Application cannot be executed. The file *** is infected.

[ziny]

I found a few familiar cases browsing the web and these forums and as it seems it's suggested to start from scratch with this. I all of a sudden got this popup saying "Application cannot be executed. The file *** is infected." with whichever I tried to open. A rundown of what to do etc would be very much appreciated. Please help!

[ziny]

so I followed the general instructions that were suggested in this thread: http://www.computerhope.com/forum/index.php/topic,109535.0.html and now it seems to be fixed. Anyway, I was wondering if you think there's anything else I should look into to make sure everything is safe now? Here are the logs:

SUPERAntiSpyware Scan Log
http://www.superantispyware.com

Generated 09/07/2010 at 11:37 PM

Application Version : 4.42.1000

Core Rules Database Version : 5466
Trace Rules Database Version: 3278

Scan type       : Complete Scan
Total Scan Time : 00:52:43

Memory items scanned      : 376
Memory threats detected   : 0
Registry items scanned    : 14012
Registry threats detected : 1
File items scanned        : 175067
File threats detected     : 479

Trojan.Agent/Gen
   (x86) [a5x3tq] C:\USERS\KASPER\APPDATA\LOCAL\TEMP\202FBH.EXE
   C:\USERS\KASPER\APPDATA\LOCAL\TEMP\202FBH.EXE
   C:\Windows\Prefetch\202FBH.EXE-5507E48E.pf

Adware.Tracking Cookie
   .mediaplex.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .adtech.de [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   stat.onestat.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   stat.onestat.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   be.sitestat.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   be.sitestat.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .cltomedia.info [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   eas4.emediate.eu [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .atdmt.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .game-advertising-online.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .imrworldwide.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .imrworldwide.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .zedo.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .stats.starfeeder.gameriot.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .stats.starfeeder.gameriot.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .weborama.fr [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .adxpose.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .adbrite.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .adbrite.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .atdmt.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   rts.pgmediaserve.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .partypoker.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .advertising.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .adserver.adtechus.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .revsci.net [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .2o7.net [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .2o7.net [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .2o7.net [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .delivery.trafficjunky.net [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .delivery.trafficjunky.net [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .tacoda.net [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .gametracker.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   be.sitestat.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .doubleclick.net [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .collective-media.net [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .eyewonder.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .smartadserver.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .adtech.de [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .xiti.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   fl01.ct2.comclick.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .247realmedia.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .insightexpressai.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .insightexpressai.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .insightexpressai.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .insightexpressai.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .insightexpressai.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .247realmedia.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   adserver.adreactor.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .viacom.adbureau.net [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .2o7.net [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .2o7.net [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .kontera.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .2o7.net [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   nl.sitestat.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   nl.sitestat.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   stat.onestat.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   in.getclicky.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .track.monitis.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .track.monitis.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .legolas-media.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .legolas-media.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .partypoker.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .clicksor.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .mediafire.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .deucescracked.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .deucescracked.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .invitemedia.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .weborama.fr [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .weborama.fr [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .adviva.net [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   nl.sitestat.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .2o7.net [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .ads.pointroll.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .pointroll.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .adbrite.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .deucescracked.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .tradedoubler.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .at.atwola.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .overture.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .overture.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .2o7.net [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   s04.flagcounter.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .media.photobucket.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .adserver.adremedy.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   stat.onestat.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   f.r.i.cltomedia.info [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .bluemango.solution.weborama.fr [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .bluemango.solution.weborama.fr [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .bluemango.solution.weborama.fr [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .bluemango.solution.weborama.fr [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .atdmt.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .insightexpressai.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .insightexpressai.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .eaeacom.112.2o7.net [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   adserver.i3d.net [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .stats.hellforge.gameriot.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .stats.hellforge.gameriot.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .porn.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .porn.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .specificmedia.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   q.r.i.cltomedia.info [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   q.s.i.cltomedia.info [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   d.tmgadnetwerk.nl [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .fl01.ct2.comclick.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .autoscout24.112.2o7.net [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   openx.motomedia.nl [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   hon.esportmedia.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .esportmedia.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .esportmedia.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .hon.esportmedia.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .hon.esportmedia.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .euskalencounter.org [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .dmtracker.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .euskalencounter.org [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   ohra.adservinginternational.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .media.wow-europe.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .media.wow-europe.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .insightexpressai.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .cmp.112.2o7.net [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .perf.overture.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .2o7.net [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .microsoftsto.112.2o7.net [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .adviva.net [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   media.pc.ign.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   media.pc.ign.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   media.pc.ign.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .media.pc.ign.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .warnerbros.112.2o7.net [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .legolas-media.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .entertainment.mediamarkt.nl [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .entertainment.mediamarkt.nl [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .richmedia.yahoo.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .insightexpressai.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .insightexpressai.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .insightexpressai.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .insightexpressai.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .insightexpressai.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .mtvn.112.2o7.net [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .viacom.adbureau.net [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .mediaplex.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   statse.webtrendslive.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   z.o.i.cltomedia.info [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   9.q.i.cltomedia.info [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .partypoker.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   www.partypoker.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   s04.flagcounter.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .insightexpressai.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .insightexpressai.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .insightexpressai.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .insightexpressai.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .im.banner.t-online.de [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   stat.onestat.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   manager.arnostat.nl [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   v.l.j.cltomedia.info [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   s06.flagcounter.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .adtech.de [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .himedia.individuad.net [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .atdmt.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .atdmt.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   nl.sitestat.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .tracking.hannoversche.de [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .collective-media.net [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .yieldmanager.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   www.sexinfo101.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   www.sexinfo101.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   am.sexinfo101.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .sexinfo101.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .sexinfo101.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .collective-media.net [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .gametracker.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .banners.socialflirt.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .banners.socialflirt.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .banners.socialflirt.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .banners.socialflirt.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   c.l.j.cltomedia.info [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .advertstream.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .2o7.net [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .2o7.net [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   zerocounter.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   zerocounter.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   mallang.zerocounter.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   mallang.zerocounter.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   es.sitestat.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   es.sitestat.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .traffictrack.de [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .tracking.quisma.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .tracking.quisma.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   www.googleadservices.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .ice.112.2o7.net [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .ads.pointroll.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .pointroll.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .ads.pointroll.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .ads.pointroll.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .ads.pointroll.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .ads.pointroll.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .ads.pointroll.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .ads.pointroll.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .bonniercorp.122.2o7.net [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .zedo.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .mediadakine.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .zanox-affiliate.de [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   www.zanox-affiliate.de [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .content.yieldmanager.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .steelhousemedia.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .steelhousemedia.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .steelhousemedia.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .steelhousemedia.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   rotator.adjuggler.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .adbrite.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .invitemedia.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .invitemedia.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   d.mediadakine.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   d.mediadakine.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   d.mediadakine.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .server.cpmstar.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   e.p.j.cltomedia.info [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   adserver.webads.nl [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   rotator.adjuggler.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   adsrv.admediate.net [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   f.o.j.cltomedia.info [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   f.q.j.cltomedia.info [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   g.k.j.cltomedia.info [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .acronymfinder.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .questionmarket.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .questionmarket.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .themis-media.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   traffic.tcmagnet.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   ad.yieldmanager.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .2o7.net [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .paypal.112.2o7.net [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .stats.paypal.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .deucescracked.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .deucescracked.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   s07.flagcounter.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   s05.flagcounter.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   s05.flagcounter.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .zedo.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .fastclick.net [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .webmasterplan.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .webmasterplan.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   adsrv.admediate.net [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .traffictrack.de [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   s.i.j.cltomedia.info [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .www.burstnet.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .burstnet.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   s.p.j.cltomedia.info [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .media6degrees.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .statcounter.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   *Blocked Russian URL* [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .yieldmanager.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .revsci.net [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .smartadserver.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .casalemedia.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .hg1.hitbox.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .hitbox.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   s05.flagcounter.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   zbox.zanox.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .server.cpmstar.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .server.cpmstar.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .server.cpmstar.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   www8.addfreestats.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   stat.onestat.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   0.o.j.cltomedia.info [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   0.p.j.cltomedia.info [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   s04.flagcounter.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   9.j.j.cltomedia.info [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .unigro.112.2o7.net [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   9.t.j.cltomedia.info [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   media.quakelive.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   9.n.j.cltomedia.info [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   counter.hitslink.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .hearstugo.112.2o7.net [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .advertising.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .at.atwola.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .at.atwola.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .tradedoubler.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .tradedoubler.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .doubleclick.net [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   ads2.pixiv.net [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .smartadserver.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .smartadserver.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .invitemedia.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .interclick.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .interclick.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .adbrite.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .gostats.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .allbritton.122.2o7.net [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   ads.*adult URL* [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .*adult URL* [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   games.*adult URL* [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .*adult URL* [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .*adult URL* [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .*adult URL* [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .*adult URL* [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .*adult URL* [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .spylog.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   ads.zeusclicks.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .adecn.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   o.t.h.cltomedia.info [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   ad.adserver01.de [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   ad2.adfarm1.adition.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   dc.tremormedia.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   s05.flagcounter.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   *Blocked Russian URL* [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   p.k.h.cltomedia.info [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .revsci.net [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .mediaplex.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .casalemedia.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .casalemedia.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .casalemedia.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .tradedoubler.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .statcounter.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .apmebf.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .apmebf.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   media.etology.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .*adult URL* [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .*adult URL* [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .*adult URL* [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .*adult URL* [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .*adult URL* [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .*adult URL* [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .*adult URL* [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   gr.burstnet.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .insightexpressai.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .insightexpressai.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .insightexpressai.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .insightexpressai.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .insightexpressai.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .revsci.net [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .revsci.net [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .revsci.net [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .revsci.net [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .revsci.net [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .revsci.net [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .revsci.net [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .revsci.net [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .msnportal.112.2o7.net [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .tribalfusion.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .atwola.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .tacoda.net [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .tacoda.net [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .tacoda.net [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .tacoda.net [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .burstnet.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   www.burstnet.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .chitika.net [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .collective-media.net [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   rts.pgmediaserve.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   rts.pgmediaserve.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   rts.pgmediaserve.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .partypoker.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .partypoker.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .mediafire.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .mediafire.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .optimost.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .bs.serving-sys.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .serving-sys.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .serving-sys.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .serving-sys.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .serving-sys.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .serving-sys.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .serving-sys.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .serving-sys.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .kontera.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .advertising.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .advertising.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .advertising.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .advertising.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .specificclick.net [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .specificclick.net [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .specificclick.net [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .specificclick.net [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .kontera.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .kontera.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .warez-bb.org [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   www.warez-bb.org [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .warez-bb.org [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .warez-bb.org [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   v.q.h.cltomedia.info [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   cltomedia.info [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   cltomedia.info [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   ad.zanox.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .gametracker.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .gametracker.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .gametracker.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   fl01.ct2.comclick.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .media6degrees.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   ad.yieldmanager.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .adfarm1.adition.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   adfarm1.adition.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .media6degrees.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .media6degrees.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .media6degrees.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   fl01.ct2.comclick.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   fl01.ct2.comclick.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   ad.yieldmanager.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   stats.ilsemedia.nl [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .bt.ilsemedia.nl [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .bt.ilsemedia.nl [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .tradedoubler.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .tradedoubler.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .tradedoubler.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .fastclick.net [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .fastclick.net [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   ad.yieldmanager.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   ad.yieldmanager.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .fastclick.net [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .fastclick.net [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .fastclick.net [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .bluestreak.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .zanox.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   ad.zanox.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .content.yieldmanager.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .clicksor.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .myroitracking.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .clicksor.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .clicksor.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   ad.yieldmanager.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   1.w.h.cltomedia.info [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .clicksor.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .clicksor.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   ad.yieldmanager.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   ad.yieldmanager.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   ad.yieldmanager.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   cltomedia.info [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   cltomedia.info [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .zedo.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .zedo.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .zedo.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .zedo.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   .zedo.com [ C:\Users\Kasper\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
   cdn5.specificclick.net [ C:\Users\Kasper\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\KE6BPF6H ]
   cloud.video.unrulymedia.com [ C:\Users\Kasper\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\KE6BPF6H ]
   cloudfront.mediamatters.org [ C:\Users\Kasper\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\KE6BPF6H ]
   ds.serving-sys.com [ C:\Users\Kasper\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\KE6BPF6H ]
   hottraffic.nl [ C:\Users\Kasper\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\KE6BPF6H ]
   i.*adult URL* [ C:\Users\Kasper\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\KE6BPF6H ]
   ia.media-imdb.com [ C:\Users\Kasper\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\KE6BPF6H ]
   macromedia.com [ C:\Users\Kasper\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\KE6BPF6H ]
   media-cdn.pictela.net [ C:\Users\Kasper\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\KE6BPF6H ]
   media.ign.com [ C:\Users\Kasper\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\KE6BPF6H ]
   media.khou.com [ C:\Users\Kasper\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\KE6BPF6H ]
   media.mtvnservices.com [ C:\Users\Kasper\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\KE6BPF6H ]
   media.scanscout.com [ C:\Users\Kasper\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\KE6BPF6H ]
   media.socialvibe.com [ C:\Users\Kasper\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\KE6BPF6H ]
   media.xfire.com [ C:\Users\Kasper\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\KE6BPF6H ]
   media.zattevrienden.be [ C:\Users\Kasper\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\KE6BPF6H ]
   media1.break.com [ C:\Users\Kasper\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\KE6BPF6H ]
   msnbcmedia.msn.com [ C:\Users\Kasper\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\KE6BPF6H ]
   msntest.serving-sys.com [ C:\Users\Kasper\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\KE6BPF6H ]
   naiadsystems.com [ C:\Users\Kasper\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\KE6BPF6H ]
   objects.tremormedia.com [ C:\Users\Kasper\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\KE6BPF6H ]
   secure-us.imrworldwide.com [ C:\Users\Kasper\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\KE6BPF6H ]
   static.esportmedia.com [ C:\Users\Kasper\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\KE6BPF6H ]
   us.media.blizzard.com [ C:\Users\Kasper\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\KE6BPF6H ]
   www.deucescracked.com [ C:\Users\Kasper\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\KE6BPF6H ]
   www.emitourtracker.com [ C:\Users\Kasper\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\KE6BPF6H ]
   www.naiadsystems.com [ C:\Users\Kasper\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\KE6BPF6H ]
   C:\Users\Kasper\AppData\Roaming\Microsoft\Windows\Cookies\kasper@atdmt[1].txt
   C:\Users\Kasper\AppData\Roaming\Microsoft\Windows\Cookies\kasper@atdmt[2].txt
   C:\Users\Kasper\AppData\Roaming\Microsoft\Windows\Cookies\kasper@bluestreak[1].txt
   C:\Users\Kasper\AppData\Roaming\Microsoft\Windows\Cookies\kasper@bluestreak[2].txt
   C:\Users\Kasper\AppData\Roaming\Microsoft\Windows\Cookies\kasper@doubleclick[2].txt
   C:\Users\Kasper\AppData\Roaming\Microsoft\Windows\Cookies\kasper@serving-sys[1].txt
   C:\Users\Kasper\AppData\Roaming\Microsoft\Windows\Cookies\kasper@serving-sys[2].txt
   C:\Users\Kasper\AppData\Roaming\Microsoft\Windows\Cookies\kasper@serving-sys[3].txt

Trojan.Agent/Gen-CDesc[Gen]
   C:\USERS\KASPER\APPDATA\LOCAL\TEMP\TPCUQC.EXE
   C:\Windows\Prefetch\TPCUQC.EXE-C80C115A.pf

Trojan.Agent/Gen-Frauder[Cool3b]
   C:\USERS\KASPER\APPDATA\LOCAL\TEMP\Z4P7X9BD7.EXE
   C:\WINDOWS\SYSWOW64\SZETYJ67VX.EXE
   C:\Windows\Prefetch\Z4P7X9BD7.EXE-FB521FF9.pf

Trojan.Agent/Gen-OnlineGames
   C:\WINDOWS\SYSWOW64\MSLLHSJN.DLL
   D:\WORLD OF WARCRAFT\MSVCR70.DLL

Trojan.Agent/Gen-FakeAlert
   C:\WINDOWS\SYSWOW64\SZETYJ67V.EXE
   C:\Windows\Prefetch\SZETYJ67V.EXE-DE4DCB63.pf

Trojan.Agent/Gen-Koobface[Bonkers]
   C:\WINDOWS\SYSWOW64\UPDATA.EXE
   C:\Windows\Prefetch\UPDATA.EXE-66B5259A.pf

Results of screen317's Security Check version 0.99.5 
 Windows 7  (UAC is disabled!)
 Internet Explorer 8 
``````````````````````````````
Antivirus/Firewall Check:
 Windows Security Center service is not running! This report may not be accurate!
 Windows Firewall Enabled! 
 WMI entry may not exist for antivirus; attempting automatic update.
```````````````````````````````
Anti-malware/Other Utilities Check:
 Malwarebytes' Anti-Malware   
 HijackThis 2.0.2   
 Java(TM) 6 Update 15 
 Out of date Java installed!
 Adobe Flash Player 10.0.32.18 
Adobe Reader 9.3 - Nederlands
````````````````````````````````
Process Check: 
objlist.exe by Laurent
````````````````````````````````
DNS Vulnerability Check:
 GREAT! (Not vulnerable to DNS cache poisoning)

``````````End of Log````````````

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 0:28:16, on 8/09/2010
Platform: Unknown Windows (WinNT 6.01.3504)
MSIE: Internet Explorer v8.00 (8.00.7600.16385)
Boot mode: Safe mode with network support

Running processes:
C:\Program Files (x86)\Trend Micro\HijackThis\HijackThis.exe
C:\Windows\SysWOW64\DllHost.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://securityresponse.symantec.com/avcenter/fix_homepage
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://securityresponse.symantec.com/avcenter/fix_homepage
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: SearchHook Class - {BC86E1AB-EDA5-4059-938F-CE307B0C6F0A} - C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\AddressBarSearch.dll
O1 - Hosts: ::1 localhost
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (filesize 75200 bytes, MD5 DC1E56092CC57FB4605B088D3DCCBF7A)
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
O2 - BHO: Windows Live Aanmelden - Help - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (filesize 408448 bytes, MD5 B7899C3E21B299D7A3C0DA96CAE340BD)
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll (filesize 41760 bytes, MD5 1E57B1A44C7DFFA1C38534279C14B3CE)
O2 - BHO: CStat - {DD92DE22-ED91-4560-B788-DEE2B26612E6} - C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\IEHelper.dll (filesize 335104 bytes, MD5 6EE8BDB6421DBAF3D0E29EB383D96154)
O4 - HKLM\..\Run: [JMB36X IDE Setup] C:\Windows\RaidTool\xInsIDE.exeC:\Windows\RaidTool\xInsIDE.exe
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun (filesize 98304 bytes, MD5 494D1D57779360D2632328C3646DE5DB)
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Java\jre6\bin\jusched.exe" (filesize 149280 bytes, MD5 90E0F7FDCAC66FB50C1CE1A1C7396642)
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime (filesize 421888 bytes, MD5 CC065D46387E4A7E6FF99D7BB5C1769D)
O4 - HKLM\..\Run: [byivqr] RUNDLL32.EXE C:\Windows\system32\msllhsjn.dll,w (filesize 44544 bytes, MD5 51138BEEA3E2C21EC44D0932C71762A8)
O4 - HKLM\..\Run: [Malwarebytes Anti-Malware (reboot)] "C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.exe" /runcleanupscript (filesize 1090952 bytes, MD5 D594EA4AC1C0E4675EF2F0063950ABEF)
O4 - HKLM\..\RunOnce: [Malwarebytes' Anti-Malware] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe /install /silent
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe" /background (filesize 3883856 bytes, MD5 D70434639B4BD873C056E00175CE5789)
O4 - HKCU\..\Run: [DisplayFusion] "C:\Program Files (x86)\DisplayFusion\DisplayFusion.exe"
O4 - HKCU\..\Run: [Google Update] "C:\Users\Kasper\AppData\Local\Google\Update\GoogleUpdate.exe" /c (filesize 136176 bytes, MD5 F02A533F517EB38333CB12A9E8963773)
O4 - HKCU\..\Run: [Steam] "d:\steamx\steam.exe" -silent (filesize 1242448 bytes, MD5 B995BCBC001150974EDD1637295600BD)
O4 - HKCU\..\Run: [Octoshape Streaming Services] "C:\Users\Kasper\AppData\Roaming\Octoshape\Octoshape Streaming Services\OctoshapeClient.exe" -inv:bootrun (filesize 70936 bytes, MD5 C4EFFE930649C758E208BDED65B408CB)
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - Global Startup: LevelOne N Wireless Utility.lnk = C:\Program Files (x86)\LevelOne\Common\RaUI.exe (filesize 1818624 bytes, MD5 830070135AA134726269F0724251D4B2)
O4 - Global Startup: Rainmeter.lnk = C:\Program Files\Rainmeter\Rainmeter.exe (filesize 113664 bytes, MD5 78E7C2672F6A6864B633853A06A68EE7)
O4 - Global Startup: UltraMon.lnk = ?
O9 - Extra button: Unibet - {00000000-0000-0000-0000-000000000000} - C:\MicroGaming\Poker\unibetpokerMPP\MPPoker.exe (file missing) (HKCU)
O9 - Extra button: Absolute Poker - {1FBA04EE-3024-11d2-8F1F-0000F87ABD16} - C:\Users\Kasper\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Absolute Poker\Absolute Poker.lnk (file missing) (HKCU)
O9 - Extra 'Tools' menuitem: Absolute Poker - {1FBA04EE-3024-11d2-8F1F-0000F87ABD16} - C:\Users\Kasper\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Absolute Poker\Absolute Poker.lnk (file missing) (HKCU)
O13 - Gopher Prefix:
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL (filesize 1959208 bytes, MD5 1E79B48BC50B99FDC0066860BCEFBC23)
O23 - Service: SAS Core Service (!SASCORE) - SUPERAntiSpyware.com - C:\Program Files\SUPERAntiSpyware\SASCORE64.EXEC:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: Autodesk Licensing Service - Autodesk - C:\Program Files (x86)\Common Files\Autodesk Shared\Service\AdskScSrv.exeC:\Program Files (x86)\Common Files\Autodesk Shared\Service\AdskScSrv.exe
O23 - Service: B-Service - Unknown owner - C:\Users\Kasper\AppData\Roaming\Mikogo\B-Service.exeC:\Users\Kasper\AppData\Roaming\Mikogo\B-Service.exe
O23 - Service: Browser Configuration Utility Service (BCUService) - DeviceVM, Inc. - C:\Program Files (x86)\DeviceVM\Browser Configuration Utility\BCUService.exeC:\Program Files (x86)\DeviceVM\Browser Configuration Utility\BCUService.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: PostgreSQL Database Server 8.3 (pgsql-8.3) - PostgreSQL Global Development Group - C:\Program Files (x86)\PostgreSQL\8.3\bin\pg_ctl.exeC:\Program Files (x86)\PostgreSQL\8.3\bin\pg_ctl.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Ralink Registry Writer (RalinkRegistryWriter) - Ralink Technology, Corp. - C:\Program Files (x86)\LevelOne\Common\RalinkRegistryWriter.exeC:\Program Files (x86)\LevelOne\Common\RalinkRegistryWriter.exe
O23 - Service: Ralink Registry Writer 64 (RalinkRegistryWriter64) - Ralink Technology, Corp. - C:\Program Files (x86)\LevelOne\Common\RalinkRegistryWriter64.exeC:\Program Files (x86)\LevelOne\Common\RalinkRegistryWriter64.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exeC:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Unsigned Themes (UnsignedThemes) - The Within Network, LLC - C:\Windows\UnsignedThemesSvc.exeC:\Windows\UnsignedThemesSvc.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 9958 bytes

Malwarebytes' Anti-Malware 1.46
www.malwarebytes.org

Database version: 4564

Windows 6.1.7600 (Safe Mode)
Internet Explorer 8.0.7600.16385

8/09/2010 0:18:58
mbam-log-2010-09-08 (00-18-58).txt

Scan type: Full scan (C:\|D:\|E:\|)
Objects scanned: 312401
Time elapsed: 32 minute(s), 29 second(s)

Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 1
Registry Values Infected: 5
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 10

Memory Processes Infected:
(No malicious items detected)

Memory Modules Infected:
(No malicious items detected)

Registry Keys Infected:
HKEY_CURRENT_USER\SOFTWARE\wnxmal (Rogue.SecuritySuite) -> Quarantined and deleted successfully.

Registry Values Infected:
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\ihocteun (Rogue.SecuritySuite) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\netlog2 (Trojan.Sisproc.Gen) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\netlog3 (Trojan.Sisproc.Gen) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\szetyj67v (Trojan.Dropper) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\szetyj67vx (Trojan.Dropper) -> Quarantined and deleted successfully.

Registry Data Items Infected:
(No malicious items detected)

Folders Infected:
(No malicious items detected)

Files Infected:
C:\Users\Kasper\AppData\Local\epqadsowt\jfrertmuqiw.exe (Rogue.SecuritySuite) -> Quarantined and deleted successfully.
C:\Windows\svc2.exe (Trojan.Sisproc.Gen) -> Quarantined and deleted successfully.
C:\Windows\svc3.exe (Trojan.Sisproc.Gen) -> Quarantined and deleted successfully.
C:\Users\Kasper\AppData\Local\Temp\4hnf1yyx1.exe (Trojan.Sisproc.Gen) -> Quarantined and deleted successfully.
C:\Users\Kasper\AppData\Local\Temp\mkcxhunr.exe (Rogue.SecuritySuite) -> Quarantined and deleted successfully.
C:\Users\Kasper\AppData\Local\Temp\s1aya03l.exe (Trojan.Sisproc.Gen) -> Quarantined and deleted successfully.
D:\vidz\lolnab\dirty1992.jpg (Extension.Mismatch) -> Quarantined and deleted successfully.
C:\Windows\System32\comsats.sys (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Windows\System32\service.sys (Rootkit.Agent) -> Quarantined and deleted successfully.
C:\Users\Kasper\Local Settings\Application Data\Windows Server\admin.txt (Malware.Trace) -> Quarantined and deleted successfully.

Thanks a lot in advance

[ziny]

It seems like I'm now still having some issues.

For one, whenever I startup, the first thing that pops up in Windows is this error message:

Googled it and this is what I found: http://www.threatexpert.com/report.aspx?md5=604a2382d85e6b8894f5746a5a74038e

Also I can no longer install files with the .msi extension anymore it appears, because I then get this error:


Lastly I had a few "Windows explorer has stopped working" popups aswell.

So far I have done nothing about these things yet as I want to follow your advice.

Please help!
Kind regards

[ziny]

I think I managed to fix both the .msi extension files not being able to open and the windows explorer stopped working issues.

I did it by goign Start, Control Panel, Internet Options. Click Advanced tab. Click Reset button.

I still get the "msllhsjn.dll" popup though when logging on windows.

[SuperDave]

Hello and welcome to Computer Hope Forum. My name is Dave. I will be helping you out with your particular problem on your computer. I am working under the guidance of one of the specialist of this forum so it may take a bit longer to process your logs.

1. I will be working on your Malware issues. This may or may not solve other issues you have with your machine.
2. The fixes are specific to your problem and should only be used for this issue on this machine.
3. If you don't know or understand something, please don't hesitate to ask.
4. Please DO NOT run any other tools or scans while I am helping you.
5. It is important that you reply to this thread. Do not start a new topic.
6. Your security programs may give warnings for some of the tools I will ask you to use. Be assured, any links I give are safe.
7. Absence of symptoms does not mean that everything is clear.

Why do you have your Windows Security Center turned off? Not a good idea.

Update Your Java (JRE)

Old versions of Java have vulnerabilities that malware can use to infect your system.

First Verify your Java Version

If there are any other version(s) installed then update now.

Get the new version (if needed)

If your version is out of date install the newest version of the Sun Java Runtime Environment.

Note: UNCHECK any pre-checked toolbar and/or software offered with the Java update. The pre-checked toolbars/software are not part of the Java update.

Be sure to close ALL open web browsers before starting the installation.

Remove any old versions

1. Download JavaRa and unzip the file to your Desktop.
2. Open JavaRA.exe and choose Remove Older Versions
3. Once complete exit JavaRA.
4. Run CCleaner.

Additional Note: The Java Quick Starter (JQS.exe) adds a service to improve the initial startup time of Java applets and applications. To disable the JQS service if you don't want to use it, go to Start > Control Panel > Java > Advanced > Miscellaneous and uncheck the box for Java Quick Starter. Click OK and reboot your computer.

*********************************
There is a malicious keylogger on your computer. I need to pass this information to you so that you know the risks that are involved and so you can the appropiate actions. That pop-up you're getting is part of the keylogger.

If you do any banking or other financial transactions on the PC or if it should contain any other sensitive information, please get to a known clean computer and change all passwords where applicable. Do NOT change passwords or do any transactions while using the infected computer because the attacker may get the new passwords and transaction information. (If using a router, you need to reset it with a strong logon/password so the malware cannot gain control before connecting again.) Banking and credit card institutions should be notified to apprise them of your situation (possible security breach). To protect your information that may have been compromised, I recommend reading these references:
How Do I Handle Possible Identify Theft, Internet Fraud and CC Fraud?
What Should I Do If I've Become A Victim Of Identity Theft?
 Identity Theft Victims Guide - What to do
It is dangerous and incorrect to assume the computer is secure even if the malware appears to have been removed. In some instances an infection may have caused so much damage to your system that it cannot
be completely cleaned or repaired so you can never be sure that you have completely removed a rootkit. The malware may leave so many remnants behind that security tools cannot find them. Tools that claim to be able to remove rootkits cannot guarantee that all traces of it will be removed. Many experts in the security community believe that once infected with such a piece of malware, the best course of action would be a reformat and clean reinstall of the OS. This is something I don't like to recommend normally, but in most cases it is the best solution for your safety. Making this decision is based on what the computer is used for, and what information can be accessed from it. For more information, please read these references very carefully:
When should I re-format? How should I reinstall?
Help: I Got Hacked. Now What Do I Do?
Help: I Got Hacked. Now What Do I Do? Part II
Where to draw the line? When to recommend a format and reinstall?

Guides for format and reinstall:

how-to-reformat-and-reinstall-your-operating-system-the-easy-way

However, if you do not have the resources to reinstall your computer's OS and would like me to attempt to clean it, I will be happy to do so. But please consider carefully before deciding against a reformat.
If you do make that decision, I will do my best to help you clean the computer of any infections, but you must understand that once a machine has been taken over by this type of malware, I cannot guarantee that it will be 100% secure even after disinfection or that the removal will be successful.

Please let me know what you have decided to do in your next post. Should you have any questions, please feel free to ask.
**************************************
Copy and paste the text in the code box below into Notepad.

Code: [Select]

@echo off

del C:\Windows\system32\msllhsjn.dll
del begone.bat
exit
Then click File > Save as
Save to the Desktop as begone.bat
And Save as type: All Files.

Double-click on begone.bat to run it.
*************************************

Open HijackThis and select Do a system scan only

Place a check mark next to the following entries: (if there)

O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
O4 - HKLM\..\Run: [byivqr] RUNDLL32.EXE C:\Windows\system32\msllhsjn.dll,w (filesize 44544 bytes, MD5 51138BEEA3E2C21EC44D0932C71762A8)
O4 - HKLM\..\Run: [Malwarebytes Anti-Malware (reboot)] "C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.exe" /runcleanupscript (filesize 1090952 bytes, MD5 D594EA4AC1C0E4675EF2F0063950ABEF)
O4 - HKLM\..\RunOnce: [Malwarebytes' Anti-Malware] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe /install /silent
O9 - Extra button: Unibet - {00000000-0000-0000-0000-000000000000} - C:\MicroGaming\Poker\unibetpokerMPP\MPPoker.exe (file missing) (HKCU)
C:\Users\Kasper\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Absolute Poker\Absolute Poker.lnk (file missing) (HKCU)
O9 - Extra 'Tools' menuitem: Absolute Poker - {1FBA04EE-3024-11d2-8F1F-0000F87ABD16} - C:\Users\Kasper\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Absolute Poker\Absolute Poker.lnk (file missing) (HKCU)

Important: Close all open windows except for HijackThis and then click Fix checked.

Once completed, exit HijackThis.
*************************************
Please let me know what you intend to do with your computer. If you don't have too much data to save, it might be better to reinstall you OS.

[ziny]

I did what you told me to and now the msllhsjn.dll popup is gone after rebooting.

Is it really such a big deal whether to format or not? I wouldn't mind doing that if a format completely removes any kind of threat there still may be. Does it do that? Will I be 100% safe again then?
I have a 1TB external HD which I can use to transfer my important stuff anyway.

I'm still getting the "Windows Explorer has stopped working" thing though. That only comes up when I try to enable the Security Center which is what the "important warnings" thing in the system tray tells me to do.

I guess I will go for the format then tomorrow just to be sure, unless you dissagree? I'll also make sure to change all of my passwords after formatting etc.

Thanks A LOT for the help btw!!

[SuperDave]

I agree with the format and re-install. If you save your data be sure to scan it before reinstalling it on your computer. You should scan it with your AV was well as other antimalware programs.