I have the pesky virus that seems to be going around.
I'm following the procedures and starting with this forum first before moving on to the Malware removal forum.
I've followed all of the steps listed on Aug 10, 2004 Malware removal guide. Here is my logfile (hopefully)
Please help!!
Ad-Aware SE Build 1.05
Logfile Created on:Wednesday, April 20, 2005 1:46:22 PM
Created with Ad-Aware SE Personal, free for private use.
Using definitions file:SE1R39 15.04.2005
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
Definition File:
=========================
Definitions File Loaded:
Reference Number : SE1R39 15.04.2005
Internal build : 46
File location : C:\PROGRAM FILES\LAVASOFT\AD-AWARE SE PERSONAL\defs.ref
File size : 459480 Bytes
Total size : 1389159 Bytes
Signature data size : 1358772 Bytes
Reference data size : 29875 Bytes
Signatures total : 38701
Fingerprints total : 794
Fingerprints size : 29979 Bytes
Target categories : 15
Target families : 649
Memory + processor status:
==========================
Number of processors : 1
Processor architecture : Intel Pentium III
Memory available:7 %
Total physical memory:97636 kb
Available physical memory:17008 kb
Total page file size:1999512 kb
Available on page file:1878276 kb
Total virtual memory:2093056 kb
Available virtual memory:2041920 kb
OS:
Ad-Aware SE Settings
===========================
Set : Safe mode (always request confirmation)
Set : Scan active processes
Set : Scan registry
Set : Deep-scan registry
Set : Scan my IE Favorites for banned URLs
Set : Scan within archives
Set : Scan my Hosts file
Extended Ad-Aware SE Settings
===========================
Set : Unload recognized processes & modules during scan
Set : Obtain command line of scanned processes
Set : Scan registry for all users instead of current user only
Set : Always try to unload modules before deletion
Set : Let Windows remove files in use at next reboot
Set : Delete quarantined objects after restoring
Set : Write-protect system files after repair (Hosts file, etc.)
Set : Include basic Ad-Aware settings in log file
Set : Include additional Ad-Aware settings in log file
Set : Play sound at scan completion if scan locates critical objects
04-20-2005 1:46:22 PM - Scan started. (Full System Scan)
Listing running processes
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
#:1 [KERNEL32.DLL]
ModuleName : C:\WINDOWS\SYSTEM\KERNEL32.DLL
Command Line : n/a
ProcessID : 4293872603
Threads : 9
Priority : High
FileVersion : 4.10.1998
ProductVersion : 4.10.1998
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Win32 Kernel core component
InternalName : KERNEL32
LegalCopyright : Copyright © Microsoft Corp. 1991-1998
OriginalFilename : KERNEL32.DLL
#:2 [MSGSRV32.EXE]
ModuleName : C:\WINDOWS\SYSTEM\MSGSRV32.EXE
Command Line : n/a
ProcessID : 4294934623
Threads : 1
Priority : Normal
FileVersion : 4.10.1998
ProductVersion : 4.10.1998
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Windows 32-bit VxD Message Server
InternalName : MSGSRV32
LegalCopyright : Copyright © Microsoft Corp. 1992-1998
OriginalFilename : MSGSRV32.EXE
#:3 [SPOOL32.EXE]
ModuleName : C:\WINDOWS\SYSTEM\SPOOL32.EXE
Command Line : C:\WINDOWS\SYSTEM\spool32.exe
ProcessID : 4294966199
Threads : 2
Priority : Normal
FileVersion : 4.10.1998
ProductVersion : 4.10.1998
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Spooler Sub System Process
InternalName : spool32
LegalCopyright : Copyright © Microsoft Corp. 1994 - 1998
OriginalFilename : spool32.exe
#:4 [MPREXE.EXE]
ModuleName : C:\WINDOWS\SYSTEM\MPREXE.EXE
Command Line : C:\WINDOWS\SYSTEM\MPREXE.EXE
ProcessID : 4294960095
Threads : 2
Priority : Normal
FileVersion : 4.10.1998
ProductVersion : 4.10.1998
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : WIN32 Network Interface Service Process
InternalName : MPREXE
LegalCopyright : Copyright © Microsoft Corp. 1993-1998
OriginalFilename : MPREXE.EXE
#:5 [CCEVTMGR.EXE]
ModuleName : C:\PROGRAM FILES\COMMON FILES\SYMANTEC SHARED\CCEVTMGR.EXE
Command Line : "c:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe"
ProcessID : 4293944367
Threads : 14
Priority : Normal
FileVersion : 2.1.5.1
ProductVersion : 2.1.5.1
ProductName : Common Client
CompanyName : Symantec Corporation
FileDescription : Common Client Event Manager Service
InternalName : ccEvtMgr
LegalCopyright : Copyright © 2000-2003 Symantec Corporation. All rights reserved.
OriginalFilename : ccEvtMgr.exe
#:6 [CCSETMGR.EXE]
ModuleName : C:\PROGRAM FILES\COMMON FILES\SYMANTEC SHARED\CCSETMGR.EXE
Command Line : "c:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe"
ProcessID : 4293937851
Threads : 6
Priority : Normal
FileVersion : 2.1.5.1
ProductVersion : 2.1.5.1
ProductName : Common Client
CompanyName : Symantec Corporation
FileDescription : Common Client Settings Manager Service
InternalName : ccSetMgr
LegalCopyright : Copyright © 2000-2003 Symantec Corporation. All rights reserved.
OriginalFilename : ccSetMgr.exe
#:7 [MSTASK.EXE]
ModuleName : C:\WINDOWS\SYSTEM\MSTASK.EXE
Command Line : mstask.exe
ProcessID : 4293936819
Threads : 3
Priority : Normal
FileVersion : 4.71.1972.1
ProductVersion : 4.71.1972.1
ProductName : Microsoft® Windows® Task Scheduler
CompanyName : Microsoft Corporation
FileDescription : Task Scheduler Engine
InternalName : TaskScheduler
LegalCopyright : Copyright © Microsoft Corp. 2000
OriginalFilename : mstask.exe
#:8 [ENCMONTR.EXE]
ModuleName : C:\PROGRAM FILES\ENCOMPASS\ENCMONTR.EXE
Command Line : "C:\Program Files\Encompass\ENCMONTR.EXE"
ProcessID : 4293931311
Threads : 3
Priority : Normal
FileVersion : 2, 0, 0, 1
ProductVersion : 2, 0, 0, 1
ProductName : MONITOR Application
CompanyName : Encompass, Inc.
FileDescription : Monitor Application
InternalName : MONITOR
LegalCopyright : Copyright © 1997-1999 Encompass, Inc. All rights reserved worldwide.
OriginalFilename : ENCMONTR.EXE
#:9 [KB891711.EXE]
ModuleName : c:\windows\SYSTEM\KB891711\KB891711.EXE
Command Line : n/a
ProcessID : 4293971767
Threads : 1
Priority : Normal
FileVersion : 4.10.2223
ProductVersion : 4.10.2222
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Windows KB891711 component
InternalName : KB891711
LegalCopyright : Copyright © Microsoft Corp. 1991-2005
OriginalFilename : KB891711.EXE
#:10 [MSGLOOP.EXE]
ModuleName : C:\WINDOWS\SYSTEM\MSGLOOP.EXE
Command Line : n/a
ProcessID : 4293981579
Threads : 1
Priority : Normal
FileVersion : 4.05.00.2112
ProductVersion : 4.05.00.2112
ProductName : WaveStream\Endless Wave
CompanyName : Rockwell Corporation
FileDescription : Rockwell WaveStream Message Server
InternalName : MSGLOOP.EXE
LegalCopyright : Copyright © Rockwell Corporation 1996-1998.
OriginalFilename : MSGLOOP.EXE
#:11 [MSG32.EXE]
ModuleName : C:\WINDOWS\SYSTEM\MSG32.EXE
Command Line : MSG32.EXE
ProcessID : 4294070331
Threads : 2
Priority : Realtime
FileVersion : 4.05.00.2112
ProductVersion : 4.05.00.2112
ProductName : WaveStream\Endless Wave
CompanyName : Rockwell Corporation
FileDescription : Rockwell WaveStream Message Server
InternalName : MSGLOOP.EXE
LegalCopyright : Copyright © Rockwell Corporation 1996-1998.
OriginalFilename : MSGLOOP.EXE
#:12 [mmtask.tsk]
ModuleName : C:\WINDOWS\SYSTEM\mmtask.tsk
Command Line : n/a
ProcessID : 4294069347
Threads : 1
Priority : Normal
FileVersion : 4.03.1998
ProductVersion : 4.03.1998
ProductName : Microsoft Windows
CompanyName : Microsoft Corporation
FileDescription : Multimedia background task support module
InternalName : mmtask.tsk
LegalCopyright : Copyright © Microsoft Corp. 1991-1998
OriginalFilename : mmtask.tsk
#:13 [EXPLORER.EXE]
ModuleName : C:\WINDOWS\EXPLORER.EXE
Command Line : C:\WINDOWS\Explorer.exe
ProcessID : 4294069691
Threads : 5
Priority : Normal
FileVersion : 4.72.3110.1
ProductVersion : 4.72.3110.1
ProductName : Microsoft® Windows NT® Operating System
CompanyName : Microsoft Corporation
FileDescription : Windows Explorer
InternalName : explorer
LegalCopyright : Copyright © Microsoft Corp. 1981-1997
OriginalFilename : EXPLORER.EXE
#:14 [SYMLCSVC.EXE]
ModuleName : C:\PROGRAM FILES\COMMON FILES\SYMANTEC SHARED\CCPD-LC\SYMLCSVC.EXE
Command Line : "C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe" start
ProcessID : 4294087011
Threads : 2
Priority : Normal
FileVersion : 1, 8, 48, 77
ProductVersion : 1, 8, 48, 77
ProductName : Symantec Core Component
CompanyName : Symantec Corporation
FileDescription : Symantec Core Component
InternalName : symlcsvc
LegalCopyright : Copyright © 2003
OriginalFilename : symlcsvc.exe
#:15 [CCAPP.EXE]
ModuleName : C:\PROGRAM FILES\COMMON FILES\SYMANTEC SHARED\CCAPP.EXE
Command Line : "C:\Program Files\Common Files\Symantec Shared\ccApp.exe"
ProcessID : 4294082783
Threads : 3
Priority : Normal
FileVersion : 2.1.5.1
ProductVersion : 2.1.5.1
ProductName : Common Client
CompanyName : Symantec Corporation
FileDescription : Common Client User Session
InternalName : ccApp
LegalCopyright : Copyright © 2000-2003 Symantec Corporation. All rights reserved.
OriginalFilename : ccApp.exe
#:16 [MMKEYBD.EXE]
ModuleName : C:\PROGRAM FILES\NETROPA\ONE-TOUCH MULTIMEDIA KEYBOARD\MMKEYBD.EXE
Command Line : "C:\Program Files\Netropa\One-touch Multimedia Keyboard\MMKeybd.exe"
ProcessID : 4294143339
Threads : 8
Priority : Normal
FileVersion : 3.0.7.4
ProductVersion : 3.0.7.4
ProductName : One-touch Multimedia Keyboard
CompanyName : Netropa Corp.
FileDescription : One-touch Multimedia Keyboard
InternalName : MMKEYBD
LegalCopyright : Copyright © 1995-1999 Netropa Corp.
All Rights Reserved.
OriginalFilename : MMKEYBD.EXE
#:17 [TASKMON.EXE]
ModuleName : C:\WINDOWS\TASKMON.EXE
Command Line : "C:\windows\taskmon.exe"
ProcessID : 4294120859
Threads : 2
Priority : Normal
FileVersion : 4.10.1998
ProductVersion : 4.10.1998
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Task Monitor
InternalName : TaskMon
LegalCopyright : Copyright © Microsoft Corp. 1998
OriginalFilename : TASKMON.EXE
#:18 [USBMMKBD.EXE]
ModuleName : C:\WINDOWS\SYSTEM\USBMMKBD.EXE
Command Line : "C:\WINDOWS\SYSTEM\usbmmkbd.exe"
ProcessID : 4294164019
Threads : 2
Priority : Normal
#:19 [ATICWD32.EXE]
ModuleName : C:\WINDOWS\SYSTEM\ATICWD32.EXE
Command Line : "C:\WINDOWS\SYSTEM\Aticwd32.exe"
ProcessID : 4294032503
Threads : 2
Priority : Normal
FileVersion : 4.11.2449
ProductVersion : 4.11.2449
ProductName : ATI Technologies Inc.
CompanyName : ATI Technologies Inc.
FileDescription : ATI Common Windows Display Driver Extension
InternalName : ATICWD32
LegalCopyright : Copyright © ATI Technologies Inc., 1998
OriginalFilename : ATICWD32.EXE
#:20 [ATITASK.EXE]
ModuleName : C:\WINDOWS\SYSTEM\ATITASK.EXE
Command Line : "C:\WINDOWS\SYSTEM\Atitask.exe"
ProcessID : 4294193555
Threads : 2
Priority : Normal
FileVersion : 4.11.2309
ProductVersion : 4.11.2309
ProductName : ATI Technologies, Inc.
CompanyName : ATI Technologies, Inc.
FileDescription : ATI Task Application
InternalName : AtiTask
LegalCopyright : Copyright © ATI Technologies Inc. 1998
OriginalFilename : AtiTask
#:21 [3dmoused.exe]
ModuleName : C:\WINDOWS\SYSTEM\3dmoused.exe
Command Line : n/a
ProcessID : 4294189715
Threads : 1
Priority : Normal
FileVersion : 2.11
ProductVersion : 1.00
ProductName : 3-D Mouse
CompanyName : PEL
FileDescription : 3-D Mouse Daemon
InternalName : 3dmoused.exe
LegalCopyright : Copyright © PEL 1996 - 1997
Comments : For Windows 3.1, Windows 95 & Windows NT 4.0. Supports PS/2, Serial and USB type.
#:22 [KEYBDMGR.EXE]
ModuleName : C:\PROGRAM FILES\NETROPA\ONE-TOUCH MULTIMEDIA KEYBOARD\KEYBDMGR.EXE
Command Line : "C:\PROGRAM FILES\NETROPA\ONE-TOUCH MULTIMEDIA KEYBOARD\KEYBDMGR.EXE"
ProcessID : 4294233855
Threads : 2
Priority : Normal
FileVersion : 3.0.6.4
ProductVersion : 3.0.6.4
ProductName : Keyboard Manager
CompanyName : Netropa Corp.
FileDescription : Keyboard Manager
InternalName : Keyboard Manager
LegalCopyright : Copyright © 1998, Netropa Corp.
OriginalFilename : KeybdMgr.exe
#:23 [HPSYSDRV.EXE]
ModuleName : C:\WINDOWS\SYSTEM\HPSYSDRV.EXE
Command Line : "c:\windows\system\hpsysdrv.exe"
ProcessID : 4294228819
Threads : 2
Priority : Normal
FileVersion : 1, 7, 0, 0
ProductVersion : 1, 7, 0, 0
ProductName : hpsysdrv
CompanyName : Hewlett-Packard Company
FileDescription : hpsysdrv
InternalName : hpsysdrv
LegalCopyright : Copyright © 1998
OriginalFilename : hpsysdrv.exe
#:24 [COBBU.EXE]
ModuleName : C:\COBIAN BACKUP\COBBU.EXE
Command Line : "C:\COBIAN BACKUP\CobBU.exe"
ProcessID : 4294236383
Threads : 6
Priority : Normal
#:25 [SYSTRAY.EXE]
ModuleName : C:\WINDOWS\SYSTEM\SYSTRAY.EXE
Command Line : "C:\WINDOWS\SYSTEM\SysTray.Exe"
ProcessID : 4294148687
Threads : 2
Priority : Normal
FileVersion : 4.10.1998
ProductVersion : 4.10.1998
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : System Tray Applet
InternalName : SYSTRAY
LegalCopyright : Copyright © Microsoft Corp. 1993-1998
OriginalFilename : SYSTRAY.EXE
#:26 [RunDLL.exe]
ModuleName : C:\WINDOWS\RunDLL.exe
Command Line : n/a
ProcessID : 4294099295
Threads : 1
Priority : Normal
FileVersion : 4.10.1998
ProductVersion : 4.10.1998
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Run a DLL as an App
InternalName : rundll
LegalCopyright : Copyright © Microsoft Corp. 1991-1998
OriginalFilename : RUNDLL.EXE
#:27 [OSA.EXE]
ModuleName : C:\PROGRAM FILES\MICROSOFT OFFICE\OFFICE\OSA.EXE
Command Line : "C:\Program Files\Microsoft Office\Office\OSA.EXE" -b
ProcessID : 4294245211
Threads : 2
Priority : Normal
#:28 [FINDFAST.EXE]
ModuleName : C:\PROGRAM FILES\MICROSOFT OFFICE\OFFICE\FINDFAST.EXE
Command Line : "C:\Program Files\Microsoft Office\Office\FINDFAST.EXE"
ProcessID : 4294939635
Threads : 3
Priority : Normal
#:29 [ACROTRAY.EXE]
ModuleName : C:\PROGRAM FILES\ADOBE\ACROBAT 4.0\DISTILLR\ACROTRAY.EXE
Command Line : "C:\Program Files\Adobe\Acrobat 4.0\Distillr\AcroTray.exe"
ProcessID : 4294252379
Threads : 2
Priority : Normal
#:30 [OSD.EXE]
ModuleName : C:\PROGRA~1\NETROPA\ONSCRE~1\OSD.EXE
Command Line : n/a
ProcessID : 4294269179
Threads : 1
Priority : Normal
FileVersion : 2.42
ProductVersion : 2.42
ProductName : OSD
CompanyName : Netropa Corp.
FileDescription : Onscreen Display
InternalName : OSD
LegalCopyright : Copyright © 1995-1998 Netropa Corp.
LegalTrademarks : Netropa
OriginalFilename : OSD.EXE
#:31 [RUNDLL32.EXE]
ModuleName : C:\WINDOWS\RUNDLL32.EXE
Command Line : RunDll32
ProcessID : 4294291759
Threads : 2
Priority : Normal
FileVersion : 4.10.1998
ProductVersion : 4.10.1998
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Run a DLL as an App
InternalName : rundll
LegalCopyright : Copyright © Microsoft Corp. 1991-1998
OriginalFilename : RUNDLL.EXE
#:32 [MMUSBKB2.EXE]
ModuleName : C:\PROGRAM FILES\NETROPA\ONE-TOUCH MULTIMEDIA KEYBOARD\MMUSBKB2.EXE
Command Line : "C:\PROGRAM FILES\NETROPA\ONE-TOUCH MULTIMEDIA KEYBOARD\MMUSBKB2.EXE"
ProcessID : 4294282911
Threads : 2
Priority : Normal
FileVersion : 1.0
ProductVersion : 1.0
ProductName : USB Multimedia Keyboard Driver 2
CompanyName : Netropa Corporation
FileDescription : USB Multimedia Keyboard Driver 2
InternalName : mmusbkb2
LegalCopyright : Copyright © 1998 Netropa Corporation
OriginalFilename : mmusbkb2.exe
#:33 [CBUI.EXE]
ModuleName : C:\COBIAN BACKUP\CBUI.EXE
Command Line : "C:\COBIAN BACKUP\cbui.exe"
ProcessID : 4294338883
Threads : 4
Priority : Normal
FileVersion : 3.9.2.0
ProductVersion : 3.0.0.0
ProductName : Cobian Backup
CompanyName : Luis Cobian
FileDescription : Cobian Backup
InternalName : CobBackUp
LegalCopyright : © 2000-2002 by Luis Cobian
OriginalFilename : cbui.exe
#:34 [AD-AWARE.EXE]
ModuleName : C:\PROGRAM FILES\LAVASOFT\AD-AWARE SE PERSONAL\AD-AWARE.EXE
Command Line : "C:\Program Files\Lavasoft\Ad-Aware SE Personal\Ad-Aware.exe"
ProcessID : 4294197079
Threads : 3
Priority : Normal
FileVersion : 6.2.0.206
ProductVersion : VI.Second Edition
ProductName : Lavasoft Ad-Aware SE
CompanyName : Lavasoft Sweden
FileDescription : Ad-Aware SE Core application
InternalName : Ad-Aware.exe
LegalCopyright : Copyright © Lavasoft Sweden
OriginalFilename : Ad-Aware.exe
Comments : All Rights Reserved
Memory scan result:
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
New critical objects: 0
Objects found so far: 0
Started registry scan
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
Alexa Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment :
Rootkey : HKEY_LOCAL_MACHINE
Object : software\microsoft\internet explorer\extensions\{c95fe080-8f5d-11d2-a20b-00aa003c157a}
Alexa Object Recognized!
Type : RegValue
Data :
Category : Data Miner
Comment :
Rootkey : HKEY_LOCAL_MACHINE
Object : software\microsoft\internet explorer\extensions\{c95fe080-8f5d-11d2-a20b-00aa003c157a}
Value : MenuText
Alexa Object Recognized!
Type : RegValue
Data :
Category : Data Miner
Comment :
Rootkey : HKEY_LOCAL_MACHINE
Object : software\microsoft\internet explorer\extensions\{c95fe080-8f5d-11d2-a20b-00aa003c157a}
Value : MenuStatusBar
Alexa Object Recognized!
Type : RegValue
Data :
Category : Data Miner
Comment :
Rootkey : HKEY_LOCAL_MACHINE
Object : software\microsoft\internet explorer\extensions\{c95fe080-8f5d-11d2-a20b-00aa003c157a}
Value : Script
Alexa Object Recognized!
Type : RegValue
Data :
Category : Data Miner
Comment :
Rootkey : HKEY_LOCAL_MACHINE
Object : software\microsoft\internet explorer\extensions\{c95fe080-8f5d-11d2-a20b-00aa003c157a}
Value : clsid
Alexa Object Recognized!
Type : RegValue
Data :
Category : Data Miner
Comment :
Rootkey : HKEY_LOCAL_MACHINE
Object : software\microsoft\internet explorer\extensions\{c95fe080-8f5d-11d2-a20b-00aa003c157a}
Value : Icon
Alexa Object Recognized!
Type : RegValue
Data :
Category : Data Miner
Comment :
Rootkey : HKEY_LOCAL_MACHINE
Object : software\microsoft\internet explorer\extensions\{c95fe080-8f5d-11d2-a20b-00aa003c157a}
Value : HotIcon
Alexa Object Recognized!
Type : RegValue
Data :
Category : Data Miner
Comment :
Rootkey : HKEY_LOCAL_MACHINE
Object : software\microsoft\internet explorer\extensions\{c95fe080-8f5d-11d2-a20b-00aa003c157a}
Value : ButtonText
Alexa Object Recognized!
Type : RegValue
Data :
Category : Data Miner
Comment : "{c95fe080-8f5d-11d2-a20b-00aa003c157a}"
Rootkey : HKEY_USERS
Object : .DEFAULT\software\microsoft\internet explorer\extensions\cmdmapping
Value : {c95fe080-8f5d-11d2-a20b-00aa003c157a}
CoolWebSearch Object Recognized!
Type : RegValue
Data :
Category : Malware
Comment : "HOMEOldSP"
Rootkey : HKEY_USERS
Object : .DEFAULT\software\microsoft\internet explorer\main
Value : HOMEOldSP
CoolWebSearch Object Recognized!
Type : RegValue
Data :
Category : Malware
Comment : "HOMEOldSP"
Rootkey : HKEY_LOCAL_MACHINE
Object : software\microsoft\internet explorer\main
Value : HOMEOldSP
Registry Scan result:
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
New critical objects: 11
Objects found so far: 11
Started deep registry scan
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
Deep registry scan result:
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
New critical objects: 0
Objects found so far: 11
Started Tracking Cookie scan
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : 110@weborama[1].txt
Category : Data Miner
Comment : Hits:3
Value : Cookie:[email protected]/
Expires : 06-02-2005 10:35:08 AM
LastSync : Hits:3
UseCount : 0
Hits : 3
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : 110@cgi-bin[10].txt
Category : Data Miner
Comment : Hits:1
Value : Cookie:[email protected]/ccp5/cgi-bin
Expires : 06-19-2004 12:34:26 PM
LastSync : Hits:1
UseCount : 0
Hits : 1
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : [email protected][4].txt
Category : Data Miner
Comment : Hits:145
Value : Cookie:[email protected]/
Expires : 03-08-2073 12:54:02 PM
LastSync : Hits:145
UseCount : 0
Hits : 145
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : 110@cgi-bin[4].txt
Category : Data Miner
Comment : Hits:26
Value : Cookie:[email protected]/cgi-bin/
Expires : 09-15-2004 10:16:30 AM
LastSync : Hits:26
UseCount : 0
Hits : 26
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : [email protected][1].txt
Category : Data Miner
Comment : Hits:3
Value : Cookie:[email protected]/
Expires : 02-28-2007 4:59:58 PM
LastSync : Hits:3
UseCount : 0
Hits : 3
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : [email protected][1].txt
Category : Data Miner
Comment : Hits:1
Value : Cookie:[email protected]/
Expires : 09-06-2014 4:50:08 PM
LastSync : Hits:1
UseCount : 0
Hits : 1
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : 110@accumail[3].txt
Category : Data Miner
Comment : Hits:5
Value : Cookie:[email protected]/
Expires : 05-27-2004 2:28:14 PM
LastSync : Hits:5
UseCount : 0
Hits : 5
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : [email protected][2].txt
Category : Data Miner
Comment : Hits:4
Value : Cookie:[email protected]/
Expires : 12-31-2037 10:00:00 PM
LastSync : Hits:4
UseCount : 0
Hits : 4
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : 110@tripod[3].txt
Category : Data Miner
Comment : Hits:24
Value : Cookie:[email protected]/
Expires : 06-04-2005 2:02:28 PM
LastSync : Hits:24
UseCount : 0
Hits : 24
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : 110@tickle[5].txt
Category : Data Miner
Comment : Hits:1502
Value : Cookie:[email protected]/
Expires : 04-07-2007 2:00:28 PM
LastSync : Hits:1502
UseCount : 0
Hits : 1502
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : [email protected][2].txt
Category : Data Miner
Comment : Hits:3
Value : Cookie:[email protected]/
Expires : 03-12-2004 11:23:08 AM
LastSync : Hits:3
UseCount : 0
Hits : 3
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : 110@cgi-bin[16].txt
Category : Data Miner
Comment : Hits:2
Value : Cookie:[email protected]/cgi-bin/
Expires : 02-07-2004 3:26:06 PM
LastSync : Hits:2
UseCount : 0
Hits : 2
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : 110@maxserving[4].txt
Category : Data Miner
Comment : Hits:34
Value : Cookie:[email protected]/
Expires : 02-02-2015 9:21:34 AM
LastSync : Hits:34
UseCount : 0
Hits : 34
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : [email protected][2].txt
Category : Data Miner
Comment : Hits:3
Value : Cookie:[email protected]/
Expires : 03-03-2004 4:34:38 PM
LastSync : Hits:3
UseCount : 0
Hits : 3
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : [email protected][5].txt
Category : Data Miner
Comment : Hits:43
Value : Cookie:[email protected]/
Expires : 12-31-2037 10:00:00 PM
LastSync : Hits:43
UseCount : 0
Hits : 43
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : 110@cgi-bin[19].txt
Category : Data Miner
Comment : Hits:75
Value : Cookie:[email protected]/cgi-bin/
Expires : 10-19-2004 9:52:58 AM
LastSync : Hits:75
UseCount : 0
Hits : 75
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : 110@cgi-bin[22].txt
Category : Data Miner
Comment : Hits:1
Value : Cookie:[email protected]/cgi-bin/
Expires : 10-27-2004 4:03:04 PM
LastSync : Hits:1
UseCount : 0
Hits : 1
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : [email protected][2].txt
Category : Data Miner
Comment : Hits:4
Value : Cookie:[email protected]/
Expires : 12-30-2037 9:00:00 AM
LastSync : Hits:4
UseCount : 0
Hits : 4
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : 110@overstock[1].txt
Category : Data Miner
Comment : Hits:14
Value : Cookie:[email protected]/
Expires : 12-31-2004 4:59:58 PM
LastSync : Hits:14
UseCount : 0
Hits : 14
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : [email protected][2].txt
Category : Data Miner
Comment : Hits:8
Value : Cookie:[email protected]/
Expires : 01-21-2004 9:40:14 PM
LastSync : Hits:8
UseCount : 0
Hits : 8
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : [email protected][1].txt
Category : Data Miner
Comment : Hits:1
Value : Cookie:[email protected]/
Expires : 10-25-2005 1:35:52 PM
LastSync : Hits:1
UseCount : 0
Hits : 1
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : [email protected][1].txt
Category : Data Miner
Comment : Hits:8
Value : Cookie:[email protected]/
Expires : 12-05-2004 11:38:06 AM
LastSync : Hits:8
UseCount : 0
Hits : 8
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : 110@adrevolver[4].txt
Category : Data Miner
Comment : Hits:35
Value : Cookie:[email protected]/adrevolver/
Expires : 12-25-2007 11:49:10 PM
LastSync : Hits:35
UseCount : 0
Hits : 35
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : 110@specificclick[1].txt
Category : Data Miner
Comment : Hits:11
Value : Cookie:[email protected]/
Expires : 08-17-2014 8:26:44 AM
LastSync : Hits:11
UseCount : 0
Hits : 11
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : 110@xxxcounter[2].txt
Category : Data Miner
Comment : Hits:2
Value : Cookie:[email protected]/
Expires : 12-03-2004 12:15:12 PM
LastSync : Hits:2
UseCount : 0
Hits : 2
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : 110@serving-sys[4].txt
Category : Data Miner
Comment : Hits:107
Value : Cookie:[email protected]/
Expires : 12-31-2037 10:00:00 PM
LastSync : Hits:107
UseCount : 0
Hits : 107
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : 110@apmebf[3].txt
Category : Data Miner
Comment : Hits:13
Value : Cookie:[email protected]/
Expires : 12-05-2009 2:44:26 PM
LastSync : Hits:13
UseCount : 0
Hits : 13
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : 110@date[2].txt
Category : Data Miner
Comment : Hits:4
Value : Cookie:[email protected]/
Expires : 12-09-2003 10:28:36 AM
LastSync : Hits:4
UseCount : 0
Hits : 4
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : [email protected][1].txt
Category : Data Miner
Comment : Hits:76
Value : Cookie:[email protected]/
Expires : 10-12-2004 4:57:24 AM
LastSync : Hits:76
UseCount : 0
Hits : 76
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : 110@cgi-bin[17].txt
Category : Data Miner
Comment : Hits:1
Value : Cookie:[email protected]/cgi-bin/
Expires : 12-30-2010 5:00:00 PM
LastSync : Hits:1
UseCount : 0
Hits : 1
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : [email protected][1].txt
Category : Data Miner
Comment : Hits:1
Value : Cookie:[email protected]/
Expires : 12-21-2004 5:26:48 AM
LastSync : Hits:1
UseCount : 0
Hits : 1
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : [email protected][1].txt
Category : Data Miner
Comment : Hits:3
Value : Cookie:[email protected]/
Expires : 06-29-2021 6:48:54 AM
LastSync : Hits:3
UseCount : 0
Hits : 3
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : 110@~~local~~[1].txt
Category : Data Miner
Comment : Hits:1
Value : Cookie:110@~~local~~/
Expires : 12-31-2019 5:00:00 PM
LastSync : Hits:1
UseCount : 0
Hits : 1
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : 110@casalemedia[4].txt
Category : Data Miner
Comment : Hits:216
Value : Cookie:[email protected]/
Expires : 04-19-2014 8:59:32 AM
LastSync : Hits:216
UseCount : 0
Hits : 216
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : [email protected][2].txt
Category : Data Miner
Comment : Hits:2
Value : Cookie:[email protected]/
Expires : 10-26-2014 3:00:00 PM
LastSync : Hits:2
UseCount : 0
Hits : 2
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : 110@versiontracker[3].txt
Category : Data Miner
Comment : Hits:10
Value : Cookie:[email protected]/
Expires : 01-17-2038 5:00:00 PM
LastSync : Hits:10
UseCount : 0
Hits : 10
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : [email protected][1].txt
Category : Data Miner
Comment : Hits:1
Value : Cookie:[email protected]/
Expires : 12-21-2004 4:58:04 PM
LastSync : Hits:1
UseCount : 0
Hits : 1
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : [email protected][2].txt
Category : Data Miner
Comment : Hits:2
Value : Cookie:[email protected]/
Expires : 05-12-2024 11:07:28 AM
LastSync : Hits:2
UseCount : 0
Hits : 2
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : [email protected][1].txt
Category : Data Miner
Comment : Hits:1
Value : Cookie:[email protected]/
Expires : 10-26-2005 9:00:00 PM
LastSync : Hits:1
UseCount : 0
Hits : 1
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : 110@linksynergy[1].txt
Category : Data Miner
Comment :
Value : C:\WINDOWS\Cookies\110@linksynergy[1].txt
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : 110@doubleclick[1].txt
Category : Data Miner
Comment :
Value : C:\WINDOWS\Cookies\110@doubleclick[1].txt
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : 110@centrport[2].txt
Category : Data Miner
Comment :
Value : C:\WINDOWS\Cookies\110@centrport[2].txt
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : [email protected][2].txt
Category : Data Miner
Comment :
Value : C:\WINDOWS\Cookies\[email protected][2].txt
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : [email protected][2].txt
Category : Data Miner
Comment :
Value : C:\WINDOWS\Cookies\[email protected][2].txt
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : 110@focalink[1].txt
Category : Data Miner
Comment :
Value : C:\WINDOWS\Cookies\110@focalink[1].txt
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : 110@mediaplex[1].txt
Category : Data Miner
Comment :
Value : C:\WINDOWS\Cookies\110@mediaplex[1].txt
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : [email protected][1].txt
Category : Data Miner
Comment :
Value : C:\WINDOWS\Cookies\[email protected][1].txt
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : 110@hitbox[2].txt
Category : Data Miner
Comment :
Value : C:\WINDOWS\Cookies\110@hitbox[2].txt
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : [email protected][2].txt
Category : Data Miner
Comment :
Value : C:\WINDOWS\Cookies\[email protected][2].txt
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : 110@admonitor[2].txt
Category : Data Miner
Comment :
Value : C:\WINDOWS\Cookies\110@admonitor[2].txt
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : 110@bfast[1].txt
Category : Data Miner
Comment :
Value : C:\WINDOWS\Cookies\110@bfast[1].txt
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : [email protected][3].txt
Category : Data Miner
Comment :
Value : C:\WINDOWS\Cookies\[email protected][3].txt
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : 110@trafficmp[1].txt
Category : Data Miner
Comment :
Value : C:\WINDOWS\Cookies\110@trafficmp[1].txt
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : [email protected][3].txt
Category : Data Miner
Comment :
Value : C:\WINDOWS\Cookies\[email protected][3].txt
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : [email protected][1].txt
Category : Data Miner
Comment :
Value : C:\WINDOWS\Cookies\[email protected][1].txt
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : 110@hitbox[1].txt
Category : Data Miner
Comment :
Value : C:\WINDOWS\Cookies\110@hitbox[1].txt
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : 110@hitbox[9].txt
Category : Data Miner
Comment :
Value : C:\WINDOWS\Cookies\110@hitbox[9].txt
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : [email protected][3].txt
Category : Data Miner
Comment :
Value : C:\WINDOWS\Cookies\[email protected][3].txt
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : 110@fastclick[2].txt
Category : Data Miner
Comment :
Value : C:\WINDOWS\Cookies\110@fastclick[2].txt
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : 110@pointroll[2].txt
Category : Data Miner
Comment :
Value : C:\WINDOWS\Cookies\110@pointroll[2].txt
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : [email protected][1].txt
Category : Data Miner
Comment :
Value : C:\WINDOWS\Cookies\[email protected][1].txt
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : 110@questionmarket[2].txt
Category : Data Miner
Comment :
Value : C:\WINDOWS\Cookies\110@questionmarket[2].txt
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : 110@tripod[1].txt
Category : Data Miner
Comment :
Value : C:\WINDOWS\Cookies\110@tripod[1].txt
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : [email protected][4].txt
Category : Data Miner
Comment :
Value : C:\WINDOWS\Cookies\[email protected][4].txt
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : 110@overture[1].txt
Category : Data Miner
Comment :
Value : C:\WINDOWS\Cookies\110@overture[1].txt
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : [email protected][4].txt
Category : Data Miner
Comment :
Value : C:\WINDOWS\Cookies\[email protected][4].txt
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : 110@mediaplex[3].txt
Category : Data Miner
Comment :
Value : C:\WINDOWS\Cookies\110@mediaplex[3].txt
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : [email protected][1].txt
Category : Data Miner
Comment :
Value : C:\WINDOWS\Cookies\[email protected][1].txt
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : 110@paycounter[3].txt
Category : Data Miner
Comment :
Value : C:\WINDOWS\Cookies\110@paycounter[3].txt
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : [email protected][1].txt
Category : Data Miner
Comment :
Value : C:\WINDOWS\Cookies\[email protected][1].txt
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : 110@fastclick[4].txt
Category : Data Miner
Comment :
Value : C:\WINDOWS\Cookies\110@fastclick[4].txt
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : 110@atdmt[2].txt
Category : Data Miner
Comment :
Value : C:\WINDOWS\Cookies\110@atdmt[2].txt
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : [email protected][1].txt
Category : Data Miner
Comment :
Value : C:\WINDOWS\Cookies\[email protected][1].txt
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : [email protected][2].txt
Category : Data Miner
Comment :
Value : C:\WINDOWS\Cookies\[email protected][2].txt
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : 110@hitbox[3].txt
Category : Data Miner
Comment :
Value : C:\WINDOWS\Cookies\110@hitbox[3].txt
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : 110@hitbox[4].txt
Category : Data Miner
Comment :
Value : C:\WINDOWS\Cookies\110@hitbox[4].txt
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : 110@hitbox[6].txt
Category : Data Miner
Comment :
Value : C:\WINDOWS\Cookies\110@hitbox[6].txt
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : 110@realmedia[1].txt
Category : Data Miner
Comment :
Value : C:\WINDOWS\Cookies\110@realmedia[1].txt
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : 110@fastclick[1].txt
Category : Data Miner
Comment :
Value : C:\WINDOWS\Cookies\110@fastclick[1].txt
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : [email protected][1].txt
Category : Data Miner
Comment :
Value : C:\WINDOWS\Cookies\[email protected][1].txt
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : 110@clickagents[1].txt
Category : Data Miner
Comment :
Value : C:\WINDOWS\Cookies\110@clickagents[1].txt
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : [email protected][3].txt
Category : Data Miner
Comment :
Value : C:\WINDOWS\Cookies\[email protected][3].txt
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : [email protected][1].txt
Category : Data Miner
Comment :
Value : C:\WINDOWS\Cookies\[email protected][1].txt
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : [email protected][1].txt
Category : Data Miner
Comment :
Value : C:\WINDOWS\Cookies\[email protected][1].txt
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : 110@mediaplex[2].txt
Category : Data Miner
Comment :
Value : C:\WINDOWS\Cookies\110@mediaplex[2].txt
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : [email protected][3].txt
Category : Data Miner
Comment :
Value : C:\WINDOWS\Cookies\[email protected][3].txt
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : 110@fastclick[3].txt
Category : Data Miner
Comment :
Value : C:\WINDOWS\Cookies\110@fastclick[3].txt
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : [email protected][4].txt
Category : Data Miner
Comment :
Value : C:\WINDOWS\Cookies\[email protected][4].txt
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : 110@fastclick[6].txt
Category : Data Miner
Comment :
Value : C:\WINDOWS\Cookies\110@fastclick[6].txt
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : 110@questionmarket[3].txt
Category : Data Miner
Comment :
Value : C:\WINDOWS\Cookies\110@questionmarket[3].txt
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : [email protected][2].txt
Category : Data Miner
Comment :
Value : C:\WINDOWS\Cookies\[email protected][2].txt
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : 110@qksrv[1].txt
Category : Data Miner
Comment :
Value : C:\WINDOWS\Cookies\110@qksrv[1].txt
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : [email protected][3].txt
Category : Data Miner
Comment :
Value : C:\WINDOWS\Cookies\[email protected][3].txt
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : 110@trafficmp[3].txt
Category : Data Miner
Comment :
Value : C:\WINDOWS\Cookies\110@trafficmp[3].txt
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : [email protected][2].txt
Category : Data Miner
Comment :
Value : C:\WINDOWS\Cookies\[email protected][2].txt
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : 110@2o7[6].txt
Category : Data Miner
Comment :
Value : C:\WINDOWS\Cookies\110@2o7[6].txt
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : [email protected][1].txt
Category : Data Miner
Comment :
Value : C:\WINDOWS\Cookies\[email protected][1].txt
Tracking Cookie Object Recognized!
Type