Malware, Spyware and Pop-Ups, Oh My!

  1. 30-01-2006  #1
    toyszruskid
    toyszruskid is offline Newbie

    Malware, Spyware and Pop-Ups, Oh My!

    D-A-L Experts:

    I come to you out of desperation! For about a month now, my computer has been plagued by various spyware and pop-ups that I CANNOT get rid of. I've done everything that I myself can think of. I've run SpyBot and Ad-Aware more times than I can count, I've virus scanned with AVG and Panda. I've defragmented my harddrive, I clean out my Temp. Internet Folder, Recycle Bin and all that jazz every day. I've run HijackThis and have deleted at least 20+ things that I've found to be negative (from reading this forum) and YET.. it STILL comes back. SpywareStrike is my bane... I can't get rid of this thing. The notorious "Your computer is infected!" taskbar pop-up continuously comes back, even if I manage to get rid of it by doing everything I've described above. I don't understand what I'm doing that is allowing it to come back. I've even downloaded Trend Micro Anti-Spyware in hopes that it would fix my problem... but no! In addition to this, I'm also getting various pop-ups that I think might be unrelated to SpywareStrike. Small windows that look like fake browser windows (I say fake because the 'e' for explorer is weird looking and the minimize and maximize buttons are also strange) are starting to pop up, advertising casions, porn and the health of my computer. WHAT IS THIS STUFF?!

    Alas, I am at a loss. I've debated wiping my computer completely, just reformatting but not only is that a huge pain, but I don't even have a Windows XP disk... so I'd have to shell out the $ and buy one... money I really don't have at the moment.

    Please, can someone help me? Why are these things continuously coming back? Why can't I get rid of them?! PLEASE HELP! I will be eternally grateful.

    Hopelessly yours,

    Kimber

    (Here is my HijackThis log)

    Logfile of HijackThis v1.99.1
    Scan saved at 12:51:57 AM, on 1/30/2006
    Platform: Windows XP SP1 (WinNT 5.01.2600)
    MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106)

    Running processes:
    C:\WINDOWS\System32\smss.exe
    C:\WINDOWS\system32\csrss.exe
    C:\WINDOWS\system32\winlogon.exe
    C:\WINDOWS\system32\services.exe
    C:\WINDOWS\system32\lsass.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\System32\svchost.exe
    C:\WINDOWS\System32\svchost.exe
    C:\WINDOWS\System32\svchost.exe
    C:\WINDOWS\system32\spoolsv.exe
    C:\WINDOWS\System32\nvsvc32.exe
    C:\WINDOWS\System32\svchost.exe
    C:\WINDOWS\System32\wdfmgr.exe
    C:\WINDOWS\System32\mssearchnet.exe
    C:\Program Files\Creative\SBPCI512\AudioHQ\AHQTB.EXE
    C:\Program Files\HP\HP Software Update\HPWuSchd.exe
    C:\WINDOWS\System32\RUNDLL32.EXE
    C:\WINDOWS\System32\devldr32.exe
    C:\Program Files\iTunes\iTunesHelper.exe
    C:\Program Files\Java\jre1.5.0_03\bin\jusched.exe
    C:\Program Files\Common Files\Real\Update_OB\realsched.exe
    C:\Program Files\Java\jre1.5.0_03\bin\jucheck.exe
    C:\Program Files\MSN Messenger\MsnMsgr.Exe
    C:\Program Files\iPod\bin\iPodService.exe
    C:\Program Files\NETGEAR\WG111 Configuration Utility\WG111CFG.exe
    C:\Program Files\Trend Micro\Tmas\Tmas.exe
    C:\WINDOWS\System32\dwwin.exe
    C:\WINDOWS\System32\wbem\wmiapsrv.exe
    C:\Program Files\Mozilla Firefox\firefox.exe
    C:\Program Files\Windows NT\Accessories\WORDPAD.EXE
    C:\Program Files\mIRC\mIRC.exe
    C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe
    C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe
    C:\PROGRA~1\Grisoft\AVGFRE~1\avgemc.exe
    C:\Program Files\Grisoft\AVG Free\avgcc.exe
    C:\Program Files\iTunes\iTunes.exe
    C:\WINDOWS\explorer.exe
    C:\Program Files\HijackThis\HijackThis.exe

    R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Int ernet Settings,ProxyOverride = local.,
    O2 - BHO: HomepageBHO - {4da4616d-7e6e-4fd9-a2d5-b6c535733e22} - C:\WINDOWS\System32\hpD9DD.tmp
    O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\System32\msdxm.ocx
    O3 - Toolbar: CM Band - {159C2E51-9823-11D2-8DDC-D84A1B4ACD4D} - C:\Program Files\Crystalys media\cm.dll
    O4 - HKLM\..\Run: [AudioHQ] C:\Program Files\Creative\SBPCI512\AudioHQ\AHQTB.EXE
    O4 - HKLM\..\Run: [UpdReg] C:\WINDOWS\Updreg.exe
    O4 - HKLM\..\Run: [NeroCheck] C:\WINDOWS\system32\NeroCheck.exe
    O4 - HKLM\..\Run: [InCD] C:\Program Files\Ahead\InCD\InCD.exe
    O4 - HKLM\..\Run: [HP Software Update] "C:\Program Files\HP\HP Software Update\HPWuSchd.exe"
    O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\System32\NvMcTray.dll,NvTaskbarInit
    O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
    O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
    O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_03\bin\jusched.exe
    O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
    O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\System32\NvCpl.dll,NvStartup
    O4 - HKLM\..\Run: [AVG7_CC] C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe /STARTUP
    O4 - HKLM\..\RunOnce: [AAW] "C:\Program Files\Lavasoft\Ad-Aware SE Personal\Ad-Aware.exe" "+b1"
    O4 - HKCU\..\Run: [Yahoo! Pager] C:\Program Files\Yahoo!\Messenger\ypager.exe -quiet
    O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
    O4 - Global Startup: Smart Wizard Wireless Settings.lnk = ?
    O4 - Global Startup: Trend Micro Anti-Spyware.lnk = C:\Program Files\Trend Micro\Tmas\Tmas.exe
    O10 - Unknown file in Winsock LSP: c:\program files\bonjour\mdnsnsp.dll
    O16 - DPF: {04E214E5-63AF-4236-83C6-A7ADCBF9BD02} (HouseCall Control) - http://housecall60.trendmicro.com/housecall/xscan60.cab
    O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsu...?1138592071937
    O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsof...?1138592189562
    O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe
    O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe
    O23 - Service: AVG E-mail Scanner (AVGEMS) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgemc.exe
    O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
    O23 - Service: iPodService - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
    O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe
    O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\System32\HPZipm12.exe
  2. 30-01-2006  #2
    toyszruskid
    toyszruskid is offline Newbie
    Ack... Advertising CASINOS. Sorry, typo. I also forgot to mention that I downloaded smitRem and ran "RunThis" countless times as well.

    Okay, I think I covered everything. Thanks again!

    Kimber
  3. 30-01-2006  #3
    toyszruskid
    toyszruskid is offline Newbie
    Okay, don't kill me. Forgot to mention I did download ewido free version.. That seemed to be the only thing that stopped the taskbar pop-ups from coming back, but the trial period ended. Sorry for all these replies but I just want to let everyone know what I've already done so I won't waste anyone's time by making them explain things I've already done. Sorry : (

    Kimber
  4. 30-01-2006  #4
    Neal
    Neal is offline Dedicated Member
    Welcome to DAL, you apparently have some of the tools that are needed to fix your computer but just in case you don't have them any longer, we will start from scratch and try to get rid of this stuff. By the way Ewido will still update after trial has run out but it will not run in the back ground.


    You may want to print out or make a copy of these instructions before starting, because you will not be able to connect to the internet during most of this fix.

    Download smitRem.exe and save the file to your desktop.
    Double click on the file to extract it to it's own folder on the desktop.

    Please download, install, and update the free version of Ewido Security Suite:
    1. When installing, under "Additional Options" uncheck "Install background guard" and "Install scan via context menu".
    2. When you run Ewido for the first time, you will get a warning "Database could not be found!". Click OK. We will fix this in a moment.
    3. From the main Ewido screen, click on update in the left menu, then click the Start update button.
    4. After the update finishes, the status bar at the bottom will display "Update successful"
    5. Exit Ewido. DO NOT run a scan yet.

    If you do not already have Ad-Aware SE 1.06 installed, follow these download and setup instructions. Also check for updates:
    Ad-Aware SE Setup
    Again, do NOT run a scan yet.


    Next, please reboot your computer in Safe Mode by doing the following:
    1. Restart your computer
    2. After hearing your computer beep once during startup, but before the Windows icon appears, press F8.
    3. Instead of Windows loading as normal, a menu should appear
    4. Select the first option, to run Windows in Safe Mode.

    Scan with HijackThis again and place a check next to these items:


    O2 - BHO: HomepageBHO - {4da4616d-7e6e-4fd9-a2d5-b6c535733e22} - C:\WINDOWS\System32\hpD9DD.tmp

    O3 - Toolbar: CM Band - {159C2E51-9823-11D2-8DDC-D84A1B4ACD4D} - C:\Program Files\Crystalys media\cm.dll

    Close all other windows except HijackThis, and hit Fix Checked

    Open the smitRem folder, then double click the RunThis.bat file to start the tool. Follow the prompts on screen. Your desktop and icons will disappear and then reappear again --- this is normal.
    Wait for the tool to complete and Disk Cleanup to finish --- this may take a while; please be patient.


    Hunt for and delete if present:

    C:\WINDOWS\System32\mssearchnet.exe < file
    C:\WINDOWS\System32\hpD9DD.tmp < file
    C:\Program Files\Crystalys media < folder


    Next, run Ad-aware and perform a full scan. Remove everything found.

    Now open Ewido Security Suite
    • Click on the Scanner button in the left menu, then click on the Start button. This scan can take quite a while to run, so time to go get a drink and a snack....
    • If ewido finds anything, it will pop up a notification. You can select "clean" and check the boxes "Perform action with all infections" and "Create encrypted backup" before clicking on OK.
    • When the scan finishes, click on "Save Report". This will create a text file. Save that file for us later.
    • Close Ewido
    Next go to Start -> Control Panel, click Display -> Desktop -> Customize Desktop -> Web -> Uncheck "Security Info" if present.


    Restart your computer in normal mode.

    Run the Panda online virus scan at http://www.pandasoftware.com/products/activescan.htm
    • Once you are on the Panda site click the Scan your PC button
    • A new window will open...click the Check Now button
    • Enter your Country
    • Enter your State/Province
    • Enter your e-mail address and click send
    • Select either Home User or Company
    • Click the big Scan Now button
    • If it wants to install an ActiveX component allow it
    • It will start downloading the files it requires for the scan (Note: It may take a couple of minutes)
    • When download is complete, click on Local Disks to start the scan
    • When the scan completes, if anything malicious is detected, click the See Report button, then Save Report and save it to a convenient location.
    Finally, restart your computer once more, and please post a new HijackThis log as well as the log from the Ewido scan and the log from the smitRem tool, which will be located at C:\smitfiles.txt.
    Let us know if any problems persist.
  5. 02-02-2006  #5
    toyszruskid
    toyszruskid is offline Newbie
    Okay, I did what you've asked and it seems to have solved the problem. THANK YOU SO MUCH! Here are the three logs you requested.

    Eternally grateful,

    Kimber

    Logfile of HijackThis v1.99.1
    Scan saved at 12:24:40 AM, on 2/2/2006
    Platform: Windows XP SP1 (WinNT 5.01.2600)
    MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106)

    Running processes:
    C:\WINDOWS\System32\smss.exe
    C:\WINDOWS\system32\winlogon.exe
    C:\WINDOWS\system32\services.exe
    C:\WINDOWS\system32\lsass.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\System32\svchost.exe
    C:\WINDOWS\system32\spoolsv.exe
    C:\WINDOWS\Explorer.EXE
    C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe
    C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe
    C:\PROGRA~1\Grisoft\AVGFRE~1\avgemc.exe
    C:\Program Files\ewido anti-malware\ewidoctrl.exe
    C:\WINDOWS\System32\nvsvc32.exe
    C:\WINDOWS\System32\svchost.exe
    C:\Program Files\HP\HP Software Update\HPWuSchd.exe
    C:\WINDOWS\System32\RUNDLL32.EXE
    C:\Program Files\iTunes\iTunesHelper.exe
    C:\WINDOWS\System32\devldr32.exe
    C:\Program Files\Java\jre1.5.0_03\bin\jusched.exe
    C:\Program Files\Common Files\Real\Update_OB\realsched.exe
    C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe
    C:\Program Files\Java\jre1.5.0_03\bin\jucheck.exe
    C:\Program Files\MSN Messenger\MsnMsgr.Exe
    C:\Program Files\iPod\bin\iPodService.exe
    C:\Program Files\Logitech\SetPoint\KEM.exe
    C:\Program Files\NETGEAR\WG111 Configuration Utility\WG111CFG.exe
    C:\Program Files\Trend Micro\Tmas\Tmas.exe
    C:\Program Files\Logitech\SetPoint\KHALMNPR.EXE
    C:\Program Files\Creative\SBPCI512\AudioHQ\AHQTB.EXE
    C:\WINDOWS\System32\dwwin.exe
    C:\WINDOWS\System32\wbem\wmiapsrv.exe
    C:\Program Files\HijackThis\HijackThis.exe

    R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Int ernet Settings,ProxyOverride = local.,
    O4 - HKLM\..\Run: [AudioHQ] C:\Program Files\Creative\SBPCI512\AudioHQ\AHQTB.EXE
    O4 - HKLM\..\Run: [UpdReg] C:\WINDOWS\Updreg.exe
    O4 - HKLM\..\Run: [NeroCheck] C:\WINDOWS\system32\NeroCheck.exe
    O4 - HKLM\..\Run: [InCD] C:\Program Files\Ahead\InCD\InCD.exe
    O4 - HKLM\..\Run: [HP Software Update] "C:\Program Files\HP\HP Software Update\HPWuSchd.exe"
    O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\System32\NvMcTray.dll,NvTaskbarInit
    O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
    O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
    O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_03\bin\jusched.exe
    O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
    O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\System32\NvCpl.dll,NvStartup
    O4 - HKLM\..\Run: [AVG7_CC] C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe /STARTUP
    O4 - HKLM\..\Run: [Logitech Hardware Abstraction Layer] KHALMNPR.EXE
    O4 - HKCU\..\Run: [Yahoo! Pager] C:\Program Files\Yahoo!\Messenger\ypager.exe -quiet
    O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
    O4 - Global Startup: Logitech SetPoint.lnk = C:\Program Files\Logitech\SetPoint\KEM.exe
    O4 - Global Startup: Smart Wizard Wireless Settings.lnk = ?
    O4 - Global Startup: Trend Micro Anti-Spyware.lnk = C:\Program Files\Trend Micro\Tmas\Tmas.exe
    O10 - Unknown file in Winsock LSP: c:\program files\bonjour\mdnsnsp.dll
    O16 - DPF: {04E214E5-63AF-4236-83C6-A7ADCBF9BD02} (HouseCall Control) - http://housecall60.trendmicro.com/housecall/xscan60.cab
    O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsu...?1138592071937
    O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsof...?1138592189562
    O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) - http://acs.pandasoftware.com/actives...ree/asinst.cab
    O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe
    O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe
    O23 - Service: AVG E-mail Scanner (AVGEMS) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgemc.exe
    O23 - Service: ewido security suite control - ewido networks - C:\Program Files\ewido anti-malware\ewidoctrl.exe
    O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
    O23 - Service: iPodService - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
    O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe
    O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\System32\HPZipm12.exe
  6. 02-02-2006  #6
    toyszruskid
    toyszruskid is offline Newbie
    ---------------------------------------------------------
    ewido anti-malware - Scan report
    ---------------------------------------------------------

    + Created on: 11:02:08 PM, 2/1/2006
    + Report-Checksum: E4E9A36B

    + Scan result:

    HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\pol icies\explorer\\NoActiveDesktopChanges -> Trojan.Small : Cleaned with backup
    [1832] C:\WINDOWS\System32\replmap.dll -> Not-A-Virus.Hoax.Win32.Renos.v : Cleaned with backup
    :mozilla.18:C:\Documents and Settings\Kimmy\Application Data\Mozilla\Firefox\Profiles\g4jcjh6i.default\coo kies.txt -> Spyware.Cookie.Tribalfusion : Cleaned with backup
    :mozilla.19:C:\Documents and Settings\Kimmy\Application Data\Mozilla\Firefox\Profiles\g4jcjh6i.default\coo kies.txt -> Spyware.Cookie.Tribalfusion : Cleaned with backup
    :mozilla.20:C:\Documents and Settings\Kimmy\Application Data\Mozilla\Firefox\Profiles\g4jcjh6i.default\coo kies.txt -> Spyware.Cookie.Doubleclick : Cleaned with backup
    :mozilla.21:C:\Documents and Settings\Kimmy\Application Data\Mozilla\Firefox\Profiles\g4jcjh6i.default\coo kies.txt -> Spyware.Cookie.Tribalfusion : Cleaned with backup
    :mozilla.22:C:\Documents and Settings\Kimmy\Application Data\Mozilla\Firefox\Profiles\g4jcjh6i.default\coo kies.txt -> Spyware.Cookie.Tribalfusion : Cleaned with backup
    :mozilla.23:C:\Documents and Settings\Kimmy\Application Data\Mozilla\Firefox\Profiles\g4jcjh6i.default\coo kies.txt -> Spyware.Cookie.Tribalfusion : Cleaned with backup
    :mozilla.24:C:\Documents and Settings\Kimmy\Application Data\Mozilla\Firefox\Profiles\g4jcjh6i.default\coo kies.txt -> Spyware.Cookie.Tribalfusion : Cleaned with backup
    :mozilla.25:C:\Documents and Settings\Kimmy\Application Data\Mozilla\Firefox\Profiles\g4jcjh6i.default\coo kies.txt -> Spyware.Cookie.Tribalfusion : Cleaned with backup
    :mozilla.26:C:\Documents and Settings\Kimmy\Application Data\Mozilla\Firefox\Profiles\g4jcjh6i.default\coo kies.txt -> Spyware.Cookie.Adbrite : Cleaned with backup
    :mozilla.29:C:\Documents and Settings\Kimmy\Application Data\Mozilla\Firefox\Profiles\g4jcjh6i.default\coo kies.txt -> Spyware.Cookie.Adbrite : Cleaned with backup
    :mozilla.42:C:\Documents and Settings\Kimmy\Application Data\Mozilla\Firefox\Profiles\g4jcjh6i.default\coo kies.txt -> Spyware.Cookie.Bluestreak : Cleaned with backup
    :mozilla.43:C:\Documents and Settings\Kimmy\Application Data\Mozilla\Firefox\Profiles\g4jcjh6i.default\coo kies.txt -> Spyware.Cookie.Specificclick : Cleaned with backup
    :mozilla.44:C:\Documents and Settings\Kimmy\Application Data\Mozilla\Firefox\Profiles\g4jcjh6i.default\coo kies.txt -> Spyware.Cookie.Specificclick : Cleaned with backup
    :mozilla.45:C:\Documents and Settings\Kimmy\Application Data\Mozilla\Firefox\Profiles\g4jcjh6i.default\coo kies.txt -> Spyware.Cookie.Specificclick : Cleaned with backup
    :mozilla.46:C:\Documents and Settings\Kimmy\Application Data\Mozilla\Firefox\Profiles\g4jcjh6i.default\coo kies.txt -> Spyware.Cookie.Specificclick : Cleaned with backup
    :mozilla.47:C:\Documents and Settings\Kimmy\Application Data\Mozilla\Firefox\Profiles\g4jcjh6i.default\coo kies.txt -> Spyware.Cookie.Specificclick : Cleaned with backup
    :mozilla.51:C:\Documents and Settings\Kimmy\Application Data\Mozilla\Firefox\Profiles\g4jcjh6i.default\coo kies.txt -> Spyware.Cookie.Atdmt : Cleaned with backup
    :mozilla.52:C:\Documents and Settings\Kimmy\Application Data\Mozilla\Firefox\Profiles\g4jcjh6i.default\coo kies.txt -> Spyware.Cookie.Advertising : Cleaned with backup
    :mozilla.53:C:\Documents and Settings\Kimmy\Application Data\Mozilla\Firefox\Profiles\g4jcjh6i.default\coo kies.txt -> Spyware.Cookie.Advertising : Cleaned with backup
    :mozilla.54:C:\Documents and Settings\Kimmy\Application Data\Mozilla\Firefox\Profiles\g4jcjh6i.default\coo kies.txt -> Spyware.Cookie.Advertising : Cleaned with backup
    :mozilla.61:C:\Documents and Settings\Kimmy\Application Data\Mozilla\Firefox\Profiles\g4jcjh6i.default\coo kies.txt -> Spyware.Cookie.Mediaplex : Cleaned with backup
    :mozilla.62:C:\Documents and Settings\Kimmy\Application Data\Mozilla\Firefox\Profiles\g4jcjh6i.default\coo kies.txt -> Spyware.Cookie.Pointroll : Cleaned with backup
    :mozilla.63:C:\Documents and Settings\Kimmy\Application Data\Mozilla\Firefox\Profiles\g4jcjh6i.default\coo kies.txt -> Spyware.Cookie.Pointroll : Cleaned with backup
    :mozilla.64:C:\Documents and Settings\Kimmy\Application Data\Mozilla\Firefox\Profiles\g4jcjh6i.default\coo kies.txt -> Spyware.Cookie.Pointroll : Cleaned with backup
    :mozilla.65:C:\Documents and Settings\Kimmy\Application Data\Mozilla\Firefox\Profiles\g4jcjh6i.default\coo kies.txt -> Spyware.Cookie.Pointroll : Cleaned with backup
    :mozilla.66:C:\Documents and Settings\Kimmy\Application Data\Mozilla\Firefox\Profiles\g4jcjh6i.default\coo kies.txt -> Spyware.Cookie.Pointroll : Cleaned with backup
    :mozilla.67:C:\Documents and Settings\Kimmy\Application Data\Mozilla\Firefox\Profiles\g4jcjh6i.default\coo kies.txt -> Spyware.Cookie.Falkag : Cleaned with backup
    :mozilla.68:C:\Documents and Settings\Kimmy\Application Data\Mozilla\Firefox\Profiles\g4jcjh6i.default\coo kies.txt -> Spyware.Cookie.Falkag : Cleaned with backup
    :mozilla.69:C:\Documents and Settings\Kimmy\Application Data\Mozilla\Firefox\Profiles\g4jcjh6i.default\coo kies.txt -> Spyware.Cookie.Falkag : Cleaned with backup
    :mozilla.74:C:\Documents and Settings\Kimmy\Application Data\Mozilla\Firefox\Profiles\g4jcjh6i.default\coo kies.txt -> Spyware.Cookie.Yieldmanager : Cleaned with backup
    :mozilla.75:C:\Documents and Settings\Kimmy\Application Data\Mozilla\Firefox\Profiles\g4jcjh6i.default\coo kies.txt -> Spyware.Cookie.Yieldmanager : Cleaned with backup
    :mozilla.81:C:\Documents and Settings\Kimmy\Application Data\Mozilla\Firefox\Profiles\g4jcjh6i.default\coo kies.txt -> Spyware.Cookie.Yieldmanager : Cleaned with backup
    :mozilla.83:C:\Documents and Settings\Kimmy\Application Data\Mozilla\Firefox\Profiles\g4jcjh6i.default\coo kies.txt -> Spyware.Cookie.Yieldmanager : Cleaned with backup
    :mozilla.84:C:\Documents and Settings\Kimmy\Application Data\Mozilla\Firefox\Profiles\g4jcjh6i.default\coo kies.txt -> Spyware.Cookie.Yieldmanager : Cleaned with backup
    :mozilla.89:C:\Documents and Settings\Kimmy\Application Data\Mozilla\Firefox\Profiles\g4jcjh6i.default\coo kies.txt -> Spyware.Cookie.Casalemedia : Cleaned with backup
    :mozilla.90:C:\Documents and Settings\Kimmy\Application Data\Mozilla\Firefox\Profiles\g4jcjh6i.default\coo kies.txt -> Spyware.Cookie.Casalemedia : Cleaned with backup
    :mozilla.91:C:\Documents and Settings\Kimmy\Application Data\Mozilla\Firefox\Profiles\g4jcjh6i.default\coo kies.txt -> Spyware.Cookie.Casalemedia : Cleaned with backup
    :mozilla.92:C:\Documents and Settings\Kimmy\Application Data\Mozilla\Firefox\Profiles\g4jcjh6i.default\coo kies.txt -> Spyware.Cookie.Casalemedia : Cleaned with backup
    :mozilla.93:C:\Documents and Settings\Kimmy\Application Data\Mozilla\Firefox\Profiles\g4jcjh6i.default\coo kies.txt -> Spyware.Cookie.Casalemedia : Cleaned with backup
    :mozilla.94:C:\Documents and Settings\Kimmy\Application Data\Mozilla\Firefox\Profiles\g4jcjh6i.default\coo kies.txt -> Spyware.Cookie.Overture : Cleaned with backup
    :mozilla.109:C:\Documents and Settings\Kimmy\Application Data\Mozilla\Firefox\Profiles\g4jcjh6i.default\coo kies.txt -> Spyware.Cookie.Fastclick : Cleaned with backup
    :mozilla.110:C:\Documents and Settings\Kimmy\Application Data\Mozilla\Firefox\Profiles\g4jcjh6i.default\coo kies.txt -> Spyware.Cookie.Fastclick : Cleaned with backup
    :mozilla.111:C:\Documents and Settings\Kimmy\Application Data\Mozilla\Firefox\Profiles\g4jcjh6i.default\coo kies.txt -> Spyware.Cookie.Fastclick : Cleaned with backup
    :mozilla.112:C:\Documents and Settings\Kimmy\Application Data\Mozilla\Firefox\Profiles\g4jcjh6i.default\coo kies.txt -> Spyware.Cookie.Fastclick : Cleaned with backup
    :mozilla.113:C:\Documents and Settings\Kimmy\Application Data\Mozilla\Firefox\Profiles\g4jcjh6i.default\coo kies.txt -> Spyware.Cookie.Fastclick : Cleaned with backup
    :mozilla.114:C:\Documents and Settings\Kimmy\Application Data\Mozilla\Firefox\Profiles\g4jcjh6i.default\coo kies.txt -> Spyware.Cookie.Fastclick : Cleaned with backup
    :mozilla.115:C:\Documents and Settings\Kimmy\Application Data\Mozilla\Firefox\Profiles\g4jcjh6i.default\coo kies.txt -> Spyware.Cookie.Fastclick : Cleaned with backup
    :mozilla.117:C:\Documents and Settings\Kimmy\Application Data\Mozilla\Firefox\Profiles\g4jcjh6i.default\coo kies.txt -> Spyware.Cookie.2o7 : Cleaned with backup
    :mozilla.118:C:\Documents and Settings\Kimmy\Application Data\Mozilla\Firefox\Profiles\g4jcjh6i.default\coo kies.txt -> Spyware.Cookie.2o7 : Cleaned with backup
    :mozilla.119:C:\Documents and Settings\Kimmy\Application Data\Mozilla\Firefox\Profiles\g4jcjh6i.default\coo kies.txt -> Spyware.Cookie.2o7 : Cleaned with backup
    :mozilla.120:C:\Documents and Settings\Kimmy\Application Data\Mozilla\Firefox\Profiles\g4jcjh6i.default\coo kies.txt -> Spyware.Cookie.2o7 : Cleaned with backup
    :mozilla.123:C:\Documents and Settings\Kimmy\Application Data\Mozilla\Firefox\Profiles\g4jcjh6i.default\coo kies.txt -> Spyware.Cookie.Questionmarket : Cleaned with backup
    :mozilla.124:C:\Documents and Settings\Kimmy\Application Data\Mozilla\Firefox\Profiles\g4jcjh6i.default\coo kies.txt -> Spyware.Cookie.Questionmarket : Cleaned with backup
    :mozilla.126:C:\Documents and Settings\Kimmy\Application Data\Mozilla\Firefox\Profiles\g4jcjh6i.default\coo kies.txt -> Spyware.Cookie.Paycounter : Cleaned with backup
    :mozilla.127:C:\Documents and Settings\Kimmy\Application Data\Mozilla\Firefox\Profiles\g4jcjh6i.default\coo kies.txt -> Spyware.Cookie.Burstnet : Cleaned with backup
    :mozilla.133:C:\Documents and Settings\Kimmy\Application Data\Mozilla\Firefox\Profiles\g4jcjh6i.default\coo kies.txt -> Spyware.Cookie.Falkag : Cleaned with backup
    :mozilla.134:C:\Documents and Settings\Kimmy\Application Data\Mozilla\Firefox\Profiles\g4jcjh6i.default\coo kies.txt -> Spyware.Cookie.Falkag : Cleaned with backup
    :mozilla.135:C:\Documents and Settings\Kimmy\Application Data\Mozilla\Firefox\Profiles\g4jcjh6i.default\coo kies.txt -> Spyware.Cookie.Falkag : Cleaned with backup
    :mozilla.136:C:\Documents and Settings\Kimmy\Application Data\Mozilla\Firefox\Profiles\g4jcjh6i.default\coo kies.txt -> Spyware.Cookie.Falkag : Cleaned with backup
    :mozilla.137:C:\Documents and Settings\Kimmy\Application Data\Mozilla\Firefox\Profiles\g4jcjh6i.default\coo kies.txt -> Spyware.Cookie.Falkag : Cleaned with backup
    :mozilla.148:C:\Documents and Settings\Kimmy\Application Data\Mozilla\Firefox\Profiles\g4jcjh6i.default\coo kies.txt -> Spyware.Cookie.Hitbox : Cleaned with backup
    :mozilla.149:C:\Documents and Settings\Kimmy\Application Data\Mozilla\Firefox\Profiles\g4jcjh6i.default\coo kies.txt -> Spyware.Cookie.Hitbox : Cleaned with backup
    :mozilla.150:C:\Documents and Settings\Kimmy\Application Data\Mozilla\Firefox\Profiles\g4jcjh6i.default\coo kies.txt -> Spyware.Cookie.Hitbox : Cleaned with backup
    :mozilla.163:C:\Documents and Settings\Kimmy\Application Data\Mozilla\Firefox\Profiles\g4jcjh6i.default\coo kies.txt -> Spyware.Cookie.Trafficmp : Cleaned with backup
    :mozilla.164:C:\Documents and Settings\Kimmy\Application Data\Mozilla\Firefox\Profiles\g4jcjh6i.default\coo kies.txt -> Spyware.Cookie.Trafficmp : Cleaned with backup
    :mozilla.165:C:\Documents and Settings\Kimmy\Application Data\Mozilla\Firefox\Profiles\g4jcjh6i.default\coo kies.txt -> Spyware.Cookie.Trafficmp : Cleaned with backup
    :mozilla.166:C:\Documents and Settings\Kimmy\Application Data\Mozilla\Firefox\Profiles\g4jcjh6i.default\coo kies.txt -> Spyware.Cookie.Trafficmp : Cleaned with backup
    :mozilla.167:C:\Documents and Settings\Kimmy\Application Data\Mozilla\Firefox\Profiles\g4jcjh6i.default\coo kies.txt -> Spyware.Cookie.Trafficmp : Cleaned with backup
    :mozilla.168:C:\Documents and Settings\Kimmy\Application Data\Mozilla\Firefox\Profiles\g4jcjh6i.default\coo kies.txt -> Spyware.Cookie.Trafficmp : Cleaned with backup
    :mozilla.170:C:\Documents and Settings\Kimmy\Application Data\Mozilla\Firefox\Profiles\g4jcjh6i.default\coo kies.txt -> Spyware.Cookie.Trafficmp : Cleaned with backup
    :mozilla.171:C:\Documents and Settings\Kimmy\Application Data\Mozilla\Firefox\Profiles\g4jcjh6i.default\coo kies.txt -> Spyware.Cookie.Trafficmp : Cleaned with backup
    :mozilla.178:C:\Documents and Settings\Kimmy\Application Data\Mozilla\Firefox\Profiles\g4jcjh6i.default\coo kies.txt -> Spyware.Cookie.Tradedoubler : Cleaned with backup
    :mozilla.196:C:\Documents and Settings\Kimmy\Application Data\Mozilla\Firefox\Profiles\g4jcjh6i.default\coo kies.txt -> Spyware.Cookie.Hitbox : Cleaned with backup
    :mozilla.197:C:\Documents and Settings\Kimmy\Application Data\Mozilla\Firefox\Profiles\g4jcjh6i.default\coo kies.txt -> Spyware.Cookie.Hitbox : Cleaned with backup
    :mozilla.198:C:\Documents and Settings\Kimmy\Application Data\Mozilla\Firefox\Profiles\g4jcjh6i.default\coo kies.txt -> Spyware.Cookie.Hitbox : Cleaned with backup
    :mozilla.199:C:\Documents and Settings\Kimmy\Application Data\Mozilla\Firefox\Profiles\g4jcjh6i.default\coo kies.txt -> Spyware.Cookie.Hitbox : Cleaned with backup
    :mozilla.200:C:\Documents and Settings\Kimmy\Application Data\Mozilla\Firefox\Profiles\g4jcjh6i.default\coo kies.txt -> Spyware.Cookie.Hitbox : Cleaned with backup
    :mozilla.203:C:\Documents and Settings\Kimmy\Application Data\Mozilla\Firefox\Profiles\g4jcjh6i.default\coo kies.txt -> Spyware.Cookie.Hitbox : Cleaned with backup
    :mozilla.204:C:\Documents and Settings\Kimmy\Application Data\Mozilla\Firefox\Profiles\g4jcjh6i.default\coo kies.txt -> Spyware.Cookie.Hitbox : Cleaned with backup
    :mozilla.208:C:\Documents and Settings\Kimmy\Application Data\Mozilla\Firefox\Profiles\g4jcjh6i.default\coo kies.txt -> Spyware.Cookie.Hitbox : Cleaned with backup
    :mozilla.209:C:\Documents and Settings\Kimmy\Application Data\Mozilla\Firefox\Profiles\g4jcjh6i.default\coo kies.txt -> Spyware.Cookie.Hitbox : Cleaned with backup
    :mozilla.210:C:\Documents and Settings\Kimmy\Application Data\Mozilla\Firefox\Profiles\g4jcjh6i.default\coo kies.txt -> Spyware.Cookie.Hitbox : Cleaned with backup
    :mozilla.211:C:\Documents and Settings\Kimmy\Application Data\Mozilla\Firefox\Profiles\g4jcjh6i.default\coo kies.txt -> Spyware.Cookie.Hitbox : Cleaned with backup
    :mozilla.253:C:\Documents and Settings\Kimmy\Application Data\Mozilla\Firefox\Profiles\g4jcjh6i.default\coo kies.txt -> Spyware.Cookie.Valuead : Cleaned with backup
    :mozilla.254:C:\Documents and Settings\Kimmy\Application Data\Mozilla\Firefox\Profiles\g4jcjh6i.default\coo kies.txt -> Spyware.Cookie.Valuead : Cleaned with backup
    :mozilla.255:C:\Documents and Settings\Kimmy\Application Data\Mozilla\Firefox\Profiles\g4jcjh6i.default\coo kies.txt -> Spyware.Cookie.Valuead : Cleaned with backup
    :mozilla.256:C:\Documents and Settings\Kimmy\Application Data\Mozilla\Firefox\Profiles\g4jcjh6i.default\coo kies.txt -> Spyware.Cookie.Valuead : Cleaned with backup
    :mozilla.257:C:\Documents and Settings\Kimmy\Application Data\Mozilla\Firefox\Profiles\g4jcjh6i.default\coo kies.txt -> Spyware.Cookie.Valuead : Cleaned with backup
    :mozilla.258:C:\Documents and Settings\Kimmy\Application Data\Mozilla\Firefox\Profiles\g4jcjh6i.default\coo kies.txt -> Spyware.Cookie.Valuead : Cleaned with backup
    :mozilla.261:C:\Documents and Settings\Kimmy\Application Data\Mozilla\Firefox\Profiles\g4jcjh6i.default\coo kies.txt -> Spyware.Cookie.Com : Cleaned with backup
    :mozilla.262:C:\Documents and Settings\Kimmy\Application Data\Mozilla\Firefox\Profiles\g4jcjh6i.default\coo kies.txt -> Spyware.Cookie.Com : Cleaned with backup
    :mozilla.267:C:\Documents and Settings\Kimmy\Application Data\Mozilla\Firefox\Profiles\g4jcjh6i.default\coo kies.txt -> Spyware.Cookie.Hitbox : Cleaned with backup
    :mozilla.273:C:\Documents and Settings\Kimmy\Application Data\Mozilla\Firefox\Profiles\g4jcjh6i.default\coo kies.txt -> Spyware.Cookie.Burstbeacon : Cleaned with backup
    :mozilla.285:C:\Documents and Settings\Kimmy\Application Data\Mozilla\Firefox\Profiles\g4jcjh6i.default\coo kies.txt -> Spyware.Cookie.2o7 : Cleaned with backup
    :mozilla.286:C:\Documents and Settings\Kimmy\Application Data\Mozilla\Firefox\Profiles\g4jcjh6i.default\coo kies.txt -> Spyware.Cookie.Adbrite : Cleaned with backup
  7. 02-02-2006  #7
    toyszruskid
    toyszruskid is offline Newbie
    (cont)
    :mozilla.287:C:\Documents and Settings\Kimmy\Application Data\Mozilla\Firefox\Profiles\g4jcjh6i.default\coo kies.txt -> Spyware.Cookie.Adbrite : Cleaned with backup
    :mozilla.288:C:\Documents and Settings\Kimmy\Application Data\Mozilla\Firefox\Profiles\g4jcjh6i.default\coo kies.txt -> Spyware.Cookie.Adbrite : Cleaned with backup
    :mozilla.294:C:\Documents and Settings\Kimmy\Application Data\Mozilla\Firefox\Profiles\g4jcjh6i.default\coo kies.txt -> Spyware.Cookie.Adtech : Cleaned with backup
    :mozilla.295:C:\Documents and Settings\Kimmy\Application Data\Mozilla\Firefox\Profiles\g4jcjh6i.default\coo kies.txt -> Spyware.Cookie.Adtech : Cleaned with backup
    :mozilla.328:C:\Documents and Settings\Kimmy\Application Data\Mozilla\Firefox\Profiles\g4jcjh6i.default\coo kies.txt -> Spyware.Cookie.Esomniture : Cleaned with backup
    :mozilla.329:C:\Documents and Settings\Kimmy\Application Data\Mozilla\Firefox\Profiles\g4jcjh6i.default\coo kies.txt -> Spyware.Cookie.Esomniture : Cleaned with backup
    :mozilla.330:C:\Documents and Settings\Kimmy\Application Data\Mozilla\Firefox\Profiles\g4jcjh6i.default\coo kies.txt -> Spyware.Cookie.Esomniture : Cleaned with backup
    :mozilla.331:C:\Documents and Settings\Kimmy\Application Data\Mozilla\Firefox\Profiles\g4jcjh6i.default\coo kies.txt -> Spyware.Cookie.Esomniture : Cleaned with backup
    :mozilla.332:C:\Documents and Settings\Kimmy\Application Data\Mozilla\Firefox\Profiles\g4jcjh6i.default\coo kies.txt -> Spyware.Cookie.Esomniture : Cleaned with backup
    :mozilla.333:C:\Documents and Settings\Kimmy\Application Data\Mozilla\Firefox\Profiles\g4jcjh6i.default\coo kies.txt -> Spyware.Cookie.Esomniture : Cleaned with backup
    :mozilla.334:C:\Documents and Settings\Kimmy\Application Data\Mozilla\Firefox\Profiles\g4jcjh6i.default\coo kies.txt -> Spyware.Cookie.Esomniture : Cleaned with backup
    :mozilla.340:C:\Documents and Settings\Kimmy\Application Data\Mozilla\Firefox\Profiles\g4jcjh6i.default\coo kies.txt -> Spyware.Cookie.Ru4 : Cleaned with backup
    :mozilla.341:C:\Documents and Settings\Kimmy\Application Data\Mozilla\Firefox\Profiles\g4jcjh6i.default\coo kies.txt -> Spyware.Cookie.Ru4 : Cleaned with backup
    :mozilla.363:C:\Documents and Settings\Kimmy\Application Data\Mozilla\Firefox\Profiles\g4jcjh6i.default\coo kies.txt -> Spyware.Cookie.Ivwbox : Cleaned with backup
    :mozilla.407:C:\Documents and Settings\Kimmy\Application Data\Mozilla\Firefox\Profiles\g4jcjh6i.default\coo kies.txt -> Spyware.Cookie.Overture : Cleaned with backup
    :mozilla.408:C:\Documents and Settings\Kimmy\Application Data\Mozilla\Firefox\Profiles\g4jcjh6i.default\coo kies.txt -> Spyware.Cookie.Qksrv : Cleaned with backup
    :mozilla.409:C:\Documents and Settings\Kimmy\Application Data\Mozilla\Firefox\Profiles\g4jcjh6i.default\coo kies.txt -> Spyware.Cookie.Qksrv : Cleaned with backup
    :mozilla.413:C:\Documents and Settings\Kimmy\Application Data\Mozilla\Firefox\Profiles\g4jcjh6i.default\coo kies.txt -> Spyware.Cookie.2o7 : Cleaned with backup
    :mozilla.417:C:\Documents and Settings\Kimmy\Application Data\Mozilla\Firefox\Profiles\g4jcjh6i.default\coo kies.txt -> Spyware.Cookie.Serving-sys : Cleaned with backup
    :mozilla.418:C:\Documents and Settings\Kimmy\Application Data\Mozilla\Firefox\Profiles\g4jcjh6i.default\coo kies.txt -> Spyware.Cookie.Serving-sys : Cleaned with backup
    :mozilla.419:C:\Documents and Settings\Kimmy\Application Data\Mozilla\Firefox\Profiles\g4jcjh6i.default\coo kies.txt -> Spyware.Cookie.Serving-sys : Cleaned with backup
    :mozilla.420:C:\Documents and Settings\Kimmy\Application Data\Mozilla\Firefox\Profiles\g4jcjh6i.default\coo kies.txt -> Spyware.Cookie.Serving-sys : Cleaned with backup
    :mozilla.423:C:\Documents and Settings\Kimmy\Application Data\Mozilla\Firefox\Profiles\g4jcjh6i.default\coo kies.txt -> Spyware.Cookie.Statcounter : Cleaned with backup
    :mozilla.424:C:\Documents and Settings\Kimmy\Application Data\Mozilla\Firefox\Profiles\g4jcjh6i.default\coo kies.txt -> Spyware.Cookie.Statcounter : Cleaned with backup
    :mozilla.437:C:\Documents and Settings\Kimmy\Application Data\Mozilla\Firefox\Profiles\g4jcjh6i.default\coo kies.txt -> Spyware.Cookie.Adbrite : Cleaned with backup
    :mozilla.440:C:\Documents and Settings\Kimmy\Application Data\Mozilla\Firefox\Profiles\g4jcjh6i.default\coo kies.txt -> Spyware.Cookie.Adserver : Cleaned with backup
    :mozilla.441:C:\Documents and Settings\Kimmy\Application Data\Mozilla\Firefox\Profiles\g4jcjh6i.default\coo kies.txt -> Spyware.Cookie.Adserver : Cleaned with backup
    :mozilla.472:C:\Documents and Settings\Kimmy\Application Data\Mozilla\Firefox\Profiles\g4jcjh6i.default\coo kies.txt -> Spyware.Cookie.Googleadservices : Cleaned with backup
    :mozilla.473:C:\Documents and Settings\Kimmy\Application Data\Mozilla\Firefox\Profiles\g4jcjh6i.default\coo kies.txt -> Spyware.Cookie.Googleadservices : Cleaned with backup
    C:\Documents and Settings\Kimmy\Cookies\kimmy@ad.yieldmanager[1].txt -> Spyware.Cookie.Yieldmanager : Cleaned with backup
    C:\Documents and Settings\Kimmy\Cookies\kimmy@com[2].txt -> Spyware.Cookie.Com : Cleaned with backup
    C:\Documents and Settings\Kimmy\Cookies\kimmy@e-2dj6wfl4woczadp.stats.esomniture[2].txt -> Spyware.Cookie.Esomniture : Cleaned with backup
    C:\Documents and Settings\Kimmy\Cookies\kimmy@e-2dj6wgkiqid5wao.stats.esomniture[2].txt -> Spyware.Cookie.Esomniture : Cleaned with backup
    C:\Program Files\Need2Find -> Spyware.Need2Find : Cleaned with backup
    C:\Program Files\Need2Find\bar -> Spyware.Need2Find : Cleaned with backup
    C:\Program Files\Need2Find\bar\History -> Spyware.Need2Find : Cleaned with backup
    C:\Program Files\Need2Find\bar\History\search -> Spyware.Need2Find : Cleaned with backup
    C:\Program Files\Need2Find\bar\Settings -> Spyware.Need2Find : Cleaned with backup
    C:\WINDOWS\system32\replmap.dll -> Not-A-Virus.Hoax.Win32.Renos.v : Cleaned with backup



    smitRem © log file
    version 2.8

    by noahdfear


    Microsoft Windows XP [Version 5.1.2600]
    The current date is: Wed 02/01/2006
    The current time is: 21:46:34.32

    ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

    checking for ShudderLTD key

    ShudderLTD key not present!

    checking for PSGuard.com key


    PSGuard.com key not present!


    checking for WinHound.com key


    WinHound.com key not present!

    spyaxe uninstaller NOT present
    Winhound uninstaller NOT present
    ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

    Existing Pre-run Files


    ~~~ Program Files ~~~

    SpywareStrike


    ~~~ Shortcuts ~~~

    Online Security Guide.url
    Security Troubleshooting.url


    ~~~ Favorites ~~~

    Antivirus Test Online.url


    ~~~ system32 folder ~~~

    1024 dir
    msvol.tlb
    ld****.tmp
    mssearchnet.exe
    ncompat.tlb
    nvctrl.exe
    mscornet.exe


    ~~~ Icons in System32 ~~~

    ts.ico
    ot.ico


    ~~~ Windows directory ~~~



    ~~~ Drive root ~~~


    ~~~ Miscellaneous Files/folders ~~~




    ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~



    Command Line Process Viewer/Killer/Suspender for Windows NT/2000/XP V2.03
    Copyright(C) 2002-2003 Craig.Pea****@beyondlogic.org
    Killing PID 712 'explorer.exe'

    Starting registry repairs

    Deleting files


    Remaining Post-run Files


    ~~~ Program Files ~~~

    SpywareStrike


    ~~~ Shortcuts ~~~



    ~~~ Favorites ~~~



    ~~~ system32 folder ~~~



    ~~~ Icons in System32 ~~~



    ~~~ Windows directory ~~~



    ~~~ Drive root ~~~



    ~~~ Miscellaneous Files/folders ~~~




    ~~~ Wininet.dll ~~~

    CLEAN!
  8. 02-02-2006  #8
    Neal
    Neal is offline Dedicated Member
    Save 20% on AVG Internet Security 2012 Suite!
    Hi and excellent job you done there.

    Did you scan with panda again and did it find anything and did the program delete what it found or were there some "NO DISINFECTS" in the log Panda makes.

    If there was we really need to see the log so we can go after those manually.

    Let me know about the panda scan please and we will go from there. Thanks
+ Reply to Thread
« pmkjk.dll and maybe more ---- How do I get rid of this?? | help me, somebody, just rescue my computer »