« previous next »
Pages: [1] 2

Author Topic: Win32-P2P.Alcan.a HELPPP  (Read 897 times)

Offline mistacleen

  • Newbie
  • *
  • Posts: 12
  • Karma: +0/-0
    • View Profile
Win32-P2P.Alcan.a HELPPP
« on: April 03, 2006, 03:38:27 PM »
Ok, so have have three problems:

1.) I have Win32-P2P.Alcan.a so obviously i would like to remove it.  

2.)I have found something called "winlog.exe" in my processes in the task manager(usually i couldn't get it to work, i have to find another way to open task manager.) i realize that it is a threat to my computer, but im not quite sure how to get rid of it.

3.) Lastly, usually whenever I boot up my system something appears on the screen from the app Command. a screenshot is linked to here

THANK YOU SO MUCH IF YOU CAN HELP ME. THANKYOUTHANKYOUTHANKYOU

Logfile of HijackThis v1.99.1
Scan saved at 4:18:34 PM, on 4/3/2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
C:\Program Files\Intel\Wireless\Bin\WLKeeper.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Intel\Wireless\Bin\ZcfgSvc.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\hkcmd.exe
C:\Program Files\Java\jre1.5.0_03\bin\jusched.exe
C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\Intel\Wireless\Bin\ifrmewrk.exe
C:\Program Files\CyberLink\PowerDVD\DVDLauncher.exe
C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe
C:\PROGRA~1\mcafee.com\agent\mcagent.exe
C:\Program Files\McAfee.com\VSO\mcvsshld.exe
C:\Program Files\McAfee.com\VSO\oasclnt.exe
C:\PROGRA~1\McAfee.com\PERSON~1\MpfTray.exe
C:\WINDOWS\vsnpstd3.exe
c:\progra~1\mcafee.com\vso\mcvsescn.exe
C:\PROGRA~1\Intel\Wireless\Bin\1XConfig.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\WINDOWS\system32\dla\tfswctrl.exe
C:\Program Files\outlook\outlook.exe
C:\Program Files\Digital Line Detect\DLG.exe
C:\Program Files\Adobe\Photoshop Elements 4.0\PhotoshopElementsFileAgent.exe
C:\PROGRA~1\COMMON~1\AOL\ACS\AOLacsd.exe
c:\program files\mcafee.com\agent\mcdetect.exe
c:\PROGRA~1\mcafee.com\vso\mcshield.exe
c:\PROGRA~1\mcafee.com\agent\mctskshd.exe
C:\PROGRA~1\McAfee.com\PERSON~1\MpfService.exe
C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\PROGRA~1\McAfee.com\PERSON~1\MpfAgent.exe
C:\Program Files\AIM\aim.exe
c:\progra~1\mcafee.com\vso\mcvsftsn.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Documents and Settings\John\Desktop\procexp.exe
C:\PROGRA~1\MOZILL~1\FIREFOX.EXE
C:\Program Files\Lavasoft\Ad-Aware SE Personal\Ad-Aware.exe
C:\WINDOWS\system32\rundll32.exe
C:\HJT\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.dell4me.com/mywaybiz
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.dell4me.com/mywaybiz
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.dell4me.com/mywaybiz
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.dell4me.com/mywaybiz
R3 - URLSearchHook: (no name) - {4D25F926-B9FE-4682-BF72-8AB8210D6D75} - (no file)
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: DriveLetterAccess - {5CA3D70E-1895-11CF-8E15-001234567890} - C:\WINDOWS\system32\dla\tfswshx.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll
O3 - Toolbar: McAfee VirusScan - {BA52B914-B692-46c4-B683-905236F6F655} - c:\progra~1\mcafee.com\vso\mcvsshl.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll
O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_03\bin\jusched.exe
O4 - HKLM\..\Run: [SynTPLpr] C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [IntelWireless] C:\Program Files\Intel\Wireless\Bin\ifrmewrk.exe /tf Intel PROSet/Wireless
O4 - HKLM\..\Run: [DVDLauncher] "C:\Program Files\CyberLink\PowerDVD\DVDLauncher.exe"
O4 - HKLM\..\Run: [ISUSPM Startup] C:\PROGRA~1\COMMON~1\INSTAL~1\UPDATE~1\ISUSPM.exe -startup
O4 - HKLM\..\Run: [ISUSScheduler] "C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe" -start
O4 - HKLM\..\Run: [VSOCheckTask] "C:\PROGRA~1\McAfee.com\VSO\mcmnhdlr.exe" /checktask
O4 - HKLM\..\Run: [MCAgentExe] c:\PROGRA~1\mcafee.com\agent\mcagent.exe
O4 - HKLM\..\Run: [MCUpdateExe] c:\PROGRA~1\mcafee.com\agent\mcupdate.exe
O4 - HKLM\..\Run: [VirusScan Online] C:\Program Files\McAfee.com\VSO\mcvsshld.exe
O4 - HKLM\..\Run: [OASClnt] C:\Program Files\McAfee.com\VSO\oasclnt.exe
O4 - HKLM\..\Run: [MPFExe] C:\PROGRA~1\McAfee.com\PERSON~1\MpfTray.exe
O4 - HKLM\..\Run: [snpstd3] C:\WINDOWS\vsnpstd3.exe
O4 - HKLM\..\Run: [LogonStudio] "C:\Documents and Settings\John\My Documents\Web Downloads\LogonStudio\logonstudio.exe" /RANDOM
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [dla] C:\WINDOWS\system32\dla\tfswctrl.exe
O4 - HKLM\..\Run: [outlook] C:\Program Files\outlook\outlook.exe /auto
O4 - HKLM\..\Run: [Adobe Photo Downloader] "C:\Program Files\Adobe\Photoshop Elements 4.0\apdproxy.exe"
O4 - HKLM\..\Run: [winlog] winlog.exe
O4 - HKLM\..\RunServices: [winlog] winlog.exe
O4 - HKCU\..\Run: [DesktopX] "C:\DOCUME~1\John\MYDOCU~1\WEBDOW~1\DesktopX\DesktopX.exe"
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: America Online 9.0 Tray Icon.lnk = C:\Program Files\America Online 9.0\aoltray.exe
O4 - Global Startup: Digital Line Detect.lnk = ?
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O8 - Extra context menu item: &Google Search - res://c:\program files\google\GoogleToolbar2.dll/cmsearch.html
O8 - Extra context menu item: &Search - http://edits.mywebsearch.com/toolbaredits/...html?p=ZNfox000
O8 - Extra context menu item: &Translate English Word - res://c:\program files\google\GoogleToolbar2.dll/cmwordtrans.html
O8 - Extra context menu item: Backward Links - res://c:\program files\google\GoogleToolbar2.dll/cmbacklinks.html
O8 - Extra context menu item: Cached Snapshot of Page - res://c:\program files\google\GoogleToolbar2.dll/cmcache.html
O8 - Extra context menu item: Similar Pages - res://c:\program files\google\GoogleToolbar2.dll/cmsimilar.html
O8 - Extra context menu item: Translate Page into English - res://c:\program files\google\GoogleToolbar2.dll/cmtrans.html
O9 - Extra button: AIM - {AC9E2541-2814-11d5-BC6D-00B0D0A1DE45} - C:\Program Files\AIM\aim.exe
O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\system32\Shdocvw.dll
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O12 - Plugin for .spop: C:\Program Files\Internet Explorer\Plugins\NPDocBox.dll
O16 - DPF: {0E5F0222-96B9-11D3-8997-00104BD12D94} (PCPitstop Utility) - http://www.pcpitstop.com/pcpitstop/PCPitStop.CAB
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204
O16 - DPF: {3A7FE611-1994-4EF1-A09F-99456752289D} (WildTangent Active Launcher) - http://install.wildtangent.com/ActiveLaunc...iveLauncher.cab
O16 - DPF: {4ED9DDF0-7479-4BBE-9335-5A1EDB1D8A21} (McAfee.com Operating System Class) - http://download.mcafee.com/molbin/shared/m...99/mcinsctl.cab
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftupdat...b?1128477354331
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/Messe...nt.cab31267.cab
O16 - DPF: {9FC5238F-12C4-454F-B1B5-74599A21DE47} (Webshots Photo Uploader) - http://community.webshots.com/html/WSPhotoUploader.CAB
O16 - DPF: {B49C4597-8721-4789-9250-315DFBD9F525} (IWinAmpActiveX Class) - http://cdn.digitalcity.com/radio/ampx/ampx2.6.1.11_en_dl.cab
O16 - DPF: {DF780F87-FF2B-4DF8-92D0-73DB16A1543A} (PopCapLoader Object) - http://www.popcap.com/games/popcaploader_v6.cab
O16 - DPF: {E13F1132-4CA0-4005-84D3-51406E27D269} (BTDownloadCtrl Control) - http://www.shockwave.com/content/thinktank...ownloadCtrl.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{D063A193-ADFF-4563-8158-38427E30984D}: NameServer = 10.1.1.3
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)
O20 - Winlogon Notify: igfxcui - C:\WINDOWS\SYSTEM32\igfxsrvc.dll
O20 - Winlogon Notify: IntelWireless - C:\Program Files\Intel\Wireless\Bin\LgNotify.dll
O23 - Service: Adobe Active File Monitor V4 (AdobeActiveFileMonitor4.0) - Unknown owner - C:\Program Files\Adobe\Photoshop Elements 4.0\PhotoshopElementsFileAgent.exe
O23 - Service: AOL Connectivity Service (AOL ACS) - America Online, Inc. - C:\PROGRA~1\COMMON~1\AOL\ACS\AOLacsd.exe
O23 - Service: EvtEng - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iPodService - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: McAfee WSC Integration (McDetect.exe) - McAfee, Inc - c:\program files\mcafee.com\agent\mcdetect.exe
O23 - Service: McAfee.com McShield (McShield) - McAfee Inc. - c:\PROGRA~1\mcafee.com\vso\mcshield.exe
O23 - Service: McAfee Task Scheduler (McTskshd.exe) - McAfee, Inc - c:\PROGRA~1\mcafee.com\agent\mctskshd.exe
O23 - Service: McAfee SecurityCenter Update Manager (mcupdmgr.exe) - McAfee, Inc - C:\PROGRA~1\McAfee.com\Agent\mcupdmgr.exe
O23 - Service: McAfee Personal Firewall Service (MpfService) - McAfee Corporation - C:\PROGRA~1\McAfee.com\PERSON~1\MpfService.exe
O23 - Service: RegSrvc - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
O23 - Service: Spectrum24 Event Monitor (S24EventMonitor) - Intel Corporation  - C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
O23 - Service: WLANKEEPER - Intel® Corporation - C:\Program Files\Intel\Wireless\Bin\WLKeeper.exe
Logged

Offline guestolo

  • Site Donator
  • Administrator
  • Hero Member
  • *****
  • Posts: 16034
  • Karma: +1/-0
    • View Profile
    • http://
Win32-P2P.Alcan.a HELPPP
« Reply #1 on: April 03, 2006, 09:39:48 PM »
Can you do me a favor please, it appears you just ran a scan with Ad-Aware
Can you reboot your computer please and post a new hijackthis log, let's see if it looks any different
Logged

Do you want to post your own logs from FRST?

Follow the instructions posted http://www.thetechguide.com/forum/index.php/topic/22942-please-read-how-to-post-logs-from-frst/\'>Click Here

Offline mistacleen

  • Newbie
  • *
  • Posts: 12
  • Karma: +0/-0
    • View Profile
Win32-P2P.Alcan.a HELPPP
« Reply #2 on: April 04, 2006, 11:15:28 AM »
ok. i'm busy right now, but i can show you maybe at around 4 this afternoon. Thanks
Logged

Offline mistacleen

  • Newbie
  • *
  • Posts: 12
  • Karma: +0/-0
    • View Profile
Win32-P2P.Alcan.a HELPPP
« Reply #3 on: April 04, 2006, 04:08:56 PM »
Here you are...

Logfile of HijackThis v1.99.1
Scan saved at 5:08:24 PM, on 4/4/2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Windows Defender\MsMpEng.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
C:\Program Files\Intel\Wireless\Bin\WLKeeper.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Intel\Wireless\Bin\ZcfgSvc.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\hkcmd.exe
C:\Program Files\Java\jre1.5.0_03\bin\jusched.exe
C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\Intel\Wireless\Bin\ifrmewrk.exe
C:\Program Files\CyberLink\PowerDVD\DVDLauncher.exe
C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe
C:\PROGRA~1\mcafee.com\agent\mcagent.exe
C:\Program Files\McAfee.com\VSO\mcvsshld.exe
C:\Program Files\McAfee.com\VSO\oasclnt.exe
C:\PROGRA~1\McAfee.com\PERSON~1\MpfTray.exe
c:\progra~1\mcafee.com\vso\mcvsescn.exe
C:\WINDOWS\vsnpstd3.exe
C:\PROGRA~1\Intel\Wireless\Bin\1XConfig.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\WINDOWS\system32\dla\tfswctrl.exe
C:\Program Files\Adobe\Photoshop Elements 4.0\apdproxy.exe
C:\Program Files\Windows Defender\MSASCui.exe
C:\Program Files\Digital Line Detect\DLG.exe
C:\Program Files\Adobe\Photoshop Elements 4.0\PhotoshopElementsFileAgent.exe
C:\PROGRA~1\COMMON~1\AOL\ACS\AOLacsd.exe
c:\program files\mcafee.com\agent\mcdetect.exe
c:\PROGRA~1\mcafee.com\vso\mcshield.exe
c:\PROGRA~1\mcafee.com\agent\mctskshd.exe
C:\PROGRA~1\McAfee.com\PERSON~1\MpfService.exe
C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\PROGRA~1\McAfee.com\PERSON~1\MpfAgent.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\HJT\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.dell4me.com/mywaybiz
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.dell4me.com/mywaybiz
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.dell4me.com/mywaybiz
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.dell4me.com/mywaybiz
R3 - URLSearchHook: (no name) - {4D25F926-B9FE-4682-BF72-8AB8210D6D75} - (no file)
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: DriveLetterAccess - {5CA3D70E-1895-11CF-8E15-001234567890} - C:\WINDOWS\system32\dla\tfswshx.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll
O3 - Toolbar: McAfee VirusScan - {BA52B914-B692-46c4-B683-905236F6F655} - c:\progra~1\mcafee.com\vso\mcvsshl.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll
O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_03\bin\jusched.exe
O4 - HKLM\..\Run: [SynTPLpr] C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [IntelWireless] C:\Program Files\Intel\Wireless\Bin\ifrmewrk.exe /tf Intel PROSet/Wireless
O4 - HKLM\..\Run: [DVDLauncher] "C:\Program Files\CyberLink\PowerDVD\DVDLauncher.exe"
O4 - HKLM\..\Run: [ISUSPM Startup] C:\PROGRA~1\COMMON~1\INSTAL~1\UPDATE~1\ISUSPM.exe -startup
O4 - HKLM\..\Run: [ISUSScheduler] "C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe" -start
O4 - HKLM\..\Run: [VSOCheckTask] "C:\PROGRA~1\McAfee.com\VSO\mcmnhdlr.exe" /checktask
O4 - HKLM\..\Run: [MCAgentExe] c:\PROGRA~1\mcafee.com\agent\mcagent.exe
O4 - HKLM\..\Run: [MCUpdateExe] c:\PROGRA~1\mcafee.com\agent\mcupdate.exe
O4 - HKLM\..\Run: [VirusScan Online] C:\Program Files\McAfee.com\VSO\mcvsshld.exe
O4 - HKLM\..\Run: [OASClnt] C:\Program Files\McAfee.com\VSO\oasclnt.exe
O4 - HKLM\..\Run: [MPFExe] C:\PROGRA~1\McAfee.com\PERSON~1\MpfTray.exe
O4 - HKLM\..\Run: [snpstd3] C:\WINDOWS\vsnpstd3.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [dla] C:\WINDOWS\system32\dla\tfswctrl.exe
O4 - HKLM\..\Run: [outlook] C:\Program Files\outlook\outlook.exe /auto
O4 - HKLM\..\Run: [Adobe Photo Downloader] "C:\Program Files\Adobe\Photoshop Elements 4.0\apdproxy.exe"
O4 - HKLM\..\Run: [Windows Defender] "C:\Program Files\Windows Defender\MSASCui.exe" -hide
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: America Online 9.0 Tray Icon.lnk = C:\Program Files\America Online 9.0\aoltray.exe
O4 - Global Startup: Digital Line Detect.lnk = ?
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O8 - Extra context menu item: &Google Search - res://c:\program files\google\GoogleToolbar2.dll/cmsearch.html
O8 - Extra context menu item: &Search - http://edits.mywebsearch.com/toolbaredits/...html?p=ZNfox000
O8 - Extra context menu item: &Translate English Word - res://c:\program files\google\GoogleToolbar2.dll/cmwordtrans.html
O8 - Extra context menu item: Backward Links - res://c:\program files\google\GoogleToolbar2.dll/cmbacklinks.html
O8 - Extra context menu item: Cached Snapshot of Page - res://c:\program files\google\GoogleToolbar2.dll/cmcache.html
O8 - Extra context menu item: Similar Pages - res://c:\program files\google\GoogleToolbar2.dll/cmsimilar.html
O8 - Extra context menu item: Translate Page into English - res://c:\program files\google\GoogleToolbar2.dll/cmtrans.html
O9 - Extra button: AIM - {AC9E2541-2814-11d5-BC6D-00B0D0A1DE45} - C:\Program Files\AIM\aim.exe
O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\system32\Shdocvw.dll
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O12 - Plugin for .spop: C:\Program Files\Internet Explorer\Plugins\NPDocBox.dll
O16 - DPF: {0E5F0222-96B9-11D3-8997-00104BD12D94} (PCPitstop Utility) - http://www.pcpitstop.com/pcpitstop/PCPitStop.CAB
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204
O16 - DPF: {3A7FE611-1994-4EF1-A09F-99456752289D} (WildTangent Active Launcher) - http://install.wildtangent.com/ActiveLaunc...iveLauncher.cab
O16 - DPF: {4ED9DDF0-7479-4BBE-9335-5A1EDB1D8A21} (McAfee.com Operating System Class) - http://download.mcafee.com/molbin/shared/m...99/mcinsctl.cab
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftupdat...b?1128477354331
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/Messe...nt.cab31267.cab
O16 - DPF: {9FC5238F-12C4-454F-B1B5-74599A21DE47} (Webshots Photo Uploader) - http://community.webshots.com/html/WSPhotoUploader.CAB
O16 - DPF: {B49C4597-8721-4789-9250-315DFBD9F525} (IWinAmpActiveX Class) - http://cdn.digitalcity.com/radio/ampx/ampx2.6.1.11_en_dl.cab
O16 - DPF: {DF780F87-FF2B-4DF8-92D0-73DB16A1543A} (PopCapLoader Object) - http://www.popcap.com/games/popcaploader_v6.cab
O16 - DPF: {E13F1132-4CA0-4005-84D3-51406E27D269} (BTDownloadCtrl Control) - http://www.shockwave.com/content/thinktank...ownloadCtrl.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{0F7B8984-AF50-4C7F-B8D9-0EB2E54A702E}: NameServer = 10.1.1.3
O17 - HKLM\System\CCS\Services\Tcpip\..\{D063A193-ADFF-4563-8158-38427E30984D}: NameServer = 10.1.1.3
O17 - HKLM\System\CS1\Services\Tcpip\..\{0F7B8984-AF50-4C7F-B8D9-0EB2E54A702E}: NameServer = 10.1.1.3
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)
O20 - Winlogon Notify: igfxcui - C:\WINDOWS\SYSTEM32\igfxsrvc.dll
O20 - Winlogon Notify: IntelWireless - C:\Program Files\Intel\Wireless\Bin\LgNotify.dll
O23 - Service: Adobe Active File Monitor V4 (AdobeActiveFileMonitor4.0) - Unknown owner - C:\Program Files\Adobe\Photoshop Elements 4.0\PhotoshopElementsFileAgent.exe
O23 - Service: AOL Connectivity Service (AOL ACS) - America Online, Inc. - C:\PROGRA~1\COMMON~1\AOL\ACS\AOLacsd.exe
O23 - Service: EvtEng - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iPodService - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: McAfee WSC Integration (McDetect.exe) - McAfee, Inc - c:\program files\mcafee.com\agent\mcdetect.exe
O23 - Service: McAfee.com McShield (McShield) - McAfee Inc. - c:\PROGRA~1\mcafee.com\vso\mcshield.exe
O23 - Service: McAfee Task Scheduler (McTskshd.exe) - McAfee, Inc - c:\PROGRA~1\mcafee.com\agent\mctskshd.exe
O23 - Service: McAfee SecurityCenter Update Manager (mcupdmgr.exe) - McAfee, Inc - C:\PROGRA~1\McAfee.com\Agent\mcupdmgr.exe
O23 - Service: McAfee Personal Firewall Service (MpfService) - McAfee Corporation - C:\PROGRA~1\McAfee.com\PERSON~1\MpfService.exe
O23 - Service: RegSrvc - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
O23 - Service: Spectrum24 Event Monitor (S24EventMonitor) - Intel Corporation  - C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
O23 - Service: WLANKEEPER - Intel® Corporation - C:\Program Files\Intel\Wireless\Bin\WLKeeper.exe
Logged

Offline guestolo

  • Site Donator
  • Administrator
  • Hero Member
  • *****
  • Posts: 16034
  • Karma: +1/-0
    • View Profile
    • http://
Win32-P2P.Alcan.a HELPPP
« Reply #4 on: April 04, 2006, 04:46:55 PM »
I see you have Windows Defender installed now
Can I have you disable it's realtime protections so it won't interfere with any of the fixes we are to try
Open the program from START>>All programs
Click on TOOLS>>General Settings
Scroll down and UNCHECK
"Turn on Realtime-protection(recommended)"
Click SAVE then Exit Windows Defender
Leave the protections disabled until we are sure you are clean

Can you open "MyComputer"
Double click to open the root folder>>> Local Disk C: drive
Right click an empty spot  and left click NEW>>Folder
A new folder will be placed in the C: folder , name it BFU
So you now have C:\BFU

Please download Brute Force Uninstaller
Reminder, choose SAVE rather than OPEN
Then Extract (UNZIP) the contents to the (C:\BFU) folder you just made
So you now have C:\Bfu\bfu.exe

[color=\"#CC0000\"]RIGHT CLICK HERE[/color]
 and choose "Save As" (in IE it's "Save Target As") in order to download  Alcra Remover.
Save it in the folder you made earlier (c:\BFU)
So you now have C:\Bfu\alcanshorty.bfu

==Download and then Install
Ewido anti-malware 3.5

When installing, under "Additional Options" Uncheck
 "Install background guard" and "Install scan via context menu".

From the main ewido screen, click on Update in the left menu, then click the Start update button.
After the update finishes (the status bar at the bottom will display "Update successful")
Close out Ewido for now, we'll need it later
If for some reason the Updater won't work can you manually download the
Updates from this link after you have Ewido installed
http://www.ewido.net/en/download/updates/

Please save these instructions to a Notepad file and save it to your Desktop for reference
or Print them out!
RESTART your Computer in SAFE MODE
You can do this by tapping the F8 key as the system is restarting, just before Windows loads
Choose Safe mode from the startup menu

Open the C:\BFU folder
Double click to run BFU.exe
Use the "Open Script file" button (the folder icon next to Scriptfile to execute)
Navigate to alcanshorty.bfu in the C:\BFU folder
Right click alcanshorty.bfu and choose Select
In Brute Force Uninstaller select Execute
Wait for the "complete script execution" box to pop up and press OK.
Press exit to terminate the BFU program.

==Open Ewido anti-malware
Click on the Scanner button on the left menu
Select Complete System Scan
*If Ewido finds something it will prompt you with "Infected Object found"
Ensure the following are Selected
  *1. Perform Action = Remove
  *2. Create Encrypted Backup in Quarantine (Recommended)
  *3. Perform action with all infections
  Then click OK
When Ewido has finished it's scan click the "Save Report" button
Save the report to the C: directory or somewhere you will remember
Exit Ewido
NOTE: When Ewido is running, don't open any other windows, let it run uninterrupted

Reboot back to Normal mode
1. Post a fresh hijackthis log
2. Post the whole report from Ewido's please
Logged

Do you want to post your own logs from FRST?

Follow the instructions posted http://www.thetechguide.com/forum/index.php/topic/22942-please-read-how-to-post-logs-from-frst/\'>Click Here

Offline mistacleen

  • Newbie
  • *
  • Posts: 12
  • Karma: +0/-0
    • View Profile
Win32-P2P.Alcan.a HELPPP
« Reply #5 on: April 04, 2006, 10:35:42 PM »
Thank you so much for your help, I have learned my lesson from downloading off the internet; BE PARANOID. However, I dont' think I'm out of the woods yet. I breifly scanned through my new Hijackthis scan log and I noticed that outlook.exe was recongnized as a threat in ewido and it supposedly was cleaned. one last thing- when i tried to execute in BFU i got a message saying I couldn't do something; I can't remember the specifics. Thanks again.

Logfile of HijackThis v1.99.1
Scan saved at 11:27:55 PM, on 4/4/2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Windows Defender\MsMpEng.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
C:\Program Files\Intel\Wireless\Bin\WLKeeper.exe
C:\Program Files\Intel\Wireless\Bin\ZcfgSvc.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\PROGRA~1\Intel\Wireless\Bin\1XConfig.exe
C:\WINDOWS\system32\hkcmd.exe
C:\Program Files\Java\jre1.5.0_03\bin\jusched.exe
C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\Intel\Wireless\Bin\ifrmewrk.exe
C:\Program Files\CyberLink\PowerDVD\DVDLauncher.exe
C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe
C:\Program Files\Adobe\Photoshop Elements 4.0\PhotoshopElementsFileAgent.exe
C:\PROGRA~1\mcafee.com\agent\mcagent.exe
C:\PROGRA~1\COMMON~1\AOL\ACS\AOLacsd.exe
C:\Program Files\McAfee.com\VSO\mcvsshld.exe
c:\progra~1\mcafee.com\vso\mcvsescn.exe
C:\Program Files\McAfee.com\VSO\oasclnt.exe
C:\PROGRA~1\McAfee.com\PERSON~1\MpfTray.exe
C:\WINDOWS\vsnpstd3.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\WINDOWS\system32\dla\tfswctrl.exe
C:\Program Files\Windows Defender\MSASCui.exe
C:\Program Files\ewido anti-malware\ewidoctrl.exe
c:\program files\mcafee.com\agent\mcdetect.exe
c:\PROGRA~1\mcafee.com\vso\mcshield.exe
C:\Program Files\Digital Line Detect\DLG.exe
c:\PROGRA~1\mcafee.com\agent\mctskshd.exe
C:\PROGRA~1\McAfee.com\PERSON~1\MpfService.exe
C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\PROGRA~1\McAfee.com\PERSON~1\MpfAgent.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\WINDOWS\system32\wuauclt.exe
C:\HJT\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.dell4me.com/mywaybiz
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.dell4me.com/mywaybiz
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.dell4me.com/mywaybiz
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.dell4me.com/mywaybiz
R3 - URLSearchHook: (no name) - {4D25F926-B9FE-4682-BF72-8AB8210D6D75} - (no file)
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: DriveLetterAccess - {5CA3D70E-1895-11CF-8E15-001234567890} - C:\WINDOWS\system32\dla\tfswshx.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll
O3 - Toolbar: McAfee VirusScan - {BA52B914-B692-46c4-B683-905236F6F655} - c:\progra~1\mcafee.com\vso\mcvsshl.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll
O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_03\bin\jusched.exe
O4 - HKLM\..\Run: [SynTPLpr] C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [IntelWireless] C:\Program Files\Intel\Wireless\Bin\ifrmewrk.exe /tf Intel PROSet/Wireless
O4 - HKLM\..\Run: [DVDLauncher] "C:\Program Files\CyberLink\PowerDVD\DVDLauncher.exe"
O4 - HKLM\..\Run: [ISUSPM Startup] C:\PROGRA~1\COMMON~1\INSTAL~1\UPDATE~1\ISUSPM.exe -startup
O4 - HKLM\..\Run: [ISUSScheduler] "C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe" -start
O4 - HKLM\..\Run: [VSOCheckTask] "C:\PROGRA~1\McAfee.com\VSO\mcmnhdlr.exe" /checktask
O4 - HKLM\..\Run: [MCAgentExe] c:\PROGRA~1\mcafee.com\agent\mcagent.exe
O4 - HKLM\..\Run: [MCUpdateExe] C:\PROGRA~1\mcafee.com\agent\mcupdate.exe
O4 - HKLM\..\Run: [VirusScan Online] C:\Program Files\McAfee.com\VSO\mcvsshld.exe
O4 - HKLM\..\Run: [OASClnt] C:\Program Files\McAfee.com\VSO\oasclnt.exe
O4 - HKLM\..\Run: [MPFExe] C:\PROGRA~1\McAfee.com\PERSON~1\MpfTray.exe
O4 - HKLM\..\Run: [snpstd3] C:\WINDOWS\vsnpstd3.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [dla] C:\WINDOWS\system32\dla\tfswctrl.exe
O4 - HKLM\..\Run: [outlook] C:\Program Files\outlook\outlook.exe /auto
O4 - HKLM\..\Run: [Adobe Photo Downloader] "C:\Program Files\Adobe\Photoshop Elements 4.0\apdproxy.exe"
O4 - HKLM\..\Run: [Windows Defender] "C:\Program Files\Windows Defender\MSASCui.exe" -hide
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: America Online 9.0 Tray Icon.lnk = C:\Program Files\America Online 9.0\aoltray.exe
O4 - Global Startup: Digital Line Detect.lnk = ?
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O8 - Extra context menu item: &Google Search - res://c:\program files\google\GoogleToolbar2.dll/cmsearch.html
O8 - Extra context menu item: &Search - http://edits.mywebsearch.com/toolbaredits/...html?p=ZNfox000
O8 - Extra context menu item: &Translate English Word - res://c:\program files\google\GoogleToolbar2.dll/cmwordtrans.html
O8 - Extra context menu item: Backward Links - res://c:\program files\google\GoogleToolbar2.dll/cmbacklinks.html
O8 - Extra context menu item: Cached Snapshot of Page - res://c:\program files\google\GoogleToolbar2.dll/cmcache.html
O8 - Extra context menu item: Similar Pages - res://c:\program files\google\GoogleToolbar2.dll/cmsimilar.html
O8 - Extra context menu item: Translate Page into English - res://c:\program files\google\GoogleToolbar2.dll/cmtrans.html
O9 - Extra button: AIM - {AC9E2541-2814-11d5-BC6D-00B0D0A1DE45} - C:\Program Files\AIM\aim.exe
O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\system32\Shdocvw.dll
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O12 - Plugin for .spop: C:\Program Files\Internet Explorer\Plugins\NPDocBox.dll
O16 - DPF: {0E5F0222-96B9-11D3-8997-00104BD12D94} (PCPitstop Utility) - http://www.pcpitstop.com/pcpitstop/PCPitStop.CAB
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204
O16 - DPF: {3A7FE611-1994-4EF1-A09F-99456752289D} (WildTangent Active Launcher) - http://install.wildtangent.com/ActiveLaunc...iveLauncher.cab
O16 - DPF: {4ED9DDF0-7479-4BBE-9335-5A1EDB1D8A21} (McAfee.com Operating System Class) - http://download.mcafee.com/molbin/shared/m...99/mcinsctl.cab
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftupdat...b?1128477354331
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/Messe...nt.cab31267.cab
O16 - DPF: {9FC5238F-12C4-454F-B1B5-74599A21DE47} (Webshots Photo Uploader) - http://community.webshots.com/html/WSPhotoUploader.CAB
O16 - DPF: {B49C4597-8721-4789-9250-315DFBD9F525} (IWinAmpActiveX Class) - http://cdn.digitalcity.com/radio/ampx/ampx2.6.1.11_en_dl.cab
O16 - DPF: {DF780F87-FF2B-4DF8-92D0-73DB16A1543A} (PopCapLoader Object) - http://www.popcap.com/games/popcaploader_v6.cab
O16 - DPF: {E13F1132-4CA0-4005-84D3-51406E27D269} (BTDownloadCtrl Control) - http://www.shockwave.com/content/thinktank...ownloadCtrl.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{0F7B8984-AF50-4C7F-B8D9-0EB2E54A702E}: NameServer = 10.1.1.3
O17 - HKLM\System\CCS\Services\Tcpip\..\{D063A193-ADFF-4563-8158-38427E30984D}: NameServer = 10.1.1.3
O17 - HKLM\System\CS1\Services\Tcpip\..\{0F7B8984-AF50-4C7F-B8D9-0EB2E54A702E}: NameServer = 10.1.1.3
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)
O20 - Winlogon Notify: igfxcui - C:\WINDOWS\SYSTEM32\igfxsrvc.dll
O20 - Winlogon Notify: IntelWireless - C:\Program Files\Intel\Wireless\Bin\LgNotify.dll
O23 - Service: Adobe Active File Monitor V4 (AdobeActiveFileMonitor4.0) - Unknown owner - C:\Program Files\Adobe\Photoshop Elements 4.0\PhotoshopElementsFileAgent.exe
O23 - Service: AOL Connectivity Service (AOL ACS) - America Online, Inc. - C:\PROGRA~1\COMMON~1\AOL\ACS\AOLacsd.exe
O23 - Service: EvtEng - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
O23 - Service: ewido security suite control - ewido networks - C:\Program Files\ewido anti-malware\ewidoctrl.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iPodService - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: McAfee WSC Integration (McDetect.exe) - McAfee, Inc - c:\program files\mcafee.com\agent\mcdetect.exe
O23 - Service: McAfee.com McShield (McShield) - McAfee Inc. - c:\PROGRA~1\mcafee.com\vso\mcshield.exe
O23 - Service: McAfee Task Scheduler (McTskshd.exe) - McAfee, Inc - c:\PROGRA~1\mcafee.com\agent\mctskshd.exe
O23 - Service: McAfee SecurityCenter Update Manager (mcupdmgr.exe) - McAfee, Inc - C:\PROGRA~1\McAfee.com\Agent\mcupdmgr.exe
O23 - Service: McAfee Personal Firewall Service (MpfService) - McAfee Corporation - C:\PROGRA~1\McAfee.com\PERSON~1\MpfService.exe
O23 - Service: RegSrvc - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
O23 - Service: Spectrum24 Event Monitor (S24EventMonitor) - Intel Corporation  - C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
O23 - Service: WLANKEEPER - Intel® Corporation - C:\Program Files\Intel\Wireless\Bin\WLKeeper.exe



---------------------------------------------------------
 ewido anti-malware - Scan report
---------------------------------------------------------

 + Created on:         11:20:56 PM, 4/4/2006
 + Report-Checksum:      46EC92C2

 + Scan result:

   HKLM\SOFTWARE\Classes\CLSID\{8DBF02DA-4360-4A7E-BEA1-347B87816327} -> Adware.Virtumonde : Cleaned with backup
   HKU\S-1-5-21-3823883028-3402484376-4150850012-1005\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{8DBF02DA-4360-4A7E-BEA1-347B87816327} -> Adware.Virtumonde : Cleaned with backup
   :mozilla.7:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Advertising : Cleaned with backup
   :mozilla.8:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Atdmt : Cleaned with backup
   :mozilla.9:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Atdmt : Cleaned with backup
   :mozilla.10:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Advertising : Cleaned with backup
   :mozilla.11:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Advertising : Cleaned with backup
   :mozilla.12:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Advertising : Cleaned with backup
   :mozilla.13:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Advertising : Cleaned with backup
   :mozilla.15:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Advertising : Cleaned with backup
   :mozilla.16:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Advertising : Cleaned with backup
   :mozilla.17:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Advertising : Cleaned with backup
   :mozilla.45:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned with backup
   :mozilla.46:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned with backup
   :mozilla.47:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned with backup
   :mozilla.48:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned with backup
   :mozilla.49:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned with backup
   :mozilla.50:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned with backup
   :mozilla.51:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned with backup
   :mozilla.52:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned with backup
   :mozilla.53:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned with backup
   :mozilla.54:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned with backup
   :mozilla.59:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Adrevolver : Cleaned with backup
   :mozilla.60:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Doubleclick : Cleaned with backup
   :mozilla.61:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Adrevolver : Cleaned with backup
   :mozilla.62:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Adrevolver : Cleaned with backup
   :mozilla.63:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Adrevolver : Cleaned with backup
   :mozilla.64:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Adrevolver : Cleaned with backup
   :mozilla.65:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Adrevolver : Cleaned with backup
   :mozilla.76:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Valueclick : Cleaned with backup
   :mozilla.77:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Valueclick : Cleaned with backup
   :mozilla.78:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Casalemedia : Cleaned with backup
   :mozilla.79:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Casalemedia : Cleaned with backup
   :mozilla.80:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Casalemedia : Cleaned with backup
   :mozilla.81:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Casalemedia : Cleaned with backup
   :mozilla.82:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Casalemedia : Cleaned with backup
   :mozilla.83:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Casalemedia : Cleaned with backup
   :mozilla.84:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Casalemedia : Cleaned with backup
   :mozilla.85:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Casalemedia : Cleaned with backup
   :mozilla.86:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Casalemedia : Cleaned with backup
   :mozilla.97:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Specificclick : Cleaned with backup
   :mozilla.100:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Specificclick : Cleaned with backup
   :mozilla.101:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Specificclick : Cleaned with backup
   :mozilla.102:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Specificclick : Cleaned with backup
   :mozilla.103:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Specificclick : Cleaned with backup
   :mozilla.106:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Statcounter : Cleaned with backup
   :mozilla.107:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Statcounter : Cleaned with backup
   :mozilla.108:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Statcounter : Cleaned with backup
   :mozilla.109:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Statcounter : Cleaned with backup
   :mozilla.110:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Statcounter : Cleaned with backup
   :mozilla.111:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Statcounter : Cleaned with backup
   :mozilla.112:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Statcounter : Cleaned with backup
   :mozilla.113:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Trafficmp : Cleaned with backup
   :mozilla.114:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Trafficmp : Cleaned with backup
   :mozilla.115:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Trafficmp : Cleaned with backup
   :mozilla.116:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Trafficmp : Cleaned with backup
   :mozilla.117:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Trafficmp : Cleaned with backup
   :mozilla.118:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Trafficmp : Cleaned with backup
   :mozilla.119:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Trafficmp : Cleaned with backup
   :mozilla.130:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Fastclick : Cleaned with backup
   :mozilla.131:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Fastclick : Cleaned with backup
   :mozilla.132:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Fastclick : Cleaned with backup
   :mozilla.133:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Fastclick : Cleaned with backup
   :mozilla.134:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Fastclick : Cleaned with backup
   :mozilla.135:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Fastclick : Cleaned with backup
   :mozilla.136:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Fastclick : Cleaned with backup
   :mozilla.137:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Fastclick : Cleaned with backup
   :mozilla.138:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Fastclick : Cleaned with backup
   :mozilla.141:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Questionmarket : Cleaned with backup
   :mozilla.142:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Adbrite : Cleaned with backup
   :mozilla.143:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Adbrite : Cleaned with backup
   :mozilla.144:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Adbrite : Cleaned with backup
   :mozilla.145:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Serving-sys : Cleaned with backup
   :mozilla.146:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Serving-sys : Cleaned with backup
   :mozilla.147:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Serving-sys : Cleaned with backup
   :mozilla.148:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Serving-sys : Cleaned with backup
   :mozilla.149:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Serving-sys : Cleaned with backup
   :mozilla.151:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.2o7 : Cleaned with backup
   :mozilla.152:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.2o7 : Cleaned with backup
   :mozilla.153:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.2o7 : Cleaned with backup
   :mozilla.154:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.2o7 : Cleaned with backup
   :mozilla.155:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.2o7 : Cleaned with backup
   :mozilla.156:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.2o7 : Cleaned with backup
   :mozilla.157:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Overture : Cleaned with backup
   :mozilla.158:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Adserver : Cleaned with backup
   :mozilla.159:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Adserver : Cleaned with backup
   :mozilla.160:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Adserver : Cleaned with backup
   :mozilla.161:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Adserver : Cleaned with backup
   :mozilla.162:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Adserver : Cleaned with backup
   :mozilla.163:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Falkag : Cleaned with backup
   :mozilla.173:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Tradedoubler : Cleaned with backup
   :mozilla.234:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Bridgetrack : Cleaned with backup
   :mozilla.235:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Bridgetrack : Cleaned with backup
   :mozilla.236:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Bridgetrack : Cleaned with backup
   :mozilla.246:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Adrevolver : Cleaned with backup
   :mozilla.247:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Adrevolver : Cleaned with backup
   :mozilla.250:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Mediaplex : Cleaned with backup
   :mozilla.251:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Adbrite : Cleaned with backup
   :mozilla.260:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Esomniture : Cleaned with backup
   :mozilla.270:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Centrport : Cleaned with backup
   :mozilla.271:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Ru4 : Cleaned with backup
   :mozilla.272:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Ru4 : Cleaned with backup
   :mozilla.273:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Ru4 : Cleaned with backup
   :mozilla.274:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Ru4 : Cleaned with backup
   :mozilla.275:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Ru4 : Cleaned with backup
   :mozilla.276:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Ru4 : Cleaned with backup
   :mozilla.277:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Ru4 : Cleaned with backup
   :mozilla.288:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Pointroll : Cleaned with backup
   :mozilla.289:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Pointroll : Cleaned with backup
   :mozilla.290:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Pointroll : Cleaned with backup
   :mozilla.291:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Pointroll : Cleaned with backup
   :mozilla.292:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Pointroll : Cleaned with backup
   :mozilla.293:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Pointroll : Cleaned with backup
   :mozilla.294:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Bfast : Cleaned with backup
   :mozilla.295:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Bfast : Cleaned with backup
   :mozilla.307:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Adbrite : Cleaned with backup
   :mozilla.311:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Revenue : Cleaned with backup
   :mozilla.317:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Adbrite : Cleaned with backup
   :mozilla.321:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Adbrite : Cleaned with backup
   :mozilla.322:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Tacoda : Cleaned with backup
   :mozilla.323:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Burstnet : Cleaned with backup
   :mozilla.324:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Burstnet : Cleaned with backup
   :mozilla.325:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Burstbeacon : Cleaned with backup
   :mozilla.326:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Tacoda : Cleaned with backup
   :mozilla.327:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Tacoda : Cleaned with backup
   :mozilla.356:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Hitbox : Cleaned with backup
   :mozilla.357:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Hitbox : Cleaned with backup
   :mozilla.360:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Hitbox : Cleaned with backup
   :mozilla.361:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Hitbox : Cleaned with backup
   :mozilla.363:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Yadro : Cleaned with backup
   :mozilla.367:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Yadro : Cleaned with backup
   :mozilla.374:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Hitbox : Cleaned with backup
   :mozilla.375:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Hitbox : Cleaned with backup
   :mozilla.382:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Spylog : Cleaned with backup
   :mozilla.398:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Falkag : Cleaned with backup
   :mozilla.400:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Tribalfusion : Cleaned with backup
   :mozilla.401:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Tribalfusion : Cleaned with backup
   :mozilla.402:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Tribalfusion : Cleaned with backup
   :mozilla.403:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Tribalfusion : Cleaned with backup
   :mozilla.404:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Tribalfusion : Cleaned with backup
   :mozilla.405:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Tribalfusion : Cleaned with backup
   :mozilla.408:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Targetnet : Cleaned with backup
   :mozilla.410:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Targetnet : Cleaned with backup
   :mozilla.412:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Zedo : Cleaned with backup
   :mozilla.413:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Zedo : Cleaned with backup
   :mozilla.414:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Zedo : Cleaned with backup
   :mozilla.415:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Addynamix : Cleaned with backup
   :mozilla.418:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Adrevolver : Cleaned with backup
   :mozilla.419:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Com : Cleaned with backup
   :mozilla.420:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Com : Cleaned with backup
   :mozilla.428:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Adrevolver : Cleaned with backup
   :mozilla.429:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Adrevolver : Cleaned with backup
   :mozilla.430:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Adrevolver : Cleaned with backup
   :mozilla.431:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Adbrite : Cleaned with backup
   :mozilla.441:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Adrevolver : Cleaned with backup
   :mozilla.442:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Adrevolver : Cleaned with backup
   :mozilla.443:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Adrevolver : Cleaned with backup
   :mozilla.448:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Esomniture : Cleaned with backup
   :mozilla.449:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Esomniture : Cleaned with backup
   :mozilla.452:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Esomniture : Cleaned with backup
   :mozilla.453:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Esomniture : Cleaned with backup
   :mozilla.454:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Esomniture : Cleaned with backup
   :mozilla.455:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Esomniture : Cleaned with backup
   :mozilla.456:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Esomniture : Cleaned with backup
   :mozilla.457:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Esomniture : Cleaned with backup
   :mozilla.458:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Esomniture : Cleaned with backup
   :mozilla.459:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Googleadservices : Cleaned with backup
   :mozilla.463:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Web-stat : Cleaned with backup
   :mozilla.465:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Googleadservices : Cleaned with backup
   :mozilla.467:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Bluestreak : Cleaned with backup
   :mozilla.472:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Adrevolver : Cleaned with backup
   :mozilla.475:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Adrevolver : Cleaned with backup
   :mozilla.476:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Adrevolver : Cleaned with backup
   :mozilla.477:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Adrevolver : Cleaned with backup
   :mozilla.479:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Adbrite : Cleaned with backup
   :mozilla.480:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Adbrite : Cleaned with backup
   :mozilla.25:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Com : Cleaned with backup
   :mozilla.26:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Com : Cleaned with backup
   :mozilla.27:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Doubleclick : Cleaned with backup
   :mozilla.30:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Advertising : Cleaned with backup
   :mozilla.31:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Advertising : Cleaned with backup
   :mozilla.32:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Advertising : Cleaned with backup
   :mozilla.34:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Advertising : Cleaned with backup
   :mozilla.39:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Tacoda : Cleaned with backup
   :mozilla.40:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Tacoda : Cleaned with backup
   :mozilla.41:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Tacoda : Cleaned with backup
   :mozilla.43:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Tribalfusion : Cleaned with backup
   :mozilla.44:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Tribalfusion : Cleaned with backup
   :mozilla.45:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Tribalfusion : Cleaned with backup
   :mozilla.46:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Tribalfusion : Cleaned with backup
   :mozilla.47:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Tribalfusion : Cleaned with backup
   :mozilla.48:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Tribalfusion : Cleaned with backup
   :mozilla.49:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Atdmt : Cleaned with backup
   :mozilla.53:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Zedo : Cleaned with backup
   :mozilla.54:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Zedo : Cleaned with backup
   :mozilla.55:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Zedo : Cleaned with backup
   :mozilla.56:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Zedo : Cleaned with backup
   :mozilla.57:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Zedo : Cleaned with backup
   :mozilla.64:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Bfast : Cleaned with backup
   :mozilla.65:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Adbrite : Cleaned with backup
   :mozilla.68:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Trafficmp : Cleaned with backup
   :mozilla.69:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Trafficmp : Cleaned with backup
   :mozilla.70:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Trafficmp : Cleaned with backup
   :mozilla.71:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Trafficmp : Cleaned with backup
   :mozilla.72:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Trafficmp : Cleaned with backup
   :mozilla.73:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Trafficmp : Cleaned with backup
   :mozilla.74:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Trafficmp : Cleaned with backup
   :mozilla.76:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Trafficmp : Cleaned with backup
   :mozilla.77:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Trafficmp : Cleaned with backup
   :mozilla.78:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Fastclick : Cleaned with backup
   :mozilla.79:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Fastclick : Cleaned with backup
   :mozilla.80:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Fastclick : Cleaned with backup
   :mozilla.81:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Fastclick : Cleaned with backup
   :mozilla.82:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Casalemedia : Cleaned with backup
   :mozilla.83:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Casalemedia : Cleaned with backup
   :mozilla.84:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Casalemedia : Cleaned with backup
   :mozilla.85:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Casalemedia : Cleaned with backup
   :mozilla.86:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Casalemedia : Cleaned with backup
   :mozilla.87:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Casalemedia : Cleaned with backup
   :mozilla.100:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned with backup
   :mozilla.103:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned with backup
   :mozilla.104:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned with backup
   :mozilla.105:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned with backup
   :mozilla.106:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned with backup
   :mozilla.107:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned with backup
   :mozilla.108:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned with backup
   :mozilla.113:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.2o7 : Cleaned with backup
   :mozilla.114:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.2o7 : Cleaned with backup
   :mozilla.115:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.2o7 : Cleaned with backup
   :mozilla.116:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.2o7 : Cleaned with backup
   :mozilla.117:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.2o7 : Cleaned with backup
   :mozilla.118:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.2o7 : Cleaned with backup
   :mozilla.119:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.2o7 : Cleaned with backup
   :mozilla.120:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.2o7 : Cleaned with backup
   :mozilla.121:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.2o7 : Cleaned with backup
   :mozilla.122:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default
Logged

Offline guestolo

  • Site Donator
  • Administrator
  • Hero Member
  • *****
  • Posts: 16034
  • Karma: +1/-0
    • View Profile
    • http://
Win32-P2P.Alcan.a HELPPP
« Reply #6 on: April 04, 2006, 10:38:06 PM »
Quote
when i tried to execute in BFU i got a message saying I couldn't do something; I can't remember the specifics.

Try running it again in Normal mode with the same instructions I gave earlier and give me the Specifics please

Also, post the bottom part of your Ewido log, thanks
Logged

Do you want to post your own logs from FRST?

Follow the instructions posted http://www.thetechguide.com/forum/index.php/topic/22942-please-read-how-to-post-logs-from-frst/\'>Click Here

Offline mistacleen

  • Newbie
  • *
  • Posts: 12
  • Karma: +0/-0
    • View Profile
Win32-P2P.Alcan.a HELPPP
« Reply #7 on: April 04, 2006, 10:54:23 PM »
in the window, it says: " Run-time error '5' :Invalid procedure or argument"

---------------------------------------------------------
 ewido anti-malware - Scan report
---------------------------------------------------------

 + Created on:         11:20:56 PM, 4/4/2006
 + Report-Checksum:      46EC92C2

 + Scan result:

   HKLM\SOFTWARE\Classes\CLSID\{8DBF02DA-4360-4A7E-BEA1-347B87816327} -> Adware.Virtumonde : Cleaned with backup
   HKU\S-1-5-21-3823883028-3402484376-4150850012-1005\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{8DBF02DA-4360-4A7E-BEA1-347B87816327} -> Adware.Virtumonde : Cleaned with backup
   :mozilla.7:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Advertising : Cleaned with backup
   :mozilla.8:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Atdmt : Cleaned with backup
   :mozilla.9:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Atdmt : Cleaned with backup
   :mozilla.10:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Advertising : Cleaned with backup
   :mozilla.11:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Advertising : Cleaned with backup
   :mozilla.12:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Advertising : Cleaned with backup
   :mozilla.13:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Advertising : Cleaned with backup
   :mozilla.15:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Advertising : Cleaned with backup
   :mozilla.16:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Advertising : Cleaned with backup
   :mozilla.17:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Advertising : Cleaned with backup
   :mozilla.45:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned with backup
   :mozilla.46:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned with backup
   :mozilla.47:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned with backup
   :mozilla.48:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned with backup
   :mozilla.49:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned with backup
   :mozilla.50:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned with backup
   :mozilla.51:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned with backup
   :mozilla.52:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned with backup
   :mozilla.53:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned with backup
   :mozilla.54:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned with backup
   :mozilla.59:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Adrevolver : Cleaned with backup
   :mozilla.60:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Doubleclick : Cleaned with backup
   :mozilla.61:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Adrevolver : Cleaned with backup
   :mozilla.62:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Adrevolver : Cleaned with backup
   :mozilla.63:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Adrevolver : Cleaned with backup
   :mozilla.64:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Adrevolver : Cleaned with backup
   :mozilla.65:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Adrevolver : Cleaned with backup
   :mozilla.76:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Valueclick : Cleaned with backup
   :mozilla.77:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Valueclick : Cleaned with backup
   :mozilla.78:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Casalemedia : Cleaned with backup
   :mozilla.79:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Casalemedia : Cleaned with backup
   :mozilla.80:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Casalemedia : Cleaned with backup
   :mozilla.81:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Casalemedia : Cleaned with backup
   :mozilla.82:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Casalemedia : Cleaned with backup
   :mozilla.83:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Casalemedia : Cleaned with backup
   :mozilla.84:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Casalemedia : Cleaned with backup
   :mozilla.85:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Casalemedia : Cleaned with backup
   :mozilla.86:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Casalemedia : Cleaned with backup
   :mozilla.97:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Specificclick : Cleaned with backup
   :mozilla.100:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Specificclick : Cleaned with backup
   :mozilla.101:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Specificclick : Cleaned with backup
   :mozilla.102:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Specificclick : Cleaned with backup
   :mozilla.103:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Specificclick : Cleaned with backup
   :mozilla.106:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Statcounter : Cleaned with backup
   :mozilla.107:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Statcounter : Cleaned with backup
   :mozilla.108:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Statcounter : Cleaned with backup
   :mozilla.109:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Statcounter : Cleaned with backup
   :mozilla.110:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Statcounter : Cleaned with backup
   :mozilla.111:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Statcounter : Cleaned with backup
   :mozilla.112:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Statcounter : Cleaned with backup
   :mozilla.113:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Trafficmp : Cleaned with backup
   :mozilla.114:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Trafficmp : Cleaned with backup
   :mozilla.115:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Trafficmp : Cleaned with backup
   :mozilla.116:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Trafficmp : Cleaned with backup
   :mozilla.117:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Trafficmp : Cleaned with backup
   :mozilla.118:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Trafficmp : Cleaned with backup
   :mozilla.119:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Trafficmp : Cleaned with backup
   :mozilla.130:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Fastclick : Cleaned with backup
   :mozilla.131:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Fastclick : Cleaned with backup
   :mozilla.132:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Fastclick : Cleaned with backup
   :mozilla.133:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Fastclick : Cleaned with backup
   :mozilla.134:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Fastclick : Cleaned with backup
   :mozilla.135:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Fastclick : Cleaned with backup
   :mozilla.136:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Fastclick : Cleaned with backup
   :mozilla.137:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Fastclick : Cleaned with backup
   :mozilla.138:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Fastclick : Cleaned with backup
   :mozilla.141:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Questionmarket : Cleaned with backup
   :mozilla.142:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Adbrite : Cleaned with backup
   :mozilla.143:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Adbrite : Cleaned with backup
   :mozilla.144:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Adbrite : Cleaned with backup
   :mozilla.145:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Serving-sys : Cleaned with backup
   :mozilla.146:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Serving-sys : Cleaned with backup
   :mozilla.147:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Serving-sys : Cleaned with backup
   :mozilla.148:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Serving-sys : Cleaned with backup
   :mozilla.149:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Serving-sys : Cleaned with backup
   :mozilla.151:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.2o7 : Cleaned with backup
   :mozilla.152:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.2o7 : Cleaned with backup
   :mozilla.153:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.2o7 : Cleaned with backup
   :mozilla.154:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.2o7 : Cleaned with backup
   :mozilla.155:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.2o7 : Cleaned with backup
   :mozilla.156:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.2o7 : Cleaned with backup
   :mozilla.157:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Overture : Cleaned with backup
   :mozilla.158:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Adserver : Cleaned with backup
   :mozilla.159:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Adserver : Cleaned with backup
   :mozilla.160:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Adserver : Cleaned with backup
   :mozilla.161:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Adserver : Cleaned with backup
   :mozilla.162:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Adserver : Cleaned with backup
   :mozilla.163:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Falkag : Cleaned with backup
   :mozilla.173:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Tradedoubler : Cleaned with backup
   :mozilla.234:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Bridgetrack : Cleaned with backup
   :mozilla.235:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Bridgetrack : Cleaned with backup
   :mozilla.236:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Bridgetrack : Cleaned with backup
   :mozilla.246:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Adrevolver : Cleaned with backup
   :mozilla.247:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Adrevolver : Cleaned with backup
   :mozilla.250:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Mediaplex : Cleaned with backup
   :mozilla.251:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Adbrite : Cleaned with backup
   :mozilla.260:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Esomniture : Cleaned with backup
   :mozilla.270:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Centrport : Cleaned with backup
   :mozilla.271:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Ru4 : Cleaned with backup
   :mozilla.272:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Ru4 : Cleaned with backup
   :mozilla.273:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Ru4 : Cleaned with backup
   :mozilla.274:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Ru4 : Cleaned with backup
   :mozilla.275:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Ru4 : Cleaned with backup
   :mozilla.276:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Ru4 : Cleaned with backup
   :mozilla.277:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Ru4 : Cleaned with backup
   :mozilla.288:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Pointroll : Cleaned with backup
   :mozilla.289:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Pointroll : Cleaned with backup
   :mozilla.290:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Pointroll : Cleaned with backup
   :mozilla.291:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Pointroll : Cleaned with backup
   :mozilla.292:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Pointroll : Cleaned with backup
   :mozilla.293:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Pointroll : Cleaned with backup
   :mozilla.294:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Bfast : Cleaned with backup
   :mozilla.295:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Bfast : Cleaned with backup
   :mozilla.307:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Adbrite : Cleaned with backup
   :mozilla.311:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Revenue : Cleaned with backup
   :mozilla.317:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Adbrite : Cleaned with backup
   :mozilla.321:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Adbrite : Cleaned with backup
   :mozilla.322:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Tacoda : Cleaned with backup
   :mozilla.323:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Burstnet : Cleaned with backup
   :mozilla.324:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Burstnet : Cleaned with backup
   :mozilla.325:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Burstbeacon : Cleaned with backup
   :mozilla.326:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Tacoda : Cleaned with backup
   :mozilla.327:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Tacoda : Cleaned with backup
   :mozilla.356:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Hitbox : Cleaned with backup
   :mozilla.357:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Hitbox : Cleaned with backup
   :mozilla.360:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Hitbox : Cleaned with backup
   :mozilla.361:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Hitbox : Cleaned with backup
   :mozilla.363:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Yadro : Cleaned with backup
   :mozilla.367:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Yadro : Cleaned with backup
   :mozilla.374:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Hitbox : Cleaned with backup
   :mozilla.375:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Hitbox : Cleaned with backup
   :mozilla.382:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Spylog : Cleaned with backup
   :mozilla.398:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Falkag : Cleaned with backup
   :mozilla.400:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Tribalfusion : Cleaned with backup
   :mozilla.401:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Tribalfusion : Cleaned with backup
   :mozilla.402:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Tribalfusion : Cleaned with backup
   :mozilla.403:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Tribalfusion : Cleaned with backup
   :mozilla.404:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Tribalfusion : Cleaned with backup
   :mozilla.405:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Tribalfusion : Cleaned with backup
   :mozilla.408:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Targetnet : Cleaned with backup
   :mozilla.410:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Targetnet : Cleaned with backup
   :mozilla.412:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Zedo : Cleaned with backup
   :mozilla.413:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Zedo : Cleaned with backup
   :mozilla.414:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Zedo : Cleaned with backup
   :mozilla.415:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Addynamix : Cleaned with backup
   :mozilla.418:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Adrevolver : Cleaned with backup
   :mozilla.419:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Com : Cleaned with backup
   :mozilla.420:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Com : Cleaned with backup
   :mozilla.428:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Adrevolver : Cleaned with backup
   :mozilla.429:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Adrevolver : Cleaned with backup
   :mozilla.430:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Adrevolver : Cleaned with backup
   :mozilla.431:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Adbrite : Cleaned with backup
   :mozilla.441:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Adrevolver : Cleaned with backup
   :mozilla.442:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Adrevolver : Cleaned with backup
   :mozilla.443:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Adrevolver : Cleaned with backup
   :mozilla.448:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Esomniture : Cleaned with backup
   :mozilla.449:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Esomniture : Cleaned with backup
   :mozilla.452:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Esomniture : Cleaned with backup
   :mozilla.453:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Esomniture : Cleaned with backup
   :mozilla.454:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Esomniture : Cleaned with backup
   :mozilla.455:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Esomniture : Cleaned with backup
   :mozilla.456:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Esomniture : Cleaned with backup
   :mozilla.457:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Esomniture : Cleaned with backup
   :mozilla.458:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Esomniture : Cleaned with backup
   :mozilla.459:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Googleadservices : Cleaned with backup
   :mozilla.463:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Web-stat : Cleaned with backup
   :mozilla.465:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Googleadservices : Cleaned with backup
   :mozilla.467:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Bluestreak : Cleaned with backup
   :mozilla.472:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Adrevolver : Cleaned with backup
   :mozilla.475:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Adrevolver : Cleaned with backup
   :mozilla.476:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Adrevolver : Cleaned with backup
   :mozilla.477:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Adrevolver : Cleaned with backup
   :mozilla.479:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Adbrite : Cleaned with backup
   :mozilla.480:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\rxbl11xa.John\cookies.txt -> TrackingCookie.Adbrite : Cleaned with backup
   :mozilla.25:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Com : Cleaned with backup
   :mozilla.26:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Com : Cleaned with backup
   :mozilla.27:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Doubleclick : Cleaned with backup
   :mozilla.30:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Advertising : Cleaned with backup
   :mozilla.31:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Advertising : Cleaned with backup
   :mozilla.32:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Advertising : Cleaned with backup
   :mozilla.34:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Advertising : Cleaned with backup
   :mozilla.39:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Tacoda : Cleaned with backup
   :mozilla.40:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Tacoda : Cleaned with backup
   :mozilla.41:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Tacoda : Cleaned with backup
   :mozilla.43:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Tribalfusion : Cleaned with backup
   :mozilla.44:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Tribalfusion : Cleaned with backup
   :mozilla.45:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Tribalfusion : Cleaned with backup
   :mozilla.46:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Tribalfusion : Cleaned with backup
   :mozilla.47:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Tribalfusion : Cleaned with backup
   :mozilla.48:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Tribalfusion : Cleaned with backup
   :mozilla.49:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Atdmt : Cleaned with backup
   :mozilla.53:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Zedo : Cleaned with backup
   :mozilla.54:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Zedo : Cleaned with backup
   :mozilla.55:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Zedo : Cleaned with backup
   :mozilla.56:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Zedo : Cleaned with backup
   :mozilla.57:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Zedo : Cleaned with backup
   :mozilla.64:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Bfast : Cleaned with backup
   :mozilla.65:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Adbrite : Cleaned with backup
   :mozilla.68:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Trafficmp : Cleaned with backup
   :mozilla.69:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Trafficmp : Cleaned with backup
   :mozilla.70:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Trafficmp : Cleaned with backup
   :mozilla.71:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Trafficmp : Cleaned with backup
   :mozilla.72:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Trafficmp : Cleaned with backup
   :mozilla.73:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Trafficmp : Cleaned with backup
   :mozilla.74:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Trafficmp : Cleaned with backup
   :mozilla.76:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Trafficmp : Cleaned with backup
   :mozilla.77:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Trafficmp : Cleaned with backup
   :mozilla.78:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Fastclick : Cleaned with backup
   :mozilla.79:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Fastclick : Cleaned with backup
   :mozilla.80:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Fastclick : Cleaned with backup
   :mozilla.81:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Fastclick : Cleaned with backup
   :mozilla.82:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Casalemedia : Cleaned with backup
   :mozilla.83:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Casalemedia : Cleaned with backup
   :mozilla.84:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Casalemedia : Cleaned with backup
   :mozilla.85:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Casalemedia : Cleaned with backup
   :mozilla.86:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Casalemedia : Cleaned with backup
   :mozilla.87:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Casalemedia : Cleaned with backup
   :mozilla.100:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned with backup
   :mozilla.103:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned with backup
   :mozilla.104:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned with backup
   :mozilla.105:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned with backup
   :mozilla.106:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned with backup
   :mozilla.107:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned with backup
   :mozilla.108:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned with backup
   :mozilla.113:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.2o7 : Cleaned with backup
   :mozilla.114:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.2o7 : Cleaned with backup
   :mozilla.115:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.2o7 : Cleaned with backup
   :mozilla.116:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.2o7 : Cleaned with backup
   :mozilla.117:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.2o7 : Cleaned with backup
   :mozilla.118:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.2o7 : Cleaned with backup
   :mozilla.119:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.2o7 : Cleaned with backup
   :mozilla.120:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.2o7 : Cleaned with backup
   :mozilla.121:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.2o7 : Cleaned with backup
   :mozilla.122:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.2o7 : Cleaned with backup
   :mozilla.123:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.2o7 : Cleaned with backup
   :mozilla.124:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.2o7 : Cleaned with backup
   :mozilla.125:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.2o7 : Cleaned with backup
   :mozilla.126:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.2o7 : Cleaned with backup
   :mozilla.127:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.2o7 : Cleaned with backup
   :mozilla.128:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.2o7 : Cleaned with backup
   :mozilla.129:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.2o7 : Cleaned with backup
   :mozilla.130:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.2o7 : Cleaned with backup
   :mozilla.131:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.2o7 : Cleaned with backup
   :mozilla.132:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.2o7 : Cleaned with backup
   :mozilla.133:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.2o7 : Cleaned with backup
   :mozilla.134:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.2o7 : Cleaned with backup
   :mozilla.135:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.2o7 : Cleaned with backup
   :mozilla.136:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.2o7 : Cleaned with backup
   :mozilla.139:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Falkag : Cleaned with backup
   :mozilla.140:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Questionmarket : Cleaned with backup
   :mozilla.141:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Falkag : Cleaned with backup
   :mozilla.142:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Falkag : Cleaned with backup
   :mozilla.143:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Falkag : Cleaned with backup
   :mozilla.144:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Falkag : Cleaned with backup
   :mozilla.145:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Falkag : Cleaned with backup
   :mozilla.146:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Falkag : Cleaned with backup
   :mozilla.147:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Questionmarket : Cleaned with backup
   :mozilla.148:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Falkag : Cleaned with backup
   :mozilla.161:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Burstbeacon : Cleaned with backup
   :mozilla.165:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Burstnet : Cleaned with backup
   :mozilla.166:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Burstnet : Cleaned with backup
   :mozilla.167:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Adbrite : Cleaned with backup
   :mozilla.168:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Adbrite : Cleaned with backup
   :mozilla.169:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Adrevolver : Cleaned with backup
   :mozilla.170:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Adrevolver : Cleaned with backup
   :mozilla.171:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Adrevolver : Cleaned with backup
   :mozilla.172:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Adrevolver : Cleaned with backup
   :mozilla.173:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Adrevolver : Cleaned with backup
   :mozilla.175:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Adserver : Cleaned with backup
   :mozilla.176:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Adserver : Cleaned with backup
   :mozilla.177:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Adserver : Cleaned with backup
   :mozilla.178:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Adserver : Cleaned with backup
   :mozilla.179:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Adbrite : Cleaned with backup
   :mozilla.190:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.2o7 : Cleaned with backup
   :mozilla.192:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Statcounter : Cleaned with backup
   :mozilla.193:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Statcounter : Cleaned with backup
   :mozilla.194:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Statcounter : Cleaned with backup
   :mozilla.195:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Statcounter : Cleaned with backup
   :mozilla.196:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Statcounter : Cleaned with backup
   :mozilla.197:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Statcounter : Cleaned with backup
   :mozilla.198:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Statcounter : Cleaned with backup
   :mozilla.204:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Mediaplex : Cleaned with backup
   :mozilla.205:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Mediaplex : Cleaned with backup
   :mozilla.208:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Pointroll : Cleaned with backup
   :mozilla.209:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Pointroll : Cleaned with backup
   :mozilla.210:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Pointroll : Cleaned with backup
   :mozilla.211:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Pointroll : Cleaned with backup
   :mozilla.212:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Pointroll : Cleaned with backup
   :mozilla.244:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Specificclick : Cleaned with backup
   :mozilla.245:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Specificclick : Cleaned with backup
   :mozilla.246:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Specificclick : Cleaned with backup
   :mozilla.247:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Specificclick : Cleaned with backup
   :mozilla.248:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Specificclick : Cleaned with backup
   :mozilla.269:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Hitbox : Cleaned with backup
   :mozilla.270:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Hitbox : Cleaned with backup
   :mozilla.271:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Hitbox : Cleaned with backup
   :mozilla.342:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Addynamix : Cleaned with backup
   :mozilla.343:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Addynamix : Cleaned with backup
   :mozilla.344:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Addynamix : Cleaned with backup
   :mozilla.345:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Addynamix : Cleaned with backup
   :mozilla.363:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Ru4 : Cleaned with backup
   :mozilla.364:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Ru4 : Cleaned with backup
   :mozilla.365:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Ru4 : Cleaned with backup
   :mozilla.366:C:\Documents and Settings\John&
Logged

Offline guestolo

  • Site Donator
  • Administrator
  • Hero Member
  • *****
  • Posts: 16034
  • Karma: +1/-0
    • View Profile
    • http://
Win32-P2P.Alcan.a HELPPP
« Reply #8 on: April 04, 2006, 11:01:05 PM »
Is there a chance I can have you post the bottom part of the Ewido log please
You posted the top part twice
Do this
Don't include any entries related to COOKIES
as an eg...
mozilla.365:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Ru4 : Cleaned with backup

BUT, Post everything BELOW those entries

Also, are you sure you unzipped BFU?
Logged

Do you want to post your own logs from FRST?

Follow the instructions posted http://www.thetechguide.com/forum/index.php/topic/22942-please-read-how-to-post-logs-from-frst/\'>Click Here

Offline mistacleen

  • Newbie
  • *
  • Posts: 12
  • Karma: +0/-0
    • View Profile
Win32-P2P.Alcan.a HELPPP
« Reply #9 on: April 04, 2006, 11:01:19 PM »
hmm i can't seem to finish the rest of the log... i copied the end



   :mozilla.343:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Addynamix : Cleaned with backup
   :mozilla.344:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Addynamix : Cleaned with backup
   :mozilla.345:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Addynamix : Cleaned with backup
   :mozilla.363:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Ru4 : Cleaned with backup
   :mozilla.364:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Ru4 : Cleaned with backup
   :mozilla.365:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Ru4 : Cleaned with backup
   :mozilla.366:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Ru4 : Cleaned with backup
   :mozilla.367:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Ru4 : Cleaned with backup
   :mozilla.368:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Ru4 : Cleaned with backup
   :mozilla.369:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Ru4 : Cleaned with backup
   :mozilla.370:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Ru4 : Cleaned with backup
   :mozilla.371:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Ru4 : Cleaned with backup
   :mozilla.372:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Ru4 : Cleaned with backup
   :mozilla.373:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Ru4 : Cleaned with backup
   :mozilla.377:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Hitbox : Cleaned with backup
   :mozilla.380:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Revenue : Cleaned with backup
   :mozilla.397:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Hitbox : Cleaned with backup
   :mozilla.398:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Hitbox : Cleaned with backup
   :mozilla.399:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Hitbox : Cleaned with backup
   :mozilla.400:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Hitbox : Cleaned with backup
   :mozilla.438:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Adbrite : Cleaned with backup
   :mozilla.439:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Adbrite : Cleaned with backup
   :mozilla.450:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Tradedoubler : Cleaned with backup
   :mozilla.455:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Bridgetrack : Cleaned with backup
   :mozilla.456:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Bridgetrack : Cleaned with backup
   :mozilla.457:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Bridgetrack : Cleaned with backup
   :mozilla.460:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Overture : Cleaned with backup
   :mozilla.476:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Com : Cleaned with backup
   :mozilla.477:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Adtech : Cleaned with backup
   :mozilla.478:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Adtech : Cleaned with backup
   :mozilla.491:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Falkag : Cleaned with backup
   :mozilla.492:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Falkag : Cleaned with backup
   :mozilla.493:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Falkag : Cleaned with backup
   :mozilla.494:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Falkag : Cleaned with backup
   :mozilla.495:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Falkag : Cleaned with backup
   :mozilla.502:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Serving-sys : Cleaned with backup
   :mozilla.503:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Serving-sys : Cleaned with backup
   :mozilla.504:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Serving-sys : Cleaned with backup
   :mozilla.505:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Serving-sys : Cleaned with backup
   :mozilla.506:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Serving-sys : Cleaned with backup
   :mozilla.507:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Qksrv : Cleaned with backup
   :mozilla.508:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Qksrv : Cleaned with backup
   :mozilla.532:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.2o7 : Cleaned with backup
   :mozilla.564:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Googleadservices : Cleaned with backup
   :mozilla.565:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Valueclick : Cleaned with backup
   :mozilla.566:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Valueclick : Cleaned with backup
   :mozilla.568:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Hotlog : Cleaned with backup
   :mozilla.570:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Spylog : Cleaned with backup
   :mozilla.592:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Bluestreak : Cleaned with backup
   :mozilla.593:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Euroclick : Cleaned with backup
   :mozilla.594:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Euroclick : Cleaned with backup
   :mozilla.595:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Euroclick : Cleaned with backup
   :mozilla.598:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Doubleclick : Cleaned with backup
   :mozilla.609:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.2o7 : Cleaned with backup
   :mozilla.615:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Googleadservices : Cleaned with backup
   :mozilla.640:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Clickhype : Cleaned with backup
   :mozilla.648:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Cqcounter : Cleaned with backup
   :mozilla.649:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Cqcounter : Cleaned with backup
   :mozilla.652:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Adbrite : Cleaned with backup
   :mozilla.653:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Adbrite : Cleaned with backup
   :mozilla.666:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Hitbox : Cleaned with backup
   :mozilla.667:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Hitbox : Cleaned with backup
   :mozilla.670:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Googleadservices : Cleaned with backup
   :mozilla.676:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Falkag : Cleaned with backup
   :mozilla.706:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Tacoda : Cleaned with backup
   :mozilla.720:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Sitestat : Cleaned with backup
   :mozilla.722:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Adbrite : Cleaned with backup
   :mozilla.731:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Adbrite : Cleaned with backup
   :mozilla.752:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Adbrite : Cleaned with backup
   :mozilla.758:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Hitbox : Cleaned with backup
   :mozilla.768:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.247realmedia : Cleaned with backup
   :mozilla.769:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.2o7 : Cleaned with backup
   :mozilla.773:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Realtracker : Cleaned with backup
   :mozilla.774:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Realtracker : Cleaned with backup
   :mozilla.785:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Adbrite : Cleaned with backup
   :mozilla.793:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Hitbox : Cleaned with backup
   :mozilla.794:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Adjuggler : Cleaned with backup
   :mozilla.795:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Adjuggler : Cleaned with backup
   :mozilla.806:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Targetnet : Cleaned with backup
   :mozilla.841:C:\Documents and Settings\John\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\cookies.txt -> TrackingCookie.Hypertracker : Cleaned with backup
   C:\Documents and Settings\John\Cookies\john@2o7[2].txt -> TrackingCookie.2o7 : Cleaned with backup
   C:\Documents and Settings\John\Cookies\[email protected][2].txt -> TrackingCookie.Yieldmanager : Cleaned with backup
   C:\Documents and Settings\John\Cookies\john@advertising[1].txt -> TrackingCookie.Advertising : Cleaned with backup
   C:\Documents and Settings\John\Cookies\john@atdmt[2].txt -> TrackingCookie.Atdmt : Cleaned with backup
   C:\Documents and Settings\John\Cookies\john@burstnet[1].txt -> TrackingCookie.Burstnet : Cleaned with backup
   C:\Documents and Settings\John\Cookies\john@com[1].txt -> TrackingCookie.Com : Cleaned with backup
   C:\Documents and Settings\John\Cookies\john@doubleclick[1].txt -> TrackingCookie.Doubleclick : Cleaned with backup
   C:\Documents and Settings\John\Cookies\[email protected][1].txt -> TrackingCookie.2o7 : Cleaned with backup
   C:\Documents and Settings\John\Cookies\john@questionmarket[1].txt -> TrackingCookie.Questionmarket : Cleaned with backup
   C:\Documents and Settings\John\Cookies\[email protected][1].txt -> TrackingCookie.2o7 : Cleaned with backup
   C:\Documents and Settings\John\Cookies\john@tacoda[2].txt -> TrackingCookie.Tacoda : Cleaned with backup
   C:\Documents and Settings\John\Cookies\john@trafficmp[1].txt -> TrackingCookie.Trafficmp : Cleaned with backup
   C:\Documents and Settings\John\Cookies\[email protected][1].txt -> TrackingCookie.Burstbeacon : Cleaned with backup
   C:\Documents and Settings\John\Local Settings\Application Data\Mozilla\Firefox\Profiles\we7r23re.Default User\Cache\F8F48AE9d01/PopCapLoader.dll -> Not-A-Virus.Downloader.Win32.PopCap.b : Cleaned with backup
   C:\Documents and Settings\John\Shared\Tank Wars .zip/Setup.exe -> Worm.VB.dw : Cleaned with backup
   C:\Program Files\outlook\outlook.exe -> Worm.VB.dw : Cleaned with backup
   C:\Program Files\outlook\p.zip/Setup.exe -> Worm.VB.dw : Cleaned with backup
   C:\Program Files\outlook\v.tmp -> Worm.VB.dw : Cleaned with backup
   C:\WINDOWS\Downloaded Program Files\popcaploader.dll -> Not-A-Virus.Downloader.Win32.PopCap.b : Cleaned with backup
   C:\WINDOWS\system32\winlog.exe -> Backdoor.Rbot : Cleaned with backup


::Report End
Logged

Offline guestolo

  • Site Donator
  • Administrator
  • Hero Member
  • *****
  • Posts: 16034
  • Karma: +1/-0
    • View Profile
    • http://
Win32-P2P.Alcan.a HELPPP
« Reply #10 on: April 04, 2006, 11:03:13 PM »
Did you see this?
Quote
Also, are you sure you unzipped BFU
Logged

Do you want to post your own logs from FRST?

Follow the instructions posted http://www.thetechguide.com/forum/index.php/topic/22942-please-read-how-to-post-logs-from-frst/\'>Click Here

Offline mistacleen

  • Newbie
  • *
  • Posts: 12
  • Karma: +0/-0
    • View Profile
Win32-P2P.Alcan.a HELPPP
« Reply #11 on: April 04, 2006, 11:04:47 PM »
i just tried again to unzip BFU, and it was successfully unzipped the previous time...hmmm..... http://images.thetechguide.com/forum/public/style_emoticons/<#EMO_DIR#>/dry.gif\' class=\'bbc_emoticon\' alt=\'<_<\' />
Logged

Offline mistacleen

  • Newbie
  • *
  • Posts: 12
  • Karma: +0/-0
    • View Profile
Win32-P2P.Alcan.a HELPPP
« Reply #12 on: April 04, 2006, 11:19:06 PM »
well it's bedtime for me, but i will be sure to check tomorrow morning if you answer. http://images.thetechguide.com/forum/public/style_emoticons/<#EMO_DIR#>/biggrin.gif\' class=\'bbc_emoticon\' alt=\':D\' />
Logged

Offline guestolo

  • Site Donator
  • Administrator
  • Hero Member
  • *****
  • Posts: 16034
  • Karma: +1/-0
    • View Profile
    • http://
Win32-P2P.Alcan.a HELPPP
« Reply #13 on: April 04, 2006, 11:30:12 PM »
Do a "System scan only" with Hijackthis and put a check next to these entries:

R3 - URLSearchHook: (no name) - {4D25F926-B9FE-4682-BF72-8AB8210D6D75} - (no file)

O4 - HKLM\..\Run: [outlook] C:\Program Files\outlook\outlook.exe /auto
O8 - Extra context menu item: &Search - http://edits.mywebsearch.com/toolbaredits/...html?p=ZNfox000
O16 - DPF: {3A7FE611-1994-4EF1-A09F-99456752289D} (WildTangent Active Launcher) - http://install.wildtangent.com/ActiveLaunc...iveLauncher.cab

After you have ticked the above entry, close All other open windows
Leave Hijackthis open and click FIX CHECKED
OK the prompt and exit Hijackthis

Reboot the computer and post a fresh hijackthis log please
Try alcanshorty.bfu again

I checked out the link to your screenshot above
If you wouldn't mind, update your screenshot, but move the error box so I can see what action bfu was at when the error occurs, thanx
Tomorrow I would like to try BFU again but we'll modify alcanshorty
It seems you got it too run about 25 percent before the error


Quote
Lastly, usually whenever I boot up my system something appears on the screen from the app Command.
Could you also let me know if you have that same problem on bootup
« Last Edit: April 04, 2006, 11:35:37 PM by guestolo »
Logged

Do you want to post your own logs from FRST?

Follow the instructions posted http://www.thetechguide.com/forum/index.php/topic/22942-please-read-how-to-post-logs-from-frst/\'>Click Here

Offline mistacleen

  • Newbie
  • *
  • Posts: 12
  • Karma: +0/-0
    • View Profile
Win32-P2P.Alcan.a HELPPP
« Reply #14 on: April 05, 2006, 12:50:24 PM »
Here's the log.

I tried to move the error box to take a screenshot, but the details are erased whenever i try to move it. the farthest the progress was 21%. i also tried to make a new screenshot, but for some reason it doesnt appear.
And still BFU does not work. ( I just think it doesnt like me)
Logfile of HijackThis v1.99.1
Scan saved at 12:47:29 PM, on 4/5/2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Windows Defender\MsMpEng.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
C:\Program Files\Intel\Wireless\Bin\WLKeeper.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Adobe\Photoshop Elements 4.0\PhotoshopElementsFileAgent.exe
C:\PROGRA~1\COMMON~1\AOL\ACS\AOLacsd.exe
C:\Program Files\ewido anti-malware\ewidoctrl.exe
c:\program files\mcafee.com\agent\mcdetect.exe
c:\PROGRA~1\mcafee.com\vso\mcshield.exe
c:\PROGRA~1\mcafee.com\agent\mctskshd.exe
C:\PROGRA~1\McAfee.com\PERSON~1\MpfService.exe
C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Intel\Wireless\Bin\ZcfgSvc.exe
C:\WINDOWS\Explorer.EXE
C:\PROGRA~1\Intel\Wireless\Bin\1XConfig.exe
C:\WINDOWS\system32\hkcmd.exe
C:\Program Files\Java\jre1.5.0_03\bin\jusched.exe
C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\Intel\Wireless\Bin\ifrmewrk.exe
C:\Program Files\CyberLink\PowerDVD\DVDLauncher.exe
C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe
C:\PROGRA~1\mcafee.com\agent\mcagent.exe
C:\Program Files\McAfee.com\VSO\mcvsshld.exe
C:\Program Files\McAfee.com\VSO\oasclnt.exe
c:\progra~1\mcafee.com\vso\mcvsescn.exe
C:\PROGRA~1\McAfee.com\PERSON~1\MpfTray.exe
C:\WINDOWS\vsnpstd3.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\WINDOWS\system32\dla\tfswctrl.exe
C:\Program Files\Adobe\Photoshop Elements 4.0\apdproxy.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\Windows Defender\MSASCui.exe
C:\Program Files\Digital Line Detect\DLG.exe
C:\PROGRA~1\McAfee.com\PERSON~1\MpfAgent.exe
C:\WINDOWS\system32\wuauclt.exe
C:\HJT\HijackThis.exe
C:\Program Files\Mozilla Firefox\firefox.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.dell4me.com/mywaybiz
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.dell4me.com/mywaybiz
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.dell4me.com/mywaybiz
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.dell4me.com/mywaybiz
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: DriveLetterAccess - {5CA3D70E-1895-11CF-8E15-001234567890} - C:\WINDOWS\system32\dla\tfswshx.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll
O3 - Toolbar: McAfee VirusScan - {BA52B914-B692-46c4-B683-905236F6F655} - c:\progra~1\mcafee.com\vso\mcvsshl.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll
O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_03\bin\jusched.exe
O4 - HKLM\..\Run: [SynTPLpr] C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [IntelWireless] C:\Program Files\Intel\Wireless\Bin\ifrmewrk.exe /tf Intel PROSet/Wireless
O4 - HKLM\..\Run: [DVDLauncher] "C:\Program Files\CyberLink\PowerDVD\DVDLauncher.exe"
O4 - HKLM\..\Run: [ISUSPM Startup] C:\PROGRA~1\COMMON~1\INSTAL~1\UPDATE~1\ISUSPM.exe -startup
O4 - HKLM\..\Run: [ISUSScheduler] "C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe" -start
O4 - HKLM\..\Run: [VSOCheckTask] "C:\PROGRA~1\McAfee.com\VSO\mcmnhdlr.exe" /checktask
O4 - HKLM\..\Run: [MCAgentExe] c:\PROGRA~1\mcafee.com\agent\mcagent.exe
O4 - HKLM\..\Run: [MCUpdateExe] C:\PROGRA~1\mcafee.com\agent\mcupdate.exe
O4 - HKLM\..\Run: [VirusScan Online] C:\Program Files\McAfee.com\VSO\mcvsshld.exe
O4 - HKLM\..\Run: [OASClnt] C:\Program Files\McAfee.com\VSO\oasclnt.exe
O4 - HKLM\..\Run: [MPFExe] C:\PROGRA~1\McAfee.com\PERSON~1\MpfTray.exe
O4 - HKLM\..\Run: [snpstd3] C:\WINDOWS\vsnpstd3.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [dla] C:\WINDOWS\system32\dla\tfswctrl.exe
O4 - HKLM\..\Run: [Adobe Photo Downloader] "C:\Program Files\Adobe\Photoshop Elements 4.0\apdproxy.exe"
O4 - HKLM\..\Run: [Windows Defender] "C:\Program Files\Windows Defender\MSASCui.exe" -hide
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: America Online 9.0 Tray Icon.lnk = C:\Program Files\America Online 9.0\aoltray.exe
O4 - Global Startup: Digital Line Detect.lnk = ?
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O8 - Extra context menu item: &Google Search - res://c:\program files\google\GoogleToolbar2.dll/cmsearch.html
O8 - Extra context menu item: &Translate English Word - res://c:\program files\google\GoogleToolbar2.dll/cmwordtrans.html
O8 - Extra context menu item: Backward Links - res://c:\program files\google\GoogleToolbar2.dll/cmbacklinks.html
O8 - Extra context menu item: Cached Snapshot of Page - res://c:\program files\google\GoogleToolbar2.dll/cmcache.html
O8 - Extra context menu item: Similar Pages - res://c:\program files\google\GoogleToolbar2.dll/cmsimilar.html
O8 - Extra context menu item: Translate Page into English - res://c:\program files\google\GoogleToolbar2.dll/cmtrans.html
O9 - Extra button: AIM - {AC9E2541-2814-11d5-BC6D-00B0D0A1DE45} - C:\Program Files\AIM\aim.exe
O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\system32\Shdocvw.dll
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O12 - Plugin for .spop: C:\Program Files\Internet Explorer\Plugins\NPDocBox.dll
O16 - DPF: {0E5F0222-96B9-11D3-8997-00104BD12D94} (PCPitstop Utility) - http://www.pcpitstop.com/pcpitstop/PCPitStop.CAB
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204
O16 - DPF: {4ED9DDF0-7479-4BBE-9335-5A1EDB1D8A21} (McAfee.com Operating System Class) - http://download.mcafee.com/molbin/shared/m...99/mcinsctl.cab
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftupdat...b?1128477354331
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/Messe...nt.cab31267.cab
O16 - DPF: {B49C4597-8721-4789-9250-315DFBD9F525} (IWinAmpActiveX Class) - http://cdn.digitalcity.com/radio/ampx/ampx2.6.1.11_en_dl.cab
O16 - DPF: {E13F1132-4CA0-4005-84D3-51406E27D269} (BTDownloadCtrl Control) - http://www.shockwave.com/content/thinktank...ownloadCtrl.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{0F7B8984-AF50-4C7F-B8D9-0EB2E54A702E}: NameServer = 10.1.1.3
O17 - HKLM\System\CCS\Services\Tcpip\..\{D063A193-ADFF-4563-8158-38427E30984D}: NameServer = 10.1.1.3
O17 - HKLM\System\CS1\Services\Tcpip\..\{0F7B8984-AF50-4C7F-B8D9-0EB2E54A702E}: NameServer = 10.1.1.3
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)
O20 - Winlogon Notify: igfxcui - C:\WINDOWS\SYSTEM32\igfxsrvc.dll
O20 - Winlogon Notify: IntelWireless - C:\Program Files\Intel\Wireless\Bin\LgNotify.dll
O23 - Service: Adobe Active File Monitor V4 (AdobeActiveFileMonitor4.0) - Unknown owner - C:\Program Files\Adobe\Photoshop Elements 4.0\PhotoshopElementsFileAgent.exe
O23 - Service: AOL Connectivity Service (AOL ACS) - America Online, Inc. - C:\PROGRA~1\COMMON~1\AOL\ACS\AOLacsd.exe
O23 - Service: EvtEng - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
O23 - Service: ewido security suite control - ewido networks - C:\Program Files\ewido anti-malware\ewidoctrl.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iPodService - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: McAfee WSC Integration (McDetect.exe) - McAfee, Inc - c:\program files\mcafee.com\agent\mcdetect.exe
O23 - Service: McAfee.com McShield (McShield) - McAfee Inc. - c:\PROGRA~1\mcafee.com\vso\mcshield.exe
O23 - Service: McAfee Task Scheduler (McTskshd.exe) - McAfee, Inc - c:\PROGRA~1\mcafee.com\agent\mctskshd.exe
O23 - Service: McAfee SecurityCenter Update Manager (mcupdmgr.exe) - McAfee, Inc - C:\PROGRA~1\McAfee.com\Agent\mcupdmgr.exe
O23 - Service: McAfee Personal Firewall Service (MpfService) - McAfee Corporation - C:\PROGRA~1\McAfee.com\PERSON~1\MpfService.exe
O23 - Service: RegSrvc - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
O23 - Service: Spectrum24 Event Monitor (S24EventMonitor) - Intel Corporation  - C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
O23 - Service: WLANKEEPER - Intel® Corporation - C:\Program Files\Intel\Wireless\Bin\WLKeeper.exe
Logged

Offline mistacleen

  • Newbie
  • *
  • Posts: 12
  • Karma: +0/-0
    • View Profile
Win32-P2P.Alcan.a HELPPP
« Reply #15 on: April 05, 2006, 01:06:02 PM »
also, I'm just wondering if you know a few ways that i could speed up my computer.
Logged

Offline guestolo

  • Site Donator
  • Administrator
  • Hero Member
  • *****
  • Posts: 16034
  • Karma: +1/-0
    • View Profile
    • http://
Win32-P2P.Alcan.a HELPPP
« Reply #16 on: April 05, 2006, 06:42:51 PM »
Can you do the following for me please
From below download and save
alcanshorty3.txt to the BFU folder
After it is saved to the BFU folder
Right click on it and rename it too
alcanshorty3.bfu

Download and save WinPFind.zip
UNZIP the contents to your desktop

Reboot to safe mode please

In safe mode
Open the WinPFind folder you extracted to desktop
Double click on WinPFind.exe
Click START SCAN
Let it finish, you will know when it's done
A log will open
Then exit

Stay in safe mode
Try running BFU with alcanshorty3.bfu and see if you have the same problem

Reboot back to normal mode
Post the results of the WindPFind.txt located in the WinPFind folder
Let me know if Alcanshorty3.bfu finished to run please
Logged

Do you want to post your own logs from FRST?

Follow the instructions posted http://www.thetechguide.com/forum/index.php/topic/22942-please-read-how-to-post-logs-from-frst/\'>Click Here

Offline mistacleen

  • Newbie
  • *
  • Posts: 12
  • Karma: +0/-0
    • View Profile
Win32-P2P.Alcan.a HELPPP
« Reply #17 on: April 05, 2006, 09:46:13 PM »
guestolo, you are god. I really appreciate all you have done. And yes, the alcanshorty3.txt worked perfectly. here's my WinPFind log.

WARNING: not all files found by this scanner are bad. Consult with a knowledgable person before proceeding.

If you see a message in the titlebar saying "Not responding..." you can ignore it. Windows somethimes displays this message due to the high volume of disk I/O. As long as the hard disk light is flashing, the program is still working properly.

»»»»»»»»»»»»»»»»» Windows OS and Versions »»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
Product Name: Microsoft Windows XP    Current Build: Service Pack 2    Current Build Number: 2600
Internet Explorer Version: 6.0.2900.2180

»»»»»»»»»»»»»»»»» Checking Selected Standard Folders »»»»»»»»»»»»»»»»»»»»

Checking %SystemDrive% folder...

Checking %ProgramFilesDir% folder...

Checking %WinDir% folder...

Checking %System% folder...
aspack               3/18/2005 6:19:58 PM        2337488    C:\WINDOWS\SYSTEM32\d3dx9_25.dll
PEC2                 8/4/2004 6:00:00 AM         41397      C:\WINDOWS\SYSTEM32\dfrg.msc
PEC2                 8/9/2005 6:14:00 PM         692736     C:\WINDOWS\SYSTEM32\DivX.dll
PECompact2           8/9/2005 6:14:00 PM         692736     C:\WINDOWS\SYSTEM32\DivX.dll
PTech                8/29/2005 2:27:12 PM        520968     C:\WINDOWS\SYSTEM32\LegitCheckControl.DLL
PECompact2           3/9/2006 8:10:36 PM         4799320    C:\WINDOWS\SYSTEM32\MRT.exe
aspack               3/9/2006 8:10:36 PM         4799320    C:\WINDOWS\SYSTEM32\MRT.exe
aspack               8/4/2004 6:00:00 AM         708096     C:\WINDOWS\SYSTEM32\ntdll.dll
Umonitor             8/4/2004 6:00:00 AM         657920     C:\WINDOWS\SYSTEM32\rasdlg.dll
winsync              8/4/2004 6:00:00 AM         1309184    C:\WINDOWS\SYSTEM32\wbdbase.deu

Checking %System%\Drivers folder and sub-folders...

Items found in C:\WINDOWS\SYSTEM32\drivers\etc\hosts


Checking the Windows folder and sub-folders for system and hidden files within the last 60 days...
                     4/5/2006 10:27:08 PM      S 2048       C:\WINDOWS\bootstat.dat
                     4/5/2006 10:10:34 PM     H  54156      C:\WINDOWS\QTFont.qfn
                     4/3/2006 9:34:12 PM      HS 0          C:\WINDOWS\system32\cmd.com
                     4/3/2006 8:05:06 PM      HS 0          C:\WINDOWS\system32\netstat.com
                     4/3/2006 8:05:06 PM      HS 0          C:\WINDOWS\system32\ping.com
                     4/3/2006 8:05:06 PM      HS 0          C:\WINDOWS\system32\regedit.com
                     4/3/2006 8:05:06 PM      HS 0          C:\WINDOWS\system32\taskkill.com
                     4/3/2006 8:05:06 PM      HS 0          C:\WINDOWS\system32\tasklist.com
                     4/3/2006 8:05:06 PM      HS 0          C:\WINDOWS\system32\tracert.com
                     4/5/2006 10:27:14 PM     H  16384      C:\WINDOWS\system32\config\default.LOG
                     4/5/2006 10:27:24 PM     H  1024       C:\WINDOWS\system32\config\SAM.LOG
                     4/5/2006 10:27:10 PM     H  16384      C:\WINDOWS\system32\config\SECURITY.LOG
                     4/5/2006 10:27:26 PM     H  73728      C:\WINDOWS\system32\config\software.LOG
                     4/5/2006 10:27:18 PM     H  1085440    C:\WINDOWS\system32\config\system.LOG
                     4/5/2006 1:46:52 AM      H  1024       C:\WINDOWS\system32\config\systemprofile\NTUSER.DAT.LOG
                     2/20/2006 7:20:16 PM     HS 388        C:\WINDOWS\system32\Microsoft\Protect\S-1-5-18\User\27320d24-c35a-406d-8b02-400533aea750
                     2/20/2006 7:20:16 PM     HS 24         C:\WINDOWS\system32\Microsoft\Protect\S-1-5-18\User\Preferred
                     4/5/2006 10:30:26 PM     H  370        C:\WINDOWS\Tasks\MP Scheduled Scan.job
                     4/5/2006 10:26:02 PM     H  6          C:\WINDOWS\Tasks\SA.DAT

Checking for CPL files...
Microsoft Corporation          8/4/2004 6:00:00 AM         68608      C:\WINDOWS\SYSTEM32\access.cpl
Microsoft Corporation          8/4/2004 6:00:00 AM         549888     C:\WINDOWS\SYSTEM32\appwiz.cpl
                               12/15/2003 1:09:34 PM       24576      C:\WINDOWS\SYSTEM32\BACSCPL.cpl
Microsoft Corporation          8/4/2004 6:00:00 AM         110592     C:\WINDOWS\SYSTEM32\bthprops.cpl
Microsoft Corporation          8/4/2004 6:00:00 AM         135168     C:\WINDOWS\SYSTEM32\desk.cpl
Microsoft Corporation          8/4/2004 6:00:00 AM         80384      C:\WINDOWS\SYSTEM32\firewall.cpl
Microsoft Corporation          8/4/2004 6:00:00 AM         155136     C:\WINDOWS\SYSTEM32\hdwwiz.cpl
Intel Corporation              8/20/2004 7:53:06 PM        94208      C:\WINDOWS\SYSTEM32\igfxcpl.cpl
Microsoft Corporation          8/4/2004 6:00:00 AM         358400     C:\WINDOWS\SYSTEM32\inetcpl.cpl
Microsoft Corporation          8/4/2004 6:00:00 AM         129536     C:\WINDOWS\SYSTEM32\intl.cpl
Microsoft Corporation          8/4/2004 6:00:00 AM         380416     C:\WINDOWS\SYSTEM32\irprops.cpl
InstallShield Software Corporation7/27/2004 5:50:48 PM        73728      C:\WINDOWS\SYSTEM32\ISUSPM.cpl
Microsoft Corporation          8/4/2004 6:00:00 AM         68608      C:\WINDOWS\SYSTEM32\joy.cpl
Sun Microsystems, Inc.         4/13/2005 4:48:52 AM        49265      C:\WINDOWS\SYSTEM32\jpicpl32.cpl
Microsoft Corporation          8/4/2004 6:00:00 AM         187904     C:\WINDOWS\SYSTEM32\main.cpl
Microsoft Corporation          8/4/2004 6:00:00 AM         618496     C:\WINDOWS\SYSTEM32\mmsys.cpl
Microsoft Corporation          8/4/2004 6:00:00 AM         35840      C:\WINDOWS\SYSTEM32\ncpa.cpl
Microsoft Corporation          8/4/2004 6:00:00 AM         25600      C:\WINDOWS\SYSTEM32\netsetup.cpl
Microsoft Corporation          8/4/2004 6:00:00 AM         257024     C:\WINDOWS\SYSTEM32\nusrmgr.cpl
Microsoft Corporation          8/4/2004 6:00:00 AM         36864      C:\WINDOWS\SYSTEM32\nwc.cpl
Microsoft Corporation          8/4/2004 6:00:00 AM         32768      C:\WINDOWS\SYSTEM32\odbccp32.cpl
Microsoft Corporation          8/4/2004 6:00:00 AM         114688     C:\WINDOWS\SYSTEM32\powercfg.cpl
RealNetworks, Inc.             8/13/2005 2:44:16 PM        24576      C:\WINDOWS\SYSTEM32\prefscpl.cpl
SigmaTel Inc.                  7/20/2004 4:14:06 PM        102481     C:\WINDOWS\SYSTEM32\stac97.cpl
Microsoft Corporation          8/4/2004 6:00:00 AM         298496     C:\WINDOWS\SYSTEM32\sysdm.cpl
Microsoft Corporation          8/4/2004 6:00:00 AM         28160      C:\WINDOWS\SYSTEM32\telephon.cpl
Microsoft Corporation          8/4/2004 6:00:00 AM         94208      C:\WINDOWS\SYSTEM32\timedate.cpl
Microsoft Corporation          8/4/2004 6:00:00 AM         148480     C:\WINDOWS\SYSTEM32\wscui.cpl
Microsoft Corporation          5/26/2005 5:16:30 AM        174360     C:\WINDOWS\SYSTEM32\wuaucpl.cpl
Microsoft Corporation          8/4/2004 6:00:00 AM         155136     C:\WINDOWS\SYSTEM32\dllcache\hdwwiz.cpl
Microsoft Corporation          8/4/2004 6:00:00 AM         257024     C:\WINDOWS\SYSTEM32\dllcache\nusrmgr.cpl
Microsoft Corporation          8/4/2004 6:00:00 AM         298496     C:\WINDOWS\SYSTEM32\dllcache\sysdm.cpl
Microsoft Corporation          5/26/2005 5:16:30 AM        174360     C:\WINDOWS\SYSTEM32\dllcache\wuaucpl.cpl

»»»»»»»»»»»»»»»»» Checking Selected Startup Folders »»»»»»»»»»»»»»»»»»»»»

Checking files in %ALLUSERSPROFILE%\Startup folder...
                     4/4/2006 4:38:30 PM         1757       C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Adobe Reader Speed Launch.lnk
                     8/13/2005 2:44:52 PM        831        C:\Documents and Settings\All Users\Start Menu\Programs\Startup\America Online 9.0 Tray Icon.lnk
                     8/11/2004 6:15:06 PM     HS 84         C:\Documents and Settings\All Users\Start Menu\Programs\Startup\desktop.ini
                     8/13/2005 2:39:32 PM        493        C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Digital Line Detect.lnk
                     10/4/2005 9:03:00 PM        1730       C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Microsoft Office.lnk

Checking files in %ALLUSERSPROFILE%\Application Data folder...
                     8/11/2004 6:07:12 PM     HS 62         C:\Documents and Settings\All Users\Application Data\desktop.ini
                     3/5/2006 4:15:08 PM         1768       C:\Documents and Settings\All Users\Application Data\QTSBandwidthCache

Checking files in %USERPROFILE%\Startup folder...
                     8/11/2004 6:15:06 PM     HS 84         C:\Documents and Settings\John\Start Menu\Programs\Startup\desktop.ini

Checking files in %USERPROFILE%\Application Data folder...
                     8/11/2004 6:07:12 PM     HS 62         C:\Documents and Settings\John\Application Data\desktop.ini
                     3/10/2006 1:18:22 PM        35712      C:\Documents and Settings\John\Application Data\GDIPFONTCACHEV1.DAT
UPX!                 11/3/2005 8:42:24 PM        280064     C:\Documents and Settings\John\Application Data\tizhook.bin
                     11/3/2005 8:42:24 PM        10         C:\Documents and Settings\John\Application Data\tizhook.vers
                     11/3/2005 8:42:24 PM        24356      C:\Documents and Settings\John\Application Data\tizinf.xml
                     11/3/2005 8:42:24 PM        318104     C:\Documents and Settings\John\Application Data\tizupd.bin
                     4/5/2006 8:29:30 PM         11952      C:\Documents and Settings\John\Application Data\wklnhst.dat

»»»»»»»»»»»»»»»»» Checking Selected Registry Keys »»»»»»»»»»»»»»»»»»»»»»»

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\User Agent\Post Platform]
   SV1    =

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved]

[HKEY_CLASSES_ROOT\*\shellex\ContextMenuHandlers]
HKEY_CLASSES_ROOT\*\shellex\ContextMenuHandlers\Offline Files
   {750fdf0e-2a26-11d1-a3ea-080036587f03}    = %SystemRoot%\System32\cscui.dll
HKEY_CLASSES_ROOT\*\shellex\ContextMenuHandlers\Open With
   {09799AFB-AD67-11d1-ABCD-00C04FC30936}    = %SystemRoot%\system32\SHELL32.dll
HKEY_CLASSES_ROOT\*\shellex\ContextMenuHandlers\Open With EncryptionMenu
   {A470F8CF-A1E8-4f65-8335-227475AA5C46}    = %SystemRoot%\system32\SHELL32.dll
HKEY_CLASSES_ROOT\*\shellex\ContextMenuHandlers\WinRAR
   {B41DB860-8EE4-11D2-9906-E49FADC173CA}    = C:\Program Files\WinRAR\rarext.dll
HKEY_CLASSES_ROOT\*\shellex\ContextMenuHandlers\{a2a9545d-a0c2-42b4-9708-a0b2badd77c8}
   Start Menu Pin    = %SystemRoot%\system32\SHELL32.dll
HKEY_CLASSES_ROOT\*\shellex\ContextMenuHandlers\{CFC7205E-2792-4378-9591-3879CC6C9022}
       = c:\progra~1\mcafee.com\vso\mcvsshl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Folder\shellex\ContextMenuHandlers]
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Folder\shellex\ContextMenuHandlers\WinRAR
   {B41DB860-8EE4-11D2-9906-E49FADC173CA}    = C:\Program Files\WinRAR\rarext.dll
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Folder\shellex\ContextMenuHandlers\{CFC7205E-2792-4378-9591-3879CC6C9022}
       = c:\progra~1\mcafee.com\vso\mcvsshl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Directory\shellex\ContextMenuHandlers]
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Directory\shellex\ContextMenuHandlers\EncryptionMenu
   {A470F8CF-A1E8-4f65-8335-227475AA5C46}    = %SystemRoot%\system32\SHELL32.dll
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Directory\shellex\ContextMenuHandlers\Offline Files
   {750fdf0e-2a26-11d1-a3ea-080036587f03}    = %SystemRoot%\System32\cscui.dll
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Directory\shellex\ContextMenuHandlers\Sharing
   {f81e9010-6ea4-11ce-a7ff-00aa003ca9f6}    = ntshrui.dll
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Directory\shellex\ContextMenuHandlers\WinRAR
   {B41DB860-8EE4-11D2-9906-E49FADC173CA}    = C:\Program Files\WinRAR\rarext.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Folder\shellex\ColumnHandlers]
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Folder\shellex\ColumnHandlers\{0D2E74C4-3C34-11d2-A27E-00C04FC30871}
    = %SystemRoot%\system32\SHELL32.dll
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Folder\shellex\ColumnHandlers\{24F14F01-7B1C-11d1-838f-0000F80461CF}
    = %SystemRoot%\system32\SHELL32.dll
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Folder\shellex\ColumnHandlers\{24F14F02-7B1C-11d1-838f-0000F80461CF}
    = %SystemRoot%\system32\SHELL32.dll
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Folder\shellex\ColumnHandlers\{66742402-F9B9-11D1-A202-0000F81FEDEE}
    = %SystemRoot%\system32\SHELL32.dll
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Folder\shellex\ColumnHandlers\{F9DB5320-233E-11D1-9F84-707F02C10627}
    = C:\Program Files\Adobe\Acrobat 7.0\ActiveX\PDFShell.dll

[HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects]
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}
   Adobe PDF Reader Link Helper = C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5CA3D70E-1895-11CF-8E15-001234567890}
   DriveLetterAccess = C:\WINDOWS\system32\dla\tfswshx.dll
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}
   Google Toolbar Helper = c:\program files\google\googletoolbar2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Explorer Bars]
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Explorer Bars\{4D5C8C25-D075-11d0-B416-00C04FB90376}
   &Tip of the Day = %SystemRoot%\system32\shdocvw.dll
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Explorer Bars\{FE54FA40-D68C-11d2-98FA-00C0F0318AFE}
   Real.com = C:\WINDOWS\system32\Shdocvw.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\ToolBar]
   {BA52B914-B692-46c4-B683-905236F6F655}    = McAfee VirusScan   : c:\progra~1\mcafee.com\vso\mcvsshl.dll
   {2318C2B1-4965-11d4-9B18-009027A5CD4F}    = &Google   : c:\program files\google\googletoolbar2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extensions]
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extensions\{AC9E2541-2814-11d5-BC6D-00B0D0A1DE45}
   ButtonText    = AIM   : C:\Program Files\AIM\aim.exe
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extensions\{CD67F990-D8E9-11d2-98FE-00C0F0318AFE}
   ButtonText    = Real.com   :
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extensions\{FB5F1910-F110-11d2-BB9E-00C04F795683}
   ButtonText    = Messenger   : C:\Program Files\Messenger\msmsgs.exe

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Explorer Bars]
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Explorer Bars\{C4EE31F3-4768-11D2-BE5C-00A0C9A83DA1}
   File Search Explorer Band = %SystemRoot%\system32\SHELL32.dll
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Explorer Bars\{EFA24E61-B078-11D0-89E4-00C04FC9E26E}
   Favorites Band = %SystemRoot%\system32\shdocvw.dll
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Explorer Bars\{EFA24E62-B078-11D0-89E4-00C04FC9E26E}
   History Band = %SystemRoot%\system32\shdocvw.dll
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Explorer Bars\{EFA24E64-B078-11D0-89E4-00C04FC9E26E}
   Explorer Band = %SystemRoot%\system32\shdocvw.dll

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar]
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\ShellBrowser
   {01E04581-4EEE-11D0-BFE9-00AA005B4383} = &Address   : %SystemRoot%\system32\browseui.dll
   {2318C2B1-4965-11D4-9B18-009027A5CD4F} = &Google   : c:\program files\google\googletoolbar2.dll
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser
   {01E04581-4EEE-11D0-BFE9-00AA005B4383} = &Address   : %SystemRoot%\system32\browseui.dll
   {0E5CBF21-D15F-11D0-8301-00AA005B4383} = &Links   : %SystemRoot%\system32\SHELL32.dll
   {2318C2B1-4965-11D4-9B18-009027A5CD4F} = &Google   : c:\program files\google\googletoolbar2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
   IgfxTray   C:\WINDOWS\system32\igfxtray.exe
   HotKeysCmds   C:\WINDOWS\system32\hkcmd.exe
   SunJavaUpdateSched   C:\Program Files\Java\jre1.5.0_03\bin\jusched.exe
   SynTPLpr   C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
   SynTPEnh   C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
      
   IntelWireless   C:\Program Files\Intel\Wireless\Bin\ifrmewrk.exe /tf Intel PROSet/Wireless
   DVDLauncher   "C:\Program Files\CyberLink\PowerDVD\DVDLauncher.exe"
   ISUSPM Startup   C:\PROGRA~1\COMMON~1\INSTAL~1\UPDATE~1\ISUSPM.exe -startup
   ISUSScheduler   "C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe" -start
   VSOCheckTask   "C:\PROGRA~1\McAfee.com\VSO\mcmnhdlr.exe" /checktask
   MCAgentExe   c:\PROGRA~1\mcafee.com\agent\mcagent.exe
   MCUpdateExe   c:\PROGRA~1\mcafee.com\agent\mcupdate.exe
   VirusScan Online   C:\Program Files\McAfee.com\VSO\mcvsshld.exe
   OASClnt   C:\Program Files\McAfee.com\VSO\oasclnt.exe
   MPFExe   C:\PROGRA~1\McAfee.com\PERSON~1\MpfTray.exe
   snpstd3   C:\WINDOWS\vsnpstd3.exe
   QuickTime Task   "C:\Program Files\QuickTime\qttask.exe" -atboottime
   iTunesHelper   "C:\Program Files\iTunes\iTunesHelper.exe"
   dla   C:\WINDOWS\system32\dla\tfswctrl.exe
   Adobe Photo Downloader   "C:\Program Files\Adobe\Photoshop Elements 4.0\apdproxy.exe"
   Windows Defender   "C:\Program Files\Windows Defender\MSASCui.exe" -hide

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\OptionalComponents]
   IMAIL   Installed = 1
   MAPI   Installed = 1
   MSFS   Installed = 1

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnceEx]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunServices]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunServicesOnce]

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce]

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\RunServices]

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\RunServicesOnce]

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows\load]

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows\run]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig]

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\services

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\state

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies]

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Attachments
   ScanWithAntiVirus   3


HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\NonEnum
   {BDEADF00-C265-11D0-BCED-00A0C90AB50F} = C:\PROGRA~1\COMMON~1\MICROS~1\WEBFOL~1\MSONSEXT.DLL
   {6DFD7C5C-2451-11d3-A299-00C04F8EF6AF} =
   {0DF44EAA-FF21-4412-828E-260A8728E7F1} =


HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Ratings

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system
   dontdisplaylastusername   0
   legalnoticecaption   
   legalnoticetext   
   shutdownwithoutlogon   1
   undockwithoutlogon   1


[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\policies]

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer
   NoDriveTypeAutoRun   145


[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
   0aMCPClient                       {F5DF91F9-15E9-416B-A7C3-7519B11ECBFC} =
   PostBootReminder                  {7849596a-48ea-486e-8937-a2a3009f31a9} = %SystemRoot%\system32\SHELL32.dll
   CDBurn                            {fbeb8a05-beee-4442-804e-409d6c4515e9} = %SystemRoot%\system32\SHELL32.dll
   WebCheck                          {E6FB5E20-DE35-11CF-9C87-00AA005127ED} = %SystemRoot%\system32\webcheck.dll
   SysTray                           {35CEC8A3-2BE6-11D2-8773-92E220524153} = C:\WINDOWS\system32\stobject.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon]
   UserInit   = C:\WINDOWS\system32\userinit.exe,
   Shell      = Explorer.exe
   System      =

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\crypt32chain
    = crypt32.dll

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\cryptnet
    = cryptnet.dll

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\cscdll
    = cscdll.dll

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui
    = igfxsrvc.dll

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\IntelWireless
    = C:\Program Files\Intel\Wireless\Bin\LgNotify.dll

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\ScCertProp
    = wlnotify.dll

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\Schedule
    = wlnotify.dll

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\sclgntfy
    = sclgntfy.dll

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\SensLogn
    = WlNotify.dll

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\termsrv
    = wlnotify.dll

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\wlballoon
    = wlnotify.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options]
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\Your Image File Name Here without a path
   Debugger = ntsd -d

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
   AppInit_DLLs   


»»»»»»»»»»»»»»»»»»»»»»»» Scan Complete »»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
WinPFind v1.4.1   - Log file written to "WinPFind.Txt" in the WinPFind folder.
Scan completed on 4/5/2006 10:33:25 PM
Logged

Offline guestolo

  • Site Donator
  • Administrator
  • Hero Member
  • *****
  • Posts: 16034
  • Karma: +1/-0
    • View Profile
    • http://
Win32-P2P.Alcan.a HELPPP
« Reply #18 on: April 05, 2006, 09:54:52 PM »
I would sure like to know what the heck is causing the runtime error

As you can see by the WPFind log, these entries
Code: [Select]
Checking the Windows folder and sub-folders for system and hidden files within the last 60 days...
 4/3/2006 9:34:12 PM HS 0 C:\WINDOWS\system32\cmd.com
4/3/2006 8:05:06 PM HS 0 C:\WINDOWS\system32\netstat.com
4/3/2006 8:05:06 PM HS 0 C:\WINDOWS\system32\ping.com
4/3/2006 8:05:06 PM HS 0 C:\WINDOWS\system32\regedit.com
4/3/2006 8:05:06 PM HS 0 C:\WINDOWS\system32\taskkill.com
4/3/2006 8:05:06 PM HS 0 C:\WINDOWS\system32\tasklist.com
4/3/2006 8:05:06 PM HS 0 C:\WINDOWS\system32\tracert.com
alcanshorty removes those entries that disable taskmanager, cmd prompt, regedit, etc...
I revised it too alcanshorty3.bfu, which would of also removed those entries, so I assume there gone now
As I had you run WPFind first than alcanshorty3.bfu

Can you do a test for me please
Can you run Alcanshorty3.bfu in normal mode now and see if it works
If it does, can you try running the original alcanshorty.bfu and see if it works now

Post back and let me know please
Also,
Go to either of these links
http://virusscan.jotti.org/
or
http://www.virustotal.com/flash/index_en.html

Use the browse button and navigate the files below on your hard disk
Right click on the file and choose Select
Then use the Submit button
Let it finish scanning
Could you post back the results of the scan back here please
Code: [Select]
C:\Documents and Settings\John\Application Data\wklnhst.dat
C:\Documents and Settings\John\Application Data\tizhook.bin
C:\Documents and Settings\John\Application Data\tizhook.vers
C:\Documents and Settings\John\Application Data\tizinf.xml
C:\Documents and Settings\John\Application Data\tizupd.bin
« Last Edit: April 05, 2006, 10:09:34 PM by guestolo »
Logged

Do you want to post your own logs from FRST?

Follow the instructions posted http://www.thetechguide.com/forum/index.php/topic/22942-please-read-how-to-post-logs-from-frst/\'>Click Here

Offline mistacleen

  • Newbie
  • *
  • Posts: 12
  • Karma: +0/-0
    • View Profile
Win32-P2P.Alcan.a HELPPP
« Reply #19 on: April 06, 2006, 03:08:36 PM »
When I tried the alcanshorty3 on normal mode it worked, but when I tried the regular alcanshorty progress stopped again at the same 21%. Here's the scan log from the first link you provided.

 File:  tizhook.bin
Status: MIGHT BE INFECTED/MALWARE (Sandbox emulation took a long time and/or runtime packers were found, this is suspicious. Normally programs aren't packed and don't force the sandbox into lengthy emulation. Do realize no scanner issued any warning, the file can very well be harmless. Caution is advised, however.)

 File:  tizhook.vers
Status: OK

 File:  tizinf.xml
Status: OK

 File: tizupd.bin
Status: INFECTED/MALWARE

 File: wklnhst.dat
Status: OK
Logged
Pages: [1] 2
« previous next »