Ad-Aware SE Build 1.05 Logfile Created on:jeudi 21 avril 2005 17:26:49 Created with Ad-Aware SE Personal, free for private use. Using definitions file:SE1R40 20.04.2005 »»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»» References detected during the scan: »»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»» Lop(TAC index:7):2 total references Tracking Cookie(TAC index:3):4 total references »»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»» Definition File: ========================= Definitions File Loaded: Reference Number : SE1R40 20.04.2005 Internal build : 47 File location : C:\Program Files\Lavasoft\Ad-Aware SE Personal\defs.ref File size : 461235 Bytes Total size : 1395231 Bytes Signature data size : 1364710 Bytes Reference data size : 30009 Bytes Signatures total : 38921 Fingerprints total : 813 Fingerprints size : 29073 Bytes Target categories : 15 Target families : 650 Memory + processor status: ========================== Number of processors : 1 Processor architecture : Intel Pentium III Memory available:43 % Total physical memory:523760 kb Available physical memory:220196 kb Total page file size:1280136 kb Available on page file:936732 kb Total virtual memory:2097024 kb Available virtual memory:2047012 kb OS:Microsoft Windows XP Home Edition Service Pack 2 (Build 2600) Ad-Aware SE Settings =========================== Set : Safe mode (always request confirmation) Set : Scan active processes Set : Scan registry Set : Deep-scan registry Set : Scan my IE Favorites for banned URLs Set : Scan my Hosts file Extended Ad-Aware SE Settings =========================== Set : Unload recognized processes & modules during scan Set : Scan registry for all users instead of current user only Set : Always try to unload modules before deletion Set : During removal, unload Explorer and IE if necessary Set : Let Windows remove files in use at next reboot Set : Delete quarantined objects after restoring Set : Include basic Ad-Aware settings in log file Set : Include additional Ad-Aware settings in log file Set : Include reference summary in log file Set : Include alternate data stream details in log file Set : Play sound at scan completion if scan locates critical objects 21-04-2005 17:26:49 - Scan started. (Full System Scan) Listing running processes »»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»» #:1 [smss.exe] FilePath : \SystemRoot\System32\ ProcessID : 704 ThreadCreationTime : 21-04-2005 15:16:17 BasePriority : Normal #:2 [csrss.exe] FilePath : \??\C:\WINDOWS\system32\ ProcessID : 756 ThreadCreationTime : 21-04-2005 15:16:19 BasePriority : Normal #:3 [winlogon.exe] FilePath : \??\C:\WINDOWS\system32\ ProcessID : 780 ThreadCreationTime : 21-04-2005 15:16:20 BasePriority : High #:4 [services.exe] FilePath : C:\WINDOWS\system32\ ProcessID : 824 ThreadCreationTime : 21-04-2005 15:16:20 BasePriority : Normal FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158) ProductVersion : 5.1.2600.2180 ProductName : Système d'exploitation Microsoft® Windows® CompanyName : Microsoft Corporation FileDescription : Applications Services et Contrôleur InternalName : services.exe LegalCopyright : © Microsoft Corporation. Tous droits réservés. OriginalFilename : services.exe #:5 [lsass.exe] FilePath : C:\WINDOWS\system32\ ProcessID : 836 ThreadCreationTime : 21-04-2005 15:16:20 BasePriority : Normal FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158) ProductVersion : 5.1.2600.2180 ProductName : Microsoft® Windows® Operating System CompanyName : Microsoft Corporation FileDescription : LSA Shell (Export Version) InternalName : lsass.exe LegalCopyright : © Microsoft Corporation. All rights reserved. OriginalFilename : lsass.exe #:6 [ati2evxx.exe] FilePath : C:\WINDOWS\System32\ ProcessID : 980 ThreadCreationTime : 21-04-2005 15:16:20 BasePriority : Normal #:7 [svchost.exe] FilePath : C:\WINDOWS\system32\ ProcessID : 992 ThreadCreationTime : 21-04-2005 15:16:20 BasePriority : Normal FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158) ProductVersion : 5.1.2600.2180 ProductName : Microsoft® Windows® Operating System CompanyName : Microsoft Corporation FileDescription : Generic Host Process for Win32 Services InternalName : svchost.exe LegalCopyright : © Microsoft Corporation. All rights reserved. OriginalFilename : svchost.exe #:8 [svchost.exe] FilePath : C:\WINDOWS\system32\ ProcessID : 1052 ThreadCreationTime : 21-04-2005 15:16:21 BasePriority : Normal FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158) ProductVersion : 5.1.2600.2180 ProductName : Microsoft® Windows® Operating System CompanyName : Microsoft Corporation FileDescription : Generic Host Process for Win32 Services InternalName : svchost.exe LegalCopyright : © Microsoft Corporation. All rights reserved. OriginalFilename : svchost.exe #:9 [svchost.exe] FilePath : C:\WINDOWS\System32\ ProcessID : 1140 ThreadCreationTime : 21-04-2005 15:16:21 BasePriority : Normal FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158) ProductVersion : 5.1.2600.2180 ProductName : Microsoft® Windows® Operating System CompanyName : Microsoft Corporation FileDescription : Generic Host Process for Win32 Services InternalName : svchost.exe LegalCopyright : © Microsoft Corporation. All rights reserved. OriginalFilename : svchost.exe #:10 [svchost.exe] FilePath : C:\WINDOWS\System32\ ProcessID : 1196 ThreadCreationTime : 21-04-2005 15:16:21 BasePriority : Normal FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158) ProductVersion : 5.1.2600.2180 ProductName : Microsoft® Windows® Operating System CompanyName : Microsoft Corporation FileDescription : Generic Host Process for Win32 Services InternalName : svchost.exe LegalCopyright : © Microsoft Corporation. All rights reserved. OriginalFilename : svchost.exe #:11 [svchost.exe] FilePath : C:\WINDOWS\System32\ ProcessID : 1248 ThreadCreationTime : 21-04-2005 15:16:21 BasePriority : Normal FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158) ProductVersion : 5.1.2600.2180 ProductName : Microsoft® Windows® Operating System CompanyName : Microsoft Corporation FileDescription : Generic Host Process for Win32 Services InternalName : svchost.exe LegalCopyright : © Microsoft Corporation. All rights reserved. OriginalFilename : svchost.exe #:12 [spoolsv.exe] FilePath : C:\WINDOWS\system32\ ProcessID : 1536 ThreadCreationTime : 21-04-2005 15:16:21 BasePriority : Normal FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158) ProductVersion : 5.1.2600.2180 ProductName : Microsoft® Windows® Operating System CompanyName : Microsoft Corporation FileDescription : Spooler SubSystem App InternalName : spoolsv.exe LegalCopyright : © Microsoft Corporation. All rights reserved. OriginalFilename : spoolsv.exe #:13 [aswupdsv.exe] FilePath : C:\Program Files\Alwil Software\Avast4\ ProcessID : 1828 ThreadCreationTime : 21-04-2005 15:16:29 BasePriority : Normal #:14 [ashserv.exe] FilePath : C:\Program Files\Alwil Software\Avast4\ ProcessID : 1856 ThreadCreationTime : 21-04-2005 15:16:29 BasePriority : High FileVersion : 4, 6, 622, 0 ProductVersion : 4, 6, 0, 0 ProductName : avast! Antivirus FileDescription : avast! antivirus service InternalName : aswServ LegalCopyright : Copyright (c) 2005 ALWIL Software OriginalFilename : aswServ.exe #:15 [nprotect.exe] FilePath : C:\Program Files\Norton Utilities\ ProcessID : 1920 ThreadCreationTime : 21-04-2005 15:16:32 BasePriority : Normal FileVersion : 15.03.0.36 ProductVersion : 15.03.0.36 ProductName : Norton Utilities CompanyName : Symantec Corporation FileDescription : Norton Protection Status InternalName : NPROTECT LegalCopyright : Copyright (C) 2002 Symantec Corporation LegalTrademarks : Norton Utilities OriginalFilename : NPROTECT.EXE #:16 [nopdb.exe] FilePath : C:\Program Files\Speed Disk\ ProcessID : 2024 ThreadCreationTime : 21-04-2005 15:16:32 BasePriority : Normal FileVersion : 6.03.0.36 ProductVersion : 6.03.0.36 ProductName : Norton Speed Disk CompanyName : Symantec Corporation FileDescription : NOPDB InternalName : NOPDB LegalCopyright : Copyright (C) 2002 OriginalFilename : NOPDB.dll #:17 [ati2evxx.exe] FilePath : C:\WINDOWS\system32\ ProcessID : 308 ThreadCreationTime : 21-04-2005 15:16:33 BasePriority : Normal #:18 [explorer.exe] FilePath : C:\WINDOWS\ ProcessID : 436 ThreadCreationTime : 21-04-2005 15:16:33 BasePriority : Normal FileVersion : 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158) ProductVersion : 6.00.2900.2180 ProductName : Système d'exploitation Microsoft® Windows® CompanyName : Microsoft Corporation FileDescription : Explorateur Windows InternalName : explorer LegalCopyright : © Microsoft Corporation. Tous droits réservés. OriginalFilename : EXPLORER.EXE #:19 [svchost.exe] FilePath : C:\WINDOWS\System32\ ProcessID : 532 ThreadCreationTime : 21-04-2005 15:16:35 BasePriority : Normal FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158) ProductVersion : 5.1.2600.2180 ProductName : Microsoft® Windows® Operating System CompanyName : Microsoft Corporation FileDescription : Generic Host Process for Win32 Services InternalName : svchost.exe LegalCopyright : © Microsoft Corporation. All rights reserved. OriginalFilename : svchost.exe #:20 [wdfmgr.exe] FilePath : C:\WINDOWS\system32\ ProcessID : 652 ThreadCreationTime : 21-04-2005 15:16:36 BasePriority : Normal FileVersion : 5.2.3790.1230 built by: DNSRV(bld4act) ProductVersion : 5.2.3790.1230 ProductName : Microsoft® Windows® Operating System CompanyName : Microsoft Corporation FileDescription : Windows User Mode Driver Manager InternalName : WdfMgr LegalCopyright : © Microsoft Corporation. All rights reserved. OriginalFilename : WdfMgr.exe #:21 [vsmon.exe] FilePath : C:\WINDOWS\system32\ZoneLabs\ ProcessID : 684 ThreadCreationTime : 21-04-2005 15:16:36 BasePriority : Normal FileVersion : 5.1.039.004 ProductVersion : 5.1.039.004 ProductName : TrueVector Service CompanyName : Zone Labs Inc. FileDescription : TrueVector Service InternalName : vsmon LegalCopyright : Copyright © 1998-2004, Zone Labs Inc. OriginalFilename : vsmon.exe #:22 [sstray.exe] FilePath : C:\WINDOWS\system32\ ProcessID : 1336 ThreadCreationTime : 21-04-2005 15:16:38 BasePriority : Normal FileVersion : 1.00.00.0307 ProductVersion : 1.00.00.0307 ProductName : NVIDIA nForce CompanyName : NVIDIA Corporation FileDescription : NVIDIA nForce Taskbar Utility InternalName : SSTray.exe LegalCopyright : Copyright 2000-2002 NVIDIA Corporation #:23 [atiptaxx.exe] FilePath : C:\Program Files\ATI Technologies\ATI Control Panel\ ProcessID : 1356 ThreadCreationTime : 21-04-2005 15:16:38 BasePriority : Normal FileVersion : 6.14.10.5014 ProductVersion : 6.14.10.5014 ProductName : ATI Desktop Component CompanyName : ATI Technologies, Inc. FileDescription : ATI Desktop Control Panel InternalName : Atiptaxx.exe LegalCopyright : Copyright (C) 1998-2002 ATI Technologies Inc. OriginalFilename : Atiptaxx.exe #:24 [type32.exe] FilePath : C:\Program Files\Microsoft IntelliType Pro\ ProcessID : 1368 ThreadCreationTime : 21-04-2005 15:16:38 BasePriority : Normal #:25 [point32.exe] FilePath : C:\Program Files\Microsoft IntelliPoint\ ProcessID : 1376 ThreadCreationTime : 21-04-2005 15:16:38 BasePriority : Normal #:26 [lvcoms.exe] FilePath : C:\Program Files\Fichiers communs\Logitech\QCDriver\ ProcessID : 1392 ThreadCreationTime : 21-04-2005 15:16:39 BasePriority : Normal FileVersion : 6.0.0.1208 ProductVersion : 6.0.0.1208 ProductName : Logitech QuickCam CompanyName : Logitech Inc. FileDescription : LVCom Server InternalName : LVComS.exe LegalCopyright : (c) 1996-2001 Logitech. All rights reserved. OriginalFilename : LVComS.exe #:27 [msnappau.exe] FilePath : C:\Program Files\MSN Apps\Updater\01.02.3000.1001\fr-be\ ProcessID : 1408 ThreadCreationTime : 21-04-2005 15:16:39 BasePriority : Normal #:28 [ashdisp.exe] FilePath : C:\PROGRA~1\ALWILS~1\Avast4\ ProcessID : 1440 ThreadCreationTime : 21-04-2005 15:16:39 BasePriority : Normal FileVersion : 4, 6, 622, 0 ProductVersion : 4, 6, 0, 0 ProductName : avast! Antivirus FileDescription : avast! service GUI component InternalName : aswDisp LegalCopyright : Copyright (c) 2005 ALWIL Software OriginalFilename : aswDisp.exe #:29 [msgplus.exe] FilePath : C:\Program Files\MessengerPlus! 3\ ProcessID : 1448 ThreadCreationTime : 21-04-2005 15:16:39 BasePriority : Normal #:30 [zlclient.exe] FilePath : C:\Program Files\Zone Labs\ZoneAlarm\ ProcessID : 1472 ThreadCreationTime : 21-04-2005 15:16:40 BasePriority : Normal FileVersion : 5.1.039.004 ProductVersion : 5.1.039.004 ProductName : Zone Labs Client CompanyName : Zone Labs Inc. FileDescription : Zone Labs Client InternalName : zlclient LegalCopyright : Copyright © 1998-2004, Zone Labs Inc. OriginalFilename : zlclient.exe #:31 [ctfmon.exe] FilePath : C:\WINDOWS\system32\ ProcessID : 1344 ThreadCreationTime : 21-04-2005 15:16:40 BasePriority : Normal FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158) ProductVersion : 5.1.2600.2180 ProductName : Microsoft® Windows® Operating System CompanyName : Microsoft Corporation FileDescription : CTF Loader InternalName : CTFMON LegalCopyright : © Microsoft Corporation. All rights reserved. OriginalFilename : CTFMON.EXE #:32 [skype.exe] FilePath : C:\Program Files\Skype\Phone\ ProcessID : 1636 ThreadCreationTime : 21-04-2005 15:16:40 BasePriority : Normal #:33 [msmsgs.exe] FilePath : C:\Program Files\Messenger\ ProcessID : 1648 ThreadCreationTime : 21-04-2005 15:16:40 BasePriority : Normal FileVersion : 4.7.3001 ProductVersion : Version 4.7.3001 ProductName : Messenger CompanyName : Microsoft Corporation FileDescription : Windows Messenger InternalName : msmsgs LegalCopyright : Copyright (c) Microsoft Corporation 2004 LegalTrademarks : Microsoft(R) is a registered trademark of Microsoft Corporation in the U.S. and/or other countries. OriginalFilename : msmsgs.exe #:34 [hpobnz08.exe] FilePath : C:\Program Files\Hewlett-Packard\Digital Imaging\bin\ ProcessID : 1656 ThreadCreationTime : 21-04-2005 15:16:40 BasePriority : Normal FileVersion : 4.2.0.020 ProductVersion : 2.4.1.020 ProductName : hp digital imaging - hp all-in-one series CompanyName : Hewlett-Packard Co. FileDescription : HP OfficeJet COM Device Objects InternalName : HPOBNZ08 LegalCopyright : Copyright (C) Hewlett-Packard Co. 1995-2001 OriginalFilename : HPOBNZ08.EXE Comments : HP OfficeJet Series COM Device Objects #:35 [hpotdd01.exe] FilePath : C:\Program Files\Hewlett-Packard\Digital Imaging\bin\ ProcessID : 1704 ThreadCreationTime : 21-04-2005 15:16:40 BasePriority : Normal FileVersion : 1, 0, 0, 1 ProductVersion : 1, 0, 0, 1 ProductName : Hewlett-Packard hpotdd01 CompanyName : Hewlett-Packard FileDescription : hpotdd01 InternalName : hpotdd01 LegalCopyright : Copyright © 2002 OriginalFilename : hpotdd01.exe #:36 [rftray.exe] FilePath : C:\Program Files\Reality Fusion\Reality Fusion GameCam SE\Program\ ProcessID : 1720 ThreadCreationTime : 21-04-2005 15:16:40 BasePriority : Normal FileVersion : 1, 0, 0, 1 ProductVersion : 1, 0, 0, 1 ProductName : Reality Fusion Tray Application FileDescription : Reality Fusion Tray Application InternalName : RFTRAY LegalCopyright : Copyright © 2000 Reality Fusion, Inc. OriginalFilename : RFTRAY.EXE #:37 [iexplore.exe] FilePath : C:\Program Files\Internet Explorer\ ProcessID : 1612 ThreadCreationTime : 21-04-2005 15:16:41 BasePriority : Normal FileVersion : 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158) ProductVersion : 6.00.2900.2180 ProductName : Système d'exploitation Microsoft® Windows® CompanyName : Microsoft Corporation FileDescription : Internet Explorer InternalName : iexplore LegalCopyright : © Microsoft Corporation. Tous droits réservés. OriginalFilename : IEXPLORE.EXE #:38 [iexplore.exe] FilePath : c:\progra~1\intern~1\ ProcessID : 2096 ThreadCreationTime : 21-04-2005 15:16:43 BasePriority : Normal FileVersion : 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158) ProductVersion : 6.00.2900.2180 ProductName : Système d'exploitation Microsoft® Windows® CompanyName : Microsoft Corporation FileDescription : Internet Explorer InternalName : iexplore LegalCopyright : © Microsoft Corporation. Tous droits réservés. OriginalFilename : IEXPLORE.EXE Lop Object Recognized! Type : Process Data : unimdxow.exe Category : Malware Comment : (CSI MATCH) Object : c:\docume~1\user\locals~1\temp\ Warning! Lop Object found in memory(c:\docume~1\user\locals~1\temp\unimdxow.exe) "c:\docume~1\user\locals~1\temp\unimdxow.exe"Process terminated successfully "c:\progra~1\intern~1\iexplore.exe"Process terminated successfully #:39 [imapp.exe] FilePath : C:\PROGRA~1\INCRED~1\bin\ ProcessID : 2204 ThreadCreationTime : 21-04-2005 15:16:43 BasePriority : Normal FileVersion : 3, 0, 0, 1606 ProductVersion : 3, 0, 0, 1606 ProductName : IncrediMail CompanyName : IncrediMail, Ltd. FileDescription : IncrediMail Application InternalName : IncrediApp LegalCopyright : Copyright © 2002 IncrediMail, Ltd. OriginalFilename : IMAPP.EXE #:40 [iexplore.exe] FilePath : c:\progra~1\intern~1\ ProcessID : 2260 ThreadCreationTime : 21-04-2005 15:16:45 BasePriority : Normal FileVersion : 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158) ProductVersion : 6.00.2900.2180 ProductName : Système d'exploitation Microsoft® Windows® CompanyName : Microsoft Corporation FileDescription : Internet Explorer InternalName : iexplore LegalCopyright : © Microsoft Corporation. Tous droits réservés. OriginalFilename : IEXPLORE.EXE Lop Object Recognized! Type : Process Data : qlgozmou.exe Category : Malware Comment : (CSI MATCH) Object : c:\docume~1\user\locals~1\temp\ Warning! Lop Object found in memory(c:\docume~1\user\locals~1\temp\qlgozmou.exe) "c:\docume~1\user\locals~1\temp\qlgozmou.exe"Process terminated successfully "c:\progra~1\intern~1\iexplore.exe"Process terminated successfully #:41 [ashmaisv.exe] FilePath : C:\Program Files\Alwil Software\Avast4\ ProcessID : 2340 ThreadCreationTime : 21-04-2005 15:16:46 BasePriority : Normal #:42 [ashwebsv.exe] FilePath : C:\Program Files\Alwil Software\Avast4\ ProcessID : 2488 ThreadCreationTime : 21-04-2005 15:16:47 BasePriority : Normal #:43 [hpoevm08.exe] FilePath : C:\Program Files\Hewlett-Packard\Digital Imaging\bin\ ProcessID : 2600 ThreadCreationTime : 21-04-2005 15:16:47 BasePriority : Normal FileVersion : 4.2.0.020 ProductVersion : 2.4.1.020 ProductName : hp digital imaging - hp all-in-one series CompanyName : Hewlett-Packard Co. FileDescription : HP OfficeJet COM Event Manager InternalName : HPOEVM08 LegalCopyright : Copyright (C) Hewlett-Packard Co. 1995-2001 OriginalFilename : HPOEVM08.EXE Comments : HP OfficeJet COM Event Manager #:44 [msoffice.exe] FilePath : F:\Program Files\Microsoft Office\Office\1036\ ProcessID : 2760 ThreadCreationTime : 21-04-2005 15:16:48 BasePriority : Normal FileVersion : 9.0.2601 ProductVersion : 9.0.2601 ProductName : Microsoft Office 2000 CompanyName : Microsoft Corporation FileDescription : Microsoft Office 2000 component InternalName : MSOFFICE LegalCopyright : Copyright© 1994-1999 Microsoft Corporation. Tous droits réservés. OriginalFilename : MSOFFICE.EXE #:45 [alg.exe] FilePath : C:\WINDOWS\System32\ ProcessID : 2844 ThreadCreationTime : 21-04-2005 15:16:49 BasePriority : Normal FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158) ProductVersion : 5.1.2600.2180 ProductName : Microsoft® Windows® Operating System CompanyName : Microsoft Corporation FileDescription : Application Layer Gateway Service InternalName : ALG.exe LegalCopyright : © Microsoft Corporation. All rights reserved. OriginalFilename : ALG.exe #:46 [msnmsgr.exe] FilePath : C:\Program Files\MSN Messenger\ ProcessID : 3040 ThreadCreationTime : 21-04-2005 15:16:50 BasePriority : Normal FileVersion : 6.2.0205 ProductVersion : Version 6.2 ProductName : MSN Messenger CompanyName : Microsoft Corporation FileDescription : MSN Messenger InternalName : msnmsgr LegalCopyright : Copyright (c) Microsoft Corporation 1997-2004 LegalTrademarks : Microsoft(R) is a registered trademark of Microsoft Corporation in the U.S. and/or other countries. OriginalFilename : msnmsgr.exe #:47 [hpzipm12.exe] FilePath : C:\WINDOWS\System32\ ProcessID : 3308 ThreadCreationTime : 21-04-2005 15:16:54 BasePriority : Normal FileVersion : 6, 0, 0, 0 ProductVersion : 6, 0, 0, 0 ProductName : HP PML CompanyName : HP FileDescription : PML Driver InternalName : PmlDrv LegalCopyright : Copyright © 1998, 1999 Hewlett-Packard Company OriginalFilename : PmlDrv.exe #:48 [hposts08.exe] FilePath : C:\Program Files\Hewlett-Packard\Digital Imaging\Bin\ ProcessID : 1468 ThreadCreationTime : 21-04-2005 15:17:08 BasePriority : Normal FileVersion : 4.2.0.020 ProductVersion : 2.4.1.020 ProductName : hp digital imaging - hp all-in-one series CompanyName : Hewlett-Packard Co. FileDescription : HP OfficeJet Status InternalName : HPOSTS08 LegalCopyright : Copyright (C) Hewlett-Packard Co. 1995-2001 OriginalFilename : HPOSTS08.EXE Comments : HP OfficeJet Status #:49 [firefox.exe] FilePath : C:\Program Files\Mozilla Firefox\ ProcessID : 3948 ThreadCreationTime : 21-04-2005 15:18:54 BasePriority : Normal #:50 [ad-aware.exe] FilePath : C:\Program Files\Lavasoft\Ad-Aware SE Personal\ ProcessID : 328 ThreadCreationTime : 21-04-2005 15:25:56 BasePriority : Normal FileVersion : 6.2.0.206 ProductVersion : VI.Second Edition ProductName : Lavasoft Ad-Aware SE CompanyName : Lavasoft Sweden FileDescription : Ad-Aware SE Core application InternalName : Ad-Aware.exe LegalCopyright : Copyright © Lavasoft Sweden OriginalFilename : Ad-Aware.exe Comments : All Rights Reserved Memory scan result: »»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»» New critical objects: 2 Objects found so far: 2 Started registry scan »»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»» Registry Scan result: »»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»» New critical objects: 0 Objects found so far: 2 Started deep registry scan »»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»» Deep registry scan result: »»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»» New critical objects: 0 Objects found so far: 2 Started Tracking Cookie scan »»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»» Tracking cookie scan result: »»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»» New critical objects: 0 Objects found so far: 2 Deep scanning and examining files (C:) »»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»» Tracking Cookie Object Recognized! Type : IECache Entry Data : christiane@lop[2].txt Category : Data Miner Comment : Value : C:\Documents and Settings\Christiane\Cookies\christiane@lop[2].txt Tracking Cookie Object Recognized! Type : IECache Entry Data : christiane@metriweb[1].txt Category : Data Miner Comment : Value : C:\Documents and Settings\Christiane\Cookies\christiane@metriweb[1].txt Tracking Cookie Object Recognized! Type : IECache Entry Data : christiane@revenue[2].txt Category : Data Miner Comment : Value : C:\Documents and Settings\Christiane\Cookies\christiane@revenue[2].txt Tracking Cookie Object Recognized! Type : IECache Entry Data : raphael@metriweb[1].txt Category : Data Miner Comment : Value : C:\Documents and Settings\RAPHAEL\Cookies\raphael@metriweb[1].txt Disk Scan Result for C:\ »»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»» New critical objects: 0 Objects found so far: 6 Deep scanning and examining files (F:) »»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»» Disk Scan Result for F:\ »»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»» New critical objects: 0 Objects found so far: 6 Scanning Hosts file...... Hosts file location:"C:\WINDOWS\system32\drivers\etc\hosts". »»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»» Hosts file scan result: »»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»» 2 entries scanned. New critical objects:0 Objects found so far: 6 Performing conditional scans... »»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»» Conditional scan result: »»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»» New critical objects: 0 Objects found so far: 6 17:34:45 Scan Complete Summary Of This Scan »»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»» Total scanning time:00:07:55.312 Objects scanned:134919 Objects identified:6 Objects ignored:0 New critical objects:6