Unsolved
This post is more than 5 years old
10 Posts
0
1228
March 7th, 2007 00:00
Slow Performance, OuterInfo Spyware -- Log included
Logfile of HijackThis v1.99.1 Scan saved at 8:55:05 PM, on 3/6/2007 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\nslsvice.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\Intel\Wireless\Bin\EvtEng.exe C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe C:\Program Files\Intel\Wireless\Bin\WLKeeper.exe C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\system32\basfipm.exe c:\program files\cisco\vpn client\cvpnd.exe C:\WINDOWS\system32\inetsrv\inetinfo.exe C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE C:\Program Files\Microsoft SQL Server\MSSQL$MICROSOFTBCM\Binn\sqlservr.exe C:\Program Files\Dell\NICCONFIGSVC\NICCONFIGSVC.exe C:\Program Files\Trend Micro\OfficeScan Client\ntrtscan.exe C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\HPZipm12.exe C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe C:\Program Files\Trend Micro\OfficeScan Client\tmlisten.exe C:\WINDOWS\system32\UAService7.exe C:\Program Files\Trend Micro\OfficeScan Client\OfcPfwSvc.exe C:\WINDOWS\TEMP\QFC537.EXE C:\Program Files\Intel\Wireless\Bin\ZcfgSvc.exe C:\PROGRA~1\Intel\Wireless\Bin\1XConfig.exe C:\WINDOWS\Explorer.EXE C:\Program Files\Apoint\Apoint.exe C:\WINDOWS\system32\hkcmd.exe C:\Program Files\Java\jre1.5.0_03\bin\jusched.exe C:\Program Files\Intel\Wireless\Bin\ifrmewrk.exe C:\Program Files\Dell\QuickSet\quickset.exe C:\Program Files\Apoint\Apntex.exe C:\Program Files\CyberLink\PowerDVD\DVDLauncher.exe C:\WINDOWS\system32\dla\tfswctrl.exe C:\Program Files\Trend Micro\OfficeScan Client\pccntmon.exe C:\Program Files\QuickTime\qttask.exe C:\Program Files\iTunes\iTunesHelper.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\Messenger\msmsgs.exe C:\DOCUME~1\TCORCO~1\APPLIC~1\RACLE~1\explorer.exe C:\Program Files\iPod\bin\iPodService.exe C:\WINDOWS\?ymbols\t?skmgr.exe C:\Program Files\Adobe\Acrobat 6.0\Distillr\acrotray.exe C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtMng1.exe C:\Program Files\Sony Corporation\Picture Package\Picture Package Menu\SonyTray.exe C:\Program Files\WinZip\WZQKPICK.EXE C:\Program Files\Pixoria\Konfabulator\Konfabulator.exe C:\Program Files\Trillian\trillian.exe C:\Program Files\Lotus\Notes\NLNOTES.EXE C:\Program Files\Lotus\Notes\nNOTESMM.EXE c:\program files\cisco\vpn client\vpngui.exe c:\program files\cisco\vpn client\ipseclog.exe C:\Program Files\Lotus\Notes\ntaskldr.EXE C:\Program Files\Mozilla Firefox\firefox.exe C:\WINDOWS\system32\WISPTIS.EXE C:\WINDOWS\system32\svchost.exe C:\Documents and Settings\tcorcoran\Desktop\HijackThis_v1.99.1.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.dell.com/ R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.millipore.com/ R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.millipore.com R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://www.dell.com/ O1 - Hosts: 172.18.0.65 upsnts001 O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 6.0\Acrobat\ActiveX\AcroIEHelper.dll O2 - BHO: DriveLetterAccess - {5CA3D70E-1895-11CF-8E15-001234567890} - C:\WINDOWS\system32\dla\tfswshx.dll O2 - BHO: AcroIEToolbarHelper Class - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files\Adobe\Acrobat 6.0\Acrobat\AcroIEFavClient.dll O2 - BHO: (no name) - {EE1C2D1E-B889-E059-A5DF-C5DEBABB58CA} - C:\WINDOWS\system32\ktjist.dll O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Adobe\Acrobat 6.0\Acrobat\AcroIEFavClient.dll O4 - HKLM\..\Run: [Apoint] C:\Program Files\Apoint\Apoint.exe O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\system32\igfxtray.exe O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_03\bin\jusched.exe O4 - HKLM\..\Run: [IntelWireless] C:\Program Files\Intel\Wireless\Bin\ifrmewrk.exe /tf Intel PROSet/Wireless O4 - HKLM\..\Run: [Dell QuickSet] C:\Program Files\Dell\QuickSet\quickset.exe O4 - HKLM\..\Run: [DVDLauncher] "C:\Program Files\CyberLink\PowerDVD\DVDLauncher.exe" O4 - HKLM\..\Run: [UpdateManager] "C:\Program Files\Common Files\Sonic\Update Manager\sgtray.exe" /r O4 - HKLM\..\Run: [dla] C:\WINDOWS\system32\dla\tfswctrl.exe O4 - HKLM\..\Run: [DSS] C:\WINDOWS\BBSTORE\DSS\DSSAGENT.EXE O4 - HKLM\..\Run: [OfficeScanNT Monitor] "C:\Program Files\Trend Micro\OfficeScan Client\pccntmon.exe" -HideWindow O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe" O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background O4 - HKCU\..\Run: [Tair] "C:\DOCUME~1\TCORCO~1\APPLIC~1\RACLE~1\explorer.exe" -vt yazb O4 - HKCU\..\Run: [Yrpdaee] "C:\WINDOWS\?ymbols\t?skmgr.exe" 99001275 O4 - Startup: Konfabulator.lnk = C:\Program Files\Pixoria\Konfabulator\Konfabulator.exe O4 - Startup: Trillian.lnk = C:\Program Files\Trillian\trillian.exe O4 - Global Startup: Acrobat Assistant.lnk = C:\Program Files\Adobe\Acrobat 6.0\Distillr\acrotray.exe O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe O4 - Global Startup: Bluetooth Manager.lnk = ? O4 - Global Startup: Cisco Systems VPN Client.lnk = C:\Program Files\cisco\vpn client\vpngui.exe O4 - Global Startup: Picture Package Menu.lnk = ? O4 - Global Startup: WinZip Quick Pick.lnk = C:\Program Files\WinZip\WZQKPICK.EXE O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000 O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_03\bin\npjpi150_03.dll O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_03\bin\npjpi150_03.dll O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O16 - DPF: {05D96F71-87C6-11D3-9BE4-00902742D6E0} (QuickPlace Class) - http://quickplace1.millipore.com/qp2.cab O17 - HKLM\System\CCS\Services\Tcpip\Parameters: Domain = group.upstate.com O17 - HKLM\Software\..\Telephony: DomainName = group.upstate.com O17 - HKLM\System\CCS\Services\Tcpip\..\{B822EDCB-6047-4C8C-AC7C-8A43414751FA}: Domain = upstate.com O17 - HKLM\System\CCS\Services\Tcpip\..\{B822EDCB-6047-4C8C-AC7C-8A43414751FA}: NameServer = 172.31.1.11,172.31.1.11 O17 - HKLM\System\CS1\Services\Tcpip\Parameters: Domain = group.upstate.com O17 - HKLM\System\CS1\Services\Tcpip\Parameters: SearchList = upstate.com,upstate.com,group.upstate.com,millipore.com,chemicon.com,serologicals.com O17 - HKLM\System\CCS\Services\Tcpip\Parameters: SearchList = upstate.com,upstate.com,group.upstate.com,millipore.com,chemicon.com,serologicals.com O20 - Winlogon Notify: igfxcui - C:\WINDOWS\SYSTEM32\igfxsrvc.dll O20 - Winlogon Notify: IntelWireless - C:\Program Files\Intel\Wireless\Bin\LgNotify.dll O23 - Service: Broadcom ASF IP monitoring service v6.0.4 (BAsfIpM) - Broadcom Corp. - C:\WINDOWS\system32\basfipm.exe O23 - Service: Cisco Systems, Inc. VPN Service (CVPND) - Cisco Systems, Inc. - c:\program files\cisco\vpn client\cvpnd.exe O23 - Service: EvtEng - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\EvtEng.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe O23 - Service: Imapi Helper - Alex Feinman - C:\Program Files\Alex Feinman\ISO Recorder\ImapiHelper.exe O23 - Service: iPod Service - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: Lotus Notes Single Logon - IBM Corp - C:\WINDOWS\system32\nslsvice.exe O23 - Service: NICCONFIGSVC - Dell Inc. - C:\Program Files\Dell\NICCONFIGSVC\NICCONFIGSVC.exe O23 - Service: OfficeScanNT RealTime Scan (ntrtscan) - Trend Micro Inc. - C:\Program Files\Trend Micro\OfficeScan Client\ntrtscan.exe O23 - Service: OfficeScanNT Personal Firewall (OfcPfwSvc) - Trend Micro Inc. - C:\Program Files\Trend Micro\OfficeScan Client\OfcPfwSvc.exe O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\HPZipm12.exe O23 - Service: RegSrvc - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe O23 - Service: Spectrum24 Event Monitor (S24EventMonitor) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe O23 - Service: OfficeScanNT Listener (tmlisten) - Trend Micro Inc. - C:\Program Files\Trend Micro\OfficeScan Client\tmlisten.exe O23 - Service: SecuROM User Access Service (V7) (UserAccess7) - Unknown owner - C:\WINDOWS\system32\UAService7.exe O23 - Service: WLANKEEPER - Intel® Corporation - C:\Program Files\Intel\Wireless\Bin\WLKeeper.exe
No Events found!
bamajim
10.4K Posts
0
March 7th, 2007 00:00
ted corcoran
10 Posts
0
March 7th, 2007 00:00
Logfile of HijackThis v1.99.1
Scan saved at 8:55:05 PM, on 3/6/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\nslsvice.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
C:\Program Files\Intel\Wireless\Bin\WLKeeper.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\basfipm.exe
c:\program files\cisco\vpn client\cvpnd.exe
C:\WINDOWS\system32\inetsrv\inetinfo.exe
C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\Program Files\Microsoft SQL Server\MSSQL$MICROSOFTBCM\Binn\sqlservr.exe
C:\Program Files\Dell\NICCONFIGSVC\NICCONFIGSVC.exe
C:\Program Files\Trend Micro\OfficeScan Client\ntrtscan.exe
C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\HPZipm12.exe
C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
C:\Program Files\Trend Micro\OfficeScan Client\tmlisten.exe
C:\WINDOWS\system32\UAService7.exe
C:\Program Files\Trend Micro\OfficeScan Client\OfcPfwSvc.exe
C:\WINDOWS\TEMP\QFC537.EXE
C:\Program Files\Intel\Wireless\Bin\ZcfgSvc.exe
C:\PROGRA~1\Intel\Wireless\Bin\1XConfig.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Apoint\Apoint.exe
C:\WINDOWS\system32\hkcmd.exe
C:\Program Files\Java\jre1.5.0_03\bin\jusched.exe
C:\Program Files\Intel\Wireless\Bin\ifrmewrk.exe
C:\Program Files\Dell\QuickSet\quickset.exe
C:\Program Files\Apoint\Apntex.exe
C:\Program Files\CyberLink\PowerDVD\DVDLauncher.exe
C:\WINDOWS\system32\dla\tfswctrl.exe
C:\Program Files\Trend Micro\OfficeScan Client\pccntmon.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Messenger\msmsgs.exe
C:\DOCUME~1\TCORCO~1\APPLIC~1\RACLE~1\explorer.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\WINDOWS\?ymbols\t?skmgr.exe
C:\Program Files\Adobe\Acrobat 6.0\Distillr\acrotray.exe
C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtMng1.exe
C:\Program Files\Sony Corporation\Picture Package\Picture Package Menu\SonyTray.exe
C:\Program Files\WinZip\WZQKPICK.EXE
C:\Program Files\Pixoria\Konfabulator\Konfabulator.exe
C:\Program Files\Trillian\trillian.exe
C:\Program Files\Lotus\Notes\NLNOTES.EXE
C:\Program Files\Lotus\Notes\nNOTESMM.EXE
c:\program files\cisco\vpn client\vpngui.exe
c:\program files\cisco\vpn client\ipseclog.exe
C:\Program Files\Lotus\Notes\ntaskldr.EXE
C:\Program Files\Mozilla Firefox\firefox.exe
C:\WINDOWS\system32\WISPTIS.EXE
C:\WINDOWS\system32\svchost.exe
C:\Documents and Settings\tcorcoran\Desktop\HijackThis_v1.99.1.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.dell.com/
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.millipore.com/
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.millipore.com
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://www.dell.com/
O1 - Hosts: 172.18.0.65 upsnts001
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 6.0\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: DriveLetterAccess - {5CA3D70E-1895-11CF-8E15-001234567890} - C:\WINDOWS\system32\dla\tfswshx.dll
O2 - BHO: AcroIEToolbarHelper Class - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files\Adobe\Acrobat 6.0\Acrobat\AcroIEFavClient.dll
O2 - BHO: (no name) - {EE1C2D1E-B889-E059-A5DF-C5DEBABB58CA} - C:\WINDOWS\system32\ktjist.dll
O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Adobe\Acrobat 6.0\Acrobat\AcroIEFavClient.dll
O4 - HKLM\..\Run: [Apoint] C:\Program Files\Apoint\Apoint.exe
O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_03\bin\jusched.exe
O4 - HKLM\..\Run: [IntelWireless] C:\Program Files\Intel\Wireless\Bin\ifrmewrk.exe /tf Intel PROSet/Wireless
O4 - HKLM\..\Run: [Dell QuickSet] C:\Program Files\Dell\QuickSet\quickset.exe
O4 - HKLM\..\Run: [DVDLauncher] "C:\Program Files\CyberLink\PowerDVD\DVDLauncher.exe"
O4 - HKLM\..\Run: [UpdateManager] "C:\Program Files\Common Files\Sonic\Update Manager\sgtray.exe" /r
O4 - HKLM\..\Run: [dla] C:\WINDOWS\system32\dla\tfswctrl.exe
O4 - HKLM\..\Run: [DSS] C:\WINDOWS\BBSTORE\DSS\DSSAGENT.EXE
O4 - HKLM\..\Run: [OfficeScanNT Monitor] "C:\Program Files\Trend Micro\OfficeScan Client\pccntmon.exe" -HideWindow
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [Tair] "C:\DOCUME~1\TCORCO~1\APPLIC~1\RACLE~1\explorer.exe" -vt yazb
O4 - HKCU\..\Run: [Yrpdaee] "C:\WINDOWS\?ymbols\t?skmgr.exe" 99001275
O4 - Startup: Konfabulator.lnk = C:\Program Files\Pixoria\Konfabulator\Konfabulator.exe
O4 - Startup: Trillian.lnk = C:\Program Files\Trillian\trillian.exe
O4 - Global Startup: Acrobat Assistant.lnk = C:\Program Files\Adobe\Acrobat 6.0\Distillr\acrotray.exe
O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: Bluetooth Manager.lnk = ?
O4 - Global Startup: Cisco Systems VPN Client.lnk = C:\Program Files\cisco\vpn client\vpngui.exe
O4 - Global Startup: Picture Package Menu.lnk = ?
O4 - Global Startup: WinZip Quick Pick.lnk = C:\Program Files\WinZip\WZQKPICK.EXE
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_03\bin\npjpi150_03.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_03\bin\npjpi150_03.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {05D96F71-87C6-11D3-9BE4-00902742D6E0} (QuickPlace Class) - http://quickplace1.millipore.com/qp2.cab
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: Domain = group.upstate.com
O17 - HKLM\Software\..\Telephony: DomainName = group.upstate.com
O17 - HKLM\System\CCS\Services\Tcpip\..\{B822EDCB-6047-4C8C-AC7C-8A43414751FA}: Domain = upstate.com
O17 - HKLM\System\CCS\Services\Tcpip\..\{B822EDCB-6047-4C8C-AC7C-8A43414751FA}: NameServer = 172.31.1.11,172.31.1.11
O17 - HKLM\System\CS1\Services\Tcpip\Parameters: Domain = group.upstate.com
O17 - HKLM\System\CS1\Services\Tcpip\Parameters: SearchList = upstate.com,upstate.com,group.upstate.com,millipore.com,chemicon.com,serologicals.com
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: SearchList = upstate.com,upstate.com,group.upstate.com,millipore.com,chemicon.com,serologicals.com
O20 - Winlogon Notify: igfxcui - C:\WINDOWS\SYSTEM32\igfxsrvc.dll
O20 - Winlogon Notify: IntelWireless - C:\Program Files\Intel\Wireless\Bin\LgNotify.dll
O23 - Service: Broadcom ASF IP monitoring service v6.0.4 (BAsfIpM) - Broadcom Corp. - C:\WINDOWS\system32\basfipm.exe
O23 - Service: Cisco Systems, Inc. VPN Service (CVPND) - Cisco Systems, Inc. - c:\program files\cisco\vpn client\cvpnd.exe
O23 - Service: EvtEng - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: Imapi Helper - Alex Feinman - C:\Program Files\Alex Feinman\ISO Recorder\ImapiHelper.exe
O23 - Service: iPod Service - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Lotus Notes Single Logon - IBM Corp - C:\WINDOWS\system32\nslsvice.exe
O23 - Service: NICCONFIGSVC - Dell Inc. - C:\Program Files\Dell\NICCONFIGSVC\NICCONFIGSVC.exe
O23 - Service: OfficeScanNT RealTime Scan (ntrtscan) - Trend Micro Inc. - C:\Program Files\Trend Micro\OfficeScan Client\ntrtscan.exe
O23 - Service: OfficeScanNT Personal Firewall (OfcPfwSvc) - Trend Micro Inc. - C:\Program Files\Trend Micro\OfficeScan Client\OfcPfwSvc.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\HPZipm12.exe
O23 - Service: RegSrvc - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
O23 - Service: Spectrum24 Event Monitor (S24EventMonitor) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
O23 - Service: OfficeScanNT Listener (tmlisten) - Trend Micro Inc. - C:\Program Files\Trend Micro\OfficeScan Client\tmlisten.exe
O23 - Service: SecuROM User Access Service (V7) (UserAccess7) - Unknown owner - C:\WINDOWS\system32\UAService7.exe
O23 - Service: WLANKEEPER - Intel® Corporation - C:\Program Files\Intel\Wireless\Bin\WLKeeper.exe
ted corcoran
10 Posts
0
March 7th, 2007 01:00
I was able to successfully uninstall Outerinfo in Saft mode and with the Purity Scan Uninstaller. I had checked in Settings before, but I guess missed it (doh). Was it only visible in Safe mode?
Anyway, hope this works. Thank you, once again, for all the help and attention.
Ted Corcoran
ted corcoran
10 Posts
0
March 7th, 2007 01:00
ted corcoran
10 Posts
0
March 7th, 2007 01:00
Logfile of HijackThis v1.99.1
Scan saved at 10:43:37 PM, on 3/6/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\nslsvice.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
C:\Program Files\Intel\Wireless\Bin\WLKeeper.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\basfipm.exe
c:\program files\cisco\vpn client\cvpnd.exe
C:\WINDOWS\system32\inetsrv\inetinfo.exe
C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\Program Files\Microsoft SQL Server\MSSQL$MICROSOFTBCM\Binn\sqlservr.exe
C:\Program Files\Dell\NICCONFIGSVC\NICCONFIGSVC.exe
C:\Program Files\Trend Micro\OfficeScan Client\ntrtscan.exe
C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\HPZipm12.exe
C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
C:\Program Files\Trend Micro\OfficeScan Client\tmlisten.exe
C:\WINDOWS\system32\UAService7.exe
C:\Program Files\Trend Micro\OfficeScan Client\OfcPfwSvc.exe
C:\Program Files\Intel\Wireless\Bin\ZcfgSvc.exe
C:\PROGRA~1\Intel\Wireless\Bin\1XConfig.exe
C:\WINDOWS\TEMP\SZBFF9.EXE
C:\WINDOWS\Explorer.EXE
C:\Program Files\Apoint\Apoint.exe
C:\WINDOWS\system32\hkcmd.exe
C:\Program Files\Java\jre1.5.0_03\bin\jusched.exe
C:\Program Files\Intel\Wireless\Bin\ifrmewrk.exe
C:\Program Files\Dell\QuickSet\quickset.exe
C:\Program Files\CyberLink\PowerDVD\DVDLauncher.exe
C:\Program Files\Common Files\Sonic\Update Manager\sgtray.exe
C:\WINDOWS\system32\dla\tfswctrl.exe
C:\Program Files\Trend Micro\OfficeScan Client\pccntmon.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\Apoint\Apntex.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Messenger\msmsgs.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\Adobe\Acrobat 6.0\Distillr\acrotray.exe
C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtMng1.exe
C:\Program Files\WinZip\WZQKPICK.EXE
C:\Program Files\Pixoria\Konfabulator\Konfabulator.exe
C:\Documents and Settings\tcorcoran\Desktop\HijackThis_v1.99.1.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.dell.com/
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.millipore.com/
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.millipore.com
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://www.dell.com/
O1 - Hosts: 172.18.0.65 upsnts001
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat
6.0\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: DriveLetterAccess - {5CA3D70E-1895-11CF-8E15-001234567890} - C:\WINDOWS\system32\dla\tfswshx.dll
O2 - BHO: AcroIEToolbarHelper Class - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program
Files\Adobe\Acrobat 6.0\Acrobat\AcroIEFavClient.dll
O2 - BHO: (no name) - {EE1C2D1E-B889-E059-A5DF-C5DEBABB58CA} - C:\WINDOWS\system32\ktjist.dll (file
missing)
O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Adobe\Acrobat
6.0\Acrobat\AcroIEFavClient.dll
O4 - HKLM\..\Run: [Apoint] C:\Program Files\Apoint\Apoint.exe
O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_03\bin\jusched.exe
O4 - HKLM\..\Run: [IntelWireless] C:\Program Files\Intel\Wireless\Bin\ifrmewrk.exe /tf Intel
PROSet/Wireless
O4 - HKLM\..\Run: [Dell QuickSet] C:\Program Files\Dell\QuickSet\quickset.exe
O4 - HKLM\..\Run: [DVDLauncher] "C:\Program Files\CyberLink\PowerDVD\DVDLauncher.exe"
O4 - HKLM\..\Run: [UpdateManager] "C:\Program Files\Common Files\Sonic\Update Manager\sgtray.exe" /r
O4 - HKLM\..\Run: [dla] C:\WINDOWS\system32\dla\tfswctrl.exe
O4 - HKLM\..\Run: [DSS] C:\WINDOWS\BBSTORE\DSS\DSSAGENT.EXE
O4 - HKLM\..\Run: [OfficeScanNT Monitor] "C:\Program Files\Trend Micro\OfficeScan Client\pccntmon.exe"
-HideWindow
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - Startup: Konfabulator.lnk = C:\Program Files\Pixoria\Konfabulator\Konfabulator.exe
O4 - Startup: Trillian.lnk = C:\Program Files\Trillian\trillian.exe
O4 - Global Startup: Acrobat Assistant.lnk = C:\Program Files\Adobe\Acrobat 6.0\Distillr\acrotray.exe
O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma
Loader.exe
O4 - Global Startup: Bluetooth Manager.lnk = ?
O4 - Global Startup: Cisco Systems VPN Client.lnk = C:\Program Files\cisco\vpn client\vpngui.exe
O4 - Global Startup: Picture Package Menu.lnk = ?
O4 - Global Startup: WinZip Quick Pick.lnk = C:\Program Files\WinZip\WZQKPICK.EXE
O8 - Extra context menu item: E&xport to Microsoft Excel -
res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program
Files\Java\jre1.5.0_03\bin\npjpi150_03.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program
Files\Java\jre1.5.0_03\bin\npjpi150_03.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} -
C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program
Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program
Files\Messenger\msmsgs.exe
O16 - DPF: {05D96F71-87C6-11D3-9BE4-00902742D6E0} (QuickPlace Class) -
http://quickplace1.millipore.com/qp2.cab
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: Domain = group.upstate.com
O17 - HKLM\Software\..\Telephony: DomainName = group.upstate.com
O17 - HKLM\System\CS1\Services\Tcpip\Parameters: Domain = group.upstate.com
O17 - HKLM\System\CS1\Services\Tcpip\Parameters: SearchList =
upstate.com,group.upstate.com,millipore.com,chemicon.com,serologicals.com
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: SearchList =
upstate.com,group.upstate.com,millipore.com,chemicon.com,serologicals.com
O20 - Winlogon Notify: igfxcui - C:\WINDOWS\SYSTEM32\igfxsrvc.dll
O20 - Winlogon Notify: IntelWireless - C:\Program Files\Intel\Wireless\Bin\LgNotify.dll
O23 - Service: Broadcom ASF IP monitoring service v6.0.4 (BAsfIpM) - Broadcom Corp. -
C:\WINDOWS\system32\basfipm.exe
O23 - Service: Cisco Systems, Inc. VPN Service (CVPND) - Cisco Systems, Inc. - c:\program files\cisco\vpn
client\cvpnd.exe
O23 - Service: EvtEng - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common
Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: Imapi Helper - Alex Feinman - C:\Program Files\Alex Feinman\ISO Recorder\ImapiHelper.exe
O23 - Service: iPod Service - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Lotus Notes Single Logon - IBM Corp - C:\WINDOWS\system32\nslsvice.exe
O23 - Service: NICCONFIGSVC - Dell Inc. - C:\Program Files\Dell\NICCONFIGSVC\NICCONFIGSVC.exe
O23 - Service: OfficeScanNT RealTime Scan (ntrtscan) - Trend Micro Inc. - C:\Program Files\Trend
Micro\OfficeScan Client\ntrtscan.exe
O23 - Service: OfficeScanNT Personal Firewall (OfcPfwSvc) - Trend Micro Inc. - C:\Program Files\Trend
Micro\OfficeScan Client\OfcPfwSvc.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\HPZipm12.exe
O23 - Service: RegSrvc - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
O23 - Service: Spectrum24 Event Monitor (S24EventMonitor) - Intel Corporation - C:\Program
Files\Intel\Wireless\Bin\S24EvMon.exe
O23 - Service: OfficeScanNT Listener (tmlisten) - Trend Micro Inc. - C:\Program Files\Trend
Micro\OfficeScan Client\tmlisten.exe
O23 - Service: SecuROM User Access Service (V7) (UserAccess7) - Unknown owner -
C:\WINDOWS\system32\UAService7.exe
O23 - Service: WLANKEEPER - Intel® Corporation - C:\Program Files\Intel\Wireless\Bin\WLKeeper.exe
ted corcoran
10 Posts
0
March 7th, 2007 01:00
Here is the uninstall list
Adobe Acrobat - Reader 6.0.2 Update
Adobe Acrobat 6.0 Standard
Adobe Photoshop 7.0
Adobe Reader 6.0.1
ALPS Touch Pad Driver
Apple Software Update
AttachmentOptions
Bluetooth Stack for Windows by Toshiba
Broadcast HTML
Broadcom Advanced Control Suite 2
Broadcom ASF Management Applications
Business Contact Manager for Outlook 2003
CAIR2
FileZilla (remove only)
First Step Guide
Google AdWords Editor
Google Video Uploader
HijackThis 1.99.1
Hotfix for Windows Media Format SDK (KB902344)
ImageMixer EasyStepDVD
Intel(R) Graphics Media Accelerator Driver for Mobile
Intel(R) PROSet/Wireless Software
Internal Network Card Power Management
ISO Recorder
iTunes
izimi
J2SE Runtime Environment 5.0 Update 3
Java 2 Runtime Environment, SE v1.4.2_03
KODAK DC200/DC210 Software
Konfabulator
lava
LEGO Star Wars
LEGO Star Wars II
LEGO® MINDSTORMS® NXT - English Language Pack
LEGO® MINDSTORMS® NXT Driver
LEGO® MINDSTORMS® NXT Software v1.0
LiveUpdate 2.0 (Symantec Corporation)
Logos
Lotus Notes 6.5.4
Macromedia Dreamweaver 8
Macromedia Extension Manager
Macromedia Flash Player 8
Macromedia Shockwave Player
mCore
mDrWiFi
MetaFrame Presentation Server Client
mHlpDell
Microsoft .NET Framework 1.1
Microsoft .NET Framework 1.1
Microsoft .NET Framework 1.1 Hotfix (KB886903)
Microsoft .NET Framework 2.0
Microsoft Office Professional Edition 2003
Microsoft Office Project Professional 2003
Microsoft Visual SourceSafe NetSetup
Microsoft Zoo Tycoon
MIKSOFT Mobile 3GP converter
mIWA
mIWCA
mLogView
mMHouse
Mozilla Firefox (2.0.0.2)
mPfMgr
mPfWiz
mProSafe
mSSO
mToolkit
mWlsSafe
mXML
mZConfig
Opera 9.02
Outerinfo
Pdf995
Picture Package
PowerDVD 5.1
Pride Employee Evaluation
QuickSet
QuickTime
RealArcade
Security Update for Step By Step Interactive Training (KB898458)
Security Update for Windows XP (KB883939)
Security Update for Windows XP (KB890046)
Security Update for Windows XP (KB896358)
Security Update for Windows XP (KB896422)
Security Update for Windows XP (KB896428)
SmartFTP Client 2.0
SmartFTP Client 2.0 Setup Files (remove only)
Sonic DLA
Sonic RecordNow! Plus
Sonic Update Manager
Sony DVD Handycam USB Driver 2
TextPad 4.7
Trend Micro OfficeScan Client
Trillian
VPN Client
WD Diagnostics
WebEx
WebTrends Report Exporter 7.1b
Windows Installer 3.1 (KB893803)
Windows Media Format Runtime
Windows Media Player 10
Windows XP Hotfix - KB867282
Windows XP Hotfix - KB873333
Windows XP Hotfix - KB885836
Windows XP Hotfix - KB886185
Windows XP Hotfix - KB887742
Windows XP Hotfix - KB888302
Windows XP Hotfix - KB890859
Windows XP Hotfix - KB890923
Windows XP Hotfix - KB893066
Windows XP Hotfix - KB893086
WinRAR archiver
WinZip
WinZip Self-Extractor
XoftSpySE
XviD 1.1 final uninstall
bamajim
10.4K Posts
0
March 7th, 2007 01:00
No problem
Re Run Hijackthis
- At the Main window select " Open the misc tool section"
Copy and paste that list as a reply to this threadThen select " Open uninstall manager"
Then " save list" and save it to your desktop
bamajim
10.4K Posts
0
March 7th, 2007 01:00
1. Reboot into Safe Mode
This can be done by
- Restart your PC, and after it starts, but before you see the Windows Splash screen
2. Go to Add/Remove Programs (Click Start->>Control Panel->>Add/Remove Programs)Begin tapping the F8 key twice a second untill you reach another menu screen (black background with white menu choices)
Use your arrow keys and select Safe Mode and then Enter
And uninstall
- Outerinfo
3. Reboot your PC into Normal Windows mode4. Go here and download Purity Scan Uninstaller
Save it to your Desktop
5. Please run the Purity scan Uninstaller
If you have any problems a Tutorial can be found here
6. Reboot your PC->>Rerun Hijackthis and Post a fresh Hijackthis log
bamajim
10.4K Posts
0
March 7th, 2007 02:00
Good job and you are most welcome
1. Rerun Hijackthis (scan only) and place checks beside the following entry
- O2 - BHO: (no name) - {EE1C2D1E-B889-E059-A5DF-C5DEBABB58CA} - C:\WINDOWS\system32\ktjist.dll (file missing)
Close all other open windows except Hijackthis and Select " Fix checked" and close Hijackthis2. Using Windows Explorer
- (Right click on "Start," select "Explore," and you will see the "tree' of file folders in the left side of the window. Click on the "+" next to any folder name to expand its contents)
Locate and Delete the following folder (if found)- C:\Program Files\PurityScan
Locate and delete the following file- C:\Documents and Settings\Owner\Desktop\OiUninstaller.exe
Close windows explorer->>Reboot your PC3. Go here and Download AVG Anti-Spyware
( 30 day free trial version) Save it to Your Desktop
Double Click AVG Anti-Spyware-setup
(It will create its own folder)
Once the program starts You will be at the Status menu
- Under "Your computers Security"
At the top toolbar Click Scanner Then the settings tabClick Update now (next to last update)
After the update loads
Under Automatic updates Uncheck download and install updates automatically(recommended)
(you can always select maual updates the next day)
- Under How to act? Set default action for detected malwareTo Quarantine
Exit AVG (But do not run it yet)Under how to scan All boxes should be checked
Under Possibly unwanted software All boxes should be checked
Under reports Select Automatically generate report after every scan
Uncheck Only if threats were found
Under what to scan Scan every file should be highlited
Reboot into Safe Mode
This can be done by
- Restart your PC, and after it starts, but before you see the Windows Splash screen
Run AVG Anti-SpywareBegin tapping the F8 key twice a second untill you reach another menu screen (black background with white menu choices)
Use your arrow keys and select Safe Mode and then Enter
- Click scanner
Once the scan finishesSelect Complete system scan
- Select Apply all actions (The items found will be quarantined)
Exit AVGClick save report as (Another window will open)
Save it to your desktop
(By default It will be saved in the AVG folder as)
C:\Program Files\Grisoft\AVG anti-spyware 7.5\Reports
Reboot your PC in Normal Mode->>Re run Hijackthis and post a fresh Hijackthis log.
- Double click the report-scan txt. you saved to your desktop
Your reply should includeIt will open in Notepad
Copy and paste that report as a reply to this thread
your report_scan.txt log from AVG
bamajim
10.4K Posts
0
March 7th, 2007 12:00
bamajim
10.4K Posts
0
March 7th, 2007 12:00
You are most welcome :smileyhappy:
You may now remove/delete/uninstall the tools we used to clean your PC
Now that your log is clean
There are some final notes:
Disable and Enable System Restore
- Lets create a clean System Restore point
Your Java is out of date. Older versions have vulnerabilities that malware can use to infect your system.the instructions are here
Please follow these steps to remove older version Java components and update.
Updating Java:
- Download the latest version of
Make your Internet Explorer more secureJava Runtime Environment (JRE) 6.0.
Scroll down to where it says "The J2SE Runtime Environment (JRE) allows end-users to run Java applications".
Click the " Download" button to the right.
Check the box that says: " Accept License Agreement".
The page will refresh.
Click on the link to download Windows Offline Installation with or without Multi-language and save to your desktop.
Close any programs you may have running - especially your web browser.
Go to Start > Control Panel double-click on Add/Remove programs and remove all older versions of Java.
Check any item with Java Runtime Environment (JRE or J2SE) in the name.
Click the Remove or Change/Remove button.
Repeat as many times as necessary to remove each Java versions.
Reboot your computer once all Java components are removed.
Then from your desktop double-click on jre-6-windowsi586-p.exe to install the newest version.
This can be done by following these simple instructions:
- Open Internet Explorer click Tools->> Options.
Update your Anti Virus SoftwareClick Security tab
Click once on the Internet icon so it becomes highlighted.
Click Custom Level.
Change the Download signed ActiveX controls to Prompt
Change the Download unsigned ActiveX controls to Disable
Change the Initialise and script ActiveX controls not marked as safe to Disable
Change the Installation of desktop items to Prompt
Change the Launching programs and files in an IFRAME to Prompt
Change the Navigate sub-frames across different domains to Prompt
When all these settings have been made, click OK.
If it prompts you to save the settings, press Yes.
Next press Apply and then OK to exit the Internet Properties page
Use and maintain a Firewall
Install IE SPYAD for protection against innocent looking websites that are not innocent
Visit Microsoft's Windows Update Site Frequently for critical updates
Backup your Important Documents and Files on a regular basis
- To a disc or a USB key, not your Hardrive
You may want to read this article" So how did I get infected in the first place" by Tony Kleinsurf safe
ted corcoran
10 Posts
0
March 7th, 2007 12:00
AVG Anti-Spyware - Scan Report
---------------------------------------------------------
+ Created at: 6:30:46 AM 3/7/2007
+ Scan result:
C:\RECYCLER\S-1-5-21-776561741-484061587-1417001333-1130\Dc14.exe -> Adware.PurityScan : Cleaned.
C:\System Volume Information\_restore{46DE8921-1D39-44D2-A9E9-64119261F211}\RP489\A0097938.dll -> Adware.PurityScan : Cleaned.
C:\System Volume Information\_restore{46DE8921-1D39-44D2-A9E9-64119261F211}\RP489\A0097939.exe -> Adware.PurityScan : Cleaned.
C:\System Volume Information\_restore{46DE8921-1D39-44D2-A9E9-64119261F211}\RP489\A0097942.exe -> Downloader.PurityScan.eg : Cleaned.
:mozilla.333:C:\Documents and Settings\tcorcoran\Application Data\Mozilla\Firefox\Profiles\fyctq6of.default\cookies.txt -> TrackingCookie.247realmedia : Cleaned.
:mozilla.334:C:\Documents and Settings\tcorcoran\Application Data\Mozilla\Firefox\Profiles\fyctq6of.default\cookies.txt -> TrackingCookie.247realmedia : Cleaned.
:mozilla.100:C:\Documents and Settings\tcorcoran\Application Data\Mozilla\Firefox\Profiles\fyctq6of.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.101:C:\Documents and Settings\tcorcoran\Application Data\Mozilla\Firefox\Profiles\fyctq6of.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.102:C:\Documents and Settings\tcorcoran\Application Data\Mozilla\Firefox\Profiles\fyctq6of.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.103:C:\Documents and Settings\tcorcoran\Application Data\Mozilla\Firefox\Profiles\fyctq6of.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.104:C:\Documents and Settings\tcorcoran\Application Data\Mozilla\Firefox\Profiles\fyctq6of.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.105:C:\Documents and Settings\tcorcoran\Application Data\Mozilla\Firefox\Profiles\fyctq6of.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.106:C:\Documents and Settings\tcorcoran\Application Data\Mozilla\Firefox\Profiles\fyctq6of.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.107:C:\Documents and Settings\tcorcoran\Application Data\Mozilla\Firefox\Profiles\fyctq6of.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.108:C:\Documents and Settings\tcorcoran\Application Data\Mozilla\Firefox\Profiles\fyctq6of.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.109:C:\Documents and Settings\tcorcoran\Application Data\Mozilla\Firefox\Profiles\fyctq6of.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.112:C:\Documents and Settings\tcorcoran\Application Data\Mozilla\Firefox\Profiles\fyctq6of.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.113:C:\Documents and Settings\tcorcoran\Application Data\Mozilla\Firefox\Profiles\fyctq6of.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.114:C:\Documents and Settings\tcorcoran\Application Data\Mozilla\Firefox\Profiles\fyctq6of.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.115:C:\Documents and Settings\tcorcoran\Application Data\Mozilla\Firefox\Profiles\fyctq6of.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.116:C:\Documents and Settings\tcorcoran\Application Data\Mozilla\Firefox\Profiles\fyctq6of.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.117:C:\Documents and Settings\tcorcoran\Application Data\Mozilla\Firefox\Profiles\fyctq6of.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.118:C:\Documents and Settings\tcorcoran\Application Data\Mozilla\Firefox\Profiles\fyctq6of.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.122:C:\Documents and Settings\tcorcoran\Application Data\Mozilla\Firefox\Profiles\fyctq6of.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.128:C:\Documents and Settings\tcorcoran\Application Data\Mozilla\Firefox\Profiles\fyctq6of.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.131:C:\Documents and Settings\tcorcoran\Application Data\Mozilla\Firefox\Profiles\fyctq6of.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.493:C:\Documents and Settings\tcorcoran\Application Data\Mozilla\Firefox\Profiles\fyctq6of.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.507:C:\Documents and Settings\tcorcoran\Application Data\Mozilla\Firefox\Profiles\fyctq6of.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.508:C:\Documents and Settings\tcorcoran\Application Data\Mozilla\Firefox\Profiles\fyctq6of.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.800:C:\Documents and Settings\tcorcoran\Application Data\Mozilla\Firefox\Profiles\fyctq6of.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.89:C:\Documents and Settings\tcorcoran\Application Data\Mozilla\Firefox\Profiles\fyctq6of.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.90:C:\Documents and Settings\tcorcoran\Application Data\Mozilla\Firefox\Profiles\fyctq6of.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.91:C:\Documents and Settings\tcorcoran\Application Data\Mozilla\Firefox\Profiles\fyctq6of.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.92:C:\Documents and Settings\tcorcoran\Application Data\Mozilla\Firefox\Profiles\fyctq6of.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.93:C:\Documents and Settings\tcorcoran\Application Data\Mozilla\Firefox\Profiles\fyctq6of.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.94:C:\Documents and Settings\tcorcoran\Application Data\Mozilla\Firefox\Profiles\fyctq6of.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.95:C:\Documents and Settings\tcorcoran\Application Data\Mozilla\Firefox\Profiles\fyctq6of.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.96:C:\Documents and Settings\tcorcoran\Application Data\Mozilla\Firefox\Profiles\fyctq6of.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.97:C:\Documents and Settings\tcorcoran\Application Data\Mozilla\Firefox\Profiles\fyctq6of.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.98:C:\Documents and Settings\tcorcoran\Application Data\Mozilla\Firefox\Profiles\fyctq6of.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.99:C:\Documents and Settings\tcorcoran\Application Data\Mozilla\Firefox\Profiles\fyctq6of.default\cookies.txt -> TrackingCookie.2o7 : Cleaned.
C:\Documents and Settings\tcorcoran\Cookies\tcorcoran@millipore.112.2o7[1].txt -> TrackingCookie.2o7 : Cleaned.
C:\Documents and Settings\tcorcoran\Local Settings\Temp\Cookies\tcorcoran@millipore.112.2o7[2].txt -> TrackingCookie.2o7 : Cleaned.
:mozilla.442:C:\Documents and Settings\tcorcoran\Application Data\Mozilla\Firefox\Profiles\fyctq6of.default\cookies.txt -> TrackingCookie.Adbrite : Cleaned.
:mozilla.443:C:\Documents and Settings\tcorcoran\Application Data\Mozilla\Firefox\Profiles\fyctq6of.default\cookies.txt -> TrackingCookie.Adbrite : Cleaned.
:mozilla.444:C:\Documents and Settings\tcorcoran\Application Data\Mozilla\Firefox\Profiles\fyctq6of.default\cookies.txt -> TrackingCookie.Adbrite : Cleaned.
:mozilla.164:C:\Documents and Settings\tcorcoran\Application Data\Mozilla\Firefox\Profiles\fyctq6of.default\cookies.txt -> TrackingCookie.Addynamix : Cleaned.
:mozilla.436:C:\Documents and Settings\tcorcoran\Application Data\Mozilla\Firefox\Profiles\fyctq6of.default\cookies.txt -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.437:C:\Documents and Settings\tcorcoran\Application Data\Mozilla\Firefox\Profiles\fyctq6of.default\cookies.txt -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.438:C:\Documents and Settings\tcorcoran\Application Data\Mozilla\Firefox\Profiles\fyctq6of.default\cookies.txt -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.440:C:\Documents and Settings\tcorcoran\Application Data\Mozilla\Firefox\Profiles\fyctq6of.default\cookies.txt -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.441:C:\Documents and Settings\tcorcoran\Application Data\Mozilla\Firefox\Profiles\fyctq6of.default\cookies.txt -> TrackingCookie.Adrevolver : Cleaned.
C:\Documents and Settings\tcorcoran\Local Settings\Temp\Cookies\tcorcoran@adrevolver[3].txt -> TrackingCookie.Adrevolver : Cleaned.
:mozilla.65:C:\Documents and Settings\tcorcoran\Application Data\Mozilla\Firefox\Profiles\fyctq6of.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.66:C:\Documents and Settings\tcorcoran\Application Data\Mozilla\Firefox\Profiles\fyctq6of.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.67:C:\Documents and Settings\tcorcoran\Application Data\Mozilla\Firefox\Profiles\fyctq6of.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.69:C:\Documents and Settings\tcorcoran\Application Data\Mozilla\Firefox\Profiles\fyctq6of.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.71:C:\Documents and Settings\tcorcoran\Application Data\Mozilla\Firefox\Profiles\fyctq6of.default\cookies.txt -> TrackingCookie.Advertising : Cleaned.
C:\Documents and Settings\administrator.CVILLE\Cookies\administrator@advertising[2].txt -> TrackingCookie.Advertising : Cleaned.
C:\Documents and Settings\administrator.CVILLE\Cookies\administrator@servedby.advertising[1].txt -> TrackingCookie.Advertising : Cleaned.
C:\Documents and Settings\tcorcoran\Local Settings\Temp\Cookies\tcorcoran@advertising[1].txt -> TrackingCookie.Advertising : Cleaned.
:mozilla.73:C:\Documents and Settings\tcorcoran\Application Data\Mozilla\Firefox\Profiles\fyctq6of.default\cookies.txt -> TrackingCookie.Atdmt : Cleaned.
C:\Documents and Settings\administrator.CVILLE\Cookies\administrator@atdmt[2].txt -> TrackingCookie.Atdmt : Cleaned.
C:\Documents and Settings\tcorcoran\Cookies\tcorcoran@atdmt[2].txt -> TrackingCookie.Atdmt : Cleaned.
C:\Documents and Settings\tcorcoran\Local Settings\Temp\Cookies\tcorcoran@atdmt[2].txt -> TrackingCookie.Atdmt : Cleaned.
:mozilla.627:C:\Documents and Settings\tcorcoran\Application Data\Mozilla\Firefox\Profiles\fyctq6of.default\cookies.txt -> TrackingCookie.Bluemountain : Cleaned.
:mozilla.561:C:\Documents and Settings\tcorcoran\Application Data\Mozilla\Firefox\Profiles\fyctq6of.default\cookies.txt -> TrackingCookie.Bluestreak : Cleaned.
:mozilla.358:C:\Documents and Settings\tcorcoran\Application Data\Mozilla\Firefox\Profiles\fyctq6of.default\cookies.txt -> TrackingCookie.Burstbeacon : Cleaned.
C:\Documents and Settings\tcorcoran\Local Settings\Temp\Cookies\tcorcoran@www.burstbeacon[1].txt -> TrackingCookie.Burstbeacon : Cleaned.
:mozilla.354:C:\Documents and Settings\tcorcoran\Application Data\Mozilla\Firefox\Profiles\fyctq6of.default\cookies.txt -> TrackingCookie.Burstnet : Cleaned.
:mozilla.355:C:\Documents and Settings\tcorcoran\Application Data\Mozilla\Firefox\Profiles\fyctq6of.default\cookies.txt -> TrackingCookie.Burstnet : Cleaned.
:mozilla.356:C:\Documents and Settings\tcorcoran\Application Data\Mozilla\Firefox\Profiles\fyctq6of.default\cookies.txt -> TrackingCookie.Burstnet : Cleaned.
:mozilla.357:C:\Documents and Settings\tcorcoran\Application Data\Mozilla\Firefox\Profiles\fyctq6of.default\cookies.txt -> TrackingCookie.Burstnet : Cleaned.
C:\Documents and Settings\tcorcoran\Local Settings\Temp\Cookies\tcorcoran@burstnet[1].txt -> TrackingCookie.Burstnet : Cleaned.
C:\Documents and Settings\tcorcoran\Local Settings\Temp\Cookies\tcorcoran@www.burstnet[2].txt -> TrackingCookie.Burstnet : Cleaned.
:mozilla.140:C:\Documents and Settings\tcorcoran\Application Data\Mozilla\Firefox\Profiles\fyctq6of.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned.
:mozilla.141:C:\Documents and Settings\tcorcoran\Application Data\Mozilla\Firefox\Profiles\fyctq6of.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned.
:mozilla.142:C:\Documents and Settings\tcorcoran\Application Data\Mozilla\Firefox\Profiles\fyctq6of.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned.
:mozilla.143:C:\Documents and Settings\tcorcoran\Application Data\Mozilla\Firefox\Profiles\fyctq6of.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned.
:mozilla.144:C:\Documents and Settings\tcorcoran\Application Data\Mozilla\Firefox\Profiles\fyctq6of.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned.
:mozilla.145:C:\Documents and Settings\tcorcoran\Application Data\Mozilla\Firefox\Profiles\fyctq6of.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned.
C:\Documents and Settings\tcorcoran\Local Settings\Temp\Cookies\tcorcoran@casalemedia[2].txt -> TrackingCookie.Casalemedia : Cleaned.
:mozilla.205:C:\Documents and Settings\tcorcoran\Application Data\Mozilla\Firefox\Profiles\fyctq6of.default\cookies.txt -> TrackingCookie.Clickbank : Cleaned.
:mozilla.819:C:\Documents and Settings\tcorcoran\Application Data\Mozilla\Firefox\Profiles\fyctq6of.default\cookies.txt -> TrackingCookie.Clickhype : Cleaned.
:mozilla.383:C:\Documents and Settings\tcorcoran\Application Data\Mozilla\Firefox\Profiles\fyctq6of.default\cookies.txt -> TrackingCookie.Com : Cleaned.
:mozilla.745:C:\Documents and Settings\tcorcoran\Application Data\Mozilla\Firefox\Profiles\fyctq6of.default\cookies.txt -> TrackingCookie.Coremetrics : Cleaned.
:mozilla.505:C:\Documents and Settings\tcorcoran\Application Data\Mozilla\Firefox\Profiles\fyctq6of.default\cookies.txt -> TrackingCookie.Dealtime : Cleaned.
:mozilla.629:C:\Documents and Settings\tcorcoran\Application Data\Mozilla\Firefox\Profiles\fyctq6of.default\cookies.txt -> TrackingCookie.Doubleclick : Cleaned.
:mozilla.74:C:\Documents and Settings\tcorcoran\Application Data\Mozilla\Firefox\Profiles\fyctq6of.default\cookies.txt -> TrackingCookie.Doubleclick : Cleaned.
C:\Documents and Settings\administrator.CVILLE\Cookies\administrator@doubleclick[1].txt -> TrackingCookie.Doubleclick : Cleaned.
C:\Documents and Settings\tcorcoran\Local Settings\Temp\Cookies\tcorcoran@doubleclick[1].txt -> TrackingCookie.Doubleclick : Cleaned.
:mozilla.459:C:\Documents and Settings\tcorcoran\Application Data\Mozilla\Firefox\Profiles\fyctq6of.default\cookies.txt -> TrackingCookie.Euroclick : Cleaned.
:mozilla.461:C:\Documents and Settings\tcorcoran\Application Data\Mozilla\Firefox\Profiles\fyctq6of.default\cookies.txt -> TrackingCookie.Euroclick : Cleaned.
:mozilla.462:C:\Documents and Settings\tcorcoran\Application Data\Mozilla\Firefox\Profiles\fyctq6of.default\cookies.txt -> TrackingCookie.Euroclick : Cleaned.
:mozilla.151:C:\Documents and Settings\tcorcoran\Application Data\Mozilla\Firefox\Profiles\fyctq6of.default\cookies.txt -> TrackingCookie.Falkag : Cleaned.
:mozilla.152:C:\Documents and Settings\tcorcoran\Application Data\Mozilla\Firefox\Profiles\fyctq6of.default\cookies.txt -> TrackingCookie.Falkag : Cleaned.
:mozilla.153:C:\Documents and Settings\tcorcoran\Application Data\Mozilla\Firefox\Profiles\fyctq6of.default\cookies.txt -> TrackingCookie.Falkag : Cleaned.
:mozilla.154:C:\Documents and Settings\tcorcoran\Application Data\Mozilla\Firefox\Profiles\fyctq6of.default\cookies.txt -> TrackingCookie.Falkag : Cleaned.
:mozilla.435:C:\Documents and Settings\tcorcoran\Application Data\Mozilla\Firefox\Profiles\fyctq6of.default\cookies.txt -> TrackingCookie.Fastclick : Cleaned.
:mozilla.439:C:\Documents and Settings\tcorcoran\Application Data\Mozilla\Firefox\Profiles\fyctq6of.default\cookies.txt -> TrackingCookie.Fastclick : Cleaned.
>>>> MORE TO COME
ted corcoran
10 Posts
0
March 7th, 2007 12:00
:mozilla.452:C:\Documents and Settings\tcorcoran\Application Data\Mozilla\Firefox\Profiles\fyctq6of.default\cookies.txt -> TrackingCookie.Googleadservices : Cleaned.
:mozilla.497:C:\Documents and Settings\tcorcoran\Application Data\Mozilla\Firefox\Profiles\fyctq6of.default\cookies.txt -> TrackingCookie.Googleadservices : Cleaned.
:mozilla.791:C:\Documents and Settings\tcorcoran\Application Data\Mozilla\Firefox\Profiles\fyctq6of.default\cookies.txt -> TrackingCookie.Googleadservices : Cleaned.
:mozilla.363:C:\Documents and Settings\tcorcoran\Application Data\Mozilla\Firefox\Profiles\fyctq6of.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned.
:mozilla.366:C:\Documents and Settings\tcorcoran\Application Data\Mozilla\Firefox\Profiles\fyctq6of.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned.
:mozilla.367:C:\Documents and Settings\tcorcoran\Application Data\Mozilla\Firefox\Profiles\fyctq6of.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned.
:mozilla.368:C:\Documents and Settings\tcorcoran\Application Data\Mozilla\Firefox\Profiles\fyctq6of.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned.
:mozilla.398:C:\Documents and Settings\tcorcoran\Application Data\Mozilla\Firefox\Profiles\fyctq6of.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned.
:mozilla.399:C:\Documents and Settings\tcorcoran\Application Data\Mozilla\Firefox\Profiles\fyctq6of.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned.
:mozilla.400:C:\Documents and Settings\tcorcoran\Application Data\Mozilla\Firefox\Profiles\fyctq6of.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned.
:mozilla.429:C:\Documents and Settings\tcorcoran\Application Data\Mozilla\Firefox\Profiles\fyctq6of.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned.
:mozilla.485:C:\Documents and Settings\tcorcoran\Application Data\Mozilla\Firefox\Profiles\fyctq6of.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned.
:mozilla.577:C:\Documents and Settings\tcorcoran\Application Data\Mozilla\Firefox\Profiles\fyctq6of.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned.
:mozilla.625:C:\Documents and Settings\tcorcoran\Application Data\Mozilla\Firefox\Profiles\fyctq6of.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned.
:mozilla.639:C:\Documents and Settings\tcorcoran\Application Data\Mozilla\Firefox\Profiles\fyctq6of.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned.
:mozilla.654:C:\Documents and Settings\tcorcoran\Application Data\Mozilla\Firefox\Profiles\fyctq6of.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned.
:mozilla.655:C:\Documents and Settings\tcorcoran\Application Data\Mozilla\Firefox\Profiles\fyctq6of.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned.
:mozilla.706:C:\Documents and Settings\tcorcoran\Application Data\Mozilla\Firefox\Profiles\fyctq6of.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned.
:mozilla.707:C:\Documents and Settings\tcorcoran\Application Data\Mozilla\Firefox\Profiles\fyctq6of.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned.
:mozilla.708:C:\Documents and Settings\tcorcoran\Application Data\Mozilla\Firefox\Profiles\fyctq6of.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned.
:mozilla.709:C:\Documents and Settings\tcorcoran\Application Data\Mozilla\Firefox\Profiles\fyctq6of.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned.
:mozilla.712:C:\Documents and Settings\tcorcoran\Application Data\Mozilla\Firefox\Profiles\fyctq6of.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned.
:mozilla.713:C:\Documents and Settings\tcorcoran\Application Data\Mozilla\Firefox\Profiles\fyctq6of.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned.
:mozilla.755:C:\Documents and Settings\tcorcoran\Application Data\Mozilla\Firefox\Profiles\fyctq6of.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned.
:mozilla.849:C:\Documents and Settings\tcorcoran\Application Data\Mozilla\Firefox\Profiles\fyctq6of.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned.
:mozilla.914:C:\Documents and Settings\tcorcoran\Application Data\Mozilla\Firefox\Profiles\fyctq6of.default\cookies.txt -> TrackingCookie.Hitbox : Cleaned.
C:\Documents and Settings\tcorcoran\Local Settings\Temp\Cookies\tcorcoran@ehg-dig.hitbox[1].txt -> TrackingCookie.Hitbox : Cleaned.
C:\Documents and Settings\tcorcoran\Local Settings\Temp\Cookies\tcorcoran@ehg-youtube.hitbox[2].txt -> TrackingCookie.Hitbox : Cleaned.
C:\Documents and Settings\tcorcoran\Local Settings\Temp\Cookies\tcorcoran@hitbox[2].txt -> TrackingCookie.Hitbox : Cleaned.
:mozilla.813:C:\Documents and Settings\tcorcoran\Application Data\Mozilla\Firefox\Profiles\fyctq6of.default\cookies.txt -> TrackingCookie.Hitslink : Cleaned.
:mozilla.606:C:\Documents and Settings\tcorcoran\Application Data\Mozilla\Firefox\Profiles\fyctq6of.default\cookies.txt -> TrackingCookie.Information : Cleaned.
:mozilla.319:C:\Documents and Settings\tcorcoran\Application Data\Mozilla\Firefox\Profiles\fyctq6of.default\cookies.txt -> TrackingCookie.Liveperson : Cleaned.
:mozilla.320:C:\Documents and Settings\tcorcoran\Application Data\Mozilla\Firefox\Profiles\fyctq6of.default\cookies.txt -> TrackingCookie.Liveperson : Cleaned.
:mozilla.321:C:\Documents and Settings\tcorcoran\Application Data\Mozilla\Firefox\Profiles\fyctq6of.default\cookies.txt -> TrackingCookie.Liveperson : Cleaned.
:mozilla.671:C:\Documents and Settings\tcorcoran\Application Data\Mozilla\Firefox\Profiles\fyctq6of.default\cookies.txt -> TrackingCookie.Liveperson : Cleaned.
:mozilla.672:C:\Documents and Settings\tcorcoran\Application Data\Mozilla\Firefox\Profiles\fyctq6of.default\cookies.txt -> TrackingCookie.Liveperson : Cleaned.
:mozilla.75:C:\Documents and Settings\tcorcoran\Application Data\Mozilla\Firefox\Profiles\fyctq6of.default\cookies.txt -> TrackingCookie.Mediaplex : Cleaned.
:mozilla.76:C:\Documents and Settings\tcorcoran\Application Data\Mozilla\Firefox\Profiles\fyctq6of.default\cookies.txt -> TrackingCookie.Mediaplex : Cleaned.
C:\Documents and Settings\tcorcoran\Local Settings\Temp\Cookies\tcorcoran@mediaplex[2].txt -> TrackingCookie.Mediaplex : Cleaned.
:mozilla.453:C:\Documents and Settings\tcorcoran\Application Data\Mozilla\Firefox\Profiles\fyctq6of.default\cookies.txt -> TrackingCookie.Overture : Cleaned.
:mozilla.454:C:\Documents and Settings\tcorcoran\Application Data\Mozilla\Firefox\Profiles\fyctq6of.default\cookies.txt -> TrackingCookie.Overture : Cleaned.
:mozilla.552:C:\Documents and Settings\tcorcoran\Application Data\Mozilla\Firefox\Profiles\fyctq6of.default\cookies.txt -> TrackingCookie.Overture : Cleaned.
:mozilla.384:C:\Documents and Settings\tcorcoran\Application Data\Mozilla\Firefox\Profiles\fyctq6of.default\cookies.txt -> TrackingCookie.Pointroll : Cleaned.
:mozilla.385:C:\Documents and Settings\tcorcoran\Application Data\Mozilla\Firefox\Profiles\fyctq6of.default\cookies.txt -> TrackingCookie.Pointroll : Cleaned.
:mozilla.386:C:\Documents and Settings\tcorcoran\Application Data\Mozilla\Firefox\Profiles\fyctq6of.default\cookies.txt -> TrackingCookie.Pointroll : Cleaned.
:mozilla.387:C:\Documents and Settings\tcorcoran\Application Data\Mozilla\Firefox\Profiles\fyctq6of.default\cookies.txt -> TrackingCookie.Pointroll : Cleaned.
:mozilla.388:C:\Documents and Settings\tcorcoran\Application Data\Mozilla\Firefox\Profiles\fyctq6of.default\cookies.txt -> TrackingCookie.Pointroll : Cleaned.
:mozilla.597:C:\Documents and Settings\tcorcoran\Application Data\Mozilla\Firefox\Profiles\fyctq6of.default\cookies.txt -> TrackingCookie.Pro-market : Cleaned.
:mozilla.598:C:\Documents and Settings\tcorcoran\Application Data\Mozilla\Firefox\Profiles\fyctq6of.default\cookies.txt -> TrackingCookie.Pro-market : Cleaned.
:mozilla.599:C:\Documents and Settings\tcorcoran\Application Data\Mozilla\Firefox\Profiles\fyctq6of.default\cookies.txt -> TrackingCookie.Pro-market : Cleaned.
:mozilla.361:C:\Documents and Settings\tcorcoran\Application Data\Mozilla\Firefox\Profiles\fyctq6of.default\cookies.txt -> TrackingCookie.Questionmarket : Cleaned.
:mozilla.362:C:\Documents and Settings\tcorcoran\Application Data\Mozilla\Firefox\Profiles\fyctq6of.default\cookies.txt -> TrackingCookie.Questionmarket : Cleaned.
:mozilla.472:C:\Documents and Settings\tcorcoran\Application Data\Mozilla\Firefox\Profiles\fyctq6of.default\cookies.txt -> TrackingCookie.Realmedia : Cleaned.
:mozilla.473:C:\Documents and Settings\tcorcoran\Application Data\Mozilla\Firefox\Profiles\fyctq6of.default\cookies.txt -> TrackingCookie.Realmedia : Cleaned.
:mozilla.474:C:\Documents and Settings\tcorcoran\Application Data\Mozilla\Firefox\Profiles\fyctq6of.default\cookies.txt -> TrackingCookie.Realmedia : Cleaned.
C:\Documents and Settings\tcorcoran\Local Settings\Temp\Cookies\tcorcoran@realmedia[1].txt -> TrackingCookie.Realmedia : Cleaned.
:mozilla.604:C:\Documents and Settings\tcorcoran\Application Data\Mozilla\Firefox\Profiles\fyctq6of.default\cookies.txt -> TrackingCookie.Revenue : Cleaned.
:mozilla.375:C:\Documents and Settings\tcorcoran\Application Data\Mozilla\Firefox\Profiles\fyctq6of.default\cookies.txt -> TrackingCookie.Revsci : Cleaned.
:mozilla.376:C:\Documents and Settings\tcorcoran\Application Data\Mozilla\Firefox\Profiles\fyctq6of.default\cookies.txt -> TrackingCookie.Revsci : Cleaned.
:mozilla.377:C:\Documents and Settings\tcorcoran\Application Data\Mozilla\Firefox\Profiles\fyctq6of.default\cookies.txt -> TrackingCookie.Revsci : Cleaned.
:mozilla.378:C:\Documents and Settings\tcorcoran\Application Data\Mozilla\Firefox\Profiles\fyctq6of.default\cookies.txt -> TrackingCookie.Revsci : Cleaned.
:mozilla.380:C:\Documents and Settings\tcorcoran\Application Data\Mozilla\Firefox\Profiles\fyctq6of.default\cookies.txt -> TrackingCookie.Revsci : Cleaned.
:mozilla.381:C:\Documents and Settings\tcorcoran\Application Data\Mozilla\Firefox\Profiles\fyctq6of.default\cookies.txt -> TrackingCookie.Revsci : Cleaned.
:mozilla.382:C:\Documents and Settings\tcorcoran\Application Data\Mozilla\Firefox\Profiles\fyctq6of.default\cookies.txt -> TrackingCookie.Revsci : Cleaned.
:mozilla.913:C:\Documents and Settings\tcorcoran\Application Data\Mozilla\Firefox\Profiles\fyctq6of.default\cookies.txt -> TrackingCookie.Revsci : Cleaned.
C:\Documents and Settings\administrator.CVILLE\Cookies\administrator@revsci[2].txt -> TrackingCookie.Revsci : Cleaned.
:mozilla.660:C:\Documents and Settings\tcorcoran\Application Data\Mozilla\Firefox\Profiles\fyctq6of.default\cookies.txt -> TrackingCookie.Ru4 : Cleaned.
:mozilla.661:C:\Documents and Settings\tcorcoran\Application Data\Mozilla\Firefox\Profiles\fyctq6of.default\cookies.txt -> TrackingCookie.Ru4 : Cleaned.
:mozilla.662:C:\Documents and Settings\tcorcoran\Application Data\Mozilla\Firefox\Profiles\fyctq6of.default\cookies.txt -> TrackingCookie.Ru4 : Cleaned.
:mozilla.663:C:\Documents and Settings\tcorcoran\Application Data\Mozilla\Firefox\Profiles\fyctq6of.default\cookies.txt -> TrackingCookie.Ru4 : Cleaned.
:mozilla.210:C:\Documents and Settings\tcorcoran\Application Data\Mozilla\Firefox\Profiles\fyctq6of.default\cookies.txt -> TrackingCookie.Serving-sys : Cleaned.
:mozilla.211:C:\Documents and Settings\tcorcoran\Application Data\Mozilla\Firefox\Profiles\fyctq6of.default\cookies.txt -> TrackingCookie.Serving-sys : Cleaned.
:mozilla.212:C:\Documents and Settings\tcorcoran\Application Data\Mozilla\Firefox\Profiles\fyctq6of.default\cookies.txt -> TrackingCookie.Serving-sys : Cleaned.
:mozilla.213:C:\Documents and Settings\tcorcoran\Application Data\Mozilla\Firefox\Profiles\fyctq6of.default\cookies.txt -> TrackingCookie.Serving-sys : Cleaned.
:mozilla.214:C:\Documents and Settings\tcorcoran\Application Data\Mozilla\Firefox\Profiles\fyctq6of.default\cookies.txt -> TrackingCookie.Serving-sys : Cleaned.
:mozilla.215:C:\Documents and Settings\tcorcoran\Application Data\Mozilla\Firefox\Profiles\fyctq6of.default\cookies.txt -> TrackingCookie.Serving-sys : Cleaned.
:mozilla.532:C:\Documents and Settings\tcorcoran\Application Data\Mozilla\Firefox\Profiles\fyctq6of.default\cookies.txt -> TrackingCookie.Specificclick : Cleaned.
:mozilla.533:C:\Documents and Settings\tcorcoran\Application Data\Mozilla\Firefox\Profiles\fyctq6of.default\cookies.txt -> TrackingCookie.Specificclick : Cleaned.
:mozilla.534:C:\Documents and Settings\tcorcoran\Application Data\Mozilla\Firefox\Profiles\fyctq6of.default\cookies.txt -> TrackingCookie.Specificclick : Cleaned.
:mozilla.535:C:\Documents and Settings\tcorcoran\Application Data\Mozilla\Firefox\Profiles\fyctq6of.default\cookies.txt -> TrackingCookie.Specificclick : Cleaned.
:mozilla.49:C:\Documents and Settings\tcorcoran\Application Data\Mozilla\Firefox\Profiles\fyctq6of.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
:mozilla.50:C:\Documents and Settings\tcorcoran\Application Data\Mozilla\Firefox\Profiles\fyctq6of.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
:mozilla.51:C:\Documents and Settings\tcorcoran\Application Data\Mozilla\Firefox\Profiles\fyctq6of.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
:mozilla.52:C:\Documents and Settings\tcorcoran\Application Data\Mozilla\Firefox\Profiles\fyctq6of.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
:mozilla.53:C:\Documents and Settings\tcorcoran\Application Data\Mozilla\Firefox\Profiles\fyctq6of.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
:mozilla.54:C:\Documents and Settings\tcorcoran\Application Data\Mozilla\Firefox\Profiles\fyctq6of.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
:mozilla.55:C:\Documents and Settings\tcorcoran\Application Data\Mozilla\Firefox\Profiles\fyctq6of.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
:mozilla.56:C:\Documents and Settings\tcorcoran\Application Data\Mozilla\Firefox\Profiles\fyctq6of.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
:mozilla.57:C:\Documents and Settings\tcorcoran\Application Data\Mozilla\Firefox\Profiles\fyctq6of.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned.
:mozilla.110:C:\Documents and Settings\tcorcoran\Application Data\Mozilla\Firefox\Profiles\fyctq6of.default\cookies.txt -> TrackingCookie.Tacoda : Cleaned.
:mozilla.111:C:\Documents and Settings\tcorcoran\Application Data\Mozilla\Firefox\Profiles\fyctq6of.default\cookies.txt -> TrackingCookie.Tacoda : Cleaned.
:mozilla.119:C:\Documents and Settings\tcorcoran\Application Data\Mozilla\Firefox\Profiles\fyctq6of.default\cookies.txt -> TrackingCookie.Tacoda : Cleaned.
:mozilla.120:C:\Documents and Settings\tcorcoran\Application Data\Mozilla\Firefox\Profiles\fyctq6of.default\cookies.txt -> TrackingCookie.Tacoda : Cleaned.
:mozilla.121:C:\Documents and Settings\tcorcoran\Application Data\Mozilla\Firefox\Profiles\fyctq6of.default\cookies.txt -> TrackingCookie.Tacoda : Cleaned.
:mozilla.170:C:\Documents and Settings\tcorcoran\Application Data\Mozilla\Firefox\Profiles\fyctq6of.default\cookies.txt -> TrackingCookie.Tacoda : Cleaned.
:mozilla.171:C:\Documents and Settings\tcorcoran\Application Data\Mozilla\Firefox\Profiles\fyctq6of.default\cookies.txt -> TrackingCookie.Tacoda : Cleaned.
:mozilla.310:C:\Documents and Settings\tcorcoran\Application Data\Mozilla\Firefox\Profiles\fyctq6of.default\cookies.txt -> TrackingCookie.Trafficmp : Cleaned.
:mozilla.311:C:\Documents and Settings\tcorcoran\Application Data\Mozilla\Firefox\Profiles\fyctq6of.default\cookies.txt -> TrackingCookie.Trafficmp : Cleaned.
:mozilla.312:C:\Documents and Settings\tcorcoran\Application Data\Mozilla\Firefox\Profiles\fyctq6of.default\cookies.txt -> TrackingCookie.Trafficmp : Cleaned.
:mozilla.313:C:\Documents and Settings\tcorcoran\Application Data\Mozilla\Firefox\Profiles\fyctq6of.default\cookies.txt -> TrackingCookie.Trafficmp : Cleaned.
:mozilla.314:C:\Documents and Settings\tcorcoran\Application Data\Mozilla\Firefox\Profiles\fyctq6of.default\cookies.txt -> TrackingCookie.Trafficmp : Cleaned.
:mozilla.315:C:\Documents and Settings\tcorcoran\Application Data\Mozilla\Firefox\Profiles\fyctq6of.default\cookies.txt -> TrackingCookie.Trafficmp : Cleaned.
:mozilla.316:C:\Documents and Settings\tcorcoran\Application Data\Mozilla\Firefox\Profiles\fyctq6of.default\cookies.txt -> TrackingCookie.Trafficmp : Cleaned.
:mozilla.317:C:\Documents and Settings\tcorcoran\Application Data\Mozilla\Firefox\Profiles\fyctq6of.default\cookies.txt -> TrackingCookie.Trafficmp : Cleaned.
:mozilla.457:C:\Documents and Settings\tcorcoran\Application Data\Mozilla\Firefox\Profiles\fyctq6of.default\cookies.txt -> TrackingCookie.Tribalfusion : Cleaned.
C:\Documents and Settings\tcorcoran\Local Settings\Temp\Cookies\tcorcoran@tribalfusion[1].txt -> TrackingCookie.Tribalfusion : Cleaned.
:mozilla.767:C:\Documents and Settings\tcorcoran\Application Data\Mozilla\Firefox\Profiles\fyctq6of.default\cookies.txt -> TrackingCookie.Webtrendslive : Cleaned.
:mozilla.238:C:\Documents and Settings\tcorcoran\Application Data\Mozilla\Firefox\Profiles\fyctq6of.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.239:C:\Documents and Settings\tcorcoran\Application Data\Mozilla\Firefox\Profiles\fyctq6of.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.240:C:\Documents and Settings\tcorcoran\Application Data\Mozilla\Firefox\Profiles\fyctq6of.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.241:C:\Documents and Settings\tcorcoran\Application Data\Mozilla\Firefox\Profiles\fyctq6of.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned.
C:\Documents and Settings\tcorcoran\Cookies\tcorcoran@ad.yieldmanager[1].txt -> TrackingCookie.Yieldmanager : Cleaned.
C:\Documents and Settings\tcorcoran\Local Settings\Temp\Cookies\tcorcoran@ad.yieldmanager[2].txt -> TrackingCookie.Yieldmanager : Cleaned.
:mozilla.158:C:\Documents and Settings\tcorcoran\Application Data\Mozilla\Firefox\Profiles\fyctq6of.default\cookies.txt -> TrackingCookie.Zedo : Cleaned.
:mozilla.159:C:\Documents and Settings\tcorcoran\Application Data\Mozilla\Firefox\Profiles\fyctq6of.default\cookies.txt -> TrackingCookie.Zedo : Cleaned.
:mozilla.160:C:\Documents and Settings\tcorcoran\Application Data\Mozilla\Firefox\Profiles\fyctq6of.default\cookies.txt -> TrackingCookie.Zedo : Cleaned.
:mozilla.161:C:\Documents and Settings\tcorcoran\Application Data\Mozilla\Firefox\Profiles\fyctq6of.default\cookies.txt -> TrackingCookie.Zedo : Cleaned.
:mozilla.162:C:\Documents and Settings\tcorcoran\Application Data\Mozilla\Firefox\Profiles\fyctq6of.default\cookies.txt -> TrackingCookie.Zedo : Cleaned.
C:\System Volume Information\_restore{46DE8921-1D39-44D2-A9E9-64119261F211}\RP489\A0097940.exe -> Trojan.Small : Cleaned.
::Report end
ted corcoran
10 Posts
0
March 7th, 2007 12:00
Logfile of HijackThis v1.99.1
Scan saved at 9:02:24 AM, on 3/7/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\nslsvice.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
C:\Program Files\Intel\Wireless\Bin\WLKeeper.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\WINDOWS\system32\basfipm.exe
c:\program files\cisco\vpn client\cvpnd.exe
C:\WINDOWS\system32\inetsrv\inetinfo.exe
C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\Program Files\Microsoft SQL Server\MSSQL$MICROSOFTBCM\Binn\sqlservr.exe
C:\Program Files\Dell\NICCONFIGSVC\NICCONFIGSVC.exe
C:\Program Files\Trend Micro\OfficeScan Client\ntrtscan.exe
C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\HPZipm12.exe
C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
C:\Program Files\Trend Micro\OfficeScan Client\tmlisten.exe
C:\WINDOWS\system32\UAService7.exe
C:\Program Files\Trend Micro\OfficeScan Client\OfcPfwSvc.exe
C:\WINDOWS\TEMP\SF2F8A.EXE
C:\Program Files\Intel\Wireless\Bin\ZcfgSvc.exe
C:\PROGRA~1\Intel\Wireless\Bin\1XConfig.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Apoint\Apoint.exe
C:\WINDOWS\system32\hkcmd.exe
C:\Program Files\Java\jre1.5.0_03\bin\jusched.exe
C:\Program Files\Intel\Wireless\Bin\ifrmewrk.exe
C:\Program Files\Dell\QuickSet\quickset.exe
C:\Program Files\CyberLink\PowerDVD\DVDLauncher.exe
C:\WINDOWS\system32\dla\tfswctrl.exe
C:\Program Files\Trend Micro\OfficeScan Client\pccntmon.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Apoint\Apntex.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\Adobe\Acrobat 6.0\Distillr\acrotray.exe
C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtMng1.exe
C:\Program Files\Sony Corporation\Picture Package\Picture Package Menu\SonyTray.exe
C:\Program Files\WinZip\WZQKPICK.EXE
C:\Program Files\Pixoria\Konfabulator\Konfabulator.exe
C:\Program Files\Trillian\trillian.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\WINDOWS\system32\NOTEPAD.EXE
c:\program files\cisco\vpn client\vpngui.exe
c:\program files\cisco\vpn client\ipseclog.exe
C:\Program Files\Lotus\Notes\NLNOTES.EXE
C:\Program Files\Lotus\Notes\ntaskldr.EXE
C:\PROGRA~1\TEXTPA~1\TextPad.exe
C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE
C:\Documents and Settings\tcorcoran\Desktop\HijackThis_v1.99.1.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.dell.com/
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.millipore.com/
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.millipore.com
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://www.dell.com/
O1 - Hosts: 172.18.0.65 upsnts001
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 6.0\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: DriveLetterAccess - {5CA3D70E-1895-11CF-8E15-001234567890} - C:\WINDOWS\system32\dla\tfswshx.dll
O2 - BHO: AcroIEToolbarHelper Class - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files\Adobe\Acrobat 6.0\Acrobat\AcroIEFavClient.dll
O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Adobe\Acrobat 6.0\Acrobat\AcroIEFavClient.dll
O4 - HKLM\..\Run: [Apoint] C:\Program Files\Apoint\Apoint.exe
O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_03\bin\jusched.exe
O4 - HKLM\..\Run: [IntelWireless] C:\Program Files\Intel\Wireless\Bin\ifrmewrk.exe /tf Intel PROSet/Wireless
O4 - HKLM\..\Run: [Dell QuickSet] C:\Program Files\Dell\QuickSet\quickset.exe
O4 - HKLM\..\Run: [DVDLauncher] "C:\Program Files\CyberLink\PowerDVD\DVDLauncher.exe"
O4 - HKLM\..\Run: [UpdateManager] "C:\Program Files\Common Files\Sonic\Update Manager\sgtray.exe" /r
O4 - HKLM\..\Run: [dla] C:\WINDOWS\system32\dla\tfswctrl.exe
O4 - HKLM\..\Run: [DSS] C:\WINDOWS\BBSTORE\DSS\DSSAGENT.EXE
O4 - HKLM\..\Run: [OfficeScanNT Monitor] "C:\Program Files\Trend Micro\OfficeScan Client\pccntmon.exe" -HideWindow
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - Startup: Konfabulator.lnk = C:\Program Files\Pixoria\Konfabulator\Konfabulator.exe
O4 - Startup: Trillian.lnk = C:\Program Files\Trillian\trillian.exe
O4 - Global Startup: Acrobat Assistant.lnk = C:\Program Files\Adobe\Acrobat 6.0\Distillr\acrotray.exe
O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: Bluetooth Manager.lnk = ?
O4 - Global Startup: Cisco Systems VPN Client.lnk = C:\Program Files\cisco\vpn client\vpngui.exe
O4 - Global Startup: Picture Package Menu.lnk = ?
O4 - Global Startup: WinZip Quick Pick.lnk = C:\Program Files\WinZip\WZQKPICK.EXE
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_03\bin\npjpi150_03.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_03\bin\npjpi150_03.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {05D96F71-87C6-11D3-9BE4-00902742D6E0} (QuickPlace Class) - http://quickplace1.millipore.com/qp2.cab
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: Domain = group.upstate.com
O17 - HKLM\Software\..\Telephony: DomainName = group.upstate.com
O17 - HKLM\System\CCS\Services\Tcpip\..\{B822EDCB-6047-4C8C-AC7C-8A43414751FA}: Domain = upstate.com
O17 - HKLM\System\CCS\Services\Tcpip\..\{B822EDCB-6047-4C8C-AC7C-8A43414751FA}: NameServer = 172.31.1.11,172.31.1.11
O17 - HKLM\System\CS1\Services\Tcpip\Parameters: Domain = group.upstate.com
O17 - HKLM\System\CS1\Services\Tcpip\Parameters: SearchList = upstate.com,upstate.com,group.upstate.com,millipore.com,chemicon.com,serologicals.com
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: SearchList = upstate.com,upstate.com,group.upstate.com,millipore.com,chemicon.com,serologicals.com
O20 - Winlogon Notify: igfxcui - C:\WINDOWS\SYSTEM32\igfxsrvc.dll
O20 - Winlogon Notify: IntelWireless - C:\Program Files\Intel\Wireless\Bin\LgNotify.dll
O23 - Service: AVG Anti-Spyware Guard - Anti-Malware Development a.s. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: Broadcom ASF IP monitoring service v6.0.4 (BAsfIpM) - Broadcom Corp. - C:\WINDOWS\system32\basfipm.exe
O23 - Service: Cisco Systems, Inc. VPN Service (CVPND) - Cisco Systems, Inc. - c:\program files\cisco\vpn client\cvpnd.exe
O23 - Service: EvtEng - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: Imapi Helper - Alex Feinman - C:\Program Files\Alex Feinman\ISO Recorder\ImapiHelper.exe
O23 - Service: iPod Service - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Lotus Notes Single Logon - IBM Corp - C:\WINDOWS\system32\nslsvice.exe
O23 - Service: NICCONFIGSVC - Dell Inc. - C:\Program Files\Dell\NICCONFIGSVC\NICCONFIGSVC.exe
O23 - Service: OfficeScanNT RealTime Scan (ntrtscan) - Trend Micro Inc. - C:\Program Files\Trend Micro\OfficeScan Client\ntrtscan.exe
O23 - Service: OfficeScanNT Personal Firewall (OfcPfwSvc) - Trend Micro Inc. - C:\Program Files\Trend Micro\OfficeScan Client\OfcPfwSvc.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\HPZipm12.exe
O23 - Service: RegSrvc - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
O23 - Service: Spectrum24 Event Monitor (S24EventMonitor) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
O23 - Service: OfficeScanNT Listener (tmlisten) - Trend Micro Inc. - C:\Program Files\Trend Micro\OfficeScan Client\tmlisten.exe
O23 - Service: SecuROM User Access Service (V7) (UserAccess7) - Unknown owner - C:\WINDOWS\system32\UAService7.exe
O23 - Service: WLANKEEPER - Intel® Corporation - C:\Program Files\Intel\Wireless\Bin\WLKeeper.exe
ted corcoran
10 Posts
0
March 7th, 2007 12:00
Haven't seen an Outerinfo popup yet and my performance appears to be back to normal.
Again, thanks for taking time to help me.
Ted