Please Download NoLop to your desktop from one of the links below... http://www.spywareedge.net/nolop/NoLop.exe First close any other programs you have running as this will require a reboot Double click NoLop.exe to run it Now click the button labelled "Search and Destroy" <<your computer will now be scanned for infected files>> When scanning is finished you will be prompted to reboot only if infected, Click OK Now click the "REBOOT" Button. A Message should popup from NoLop. If not, double click the program again and it will finish. Please download Comboscan from this link: Comboscan Close all applications and windows. Double-click on comboscan.exe to run it, and follow the prompts. When the scan is complete, a text file will open - ComboScan.txt Copy (Ctrl+A then Ctrl+C) and paste (Ctrl+V) the contents of ComboScan.txt in your next post. A folder, C:\ComboScan, will also open. In it will be another text file, Supplementary.txt. Please attach Supplementary.txt to your post. Note: some firewalls may warn that sigcheck.exe is trying to access the internet - please ensure that you allow sigcheck.exe permission to do so.

0

Here are smitfraudfix results: SmitFraudFix v2.144 Scan done at 1:03:03.79, Fri 03/02/2007 Run from C:\Documents and Settings\Shana\Desktop\PC Tools\Spyware\SmitfraudFix OS: Microsoft Windows XP [Version 5.1.2600] - Windows_NT The filesystem type is NTFS Fix run in safe mode »»»»»»»»»»»»»»»»»»»»»»»» SharedTaskScheduler Before SmitFraudFix !!!Attention, following keys are not inevitably infected!!! SrchSTS.exe by S!Ri Search SharedTaskScheduler's .dll »»»»»»»»»»»»»»»»»»»»»»»» Killing process »»»»»»»»»»»»»»»»»»»»»»»» hosts 127.0.0.1 localhost »»»»»»»»»»»»»»»»»»»»»»»» Generic Renos Fix GenericRenosFix by S!Ri »»»»»»»»»»»»»»»»»»»»»»»» Deleting infected files »»»»»»»»»»»»»»»»»»»»»»»» Deleting Temp Files »»»»»»»»»»»»»»»»»»»»»»»» Winlogon.System !!!Attention, following keys are not inevitably infected!!! [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] "System"="" »»»»»»»»»»»»»»»»»»»»»»»» Registry Cleaning Registry Cleaning done. »»»»»»»»»»»»»»»»»»»»»»»» SharedTaskScheduler After SmitFraudFix !!!Attention, following keys are not inevitably infected!!! SrchSTS.exe by S!Ri Search SharedTaskScheduler's .dll »»»»»»»»»»»»»»»»»»»»»»»» End ComboScan results: ComboScan v20070226.18 run by Shana on 2007-03-02 at 01:27:14 Computer is in Normal Mode. ---------------------- Successfully created restore point. Performed disk cleanup. -- HijackThis (run as S Logfile of HijackThis v1.99.1 Scan saved at 1:27:39 AM, on 3/2/2007 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v7.00 (7.00.6000.16414) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCSvc.exe C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\Explorer.exe C:\WINDOWS\ehome\ehtray.exe C:\WINDOWS\CTHELPER.exe C:\WINDOWS\system32\CTXFIHLP.exe C:\Program Files\Creative\Shared Files\Module Loader\DLLML.exe C:\WINDOWS\SYSTEM32\CTXFISPI.exe C:\Program Files\Common Files\Symantec Shared\ccApp.exe C:\Program Files\Adobe\Photoshop Elements 4.0\PhotoshopElementsFileAgent.exe C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe C:\PROGRA~1\SYMANT~1\VPTray.exe C:\WINDOWS\system32\LVCOMSX.exe C:\Program Files\Google\Google Desktop Search\GoogleDesktopIndex.exe C:\Program Files\Logitech\Video\LogiTray.exe C:\Program Files\Qurb\QSP-3.0.311.7\QOELoader.exe C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatchTray9.exe C:\Program Files\Roxio\Media Experience\DMXLauncher.exe C:\Program Files\Roxio\Drag-to-Disc\DrgToDsc.exe C:\Program Files\iTunes\iTunesHelper.exe C:\PROGRA~1\MUSICM~1\MUSICM~3\MMDiag.exe C:\WINDOWS\Samsung\PanelMgr\ssmmgr.exe C:\WINDOWS\system32\CTsvcCDA.exe C:\Program Files\Symantec AntiVirus\DefWatch.exe C:\Program Files\Java\jre1.5.0_11\bin\jusched.exe C:\WINDOWS\eHome\ehRecvr.exe C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe C:\Program Files\Internet Explorer\IEXPLORE.exe C:\Program Files\Google\Google Desktop Search\GoogleDesktopDisplay.exe C:\WINDOWS\eHome\ehSched.exe C:\Program Files\Adobe\Acrobat 8.0\Acrobat\Acrotray.exe C:\Program Files\Google\Google Desktop Search\GoogleDesktopCrawl.exe C:\WINDOWS\System32\GEARSec.exe C:\Program Files\RhinoSoft.com\Serv-U\ServUTray.exe C:\Program Files\Logitech\Video\FxSvr2.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\Intel\Intel Matrix Storage Manager\iaantmon.exe C:\PROGRA~1\Lavasoft\AD-AWA~1\Ad-Watch.exe C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.exe C:\Program Files\Microsoft ActiveSync\wcescomm.exe C:\Program Files\Norton Ghost\Agent\VProSvc.exe C:\Program Files\SlySoft\AnyDVD\AnyDVD.exe C:\Program Files\Windows Media Player\WMPNSCFG.exe C:\Program Files\CyberLink\Shared files\RichVideo.exe C:\PROGRA~1\MI3AA1~1\rapimgr.exe c:\progra~1\intern~1\iexplore.exe C:\Program Files\Common Files\TiVo Shared\Transfer\TiVoTransfer.exe C:\Program Files\MUSICMATCH\Musicmatch Jukebox\mim.exe C:\Program Files\TiVo\Desktop\TiVoNotify.exe C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatch9.exe C:\Program Files\TiVo\Desktop\TiVoServer.exe C:\Program Files\Symantec AntiVirus\SavRoam.exe C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe C:\Program Files\RhinoSoft.com\Serv-U\ServUDaemon.exe C:\WINDOWS\system32\svchost.exe C:\Program Files\Symantec AntiVirus\Rtvscan.exe C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe C:\Program Files\Common Files\TiVo Shared\Beacon\TiVoBeacon.exe C:\Program Files\Canon\CAL\CALMAIN.exe C:\Program Files\WinTV\Ir.exe C:\Program Files\iPod\bin\iPodService.exe C:\WINDOWS\system32\dllhost.exe C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxMediaDB9.exe C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe C:\WINDOWS\system32\wuauclt.exe C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\CPSHelpRunner.exe C:\WINDOWS\eHome\ehmsas.exe C:\My Downloads\comboscan.exe C:\PROGRA~1\HIJACK~1\Shana.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com/ig/dell?hl=en&client=dell-usuk-rel&channel=us R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.cnn.com/ R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?Lin... R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?Lin... R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?Lin... R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.dell.com R1 - HKLM\Software\Microsoft\Internet Explorer\Search,Default_Page_URL = www.google.com/ig/dell?hl=en&client=dell-usuk-rel&channel=us O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll O2 - BHO: ClickCatcher MSIE handler - {16664845-0E00-11D2-8059-000000000000} - C:\Program Files\Common Files\ReGet Shared\Catcher.dll O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MICROS~4\Office12\GRA8E1~1.DLL O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_11\bin\ssv.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar4.dll O2 - BHO: Adobe PDF Conversion Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll O2 - BHO: Browser Address Error Redirector - {CA6319C0-31B7-401E-A518-A07C3DB8F777} - C:\Program Files\BAE\BAE.dll O3 - Toolbar: ReGet Bar - {17939A30-18E2-471E-9D3A-56DD725F1215} - C:\Program Files\ReGetDx\iebar.dll O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar4.dll O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll O4 - HKLM\..\Run: [ehTray] C:\WINDOWS\ehome\ehtray.exe O4 - HKLM\..\Run: [CTHelper] CTHELPER.exe O4 - HKLM\..\Run: [CTxfiHlp] CTXFIHLP.exe O4 - HKLM\..\Run: [IAAnotif] C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe O4 - HKLM\..\Run: [AudioDrvEmulator] "C:\Program Files\Creative\Shared Files\Module Loader\DLLML.exe" -1 AudioDrvEmulator "C:\Program Files\Creative\Shared Files\Module Loader\Audio Emulator\AudDrvEm.dll" O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Common Files\Symantec Shared\ccApp.exe" O4 - HKLM\..\Run: [ISUSPM Startup] "C:\Program Files\Common Files\InstallShield\UpdateService\isuspm.exe" -startup O4 - HKLM\..\Run: [ISUSScheduler] "C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe" -start O4 - HKLM\..\Run: [Google Desktop Search] "C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe" /startup O4 - HKLM\..\Run: [vptray] C:\PROGRA~1\SYMANT~1\VPTray.exe O4 - HKLM\..\Run: [LVCOMSX] C:\WINDOWS\system32\LVCOMSX.exe O4 - HKLM\..\Run: [LogitechVideoRepair] C:\Program Files\Logitech\Video\ISStart.exe O4 - HKLM\..\Run: [LogitechVideoTray] C:\Program Files\Logitech\Video\LogiTray.exe O4 - HKLM\..\Run: [QOELOADER] "C:\Program Files\Qurb\QSP-3.0.311.7\QOELoader.exe" O4 - HKLM\..\Run: [RoxWatchTray] "C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatchTray9.exe" O4 - HKLM\..\Run: [DMXLauncher] "C:\Program Files\Roxio\Media Experience\DMXLauncher.exe" O4 - HKLM\..\Run: [RoxioDragToDisc] "C:\Program Files\Roxio\Drag-to-Disc\DrgToDsc.exe" O4 - HKLM\..\Run: [MimBoot] C:\PROGRA~1\MUSICM~1\MUSICM~3\mimboot.exe O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe" O4 - HKLM\..\Run: [LanguageShortcut] "C:\Program Files\CyberLink\PowerDVD\Language\Language.exe" O4 - HKLM\..\Run: [Samsung PanelMgr] C:\WINDOWS\Samsung\PanelMgr\ssmmgr.exe /autorun O4 - HKLM\..\Run: [BoneDateBoltLogo] C:\Documents and Settings\All Users\Application Data\info grey bone date\Does bash.exe O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.5.0_11\bin\jusched.exe" O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe" O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe O4 - HKLM\..\Run: [Acrobat Assistant 8.0] "C:\Program Files\Adobe\Acrobat 8.0\Acrobat\Acrotray.exe" O4 - HKCU\..\Run: [ServUTrayIcon] C:\Program Files\RhinoSoft.com\Serv-U\ServUTray.exe O4 - HKCU\..\Run: [LogitechSoftwareUpdate] "C:\Program Files\Logitech\Video\ManifestEngine.exe" boot O4 - HKCU\..\Run: [AWMON] "C:\PROGRA~1\Lavasoft\AD-AWA~1\Ad-Watch.exe" O4 - HKCU\..\Run: [H/PC Connection Agent] "C:\Program Files\Microsoft ActiveSync\wcescomm.exe" O4 - HKCU\..\Run: [AnyDVD] C:\Program Files\SlySoft\AnyDVD\AnyDVD.exe O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe O4 - HKCU\..\Run: [TivoTransfer] "C:\Program Files\Common Files\TiVo Shared\Transfer\TiVoTransfer.exe" /service /registry /auto:TivoTransfer O4 - HKCU\..\Run: [TivoNotify] "C:\Program Files\TiVo\Desktop\TiVoNotify.exe" /service /registry /auto:TivoNotify O4 - HKCU\..\Run: [TivoServer] "C:\Program Files\TiVo\Desktop\TiVoServer.exe" /service /registry /auto:TivoServer O4 - HKCU\..\Run: [Aim6] "C:\Program Files\AIM6\aim6.exe" /d locale=en-US ee://aol/imApp O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe O4 - HKCU\..\Run: [startkey] C:\WINDOWS\system32\bifroserver.exe O4 - HKCU\..\Run: [ace vga] C:\DOCUME~1\Shana\APPLIC~1\SIGNCO~1\BlahPhone.exe O4 - Global Startup: Adobe Acrobat Speed Launcher.lnk = ? O4 - Global Startup: Adobe Acrobat Synchronizer.lnk = C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AdobeCollabSync.exe O4 - Global Startup: Adobe Gamma.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe O4 - Global Startup: AutoStart IR.lnk = C:\Program Files\WinTV\Ir.exe O8 - Extra context menu item: Append to existing PDF - res://C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html O8 - Extra context menu item: Convert link target to Adobe PDF - res://C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html O8 - Extra context menu item: Convert link target to existing PDF - res://C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html O8 - Extra context menu item: Convert selected links to Adobe PDF - res://C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECaptureSelLinks.html O8 - Extra context menu item: Convert selected links to existing PDF - res://C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppendSelLinks.html O8 - Extra context menu item: Convert selection to Adobe PDF - res://C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html O8 - Extra context menu item: Convert selection to existing PDF - res://C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html O8 - Extra context menu item: Convert to Adobe PDF - res://C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html O8 - Extra context menu item: Do&wnload by ReGet Deluxe - C:\Program Files\Common Files\ReGet Shared\CC_Link.htm O8 - Extra context menu item: Download A&ll by ReGet Deluxe - C:\Program Files\Common Files\ReGet Shared\CC_All.htm O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~4\Office12\EXCEL.EXE/3000 O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_11\bin\ssv.dll O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_11\bin\ssv.dll O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~4\Office12\ONBttnIE.dll O9 - Extra 'Tools' menuitem: S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~4\Office12\ONBttnIE.dll O9 - Extra button: Create Mobile Favorite - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MI3AA1~1\INetRepl.dll O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MI3AA1~1\INetRepl.dll O9 - Extra 'Tools' menuitem: Create Mobile Favorite... - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MI3AA1~1\INetRepl.dll O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~4\Office12\REFIEBAR.DLL O9 - Extra button: AIM - {AC9E2541-2814-11d5-BC6D-00B0D0A1DE45} - C:\Program Files\AIM95\aim.exe O9 - Extra button: (no name) - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - (no file) O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing) O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing) O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O11 - Options group: [INTERNATIONAL] International* O16 - DPF: {0A5FD7C5-A45C-49FC-ADB5-9952547D5715} (Creative Software AutoUpdate) - http://www.creative.com/su/ocx/1502... O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microso... O17 - HKLM\System\CCS\Services\Tcpip\..\{4656DCE2-6D26-483C-93AB-D9AFB240A9A3}: NameServer = 192.168.1.1 O17 - HKLM\System\CS1\Services\Tcpip\Parameters: SearchList = usc.edu O17 - HKLM\System\CCS\Services\Tcpip\Parameters: SearchList = usc.edu O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\PROGRA~1\MICROS~4\Office12\GR99D3~1.DLL O18 - Protocol: ms-help - {314111C7-A502-11D2-BBCA-00C04F8EC294} - C:\Program Files\Common Files\Microsoft Shared\Help\hxds.dll O18 - Filter hijack: text/xml - {807563E5-5146-11D5-A672-00B0D022E945} - C:\PROGRA~1\COMMON~1\MICROS~1\OFFICE12\MSOXMLMF.DLL O20 - AppInit_DLLs: C:\PROGRA~1\Google\GOOGLE~1\GOEC62~1.DLL O20 - Winlogon Notify: NavLogon - C:\WINDOWS\system32\NavLogon.dll O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe O23 - Service: Adobe Version Cue CS2 - Unknown owner - c:\Program Files\Adobe\Adobe Version Cue CS2\bin\VersionCueCS2.exe" -win32service (file missing) O23 - Service: Adobe Active File Monitor V4 (AdobeActiveFileMonitor4.0) - Unknown owner - C:\Program Files\Adobe\Photoshop Elements 4.0\PhotoshopElementsFileAgent.exe O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe O23 - Service: Automatic LiveUpdate Scheduler - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe O23 - Service: Canon Camera Access Library 8 (CCALib8) - Canon Inc. - C:\Program Files\Canon\CAL\CALMAIN.exe O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe O23 - Service: Symantec Password Validation (ccPwdSvc) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccPwdSvc.exe O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe O23 - Service: Creative Service for CDROM Access - Creative Technology Ltd - C:\WINDOWS\system32\CTsvcCDA.exe O23 - Service: Symantec AntiVirus Definition Watcher (DefWatch) - Symantec Corporation - C:\Program Files\Symantec AntiVirus\DefWatch.exe O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe O23 - Service: GEARSecurity - GEAR Software - C:\WINDOWS\System32\GEARSec.exe O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMon) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\iaantmon.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe O23 - Service: iPod Service - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.exe O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe O23 - Service: Intel NCS NetService (NetSvc) - Intel(R) Corporation - C:\Program Files\Intel\PROSetWired\NCS\Sync\NetSvc.exe O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe O23 - Service: Norton Ghost - Symantec Corporation - C:\Program Files\Norton Ghost\Agent\VProSvc.exe O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files\CyberLink\Shared files\RichVideo.exe O23 - Service: Roxio UPnP Renderer 9 - Sonic Solutions - C:\Program Files\Common Files\Sonic Shared\RoxioUPnPRenderer9.exe O23 - Service: Roxio Upnp Server 9 - Sonic Solutions - C:\Program Files\Common Files\Sonic Shared\RoxioUpnpService9.exe O23 - Service: LiveShare P2P Server 9 (RoxLiveShare9) - Sonic Solutions - C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxLiveShare9.exe O23 - Service: RoxMediaDB9 - Sonic Solutions - C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxMediaDB9.exe O23 - Service: Roxio Hard Drive Watcher 9 (RoxWatch9) - Sonic Solutions - C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatch9.exe O23 - Service: SAVRoam (SavRoam) - symantec - C:\Program Files\Symantec AntiVirus\SavRoam.exe O23 - Service: Serv-U FTP Server (Serv-U) - Rhino Software, Inc. +1(262) 560-9627 - C:\Program Files\RhinoSoft.com\Serv-U\ServUDaemon.exe O23 - Service: sugo2 Status Monitor Service (SM_sugo2_FUService) - Unknown owner - C:\Program.exe (file missing) O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\SNDSrvc.exe O23 - Service: Symantec SPBBCSvc (SPBBCSvc) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCSvc.exe O23 - Service: stllssvr - MicroVision Development, Inc. - C:\Program Files\Common Files\SureThing Shared\stllssvr.exe O23 - Service: Symantec AntiVirus - Symantec Corporation - C:\Program Files\Symantec AntiVirus\Rtvscan.exe O23 - Service: Symantec Core LC - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe O23 - Service: TiVo Beacon (TivoBeacon2) - Unknown owner - C:\Program Files\Common Files\TiVo Shared\Beacon\TiVoBeacon.exe" /service (file missing) O23 - Service: Windows Driver Framework - Unknown owner - C:\WINDOWS\svchost.exe (file missing) -- File Associat------- .bat - batfile - "%1" %* .chm - chm.file - "C:\WINDOWS\hh.exe" %1 .cmd - cmdfile - "%1" %* .com - comfile - "%1" %* .exe - exefile - "%1" %* .hlp - hlpfile - %SystemRoot%\System32\winhlp32.exe %1 .inf - inffile - %SystemRoot%\System32\NOTEPAD.exe %1 .ini - inifile - %SystemRoot%\System32\NOTEPAD.exe %1 .js - JSFile - %SystemRoot%\System32\WScript.exe "%1" %* .lnk - lnkfile - {00021401-0000-0000-C000-000000000046} .pif - piffile - "%1" %* .reg - regfile - regedit.exe "%1" .scr - scrfile - "%1" /S .txt - txtfile - %SystemRoot%\system32\NOTEPAD.exe %1 .vbs - VBSFile - %SystemRoot%\System32\WScript.exe "%1" %* -- Drivers: 0-Boot, 1-System, 2-Auto, 3-Demand, 4-Disabled ---------------------- 1R AFS2K - C:\WINDOWS\system32\drivers\AFS2K.SYS 4S agpCPQ (Compaq AGP Bus Filter) - C:\WINDOWS\system32\drivers\AGPCPQ.SYS 4S alim1541 (ALI AGP Bus Filter) - C:\WINDOWS\system32\drivers\ALIM1541.SYS 4S amdagp (AMD AGP Bus Filter Driver) - C:\WINDOWS\system32\drivers\AMDAGP.SYS 3R AnyDVD - C:\WINDOWS\system32\drivers\AnyDVD.sys 3R ati2mtag - C:\WINDOWS\system32\drivers\ati2mtag.sys 4S cbidf - C:\WINDOWS\system32\drivers\cbidf2k.sys 3S CCDECODE (Closed Caption Decoder) - C:\WINDOWS\system32\drivers\CCDECODE.sys 1R Cinemsup - C:\WINDOWS\system32\drivers\cinemsup.sys 3R ctac32k (Creative AC3 Software Decoder) - C:\WINDOWS\system32\drivers\ctac32k.sys 3R ctaud2k (Creative Audio Driver (WDM)) - C:\WINDOWS\system32\drivers\ctaud2k.sys 3S ctdvda2k (Creative DVD-Audio Device Driver) - C:\WINDOWS\system32\drivers\ctdvda2k.sys 3R ctprxy2k (Creative Proxy Driver) - C:\WINDOWS\system32\drivers\ctprxy2k.sys 3R ctsfm2k (Creative SoundFont Management Device Driver) - C:\WINDOWS\system32\drivers\ctsfm2k.sys 4S dac2w2k - C:\WINDOWS\system32\drivers\dac2w2k.sys 2S DgiVecp (Team MFP Comm Driver) - C:\WINDOWS\system32\drivers\Dgivecp.Sys 2R DLABMFSM - C:\WINDOWS\system32\dla\DLABMFSM.SYS 2R DLABOIOM - C:\WINDOWS\system32\dla\DLABOIOM.SYS 1R DLACDBHM - C:\WINDOWS\system32\drivers\DLACDBHM.SYS 2R DLADResM - C:\WINDOWS\system32\dla\DLADResM.SYS 2R DLAIFS_M - C:\WINDOWS\system32\dla\DLAIFS_M.SYS 2R DLAOPIOM - C:\WINDOWS\system32\dla\DLAOPIOM.SYS 2R DLAPoolM - C:\WINDOWS\system32\dla\DLAPoolM.SYS 1R DLARTL_M - C:\WINDOWS\system32\drivers\DLARTL_M.SYS 2R DLAUDFAM - C:\WINDOWS\system32\dla\DLAUDFAM.SYS 2R DLAUDF_M - C:\WINDOWS\system32\dla\DLAUDF_M.SYS 0R DRVMCDB - C:\WINDOWS\system32\drivers\drvmcdb.sys 2R DRVNDDM - C:\WINDOWS\system32\drivers\DRVNDDM.SYS 3R E100B (Intel(R) PRO Network Connection Driver) - C:\WINDOWS\system32\drivers\e100b325.sys 1R eeCtrl (Symantec Eraser Control driver) - C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys 2R ElbyCDIO (ElbyCDIO Driver) - C:\WINDOWS\system32\drivers\ElbyCDIO.sys 3R emupia (E-mu Plug-in Architecture Driver) - C:\WINDOWS\system32\drivers\emupia2k.sys 3R EraserUtilRebootDrv - C:\Program Files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys 3R GearAspiWDM - C:\WINDOWS\system32\drivers\GEARAspiWDM.sys 3R ha20x2k (Creative 20X HAL Driver) - C:\WINDOWS\system32\drivers\ha20x2k.sys 3R HidUsb (Microsoft HID Class Driver) - C:\WINDOWS\system32\drivers\hidusb.sys 3R HSFHWBS2 - C:\WINDOWS\system32\drivers\HSFHWBS2.sys 3R HSF_DP - C:\WINDOWS\system32\drivers\HSF_DP.sys 0R iastor (Intel RAID Controller) - C:\WINDOWS\system32\drivers\iaStor.sys 3R iComp (Hauppauge WinTV PVR2 USB2 Encoder) - C:\WINDOWS\system32\drivers\HCWUSB2.sys 1R intelppm (Intel Processor Driver) - C:\WINDOWS\system32\drivers\intelppm.sys 1R kbdhid (Keyboard HID Driver) - C:\WINDOWS\system32\drivers\kbdhid.sys 3R LVUSBSta (Logitech USB Monitor Filter) - C:\WINDOWS\system32\drivers\LVUSBSta.sys 2R mdmxsdk - C:\WINDOWS\system32\drivers\mdmxsdk.sys 3S MHNDRV (MHN driver) - C:\WINDOWS\system32\drivers\mhndrv.sys 3R MODEMCSA (Unimodem Streaming Filter Device) - C:\WINDOWS\system32\drivers\MODEMCSA.sys 3R mouhid (Mouse HID Driver) - C:\WINDOWS\system32\drivers\mouhid.sys 3S MSTEE (Microsoft Streaming Tee/Sink-to-Sink Converter) - C:\WINDOWS\system32\drivers\MSTEE.sys 3S NABTSFEC (NABTS/FEC VBI Codec) - C:\WINDOWS\system32\drivers\NABTSFEC.sys 3R NAVENG - C:\Program Files\Common Files\Symantec Shared\VirusDefs\20070301.048\NAVENG.SYS 3R NAVEX15 - C:\Program Files\Common Files\Symantec Shared\VirusDefs\20070301.048\NAVEX15.SYS 3S NdisIP (Microsoft TV/Video Connection) - C:\WINDOWS\system32\drivers\NdisIP.sys 3S nv - C:\WINDOWS\system32\drivers\nv4_mini.sys 3R ossrv (Creative OS Services Driver) - C:\WINDOWS\system32\drivers\ctoss2k.sys 3R Point32 (Microsoft IntelliPoint Filter Driver) - C:\WINDOWS\system32\drivers\point32.sys 0R PxHelp20 - C:\WINDOWS\system32\drivers\pxhelp20.sys 3R QCMerced (Logitech QuickCam Communicate) - C:\WINDOWS\system32\drivers\lvcm.sys 4S RxFilter - C:\WINDOWS\system32\drivers\RxFilter.sys 1R SAVRT - C:\Program Files\Symantec AntiVirus\savrt.sys 1R SAVRTPEL - C:\Program Files\Symantec AntiVirus\Savrtpel.sys 1R SCDEmu - C:\WINDOWS\system32\drivers\scdemu.sys 4S sisagp (SIS AGP Bus Filter) - C:\WINDOWS\system32\drivers\SISAGP.SYS 3S SLIP (BDA Slip De-Framer) - C:\WINDOWS\system32\drivers\SLIP.sys 1R SPBBCDrv - C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCDrv.sys 3S streamip (BDA IPSink) - C:\WINDOWS\system32\drivers\StreamIP.sys 3R SymEvent - C:\Program Files\Symantec\SYMEVENT.SYS 2R symlcbrd - C:\WINDOWS\system32\drivers\symlcbrd.sys 3R SYMREDRV - C:\WINDOWS\system32\drivers\symredrv.sys 0R SymSnap - C:\WINDOWS\system32\drivers\SymSnap.sys 1R SYMTDI - C:\WINDOWS\system32\drivers\symtdi.sys 3R usbaudio (USB Audio Driver (WDM)) - C:\WINDOWS\system32\drivers\USBAUDIO.sys 3R usbccgp (Microsoft USB Generic Parent Driver) - C:\WINDOWS\system32\drivers\usbccgp.sys 3R usbehci (Microsoft USB 2.0 Enhanced Host Controller Miniport Driver) - C:\WINDOWS\system32\drivers\usbehci.sys 3R usbprint (Microsoft USB PRINTER Class) - C:\WINDOWS\system32\drivers\usbprint.sys 3R usbscan (USB Scanner Driver) - C:\WINDOWS\system32\drivers\usbscan.sys 3R USBSTOR (USB Mass Storage Driver) - C:\WINDOWS\system32\drivers\USBSTOR.SYS 1R V2IMount - C:\WINDOWS\system32\drivers\V2iMount.sys 4S viaagp (VIA AGP Bus Filter) - C:\WINDOWS\system32\drivers\VIAAGP.SYS 3S wanatw (WAN Miniport (ATW)) - C:\WINDOWS\system32\DRIVERS\wanatw4.sys (not found) 3S wceusbsh (Windows CE USB Serial Host Driver) - C:\WINDOWS\system32\drivers\wceusbsh.sys 3R winachsf - C:\WINDOWS\system32\drivers\HSF_CNXT.sys 3S WSTCODEC (World Standard Teletext Codec) - C:\WINDOWS\system32\drivers\WSTCODEC.SYS 3S WudfPf (Windows Driver Foundation - User-mode Driver Framework Platform Driver) - C:\WINDOWS\system32\drivers\WudfPf.sys 3S WudfRd (Windows Driver Foundation - User-mode Driver Framework Reflector) - C:\WINDOWS\system32\drivers\WudfRd.sys -- Services: 0-Boot, 1-System, 2-Auto, 3-Demand, 4-Disabled --------------------- 3S Adobe LM Service - "C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe" 3S Adobe Version Cue CS2 - "c:\Program Files\Adobe\Adobe Version Cue CS2\bin\VersionCueCS2.exe" -win32service 2R AdobeActiveFileMonitor4.0 (Adobe Active File Monitor V4) - C:\Program Files\Adobe\Photoshop Elements 4.0\PhotoshopElementsFileAgent.exe 3S aspnet_state (ASP.NET State Service) - C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe 2R Ati HotKey Poller - C:\WINDOWS\system32\Ati2evxx.exe 2R Automatic LiveUpdate Scheduler - "C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe" 2R CCALib8 (Canon Camera Access Library 8) - C:\Program Files\Canon\CAL\CALMAIN.exe 2R ccEvtMgr (Symantec Event Manager) - "C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe" 3S ccPwdSvc (Symantec Password Validation) - "C:\Program Files\Common Files\Symantec Shared\ccPwdSvc.exe" 2R ccSetMgr (Symantec Settings Manager) - "C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe" 3S clr_optimization_v2.0.50727_32 (.NET Runtime Optimization Service v2.0.50727_X86) - C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe 2R Creative Service for CDROM Access - C:\WINDOWS\system32\CTsvcCDA.exe 2R DefWatch (Symantec AntiVirus Definition Watcher) - "C:\Program Files\Symantec AntiVirus\DefWatch.exe" 2R ehRecvr (Media Center Receiver Service) - C:\WINDOWS\eHome\ehRecvr.exe 2R ehSched (Media Center Scheduler Service) - C:\WINDOWS\eHome\ehSched.exe 2S Fax - C:\WINDOWS\system32\fxssvc.exe 3R FLEXnet Licensing Service - "C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe" 2R GEARSecurity - C:\WINDOWS\System32\GEARSec.exe 3S gusvc (Google Updater Service) - "C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe" 2R IAANTMon (Intel(R) Matrix Storage Event Monitor) - C:\Program Files\Intel\Intel Matrix Storage Manager\iaantmon.exe 3S IDriverT (InstallDriver Table Manager) - "C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe" 3R iPod Service - "C:\Program Files\iPod\bin\iPodService.exe" 3S LiveUpdate - "C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.exe" 2R McrdSvc (Media Center Extender Service) - C:\WINDOWS\ehome\mcrdsvc.exe 3S MHN - C:\WINDOWS\System32\svchost.exe -k netsvcs 3S Microsoft Office Groove Audit Service - "C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe" 3S NBService - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe 3S NetSvc (Intel NCS NetService) - C:\Program Files\Intel\PROSetWired\NCS\Sync\NetSvc.exe 3S NMIndexingService - "C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe" 2R Norton Ghost - C:\Program Files\Norton Ghost\Agent\VProSvc.exe 3S odserv (Microsoft Office Diagnostics Service) - "C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.exe" 3S ose (Office Source Engine) - "C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.exe" 2R RichVideo (Cyberlink RichVideo Service(CRVS)) - "C:\Program Files\CyberLink\Shared files\RichVideo.exe" 3S Roxio UPnP Renderer 9 - "C:\Program Files\Common Files\Sonic Shared\RoxioUPnPRenderer9.exe" 2S Roxio Upnp Server 9 - "C:\Program Files\Common Files\Sonic Shared\RoxioUpnpService9.exe" 2S RoxLiveShare9 (LiveShare P2P Server 9) - "C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxLiveShare9.exe" 3R RoxMediaDB9 - "C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxMediaDB9.exe" 2R RoxWatch9 (Roxio Hard Drive Watcher 9) - "C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatch9.exe" 2R SavRoam - "C:\Program Files\Symantec AntiVirus\SavRoam.exe" 2R Serv-U (Serv-U FTP Server) - C:\Program Files\RhinoSoft.com\Serv-U\ServUDaemon.exe 3S SM_sugo2_FUService (sugo2 Status Monitor Service) - "C:\Program Files\Samsung\Samsung ML-2570 Series\SPanel\ssmsrvc /Service 3S SNDSrvc (Symantec Network Drivers Service) - "C:\Program Files\Common Files\Symantec Shared\SNDSrvc.exe" 2R SPBBCSvc (Symantec SPBBCSvc) - "C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCSvc.exe" 3S stllssvr - "C:\Program Files\Common Files\SureThing Shared\stllssvr.exe" 2R Symantec AntiVirus - "C:\Program Files\Symantec AntiVirus\Rtvscan.exe" 2R Symantec Core LC - C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe 2R TivoBeacon2 (TiVo Beacon) - "C:\Program Files\Common Files\TiVo Shared\Beacon\TiVoBeacon.exe" /service 2S Windows Driver Framework - C:\WINDOWS\svchost -k svchost -- Scheduled T--------- 2007-03-01 06:28:00 284 --a------ C:\WINDOWS\Tasks\AppleSoftwareUpdate.job<APPLES~1.JOB> -- Files created between 2007-02-02 and 20---------- 2007-03-02 01:17:31 0 d-------- C:\NoLopBackups<NOLOPB~1> 2007-02-27 23:58:21 4576 --a------ C:\WINDOWS\system32\tmp.reg 2007-02-27 23:58:02 79360 --a------ C:\WINDOWS\system32\swxcacls.exe 2007-02-27 23:58:02 40960 --a------ C:\WINDOWS\system32\swsc.exe 2007-02-27 23:58:02 135168 --a------ C:\WINDOWS\system32\swreg.exe 2007-02-27 23:58:02 288417 --a------ C:\WINDOWS\system32\SrchSTS.exe 2007-02-27 23:58:02 53248 --a------ C:\WINDOWS\system32\Process.exe 2007-02-27 23:58:02 51200 --a------ C:\WINDOWS\system32\dumphive.exe 2007-02-27 19:55:06 0 d-------- C:\Program Files\Hijackthis<HIJACK~1> 2007-02-27 00:49:01 0 d-------- C:\Program Files\Microsoft Windows Vista Upgrade Advisor<MI3B3C~1> 2007-02-26 21:01:10 0 d-------- C:\Program Files\MSECache 2007-02-26 20:59:44 0 d-------- C:\Documents and Settings\All Users\Application Data\Office Genuine Advantage<OFFICE~1> 2007-02-26 02:42:29 0 d-------- C:\Documents and Settings\All Users\Application Data\SlySoft 2007-02-25 23:38:22 0 d-------- C:\Program Files\Common Files\Macrovision Shared<MACROV~1> 2007-02-25 00:49:10 0 d-------- C:\Documents and Settings\All Users\Application Data\Nero 2007-02-24 02:12:53 32592 --a------ C:\WINDOWS\system32\msonpmon.dll 2007-02-24 02:09:15 0 d-------- C:\Program Files\Microsoft Works<MIF2B0~1> 2007-02-24 02:08:59 0 d-------- C:\Program Files\MSBuild 2007-02-24 02:06:44 0 d-------- C:\Program Files\Microsoft.NET<MICROS~1.NET> 2007-02-24 01:59:46 0 d-------- C:\Program Files\Microsoft Visual Studio 8<MID05A~1> 2007-02-24 01:58:30 0 d-------- C:\Documents and Settings\All Users\Application Data\Microsoft Help<MICROS~3> 2007-02-24 01:58:00 0 dr-h----- C:\MSOCache 2007-02-19 08:30:00 68936 --a------ C:\WINDOWS\system32\drivers\AnyDVD.sys 2007-02-16 00:48:05 0 d-------- C:\Home movies<HOMEMO~1> 2007-02-15 16:56:49 11984 --a------ C:\WINDOWS\system32\drivers\RegKill.sys 2007-02-15 16:54:43 15440 --a------ C:\WINDOWS\system32\drivers\ElbyCDIO.sys 2007-02-13 10:07:08 0 d-------- C:\Program Files\Common Files\Java 2007-02-11 13:17:39 0 d-------- C:\Program Files\Sign comp boob<SIGNCO~1> 2007-02-02 08:37:30 81920 --a------ C:\WINDOWS\system32\ElbyCDIO.dll -- Find3M Re----------- 2007-03-02 01:23:25 0 d-------- C:\Program Files\Mozilla Firefox<MOZILL~1> 2007-03-02 01:22:55 0 d-------- C:\Program Files\Symantec AntiVirus<SYMANT~1> 2007-03-01 20:29:55 0 d-------- C:\Documents and Settings\Shana\Application Data\uTorrent 2007-03-01 19:59:51 0 d-------- C:\Program Files\Mozilla Thunderbird<MOZILL~2> 2007-02-27 00:46:09 0 d---s---- C:\Documents and Settings\Shana\Application Data\Microsoft<MICROS~1> 2007-02-26 03:48:41 0 d-------- C:\Program Files\Click'N Design 3D (V5)<CLICK'~1> 2007-02-25 23:33:48 0 d-------- C:\Program Files\Common Files\Adobe 2007-02-25 00:54:20 40 ---hs---- C:\Documents and Settings\Shana\Application Data\.zreglib<ZREGLI~1> 2007-02-25 00:51:13 0 d-------- C:\Program Files\Common Files\Ahead 2007-02-25 00:26:06 0 d-------- C:\Program Files\Common Files\Symantec Shared<SYMANT~1> 2007-02-24 03:35:41 0 d-------- C:\Documents and Settings\Shana\Application Data\OfficeUpdate12<OFFICE~1> 2007-02-22 08:24:25 0 d-------- C:\Program Files\QuickTime<QUICKT~1> 2007-02-14 06:56:02 0 d-------- C:\Documents and Settings\Shana\Application Data\AdobeUM 2007-02-14 00:59:33 0 d-------- C:\Documents and Settings\Shana\Application Data\Canon 2007-02-13 10:31:33 6016 --a------ C:\WINDOWS\mozver.dat 2007-02-13 10:30:51 0 d-------- C:\Program Files\Java 2007-02-11 13:17:44 0 d-------- C:\Documents and Settings\Shana\Application Data\Sign comp boob<SIGNCO~1> 2007-02-04 14:53:00 0 d-------- C:\Program Files\Google 2007-02-03 00:34:52 0 d-------- C:\Program Files\Microsoft Digital Image 2006<MI3C01~1> 2007-02-03 00:16:34 0 d-------- C:\Program Files\SpywareBlaster<SPYWAR~1> 2007-01-29 00:58:06 60416 -----n--- C:\WINDOWS\system32\tzchange.exe 2007-01-28 00:33:28 0 d-------- C:\Program Files\Common Files\Sonic Shared<SONICS~1> 2007-01-23 15:15:22 676224 --a------ C:\WINDOWS\system32\OGACheckControl.DLL<OGACHE~1.DLL> 2007-01-22 01:41:55 0 d-------- C:\Program Files\TrojanHunter 4.5<TROJAN~1.5> 2007-01-18 23:15:35 0 d-------- C:\Program Files\ReGetDx 2007-01-14 00:46:10 0 d-------- C:\Program Files\Common Files\ReGet Shared<REGETS~1> 2007-01-12 09:27:42 232960 --a------ C:\WINDOWS\system32\webcheck.dll 2007-01-12 09:27:42 51712 -----n--- C:\WINDOWS\system32\msfeedsbs.dll<MSFEED~1.DLL> 2007-01-12 09:27:42 458752 --a------ C:\WINDOWS\system32\msfeeds.dll 2007-01-12 09:27:42 6054400 --a------ C:\WINDOWS\system32\ieframe.dll 2007-01-08 21:49:57 51733 --a------ C:\WINDOWS\system32\plugin1.dat 2007-01-08 19:04:54 105984 --a------ C:\WINDOWS\system32\url.dll 2007-01-08 19:04:08 102400 --a------ C:\WINDOWS\system32\occache.dll 2007-01-08 19:02:04 266752 --a------ C:\WINDOWS\system32\iertutil.dll 2007-01-08 19:02:04 44544 --a------ C:\WINDOWS\system32\iernonce.dll 2007-01-08 19:02:02 384000 --a------ C:\WINDOWS\system32\iedkcs32.dll 2007-01-08 19:02:02 383488 --a------ C:\WINDOWS\system32\ieapfltr.dll 2007-01-08 19:02:02 161792 --a------ C:\WINDOWS\system32\ieakui.dll 2007-01-08 19:02:02 230400 --a------ C:\WINDOWS\system32\ieaksie.dll 2007-01-08 19:02:02 153088 --a------ C:\WINDOWS\system32\ieakeng.dll 2007-01-08 19:01:14 17408 --a------ C:\WINDOWS\system32\corpol.dll 2007-01-08 19:00:48 124928 --a------ C:\WINDOWS\system32\advpack.dll 2007-01-08 18:08:14 56832 --a------ C:\WINDOWS\system32\ie4uinit.exe 2007-01-08 18:08:10 13824 --a------ C:\WINDOWS\system32\ieudinit.exe 2006-12-19 13:52:18 134656 --a------ C:\WINDOWS\system32\shsvcs.dll 2006-12-19 10:16:47 333824 --a------ C:\WINDOWS\system32\wiaservc.dll -- Registry ----------- [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run] "ServUTrayIcon"="C:\\Program Files\\RhinoSoft.com\\Serv-U\\ServUTray.exe" "LogitechSoftwareUpdate"="\"C:\\Program Files\\Logitech\\Video\\ManifestEngine.exe\" boot" "AWMON"="\"C:\\PROGRA~1\\Lavasoft\\AD-AWA~1\\Ad-Watch.exe\"" "H/PC Connection Agent"="\"C:\\Program Files\\Microsoft ActiveSync\\wcescomm.exe\"" "AnyDVD"="C:\\Program Files\\SlySoft\\AnyDVD\\AnyDVD.exe" "WMPNSCFG"="C:\\Program Files\\Windows Media Player\\WMPNSCFG.exe" "TivoTransfer"="\"C:\\Program Files\\Common Files\\TiVo Shared\\Transfer\\TiVoTransfer.exe\" /service /registry /auto:TivoTransfer" "TivoNotify"="\"C:\\Program Files\\TiVo\\Desktop\\TiVoNotify.exe\" /service /registry /auto:TivoNotify" "TivoServer"="\"C:\\Program Files\\TiVo\\Desktop\\TiVoServer.exe\" /service /registry /auto:TivoServer" "Aim6"="\"C:\\Program Files\\AIM6\\aim6.exe\" /d locale=en-US ee://aol/imApp" "swg"="C:\\Program Files\\Google\\GoogleToolbarNotifier\\1.2.1128.5462\\GoogleToolbarNotifier.exe" "startkey"="C:\\WINDOWS\\system32\\bifroserver.exe" "ace vga"="C:\\DOCUME~1\\Shana\\APPLIC~1\\SIGNCO~1\\BlahPhone.exe" [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run] "ehTray"="C:\\WINDOWS\\ehome\\ehtray.exe" "CTHelper"="CTHELPER.EXE" "CTxfiHlp"="CTXFIHLP.EXE" "IAAnotif"="C:\\Program Files\\Intel\\Intel Matrix Storage Manager\\iaanotif.exe" "AudioDrvEmulator"="\"C:\\Program Files\\Creative\\Shared Files\\Module Loader\\DLLML.exe\" -1 AudioDrvEmulator \"C:\\Program Files\\Creative\\Shared Files\\Module Loader\\Audio Emulator\\AudDrvEm.dll\"" "ccApp"="\"C:\\Program Files\\Common Files\\Symantec Shared\\ccApp.exe\"" "ISUSPM Startup"="\"C:\\Program Files\\Common Files\\InstallShield\\UpdateService\\isuspm.exe\" -startup" "ISUSScheduler"="\"C:\\Program Files\\Common Files\\InstallShield\\UpdateService\\issch.exe\" -start" "Google Desktop Search"="\"C:\\Program Files\\Google\\Google Desktop Search\\GoogleDesktop.exe\" /startup" "vptray"="C:\\PROGRA~1\\SYMANT~1\\VPTray.exe" "LVCOMSX"="C:\\WINDOWS\\system32\\LVCOMSX.exe" "LogitechVideoRepair"="C:\\Program Files\\Logitech\\Video\\ISStart.exe" "LogitechVideoTray"="C:\\Program Files\\Logitech\\Video\\LogiTray.exe" "QOELOADER"="\"C:\\Program Files\\Qurb\\QSP-3.0.311.7\\QOELoader.exe\"" "RoxWatchTray"="\"C:\\Program Files\\Common Files\\Roxio Shared\\9.0\\SharedCOM\\RoxWatchTray9.exe\"" "DMXLauncher"="\"C:\\Program Files\\Roxio\\Media Experience\\DMXLauncher.exe\"" "RoxioDragToDisc"="\"C:\\Program Files\\Roxio\\Drag-to-Disc\\DrgToDsc.exe\"" "MimBoot"="C:\\PROGRA~1\\MUSICM~1\\MUSICM~3\\mimboot.exe" "QuickTime Task"="\"C:\\Program Files\\QuickTime\\qttask.exe\" -atboottime" "iTunesHelper"="\"C:\\Program Files\\iTunes\\iTunesHelper.exe\"" "LanguageShortcut"="\"C:\\Program Files\\CyberLink\\PowerDVD\\Language\\Language.exe\"" "Samsung PanelMgr"="C:\\WINDOWS\\Samsung\\PanelMgr\\ssmmgr.exe /autorun" "BoneDateBoltLogo"="C:\\Documents and Settings\\All Users\\Application Data\\info grey bone date\\Does bash.exe" "SunJavaUpdateSched"="\"C:\\Program Files\\Java\\jre1.5.0_11\\bin\\jusched.exe\"" "GrooveMonitor"="\"C:\\Program Files\\Microsoft Office\\Office12\\GrooveMonitor.exe\"" "NeroFilterCheck"="C:\\Program Files\\Common Files\\Ahead\\Lib\\NeroCheck.exe" "Acrobat Assistant 8.0"="\"C:\\Program Files\\Adobe\\Acrobat 8.0\\Acrobat\\Acrotray.exe\"" @="" [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^Digital Line Detect.lnk] "path"="C:\\Documents and Settings\\All Users\\Start Menu\\Programs\\Startup\\Digital Line Detect.lnk" "backup"="C:\\WINDOWS\\pss\\Digital Line Detect.lnkCommon Startup" "location"="Common Startup" "command"="C:\\PROGRA~1\\DIGITA~1\\DLG.exe " "item"="Digital Line Detect" [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^Event Reminder.lnk] "path"="C:\\Documents and Settings\\All Users\\Start Menu\\Programs\\Startup\\Event Reminder.lnk" "backup"="C:\\WINDOWS\\pss\\Event Reminder.lnkCommon Startup" "location"="Common Startup" "command"="C:\\PROGRA~1\\PRINTM~1\\pmremind.exe " "item"="Event Reminder" [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Acrobat Assistant 7.0] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="Acrotray" "hkey"="HKLM" "command"="\"c:\\Program Files\\Adobe\\Adobe Acrobat 7.0\\Distillr\\Acrotray.exe\"" "inimapping"="0" [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Version Cue CS2] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="VersionCueCS2Tray" "hkey"="HKLM" "command"="\"c:\\Program Files\\Adobe\\Adobe Version Cue CS2\\ControlPanel\\VersionCueCS2Tray.exe\"" "inimapping"="0" [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ATIPTA] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="atiptaxx" "hkey"="HKLM" "command"="\"C:\\Program Files\\ATI Technologies\\ATI Control Panel\\atiptaxx.exe\"" "inimapping"="0" [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CTDVDDET] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="CTDVDDET" "hkey"="HKLM" "command"="\"C:\\Program Files\\Creative\\Sound Blaster X-Fi\\DVDAudio\\CTDVDDET.EXE\"" "inimapping"="0" [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DMXLauncher] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="DMXLauncher" "hkey"="HKLM" "command"="C:\\Program Files\\Dell\\Media Experience\\DMXLauncher.exe" "inimapping"="0" [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LanguageShortcut] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="Language" "hkey"="HKLM" "command"="\"C:\\Program Files\\CyberLink\\PowerDVD\\Language\\Language.exe\"" "inimapping"="0" [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\McafWelcome] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="mcwelcom" "hkey"="HKLM" "command"="c:\\PROGRA~1\\mcafee.com\\agent\\mcwelcom.exe" "inimapping"="0" [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MCAgentExe] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="mcagent" "hkey"="HKLM" "command"="c:\\PROGRA~1\\mcafee.com\\agent\\mcagent.exe" "inimapping"="0" [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MCUpdateExe] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="mcupdate" "hkey"="HKLM" "command"="c:\\PROGRA~1\\mcafee.com\\agent\\mcupdate.exe" "inimapping"="0" [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MMTray] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="mm_tray" "hkey"="HKLM" "command"="\"C:\\Program Files\\Musicmatch\\Musicmatch Jukebox\\mm_tray.exe\"" "inimapping"="0" [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MPFExe] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="MpfTray" "hkey"="HKLM" "command"="C:\\PROGRA~1\\McAfee.com\\PERSON~1\\MpfTray.exe" "inimapping"="0" [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MSKAGENTEXE] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="MSKAgent" "hkey"="HKLM" "command"="C:\\PROGRA~1\\McAfee\\SPAMKI~1\\MSKAgent.exe" "inimapping"="0" [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MSKDetectorExe] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="MSKDetct" "hkey"="HKLM" "command"="C:\\Program Files\\McAfee\\SpamKiller\\MSKDetct.exe /uninstall" "inimapping"="0" [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Norton Ghost 10.0] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="GhostTray" "hkey"="HKLM" "command"="\"C:\\Program Files\\Norton Ghost\\Agent\\GhostTray.exe\"" "inimapping"="0" [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\OASClnt] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="oasclnt" "hkey"="HKLM" "command"="C:\\Program Files\\McAfee.com\\VSO\\oasclnt.exe" "inimapping"="0" [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\OpwareSE2] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="OpwareSE2" "hkey"="HKLM" "command"="\"C:\\Program Files\\ScanSoft\\OmniPageSE2.0\\OpwareSE2.exe\"" "inimapping"="0" [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="qttask" "hkey"="HKLM" "command"="\"C:\\Program Files\\QuickTime\\qttask.exe\" -atboottime" "inimapping"="0" [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RoxWatchTray] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="RoxWatchTray" "hkey"="HKLM" "command"="\"C:\\Program Files\\Common Files\\Roxio Shared\\SharedCOM8\\RoxWatchTray.exe\"" "inimapping"="0" [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\UpdReg] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="UpdReg" "hkey"="HKLM" "command"="C:\\WINDOWS\\UpdReg.exe" "inimapping"="0" [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\VirusScan Online] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="mcvsshld" "hkey"="HKLM" "command"="c:\\PROGRA~1\\mcafee.com\\vso\\mcvsshld.exe" "inimapping"="0" [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\VolPanel] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="VolPanel" "hkey"="HKLM" "command"="\"C:\\Program Files\\Creative\\Sound Blaster X-Fi\\Volume Panel\\VolPanel.exe\" /r" "inimapping"="0" [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\VSOCheckTask] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="mcmnhdlr" "hkey"="HKLM" "command"="\"C:\\PROGRA~1\\McAfee.com\\VSO\\mcmnhdlr.exe\" /checktask" "inimapping"="0" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows] "appinit_dlls"="C:\PROGRA~1\Google\GOOGLE~1\GOEC62~1.DLL" [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shellexecutehooks] "{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"="Groove GFS Stub Execution Hook" [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\shellserviceobjectdelayload] "WPDShServiceObj"="{AAA288BA-9A4C-45B0-95D7-94D524869DB5}" [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system] "InstallVisualStyle"=hex(2):43,3a,5c,57,49,4e,44,4f,57,53,5c,52,65,73,6f,75,72,\ 63,65,73,5c,54,68,65,6d,65,73,5c,52,6f,79,61,6c,65,5c,52,6f,79,61,6c,65,2e,\ 6d,73,73,74,79,6c,65,73,00 "InstallTheme"=hex(2):43,3a,5c,57,49,4e,44,4f,57,53,5c,52,65,73,6f,75,72,63,65,\ 73,5c,54,68,65,6d,65,73,5c,52,6f,79,61,6c,65,2e,74,68,65,6d,65,00 [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\explorer] "NoCDBurning"=dword:00000000 [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\explorer\run] [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders] "SecurityProviders"="msapsspc.dll, schannel.dll, digest.dll, msnsspc.dll" [HKEY_LOCAL_MACHINE\software\Microsoft\Windows NT\CurrentVersion\Svchost] HTTPFilter REG_MULTI_SZ HTTPFilter\0\0 LocalService REG_MULTI_SZ Alerter\0WebClient\0LmHosts\0RemoteRegistry\0upnphost\0SSDPSRV\0\0 NetworkService REG_MULTI_SZ DnsCache\0\0 DcomLaunch REG_MULTI_SZ DcomLaunch\0TermService\0\0 rpcss REG_MULTI_SZ RpcSs\0\0 imgsvc REG_MULTI_SZ StiSvc\0\0 termsvcs REG_MULTI_SZ TermService\0\0 WudfServiceGroup REG_MULTI_SZ WUDFSvc\0\0 [HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{361ac05d-0e0d-11da-9aa9-806d6172696f}] Shell\AutoRun\command E:\setup.exe -- End of ComboScan: finished at 2007-03-02 at 01:2- And ComboScan supplementary.txt results: ComboScan v20070226.18 run by Shana on 2007-03-02 at 01:27:14 Supplementary logfile - please post this as an attachment with your post. ---------------------- -- System Informa------ Microsoft Windows XP Professional (build 2600) SP 2.0 Architecture: X86; Language: English CPU 0: Intel(R) Pentium(R) D CPU 3.20GHz CPU 1: Intel(R) Pentium(R) D CPU 3.20GHz Percentage of Memory in Use: 28% Physical Memory (total/avail): 3070.07 MiB / 2208.86 MiB Pagefile Memory (total/avail): 4955.07 MiB / 4212.11 MiB Virtual Memory (total/avail): 2047.88 MiB / 1996.17 MiB A: is Removable (No Media) C: is Fixed (NTFS) - 228.13 GiB total, 12.92 GiB free. D: is Removable (No Media) E: is Removable (No Media) F: is Removable (No Media) G: is Removable (No Media) H: is CDROM (No Media) I: is CDROM (No Media) K: is Removable (FAT) L: is Removable (No Media) M: is Removable (FAT) -- Security Ce--------- AUOptions is set to notify before install. Windows Internal Firewall is enabled. FirstRunDisabled is set. AntiVirusDisableNotify is set. FirewallDisableNotify is set. AV: Symantec AntiVirus Corporate Edition v10.1.0.401 (Symantec Corporation) -- Environment Varia--- ALLUSERSPROFILE=C:\Documents and Settings\All Users APPDATA=C:\Documents and Settings\Shana\Application Data CLASSPATH=.;C:\Program Files\Java\j2re1.4.2_03\lib\ext\QTJava.zip CLIENTNAME=Console CommonProgramFiles=C:\Program Files\Common Files COMPUTERNAME=DELLE510 ComSpec=C:\WINDOWS\system32\cmd.exe FP_NO_HOST_CHECK=NO HOMEDRIVE=C: HOMEPATH=\Documents and Settings\Shana LOGONSERVER=\\DELLE510 NUMBER_OF_PROCESSORS=2 OS=Windows_NT Path=C:\PROGRA~1\Java\JRE15~1.0_1\bin;C:\Program Files\Mozilla Firefox\;C:\WINDOWS\system32;C:\WINDOWS;C:\WINDOWS\System32\Wbem;C:\Program Files\ATI Technologies\ATI Control Panel;C:\Program Files\Common Files\Roxio Shared\DLLShared\;c:\Program Files\Common Files\Adobe\AGL;C:\Program Files\Common Files\Roxio Shared\DLLShared\;C:\Program Files\Common Files\Roxio Shared\9.0\DLLShared\;C:\Program Files\QuickTime\QTSystem\;. PATHEXT=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH PROCESSOR_ARCHITECTURE=x86 PROCESSOR_IDENTIFIER=x86 Family 15 Model 6 Stepping 4, GenuineIntel PROCESSOR_LEVEL=15 PROCESSOR_REVISION=0604 ProgramFiles=C:\Program Files PROMPT=$P$G QTJAVA=C:\Program Files\Java\j2re1.4.2_03\lib\ext\QTJava.zip RoxioCentral=C:\Program Files\Common Files\Roxio Shared\9.0\Roxio Central33\ SESSIONNAME=Console SonicCentral=C:\Program Files\Common Files\Sonic Shared\Sonic Central\ SystemDrive=C: SystemRoot=C:\WINDOWS TEMP=C:\DOCUME~1\Shana\LOCALS~1\Temp TMP=C:\DOCUME~1\Shana\LOCALS~1\Temp USERDOMAIN=DELLE510 USERNAME=Shana USERPROFILE=C:\Documents and Settings\Shana windir=C:\WINDOWS -- User Prof----------- Shana [I](admin)[/I] Administrator [I](admin)[/I] -- Add/Remove Prog----- --> "C:\Program Files\Creative\Sound Blaster X-Fi\Program\SETUP.exe" /S /U /W --> C:\Program Files\Nero\Nero 7\\nero\uninstall\UNNERO.exe /UNINSTALL --> C:\WINDOWS\IsUninst.exe -fC:\WINDOWS\system32\UninstIPP.isu --> C:\WINDOWS\system32\\MSIEXEC.exe /x {075473F5-846A-448B-BCB3-104AA1760205} --> C:\WINDOWS\system32\\MSIEXEC.exe /x {637099FB-45FD-4BC7-9651-6FB540DBB749} --> C:\WINDOWS\system32\\MSIEXEC.exe /x {AB708C9B-97C8-4AC9-899B-DBF226AC9382} --> C:\WINDOWS\system32\\MSIEXEC.exe /x {B12665F4-4E93-4AB4-B7FC-37053B524629} --> C:\WINDOWS\UNNeroBackItUp.exe /UNINSTALL --> C:\WINDOWS\UNNeroMediaHome.exe /UNINSTALL --> C:\WINDOWS\UNNeroShowTime.exe /UNINSTALL --> C:\WINDOWS\UNNeroVision.exe /UNINSTALL --> C:\WINDOWS\UNRecode.exe /UNINSTALL --> msiexec /I {236BB7C4-4419-42FD-0409-1E257A25E34D} --> msiexec /i {46548E80-0409-0000-7E8A-45000F855001} --> msiexec /I {B2F5D08C-7E79-4FCD-AAF4-57AD35FF0601} --> msiexec /I{7F4C8163-F259-49A0-A018-2857A90578BC} --> MsiExec.exe /I{0394CDC8-FABD-4ed8-B104-03393876DFDF} --> MsiExec.exe /I{0D330013-4A99-46D6-83C6-2C959C68DBFF} --> MsiExec.exe /I{0D397393-9B50-4c52-84D5-77E344289F87} --> MsiExec.exe /I{11F93B4B-48F0-4A4E-AE77-DFA96A99664B} --> MsiExec.exe /I{35E1EC43-D4FC-4E4A-AAB3-20DDA27E8BB0} --> MsiExec.exe /I{3B55590C-8A9B-4BD6-B489-744B63026A2A} --> MsiExec.exe /I{403EF592-953B-4794-BCEF-ECAB835C2095} --> MsiExec.exe /I{619CDD8A-14B6-43a1-AB6C-0F4EE48CE048} --> MsiExec.exe /I{637099FB-45FD-4BC7-9651-6FB540DBB749} --> MsiExec.exe /I{6675CA7F-E51B-4F6A-99D4-F8F0124C6EAA} --> MsiExec.exe /I{83FFCFC7-88C6-41c6-8752-958A45325C82} --> MsiExec.exe /I{880AF49C-34F7-4285-A8AD-8F7A3D1C33DC} --> MsiExec.exe /I{8D337F77-BE7F-41A2-A7CB-D5A63FD7049B} --> MsiExec.exe /I{AC0EE5B0-A8FB-4D0A-AF03-2EDC518F841B} --> MsiExec.exe /I{C8B0680B-CDAE-4809-9F91-387B6DE00F7C} --> MsiExec.exe /I{C98E5F1B-5C2B-4FD1-BDF9-F3779DCAAA16} --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{06E3E953-0570-4DFF-A7B5-46114C390228}\setup.exe" -l0x9 --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{06E3E953-0570-4DFF-A7B5-46114C390228}\setup.exe" -l0x9 /remove --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{0B095086-7205-4D48-90DF-DCD16613C6D4}\setup.exe" -l0x9 --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{0B095086-7205-4D48-90DF-DCD16613C6D4}\setup.exe" -l0x9 /remove --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{0E5AA361-4B16-4282-B639-9E5B2B6A2EC8}\setup.exe" -l0x9 --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{0E5AA361-4B16-4282-B639-9E5B2B6A2EC8}\setup.exe" -l0x9 /remove --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{103BCDA0-E063-46AC-8028-64E78722ABA7}\setup.exe" -l0x9 --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{103BCDA0-E063-46AC-8028-64E78722ABA7}\setup.exe" -l0x9 /remove --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{17E96A7F-AFE3-4171-87B1-583E376319E8}\setup.exe" -l0x9 --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{17E96A7F-AFE3-4171-87B1-583E376319E8}\setup.exe" -l0x9 /remove --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{1EF644C7-1A0D-4B94-9AF5-AD04702094A4}\setup.exe" -l0x9 --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{1EF644C7-1A0D-4B94-9AF5-AD04702094A4}\setup.exe" -l0x9 /remove --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{2616B36E-38CE-4357-8AB5-8B3EE9B1C117}\setup.exe" -l0x9 --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{2616B36E-38CE-4357-8AB5-8B3EE9B1C117}\setup.exe" -l0x9 /remove --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{32903944-19A2-418C-901D-4BBAF4C55ABA}\setup.exe" -l0x9 --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{32903944-19A2-418C-901D-4BBAF4C55ABA}\setup.exe" -l0x9 /remove --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{44267176-A318-447F-A62A-0A5FD608C34F}\setup.exe" -l0x9 --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{44267176-A318-447F-A62A-0A5FD608C34F}\setup.exe" -l0x9 /remove --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{4D8AA0B4-E890-4BF7-A9D1-8E63027E76D3}\setup.exe" -l0x9 --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{4D8AA0B4-E890-4BF7-A9D1-8E63027E76D3}\setup.exe" -l0x9 /remove --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{569A9538-86EC-44C3-8EE4-C68B165F2A75}\setup.exe" -l0x9 --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{569A9538-86EC-44C3-8EE4-C68B165F2A75}\setup.exe" -l0x9 /remove --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{6349CEE9-19F2-49D9-AC9D-B0350E3CBDB1}\setup.exe" -l0x9 --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{6349CEE9-19F2-49D9-AC9D-B0350E3CBDB1}\setup.exe" -l0x9 /remove --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{6BF90A01-FA3F-42B9-A071-7D744409967E}\setup.exe" -l0x9 --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{6BF90A01-FA3F-42B9-A071-7D744409967E}\setup.exe" -l0x9 /remove --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{700932B3-A964-4878-82A2-96054622A1F7}\setup.exe" -l0x9 --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{700932B3-A964-4878-82A2-96054622A1F7}\setup.exe" -l0x9 /remove --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{73919E2B-725C-4FAA-8473-45E063A3575F}\setup.exe" -l0x9 --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{73919E2B-725C-4FAA-8473-45E063A3575F}\setup.exe" -l0x9 /remove --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{7AFFF09F-386B-4F7A-B3E0-EC24C13893AA}\setup.exe" -l0x9 --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{7AFFF09F-386B-4F7A-B3E0-EC24C13893AA}\setup.exe" -l0x9 /remove --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{84F573D3-0F71-4768-978A-D35310E3FBA6}\setup.exe" -l0x9 --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Informa

0

Please download and run Catchme from this link http://www.gmer.net/catchme.php then post the results of the scan. Please download ATF-Cleaner to your desktop from this link http://www.atribune.org/content/view/19/2/ We will need it later in safe mode Download and install AVG Anti-Spyware We will need this later in safe mode Be sure to update AVG Anti- Spyware Download Killbox to your desktop from this link Killbox by Option^Explicit. If you already have "Killbox" update to this newer version. We will need it later in safe mode Next, please reboot your computer in Safe Mode by doing the following : Restart your computer After hearing your computer beep once during startup, but before the Windows icon appears, tap the F8 key continually; Instead of Windows loading as normal, a menu with options should appear; Select the first option, to run Windows in Safe Mode, then press "Enter". Choose your usual account. Run Hijack This from safe mode, close all windows except Hijack This, place a check to the left of the following items and press "fix checked": O2 - BHO: Browser Address Error Redirector - {CA6319C0-31B7-401E-A518-A07C3DB8F777} - C:\Program Files\BAE\BAE.dll O4 - HKCU\..\Run: [startkey] C:\WINDOWS\system32\bifroserver.exe O9 - Extra button: (no name) - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - (no file) O23 - Service: Windows Driver Framework - Unknown owner - C:\WINDOWS\svchost.exe (file missing) Exit Hijack This but remain in safe mode. Run killbox from safe mode. Please double-click Killbox.exe to run it. Select: Delete on Reboot then Click on the All Files button. Please copy the file paths below to the clipboard by highlighting ALL of them and pressing CTRL + C (or, after highlighting, right-click and choose copy): C:\Program Files\BAE\BAE.dll C:\WINDOWS\system32\bifroserver.exe C:\WINDOWS\svchost.exe Return to Killbox, go to the File menu, and choose Paste from Clipboard. Click the red-and-white Delete File button. Click Yes at the Delete on Reboot prompt. Click OK at any PendingFileRenameOperations prompt. If your computer does not restart automatically, please restart it manually. Navigate to and delete this folder if found: C:\Program Files\BAE Form safe mode go to start> control panel>administrative tools> services> scroll down to "Windows Driver Framework - C:\WINDOWS\svchost -k svchost" and double click it> click stop> on the far right side of "startup type" click the drop down arrow> click disable>apply>ok. Run ATF-Cleaner from safe mode.Double-click ATF-Cleaner.exe to run the program. Under Main choose: Select All Click the Empty Selected button. Empty the restore folder. Go to start>control panel>system>system restore tab>check the box beside "turn off system restore>apply (takes a minute)>ok. Go back and uncheck the box to turn system restore back on>apply>ok. In Safe Mode, run AVG Anti-spyware and click on the Scanner tab at the top. Click the "Settings" tab and then change the recommended action to Quarantine and click Automatically generate report after every scan. Click back to the "Scan" tab and then click on Complete System Scan. This scan can take quite a while to run, so be prepared. AVG Anti-Spyware will list any infections found on the left hand side. When the scan has finished, it will automatically set the recommended action. Click the Apply all actions button. AVG Anti-Spyware will display "All actions have been applied" on the right hand side. Click on "Save Report", then "Save Report As". This will create a text file. Make sure you know where to find this file again (like on the Desktop). Post the AVG report. Go to this link, http://virusscan.jotti.org/ and use the "browse" button to locate these files one at the time C:\Documents and Settings\All Users\Application Data\info grey bone date\Does bash.exe C:\Documents and Settings\Shana\Application Data\Sign comp boob\BlahPhone.exe then double click the file to enter it into the "upload and scan box", click submit then post the results.

0

Jabuck: Here is the report for the AVG scan: AVG Anti-Spyware - Scan Report + Created at: 1:32:33 AM 3/9/2007 + Scan result: C:\Program Files\DIGStream\digstream.exe -> Not-A-Virus.Downloader.Win32.DigStream : Cleaned with backup (quarantined). :mozilla.343:C:\MozBackup\Firefox 1.5.0.10 (en-US) - 3.4.2007.pcv/cookies.txt -> TrackingCookie.Adbrite : Error during cleaning. :mozilla.344:C:\MozBackup\Firefox 1.5.0.10 (en-US) - 3.4.2007.pcv/cookies.txt -> TrackingCookie.Adbrite : Error during cleaning. :mozilla.345:C:\MozBackup\Firefox 1.5.0.10 (en-US) - 3.4.2007.pcv/cookies.txt -> TrackingCookie.Adbrite : Error during cleaning. :mozilla.358:C:\MozBackup\Firefox 1.5.0.10 (en-US) - 3.4.2007.pcv/cookies.txt -> TrackingCookie.Adbrite : Error during cleaning. :mozilla.360:C:\MozBackup\Firefox 1.5.0.10 (en-US) - 3.4.2007.pcv/cookies.txt -> TrackingCookie.Adbrite : Error during cleaning. :mozilla.456:C:\Documents and Settings\Shana\Application Data\Mozilla\Firefox\Profiles\3zoc84dr.default\cookies.txt -> TrackingCookie.Adbrite : Cleaned. :mozilla.457:C:\Documents and Settings\Shana\Application Data\Mozilla\Firefox\Profiles\3zoc84dr.default\cookies.txt -> TrackingCookie.Adbrite : Cleaned. :mozilla.458:C:\Documents and Settings\Shana\Application Data\Mozilla\Firefox\Profiles\3zoc84dr.default\cookies.txt -> TrackingCookie.Adbrite : Cleaned. :mozilla.183:C:\MozBackup\Firefox 1.5.0.10 (en-US) - 3.4.2007.pcv/cookies.txt -> TrackingCookie.Adrevolver : Error during cleaning. :mozilla.184:C:\MozBackup\Firefox 1.5.0.10 (en-US) - 3.4.2007.pcv/cookies.txt -> TrackingCookie.Adrevolver : Error during cleaning. :mozilla.185:C:\MozBackup\Firefox 1.5.0.10 (en-US) - 3.4.2007.pcv/cookies.txt -> TrackingCookie.Adrevolver : Error during cleaning. :mozilla.186:C:\MozBackup\Firefox 1.5.0.10 (en-US) - 3.4.2007.pcv/cookies.txt -> TrackingCookie.Adrevolver : Error during cleaning. :mozilla.187:C:\MozBackup\Firefox 1.5.0.10 (en-US) - 3.4.2007.pcv/cookies.txt -> TrackingCookie.Adrevolver : Error during cleaning. :mozilla.188:C:\MozBackup\Firefox 1.5.0.10 (en-US) - 3.4.2007.pcv/cookies.txt -> TrackingCookie.Adrevolver : Error during cleaning. :mozilla.371:C:\Documents and Settings\Shana\Application Data\Mozilla\Firefox\Profiles\3zoc84dr.default\cookies.txt -> TrackingCookie.Adrevolver : Cleaned. :mozilla.373:C:\Documents and Settings\Shana\Application Data\Mozilla\Firefox\Profiles\3zoc84dr.default\cookies.txt -> TrackingCookie.Adrevolver : Cleaned. :mozilla.375:C:\Documents and Settings\Shana\Application Data\Mozilla\Firefox\Profiles\3zoc84dr.default\cookies.txt -> TrackingCookie.Adrevolver : Cleaned. :mozilla.376:C:\Documents and Settings\Shana\Application Data\Mozilla\Firefox\Profiles\3zoc84dr.default\cookies.txt -> TrackingCookie.Adrevolver : Cleaned. :mozilla.377:C:\Documents and Settings\Shana\Application Data\Mozilla\Firefox\Profiles\3zoc84dr.default\cookies.txt -> TrackingCookie.Adrevolver : Cleaned. :mozilla.378:C:\Documents and Settings\Shana\Application Data\Mozilla\Firefox\Profiles\3zoc84dr.default\cookies.txt -> TrackingCookie.Adrevolver : Cleaned. :mozilla.358:C:\Documents and Settings\Shana\Application Data\Mozilla\Firefox\Profiles\3zoc84dr.default\cookies.txt -> TrackingCookie.Burstbeacon : Cleaned. :mozilla.759:C:\MozBackup\Firefox 1.5.0.10 (en-US) - 3.4.2007.pcv/cookies.txt -> TrackingCookie.Burstbeacon : Error during cleaning. :mozilla.757:C:\MozBackup\Firefox 1.5.0.10 (en-US) - 3.4.2007.pcv/cookies.txt -> TrackingCookie.Burstnet : Error during cleaning. :mozilla.758:C:\MozBackup\Firefox 1.5.0.10 (en-US) - 3.4.2007.pcv/cookies.txt -> TrackingCookie.Burstnet : Error during cleaning. :mozilla.760:C:\MozBackup\Firefox 1.5.0.10 (en-US) - 3.4.2007.pcv/cookies.txt -> TrackingCookie.Burstnet : Error during cleaning. :mozilla.782:C:\Documents and Settings\Shana\Application Data\Mozilla\Firefox\Profiles\3zoc84dr.default\cookies.txt -> TrackingCookie.Burstnet : Cleaned. :mozilla.783:C:\Documents and Settings\Shana\Application Data\Mozilla\Firefox\Profiles\3zoc84dr.default\cookies.txt -> TrackingCookie.Burstnet : Cleaned. :mozilla.784:C:\Documents and Settings\Shana\Application Data\Mozilla\Firefox\Profiles\3zoc84dr.default\cookies.txt -> TrackingCookie.Burstnet : Cleaned. :mozilla.388:C:\Documents and Settings\Shana\Application Data\Mozilla\Firefox\Profiles\3zoc84dr.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned. :mozilla.389:C:\Documents and Settings\Shana\Application Data\Mozilla\Firefox\Profiles\3zoc84dr.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned. :mozilla.390:C:\Documents and Settings\Shana\Application Data\Mozilla\Firefox\Profiles\3zoc84dr.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned. :mozilla.391:C:\Documents and Settings\Shana\Application Data\Mozilla\Firefox\Profiles\3zoc84dr.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned. :mozilla.392:C:\Documents and Settings\Shana\Application Data\Mozilla\Firefox\Profiles\3zoc84dr.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned. :mozilla.393:C:\Documents and Settings\Shana\Application Data\Mozilla\Firefox\Profiles\3zoc84dr.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned. :mozilla.394:C:\Documents and Settings\Shana\Application Data\Mozilla\Firefox\Profiles\3zoc84dr.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned. :mozilla.584:C:\MozBackup\Firefox 1.5.0.10 (en-US) - 3.4.2007.pcv/cookies.txt -> TrackingCookie.Casalemedia : Error during cleaning. :mozilla.585:C:\MozBackup\Firefox 1.5.0.10 (en-US) - 3.4.2007.pcv/cookies.txt -> TrackingCookie.Casalemedia : Error during cleaning. :mozilla.586:C:\MozBackup\Firefox 1.5.0.10 (en-US) - 3.4.2007.pcv/cookies.txt -> TrackingCookie.Casalemedia : Error during cleaning. :mozilla.587:C:\MozBackup\Firefox 1.5.0.10 (en-US) - 3.4.2007.pcv/cookies.txt -> TrackingCookie.Casalemedia : Error during cleaning. :mozilla.588:C:\MozBackup\Firefox 1.5.0.10 (en-US) - 3.4.2007.pcv/cookies.txt -> TrackingCookie.Casalemedia : Error during cleaning. :mozilla.589:C:\MozBackup\Firefox 1.5.0.10 (en-US) - 3.4.2007.pcv/cookies.txt -> TrackingCookie.Casalemedia : Error during cleaning. :mozilla.590:C:\MozBackup\Firefox 1.5.0.10 (en-US) - 3.4.2007.pcv/cookies.txt -> TrackingCookie.Casalemedia : Error during cleaning. :mozilla.368:C:\Documents and Settings\Shana\Application Data\Mozilla\Firefox\Profiles\3zoc84dr.default\cookies.txt -> TrackingCookie.Dealtime : Cleaned. :mozilla.632:C:\MozBackup\Firefox 1.5.0.10 (en-US) - 3.4.2007.pcv/cookies.txt -> TrackingCookie.Dealtime : Error during cleaning. :mozilla.201:C:\MozBackup\Firefox 1.5.0.10 (en-US) - 3.4.2007.pcv/cookies.txt -> TrackingCookie.Esomniture : Error during cleaning. :mozilla.376:C:\MozBackup\Firefox 1.5.0.10 (en-US) - 3.4.2007.pcv/cookies.txt -> TrackingCookie.Esomniture : Error during cleaning. :mozilla.386:C:\MozBackup\Firefox 1.5.0.10 (en-US) - 3.4.2007.pcv/cookies.txt -> TrackingCookie.Esomniture : Error during cleaning. :mozilla.387:C:\MozBackup\Firefox 1.5.0.10 (en-US) - 3.4.2007.pcv/cookies.txt -> TrackingCookie.Esomniture : Error during cleaning. :mozilla.40:C:\Documents and Settings\Shana\Application Data\Mozilla\Firefox\Profiles\3zoc84dr.default\cookies.txt -> TrackingCookie.Esomniture : Cleaned. :mozilla.485:C:\Documents and Settings\Shana\Application Data\Mozilla\Firefox\Profiles\3zoc84dr.default\cookies.txt -> TrackingCookie.Esomniture : Cleaned. :mozilla.487:C:\Documents and Settings\Shana\Application Data\Mozilla\Firefox\Profiles\3zoc84dr.default\cookies.txt -> TrackingCookie.Esomniture : Cleaned. :mozilla.488:C:\Documents and Settings\Shana\Application Data\Mozilla\Firefox\Profiles\3zoc84dr.default\cookies.txt -> TrackingCookie.Esomniture : Cleaned. :mozilla.711:C:\MozBackup\Firefox 1.5.0.10 (en-US) - 3.4.2007.pcv/cookies.txt -> TrackingCookie.Esomniture : Error during cleaning. :mozilla.736:C:\Documents and Settings\Shana\Application Data\Mozilla\Firefox\Profiles\3zoc84dr.default\cookies.txt -> TrackingCookie.Esomniture : Cleaned. :mozilla.877:C:\MozBackup\Firefox 1.5.0.10 (en-US) - 3.4.2007.pcv/cookies.txt -> TrackingCookie.Esomniture : Error during cleaning. :mozilla.899:C:\Documents and Settings\Shana\Application Data\Mozilla\Firefox\Profiles\3zoc84dr.default\cookies.txt -> TrackingCookie.Esomniture : Cleaned. :mozilla.167:C:\Documents and Settings\Shana\Application Data\Mozilla\Firefox\Profiles\3zoc84dr.default\cookies.txt -> TrackingCookie.Liveperson : Cleaned. :mozilla.168:C:\Documents and Settings\Shana\Application Data\Mozilla\Firefox\Profiles\3zoc84dr.default\cookies.txt -> TrackingCookie.Liveperson : Cleaned. :mozilla.169:C:\Documents and Settings\Shana\Application Data\Mozilla\Firefox\Profiles\3zoc84dr.default\cookies.txt -> TrackingCookie.Liveperson : Cleaned. :mozilla.219:C:\MozBackup\Firefox 1.5.0.10 (en-US) - 3.4.2007.pcv/cookies.txt -> TrackingCookie.Liveperson : Error during cleaning. :mozilla.220:C:\MozBackup\Firefox 1.5.0.10 (en-US) - 3.4.2007.pcv/cookies.txt -> TrackingCookie.Liveperson : Error during cleaning. :mozilla.221:C:\MozBackup\Firefox 1.5.0.10 (en-US) - 3.4.2007.pcv/cookies.txt -> TrackingCookie.Liveperson : Error during cleaning. :mozilla.368:C:\MozBackup\Firefox 1.5.0.10 (en-US) - 3.4.2007.pcv/cookies.txt -> TrackingCookie.Liveperson : Error during cleaning. :mozilla.369:C:\MozBackup\Firefox 1.5.0.10 (en-US) - 3.4.2007.pcv/cookies.txt -> TrackingCookie.Liveperson : Error during cleaning. :mozilla.370:C:\MozBackup\Firefox 1.5.0.10 (en-US) - 3.4.2007.pcv/cookies.txt -> TrackingCookie.Liveperson : Error during cleaning. :mozilla.371:C:\MozBackup\Firefox 1.5.0.10 (en-US) - 3.4.2007.pcv/cookies.txt -> TrackingCookie.Liveperson : Error during cleaning. :mozilla.478:C:\Documents and Settings\Shana\Application Data\Mozilla\Firefox\Profiles\3zoc84dr.default\cookies.txt -> TrackingCookie.Liveperson : Cleaned. :mozilla.479:C:\Documents and Settings\Shana\Application Data\Mozilla\Firefox\Profiles\3zoc84dr.default\cookies.txt -> TrackingCookie.Liveperson : Cleaned. :mozilla.480:C:\Documents and Settings\Shana\Application Data\Mozilla\Firefox\Profiles\3zoc84dr.default\cookies.txt -> TrackingCookie.Liveperson : Cleaned. :mozilla.795:C:\MozBackup\Firefox 1.5.0.10 (en-US) - 3.4.2007.pcv/cookies.txt -> TrackingCookie.Liveperson : Error during cleaning. :mozilla.796:C:\MozBackup\Firefox 1.5.0.10 (en-US) - 3.4.2007.pcv/cookies.txt -> TrackingCookie.Liveperson : Error during cleaning. :mozilla.797:C:\MozBackup\Firefox 1.5.0.10 (en-US) - 3.4.2007.pcv/cookies.txt -> TrackingCookie.Liveperson : Error during cleaning. :mozilla.819:C:\Documents and Settings\Shana\Application Data\Mozilla\Firefox\Profiles\3zoc84dr.default\cookies.txt -> TrackingCookie.Liveperson : Cleaned. :mozilla.820:C:\Documents and Settings\Shana\Application Data\Mozilla\Firefox\Profiles\3zoc84dr.default\cookies.txt -> TrackingCookie.Liveperson : Cleaned. :mozilla.821:C:\Documents and Settings\Shana\Application Data\Mozilla\Firefox\Profiles\3zoc84dr.default\cookies.txt -> TrackingCookie.Liveperson : Cleaned. :mozilla.800:C:\MozBackup\Firefox 1.5.0.10 (en-US) - 3.4.2007.pcv/cookies.txt -> TrackingCookie.Realmedia : Error during cleaning. :mozilla.801:C:\MozBackup\Firefox 1.5.0.10 (en-US) - 3.4.2007.pcv/cookies.txt -> TrackingCookie.Realmedia : Error during cleaning. :mozilla.802:C:\MozBackup\Firefox 1.5.0.10 (en-US) - 3.4.2007.pcv/cookies.txt -> TrackingCookie.Realmedia : Error during cleaning. :mozilla.803:C:\MozBackup\Firefox 1.5.0.10 (en-US) - 3.4.2007.pcv/cookies.txt -> TrackingCookie.Realmedia : Error during cleaning. :mozilla.804:C:\MozBackup\Firefox 1.5.0.10 (en-US) - 3.4.2007.pcv/cookies.txt -> TrackingCookie.Realmedia : Error during cleaning. :mozilla.805:C:\MozBackup\Firefox 1.5.0.10 (en-US) - 3.4.2007.pcv/cookies.txt -> TrackingCookie.Realmedia : Error during cleaning. :mozilla.806:C:\MozBackup\Firefox 1.5.0.10 (en-US) - 3.4.2007.pcv/cookies.txt -> TrackingCookie.Realmedia : Error during cleaning. :mozilla.807:C:\MozBackup\Firefox 1.5.0.10 (en-US) - 3.4.2007.pcv/cookies.txt -> TrackingCookie.Realmedia : Error during cleaning. :mozilla.822:C:\Documents and Settings\Shana\Application Data\Mozilla\Firefox\Profiles\3zoc84dr.default\cookies.txt -> TrackingCookie.Realmedia : Cleaned. :mozilla.823:C:\Documents and Settings\Shana\Application Data\Mozilla\Firefox\Profiles\3zoc84dr.default\cookies.txt -> TrackingCookie.Realmedia : Cleaned. :mozilla.824:C:\Documents and Settings\Shana\Application Data\Mozilla\Firefox\Profiles\3zoc84dr.default\cookies.txt -> TrackingCookie.Realmedia : Cleaned. :mozilla.825:C:\Documents and Settings\Shana\Application Data\Mozilla\Firefox\Profiles\3zoc84dr.default\cookies.txt -> TrackingCookie.Realmedia : Cleaned. :mozilla.826:C:\Documents and Settings\Shana\Application Data\Mozilla\Firefox\Profiles\3zoc84dr.default\cookies.txt -> TrackingCookie.Realmedia : Cleaned. :mozilla.827:C:\Documents and Settings\Shana\Application Data\Mozilla\Firefox\Profiles\3zoc84dr.default\cookies.txt -> TrackingCookie.Realmedia : Cleaned. :mozilla.828:C:\Documents and Settings\Shana\Application Data\Mozilla\Firefox\Profiles\3zoc84dr.default\cookies.txt -> TrackingCookie.Realmedia : Cleaned. :mozilla.829:C:\Documents and Settings\Shana\Application Data\Mozilla\Firefox\Profiles\3zoc84dr.default\cookies.txt -> TrackingCookie.Realmedia : Cleaned. :mozilla.111:C:\MozBackup\Firefox 1.5.0.10 (en-US) - 3.4.2007.pcv/cookies.txt -> TrackingCookie.Revsci : Error during cleaning. :mozilla.13:C:\MozBackup\Firefox 1.5.0.10 (en-US) - 3.4.2007.pcv/cookies.txt -> TrackingCookie.Revsci : Error during cleaning. :mozilla.169:C:\MozBackup\Firefox 1.5.0.10 (en-US) - 3.4.2007.pcv/cookies.txt -> TrackingCookie.Revsci : Error during cleaning. :mozilla.19:C:\MozBackup\Firefox 1.5.0.10 (en-US) - 3.4.2007.pcv/cookies.txt -> TrackingCookie.Revsci : Error during cleaning. :mozilla.20:C:\MozBackup\Firefox 1.5.0.10 (en-US) - 3.4.2007.pcv/cookies.txt -> TrackingCookie.Revsci : Error during cleaning. :mozilla.21:C:\MozBackup\Firefox 1.5.0.10 (en-US) - 3.4.2007.pcv/cookies.txt -> TrackingCookie.Revsci : Error during cleaning. :mozilla.22:C:\MozBackup\Firefox 1.5.0.10 (en-US) - 3.4.2007.pcv/cookies.txt -> TrackingCookie.Revsci : Error during cleaning. :mozilla.23:C:\MozBackup\Firefox 1.5.0.10 (en-US) - 3.4.2007.pcv/cookies.txt -> TrackingCookie.Revsci : Error during cleaning. :mozilla.246:C:\Documents and Settings\Shana\Application Data\Mozilla\Firefox\Profiles\3zoc84dr.default\cookies.txt -> TrackingCookie.Revsci : Cleaned. :mozilla.247:C:\Documents and Settings\Shana\Application Data\Mozilla\Firefox\Profiles\3zoc84dr.default\cookies.txt -> TrackingCookie.Revsci : Cleaned. :mozilla.248:C:\Documents and Settings\Shana\Application Data\Mozilla\Firefox\Profiles\3zoc84dr.default\cookies.txt -> TrackingCookie.Revsci : Cleaned. :mozilla.249:C:\Documents and Settings\Shana\Application Data\Mozilla\Firefox\Profiles\3zoc84dr.default\cookies.txt -> TrackingCookie.Revsci : Cleaned. :mozilla.24:C:\MozBackup\Firefox 1.5.0.10 (en-US) - 3.4.2007.pcv/cookies.txt -> TrackingCookie.Revsci : Error during cleaning. :mozilla.250:C:\Documents and Settings\Shana\Application Data\Mozilla\Firefox\Profiles\3zoc84dr.default\cookies.txt -> TrackingCookie.Revsci : Cleaned. :mozilla.251:C:\Documents and Settings\Shana\Application Data\Mozilla\Firefox\Profiles\3zoc84dr.default\cookies.txt -> TrackingCookie.Revsci : Cleaned. :mozilla.252:C:\Documents and Settings\Shana\Application Data\Mozilla\Firefox\Profiles\3zoc84dr.default\cookies.txt -> TrackingCookie.Revsci : Cleaned. :mozilla.253:C:\Documents and Settings\Shana\Application Data\Mozilla\Firefox\Profiles\3zoc84dr.default\cookies.txt -> TrackingCookie.Revsci : Cleaned. :mozilla.254:C:\Documents and Settings\Shana\Application Data\Mozilla\Firefox\Profiles\3zoc84dr.default\cookies.txt -> TrackingCookie.Revsci : Cleaned. :mozilla.255:C:\Documents and Settings\Shana\Application Data\Mozilla\Firefox\Profiles\3zoc84dr.default\cookies.txt -> TrackingCookie.Revsci : Cleaned. :mozilla.256:C:\Documents and Settings\Shana\Application Data\Mozilla\Firefox\Profiles\3zoc84dr.default\cookies.txt -> TrackingCookie.Revsci : Cleaned. :mozilla.257:C:\Documents and Settings\Shana\Application Data\Mozilla\Firefox\Profiles\3zoc84dr.default\cookies.txt -> TrackingCookie.Revsci : Cleaned. :mozilla.258:C:\Documents and Settings\Shana\Application Data\Mozilla\Firefox\Profiles\3zoc84dr.default\cookies.txt -> TrackingCookie.Revsci : Cleaned. :mozilla.259:C:\Documents and Settings\Shana\Application Data\Mozilla\Firefox\Profiles\3zoc84dr.default\cookies.txt -> TrackingCookie.Revsci : Cleaned. :mozilla.25:C:\MozBackup\Firefox 1.5.0.10 (en-US) - 3.4.2007.pcv/cookies.txt -> TrackingCookie.Revsci : Error during cleaning. :mozilla.260:C:\Documents and Settings\Shana\Application Data\Mozilla\Firefox\Profiles\3zoc84dr.default\cookies.txt -> TrackingCookie.Revsci : Cleaned. :mozilla.261:C:\Documents and Settings\Shana\Application Data\Mozilla\Firefox\Profiles\3zoc84dr.default\cookies.txt -> TrackingCookie.Revsci : Cleaned. :mozilla.262:C:\Documents and Settings\Shana\Application Data\Mozilla\Firefox\Profiles\3zoc84dr.default\cookies.txt -> TrackingCookie.Revsci : Cleaned. :mozilla.263:C:\Documents and Settings\Shana\Application Data\Mozilla\Firefox\Profiles\3zoc84dr.default\cookies.txt -> TrackingCookie.Revsci : Cleaned. :mozilla.264:C:\Documents and Settings\Shana\Application Data\Mozilla\Firefox\Profiles\3zoc84dr.default\cookies.txt -> TrackingCookie.Revsci : Cleaned. :mozilla.265:C:\Documents and Settings\Shana\Application Data\Mozilla\Firefox\Profiles\3zoc84dr.default\cookies.txt -> TrackingCookie.Revsci : Cleaned. :mozilla.266:C:\Documents and Settings\Shana\Application Data\Mozilla\Firefox\Profiles\3zoc84dr.default\cookies.txt -> TrackingCookie.Revsci : Cleaned. :mozilla.267:C:\Documents and Settings\Shana\Application Data\Mozilla\Firefox\Profiles\3zoc84dr.default\cookies.txt -> TrackingCookie.Revsci : Cleaned. :mozilla.268:C:\Documents and Settings\Shana\Application Data\Mozilla\Firefox\Profiles\3zoc84dr.default\cookies.txt -> TrackingCookie.Revsci : Cleaned. :mozilla.26:C:\MozBackup\Firefox 1.5.0.10 (en-US) - 3.4.2007.pcv/cookies.txt -> TrackingCookie.Revsci : Error during cleaning. :mozilla.27:C:\MozBackup\Firefox 1.5.0.10 (en-US) - 3.4.2007.pcv/cookies.txt -> TrackingCookie.Revsci : Error during cleaning. :mozilla.28:C:\MozBackup\Firefox 1.5.0.10 (en-US) - 3.4.2007.pcv/cookies.txt -> TrackingCookie.Revsci : Error during cleaning. :mozilla.29:C:\MozBackup\Firefox 1.5.0.10 (en-US) - 3.4.2007.pcv/cookies.txt -> TrackingCookie.Revsci : Error during cleaning. :mozilla.30:C:\MozBackup\Firefox 1.5.0.10 (en-US) - 3.4.2007.pcv/cookies.txt -> TrackingCookie.Revsci : Error during cleaning. :mozilla.31:C:\MozBackup\Firefox 1.5.0.10 (en-US) - 3.4.2007.pcv/cookies.txt -> TrackingCookie.Revsci : Error during cleaning. :mozilla.32:C:\MozBackup\Firefox 1.5.0.10 (en-US) - 3.4.2007.pcv/cookies.txt -> TrackingCookie.Revsci : Error during cleaning. :mozilla.33:C:\MozBackup\Firefox 1.5.0.10 (en-US) - 3.4.2007.pcv/cookies.txt -> TrackingCookie.Revsci : Error during cleaning. :mozilla.34:C:\MozBackup\Firefox 1.5.0.10 (en-US) - 3.4.2007.pcv/cookies.txt -> TrackingCookie.Revsci : Error during cleaning. :mozilla.35:C:\MozBackup\Firefox 1.5.0.10 (en-US) - 3.4.2007.pcv/cookies.txt -> TrackingCookie.Revsci : Error during cleaning. :mozilla.36:C:\MozBackup\Firefox 1.5.0.10 (en-US) - 3.4.2007.pcv/cookies.txt -> TrackingCookie.Revsci : Error during cleaning. :mozilla.379:C:\Documents and Settings\Shana\Application Data\Mozilla\Firefox\Profiles\3zoc84dr.default\cookies.txt -> TrackingCookie.Revsci : Cleaned. :mozilla.37:C:\MozBackup\Firefox 1.5.0.10 (en-US) - 3.4.2007.pcv/cookies.txt -> TrackingCookie.Revsci : Error during cleaning. :mozilla.38:C:\MozBackup\Firefox 1.5.0.10 (en-US) - 3.4.2007.pcv/cookies.txt -> TrackingCookie.Revsci : Error during cleaning. :mozilla.39:C:\MozBackup\Firefox 1.5.0.10 (en-US) - 3.4.2007.pcv/cookies.txt -> TrackingCookie.Revsci : Error during cleaning. :mozilla.40:C:\MozBackup\Firefox 1.5.0.10 (en-US) - 3.4.2007.pcv/cookies.txt -> TrackingCookie.Revsci : Error during cleaning. :mozilla.399:C:\Documents and Settings\Shana\Application Data\Mozilla\Firefox\Profiles\3zoc84dr.default\cookies.txt -> TrackingCookie.Serving-sys : Cleaned. :mozilla.400:C:\Documents and Settings\Shana\Application Data\Mozilla\Firefox\Profiles\3zoc84dr.default\cookies.txt -> TrackingCookie.Serving-sys : Cleaned. :mozilla.401:C:\Documents and Settings\Shana\Application Data\Mozilla\Firefox\Profiles\3zoc84dr.default\cookies.txt -> TrackingCookie.Serving-sys : Cleaned. :mozilla.402:C:\Documents and Settings\Shana\Application Data\Mozilla\Firefox\Profiles\3zoc84dr.default\cookies.txt -> TrackingCookie.Serving-sys : Cleaned. :mozilla.403:C:\Documents and Settings\Shana\Application Data\Mozilla\Firefox\Profiles\3zoc84dr.default\cookies.txt -> TrackingCookie.Serving-sys : Cleaned. :mozilla.404:C:\Documents and Settings\Shana\Application Data\Mozilla\Firefox\Profiles\3zoc84dr.default\cookies.txt -> TrackingCookie.Serving-sys : Cleaned. :mozilla.41:C:\MozBackup\Firefox 1.5.0.10 (en-US) - 3.4.2007.pcv/cookies.txt -> TrackingCookie.Serving-sys : Error during cleaning. :mozilla.51:C:\MozBackup\Firefox 1.5.0.10 (en-US) - 3.4.2007.pcv/cookies.txt -> TrackingCookie.Serving-sys : Error during cleaning. :mozilla.60:C:\MozBackup\Firefox 1.5.0.10 (en-US) - 3.4.2007.pcv/cookies.txt -> TrackingCookie.Serving-sys : Error during cleaning. :mozilla.61:C:\MozBackup\Firefox 1.5.0.10 (en-US) - 3.4.2007.pcv/cookies.txt -> TrackingCookie.Serving-sys : Error during cleaning. :mozilla.62:C:\MozBackup\Firefox 1.5.0.10 (en-US) - 3.4.2007.pcv/cookies.txt -> TrackingCookie.Serving-sys : Error during cleaning. :mozilla.63:C:\MozBackup\Firefox 1.5.0.10 (en-US) - 3.4.2007.pcv/cookies.txt -> TrackingCookie.Serving-sys : Error during cleaning. :mozilla.301:C:\Documents and Settings\Shana\Application Data\Mozilla\Firefox\Profiles\3zoc84dr.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned. :mozilla.302:C:\Documents and Settings\Shana\Application Data\Mozilla\Firefox\Profiles\3zoc84dr.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned. :mozilla.303:C:\Documents and Settings\Shana\Application Data\Mozilla\Firefox\Profiles\3zoc84dr.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned. :mozilla.304:C:\Documents and Settings\Shana\Application Data\Mozilla\Firefox\Profiles\3zoc84dr.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned. :mozilla.305:C:\Documents and Settings\Shana\Application Data\Mozilla\Firefox\Profiles\3zoc84dr.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned. :mozilla.306:C:\Documents and Settings\Shana\Application Data\Mozilla\Firefox\Profiles\3zoc84dr.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned. :mozilla.307:C:\Documents and Settings\Shana\Application Data\Mozilla\Firefox\Profiles\3zoc84dr.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned. :mozilla.308:C:\Documents and Settings\Shana\Application Data\Mozilla\Firefox\Profiles\3zoc84dr.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned. :mozilla.309:C:\Documents and Settings\Shana\Application Data\Mozilla\Firefox\Profiles\3zoc84dr.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned. :mozilla.310:C:\Documents and Settings\Shana\Application Data\Mozilla\Firefox\Profiles\3zoc84dr.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned. :mozilla.311:C:\Documents and Settings\Shana\Application Data\Mozilla\Firefox\Profiles\3zoc84dr.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned. :mozilla.312:C:\Documents and Settings\Shana\Application Data\Mozilla\Firefox\Profiles\3zoc84dr.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned. :mozilla.313:C:\Documents and Settings\Shana\Application Data\Mozilla\Firefox\Profiles\3zoc84dr.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned. :mozilla.314:C:\Documents and Settings\Shana\Application Data\Mozilla\Firefox\Profiles\3zoc84dr.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned. :mozilla.315:C:\Documents and Settings\Shana\Application Data\Mozilla\Firefox\Profiles\3zoc84dr.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned. :mozilla.316:C:\Documents and Settings\Shana\Application Data\Mozilla\Firefox\Profiles\3zoc84dr.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned. :mozilla.317:C:\Documents and Settings\Shana\Application Data\Mozilla\Firefox\Profiles\3zoc84dr.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned. :mozilla.318:C:\Documents and Settings\Shana\Application Data\Mozilla\Firefox\Profiles\3zoc84dr.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned. :mozilla.689:C:\MozBackup\Firefox 1.5.0.10 (en-US) - 3.4.2007.pcv/cookies.txt -> TrackingCookie.Statcounter : Error during cleaning. :mozilla.690:C:\MozBackup\Firefox 1.5.0.10 (en-US) - 3.4.2007.pcv/cookies.txt -> TrackingCookie.Statcounter : Error during cleaning. :mozilla.691:C:\MozBackup\Firefox 1.5.0.10 (en-US) - 3.4.2007.pcv/cookies.txt -> TrackingCookie.Statcounter : Error during cleaning. :mozilla.692:C:\MozBackup\Firefox 1.5.0.10 (en-US) - 3.4.2007.pcv/cookies.txt -> TrackingCookie.Statcounter : Error during cleaning. :mozilla.693:C:\MozBackup\Firefox 1.5.0.10 (en-US) - 3.4.2007.pcv/cookies.txt -> TrackingCookie.Statcounter : Error during cleaning. :mozilla.694:C:\MozBackup\Firefox 1.5.0.10 (en-US) - 3.4.2007.pcv/cookies.txt -> TrackingCookie.Statcounter : Error during cleaning. :mozilla.695:C:\MozBackup\Firefox 1.5.0.10 (en-US) - 3.4.2007.pcv/cookies.txt -> TrackingCookie.Statcounter : Error during cleaning. :mozilla.696:C:\MozBackup\Firefox 1.5.0.10 (en-US) - 3.4.2007.pcv/cookies.txt -> TrackingCookie.Statcounter : Error during cleaning. :mozilla.697:C:\MozBackup\Firefox 1.5.0.10 (en-US) - 3.4.2007.pcv/cookies.txt -> TrackingCookie.Statcounter : Error during cleaning. :mozilla.698:C:\MozBackup\Firefox 1.5.0.10 (en-US) - 3.4.2007.pcv/cookies.txt -> TrackingCookie.Statcounter : Error during cleaning. :mozilla.699:C:\MozBackup\Firefox 1.5.0.10 (en-US) - 3.4.2007.pcv/cookies.txt -> TrackingCookie.Statcounter : Error during cleaning. :mozilla.700:C:\MozBackup\Firefox 1.5.0.10 (en-US) - 3.4.2007.pcv/cookies.txt -> TrackingCookie.Statcounter : Error during cleaning. :mozilla.701:C:\MozBackup\Firefox 1.5.0.10 (en-US) - 3.4.2007.pcv/cookies.txt -> TrackingCookie.Statcounter : Error during cleaning. :mozilla.702:C:\MozBackup\Firefox 1.5.0.10 (en-US) - 3.4.2007.pcv/cookies.txt -> TrackingCookie.Statcounter : Error during cleaning. :mozilla.703:C:\MozBackup\Firefox 1.5.0.10 (en-US) - 3.4.2007.pcv/cookies.txt -> TrackingCookie.Statcounter : Error during cleaning. :mozilla.704:C:\MozBackup\Firefox 1.5.0.10 (en-US) - 3.4.2007.pcv/cookies.txt -> TrackingCookie.Statcounter : Error during cleaning. :mozilla.112:C:\Documents and Settings\Shana\Application Data\Mozilla\Firefox\Profiles\3zoc84dr.default\cookies.txt -> TrackingCookie.Tacoda : Cleaned. :mozilla.113:C:\Documents and Settings\Shana\Application Data\Mozilla\Firefox\Profiles\3zoc84dr.default\cookies.txt -> TrackingCookie.Tacoda : Cleaned. :mozilla.114:C:\Documents and Settings\Shana\Application Data\Mozilla\Firefox\Profiles\3zoc84dr.default\cookies.txt -> TrackingCookie.Tacoda : Cleaned. :mozilla.125:C:\Documents and Settings\Shana\Application Data\Mozilla\Firefox\Profiles\3zoc84dr.default\cookies.txt -> TrackingCookie.Tacoda : Cleaned. :mozilla.126:C:\Documents and Settings\Shana\Application Data\Mozilla\Firefox\Profiles\3zoc84dr.default\cookies.txt -> TrackingCookie.Tacoda : Cleaned. :mozilla.166:C:\MozBackup\Firefox 1.5.0.10 (en-US) - 3.4.2007.pcv/cookies.txt -> TrackingCookie.Tacoda : Error during cleaning. :mozilla.167:C:\MozBackup\Firefox 1.5.0.10 (en-US) - 3.4.2007.pcv/cookies.txt -> TrackingCookie.Tacoda : Error during cleaning. :mozilla.168:C:\MozBackup\Firefox 1.5.0.10 (en-US) - 3.4.2007.pcv/cookies.txt -> TrackingCookie.Tacoda : Error during cleaning. :mozilla.172:C:\MozBackup\Firefox 1.5.0.10 (en-US) - 3.4.2007.pcv/cookies.txt -> TrackingCookie.Tacoda : Error during cleaning. :mozilla.173:C:\MozBackup\Firefox 1.5.0.10 (en-US) - 3.4.2007.pcv/cookies.txt -> TrackingCookie.Tacoda : Error during cleaning. :mozilla.442:C:\MozBackup\Firefox 1.5.0.10 (en-US) - 3.4.2007.pcv/cookies.txt -> TrackingCookie.Tacoda : Error during cleaning. :mozilla.512:C:\MozBackup\Firefox 1.5.0.10 (en-US) - 3.4.2007.pcv/cookies.txt -> TrackingCookie.Tacoda : Error during cleaning. :mozilla.535:C:\Documents and Settings\Shana\Application Data\Mozilla\Firefox\Profiles\3zoc84dr.default\cookies.txt -> TrackingCookie.Tacoda : Cleaned. :mozilla.592:C:\Documents and Settings\Shana\Application Data\Mozilla\Firefox\Profiles\3zoc84dr.default\cookies.txt -> TrackingCookie.Tacoda : Cleaned. :mozilla.100:C:\Documents and Settings\Shana\Application Data\Mozilla\Firefox\Profiles\3zoc84dr.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned. :mozilla.101:C:\Documents and Settings\Shana\Application Data\Mozilla\Firefox\Profiles\3zoc84dr.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned. :mozilla.176:C:\MozBackup\Firefox 1.5.0.10 (en-US) - 3.4.2007.pcv/cookies.txt -> TrackingCookie.Yieldmanager : Error during cleaning. :mozilla.178:C:\MozBackup\Firefox 1.5.0.10 (en-US) - 3.4.2007.pcv/cookies.txt -> TrackingCookie.Yieldmanager : Error during cleaning. :mozilla.179:C:\MozBackup\Firefox 1.5.0.10 (en-US) - 3.4.2007.pcv/cookies.txt -> TrackingCookie.Yieldmanager : Error during cleaning. :mozilla.180:C:\MozBackup\Firefox 1.5.0.10 (en-US) - 3.4.2007.pcv/cookies.txt -> TrackingCookie.Yieldmanager : Error during cleaning. :mozilla.181:C:\MozBackup\Firefox 1.5.0.10 (en-US) - 3.4.2007.pcv/cookies.txt -> TrackingCookie.Yieldmanager : Error during cleaning. :mozilla.97:C:\Documents and Settings\Shana\Application Data\Mozilla\Firefox\Profiles\3zoc84dr.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned. :mozilla.98:C:\Documents and Settings\Shana\Application Data\Mozilla\Firefox\Profiles\3zoc84dr.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned. :mozilla.99:C:\Documents and Settings\Shana\Application Data\Mozilla\Firefox\Profiles\3zoc84dr.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned. :mozilla.14:C:\MozBackup\Firefox 1.5.0.10 (en-US) - 3.4.2007.pcv/cookies.txt -> TrackingCookie.Zedo : Error during cleaning. :mozilla.152:C:\Documents and Settings\Shana\Application Data\Mozilla\Firefox\Profiles\3zoc84dr.default\cookies.txt -> TrackingCookie.Zedo : Cleaned. :mozilla.153:C:\Documents and Settings\Shana\Application Data\Mozilla\Firefox\Profiles\3zoc84dr.default\cookies.txt -> TrackingCookie.Zedo : Cleaned. :mozilla.154:C:\Documents and Settings\Shana\Application Data\Mozilla\Firefox\Profiles\3zoc84dr.default\cookies.txt -> TrackingCookie.Zedo : Cleaned. :mozilla.15:C:\MozBackup\Firefox 1.5.0.10 (en-US) - 3.4.2007.pcv/cookies.txt -> TrackingCookie.Zedo : Error during cleaning. :mozilla.16:C:\MozBackup\Firefox 1.5.0.10 (en-US) - 3.4.2007.pcv/cookies.txt -> TrackingCookie.Zedo : Error during cleaning. :mozilla.17:C:\MozBackup\Firefox 1.5.0.10 (en-US) - 3.4.2007.pcv/cookies.txt -> TrackingCookie.Zedo : Error during cleaning. :mozilla.18:C:\MozBackup\Firefox 1.5.0.10 (en-US) - 3.4.2007.pcv/cookies.txt -> TrackingCookie.Zedo : Error during cleaning. C:\Documents and Settings\All Users\Application Data\info grey bone date\Does bash.exe -> Trojan.Obfuscated.bk : Cleaned with backup (quarantined). C:\Documents and Settings\Shana\Application Data\Sign comp boob\psemxtyw.exe -> Trojan.Obfuscated.bk : Cleaned with backup (quarantined). C:\Downstairs PC drivers\Windows.KeyGens\bluelistkeygen.zip/XPKey.exe -> Trojan.Small.edz : Cleaned with backup (quarantined). C:\Downstairs PC drivers\XPKey.exe -> Trojan.Small.edz : Cleaned with backup (quarantined). C:\My Drivers\Client Drivers\JR\XPKey.exe -> Trojan.Small.edz : Cleaned with backup (quarantined). ::Report end When I ran the scan at virusscan.jotti.org, there was no file called Does bash.exe. Here are the results for the BlahPhone.exe file: Scan taken on 09 Mar 2007 09:35:05 (GMT) AntiVir Found TR/Dldr.Swizzor.Gen ArcaVir Found nothing Avast Found nothing AVG Antivirus Found Downloader.Obfuskated BitDefender Found Trojan.FatObfus.Gen ClamAV Found nothing Dr.Web Found nothing F-Prot Antivirus Found nothing F-Secure Anti-Virus Found nothing Fortinet Found nothing Kaspersky Anti-Virus Found nothing NOD32 Found nothing Norman Virus Control Found nothing Panda Antivirus Found nothing VirusBuster Found Adware.Lop.Gen VBA32 Found MalwareScope.Trojan-Downloader.Obfuscated.2 Scanner Malware name AntiVir X ArcaVir X Avast X AVG Antivirus X BitDefender X ClamAV Trojan.IRC.Flood.F Dr.Web BackDoor.IRC.based F-Prot Antivirus X F-Secure Anti-Virus not-a-virus:Client-IRC.Win32.mIRC.603 (6, 2, 601) Fortinet X Kaspersky Anti-Virus not-a-virus:Client-IRC.Win32.mIRC.603 NOD32 X Norman Virus Control X Panda Antivirus X VirusBuster X VBA32 BackDoor.IRC.based Thanks again for all of your help.

0

Jabuck, I am still getting an IE pop-up that points to a web site called "CiD PremiumProductsOnline." Here's the link: http://premiumproductsonline.com/rd... Any thoughts on how I can get rid of this? Thank you.

0

Just a question, did you at one time sign into CiD PremiumProductsOnline? Here it is on google http://www.google.com/search?hl=en&... Hopefully my advice will help you...Please post back with your results....thanks

0

Not that I'm aware of. However, the problem seems to have resolved. I bought AVG 7.5 Professional Edition and it immediately found and quarantined the problem files. Since then, I haven't had a single problem! Thanks again for all of your help.

0