Incident Status Location Adware:Adware/BookMark Not disinfected c:\windows\system32\bmupdate.exe Potentially unwanted tool:Application/PRScheduler Not disinfected C:\Documents and Settings\Owner\Start Menu\Programs\Startup\PowerReg Scheduler V3.exe Adware:adware program Not disinfected c:\windows\ss3unstl.exe Potentially unwanted tool:application/need2find Not disinfected c:\program files\Need2Find Potentially unwanted tool:application/winantivirus2006 Not disinfected c:\documents and settings\all users\application data\WinAntiVirus Pro 2006 Spyware:spyware/searchcentrix Not disinfected Windows Registry Spyware:Cookie/YieldManager Not disinfected C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\8aw2yifu.default\cookies.txt[ad.yieldmanager.com/] Spyware:Cookie/YieldManager Not disinfected C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\8aw2yifu.default\cookies.txt[.ad.yieldmanager.com/] Spyware:Cookie/Yadro Not disinfected C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\8aw2yifu.default\cookies.txt[.yadro.ru/] Spyware:Cookie/Target Not disinfected C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\8aw2yifu.default\cookies.txt[.target.com/] Spyware:Cookie/BurstBeacon Not disinfected C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\8aw2yifu.default\cookies.txt[.www.burstbeacon.com/] Spyware:Cookie/RealMedia Not disinfected C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\8aw2yifu.default\cookies.txt[.realmedia.com/] Spyware:Cookie/Go Not disinfected C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\8aw2yifu.default\cookies.txt[.go.com/] Spyware:Cookie/Apmebf Not disinfected C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\8aw2yifu.default\cookies.txt[.apmebf.com/] Spyware:Cookie/Com.com Not disinfected C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\8aw2yifu.default\cookies.txt[.com.com/] Spyware:Cookie/Atwola Not disinfected C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\8aw2yifu.default\cookies.txt[.atwola.com/] Spyware:Cookie/PointRoll Not disinfected C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\8aw2yifu.default\cookies.txt[.ads.pointroll.com/] Spyware:Cookie/Zedo Not disinfected C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\8aw2yifu.default\cookies.txt[.zedo.com/] Spyware:Cookie/onestat.com Not disinfected C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\8aw2yifu.default\cookies.txt[.stat.onestat.com/] Spyware:Cookie/PointRoll Not disinfected C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\8aw2yifu.default\cookies.txt[.ads.pointroll.com/] Spyware:Cookie/Azjmp Not disinfected C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\8aw2yifu.default\cookies.txt[.azjmp.com/] Spyware:Cookie/BurstNet Not disinfected C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\8aw2yifu.default\cookies.txt[.burstnet.com/] Spyware:Cookie/Overture Not disinfected C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\8aw2yifu.default\cookies.txt[.overture.com/] Spyware:Cookie/BurstNet Not disinfected C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\8aw2yifu.default\cookies.txt[.burstnet.com/] Virus:Trj/ClassLoader.U Disinfected C:\Documents and Settings\Owner\Application Data\Sun\Java\Deployment\cache\6.0\2\77f0cf02-6f9a413c[BlackBox.class] Hacktool:Exploit/ByteVerify Not disinfected C:\Documents and Settings\Owner\Application Data\Sun\Java\Deployment\cache\6.0\2\77f0cf02-6f9a413c[VB.class] Hacktool:Exploit/ByteVerify Not disinfected C:\Documents and Settings\Owner\Application Data\Sun\Java\Deployment\cache\6.0\2\77f0cf02-6f9a413c[Dummy.class] Virus:Trj/Downloader.HAS Disinfected C:\Documents and Settings\Owner\Application Data\Sun\Java\Deployment\cache\6.0\2\77f0cf02-6f9a413c[Beyond.class] Hacktool:Exploit/ByteVerify Not disinfected C:\Documents and Settings\Owner\Application Data\Sun\Java\Deployment\cache\6.0\28\3ced631c-55725cd2[Dummy.class] Hacktool:Exploit/ByteVerify Not disinfected C:\Documents and Settings\Owner\Application Data\Sun\Java\Deployment\cache\6.0\28\3ced631c-55725cd2[Matrix.class] Hacktool:Exploit/ByteVerify Not disinfected C:\Documents and Settings\Owner\Application Data\Sun\Java\Deployment\cache\6.0\31\7e24ad9f-4abafb32[Gummy.class] Hacktool:Exploit/ByteVerify Not disinfected C:\Documents and Settings\Owner\Application Data\Sun\Java\Deployment\cache\6.0\35\5f223aa3-76030ee3[BlackBox.class] Hacktool:Exploit/ByteVerify Not disinfected C:\Documents and Settings\Owner\Application Data\Sun\Java\Deployment\cache\6.0\35\5f223aa3-76030ee3[VBUG.class] Hacktool:Exploit/ByteVerify Not disinfected C:\Documents and Settings\Owner\Application Data\Sun\Java\Deployment\cache\6.0\35\5f223aa3-76030ee3[Dummy.class] Adware:Adware/Startpage.JU Not disinfected C:\Documents and Settings\Owner\Application Data\Sun\Java\Deployment\cache\6.0\35\5f223aa3-76030ee3[Beyond.class] Adware:Adware/Startpage.JU Not disinfected C:\Documents and Settings\Owner\Application Data\Sun\Java\Deployment\cache\6.0\35\5f223aa3-76030ee3[winmodem.exe] Adware:Adware/Startpage.JK Not disinfected C:\Documents and Settings\Owner\Application Data\Sun\Java\Deployment\cache\6.0\35\5f223aa3-76030ee3[rundll32.exe] Hacktool:Exploit/ByteVerify Not disinfected C:\Documents and Settings\Owner\Application Data\Sun\Java\Deployment\cache\6.0\38\4ba476e6-7057dc8a[BlackBox.class] Hacktool:Exploit/ByteVerify Not disinfected C:\Documents and Settings\Owner\Application Data\Sun\Java\Deployment\cache\6.0\38\4ba476e6-7057dc8a[VB.class] Hacktool:Exploit/ByteVerify Not disinfected C:\Documents and Settings\Owner\Application Data\Sun\Java\Deployment\cache\6.0\38\4ba476e6-7057dc8a[Dummy.class] Hacktool:Exploit/ByteVerify Not disinfected C:\Documents and Settings\Owner\Application Data\Sun\Java\Deployment\cache\6.0\38\4ba476e6-7057dc8a[Beyond.class] Hacktool:Exploit/ByteVerify Not disinfected C:\Documents and Settings\Owner\Application Data\Sun\Java\Deployment\cache\6.0\44\1dce1b2c-1fa3123d[Gummy.class] Hacktool:Exploit/ByteVerify Not disinfected C:\Documents and Settings\Owner\Application Data\Sun\Java\Deployment\cache\6.0\44\69028f2c-474f26f1[Dummy.class] Hacktool:Exploit/ByteVerify Not disinfected C:\Documents and Settings\Owner\Application Data\Sun\Java\Deployment\cache\6.0\44\69028f2c-474f26f1[Matrix.class] Hacktool:Exploit/ByteVerify Not disinfected C:\Documents and Settings\Owner\Application Data\Sun\Java\Deployment\cache\6.0\52\1d81df4-1a4ad154[Counter.class] Hacktool:Exploit/ByteVerify Not disinfected C:\Documents and Settings\Owner\Application Data\Sun\Java\Deployment\cache\6.0\52\1d81df4-1a4ad154[VerifierBug.class] Hacktool:Exploit/ByteVerify Not disinfected C:\Documents and Settings\Owner\Application Data\Sun\Java\Deployment\cache\6.0\52\1d81df4-1a4ad154[Gummy.class] Hacktool:Exploit/ByteVerify Not disinfected C:\Documents and Settings\Owner\Application Data\Sun\Java\Deployment\cache\6.0\52\1d81df4-1a4ad154[Xeyond.class] Virus:Trj/Downloader.FY Disinfected C:\Documents and Settings\Owner\Application Data\Sun\Java\Deployment\cache\6.0\52\1d81df4-1a4ad154[web.exe] Hacktool:Exploit/ByteVerify Not disinfected C:\Documents and Settings\Owner\Application Data\Sun\Java\Deployment\cache\6.0\60\77ef64bc-158ae8bb[Mein.class] Hacktool:Exploit/ByteVerify Not disinfected C:\Documents and Settings\Owner\Application Data\Sun\Java\Deployment\cache\6.0\60\77ef64bc-158ae8bb[ProbeLoader.class] Hacktool:Exploit/ByteVerify Not disinfected C:\Documents and Settings\Owner\Application Data\Sun\Java\Deployment\cache\6.0\60\77ef64bc-158ae8bb[Dummy.class] Virus:Trojan Horse Disinfected C:\Documents and Settings\Owner\Application Data\Sun\Java\Deployment\cache\6.0\60\77ef64bc-158ae8bb[Beyond.class] Virus:Trj/Shinwow.D Disinfected C:\Documents and Settings\Owner\Application Data\Sun\Java\Deployment\cache\6.0\60\77ef64bc-158ae8bb[binny/binny.class] Hacktool:Exploit/ByteVerify Not disinfected C:\Documents and Settings\Owner\Application Data\Sun\Java\Deployment\cache\6.0\7\34062647-38513ee2[Gummy.class] Hacktool:Exploit/ByteVerify Not disinfected C:\Documents and Settings\Owner\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\Dummy.class-2eed60d1-1fac7393.class Hacktool:Exploit/ByteVerify Not disinfected C:\Documents and Settings\Owner\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\Dummy.class-531c338a-4778ec22.class Hacktool:Exploit/ByteVerify Not disinfected C:\Documents and Settings\Owner\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\ar3.jar-51b26348-241a02ca.zip[Gummy.class] Hacktool:Exploit/ByteVerify Not disinfected C:\Documents and Settings\Owner\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\ar3.jar-77402a30-1b52008d.zip[Gummy.class] Hacktool:Exploit/ByteVerify Not disinfected C:\Documents and Settings\Owner\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\ar3.jar-de04413-59d77d47.zip[Gummy.class] Hacktool:Exploit/ByteVerify Not disinfected C:\Documents and Settings\Owner\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\archive.jar-21efae72-151b8d14.zip[BlackBox.class] Hacktool:Exploit/ByteVerify Not disinfected C:\Documents and Settings\Owner\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\archive.jar-21efae72-151b8d14.zip[VB.class] Hacktool:Exploit/ByteVerify Not disinfected C:\Documents and Settings\Owner\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\archive.jar-21efae72-151b8d14.zip[Dummy.class] Hacktool:Exploit/ByteVerify Not disinfected C:\Documents and Settings\Owner\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\archive.jar-21efae72-151b8d14.zip[Beyond.class] Hacktool:Exploit/ByteVerify Not disinfected C:\Documents and Settings\Owner\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\archive.jar-487b52a0-18f5f8f1.zip[BlackBox.class] Hacktool:Exploit/ByteVerify Not disinfected C:\Documents and Settings\Owner\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\archive.jar-487b52a0-18f5f8f1.zip[VBUG.class] Hacktool:Exploit/ByteVerify Not disinfected C:\Documents and Settings\Owner\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\archive.jar-487b52a0-18f5f8f1.zip[Dummy.class] Adware:Adware/Startpage.JU Not disinfected C:\Documents and Settings\Owner\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\archive.jar-487b52a0-18f5f8f1.zip[Beyond.class] Adware:Adware/Startpage.JU Not disinfected C:\Documents and Settings\Owner\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\archive.jar-487b52a0-18f5f8f1.zip[winmodem.exe] Adware:Adware/Startpage.JK Not disinfected C:\Documents and Settings\Owner\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\archive.jar-487b52a0-18f5f8f1.zip[rundll32.exe] Hacktool:Exploit/ByteVerify Not disinfected C:\Documents and Settings\Owner\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\archive.jar-6140d4eb-5d534a83.zip[Mein.class] Hacktool:Exploit/ByteVerify Not disinfected C:\Documents and Settings\Owner\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\archive.jar-6140d4eb-5d534a83.zip[ProbeLoader.class] Hacktool:Exploit/ByteVerify Not disinfected C:\Documents and Settings\Owner\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\archive.jar-6140d4eb-5d534a83.zip[Dummy.class] Virus:Trojan Horse Disinfected C:\Documents and Settings\Owner\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\archive.jar-6140d4eb-5d534a83.zip[Beyond.class] Virus:Trj/Shinwow.D Disinfected C:\Documents and Settings\Owner\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\archive.jar-6140d4eb-5d534a83.zip[binny/binny.class] Virus:Trj/ClassLoader.U Disinfected C:\Documents and Settings\Owner\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\archive1213.jar-6f72ea5b-3dd111b7.zip[BlackBox.class] Hacktool:Exploit/ByteVerify Not disinfected C:\Documents and Settings\Owner\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\archive1213.jar-6f72ea5b-3dd111b7.zip[VB.class] Hacktool:Exploit/ByteVerify Not disinfected C:\Documents and Settings\Owner\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\archive1213.jar-6f72ea5b-3dd111b7.zip[Dummy.class] Virus:Trj/Downloader.HAS Disinfected C:\Documents and Settings\Owner\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\archive1213.jar-6f72ea5b-3dd111b7.zip[Beyond.class] Hacktool:Exploit/ByteVerify Not disinfected C:\Documents and Settings\Owner\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\Counters.jar-36e36425-6719fe2b.zip[Counter.class] Hacktool:Exploit/ByteVerify Not disinfected C:\Documents and Settings\Owner\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\Counters.jar-36e36425-6719fe2b.zip[VerifierBug.class] Hacktool:Exploit/ByteVerify Not disinfected C:\Documents and Settings\Owner\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\Counters.jar-36e36425-6719fe2b.zip[Gummy.class] Hacktool:Exploit/ByteVerify Not disinfected C:\Documents and Settings\Owner\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\Counters.jar-36e36425-6719fe2b.zip[Xeyond.class] Virus:Trj/Downloader.FY Disinfected C:\Documents and Settings\Owner\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\Counters.jar-36e36425-6719fe2b.zip[web.exe] Hacktool:Exploit/ByteVerify Not disinfected C:\Documents and Settings\Owner\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\loaderadv207.jar-2862ec18-493d8cce.zip[Dummy.class] Hacktool:Exploit/ByteVerify Not disinfected C:\Documents and Settings\Owner\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\loaderadv207.jar-2862ec18-493d8cce.zip[Matrix.class] Hacktool:Exploit/ByteVerify Not disinfected C:\Documents and Settings\Owner\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\loaderadv515.jar-4d45a8c1-78feb499.zip[Dummy.class] Hacktool:Exploit/ByteVerify Not disinfected C:\Documents and Settings\Owner\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\loaderadv515.jar-4d45a8c1-78feb499.zip[Matrix.class] Virus:Trj/Downloader.PME Disinfected C:\Documents and Settings\Owner\Local Settings\Application Data\Wildtangent\Cdacache\00\00\13.dat Hacktool:HackTool/KillProcWin.A Not disinfected C:\Documents and Settings\Owner\Local Settings\Application Data\Wildtangent\Cdacache\00\00\17.dat[simple_killw.exe] Virus:Trj/Downloader.PME Disinfected C:\Documents and Settings\Owner\Local Settings\Temp\CDASilentInstall0500.exe Hacktool:HackTool/KillProcWin.A Not disinfected C:\Documents and Settings\Owner\Local Settings\Temp\CDASilentInstall0501.exe[simple_killw.exe] Adware:Adware/BookMark Not disinfected C:\Documents and Settings\Owner\Local Settings\Temp\SAB286.ZIP[BMUpdate.exe] Adware:Adware/BookMark Not disinfected C:\Documents and Settings\Owner\Local Settings\Temp\SAB5A0.ZIP[BMUpdate.exe] Potentially unwanted tool:Application/MyWebSearch Not disinfected C:\Documents and Settings\Owner\My Documents\SmileyCentralPFSetup2.0.4.0.exe Potentially unwanted tool:Application/MyWebSearch Not disinfected C:\Documents and Settings\Owner\My Documents\SmileyCentralSetup2.0.4.15.exe Potentially unwanted tool:Application/KillApp.B Not disinfected C:\hp\bin\KillIt.exe Potentially unwanted tool:Application/Winantivirus2006 Not disinfected C:\Program Files\Common Files\Companion Wizard\compwiz.exe Potentially unwanted tool:Application/Winantivirus2006 Not disinfected C:\Program Files\Common Files\Companion Wizard\WapCHK.dll Adware:Adware/SecurityError Not disinfected C:\WINDOWS\system32\ld702E.0mp Adware:Adware/EShopper Not disinfected C:\WINDOWS\system32\m247es.exe Potentially unwanted tool:Application/MyWebSearch Not disinfected C:\WINDOWS\system32\mgsb.exe Potentially unwanted tool:Application/SpyAxe Not disinfected C:\WINDOWS\Temp\sa2C.exe Potentially unwanted tool:Application/SpyAxe Not disinfected C:\WINDOWS\Temp\sa349.exe