0

Logfile of HijackThis v1.99.1
Scan saved at 9:11:23 AM, on 7/1/2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\System32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Yahoo!\Antivirus\ISafe.exe
C:\WINDOWS\system32\cisvc.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\wltrysvc.exe
C:\WINDOWS\System32\bcmwltry.exe
C:\Program Files\Yahoo!\Antivirus\VetMsg.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\pctspk.exe
C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
C:\Program Files\Dell\AccessDirect\dadapp.exe
C:\Program Files\Dell\QuickSet\quickset.exe
C:\WINDOWS\System32\DSentry.exe
C:\Program Files\Common Files\Microsoft Shared\Works Shared\WkUFind.exe
C:\Program Files\Yahoo!\Antivirus\CAVTray.exe
C:\Program Files\Yahoo!\Antivirus\CAVRID.exe
C:\PROGRA~1\Yahoo!\YOP\yop.exe
C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\QuickTime Alternative\qttask.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\Dell Support\DSAgnt.exe
C:\PROGRA~1\Yahoo!\browser\ycommon.exe
C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe
C:\WINDOWS\system32\cidaemon.exe
C:\WINDOWS\system32\dcomcfg.exe
C:\WINDOWS\system32\atmclk.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\MSN Messenger\msnmsgr.exe
C:\Documents and Settings\michael montgomery\Desktop\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://education.dellnet.com/
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.yahoo.com/search/ie.html
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://search.yahoo.com/search?p=%s
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = local.,
O2 - BHO: (no name) - {243B17DE-77C7-46BF-B94B-0B5F309A0E64} - C:\Program Files\Microsoft Money\System\mnyside.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: (no name) - {5f4c3d09-b3b9-4f88-aa82-31332fee1c08} - C:\WINDOWS\system32\hp100.tmp
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O2 - BHO: Neopets - {CD292324-974F-4224-D074-CACA427AA030} - C:\PROGRA~1\Neopets\Toolbar\Toolbar.dll
O2 - BHO: (no name) - {FDD3B846-8D59-4ffb-8758-209B6AD74ACC} - (no file)
O3 - Toolbar: (no name) - {ACB1E670-3217-45C4-A021-6B829A8A27CB} - (no file)
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn1\yt.dll
O3 - Toolbar: Neopets - {CD292324-974F-4224-D074-CACA427AA030} - C:\PROGRA~1\Neopets\Toolbar\Toolbar.dll
O4 - HKLM\..\Run: [ATIModeChange] Ati2mdxx.exe
O4 - HKLM\..\Run: [PCTVOICE] pctspk.exe
O4 - HKLM\..\Run: [SynTPLpr] C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
O4 - HKLM\..\Run: [DadApp] C:\Program Files\Dell\AccessDirect\dadapp.exe
O4 - HKLM\..\Run: [Dell QuickSet] C:\Program Files\Dell\QuickSet\quickset.exe
O4 - HKLM\..\Run: [DVDSentry] C:\WINDOWS\System32\DSentry.exe
O4 - HKLM\..\Run: [Microsoft Works Update Detection] C:\Program Files\Common Files\Microsoft Shared\Works Shared\WkUFind.exe
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [CaAvTray] "C:\Program Files\Yahoo!\Antivirus\CAVTray.exe"
O4 - HKLM\..\Run: [CAVRID] "C:\Program Files\Yahoo!\Antivirus\CAVRID.exe"
O4 - HKLM\..\Run: [YOP] C:\PROGRA~1\Yahoo!\YOP\yop.exe /autostart
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime Alternative\qttask.exe" -atboottime
O4 - HKLM\..\RunOnce: [SpybotSnD] "C:\Program Files\Spybot - Search & Destroy\SpybotSD.exe" /autocheck
O4 - HKCU\..\Run: [Yahoo! Pager] "C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe" -quiet
O4 - HKCU\..\Run: [DellSupport] "C:\Program Files\Dell Support\DSAgnt.exe" /startup
O4 - HKCU\..\Run: [AIM] C:\Program Files\AIM\aim.exe -cnetwait.odl
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~4\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~4\OFFICE11\REFIEBAR.DLL
O9 - Extra button: AIM - {AC9E2541-2814-11d5-BC6D-00B0D0A1DE45} - C:\Program Files\AIM\aim.exe
O9 - Extra button: PartyPoker.com - {B7FE5D70-9AA2-40F1-9C6B-12A255F085E1} - C:\Program Files\PartyGaming\PartyPoker\RunApp.exe
O9 - Extra 'Tools' menuitem: PartyPoker.com - {B7FE5D70-9AA2-40F1-9C6B-12A255F085E1} - C:\Program Files\PartyGaming\PartyPoker\RunApp.exe
O9 - Extra button: (no name) - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - (no file)
O9 - Extra button: MoneySide - {E023F504-0C5A-4750-A1E7-A9046DEA8A21} - C:\Program Files\Microsoft Money\System\mnyside.dll
O9 - Extra button: @C:\Program Files\Messenger\Msgslang.dll,-61144 - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: @C:\Program Files\Messenger\Msgslang.dll,-61144 - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1150131862972
O16 - DPF: {74C861A1-D548-4916-BC8A-FDE92EDFF62C} - http://mediaplayer.walmart.com/installer/install.cab
O16 - DPF: {74CD40EA-EF77-4BAD-808A-B5982DA73F20} - http://yax-download.yazzle.net/YazzleActiveX.cab?refid=1123
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (ZoneIntro Class) - http://cdn2.zone.msn.com/binFramework/v10/ZIntro.cab34246.cab
O16 - DPF: {E5D419D6-A846-4514-9FAD-97E826C84822} (HeartbeatCtl Class) - http://fdl.msn.com/zone/datafiles/heartbeat.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{D7E35DDB-B98C-4916-9943-220CC429AE4D}: NameServer = 151.164.1.8,206.13.28.12
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O20 - Winlogon Notify: winvdj32 - C:\WINDOWS\SYSTEM32\winvdj32.dll
O23 - Service: Ati HotKey Poller - Unknown owner - C:\WINDOWS\System32\Ati2evxx.exe
O23 - Service: CAISafe - Computer Associates International, Inc. - C:\Program Files\Yahoo!\Antivirus\ISafe.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iPodService - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
O23 - Service: VET Message Service (VETMSGNT) - Computer Associates International, Inc. - C:\Program Files\Yahoo!\Antivirus\VetMsg.exe
O23 - Service: WLTRYSVC - Unknown owner - C:\WINDOWS\System32\wltrysvc.exe

HALP! I've run everything I have, adaware, Spybot S&D, SBCYahoo! crap, I know I know, they just don't get rid of the really nasties.

3
Contributors
12
Replies
13
Views
11 Years
Discussion Span
Last Post by mangofirst
0

first you might need to a rescan where you shut off firefox and if you could tell us what more specifically your problem is that could help.

For now this is wat i found:

O2 - BHO: (no name) - {FDD3B846-8D59-4ffb-8758-209B6AD74ACC} - (no file)
O3 - Toolbar: (no name) - {ACB1E670-3217-45C4-A021-6B829A8A27CB} - (no file)

O16 - DPF: {74CD40EA-EF77-4BAD-808A-B5982DA73F20} - http://yax-download.yazzle.net/Yazzl...cab?refid=1123

O17 - HKLM\System\CCS\Services\Tcpip\..\{D7E35DDB-B98C-4916-9943-220CC429AE4D}: NameServer = 151.164.1.8,206.13.28.12 (WAT IS THIS?)

O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O20 - Winlogon Notify: winvdj32 - C:\WINDOWS\SYSTEM32\winvdj32.dll

O23 - Service: WLTRYSVC - Unknown owner - C:\WINDOWS\System32\wltrysvc.exe

make you do a system restore before you modify any of these items

0

"wltrysvc.exe is a process belonging to the Broadcom Corporation Wireless Network Tray Applet, which interacts with your broadband hardware." So I didn't remove that one.

The problem is, I had a virus and a bunch of malware, used all the tools I mentioned above as well as Trend Micro housecall but I'm still getting pop-ups, I think I've gotten rid of most of the java related baddies, but I want it all gone!!! I can't stand the popups! Gonna try a reboot again and see what happens.

The antivirus program is popping up Win32/DlStwoylegeneric or something, which I see is a trojan...what I don't understand is why nothing is working!! and does the Win32 type trojan cause all the popups or is that unrelated?

0

I've run the smitfraudfix in safe mode, as well as ewido, emptied out my recycle bin and temp internet files all in safe mode. my antivirus keeps popping up infected/deleted Win32/DlStwoylegeneric and Win32/Aleddo!generic. I've gotten rid of a lot of the stuff that the hijackthis.de site told me was bad, as well as some junk that didn't need to be there. Not getting any popups so far, just the infected/deleted notifications. here's my new hjt log:

Logfile of HijackThis v1.99.1
Scan saved at 10:05:26 PM, on 7/2/2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\System32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Yahoo!\Antivirus\ISafe.exe
C:\WINDOWS\system32\cisvc.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\wltrysvc.exe
C:\WINDOWS\System32\bcmwltry.exe
C:\Program Files\Yahoo!\Antivirus\VetMsg.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\pctspk.exe
C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
C:\Program Files\Dell\AccessDirect\dadapp.exe
C:\Program Files\Dell\QuickSet\quickset.exe
C:\WINDOWS\System32\DSentry.exe
C:\Program Files\Common Files\Microsoft Shared\Works Shared\WkUFind.exe
C:\Program Files\Yahoo!\Antivirus\CAVTray.exe
C:\Program Files\Yahoo!\Antivirus\CAVRID.exe
C:\PROGRA~1\Yahoo!\YOP\yop.exe
C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\QuickTime Alternative\qttask.exe
C:\Program Files\Dell Support\DSAgnt.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\PROGRA~1\Yahoo!\browser\ycommon.exe
C:\DOCUME~1\MICHAE~1\APPLIC~1\ASEMBL~1\wowexec.exe
C:\WINDOWS\system32\cidaemon.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\msiexec.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\HJT\HijackThis.exe

O2 - BHO: Neopets - {CD292324-974F-4224-D074-CACA427AA030} - C:\PROGRA~1\Neopets\Toolbar\Toolbar.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn1\yt.dll
O3 - Toolbar: Neopets - {CD292324-974F-4224-D074-CACA427AA030} - C:\PROGRA~1\Neopets\Toolbar\Toolbar.dll
O4 - HKLM\..\Run: [ATIModeChange] Ati2mdxx.exe
O4 - HKLM\..\Run: [PCTVOICE] pctspk.exe
O4 - HKLM\..\Run: [SynTPLpr] C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
O4 - HKLM\..\Run: [DadApp] C:\Program Files\Dell\AccessDirect\dadapp.exe
O4 - HKLM\..\Run: [Dell QuickSet] C:\Program Files\Dell\QuickSet\quickset.exe
O4 - HKLM\..\Run: [DVDSentry] C:\WINDOWS\System32\DSentry.exe
O4 - HKLM\..\Run: [Microsoft Works Update Detection] C:\Program Files\Common Files\Microsoft Shared\Works Shared\WkUFind.exe
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [CaAvTray] "C:\Program Files\Yahoo!\Antivirus\CAVTray.exe"
O4 - HKLM\..\Run: [CAVRID] "C:\Program Files\Yahoo!\Antivirus\CAVRID.exe"
O4 - HKLM\..\Run: [YOP] C:\PROGRA~1\Yahoo!\YOP\yop.exe /autostart
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime Alternative\qttask.exe" -atboottime
O4 - HKLM\..\Run: [3bc97e49.exe] C:\WINDOWS\system32\3bc97e49.exe
O4 - HKCU\..\Run: [DellSupport] "C:\Program Files\Dell Support\DSAgnt.exe" /startup
O4 - HKCU\..\Run: [Aitp] "C:\DOCUME~1\MICHAE~1\APPLIC~1\ASEMBL~1\wowexec.exe" -vt ndrv
O4 - HKCU\..\Run: [Yahoo! Pager] "C:\PROGRA~1\Yahoo!\MESSEN~1\YAHOOM~1.EXE" -quiet
O4 - HKCU\..\Run: [3bc97e49.exe] C:\Documents and Settings\michael montgomery\Local Settings\Application Data\3bc97e49.exe **also "fixed" this many times and it keeps coming back as well, as different mutex or whatever you call them.
O9 - Extra button: AIM - {AC9E2541-2814-11d5-BC6D-00B0D0A1DE45} - C:\Program Files\AIM\aim.exe
O16 - DPF: {7B297BFD-85E4-4092-B2AF-16A91B2EA103} (WScanCtl Class) - http://www3.ca.com/securityadvisor/virusinfo/webscan.cab
O16 - DPF: {97B79133-88F0-45F0-8D57-0F2EF27D9C66} - http://85.255.114.166/1/rdgUS2404.exe **I've "fixed" this numerous times, keeps coming back.
O17 - HKLM\System\CCS\Services\Tcpip\..\{D7E35DDB-B98C-4916-9943-220CC429AE4D}: NameServer = 151.164.1.8,206.13.28.12
O23 - Service: Ati HotKey Poller - Unknown owner - C:\WINDOWS\System32\Ati2evxx.exe
O23 - Service: CAISafe - Computer Associates International, Inc. - C:\Program Files\Yahoo!\Antivirus\ISafe.exe
O23 - Service: ewido anti-spyware 4.0 guard - Anti-Malware Development a.s. - C:\Program Files\ewido anti-spyware 4.0\guard.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iPodService - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
O23 - Service: VET Message Service (VETMSGNT) - Computer Associates International, Inc. - C:\Program Files\Yahoo!\Antivirus\VetMsg.exe
O23 - Service: WLTRYSVC - Unknown owner - C:\WINDOWS\System32\wltrysvc.exe

0

and now I'm getting the popups again. Here is my smitfraudfix log:

SmitFraudFix v2.65

Scan done at 23:34:01.81, Sat 07/01/2006
Run from C:\Documents and Settings\michael montgomery\Desktop\SmitfraudFix
OS: Microsoft Windows XP [Version 5.1.2600] - Windows_NT
Fix ran in safe mode

»»»»»»»»»»»»»»»»»»»»»»»» Before SmitFraudFix
!!!Attention, following keys are not inevitably infected!!!

SrchSTS.exe by S!Ri
Search SharedTaskScheduler's .dll

»»»»»»»»»»»»»»»»»»»»»»»» Killing process


»»»»»»»»»»»»»»»»»»»»»»»» Generic Renos Fix

GenericRenosFix by S!Ri


»»»»»»»»»»»»»»»»»»»»»»»» Deleting infected files


»»»»»»»»»»»»»»»»»»»»»»»» Deleting Temp Files


»»»»»»»»»»»»»»»»»»»»»»»» Registry Cleaning

Registry Cleaning done.

»»»»»»»»»»»»»»»»»»»»»»»» After SmitFraudFix
!!!Attention, following keys are not inevitably infected!!!

SrchSTS.exe by S!Ri
Search SharedTaskScheduler's .dll


»»»»»»»»»»»»»»»»»»»»»»»» End

0

and here is my ewido log:

---------------------------------------------------------
ewido anti-spyware - Scan Report
---------------------------------------------------------

+ Created at: 7:57:08 AM 7/2/2006

+ Scan result:

HKLM\SOFTWARE\Altnet -> Adware.Altnet : Error during cleaning. (this has been on the computer for a long time, adaware always finds it and can't delete it either...guess I deleted something that was needed to remove it fully before I realized it)
HKLM\SOFTWARE\Altnet\Dashboard -> Adware.Altnet : Error during cleaning.
HKLM\SOFTWARE\Altnet\Dashboard\Settings -> Adware.Altnet : Error during cleaning.
C:\Program Files\BE Network\bin\slidev.exe -> Adware.BargainBuddy : Cleaned.
C:\WINDOWS\Downloaded Program Files\YazzleActiveX.ocx -> Adware.MediaTickets : Cleaned.
C:\WINDOWS\SYSTEM32\services.dll -> Adware.PurityScan : Cleaned.
C:\System Volume Information\_restore{B37680B2-BA0A-4E5D-BF30-83E44C588624}\RP332\A0042767.dll -> Adware.Zango : Cleaned.
C:\System Volume Information\_restore{B37680B2-BA0A-4E5D-BF30-83E44C588624}\RP376\A0045637.exe -> Dialer.Generic : Cleaned.
C:\Documents and Settings\michael montgomery\Application Data\aѕsembly\wowexec.exe -> Downloader.PurityScan.cq : Cleaned.
C:\Program Files\Common Files\Y1123OA.exe -> Downloader.PurityScan.cq : Cleaned.
C:\System Volume Information\_restore{B37680B2-BA0A-4E5D-BF30-83E44C588624}\RP375\A0045518.dll -> Downloader.Wintrim.h : Cleaned.
C:\System Volume Information\_restore{B37680B2-BA0A-4E5D-BF30-83E44C588624}\RP376\A0045567.exe -> Dropper.Microjoin.bx : Cleaned.
C:\Program Files\Yahoo!\YPSR\Quarantine\ppq38.tmp\ld62DC.tmp -> Not-A-Virus.Hoax.Win32.Renos.dv : Cleaned.
:mozilla.100:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.101:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.102:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.103:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.104:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.105:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.106:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.107:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.108:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.109:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.10:C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\hfk73sg6.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.110:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.111:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.113:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.114:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.311:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.419:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.440:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.442:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.6:C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\hfk73sg6.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.72:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.73:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.74:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.75:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.77:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.78:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.79:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.7:C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\hfk73sg6.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.80:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.81:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.82:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.83:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.84:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.85:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.86:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.87:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.88:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.893:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.89:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.90:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.91:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.92:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.93:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.94:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.95:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.96:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.97:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.98:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.99:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.9:C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\hfk73sg6.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
C:\Documents and Settings\Guest\Cookies\guest@msnportal.112.2o7[1].txt -> TrackingCookie.2o7 : Cleaned.
C:\Program Files\Yahoo!\YPSR\Quarantine\ppq1C4D.tmp -> TrackingCookie.2o7 : Cleaned.
C:\Program Files\Yahoo!\YPSR\Quarantine\ppq4F1.tmp -> TrackingCookie.2o7 : Cleaned.
:mozilla.109:C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\hfk73sg6.default\cookies.txt -> TrackingCookie.Adbrite : Cleaned.
:mozilla.143:C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\hfk73sg6.default\cookies.txt -> TrackingCookie.Adbrite : Cleaned.
:mozilla.144:C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\hfk73sg6.default\cookies.txt -> TrackingCookie.Adbrite : Cleaned.
:mozilla.145:C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\hfk73sg6.default\cookies.txt -> TrackingCookie.Adbrite : Cleaned.
:mozilla.141:C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\hfk73sg6.default\cookies.txt -> TrackingCookie.Addynamix : Cleaned.
:mozilla.142:C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\hfk73sg6.default\cookies.txt -> TrackingCookie.Addynamix : Cleaned.
:mozilla.271:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Addynamix : Cleaned.
:mozilla.272:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Addynamix : Cleaned.
:mozilla.171:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Adjuggler : Cleaned.
:mozilla.172:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Adjuggler : Cleaned.
:mozilla.173:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Adjuggler : Cleaned.
:mozilla.474:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.475:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.476:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.477:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.478:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.135:C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\hfk73sg6.default\cookies.txt -> TrackingCookie.Adserver : Cleaned.
:mozilla.136:C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\hfk73sg6.default\cookies.txt -> TrackingCookie.Adserver : Cleaned.
:mozilla.137:C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\hfk73sg6.default\cookies.txt -> TrackingCookie.Adserver : Cleaned.
:mozilla.469:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Adserver : Cleaned.
:mozilla.470:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Adserver : Cleaned.
:mozilla.471:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Adserver : Cleaned.
:mozilla.472:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Adserver : Cleaned.
C:\Program Files\Yahoo!\YPSR\Quarantine\ppq7.tmp -> TrackingCookie.Adserver : Cleaned.
:mozilla.15:C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\hfk73sg6.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.16:C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\hfk73sg6.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.17:C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\hfk73sg6.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.18:C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\hfk73sg6.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.19:C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\hfk73sg6.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.20:C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\hfk73sg6.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.21:C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\hfk73sg6.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.22:C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\hfk73sg6.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.23:C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\hfk73sg6.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.23:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.24:C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\hfk73sg6.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.24:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.25:C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\hfk73sg6.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.25:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.26:C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\hfk73sg6.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.26:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.27:C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\hfk73sg6.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.27:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.28:C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\hfk73sg6.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.29:C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\hfk73sg6.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.29:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.30:C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\hfk73sg6.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.30:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.31:C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\hfk73sg6.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.31:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.32:C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\hfk73sg6.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.32:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.33:C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\hfk73sg6.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.34:C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\hfk73sg6.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.35:C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\hfk73sg6.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.36:C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\hfk73sg6.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.37:C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\hfk73sg6.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.38:C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\hfk73sg6.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.39:C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\hfk73sg6.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.126:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Atdmt : Cleaned.
:mozilla.40:C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\hfk73sg6.default\cookies.txt -> TrackingCookie.Atdmt : Cleaned.
:mozilla.41:C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\hfk73sg6.default\cookies.txt -> TrackingCookie.Atdmt : Cleaned.
:mozilla.609:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Bestoffersnetworks : Cleaned.
:mozilla.610:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Bestoffersnetworks : Cleaned.
:mozilla.611:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Bestoffersnetworks : Cleaned.
:mozilla.612:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Bestoffersnetworks : Cleaned.
:mozilla.676:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Bfast : Cleaned.
:mozilla.376:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Bluestreak : Cleaned.
C:\Program Files\Yahoo!\YPSR\Quarantine\ppq1C4F.tmp -> TrackingCookie.Bluestreak : Cleaned.
C:\Program Files\Yahoo!\YPSR\Quarantine\ppqA.tmp -> TrackingCookie.Bluestreak : Cleaned.
:mozilla.155:C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\hfk73sg6.default\cookies.txt -> TrackingCookie.Bridgetrack : Cleaned.
:mozilla.156:C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\hfk73sg6.default\cookies.txt -> TrackingCookie.Bridgetrack : Cleaned.
:mozilla.157:C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\hfk73sg6.default\cookies.txt -> TrackingCookie.Bridgetrack : Cleaned.
:mozilla.421:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Bridgetrack : Cleaned.
:mozilla.422:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Bridgetrack : Cleaned.
:mozilla.423:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Bridgetrack : Cleaned.
:mozilla.123:C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\hfk73sg6.default\cookies.txt -> TrackingCookie.Burstbeacon : Cleaned.
:mozilla.613:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Burstbeacon : Cleaned.
:mozilla.615:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Burstnet : Cleaned.
:mozilla.616:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Burstnet : Cleaned.
C:\Program Files\Yahoo!\YPSR\Quarantine\ppq4F2.tmp -> TrackingCookie.Burstnet : Cleaned.
:mozilla.102:C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\hfk73sg6.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned.
:mozilla.103:C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\hfk73sg6.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned.
:mozilla.104:C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\hfk73sg6.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned.
:mozilla.105:C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\hfk73sg6.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned.
:mozilla.358:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned.
:mozilla.360:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned.
:mozilla.361:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned.
:mozilla.362:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned.
:mozilla.363:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned.
:mozilla.364:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned.
:mozilla.365:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned.
C:\Program Files\Yahoo!\YPSR\Quarantine\ppq1C50.tmp -> TrackingCookie.Casalemedia : Cleaned.
C:\Program Files\Yahoo!\YPSR\Quarantine\ppq4F3.tmp -> TrackingCookie.Casalemedia : Cleaned.
C:\Program Files\Yahoo!\YPSR\Quarantine\ppq3.tmp -> TrackingCookie.Centrport : Cleaned.
:mozilla.296:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Clickhype : Cleaned.
:mozilla.297:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Clickhype : Cleaned.
:mozilla.764:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Clickzs : Cleaned.
:mozilla.766:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Clickzs : Cleaned.
:mozilla.829:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Coremetrics : Cleaned.
:mozilla.112:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Doubleclick : Cleaned.
:mozilla.14:C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\hfk73sg6.default\cookies.txt -> TrackingCookie.Doubleclick : Cleaned.
:mozilla.723:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Esomniture : Cleaned.
:mozilla.882:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Esomniture : Cleaned.
:mozilla.176:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Falkag : Cleaned.
:mozilla.177:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Falkag : Cleaned.
:mozilla.178:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Falkag : Cleaned.
:mozilla.179:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Falkag : Cleaned.
:mozilla.180:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Falkag : Cleaned.
:mozilla.181:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Falkag : Cleaned.
:mozilla.657:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Falkag : Cleaned.
:mozilla.658:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Falkag : Cleaned.
:mozilla.659:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Falkag : Cleaned.
:mozilla.801:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Falkag : Cleaned.
:mozilla.802:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Falkag : Cleaned.
:mozilla.803:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Falkag : Cleaned.
:mozilla.804:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Falkag : Cleaned.
:mozilla.805:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Falkag : Cleaned.
C:\Program Files\Yahoo!\YPSR\Quarantine\ppq12.tmp -> TrackingCookie.Falkag : Cleaned.
C:\Program Files\Yahoo!\YPSR\Quarantine\ppq4F4.tmp -> TrackingCookie.Falkag : Cleaned.
:mozilla.147:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Fastclick : Cleaned.
:mozilla.148:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Fastclick : Cleaned.
:mozilla.149:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Fastclick : Cleaned.
:mozilla.150:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Fastclick : Cleaned.
:mozilla.151:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Fastclick : Cleaned.
:mozilla.56:C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\hfk73sg6.default\cookies.txt -> TrackingCookie.Fastclick : Cleaned.
:mozilla.57:C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\hfk73sg6.default\cookies.txt -> TrackingCookie.Fastclick : Cleaned.
:mozilla.58:C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\hfk73sg6.default\cookies.txt -> TrackingCookie.Fastclick : Cleaned.
:mozilla.59:C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\hfk73sg6.default\cookies.txt -> TrackingCookie.Fastclick : Cleaned.
:mozilla.60:C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\hfk73sg6.default\cookies.txt -> TrackingCookie.Fastclick : Cleaned.
:mozilla.350:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Googleadservices : Cleaned.
:mozilla.691:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Googleadservices : Cleaned.
:mozilla.716:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Googleadservices : Cleaned.
:mozilla.901:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Googleadservices : Cleaned.
:mozilla.214:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned.
:mozilla.215:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned.
:mozilla.216:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned.
:mozilla.278:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned.
:mozilla.458:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned.
:mozilla.515:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned.
:mozilla.516:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned.
:mozilla.517:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned.
:mozilla.518:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned.
:mozilla.519:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned.
:mozilla.520:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned.
:mozilla.521:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned.
:mozilla.789:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned.
:mozilla.790:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned.
:mozilla.791:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned.
:mozilla.809:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned.
:mozilla.810:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned.
:mozilla.913:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned.
:mozilla.915:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned.
:mozilla.179:C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\hfk73sg6.default\cookies.txt -> TrackingCookie.Hitslink : Cleaned.
:mozilla.180:C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\hfk73sg6.default\cookies.txt -> TrackingCookie.Hitslink : Cleaned.
:mozilla.181:C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\hfk73sg6.default\cookies.txt -> TrackingCookie.Hitslink : Cleaned.
:mozilla.182:C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\hfk73sg6.default\cookies.txt -> TrackingCookie.Hitslink : Cleaned.
:mozilla.394:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Hotlog : Cleaned.
C:\Program Files\Yahoo!\YPSR\Quarantine\ppq10.tmp -> TrackingCookie.Hotlog : Cleaned.
:mozilla.772:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Liveperson : Cleaned.
:mozilla.773:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Liveperson : Cleaned.
:mozilla.774:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Liveperson : Cleaned.
:mozilla.137:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Mediaplex : Cleaned.
:mozilla.138:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Mediaplex : Cleaned.
:mozilla.52:C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\hfk73sg6.default\cookies.txt -> TrackingCookie.Mediaplex : Cleaned.
:mozilla.263:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Myaffiliateprogram : Cleaned.
:mozilla.667:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Onestat : Cleaned.
:mozilla.668:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Onestat : Cleaned.
:mozilla.279:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Overture : Cleaned.
:mozilla.280:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Overture : Cleaned.
:mozilla.459:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Overture : Cleaned.
:mozilla.273:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Pointroll : Cleaned.
:mozilla.274:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Pointroll : Cleaned.
:mozilla.275:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Pointroll : Cleaned.
:mozilla.276:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Pointroll : Cleaned.
:mozilla.277:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Pointroll : Cleaned.
:mozilla.62:C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\hfk73sg6.default\cookies.txt -> TrackingCookie.Pointroll : Cleaned.
:mozilla.63:C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\hfk73sg6.default\cookies.txt -> TrackingCookie.Pointroll : Cleaned.
:mozilla.64:C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\hfk73sg6.default\cookies.txt -> TrackingCookie.Pointroll : Cleaned.
:mozilla.65:C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\hfk73sg6.default\cookies.txt -> TrackingCookie.Pointroll : Cleaned.
:mozilla.66:C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\hfk73sg6.default\cookies.txt -> TrackingCookie.Pointroll : Cleaned.
:mozilla.905:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Qksrv : Cleaned.
:mozilla.906:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Qksrv : Cleaned.
C:\Program Files\Yahoo!\YPSR\Quarantine\ppq14.tmp -> TrackingCookie.Qksrv : Cleaned.
C:\Program Files\Yahoo!\YPSR\Quarantine\ppq1C.tmp -> TrackingCookie.Qksrv : Cleaned.
:mozilla.174:C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\hfk73sg6.default\cookies.txt -> TrackingCookie.Questionmarket : Cleaned.
:mozilla.210:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Questionmarket : Cleaned.
:mozilla.211:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Questionmarket : Cleaned.
:mozilla.212:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Questionmarket : Cleaned.
C:\Program Files\Yahoo!\YPSR\Quarantine\ppq1D.tmp -> TrackingCookie.Questionmarket : Cleaned.
C:\Program Files\Yahoo!\YPSR\Quarantine\ppq4.tmp -> TrackingCookie.Questionmarket : Cleaned.
:mozilla.377:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Ru4 : Cleaned.
:mozilla.378:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Ru4 : Cleaned.
:mozilla.379:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Ru4 : Cleaned.
:mozilla.380:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Ru4 : Cleaned.
:mozilla.381:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Ru4 : Cleaned.
:mozilla.382:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Ru4 : Cleaned.
:mozilla.383:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Ru4 : Cleaned.
:mozilla.384:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Ru4 : Cleaned.
:mozilla.385:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Ru4 : Cleaned.
:mozilla.386:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Ru4 : Cleaned.
:mozilla.387:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Ru4 : Cleaned.
:mozilla.45:C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\hfk73sg6.default\cookies.txt -> TrackingCookie.Ru4 : Cleaned.
:mozilla.46:C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\hfk73sg6.default\cookies.txt -> TrackingCookie.Ru4 : Cleaned.
:mozilla.47:C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\hfk73sg6.default\cookies.txt -> TrackingCookie.Ru4 : Cleaned.
C:\Program Files\Yahoo!\YPSR\Quarantine\ppq17.tmp -> TrackingCookie.Ru4 : Cleaned.
C:\Program Files\Yahoo!\YPSR\Quarantine\ppq1E.tmp -> TrackingCookie.Serving-sys : Cleaned.
:mozilla.660:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Specificclick : Cleaned.
:mozilla.661:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Specificclick : Cleaned.
:mozilla.395:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Spylog : Cleaned.
C:\Program Files\Yahoo!\YPSR\Quarantine\ppq15.tmp -> TrackingCookie.Spylog : Cleaned.
:mozilla.226:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
:mozilla.227:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
:mozilla.228:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
:mozilla.229:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
:mozilla.230:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
:mozilla.231:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
:mozilla.232:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
:mozilla.233:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
:mozilla.234:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
:mozilla.235:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
:mozilla.236:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
:mozilla.237:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
:mozilla.238:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
:mozilla.239:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
C:\Program Files\Yahoo!\YPSR\Quarantine\ppq18.tmp -> TrackingCookie.Statcounter : Cleaned.
:mozilla.339:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Tacoda : Cleaned.
:mozilla.340:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Tacoda : Cleaned.
:mozilla.341:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Tacoda : Cleaned.
:mozilla.347:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Tacoda : Cleaned.
:mozilla.892:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Tacoda : Cleaned.
:mozilla.163:C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\hfk73sg6.default\cookies.txt -> TrackingCookie.Targetnet : Cleaned.
:mozilla.164:C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\hfk73sg6.default\cookies.txt -> TrackingCookie.Targetnet : Cleaned.
:mozilla.249:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Tradedoubler : Cleaned.
C:\Program Files\Yahoo!\YPSR\Quarantine\ppq1F.tmp -> TrackingCookie.Tradedoubler : Cleaned.
:mozilla.146:C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\hfk73sg6.default\cookies.txt -> TrackingCookie.Trafficmp : Cleaned.
:mozilla.147:C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\hfk73sg6.default\cookies.txt -> TrackingCookie.Trafficmp : Cleaned.
:mozilla.148:C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\hfk73sg6.default\cookies.txt -> TrackingCookie.Trafficmp : Cleaned.
:mozilla.149:C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\hfk73sg6.default\cookies.txt -> TrackingCookie.Trafficmp : Cleaned.
:mozilla.150:C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\hfk73sg6.default\cookies.txt -> TrackingCookie.Trafficmp : Cleaned.
:mozilla.151:C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\hfk73sg6.default\cookies.txt -> TrackingCookie.Trafficmp : Cleaned.
:mozilla.152:C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\hfk73sg6.default\cookies.txt -> TrackingCookie.Trafficmp : Cleaned.
:mozilla.284:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Trafficmp : Cleaned.
:mozilla.285:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Trafficmp : Cleaned.
:mozilla.286:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Trafficmp : Cleaned.
:mozilla.287:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Trafficmp : Cleaned.
:mozilla.288:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Trafficmp : Cleaned.
:mozilla.290:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Trafficmp : Cleaned.
:mozilla.291:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Trafficmp : Cleaned.
:mozilla.292:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Trafficmp : Cleaned.
C:\Program Files\Yahoo!\YPSR\Quarantine\ppq20.tmp -> TrackingCookie.Trafficmp : Cleaned.
:mozilla.106:C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\hfk73sg6.default\cookies.txt -> TrackingCookie.Tribalfusion : Cleaned.
:mozilla.107:C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\hfk73sg6.default\cookies.txt -> TrackingCookie.Tribalfusion : Cleaned.
:mozilla.108:C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\hfk73sg6.default\cookies.txt -> TrackingCookie.Tribalfusion : Cleaned.
:mozilla.170:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Tribalfusion : Cleaned.
:mozilla.182:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Tribalfusion : Cleaned.
:mozilla.183:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Tribalfusion : Cleaned.
:mozilla.184:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Tribalfusion : Cleaned.
:mozilla.185:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Tribalfusion : Cleaned.
:mozilla.186:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Tribalfusion : Cleaned.
:mozilla.187:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Tribalfusion : Cleaned.
:mozilla.188:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Tribalfusion : Cleaned.
C:\Program Files\Yahoo!\YPSR\Quarantine\ppq4F7.tmp -> TrackingCookie.Tribalfusion : Cleaned.
C:\Program Files\Yahoo!\YPSR\Quarantine\ppq6.tmp -> TrackingCookie.Tribalfusion : Cleaned.
:mozilla.626:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Valuead : Cleaned.
:mozilla.627:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Valuead : Cleaned.
:mozilla.628:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Valuead : Cleaned.
:mozilla.629:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Valuead : Cleaned.
:mozilla.630:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Valuead : Cleaned.
:mozilla.631:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Valuead : Cleaned.
:mozilla.705:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Valuead : Cleaned.
:mozilla.706:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Valuead : Cleaned.
:mozilla.707:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Valuead : Cleaned.
:mozilla.708:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Valuead : Cleaned.
:mozilla.709:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Valuead : Cleaned.
:mozilla.710:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Valuead : Cleaned.
:mozilla.153:C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\hfk73sg6.default\cookies.txt -> TrackingCookie.Valueclick : Cleaned.
:mozilla.154:C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\hfk73sg6.default\cookies.txt -> TrackingCookie.Valueclick : Cleaned.
:mozilla.928:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Webtrendslive : Cleaned.
:mozilla.312:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Yadro : Cleaned.
:mozilla.100:C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\hfk73sg6.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.101:C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\hfk73sg6.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.139:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.140:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.141:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.142:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.143:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.91:C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\hfk73sg6.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.92:C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\hfk73sg6.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.93:C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\hfk73sg6.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.94:C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\hfk73sg6.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.95:C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\hfk73sg6.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.96:C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\hfk73sg6.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.97:C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\hfk73sg6.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.98:C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\hfk73sg6.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.99:C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\hfk73sg6.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned.
C:\Documents and Settings\Guest\Cookies\guest@ad.yieldmanager[2].txt -> TrackingCookie.Yieldmanager : Cleaned.
C:\Program Files\Yahoo!\YPSR\Quarantine\ppq1C4E.tmp -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.433:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Zedo : Cleaned.
:mozilla.434:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Zedo : Cleaned.
:mozilla.80:C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\hfk73sg6.default\cookies.txt -> TrackingCookie.Zedo : Cleaned.
:mozilla.81:C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\hfk73sg6.default\cookies.txt -> TrackingCookie.Zedo : Cleaned.
:mozilla.82:C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\hfk73sg6.default\cookies.txt -> TrackingCookie.Zedo : Cleaned.
C:\Program Files\Yahoo!\YPSR\Quarantine\ppq21.tmp -> TrackingCookie.Zedo : Cleaned.
C:\Program Files\Yahoo!\YPSR\Quarantine\ppq4F8.tmp -> TrackingCookie.Zedo : Cleaned.


::Report end

0

Hi, there are still a bunch of things that need to be cleaned. Please run HJT in safe mode, and check these items.

O4 - HKLM\..\Run: [3bc97e49.exe] C:\WINDOWS\system32\3bc97e49.exe

O4 - HKCU\..\Run: [3bc97e49.exe] C:\Documents and Settings\michael montgomery\Local Settings\Application Data\3bc97e49.exe

O16 - DPF: {97B79133-88F0-45F0-8D57-0F2EF27D9C66} - http://85.255.114.166/1/rdgUS2404.exe

O17 - HKLM\System\CCS\Services\Tcpip\..\{D7E35DDB-B98C-4916-9943-220CC429AE4D}: NameServer = 151.164.1.8,206.13.28.12

Click Fix Checked.
___________________________________________________

Reboot into normal mode.

Please download Pocket Killbox by O^E.

  • Save it to your desktop.
  • Please double-click Killbox.exe to run it.
  • Select:
    • Delete on Reboot
    • then Click on the All Files button.
  • Please copy the file paths below to the clipboard by highlighting ALL of them and pressing CTRL + C (or, after highlighting, right-click and choose copy):

    C:\Documents and Settings\michael montgomery\Local Settings\Application Data\3bc97e49.exe

    C:\WINDOWS\system32\3bc97e49.exe

  • Return to Killbox, go to the File menu, and choose Paste from Clipboard.
  • Click the red-and-white Delete File button. Click Yes at the Delete on Reboot prompt. Click OK at any PendingFileRenameOperations prompt (and please let me know if you receive this message!).

If your computer does not restart automatically, please restart it manually.
____________________________________________________


Post a fresh ewido log, and new HJT log.

0

okay, I've done everything but the ewido scan, which I will start running as soon as I post this, as it takes a while. Here is the new HJT log:

Logfile of HijackThis v1.99.1
Scan saved at 12:23:33 PM, on 7/3/2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\System32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\pctspk.exe
C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
C:\Program Files\Yahoo!\Antivirus\ISafe.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\WINDOWS\system32\cisvc.exe
C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
C:\Program Files\Dell\AccessDirect\dadapp.exe
C:\Program Files\Dell\QuickSet\quickset.exe
C:\WINDOWS\System32\DSentry.exe
C:\Program Files\Common Files\Microsoft Shared\Works Shared\WkUFind.exe
C:\Program Files\Yahoo!\Antivirus\CAVTray.exe
C:\Program Files\Yahoo!\Antivirus\CAVRID.exe
C:\PROGRA~1\Yahoo!\YOP\yop.exe
C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
C:\Program Files\ewido anti-spyware 4.0\guard.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\QuickTime Alternative\qttask.exe
C:\Program Files\Dell Support\DSAgnt.exe
C:\DOCUME~1\MICHAE~1\APPLIC~1\ASEMBL~1\wowexec.exe
C:\Program Files\?ppPatch\??plorer.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Yahoo!\Antivirus\VetMsg.exe
C:\WINDOWS\System32\wltrysvc.exe
C:\WINDOWS\System32\bcmwltry.exe
C:\PROGRA~1\Yahoo!\browser\ycommon.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\WINDOWS\system32\wuauclt.exe
C:\HJT\HijackThis.exe

O2 - BHO: Neopets - {CD292324-974F-4224-D074-CACA427AA030} - C:\PROGRA~1\Neopets\Toolbar\Toolbar.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn1\yt.dll
O3 - Toolbar: Neopets - {CD292324-974F-4224-D074-CACA427AA030} - C:\PROGRA~1\Neopets\Toolbar\Toolbar.dll
O4 - HKLM\..\Run: [ATIModeChange] Ati2mdxx.exe
O4 - HKLM\..\Run: [PCTVOICE] pctspk.exe
O4 - HKLM\..\Run: [SynTPLpr] C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
O4 - HKLM\..\Run: [DadApp] C:\Program Files\Dell\AccessDirect\dadapp.exe
O4 - HKLM\..\Run: [Dell QuickSet] C:\Program Files\Dell\QuickSet\quickset.exe
O4 - HKLM\..\Run: [DVDSentry] C:\WINDOWS\System32\DSentry.exe
O4 - HKLM\..\Run: [Microsoft Works Update Detection] C:\Program Files\Common Files\Microsoft Shared\Works Shared\WkUFind.exe
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [CaAvTray] "C:\Program Files\Yahoo!\Antivirus\CAVTray.exe"
O4 - HKLM\..\Run: [CAVRID] "C:\Program Files\Yahoo!\Antivirus\CAVRID.exe"
O4 - HKLM\..\Run: [YOP] C:\PROGRA~1\Yahoo!\YOP\yop.exe /autostart
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime Alternative\qttask.exe" -atboottime
O4 - HKCU\..\Run: [DellSupport] "C:\Program Files\Dell Support\DSAgnt.exe" /startup
O4 - HKCU\..\Run: [Aitp] "C:\DOCUME~1\MICHAE~1\APPLIC~1\ASEMBL~1\wowexec.exe" -vt ndrv
O4 - HKCU\..\Run: [Yahoo! Pager] "C:\PROGRA~1\Yahoo!\MESSEN~1\YAHOOM~1.EXE" -quiet
O4 - HKCU\..\Run: [Dya] C:\Program Files\?ppPatch\??plorer.exe
O9 - Extra button: AIM - {AC9E2541-2814-11d5-BC6D-00B0D0A1DE45} - C:\Program Files\AIM\aim.exe
O16 - DPF: {7B297BFD-85E4-4092-B2AF-16A91B2EA103} (WScanCtl Class) - http://www3.ca.com/securityadvisor/virusinfo/webscan.cab
O20 - AppInit_DLLs: C:\WINDOWS\system32\services.dll
O20 - Winlogon Notify: winvdj32 - C:\WINDOWS\SYSTEM32\winvdj32.dll
O23 - Service: Ati HotKey Poller - Unknown owner - C:\WINDOWS\System32\Ati2evxx.exe
O23 - Service: CAISafe - Computer Associates International, Inc. - C:\Program Files\Yahoo!\Antivirus\ISafe.exe
O23 - Service: ewido anti-spyware 4.0 guard - Anti-Malware Development a.s. - C:\Program Files\ewido anti-spyware 4.0\guard.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iPodService - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
O23 - Service: VET Message Service (VETMSGNT) - Computer Associates International, Inc. - C:\Program Files\Yahoo!\Antivirus\VetMsg.exe
O23 - Service: WLTRYSVC - Unknown owner - C:\WINDOWS\System32\wltrysvc.exe

I don't want to speak too soon, but I'm thinking this is working!! Thank you so very much!!! :mrgreen: ewido log to come.

**edit** still working on ewido scan...should I be scanning in safemode? because while scanning, my CA antivirus popped up again with one of the win32 infected/deleted messages and I got several ie popups. I'm using firefox btw.

0

I just found this: C:\gendel32.exe

don't think any of the scans have brought that one up...

0

new ewido log::sad:

---------------------------------------------------------
ewido anti-spyware - Scan Report
---------------------------------------------------------

+ Created at: 1:40:15 PM 7/3/2006

+ Scan result:

HKLM\SOFTWARE\Altnet -> Adware.Altnet : Error during cleaning.
HKLM\SOFTWARE\Altnet\Dashboard -> Adware.Altnet : Error during cleaning.
HKLM\SOFTWARE\Altnet\Dashboard\Settings -> Adware.Altnet : Error during cleaning.
C:\System Volume Information\_restore{B37680B2-BA0A-4E5D-BF30-83E44C588624}\RP377\A0045763.exe -> Adware.BargainBuddy : Cleaned.
C:\System Volume Information\_restore{B37680B2-BA0A-4E5D-BF30-83E44C588624}\RP377\A0045764.dll -> Adware.PurityScan : Cleaned.
C:\WINDOWS\SYSTEM32\services.dll -> Adware.PurityScan : Cleaned.
[1012] C:\WINDOWS\system32\services.dll -> Adware.PurityScan : Error during cleaning.
[1092] C:\WINDOWS\system32\services.dll -> Adware.PurityScan : Error during cleaning.
[1192] C:\WINDOWS\system32\services.dll -> Adware.PurityScan : Error during cleaning.
[128] C:\WINDOWS\system32\services.dll -> Adware.PurityScan : Error during cleaning.
[1344] C:\WINDOWS\system32\services.dll -> Adware.PurityScan : Error during cleaning.
[1352] C:\WINDOWS\system32\services.dll -> Adware.PurityScan : Error during cleaning.
[1464] C:\WINDOWS\system32\services.dll -> Adware.PurityScan : Error during cleaning.
[1532] C:\WINDOWS\system32\services.dll -> Adware.PurityScan : Error during cleaning.
[1568] C:\WINDOWS\system32\services.dll -> Adware.PurityScan : Error during cleaning.
[1608] C:\WINDOWS\system32\services.dll -> Adware.PurityScan : Error during cleaning.
[1700] C:\WINDOWS\system32\services.dll -> Adware.PurityScan : Error during cleaning.
[172] C:\WINDOWS\system32\services.dll -> Adware.PurityScan : Error during cleaning.
[176] C:\WINDOWS\system32\services.dll -> Adware.PurityScan : Error during cleaning.
[1904] C:\WINDOWS\system32\services.dll -> Adware.PurityScan : Error during cleaning.
[2152] C:\WINDOWS\system32\services.dll -> Adware.PurityScan : Error during cleaning.
[220] C:\WINDOWS\system32\services.dll -> Adware.PurityScan : Error during cleaning.
[240] C:\WINDOWS\system32\services.dll -> Adware.PurityScan : Error during cleaning.
[2416] C:\WINDOWS\system32\services.dll -> Adware.PurityScan : Error during cleaning.
[252] C:\WINDOWS\system32\services.dll -> Adware.PurityScan : Error during cleaning.
[272] C:\WINDOWS\system32\services.dll -> Adware.PurityScan : Error during cleaning.
[2764] C:\WINDOWS\system32\services.dll -> Adware.PurityScan : Error during cleaning.
[312] C:\WINDOWS\system32\services.dll -> Adware.PurityScan : Error during cleaning.
[380] C:\WINDOWS\system32\services.dll -> Adware.PurityScan : Error during cleaning.
[3936] C:\WINDOWS\system32\services.dll -> Adware.PurityScan : Error during cleaning.
[412] C:\WINDOWS\system32\services.dll -> Adware.PurityScan : Error during cleaning.
[444] C:\WINDOWS\system32\services.dll -> Adware.PurityScan : Error during cleaning.
[452] C:\WINDOWS\system32\services.dll -> Adware.PurityScan : Error during cleaning.
[504] C:\WINDOWS\system32\services.dll -> Adware.PurityScan : Error during cleaning.
[528] C:\WINDOWS\system32\services.dll -> Adware.PurityScan : Error during cleaning.
[544] C:\WINDOWS\system32\services.dll -> Adware.PurityScan : Error during cleaning.
[556] C:\WINDOWS\system32\services.dll -> Adware.PurityScan : Error during cleaning.
[616] C:\WINDOWS\system32\services.dll -> Adware.PurityScan : Error during cleaning.
[716] C:\WINDOWS\system32\services.dll -> Adware.PurityScan : Error during cleaning.
[760] C:\WINDOWS\system32\services.dll -> Adware.PurityScan : Error during cleaning.
[812] C:\WINDOWS\system32\services.dll -> Adware.PurityScan : Error during cleaning.
[824] C:\WINDOWS\system32\services.dll -> Adware.PurityScan : Error during cleaning.
[984] C:\WINDOWS\system32\services.dll -> Adware.PurityScan : Error during cleaning.
C:\System Volume Information\_restore{B37680B2-BA0A-4E5D-BF30-83E44C588624}\RP356\A0043336.dll -> Adware.SpywareStorm : Cleaned.
C:\Documents and Settings\michael montgomery\Application Data\aѕsembly\wowexec.exe -> Downloader.PurityScan.co : Cleaned.
C:\Documents and Settings\michael montgomery\Local Settings\Temp\!update.exe -> Downloader.PurityScan.co : Cleaned.
[588] C:\DOCUME~1\MICHAE~1\APPLIC~1\ASEMBL~1\wowexec.exe -> Downloader.PurityScan.co : Error during cleaning.
C:\System Volume Information\_restore{B37680B2-BA0A-4E5D-BF30-83E44C588624}\RP377\A0045761.exe -> Downloader.PurityScan.cq : Cleaned.
C:\System Volume Information\_restore{B37680B2-BA0A-4E5D-BF30-83E44C588624}\RP377\A0045762.exe -> Downloader.PurityScan.cq : Cleaned.
C:\Documents and Settings\michael montgomery\Desktop\backups\backup-20060701-153310-932.dll -> Downloader.Zlob.wj : Cleaned.
C:\System Volume Information\_restore{B37680B2-BA0A-4E5D-BF30-83E44C588624}\RP377\A0045720.exe -> Downloader.Zlob.wj : Cleaned.
C:\System Volume Information\_restore{B37680B2-BA0A-4E5D-BF30-83E44C588624}\RP377\A0045723.tlb -> Downloader.Zlob.wj : Cleaned.
C:\System Volume Information\_restore{B37680B2-BA0A-4E5D-BF30-83E44C588624}\RP377\A0045719.exe -> Downloader.Zlob.wk : Cleaned.
:mozilla.200:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.226:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Adbrite : Cleaned.
:mozilla.24:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Adjuggler : Cleaned.
:mozilla.26:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Adjuggler : Cleaned.
:mozilla.27:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Adjuggler : Cleaned.
:mozilla.6:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Adjuggler : Cleaned.
:mozilla.131:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.132:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.133:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.136:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.16:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Atdmt : Cleaned.
:mozilla.183:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned.
:mozilla.184:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned.
:mozilla.185:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned.
:mozilla.197:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Cpvfeed : Cleaned.
:mozilla.198:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Cpvfeed : Cleaned.
:mozilla.199:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Cpvfeed : Cleaned.
:mozilla.41:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Doubleclick : Cleaned.
:mozilla.17:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Falkag : Cleaned.
:mozilla.18:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Falkag : Cleaned.
:mozilla.19:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Falkag : Cleaned.
:mozilla.20:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Falkag : Cleaned.
:mozilla.21:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Falkag : Cleaned.
:mozilla.22:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Falkag : Cleaned.
:mozilla.23:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Falkag : Cleaned.
:mozilla.166:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Fastclick : Cleaned.
:mozilla.168:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Fastclick : Cleaned.
:mozilla.169:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Fastclick : Cleaned.
:mozilla.258:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Ivwbox : Cleaned.
:mozilla.249:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Overture : Cleaned.
:mozilla.94:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Questionmarket : Cleaned.
:mozilla.95:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Questionmarket : Cleaned.
:mozilla.214:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Sexcounter : Cleaned.
:mozilla.215:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Sexcounter : Cleaned.
:mozilla.217:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Sextracker : Cleaned.
:mozilla.218:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Sextracker : Cleaned.
:mozilla.219:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Sextracker : Cleaned.
:mozilla.221:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Sextracker : Cleaned.
:mozilla.225:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
:mozilla.176:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Trafficmp : Cleaned.
:mozilla.177:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Trafficmp : Cleaned.
:mozilla.178:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Trafficmp : Cleaned.
:mozilla.179:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Trafficmp : Cleaned.
:mozilla.180:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Trafficmp : Cleaned.
:mozilla.181:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Trafficmp : Cleaned.
:mozilla.182:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Trafficmp : Cleaned.
:mozilla.25:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Tribalfusion : Cleaned.
:mozilla.28:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Tribalfusion : Cleaned.
:mozilla.29:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Tribalfusion : Cleaned.
:mozilla.30:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Tribalfusion : Cleaned.
:mozilla.31:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Tribalfusion : Cleaned.
:mozilla.32:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Tribalfusion : Cleaned.
:mozilla.7:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Tribalfusion : Cleaned.
:mozilla.161:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.162:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.163:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.164:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.167:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned.
C:\Documents and Settings\michael montgomery\Cookies\michael [email]montgomery@ad.yieldmanager[1].txt[/email] -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.170:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Zedo : Cleaned.
:mozilla.171:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Zedo : Cleaned.
:mozilla.172:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Zedo : Cleaned.
:mozilla.173:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Zedo : Cleaned.
:mozilla.174:C:\Documents and Settings\michael montgomery\Application Data\Mozilla\Firefox\Profiles\8nff4lz8.default\cookies.txt -> TrackingCookie.Zedo : Cleaned.


::Report end

0

and a new new HJT log:

Logfile of HijackThis v1.99.1
Scan saved at 1:45:07 PM, on 7/3/2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\System32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\pctspk.exe
C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
C:\Program Files\Yahoo!\Antivirus\ISafe.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\WINDOWS\system32\cisvc.exe
C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
C:\Program Files\Dell\AccessDirect\dadapp.exe
C:\Program Files\Dell\QuickSet\quickset.exe
C:\WINDOWS\System32\DSentry.exe
C:\Program Files\Common Files\Microsoft Shared\Works Shared\WkUFind.exe
C:\Program Files\Yahoo!\Antivirus\CAVTray.exe
C:\Program Files\Yahoo!\Antivirus\CAVRID.exe
C:\PROGRA~1\Yahoo!\YOP\yop.exe
C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\QuickTime Alternative\qttask.exe
C:\Program Files\Dell Support\DSAgnt.exe
C:\DOCUME~1\MICHAE~1\APPLIC~1\ASEMBL~1\wowexec.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Yahoo!\Antivirus\VetMsg.exe
C:\WINDOWS\System32\wltrysvc.exe
C:\WINDOWS\System32\bcmwltry.exe
C:\PROGRA~1\Yahoo!\browser\ycommon.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\WINDOWS\system32\cidaemon.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\HJT\HijackThis.exe

O2 - BHO: Neopets - {CD292324-974F-4224-D074-CACA427AA030} - C:\PROGRA~1\Neopets\Toolbar\Toolbar.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn1\yt.dll
O3 - Toolbar: Neopets - {CD292324-974F-4224-D074-CACA427AA030} - C:\PROGRA~1\Neopets\Toolbar\Toolbar.dll
O4 - HKLM\..\Run: [ATIModeChange] Ati2mdxx.exe
O4 - HKLM\..\Run: [PCTVOICE] pctspk.exe
O4 - HKLM\..\Run: [SynTPLpr] C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
O4 - HKLM\..\Run: [DadApp] C:\Program Files\Dell\AccessDirect\dadapp.exe
O4 - HKLM\..\Run: [Dell QuickSet] C:\Program Files\Dell\QuickSet\quickset.exe
O4 - HKLM\..\Run: [DVDSentry] C:\WINDOWS\System32\DSentry.exe
O4 - HKLM\..\Run: [Microsoft Works Update Detection] C:\Program Files\Common Files\Microsoft Shared\Works Shared\WkUFind.exe
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [CaAvTray] "C:\Program Files\Yahoo!\Antivirus\CAVTray.exe"
O4 - HKLM\..\Run: [CAVRID] "C:\Program Files\Yahoo!\Antivirus\CAVRID.exe"
O4 - HKLM\..\Run: [YOP] C:\PROGRA~1\Yahoo!\YOP\yop.exe /autostart
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime Alternative\qttask.exe" -atboottime
O4 - HKCU\..\Run: [DellSupport] "C:\Program Files\Dell Support\DSAgnt.exe" /startup
O4 - HKCU\..\Run: [Yahoo! Pager] "C:\PROGRA~1\Yahoo!\MESSEN~1\YAHOOM~1.EXE" -quiet
O4 - HKCU\..\Run: [Dya] C:\Program Files\?ppPatch\??plorer.exe
O9 - Extra button: AIM - {AC9E2541-2814-11d5-BC6D-00B0D0A1DE45} - C:\Program Files\AIM\aim.exe
O16 - DPF: {7B297BFD-85E4-4092-B2AF-16A91B2EA103} (WScanCtl Class) - http://www3.ca.com/securityadvisor/virusinfo/webscan.cab
O16 - DPF: {97B79133-88F0-45F0-8D57-0F2EF27D9C66} - http://85.255.114.166/1/rdgUS2404.exe
O20 - AppInit_DLLs: C:\WINDOWS\system32\services.dll
O20 - Winlogon Notify: winvdj32 - C:\WINDOWS\SYSTEM32\winvdj32.dll

UGH!! :mad:


O23 - Service: Ati HotKey Poller - Unknown owner - C:\WINDOWS\System32\Ati2evxx.exe
O23 - Service: CAISafe - Computer Associates International, Inc. - C:\Program Files\Yahoo!\Antivirus\ISafe.exe
O23 - Service: ewido anti-spyware 4.0 guard - Anti-Malware Development a.s. - C:\Program Files\ewido anti-spyware 4.0\guard.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iPodService - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
O23 - Service: VET Message Service (VETMSGNT) - Computer Associates International, Inc. - C:\Program Files\Yahoo!\Antivirus\VetMsg.exe
O23 - Service: WLTRYSVC - Unknown owner - C:\WINDOWS\System32\wltrysvc.exe

0

You have also been infected by PurityScan.
It is an adware program that downloads and displays advertisements on a computer.
Go to Control Panel then Add/Remove Programs and look for the entry "OIN" or "(program) by OIN"
Proceed to uninstall it.
If you do not see this, please download their stand-alone uninstaller from http://www.outerinfo.com/OiUninstaller.exe.
Run this installer.

Please download ATF Cleaner(http://www.atribune.org/ccount/click.php?id=1) by Atribune.

Double-click ATF-Cleaner.exe to run the program.
Under Main choose: Select All
Click the Empty Selected button.

0

I have fixed my problem. I backed up files, turned off system restore, rebooted into safemode. Ran ewido, hjt, spybot s&d, adaware and killbox and rebooted into normal mode and turned system restore back on. No problems so far. My AV has not popped up with the infected/deleted messages again. I'm pretty sure my main problem was system restore being on. Symantec's website says:

"If you are running Windows Me or Windows XP, we recommend that you temporarily turn off System Restore. Windows Me/XP uses this feature, which is enabled by default, to restore the files on your computer in case they become damaged. If a virus, worm, or Trojan infects a computer, System Restore may back up the virus, worm, or Trojan on the computer.

Windows prevents outside programs, including antivirus programs, from modifying System Restore. Therefore, antivirus programs or tools cannot remove threats in the System Restore folder. As a result, System Restore has the potential of restoring an infected file on your computer, even after you have cleaned the infected files from all the other locations."

for the virus type that I had. Thanks for the suggestions you offered. I hope this might help someone else with the same problems I had.

This topic has been dead for over six months. Start a new discussion instead.
Have something to contribute to this discussion? Please be thoughtful, detailed and courteous, and be sure to adhere to our posting rules.