[kaushal c]

Please help wich one shoud i delete from here thanks




Logfile of HijackThis v1.99.1
Scan saved at 19:43:13, on 19/09/2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.5700.0006)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\Program Files\outlook\outlook.exe
C:\WINDOWS\system32\winlog.exe
C:\WINDOWS\system32\ctfmon.exe
C:\WINDOWS\system32\csrrs.exe
C:\Documents and Settings\All Users\Start Menu\Programs\Startup\svchost.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\UTStarcom\now wireless broadband\dialer\Dialer.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE
C:\WINDOWS\system32\mspaint.exe
C:\Program Files\iTunes\iTunes.exe
C:\Program Files\hijackthis\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer,(Default) = www.google.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://ie.redirect.h...a...&pf=desktop
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft....k/?LinkId=54729
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft....k/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft....k/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft....cid={SUB_CLCID}
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://us.rd.yahoo.c...//www.yahoo.com
O4 - HKLM\..\Run: [NI.UWA6P_0001_N56M1011] "C:\Documents and Settings\HP_Owner\Local Settings\Temporary Internet Files\Content.IE5\AZOZL6NM\WinAntiVirusPro2006ScannerInstall[1].exe" -nag
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [NI.UWA6P_0001_N56M1011] "C:\Documents and Settings\HP_Owner\Local Settings\Temporary Internet Files\Content.IE5\AZOZL6NM\WinAntiVirusPro2006ScannerInstall[1] exe" -nag
O4 - HKLM\..\Run: [wmplayer] p2pnetworking.exe
O4 - HKLM\..\Run: [outlook] C:\Program Files\outlook\outlook.exe /auto
O4 - HKLM\..\Run: [winlog] winlog.exe
O4 - HKLM\..\Run: [csr] csrrs.exe
O4 - HKLM\..\RunServices: [winlog] winlog.exe
O4 - HKLM\..\RunServices: [wmplayer] p2pnetworking.exe
O4 - HKLM\..\RunServices: [csr] csrrs.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [Yahoo! Pager] "C:\PROGRA~1\Yahoo!\MESSEN~1\YAHOOM~1.EXE" -quiet
O4 - Global Startup: svchost.exe
O17 - HKLM\System\CCS\Services\Tcpip\..\{D8E7B9B7-5DF8-438C-9B0A-D6B7FFC6C6E5}: NameServer = 81.91.192.254 81.91.192.254
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O23 - Service: AOL Spyware Protection Service (AOLService) - Unknown owner - C:\PROGRA~1\COMMON~1\AOL\AOLSPY~1\\aolserv.exe (file missing)
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iPodService - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - Unknown owner - %ProgramFiles%\WinPcap\rpcapd.exe" -d -f "%ProgramFiles%\WinPcap\rpcapd.ini (file missing)
O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\SNDSrvc.exe

[Advertisements]

Hi and welcome to GeeksToGo! My name is Sam and I will be helping you.


Please download Ewido Anti-spyware and save that file to your desktop.
This is a 30 day trial of the program

• Once you have downloaded ewido anti-spyware, locate the icon on the desktop and double-click it to launch the set up program.
• Once the setup is complete you will need run Ewido and update the definition files.
• On the main screen select the icon "Update" then select the "Update now" link.
  • Next select the "Start Update" button, the update will start and a progress bar will show the updates being installed.
• Once the update has completed select the "Scanner" icon at the top of the screen, then select the "Settings" tab.
• Once in the Settings screen click on "Recommended actions" and then select "Quarantine".
• Under "Reports"
  • Select "Automatically generate report after every scan"
  • Un-Select "Only if threats were found"

Close Ewido anti-spyware, Do Not run a scan just yet, we will shortly.

• Reboot your computer into SafeMode. You can do this by restarting your computer and continually tapping the F8 key until a menu appears. Use your up arrow key to highlight SafeMode then hit enter.
• Clean out your Temporary Internet files
  • Close Internet Explorer and close any instances of Windows Explorer.
  • Click Start -> Control Panel and then double-click Internet Options.
  • On the General tab, click Delete Files under Temporary Internet Files.
  • In the Delete Files dialog box, tick the Delete all offline content check box , and then click OK.
  • On the General tab, click Delete Cookies under Temporary Internet Files, and then click OK.
  • Click on the Programs tab then click the Reset Web Settings button. Click Apply then OK.
  • Click OK.
  
  IMPORTANT: Close all windows and do not open any other windows or programs while Ewido is scanning, it may interfere with the scanning proccess:
  
  
• Lauch Ewido-anti-spyware by double-clicking the icon on your desktop.
• Select the "Scanner" icon at the top and then the "Scan" tab then click on "Complete System Scan".
• Ewido will now begin the scanning process, be patient this may take a little time.
  Once the scan is complete do the following:
• If you have any infections you will prompted, then select "Apply all actions"
• Next select the "Reports" icon at the top.
• Select the "Save report as" button in the lower left hand of the screen and save it to a text file on your system (make sure to remember where you saved that file, this is important).
• Close Ewido and reboot your system back into Normal Mode and post the results of the Ewido scan report along with a new Hijackthis log.

[Buckeye_Sam]

Hi and welcome to GeeksToGo! My name is Sam and I will be helping you.


Please download Ewido Anti-spyware and save that file to your desktop.
This is a 30 day trial of the program

• Once you have downloaded ewido anti-spyware, locate the icon on the desktop and double-click it to launch the set up program.
• Once the setup is complete you will need run Ewido and update the definition files.
• On the main screen select the icon "Update" then select the "Update now" link.
  • Next select the "Start Update" button, the update will start and a progress bar will show the updates being installed.
• Once the update has completed select the "Scanner" icon at the top of the screen, then select the "Settings" tab.
• Once in the Settings screen click on "Recommended actions" and then select "Quarantine".
• Under "Reports"
  • Select "Automatically generate report after every scan"
  • Un-Select "Only if threats were found"

Close Ewido anti-spyware, Do Not run a scan just yet, we will shortly.

• Reboot your computer into SafeMode. You can do this by restarting your computer and continually tapping the F8 key until a menu appears. Use your up arrow key to highlight SafeMode then hit enter.
• Clean out your Temporary Internet files
  • Close Internet Explorer and close any instances of Windows Explorer.
  • Click Start -> Control Panel and then double-click Internet Options.
  • On the General tab, click Delete Files under Temporary Internet Files.
  • In the Delete Files dialog box, tick the Delete all offline content check box , and then click OK.
  • On the General tab, click Delete Cookies under Temporary Internet Files, and then click OK.
  • Click on the Programs tab then click the Reset Web Settings button. Click Apply then OK.
  • Click OK.
  
  IMPORTANT: Close all windows and do not open any other windows or programs while Ewido is scanning, it may interfere with the scanning proccess:
  
  
• Lauch Ewido-anti-spyware by double-clicking the icon on your desktop.
• Select the "Scanner" icon at the top and then the "Scan" tab then click on "Complete System Scan".
• Ewido will now begin the scanning process, be patient this may take a little time.
  Once the scan is complete do the following:
• If you have any infections you will prompted, then select "Apply all actions"
• Next select the "Reports" icon at the top.
• Select the "Save report as" button in the lower left hand of the screen and save it to a text file on your system (make sure to remember where you saved that file, this is important).
• Close Ewido and reboot your system back into Normal Mode and post the results of the Ewido scan report along with a new Hijackthis log.

[kaushal c]

Logfile of HijackThis v1.99.1
Scan saved at 17:53:21, on 20/09/2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.5700.0006)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\Program Files\ewido anti-spyware 4.0\ewido.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\UTStarcom\now wireless broadband\dialer\Dialer.exe
C:\Program Files\ewido anti-spyware 4.0\guard.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\hijackthis\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer,(Default) = www.google.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://ie.redirect.h...a...&pf=desktop
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft....k/?LinkId=54729
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft....k/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft....k/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft....cid={SUB_CLCID}
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://us.rd.yahoo.c...//www.yahoo.com
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O4 - HKLM\..\Run: [NI.UWA6P_0001_N56M1011] "C:\Documents and Settings\HP_Owner\Local Settings\Temporary Internet Files\Content.IE5\AZOZL6NM\WinAntiVirusPro2006ScannerInstall[1].exe" -nag
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [NI.UWA6P_0001_N56M1011] "C:\Documents and Settings\HP_Owner\Local Settings\Temporary Internet Files\Content.IE5\AZOZL6NM\WinAntiVirusPro2006ScannerInstall[1] exe" -nag
O4 - HKLM\..\Run: [wmplayer] p2pnetworking.exe
O4 - HKLM\..\Run: [outlook] C:\Program Files\outlook\outlook.exe /auto
O4 - HKLM\..\Run: [!ewido] "C:\Program Files\ewido anti-spyware 4.0\ewido.exe" /minimized
O4 - HKLM\..\RunServices: [wmplayer] p2pnetworking.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [Yahoo! Pager] "C:\PROGRA~1\Yahoo!\MESSEN~1\YAHOOM~1.EXE" -quiet
O4 - HKCU\..\Run: [dialer] "C:\Program Files\UTStarcom\now wireless broadband\dialer\Dialer.exe"
O17 - HKLM\System\CCS\Services\Tcpip\..\{D8E7B9B7-5DF8-438C-9B0A-D6B7FFC6C6E5}: NameServer = 81.91.192.254 81.91.192.254
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O23 - Service: AOL Spyware Protection Service (AOLService) - Unknown owner - C:\PROGRA~1\COMMON~1\AOL\AOLSPY~1\\aolserv.exe (file missing)
O23 - Service: ewido anti-spyware 4.0 guard - Anti-Malware Development a.s. - C:\Program Files\ewido anti-spyware 4.0\guard.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iPodService - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - Unknown owner - %ProgramFiles%\WinPcap\rpcapd.exe" -d -f "%ProgramFiles%\WinPcap\rpcapd.ini (file missing)
O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\SNDSrvc.exe







---------------------------------------------------------
ewido anti-spyware - Scan Report
---------------------------------------------------------

+ Created at: 17:04:07 20/09/2006

+ Scan result:



C:\Documents and Settings\HP_Owner\Local Settings\Temp\res40A.tmp -> Adware.180Solutions : No action taken.
C:\Documents and Settings\HP_Owner\Local Settings\Temp\res5D9.tmp -> Adware.180Solutions : No action taken.
C:\Program Files\Microsoft ActiveSync\zango\zango.exe -> Adware.180Solutions : No action taken.
HKU\S-1-5-21-498948984-600518020-4199161458-1007\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{C2EEB4FA-B6D6-41B9-9CFA-ABA87F862BCB} -> Adware.Generic : No action taken.
C:\WINDOWS\system32\agentsvr.exe -> Adware.Monker : No action taken.
C:\WINDOWS\system32\EGACCESS.dll -> Dialer.EgroupDial.v : No action taken.
C:\Documents and Settings\HP_Owner\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\file\OMG.class-5a8a5bd2-6f205cfd.class -> Downloader.OpenStream.y : No action taken.
C:\WINDOWS\system32\dllhost32.exe -> Heuristic.Win32.AVKiller : No action taken.
C:\Program Files\UTStarcom\now wireless broadband\dialer\Dialer.exe -> Heuristic.Win32.Dialer : No action taken.
C:\Documents and Settings\HP_Owner\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\archive1213.jar-26ba6a59-43b79516.zip/Dummy.class -> Not-A-Virus.Exploit.ByteVerify : No action taken.
C:\Documents and Settings\HP_Owner\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\archive1213.jar-40c31d49-4599cd17.zip/Dummy.class -> Not-A-Virus.Exploit.ByteVerify : No action taken.
C:\Documents and Settings\HP_Owner\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\jar.jar-16e6c0b4-331bf538.zip/Gummy.class -> Not-A-Virus.Exploit.ByteVerify : No action taken.
C:\Documents and Settings\HP_Owner\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\jar.jar-2a251b3-6764d175.zip/Gummy.class -> Not-A-Virus.Exploit.ByteVerify : No action taken.
:mozilla.6:C:\Documents and Settings\HP_Owner\Application Data\Mozilla\Firefox\Profiles\5r3w6x8l.default\cookies.txt -> TrackingCookie.2o7 : No action taken.
:mozilla.7:C:\Documents and Settings\HP_Owner\Application Data\Mozilla\Firefox\Profiles\5r3w6x8l.default\cookies.txt -> TrackingCookie.2o7 : No action taken.
:mozilla.82:C:\Documents and Settings\HP_Owner\Application Data\Mozilla\Firefox\Profiles\5r3w6x8l.default\cookies.txt -> TrackingCookie.2o7 : No action taken.
:mozilla.8:C:\Documents and Settings\HP_Owner\Application Data\Mozilla\Firefox\Profiles\5r3w6x8l.default\cookies.txt -> TrackingCookie.2o7 : No action taken.
C:\Documents and Settings\HP_Owner\Cookies\[email protected][2].txt -> TrackingCookie.2o7 : No action taken.
C:\Documents and Settings\HP_Owner\Cookies\hp_owner@2o7[2].txt -> TrackingCookie.2o7 : No action taken.
C:\Documents and Settings\HP_Owner\Cookies\[email protected][1].txt -> TrackingCookie.2o7 : No action taken.
C:\Documents and Settings\HP_Owner\Cookies\[email protected][1].txt -> TrackingCookie.2o7 : No action taken.
C:\Documents and Settings\HP_Owner\Cookies\[email protected][1].txt -> TrackingCookie.2o7 : No action taken.
C:\Documents and Settings\HP_Owner\Cookies\[email protected][1].txt -> TrackingCookie.2o7 : No action taken.
:mozilla.12:C:\Documents and Settings\HP_Owner\Application Data\Mozilla\Firefox\Profiles\5r3w6x8l.default\cookies.txt -> TrackingCookie.Adbrite : No action taken.
:mozilla.13:C:\Documents and Settings\HP_Owner\Application Data\Mozilla\Firefox\Profiles\5r3w6x8l.default\cookies.txt -> TrackingCookie.Adbrite : No action taken.
:mozilla.16:C:\Documents and Settings\HP_Owner\Application Data\Mozilla\Firefox\Profiles\5r3w6x8l.default\cookies.txt -> TrackingCookie.Adrevolver : No action taken.
:mozilla.174:C:\Documents and Settings\HP_Owner\Application Data\Mozilla\Firefox\Profiles\5r3w6x8l.default\cookies.txt -> TrackingCookie.Adrevolver : No action taken.
:mozilla.175:C:\Documents and Settings\HP_Owner\Application Data\Mozilla\Firefox\Profiles\5r3w6x8l.default\cookies.txt -> TrackingCookie.Adrevolver : No action taken.
:mozilla.176:C:\Documents and Settings\HP_Owner\Application Data\Mozilla\Firefox\Profiles\5r3w6x8l.default\cookies.txt -> TrackingCookie.Adrevolver : No action taken.
:mozilla.17:C:\Documents and Settings\HP_Owner\Application Data\Mozilla\Firefox\Profiles\5r3w6x8l.default\cookies.txt -> TrackingCookie.Adtech : No action taken.
:mozilla.18:C:\Documents and Settings\HP_Owner\Application Data\Mozilla\Firefox\Profiles\5r3w6x8l.default\cookies.txt -> TrackingCookie.Adtech : No action taken.
C:\Documents and Settings\HP_Owner\Cookies\hp_owner@burstnet[1].txt -> TrackingCookie.Burstnet : No action taken.
C:\Documents and Settings\HP_Owner\Cookies\[email protected][1].txt -> TrackingCookie.Burstnet : No action taken.
:mozilla.177:C:\Documents and Settings\HP_Owner\Application Data\Mozilla\Firefox\Profiles\5r3w6x8l.default\cookies.txt -> TrackingCookie.Cqcounter : No action taken.
C:\Documents and Settings\HP_Owner\Cookies\[email protected][2].txt -> TrackingCookie.Esomniture : No action taken.
C:\Documents and Settings\HP_Owner\Cookies\[email protected][1].txt -> TrackingCookie.Euroclick : No action taken.
:mozilla.208:C:\Documents and Settings\HP_Owner\Application Data\Mozilla\Firefox\Profiles\5r3w6x8l.default\cookies.txt -> TrackingCookie.Googleadservices : No action taken.
:mozilla.209:C:\Documents and Settings\HP_Owner\Application Data\Mozilla\Firefox\Profiles\5r3w6x8l.default\cookies.txt -> TrackingCookie.Googleadservices : No action taken.
:mozilla.210:C:\Documents and Settings\HP_Owner\Application Data\Mozilla\Firefox\Profiles\5r3w6x8l.default\cookies.txt -> TrackingCookie.Googleadservices : No action taken.
:mozilla.102:C:\Documents and Settings\HP_Owner\Application Data\Mozilla\Firefox\Profiles\5r3w6x8l.default\cookies.txt -> TrackingCookie.Overture : No action taken.
:mozilla.190:C:\Documents and Settings\HP_Owner\Application Data\Mozilla\Firefox\Profiles\5r3w6x8l.default\cookies.txt -> TrackingCookie.Starware : No action taken.
:mozilla.51:C:\Documents and Settings\HP_Owner\Application Data\Mozilla\Firefox\Profiles\5r3w6x8l.default\cookies.txt -> TrackingCookie.Starware : No action taken.
:mozilla.52:C:\Documents and Settings\HP_Owner\Application Data\Mozilla\Firefox\Profiles\5r3w6x8l.default\cookies.txt -> TrackingCookie.Starware : No action taken.
C:\Documents and Settings\HP_Owner\Cookies\[email protected][1].txt -> TrackingCookie.Starware : No action taken.
C:\Documents and Settings\HP_Owner\Cookies\[email protected][1].txt -> TrackingCookie.Starware : No action taken.
:mozilla.127:C:\Documents and Settings\HP_Owner\Application Data\Mozilla\Firefox\Profiles\5r3w6x8l.default\cookies.txt -> TrackingCookie.Statcounter : No action taken.
:mozilla.128:C:\Documents and Settings\HP_Owner\Application Data\Mozilla\Firefox\Profiles\5r3w6x8l.default\cookies.txt -> TrackingCookie.Statcounter : No action taken.
C:\Documents and Settings\HP_Owner\Cookies\hp_owner@tacoda[1].txt -> TrackingCookie.Tacoda : No action taken.
:mozilla.130:C:\Documents and Settings\HP_Owner\Application Data\Mozilla\Firefox\Profiles\5r3w6x8l.default\cookies.txt -> TrackingCookie.Tradedoubler : No action taken.
:mozilla.131:C:\Documents and Settings\HP_Owner\Application Data\Mozilla\Firefox\Profiles\5r3w6x8l.default\cookies.txt -> TrackingCookie.Tradedoubler : No action taken.
:mozilla.132:C:\Documents and Settings\HP_Owner\Application Data\Mozilla\Firefox\Profiles\5r3w6x8l.default\cookies.txt -> TrackingCookie.Tribalfusion : No action taken.
:mozilla.133:C:\Documents and Settings\HP_Owner\Application Data\Mozilla\Firefox\Profiles\5r3w6x8l.default\cookies.txt -> TrackingCookie.Tribalfusion : No action taken.
C:\Documents and Settings\HP_Owner\Cookies\hp_owner@web-stat[2].txt -> TrackingCookie.Web-stat : No action taken.
C:\Documents and Settings\HP_Owner\Cookies\[email protected][2].txt -> TrackingCookie.Wegcash : No action taken.
C:\Documents and Settings\HP_Owner\Cookies\[email protected][2].txt -> TrackingCookie.Wegcash : No action taken.
C:\Documents and Settings\HP_Owner\Cookies\[email protected][2].txt -> TrackingCookie.Wegcash : No action taken.
:mozilla.154:C:\Documents and Settings\HP_Owner\Application Data\Mozilla\Firefox\Profiles\5r3w6x8l.default\cookies.txt -> TrackingCookie.Yieldmanager : No action taken.
:mozilla.155:C:\Documents and Settings\HP_Owner\Application Data\Mozilla\Firefox\Profiles\5r3w6x8l.default\cookies.txt -> TrackingCookie.Yieldmanager : No action taken.
C:\Documents and Settings\HP_Owner\Cookies\[email protected][2].txt -> TrackingCookie.Yieldmanager : No action taken.
:mozilla.151:C:\Documents and Settings\HP_Owner\Application Data\Mozilla\Firefox\Profiles\5r3w6x8l.default\cookies.txt -> TrackingCookie.Zedo : No action taken.
:mozilla.152:C:\Documents and Settings\HP_Owner\Application Data\Mozilla\Firefox\Profiles\5r3w6x8l.default\cookies.txt -> TrackingCookie.Zedo : No action taken.
:mozilla.153:C:\Documents and Settings\HP_Owner\Application Data\Mozilla\Firefox\Profiles\5r3w6x8l.default\cookies.txt -> TrackingCookie.Zedo : No action taken.
C:\Documents and Settings\HP_Owner\Complete\(CucuSoft) PSP Movie Video Converter.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\(CyberDefender) AntiSpyware 2006.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\02 jean shepherd.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\A Prairie Home Companion DVDRiP XViD-LUNAR [www torrentfive com].zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\About CNET Networks.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Advanced Encryption Package 2006 Professional.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Advanced search.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Advanced statistics.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Age of Empires II PS2 NTSC CloneCd Image.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Air America Radio - The Al Franken Show 091806 [mp3].zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Air America Radio - The Rachel Maddow Show 091806 [mp3].zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Air America Radio - The Sam Seder Show 091806 [mp3].zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\All RSS feeds.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\All Software.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Archie's Madhouse #028 - #30.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Asterix And The Vikings LiMiTED DVDRip XviD-ZN [www torrentfive com].zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Atomic Alarm Clock v4.25 Cracked-F4CG.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Behnke, Bachmann, Fladt & Suss [Eds ] - Fundamentals of Mathematics [MIT Press].zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Bigfish Games - Sweetopia + Crack.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Bittorrent The “one third of all Internet traffic� Myth.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\BnFnT 31 [Innocent Sin] rar.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Boiler Room 2000 WS DVDRip XviD-ReMotE [www torrentfive com].zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Browse categories.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\CNET Channel.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\CNET Download.com.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\CNET News.com.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\CNET Reviews.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\CNET Shopper.com.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\CNET TV.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\CSI Miami S05E01 HDTV XviD-XOR [eztv].zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Cafferine - 15th Pic Set.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Compare Prices.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Contact Us.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Copyright policy.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Daniela Cicarelli.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Daz3D - Poser - Stephanie complete reseed.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Desktop Extra!.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Desperate Housewives Time To Come Clean PDTV XviD-TBS [eztv].zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Eureka seveN 46-50 avi sub.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Faceless S01E01 DVDSCR XviD-PREAiR [eztv].zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Faith Evans - Remixed Unreleased and Featured (Japan Only)-2006 seed by www p2p-world dl am rar.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Fantastic Four - 03 - Doomsday {C_P}.avi.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Firefox plugin.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Free MP3s.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\GIF Movie Gear 4.02.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\GIF Prep 1.0.1.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\GIFConverter 2.4.4.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\GIFCruncher EA5.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\GIHS Affiliate Master Program 1.0.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\GIPALS General Interior-Point Algorithm Linear Solver 1.2.1.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\GIPALS32 - Linear Programming Library 1.2.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\GIS Image Analyzer 1.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\GIS.NET 1.1.3.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\GJ Pacman aMAZEment 1.0.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\GL Golf 1.9.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\GLBasic SDK 1.4.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\GLHexen 2 Update 0.8.1.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\GLMStat 5.7.4.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\GLMStat X 5.7.7.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\GLScene for Lazarus Install 6.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\GLT Chaos Screen Saver 0.4.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\GM Hockey 2.0.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\GML GrowCut 1.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\GMP SQL Query 2005 1.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\GMail Bookmark 1.1.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\GMail2 2.21.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\GNCutter 1.1.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\GNI Study Bible 1.0.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\GNU Visual Debugger 1.2.5.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\GNUMail.app 1.1.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\GOFLOW Visual Designer 3.5.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\GOGO Exif Image Viewer ActiveX Control 1.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\GOGO Photo To Movie Converter 1.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\GOGO Picture Viewer ActiveX Control 3.1.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\GOGO Picture Viewer Pro ActiveX Control 3.1.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\GOIM 1.1.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\GOM Media Player 2.0.6.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\GONG! 2.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\GOlog 1.0.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\GTR 2 DVDRip SPiTFiRENEW.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Ghost Installer Free Edition 4.1.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Ghost Installer Studio 4.1.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Ghost Key Logger Lite 3.8.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Ghost Keylogger 3.73.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Ghost MP3 CD Maker 2.0.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Ghost Master UK bonus scenario .zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Ghost Ship Screen Saver 1.0.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Ghost-It 1.03.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Ghost-Tech Paranormal Investigator 1.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\GhostClip 2.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\GhostForest Interactive Screensavers 3.5.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\GhostSurf 2006 Platinum .zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\GhostTyperXML 3.0.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Ghostfiles 2.0.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Ghostfiles Service 3.1.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Ghostmailer 1.1.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Ghostphrase 2.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Ghosts-n-Goblins 1.0.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Ghronos 2.0.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Giant Dogs 1.1.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Giants Citizen Kabuto 1.1 patch .zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Giants Citizen Kabuto 1.4 patch .zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Giants Citizen Kabuto Meccaryn demo .zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Giants Citizen Kabuto Reaper demo .zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Giants Citizen Kabuto Red Blood patch .zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Gibson Screensaver 1.0.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Gif2Swf 2.5.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\GifSplitter 1.0.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Gift 6.1.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Gift Exchange 2.3.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Gift Finder 1.0.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\GiftBox Plus 3.7.2.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\GiftBox Plus 3.7.6.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\GiftWorks 2006 2.0.52.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Gifts Of Love Christmas Screensaver 1.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Gifts and More Christmas Screensaver 1.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\GigAlarm 1.28.2.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Giga 5.7.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Giga Templates 2.0.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\GigaBar 1.58.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\GigaPacker 1.6.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\GigaSoft ProEssentials 5.0.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\GigaTask 2.17.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\GigaTrust for Email 3.2.385.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Gigaget Download Manager 1.0.0.23.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Giganews Binary Newsreader 3.1.6.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Gigantic (A Tale of Two Johns) Trailer .zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Gigli Trailer .zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\GimmeFreeData 1.5.1.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\GimmeSomeTune 1.6.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Gimp-Print 4.3.18.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Gin Rummy 2006.1.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Gin Rummy Pro 2.0.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Gin RummyVideo-Poker 2.1.59.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Gink in Trouble 1.0.11.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Ginkgo Paint 1.0.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Girafa 2.12.06.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Giraffe 1.1.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Girder 3.3.1.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Girl On Playground Jigsaw Puzzle 96pc.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Girtab 1.6.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Gish .zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Gish 1.3.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Gish v1.3 patch .zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Gitarrero Beginner 1.2.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Give Me Too Network Sniffer 2.0.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Giving and Sharing Christmas Screensaver 1.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Giza 2.1.7.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Gizmo Database 2.0.2.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Gizmo Drive 2.0.3.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Gizmo Editor 2.0.5.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Gizmo Hasher 2.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Gizmo Project 2.0.0.165.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Gizmo Script 2.0.4.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Gizmo Synchronization 2.0.3.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Gizmo Toolbar 2.0.8.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Gizmo Village 2.0.8.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\GlTron 0.62.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Glace 1.2.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Glacier Bay 1.0.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Glance 2.0.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Glary Utilities 1.5.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Glass Window 1.5.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\GlassRoom 3.3.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Glassbox Troubleshooter 1.23.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Glest 1.1.1.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Glg Toolkit 2.5.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\GlidePics 3D 1.088.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\GloPhone 2.0.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\GlobFX Composer 1.0.9.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Global Audio Control 1.8.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Global Calendar Sharing 2002XP 2.1.9.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Global Calendar Sharing 2003 2.1.9.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Global City Weather 1.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Global Clipboard 2.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Global Conquest 1.01.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Global Defense Network 1.0.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Global Downloader 1.1.0.3.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Global IM 2.0.5.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Global Internet Dialer 9.0.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Global MU Online 1.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Global Network Inventory 1.3.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Global Operations - GOEdit patch .zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Global Operations 1.1 demo patch .zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Global Operations 1.2 patch (Asia) .zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Global Operations multiplayer demo .zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Global Positioning Submitter 1.0.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Global Search And Replace 1.5.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Global Site Support 1.12.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Global Time Synchronizer 1.0.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Global Torrent Searcher 0.3.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Global Tracks 6.14.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Global Village 56K PC Card Firmware Update 2.081.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Global Village K56flex Firmware PC Card Updater 1.120.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Global Village TelePort 56 K56flex Firmware Updater 1.201.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Global Village TelePort Platinum Comm Slot Firmware Upgrade 1.511.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Global Watch List 1.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\GlobalAdventures Japan ARM 2.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\GlobalDrive Virtual Disk Drive 3.0.2.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\GlobalFax TelePort 56 x2 Updater 1.0.3.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\GlobalFax for Teleport Modems 2.6.8.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\GlobalOffice 2.02.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\GlobalPatrol WebScout 2.1.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\GlobalSale Software 5.6.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\GlobalScape Secure FTP Server 3.1.5.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\GlobalSpellChecker 1.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\GlobalTraceRoute 2005.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\GlobalWx Weathermapper 1.81.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Globalbrain Personal Edition 2.0 build 189.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Globaltrust Verification Engine 1.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Globe7 2.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Globe7 Video Phone 2.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Globex 3.0.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Globex Pro 3.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Glog 1.1.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\GloopIt 1.04.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Glorious Waterfalls 1.0.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Glorm 1.0.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Glory Zone 1.2.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Glory of the Roman Empire demo .zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Glossary of International Banking and Finance 9984921700.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Glow Worm demo .zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\GlowCode 4.0.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Glowing Skin Secrets Revealed 1.0.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\GlowingWorld Screen Saver 3.1.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\GlucoBase 1.64.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\GlucoControl 2.3.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Glucose Journal and Database 2.0.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Glucose Tracker 5.9.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Gluten Guard 2.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Gluten Guard XP 1.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Gluten Guard for Palm 1.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Gluz 6.1.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Glycemic Index And Weight Loss 1.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\GlycoLoad 1.2.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Glyph 1.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\GlyphThis 4.04.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Gmail Explorer 1.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Gmail Notifier 1.0.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Gmail Opener 1.4.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Gmail Space 0.3.3.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Gmail for Windows 1.0.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Gmail2Stream 1.7.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Gmaps Pedometer .zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Gnoseo QuickRun 1.6.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Gnuplot 4.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Gnutella Donkey 1.5.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Gnutella Lite 5.1.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Go Bingo 1.0.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Go Fishin' 1.1.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Go Frame Go 1.0.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Go Game Assistant 8.74.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Go Game Attack and Defense for Handheld PC (ARM) 1.1.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Go Game Attack and Defense for Handheld PC (MIPS) 1.1.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Go Game Attack and Defense for Handheld PC (SH3) 1.1.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Go Game Attack and Defense for Handheld PC (SH4) 1.1.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Go Game Attack and Defense for Palm 1.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Go Game Attack and Defense for Palmsize PC (MIPS) 1.1.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Go Game Attack and Defense for Palmsize PC (SH3) 1.1.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Go Game Attack and Defense for Pocket PC (ARM) 1.1.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Go Game Attack and Defense for Pocket PC (MIPS) 1.1.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Go Game Attack and Defense for Pocket PC (SH3) 1.1.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Go Game Attack and Defense for Pocket PC 2002 1.1.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Go Game Attack and Defense for Smartphone 1.1.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Go Game Attack and Defense for Symbian Series 60 1.1.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Go Game Attack and Defense for Symbian Series 80 1.1.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Go Game Attack and Defense for Symbian Series 90 1.1.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Go Game Attack and Defense for Symbian UIQ 1.1.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Go Game Attack and Defense for Windows Mobile 2003 1.1.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Go Game Hamete and Overplay for Handheld PC (ARM) 1.1.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Go Game Hamete and Overplay for Handheld PC (MIPS) 1.1.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Go Game Hamete and Overplay for Handheld PC (SH3) 1.1.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Go Game Hamete and Overplay for Handheld PC (SH4) 1.1.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Go Game Hamete and Overplay for Palm 1.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Go Game Hamete and Overplay for Palmsize PC (MIPS) 1.1.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Go Game Hamete and Overplay for Palmsize PC (SH3) 1.1.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Go Game Hamete and Overplay for Pocket PC (ARM) 1.1.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Go Game Hamete and Overplay for Pocket PC (SH3) 1.1.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Go Game Hamete and Overplay for Pocket PC 2002 1.1.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Go Game Hamete and Overplay for Smartphone 1.1.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Go Game Hamete and Overplay for Symbian Series 60 1.1.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Go Game Hamete and Overplay for Symbian Series 80 1.1.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Go Game Hamete and Overplay for Symbian Series 90 1.1.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Go Game Hamete and Overplay for Symbian UIQ 1.1.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Go Game Hamete and Overplay for Windows Mobile 2003 1.1.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Go Game Life and Death for Handheld PC (ARM) 1.1.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Go Game Life and Death for Handheld PC (MIPS) 1.1.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Go Game Life and Death for Handheld PC (SH3) 1.1.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Go Game Life and Death for Handheld PC (SH4) 1.1.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Go Game Life and Death for Palm 1.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Go Game Life and Death for Palmsize PC (MIPS) 1.1.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Go Game Life and Death for Palmsize PC (SH3) 1.1.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Go Game Life and Death for Pocket PC (ARM) 1.1.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Go Game Life and Death for Pocket PC (MIPS) 1.1.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Go Game Life and Death for Pocket PC (SH3) 1.1.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Go Game Life and Death for Pocket PC 2002 1.1.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Go Game Life and Death for Smartphone 1.1.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Go Game Life and Death for Symbian Series 60 1.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Go Game Life and Death for Symbian Series 80 1.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Go Game Life and Death for Symbian Series 90 1.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Go Game Life and Death for Symbian UIQ 1.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Go Game Life and Death for Windows Mobile 2003 1.1.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Go Game Skill of Endgame for Handheld PC (ARM) 1.1.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Go Game Skill of Endgame for Handheld PC (MIPS) 1.1.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Go Game Skill of Endgame for Handheld PC (SH3) 1.1.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Go Game Skill of Endgame for Handheld PC (SH4) 1.1.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Go Game Skill of Endgame for Palm 1.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Go Game Skill of Endgame for Palmsize PC (MIPS) 1.1.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Go Game Skill of Endgame for Palmsize PC (SH3) 1.1.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Go Game Skill of Endgame for Pocket PC (ARM) 1.1.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Go Game Skill of Endgame for Pocket PC (MIPS) 1.1.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Go Game Skill of Endgame for Pocket PC (SH3) 1.1.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Go Game Skill of Endgame for Pocket PC 2002 1.1.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Go Game Skill of Endgame for Smartphone 1.1.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Go Game Skill of Endgame for Symbian Series 60 1.1.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Go Game Skill of Endgame for Symbian Series 80 1.1.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Go Game Skill of Endgame for Symbian Series 90 1.1.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Go Game Skill of Endgame for Symbian UIQ 1.1.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Go Game Skill of Endgame for Windows Mobile 2003 1.1.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Go Jack 1.0.18.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Go Magical Boy 4.zip/Setup.exe -> Worm.VB.dw : No action taken.
C:\Documents and Settings\HP_Owner\Complete\Go! Motorbike Manager 3.0d.zip/Setu

Edited by kaushal c, 20 September 2006 - 10:57 AM.

[Buckeye_Sam]

Did you have Ewido quarantine everything that it found?

In your log it shows that "No action taken".


===========


Please download ComboFix and save it to your desktop.
Double click combofix.exe and follow the prompts.
When it's done running it will produce a log for you. Please post that log in your next reply.

Important Note - Do not mouseclick combofix's window whilst it's running. That may cause it to stall.

[kaushal c]

yes i have Ewido quarantine everything that it found

now shall i remove every thing from Ewido quarantine?

HP_Owner - 06-09-21 14:24:49.92 Service Pack 2
ComboFix 06.09.20 - Running from: "C:\Documents and Settings\HP_Owner\Desktop"
Command switches used ::

(((((((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))


C:\WINDOWS\system32\setup.exe.tmp
C:\Program Files\outlook

~ ~ ~ ~ ~ ~ ~ ~ ~ ~ ~ ~ ~ ~ Purity ~ ~ ~ ~ ~ ~ ~ ~~ ~ ~ ~ ~ ~ ~ ~ ~ ~ ~ ~

Folders Quarantined:

C:\QooBox\Purity\Program Files\DOBE~1
C:\QooBox\Purity\Program Files\Common Files\FNTS~1
C:\QooBox\Purity\Program Files\Common Files\RACLE~1
C:\QooBox\Purity\Program Files\DOBE~1\DOBE~1
C:\QooBox\Purity\WINDOWS\system32\CROSOF~1.NET


((((((((((((((((((((((((((((((( Files Created from 2006-08-21 to 2006-09-21 ))))))))))))))))))))))))))))))))))


2006-09-20 17:41 79,360 -ra------ C:\WINDOWS\system32\utpppoe.dll
2006-09-05 15:09 121,856 --------- C:\WINDOWS\system32\xmllite.dll
2006-08-23 00:31 50,688 --------- C:\WINDOWS\system32\msfeedsbs.dll
2006-08-23 00:31 5,906,432 --------- C:\WINDOWS\system32\ieframe.dll
2006-08-23 00:31 457,728 --------- C:\WINDOWS\system32\msfeeds.dll
2006-08-23 00:31 175,616 --------- C:\WINDOWS\system32\ieui.dll
2006-08-23 00:18 206,336 --------- C:\WINDOWS\system32\WinFXDocObj.exe
2006-08-23 00:13 11,776 --a------ C:\WINDOWS\system32\ieudinit.exe
2006-08-23 00:11 12,288 --------- C:\WINDOWS\system32\msfeedssync.exe
2006-08-23 00:10 61,440 --------- C:\WINDOWS\system32\icardie.dll
2006-08-23 00:09 262,656 --------- C:\WINDOWS\system32\iertutil.dll
2006-08-22 23:36 380,928 --------- C:\WINDOWS\system32\ieapfltr.dll


(((((((((((((((((((((((((((((((((((((((((((((((( Find3M Report )))))))))))))))))))))))))))))))))))))))))))))))))))))


2006-09-21 14:25 -------- d-------- C:\Program Files\Common Files
2006-09-21 14:16 -------- d-------- C:\Program Files\ewido anti-spyware 4.0
2006-09-21 14:15 -------- d-------- C:\Program Files\Mozilla Firefox
2006-09-20 17:53 -------- d-------- C:\Program Files\hijackthis
2006-09-20 17:40 -------- d--h----- C:\Program Files\InstallShield Installation Information
2006-09-20 17:40 -------- d-------- C:\Program Files\UTStarcom
2006-09-20 15:15 -------- d-------- C:\Documents and Settings\HP_Owner\Application Data\Rex-Services
2006-09-20 15:14 -------- d-------- C:\Program Files\Winamp
2006-09-20 14:36 -------- d-------- C:\Program Files\LimeWire
2006-09-19 20:59 -------- d-------- C:\Program Files\CleanUp!
2006-09-19 12:20 -------- d-------- C:\Program Files\Common Files\Symantec Shared
2006-09-19 12:15 -------- d-------- C:\Program Files\Symantec
2006-09-05 19:11 -------- d-------- C:\Program Files\Common Files\ODBC
2006-09-05 15:17 -------- d--h----- C:\Program Files\Uninstall Information
2006-09-05 15:17 -------- d-------- C:\Program Files\Internet Explorer
2006-09-05 09:59 -------- d-------- C:\Documents and Settings\HP_Owner\Application Data\Mozilla
2006-09-04 11:59 -------- d-------- C:\Program Files\Common Files\AOL
2006-08-31 16:17 -------- d-------- C:\Program Files\Common Files\NSV
2006-08-31 13:55 -------- d-------- C:\Program Files\Yahoo!
2006-08-31 13:55 -------- d-------- C:\Program Files\Windows Media Player
2006-08-31 13:54 -------- d-------- C:\Program Files\QuickTime
2006-08-31 13:54 -------- d-------- C:\Program Files\NetMeeting
2006-08-31 13:54 -------- d-------- C:\Program Files\MSN
2006-08-31 13:54 -------- d-------- C:\Program Files\InterVideo
2006-08-31 13:53 -------- d-------- C:\Program Files\Dreamweaver MX 2004
2006-08-31 13:53 -------- d-------- C:\Program Files\DivX
2006-08-31 13:48 -------- d-------- C:\Documents and Settings\HP_Owner\Application Data\AOL
2006-08-31 13:37 -------- d-------- C:\Program Files\Lavasoft
2006-08-31 13:37 -------- d-------- C:\Documents and Settings\HP_Owner\Application Data\Lavasoft
2006-08-31 09:06 -------- d-------- C:\Program Files\DIFX
2006-08-30 14:35 -------- d-------- C:\Program Files\MIKSOFT
2006-08-30 13:26 -------- d-------- C:\Program Files\UIU
2006-08-23 00:31 413696 --a------ C:\WINDOWS\system32\vbscript.dll
2006-08-23 00:31 225792 --a------ C:\WINDOWS\system32\webcheck.dll
2006-08-23 00:31 152064 --a------ C:\WINDOWS\system32\msls31.dll
2006-08-23 00:18 78336 --a------ C:\WINDOWS\system32\ieencode.dll
2006-08-23 00:17 40448 --a------ C:\WINDOWS\system32\licmgr10.dll
2006-08-23 00:17 105472 --a------ C:\WINDOWS\system32\url.dll
2006-08-23 00:17 100352 --a------ C:\WINDOWS\system32\occache.dll
2006-08-23 00:16 16896 --a------ C:\WINDOWS\system32\corpol.dll
2006-08-23 00:14 378368 --a------ C:\WINDOWS\system32\iedkcs32.dll
2006-08-23 00:14 229376 --a------ C:\WINDOWS\system32\ieaksie.dll
2006-08-23 00:13 71680 --a------ C:\WINDOWS\system32\admparse.dll
2006-08-23 00:13 55296 --a------ C:\WINDOWS\system32\iesetup.dll
2006-08-23 00:13 54784 --a------ C:\WINDOWS\system32\ie4uinit.exe
2006-08-23 00:13 43008 --a------ C:\WINDOWS\system32\iernonce.dll
2006-08-23 00:13 152064 --a------ C:\WINDOWS\system32\ieakeng.dll
2006-08-23 00:13 122880 --a------ C:\WINDOWS\system32\advpack.dll
2006-08-23 00:10 35328 --a------ C:\WINDOWS\system32\imgutil.dl
2006-08-23 00:07 45568 --a------ C:\WINDOWS\system32\mshta.exe
2006-08-22 23:37 48128 --a------ C:\WINDOWS\system32\mshtmler.dll
2006-08-22 23:30 161792 --a------ C:\WINDOWS\system32\ieakui.dll
2006-08-21 13:21 16896 --a------ C:\WINDOWS\system32\fltlib.dll
2006-08-21 10:14 23040 --a------ C:\WINDOWS\system32\fltmc.exe
2006-08-21 10:14 128896 --a------ C:\WINDOWS\system32\drivers\fltmgr.sys
2006-08-20 17:00 -------- d-------- C:\Program Files\Common Files\zwmr
2006-08-10 19:46 22752 --a------ C:\WINDOWS\system32\spupdsvc.exe
2006-08-01 17:59 -------- d-------- C:\Program Files\Common Files\InterVideo
2006-07-28 13:06 -------- d---s---- C:\Documents and Settings\HP_Owner\Application Data\Microsoft
2006-07-27 14:24 679424 --a------ C:\WINDOWS\system32\inetcomm.dll
2006-07-21 09:24 72704 --a------ C:\WINDOWS\system32\hlink.dll
2006-06-29 08:05 26112 --------- C:\WINDOWS\system32\idndl.dll
2006-06-29 08:05 23552 --------- C:\WINDOWS\system32\normaliz.dll
2006-06-28 17:59 24576 --------- C:\WINDOWS\system32\nlsdl.dll
2006-06-22 06:06 69120 --a------ C:\WINDOWS\system32\ciodm.dll
2006-06-22 06:06 1435648 --a------ C:\WINDOWS\system32\query.dll


(((((((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))

*Note* empty entries are not shown

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Sonic RecordNow!"=""
"ctfmon.exe"="C:\\WINDOWS\\system32\\ctfmon.exe"
"Yahoo! Pager"="\"C:\\PROGRA~1\\Yahoo!\\MESSEN~1\\YAHOOM~1.EXE\" -quiet"
"dialer"="\"C:\\Program Files\\UTStarcom\\now wireless broadband\\dialer\\Dialer.exe\""

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"NI.UWA6P_0001_N56M1011"="\"C:\\Documents and Settings\\HP_Owner\\Local Settings\\Temporary Internet Files\\Content.IE5\\AZOZL6NM\\WinAntiVirusPro2006ScannerInstall[1].exe\" -nag "
"QuickTime Task"="\"C:\\Program Files\\QuickTime\\qttask.exe\" -atboottime"
"TkBellExe"="\"C:\\Program Files\\Common Files\\Real\\Update_OB\\realsched.exe\" -osboot"
"NI.UWA6P_0001_N56M1011] \"C:\\Documents and Settings\\HP_Owner\\Local Settings\\Temporary Internet Files\\Content.IE5\\AZOZL6NM\\WinAntiVirusPro2006ScannerInstall[1"="exe\" -nag "
"!ewido"="\"C:\\Program Files\\ewido anti-spyware 4.0\\ewido.exe\" /minimized"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\OptionalComponents]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\OptionalComponents\IMAIL]
"Installed"="1"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\OptionalComponents\MAPI]
"Installed"="1"
"NoChange"="1"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\OptionalComponents\MSFS]
"Installed"="1"

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\Desktop\Components]
"DeskHtmlVersion"=dword:00000110
"DeskHtmlMinorVersion"=dword:00000005
"Settings"=dword:00000001
"GeneralFlags"=dword:00000005

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\Desktop\Components\0]
"Source"=""
"SubscribedURL"=""
"FriendlyName"=""
"Flags"=dword:00000000
"Position"=hex:2c,00,00,00,00,00,00,00,01,00,00,00,fc,00,00,00,f2,00,00,00,00,\
00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00
"CurrentState"=hex:00,00,00,00
"OriginalStateInfo"=hex:18,00,00,00,00,00,00,00,01,00,00,00,ff,ff,ff,ff,ff,ff,\
ff,ff,01,00,00,00
"RestoredStateInfo"=hex:18,00,00,00,00,00,00,00,01,00,00,00,fc,00,00,00,f2,00,\
00,00,01,00,00,00

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\shellexecutehooks]
"{AEB6717E-7E19-11d0-97EE-00C04FD91972}"=""
"{57B86673-276A-48B2-BAE7-C6DBB3020EB8}"="ewido anti-spyware 4.0"

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\explorer]
"NoDriveTypeAutoRun"=dword:00000091

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\explorer\Run]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system]
"dontdisplaylastusername"=dword:00000000
"legalnoticecaption"=""
"legalnoticetext"=""
"shutdownwithoutlogon"=dword:00000001
"undockwithoutlogon"=dword:00000001

[HKEY_USERS\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\explorer]
"NoDriveTypeAutoRun"=dword:00000091
"CDRAutoRun"=dword:00000000

[HKEY_USERS\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\explorer]
"NoDriveTypeAutoRun"=dword:00000091
"CDRAutoRun"=dword:00000000

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
"PostBootReminder"="{7849596a-48ea-486e-8937-a2a3009f31a9}"
"CDBurn"="{fbeb8a05-beee-4442-804e-409d6c4515e9}"
"WebCheck"="{E6FB5E20-DE35-11CF-9C87-00AA005127ED}"
"SysTray"="{35CEC8A3-2BE6-11D2-8773-92E220524153}"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSCONFIG\Startupreg]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSCONFIG\Startupreg\BlockChecker]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="block-checker"
"hkey"="HKLM"
"command"="C:\\Program Files\\Block Checker\\block-checker.exe"
"inimapping"="0"


HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders
securityproviders REG_SZ msapsspc.dll, schannel.dll, digest.dll, msnsspc.dll


Contents of the 'Scheduled Tasks' folder
C:\WINDOWS\tasks\Symantec NetDetect.job

Completion time: 21/09/2006 14:26:53.33
ComboFix.txt

[Buckeye_Sam]

Let's get some more info on a suspicious file that shows up in your log.

• Please go to Jotti's malware scan
  
• Copy and paste the following file path into the "File to upload & scan" box on the top of the page:
  
  
  
  C:\WINDOWS\system32\utpppoe.dll
  
  
  
• Click on the submit button
• Please post the results in your next reply.

Also post a new hijackthis log.

[Buckeye_Sam]

Due to lack of feedback, this topic has been closed.

If you need this topic reopened, please contact a staff member. This applies only to the original topic starter. Everyone else please begin a New Topic.