Results 1 to 4 of 4

Thread: Keylogger help

  1. #1
    Member
    Join Date
    Aug 2012
    Posts
    2
    Points
    0

    Default Keylogger help

    I recently found out I have a keylogger on my system. He/she changed passwords on my hotmail, runescape (MMORPG game), & skype accounts.
    I was running Panda Anti-Virus Automatic Protection Pro 2012 at the time. I just downloaded & ran the SUPERAntiSpyware, Malwarebytes Anti-Malware (all updated), and ran the log for the HijackThis.

    Here are my logs:

    ----------------------

    SUPERAntiSpyware Scan Log
    SUPERAntiSpyware.com | Remove Malware | Remove Spyware - AntiMalware, AntiSpyware, AntiAdware!

    Generated 08/14/2012 at 00:18 AM

    Application Version : 5.5.1012

    Core Rules Database Version : 9051
    Trace Rules Database Version: 6863

    Scan type : Complete Scan
    Total Scan Time : 01:02:39

    Operating System Information
    Windows 7 Home Premium 64-bit, Service Pack 1 (Build 6.01.7601)
    UAC On - Limited User

    Memory items scanned : 659
    Memory threats detected : 0
    Registry items scanned : 68262
    Registry threats detected : 25
    File items scanned : 48410
    File threats detected : 344

    PUP.BabylonToolbar
    (x86) HKCR\CLSID\{98889811-442D-49DD-99D7-DC866BE87DBC}
    (x86) HKCR\CLSID\{98889811-442D-49DD-99D7-DC866BE87DBC}#AppID
    (x86) HKCR\CLSID\{98889811-442D-49DD-99D7-DC866BE87DBC}\InprocServer32
    (x86) HKCR\CLSID\{98889811-442D-49DD-99D7-DC866BE87DBC}\InprocServer32#ThreadingModel
    (x86) HKCR\CLSID\{98889811-442D-49DD-99D7-DC866BE87DBC}\ProgID
    (x86) HKCR\CLSID\{98889811-442D-49DD-99D7-DC866BE87DBC}\Programmable
    (x86) HKCR\CLSID\{98889811-442D-49DD-99D7-DC866BE87DBC}\TypeLib
    (x86) HKCR\CLSID\{98889811-442D-49DD-99D7-DC866BE87DBC}\VersionIndependentProgID
    (x86) HKLM\Software\Classes\CLSID\{98889811-442D-49dd-99D7-DC866BE87DBC}
    (x86) HKCR\CLSID\{98889811-442D-49DD-99D7-DC866BE87DBC}
    (x86) HKCR\Babylon.dskBnd.1
    (x86) HKCR\Babylon.dskBnd.1\CLSID
    (x86) HKCR\Babylon.dskBnd
    (x86) HKCR\Babylon.dskBnd\CLSID
    (x86) HKCR\Babylon.dskBnd\CurVer
    (x86) HKCR\TypeLib\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921}
    (x86) HKCR\TypeLib\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921}\1.0
    (x86) HKCR\TypeLib\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921}\1.0\0
    (x86) HKCR\TypeLib\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921}\1.0\0\win32
    (x86) HKCR\TypeLib\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921}\1.0\FLAGS
    (x86) HKCR\TypeLib\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921}\1.0\HELPDIR
    C:\PROGRAM FILES (X86)\BABYLONTOOLBAR\BABYLONTOOLBAR\1.5.29.1\BABYLONTOOLBARTLBR.DLL
    (x86) HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{98889811-442D-49DD-99D7-DC866BE87DBC}
    (x86) HKU\S-1-5-21-1407656409-1409855918-2096563312-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{98889811-442D-49DD-99D7-DC866BE87DBC}
    (x86) HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{98889811-442D-49DD-99D7-DC866BE87DBC}
    (x86) HKLM\Software\Microsoft\Internet Explorer\Toolbar#{98889811-442D-49dd-99D7-DC866BE87DBC}

    Adware.Tracking Cookie
    C:\Users\Chumble\AppData\Roaming\Microsoft\Windows\Cookies\1T93CXJH.txt [ /revsci.net ]
    C:\Users\Chumble\AppData\Roaming\Microsoft\Windows\Cookies\9MZB1BGZ.txt [ /accounts.google.com ]
    C:\Users\Chumble\AppData\Roaming\Microsoft\Windows\Cookies\K6YZD2AM.txt [ /a1.interclick.com ]
    C:\Users\Chumble\AppData\Roaming\Microsoft\Windows\Cookies\DJG8AQRH.txt [ /c.atdmt.com ]
    C:\Users\Chumble\AppData\Roaming\Microsoft\Windows\Cookies\RDABNMXE.txt [ /eliteazza.com ]
    C:\Users\Chumble\AppData\Roaming\Microsoft\Windows\Cookies\GQCTZO2J.txt [ /ru4.com ]
    C:\Users\Chumble\AppData\Roaming\Microsoft\Windows\Cookies\8L1K7KYA.txt [ /sk.eliteazza.com ]
    C:\Users\Chumble\AppData\Roaming\Microsoft\Windows\Cookies\QJT8IVCK.txt [ /imrworldwide.com ]
    C:\Users\Chumble\AppData\Roaming\Microsoft\Windows\Cookies\NU9UF2JE.txt [ /pointroll.com ]
    C:\Users\Chumble\AppData\Roaming\Microsoft\Windows\Cookies\4475DGIC.txt [ /invitemedia.com ]
    C:\Users\Chumble\AppData\Roaming\Microsoft\Windows\Cookies\HPDCOQUD.txt [ /interclick.com ]
    C:\USERS\CHUMBLE\AppData\Roaming\Microsoft\Windows\Cookies\B5ENR9VG.txt [ Cookie:chumble@clkads.com/adServe/banners ]
    C:\USERS\CHUMBLE\AppData\Roaming\Microsoft\Windows\Cookies\Low\PBSER33K.txt [ Cookie:chumble@advertising.rockettube.net/ ]
    C:\USERS\CHUMBLE\AppData\Roaming\Microsoft\Windows\Cookies\Low\7E3D6H7X.txt [ Cookie:chumble@adbrite.com/ ]
    C:\USERS\CHUMBLE\AppData\Roaming\Microsoft\Windows\Cookies\Low\BXA2QQ5R.txt [ Cookie:chumble@trafficjunky.xtube.com/ ]
    C:\USERS\CHUMBLE\AppData\Roaming\Microsoft\Windows\Cookies\Low\B2L7LO8I.txt [ Cookie:chumble@www.gotgayporn.com/ ]
    C:\USERS\CHUMBLE\AppData\Roaming\Microsoft\Windows\Cookies\Low\1S295OSY.txt [ Cookie:chumble@hornymatches.com/ ]
    C:\USERS\CHUMBLE\AppData\Roaming\Microsoft\Windows\Cookies\Low\Q3Z6HL1Q.txt [ Cookie:chumble@at.atwola.com/ ]
    C:\USERS\CHUMBLE\AppData\Roaming\Microsoft\Windows\Cookies\Low\J687FGOH.txt [ Cookie:chumble@revsci.net/ ]
    C:\USERS\CHUMBLE\AppData\Roaming\Microsoft\Windows\Cookies\Low\QMX7GNCH.txt [ Cookie:chumble@2o7.net/ ]
    C:\USERS\CHUMBLE\AppData\Roaming\Microsoft\Windows\Cookies\Low\CGQQFJIR.txt [ Cookie:chumble@ads.saymedia.com/ ]
    C:\USERS\CHUMBLE\AppData\Roaming\Microsoft\Windows\Cookies\Low\4U1FY44C.txt [ Cookie:chumble@mediaservices-d.openxenterprise.com/ ]
    C:\USERS\CHUMBLE\AppData\Roaming\Microsoft\Windows\Cookies\Low\XQ6U392P.txt [ Cookie:chumble@www.hornymatches.com/ ]
    C:\USERS\CHUMBLE\AppData\Roaming\Microsoft\Windows\Cookies\Low\PZMENVWV.txt [ Cookie:chumble@legolas-media.com/ ]
    C:\USERS\CHUMBLE\AppData\Roaming\Microsoft\Windows\Cookies\Low\SYM12XOY.txt [ Cookie:chumble@ads2.zeusclicks.com/ ]
    C:\USERS\CHUMBLE\AppData\Roaming\Microsoft\Windows\Cookies\Low\L4P823SN.txt [ Cookie:chumble@www.googleadservices.com/pagead/conversion/1003715244/ ]
    C:\USERS\CHUMBLE\AppData\Roaming\Microsoft\Windows\Cookies\Low\YBUH9M0W.txt [ Cookie:chumble@kontera.com/ ]
    C:\USERS\CHUMBLE\AppData\Roaming\Microsoft\Windows\Cookies\Low\2B4TQO4D.txt [ Cookie:chumble@insightexpressai.com/ ]
    C:\USERS\CHUMBLE\AppData\Roaming\Microsoft\Windows\Cookies\Low\M22K3WH4.txt [ Cookie:chumble@account.live.com/ ]
    C:\USERS\CHUMBLE\AppData\Roaming\Microsoft\Windows\Cookies\Low\6WN3AI1H.txt [ Cookie:chumble@gotgayporn.com/ ]
    C:\USERS\CHUMBLE\AppData\Roaming\Microsoft\Windows\Cookies\Low\32PN9B0F.txt [ Cookie:chumble@ru4.com/ ]
    C:\USERS\CHUMBLE\AppData\Roaming\Microsoft\Windows\Cookies\Low\1MBXZAHY.txt [ Cookie:chumble@sixapart.112.2o7.net/ ]
    C:\USERS\CHUMBLE\AppData\Roaming\Microsoft\Windows\Cookies\Low\HC6Z7K4P.txt [ Cookie:chumble@h.atdmt.com/ ]
    C:\USERS\CHUMBLE\AppData\Roaming\Microsoft\Windows\Cookies\Low\YGIUQX9R.txt [ Cookie:chumble@imrworldwide.com/cgi-bin ]
    C:\USERS\CHUMBLE\AppData\Roaming\Microsoft\Windows\Cookies\Low\SRWJE0LT.txt [ Cookie:chumble@www.googleadservices.com/pagead/conversion/1012865781/ ]
    C:\USERS\CHUMBLE\AppData\Roaming\Microsoft\Windows\Cookies\Low\6VOV3KNY.txt [ Cookie:chumble@specificclick.net/ ]
    C:\USERS\CHUMBLE\AppData\Roaming\Microsoft\Windows\Cookies\Low\LG3H26SS.txt [ Cookie:chumble@cn.clickable.net/ ]
    C:\USERS\CHUMBLE\AppData\Roaming\Microsoft\Windows\Cookies\Low\PKIDPG5W.txt [ Cookie:chumble@ontarget.122.2o7.net/ ]
    C:\USERS\CHUMBLE\AppData\Roaming\Microsoft\Windows\Cookies\Low\OBCEN2SQ.txt [ Cookie:chumble@clickbooth.com/ ]
    C:\USERS\CHUMBLE\AppData\Roaming\Microsoft\Windows\Cookies\Low\92UF0Y6O.txt [ Cookie:chumble@adserver.adtechus.com/ ]
    C:\USERS\CHUMBLE\AppData\Roaming\Microsoft\Windows\Cookies\Low\5S7GK5CS.txt [ Cookie:chumble@geobanner.xxxgaymatch.com/ ]
    C:\USERS\CHUMBLE\AppData\Roaming\Microsoft\Windows\Cookies\Low\EML4W1MM.txt [ Cookie:chumble@segainc.112.2o7.net/ ]
    C:\USERS\CHUMBLE\AppData\Roaming\Microsoft\Windows\Cookies\Low\178UU8O2.txt [ Cookie:chumble@adxpose.com/ ]
    C:\USERS\CHUMBLE\AppData\Roaming\Microsoft\Windows\Cookies\Low\M3T9X45U.txt [ Cookie:chumble@www.media970.com/ ]
    C:\USERS\CHUMBLE\AppData\Roaming\Microsoft\Windows\Cookies\Low\VPV82VYV.txt [ Cookie:chumble@us.battle.net/account ]
    C:\USERS\CHUMBLE\AppData\Roaming\Microsoft\Windows\Cookies\Low\240JAJKH.txt [ Cookie:chumble@in.getclicky.com/ ]
    C:\USERS\CHUMBLE\AppData\Roaming\Microsoft\Windows\Cookies\Low\FZOP2G1T.txt [ Cookie:chumble@www.pornhub.com/ ]
    C:\USERS\CHUMBLE\AppData\Roaming\Microsoft\Windows\Cookies\Low\E6WBT80N.txt [ Cookie:chumble@amazonmerchants.122.2o7.net/ ]
    C:\USERS\CHUMBLE\AppData\Roaming\Microsoft\Windows\Cookies\Low\2F9MBDIW.txt [ Cookie:chumble@pornhub.com/ ]
    C:\USERS\CHUMBLE\AppData\Roaming\Microsoft\Windows\Cookies\Low\HEYJ5A1D.txt [ Cookie:chumble@eaeacom.112.2o7.net/ ]
    C:\USERS\CHUMBLE\AppData\Roaming\Microsoft\Windows\Cookies\Low\SJ91O9P0.txt [ Cookie:chumble@collective-media.net/ ]
    C:\USERS\CHUMBLE\AppData\Roaming\Microsoft\Windows\Cookies\Low\PHJN5EPP.txt [ Cookie:chumble@server.cpmstar.com/ ]
    C:\USERS\CHUMBLE\AppData\Roaming\Microsoft\Windows\Cookies\Low\ZFQJPCRR.txt [ Cookie:chumble@network.realmedia.com/ ]
    C:\USERS\CHUMBLE\AppData\Roaming\Microsoft\Windows\Cookies\Low\HST4YCCN.txt [ Cookie:chumble@www.googleadservices.com/pagead/conversion/1069979804/ ]
    C:\USERS\CHUMBLE\AppData\Roaming\Microsoft\Windows\Cookies\Low\IVNIVNFY.txt [ Cookie:chumble@mediafire.com/ ]
    C:\USERS\CHUMBLE\AppData\Roaming\Microsoft\Windows\Cookies\Low\IVE6UZSL.txt [ Cookie:chumble@www.googleadservices.com/pagead/conversion/1053965053/ ]
    C:\USERS\CHUMBLE\AppData\Roaming\Microsoft\Windows\Cookies\Low\G6WE57YZ.txt [ Cookie:chumble@tracking.alwaysdownloads.com/ ]
    C:\USERS\CHUMBLE\AppData\Roaming\Microsoft\Windows\Cookies\Low\CDHTBLQE.txt [ Cookie:chumble@myroitracking.com/ ]
    C:\USERS\CHUMBLE\AppData\Roaming\Microsoft\Windows\Cookies\Low\6RF2ABY4.txt [ Cookie:chumble@clkads.com/adServe/banners ]
    C:\USERS\CHUMBLE\AppData\Roaming\Microsoft\Windows\Cookies\Low\2K02QNW7.txt [ Cookie:chumble@winzip.122.2o7.net/ ]
    C:\USERS\CHUMBLE\AppData\Roaming\Microsoft\Windows\Cookies\Low\DZ6T65BY.txt [ Cookie:chumble@dadfuckboy.net/ ]
    C:\USERS\CHUMBLE\AppData\Roaming\Microsoft\Windows\Cookies\Low\ACCB0TZS.txt [ Cookie:chumble@skidrowcrack.com/diablo-iii-collectors-edition-full-crack-wait/ ]
    C:\USERS\CHUMBLE\AppData\Roaming\Microsoft\Windows\Cookies\Low\Z0F0JC9V.txt [ Cookie:chumble@adinterax.com/ ]
    C:\USERS\CHUMBLE\AppData\Roaming\Microsoft\Windows\Cookies\Low\19WNATF6.txt [ Cookie:chumble@adserv.brandaffinity.net/ ]
    C:\USERS\CHUMBLE\AppData\Roaming\Microsoft\Windows\Cookies\Low\K9E5H8TZ.txt [ Cookie:chumble@clicksor.com/ ]
    C:\USERS\CHUMBLE\AppData\Roaming\Microsoft\Windows\Cookies\Low\9LI2B6LR.txt [ Cookie:chumble@www.adworkmedia.com/ ]
    C:\USERS\CHUMBLE\AppData\Roaming\Microsoft\Windows\Cookies\Low\3Y4MGF6U.txt [ Cookie:chumble@interclick.com/ ]
    C:\USERS\CHUMBLE\AppData\Roaming\Microsoft\Windows\Cookies\Low\YDDP6LGL.txt [ Cookie:chumble@www.googleadservices.com/pagead/conversion/1032882166/ ]
    C:\USERS\CHUMBLE\AppData\Roaming\Microsoft\Windows\Cookies\Low\2NB6YMXJ.txt [ Cookie:chumble@traveladvertising.com/ ]
    C:\USERS\CHUMBLE\AppData\Roaming\Microsoft\Windows\Cookies\Low\MGGJY80J.txt [ Cookie:chumble@media6degrees.com/ ]
    C:\USERS\CHUMBLE\Cookies\1T93CXJH.txt [ Cookie:chumble@revsci.net/ ]
    C:\USERS\CHUMBLE\Cookies\9MZB1BGZ.txt [ Cookie:chumble@accounts.google.com/ ]
    C:\USERS\CHUMBLE\Cookies\GQCTZO2J.txt [ Cookie:chumble@ru4.com/ ]
    C:\USERS\CHUMBLE\Cookies\8L1K7KYA.txt [ Cookie:chumble@sk.eliteazza.com/ ]
    C:\USERS\CHUMBLE\Cookies\QJT8IVCK.txt [ Cookie:chumble@imrworldwide.com/cgi-bin ]
    C:\USERS\CHUMBLE\Cookies\B5ENR9VG.txt [ Cookie:chumble@clkads.com/adServe/banners ]
    C:\USERS\CHUMBLE\Cookies\HPDCOQUD.txt [ Cookie:chumble@interclick.com/ ]
    .doubleclick.net [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .apmebf.com [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .mediaplex.com [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .srv1.mediads.info [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .srv1.mediads.info [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    Accounting Jobs, Careers | iHireAccounting [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    Accounting Jobs, Careers | iHireAccounting [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    Accounting Jobs, Careers | iHireAccounting [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    Accounting Jobs, Careers | iHireAccounting [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    Accounting Jobs, Careers | iHireAccounting [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    Accounting Jobs, Careers | iHireAccounting [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    Accounting Jobs, Careers | iHireAccounting [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    Accounting Jobs, Careers | iHireAccounting [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    Accounting Jobs, Careers | iHireAccounting [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    Accounting Jobs, Careers | iHireAccounting [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    Accounting Jobs, Careers | iHireAccounting [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    Accounting Jobs, Careers | iHireAccounting [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    Accounting Jobs, Careers | iHireAccounting [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    Accounting Jobs, Careers | iHireAccounting [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    Accounting Jobs, Careers | iHireAccounting [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    Accounting Jobs, Careers | iHireAccounting [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .ihireaccounting.com [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .ihireaccounting.com [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .ihire.122.2o7.net [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    ad.yieldmanager.com [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    ad.yieldmanager.com [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    ad.yieldmanager.com [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .imrworldwide.com [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .imrworldwide.com [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .invitemedia.com [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .trafficmp.com [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .atdmt.com [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .atdmt.com [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .media6degrees.com [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .media6degrees.com [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .trafficmp.com [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .sexad.net [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    ads2.zeusclicks.com [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .adultfriendfinder.com [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    ads.crakmedia.com [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .adxpansion.com [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    ads.pornerbros.com [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .adultfriendfinder.com [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .adultfriendfinder.com [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .adultfriendfinder.com [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .adultfriendfinder.com [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .adultfriendfinder.com [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .adultfriendfinder.com [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .adultfriendfinder.com [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .geobanner.mennation.com [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .geobanner.mennation.com [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .geobanner.mennation.com [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .geobanner.mennation.com [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .geobanner.mennation.com [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .geobanner.mennation.com [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    ads.trafficjunky.net [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .histats.com [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .histats.com [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .zedo.com [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .zedo.com [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .zedo.com [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    adx.kat.ph [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .questionmarket.com [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .amazon-adsystem.com [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .amazon-adsystem.com [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .revsci.net [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .revsci.net [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    in.getclicky.com [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .insightexpressai.com [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .insightexpressai.com [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .adbrite.com [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .casalemedia.com [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .serving-sys.com [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .serving-sys.com [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .adbrite.com [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .apmebf.com [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .ru4.com [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .advertising.com [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .collective-media.net [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .collective-media.net [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .247realmedia.com [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .collective-media.net [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .collective-media.net [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .collective-media.net [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .collective-media.net [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .collective-media.net [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .collective-media.net [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .collective-media.net [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .collective-media.net [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .tacoda.at.atwola.com [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .tacoda.at.atwola.com [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .tacoda.at.atwola.com [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .at.atwola.com [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .ar.atwola.com [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .findlaw.com [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .findlaw.com [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .findlaw.com [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .findlaw.com [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .legolas-media.com [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .legolas-media.com [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .pro-market.net [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .at.atwola.com [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .adserver.adtechus.com [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    www.googleadservices.com [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .ads.pointroll.com [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .pointroll.com [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .technoratimedia.com [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .technoratimedia.com [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .ru4.com [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .ru4.com [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .ru4.com [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .ru4.com [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .yieldmanager.net [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .kanoodle.com [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .specificclick.net [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .media.adfrontiers.com [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .interclick.com [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .interclick.com [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .realmedia.com [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .realmedia.com [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .interclick.com [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .interclick.com [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    cn.clickable.net [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .casalemedia.com [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .casalemedia.com [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .realmedia.com [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .ru4.com [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .a1.interclick.com [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .invitemedia.com [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .adbrite.com [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .apmebf.com [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .dealtime.com [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    stat.dealtime.com [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    trafficjunky.xtube.com [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    technorati.rotator.hadj7.adjuggler.net [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    technorati.rotator.hadj7.adjuggler.net [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    rotator.hadj7.adjuggler.net [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .solvemedia.com [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .solvemedia.com [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .a1.interclick.com [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .revsci.net [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .mediafire.com [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .mediafire.com [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .mediafire.com [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .mediafire.com [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    Free Cloud Storage - MediaFire [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    Free Cloud Storage - MediaFire [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    Free Cloud Storage - MediaFire [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .www.media970.com [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .www.media970.com [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    www.googleadservices.com [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    www.googleadservices.com [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .insightexpressai.com [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .insightexpressai.com [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .revsci.net [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    www.googleadservices.com [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .revsci.net [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .questionmarket.com [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .insightexpressai.com [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .casalemedia.com [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .casalemedia.com [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .casalemedia.com [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .casalemedia.com [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .casalemedia.com [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .casalemedia.com [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .adbrite.com [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .adbrite.com [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .adbrite.com [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .adbrite.com [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .tribalfusion.com [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .lucidmedia.com [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .adserver.adtechus.com [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .a1.interclick.com [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .interclick.com [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .realmedia.com [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .network.realmedia.com [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .a1.interclick.com [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .a1.interclick.com [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .a1.interclick.com [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .a1.interclick.com [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .a1.interclick.com [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .interclick.com [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .invitemedia.com [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .questionmarket.com [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .questionmarket.com [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .intermundomedia.com [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .intermundomedia.com [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .adlegend.com [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .adlegend.com [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .zedo.com [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .revsci.net [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .revsci.net [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .revsci.net [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .adfarm1.adition.com [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .adfarm1.adition.com [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    ad2.adfarm1.adition.com [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .adfarm1.adition.com [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    traffic.prod.cobaltgroup.com [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .ads.pointroll.com [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .linksynergy.com [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .pointroll.com [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .ads.pointroll.com [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .ads.pointroll.com [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .ads.pointroll.com [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .ads.pointroll.com [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .ads.pointroll.com [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .ads.pointroll.com [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .zedo.com [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .zedo.com [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .zedo.com [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .media.adfrontiers.com [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .invitemedia.com [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .invitemedia.com [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .invitemedia.com [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .invitemedia.com [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .media6degrees.com [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .media6degrees.com [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .media6degrees.com [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .media6degrees.com [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .media6degrees.com [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .media6degrees.com [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .technoratimedia.com [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .mediaplex.com [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .serving-sys.com [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .serving-sys.com [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .serving-sys.com [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    ad.yieldmanager.com [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    ad.yieldmanager.com [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    openx.jeetyetmedia.com [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .advertising.com [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .advertising.com [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    openx.jeetyetmedia.com [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .advertising.com [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    ad.yieldmanager.com [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    ad.yieldmanager.com [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .advertising.com [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .advertising.com [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    mediaservices-d.openxenterprise.com [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    network.realmedia.com [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .fastclick.net [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .invitemedia.com [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    ad.yieldmanager.com [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .flagcounter.com [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    accounts.google.com [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    accounts.google.com [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    accounts.google.com [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .yadro.ru [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .yadro.ru [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .oracle.112.2o7.net [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    c0.histats.12mlbe.com [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .invitemedia.com [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .2o7.net [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .statcounter.com [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .statcounter.com [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .statcounter.com [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .statcounter.com [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    mediacdn.disqus.com [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    .invitemedia.com [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    account.live.com [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    account.live.com [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    account.live.com [ C:\USERS\CHUMBLE\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
    ia.media-imdb.com [ C:\USERS\CHUMBLE\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\BCJAGJ9N ]

    Heur.Agent/Gen-WhiteBox
    C:\PROGRAM FILES (X86)\INTELLIDOWNLOAD\TORRENTSEARCH.EXE

    Adware.iBryte
    C:\USERS\CHUMBLE\DOWNLOADS\SETUP(1).EXE
    C:\USERS\CHUMBLE\DOWNLOADS\SETUP.EXE

    Adware.SoftonicDownloader
    C:\USERS\CHUMBLE\DOWNLOADS\SOFTONICDOWNLOADER_FOR_SONICSTAGE.EXE
    ---------------------

    Malwarebytes Anti-Malware (Trial) 1.62.0.1300
    Malwarebytes : Free anti-malware download

    Database version: v2012.08.14.01

    Windows 7 Service Pack 1 x64 NTFS
    Internet Explorer 9.0.8112.16421
    Chumble :: CHUMBLE-PC [administrator]

    Protection: Enabled

    8/14/2012 12:58:28 AM
    mbam-log-2012-08-14 (00-58-28).txt

    Scan type: Full scan (C:\|X:\|)
    Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
    Scan options disabled: P2P
    Objects scanned: 329759
    Time elapsed: 32 minute(s), 8 second(s)

    Memory Processes Detected: 0
    (No malicious items detected)

    Memory Modules Detected: 0
    (No malicious items detected)

    Registry Keys Detected: 1
    HKLM\SOFTWARE\Google\Chrome\Extensions\kincjchfokkeneeofpeefomkikfkiedl (PUP.FCTPlugin) -> Quarantined and deleted successfully.

    Registry Values Detected: 0
    (No malicious items detected)

    Registry Data Items Detected: 0
    (No malicious items detected)

    Folders Detected: 0
    (No malicious items detected)

    Files Detected: 3
    C:\Program Files (x86)\intellidownload\vfd.exe (Adware.Dropper) -> Quarantined and deleted successfully.
    C:\Users\Chumble\Downloads\Max Payne 3.exe (PUP.AdBundler) -> Quarantined and deleted successfully.
    C:\Users\Chumble\Downloads\Setup (1).exe (PUP.Bundle.Installer.OI) -> Quarantined and deleted successfully.

    (end)
    ---------------

    Logfile of Trend Micro HijackThis v2.0.4
    Scan saved at 2:11:41 PM, on 8/14/2012
    Platform: Windows 7 SP1 (WinNT 6.00.3505)
    MSIE: Internet Explorer v9.00 (9.00.8112.16447)
    Boot mode: Normal

    Running processes:
    C:\PROGRAM FILES (X86)\PANDA SECURITY\PANDA ANTIVIRUS PRO 2012\WebProxy.exe
    C:\Program Files (x86)\Skype\Phone\Skype.exe
    C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology enterprise\IAStorIcon.exe
    C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe
    C:\Program Files\Alienware\Command Center\AlienwareAlienFXController.exe
    C:\Program Files\Alienware\Command Center\AWCCApplicationWatcher32.exe
    C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\rusb3mon.exe
    C:\Program Files (x86)\iTunes\iTunesHelper.exe
    C:\Windows\V0500Mon.exe
    C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe
    C:\Program Files (x86)\Panda Security\Panda Antivirus Pro 2012\ApVxdWin.exe
    C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
    C:\Program Files (x86)\iTunes\iTunes.exe
    C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceHelper.exe
    C:\Program Files (x86)\Last.fm\Last.fm.exe
    C:\Program Files (x86)\Common Files\Apple\Apple Application Support\distnoted.exe
    C:\Program Files (x86)\Last.fm\LastFM.exe
    C:\Users\Chumble\AppData\Local\Google\Chrome\Application\chrome.exe
    C:\Users\Chumble\AppData\Local\Google\Chrome\Application\chrome.exe
    C:\Users\Chumble\AppData\Local\Google\Chrome\Application\chrome.exe
    C:\Users\Chumble\AppData\Local\Google\Chrome\Application\chrome.exe
    C:\Users\Chumble\AppData\Local\Google\Chrome\Application\chrome.exe
    C:\Users\Chumble\AppData\Local\Google\Chrome\Application\chrome.exe
    C:\Users\Chumble\AppData\Local\Google\Chrome\Application\chrome.exe
    C:\Users\Chumble\AppData\Local\Google\Chrome\Application\chrome.exe
    C:\Users\Chumble\AppData\Local\Google\Chrome\Application\chrome.exe
    C:\Users\Chumble\AppData\Local\Google\Chrome\Application\chrome.exe
    C:\Users\Chumble\AppData\Local\Google\Chrome\Application\chrome.exe
    C:\Users\Chumble\AppData\Local\Google\Chrome\Application\chrome.exe
    C:\Users\Chumble\AppData\Local\Google\Chrome\Application\chrome.exe
    C:\Users\Chumble\Downloads\HijackThis.exe

    R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = Alienware Arena - Rise With Us
    R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = Bing
    R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Alienware Arena - Rise With Us
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN.com
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing
    R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = MSN.com
    R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
    R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
    R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
    R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
    R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
    R3 - URLSearchHook: (no name) - {687578b9-7132-4a7a-80e4-30ee31099e03} - (no file)
    F2 - REG:system.ini: UserInit=c:\windows\syswow64\userinit.exe,
    O2 - BHO: &Yahoo! Toolbar Helper - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn1\yt.dll
    O2 - BHO: (no name) - {1036AD63-AEAC-460B-9060-C96005D4DC86} - (no file)
    O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
    O2 - BHO: Babylon toolbar helper - {2EECD738-5844-4a99-B4B6-146BF802613B} - C:\Program Files (x86)\BabylonToolbar\BabylonToolbar\1.5.29.1\bh\BabylonToolbar.dll
    O2 - BHO: Increase performance and video formats for your HTML5 <video> - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files (x86)\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll
    O2 - BHO: BHO_PROJECT - {68DD98BF-9DE8-418C-89F0-E37AC61CC2D9} - (no file)
    O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Oracle\JavaFX 2.1 Runtime\bin\ssv.dll
    O2 - BHO: Fantapper - {8A86D350-37AB-410A-8531-7D1363F317B3} - C:\Program Files (x86)\Brand Affinity Technologies\Fantapper Player\\IEInstaller.dll
    O2 - BHO: Privacy SafeGuard - {A42D2EB4-DD31-4BB5-8AA5-8D4E04806DBE} - C:\Program Files\PrivacySafeGuard\PrivacySafeGuard.dll
    O2 - BHO: Wajam IE BHO - {A7A6995D-6EE1-4FD1-A258-49395D5BF99C} - C:\Program Files (x86)\Wajam\IE\priam_bho.dll
    O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
    O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Oracle\JavaFX 2.1 Runtime\bin\jp2ssv.dll
    O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn1\yt.dll
    O4 - HKLM\..\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology enterprise\IAStorIcon.exe
    O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe"
    O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
    O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
    O4 - HKLM\..\Run: [DivXUpdate] "C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe" /CHECKNOW
    O4 - HKLM\..\Run: [BYRUA_AGENT] C:\ProgramData\LGMOBILEAX\BYR_Client\VZWUAAgent.exe
    O4 - HKLM\..\Run: [RUSB3MON] "C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\rusb3mon.exe"
    O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
    O4 - HKLM\..\Run: [V0500Mon.exe] C:\Windows\V0500Mon.exe
    O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
    O4 - HKLM\..\Run: [VirtualCloneDrive] "C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe" /s
    O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
    O4 - HKLM\..\Run: [APVXDWIN] "C:\Program Files (x86)\Panda Security\Panda Antivirus Pro 2012\APVXDWIN.EXE" /s
    O4 - HKLM\..\Run: [SCANINICIO] "C:\Program Files (x86)\Panda Security\Panda Antivirus Pro 2012\Inicio.exe"
    O4 - HKLM\..\Run: [Malwarebytes' Anti-Malware] "C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray
    O4 - HKCU\..\Run: [Google Update] "C:\Users\Chumble\AppData\Local\Google\Update\GoogleUpdate.exe" /c
    O4 - HKCU\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
    O4 - HKCU\..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
    O4 - Startup: OneNote 2007 Screen Clipper and Launcher.lnk = C:\Program Files (x86)\Microsoft Office\Office12\ONENOTEM.EXE
    O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200
    O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000
    O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
    O9 - Extra 'Tools' menuitem: S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
    O9 - Extra button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
    O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL
    O9 - Extra button: Fantapper - {AB745E88-1BAD-4B80-A83E-7C964EAC9804} - C:\Program Files (x86)\Brand Affinity Technologies\Fantapper Player\\IEInstaller.dll (HKCU)
    O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
    O15 - Trusted Zone: RuneScape - MMORPG - The No.1 Free Online Multiplayer Game
    O17 - HKLM\System\CCS\Services\Tcpip\..\{BFF5FAF9-D383-4661-84D8-AB4EBF8ADDCF}: NameServer = 66.40.52.11,63.248.120.18
    O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
    O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
    O23 - Service: SAS Core Service (!SASCORE) - SUPERAntiSpyware.com - C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
    O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
    O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
    O23 - Service: Andrea RT Filters Service (AERTFilters) - Andrea Electronics Corporation - C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe
    O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
    O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
    O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
    O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
    O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
    O23 - Service: Fantapper Player Update Service (FTSvc) - Brand Affinity Technologies - C:\Program Files (x86)\Brand Affinity Technologies\Fantapper Updater\FantapperUpdater.exe
    O23 - Service: Google Update Service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
    O23 - Service: Google Update Service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
    O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
    O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology enterprise\IAStorDataMgrSvc.exe
    O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files (x86)\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
    O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
    O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
    O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
    O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
    O23 - Service: MSCSPTISRV - Sony Corporation - C:\Program Files (x86)\Common Files\Sony Shared\AVLib\MSCSPTISRV.exe
    O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
    O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
    O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
    O23 - Service: PACSPTISVR - Unknown owner - C:\Program Files (x86)\Common Files\Sony Shared\AVLib\PACSPTISVR.exe
    O23 - Service: Panda Software Controller - Panda Security, S.L. - C:\Program Files (x86)\Panda Security\Panda Antivirus Pro 2012\PsCtrls.exe
    O23 - Service: Panda Function Service (PAVFNSVR) - Unknown owner - C:\Program Files (x86)\Panda Security\Panda Antivirus Pro 2012\PavFnSvr.exe
    O23 - Service: Panda Process Protection Service (PavPrSrv) - Unknown owner - C:\Program Files (x86)\Common Files\Panda Security\PavShld\pavprsrv.exe
    O23 - Service: Panda On-Access Anti-Malware Service (PAVSRV) - Panda Security, S.L. - C:\Program Files (x86)\Panda Security\Panda Antivirus Pro 2012\pavsrvx86.exe
    O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
    O23 - Service: Panda IManager Service (PSIMSVC) - Panda Security S.L. - C:\Program Files (x86)\Panda Security\Panda Antivirus Pro 2012\PsImSvc.exe
    O23 - Service: Panda PSK service (PskSvcRetail) - Panda Security, S.L. - C:\Program Files (x86)\Panda Security\Panda Antivirus Pro 2012\PskSvc.exe
    O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
    O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
    O23 - Service: SoftThinks Agent Service (SftService) - SoftThinks SAS - C:\Program Files (x86)\AlienRespawn\sftservice.EXE
    O23 - Service: Skype C2C Service - Skype Technologies S.A. - C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
    O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
    O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
    O23 - Service: SonicStage Back-End Service - Sony Corporation - C:\Program Files (x86)\Common Files\Sony Shared\AVLib\SsBeSvc.exe
    O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
    O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
    O23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - C:\Program Files (x86)\Common Files\Sony Shared\AVLib\SPTISRV.exe
    O23 - Service: SonicStage SCSI Service (SSScsiSV) - Sony Corporation - C:\Program Files (x86)\Common Files\Sony Shared\AVLib\SSScsiSV.exe
    O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
    O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
    O23 - Service: Panda TPSrv (TPSrv) - Panda Security, S.L. - C:\Program Files (x86)\Panda Security\Panda Antivirus Pro 2012\TPSrvWow.exe
    O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
    O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
    O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
    O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
    O23 - Service: WajamUpdater - Wajam - C:\Program Files (x86)\Wajam\Updater\WajamUpdater.exe
    O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
    O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
    O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
    O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
    O23 - Service: Yahoo! Updater (YahooAUService) - Yahoo! Inc. - C:\Program Files (x86)\Yahoo!\SoftwareUpdate\YahooAUService.exe

    --
    End of file - 16112 bytes

    --------------------------------

    Any help identifying threats would be great. Thanks!

  2. #2
    Member
    Join Date
    Aug 2012
    Posts
    2
    Points
    0

    Default

    I have found the person who was keylogging me. He was attempting to change my facebook password, and an email was sent to me that showed his IP address, and home address. Is there any way I can press charges for illegally accessing personal information?

  3. #3
    Member Spyware Fighter zep516's Avatar
    Join Date
    Dec 2005
    Location
    Pittsburgh, Pa
    Posts
    7,158
    Points
    1301

  4. #4
    Member Spyware Fighter
    Join Date
    Jun 2010
    Location
    Bement,Ill USA
    Posts
    1,340
    Points
    146

    Default

    This thread will now be closed since the issue seems to be resolved.

    If you need this topic reopened, please send me a PM and I will reopen it for you.

    If you should have a new issue, please start a new topic.
    " Extinguishing Malware from the world"

    The Spware Help forum is very busy. If I'm helping you and I've not posted back within 24 hrs., send a PM with your topic link. Thank you.
    HELP REQUESTS VIA THE PM SYSTEM WILL BE IGNORED. The Forums are there for a reason!
    Thanks-