HELp! Aim Myspace Link Virus including Zeno and Quicklinks

Unknown

I recently clicked on one an instant message from a friend that contained a myspace link about a picture. It then downloaded a tojan virus and some adware. I have ran aimfix and it seems that my computer is runnin pretty normal as far as speed but I still have my microsoft spyware blocking adware programs that I can't seem to get rid of. These programs include Quicklinks and Zeno I have ran both ad aware and spybot. I just want my computer back to normal before I clicked that link. Please help! I just want to say thanks before hand!

*Here is my hijackthis log:

Logfile of HijackThis v1.99.1
Scan saved at 2:04:52 AM, on 2/4/2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\bmwebcfg.exe
C:\Program Files\NavNT\defwatch.exe
C:\WINDOWS\system32\cba\pds.exe
C:\Program Files\Common Files\LightScribe\LSSrvc.exe
C:\Program Files\NavNT\rtvscan.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\cba\xfr.exe
C:\WINDOWS\system32\MsgSys.EXE
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\igfxtray.exe
C:\WINDOWS\system32\hkcmd.exe
C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe
C:\Program Files\HPQ\Quick Launch Buttons\EabServr.exe
C:\hp\drivers\hplsbwatcher\lsburnwatcher.exe
C:\Program Files\HPQ\HP Wireless Assistant\HP Wireless Assistant.exe
C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe
C:\Program Files\Microsoft AntiSpyware\gcasServ.exe
C:\Program Files\NavNT\vptray.exe
C:\Program Files\Viewpoint\Viewpoint Manager\ViewMgr.exe
C:\Program Files\Winamp\winampa.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\QuickTime\qttask.exe
C:\WINDOWS\system32\nwinosap.exe
C:\Program Files\Messenger\msmsgs.exe
C:\PROGRA~1\Nero\data\Xtras\mssysmgr.exe
C:\WINDOWS\system32\wgse.exe
C:\Program Files\AIM\aim.exe
C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpohmr08.exe
C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpotdd01.exe
C:\Program Files\WinZip\WZQKPICK.EXE
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpoevm08.exe
c:\windows\system32\dwdsregt.exe
C:\Program Files\Hewlett-Packard\Digital Imaging\Bin\hpoSTS08.exe
C:\Program Files\HPQ\SHARED\HPQWMI.exe
C:\WINDOWS\system32\hpsw.exe
C:\Program Files\Microsoft AntiSpyware\gcasDtServ.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Spybot - Search & Destroy\SpybotSD.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Documents and Settings\Bucho71\Desktop\Virus Folder\HijackThis.exe

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=EN_US&c=Q305&bd=pavilion&pf=laptop
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iesearch&locale=EN_US&c=Q305&bd=pavilion&pf=laptop
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=EN_US&c=Q305&bd=pavilion&pf=laptop
R3 - Default URLSearchHook is missing
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: Trecker Class - {39C78B50-7E98-4aa0-B007-D83114EA6E0F} - C:\PROGRA~1\Jalmp\jalmp.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O2 - BHO: ST - {9394EDE7-C8B5-483E-8773-474BF36AF6E4} - C:\Program Files\MSN Apps\ST\01.03.0000.1005\en-xu\stmain.dll
O2 - BHO: MSNToolBandBHO - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Apps\MSN Toolbar\01.02.3000.1001\en-us\msntb.dll
O2 - BHO: (no name) - {BE7005C6-ED2F-C685-7B92-C49EFF370BC6} - C:\WINDOWS\system32\cusvvq.dll
O2 - BHO: (no name) - {D714A94F-123A-45CC-8F03-040BCAF82AD6} - C:\WINDOWS\Downloaded Program Files\CONFLICT.1\SbCIe02a.dll
O3 - Toolbar: MSN - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Apps\MSN Toolbar\01.02.3000.1001\en-us\msntb.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll
O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
O4 - HKLM\..\Run: [SynTPLpr] C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [eabconfg.cpl] C:\Program Files\HPQ\Quick Launch Buttons\EabServr.exe /Start
O4 - HKLM\..\Run: [Cpqset] C:\Program Files\HPQ\Default Settings\cpqset.exe
O4 - HKLM\..\Run: [LSBWatcher] c:\hp\drivers\hplsbwatcher\lsburnwatcher.exe
O4 - HKLM\..\Run: [hpWirelessAssistant] "%ProgramFiles%\HPQ\HP Wireless Assistant\HP Wireless Assistant.exe"
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [ISUSPM Startup] C:\PROGRA~1\COMMON~1\INSTAL~1\UPDATE~1\ISUSPM.exe -startup
O4 - HKLM\..\Run: [ISUSScheduler] "C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe" -start
O4 - HKLM\..\Run: [gcasServ] "C:\Program Files\Microsoft AntiSpyware\gcasServ.exe"
O4 - HKLM\..\Run: [vptray] C:\Program Files\NavNT\vptray.exe
O4 - HKLM\..\Run: [ViewMgr] C:\Program Files\Viewpoint\Viewpoint Manager\ViewMgr.exe
O4 - HKLM\..\Run: [WinampAgent] C:\Program Files\Winamp\winampa.exe
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [{7E-E0-0C-CC-ZN}] c:\windows\system32\dwdsregt.exe IMG001
O4 - HKLM\..\Run: [susse] "C:\WINDOWS\system32\hpsw.exe"
O4 - HKLM\..\RunOnce: [MicrosoftAntiSpywareCleaner] C:\Program Files\Microsoft AntiSpyware\gcASCleaner.exe
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [PhotoShow Deluxe Media Manager] C:\PROGRA~1\Nero\data\Xtras\mssysmgr.exe
O4 - HKCU\..\Run: [NBJ] "C:\Program Files\Ahead\Nero BackItUp\NBJ.exe"
O4 - HKCU\..\Run: [AIM] C:\Program Files\AIM\aim.exe -cnetwait.odl
O4 - Startup: Z_Start.lnk = C:\WINDOWS\system32\rndsregm.exe
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: hp psc 1000 series.lnk = ?
O4 - Global Startup: hpoddt01.exe.lnk = ?
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O4 - Global Startup: WinZip Quick Pick.lnk = C:\Program Files\WinZip\WZQKPICK.EXE
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~4\Office10\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra button: SideStep - {3E230861-5C87-11D3-A1C6-00105A1B41B8} - C:\WINDOWS\Downloaded Program Files\CONFLICT.1\SbCIe02a.dll
O9 - Extra button: (no name) - {9E248641-0E24-4DDB-9A1F-705087832AD6} - (no file)
O9 - Extra 'Tools' menuitem: Java - {9E248641-0E24-4DDB-9A1F-705087832AD6} - (no file)
O9 - Extra button: AIM - {AC9E2541-2814-11d5-BC6D-00B0D0A1DE45} - C:\Program Files\AIM\aim.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O14 - IERESET.INF: START_PAGE_URL=http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=EN_US&c=Q305&bd=pavilion&pf=laptop
O15 - Trusted Zone: *.elitemediagroup.net
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204
O16 - DPF: {200B3EE9-7242-4EFD-B1E4-D97EE825BA53} (VerifyGMN Class) - http://h20270.www2.hp.com/ediags/gmn/install/hpobjinstaller_gmn.cab
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://by17fd.bay17.hotmail.msn.com/resources/MsnPUpld.cab
O16 - DPF: {640B39C1-D713-464F-92C3-75BD972B95EE} - http://www.sidestep.com/get/k00719/sb02a.cab
O16 - DPF: {7F8C8173-AD80-4807-AA75-5672F22B4582} (ICSScanner Class) - http://download.zonelabs.com/bin/promotions/spywaredetector/ICSScanner37390.cab
O16 - DPF: {9AC54695-69A4-46F1-BE10-10C74F9520D5} (elitectl.DemoCtl) - http://cabs.elitemediagroup.net/cabs/mediaview.cab
O18 - Filter: text/html - {2F6E85DC-8D2D-4896-8A4F-7DF8A7B1749D} - C:\PROGRA~1\Jalmp\jalmp.dll
O20 - Winlogon Notify: igfxcui - C:\WINDOWS\SYSTEM32\igfxsrvc.dll
O20 - Winlogon Notify: NavLogon - C:\WINDOWS\system32\NavLogon.dll
O20 - Winlogon Notify: WRNotifier - WRLogonNTF.dll (file missing)
O23 - Service: Bytemobile Web Configurator (bmwebcfg) - Bytemobile, Inc. - C:\WINDOWS\system32\bmwebcfg.exe
O23 - Service: DefWatch - Symantec Corporation - C:\Program Files\NavNT\defwatch.exe
O23 - Service: HP WMI Interface (hpqwmi) - Hewlett-Packard Development Company, L.P. - C:\Program Files\HPQ\SHARED\HPQWMI.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Intel File Transfer - Intel® Corporation - C:\WINDOWS\system32\cba\xfr.exe
O23 - Service: Intel PDS - Intel® Corporation - C:\WINDOWS\system32\cba\pds.exe
O23 - Service: iPodService - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Unknown owner - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: Norton AntiVirus Auto-Protect Service (navapsvc) - Unknown owner - C:\Program Files\Norton Internet Security\Norton AntiVirus\navapsvc.exe (file missing)
O23 - Service: Norton AntiVirus Client (Norton AntiVirus Server) - Symantec Corporation - C:\Program Files\NavNT\rtvscan.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe

Crunchie

Can you please do the following.

===============

Go to Add/Remove programs and remove(uninstall) the following, if present:

EZula Toptext
SideFind

The above could appear anywhere within the entry. Be careful not to remove any personal or system software.

===============

Now, let's open a command prompt by going to the start menu and then select 'Run'.

In the box that pops up type in 'cmd'. The command prompt will open.

OR

You can go to Start -> Programs -> Accessories -> Command Prompt. Unregister the dll(s) we're going to remove, by entering the following:

regsvr32 /u jalmp.dll
regsvr32 /u cusvvq.dll
regsvr32 /u SbCIe02a.dll

It's ok, if these aren't found or 'error' out. If you want, just copy and paste the individual lines to the command prompt to save typing them in.

===============

Let's look for, and delete, any program segments (prefetches) that might be present, and are associated with the 'problems' we're trying to remove from your PC. To do this, let's:

1) Click "Start | Search", then search for each of these program's base name(s), in all files and folders:

nwinosap.exe*
wgse.exe*

2) Then if any are found in the 'prefetch' folder, delete them.

Look closely, since the 'base' name will have a bunch of random numbers and letters attached to it.

===============

Run HiJackThis then:

1. Click "Open the Misc Tools Section"
2. Click "Open Process manager"

-

Next, while holding down the CTRL key, locate (if present) and click on (highlight) each of the following:

C:\WINDOWS\system32\nwinosap.exe
C:\WINDOWS\system32\wgse.exe
c:\windows\system32\dwdsregt.exe
C:\WINDOWS\system32\hpsw.exe

Now double-check and make sure that only those item(s) above are highlighted, then click "Kill process". Now, click "Refresh", check again, and repeat this step if any remain.

===============

Scan with HiJackThis, then check(tick) the following, if present:


R3 - Default URLSearchHook is missing

O2 - BHO: Trecker Class - {39C78B50-7E98-4aa0-B007-D83114EA6E0F} - C:\PROGRA~1\Jalmp\jalmp.dll
O2 - BHO: (no name) - {BE7005C6-ED2F-C685-7B92-C49EFF370BC6} - C:\WINDOWS\system32\cusvvq.dll
O2 - BHO: (no name) - {D714A94F-123A-45CC-8F03-040BCAF82AD6} - C:\WINDOWS\Downloaded Program Files\CONFLICT.1\SbCIe02a.dll

O4 - HKLM\..\Run: [{7E-E0-0C-CC-ZN}] c:\windows\system32\dwdsregt.exe IMG001
O4 - HKLM\..\Run: [susse] "C:\WINDOWS\system32\hpsw.exe"
O4 - Startup: Z_Start.lnk = C:\WINDOWS\system32\rndsregm.exe
O4 - Global Startup: hp psc 1000 series.lnk = ?
O4 - Global Startup: hpoddt01.exe.lnk = ?

O9 - Extra button: SideStep - {3E230861-5C87-11D3-A1C6-00105A1B41B8} - C:\WINDOWS\Downloaded Program Files\CONFLICT.1\SbCIe02a.dll
O9 - Extra button: (no name) - {9E248641-0E24-4DDB-9A1F-705087832AD6} - (no file)
O9 - Extra 'Tools' menuitem: Java - {9E248641-0E24-4DDB-9A1F-705087832AD6} - (no file)

O15 - Trusted Zone: *.elitemediagroup.net

O16 - DPF: {640B39C1-D713-464F-92C3-75BD972B95EE} - http://www.sidestep.com/get/k00719/sb02a.cab
O16 - DPF: {9AC54695-69A4-46F1-BE10-10C74F9520D5} (elitectl.DemoCtl) - http://cabs.elitemediagroup.net/cabs/mediaview.cab

O18 - Filter: text/html - {2F6E85DC-8D2D-4896-8A4F-7DF8A7B1749D} - C:\PROGRA~1\Jalmp\jalmp.dll


Now, close all instances of Internet Explorer and any other windows you have open except HiJackThis, click "Fix checked".

===============

Locate and delete the following item(s), if present. Make sure you are able to view system and hidden files/ folders:

folders...

C:\PROGRA~1\Jalmp
C:\WINDOWS\Downloaded Program Files\CONFLICT.1

files...

C:\WINDOWS\system32\nwinosap.exe
C:\WINDOWS\system32\wgse.exe
c:\windows\system32\dwdsregt.exe
C:\WINDOWS\system32\hpsw.exe
C:\WINDOWS\system32\cusvvq.dll
C:\WINDOWS\system32\rndsregm.exe

-

Note that some of these file(s)/folder(s) may or may not be present. If present, and cannot be deleted because they're 'in use', try deleting them in "Safe Mode".

-

Reboot.

===============

To help protect your system from hostile ActiveX content, or special 'downloadable' files:

Download, install and keep updated, SpywareBlaster. If you've installed it for the first time:

1) Check for any available updates; if present, they'll be automatically downloaded and installed.
2) Next, "Enable all protection".
3) Exit the program.

-

Note: Remember to regularly check for updates.

===============

After rebooting, rescan with hijackthis and post back a new log. Please let me know how your pc is now.

serveist

I did everything you told me and everything seemed to run ok. Only problem I noticed was when I tried to fix the programs in hijack, an error message would pop up twice for not being able to fix (i think). I rebooted and my microsoft anti spyware alert is still catching trojan.winsyn trying to install. It seems to try to install two times everytime I restart. Here if my hijack log. Thanks again! I appreciate the help very much!

Logfile of HijackThis v1.99.1
Scan saved at 6:19:32 AM, on 2/4/2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\bmwebcfg.exe
C:\Program Files\NavNT\defwatch.exe
C:\WINDOWS\system32\cba\pds.exe
C:\Program Files\Common Files\LightScribe\LSSrvc.exe
C:\Program Files\NavNT\rtvscan.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\cba\xfr.exe
C:\WINDOWS\system32\MsgSys.EXE
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\igfxtray.exe
C:\WINDOWS\system32\hkcmd.exe
C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe
C:\Program Files\HPQ\Quick Launch Buttons\EabServr.exe
C:\hp\drivers\hplsbwatcher\lsburnwatcher.exe
C:\Program Files\HPQ\HP Wireless Assistant\HP Wireless Assistant.exe
C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe
C:\Program Files\Microsoft AntiSpyware\gcasServ.exe
C:\Program Files\NavNT\vptray.exe
C:\Program Files\Viewpoint\Viewpoint Manager\ViewMgr.exe
C:\Program Files\Winamp\winampa.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\Messenger\msmsgs.exe
C:\PROGRA~1\Nero\data\Xtras\mssysmgr.exe
C:\Program Files\AIM\aim.exe
C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
C:\Program Files\WinZip\WZQKPICK.EXE
C:\Program Files\iPod\bin\iPodService.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Microsoft AntiSpyware\gcasDtServ.exe
C:\Program Files\HPQ\SHARED\HPQWMI.exe
C:\Documents and Settings\Bucho71\Desktop\Virus Folder\HijackThis.exe

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=EN_US&c=Q305&bd=pavilion&pf=laptop
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iesearch&locale=EN_US&c=Q305&bd=pavilion&pf=laptop
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=EN_US&c=Q305&bd=pavilion&pf=laptop
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O2 - BHO: ST - {9394EDE7-C8B5-483E-8773-474BF36AF6E4} - C:\Program Files\MSN Apps\ST\01.03.0000.1005\en-xu\stmain.dll
O2 - BHO: MSNToolBandBHO - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Apps\MSN Toolbar\01.02.3000.1001\en-us\msntb.dll
O3 - Toolbar: MSN - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Apps\MSN Toolbar\01.02.3000.1001\en-us\msntb.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll
O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
O4 - HKLM\..\Run: [SynTPLpr] C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [eabconfg.cpl] C:\Program Files\HPQ\Quick Launch Buttons\EabServr.exe /Start
O4 - HKLM\..\Run: [Cpqset] C:\Program Files\HPQ\Default Settings\cpqset.exe
O4 - HKLM\..\Run: [LSBWatcher] c:\hp\drivers\hplsbwatcher\lsburnwatcher.exe
O4 - HKLM\..\Run: [hpWirelessAssistant] "%ProgramFiles%\HPQ\HP Wireless Assistant\HP Wireless Assistant.exe"
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [ISUSPM Startup] C:\PROGRA~1\COMMON~1\INSTAL~1\UPDATE~1\ISUSPM.exe -startup
O4 - HKLM\..\Run: [ISUSScheduler] "C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe" -start
O4 - HKLM\..\Run: [gcasServ] "C:\Program Files\Microsoft AntiSpyware\gcasServ.exe"
O4 - HKLM\..\Run: [vptray] C:\Program Files\NavNT\vptray.exe
O4 - HKLM\..\Run: [ViewMgr] C:\Program Files\Viewpoint\Viewpoint Manager\ViewMgr.exe
O4 - HKLM\..\Run: [WinampAgent] C:\Program Files\Winamp\winampa.exe
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [PhotoShow Deluxe Media Manager] C:\PROGRA~1\Nero\data\Xtras\mssysmgr.exe
O4 - HKCU\..\Run: [NBJ] "C:\Program Files\Ahead\Nero BackItUp\NBJ.exe"
O4 - HKCU\..\Run: [AIM] C:\Program Files\AIM\aim.exe -cnetwait.odl
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O4 - Global Startup: WinZip Quick Pick.lnk = C:\Program Files\WinZip\WZQKPICK.EXE
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~4\Office10\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra button: AIM - {AC9E2541-2814-11d5-BC6D-00B0D0A1DE45} - C:\Program Files\AIM\aim.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O14 - IERESET.INF: START_PAGE_URL=http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=EN_US&c=Q305&bd=pavilion&pf=laptop
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204
O16 - DPF: {200B3EE9-7242-4EFD-B1E4-D97EE825BA53} (VerifyGMN Class) - http://h20270.www2.hp.com/ediags/gmn/install/hpobjinstaller_gmn.cab
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://by17fd.bay17.hotmail.msn.com/resources/MsnPUpld.cab
O16 - DPF: {7F8C8173-AD80-4807-AA75-5672F22B4582} (ICSScanner Class) - http://download.zonelabs.com/bin/promotions/spywaredetector/ICSScanner37390.cab
O20 - Winlogon Notify: igfxcui - C:\WINDOWS\SYSTEM32\igfxsrvc.dll
O20 - Winlogon Notify: NavLogon - C:\WINDOWS\system32\NavLogon.dll
O20 - Winlogon Notify: WRNotifier - WRLogonNTF.dll (file missing)
O23 - Service: Bytemobile Web Configurator (bmwebcfg) - Bytemobile, Inc. - C:\WINDOWS\system32\bmwebcfg.exe
O23 - Service: DefWatch - Symantec Corporation - C:\Program Files\NavNT\defwatch.exe
O23 - Service: HP WMI Interface (hpqwmi) - Hewlett-Packard Development Company, L.P. - C:\Program Files\HPQ\SHARED\HPQWMI.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Intel File Transfer - Intel® Corporation - C:\WINDOWS\system32\cba\xfr.exe
O23 - Service: Intel PDS - Intel® Corporation - C:\WINDOWS\system32\cba\pds.exe
O23 - Service: iPodService - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Unknown owner - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: Norton AntiVirus Auto-Protect Service (navapsvc) - Unknown owner - C:\Program Files\Norton Internet Security\Norton AntiVirus\navapsvc.exe (file missing)
O23 - Service: Norton AntiVirus Client (Norton AntiVirus Server) - Symantec Corporation - C:\Program Files\NavNT\rtvscan.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe

Crunchie

Not seeing anything in your log now. microsoft anti spyware is probably blocking it and therefore hijackthis doesn't catch it.

Please download the trial version of Ewido anti-malware here:
http://www.ewido.net/en/download/
Install it, and update the definitions to the newest files. Do NOT run a scan yet.
Next, please reboot your computer in Safe Mode by doing the following:
1) Restart your computer
2) After hearing your computer beep once during startup, but before the Windows icon appears, press F8.
3) Instead of Windows loading as normal, a menu should appear
4) Select the first option, to run Windows in Safe Mode.

For additional help in booting into Safe Mode, see the following site:
http://www.pchell.com/support/safemode.shtml

Once in Safe Mode, please run Ewido, and do a full scan. During the scan it will prompt you to clean files, click OK.

Save the logfile from the scan. Restart your computer in normal mode and please post the log from the Ewido scan.

serveist

Hello. I downloaded ewido and ran full scan on safe mode. I restarted and have not received a ms blockage of that trjoan program yet. Hopefully everything is clear! Thanks again and here if my ewido log:

---

ewido anti-malware - Scan report

---

+ Created on: 4:41:50 PM, 2/4/2006
+ Report-Checksum: D55B14

+ Scan result:

HKLM\SOFTWARE\Classes\Folder\shellex\ColumnHandlers\{6EC11407-5B2E-4E25-8BDF-77445B52AB37} -> Spyware.VX2 : Cleaned with backup
HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{00000010-6F7D-442C-93E3-4A4827C2E4C8} -> Spyware.InternetOptimizer : Cleaned with backup
HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{9A9C9B68-F908-4AAB-8D0C-10EA8997F37E} -> Spyware.Mirar : Cleaned with backup
HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{9A9C9B69-F908-4AAB-8D0C-10EA8997F37E} -> Spyware.NetNucleus : Cleaned with backup
HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{C900B400-CDFE-11D3-976A-00E02913A9E0} -> Spyware.Webhancer : Cleaned with backup
HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D714A94F-123A-45CC-8F03-040BCAF82AD6} -> Spyware.SideStep : Cleaned with backup
HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Policies\AMeOpt -> Spyware.InternetOptimizer : Cleaned with backup
HKU\S-1-5-21-1842948692-3716202845-41037842-1006\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D714A94F-123A-45CC-8F03-040BCAF82AD6} -> Spyware.SideStep : Cleaned with backup
HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{00000010-6F7D-442C-93E3-4A4827C2E4C8} -> Spyware.InternetOptimizer : Cleaned with backup
HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{9A9C9B68-F908-4AAB-8D0C-10EA8997F37E} -> Spyware.Mirar : Cleaned with backup
HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{9A9C9B69-F908-4AAB-8D0C-10EA8997F37E} -> Spyware.NetNucleus : Cleaned with backup
HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{C900B400-CDFE-11D3-976A-00E02913A9E0} -> Spyware.Webhancer : Cleaned with backup
HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D714A94F-123A-45CC-8F03-040BCAF82AD6} -> Spyware.SideStep : Cleaned with backup
HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Policies\AMeOpt -> Spyware.InternetOptimizer : Cleaned with backup
:mozilla.11:C:\Documents and Settings\Bucho71\Application Data\Mozilla\Firefox\Profiles\1105lef9.default\cookies.txt -> Spyware.Cookie.2o7 : Cleaned with backup
:mozilla.12:C:\Documents and Settings\Bucho71\Application Data\Mozilla\Firefox\Profiles\1105lef9.default\cookies.txt -> Spyware.Cookie.2o7 : Cleaned with backup
:mozilla.13:C:\Documents and Settings\Bucho71\Application Data\Mozilla\Firefox\Profiles\1105lef9.default\cookies.txt -> Spyware.Cookie.2o7 : Cleaned with backup
:mozilla.14:C:\Documents and Settings\Bucho71\Application Data\Mozilla\Firefox\Profiles\1105lef9.default\cookies.txt -> Spyware.Cookie.2o7 : Cleaned with backup
:mozilla.15:C:\Documents and Settings\Bucho71\Application Data\Mozilla\Firefox\Profiles\1105lef9.default\cookies.txt -> Spyware.Cookie.2o7 : Cleaned with backup
:mozilla.16:C:\Documents and Settings\Bucho71\Application Data\Mozilla\Firefox\Profiles\1105lef9.default\cookies.txt -> Spyware.Cookie.2o7 : Cleaned with backup
:mozilla.17:C:\Documents and Settings\Bucho71\Application Data\Mozilla\Firefox\Profiles\1105lef9.default\cookies.txt -> Spyware.Cookie.2o7 : Cleaned with backup
:mozilla.18:C:\Documents and Settings\Bucho71\Application Data\Mozilla\Firefox\Profiles\1105lef9.default\cookies.txt -> Spyware.Cookie.2o7 : Cleaned with backup
:mozilla.19:C:\Documents and Settings\Bucho71\Application Data\Mozilla\Firefox\Profiles\1105lef9.default\cookies.txt -> Spyware.Cookie.2o7 : Cleaned with backup
:mozilla.20:C:\Documents and Settings\Bucho71\Application Data\Mozilla\Firefox\Profiles\1105lef9.default\cookies.txt -> Spyware.Cookie.2o7 : Cleaned with backup
:mozilla.21:C:\Documents and Settings\Bucho71\Application Data\Mozilla\Firefox\Profiles\1105lef9.default\cookies.txt -> Spyware.Cookie.2o7 : Cleaned with backup
:mozilla.22:C:\Documents and Settings\Bucho71\Application Data\Mozilla\Firefox\Profiles\1105lef9.default\cookies.txt -> Spyware.Cookie.2o7 : Cleaned with backup
:mozilla.23:C:\Documents and Settings\Bucho71\Application Data\Mozilla\Firefox\Profiles\1105lef9.default\cookies.txt -> Spyware.Cookie.2o7 : Cleaned with backup
:mozilla.24:C:\Documents and Settings\Bucho71\Application Data\Mozilla\Firefox\Profiles\1105lef9.default\cookies.txt -> Spyware.Cookie.2o7 : Cleaned with backup
:mozilla.26:C:\Documents and Settings\Bucho71\Application Data\Mozilla\Firefox\Profiles\1105lef9.default\cookies.txt -> Spyware.Cookie.2o7 : Cleaned with backup
:mozilla.27:C:\Documents and Settings\Bucho71\Application Data\Mozilla\Firefox\Profiles\1105lef9.default\cookies.txt -> Spyware.Cookie.2o7 : Cleaned with backup
:mozilla.33:C:\Documents and Settings\Bucho71\Application Data\Mozilla\Firefox\Profiles\1105lef9.default\cookies.txt -> Spyware.Cookie.2o7 : Cleaned with backup
:mozilla.34:C:\Documents and Settings\Bucho71\Application Data\Mozilla\Firefox\Profiles\1105lef9.default\cookies.txt -> Spyware.Cookie.2o7 : Cleaned with backup
:mozilla.35:C:\Documents and Settings\Bucho71\Application Data\Mozilla\Firefox\Profiles\1105lef9.default\cookies.txt -> Spyware.Cookie.2o7 : Cleaned with backup
:mozilla.37:C:\Documents and Settings\Bucho71\Application Data\Mozilla\Firefox\Profiles\1105lef9.default\cookies.txt -> Spyware.Cookie.2o7 : Cleaned with backup
:mozilla.38:C:\Documents and Settings\Bucho71\Application Data\Mozilla\Firefox\Profiles\1105lef9.default\cookies.txt -> Spyware.Cookie.2o7 : Cleaned with backup
:mozilla.43:C:\Documents and Settings\Bucho71\Application Data\Mozilla\Firefox\Profiles\1105lef9.default\cookies.txt -> Spyware.Cookie.2o7 : Cleaned with backup
:mozilla.45:C:\Documents and Settings\Bucho71\Application Data\Mozilla\Firefox\Profiles\1105lef9.default\cookies.txt -> Spyware.Cookie.2o7 : Cleaned with backup
:mozilla.46:C:\Documents and Settings\Bucho71\Application Data\Mozilla\Firefox\Profiles\1105lef9.default\cookies.txt -> Spyware.Cookie.2o7 : Cleaned with backup
:mozilla.47:C:\Documents and Settings\Bucho71\Application Data\Mozilla\Firefox\Profiles\1105lef9.default\cookies.txt -> Spyware.Cookie.2o7 : Cleaned with backup
:mozilla.48:C:\Documents and Settings\Bucho71\Application Data\Mozilla\Firefox\Profiles\1105lef9.default\cookies.txt -> Spyware.Cookie.2o7 : Cleaned with backup
:mozilla.58:C:\Documents and Settings\Bucho71\Application Data\Mozilla\Firefox\Profiles\1105lef9.default\cookies.txt -> Spyware.Cookie.Atdmt : Cleaned with backup
:mozilla.60:C:\Documents and Settings\Bucho71\Application Data\Mozilla\Firefox\Profiles\1105lef9.default\cookies.txt -> Spyware.Cookie.Yieldmanager : Cleaned with backup
:mozilla.61:C:\Documents and Settings\Bucho71\Application Data\Mozilla\Firefox\Profiles\1105lef9.default\cookies.txt -> Spyware.Cookie.Yieldmanager : Cleaned with backup
:mozilla.62:C:\Documents and Settings\Bucho71\Application Data\Mozilla\Firefox\Profiles\1105lef9.default\cookies.txt -> Spyware.Cookie.Yieldmanager : Cleaned with backup
:mozilla.63:C:\Documents and Settings\Bucho71\Application Data\Mozilla\Firefox\Profiles\1105lef9.default\cookies.txt -> Spyware.Cookie.Yieldmanager : Cleaned with backup
:mozilla.64:C:\Documents and Settings\Bucho71\Application Data\Mozilla\Firefox\Profiles\1105lef9.default\cookies.txt -> Spyware.Cookie.Yieldmanager : Cleaned with backup
:mozilla.65:C:\Documents and Settings\Bucho71\Application Data\Mozilla\Firefox\Profiles\1105lef9.default\cookies.txt -> Spyware.Cookie.Yieldmanager : Cleaned with backup
:mozilla.66:C:\Documents and Settings\Bucho71\Application Data\Mozilla\Firefox\Profiles\1105lef9.default\cookies.txt -> Spyware.Cookie.Yieldmanager : Cleaned with backup
:mozilla.67:C:\Documents and Settings\Bucho71\Application Data\Mozilla\Firefox\Profiles\1105lef9.default\cookies.txt -> Spyware.Cookie.Yieldmanager : Cleaned with backup
:mozilla.68:C:\Documents and Settings\Bucho71\Application Data\Mozilla\Firefox\Profiles\1105lef9.default\cookies.txt -> Spyware.Cookie.Yieldmanager : Cleaned with backup
:mozilla.75:C:\Documents and Settings\Bucho71\Application Data\Mozilla\Firefox\Profiles\1105lef9.default\cookies.txt -> Spyware.Cookie.Doubleclick : Cleaned with backup
:mozilla.76:C:\Documents and Settings\Bucho71\Application Data\Mozilla\Firefox\Profiles\1105lef9.default\cookies.txt -> Spyware.Cookie.Bluestreak : Cleaned with backup
:mozilla.89:C:\Documents and Settings\Bucho71\Application Data\Mozilla\Firefox\Profiles\1105lef9.default\cookies.txt -> Spyware.Cookie.Advertising : Cleaned with backup
:mozilla.90:C:\Documents and Settings\Bucho71\Application Data\Mozilla\Firefox\Profiles\1105lef9.default\cookies.txt -> Spyware.Cookie.Advertising : Cleaned with backup
:mozilla.91:C:\Documents and Settings\Bucho71\Application Data\Mozilla\Firefox\Profiles\1105lef9.default\cookies.txt -> Spyware.Cookie.Advertising : Cleaned with backup
:mozilla.92:C:\Documents and Settings\Bucho71\Application Data\Mozilla\Firefox\Profiles\1105lef9.default\cookies.txt -> Spyware.Cookie.Advertising : Cleaned with backup
:mozilla.95:C:\Documents and Settings\Bucho71\Application Data\Mozilla\Firefox\Profiles\1105lef9.default\cookies.txt -> Spyware.Cookie.Pointroll : Cleaned with backup
:mozilla.96:C:\Documents and Settings\Bucho71\Application Data\Mozilla\Firefox\Profiles\1105lef9.default\cookies.txt -> Spyware.Cookie.Pointroll : Cleaned with backup
:mozilla.97:C:\Documents and Settings\Bucho71\Application Data\Mozilla\Firefox\Profiles\1105lef9.default\cookies.txt -> Spyware.Cookie.Pointroll : Cleaned with backup
:mozilla.98:C:\Documents and Settings\Bucho71\Application Data\Mozilla\Firefox\Profiles\1105lef9.default\cookies.txt -> Spyware.Cookie.Pointroll : Cleaned with backup
:mozilla.102:C:\Documents and Settings\Bucho71\Application Data\Mozilla\Firefox\Profiles\1105lef9.default\cookies.txt -> Spyware.Cookie.Fastclick : Cleaned with backup
:mozilla.103:C:\Documents and Settings\Bucho71\Application Data\Mozilla\Firefox\Profiles\1105lef9.default\cookies.txt -> Spyware.Cookie.Fastclick : Cleaned with backup
:mozilla.104:C:\Documents and Settings\Bucho71\Application Data\Mozilla\Firefox\Profiles\1105lef9.default\cookies.txt -> Spyware.Cookie.Falkag : Cleaned with backup
:mozilla.108:C:\Documents and Settings\Bucho71\Application Data\Mozilla\Firefox\Profiles\1105lef9.default\cookies.txt -> Spyware.Cookie.Statcounter : Cleaned with backup
:mozilla.109:C:\Documents and Settings\Bucho71\Application Data\Mozilla\Firefox\Profiles\1105lef9.default\cookies.txt -> Spyware.Cookie.Statcounter : Cleaned with backup
:mozilla.110:C:\Documents and Settings\Bucho71\Application Data\Mozilla\Firefox\Profiles\1105lef9.default\cookies.txt -> Spyware.Cookie.Statcounter : Cleaned with backup
:mozilla.111:C:\Documents and Settings\Bucho71\Application Data\Mozilla\Firefox\Profiles\1105lef9.default\cookies.txt -> Spyware.Cookie.Statcounter : Cleaned with backup
:mozilla.112:C:\Documents and Settings\Bucho71\Application Data\Mozilla\Firefox\Profiles\1105lef9.default\cookies.txt -> Spyware.Cookie.Statcounter : Cleaned with backup
:mozilla.113:C:\Documents and Settings\Bucho71\Application Data\Mozilla\Firefox\Profiles\1105lef9.default\cookies.txt -> Spyware.Cookie.Statcounter : Cleaned with backup
:mozilla.114:C:\Documents and Settings\Bucho71\Application Data\Mozilla\Firefox\Profiles\1105lef9.default\cookies.txt -> Spyware.Cookie.Statcounter : Cleaned with backup
:mozilla.115:C:\Documents and Settings\Bucho71\Application Data\Mozilla\Firefox\Profiles\1105lef9.default\cookies.txt -> Spyware.Cookie.Statcounter : Cleaned with backup
:mozilla.137:C:\Documents and Settings\Bucho71\Application Data\Mozilla\Firefox\Profiles\1105lef9.default\cookies.txt -> Spyware.Cookie.Questionmarket : Cleaned with backup
:mozilla.177:C:\Documents and Settings\Bucho71\Application Data\Mozilla\Firefox\Profiles\1105lef9.default\cookies.txt -> Spyware.Cookie.Valueclick : Cleaned with backup
:mozilla.178:C:\Documents and Settings\Bucho71\Application Data\Mozilla\Firefox\Profiles\1105lef9.default\cookies.txt -> Spyware.Cookie.Valueclick : Cleaned with backup
:mozilla.195:C:\Documents and Settings\Bucho71\Application Data\Mozilla\Firefox\Profiles\1105lef9.default\cookies.txt -> Spyware.Cookie.Casalemedia : Cleaned with backup
:mozilla.196:C:\Documents and Settings\Bucho71\Application Data\Mozilla\Firefox\Profiles\1105lef9.default\cookies.txt -> Spyware.Cookie.Casalemedia : Cleaned with backup
:mozilla.198:C:\Documents and Settings\Bucho71\Application Data\Mozilla\Firefox\Profiles\1105lef9.default\cookies.txt -> Spyware.Cookie.Bridgetrack : Cleaned with backup
:mozilla.199:C:\Documents and Settings\Bucho71\Application Data\Mozilla\Firefox\Profiles\1105lef9.default\cookies.txt -> Spyware.Cookie.Bridgetrack : Cleaned with backup
:mozilla.200:C:\Documents and Settings\Bucho71\Application Data\Mozilla\Firefox\Profiles\1105lef9.default\cookies.txt -> Spyware.Cookie.Bridgetrack : Cleaned with backup
:mozilla.201:C:\Documents and Settings\Bucho71\Application Data\Mozilla\Firefox\Profiles\1105lef9.default\cookies.txt -> Spyware.Cookie.Bridgetrack : Cleaned with backup
:mozilla.202:C:\Documents and Settings\Bucho71\Application Data\Mozilla\Firefox\Profiles\1105lef9.default\cookies.txt -> Spyware.Cookie.Bridgetrack : Cleaned with backup
:mozilla.203:C:\Documents and Settings\Bucho71\Application Data\Mozilla\Firefox\Profiles\1105lef9.default\cookies.txt -> Spyware.Cookie.Overture : Cleaned with backup
:mozilla.204:C:\Documents and Settings\Bucho71\Application Data\Mozilla\Firefox\Profiles\1105lef9.default\cookies.txt -> Spyware.Cookie.Overture : Cleaned with backup
:mozilla.216:C:\Documents and Settings\Bucho71\Application Data\Mozilla\Firefox\Profiles\1105lef9.default\cookies.txt -> Spyware.Cookie.Ru4 : Cleaned with backup
:mozilla.217:C:\Documents and Settings\Bucho71\Application Data\Mozilla\Firefox\Profiles\1105lef9.default\cookies.txt -> Spyware.Cookie.Ru4 : Cleaned with backup
:mozilla.218:C:\Documents and Settings\Bucho71\Application Data\Mozilla\Firefox\Profiles\1105lef9.default\cookies.txt -> Spyware.Cookie.Ru4 : Cleaned with backup
:mozilla.219:C:\Documents and Settings\Bucho71\Application Data\Mozilla\Firefox\Profiles\1105lef9.default\cookies.txt -> Spyware.Cookie.Ru4 : Cleaned with backup
:mozilla.220:C:\Documents and Settings\Bucho71\Application Data\Mozilla\Firefox\Profiles\1105lef9.default\cookies.txt -> Spyware.Cookie.Ru4 : Cleaned with backup
:mozilla.221:C:\Documents and Settings\Bucho71\Application Data\Mozilla\Firefox\Profiles\1105lef9.default\cookies.txt -> Spyware.Cookie.Ru4 : Cleaned with backup
:mozilla.222:C:\Documents and Settings\Bucho71\Application Data\Mozilla\Firefox\Profiles\1105lef9.default\cookies.txt -> Spyware.Cookie.Ru4 : Cleaned with backup
:mozilla.223:C:\Documents and Settings\Bucho71\Application Data\Mozilla\Firefox\Profiles\1105lef9.default\cookies.txt -> Spyware.Cookie.Ru4 : Cleaned with backup
:mozilla.224:C:\Documents and Settings\Bucho71\Application Data\Mozilla\Firefox\Profiles\1105lef9.default\cookies.txt -> Spyware.Cookie.Ru4 : Cleaned with backup
:mozilla.231:C:\Documents and Settings\Bucho71\Application Data\Mozilla\Firefox\Profiles\1105lef9.default\cookies.txt -> Spyware.Cookie.Webtrendslive : Cleaned with backup
:mozilla.232:C:\Documents and Settings\Bucho71\Application Data\Mozilla\Firefox\Profiles\1105lef9.default\cookies.txt -> Spyware.Cookie.Webtrendslive : Cleaned with backup
:mozilla.234:C:\Documents and Settings\Bucho71\Application Data\Mozilla\Firefox\Profiles\1105lef9.default\cookies.txt -> Spyware.Cookie.Liveperson : Cleaned with backup
:mozilla.235:C:\Documents and Settings\Bucho71\Application Data\Mozilla\Firefox\Profiles\1105lef9.default\cookies.txt -> Spyware.Cookie.Mediaplex : Cleaned with backup
:mozilla.236:C:\Documents and Settings\Bucho71\Application Data\Mozilla\Firefox\Profiles\1105lef9.default\cookies.txt -> Spyware.Cookie.Mediaplex : Cleaned with backup
:mozilla.254:C:\Documents and Settings\Bucho71\Application Data\Mozilla\Firefox\Profiles\1105lef9.default\cookies.txt -> Spyware.Cookie.Adserver : Cleaned with backup
:mozilla.255:C:\Documents and Settings\Bucho71\Application Data\Mozilla\Firefox\Profiles\1105lef9.default\cookies.txt -> Spyware.Cookie.Adserver : Cleaned with backup
:mozilla.256:C:\Documents and Settings\Bucho71\Application Data\Mozilla\Firefox\Profiles\1105lef9.default\cookies.txt -> Spyware.Cookie.Adserver : Cleaned with backup
:mozilla.257:C:\Documents and Settings\Bucho71\Application Data\Mozilla\Firefox\Profiles\1105lef9.default\cookies.txt -> Spyware.Cookie.Adserver : Cleaned with backup
:mozilla.258:C:\Documents and Settings\Bucho71\Application Data\Mozilla\Firefox\Profiles\1105lef9.default\cookies.txt -> Spyware.Cookie.Adserver : Cleaned with backup
:mozilla.368:C:\Documents and Settings\Bucho71\Application Data\Mozilla\Firefox\Profiles\1105lef9.default\cookies.txt -> Spyware.Cookie.Burstbeacon : Cleaned with backup
:mozilla.440:C:\Documents and Settings\Bucho71\Application Data\Mozilla\Firefox\Profiles\1105lef9.default\cookies.txt -> Spyware.Cookie.Serving-sys : Cleaned with backup
:mozilla.456:C:\Documents and Settings\Bucho71\Application Data\Mozilla\Firefox\Profiles\1105lef9.default\cookies.txt -> Spyware.Cookie.Coremetrics : Cleaned with backup
:mozilla.461:C:\Documents and Settings\Bucho71\Application Data\Mozilla\Firefox\Profiles\1105lef9.default\cookies.txt -> Spyware.Cookie.Tradedoubler : Cleaned with backup
:mozilla.462:C:\Documents and Settings\Bucho71\Application Data\Mozilla\Firefox\Profiles\1105lef9.default\cookies.txt -> Spyware.Cookie.Tribalfusion : Cleaned with backup
:mozilla.467:C:\Documents and Settings\Bucho71\Application Data\Mozilla\Firefox\Profiles\1105lef9.default\cookies.txt -> Spyware.Cookie.Sexlist : Cleaned with backup
:mozilla.476:C:\Documents and Settings\Bucho71\Application Data\Mozilla\Firefox\Profiles\1105lef9.default\cookies.txt -> Spyware.Cookie.Trafic : Cleaned with backup
:mozilla.496:C:\Documents and Settings\Bucho71\Application Data\Mozilla\Firefox\Profiles\1105lef9.default\cookies.txt -> Spyware.Cookie.Targetnet : Cleaned with backup
:mozilla.497:C:\Documents and Settings\Bucho71\Application Data\Mozilla\Firefox\Profiles\1105lef9.default\cookies.txt -> Spyware.Cookie.Targetnet : Cleaned with backup
:mozilla.504:C:\Documents and Settings\Bucho71\Application Data\Mozilla\Firefox\Profiles\1105lef9.default\cookies.txt -> Spyware.Cookie.Serving-sys : Cleaned with backup
:mozilla.505:C:\Documents and Settings\Bucho71\Application Data\Mozilla\Firefox\Profiles\1105lef9.default\cookies.txt -> Spyware.Cookie.Serving-sys : Cleaned with backup
:mozilla.511:C:\Documents and Settings\Bucho71\Application Data\Mozilla\Firefox\Profiles\1105lef9.default\cookies.txt -> Spyware.Cookie.Serving-sys : Cleaned with backup
:mozilla.523:C:\Documents and Settings\Bucho71\Application Data\Mozilla\Firefox\Profiles\1105lef9.default\cookies.txt -> Spyware.Cookie.Trafficmp : Cleaned with backup
:mozilla.524:C:\Documents and Settings\Bucho71\Application Data\Mozilla\Firefox\Profiles\1105lef9.default\cookies.txt -> Spyware.Cookie.Trafficmp : Cleaned with backup
:mozilla.550:C:\Documents and Settings\Bucho71\Application Data\Mozilla\Firefox\Profiles\1105lef9.default\cookies.txt -> Spyware.Cookie.Liveperson : Cleaned with backup
:mozilla.591:C:\Documents and Settings\Bucho71\Application Data\Mozilla\Firefox\Profiles\1105lef9.default\cookies.txt -> Spyware.Cookie.Liveperson : Cleaned with backup
:mozilla.592:C:\Documents and Settings\Bucho71\Application Data\Mozilla\Firefox\Profiles\1105lef9.default\cookies.txt -> Spyware.Cookie.Liveperson : Cleaned with backup
:mozilla.593:C:\Documents and Settings\Bucho71\Application Data\Mozilla\Firefox\Profiles\1105lef9.default\cookies.txt -> Spyware.Cookie.Liveperson : Cleaned with backup
:mozilla.595:C:\Documents and Settings\Bucho71\Application Data\Mozilla\Firefox\Profiles\1105lef9.default\cookies.txt -> Spyware.Cookie.Liveperson : Cleaned with backup
:mozilla.607:C:\Documents and Settings\Bucho71\Application Data\Mozilla\Firefox\Profiles\1105lef9.default\cookies.txt -> Spyware.Cookie.2o7 : Cleaned with backup
:mozilla.628:C:\Documents and Settings\Bucho71\Application Data\Mozilla\Firefox\Profiles\1105lef9.default\cookies.txt -> Spyware.Cookie.2o7 : Cleaned with backup
:mozilla.635:C:\Documents and Settings\Bucho71\Application Data\Mozilla\Firefox\Profiles\1105lef9.default\cookies.txt -> Spyware.Cookie.Overture : Cleaned with backup
:mozilla.637:C:\Documents and Settings\Bucho71\Application Data\Mozilla\Firefox\Profiles\1105lef9.default\cookies.txt -> Spyware.Cookie.Liveperson : Cleaned with backup
:mozilla.646:C:\Documents and Settings\Bucho71\Application Data\Mozilla\Firefox\Profiles\1105lef9.default\cookies.txt -> Spyware.Cookie.Linksynergy : Cleaned with backup
:mozilla.647:C:\Documents and Settings\Bucho71\Application Data\Mozilla\Firefox\Profiles\1105lef9.default\cookies.txt -> Spyware.Cookie.Linksynergy : Cleaned with backup
:mozilla.660:C:\Documents and Settings\Bucho71\Application Data\Mozilla\Firefox\Profiles\1105lef9.default\cookies.txt -> Spyware.Cookie.Hitbox : Cleaned with backup
:mozilla.663:C:\Documents and Settings\Bucho71\Application Data\Mozilla\Firefox\Profiles\1105lef9.default\cookies.txt -> Spyware.Cookie.Hitbox : Cleaned with backup
:mozilla.679:C:\Documents and Settings\Bucho71\Application Data\Mozilla\Firefox\Profiles\1105lef9.default\cookies.txt -> Spyware.Cookie.Liveperson : Cleaned with backup
:mozilla.680:C:\Documents and Settings\Bucho71\Application Data\Mozilla\Firefox\Profiles\1105lef9.default\cookies.txt -> Spyware.Cookie.Liveperson : Cleaned with backup
:mozilla.691:C:\Documents and Settings\Bucho71\Application Data\Mozilla\Firefox\Profiles\1105lef9.default\cookies.txt -> Spyware.Cookie.Hitbox : Cleaned with backup
:mozilla.692:C:\Documents and Settings\Bucho71\Application Data\Mozilla\Firefox\Profiles\1105lef9.default\cookies.txt -> Spyware.Cookie.Hitbox : Cleaned with backup
:mozilla.693:C:\Documents and Settings\Bucho71\Application Data\Mozilla\Firefox\Profiles\1105lef9.default\cookies.txt -> Spyware.Cookie.Hitbox : Cleaned with backup
:mozilla.694:C:\Documents and Settings\Bucho71\Application Data\Mozilla\Firefox\Profiles\1105lef9.default\cookies.txt -> Spyware.Cookie.Hitbox : Cleaned with backup
:mozilla.695:C:\Documents and Settings\Bucho71\Application Data\Mozilla\Firefox\Profiles\1105lef9.default\cookies.txt -> Spyware.Cookie.Hitbox : Cleaned with backup
:mozilla.699:C:\Documents and Settings\Bucho71\Application Data\Mozilla\Firefox\Profiles\1105lef9.default\cookies.txt -> Spyware.Cookie.Hitbox : Cleaned with backup
:mozilla.701:C:\Documents and Settings\Bucho71\Application Data\Mozilla\Firefox\Profiles\1105lef9.default\cookies.txt -> Spyware.Cookie.Hitbox : Cleaned with backup
:mozilla.702:C:\Documents and Settings\Bucho71\Application Data\Mozilla\Firefox\Profiles\1105lef9.default\cookies.txt -> Spyware.Cookie.Hitbox : Cleaned with backup
:mozilla.707:C:\Documents and Settings\Bucho71\Application Data\Mozilla\Firefox\Profiles\1105lef9.default\cookies.txt -> Spyware.Cookie.Doubleclick : Cleaned with backup
:mozilla.712:C:\Documents and Settings\Bucho71\Application Data\Mozilla\Firefox\Profiles\1105lef9.default\cookies.txt -> Spyware.Cookie.Hitbox : Cleaned with backup
:mozilla.718:C:\Documents and Settings\Bucho71\Application Data\Mozilla\Firefox\Profiles\1105lef9.default\cookies.txt -> Spyware.Cookie.Hitbox : Cleaned with backup
:mozilla.719:C:\Documents and Settings\Bucho71\Application Data\Mozilla\Firefox\Profiles\1105lef9.default\cookies.txt -> Spyware.Cookie.Hitbox : Cleaned with backup
:mozilla.720:C:\Documents and Settings\Bucho71\Application Data\Mozilla\Firefox\Profiles\1105lef9.default\cookies.txt -> Spyware.Cookie.Hitbox : Cleaned with backup
:mozilla.746:C:\Documents and Settings\Bucho71\Application Data\Mozilla\Firefox\Profiles\1105lef9.default\cookies.txt -> Spyware.Cookie.Hitbox : Cleaned with backup
:mozilla.747:C:\Documents and Settings\Bucho71\Application Data\Mozilla\Firefox\Profiles\1105lef9.default\cookies.txt -> Spyware.Cookie.Hitbox : Cleaned with backup
:mozilla.748:C:\Documents and Settings\Bucho71\Application Data\Mozilla\Firefox\Profiles\1105lef9.default\cookies.txt -> Spyware.Cookie.Hitbox : Cleaned with backup
:mozilla.749:C:\Documents and Settings\Bucho71\Application Data\Mozilla\Firefox\Profiles\1105lef9.default\cookies.txt -> Spyware.Cookie.Hitbox : Cleaned with backup
:mozilla.750:C:\Documents and Settings\Bucho71\Application Data\Mozilla\Firefox\Profiles\1105lef9.default\cookies.txt -> Spyware.Cookie.Hitbox : Cleaned with backup
:mozilla.751:C:\Documents and Settings\Bucho71\Application Data\Mozilla\Firefox\Profiles\1105lef9.default\cookies.txt -> Spyware.Cookie.Hitbox : Cleaned with backup
:mozilla.782:C:\Documents and Settings\Bucho71\Application Data\Mozilla\Firefox\Profiles\1105lef9.default\cookies.txt -> Spyware.Cookie.Com : Cleaned with backup
:mozilla.783:C:\Documents and Settings\Bucho71\Application Data\Mozilla\Firefox\Profiles\1105lef9.default\cookies.txt -> Spyware.Cookie.Com : Cleaned with backup
:mozilla.784:C:\Documents and Settings\Bucho71\Application Data\Mozilla\Firefox\Profiles\1105lef9.default\cookies.txt -> Spyware.Cookie.Esomniture : Cleaned with backup
:mozilla.785:C:\Documents and Settings\Bucho71\Application Data\Mozilla\Firefox\Profiles\1105lef9.default\cookies.txt -> Spyware.Cookie.Esomniture : Cleaned with backup
:mozilla.787:C:\Documents and Settings\Bucho71\Application Data\Mozilla\Firefox\Profiles\1105lef9.default\cookies.txt -> Spyware.Cookie.Esomniture : Cleaned with backup
:mozilla.788:C:\Documents and Settings\Bucho71\Application Data\Mozilla\Firefox\Profiles\1105lef9.default\cookies.txt -> Spyware.Cookie.Esomniture : Cleaned with backup
:mozilla.790:C:\Documents and Settings\Bucho71\Application Data\Mozilla\Firefox\Profiles\1105lef9.default\cookies.txt -> Spyware.Cookie.Esomniture : Cleaned with backup
:mozilla.793:C:\Documents and Settings\Bucho71\Application Data\Mozilla\Firefox\Profiles\1105lef9.default\cookies.txt -> Spyware.Cookie.Esomniture : Cleaned with backup
:mozilla.798:C:\Documents and Settings\Bucho71\Application Data\Mozilla\Firefox\Profiles\1105lef9.default\cookies.txt -> Spyware.Cookie.Esomniture : Cleaned with backup
:mozilla.799:C:\Documents and Settings\Bucho71\Application Data\Mozilla\Firefox\Profiles\1105lef9.default\cookies.txt -> Spyware.Cookie.Esomniture : Cleaned with backup
:mozilla.801:C:\Documents and Settings\Bucho71\Application Data\Mozilla\Firefox\Profiles\1105lef9.default\cookies.txt -> Spyware.Cookie.Esomniture : Cleaned with backup
:mozilla.802:C:\Documents and Settings\Bucho71\Application Data\Mozilla\Firefox\Profiles\1105lef9.default\cookies.txt -> Spyware.Cookie.Esomniture : Cleaned with backup
:mozilla.803:C:\Documents and Settings\Bucho71\Application Data\Mozilla\Firefox\Profiles\1105lef9.default\cookies.txt -> Spyware.Cookie.Esomniture : Cleaned with backup
:mozilla.807:C:\Documents and Settings\Bucho71\Application Data\Mozilla\Firefox\Profiles\1105lef9.default\cookies.txt -> Spyware.Cookie.Esomniture : Cleaned with backup
:mozilla.808:C:\Documents and Settings\Bucho71\Application Data\Mozilla\Firefox\Profiles\1105lef9.default\cookies.txt -> Spyware.Cookie.Esomniture : Cleaned with backup
:mozilla.811:C:\Documents and Settings\Bucho71\Application Data\Mozilla\Firefox\Profiles\1105lef9.default\cookies.txt -> Spyware.Cookie.Esomniture : Cleaned with backup
:mozilla.812:C:\Documents and Settings\Bucho71\Application Data\Mozilla\Firefox\Profiles\1105lef9.default\cookies.txt -> Spyware.Cookie.Esomniture : Cleaned with backup
:mozilla.813:C:\Documents and Settings\Bucho71\Application Data\Mozilla\Firefox\Profiles\1105lef9.default\cookies.txt -> Spyware.Cookie.Esomniture : Cleaned with backup
:mozilla.819:C:\Documents and Settings\Bucho71\Application Data\Mozilla\Firefox\Profiles\1105lef9.default\cookies.txt -> Spyware.Cookie.Esomniture : Cleaned with backup
:mozilla.820:C:\Documents and Settings\Bucho71\Application Data\Mozilla\Firefox\Profiles\1105lef9.default\cookies.txt -> Spyware.Cookie.Esomniture : Cleaned with backup
:mozilla.823:C:\Documents and Settings\Bucho71\Application Data\Mozilla\Firefox\Profiles\1105lef9.default\cookies.txt -> Spyware.Cookie.Esomniture : Cleaned with backup
:mozilla.824:C:\Documents and Settings\Bucho71\Application Data\Mozilla\Firefox\Profiles\1105lef9.default\cookies.txt -> Spyware.Cookie.Esomniture : Cleaned with backup
:mozilla.825:C:\Documents and Settings\Bucho71\Application Data\Mozilla\Firefox\Profiles\1105lef9.default\cookies.txt -> Spyware.Cookie.Esomniture : Cleaned with backup
:mozilla.826:C:\Documents and Settings\Bucho71\Application Data\Mozilla\Firefox\Profiles\1105lef9.default\cookies.txt -> Spyware.Cookie.Esomniture : Cleaned with backup
:mozilla.827:C:\Documents and Settings\Bucho71\Application Data\Mozilla\Firefox\Profiles\1105lef9.default\cookies.txt -> Spyware.Cookie.Esomniture : Cleaned with backup
:mozilla.829:C:\Documents and Settings\Bucho71\Application Data\Mozilla\Firefox\Profiles\1105lef9.default\cookies.txt -> Spyware.Cookie.Esomniture : Cleaned with backup
:mozilla.830:C:\Documents and Settings\Bucho71\Application Data\Mozilla\Firefox\Profiles\1105lef9.default\cookies.txt -> Spyware.Cookie.Esomniture : Cleaned with backup
:mozilla.831:C:\Documents and Settings\Bucho71\Application Data\Mozilla\Firefox\Profiles\1105lef9.default\cookies.txt -> Spyware.Cookie.Esomniture : Cleaned with backup
:mozilla.832:C:\Documents and Settings\Bucho71\Application Data\Mozilla\Firefox\Profiles\1105lef9.default\cookies.txt -> Spyware.Cookie.Esomniture : Cleaned with backup
:mozilla.833:C:\Documents and Settings\Bucho71\Application Data\Mozilla\Firefox\Profiles\1105lef9.default\cookies.txt -> Spyware.Cookie.Esomniture : Cleaned with backup
:mozilla.835:C:\Documents and Settings\Bucho71\Application Data\Mozilla\Firefox\Profiles\1105lef9.default\cookies.txt -> Spyware.Cookie.Esomniture : Cleaned with backup
:mozilla.836:C:\Documents and Settings\Bucho71\Application Data\Mozilla\Firefox\Profiles\1105lef9.default\cookies.txt -> Spyware.Cookie.Esomniture : Cleaned with backup
:mozilla.837:C:\Documents and Settings\Bucho71\Application Data\Mozilla\Firefox\Profiles\1105lef9.default\cookies.txt -> Spyware.Cookie.Esomniture : Cleaned with backup
:mozilla.841:C:\Documents and Settings\Bucho71\Application Data\Mozilla\Firefox\Profiles\1105lef9.default\cookies.txt -> Spyware.Cookie.Esomniture : Cleaned with backup
:mozilla.842:C:\Documents and Settings\Bucho71\Application Data\Mozilla\Firefox\Profiles\1105lef9.default\cookies.txt -> Spyware.Cookie.Esomniture : Cleaned with backup
:mozilla.845:C:\Documents and Settings\Bucho71\Application Data\Mozilla\Firefox\Profiles\1105lef9.default\cookies.txt -> Spyware.Cookie.Esomniture : Cleaned with backup
:mozilla.848:C:\Documents and Settings\Bucho71\Application Data\Mozilla\Firefox\Profiles\1105lef9.default\cookies.txt -> Spyware.Cookie.Esomniture : Cleaned with backup
:mozilla.851:C:\Documents and Settings\Bucho71\Application Data\Mozilla\Firefox\Profiles\1105lef9.default\cookies.txt -> Spyware.Cookie.Esomniture : Cleaned with backup
:mozilla.852:C:\Documents and Settings\Bucho71\Application Data\Mozilla\Firefox\Profiles\1105lef9.default\cookies.txt -> Spyware.Cookie.Esomniture : Cleaned with backup
:mozilla.853:C:\Documents and Settings\Bucho71\Application Data\Mozilla\Firefox\Profiles\1105lef9.default\cookies.txt -> Spyware.Cookie.2o7 : Cleaned with backup
:mozilla.854:C:\Documents and Settings\Bucho71\Application Data\Mozilla\Firefox\Profiles\1105lef9.default\cookies.txt -> Spyware.Cookie.Esomniture : Cleaned with backup
:mozilla.856:C:\Documents and Settings\Bucho71\Application Data\Mozilla\Firefox\Profiles\1105lef9.default\cookies.txt -> Spyware.Cookie.Esomniture : Cleaned with backup
:mozilla.858:C:\Documents and Settings\Bucho71\Application Data\Mozilla\Firefox\Profiles\1105lef9.default\cookies.txt -> Spyware.Cookie.Esomniture : Cleaned with backup
:mozilla.860:C:\Documents and Settings\Bucho71\Application Data\Mozilla\Firefox\Profiles\1105lef9.default\cookies.txt -> Spyware.Cookie.Esomniture : Cleaned with backup
:mozilla.861:C:\Documents and Settings\Bucho71\Application Data\Mozilla\Firefox\Profiles\1105lef9.default\cookies.txt -> Spyware.Cookie.Esomniture : Cleaned with backup
:mozilla.862:C:\Documents and Settings\Bucho71\Application Data\Mozilla\Firefox\Profiles\1105lef9.default\cookies.txt -> Spyware.Cookie.Esomniture : Cleaned with backup
:mozilla.864:C:\Documents and Settings\Bucho71\Application Data\Mozilla\Firefox\Profiles\1105lef9.default\cookies.txt -> Spyware.Cookie.Clickzs : Cleaned with backup
:mozilla.865:C:\Documents and Settings\Bucho71\Application Data\Mozilla\Firefox\Profiles\1105lef9.default\cookies.txt -> Spyware.Cookie.Clickzs : Cleaned with backup
:mozilla.868:C:\Documents and Settings\Bucho71\Application Data\Mozilla\Firefox\Profiles\1105lef9.default\cookies.txt -> Spyware.Cookie.Esomniture : Cleaned with backup
:mozilla.869:C:\Documents and Settings\Bucho71\Application Data\Mozilla\Firefox\Profiles\1105lef9.default\cookies.txt -> Spyware.Cookie.Esomniture : Cleaned with backup
:mozilla.873:C:\Documents and Settings\Bucho71\Application Data\Mozilla\Firefox\Profiles\1105lef9.default\cookies.txt -> Spyware.Cookie.Coremetrics : Cleaned with backup
:mozilla.875:C:\Documents and Settings\Bucho71\Application Data\Mozilla\Firefox\Profiles\1105lef9.default\cookies.txt -> Spyware.Cookie.Webtrendslive : Cleaned with backup
:mozilla.876:C:\Documents and Settings\Bucho71\Application Data\Mozilla\Firefox\Profiles\1105lef9.default\cookies.txt -> Spyware.Cookie.2o7 : Cleaned with backup
:mozilla.877:C:\Documents and Settings\Bucho71\Application Data\Mozilla\Firefox\Profiles\1105lef9.default\cookies.txt -> Spyware.Cookie.Hitslink : Cleaned with backup
:mozilla.878:C:\Documents and Settings\Bucho71\Application Data\Mozilla\Firefox\Profiles\1105lef9.default\cookies.txt -> Spyware.Cookie.Hitslink : Cleaned with backup
:mozilla.879:C:\Documents and Settings\Bucho71\Application Data\Mozilla\Firefox\Profiles\1105lef9.default\cookies.txt -> Spyware.Cookie.Hitslink : Cleaned with backup
:mozilla.880:C:\Documents and Settings\Bucho71\Application Data\Mozilla\Firefox\Profiles\1105lef9.default\cookies.txt -> Spyware.Cookie.Hitslink : Cleaned with backup
:mozilla.885:C:\Documents and Settings\Bucho71\Application Data\Mozilla\Firefox\Profiles\1105lef9.default\cookies.txt -> Spyware.Cookie.Esomniture : Cleaned with backup
:mozilla.886:C:\Documents and Settings\Bucho71\Application Data\Mozilla\Firefox\Profiles\1105lef9.default\cookies.txt -> Spyware.Cookie.Esomniture : Cleaned with backup
:mozilla.887:C:\Documents and Settings\Bucho71\Application Data\Mozilla\Firefox\Profiles\1105lef9.default\cookies.txt -> Spyware.Cookie.Esomniture : Cleaned with backup
:mozilla.888:C:\Documents and Settings\Bucho71\Application Data\Mozilla\Firefox\Profiles\1105lef9.default\cookies.txt -> Spyware.Cookie.Esomniture : Cleaned with backup
:mozilla.889:C:\Documents and Settings\Bucho71\Application Data\Mozilla\Firefox\Profiles\1105lef9.default\cookies.txt -> Spyware.Cookie.Esomniture : Cleaned with backup
:mozilla.890:C:\Documents and Settings\Bucho71\Application Data\Mozilla\Firefox\Profiles\1105lef9.default\cookies.txt -> Spyware.Cookie.Esomniture : Cleaned with backup
:mozilla.910:C:\Documents and Settings\Bucho71\Application Data\Mozilla\Firefox\Profiles\1105lef9.default\cookies.txt -> Spyware.Cookie.2o7 : Cleaned with backup
:mozilla.919:C:\Documents and Settings\Bucho71\Application Data\Mozilla\Firefox\Profiles\1105lef9.default\cookies.txt -> Spyware.Cookie.Centrport : Cleaned with backup
:mozilla.950:C:\Documents and Settings\Bucho71\Application Data\Mozilla\Firefox\Profiles\1105lef9.default\cookies.txt -> Spyware.Cookie.2o7 : Cleaned with backup

serveist

log continued:


C:\Documents and Settings\Bucho71\Cookies\bucho71@ad.yieldmanager[1].txt -> Spyware.Cookie.Yieldmanager : Cleaned with backup
C:\Documents and Settings\Bucho71\Cookies\bucho71@advertising[2].txt -> Spyware.Cookie.Advertising : Cleaned with backup
C:\Documents and Settings\Bucho71\Cookies\bucho71@as-us.falkag[1].txt -> Spyware.Cookie.Falkag : Cleaned with backup
C:\Documents and Settings\Bucho71\Cookies\bucho71@atdmt[2].txt -> Spyware.Cookie.Atdmt : Cleaned with backup
C:\Documents and Settings\Bucho71\Cookies\bucho71@casalemedia[1].txt -> Spyware.Cookie.Casalemedia : Cleaned with backup
C:\Documents and Settings\Bucho71\Cookies\bucho71@doubleclick[1].txt -> Spyware.Cookie.Doubleclick : Cleaned with backup
C:\Documents and Settings\Bucho71\Cookies\bucho71@fastclick[2].txt -> Spyware.Cookie.Fastclick : Cleaned with backup
C:\Documents and Settings\Bucho71\Cookies\bucho71@mediaplex[1].txt -> Spyware.Cookie.Mediaplex : Cleaned with backup
C:\Documents and Settings\Bucho71\Cookies\bucho71@questionmarket[1].txt -> Spyware.Cookie.Questionmarket : Cleaned with backup
C:\Documents and Settings\Bucho71\Cookies\bucho71@sel.as-us.falkag[2].txt -> Spyware.Cookie.Falkag : Cleaned with backup
C:\Documents and Settings\Bucho71\Cookies\bucho71@trafficmp[2].txt -> Spyware.Cookie.Trafficmp : Cleaned with backup
C:\Documents and Settings\Bucho71\Cookies\bucho71@tribalfusion[1].txt -> Spyware.Cookie.Tribalfusion : Cleaned with backup
C:\Documents and Settings\Bucho71\Cookies\bucho71@valueclick[2].txt -> Spyware.Cookie.Valueclick : Cleaned with backup
C:\Documents and Settings\Bucho71\Cookies\bucho71@z1.adserver[1].txt -> Spyware.Cookie.Adserver : Cleaned with backup
C:\Documents and Settings\Bucho71\Desktop\Virus Folder\aimfix_quarantine\10865_wuauclt.dll.bak -> Downloader.Small : Cleaned with backup
C:\Documents and Settings\Bucho71\Desktop\Virus Folder\aimfix_quarantine\1735_elitemediapop.exe.bak -> Trojan.LowZones.am : Cleaned with backup
C:\Documents and Settings\Bucho71\Desktop\Virus Folder\aimfix_quarantine\1738_scvhost.exe.bak -> Backdoor.SdBot.alz : Cleaned with backup
C:\Documents and Settings\Bucho71\Desktop\Virus Folder\aimfix_quarantine\aimfix_quarantine\3138_wuauclt.dll.bak -> Downloader.Small : Cleaned with backup
C:\Documents and Settings\Bucho71\Desktop\Virus Folder\backups\backup-20060204-055935-317.dll -> Adware.MediaMotor : Cleaned with backup
C:\Documents and Settings\Bucho71\Desktop\Virus Folder\backups\backup-20060204-055935-952.dll -> Spyware.SideStep : Cleaned with backup
C:\Documents and Settings\Bucho71\Local Settings\Application Data\Mozilla\Firefox\Profiles\1105lef9.default\Cache\33A7BAB7d01 -> Backdoor.SdBot.alz : Cleaned with backup
C:\Documents and Settings\Bucho71\Local Settings\Temporary Internet Files\Content.IE5\ZDR09RN0\rcverlib[1].exe -> Downloader.Qoologic.ax : Cleaned with backup
C:\Documents and Settings\LocalService\Cookies\system@ad.yieldmanager[2].txt -> Spyware.Cookie.Yieldmanager : Cleaned with backup
C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\LWPO3EBN\installer_251[1].exe -> Downloader.Qoologic.al : Cleaned with backup
C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\LWPO3EBN\mediaview[1].cab/elite.ocx -> Adware.MediaMotor : Error during cleaning
C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\LWPO3EBN\titdric[1].cab/drwst.exe -> Adware.MDH : Cleaned with backup
C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\LWPO3EBN\ZIIMG001[1].exe -> Adware.ZenoSearch : Cleaned with backup
C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\OHLBKSKD\optimize[1].exe -> Downloader.Dyfuca.EI : Cleaned with backup
C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\OHLBKSKD\whCC-GIANT[1].exe/WhAgent.exe -> Spyware.WebHancer : Cleaned with backup
C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\OHLBKSKD\ZIFI002[1].exe -> Adware.ZenoSearch : Cleaned with backup
C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\QHI9WT21\876057[1].exe -> Adware.Mirar : Cleaned with backup
C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\QHI9WT21\drsmartload_js[1].htm -> Downloader.IstBar.j : Cleaned with backup
C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\RJTUVNXP\elitemediapop[1].exe -> Trojan.LowZones.am : Cleaned with backup
C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\RJTUVNXP\htwfdr[1].exe -> Downloader.Small.bmx : Cleaned with backup
C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\RJTUVNXP\kcash[1].exe -> Trojan.LowZones.dk : Cleaned with backup
C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\RJTUVNXP\mtrslib2[1].js -> Downloader.Small.ag : Cleaned with backup
C:\kc.exe -> Trojan.LowZones.dk : Cleaned with backup
C:\Program Files\Microsoft AntiSpyware\Quarantine\05F139D9-2F7E-4D16-ADC0-E4A88B\4DB0AD4A-6C93-4B52-AD56-6E055C -> Adware.Suggestor : Cleaned with backup
C:\Program Files\Microsoft AntiSpyware\Quarantine\05F139D9-2F7E-4D16-ADC0-E4A88B\DCB6E04A-F994-4AAA-BF85-0D6779 -> Adware.Suggestor : Cleaned with backup
C:\Program Files\Microsoft AntiSpyware\Quarantine\3779CC38-9EB8-4B09-8C31-90E6EC\449540EE-81E0-4C97-B719-45AEC9 -> Spyware.WebHancer : Cleaned with backup
C:\Program Files\Microsoft AntiSpyware\Quarantine\3779CC38-9EB8-4B09-8C31-90E6EC\5C48DBE0-E010-4255-9A97-9B6BBB -> Spyware.WebHancer : Cleaned with backup
C:\Program Files\Microsoft AntiSpyware\Quarantine\3779CC38-9EB8-4B09-8C31-90E6EC\DBACA3BB-C916-4199-906F-C45343 -> Spyware.WebHancer : Cleaned with backup
C:\Program Files\Microsoft AntiSpyware\Quarantine\3AC461EE-F92D-42B1-AF5B-22C21B\2F457080-9C4C-40FC-8F45-0B82DF -> Adware.Suggestor : Cleaned with backup
C:\Program Files\Microsoft AntiSpyware\Quarantine\3AC461EE-F92D-42B1-AF5B-22C21B\449C705A-2A81-4AA3-B700-8EC4AB -> Adware.Suggestor : Cleaned with backup
C:\Program Files\Microsoft AntiSpyware\Quarantine\66CD4FCC-B3A4-4C5F-9367-1A102C\9B174419-3BBF-4875-87B7-C42AE3 -> Adware.Suggestor : Cleaned with backup
C:\Program Files\Microsoft AntiSpyware\Quarantine\7E511706-D11F-4001-9E5B-855DA9\1E07923D-BF33-446B-8B34-901C62 -> Downloader.Small : Cleaned with backup
C:\Program Files\Microsoft AntiSpyware\Quarantine\823AEC70-B39D-4ACC-82E4-B5DFB3\30525F22-643E-4053-9B74-602E73 -> Adware.Suggestor : Cleaned with backup
C:\Program Files\Microsoft AntiSpyware\Quarantine\9E789A0D-CF61-47D5-A681-0B365D\E6734290-2F7D-4F9F-94DF-0275E6 -> Adware.Suggestor : Cleaned with backup
C:\Program Files\Microsoft AntiSpyware\Quarantine\B2545E19-026E-43F0-80E7-DA55CA\200E801F-A795-4AF8-A7D9-81F954 -> Downloader.Qoologic.ac : Cleaned with backup
C:\Program Files\Microsoft AntiSpyware\Quarantine\B2545E19-026E-43F0-80E7-DA55CA\62D4AA36-7AEA-4FBC-B3E4-5CF905 -> Downloader.Qoologic.ac : Cleaned with backup
C:\Program Files\Microsoft AntiSpyware\Quarantine\B2545E19-026E-43F0-80E7-DA55CA\63411489-CF03-4C1F-8062-B20B85 -> Downloader.Qoologic.ac : Cleaned with backup
C:\Program Files\Microsoft AntiSpyware\Quarantine\B2545E19-026E-43F0-80E7-DA55CA\7EC58ADA-1E5F-47B8-AA7A-8421BF -> Downloader.Qoologic.ac : Cleaned with backup
C:\Program Files\Microsoft AntiSpyware\Quarantine\B2545E19-026E-43F0-80E7-DA55CA\98F2BD3B-4830-4B93-988F-1D1490 -> Downloader.Qoologic.ac : Cleaned with backup
C:\Program Files\Microsoft AntiSpyware\Quarantine\B2545E19-026E-43F0-80E7-DA55CA\AFE21EAE-05B9-4E5E-814A-4F35E0 -> Downloader.Qoologic.ac : Cleaned with backup
C:\Program Files\Microsoft AntiSpyware\Quarantine\CF12E8D2-8CFA-4849-8E92-F44627\86BBD398-9643-4879-86B4-1C05B8 -> Downloader.Small : Cleaned with backup
C:\Program Files\Yahoo!\YPSR\Quarantine\ppq11.tmp -> Spyware.Cookie.Falkag : Cleaned with backup
C:\Program Files\Yahoo!\YPSR\Quarantine\ppq15.tmp -> Backdoor.SdBot.alz : Cleaned with backup
C:\Program Files\Yahoo!\YPSR\Quarantine\ppq1E.tmp\SskBho.dll -> Adware.SurfSide : Cleaned with backup
C:\Program Files\Yahoo!\YPSR\Quarantine\ppq1E.tmp\SskCore.dll -> Adware.SurfSide : Cleaned with backup
C:\Program Files\Yahoo!\YPSR\Quarantine\ppq23.tmp -> Spyware.Cookie.Falkag : Cleaned with backup
C:\Program Files\Yahoo!\YPSR\Quarantine\ppq25.tmp -> Spyware.Cookie.Bfast : Cleaned with backup
C:\Program Files\Yahoo!\YPSR\Quarantine\ppq252.tmp -> Spyware.Cookie.2o7 : Cleaned with backup
C:\Program Files\Yahoo!\YPSR\Quarantine\ppq255.tmp -> Spyware.Cookie.Advertising : Cleaned with backup
C:\Program Files\Yahoo!\YPSR\Quarantine\ppq256.tmp -> Spyware.Cookie.Pro-market : Cleaned with backup
C:\Program Files\Yahoo!\YPSR\Quarantine\ppq257.tmp -> Spyware.Cookie.Doubleclick : Cleaned with backup
C:\Program Files\Yahoo!\YPSR\Quarantine\ppq258.tmp -> Spyware.Cookie.Ru4 : Cleaned with backup
C:\Program Files\Yahoo!\YPSR\Quarantine\ppq259.tmp -> Spyware.Cookie.Hitbox : Cleaned with backup
C:\Program Files\Yahoo!\YPSR\Quarantine\ppq25A.tmp -> Spyware.Cookie.Mediaplex : Cleaned with backup
C:\Program Files\Yahoo!\YPSR\Quarantine\ppq25B.tmp -> Spyware.Cookie.Questionmarket : Cleaned with backup
C:\Program Files\Yahoo!\YPSR\Quarantine\ppq25C.tmp -> Spyware.Cookie.Serving-sys : Cleaned with backup
C:\Program Files\Yahoo!\YPSR\Quarantine\ppq25D.tmp -> Spyware.Cookie.Sextracker : Cleaned with backup
C:\Program Files\Yahoo!\YPSR\Quarantine\ppq25E.tmp -> Spyware.Cookie.Sextracker : Cleaned with backup
C:\Program Files\Yahoo!\YPSR\Quarantine\ppq25F.tmp -> Spyware.Cookie.Statcounter : Cleaned with backup
C:\Program Files\Yahoo!\YPSR\Quarantine\ppq26.tmp -> Spyware.Cookie.Serving-sys : Cleaned with backup
C:\Program Files\Yahoo!\YPSR\Quarantine\ppq260.tmp -> Spyware.Cookie.Trafficmp : Cleaned with backup
C:\Program Files\Yahoo!\YPSR\Quarantine\ppq261.tmp -> Spyware.Cookie.Valuead : Cleaned with backup
C:\Program Files\Yahoo!\YPSR\Quarantine\ppq262.tmp -> Spyware.Cookie.Valueclick : Cleaned with backup
C:\Program Files\Yahoo!\YPSR\Quarantine\ppq263.tmp -> Spyware.Cookie.Webtrendslive : Cleaned with backup
C:\Program Files\Yahoo!\YPSR\Quarantine\ppq28.tmp -> Spyware.Cookie.Centrport : Cleaned with backup
C:\Program Files\Yahoo!\YPSR\Quarantine\ppq2D.tmp -> Spyware.Cookie.Hitbox : Cleaned with backup
C:\Program Files\Yahoo!\YPSR\Quarantine\ppq2E.tmp -> Spyware.Cookie.Hitbox : Cleaned with backup
C:\Program Files\Yahoo!\YPSR\Quarantine\ppq2F.tmp -> Spyware.Cookie.Hitbox : Cleaned with backup
C:\Program Files\Yahoo!\YPSR\Quarantine\ppq31.tmp -> Spyware.Cookie.Linksynergy : Cleaned with backup
C:\Program Files\Yahoo!\YPSR\Quarantine\ppq34.tmp -> Spyware.Cookie.Atdmt : Cleaned with backup
C:\Program Files\Yahoo!\YPSR\Quarantine\ppq35.tmp -> Spyware.Cookie.247realmedia : Cleaned with backup
C:\Program Files\Yahoo!\YPSR\Quarantine\ppq36.tmp -> Spyware.Cookie.2o7 : Cleaned with backup
C:\Program Files\Yahoo!\YPSR\Quarantine\ppq3A.tmp -> Spyware.Cookie.Advertising : Cleaned with backup
C:\Program Files\Yahoo!\YPSR\Quarantine\ppq3B.tmp -> Spyware.Cookie.Serving-sys : Cleaned with backup
C:\Program Files\Yahoo!\YPSR\Quarantine\ppq3C.tmp -> Spyware.Cookie.Casalemedia : Cleaned with backup
C:\Program Files\Yahoo!\YPSR\Quarantine\ppq3D.tmp -> Spyware.Cookie.Centrport : Cleaned with backup
C:\Program Files\Yahoo!\YPSR\Quarantine\ppq3E.tmp -> Spyware.Cookie.Bridgetrack : Cleaned with backup
C:\Program Files\Yahoo!\YPSR\Quarantine\ppq3F.tmp -> Spyware.Cookie.Clickagents : Cleaned with backup
C:\Program Files\Yahoo!\YPSR\Quarantine\ppq40.tmp -> Spyware.Cookie.Coremetrics : Cleaned with backup
C:\Program Files\Yahoo!\YPSR\Quarantine\ppq41.tmp -> Spyware.Cookie.Coremetrics : Cleaned with backup
C:\Program Files\Yahoo!\YPSR\Quarantine\ppq43.tmp -> Spyware.Cookie.Doubleclick : Cleaned with backup
C:\Program Files\Yahoo!\YPSR\Quarantine\ppq44.tmp -> Spyware.Cookie.Ru4 : Cleaned with backup
C:\Program Files\Yahoo!\YPSR\Quarantine\ppq45.tmp -> Spyware.Cookie.Falkag : Cleaned with backup
C:\Program Files\Yahoo!\YPSR\Quarantine\ppq46.tmp -> Spyware.Cookie.Fastclick : Cleaned with backup
C:\Program Files\Yahoo!\YPSR\Quarantine\ppq47.tmp -> Spyware.Cookie.Hitbox : Cleaned with backup
C:\Program Files\Yahoo!\YPSR\Quarantine\ppq48.tmp -> Spyware.Cookie.Hitbox : Cleaned with backup
C:\Program Files\Yahoo!\YPSR\Quarantine\ppq49.tmp -> Spyware.Cookie.Hitslink : Cleaned with backup
C:\Program Files\Yahoo!\YPSR\Quarantine\ppq4C.tmp -> Spyware.Cookie.Mediaplex : Cleaned with backup
C:\Program Files\Yahoo!\YPSR\Quarantine\ppq4E.tmp -> Spyware.Cookie.Questionmarket : Cleaned with backup
C:\Program Files\Yahoo!\YPSR\Quarantine\ppq50.tmp -> Spyware.Cookie.Serving-sys : Cleaned with backup
C:\Program Files\Yahoo!\YPSR\Quarantine\ppq51.tmp -> Spyware.Cookie.Tradedoubler : Cleaned with backup
C:\Program Files\Yahoo!\YPSR\Quarantine\ppq52.tmp -> Spyware.Cookie.Trafficmp : Cleaned with backup
C:\Program Files\Yahoo!\YPSR\Quarantine\ppq53.tmp -> Spyware.Cookie.Tribalfusion : Cleaned with backup
C:\Program Files\Yahoo!\YPSR\Quarantine\ppq54.tmp -> Spyware.Cookie.Valueclick : Cleaned with backup
C:\Program Files\Yahoo!\YPSR\Quarantine\ppq55.tmp -> Spyware.Cookie.Adserver : Cleaned with backup
C:\Program Files\Yahoo!\YPSR\Quarantine\ppq57.tmp -> Spyware.Cookie.Hitbox : Cleaned with backup
C:\Program Files\Yahoo!\YPSR\Quarantine\ppq58.tmp -> Spyware.Cookie.Fastclick : Cleaned with backup
C:\Program Files\Yahoo!\YPSR\Quarantine\ppq59.tmp -> Spyware.Cookie.Hitbox : Cleaned with backup
C:\Program Files\Yahoo!\YPSR\Quarantine\ppq5A.tmp -> Spyware.Cookie.Tradedoubler : Cleaned with backup
C:\Program Files\Yahoo!\YPSR\Quarantine\ppq5C.tmp -> Spyware.Cookie.Qksrv : Cleaned with backup
C:\Program Files\Yahoo!\YPSR\Quarantine\ppq5D.tmp -> Spyware.Cookie.Revenue : Cleaned with backup
C:\Program Files\Yahoo!\YPSR\Quarantine\ppq5E.tmp -> Spyware.Cookie.Sexlist : Cleaned with backup
C:\Program Files\Yahoo!\YPSR\Quarantine\ppq5F.tmp -> Spyware.Cookie.Sextracker : Cleaned with backup
C:\Program Files\Yahoo!\YPSR\Quarantine\ppq60.tmp -> Spyware.Cookie.Targetnet : Cleaned with backup
C:\Program Files\Yahoo!\YPSR\Quarantine\ppq61.tmp -> Spyware.Cookie.Tribalfusion : Cleaned with backup
C:\Program Files\Yahoo!\YPSR\Quarantine\ppq64.tmp -> Spyware.Cookie.Pro-market : Cleaned with backup
C:\Program Files\Yahoo!\YPSR\Quarantine\ppq66.tmp -> Spyware.Cookie.Com : Cleaned with backup
C:\Program Files\Yahoo!\YPSR\Quarantine\ppq68.tmp -> Spyware.Cookie.Atdmt : Cleaned with backup
C:\Program Files\Yahoo!\YPSR\Quarantine\ppq6A.tmp -> Spyware.Cookie.Falkag : Cleaned with backup
C:\Program Files\Yahoo!\YPSR\Quarantine\ppq80.tmp -> Spyware.Cookie.Burstnet : Cleaned with backup
C:\Program Files\Yahoo!\YPSR\Quarantine\ppq84.tmp -> Spyware.Cookie.Webtrendslive : Cleaned with backup
C:\Program Files\Yahoo!\YPSR\Quarantine\ppqD0.tmp -> Spyware.Cookie.Bfast : Cleaned with backup
C:\Program Files\Yahoo!\YPSR\Quarantine\ppqD2.tmp -> Spyware.Cookie.Bluestreak : Cleaned with backup
C:\Program Files\Yahoo!\YPSR\Quarantine\ppqD3.tmp -> Spyware.Cookie.Burstnet : Cleaned with backup
C:\Program Files\Yahoo!\YPSR\Quarantine\ppqD4.tmp -> Spyware.Cookie.Casalemedia : Cleaned with backup
C:\Program Files\Yahoo!\YPSR\Quarantine\ppqD5.tmp -> Spyware.Cookie.Bridgetrack : Cleaned with backup
C:\Program Files\Yahoo!\YPSR\Quarantine\ppqD6.tmp -> Spyware.Cookie.Com : Cleaned with backup
C:\Program Files\Yahoo!\YPSR\Quarantine\ppqD9.tmp -> Spyware.Cookie.Hitbox : Cleaned with backup
C:\Program Files\Yahoo!\YPSR\Quarantine\ppqDB.tmp -> Spyware.Cookie.Hitbox : Cleaned with backup
C:\Program Files\Yahoo!\YPSR\Quarantine\ppqDE.tmp -> Spyware.Cookie.Onestat : Cleaned with backup
C:\Program Files\Yahoo!\YPSR\Quarantine\ppqDF.tmp -> Spyware.Cookie.Statcounter : Cleaned with backup
C:\WINDOWS\876057.exe -> Adware.Mirar : Cleaned with backup
C:\WINDOWS\Downloaded Program Files\CONFLICT.1\SbCIe02a.dll -> Spyware.SideStep : Cleaned with backup
C:\WINDOWS\Downloaded Program Files\SbCIe02a.dll -> Spyware.SideStep : Cleaned with backup
C:\WINDOWS\htwfdr.exe -> Downloader.Small.bmx : Cleaned with backup
C:\WINDOWS\system32\vgactl.cpl -> Downloader.Qoologic.ad : Cleaned with backup
C:\WINDOWS\Temp\D2BE2.tmp/drwst.exe -> Adware.MDH : Cleaned with backup
C:\WINDOWS\Temp\iE5.tmp -> Spyware.SurfSide : Cleaned with backup
C:\WINDOWS\ZIFI002.exe -> Adware.ZenoSearch : Cleaned with backup
C:\WINDOWS\ZIIMG001.exe -> Adware.ZenoSearch : Cleaned with backup


::Report End

Crunchie

That's good. Looks like Ewido cleaned up a few objects .

Now that your PC is clean you need to follow these easy steps to keeping it this way:

Secure your Internet Explorer by going here and following the instructions there.

Better yet, use an alternative browser! Download FireFox and give it a run. It is far more secure than Internet Explorer. Or, you can get Opera which in my opinion, is better still.

Use a firewall to help prevent your PC's control being usurped by undesireables. There is a link to a good, free firewall in my signature.

Install and keep updated, Ewido anti-malware, Ad-Aware SE and Spybot S&D.
Run them both on a regular basis, following the manufacturer's recommendations.

Install an anti-virus. There are some good, free AV's available today. Make sure that it is updated regularly and have it scan your system often.

Check for Windows Updates. Microsoft regularly post updates for your systems safe running. Make sure to take advantage of this. Reboot when installed and return to make sure there are no others.


Clear your Temp folders.
Clear out your Temporary internet files and other temp files.
Go to Start > Settings > Control Panel >Internet Options.
Under the General tab click the Delete temporary internet files,
delete all Offline content as well. Clear out Cookies.

Also, go to Start > Find/search > Files or folders > in the named box, type: *.tmp and choose Edit > select all -> File > delete.

Empty/delete the entire contents of the C:\Windows\temp folder and C:\temp folder, if you have one. (Contents but not the folder itself.)

C:\Documents and Settings\username\Local Settings\Temp\

In order to view these files you may have to select 'show hidden files/folders.' Instructions on how to here.

Empty the Recycle Bin.

For XP users.
After something like this it is a good idea to Flush the Restore Points and start fresh.
To flush the XP system Restore Points.

Go to Start>Run and type msconfig. Press enter.

When msconfig opens, click the Launch System Restore Button.
On the next page, click the System Restore Settings link on the left.

Check the box labelled 'Turn off System restore'.

Reboot. Go back in and Turn System Restore Back on. A new Restore Point will be created.

Note that all previous restore points will be lost.