Tracking Cookies

[zergkilla]

I'm getting cookies that install themselves everytime I turn on my computer. Here's the HJT Log:

 

 

 

Logfile of HijackThis v1.99.1

 

Scan saved at 8:47:07 AM, on 3/27/2006

 

Platform: Windows XP SP2 (WinNT 5.01.2600)

 

MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

 

 

 

Running processes:

 

C:\WINDOWS\System32\smss[Caution: Executable File]

 

C:\WINDOWS\system32\winlogon[Caution: Executable File]

 

C:\WINDOWS\system32\services[Caution: Executable File]

 

C:\WINDOWS\system32\lsass[Caution: Executable File]

 

C:\WINDOWS\system32\svchost[Caution: Executable File]

 

C:\WINDOWS\System32\svchost[Caution: Executable File]

 

C:\WINDOWS\system32\spoolsv[Caution: Executable File]

 

C:\Program Files\APC\APC PowerChute Personal Edition\mainserv[Caution: Executable File]

 

C:\WINDOWS\System32\CTsvcCDA[Caution: Executable File]

 

C:\WINDOWS\system32\nvsvc32[Caution: Executable File]

 

C:\WINDOWS\System32\HPZipm12[Caution: Executable File]

 

C:\WINDOWS\System32\svchost[Caution: Executable File]

 

C:\WINDOWS\System32\MsPMSPSv[Caution: Executable File]

 

C:\WINDOWS\Explorer[Caution: Executable File]

 

C:\Program Files\Roxio\Easy CD Creator 6\DragToDisc\DrgToDsc[Caution: Executable File]

 

C:\Program Files\Roxio\Easy CD Creator 6\AudioCentral\RxMon[Caution: Executable File]

 

C:\WINDOWS\BCMSMMSG[Caution: Executable File]

 

C:\Program Files\Common Files\AOL\1137879885\ee\AOLSoftware[Caution: Executable File]

 

C:\Program Files\Common Files\Logitech\QCDriver2\LVCOMS[Caution: Executable File]

 

C:\WINDOWS\system32\RUNDLL32[Caution: Executable File]

 

C:\Program Files\HP\HP Software Update\HPWuSchd2[Caution: Executable File]

 

C:\Program Files\Java\jre1.5.0_06\bin\jusched[Caution: Executable File]

 

C:\Program Files\Viewpoint\Viewpoint Manager\ViewMgr[Caution: Executable File]

 

C:\Program Files\Steam\Steam[Caution: Executable File]

 

C:\Program Files\D-Link AirPlus G\AirPlus[Caution: Executable File]

 

C:\Program Files\HP\Digital Imaging\bin\hpqtra08[Caution: Executable File]

 

C:\Program Files\Common Files\Microsoft Shared\Works Shared\wkcalrem[Caution: Executable File]

 

C:\Program Files\Roxio\Easy CD Creator 6\AudioCentral\Playlist[Caution: Executable File]

 

C:\Program Files\HP\Digital Imaging\bin\hpqgalry[Caution: Executable File]

 

C:\Program Files\Creative\SBLive\Diagnostics\diagent[Caution: Executable File]

 

C:\Program Files\APC\APC PowerChute Personal Edition\apcsystray[Caution: Executable File]

 

C:\Program Files\Mozilla Firefox\firefox[Caution: Executable File]

 

C:\Program Files\Hijackthis\HijackThis[Caution: Executable File]

 

 

 

F1 - win.ini: run= C:\C&C\INSTICON[Caution: Executable File]

 

O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll

 

O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll

 

O4 - HKLM\..\Run: [updReg] C:\WINDOWS\UpdReg[Caution: Executable File]

 

O4 - HKLM\..\Run: [RoxioEngineUtility] "C:\Program Files\Common Files\Roxio Shared\System\EngUtil[Caution: Executable File]"

 

O4 - HKLM\..\Run: [RoxioDragToDisc] "C:\Program Files\Roxio\Easy CD Creator 6\DragToDisc\DrgToDsc[Caution: Executable File]"

 

O4 - HKLM\..\Run: [RoxioAudioCentral] "C:\Program Files\Roxio\Easy CD Creator 6\AudioCentral\RxMon[Caution: Executable File]"

 

O4 - HKLM\..\Run: [diagent] "C:\Program Files\Creative\SBLive\Diagnostics\diagent[Caution: Executable File]" startup

 

O4 - HKLM\..\Run: [bCMSMMSG] BCMSMMSG[Caution: Executable File]

 

O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32[Caution: Executable File] C:\WINDOWS\system32\NvCpl.dll,NvStartup

 

O4 - HKLM\..\Run: [HostManager] C:\Program Files\Common Files\AOL\1137879885\ee\AOLSoftware[Caution: Executable File]

 

O4 - HKLM\..\Run: [LVCOMS] C:\Program Files\Common Files\Logitech\QCDriver2\LVCOMS[Caution: Executable File]

 

O4 - HKLM\..\Run: [LogitechGalleryRepair] C:\Program Files\Logitech\ImageStudio\ISStart[Caution: Executable File]

 

O4 - HKLM\..\Run: [LogitechImageStudioTray] C:\Program Files\Logitech\ImageStudio\LogiTray[Caution: Executable File]

 

O4 - HKLM\..\Run: [nwiz] nwiz[Caution: Executable File] /install

 

O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32[Caution: Executable File] C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit

 

O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2[Caution: Executable File]

 

O4 - HKLM\..\Run: [sunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_06\bin\jusched[Caution: Executable File]

 

O4 - HKLM\..\Run: [ViewMgr] C:\Program Files\Viewpoint\Viewpoint Manager\ViewMgr[Caution: Executable File]

 

O4 - HKCU\..\Run: [steam] "C:\Program Files\Steam\Steam[Caution: Executable File]" -silent

 

O4 - Startup: Adobe Gamma.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader[Caution: Executable File]

 

O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl[Caution: Executable File]

 

O4 - Global Startup: APC UPS Status.lnk = ?

 

O4 - Global Startup: D-Link AirPlus G Configuration Utility.lnk = ?

 

O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08[Caution: Executable File]

 

O4 - Global Startup: HP Image Zone Fast Start.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqthb08[Caution: Executable File]

 

O4 - Global Startup: Microsoft Works Calendar Reminders.lnk = ?

 

O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll

 

O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll

 

O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\system32\Shdocvw.dll

 

O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs[Caution: Executable File]

 

O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs[Caution: Executable File]

 

O12 - Plugin for .spop: C:\Program Files\Internet Explorer\Plugins\NPDocBox.dll

 

O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftup ... 8770949759

 

O16 - DPF: {AECD14A8-F662-11D1-A395-00805F535788} (Plotwon Control) - http://www.investors.com/member/ocx/plotwon.ocx

 

O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc[Caution: Executable File]

 

O23 - Service: APC UPS Service - American Power Conversion Corporation - C:\Program Files\APC\APC PowerChute Personal Edition\mainserv[Caution: Executable File]

 

O23 - Service: Creative Service for CDROM Access - Creative Technology Ltd - C:\WINDOWS\System32\CTsvcCDA[Caution: Executable File]

 

O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32[Caution: Executable File]

 

O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\System32\HPZipm12[Caution: Executable File]

 

 

 

 

 

These here are the cookies that are recognized and show up after I scan, and restart. Therefore, I know that these cookies come in every time I start up.

 

 

 

Tracking Cookie Object Recognized!

 

Type : IECache Entry

 

Data : daniel@targetnet[2].txt

 

TAC Rating : 3

 

Category : Data Miner

 

Comment : Hits:6

 

Value : Cookie:[email protected]/

 

Expires : 5-17-2033 8:33:20 PM

 

LastSync : Hits:6

 

UseCount : 0

 

Hits : 6

 

 

 

Tracking Cookie Object Recognized!

 

Type : IECache Entry

 

Data : daniel@doubleclick[1].txt

 

TAC Rating : 3

 

Category : Data Miner

 

Comment : Hits:5

 

Value : Cookie:[email protected]/

 

Expires : 3-25-2009 1:00:38 PM

 

LastSync : Hits:5

 

UseCount : 0

 

Hits : 5

 

 

 

Tracking Cookie Object Recognized!

 

Type : IECache Entry

 

Data : daniel@atdmt[2].txt

 

TAC Rating : 3

 

Category : Data Miner

 

Comment : Hits:2

 

Value : Cookie:[email protected]/

 

Expires : 3-25-2011 5:00:00 PM

 

LastSync : Hits:2

 

UseCount : 0

 

Hits : 2

 

 

 

Tracking Cookie Object Recognized!

 

Type : IECache Entry

 

Data : daniel@zedo[1].txt

 

TAC Rating : 3

 

Category : Data Miner

 

Comment : Hits:14

 

Value : Cookie:[email protected]/

 

Expires : 3-23-2016 1:24:38 PM

 

LastSync : Hits:14

 

UseCount : 0

 

Hits : 14

 

 

 

Tracking Cookie Object Recognized!

 

Type : IECache Entry

 

Data : daniel@advertising[1].txt

 

TAC Rating : 3

 

Category : Data Miner

 

Comment : Hits:3

 

Value : Cookie:[email protected]/

 

Expires : 3-25-2011 1:00:38 PM

 

LastSync : Hits:3

 

UseCount : 0

 

Hits : 3

 

 

 

 

 

Any help would be appreciated.

[Albosky]

Log looks pretty clean , no spyware threats that i noticed .

 

 

 

You're saying that you removing them and they show up immediately after you restart your system? you are running NO applications before you restart , or before you scan again after restart correct ?

[Vape]

Tracking cookies generally appear after you visit sites with ads on them - eg. tip.it. It's no big deal, usually they just tell the ad company how many times you load the page and what ads you've seen, or whatever. I don't bother worrying about them. If you're really concerned about them, block the sites from setting cookies in your browser.

[zergkilla]

Yep, just immediately after I restart my computer, these buggards come right up. No applications that I manually use are being run.

 

 

 

I ran Adaware, deleted anything that it detects. Restarted my computer, then ran Adaware again, and the cookies appear again.

[Random]

disable third-party cookies or something, I heard that helps with these kind of things.

[Priven]

I wouldnt worry about tracking cookies, they dont do anything to harm your computer and most cookies probably are tracking. I probaby have 50 or more on my computer at least right now.