSpyware\Webroot\Spy Sweeper\SpySweeperUI.exe C:\Program Files\NetWaiting\netWaiting.exe C:\Program Files\Creative\MediaSource\Detector\CTDetect.exe C:\Program Files\Dell Support\DSAgnt.exe C:\Program Files\Canon\CAL\CALMAIN.exe C:\Program Files\Messenger\msmsgs.exe C:\Program Files\AIM\aim.exe C:\Program Files\Digital Line Detect\DLG.exe C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtMng.exe C:\Program Files\Logitech\SetPoint\KEM.exe C:\Program Files\Microsoft SQL Server\80\Tools\Binn\sqlmangr.exe C:\Program Files\Norton Ghost\Agent\VProSvc.exe C:\Program Files\Logitech\SetPoint\KHALMNPR.exe C:\Program Files\iPod\bin\iPodService.exe C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosA2dp.exe C:\PROGRA~1\Intel\Wireless\Bin\Dot1XCfg.exe C:\WINDOWS\system32\dllhost.exe C:\WINDOWS\eHome\ehmsas.exe C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtHid.exe C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtHsp.exe C:\Program Files\Maintenance\AntiSpyware\Webroot\Spy Sweeper\SSU.exe C:\Program Files\ATI Technologies\ATI.ACE\cli.exe C:\WINDOWS\system32\wuauclt.exe C:\PROGRA~1\COMMON~1\INSTAL~1\UPDATE~1\agent.exe C:\WINDOWS\SYSTEM32\Rpcnet.exe C:\Program Files\Java\jre1.5.0_08\bin\jucheck.exe C:\Documents and Settings\NuclearRain\Desktop\comboscan.exe C:\PROGRA~1\HIJACK~1\NUCLEA~1.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com/ig/dell?hl=en&client=dell-usuk&channel=us R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.dell.com R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.dell.com R1 - HKLM\Software\Microsoft\Internet Explorer\Search,Default_Page_URL = www.google.com/ig/dell?hl=en&client=dell-usuk&channel=us R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll O2 - BHO: (no name) - {089FD14D-132B-48FC-8861-0048AE113215} - C:\Program Files\SiteAdvisor\6028\SiteAdv.dll O2 - BHO: DriveLetterAccess - {5CA3D70E-1895-11CF-8E15-001234567890} - C:\WINDOWS\system32\dla\tfswshx.dll O2 - BHO: EWPBrowseObject Class - {68F9551E-0411-48E4-9AAF-4BC42A6A46BE} - C:\Program Files\Canon\Easy-WebPrint\EWPBrowseLoader.dll O2 - BHO: scriptproxy - {7DB2D5A0-7241-4E79-B68D-6309F01C5231} - c:\program files\mcafee\virusscan\scriptcl.dll O3 - Toolbar: Easy-WebPrint - {327C2873-E90D-4c37-AA9D-10AC9BABA46C} - C:\Program Files\Canon\Easy-WebPrint\Toolband.dll O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll O3 - Toolbar: McAfee SiteAdvisor - {0BF43445-2F28-4351-9252-17FE6E806AA0} - C:\Program Files\SiteAdvisor\6028\SiteAdv.dll O4 - HKLM\..\Run: [ehTray] C:\WINDOWS\ehome\ehtray.exe O4 - HKLM\..\Run: [IntelZeroConfig] "C:\Program Files\Intel\Wireless\bin\ZCfgSvc.exe" O4 - HKLM\..\Run: [IntelWireless] "C:\Program Files\Intel\Wireless\Bin\ifrmewrk.exe" /tf Intel PROSet/Wireless O4 - HKLM\..\Run: [SigmatelSysTrayApp] stsystra.exe O4 - HKLM\..\Run: [Dell QuickSet] C:\Program Files\Dell\QuickSet\quickset.exe O4 - HKLM\..\Run: [SynTPEnh] "C:\Program Files\Synaptics\SynTP\SynTPEnh.exe" O4 - HKLM\..\Run: [ATICCC] "C:\Program Files\ATI Technologies\ATI.ACE\cli.exe" runtime -Delay O4 - HKLM\..\Run: [CTSysVol] "C:\Program Files\Creative\SBAudigy\Surround Mixer\CTSysVol.exe" /r O4 - HKLM\..\Run: [MBMon] Rundll32 CTMBHA.DLL,MBMon O4 - HKLM\..\Run: [UpdReg] C:\WINDOWS\UpdReg.exe O4 - HKLM\..\Run: [VoiceCenter] "C:\Program Files\Creative\VoiceCenter\AndreaVC.exe" /tray O4 - HKLM\..\Run: [DVDLauncher] "C:\Program Files\CyberLink\PowerDVD\DVDLauncher.exe" O4 - HKLM\..\Run: [dla] C:\WINDOWS\system32\dla\tfswctrl.exe O4 - HKLM\..\Run: [ISUSPM Startup] "C:\Program Files\Common Files\InstallShield\UpdateService\isuspm.exe" -startup O4 - HKLM\..\Run: [ISUSScheduler] "C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe" -start O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Common Files\Symantec Shared\ccApp.exe" O4 - HKLM\..\Run: [Norton Ghost 10.0] "C:\Program Files\Norton Ghost\Agent\GhostTray.exe" O4 - HKLM\..\Run: [Google Desktop Search] "C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe" /startup O4 - HKLM\..\Run: [DeadAIM] "rundll32.exe" "C:\Program Files\AIM\\DeadAIM.ocm",ExportedCheckODLs O4 - HKLM\..\Run: [RealTray] "C:\Program Files\Real\RealPlayer\RealPlay.exe" SYSTEMBOOTHIDEPLAYER O4 - HKLM\..\Run: [Logitech Hardware Abstraction Layer] KHALMNPR.exe O4 - HKLM\..\Run: [OpwareSE2] "C:\Program Files\ScanSoft\OmniPageSE2.0\OpwareSE2.exe" O4 - HKLM\..\Run: [OPSE reminder] "C:\Program Files\ScanSoft\OmniPageSE2.0\EregEng\Ereg.exe" -r "C:\Program Files\ScanSoft\OmniPageSE2.0\EregEng\ereg.ini" O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.5.0_08\bin\jusched.exe" O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe" O4 - HKLM\..\Run: [Adobe Photo Downloader] "C:\Program Files\Adobe\Photoshop Album Starter Edition\3.0\Apps\apdproxy.exe" O4 - HKLM\..\Run: [MskAgentexe] "C:\Program Files\McAfee\MSK\MskAgent.exe" O4 - HKLM\..\Run: [SiteAdvisor] "C:\Program Files\SiteAdvisor\6028\SiteAdv.exe" O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized O4 - HKLM\..\Run: [SpySweeper] C:\Program Files\Maintenance\AntiSpyware\Webroot\Spy Sweeper\SpySweeperUI.exe /startintray O4 - HKCU\..\Run: [ModemOnHold] "C:\Program Files\NetWaiting\netWaiting.exe" O4 - HKCU\..\Run: [SetDefaultMIDI] MIDIDef.exe O4 - HKCU\..\Run: [Creative Detector] "C:\Program Files\Creative\MediaSource\Detector\CTDetect.exe" /R O4 - HKCU\..\Run: [DellSupport] "C:\Program Files\Dell Support\DSAgnt.exe" /startup O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background O4 - HKCU\..\Run: [AIM] "C:\Program Files\AIM\aim.exe" -cnetwait.odl O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Reader 8.0\Reader\reader_sl.exe O4 - Global Startup: Adobe Reader Synchronizer.lnk = C:\Program Files\Adobe\Reader 8.0\Reader\AdobeCollabSync.exe O4 - Global Startup: Bluetooth Manager.lnk = ? O4 - Global Startup: Digital Line Detect.lnk = ? O4 - Global Startup: Logitech SetPoint.lnk = C:\Program Files\Logitech\SetPoint\KEM.exe O4 - Global Startup: Service Manager.lnk = C:\Program Files\Microsoft SQL Server\80\Tools\Binn\sqlmangr.exe O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000 O8 - Extra context menu item: Easy-WebPrint Add To Print List - res://C:\Program Files\Canon\Easy-WebPrint\Toolband.dll/RC_AddToList.html O8 - Extra context menu item: Easy-WebPrint High Speed Print - res://C:\Program Files\Canon\Easy-WebPrint\Toolband.dll/RC_HSPrint.html O8 - Extra context menu item: Easy-WebPrint Preview - res://C:\Program Files\Canon\Easy-WebPrint\Toolband.dll/RC_Preview.html O8 - Extra context menu item: Easy-WebPrint Print - res://C:\Program Files\Canon\Easy-WebPrint\Toolband.dll/RC_Print.html O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\j2re1.4.2_03\bin\npjpi142_03.dll O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\j2re1.4.2_03\bin\npjpi142_03.dll O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL O9 - Extra button: AIM - {AC9E2541-2814-11d5-BC6D-00B0D0A1DE45} - C:\Program Files\AIM\aim.exe O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\system32\Shdocvw.dll O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O16 - DPF: {01A88BB1-1174-41EC-ACCB-963509EAE56B} (SysProWmi Class) - http://support.dell.com/systemprofi... O16 - DPF: {4ED9DDF0-7479-4BBE-9335-5A1EDB1D8A21} (McAfee.com Operating System Class) - http://download.mcafee.com/molbin/s... O16 - DPF: {700EF03F-A472-4D26-8ACB-300F4D04FD96} (Recovery ActiveX Control Module) - http://www.lojackforlaptops.com/ctm... O18 - Protocol: siteadvisor - {3A5DC592-7723-4EAA-9EE6-AF4222BCF879} - C:\Program Files\SiteAdvisor\6028\SiteAdv.dll O20 - AppInit_DLLs: C:\PROGRA~1\Google\GOOGLE~1\GOEC62~1.DLL O20 - Winlogon Notify: WRNotifier - C:\WINDOWS\SYSTEM32\WRLogonNTF.dll O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe O23 - Service: AVG Anti-Spyware Guard - Anti-Malware Development a.s. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe O23 - Service: Canon Camera Access Library 8 (CCALib8) - Canon Inc. - C:\Program Files\Canon\CAL\CALMAIN.exe O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe O23 - Service: Symantec Password Validation (ccPwdSvc) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccPwdSvc.exe O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe O23 - Service: Creative Labs Licensing Service - Creative Labs - C:\Program Files\Common Files\Creative Labs Shared\Service\CreativeLicensing.exe O23 - Service: Creative Service for CDROM Access - Creative Technology Ltd - C:\WINDOWS\system32\CTsvcCDA.exe O23 - Service: McAfee E-mail Proxy (Emproxy) - McAfee, Inc. - C:\PROGRA~1\COMMON~1\McAfee\EmProxy\emproxy.exe O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\EvtEng.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe O23 - Service: iPod Service - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: McAfee HackerWatch Service - McAfee, Inc. - C:\Program Files\Common Files\McAfee\HackerWatch\HWAPI.exe O23 - Service: McAfee Update Manager (mcmispupdmgr) - McAfee, Inc. - C:\PROGRA~1\McAfee\MSC\mcupdmgr.exe O23 - Service: McAfee Services (mcmscsvc) - McAfee, Inc. - C:\PROGRA~1\McAfee\MSC\mcmscsvc.exe O23 - Service: McAfee Network Agent (McNASvc) - McAfee, Inc. - c:\program files\common files\mcafee\mna\mcnasvc.exe O23 - Service: McAfee Scanner (McODS) - McAfee, Inc. - C:\PROGRA~1\McAfee\VIRUSS~1\mcods.exe O23 - Service: McAfee Protection Manager (mcpromgr) - McAfee, Inc. - C:\PROGRA~1\McAfee\MSC\mcpromgr.exe O23 - Service: McAfee Proxy Service (McProxy) - McAfee, Inc. - c:\PROGRA~1\COMMON~1\mcafee\mcproxy\mcproxy.exe O23 - Service: McAfee Redirector Service (McRedirector) - McAfee, Inc. - c:\PROGRA~1\COMMON~1\mcafee\redirsvc\redirsvc.exe O23 - Service: McAfee Real-time Scanner (McShield) - McAfee, Inc. - C:\PROGRA~1\McAfee\VIRUSS~1\mcshield.exe O23 - Service: McAfee SystemGuards (McSysmon) - McAfee, Inc. - C:\PROGRA~1\McAfee\VIRUSS~1\mcsysmon.exe O23 - Service: McAfee Personal Firewall Service (MpfService) - McAfee, Inc. - C:\Program Files\McAfee\MPF\MPFSrv.exe O23 - Service: McAfee Privacy Service (MPS9) - McAfee, Inc. - C:\PROGRA~1\McAfee\MPS\mps.exe O23 - Service: McAfee SpamKiller Service (MSK80Service) - McAfee Inc. - C:\Program Files\McAfee\MSK\MskSrver.exe O23 - Service: MSSQL$MICROSOFTSMLBIZ - Unknown owner - C:\Program Files\Microsoft SQL Server\MSSQL$MICROSOFTSMLBIZ\Binn\sqlservr.exe" -sMICROSOFTSMLBIZ (file missing) O23 - Service: Network Log Provider (NETXMP) - Unknown owner - C:\WINDOWS\system32\nlbsvc.exe (file missing) O23 - Service: NICCONFIGSVC - Dell Inc. - C:\Program Files\Dell\QuickSet\NICCONFIGSVC.exe O23 - Service: Norton Ghost - Symantec Corporation - C:\Program Files\Norton Ghost\Agent\VProSvc.exe O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe O23 - Service: Remote Procedure Call (RPC) Net (Rpcnet) - Absolute Software Corp. - C:\WINDOWS\SYSTEM32\Rpcnet.exe O23 - Service: Intel(R) PROSet/Wireless Service (S24EventMonitor) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe O23 - Service: SiteAdvisor Service - McAfee, Inc. - C:\Program Files\SiteAdvisor\6028\SAService.exe O23 - Service: SQLAgent$MICROSOFTSMLBIZ - Unknown owner - C:\Program Files\Microsoft SQL Server\MSSQL$MICROSOFTSMLBIZ\Binn\sqlagent.exe" -i MICROSOFTSMLBIZ (file missing) O23 - Service: Symantec Core LC - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe O23 - Service: Webroot Spy Sweeper Engine (WebrootSpySweeperService) - Webroot Software, Inc. - C:\Program Files\Maintenance\AntiSpyware\Webroot\Spy Sweeper\SpySweeper.exe O23 - Service: Intel(R) PROSet/Wireless SSO Service (WLANKEEPER) - Intel(R) Corporation - C:\Program Files\Intel\Wireless\Bin\WLKeeper.exe -- Files created between 2007-02-20 and 20--------- 2007-03-20 21:11:38 0 d-------- C:\WINDOWS\LastGood 2007-03-20 21:11:33 35840 --a------ C:\WINDOWS\system32\Rpcnet.dll 2007-03-20 21:10:57 35840 --a------ C:\WINDOWS\system32\rpcnet.exe 2007-03-20 21:07:50 17408 --a------ C:\WINDOWS\system32\rpcnetp.dll 2007-03-20 19:33:52 0 d-------- C:\Documents and Settings\NetworkService\Application Data\Webroot 2007-03-20 19:15:46 3968 --a------ C:\WINDOWS\system32\drivers\AvgAsCln.sys 2007-03-20 19:15:42 0 d-------- C:\Program Files\Grisoft 2007-03-13 14:15:36 0 d-------- C:\Documents and Settings\NuclearRain\Application Data\NewSoft 2007-03-08 22:29:26 8832 --a------ C:\WINDOWS\system32\drivers\wmiacpi.sys 2007-02-21 17:27:35 0 d-------- C:\WINDOWS\system32\logs -- Find3M Re---------- 2007-03-20 21:11:35 17408 --a------ C:\WINDOWS\system32\Rpcnetp.exe 2007-03-20 21:10:35 0 d-------- C:\Program Files\Mozilla Firefox<MOZILL~1> 2007-03-18 16:29:31 164 --a------ C:\install.dat 2007-03-18 13:24:46 0 d-------- C:\Program Files\McAfee 2007-03-13 22:43:40 0 d-------- C:\Documents and Settings\NuclearRain\Application Data\Canon 2007-03-12 22:08:05 0 d-------- C:\Documents and Settings\NuclearRain\Application Data\SiteAdvisor<SITEAD~1> 2007-03-11 16:52:19 0 d-------- C:\Documents and Settings\NuclearRain\Application Data\U3 2007-03-07 17:50:00 664 --a------ C:\WINDOWS\system32\d3d9caps.dat 2007-02-26 11:42:59 3610 --ahs---- C:\WINDOWS\system32\KGyGaAvL.sys 2007-02-19 15:00:57 29184 --a------ C:\WINDOWS\system32\identprv.dll 2007-02-17 13:15:31 0 d-------- C:\Program Files\McAfee.com 2007-02-17 13:10:17 0 d-------- C:\Program Files\SiteAdvisor<SITEAD~1> 2007-02-17 13:08:59 0 d-------- C:\Program Files\Common Files\McAfee 2007-02-16 15:10:55 0 d-------- C:\Documents and Settings\NuclearRain\Application Data\Viewpoint<VIEWPO~1> 2007-02-16 14:40:22 49152 --a------ C:\WINDOWS\system32\instw32.exe 2007-02-08 21:41:39 0 d-------- C:\Program Files\Common Files\ScanSoft Shared<SCANSO~1> 2007-02-06 22:44:34 0 d-------- C:\Program Files\Yahoo! 2007-02-06 20:20:12 0 d-------- C:\Program Files\Common Files\SAP Shared<SAPSHA~1> 2007-02-06 20:18:37 0 d-------- C:\Program Files\SAP 2007-01-29 04:58:06 60416 -----n--- C:\WINDOWS\system32\tzchange.exe 2007-01-28 17:47:52 0 d-------- C:\Program Files\QuickTime<QUICKT~1> 2007-01-21 14:13:37 0 d-------- C:\Documents and Settings\NuclearRain\Application Data\Leadertech<LEADER~1> -- Registry ---------- [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run] "ModemOnHold"="\"C:\\Program Files\\NetWaiting\\netWaiting.exe\"" "SetDefaultMIDI"="MIDIDef.exe" "Creative Detector"="\"C:\\Program Files\\Creative\\MediaSource\\Detector\\CTDetect.exe\" /R" "DellSupport"="\"C:\\Program Files\\Dell Support\\DSAgnt.exe\" /startup" "ctfmon.exe"="C:\\WINDOWS\\system32\\ctfmon.exe" "MSMSGS"="\"C:\\Program Files\\Messenger\\msmsgs.exe\" /background" "AIM"="\"C:\\Program Files\\AIM\\aim.exe\" -cnetwait.odl" [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run] "ehTray"="C:\\WINDOWS\\ehome\\ehtray.exe" "IntelZeroConfig"="\"C:\\Program Files\\Intel\\Wireless\\bin\\ZCfgSvc.exe\"" "IntelWireless"="\"C:\\Program Files\\Intel\\Wireless\\Bin\\ifrmewrk.exe\" /tf Intel PROSet/Wireless" "SigmatelSysTrayApp"="stsystra.exe" "Dell QuickSet"="C:\\Program Files\\Dell\\QuickSet\\quickset.exe" "SynTPEnh"="\"C:\\Program Files\\Synaptics\\SynTP\\SynTPEnh.exe\"" "ATICCC"="\"C:\\Program Files\\ATI Technologies\\ATI.ACE\\cli.exe\" runtime -Delay" "CTSysVol"="\"C:\\Program Files\\Creative\\SBAudigy\\Surround Mixer\\CTSysVol.exe\" /r" "MBMon"="Rundll32 CTMBHA.DLL,MBMon" "UpdReg"="C:\\WINDOWS\\UpdReg.exe" "VoiceCenter"="\"C:\\Program Files\\Creative\\VoiceCenter\\AndreaVC.exe\" /tray" "DVDLauncher"="\"C:\\Program Files\\CyberLink\\PowerDVD\\DVDLauncher.exe\"" "dla"="C:\\WINDOWS\\system32\\dla\\tfswctrl.exe" "ISUSPM Startup"="\"C:\\Program Files\\Common Files\\InstallShield\\UpdateService\\isuspm.exe\" -startup" "ISUSScheduler"="\"C:\\Program Files\\Common Files\\InstallShield\\UpdateService\\issch.exe\" -start" "ccApp"="\"C:\\Program Files\\Common Files\\Symantec Shared\\ccApp.exe\"" "Norton Ghost 10.0"="\"C:\\Program Files\\Norton Ghost\\Agent\\GhostTray.exe\"" @="" "Google Desktop Search"="\"C:\\Program Files\\Google\\Google Desktop Search\\GoogleDesktop.exe\" /startup" "DeadAIM"="\"rundll32.exe\" \"C:\\Program Files\\AIM\\\\DeadAIM.ocm\",ExportedCheckODLs" "RealTray"="\"C:\\Program Files\\Real\\RealPlayer\\RealPlay.exe\" SYSTEMBOOTHIDEPLAYER" "Logitech Hardware Abstraction Layer"="KHALMNPR.EXE" "OpwareSE2"="\"C:\\Program Files\\ScanSoft\\OmniPageSE2.0\\OpwareSE2.exe\"" "OPSE reminder"="\"C:\\Program Files\\ScanSoft\\OmniPageSE2.0\\EregEng\\Ereg.exe\" -r \"C:\\Program Files\\ScanSoft\\OmniPageSE2.0\\EregEng\\ereg.ini\"" "SunJavaUpdateSched"="\"C:\\Program Files\\Java\\jre1.5.0_08\\bin\\jusched.exe\"" "QuickTime Task"="\"C:\\Program Files\\QuickTime\\qttask.exe\" -atboottime" "iTunesHelper"="\"C:\\Program Files\\iTunes\\iTunesHelper.exe\"" "Adobe Photo Downloader"="\"C:\\Program Files\\Adobe\\Photoshop Album Starter Edition\\3.0\\Apps\\apdproxy.exe\"" "MskAgentexe"="\"C:\\Program Files\\McAfee\\MSK\\MskAgent.exe\"" "SiteAdvisor"="\"C:\\Program Files\\SiteAdvisor\\6028\\SiteAdv.exe\"" "!AVG Anti-Spyware"="\"C:\\Program Files\\Grisoft\\AVG Anti-Spyware 7.5\\avgas.exe\" /minimized" "SpySweeper"="C:\\Program Files\\Maintenance\\AntiSpyware\\Webroot\\Spy Sweeper\\SpySweeperUI.exe /startintray" [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\OptionalComponents] [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\OptionalComponents\IMAIL] "Installed"="1" [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\OptionalComponents\MAPI] "Installed"="1" "NoChange"="1" [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\OptionalComponents\MSFS] "Installed"="1" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows] "appinit_dlls"="C:\PROGRA~1\Google\GOOGLE~1\GOEC62~1.DLL" [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shellexecutehooks] "{57B86673-276A-48B2-BAE7-C6DBB3020EB8}"="AVG Anti-Spyware 7.5" [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system] "InstallVisualStyle"=hex(2):43,3a,5c,57,49,4e,44,4f,57,53,5c,52,65,73,6f,75,72,\ 63,65,73,5c,54,68,65,6d,65,73,5c,52,6f,79,61,6c,65,5c,52,6f,79,61,6c,65,2e,\ 6d,73,73,74,79,6c,65,73,00 "InstallTheme"=hex(2):43,3a,5c,57,49,4e,44,4f,57,53,5c,52,65,73,6f,75,72,63,65,\ 73,5c,54,68,65,6d,65,73,5c,52,6f,79,61,6c,65,2e,74,68,65,6d,65,00 [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\system] "DisableRegistryTools"=dword:00000000 [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders] "SecurityProviders"="msapsspc.dll, schannel.dll, digest.dll, msnsspc.dll" HKEY_LOCAL_MACHINE\system\currentcontrolset\control\safeboot\minimal\MCODS HKEY_LOCAL_MACHINE\system\currentcontrolset\control\safeboot\minimal\WebrootSpySweeperService [HKEY_LOCAL_MACHINE\software\Microsoft\Windows NT\CurrentVersion\Svchost] HTTPFilter REG_MULTI_SZ HTTPFilter\0\0 LocalService REG_MULTI_SZ Alerter\0WebClient\0LmHosts\0RemoteRegistry\0upnphost\0SSDPSRV\0\0 NetworkService REG_MULTI_SZ DnsCache\0\0 DcomLaunch REG_MULTI_SZ DcomLaunch\0TermService\0\0 rpcss REG_MULTI_SZ RpcSs\0\0 imgsvc REG_MULTI_SZ StiSvc\0\0 termsvcs REG_MULTI_SZ TermService\0\0 [HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\F] Shell\AutoRun\command F:\LaunchU3.exe -a [HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{361ac05d-0e0d-11da-9aa9-806d6172696f}] Shell\AutoRun\command E:\setup.exe [HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{45c8b852-3c53-11db-a263-0015c5249396}] Shell\AutoRun\command H:\setupSNK.exe [HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{9810962a-7e17-11db-a28c-0015c5249396}] Shell\AutoRun\command F:\LaunchU3.exe -- End of ComboScan: finished at 2007-03-20 at 21:4

0

Part of the files identified are apparently false postives and are from a program named "lojack", a protection system for your computer in case of theft.These are: C:\WINDOWS\system32\Rpcnet.dll C:\WINDOWS\system32\rpcnet.exe C:\WINDOWS\system32\rpcnetp.dll So do not delete them. Go to start> control panel> add/remove programs> scroll down to and uninstall this program: LimeWire LimeWire is known to have spyware it it and there are safer programs for downloading music. Go to start> run> type or copy/paste the following command then press enter: sc delete (NETXMP) Set up the computer to view hidden files by going to start>control panel>folder options>view tab>tick the circle beside "show hidden files and folders" and untick the box beside "hide extensions of known file types" and "hide protected system operating files">apply>ok. Reboot into safe mode. Navigate to and delete these files if found: C:\Program Files\AWS\WeatherBug\MiniBugTransporter.dll C:\WINDOWS\system32\instw32.exe Then navigate to and delete these folders if found: C:\Program Files\AWS C:\Program files\LimeWire From safe mode run ATF-Cleaner and purge System Restore again. Let us know if your Aim problem are resolved.

0

Also your java is out of date and should be update as soon as possible. Download the latest version of http://java.sun.com/javase/downloads/index.jsp Scroll down to where it says "The J2SE Runtime Environment (JRE) allows end-users to run Java applications". Click the "Download" button to the right. Check the box that says: "Accept License Agreement". The page will refresh. Click on the link to download Windows Offline Installation with or without Multi-language and save to your desktop. Close any programs you may have running - especially your web browser. Go to Start > Control Panel double-click on Add/Remove programs and remove all older versions of Java. Check any item with Java Runtime Environment (JRE or J2SE) in the name. It should have the "coffee cup" icon next to it. Click the Remove or Change/Remove button. Repeat as many times as necessary to remove each Java versions. Reboot your computer once all Java components are removed . Then from your desktop double-click on jre-1_6_0-windowsi586-p.exe to install the newest version.

0

Thank you for all your assistance. I do have one quick question, what is this NETXMP? when i google it i do not receive any answers

0

It is part of the virus, it shows up diffently in almost every AIM virus. This is one of the newer versions. Be sure to update your java.

0

Updated the Java, everything seems to be running to par again (until he messes his computer up again ;)) thank you again for taking the time to help

0

Glad we could help.

0