Invisible keylogger downloaded

[h00giz]

Basically, I stupidly downloaded a file that would promise me free gold on Runescape (stupid, I know)

So basically my account's password got stolen (I got it just in time, recovered it, changed pass on a different PC so that's fine) but the keylogger probably still remains.

There were no suspicious programs, and have followed all the information in the post.

Logs:

SUPERAntiSpyware Scan Log
http://www.superantispyware.com

Generated 03/02/2011 at 02:24 PM

Application Version : 4.49.1000

Core Rules Database Version : 6512
Trace Rules Database Version: 4324

Scan type       : Complete Scan
Total Scan Time : 03:00:55

Memory items scanned      : 810
Memory threats detected   : 0
Registry items scanned    : 13648
Registry threats detected : 0
File items scanned        : 313666
File threats detected     : 501

Adware.Tracking Cookie
   .lfstmedia.com [ C:\Users\Hugo\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .serving-sys.com [ C:\Users\Hugo\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .advertising.com [ C:\Users\Hugo\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .lfstmedia.com [ C:\Users\Hugo\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .advertising.com [ C:\Users\Hugo\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .advertising.com [ C:\Users\Hugo\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .advertising.com [ C:\Users\Hugo\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .adviva.net [ C:\Users\Hugo\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .atdmt.com [ C:\Users\Hugo\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .serving-sys.com [ C:\Users\Hugo\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .serving-sys.com [ C:\Users\Hugo\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .invitemedia.com [ C:\Users\Hugo\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   ad.yieldmanager.com [ C:\Users\Hugo\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .content.yieldmanager.com [ C:\Users\Hugo\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .atdmt.com [ C:\Users\Hugo\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .fastclick.net [ C:\Users\Hugo\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .pro-market.net [ C:\Users\Hugo\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .apmebf.com [ C:\Users\Hugo\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .mediaplex.com [ C:\Users\Hugo\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .mediaplex.com [ C:\Users\Hugo\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .tribalfusion.com [ C:\Users\Hugo\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .fastclick.net [ C:\Users\Hugo\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .fastclick.net [ C:\Users\Hugo\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .fastclick.net [ C:\Users\Hugo\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .revsci.net [ C:\Users\Hugo\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .specificclick.net [ C:\Users\Hugo\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .specificclick.net [ C:\Users\Hugo\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .specificclick.net [ C:\Users\Hugo\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .doubleclick.net [ C:\Users\Hugo\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   ad.yieldmanager.com [ C:\Users\Hugo\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   ad.yieldmanager.com [ C:\Users\Hugo\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   ad.yieldmanager.com [ C:\Users\Hugo\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   ad.yieldmanager.com [ C:\Users\Hugo\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .yieldmanager.net [ C:\Users\Hugo\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .adbrite.com [ C:\Windows.old\Users\Hugo\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .adbrite.com [ C:\Windows.old\Users\Hugo\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .adbrite.com [ C:\Windows.old\Users\Hugo\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .doubleclick.net [ C:\Windows.old\Users\Hugo\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .atdmt.com [ C:\Windows.old\Users\Hugo\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .atdmt.com [ C:\Windows.old\Users\Hugo\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .zedo.com [ C:\Windows.old\Users\Hugo\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .zedo.com [ C:\Windows.old\Users\Hugo\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .zedo.com [ C:\Windows.old\Users\Hugo\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   stat.onestat.com [ C:\Windows.old\Users\Hugo\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   stat.onestat.com [ C:\Windows.old\Users\Hugo\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .advertising.com [ C:\Windows.old\Users\Hugo\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .advertising.com [ C:\Windows.old\Users\Hugo\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .advertising.com [ C:\Windows.old\Users\Hugo\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .advertising.com [ C:\Windows.old\Users\Hugo\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .zanox.com [ C:\Windows.old\Users\Hugo\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .fastclick.net [ C:\Windows.old\Users\Hugo\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .fastclick.net [ C:\Windows.old\Users\Hugo\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .fastclick.net [ C:\Windows.old\Users\Hugo\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .fastclick.net [ C:\Windows.old\Users\Hugo\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .apmebf.com [ C:\Windows.old\Users\Hugo\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .mediaplex.com [ C:\Windows.old\Users\Hugo\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .mediaplex.com [ C:\Windows.old\Users\Hugo\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .adbrite.com [ C:\Windows.old\Users\Hugo\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .adbrite.com [ C:\Windows.old\Users\Hugo\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .adbrite.com [ C:\Windows.old\Users\Hugo\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .adbrite.com [ C:\Windows.old\Users\Hugo\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .adbrite.com [ C:\Windows.old\Users\Hugo\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   adply.plymedia.com [ C:\Windows.old\Users\Hugo\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .zedo.com [ C:\Windows.old\Users\Hugo\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .zedo.com [ C:\Windows.old\Users\Hugo\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .zedo.com [ C:\Windows.old\Users\Hugo\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .content.yieldmanager.com [ C:\Windows.old\Users\Hugo\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   ad.yieldmanager.com [ C:\Windows.old\Users\Hugo\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   ad.yieldmanager.com [ C:\Windows.old\Users\Hugo\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   ad.yieldmanager.com [ C:\Windows.old\Users\Hugo\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   ad.yieldmanager.com [ C:\Windows.old\Users\Hugo\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   ad.yieldmanager.com [ C:\Windows.old\Users\Hugo\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   ad.yieldmanager.com [ C:\Windows.old\Users\Hugo\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   bc.youporn.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\883SDNM7 ]
   cdn.insights.gravity.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\883SDNM7 ]
   cdn2.themis-media.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\883SDNM7 ]
   cdn4.specificclick.net [ C:\Windows.old\Users\Hugo\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\883SDNM7 ]
   cdn5.specificclick.net [ C:\Windows.old\Users\Hugo\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\883SDNM7 ]
   cloud.video.unrulymedia.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\883SDNM7 ]
   media.amctv.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\883SDNM7 ]
   media.filb.de [ C:\Windows.old\Users\Hugo\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\883SDNM7 ]
   media.giantbomb.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\883SDNM7 ]
   media.ign.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\883SDNM7 ]
   media.mtvnservices.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\883SDNM7 ]
   media.nbcmiami.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\883SDNM7 ]
   media.scanscout.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\883SDNM7 ]
   media1.break.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\883SDNM7 ]
   media1.gameinformer.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\883SDNM7 ]
   msnbcmedia.msn.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\883SDNM7 ]
   objects.tremormedia.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\883SDNM7 ]
   s0.2mdn.net [ C:\Windows.old\Users\Hugo\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\883SDNM7 ]
   secure-uk.imrworldwide.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\883SDNM7 ]
   secure-us.imrworldwide.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\883SDNM7 ]
   serving-sys.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\883SDNM7 ]
   www.naiadsystems.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\883SDNM7 ]
   www.pornhub.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\883SDNM7 ]
   C:\Windows.old\Users\Hugo\AppData\Roaming\Microsoft\Windows\Cookies\[email protected][1].txt
   C:\Windows.old\Users\Hugo\AppData\Roaming\Microsoft\Windows\Cookies\hugo@apmebf[1].txt
   C:\Windows.old\Users\Hugo\AppData\Roaming\Microsoft\Windows\Cookies\hugo@atdmt[2].txt
   C:\Windows.old\Users\Hugo\AppData\Roaming\Microsoft\Windows\Cookies\hugo@atdmt[3].txt
   C:\Windows.old\Users\Hugo\AppData\Roaming\Microsoft\Windows\Cookies\hugo@bluestreak[1].txt
   C:\Windows.old\Users\Hugo\AppData\Roaming\Microsoft\Windows\Cookies\[email protected][1].txt
   C:\Windows.old\Users\Hugo\AppData\Roaming\Microsoft\Windows\Cookies\[email protected][3].txt
   C:\Windows.old\Users\Hugo\AppData\Roaming\Microsoft\Windows\Cookies\hugo@doubleclick[1].txt
   C:\Windows.old\Users\Hugo\AppData\Roaming\Microsoft\Windows\Cookies\hugo@doubleclick[2].txt
   C:\Windows.old\Users\Hugo\AppData\Roaming\Microsoft\Windows\Cookies\hugo@mediaplex[2].txt
   C:\Windows.old\Users\Hugo\AppData\Roaming\Microsoft\Windows\Cookies\[email protected][1].txt
   C:\Windows.old\Users\Hugo\AppData\Roaming\Microsoft\Windows\Cookies\hugo@pointroll[2].txt
   C:\Windows.old\Users\Hugo\AppData\Roaming\Microsoft\Windows\Cookies\hugo@questionmarket[1].txt
   C:\Windows.old\Users\Hugo\AppData\Roaming\Microsoft\Windows\Cookies\hugo@serving-sys[2].txt
   C:\Windows.old\Users\Hugo\AppData\Roaming\Microsoft\Windows\Cookies\hugo@serving-sys[3].txt
   C:\Windows.old\Users\Hugo\AppData\Roaming\Microsoft\Windows\Cookies\[email protected][1].txt
   C:\Windows.old\Users\Hugo\AppData\Roaming\Microsoft\Windows\Cookies\[email protected][3].txt
   C:\Windows.old\Users\Hugo\AppData\Roaming\Microsoft\Windows\Cookies\hugo@tradedoubler[1].txt
   C:\Windows.old\Users\Hugo\AppData\Roaming\Microsoft\Windows\Cookies\hugo@zedo[1].txt
   .atdmt.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .atdmt.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .doubleclick.net [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .tribalfusion.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .tribalfusion.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .tribalfusion.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .tribalfusion.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .tribalfusion.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .tribalfusion.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .pornhub.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .pornhub.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   rts.pgmediaserve.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   www.pornhub.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .*adult URL* [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .*adult URL* [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .*adult URL* [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .*adult URL* [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .*adult URL* [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .*adult URL* [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .*adult URL* [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .partypoker.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .partypoker.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   www.partypoker.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   statse.webtrendslive.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .apmebf.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .mediaplex.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .mediaplex.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .mediaplex.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .burstnet.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   ad.yieldmanager.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .fastclick.net [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .fastclick.net [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   ad.yieldmanager.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .adtech.de [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .bs.serving-sys.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .serving-sys.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .serving-sys.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .serving-sys.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .serving-sys.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .serving-sys.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .casalemedia.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .casalemedia.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .casalemedia.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .casalemedia.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .adbrite.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .adbrite.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .adbrite.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .videoegg.adbureau.net [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .specificclick.net [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .specificclick.net [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .specificclick.net [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .specificclick.net [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .adviva.net [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .zedo.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .zedo.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .ads.pointroll.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .pointroll.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .ads.pointroll.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .pointroll.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .ads.pointroll.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .ads.pointroll.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .ads.pointroll.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .ads.pointroll.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .ads.pointroll.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .ads.pointroll.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .questionmarket.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .collective-media.net [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .statcounter.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .dmtracker.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .revsci.net [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .fastclick.net [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .statcounter.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .kontera.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .kontera.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .kontera.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .kontera.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .imrworldwide.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .imrworldwide.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   ad.yieldmanager.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   dc.tremormedia.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .adserver.adtechus.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .media6degrees.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .media6degrees.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   cdn5.specificclick.net [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   cdn5.specificclick.net [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .specificclick.net [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .specificclick.net [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .hitbox.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .smartadserver.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .247realmedia.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .media6degrees.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .media6degrees.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .media6degrees.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .cgm.adbureau.net [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .cgm.adbureau.net [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .cgm.adbureau.net [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .cgm.adbureau.net [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .statcounter.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .msnportal.112.2o7.net [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .livenation.122.2o7.net [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .tacoda.net [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .tacoda.net [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .tacoda.net [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .advertising.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .advertising.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .at.atwola.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .at.atwola.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .smartadserver.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .smartadserver.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .smartadserver.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .2o7.net [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .advertising.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .advertising.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .advertising.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .advertising.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .clicksor.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .clicksor.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .clicksor.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .myroitracking.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .clicksor.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .clicksor.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .revsci.net [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .specificclick.net [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .ad.yieldmanager.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .paypal.112.2o7.net [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .stats.paypal.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .bluestreak.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   www.burstbeacon.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .burstbeacon.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   rts.pgmediaserve.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   rts.pgmediaserve.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   rts.pgmediaserve.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .partypoker.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .media.photobucket.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .lfstmedia.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .lfstmedia.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   ads.audience2media.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   ads.audience2media.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .ads.audience2media.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .newsquestdigitalmedia.122.2o7.net [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .revsci.net [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .zedo.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .at.atwola.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .uk.at.atwola.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .at.atwola.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .mediaplex.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .audience2media.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .247realmedia.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .2o7.net [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .2o7.net [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   server.lon.liveperson.net [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   server.lon.liveperson.net [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .e-2dj6wjmyqmazado.stats.esomniture.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .tradedoubler.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .tradedoubler.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .tradedoubler.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .statcounter.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   stat.onestat.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   stat.onestat.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .adviva.net [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .apmebf.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   sales.liveperson.net [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   sales.liveperson.net [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .alexanderinteractive.112.2o7.net [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .hg1.hitbox.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   track.adform.net [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   hairstylequestions.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .hairstylequestions.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .hairstylequestions.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .insightexpressai.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .insightexpressai.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .insightexpressai.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .insightexpressai.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .yieldmanager.net [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .naiadsystems.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .naiadsystems.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .pornhublive.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   cdn4.specificclick.net [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   cdn4.specificclick.net [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   cdn4.specificclick.net [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   cdn4.specificclick.net [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   cdn4.specificclick.net [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .revsci.net [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .stats.adbrite.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .revsci.net [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   uk.sitestat.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   uk.sitestat.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   cms.trafficmp.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .adbrite.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .adtech.de [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .uk.at.atwola.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .adtech.de [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .adtech.de [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .adtech.de [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .adtech.de [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .adtech.de [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .uk.at.atwola.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .xm.xtendmedia.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .2o7.net [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .e-2dj6wjlysld5sgo.stats.esomniture.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .fastclick.net [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .casalemedia.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   eas.apm.emediate.eu [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   eas.apm.emediate.eu [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .revsci.net [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .mwsmedia.co.uk [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .mwsmedia.co.uk [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .serving-sys.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .serving-sys.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .cgm.adbureau.net [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .invitemedia.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .clickbank.net [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .pro-market.net [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .pro-market.net [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .casalemedia.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .casalemedia.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   eas.apm.emediate.eu [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .interclick.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .interclick.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .interclick.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   messagespace.advertserve.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .adserver.adtechus.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .yieldmanager.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .revsci.net [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .2o7.net [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .invitemedia.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .invitemedia.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .invitemedia.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .invitemedia.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .ice.112.2o7.net [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .lovefilm.db.advertising.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .mediafire.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .mediafire.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .mediafire.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .atdmt.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   uk.sitestat.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .chitika.net [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .2o7.net [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .nextstat.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .nextstat.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .nextstat.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   *Blocked Russian URL* [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .revsci.net [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .himedia.individuad.net [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .adtech.de [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .media6degrees.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .revsci.net [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .partypoker.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .adtech.habbo.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .2o7.net [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .2o7.net [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .serving-sys.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .revsci.net [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   us.sitestat.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   us.sitestat.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .server.cpmstar.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   w00tpublishers.wootmedia.net [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .insightexpressai.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .insightexpressai.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .insightexpressai.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .insightexpressai.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .insightexpressai.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .questionmarket.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   counter.hitslink.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .e-2dj6wblyqicpkko.stats.esomniture.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .2o7.net [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .2o7.net [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .adbrite.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   ad.yieldmanager.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   www.belstat.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .revsci.net [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .adtech.de [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   uk.sitestat.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .invitemedia.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   uk.sitestat.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   uk.sitestat.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .cracked.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .cracked.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .cracked.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .cracked.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .2o7.net [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .brazilian-transsexuals.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   www.3dstats.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   www.inteletrack.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .premiumtv.122.2o7.net [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   ad.yieldmanager.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .doubleclick.net [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   uk.sitestat.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .partypoker.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .weborama.fr [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .zeduk.solution.weborama.fr [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .zeduk.solution.weborama.fr [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .zeduk.solution.weborama.fr [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .zeduk.solution.weborama.fr [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   thecartoonporn.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .sexlist.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .ru4.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .ru4.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .ru4.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .advertising.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   d.jambomedia.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .invitemedia.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .realmedia.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .realmedia.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .realmedia.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .insightexpressai.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .insightexpressai.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .insightexpressai.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .insightexpressai.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .insightexpressai.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .content.yieldmanager.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .youporn.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .youporn.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .youporn.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .youporn.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   ads.youporn.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .247realmedia.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .adtech.de [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .myap.liveperson.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   in.getclicky.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .pornhub.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .pornhub.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   metroleap.rotator.hadj7.adjuggler.net [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   metroleap.rotator.hadj7.adjuggler.net [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   uk.sitestat.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .trinitymirror.112.2o7.net [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .burstnet.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .audience2media.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   ad.yieldmanager.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .revsci.net [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   www.googleadservices.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   www.googleadservices.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   track.profitistic.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .tradedoubler.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .tradedoubler.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .zedo.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .trafficmp.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .trafficmp.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .trafficmp.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .2o7.net [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .www.burstnet.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   adverts.gamesquat.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .specificclick.net [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .specificclick.net [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .specificclick.net [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .adbureau.net [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .cgm.adbureau.net [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .revsci.net [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .rainbowmedia.122.2o7.net [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   www.googleadservices.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .pornhub.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .pornhub.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .nhl.112.2o7.net [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .revsci.net [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .adscendmedia.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   www.inteletrack.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   www.inteletrack.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   www.inteletrack.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   www.inteletrack.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   www.inteletrack.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   www.inteletrack.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .www.clash-media.net [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .www.clash-media.net [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .www.clash-media.net [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .www.clash-media.net [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   www.inteletrack.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   www.inteletrack.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   www.inteletrack.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   www.inteletrack.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   bhdtracking.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   www.inteletrack.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   www.inteletrack.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   www.inteletrack.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .e-2dj6wjmiukajolp.stats.esomniture.com [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .archant.122.2o7.net [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .revsci.net [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .revsci.net [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   www.yourteenager.co.uk [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   www.yourteenager.co.uk [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .yourteenager.co.uk [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .yourteenager.co.uk [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .revsci.net [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   .revsci.net [ C:\Windows.old\Users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\umhglfrp.default\cookies.sqlite ]
   C:\Windows.old.000\Users\Hugo\AppData\Roaming\Microsoft\Windows\Cookies\Low\hugo@atdmt[1].txt
   C:\Windows.old.000\Users\Hugo\AppData\Roaming\Microsoft\Windows\Cookies\Low\hugo@doubleclick[1].txt
   C:\Windows.old.000\Users\Hugo\AppData\Roaming\Microsoft\Windows\Cookies\Low\[email protected][1].txt


____________________________



Malwarebytes' Anti-Malware 1.50.1.1100
www.malwarebytes.org

Database version: 5931

Windows 6.1.7600
Internet Explorer 8.0.7600.16385

02/03/2011 14:46:51
mbam-log-2011-03-02 (14-46-51).txt

Scan type: Quick scan
Objects scanned: 165428
Time elapsed: 2 minute(s), 35 second(s)

Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 0
Registry Values Infected: 0
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 0

Memory Processes Infected:
(No malicious items detected)

Memory Modules Infected:
(No malicious items detected)

Registry Keys Infected:
(No malicious items detected)

Registry Values Infected:
(No malicious items detected)

Registry Data Items Infected:
(No malicious items detected)

Folders Infected:
(No malicious items detected)

Files Infected:
(No malicious items detected)


__________________________________



Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 14:55:52, on 02/03/2011
Platform: Windows 7  (WinNT 6.00.3504)
MSIE: Internet Explorer v8.00 (8.00.7600.16722)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe
C:\Users\Hugo\AppData\Local\Google\Update\1.2.183.39\GoogleCrashHandler.exe
C:\Program Files (x86)\uTorrent\uTorrent.exe
C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe
C:\Program Files (x86)\Siber Systems\AI RoboForm\robotaskbaricon.exe
C:\Program Files (x86)\Skype\Phone\Skype.exe
C:\Program Files (x86)\Spybot - Search & Destroy\TeaTimer.exe
C:\Program Files (x86)\AVG\AVG10\avgtray.exe
C:\Program Files (x86)\iTunes\iTunesHelper.exe
C:\Program Files (x86)\RALINK\Common\RaUI.exe
C:\Program Files (x86)\BBC iPlayer Desktop\BBC iPlayer Desktop.exe
C:\Program Files (x86)\OpenOffice.org 3\program\soffice.exe
C:\Program Files (x86)\OpenOffice.org 3\program\soffice.bin
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
C:\Program Files (x86)\AVG\AVG10\Identity Protection\agent\bin\avgidsmonitor.exe
C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
C:\Program Files (x86)\Spotify\spotify.exe
C:\Windows\SysWOW64\NOTEPAD.EXE
C:\Users\Hugo\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Hugo\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Hugo\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Hugo\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Hugo\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Hugo\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Hugo\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Hugo\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Hugo\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Hugo\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Hugo\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Hugo\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Hugo\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Hugo\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Hugo\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Hugo\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Hu

[SuperDave]

Hello and welcome to Computer Hope Forum. My name is Dave. I will be helping you out with your particular problem on your computer.

1. I will be working on your Malware issues. This may or may not solve other issues you have with your machine.
2. The fixes are specific to your problem and should only be used for this issue on this machine.
3. If you don't know or understand something, please don't hesitate to ask.
4. Please DO NOT run any other tools or scans while I am helping you.
5. It is important that you reply to this thread. Do not start a new topic.
6. Your security programs may give warnings for some of the tools I will ask you to use. Be assured, any links I give are safe.
7. Absence of symptoms does not mean that everything is clear.

If you can't access the internet with your infected computer you will have to download and transfer any programs to the computer you're using now and transfer them to the infected computer with a CD-RW or a USB storage device. I prefer a CD because a storage device can get infected. If you use a storage device hold the shift key down while inserting the USB storage device for about 10 secs. You will also have to transfer the logs you receive back to the good computer using the same method until we can get the computer back on-line.
*******************************************
P2P - I see you have P2P software installed on your machine (uTorrent). We are not here to pass judgment on file-sharing as a concept. However, we will warn you that engaging in this activity and having this kind of software installed on your machine will always make you more susceptible to re-infections. It is certainly contributing to your current situation.

Please note: Even if you are using a "safe" P2P program, it is only the program that is safe. You will be sharing files from uncertified sources, and these are often infected. The bad guys use P2P filesharing as a major conduit to spread their wares.

I would strongly recommend that you uninstall them, however that choice is up to you. If you choose to remove these programs, you can do so via Control Panel >> Add or Remove Programs.
*******************************************
Your HJT log is not complete. Please run the scan again and post the full log.

Download ComboFix by sUBs from one of the below links.  Be sure to save it to the Desktop.

link # 1
Link # 2
If you are using Firefox, make sure that your download settings are as follows:

* Tools->Options->Main tab
* Set to "Always ask me where to Save the files".

Close any open web browsers (Firefox, Internet Explorer, etc) before starting ComboFix.

Temporarily disable your anti-virus, and any anti-spyware real-time protection before performing a scan. Click this link to see a list of security programs that should be disabled and how to disable them.

Right-click combofix.exe and select Run as Administrator and follow the prompts.
When finished, ComboFix will produce a log for you.
Post the ComboFix log and a new HijackThis log in your next reply.

NOTE: Do not mouseclick ComboFix's window while it is running. That may cause it to stall.

Remember to re-enable your anti-virus and anti-spyware protection when ComboFix is complete.

[h00giz]

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 14:55:52, on 02/03/2011
Platform: Windows 7  (WinNT 6.00.3504)
MSIE: Internet Explorer v8.00 (8.00.7600.16722)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe
C:\Users\Hugo\AppData\Local\Google\Update\1.2.183.39\GoogleCrashHandler.exe
C:\Program Files (x86)\uTorrent\uTorrent.exe
C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe
C:\Program Files (x86)\Siber Systems\AI RoboForm\robotaskbaricon.exe
C:\Program Files (x86)\Skype\Phone\Skype.exe
C:\Program Files (x86)\Spybot - Search & Destroy\TeaTimer.exe
C:\Program Files (x86)\AVG\AVG10\avgtray.exe
C:\Program Files (x86)\iTunes\iTunesHelper.exe
C:\Program Files (x86)\RALINK\Common\RaUI.exe
C:\Program Files (x86)\BBC iPlayer Desktop\BBC iPlayer Desktop.exe
C:\Program Files (x86)\OpenOffice.org 3\program\soffice.exe
C:\Program Files (x86)\OpenOffice.org 3\program\soffice.bin
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
C:\Program Files (x86)\AVG\AVG10\Identity Protection\agent\bin\avgidsmonitor.exe
C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
C:\Program Files (x86)\Spotify\spotify.exe
C:\Windows\SysWOW64\NOTEPAD.EXE
C:\Users\Hugo\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Hugo\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Hugo\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Hugo\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Hugo\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Hugo\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Hugo\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Hugo\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Hugo\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Hugo\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Hugo\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Hugo\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Hugo\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Hugo\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Hugo\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Hugo\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Hugo\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Hugo\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Hugo\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Hugo\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Hugo\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Hugo\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\WinRAR\WinRAR.exe
C:\Program Files (x86)\Trend Micro\HiJackThis\sniper.exe.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://search.conduit.com?SearchSource=10&ctid=CT2786678
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: uTorrentBar Toolbar - {bf7380fa-e3b4-4db2-af3e-9d8783a45bfc} - C:\Program Files (x86)\uTorrentBar\tbuTor.dll
R3 - URLSearchHook: RuneScape Toolbar - {a8864317-e18b-4292-99d9-e6e65ab905d3} - C:\Program Files (x86)\Runescape\tbRune.dll
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Conduit Engine - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files (x86)\ConduitEngine\ConduitEngine.dll
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files (x86)\AVG\AVG10\avgssie.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files (x86)\Spybot - Search & Destroy\SDHelper.dll
O2 - BHO: RoboForm - {724d43a9-0d85-11d4-9908-00400523e39a} - C:\Program Files (x86)\Siber Systems\AI RoboForm\roboform.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~3\Office14\GROOVEEX.DLL
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll
O2 - BHO: RuneScape Toolbar - {a8864317-e18b-4292-99d9-e6e65ab905d3} - C:\Program Files (x86)\Runescape\tbRune.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~3\Office14\URLREDIR.DLL
O2 - BHO: uTorrentBar Toolbar - {bf7380fa-e3b4-4db2-af3e-9d8783a45bfc} - C:\Program Files (x86)\uTorrentBar\tbuTor.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
O3 - Toolbar: uTorrentBar Toolbar - {bf7380fa-e3b4-4db2-af3e-9d8783a45bfc} - C:\Program Files (x86)\uTorrentBar\tbuTor.dll
O3 - Toolbar: Conduit Engine - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files (x86)\ConduitEngine\ConduitEngine.dll
O3 - Toolbar: DAEMON Tools Toolbar - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files (x86)\DAEMON Tools Toolbar\DTToolbar.dll
O3 - Toolbar: RuneScape Toolbar - {a8864317-e18b-4292-99d9-e6e65ab905d3} - C:\Program Files (x86)\Runescape\tbRune.dll
O3 - Toolbar: &RoboForm - {724d43a0-0d85-11d4-9908-00400523e39a} - C:\Program Files (x86)\Siber Systems\AI RoboForm\roboform.dll
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [ATICustomerCare] "C:\Program Files (x86)\ATI\ATICustomerCare\ATICustomerCare.exe"
O4 - HKLM\..\Run: [AVG_TRAY] C:\Program Files (x86)\AVG\AVG10\avgtray.exe
O4 - HKLM\..\Run: [BCSSync] "C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe" /DelayServices
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\RunOnce: [Malwarebytes' Anti-Malware] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe /install /silent
O4 - HKCU\..\Run: [Google Update] "C:\Users\Hugo\AppData\Local\Google\Update\GoogleUpdate.exe" /c
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [Steam] "C:\Program Files (x86)\Steam\Steam.exe" -silent
O4 - HKCU\..\Run: [uTorrent] "C:\Program Files (x86)\uTorrent\uTorrent.exe"
O4 - HKCU\..\Run: [HideMyIP] C:\Program Files (x86)\Hide My IP\HideMyIP.exe
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [RoboForm] "C:\Program Files (x86)\Siber Systems\AI RoboForm\RoboTaskBarIcon.exe"
O4 - HKCU\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /nosplash /minimized
O4 - HKCU\..\Run: [Java UpdateHDhLcFHbtclKjGoYVfCuNI] C:\Users\Hugo\AppData\Local\Temp\\Java Update.exe
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files (x86)\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - Startup: BBC iPlayer Desktop.lnk = C:\Program Files (x86)\BBC iPlayer Desktop\BBC iPlayer Desktop.exe
O4 - Startup: OpenOffice.org 3.2.lnk = C:\Program Files (x86)\OpenOffice.org 3\program\quickstart.exe
O4 - Global Startup: Ralink Wireless Utility.lnk = C:\Program Files (x86)\RALINK\Common\RaUI.exe
O8 - Extra context menu item: Customize Menu - file://C:\Program Files (x86)\Siber Systems\AI RoboForm\RoboFormComCustomizeIEMenu.html
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~2\MICROS~3\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Fill Forms - file://C:\Program Files (x86)\Siber Systems\AI RoboForm\RoboFormComFillForms.html
O8 - Extra context menu item: RoboForm Toolbar - file://C:\Program Files (x86)\Siber Systems\AI RoboForm\RoboFormComShowToolbar.html
O8 - Extra context menu item: Save Forms - file://C:\Program Files (x86)\Siber Systems\AI RoboForm\RoboFormComSavePass.html
O8 - Extra context menu item: Se&nd to OneNote - res://C:\PROGRA~2\MICROS~3\Office14\ONBttnIE.dll/105
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Companion\companionlang.dll,-600 - {0000036B-C524-4050-81A0-243669A86B9F} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: Fill Forms - {320AF880-6646-11D3-ABEE-C5DBF3571F46} - file://C:\Program Files (x86)\Siber Systems\AI RoboForm\RoboFormComFillForms.html
O9 - Extra 'Tools' menuitem: Fill Forms - {320AF880-6646-11D3-ABEE-C5DBF3571F46} - file://C:\Program Files (x86)\Siber Systems\AI RoboForm\RoboFormComFillForms.html
O9 - Extra button: Save - {320AF880-6646-11D3-ABEE-C5DBF3571F49} - file://C:\Program Files (x86)\Siber Systems\AI RoboForm\RoboFormComSavePass.html
O9 - Extra 'Tools' menuitem: Save Forms - {320AF880-6646-11D3-ABEE-C5DBF3571F49} - file://C:\Program Files (x86)\Siber Systems\AI RoboForm\RoboFormComSavePass.html
O9 - Extra button: RoboForm - {724d43aa-0d85-11d4-9908-00400523e39a} - file://C:\Program Files (x86)\Siber Systems\AI RoboForm\RoboFormComShowToolbar.html
O9 - Extra 'Tools' menuitem: RoboForm Toolbar - {724d43aa-0d85-11d4-9908-00400523e39a} - file://C:\Program Files (x86)\Siber Systems\AI RoboForm\RoboFormComShowToolbar.html
O9 - Extra button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra button: Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra 'Tools' menuitem: Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files (x86)\Spybot - Search & Destroy\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search && Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files (x86)\Spybot - Search & Destroy\SDHelper.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\hmipcore.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\hmipcore.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\hmipcore.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\hmipcore.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\hmipcore.dll
O16 - DPF: {E6F480FC-BD44-4CBA-B74A-89AF7842937D} (SysInfo Class) - http://content.systemrequirementslab.com.s3.amazonaws.com/global/bin/srldetect_cyri_4.3.1.0.cab
O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files (x86)\AVG\AVG10\avgpp.dll
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: SAS Core Service (!SASCORE) - SUPERAntiSpyware.com - C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: AVGIDSAgent - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\AVG10\Identity Protection\Agent\Bin\AVGIDSAgent.exe
O23 - Service: AVG WatchDog (avgwd) - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\AVG10\avgwdsvc.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files (x86)\Bonjour\mDNSResponder.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: HideMyIpSRV - HideMyIP - C:\Program Files (x86)\Hide My IP\HideMyIpSrv.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files (x86)\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: SBSD Security Center Service (SBSDWSCService) - Safer Networking Ltd. - C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 17745 bytes

here's my completed HJT log.

Will download combofix now.

EDIT: It says I have to completely uninstall AVG to continue with ComboFix.

[SuperDave]

EDIT: It says I have to completely uninstall AVG to continue with ComboFix.

That is correct. Please download and install one of the free AV programs from the list below. Then, run the AVG Removal tool below. Then try running ComboFix.

Remember to only install one antivirus!
 
1) Avast! Home Edition
2) AVG Free Edition
3) Avira AntiVir Personal
4) Microsoft Security Essentials for Windows Vista\Windows 7 - 64 bit Download
4-a) Microsoft Security Essentials for Windows XP
5) Comodo Antivirus (Uncheck during installation "Install Comodo SafeSurf..", Make Comodo my default search provider" and "Make Comodo Search my homepage" if you choose this one)
6) PC Tools AntiVirus Free Edition

It is strongly recommended that you run only one antivirus program at a time. Having more than one antivirus program active in memory uses additional resources and can result in program conflicts and false virus alerts. If you choose to install more than one antivirus program on your computer, then only one of them should be active in memory at a time.

AVG Antivirus - AVG Antivirus Remover utility

[h00giz]

HJT log:


Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 19:56:37, on 03/03/2011
Platform: Windows 7  (WinNT 6.00.3504)
MSIE: Internet Explorer v8.00 (8.00.7600.16722)
Boot mode: Normal

Running processes:
C:\Program Files\Smart PDF Creator Pro\SmartSoft PDF Printer Agent.exe
C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe
C:\Program Files (x86)\uTorrent\uTorrent.exe
C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe
C:\Program Files (x86)\Siber Systems\AI RoboForm\robotaskbaricon.exe
C:\Program Files (x86)\Skype\Phone\Skype.exe
C:\Program Files (x86)\BBC iPlayer Desktop\BBC iPlayer Desktop.exe
C:\Program Files (x86)\OpenOffice.org 3\program\soffice.exe
C:\Program Files (x86)\OpenOffice.org 3\program\soffice.bin
C:\Program Files (x86)\iTunes\iTunesHelper.exe
C:\Users\Hugo\AppData\Local\Google\Update\1.2.183.39\GoogleCrashHandler.exe
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
C:\Users\Hugo\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Hugo\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Hugo\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Hugo\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Hugo\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Hugo\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Hugo\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Hugo\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Hugo\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Hugo\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Hugo\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Hugo\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Hugo\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Hugo\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Hugo\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Hugo\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Hugo\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Trend Micro\HiJackThis\sniper.exe.exe
C:\Windows\SysWOW64\DllHost.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://search.conduit.com?SearchSource=10&ctid=CT2786678
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: uTorrentBar Toolbar - {bf7380fa-e3b4-4db2-af3e-9d8783a45bfc} - C:\Program Files (x86)\uTorrentBar\tbuTor.dll
R3 - URLSearchHook: RuneScape Toolbar - {a8864317-e18b-4292-99d9-e6e65ab905d3} - C:\Program Files (x86)\Runescape\tbRune.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Conduit Engine - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files (x86)\ConduitEngine\ConduitEngine.dll
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files (x86)\AVG\AVG10\avgssie.dll (file missing)
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files (x86)\Spybot - Search & Destroy\SDHelper.dll
O2 - BHO: RoboForm - {724d43a9-0d85-11d4-9908-00400523e39a} - C:\Program Files (x86)\Siber Systems\AI RoboForm\roboform.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~3\Office14\GROOVEEX.DLL
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll
O2 - BHO: RuneScape Toolbar - {a8864317-e18b-4292-99d9-e6e65ab905d3} - C:\Program Files (x86)\Runescape\tbRune.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~3\Office14\URLREDIR.DLL
O2 - BHO: uTorrentBar Toolbar - {bf7380fa-e3b4-4db2-af3e-9d8783a45bfc} - C:\Program Files (x86)\uTorrentBar\tbuTor.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
O3 - Toolbar: uTorrentBar Toolbar - {bf7380fa-e3b4-4db2-af3e-9d8783a45bfc} - C:\Program Files (x86)\uTorrentBar\tbuTor.dll
O3 - Toolbar: Conduit Engine - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files (x86)\ConduitEngine\ConduitEngine.dll
O3 - Toolbar: DAEMON Tools Toolbar - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files (x86)\DAEMON Tools Toolbar\DTToolbar.dll
O3 - Toolbar: RuneScape Toolbar - {a8864317-e18b-4292-99d9-e6e65ab905d3} - C:\Program Files (x86)\Runescape\tbRune.dll
O3 - Toolbar: &RoboForm - {724d43a0-0d85-11d4-9908-00400523e39a} - C:\Program Files (x86)\Siber Systems\AI RoboForm\roboform.dll
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [ATICustomerCare] "C:\Program Files (x86)\ATI\ATICustomerCare\ATICustomerCare.exe"
O4 - HKLM\..\Run: [BCSSync] "C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe" /DelayServices
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [Google Update] "C:\Users\Hugo\AppData\Local\Google\Update\GoogleUpdate.exe" /c
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [Steam] "C:\Program Files (x86)\Steam\Steam.exe" -silent
O4 - HKCU\..\Run: [uTorrent] "C:\Program Files (x86)\uTorrent\uTorrent.exe"
O4 - HKCU\..\Run: [HideMyIP] C:\Program Files (x86)\Hide My IP\HideMyIP.exe
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [RoboForm] "C:\Program Files (x86)\Siber Systems\AI RoboForm\RoboTaskBarIcon.exe"
O4 - HKCU\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /nosplash /minimized
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files (x86)\Spybot - Search & Destroy\TeaTimer.exe
O4 - Startup: BBC iPlayer Desktop.lnk = C:\Program Files (x86)\BBC iPlayer Desktop\BBC iPlayer Desktop.exe
O4 - Startup: OpenOffice.org 3.2.lnk = C:\Program Files (x86)\OpenOffice.org 3\program\quickstart.exe
O4 - Global Startup: Ralink Wireless Utility.lnk = C:\Program Files (x86)\RALINK\Common\RaUI.exe
O8 - Extra context menu item: Customize Menu - file://C:\Program Files (x86)\Siber Systems\AI RoboForm\RoboFormComCustomizeIEMenu.html
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~2\MICROS~3\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Fill Forms - file://C:\Program Files (x86)\Siber Systems\AI RoboForm\RoboFormComFillForms.html
O8 - Extra context menu item: RoboForm Toolbar - file://C:\Program Files (x86)\Siber Systems\AI RoboForm\RoboFormComShowToolbar.html
O8 - Extra context menu item: Save Forms - file://C:\Program Files (x86)\Siber Systems\AI RoboForm\RoboFormComSavePass.html
O8 - Extra context menu item: Se&nd to OneNote - res://C:\PROGRA~2\MICROS~3\Office14\ONBttnIE.dll/105
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Companion\companionlang.dll,-600 - {0000036B-C524-4050-81A0-243669A86B9F} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: Fill Forms - {320AF880-6646-11D3-ABEE-C5DBF3571F46} - file://C:\Program Files (x86)\Siber Systems\AI RoboForm\RoboFormComFillForms.html
O9 - Extra 'Tools' menuitem: Fill Forms - {320AF880-6646-11D3-ABEE-C5DBF3571F46} - file://C:\Program Files (x86)\Siber Systems\AI RoboForm\RoboFormComFillForms.html
O9 - Extra button: Save - {320AF880-6646-11D3-ABEE-C5DBF3571F49} - file://C:\Program Files (x86)\Siber Systems\AI RoboForm\RoboFormComSavePass.html
O9 - Extra 'Tools' menuitem: Save Forms - {320AF880-6646-11D3-ABEE-C5DBF3571F49} - file://C:\Program Files (x86)\Siber Systems\AI RoboForm\RoboFormComSavePass.html
O9 - Extra button: RoboForm - {724d43aa-0d85-11d4-9908-00400523e39a} - file://C:\Program Files (x86)\Siber Systems\AI RoboForm\RoboFormComShowToolbar.html
O9 - Extra 'Tools' menuitem: RoboForm Toolbar - {724d43aa-0d85-11d4-9908-00400523e39a} - file://C:\Program Files (x86)\Siber Systems\AI RoboForm\RoboFormComShowToolbar.html
O9 - Extra button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra button: Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra 'Tools' menuitem: Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files (x86)\Spybot - Search & Destroy\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search && Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files (x86)\Spybot - Search & Destroy\SDHelper.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\hmipcore.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\hmipcore.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\hmipcore.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\hmipcore.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\hmipcore.dll
O16 - DPF: {E6F480FC-BD44-4CBA-B74A-89AF7842937D} (SysInfo Class) - http://content.systemrequirementslab.com.s3.amazonaws.com/global/bin/srldetect_cyri_4.3.1.0.cab
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: SAS Core Service (!SASCORE) - SUPERAntiSpyware.com - C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files (x86)\Bonjour\mDNSResponder.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: HideMyIpSRV - HideMyIP - C:\Program Files (x86)\Hide My IP\HideMyIpSrv.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files (x86)\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: SBSD Security Center Service (SBSDWSCService) - Safer Networking Ltd. - C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 15832 bytes


COMBOFIX LOG:


ComboFix 11-03-03.01 - Hugo 03/03/2011  19:38:24.1.2 - x64
Microsoft Windows 7 Home Premium   6.1.7600.0.1252.44.1033.18.4095.2495 [GMT 0:00]
Running from: c:\users\Hugo\Downloads\ComboFix.exe
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.

(((((((((((((((((((((((((((((((((((((((   Other Deletions   )))))))))))))))))))))))))))))))))))))))))))))))))
.

C:\Install.exe

.
(((((((((((((((((((((((((   Files Created from 2011-02-03 to 2011-03-03  )))))))))))))))))))))))))))))))
.

2011-03-03 19:44 . 2011-03-03 19:44   --------   d-----w-   c:\users\Default\AppData\Local\temp
2011-03-02 19:08 . 2011-03-02 19:08   --------   d-----w-   c:\users\Hugo\AppData\Roaming\Smart PDF Creator Pro
2011-03-02 19:08 . 2011-03-02 19:08   --------   d-----w-   c:\programdata\Smart Soft
2011-03-02 19:08 . 2011-03-02 19:10   --------   d-----w-   c:\program files\Smart PDF Creator Pro
2011-03-02 18:05 . 2011-02-23 09:34   7947600   ----a-w-   c:\programdata\Microsoft\Windows Defender\Definition Updates\{34CF9B83-69CE-44C9-B288-21CB4F6A7D4D}\mpengine.dll
2011-03-02 14:54 . 2011-03-02 14:54   388096   ----a-r-   c:\users\Hugo\AppData\Roaming\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe
2011-03-02 14:54 . 2011-03-02 14:54   --------   d-----w-   c:\program files (x86)\Trend Micro
2011-03-02 14:50 . 2011-03-02 14:50   --------   d-----w-   c:\program files (x86)\Common Files\Java
2011-03-02 14:48 . 2011-03-02 14:48   --------   d-----w-   c:\programdata\McAfee
2011-03-02 14:37 . 2011-03-02 14:37   --------   d-----w-   c:\users\Hugo\AppData\Roaming\Malwarebytes
2011-03-02 14:35 . 2010-12-20 18:09   38224   ----a-w-   c:\windows\SysWow64\drivers\mbamswissarmy.sys
2011-03-02 14:35 . 2011-03-02 14:35   --------   d-----w-   c:\programdata\Malwarebytes
2011-03-02 14:34 . 2011-03-02 14:35   --------   d-----w-   c:\program files (x86)\Malwarebytes' Anti-Malware
2011-03-02 14:34 . 2010-12-20 18:08   24152   ----a-w-   c:\windows\system32\drivers\mbam.sys
2011-03-02 11:18 . 2011-03-02 11:18   --------   d-----w-   c:\users\Hugo\AppData\Roaming\SUPERAntiSpyware.com
2011-03-02 11:18 . 2011-03-02 11:18   --------   d-----w-   c:\programdata\SUPERAntiSpyware.com
2011-03-02 11:18 . 2011-03-02 11:18   --------   d-----w-   c:\programdata\!SASCORE
2011-03-02 11:18 . 2011-03-02 11:18   --------   d-----w-   c:\program files\SUPERAntiSpyware
2011-03-02 11:10 . 2011-03-02 11:10   --------   d-----w-   c:\program files\CCleaner
2011-03-02 07:54 . 2011-03-02 11:26   --------   d-----w-   c:\programdata\Spybot - Search & Destroy
2011-03-02 07:54 . 2011-03-02 07:54   --------   d-----w-   c:\program files (x86)\Spybot - Search & Destroy
2011-02-24 03:00 . 2010-09-14 06:45   367104   ----a-w-   c:\windows\system32\wcncsvc.dll
2011-02-24 03:00 . 2010-09-14 06:07   276992   ----a-w-   c:\windows\SysWow64\wcncsvc.dll
2011-02-23 05:56 . 2011-01-07 08:07   662528   ----a-w-   c:\windows\system32\XpsPrint.dll
2011-02-23 05:56 . 2011-01-07 08:07   475648   ----a-w-   c:\windows\system32\XpsGdiConverter.dll
2011-02-23 05:56 . 2011-01-07 07:31   442880   ----a-w-   c:\windows\SysWow64\XpsPrint.dll
2011-02-23 05:56 . 2011-01-07 07:31   288256   ----a-w-   c:\windows\SysWow64\XpsGdiConverter.dll
2011-02-22 19:55 . 2011-02-25 16:05   --------   d-----w-   c:\users\Hugo\AppData\Roaming\skypePM
2011-02-22 19:54 . 2011-02-22 19:54   --------   d-----w-   c:\program files (x86)\Common Files\Skype
2011-02-22 19:54 . 2011-03-03 19:39   --------   d-----w-   c:\users\Hugo\AppData\Roaming\Skype
2011-02-22 19:54 . 2011-02-22 19:55   --------   d-----r-   c:\program files (x86)\Skype
2011-02-22 19:54 . 2011-02-22 19:54   --------   d-----w-   c:\programdata\Skype
2011-02-11 13:48 . 2011-02-11 13:48   1172872   ----a-w-   c:\program files (x86)\Mozilla Firefox\extensions\{AB2CE124-6272-4b12-94A9-7303C7397BD1}\components\SkypeFfComponent.dll
2011-02-08 21:27 . 2010-12-21 06:15   264192   ----a-w-   c:\windows\system32\upnp.dll
2011-02-03 13:12 . 2011-02-03 13:12   181608   ----a-w-   c:\programdata\Microsoft\Windows\Sqm\Manifest\Sqm10137.bin

.
((((((((((((((((((((((((((((((((((((((((   Find3M Report   ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-02-02 21:40 . 2010-11-06 15:11   472808   ----a-w-   c:\windows\SysWow64\deployJava1.dll
2011-02-02 17:11 . 2010-11-06 14:03   270720   ------w-   c:\windows\system32\MpSigStub.exe
.

(((((((((((((((((((((((((((((((((((((   Reg Loading Points   ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\URLSearchHooks]
"{bf7380fa-e3b4-4db2-af3e-9d8783a45bfc}"= "c:\program files (x86)\uTorrentBar\tbuTor.dll" [2010-10-10 3906656]
"{a8864317-e18b-4292-99d9-e6e65ab905d3}"= "c:\program files (x86)\Runescape\tbRune.dll" [2010-11-29 3908192]

[HKEY_CLASSES_ROOT\clsid\{bf7380fa-e3b4-4db2-af3e-9d8783a45bfc}]

[HKEY_CLASSES_ROOT\clsid\{a8864317-e18b-4292-99d9-e6e65ab905d3}]

[HKEY_LOCAL_MACHINE\Wow6432Node\~\Browser Helper Objects\{30F9B915-B755-4826-820B-08FBA6BD249D}]
2010-10-10 15:51   3906656   ----a-w-   c:\program files (x86)\ConduitEngine\ConduitEngine.dll

[HKEY_LOCAL_MACHINE\Wow6432Node\~\Browser Helper Objects\{a8864317-e18b-4292-99d9-e6e65ab905d3}]
2010-11-29 15:26   3908192   ----a-w-   c:\program files (x86)\Runescape\tbRune.dll

[HKEY_LOCAL_MACHINE\Wow6432Node\~\Browser Helper Objects\{bf7380fa-e3b4-4db2-af3e-9d8783a45bfc}]
2010-10-10 15:51   3906656   ----a-w-   c:\program files (x86)\uTorrentBar\tbuTor.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar]
"{bf7380fa-e3b4-4db2-af3e-9d8783a45bfc}"= "c:\program files (x86)\uTorrentBar\tbuTor.dll" [2010-10-10 3906656]
"{30F9B915-B755-4826-820B-08FBA6BD249D}"= "c:\program files (x86)\ConduitEngine\ConduitEngine.dll" [2010-10-10 3906656]
"{a8864317-e18b-4292-99d9-e6e65ab905d3}"= "c:\program files (x86)\Runescape\tbRune.dll" [2010-11-29 3908192]

[HKEY_CLASSES_ROOT\clsid\{bf7380fa-e3b4-4db2-af3e-9d8783a45bfc}]

[HKEY_CLASSES_ROOT\clsid\{30f9b915-b755-4826-820b-08fba6bd249d}]

[HKEY_CLASSES_ROOT\clsid\{a8864317-e18b-4292-99d9-e6e65ab905d3}]

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Google Update"="c:\users\Hugo\AppData\Local\Google\Update\GoogleUpdate.exe" [2010-11-06 136176]
"msnmsgr"="c:\program files (x86)\Windows Live\Messenger\msnmsgr.exe" [2010-09-23 4240760]
"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2009-07-14 1475072]
"Steam"="c:\program files (x86)\Steam\Steam.exe" [2010-11-17 1242448]
"uTorrent"="c:\program files (x86)\uTorrent\uTorrent.exe" [2010-11-06 328568]
"HideMyIP"="c:\program files (x86)\Hide My IP\HideMyIP.exe" [2010-09-09 919856]
"DAEMON Tools Lite"="c:\program files (x86)\DAEMON Tools Lite\DTLite.exe" [2010-04-01 357696]
"RoboForm"="c:\program files (x86)\Siber Systems\AI RoboForm\RoboTaskBarIcon.exe" [2010-12-01 160328]
"Skype"="c:\program files (x86)\Skype\Phone\Skype.exe" [2011-01-26 15026056]
"SpybotSD TeaTimer"="c:\program files (x86)\Spybot - Search & Destroy\TeaTimer.exe" [2009-01-26 2144088]

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"StartCCC"="c:\program files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2010-09-30 98304]
"ATICustomerCare"="c:\program files (x86)\ATI\ATICustomerCare\ATICustomerCare.exe" [2010-05-04 311296]
"BCSSync"="c:\program files (x86)\Microsoft Office\Office14\BCSSync.exe" [2010-01-21 91520]
"QuickTime Task"="c:\program files (x86)\QuickTime\QTTask.exe" [2010-09-08 421888]
"iTunesHelper"="c:\program files (x86)\iTunes\iTunesHelper.exe" [2010-11-11 421160]
"Adobe Reader Speed Launcher"="c:\program files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe" [2010-11-10 35736]
"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2010-11-10 932288]
"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2010-10-29 249064]

c:\users\Hugo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
BBC iPlayer Desktop.lnk - c:\program files (x86)\BBC iPlayer Desktop\BBC iPlayer Desktop.exe [2010-11-17 142336]
OpenOffice.org 3.2.lnk - c:\program files (x86)\OpenOffice.org 3\program\quickstart.exe [2010-5-20 1195008]

c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
Ralink Wireless Utility.lnk - c:\program files (x86)\RALINK\Common\RaUI.exe [2010-11-6 692224]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)

[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32]
"aux1"=wdmaud.drv

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
Security Packages   REG_MULTI_SZ      kerberos msv1_0 schannel wdigest tspkg pku2u livessp

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\!SASCORE]
@=""

R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
R3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service;c:\program files (x86)\Microsoft Office\Office14\GROOVE.EXE [2010-01-21 30963576]
R3 osppsvc;Office Software Protection Platform;c:\program files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
R3 USBAAPL64;Apple Mobile USB Driver;c:\windows\system32\Drivers\usbaapl64.sys [2010-09-28 51712]
R3 WatAdminSvc;Windows Activation Technologies Service;c:\windows\system32\Wat\WatAdminSvc.exe [2010-11-07 1255736]
S0 sptd;sptd;c:\windows\System32\Drivers\sptd.sys [2010-11-08 834544]
S1 SASDIFSV;SASDIFSV;c:\program files\SUPERAntiSpyware\SASDIFSV64.SYS [2010-02-17 14920]
S1 SASKUTIL;SASKUTIL;c:\program files\SUPERAntiSpyware\SASKUTIL64.SYS [2010-02-17 12360]
S1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
S2 !SASCORE;SAS Core Service;c:\program files\SUPERAntiSpyware\SASCORE64.EXE [2010-06-29 128752]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [2010-09-29 203264]
S2 SBSDWSCService;SBSD Security Center Service;c:\program files (x86)\Spybot - Search & Destroy\SDWinSec.exe [2009-01-26 1153368]
S3 amdkmdag;amdkmdag;c:\windows\system32\DRIVERS\atikmdag.sys [2010-09-29 7883264]
S3 amdkmdap;amdkmdap;c:\windows\system32\DRIVERS\atikmpag.sys [2010-09-29 285696]
S3 AtiHDAudioService;ATI Function Driver for HD Audio Service;c:\windows\system32\drivers\AtihdW76.sys [2010-08-16 116240]
S3 HideMyIpSRV;HideMyIpSRV;c:\program files (x86)\Hide My IP\HideMyIpSrv.exe [2010-07-06 3039536]
S3 rt61x64;RT61 Extensible Wireless Driver;c:\windows\system32\DRIVERS\netr6164.sys [2009-06-02 438784]

.
Contents of the 'Scheduled Tasks' folder

2011-03-03 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3976565704-4129128031-254699817-1000Core.job
- c:\users\Hugo\AppData\Local\Google\Update\GoogleUpdate.exe [2010-11-06 13:52]

2011-03-03 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3976565704-4129128031-254699817-1000UA.job
- c:\users\Hugo\AppData\Local\Google\Update\GoogleUpdate.exe [2010-11-06 13:52]
.

--------- x86-64 -----------


[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SmartSoft PDF Printer Agent"="c:\program files\Smart PDF Creator Pro\SmartSoft PDF Printer Agent.exe" [2010-10-14 62856]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"LoadAppInit_DLLs"=0x0
.
------- Supplementary Scan -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = hxxp://search.conduit.com?SearchSource=10&ctid=CT2786678
mLocal Page = c:\windows\SysWOW64\blank.htm
uInternet Settings,ProxyOverride = *.local
IE: Customize Menu - file://c:\program files (x86)\Siber Systems\AI RoboForm\RoboFormComCustomizeIEMenu.html
IE: E&xport to Microsoft Excel - c:\progra~2\MICROS~3\Office14\EXCEL.EXE/3000
IE: Fill Forms - file://c:\program files (x86)\Siber Systems\AI RoboForm\RoboFormComFillForms.html
IE: RoboForm Toolbar - file://c:\program files (x86)\Siber Systems\AI RoboForm\RoboFormComShowToolbar.html
IE: Save Forms - file://c:\program files (x86)\Siber Systems\AI RoboForm\RoboFormComSavePass.html
IE: Se&nd to OneNote - c:\progra~2\MICROS~3\Office14\ONBttnIE.dll/105
LSP: c:\windows\system32\HMIPCore.dll
Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - c:\program files (x86)\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL
FF - ProfilePath - c:\users\Hugo\AppData\Roaming\Mozilla\Firefox\Profiles\5ej58ilb.default\
FF - prefs.js: browser.search.defaulturl - hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2786678&SearchSource=3&q={searchTerms}
FF - prefs.js: browser.search.selectedEngine -   
FF - prefs.js: browser.startup.homepage - hxxp://search.conduit.com/?ctid=CT2786678&SearchSource=13
FF - Ext: Default: {972ce4c6-7e08-4474-a285-3208198ce6fd} - c:\program files (x86)\Mozilla Firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
FF - Ext: Java Console: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA} - c:\program files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}
FF - Ext: DAEMON Tools Toolbar: [email protected] - %profile%\extensions\[email protected]
FF - Ext: uTorrentBar Toolbar: {bf7380fa-e3b4-4db2-af3e-9d8783a45bfc} - %profile%\extensions\{bf7380fa-e3b4-4db2-af3e-9d8783a45bfc}
FF - Ext: iMacros for Firefox: {81BF1D23-5F17-408D-AC6B-BD6DF7CAF670} - %profile%\extensions\{81BF1D23-5F17-408D-AC6B-BD6DF7CAF670}
FF - Ext: AI Roboform Toolbar for Firefox: {22119944-ED35-4ab1-910B-E619EA06A115} - c:\program files (x86)\Siber Systems\AI RoboForm\Firefox
.
- - - - ORPHANS REMOVED - - - -

WebBrowser-{BF7380FA-E3B4-4DB2-AF3E-9D8783A45BFC} - (no file)
WebBrowser-{A8864317-E18B-4292-99D9-E6E65AB905D3} - (no file)


.
--------------------- LOCKED REGISTRY KEYS ---------------------

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Office\Common\Smart Tag\Actions\{B7EFF951-E52F-45CC-9EF7-57124F2177CC}]
@Denied: (A) (Everyone)
"Solution"="{15727DE6-F92D-4E46-ACB4-0E2C58B31A18}"

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane3]
@Denied: (A) (Everyone)

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane3\0]
"Key"="ActionsPane3"
"Location"="c:\\Program Files (x86)\\Common Files\\Microsoft Shared\\VSTO\\ActionsPane3.xsd"

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
------------------------ Other Running Processes ------------------------
.
c:\program files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
c:\program files (x86)\Bonjour\mDNSResponder.exe
c:\program files (x86)\OpenOffice.org 3\program\soffice.exe
c:\program files (x86)\OpenOffice.org 3\program\soffice.bin
c:\users\Hugo\AppData\Local\Google\Update\1.2.183.39\GoogleCrashHandler.exe
c:\program files (x86)\Windows Live\Contacts\wlcomm.exe
.
**************************************************************************
.
Completion time: 2011-03-03  19:55:36 - machine was rebooted
ComboFix-quarantined-files.txt  2011-03-03 19:55

Pre-Run: 240,346,247,168 bytes free
Post-Run: 240,191,520,768 bytes free

- - End Of File - - 9BA487BD6E6CD2C8D9FF240151F0DC76

[SuperDave]

SysProt Antirootkit

Download
SysProt Antirootkit from the link below (you will find it at the bottom
of the page under attachments, or you can get it from one of the
mirrors).

http://sites.google.com/site/sysprotantirootkit/

Unzip it into a folder on your desktop.

• Double click Sysprot.exe to start the program.
• Click on the Log tab.
• In the Write to log box select the following items.
• Process << Selected
  
• Kernel Modules << Selected
  
• SSDT << Selected
  
• Kernel Hooks << Selected
  
• IRP Hooks << NOT Selected
  
• Ports << NOT Selected
  
• Hidden Files << Selected
  
• At the bottom of the page
• Hidden Objects Only << Selected
  
• Click on the Create Log button on the bottom right.
• After a few seconds a new window should appear.
• Select Scan Root Drive. Click on the Start button.
• When it is complete a new window will appear to indicate that the scan is finished.
• The log will be saved automatically in the same folder Sysprot.exe was extracted to. Open the text file and copy/paste the log here.

[h00giz]

It says the service failed to start as it needs to be run with Admin privelages...

I have tried running it with admin privelages

... still doesn't work.

[h00giz]

or maybe this is because my pc is 64bit

[SuperDave]

or maybe this is because my pc is 64bit

Those 64 bit machines are going to be the death of me.lol
Let's try this:

Please download the Sophos Anti-Rootkit Scanner and save it to your desktop.

You will need to enter your name, e-mail address and location in order to access the download page.

• Once you have downloaded the file, double click the sarsfx icon
  
• Review the licence agreement and click on the Accept button
  
• The scanner will prompt you to extract the files to C:\SOPHTEMP - DO NOT change this location, simply click the Install button
  
  
• Once the files have been extracted; using Windows Explorer, navigate to C:\SOPHTEMP and double click on the blue shield icon called sargui
  
• Ensure that there are checkmarks next to Running processes, Windows registry and Local hard drives, then click Start scan
  
• Allow the program to scan your computer - please be patient as it may take some time
• Once the scan has completed a window will pop-up with the results of the scan - click OK to this
  
• In the main window, you will see each of the entries found by the scan (if any)
• If the scanner generated any warning messages, please click on each warning and copy and paste the text of it into this thread for me to review
• Once you have posted any warning messages here, you can close the scanner and wait for me to get back to you
• If you have not had any warnings, any entries which can be cleaned up by the scanner will have a box with a green checkmark in it next to the entry
• To clean up these entries click on the Clean up checked items button
  
• If you accidentally check a file NOT recommended for clean up, you will get a warning message and if necessary can re-select the entries you want to clean up
• Once you have cleaned the selected files, you will be prompted to re-boot your computer - please do so
• When you have re-booted, please post a fresh HijackThis log into this thread and tell me how your computer is running now

[h00giz]

Nothing was reccomended for clean up!

[SuperDave]

I'd like to scan your machine with ESET OnlineScan

•Hold down Control and click on the following link to open ESET OnlineScan in a new window.
ESET OnlineScan
•Click the button.
•For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)

• Click on to download the ESET Smart Installer. Save it to your desktop.
  
• Double click on the icon on your desktop.
  

•Check
•Click the button.
•Accept any security warnings from your browser.
•Check
•Push the Start button.
•ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
•When the scan completes, push
•Push , and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
•Push the button.
•Push
A log file will be saved here: C:\Program Files\ESET\ESET Online Scanner\log.txt

[h00giz]

C:\Users\Hugo\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\18\16a4fd92-4f29c1ef   multiple threats   deleted - quarantined
C:\Users\Hugo\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\27\579a45b-4a6310bb   multiple threats   deleted - quarantined
C:\Users\Hugo\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\32\614d4360-7e482d29   a variant of Java/TrojanDownloader.OpenStream.NAZ trojan   deleted - quarantined
C:\Users\Hugo\Downloads\Setup_FreeBurner.exe   Win32/Adware.Toolbar.Dealio application   deleted - quarantined

[SuperDave]

That looks good. If there are no other issues, let's cleanup.

To uninstall ComboFix

• Click the Start button. Click Run. For Vista: type in Run in the Start search, and click on Run in the results pane.
  
• In the field, type in ComboFix /uninstall
  

(Note: Make sure there's a space between the word ComboFix and the forward-slash.)

• Then, press Enter, or click OK.
  
• This will uninstall ComboFix, delete its folders and files, hides System files and folders, and resets System Restore.
  

*******************************************
Clean out your temporary internet files and temp files.

Download TFC by OldTimer to your desktop.

Double-click TFC.exe to run it.

Note: If you are running on Vista, right-click on the file and choose Run As Administrator

TFC will close all programs when run, so make sure you have saved all your work before you begin.

* Click the Start button to begin the cleaning process.
* Depending on how often you clean temp files, execution time should be anywhere from a few seconds to a minute or two.
* Please let TFC run uninterrupted until it is finished.

Once TFC is finished it should restart your computer. If it does not, please manually restart the computer yourself to ensure a complete cleaning.
*********************************************
Looking over your log it seems you don't have any evidence of a third party firewall.

Firewalls protect against hackers and malicious intruders. You need to download a free firewall from one of these reliable vendors.

Remember only install ONE firewall

1) Comodo Personal Firewall (Uncheck during installation "Install Comodo SafeSurf..", Make Comodo my default search provider" and "Make Comodo Search my homepage" and uncheck any HopSurf and/or Ask.com options if you choose this one)
2) Online Armor
3) Agnitum Outpost
4) PC Tools Firewall Plus

If you are using the built-in Windows XP firewall, it is not recommended as it does not block outgoing connections. This means that any malware on your computer is free to "phone home" for more instructions. Simply put, Windows XP contains a mediocre firewall. This firewall is NO replacement for a dedicated software solution. Remember to use only one firewall at the same time.
**********************************************
Use the Secunia Software Inspector to check for out of date software.

•Click Start Now

•Check the box next to Enable thorough system inspection.

•Click Start

•Allow the scan to finish and scroll down to see if any updates are needed.
•Update anything listed.
.
----------

Go to Microsoft Windows Update and get all critical updates.

----------

I suggest using WOT - Web of Trust. WOT is a free Internet security addon for your browser. It will keep you safe from online scams, identity theft, spyware, spam, viruses and unreliable shopping sites. WOT warns you before you interact with a risky website. It's easy and it's free.

SpywareBlaster- Secure your Internet Explorer to make it harder for ActiveX programs to run on your computer. Also stop certain cookies from being added to your computer when running Mozilla based browsers like Firefox.
* Using SpywareBlaster to protect your computer from Spyware and Malware
* If you don't know what ActiveX controls are, see here

Protect yourself against spyware using the Immunize feature in Spybot - Search & Destroy. Guide: Use Spybot's Immunize Feature to prevent spyware infection in real-time. Note: To ensure you have the latest Immunizations always update Spybot - Search & Destroy before Immunizing. Spybot - Search & Destroy FAQ

Check out Keeping Yourself Safe On The Web for tips and free tools to help keep you safe in the future.

Also see Slow Computer? It may not be Malware for free cleaning/maintenance tools to help keep your computer running smoothly.
Safe Surfing!

[h00giz]

Great, thank you very much SuperDave!

[SuperDave]

You're welcome. I will lock this thread. If you need it re-opened, please send me a pm.