Jump to content

Welcome to Geeks to Go - Register now for FREE

Need help with your computer or device? Want to learn new tech skills? You're in the right place!
Geeks to Go is a friendly community of tech experts who can solve any problem you have. Just create a free account and post your question. Our volunteers will reply quickly and guide you through the steps. Don't let tech troubles stop you. Join Geeks to Go now and get the support you need!

How it Works Create Account
Photo

Searchmiracle.com popups everywhere

Started by amf2880 , Apr 22 2005 03:43 PM

  • This topic is locked This topic is locked

#1
amf2880
Posted 22 April 2005 - 03:43 PM

amf2880

    Member

  • Member
  • PipPip
  • 15 posts
I am getting searchmiracle.com popups all over the place. Please help!
Here is my ad-aware log file:


Ad-Aware SE Build 1.05
Logfile Created on:Friday, April 22, 2005 4:31:12 PM
Created with Ad-Aware SE Personal, free for private use.
Using definitions file:SE1R40 20.04.2005
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»

References detected during the scan:
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
180Solutions(TAC index:6):4 total references
Adintelligence.AproposToolbar(TAC index:5):1 total references
AdRotator(TAC index:6):10 total references
ClearSearch(TAC index:7):266 total references
DealHelper(TAC index:7):8 total references
Ebates MoneyMaker(TAC index:4):1 total references
Elitum.ElitebarBHO(TAC index:5):24 total references
eUniverse(TAC index:10):2 total references
Favoriteman(TAC index:8):4 total references
IBIS Toolbar(TAC index:5):28 total references
MRU List(TAC index:0):33 total references
PeopleOnPage(TAC index:9):13 total references
Possible Browser Hijack attempt(TAC index:3):5 total references
SahAgent(TAC index:9):8 total references
Tracking Cookie(TAC index:3):65 total references
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»

Definition File:
=========================
Definitions File Loaded:
Reference Number : SE1R40 20.04.2005
Internal build : 47
File location : C:\Program Files\Lavasoft\Ad-Aware SE Personal\defs.ref
File size : 461235 Bytes
Total size : 1395231 Bytes
Signature data size : 1364710 Bytes
Reference data size : 30009 Bytes
Signatures total : 38921
Fingerprints total : 813
Fingerprints size : 29073 Bytes
Target categories : 15
Target families : 650


Memory + processor status:
==========================
Number of processors : 1
Processor architecture : Intel Pentium IV
Memory available:40 %
Total physical memory:253424 kb
Available physical memory:99788 kb
Total page file size:620964 kb
Available on page file:404300 kb
Total virtual memory:2097024 kb
Available virtual memory:2042220 kb
OS:Microsoft Windows XP Professional Service Pack 2 (Build 2600)

Ad-Aware SE Settings
===========================
Set : Search for negligible risk entries
Set : Move deleted files to Recycle Bin
Set : Safe mode (always request confirmation)
Set : Scan active processes
Set : Scan registry
Set : Deep-scan registry
Set : Scan my IE Favorites for banned URLs
Set : Scan within archives
Set : Scan my Hosts file

Extended Ad-Aware SE Settings
===========================
Set : Unload recognized processes & modules during scan
Set : Obtain command line of scanned processes
Set : Scan registry for all users instead of current user only
Set : Always try to unload modules before deletion
Set : During removal, unload Explorer and IE if necessary
Set : Let Windows remove files in use at next reboot
Set : Delete quarantined objects after restoring
Set : Write-protect system files after repair (Hosts file, etc.)
Set : Include basic Ad-Aware settings in log file
Set : Include additional Ad-Aware settings in log file
Set : Include reference summary in log file
Set : Include alternate data stream details in log file
Set : Play sound at scan completion if scan locates critical objects


4-22-2005 4:31:12 PM - Scan started. (Custom mode)

Listing running processes
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»

#:1 [smss.exe]
ModuleName : \SystemRoot\System32\smss.exe
Command Line : n/a
ProcessID : 468
ThreadCreationTime : 4-22-2005 9:19:51 PM
BasePriority : Normal


#:2 [csrss.exe]
ModuleName : \??\C:\WINDOWS\system32\csrss.exe
Command Line : C:\WINDOWS\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,3072,512 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ProfileControl=Off MaxRequestTh
ProcessID : 524
ThreadCreationTime : 4-22-2005 9:19:52 PM
BasePriority : Normal


#:3 [winlogon.exe]
ModuleName : \??\C:\WINDOWS\system32\winlogon.exe
Command Line : winlogon.exe
ProcessID : 548
ThreadCreationTime : 4-22-2005 9:19:52 PM
BasePriority : High


#:4 [services.exe]
ModuleName : C:\WINDOWS\system32\services.exe
Command Line : C:\WINDOWS\system32\services.exe
ProcessID : 592
ThreadCreationTime : 4-22-2005 9:19:53 PM
BasePriority : Normal
FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 5.1.2600.2180
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Services and Controller app
InternalName : services.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : services.exe

#:5 [lsass.exe]
ModuleName : C:\WINDOWS\system32\lsass.exe
Command Line : C:\WINDOWS\system32\lsass.exe
ProcessID : 604
ThreadCreationTime : 4-22-2005 9:19:53 PM
BasePriority : Normal
FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 5.1.2600.2180
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : LSA Shell (Export Version)
InternalName : lsass.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : lsass.exe

#:6 [svchost.exe]
ModuleName : C:\WINDOWS\system32\svchost.exe
Command Line : C:\WINDOWS\system32\svchost -k DcomLaunch
ProcessID : 788
ThreadCreationTime : 4-22-2005 9:19:53 PM
BasePriority : Normal
FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 5.1.2600.2180
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Generic Host Process for Win32 Services
InternalName : svchost.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : svchost.exe

#:7 [svchost.exe]
ModuleName : C:\WINDOWS\system32\svchost.exe
Command Line : C:\WINDOWS\system32\svchost -k rpcss
ProcessID : 844
ThreadCreationTime : 4-22-2005 9:19:53 PM
BasePriority : Normal
FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 5.1.2600.2180
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Generic Host Process for Win32 Services
InternalName : svchost.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : svchost.exe

#:8 [svchost.exe]
ModuleName : C:\WINDOWS\System32\svchost.exe
Command Line : C:\WINDOWS\System32\svchost.exe -k netsvcs
ProcessID : 908
ThreadCreationTime : 4-22-2005 9:19:53 PM
BasePriority : Normal
FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 5.1.2600.2180
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Generic Host Process for Win32 Services
InternalName : svchost.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : svchost.exe

#:9 [svchost.exe]
ModuleName : C:\WINDOWS\System32\svchost.exe
Command Line : C:\WINDOWS\System32\svchost.exe -k NetworkService
ProcessID : 964
ThreadCreationTime : 4-22-2005 9:19:53 PM
BasePriority : Normal
FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 5.1.2600.2180
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Generic Host Process for Win32 Services
InternalName : svchost.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : svchost.exe

#:10 [svchost.exe]
ModuleName : C:\WINDOWS\System32\svchost.exe
Command Line : C:\WINDOWS\System32\svchost.exe -k LocalService
ProcessID : 1088
ThreadCreationTime : 4-22-2005 9:19:54 PM
BasePriority : Normal
FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 5.1.2600.2180
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Generic Host Process for Win32 Services
InternalName : svchost.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : svchost.exe

#:11 [spoolsv.exe]
ModuleName : C:\WINDOWS\system32\spoolsv.exe
Command Line : C:\WINDOWS\system32\spoolsv.exe
ProcessID : 1192
ThreadCreationTime : 4-22-2005 9:19:54 PM
BasePriority : Normal
FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 5.1.2600.2180
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Spooler SubSystem App
InternalName : spoolsv.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : spoolsv.exe

#:12 [kodakccs.exe]
ModuleName : C:\WINDOWS\system32\drivers\KodakCCS.exe
Command Line : C:\WINDOWS\system32\drivers\KodakCCS.exe
ProcessID : 1376
ThreadCreationTime : 4-22-2005 9:19:57 PM
BasePriority : Normal
FileVersion : 1.1.5100.4
ProductVersion : 4.4.0.0
ProductName : Kodak DC File System Driver (Win32)
CompanyName : Eastman Kodak Company
FileDescription : Kodak DC Ring 3 Conduit (Win32)
InternalName : KodakCCS.exe
LegalCopyright : Copyright © Eastman Kodak Co. 2000-2004
OriginalFilename : DcFsSvc.exe

#:13 [alg.exe]
ModuleName : C:\WINDOWS\System32\alg.exe
Command Line : C:\WINDOWS\System32\alg.exe
ProcessID : 1936
ThreadCreationTime : 4-22-2005 9:20:01 PM
BasePriority : Normal
FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 5.1.2600.2180
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Application Layer Gateway Service
InternalName : ALG.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : ALG.exe

#:14 [explorer.exe]
ModuleName : C:\WINDOWS\Explorer.EXE
Command Line : C:\WINDOWS\Explorer.EXE
ProcessID : 392
ThreadCreationTime : 4-22-2005 9:20:02 PM
BasePriority : Normal
FileVersion : 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 6.00.2900.2180
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Windows Explorer
InternalName : explorer
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : EXPLORER.EXE
Warning! ClearSearch Object found in memory(C:\Program Files\84hjm1oq\84hjm1oq.DLL)

ClearSearch Object Recognized!
Type : Process
Data : 84hjm1oq.DLL
Category : Data Miner
Comment :
Object : C:\Program Files\84hjm1oq\
FileVersion : 1.83.0.5
ProductVersion : 1.83.0.5
InternalName : Grip.dll
OriginalFilename : Grip.dll
Comments : Build 83 E


#:15 [pccntmon.exe]
ModuleName : C:\Program Files\Trend Micro\OfficeScan Client\pccntmon.exe
Command Line : "C:\Program Files\Trend Micro\OfficeScan Client\pccntmon.exe" -HideWindow
ProcessID : 1256
ThreadCreationTime : 4-22-2005 9:20:08 PM
BasePriority : Normal
FileVersion : 5.58.0.1063
ProductVersion : 5.58
ProductName : Trend Micro OfficeScan
CompanyName : Trend Micro Inc.
FileDescription : I/O Monitor
InternalName : PCCNTMON
LegalCopyright : Copyright © 1999-2004 Trend Micro Incorporated. All rights reserved.
LegalTrademarks : Copyright © Trend Micro, Inc.
OriginalFilename : PCCNTMON.EXE
Warning! ClearSearch Object found in memory(C:\Program Files\84hjm1oq\84hjm1oq.DLL)

ClearSearch Object Recognized!
Type : Process
Data : 84hjm1oq.DLL
Category : Data Miner
Comment :
Object : C:\Program Files\84hjm1oq\
FileVersion : 1.83.0.5
ProductVersion : 1.83.0.5
InternalName : Grip.dll
OriginalFilename : Grip.dll
Comments : Build 83 E

"C:\Program Files\Trend Micro\OfficeScan Client\pccntmon.exe"Process terminated successfully

#:16 [qttask.exe]
ModuleName : C:\Program Files\QuickTime\qttask.exe
Command Line : "C:\Program Files\QuickTime\qttask.exe" -atboottime
ProcessID : 1260
ThreadCreationTime : 4-22-2005 9:20:09 PM
BasePriority : Normal
FileVersion : 6.4
ProductVersion : QuickTime 6.4
ProductName : QuickTime
CompanyName : Apple Computer, Inc.
InternalName : QuickTime Task
LegalCopyright : © Apple Computer, Inc. 2001-2003
OriginalFilename : QTTask.exe
Warning! ClearSearch Object found in memory(C:\Program Files\84hjm1oq\84hjm1oq.DLL)

ClearSearch Object Recognized!
Type : Process
Data : 84hjm1oq.DLL
Category : Data Miner
Comment :
Object : C:\Program Files\84hjm1oq\
FileVersion : 1.83.0.5
ProductVersion : 1.83.0.5
InternalName : Grip.dll
OriginalFilename : Grip.dll
Comments : Build 83 E

"C:\Program Files\QuickTime\qttask.exe"Process terminated successfully

#:17 [igfxtray.exe]
ModuleName : C:\WINDOWS\System32\igfxtray.exe
Command Line : "C:\WINDOWS\System32\igfxtray.exe"
ProcessID : 1240
ThreadCreationTime : 4-22-2005 9:20:09 PM
BasePriority : Normal
FileVersion : 3.0.0.3889
ProductVersion : 7.0.0.3889
ProductName : Intel® Common User Interface
CompanyName : Intel Corporation
FileDescription : igfxTray Module
InternalName : IGFXTRAY
LegalCopyright : Copyright 1999-2002, Intel Corporation
OriginalFilename : IGFXTRAY.EXE
Warning! ClearSearch Object found in memory(C:\Program Files\84hjm1oq\84hjm1oq.DLL)

ClearSearch Object Recognized!
Type : Process
Data : 84hjm1oq.DLL
Category : Data Miner
Comment :
Object : C:\Program Files\84hjm1oq\
FileVersion : 1.83.0.5
ProductVersion : 1.83.0.5
InternalName : Grip.dll
OriginalFilename : Grip.dll
Comments : Build 83 E

"C:\WINDOWS\System32\igfxtray.exe"Process terminated successfully

#:18 [hkcmd.exe]
ModuleName : C:\WINDOWS\System32\hkcmd.exe
Command Line : "C:\WINDOWS\System32\hkcmd.exe"
ProcessID : 1312
ThreadCreationTime : 4-22-2005 9:20:09 PM
BasePriority : Normal
FileVersion : 3.0.0.3889
ProductVersion : 7.0.0.3889
ProductName : Intel® Common User Interface
CompanyName : Intel Corporation
FileDescription : hkcmd Module
InternalName : HKCMD
LegalCopyright : Copyright 1999-2002, Intel Corporation
OriginalFilename : HKCMD.EXE
Warning! ClearSearch Object found in memory(C:\Program Files\84hjm1oq\84hjm1oq.DLL)

ClearSearch Object Recognized!
Type : Process
Data : 84hjm1oq.DLL
Category : Data Miner
Comment :
Object : C:\Program Files\84hjm1oq\
FileVersion : 1.83.0.5
ProductVersion : 1.83.0.5
InternalName : Grip.dll
OriginalFilename : Grip.dll
Comments : Build 83 E

"C:\WINDOWS\System32\hkcmd.exe"Process terminated successfully

#:19 [alcxmntr.exe]
ModuleName : C:\WINDOWS\ALCXMNTR.EXE
Command Line : "C:\WINDOWS\ALCXMNTR.EXE"
ProcessID : 1324
ThreadCreationTime : 4-22-2005 9:20:09 PM
BasePriority : Normal
FileVersion : 1.5
ProductVersion : 1.5
ProductName : Realtek Audio - Event Monitor
CompanyName : Realtek Semiconductor Corp.
FileDescription : Realtek Audio - Event Monitor
InternalName : Alcxmntr
LegalCopyright : Copyright © 2004 Realtek Semiconductor Corp.
OriginalFilename : Alcxmntr.exe
Warning! ClearSearch Object found in memory(C:\Program Files\84hjm1oq\84hjm1oq.DLL)

ClearSearch Object Recognized!
Type : Process
Data : 84hjm1oq.DLL
Category : Data Miner
Comment :
Object : C:\Program Files\84hjm1oq\
FileVersion : 1.83.0.5
ProductVersion : 1.83.0.5
InternalName : Grip.dll
OriginalFilename : Grip.dll
Comments : Build 83 E

"C:\WINDOWS\ALCXMNTR.EXE"Process terminated successfully

#:20 [realsched.exe]
ModuleName : C:\Program Files\Common Files\Real\Update_OB\realsched.exe
Command Line : "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
ProcessID : 1432
ThreadCreationTime : 4-22-2005 9:20:11 PM
BasePriority : Normal
FileVersion : 0.1.0.3034
ProductVersion : 0.1.0.3034
ProductName : RealPlayer (32-bit)
CompanyName : RealNetworks, Inc.
FileDescription : RealNetworks Scheduler
InternalName : schedapp
LegalCopyright : Copyright © RealNetworks, Inc. 1995-2004
LegalTrademarks : RealAudio™ is a trademark of RealNetworks, Inc.
OriginalFilename : realsched.exe
Warning! ClearSearch Object found in memory(C:\Program Files\84hjm1oq\84hjm1oq.DLL)

ClearSearch Object Recognized!
Type : Process
Data : 84hjm1oq.DLL
Category : Data Miner
Comment :
Object : C:\Program Files\84hjm1oq\
FileVersion : 1.83.0.5
ProductVersion : 1.83.0.5
InternalName : Grip.dll
OriginalFilename : Grip.dll
Comments : Build 83 E

"C:\Program Files\Common Files\Real\Update_OB\realsched.exe"Process terminated successfully

#:21 [84hjm1oq.exe]
ModuleName : C:\Program Files\84hjm1oq\84hjm1oq.exe
Command Line : "C:\Program Files\84hjm1oq\84hjm1oq.exe"
ProcessID : 1700
ThreadCreationTime : 4-22-2005 9:20:12 PM
BasePriority : Normal
FileVersion : 1, 13, 0, 5
ProductVersion : 1, 13, 0, 5
Warning! ClearSearch Object found in memory(C:\Program Files\84hjm1oq\84hjm1oq.exe)

ClearSearch Object Recognized!
Type : Process
Data : 84hjm1oq.exe
Category : Data Miner
Comment :
Object : C:\Program Files\84hjm1oq\
FileVersion : 1, 13, 0, 5
ProductVersion : 1, 13, 0, 5

"C:\Program Files\84hjm1oq\84hjm1oq.exe"Process terminated successfully
"C:\Program Files\84hjm1oq\84hjm1oq.exe"Process terminated successfully

#:22 [tmlisten.exe]
ModuleName : C:\Program Files\Trend Micro\OfficeScan Client\tmlisten.exe
Command Line : "C:\Program Files\Trend Micro\OfficeScan Client\tmlisten.exe"
ProcessID : 1744
ThreadCreationTime : 4-22-2005 9:20:12 PM
BasePriority : Normal


#:23 [easyshare.exe]
ModuleName : C:\Program Files\Kodak\Kodak EasyShare software\bin\EasyShare.exe
Command Line : "C:\Program Files\Kodak\Kodak EasyShare software\bin\EasyShare.exe" -h
ProcessID : 1880
ThreadCreationTime : 4-22-2005 9:20:14 PM
BasePriority : Normal
FileVersion : 5, 0, 4, 128
ProductVersion : 4, 0, 2, 134
ProductName : Kodak EasyShare software
CompanyName : Eastman Kodak Company
FileDescription : Kodak EasyShare software
InternalName : EasyShare
LegalCopyright : Copyright © Eastman Kodak Company 2002
LegalTrademarks : EasyShare
OriginalFilename : EasyShare.exe
Warning! ClearSearch Object found in memory(C:\Program Files\84hjm1oq\84hjm1oq.DLL)

ClearSearch Object Recognized!
Type : Process
Data : 84hjm1oq.DLL
Category : Data Miner
Comment :
Object : C:\Program Files\84hjm1oq\
FileVersion : 1.83.0.5
ProductVersion : 1.83.0.5
InternalName : Grip.dll
OriginalFilename : Grip.dll
Comments : Build 83 E

"C:\Program Files\Kodak\Kodak EasyShare software\bin\EasyShare.exe"Process terminated successfully

#:24 [ntrtscan.exe]
ModuleName : C:\Program Files\Trend Micro\OfficeScan Client\ntrtscan.exe
Command Line : "C:\Program Files\Trend Micro\OfficeScan Client\ntrtscan.exe"
ProcessID : 1892
ThreadCreationTime : 4-22-2005 9:20:14 PM
BasePriority : Normal
FileVersion : 5.58.0.1063
ProductVersion : 5.58
ProductName : Trend Micro OfficeScan
CompanyName : Trend Micro Inc.
LegalCopyright : Copyright © 1999-2004 Trend Micro Incorporated. All rights reserved.
LegalTrademarks : Copyright © Trend Micro, Inc.

#:25 [kodak software updater.exe]
ModuleName : C:\Program Files\Kodak\KODAK Software Updater\7288971\Program\Kodak Software Updater.exe
Command Line : "C:\Program Files\Kodak\KODAK Software Updater\7288971\Program\Kodak Software Updater.exe"
ProcessID : 1932
ThreadCreationTime : 4-22-2005 9:20:14 PM
BasePriority : Normal

Warning! ClearSearch Object found in memory(C:\Program Files\84hjm1oq\84hjm1oq.DLL)

ClearSearch Object Recognized!
Type : Process
Data : 84hjm1oq.DLL
Category : Data Miner
Comment :
Object : C:\Program Files\84hjm1oq\
FileVersion : 1.83.0.5
ProductVersion : 1.83.0.5
InternalName : Grip.dll
OriginalFilename : Grip.dll
Comments : Build 83 E


#:26 [89364919.exe]
ModuleName : C:\Program Files\84hjm1oq\89364919.exe
Command Line : a b
ProcessID : 2016
ThreadCreationTime : 4-22-2005 9:20:24 PM
BasePriority : Normal

Warning! ClearSearch Object found in memory(C:\Program Files\84hjm1oq\89364919.exe)

ClearSearch Object Recognized!
Type : Process
Data : 89364919.exe
Category : Data Miner
Comment :
Object : C:\Program Files\84hjm1oq\


"C:\Program Files\84hjm1oq\89364919.exe"Process terminated successfully
"C:\Program Files\84hjm1oq\89364919.exe"Process terminated successfully

#:27 [ofcdog.exe]
ModuleName : C:\Program Files\Trend Micro\OfficeScan Client\ofcdog.exe
Command Line : "C:\Program Files\Trend Micro\OfficeScan Client\ofcdog.exe"
ProcessID : 932
ThreadCreationTime : 4-22-2005 9:20:56 PM
BasePriority : Normal


#:28 [pccntupd.exe]
ModuleName : C:\Program Files\Trend Micro\OfficeScan Client\pccntupd.exe
Command Line : "C:\Program Files\Trend Micro\OfficeScan Client\pccntupd.exe"
ProcessID : 1544
ThreadCreationTime : 4-22-2005 9:21:03 PM
BasePriority : Normal


#:29 [ad-aware.exe]
ModuleName : C:\Program Files\Lavasoft\Ad-Aware SE Personal\Ad-Aware.exe
Command Line : "C:\Program Files\Lavasoft\Ad-Aware SE Personal\Ad-Aware.exe"
ProcessID : 2920
ThreadCreationTime : 4-22-2005 9:22:27 PM
BasePriority : Normal
FileVersion : 6.2.0.206
ProductVersion : VI.Second Edition
ProductName : Lavasoft Ad-Aware SE
CompanyName : Lavasoft Sweden
FileDescription : Ad-Aware SE Core application
InternalName : Ad-Aware.exe
LegalCopyright : Copyright © Lavasoft Sweden
OriginalFilename : Ad-Aware.exe
Comments : All Rights Reserved
Warning! ClearSearch Object found in memory(C:\Program Files\84hjm1oq\84hjm1oq.DLL)

ClearSearch Object Recognized!
Type : Process
Data : 84hjm1oq.DLL
Category : Data Miner
Comment :
Object : C:\Program Files\84hjm1oq\
FileVersion : 1.83.0.5
ProductVersion : 1.83.0.5
InternalName : Grip.dll
OriginalFilename : Grip.dll
Comments : Build 83 E


Memory scan result:
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
New critical objects: 2
Objects found so far: 12


Started registry scan
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»

AdRotator Object Recognized!
Type : Regkey
Data :
Category : Malware
Comment :
Rootkey : HKEY_CLASSES_ROOT
Object : interface\{1cfb8b32-4053-4144-af6f-1540eec7f101}

AdRotator Object Recognized!
Type : RegValue
Data :
Category : Malware
Comment :
Rootkey : HKEY_CLASSES_ROOT
Object : interface\{1cfb8b32-4053-4144-af6f-1540eec7f101}
Value :

Elitum.ElitebarBHO Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment :
Rootkey : HKEY_CLASSES_ROOT
Object : interface\{a9b28ef6-abf3-463b-a3d8-4d0d0badfadc}

Elitum.ElitebarBHO Object Recognized!
Type : RegValue
Data :
Category : Data Miner
Comment :
Rootkey : HKEY_CLASSES_ROOT
Object : interface\{a9b28ef6-abf3-463b-a3d8-4d0d0badfadc}
Value :

Elitum.ElitebarBHO Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment :
Rootkey : HKEY_CLASSES_ROOT
Object : interface\{dbf33e89-1784-42ac-ade4-a428f56550a3}

Elitum.ElitebarBHO Object Recognized!
Type : RegValue
Data :
Category : Data Miner
Comment :
Rootkey : HKEY_CLASSES_ROOT
Object : interface\{dbf33e89-1784-42ac-ade4-a428f56550a3}
Value :

Elitum.ElitebarBHO Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment :
Rootkey : HKEY_CLASSES_ROOT
Object : typelib\{ca9fc31a-6f35-4493-b629-e64bd6170a17}\1.0

Elitum.ElitebarBHO Object Recognized!
Type : RegValue
Data :
Category : Data Miner
Comment :
Rootkey : HKEY_CLASSES_ROOT
Object : typelib\{ca9fc31a-6f35-4493-b629-e64bd6170a17}\1.0
Value :

Elitum.ElitebarBHO Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment :
Rootkey : HKEY_CLASSES_ROOT
Object : typelib\{ca9fc31a-6f35-4493-b629-e64bd6170a17}

Elitum.ElitebarBHO Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment :
Rootkey : HKEY_CLASSES_ROOT
Object : clsid\{0a1d22c3-37be-470c-9c29-e3074ee0574b}

PeopleOnPage Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment :
Rootkey : HKEY_USERS
Object : S-1-5-21-1720583248-1557856872-312552118-1419\software\apropos

Ebates MoneyMaker Object Recognized!
Type : RegValue
Data :
Category : Data Miner
Comment : "AC"
Rootkey : HKEY_USERS
Object : S-1-5-21-1720583248-1557856872-312552118-1419\software\lq
Value : AC

Elitum.ElitebarBHO Object Recognized!
Type : RegValue
Data :
Category : Data Miner
Comment : "{825CF5BD-8862-4430-B771-0C15C5CA8DEF}"
Rootkey : HKEY_USERS
Object : S-1-5-21-1720583248-1557856872-312552118-1419\software\microsoft\internet explorer\toolbar\webbrowser
Value : {825CF5BD-8862-4430-B771-0C15C5CA8DEF}

Favoriteman Object Recognized!
Type : RegValue
Data :
Category : Malware
Comment : "Counter"
Rootkey : HKEY_USERS
Object : S-1-5-21-1720583248-1557856872-312552118-1419\software\microsoft\windows
Value : Counter

Favoriteman Object Recognized!
Type : RegValue
Data :
Category : Malware
Comment : "Server"
Rootkey : HKEY_USERS
Object : S-1-5-21-1720583248-1557856872-312552118-1419\software\microsoft\windows
Value : Server

Favoriteman Object Recognized!
Type : RegValue
Data :
Category : Malware
Comment : "Object"
Rootkey : HKEY_USERS
Object : S-1-5-21-1720583248-1557856872-312552118-1419\software\microsoft\windows
Value : Object

Elitum.ElitebarBHO Object Recognized!
Type : RegValue
Data :
Category : Data Miner
Comment : "{28CAEFF3-0F18-4036-B504-51D73BD81ABC}"
Rootkey : HKEY_LOCAL_MACHINE
Object : software\microsoft\windows\currentversion\explorer\browser helper objects
Value : {28CAEFF3-0F18-4036-B504-51D73BD81ABC}

Registry Scan result:
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
New critical objects: 17
Objects found so far: 29


Started deep registry scan
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
Possible Browser Hijack attempt : S-1-5-21-1720583248-1557856872-312552118-1419\Software\Microsoft\Internet Explorer\MainSearch Pagesearchmiracle.com

Possible Browser Hijack attempt Object Recognized!
Type : RegData
Data : "http://searchmiracle.com/sp.php"
Category : Data Miner
Comment : Possible Browser Hijack attempt
Rootkey : HKEY_USERS
Object : S-1-5-21-1720583248-1557856872-312552118-1419\Software\Microsoft\Internet Explorer\Main
Value : Search Page
Data : "http://searchmiracle.com/sp.php"
Possible Browser Hijack attempt : S-1-5-21-1720583248-1557856872-312552118-1419\Software\Microsoft\Internet ExplorerSearchURLsearchmiracle.com

Possible Browser Hijack attempt Object Recognized!
Type : RegData
Data : "http://searchmiracle.com/sp.php"
Category : Data Miner
Comment : Possible Browser Hijack attempt
Rootkey : HKEY_USERS
Object : S-1-5-21-1720583248-1557856872-312552118-1419\Software\Microsoft\Internet Explorer
Value : SearchURL
Data : "http://searchmiracle.com/sp.php"

ClearSearch Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment : C:\Program Files\84hjm1oq\84hjm1oq.dll
Rootkey : HKEY_CLASSES_ROOT
Object : CLSID\{022CF774-8F65-4A73-9B52-75898E78D31D}

ClearSearch Object Recognized!
Type : File
Data : 84hjm1oq.dll
Category : Data Miner
Comment :
Object : c:\program files\84hjm1oq\
FileVersion : 1.83.0.5
ProductVersion : 1.83.0.5
InternalName : Grip.dll
OriginalFilename : Grip.dll
Comments : Build 83 E


ClearSearch Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment : C:\Program Files\84hjm1oq\84hjm1oq.dll
Rootkey : HKEY_CLASSES_ROOT
Object : CLSID\{0275BDB3-D8AA-49F5-B0EA-18E4A7D4F989}

ClearSearch Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment : C:\Program Files\84hjm1oq\84hjm1oq.dll
Rootkey : HKEY_CLASSES_ROOT
Object : CLSID\{053774E6-DDF2-4FE8-A282-5B4289A81E0F}

ClearSearch Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment : C:\Program Files\84hjm1oq\84hjm1oq.dll
Rootkey : HKEY_CLASSES_ROOT
Object : CLSID\{056434CF-3192-4203-83CF-BD14EF798CAC}

ClearSearch Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment : C:\Program Files\84hjm1oq\84hjm1oq.dll
Rootkey : HKEY_CLASSES_ROOT
Object : CLSID\{065DAF9C-80DA-4C0F-A1B8-E22D44E7DD83}

ClearSearch Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment : C:\Program Files\84hjm1oq\84hjm1oq.dll
Rootkey : HKEY_CLASSES_ROOT
Object : CLSID\{07BCBD35-4823-496D-8C44-86A16E722056}

ClearSearch Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment : C:\Program Files\84hjm1oq\84hjm1oq.dll
Rootkey : HKEY_CLASSES_ROOT
Object : CLSID\{0B98BD01-8282-43AA-B525-C087FDDA4DE1}

ClearSearch Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment : C:\Program Files\84hjm1oq\84hjm1oq.dll
Rootkey : HKEY_CLASSES_ROOT
Object : CLSID\{0F193C05-F46B-4C24-9E02-57D2BCBC4ED5}

ClearSearch Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment : C:\Program Files\84hjm1oq\84hjm1oq.dll
Rootkey : HKEY_CLASSES_ROOT
Object : CLSID\{1032120B-CAE8-4BC8-AA06-CD96055D3718}

ClearSearch Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment : C:\Program Files\84hjm1oq\84hjm1oq.dll
Rootkey : HKEY_CLASSES_ROOT
Object : CLSID\{1203B831-A395-4AD6-B322-246DAA5043D8}

ClearSearch Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment : C:\Program Files\84hjm1oq\84hjm1oq.dll
Rootkey : HKEY_CLASSES_ROOT
Object : CLSID\{1255F911-6403-44CA-97B9-A128FA165346}

ClearSearch Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment : C:\Program Files\84hjm1oq\84hjm1oq.dll
Rootkey : HKEY_CLASSES_ROOT
Object : CLSID\{148C2E33-CDFF-46A8-ADAE-A3E86B4AAC96}

ClearSearch Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment : C:\Program Files\84hjm1oq\84hjm1oq.dll
Rootkey : HKEY_CLASSES_ROOT
Object : CLSID\{200ADA76-8B38-4E61-B21F-CA834F952BA0}

ClearSearch Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment : C:\Program Files\84hjm1oq\84hjm1oq.dll
Rootkey : HKEY_CLASSES_ROOT
Object : CLSID\{2481D29E-A64B-4B87-9EA6-3FE2C6406C5E}

ClearSearch Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment : C:\Program Files\84hjm1oq\84hjm1oq.dll
Rootkey : HKEY_CLASSES_ROOT
Object : CLSID\{251B8B81-A70A-401E-9910-AE3F16C9525D}

ClearSearch Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment : C:\Program Files\84hjm1oq\84hjm1oq.dll
Rootkey : HKEY_CLASSES_ROOT
Object : CLSID\{2AA93495-1426-4BFD-836E-3995C5F28311}

ClearSearch Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment : C:\Program Files\84hjm1oq\84hjm1oq.dll
Rootkey : HKEY_CLASSES_ROOT
Object : CLSID\{2D0EEA51-3B28-4C7B-943C-A20237CCD1B7}

ClearSearch Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment : C:\Program Files\84hjm1oq\84hjm1oq.dll
Rootkey : HKEY_CLASSES_ROOT
Object : CLSID\{2EF25180-F159-46F2-A983-610159DC27DF}

ClearSearch Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment : C:\Program Files\84hjm1oq\84hjm1oq.dll
Rootkey : HKEY_CLASSES_ROOT
Object : CLSID\{2F75A37C-13A2-4575-B6C0-CE224A447B1B}

ClearSearch Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment : C:\Program Files\84hjm1oq\84hjm1oq.dll
Rootkey : HKEY_CLASSES_ROOT
Object : CLSID\{31CA3CC8-E787-41AE-87FB-BFFC67095FA9}

ClearSearch Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment : C:\Program Files\84hjm1oq\84hjm1oq.dll
Rootkey : HKEY_CLASSES_ROOT
Object : CLSID\{34EBA5AC-C5A0-442E-A15F-6D9BA1106BF6}

ClearSearch Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment : C:\Program Files\84hjm1oq\84hjm1oq.dll
Rootkey : HKEY_CLASSES_ROOT
Object : CLSID\{3BEDAC46-D28D-41FC-AE0A-7BD624D214E9}

ClearSearch Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment : C:\Program Files\84hjm1oq\84hjm1oq.dll
Rootkey : HKEY_CLASSES_ROOT
Object : CLSID\{423F833C-8696-48A4-82D3-F6ED037DE439}

ClearSearch Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment : C:\Program Files\84hjm1oq\84hjm1oq.dll
Rootkey : HKEY_CLASSES_ROOT
Object : CLSID\{460C32D9-8915-4B58-98C5-58BB5742E567}

ClearSearch Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment : C:\Program Files\84hjm1oq\84hjm1oq.dll
Rootkey : HKEY_CLASSES_ROOT
Object : CLSID\{5457DD25-B3D9-4963-A9C8-19EAD64F2FA0}

ClearSearch Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment : C:\Program Files\84hjm1oq\84hjm1oq.dll
Rootkey : HKEY_CLASSES_ROOT
Object : CLSID\{5A329E52-8DD2-4D7C-99AF-EDFC074FB62C}

ClearSearch Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment : C:\Program Files\84hjm1oq\84hjm1oq.dll
Rootkey : HKEY_CLASSES_ROOT
Object : CLSID\{5DF4B08F-1493-4E07-B9FD-EDDA69AF2F2D}

ClearSearch Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment : C:\Program Files\84hjm1oq\84hjm1oq.dll
Rootkey : HKEY_CLASSES_ROOT
Object : CLSID\{5F0C4815-D864-4337-9BCB-BAFB854972CC}

ClearSearch Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment : C:\Program Files\84hjm1oq\84hjm1oq.dll
Rootkey : HKEY_CLASSES_ROOT
Object : CLSID\{5F7F9DD4-DEA3-4987-91B3-0B26E7015F86}

ClearSearch Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment : C:\Program Files\84hjm1oq\84hjm1oq.dll
Rootkey : HKEY_CLASSES_ROOT
Object : CLSID\{60F4039B-3CCA-4440-A19F-B2618BBD4E0C}

ClearSearch Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment : C:\Program Files\84hjm1oq\84hjm1oq.dll
Rootkey : HKEY_CLASSES_ROOT
Object : CLSID\{61993B37-5603-4E3E-B920-5FCF04F7B176}

ClearSearch Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment : C:\Program Files\84hjm1oq\84hjm1oq.dll
Rootkey : HKEY_CLASSES_ROOT
Object : CLSID\{61A6143A-0D0F-4A72-BC26-F9FAEC886B18}

ClearSearch Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment : C:\Program Files\84hjm1oq\84hjm1oq.dll
Rootkey : HKEY_CLASSES_ROOT
Object : CLSID\{68C028FC-9C2F-4588-9B86-6AE1DEC798E2}

ClearSearch Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment : C:\Program Files\84hjm1oq\84hjm1oq.dll
Rootkey : HKEY_CLASSES_ROOT
Object : CLSID\{72028FD1-F11F-4CE7-B47F-80078F3EFF96}

ClearSearch Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment : C:\Program Files\84hjm1oq\84hjm1oq.dll
Rootkey : HKEY_CLASSES_ROOT
Object : CLSID\{72431A11-6AD9-4DDA-8F6F-F017C3E05326}

ClearSearch Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment : C:\Program Files\84hjm1oq\84hjm1oq.dll
Rootkey : HKEY_CLASSES_ROOT
Object : CLSID\{731F4D97-BC07-43AA-8FC3-6C8F1347EAE1}

ClearSearch Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment : C:\Program Files\84hjm1oq\84hjm1oq.dll
Rootkey : HKEY_CLASSES_ROOT
Object : CLSID\{86D7715E-7275-4F3A-A336-3E5B638D0832}

ClearSearch Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment : C:\Program Files\84hjm1oq\84hjm1oq.dll
Rootkey : HKEY_CLASSES_ROOT
Object : CLSID\{8A9FA2D2-4C58-417C-A285-D6470F064761}

ClearSearch Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment : C:\Program Files\84hjm1oq\84hjm1oq.dll
Rootkey : HKEY_CLASSES_ROOT
Object : CLSID\{92D2D76F-BD0E-42A1-8B88-0333BF3DB196}

ClearSearch Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment : C:\Program Files\84hjm1oq\84hjm1oq.dll
Rootkey : HKEY_CLASSES_ROOT
Object : CLSID\{92E16F2F-3547-4AB3-95B0-7600A8E83B99}

ClearSearch Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment : C:\Program Files\84hjm1oq\84hjm1oq.dll
Rootkey : HKEY_CLASSES_ROOT
Object : CLSID\{93DD81F7-4F21-413C-9F77-B76AA3C81274}

ClearSearch Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment : C:\Program Files\84hjm1oq\84hjm1oq.dll
Rootkey : HKEY_CLASSES_ROOT
Object : CLSID\{9AFE162C-442F-4C65-9CC6-F14508E3B947}

ClearSearch Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment : C:\Program Files\84hjm1oq\84hjm1oq.dll
Rootkey : HKEY_CLASSES_ROOT
Object : CLSID\{9CF68115-D568-4CE0-A72E-7B899DA855A4}

ClearSearch Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment : C:\Program Files\84hjm1oq\84hjm1oq.dll
Rootkey : HKEY_CLASSES_ROOT
Object : CLSID\{A1BF837D-8AFA-4C63-8E02-2EB5EFCF4C32}

ClearSearch Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment : C:\Program Files\84hjm1oq\84hjm1oq.dll
Rootkey : HKEY_CLASSES_ROOT
Object : CLSID\{A1DF6B1E-C2E2-4313-B4BE-0137761D0BEF}

ClearSearch Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment : C:\Program Files\84hjm1oq\84hjm1oq.dll
Rootkey : HKEY_CLASSES_ROOT
Object : CLSID\{AD98BEA1-89B1-4433-B8A6-FE6E400E3CCF}

ClearSearch Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment : C:\Program Files\84hjm1oq\84hjm1oq.dll
Rootkey : HKEY_CLASSES_ROOT
Object : CLSID\{AD9AE70E-B027-43BD-9618-0864398D1254}

ClearSearch Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment : C:\Program Files\84hjm1oq\84hjm1oq.dll
Rootkey : HKEY_CLASSES_ROOT
Object : CLSID\{B0DAE697-F28F-4143-8B4A-F1459989D38D}

ClearSearch Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment : C:\Program Files\84hjm1oq\84hjm1oq.dll
Rootkey : HKEY_CLASSES_ROOT
Object : CLSID\{B9C17B99-645F-4355-BEB2-2EED8ED4E6AF}

ClearSearch Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment : C:\Program Files\84hjm1oq\84hjm1oq.dll
Rootkey : HKEY_CLASSES_ROOT
Object : CLSID\{BD9D5A85-87F6-43D8-9A2A-3A1374FC7F9B}

ClearSearch Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment : C:\Program Files\84hjm1oq\84hjm1oq.dll
Rootkey : HKEY_CLASSES_ROOT
Object : CLSID\{C54A0161-4A65-47A5-9A89-70F24FC4DB3A}

ClearSearch Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment : C:\Program Files\84hjm1oq\84hjm1oq.dll
Rootkey : HKEY_CLASSES_ROOT
Object : CLSID\{C71F0D52-FC57-409A-BB3B-34E399EE687F}

ClearSearch Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment : C:\Program Files\84hjm1oq\84hjm1oq.dll
Rootkey : HKEY_CLASSES_ROOT
Object : CLSID\{C858A7CB-C18D-4C14-AE6A-E71398716A1C}

ClearSearch Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment : C:\Program Files\84hjm1oq\84hjm1oq.dll
Rootkey : HKEY_CLASSES_ROOT
Object : CLSID\{CC8FA8E6-0273-4DF9-BE27-AB0603A14E82}

ClearSearch Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment : C:\Program Files\84hjm1oq\84hjm1oq.dll
Rootkey : HKEY_CLASSES_ROOT
Object : CLSID\{D8F1C554-79E1-497B-9DA1-A104FF096F38}

ClearSearch Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment : C:\Program Files\84hjm1oq\84hjm1oq.dll
Rootkey : HKEY_CLASSES_ROOT
Object : CLSID\{DCA9F447-23A9-4F99-B40D-81C0EAF4ADBF}

ClearSearch Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment : C:\Program Files\84hjm1oq\84hjm1oq.dll
Rootkey : HKEY_CLASSES_ROOT
Object : CLSID\{E19B9F26-5E0F-4FA5-B8DE-42B2FD1ECE11}

ClearSearch Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment : C:\Program Files\84hjm1oq\84hjm1oq.dll
Rootkey : HKEY_CLASSES_ROOT
Object : CLSID\{EB284001-E360-4CCF-B5FF-79C529B336D4}

ClearSearch Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment : C:\Program Files\84hjm1oq\84hjm1oq.dll
Rootkey : HKEY_CLASSES_ROOT
Object : CLSID\{ED95BF55-5B1C-490E-94E8-194A99AA3ECE}

ClearSearch Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment : C:\Program Files\84hjm1oq\84hjm1oq.dll
Rootkey : HKEY_CLASSES_ROOT
Object : CLSID\{EE319F8F-4D8B-46FC-B949-C6A19D52CAA9}

ClearSearch Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment : C:\Program Files\84hjm1oq\84hjm1oq.dll
Rootkey : HKEY_CLASSES_ROOT
Object : CLSID\{FF4B04DD-71D2-4714-995C-6C3E15FEC8F0}

ClearSearch Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment : C:\Program Files\84hjm1oq\84hjm1oq.dll
Rootkey : HKEY_CLASSES_ROOT
Object : CLSID\{FFFEABD4-EBB2-4916-84A8-4A560FB964BC}

AdRotator Object Recognized!
Type : RegValue
Data :
Category : Malware
Comment : "ecdqmc"
Rootkey : HKEY_LOCAL_MACHINE
Object : Software\Microsoft\Windows\CurrentVersion\Run
Value : ecdqmc

AdRotator Object Recognized!
Type : File
Data : ecdqmc.exe
Category : Malware
Comment :
Object : c:\windows\system32\
FileVersion : 1, 0, 0, 1
ProductVersion : 1, 0, 0, 1
ProductName : localFilemove Application
FileDescription : localFilemove MFC Application
InternalName : localFilemove
LegalCopyright : Copyright © 2004
OriginalFilename : localFilemove.EXE


AdRotator Object Recognized!
Type : RegValue
Data :
Category : Malware
Comment : "rvtwuc"
Rootkey : HKEY_LOCAL_MACHINE
Object : Software\Microsoft\Windows\CurrentVersion\Run
Value : rvtwuc

AdRotator Object Recognized!
Type : File
Data : rvtwuc.exe
Category : Malware
Comment :
Object : c:\windows\system32\
FileVersion : 1, 0, 0, 1
ProductVersion : 1, 0, 0, 1
ProductName : localFilemove Application
FileDescription : localFilemove MFC Application
InternalName : localFilemove
LegalCopyright : Copyright © 2004
OriginalFilename : localFilemove.EXE


ClearSearch Object Recognized!
Type : RegValue
Data :
Category : Data Miner
Comment : "84hjm1oq"
Rootkey : HKEY_LOCAL_MACHINE
Object : Software\Microsoft\Windows\CurrentVersion\Run
Value : 84hjm1oq

ClearSearch Object Recognized!
Type : File
Data : 84hjm1oq.exe
Category : Data Miner
Comment :
Object : c:\program files\84hjm1oq\
FileVersion : 1, 13, 0, 5
ProductVersion : 1, 13, 0, 5


Deep registry scan result:
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
New critical objects: 67
Objects found so far: 100

MRU List Object Recognized!
Location: : C:\Documents and Settings\afiegel\Application Data\microsoft\office\recent
Description : list of recently opened documents using microsoft office


MRU List Object Recognized!
Location: : C:\Documents and Settings\afiegel\recent
Description : list of recently opened documents


MRU List Object Recognized!
Location: : S-1-5-21-1720583248-1557856872-312552118-1419\software\nico mak computing\winzip\filemenu
Description : winzip recently used archives


MRU List Object Recognized!<
  • 0

Advertisements

#2
GR@PH;<'S
Posted 22 April 2005 - 03:56 PM

GR@PH;<'S

    Member

  • Member
  • PipPipPip
  • 135 posts
Not all of your logfile was posted can you please carry on posting from where your post finished ie:

MRU List Object Recognized!
Location: : S-1-5-21-1720583248-1557856872-312552118-1419\software\nico mak computing\winzip\filemenu
Description : winzip recently used archives 

If needed here how to post your Ad-aware Logfile ;)
As Logs are stored in :
C:\Documents and Settings\USERNAME\Application Data\Lavasoft\Ad-aware\Logs\.
An easy way to get there is to
click Start,
click Run
And type in and press ENTER: %appdata%
then click Lavasoft
then Ad-Aware
and then Logs.
scroll down to find the latest one that you have
(by date & time)
and open it right Click select all
copy and then paste the contents of it here.
(Make sure that all of your Logfile has been posted, sometimes it will require two post's to get it all)
I recommend that you use the WebUpDate just before you scan that way you will always be up to date.

(note The Application Data is a hidden folder, so you will need to show hidden files and folders
and for Windows 98*admin users your logs are stored in
C:\WINDOWS\All Users\Application Data\ by defualt)
GR@PH;<'S :tazz:

Edited by GR@PH;<'S, 22 April 2005 - 03:58 PM.

  • 0

#3
amf2880
Posted 25 April 2005 - 07:18 AM

amf2880

    Member

  • Topic Starter
  • Member
  • PipPip
  • 15 posts
Sorry about that. Here's the next portion of the log file.

MRU List Object Recognized!
Location: : S-1-5-21-1720583248-1557856872-312552118-1419\software\microsoft\windows\currentversion\applets\paint\recent file list
Description : list of files recently opened using microsoft paint


MRU List Object Recognized!
Location: : S-1-5-21-1720583248-1557856872-312552118-1419\software\microsoft\windows\currentversion\explorer\runmru
Description : mru list for items opened in start | run


MRU List Object Recognized!
Location: : S-1-5-21-1720583248-1557856872-312552118-1419\software\microsoft\search assistant\acmru
Description : list of recent search terms used with the search assistant


MRU List Object Recognized!
Location: : S-1-5-21-1720583248-1557856872-312552118-1419\software\microsoft\windows\currentversion\explorer\comdlg32\opensavemru
Description : list of recently saved files, stored according to file extension


MRU List Object Recognized!
Location: : S-1-5-21-1720583248-1557856872-312552118-1419\software\microsoft\windows\currentversion\explorer\comdlg32\lastvisitedmru
Description : list of recent programs opened


MRU List Object Recognized!
Location: : S-1-5-21-1720583248-1557856872-312552118-1419\software\microsoft\windows\currentversion\explorer\recentdocs
Description : list of recent documents opened


MRU List Object Recognized!
Location: : S-1-5-21-1720583248-1557856872-312552118-1419\software\microsoft\office\9.0\common\open find\microsoft word\settings\open\file name mru
Description : list of recent documents opened by microsoft word


MRU List Object Recognized!
Location: : S-1-5-21-1720583248-1557856872-312552118-1419\software\microsoft\office\9.0\common\open find\microsoft word\settings\save as\file name mru
Description : list of recent documents saved by microsoft word


MRU List Object Recognized!
Location: : S-1-5-21-1720583248-1557856872-312552118-1419\software\microsoft\office\9.0\common\open find\microsoft powerpoint\settings\save as\file name mru
Description : list of recent documents saved by microsoft powerpoint


MRU List Object Recognized!
Location: : S-1-5-21-1720583248-1557856872-312552118-1419\software\microsoft\office\9.0\excel\recent files
Description : list of recent files used by microsoft excel


MRU List Object Recognized!
Location: : S-1-5-21-1720583248-1557856872-312552118-1419\software\adobe\adobe acrobat\5.0\avgeneral\crecentfiles
Description : list of recently used files in adobe acrobat


MRU List Object Recognized!
Location: : S-1-5-21-1720583248-1557856872-312552118-1419\software\microsoft\mediaplayer\player\recentfilelist
Description : list of recently used files in microsoft windows media player


MRU List Object Recognized!
Location: : S-1-5-21-1720583248-1557856872-312552118-1419\software\realnetworks\realplayer\6.0\preferences
Description : list of recent skins in realplayer


MRU List Object Recognized!
Location: : S-1-5-21-1720583248-1557856872-312552118-1419\software\microsoft\internet explorer
Description : last download directory used in microsoft internet explorer


MRU List Object Recognized!
Location: : software\microsoft\directdraw\mostrecentapplication
Description : most recent application to use microsoft directdraw


MRU List Object Recognized!
Location: : S-1-5-21-1720583248-1557856872-312552118-1419\software\microsoft\microsoft management console\recent file list
Description : list of recent snap-ins used in the microsoft management console


MRU List Object Recognized!
Location: : S-1-5-21-1720583248-1557856872-312552118-1419\software\microsoft\internet explorer\typedurls
Description : list of recently entered addresses in microsoft internet explorer


MRU List Object Recognized!
Location: : software\microsoft\direct3d\mostrecentapplication
Description : most recent application to use microsoft direct3d


MRU List Object Recognized!
Location: : S-1-5-21-1720583248-1557856872-312552118-1419\software\microsoft\mediaplayer\preferences
Description : last playlist index loaded in microsoft windows media player


MRU List Object Recognized!
Location: : S-1-5-21-1720583248-1557856872-312552118-1419\software\realnetworks\realplayer\6.0\preferences
Description : list of recent clips in realplayer


MRU List Object Recognized!
Location: : .DEFAULT\software\microsoft\mediaplayer\preferences
Description : last playlist loaded in microsoft windows media player


MRU List Object Recognized!
Location: : S-1-5-18\software\microsoft\mediaplayer\preferences
Description : last playlist loaded in microsoft windows media player


MRU List Object Recognized!
Location: : S-1-5-19\software\microsoft\mediaplayer\preferences
Description : last playlist loaded in microsoft windows media player


MRU List Object Recognized!
Location: : S-1-5-20\software\microsoft\mediaplayer\preferences
Description : last playlist loaded in microsoft windows media player


MRU List Object Recognized!
Location: : S-1-5-21-1720583248-1557856872-312552118-1419\software\microsoft\mediaplayer\preferences
Description : last playlist loaded in microsoft windows media player


MRU List Object Recognized!
Location: : S-1-5-21-1720583248-1557856872-312552118-1419\software\realnetworks\realplayer\6.0\preferences
Description : last login time in realplayer


MRU List Object Recognized!
Location: : software\microsoft\direct3d\mostrecentapplication
Description : most recent application to use microsoft direct X


MRU List Object Recognized!
Location: : .DEFAULT\software\microsoft\windows media\wmsdk\general
Description : windows media sdk


MRU List Object Recognized!
Location: : S-1-5-18\software\microsoft\windows media\wmsdk\general
Description : windows media sdk


MRU List Object Recognized!
Location: : S-1-5-21-1720583248-1557856872-312552118-1419\software\microsoft\windows media\wmsdk\general
Description : windows media sdk



Started Tracking Cookie scan
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»


Tracking Cookie Object Recognized!
Type : IECache Entry
Data : [email protected][2].txt
Category : Data Miner
Comment : Hits:67
Value : Cookie:[email protected]/
Expires : 4-21-2005 7:56:50 AM
LastSync : Hits:67
UseCount : 0
Hits : 67

Tracking Cookie Object Recognized!
Type : IECache Entry
Data : [email protected][2].txt
Category : Data Miner
Comment : Hits:14
Value : Cookie:[email protected]/
Expires : 4-14-2006 11:00:00 PM
LastSync : Hits:14
UseCount : 0
Hits : 14

Tracking Cookie Object Recognized!
Type : IECache Entry
Data : afeigel@qksrv[2].txt
Category : Data Miner
Comment : Hits:11
Value : Cookie:[email protected]/
Expires : 2-16-2010 9:24:36 AM
LastSync : Hits:11
UseCount : 0
Hits : 11

Tracking Cookie Object Recognized!
Type : IECache Entry
Data : afeigel@maxserving[1].txt
Category : Data Miner
Comment : Hits:442
Value : Cookie:[email protected]/
Expires : 4-19-2015 10:10:58 AM
LastSync : Hits:442
UseCount : 0
Hits : 442

Tracking Cookie Object Recognized!
Type : IECache Entry
Data : afeigel@adtech[2].txt
Category : Data Miner
Comment : Hits:2
Value : Cookie:[email protected]/
Expires : 2-22-2015 2:13:00 PM
LastSync : Hits:2
UseCount : 0
Hits : 2

Tracking Cookie Object Recognized!
Type : IECache Entry
Data : [email protected][2].txt
Category : Data Miner
Comment : Hits:29
Value : Cookie:[email protected]/
Expires : 3-24-2035 12:51:30 PM
LastSync : Hits:29
UseCount : 0
Hits : 29

Tracking Cookie Object Recognized!
Type : IECache Entry
Data : afeigel@statcounter[1].txt
Category : Data Miner
Comment : Hits:18
Value : Cookie:[email protected]/
Expires : 1-18-2010 3:15:10 PM
LastSync : Hits:18
UseCount : 0
Hits : 18

Tracking Cookie Object Recognized!
Type : IECache Entry
Data : afeigel@2o7[2].txt
Category : Data Miner
Comment : Hits:3940
Value : Cookie:[email protected]/
Expires : 4-21-2010 8:52:58 AM
LastSync : Hits:3940
UseCount : 0
Hits : 3940

Tracking Cookie Object Recognized!
Type : IECache Entry
Data : [email protected][2].txt
Category : Data Miner
Comment : Hits:3
Value : Cookie:[email protected]
Expires : 9-8-2004 12:13:36 PM
LastSync : Hits:3
UseCount : 0
Hits : 3

Tracking Cookie Object Recognized!
Type : IECache Entry
Data : afeigel@apmebf[2].txt
Category : Data Miner
Comment : Hits:37
Value : Cookie:[email protected]/
Expires : 4-6-2010 4:40:52 PM
LastSync : Hits:37
UseCount : 0
Hits : 37

Tracking Cookie Object Recognized!
Type : IECache Entry
Data : afeigel@bluestreak[1].txt
Category : Data Miner
Comment : Hits:230
Value : Cookie:[email protected]/
Expires : 4-12-2015 10:01:28 AM
LastSync : Hits:230
UseCount : 0
Hits : 230

Tracking Cookie Object Recognized!
Type : IECache Entry
Data : afeigel@trafficmp[2].txt
Category : Data Miner
Comment : Hits:478
Value : Cookie:[email protected]/
Expires : 2-17-2006 9:36:40 AM
LastSync : Hits:478
UseCount : 0
Hits : 478

Tracking Cookie Object Recognized!
Type : IECache Entry
Data : afeigel@pro-market[1].txt
Category : Data Miner
Comment : Hits:14
Value : Cookie:[email protected]/
Expires : 5-31-2030 7:00:00 PM
LastSync : Hits:14
UseCount : 0
Hits : 14

Tracking Cookie Object Recognized!
Type : IECache Entry
Data : afeigel@cgi-bin[2].txt
Category : Data Miner
Comment : Hits:29
Value : Cookie:[email protected]/cgi-bin
Expires : 3-22-2015 4:05:54 PM
LastSync : Hits:29
UseCount : 0
Hits : 29

Tracking Cookie Object Recognized!
Type : IECache Entry
Data : afeigel@cgi-bin[5].txt
Category : Data Miner
Comment : Hits:5
Value : Cookie:[email protected]/cgi-bin
Expires : 2-27-2015 7:00:00 PM
LastSync : Hits:5
UseCount : 0
Hits : 5

Tracking Cookie Object Recognized!
Type : IECache Entry
Data : afeigel@overstock[1].txt
Category : Data Miner
Comment : Hits:15
Value : Cookie:[email protected]/
Expires : 12-31-2004 7:00:00 PM
LastSync : Hits:15
UseCount : 0
Hits : 15

Tracking Cookie Object Recognized!
Type : IECache Entry
Data : afeigel@tripod[1].txt
Category : Data Miner
Comment : Hits:2
Value : Cookie:[email protected]/
Expires : 3-15-2006 11:52:30 AM
LastSync : Hits:2
UseCount : 0
Hits : 2

Tracking Cookie Object Recognized!
Type : IECache Entry
Data : afeigel@247realmedia[1].txt
Category : Data Miner
Comment : Hits:75
Value : Cookie:[email protected]/
Expires : 1-31-2006 8:15:04 AM
LastSync : Hits:75
UseCount : 0
Hits : 75

Tracking Cookie Object Recognized!
Type : IECache Entry
Data : afeigel@serving-sys[2].txt
Category : Data Miner
Comment : Hits:632
Value : Cookie:[email protected]/
Expires : 1-1-2038
LastSync : Hits:632
UseCount : 0
Hits : 632

Tracking Cookie Object Recognized!
Type : IECache Entry
Data : afeigel@ad-logics[2].txt
Category : Data Miner
Comment : Hits:187
Value : Cookie:[email protected]/
Expires : 7-27-2014 9:33:58 AM
LastSync : Hits:187
UseCount : 0
Hits : 187

Tracking Cookie Object Recognized!
Type : IECache Entry
Data : [email protected][2].txt
Category : Data Miner
Comment : Hits:27
Value : Cookie:[email protected]/
Expires : 12-30-2037 11:00:00 AM
LastSync : Hits:27
UseCount : 0
Hits : 27

Tracking Cookie Object Recognized!
Type : IECache Entry
Data : [email protected][1].txt
Category : Data Miner
Comment : Hits:30
Value : Cookie:[email protected]/
Expires : 6-9-2005 10:45:38 AM
LastSync : Hits:30
UseCount : 0
Hits : 30

Tracking Cookie Object Recognized!
Type : IECache Entry
Data : afeigel@euniverseads[1].txt
Category : Data Miner
Comment : Hits:2
Value : Cookie:[email protected]/
Expires : 12-31-2010 7:00:00 PM
LastSync : Hits:2
UseCount : 0
Hits : 2

Tracking Cookie Object Recognized!
Type : IECache Entry
Data : afeigel@adrevolver[2].txt
Category : Data Miner
Comment : Hits:94
Value : Cookie:[email protected]/adrevolver/
Expires : 1-13-2008 6:03:38 AM
LastSync : Hits:94
UseCount : 0
Hits : 94

Tracking Cookie Object Recognized!
Type : IECache Entry
Data : [email protected][2].txt
Category : Data Miner
Comment : Hits:4
Value : Cookie:[email protected]/
Expires : 12-18-2005 11:05:34 AM
LastSync : Hits:4
UseCount : 0
Hits : 4

Tracking Cookie Object Recognized!
Type : IECache Entry
Data : [email protected][1].txt
Category : Data Miner
Comment : Hits:20
Value : Cookie:[email protected]/
Expires : 1-1-2038
LastSync : Hits:20
UseCount : 0
Hits : 20

Tracking Cookie Object Recognized!
Type : IECache Entry
Data : afeigel@cgi-bin[1].txt
Category : Data Miner
Comment : Hits:5
Value : Cookie:[email protected]/cgi-bin
Expires : 2-27-2015 7:00:00 PM
LastSync : Hits:5
UseCount : 0
Hits : 5

Tracking Cookie Object Recognized!
Type : IECache Entry
Data : [email protected][1].txt
Category : Data Miner
Comment : Hits:61
Value : Cookie:[email protected]/
Expires : 12-31-2020 7:00:00 PM
LastSync : Hits:61
UseCount : 0
Hits : 61

Tracking Cookie Object Recognized!
Type : IECache Entry
Data : [email protected][1].txt
Category : Data Miner
Comment : Hits:2
Value : Cookie:[email protected]/
Expires : 2-20-2009 12:02:52 PM
LastSync : Hits:2
UseCount : 0
Hits : 2

Tracking Cookie Object Recognized!
Type : IECache Entry
Data : afeigel@centrport[2].txt
Category : Data Miner
Comment : Hits:117
Value : Cookie:[email protected]/
Expires : 12-31-2029 7:00:00 PM
LastSync : Hits:117
UseCount : 0
Hits : 117

Tracking Cookie Object Recognized!
Type : IECache Entry
Data : afeigel@realmedia[2].txt
Category : Data Miner
Comment : Hits:7
Value : Cookie:[email protected]/
Expires : 12-31-2010 7:00:00 PM
LastSync : Hits:7
UseCount : 0
Hits : 7

Tracking Cookie Object Recognized!
Type : IECache Entry
Data : afeigel@paycounter[1].txt
Category : Data Miner
Comment : Hits:1
Value : Cookie:[email protected]/
Expires : 12-30-2030 8:00:00 PM
LastSync : Hits:1
UseCount : 0
Hits : 1

Tracking Cookie Object Recognized!
Type : IECache Entry
Data : [email protected][1].txt
Category : Data Miner
Comment : Hits:22
Value : Cookie:[email protected]/
Expires : 11-23-2005 6:12:40 PM
LastSync : Hits:22
UseCount : 0
Hits : 22

Tracking Cookie Object Recognized!
Type : IECache Entry
Data : afeigel@tribalfusion[1].txt
Category : Data Miner
Comment : Hits:20
Value : Cookie:[email protected]/
Expires : 12-31-2037 7:00:00 PM
LastSync : Hits:20
UseCount : 0
Hits : 20

Tracking Cookie Object Recognized!
Type : IECache Entry
Data : [email protected][2].txt
Category : Data Miner
Comment : Hits:4
Value : Cookie:[email protected]/
Expires : 9-26-2037 7:00:00 PM
LastSync : Hits:4
UseCount : 0
Hits : 4

Tracking Cookie Object Recognized!
Type : IECache Entry
Data : afeigel@zedo[2].txt
Category : Data Miner
Comment : Hits:289
Value : Cookie:[email protected]/
Expires : 2-22-2015 2:08:00 PM
LastSync : Hits:289
UseCount : 0
Hits : 289

Tracking Cookie Object Recognized!
Type : IECache Entry
Data : [email protected][1].txt
Category : Data Miner
Comment : Hits:217
Value : Cookie:[email protected]/
Expires : 12-31-2009 7:00:00 PM
LastSync : Hits:217
UseCount : 0
Hits : 217

Tracking Cookie Object Recognized!
Type : IECache Entry
Data : [email protected][1].txt
Category : Data Miner
Comment : Hits:136
Value : Cookie:[email protected]/
Expires : 4-22-2006 11:49:48 AM
LastSync : Hits:136
UseCount : 0
Hits : 136

Tracking Cookie Object Recognized!
Type : IECache Entry
Data : afeigel@questionmarket[2].txt
Category : Data Miner
Comment : Hits:23
Value : Cookie:[email protected]/
Expires : 6-13-2006 2:37:20 AM
LastSync : Hits:23
UseCount : 0
Hits : 23

Tracking Cookie Object Recognized!
Type : IECache Entry
Data : afeigel@casalemedia[2].txt
Category : Data Miner
Comment : Hits:614
Value : Cookie:[email protected]/
Expires : 3-15-2006 11:27:08 AM
LastSync : Hits:614
UseCount : 0
Hits : 614

Tracking Cookie Object Recognized!
Type : IECache Entry
Data : [email protected][2].txt
Category : Data Miner
Comment : Hits:3
Value : Cookie:[email protected]/
Expires : 8-11-2014 7:00:00 PM
LastSync : Hits:3
UseCount : 0
Hits : 3

Tracking Cookie Object Recognized!
Type : IECache Entry
Data : afeigel@bravenet[1].txt
Category : Data Miner
Comment : Hits:8
Value : Cookie:[email protected]/
Expires : 3-5-2015 11:49:56 AM
LastSync : Hits:8
UseCount : 0
Hits : 8

Tracking Cookie Object Recognized!
Type : IECache Entry
Data : [email protected][1].txt
Category : Data Miner
Comment : Hits:2
Value : Cookie:[email protected]/
Expires : 4-9-2005 2:36:18 PM
LastSync : Hits:2
UseCount : 0
Hits : 2

Tracking Cookie Object Recognized!
Type : IECache Entry
Data : afeigel@tickle[1].txt
Category : Data Miner
Comment : Hits:151
Value : Cookie:[email protected]/
Expires : 3-8-2007 9:08:32 AM
LastSync : Hits:151
UseCount : 0
Hits : 151

Tracking Cookie Object Recognized!
Type : IECache Entry
Data : [email protected][1].txt
Category : Data Miner
Comment : Hits:10
Value : Cookie:[email protected]/
Expires : 4-23-2005 4:43:56 PM
LastSync : Hits:10
UseCount : 0
Hits : 10

Tracking Cookie Object Recognized!
Type : IECache Entry
Data : afeigel@peel[1].txt
Category : Data Miner
Comment : Hits:1
Value : Cookie:[email protected]/
Expires : 3-19-2005 4:03:38 PM
LastSync : Hits:1
UseCount : 0
Hits : 1

Tracking Cookie Object Recognized!
Type : IECache Entry
Data : afeigel@incredifind[2].txt
Category : Data Miner
Comment : Hits:89
Value : Cookie:[email protected]/
Expires : 10-7-2009 2:11:30 PM
LastSync : Hits:89
UseCount : 0
Hits : 89

Tracking Cookie Object Recognized!
Type : IECache Entry
Data : afeigel@cgi-bin[4].txt
Category : Data Miner
Comment : Hits:1
Value : Cookie:[email protected]/cgi-bin
Expires : 2-27-2015 7:00:00 PM
LastSync : Hits:1
UseCount : 0
Hits : 1

Tracking Cookie Object Recognized!
Type : IECache Entry
Data : [email protected][2].txt
Category : Data Miner
Comment : Hits:6
Value : Cookie:[email protected]/
Expires : 3-3-2005 2:38:16 PM
LastSync : Hits:6
UseCount : 0
Hits : 6

Tracking Cookie Object Recognized!
Type : IECache Entry
Data : afeigel@hotlog[1].txt
Category : Data Miner
Comment : Hits:1
Value : Cookie:[email protected]/
Expires : 9-10-2005 10:46:54 AM
LastSync : Hits:1
UseCount : 0
Hits : 1

Tracking Cookie Object Recognized!
Type : IECache Entry
Data : afeigel@internetfuel[1].txt
Category : Data Miner
Comment : Hits:7
Value : Cookie:[email protected]/
Expires : 12-1-2013 9:00:00 AM
LastSync : Hits:7
UseCount : 0
Hits : 7

Tracking Cookie Object Recognized!
Type : IECache Entry
Data : afeigel@fortunecity[1].txt
Category : Data Miner
Comment : Hits:1
Value : Cookie:[email protected]/
Expires : 8-18-2005 3:48:48 PM
LastSync : Hits:1
UseCount : 0
Hits : 1

Tracking Cookie Object Recognized!
Type : IECache Entry
Data : afeigel@goclick[1].txt
Category : Data Miner
Comment : Hits:1
Value : Cookie:[email protected]/
Expires : 12-31-2009 7:00:00 PM
LastSync : Hits:1
UseCount : 0
Hits : 1

Tracking Cookie Object Recognized!
Type : IECache Entry
Data : [email protected][2].txt
Category : Data Miner
Comment : Hits:18
Value : Cookie:[email protected]/
Expires : 2-17-2006 3:19:34 PM
LastSync : Hits:18
UseCount : 0
Hits : 18

Tracking Cookie Object Recognized!
Type : IECache Entry
Data : afeigel@valueclick[2].txt
Category : Data Miner
Comment : Hits:3
Value : Cookie:[email protected]/
Expires : 10-5-2029 2:36:16 PM
LastSync : Hits:3
UseCount : 0
Hits : 3

Tracking Cookie Object Recognized!
Type : IECache Entry
Data : afeigel@revenue[1].txt
Category : Data Miner
Comment : Hits:353
Value : Cookie:[email protected]/
Expires : 6-10-2022 12:05:42 AM
LastSync : Hits:353
UseCount : 0
Hits : 353

Tracking Cookie Object Recognized!
Type : IECache Entry
Data : afeigel@overture[1].txt
Category : Data Miner
Comment : Hits:136
Value : Cookie:[email protected]/
Expires : 4-11-2015 3:20:28 PM
LastSync : Hits:136
UseCount : 0
Hits : 136

Tracking Cookie Object Recognized!
Type : IECache Entry
Data : [email protected][2].txt
Category : Data Miner
Comment : Hits:2
Value : Cookie:[email protected]/
Expires : 1-17-2038 7:00:00 PM
LastSync : Hits:2
UseCount : 0
Hits : 2

Tracking Cookie Object Recognized!
Type : IECache Entry
Data : afeigel@pacificpoker[1].txt
Category : Data Miner
Comment : Hits:3
Value : Cookie:[email protected]/
Expires : 10-30-2006 12:13:04 AM
LastSync : Hits:3
UseCount : 0
Hits : 3

Tracking Cookie Object Recognized!
Type : IECache Entry
Data : [email protected][1].txt
Category : Data Miner
Comment : Hits:11
Value : Cookie:[email protected]/
Expires : 2-24-2006 9:39:04 AM
LastSync : Hits:11
UseCount : 0
Hits : 11

Tracking Cookie Object Recognized!
Type : IECache Entry
Data : afeigel@revenue[2].txt
Category : Data Miner
Comment :
Value : C:\Documents and Settings\afiegel\Cookies\afeigel@revenue[2].txt

Tracking cookie scan result:
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
New critical objects: 61
Objects found so far: 194



Deep scanning and examining files (C:)
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»

Tracking Cookie Object Recognized!
Type : IECache Entry
Data : administrator@atdmt[2].txt
Category : Data Miner
Comment :
Value : C:\Documents and Settings\administrator.LONG\Cookies\administrator@atdmt[2].txt

Tracking Cookie Object Recognized!
Type : IECache Entry
Data : afeigel@maxserving[1].txt
Category : Data Miner
Comment :
Value : C:\Documents and Settings\afiegel\Local Settings\Temp\Cookies\afeigel@maxserving[1].txt

180Solutions Object Recognized!
Type : File
Data : Del3.tmp
Category : Data Miner
Comment :
Object : C:\Documents and Settings\afiegel\Local Settings\Temp\
FileVersion : 5, 15, 0, 15
ProductVersion : 5, 15, 0, 15
ProductName : Search Assistant
CompanyName : 180solutions, Inc.
FileDescription : Search Assistant
LegalCopyright : Copyright © 2004, 180solutions Inc.


DealHelper Object Recognized!
Type : File
Data : secure[1].exe
Category : Malware
Comment :
Object : C:\Documents and Settings\afiegel\Local Settings\Temp\Temporary Internet Files\Content.IE5\38UN63EX\
FileVersion : 1, 0, 0, 1
ProductVersion : 1, 0, 0, 1
ProductName : Redirect Application
FileDescription : Redirect MFC Application
InternalName : Redirect
LegalCopyright : Copyright © 2003
OriginalFilename : Redirect.EXE


DealHelper Object Recognized!
Type : File
Data : dun[1].exe
Category : Malware
Comment :
Object : C:\Documents and Settings\afiegel\Local Settings\Temp\Temporary Internet Files\Content.IE5\AP6H4ZMR\
FileVersion : 1, 0, 0, 1
ProductVersion : 1, 0, 0, 1
ProductName : UnInstallKey Application
FileDescription : UnInstallKey MFC Application
InternalName : UnInstallKey
LegalCopyright : Copyright © 2003
OriginalFilename : UnInstallKey.EXE


PeopleOnPage Object Recognized!
Type : File
Data : AutoUpdaterInstaller[1].exe
Category : Data Miner
Comment :
Object : C:\Documents and Settings\afiegel\Local Settings\Temp\Temporary Internet Files\Content.IE5\O12HALMV\



DealHelper Object Recognized!
Type : File
Data : version[1].exe
Category : Malware
Comment :
Object : C:\Documents and Settings\afiegel\Local Settings\Temp\Temporary Internet Files\Content.IE5\O12HALMV\
FileVersion : 1, 0, 0, 1
ProductVersion : 1, 0, 0, 1
ProductName : version Application
FileDescription : version MFC Application
InternalName : version
LegalCopyright : Copyright © 2003
OriginalFilename : version.EXE


Tracking Cookie Object Recognized!
Type : IECache Entry
Data : jeffc@atdmt[1].txt
Category : Data Miner
Comment :
Value : C:\Documents and Settings\jeffc\Cookies\jeffc@atdmt[1].txt

Tracking Cookie Object Recognized!
Type : IECache Entry
Data : [email protected][1].txt
Category : Data Miner
Comment :
Value : C:\Documents and Settings\wchlystun\Cookies\[email protected][1].txt

ClearSearch Object Recognized!
Type : File
Data : 30bixia4.DLL
Category : Data Miner
Comment :
Object : C:\Program Files\84hjm1oq\
FileVersion : 1, 7, 0, 2
ProductVersion : 1, 7, 0, 2
ProductName : ClearSearch LoaderUpdater
CompanyName : ClearSearch
FileDescription : LoaderUpdater
InternalName : LoaderUpdater
LegalCopyright : Copyright © 2004
OriginalFilename : LoaderUpdater.dll


ClearSearch Object Recognized!
Type : File
Data : 3zojf1n8.DLL
Category : Data Miner
Comment :
Object : C:\Program Files\84hjm1oq\
FileVersion : 1, 0, 83, 5
ProductVersion : 1, 0, 83, 5


ClearSearch Object Recognized!
Type : File
Data : 5glww6td.DLL
Category : Data Miner
Comment :
Object : C:\Program Files\84hjm1oq\
FileVersion : 1, 77, 0, 1
ProductVersion : 1, 77, 0, 1


ClearSearch Object Recognized!
Type : File
Data : 84hjm1oq1.dll
Category : Data Miner
Comment :
Object : C:\Program Files\84hjm1oq\84hjm1oq1\
FileVersion : 1, 77, 0, 2
ProductVersion : 1, 77, 0, 2


ClearSearch Object Recognized!
Type : File
Data : 84hjm1oq1.exe
Category : Data Miner
Comment :
Object : C:\Program Files\84hjm1oq\84hjm1oq1\
FileVersion : 1, 0, 0, 2
ProductVersion : 1, 0, 0, 2
LegalCopyright : Copyright © 2004


ClearSearch Object Recognized!
Type : File
Data : 89364919.exe
Category : Data Miner
Comment :
Object : C:\Program Files\84hjm1oq\



ClearSearch Object Recognized!
Type : File
Data : avxyg7jl.DLL
Category : Data Miner
Comment :
Object : C:\Program Files\84hjm1oq\



ClearSearch Object Recognized!
Type : File
Data : gs5k94gy.DLL
Category : Data Miner
Comment :
Object : C:\Program Files\84hjm1oq\
FileVersion : 1, 77, 0, 1
ProductVersion : 1, 77, 0, 1


ClearSearch Object Recognized!
Type : File
Data : ixw9qvuk.DLL
Category : Data Miner
Comment :
Object : C:\Program Files\84hjm1oq\
FileVersion : 1, 7, 0, 2
ProductVersion : 1, 7, 0, 2
ProductName : ClearSearch LoaderUpdater
CompanyName : ClearSearch
FileDescription : LoaderUpdater
InternalName : LoaderUpdater
LegalCopyright : Copyright © 2004
OriginalFilename : LoaderUpdater.dll


ClearSearch Object Recognized!
Type : File
Data : pvi9xrnj.DLL
Category : Data Miner
Comment :
Object : C:\Program Files\84hjm1oq\



ClearSearch Object Recognized!
Type : File
Data : q9delcu9.DLL
Category : Data Miner
Comment :
Object : C:\Program Files\84hjm1oq\
FileVersion : 1, 7, 0, 2
ProductVersion : 1, 7, 0, 2
ProductName : ClearSearch LoaderUpdater
CompanyName : ClearSearch
FileDescription : LoaderUpdater
InternalName : LoaderUpdater
LegalCopyright : Copyright © 2004
OriginalFilename : LoaderUpdater.dll


ClearSearch Object Recognized!
Type : File
Data : tv0kdwpm.DLL
Category : Data Miner
Comment :
Object : C:\Program Files\84hjm1oq\
FileVersion : 1, 77, 0, 1
ProductVersion : 1, 77, 0, 1


ClearSearch Object Recognized!
Type : File
Data : wemtmijm.DLL
Category : Data Miner
Comment :
Object : C:\Program Files\84hjm1oq\



SahAgent Object Recognized!
Type : File
Data : A0019289.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP188\
FileVersion : 2, 0, 0, 3
ProductVersion : 2, 0, 0, 3
ProductName : ShopAtHomeSelect SAHHtml
CompanyName : ShopAtHomeSelect
FileDescription : SAHHtml
InternalName : SAHHtml
LegalCopyright : Copyright © 2004
OriginalFilename : SahHtml_.exe
Comments : Search engine


SahAgent Object Recognized!
Type : File
Data : A0019293.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP188\
FileVersion : 2, 0, 0, 5
ProductVersion : 2, 0, 0, 5
ProductName : ShopAtHomeSelect SahAgent
CompanyName : ShopAtHomeSelect
FileDescription : SahAgent
InternalName : SahAgent
LegalCopyright : Copyright © 2004
OriginalFilename : SahAgent.exe
Comments : Rules, pop-up. without serach and incremental update


IBIS Toolbar Object Recognized!
Type : File
Data : A0019338.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP188\



180Solutions Object Recognized!
Type : File
Data : A0019360.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP188\



180Solutions Object Recognized!
Type : File
Data : A0019361.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP188\



180Solutions Object Recognized!
Type : File
Data : A0019362.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP188\
FileVersion : 5, 15, 0, 15
ProductVersion : 5, 15, 0, 15
ProductName : Search Assistant
CompanyName : 180solutions, Inc.
FileDescription : Search Assistant
LegalCopyright : Copyright © 2004, 180solutions Inc.


IBIS Toolbar Object Recognized!
Type : File
Data : A0019366.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP188\



IBIS Toolbar Object Recognized!
Type : File
Data : A0019368.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP188\



ClearSearch Object Recognized!
Type : File
Data : A0019372.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP188\
FileVersion : 1, 77, 0, 2
ProductVersion : 1, 77, 0, 2


IBIS Toolbar Object Recognized!
Type : File
Data : A0019389.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP188\



ClearSearch Object Recognized!
Type : File
Data : A0019397.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP189\
FileVersion : 1, 0, 0, 2
ProductVersion : 1, 0, 0, 2
LegalCopyright : Copyright © 2004


DealHelper Object Recognized!
Type : File
Data : A0019405.exe
Category : Malware
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP189\
FileVersion : 1, 0, 0, 1
ProductVersion : 1, 0, 0, 1
ProductName : version Application
FileDescription : version MFC Application
InternalName : version
LegalCopyright : Copyright © 2003
OriginalFilename : version.EXE


IBIS Toolbar Object Recognized!
Type : File
Data : A0019441.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP190\



ClearSearch Object Recognized!
Type : File
Data : A0019452.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP191\
FileVersion : 1, 77, 0, 2
ProductVersion : 1, 77, 0, 2


ClearSearch Object Recognized!
Type : File
Data : A0019453.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP191\
FileVersion : 1, 0, 0, 2
ProductVersion : 1, 0, 0, 2
LegalCopyright : Copyright © 2004


IBIS Toolbar Object Recognized!
Type : File
Data : A0019743.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP192\



IBIS Toolbar Object Recognized!
Type : File
Data : A0019745.cfg
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP192\



IBIS Toolbar Object Recognized!
Type : File
Data : A0019748.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP192\



IBIS Toolbar Object Recognized!
Type : File
Data : A0019767.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP193\



IBIS Toolbar Object Recognized!
Type : File
Data : A0019779.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP194\



ClearSearch Object Recognized!
Type : File
Data : A0019786.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP194\
FileVersion : 1, 77, 0, 2
ProductVersion : 1, 77, 0, 2


ClearSearch Object Recognized!
Type : File
Data : A0019787.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP194\
FileVersion : 1, 0, 0, 2
ProductVersion : 1, 0, 0, 2
LegalCopyright : Copyright © 2004


PeopleOnPage Object Recognized!
Type : File
Data : A0019798.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP194\



IBIS Toolbar Object Recognized!
Type : File
Data : A0019814.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP194\



IBIS Toolbar Object Recognized!
Type : File
Data : A0019948.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP196\



IBIS Toolbar Object Recognized!
Type : File
Data : A0019949.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP196\



IBIS Toolbar Object Recognized!
Type : File
Data : A0019952.cfg
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP196\



IBIS Toolbar Object Recognized!
Type : File
Data : A0019959.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP196\



IBIS Toolbar Object Recognized!
Type : File
Data : A0019960.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP196\



ClearSearch Object Recognized!
Type : File
Data : A0020095.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP196\
FileVersion : 1, 77, 0, 2
ProductVersion : 1, 77, 0, 2


ClearSearch Object Recognized!
Type : File
Data : A0020096.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP196\
FileVersion : 1, 0, 0, 2
ProductVersion : 1, 0, 0, 2
LegalCopyright : Copyright © 2004


ClearSearch Object Recognized!
Type : File
Data : A0020154.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP196\
FileVersion : 1, 77, 0, 2
ProductVersion : 1, 77, 0, 2


ClearSearch Object Recognized!
Type : File
Data : A0020155.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP196\
FileVersion : 1, 0, 0, 2
ProductVersion : 1, 0, 0, 2
LegalCopyright : Copyright © 2004


IBIS Toolbar Object Recognized!
Type : File
Data : A0020160.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP197\



ClearSearch Object Recognized!
Type : File
Data : A0023373.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP202\
FileVersion : 1, 77, 0, 2
ProductVersion : 1, 77, 0, 2


ClearSearch Object Recognized!
Type : File
Data : A0023374.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP202\
FileVersion : 1, 0, 0, 2
ProductVersion : 1, 0, 0, 2
LegalCopyright : Copyright © 2004


PeopleOnPage Object Recognized!
Type : File
Data : A0023445.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP202\



ClearSearch Object Recognized!
Type : File
Data : A0023453.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP202\
FileVersion : 1, 77, 0, 2
ProductVersion : 1, 77, 0, 2


ClearSearch Object Recognized!
Type : File
Data : A0023454.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP202\
FileVersion : 1, 0, 0, 2
ProductVersion : 1, 0, 0, 2
LegalCopyright : Copyright © 2004


ClearSearch Object Recognized!
Type : File
Data : A0023637.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP204\
FileVersion : 1, 77, 0, 2
ProductVersion : 1, 77, 0, 2


ClearSearch Object Recognized!
Type : File
Data : A0023638.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP204\
FileVersion : 1, 0, 0, 2
ProductVersion : 1, 0, 0, 2
LegalCopyright : Copyright © 2004


ClearSearch Object Recognized!
Type : File
Data : A0023692.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP205\
FileVersion : 1, 77, 0, 2
ProductVersion : 1, 77, 0, 2


ClearSearch Object Recognized!
Type : File
Data : A0023693.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP205\
FileVersion : 1, 0, 0, 2
ProductVersion : 1, 0, 0, 2
LegalCopyright : Copyright © 2004


IBIS Toolbar Object Recognized!
Type : File
Data : A0023700.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP205\



ClearSearch Object Recognized!
Type : File
Data : A0023736.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP206\
FileVersion : 1, 77, 0, 2
ProductVersion : 1, 77, 0, 2


ClearSearch Object Recognized!
Type : File
Data : A0023737.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP206\
FileVersion : 1, 0, 0, 2
ProductVersion : 1, 0, 0, 2
LegalCopyright : Copyright © 2004


ClearSearch Object Recognized!
Type : File
Data : A0023767.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP206\
FileVersion : 1, 77, 0, 2
ProductVersion : 1, 77, 0, 2


ClearSearch Object Recognized!
Type : File
Data : A0023768.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP206\
FileVersion : 1, 0, 0, 2
ProductVersion : 1, 0, 0
  • 0

#4
amf2880
Posted 25 April 2005 - 07:21 AM

amf2880

    Member

  • Topic Starter
  • Member
  • PipPip
  • 15 posts
Here is the 3rd portion of the log file.

ClearSearch Object Recognized!
Type : File
Data : A0023768.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP206\
FileVersion : 1, 0, 0, 2
ProductVersion : 1, 0, 0, 2
LegalCopyright : Copyright © 2004


PeopleOnPage Object Recognized!
Type : File
Data : A0023807.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP206\



ClearSearch Object Recognized!
Type : File
Data : A0023815.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP206\
FileVersion : 1, 77, 0, 2
ProductVersion : 1, 77, 0, 2


ClearSearch Object Recognized!
Type : File
Data : A0023816.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP206\
FileVersion : 1, 0, 0, 2
ProductVersion : 1, 0, 0, 2
LegalCopyright : Copyright © 2004


ClearSearch Object Recognized!
Type : File
Data : A0023877.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP207\
FileVersion : 1, 77, 0, 2
ProductVersion : 1, 77, 0, 2


ClearSearch Object Recognized!
Type : File
Data : A0023878.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP207\
FileVersion : 1, 0, 0, 2
ProductVersion : 1, 0, 0, 2
LegalCopyright : Copyright © 2004


ClearSearch Object Recognized!
Type : File
Data : A0023937.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP208\
FileVersion : 1, 77, 0, 2
ProductVersion : 1, 77, 0, 2


ClearSearch Object Recognized!
Type : File
Data : A0023938.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP208\
FileVersion : 1, 0, 0, 2
ProductVersion : 1, 0, 0, 2
LegalCopyright : Copyright © 2004


ClearSearch Object Recognized!
Type : File
Data : A0024025.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP209\
FileVersion : 1, 77, 0, 2
ProductVersion : 1, 77, 0, 2


ClearSearch Object Recognized!
Type : File
Data : A0024026.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP209\
FileVersion : 1, 0, 0, 2
ProductVersion : 1, 0, 0, 2
LegalCopyright : Copyright © 2004


ClearSearch Object Recognized!
Type : File
Data : A0024098.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP210\
FileVersion : 1, 77, 0, 2
ProductVersion : 1, 77, 0, 2


ClearSearch Object Recognized!
Type : File
Data : A0024099.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP210\
FileVersion : 1, 0, 0, 2
ProductVersion : 1, 0, 0, 2
LegalCopyright : Copyright © 2004


ClearSearch Object Recognized!
Type : File
Data : A0024163.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP211\
FileVersion : 1, 77, 0, 2
ProductVersion : 1, 77, 0, 2


ClearSearch Object Recognized!
Type : File
Data : A0024164.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP211\
FileVersion : 1, 0, 0, 2
ProductVersion : 1, 0, 0, 2
LegalCopyright : Copyright © 2004


ClearSearch Object Recognized!
Type : File
Data : A0024222.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP211\
FileVersion : 1, 77, 0, 2
ProductVersion : 1, 77, 0, 2


ClearSearch Object Recognized!
Type : File
Data : A0024223.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP211\
FileVersion : 1, 0, 0, 2
ProductVersion : 1, 0, 0, 2
LegalCopyright : Copyright © 2004


PeopleOnPage Object Recognized!
Type : File
Data : A0024285.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP212\
FileVersion : 5.1.18
ProductVersion : 5.1.18
ProductName : ACE
FileDescription : ACE
InternalName : ACEDLL
OriginalFilename : ACE.DLL


ClearSearch Object Recognized!
Type : File
Data : A0024293.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP212\
FileVersion : 1, 77, 0, 2
ProductVersion : 1, 77, 0, 2


ClearSearch Object Recognized!
Type : File
Data : A0024294.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP212\
FileVersion : 1, 0, 0, 2
ProductVersion : 1, 0, 0, 2
LegalCopyright : Copyright © 2004


Adintelligence.AproposToolbar Object Recognized!
Type : File
Data : A0024329.exe
Category : Misc
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP213\



ClearSearch Object Recognized!
Type : File
Data : A0024363.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP213\
FileVersion : 1, 77, 0, 2
ProductVersion : 1, 77, 0, 2


ClearSearch Object Recognized!
Type : File
Data : A0024364.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP213\
FileVersion : 1, 0, 0, 2
ProductVersion : 1, 0, 0, 2
LegalCopyright : Copyright © 2004


ClearSearch Object Recognized!
Type : File
Data : A0024428.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP214\
FileVersion : 1, 77, 0, 2
ProductVersion : 1, 77, 0, 2


ClearSearch Object Recognized!
Type : File
Data : A0024429.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP214\
FileVersion : 1, 0, 0, 2
ProductVersion : 1, 0, 0, 2
LegalCopyright : Copyright © 2004


ClearSearch Object Recognized!
Type : File
Data : A0024477.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP215\
FileVersion : 1, 77, 0, 2
ProductVersion : 1, 77, 0, 2


ClearSearch Object Recognized!
Type : File
Data : A0024478.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP215\
FileVersion : 1, 0, 0, 2
ProductVersion : 1, 0, 0, 2
LegalCopyright : Copyright © 2004


ClearSearch Object Recognized!
Type : File
Data : A0025489.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP216\
FileVersion : 1, 77, 0, 2
ProductVersion : 1, 77, 0, 2


ClearSearch Object Recognized!
Type : File
Data : A0025490.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP216\
FileVersion : 1, 0, 0, 2
ProductVersion : 1, 0, 0, 2
LegalCopyright : Copyright © 2004


ClearSearch Object Recognized!
Type : File
Data : A0026497.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP219\
FileVersion : 1, 77, 0, 2
ProductVersion : 1, 77, 0, 2


ClearSearch Object Recognized!
Type : File
Data : A0026498.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP219\
FileVersion : 1, 0, 0, 2
ProductVersion : 1, 0, 0, 2
LegalCopyright : Copyright © 2004


ClearSearch Object Recognized!
Type : File
Data : A0026546.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP219\
FileVersion : 1, 77, 0, 2
ProductVersion : 1, 77, 0, 2


ClearSearch Object Recognized!
Type : File
Data : A0026547.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP219\
FileVersion : 1, 0, 0, 2
ProductVersion : 1, 0, 0, 2
LegalCopyright : Copyright © 2004


ClearSearch Object Recognized!
Type : File
Data : A0026615.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP221\
FileVersion : 1, 77, 0, 2
ProductVersion : 1, 77, 0, 2


ClearSearch Object Recognized!
Type : File
Data : A0026616.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP221\
FileVersion : 1, 0, 0, 2
ProductVersion : 1, 0, 0, 2
LegalCopyright : Copyright © 2004


ClearSearch Object Recognized!
Type : File
Data : A0026655.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP221\
FileVersion : 1, 77, 0, 2
ProductVersion : 1, 77, 0, 2


ClearSearch Object Recognized!
Type : File
Data : A0026656.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP221\
FileVersion : 1, 0, 0, 2
ProductVersion : 1, 0, 0, 2
LegalCopyright : Copyright © 2004


ClearSearch Object Recognized!
Type : File
Data : A0026697.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP221\
FileVersion : 1, 77, 0, 2
ProductVersion : 1, 77, 0, 2


ClearSearch Object Recognized!
Type : File
Data : A0026698.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP221\
FileVersion : 1, 0, 0, 2
ProductVersion : 1, 0, 0, 2
LegalCopyright : Copyright © 2004


ClearSearch Object Recognized!
Type : File
Data : A0026770.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP222\
FileVersion : 1, 77, 0, 2
ProductVersion : 1, 77, 0, 2


ClearSearch Object Recognized!
Type : File
Data : A0026771.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP222\
FileVersion : 1, 0, 0, 2
ProductVersion : 1, 0, 0, 2
LegalCopyright : Copyright © 2004


ClearSearch Object Recognized!
Type : File
Data : A0027756.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP222\
FileVersion : 1, 77, 0, 2
ProductVersion : 1, 77, 0, 2


ClearSearch Object Recognized!
Type : File
Data : A0027757.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP222\
FileVersion : 1, 0, 0, 2
ProductVersion : 1, 0, 0, 2
LegalCopyright : Copyright © 2004


ClearSearch Object Recognized!
Type : File
Data : A0027792.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP222\
FileVersion : 1, 77, 0, 2
ProductVersion : 1, 77, 0, 2


ClearSearch Object Recognized!
Type : File
Data : A0027793.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP222\
FileVersion : 1, 0, 0, 2
ProductVersion : 1, 0, 0, 2
LegalCopyright : Copyright © 2004


ClearSearch Object Recognized!
Type : File
Data : A0027845.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP223\
FileVersion : 1, 77, 0, 2
ProductVersion : 1, 77, 0, 2


ClearSearch Object Recognized!
Type : File
Data : A0027846.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP223\
FileVersion : 1, 0, 0, 2
ProductVersion : 1, 0, 0, 2
LegalCopyright : Copyright © 2004


ClearSearch Object Recognized!
Type : File
Data : A0027862.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP223\
FileVersion : 1, 77, 0, 2
ProductVersion : 1, 77, 0, 2


ClearSearch Object Recognized!
Type : File
Data : A0027863.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP223\
FileVersion : 1, 0, 0, 2
ProductVersion : 1, 0, 0, 2
LegalCopyright : Copyright © 2004


ClearSearch Object Recognized!
Type : File
Data : A0027937.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP223\
FileVersion : 1.83.0.5
ProductVersion : 1.83.0.5
InternalName : Grip.dll
OriginalFilename : Grip.dll
Comments : Build 83 E


ClearSearch Object Recognized!
Type : File
Data : A0027938.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP223\



ClearSearch Object Recognized!
Type : File
Data : A0027939.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP223\
FileVersion : 1, 77, 0, 2
ProductVersion : 1, 77, 0, 2


ClearSearch Object Recognized!
Type : File
Data : A0027940.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP223\
FileVersion : 1, 0, 0, 2
ProductVersion : 1, 0, 0, 2
LegalCopyright : Copyright © 2004


ClearSearch Object Recognized!
Type : File
Data : A0028007.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP224\
FileVersion : 1.83.0.5
ProductVersion : 1.83.0.5
InternalName : Grip.dll
OriginalFilename : Grip.dll
Comments : Build 83 E


ClearSearch Object Recognized!
Type : File
Data : A0028010.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP224\



ClearSearch Object Recognized!
Type : File
Data : A0028012.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP224\
FileVersion : 1, 77, 0, 2
ProductVersion : 1, 77, 0, 2


ClearSearch Object Recognized!
Type : File
Data : A0028013.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP224\
FileVersion : 1, 0, 0, 2
ProductVersion : 1, 0, 0, 2
LegalCopyright : Copyright © 2004


ClearSearch Object Recognized!
Type : File
Data : A0028076.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP225\
FileVersion : 1.83.0.5
ProductVersion : 1.83.0.5
InternalName : Grip.dll
OriginalFilename : Grip.dll
Comments : Build 83 E


ClearSearch Object Recognized!
Type : File
Data : A0028079.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP225\



ClearSearch Object Recognized!
Type : File
Data : A0028081.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP225\
FileVersion : 1, 77, 0, 2
ProductVersion : 1, 77, 0, 2


ClearSearch Object Recognized!
Type : File
Data : A0028083.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP225\
FileVersion : 1, 0, 0, 2
ProductVersion : 1, 0, 0, 2
LegalCopyright : Copyright © 2004


ClearSearch Object Recognized!
Type : File
Data : A0028155.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP226\
FileVersion : 1.83.0.5
ProductVersion : 1.83.0.5
InternalName : Grip.dll
OriginalFilename : Grip.dll
Comments : Build 83 E


ClearSearch Object Recognized!
Type : File
Data : A0028156.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP226\



ClearSearch Object Recognized!
Type : File
Data : A0028158.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP226\
FileVersion : 1, 77, 0, 2
ProductVersion : 1, 77, 0, 2


ClearSearch Object Recognized!
Type : File
Data : A0028159.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP226\
FileVersion : 1, 0, 0, 2
ProductVersion : 1, 0, 0, 2
LegalCopyright : Copyright © 2004


ClearSearch Object Recognized!
Type : File
Data : A0028234.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP227\
FileVersion : 1.83.0.5
ProductVersion : 1.83.0.5
InternalName : Grip.dll
OriginalFilename : Grip.dll
Comments : Build 83 E


ClearSearch Object Recognized!
Type : File
Data : A0028236.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP227\



ClearSearch Object Recognized!
Type : File
Data : A0028238.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP227\
FileVersion : 1, 77, 0, 2
ProductVersion : 1, 77, 0, 2


ClearSearch Object Recognized!
Type : File
Data : A0028239.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP227\
FileVersion : 1, 0, 0, 2
ProductVersion : 1, 0, 0, 2
LegalCopyright : Copyright © 2004


ClearSearch Object Recognized!
Type : File
Data : A0028291.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP228\
FileVersion : 1.83.0.5
ProductVersion : 1.83.0.5
InternalName : Grip.dll
OriginalFilename : Grip.dll
Comments : Build 83 E


ClearSearch Object Recognized!
Type : File
Data : A0028294.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP228\



ClearSearch Object Recognized!
Type : File
Data : A0028297.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP228\
FileVersion : 1, 77, 0, 2
ProductVersion : 1, 77, 0, 2


ClearSearch Object Recognized!
Type : File
Data : A0028299.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP228\
FileVersion : 1, 0, 0, 2
ProductVersion : 1, 0, 0, 2
LegalCopyright : Copyright © 2004


ClearSearch Object Recognized!
Type : File
Data : A0028347.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP229\
FileVersion : 1.83.0.5
ProductVersion : 1.83.0.5
InternalName : Grip.dll
OriginalFilename : Grip.dll
Comments : Build 83 E


ClearSearch Object Recognized!
Type : File
Data : A0028350.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP229\



ClearSearch Object Recognized!
Type : File
Data : A0028353.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP229\
FileVersion : 1, 77, 0, 2
ProductVersion : 1, 77, 0, 2


ClearSearch Object Recognized!
Type : File
Data : A0028354.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP229\
FileVersion : 1, 0, 0, 2
ProductVersion : 1, 0, 0, 2
LegalCopyright : Copyright © 2004


PeopleOnPage Object Recognized!
Type : File
Data : A0028382.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP229\
FileVersion : 5.1.18
ProductVersion : 5.1.18
ProductName : ACE
FileDescription : ACE
InternalName : ACEDLL
OriginalFilename : ACE.DLL


ClearSearch Object Recognized!
Type : File
Data : A0028423.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP230\
FileVersion : 1.83.0.5
ProductVersion : 1.83.0.5
InternalName : Grip.dll
OriginalFilename : Grip.dll
Comments : Build 83 E


ClearSearch Object Recognized!
Type : File
Data : A0028427.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP230\



ClearSearch Object Recognized!
Type : File
Data : A0028429.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP230\
FileVersion : 1, 77, 0, 2
ProductVersion : 1, 77, 0, 2


ClearSearch Object Recognized!
Type : File
Data : A0028430.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP230\
FileVersion : 1, 0, 0, 2
ProductVersion : 1, 0, 0, 2
LegalCopyright : Copyright © 2004


ClearSearch Object Recognized!
Type : File
Data : A0028492.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP231\
FileVersion : 1.83.0.5
ProductVersion : 1.83.0.5
InternalName : Grip.dll
OriginalFilename : Grip.dll
Comments : Build 83 E


ClearSearch Object Recognized!
Type : File
Data : A0028493.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP231\



ClearSearch Object Recognized!
Type : File
Data : A0028494.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP231\
FileVersion : 1, 77, 0, 2
ProductVersion : 1, 77, 0, 2


ClearSearch Object Recognized!
Type : File
Data : A0028495.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP231\
FileVersion : 1, 0, 0, 2
ProductVersion : 1, 0, 0, 2
LegalCopyright : Copyright © 2004


ClearSearch Object Recognized!
Type : File
Data : A0028557.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP232\
FileVersion : 1.83.0.5
ProductVersion : 1.83.0.5
InternalName : Grip.dll
OriginalFilename : Grip.dll
Comments : Build 83 E


ClearSearch Object Recognized!
Type : File
Data : A0028559.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP232\



ClearSearch Object Recognized!
Type : File
Data : A0028561.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP232\
FileVersion : 1, 77, 0, 2
ProductVersion : 1, 77, 0, 2


ClearSearch Object Recognized!
Type : File
Data : A0028562.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP232\
FileVersion : 1, 0, 0, 2
ProductVersion : 1, 0, 0, 2
LegalCopyright : Copyright © 2004


PeopleOnPage Object Recognized!
Type : File
Data : A0028589.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP233\
FileVersion : 5.1.18
ProductVersion : 5.1.18
ProductName : ACE
FileDescription : ACE
InternalName : ACEDLL
OriginalFilename : ACE.DLL


PeopleOnPage Object Recognized!
Type : File
Data : A0028624.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP233\



ClearSearch Object Recognized!
Type : File
Data : A0028637.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP233\
FileVersion : 1.83.0.5
ProductVersion : 1.83.0.5
InternalName : Grip.dll
OriginalFilename : Grip.dll
Comments : Build 83 E


ClearSearch Object Recognized!
Type : File
Data : A0028638.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP233\



ClearSearch Object Recognized!
Type : File
Data : A0028639.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP233\
FileVersion : 1, 77, 0, 2
ProductVersion : 1, 77, 0, 2


ClearSearch Object Recognized!
Type : File
Data : A0028640.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP233\
FileVersion : 1, 0, 0, 2
ProductVersion : 1, 0, 0, 2
LegalCopyright : Copyright © 2004


ClearSearch Object Recognized!
Type : File
Data : A0028679.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP233\
FileVersion : 1.83.0.5
ProductVersion : 1.83.0.5
InternalName : Grip.dll
OriginalFilename : Grip.dll
Comments : Build 83 E


ClearSearch Object Recognized!
Type : File
Data : A0028680.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP233\



ClearSearch Object Recognized!
Type : File
Data : A0028682.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP233\
FileVersion : 1, 77, 0, 2
ProductVersion : 1, 77, 0, 2


ClearSearch Object Recognized!
Type : File
Data : A0028683.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP233\
FileVersion : 1, 0, 0, 2
ProductVersion : 1, 0, 0, 2
LegalCopyright : Copyright © 2004


PeopleOnPage Object Recognized!
Type : File
Data : A0028729.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP234\



ClearSearch Object Recognized!
Type : File
Data : A0028746.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP235\
FileVersion : 1.83.0.5
ProductVersion : 1.83.0.5
InternalName : Grip.dll
OriginalFilename : Grip.dll
Comments : Build 83 E


ClearSearch Object Recognized!
Type : File
Data : A0028747.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP235\



ClearSearch Object Recognized!
Type : File
Data : A0028748.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP235\
FileVersion : 1, 77, 0, 2
ProductVersion : 1, 77, 0, 2


ClearSearch Object Recognized!
Type : File
Data : A0028749.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP235\
FileVersion : 1, 0, 0, 2
ProductVersion : 1, 0, 0, 2
LegalCopyright : Copyright © 2004


ClearSearch Object Recognized!
Type : File
Data : A0028782.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP235\
FileVersion : 1.83.0.5
ProductVersion : 1.83.0.5
InternalName : Grip.dll
OriginalFilename : Grip.dll
Comments : Build 83 E


ClearSearch Object Recognized!
Type : File
Data : A0028786.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP235\



ClearSearch Object Recognized!
Type : File
Data : A0028791.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP235\
FileVersion : 1, 77, 0, 2
ProductVersion : 1, 77, 0, 2


ClearSearch Object Recognized!
Type : File
Data : A0028792.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP235\
FileVersion : 1, 0, 0, 2
ProductVersion : 1, 0, 0, 2
LegalCopyright : Copyright © 2004


ClearSearch Object Recognized!
Type : File
Data : A0028816.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP235\
FileVersion : 1.83.0.5
ProductVersion : 1.83.0.5
InternalName : Grip.dll
OriginalFilename : Grip.dll
Comments : Build 83 E


ClearSearch Object Recognized!
Type : File
Data : A0028819.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP235\



ClearSearch Object Recognized!
Type : File
Data : A0028822.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP235\
FileVersion : 1, 77, 0, 2
ProductVersion : 1, 77, 0, 2


ClearSearch Object Recognized!
Type : File
Data : A0028824.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP235\
FileVersion : 1, 0, 0, 2
ProductVersion : 1, 0, 0, 2
LegalCopyright : Copyright © 2004


ClearSearch Object Recognized!
Type : File
Data : A0028927.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP238\
FileVersion : 1.83.0.5
ProductVersion : 1.83.0.5
InternalName : Grip.dll
OriginalFilename : Grip.dll
Comments : Build 83 E


ClearSearch Object Recognized!
Type : File
Data : A0028930.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP238\



ClearSearch Object Recognized!
Type : File
Data : A0028933.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP238\
FileVersion : 1, 77, 0, 2
ProductVersion : 1, 77, 0, 2


ClearSearch Object Recognized!
Type : File
Data : A0028935.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP238\
FileVersion : 1, 0, 0, 2
ProductVersion : 1, 0, 0, 2
LegalCopyright : Copyright © 2004


ClearSearch Object Recognized!
Type : File
Data : A0028998.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP239\
FileVersion : 1.83.0.5
ProductVersion : 1.83.0.5
InternalName : Grip.dll
OriginalFilename : Grip.dll
Comments : Build 83 E


ClearSearch Object Recognized!
Type : File
Data : A0029001.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP239\



ClearSearch Object Recognized!
Type : File
Data : A0029003.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP239\
FileVersion : 1, 77, 0, 2
ProductVersion : 1, 77, 0, 2


ClearSearch Object Recognized!
Type : File
Data : A0029005.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP239\
FileVersion : 1, 0, 0, 2
ProductVersion : 1, 0, 0, 2
LegalCopyright : Copyright © 2004


ClearSearch Object Recognized!
Type : File
Data : A0029056.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP240\
FileVersion : 1.83.0.5
ProductVersion : 1.83.0.5
InternalName : Grip.dll
OriginalFilename : Grip.dll
Comments : Build 83 E


ClearSearch Object Recognized!
Type : File
Data : A0029059.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP240\



ClearSearch Object Recognized!
Type : File
Data : A0029063.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP240\
FileVersion : 1, 77, 0, 2
ProductVersion : 1, 77, 0, 2


ClearSearch Object Recognized!
Type : File
Data : A0029064.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP240\
FileVersion : 1, 0, 0, 2
ProductVersion : 1, 0, 0, 2
LegalCopyright : Copyright © 2004


ClearSearch Object Recognized!
Type : File
Data : A0029104.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP240\
FileVersion : 1.83.0.5
ProductVersion : 1.83.0.5
InternalName : Grip.dll
OriginalFilename : Grip.dll
Comments : Build 83 E


ClearSearch Object Recognized!
Type : File
Data : A0029107.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP240\



ClearSearch Object Recognized!
Type : File
Data : A0029108.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP240\
FileVersion : 1, 77, 0, 2
ProductVersion : 1, 77, 0, 2


ClearSearch Object Recognized!
Type : File
Data : A0029109.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP240\
FileVersion : 1, 0, 0, 2
ProductVersion : 1, 0, 0, 2
LegalCopyright : Copyright © 2004


ClearSearch Object Recognized!
Type : File
Data : A0029214.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP242\
FileVersion : 1.83.0.5
ProductVersion : 1.83.0.5
InternalName : Grip.dll
OriginalFilename : Grip.dll
Comments : Build 83 E


ClearSearch Object Recognized!
Type : File
Data : A0029218.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP242\



ClearSearch Object Recognized!
Type : File
Data : A0029220.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP242\
FileVersion : 1, 77, 0, 2
ProductVersion : 1, 77, 0, 2


ClearSearch Object Recognized!
Type : File
Data : A0029221.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP242\
FileVersion : 1, 0, 0, 2
ProductVersion : 1, 0, 0, 2
LegalCopyright : Copyright © 2004


ClearSearch Object Recognized!
Type : File
Data : A0029259.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP243\
FileVersion : 1.83.0.5
ProductVersion : 1.83.0.5
InternalName : Grip.dll
OriginalFilename : Grip.dll
Comments : Build 83 E


ClearSearch Object Recognized!
Type : File
Data : A0029260.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP243\



ClearSearch Object Recognized!
Type : File
Data : A0029261.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP243\
FileVersion : 1, 77, 0, 2
ProductVersion : 1, 77, 0, 2


ClearSearch Object Recognized!
Type : File
Data : A0029262.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP243\
FileVersion : 1, 0, 0, 2
ProductVersion : 1, 0, 0, 2
LegalCopyright : Copyright © 2004


ClearSearch Object Recognized!
Type : File
Data : A0029329.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP244\
FileVersion : 1.83.0.5
ProductVersion : 1.83.0.5
InternalName : Grip.dll
OriginalFilename : Grip.dll
Comments : Build 83 E


ClearSearch Object Recognized!
Type : File
Data : A0029330.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP244\



ClearSearch Object Recognized!
Type : File
Data : A0029331.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP244\
FileVersion : 1, 77, 0, 2
ProductVersion : 1, 77, 0, 2


ClearSearch Object Recognized!
Type : File
Data : A0029332.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP244\
FileVersion : 1, 0, 0, 2
ProductVersion : 1, 0, 0, 2
LegalCopyright : Copyright © 2004


ClearSearch Object Recognized!
Type : File
Data : A0029385.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP245\
FileVersion : 1.83.0.5
ProductVersion : 1.83.0.5
InternalName : Grip.dll
OriginalFilename : Grip.dll
Comments : Build 83 E


ClearSearch Object Recognized!
Type : File
Data : A0029387.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP245\



ClearSearch Object Recognized!
Type : File
Data : A0029388.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP245\
FileVersion : 1, 77, 0, 2
ProductVersion : 1, 77, 0, 2


ClearSearch Object Recognized!
Type : File
Data : A0029389.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP245\
FileVersion : 1, 0, 0, 2
ProductVersion : 1, 0, 0, 2
LegalCopyright : Copyright © 2004


ClearSearch Object Recognized!
Type : File
Data : A0029455.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP246\
FileVersion : 1.83.0.5
ProductVersion : 1.83.0.5
InternalName : Grip.dll
OriginalFilename : Grip.dll
Comments : Build 83 E


ClearSearch Object Recognized!
Type : File
Data : A0029456.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP246\



ClearSearch Object Recognized!
Type : File
Data : A0029458.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP246\
FileVersion : 1, 77, 0, 2
ProductVersion : 1, 77, 0, 2


ClearSearch Object Recognized!
Type : File
Data : A0029459.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP246\
FileVersion : 1, 0, 0, 2
ProductVersion : 1, 0, 0, 2
LegalCopyright : Copyright © 2004


ClearSearch Object Recognized!
Type : File
Data : A0029515.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{
  • 0

#5
amf2880
Posted 25 April 2005 - 07:23 AM

amf2880

    Member

  • Topic Starter
  • Member
  • PipPip
  • 15 posts
This is the 4th, and hopefully last portion of the log file. Sorry this is so long! Thank you for your help.

ClearSearch Object Recognized!
Type : File
Data : A0029515.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP247\
FileVersion : 1.83.0.5
ProductVersion : 1.83.0.5
InternalName : Grip.dll
OriginalFilename : Grip.dll
Comments : Build 83 E


ClearSearch Object Recognized!
Type : File
Data : A0029518.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP247\



ClearSearch Object Recognized!
Type : File
Data : A0029522.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP247\
FileVersion : 1, 77, 0, 2
ProductVersion : 1, 77, 0, 2


ClearSearch Object Recognized!
Type : File
Data : A0029525.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP247\
FileVersion : 1, 0, 0, 2
ProductVersion : 1, 0, 0, 2
LegalCopyright : Copyright © 2004


ClearSearch Object Recognized!
Type : File
Data : A0029558.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP247\
FileVersion : 1.83.0.5
ProductVersion : 1.83.0.5
InternalName : Grip.dll
OriginalFilename : Grip.dll
Comments : Build 83 E


ClearSearch Object Recognized!
Type : File
Data : A0029562.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP247\



ClearSearch Object Recognized!
Type : File
Data : A0029564.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP247\
FileVersion : 1, 77, 0, 2
ProductVersion : 1, 77, 0, 2


ClearSearch Object Recognized!
Type : File
Data : A0029565.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP247\
FileVersion : 1, 0, 0, 2
ProductVersion : 1, 0, 0, 2
LegalCopyright : Copyright © 2004


ClearSearch Object Recognized!
Type : File
Data : A0029632.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP248\
FileVersion : 1.83.0.5
ProductVersion : 1.83.0.5
InternalName : Grip.dll
OriginalFilename : Grip.dll
Comments : Build 83 E


ClearSearch Object Recognized!
Type : File
Data : A0029635.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP248\



ClearSearch Object Recognized!
Type : File
Data : A0029639.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP248\
FileVersion : 1, 77, 0, 2
ProductVersion : 1, 77, 0, 2


ClearSearch Object Recognized!
Type : File
Data : A0029640.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP248\
FileVersion : 1, 0, 0, 2
ProductVersion : 1, 0, 0, 2
LegalCopyright : Copyright © 2004


SahAgent Object Recognized!
Type : File
Data : WEBInstaller.dll
Category : Data Miner
Comment :
Object : C:\WINDOWS\Downloaded Program Files\
FileVersion : 1, 1, 1, 32
ProductVersion : 1, 1, 1, 32
ProductName : WEBInstaller Module
FileDescription : WEBInstaller Module
InternalName : WEBInstaller
LegalCopyright : Copyright 2002
OriginalFilename : WEBInstaller.DLL


AdRotator Object Recognized!
Type : File
Data : Helper101.dll
Category : Malware
Comment :
Object : C:\WINDOWS\



ClearSearch Object Recognized!
Type : File
Data : CSv13P108.exe
Category : Data Miner
Comment :
Object : C:\WINDOWS\system32\Cache\
FileVersion : 1, 13, 0, 5
ProductVersion : 1, 13, 0, 5


DealHelper Object Recognized!
Type : File
Data : dun.exe
Category : Malware
Comment :
Object : C:\WINDOWS\system32\
FileVersion : 1, 0, 0, 1
ProductVersion : 1, 0, 0, 1
ProductName : UnInstallKey Application
FileDescription : UnInstallKey MFC Application
InternalName : UnInstallKey
LegalCopyright : Copyright © 2003
OriginalFilename : UnInstallKey.EXE


AdRotator Object Recognized!
Type : File
Data : ecdqmd.exe
Category : Malware
Comment :
Object : C:\WINDOWS\system32\
FileVersion : 1, 0, 0, 1
ProductVersion : 1, 0, 0, 1
ProductName : localDownload Application
FileDescription : localDownload MFC Application
InternalName : localDownload
LegalCopyright : Copyright © 2004
OriginalFilename : localDownload.EXE


eUniverse Object Recognized!
Type : File
Data : in3.dll
Category : Data Miner
Comment :
Object : C:\WINDOWS\system32\
FileVersion : 1, 0, 0, 1
ProductVersion : 1, 0, 0, 1
ProductName : exe_in_dll Module
FileDescription : exe_in_dll Module
InternalName : exe_in_dll
LegalCopyright : Copyright 2001
OriginalFilename : exe_in_dll.DLL


SahAgent Object Recognized!
Type : File
Data : lsp.dll_tobedeleted
Category : Data Miner
Comment :
Object : C:\WINDOWS\system32\
FileVersion : 2, 0, 0, 1
ProductVersion : 2, 0, 0, 1
ProductName : ShopAtHomeSelect LSP
CompanyName : ShopAtHomeSelect
FileDescription : LSP
InternalName : LSP
LegalCopyright : Copyright © 2004
OriginalFilename : LSP.DLL


DealHelper Object Recognized!
Type : File
Data : Zpsece.exe
Category : Malware
Comment :
Object : C:\WINDOWS\system32\
FileVersion : 1, 0, 0, 1
ProductVersion : 1, 0, 0, 1
ProductName : Redirect Application
FileDescription : Redirect MFC Application
InternalName : Redirect
LegalCopyright : Copyright © 2003
OriginalFilename : Redirect.EXE


Disk Scan Result for C:\
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
New critical objects: 0
Objects found so far: 431


Scanning Hosts file......
Hosts file location:"C:\WINDOWS\system32\drivers\etc\hosts".
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»

Hosts file scan result:
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
1 entries scanned.
New critical objects:0
Objects found so far: 431



Possible Browser Hijack attempt Object Recognized!
Type : File
Data : Big Fish Games.url
Category : Misc
Comment : Problematic URL discovered: http://www.regnow.co...ite&vendor=7551
Object : C:\Documents and Settings\afiegel\Favorites\AT-Games\



Possible Browser Hijack attempt Object Recognized!
Type : File
Data : FlyorDie Games.url
Category : Misc
Comment : Problematic URL discovered: http://www.regnow.co...ite&vendor=7834
Object : C:\Documents and Settings\afiegel\Favorites\AT-Games\



Possible Browser Hijack attempt Object Recognized!
Type : File
Data : Gamehouse Games.url
Category : Misc
Comment : Problematic URL discovered: http://www.gamehouse...te.jsp?AID=2226
Object : C:\Documents and Settings\afiegel\Favorites\AT-Games\




Performing conditional scans...
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»

ClearSearch Object Recognized!
Type : RegValue
Data :
Category : Data Miner
Comment :
Rootkey : HKEY_CURRENT_USER
Object : software\microsoft\internet explorer\urlsearchhooks
Value : {CFBFAE00-17A6-11D0-99CB-00C04FD64497}

AdRotator Object Recognized!
Type : File
Data : hiwinnager.dat
Category : Malware
Comment :
Object : C:\WINDOWS\system32\



AdRotator Object Recognized!
Type : File
Data : searchen.dat
Category : Malware
Comment :
Object : C:\WINDOWS\



Elitum.ElitebarBHO Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment :
Rootkey : HKEY_CURRENT_USER
Object : software\lq

Elitum.ElitebarBHO Object Recognized!
Type : RegValue
Data :
Category : Data Miner
Comment :
Rootkey : HKEY_CURRENT_USER
Object : software\lq
Value : TM

Elitum.ElitebarBHO Object Recognized!
Type : RegValue
Data :
Category : Data Miner
Comment :
Rootkey : HKEY_CURRENT_USER
Object : software\lq
Value : AD

Elitum.ElitebarBHO Object Recognized!
Type : RegValue
Data :
Category : Data Miner
Comment :
Rootkey : HKEY_CURRENT_USER
Object : software\lq
Value : AM

Elitum.ElitebarBHO Object Recognized!
Type : RegValue
Data :
Category : Data Miner
Comment :
Rootkey : HKEY_CURRENT_USER
Object : software\lq
Value : AT

Elitum.ElitebarBHO Object Recognized!
Type : RegValue
Data :
Category : Data Miner
Comment :
Rootkey : HKEY_CURRENT_USER
Object : software\lq
Value : AC

Elitum.ElitebarBHO Object Recognized!
Type : RegValue
Data :
Category : Data Miner
Comment :
Rootkey : HKEY_CURRENT_USER
Object : software\lq
Value : U

Elitum.ElitebarBHO Object Recognized!
Type : RegValue
Data :
Category : Data Miner
Comment :
Rootkey : HKEY_CURRENT_USER
Object : software\lq
Value : I

Elitum.ElitebarBHO Object Recognized!
Type : RegValue
Data :
Category : Data Miner
Comment :
Rootkey : HKEY_CURRENT_USER
Object : software\lq
Value : TR

Elitum.ElitebarBHO Object Recognized!
Type : RegValue
Data :
Category : Data Miner
Comment :
Rootkey : HKEY_CURRENT_USER
Object : software\lq
Value : country

Elitum.ElitebarBHO Object Recognized!
Type : RegValue
Data :
Category : Data Miner
Comment :
Rootkey : HKEY_CURRENT_USER
Object : software\lq
Value : city

Elitum.ElitebarBHO Object Recognized!
Type : RegValue
Data :
Category : Data Miner
Comment :
Rootkey : HKEY_CURRENT_USER
Object : software\lq
Value : state

Elitum.ElitebarBHO Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment :
Rootkey : HKEY_LOCAL_MACHINE
Object : software\elitum

Elitum.ElitebarBHO Object Recognized!
Type : Folder
Category : Data Miner
Comment :
Object : C:\WINDOWS\EliteToolBar

PeopleOnPage Object Recognized!
Type : RegValue
Data :
Category : Data Miner
Comment :
Rootkey : HKEY_LOCAL_MACHINE
Object : software\microsoft\windows\currentversion\run
Value : AutoUpdater

PeopleOnPage Object Recognized!
Type : Folder
Category : Data Miner
Comment :
Object : C:\Program Files\AutoUpdate

PeopleOnPage Object Recognized!
Type : File
Data : libexpat.dll
Category : Data Miner
Comment :
Object : C:\Program Files\autoupdate\



Favoriteman Object Recognized!
Type : File
Data : hosts.bho
Category : Malware
Comment :
Object : C:\WINDOWS\system32\drivers\etc\



DealHelper Object Recognized!
Type : RegValue
Data :
Category : Malware
Comment :
Rootkey : HKEY_CURRENT_USER
Object : software\microsoft\internet explorer\toolbar\webbrowser
Value : {01E04581-4EEE-11D0-BFE9-00AA005B4383}

DealHelper Object Recognized!
Type : Folder
Category : Malware
Comment :
Object : C:\WINDOWS\system32\DealHelper

SahAgent Object Recognized!
Type : File
Data : setup.inf
Category : Data Miner
Comment :
Object : C:\WINDOWS\downloaded program files\



SahAgent Object Recognized!
Type : File
Data : bundletracking.asp
Category : Data Miner
Comment :
Object : C:\DOCUME~1\afiegel\LOCALS~1\Temp\



SahAgent Object Recognized!
Type : File
Data : mindset1020.sah
Category : Data Miner
Comment :
Object : C:\DOCUME~1\afiegel\LOCALS~1\Temp\



SahAgent Object Recognized!
Type : File
Data : bundle.inf
Category : Data Miner
Comment :
Object : C:\DOCUME~1\afiegel\LOCALS~1\Temp\



IBIS Toolbar Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment :
Rootkey : HKEY_CURRENT_USER
Object : software\microsoft\mediaplayer\control\playbar

IBIS Toolbar Object Recognized!
Type : RegValue
Data :
Category : Data Miner
Comment :
Rootkey : HKEY_CURRENT_USER
Object : software\microsoft\mediaplayer\control\playbar
Value : ClrShadow

IBIS Toolbar Object Recognized!
Type : RegValue
Data :
Category : Data Miner
Comment :
Rootkey : HKEY_CURRENT_USER
Object : software\microsoft\mediaplayer\control\playbar
Value : ClrHighlight

IBIS Toolbar Object Recognized!
Type : RegValue
Data :
Category : Data Miner
Comment :
Rootkey : HKEY_CURRENT_USER
Object : software\microsoft\mediaplayer\control\playbar
Value : ClrForeColor

IBIS Toolbar Object Recognized!
Type : RegValue
Data :
Category : Data Miner
Comment :
Rootkey : HKEY_CURRENT_USER
Object : software\microsoft\mediaplayer\control\playbar
Value : ClrBackColor

IBIS Toolbar Object Recognized!
Type : RegValue
Data :
Category : Data Miner
Comment :
Rootkey : HKEY_CURRENT_USER
Object : software\microsoft\mediaplayer\control\playbar
Value : ClrDownload

IBIS Toolbar Object Recognized!
Type : RegValue
Data :
Category : Data Miner
Comment :
Rootkey : HKEY_CURRENT_USER
Object : software\microsoft\mediaplayer\control\playbar
Value : ClrViewed

IBIS Toolbar Object Recognized!
Type : RegValue
Data :
Category : Data Miner
Comment :
Rootkey : HKEY_CURRENT_USER
Object : software\microsoft\mediaplayer\control\playbar
Value : ClrStatic

IBIS Toolbar Object Recognized!
Type : RegValue
Data :
Category : Data Miner
Comment :
Rootkey : HKEY_LOCAL_MACHINE
Object : software\microsoft\windows\currentversion\explorer
Value : ServerProc

IBIS Toolbar Object Recognized!
Type : RegValue
Data :
Category : Data Miner
Comment :
Rootkey : HKEY_LOCAL_MACHINE
Object : software\microsoft\windows\currentversion\installer\userdata
Value : TUID

eUniverse Object Recognized!
Type : File
Data : IncrediFindBHOLog.tmp
Category : Data Miner
Comment :
Object : C:\DOCUME~1\afiegel\LOCALS~1\Temp\



Conditional scan result:
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
New critical objects: 38
Objects found so far: 472

4:37:55 PM Scan Complete

Summary Of This Scan
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
Total scanning time:00:06:42.835
Objects scanned:107528
Objects identified:429
Objects ignored:0
New critical objects:429
  • 0

#6
Rawe
Posted 25 April 2005 - 07:25 AM

Rawe

    Visiting Staff

  • Member
  • PipPipPipPipPipPipPip
  • 4,746 posts
Hi.
First step to do is this;
Download/install this tool here;
http://www.ccleaner.com/
After installed, open it up and bush the button "Run cleaner".
After you have succesfully done that, open your Ad-aware SE personal.
Then read these instructions here;
http://www.geekstogo...ons-t16830.html
After you have followed the guidelines, post a new logfile from "Full system scan".
Thanks,

- Rawe :tazz:

(Expert's will take it from there)
  • 0

#7
amf2880
Posted 25 April 2005 - 07:55 AM

amf2880

    Member

  • Topic Starter
  • Member
  • PipPip
  • 15 posts
Here is the first portion of my log file after running CCleaner:


Ad-Aware SE Build 1.05
Logfile Created on:Monday, April 25, 2005 8:40:46 AM
Created with Ad-Aware SE Personal, free for private use.
Using definitions file:SE1R40 20.04.2005
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»

References detected during the scan:
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
180Solutions(TAC index:6):3 total references
Adintelligence.AproposToolbar(TAC index:5):1 total references
AdRotator(TAC index:6):10 total references
ClearSearch(TAC index:7):274 total references
DealHelper(TAC index:7):5 total references
Ebates MoneyMaker(TAC index:4):1 total references
Elitum.ElitebarBHO(TAC index:5):24 total references
eUniverse(TAC index:10):1 total references
Favoriteman(TAC index:8):4 total references
IBIS Toolbar(TAC index:5):28 total references
PeopleOnPage(TAC index:9):12 total references
Possible Browser Hijack attempt(TAC index:3):5 total references
SahAgent(TAC index:9):5 total references
Tracking Cookie(TAC index:3):4 total references
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»

Definition File:
=========================
Definitions File Loaded:
Reference Number : SE1R40 20.04.2005
Internal build : 47
File location : C:\Program Files\Lavasoft\Ad-Aware SE Personal\defs.ref
File size : 461235 Bytes
Total size : 1395231 Bytes
Signature data size : 1364710 Bytes
Reference data size : 30009 Bytes
Signatures total : 38921
Fingerprints total : 813
Fingerprints size : 29073 Bytes
Target categories : 15
Target families : 650


Memory + processor status:
==========================
Number of processors : 1
Processor architecture : Intel Pentium IV
Memory available:34 %
Total physical memory:253424 kb
Available physical memory:85052 kb
Total page file size:620964 kb
Available on page file:350876 kb
Total virtual memory:2097024 kb
Available virtual memory:2046456 kb
OS:Microsoft Windows XP Professional Service Pack 2 (Build 2600)

Ad-Aware SE Settings
===========================
Set : Safe mode (always request confirmation)
Set : Scan active processes
Set : Scan registry
Set : Deep-scan registry
Set : Scan my IE Favorites for banned URLs
Set : Scan within archives
Set : Scan my Hosts file

Extended Ad-Aware SE Settings
===========================
Set : Unload recognized processes & modules during scan
Set : Obtain command line of scanned processes
Set : Scan registry for all users instead of current user only
Set : Always try to unload modules before deletion
Set : During removal, unload Explorer and IE if necessary
Set : Let Windows remove files in use at next reboot
Set : Delete quarantined objects after restoring
Set : Write-protect system files after repair (Hosts file, etc.)
Set : Include basic Ad-Aware settings in log file
Set : Include additional Ad-Aware settings in log file
Set : Include reference summary in log file
Set : Play sound at scan completion if scan locates critical objects


4-25-2005 8:40:46 AM - Scan started. (Full System Scan)

Listing running processes
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»

#:1 [smss.exe]
ModuleName : \SystemRoot\System32\smss.exe
Command Line : n/a
ProcessID : 472
ThreadCreationTime : 4-25-2005 1:04:21 PM
BasePriority : Normal


#:2 [csrss.exe]
ModuleName : \??\C:\WINDOWS\system32\csrss.exe
Command Line : C:\WINDOWS\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,3072,512 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ProfileControl=Off MaxRequestTh
ProcessID : 528
ThreadCreationTime : 4-25-2005 1:04:22 PM
BasePriority : Normal


#:3 [winlogon.exe]
ModuleName : \??\C:\WINDOWS\system32\winlogon.exe
Command Line : winlogon.exe
ProcessID : 552
ThreadCreationTime : 4-25-2005 1:04:23 PM
BasePriority : High


#:4 [services.exe]
ModuleName : C:\WINDOWS\system32\services.exe
Command Line : C:\WINDOWS\system32\services.exe
ProcessID : 596
ThreadCreationTime : 4-25-2005 1:04:23 PM
BasePriority : Normal
FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 5.1.2600.2180
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Services and Controller app
InternalName : services.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : services.exe

#:5 [lsass.exe]
ModuleName : C:\WINDOWS\system32\lsass.exe
Command Line : C:\WINDOWS\system32\lsass.exe
ProcessID : 608
ThreadCreationTime : 4-25-2005 1:04:23 PM
BasePriority : Normal
FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 5.1.2600.2180
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : LSA Shell (Export Version)
InternalName : lsass.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : lsass.exe

#:6 [svchost.exe]
ModuleName : C:\WINDOWS\system32\svchost.exe
Command Line : C:\WINDOWS\system32\svchost -k DcomLaunch
ProcessID : 792
ThreadCreationTime : 4-25-2005 1:04:23 PM
BasePriority : Normal
FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 5.1.2600.2180
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Generic Host Process for Win32 Services
InternalName : svchost.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : svchost.exe

#:7 [svchost.exe]
ModuleName : C:\WINDOWS\system32\svchost.exe
Command Line : C:\WINDOWS\system32\svchost -k rpcss
ProcessID : 848
ThreadCreationTime : 4-25-2005 1:04:23 PM
BasePriority : Normal
FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 5.1.2600.2180
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Generic Host Process for Win32 Services
InternalName : svchost.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : svchost.exe

#:8 [svchost.exe]
ModuleName : C:\WINDOWS\System32\svchost.exe
Command Line : C:\WINDOWS\System32\svchost.exe -k netsvcs
ProcessID : 912
ThreadCreationTime : 4-25-2005 1:04:23 PM
BasePriority : Normal
FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 5.1.2600.2180
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Generic Host Process for Win32 Services
InternalName : svchost.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : svchost.exe

#:9 [svchost.exe]
ModuleName : C:\WINDOWS\System32\svchost.exe
Command Line : C:\WINDOWS\System32\svchost.exe -k NetworkService
ProcessID : 968
ThreadCreationTime : 4-25-2005 1:04:24 PM
BasePriority : Normal
FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 5.1.2600.2180
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Generic Host Process for Win32 Services
InternalName : svchost.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : svchost.exe

#:10 [svchost.exe]
ModuleName : C:\WINDOWS\System32\svchost.exe
Command Line : C:\WINDOWS\System32\svchost.exe -k LocalService
ProcessID : 1076
ThreadCreationTime : 4-25-2005 1:04:24 PM
BasePriority : Normal
FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 5.1.2600.2180
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Generic Host Process for Win32 Services
InternalName : svchost.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : svchost.exe

#:11 [spoolsv.exe]
ModuleName : C:\WINDOWS\system32\spoolsv.exe
Command Line : C:\WINDOWS\system32\spoolsv.exe
ProcessID : 1200
ThreadCreationTime : 4-25-2005 1:04:24 PM
BasePriority : Normal
FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 5.1.2600.2180
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Spooler SubSystem App
InternalName : spoolsv.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : spoolsv.exe

#:12 [kodakccs.exe]
ModuleName : C:\WINDOWS\system32\drivers\KodakCCS.exe
Command Line : C:\WINDOWS\system32\drivers\KodakCCS.exe
ProcessID : 1368
ThreadCreationTime : 4-25-2005 1:04:27 PM
BasePriority : Normal
FileVersion : 1.1.5100.4
ProductVersion : 4.4.0.0
ProductName : Kodak DC File System Driver (Win32)
CompanyName : Eastman Kodak Company
FileDescription : Kodak DC Ring 3 Conduit (Win32)
InternalName : KodakCCS.exe
LegalCopyright : Copyright © Eastman Kodak Co. 2000-2004
OriginalFilename : DcFsSvc.exe

#:13 [alg.exe]
ModuleName : C:\WINDOWS\System32\alg.exe
Command Line : C:\WINDOWS\System32\alg.exe
ProcessID : 1932
ThreadCreationTime : 4-25-2005 1:04:31 PM
BasePriority : Normal
FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 5.1.2600.2180
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Application Layer Gateway Service
InternalName : ALG.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : ALG.exe

#:14 [explorer.exe]
ModuleName : C:\WINDOWS\Explorer.EXE
Command Line : C:\WINDOWS\Explorer.EXE
ProcessID : 728
ThreadCreationTime : 4-25-2005 1:04:44 PM
BasePriority : Normal
FileVersion : 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 6.00.2900.2180
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Windows Explorer
InternalName : explorer
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : EXPLORER.EXE
Warning! ClearSearch Object found in memory(C:\Program Files\84hjm1oq\84hjm1oq.DLL)

ClearSearch Object Recognized!
Type : Process
Data : 84hjm1oq.DLL
Category : Data Miner
Comment :
Object : C:\Program Files\84hjm1oq\
FileVersion : 1.83.0.5
ProductVersion : 1.83.0.5
InternalName : Grip.dll
OriginalFilename : Grip.dll
Comments : Build 83 E


#:15 [pccntmon.exe]
ModuleName : C:\Program Files\Trend Micro\OfficeScan Client\pccntmon.exe
Command Line : "C:\Program Files\Trend Micro\OfficeScan Client\pccntmon.exe" -HideWindow
ProcessID : 1588
ThreadCreationTime : 4-25-2005 1:04:51 PM
BasePriority : Normal
FileVersion : 5.58.0.1063
ProductVersion : 5.58
ProductName : Trend Micro OfficeScan
CompanyName : Trend Micro Inc.
FileDescription : I/O Monitor
InternalName : PCCNTMON
LegalCopyright : Copyright © 1999-2004 Trend Micro Incorporated. All rights reserved.
LegalTrademarks : Copyright © Trend Micro, Inc.
OriginalFilename : PCCNTMON.EXE
Warning! ClearSearch Object found in memory(C:\Program Files\84hjm1oq\84hjm1oq.DLL)

ClearSearch Object Recognized!
Type : Process
Data : 84hjm1oq.DLL
Category : Data Miner
Comment :
Object : C:\Program Files\84hjm1oq\
FileVersion : 1.83.0.5
ProductVersion : 1.83.0.5
InternalName : Grip.dll
OriginalFilename : Grip.dll
Comments : Build 83 E

Warning! "C:\Program Files\Trend Micro\OfficeScan Client\pccntmon.exe"Process could not be terminated!

#:16 [qttask.exe]
ModuleName : C:\Program Files\QuickTime\qttask.exe
Command Line : "C:\Program Files\QuickTime\qttask.exe" -atboottime
ProcessID : 720
ThreadCreationTime : 4-25-2005 1:04:51 PM
BasePriority : Normal
FileVersion : 6.4
ProductVersion : QuickTime 6.4
ProductName : QuickTime
CompanyName : Apple Computer, Inc.
InternalName : QuickTime Task
LegalCopyright : © Apple Computer, Inc. 2001-2003
OriginalFilename : QTTask.exe
Warning! ClearSearch Object found in memory(C:\Program Files\84hjm1oq\84hjm1oq.DLL)

ClearSearch Object Recognized!
Type : Process
Data : 84hjm1oq.DLL
Category : Data Miner
Comment :
Object : C:\Program Files\84hjm1oq\
FileVersion : 1.83.0.5
ProductVersion : 1.83.0.5
InternalName : Grip.dll
OriginalFilename : Grip.dll
Comments : Build 83 E

"C:\Program Files\QuickTime\qttask.exe"Process terminated successfully

#:17 [igfxtray.exe]
ModuleName : C:\WINDOWS\System32\igfxtray.exe
Command Line : "C:\WINDOWS\System32\igfxtray.exe"
ProcessID : 1700
ThreadCreationTime : 4-25-2005 1:04:51 PM
BasePriority : Normal
FileVersion : 3.0.0.3889
ProductVersion : 7.0.0.3889
ProductName : Intel® Common User Interface
CompanyName : Intel Corporation
FileDescription : igfxTray Module
InternalName : IGFXTRAY
LegalCopyright : Copyright 1999-2002, Intel Corporation
OriginalFilename : IGFXTRAY.EXE
Warning! ClearSearch Object found in memory(C:\Program Files\84hjm1oq\84hjm1oq.DLL)

ClearSearch Object Recognized!
Type : Process
Data : 84hjm1oq.DLL
Category : Data Miner
Comment :
Object : C:\Program Files\84hjm1oq\
FileVersion : 1.83.0.5
ProductVersion : 1.83.0.5
InternalName : Grip.dll
OriginalFilename : Grip.dll
Comments : Build 83 E

"C:\WINDOWS\System32\igfxtray.exe"Process terminated successfully

#:18 [hkcmd.exe]
ModuleName : C:\WINDOWS\System32\hkcmd.exe
Command Line : "C:\WINDOWS\System32\hkcmd.exe"
ProcessID : 1712
ThreadCreationTime : 4-25-2005 1:04:51 PM
BasePriority : Normal
FileVersion : 3.0.0.3889
ProductVersion : 7.0.0.3889
ProductName : Intel® Common User Interface
CompanyName : Intel Corporation
FileDescription : hkcmd Module
InternalName : HKCMD
LegalCopyright : Copyright 1999-2002, Intel Corporation
OriginalFilename : HKCMD.EXE
Warning! ClearSearch Object found in memory(C:\Program Files\84hjm1oq\84hjm1oq.DLL)

ClearSearch Object Recognized!
Type : Process
Data : 84hjm1oq.DLL
Category : Data Miner
Comment :
Object : C:\Program Files\84hjm1oq\
FileVersion : 1.83.0.5
ProductVersion : 1.83.0.5
InternalName : Grip.dll
OriginalFilename : Grip.dll
Comments : Build 83 E

"C:\WINDOWS\System32\hkcmd.exe"Process terminated successfully

#:19 [alcxmntr.exe]
ModuleName : C:\WINDOWS\ALCXMNTR.EXE
Command Line : "C:\WINDOWS\ALCXMNTR.EXE"
ProcessID : 1568
ThreadCreationTime : 4-25-2005 1:04:51 PM
BasePriority : Normal
FileVersion : 1.5
ProductVersion : 1.5
ProductName : Realtek Audio - Event Monitor
CompanyName : Realtek Semiconductor Corp.
FileDescription : Realtek Audio - Event Monitor
InternalName : Alcxmntr
LegalCopyright : Copyright © 2004 Realtek Semiconductor Corp.
OriginalFilename : Alcxmntr.exe
Warning! ClearSearch Object found in memory(C:\Program Files\84hjm1oq\84hjm1oq.DLL)

ClearSearch Object Recognized!
Type : Process
Data : 84hjm1oq.DLL
Category : Data Miner
Comment :
Object : C:\Program Files\84hjm1oq\
FileVersion : 1.83.0.5
ProductVersion : 1.83.0.5
InternalName : Grip.dll
OriginalFilename : Grip.dll
Comments : Build 83 E

"C:\WINDOWS\ALCXMNTR.EXE"Process terminated successfully

#:20 [realsched.exe]
ModuleName : C:\Program Files\Common Files\Real\Update_OB\realsched.exe
Command Line : "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
ProcessID : 1792
ThreadCreationTime : 4-25-2005 1:04:52 PM
BasePriority : Normal
FileVersion : 0.1.0.3034
ProductVersion : 0.1.0.3034
ProductName : RealPlayer (32-bit)
CompanyName : RealNetworks, Inc.
FileDescription : RealNetworks Scheduler
InternalName : schedapp
LegalCopyright : Copyright © RealNetworks, Inc. 1995-2004
LegalTrademarks : RealAudio™ is a trademark of RealNetworks, Inc.
OriginalFilename : realsched.exe
Warning! ClearSearch Object found in memory(C:\Program Files\84hjm1oq\84hjm1oq.DLL)

ClearSearch Object Recognized!
Type : Process
Data : 84hjm1oq.DLL
Category : Data Miner
Comment :
Object : C:\Program Files\84hjm1oq\
FileVersion : 1.83.0.5
ProductVersion : 1.83.0.5
InternalName : Grip.dll
OriginalFilename : Grip.dll
Comments : Build 83 E

"C:\Program Files\Common Files\Real\Update_OB\realsched.exe"Process terminated successfully

#:21 [tmlisten.exe]
ModuleName : C:\Program Files\Trend Micro\OfficeScan Client\tmlisten.exe
Command Line : "C:\Program Files\Trend Micro\OfficeScan Client\tmlisten.exe"
ProcessID : 1844
ThreadCreationTime : 4-25-2005 1:04:52 PM
BasePriority : Normal


#:22 [84hjm1oq.exe]
ModuleName : C:\Program Files\84hjm1oq\84hjm1oq.exe
Command Line : "C:\Program Files\84hjm1oq\84hjm1oq.exe"
ProcessID : 1996
ThreadCreationTime : 4-25-2005 1:04:54 PM
BasePriority : Normal
FileVersion : 1, 13, 0, 5
ProductVersion : 1, 13, 0, 5
Warning! ClearSearch Object found in memory(C:\Program Files\84hjm1oq\84hjm1oq.exe)

ClearSearch Object Recognized!
Type : Process
Data : 84hjm1oq.exe
Category : Data Miner
Comment :
Object : C:\Program Files\84hjm1oq\
FileVersion : 1, 13, 0, 5
ProductVersion : 1, 13, 0, 5

"C:\Program Files\84hjm1oq\84hjm1oq.exe"Process terminated successfully
"C:\Program Files\84hjm1oq\84hjm1oq.exe"Process terminated successfully

#:23 [ntrtscan.exe]
ModuleName : C:\Program Files\Trend Micro\OfficeScan Client\ntrtscan.exe
Command Line : "C:\Program Files\Trend Micro\OfficeScan Client\ntrtscan.exe"
ProcessID : 168
ThreadCreationTime : 4-25-2005 1:04:54 PM
BasePriority : Normal
FileVersion : 5.58.0.1063
ProductVersion : 5.58
ProductName : Trend Micro OfficeScan
CompanyName : Trend Micro Inc.
LegalCopyright : Copyright © 1999-2004 Trend Micro Incorporated. All rights reserved.
LegalTrademarks : Copyright © Trend Micro, Inc.

#:24 [easyshare.exe]
ModuleName : C:\Program Files\Kodak\Kodak EasyShare software\bin\EasyShare.exe
Command Line : "C:\Program Files\Kodak\Kodak EasyShare software\bin\EasyShare.exe" -h
ProcessID : 216
ThreadCreationTime : 4-25-2005 1:04:54 PM
BasePriority : Normal
FileVersion : 5, 0, 4, 128
ProductVersion : 4, 0, 2, 134
ProductName : Kodak EasyShare software
CompanyName : Eastman Kodak Company
FileDescription : Kodak EasyShare software
InternalName : EasyShare
LegalCopyright : Copyright © Eastman Kodak Company 2002
LegalTrademarks : EasyShare
OriginalFilename : EasyShare.exe
Warning! ClearSearch Object found in memory(C:\Program Files\84hjm1oq\84hjm1oq.DLL)

ClearSearch Object Recognized!
Type : Process
Data : 84hjm1oq.DLL
Category : Data Miner
Comment :
Object : C:\Program Files\84hjm1oq\
FileVersion : 1.83.0.5
ProductVersion : 1.83.0.5
InternalName : Grip.dll
OriginalFilename : Grip.dll
Comments : Build 83 E

"C:\Program Files\Kodak\Kodak EasyShare software\bin\EasyShare.exe"Process terminated successfully

#:25 [kodak software updater.exe]
ModuleName : C:\Program Files\Kodak\KODAK Software Updater\7288971\Program\Kodak Software Updater.exe
Command Line : "C:\Program Files\Kodak\KODAK Software Updater\7288971\Program\Kodak Software Updater.exe"
ProcessID : 232
ThreadCreationTime : 4-25-2005 1:04:56 PM
BasePriority : Normal

Warning! ClearSearch Object found in memory(C:\Program Files\84hjm1oq\84hjm1oq.DLL)

ClearSearch Object Recognized!
Type : Process
Data : 84hjm1oq.DLL
Category : Data Miner
Comment :
Object : C:\Program Files\84hjm1oq\
FileVersion : 1.83.0.5
ProductVersion : 1.83.0.5
InternalName : Grip.dll
OriginalFilename : Grip.dll
Comments : Build 83 E


#:26 [89364919.exe]
ModuleName : C:\Program Files\84hjm1oq\89364919.exe
Command Line : a b
ProcessID : 1504
ThreadCreationTime : 4-25-2005 1:05:11 PM
BasePriority : Normal

Warning! ClearSearch Object found in memory(C:\Program Files\84hjm1oq\89364919.exe)

ClearSearch Object Recognized!
Type : Process
Data : 89364919.exe
Category : Data Miner
Comment :
Object : C:\Program Files\84hjm1oq\


"C:\Program Files\84hjm1oq\89364919.exe"Process terminated successfully
"C:\Program Files\84hjm1oq\89364919.exe"Process terminated successfully

#:27 [ofcdog.exe]
ModuleName : C:\Program Files\Trend Micro\OfficeScan Client\ofcdog.exe
Command Line : "C:\Program Files\Trend Micro\OfficeScan Client\ofcdog.exe"
ProcessID : 2060
ThreadCreationTime : 4-25-2005 1:05:49 PM
BasePriority : Normal


#:28 [pccntupd.exe]
ModuleName : C:\Program Files\Trend Micro\OfficeScan Client\pccntupd.exe
Command Line : "C:\Program Files\Trend Micro\OfficeScan Client\pccntupd.exe"
ProcessID : 2204
ThreadCreationTime : 4-25-2005 1:05:57 PM
BasePriority : Normal


#:29 [firefox.exe]
ModuleName : C:\Program Files\Mozilla Firefox\firefox.exe
Command Line : "C:\Program Files\Mozilla Firefox\firefox.exe"
ProcessID : 2564
ThreadCreationTime : 4-25-2005 1:06:57 PM
BasePriority : Normal

Warning! ClearSearch Object found in memory(C:\Program Files\84hjm1oq\84hjm1oq.DLL)

ClearSearch Object Recognized!
Type : Process
Data : 84hjm1oq.DLL
Category : Data Miner
Comment :
Object : C:\Program Files\84hjm1oq\
FileVersion : 1.83.0.5
ProductVersion : 1.83.0.5
InternalName : Grip.dll
OriginalFilename : Grip.dll
Comments : Build 83 E


#:30 [wfcrun32.exe]
ModuleName : C:\Program Files\Citrix\ICA Client\Wfcrun32.exe
Command Line : "C:\Program Files\Citrix\ICA Client\Wfcrun32.exe" "LAN"
ProcessID : 272
ThreadCreationTime : 4-25-2005 1:31:53 PM
BasePriority : Normal
FileVersion : 6.01.967
ProductVersion : 6.01
ProductName : Citrix ICA Client
CompanyName : Citrix Systems, Inc.
FileDescription : Remote Application Runtime (Win32 version)
InternalName : WFCRUN32
LegalCopyright : Copyright © 1990-2001 Citrix Systems, Inc.
OriginalFilename : WFCRUN32.EXE
Warning! ClearSearch Object found in memory(C:\Program Files\84hjm1oq\84hjm1oq.DLL)

ClearSearch Object Recognized!
Type : Process
Data : 84hjm1oq.DLL
Category : Data Miner
Comment :
Object : C:\Program Files\84hjm1oq\
FileVersion : 1.83.0.5
ProductVersion : 1.83.0.5
InternalName : Grip.dll
OriginalFilename : Grip.dll
Comments : Build 83 E

"C:\Program Files\Citrix\ICA Client\Wfcrun32.exe"Process terminated successfully

#:31 [wfica32.exe]
ModuleName : C:\PROGRA~1\Citrix\ICACLI~1\WFICA32.EXE
Command Line : C:\PROGRA~1\Citrix\ICACLI~1\WFICA32.EXE MFService001302A0998
ProcessID : 268
ThreadCreationTime : 4-25-2005 1:31:53 PM
BasePriority : Normal
FileVersion : 6.01.967
ProductVersion : 6.01
ProductName : Citrix ICA Client
CompanyName : Citrix Systems, Inc.
FileDescription : Citrix ICA Client Engine
InternalName : WFICA32
LegalCopyright : Copyright © 1990-2001 Citrix Systems, Inc.
OriginalFilename : WFICA32.EXE
Warning! ClearSearch Object found in memory(C:\Program Files\84hjm1oq\84hjm1oq.DLL)

ClearSearch Object Recognized!
Type : Process
Data : 84hjm1oq.DLL
Category : Data Miner
Comment :
Object : C:\Program Files\84hjm1oq\
FileVersion : 1.83.0.5
ProductVersion : 1.83.0.5
InternalName : Grip.dll
OriginalFilename : Grip.dll
Comments : Build 83 E

"C:\PROGRA~1\Citrix\ICACLI~1\WFICA32.EXE"Process terminated successfully

#:32 [ad-aware.exe]
ModuleName : C:\Program Files\Lavasoft\Ad-Aware SE Personal\Ad-Aware.exe
Command Line : "C:\Program Files\Lavasoft\Ad-Aware SE Personal\Ad-Aware.exe"
ProcessID : 1472
ThreadCreationTime : 4-25-2005 1:38:17 PM
BasePriority : Normal
FileVersion : 6.2.0.206
ProductVersion : VI.Second Edition
ProductName : Lavasoft Ad-Aware SE
CompanyName : Lavasoft Sweden
FileDescription : Ad-Aware SE Core application
InternalName : Ad-Aware.exe
LegalCopyright : Copyright © Lavasoft Sweden
OriginalFilename : Ad-Aware.exe
Comments : All Rights Reserved
Warning! ClearSearch Object found in memory(C:\Program Files\84hjm1oq\84hjm1oq.DLL)

ClearSearch Object Recognized!
Type : Process
Data : 84hjm1oq.DLL
Category : Data Miner
Comment :
Object : C:\Program Files\84hjm1oq\
FileVersion : 1.83.0.5
ProductVersion : 1.83.0.5
InternalName : Grip.dll
OriginalFilename : Grip.dll
Comments : Build 83 E


Memory scan result:
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
New critical objects: 2
Objects found so far: 15


Started registry scan
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»

AdRotator Object Recognized!
Type : Regkey
Data :
Category : Malware
Comment :
Rootkey : HKEY_CLASSES_ROOT
Object : interface\{1cfb8b32-4053-4144-af6f-1540eec7f101}

AdRotator Object Recognized!
Type : RegValue
Data :
Category : Malware
Comment :
Rootkey : HKEY_CLASSES_ROOT
Object : interface\{1cfb8b32-4053-4144-af6f-1540eec7f101}
Value :

Elitum.ElitebarBHO Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment :
Rootkey : HKEY_CLASSES_ROOT
Object : interface\{a9b28ef6-abf3-463b-a3d8-4d0d0badfadc}

Elitum.ElitebarBHO Object Recognized!
Type : RegValue
Data :
Category : Data Miner
Comment :
Rootkey : HKEY_CLASSES_ROOT
Object : interface\{a9b28ef6-abf3-463b-a3d8-4d0d0badfadc}
Value :

Elitum.ElitebarBHO Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment :
Rootkey : HKEY_CLASSES_ROOT
Object : interface\{dbf33e89-1784-42ac-ade4-a428f56550a3}

Elitum.ElitebarBHO Object Recognized!
Type : RegValue
Data :
Category : Data Miner
Comment :
Rootkey : HKEY_CLASSES_ROOT
Object : interface\{dbf33e89-1784-42ac-ade4-a428f56550a3}
Value :

Elitum.ElitebarBHO Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment :
Rootkey : HKEY_CLASSES_ROOT
Object : typelib\{ca9fc31a-6f35-4493-b629-e64bd6170a17}\1.0

Elitum.ElitebarBHO Object Recognized!
Type : RegValue
Data :
Category : Data Miner
Comment :
Rootkey : HKEY_CLASSES_ROOT
Object : typelib\{ca9fc31a-6f35-4493-b629-e64bd6170a17}\1.0
Value :

Elitum.ElitebarBHO Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment :
Rootkey : HKEY_CLASSES_ROOT
Object : typelib\{ca9fc31a-6f35-4493-b629-e64bd6170a17}

Elitum.ElitebarBHO Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment :
Rootkey : HKEY_CLASSES_ROOT
Object : clsid\{0a1d22c3-37be-470c-9c29-e3074ee0574b}

PeopleOnPage Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment :
Rootkey : HKEY_USERS
Object : S-1-5-21-1720583248-1557856872-312552118-1419\software\apropos

Ebates MoneyMaker Object Recognized!
Type : RegValue
Data :
Category : Data Miner
Comment : "AC"
Rootkey : HKEY_USERS
Object : S-1-5-21-1720583248-1557856872-312552118-1419\software\lq
Value : AC

Elitum.ElitebarBHO Object Recognized!
Type : RegValue
Data :
Category : Data Miner
Comment : "{825CF5BD-8862-4430-B771-0C15C5CA8DEF}"
Rootkey : HKEY_USERS
Object : S-1-5-21-1720583248-1557856872-312552118-1419\software\microsoft\internet explorer\toolbar\webbrowser
Value : {825CF5BD-8862-4430-B771-0C15C5CA8DEF}

Favoriteman Object Recognized!
Type : RegValue
Data :
Category : Malware
Comment : "Counter"
Rootkey : HKEY_USERS
Object : S-1-5-21-1720583248-1557856872-312552118-1419\software\microsoft\windows
Value : Counter

Favoriteman Object Recognized!
Type : RegValue
Data :
Category : Malware
Comment : "Server"
Rootkey : HKEY_USERS
Object : S-1-5-21-1720583248-1557856872-312552118-1419\software\microsoft\windows
Value : Server

Favoriteman Object Recognized!
Type : RegValue
Data :
Category : Malware
Comment : "Object"
Rootkey : HKEY_USERS
Object : S-1-5-21-1720583248-1557856872-312552118-1419\software\microsoft\windows
Value : Object

Elitum.ElitebarBHO Object Recognized!
Type : RegValue
Data :
Category : Data Miner
Comment : "{28CAEFF3-0F18-4036-B504-51D73BD81ABC}"
Rootkey : HKEY_LOCAL_MACHINE
Object : software\microsoft\windows\currentversion\explorer\browser helper objects
Value : {28CAEFF3-0F18-4036-B504-51D73BD81ABC}

Registry Scan result:
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
New critical objects: 17
Objects found so far: 32


Started deep registry scan
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
Possible Browser Hijack attempt : S-1-5-21-1720583248-1557856872-312552118-1419\Software\Microsoft\Internet Explorer\MainSearch Pagesearchmiracle.com

Possible Browser Hijack attempt Object Recognized!
Type : RegData
Data : "http://searchmiracle.com/sp.php"
Category : Data Miner
Comment : Possible Browser Hijack attempt
Rootkey : HKEY_USERS
Object : S-1-5-21-1720583248-1557856872-312552118-1419\Software\Microsoft\Internet Explorer\Main
Value : Search Page
Data : "http://searchmiracle.com/sp.php"
Possible Browser Hijack attempt : S-1-5-21-1720583248-1557856872-312552118-1419\Software\Microsoft\Internet ExplorerSearchURLsearchmiracle.com

Possible Browser Hijack attempt Object Recognized!
Type : RegData
Data : "http://searchmiracle.com/sp.php"
Category : Data Miner
Comment : Possible Browser Hijack attempt
Rootkey : HKEY_USERS
Object : S-1-5-21-1720583248-1557856872-312552118-1419\Software\Microsoft\Internet Explorer
Value : SearchURL
Data : "http://searchmiracle.com/sp.php"

ClearSearch Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment : C:\Program Files\84hjm1oq\84hjm1oq.dll
Rootkey : HKEY_CLASSES_ROOT
Object : CLSID\{022CF774-8F65-4A73-9B52-75898E78D31D}

ClearSearch Object Recognized!
Type : File
Data : 84hjm1oq.dll
Category : Data Miner
Comment :
Object : c:\program files\84hjm1oq\
FileVersion : 1.83.0.5
ProductVersion : 1.83.0.5
InternalName : Grip.dll
OriginalFilename : Grip.dll
Comments : Build 83 E


ClearSearch Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment : C:\Program Files\84hjm1oq\84hjm1oq.dll
Rootkey : HKEY_CLASSES_ROOT
Object : CLSID\{0275BDB3-D8AA-49F5-B0EA-18E4A7D4F989}

ClearSearch Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment : C:\Program Files\84hjm1oq\84hjm1oq.dll
Rootkey : HKEY_CLASSES_ROOT
Object : CLSID\{053774E6-DDF2-4FE8-A282-5B4289A81E0F}

ClearSearch Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment : C:\Program Files\84hjm1oq\84hjm1oq.dll
Rootkey : HKEY_CLASSES_ROOT
Object : CLSID\{056434CF-3192-4203-83CF-BD14EF798CAC}

ClearSearch Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment : C:\Program Files\84hjm1oq\84hjm1oq.dll
Rootkey : HKEY_CLASSES_ROOT
Object : CLSID\{065DAF9C-80DA-4C0F-A1B8-E22D44E7DD83}

ClearSearch Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment : C:\Program Files\84hjm1oq\84hjm1oq.dll
Rootkey : HKEY_CLASSES_ROOT
Object : CLSID\{07BCBD35-4823-496D-8C44-86A16E722056}

ClearSearch Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment : C:\Program Files\84hjm1oq\84hjm1oq.dll
Rootkey : HKEY_CLASSES_ROOT
Object : CLSID\{0B98BD01-8282-43AA-B525-C087FDDA4DE1}

ClearSearch Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment : C:\Program Files\84hjm1oq\84hjm1oq.dll
Rootkey : HKEY_CLASSES_ROOT
Object : CLSID\{0F193C05-F46B-4C24-9E02-57D2BCBC4ED5}

ClearSearch Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment : C:\Program Files\84hjm1oq\84hjm1oq.dll
Rootkey : HKEY_CLASSES_ROOT
Object : CLSID\{1032120B-CAE8-4BC8-AA06-CD96055D3718}

ClearSearch Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment : C:\Program Files\84hjm1oq\84hjm1oq.dll
Rootkey : HKEY_CLASSES_ROOT
Object : CLSID\{1203B831-A395-4AD6-B322-246DAA5043D8}

ClearSearch Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment : C:\Program Files\84hjm1oq\84hjm1oq.dll
Rootkey : HKEY_CLASSES_ROOT
Object : CLSID\{1255F911-6403-44CA-97B9-A128FA165346}

ClearSearch Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment : C:\Program Files\84hjm1oq\84hjm1oq.dll
Rootkey : HKEY_CLASSES_ROOT
Object : CLSID\{148C2E33-CDFF-46A8-ADAE-A3E86B4AAC96}

ClearSearch Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment : C:\Program Files\84hjm1oq\84hjm1oq.dll
Rootkey : HKEY_CLASSES_ROOT
Object : CLSID\{200ADA76-8B38-4E61-B21F-CA834F952BA0}

ClearSearch Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment : C:\Program Files\84hjm1oq\84hjm1oq.dll
Rootkey : HKEY_CLASSES_ROOT
Object : CLSID\{2481D29E-A64B-4B87-9EA6-3FE2C6406C5E}

ClearSearch Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment : C:\Program Files\84hjm1oq\84hjm1oq.dll
Rootkey : HKEY_CLASSES_ROOT
Object : CLSID\{251B8B81-A70A-401E-9910-AE3F16C9525D}

ClearSearch Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment : C:\Program Files\84hjm1oq\84hjm1oq.dll
Rootkey : HKEY_CLASSES_ROOT
Object : CLSID\{2AA93495-1426-4BFD-836E-3995C5F28311}

ClearSearch Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment : C:\Program Files\84hjm1oq\84hjm1oq.dll
Rootkey : HKEY_CLASSES_ROOT
Object : CLSID\{2D0EEA51-3B28-4C7B-943C-A20237CCD1B7}

ClearSearch Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment : C:\Program Files\84hjm1oq\84hjm1oq.dll
Rootkey : HKEY_CLASSES_ROOT
Object : CLSID\{2EF25180-F159-46F2-A983-610159DC27DF}

ClearSearch Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment : C:\Program Files\84hjm1oq\84hjm1oq.dll
Rootkey : HKEY_CLASSES_ROOT
Object : CLSID\{2F75A37C-13A2-4575-B6C0-CE224A447B1B}

ClearSearch Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment : C:\Program Files\84hjm1oq\84hjm1oq.dll
Rootkey : HKEY_CLASSES_ROOT
Object : CLSID\{31CA3CC8-E787-41AE-87FB-BFFC67095FA9}

ClearSearch Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment : C:\Program Files\84hjm1oq\84hjm1oq.dll
Rootkey : HKEY_CLASSES_ROOT
Object : CLSID\{34EBA5AC-C5A0-442E-A15F-6D9BA1106BF6}

ClearSearch Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment : C:\Program Files\84hjm1oq\84hjm1oq.dll
Rootkey : HKEY_CLASSES_ROOT
Object : CLSID\{3BEDAC46-D28D-41FC-AE0A-7BD624D214E9}

ClearSearch Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment : C:\Program Files\84hjm1oq\84hjm1oq.dll
Rootkey : HKEY_CLASSES_ROOT
Object : CLSID\{423F833C-8696-48A4-82D3-F6ED037DE439}

ClearSearch Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment : C:\Program Files\84hjm1oq\84hjm1oq.dll
Rootkey : HKEY_CLASSES_ROOT
Object : CLSID\{460C32D9-8915-4B58-98C5-58BB5742E567}

ClearSearch Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment : C:\Program Files\84hjm1oq\84hjm1oq.dll
Rootkey : HKEY_CLASSES_ROOT
Object : CLSID\{5457DD25-B3D9-4963-A9C8-19EAD64F2FA0}

ClearSearch Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment : C:\Program Files\84hjm1oq\84hjm1oq.dll
Rootkey : HKEY_CLASSES_ROOT
Object : CLSID\{5A329E52-8DD2-4D7C-99AF-EDFC074FB62C}

ClearSearch Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment : C:\Program Files\84hjm1oq\84hjm1oq.dll
Rootkey : HKEY_CLASSES_ROOT
Object : CLSID\{5DF4B08F-1493-4E07-B9FD-EDDA69AF2F2D}

ClearSearch Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment : C:\Program Files\84hjm1oq\84hjm1oq.dll
Rootkey : HKEY_CLASSES_ROOT
Object : CLSID\{5F0C4815-D864-4337-9BCB-BAFB854972CC}

ClearSearch Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment : C:\Program Files\84hjm1oq\84hjm1oq.dll
Rootkey : HKEY_CLASSES_ROOT
Object : CLSID\{5F7F9DD4-DEA3-4987-91B3-0B26E7015F86}

ClearSearch Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment : C:\Program Files\84hjm1oq\84hjm1oq.dll
Rootkey : HKEY_CLASSES_ROOT
Object : CLSID\{60F4039B-3CCA-4440-A19F-B2618BBD4E0C}

ClearSearch Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment : C:\Program Files\84hjm1oq\84hjm1oq.dll
Rootkey : HKEY_CLASSES_ROOT
Object : CLSID\{61993B37-5603-4E3E-B920-5FCF04F7B176}

ClearSearch Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment : C:\Program Files\84hjm1oq\84hjm1oq.dll
Rootkey : HKEY_CLASSES_ROOT
Object : CLSID\{61A6143A-0D0F-4A72-BC26-F9FAEC886B18}

ClearSearch Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment : C:\Program Files\84hjm1oq\84hjm1oq.dll
Rootkey : HKEY_CLASSES_ROOT
Object : CLSID\{68C028FC-9C2F-4588-9B86-6AE1DEC798E2}

ClearSearch Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment : C:\Program Files\84hjm1oq\84hjm1oq.dll
Rootkey : HKEY_CLASSES_ROOT
Object : CLSID\{6FA292FB-2907-456F-A1C6-139B5F5C1820}

ClearSearch Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment : C:\Program Files\84hjm1oq\84hjm1oq.dll
Rootkey : HKEY_CLASSES_ROOT
Object : CLSID\{72028FD1-F11F-4CE7-B47F-80078F3EFF96}

ClearSearch Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment : C:\Program Files\84hjm1oq\84hjm1oq.dll
Rootkey : HKEY_CLASSES_ROOT
Object : CLSID\{72431A11-6AD9-4DDA-8F6F-F017C3E05326}

ClearSearch Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment : C:\Program Files\84hjm1oq\84hjm1oq.dll
Rootkey : HKEY_CLASSES_ROOT
Object : CLSID\{731F4D97-BC07-43AA-8FC3-6C8F1347EAE1}

ClearSearch Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment : C:\Program Files\84hjm1oq\84hjm1oq.dll
Rootkey : HKEY_CLASSES_ROOT
Object : CLSID\{86D7715E-7275-4F3A-A336-3E5B638D0832}

ClearSearch Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment : C:\Program Files\84hjm1oq\84hjm1oq.dll
Rootkey : HKEY_CLASSES_ROOT
Object : CLSID\{8A9FA2D2-4C58-417C-A285-D6470F064761}

ClearSearch Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment : C:\Program Files\84hjm1oq\84hjm1oq.dll
Rootkey : HKEY_CLASSES_ROOT
Object : CLSID\{92D2D76F-BD0E-42A1-8B88-0333BF3DB196}

ClearSearch Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment : C:\Program Files\84hjm1oq\84hjm1oq.dll
Rootkey : HKEY_CLASSES_ROOT
Object : CLSID\{92E16F2F-3547-4AB3-95B0-7600A8E83B99}

ClearSearch Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment : C:\Program Files\84hjm1oq\84hjm1oq.dll
Rootkey : HKEY_CLASSES_ROOT
Object : CLSID\{93DD81F7-4F21-413C-9F77-B76AA3C81274}

ClearSearch Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment : C:\Program Files\84hjm1oq\84hjm1oq.dll
Rootkey : HKEY_CLASSES_ROOT
Object : CLSID\{9AFE162C-442F-4C65-9CC6-F14508E3B947}

ClearSearch Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment : C:\Program Files\84hjm1oq\84hjm1oq.dll
Rootkey : HKEY_CLASSES_ROOT
Object : CLSID\{9CF68115-D568-4CE0-A72E-7B899DA855A4}

ClearSearch Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment : C:\Program Files\84hjm1oq\84hjm1oq.dll
Rootkey : HKEY_CLASSES_ROOT
Object : CLSID\{A1BF837D-8AFA-4C63-8E02-2EB5EFCF4C32}

ClearSearch Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment : C:\Program Files\84hjm1oq\84hjm1oq.dll
Rootkey : HKEY_CLASSES_ROOT
Object : CLSID\{A1DF6B1E-C2E2-4313-B4BE-0137761D0BEF}

ClearSearch Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment : C:\Program Files\84hjm1oq\84hjm1oq.dll
Rootkey : HKEY_CLASSES_ROOT
Object : CLSID\{AD98BEA1-89B1-4433-B8A6-FE6E400E3CCF}

ClearSearch Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment : C:\Program Files\84hjm1oq\84hjm1oq.dll
Rootkey : HKEY_CLASSES_ROOT
Object : CLSID\{AD9AE70E-B027-43BD-9618-0864398D1254}

ClearSearch Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment : C:\Program Files\84hjm1oq\84hjm1oq.dll
Rootkey : HKEY_CLASSES_ROOT
Object : CLSID\{B0DAE697-F28F-4143-8B4A-F1459989D38D}

ClearSearch Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment : C:\Program Files\84hjm1oq\84hjm1oq.dll
Rootkey : HKEY_CLASSES_ROOT
Object : CLSID\{B9C17B99-645F-4355-BEB2-2EED8ED4E6AF}

ClearSearch Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment : C:\Program Files\84hjm1oq\84hjm1oq.dll
Rootkey : HKEY_CLASSES_ROOT
Object : CLSID\{BD9D5A85-87F6-43D8-9A2A-3A1374FC7F9B}

ClearSearch Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment : C:\Program Files\84hjm1oq\84hjm1oq.dll
Rootkey : HKEY_CLASSES_ROOT
Object : CLSID\{C54A0161-4A65-47A5-9A89-70F24FC4DB3A}

ClearSearch Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment : C:\Program Files\84hjm1oq\84hjm1oq.dll
Rootkey : HKEY_CLASSES_ROOT
Object : CLSID\{C71F0D52-FC57-409A-BB3B-34E399EE687F}

ClearSearch Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment : C:\Program Files\84hjm1oq\84hjm1oq.dll
Rootkey : HKEY_CLASSES_ROOT
Object : CLSID\{C858A7CB-C18D-4C14-AE6A-E71398716A1C}

ClearSearch Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment : C:\Program Files\84hjm1oq\84hjm1oq.dll
Rootkey : HKEY_CLASSES_ROOT
Object : CLSID\{CC8FA8E6-0273-4DF9-BE27-AB0603A14E82}

ClearSearch Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment : C:\Program Files\84hjm1oq\84hjm1oq.dll
Rootkey : HKEY_CLASSES_ROOT
Object : CLSID\{D8F1C554-79E1-497B-9DA1-A104FF096F38}

ClearSearch Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment : C:\Program Files\84hjm1oq\84hjm1oq.dll
Rootkey : HKEY_CLASSES_ROOT
Object : CLSID\{DCA9F447-23A9-4F99-B40D-81C0EAF4ADBF}

ClearSearch Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment : C:\Program Files\84hjm1oq\84hjm1oq.dll
Rootkey : HKEY_CLASSES_ROOT
Object : CLSID\{E19B9F26-5E0F-4FA5-B8DE-42B2FD1ECE11}

ClearSearch Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment : C:\Program Files\84hjm1oq\84hjm1oq.dll
Rootkey : HKEY_CLASSES_ROOT
Object : CLSID\{EB284001-E360-4CCF-B5FF-79C529B336D4}

ClearSearch Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment : C:\Program Files\84hjm1oq\84hjm1oq.dll
Rootkey : HKEY_CLASSES_ROOT
Object : CLSID\{ED95BF55-5B1C-490E-94E8-194A99AA3ECE}

ClearSearch Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment : C:\Program Files\84hjm1oq\84hjm1oq.dll
Rootkey : HKEY_CLASSES_ROOT
Object : CLSID\{EE319F8F-4D8B-46FC-B949-C6A19D52CAA9}

ClearSearch Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment : C:\Program Files\84hjm1oq\84hjm1oq.dll
Rootkey : HKEY_CLASSES_ROOT
Object : CLSID\{FF4B04DD-71D2-4714-995C-6C3E15FEC8F0}

Clea
  • 0

#8
amf2880
Posted 25 April 2005 - 07:59 AM

amf2880

    Member

  • Topic Starter
  • Member
  • PipPip
  • 15 posts
2nd portion of the Ad-aware log file:


ClearSearch Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment : C:\Program Files\84hjm1oq\84hjm1oq.dll
Rootkey : HKEY_CLASSES_ROOT
Object : CLSID\{FFFEABD4-EBB2-4916-84A8-4A560FB964BC}

AdRotator Object Recognized!
Type : RegValue
Data :
Category : Malware
Comment : "ecdqmc"
Rootkey : HKEY_LOCAL_MACHINE
Object : Software\Microsoft\Windows\CurrentVersion\Run
Value : ecdqmc

AdRotator Object Recognized!
Type : File
Data : ecdqmc.exe
Category : Malware
Comment :
Object : c:\windows\system32\
FileVersion : 1, 0, 0, 1
ProductVersion : 1, 0, 0, 1
ProductName : localFilemove Application
FileDescription : localFilemove MFC Application
InternalName : localFilemove
LegalCopyright : Copyright © 2004
OriginalFilename : localFilemove.EXE


AdRotator Object Recognized!
Type : RegValue
Data :
Category : Malware
Comment : "rvtwuc"
Rootkey : HKEY_LOCAL_MACHINE
Object : Software\Microsoft\Windows\CurrentVersion\Run
Value : rvtwuc

AdRotator Object Recognized!
Type : File
Data : rvtwuc.exe
Category : Malware
Comment :
Object : c:\windows\system32\
FileVersion : 1, 0, 0, 1
ProductVersion : 1, 0, 0, 1
ProductName : localFilemove Application
FileDescription : localFilemove MFC Application
InternalName : localFilemove
LegalCopyright : Copyright © 2004
OriginalFilename : localFilemove.EXE


ClearSearch Object Recognized!
Type : RegValue
Data :
Category : Data Miner
Comment : "84hjm1oq"
Rootkey : HKEY_LOCAL_MACHINE
Object : Software\Microsoft\Windows\CurrentVersion\Run
Value : 84hjm1oq

ClearSearch Object Recognized!
Type : File
Data : 84hjm1oq.exe
Category : Data Miner
Comment :
Object : c:\program files\84hjm1oq\
FileVersion : 1, 13, 0, 5
ProductVersion : 1, 13, 0, 5


Deep registry scan result:
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
New critical objects: 68
Objects found so far: 104


Started Tracking Cookie scan
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»


Tracking Cookie Object Recognized!
Type : IECache Entry
Data : afeigel@revenue[2].txt
Category : Data Miner
Comment :
Value : C:\Documents and Settings\afiegel\Cookies\afeigel@revenue[2].txt

Tracking cookie scan result:
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
New critical objects: 1
Objects found so far: 105



Deep scanning and examining files (C:)
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»

Tracking Cookie Object Recognized!
Type : IECache Entry
Data : administrator@atdmt[2].txt
Category : Data Miner
Comment :
Value : C:\Documents and Settings\administrator.LONG\Cookies\administrator@atdmt[2].txt

Tracking Cookie Object Recognized!
Type : IECache Entry
Data : jeffc@atdmt[1].txt
Category : Data Miner
Comment :
Value : C:\Documents and Settings\jeffc\Cookies\jeffc@atdmt[1].txt

Tracking Cookie Object Recognized!
Type : IECache Entry
Data : [email protected][1].txt
Category : Data Miner
Comment :
Value : C:\Documents and Settings\wchlystun\Cookies\[email protected][1].txt

ClearSearch Object Recognized!
Type : File
Data : 30bixia4.DLL
Category : Data Miner
Comment :
Object : C:\Program Files\84hjm1oq\
FileVersion : 1, 7, 0, 2
ProductVersion : 1, 7, 0, 2
ProductName : ClearSearch LoaderUpdater
CompanyName : ClearSearch
FileDescription : LoaderUpdater
InternalName : LoaderUpdater
LegalCopyright : Copyright © 2004
OriginalFilename : LoaderUpdater.dll


ClearSearch Object Recognized!
Type : File
Data : 3zojf1n8.DLL
Category : Data Miner
Comment :
Object : C:\Program Files\84hjm1oq\
FileVersion : 1, 0, 83, 5
ProductVersion : 1, 0, 83, 5


ClearSearch Object Recognized!
Type : File
Data : 5glww6td.DLL
Category : Data Miner
Comment :
Object : C:\Program Files\84hjm1oq\
FileVersion : 1, 77, 0, 1
ProductVersion : 1, 77, 0, 1


ClearSearch Object Recognized!
Type : File
Data : 84hjm1oq1.dll
Category : Data Miner
Comment :
Object : C:\Program Files\84hjm1oq\84hjm1oq1\
FileVersion : 1, 77, 0, 2
ProductVersion : 1, 77, 0, 2


ClearSearch Object Recognized!
Type : File
Data : 84hjm1oq1.exe
Category : Data Miner
Comment :
Object : C:\Program Files\84hjm1oq\84hjm1oq1\
FileVersion : 1, 0, 0, 2
ProductVersion : 1, 0, 0, 2
LegalCopyright : Copyright © 2004


ClearSearch Object Recognized!
Type : File
Data : 89364919.exe
Category : Data Miner
Comment :
Object : C:\Program Files\84hjm1oq\



ClearSearch Object Recognized!
Type : File
Data : avxyg7jl.DLL
Category : Data Miner
Comment :
Object : C:\Program Files\84hjm1oq\



ClearSearch Object Recognized!
Type : File
Data : gs5k94gy.DLL
Category : Data Miner
Comment :
Object : C:\Program Files\84hjm1oq\
FileVersion : 1, 77, 0, 1
ProductVersion : 1, 77, 0, 1


ClearSearch Object Recognized!
Type : File
Data : ixw9qvuk.DLL
Category : Data Miner
Comment :
Object : C:\Program Files\84hjm1oq\
FileVersion : 1, 7, 0, 2
ProductVersion : 1, 7, 0, 2
ProductName : ClearSearch LoaderUpdater
CompanyName : ClearSearch
FileDescription : LoaderUpdater
InternalName : LoaderUpdater
LegalCopyright : Copyright © 2004
OriginalFilename : LoaderUpdater.dll


ClearSearch Object Recognized!
Type : File
Data : pvi9xrnj.DLL
Category : Data Miner
Comment :
Object : C:\Program Files\84hjm1oq\



ClearSearch Object Recognized!
Type : File
Data : q9delcu9.DLL
Category : Data Miner
Comment :
Object : C:\Program Files\84hjm1oq\
FileVersion : 1, 7, 0, 2
ProductVersion : 1, 7, 0, 2
ProductName : ClearSearch LoaderUpdater
CompanyName : ClearSearch
FileDescription : LoaderUpdater
InternalName : LoaderUpdater
LegalCopyright : Copyright © 2004
OriginalFilename : LoaderUpdater.dll


ClearSearch Object Recognized!
Type : File
Data : tv0kdwpm.DLL
Category : Data Miner
Comment :
Object : C:\Program Files\84hjm1oq\
FileVersion : 1, 77, 0, 1
ProductVersion : 1, 77, 0, 1


ClearSearch Object Recognized!
Type : File
Data : wemtmijm.DLL
Category : Data Miner
Comment :
Object : C:\Program Files\84hjm1oq\



SahAgent Object Recognized!
Type : File
Data : A0019289.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP188\
FileVersion : 2, 0, 0, 3
ProductVersion : 2, 0, 0, 3
ProductName : ShopAtHomeSelect SAHHtml
CompanyName : ShopAtHomeSelect
FileDescription : SAHHtml
InternalName : SAHHtml
LegalCopyright : Copyright © 2004
OriginalFilename : SahHtml_.exe
Comments : Search engine


SahAgent Object Recognized!
Type : File
Data : A0019293.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP188\
FileVersion : 2, 0, 0, 5
ProductVersion : 2, 0, 0, 5
ProductName : ShopAtHomeSelect SahAgent
CompanyName : ShopAtHomeSelect
FileDescription : SahAgent
InternalName : SahAgent
LegalCopyright : Copyright © 2004
OriginalFilename : SahAgent.exe
Comments : Rules, pop-up. without serach and incremental update


IBIS Toolbar Object Recognized!
Type : File
Data : A0019338.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP188\



180Solutions Object Recognized!
Type : File
Data : A0019360.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP188\



180Solutions Object Recognized!
Type : File
Data : A0019361.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP188\



180Solutions Object Recognized!
Type : File
Data : A0019362.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP188\
FileVersion : 5, 15, 0, 15
ProductVersion : 5, 15, 0, 15
ProductName : Search Assistant
CompanyName : 180solutions, Inc.
FileDescription : Search Assistant
LegalCopyright : Copyright © 2004, 180solutions Inc.


IBIS Toolbar Object Recognized!
Type : File
Data : A0019366.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP188\



IBIS Toolbar Object Recognized!
Type : File
Data : A0019368.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP188\



ClearSearch Object Recognized!
Type : File
Data : A0019372.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP188\
FileVersion : 1, 77, 0, 2
ProductVersion : 1, 77, 0, 2


IBIS Toolbar Object Recognized!
Type : File
Data : A0019389.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP188\



ClearSearch Object Recognized!
Type : File
Data : A0019397.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP189\
FileVersion : 1, 0, 0, 2
ProductVersion : 1, 0, 0, 2
LegalCopyright : Copyright © 2004


DealHelper Object Recognized!
Type : File
Data : A0019405.exe
Category : Malware
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP189\
FileVersion : 1, 0, 0, 1
ProductVersion : 1, 0, 0, 1
ProductName : version Application
FileDescription : version MFC Application
InternalName : version
LegalCopyright : Copyright © 2003
OriginalFilename : version.EXE


IBIS Toolbar Object Recognized!
Type : File
Data : A0019441.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP190\



ClearSearch Object Recognized!
Type : File
Data : A0019452.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP191\
FileVersion : 1, 77, 0, 2
ProductVersion : 1, 77, 0, 2


ClearSearch Object Recognized!
Type : File
Data : A0019453.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP191\
FileVersion : 1, 0, 0, 2
ProductVersion : 1, 0, 0, 2
LegalCopyright : Copyright © 2004


IBIS Toolbar Object Recognized!
Type : File
Data : A0019743.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP192\



IBIS Toolbar Object Recognized!
Type : File
Data : A0019745.cfg
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP192\



IBIS Toolbar Object Recognized!
Type : File
Data : A0019748.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP192\



IBIS Toolbar Object Recognized!
Type : File
Data : A0019767.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP193\



IBIS Toolbar Object Recognized!
Type : File
Data : A0019779.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP194\



ClearSearch Object Recognized!
Type : File
Data : A0019786.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP194\
FileVersion : 1, 77, 0, 2
ProductVersion : 1, 77, 0, 2


ClearSearch Object Recognized!
Type : File
Data : A0019787.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP194\
FileVersion : 1, 0, 0, 2
ProductVersion : 1, 0, 0, 2
LegalCopyright : Copyright © 2004


PeopleOnPage Object Recognized!
Type : File
Data : A0019798.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP194\



IBIS Toolbar Object Recognized!
Type : File
Data : A0019814.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP194\



IBIS Toolbar Object Recognized!
Type : File
Data : A0019948.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP196\



IBIS Toolbar Object Recognized!
Type : File
Data : A0019949.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP196\



IBIS Toolbar Object Recognized!
Type : File
Data : A0019952.cfg
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP196\



IBIS Toolbar Object Recognized!
Type : File
Data : A0019959.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP196\



IBIS Toolbar Object Recognized!
Type : File
Data : A0019960.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP196\



ClearSearch Object Recognized!
Type : File
Data : A0020095.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP196\
FileVersion : 1, 77, 0, 2
ProductVersion : 1, 77, 0, 2


ClearSearch Object Recognized!
Type : File
Data : A0020096.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP196\
FileVersion : 1, 0, 0, 2
ProductVersion : 1, 0, 0, 2
LegalCopyright : Copyright © 2004


ClearSearch Object Recognized!
Type : File
Data : A0020154.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP196\
FileVersion : 1, 77, 0, 2
ProductVersion : 1, 77, 0, 2


ClearSearch Object Recognized!
Type : File
Data : A0020155.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP196\
FileVersion : 1, 0, 0, 2
ProductVersion : 1, 0, 0, 2
LegalCopyright : Copyright © 2004


IBIS Toolbar Object Recognized!
Type : File
Data : A0020160.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP197\



ClearSearch Object Recognized!
Type : File
Data : A0023373.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP202\
FileVersion : 1, 77, 0, 2
ProductVersion : 1, 77, 0, 2


ClearSearch Object Recognized!
Type : File
Data : A0023374.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP202\
FileVersion : 1, 0, 0, 2
ProductVersion : 1, 0, 0, 2
LegalCopyright : Copyright © 2004


PeopleOnPage Object Recognized!
Type : File
Data : A0023445.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP202\



ClearSearch Object Recognized!
Type : File
Data : A0023453.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP202\
FileVersion : 1, 77, 0, 2
ProductVersion : 1, 77, 0, 2


ClearSearch Object Recognized!
Type : File
Data : A0023454.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP202\
FileVersion : 1, 0, 0, 2
ProductVersion : 1, 0, 0, 2
LegalCopyright : Copyright © 2004


ClearSearch Object Recognized!
Type : File
Data : A0023637.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP204\
FileVersion : 1, 77, 0, 2
ProductVersion : 1, 77, 0, 2


ClearSearch Object Recognized!
Type : File
Data : A0023638.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP204\
FileVersion : 1, 0, 0, 2
ProductVersion : 1, 0, 0, 2
LegalCopyright : Copyright © 2004


ClearSearch Object Recognized!
Type : File
Data : A0023692.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP205\
FileVersion : 1, 77, 0, 2
ProductVersion : 1, 77, 0, 2


ClearSearch Object Recognized!
Type : File
Data : A0023693.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP205\
FileVersion : 1, 0, 0, 2
ProductVersion : 1, 0, 0, 2
LegalCopyright : Copyright © 2004


IBIS Toolbar Object Recognized!
Type : File
Data : A0023700.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP205\



ClearSearch Object Recognized!
Type : File
Data : A0023736.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP206\
FileVersion : 1, 77, 0, 2
ProductVersion : 1, 77, 0, 2


ClearSearch Object Recognized!
Type : File
Data : A0023737.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP206\
FileVersion : 1, 0, 0, 2
ProductVersion : 1, 0, 0, 2
LegalCopyright : Copyright © 2004


ClearSearch Object Recognized!
Type : File
Data : A0023767.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP206\
FileVersion : 1, 77, 0, 2
ProductVersion : 1, 77, 0, 2


ClearSearch Object Recognized!
Type : File
Data : A0023768.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP206\
FileVersion : 1, 0, 0, 2
ProductVersion : 1, 0, 0, 2
LegalCopyright : Copyright © 2004


PeopleOnPage Object Recognized!
Type : File
Data : A0023807.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP206\



ClearSearch Object Recognized!
Type : File
Data : A0023815.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP206\
FileVersion : 1, 77, 0, 2
ProductVersion : 1, 77, 0, 2


ClearSearch Object Recognized!
Type : File
Data : A0023816.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP206\
FileVersion : 1, 0, 0, 2
ProductVersion : 1, 0, 0, 2
LegalCopyright : Copyright © 2004


ClearSearch Object Recognized!
Type : File
Data : A0023877.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP207\
FileVersion : 1, 77, 0, 2
ProductVersion : 1, 77, 0, 2


ClearSearch Object Recognized!
Type : File
Data : A0023878.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP207\
FileVersion : 1, 0, 0, 2
ProductVersion : 1, 0, 0, 2
LegalCopyright : Copyright © 2004


ClearSearch Object Recognized!
Type : File
Data : A0023937.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP208\
FileVersion : 1, 77, 0, 2
ProductVersion : 1, 77, 0, 2


ClearSearch Object Recognized!
Type : File
Data : A0023938.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP208\
FileVersion : 1, 0, 0, 2
ProductVersion : 1, 0, 0, 2
LegalCopyright : Copyright © 2004


ClearSearch Object Recognized!
Type : File
Data : A0024025.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP209\
FileVersion : 1, 77, 0, 2
ProductVersion : 1, 77, 0, 2


ClearSearch Object Recognized!
Type : File
Data : A0024026.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP209\
FileVersion : 1, 0, 0, 2
ProductVersion : 1, 0, 0, 2
LegalCopyright : Copyright © 2004


ClearSearch Object Recognized!
Type : File
Data : A0024098.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP210\
FileVersion : 1, 77, 0, 2
ProductVersion : 1, 77, 0, 2


ClearSearch Object Recognized!
Type : File
Data : A0024099.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP210\
FileVersion : 1, 0, 0, 2
ProductVersion : 1, 0, 0, 2
LegalCopyright : Copyright © 2004


ClearSearch Object Recognized!
Type : File
Data : A0024163.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP211\
FileVersion : 1, 77, 0, 2
ProductVersion : 1, 77, 0, 2


ClearSearch Object Recognized!
Type : File
Data : A0024164.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP211\
FileVersion : 1, 0, 0, 2
ProductVersion : 1, 0, 0, 2
LegalCopyright : Copyright © 2004


ClearSearch Object Recognized!
Type : File
Data : A0024222.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP211\
FileVersion : 1, 77, 0, 2
ProductVersion : 1, 77, 0, 2


ClearSearch Object Recognized!
Type : File
Data : A0024223.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP211\
FileVersion : 1, 0, 0, 2
ProductVersion : 1, 0, 0, 2
LegalCopyright : Copyright © 2004


PeopleOnPage Object Recognized!
Type : File
Data : A0024285.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP212\
FileVersion : 5.1.18
ProductVersion : 5.1.18
ProductName : ACE
FileDescription : ACE
InternalName : ACEDLL
OriginalFilename : ACE.DLL


ClearSearch Object Recognized!
Type : File
Data : A0024293.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP212\
FileVersion : 1, 77, 0, 2
ProductVersion : 1, 77, 0, 2


ClearSearch Object Recognized!
Type : File
Data : A0024294.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP212\
FileVersion : 1, 0, 0, 2
ProductVersion : 1, 0, 0, 2
LegalCopyright : Copyright © 2004


Adintelligence.AproposToolbar Object Recognized!
Type : File
Data : A0024329.exe
Category : Misc
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP213\



ClearSearch Object Recognized!
Type : File
Data : A0024363.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP213\
FileVersion : 1, 77, 0, 2
ProductVersion : 1, 77, 0, 2


ClearSearch Object Recognized!
Type : File
Data : A0024364.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP213\
FileVersion : 1, 0, 0, 2
ProductVersion : 1, 0, 0, 2
LegalCopyright : Copyright © 2004


ClearSearch Object Recognized!
Type : File
Data : A0024428.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP214\
FileVersion : 1, 77, 0, 2
ProductVersion : 1, 77, 0, 2


ClearSearch Object Recognized!
Type : File
Data : A0024429.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP214\
FileVersion : 1, 0, 0, 2
ProductVersion : 1, 0, 0, 2
LegalCopyright : Copyright © 2004


ClearSearch Object Recognized!
Type : File
Data : A0024477.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP215\
FileVersion : 1, 77, 0, 2
ProductVersion : 1, 77, 0, 2


ClearSearch Object Recognized!
Type : File
Data : A0024478.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP215\
FileVersion : 1, 0, 0, 2
ProductVersion : 1, 0, 0, 2
LegalCopyright : Copyright © 2004


ClearSearch Object Recognized!
Type : File
Data : A0025489.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP216\
FileVersion : 1, 77, 0, 2
ProductVersion : 1, 77, 0, 2


ClearSearch Object Recognized!
Type : File
Data : A0025490.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP216\
FileVersion : 1, 0, 0, 2
ProductVersion : 1, 0, 0, 2
LegalCopyright : Copyright © 2004


ClearSearch Object Recognized!
Type : File
Data : A0026497.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP219\
FileVersion : 1, 77, 0, 2
ProductVersion : 1, 77, 0, 2


ClearSearch Object Recognized!
Type : File
Data : A0026498.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP219\
FileVersion : 1, 0, 0, 2
ProductVersion : 1, 0, 0, 2
LegalCopyright : Copyright © 2004


ClearSearch Object Recognized!
Type : File
Data : A0026546.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP219\
FileVersion : 1, 77, 0, 2
ProductVersion : 1, 77, 0, 2


ClearSearch Object Recognized!
Type : File
Data : A0026547.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP219\
FileVersion : 1, 0, 0, 2
ProductVersion : 1, 0, 0, 2
LegalCopyright : Copyright © 2004


ClearSearch Object Recognized!
Type : File
Data : A0026615.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP221\
FileVersion : 1, 77, 0, 2
ProductVersion : 1, 77, 0, 2


ClearSearch Object Recognized!
Type : File
Data : A0026616.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP221\
FileVersion : 1, 0, 0, 2
ProductVersion : 1, 0, 0, 2
LegalCopyright : Copyright © 2004


ClearSearch Object Recognized!
Type : File
Data : A0026655.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP221\
FileVersion : 1, 77, 0, 2
ProductVersion : 1, 77, 0, 2


ClearSearch Object Recognized!
Type : File
Data : A0026656.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP221\
FileVersion : 1, 0, 0, 2
ProductVersion : 1, 0, 0, 2
LegalCopyright : Copyright © 2004


ClearSearch Object Recognized!
Type : File
Data : A0026697.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP221\
FileVersion : 1, 77, 0, 2
ProductVersion : 1, 77, 0, 2


ClearSearch Object Recognized!
Type : File
Data : A0026698.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP221\
FileVersion : 1, 0, 0, 2
ProductVersion : 1, 0, 0, 2
LegalCopyright : Copyright © 2004


ClearSearch Object Recognized!
Type : File
Data : A0026770.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP222\
FileVersion : 1, 77, 0, 2
ProductVersion : 1, 77, 0, 2


ClearSearch Object Recognized!
Type : File
Data : A0026771.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP222\
FileVersion : 1, 0, 0, 2
ProductVersion : 1, 0, 0, 2
LegalCopyright : Copyright © 2004


ClearSearch Object Recognized!
Type : File
Data : A0027756.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP222\
FileVersion : 1, 77, 0, 2
ProductVersion : 1, 77, 0, 2


ClearSearch Object Recognized!
Type : File
Data : A0027757.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP222\
FileVersion : 1, 0, 0, 2
ProductVersion : 1, 0, 0, 2
LegalCopyright : Copyright © 2004


ClearSearch Object Recognized!
Type : File
Data : A0027792.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP222\
FileVersion : 1, 77, 0, 2
ProductVersion : 1, 77, 0, 2


ClearSearch Object Recognized!
Type : File
Data : A0027793.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP222\
FileVersion : 1, 0, 0, 2
ProductVersion : 1, 0, 0, 2
LegalCopyright : Copyright © 2004


ClearSearch Object Recognized!
Type : File
Data : A0027845.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP223\
FileVersion : 1, 77, 0, 2
ProductVersion : 1, 77, 0, 2


ClearSearch Object Recognized!
Type : File
Data : A0027846.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP223\
FileVersion : 1, 0, 0, 2
ProductVersion : 1, 0, 0, 2
LegalCopyright : Copyright © 2004


ClearSearch Object Recognized!
Type : File
Data : A0027862.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP223\
FileVersion : 1, 77, 0, 2
ProductVersion : 1, 77, 0, 2


ClearSearch Object Recognized!
Type : File
Data : A0027863.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP223\
FileVersion : 1, 0, 0, 2
ProductVersion : 1, 0, 0, 2
LegalCopyright : Copyright © 2004


ClearSearch Object Recognized!
Type : File
Data : A0027937.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP223\
FileVersion : 1.83.0.5
ProductVersion : 1.83.0.5
InternalName : Grip.dll
OriginalFilename : Grip.dll
Comments : Build 83 E


ClearSearch Object Recognized!
Type : File
Data : A0027938.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP223\



ClearSearch Object Recognized!
Type : File
Data : A0027939.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP223\
FileVersion : 1, 77, 0, 2
ProductVersion : 1, 77, 0, 2


ClearSearch Object Recognized!
Type : File
Data : A0027940.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP223\
FileVersion : 1, 0, 0, 2
ProductVersion : 1, 0, 0, 2
LegalCopyright : Copyright © 2004


ClearSearch Object Recognized!
Type : File
Data : A0028007.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP224\
FileVersion : 1.83.0.5
ProductVersion : 1.83.0.5
InternalName : Grip.dll
OriginalFilename : Grip.dll
Comments : Build 83 E


ClearSearch Object Recognized!
Type : File
Data : A0028010.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP224\



ClearSearch Object Recognized!
Type : File
Data : A0028012.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP224\
FileVersion : 1, 77, 0, 2
ProductVersion : 1, 77, 0, 2


ClearSearch Object Recognized!
Type : File
Data : A0028013.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP224\
FileVersion : 1, 0, 0, 2
ProductVersion : 1, 0, 0, 2
LegalCopyright : Copyright © 2004


ClearSearch Object Recognized!
Type : File
Data : A0028076.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP225\
FileVersion : 1.83.0.5
ProductVersion : 1.83.0.5
InternalName : Grip.dll
OriginalFilename : Grip.dll
Comments : Build 83 E


ClearSearch Object Recognized!
Type : File
Data : A0028079.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP225\



ClearSearch Object Recognized!
Type : File
Data : A0028081.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP225\
FileVersion : 1, 77, 0, 2
ProductVersion : 1, 77, 0, 2


ClearSearch Object Recognized!
Type : File
Data : A0028083.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP225\
FileVersion : 1, 0, 0, 2
ProductVersion : 1, 0, 0, 2
LegalCopyright : Copyright © 2004


ClearSearch Object Recognized!
Type : File
Data : A0028155.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP226\
FileVersion : 1.83.0.5
ProductVersion : 1.83.0.5
InternalName : Grip.dll
OriginalFilename : Grip.dll
Comments : Build 83 E


ClearSearch Object Recognized!
Type : File
Data : A0028156.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP226\



ClearSearch Object Recognized!
Type : File
Data : A0028158.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP226\
FileVersion : 1, 77, 0, 2
ProductVersion : 1, 77, 0, 2


ClearSearch Object Recognized!
Type : File
Data : A0028159.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP226\
FileVersion : 1, 0, 0, 2
ProductVersion : 1, 0, 0, 2
LegalCopyright : Copyright © 2004


ClearSearch Object Recognized!
Type : File
Data : A0028234.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP227\
FileVersion : 1.83.0.5
ProductVersion : 1.83.0.5
InternalName : Grip.dll
OriginalFilename : Grip.dll
Comments : Build 83 E


ClearSearch Object Recognized!
Type : File
Data : A0028236.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP227\



ClearSearch Object Recognized!
Type : File
Data : A0028238.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP227\
FileVersion : 1, 77, 0, 2
ProductVersion : 1, 77, 0, 2


ClearSearch Object Recognized!
Type : File
Data : A0028239.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP227\
FileVersion : 1, 0, 0, 2
ProductVersion : 1, 0, 0, 2
LegalCopyright : Copyright © 2004


ClearSearch Object Recognized!
Type : File
Data : A0028291.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP228\
FileVersion : 1.83.0.5
ProductVersion : 1.83.0.5
InternalName : Grip.dll
OriginalFilename : Grip.dll
Comments : Build 83 E


ClearSearch Object Recognized!
Type : File
Data : A0028294.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP228\



ClearSearch Object Recognized!
Type : File
Data : A0028297.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP228\
FileVersion : 1, 77, 0, 2
ProductVersion : 1, 77, 0, 2


ClearSearch Object Recognized!
Type : File
Data : A0028299.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP228\
FileVersion : 1, 0, 0, 2
ProductVersion : 1, 0, 0, 2
LegalCopyright : Copyright © 2004


ClearSearch Object Recognized!
Type : File
Data : A0028347.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP229\
FileVersion : 1.83.0.5
ProductVersion : 1.83.0.5
InternalName : Grip.dll
OriginalFilename : Grip.dll
Comments : Build 83 E


ClearSearch Object Recognized!
Type : File
Data : A0028350.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP229\



ClearSearch Object Recognized!
Type : File
Data : A0028353.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP229\
FileVersion : 1, 77, 0, 2
ProductVersion : 1, 77, 0, 2


ClearSearch Object Recognized!
Type : File
Data : A0028354.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP229\
FileVersion : 1, 0, 0, 2
ProductVersion : 1, 0, 0, 2
LegalCopyright : Copyright © 2004


PeopleOnPage Object Recognized!
Type : File
Data : A0028382.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP229\
FileVersion : 5.1.18
ProductVersion : 5.1.18
ProductName : ACE
FileDescription : ACE
InternalName : ACEDLL
OriginalFilename : ACE.DLL


ClearSearch Object Recognized!
Type : File
Data : A0028423.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP230\
FileVersion : 1.83.0.5
ProductVersion : 1.83.0.5
InternalName : Grip.dll
OriginalFilename : Grip.dll
Comments : Build 83 E


ClearSearch Object Recognized!
Type : File
Data : A0028427.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP230\



ClearSearch Object Recognized!
Type : File
Data : A0028429.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP230\
FileVersion : 1, 77, 0, 2
ProductVersion : 1, 77, 0, 2


ClearSearch Object Recognized!
Type : File
Data : A0028430.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\R
  • 0

#9
amf2880
Posted 25 April 2005 - 08:02 AM

amf2880

    Member

  • Topic Starter
  • Member
  • PipPip
  • 15 posts
3rd portion of Ad-aware log file:



ClearSearch Object Recognized!
Type : File
Data : A0028430.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP230\
FileVersion : 1, 0, 0, 2
ProductVersion : 1, 0, 0, 2
LegalCopyright : Copyright © 2004


ClearSearch Object Recognized!
Type : File
Data : A0028492.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP231\
FileVersion : 1.83.0.5
ProductVersion : 1.83.0.5
InternalName : Grip.dll
OriginalFilename : Grip.dll
Comments : Build 83 E


ClearSearch Object Recognized!
Type : File
Data : A0028493.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP231\



ClearSearch Object Recognized!
Type : File
Data : A0028494.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP231\
FileVersion : 1, 77, 0, 2
ProductVersion : 1, 77, 0, 2


ClearSearch Object Recognized!
Type : File
Data : A0028495.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP231\
FileVersion : 1, 0, 0, 2
ProductVersion : 1, 0, 0, 2
LegalCopyright : Copyright © 2004


ClearSearch Object Recognized!
Type : File
Data : A0028557.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP232\
FileVersion : 1.83.0.5
ProductVersion : 1.83.0.5
InternalName : Grip.dll
OriginalFilename : Grip.dll
Comments : Build 83 E


ClearSearch Object Recognized!
Type : File
Data : A0028559.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP232\



ClearSearch Object Recognized!
Type : File
Data : A0028561.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP232\
FileVersion : 1, 77, 0, 2
ProductVersion : 1, 77, 0, 2


ClearSearch Object Recognized!
Type : File
Data : A0028562.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP232\
FileVersion : 1, 0, 0, 2
ProductVersion : 1, 0, 0, 2
LegalCopyright : Copyright © 2004


PeopleOnPage Object Recognized!
Type : File
Data : A0028589.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP233\
FileVersion : 5.1.18
ProductVersion : 5.1.18
ProductName : ACE
FileDescription : ACE
InternalName : ACEDLL
OriginalFilename : ACE.DLL


PeopleOnPage Object Recognized!
Type : File
Data : A0028624.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP233\



ClearSearch Object Recognized!
Type : File
Data : A0028637.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP233\
FileVersion : 1.83.0.5
ProductVersion : 1.83.0.5
InternalName : Grip.dll
OriginalFilename : Grip.dll
Comments : Build 83 E


ClearSearch Object Recognized!
Type : File
Data : A0028638.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP233\



ClearSearch Object Recognized!
Type : File
Data : A0028639.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP233\
FileVersion : 1, 77, 0, 2
ProductVersion : 1, 77, 0, 2


ClearSearch Object Recognized!
Type : File
Data : A0028640.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP233\
FileVersion : 1, 0, 0, 2
ProductVersion : 1, 0, 0, 2
LegalCopyright : Copyright © 2004


ClearSearch Object Recognized!
Type : File
Data : A0028679.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP233\
FileVersion : 1.83.0.5
ProductVersion : 1.83.0.5
InternalName : Grip.dll
OriginalFilename : Grip.dll
Comments : Build 83 E


ClearSearch Object Recognized!
Type : File
Data : A0028680.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP233\



ClearSearch Object Recognized!
Type : File
Data : A0028682.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP233\
FileVersion : 1, 77, 0, 2
ProductVersion : 1, 77, 0, 2


ClearSearch Object Recognized!
Type : File
Data : A0028683.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP233\
FileVersion : 1, 0, 0, 2
ProductVersion : 1, 0, 0, 2
LegalCopyright : Copyright © 2004


PeopleOnPage Object Recognized!
Type : File
Data : A0028729.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP234\



ClearSearch Object Recognized!
Type : File
Data : A0028746.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP235\
FileVersion : 1.83.0.5
ProductVersion : 1.83.0.5
InternalName : Grip.dll
OriginalFilename : Grip.dll
Comments : Build 83 E


ClearSearch Object Recognized!
Type : File
Data : A0028747.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP235\



ClearSearch Object Recognized!
Type : File
Data : A0028748.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP235\
FileVersion : 1, 77, 0, 2
ProductVersion : 1, 77, 0, 2


ClearSearch Object Recognized!
Type : File
Data : A0028749.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP235\
FileVersion : 1, 0, 0, 2
ProductVersion : 1, 0, 0, 2
LegalCopyright : Copyright © 2004


ClearSearch Object Recognized!
Type : File
Data : A0028782.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP235\
FileVersion : 1.83.0.5
ProductVersion : 1.83.0.5
InternalName : Grip.dll
OriginalFilename : Grip.dll
Comments : Build 83 E


ClearSearch Object Recognized!
Type : File
Data : A0028786.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP235\



ClearSearch Object Recognized!
Type : File
Data : A0028791.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP235\
FileVersion : 1, 77, 0, 2
ProductVersion : 1, 77, 0, 2


ClearSearch Object Recognized!
Type : File
Data : A0028792.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP235\
FileVersion : 1, 0, 0, 2
ProductVersion : 1, 0, 0, 2
LegalCopyright : Copyright © 2004


ClearSearch Object Recognized!
Type : File
Data : A0028816.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP235\
FileVersion : 1.83.0.5
ProductVersion : 1.83.0.5
InternalName : Grip.dll
OriginalFilename : Grip.dll
Comments : Build 83 E


ClearSearch Object Recognized!
Type : File
Data : A0028819.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP235\



ClearSearch Object Recognized!
Type : File
Data : A0028822.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP235\
FileVersion : 1, 77, 0, 2
ProductVersion : 1, 77, 0, 2


ClearSearch Object Recognized!
Type : File
Data : A0028824.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP235\
FileVersion : 1, 0, 0, 2
ProductVersion : 1, 0, 0, 2
LegalCopyright : Copyright © 2004


ClearSearch Object Recognized!
Type : File
Data : A0028927.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP238\
FileVersion : 1.83.0.5
ProductVersion : 1.83.0.5
InternalName : Grip.dll
OriginalFilename : Grip.dll
Comments : Build 83 E


ClearSearch Object Recognized!
Type : File
Data : A0028930.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP238\



ClearSearch Object Recognized!
Type : File
Data : A0028933.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP238\
FileVersion : 1, 77, 0, 2
ProductVersion : 1, 77, 0, 2


ClearSearch Object Recognized!
Type : File
Data : A0028935.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP238\
FileVersion : 1, 0, 0, 2
ProductVersion : 1, 0, 0, 2
LegalCopyright : Copyright © 2004


ClearSearch Object Recognized!
Type : File
Data : A0028998.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP239\
FileVersion : 1.83.0.5
ProductVersion : 1.83.0.5
InternalName : Grip.dll
OriginalFilename : Grip.dll
Comments : Build 83 E


ClearSearch Object Recognized!
Type : File
Data : A0029001.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP239\



ClearSearch Object Recognized!
Type : File
Data : A0029003.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP239\
FileVersion : 1, 77, 0, 2
ProductVersion : 1, 77, 0, 2


ClearSearch Object Recognized!
Type : File
Data : A0029005.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP239\
FileVersion : 1, 0, 0, 2
ProductVersion : 1, 0, 0, 2
LegalCopyright : Copyright © 2004


ClearSearch Object Recognized!
Type : File
Data : A0029056.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP240\
FileVersion : 1.83.0.5
ProductVersion : 1.83.0.5
InternalName : Grip.dll
OriginalFilename : Grip.dll
Comments : Build 83 E


ClearSearch Object Recognized!
Type : File
Data : A0029059.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP240\



ClearSearch Object Recognized!
Type : File
Data : A0029063.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP240\
FileVersion : 1, 77, 0, 2
ProductVersion : 1, 77, 0, 2


ClearSearch Object Recognized!
Type : File
Data : A0029064.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP240\
FileVersion : 1, 0, 0, 2
ProductVersion : 1, 0, 0, 2
LegalCopyright : Copyright © 2004


ClearSearch Object Recognized!
Type : File
Data : A0029104.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP240\
FileVersion : 1.83.0.5
ProductVersion : 1.83.0.5
InternalName : Grip.dll
OriginalFilename : Grip.dll
Comments : Build 83 E


ClearSearch Object Recognized!
Type : File
Data : A0029107.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP240\



ClearSearch Object Recognized!
Type : File
Data : A0029108.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP240\
FileVersion : 1, 77, 0, 2
ProductVersion : 1, 77, 0, 2


ClearSearch Object Recognized!
Type : File
Data : A0029109.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP240\
FileVersion : 1, 0, 0, 2
ProductVersion : 1, 0, 0, 2
LegalCopyright : Copyright © 2004


ClearSearch Object Recognized!
Type : File
Data : A0029214.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP242\
FileVersion : 1.83.0.5
ProductVersion : 1.83.0.5
InternalName : Grip.dll
OriginalFilename : Grip.dll
Comments : Build 83 E


ClearSearch Object Recognized!
Type : File
Data : A0029218.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP242\



ClearSearch Object Recognized!
Type : File
Data : A0029220.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP242\
FileVersion : 1, 77, 0, 2
ProductVersion : 1, 77, 0, 2


ClearSearch Object Recognized!
Type : File
Data : A0029221.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP242\
FileVersion : 1, 0, 0, 2
ProductVersion : 1, 0, 0, 2
LegalCopyright : Copyright © 2004


ClearSearch Object Recognized!
Type : File
Data : A0029259.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP243\
FileVersion : 1.83.0.5
ProductVersion : 1.83.0.5
InternalName : Grip.dll
OriginalFilename : Grip.dll
Comments : Build 83 E


ClearSearch Object Recognized!
Type : File
Data : A0029260.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP243\



ClearSearch Object Recognized!
Type : File
Data : A0029261.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP243\
FileVersion : 1, 77, 0, 2
ProductVersion : 1, 77, 0, 2


ClearSearch Object Recognized!
Type : File
Data : A0029262.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP243\
FileVersion : 1, 0, 0, 2
ProductVersion : 1, 0, 0, 2
LegalCopyright : Copyright © 2004


ClearSearch Object Recognized!
Type : File
Data : A0029329.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP244\
FileVersion : 1.83.0.5
ProductVersion : 1.83.0.5
InternalName : Grip.dll
OriginalFilename : Grip.dll
Comments : Build 83 E


ClearSearch Object Recognized!
Type : File
Data : A0029330.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP244\



ClearSearch Object Recognized!
Type : File
Data : A0029331.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP244\
FileVersion : 1, 77, 0, 2
ProductVersion : 1, 77, 0, 2


ClearSearch Object Recognized!
Type : File
Data : A0029332.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP244\
FileVersion : 1, 0, 0, 2
ProductVersion : 1, 0, 0, 2
LegalCopyright : Copyright © 2004


ClearSearch Object Recognized!
Type : File
Data : A0029385.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP245\
FileVersion : 1.83.0.5
ProductVersion : 1.83.0.5
InternalName : Grip.dll
OriginalFilename : Grip.dll
Comments : Build 83 E


ClearSearch Object Recognized!
Type : File
Data : A0029387.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP245\



ClearSearch Object Recognized!
Type : File
Data : A0029388.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP245\
FileVersion : 1, 77, 0, 2
ProductVersion : 1, 77, 0, 2


ClearSearch Object Recognized!
Type : File
Data : A0029389.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP245\
FileVersion : 1, 0, 0, 2
ProductVersion : 1, 0, 0, 2
LegalCopyright : Copyright © 2004


ClearSearch Object Recognized!
Type : File
Data : A0029455.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP246\
FileVersion : 1.83.0.5
ProductVersion : 1.83.0.5
InternalName : Grip.dll
OriginalFilename : Grip.dll
Comments : Build 83 E


ClearSearch Object Recognized!
Type : File
Data : A0029456.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP246\



ClearSearch Object Recognized!
Type : File
Data : A0029458.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP246\
FileVersion : 1, 77, 0, 2
ProductVersion : 1, 77, 0, 2


ClearSearch Object Recognized!
Type : File
Data : A0029459.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP246\
FileVersion : 1, 0, 0, 2
ProductVersion : 1, 0, 0, 2
LegalCopyright : Copyright © 2004


ClearSearch Object Recognized!
Type : File
Data : A0029515.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP247\
FileVersion : 1.83.0.5
ProductVersion : 1.83.0.5
InternalName : Grip.dll
OriginalFilename : Grip.dll
Comments : Build 83 E


ClearSearch Object Recognized!
Type : File
Data : A0029518.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP247\



ClearSearch Object Recognized!
Type : File
Data : A0029522.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP247\
FileVersion : 1, 77, 0, 2
ProductVersion : 1, 77, 0, 2


ClearSearch Object Recognized!
Type : File
Data : A0029525.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP247\
FileVersion : 1, 0, 0, 2
ProductVersion : 1, 0, 0, 2
LegalCopyright : Copyright © 2004


ClearSearch Object Recognized!
Type : File
Data : A0029558.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP247\
FileVersion : 1.83.0.5
ProductVersion : 1.83.0.5
InternalName : Grip.dll
OriginalFilename : Grip.dll
Comments : Build 83 E


ClearSearch Object Recognized!
Type : File
Data : A0029562.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP247\



ClearSearch Object Recognized!
Type : File
Data : A0029564.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP247\
FileVersion : 1, 77, 0, 2
ProductVersion : 1, 77, 0, 2


ClearSearch Object Recognized!
Type : File
Data : A0029565.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP247\
FileVersion : 1, 0, 0, 2
ProductVersion : 1, 0, 0, 2
LegalCopyright : Copyright © 2004


ClearSearch Object Recognized!
Type : File
Data : A0029632.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP248\
FileVersion : 1.83.0.5
ProductVersion : 1.83.0.5
InternalName : Grip.dll
OriginalFilename : Grip.dll
Comments : Build 83 E


ClearSearch Object Recognized!
Type : File
Data : A0029635.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP248\



ClearSearch Object Recognized!
Type : File
Data : A0029639.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP248\
FileVersion : 1, 77, 0, 2
ProductVersion : 1, 77, 0, 2


ClearSearch Object Recognized!
Type : File
Data : A0029640.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP248\
FileVersion : 1, 0, 0, 2
ProductVersion : 1, 0, 0, 2
LegalCopyright : Copyright © 2004


ClearSearch Object Recognized!
Type : File
Data : A0029674.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP248\
FileVersion : 1.83.0.5
ProductVersion : 1.83.0.5
InternalName : Grip.dll
OriginalFilename : Grip.dll
Comments : Build 83 E


ClearSearch Object Recognized!
Type : File
Data : A0029678.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP248\



ClearSearch Object Recognized!
Type : File
Data : A0029679.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP248\
FileVersion : 1, 77, 0, 2
ProductVersion : 1, 77, 0, 2


ClearSearch Object Recognized!
Type : File
Data : A0029680.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP248\
FileVersion : 1, 0, 0, 2
ProductVersion : 1, 0, 0, 2
LegalCopyright : Copyright © 2004


SahAgent Object Recognized!
Type : File
Data : WEBInstaller.dll
Category : Data Miner
Comment :
Object : C:\WINDOWS\Downloaded Program Files\
FileVersion : 1, 1, 1, 32
ProductVersion : 1, 1, 1, 32
ProductName : WEBInstaller Module
FileDescription : WEBInstaller Module
InternalName : WEBInstaller
LegalCopyright : Copyright 2002
OriginalFilename : WEBInstaller.DLL


AdRotator Object Recognized!
Type : File
Data : Helper101.dll
Category : Malware
Comment :
Object : C:\WINDOWS\



ClearSearch Object Recognized!
Type : File
Data : CSv13P108.exe
Category : Data Miner
Comment :
Object : C:\WINDOWS\system32\Cache\
FileVersion : 1, 13, 0, 5
ProductVersion : 1, 13, 0, 5


DealHelper Object Recognized!
Type : File
Data : dun.exe
Category : Malware
Comment :
Object : C:\WINDOWS\system32\
FileVersion : 1, 0, 0, 1
ProductVersion : 1, 0, 0, 1
ProductName : UnInstallKey Application
FileDescription : UnInstallKey MFC Application
InternalName : UnInstallKey
LegalCopyright : Copyright © 2003
OriginalFilename : UnInstallKey.EXE


AdRotator Object Recognized!
Type : File
Data : ecdqmd.exe
Category : Malware
Comment :
Object : C:\WINDOWS\system32\
FileVersion : 1, 0, 0, 1
ProductVersion : 1, 0, 0, 1
ProductName : localDownload Application
FileDescription : localDownload MFC Application
InternalName : localDownload
LegalCopyright : Copyright © 2004
OriginalFilename : localDownload.EXE


eUniverse Object Recognized!
Type : File
Data : in3.dll
Category : Data Miner
Comment :
Object : C:\WINDOWS\system32\
FileVersion : 1, 0, 0, 1
ProductVersion : 1, 0, 0, 1
ProductName : exe_in_dll Module
FileDescription : exe_in_dll Module
InternalName : exe_in_dll
LegalCopyright : Copyright 2001
OriginalFilename : exe_in_dll.DLL


SahAgent Object Recognized!
Type : File
Data : lsp.dll_tobedeleted
Category : Data Miner
Comment :
Object : C:\WINDOWS\system32\
FileVersion : 2, 0, 0, 1
ProductVersion : 2, 0, 0, 1
ProductName : ShopAtHomeSelect LSP
CompanyName : ShopAtHomeSelect
FileDescription : LSP
InternalName : LSP
LegalCopyright : Copyright © 2004
OriginalFilename : LSP.DLL


DealHelper Object Recognized!
Type : File
Data : Zpsece.exe
Category : Malware
Comment :
Object : C:\WINDOWS\system32\
FileVersion : 1, 0, 0, 1
ProductVersion : 1, 0, 0, 1
ProductName : Redirect Application
FileDescription : Redirect MFC Application
InternalName : Redirect
LegalCopyright : Copyright © 2003
OriginalFilename : Redirect.EXE


Disk Scan Result for C:\
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
New critical objects: 0
Objects found so far: 340


Scanning Hosts file......
Hosts file location:"C:\WINDOWS\system32\drivers\etc\hosts".
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»

Hosts file scan result:
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
1 entries scanned.
New critical objects:0
Objects found so far: 340



Possible Browser Hijack attempt Object Recognized!
Type : File
Data : Big Fish Games.url
Category : Misc
Comment : Problematic URL discovered: http://www.regnow.co...ite&vendor=7551
Object : C:\Documents and Settings\afiegel\Favorites\AT-Games\



Possible Browser Hijack attempt Object Recognized!
Type : File
Data : FlyorDie Games.url
Category : Misc
Comment : Problematic URL discovered: http://www.regnow.co...ite&vendor=7834
Object : C:\Documents and Settings\afiegel\Favorites\AT-Games\



Possible Browser Hijack attempt Object Recognized!
Type : File
Data : Gamehouse Games.url
Category : Misc
Comment : Problematic URL discovered: http://www.gamehouse...te.jsp?AID=2226
Object : C:\Documents and Settings\afiegel\Favorites\AT-Games\




Performing conditional scans...
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»

ClearSearch Object Recognized!
Type : RegValue
Data :
Category : Data Miner
Comment :
Rootkey : HKEY_CURRENT_USER
Object : software\microsoft\internet explorer\urlsearchhooks
Value : {CFBFAE00-17A6-11D0-99CB-00C04FD64497}

AdRotator Object Recognized!
Type : File
Data : hiwinnager.dat
Category : Malware
Comment :
Object : C:\WINDOWS\system32\



AdRotator Object Recognized!
Type : File
Data : searchen.dat
Category : Malware
Comment :
Object : C:\WINDOWS\



Elitum.ElitebarBHO Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment :
Rootkey : HKEY_CURRENT_USER
Object : software\lq

Elitum.ElitebarBHO Object Recognized!
Type : RegValue
Data :
Category : Data Miner
Comment :
Rootkey : HKEY_CURRENT_USER
Object : software\lq
Value : TM

Elitum.ElitebarBHO Object Recognized!
Type : RegValue
Data :
Category : Data Miner
Comment :
Rootkey : HKEY_CURRENT_USER
Object : software\lq
Value : AD

Elitum.ElitebarBHO Object Recognized!
Type : RegValue
Data :
Category : Data Miner
Comment :
Rootkey : HKEY_CURRENT_USER
Object : software\lq
Value : AM

Elitum.ElitebarBHO Object Recognized!
Type : RegValue
Data :
Category : Data Miner
Comment :
Rootkey : HKEY_CURRENT_USER
Object : software\lq
Value : AT

Elitum.ElitebarBHO Object Recognized!
Type : RegValue
Data :
Category : Data Miner
Comment :
Rootkey : HKEY_CURRENT_USER
Object : software\lq
Value : AC

Elitum.ElitebarBHO Object Recognized!
Type : RegValue
Data :
Category : Data Miner
Comment :
Rootkey : HKEY_CURRENT_USER
Object : software\lq
Value : U

Elitum.ElitebarBHO Object Recognized!
Type : RegValue
Data :
Category : Data Miner
Comment :
Rootkey : HKEY_CURRENT_USER
Object : software\lq
Value : I

Elitum.ElitebarBHO Object Recognized!
Type : RegValue
Data :
Category : Data Miner
Comment :
Rootkey : HKEY_CURRENT_USER
Object : software\lq
Value : TR

Elitum.ElitebarBHO Object Recognized!
Type : RegValue
Data :
Category : Data Miner
Comment :
Rootkey : HKEY_CURRENT_USER
Object : software\lq
Value : country

Elitum.ElitebarBHO Object Recognized!
Type : RegValue
Data :
Category : Data Miner
Comment :
Rootkey : HKEY_CURRENT_USER
Object : software\lq
Value : city

Elitum.ElitebarBHO Object Recognized!
Type : RegValue
Data :
Category : Data Miner
Comment :
Rootkey : HKEY_CURRENT_USER
Object : software\lq
Value : state

Elitum.ElitebarBHO Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment :
Rootkey : HKEY_LOCAL_MACHINE
Object : software\elitum

Elitum.ElitebarBHO Object Recognized!
Type : Folder
Category : Data Miner
Comment :
Object : C:\WINDOWS\EliteToolBar

PeopleOnPage Object Recognized!
Type : RegValue
Data :
Category : Data Miner
Comment :
Rootkey : HKEY_LOCAL_MACHINE
Object : software\microsoft\windows\currentversion\run
Value : AutoUpdater

PeopleOnPage Object Recognized!
Type : Folder
Category : Data Miner
Comment :
Object : C:\Program Files\AutoUpdate

PeopleOnPage Object Recognized!
Type : File
Data : libexpat.dll
Category : Data Miner
Comment :
Object : C:\Program Files\autoupdate\



Favoriteman Object Recognized!
Type : File
Data : hosts.bho
Category : Malware
Comment :
Object : C:\WINDOWS\system32\drivers\etc\



SahAgent Object Recognized!
Type : File
Data : setup.inf
Category : Data Miner
Comment :
Object : C:\WINDOWS\downloaded program files\



IBIS Toolbar Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment :
Rootkey : HKEY_CURRENT_USER
Object : software\microsoft\mediaplayer\control\playbar

IBIS Toolbar Object Recognized!
Type : RegValue
Data :
Category : Data Miner
Comment :
Rootkey : HKEY_CURRENT_USER
Object : software\microsoft\mediaplayer\control\playbar
Value : ClrShadow

IBIS Toolbar Object Recognized!
Type : RegValue
Data :
Category : Data Miner
Comment :
Rootkey : HKEY_CURRENT_USER
Object : software\microsoft\mediaplayer\control\playbar
Value : ClrHighlight

IBIS Toolbar Object Recognized!
Type : RegValue
Data :
Category : Data Miner
Comment :
Rootkey : HKEY_CURRENT_USER
Object : software\microsoft\mediaplayer\control\playbar
Value : ClrForeColor

IBIS Toolbar Object Recognized!
Type : RegValue
Data :
Category : Data Miner
Comment :
Rootkey : HKEY_CURRENT_USER
Object : software\microsoft\mediaplayer\control\playbar
Value : ClrBackColor

IBIS Toolbar Object Recognized!
Type : RegValue
Data :
Category : Data Miner
Comment :
Rootkey : HKEY_CURRENT_USER
Object : software\microsoft\mediaplayer\control\playbar
Value : ClrDownload

IBIS Toolbar Object Recognized!
Type : RegValue
Data :
Category : Data Miner
Comment :
Rootkey : HKEY_CURRENT_USER
Object : software\microsoft\mediaplayer\control\playbar
Value : ClrViewed

IBIS Toolbar Object Recognized!
Type : RegValue
Data :
Category : Data Miner
Comment :
Rootkey : HKEY_CURRENT_USER
Object : software\microsoft\mediaplayer\control\playbar
Value : ClrStatic

IBIS Toolbar Object Recognized!
Type : RegValue
Data :
Category : Data Miner
Comment :
Rootkey : HKEY_LOCAL_MACHINE
Object : software\microsoft\windows\currentversion\explorer
Value : ServerProc

IBIS Toolbar Object Recognized!
Type : RegValue
Data :
Category : Data Miner
Comment :
Rootkey : HKEY_LOCAL_MACHINE
Object : software\microsoft\windows\currentversion\installer\userdata
Value : TUID

DealHelper Object Recognized!
Type : RegValue
Data :
Category : Malware
Comment :
Rootkey : HKEY_CURRENT_USER
Object : software\microsoft\internet explorer\toolbar\webbrowser
Value : {01E04581-4EEE-11D0-BFE9-00AA005B4383}

DealHelper Object Recognized!
Type : Folder
Category : Malware
Comment :
Object : C:\WINDOWS\system32\DealHelper

Conditional scan result:
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
New critical objects: 34
Objects found so far: 377

8:47:57 AM Scan Complete

Summary Of This Scan
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
Total scanning time:00:07:11.119
Objects scanned:95233
Objects identified:364
Objects ignored:0
New critical objects:364
  • 0

#10
Guest_Andy_veal_*
Posted 25 April 2005 - 04:34 PM

Guest_Andy_veal_*
  • Guest
Hello and Welcome

Ad-aware has found objects on your computer

If you chose to clean your computer from what Ad-aware found please follow these instructions below…

Please make sure that you are using the * SE1R41 25.04.2005 * definition file.


Please launch Ad-Aware SE and click on the gear to access the Configuration Menu. Please make sure that this setting is applied.

Click on Tweak > Cleaning Engine > UNcheck "Always try to unload modules before deletion".

Disconnect from the internet (for broadband/cable users, it is recommended that you disconnect the cable connection) and close all open browsers or other programs you have running.

Please then boot into Safe Mode

To clean your machine, it is highly recommended that you clean the following directory contents (but not the directory folder):

Please run CCleaner to assist in this process.
Download CCleaner (Setup: go to >options > settings > Uncheck "Only delete files in Windows Temp folders older than 48 hours" for cleaning malware files!)

* C:\Windows\Temp\
* C:\Documents and Settings\<Your Profile>\Local Settings\Temporary Internet Files\ <- This will delete all your cached internet content including cookies.
* C:\Documents and Settings\<Your Profile>\Local Settings\Temp\
* C:\Documents and Settings\<Any other users Profile>\Local Settings\Temporary Internet Files\
* C:\Documents and Settings\<Any other users Profile>\Local Settings\Temp\
* Empty your "Recycle Bin".

Please run Ad-Aware SE from the command lines shown in the instructions shown below.

Click "Start" > select "Run" > type the text shown in bold below (including the quotation marks and with the same spacing as shown)

"C:\Program Files\Lavasoft\Ad-Aware SE Professional\Ad-Aware.exe" /full +procnuke
(For the Professional version)

"C:\Program Files\Lavasoft\Ad-Aware SE Plus\Ad-Aware.exe" /full +procnuke
(For the Plus version)

"C:\Program Files\Lavasoft\Ad-Aware SE Personal\Ad-Aware.exe" +procnuke
(For the Personal version)


Click OK.

Please note that the path above is of the default installion location for Ad-aware SE, if this is different, please adjust it to the location that you have installed it to.

When the scan has completed, select Next. In the Scanning Results window, select the "Scan Summary" tab. Check the box next to each "target family" you wish to remove. Click next, Click OK.

If problems are caused by deleting a family, please leave it.

Please only remove Sahagent first

Please shutdown/restart your computer after removal, run a new full scan and post the results as a reply. Do not launch any programs or connect to the internet at this time.

Please then copy & paste the complete log file here. Don't quarantine or remove anything at this time, just post a complete logfile. This can sometimes takes 2-3 posts to get it all posted, once the "Summary of this scan" information is shown, you have posted all of your logfile.

Please remember when posting another logfile keep "Search for negligible risk entries" deselected as negligible risk entries (MRU's) are not considered to be a threat. This option can be changed when choosing your scan type.

Please post back here

Good luck

Andy

Edited by Andy_veal, 25 April 2005 - 04:38 PM.

  • 0

Advertisements

#11
Guest_Andy_veal_*
Posted 25 April 2005 - 05:26 PM

Guest_Andy_veal_*
  • Guest
Hello and Welcome

Ad-aware has found objects on your computer

If you chose to clean your computer from what Ad-aware found please follow these instructions below…

Please make sure that you are using the * SE1R41 25.04.2005 * definition file.


Please launch Ad-Aware SE and click on the gear to access the Configuration Menu. Please make sure that this setting is applied.

Click on Tweak > Cleaning Engine > UNcheck "Always try to unload modules before deletion".

Disconnect from the internet (for broadband/cable users, it is recommended that you disconnect the cable connection) and close all open browsers or other programs you have running.

Please then boot into Safe Mode

To clean your machine, it is highly recommended that you clean the following directory contents (but not the directory folder):

Please run CCleaner to assist in this process.
Download CCleaner (Setup: go to >options > settings > Uncheck "Only delete files in Windows Temp folders older than 48 hours" for cleaning malware files!)

* C:\Windows\Temp\
* C:\Documents and Settings\<Your Profile>\Local Settings\Temporary Internet Files\ <- This will delete all your cached internet content including cookies.
* C:\Documents and Settings\<Your Profile>\Local Settings\Temp\
* C:\Documents and Settings\<Any other users Profile>\Local Settings\Temporary Internet Files\
* C:\Documents and Settings\<Any other users Profile>\Local Settings\Temp\
* Empty your "Recycle Bin".

Please run Ad-Aware SE from the command lines shown in the instructions shown below.

Click "Start" > select "Run" > type the text shown in bold below (including the quotation marks and with the same spacing as shown)

"C:\Program Files\Lavasoft\Ad-Aware SE Professional\Ad-Aware.exe" /full +procnuke
(For the Professional version)

"C:\Program Files\Lavasoft\Ad-Aware SE Plus\Ad-Aware.exe" /full +procnuke
(For the Plus version)

"C:\Program Files\Lavasoft\Ad-Aware SE Personal\Ad-Aware.exe" +procnuke
(For the Personal version)


Click OK.

Please note that the path above is of the default installion location for Ad-aware SE, if this is different, please adjust it to the location that you have installed it to.

When the scan has completed, select Next. In the Scanning Results window, select the "Scan Summary" tab. Check the box next to each "target family" you wish to remove. Click next, Click OK.

If problems are caused by deleting a family, please leave it.

Please shutdown/restart your computer after removal, run a new full scan and post the results as a reply. Do not launch any programs or connect to the internet at this time.

If additional critical objects are found, please do the following:

Please then copy & paste the complete log file here. Don't quarantine or remove anything at this time, just post a complete logfile. This can sometimes takes 2-3 posts to get it all posted, once the "Summary of this scan" information is shown, you have posted all of your logfile.

Please remember when posting another logfile keep "Search for negligible risk entries" deselected as negligible risk entries (MRU's) are not considered to be a threat. This option can be changed when choosing your scan type.

Please post back here

Good luck

Andy
  • 0

#12
amf2880
Posted 26 April 2005 - 08:01 AM

amf2880

    Member

  • Topic Starter
  • Member
  • PipPip
  • 15 posts
I ran the CCleaner, got the updated definitions file, and removed SahAgent. Here is the first portion of the new log file:


Ad-Aware SE Build 1.05
Logfile Created on:Tuesday, April 26, 2005 8:50:16 AM
Created with Ad-Aware SE Personal, free for private use.
Using definitions file:SE1R41 25.04.2005
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»

References detected during the scan:
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
180Solutions(TAC index:6):3 total references
Adintelligence.AproposToolbar(TAC index:5):10 total references
AdRotator(TAC index:6):10 total references
ClearSearch(TAC index:7):267 total references
DealHelper(TAC index:7):5 total references
Ebates MoneyMaker(TAC index:4):1 total references
Elitum.ElitebarBHO(TAC index:5):73 total references
eUniverse(TAC index:10):1 total references
Favoriteman(TAC index:8):4 total references
IBIS Toolbar(TAC index:5):28 total references
PeopleOnPage(TAC index:9):7 total references
Possible Browser Hijack attempt(TAC index:3):5 total references
Tracking Cookie(TAC index:3):4 total references
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»

Definition File:
=========================
Definitions File Loaded:
Reference Number : SE1R41 25.04.2005
Internal build : 48
File location : C:\Program Files\Lavasoft\Ad-Aware SE Personal\defs.ref
File size : 462131 Bytes
Total size : 1397647 Bytes
Signature data size : 1367126 Bytes
Reference data size : 30009 Bytes
Signatures total : 39003
Fingerprints total : 816
Fingerprints size : 28835 Bytes
Target categories : 15
Target families : 650


Memory + processor status:
==========================
Number of processors : 1
Processor architecture : Intel Pentium IV
Memory available:22 %
Total physical memory:253424 kb
Available physical memory:54344 kb
Total page file size:620964 kb
Available on page file:442652 kb
Total virtual memory:2097024 kb
Available virtual memory:2048480 kb
OS:Microsoft Windows XP Professional Service Pack 2 (Build 2600)

Ad-Aware SE Settings
===========================
Set : Safe mode (always request confirmation)
Set : Scan active processes
Set : Scan registry
Set : Deep-scan registry
Set : Scan my IE Favorites for banned URLs
Set : Scan within archives
Set : Scan my Hosts file

Extended Ad-Aware SE Settings
===========================
Set : Unload recognized processes & modules during scan
Set : Obtain command line of scanned processes
Set : Scan registry for all users instead of current user only
Set : During removal, unload Explorer and IE if necessary
Set : Let Windows remove files in use at next reboot
Set : Delete quarantined objects after restoring
Set : Write-protect system files after repair (Hosts file, etc.)
Set : Include basic Ad-Aware settings in log file
Set : Include additional Ad-Aware settings in log file
Set : Include reference summary in log file
Set : Play sound at scan completion if scan locates critical objects


4-26-2005 8:50:16 AM - Scan started. (Full System Scan)

Listing running processes
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»

#:1 [smss.exe]
ModuleName : \SystemRoot\System32\smss.exe
Command Line : n/a
ProcessID : 472
ThreadCreationTime : 4-26-2005 1:49:12 PM
BasePriority : Normal


#:2 [csrss.exe]
ModuleName : \??\C:\WINDOWS\system32\csrss.exe
Command Line : C:\WINDOWS\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,3072,512 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ProfileControl=Off MaxRequestTh
ProcessID : 528
ThreadCreationTime : 4-26-2005 1:49:13 PM
BasePriority : Normal


#:3 [winlogon.exe]
ModuleName : \??\C:\WINDOWS\system32\winlogon.exe
Command Line : winlogon.exe
ProcessID : 552
ThreadCreationTime : 4-26-2005 1:49:13 PM
BasePriority : High


#:4 [services.exe]
ModuleName : C:\WINDOWS\system32\services.exe
Command Line : C:\WINDOWS\system32\services.exe
ProcessID : 596
ThreadCreationTime : 4-26-2005 1:49:14 PM
BasePriority : Normal
FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 5.1.2600.2180
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Services and Controller app
InternalName : services.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : services.exe

#:5 [lsass.exe]
ModuleName : C:\WINDOWS\system32\lsass.exe
Command Line : C:\WINDOWS\system32\lsass.exe
ProcessID : 608
ThreadCreationTime : 4-26-2005 1:49:14 PM
BasePriority : Normal
FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 5.1.2600.2180
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : LSA Shell (Export Version)
InternalName : lsass.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : lsass.exe

#:6 [svchost.exe]
ModuleName : C:\WINDOWS\system32\svchost.exe
Command Line : C:\WINDOWS\system32\svchost -k DcomLaunch
ProcessID : 788
ThreadCreationTime : 4-26-2005 1:49:14 PM
BasePriority : Normal
FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 5.1.2600.2180
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Generic Host Process for Win32 Services
InternalName : svchost.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : svchost.exe

#:7 [svchost.exe]
ModuleName : C:\WINDOWS\system32\svchost.exe
Command Line : C:\WINDOWS\system32\svchost -k rpcss
ProcessID : 844
ThreadCreationTime : 4-26-2005 1:49:14 PM
BasePriority : Normal
FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 5.1.2600.2180
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Generic Host Process for Win32 Services
InternalName : svchost.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : svchost.exe

#:8 [svchost.exe]
ModuleName : C:\WINDOWS\System32\svchost.exe
Command Line : C:\WINDOWS\System32\svchost.exe -k netsvcs
ProcessID : 880
ThreadCreationTime : 4-26-2005 1:49:14 PM
BasePriority : Normal
FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 5.1.2600.2180
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Generic Host Process for Win32 Services
InternalName : svchost.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : svchost.exe

#:9 [svchost.exe]
ModuleName : C:\WINDOWS\System32\svchost.exe
Command Line : C:\WINDOWS\System32\svchost.exe -k NetworkService
ProcessID : 928
ThreadCreationTime : 4-26-2005 1:49:14 PM
BasePriority : Normal
FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 5.1.2600.2180
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Generic Host Process for Win32 Services
InternalName : svchost.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : svchost.exe

#:10 [svchost.exe]
ModuleName : C:\WINDOWS\System32\svchost.exe
Command Line : C:\WINDOWS\System32\svchost.exe -k LocalService
ProcessID : 984
ThreadCreationTime : 4-26-2005 1:49:15 PM
BasePriority : Normal
FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 5.1.2600.2180
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Generic Host Process for Win32 Services
InternalName : svchost.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : svchost.exe

#:11 [spoolsv.exe]
ModuleName : C:\WINDOWS\system32\spoolsv.exe
Command Line : C:\WINDOWS\system32\spoolsv.exe
ProcessID : 1116
ThreadCreationTime : 4-26-2005 1:49:15 PM
BasePriority : Normal
FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 5.1.2600.2180
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Spooler SubSystem App
InternalName : spoolsv.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : spoolsv.exe

#:12 [kodakccs.exe]
ModuleName : C:\WINDOWS\system32\drivers\KodakCCS.exe
Command Line : C:\WINDOWS\system32\drivers\KodakCCS.exe
ProcessID : 1244
ThreadCreationTime : 4-26-2005 1:49:15 PM
BasePriority : Normal
FileVersion : 1.1.5100.4
ProductVersion : 4.4.0.0
ProductName : Kodak DC File System Driver (Win32)
CompanyName : Eastman Kodak Company
FileDescription : Kodak DC Ring 3 Conduit (Win32)
InternalName : KodakCCS.exe
LegalCopyright : Copyright © Eastman Kodak Co. 2000-2004
OriginalFilename : DcFsSvc.exe

#:13 [ntrtscan.exe]
ModuleName : C:\Program Files\Trend Micro\OfficeScan Client\ntrtscan.exe
Command Line : "C:\Program Files\Trend Micro\OfficeScan Client\ntrtscan.exe"
ProcessID : 1284
ThreadCreationTime : 4-26-2005 1:49:15 PM
BasePriority : Normal
FileVersion : 5.58.0.1063
ProductVersion : 5.58
ProductName : Trend Micro OfficeScan
CompanyName : Trend Micro Inc.
LegalCopyright : Copyright © 1999-2004 Trend Micro Incorporated. All rights reserved.
LegalTrademarks : Copyright © Trend Micro, Inc.

#:14 [tmlisten.exe]
ModuleName : C:\Program Files\Trend Micro\OfficeScan Client\tmlisten.exe
Command Line : "C:\Program Files\Trend Micro\OfficeScan Client\tmlisten.exe"
ProcessID : 1336
ThreadCreationTime : 4-26-2005 1:49:15 PM
BasePriority : Normal


#:15 [ofcdog.exe]
ModuleName : C:\Program Files\Trend Micro\OfficeScan Client\ofcdog.exe
Command Line : "C:\Program Files\Trend Micro\OfficeScan Client\ofcdog.exe"
ProcessID : 1556
ThreadCreationTime : 4-26-2005 1:49:17 PM
BasePriority : Normal


#:16 [alg.exe]
ModuleName : C:\WINDOWS\System32\alg.exe
Command Line : C:\WINDOWS\System32\alg.exe
ProcessID : 1652
ThreadCreationTime : 4-26-2005 1:49:18 PM
BasePriority : Normal
FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 5.1.2600.2180
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Application Layer Gateway Service
InternalName : ALG.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : ALG.exe

#:17 [explorer.exe]
ModuleName : C:\WINDOWS\Explorer.EXE
Command Line : C:\WINDOWS\Explorer.EXE
ProcessID : 1912
ThreadCreationTime : 4-26-2005 1:49:22 PM
BasePriority : Normal
FileVersion : 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 6.00.2900.2180
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Windows Explorer
InternalName : explorer
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : EXPLORER.EXE

#:18 [kodak software updater.exe]
ModuleName : C:\Program Files\Kodak\KODAK Software Updater\7288971\Program\Kodak Software Updater.exe
Command Line : "C:\Program Files\Kodak\KODAK Software Updater\7288971\Program\Kodak Software Updater.exe"
ProcessID : 248
ThreadCreationTime : 4-26-2005 1:49:31 PM
BasePriority : Normal


#:19 [userinit.exe]
ModuleName : C:\WINDOWS\system32\userinit.exe
Command Line : userinit.exe
ProcessID : 352
ThreadCreationTime : 4-26-2005 1:49:36 PM
BasePriority : Normal
FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 5.1.2600.2180
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Userinit Logon Application
InternalName : userinit
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : USERINIT.EXE

#:20 [ad-aware.exe]
ModuleName : C:\Program Files\Lavasoft\Ad-Aware SE Personal\Ad-Aware.exe
Command Line : "C:\Program Files\Lavasoft\Ad-Aware SE Personal\Ad-Aware.exe"
ProcessID : 492
ThreadCreationTime : 4-26-2005 1:49:56 PM
BasePriority : Normal
FileVersion : 6.2.0.206
ProductVersion : VI.Second Edition
ProductName : Lavasoft Ad-Aware SE
CompanyName : Lavasoft Sweden
FileDescription : Ad-Aware SE Core application
InternalName : Ad-Aware.exe
LegalCopyright : Copyright © Lavasoft Sweden
OriginalFilename : Ad-Aware.exe
Comments : All Rights Reserved

#:21 [wuauclt.exe]
ModuleName : C:\WINDOWS\system32\wuauclt.exe
Command Line : "C:\WINDOWS\system32\wuauclt.exe" /RunStoreAsComServer Local\[370]SUSDS8ccccabb0bcc7047ad9715db00805736
ProcessID : 524
ThreadCreationTime : 4-26-2005 1:50:01 PM
BasePriority : Normal
FileVersion : 5.4.3790.2182 built by: srv03_rtm(ntvbl04)
ProductVersion : 5.4.3790.2182
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Automatic Updates
InternalName : wuauclt.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : wuauclt.exe

#:22 [wmiprvse.exe]
ModuleName : C:\WINDOWS\System32\wbem\wmiprvse.exe
Command Line : C:\WINDOWS\System32\wbem\wmiprvse.exe -Embedding
ProcessID : 820
ThreadCreationTime : 4-26-2005 1:50:04 PM
BasePriority : Normal
FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 5.1.2600.2180
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : WMI
InternalName : Wmiprvse.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : Wmiprvse.exe

Memory scan result:
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
New critical objects: 0
Objects found so far: 0


Started registry scan
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»

AdRotator Object Recognized!
Type : Regkey
Data :
Category : Malware
Comment :
Rootkey : HKEY_CLASSES_ROOT
Object : interface\{1cfb8b32-4053-4144-af6f-1540eec7f101}

AdRotator Object Recognized!
Type : RegValue
Data :
Category : Malware
Comment :
Rootkey : HKEY_CLASSES_ROOT
Object : interface\{1cfb8b32-4053-4144-af6f-1540eec7f101}
Value :

Elitum.ElitebarBHO Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment :
Rootkey : HKEY_CLASSES_ROOT
Object : typelib\{ca9fc31a-6f35-4493-b629-e64bd6170a17}\1.0

Elitum.ElitebarBHO Object Recognized!
Type : RegValue
Data :
Category : Data Miner
Comment :
Rootkey : HKEY_CLASSES_ROOT
Object : typelib\{ca9fc31a-6f35-4493-b629-e64bd6170a17}\1.0
Value :

Elitum.ElitebarBHO Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment :
Rootkey : HKEY_CLASSES_ROOT
Object : typelib\{ca9fc31a-6f35-4493-b629-e64bd6170a17}

Elitum.ElitebarBHO Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment :
Rootkey : HKEY_CLASSES_ROOT
Object : interface\{dbf33e89-1784-42ac-ade4-a428f56550a3}

Elitum.ElitebarBHO Object Recognized!
Type : RegValue
Data :
Category : Data Miner
Comment :
Rootkey : HKEY_CLASSES_ROOT
Object : interface\{dbf33e89-1784-42ac-ade4-a428f56550a3}
Value :

Elitum.ElitebarBHO Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment :
Rootkey : HKEY_CLASSES_ROOT
Object : interface\{a9b28ef6-abf3-463b-a3d8-4d0d0badfadc}

Elitum.ElitebarBHO Object Recognized!
Type : RegValue
Data :
Category : Data Miner
Comment :
Rootkey : HKEY_CLASSES_ROOT
Object : interface\{a9b28ef6-abf3-463b-a3d8-4d0d0badfadc}
Value :

Elitum.ElitebarBHO Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment :
Rootkey : HKEY_CLASSES_ROOT
Object : clsid\{0a1d22c3-37be-470c-9c29-e3074ee0574b}

PeopleOnPage Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment :
Rootkey : HKEY_USERS
Object : S-1-5-21-1720583248-1557856872-312552118-1419\software\apropos

Elitum.ElitebarBHO Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment :
Rootkey : HKEY_LOCAL_MACHINE
Object : software\elitum\elitesidebar

Elitum.ElitebarBHO Object Recognized!
Type : RegValue
Data :
Category : Data Miner
Comment :
Rootkey : HKEY_LOCAL_MACHINE
Object : software\elitum\elitesidebar
Value : UpdateAttempt

Ebates MoneyMaker Object Recognized!
Type : RegValue
Data :
Category : Data Miner
Comment : "AC"
Rootkey : HKEY_USERS
Object : S-1-5-21-1720583248-1557856872-312552118-1419\software\lq
Value : AC

Elitum.ElitebarBHO Object Recognized!
Type : RegValue
Data :
Category : Data Miner
Comment : "{825CF5BD-8862-4430-B771-0C15C5CA8DEF}"
Rootkey : HKEY_USERS
Object : S-1-5-21-1720583248-1557856872-312552118-1419\software\microsoft\internet explorer\toolbar\webbrowser
Value : {825CF5BD-8862-4430-B771-0C15C5CA8DEF}

Favoriteman Object Recognized!
Type : RegValue
Data :
Category : Malware
Comment : "Counter"
Rootkey : HKEY_USERS
Object : S-1-5-21-1720583248-1557856872-312552118-1419\software\microsoft\windows
Value : Counter

Favoriteman Object Recognized!
Type : RegValue
Data :
Category : Malware
Comment : "Server"
Rootkey : HKEY_USERS
Object : S-1-5-21-1720583248-1557856872-312552118-1419\software\microsoft\windows
Value : Server

Favoriteman Object Recognized!
Type : RegValue
Data :
Category : Malware
Comment : "Object"
Rootkey : HKEY_USERS
Object : S-1-5-21-1720583248-1557856872-312552118-1419\software\microsoft\windows
Value : Object

Elitum.ElitebarBHO Object Recognized!
Type : RegValue
Data :
Category : Data Miner
Comment : "{28CAEFF3-0F18-4036-B504-51D73BD81ABC}"
Rootkey : HKEY_LOCAL_MACHINE
Object : software\microsoft\windows\currentversion\explorer\browser helper objects
Value : {28CAEFF3-0F18-4036-B504-51D73BD81ABC}

Registry Scan result:
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
New critical objects: 19
Objects found so far: 19


Started deep registry scan
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
Possible Browser Hijack attempt : S-1-5-21-1720583248-1557856872-312552118-1419\Software\Microsoft\Internet Explorer\MainSearch Pagesearchmiracle.com

Possible Browser Hijack attempt Object Recognized!
Type : RegData
Data : "http://searchmiracle.com/sp.php"
Category : Data Miner
Comment : Possible Browser Hijack attempt
Rootkey : HKEY_USERS
Object : S-1-5-21-1720583248-1557856872-312552118-1419\Software\Microsoft\Internet Explorer\Main
Value : Search Page
Data : "http://searchmiracle.com/sp.php"
Possible Browser Hijack attempt : S-1-5-21-1720583248-1557856872-312552118-1419\Software\Microsoft\Internet ExplorerSearchURLsearchmiracle.com

Possible Browser Hijack attempt Object Recognized!
Type : RegData
Data : "http://searchmiracle.com/sp.php"
Category : Data Miner
Comment : Possible Browser Hijack attempt
Rootkey : HKEY_USERS
Object : S-1-5-21-1720583248-1557856872-312552118-1419\Software\Microsoft\Internet Explorer
Value : SearchURL
Data : "http://searchmiracle.com/sp.php"

ClearSearch Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment : C:\Program Files\84hjm1oq\84hjm1oq.dll
Rootkey : HKEY_CLASSES_ROOT
Object : CLSID\{022CF774-8F65-4A73-9B52-75898E78D31D}

ClearSearch Object Recognized!
Type : File
Data : 84hjm1oq.dll
Category : Data Miner
Comment :
Object : c:\program files\84hjm1oq\
FileVersion : 1.83.0.5
ProductVersion : 1.83.0.5
InternalName : Grip.dll
OriginalFilename : Grip.dll
Comments : Build 83 E


ClearSearch Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment : C:\Program Files\84hjm1oq\84hjm1oq.dll
Rootkey : HKEY_CLASSES_ROOT
Object : CLSID\{0275BDB3-D8AA-49F5-B0EA-18E4A7D4F989}

ClearSearch Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment : C:\Program Files\84hjm1oq\84hjm1oq.dll
Rootkey : HKEY_CLASSES_ROOT
Object : CLSID\{053774E6-DDF2-4FE8-A282-5B4289A81E0F}

ClearSearch Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment : C:\Program Files\84hjm1oq\84hjm1oq.dll
Rootkey : HKEY_CLASSES_ROOT
Object : CLSID\{056434CF-3192-4203-83CF-BD14EF798CAC}

ClearSearch Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment : C:\Program Files\84hjm1oq\84hjm1oq.dll
Rootkey : HKEY_CLASSES_ROOT
Object : CLSID\{065DAF9C-80DA-4C0F-A1B8-E22D44E7DD83}

ClearSearch Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment : C:\Program Files\84hjm1oq\84hjm1oq.dll
Rootkey : HKEY_CLASSES_ROOT
Object : CLSID\{07BCBD35-4823-496D-8C44-86A16E722056}

ClearSearch Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment : C:\Program Files\84hjm1oq\84hjm1oq.dll
Rootkey : HKEY_CLASSES_ROOT
Object : CLSID\{0B98BD01-8282-43AA-B525-C087FDDA4DE1}

ClearSearch Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment : C:\Program Files\84hjm1oq\84hjm1oq.dll
Rootkey : HKEY_CLASSES_ROOT
Object : CLSID\{0F193C05-F46B-4C24-9E02-57D2BCBC4ED5}

ClearSearch Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment : C:\Program Files\84hjm1oq\84hjm1oq.dll
Rootkey : HKEY_CLASSES_ROOT
Object : CLSID\{1032120B-CAE8-4BC8-AA06-CD96055D3718}

ClearSearch Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment : C:\Program Files\84hjm1oq\84hjm1oq.dll
Rootkey : HKEY_CLASSES_ROOT
Object : CLSID\{1203B831-A395-4AD6-B322-246DAA5043D8}

ClearSearch Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment : C:\Program Files\84hjm1oq\84hjm1oq.dll
Rootkey : HKEY_CLASSES_ROOT
Object : CLSID\{1255F911-6403-44CA-97B9-A128FA165346}

ClearSearch Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment : C:\Program Files\84hjm1oq\84hjm1oq.dll
Rootkey : HKEY_CLASSES_ROOT
Object : CLSID\{148C2E33-CDFF-46A8-ADAE-A3E86B4AAC96}

ClearSearch Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment : C:\Program Files\84hjm1oq\84hjm1oq.dll
Rootkey : HKEY_CLASSES_ROOT
Object : CLSID\{200ADA76-8B38-4E61-B21F-CA834F952BA0}

ClearSearch Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment : C:\Program Files\84hjm1oq\84hjm1oq.dll
Rootkey : HKEY_CLASSES_ROOT
Object : CLSID\{2481D29E-A64B-4B87-9EA6-3FE2C6406C5E}

ClearSearch Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment : C:\Program Files\84hjm1oq\84hjm1oq.dll
Rootkey : HKEY_CLASSES_ROOT
Object : CLSID\{251B8B81-A70A-401E-9910-AE3F16C9525D}

ClearSearch Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment : C:\Program Files\84hjm1oq\84hjm1oq.dll
Rootkey : HKEY_CLASSES_ROOT
Object : CLSID\{2AA93495-1426-4BFD-836E-3995C5F28311}

ClearSearch Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment : C:\Program Files\84hjm1oq\84hjm1oq.dll
Rootkey : HKEY_CLASSES_ROOT
Object : CLSID\{2D0EEA51-3B28-4C7B-943C-A20237CCD1B7}

ClearSearch Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment : C:\Program Files\84hjm1oq\84hjm1oq.dll
Rootkey : HKEY_CLASSES_ROOT
Object : CLSID\{2EF25180-F159-46F2-A983-610159DC27DF}

ClearSearch Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment : C:\Program Files\84hjm1oq\84hjm1oq.dll
Rootkey : HKEY_CLASSES_ROOT
Object : CLSID\{2F75A37C-13A2-4575-B6C0-CE224A447B1B}

ClearSearch Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment : C:\Program Files\84hjm1oq\84hjm1oq.dll
Rootkey : HKEY_CLASSES_ROOT
Object : CLSID\{31CA3CC8-E787-41AE-87FB-BFFC67095FA9}

ClearSearch Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment : C:\Program Files\84hjm1oq\84hjm1oq.dll
Rootkey : HKEY_CLASSES_ROOT
Object : CLSID\{34EBA5AC-C5A0-442E-A15F-6D9BA1106BF6}

ClearSearch Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment : C:\Program Files\84hjm1oq\84hjm1oq.dll
Rootkey : HKEY_CLASSES_ROOT
Object : CLSID\{3BEDAC46-D28D-41FC-AE0A-7BD624D214E9}

ClearSearch Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment : C:\Program Files\84hjm1oq\84hjm1oq.dll
Rootkey : HKEY_CLASSES_ROOT
Object : CLSID\{423F833C-8696-48A4-82D3-F6ED037DE439}

ClearSearch Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment : C:\Program Files\84hjm1oq\84hjm1oq.dll
Rootkey : HKEY_CLASSES_ROOT
Object : CLSID\{460C32D9-8915-4B58-98C5-58BB5742E567}

ClearSearch Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment : C:\Program Files\84hjm1oq\84hjm1oq.dll
Rootkey : HKEY_CLASSES_ROOT
Object : CLSID\{5457DD25-B3D9-4963-A9C8-19EAD64F2FA0}

ClearSearch Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment : C:\Program Files\84hjm1oq\84hjm1oq.dll
Rootkey : HKEY_CLASSES_ROOT
Object : CLSID\{5A329E52-8DD2-4D7C-99AF-EDFC074FB62C}

ClearSearch Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment : C:\Program Files\84hjm1oq\84hjm1oq.dll
Rootkey : HKEY_CLASSES_ROOT
Object : CLSID\{5DF4B08F-1493-4E07-B9FD-EDDA69AF2F2D}

ClearSearch Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment : C:\Program Files\84hjm1oq\84hjm1oq.dll
Rootkey : HKEY_CLASSES_ROOT
Object : CLSID\{5F0C4815-D864-4337-9BCB-BAFB854972CC}

ClearSearch Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment : C:\Program Files\84hjm1oq\84hjm1oq.dll
Rootkey : HKEY_CLASSES_ROOT
Object : CLSID\{5F7F9DD4-DEA3-4987-91B3-0B26E7015F86}

ClearSearch Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment : C:\Program Files\84hjm1oq\84hjm1oq.dll
Rootkey : HKEY_CLASSES_ROOT
Object : CLSID\{60F4039B-3CCA-4440-A19F-B2618BBD4E0C}

ClearSearch Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment : C:\Program Files\84hjm1oq\84hjm1oq.dll
Rootkey : HKEY_CLASSES_ROOT
Object : CLSID\{61993B37-5603-4E3E-B920-5FCF04F7B176}

ClearSearch Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment : C:\Program Files\84hjm1oq\84hjm1oq.dll
Rootkey : HKEY_CLASSES_ROOT
Object : CLSID\{61A6143A-0D0F-4A72-BC26-F9FAEC886B18}

ClearSearch Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment : C:\Program Files\84hjm1oq\84hjm1oq.dll
Rootkey : HKEY_CLASSES_ROOT
Object : CLSID\{68C028FC-9C2F-4588-9B86-6AE1DEC798E2}

ClearSearch Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment : C:\Program Files\84hjm1oq\84hjm1oq.dll
Rootkey : HKEY_CLASSES_ROOT
Object : CLSID\{6FA292FB-2907-456F-A1C6-139B5F5C1820}

ClearSearch Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment : C:\Program Files\84hjm1oq\84hjm1oq.dll
Rootkey : HKEY_CLASSES_ROOT
Object : CLSID\{72028FD1-F11F-4CE7-B47F-80078F3EFF96}

ClearSearch Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment : C:\Program Files\84hjm1oq\84hjm1oq.dll
Rootkey : HKEY_CLASSES_ROOT
Object : CLSID\{72431A11-6AD9-4DDA-8F6F-F017C3E05326}

ClearSearch Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment : C:\Program Files\84hjm1oq\84hjm1oq.dll
Rootkey : HKEY_CLASSES_ROOT
Object : CLSID\{731F4D97-BC07-43AA-8FC3-6C8F1347EAE1}

ClearSearch Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment : C:\Program Files\84hjm1oq\84hjm1oq.dll
Rootkey : HKEY_CLASSES_ROOT
Object : CLSID\{86D7715E-7275-4F3A-A336-3E5B638D0832}

ClearSearch Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment : C:\Program Files\84hjm1oq\84hjm1oq.dll
Rootkey : HKEY_CLASSES_ROOT
Object : CLSID\{8A9FA2D2-4C58-417C-A285-D6470F064761}

ClearSearch Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment : C:\Program Files\84hjm1oq\84hjm1oq.dll
Rootkey : HKEY_CLASSES_ROOT
Object : CLSID\{90C22F14-8B65-443F-9A35-B178796DEBB0}

ClearSearch Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment : C:\Program Files\84hjm1oq\84hjm1oq.dll
Rootkey : HKEY_CLASSES_ROOT
Object : CLSID\{92D2D76F-BD0E-42A1-8B88-0333BF3DB196}

ClearSearch Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment : C:\Program Files\84hjm1oq\84hjm1oq.dll
Rootkey : HKEY_CLASSES_ROOT
Object : CLSID\{92E16F2F-3547-4AB3-95B0-7600A8E83B99}

ClearSearch Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment : C:\Program Files\84hjm1oq\84hjm1oq.dll
Rootkey : HKEY_CLASSES_ROOT
Object : CLSID\{93DD81F7-4F21-413C-9F77-B76AA3C81274}

ClearSearch Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment : C:\Program Files\84hjm1oq\84hjm1oq.dll
Rootkey : HKEY_CLASSES_ROOT
Object : CLSID\{9AFE162C-442F-4C65-9CC6-F14508E3B947}

ClearSearch Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment : C:\Program Files\84hjm1oq\84hjm1oq.dll
Rootkey : HKEY_CLASSES_ROOT
Object : CLSID\{9CF68115-D568-4CE0-A72E-7B899DA855A4}

ClearSearch Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment : C:\Program Files\84hjm1oq\84hjm1oq.dll
Rootkey : HKEY_CLASSES_ROOT
Object : CLSID\{A1BF837D-8AFA-4C63-8E02-2EB5EFCF4C32}

ClearSearch Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment : C:\Program Files\84hjm1oq\84hjm1oq.dll
Rootkey : HKEY_CLASSES_ROOT
Object : CLSID\{A1DF6B1E-C2E2-4313-B4BE-0137761D0BEF}

ClearSearch Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment : C:\Program Files\84hjm1oq\84hjm1oq.dll
Rootkey : HKEY_CLASSES_ROOT
Object : CLSID\{AD98BEA1-89B1-4433-B8A6-FE6E400E3CCF}

ClearSearch Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment : C:\Program Files\84hjm1oq\84hjm1oq.dll
Rootkey : HKEY_CLASSES_ROOT
Object : CLSID\{AD9AE70E-B027-43BD-9618-0864398D1254}

ClearSearch Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment : C:\Program Files\84hjm1oq\84hjm1oq.dll
Rootkey : HKEY_CLASSES_ROOT
Object : CLSID\{B0DAE697-F28F-4143-8B4A-F1459989D38D}

ClearSearch Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment : C:\Program Files\84hjm1oq\84hjm1oq.dll
Rootkey : HKEY_CLASSES_ROOT
Object : CLSID\{B9C17B99-645F-4355-BEB2-2EED8ED4E6AF}

ClearSearch Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment : C:\Program Files\84hjm1oq\84hjm1oq.dll
Rootkey : HKEY_CLASSES_ROOT
Object : CLSID\{BD9D5A85-87F6-43D8-9A2A-3A1374FC7F9B}

ClearSearch Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment : C:\Program Files\84hjm1oq\84hjm1oq.dll
Rootkey : HKEY_CLASSES_ROOT
Object : CLSID\{C54A0161-4A65-47A5-9A89-70F24FC4DB3A}

ClearSearch Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment : C:\Program Files\84hjm1oq\84hjm1oq.dll
Rootkey : HKEY_CLASSES_ROOT
Object : CLSID\{C71F0D52-FC57-409A-BB3B-34E399EE687F}

ClearSearch Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment : C:\Program Files\84hjm1oq\84hjm1oq.dll
Rootkey : HKEY_CLASSES_ROOT
Object : CLSID\{C858A7CB-C18D-4C14-AE6A-E71398716A1C}

ClearSearch Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment : C:\Program Files\84hjm1oq\84hjm1oq.dll
Rootkey : HKEY_CLASSES_ROOT
Object : CLSID\{CC8FA8E6-0273-4DF9-BE27-AB0603A14E82}

ClearSearch Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment : C:\Program Files\84hjm1oq\84hjm1oq.dll
Rootkey : HKEY_CLASSES_ROOT
Object : CLSID\{CE6E2A0E-CA3A-4208-B468-ADF81320A578}

ClearSearch Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment : C:\Program Files\84hjm1oq\84hjm1oq.dll
Rootkey : HKEY_CLASSES_ROOT
Object : CLSID\{D8F1C554-79E1-497B-9DA1-A104FF096F38}

ClearSearch Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment : C:\Program Files\84hjm1oq\84hjm1oq.dll
Rootkey : HKEY_CLASSES_ROOT
Object : CLSID\{DCA9F447-23A9-4F99-B40D-81C0EAF4ADBF}

ClearSearch Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment : C:\Program Files\84hjm1oq\84hjm1oq.dll
Rootkey : HKEY_CLASSES_ROOT
Object : CLSID\{E19B9F26-5E0F-4FA5-B8DE-42B2FD1ECE11}

ClearSearch Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment : C:\Program Files\84hjm1oq\84hjm1oq.dll
Rootkey : HKEY_CLASSES_ROOT
Object : CLSID\{EB284001-E360-4CCF-B5FF-79C529B336D4}

ClearSearch Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment : C:\Program Files\84hjm1oq\84hjm1oq.dll
Rootkey : HKEY_CLASSES_ROOT
Object : CLSID\{ED95BF55-5B1C-490E-94E8-194A99AA3ECE}

ClearSearch Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment : C:\Program Files\84hjm1oq\84hjm1oq.dll
Rootkey : HKEY_CLASSES_ROOT
Object : CLSID\{EE319F8F-4D8B-46FC-B949-C6A19D52CAA9}

ClearSearch Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment : C:\Program Files\84hjm1oq\84hjm1oq.dll
Rootkey : HKEY_CLASSES_ROOT
Object : CLSID\{FF4B04DD-71D2-4714-995C-6C3E15FEC8F0}

ClearSearch Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment : C:\Program Files\84hjm1oq\84hjm1oq.dll
Rootkey : HKEY_CLASSES_ROOT
Object : CLSID\{FFFEABD4-EBB2-4916-84A8-4A560FB964BC}

AdRotator Object Recognized!
Type : RegValue
Data :
Category : Malware
Comment : "ecdqmc"
Rootkey : HKEY_LOCAL_MACHINE
Object : Software\Microsoft\Windows\CurrentVersion\Run
Value : ecdqmc

AdRotator Object Recognized!
Type : File
Data : ecdqmc.exe
Category : Malware
Comment :
Object : c:\windows\system32\
FileVersion : 1, 0, 0, 1
ProductVersion : 1, 0, 0, 1
ProductName : localFilemove Application
FileDescription : localFilemove MFC Application
InternalName : localFilemove
LegalCopyright : Copyright © 2004
OriginalFilename : localFilemove.EXE


AdRotator Object Recognized!
Type : RegValue
Data :
Category : Malware
Comment : "rvtwuc"
Rootkey : HKEY_LOCAL_MACHINE
Object : Software\Microsoft\Windows\CurrentVersion\Run
Value : rvtwuc

AdRotator Object Recognized!
Type : File
Data : rvtwuc.exe
Category : Malware
Comment :
Object : c:\windows\system32\
FileVersion : 1, 0, 0, 1
ProductVersion : 1, 0, 0, 1
ProductName : localFilemove Application
FileDescription : localFilemove MFC Application
InternalName : localFilemove
LegalCopyright : Copyright © 2004
OriginalFilename : localFilemove.EXE


Deep registry scan result:
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
New critical objects: 69
Objects found so far: 91


Started Tracking Cookie scan
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»


Tracking Cookie Object Recognized!
Type : IECache Entry
Data : afeigel@revenue[2].txt
Category : Data Miner
Comment :
Value : C:\Documents and Settings\afiegel\Cookies\afeigel@revenue[2].txt

Tracking cookie scan result:
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
New critical objects: 1
Objects found so far: 92



Deep scanning and examining files (C:)
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»

Tracking Cookie Object Recognized!
Type : IECache Entry
Data : administrator@atdmt[2].txt
Category : Data Miner
Comment :
Value : C:\Documents and Settings\administrator.LONG\Cookies\administrator@atdmt[2].txt

Tracking Cookie Object Recognized!
Type : IECache Entry
Data : jeffc@atdmt[1].txt
Category : Data Miner
Comment :
Value : C:\Documents and Settings\jeffc\Cookies\jeffc@atdmt[1].txt

Tracking Cookie Object Recognized!
Type : IECache Entry
Data : [email protected][1].txt
Category : Data Miner
Comment :
Value : C:\Documents and Settings\wchlystun\Cookies\[email protected][1].txt

ClearSearch Object Recognized!
Type : File
Data : 30bixia4.DLL
Category : Data Miner
Comment :
Object : C:\Program Files\84hjm1oq\
FileVersion : 1, 7, 0, 2
ProductVersion : 1, 7, 0, 2
ProductName : ClearSearch LoaderUpdater
CompanyName : ClearSearch
FileDescription : LoaderUpdater
InternalName : LoaderUpdater
LegalCopyright : Copyright © 2004
OriginalFilename : LoaderUpdater.dll


ClearSearch Object Recognized!
Type : File
Data : 3zojf1n8.DLL
Category : Data Miner
Comment :
Object : C:\Program Files\84hjm1oq\
FileVersion : 1, 0, 83, 5
ProductVersion : 1, 0, 83, 5


ClearSearch Object Recognized!
Type : File
Data : 5glww6td.DLL
Category : Data Miner
Comment :
Object : C:\Program Files\84hjm1oq\
FileVersion : 1, 77, 0, 1
ProductVersion : 1, 77, 0, 1


ClearSearch Object Recognized!
Type : File
Data : 84hjm1oq1.dll
Category : Data Miner
Comment :
Object : C:\Program Files\84hjm1oq\84hjm1oq1\
FileVersion : 1, 77, 0, 2
ProductVersion : 1, 77, 0, 2


ClearSearch Object Recognized!
Type : File
Data : 84hjm1oq1.exe
Category : Data Miner
Comment :
Object : C:\Program Files\84hjm1oq\84hjm1oq1\
FileVersion : 1, 0, 0, 2
ProductVersion : 1, 0, 0, 2
LegalCopyright : Copyright © 2004


ClearSearch Object Recognized!
Type : File
Data : avxyg7jl.DLL
Category : Data Miner
Comment :
Object : C:\Program Files\84hjm1oq\



ClearSearch Object Recognized!
Type : File
Data : gs5k94gy.DLL
Category : Data Miner
Comment :
Object : C:\Program Files\84hjm1oq\
FileVersion : 1, 77, 0, 1
ProductVersion : 1, 77, 0, 1


ClearSearch Object Recognized!
Type : File
Data : ixw9qvuk.DLL
Category : Data Miner
Comment :
Object : C:\Program Files\84hjm1oq\
FileVersion : 1, 7, 0, 2
ProductVersion : 1, 7, 0, 2
ProductName : ClearSearch LoaderUpdater
CompanyName : ClearSearch
FileDescription : LoaderUpdater
InternalName : LoaderUpdater
LegalCopyright : Copyright © 2004
OriginalFilename : LoaderUpdater.dll


ClearSearch Object Recognized!
Type : File
Data : pvi9xrnj.DLL
Category : Data Miner
Comment :
Object : C:\Program Files\84hjm1oq\



ClearSearch Object Recognized!
Type : File
Data : q9delcu9.DLL
Category : Data Miner
Comment :
Object : C:\Program Files\84hjm1oq\
FileVersion : 1, 7, 0, 2
ProductVersion : 1, 7, 0, 2
ProductName : ClearSearch LoaderUpdater
CompanyName : ClearSearch
FileDescription : LoaderUpdater
InternalName : LoaderUpdater
LegalCopyright : Copyright © 2004
OriginalFilename : LoaderUpdater.dll


ClearSearch Object Recognized!
Type : File
Data : tv0kdwpm.DLL
Category : Data Miner
Comment :
Object : C:\Program Files\84hjm1oq\
FileVersion : 1, 77, 0, 1
ProductVersion : 1, 77, 0, 1


ClearSearch Object Recognized!
Type : File
Data : wemtmijm.DLL
Category : Data Miner
Comment :
Object : C:\Program Files\84hjm1oq\



IBIS Toolbar Object Recognized!
Type : File
Data : A0019338.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP188\



180Solutions Object Recognized!
Type : File
Data : A0019360.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP188\



180Solutions Object Recognized!
Type : File
Data : A0019361.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP188\



180Solutions Object Recognized!
Type : File
Data : A0019362.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP188\
FileVersion : 5, 15, 0, 15
ProductVersion : 5, 15, 0, 15
ProductName : Search Assistant
CompanyName : 180solutions, Inc.
FileDescription : Search Assistant
LegalCopyright : Copyright © 2004, 180solutions Inc.


IBIS Toolbar Object Recognized!
Type : File
Data : A0019366.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP188\



IBIS Toolbar Object Recognized!
Type : File
Data : A0019368.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP188\



ClearSearch Object Recognized!
Type : File
Data : A0019372.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP188\
FileVersion : 1, 77, 0, 2
ProductVersion : 1, 77, 0, 2


IBIS Toolbar Object Recognized!
Type : File
Data : A0019389.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP188\



ClearSearch Object Recognized!
Type : File
Data : A0019397.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP189\
FileVersion : 1, 0, 0, 2
ProductVersion : 1, 0, 0, 2
LegalCopyright : Copyright © 2004


DealHelper Object Recognized!
Type : File
Data : A0019405.exe
Category : Malware
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP189\
FileVersion : 1, 0, 0, 1
ProductVersion : 1, 0, 0, 1
ProductName : version Application
FileDescription : version MFC Application
InternalName : version
LegalCopyright : Copyright © 2003
OriginalFilename : version.EXE


IBIS Toolbar Object Recognized!
Type : File
Data : A0019441.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP190\



ClearSearch Object Recognized!
Type : File
Data : A0019452.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP191\
FileVersion : 1, 77, 0, 2
ProductVersion : 1, 77, 0, 2


ClearSearch Object Recognized!
Type : File
Data : A0019453.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP191\
FileVe
  • 0

#13
amf2880
Posted 26 April 2005 - 08:04 AM

amf2880

    Member

  • Topic Starter
  • Member
  • PipPip
  • 15 posts
2nd portion of log file - 4/26:


ClearSearch Object Recognized!
Type : File
Data : A0019453.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP191\
FileVersion : 1, 0, 0, 2
ProductVersion : 1, 0, 0, 2
LegalCopyright : Copyright © 2004


IBIS Toolbar Object Recognized!
Type : File
Data : A0019743.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP192\



IBIS Toolbar Object Recognized!
Type : File
Data : A0019745.cfg
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP192\



IBIS Toolbar Object Recognized!
Type : File
Data : A0019748.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP192\



IBIS Toolbar Object Recognized!
Type : File
Data : A0019767.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP193\



IBIS Toolbar Object Recognized!
Type : File
Data : A0019779.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP194\



ClearSearch Object Recognized!
Type : File
Data : A0019786.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP194\
FileVersion : 1, 77, 0, 2
ProductVersion : 1, 77, 0, 2


ClearSearch Object Recognized!
Type : File
Data : A0019787.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP194\
FileVersion : 1, 0, 0, 2
ProductVersion : 1, 0, 0, 2
LegalCopyright : Copyright © 2004


Adintelligence.AproposToolbar Object Recognized!
Type : File
Data : A0019798.exe
Category : Misc
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP194\



IBIS Toolbar Object Recognized!
Type : File
Data : A0019814.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP194\



IBIS Toolbar Object Recognized!
Type : File
Data : A0019948.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP196\



IBIS Toolbar Object Recognized!
Type : File
Data : A0019949.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP196\



IBIS Toolbar Object Recognized!
Type : File
Data : A0019952.cfg
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP196\



IBIS Toolbar Object Recognized!
Type : File
Data : A0019959.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP196\



IBIS Toolbar Object Recognized!
Type : File
Data : A0019960.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP196\



ClearSearch Object Recognized!
Type : File
Data : A0020095.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP196\
FileVersion : 1, 77, 0, 2
ProductVersion : 1, 77, 0, 2


ClearSearch Object Recognized!
Type : File
Data : A0020096.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP196\
FileVersion : 1, 0, 0, 2
ProductVersion : 1, 0, 0, 2
LegalCopyright : Copyright © 2004


ClearSearch Object Recognized!
Type : File
Data : A0020154.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP196\
FileVersion : 1, 77, 0, 2
ProductVersion : 1, 77, 0, 2


ClearSearch Object Recognized!
Type : File
Data : A0020155.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP196\
FileVersion : 1, 0, 0, 2
ProductVersion : 1, 0, 0, 2
LegalCopyright : Copyright © 2004


IBIS Toolbar Object Recognized!
Type : File
Data : A0020160.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP197\



ClearSearch Object Recognized!
Type : File
Data : A0023373.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP202\
FileVersion : 1, 77, 0, 2
ProductVersion : 1, 77, 0, 2


ClearSearch Object Recognized!
Type : File
Data : A0023374.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP202\
FileVersion : 1, 0, 0, 2
ProductVersion : 1, 0, 0, 2
LegalCopyright : Copyright © 2004


Adintelligence.AproposToolbar Object Recognized!
Type : File
Data : A0023445.exe
Category : Misc
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP202\



ClearSearch Object Recognized!
Type : File
Data : A0023453.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP202\
FileVersion : 1, 77, 0, 2
ProductVersion : 1, 77, 0, 2


ClearSearch Object Recognized!
Type : File
Data : A0023454.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP202\
FileVersion : 1, 0, 0, 2
ProductVersion : 1, 0, 0, 2
LegalCopyright : Copyright © 2004


ClearSearch Object Recognized!
Type : File
Data : A0023637.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP204\
FileVersion : 1, 77, 0, 2
ProductVersion : 1, 77, 0, 2


ClearSearch Object Recognized!
Type : File
Data : A0023638.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP204\
FileVersion : 1, 0, 0, 2
ProductVersion : 1, 0, 0, 2
LegalCopyright : Copyright © 2004


ClearSearch Object Recognized!
Type : File
Data : A0023692.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP205\
FileVersion : 1, 77, 0, 2
ProductVersion : 1, 77, 0, 2


ClearSearch Object Recognized!
Type : File
Data : A0023693.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP205\
FileVersion : 1, 0, 0, 2
ProductVersion : 1, 0, 0, 2
LegalCopyright : Copyright © 2004


IBIS Toolbar Object Recognized!
Type : File
Data : A0023700.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP205\



ClearSearch Object Recognized!
Type : File
Data : A0023736.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP206\
FileVersion : 1, 77, 0, 2
ProductVersion : 1, 77, 0, 2


ClearSearch Object Recognized!
Type : File
Data : A0023737.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP206\
FileVersion : 1, 0, 0, 2
ProductVersion : 1, 0, 0, 2
LegalCopyright : Copyright © 2004


ClearSearch Object Recognized!
Type : File
Data : A0023767.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP206\
FileVersion : 1, 77, 0, 2
ProductVersion : 1, 77, 0, 2


ClearSearch Object Recognized!
Type : File
Data : A0023768.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP206\
FileVersion : 1, 0, 0, 2
ProductVersion : 1, 0, 0, 2
LegalCopyright : Copyright © 2004


Elitum.ElitebarBHO Object Recognized!
Type : File
Data : A0023769.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP206\
FileVersion : 1, 0, 0, 8
ProductVersion : 1, 0, 0, 8
ProductName : Elite SideBar
FileDescription : Elite SideBar
InternalName : Elite SideBar
LegalCopyright : Copyright 2004
OriginalFilename : EliteSideBar.DLL


Adintelligence.AproposToolbar Object Recognized!
Type : File
Data : A0023807.exe
Category : Misc
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP206\



ClearSearch Object Recognized!
Type : File
Data : A0023815.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP206\
FileVersion : 1, 77, 0, 2
ProductVersion : 1, 77, 0, 2


ClearSearch Object Recognized!
Type : File
Data : A0023816.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP206\
FileVersion : 1, 0, 0, 2
ProductVersion : 1, 0, 0, 2
LegalCopyright : Copyright © 2004


ClearSearch Object Recognized!
Type : File
Data : A0023877.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP207\
FileVersion : 1, 77, 0, 2
ProductVersion : 1, 77, 0, 2


ClearSearch Object Recognized!
Type : File
Data : A0023878.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP207\
FileVersion : 1, 0, 0, 2
ProductVersion : 1, 0, 0, 2
LegalCopyright : Copyright © 2004


ClearSearch Object Recognized!
Type : File
Data : A0023937.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP208\
FileVersion : 1, 77, 0, 2
ProductVersion : 1, 77, 0, 2


ClearSearch Object Recognized!
Type : File
Data : A0023938.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP208\
FileVersion : 1, 0, 0, 2
ProductVersion : 1, 0, 0, 2
LegalCopyright : Copyright © 2004


ClearSearch Object Recognized!
Type : File
Data : A0024025.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP209\
FileVersion : 1, 77, 0, 2
ProductVersion : 1, 77, 0, 2


ClearSearch Object Recognized!
Type : File
Data : A0024026.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP209\
FileVersion : 1, 0, 0, 2
ProductVersion : 1, 0, 0, 2
LegalCopyright : Copyright © 2004


ClearSearch Object Recognized!
Type : File
Data : A0024098.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP210\
FileVersion : 1, 77, 0, 2
ProductVersion : 1, 77, 0, 2


ClearSearch Object Recognized!
Type : File
Data : A0024099.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP210\
FileVersion : 1, 0, 0, 2
ProductVersion : 1, 0, 0, 2
LegalCopyright : Copyright © 2004


ClearSearch Object Recognized!
Type : File
Data : A0024163.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP211\
FileVersion : 1, 77, 0, 2
ProductVersion : 1, 77, 0, 2


ClearSearch Object Recognized!
Type : File
Data : A0024164.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP211\
FileVersion : 1, 0, 0, 2
ProductVersion : 1, 0, 0, 2
LegalCopyright : Copyright © 2004


ClearSearch Object Recognized!
Type : File
Data : A0024222.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP211\
FileVersion : 1, 77, 0, 2
ProductVersion : 1, 77, 0, 2


ClearSearch Object Recognized!
Type : File
Data : A0024223.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP211\
FileVersion : 1, 0, 0, 2
ProductVersion : 1, 0, 0, 2
LegalCopyright : Copyright © 2004


PeopleOnPage Object Recognized!
Type : File
Data : A0024285.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP212\
FileVersion : 5.1.18
ProductVersion : 5.1.18
ProductName : ACE
FileDescription : ACE
InternalName : ACEDLL
OriginalFilename : ACE.DLL


Adintelligence.AproposToolbar Object Recognized!
Type : File
Data : A0024286.dll
Category : Misc
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP212\



ClearSearch Object Recognized!
Type : File
Data : A0024293.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP212\
FileVersion : 1, 77, 0, 2
ProductVersion : 1, 77, 0, 2


ClearSearch Object Recognized!
Type : File
Data : A0024294.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP212\
FileVersion : 1, 0, 0, 2
ProductVersion : 1, 0, 0, 2
LegalCopyright : Copyright © 2004


Adintelligence.AproposToolbar Object Recognized!
Type : File
Data : A0024329.exe
Category : Misc
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP213\



ClearSearch Object Recognized!
Type : File
Data : A0024363.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP213\
FileVersion : 1, 77, 0, 2
ProductVersion : 1, 77, 0, 2


ClearSearch Object Recognized!
Type : File
Data : A0024364.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP213\
FileVersion : 1, 0, 0, 2
ProductVersion : 1, 0, 0, 2
LegalCopyright : Copyright © 2004


ClearSearch Object Recognized!
Type : File
Data : A0024428.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP214\
FileVersion : 1, 77, 0, 2
ProductVersion : 1, 77, 0, 2


ClearSearch Object Recognized!
Type : File
Data : A0024429.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP214\
FileVersion : 1, 0, 0, 2
ProductVersion : 1, 0, 0, 2
LegalCopyright : Copyright © 2004


ClearSearch Object Recognized!
Type : File
Data : A0024477.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP215\
FileVersion : 1, 77, 0, 2
ProductVersion : 1, 77, 0, 2


ClearSearch Object Recognized!
Type : File
Data : A0024478.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP215\
FileVersion : 1, 0, 0, 2
ProductVersion : 1, 0, 0, 2
LegalCopyright : Copyright © 2004


ClearSearch Object Recognized!
Type : File
Data : A0025489.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP216\
FileVersion : 1, 77, 0, 2
ProductVersion : 1, 77, 0, 2


ClearSearch Object Recognized!
Type : File
Data : A0025490.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP216\
FileVersion : 1, 0, 0, 2
ProductVersion : 1, 0, 0, 2
LegalCopyright : Copyright © 2004


ClearSearch Object Recognized!
Type : File
Data : A0026497.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP219\
FileVersion : 1, 77, 0, 2
ProductVersion : 1, 77, 0, 2


ClearSearch Object Recognized!
Type : File
Data : A0026498.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP219\
FileVersion : 1, 0, 0, 2
ProductVersion : 1, 0, 0, 2
LegalCopyright : Copyright © 2004


ClearSearch Object Recognized!
Type : File
Data : A0026546.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP219\
FileVersion : 1, 77, 0, 2
ProductVersion : 1, 77, 0, 2


ClearSearch Object Recognized!
Type : File
Data : A0026547.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP219\
FileVersion : 1, 0, 0, 2
ProductVersion : 1, 0, 0, 2
LegalCopyright : Copyright © 2004


ClearSearch Object Recognized!
Type : File
Data : A0026615.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP221\
FileVersion : 1, 77, 0, 2
ProductVersion : 1, 77, 0, 2


ClearSearch Object Recognized!
Type : File
Data : A0026616.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP221\
FileVersion : 1, 0, 0, 2
ProductVersion : 1, 0, 0, 2
LegalCopyright : Copyright © 2004


ClearSearch Object Recognized!
Type : File
Data : A0026655.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP221\
FileVersion : 1, 77, 0, 2
ProductVersion : 1, 77, 0, 2


ClearSearch Object Recognized!
Type : File
Data : A0026656.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP221\
FileVersion : 1, 0, 0, 2
ProductVersion : 1, 0, 0, 2
LegalCopyright : Copyright © 2004


ClearSearch Object Recognized!
Type : File
Data : A0026697.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP221\
FileVersion : 1, 77, 0, 2
ProductVersion : 1, 77, 0, 2


ClearSearch Object Recognized!
Type : File
Data : A0026698.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP221\
FileVersion : 1, 0, 0, 2
ProductVersion : 1, 0, 0, 2
LegalCopyright : Copyright © 2004


ClearSearch Object Recognized!
Type : File
Data : A0026770.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP222\
FileVersion : 1, 77, 0, 2
ProductVersion : 1, 77, 0, 2


ClearSearch Object Recognized!
Type : File
Data : A0026771.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP222\
FileVersion : 1, 0, 0, 2
ProductVersion : 1, 0, 0, 2
LegalCopyright : Copyright © 2004


ClearSearch Object Recognized!
Type : File
Data : A0027756.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP222\
FileVersion : 1, 77, 0, 2
ProductVersion : 1, 77, 0, 2


ClearSearch Object Recognized!
Type : File
Data : A0027757.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP222\
FileVersion : 1, 0, 0, 2
ProductVersion : 1, 0, 0, 2
LegalCopyright : Copyright © 2004


ClearSearch Object Recognized!
Type : File
Data : A0027792.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP222\
FileVersion : 1, 77, 0, 2
ProductVersion : 1, 77, 0, 2


ClearSearch Object Recognized!
Type : File
Data : A0027793.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP222\
FileVersion : 1, 0, 0, 2
ProductVersion : 1, 0, 0, 2
LegalCopyright : Copyright © 2004


Elitum.ElitebarBHO Object Recognized!
Type : File
Data : A0027805.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP222\
FileVersion : 1, 0, 0, 8
ProductVersion : 1, 0, 0, 8
ProductName : Elite SideBar
FileDescription : Elite SideBar
InternalName : Elite SideBar
LegalCopyright : Copyright 2004
OriginalFilename : EliteSideBar.DLL


Elitum.ElitebarBHO Object Recognized!
Type : File
Data : A0027843.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP223\
FileVersion : 1, 0, 0, 8
ProductVersion : 1, 0, 0, 8
ProductName : Elite SideBar
FileDescription : Elite SideBar
InternalName : Elite SideBar
LegalCopyright : Copyright 2004
OriginalFilename : EliteSideBar.DLL


ClearSearch Object Recognized!
Type : File
Data : A0027845.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP223\
FileVersion : 1, 77, 0, 2
ProductVersion : 1, 77, 0, 2


ClearSearch Object Recognized!
Type : File
Data : A0027846.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP223\
FileVersion : 1, 0, 0, 2
ProductVersion : 1, 0, 0, 2
LegalCopyright : Copyright © 2004


ClearSearch Object Recognized!
Type : File
Data : A0027862.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP223\
FileVersion : 1, 77, 0, 2
ProductVersion : 1, 77, 0, 2


ClearSearch Object Recognized!
Type : File
Data : A0027863.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP223\
FileVersion : 1, 0, 0, 2
ProductVersion : 1, 0, 0, 2
LegalCopyright : Copyright © 2004


Elitum.ElitebarBHO Object Recognized!
Type : File
Data : A0027897.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP223\
FileVersion : 1, 0, 0, 8
ProductVersion : 1, 0, 0, 8
ProductName : Elite SideBar
FileDescription : Elite SideBar
InternalName : Elite SideBar
LegalCopyright : Copyright 2004
OriginalFilename : EliteSideBar.DLL


ClearSearch Object Recognized!
Type : File
Data : A0027937.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP223\
FileVersion : 1.83.0.5
ProductVersion : 1.83.0.5
InternalName : Grip.dll
OriginalFilename : Grip.dll
Comments : Build 83 E


ClearSearch Object Recognized!
Type : File
Data : A0027938.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP223\



ClearSearch Object Recognized!
Type : File
Data : A0027939.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP223\
FileVersion : 1, 77, 0, 2
ProductVersion : 1, 77, 0, 2


ClearSearch Object Recognized!
Type : File
Data : A0027940.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP223\
FileVersion : 1, 0, 0, 2
ProductVersion : 1, 0, 0, 2
LegalCopyright : Copyright © 2004


Elitum.ElitebarBHO Object Recognized!
Type : File
Data : A0027942.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP223\
FileVersion : 1, 0, 0, 8
ProductVersion : 1, 0, 0, 8
ProductName : Elite SideBar
FileDescription : Elite SideBar
InternalName : Elite SideBar
LegalCopyright : Copyright 2004
OriginalFilename : EliteSideBar.DLL


Elitum.ElitebarBHO Object Recognized!
Type : File
Data : A0027956.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP224\
FileVersion : 1, 0, 0, 8
ProductVersion : 1, 0, 0, 8
ProductName : Elite SideBar
FileDescription : Elite SideBar
InternalName : Elite SideBar
LegalCopyright : Copyright 2004
OriginalFilename : EliteSideBar.DLL


ClearSearch Object Recognized!
Type : File
Data : A0028007.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP224\
FileVersion : 1.83.0.5
ProductVersion : 1.83.0.5
InternalName : Grip.dll
OriginalFilename : Grip.dll
Comments : Build 83 E


ClearSearch Object Recognized!
Type : File
Data : A0028010.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP224\



ClearSearch Object Recognized!
Type : File
Data : A0028012.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP224\
FileVersion : 1, 77, 0, 2
ProductVersion : 1, 77, 0, 2


ClearSearch Object Recognized!
Type : File
Data : A0028013.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP224\
FileVersion : 1, 0, 0, 2
ProductVersion : 1, 0, 0, 2
LegalCopyright : Copyright © 2004


Elitum.ElitebarBHO Object Recognized!
Type : File
Data : A0028017.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP224\
FileVersion : 1, 0, 0, 8
ProductVersion : 1, 0, 0, 8
ProductName : Elite SideBar
FileDescription : Elite SideBar
InternalName : Elite SideBar
LegalCopyright : Copyright 2004
OriginalFilename : EliteSideBar.DLL


ClearSearch Object Recognized!
Type : File
Data : A0028076.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP225\
FileVersion : 1.83.0.5
ProductVersion : 1.83.0.5
InternalName : Grip.dll
OriginalFilename : Grip.dll
Comments : Build 83 E


ClearSearch Object Recognized!
Type : File
Data : A0028079.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP225\



ClearSearch Object Recognized!
Type : File
Data : A0028081.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP225\
FileVersion : 1, 77, 0, 2
ProductVersion : 1, 77, 0, 2


ClearSearch Object Recognized!
Type : File
Data : A0028083.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP225\
FileVersion : 1, 0, 0, 2
ProductVersion : 1, 0, 0, 2
LegalCopyright : Copyright © 2004


Elitum.ElitebarBHO Object Recognized!
Type : File
Data : A0028090.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP225\
FileVersion : 1, 0, 0, 8
ProductVersion : 1, 0, 0, 8
ProductName : Elite SideBar
FileDescription : Elite SideBar
InternalName : Elite SideBar
LegalCopyright : Copyright 2004
OriginalFilename : EliteSideBar.DLL


ClearSearch Object Recognized!
Type : File
Data : A0028155.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP226\
FileVersion : 1.83.0.5
ProductVersion : 1.83.0.5
InternalName : Grip.dll
OriginalFilename : Grip.dll
Comments : Build 83 E


ClearSearch Object Recognized!
Type : File
Data : A0028156.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP226\



ClearSearch Object Recognized!
Type : File
Data : A0028158.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP226\
FileVersion : 1, 77, 0, 2
ProductVersion : 1, 77, 0, 2


ClearSearch Object Recognized!
Type : File
Data : A0028159.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP226\
FileVersion : 1, 0, 0, 2
ProductVersion : 1, 0, 0, 2
LegalCopyright : Copyright © 2004


ClearSearch Object Recognized!
Type : File
Data : A0028234.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP227\
FileVersion : 1.83.0.5
ProductVersion : 1.83.0.5
InternalName : Grip.dll
OriginalFilename : Grip.dll
Comments : Build 83 E


ClearSearch Object Recognized!
Type : File
Data : A0028236.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP227\



ClearSearch Object Recognized!
Type : File
Data : A0028238.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP227\
FileVersion : 1, 77, 0, 2
ProductVersion : 1, 77, 0, 2


ClearSearch Object Recognized!
Type : File
Data : A0028239.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP227\
FileVersion : 1, 0, 0, 2
ProductVersion : 1, 0, 0, 2
LegalCopyright : Copyright © 2004


Elitum.ElitebarBHO Object Recognized!
Type : File
Data : A0028243.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP227\
FileVersion : 1, 0, 0, 8
ProductVersion : 1, 0, 0, 8
ProductName : Elite SideBar
FileDescription : Elite SideBar
InternalName : Elite SideBar
LegalCopyright : Copyright 2004
OriginalFilename : EliteSideBar.DLL


ClearSearch Object Recognized!
Type : File
Data : A0028291.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP228\
FileVersion : 1.83.0.5
ProductVersion : 1.83.0.5
InternalName : Grip.dll
OriginalFilename : Grip.dll
Comments : Build 83 E


ClearSearch Object Recognized!
Type : File
Data : A0028294.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP228\



ClearSearch Object Recognized!
Type : File
Data : A0028297.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP228\
FileVersion : 1, 77, 0, 2
ProductVersion : 1, 77, 0, 2


ClearSearch Object Recognized!
Type : File
Data : A0028299.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP228\
FileVersion : 1, 0, 0, 2
ProductVersion : 1, 0, 0, 2
LegalCopyright : Copyright © 2004


Elitum.ElitebarBHO Object Recognized!
Type : File
Data : A0028305.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP228\
FileVersion : 1, 0, 0, 8
ProductVersion : 1, 0, 0, 8
ProductName : Elite SideBar
FileDescription : Elite SideBar
InternalName : Elite SideBar
LegalCopyright : Copyright 2004
OriginalFilename : EliteSideBar.DLL


ClearSearch Object Recognized!
Type : File
Data : A0028347.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP229\
FileVersion : 1.83.0.5
ProductVersion : 1.83.0.5
InternalName : Grip.dll
OriginalFilename : Grip.dll
Comments : Build 83 E


ClearSearch Object Recognized!
Type : File
Data : A0028350.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP229\



ClearSearch Object Recognized!
Type : File
Data : A0028353.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP229\
FileVersion : 1, 77, 0, 2
ProductVersion : 1, 77, 0, 2


ClearSearch Object Recognized!
Type : File
Data : A0028354.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP229\
FileVersion : 1, 0, 0, 2
ProductVersion : 1, 0, 0, 2
LegalCopyright : Copyright © 2004


Elitum.ElitebarBHO Object Recognized!
Type : File
Data : A0028366.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP229\
FileVersion : 1, 0, 0, 8
ProductVersion : 1, 0, 0, 8
ProductName : Elite SideBar
FileDescription : Elite SideBar
InternalName : Elite SideBar
LegalCopyright : Copyright 2004
OriginalFilename : EliteSideBar.DLL


PeopleOnPage Object Recognized!
Type : File
Data : A0028382.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP229\
FileVersion : 5.1.18
ProductVersion : 5.1.18
ProductName : ACE
FileDescription : ACE
InternalName : ACEDLL
OriginalFilename : ACE.DLL


ClearSearch Object Recognized!
Type : File
Data : A0028423.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP230\
FileVersion : 1.83.0.5
ProductVersion : 1.83.0.5
InternalName : Grip.dll
OriginalFilename : Grip.dll
Comments : Build 83 E


ClearSearch Object Recognized!
Type : File
Data : A0028427.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP230\



ClearSearch Object Recognized!
Type : File
Data : A0028429.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP230\
FileVersion : 1, 77, 0, 2
ProductVersion : 1, 77, 0, 2


ClearSearch Object Recognized!
Type : File
Data : A0028430.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP230\
FileVersion : 1, 0, 0, 2
ProductVersion : 1, 0, 0, 2
LegalCopyright : Copyright © 2004


Elitum.ElitebarBHO Object Recognized!
Type : File
Data : A0028442.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP230\
FileVersion : 1, 0, 0, 8
ProductVersion : 1, 0, 0, 8
ProductName : Elite SideBar
FileDescription : Elite SideBar
InternalName : Elite SideBar
LegalCopyright : Copyright 2004
OriginalFilename : EliteSideBar.DLL


ClearSearch Object Recognized!
Type : File
Data : A0028492.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP231\
FileVersion : 1.83.0.5
ProductVersion : 1.83.0.5
InternalName : Grip.dll
OriginalFilename : Grip.dll
Comments : Build 83 E


ClearSearch Object Recognized!
Type : File
Data : A0028493.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP231\



ClearSearch Object Recognized!
Type : File
Data : A0028494.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP231\
FileVersion : 1, 77, 0, 2
ProductVersion : 1, 77, 0, 2


ClearSearch Object Recognized!
Type : File
Data : A0028495.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP231\
FileVersion : 1, 0, 0, 2
ProductVersion : 1, 0, 0, 2
LegalCopyright : Copyright © 2004


Elitum.ElitebarBHO Object Recognized!
Type : File
Data : A0028499.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP231\
FileVersion : 1, 0, 0, 8
ProductVersion : 1, 0, 0, 8
ProductName : Elite SideBar
FileDescription : Elite SideBar
InternalName : Elite SideBar
LegalCopyright : Copyright 2004
OriginalFilename : EliteSideBar.DLL


ClearSearch Object Recognized!
Type : File
Data : A0028557.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP232\
FileVersion : 1.83.0.5
ProductVersion : 1.83.0.5
InternalName : Grip.dll
OriginalFilename : Grip.dll
Comments : Build 83 E


ClearSearch Object Recognized!
Type : File
Data : A0028559.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP232\



ClearSearch Object Recognized!
Type : File
Data : A0028561.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP232\
FileVersion : 1, 77, 0, 2
ProductVersion : 1, 77, 0, 2


ClearSearch Object Recognized!
Type : File
Data : A0028562.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP232\
FileVersion : 1, 0, 0, 2
ProductVersion : 1, 0, 0, 2
LegalCopyright : Copyright © 2004


Elitum.ElitebarBHO Object Recognized!
Type : File
Data : A0028568.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP232\
FileVersion : 1, 0, 0, 8
ProductVersion : 1, 0, 0, 8
ProductName : Elite SideBar
FileDescription : Elite SideBar
InternalName : Elite SideBar
LegalCopyright : Copyright 2004
OriginalFilename : EliteSideBar.DLL


PeopleOnPage Object Recognized!
Type : File
Data : A0028589.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP233\
FileVersion : 5.1.18
ProductVersion : 5.1.18
ProductName : ACE
FileDescription : ACE
InternalName : ACEDLL
OriginalFilename : ACE.DLL


Adintelligence.AproposToolbar Object Recognized!
Type : File
Data : A0028591.dll
Category : Misc
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP233\



Adintelligence.AproposToolbar Object Recognized!
Type : File
Data : A0028592.exe
Category : Misc
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP233\
FileVersion : 1, 0, 0, 1
ProductVersion : 1, 0, 0, 1
ProductName : Ads
CompanyName : Apropos Media
FileDescription : Internet Explorer
InternalName : Ads.
LegalCopyright : Copyright © 2003
OriginalFilename : SysAI.exe


Adintelligence.AproposToolbar Object Recognized!
Type : File
Data : A0028624.exe
Category : Misc
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP233\



ClearSearch Object Recognized!
Type : File
Data : A0028637.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP233\
FileVersion : 1.83.0.5
ProductVersion : 1.83.0.5
InternalName : Grip.dll
OriginalFilename : Grip.dll
Comments : Build 83 E


ClearSearch Object Recognized!
Type : File
Data : A0028638.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP233\



ClearSearch Object Recognized!
Type : File
Data : A0028639.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP233\
FileVersion : 1, 77, 0, 2
ProductVersion : 1, 77, 0, 2


ClearSearch Object Recognized!
Type : File
Data : A0028640.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP233\
F
  • 0

#14
amf2880
Posted 26 April 2005 - 08:06 AM

amf2880

    Member

  • Topic Starter
  • Member
  • PipPip
  • 15 posts
3rd portion of Ad-Aware log file - 4/26:


ClearSearch Object Recognized!
Type : File
Data : A0028640.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP233\
FileVersion : 1, 0, 0, 2
ProductVersion : 1, 0, 0, 2
LegalCopyright : Copyright © 2004


Elitum.ElitebarBHO Object Recognized!
Type : File
Data : A0028650.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP233\
FileVersion : 1, 0, 0, 8
ProductVersion : 1, 0, 0, 8
ProductName : Elite SideBar
FileDescription : Elite SideBar
InternalName : Elite SideBar
LegalCopyright : Copyright 2004
OriginalFilename : EliteSideBar.DLL


ClearSearch Object Recognized!
Type : File
Data : A0028679.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP233\
FileVersion : 1.83.0.5
ProductVersion : 1.83.0.5
InternalName : Grip.dll
OriginalFilename : Grip.dll
Comments : Build 83 E


ClearSearch Object Recognized!
Type : File
Data : A0028680.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP233\



ClearSearch Object Recognized!
Type : File
Data : A0028682.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP233\
FileVersion : 1, 77, 0, 2
ProductVersion : 1, 77, 0, 2


ClearSearch Object Recognized!
Type : File
Data : A0028683.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP233\
FileVersion : 1, 0, 0, 2
ProductVersion : 1, 0, 0, 2
LegalCopyright : Copyright © 2004


Elitum.ElitebarBHO Object Recognized!
Type : File
Data : A0028689.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP233\
FileVersion : 1, 0, 0, 8
ProductVersion : 1, 0, 0, 8
ProductName : Elite SideBar
FileDescription : Elite SideBar
InternalName : Elite SideBar
LegalCopyright : Copyright 2004
OriginalFilename : EliteSideBar.DLL


Adintelligence.AproposToolbar Object Recognized!
Type : File
Data : A0028729.exe
Category : Misc
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP234\



ClearSearch Object Recognized!
Type : File
Data : A0028746.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP235\
FileVersion : 1.83.0.5
ProductVersion : 1.83.0.5
InternalName : Grip.dll
OriginalFilename : Grip.dll
Comments : Build 83 E


ClearSearch Object Recognized!
Type : File
Data : A0028747.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP235\



ClearSearch Object Recognized!
Type : File
Data : A0028748.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP235\
FileVersion : 1, 77, 0, 2
ProductVersion : 1, 77, 0, 2


ClearSearch Object Recognized!
Type : File
Data : A0028749.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP235\
FileVersion : 1, 0, 0, 2
ProductVersion : 1, 0, 0, 2
LegalCopyright : Copyright © 2004


ClearSearch Object Recognized!
Type : File
Data : A0028782.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP235\
FileVersion : 1.83.0.5
ProductVersion : 1.83.0.5
InternalName : Grip.dll
OriginalFilename : Grip.dll
Comments : Build 83 E


ClearSearch Object Recognized!
Type : File
Data : A0028786.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP235\



ClearSearch Object Recognized!
Type : File
Data : A0028791.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP235\
FileVersion : 1, 77, 0, 2
ProductVersion : 1, 77, 0, 2


ClearSearch Object Recognized!
Type : File
Data : A0028792.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP235\
FileVersion : 1, 0, 0, 2
ProductVersion : 1, 0, 0, 2
LegalCopyright : Copyright © 2004


Elitum.ElitebarBHO Object Recognized!
Type : File
Data : A0028796.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP235\
FileVersion : 1, 0, 0, 8
ProductVersion : 1, 0, 0, 8
ProductName : Elite SideBar
FileDescription : Elite SideBar
InternalName : Elite SideBar
LegalCopyright : Copyright 2004
OriginalFilename : EliteSideBar.DLL


ClearSearch Object Recognized!
Type : File
Data : A0028816.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP235\
FileVersion : 1.83.0.5
ProductVersion : 1.83.0.5
InternalName : Grip.dll
OriginalFilename : Grip.dll
Comments : Build 83 E


ClearSearch Object Recognized!
Type : File
Data : A0028819.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP235\



ClearSearch Object Recognized!
Type : File
Data : A0028822.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP235\
FileVersion : 1, 77, 0, 2
ProductVersion : 1, 77, 0, 2


ClearSearch Object Recognized!
Type : File
Data : A0028824.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP235\
FileVersion : 1, 0, 0, 2
ProductVersion : 1, 0, 0, 2
LegalCopyright : Copyright © 2004


Elitum.ElitebarBHO Object Recognized!
Type : File
Data : A0028831.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP235\
FileVersion : 1, 0, 0, 8
ProductVersion : 1, 0, 0, 8
ProductName : Elite SideBar
FileDescription : Elite SideBar
InternalName : Elite SideBar
LegalCopyright : Copyright 2004
OriginalFilename : EliteSideBar.DLL


Elitum.ElitebarBHO Object Recognized!
Type : File
Data : A0028864.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP236\
FileVersion : 1, 0, 0, 8
ProductVersion : 1, 0, 0, 8
ProductName : Elite SideBar
FileDescription : Elite SideBar
InternalName : Elite SideBar
LegalCopyright : Copyright 2004
OriginalFilename : EliteSideBar.DLL


Elitum.ElitebarBHO Object Recognized!
Type : File
Data : A0028875.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP237\
FileVersion : 1, 0, 0, 8
ProductVersion : 1, 0, 0, 8
ProductName : Elite SideBar
FileDescription : Elite SideBar
InternalName : Elite SideBar
LegalCopyright : Copyright 2004
OriginalFilename : EliteSideBar.DLL


Elitum.ElitebarBHO Object Recognized!
Type : File
Data : A0028898.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP238\
FileVersion : 1, 0, 0, 8
ProductVersion : 1, 0, 0, 8
ProductName : Elite SideBar
FileDescription : Elite SideBar
InternalName : Elite SideBar
LegalCopyright : Copyright 2004
OriginalFilename : EliteSideBar.DLL


ClearSearch Object Recognized!
Type : File
Data : A0028927.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP238\
FileVersion : 1.83.0.5
ProductVersion : 1.83.0.5
InternalName : Grip.dll
OriginalFilename : Grip.dll
Comments : Build 83 E


ClearSearch Object Recognized!
Type : File
Data : A0028930.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP238\



ClearSearch Object Recognized!
Type : File
Data : A0028933.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP238\
FileVersion : 1, 77, 0, 2
ProductVersion : 1, 77, 0, 2


ClearSearch Object Recognized!
Type : File
Data : A0028935.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP238\
FileVersion : 1, 0, 0, 2
ProductVersion : 1, 0, 0, 2
LegalCopyright : Copyright © 2004


Elitum.ElitebarBHO Object Recognized!
Type : File
Data : A0028956.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP238\
FileVersion : 1, 0, 0, 8
ProductVersion : 1, 0, 0, 8
ProductName : Elite SideBar
FileDescription : Elite SideBar
InternalName : Elite SideBar
LegalCopyright : Copyright 2004
OriginalFilename : EliteSideBar.DLL


ClearSearch Object Recognized!
Type : File
Data : A0028998.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP239\
FileVersion : 1.83.0.5
ProductVersion : 1.83.0.5
InternalName : Grip.dll
OriginalFilename : Grip.dll
Comments : Build 83 E


ClearSearch Object Recognized!
Type : File
Data : A0029001.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP239\



ClearSearch Object Recognized!
Type : File
Data : A0029003.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP239\
FileVersion : 1, 77, 0, 2
ProductVersion : 1, 77, 0, 2


ClearSearch Object Recognized!
Type : File
Data : A0029005.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP239\
FileVersion : 1, 0, 0, 2
ProductVersion : 1, 0, 0, 2
LegalCopyright : Copyright © 2004


Elitum.ElitebarBHO Object Recognized!
Type : File
Data : A0029010.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP239\
FileVersion : 1, 0, 0, 8
ProductVersion : 1, 0, 0, 8
ProductName : Elite SideBar
FileDescription : Elite SideBar
InternalName : Elite SideBar
LegalCopyright : Copyright 2004
OriginalFilename : EliteSideBar.DLL


ClearSearch Object Recognized!
Type : File
Data : A0029056.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP240\
FileVersion : 1.83.0.5
ProductVersion : 1.83.0.5
InternalName : Grip.dll
OriginalFilename : Grip.dll
Comments : Build 83 E


ClearSearch Object Recognized!
Type : File
Data : A0029059.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP240\



ClearSearch Object Recognized!
Type : File
Data : A0029063.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP240\
FileVersion : 1, 77, 0, 2
ProductVersion : 1, 77, 0, 2


ClearSearch Object Recognized!
Type : File
Data : A0029064.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP240\
FileVersion : 1, 0, 0, 2
ProductVersion : 1, 0, 0, 2
LegalCopyright : Copyright © 2004


Elitum.ElitebarBHO Object Recognized!
Type : File
Data : A0029068.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP240\
FileVersion : 1, 0, 0, 8
ProductVersion : 1, 0, 0, 8
ProductName : Elite SideBar
FileDescription : Elite SideBar
InternalName : Elite SideBar
LegalCopyright : Copyright 2004
OriginalFilename : EliteSideBar.DLL


ClearSearch Object Recognized!
Type : File
Data : A0029104.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP240\
FileVersion : 1.83.0.5
ProductVersion : 1.83.0.5
InternalName : Grip.dll
OriginalFilename : Grip.dll
Comments : Build 83 E


ClearSearch Object Recognized!
Type : File
Data : A0029107.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP240\



ClearSearch Object Recognized!
Type : File
Data : A0029108.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP240\
FileVersion : 1, 77, 0, 2
ProductVersion : 1, 77, 0, 2


ClearSearch Object Recognized!
Type : File
Data : A0029109.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP240\
FileVersion : 1, 0, 0, 2
ProductVersion : 1, 0, 0, 2
LegalCopyright : Copyright © 2004


Elitum.ElitebarBHO Object Recognized!
Type : File
Data : A0029118.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP240\
FileVersion : 1, 0, 0, 8
ProductVersion : 1, 0, 0, 8
ProductName : Elite SideBar
FileDescription : Elite SideBar
InternalName : Elite SideBar
LegalCopyright : Copyright 2004
OriginalFilename : EliteSideBar.DLL


Elitum.ElitebarBHO Object Recognized!
Type : File
Data : A0029133.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP241\
FileVersion : 1, 0, 0, 8
ProductVersion : 1, 0, 0, 8
ProductName : Elite SideBar
FileDescription : Elite SideBar
InternalName : Elite SideBar
LegalCopyright : Copyright 2004
OriginalFilename : EliteSideBar.DLL


ClearSearch Object Recognized!
Type : File
Data : A0029214.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP242\
FileVersion : 1.83.0.5
ProductVersion : 1.83.0.5
InternalName : Grip.dll
OriginalFilename : Grip.dll
Comments : Build 83 E


ClearSearch Object Recognized!
Type : File
Data : A0029218.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP242\



ClearSearch Object Recognized!
Type : File
Data : A0029220.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP242\
FileVersion : 1, 77, 0, 2
ProductVersion : 1, 77, 0, 2


ClearSearch Object Recognized!
Type : File
Data : A0029221.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP242\
FileVersion : 1, 0, 0, 2
ProductVersion : 1, 0, 0, 2
LegalCopyright : Copyright © 2004


Elitum.ElitebarBHO Object Recognized!
Type : File
Data : A0029229.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP242\
FileVersion : 1, 0, 0, 8
ProductVersion : 1, 0, 0, 8
ProductName : Elite SideBar
FileDescription : Elite SideBar
InternalName : Elite SideBar
LegalCopyright : Copyright 2004
OriginalFilename : EliteSideBar.DLL


ClearSearch Object Recognized!
Type : File
Data : A0029259.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP243\
FileVersion : 1.83.0.5
ProductVersion : 1.83.0.5
InternalName : Grip.dll
OriginalFilename : Grip.dll
Comments : Build 83 E


ClearSearch Object Recognized!
Type : File
Data : A0029260.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP243\



ClearSearch Object Recognized!
Type : File
Data : A0029261.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP243\
FileVersion : 1, 77, 0, 2
ProductVersion : 1, 77, 0, 2


ClearSearch Object Recognized!
Type : File
Data : A0029262.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP243\
FileVersion : 1, 0, 0, 2
ProductVersion : 1, 0, 0, 2
LegalCopyright : Copyright © 2004


Elitum.ElitebarBHO Object Recognized!
Type : File
Data : A0029268.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP243\
FileVersion : 1, 0, 0, 8
ProductVersion : 1, 0, 0, 8
ProductName : Elite SideBar
FileDescription : Elite SideBar
InternalName : Elite SideBar
LegalCopyright : Copyright 2004
OriginalFilename : EliteSideBar.DLL


Elitum.ElitebarBHO Object Recognized!
Type : File
Data : A0029284.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP244\
FileVersion : 1, 0, 0, 8
ProductVersion : 1, 0, 0, 8
ProductName : Elite SideBar
FileDescription : Elite SideBar
InternalName : Elite SideBar
LegalCopyright : Copyright 2004
OriginalFilename : EliteSideBar.DLL


ClearSearch Object Recognized!
Type : File
Data : A0029329.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP244\
FileVersion : 1.83.0.5
ProductVersion : 1.83.0.5
InternalName : Grip.dll
OriginalFilename : Grip.dll
Comments : Build 83 E


ClearSearch Object Recognized!
Type : File
Data : A0029330.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP244\



ClearSearch Object Recognized!
Type : File
Data : A0029331.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP244\
FileVersion : 1, 77, 0, 2
ProductVersion : 1, 77, 0, 2


ClearSearch Object Recognized!
Type : File
Data : A0029332.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP244\
FileVersion : 1, 0, 0, 2
ProductVersion : 1, 0, 0, 2
LegalCopyright : Copyright © 2004


Elitum.ElitebarBHO Object Recognized!
Type : File
Data : A0029338.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP244\
FileVersion : 1, 0, 0, 8
ProductVersion : 1, 0, 0, 8
ProductName : Elite SideBar
FileDescription : Elite SideBar
InternalName : Elite SideBar
LegalCopyright : Copyright 2004
OriginalFilename : EliteSideBar.DLL


ClearSearch Object Recognized!
Type : File
Data : A0029385.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP245\
FileVersion : 1.83.0.5
ProductVersion : 1.83.0.5
InternalName : Grip.dll
OriginalFilename : Grip.dll
Comments : Build 83 E


ClearSearch Object Recognized!
Type : File
Data : A0029387.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP245\



ClearSearch Object Recognized!
Type : File
Data : A0029388.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP245\
FileVersion : 1, 77, 0, 2
ProductVersion : 1, 77, 0, 2


ClearSearch Object Recognized!
Type : File
Data : A0029389.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP245\
FileVersion : 1, 0, 0, 2
ProductVersion : 1, 0, 0, 2
LegalCopyright : Copyright © 2004


Elitum.ElitebarBHO Object Recognized!
Type : File
Data : A0029393.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP245\
FileVersion : 1, 0, 0, 8
ProductVersion : 1, 0, 0, 8
ProductName : Elite SideBar
FileDescription : Elite SideBar
InternalName : Elite SideBar
LegalCopyright : Copyright 2004
OriginalFilename : EliteSideBar.DLL


Elitum.ElitebarBHO Object Recognized!
Type : File
Data : A0029420.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP246\
FileVersion : 1, 0, 0, 8
ProductVersion : 1, 0, 0, 8
ProductName : Elite SideBar
FileDescription : Elite SideBar
InternalName : Elite SideBar
LegalCopyright : Copyright 2004
OriginalFilename : EliteSideBar.DLL


ClearSearch Object Recognized!
Type : File
Data : A0029455.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP246\
FileVersion : 1.83.0.5
ProductVersion : 1.83.0.5
InternalName : Grip.dll
OriginalFilename : Grip.dll
Comments : Build 83 E


ClearSearch Object Recognized!
Type : File
Data : A0029456.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP246\



ClearSearch Object Recognized!
Type : File
Data : A0029458.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP246\
FileVersion : 1, 77, 0, 2
ProductVersion : 1, 77, 0, 2


ClearSearch Object Recognized!
Type : File
Data : A0029459.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP246\
FileVersion : 1, 0, 0, 2
ProductVersion : 1, 0, 0, 2
LegalCopyright : Copyright © 2004


Elitum.ElitebarBHO Object Recognized!
Type : File
Data : A0029464.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP246\
FileVersion : 1, 0, 0, 8
ProductVersion : 1, 0, 0, 8
ProductName : Elite SideBar
FileDescription : Elite SideBar
InternalName : Elite SideBar
LegalCopyright : Copyright 2004
OriginalFilename : EliteSideBar.DLL


ClearSearch Object Recognized!
Type : File
Data : A0029515.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP247\
FileVersion : 1.83.0.5
ProductVersion : 1.83.0.5
InternalName : Grip.dll
OriginalFilename : Grip.dll
Comments : Build 83 E


ClearSearch Object Recognized!
Type : File
Data : A0029518.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP247\



ClearSearch Object Recognized!
Type : File
Data : A0029522.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP247\
FileVersion : 1, 77, 0, 2
ProductVersion : 1, 77, 0, 2


ClearSearch Object Recognized!
Type : File
Data : A0029525.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP247\
FileVersion : 1, 0, 0, 2
ProductVersion : 1, 0, 0, 2
LegalCopyright : Copyright © 2004


Elitum.ElitebarBHO Object Recognized!
Type : File
Data : A0029529.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP247\
FileVersion : 1, 0, 0, 8
ProductVersion : 1, 0, 0, 8
ProductName : Elite SideBar
FileDescription : Elite SideBar
InternalName : Elite SideBar
LegalCopyright : Copyright 2004
OriginalFilename : EliteSideBar.DLL


ClearSearch Object Recognized!
Type : File
Data : A0029558.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP247\
FileVersion : 1.83.0.5
ProductVersion : 1.83.0.5
InternalName : Grip.dll
OriginalFilename : Grip.dll
Comments : Build 83 E


ClearSearch Object Recognized!
Type : File
Data : A0029562.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP247\



ClearSearch Object Recognized!
Type : File
Data : A0029564.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP247\
FileVersion : 1, 77, 0, 2
ProductVersion : 1, 77, 0, 2


ClearSearch Object Recognized!
Type : File
Data : A0029565.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP247\
FileVersion : 1, 0, 0, 2
ProductVersion : 1, 0, 0, 2
LegalCopyright : Copyright © 2004


ClearSearch Object Recognized!
Type : File
Data : A0029632.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP248\
FileVersion : 1.83.0.5
ProductVersion : 1.83.0.5
InternalName : Grip.dll
OriginalFilename : Grip.dll
Comments : Build 83 E


ClearSearch Object Recognized!
Type : File
Data : A0029635.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP248\



ClearSearch Object Recognized!
Type : File
Data : A0029639.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP248\
FileVersion : 1, 77, 0, 2
ProductVersion : 1, 77, 0, 2


ClearSearch Object Recognized!
Type : File
Data : A0029640.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP248\
FileVersion : 1, 0, 0, 2
ProductVersion : 1, 0, 0, 2
LegalCopyright : Copyright © 2004


ClearSearch Object Recognized!
Type : File
Data : A0029674.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP248\
FileVersion : 1.83.0.5
ProductVersion : 1.83.0.5
InternalName : Grip.dll
OriginalFilename : Grip.dll
Comments : Build 83 E


ClearSearch Object Recognized!
Type : File
Data : A0029678.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP248\



ClearSearch Object Recognized!
Type : File
Data : A0029679.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP248\
FileVersion : 1, 77, 0, 2
ProductVersion : 1, 77, 0, 2


ClearSearch Object Recognized!
Type : File
Data : A0029680.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP248\
FileVersion : 1, 0, 0, 2
ProductVersion : 1, 0, 0, 2
LegalCopyright : Copyright © 2004


ClearSearch Object Recognized!
Type : File
Data : A0029926.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP249\
FileVersion : 1.83.0.5
ProductVersion : 1.83.0.5
InternalName : Grip.dll
OriginalFilename : Grip.dll
Comments : Build 83 E


ClearSearch Object Recognized!
Type : File
Data : A0029929.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP249\



ClearSearch Object Recognized!
Type : File
Data : A0029931.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP249\
FileVersion : 1, 77, 0, 2
ProductVersion : 1, 77, 0, 2


ClearSearch Object Recognized!
Type : File
Data : A0029932.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP249\
FileVersion : 1, 0, 0, 2
ProductVersion : 1, 0, 0, 2
LegalCopyright : Copyright © 2004


ClearSearch Object Recognized!
Type : File
Data : A0029953.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP249\
FileVersion : 1.83.0.5
ProductVersion : 1.83.0.5
InternalName : Grip.dll
OriginalFilename : Grip.dll
Comments : Build 83 E


ClearSearch Object Recognized!
Type : File
Data : A0029954.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP249\



ClearSearch Object Recognized!
Type : File
Data : A0029956.dll
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP249\
FileVersion : 1, 77, 0, 2
ProductVersion : 1, 77, 0, 2


ClearSearch Object Recognized!
Type : File
Data : A0029957.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP249\
FileVersion : 1, 0, 0, 2
ProductVersion : 1, 0, 0, 2
LegalCopyright : Copyright © 2004


ClearSearch Object Recognized!
Type : File
Data : A0029968.exe
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{47A1454F-891D-4C51-B5CE-4DB4A3E4FD92}\RP249\
FileVersion : 1, 13, 0, 5
ProductVersion : 1, 13, 0, 5


AdRotator Object Recognized!
Type : File
Data : Helper101.dll
Category : Malware
Comment :
Object : C:\WINDOWS\



ClearSearch Object Recognized!
Type : File
Data : CSv13P108.exe
Category : Data Miner
Comment :
Object : C:\WINDOWS\system32\Cache\
FileVersion : 1, 13, 0, 5
ProductVersion : 1, 13, 0, 5


Adintelligence.AproposToolbar Object Recognized!
Type : File
Data : cxtpls_loader.exe
Category : Misc
Comment :
Object : C:\WINDOWS\system32\Cache\



DealHelper Object Recognized!
Type : File
Data : dun.exe
Category : Malware
Comment :
Object : C:\WINDOWS\system32\
FileVersion : 1, 0, 0, 1
ProductVersion : 1, 0, 0, 1
ProductName : UnInstallKey Application
FileDescription : UnInstallKey MFC Application
InternalName : UnInstallKey
LegalCopyright : Copyright © 2003
OriginalFilename : UnInstallKey.EXE


AdRotator Object Recognized!
Type : File
Data : ecdqmd.exe
Category : Malware
Comment :
Object : C:\WINDOWS\system32\
FileVersion : 1, 0, 0, 1
ProductVersion : 1, 0, 0, 1
ProductName : localDownload Application
FileDescription : localDownload MFC Application
InternalName : localDownload
LegalCopyright : Copyright © 2004
OriginalFilename : localDownload.EXE


eUniverse Object Recognized!
Type : File
Data : in3.dll
Category : Data Miner
Comment :
Object : C:\WINDOWS\system32\
FileVersion : 1, 0, 0, 1
ProductVersion : 1, 0, 0, 1
ProductName : exe_in_dll Module
FileDescription : exe_in_dll Module
InternalName : exe_in_dll
LegalCopyright : Copyright 2001
OriginalFilename : exe_in_dll.DLL


DealHelper Object Recognized!
Type : File
Data : Zpsece.exe
Category : Malware
Comment :
Object : C:\WINDOWS\system32\
FileVersion : 1, 0, 0, 1
ProductVersion : 1, 0, 0, 1
ProductName : Redirect Application
FileDescription : Redirect MFC Application
InternalName : Redirect
LegalCopyright : Copyright © 2003
OriginalFilename : Redirect.EXE


Disk Scan Result for C:\
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
New critical objects: 0
Objects found so far: 369


Scanning Hosts file......
Hosts file location:"C:\WINDOWS\system32\drivers\etc\hosts".
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»

Hosts file scan result:
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
1 entries scanned.
New critical objects:0
Objects found so far: 369



Possible Browser Hijack attempt Object Recognized!
Type : File
Data : Big Fish Games.url
Category : Misc
Comment : Problematic URL discovered: http://www.regnow.co...ite&vendor=7551
Object : C:\Documents and Settings\afiegel\Favorites\AT-Games\



Possible Browser Hijack attempt Object Recognized!
Type : File
Data : FlyorDie Games.url
Category : Misc
Comment : Problematic URL discovered: http://www.regnow.co...ite&vendor=7834
Object : C:\Documents and Settings\afiegel\Favorites\AT-Games\



Possible Browser Hijack attempt Object Recognized!
Type : File
Data : Gamehouse Games.url
Category : Misc
Comment : Problematic URL discovered: http://www.gamehouse...te.jsp?AID=2226
Object : C:\Documents and Settings\afiegel\Favorites\AT-Games\




Performing conditional scans...
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»

AdRotator Object Recognized!
Type : File
Data : hiwinnager.dat
Category : Malware
Comment :
Object : C:\WINDOWS\system32\



AdRotator Object Recognized!
Type : File
Data : searchen.dat
Category : Malware
Comment :
Object : C:\WINDOWS\



Elitum.ElitebarBHO Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment :
Rootkey : HKEY_CURRENT_USER
Object : software\lq

Elitum.ElitebarBHO Object Recognized!
Type : RegValue
Data :
Category : Data Miner
Comment :
Rootkey : HKEY_CURRENT_USER
Object : software\lq
Value : TM

Elitum.ElitebarBHO Object Recognized!
Type : RegValue
Data :
Category : Data Miner
Comment :
Rootkey : HKEY_CURRENT_USER
Object : software\lq
Value : AD

Elitum.ElitebarBHO Object Recognized!
Type : RegValue
Data :
Category : Data Miner
Comment :
Rootkey : HKEY_CURRENT_USER
Object : software\lq
Value : AM

Elitum.ElitebarBHO Object Recognized!
Type : RegValue
Data :
Category : Data Miner
Comment :
Rootkey : HKEY_CURRENT_USER
Object : software\lq
Value : AT

Elitum.ElitebarBHO Object Recognized!
Type : RegValue
Data :
Category : Data Miner
Comment :
Rootkey : HKEY_CURRENT_USER
Object : software\lq
Value : AC

Elitum.ElitebarBHO Object Recognized!
Type : RegValue
Data :
Category : Data Miner
Comment :
Rootkey : HKEY_CURRENT_USER
Object : software\lq
Value : U

Elitum.ElitebarBHO Object Recognized!
Type : RegValue
Data :
Category : Data Miner
Comment :
Rootkey : HKEY_CURRENT_USER
Object : software\lq
Value : I

Elitum.ElitebarBHO Object Recognized!
Type : RegValue
Data :
Category : Data Miner
Comment :
Rootkey : HKEY_CURRENT_USER
Object : software\lq
Value : TR

Elitum.ElitebarBHO Object Recognized!
Type : RegValue
Data :
Category : Data Miner
Comment :
Rootkey : HKEY_CURRENT_USER
Object : software\lq
Value : country

Elitum.ElitebarBHO Object Recognized!
Type : RegValue
Data :
Category : Data Miner
Comment :
Rootkey : HKEY_CURRENT_USER
Object : software\lq
Value : city

Elitum.ElitebarBHO Object Recognized!
Type : RegValue
Data :
Category : Data Miner
Comment :
Rootkey : HKEY_CURRENT_USER
Object : software\lq
Value : state

Elitum.ElitebarBHO Object Recognized!
Type : RegValue
Data :
Category : Data Miner
Comment :
Rootkey : HKEY_CURRENT_USER
Object : software\lq
Value : RX

Elitum.ElitebarBHO Object Recognized!
Type : RegValue
Data :
Category : Data Miner
Comment :
Rootkey : HKEY_CURRENT_USER
Object : software\lq
Value : RX2.8

Elitum.ElitebarBHO Object Recognized!
Type : RegValue
Data :
Category : Data Miner
Comment :
Rootkey : HKEY_CURRENT_USER
Object : software\lq
Value : RX2.9

Elitum.ElitebarBHO Object Recognized!
Type : RegValue
Data :
Category : Data Miner
Comment :
Rootkey : HKEY_CURRENT_USER
Object : software\lq
Value : RX3.0

Elitum.ElitebarBHO Object Recognized!
Type : RegValue
Data :
Category : Data Miner
Comment :
Rootkey : HKEY_CURRENT_USER
Object : software\lq
Value : RX3.1

Elitum.ElitebarBHO Object Recognized!
Type : RegValue
Data :
Category : Data Miner
Comment :
Rootkey : HKEY_CURRENT_USER
Object : software\lq
Value : RX3.2

Elitum.ElitebarBHO Object Recognized!
Type : RegValue
Data :
Category : Data Miner
Comment :
Rootkey : HKEY_CURRENT_USER
Object : software\lq
Value : RX3.3

Elitum.ElitebarBHO Object Recognized!
Type : RegValue
Data :
Category : Data Miner
Comment :
Rootkey : HKEY_CURRENT_USER
Object : software\lq
Value : FU3.4

Elitum.ElitebarBHO Object Recognized!
Type : RegValue
Data :
Category : Data Miner
Comment :
Rootkey : HKEY_CURRENT_USER
Object : software\lq
Value : FU3.5

Elitum.ElitebarBHO Object Recognized!
Type : RegValue
Data :
Category : Data Miner
Comment :
Rootkey : HKEY_CURRENT_USER
Object : software\lq
Value : FU3.6

Elitum.ElitebarBHO Object Recognized!
Type : RegValue
Data :
Category : Data Miner
Comment :
Rootkey : HKEY_CURRENT_USER
Object : software\lq
Value : LU3.7

Elitum.ElitebarBHO Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment :
Rootkey : HKEY_LOCAL_MACHINE
Object : software\elitum

Elitum.ElitebarBHO Object Recognized!
Type : Folder
Category : Data Miner
Comment :
Object : C:\WINDOWS\EliteToolBar

Elitum.ElitebarBHO Object Recognized!
Type : Folder
Category : Data Miner
Comment :
Object : C:\WINDOWS\EliteSideBar

Elitum.ElitebarBHO Object Recognized!
Type : File
Data : elitebsg32.exe
Category : Data Miner
Comment :
Object : C:\WINDOWS\system32\



PeopleOnPage Object Recognized!
Type : RegValue
Data :
Category : Data Miner
Comment :
Rootkey : HKEY_LOCAL_MACHINE
Object : software\microsoft\windows\currentversion\run
Value : AutoUpdater

PeopleOnPage Object Recognized!
Type : Folder
Category : Data Miner
Comment :
Object : C:\Program Files\AutoUpdate

PeopleOnPage Object Recognized!
Type : File
Data : libexpat.dll
Category : Data Miner
Comment :
Object : C:\Program Files\autoupdate\



Favoriteman Object Recognized!
Type : File
Data : hosts.bho
Category : Malware
Comment :
Object : C:\WINDOWS\system32\drivers\etc\



ClearSearch Object Recognized!
Type : RegValue
Data :
Category : Data Miner
Comment :
Rootkey : HKEY_CURRENT_USER
Object : software\microsoft\internet explorer\urlsearchhooks
Value : {CFBFAE00-17A6-11D0-99CB-00C04FD64497}

IBIS Toolbar Object Recognized!
Type : Regkey
Data :
Category : Data Miner
Comment :
Rootkey : HKEY_CURRENT_USER
Object : software\microsoft\mediaplayer\control\playbar

IBIS Toolbar Object Recognized!
Type : RegValue
Data :
Category : Data Miner
Comment :
Rootkey : HKEY_CURRENT_USER
Object : software\microsoft\mediaplayer\control\playbar
Value : ClrShadow

IBIS Toolbar Object Recognized!
Type : RegValue
Data :
Category : Data Miner
Comment :
Rootkey : HKEY_CURRENT_USER
Object : software\microsoft\mediaplayer\control\playbar
Value : ClrHighlight

IBIS Toolbar Object Recognized!
Type : RegValue
Data :
Category : Data Miner
Comment :
Rootkey : HKEY_CURRENT_USER
Object : software\microsoft\mediaplayer\control\playbar
Value : ClrForeColor

IBIS Toolbar Object Recognized!
Type : RegValue
Data :
Category : Data Miner
Comment :
Rootkey
  • 0

#15
amf2880
Posted 26 April 2005 - 08:08 AM

amf2880

    Member

  • Topic Starter
  • Member
  • PipPip
  • 15 posts
4th and last portion of log file - 4/26:


IBIS Toolbar Object Recognized!
Type : RegValue
Data :
Category : Data Miner
Comment :
Rootkey : HKEY_CURRENT_USER
Object : software\microsoft\mediaplayer\control\playbar
Value : ClrBackColor

IBIS Toolbar Object Recognized!
Type : RegValue
Data :
Category : Data Miner
Comment :
Rootkey : HKEY_CURRENT_USER
Object : software\microsoft\mediaplayer\control\playbar
Value : ClrDownload

IBIS Toolbar Object Recognized!
Type : RegValue
Data :
Category : Data Miner
Comment :
Rootkey : HKEY_CURRENT_USER
Object : software\microsoft\mediaplayer\control\playbar
Value : ClrViewed

IBIS Toolbar Object Recognized!
Type : RegValue
Data :
Category : Data Miner
Comment :
Rootkey : HKEY_CURRENT_USER
Object : software\microsoft\mediaplayer\control\playbar
Value : ClrStatic

IBIS Toolbar Object Recognized!
Type : RegValue
Data :
Category : Data Miner
Comment :
Rootkey : HKEY_LOCAL_MACHINE
Object : software\microsoft\windows\currentversion\explorer
Value : ServerProc

IBIS Toolbar Object Recognized!
Type : RegValue
Data :
Category : Data Miner
Comment :
Rootkey : HKEY_LOCAL_MACHINE
Object : software\microsoft\windows\currentversion\installer\userdata
Value : TUID

DealHelper Object Recognized!
Type : RegValue
Data :
Category : Malware
Comment :
Rootkey : HKEY_CURRENT_USER
Object : software\microsoft\internet explorer\toolbar\webbrowser
Value : {01E04581-4EEE-11D0-BFE9-00AA005B4383}

DealHelper Object Recognized!
Type : Folder
Category : Malware
Comment :
Object : C:\WINDOWS\system32\DealHelper

Conditional scan result:
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
New critical objects: 46
Objects found so far: 418

8:56:13 AM Scan Complete

Summary Of This Scan
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
Total scanning time:00:05:56.875
Objects scanned:94709
Objects identified:418
Objects ignored:0
New critical objects:418
  • 0
Back to Lavasoft Support (Ad-aware) · Next Unread Topic →




Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

  1. Geeks to Go Community
  2. Retired Forums
  3. Lavasoft Support (Ad-aware)

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP