Results 1 to 8 of 8
  1. #1
    Member
    Join Date
    May 2011
    Posts
    6
    Points
    0

    Default Firefox is running hot and IE and Chrome are busted

    I'm sorry, but everytime I try to post the logs for my computer I get an error message and I'm going to try and edit the post after I make it

  2. #2
    Member
    Join Date
    May 2011
    Posts
    6
    Points
    0

    Default

    Which I just learned I can't do... I'll try dispersing the logs instead...

    Firefox is going on 300,000 k on average, chrome doesn't load and IE can't go anywhere

    Plus, Eset blocks IP addresses when I'm using firefox from sites I'm not even going on

    System:
    Microsoft Windows XP
    Professional
    Version 2002
    Service Pack 2

    Hardware
    Dell Latitude D620
    Genuine Intel(R) CPU
    T2400 @1.83GHz
    987 MHz, 0.99 GB of RAM
    Physical Address Extension

    SUPERAntiSpyware Scan Log
    SUPERAntiSpyware.com | Remove Malware | Remove Spyware - AntiMalware, AntiSpyware, AntiAdware!

    Generated 05/12/2011 at 10:36 AM

    Application Version : 4.51.1000

    Core Rules Database Version : 6955
    Trace Rules Database Version: 4767

    Scan type : Complete Scan
    Total Scan Time : 07:34:35

    Memory items scanned : 246
    Memory threats detected : 0
    Registry items scanned : 8464
    Registry threats detected : 3
    File items scanned : 37515
    File threats detected : 696

    Disabled.SecurityCenterOption
    HKLM\SOFTWARE\MICROSOFT\SECURITY CENTER#ANTIVIRUSDISABLENOTIFY
    HKLM\SOFTWARE\MICROSOFT\SECURITY CENTER#FIREWALLDISABLENOTIFY
    HKLM\SOFTWARE\MICROSOFT\SECURITY CENTER#UPDATESDISABLENOTIFY

    Adware.Tracking Cookie
    C:\Documents and Settings\1\Cookies\1@ad.afy11[1].txt
    C:\Documents and Settings\1\Cookies\1@ad.yieldmanager[2].txt
    C:\Documents and Settings\1\Cookies\1@adbrite[1].txt
    C:\Documents and Settings\1\Cookies\1@ads.adk2[2].txt
    C:\Documents and Settings\1\Cookies\1@ads.pointroll[2].txt
    C:\Documents and Settings\1\Cookies\1@ads.pubmatic[2].txt
    C:\Documents and Settings\1\Cookies\1@adserver.adtechus[1].txt
    C:\Documents and Settings\1\Cookies\1@advertising[2].txt
    C:\Documents and Settings\1\Cookies\1@apmebf[1].txt
    C:\Documents and Settings\1\Cookies\1@burstnet[1].txt
    C:\Documents and Settings\1\Cookies\1@clicksense[1].txt
    C:\Documents and Settings\1\Cookies\1@clickthrough.kanoodle[1].txt
    C:\Documents and Settings\1\Cookies\1@content.yieldmanager[1].txt
    C:\Documents and Settings\1\Cookies\1@dc.tremormedia[1].txt
    C:\Documents and Settings\1\Cookies\1@doubleclick[1].txt
    C:\Documents and Settings\1\Cookies\1@fastclick[1].txt
    C:\Documents and Settings\1\Cookies\1@invitemedia[1].txt
    C:\Documents and Settings\1\Cookies\1@media6degrees[2].txt
    C:\Documents and Settings\1\Cookies\1@pointroll[2].txt
    C:\Documents and Settings\1\Cookies\1@questionmarket[1].txt
    C:\Documents and Settings\1\Cookies\1@realmedia[1].txt
    C:\Documents and Settings\1\Cookies\1@ru4[2].txt
    C:\Documents and Settings\1\Cookies\1@statcounter[1].txt
    C:\Documents and Settings\1\Cookies\1@stats[3].txt
    C:\Documents and Settings\1\Cookies\1@tribalfusion[1].txt
    C:\Documents and Settings\1\Cookies\1@www.burstnet[2].txt
    C:\Documents and Settings\1\Cookies\1@yieldmanager[1].txt
    media.heavy.com [ C:\Documents and Settings\2\Application Data\Macromedia\Flash Player\#SharedObjects\2P6J4TYN ]
    media.mtvnservices.com [ C:\Documents and Settings\2\Application Data\Macromedia\Flash Player\#SharedObjects\2P6J4TYN ]
    secure-us.imrworldwide.com [ C:\Documents and Settings\2\Application Data\Macromedia\Flash Player\#SharedObjects\2P6J4TYN ]
    www.naiadsystems.com [ C:\Documents and Settings\2\Application Data\Macromedia\Flash Player\#SharedObjects\2P6J4TYN ]
    C:\Documents and Settings\2\Cookies\2@ad.yieldmanager[1].txt
    C:\Documents and Settings\2\Cookies\2@adbrite[2].txt
    C:\Documents and Settings\2\Cookies\2@ads.bighealthtree[1].txt
    C:\Documents and Settings\2\Cookies\2@ads.blogtalkradio[2].txt
    C:\Documents and Settings\2\Cookies\2@ads.lycos[2].txt
    C:\Documents and Settings\2\Cookies\2@ads.pointroll[2].txt
    C:\Documents and Settings\2\Cookies\2@ads.undertone[1].txt
    C:\Documents and Settings\2\Cookies\2@adserver.adtechus[1].txt
    C:\Documents and Settings\2\Cookies\2@adserving[1].txt
    C:\Documents and Settings\2\Cookies\2@atdmt[1].txt
    C:\Documents and Settings\2\Cookies\2@automedia[2].txt
    C:\Documents and Settings\2\Cookies\2@casalemedia[1].txt
    C:\Documents and Settings\2\Cookies\2@clickthrough.kanoodle[1].txt
    C:\Documents and Settings\2\Cookies\2@collective-media[2].txt
    C:\Documents and Settings\2\Cookies\2@dc.tremormedia[2].txt
    C:\Documents and Settings\2\Cookies\2@doubleclick[2].txt
    C:\Documents and Settings\2\Cookies\2@eyewonder[2].txt
    C:\Documents and Settings\2\Cookies\2@insightexpressai[2].txt
    C:\Documents and Settings\2\Cookies\2@invitemedia[2].txt
    C:\Documents and Settings\2\Cookies\2@media6degrees[2].txt
    C:\Documents and Settings\2\Cookies\2@mediabrandsww[1].txt
    C:\Documents and Settings\2\Cookies\2@mediaplex[1].txt
    C:\Documents and Settings\2\Cookies\2@pointroll[2].txt
    C:\Documents and Settings\2\Cookies\2@questionmarket[1].txt
    C:\Documents and Settings\2\Cookies\2@realmedia[2].txt
    C:\Documents and Settings\2\Cookies\2@revsci[2].txt
    C:\Documents and Settings\2\Cookies\2@ru4[1].txt
    C:\Documents and Settings\2\Cookies\2@serving-sys[1].txt
    C:\Documents and Settings\2\Cookies\2@statcounter[2].txt
    C:\Documents and Settings\2\Cookies\2@tribalfusion[1].txt
    C:\Documents and Settings\2\Cookies\2@www.burstnet[2].txt
    C:\Documents and Settings\2\Cookies\2@yieldmanager[1].txt
    ads.zeusclicks.com [ C:\Documents and Settings\2\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .server.cpmstar.com [ C:\Documents and Settings\2\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .server.cpmstar.com [ C:\Documents and Settings\2\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .adbrite.com [ C:\Documents and Settings\2\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .adbrite.com [ C:\Documents and Settings\2\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .adbrite.com [ C:\Documents and Settings\2\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .adbrite.com [ C:\Documents and Settings\2\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .atdmt.com [ C:\Documents and Settings\2\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .atdmt.com [ C:\Documents and Settings\2\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .adbrite.com [ C:\Documents and Settings\2\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .adbrite.com [ C:\Documents and Settings\2\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .adbrite.com [ C:\Documents and Settings\2\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .adbrite.com [ C:\Documents and Settings\2\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .serving-sys.com [ C:\Documents and Settings\2\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .serving-sys.com [ C:\Documents and Settings\2\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .serving-sys.com [ C:\Documents and Settings\2\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .server.cpmstar.com [ C:\Documents and Settings\2\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .server.cpmstar.com [ C:\Documents and Settings\2\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .server.cpmstar.com [ C:\Documents and Settings\2\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .server.cpmstar.com [ C:\Documents and Settings\2\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    ads.trafficjunky.net [ C:\Documents and Settings\2\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    cdn2.themis-media.com [ C:\Documents and Settings\4\Application Data\Macromedia\Flash Player\#SharedObjects\5JEQ85Q2 ]
    msnbcmedia.msn.com [ C:\Documents and Settings\4\Application Data\Macromedia\Flash Player\#SharedObjects\5JEQ85Q2 ]
    objects.tremormedia.com [ C:\Documents and Settings\4\Application Data\Macromedia\Flash Player\#SharedObjects\5JEQ85Q2 ]
    s0.2mdn.net [ C:\Documents and Settings\4\Application Data\Macromedia\Flash Player\#SharedObjects\5JEQ85Q2 ]
    secure-us.imrworldwide.com [ C:\Documents and Settings\4\Application Data\Macromedia\Flash Player\#SharedObjects\5JEQ85Q2 ]
    www.naiadsystems.com [ C:\Documents and Settings\4\Application Data\Macromedia\Flash Player\#SharedObjects\5JEQ85Q2 ]
    C:\Documents and Settings\4\Cookies\4@247realmedia[1].txt
    C:\Documents and Settings\4\Cookies\4@ad.yieldmanager[1].txt
    C:\Documents and Settings\4\Cookies\4@adbrite[1].txt
    C:\Documents and Settings\4\Cookies\4@ads.adk2[2].txt
    C:\Documents and Settings\4\Cookies\4@ads.pointroll[1].txt
    C:\Documents and Settings\4\Cookies\4@adserver.adtechus[1].txt
    C:\Documents and Settings\4\Cookies\4@adserving.versaneeds[2].txt
    C:\Documents and Settings\4\Cookies\4@advertising[2].txt
    C:\Documents and Settings\4\Cookies\4@adxpose[1].txt
    C:\Documents and Settings\4\Cookies\4@apmebf[2].txt
    C:\Documents and Settings\4\Cookies\4@atdmt[1].txt
    C:\Documents and Settings\4\Cookies\4@content.yieldmanager[2].txt
    C:\Documents and Settings\4\Cookies\4@content.yieldmanager[3].txt
    C:\Documents and Settings\4\Cookies\4@doubleclick[1].txt
    C:\Documents and Settings\4\Cookies\4@harrenmedianetwork[1].txt
    C:\Documents and Settings\4\Cookies\4@invitemedia[2].txt
    C:\Documents and Settings\4\Cookies\4@m1.mediasrv[2].txt
    C:\Documents and Settings\4\Cookies\4@media6degrees[2].txt
    C:\Documents and Settings\4\Cookies\4@mm.chitika[1].txt
    C:\Documents and Settings\4\Cookies\4@pointroll[2].txt
    C:\Documents and Settings\4\Cookies\4@ru4[1].txt
    C:\Documents and Settings\4\Cookies\4@vidasco.rotator.hadj7.adjuggler[2].txt
    C:\Documents and Settings\4\Cookies\4@www.windowsmedia[2].txt
    C:\Documents and Settings\4\Cookies\4@yieldmanager[1].txt
    .advertising.com [ C:\Documents and Settings\4\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .advertising.com [ C:\Documents and Settings\4\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .advertising.com [ C:\Documents and Settings\4\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .advertising.com [ C:\Documents and Settings\4\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .lucidmedia.com [ C:\Documents and Settings\4\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    ad.yieldmanager.com [ C:\Documents and Settings\4\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .content.yieldmanager.com [ C:\Documents and Settings\4\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    ad.yieldmanager.com [ C:\Documents and Settings\4\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    ad.yieldmanager.com [ C:\Documents and Settings\4\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    ad.yieldmanager.com [ C:\Documents and Settings\4\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    ad.yieldmanager.com [ C:\Documents and Settings\4\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    ad.yieldmanager.com [ C:\Documents and Settings\4\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    ad.yieldmanager.com [ C:\Documents and Settings\4\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .content.yieldmanager.com [ C:\Documents and Settings\4\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .adbrite.com [ C:\Documents and Settings\4\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .adbrite.com [ C:\Documents and Settings\4\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .adbrite.com [ C:\Documents and Settings\4\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .adbrite.com [ C:\Documents and Settings\4\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .atdmt.com [ C:\Documents and Settings\4\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .atdmt.com [ C:\Documents and Settings\4\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .adbrite.com [ C:\Documents and Settings\4\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .adbrite.com [ C:\Documents and Settings\4\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .adbrite.com [ C:\Documents and Settings\4\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .adbrite.com [ C:\Documents and Settings\4\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    secure-us.imrworldwide.com [ C:\Documents and Settings\NetworkService\Application Data\Macromedia\Flash Player\#SharedObjects\Z78HW4HF ]
    account.globalagendagame.com [ C:\Documents and Settings\Owner\Application Data\Macromedia\Flash Player\#SharedObjects\5LGC3F5W ]
    cdn.uc.atwola.com [ C:\Documents and Settings\Owner\Application Data\Macromedia\Flash Player\#SharedObjects\5LGC3F5W ]
    crackle.com [ C:\Documents and Settings\Owner\Application Data\Macromedia\Flash Player\#SharedObjects\5LGC3F5W ]
    ia.media-imdb.com [ C:\Documents and Settings\Owner\Application Data\Macromedia\Flash Player\#SharedObjects\5LGC3F5W ]
    media.mtvnservices.com [ C:\Documents and Settings\Owner\Application Data\Macromedia\Flash Player\#SharedObjects\5LGC3F5W ]
    media1.break.com [ C:\Documents and Settings\Owner\Application Data\Macromedia\Flash Player\#SharedObjects\5LGC3F5W ]
    s0.2mdn.net [ C:\Documents and Settings\Owner\Application Data\Macromedia\Flash Player\#SharedObjects\5LGC3F5W ]
    secure-us.imrworldwide.com [ C:\Documents and Settings\Owner\Application Data\Macromedia\Flash Player\#SharedObjects\5LGC3F5W ]
    www.naiadsystems.com [ C:\Documents and Settings\Owner\Application Data\Macromedia\Flash Player\#SharedObjects\5LGC3F5W ]
    C:\Documents and Settings\Owner\Cookies\owner@2o7[1].txt
    C:\Documents and Settings\Owner\Cookies\owner@ad.yieldmanager[1].txt
    C:\Documents and Settings\Owner\Cookies\owner@admarketplace[1].txt
    C:\Documents and Settings\Owner\Cookies\owner@ads.intergi[1].txt
    C:\Documents and Settings\Owner\Cookies\owner@ads.lycos[2].txt
    C:\Documents and Settings\Owner\Cookies\owner@ads.nexon[2].txt
    C:\Documents and Settings\Owner\Cookies\owner@advertise[1].txt
    C:\Documents and Settings\Owner\Cookies\owner@advertising[1].txt
    C:\Documents and Settings\Owner\Cookies\owner@at.atwola[1].txt
    C:\Documents and Settings\Owner\Cookies\owner@atdmt[1].txt
    C:\Documents and Settings\Owner\Cookies\owner@atwola[1].txt
    C:\Documents and Settings\Owner\Cookies\owner@bridge2.admarketplace[1].txt
    C:\Documents and Settings\Owner\Cookies\owner@casalemedia[1].txt
    C:\Documents and Settings\Owner\Cookies\owner@cdn.at.atwola[1].txt
    C:\Documents and Settings\Owner\Cookies\owner@clicksense[1].txt
    C:\Documents and Settings\Owner\Cookies\owner@content.yieldmanager[1].txt
    C:\Documents and Settings\Owner\Cookies\owner@doubleclick[2].txt
    C:\Documents and Settings\Owner\Cookies\owner@invitemedia[1].txt
    C:\Documents and Settings\Owner\Cookies\owner@r1-ads.ace.advertising[2].txt
    C:\Documents and Settings\Owner\Cookies\owner@realmedia[2].txt
    C:\Documents and Settings\Owner\Cookies\owner@revsci[1].txt
    C:\Documents and Settings\Owner\Cookies\owner@search.seekfinds[1].txt
    C:\Documents and Settings\Owner\Cookies\owner@server.cpmstar[2].txt
    C:\Documents and Settings\Owner\Cookies\owner@tacoda.at.atwola[1].txt
    C:\Documents and Settings\Owner\Cookies\owner@theclickcheck[2].txt
    C:\Documents and Settings\Owner\Cookies\owner@www.windowsmedia[2].txt
    .server.cpmstar.com [ C:\Documents and Settings\Owner\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .adultfriendfinder.com [ C:\Documents and Settings\Owner\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .adbrite.com [ C:\Documents and Settings\Owner\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .atdmt.com [ C:\Documents and Settings\Owner\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .serving-sys.com [ C:\Documents and Settings\Owner\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .atdmt.com [ C:\Documents and Settings\Owner\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    ad.yieldmanager.com [ C:\Documents and Settings\Owner\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .media6degrees.com [ C:\Documents and Settings\Owner\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .mm.chitika.net [ C:\Documents and Settings\Owner\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .adxpose.com [ C:\Documents and Settings\Owner\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .invitemedia.com [ C:\Documents and Settings\Owner\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .ru4.com [ C:\Documents and Settings\Owner\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .ads.pointroll.com [ C:\Documents and Settings\Owner\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .pointroll.com [ C:\Documents and Settings\Owner\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .ru4.com [ C:\Documents and Settings\Owner\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .content.yieldmanager.com [ C:\Documents and Settings\Owner\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .tribalfusion.com [ C:\Documents and Settings\Owner\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .pro-market.net [ C:\Documents and Settings\Owner\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .yieldmanager.net [ C:\Documents and Settings\Owner\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .adserver.adtechus.com [ C:\Documents and Settings\Owner\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .myroitracking.com [ C:\Documents and Settings\Owner\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .adbrite.com [ C:\Documents and Settings\Owner\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .clicksor.com [ C:\Documents and Settings\Owner\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .clicksor.com [ C:\Documents and Settings\Owner\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .adbrite.com [ C:\Documents and Settings\Owner\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .interclick.com [ C:\Documents and Settings\Owner\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .interclick.com [ C:\Documents and Settings\Owner\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .a1.interclick.com [ C:\Documents and Settings\Owner\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .a1.interclick.com [ C:\Documents and Settings\Owner\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .a1.interclick.com [ C:\Documents and Settings\Owner\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .a1.interclick.com [ C:\Documents and Settings\Owner\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .a1.interclick.com [ C:\Documents and Settings\Owner\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    dc.tremormedia.com [ C:\Documents and Settings\Owner\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .interclick.com [ C:\Documents and Settings\Owner\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .advertising.com [ C:\Documents and Settings\Owner\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .lucidmedia.com [ C:\Documents and Settings\Owner\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .advertising.com [ C:\Documents and Settings\Owner\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .adbrite.com [ C:\Documents and Settings\Owner\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .kontera.com [ C:\Documents and Settings\Owner\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .kontera.com [ C:\Documents and Settings\Owner\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .kontera.com [ C:\Documents and Settings\Owner\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .ads.pointroll.com [ C:\Documents and Settings\Owner\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .pointroll.com [ C:\Documents and Settings\Owner\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .ads.pointroll.com [ C:\Documents and Settings\Owner\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .ads.pointroll.com [ C:\Documents and Settings\Owner\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .ads.pointroll.com [ C:\Documents and Settings\Owner\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .ads.pointroll.com [ C:\Documents and Settings\Owner\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .ads.pointroll.com [ C:\Documents and Settings\Owner\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .ads.pointroll.com [ C:\Documents and Settings\Owner\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    d4.rallyadadserver.com [ C:\Documents and Settings\Owner\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .server.cpmstar.com [ C:\Documents and Settings\Owner\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .adbrite.com [ C:\Documents and Settings\Owner\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .adbrite.com [ C:\Documents and Settings\Owner\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .adultfriendfinder.com [ C:\Documents and Settings\Owner\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .adultfriendfinder.com [ C:\Documents and Settings\Owner\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .adultfriendfinder.com [ C:\Documents and Settings\Owner\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .adultfriendfinder.com [ C:\Documents and Settings\Owner\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .adultfriendfinder.com [ C:\Documents and Settings\Owner\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .adultfriendfinder.com [ C:\Documents and Settings\Owner\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .adultfriendfinder.com [ C:\Documents and Settings\Owner\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .adbrite.com [ C:\Documents and Settings\Owner\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .serving-sys.com [ C:\Documents and Settings\Owner\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .serving-sys.com [ C:\Documents and Settings\Owner\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .hentaitoplist.org [ C:\Documents and Settings\Owner\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    ad.zanox.com [ C:\Documents and Settings\Owner\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .revsci.net [ C:\Documents and Settings\Owner\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .revsci.net [ C:\Documents and Settings\Owner\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .server.cpmstar.com [ C:\Documents and Settings\Owner\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .server.cpmstar.com [ C:\Documents and Settings\Owner\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .server.cpmstar.com [ C:\Documents and Settings\Owner\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .server.cpmstar.com [ C:\Documents and Settings\Owner\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    ad.yieldmanager.com [ C:\Documents and Settings\Owner\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .technoratimedia.com [ C:\Documents and Settings\Owner\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .technoratimedia.com [ C:\Documents and Settings\Owner\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .technoratimedia.com [ C:\Documents and Settings\Owner\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .technoratimedia.com [ C:\Documents and Settings\Owner\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .technoratimedia.com [ C:\Documents and Settings\Owner\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .technoratimedia.com [ C:\Documents and Settings\Owner\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .imrworldwide.com [ C:\Documents and Settings\Owner\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .imrworldwide.com [ C:\Documents and Settings\Owner\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    BurstMedia [ C:\Documents and Settings\Owner\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .burstbeacon.com [ C:\Documents and Settings\Owner\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .media6degrees.com [ C:\Documents and Settings\Owner\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .media6degrees.com [ C:\Documents and Settings\Owner\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .media6degrees.com [ C:\Documents and Settings\Owner\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .media6degrees.com [ C:\Documents and Settings\Owner\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .advertising.com [ C:\Documents and Settings\Owner\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .advertising.com [ C:\Documents and Settings\Owner\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .advertising.com [ C:\Documents and Settings\Owner\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .adbrite.com [ C:\Documents and Settings\Owner\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .adbrite.com [ C:\Documents and Settings\Owner\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .mediabrandsww.com [ C:\Documents and Settings\Owner\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .game-advertising-online.com [ C:\Documents and Settings\Owner\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .invitemedia.com [ C:\Documents and Settings\Owner\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .invitemedia.com [ C:\Documents and Settings\Owner\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .invitemedia.com [ C:\Documents and Settings\Owner\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .invitemedia.com [ C:\Documents and Settings\Owner\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .invitemedia.com [ C:\Documents and Settings\Owner\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .invitemedia.com [ C:\Documents and Settings\Owner\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    pixel.invitemedia.com [ C:\Documents and Settings\Owner\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .revsci.net [ C:\Documents and Settings\Owner\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    ad.yieldmanager.com [ C:\Documents and Settings\Owner\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    ad.yieldmanager.com [ C:\Documents and Settings\Owner\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    ads.trafficjunky.net [ C:\Documents and Settings\Owner\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    C:\Documents and Settings\pwn\Cookies\pwn@ad.yieldmanager[2].txt
    C:\Documents and Settings\pwn\Cookies\pwn@ads.blogtalkradio[1].txt
    C:\Documents and Settings\pwn\Cookies\pwn@advertising[2].txt
    C:\Documents and Settings\pwn\Cookies\pwn@doubleclick[2].txt
    C:\Documents and Settings\pwn\Cookies\pwn@media6degrees[2].txt
    C:\Documents and Settings\pwn\Cookies\pwn@realmedia[1].txt
    C:\Documents and Settings\pwn\Cookies\pwn@search.clicksthis[1].txt
    C:\Documents and Settings\pwn\Cookies\pwn@yieldmanager[1].txt
    .atdmt.com [ C:\Documents and Settings\pwn\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .media6degrees.com [ C:\Documents and Settings\pwn\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .media6degrees.com [ C:\Documents and Settings\pwn\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .invitemedia.com [ C:\Documents and Settings\pwn\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .ru4.com [ C:\Documents and Settings\pwn\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .ru4.com [ C:\Documents and Settings\pwn\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .adbrite.com [ C:\Documents and Settings\pwn\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .adbrite.com [ C:\Documents and Settings\pwn\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    ad.yieldmanager.com [ C:\Documents and Settings\pwn\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    user.lucidmedia.com [ C:\Documents and Settings\pwn\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .content.yieldmanager.com [ C:\Documents and Settings\pwn\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .atdmt.com [ C:\Documents and Settings\pwn\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .mediabrandsww.com [ C:\Documents and Settings\pwn\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .lucidmedia.com [ C:\Documents and Settings\pwn\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .invitemedia.com [ C:\Documents and Settings\pwn\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    iCityFind.com [ C:\Documents and Settings\pwn\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    Adamide [ C:\Documents and Settings\pwn\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    Find-Quick-Results [ C:\Documents and Settings\pwn\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .advertise.com [ C:\Documents and Settings\pwn\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .ru4.com [ C:\Documents and Settings\pwn\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .simplespotadvertising.com [ C:\Documents and Settings\pwn\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .adserver.adtechus.com [ C:\Documents and Settings\pwn\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .adxpose.com [ C:\Documents and Settings\pwn\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .adbrite.com [ C:\Documents and Settings\pwn\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .adbrite.com [ C:\Documents and Settings\pwn\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .adbrite.com [ C:\Documents and Settings\pwn\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .adknowledge.com [ C:\Documents and Settings\pwn\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .adknowledge.com [ C:\Documents and Settings\pwn\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .adknowledge.com [ C:\Documents and Settings\pwn\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .interclick.com [ C:\Documents and Settings\pwn\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .interclick.com [ C:\Documents and Settings\pwn\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .a1.interclick.com [ C:\Documents and Settings\pwn\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .a1.interclick.com [ C:\Documents and Settings\pwn\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .a1.interclick.com [ C:\Documents and Settings\pwn\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .a1.interclick.com [ C:\Documents and Settings\pwn\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .a1.interclick.com [ C:\Documents and Settings\pwn\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .interclick.com [ C:\Documents and Settings\pwn\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .advertising.com [ C:\Documents and Settings\pwn\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .advertising.com [ C:\Documents and Settings\pwn\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .advertising.com [ C:\Documents and Settings\pwn\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .advertising.com [ C:\Documents and Settings\pwn\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .advertising.com [ C:\Documents and Settings\pwn\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .ads.pointroll.com [ C:\Documents and Settings\pwn\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .pointroll.com [ C:\Documents and Settings\pwn\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .ads.pointroll.com [ C:\Documents and Settings\pwn\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .pointroll.com [ C:\Documents and Settings\pwn\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .ads.pointroll.com [ C:\Documents and Settings\pwn\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .ads.pointroll.com [ C:\Documents and Settings\pwn\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .ads.pointroll.com [ C:\Documents and Settings\pwn\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .ads.pointroll.com [ C:\Documents and Settings\pwn\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .ads.pointroll.com [ C:\Documents and Settings\pwn\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .ads.pointroll.com [ C:\Documents and Settings\pwn\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .imrworldwide.com [ C:\Documents and Settings\pwn\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .imrworldwide.com [ C:\Documents and Settings\pwn\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .tribalfusion.com [ C:\Documents and Settings\pwn\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    ad.yieldmanager.com [ C:\Documents and Settings\pwn\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    ad.yieldmanager.com [ C:\Documents and Settings\pwn\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .invitemedia.com [ C:\Documents and Settings\pwn\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    pixel.invitemedia.com [ C:\Documents and Settings\pwn\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .invitemedia.com [ C:\Documents and Settings\pwn\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .invitemedia.com [ C:\Documents and Settings\pwn\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .invitemedia.com [ C:\Documents and Settings\pwn\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .invitemedia.com [ C:\Documents and Settings\pwn\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .questionmarket.com [ C:\Documents and Settings\pwn\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .questionmarket.com [ C:\Documents and Settings\pwn\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    ad.yieldmanager.com [ C:\Documents and Settings\pwn\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    ad.yieldmanager.com [ C:\Documents and Settings\pwn\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    ad.yieldmanager.com [ C:\Documents and Settings\pwn\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .ads.traffichaus.com [ C:\Documents and Settings\pwn\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .traffichaus.com [ C:\Documents and Settings\pwn\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .youporn.com [ C:\Documents and Settings\pwn\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .youporn.com [ C:\Documents and Settings\pwn\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .youporn.com [ C:\Documents and Settings\pwn\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .youporn.com [ C:\Documents and Settings\pwn\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    youporn.com [ C:\Documents and Settings\pwn\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .youpornmate.com [ C:\Documents and Settings\pwn\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    Live Sex Chat on Cams with Webcam Girls - Hot Live Sex Cams 24/7 for Livesex with Camgirls [ C:\Documents and Settings\pwn\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    ads.crakmedia.com [ C:\Documents and Settings\pwn\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .ero-advertising.com [ C:\Documents and Settings\pwn\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    ads.youporn.com [ C:\Documents and Settings\pwn\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .youporn.com [ C:\Documents and Settings\pwn\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .youporn.com [ C:\Documents and Settings\pwn\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    ads.trafficjunky.net [ C:\Documents and Settings\pwn\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    media.mtvnservices(2).com [ C:\Documents and Settings\PWNTHIS\Application Data\Macromedia\Flash Player\#SharedObjects\2XNWTGDW ]
    media1.break(2).com [ C:\Documents and Settings\PWNTHIS\Application Data\Macromedia\Flash Player\#SharedObjects\2XNWTGDW ]
    secure-us.imrworldwide(2).com [ C:\Documents and Settings\PWNTHIS\Application Data\Macromedia\Flash Player\#SharedObjects\2XNWTGDW ]
    C:\Documents and Settings\PWNTHIS\Cookies\pwnthis@ad.yieldmanager[1].txt
    C:\Documents and Settings\PWNTHIS\Cookies\pwnthis@ads.blogtalkradio[1].txt
    C:\Documents and Settings\PWNTHIS\Cookies\pwnthis@ads.lycos[1].txt
    C:\Documents and Settings\PWNTHIS\Cookies\pwnthis@advertising[1].txt
    C:\Documents and Settings\PWNTHIS\Cookies\pwnthis@at.atwola[1].txt
    C:\Documents and Settings\PWNTHIS\Cookies\pwnthis@atdmt[2].txt
    C:\Documents and Settings\PWNTHIS\Cookies\pwnthis@atwola[1].txt
    C:\Documents and Settings\PWNTHIS\Cookies\pwnthis@content.yieldmanager[2].txt
    C:\Documents and Settings\PWNTHIS\Cookies\pwnthis@dc.tremormedia[1].txt
    C:\Documents and Settings\PWNTHIS\Cookies\pwnthis@media6degrees[2].txt
    C:\Documents and Settings\PWNTHIS\Cookies\pwnthis@mediabrandsww[1].txt
    C:\Documents and Settings\PWNTHIS\Cookies\pwnthis@ru4[1].txt
    C:\Documents and Settings\PWNTHIS\Cookies\pwnthis@search.clicksfind[1].txt
    C:\Documents and Settings\PWNTHIS\Cookies\pwnthis@tacoda.at.atwola[1].txt
    C:\Documents and Settings\PWNTHIS\Cookies\pwnthis@tribalfusion[2].txt
    C:\Documents and Settings\PWNTHIS\Cookies\pwnthis@viacom.adbureau[2].txt
    ad.yieldmanager.com [ C:\Documents and Settings\PWNTHIS\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .ads.pointroll.com [ C:\Documents and Settings\PWNTHIS\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .pointroll.com [ C:\Documents and Settings\PWNTHIS\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .content.yieldmanager.com [ C:\Documents and Settings\PWNTHIS\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .ru4.com [ C:\Documents and Settings\PWNTHIS\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .ru4.com [ C:\Documents and Settings\PWNTHIS\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .atdmt.com [ C:\Documents and Settings\PWNTHIS\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .atdmt.com [ C:\Documents and Settings\PWNTHIS\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .invitemedia.com [ C:\Documents and Settings\PWNTHIS\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .adserver.adtechus.com [ C:\Documents and Settings\PWNTHIS\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .adtechus.com [ C:\Documents and Settings\PWNTHIS\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .adbrite.com [ C:\Documents and Settings\PWNTHIS\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .adxpose.com [ C:\Documents and Settings\PWNTHIS\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .advertising.com [ C:\Documents and Settings\PWNTHIS\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .r1-ads.ace.advertising.com [ C:\Documents and Settings\PWNTHIS\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .lucidmedia.com [ C:\Documents and Settings\PWNTHIS\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .adbrite.com [ C:\Documents and Settings\PWNTHIS\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .adultfriendfinder.com [ C:\Documents and Settings\PWNTHIS\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .adultfriendfinder.com [ C:\Documents and Settings\PWNTHIS\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .adultfriendfinder.com [ C:\Documents and Settings\PWNTHIS\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .adultfriendfinder.com [ C:\Documents and Settings\PWNTHIS\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .adultfriendfinder.com [ C:\Documents and Settings\PWNTHIS\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .adultfriendfinder.com [ C:\Documents and Settings\PWNTHIS\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .adultfriendfinder.com [ C:\Documents and Settings\PWNTHIS\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .adultfriendfinder.com [ C:\Documents and Settings\PWNTHIS\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .server.cpmstar.com [ C:\Documents and Settings\PWNTHIS\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .server.cpmstar.com [ C:\Documents and Settings\PWNTHIS\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    iCityFind.com [ C:\Documents and Settings\PWNTHIS\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    Find-Quick-Results [ C:\Documents and Settings\PWNTHIS\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    FindStuffForMe [ C:\Documents and Settings\PWNTHIS\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .technoratimedia.com [ C:\Documents and Settings\PWNTHIS\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .technoratimedia.com [ C:\Documents and Settings\PWNTHIS\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .technoratimedia.com [ C:\Documents and Settings\PWNTHIS\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .technoratimedia.com [ C:\Documents and Settings\PWNTHIS\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .technoratimedia.com [ C:\Documents and Settings\PWNTHIS\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .media6degrees.com [ C:\Documents and Settings\PWNTHIS\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .ru4.com [ C:\Documents and Settings\PWNTHIS\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    mediaservices-d.openxenterprise.com [ C:\Documents and Settings\PWNTHIS\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .imrworldwide.com [ C:\Documents and Settings\PWNTHIS\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .imrworldwide.com [ C:\Documents and Settings\PWNTHIS\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .twittercounter.com [ C:\Documents and Settings\PWNTHIS\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .twittercounter.com [ C:\Documents and Settings\PWNTHIS\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    in.getclicky.com [ C:\Documents and Settings\PWNTHIS\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .twittercounter.com [ C:\Documents and Settings\PWNTHIS\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .twittercounter.com [ C:\Documents and Settings\PWNTHIS\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .kontera.com [ C:\Documents and Settings\PWNTHIS\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .legolas-media.com [ C:\Documents and Settings\PWNTHIS\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .advertising.com [ C:\Documents and Settings\PWNTHIS\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .yieldmanager.net [ C:\Documents and Settings\PWNTHIS\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .interclick.com [ C:\Documents and Settings\PWNTHIS\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .interclick.com [ C:\Documents and Settings\PWNTHIS\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .interclick.com [ C:\Documents and Settings\PWNTHIS\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    Romanian Sex Tube - Filme porno, porno, filme xxx, xxx, filmulete porno, filmulete xxx, gratis, romanesti, futai, virgine, maturi, grasi, cupluri [ C:\Documents and Settings\PWNTHIS\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    Romanian Sex Tube - Filme porno, porno, filme xxx, xxx, filmulete porno, filmulete xxx, gratis, romanesti, futai, virgine, maturi, grasi, cupluri [ C:\Documents and Settings\PWNTHIS\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .livesexgirls.in [ C:\Documents and Settings\PWNTHIS\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    Live Sex - Webcam - Strip - Sex Chat - livesexgirls.in [ C:\Documents and Settings\PWNTHIS\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .serving-sys.com [ C:\Documents and Settings\PWNTHIS\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .simplespotadvertising.com [ C:\Documents and Settings\PWNTHIS\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .simplespotadvertising.com [ C:\Documents and Settings\PWNTHIS\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .247realmedia.com [ C:\Documents and Settings\PWNTHIS\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .pro-market.net [ C:\Documents and Settings\PWNTHIS\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .simplespotadvertising.com [ C:\Documents and Settings\PWNTHIS\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .invitemedia.com [ C:\Documents and Settings\PWNTHIS\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .invitemedia.com [ C:\Documents and Settings\PWNTHIS\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .viewablemedia.net [ C:\Documents and Settings\PWNTHIS\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .realmedia.com [ C:\Documents and Settings\PWNTHIS\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .collective-media.net [ C:\Documents and Settings\PWNTHIS\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .collective-media.net [ C:\Documents and Settings\PWNTHIS\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .collective-media.net [ C:\Documents and Settings\PWNTHIS\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .collective-media.net [ C:\Documents and Settings\PWNTHIS\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .collective-media.net [ C:\Documents and Settings\PWNTHIS\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .collective-media.net [ C:\Documents and Settings\PWNTHIS\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .realmedia.com [ C:\Documents and Settings\PWNTHIS\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .realmedia.com [ C:\Documents and Settings\PWNTHIS\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .media6degrees.com [ C:\Documents and Settings\PWNTHIS\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .collective-media.net [ C:\Documents and Settings\PWNTHIS\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .collective-media.net [ C:\Documents and Settings\PWNTHIS\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .collective-media.net [ C:\Documents and Settings\PWNTHIS\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .collective-media.net [ C:\Documents and Settings\PWNTHIS\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .media.adfrontiers.com [ C:\Documents and Settings\PWNTHIS\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .game-advertising-online.com [ C:\Documents and Settings\PWNTHIS\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .mediabrandsww.com [ C:\Documents and Settings\PWNTHIS\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .media.adfrontiers.com [ C:\Documents and Settings\PWNTHIS\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .invitemedia.com [ C:\Documents and Settings\PWNTHIS\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    beacon.dmsinsights.com [ C:\Documents and Settings\PWNTHIS\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    beacon.dmsinsights.com [ C:\Documents and Settings\PWNTHIS\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    adx.bidsystem.com [ C:\Documents and Settings\PWNTHIS\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .ru4.com [ C:\Documents and Settings\PWNTHIS\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .insightexpressai.com [ C:\Documents and Settings\PWNTHIS\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    citi.bridgetrack.com [ C:\Documents and Settings\PWNTHIS\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    citi.bridgetrack.com [ C:\Documents and Settings\PWNTHIS\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    citi.bridgetrack.com [ C:\Documents and Settings\PWNTHIS\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    citi.bridgetrack.com [ C:\Documents and Settings\PWNTHIS\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .technoratimedia.com [ C:\Documents and Settings\PWNTHIS\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    Adamide [ C:\Documents and Settings\PWNTHIS\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    FindStuff.com [ C:\Documents and Settings\PWNTHIS\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .xiti.com [ C:\Documents and Settings\PWNTHIS\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .advertise.com [ C:\Documents and Settings\PWNTHIS\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .trafficmp.com [ C:\Documents and Settings\PWNTHIS\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .trafficmp.com [ C:\Documents and Settings\PWNTHIS\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .trafficmp.com [ C:\Documents and Settings\PWNTHIS\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .smartadserver.com [ C:\Documents and Settings\PWNTHIS\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .smartadserver.com [ C:\Documents and Settings\PWNTHIS\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .smartadserver.com [ C:\Documents and Settings\PWNTHIS\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .smartadserver.com [ C:\Documents and Settings\PWNTHIS\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .smartadserver.com [ C:\Documents and Settings\PWNTHIS\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    ext-us.bestofmedia.com [ C:\Documents and Settings\PWNTHIS\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .at.atwola.com [ C:\Documents and Settings\PWNTHIS\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .tacoda.at.atwola.com [ C:\Documents and Settings\PWNTHIS\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .tacoda.at.atwola.com [ C:\Documents and Settings\PWNTHIS\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .tacoda.at.atwola.com [ C:\Documents and Settings\PWNTHIS\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .tacoda.at.atwola.com [ C:\Documents and Settings\PWNTHIS\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .at.atwola.com [ C:\Documents and Settings\PWNTHIS\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .tacoda.at.atwola.com [ C:\Documents and Settings\PWNTHIS\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .advertising.com [ C:\Documents and Settings\PWNTHIS\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .revsci.net [ C:\Documents and Settings\PWNTHIS\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .revsci.net [ C:\Documents and Settings\PWNTHIS\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .revsci.net [ C:\Documents and Settings\PWNTHIS\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .invitemedia.com [ C:\Documents and Settings\PWNTHIS\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .yadro.ru [ C:\Documents and Settings\PWNTHIS\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    jscount.com - Free real-time website monitoring service [ C:\Documents and Settings\PWNTHIS\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    jscount.com - Free real-time website monitoring service [ C:\Documents and Settings\PWNTHIS\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    trafficking.nabbr.com [ C:\Documents and Settings\PWNTHIS\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .questionmarket.com [ C:\Documents and Settings\PWNTHIS\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .questionmarket.com [ C:\Documents and Settings\PWNTHIS\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .technoratimedia.com [ C:\Documents and Settings\PWNTHIS\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .technoratimedia.com [ C:\Documents and Settings\PWNTHIS\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .technoratimedia.com [ C:\Documents and Settings\PWNTHIS\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    s06.flagcounter.com [ C:\Documents and Settings\PWNTHIS\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .collective-media.net [ C:\Documents and Settings\PWNTHIS\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .ero-advertising.com [ C:\Documents and Settings\PWNTHIS\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    ads.crakmedia.com [ C:\Documents and Settings\PWNTHIS\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .intermundomedia.com [ C:\Documents and Settings\PWNTHIS\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .intermundomedia.com [ C:\Documents and Settings\PWNTHIS\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .serving-sys.com [ C:\Documents and Settings\PWNTHIS\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .serving-sys.com [ C:\Documents and Settings\PWNTHIS\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    BurstMedia [ C:\Documents and Settings\PWNTHIS\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .burstbeacon.com [ C:\Documents and Settings\PWNTHIS\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .adlegend.com [ C:\Documents and Settings\PWNTHIS\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .adlegend.com [ C:\Documents and Settings\PWNTHIS\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .content.yieldmanager.com [ C:\Documents and Settings\PWNTHIS\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .specificmedia.com [ C:\Documents and Settings\PWNTHIS\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .a1.interclick.com [ C:\Documents and Settings\PWNTHIS\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .a1.interclick.com [ C:\Documents and Settings\PWNTHIS\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .a1.interclick.com [ C:\Documents and Settings\PWNTHIS\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .adbrite.com [ C:\Documents and Settings\PWNTHIS\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .specificclick.net [ C:\Documents and Settings\PWNTHIS\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .specificclick.net [ C:\Documents and Settings\PWNTHIS\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .specificclick.net [ C:\Documents and Settings\PWNTHIS\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .specificclick.net [ C:\Documents and Settings\PWNTHIS\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .adbrite.com [ C:\Documents and Settings\PWNTHIS\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .adbrite.com [ C:\Documents and Settings\PWNTHIS\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .ads.pointroll.com [ C:\Documents and Settings\PWNTHIS\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .pointroll.com [ C:\Documents and Settings\PWNTHIS\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .ads.pointroll.com [ C:\Documents and Settings\PWNTHIS\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .ads.pointroll.com [ C:\Documents and Settings\PWNTHIS\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .ads.pointroll.com [ C:\Documents and Settings\PWNTHIS\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .ads.pointroll.com [ C:\Documents and Settings\PWNTHIS\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .ads.pointroll.com [ C:\Documents and Settings\PWNTHIS\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .ads.pointroll.com [ C:\Documents and Settings\PWNTHIS\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .interclick.com [ C:\Documents and Settings\PWNTHIS\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .a1.interclick.com [ C:\Documents and Settings\PWNTHIS\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .a1.interclick.com [ C:\Documents and Settings\PWNTHIS\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .server.cpmstar.com [ C:\Documents and Settings\PWNTHIS\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .media6degrees.com [ C:\Documents and Settings\PWNTHIS\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .media6degrees.com [ C:\Documents and Settings\PWNTHIS\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .tribalfusion.com [ C:\Documents and Settings\PWNTHIS\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .legolas-media.com [ C:\Documents and Settings\PWNTHIS\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .legolas-media.com [ C:\Documents and Settings\PWNTHIS\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .kontera.com [ C:\Documents and Settings\PWNTHIS\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .kontera.com [ C:\Documents and Settings\PWNTHIS\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .adbrite.com [ C:\Documents and Settings\PWNTHIS\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .adbrite.com [ C:\Documents and Settings\PWNTHIS\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .adbrite.com [ C:\Documents and Settings\PWNTHIS\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .adbrite.com [ C:\Documents and Settings\PWNTHIS\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .server.cpmstar.com [ C:\Documents and Settings\PWNTHIS\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .server.cpmstar.com [ C:\Documents and Settings\PWNTHIS\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .server.cpmstar.com [ C:\Documents and Settings\PWNTHIS\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .server.cpmstar.com [ C:\Documents and Settings\PWNTHIS\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    ad.yieldmanager.com [ C:\Documents and Settings\PWNTHIS\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .invitemedia.com [ C:\Documents and Settings\PWNTHIS\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .invitemedia.com [ C:\Documents and Settings\PWNTHIS\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .invitemedia.com [ C:\Documents and Settings\PWNTHIS\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .invitemedia.com [ C:\Documents and Settings\PWNTHIS\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    pixel.invitemedia.com [ C:\Documents and Settings\PWNTHIS\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .revsci.net [ C:\Documents and Settings\PWNTHIS\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .revsci.net [ C:\Documents and Settings\PWNTHIS\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .advertising.com [ C:\Documents and Settings\PWNTHIS\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .advertising.com [ C:\Documents and Settings\PWNTHIS\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .advertising.com [ C:\Documents and Settings\PWNTHIS\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .advertising.com [ C:\Documents and Settings\PWNTHIS\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    ad.yieldmanager.com [ C:\Documents and Settings\PWNTHIS\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    ad.yieldmanager.com [ C:\Documents and Settings\PWNTHIS\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    ad.yieldmanager.com [ C:\Documents and Settings\PWNTHIS\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    ad.yieldmanager.com [ C:\Documents and Settings\PWNTHIS\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    ad.yieldmanager.com [ C:\Documents and Settings\PWNTHIS\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    ad.yieldmanager.com [ C:\Documents and Settings\PWNTHIS\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .a1.interclick.com [ C:\Documents and Settings\PWNTHIS\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .a1.interclick.com [ C:\Documents and Settings\PWNTHIS\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .a1.interclick.com [ C:\Documents and Settings\PWNTHIS\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .a1.interclick.com [ C:\Documents and Settings\PWNTHIS\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    media.scanscout.com [ C:\Documents and Settings\random\Application Data\Macromedia\Flash Player\#SharedObjects\7FM48292 ]
    secure-us.imrworldwide.com [ C:\Documents and Settings\random\Application Data\Macromedia\Flash Player\#SharedObjects\7FM48292 ]
    C:\Documents and Settings\random\Cookies\random@adbrite[2].txt
    C:\Documents and Settings\random\Cookies\random@ads.cpxadroit[1].txt
    C:\Documents and Settings\random\Cookies\random@ads.pointroll[1].txt
    C:\Documents and Settings\random\Cookies\random@ads.pubmatic[1].txt
    C:\Documents and Settings\random\Cookies\random@ads.undertone[1].txt
    C:\Documents and Settings\random\Cookies\random@adserver.adtechus[1].txt
    C:\Documents and Settings\random\Cookies\random@adxpose[1].txt
    C:\Documents and Settings\random\Cookies\random@apmebf[1].txt
    C:\Documents and Settings\random\Cookies\random@atdmt[1].txt
    C:\Documents and Settings\random\Cookies\random@clicksense[1].txt
    C:\Documents and Settings\random\Cookies\random@content.yieldmanager[2].txt
    C:\Documents and Settings\random\Cookies\random@dc.tremormedia[1].txt
    C:\Documents and Settings\random\Cookies\random@doubleclick[1].txt
    C:\Documents and Settings\random\Cookies\random@fastclick[2].txt
    C:\Documents and Settings\random\Cookies\random@invitemedia[1].txt
    C:\Documents and Settings\random\Cookies\random@media6degrees[1].txt
    C:\Documents and Settings\random\Cookies\random@parade.122.2o7[1].txt
    C:\Documents and Settings\random\Cookies\random@pointroll[2].txt
    C:\Documents and Settings\random\Cookies\random@realmedia[1].txt
    C:\Documents and Settings\random\Cookies\random@ru4[2].txt
    C:\Documents and Settings\random\Cookies\random@trafficmp[1].txt
    C:\Documents and Settings\random\Cookies\random@tribalfusion[2].txt
    C:\Documents and Settings\random\Cookies\random@yieldmanager[1].txt
    .youporn.com [ C:\Documents and Settings\random\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .youporn.com [ C:\Documents and Settings\random\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .youporn.com [ C:\Documents and Settings\random\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .youporn.com [ C:\Documents and Settings\random\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    youporn.com [ C:\Documents and Settings\random\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .youporn.com [ C:\Documents and Settings\random\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .youporn.com [ C:\Documents and Settings\random\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .youpornmate.com [ C:\Documents and Settings\random\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    ads.youporn.com [ C:\Documents and Settings\random\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .girlsteachsex.com [ C:\Documents and Settings\random\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    NetSearchFinder [ C:\Documents and Settings\random\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    ads.crakmedia.com [ C:\Documents and Settings\random\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    ads.trafficjunky.net [ C:\Documents and Settings\random\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .serving-sys.com [ C:\Documents and Settings\random\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .interclick.com [ C:\Documents and Settings\random\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .interclick.com [ C:\Documents and Settings\random\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .a1.interclick.com [ C:\Documents and Settings\random\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .a1.interclick.com [ C:\Documents and Settings\random\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .interclick.com [ C:\Documents and Settings\random\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .serving-sys.com [ C:\Documents and Settings\random\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .ru4.com [ C:\Documents and Settings\random\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .media6degrees.com [ C:\Documents and Settings\random\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .mediabrandsww.com [ C:\Documents and Settings\random\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .adbrite.com [ C:\Documents and Settings\random\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .adbrite.com [ C:\Documents and Settings\random\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .invitemedia.com [ C:\Documents and Settings\random\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    ad.yieldmanager.com [ C:\Documents and Settings\random\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    ad.yieldmanager.com [ C:\Documents and Settings\random\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .adbrite.com [ C:\Documents and Settings\random\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .adbrite.com [ C:\Documents and Settings\random\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .adbrite.com [ C:\Documents and Settings\random\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .invitemedia.com [ C:\Documents and Settings\random\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .media6degrees.com [ C:\Documents and Settings\random\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    user.lucidmedia.com [ C:\Documents and Settings\random\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .adbrite.com [ C:\Documents and Settings\random\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .adbrite.com [ C:\Documents and Settings\random\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .adbrite.com [ C:\Documents and Settings\random\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .imrworldwide.com [ C:\Documents and Settings\random\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .imrworldwide.com [ C:\Documents and Settings\random\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .atdmt.com [ C:\Documents and Settings\random\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .atdmt.com [ C:\Documents and Settings\random\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .invitemedia.com [ C:\Documents and Settings\random\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .invitemedia.com [ C:\Documents and Settings\random\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .invitemedia.com [ C:\Documents and Settings\random\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .invitemedia.com [ C:\Documents and Settings\random\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .invitemedia.com [ C:\Documents and Settings\random\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .invitemedia.com [ C:\Documents and Settings\random\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .realmedia.com [ C:\Documents and Settings\random\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .network.realmedia.com [ C:\Documents and Settings\random\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .realmedia.com [ C:\Documents and Settings\random\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .realmedia.com [ C:\Documents and Settings\random\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .adserver.adtechus.com [ C:\Documents and Settings\random\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .realmedia.com [ C:\Documents and Settings\random\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .realmedia.com [ C:\Documents and Settings\random\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .realmedia.com [ C:\Documents and Settings\random\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .ru4.com [ C:\Documents and Settings\random\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .serving-sys.com [ C:\Documents and Settings\random\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .serving-sys.com [ C:\Documents and Settings\random\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .advertising.com [ C:\Documents and Settings\random\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .advertising.com [ C:\Documents and Settings\random\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .advertising.com [ C:\Documents and Settings\random\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .advertising.com [ C:\Documents and Settings\random\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    ad.yieldmanager.com [ C:\Documents and Settings\random\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    ad.yieldmanager.com [ C:\Documents and Settings\random\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    ad.yieldmanager.com [ C:\Documents and Settings\random\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    ad.yieldmanager.com [ C:\Documents and Settings\random\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .content.yieldmanager.com [ C:\Documents and Settings\random\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .tribalfusion.com [ C:\Documents and Settings\random\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    dc.tremormedia.com [ C:\Documents and Settings\random\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .collective-media.net [ C:\Documents and Settings\random\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .collective-media.net [ C:\Documents and Settings\random\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .collective-media.net [ C:\Documents and Settings\random\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .collective-media.net [ C:\Documents and Settings\random\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .collective-media.net [ C:\Documents and Settings\random\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .collective-media.net [ C:\Documents and Settings\random\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .collective-media.net [ C:\Documents and Settings\random\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .collective-media.net [ C:\Documents and Settings\random\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .collective-media.net [ C:\Documents and Settings\random\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .questionmarket.com [ C:\Documents and Settings\random\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]
    .questionmarket.com [ C:\Documents and Settings\random\Local Settings\Application Data\Google\Chrome\User Data\Default\Cookies ]

    Trojan.Agent/Gen-Krpytik
    C:\DOCUMENTS AND SETTINGS\ALL USERS\DOCUMENTS\MY PICTURES\SAMPLE PICTURES\FACEGEN MODELLER 3.1 & FACEGEN CUSTOMIZER 1.1\FACEGEN MODELLER 3.1 & FACEGEN CUSTOMIZER 1.1\CUSTOMIZER\CRACK\FACEGEN-KG.EXE
    C:\DOCUMENTS AND SETTINGS\ALL USERS\DOCUMENTS\MY PICTURES\SAMPLE PICTURES\FACEGEN MODELLER 3.1 & FACEGEN CUSTOMIZER 1.1\FACEGEN MODELLER 3.1 & FACEGEN CUSTOMIZER 1.1\MODELLER\FGM312KEY.EXE

  3. #3
    Member
    Join Date
    May 2011
    Posts
    6
    Points
    0

    Default

    Malwarebytes' Anti-Malware 1.50.1.1100
    Malwarebytes : Free anti-malware, anti-virus and spyware removal download

    Database version: 6559

    Windows 5.1.2600 Service Pack 2
    Internet Explorer 6.0.2900.2180

    5/13/2011 4:10:40 AM
    mbam-log-2011-05-13 (04-10-39).txt

    Scan type: Full scan (C:\|)
    Objects scanned: 487034
    Time elapsed: 11 hour(s), 18 minute(s), 53 second(s)

    Memory Processes Infected: 0
    Memory Modules Infected: 0
    Registry Keys Infected: 0
    Registry Values Infected: 0
    Registry Data Items Infected: 0
    Folders Infected: 0
    Files Infected: 0

    Memory Processes Infected:
    (No malicious items detected)

    Memory Modules Infected:
    (No malicious items detected)

    Registry Keys Infected:
    (No malicious items detected)

    Registry Values Infected:
    (No malicious items detected)

    Registry Data Items Infected:
    (No malicious items detected)

    Folders Infected:
    (No malicious items detected)

    Files Infected:
    (No malicious items detected)

  4. #4
    Member
    Join Date
    May 2011
    Posts
    6
    Points
    0

    Default

    Logfile of Trend Micro HijackThis v2.0.2
    Scan saved at 2:38:12 PM, on 5/13/2011
    Platform: Windows XP SP2 (WinNT 5.01.2600)
    MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
    Boot mode: Normal

    Running processes:
    C:\WINDOWS\System32\smss.exe
    C:\WINDOWS\system32\winlogon.exe
    C:\WINDOWS\system32\services.exe
    C:\WINDOWS\system32\lsass.exe
    C:\WINDOWS\system32\svchost.exe
    c:\Program Files\Microsoft Security Client\Antimalware\MsMpEng.exe
    C:\WINDOWS\System32\svchost.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\system32\brsvc01a.exe
    C:\WINDOWS\system32\brss01a.exe
    C:\WINDOWS\system32\spoolsv.exe
    C:\WINDOWS\system32\Brmfrmps.exe
    C:\Program Files\Wave Systems Corp\Common\DataServer.exe
    C:\Program Files\ESET\ESET Smart Security\ekrn.exe
    C:\Program Files\LogMeIn Hamachi\hamachi-2.exe
    C:\Program Files\Java\jre6\bin\jqs.exe
    C:\Program Files\Autodesk\3ds Max 2011\mentalimages\satellite\raysat_3dsmax2011_32server.exe
    C:\Program Files\Dell\QuickSet\NICCONFIGSVC.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\system32\Tablet.exe
    C:\Program Files\NTRU Cryptosystems\NTRU Hybrid TSS v2.0.25\bin\tcsd_win32.exe
    C:\WINDOWS\System32\WLTRYSVC.EXE
    C:\WINDOWS\System32\bcmwltry.exe
    C:\WINDOWS\system32\wuauclt.exe
    C:\WINDOWS\Explorer.EXE
    C:\WINDOWS\system32\WTablet\TabUserW.exe
    C:\WINDOWS\system32\Tablet.exe
    C:\Program Files\Apoint\Apoint.exe
    C:\WINDOWS\system32\WLTRAY.exe
    C:\Program Files\Wave Systems Corp\Services Manager\DocMgr\bin\docmgr.exe
    C:\Program Files\CyberLink\PowerDVD\DVDLauncher.exe
    C:\Program Files\Dell\QuickSet\quickset.exe
    C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
    C:\WINDOWS\System32\DLA\DLACTRLW.EXE
    C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe
    C:\Program Files\Brother\ControlCenter2\brctrcen.exe
    C:\Program Files\ESET\ESET Smart Security\egui.exe
    C:\Program Files\PowerISO\PWRISOVM.EXE
    C:\Program Files\LogMeIn Hamachi\hamachi-2-ui.exe
    C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
    C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe
    C:\Program Files\Adobe\Acrobat 9.0\Acrobat\Acrobat_sl.exe
    C:\Program Files\Adobe\Acrobat 9.0\Acrobat\Acrotray.exe
    C:\Program Files\Apoint\HidFind.exe
    C:\Program Files\Unlocker\UnlockerAssistant.exe
    C:\WINDOWS\system32\hkcmd.exe
    C:\WINDOWS\system32\igfxpers.exe
    C:\WINDOWS\stsystra.exe
    C:\Program Files\Microsoft Security Client\msseces.exe
    C:\Program Files\Google\Google Desktop Search\GoogleDesktopIndex.exe
    C:\WINDOWS\system32\ctfmon.exe
    C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
    C:\Program Files\Digital Line Detect\DLG.exe
    C:\Program Files\Wave Systems Corp\Services Manager\Secure Update\AutoUpdate.exe
    C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
    C:\Program Files\Brother\Brmfcmon\BrMfcWnd.exe
    C:\Program Files\Adobe\Acrobat 9.0\Acrobat\AcroDist.exe
    C:\Program Files\Apoint\Apntex.exe
    C:\WINDOWS\system32\igfxsrvc.exe

  5. #5
    Member
    Join Date
    May 2011
    Posts
    6
    Points
    0

    Default

    Last bit of the hijackthis log was acting up...
    Attached Files

  6. #6
    Member Net_Surfer's Avatar
    Join Date
    May 2008
    Location
    Paradise Ca.
    Posts
    1,179
    Points
    89
    Blog Entries
    4

    Default

    Hello pwnt2j and Welcome to the Help2Go Spyware Help Forum

    Sorry for the delay!!
    .


    My nick is Net_Surfer and I will be helping you with your malware issues, this may or may not solve other issues you may have with your machine.

    Please note that whatever repairs we make, are for fixing "your computer problems only" and by no means should be used on another computer.

    I would also like to inform you that most of us here at Help2Go support forums offer our expert assistance out of the goodness of our hearts. [b][i]Please be courteous and appreciative for the assistance provided!


    Please be patient and I'd be grateful if you would note the following:

    The cleaning process is not instant. Combofix, OTL and hijackthis logs can take some time to research, Please be aware that I am a volunteer here with a job and family so I ask that you be patient when waiting for replies.

    I use Google as resource to research what the problem is just to understand some of the infections that are infecting the computer and understand where I need to focus more on to ensure that the member get the best and honest service.

    so please be patient with me. I know that you need your computer working as quickly as possible, and I will work hard to help see that happen.


    1. Please Read All Instructions Carefully and perform the steps fully and in the order they are written.
    2. If you don't know or understand something, please don't hesitate to say or ask!! It's better to be sure and safe than sorry.
    3. Do not attempt to clean your computer with any tools other than the ones I ask you to use during the cleanup process. Never will there be an all in one solution for repairing an infected computer. You must have a great arsenal of utilities that can take care of what another program may miss or isn't as specialized as another.
    4. In order to see what's going on with your computer I will ask for you to post various logs from the tools that we will use to resolve your issue. Please also share with me any information about how your computer is reacting and behaving each step of the way as we work through this process.
    5. Please avoid installing/uninstalling or updating any programs and attempting any unsupervised fixes or scans. This can make helping you impossible.
    6. Please continue to review my answers until I tell you that your machine is clean and free of malware. (Absence of symptoms does not mean that everything is clear.
    Just because you can't see a problem doesn't mean it isn't there.

    If you can do these things, everything should go smoothly!


    OK..If you have a Vista or Win7 computer ensure that you right click on the tools and run them as an Admin. IF XP double click on the program to run them.

    Before we begin, you should save these instructions in Notepad to your Desktop, or print them, for easy reference and to make sure you don't get lost.
    Make sure to work through the fixes in the exact order in which they are mentioned below and do not miss any steps out. If at any point you have questions, or are unsure of the instructions, do not hesitate to post here and ask for clarification before proceeding with the fixes.

    Please carefully follow the next set of steps:


    If you can not download and run the following tools, then I would like for you to try another approach:

    If you have the use of another computer please either use a Flash Drive or a CD to download the following and transfer them for use on the infected machine.
    Be sure you put them on the desktop of the infected computer.



    Step 1.

    * exeHelper by Raktor.

    Please download: exeHelper to your desktop.
    Double-click on exeHelper.com to run the fix.
    A black window should pop up, press any key to close once the fix is completed.
    Post the contents of exehelperlog.txt (Will be created in the directory where you ran exeHelper.com, and should open at the end of the scan)
    Note: If the window shows a message that says "Error deleting file", please re-run the program before posting a log - and post the two logs together (they will both be in the one file).

    Step 2.

    Download >> ToolBar S&D <-- here
    • Double-click ToolBar S&D.exe
    • Choose the language and hit Enter key, then choose Option 2 (Fix) and hit Enter key again.
    • Wait till the end of the scan

    Copy and paste the log which was created: (%SystemDrive%\TB.txt)

    Next...

    step 3.

    We will use ComboFix to install the Microsoft Recovery Console for windows XP

    - Recent trends appear to indicate that future infections will include attacks to the boot sector of the computer. The installation of the Recovery Console in the computer will be our only defense against this threat.

    Note: If you already have a copy of ComboFix on your system it is essential that you delete it before downloading this copy.

    * Please visit this webpage for instructions for downloading and running ComboFix if you have problems running it:

    Please download ComboFix from one of the following mirrors, and save it to your desktop.
    Warning: This tool is not a toy and not for everyday use!.
    Link 1
    Link 2
    Link 3
    • Please make sure you disable ALL of your Antivirus/Antispyware/Firewall before running ComboFix..This because Security Software may see some components ComboFix uses as suspicious and blocks the tool, or even deletes it. Please visit HERE if you don't know how.
    • Please insert all usb-drives before running Combofix
    • Close any open browsers.
    • Double click on your desktop.
      If using Vista/Win7, right-click and Run as Administrator...
    • Read and accept (Press Yes) to the disclaimer.
    • Follow the prompts...And allow the installation of the Recovery Console!!! <--IMPORTANT
    • WARNING: Combofix will disconnect your machine from the Internet as soon as it starts
    • The scan will temporarily disable your desktop, and if interrupted may leave your desktop disabled. If this occurs, please reboot to restore the desktop.
      Even when ComboFix appears to be doing nothing, look at your Drive light. If it is flashing, Combofix is still at work.
      **Note: Do not mouseclick combofix's window while it's running. That may cause it to stall**
    • *Please do not attempt to re-connect your machine back to the Internet until Combofix has completely finished.
    • If there is no internet connection after running Combofix, then restart your computer to restore back your connection.

      Post the log from ComboFix in your next reply.


    *EXTRA NOTES*

    * If Combofix detects any Rootkit/Bootkit activity on your system it will give a warning and prompt for a reboot, you must allow it to do so.
    * If Combofix reboot's due to a rootkit, the screen may stay black for several minutes on reboot, this is normal
    * If after running Combofix you receive any type of warning message about registry key's being listed for deletion when trying to open certain items, reboot the system and this will fix the issue (Those items will not be deleted)

    Summary of the logs I will need in your next reply:
    • the report log of exe.helper
    • The S&D Toolbar report log.
    • The ComboFix log.

    How are things your end ?


    Upon completing the above steps I will review your logs again and take the steps necessary with you to get your machine back in working order clean and free of malware.

    Again, Please DO NOT make any other changes to your computer (like installing programs, using other cleaning tools, etc.), until it's officially declared clean and free of malware!!!

    The forum is busy and we need to have replies as soon as possible. If I haven't had a reply after 3 days I will bump the topic and if you do not reply by the following day then I will close the topic.

    Kind regards
    Net_Surfer
    Our help here is always free but it does cost money to keep the site running. If you feel we've helped you kindly, Click here: >> Please Donate to the Forum <<


    "Obstacles are what you see when yo take your eyes off your Goals"

    Net_Surfer is a Graduate of BleepingComputer Malware Removal Training ProgramYou too could train to help others!.

  7. #7
    Member
    Join Date
    May 2011
    Posts
    6
    Points
    0

    Default

    exeHelper by Raktor
    Build 20100414
    Run at 10:20:42 on 05/14/11
    Now searching...
    Checking for numerical processes...
    Checking for sysguard processes...
    Checking for bad processes...
    Checking for bad files...
    Checking for bad registry entries...
    Resetting filetype association for .exe
    Resetting filetype association for .com
    Resetting userinit and shell values...
    Resetting policies...
    --Finished--

    ComboFix 11-05-13.03 - 5 05/14/2011 11:48:14.1.2 - x86
    Microsoft Windows XP Professional 5.1.2600.2.1252.1.1033.18.1014.536 [GMT -4:00]
    Running from: c:\documents and settings\5\Desktop\ComboFix.exe
    AV: ESET Smart Security 4.0 *Disabled/Updated* {E5E70D32-0101-4F12-8FB0-D96ACA4F34C0}
    AV: Microsoft Security Essentials *Disabled/Updated* {EDB4FA23-53B8-4AFA-8C5D-99752CCA7095}
    FW: ESET Personal firewall *Disabled* {E5E70D32-0101-4340-86A3-A7B0F1C8FFE0}
    * Resident AV is active
    .
    .
    WARNING -THIS MACHINE DOES NOT HAVE THE RECOVERY CONSOLE INSTALLED !!
    .
    .
    ((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
    .
    .
    c:\documents and settings\4\Application Data\PriceGong
    c:\documents and settings\4\Application Data\PriceGong\Data\1.xml
    c:\documents and settings\4\Application Data\PriceGong\Data\a.xml
    c:\documents and settings\4\Application Data\PriceGong\Data\b.xml
    c:\documents and settings\4\Application Data\PriceGong\Data\c.xml
    c:\documents and settings\4\Application Data\PriceGong\Data\d.xml
    c:\documents and settings\4\Application Data\PriceGong\Data\e.xml
    c:\documents and settings\4\Application Data\PriceGong\Data\f.xml
    c:\documents and settings\4\Application Data\PriceGong\Data\g.xml
    c:\documents and settings\4\Application Data\PriceGong\Data\h.xml
    c:\documents and settings\4\Application Data\PriceGong\Data\i.xml
    c:\documents and settings\4\Application Data\PriceGong\Data\J.xml
    c:\documents and settings\4\Application Data\PriceGong\Data\k.xml
    c:\documents and settings\4\Application Data\PriceGong\Data\l.xml
    c:\documents and settings\4\Application Data\PriceGong\Data\m.xml
    c:\documents and settings\4\Application Data\PriceGong\Data\mru.xml
    c:\documents and settings\4\Application Data\PriceGong\Data\n.xml
    c:\documents and settings\4\Application Data\PriceGong\Data\o.xml
    c:\documents and settings\4\Application Data\PriceGong\Data\p.xml
    c:\documents and settings\4\Application Data\PriceGong\Data\q.xml
    c:\documents and settings\4\Application Data\PriceGong\Data\r.xml
    c:\documents and settings\4\Application Data\PriceGong\Data\s.xml
    c:\documents and settings\4\Application Data\PriceGong\Data\t.xml
    c:\documents and settings\4\Application Data\PriceGong\Data\u.xml
    c:\documents and settings\4\Application Data\PriceGong\Data\v.xml
    c:\documents and settings\4\Application Data\PriceGong\Data\w.xml
    c:\documents and settings\4\Application Data\PriceGong\Data\x.xml
    c:\documents and settings\4\Application Data\PriceGong\Data\y.xml
    c:\documents and settings\4\Application Data\PriceGong\Data\z.xml
    c:\documents and settings\5\Application Data\PriceGong
    c:\documents and settings\5\Application Data\PriceGong\Data\1.xml
    c:\documents and settings\5\Application Data\PriceGong\Data\a.xml
    c:\documents and settings\5\Application Data\PriceGong\Data\b.xml
    c:\documents and settings\5\Application Data\PriceGong\Data\c.xml
    c:\documents and settings\5\Application Data\PriceGong\Data\d.xml
    c:\documents and settings\5\Application Data\PriceGong\Data\e.xml
    c:\documents and settings\5\Application Data\PriceGong\Data\f.xml
    c:\documents and settings\5\Application Data\PriceGong\Data\g.xml
    c:\documents and settings\5\Application Data\PriceGong\Data\h.xml
    c:\documents and settings\5\Application Data\PriceGong\Data\i.xml
    c:\documents and settings\5\Application Data\PriceGong\Data\J.xml
    c:\documents and settings\5\Application Data\PriceGong\Data\k.xml
    c:\documents and settings\5\Application Data\PriceGong\Data\l.xml
    c:\documents and settings\5\Application Data\PriceGong\Data\m.xml
    c:\documents and settings\5\Application Data\PriceGong\Data\mru.xml
    c:\documents and settings\5\Application Data\PriceGong\Data\n.xml
    c:\documents and settings\5\Application Data\PriceGong\Data\o.xml
    c:\documents and settings\5\Application Data\PriceGong\Data\p.xml
    c:\documents and settings\5\Application Data\PriceGong\Data\q.xml
    c:\documents and settings\5\Application Data\PriceGong\Data\r.xml
    c:\documents and settings\5\Application Data\PriceGong\Data\s.xml
    c:\documents and settings\5\Application Data\PriceGong\Data\t.xml
    c:\documents and settings\5\Application Data\PriceGong\Data\u.xml
    c:\documents and settings\5\Application Data\PriceGong\Data\v.xml
    c:\documents and settings\5\Application Data\PriceGong\Data\w.xml
    c:\documents and settings\5\Application Data\PriceGong\Data\x.xml
    c:\documents and settings\5\Application Data\PriceGong\Data\y.xml
    c:\documents and settings\5\Application Data\PriceGong\Data\z.xml
    c:\documents and settings\Administrator\Application Data\PriceGong
    c:\documents and settings\Administrator\Application Data\PriceGong\Data\1.xml
    c:\documents and settings\Administrator\Application Data\PriceGong\Data\a.xml
    c:\documents and settings\Administrator\Application Data\PriceGong\Data\b.xml
    c:\documents and settings\Administrator\Application Data\PriceGong\Data\c.xml
    c:\documents and settings\Administrator\Application Data\PriceGong\Data\d.xml
    c:\documents and settings\Administrator\Application Data\PriceGong\Data\e.xml
    c:\documents and settings\Administrator\Application Data\PriceGong\Data\f.xml
    c:\documents and settings\Administrator\Application Data\PriceGong\Data\g.xml
    c:\documents and settings\Administrator\Application Data\PriceGong\Data\h.xml
    c:\documents and settings\Administrator\Application Data\PriceGong\Data\i.xml
    c:\documents and settings\Administrator\Application Data\PriceGong\Data\J.xml
    c:\documents and settings\Administrator\Application Data\PriceGong\Data\k.xml
    c:\documents and settings\Administrator\Application Data\PriceGong\Data\l.xml
    c:\documents and settings\Administrator\Application Data\PriceGong\Data\m.xml
    c:\documents and settings\Administrator\Application Data\PriceGong\Data\mru.xml
    c:\documents and settings\Administrator\Application Data\PriceGong\Data\n.xml
    c:\documents and settings\Administrator\Application Data\PriceGong\Data\o.xml
    c:\documents and settings\Administrator\Application Data\PriceGong\Data\p.xml
    c:\documents and settings\Administrator\Application Data\PriceGong\Data\q.xml
    c:\documents and settings\Administrator\Application Data\PriceGong\Data\r.xml
    c:\documents and settings\Administrator\Application Data\PriceGong\Data\s.xml
    c:\documents and settings\Administrator\Application Data\PriceGong\Data\t.xml
    c:\documents and settings\Administrator\Application Data\PriceGong\Data\u.xml
    c:\documents and settings\Administrator\Application Data\PriceGong\Data\v.xml
    c:\documents and settings\Administrator\Application Data\PriceGong\Data\w.xml
    c:\documents and settings\Administrator\Application Data\PriceGong\Data\x.xml
    c:\documents and settings\Administrator\Application Data\PriceGong\Data\y.xml
    c:\documents and settings\Administrator\Application Data\PriceGong\Data\z.xml
    C:\install.exe
    c:\windows\AppPatch\Custom\{deb7008b-681e-4a4a-8aae-cc833e8216ce}.sdb
    c:\windows\system32\_000039_.tmp.dll
    c:\windows\system32\Thumbs.db
    .
    .
    ((((((((((((((((((((((((( Files Created from 2011-04-14 to 2011-05-14 )))))))))))))))))))))))))))))))
    .
    .
    2011-05-14 16:12 . 2011-05-14 16:12 28752 ----a-w- c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{26795E46-3FC8-4AE7-97AF-91BFB9A529C6}\MpKsld12b896f.sys
    2011-05-14 14:33 . 2011-05-14 14:38 -------- dc----w- C:\ToolBar SD
    2011-05-12 06:49 . 2010-12-20 22:09 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
    2011-05-12 06:49 . 2010-12-20 22:08 20952 ----a-w- c:\windows\system32\drivers\mbam.sys
    2011-05-12 06:45 . 2011-05-12 06:45 -------- d-----w- c:\program files\Trend Micro
    2011-05-12 04:54 . 2011-05-12 04:54 -------- d-----w- c:\documents and settings\All Users\Application Data\SUPERAntiSpyware.com
    2011-05-12 03:51 . 2011-05-12 04:54 -------- d-----w- c:\program files\SUPERAntiSpyware
    2011-05-11 21:41 . 2011-05-11 21:41 -------- d-----w- c:\program files\CCleaner
    2011-05-09 00:05 . 2011-05-09 00:05 -------- d-----w- c:\documents and settings\NetworkService\Local Settings\Application Data\PCHealth
    2011-05-08 04:39 . 2011-04-18 13:15 7071056 ------w- c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{26795E46-3FC8-4AE7-97AF-91BFB9A529C6}\mpengine.dll
    2011-05-08 04:38 . 2011-02-02 22:11 222080 ------w- c:\windows\system32\MpSigStub.exe
    2011-05-08 04:26 . 2011-05-08 04:27 -------- d-----w- c:\program files\Microsoft Security Client
    2011-05-06 18:11 . 2011-05-06 18:11 -------- dc----w- C:\Games
    2011-05-05 20:43 . 2005-12-14 04:40 135168 ----a-w- c:\windows\system32\igfxres.dll
    2011-05-05 20:30 . 2004-08-04 10:00 41600 -c--a-w- c:\windows\system32\dllcache\weitekp9.dll
    2011-05-05 20:30 . 2004-08-04 10:00 31232 -c--a-w- c:\windows\system32\dllcache\weitekp9.sys
    2011-05-05 20:30 . 2004-08-04 10:00 31232 -c--a-w- c:\windows\system32\dllcache\tools.dll
    2011-05-05 20:30 . 2004-08-04 10:00 101376 -c--a-w- c:\windows\system32\dllcache\srusbusd.dll
    2011-05-05 20:28 . 2004-08-04 10:00 6656 -c--a-w- c:\windows\system32\dllcache\iissync.exe
    2011-05-05 20:27 . 2004-08-04 10:00 7168 -c--a-w- c:\windows\system32\dllcache\wamregps.dll
    2011-05-05 20:24 . 2004-08-04 10:00 16384 -c--a-w- c:\windows\system32\dllcache\isignup.exe
    2011-05-05 20:24 . 2004-08-04 10:00 16384 ----a-w- c:\program files\Internet Explorer\Connection Wizard\isignup.exe
    2011-05-05 19:51 . 2004-08-04 10:00 24661 ----a-w- c:\windows\system32\spxcoins.dll
    2011-05-05 19:51 . 2004-08-04 10:00 13312 -c--a-w- c:\windows\system32\dllcache\irclass.dll
    2011-05-05 19:51 . 2004-08-04 10:00 13312 ----a-w- c:\windows\system32\irclass.dll
    2011-05-05 19:51 . 2006-03-30 10:03 22339 ----a-r- c:\windows\SET149.tmp
    2011-05-05 19:51 . 2005-03-30 17:54 10559 ----a-r- c:\windows\SET14A.tmp
    2011-05-05 19:51 . 2004-08-04 10:00 13753 ----a-r- c:\windows\SET10D.tmp
    2011-05-05 19:51 . 2004-08-04 10:00 1086058 ----a-r- c:\windows\SET101.tmp
    2011-05-05 19:51 . 2004-08-04 10:00 1042903 ----a-r- c:\windows\SETFE.tmp
    2011-05-05 19:50 . 2011-05-05 19:50 -------- d-s---w- c:\windows\system32\config\systemprofile\History
    2011-05-05 19:14 . 2011-05-07 04:19 19416 ----a-w- c:\program files\Mozilla Firefox\xpcom.dll
    2011-05-05 19:14 . 2011-05-07 04:19 261080 ----a-w- c:\program files\Mozilla Firefox\updater.exe
    2011-05-05 18:14 . 2011-05-05 18:14 -------- d-sh--w- c:\documents and settings\NetworkService\IETldCache
    2011-05-05 18:02 . 2011-05-05 18:02 0 ----a-w- c:\windows\Cbocuja.bin
    2011-05-05 18:00 . 2011-05-05 18:00 -------- d-sh--w- c:\documents and settings\LocalService\IETldCache
    2011-05-02 02:22 . 2011-05-02 02:26 -------- dc-h--w- c:\windows\ie8
    2011-05-01 00:27 . 2011-05-14 02:09 -------- dc----w- c:\documents and settings\5
    2011-04-30 00:40 . 2006-03-30 10:03 22339 ----a-r- c:\windows\SET172.tmp
    2011-04-30 00:40 . 2005-03-30 17:54 10559 ----a-r- c:\windows\SET173.tmp
    2011-04-30 00:40 . 2004-08-04 10:00 13753 ----a-r- c:\windows\SET137.tmp
    2011-04-30 00:39 . 2004-08-04 10:00 1086058 ----a-r- c:\windows\SET12B.tmp
    2011-04-30 00:39 . 2004-08-04 10:00 1042903 ----a-r- c:\windows\SET128.tmp
    2011-04-30 00:14 . 2011-05-02 17:19 -------- dc----w- c:\documents and settings\4
    2011-04-29 20:23 . 2011-04-29 20:23 -------- d-----w- c:\windows\dell
    2011-04-29 02:23 . 2011-04-29 17:53 -------- dc----w- c:\documents and settings\2
    2011-04-23 17:11 . 2011-04-29 02:23 -------- dc----w- c:\documents and settings\1
    2011-04-22 00:00 . 2011-05-07 04:19 142296 ----a-w- c:\program files\Mozilla Firefox\components\browsercomps.dll
    2011-04-21 23:59 . 2011-05-07 04:19 711672 ----a-w- c:\program files\Mozilla Firefox\uninstall\helper.exe
    2011-04-21 23:59 . 2011-05-07 04:19 14117848 ----a-w- c:\program files\Mozilla Firefox\xul.dll
    2011-04-21 23:59 . 2011-05-07 04:19 166872 ----a-w- c:\program files\Mozilla Firefox\softokn3.dll
    2011-04-21 23:59 . 2011-05-07 04:19 142296 ----a-w- c:\program files\Mozilla Firefox\ssl3.dll
    2011-04-21 23:59 . 2011-05-07 04:19 105432 ----a-w- c:\program files\Mozilla Firefox\smime3.dll
    2011-04-21 18:17 . 2011-04-22 15:00 -------- dc----w- c:\documents and settings\random
    2011-04-19 16:13 . 2011-04-19 16:14 -------- d-----w- c:\documents and settings\NetworkService\Local Settings\Application Data\Temp
    2011-04-18 21:32 . 2011-05-12 02:21 -------- d-----w- c:\documents and settings\All Users\Application Data\Spybot - Search & Destroy
    2011-04-18 21:32 . 2011-04-19 15:33 -------- d-----w- c:\program files\Spybot - Search & Destroy
    2011-04-18 21:08 . 2011-04-21 03:06 -------- d-----w- c:\program files\Unlocker
    2011-04-18 20:04 . 2011-04-21 18:17 -------- dc----w- c:\documents and settings\pwn
    2011-04-18 03:37 . 2011-04-18 03:37 -------- dc----w- c:\documents and settings\PWNTHIS\Local Settings\Application Data\AIM
    2011-04-18 03:37 . 2011-04-18 03:37 -------- dc----w- c:\documents and settings\PWNTHIS\Local Settings\Application Data\AOL
    2011-04-17 22:08 . 2011-04-17 22:08 -------- d-----w- c:\program files\zabkat
    2011-04-17 21:43 . 2011-04-17 21:43 -------- d-----w- c:\windows\system32\wbem\Repository
    2011-04-14 19:43 . 2011-04-14 19:43 -------- d-----w- c:\documents and settings\All Users\Application Data\Malwarebytes
    2011-04-14 19:43 . 2011-05-12 06:49 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
    .
    .
    .
    (((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
    .
    2011-03-24 20:38 . 2011-03-24 00:45 249856 ----a-w- c:\windows\Setup1.exe
    2011-03-24 20:38 . 2011-03-24 00:45 73216 ----a-w- c:\windows\ST6UNST.EXE
    2011-05-07 04:19 . 2011-04-22 00:00 142296 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll
    .
    .
    ((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
    .
    .
    *Note* empty entries & legit default entries are not shown
    REGEDIT4
    .
    [HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{30F9B915-B755-4826-820B-08FBA6BD249D}]
    2011-04-18 21:44 3911776 ----a-w- c:\program files\ConduitEngine\ConduitEngin0.dll
    .
    [HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{88c7f2aa-f93f-432c-8f0e-b7d85967a527}]
    2011-04-18 21:44 3911776 ----a-w- c:\program files\BitTorrentBar\tbBit1.dll
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
    "{88c7f2aa-f93f-432c-8f0e-b7d85967a527}"= "c:\program files\BitTorrentBar\tbBit1.dll" [2011-04-18 3911776]
    "{30F9B915-B755-4826-820B-08FBA6BD249D}"= "c:\program files\ConduitEngine\ConduitEngin0.dll" [2011-04-18 3911776]
    .
    [HKEY_CLASSES_ROOT\clsid\{88c7f2aa-f93f-432c-8f0e-b7d85967a527}]
    .
    [HKEY_CLASSES_ROOT\clsid\{30f9b915-b755-4826-820b-08fba6bd249d}]
    .
    [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\Webbrowser]
    "{88C7F2AA-F93F-432C-8F0E-B7D85967A527}"= "c:\program files\BitTorrentBar\tbBit1.dll" [2011-04-18 3911776]
    .
    [HKEY_CLASSES_ROOT\clsid\{88c7f2aa-f93f-432c-8f0e-b7d85967a527}]
    .
    [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
    "SUPERAntiSpyware"="c:\program files\SUPERAntiSpyware\SUPERAntiSpyware.exe" [2011-04-20 2423752]
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
    "Apoint"="c:\program files\Apoint\Apoint.exe" [2005-10-08 176128]
    "Broadcom Wireless Manager UI"="c:\windows\system32\WLTRAY.exe" [2005-12-19 1347584]
    "Document Manager"="c:\program files\Wave Systems Corp\Services Manager\DocMgr\bin\docmgr.exe" [2006-05-16 102400]
    "DVDLauncher"="c:\program files\CyberLink\PowerDVD\DVDLauncher.exe" [2005-12-10 49152]
    "Dell QuickSet"="c:\program files\Dell\QuickSet\quickset.exe" [2006-06-29 1032192]
    "Google Desktop Search"="c:\program files\Google\Google Desktop Search\GoogleDesktop.exe" [2006-09-27 169984]
    "DLA"="c:\windows\System32\DLA\DLACTRLW.EXE" [2005-09-08 122940]
    "ISUSPM Startup"="c:\progra~1\COMMON~1\INSTAL~1\UPDATE~1\ISUSPM.exe" [2004-07-27 221184]
    "ISUSScheduler"="c:\program files\Common Files\InstallShield\UpdateService\issch.exe" [2004-07-27 81920]
    "Synchronization Manager"="c:\windows\system32\mobsync.exe" [2004-08-04 143360]
    "ControlCenter2.0"="c:\program files\Brother\ControlCenter2\brctrcen.exe" [2005-11-11 995328]
    "egui"="c:\program files\ESET\ESET Smart Security\egui.exe" [2009-11-16 2054360]
    "IMJPMIG8.1"="c:\windows\IME\imjp8_1\IMJPMIG.EXE" [2004-08-04 208952]
    "IMEKRMIG6.1"="c:\windows\ime\imkr6_1\IMEKRMIG.EXE" [2004-08-04 44032]
    "PWRISOVM.EXE"="c:\program files\PowerISO\PWRISOVM.EXE" [2008-11-02 167936]
    "LogMeIn Hamachi Ui"="c:\program files\LogMeIn Hamachi\hamachi-2-ui.exe" [2010-03-30 1820040]
    "GrooveMonitor"="c:\program files\Microsoft Office\Office12\GrooveMonitor.exe" [2006-10-27 31016]
    "Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2011-01-31 35760]
    "Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2010-09-21 932288]
    "AdobeCS4ServiceManager"="c:\program files\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe" [2010-11-15 611712]
    "Adobe Acrobat Speed Launcher"="c:\program files\Adobe\Acrobat 9.0\Acrobat\Acrobat_sl.exe" [2011-01-31 38840]
    "Acrobat Assistant 8.0"="c:\program files\Adobe\Acrobat 9.0\Acrobat\Acrotray.exe" [2010-09-22 640440]
    "QuickTime Task"="c:\program files\QuickTime\qttask.exe" [2010-11-29 421888]
    "UnlockerAssistant"="c:\program files\Unlocker\UnlockerAssistant.exe" [2010-07-04 17408]
    "igfxtray"="c:\windows\system32\igfxtray.exe" [2005-12-14 98304]
    "igfxhkcmd"="c:\windows\system32\hkcmd.exe" [2005-12-14 77824]
    "igfxpers"="c:\windows\system32\igfxpers.exe" [2005-12-14 118784]
    "SigmatelSysTrayApp"="stsystra.exe" [2006-03-25 282624]
    "MSC"="c:\program files\Microsoft Security Client\msseces.exe" [2010-11-30 997408]
    .
    [HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
    "DWQueuedReporting"="c:\progra~1\COMMON~1\MICROS~1\DW\dwtrig20.exe" [2007-02-26 437160]
    .
    c:\documents and settings\All Users\Start Menu\Programs\Startup\
    Digital Line Detect.lnk - c:\program files\Digital Line Detect\DLG.exe [2006-9-27 24576]
    EMBASSY Trust Suite Secure Update.lnk - c:\program files\Wave Systems Corp\Services Manager\Secure Update\AutoUpdate.exe [2006-1-30 192512]
    Microsoft Office.lnk - c:\program files\Microsoft Office\Office10\OSA.EXE [2001-2-13 83360]
    Status Monitor.lnk - c:\program files\Brother\Brmfcmon\BrMfcWnd.exe [2007-8-26 802816]
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
    "DisableCAD"= 1 (0x1)
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\explorer]
    "NoWelcomeScreen"= 1 (0x1)
    .
    [hkey_local_machine\software\microsoft\windows\currentversion\explorer\ShellExecuteHooks]
    "{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA}"= "c:\program files\SUPERAntiSpyware\SASSEH.DLL" [2008-05-13 77824]
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\!SASWinLogon]
    2009-09-03 22:21 548352 ----a-w- c:\program files\SUPERAntiSpyware\SASWINLO.DLL
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\windows]
    "AppInit_DLLs"=c:\windows\system32\wxvault.dll
    .
    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]
    @="Service"
    .
    [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
    "EnableFirewall"= 0 (0x0)
    "DisableNotifications"= 1 (0x1)
    .
    [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
    "%windir%\\system32\\sessmgr.exe"=
    "c:\\Program Files\\BitTorrent\\bittorrent.exe"=
    "c:\\Program Files\\AIM\\aim.exe"=
    "c:\\Documents and Settings\\All Users\\Application Data\\NexonUS\\NGM\\NGM.exe"=
    "c:\\Program Files\\Microsoft Office\\Office12\\ONENOTE.EXE"=
    "c:\\Program Files\\Autodesk\\Backburner\\monitor.exe"=
    "c:\\Program Files\\Autodesk\\Backburner\\manager.exe"=
    "c:\\Program Files\\Autodesk\\Backburner\\server.exe"=
    "c:\\Program Files\\Autodesk\\3ds Max 2011\\3dsmax.exe"=
    "c:\\Program Files\\Autodesk\\3ds Max 2011\\mentalimages\\satellite\\raysat_3dsmax2011_32server.exe"=
    "c:\\Program Files\\Autodesk\\3ds Max 2011\\mentalimages\\satellite\\raysat_3dsmax2011_32.exe"=
    "c:\\Program Files\\Microsoft Office\\Office12\\OUTLOOK.EXE"=
    "c:\\Program Files\\Microsoft Office\\Office12\\GROOVE.EXE"=
    "c:\\Program Files\\Common Files\\Adobe\\CS4ServiceManager\\CS4ServiceManager.exe"=
    "c:\\Program Files\\Common Files\\Adobe\\Adobe Version Cue CS4\\Server\\bin\\VersionCueCS4.exe"=
    "c:\\Program Files\\Pando Networks\\Media Booster\\PMB.exe"=
    "c:\\Program Files\\Skype\\Phone\\Skype.exe"=
    "c:\\Program Files\\Skype\\Plugin Manager\\skypePM.exe"=
    .
    [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
    "56803:TCP"= 56803:TCP:Pando Media Booster
    "56803:UDP"= 56803:UDP:Pando Media Booster
    "58238:TCP"= 58238:TCP:Pando Media Booster
    "58238:UDP"= 58238:UDP:Pando Media Booster
    "5353:TCP"= 5353:TCP:Adobe CSI CS4
    "3703:TCP"= 3703:TCP:Adobe Version Cue CS4 Server
    "3704:TCP"= 3704:TCP:Adobe Version Cue CS4 Server
    "51000:TCP"= 51000:TCP:Adobe Version Cue CS4 Server
    "51001:TCP"= 51001:TCP:Adobe Version Cue CS4 Server
    "56998:TCP"= 56998:TCP:Pando Media Booster
    "56998:UDP"= 56998:UDP:Pando Media Booster
    .
    R1 ehdrv;ehdrv;c:\windows\system32\drivers\ehdrv.sys [11/16/2009 10:03 AM 108792]
    R1 MpKsld12b896f;MpKsld12b896f;c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{26795E46-3FC8-4AE7-97AF-91BFB9A529C6}\MpKsld12b896f.sys [5/14/2011 12:12 PM 28752]
    R1 SASDIFSV;SASDIFSV;c:\program files\SUPERAntiSpyware\sasdifsv.sys [2/17/2010 2:25 PM 12872]
    R1 SASKUTIL;SASKUTIL;c:\program files\SUPERAntiSpyware\SASKUTIL.SYS [5/10/2010 2:41 PM 67656]
    R2 ekrn;ESET Service;c:\program files\ESET\ESET Smart Security\ekrn.exe [11/16/2009 10:04 AM 735960]
    R2 Hamachi2Svc;LogMeIn Hamachi 2.0 Tunneling Engine;c:\program files\LogMeIn Hamachi\hamachi-2.exe [3/30/2010 11:16 AM 1107336]
    R2 mi-raysat_3dsmax2011_32;mental ray 3.8 Satellite for Autodesk 3ds Max 2011 32-bit 32-bit;c:\program files\Autodesk\3ds Max 2011\mentalimages\satellite\raysat_3dsmax2011_32server.exe [3/10/2010 2:10 AM 86016]
    S0 cgkxyca;cgkxyca;c:\windows\system32\drivers\mmup.sys --> c:\windows\system32\drivers\mmup.sys [?]
    S1 MpKsl5c2801be;MpKsl5c2801be;\??\c:\windows\system32\MpEngineStore\MpKsl5c2801be.sys --> c:\windows\system32\MpEngineStore\MpKsl5c2801be.sys [?]
    S1 MpKsled24447a;MpKsled24447a;\??\c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{26795E46-3FC8-4AE7-97AF-91BFB9A529C6}\MpKsled24447a.sys --> c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{26795E46-3FC8-4AE7-97AF-91BFB9A529C6}\MpKsled24447a.sys [?]
    S2 gupdate;Google Update Service (gupdate);c:\program files\Google\Update\GoogleUpdate.exe [2/10/2010 8:52 PM 135664]
    S3 Adobe Version Cue CS4;Adobe Version Cue CS4;c:\program files\Common Files\Adobe\Adobe Version Cue CS4\Server\bin\VersionCueCS4.exe [8/15/2008 6:46 AM 288112]
    S3 AhnRptTfFRegFNT;AhnRptTfFRegFNT;\??\c:\docume~1\ADMINI~1\LOCALS~1\Temp\nsn20F.tmp\TfFRegNt.sys --> c:\docume~1\ADMINI~1\LOCALS~1\Temp\nsn20F.tmp\TfFRegNt.sys [?]
    S3 arusb(Atheros);Atheros Wireless Network Adapter Service(Atheros);c:\windows\system32\drivers\arusb.sys [2/4/2010 6:26 PM 434688]
    S3 cpudrv;cpudrv;c:\program files\SystemRequirementsLab\cpudrv.sys [12/18/2009 12:58 PM 11336]
    S3 gupdatem;Google Update Service (gupdatem);c:\program files\Google\Update\GoogleUpdate.exe [2/10/2010 8:52 PM 135664]
    S3 npggsvc;nProtect GameGuard Service;c:\windows\system32\GameMon.des -service --> c:\windows\system32\GameMon.des -service [?]
    S3 XDva285;XDva285;\??\c:\windows\system32\XDva285.sys --> c:\windows\system32\XDva285.sys [?]
    S3 XDva312;XDva312;\??\c:\windows\system32\XDva312.sys --> c:\windows\system32\XDva312.sys [?]
    S3 XDva320;XDva320;\??\c:\windows\system32\XDva320.sys --> c:\windows\system32\XDva320.sys [?]
    .
    --- Other Services/Drivers In Memory ---
    .
    *NewlyCreated* - MPKSLD12B896F
    .
    Contents of the 'Scheduled Tasks' folder
    .
    2011-05-04 c:\windows\Tasks\AppleSoftwareUpdate.job
    - c:\program files\Apple Software Update\SoftwareUpdate.exe [2008-07-30 17:34]
    .
    2011-05-14 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
    - c:\program files\Google\Update\GoogleUpdate.exe [2010-02-11 00:52]
    .
    2011-05-14 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
    - c:\program files\Google\Update\GoogleUpdate.exe [2010-02-11 00:52]
    .
    2011-05-14 c:\windows\Tasks\MP Scheduled Scan.job
    - c:\program files\Microsoft Security Client\Antimalware\MpCmdRun.exe [2010-11-11 16:26]
    .
    2010-11-25 c:\windows\Tasks\photostageSevenDays.job
    - c:\program files\NCH Software\PhotoStage\photostage.exe [2010-11-25 01:00]
    .
    2010-11-25 c:\windows\Tasks\photostageShakeIcon.job
    - c:\program files\NCH Software\PhotoStage\photostage.exe [2010-11-25 01:00]
    .
    2011-03-10 c:\windows\Tasks\videopadDowngrade.job
    - c:\program files\NCH Software\VideoPad\videopad.exe [2010-11-25 00:59]
    .
    2011-04-23 c:\windows\Tasks\videopadShakeIcon.job
    - c:\program files\NCH Software\VideoPad\videopad.exe [2010-11-25 00:59]
    .
    .
    ------- Supplementary Scan -------
    .
    mSearch Bar = hxxp://www.google.com/ie
    mWindow Title =
    uInternet Connection Wizard,ShellNext = hxxp://www.google.com/support/chrome/bin/request.py?hl=en-US&contact_type=uninstall&crversion=11.0.696.60&os=5.1.2600
    IE: Append Link Target to Existing PDF - c:\program files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
    IE: Append to Existing PDF - c:\program files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppend.html
    IE: Convert Link Target to Adobe PDF - c:\program files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
    IE: Convert to Adobe PDF - c:\program files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECapture.html
    IE: E&xport to Microsoft Excel - c:\progra~1\MICROS~3\Office12\EXCEL.EXE/3000
    IE: Google Sidewiki... - c:\program files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_D183CA64F05FDD98.dll/cmsidewiki.html
    FF - ProfilePath - c:\documents and settings\5\Application Data\Mozilla\Firefox\Profiles\0s2hc1pa.default\
    .
    - - - - ORPHANS REMOVED - - - -
    .
    HKLM-Run-SunJavaUpdateSched - c:\program files\Java\jre6\bin\jusched.exe
    HKLM-Run-MSPY2002 - c:\windows\system32\IME\PINTLGNT\ImScInst.exe
    HKLM-Run-PHIME2002ASync - c:\windows\system32\IME\TINTLGNT\TINTSETP.EXE
    HKLM-Run-PHIME2002A - c:\windows\system32\IME\TINTLGNT\TINTSETP.EXE
    AddRemove-PaintToolSAI - c:\documents and settings\Administrator\My Documents\Easy Paint Tool SAI\uninst.exe
    .
    .
    .
    **************************************************************************
    .
    catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, GMER - Rootkit Detector and Remover
    Rootkit scan 2011-05-14 12:40
    Windows 5.1.2600 Service Pack 2 NTFS
    .
    scanning hidden processes ...
    .
    scanning hidden autostart entries ...
    .
    scanning hidden files ...
    .
    scan completed successfully
    hidden files: 0
    .
    **************************************************************************
    .
    Stealth MBR rootkit/Mebroot/Sinowal/TDL4 detector 0.4.2 by Gmer, GMER - Rootkit Detector and Remover
    Windows 5.1.2600 Disk: FUJITSU_MHW2040BH rev.00850012 -> Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-3
    .
    device: opened successfully
    user: MBR read successfully
    error: Read A device attached to the system is not functioning.
    kernel: MBR read successfully
    detected disk devices:
    detected hooks:
    \Driver\atapi DriverStartIo -> 0x8651453B
    user & kernel MBR OK
    .
    **************************************************************************
    .
    [HKEY_LOCAL_MACHINE\System\ControlSet001\Services\npggsvc]
    "ImagePath"="c:\windows\system32\GameMon.des -service"
    .
    --------------------- LOCKED REGISTRY KEYS ---------------------
    .
    [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{BEB3C0C7-B648-4257-96D9-B5D024816E27}\Version*Version]
    "Version"=hex:31,e5,ff,45,b7,04,99,e1,e3,00,d6,fb,60,96,83,90,63,ea,e8,e3,ba,
    eb,72,37,c4,4e,4d,4c,9e,74,53,1b,9a,3e,0e,30,a9,76,9d,55,34,cc,ff,53,4d,09,\
    .
    [HKEY_LOCAL_MACHINE\software\Minnetonka Audio Software\SurCode Dolby Digital Premiere\Version*Version]
    "Version"=hex:5a,2a,2c,f9,d6,48,70,8d,c0,b4,d3,12,27,91,2b,df,7d,5a,10,26,3e,
    0e,ab,5d,d7,54,01,05,a9,b2,ce,e2,9d,50,82,77,e1,f4,30,1d,91,46,00,58,3c,24,\
    .
    --------------------- DLLs Loaded Under Running Processes ---------------------
    .
    - - - - - - - > 'winlogon.exe'(1160)
    c:\program files\SUPERAntiSpyware\SASWINLO.DLL
    .
    - - - - - - - > 'explorer.exe'(2308)
    c:\progra~1\MICROS~3\Office12\GRA8E1~1.DLL
    c:\windows\system32\ieframe.dll
    c:\windows\system32\msi.dll
    c:\windows\system32\WPDShServiceObj.dll
    c:\windows\system32\PortableDeviceTypes.dll
    c:\windows\system32\PortableDeviceApi.dll
    c:\program files\Common Files\Adobe\Adobe Drive CS4\AdobeDriveCS4_NP.dll
    .
    ------------------------ Other Running Processes ------------------------
    .
    c:\program files\Microsoft Security Client\Antimalware\MsMpEng.exe
    c:\windows\system32\brss01a.exe
    c:\windows\System32\SCardSvr.exe
    c:\windows\system32\Brmfrmps.exe
    c:\program files\Wave Systems Corp\Common\DataServer.exe
    c:\program files\Java\jre6\bin\jqs.exe
    c:\program files\Dell\QuickSet\NICCONFIGSVC.exe
    c:\windows\system32\Tablet.exe
    c:\program files\NTRU Cryptosystems\NTRU Hybrid TSS v2.0.25\bin\tcsd_win32.exe
    c:\windows\System32\WLTRYSVC.EXE
    c:\windows\System32\bcmwltry.exe
    c:\windows\system32\WTablet\TabUserW.exe
    c:\windows\system32\Tablet.exe
    c:\program files\Apoint\HidFind.exe
    c:\windows\stsystra.exe
    c:\program files\Google\Google Desktop Search\GoogleDesktopIndex.exe
    c:\program files\Apoint\Apntex.exe
    c:\windows\system32\igfxsrvc.exe
    .
    **************************************************************************
    .
    Completion time: 2011-05-14 12:49:37 - machine was rebooted
    ComboFix-quarantined-files.txt 2011-05-14 16:49
    .
    Pre-Run: 3,599,253,504 bytes free
    Post-Run: 3,916,427,264 bytes free
    .
    WindowsXP-KB310994-SP2-Pro-BootDisk-ENU.exe
    .
    - - End Of File - - FC5DDA69A61FD45AB59EA9C8249159BD


    -----------\\ ToolBar S&D 1.2.9 XP/Vista

    Microsoft Windows XP Professional ( v5.1.2600 ) Service Pack 2
    X86-based PC ( Multiprocessor Free : Genuine Intel(R) CPU T2400 @ 1.83GHz )
    BIOS : Phoenix ROM BIOS PLUS Version 1.10 A07
    USER : 5 ( Administrator )
    BOOT : Normal boot
    Antivirus : ESET Smart Security 4.0 4.0 (Activated)
    Firewall : ESET Personal firewall 4.0.474.0 (Activated)
    C:\ (Local Disk) - NTFS - Total:37 Go (Free:3 Go)
    D:\ (CD or DVD)
    E:\ (CD or DVD)

    "C:\ToolBar SD" ( MAJ : 22-08-2009|18:42 )
    Option : [2] ( Sat 05/14/2011|10:34 )

    -----------\\ Searching for Files - Folders ...


    -----------\\ Extensions

    (4) - {b9db16a4-6edc-47ec-a1f4-b86292ed211d} => dwhelper

    (5) - {b9db16a4-6edc-47ec-a1f4-b86292ed211d} => dwhelper

    (Administrator) - {20a82645-c095-46ed-80e3-08825760534b} => chrome_user
    (Administrator) - {3A9F26B5-7451-4922-9E2F-CD83E7F454EF} => chrome
    (Administrator) - {5C655500-E712-41e7-9349-CE462F844B19} => translator
    (Administrator) - {88c7f2aa-f93f-432c-8f0e-b7d85967a527} => bittorrentbar
    (Administrator) - {b9db16a4-6edc-47ec-a1f4-b86292ed211d} => dwhelper
    (Administrator) - {c2f863cd-0429-48c7-bb54-db756a951760} => aimtoolbar
    (Administrator) - {CE6E6E3B-84DD-4cac-9F63-8D2AE4F30A4B} => cooliris
    (Administrator) - {e0204bd5-9d31-402b-a99d-a6aa8ffebdca} => chrome.manifest

    (All Users) - {e0204bd5-9d31-402b-a99d-a6aa8ffebdca} => chrome.manifest
    (All Users) - {20a82645-c095-46ed-80e3-08825760534b} => chrome_user

    (Owner) - {20a82645-c095-46ed-80e3-08825760534b} => chrome_user
    (Owner) - {b9db16a4-6edc-47ec-a1f4-b86292ed211d} => dwhelper

    (pwn) - {b9db16a4-6edc-47ec-a1f4-b86292ed211d} => dwhelper

    (random) - {b9db16a4-6edc-47ec-a1f4-b86292ed211d} => dwhelper


    -----------\\ [..\Internet Explorer\Main]

    [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
    "Local Page"="C:\\WINDOWS\\system32\\blank.htm"
    "Start Page"="http://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome"
    "Search Page"="http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch"
    "Url"="http://go.microsoft.com/fwlink/?LinkId=68929"
    "Url"="http://go.microsoft.com/fwlink/?LinkId=68928"

    [HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
    "Default_Page_URL"="http://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome"
    "Default_Search_URL"="http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch"
    "Search Page"="http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch"
    "Start Page"="http://www.msn.com/"
    "Search Bar"="http://www.google.com/ie"
    "Home_Page"="http://www.dell.com"
    "Help_Page"="http://support.dell.com"


    --------------------\\ Searching for other infections

    --------------------\\ Cracks & Keygens ..

    C:\DOCUME~1\ALLUSE~1\Documents\My Pictures\Sample Pictures\crack bus.doc
    C:\DOCUME~1\ALLUSE~1\Documents\My Pictures\Sample Pictures\FaceGen Modeller 3.1 & FaceGen Customizer 1.1\FaceGen Modeller 3.1 & FaceGen Customizer 1.1\Customizer\crack
    C:\DOCUME~1\ALLUSE~1\Documents\My Pictures\Sample Pictures\FaceGen Modeller 3.1 & FaceGen Customizer 1.1\FaceGen Modeller 3.1 & FaceGen Customizer 1.1\Customizer\crack\install.txt



    1 - "C:\ToolBar SD\TB_1.txt" - Sat 05/14/2011|10:38 - Option : [2]

    -----------\\ Scan completed at 10:38:54.06



    Firefox is still burning up and there's still the matter of the random sites in the background, plus chrome and IE are still not working

  8. #8
    Member Net_Surfer's Avatar
    Join Date
    May 2008
    Location
    Paradise Ca.
    Posts
    1,179
    Points
    89
    Blog Entries
    4

    Default

    Going over your logs I noticed that you have a lot of cracks on your computer.
    • Avoid gaming sites, pirated software, cracking tools, keygens, and peer-to-peer (P2P) file sharing programs.
    • They are a security risk which can make your computer susceptible to a smörgåsbord of malware infections, remote attacks, exposure of personal information, and identity theft. Many malicious worms and Trojans spread across P2P file sharing networks, gaming and underground sites.
    • Users visiting such pages may see innocuous-looking banner ads containing code which can trigger pop-up ads and malicious Flash ads that install viruses, Trojans and spyware. Ads are a target for hackers because they offer a stealthy way to distribute malware to a wide range of Internet users.
    • The best way to reduce the risk of infection is to avoid these types of web sites and not use any P2P applications.

    It is pretty much certain that if you continue to use P2P programs and warez-sites, you will get infected again.

    ------------------------------^-----------------------------

    Let's Fix your Internet Explorer Browser by doing the following:

    Click on: Tools > then in "Internet Options" > Click on the "Advanced" Tab > You will see the "Reset" button at the bottom. <-- Click on it to reset internet explorer so you can use it again.


    *If The infection may created a Proxy with your internet connection. We will need to reset that.

    Recheck by doing the following:

    Do this....

    - In Internet Explorer browser: Tools Menu -> Internet Options -> Connections Tab ->Lan Settings > uncheck "use a proxy server" or reconfigure the Proxy server again in case you have set it previously.

    - In Firefox Browser: Click in Tools Menu -> Options... -> Advanced Tab -> Network Tab -> "Settings" under Connection and uncheck the proxyserver.

    Reboot and check your internet connection.


    If that did not fix the problem do the following steps:

    Let's use your firefox browser to download the tools and ensure that you put them on the desktop of the infected computer:

    To work properly, you must install all of the fixing tools on the Desktop..
    • If you are using Firefox, make sure that your download settings are as follows:

      * Tools->Options->Main tab
      * Set to "Always ask me where to Save the files".
    • For Internet Explorer:
      o Choose to save, not open the file
      o When prompted - save the file to your desktop


    *If you can not run this fixing tools in normal mode then...Let's do the steps in safe mode with networking:

    Step 1.
    Download TDSSKiller.exe (v2.4.0.0) from Kaspersky Labs and save it to your desktop. <-Important!!!
    • Double-click on TDSSKiller.exe to run the tool for known TDSS variants.
      Vista/Windows 7 users right-click and select Run As Administrator
    • If TDSSKiller does not run, try renaming it.
    • To do this, right-click on TDSSKiller.exe, select Rename and give it a random name with the .com file extension (i.e. 123abc.com). If you do not see the file extension, please refer to How to change the file extension
    • Click the Start Scan button.
    • Do not use the computer during the scan.
    • If the scan completes with nothing found, click Close to exit.
    • If malicious objects are found, they will show in the Scan results - Select action for found objects and offer three options.
    • Ensure Cure (default) is selected, then click Continue > Reboot now to finish the cleaning process.

    A log file named TDSSKiller_version_date_time_log.txt (i.e. TDSSKiller.2.4.0.0_27.07.2010_14.17.05_log.txt) will be created and saved to the root directory ( usually Local Disk C ).
    * Post this log to your next message.

    If needed see the TDSS Rootkit Removing Tool website for detailed instructions on running TDSSkiller.
    ========
    Step 2.
    • Download OTL to your desktop.
      right click on the link and select 'Save Link/Target As'.

      if you have problems, try this download link:
      OTL
    • Double click on the icon to run it. Make sure all other windows are closed and to let it run uninterrupted.
    • When the window appears, underneath Output at the top change it to Minimal Output.
    • Check the boxes beside LOP Check and Purity Check
    .

    .

    • Now copy the lines in bold below.

      netsvcs
      msconfig
      %SYSTEMDRIVE%\*.*
      %systemroot%\system32\Spool\prtprocs\w32x86\*.dll
      %systemroot%\*. /mp /s
      %systemroot%\system32\*.dll /lockedfiles
      %systemroot%\Tasks\*.job /lockedfiles
      %systemroot%\system32\drivers\*.sys /lockedfiles
      %systemroot%\system32\*.exe /lockedfiles
      %systemroot%\System32\config\*.sav
      %PROGRAMFILES%\*
      HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate\AU
      CREATERESTOREPOINT


    • right click in the Custom Scans/Fixes window (under the blue bar) and choose Paste.


      .
    • Click the Run Scan button.


    • Do not change any settings unless otherwise told to do so. The scan wont take long.
    • When the scan completes, it will open two notepad windows. OTL.Txt and Extras.Txt. These are saved in the same location as OTL.
    • Please copy (Edit->Select All, Edit->Copy) the contents of these files, one at a time, and post them with your next reply.



    Summary of the logs I will need in your next reply:
    • The TDSS.Killer report log.
    • The TWO report logs of OTL

    How are things your end ?


    Upon completing the above steps I will review your logs again and take the steps necessary with you to get your machine back in working order clean and free of malware.

    Again, Please DO NOT make any other changes to your computer (like installing programs, using other cleaning tools, etc.), until it's officially declared clean and free of malware!!!

    The forum is busy and we need to have replies as soon as possible. If I haven't had a reply after 3 days I will bump the topic and if you do not reply by the following day then I will close the topic.

    Kind regards
    Net_Surfer

    Our help here is always free but it does cost money to keep the site running. If you feel we've helped you kindly, Click here: >> Please Donate to the Forum <<


    "Obstacles are what you see when yo take your eyes off your Goals"

    Net_Surfer is a Graduate of BleepingComputer Malware Removal Training ProgramYou too could train to help others!.