SUPERAntiSpyware Scan Log http://www.superantispyware.com Generated 11/04/2011 at 04:49 PM Application Version : 5.0.1134 Core Rules Database Version : 7900 Trace Rules Database Version: 5712 Scan type : Quick Scan Total Scan Time : 00:07:00 Operating System Information Windows 7 Home Premium 64-bit, Service Pack 1 (Build 6.01.7601) UAC Off - Administrator Memory items scanned : 385 Memory threats detected : 0 Registry items scanned : 60380 Registry threats detected : 2 File items scanned : 12289 File threats detected : 82 Disabled.TaskManager (x86) HKU\S-1-5-21-2235840974-3350246401-2902299489-1000\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\POLICIES\SYSTEM#DISABLETASKMGR Adware.Tracking Cookie C:\Users\USERNAME\AppData\Roaming\Microsoft\Windows\Cookies\USERNAME@2o7[2].txt [ /2o7 ] C:\Users\USERNAME\AppData\Roaming\Microsoft\Windows\Cookies\USERNAME@ads.pubmatic[1].txt [ /ads.pubmatic ] C:\Users\USERNAME\AppData\Roaming\Microsoft\Windows\Cookies\USERNAME@adserver.adtechus[1].txt [ /adserver.adtechus ] C:\Users\USERNAME\AppData\Roaming\Microsoft\Windows\Cookies\USERNAME@adtech[1].txt [ /adtech ] C:\Users\USERNAME\AppData\Roaming\Microsoft\Windows\Cookies\USERNAME@adxpose[1].txt [ /adxpose ] C:\Users\USERNAME\AppData\Roaming\Microsoft\Windows\Cookies\USERNAME@atdmt[2].txt [ /atdmt ] C:\Users\USERNAME\AppData\Roaming\Microsoft\Windows\Cookies\USERNAME@imrworldwide[2].txt [ /imrworldwide ] C:\Users\USERNAME\AppData\Roaming\Microsoft\Windows\Cookies\USERNAME@purityproducts.112.2o7[1].txt [ /purityproducts.112.2o7 ] C:\Users\USERNAME\AppData\Roaming\Microsoft\Windows\Cookies\USERNAME@r1-ads.ace.advertising[1].txt [ /r1-ads.ace.advertising ] C:\Users\USERNAME\AppData\Roaming\Microsoft\Windows\Cookies\USERNAME@ru4[2].txt [ /ru4 ] C:\Users\USERNAME\AppData\Roaming\Microsoft\Windows\Cookies\USERNAME@specificclick[1].txt [ /specificclick ] C:\Users\USERNAME\AppData\Roaming\Microsoft\Windows\Cookies\USERNAME@specificmedia[2].txt [ /specificmedia ] C:\Users\USERNAME\AppData\Roaming\Microsoft\Windows\Cookies\USERNAME@traveladvertising[2].txt [ /traveladvertising ] C:\Users\USERNAME\AppData\Roaming\Microsoft\Windows\Cookies\USERNAME@usairways.112.2o7[1].txt [ /usairways.112.2o7 ] C:\Users\USERNAME\AppData\Roaming\Microsoft\Windows\Cookies\A25SREWU.txt [ /mediaplex.com ] C:\Users\USERNAME\AppData\Roaming\Microsoft\Windows\Cookies\B5KA8S9T.txt [ /revsci.net ] C:\Users\USERNAME\AppData\Roaming\Microsoft\Windows\Cookies\CJ1IHXMF.txt [ /beacon.dmsinsights.com ] C:\Users\USERNAME\AppData\Roaming\Microsoft\Windows\Cookies\PVBBNCTP.txt [ /doubleclick.net ] C:\Users\USERNAME\AppData\Roaming\Microsoft\Windows\Cookies\TNPJBQGF.txt [ /advertising.com ] C:\Users\USERNAME\AppData\Roaming\Microsoft\Windows\Cookies\PWEGG3UY.txt [ /pointroll.com ] C:\Users\USERNAME\AppData\Roaming\Microsoft\Windows\Cookies\XYV3WBXP.txt [ /lucidmedia.com ] C:\Users\USERNAME\AppData\Roaming\Microsoft\Windows\Cookies\CV4RJCFK.txt [ /tribalfusion.com ] C:\Users\USERNAME\AppData\Roaming\Microsoft\Windows\Cookies\W549QQQB.txt [ /zedo.com ] C:\Users\USERNAME\AppData\Roaming\Microsoft\Windows\Cookies\KV0YTSIU.txt [ /adlegend.com ] C:\Users\USERNAME\AppData\Roaming\Microsoft\Windows\Cookies\B9Z2RM32.txt [ /ads.pointroll.com ] C:\Users\USERNAME\AppData\Roaming\Microsoft\Windows\Cookies\QT96Z4W6.txt [ /burstnet.com ] C:\Users\USERNAME\AppData\Roaming\Microsoft\Windows\Cookies\MJH7PZ03.txt [ /fastclick.net ] C:\Users\USERNAME\AppData\Roaming\Microsoft\Windows\Cookies\X7HX4QKR.txt [ /collective-media.net ] C:\Users\USERNAME\AppData\Roaming\Microsoft\Windows\Cookies\HR9PJ6YZ.txt [ /bs.serving-sys.com ] C:\Users\USERNAME\AppData\Roaming\Microsoft\Windows\Cookies\4JOID12X.txt [ /serving-sys.com ] C:\Users\USERNAME\AppData\Roaming\Microsoft\Windows\Cookies\ETNMVP6D.txt [ /adbrite.com ] C:\Users\USERNAME\AppData\Roaming\Microsoft\Windows\Cookies\34DD7DMD.txt [ /content.yieldmanager.com ] C:\Users\USERNAME\AppData\Roaming\Microsoft\Windows\Cookies\3MJQBOND.txt [ /ads.undertone.com ] C:\Users\USERNAME\AppData\Roaming\Microsoft\Windows\Cookies\83N00Q0Z.txt [ /apmebf.com ] C:\Users\USERNAME\AppData\Roaming\Microsoft\Windows\Cookies\5O3700NM.txt [ /interclick.com ] C:\Users\USERNAME\AppData\Roaming\Microsoft\Windows\Cookies\UEH92ULJ.txt [ /mediabrandsww.com ] C:\Users\USERNAME\AppData\Roaming\Microsoft\Windows\Cookies\VDEJ1IID.txt [ /click360.sitescout.com ] C:\Users\USERNAME\AppData\Roaming\Microsoft\Windows\Cookies\XP7MH6VZ.txt [ /pro-market.net ] C:\Users\USERNAME\AppData\Roaming\Microsoft\Windows\Cookies\3WE0EVOL.txt [ /www.burstnet.com ] C:\Users\USERNAME\AppData\Roaming\Microsoft\Windows\Cookies\BN8HJGDX.txt [ /media6degrees.com ] C:\Users\USERNAME\AppData\Roaming\Microsoft\Windows\Cookies\HRR8V0QB.txt [ /realmedia.com ] C:\Users\USERNAME\AppData\Roaming\Microsoft\Windows\Cookies\4GMRRG60.txt [ /content.yieldmanager.com ] C:\Users\USERNAME\AppData\Roaming\Microsoft\Windows\Cookies\QEPC7BGE.txt [ /ad.yieldmanager.com ] C:\Users\USERNAME\AppData\Roaming\Microsoft\Windows\Cookies\1O4WEJZP.txt [ /invitemedia.com ] C:\USERS\USERNAME\AppData\Roaming\Microsoft\Windows\Cookies\9X3YZ2OC.txt [ Cookie:USERNAME@google.com/accounts/ ] statse.webtrendslive.com [ C:\USERS\USERNAME\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X7GSWFP9.DEFAULT\COOKIES.SQLITE ] accounts.google.com [ C:\USERS\USERNAME\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\X7GSWFP9.DEFAULT\COOKIES.SQLITE ] C:\USERS\USERNAME\AppData\Roaming\Microsoft\Windows\Cookies\5G6F5SCV.txt [ Cookie:USERNAME@www.google.com/accounts ] C:\USERS\USERNAME\Cookies\B5KA8S9T.txt [ Cookie:USERNAME@revsci.net/ ] C:\USERS\USERNAME\Cookies\USERNAME@specificclick[1].txt [ Cookie:USERNAME@specificclick.net/ ] C:\USERS\USERNAME\Cookies\TNPJBQGF.txt [ Cookie:USERNAME@advertising.com/ ] C:\USERS\USERNAME\Cookies\PWEGG3UY.txt [ Cookie:USERNAME@pointroll.com/ ] C:\USERS\USERNAME\Cookies\CV4RJCFK.txt [ Cookie:USERNAME@tribalfusion.com/ ] C:\USERS\USERNAME\Cookies\USERNAME@2o7[2].txt [ Cookie:USERNAME@2o7.net/ ] C:\USERS\USERNAME\Cookies\9X3YZ2OC.txt [ Cookie:USERNAME@google.com/accounts/ ] C:\USERS\USERNAME\Cookies\X7HX4QKR.txt [ Cookie:USERNAME@collective-media.net/ ] C:\USERS\USERNAME\Cookies\USERNAME@traveladvertising[2].txt [ Cookie:USERNAME@traveladvertising.com/ ] C:\USERS\USERNAME\Cookies\USERNAME@ru4[2].txt [ Cookie:USERNAME@ru4.com/ ] C:\USERS\USERNAME\Cookies\USERNAME@imrworldwide[2].txt [ Cookie:USERNAME@imrworldwide.com/cgi-bin ] C:\USERS\USERNAME\Cookies\HR9PJ6YZ.txt [ Cookie:USERNAME@bs.serving-sys.com/ ] C:\USERS\USERNAME\Cookies\USERNAME@adxpose[1].txt [ Cookie:USERNAME@adxpose.com/ ] C:\USERS\USERNAME\Cookies\USERNAME@atdmt[2].txt [ Cookie:USERNAME@atdmt.com/ ] C:\USERS\USERNAME\Cookies\USERNAME@adserver.adtechus[1].txt [ Cookie:USERNAME@adserver.adtechus.com/ ] C:\USERS\USERNAME\Cookies\34DD7DMD.txt [ Cookie:USERNAME@content.yieldmanager.com/ak/ ] C:\USERS\USERNAME\Cookies\83N00Q0Z.txt [ Cookie:USERNAME@apmebf.com/ ] C:\USERS\USERNAME\Cookies\USERNAME@r1-ads.ace.advertising[1].txt [ Cookie:USERNAME@r1-ads.ace.advertising.com/ ] C:\USERS\USERNAME\Cookies\5G6F5SCV.txt [ Cookie:USERNAME@www.google.com/accounts ] C:\USERS\USERNAME\Cookies\VDEJ1IID.txt [ Cookie:USERNAME@click360.sitescout.com/ ] C:\USERS\USERNAME\Cookies\XP7MH6VZ.txt [ Cookie:USERNAME@pro-market.net/ ] C:\USERS\USERNAME\Cookies\3WE0EVOL.txt [ Cookie:USERNAME@www.burstnet.com/ ] C:\USERS\USERNAME\Cookies\BN8HJGDX.txt [ Cookie:USERNAME@media6degrees.com/ ] C:\USERS\USERNAME\Cookies\HRR8V0QB.txt [ Cookie:USERNAME@realmedia.com/ ] C:\USERS\USERNAME\Cookies\4GMRRG60.txt [ Cookie:USERNAME@content.yieldmanager.com/ ] C:\USERS\USERNAME\Cookies\QEPC7BGE.txt [ Cookie:USERNAME@ad.yieldmanager.com/ ] C:\USERS\USERNAME\Cookies\USERNAME@usairways.112.2o7[1].txt [ Cookie:USERNAME@usairways.112.2o7.net/ ] C:\USERS\USERNAME\Cookies\1O4WEJZP.txt [ Cookie:USERNAME@invitemedia.com/ ] C:\USERS\USERNAME\Cookies\X1QUC5IH.txt [ Cookie:USERNAME@advertising.com/ ] C:\USERS\USERNAME\Cookies\2DOER3HS.txt [ Cookie:USERNAME@ru4.com/ ] C:\USERS\USERNAME\Cookies\975EVYQL.txt [ Cookie:USERNAME@r1-ads.ace.advertising.com/ ] C:\USERS\USERNAME\Cookies\G1A54RH8.txt [ Cookie:USERNAME@invitemedia.com/ ] Trojan.Agent/Gen-RogueAntiSpy (x86) [AgVQVkFpNfmITWf.exe] C:\PROGRAMDATA\AGVQVKFPNFMITWF.EXE C:\PROGRAMDATA\AGVQVKFPNFMITWF.EXE C:\Windows\Prefetch\AGVQVKFPNFMITWF.EXE-394D137F.pf