1. Computer problem? Tech Support Guy is completely free -- paid for by advertisers and donations. Click here to join today! If you're new to Tech Support Guy, we highly recommend that you visit our Guide for New Members.

Busy internet connection

Discussion in 'Virus & Other Malware Removal' started by greendrag200, Jan 27, 2006.

Thread Status:
Not open for further replies.
Advertisement
  1. greendrag200

    greendrag200 Thread Starter

    Joined:
    Jan 27, 2006
    Messages:
    16
    hey im new here, just need a bit of help.
    For some reason, whenever i try going onto the internet it starts getting very busy after about 10 minutes.. even when i disconnect my internet, the dsl modem still shows that it is transmitting information. When it does this, my internet connection get horrible, and it seems like it can only be fixed by completly rebooting the whole LAN. I checked the hub, and it only shows that my computer is useing the internet, so it's not just another computer in the network that is useing up my connection.
     
  2. MFDnNC

    MFDnNC

    Joined:
    Sep 7, 2004
    Messages:
    49,014
    Lets see if you have some nasties

    Click here to download HJTsetup.exe: http://www.thespykiller.co.uk/files/HJTSetup.exe
    Save HJTsetup.exe to your desktop.

    Double click on the HJTsetup.exe icon on your desktop.
    By default it will install to C:\Program Files\Hijack This.
    Continue to click Next in the setup dialogue boxes until you get to the Select Addition Tasks dialogue.
    Put a check by Create a desktop icon then click Next again.
    Continue to follow the rest of the prompts from there.
    At the final dialogue box click Finish and it will launch Hijack This.
    Click on the Do a system scan and save a log file button. It will scan and then ask you to save the log.
    Click Save to save the log file and then the log will open in notepad.
    Click on "Edit > Select All" then click on "Edit > Copy" to copy the entire contents of the log.
    Come back here to this thread and Paste the log in your next reply.
    DO NOT have Hijack This fix anything yet. Most of what it finds will be harmless or even required.
     
  3. greendrag200

    greendrag200 Thread Starter

    Joined:
    Jan 27, 2006
    Messages:
    16
    all here! My systen is probably loaded becuase it hasn't been checked for about half a year.. and im not sure where to get a fire-wall, any ideas on a good free one? :eek:

    Logfile of HijackThis v1.99.1
    Scan saved at 6:09:26 PM, on 1/27/2006
    Platform: Windows XP SP2 (WinNT 5.01.2600)
    MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

    Running processes:
    C:\WINDOWS\System32\smss.exe
    C:\WINDOWS\system32\winlogon.exe
    C:\WINDOWS\system32\services.exe
    C:\WINDOWS\system32\lsass.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\System32\svchost.exe
    C:\WINDOWS\system32\spoolsv.exe
    C:\WINDOWS\System32\drivers\CDAC11BA.EXE
    c:\program files\mcafee.com\agent\mcdetect.exe
    c:\PROGRA~1\mcafee.com\vso\mcshield.exe
    c:\PROGRA~1\mcafee.com\agent\mctskshd.exe
    C:\WINDOWS\System32\svchost.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\Explorer.EXE
    C:\windows\system\hpsysdrv.exe
    C:\HP\KBD\KBD.EXE
    C:\WINDOWS\System32\spool\drivers\w32x86\3\hpztsb04.exe
    C:\WINDOWS\System32\qttask.exe
    C:\PROGRA~1\mcafee.com\agent\mcagent.exe
    C:\Program Files\McAfee.com\VSO\mcvsshld.exe
    C:\Program Files\iRiver\iRiver Manager\Updater\Updater.exe
    c:\progra~1\mcafee.com\vso\mcvsescn.exe
    C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
    C:\Program Files\McAfee.com\VSO\oasclnt.exe
    C:\Program Files\ScanSoft\OmniPageSE2.0\OpwareSE2.exe
    C:\Program Files\Messenger\msmsgs.exe
    C:\Program Files\MSN Messenger\msnmsgr.exe
    C:\Program Files\Common Files\AOL\1123980107\ee\AOLHostManager.exe
    C:\Program Files\Common Files\AOL\1123980107\ee\AOLServiceHost.exe
    C:\Program Files\Sony Corporation\Picture Package\Picture Package Menu\SonyTray.exe
    C:\Program Files\Sony Corporation\Picture Package\Picture Package Applications\Residence.exe
    c:\progra~1\mcafee.com\vso\mcvsftsn.exe
    C:\Program Files\MusicMatch\MusicMatch Jukebox\mim.exe
    C:\Program Files\Common Files\Intuit\QuickBooks\QBUpdate\qbupdate.exe
    C:\Program Files\WinZip\WZQKPICK.EXE
    C:\Program Files\MusicMatch\MusicMatch Jukebox\MMDiag.exe
    C:\PROGRA~1\MOZILL~1\FIREFOX.EXE
    C:\Program Files\Hijackthis\HijackThis.exe

    R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page =
    R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
    R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
    R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
    O2 - BHO: (no name) - {01F44A8A-8C97-4325-A378-76E68DC4AB2E} - (no file)
    O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
    O2 - BHO: ST - {9394EDE7-C8B5-483E-8773-474BF36AF6E4} - C:\Program Files\MSN Apps\ST\01.03.0000.1005\en-xu\stmain.dll
    O2 - BHO: MSNToolBandBHO - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Apps\MSN Toolbar\01.02.3000.1001\en-us\msntb.dll
    O2 - BHO: (no name) - {C9C46521-A4E0-8D49-9E0C-ACC8688D2A92} - C:\WINDOWS\system32\fhoms.dll (file missing)
    O3 - Toolbar: McAfee VirusScan - {BA52B914-B692-46c4-B683-905236F6F655} - c:\progra~1\mcafee.com\vso\mcvsshl.dll
    O3 - Toolbar: (no name) - {2CDE1A7D-A478-4291-BF31-E1B4C16F92EB} - (no file)
    O3 - Toolbar: (no name) - {12EE7A5E-0674-42f9-A76B-000000004D00} - (no file)
    O3 - Toolbar: MSN - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Apps\MSN Toolbar\01.02.3000.1001\en-us\msntb.dll
    O3 - Toolbar: Easy-WebPrint - {327C2873-E90D-4c37-AA9D-10AC9BABA46C} - C:\Program Files\Canon\Easy-WebPrint\Toolband.dll
    O4 - HKLM\..\Run: [hpsysdrv] c:\windows\system\hpsysdrv.exe
    O4 - HKLM\..\Run: [KBD] C:\HP\KBD\KBD.EXE
    O4 - HKLM\..\Run: [Recguard] C:\WINDOWS\SMINST\RECGUARD.EXE
    O4 - HKLM\..\Run: [S3TRAY2] S3tray2.exe
    O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\System32\igfxtray.exe
    O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\System32\hkcmd.exe
    O4 - HKLM\..\Run: [PS2] C:\WINDOWS\system32\ps2.exe
    O4 - HKLM\..\Run: [HPDJ Taskbar Utility] C:\WINDOWS\System32\spool\drivers\w32x86\3\hpztsb04.exe
    O4 - HKLM\..\Run: [QuickTime Task] C:\WINDOWS\System32\qttask.exe
    O4 - HKLM\..\Run: [MCAgentExe] c:\PROGRA~1\mcafee.com\agent\mcagent.exe
    O4 - HKLM\..\Run: [MCUpdateExe] c:\PROGRA~1\mcafee.com\agent\mcupdate.exe
    O4 - HKLM\..\Run: [VirusScan Online] C:\Program Files\McAfee.com\VSO\mcvsshld.exe
    O4 - HKLM\..\Run: [VSOCheckTask] "C:\PROGRA~1\McAfee.com\VSO\mcmnhdlr.exe" /checktask
    O4 - HKLM\..\Run: [2P6WFAX43ZHE7C] C:\WINDOWS\System32\Uhbg.exe
    O4 - HKLM\..\Run: [AutoUpdater] C:\PROGRA~1\AUTOUP~1\AUTOUP~1.EXE
    O4 - HKLM\..\Run: [3356OOJ.exe] C:\documents and settings\owner\local settings\temp\3356OOJ.exe
    O4 - HKLM\..\Run: [satmat] C:\WINDOWS\satmat.exe
    O4 - HKLM\..\Run: [sais] c:\program files\180solutions\sais.exe
    O4 - HKLM\..\Run: [EbatesMoeMoneyMaker0] "C:\Program Files\Ebates_MoeMoneyMaker\EbatesMoeMoneyMaker0.exe"
    O4 - HKLM\..\Run: [iRiver Updater] C:\Program Files\iRiver\iRiver Manager\Updater\Updater.exe
    O4 - HKLM\..\Run: [98D0CE0C16B1] rundll32.exe D0CE0C16B1,D0CE0C16B1
    O4 - HKLM\..\Run: [Á³# K"h'þ9Ӝ÷3rÅWC:\Program Files\ISTsvc\istsvc.exe] C:\WINDOWS\hbhyv.exe
    O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
    O4 - HKLM\..\Run: [OASClnt] C:\Program Files\McAfee.com\VSO\oasclnt.exe
    O4 - HKLM\..\Run: [HostManager] C:\Program Files\Common Files\AOL\1123980107\ee\AOLHostManager.exe
    O4 - HKLM\..\Run: [OpwareSE2] "C:\Program Files\ScanSoft\OmniPageSE2.0\OpwareSE2.exe"
    O4 - HKLM\..\Run: [MimBoot] C:\PROGRA~1\MUSICM~1\MUSICM~1\mimboot.exe
    O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
    O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background
    O4 - Startup: OpenOffice.org 2.0.lnk = C:\Program Files\OpenOffice.org 2.0\program\quickstart.exe
    O4 - Global Startup: hp center UI.lnk = C:\Program Files\hp center\137903\Shadow\ShadowBar.exe
    O4 - Global Startup: hp center.lnk = C:\Program Files\hp center\137903\Program\BackWeb-137903.exe
    O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE
    O4 - Global Startup: Picture Package Menu.lnk = ?
    O4 - Global Startup: Picture Package VCD Maker.lnk = ?
    O4 - Global Startup: QuickBooks Update Agent.lnk = C:\Program Files\Common Files\Intuit\QuickBooks\QBUpdate\qbupdate.exe
    O4 - Global Startup: WinZip Quick Pick.lnk = C:\Program Files\WinZip\WZQKPICK.EXE
    O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
    O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
    O9 - Extra button: MktBrowser - {17A27031-71FC-11d4-815C-005004D0F1FA} - C:\Program Files\MarketBrowser\lmt\MarketBrowser_Launch.xpy
    O9 - Extra 'Tools' menuitem: MarketBrowser - {17A27031-71FC-11d4-815C-005004D0F1FA} - C:\Program Files\MarketBrowser\lmt\MarketBrowser_Launch.xpy
    O9 - Extra button: (no name) - {A80F2DB2-80A9-4834-8F5A-4AB70F4EF4C3} - C:\WINDOWS\System32\shdocvw.dll
    O9 - Extra 'Tools' menuitem: IMI - {A80F2DB2-80A9-4834-8F5A-4AB70F4EF4C3} - C:\WINDOWS\System32\shdocvw.dll
    O9 - Extra button: AIM - {AC9E2541-2814-11d5-BC6D-00B0D0A1DE45} - C:\Program Files\AIM\aim.exe (file missing)
    O9 - Extra button: MoneySide - {E023F504-0C5A-4750-A1E7-A9046DEA8A21} - c:\Program Files\Microsoft Money\System\mnyviewer.dll
    O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
    O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
    O12 - Plugin for .spop: C:\Program Files\Internet Explorer\Plugins\NPDocBox.dll
    O15 - Trusted Zone: *.05p.com (HKLM)
    O15 - Trusted Zone: *.frame.crazywinnings.com (HKLM)
    O15 - Trusted Zone: *.scoobidoo.com (HKLM)
    O15 - Trusted Zone: *.static.topconverting.com (HKLM)
    O15 - Trusted IP range: 206.161.125.149 (HKLM)
    O16 - DPF: v2cab - http://searchmiracle.com/cab/v2cab.cab
    O16 - DPF: v3cab - http://searchmiracle.com/cab/2.cab
    O16 - DPF: {0878B424-1F95-4E26-B5AB-F0D349D89650} - http://download.bargain-buddy.net/download/bargain_buddy/cab/installer_MARKETING48.cab
    O16 - DPF: {0C568603-D79D-11D2-87A7-00C04FF158BB} (BrowseFolderPopup Class) - http://download.mcafee.com/molbin/Shared/MGBrwFld.cab
    O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204
    O16 - DPF: {1D4DB7D2-6EC9-47A3-BD87-1E41684E07BB} - http://ak.imgfarm.com/images/nocache/funwebproducts/ei/SmileyCentralInitialSetup1.0.0.8.cab
    O16 - DPF: {205FF73B-CA67-11D5-99DD-444553540000} - http://www.wildtangent.com/webdrivers/webinstall/Install.cab
    O16 - DPF: {205FF73B-CA67-11D5-99DD-444553540006} (CInstall Class) - http://www.errorguard.com/installation/Install.cab
    O16 - DPF: {3FEBD78C-E3E6-2BB1-020A-0AD76C2E0CB8} - http://213.159.117.150/1/rdgUS187.exe
    O16 - DPF: {4ED9DDF0-7479-4BBE-9335-5A1EDB1D8A21} (McAfee.com Operating System Class) - http://bin.mcafee.com/molbin/shared/mcinsctl/en-us/4,0,0,72/mcinsctl.cab
    O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://v5.windowsupdate.microsoft.c...ls/en/x86/client/wuweb_site.cab?1100131926326
    O16 - DPF: {666DDE35-E955-11D0-A707-000000521958} - http://69.56.176.227/webplugin.cab
    O16 - DPF: {7E980B9B-8AE5-466A-B6D6-DA8CF814E78A} (MJLauncherCtrl Class) - http://www.shockwave.com/content/luxor/mjolauncher.cab
    O16 - DPF: {8E28B3A9-FE83-45D1-B657-D5426B81A121} (CustomerCtrl Class) - http://cs7b.instantservice.com/jars/customerxsigned35.cab
    O16 - DPF: {9FC87BC7-7963-4B70-8485-B1A41034C9A1} (CSonyPicturesGameDownloaderCtl Object) - http://www.shockwave.com/content/angelx/SonyPicturesGameDownloader.cab
    O16 - DPF: {AB29A544-D6B4-4E36-A1F8-D3E34FC7B00A} - http://install.wildtangent.com/bgn/partners/hpdesktop/stx/install.cab
    O16 - DPF: {BCC0FF27-31D9-4614-A68E-C18E1ADA4389} (DwnldGroupMgr Class) - http://bin.mcafee.com/molbin/shared/mcgdmgr/en-us/1,0,0,16/mcgdmgr.cab
    O16 - DPF: {D54160C3-DB7B-4534-9B65-190EE4A9C7F7} (SproutLauncherCtrl Class) - http://zone.msn.com/bingame/feed/default/SproutLauncher.cab
    O16 - DPF: {D6FCA8ED-4715-43DE-9BD2-2789778A5B09} - http://guard.gunbound.net/nProtect/keyCrypt/npkcx.cab
    O16 - DPF: {E549AC3F-9A90-4EBF-AF69-8B8CC0954DB2} (ToonsXYahooJapan Control) - http://comics.yahoo.co.jp/component/ToonsXYahooJapan.cab
    O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)
    O20 - Winlogon Notify: Drivers - C:\WINDOWS\system32\artxprxy.dll (file missing)
    O23 - Service: C-DillaCdaC11BA - Macrovision - C:\WINDOWS\System32\drivers\CDAC11BA.EXE
    O23 - Service: Macromedia Licensing Service - Macromedia - C:\Program Files\Common Files\Macromedia Shared\Service\Macromedia Licensing.exe
    O23 - Service: McAfee WSC Integration (McDetect.exe) - McAfee, Inc - c:\program files\mcafee.com\agent\mcdetect.exe
    O23 - Service: McAfee.com McShield (McShield) - McAfee Inc. - c:\PROGRA~1\mcafee.com\vso\mcshield.exe
    O23 - Service: McAfee Task Scheduler (McTskshd.exe) - McAfee, Inc - c:\PROGRA~1\mcafee.com\agent\mctskshd.exe
    O23 - Service: McAfee SecurityCenter Update Manager (mcupdmgr.exe) - McAfee, Inc - C:\PROGRA~1\McAfee.com\Agent\mcupdmgr.exe
    O23 - Service: npkcsvc - INCA Internet Co., Ltd. - C:\WINDOWS\System32\npkcsvc.exe
    O23 - Service: Network Security Service (O?’ŽrtñåȲ$Ó) - Unknown owner - C:\WINDOWS\system32\javadl.exe (file missing)
    O23 - Service: ZESOFT - Unknown owner - C:\WINDOWS\zeta.exe (file missing)
     
  4. greendrag200

    greendrag200 Thread Starter

    Joined:
    Jan 27, 2006
    Messages:
    16
  5. greendrag200

    greendrag200 Thread Starter

    Joined:
    Jan 27, 2006
    Messages:
    16
    Hello? Anyone here?
     
  6. greendrag200

    greendrag200 Thread Starter

    Joined:
    Jan 27, 2006
    Messages:
    16
  7. MFDnNC

    MFDnNC

    Joined:
    Sep 7, 2004
    Messages:
    49,014
    Patience - it took you 10 hours to respond no need to bump it like you did - this is not real time tech support

    ============
    You have some issues in there

    Go to the link below and download the trial version of SpySweeper:

    SpySweeper http://www.webroot.com/consumer/products/spysweeper/index.html?acode=af1&rc=4129&ac=tsg

    * Click the Free Trial link under "SpySweeper" to download the program.
    * Install it. Once the program is installed, it will open.
    * It will prompt you to update to the latest definitions, click Yes.
    * Once the definitions are installed, click Options on the left side.
    * Click the Sweep Options tab.
    * Under What to Sweep please put a check next to the following:
    o Sweep Memory
    o Sweep Registry
    o Sweep Cookies
    o Sweep All User Accounts
    o Enable Direct Disk Sweeping
    o Sweep Contents of Compressed Files
    o Sweep for Rootkits

    o Please UNCHECK Do not Sweep System Restore Folder.

    * Click Sweep Now on the left side.
    * Click the Start button.
    * When it's done scanning, click the Next button.
    * Make sure everything has a check next to it, then click the Next button.
    * It will remove all of the items found.
    * Click Session Log in the upper right corner, copy everything in that window.
    * Click the Summary tab and click Finish.
    * Paste the contents of the session log you copied into your next reply.
    Also post a new Hijack This log.
     
  8. greendrag200

    greendrag200 Thread Starter

    Joined:
    Jan 27, 2006
    Messages:
    16
    oh..sorry, won't do it again :eek:
     
  9. greendrag200

    greendrag200 Thread Starter

    Joined:
    Jan 27, 2006
    Messages:
    16
  10. greendrag200

    greendrag200 Thread Starter

    Joined:
    Jan 27, 2006
    Messages:
    16
    ********
    9:53 AM: | Start of Session, Sunday, January 29, 2006 |
    9:53 AM: Spy Sweeper started
    9:53 AM: Sweep initiated using definitions version 606
    9:53 AM: Starting Memory Sweep
    9:59 AM: Memory Sweep Complete, Elapsed Time: 00:06:24
    9:59 AM: Starting Registry Sweep
    9:59 AM: Found Trojan Horse: 2nd-thought
    9:59 AM: HKCR\interface\{6e0ed53c-9908-49ed-b055-7cb31b162577}\ (7 subtraces) (ID = 101978)
    9:59 AM: HKCR\interface\{8c53bd8e-b12d-4c8f-ad0e-c9ddc39d1273}\ (8 subtraces) (ID = 101979)
    9:59 AM: HKCR\interface\{9bcdd51b-4a7b-446c-8452-d32d38004582}\ (7 subtraces) (ID = 101980)
    9:59 AM: HKCR\interface\{49db48ff-02b5-4645-b676-94a4df1aa026}\ (7 subtraces) (ID = 101981)
    9:59 AM: HKCR\interface\{830d3aed-2fa9-454f-b266-d931862bbf34}\ (7 subtraces) (ID = 101982)
    9:59 AM: HKCR\interface\{a986f4db-792e-4571-8974-0bb6e024766f}\ (7 subtraces) (ID = 101983)
    9:59 AM: HKCR\interface\{bccab53d-0895-40c3-a942-a03538ce227a}\ (7 subtraces) (ID = 101984)
    9:59 AM: HKCR\interface\{c0f88e9e-dceb-4655-968a-ae508a677c39}\ (7 subtraces) (ID = 101985)
    9:59 AM: HKCR\interface\{d7eac2d8-2d52-4010-a4ad-dfdf60c1706c}\ (7 subtraces) (ID = 101986)
    10:00 AM: HKLM\software\classes\interface\{6e0ed53c-9908-49ed-b055-7cb31b162577}\ (7 subtraces) (ID = 101993)
    10:00 AM: HKLM\software\classes\interface\{8c53bd8e-b12d-4c8f-ad0e-c9ddc39d1273}\ (8 subtraces) (ID = 101994)
    10:00 AM: HKLM\software\classes\interface\{9bcdd51b-4a7b-446c-8452-d32d38004582}\ (7 subtraces) (ID = 101995)
    10:00 AM: HKLM\software\classes\interface\{49db48ff-02b5-4645-b676-94a4df1aa026}\ (7 subtraces) (ID = 101996)
    10:00 AM: HKLM\software\classes\interface\{830d3aed-2fa9-454f-b266-d931862bbf34}\ (7 subtraces) (ID = 101997)
    10:00 AM: HKLM\software\classes\interface\{a986f4db-792e-4571-8974-0bb6e024766f}\ (7 subtraces) (ID = 101998)
    10:00 AM: HKLM\software\classes\interface\{bccab53d-0895-40c3-a942-a03538ce227a}\ (7 subtraces) (ID = 101999)
    10:00 AM: HKLM\software\classes\interface\{c0f88e9e-dceb-4655-968a-ae508a677c39}\ (7 subtraces) (ID = 102000)
    10:00 AM: HKLM\software\classes\interface\{d7eac2d8-2d52-4010-a4ad-dfdf60c1706c}\ (7 subtraces) (ID = 102001)
    10:00 AM: Found Adware: addestroyer
    10:00 AM: HKCR\clsid\{417386c3-8d4a-4611-9b91-e57e89d603ac}\ (13 subtraces) (ID = 102728)
    10:00 AM: HKCR\clsid\{d52433a9-a44c-43ab-a013-24b3c756dd2b}\ (13 subtraces) (ID = 102729)
    10:00 AM: HKCR\interface\{10d7db96-56dc-4617-8eab-ec506abe6c7e}\ (8 subtraces) (ID = 102730)
    10:00 AM: HKCR\interface\{6cdc3337-01f7-4a79-a4af-0b19303cc0be}\ (8 subtraces) (ID = 102732)
    10:00 AM: HKCR\interface\{795398d0-dc2f-4118-a69c-592273ba9c2b}\ (8 subtraces) (ID = 102733)
    10:00 AM: HKCR\interface\{b288f21c-a144-4ca2-9b70-8afa1fae4b06}\ (8 subtraces) (ID = 102734)
    10:00 AM: HKCR\popoops2.popoops\ (3 subtraces) (ID = 102735)
    10:00 AM: HKCR\swlad1.swlad\ (3 subtraces) (ID = 102736)
    10:00 AM: HKLM\software\classes\clsid\{417386c3-8d4a-4611-9b91-e57e89d603ac}\ (13 subtraces) (ID = 102737)
    10:00 AM: HKLM\software\classes\clsid\{d52433a9-a44c-43ab-a013-24b3c756dd2b}\ (13 subtraces) (ID = 102738)
    10:00 AM: HKLM\software\classes\interface\{10d7db96-56dc-4617-8eab-ec506abe6c7e}\ (8 subtraces) (ID = 102739)
    10:00 AM: HKLM\software\classes\interface\{6cdc3337-01f7-4a79-a4af-0b19303cc0be}\ (8 subtraces) (ID = 102741)
    10:00 AM: HKLM\software\classes\interface\{795398d0-dc2f-4118-a69c-592273ba9c2b}\ (8 subtraces) (ID = 102742)
    10:00 AM: HKLM\software\classes\interface\{b288f21c-a144-4ca2-9b70-8afa1fae4b06}\ (8 subtraces) (ID = 102743)
    10:00 AM: HKLM\software\classes\popoops2.popoops\ (3 subtraces) (ID = 102744)
    10:00 AM: HKLM\software\classes\swlad1.swlad\ (3 subtraces) (ID = 102745)
    10:00 AM: HKLM\software\classes\typelib\{d0c29a75-7146-4737-98ee-bc4d7cf44af9}\ (9 subtraces) (ID = 102746)
    10:00 AM: HKLM\software\classes\typelib\{e0d3b292-a0b0-4640-975c-2f882e039f52}\ (9 subtraces) (ID = 102747)
    10:00 AM: HKCR\typelib\{d0c29a75-7146-4737-98ee-bc4d7cf44af9}\ (9 subtraces) (ID = 102750)
    10:00 AM: HKCR\typelib\{e0d3b292-a0b0-4640-975c-2f882e039f52}\ (9 subtraces) (ID = 102751)
    10:00 AM: Found Adware: apropos
    10:00 AM: HKLM\software\microsoft\windows\currentversion\run\ || autoupdater (ID = 103803)
    10:00 AM: Found Adware: blazefind
    10:00 AM: HKLM\software\microsoft\windows\currentversion\uninstall\windows sr 2.0\ (4 subtraces) (ID = 104552)
    10:00 AM: HKLM\software\windupdates\ (5 subtraces) (ID = 104559)
    10:00 AM: Found Adware: browseraid
    10:00 AM: HKCR\clsid\{e004800a-73c6-4587-b855-98d0ce0c16b1}\ (8 subtraces) (ID = 105061)
    10:00 AM: HKLM\software\classes\clsid\{e004800a-73c6-4587-b855-98d0ce0c16b1}\ (8 subtraces) (ID = 105100)
    10:00 AM: HKLM\software\microsoft\internet explorer\toolbar\ || {12ee7a5e-0674-42f9-a76b-000000004d00} (ID = 105122)
    10:00 AM: HKLM\software\microsoft\windows\currentversion\run\ || 98d0ce0c16b1 (ID = 105156)
    10:00 AM: Found Adware: exact cashback/bargain buddy
    10:00 AM: HKLM\software\microsoft\code store database\distribution units\{0878b424-1f95-4e26-b5ab-f0d349d89650}\ (13 subtraces) (ID = 105377)
    10:00 AM: Found Adware: clipgenie
    10:00 AM: HKLM\software\microsoft\windows\currentversion\app management\arpcache\clipgenie\ (2 subtraces) (ID = 105921)
    10:00 AM: Found Adware: cnsmin
    10:00 AM: HKCR\clsid\{205ff73b-ca67-11d5-99dd-444553540006}\ (14 subtraces) (ID = 106160)
    10:00 AM: HKCR\interface\{205ff73a-ca67-11d5-99dd-444553540006}\ (8 subtraces) (ID = 106176)
    10:00 AM: HKLM\software\classes\clsid\{205ff73b-ca67-11d5-99dd-444553540006}\ (14 subtraces) (ID = 106191)
    10:00 AM: HKLM\software\classes\interface\{205ff73a-ca67-11d5-99dd-444553540006}\ (8 subtraces) (ID = 106197)
    10:00 AM: HKLM\software\classes\typelib\{205ff72e-ca67-11d5-99dd-444553540006}\ (9 subtraces) (ID = 106202)
    10:00 AM: HKCR\typelib\{205ff72e-ca67-11d5-99dd-444553540006}\ (9 subtraces) (ID = 106257)
    10:00 AM: Found Adware: coolsearch hijacker
    10:00 AM: HKCR\customie.bho\ (5 subtraces) (ID = 107015)
    10:00 AM: HKCR\customie.bho.1\ (3 subtraces) (ID = 107016)
    10:00 AM: HKCR\typelib\{aad9a825-7c82-4121-ab7c-c33be0853588}\ (9 subtraces) (ID = 107019)
    10:00 AM: HKLM\software\classes\customie.bho\ (5 subtraces) (ID = 107020)
    10:00 AM: HKLM\software\classes\customie.bho.1\ (3 subtraces) (ID = 107021)
    10:00 AM: HKLM\software\classes\typelib\{aad9a825-7c82-4121-ab7c-c33be0853588}\ (9 subtraces) (ID = 107024)
    10:00 AM: Found Adware: coolwebsearch (cws)
    10:00 AM: HKCR\clsid\{0cde1393-0654-19dd-97b4-cfd118be169a}\ (2 subtraces) (ID = 107049)
    10:00 AM: HKCR\clsid\{37fec172-7d9f-a669-ccd9-e33bbfc88edd}\ (2 subtraces) (ID = 107447)
    10:00 AM: HKLM\software\classes\clsid\{0cde1393-0654-19dd-97b4-cfd118be169a}\ (2 subtraces) (ID = 108439)
    10:00 AM: HKLM\software\classes\clsid\{37fec172-7d9f-a669-ccd9-e33bbfc88edd}\ (2 subtraces) (ID = 108834)
    10:00 AM: Found Adware: cws_ns3
    10:00 AM: HKCR\clsid\{02d6ed78-680a-f6c9-b9ce-a9a1ba770720}\ (2 subtraces) (ID = 117641)
    10:00 AM: HKCR\clsid\{3a1550dd-fd7b-8d6e-989a-49a66df1433f}\ (4 subtraces) (ID = 117784)
    10:00 AM: HKCR\clsid\{6a3c5aeb-2856-9dc8-a5d7-c63edec0af15}\ (2 subtraces) (ID = 117918)
    10:00 AM: HKCR\clsid\{29cda41a-a8eb-6a68-bbf5-2877418d55c7}\ (2 subtraces) (ID = 118119)
    10:00 AM: HKCR\clsid\{316d6034-8672-118c-728f-d9d78efea265}\ (6 subtraces) (ID = 118359)
    10:00 AM: HKCR\clsid\{676575dd-4d46-911d-8037-9b10d6ee8bb5}\ (2 subtraces) (ID = 118649)
    10:00 AM: HKCR\clsid\{b591ede1-abd7-f9ab-ff0b-970ce7faf00b}\ (2 subtraces) (ID = 118877)
    10:00 AM: HKCR\clsid\{baa4a995-e881-38f6-1e95-af9f2785fbb3}\ (2 subtraces) (ID = 118904)
    10:00 AM: HKLM\software\classes\clsid\{02d6ed78-680a-f6c9-b9ce-a9a1ba770720}\ (2 subtraces) (ID = 119520)
    10:00 AM: HKLM\software\classes\clsid\{3a1550dd-fd7b-8d6e-989a-49a66df1433f}\ (4 subtraces) (ID = 119658)
    10:00 AM: HKLM\software\classes\clsid\{6a3c5aeb-2856-9dc8-a5d7-c63edec0af15}\ (2 subtraces) (ID = 119792)
    10:00 AM: HKLM\software\classes\clsid\{29cda41a-a8eb-6a68-bbf5-2877418d55c7}\ (2 subtraces) (ID = 119988)
    10:00 AM: HKLM\software\classes\clsid\{316d6034-8672-118c-728f-d9d78efea265}\ (6 subtraces) (ID = 120211)
    10:00 AM: HKLM\software\classes\clsid\{676575dd-4d46-911d-8037-9b10d6ee8bb5}\ (2 subtraces) (ID = 120496)
    10:00 AM: HKLM\software\classes\clsid\{b591ede1-abd7-f9ab-ff0b-970ce7faf00b}\ (2 subtraces) (ID = 120715)
    10:00 AM: HKLM\software\classes\clsid\{baa4a995-e881-38f6-1e95-af9f2785fbb3}\ (2 subtraces) (ID = 120741)
    10:00 AM: Found Adware: cws_tiny0
    10:00 AM: HKCR\clsid\{25742c0f-dc0d-f5dc-55de-c66285aa22ab}\ (4 subtraces) (ID = 123938)
    10:00 AM: HKLM\software\classes\clsid\{25742c0f-dc0d-f5dc-55de-c66285aa22ab}\ (4 subtraces) (ID = 124166)
    10:00 AM: Found Adware: ebates money maker
    10:00 AM: HKLM\software\microsoft\windows\currentversion\run\ || ebatesmoemoneymaker0 (ID = 125592)
    10:00 AM: HKLM\software\microsoft\windows\currentversion\uninstall\tmu\ (1 subtraces) (ID = 125600)
    10:00 AM: Found Adware: elitebar
    10:00 AM: HKLM\software\microsoft\code store database\distribution units\v3cab\ (12 subtraces) (ID = 125742)
    10:00 AM: HKLM\software\microsoft\windows\currentversion\shareddlls\ || c:\windows\downloaded program files\v2.dll (ID = 125763)
    10:00 AM: HKLM\software\microsoft\windows\currentversion\shareddlls\ || c:\windows\downloaded program files\v3.dll (ID = 125764)
    10:00 AM: Found Adware: igetnet
    10:00 AM: HKCR\interface\{f6fbfe07-ca76-438e-b34e-4f4dc41f0123}\ (8 subtraces) (ID = 125851)
    10:00 AM: Found Adware: euniverse
    10:00 AM: HKCR\interface\{f6fbfe07-ca76-438e-b34e-4f4dc41f0123}\ (8 subtraces) (ID = 125851)
    10:00 AM: Found Adware: ignkeys
    10:00 AM: HKCR\interface\{f6fbfe07-ca76-438e-b34e-4f4dc41f0123}\ (8 subtraces) (ID = 125851)
    10:00 AM: Found Adware: gain - common components
    10:00 AM: HKLM\software\microsoft\windows\currentversion\shareddlls\ || c:\windows\downloaded program files\hdplugin1019.dll (ID = 126786)
    10:00 AM: Found Adware: hot as hell
    10:00 AM: HKCR\interface\{9388907f-82f5-434d-a941-bb802c6dd7c1}\ (8 subtraces) (ID = 127192)
    10:00 AM: Found Adware: ie driver
    10:00 AM: HKLM\software\microsoft\windows\currentversion\uninstall\{14d108c8-dd97-4b78-8b50-c981500abb8f}\ (2 subtraces) (ID = 128063)
    10:00 AM: Found Adware: ieplugin
    10:00 AM: HKCR\interface\{3e589169-86ad-44fe-b426-f0bf105d5582}\ (8 subtraces) (ID = 128148)
    10:00 AM: HKCR\interface\{e4458b4a-6149-4450-84f2-864adb7e8c52}\ (8 subtraces) (ID = 128153)
    10:00 AM: HKLM\software\classes\interface\{3e589169-86ad-44fe-b426-f0bf105d5582}\ (8 subtraces) (ID = 128167)
    10:00 AM: HKLM\software\classes\typelib\{074a9743-0517-454c-b2f4-ff964de43e4c}\ (9 subtraces) (ID = 128168)
    10:00 AM: HKLM\software\microsoft\internet explorer\extensions\{a80f2db2-80a9-4834-8f5a-4ab70f4ef4c3}\ (6 subtraces) (ID = 128177)
    10:00 AM: HKLM\software\microsoft\internet explorer\toolbar\ || {2cde1a7d-a478-4291-bf31-e1b4c16f92eb} (ID = 128178)
    10:00 AM: HKLM\software\microsoft\windows\currentversion\explorer\browser helper objects\{01f44a8a-8c97-4325-a378-76e68dc4ab2e}\ (ID = 128184)
    10:00 AM: HKLM\software\microsoft\windows\currentversion\uninstall\enhsrch\ (2 subtraces) (ID = 128198)
    10:00 AM: HKCR\typelib\{074a9743-0517-454c-b2f4-ff964de43e4c}\ (9 subtraces) (ID = 128200)
    10:00 AM: HKLM\software\classes\interface\{f6fbfe07-ca76-438e-b34e-4f4dc41f0123}\ (8 subtraces) (ID = 128274)
    10:00 AM: HKLM\software\classes\interface\{f6fbfe07-ca76-438e-b34e-4f4dc41f0123}\ (8 subtraces) (ID = 128274)
    10:00 AM: Found Adware: internetoptimizer
    10:00 AM: HKCR\interface\{aa4939c3-deca-4a48-a454-97cd587c0ef5}\ (8 subtraces) (ID = 128885)
    10:00 AM: HKLM\software\classes\interface\{aa4939c3-deca-4a48-a454-97cd587c0ef5}\ (8 subtraces) (ID = 128896)
    10:00 AM: HKLM\software\microsoft\windows\currentversion\uninstall\internet optimizer active alert\ (3 subtraces) (ID = 128922)
    10:00 AM: HKLM\software\microsoft\windows\currentversion\uninstall\kapabout\ (2 subtraces) (ID = 128924)
    10:00 AM: HKLM\software\policies\avenue media\ (ID = 128929)
    10:00 AM: Found Adware: ist istbar
    10:00 AM: HKLM\software\microsoft\windows\currentversion\moduleusage\c:/windows/downloaded program files/istactivex.dll\ (2 subtraces) (ID = 129124)
    10:00 AM: HKLM\software\microsoft\windows\currentversion\shareddlls\ || c:\windows\downloaded program files\istactivex.dll (ID = 129174)
    10:00 AM: Found Adware: moneytree
    10:00 AM: HKCR\interface\{eee4a2e5-9f56-432f-a6ed-f6f625b551e0}\ (8 subtraces) (ID = 135185)
    10:00 AM: Found Adware: exact navisearch
    10:00 AM: HKLM\software\microsoft\windows\currentversion\uninstall\navisearch\ (10 subtraces) (ID = 135584)
    10:00 AM: HKLM\system\currentcontrolset\services\zesoft\ (13 subtraces) (ID = 135586)
    10:00 AM: Found Adware: 180search assistant/zango
    10:00 AM: HKLM\software\microsoft\windows\currentversion\run\ || sais (ID = 135727)
    10:00 AM: HKLM\software\microsoft\windows\currentversion\uninstall\sais\ (3 subtraces) (ID = 135778)
    10:00 AM: HKLM\software\sais\ (13 subtraces) (ID = 135791)
    10:00 AM: Found Adware: purityscan
    10:00 AM: HKLM\software\microsoft\windows\currentversion\shareddlls\ || c:\windows\downloaded program files\mediaticketsinstaller.ocx (ID = 139077)
    10:00 AM: Found Adware: startpage
    10:00 AM: HKCR\interface\{9da65ff0-676f-48c7-9253-0020417f97ee}\ (8 subtraces) (ID = 142722)
    10:00 AM: HKLM\software\classes\interface\{9da65ff0-676f-48c7-9253-0020417f97ee}\ (8 subtraces) (ID = 142795)
    10:00 AM: Found Adware: targetsaver
    10:00 AM: HKLM\software\microsoft\windows\currentversion\uninstall\tsa\ (2 subtraces) (ID = 143607)
    10:00 AM: Found Adware: targetsoft
    10:00 AM: HKLM\software\microsoft\windows\currentversion\uninstall\tsl installer\ (1 subtraces) (ID = 143608)
    10:00 AM: HKLM\software\microsoft\windows\currentversion\uninstall\tsl installer\ (1 subtraces) (ID = 143608)
    10:00 AM: HKLM\software\tsa\ (15 subtraces) (ID = 143615)
    10:00 AM: Found Adware: teenxxx (tinybar)
    10:00 AM: HKLM\software\microsoft\windows\currentversion\uninstall\spybott\ (2 subtraces) (ID = 143645)
    10:00 AM: Found Adware: directrevenue-abetterinternet
    10:00 AM: HKCR\ceresdll.ceresdllobj.1\ (3 subtraces) (ID = 145774)
    10:00 AM: HKCR\ceresdll.ceresdllobj\ (5 subtraces) (ID = 145775)
    10:00 AM: HKCR\interface\{a42c0ef4-1c76-43cc-989f-eadc7e4b755d}\ (8 subtraces) (ID = 145806)
    10:00 AM: HKCR\interface\{bb0d5adc-028d-4185-9288-722ddce2c757}\ (8 subtraces) (ID = 145808)
    10:00 AM: HKLM\software\classes\ceresdll.ceresdllobj.1\ (3 subtraces) (ID = 145858)
    10:00 AM: HKLM\software\classes\ceresdll.ceresdllobj.1\clsid\ (1 subtraces) (ID = 145859)
    10:00 AM: HKLM\software\classes\ceresdll.ceresdllobj\ (5 subtraces) (ID = 145860)
    10:00 AM: HKLM\software\classes\interface\{a42c0ef4-1c76-43cc-989f-eadc7e4b755d}\ (8 subtraces) (ID = 145883)
    10:00 AM: HKLM\software\classes\interface\{bb0d5adc-028d-4185-9288-722ddce2c757}\ (8 subtraces) (ID = 145885)
    10:00 AM: HKLM\software\classes\typelib\{3fa866ac-40d7-4fe6-babf-78ee854a4325}\ (9 subtraces) (ID = 145899)
    10:00 AM: HKLM\software\microsoft\windows\currentversion\run\ || satmat (ID = 146059)
    10:00 AM: HKLM\software\microsoft\windows\currentversion\uninstall\abi-1\ (6 subtraces) (ID = 146117)
    10:00 AM: HKCR\typelib\{3fa866ac-40d7-4fe6-babf-78ee854a4325}\ (9 subtraces) (ID = 146144)
    10:00 AM: Found Adware: webrebates
    10:00 AM: HKLM\software\microsoft\windows\currentversion\uninstall\untopr1150\ (3 subtraces) (ID = 146302)
    10:00 AM: Found Adware: wildmedia
    10:00 AM: HKCR\interface\{e318d698-27b3-44d5-8998-c35eafb9c034}\ (8 subtraces) (ID = 146696)
    10:00 AM: HKLM\software\classes\interface\{e318d698-27b3-44d5-8998-c35eafb9c034}\ (8 subtraces) (ID = 146710)
    10:00 AM: HKLM\software\classes\typelib\{ecb25a48-e6e0-49af-99af-07c763e31389}\ (9 subtraces) (ID = 146713)
    10:00 AM: HKLM\software\midaddle\ (1 subtraces) (ID = 146961)
    10:00 AM: HKLM\software\wildmedia\ (3 subtraces) (ID = 146962)
    10:00 AM: HKCR\typelib\{ecb25a48-e6e0-49af-99af-07c763e31389}\ (9 subtraces) (ID = 146964)
    10:00 AM: Found Adware: ist yoursitebar
    10:00 AM: HKCR\interface\{bf06da8e-2beb-4816-9bbd-f7625246e245}\ (8 subtraces) (ID = 147834)
    10:00 AM: HKLM\software\classes\interface\{bf06da8e-2beb-4816-9bbd-f7625246e245}\ (8 subtraces) (ID = 147840)
    10:00 AM: HKLM\software\classes\typelib\{db447818-96b4-40df-8a55-720da496f514}\ (9 subtraces) (ID = 147844)
    10:00 AM: HKLM\software\classes\ysbactivex.installer.1\ (3 subtraces) (ID = 147848)
    10:00 AM: HKLM\software\microsoft\windows\currentversion\shareddlls\ || c:\windows\downloaded program files\ysbactivex.dll (ID = 147857)
    10:00 AM: HKCR\typelib\{db447818-96b4-40df-8a55-720da496f514}\ (9 subtraces) (ID = 147863)
    10:00 AM: HKCR\ysbactivex.installer.1\ (3 subtraces) (ID = 147867)
    10:00 AM: HKCR\ysbactivex.installer.1\clsid\ (1 subtraces) (ID = 147868)
    10:00 AM: HKCR\popoops2.popoops\ (3 subtraces) (ID = 466854)
    10:00 AM: HKCR\popoops2.popoops\ (3 subtraces) (ID = 466855)
    10:00 AM: HKCR\popoops2.popoops\clsid\ (1 subtraces) (ID = 466856)
    10:00 AM: HKLM\software\classes\popoops2.popoops\ (3 subtraces) (ID = 466858)
    10:00 AM: HKLM\software\classes\popoops2.popoops\ (3 subtraces) (ID = 466859)
    10:00 AM: HKLM\software\classes\popoops2.popoops\clsid\ (1 subtraces) (ID = 466860)
    10:00 AM: HKLM\software\microsoft\windows\currentversion\uninstall\navisearch\ (10 subtraces) (ID = 498471)
    10:00 AM: Found Adware: winantispyware 2005
    10:00 AM: HKCR\checkproduct2.checkproduct\ (5 subtraces) (ID = 527503)
    10:00 AM: HKCR\checkproduct2.checkproduct.1\ (3 subtraces) (ID = 527509)
    10:00 AM: HKCR\appid\checkproduct2.dll\ (1 subtraces) (ID = 527632)
    10:00 AM: HKCR\appid\{8c65aef6-e413-4314-815b-82717a3f1603}\ (1 subtraces) (ID = 527648)
    10:00 AM: HKCR\clsid\{c427b3e3-28dc-4001-9590-d99b6776119b}\ (15 subtraces) (ID = 527829)
    10:00 AM: HKCR\interface\{4f79d1c5-24f9-4e59-8022-604d4b41d5ca}\ (8 subtraces) (ID = 527937)
    10:00 AM: HKCR\typelib\{30ed49a5-ca6c-4918-b5f3-5e6818c91d8b}\ (9 subtraces) (ID = 528091)
    10:00 AM: HKLM\software\microsoft\windows\currentversion\shareddlls\ || c:\program files\common files\winsoftware\crxml.dll (ID = 528187)
    10:00 AM: HKLM\software\microsoft\windows\currentversion\shareddlls\ || c:\program files\common files\winsoftware\pcheck.dll (ID = 528188)
    10:00 AM: HKLM\software\classes\checkproduct2.checkproduct\ (5 subtraces) (ID = 528199)
    10:00 AM: HKLM\software\classes\checkproduct2.checkproduct.1\ (3 subtraces) (ID = 528205)
    10:00 AM: HKLM\software\classes\appid\checkproduct2.dll\ (1 subtraces) (ID = 528341)
    10:00 AM: HKLM\software\classes\appid\{8c65aef6-e413-4314-815b-82717a3f1603}\ (1 subtraces) (ID = 528357)
    10:00 AM: HKLM\software\classes\clsid\{c427b3e3-28dc-4001-9590-d99b6776119b}\ (15 subtraces) (ID = 528538)
    10:00 AM: HKLM\software\classes\typelib\{30ed49a5-ca6c-4918-b5f3-5e6818c91d8b}\ (9 subtraces) (ID = 528800)
    10:00 AM: HKLM\software\classes\appid\{8c65aef6-e413-4314-815b-82717a3f1603}\ (1 subtraces) (ID = 543259)
    10:00 AM: Found Adware: clientman
    10:00 AM: HKCR\appid\urlcli.dll\ (1 subtraces) (ID = 701476)
    10:00 AM: HKLM\software\classes\appid\urlcli.dll\ (1 subtraces) (ID = 701492)
    10:00 AM: HKU\WRSS_Profile_S-1-5-21-156640315-2731309904-3410288154-1003\software\a70f6a1d-0195-42a2-934c-d8ac0f7c08eb\ (1 subtraces)
     
  11. greendrag200

    greendrag200 Thread Starter

    Joined:
    Jan 27, 2006
    Messages:
    16
    (ID = 105078)
    10:00 AM: Found Adware: cws-aboutblank
    10:00 AM: HKU\WRSS_Profile_S-1-5-21-156640315-2731309904-3410288154-1003\software\microsoft\internet explorer\main\ || search bar_bak (ID = 115924)
    10:00 AM: HKU\WRSS_Profile_S-1-5-21-156640315-2731309904-3410288154-1003\software\microsoft\internet explorer\main\ || search page_bak (ID = 115925)
    10:00 AM: HKU\WRSS_Profile_S-1-5-21-156640315-2731309904-3410288154-1003\software\microsoft\internet explorer\extensions\cmdmapping\ || {6685509e-b47b-4f47-8e16-9a5f3a62f683} (ID = 125587)
    10:00 AM: HKU\WRSS_Profile_S-1-5-21-156640315-2731309904-3410288154-1003\software\microsoft\internet explorer\extensions\{6685509e-b47b-4f47-8e16-9a5f3a62f683}\ (6 subtraces) (ID = 125589)
    10:00 AM: HKU\WRSS_Profile_S-1-5-21-156640315-2731309904-3410288154-1003\software\microsoft\internet explorer\extensions\{6685509e-b47b-4f47-8e16-9a5f3a62f683}\ (6 subtraces) (ID = 125589)
    10:00 AM: HKU\WRSS_Profile_S-1-5-21-156640315-2731309904-3410288154-1003\software\lq\ (5 subtraces) (ID = 125741)
    10:00 AM: HKU\WRSS_Profile_S-1-5-21-156640315-2731309904-3410288154-1003\software\dsktb\ (6 subtraces) (ID = 128171)
    10:00 AM: Found Adware: upspiral toolbar
    10:00 AM: HKU\WRSS_Profile_S-1-5-21-156640315-2731309904-3410288154-1003\software\dsktb\ (6 subtraces) (ID = 128171)
    10:00 AM: Found Adware: redzip toolbar
    10:00 AM: HKU\WRSS_Profile_S-1-5-21-156640315-2731309904-3410288154-1003\software\dsktb\ (6 subtraces) (ID = 128171)
    10:00 AM: HKU\WRSS_Profile_S-1-5-21-156640315-2731309904-3410288154-1003\software\enhsrch\ (11 subtraces) (ID = 128172)
    10:00 AM: HKU\WRSS_Profile_S-1-5-21-156640315-2731309904-3410288154-1003\software\intexp\ (11 subtraces) (ID = 128173)
    10:00 AM: HKU\WRSS_Profile_S-1-5-21-156640315-2731309904-3410288154-1003\software\policies\avenue media\ (ID = 128928)
    10:00 AM: Found Adware: isearch toolbar
    10:00 AM: HKU\WRSS_Profile_S-1-5-21-156640315-2731309904-3410288154-1003\software\microsoft\internet explorer\extensions\cmdmapping\ || {1a00c40b-da85-4aa3-a67f-582d9347eecd} (ID = 129028)
    10:00 AM: Found Adware: lopdotcom
    10:00 AM: HKU\WRSS_Profile_S-1-5-21-156640315-2731309904-3410288154-1003\software\microsoft\windows\currentversion\run\ || notn (ID = 131448)
    10:00 AM: HKU\WRSS_Profile_S-1-5-21-156640315-2731309904-3410288154-1003\software\sais\ (16 subtraces) (ID = 135790)
    10:00 AM: Found Adware: ist powerscan
    10:00 AM: HKU\WRSS_Profile_S-1-5-21-156640315-2731309904-3410288154-1003\software\powerscan\ (ID = 136823)
    10:00 AM: Found Adware: searchtoolbar
    10:00 AM: HKU\WRSS_Profile_S-1-5-21-156640315-2731309904-3410288154-1003\software\{12ee7a5e-0674-42f9-a76b-000000004d00}\ (5 subtraces) (ID = 141347)
    10:00 AM: Found Adware: ist sidefind
    10:00 AM: HKU\WRSS_Profile_S-1-5-21-156640315-2731309904-3410288154-1003\software\microsoft\internet explorer\extensions\cmdmapping\ || {10e42047-deb9-4535-a118-b3f6ec39b807} (ID = 141778)
    10:00 AM: HKU\WRSS_Profile_S-1-5-21-156640315-2731309904-3410288154-1003\software\tsa\ (5 subtraces) (ID = 143614)
    10:00 AM: HKU\WRSS_Profile_S-1-5-21-156640315-2731309904-3410288154-1003\software\ceres\ (30 subtraces) (ID = 145851)
    10:00 AM: Found Adware: websearch toolbar
    10:00 AM: HKU\WRSS_Profile_S-1-5-21-156640315-2731309904-3410288154-1003\software\wintools\ (1 subtraces) (ID = 146514)
    10:00 AM: HKU\WRSS_Profile_S-1-5-21-156640315-2731309904-3410288154-1003\software\microsoft\internet explorer\main\ || updater2 (ID = 146720)
    10:00 AM: HKU\WRSS_Profile_S-1-5-21-156640315-2731309904-3410288154-1003\software\microsoft\internet explorer\main\ || updater (ID = 146721)
    10:00 AM: Found Adware: sidesearch
    10:00 AM: HKU\WRSS_Profile_S-1-5-21-156640315-2731309904-3410288154-1003\software\microsoft\internet explorer\extensions\cmdmapping\ || {000007c6-17df-4438-92a4-de5537471ba3} (ID = 530423)
    10:00 AM: HKU\WRSS_Profile_S-1-5-21-156640315-2731309904-3410288154-1003\software\wintools\ (1 subtraces) (ID = 646241)
    10:00 AM: HKU\WRSS_Profile_S-1-5-21-156640315-2731309904-3410288154-1003\software\microsoft\internet explorer\main\ || search page_bak (ID = 774883)
    10:00 AM: Registry Sweep Complete, Elapsed Time:00:00:56
    10:00 AM: Starting Cookie Sweep
    10:00 AM: Found Spy Cookie: yieldmanager cookie
    10:00 AM: [email protected][2].txt (ID = 3751)
    10:00 AM: Found Spy Cookie: advertising cookie
    10:00 AM: [email protected][2].txt (ID = 2175)
    10:00 AM: Found Spy Cookie: ask cookie
    10:00 AM: [email protected][1].txt (ID = 2245)
    10:00 AM: Found Spy Cookie: atlas dmt cookie
    10:00 AM: [email protected][2].txt (ID = 2253)
    10:00 AM: Found Spy Cookie: casalemedia cookie
    10:00 AM: [email protected][1].txt (ID = 2354)
    10:00 AM: Found Spy Cookie: fastclick cookie
    10:00 AM: [email protected][2].txt (ID = 2651)
    10:00 AM: Found Spy Cookie: mediaplex cookie
    10:00 AM: [email protected][1].txt (ID = 6442)
    10:00 AM: Found Spy Cookie: 2o7.net cookie
    10:00 AM: [email protected][1].txt (ID = 1958)
    10:00 AM: Found Spy Cookie: questionmarket cookie
    10:00 AM: [email protected][1].txt (ID = 3217)
    10:00 AM: Found Spy Cookie: servedby advertising cookie
    10:00 AM: [email protected][1].txt (ID = 3335)
    10:00 AM: [email protected][1].txt (ID = 1957)
    10:00 AM: [email protected][1].txt (ID = 3751)
    10:00 AM: Found Spy Cookie: adknowledge cookie
    10:00 AM: [email protected][2].txt (ID = 2072)
    10:00 AM: Found Spy Cookie: pointroll cookie
    10:00 AM: [email protected][2].txt (ID = 3148)
    10:00 AM: [email protected][2].txt (ID = 2175)
    10:00 AM: [email protected][2].txt (ID = 2245)
    10:00 AM: [email protected][1].txt (ID = 2253)
    10:00 AM: Found Spy Cookie: belnk cookie
    10:00 AM: [email protected][1].txt (ID = 2292)
    10:00 AM: Found Spy Cookie: burstnet cookie
    10:00 AM: [email protected][2].txt (ID = 2336)
    10:00 AM: [email protected][1].txt (ID = 2354)
    10:00 AM: Found Spy Cookie: ccbill cookie
    10:00 AM: [email protected][1].txt (ID = 2369)
    10:00 AM: Found Spy Cookie: centrport net cookie
    10:00 AM: [email protected][1].txt (ID = 2374)
    10:00 AM: Found Spy Cookie: sextracker cookie
    10:00 AM: [email protected][1].txt (ID = 3362)
    10:00 AM: [email protected][1].txt (ID = 3362)
    10:00 AM: Found Spy Cookie: clickzs cookie
    10:00 AM: [email protected][1].txt (ID = 2413)
    10:00 AM: [email protected][2].txt (ID = 2413)
    10:00 AM: [email protected][1].txt (ID = 2413)
    10:00 AM: [email protected][1].txt (ID = 2413)
    10:00 AM: [email protected][2].txt (ID = 2293)
    10:00 AM: [email protected][1].txt (ID = 2651)
    10:00 AM: Found Spy Cookie: domainsponsor cookie
    10:00 AM: [email protected][1].txt (ID = 2535)
    10:00 AM: [email protected][1].txt (ID = 6442)
    10:00 AM: [email protected][1].txt (ID = 1958)
    10:00 AM: [email protected][1].txt (ID = 1958)
    10:00 AM: [email protected][1].txt (ID = 1958)
    10:00 AM: Found Spy Cookie: nextag cookie
    10:00 AM: [email protected][2].txt (ID = 5014)
    10:00 AM: [email protected][1].txt (ID = 3217)
    10:00 AM: Found Spy Cookie: realmedia cookie
    10:00 AM: [email protected][2].txt (ID = 3235)
    10:00 AM: Found Spy Cookie: revenue.net cookie
    10:00 AM: [email protected][1].txt (ID = 3257)
    10:00 AM: [email protected][2].txt (ID = 3335)
    10:00 AM: Found Spy Cookie: sexlist cookie
    10:00 AM: [email protected][1].txt (ID = 3353)
    10:00 AM: [email protected][2].txt (ID = 3361)
    10:00 AM: Found Spy Cookie: statcounter cookie
    10:00 AM: [email protected][2].txt (ID = 3447)
    10:00 AM: Found Spy Cookie: tacoda cookie
    10:00 AM: [email protected][1].txt (ID = 6444)
    10:00 AM: Found Spy Cookie: tribalfusion cookie
    10:00 AM: [email protected][2].txt (ID = 3589)
    10:00 AM: Found Spy Cookie: xxxcounter cookie
    10:00 AM: [email protected][1].txt (ID = 3733)
    10:00 AM: Found Spy Cookie: yadro cookie
    10:00 AM: [email protected][1].txt (ID = 3743)
    10:00 AM: Found Spy Cookie: adserver cookie
    10:00 AM: [email protected][1].txt (ID = 2142)
    10:00 AM: Found Spy Cookie: zedo cookie
    10:00 AM: [email protected][2].txt (ID = 3762)
    10:00 AM: [email protected][1].txt (ID = 1957)
    10:00 AM: [email protected][1].txt (ID = 2175)
    10:00 AM: [email protected][1].txt (ID = 2245)
    10:00 AM: [email protected][2].txt (ID = 2253)
    10:00 AM: Found Spy Cookie: atwola cookie
    10:00 AM: [email protected][1].txt (ID = 2255)
    10:00 AM: [email protected][2].txt (ID = 2336)
    10:00 AM: Found Spy Cookie: cliks cookie
    10:00 AM: [email protected][1].txt (ID = 2414)
    10:00 AM: [email protected][2].txt (ID = 2651)
    10:00 AM: Found Spy Cookie: offeroptimizer cookie
    10:00 AM: [email protected][2].txt (ID = 3087)
    10:00 AM: [email protected][3].txt (ID = 3087)
    10:00 AM: [email protected][1].txt (ID = 3235)
    10:00 AM: Found Spy Cookie: webtrendslive cookie
    10:00 AM: [email protected][2].txt (ID = 3667)
    10:00 AM: [email protected][1].txt (ID = 6444)
    10:00 AM: [email protected][1].txt (ID = 3589)
    10:00 AM: Found Spy Cookie: burstbeacon cookie
    10:01 AM: [email protected][2].txt (ID = 2335)
    10:01 AM: Cookie Sweep Complete, Elapsed Time: 00:00:04
    10:01 AM: Starting File Sweep
    10:01 AM: Found Adware: alset helpexpress
    10:01 AM: c:\program files\alset (4 subtraces) (ID = -2147481444)
    10:01 AM: c:\program files\sidefind (ID = -2147480325)
    10:01 AM: c:\program files\common files\tsa (11 subtraces) (ID = -2147480171)
    10:01 AM: c:\program files\power scan (ID = -2147480461)
    10:01 AM: c:\program files\common files\midaddle (1 subtraces) (ID = -2147480036)
    10:01 AM: c:\documents and settings\all users\start menu\programs\gain publishing (ID = -2147480950)
    10:01 AM: c:\program files\windupdates (1 subtraces) (ID = -2147481362)
    10:01 AM: c:\windows\fleok (ID = -2147480557)
    10:01 AM: Found Adware: wild media - statblaster
    10:01 AM: c:\program files\media\media (2 subtraces) (ID = -2147480222)
    10:01 AM: c:\program files\common files\winsoftware (1 subtraces) (ID = -2147476682)
    10:01 AM: c:\program files\winfixer 2005 (1 subtraces) (ID = -2147476702)
    10:01 AM: c:\program files\aproposclient (ID = -2147481421)
    10:01 AM: c:\program files\clipgenie (ID = -2147481243)
    10:01 AM: kcdje.log (ID = 56714)
    10:01 AM: zpbrf.dat (ID = 56714)
    10:01 AM: stnzf.dat (ID = 56714)
    10:01 AM: eldso.dat (ID = 56714)
    10:01 AM: iyqbz.log (ID = 56714)
    10:01 AM: kgcib.log (ID = 56714)
    10:01 AM: mpdud.dat (ID = 56714)
    10:01 AM: bgmyp.dat (ID = 56714)
    10:01 AM: houqh.dat (ID = 56714)
    10:01 AM: mqgop.dat (ID = 56447)
    10:01 AM: emnik.dat (ID = 56714)
    10:01 AM: lieey.dat:ehyaf (ID = 56714)
    10:01 AM: jxwyz.dat (ID = 56714)
    10:01 AM: dsyye.dat (ID = 56711)
    10:01 AM: zasno.dat (ID = 56447)
    10:01 AM: lieey.dat (ID = 56714)
    10:01 AM: xptsh.dat (ID = 56714)
    10:01 AM: ylqdk.dat (ID = 56711)
    10:01 AM: sdzbb.dat (ID = 56714)
    10:01 AM: vqhtv.txt (ID = 56714)
    10:01 AM: addig.dll:bbjnf (ID = 56714)
    10:01 AM: uninst.exe:nkdnz (ID = 56714)
    10:01 AM: qyvte.dat (ID = 56714)
    10:02 AM: a4w.ini:qagvi (ID = 56447)
    10:02 AM: zaaqi.dat (ID = 56447)
    10:02 AM: jtahb.dat (ID = 56714)
    10:02 AM: ggncc.dat (ID = 56714)
    10:02 AM: dxogb.log (ID = 56447)
    10:02 AM: bdzte.dat (ID = 56714)
    10:02 AM: kqpjn.dat (ID = 56447)
    10:02 AM: ocxuh.dat:ewuxt (ID = 56287)
    10:02 AM: qsgfg.dat (ID = 56711)
    10:02 AM: zwkyy.dat (ID = 56714)
    10:02 AM: dpldx.dat (ID = 56447)
    10:02 AM: yyhpm.dat (ID = 56714)
    10:02 AM: qinze.txt (ID = 56714)
    10:02 AM: ftwzk.dat (ID = 56711)
    10:02 AM: sbkvc.log (ID = 56711)
    10:02 AM: ijzxw.txt (ID = 56447)
    10:02 AM: rktac.log (ID = 56447)
    10:03 AM: feyot.dat (ID = 56714)
    10:03 AM: rsori.txt (ID = 56447)
    10:03 AM: fgkgi.log (ID = 56447)
    10:03 AM: rfkdz.dat (ID = 56447)
    10:03 AM: sbkvc.log:tccmg (ID = 56714)
    10:03 AM: dict.dat (ID = 54052)
    10:03 AM: lmphp.dat (ID = 56447)
    10:03 AM: mvcxg.log (ID = 56447)
    10:04 AM: ewvda.dat (ID = 56711)
    10:04 AM: chram.dat (ID = 56714)
    10:04 AM: rlwuh.dat (ID = 56714)
    10:04 AM: key2.txt:eek:ukzq (ID = 56447)
    10:04 AM: comsetup.log:cfzfd (ID = 56711)
    10:04 AM: hbyac.dat (ID = 56447)
    10:04 AM: vtvck.dat (ID = 56447)
    10:04 AM: greenstone.bmp:fkozo (ID = 56447)
    10:04 AM: umqfd.dat (ID = 56447)
    10:05 AM: bkrcz.log (ID = 56711)
    10:05 AM: xwoyf.dat (ID = 56711)
    10:05 AM: yhdtc.txt (ID = 56711)
    10:05 AM: dc1257.dll (ID = 83366)
    10:05 AM: mzfym.dat (ID = 56447)
    10:05 AM: kqddy.txt (ID = 56447)
    10:05 AM: fjbfs.dat (ID = 56714)
    10:05 AM: ocxuh.dat (ID = 56711)
    10:05 AM: jnwkt.txt (ID = 56714)
    10:06 AM: qyhvc.log (ID = 56447)
    10:06 AM: rwpxz.dat (ID = 56447)
    10:06 AM: jxicb.dat (ID = 56711)
    10:06 AM: wvouc.dat (ID = 56447)
    10:06 AM: vmmreg32.dll:zczjc (ID = 56447)
    10:06 AM: t30debuglogfile.txt:tnkhu (ID = 56447)
    10:06 AM: sti_trace.log:nfuia (ID = 56447)
    10:07 AM: nusuj.dat (ID = 56447)
    10:07 AM: itblq.dat (ID = 56447)
    10:07 AM: svcpack.log:gffov (ID = 56447)
    10:07 AM: kwmhd.dat (ID = 56711)
    10:07 AM: winfixer 2005.lnk (ID = 162516)
    10:07 AM: xfqmh.dat (ID = 56447)
    10:07 AM: ypdor.dat (ID = 56711)
    10:07 AM: hxcqe.dat (ID = 56711)
    10:07 AM: qmdjh.dat (ID = 56447)
    10:07 AM: uoyhf.log (ID = 56711)
    10:07 AM: reglocs.old:hntks (ID = 56447)
    10:07 AM: result.qtw:zoeqm (ID = 56447)
    10:07 AM: rlwuh.dat:sowvh (ID = 56447)
    10:07 AM: wmprfsky.prx:buyir (ID = 56447)
    10:07 AM: hbohf.dat (ID = 56447)
    10:07 AM: mfchi.dll:dfqjt (ID = 56447)
    10:07 AM: gxiyu.dat (ID = 56447)
    10:07 AM: zibvh.dat (ID = 56711)
    10:07 AM: wptlg.dat (ID = 56447)
    10:07 AM: tgps.key:lnvuo (ID = 56711)
    10:07 AM: wmprftrk.prx:mvrnl (ID = 56711)
    10:07 AM: uenjy.dat (ID = 56711)
    10:08 AM: jsyek.txt (ID = 56711)
    10:08 AM: ylrcd.dat (ID = 56711)
    10:08 AM: atlwb.dll:msvnt (ID = 56447)
    10:08 AM: edjyp.dat (ID = 56447)
    10:08 AM: Found Adware: keenvalue/perfectnav
    10:08 AM: dc163.exe (ID = 65009)
    10:08 AM: aeher.dat (ID = 56711)
    10:08 AM: djnvv.dat (ID = 56287)
    10:08 AM: hcohs.dat (ID = 56447)
    10:08 AM: yotvc.dat (ID = 56711)
    10:08 AM: iubjv.dat (ID = 56711)
    10:09 AM: wmprfplk.prx:qcoii (ID = 56447)
    10:09 AM: taskman.exe:saxhy (ID = 56714)
    10:09 AM: wmprfsky.prx:jdhol (ID = 56447)
    10:09 AM: ibsoq.dat (ID = 56714)
    10:09 AM: wmprftrk.prx:bertf (ID = 56447)
    10:09 AM: gklbk.dat (ID = 56447)
    10:09 AM: key2.txt (ID = 51468)
    10:10 AM: q315000.log:alkor (ID = 56447)
    10:10 AM: qbwcd.ini:tmdut (ID = 56711)
    10:10 AM: oncxa.dat (ID = 56447)
    10:10 AM: ipqy.dll:cjrta (ID = 56447)
    10:10 AM: bxpqi.dat (ID = 56714)
    10:10 AM: iyqbz.log:mkcgc (ID = 56711)
    10:10 AM: javalz32.dll:fkvlw (ID = 56714)
    10:10 AM: syssn32.dll:qeerj (ID = 56447)
    10:10 AM: xbdze.log (ID = 56447)
    10:10 AM: humce.dat (ID = 56711)
    10:10 AM: mprmz.log (ID = 56714)
    10:10 AM: taskman.exe:ifwxl (ID = 56447)
    10:10 AM: rlwuh.dat:iazts (ID = 56447)
    10:10 AM: dahotfix.log:vfskf (ID = 56714)
    10:10 AM: s3gamma.cfg:abshm (ID = 56711)
    10:10 AM: kutnp.dat (ID = 56711)
    10:11 AM: lbclx.dat (ID = 56711)
    10:12 AM: Found Adware: commonname
    10:12 AM: dfs.dat (ID = 53778)
    10:12 AM: createbookmark.htm (ID = 53770)
    10:12 AM: createnote.htm (ID = 53771)
     
  12. greendrag200

    greendrag200 Thread Starter

    Joined:
    Jan 27, 2006
    Messages:
    16
    10:12 AM: giedr.dat (ID = 56447)
    10:12 AM: ikssi.dat (ID = 56714)
    10:14 AM: pojht.txt (ID = 56447)
    10:14 AM: ntxw32.dll:lvckq (ID = 56447)
    10:14 AM: Found Adware: great net downloadware
    10:14 AM: 75.dl (ID = 59290)
    10:15 AM: dpqpz.dat (ID = 56714)
    10:15 AM: vbaddin.ini:pbgwa (ID = 56447)
    10:15 AM: setup.inf (ID = 50157)
    10:15 AM: regopt.log:dxwxa (ID = 56714)
    10:15 AM: twunk_16.exe:nxhpj (ID = 56714)
    10:16 AM: gbpax.dat:rtzfk (ID = 56447)
    10:16 AM: graph5.ini:kmjln (ID = 56447)
    10:16 AM: ljanv.dat (ID = 56447)
    10:16 AM: oguxt.dat (ID = 56447)
    10:16 AM: kuyml.dat (ID = 56447)
    10:16 AM: egrjg.dat (ID = 56711)
    10:16 AM: qetjw.log (ID = 56447)
    10:16 AM: dc1583.exe (ID = 88870)
    10:16 AM: ektsp.dat (ID = 56711)
    10:16 AM: wmprfesp.prx:xtlef (ID = 56447)
    10:17 AM: nsznr.log (ID = 56447)
    10:17 AM: Found Trojan Horse: vesbiz downloader
    10:17 AM: dc294.dat (ID = 82718)
    10:17 AM: wmprfnor.prx:jcefg (ID = 56447)
    10:17 AM: wmprfrus.prx:bdoti (ID = 56447)
    10:17 AM: wmprfsve.prx:udhyc (ID = 56447)
    10:17 AM: Found Adware: virtualbouncer
    10:17 AM: innervbinstall.log (ID = 82805)
    10:18 AM: dvlsj.log (ID = 56714)
    10:18 AM: hpinfo.lnk:nutfk (ID = 56714)
    10:18 AM: qfxvt.txt (ID = 56714)
    10:18 AM: croy32.dll:xdsle (ID = 56711)
    10:18 AM: gbpax.dat (ID = 56714)
    10:19 AM: glbuv.log (ID = 56447)
    10:19 AM: rmeer.log (ID = 56711)
    10:19 AM: class-barrel (ID = 78229)
    10:19 AM: vocabulary (ID = 78283)
    10:20 AM: icoa.ini:yhkih (ID = 56714)
    10:21 AM: qdow_as2.dll (ID = 85289)
    10:21 AM: drrhx.dat (ID = 56447)
    10:21 AM: weather.ini:sdrpw (ID = 56447)
    10:21 AM: ajmws.dat (ID = 56711)
    10:22 AM: pzaul.txt (ID = 56447)
    10:22 AM: wmprfjpn.prx:iuwxb (ID = 56447)
    10:22 AM: cmpck.dls (ID = 59527)
    10:23 AM: reg.prm:rkxsk (ID = 56447)
    10:23 AM: kplgb.dat (ID = 56447)
    10:23 AM: nljxy.dat (ID = 56711)
    10:23 AM: ybrzl.dat (ID = 56447)
    10:24 AM: afcvy.dat (ID = 56711)
    10:25 AM: wmprfplk.prx:bvhcv (ID = 56447)
    10:25 AM: regopt.log:jkqxe (ID = 56711)
    10:25 AM: vjuyy.dat (ID = 56714)
    10:26 AM: Found Adware: searchbarhtml
    10:26 AM: securityid=817093-ms03-011&privacyapi32=x292.html (ID = 74908)
    10:26 AM: svroy.dat (ID = 56447)
    10:26 AM: searchbar.html (ID = 74907)
    10:26 AM: uykkl.dat (ID = 56711)
    10:26 AM: search.html (ID = 74906)
    10:26 AM: oguxt.dat:wxfdn (ID = 56451)
    10:26 AM: ffbjz.dat (ID = 56447)
    10:27 AM: gyhej.dat (ID = 56711)
    10:27 AM: itfug.dat (ID = 56714)
    10:27 AM: keenvalueinstall_117.exe (ID = 64909)
    10:28 AM: wmprfhun.prx:rjepq (ID = 56447)
    10:28 AM: wmprfptb.prx:udiin (ID = 56714)
    10:28 AM: wmprfnld.prx:bkpvt (ID = 56711)
    10:28 AM: addremln.inf (ID = 83092)
    10:28 AM: syssn32.dll:aamcd (ID = 56447)
    10:29 AM: iyqbz.log:djtfi (ID = 56447)
    10:29 AM: addremln.cab (ID = 83091)
    10:29 AM: q315403.log:zbuby (ID = 56447)
    10:30 AM: javalz32.dll:vbmlc (ID = 56711)
    10:30 AM: qbwcd.ini:scnha (ID = 56711)
    10:31 AM: javauh32.dll:eek:cwqe (ID = 56711)
    10:31 AM: topo.ini:bfhcf (ID = 56714)
    10:31 AM: tsoc.log:donzq (ID = 56714)
    10:31 AM: tsoc.log:uwpjp (ID = 56711)
    10:32 AM: enhtb.exe (ID = 63347)
    10:32 AM: msbbi.exe (ID = 70568)
    10:32 AM: dc1147.exe (ID = 88141)
    10:32 AM: mmaker4b.exe (ID = 59685)
    10:32 AM: mmaker4b.exe (ID = 59685)
    10:32 AM: mmaker4b.exe (ID = 59685)
    10:32 AM: mmaker4b.exe (ID = 59685)
    10:32 AM: mmaker4b.exe (ID = 59685)
    10:32 AM: mmaker4b.exe (ID = 59685)
    10:32 AM: mmaker4b.exe (ID = 59685)
    10:32 AM: mmaker4b.exe (ID = 59685)
    10:32 AM: mmaker4b.exe (ID = 59685)
    10:32 AM: mmaker4b.exe (ID = 59685)
    10:33 AM: install.dll (ID = 53285)
    10:33 AM: mmaker4b.exe (ID = 59685)
    10:33 AM: mmaker4b.exe (ID = 59685)
    10:33 AM: mmaker4b.exe (ID = 59685)
    10:33 AM: mmaker4b.exe (ID = 59685)
    10:33 AM: mmaker4b.exe (ID = 59685)
    10:33 AM: mmaker4b.exe (ID = 59685)
    10:33 AM: mmaker4b.exe (ID = 59685)
    10:33 AM: mmaker4b.exe (ID = 59685)
    10:33 AM: mmaker4b.exe (ID = 59685)
    10:33 AM: mmaker4b.exe (ID = 59685)
    10:33 AM: mmaker4b.exe (ID = 59685)
    10:34 AM: abole.dat (ID = 56714)
    10:34 AM: move your stuff.ico:gzbup (ID = 56714)
    10:34 AM: softchoice.ico:vebvg (ID = 56447)
    10:34 AM: lifeclips tape to dvd.ico:zudek (ID = 56711)
    10:35 AM: vx2.nls (ID = 50917)
    10:35 AM: vx2x.nls (ID = 50922)
    10:35 AM: cduww.txt (ID = 56447)
    10:35 AM: cfpwg.dat (ID = 56447)
    10:35 AM: cjors.txt (ID = 56711)
    10:35 AM: dlghh.dat (ID = 56447)
    10:36 AM: vx0.nls (ID = 50890)
    10:36 AM: cpfbr.dat (ID = 56447)
    10:36 AM: cpfbr.dat:bwjmj (ID = 56447)
    10:36 AM: pcheck.dll (ID = 119204)
    10:36 AM: installer_marketing48x.exe (ID = 116175)
    10:36 AM: installer_marketing48x.exe (ID = 116175)
    10:36 AM: bb-macaw[1].scr:xtosn (ID = 56447)
    10:36 AM: qdow_as2.dll (ID = 85289)
    10:37 AM: pejgx.dat (ID = 56711)
    10:37 AM: pjemo.dat (ID = 56711)
    10:37 AM: cdac14ba.dll:enzqu (ID = 56447)
    10:37 AM: clipg.exe (ID = 53038)
    10:38 AM: stiim.dat (ID = 56447)
    10:39 AM: setup.exe (ID = 122245)
    10:39 AM: dc1612.exe (ID = 119184)
    10:40 AM: zmbyo.txt (ID = 56451)
    10:40 AM: sphrw.txt (ID = 56447)
    10:40 AM: kqzwq.dat (ID = 56711)
    10:41 AM: vaxvd.dat (ID = 56447)
    10:41 AM: dsyye.dat:zjyjr (ID = 56714)
    10:43 AM: iewo.dll:gghjd (ID = 56447)
    10:44 AM: mmaker4b.exe (ID = 59685)
    10:44 AM: jbzcw.dat (ID = 56447)
    10:45 AM: syssn32.dll:rutlr (ID = 56447)
    10:45 AM: mmaker4b.exe (ID = 59685)
    10:45 AM: graph5.ini:vnhql (ID = 56447)
    10:46 AM: kesyq.dat (ID = 56711)
    10:46 AM: mmaker4b.exe (ID = 59685)
    10:46 AM: mmaker4b.exe (ID = 59685)
    10:47 AM: uwyby.log (ID = 56447)
    10:47 AM: ffepz.txt (ID = 56711)
    10:48 AM: 3.dat (ID = 82718)
    10:48 AM: ir.exe (ID = 82718)
    10:48 AM: qtw.ini:swlfe (ID = 56711)
    10:48 AM: cpvqq.dat (ID = 56711)
    10:48 AM: wafnd.dat (ID = 56714)
    10:48 AM: ctldl.dat (ID = 56447)
    10:49 AM: ewway.dat (ID = 56711)
    10:49 AM: xhows.dat (ID = 56714)
    10:49 AM: sysmf.dll:hzuob (ID = 56447)
    10:49 AM: oxqoj.dat (ID = 56447)
    10:49 AM: dc204.url (ID = 74891)
    10:49 AM: dc203.url (ID = 74887)
    10:49 AM: dc207.url (ID = 74913)
    10:49 AM: dc205.url (ID = 74901)
    10:49 AM: dc202.url (ID = 74878)
    10:49 AM: dc206.url (ID = 74912)
    10:49 AM: news.url (ID = 74902)
    10:49 AM: free dvds.url (ID = 74892)
    10:49 AM: sex toys.url (ID = 74909)
    10:49 AM: lingerie.url (ID = 74900)
    10:49 AM: pornstars.url (ID = 74905)
    10:49 AM: amateur.url (ID = 74875)
    10:49 AM: anal.url (ID = 74876)
    10:49 AM: anime & toons.url (ID = 74877)
    10:49 AM: asian.url (ID = 74879)
    10:49 AM: big dicks.url (ID = 74880)
    10:49 AM: big tits.url (ID = 74881)
    10:49 AM: black.url (ID = 74882)
    10:49 AM: celebrities.url (ID = 74884)
    10:49 AM: classic.url (ID = 74885)
    10:49 AM: cumshots.url (ID = 74886)
    10:49 AM: fat women.url (ID = 74888)
    10:49 AM: fetish.url (ID = 74889)
    10:49 AM: for women.url (ID = 74890)
    10:49 AM: gay.url (ID = 74893)
    10:49 AM: hairy women.url (ID = 74894)
    10:49 AM: hardcore.url (ID = 74895)
    10:49 AM: international.url (ID = 74896)
    10:49 AM: interracial.url (ID = 74897)
    10:49 AM: latin.url (ID = 74898)
    10:49 AM: lesbian.url (ID = 74899)
    10:49 AM: older women.url (ID = 74903)
    10:49 AM: orgies.url (ID = 74904)
    10:51 AM: shemale.url (ID = 74910)
    10:51 AM: teens.url (ID = 74911)
    10:51 AM: polall1r.inf (ID = 83425)
    10:51 AM: dc1165.inf (ID = 61287)
    10:51 AM: dc27.url (ID = 74891)
    10:51 AM: dc26.url (ID = 74887)
    10:51 AM: dc30.url (ID = 74901)
    10:51 AM: free dvds.url (ID = 74892)
    10:51 AM: sex toys.url (ID = 74909)
    10:51 AM: sexy lingerie.url (ID = 74900)
    10:51 AM: amateur videos.url (ID = 74875)
    10:51 AM: anal videos.url (ID = 74876)
    10:51 AM: anime & toons.url (ID = 74877)
    10:51 AM: asian videos.url (ID = 74879)
    10:51 AM: big dicks on video.url (ID = 74880)
    10:51 AM: big tits on video.url (ID = 74881)
    10:51 AM: black videos.url (ID = 74882)
    10:51 AM: celebrities.url (ID = 74884)
    10:51 AM: classic porn.url (ID = 74885)
    10:51 AM: cumshots on video.url (ID = 74886)
    10:51 AM: fat women on video.url (ID = 74888)
    10:51 AM: fetish videos.url (ID = 74889)
    10:51 AM: gay videos.url (ID = 74893)
    10:51 AM: hairy girls on video.url (ID = 74894)
    10:51 AM: hardcore videos.url (ID = 74895)
    10:51 AM: ethnic & international.url (ID = 74896)
    10:51 AM: interracial videos.url (ID = 74897)
    10:51 AM: latin videos.url (ID = 74898)
    10:51 AM: lesbian videos.url (ID = 74899)
    10:51 AM: older women on video.url (ID = 74903)
    10:51 AM: orgies & ****fests.url (ID = 74904)
    10:51 AM: pornstars.url (ID = 74905)
    10:51 AM: shemale videos.url (ID = 74910)
    10:51 AM: teen videos.url (ID = 74911)
    10:51 AM: videos for women.url (ID = 74890)
    10:51 AM: polall1r.inf (ID = 83425)
    10:51 AM: polall1r.inf (ID = 83425)
    10:51 AM: polall1r.inf (ID = 83425)
    10:51 AM: farmmext.inf (ID = 83281)
    10:51 AM: farmmext.inf (ID = 83281)
    10:51 AM: rws.dat (ID = 53812)
    10:51 AM: global.cfg (ID = 146968)
    10:51 AM: emaillink.htm (ID = 53781)
    10:51 AM: navigate.htm (ID = 53803)
    10:51 AM: exit.dat (ID = 53783)
    10:51 AM: url8.dat (ID = 53834)
    10:51 AM: url9.dat (ID = 53835)
    10:51 AM: farmmext.inf (ID = 83281)
    10:51 AM: dc137.inf (ID = 61287)
    10:51 AM: farmmext.inf (ID = 83281)
    10:51 AM: dc188.dat (ID = 64870)
    10:51 AM: adremtm2.inf (ID = 59445)
    10:51 AM: adremtm2.inf (ID = 59445)
    10:51 AM: osd319.osd (ID = 60005)
    10:51 AM: farmmext.inf (ID = 83281)
    10:51 AM: install.inf (ID = 53286)
    10:51 AM: dc345.inf (ID = 83498)
    10:51 AM: dc341.inf (ID = 83498)
    10:51 AM: adremtm2.inf (ID = 59445)
     
  13. greendrag200

    greendrag200 Thread Starter

    Joined:
    Jan 27, 2006
    Messages:
    16
    10:51 AM: osd353.osd (ID = 60007)
    10:52 AM: dc697.dat (ID = 64870)
    10:52 AM: adremtm2.inf (ID = 59445)
    10:52 AM: ceres.inf (ID = 83250)
    10:52 AM: ceres.inf (ID = 83250)
    10:52 AM: adremtm2.inf (ID = 59445)
    10:52 AM: farmmext.inf (ID = 83281)
    10:52 AM: farmmext.inf (ID = 83281)
    10:52 AM: banner.inf (ID = 83145)
    10:52 AM: setup.inf (ID = 107202)
    10:52 AM: winfixer 2005 on the web.lnk (ID = 114865)
    10:52 AM: contact customer support.lnk (ID = 114863)
    10:56 AM: File Sweep Complete, Elapsed Time: 00:55:16
    10:56 AM: Full Sweep has completed. Elapsed time 01:02:48
    10:56 AM: Traces Found: 1771
    11:31 AM: Removal process initiated
    11:31 AM: Quarantining All Traces: 180search assistant/zango
    11:31 AM: Quarantining All Traces: 2nd-thought
    11:31 AM: Quarantining All Traces: cws_ns3
    11:32 AM: Quarantining All Traces: cws-aboutblank
    11:32 AM: Quarantining All Traces: directrevenue-abetterinternet
    11:32 AM: Quarantining All Traces: elitebar
    11:32 AM: Quarantining All Traces: ie driver
    11:32 AM: Quarantining All Traces: ist istbar
    11:32 AM: Quarantining All Traces: lopdotcom
    11:32 AM: Quarantining All Traces: purityscan
    11:32 AM: Quarantining All Traces: websearch toolbar
    11:32 AM: Quarantining All Traces: wildmedia
    11:32 AM: Quarantining All Traces: apropos
    11:32 AM: Quarantining All Traces: blazefind
    11:32 AM: Quarantining All Traces: cnsmin
    11:32 AM: Quarantining All Traces: commonname
    11:32 AM: Quarantining All Traces: coolsearch hijacker
    11:32 AM: Quarantining All Traces: coolwebsearch (cws)
    11:32 AM: Quarantining All Traces: cws_tiny0
    11:32 AM: Quarantining All Traces: internetoptimizer
    11:32 AM: Quarantining All Traces: isearch toolbar
    11:32 AM: Quarantining All Traces: sidesearch
    11:32 AM: Quarantining All Traces: startpage
    11:32 AM: Quarantining All Traces: vesbiz downloader
    11:32 AM: Quarantining All Traces: addestroyer
    11:32 AM: Quarantining All Traces: alset helpexpress
    11:32 AM: Quarantining All Traces: browseraid
    11:32 AM: Quarantining All Traces: clientman
    11:32 AM: Quarantining All Traces: clipgenie
    11:32 AM: Quarantining All Traces: ebates money maker
    11:33 AM: Quarantining All Traces: euniverse
    11:33 AM: Quarantining All Traces: exact cashback/bargain buddy
    11:33 AM: Quarantining All Traces: exact navisearch
    11:33 AM: Quarantining All Traces: great net downloadware
    11:33 AM: Quarantining All Traces: hot as hell
    11:33 AM: Quarantining All Traces: ieplugin
    11:33 AM: Quarantining All Traces: igetnet
    11:33 AM: Quarantining All Traces: ignkeys
    11:33 AM: Quarantining All Traces: ist powerscan
    11:33 AM: Quarantining All Traces: ist sidefind
    11:33 AM: Quarantining All Traces: ist yoursitebar
    11:33 AM: Quarantining All Traces: keenvalue/perfectnav
    11:33 AM: Quarantining All Traces: moneytree
    11:33 AM: Quarantining All Traces: redzip toolbar
    11:33 AM: Quarantining All Traces: searchbarhtml
    11:33 AM: Quarantining All Traces: searchtoolbar
    11:33 AM: Quarantining All Traces: targetsaver
    11:34 AM: Quarantining All Traces: targetsoft
    11:34 AM: Quarantining All Traces: teenxxx (tinybar)
    11:34 AM: Quarantining All Traces: upspiral toolbar
    11:34 AM: Quarantining All Traces: virtualbouncer
    11:34 AM: Quarantining All Traces: webrebates
    11:34 AM: Quarantining All Traces: wild media - statblaster
    11:34 AM: Quarantining All Traces: 2o7.net cookie
    11:34 AM: Quarantining All Traces: adknowledge cookie
    11:34 AM: Quarantining All Traces: adserver cookie
    11:35 AM: Quarantining All Traces: advertising cookie
    11:35 AM: Quarantining All Traces: ask cookie
    11:35 AM: Quarantining All Traces: atlas dmt cookie
    11:35 AM: Quarantining All Traces: atwola cookie
    11:35 AM: Quarantining All Traces: belnk cookie
    11:35 AM: Quarantining All Traces: burstbeacon cookie
    11:35 AM: Quarantining All Traces: burstnet cookie
    11:35 AM: Quarantining All Traces: casalemedia cookie
    11:35 AM: Quarantining All Traces: ccbill cookie
    11:35 AM: Quarantining All Traces: centrport net cookie
    11:35 AM: Quarantining All Traces: clickzs cookie
    11:35 AM: Quarantining All Traces: cliks cookie
    11:35 AM: Quarantining All Traces: domainsponsor cookie
    11:35 AM: Quarantining All Traces: fastclick cookie
    11:35 AM: Quarantining All Traces: gain - common components
    11:35 AM: Quarantining All Traces: mediaplex cookie
    11:35 AM: Quarantining All Traces: nextag cookie
    11:35 AM: Quarantining All Traces: offeroptimizer cookie
    11:35 AM: Quarantining All Traces: pointroll cookie
    11:35 AM: Quarantining All Traces: questionmarket cookie
    11:35 AM: Quarantining All Traces: realmedia cookie
    11:35 AM: Quarantining All Traces: revenue.net cookie
    11:35 AM: Quarantining All Traces: servedby advertising cookie
    11:35 AM: Quarantining All Traces: sexlist cookie
    11:35 AM: Quarantining All Traces: sextracker cookie
    11:35 AM: Quarantining All Traces: statcounter cookie
    11:35 AM: Quarantining All Traces: tacoda cookie
    11:35 AM: Quarantining All Traces: tribalfusion cookie
    11:35 AM: Quarantining All Traces: webtrendslive cookie
    11:35 AM: Quarantining All Traces: winantispyware 2005
    11:35 AM: Quarantining All Traces: xxxcounter cookie
    11:35 AM: Quarantining All Traces: yadro cookie
    11:35 AM: Quarantining All Traces: yieldmanager cookie
    11:35 AM: Quarantining All Traces: zedo cookie
    11:35 AM: Removal process completed. Elapsed time 00:04:34
    ********
    10:15 AM: | Start of Session, Saturday, January 28, 2006 |
    10:15 AM: Spy Sweeper started
    10:15 AM: Sweep initiated using definitions version 606
    10:16 AM: Starting Memory Sweep
    10:16 AM: Sweep Canceled
    10:16 AM: Memory Sweep Complete, Elapsed Time: 00:00:20
    10:16 AM: Traces Found: 0
    ********
    7:51 AM: | Start of Session, Saturday, January 28, 2006 |
    7:51 AM: Spy Sweeper started
    7:51 AM: Sweep initiated using definitions version 606
    7:51 AM: Starting Memory Sweep
    7:58 AM: Memory Sweep Complete, Elapsed Time: 00:06:55
    7:58 AM: Starting Registry Sweep
    7:58 AM: Found Trojan Horse: 2nd-thought
    7:58 AM: HKCR\interface\{6e0ed53c-9908-49ed-b055-7cb31b162577}\ (7 subtraces) (ID = 101978)
    7:58 AM: HKCR\interface\{8c53bd8e-b12d-4c8f-ad0e-c9ddc39d1273}\ (8 subtraces) (ID = 101979)
    7:58 AM: HKCR\interface\{9bcdd51b-4a7b-446c-8452-d32d38004582}\ (7 subtraces) (ID = 101980)
    7:58 AM: HKCR\interface\{49db48ff-02b5-4645-b676-94a4df1aa026}\ (7 subtraces) (ID = 101981)
    7:58 AM: HKCR\interface\{830d3aed-2fa9-454f-b266-d931862bbf34}\ (7 subtraces) (ID = 101982)
    7:58 AM: HKCR\interface\{a986f4db-792e-4571-8974-0bb6e024766f}\ (7 subtraces) (ID = 101983)
    7:58 AM: HKCR\interface\{bccab53d-0895-40c3-a942-a03538ce227a}\ (7 subtraces) (ID = 101984)
    7:58 AM: HKCR\interface\{c0f88e9e-dceb-4655-968a-ae508a677c39}\ (7 subtraces) (ID = 101985)
    7:58 AM: HKCR\interface\{d7eac2d8-2d52-4010-a4ad-dfdf60c1706c}\ (7 subtraces) (ID = 101986)
    7:58 AM: HKLM\software\classes\interface\{6e0ed53c-9908-49ed-b055-7cb31b162577}\ (7 subtraces) (ID = 101993)
    7:58 AM: HKLM\software\classes\interface\{8c53bd8e-b12d-4c8f-ad0e-c9ddc39d1273}\ (8 subtraces) (ID = 101994)
    7:58 AM: HKLM\software\classes\interface\{9bcdd51b-4a7b-446c-8452-d32d38004582}\ (7 subtraces) (ID = 101995)
    7:58 AM: HKLM\software\classes\interface\{49db48ff-02b5-4645-b676-94a4df1aa026}\ (7 subtraces) (ID = 101996)
    7:58 AM: HKLM\software\classes\interface\{830d3aed-2fa9-454f-b266-d931862bbf34}\ (7 subtraces) (ID = 101997)
    7:58 AM: HKLM\software\classes\interface\{a986f4db-792e-4571-8974-0bb6e024766f}\ (7 subtraces) (ID = 101998)
    7:58 AM: HKLM\software\classes\interface\{bccab53d-0895-40c3-a942-a03538ce227a}\ (7 subtraces) (ID = 101999)
    7:58 AM: HKLM\software\classes\interface\{c0f88e9e-dceb-4655-968a-ae508a677c39}\ (7 subtraces) (ID = 102000)
    7:58 AM: HKLM\software\classes\interface\{d7eac2d8-2d52-4010-a4ad-dfdf60c1706c}\ (7 subtraces) (ID = 102001)
    7:58 AM: Found Adware: addestroyer
    7:58 AM: HKCR\clsid\{417386c3-8d4a-4611-9b91-e57e89d603ac}\ (13 subtraces) (ID = 102728)
    7:58 AM: HKCR\clsid\{d52433a9-a44c-43ab-a013-24b3c756dd2b}\ (13 subtraces) (ID = 102729)
    7:58 AM: HKCR\interface\{10d7db96-56dc-4617-8eab-ec506abe6c7e}\ (8 subtraces) (ID = 102730)
    7:58 AM: HKCR\interface\{6cdc3337-01f7-4a79-a4af-0b19303cc0be}\ (8 subtraces) (ID = 102732)
    7:58 AM: HKCR\interface\{795398d0-dc2f-4118-a69c-592273ba9c2b}\ (8 subtraces) (ID = 102733)
    7:58 AM: HKCR\interface\{b288f21c-a144-4ca2-9b70-8afa1fae4b06}\ (8 subtraces) (ID = 102734)
    7:58 AM: HKCR\popoops2.popoops\ (3 subtraces) (ID = 102735)
    7:58 AM: HKCR\swlad1.swlad\ (3 subtraces) (ID = 102736)
    7:58 AM: HKLM\software\classes\clsid\{417386c3-8d4a-4611-9b91-e57e89d603ac}\ (13 subtraces) (ID = 102737)
    7:58 AM: HKLM\software\classes\clsid\{d52433a9-a44c-43ab-a013-24b3c756dd2b}\ (13 subtraces) (ID = 102738)
    7:58 AM: HKLM\software\classes\interface\{10d7db96-56dc-4617-8eab-ec506abe6c7e}\ (8 subtraces) (ID = 102739)
    7:58 AM: HKLM\software\classes\interface\{6cdc3337-01f7-4a79-a4af-0b19303cc0be}\ (8 subtraces) (ID = 102741)
    7:58 AM: HKLM\software\classes\interface\{795398d0-dc2f-4118-a69c-592273ba9c2b}\ (8 subtraces) (ID = 102742)
    7:58 AM: HKLM\software\classes\interface\{b288f21c-a144-4ca2-9b70-8afa1fae4b06}\ (8 subtraces) (ID = 102743)
    7:58 AM: HKLM\software\classes\popoops2.popoops\ (3 subtraces) (ID = 102744)
    7:58 AM: HKLM\software\classes\swlad1.swlad\ (3 subtraces) (ID = 102745)
    7:58 AM: HKLM\software\classes\typelib\{d0c29a75-7146-4737-98ee-bc4d7cf44af9}\ (9 subtraces) (ID = 102746)
    7:58 AM: HKLM\software\classes\typelib\{e0d3b292-a0b0-4640-975c-2f882e039f52}\ (9 subtraces) (ID = 102747)
    7:58 AM: HKCR\typelib\{d0c29a75-7146-4737-98ee-bc4d7cf44af9}\ (9 subtraces) (ID = 102750)
    7:58 AM: HKCR\typelib\{e0d3b292-a0b0-4640-975c-2f882e039f52}\ (9 subtraces) (ID = 102751)
    7:58 AM: Found Adware: apropos
    7:58 AM: HKLM\software\microsoft\windows\currentversion\run\ || autoupdater (ID = 103803)
    7:58 AM: Found Adware: blazefind
    7:58 AM: HKLM\software\microsoft\windows\currentversion\uninstall\windows sr 2.0\ (4 subtraces) (ID = 104552)
    7:58 AM: HKLM\software\windupdates\ (5 subtraces) (ID = 104559)
    7:58 AM: Found Adware: browseraid
    7:58 AM: HKCR\clsid\{e004800a-73c6-4587-b855-98d0ce0c16b1}\ (8 subtraces) (ID = 105061)
    7:58 AM: HKLM\software\classes\clsid\{e004800a-73c6-4587-b855-98d0ce0c16b1}\ (8 subtraces) (ID = 105100)
    7:58 AM: HKLM\software\microsoft\internet explorer\toolbar\ || {12ee7a5e-0674-42f9-a76b-000000004d00} (ID = 105122)
    7:58 AM: HKLM\software\microsoft\windows\currentversion\run\ || 98d0ce0c16b1 (ID = 105156)
    7:58 AM: Found Adware: exact cashback/bargain buddy
    7:58 AM: HKLM\software\microsoft\code store database\distribution units\{0878b424-1f95-4e26-b5ab-f0d349d89650}\ (13 subtraces) (ID = 105377)
    7:58 AM: Found Adware: clipgenie
    7:58 AM: HKLM\software\microsoft\windows\currentversion\app management\arpcache\clipgenie\ (2 subtraces) (ID = 105921)
    7:58 AM: Found Adware: cnsmin
    7:58 AM: HKCR\clsid\{205ff73b-ca67-11d5-99dd-444553540006}\ (14 subtraces) (ID = 106160)
    7:58 AM: HKCR\interface\{205ff73a-ca67-11d5-99dd-444553540006}\ (8 subtraces) (ID = 106176)
    7:58 AM: HKLM\software\classes\clsid\{205ff73b-ca67-11d5-99dd-444553540006}\ (14 subtraces) (ID = 106191)
    7:58 AM: HKLM\software\classes\interface\{205ff73a-ca67-11d5-99dd-444553540006}\ (8 subtraces) (ID = 106197)
    7:58 AM: HKLM\software\classes\typelib\{205ff72e-ca67-11d5-99dd-444553540006}\ (9 subtraces) (ID = 106202)
    7:58 AM: HKCR\typelib\{205ff72e-ca67-11d5-99dd-444553540006}\ (9 subtraces) (ID = 106257)
    7:58 AM: Found Adware: coolsearch hijacker
    7:58 AM: HKCR\customie.bho\ (5 subtraces) (ID = 107015)
    7:58 AM: HKCR\customie.bho.1\ (3 subtraces) (ID = 107016)
    7:58 AM: HKCR\typelib\{aad9a825-7c82-4121-ab7c-c33be0853588}\ (9 subtraces) (ID = 107019)
    7:58 AM: HKLM\software\classes\customie.bho\ (5 subtraces) (ID = 107020)
    7:58 AM: HKLM\software\classes\customie.bho.1\ (3 subtraces) (ID = 107021)
    7:58 AM: HKLM\software\classes\typelib\{aad9a825-7c82-4121-ab7c-c33be0853588}\ (9 subtraces) (ID = 107024)
    7:58 AM: Found Adware: coolwebsearch (cws)
    7:58 AM: HKCR\clsid\{0cde1393-0654-19dd-97b4-cfd118be169a}\ (2 subtraces) (ID = 107049)
    7:58 AM: HKCR\clsid\{37fec172-7d9f-a669-ccd9-e33bbfc88edd}\ (2 subtraces) (ID = 107447)
    7:58 AM: HKLM\software\classes\clsid\{0cde1393-0654-19dd-97b4-cfd118be169a}\ (2 subtraces) (ID = 108439)
    7:58 AM: HKLM\software\classes\clsid\{37fec172-7d9f-a669-ccd9-e33bbfc88edd}\ (2 subtraces) (ID = 108834)
    7:58 AM: Found Adware: cws_ns3
    7:58 AM: HKCR\clsid\{02d6ed78-680a-f6c9-b9ce-a9a1ba770720}\ (2 subtraces) (ID = 117641)
    7:58 AM: HKCR\clsid\{3a1550dd-fd7b-8d6e-989a-49a66df1433f}\ (4 subtraces) (ID = 117784)
    7:58 AM: HKCR\clsid\{6a3c5aeb-2856-9dc8-a5d7-c63edec0af15}\ (2 subtraces) (ID = 117918)
    7:58 AM: HKCR\clsid\{29cda41a-a8eb-6a68-bbf5-2877418d55c7}\ (2 subtraces) (ID = 118119)
    7:58 AM: HKCR\clsid\{316d6034-8672-118c-728f-d9d78efea265}\ (6 subtraces) (ID = 118359)
    7:58 AM: HKCR\clsid\{676575dd-4d46-911d-8037-9b10d6ee8bb5}\ (2 subtraces) (ID = 118649)
    7:58 AM: HKCR\clsid\{b591ede1-abd7-f9ab-ff0b-970ce7faf00b}\ (2 subtraces) (ID = 118877)
    7:58 AM: HKCR\clsid\{baa4a995-e881-38f6-1e95-af9f2785fbb3}\ (2 subtraces) (ID = 118904)
    7:58 AM: HKLM\software\classes\clsid\{02d6ed78-680a-f6c9-b9ce-a9a1ba770720}\ (2 subtraces) (ID = 119520)
    7:58 AM: HKLM\software\classes\clsid\{3a1550dd-fd7b-8d6e-989a-49a66df1433f}\ (4 subtraces) (ID = 119658)
    7:58 AM: HKLM\software\classes\clsid\{6a3c5aeb-2856-9dc8-a5d7-c63edec0af15}\ (2 subtraces) (ID = 119792)
    7:58 AM: HKLM\software\classes\clsid\{29cda41a-a8eb-6a68-bbf5-2877418d55c7}\ (2 subtraces) (ID = 119988)
    7:58 AM: HKLM\software\classes\clsid\{316d6034-8672-118c-728f-d9d78efea265}\ (6 subtraces) (ID = 120211)
    7:58 AM: HKLM\software\classes\clsid\{676575dd-4d46-911d-8037-9b10d6ee8bb5}\ (2 subtraces) (ID = 120496)
    7:58 AM: HKLM\software\classes\clsid\{b591ede1-abd7-f9ab-ff0b-970ce7faf00b}\ (2 subtraces) (ID = 120715)
    7:58 AM: HKLM\software\classes\clsid\{baa4a995-e881-38f6-1e95-af9f2785fbb3}\ (2 subtraces) (ID = 120741)
    7:58 AM: Found Adware: cws_tiny0
    7:58 AM: HKCR\clsid\{25742c0f-dc0d-f5dc-55de-c66285aa22ab}\ (4 subtraces) (ID = 123938)
    7:58 AM: HKLM\software\classes\clsid\{25742c0f-dc0d-f5dc-55de-c66285aa22ab}\ (4 subtraces) (ID = 124166)
    7:58 AM: Found Adware: ebates money maker
    7:58 AM: HKLM\software\microsoft\windows\currentversion\run\ || ebatesmoemoneymaker0 (ID = 125592)
    7:58 AM: HKLM\software\microsoft\windows\currentversion\uninstall\tmu\ (1 subtraces) (ID = 125600)
    7:58 AM: Found Adware: elitebar
    7:58 AM: HKLM\software\microsoft\code store database\distribution units\v3cab\ (12 subtraces) (ID = 125742)
    7:58 AM: HKLM\software\microsoft\windows\currentversion\shareddlls\ || c:\windows\downloaded program files\v2.dll (ID = 125763)
    7:58 AM: HKLM\software\microsoft\windows\currentversion\shareddlls\ || c:\windows\downloaded program files\v3.dll (ID = 125764)
    7:58 AM: Found Adware: igetnet
    7:58 AM: HKCR\interface\{f6fbfe07-ca76-438e-b34e-4f4dc41f0123}\ (8 subtraces) (ID = 125851)
    7:58 AM: Found Adware: euniverse
    7:58 AM: HKCR\interface\{f6fbfe07-ca76-438e-b34e-4f4dc41f0123}\ (8 subtraces) (ID = 125851)
    7:58 AM: Found Adware: ignkeys
    7:58 AM: HKCR\interface\{f6fbfe07-ca76-438e-b34e-4f4dc41f0123}\ (8 subtraces) (ID = 125851)
    7:58 AM: Found Adware: gain - common components
    7:58 AM: HKLM\software\microsoft\windows\currentversion\shareddlls\ || c:\windows\downloaded program files\hdplugin1019.dll (ID = 126786)
    7:58 AM: Found Adware: hot as hell
    7:58 AM: HKCR\interface\{9388907f-82f5-434d-a941-bb802c6dd7c1}\ (8 subtraces) (ID = 127192)
    7:58 AM: Found Adware: ie driver
    7:58 AM: HKLM\software\microsoft\windows\currentversion\uninstall\{14d108c8-dd97-4b78-8b50-c981500abb8f}\ (2 subtraces) (ID = 128063)
    7:58 AM: Found Adware: ieplugin
    7:58 AM: HKCR\interface\{3e589169-86ad-44fe-b426-f0bf105d5582}\ (8 subtraces) (ID = 128148)
    7:58 AM: HKCR\interface\{e4458b4a-6149-4450-84f2-864adb7e8c52}\ (8 subtraces) (ID = 128153)
    7:58 AM: HKLM\software\classes\interface\{3e589169-86ad-44fe-b426-f0bf105d5582}\ (8 subtraces) (ID = 128167)
    7:58 AM: HKLM\software\classes\typelib\{074a9743-0517-454c-b2f4-ff964de43e4c}\ (9 subtraces) (ID = 128168)
    7:58 AM: HKLM\software\microsoft\internet explorer\extensions\{a80f2db2-80a9-4834-8f5a-4ab70f4ef4c3}\ (6 subtraces) (ID = 128177)
    7:58 AM: HKLM\software\microsoft\internet explorer\toolbar\ || {2cde1a7d-a478-4291-bf31-e1b4c16f92eb} (ID = 128178)
    7:58 AM: HKLM\software\microsoft\windows\currentversion\explorer\browser helper objects\{01f44a8a-8c97-4325-a378-76e68dc4ab2e}\ (ID = 128184)
    7:58 AM: HKLM\software\microsoft\windows\currentversion\uninstall\enhsrch\ (2 subtraces) (ID = 128198)
    7:58 AM: HKCR\typelib\{074a9743-0517-454c-b2f4-ff964de43e4c}\ (9 subtraces) (ID = 128200)
    7:58 AM: HKLM\software\classes\interface\{f6fbfe07-ca76-438e-b34e-4f4dc41f0123}\ (8 subtraces) (ID = 128274)
    7:58 AM: HKLM\software\classes\interface\{f6fbfe07-ca76-438e-b34e-4f4dc41f0123}\ (8 subtraces) (ID = 128274)
    7:58 AM: Found Adware: internetoptimizer
    7:58 AM: HKCR\interface\{aa4939c3-deca-4a48-a454-97cd587c0ef5}\ (8 subtraces) (ID = 128885)
    7:58 AM: HKLM\software\classes\interface\{aa4939c3-deca-4a48-a454-97cd587c0ef5}\ (8 subtraces) (ID = 128896)
    7:58 AM: HKLM\software\microsoft\windows\currentversion\uninstall\internet optimizer active alert\ (3 subtraces) (ID = 128922)
    7:58 AM: HKLM\software\microsoft\windows\currentversion\uninstall\kapabout\ (2 subtraces) (ID = 128924)
    7:58 AM: HKLM\software\policies\avenue media\ (ID = 128929)
    7:58 AM: Found Adware: ist istbar
    7:58 AM: HKLM\software\microsoft\windows\currentversion\moduleusage\c:/windows/downloaded program files/istactivex.dll\ (2 subtraces) (ID = 129124)
    7:58 AM: HKLM\software\microsoft\windows\currentversion\shareddlls\ || c:\windows\downloaded program files\istactivex.dll (ID = 129174)
    7:58 AM: Found Adware: moneytree
    7:58 AM: HKCR\interface\{eee4a2e5-9f56-432f-a6ed-f6f625b551e0}\ (8 subtraces) (ID = 135185)
    7:58 AM: Found Adware: exact navisearch
    7:58 AM: HKLM\software\microsoft\windows\currentversion\uninstall\navisearch\ (10 subtraces) (ID = 135584)
    7:58 AM: HKLM\system\currentcontrolset\services\zesoft\ (13 subtraces) (ID = 135586)
    7:58 AM: Found Adware: 180search assistant/zango
    7:58 AM: HKLM\software\microsoft\windows\currentversion\run\ || sais (ID = 135727)
    7:58 AM: HKLM\software\microsoft\windows\currentversion\uninstall\sais\ (3 subtraces) (ID = 135778)
    7:58 AM: HKLM\software\sais\ (13 subtraces) (ID = 135791)
    7:58 AM: Found Adware: purityscan
    7:58 AM: HKLM\software\microsoft\windows\currentversion\shareddlls\ || c:\windows\downloaded program files\mediaticketsinstaller.ocx (ID = 139077)
    7:59 AM: Found Adware: startpage
    7:59 AM: HKCR\interface\{9da65ff0-676f-48c7-9253-0020417f97ee}\ (8 subtraces) (ID = 142722)
    7:59 AM: HKLM\software\classes\interface\{9da65ff0-676f-48c7-9253-0020417f97ee}\ (8 subtraces) (ID = 142795)
    7:59 AM: Found Adware: targetsaver
    7:59 AM: HKLM\software\microsoft\windows\currentversion\uninstall\tsa\ (2 subtraces) (ID = 143607)
    7:59 AM: Found Adware: targetsoft
    7:59 AM: HKLM\software\microsoft\windows\currentversion\uninstall\tsl installer\ (1 subtraces) (ID = 143608)
    7:59 AM: HKLM\software\microsoft\windows\currentversion\uninstall\tsl installer\ (1 subtraces) (ID = 143608)
    7:59 AM: HKLM\software\tsa\ (15 subtraces) (ID = 143615)
    7:59 AM: Found Adware: teenxxx (tinybar)
    7:59 AM: HKLM\software\microsoft\windows\currentversion\uninstall\spybott\ (2 subtraces) (ID = 143645)
    7:59 AM: Found Adware: directrevenue-abetterinternet
    7:59 AM: HKCR\ceresdll.ceresdllobj.1\ (3 subtraces) (ID = 145774)
    7:59 AM: HKCR\ceresdll.ceresdllobj\ (5 subtraces) (ID = 145775)
    7:59 AM: HKCR\interface\{a42c0ef4-1c76-43cc-989f-eadc7e4b755d}\ (8 subtraces) (ID = 145806)
    7:59 AM: HKCR\interface\{bb0d5adc-028d-4185-9288-722ddce2c757}\ (8 subtraces) (ID = 145808)
    7:59 AM: HKLM\software\classes\ceresdll.ceresdllobj.1\ (3 subtraces) (ID = 145858)
    7:59 AM: HKLM\software\classes\ceresdll.ceresdllobj.1\clsid\ (1 subtraces) (ID = 145859)
    7:59 AM: HKLM\software\classes\ceresdll.ceresdllobj\ (5 subtraces) (ID = 145860)
    7:59 AM: HKLM\software\classes\interface\{a42c0ef4-1c76-43cc-989f-eadc7e4b755d}\ (8 subtraces) (ID = 145883)
    7:59 AM: HKLM\software\classes\interface\{bb0d5adc-028d-4185-9288-722ddce2c757}\ (8 subtraces) (ID = 145885)
    7:59 AM: HKLM\software\classes\typelib\{3fa866ac-40d7-4fe6-babf-78ee854a4325}\ (9 subtraces) (ID = 145899)
    7:59 AM: HKLM\software\microsoft\windows\currentversion\run\ || satmat (ID = 146059)
    7:59 AM: HKLM\software\microsoft\windows\currentversion\uninstall\abi-1\ (6 subtraces) (ID = 146117)
    7:59 AM: HKCR\typelib\{3fa866ac-40d7-4fe6-babf-78ee854a4325}\ (9 subtraces) (ID = 146144)
    7:59 AM: Found Adware: webrebates
    7:59 AM: HKLM\software\microsoft\windows\currentversion\uninstall\untopr1150\ (3 subtraces) (ID = 146302)
    7:59 AM: Found Adware: wildmedia
    7:59 AM: HKCR\interface\{e318d698-27b3-44d5-8998-c35eafb9c034}\ (8 subtraces) (ID = 146696)
    7:59 AM: HKLM\software\classes\interface\{e318d698-27b3-44d5-8998-c35eafb9c034}\ (8 subtraces) (ID = 146710)
    7:59 AM: HKLM\software\classes\typelib\{ecb25a48-e6e0-49af-99af-07c763e31389}\ (9 subtraces) (ID = 146713)
    7:59 AM: HKLM\software\midaddle\ (1 subtraces) (ID = 146961)
    7:59 AM: HKLM\software\wildmedia\ (3 subtraces) (ID = 146962)
    7:59 AM: HKCR\typelib\{ecb25a48-e6e0-49af-99af-07c763e31389}\ (9 subtraces) (ID = 146964)
    7:59 AM: Found Adware: ist yoursitebar
    7:59 AM: HKCR\interface\{bf06da8e-2beb-4816-9bbd-f7625246e245}\ (8 subtraces) (ID = 147834)
    7:59 AM: HKLM\software\classes\interface\{bf06da8e-2beb-4816-9bbd-f7625246e245}\ (8 subtraces) (ID = 147840)
    7:59 AM: HKLM\software\classes\typelib\{db447818-96b4-40df-8a55-720da496f514}\ (9 subtraces) (ID = 147844)
    7:59 AM: HKLM\software\classes\ysbactivex.installer.1\ (3 subtraces) (ID = 147848)
    7:59 AM: HKLM\software\microsoft\windows\currentversion\shareddlls\ || c:\windows\downloaded program files\ysbactivex.dll (ID = 147857)
    7:59 AM: HKCR\typelib\{db447818-96b4-40df-8a55-720da496f514}\ (9 subtraces) (ID = 147863)
    7:59 AM: HKCR\ysbactivex.installer.1\ (3 subtraces) (ID = 147867)
    7:59 AM: HKCR\ysbactivex.installer.1\clsid\ (1 subtraces) (ID = 147868)
    7:59 AM: HKCR\popoops2.popoops\ (3 subtraces) (ID = 466854)
    7:59 AM: HKCR\popoops2.popoops\ (3 subtraces) (ID = 466855)
    7:59 AM: HKCR\popoops2.popoops\clsid\ (1 subtraces) (ID = 466856)
    7:59 AM: HKLM\software\classes\popoops2.popoops\ (3 subtraces) (ID = 466858)
    7:59 AM: HKLM\software\classes\popoops2.popoops\ (3 subtraces) (ID = 466859)
    7:59 AM: HKLM\software\classes\popoops2.popoops\clsid\ (1 subtraces) (ID = 466860)
    7:59 AM: HKLM\software\microsoft\windows\currentversion\uninstall\navisearch\ (10 subtraces) (ID = 498471)
    7:59 AM: Found Adware: winantispyware 2005
    7:59 AM: HKCR\checkproduct2.checkproduct\ (5 subtraces) (ID = 527503)
    7:59 AM: HKCR\checkproduct2.checkproduct.1\ (3 subtraces) (ID = 527509)
    7:59 AM: HKCR\appid\checkproduct2.dll\ (1 subtraces) (ID = 527632)
    7:59 AM: HKCR\appid\{8c65aef6-e413-4314-815b-82717a3f1603}\ (1 subtraces) (ID = 527648)
    7:59 AM: HKCR\clsid\{c427b3e3-28dc-4001-9590-d99b6776119b}\ (15 subtraces) (ID = 527829)
    7:59 AM: HKCR\interface\{4f79d1c5-24f9-4e59-8022-604d4b41d5ca}\ (8 subtraces) (ID = 527937)
    7:59 AM: HKCR\typelib\{30ed49a5-ca6c-4918-b5f3-5e6818c91d8b}\ (9 subtraces) (ID = 528091)
    7:59 AM: HKLM\software\microsoft\windows\currentversion\shareddlls\ || c:\program files\common files\winsoftware\crxml.dll (ID = 528187)
    7:59 AM: HKLM\software\microsoft\windows\currentversion\shareddlls\ || c:\program files\common files\winsoftware\pcheck.dll (ID = 528188)
    7:59 AM: HKLM\software\classes\checkproduct2.checkproduct\ (5 subtraces) (ID = 528199)
    7:59 AM: HKLM\software\classes\checkproduct2.checkproduct.1\ (3 subtraces) (ID = 528205)
    7:59 AM: HKLM\software\classes\appid\checkproduct2.dll\ (1 subtraces) (ID = 528341)
    7:59 AM: HKLM\software\classes\appid\{8c65aef6-e413-4314-815b-82717a3f1603}\ (1 subtraces) (ID = 528357)
    7:59 AM: HKLM\software\classes\clsid\{c427b3e3-28dc-4001-9590-d99b6776119b}\ (15 subtraces) (ID = 528538)
    7:59 AM: HKLM\software\classes\typelib\{30ed49a5-ca6c-4918-b5f3-5e6818c91d8b}\ (9 subtraces) (ID = 528800)
    7:59 AM: HKLM\software\classes\appid\{8c65aef6-e413-4314-815b-82717a3f1603}\ (1 subtraces) (ID = 543259)
    7:59 AM: Found Adware: clientman
    7:59 AM: HKCR\appid\urlcli.dll\ (1 subtraces) (ID = 701476)
    7:59 AM: HKLM\software\classes\appid\urlcli.dll\ (1 subtraces) (ID = 701492)
    7:59 AM: HKU\WRSS_Profile_S-1-5-21-156640315-2731309904-3410288154-1003\software\a70f6a1d-0195-42a2-934c-d8ac0f7c08eb\ (1 subtraces) (ID = 105078)
    7:59 AM: Found Adware: cws-aboutblank
    7:59 AM: HKU\WRSS_Profile_S-1-5-21-156640315-2731309904-3410288154-1003\software\microsoft\internet explorer\main\ || search bar_bak (ID = 115924)
    7:59 AM: HKU\WRSS_Profile_S-1-5-21-156640315-2731309904-3410288154-1003\software\microsoft\internet explorer\main\ || search page_bak (ID = 115925)
    7:59 AM: HKU\WRSS_Profile_S-1-5-21-156640315-2731309904-3410288154-1003\software\microsoft\internet explorer\extensions\cmdmapping\ || {6685509e-b47b-4f47-8e16-9a5f3a62f683} (ID = 125587)
    7:59 AM: HKU\WRSS_Profile_S-1-5-21-156640315-2731309904-3410288154-1003\software\microsoft\internet explorer\extensions\{6685509e-b47b-4f47-8e16-9a5f3a62f683}\ (6 subtraces) (ID = 125589)
    7:59 AM: HKU\WRSS_Profile_S-1-5-21-156640315-2731309904-3410288154-1003\software\microsoft\internet explorer\extensions\{6685509e-b47b-4f47-8e16-9a5f3a62f683}\ (6 subtraces) (ID = 125589)
    7:59 AM: HKU\WRSS_Profile_S-1-5-21-156640315-2731309904-3410288154-1003\software\lq\ (5 subtraces) (ID = 125741)
    7:59 AM: HKU\WRSS_Profile_S-1-5-21-156640315-2731309904-3410288154-1003\software\dsktb\ (6 subtraces) (ID = 128171)
    7:59 AM: Found Adware: upspiral toolbar
    7:59 AM: HKU\WRSS_Profile_S-1-5-21-156640315-2731309904-3410288154-1003\software\dsktb\ (6 subtraces) (ID = 128171)
    7:59 AM: Found Adware: redzip toolbar
    7:59 AM: HKU\WRSS_Profile_S-1-5-21-156640315-2731309904-3410288154-1003\software\dsktb\ (6 subtraces) (ID = 128171)
    7:59 AM: HKU\WRSS_Profile_S-1-5-21-156640315-2731309904-3410288154-1003\software\enhsrch\ (11 subtraces) (ID = 128172)
    7:59 AM: HKU\WRSS_Profile_S-1-5-21-156640315-2731309904-3410288154-1003\software\intexp\ (11 subtraces) (ID = 128173)
    7:59 AM: HKU\WRSS_Profile_S-1-5-21-156640315-2731309904-3410288154-1003\software\policies\avenue media\ (ID = 128928)
    7:59 AM: Found Adware: isearch toolbar
    7:59 AM: HKU\WRSS_Profile_S-1-5-21-156640315-2731309904-3410288154-1003\software\microsoft\internet explorer\extensions\cmdmapping\ || {1a00c40b-da85-4aa3-a67f-582d9347eecd} (ID = 129028)
    7:59 AM: Found Adware: lopdotcom
    7:59 AM: HKU\WRSS_Profile_S-1-5-21-156640315-2731309904-3410288154-1003\software\microsoft\windows\currentversion\run\ || notn (ID = 131448)
    7:59 AM: HKU\WRSS_Profile_S-1-5-21-156640315-2731309904-3410288154-1003\software\sais\ (16 subtraces) (ID = 135790)
     
  14. greendrag200

    greendrag200 Thread Starter

    Joined:
    Jan 27, 2006
    Messages:
    16
    7:59 AM: Found Adware: ist powerscan
    7:59 AM: HKU\WRSS_Profile_S-1-5-21-156640315-2731309904-3410288154-1003\software\powerscan\ (ID = 136823)
    7:59 AM: Found Adware: searchtoolbar
    7:59 AM: HKU\WRSS_Profile_S-1-5-21-156640315-2731309904-3410288154-1003\software\{12ee7a5e-0674-42f9-a76b-000000004d00}\ (5 subtraces) (ID = 141347)
    7:59 AM: Found Adware: ist sidefind
    7:59 AM: HKU\WRSS_Profile_S-1-5-21-156640315-2731309904-3410288154-1003\software\microsoft\internet explorer\extensions\cmdmapping\ || {10e42047-deb9-4535-a118-b3f6ec39b807} (ID = 141778)
    7:59 AM: HKU\WRSS_Profile_S-1-5-21-156640315-2731309904-3410288154-1003\software\tsa\ (5 subtraces) (ID = 143614)
    7:59 AM: HKU\WRSS_Profile_S-1-5-21-156640315-2731309904-3410288154-1003\software\ceres\ (30 subtraces) (ID = 145851)
    7:59 AM: Found Adware: websearch toolbar
    7:59 AM: HKU\WRSS_Profile_S-1-5-21-156640315-2731309904-3410288154-1003\software\wintools\ (1 subtraces) (ID = 146514)
    7:59 AM: HKU\WRSS_Profile_S-1-5-21-156640315-2731309904-3410288154-1003\software\microsoft\internet explorer\main\ || updater2 (ID = 146720)
    7:59 AM: HKU\WRSS_Profile_S-1-5-21-156640315-2731309904-3410288154-1003\software\microsoft\internet explorer\main\ || updater (ID = 146721)
    7:59 AM: Found Adware: sidesearch
    7:59 AM: HKU\WRSS_Profile_S-1-5-21-156640315-2731309904-3410288154-1003\software\microsoft\internet explorer\extensions\cmdmapping\ || {000007c6-17df-4438-92a4-de5537471ba3} (ID = 530423)
    7:59 AM: HKU\WRSS_Profile_S-1-5-21-156640315-2731309904-3410288154-1003\software\wintools\ (1 subtraces) (ID = 646241)
    7:59 AM: HKU\WRSS_Profile_S-1-5-21-156640315-2731309904-3410288154-1003\software\microsoft\internet explorer\main\ || search page_bak (ID = 774883)
    7:59 AM: Registry Sweep Complete, Elapsed Time:00:00:47
    7:59 AM: Starting Cookie Sweep
    7:59 AM: Found Spy Cookie: yieldmanager cookie
    7:59 AM: [email protected][2].txt (ID = 3751)
    7:59 AM: Found Spy Cookie: advertising cookie
    7:59 AM: [email protected][2].txt (ID = 2175)
    7:59 AM: Found Spy Cookie: ask cookie
    7:59 AM: [email protected][1].txt (ID = 2245)
    7:59 AM: Found Spy Cookie: atlas dmt cookie
    7:59 AM: [email protected][2].txt (ID = 2253)
    7:59 AM: Found Spy Cookie: casalemedia cookie
    7:59 AM: [email protected][1].txt (ID = 2354)
    7:59 AM: Found Spy Cookie: fastclick cookie
    7:59 AM: [email protected][2].txt (ID = 2651)
    7:59 AM: Found Spy Cookie: mediaplex cookie
    7:59 AM: [email protected][1].txt (ID = 6442)
    7:59 AM: Found Spy Cookie: 2o7.net cookie
    7:59 AM: [email protected][1].txt (ID = 1958)
    7:59 AM: Found Spy Cookie: questionmarket cookie
    7:59 AM: [email protected][1].txt (ID = 3217)
    7:59 AM: Found Spy Cookie: servedby advertising cookie
    7:59 AM: [email protected][1].txt (ID = 3335)
    7:59 AM: [email protected][1].txt (ID = 1957)
    7:59 AM: [email protected][1].txt (ID = 3751)
    7:59 AM: Found Spy Cookie: adknowledge cookie
    7:59 AM: [email protected][2].txt (ID = 2072)
    7:59 AM: Found Spy Cookie: pointroll cookie
    7:59 AM: [email protected][2].txt (ID = 3148)
    7:59 AM: [email protected][2].txt (ID = 2175)
    7:59 AM: [email protected][2].txt (ID = 2245)
    7:59 AM: [email protected][1].txt (ID = 2253)
    7:59 AM: Found Spy Cookie: belnk cookie
    7:59 AM: [email protected][1].txt (ID = 2292)
    7:59 AM: Found Spy Cookie: burstnet cookie
    7:59 AM: [email protected][2].txt (ID = 2336)
    7:59 AM: [email protected][1].txt (ID = 2354)
    7:59 AM: Found Spy Cookie: ccbill cookie
    7:59 AM: [email protected][1].txt (ID = 2369)
    7:59 AM: Found Spy Cookie: centrport net cookie
    7:59 AM: [email protected][1].txt (ID = 2374)
    7:59 AM: Found Spy Cookie: sextracker cookie
    7:59 AM: [email protected][1].txt (ID = 3362)
    7:59 AM: [email protected][1].txt (ID = 3362)
    7:59 AM: Found Spy Cookie: clickzs cookie
    7:59 AM: [email protected][1].txt (ID = 2413)
    7:59 AM: [email protected][2].txt (ID = 2413)
    7:59 AM: [email protected][1].txt (ID = 2413)
    7:59 AM: [email protected][1].txt (ID = 2413)
    7:59 AM: [email protected][2].txt (ID = 2293)
    7:59 AM: [email protected][1].txt (ID = 2651)
    7:59 AM: Found Spy Cookie: domainsponsor cookie
    7:59 AM: [email protected][1].txt (ID = 2535)
    7:59 AM: [email protected][1].txt (ID = 6442)
    7:59 AM: [email protected][1].txt (ID = 1958)
    7:59 AM: [email protected][1].txt (ID = 1958)
    7:59 AM: [email protected][1].txt (ID = 1958)
    7:59 AM: Found Spy Cookie: nextag cookie
    7:59 AM: [email protected][2].txt (ID = 5014)
    7:59 AM: [email protected][1].txt (ID = 3217)
    7:59 AM: Found Spy Cookie: realmedia cookie
    7:59 AM: [email protected][2].txt (ID = 3235)
    7:59 AM: Found Spy Cookie: revenue.net cookie
    7:59 AM: [email protected][1].txt (ID = 3257)
    7:59 AM: [email protected][2].txt (ID = 3335)
    7:59 AM: Found Spy Cookie: sexlist cookie
    7:59 AM: [email protected][1].txt (ID = 3353)
    7:59 AM: [email protected][2].txt (ID = 3361)
    7:59 AM: Found Spy Cookie: statcounter cookie
    7:59 AM: [email protected][2].txt (ID = 3447)
    7:59 AM: Found Spy Cookie: tacoda cookie
    7:59 AM: [email protected][1].txt (ID = 6444)
    7:59 AM: Found Spy Cookie: tribalfusion cookie
    7:59 AM: [email protected][2].txt (ID = 3589)
    7:59 AM: Found Spy Cookie: xxxcounter cookie
    7:59 AM: [email protected][1].txt (ID = 3733)
    7:59 AM: Found Spy Cookie: yadro cookie
    7:59 AM: [email protected][1].txt (ID = 3743)
    7:59 AM: Found Spy Cookie: adserver cookie
    7:59 AM: [email protected][1].txt (ID = 2142)
    7:59 AM: Found Spy Cookie: zedo cookie
    7:59 AM: [email protected][2].txt (ID = 3762)
    7:59 AM: [email protected][1].txt (ID = 1957)
    7:59 AM: [email protected][1].txt (ID = 2175)
    7:59 AM: [email protected][1].txt (ID = 2245)
    7:59 AM: [email protected][2].txt (ID = 2253)
    7:59 AM: Found Spy Cookie: atwola cookie
    7:59 AM: [email protected][1].txt (ID = 2255)
    7:59 AM: [email protected][2].txt (ID = 2336)
    7:59 AM: Found Spy Cookie: cliks cookie
    7:59 AM: [email protected][1].txt (ID = 2414)
    7:59 AM: [email protected][2].txt (ID = 2651)
    7:59 AM: Found Spy Cookie: offeroptimizer cookie
    7:59 AM: [email protected][2].txt (ID = 3087)
    7:59 AM: [email protected][3].txt (ID = 3087)
    7:59 AM: [email protected][1].txt (ID = 3235)
    7:59 AM: Found Spy Cookie: webtrendslive cookie
    7:59 AM: [email protected][2].txt (ID = 3667)
    7:59 AM: [email protected][1].txt (ID = 6444)
    7:59 AM: [email protected][1].txt (ID = 3589)
    7:59 AM: Found Spy Cookie: burstbeacon cookie
    7:59 AM: [email protected][2].txt (ID = 2335)
    7:59 AM: Cookie Sweep Complete, Elapsed Time: 00:00:04
    7:59 AM: Starting File Sweep
    7:59 AM: c:\program files\sidefind (ID = -2147480325)
    7:59 AM: c:\program files\common files\midaddle (1 subtraces) (ID = -2147480036)
    7:59 AM: c:\program files\power scan (ID = -2147480461)
    7:59 AM: c:\program files\common files\tsa (11 subtraces) (ID = -2147480171)
    7:59 AM: c:\program files\windupdates (1 subtraces) (ID = -2147481362)
    7:59 AM: c:\windows\fleok (ID = -2147480557)
    7:59 AM: Found Adware: alset helpexpress
    7:59 AM: c:\program files\alset (4 subtraces) (ID = -2147481444)
    7:59 AM: c:\documents and settings\all users\start menu\programs\gain publishing (ID = -2147480950)
    7:59 AM: Found Adware: wild media - statblaster
    7:59 AM: c:\program files\media\media (2 subtraces) (ID = -2147480222)
    7:59 AM: c:\program files\common files\winsoftware (1 subtraces) (ID = -2147476682)
    7:59 AM: c:\program files\winfixer 2005 (1 subtraces) (ID = -2147476702)
    7:59 AM: c:\program files\aproposclient (ID = -2147481421)
    7:59 AM: c:\program files\clipgenie (ID = -2147481243)
    8:00 AM: kcdje.log (ID = 56714)
    8:00 AM: zpbrf.dat (ID = 56714)
    8:00 AM: stnzf.dat (ID = 56714)
    8:00 AM: eldso.dat (ID = 56714)
    8:00 AM: iyqbz.log (ID = 56714)
    8:00 AM: kgcib.log (ID = 56714)
    8:00 AM: mpdud.dat (ID = 56714)
    8:00 AM: bgmyp.dat (ID = 56714)
    8:00 AM: houqh.dat (ID = 56714)
    8:00 AM: mqgop.dat (ID = 56447)
    8:00 AM: emnik.dat (ID = 56714)
    8:00 AM: lieey.dat:ehyaf (ID = 56714)
    8:00 AM: jxwyz.dat (ID = 56714)
    8:00 AM: dsyye.dat (ID = 56711)
    8:00 AM: zasno.dat (ID = 56447)
    8:00 AM: lieey.dat (ID = 56714)
    8:00 AM: xptsh.dat (ID = 56714)
    8:00 AM: ylqdk.dat (ID = 56711)
    8:00 AM: sdzbb.dat (ID = 56714)
    8:00 AM: vqhtv.txt (ID = 56714)
    8:00 AM: addig.dll:bbjnf (ID = 56714)
    8:00 AM: uninst.exe:nkdnz (ID = 56714)
    8:00 AM: qyvte.dat (ID = 56714)
    8:00 AM: a4w.ini:qagvi (ID = 56447)
    8:01 AM: zaaqi.dat (ID = 56447)
    8:01 AM: jtahb.dat (ID = 56714)
    8:01 AM: ggncc.dat (ID = 56714)
    8:01 AM: dxogb.log (ID = 56447)
    8:01 AM: bdzte.dat (ID = 56714)
    8:01 AM: kqpjn.dat (ID = 56447)
    8:01 AM: ocxuh.dat:ewuxt (ID = 56287)
    8:01 AM: qsgfg.dat (ID = 56711)
    8:01 AM: zwkyy.dat (ID = 56714)
    8:01 AM: dpldx.dat (ID = 56447)
    8:01 AM: yyhpm.dat (ID = 56714)
    8:01 AM: qinze.txt (ID = 56714)
    8:01 AM: ftwzk.dat (ID = 56711)
    8:01 AM: sbkvc.log (ID = 56711)
    8:01 AM: ijzxw.txt (ID = 56447)
    8:01 AM: rktac.log (ID = 56447)
    8:01 AM: feyot.dat (ID = 56714)
    8:01 AM: rsori.txt (ID = 56447)
    8:02 AM: fgkgi.log (ID = 56447)
    8:02 AM: rfkdz.dat (ID = 56447)
    8:02 AM: sbkvc.log:tccmg (ID = 56714)
    8:02 AM: dict.dat (ID = 54052)
    8:02 AM: lmphp.dat (ID = 56447)
    8:02 AM: mvcxg.log (ID = 56447)
    8:03 AM: ewvda.dat (ID = 56711)
    8:03 AM: chram.dat (ID = 56714)
    8:03 AM: rlwuh.dat (ID = 56714)
    8:03 AM: key2.txt:eek:ukzq (ID = 56447)
    8:03 AM: comsetup.log:cfzfd (ID = 56711)
    8:03 AM: hbyac.dat (ID = 56447)
    8:03 AM: vtvck.dat (ID = 56447)
    8:03 AM: greenstone.bmp:fkozo (ID = 56447)
    8:03 AM: umqfd.dat (ID = 56447)
    8:03 AM: bkrcz.log (ID = 56711)
    8:04 AM: xwoyf.dat (ID = 56711)
    8:04 AM: yhdtc.txt (ID = 56711)
    8:04 AM: dc1257.dll (ID = 83366)
    8:04 AM: mzfym.dat (ID = 56447)
    8:04 AM: kqddy.txt (ID = 56447)
    8:04 AM: fjbfs.dat (ID = 56714)
    8:04 AM: ocxuh.dat (ID = 56711)
    8:04 AM: jnwkt.txt (ID = 56714)
    8:05 AM: qyhvc.log (ID = 56447)
    8:05 AM: rwpxz.dat (ID = 56447)
    8:05 AM: jxicb.dat (ID = 56711)
    8:05 AM: wvouc.dat (ID = 56447)
    8:05 AM: vmmreg32.dll:zczjc (ID = 56447)
    8:05 AM: t30debuglogfile.txt:tnkhu (ID = 56447)
    8:05 AM: sti_trace.log:nfuia (ID = 56447)
    8:06 AM: nusuj.dat (ID = 56447)
    8:06 AM: itblq.dat (ID = 56447)
    8:06 AM: svcpack.log:gffov (ID = 56447)
    8:06 AM: kwmhd.dat (ID = 56711)
    8:06 AM: winfixer 2005.lnk (ID = 162516)
    8:06 AM: xfqmh.dat (ID = 56447)
    8:06 AM: ypdor.dat (ID = 56711)
    8:06 AM: hxcqe.dat (ID = 56711)
    8:06 AM: qmdjh.dat (ID = 56447)
    8:06 AM: uoyhf.log (ID = 56711)
    8:06 AM: reglocs.old:hntks (ID = 56447)
    8:06 AM: result.qtw:zoeqm (ID = 56447)
    8:06 AM: rlwuh.dat:sowvh (ID = 56447)
    8:06 AM: wmprfsky.prx:buyir (ID = 56447)
    8:06 AM: hbohf.dat (ID = 56447)
    8:06 AM: mfchi.dll:dfqjt (ID = 56447)
    8:06 AM: gxiyu.dat (ID = 56447)
    8:06 AM: zibvh.dat (ID = 56711)
    8:06 AM: wptlg.dat (ID = 56447)
    8:06 AM: tgps.key:lnvuo (ID = 56711)
    8:06 AM: wmprftrk.prx:mvrnl (ID = 56711)
    8:07 AM: uenjy.dat (ID = 56711)
    8:07 AM: jsyek.txt (ID = 56711)
    8:07 AM: ylrcd.dat (ID = 56711)
    8:07 AM: atlwb.dll:msvnt (ID = 56447)
    8:07 AM: edjyp.dat (ID = 56447)
    8:07 AM: Found Adware: keenvalue/perfectnav
    8:07 AM: dc163.exe (ID = 65009)
    8:07 AM: aeher.dat (ID = 56711)
    8:07 AM: djnvv.dat (ID = 56287)
    8:07 AM: hcohs.dat (ID = 56447)
    8:07 AM: yotvc.dat (ID = 56711)
    8:07 AM: iubjv.dat (ID = 56711)
    8:08 AM: wmprfplk.prx:qcoii (ID = 56447)
    8:08 AM: taskman.exe:saxhy (ID = 56714)
    8:09 AM: wmprfsky.prx:jdhol (ID = 56447)
    8:09 AM: ibsoq.dat (ID = 56714)
    8:09 AM: wmprftrk.prx:bertf (ID = 56447)
    8:09 AM: gklbk.dat (ID = 56447)
    8:09 AM: key2.txt (ID = 51468)
    8:10 AM: q315000.log:alkor (ID = 56447)
    8:10 AM: qbwcd.ini:tmdut (ID = 56711)
    8:10 AM: oncxa.dat (ID = 56447)
    8:10 AM: ipqy.dll:cjrta (ID = 56447)
    8:10 AM: bxpqi.dat (ID = 56714)
    8:10 AM: iyqbz.log:mkcgc (ID = 56711)
    8:11 AM: javalz32.dll:fkvlw (ID = 56714)
    8:12 AM: syssn32.dll:qeerj (ID = 56447)
    8:12 AM: xbdze.log (ID = 56447)
    8:12 AM: humce.dat (ID = 56711)
    8:12 AM: mprmz.log (ID = 56714)
    8:12 AM: taskman.exe:ifwxl (ID = 56447)
    8:12 AM: rlwuh.dat:iazts (ID = 56447)
    8:12 AM: dahotfix.log:vfskf (ID = 56714)
    8:12 AM: s3gamma.cfg:abshm (ID = 56711)
    8:13 AM: kutnp.dat (ID = 56711)
    8:14 AM: lbclx.dat (ID = 56711)
    8:15 AM: Found Adware: commonname
    8:15 AM: dfs.dat (ID = 53778)
    8:15 AM: createbookmark.htm (ID = 53770)
    8:15 AM: createnote.htm (ID = 53771)
    8:15 AM: giedr.dat (ID = 56447)
    8:15 AM: ikssi.dat (ID = 56714)
    8:17 AM: pojht.txt (ID = 56447)
    8:17 AM: ntxw32.dll:lvckq (ID = 56447)
    8:17 AM: Found Adware: great net downloadware
    8:17 AM: 75.dl (ID = 59290)
    8:18 AM: dpqpz.dat (ID = 56714)
    8:18 AM: vbaddin.ini:pbgwa (ID = 56447)
    8:18 AM: setup.inf (ID = 50157)
    8:18 AM: regopt.log:dxwxa (ID = 56714)
    8:18 AM: twunk_16.exe:nxhpj (ID = 56714)
    8:18 AM: gbpax.dat:rtzfk (ID = 56447)
    8:18 AM: graph5.ini:kmjln (ID = 56447)
    8:19 AM: ljanv.dat (ID = 56447)
    8:19 AM: oguxt.dat (ID = 56447)
    8:19 AM: kuyml.dat (ID = 56447)
    8:19 AM: egrjg.dat (ID = 56711)
    8:19 AM: qetjw.log (ID = 56447)
    8:19 AM: dc1583.exe (ID = 88870)
    8:19 AM: ektsp.dat (ID = 56711)
    8:20 AM: wmprfesp.prx:xtlef (ID = 56447)
    8:20 AM: nsznr.log (ID = 56447)
    8:20 AM: Found Trojan Horse: vesbiz downloader
    8:20 AM: dc294.dat (ID = 82718)
    8:21 AM: wmprfnor.prx:jcefg (ID = 56447)
    8:21 AM: wmprfrus.prx:bdoti (ID = 56447)
    8:21 AM: wmprfsve.prx:udhyc (ID = 56447)
    8:21 AM: Found Adware: virtualbouncer
    8:21 AM: innervbinstall.log (ID = 82805)
    8:21 AM: dvlsj.log (ID = 56714)
    8:21 AM: hpinfo.lnk:nutfk (ID = 56714)
    8:21 AM: qfxvt.txt (ID = 56714)
    8:21 AM: croy32.dll:xdsle (ID = 56711)
    8:22 AM: gbpax.dat (ID = 56714)
    8:22 AM: glbuv.log (ID = 56447)
    8:22 AM: rmeer.log (ID = 56711)
    8:22 AM: class-barrel (ID = 78229)
    8:23 AM: vocabulary (ID = 78283)
    8:24 AM: icoa.ini:yhkih (ID = 56714)
    8:25 AM: qdow_as2.dll (ID = 85289)
    8:25 AM: drrhx.dat (ID = 56447)
    8:25 AM: weather.ini:sdrpw (ID = 56447)
    8:25 AM: ajmws.dat (ID = 56711)
    8:25 AM: pzaul.txt (ID = 56447)
    8:26 AM: wmprfjpn.prx:iuwxb (ID = 56447)
    8:26 AM: cmpck.dls (ID = 59527)
    8:27 AM: reg.prm:rkxsk (ID = 56447)
    8:27 AM: kplgb.dat (ID = 56447)
    8:27 AM: nljxy.dat (ID = 56711)
    8:27 AM: ybrzl.dat (ID = 56447)
    8:28 AM: afcvy.dat (ID = 56711)
    8:29 AM: wmprfplk.prx:bvhcv (ID = 56447)
    8:29 AM: regopt.log:jkqxe (ID = 56711)
    8:29 AM: vjuyy.dat (ID = 56714)
    8:30 AM: Found Adware: searchbarhtml
    8:30 AM: securityid=817093-ms03-011&privacyapi32=x292.html (ID = 74908)
    8:30 AM: svroy.dat (ID = 56447)
    8:30 AM: searchbar.html (ID = 74907)
    8:30 AM: uykkl.dat (ID = 56711)
    8:30 AM: search.html (ID = 74906)
    8:30 AM: oguxt.dat:wxfdn (ID = 56451)
    8:31 AM: ffbjz.dat (ID = 56447)
    8:31 AM: gyhej.dat (ID = 56711)
    8:31 AM: itfug.dat (ID = 56714)
    8:31 AM: keenvalueinstall_117.exe (ID = 64909)
    8:32 AM: wmprfhun.prx:rjepq (ID = 56447)
    8:32 AM: wmprfptb.prx:udiin (ID = 56714)
    8:32 AM: wmprfnld.prx:bkpvt (ID = 56711)
    8:32 AM: addremln.inf (ID = 83092)
    8:33 AM: syssn32.dll:aamcd (ID = 56447)
    8:33 AM: iyqbz.log:djtfi (ID = 56447)
    8:34 AM: addremln.cab (ID = 83091)
    8:34 AM: q315403.log:zbuby (ID = 56447)
    8:34 AM: javalz32.dll:vbmlc (ID = 56711)
    8:34 AM: qbwcd.ini:scnha (ID = 56711)
    8:35 AM: javauh32.dll:eek:cwqe (ID = 56711)
    8:35 AM: topo.ini:bfhcf (ID = 56714)
    8:35 AM: tsoc.log:donzq (ID = 56714)
    8:35 AM: tsoc.log:uwpjp (ID = 56711)
    8:36 AM: enhtb.exe (ID = 63347)
    8:36 AM: msbbi.exe (ID = 70568)
    8:36 AM: dc1147.exe (ID = 88141)
    8:36 AM: mmaker4b.exe (ID = 59685)
    8:36 AM: mmaker4b.exe (ID = 59685)
    8:36 AM: mmaker4b.exe (ID = 59685)
    8:36 AM: mmaker4b.exe (ID = 59685)
    8:36 AM: mmaker4b.exe (ID = 59685)
    8:36 AM: mmaker4b.exe (ID = 59685)
    8:36 AM: mmaker4b.exe (ID = 59685)
    8:36 AM: mmaker4b.exe (ID = 59685)
    8:36 AM: mmaker4b.exe (ID = 59685)
    8:36 AM: mmaker4b.exe (ID = 59685)
    8:37 AM: install.dll (ID = 53285)
    8:37 AM: mmaker4b.exe (ID = 59685)
    8:37 AM: mmaker4b.exe (ID = 59685)
    8:37 AM: mmaker4b.exe (ID = 59685)
    8:37 AM: mmaker4b.exe (ID = 59685)
    8:37 AM: mmaker4b.exe (ID = 59685)
    8:37 AM: mmaker4b.exe (ID = 59685)
    8:37 AM: mmaker4b.exe (ID = 59685)
    8:37 AM: mmaker4b.exe (ID = 59685)
    8:37 AM: mmaker4b.exe (ID = 59685)
    8:37 AM: mmaker4b.exe (ID = 59685)
    8:37 AM: mmaker4b.exe (ID = 59685)
    8:38 AM: abole.dat (ID = 56714)
    8:38 AM: move your stuff.ico:gzbup (ID = 56714)
    8:38 AM: softchoice.ico:vebvg (ID = 56447)
    8:38 AM: lifeclips tape to dvd.ico:zudek (ID = 56711)
    8:39 AM: vx2.nls (ID = 50917)
    8:39 AM: vx2x.nls (ID = 50922)
    8:39 AM: cduww.txt (ID = 56447)
    8:39 AM: cfpwg.dat (ID = 56447)
    8:39 AM: cjors.txt (ID = 56711)
    8:40 AM: dlghh.dat (ID = 56447)
    8:40 AM: vx0.nls (ID = 50890)
    8:40 AM: cpfbr.dat (ID = 56447)
    8:40 AM: cpfbr.dat:bwjmj (ID = 56447)
    8:40 AM: pcheck.dll (ID = 119204)
    8:40 AM: installer_marketing48x.exe (ID = 116175)
    8:40 AM: installer_marketing48x.exe (ID = 116175)
    8:40 AM: bb-macaw[1].scr:xtosn (ID = 56447)
    8:40 AM: qdow_as2.dll (ID = 85289)
    8:41 AM: pejgx.dat (ID = 56711)
    8:41 AM: pjemo.dat (ID = 56711)
    8:41 AM: cdac14ba.dll:enzqu (ID = 56447)
    8:41 AM: clipg.exe (ID = 53038)
    8:42 AM: stiim.dat (ID = 56447)
    8:43 AM: setup.exe (ID = 122245)
    8:43 AM: dc1612.exe (ID = 119184)
    8:45 AM: zmbyo.txt (ID = 56451)
    8:45 AM: sphrw.txt (ID = 56447)
    8:45 AM: kqzwq.dat (ID = 56711)
    8:45 AM: vaxvd.dat (ID = 56447)
    8:45 AM: dsyye.dat:zjyjr (ID = 56714)
    8:47 AM: iewo.dll:gghjd (ID = 56447)
    8:48 AM: mmaker4b.exe (ID = 59685)
    8:48 AM: jbzcw.dat (ID = 56447)
    8:49 AM: syssn32.dll:rutlr (ID = 56447)
    8:49 AM: mmaker4b.exe (ID = 59685)
    8:50 AM: graph5.ini:vnhql (ID = 56447)
    8:50 AM: kesyq.dat (ID = 56711)
    8:51 AM: mmaker4b.exe (ID = 59685)
    8:51 AM: mmaker4b.exe (ID = 59685)
    8:51 AM: uwyby.log (ID = 56447)
     
  15. greendrag200

    greendrag200 Thread Starter

    Joined:
    Jan 27, 2006
    Messages:
    16
    8:52 AM: ffepz.txt (ID = 56711)
    8:53 AM: 3.dat (ID = 82718)
    8:53 AM: ir.exe (ID = 82718)
    8:53 AM: qtw.ini:swlfe (ID = 56711)
    8:53 AM: cpvqq.dat (ID = 56711)
    8:53 AM: wafnd.dat (ID = 56714)
    8:53 AM: ctldl.dat (ID = 56447)
    8:53 AM: ewway.dat (ID = 56711)
    8:53 AM: xhows.dat (ID = 56714)
    8:53 AM: sysmf.dll:hzuob (ID = 56447)
    8:53 AM: oxqoj.dat (ID = 56447)
    8:54 AM: dc204.url (ID = 74891)
    8:54 AM: dc203.url (ID = 74887)
    8:54 AM: dc207.url (ID = 74913)
    8:54 AM: dc205.url (ID = 74901)
    8:54 AM: dc202.url (ID = 74878)
    8:54 AM: dc206.url (ID = 74912)
    8:54 AM: news.url (ID = 74902)
    8:54 AM: free dvds.url (ID = 74892)
    8:54 AM: sex toys.url (ID = 74909)
    8:54 AM: lingerie.url (ID = 74900)
    8:54 AM: pornstars.url (ID = 74905)
    8:54 AM: amateur.url (ID = 74875)
    8:54 AM: anal.url (ID = 74876)
    8:55 AM: anime & toons.url (ID = 74877)
    8:55 AM: asian.url (ID = 74879)
    8:55 AM: big dicks.url (ID = 74880)
    8:55 AM: big tits.url (ID = 74881)
    8:55 AM: black.url (ID = 74882)
    8:55 AM: celebrities.url (ID = 74884)
    8:55 AM: classic.url (ID = 74885)
    8:55 AM: cumshots.url (ID = 74886)
    8:55 AM: fat women.url (ID = 74888)
    8:55 AM: fetish.url (ID = 74889)
    8:55 AM: for women.url (ID = 74890)
    8:55 AM: gay.url (ID = 74893)
    8:55 AM: hairy women.url (ID = 74894)
    8:55 AM: hardcore.url (ID = 74895)
    8:55 AM: international.url (ID = 74896)
    8:55 AM: interracial.url (ID = 74897)
    8:55 AM: latin.url (ID = 74898)
    8:55 AM: lesbian.url (ID = 74899)
    8:55 AM: older women.url (ID = 74903)
    8:55 AM: orgies.url (ID = 74904)
    8:55 AM: shemale.url (ID = 74910)
    8:55 AM: teens.url (ID = 74911)
    8:55 AM: polall1r.inf (ID = 83425)
    8:55 AM: dc1165.inf (ID = 61287)
    8:55 AM: dc27.url (ID = 74891)
    8:55 AM: dc26.url (ID = 74887)
    8:55 AM: dc30.url (ID = 74901)
    8:55 AM: free dvds.url (ID = 74892)
    8:55 AM: sex toys.url (ID = 74909)
    8:55 AM: sexy lingerie.url (ID = 74900)
    8:55 AM: amateur videos.url (ID = 74875)
    8:55 AM: anal videos.url (ID = 74876)
    8:55 AM: anime & toons.url (ID = 74877)
    8:55 AM: asian videos.url (ID = 74879)
    8:55 AM: big dicks on video.url (ID = 74880)
    8:55 AM: big tits on video.url (ID = 74881)
    8:55 AM: black videos.url (ID = 74882)
    8:55 AM: celebrities.url (ID = 74884)
    8:55 AM: classic porn.url (ID = 74885)
    8:55 AM: cumshots on video.url (ID = 74886)
    8:55 AM: fat women on video.url (ID = 74888)
    8:55 AM: fetish videos.url (ID = 74889)
    8:55 AM: gay videos.url (ID = 74893)
    8:55 AM: hairy girls on video.url (ID = 74894)
    8:55 AM: hardcore videos.url (ID = 74895)
    8:55 AM: ethnic & international.url (ID = 74896)
    8:55 AM: interracial videos.url (ID = 74897)
    8:55 AM: latin videos.url (ID = 74898)
    8:56 AM: lesbian videos.url (ID = 74899)
    8:56 AM: older women on video.url (ID = 74903)
    8:56 AM: orgies & ****fests.url (ID = 74904)
    8:56 AM: pornstars.url (ID = 74905)
    8:56 AM: shemale videos.url (ID = 74910)
    8:56 AM: teen videos.url (ID = 74911)
    8:56 AM: videos for women.url (ID = 74890)
    8:56 AM: polall1r.inf (ID = 83425)
    8:56 AM: polall1r.inf (ID = 83425)
    8:56 AM: polall1r.inf (ID = 83425)
    8:56 AM: farmmext.inf (ID = 83281)
    8:56 AM: farmmext.inf (ID = 83281)
    8:56 AM: rws.dat (ID = 53812)
    8:56 AM: global.cfg (ID = 146968)
    8:56 AM: emaillink.htm (ID = 53781)
    8:56 AM: navigate.htm (ID = 53803)
    8:56 AM: exit.dat (ID = 53783)
    8:56 AM: url8.dat (ID = 53834)
    8:56 AM: url9.dat (ID = 53835)
    8:56 AM: farmmext.inf (ID = 83281)
    8:56 AM: dc137.inf (ID = 61287)
    8:56 AM: farmmext.inf (ID = 83281)
    8:56 AM: dc188.dat (ID = 64870)
    8:56 AM: adremtm2.inf (ID = 59445)
    8:56 AM: adremtm2.inf (ID = 59445)
    8:56 AM: osd319.osd (ID = 60005)
    8:56 AM: farmmext.inf (ID = 83281)
    8:56 AM: install.inf (ID = 53286)
    8:56 AM: dc345.inf (ID = 83498)
    8:56 AM: dc341.inf (ID = 83498)
    8:56 AM: adremtm2.inf (ID = 59445)
    8:56 AM: osd353.osd (ID = 60007)
    8:56 AM: dc697.dat (ID = 64870)
    8:56 AM: adremtm2.inf (ID = 59445)
    8:56 AM: ceres.inf (ID = 83250)
    8:56 AM: ceres.inf (ID = 83250)
    8:58 AM: adremtm2.inf (ID = 59445)
    8:58 AM: farmmext.inf (ID = 83281)
    8:58 AM: farmmext.inf (ID = 83281)
    8:58 AM: banner.inf (ID = 83145)
    8:58 AM: setup.inf (ID = 107202)
    8:58 AM: winfixer 2005 on the web.lnk (ID = 114865)
    8:58 AM: contact customer support.lnk (ID = 114863)
    8:58 AM: Warning: Invalid file - not a PKZip file
    8:58 AM: Warning: Invalid file - not a PKZip file
    8:58 AM: Warning: Invalid file - not a PKZip file
    8:58 AM: Warning: Invalid file - not a PKZip file
    8:58 AM: Warning: Invalid file - not a PKZip file
    8:58 AM: Warning: Invalid file - not a PKZip file
    8:58 AM: Warning: Invalid file - not a PKZip file
    8:58 AM: Warning: Invalid file - not a PKZip file
    8:58 AM: Warning: Invalid file - not a PKZip file
    8:58 AM: Warning: Invalid file - not a PKZip file
    8:58 AM: Warning: Invalid file - not a PKZip file
    8:58 AM: Warning: Invalid file - not a PKZip file
    8:58 AM: Warning: Invalid file - not a PKZip file
    8:58 AM: Warning: Invalid file - not a PKZip file
    8:58 AM: Warning: Invalid file - not a PKZip file
    8:58 AM: Warning: Invalid file - not a PKZip file
    8:58 AM: Warning: Invalid file - not a PKZip file
    8:58 AM: Warning: Invalid file - not a PKZip file
    8:58 AM: Warning: Invalid file - not a PKZip file
    8:58 AM: Warning: Invalid file - not a PKZip file
    8:58 AM: Warning: Invalid file - not a PKZip file
    8:58 AM: Warning: Invalid file - not a PKZip file
    8:58 AM: Warning: Invalid file - not a PKZip file
    8:58 AM: Warning: Invalid file - not a PKZip file
    8:58 AM: Warning: Invalid file - not a PKZip file
    8:58 AM: Warning: Invalid file - not a PKZip file
    8:58 AM: Warning: Invalid file - not a PKZip file
    8:58 AM: Warning: Invalid file - not a PKZip file
    8:58 AM: Warning: Invalid file - not a PKZip file
    8:58 AM: Warning: Invalid file - not a PKZip file
    8:58 AM: Warning: Invalid file - not a PKZip file
    8:58 AM: Warning: Invalid file - not a PKZip file
    8:58 AM: Warning: Invalid file - not a PKZip file
    8:58 AM: Warning: Invalid file - not a PKZip file
    8:58 AM: Warning: Invalid file - not a PKZip file
    8:58 AM: Warning: Invalid file - not a PKZip file
    8:58 AM: Warning: Invalid file - not a PKZip file
    8:58 AM: Warning: Invalid file - not a PKZip file
    8:58 AM: Warning: Invalid file - not a PKZip file
    8:58 AM: Warning: Invalid file - not a PKZip file
    8:58 AM: Warning: Invalid file - not a PKZip file
    8:58 AM: Warning: Invalid file - not a PKZip file
    8:58 AM: Warning: Invalid file - not a PKZip file
    8:58 AM: Warning: Invalid file - not a PKZip file
    8:58 AM: Warning: Invalid file - not a PKZip file
    8:58 AM: Warning: Invalid file - not a PKZip file
    8:58 AM: Warning: Invalid file - not a PKZip file
    8:58 AM: Warning: Invalid file - not a PKZip file
    8:58 AM: Warning: Invalid file - not a PKZip file
    8:58 AM: Warning: Invalid file - not a PKZip file
    8:58 AM: Warning: Invalid file - not a PKZip file
    8:58 AM: Warning: Invalid file - not a PKZip file
    8:58 AM: Warning: Invalid file - not a PKZip file
    8:58 AM: Warning: Invalid file - not a PKZip file
    8:58 AM: Warning: Invalid file - not a PKZip file
    8:58 AM: Warning: Invalid file - not a PKZip file
    8:58 AM: Warning: Invalid file - not a PKZip file
    8:58 AM: Warning: Invalid file - not a PKZip file
    8:58 AM: Warning: Invalid file - not a PKZip file
    8:58 AM: Warning: Invalid file - not a PKZip file
    8:58 AM: Warning: Invalid file - not a PKZip file
    8:58 AM: Warning: Invalid file - not a PKZip file
    8:58 AM: Warning: Invalid file - not a PKZip file
    8:58 AM: Warning: Invalid file - not a PKZip file
    9:15 AM: Warning: Unhandled Archive Type
    9:20 AM: Warning: Invalid Stream
    9:20 AM: Warning: Invalid file - not a PKZip file
    9:20 AM: Warning: Invalid file - not a PKZip file
    9:20 AM: Warning: Invalid file - not a PKZip file
    9:20 AM: Warning: Invalid file - not a PKZip file
    9:20 AM: Warning: Invalid file - not a PKZip file
    9:20 AM: Warning: Invalid file - not a PKZip file
    9:20 AM: Warning: Invalid file - not a PKZip file
    9:20 AM: Warning: Invalid file - not a PKZip file
    9:20 AM: Warning: Invalid file - not a PKZip file
    9:20 AM: Warning: Invalid file - not a PKZip file
    9:20 AM: Warning: Invalid file - not a PKZip file
    9:20 AM: Warning: Invalid file - not a PKZip file
    9:20 AM: Warning: Invalid file - not a PKZip file
    9:20 AM: Warning: Invalid file - not a PKZip file
    9:20 AM: Warning: Invalid file - not a PKZip file
    9:20 AM: Warning: Invalid file - not a PKZip file
    9:20 AM: Warning: Invalid file - not a PKZip file
    9:20 AM: Warning: Invalid file - not a PKZip file
    9:20 AM: Warning: Invalid file - not a PKZip file
    9:20 AM: Warning: Invalid file - not a PKZip file
    9:20 AM: Warning: Invalid file - not a PKZip file
    9:20 AM: Warning: Invalid file - not a PKZip file
    9:20 AM: Warning: Invalid file - not a PKZip file
    9:20 AM: Warning: Invalid file - not a PKZip file
    9:20 AM: Warning: Invalid file - not a PKZip file
    9:20 AM: Warning: Invalid file - not a PKZip file
    9:20 AM: Warning: Invalid file - not a PKZip file
    9:20 AM: Warning: Invalid file - not a PKZip file
    9:20 AM: Warning: Invalid file - not a PKZip file
    9:20 AM: Warning: Invalid file - not a PKZip file
    9:20 AM: Warning: Invalid file - not a PKZip file
    9:20 AM: Warning: Invalid file - not a PKZip file
    9:20 AM: Warning: Invalid file - not a PKZip file
    9:20 AM: Warning: Invalid file - not a PKZip file
    9:20 AM: Warning: Invalid file - not a PKZip file
    9:20 AM: Warning: Invalid file - not a PKZip file
    9:20 AM: Warning: Invalid file - not a PKZip file
    9:20 AM: Warning: Invalid file - not a PKZip file
    9:20 AM: Warning: Invalid file - not a PKZip file
    9:20 AM: Warning: Invalid file - not a PKZip file
    9:20 AM: Warning: Invalid file - not a PKZip file
    9:20 AM: Warning: Invalid file - not a PKZip file
    9:20 AM: Warning: Invalid file - not a PKZip file
    9:20 AM: Warning: Invalid file - not a PKZip file
    9:20 AM: Warning: Invalid file - not a PKZip file
    9:20 AM: Warning: Invalid file - not a PKZip file
    9:20 AM: Warning: Invalid file - not a PKZip file
    9:20 AM: Warning: Invalid file - not a PKZip file
    9:20 AM: Warning: Invalid file - not a PKZip file
    9:20 AM: Warning: Invalid file - not a PKZip file
    9:20 AM: Warning: Invalid file - not a PKZip file
    9:20 AM: Warning: Invalid file - not a PKZip file
    9:20 AM: Warning: Invalid file - not a PKZip file
    9:20 AM: Warning: Invalid file - not a PKZip file
    9:20 AM: Warning: Invalid file - not a PKZip file
    9:20 AM: Warning: Invalid file - not a PKZip file
    9:20 AM: Warning: Invalid file - not a PKZip file
    9:20 AM: Warning: Invalid file - not a PKZip file
    9:20 AM: Warning: Invalid file - not a PKZip file
    9:20 AM: Warning: Invalid Stream
    9:21 AM: File Sweep Complete, Elapsed Time: 01:22:07
    9:21 AM: Full Sweep has completed. Elapsed time 01:30:03
    9:21 AM: Traces Found: 1771
    ********
    7:48 AM: | Start of Session, Saturday, January 28, 2006 |
    7:48 AM: Spy Sweeper started
    7:50 AM: Your spyware definitions have been updated.
    7:51 AM: | End of Session, Saturday, January 28, 2006 |
     
  16. Sponsor

As Seen On
As Seen On...

Welcome to Tech Support Guy!

Are you looking for the solution to your computer problem? Join our site today to ask your question. This site is completely free -- paid for by advertisers and donations.

If you're not already familiar with forums, watch our Welcome Guide to get started.

Join over 733,556 other people just like you!

Loading...
Thread Status:
Not open for further replies.

Short URL to this thread: https://techguy.org/437694

  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.
    Dismiss Notice