ashlex

Hello, and welcome to DaniWeb. Please run HJT and select Do system scan only. Then check (tick) these items.

O2 - BHO: URLLink - {4A2AACF3-ADF6-11D5-98A9-00E018981B9E} - C:\Program Files\NewDotNet\newdotnet7_22.dll

O4 - HKLM\..\Run: [New.net Startup] rundll32 C:\PROGRA~1\NEWDOT~1\NEWDOT~2.DLL,ClientStartup -s

O8 - Extra context menu item: Block frame with Ad Muncher - http://www.admuncher.com/request_wil...=menu_ie_frame

O8 - Extra context menu item: Block image with Ad Muncher - http://www.admuncher.com/request_wil...=menu_ie_image

O8 - Extra context menu item: Block link with Ad Muncher - http://www.admuncher.com/request_wil...d=menu_ie_link

O8 - Extra context menu item: Don't filter page with Ad Muncher - http://www.admuncher.com/request_wil...enu_ie_exclude

O8 - Extra context menu item: Report page to the Ad Muncher developers - http://www.admuncher.com/request_wil...menu_ie_report

O16 - DPF: {58172624-85DD-4482-9E64-02ADCA637E96} (shizmoo Class) - http://www.shizmoo.com/activex/web665.cab

Click Fix Checked.

____________________________________________________

First, Download LSPFix.exe to a convenient location. Do NOT run this program. This is only to be used if you lose Internet Access after removing NewDotNet.

To Get rid of NewDotNet, go to:

Start > Control Panel > Add or Remove Programs and remove the following:

New.Net Applications or New.Net Domains (anything that says New.Net)

If it is not there, go here and follow Procedure 4: NewDotNet Removal Procedure 4.

In the event that you lose Internet access after removing New.Net, please double-click LSPFix.exe that you downloaded earlier. You will see 2 panels. If there is any file listed in the "Remove" panel on the right-side, leave it as is and just click "Finish>>" then reboot your computer and you should now have access to the Internet. If nothing is listed under the "Remove Panel", do NOT do anything - just close the program. You will need to use another computer to come back here for further instructions on what to do.

_________________________________________________________

Please download ewido anti-malware it is a free version of the program.

1. Install ewido anti-malware
2. When installing, under "Additional Options" uncheck..
   • Install background guard
   • Install scan via context menu
3. Launch ewido, there should be an icon on your desktop, double-click it.
4. The program will now open to the main screen.
5. When you run ewido for the first time, you may get a warning "Database could not be found!". Click OK. We will fix this in a moment.
   
6. You will need to update ewido to the latest definition files.
   • On the left hand side of the main screen click update.
   • Then click on Start Update.
7. The update will start and a progress bar will show the updates being installed.
   (the status bar at the bottom will display ("Update successful" )

If you are having problems with the updater, you can use this link to manually update ewido.
ewido manual updates

Once the updates are installed do the following:

• Open up Ewido
• Click on scanner
• Click on Complete System Scan and the scan will begin.
• You will be prompted to clean the first infection.
• Select "Perform action on all infections", then proceed.
• Once the scan has completed, there will be a button located on the bottom of the screen named Save report
• Click Save report.
• Save the report .txt file to your desktop or a location where you can find it easily.
• Close ewido anti-malware.

Reboot.

________________________________________________________

Please post a new HJT log, and the ewido log

thanks, i appreciate this a lot

Be sure to post back with a new log tho, along with the Ewido scan log.

It looks like this will take more then 1 post.

Thanks.

---------------------------------------------------------
ewido anti-malware - Scan report
---------------------------------------------------------

+ Created on: 7:24:09 PM, 5/16/2006
+ Report-Checksum: B1D3C6AA

+ Scan result:

C:\Documents and Settings\dady\Cookies\dady@2o7[1].txt -> TrackingCookie.2o7 : Cleaned with backup
C:\Documents and Settings\dady\Cookies\dady@advertising[2].txt -> TrackingCookie.Advertising : Cleaned with backup
C:\Documents and Settings\dady\Cookies\dady@atdmt[2].txt -> TrackingCookie.Atdmt : Cleaned with backup
C:\Documents and Settings\dady\Cookies\dady@bluestreak[2].txt -> TrackingCookie.Bluestreak : Cleaned with backup
C:\Documents and Settings\dady\Cookies\dady@doubleclick[1].txt -> TrackingCookie.Doubleclick : Cleaned with backup
C:\Documents and Settings\dady\Cookies\dady@edge.ru4[1].txt -> TrackingCookie.Ru4 : Cleaned with backup
C:\Documents and Settings\dady\Cookies\dady@mediaplex[1].txt -> TrackingCookie.Mediaplex : Cleaned with backup
C:\Documents and Settings\dady\Cookies\dady@msnportal.112.2o7[1].txt -> TrackingCookie.2o7 : Cleaned with backup
C:\Documents and Settings\dady\Cookies\dady@overture[2].txt -> TrackingCookie.Overture : Cleaned with backup
C:\Documents and Settings\dady\Cookies\dady@server.iad.liveperson[1].txt -> TrackingCookie.Liveperson : Cleaned with backup
C:\Documents and Settings\dady\Cookies\dady@trafficmp[1].txt -> TrackingCookie.Trafficmp : Cleaned with backup
C:\Documents and Settings\dady\Cookies\dady@www.myaffiliateprogram[1].txt -> TrackingCookie.Myaffiliateprogram : Cleaned with backup
:mozilla.7:C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\6ugt19cx.default\cookies.txt -> TrackingCookie.Tribalfusion : Cleaned with backup
:mozilla.10:C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\6ugt19cx.default\cookies.txt -> TrackingCookie.Burstnet : Cleaned with backup
:mozilla.11:C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\6ugt19cx.default\cookies.txt -> TrackingCookie.Burstnet : Cleaned with backup
:mozilla.19:C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\6ugt19cx.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned with backup
:mozilla.20:C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\6ugt19cx.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned with backup
:mozilla.21:C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\6ugt19cx.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned with backup
:mozilla.25:C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\6ugt19cx.default\cookies.txt -> TrackingCookie.Doubleclick : Cleaned with backup
:mozilla.26:C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\6ugt19cx.default\cookies.txt -> TrackingCookie.Zedo : Cleaned with backup
:mozilla.27:C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\6ugt19cx.default\cookies.txt -> TrackingCookie.Zedo : Cleaned with backup
:mozilla.28:C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\6ugt19cx.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned with backup
:mozilla.29:C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\6ugt19cx.default\cookies.txt -> TrackingCookie.Fastclick : Cleaned with backup
:mozilla.30:C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\6ugt19cx.default\cookies.txt -> TrackingCookie.Advertising : Cleaned with backup
:mozilla.31:C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\6ugt19cx.default\cookies.txt -> TrackingCookie.Advertising : Cleaned with backup
:mozilla.32:C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\6ugt19cx.default\cookies.txt -> TrackingCookie.Advertising : Cleaned with backup
:mozilla.33:C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\6ugt19cx.default\cookies.txt -> TrackingCookie.Atdmt : Cleaned with backup
:mozilla.37:C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\6ugt19cx.default\cookies.txt -> TrackingCookie.Valueclick : Cleaned with backup
:mozilla.38:C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\6ugt19cx.default\cookies.txt -> TrackingCookie.Valueclick : Cleaned with backup
:mozilla.39:C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\6ugt19cx.default\cookies.txt -> TrackingCookie.Mediaplex : Cleaned with backup
:mozilla.40:C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\6ugt19cx.default\cookies.txt -> TrackingCookie.Adserver : Cleaned with backup
:mozilla.41:C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\6ugt19cx.default\cookies.txt -> TrackingCookie.Adserver : Cleaned with backup
:mozilla.50:C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\6ugt19cx.default\cookies.txt -> TrackingCookie.Doubleclick : Cleaned with backup
:mozilla.56:C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\6ugt19cx.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned with backup
:mozilla.57:C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\6ugt19cx.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned with backup
C:\Documents and Settings\Guest\Cookies\guest@2o7[1].txt -> TrackingCookie.2o7 : Cleaned with backup
C:\Documents and Settings\Guest\Cookies\guest@ad.yieldmanager[1].txt -> TrackingCookie.Yieldmanager : Cleaned with backup
C:\Documents and Settings\Guest\Cookies\guest@adopt.specificclick[1].txt -> TrackingCookie.Specificclick : Cleaned with backup
C:\Documents and Settings\Guest\Cookies\guest@ads.addynamix[2].txt -> TrackingCookie.Addynamix : Cleaned with backup
C:\Documents and Settings\Guest\Cookies\guest@ads.pointroll[1].txt -> TrackingCookie.Pointroll : Cleaned with backup
C:\Documents and Settings\Guest\Cookies\guest@advertising[2].txt -> TrackingCookie.Advertising : Cleaned with backup
C:\Documents and Settings\Guest\Cookies\guest@as-us.falkag[1].txt -> TrackingCookie.Falkag : Cleaned with backup
C:\Documents and Settings\Guest\Cookies\guest@as.casalemedia[1].txt -> TrackingCookie.Casalemedia : Cleaned with backup
C:\Documents and Settings\Guest\Cookies\guest@atdmt[2].txt -> TrackingCookie.Atdmt : Cleaned with backup
C:\Documents and Settings\Guest\Cookies\guest@bluestreak[2].txt -> TrackingCookie.Bluestreak : Cleaned with backup
C:\Documents and Settings\Guest\Cookies\guest@burstnet[2].txt -> TrackingCookie.Burstnet : Cleaned with backup
C:\Documents and Settings\Guest\Cookies\guest@casalemedia[2].txt -> TrackingCookie.Casalemedia : Cleaned with backup
C:\Documents and Settings\Guest\Cookies\guest@com[2].txt -> TrackingCookie.Com : Cleaned with backup
C:\Documents and Settings\Guest\Cookies\guest@data.coremetrics[1].txt -> TrackingCookie.Coremetrics : Cleaned with backup
C:\Documents and Settings\Guest\Cookies\guest@data1.perf.overture[1].txt -> TrackingCookie.Overture : Cleaned with backup
C:\Documents and Settings\Guest\Cookies\guest@data2.perf.overture[2].txt -> TrackingCookie.Overture : Cleaned with backup
C:\Documents and Settings\Guest\Cookies\guest@doubleclick[1].txt -> TrackingCookie.Doubleclick : Cleaned with backup
C:\Documents and Settings\Guest\Cookies\guest@e-2dj6wgkiknd5kao.stats.esomniture[1].txt -> TrackingCookie.Esomniture : Cleaned with backup
C:\Documents and Settings\Guest\Cookies\guest@e-2dj6wgkowgcjkfp.stats.esomniture[2].txt -> TrackingCookie.Esomniture : Cleaned with backup
C:\Documents and Settings\Guest\Cookies\guest@edge.ru4[2].txt -> TrackingCookie.Ru4 : Cleaned with backup
C:\Documents and Settings\Guest\Cookies\guest@ehg-adteractive.hitbox[2].txt -> TrackingCookie.Hitbox : Cleaned with backup
C:\Documents and Settings\Guest\Cookies\guest@ehg-coastalcontacts.hitbox[2].txt -> TrackingCookie.Hitbox : Cleaned with backup
C:\Documents and Settings\Guest\Cookies\guest@ehg-nuruninc.hitbox[2].txt -> TrackingCookie.Hitbox : Cleaned with backup
C:\Documents and Settings\Guest\Cookies\guest@fastclick[2].txt -> TrackingCookie.Fastclick : Cleaned with backup
C:\Documents and Settings\Guest\Cookies\guest@hitbox[2].txt -> TrackingCookie.Hitbox : Cleaned with backup
C:\Documents and Settings\Guest\Cookies\guest@linksynergy[1].txt -> TrackingCookie.Linksynergy : Cleaned with backup
C:\Documents and Settings\Guest\Cookies\guest@login.tracking101[1].txt -> TrackingCookie.Tracking101 : Cleaned with backup
C:\Documents and Settings\Guest\Cookies\guest@mediaplex[1].txt -> TrackingCookie.Mediaplex : Cleaned with backup
C:\Documents and Settings\Guest\Cookies\guest@msnportal.112.2o7[1].txt -> TrackingCookie.2o7 : Cleaned with backup
C:\Documents and Settings\Guest\Cookies\guest@overture[2].txt -> TrackingCookie.Overture : Cleaned with backup
C:\Documents and Settings\Guest\Cookies\guest@perf.overture[1].txt -> TrackingCookie.Overture : Cleaned with backup
C:\Documents and Settings\Guest\Cookies\guest@qksrv[2].txt -> TrackingCookie.Qksrv : Cleaned with backup
C:\Documents and Settings\Guest\Cookies\guest@questionmarket[1].txt -> TrackingCookie.Questionmarket : Cleaned with backup
C:\Documents and Settings\Guest\Cookies\guest@sales.liveperson[2].txt -> TrackingCookie.Liveperson : Cleaned with backup
C:\Documents and Settings\Guest\Cookies\guest@server.iad.liveperson[2].txt -> TrackingCookie.Liveperson : Cleaned with backup
C:\Documents and Settings\Guest\Cookies\guest@serving-sys[2].txt -> TrackingCookie.Serving-sys : Cleaned with backup
C:\Documents and Settings\Guest\Cookies\guest@statse.webtrendslive[2].txt -> TrackingCookie.Webtrendslive : Cleaned with backup
C:\Documents and Settings\Guest\Cookies\guest@tacoda[1].txt -> TrackingCookie.Tacoda : Cleaned with backup
C:\Documents and Settings\Guest\Cookies\guest@targetnet[1].txt -> TrackingCookie.Targetnet : Cleaned with backup
C:\Documents and Settings\Guest\Cookies\guest@trafficmp[2].txt -> TrackingCookie.Trafficmp : Cleaned with backup
C:\Documents and Settings\Guest\Cookies\guest@tribalfusion[2].txt -> TrackingCookie.Tribalfusion : Cleaned with backup
C:\Documents and Settings\Guest\Cookies\guest@valueclick[2].txt -> TrackingCookie.Valueclick : Cleaned with backup
C:\Documents and Settings\Guest\Cookies\guest@www.burstbeacon[2].txt -> TrackingCookie.Burstbeacon : Cleaned with backup
:mozilla.6:C:\Documents and Settings\LocalService\Application Data\Mozilla\Firefox\Profiles\u8v6x068.default\cookies.txt -> TrackingCookie.Trafficmp : Cleaned with backup
:mozilla.9:C:\Documents and Settings\LocalService\Application Data\Mozilla\Firefox\Profiles\u8v6x068.default\cookies.txt -> TrackingCookie.Mediaplex : Cleaned with backup
:mozilla.10:C:\Documents and Settings\LocalService\Application Data\Mozilla\Firefox\Profiles\u8v6x068.default\cookies.txt -> TrackingCookie.Advertising : Cleaned with backup
:mozilla.11:C:\Documents and Settings\LocalService\Application Data\Mozilla\Firefox\Profiles\u8v6x068.default\cookies.txt -> TrackingCookie.Doubleclick : Cleaned with backup
:mozilla.13:C:\Documents and Settings\LocalService\Application Data\Mozilla\Firefox\Profiles\u8v6x068.default\cookies.txt -> TrackingCookie.Findwhat : Cleaned with backup
:mozilla.31:C:\Documents and Settings\Mark\Application Data\Mozilla\Firefox\Profiles\ywanm1jw.default\cookies.txt -> TrackingCookie.Adjuggler : Cleaned with backup
:mozilla.32:C:\Documents and Settings\Mark\Application Data\Mozilla\Firefox\Profiles\ywanm1jw.default\cookies.txt -> TrackingCookie.Adjuggler : Cleaned with backup
:mozilla.48:C:\Documents and Settings\Mark\Application Data\Mozilla\Firefox\Profiles\ywanm1jw.default\cookies.txt -> TrackingCookie.Adbrite : Cleaned with backup
:mozilla.49:C:\Documents and Settings\Mark\Application Data\Mozilla\Firefox\Profiles\ywanm1jw.default\cookies.txt -> TrackingCookie.Adbrite : Cleaned with backup
:mozilla.50:C:\Documents and Settings\Mark\Application Data\Mozilla\Firefox\Profiles\ywanm1jw.default\cookies.txt -> TrackingCookie.Adbrite : Cleaned with backup
:mozilla.55:C:\Documents and Settings\Mark\Application Data\Mozilla\Firefox\Profiles\ywanm1jw.default\cookies.txt -> TrackingCookie.2o7 : Cleaned with backup
:mozilla.56:C:\Documents and Settings\Mark\Application Data\Mozilla\Firefox\Profiles\ywanm1jw.default\cookies.txt -> TrackingCookie.2o7 : Cleaned with backup
:mozilla.57:C:\Documents and Settings\Mark\Application Data\Mozilla\Firefox\Profiles\ywanm1jw.default\cookies.txt -> TrackingCookie.2o7 : Cleaned with backup
:mozilla.58:C:\Documents and Settings\Mark\Application Data\Mozilla\Firefox\Profiles\ywanm1jw.default\cookies.txt -> TrackingCookie.2o7 : Cleaned with backup
:mozilla.59:C:\Documents and Settings\Mark\Application Data\Mozilla\Firefox\Profiles\ywanm1jw.default\cookies.txt -> TrackingCookie.2o7 : Cleaned with backup
:mozilla.60:C:\Documents and Settings\Mark\Application Data\Mozilla\Firefox\Profiles\ywanm1jw.default\cookies.txt -> TrackingCookie.2o7 : Cleaned with backup
:mozilla.61:C:\Documents and Settings\Mark\Application Data\Mozilla\Firefox\Profiles\ywanm1jw.default\cookies.txt -> TrackingCookie.2o7 : Cleaned with backup
:mozilla.62:C:\Documents and Settings\Mark\Application Data\Mozilla\Firefox\Profiles\ywanm1jw.default\cookies.txt -> TrackingCookie.2o7 : Cleaned with backup
:mozilla.63:C:\Documents and Settings\Mark\Application Data\Mozilla\Firefox\Profiles\ywanm1jw.default\cookies.txt -> TrackingCookie.Falkag : Cleaned with backup
:mozilla.64:C:\Documents and Settings\Mark\Application Data\Mozilla\Firefox\Profiles\ywanm1jw.default\cookies.txt -> TrackingCookie.2o7 : Cleaned with backup
:mozilla.65:C:\Documents and Settings\Mark\Application Data\Mozilla\Firefox\Profiles\ywanm1jw.default\cookies.txt -> TrackingCookie.2o7 : Cleaned with backup
:mozilla.68:C:\Documents and Settings\Mark\Application Data\Mozilla\Firefox\Profiles\ywanm1jw.default\cookies.txt -> TrackingCookie.Falkag : Cleaned with backup
:mozilla.69:C:\Documents and Settings\Mark\Application Data\Mozilla\Firefox\Profiles\ywanm1jw.default\cookies.txt -> TrackingCookie.Falkag : Cleaned with backup
:mozilla.70:C:\Documents and Settings\Mark\Application Data\Mozilla\Firefox\Profiles\ywanm1jw.default\cookies.txt -> TrackingCookie.Falkag : Cleaned with backup
:mozilla.86:C:\Documents and Settings\Mark\Application Data\Mozilla\Firefox\Profiles\ywanm1jw.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned with backup
:mozilla.87:C:\Documents and Settings\Mark\Application Data\Mozilla\Firefox\Profiles\ywanm1jw.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned with backup
:mozilla.88:C:\Documents and Settings\Mark\Application Data\Mozilla\Firefox\Profiles\ywanm1jw.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned with backup
:mozilla.89:C:\Documents and Settings\Mark\Application Data\Mozilla\Firefox\Profiles\ywanm1jw.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned with backup
:mozilla.119:C:\Documents and Settings\Mark\Application Data\Mozilla\Firefox\Profiles\ywanm1jw.default\cookies.txt -> TrackingCookie.Com : Cleaned with backup
:mozilla.126:C:\Documents and Settings\Mark\Application Data\Mozilla\Firefox\Profiles\ywanm1jw.default\cookies.txt -> TrackingCookie.Tribalfusion : Cleaned with backup
:mozilla.127:C:\Documents and Settings\Mark\Application Data\Mozilla\Firefox\Profiles\ywanm1jw.default\cookies.txt -> TrackingCookie.Tribalfusion : Cleaned with backup
:mozilla.128:C:\Documents and Settings\Mark\Application Data\Mozilla\Firefox\Profiles\ywanm1jw.default\cookies.txt -> TrackingCookie.Tribalfusion : Cleaned with backup
:mozilla.129:C:\Documents and Settings\Mark\Application Data\Mozilla\Firefox\Profiles\ywanm1jw.default\cookies.txt -> TrackingCookie.Tribalfusion : Cleaned with backup
:mozilla.130:C:\Documents and Settings\Mark\Application Data\Mozilla\Firefox\Profiles\ywanm1jw.default\cookies.txt -> TrackingCookie.Tribalfusion : Cleaned with backup
:mozilla.168:C:\Documents and Settings\Mark\Application Data\Mozilla\Firefox\Profiles\ywanm1jw.default\cookies.txt -> TrackingCookie.Adbrite : Cleaned with backup
:mozilla.271:C:\Documents and Settings\Mark\Application Data\Mozilla\Firefox\Profiles\ywanm1jw.default\cookies.txt -> TrackingCookie.Mediaplex : Cleaned with backup
:mozilla.272:C:\Documents and Settings\Mark\Application Data\Mozilla\Firefox\Profiles\ywanm1jw.default\cookies.txt -> TrackingCookie.Mediaplex : Cleaned with backup
:mozilla.276:C:\Documents and Settings\Mark\Application Data\Mozilla\Firefox\Profiles\ywanm1jw.default\cookies.txt -> TrackingCookie.Ru4 : Cleaned with backup
:mozilla.277:C:\Documents and Settings\Mark\Application Data\Mozilla\Firefox\Profiles\ywanm1jw.default\cookies.txt -> TrackingCookie.Ru4 : Cleaned with backup
:mozilla.278:C:\Documents and Settings\Mark\Application Data\Mozilla\Firefox\Profiles\ywanm1jw.default\cookies.txt -> TrackingCookie.Ru4 : Cleaned with backup
:mozilla.279:C:\Documents and Settings\Mark\Application Data\Mozilla\Firefox\Profiles\ywanm1jw.default\cookies.txt -> TrackingCookie.Ru4 : Cleaned with backup
:mozilla.280:C:\Documents and Settings\Mark\Application Data\Mozilla\Firefox\Profiles\ywanm1jw.default\cookies.txt -> TrackingCookie.Ru4 : Cleaned with backup
:mozilla.281:C:\Documents and Settings\Mark\Application Data\Mozilla\Firefox\Profiles\ywanm1jw.default\cookies.txt -> TrackingCookie.Ru4 : Cleaned with backup
:mozilla.282:C:\Documents and Settings\Mark\Application Data\Mozilla\Firefox\Profiles\ywanm1jw.default\cookies.txt -> TrackingCookie.Ru4 : Cleaned with backup
:mozilla.283:C:\Documents and Settings\Mark\Application Data\Mozilla\Firefox\Profiles\ywanm1jw.default\cookies.txt -> TrackingCookie.Ru4 : Cleaned with backup
:mozilla.288:C:\Documents and Settings\Mark\Application Data\Mozilla\Firefox\Profiles\ywanm1jw.default\cookies.txt -> TrackingCookie.Tacoda : Cleaned with backup
:mozilla.289:C:\Documents and Settings\Mark\Application Data\Mozilla\Firefox\Profiles\ywanm1jw.default\cookies.txt -> TrackingCookie.Tacoda : Cleaned with backup
:mozilla.290:C:\Documents and Settings\Mark\Application Data\Mozilla\Firefox\Profiles\ywanm1jw.default\cookies.txt -> TrackingCookie.Tacoda : Cleaned with backup
:mozilla.297:C:\Documents and Settings\Mark\Application Data\Mozilla\Firefox\Profiles\ywanm1jw.default\cookies.txt -> TrackingCookie.Esomniture : Cleaned with backup
:mozilla.298:C:\Documents and Settings\Mark\Application Data\Mozilla\Firefox\Profiles\ywanm1jw.default\cookies.txt -> TrackingCookie.Esomniture : Cleaned with backup
:mozilla.302:C:\Documents and Settings\Mark\Application Data\Mozilla\Firefox\Profiles\ywanm1jw.default\cookies.txt -> TrackingCookie.Onestat : Cleaned with backup
:mozilla.303:C:\Documents and Settings\Mark\Application Data\Mozilla\Firefox\Profiles\ywanm1jw.default\cookies.txt -> TrackingCookie.Onestat : Cleaned with backup
:mozilla.304:C:\Documents and Settings\Mark\Application Data\Mozilla\Firefox\Profiles\ywanm1jw.default\cookies.txt -> TrackingCookie.Onestat : Cleaned with backup
:mozilla.305:C:\Documents and Settings\Mark\Application Data\Mozilla\Firefox\Profiles\ywanm1jw.default\cookies.txt -> TrackingCookie.Clickbank : Cleaned with backup
:mozilla.308:C:\Documents and Settings\Mark\Application Data\Mozilla\Firefox\Profiles\ywanm1jw.default\cookies.txt -> TrackingCookie.Doubleclick : Cleaned with backup
:mozilla.314:C:\Documents and Settings\Mark\Application Data\Mozilla\Firefox\Profiles\ywanm1jw.default\cookies.txt -> TrackingCookie.Questionmarket : Cleaned with backup
:mozilla.315:C:\Documents and Settings\Mark\Application Data\Mozilla\Firefox\Profiles\ywanm1jw.default\cookies.txt -> TrackingCookie.Questionmarket : Cleaned with backup
:mozilla.318:C:\Documents and Settings\Mark\Application Data\Mozilla\Firefox\Profiles\ywanm1jw.default\cookies.txt -> TrackingCookie.247realmedia : Cleaned with backup
:mozilla.320:C:\Documents and Settings\Mark\Application Data\Mozilla\Firefox\Profiles\ywanm1jw.default\cookies.txt -> TrackingCookie.247realmedia : Cleaned with backup
:mozilla.340:C:\Documents and Settings\Mark\Application Data\Mozilla\Firefox\Profiles\ywanm1jw.default\cookies.txt -> TrackingCookie.2o7 : Cleaned with backup
:mozilla.346:C:\Documents and Settings\Mark\Application Data\Mozilla\Firefox\Profiles\ywanm1jw.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned with backup
:mozilla.347:C:\Documents and Settings\Mark\Application Data\Mozilla\Firefox\Profiles\ywanm1jw.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned with backup
:mozilla.348:C:\Documents and Settings\Mark\Application Data\Mozilla\Firefox\Profiles\ywanm1jw.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned with backup
:mozilla.349:C:\Documents and Settings\Mark\Application Data\Mozilla\Firefox\Profiles\ywanm1jw.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned with backup
:mozilla.350:C:\Documents and Settings\Mark\Application Data\Mozilla\Firefox\Profiles\ywanm1jw.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned with backup
:mozilla.351:C:\Documents and Settings\Mark\Application Data\Mozilla\Firefox\Profiles\ywanm1jw.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned with backup
:mozilla.357:C:\Documents and Settings\Mark\Application Data\Mozilla\Firefox\Profiles\ywanm1jw.default\cookies.txt -> TrackingCookie.Adbrite : Cleaned with backup
:mozilla.358:C:\Documents and Settings\Mark\Application Data\Mozilla\Firefox\Profiles\ywanm1jw.default\cookies.txt -> TrackingCookie.Adbrite : Cleaned with backup
:mozilla.380:C:\Documents and Settings\Mark\Application Data\Mozilla\Firefox\Profiles\ywanm1jw.default\cookies.txt -> TrackingCookie.Esomniture : Cleaned with backup
:mozilla.381:C:\Documents and Settings\Mark\Application Data\Mozilla\Firefox\Profiles\ywanm1jw.default\cookies.txt -> TrackingCookie.Esomniture : Cleaned with backup
:mozilla.392:C:\Documents and Settings\Mark\Application Data\Mozilla\Firefox\Profiles\ywanm1jw.default\cookies.txt -> TrackingCookie.Esomniture : Cleaned with backup
:mozilla.410:C:\Documents and Settings\Mark\Application Data\Mozilla\Firefox\Profiles\ywanm1jw.default\cookies.txt -> TrackingCookie.Pointroll : Cleaned with backup
:mozilla.411:C:\Documents and Settings\Mark\Application Data\Mozilla\Firefox\Profiles\ywanm1jw.default\cookies.txt -> TrackingCookie.Atdmt : Cleaned with backup
:mozilla.412:C:\Documents and Settings\Mark\Application Data\Mozilla\Firefox\Profiles\ywanm1jw.default\cookies.txt -> TrackingCookie.Pointroll : Cleaned with backup
:mozilla.413:C:\Documents and Settings\Mark\Application Data\Mozilla\Firefox\Profiles\ywanm1jw.default\cookies.txt -> TrackingCookie.Pointroll : Cleaned with backup
:mozilla.414:C:\Documents and Settings\Mark\Application Data\Mozilla\Firefox\Profiles\ywanm1jw.default\cookies.txt -> TrackingCookie.Pointroll : Cleaned with backup
:mozilla.421:C:\Documents and Settings\Mark\Application Data\Mozilla\Firefox\Profiles\ywanm1jw.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned with backup
:mozilla.423:C:\Documents and Settings\Mark\Application Data\Mozilla\Firefox\Profiles\ywanm1jw.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned with backup
:mozilla.424:C:\Documents and Settings\Mark\Application Data\Mozilla\Firefox\Profiles\ywanm1jw.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned with backup
:mozilla.431:C:\Documents and Settings\Mark\Application Data\Mozilla\Firefox\Profiles\ywanm1jw.default\cookies.txt -> TrackingCookie.Zedo : Cleaned with backup
:mozilla.432:C:\Documents and Settings\Mark\Application Data\Mozilla\Firefox\Profiles\ywanm1jw.default\cookies.txt -> TrackingCookie.Zedo : Cleaned with backup
:mozilla.433:C:\Documents and Settings\Mark\Application Data\Mozilla\Firefox\Profiles\ywanm1jw.default\cookies.txt -> TrackingCookie.Zedo : Cleaned with backup
:mozilla.443:C:\Documents and Settings\Mark\Application Data\Mozilla\Firefox\Profiles\ywanm1jw.default\cookies.txt -> TrackingCookie.Advertising : Cleaned with backup
:mozilla.444:C:\Documents and Settings\Mark\Application Data\Mozilla\Firefox\Profiles\ywanm1jw.default\cookies.txt -> TrackingCookie.Advertising : Cleaned with backup
:mozilla.445:C:\Documents and Settings\Mark\Application Data\Mozilla\Firefox\Profiles\ywanm1jw.default\cookies.txt -> TrackingCookie.Advertising : Cleaned with backup
:mozilla.446:C:\Documents and Settings\Mark\Application Data\Mozilla\Firefox\Profiles\ywanm1jw.default\cookies.txt -> TrackingCookie.Advertising : Cleaned with backup
:mozilla.476:C:\Documents and Settings\Mark\Application Data\Mozilla\Firefox\Profiles\ywanm1jw.default\cookies.txt -> TrackingCookie.Overture : Cleaned with backup
:mozilla.498:C:\Documents and Settings\Mark\Application Data\Mozilla\Firefox\Profiles\ywanm1jw.default\cookies.txt -> TrackingCookie.Revenue : Cleaned with backup
:mozilla.526:C:\Documents and Settings\Mark\Application Data\Mozilla\Firefox\Profiles\ywanm1jw.default\cookies.txt -> TrackingCookie.2o7 : Cleaned with backup
:mozilla.544:C:\Documents and Settings\Mark\Application Data\Mozilla\Firefox\Profiles\ywanm1jw.default\cookies.txt -> TrackingCookie.2o7 : Cleaned with backup
:mozilla.545:C:\Documents and Settings\Mark\Application Data\Mozilla\Firefox\Profiles\ywanm1jw.default\cookies.txt -> TrackingCookie.Trafficmp : Cleaned with backup
:mozilla.546:C:\Documents and Settings\Mark\Application Data\Mozilla\Firefox\Profiles\ywanm1jw.default\cookies.txt -> TrackingCookie.Trafficmp : Cleaned with backup
:mozilla.547:C:\Documents and Settings\Mark\Application Data\Mozilla\Firefox\Profiles\ywanm1jw.default\cookies.txt -> TrackingCookie.Trafficmp : Cleaned with backup
:mozilla.548:C:\Documents and Settings\Mark\Application Data\Mozilla\Firefox\Profiles\ywanm1jw.default\cookies.txt -> TrackingCookie.Trafficmp : Cleaned with backup
:mozilla.549:C:\Documents and Settings\Mark\Application Data\Mozilla\Firefox\Profiles\ywanm1jw.default\cookies.txt -> TrackingCookie.Trafficmp : Cleaned with backup
:mozilla.550:C:\Documents and Settings\Mark\Application Data\Mozilla\Firefox\Profiles\ywanm1jw.default\cookies.txt -> TrackingCookie.Trafficmp : Cleaned with backup
:mozilla.551:C:\Documents and Settings\Mark\Application Data\Mozilla\Firefox\Profiles\ywanm1jw.default\cookies.txt -> TrackingCookie.Trafficmp : Cleaned with backup
:mozilla.552:C:\Documents and Settings\Mark\Application Data\Mozilla\Firefox\Profiles\ywanm1jw.default\cookies.txt -> TrackingCookie.Trafic : Cleaned with backup
:mozilla.553:C:\Documents and Settings\Mark\Application Data\Mozilla\Firefox\Profiles\ywanm1jw.default\cookies.txt -> TrackingCookie.Burstnet : Cleaned with backup
:mozilla.554:C:\Documents and Settings\Mark\Application Data\Mozilla\Firefox\Profiles\ywanm1jw.default\cookies.txt -> TrackingCookie.Burstnet : Cleaned with backup
:mozilla.562:C:\Documents and Settings\Mark\Application Data\Mozilla\Firefox\Profiles\ywanm1jw.default\cookies.txt -> TrackingCookie.Sitestat : Cleaned with backup
:mozilla.563:C:\Documents and Settings\Mark\Application Data\Mozilla\Firefox\Profiles\ywanm1jw.default\cookies.txt -> TrackingCookie.Sitestat : Cleaned with backup
:mozilla.573:C:\Documents and Settings\Mark\Application Data\Mozilla\Firefox\Profiles\ywanm1jw.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned with backup
:mozilla.574:C:\Documents and Settings\Mark\Application Data\Mozilla\Firefox\Profiles\ywanm1jw.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned with backup
:mozilla.576:C:\Documents and Settings\Mark\Application Data\Mozilla\Firefox\Profiles\ywanm1jw.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned with backup
:mozilla.583:C:\Documents and Settings\Mark\Application Data\Mozilla\Firefox\Profiles\ywanm1jw.default\cookies.txt -> TrackingCookie.Hotlog : Cleaned with backup
:mozilla.584:C:\Documents and Settings\Mark\Application Data\Mozilla\Firefox\Profiles\ywanm1jw.default\cookies.txt -> TrackingCookie.Spylog : Cleaned with backup
:mozilla.585:C:\Documents and Settings\Mark\Application Data\Mozilla\Firefox\Profiles\ywanm1jw.default\cookies.txt -> TrackingCookie.2o7 : Cleaned with backup
:mozilla.598:C:\Documents and Settings\Mark\Application Data\Mozilla\Firefox\Profiles\ywanm1jw.default\cookies.txt -> TrackingCookie.Qksrv : Cleaned with backup
:mozilla.599:C:\Documents and Settings\Mark\Application Data\Mozilla\Firefox\Profiles\ywanm1jw.default\cookies.txt -> TrackingCookie.Qksrv : Cleaned with backup
:mozilla.602:C:\Documents and Settings\Mark\Application Data\Mozilla\Firefox\Profiles\ywanm1jw.default\cookies.txt -> TrackingCookie.Burstbeacon : Cleaned with backup
:mozilla.604:C:\Documents and Settings\Mark\Application Data\Mozilla\Firefox\Profiles\ywanm1jw.default\cookies.txt -> TrackingCookie.Fastclick : Cleaned with backup
:mozilla.605:C:\Documents and Settings\Mark\Application Data\Mozilla\Firefox\Profiles\ywanm1jw.default\cookies.txt -> TrackingCookie.Fastclick : Cleaned with backup
:mozilla.616:C:\Documents and Settings\Mark\Application Data\Mozilla\Firefox\Profiles\ywanm1jw.default\cookies.txt -> TrackingCookie.Adition : Cleaned with backup
:mozilla.617:C:\Documents and Settings\Mark\Application Data\Mozilla\Firefox\Profiles\ywanm1jw.default\cookies.txt -> TrackingCookie.Adition : Cleaned with backup
:mozilla.618:C:\Documents and Settings\Mark\Application Data\Mozilla\Firefox\Profiles\ywanm1jw.default\cookies.txt -> TrackingCookie.Adrevolver : Cleaned with backup
:mozilla.619:C:\Documents and Settings\Mark\Application Data\Mozilla\Firefox\Profiles\ywanm1jw.default\cookies.txt -> TrackingCookie.Adrevolver : Cleaned with backup
:mozilla.620:C:\Documents and Settings\Mark\Application Data\Mozilla\Firefox\Profiles\ywanm1jw.default\cookies.txt -> TrackingCookie.Adrevolver : Cleaned with backup
:mozilla.621:C:\Documents and Settings\Mark\Application Data\Mozilla\Firefox\Profiles\ywanm1jw.default\cookies.txt -> TrackingCookie.Adrevolver : Cleaned with backup
:mozilla.622:C:\Documents and Settings\Mark\Application Data\Mozilla\Firefox\Profiles\ywanm1jw.default\cookies.txt -> TrackingCookie.Adrevolver : Cleaned with backup
:mozilla.626:C:\Documents and Settings\Mark\Application Data\Mozilla\Firefox\Profiles\ywanm1jw.default\cookies.txt -> TrackingCookie.2o7 : Cleaned with backup
:mozilla.629:C:\Documents and Settings\Mark\Application Data\Mozilla\Firefox\Profiles\ywanm1jw.default\cookies.txt -> TrackingCookie.Bluestreak : Cleaned with backup
:mozilla.630:C:\Documents and Settings\Mark\Application Data\Mozilla\Firefox\Profiles\ywanm1jw.default\cookies.txt -> TrackingCookie.Goldenpalace : Cleaned with backup
:mozilla.638:C:\Documents and Settings\Mark\Application Data\Mozilla\Firefox\Profiles\ywanm1jw.default\cookies.txt -> TrackingCookie.Valuead : Cleaned with backup
:mozilla.639:C:\Documents and Settings\Mark\Application Data\Mozilla\Firefox\Profiles\ywanm1jw.default\cookies.txt -> TrackingCookie.Valuead : Cleaned with backup
:mozilla.640:C:\Documents and Settings\Mark\Application Data\Mozilla\Firefox\Profiles\ywanm1jw.default\cookies.txt -> TrackingCookie.Valuead : Cleaned with backup
:mozilla.641:C:\Documents and Settings\Mark\Application Data\Mozilla\Firefox\Profiles\ywanm1jw.default\cookies.txt -> TrackingCookie.Valuead : Cleaned with backup
:mozilla.642:C:\Documents and Settings\Mark\Application Data\Mozilla\Firefox\Profiles\ywanm1jw.default\cookies.txt -> TrackingCookie.Valuead : Cleaned with backup
:mozilla.643:C:\Documents and Settings\Mark\Application Data\Mozilla\Firefox\Profiles\ywanm1jw.default\cookies.txt -> TrackingCookie.Valuead : Cleaned with backup
:mozilla.670:C:\Documents and Settings\Mark\Application Data\Mozilla\Firefox\Profiles\ywanm1jw.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned with backup
:mozilla.671:C:\Documents and Settings\Mark\Application Data\Mozilla\Firefox\Profiles\ywanm1jw.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned with backup
:mozilla.703:C:\Documents and Settings\Mark\Application Data\Mozilla\Firefox\Profiles\ywanm1jw.default\cookies.txt -> TrackingCookie.Falkag : Cleaned with backup
:mozilla.704:C:\Documents and Settings\Mark\Application Data\Mozilla\Firefox\Profiles\ywanm1jw.default\cookies.txt -> TrackingCookie.Falkag : Cleaned with backup
:mozilla.705:C:\Documents and Settings\Mark\Application Data\Mozilla\Firefox\Profiles\ywanm1jw.default\cookies.txt -> TrackingCookie.Falkag : Cleaned with backup
:mozilla.706:C:\Documents and Settings\Mark\Application Data\Mozilla\Firefox\Profiles\ywanm1jw.default\cookies.txt -> TrackingCookie.Adtech : Cleaned with backup
:mozilla.707:C:\Documents and Settings\Mark\Application Data\Mozilla\Firefox\Profiles\ywanm1jw.default\cookies.txt -> TrackingCookie.Adtech : Cleaned with backup
:mozilla.708:C:\Documents and Settings\Mark\Application Data\Mozilla\Firefox\Profiles\ywanm1jw.default\cookies.txt -> TrackingCookie.Komtrack : Cleaned with backup
:mozilla.709:C:\Documents and Settings\Mark\Application Data\Mozilla\Firefox\Profiles\ywanm1jw.default\cookies.txt -> TrackingCookie.Falkag : Cleaned with backup
:mozilla.710:C:\Documents and Settings\Mark\Application Data\Mozilla\Firefox\Profiles\ywanm1jw.default\cookies.txt -> TrackingCookie.Falkag : Cleaned with backup
:mozilla.712:C:\Documents and Settings\Mark\Application Data\Mozilla\Firefox\Profiles\ywanm1jw.default\cookies.txt -> TrackingCookie.Komtrack : Cleaned with backup
:mozilla.713:C:\Documents and Settings\Mark\Application Data\Mozilla\Firefox\Profiles\ywanm1jw.default\cookies.txt -> TrackingCookie.Falkag : Cleaned with backup
:mozilla.714:C:\Documents and Settings\Mark\Application Data\Mozilla\Firefox\Profiles\ywanm1jw.default\cookies.txt -> TrackingCookie.Falkag : Cleaned with backup
C:\Documents and Settings\Mark\Cookies\mark@ad.yieldmanager[2].txt -> TrackingCookie.Yieldmanager : Cleaned with backup
C:\Documents and Settings\Mark\Cookies\mark@adopt.euroclick[2].txt -> TrackingCookie.Euroclick : Cleaned with backup
C:\Documents and Settings\Mark\Cookies\mark@advertising[1].txt -> TrackingCookie.Advertising : Cleaned with backup
C:\Documents and Settings\Mark\Cookies\mark@atdmt[2].txt -> TrackingCookie.Atdmt : Cleaned with backup
C:\Documents and Settings\Mark\Cookies\mark@banners.searchingbooth[1].txt -> TrackingCookie.Searchingbooth : Cleaned with backup
C:\Documents and Settings\Mark\Cookies\mark@bluestreak[1].txt -> TrackingCookie.Bluestreak : Cleaned with backup
C:\Documents and Settings\Mark\Cookies\mark@data4.perf.overture[1].txt -> TrackingCookie.Overture : Cleaned with backup
C:\Documents and Settings\Mark\Cookies\mark@doubleclick[2].txt -> TrackingCookie.Doubleclick : Cleaned with backup
C:\Documents and Settings\Mark\Cookies\mark@media.top-banners[1].txt -> TrackingCookie.Top-banners : Cleaned with backup
C:\Documents and Settings\Mark\Cookies\mark@mediaplex[1].txt -> TrackingCookie.Mediaplex : Cleaned with backup
C:\Documents and Settings\Mark\Cookies\mark@msnportal.112.2o7[1].txt -> TrackingCookie.2o7 : Cleaned with backup
C:\Documents and Settings\Mark\Cookies\mark@partygaming.122.2o7[1].txt -> TrackingCookie.2o7 : Cleaned with backup
C:\Documents and Settings\Mark\Cookies\mark@paypopup[2].txt -> TrackingCookie.Paypopup : Cleaned with backup
C:\Documents and Settings\Mark\Cookies\mark@revenue[1].txt -> TrackingCookie.Revenue : Cleaned with backup
C:\Documents and Settings\Mark\Cookies\mark@tacoda[1].txt -> TrackingCookie.Tacoda : Cleaned with backup
C:\Documents and Settings\Mark\Local Settings\Temp\i3.tmp -> Adware.SurfSide : Cleaned with backup
C:\Documents and Settings\Mark\Local Settings\Temp\pre.exe -> Dropper.Agent.hl : Cleaned with backup
C:\Documents and Settings\Mark\Local Settings\Temp\pre1.exe -> Dropper.Agent.hl : Cleaned with backup
C:\Documents and Settings\Mark\Local Settings\Temp\res4F.tmp -> Adware.180Solutions : Cleaned with backup
C:\Documents and Settings\Mark\Local Settings\Temp\~dfte14.tmp -> Dropper.Agent.abu : Cleaned with backup
C:\Documents and Settings\Mark\My Documents\Unzipped\hijackthis\backups\backup-20060516-181558-628.dll -> Adware.NewDotNet : Cleaned with backup
C:\Program Files\filesubmit\prototype2007.zip\NNWDAC638.EXE -> Adware.NewDotNet : Cleaned with backup
C:\Program Files\Network Monitor(2)\netmon(2).exe -> Not-A-Virus.Monitor.Win32.NetMon.a : Cleaned with backup
C:\WINDOWS\NDNuninstall6_38.exe -> Adware.NewDotNet : Cleaned with backup
C:\WINDOWS\NDNuninstall7_22.exe -> Adware.NewDotNet : Cleaned with backup
C:\WINDOWS\system32\ad.html -> Hijacker.Agent.e : Cleaned with backup
C:\WINDOWS\system32\avload32(2).dll -> Backdoor.Haxdoor.gj : Cleaned with backup
C:\WINDOWS\system32\directpt(2).dll -> Logger.Goldun.hw : Cleaned with backup
C:\WINDOWS\system32\hbarycn.exe -> Trojan.Painwin.a : Cleaned with backup
C:\WINDOWS\system32\heaveba.exe -> Trojan.Painwin.a : Cleaned with backup
C:\WINDOWS\system32\maintp(2).exe -> Trojan.Painwin.a : Cleaned with backup
C:\WINDOWS\system32\wnlogow.sys -> Backdoor.Haxdoor.ha : Cleaned with backup

::Report End

Logfile of HijackThis v1.99.1
Scan saved at 8:09:58 PM, on 5/16/2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\TGTSoft\StyleXP\StyleXPService.exe
C:\WINDOWS\system32\acs.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\ewido anti-malware\ewidoctrl.exe
C:\WINDOWS\system32\tcpsvcs.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\wscntfy.exe
C:\Program Files\NETGEAR\WG311TSU\Utility\Gear311T.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\Program Files\Ad Muncher\AdMunch.exe
C:\Program Files\AIM\aim.exe
C:\Program Files\MSN Messenger\MsnMsgr.Exe
C:\Program Files\Common Files\AOL\1130522745\ee\aolsoftware.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\iTunes\iTunes.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\WINDOWS\system32\svchost.exe
C:\Documents and Settings\Mark\My Documents\Unzipped\hijackthis\HijackThis.exe

O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: IeCatch2 Class - {A5366673-E8CA-11D3-9CD9-0090271D075B} - C:\PROGRA~1\FlashGet\jccatch.dll
O3 - Toolbar: FlashGet Bar - {E0E899AB-F487-11D5-8D29-0050BA6940E3} - C:\PROGRA~1\FlashGet\fgiebar.dll
O4 - HKLM\..\Run: [AS00_Gear311T] C:\Program Files\NETGEAR\WG311TSU\Utility\Gear311T.exe -hide
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [Ad Muncher] C:\Program Files\Ad Muncher\AdMunch.exe /bt
O4 - HKCU\..\Run: [AIM] C:\Program Files\AIM\aim.exe -cnetwait.odl
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
O8 - Extra context menu item: Download All by FlashGet - C:\PROGRA~1\FlashGet\jc_all.htm
O8 - Extra context menu item: Download using FlashGet - C:\PROGRA~1\FlashGet\jc_link.htm
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000
O8 - Extra context menu item: Report page to the Ad Muncher developers - http://www.admuncher.com/request_will_be_intercepted_by/Ad_Muncher/browserextensions.pl?exbrowser=ie&exversion=0.3&pass=2Q848Q6P&id=menu_ie_report
O9 - Extra button: AIM - {AC9E2541-2814-11d5-BC6D-00B0D0A1DE45} - C:\Program Files\AIM\aim.exe
O9 - Extra button: FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\PROGRA~1\FlashGet\flashget.exe
O9 - Extra 'Tools' menuitem: &FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\PROGRA~1\FlashGet\flashget.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O23 - Service: Atheros Configuration Service (ACS) - Unknown owner - C:\WINDOWS\system32\acs.exe
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: ewido security suite control - ewido networks - C:\Program Files\ewido anti-malware\ewidoctrl.exe
O23 - Service: ewido security suite guard - ewido networks - C:\Program Files\ewido anti-malware\ewidoguard.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iPodService - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: StarWind iSCSI Service (StarWindService) - Unknown owner - C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe (file missing)
O23 - Service: StyleXPService - Unknown owner - C:\Program Files\TGTSoft\StyleXP\StyleXPService.exe

Hmm, the HJT log itself is clean, but I'm not liking this Ewido entry At All:

C:\WINDOWS\system32\wnlogow.sys -> Backdoor.Haxdoor.ha : Cleaned with backup

Althouh it was cleaned with backup, I wanna be sure its still not hidden somewhere else on there.

SO, we're gonna do this:

Step 1.
==========
-Download HaxFix.
-Save it to your desktop.
-Double click on haxfix.exe to install HaxFix. (standard installation path is c:\program Files)
When the installation is completed, make sure that the checkmark "Launch HaxFix" is placed.

Step 2.
==========
Once running, a red DOS window will open.

It will say:

Insert the haxdoor notify subkey without the numbers,
and then press enter:

At this point, please type the following:

winm

and press ENTER

Step 3.
==========
If an infection is found, you'll get a message to close all other open windows.
Close them, except the red dos window from haxfix and press Enter.
The computer will reboot.

After reboot, a new red DOS window will open (HaxFix - cleaningbat).
This message will appear:

Insert the haxdoor notify subkey without the numbers again,
and then press enter:

In response to this, type the following:

winm

and press ENTER

Step 4.
==========
When the red dos window closes, the fix is ready.
Post the contents of C:\haxfix.txt along with a new HijackThis log.

Thanks.