Member Panel

Remember me ?

Forgot password?   

Sponsors and Ads

Join the Team

Live Tag Cloud
PC Forum PC Help Forum » Security & Safety » [Fixed] Hijackthis! Logs » Logs

[Fixed] Hijackthis! Logs - Logs posted in the Security & Safety forums; Hi! Im having troubles with popup windows on my computer. Everytime I start my browser, some windows appear saying my computer is in danger and I need to download some ...

JOIN US NOW to remove these Ads

Post New Thread  Reply
  #1  
Old 12-07-2007
jobijoba's Avatar
Bronze Member
  
Join Date: Dec 2007
Posts: 3
PC Experience: Beginner
jobijoba - See this Members User comments on their Profile page
Default Logs
Hi!
Im having troubles with popup windows on my computer. Everytime I start my browser, some windows appear saying my computer is in danger and I need to download some special files. And it appears as if it was a Windows XP warning. The name of the website is fp.pc-on-internet.
I did all the pre-work you said so now I post the logs for super spyware and hijackthis. I hope youcan help me!!!!I think it's just a spyware, but Norton was unable to detect it. Thanks a lot!!!

Im sorry im not able attach it so I will copy paste it on the thread:


Superantispyware:
SUPERAntiSpyware Scan Log
SUPERAntiSpyware.com - AntiAdware, AntiSpyware, AntiMalware!
Generated 12/07/2007 at 03:45 PM
Application Version : 3.9.1008
Core Rules Database Version : 3357
Trace Rules Database Version: 1356
Scan type : Complete Scan
Total Scan Time : 01:15:05
Memory items scanned : 165
Memory threats detected : 0
Registry items scanned : 6303
Registry threats detected : 19
File items scanned : 54932
File threats detected : 399
Adware.Tracking Cookie
C:\Documents and Settings\Chapot\Cookies\chapot@www.belstat[2].txt
C:\Documents and Settings\Chapot\Cookies\chapot@lisasparxxx[1].txt
C:\Documents and Settings\Chapot\Cookies\chapot@image.masterstats[1].txt
C:\Documents and Settings\Chapot\Cookies\chapot@c.enhance[1].txt
C:\Documents and Settings\Chapot\Cookies\chapot@koclicko[2].txt
C:\Documents and Settings\Chapot\Cookies\chapot@ad.yourmedia[1].txt
C:\Documents and Settings\Chapot\Cookies\chapot@mediaservices.myspa ce[1].txt
C:\Documents and Settings\Chapot\Cookies\chapot@burstnet[1].txt
C:\Documents and Settings\Chapot\Cookies\chapot@mon-blog-sexy[2].txt
C:\Documents and Settings\Chapot\Cookies\chapot@theologia[1].txt
C:\Documents and Settings\Chapot\Cookies\chapot@www.teenybopperclub[1].txt
C:\Documents and Settings\Chapot\Cookies\chapot@bayard[1].txt
C:\Documents and Settings\Chapot\Cookies\chapot@adrenaline[1].txt
C:\Documents and Settings\Chapot\Cookies\chapot@xiti[1].txt
C:\Documents and Settings\Chapot\Cookies\chapot@ebookers[1].txt
C:\Documents and Settings\Chapot\Cookies\chapot@www.xxx-virtuel[2].txt
C:\Documents and Settings\Chapot\Cookies\chapot@www.sa-sex[2].txt
C:\Documents and Settings\Chapot\Cookies\chapot@ads.uknetguide.co[1].txt
C:\Documents and Settings\Chapot\Cookies\chapot@track.effiliation[1].txt
C:\Documents and Settings\Chapot\Cookies\chapot@fr.16.slidein.click intext[1].txt
C:\Documents and Settings\Chapot\Cookies\chapot@i.screensavers[1].txt
C:\Documents and Settings\Chapot\Cookies\chapot@raja[2].txt
C:\Documents and Settings\Chapot\Cookies\chapot@saprr[1].txt
C:\Documents and Settings\Chapot\Cookies\chapot@serving-sys[2].txt
C:\Documents and Settings\Chapot\Cookies\chapot@hornyoyster.us.inte llitxt[1].txt
C:\Documents and Settings\Chapot\Cookies\chapot@statsweb.bnpparibas[2].txt
C:\Documents and Settings\Chapot\Cookies\chapot@yourmedia[1].txt
C:\Documents and Settings\Chapot\Cookies\chapot@gieat[2].txt
C:\Documents and Settings\Chapot\Cookies\chapot@715[1].txt
C:\Documents and Settings\Chapot\Cookies\chapot@ads.wanadooregie[1].txt
C:\Documents and Settings\Chapot\Cookies\chapot@adcentriconline[2].txt
C:\Documents and Settings\Chapot\Cookies\chapot@gieat[1].txt
C:\Documents and Settings\Chapot\Cookies\chapot@qnsr[1].txt
C:\Documents and Settings\Chapot\Cookies\chapot@webtracker.sfr[1].txt
C:\Documents and Settings\Chapot\Cookies\chapot@mediamgr.ugo[2].txt
C:\Documents and Settings\Chapot\Cookies\chapot@stats.manticoretech nology[1].txt
C:\Documents and Settings\Chapot\Cookies\chapot@www.media-g[2].txt
C:\Documents and Settings\Chapot\Cookies\chapot@cgi-bin[1].txt
C:\Documents and Settings\Chapot\Cookies\chapot@bs.serving-sys[1].txt
C:\Documents and Settings\Chapot\Cookies\chapot@skynet[1].txt
C:\Documents and Settings\Chapot\Cookies\chapot@a[1].txt
C:\Documents and Settings\Chapot\Cookies\chapot@www.banneradmin.rai[2].txt
C:\Documents and Settings\Chapot\Cookies\chapot@ads.tiscali[1].txt
C:\Documents and Settings\Chapot\Cookies\chapot@fra[1].txt
C:\Documents and Settings\Chapot\Cookies\chapot@ads.planetactive[2].txt
C:\Documents and Settings\Chapot\Cookies\chapot@www5.addfreestats[2].txt
C:\Documents and Settings\Chapot\Cookies\chapot@clicks.uknetguide.c o[1].txt
C:\Documents and Settings\Chapot\Cookies\chapot@raja[1].txt
C:\Documents and Settings\Chapot\Cookies\chapot@tracker.affistats[1].txt
C:\Documents and Settings\Chapot\Cookies\chapot@www.mediatis[2].txt
C:\Documents and Settings\Chapot\Cookies\chapot@cgi-bin[3].txt
C:\Documents and Settings\Chapot\Cookies\chapot@serviceswitching[1].txt
C:\Documents and Settings\Chapot\Cookies\chapot@clickintext[2].txt
C:\Documents and Settings\Chapot\Cookies\chapot@www.epilot[1].txt
C:\Documents and Settings\Chapot\Cookies\chapot@zedo[1].txt
C:\Documents and Settings\Chapot\Cookies\chapot@atwola[1].txt
C:\Documents and Settings\Chapot\Cookies\chapot@media.adshadow[1].txt
C:\Documents and Settings\Chapot\Cookies\chapot@www.pornattitude[2].txt
C:\Documents and Settings\Chapot\Cookies\chapot@sexshop.amourlibert in[1].txt
C:\Documents and Settings\Chapot\Cookies\chapot@ads.intraregie[2].txt
C:\Documents and Settings\Chapot\Cookies\chapot@ads.canalblog[1].txt
C:\Documents and Settings\Chapot\Cookies\chapot@stats.searchtrack[1].txt
C:\Documents and Settings\Chapot\Cookies\chapot@advertstream[1].txt
C:\Documents and Settings\Chapot\Cookies\chapot@d2.advertserve[1].txt
C:\Documents and Settings\Chapot\Cookies\chapot@click-fr[2].txt
C:\Documents and Settings\Chapot\Cookies\chapot@fr.sitestat[1].txt
C:\Documents and Settings\Chapot\Cookies\chapot@ads.ftpk[2].txt
C:\Documents and Settings\Chapot\Cookies\chapot@ads.aliceadsl[1].txt
C:\Documents and Settings\Chapot\Cookies\chapot@www.clickmanage[2].txt
C:\Documents and Settings\Chapot\Cookies\chapot@www.clitoris-vagina[1].txt
C:\Documents and Settings\Chapot\Cookies\chapot@cz8.clickzs[2].txt
C:\Documents and Settings\Chapot\Cookies\chapot@dhdmedia[2].txt
C:\Documents and Settings\Chapot\Cookies\chapot@www.screensavers[1].txt
C:\Documents and Settings\Chapot\Cookies\chapot@www.xtrastats[1].txt
C:\Documents and Settings\Chapot\Cookies\chapot@ads.benegil[1].txt
C:\Documents and Settings\Chapot\Cookies\chapot@123stat[2].txt
C:\Documents and Settings\Chapot\Cookies\chapot@fontaines-de-lait.reseauporno[1].txt
C:\Documents and Settings\Chapot\Cookies\chapot@pps=typein[2].txt
C:\Documents and Settings\Chapot\Cookies\chapot@civi[1].txt
C:\Documents and Settings\Chapot\Cookies\chapot@anad.tacoda[1].txt
C:\Documents and Settings\Chapot\Cookies\chapot@sexe-universe[1].txt
C:\Documents and Settings\Chapot\Cookies\chapot@www.videosdesexe[2].txt
C:\Documents and Settings\Chapot\Cookies\chapot@ads.afrik[2].txt
C:\Documents and Settings\Chapot\Cookies\chapot@eyrolles[1].txt
C:\Documents and Settings\Chapot\Cookies\chapot@cgi-bin[2].txt
C:\Documents and Settings\Chapot\Cookies\chapot@xxxporn[1].txt
C:\Documents and Settings\Chapot\Cookies\chapot@adv.virgilio[1].txt
C:\Documents and Settings\Chapot\Cookies\chapot@euros4click[1].txt
C:\Documents and Settings\Chapot\Cookies\chapot@c.goclick[1].txt
C:\Documents and Settings\Chapot\Cookies\chapot@stats24[1].txt
C:\Documents and Settings\Chapot\Cookies\chapot@belnk[1].txt
C:\Documents and Settings\Chapot\Cookies\chapot@kanoodle[2].txt
C:\Documents and Settings\Chapot\Cookies\chapot@tripod.lycos[1].txt
C:\Documents and Settings\Chapot\Cookies\chapot@stats[1].txt
C:\Documents and Settings\Chapot\Cookies\chapot@eqtracking[2].txt
C:\Documents and Settings\Chapot\Cookies\chapot@www.xxxproposal[2].txt
C:\Documents and Settings\Chapot\Cookies\chapot@saprr[2].txt
C:\Documents and Settings\Chapot\Cookies\chapot@int.sitestat[2].txt
C:\Documents and Settings\Chapot\Cookies\chapot@xxxproposal[1].txt
C:\Documents and Settings\Chapot\Cookies\chapot@tourisme[1].txt
C:\Documents and Settings\Chapot\Cookies\chapot@starware[2].txt
C:\Documents and Settings\Chapot\Cookies\chapot@www.sexyavenue[2].txt
C:\Documents and Settings\Chapot\Cookies\chapot@pornstarbucks[2].txt
C:\Documents and Settings\Chapot\Cookies\chapot@toplist[1].txt
C:\Documents and Settings\Chapot\Cookies\chapot@adultactioncam[1].txt
C:\Documents and Settings\Chapot\Cookies\chapot@stats.canalblog[2].txt
C:\Documents and Settings\Chapot\Cookies\chapot@toprank[1].txt
C:\Documents and Settings\Chapot\Cookies\chapot@ads.pitchforkmedia[2].txt
C:\Documents and Settings\Chapot\Cookies\chapot@www.sextopia[1].txt
C:\Documents and Settings\Chapot\Cookies\chapot@ad.zanox[1].txt
C:\Documents and Settings\Chapot\Cookies\chapot@pornstarslikeitbig[1].txt
C:\Documents and Settings\Chapot\Cookies\chapot@be.sitestat[2].txt
C:\Documents and Settings\Chapot\Cookies\chapot@media.webstore-internet[1].txt
C:\Documents and Settings\Chapot\Cookies\chapot@vhost.oddcast[2].txt
C:\Documents and Settings\Chapot\Cookies\chapot@www.burstbeacon[2].txt
C:\Documents and Settings\Chapot\Cookies\chapot@eas.apm.emediate[1].txt
C:\Documents and Settings\Chapot\Cookies\chapot@wysistat[2].txt
C:\Documents and Settings\Chapot\Cookies\chapot@ad.ifrance[1].txt
C:\Documents and Settings\Chapot\Cookies\chapot@www.belstat[3].txt
C:\Documents and Settings\Chapot\Cookies\chapot@fr.13.clickintext[2].txt
C:\Documents and Settings\Chapot\Cookies\chapot@tracker.roitesting[1].txt
C:\Documents and Settings\Chapot\Cookies\chapot@int.sitestat[3].txt
C:\Documents and Settings\Chapot\Cookies\chapot@www.sexy-zdenka[1].txt
C:\Documents and Settings\Chapot\Cookies\chapot@fr.20.slidein.click intext[2].txt
C:\Documents and Settings\Chapot\Cookies\chapot@overture[1].txt
C:\Documents and Settings\Chapot\Cookies\chapot@stats.federal-hotel[2].txt
C:\Documents and Settings\Chapot\Cookies\chapot@m1.webstats4u[1].txt
C:\Documents and Settings\Chapot\Cookies\chapot@1069820447[1].txt
C:\Documents and Settings\Chapot\Cookies\chapot@www.ezytrack[2].txt
C:\Documents and Settings\Chapot\Cookies\chapot@fr.sitestat[2].txt
C:\Documents and Settings\Chapot\Cookies\chapot@stats.bdv[2].txt
C:\Documents and Settings\Chapot\Cookies\chapot@ilead.itrack[1].txt
C:\Documents and Settings\Chapot\Cookies\chapot@belgacom[1].txt
C:\Documents and Settings\Chapot\Cookies\chapot@lstat.youku[2].txt
C:\Documents and Settings\Chapot\Cookies\chapot@ads.eonimedia[1].txt
C:\Documents and Settings\Chapot\Cookies\chapot@epochstats[1].txt
C:\Documents and Settings\Chapot\Cookies\chapot@brucespringsteen[1].txt
C:\Documents and Settings\Chapot\Cookies\chapot@1061018218[1].txt
C:\Documents and Settings\Chapot\Cookies\chapot@www8.addfreestats[1].txt
C:\Documents and Settings\Chapot\Cookies\chapot@movies.sextube[1].txt
C:\Documents and Settings\Chapot\Cookies\chapot@clicksor[1].txt
C:\Documents and Settings\Chapot\Cookies\chapot@ad.pixicast[2].txt
C:\Documents and Settings\Chapot\Cookies\chapot@www.pornstar[1].txt
C:\Documents and Settings\Chapot\Cookies\chapot@fr.14.slidein.click intext[2].txt
C:\Documents and Settings\Chapot\Cookies\chapot@1071620676[1].txt
C:\Documents and Settings\Chapot\Cookies\chapot@stats[4].txt
C:\Documents and Settings\Chapot\Cookies\chapot@ad1.doublepimp[1].txt
C:\Documents and Settings\Chapot\Cookies\chapot@int.sitestat[1].txt
C:\Documents and Settings\Chapot\Cookies\chapot@tracking.veille-referencement[1].txt
C:\Documents and Settings\Chapot\Cookies\chapot@www.brucespringstee n[1].txt
C:\Documents and Settings\Chapot\Cookies\chapot@cf.dhdmedia[2].txt
C:\Documents and Settings\Chapot\Cookies\chapot@nl.sitestat[1].txt
C:\Documents and Settings\Chapot\Cookies\chapot@int.sitestat[4].txt
C:\Documents and Settings\Chapot\Cookies\chapot@sexybriana[2].txt
C:\Documents and Settings\Chapot\Cookies\chapot@www.imedialearn[1].txt
C:\Documents and Settings\Chapot\Cookies\chapot@meteof[2].txt
C:\Documents and Settings\Chapot\Cookies\chapot@fr.26.slidein.click intext[1].txt
C:\Documents and Settings\Chapot\Cookies\chapot@stats.tf1[1].txt
C:\Documents and Settings\Chapot\Cookies\chapot@tracking.lsfinterac tive[1].txt
C:\Documents and Settings\Chapot\Cookies\chapot@stat.hi-pi[1].txt
C:\Documents and Settings\Chapot\Cookies\chapot@www.famouspornstars[2].txt
C:\Documents and Settings\Chapot\Cookies\chapot@stats.prao[1].txt
C:\Documents and Settings\Chapot\Cookies\chapot@fr.13.slidein.click intext[1].txt
C:\Documents and Settings\Chapot\Cookies\chapot@fr.24.slidein.click intext[2].txt
C:\Documents and Settings\Chapot\Cookies\chapot@int.sitestat[5].txt
C:\Documents and Settings\Chapot\Cookies\chapot@1067502184[1].txt
C:\Documents and Settings\Chapot\Cookies\chapot@eyewonder[1].txt
C:\Documents and Settings\Chapot\Cookies\chapot@carasexe[1].txt
C:\Documents and Settings\Chapot\Cookies\chapot@fr.31.slidein.click intext[2].txt
C:\Documents and Settings\Chapot\Cookies\chapot@stats[3].txt
C:\Documents and Settings\Chapot\Cookies\chapot@postclicktracking[1].txt
C:\Documents and Settings\Chapot\Cookies\chapot@be.sitestat[1].txt
C:\Documents and Settings\Chapot\Cookies\chapot@richmedia.yahoo[1].txt
C:\Documents and Settings\Chapot\Cookies\chapot@media.hotels[1].txt
C:\Documents and Settings\Chapot\Cookies\chapot@toplist[2].txt
C:\Documents and Settings\Chapot\Cookies\chapot@fr.12.slidein.click intext[2].txt
C:\Documents and Settings\Chapot\Cookies\chapot@2.adbrite[1].txt
C:\Documents and Settings\Chapot\Cookies\chapot@1071512668[1].txt
C:\Documents and Settings\Chapot\Cookies\chapot@tracking.publicidee s[2].txt
C:\Documents and Settings\Chapot\Cookies\chapot@www.googleadservice s[1].txt
C:\Documents and Settings\Chapot\Cookies\chapot@fr.15.slidein.click intext[1].txt
C:\Documents and Settings\Chapot\Cookies\chapot@salondesentrepreneu rs[1].txt
C:\Documents and Settings\Chapot\Cookies\chapot@sexmovies[1].txt
C:\Documents and Settings\Chapot\Cookies\chapot@collective-media[1].txt
C:\Documents and Settings\Chapot\Cookies\chapot@1057830175[1].txt
C:\Documents and Settings\Chapot\Cookies\chapot@stats[5].txt
C:\Documents and Settings\Chapot\Cookies\chapot@fr.classic.clickint ext[2].txt
C:\Documents and Settings\Chapot\Cookies\chapot@nl.sitestat[2].txt
C:\Documents and Settings\Chapot\Cookies\chapot@ads.adbrite[2].txt
C:\Documents and Settings\Chapot\Cookies\chapot@web-stats[1].txt
C:\Documents and Settings\Chapot\Cookies\chapot@toyboxxx[1].txt
C:\Documents and Settings\Chapot\Cookies\chapot@stats[6].txt
C:\Documents and Settings\Chapot\Cookies\chapot@630.stats.misstrend s[1].txt
C:\Documents and Settings\Chapot\Cookies\chapot@fr.clickintext[1].txt
C:\Documents and Settings\Chapot\Cookies\chapot@fr.slidein.clickint ext[2].txt
C:\Documents and Settings\Chapot\Cookies\chapot@ads.pixicast[2].txt
C:\Documents and Settings\Chapot\Cookies\chapot@pornstars-wendiknight[1].txt
C:\Documents and Settings\Chapot\Cookies\chapot@audit.median[1].txt
C:\Documents and Settings\Chapot\Cookies\chapot@hornyoyster[2].txt
C:\Documents and Settings\Chapot\Cookies\chapot@cover19.adultfriend finder[2].txt
C:\Documents and Settings\Chapot\Cookies\chapot@www.1xxxpics[1].txt
C:\Documents and Settings\Chapot\Cookies\chapot@adultadworld[1].txt
C:\Documents and Settings\Chapot\Cookies\chapot@journalduporn[2].txt
C:\Documents and Settings\Chapot\Cookies\chapot@clicks.lasthop[1].txt
C:\Documents and Settings\Chapot\Cookies\chapot@fr.29.slidein.click intext[2].txt
C:\Documents and Settings\Chapot\Cookies\chapot@tour.pornstarslikei tbig[1].txt
C:\Documents and Settings\Chapot\Cookies\chapot@1059384244[1].txt
C:\Documents and Settings\Chapot\Cookies\chapot@ad1.clickhype[1].txt
C:\Documents and Settings\Chapot\Cookies\chapot@ads.fordaq[1].txt
C:\Documents and Settings\Chapot\Cookies\chapot@fr.17.slidein.click intext[2].txt
C:\Documents and Settings\Chapot\Cookies\chapot@dcs09kd5zxbemxt6aes m212ws_2o7b[2].txt
C:\Documents and Settings\Chapot\Cookies\chapot@sexe_gratuit[2].txt
C:\Documents and Settings\DUMONT\Cookies\dumont@kanoodle[1].txt
C:\Documents and Settings\Joe\Cookies\joe@imrworldwide[2].txt
C:\Documents and Settings\Joe\Cookies\joe@tour.pornstarslikeitbig[2].txt
C:\Documents and Settings\Joe\Cookies\joe@xiti[1].txt
C:\Documents and Settings\Joe\Cookies\joe@yourmedia[1].txt
C:\Documents and Settings\Matt\Cookies\matt@2.marketbanker[2].txt
C:\Documents and Settings\Matt\Cookies\matt@acces-adulte[1].txt
C:\Documents and Settings\Matt\Cookies\matt@acces.workingfucking[1].txt
C:\Documents and Settings\Matt\Cookies\matt@ad.120.tbn[1].txt
C:\Documents and Settings\Matt\Cookies\matt@ad.cibleclick[1].txt
C:\Documents and Settings\Matt\Cookies\matt@ad.coupeci[1].txt
C:\Documents and Settings\Matt\Cookies\matt@ad.gen.tbn[1].txt
C:\Documents and Settings\Matt\Cookies\matt@ad.ir[1].txt
C:\Documents and Settings\Matt\Cookies\matt@ad.scanmedios[2].txt
C:\Documents and Settings\Matt\Cookies\matt@ad.webreseau[2].txt
C:\Documents and Settings\Matt\Cookies\matt@ad.ya[1].txt
C:\Documents and Settings\Matt\Cookies\matt@ad.zanox[1].txt
C:\Documents and Settings\Matt\Cookies\matt@ad3.123multimedia[1].txt
C:\Documents and Settings\Matt\Cookies\matt@adecn[2].txt
C:\Documents and Settings\Matt\Cookies\matt@adopt.hbmediapro[2].txt
C:\Documents and Settings\Matt\Cookies\matt@adpornstars[2].txt
C:\Documents and Settings\Matt\Cookies\matt@ads.addclic[2].txt
C:\Documents and Settings\Matt\Cookies\matt@ads.expedia[1].txt
C:\Documents and Settings\Matt\Cookies\matt@ads.monster[1].txt
C:\Documents and Settings\Matt\Cookies\matt@ads.pitchforkmedia[1].txt
C:\Documents and Settings\Matt\Cookies\matt@ads.realtechnetwork[1].txt
C:\Documents and Settings\Matt\Cookies\matt@ads.searchextreme[2].txt
C:\Documents and Settings\Matt\Cookies\matt@ads.skins[2].txt
C:\Documents and Settings\Matt\Cookies\matt@ads.stileproject[2].txt
C:\Documents and Settings\Matt\Cookies\matt@ads.us.e-planning[1].txt
C:\Documents and Settings\Matt\Cookies\matt@ads.wanadooregie[1].txt
C:\Documents and Settings\Matt\Cookies\matt@ads.webtender[1].txt
C:\Documents and Settings\Matt\Cookies\matt@adult-pornstar-mall[1].txt
C:\Documents and Settings\Matt\Cookies\matt@adultbouncer[2].txt
C:\Documents and Settings\Matt\Cookies\matt@adultlounge[1].txt
C:\Documents and Settings\Matt\Cookies\matt@adv.surinter[2].txt
C:\Documents and Settings\Matt\Cookies\matt@advertpro.ya[1].txt
C:\Documents and Settings\Matt\Cookies\matt@advertstream[1].txt
C:\Documents and Settings\Matt\Cookies\matt@atwola[2].txt
C:\Documents and Settings\Matt\Cookies\matt@audit.median[1].txt
C:\Documents and Settings\Matt\Cookies\matt@azjmp[1].txt
C:\Documents and Settings\Matt\Cookies\matt@banner3.inet-traffic[1].txt
C:\Documents and Settings\Matt\Cookies\matt@banner[2].txt
C:\Documents and Settings\Matt\Cookies\matt@bdsmvideos[2].txt
C:\Documents and Settings\Matt\Cookies\matt@belnk[1].txt
C:\Documents and Settings\Matt\Cookies\matt@brianabanks.inadult[2].txt
C:\Documents and Settings\Matt\Cookies\matt@c3.gostats[2].txt
C:\Documents and Settings\Matt\Cookies\matt@carasexe[2].txt
C:\Documents and Settings\Matt\Cookies\matt@cassava[1].txt
C:\Documents and Settings\Matt\Cookies\matt@click-fr[2].txt
C:\Documents and Settings\Matt\Cookies\matt@click.cashengines[2].txt
C:\Documents and Settings\Matt\Cookies\matt@clicksor[1].txt
C:\Documents and Settings\Matt\Cookies\matt@clicktorrent[1].txt
C:\Documents and Settings\Matt\Cookies\matt@clicktrack.wnu[1].txt
C:\Documents and Settings\Matt\Cookies\matt@creativeby.viewpoint[1].txt
C:\Documents and Settings\Matt\Cookies\matt@d2.advertserve[1].txt
C:\Documents and Settings\Matt\Cookies\matt@dcs09kd5zxbemxt6aesm212 ws_2o7b[2].txt
C:\Documents and Settings\Matt\Cookies\matt@devon-pornstars[1].txt
C:\Documents and Settings\Matt\Cookies\matt@dist.belnk[1].txt
C:\Documents and Settings\Matt\Cookies\matt@dopornstars[2].txt
C:\Documents and Settings\Matt\Cookies\matt@eas.apm.emediate[1].txt
C:\Documents and Settings\Matt\Cookies\matt@eboz[1].txt
C:\Documents and Settings\Matt\Cookies\matt@fr.winantivirus[2].txt
C:\Documents and Settings\Matt\Cookies\matt@fr.winfixer[1].txt
C:\Documents and Settings\Matt\Cookies\matt@funwebproducts[1].txt
C:\Documents and Settings\Matt\Cookies\matt@gay-porn-star-videos.xxxratedwomen[2].txt
C:\Documents and Settings\Matt\Cookies\matt@go.winantivirus[2].txt
C:\Documents and Settings\Matt\Cookies\matt@gostats[2].txt
C:\Documents and Settings\Matt\Cookies\matt@hairy.spotbrokers[2].txt
C:\Documents and Settings\Matt\Cookies\matt@hornyoyster.us.intellit xt[1].txt
C:\Documents and Settings\Matt\Cookies\matt@hornyoyster[2].txt
C:\Documents and Settings\Matt\Cookies\matt@ile-des-medias[2].txt
C:\Documents and Settings\Matt\Cookies\matt@m1.webstats4u[1].txt
C:\Documents and Settings\Matt\Cookies\matt@media.adshadow[2].txt
C:\Documents and Settings\Matt\Cookies\matt@media.intelia[2].txt
C:\Documents and Settings\Matt\Cookies\matt@media.publicites[1].txt
C:\Documents and Settings\Matt\Cookies\matt@media.titleist[1].txt
C:\Documents and Settings\Matt\Cookies\matt@mediabit[1].txt
C:\Documents and Settings\Matt\Cookies\matt@mediambient.gencat[1].txt
C:\Documents and Settings\Matt\Cookies\matt@nova-stats[1].txt
C:\Documents and Settings\Matt\Cookies\matt@perfectpornstars[1].txt
C:\Documents and Settings\Matt\Cookies\matt@pornaccess[2].txt
C:\Documents and Settings\Matt\Cookies\matt@pornstar-paradise[1].txt
C:\Documents and Settings\Matt\Cookies\matt@pornstarbucks[2].txt
C:\Documents and Settings\Matt\Cookies\matt@pornstars-ariagiovanni[1].txt
C:\Documents and Settings\Matt\Cookies\matt@pornstars-tabithastevens[1].txt
C:\Documents and Settings\Matt\Cookies\matt@pornstars-wendiknight[1].txt
C:\Documents and Settings\Matt\Cookies\matt@pornstarselite[2].txt
C:\Documents and Settings\Matt\Cookies\matt@pornstarslikeitbig[1].txt
C:\Documents and Settings\Matt\Cookies\matt@proximedia[1].txt
C:\Documents and Settings\Matt\Cookies\matt@salondesentrepreneurs[2].txt
C:\Documents and Settings\Matt\Cookies\matt@server.cpmstar[1].txt
C:\Documents and Settings\Matt\Cookies\matt@sexe.photos-pc[2].txt
C:\Documents and Settings\Matt\Cookies\matt@sexy-babes[2].txt
C:\Documents and Settings\Matt\Cookies\matt@sexyvip[2].txt
C:\Documents and Settings\Matt\Cookies\matt@stat.inleadmedia[1].txt
C:\Documents and Settings\Matt\Cookies\matt@stat.novopress[1].txt
C:\Documents and Settings\Matt\Cookies\matt@stats.sports[1].txt
C:\Documents and Settings\Matt\Cookies\matt@statsweb.bnpparibas[1].txt
C:\Documents and Settings\Matt\Cookies\matt@stats[10].txt
C:\Documents and Settings\Matt\Cookies\matt@stats[12].txt
C:\Documents and Settings\Matt\Cookies\matt@stats[13].txt
C:\Documents and Settings\Matt\Cookies\matt@stats[14].txt
C:\Documents and Settings\Matt\Cookies\matt@stats[15].txt
C:\Documents and Settings\Matt\Cookies\matt@stats[16].txt
C:\Documents and Settings\Matt\Cookies\matt@stats[17].txt
C:\Documents and Settings\Matt\Cookies\matt@stats[18].txt
C:\Documents and Settings\Matt\Cookies\matt@stats[19].txt
C:\Documents and Settings\Matt\Cookies\matt@stats[1].txt
C:\Documents and Settings\Matt\Cookies\matt@stats[20].txt
C:\Documents and Settings\Matt\Cookies\matt@stats[21].txt
C:\Documents and Settings\Matt\Cookies\matt@stats[22].txt
C:\Documents and Settings\Matt\Cookies\matt@stats[23].txt
C:\Documents and Settings\Matt\Cookies\matt@stats[2].txt
C:\Documents and Settings\Matt\Cookies\matt@stats[3].txt
C:\Documents and Settings\Matt\Cookies\matt@stats[4].txt
C:\Documents and Settings\Matt\Cookies\matt@stats[5].txt
C:\Documents and Settings\Matt\Cookies\matt@stats[7].txt
C:\Documents and Settings\Matt\Cookies\matt@stats[8].txt
C:\Documents and Settings\Matt\Cookies\matt@stats[9].txt
C:\Documents and Settings\Matt\Cookies\matt@stats_strat[1].txt
C:\Documents and Settings\Matt\Cookies\matt@teenagersgoingwild[2].txt
C:\Documents and Settings\Matt\Cookies\matt@therichmedia[2].txt
C:\Documents and Settings\Matt\Cookies\matt@tour.pornstarslikeitbig[1].txt
C:\Documents and Settings\Matt\Cookies\matt@toyboxxx[1].txt
C:\Documents and Settings\Matt\Cookies\matt@track.effiliation[1].txt
C:\Documents and Settings\Matt\Cookies\matt@tracker.affistats[2].txt
C:\Documents and Settings\Matt\Cookies\matt@tracker.esecure-transaction[1].txt
C:\Documents and Settings\Matt\Cookies\matt@tracker[1].txt
C:\Documents and Settings\Matt\Cookies\matt@tracking.polenord[1].txt
C:\Documents and Settings\Matt\Cookies\matt@tracking.publicidees[1].txt
C:\Documents and Settings\Matt\Cookies\matt@tracking.sms[1].txt
C:\Documents and Settings\Matt\Cookies\matt@tracking.veille-referencement[2].txt
C:\Documents and Settings\Matt\Cookies\matt@tripod.lycos[2].txt
C:\Documents and Settings\Matt\Cookies\matt@ultra-xxx[1].txt
C:\Documents and Settings\Matt\Cookies\matt@winantivirus[2].txt
C:\Documents and Settings\Matt\Cookies\matt@winfixer[2].txt
C:\Documents and Settings\Matt\Cookies\matt@www.adult-chat-world[1].txt
C:\Documents and Settings\Matt\Cookies\matt@www.adultplayersclub[1].txt
C:\Documents and Settings\Matt\Cookies\matt@www.allrealitypass[1].txt
C:\Documents and Settings\Matt\Cookies\matt@www.bombateen[1].txt
C:\Documents and Settings\Matt\Cookies\matt@www.dopornstars[2].txt
C:\Documents and Settings\Matt\Cookies\matt@www.erotiqsex[1].txt
C:\Documents and Settings\Matt\Cookies\matt@www.erotiqsex[3].txt
C:\Documents and Settings\Matt\Cookies\matt@www.famouspornstars[2].txt
C:\Documents and Settings\Matt\Cookies\matt@www.fatpenguinmedia[2].txt
C:\Documents and Settings\Matt\Cookies\matt@www.films-pornos[1].txt
C:\Documents and Settings\Matt\Cookies\matt@www.gay-porno[1].txt
C:\Documents and Settings\Matt\Cookies\matt@www.googleadservices[1].txt
C:\Documents and Settings\Matt\Cookies\matt@www.googleadservices[2].txt
C:\Documents and Settings\Matt\Cookies\matt@www.hornyoyster[1].txt
C:\Documents and Settings\Matt\Cookies\matt@www.insexe[1].txt
C:\Documents and Settings\Matt\Cookies\matt@www.lesexehard[2].txt
C:\Documents and Settings\Matt\Cookies\matt@www.liste-sexynews[1].txt
C:\Documents and Settings\Matt\Cookies\matt@www.porn365[1].txt
C:\Documents and Settings\Matt\Cookies\matt@www.pornstar-paradise[1].txt
C:\Documents and Settings\Matt\Cookies\matt@www.pornstarbang[1].txt
C:\Documents and Settings\Matt\Cookies\matt@www.pornstarmoviezone[2].txt
C:\Documents and Settings\Matt\Cookies\matt@www.pornstarsdeluxe[1].txt
C:\Documents and Settings\Matt\Cookies\matt@www.pornstars[2].txt
C:\Documents and Settings\Matt\Cookies\matt@www.sa-sex[2].txt
C:\Documents and Settings\Matt\Cookies\matt@www.sex-shop.rueducharme[1].txt
C:\Documents and Settings\Matt\Cookies\matt@www.sexbombgirl[1].txt
C:\Documents and Settings\Matt\Cookies\matt@www.sexclusivite[2].txt
C:\Documents and Settings\Matt\Cookies\matt@www.sexxx[2].txt
C:\Documents and Settings\Matt\Cookies\matt@www.sexy-photos[2].txt
C:\Documents and Settings\Matt\Cookies\matt@www.sexyavenue[1].txt
C:\Documents and Settings\Matt\Cookies\matt@www.sexyl0ok[1].txt
C:\Documents and Settings\Matt\Cookies\matt@www.sexywebpictures[1].txt
C:\Documents and Settings\Matt\Cookies\matt@www.star-sexy[1].txt
C:\Documents and Settings\Matt\Cookies\matt@www.starzporn[2].txt
C:\Documents and Settings\Matt\Cookies\matt@www.stilemedia[1].txt
C:\Documents and Settings\Matt\Cookies\matt@www.topliste[1].txt
C:\Documents and Settings\Matt\Cookies\matt@www.videos-xxx[1].txt
C:\Documents and Settings\Matt\Cookies\matt@www.videosdesexe[2].txt
C:\Documents and Settings\Matt\Cookies\matt@www.winfixer[2].txt
C:\Documents and Settings\Matt\Cookies\matt@www.xxxmegadrive[2].txt
C:\Documents and Settings\Matt\Cookies\matt@www.xxxproposal[2].txt
C:\Documents and Settings\Matt\Cookies\matt@www.xxxvideochannel[1].txt
C:\Documents and Settings\Matt\Cookies\matt@www2.inettraffic[2].txt
C:\Documents and Settings\Matt\Cookies\matt@www2.visiostats[1].txt
C:\Documents and Settings\Matt\Cookies\matt@www5.addfreestats[2].txt
C:\Documents and Settings\Matt\Cookies\matt@xiti[1].txt
C:\Documents and Settings\Matt\Cookies\matt@xxxvideochannel[1].txt
C:\Documents and Settings\Matt\Cookies\matt@youporn[2].txt
C:\Documents and Settings\Matt\Cookies\matt@yourmedia[1].txt
C:\Documents and Settings\Matt\Local Settings\Temp\Cookies\matt@yourmedia[1].txt
Adware.180solutions/Search Assistant
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Mod uleUsage\C:/WINDOWS/Downloaded Program Files/MediaGatewayX.dll
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Mod uleUsage\C:/WINDOWS/Downloaded Program Files/MediaGatewayX.dll#.Owner
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Mod uleUsage\C:/WINDOWS/Downloaded Program Files/MediaGatewayX.dll#{8FCDF9D9-A28B-480F-8C3D-581F119A8AB8}
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Sha redDLLs#C:\WINDOWS\Downloaded Program Files\MediaGatewayX.dll [  ]
Adware.MyWay
HKLM\Software\MyWay
HKLM\Software\MyWay\myBar
HKLM\Software\MyWay\myBar#Dir
HKLM\Software\MyWay\myBar#pid
HKLM\Software\MyWay\myBar#CurInstall
HKLM\Software\MyWay\myBar#sr
HKLM\Software\MyWay\myBar#pl
HKLM\Software\MyWay\myBar#Id
HKLM\Software\MyWay\myBar#CacheDir
HKLM\Software\MyWay\myBar#HistoryDir
HKLM\Software\MyWay\myBar#Visible
HKLM\Software\MyWay\myBar#SettingsDir
HKLM\Software\MyWay\myBar#ConfigRevisionURL
HKLM\Software\MyWay\myBar#ConfigDateStamp
HKLM\Software\MyWay\myBar#Maximized



HIJACKTHIS/
Logfile of Trend Micro HijackThis v2.0.0 (BETA)
Scan saved at 19:17:08, on 07/12/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccSvcHst.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Fichiers communs\Symantec Shared\AppCore\AppSvc32.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccSvcHst.exe
C:\Program Files\Fichiers communs\Microsoft Shared\VS7Debug\mdm.exe
C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
C:\WINDOWS\system32\HPZipm12.exe
C:\WINDOWS\system32\slserv.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Virtual CD v4 SDK\system\vcssecs.exe
C:\Program Files\Skype\Phone\Skype.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNo tifier.exe
C:\Program Files\Nokia\Nokia PC Suite 6\PcSync2.exe
C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\PROGRA~1\FICHIE~1\Nokia\MPAPI\MPAPI3s.exe
C:\WINDOWS\system32\fxssvc.exe
C:\Program Files\Skype\Plugin Manager\SkypePM.exe
C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
C:\Program Files\Fichiers communs\Symantec Shared\CCPD-LC\symlcsvc.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Windows Live\Messenger\usnsvc.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WLLoginProxy.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Documents and Settings\Chapot\Bureau\AntiVirus\HiJackThis_v2.exe
C:\PROGRA~1\MOZILL~1\FIREFOX.EXE
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Google
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Windows Internet Explorer optimisé pour MSN
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)
O1 - Hosts: 127.0.0.0 localhost
O1 - Hosts: 127.0.0.2 auditmypc.com
O1 - Hosts: 127.0.0.4 bulletproofsoft.net
O1 - Hosts: 127.0.0.5 camtech2000.net
O1 - Hosts: 127.0.0.6 cexx.org
O1 - Hosts: 127.0.0.7 computercops.us
O1 - Hosts: 127.0.0.8 ct7support.com
O1 - Hosts: 127.0.0.9 doxdesk.com
O1 - Hosts: 127.0.0.20 kellys-korner-xp.com
O1 - Hosts: 127.0.0.21 kephyr.com
O1 - Hosts: 127.0.0.24 lurkhere.com
O1 - Hosts: 127.0.0.25 majorgeeks.com
O1 - Hosts: 127.0.0.27 mjc1.com
O1 - Hosts: 127.0.0.28 moosoft.com
O1 - Hosts: 127.0.0.29 mvps.org
O1 - Hosts: 127.0.0.30 net-integration.net
O1 - Hosts: 127.0.0.31 noadware.net
O1 - Hosts: 127.0.0.32 no-spybot.com
O1 - Hosts: 127.0.0.33 onlinepcfix.com
O1 - Hosts: 127.0.0.34 pchell.com
O1 - Hosts: 127.0.0.35 pestpatrol.com
O1 - Hosts: 127.0.0.36 safer-networking.org
O1 - Hosts: 127.0.0.37 secure.spykiller.com
O1 - Hosts: 127.0.0.38 secureie.com
O1 - Hosts: 127.0.0.39 security.kolla.de
O1 - Hosts: 127.0.0.40 spybot.info
O1 - Hosts: 127.0.0.41 spychecker.com
O1 - Hosts: 127.0.0.42 spychecker.com
O1 - Hosts: 127.0.0.43 spycop.com
O1 - Hosts: 127.0.0.44 spyguard.com
O1 - Hosts: 127.0.0.45 spykiller.com
O1 - Hosts: 127.0.0.46 spyware.co.uk
O1 - Hosts: 127.0.0.47 spyware-cop.com
O1 - Hosts: 127.0.0.48 spywareinfo.com
O1 - Hosts: 127.0.0.49 spywarenuker.com
O1 - Hosts: 127.0.0.50 spywareremove.com
O1 - Hosts: 127.0.0.51 spywareremove.com
O1 - Hosts: 127.0.0.52 stopzillapro.com
O1 - Hosts: 127.0.0.53 sunbelt-software.com
O1 - Hosts: 127.0.0.54 thiefware.com
O1 - Hosts: 127.0.0.55 tomcoyote.org
O1 - Hosts: 127.0.0.56 unwantedlinks.com
O1 - Hosts: 127.0.0.57 webattack.com
O1 - Hosts: 127.0.0.58 wilders.org
O1 - Hosts: 127.0.0.59 Firewall Test, Web Tools and Free Internet Security Audit
O1 - Hosts: 127.0.0.60 BulletProofSoft Home Page - Spyware Remover Spyware Adware Remover Free Spyware Removal Adware Removal AntiSpyware Free Anti Spyware Software MP3 to WAV converter, MP3 converter, MP3 to WAV decoder, WAV to MP3 encoder - PC System Tweak - BPS Phishing
O1 - Hosts: 127.0.0.61 Counterexploitation [cexx.org]
O1 - Hosts: 127.0.0.62 CastleCops®
O1 - Hosts: 127.0.0.63 ct7Support Site
O1 - Hosts: 127.0.0.64 doxdesk.com: home
O1 - Hosts: 127.0.0.65 eblocs™ - Protection With Early Detection
O1 - Hosts: 127.0.0.66 Enigma Software Group, Inc.
O1 - Hosts: 127.0.0.67 best www.free-spyware-scan.com information online
O1 - Hosts: 127.0.0.68 Free-Web-Browsers.com Alternative Browsers: Stop Spyware and Browser Hijackers
O1 - Hosts: 127.0.0.69 Home of Gibson Research Corporation
O1 - Hosts: 127.0.0.71 The Tech FAQ
O1 - Hosts: 127.0.0.72 The Hare's Lair Web site
O1 - Hosts: 127.0.0.73 Javacool Software
O1 - Hosts: 127.0.0.74 Kellys XP Korner
O1 - Hosts: 127.0.0.75 Welcome to Kephyr.com - Download our free software - Bazooka Adware and Scanner, ConnectBuddy, etc.
O1 - Hosts: 127.0.0.78 LurkHere - Information, Links and Support to Help PC Users Optimize Their Computers
O1 - Hosts: 127.0.0.79 MajorGeeks.com - Download Freeware and Shareware Computer Utilities.
O1 - Hosts: 127.0.0.81 Mjc1.com - HiJack this Resources and Information. This website is for sale!
O1 - Hosts: 127.0.0.82 MooSoft Development Inc : Main - Welcome browse
O1 - Hosts: 127.0.0.83 Welcome to the MVPs.org home page!
O1 - Hosts: 127.0.0.84 Net Integration, taking the byte out of malware
O1 - Hosts: 127.0.0.85 Adware, Spyware, Popups - They invade your privacy and harm your PC. Protect Yourself with NoAdware!
O1 - Hosts: 127.0.0.86 no-spybot.com
O1 - Hosts: 127.0.0.87 www.onlinepcfix.com
O1 - Hosts: 127.0.0.88 PC Hell: Computer Hints and Tips to bring you back from the edge
O1 - Hosts: 127.0.0.89 eTrust® PestPatrol® Anti-Spyware
O1 - Hosts: 127.0.0.90 The home of Spybot-S&D!
O1 - Hosts: 127.0.0.91 www.secureie.com
O1 - Hosts: 127.0.0.92 The home of Spybot-S&D!
O1 - Hosts: 127.0.0.93 The home of Spybot-S&D!
O1 - Hosts: 127.0.0.94 Spychecker - download spyware removal and Internet privacy tools
O1 - Hosts: 127.0.0.95 Spychecker - download spyware removal and Internet privacy tools
O1 - Hosts: 127.0.0.96 SpyCop - Leader In Privacy Protection Software
O1 - Hosts: 127.0.0.97 Spector and eBlaster Spy Software - Internet Monitoring Software
O1 - Hosts: 127.0.0.98 SpyKiller: spyware removal - FREE SCAN - remove adware
O1 - Hosts: 127.0.0.99 Spyware Watch (UK) - spyware, adware, stealware - stay aware!
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {1E8A6170-7264-4D0F-BEAE-D42A53123C75} - C:\Program Files\Fichiers communs\Symantec Shared\coShared\Browser\1.5\NppBho.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\JavaSoft\JRE\1.1\bin\ssv.dll (file missing)
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.0.301.7164\sw g.dll
O3 - Toolbar: Show Norton Toolbar - {90222687-F593-4738-B738-FBEE9C7B26DF} - C:\Program Files\Fichiers communs\Symantec Shared\coShared\Browser\1.5\UIBHO.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll
O4 - HKLM\..\Run: [Desktop Search] C:\WINDOWS\isrvs\desktop.exe
O4 - HKLM\..\Run: [ccApp] C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [BitComet] "C:\Program Files\BitComet\BitComet.exe"
O4 - HKCU\..\Run: [Yahoo! Pager] "C:\Program Files\Yahoo!\Messenger\ypager.exe" -quiet
O4 - HKCU\..\Run: [updateMgr] "C:\Program Files\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.exe" AcRdB7_0_8 -reboot 1
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNo tifier.exe
O4 - HKCU\..\Run: [PcSync] C:\Program Files\Nokia\Nokia PC Suite 6\PcSync2.exe /NoDialog
O4 - HKCU\..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Default user')
O8 - Extra context menu item: Add to Windows &Live Favorites - Add to Windows Live Favorites
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000
O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\System32\Shdocvw.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O10 - Unknown file in Winsock LSP: c:\windows\system32\nwprovau.dll
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:\Program Files\Yahoo!\Common\yinsthelper.dll
O16 - DPF: {474F00F5-3853-492C-AC3A-476512BBC336} (UploadListView Class) - http://picasaweb.google.com/s/v/24.19/uploader2.cab
O16 - DPF: {493ACF15-5CD9-4474-82A6-91670C3DD66E} (LinkedIn ContactFinderControl) - http://www.linkedin.com/cab/LinkedIn...derControl.cab
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://by18fd.bay18.hotmail.msn.com/...s/MsnPUpld.cab
O16 - DPF: {67DABFBF-D0AB-41FA-9C46-CC0F21721616} (DivXBrowserPlugin Object) - http://go.divx.com/plugin/DivXBrowserPlugin.cab
O16 - DPF: {8FCDF9D9-A28B-480F-8C3D-581F119A8AB8} - http://static.zangocash.com/cab/Zango/ie/bridge-c8.cab
O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/Ms...Downloader.cab
O16 - DPF: {B3A5878E-5B4C-4D12-9156-4D7FD8D0AF6C} (Cltbuilder Class) - http://akamai.downloadv3.com/binarie...e2oneSvcFR.cab
O16 - DPF: {D1B80EBF-1A26-4FEC-B0B9-DCB934C6507E} - http://dialup.carpediem.fr/CABS/cd/1...ccesMembre.cab
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\FICHIE~1\Skype\SKYPE4~1.DLL
O20 - Winlogon Notify: !SASWinLogon - C:\Program Files\SUPERAntiSpyware\SASWINLO.dll
O22 - SharedTaskScheduler: Pré-chargeur Browseui - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\System32\browseui.dll
O22 - SharedTaskScheduler: Démon de cache des catégories de composant - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\System32\browseui.dll
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccSvcHst.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccSvcHst.exe
O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccSvcHst.exe
O23 - Service: COM Host (comHost) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\VAScanner\comHost.exe
O23 - Service: Service d'administration du Gestionnaire de disque logique (dmadmin) - Unknown owner - C:\WINDOWS\System32\dmadmin.exe
O23 - Service: Journal des événements (Eventlog) - Unknown owner - C:\WINDOWS\system32\services.exe
O23 - Service: Fax - Unknown owner - C:\WINDOWS\system32\fxssvc.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Service COM de gravage de CD IMAPI (ImapiService) - Unknown owner - C:\WINDOWS\System32\imapi.exe
O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Symantec IS Password Validation (ISPwdSvc) - Symantec Corporation - C:\Program Files\Norton Internet Security\isPwdSvc.exe
O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
O23 - Service: Partage de Bureau à distance NetMeeting (mnmsrvc) - Unknown owner - C:\WINDOWS\System32\mnmsrvc.exe
O23 - Service: Planificateur LiveUpdate automatique - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
O23 - Service: Plug-and-Play (PlugPlay) - Unknown owner - C:\WINDOWS\system32\services.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
O23 - Service: Gestionnaire de session d'aide sur le Bureau à distance (RDSessMgr) - Unknown owner - C:\WINDOWS\system32\sessmgr.exe
O23 - Service: Carte à puce (SCardSvr) - Unknown owner - C:\WINDOWS\System32\SCardSvr.exe
O23 - Service: ServiceLayer - Nokia. - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: SmartLinkService (SLService) - - C:\WINDOWS\SYSTEM32\slserv.exe
O23 - Service: Symantec Core LC - Unknown owner - C:\Program Files\Fichiers communs\Symantec Shared\CCPD-LC\symlcsvc.exe
O23 - Service: Symantec AppCore Service (SymAppCore) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\AppCore\AppSvc32.exe
O23 - Service: Journaux et alertes de performance (SysmonLog) - Unknown owner - C:\WINDOWS\system32\smlogsvc.exe
O23 - Service: Virtual CD v4 Security service (SDK - Version) (VCSSecS) - H+H Software GmbH - C:\Program Files\Virtual CD v4 SDK\system\vcssecs.exe
O23 - Service: Cliché instantané de volume (VSS) - Unknown owner - C:\WINDOWS\System32\vssvc.exe
O23 - Service: Windows Live Setup Service (WLSetupSvc) - Unknown owner - C:\Program Files\Windows Live\installer\WLSetupSvc.exe
O23 - Service: Carte de performance WMI (WmiApSrv) - Unknown owner - C:\WINDOWS\System32\wbem\wmiapsrv.exe
--
End of file - 14441 bytes
  #2  
Old 12-07-2007
Pancake's Avatar
Senior Security Analyst
  
Join Date: Jun 2006
Location: Victoria, Australia
Posts: 2,978
PC Experience: Elite PC Guru
Pancake - See this Members User comments on their Profile page Pancake - See this Members User comments on their Profile page Pancake - See this Members User comments on their Profile page Pancake - See this Members User comments on their Profile page Pancake - See this Members User comments on their Profile page Pancake - See this Members User comments on their Profile page Pancake - See this Members User comments on their Profile page Pancake - See this Members User comments on their Profile page Pancake - See this Members User comments on their Profile page Pancake - See this Members User comments on their Profile page Pancake - See this Members User comments on their Profile page
Default Re: Logs
Have "Hijack This" fix all the following items in the list below by placing a check in the appropriate boxes.Confirm that you have only the listed ones checked, then press <Fix checked> and Close HJT.

O1 - Hosts: 127.0.0.0 localhost
O1 - Hosts: 127.0.0.2 auditmypc.com
O1 - Hosts: 127.0.0.4 bulletproofsoft.net
O1 - Hosts: 127.0.0.5 camtech2000.net
O1 - Hosts: 127.0.0.6 cexx.org
O1 - Hosts: 127.0.0.7 computercops.us
O1 - Hosts: 127.0.0.8 ct7support.com
O1 - Hosts: 127.0.0.9 doxdesk.com
O1 - Hosts: 127.0.0.20 kellys-korner-xp.com
O1 - Hosts: 127.0.0.21 kephyr.com
O1 - Hosts: 127.0.0.24 lurkhere.com
O1 - Hosts: 127.0.0.25 majorgeeks.com
O1 - Hosts: 127.0.0.27 mjc1.com
O1 - Hosts: 127.0.0.28 moosoft.com
O1 - Hosts: 127.0.0.29 mvps.org
O1 - Hosts: 127.0.0.30 net-integration.net
O1 - Hosts: 127.0.0.31 noadware.net
O1 - Hosts: 127.0.0.32 no-spybot.com
O1 - Hosts: 127.0.0.33 onlinepcfix.com
O1 - Hosts: 127.0.0.34 pchell.com
O1 - Hosts: 127.0.0.35 pestpatrol.com
O1 - Hosts: 127.0.0.36 safer-networking.org
O1 - Hosts: 127.0.0.37 secure.spykiller.com
O1 - Hosts: 127.0.0.38 secureie.com
O1 - Hosts: 127.0.0.39 security.kolla.de
O1 - Hosts: 127.0.0.40 spybot.info
O1 - Hosts: 127.0.0.41 spychecker.com
O1 - Hosts: 127.0.0.42 spychecker.com
O1 - Hosts: 127.0.0.43 spycop.com
O1 - Hosts: 127.0.0.44 spyguard.com
O1 - Hosts: 127.0.0.45 spykiller.com
O1 - Hosts: 127.0.0.46 spyware.co.uk
O1 - Hosts: 127.0.0.47 spyware-cop.com
O1 - Hosts: 127.0.0.48 spywareinfo.com
O1 - Hosts: 127.0.0.49 spywarenuker.com
O1 - Hosts: 127.0.0.50 spywareremove.com
O1 - Hosts: 127.0.0.51 spywareremove.com
O1 - Hosts: 127.0.0.52 stopzillapro.com
O1 - Hosts: 127.0.0.53 sunbelt-software.com
O1 - Hosts: 127.0.0.54 thiefware.com
O1 - Hosts: 127.0.0.55 tomcoyote.org
O1 - Hosts: 127.0.0.56 unwantedlinks.com
O1 - Hosts: 127.0.0.57 webattack.com
O1 - Hosts: 127.0.0.58 wilders.org
O1 - Hosts: 127.0.0.59 Firewall Test, Web Tools and Free Internet Security Audit
O1 - Hosts: 127.0.0.60 BulletProofSoft Home Page - Spyware Remover Spyware Adware Remover Free Spyware Removal Adware Removal AntiSpyware Free Anti Spyware Software MP3 to WAV converter, MP3 converter, MP3 to WAV decoder, WAV to MP3 encoder - PC System Tweak - BPS Phishing
O1 - Hosts: 127.0.0.61 Counterexploitation [cexx.org]
O1 - Hosts: 127.0.0.62 CastleCops®
O1 - Hosts: 127.0.0.63 ct7Support Site
O1 - Hosts: 127.0.0.64 doxdesk.com: home
O1 - Hosts: 127.0.0.65 eblocs™ - Protection With Early Detection
O1 - Hosts: 127.0.0.66 Enigma Software Group, Inc.
O1 - Hosts: 127.0.0.67 best best www.free-spyware-scan.com information online information online
O1 - Hosts: 127.0.0.68 Free-Web-Browsers.com Alternative Browsers: Stop Spyware and Browser Hijackers
O1 - Hosts: 127.0.0.69 Home of Gibson Research Corporation
O1 - Hosts: 127.0.0.71 The Tech FAQ
O1 - Hosts: 127.0.0.72 The Hare's Lair Web site
O1 - Hosts: 127.0.0.73 Javacool Software
O1 - Hosts: 127.0.0.74 Kellys XP Korner
O1 - Hosts: 127.0.0.75 Welcome to Kephyr.com - Download our free software - Bazooka Adware and Scanner, ConnectBuddy, etc.
O1 - Hosts: 127.0.0.78 LurkHere - Information, Links and Support to Help PC Users Optimize Their Computers
O1 - Hosts: 127.0.0.79 MajorGeeks.com - Download Freeware and Shareware Computer Utilities.
O1 - Hosts: 127.0.0.81 Mjc1.com - HiJack this Resources and Information. This website is for sale!
O1 - Hosts: 127.0.0.82 MooSoft Development Inc : Main - Welcome browse
O1 - Hosts: 127.0.0.83 Welcome to the MVPs.org home page!
O1 - Hosts: 127.0.0.84 Net Integration, taking the byte out of malware
O1 - Hosts: 127.0.0.85 Adware, Spyware, Popups - They invade your privacy and harm your PC. Protect Yourself with NoAdware!
O1 - Hosts: 127.0.0.86 no-spybot.com
O1 - Hosts: 127.0.0.87 www.onlinepcfix.com
O1 - Hosts: 127.0.0.88 PC Hell: Computer Hints and Tips to bring you back from the edge
O1 - Hosts: 127.0.0.89 eTrust® PestPatrol® Anti-Spyware
O1 - Hosts: 127.0.0.90 The home of Spybot-S&D!
O1 - Hosts: 127.0.0.91 www.secureie.com
O1 - Hosts: 127.0.0.92 The home of Spybot-S&D!
O1 - Hosts: 127.0.0.93 The home of Spybot-S&D!
O1 - Hosts: 127.0.0.94 Spychecker - download spyware removal and Internet privacy tools
O1 - Hosts: 127.0.0.95 Spychecker - download spyware removal and Internet privacy tools
O1 - Hosts: 127.0.0.96 SpyCop - Leader In Privacy Protection Software
O1 - Hosts: 127.0.0.97 Spector and eBlaster Spy Software - Internet Monitoring Software
O1 - Hosts: 127.0.0.98 SpyKiller: spyware removal - FREE SCAN - remove adware
O1 - Hosts: 127.0.0.99 Spyware Watch (UK) - spyware, adware, stealware - stay aware!

=================================

This will help to identify any malware on your system.
Please download Combofix from any of these locations:

Here
or
Here


Save ComboFix to the desktop.
1. Double click on combo.exe & follow the prompts.
2. When finished, it will produce a logfile located at C:\ComboFix.txt.
3. Copy and Paste the contents of that log in your next reply with a new hijackthis log. Do not use Code or html unless asked for.
Note: Do not mouseclick combofix's window while it is running. That may cause your system to stall/hang.
Caution...Never run ComboFix without being supervised by a security analyst.


__________________
  • An Australian Member of
  • and
My real name is Eddy

Reply
Satellite TV on your PC - over 3000 Channels! Click Here!

Bookmarks

« Log | Need Help understanding this »
Thread Tools
Display Modes
Linear Mode Linear Mode

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Trackbacks are Off
Pingbacks are Off
Refbacks are On

Similar Threads
Thread Thread Starter Forum Replies Last Post
<News> Paris Hilton Logs On for Forgiveness Newsie IT News 0 05-10-2007 08:37 AM
where did you get trained to read HJT logs? coltm4carbine The Lounge 3 09-22-2005 09:40 PM
[Tech News] MPAA sifts through tracker logs for lawsuit ammo merlin The Lounge 2 08-29-2005 09:32 PM
HiJack This! Logs Go One Forum Up! Thank You! Spaceman3750 Spyware / AdWare 0 08-02-2005 08:53 PM

Contact Us - PC Help Forum - Site Map - Privacy Statement - Top

All times are GMT +1. The time now is 02:40 PM.
Powered by vBulletin
Copyright ©2000 - 2008, Jelsoft Enterprises Ltd.
SEO by vBSEO 3.2.0 RC7
All Graphics & Content Copyright © 2004-2008 - PC Help Forum.com


Back to Top