Jump to content

Welcome to Geeks to Go - Register now for FREE

Need help with your computer or device? Want to learn new tech skills? You're in the right place!
Geeks to Go is a friendly community of tech experts who can solve any problem you have. Just create a free account and post your question. Our volunteers will reply quickly and guide you through the steps. Don't let tech troubles stop you. Join Geeks to Go now and get the support you need!

How it Works Create Account
Photo

[Referred]Ad Aware finds spyware etc., but wont remove

Started by cjmdjm , Jul 04 2005 12:16 PM

  • Please log in to reply

#1
cjmdjm
Posted 04 July 2005 - 12:16 PM

cjmdjm

    New Member

  • Member
  • Pip
  • 4 posts
I have ad aware SE personal 1.06, the latest version. Whenever i do a full system scan, or any other type of scan for that matter, it scans fine, and finds lots of objects, hundreds of critical and negligable risk stuff, but when the scan is complete and i click the "next" button to remove/quarentine the files, nothing happens. I right click on an individual file/ad and do a select all, then right click on it and say quarentine selection, still nothing happens. Whats wrong?
  • 0

Advertisements

#2
don77
Posted 04 July 2005 - 01:02 PM

don77

    Malware Expert

  • Retired Staff
  • 18,526 posts
Hi and welcome cjmdjm

In order to assist you, we need to see the log from an Ad-Aware SE 1.06r1 full system scan.

Important Note! Before performing a scan, be sure that you have the most recent definitions file by using WebUpdate. (Click on the Globe icon, Click connect, Click OK, Click Finish.) At this current point * SE1R52 30.06.2005 * is the most recent definition file.

Ad-Aware SE comes preconfigured with default options so we need you to make only one change. Please deselect "Search for negligible risk entries" as negligible risk entries (MRU's) are not considered to be a threat. This option can be changed when choosing your scan type.

Select "Perform Full System Scan" and press "Next". When the scan has completed, click "Show Logfile".

Please copy/paste the complete log file here using the reply button. Don't quarantine or remove anything at this time, just post a complete logfile. This sometimes takes 2-3 posts to get it all posted. You will know you are at the end when you see the "Summary of this scan" information has been posted.

When you have posted your log here, Team Lavasoft can advise on what to do next.

Please post back if you have any questions or other problems
  • 0

#3
cjmdjm
Posted 04 July 2005 - 04:23 PM

cjmdjm

    New Member

  • Topic Starter
  • Member
  • Pip
  • 4 posts
Here it is, in its full glory:

Ad-Aware SE Build 1.06r1
Logfile Created on:Monday, July 04, 2005 5:06:45 PM
Created with Ad-Aware SE Personal, free for private use.
Using definitions file:SE1R52 30.06.2005
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»

References detected during the scan:
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
180Solutions(TAC index:6):2 total references
Alexa(TAC index:5):3 total references
BargainBuddy(TAC index:8):13 total references
BookedSpace(TAC index:10):3 total references
BroadCastPC(TAC index:7):1 total references
CoolWebSearch(TAC index:10):12 total references
DyFuCA(TAC index:3):3 total references
ExactSearchBar(TAC index:5):10 total references
IBIS Toolbar(TAC index:5):173 total references
istbar(TAC index:7):2 total references
Lycos Sidesearch(TAC index:7):1 total references
MemoryWatcher(TAC index:4):2 total references
Redirected hostfile entry(TAC index:4):4 total references
SideFind(TAC index:5):1 total references
StatBlaster(TAC index:8):2 total references
TopMoxie(TAC index:3):2 total references
Tracking Cookie(TAC index:3):4 total references
TurboDownload(TAC index:8):2 total references
Win32.Netlogon.A(TAC index:8):30 total references
WindUpdates(TAC index:8):5 total references
Zango(TAC index:6):1 total references
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»

Ad-Aware SE Settings
===========================
Set : Search for low-risk threats
Set : Safe mode (always request confirmation)
Set : Scan active processes
Set : Scan registry
Set : Deep-scan registry
Set : Scan my IE Favorites for banned URLs
Set : Scan my Hosts file

Extended Ad-Aware SE Settings
===========================
Set : Unload recognized processes & modules during scan
Set : Scan registry for all users instead of current user only
Set : Always try to unload modules before deletion
Set : During removal, unload Explorer and IE if necessary
Set : Let Windows remove files in use at next reboot
Set : Delete quarantined objects after restoring
Set : Include basic Ad-Aware settings in log file
Set : Include additional Ad-Aware settings in log file
Set : Include reference summary in log file
Set : Include alternate data stream details in log file
Set : Play sound at scan completion if scan locates critical objects


7-4-2005 5:06:45 PM - Scan started. (Full System Scan)

Listing running processes
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»

#:1 [smss.exe]
FilePath : \SystemRoot\System32\
ProcessID : 472
ThreadCreationTime : 7-4-2005 7:48:19 PM
BasePriority : Normal


#:2 [winlogon.exe]
FilePath : \??\C:\WINDOWS\system32\
ProcessID : 544
ThreadCreationTime : 7-4-2005 7:48:24 PM
BasePriority : High


Win32.Netlogon.A Object Recognized!
Type : Process
Data : netapi1078a.dll
TAC Rating : 8
Category : Malware
Comment : (CSI MATCH)
Object : C:\WINDOWS\System32\


Warning! Win32.Netlogon.A Object found in memory(C:\WINDOWS\System32\netapi1078a.dll)


#:3 [services.exe]
FilePath : C:\WINDOWS\system32\
ProcessID : 588
ThreadCreationTime : 7-4-2005 7:48:24 PM
BasePriority : Normal
FileVersion : 5.1.2600.0 (xpclient.010817-1148)
ProductVersion : 5.1.2600.0
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Services and Controller app
InternalName : services.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : services.exe

Win32.Netlogon.A Object Recognized!
Type : Process
Data : netapi1078a.dll
TAC Rating : 8
Category : Malware
Comment : (CSI MATCH)
Object : C:\WINDOWS\System32\


Warning! Win32.Netlogon.A Object found in memory(C:\WINDOWS\System32\netapi1078a.dll)


#:4 [lsass.exe]
FilePath : C:\WINDOWS\system32\
ProcessID : 600
ThreadCreationTime : 7-4-2005 7:48:24 PM
BasePriority : Normal
FileVersion : 5.1.2600.1106 (xpsp1.020828-1920)
ProductVersion : 5.1.2600.1106
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : LSA Shell (Export Version)
InternalName : lsass.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : lsass.exe

Win32.Netlogon.A Object Recognized!
Type : Process
Data : netapi1078a.dll
TAC Rating : 8
Category : Malware
Comment : (CSI MATCH)
Object : C:\WINDOWS\System32\


Warning! Win32.Netlogon.A Object found in memory(C:\WINDOWS\System32\netapi1078a.dll)


#:5 [ati2evxx.exe]
FilePath : C:\WINDOWS\System32\
ProcessID : 756
ThreadCreationTime : 7-4-2005 7:48:24 PM
BasePriority : Normal
FileVersion : 6.14.10.4107
ProductVersion : 6.14.10.4107.03
ProductName : ATI External Event Utility for WindowsNT and Windows9X
CompanyName : ATI Technologies Inc.
FileDescription : ATI External Event Utility EXE Module
InternalName : ATI2EVXX.EXE
LegalCopyright : Copyright © 1999-2004 ATI Technologies Inc.
OriginalFilename : ATI2EVXX.EXE

Win32.Netlogon.A Object Recognized!
Type : Process
Data : netapi1078a.dll
TAC Rating : 8
Category : Malware
Comment : (CSI MATCH)
Object : C:\WINDOWS\System32\


Warning! Win32.Netlogon.A Object found in memory(C:\WINDOWS\System32\netapi1078a.dll)


#:6 [svchost.exe]
FilePath : C:\WINDOWS\system32\
ProcessID : 796
ThreadCreationTime : 7-4-2005 7:48:24 PM
BasePriority : Normal
FileVersion : 5.1.2600.0 (xpclient.010817-1148)
ProductVersion : 5.1.2600.0
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Generic Host Process for Win32 Services
InternalName : svchost.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : svchost.exe

Win32.Netlogon.A Object Recognized!
Type : Process
Data : netapi1078a.dll
TAC Rating : 8
Category : Malware
Comment : (CSI MATCH)
Object : C:\WINDOWS\System32\


Warning! Win32.Netlogon.A Object found in memory(C:\WINDOWS\System32\netapi1078a.dll)


#:7 [svchost.exe]
FilePath : C:\WINDOWS\System32\
ProcessID : 848
ThreadCreationTime : 7-4-2005 7:48:24 PM
BasePriority : Normal
FileVersion : 5.1.2600.0 (xpclient.010817-1148)
ProductVersion : 5.1.2600.0
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Generic Host Process for Win32 Services
InternalName : svchost.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : svchost.exe

Win32.Netlogon.A Object Recognized!
Type : Process
Data : netapi1078a.dll
TAC Rating : 8
Category : Malware
Comment : (CSI MATCH)
Object : C:\WINDOWS\System32\


Warning! Win32.Netlogon.A Object found in memory(C:\WINDOWS\System32\netapi1078a.dll)


#:8 [spoolsv.exe]
FilePath : C:\WINDOWS\system32\
ProcessID : 1156
ThreadCreationTime : 7-4-2005 7:48:25 PM
BasePriority : Normal
FileVersion : 5.1.2600.0 (XPClient.010817-1148)
ProductVersion : 5.1.2600.0
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Spooler SubSystem App
InternalName : spoolsv.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : spoolsv.exe

Win32.Netlogon.A Object Recognized!
Type : Process
Data : netapi1078a.dll
TAC Rating : 8
Category : Malware
Comment : (CSI MATCH)
Object : C:\WINDOWS\System32\


Warning! Win32.Netlogon.A Object found in memory(C:\WINDOWS\System32\netapi1078a.dll)


#:9 [ati2evxx.exe]
FilePath : C:\WINDOWS\system32\
ProcessID : 1500
ThreadCreationTime : 7-4-2005 7:48:30 PM
BasePriority : Normal
FileVersion : 6.14.10.4107
ProductVersion : 6.14.10.4107.03
ProductName : ATI External Event Utility for WindowsNT and Windows9X
CompanyName : ATI Technologies Inc.
FileDescription : ATI External Event Utility EXE Module
InternalName : ATI2EVXX.EXE
LegalCopyright : Copyright © 1999-2004 ATI Technologies Inc.
OriginalFilename : ATI2EVXX.EXE

Win32.Netlogon.A Object Recognized!
Type : Process
Data : netapi1078a.dll
TAC Rating : 8
Category : Malware
Comment : (CSI MATCH)
Object : C:\WINDOWS\System32\


Warning! Win32.Netlogon.A Object found in memory(C:\WINDOWS\System32\netapi1078a.dll)


#:10 [explorer.exe]
FilePath : C:\WINDOWS\
ProcessID : 1548
ThreadCreationTime : 7-4-2005 7:48:30 PM
BasePriority : Normal
FileVersion : 6.00.2800.1106 (xpsp1.020828-1920)
ProductVersion : 6.00.2800.1106
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Windows Explorer
InternalName : explorer
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : EXPLORER.EXE

#:11 [cdac11ba.exe]
FilePath : C:\WINDOWS\System32\drivers\
ProcessID : 1676
ThreadCreationTime : 7-4-2005 7:48:32 PM
BasePriority : Normal
FileVersion : 4.20.030
ProductVersion : 4.20.030 Windows NT 2002/01/29
ProductName : SafeCast Windows NT
CompanyName : Macrovision
FileDescription : Macrovision RTS Service
InternalName : CDANTSRV
LegalCopyright : Copyright © 1998-2003 Macrovision Corp.
OriginalFilename : CDANTSRV.EXE
Comments : StringFileInfo: U.S. English

Win32.Netlogon.A Object Recognized!
Type : Process
Data : netapi1078a.dll
TAC Rating : 8
Category : Malware
Comment : (CSI MATCH)
Object : C:\WINDOWS\System32\


Warning! Win32.Netlogon.A Object found in memory(C:\WINDOWS\System32\netapi1078a.dll)

Warning! "C:\WINDOWS\System32\drivers\CDAC11BA.EXE"Process could not be terminated!

#:12 [cisvc.exe]
FilePath : C:\WINDOWS\system32\
ProcessID : 1696
ThreadCreationTime : 7-4-2005 7:48:32 PM
BasePriority : Normal
FileVersion : 5.1.2600.0 (xpclient.010817-1148)
ProductVersion : 5.1.2600.0
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Content Index service
InternalName : cisvc.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : cisvc.exe

Win32.Netlogon.A Object Recognized!
Type : Process
Data : netapi1078a.dll
TAC Rating : 8
Category : Malware
Comment : (CSI MATCH)
Object : C:\WINDOWS\System32\


Warning! Win32.Netlogon.A Object found in memory(C:\WINDOWS\System32\netapi1078a.dll)

Warning! "C:\WINDOWS\system32\cisvc.exe"Process could not be terminated!

#:13 [frameworkservice.exe]
FilePath : C:\Common Framework\
ProcessID : 1748
ThreadCreationTime : 7-4-2005 7:48:33 PM
BasePriority : Normal
FileVersion : 3.1.1.184
ProductName : McAfee Common Framework
CompanyName : Network Associates, Inc.
FileDescription : Framework Service
InternalName : Framework
LegalCopyright : Copyright© 2000-2003 Networks Associates Technology, Inc. All Rights Reserved.
OriginalFilename : Framework.exe

Win32.Netlogon.A Object Recognized!
Type : Process
Data : netapi1078a.dll
TAC Rating : 8
Category : Malware
Comment : (CSI MATCH)
Object : C:\WINDOWS\System32\


Warning! Win32.Netlogon.A Object found in memory(C:\WINDOWS\System32\netapi1078a.dll)


#:14 [mcshield.exe]
FilePath : C:\Mcafee\
ProcessID : 1828
ThreadCreationTime : 7-4-2005 7:48:34 PM
BasePriority : High


Win32.Netlogon.A Object Recognized!
Type : Process
Data : netapi1078a.dll
TAC Rating : 8
Category : Malware
Comment : (CSI MATCH)
Object : C:\WINDOWS\System32\


Warning! Win32.Netlogon.A Object found in memory(C:\WINDOWS\System32\netapi1078a.dll)


#:15 [uiznp.exe]
FilePath : C:\Program Files\Hrpjzvk\
ProcessID : 1868
ThreadCreationTime : 7-4-2005 7:48:34 PM
BasePriority : Normal


#:16 [vstskmgr.exe]
FilePath : C:\Mcafee\
ProcessID : 1936
ThreadCreationTime : 7-4-2005 7:48:37 PM
BasePriority : Normal


Win32.Netlogon.A Object Recognized!
Type : Process
Data : netapi1078a.dll
TAC Rating : 8
Category : Malware
Comment : (CSI MATCH)
Object : C:\WINDOWS\System32\


Warning! Win32.Netlogon.A Object found in memory(C:\WINDOWS\System32\netapi1078a.dll)


#:17 [svchost.exe]
FilePath : C:\WINDOWS\System32\
ProcessID : 120
ThreadCreationTime : 7-4-2005 7:48:37 PM
BasePriority : Normal
FileVersion : 5.1.2600.0 (xpclient.010817-1148)
ProductVersion : 5.1.2600.0
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Generic Host Process for Win32 Services
InternalName : svchost.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : svchost.exe

Win32.Netlogon.A Object Recognized!
Type : Process
Data : netapi1078a.dll
TAC Rating : 8
Category : Malware
Comment : (CSI MATCH)
Object : C:\WINDOWS\System32\


Warning! Win32.Netlogon.A Object found in memory(C:\WINDOWS\System32\netapi1078a.dll)


#:18 [cidaemon.exe]
FilePath : C:\WINDOWS\system32\
ProcessID : 2504
ThreadCreationTime : 7-4-2005 7:55:53 PM
BasePriority : Idle
FileVersion : 5.1.2600.0 (xpclient.010817-1148)
ProductVersion : 5.1.2600.0
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Indexing Service filter daemon
InternalName : cidaemon.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : cidaemon.exe

Win32.Netlogon.A Object Recognized!
Type : Process
Data : netapi1078a.dll
TAC Rating : 8
Category : Malware
Comment : (CSI MATCH)
Object : C:\WINDOWS\System32\


Warning! Win32.Netlogon.A Object found in memory(C:\WINDOWS\System32\netapi1078a.dll)


#:19 [firefox.exe]
FilePath : C:\Program Files\Mozilla Firefox\
ProcessID : 1668
ThreadCreationTime : 7-4-2005 9:49:03 PM
BasePriority : Normal


Win32.Netlogon.A Object Recognized!
Type : Process
Data : netapi1078a.dll
TAC Rating : 8
Category : Malware
Comment : (CSI MATCH)
Object : C:\WINDOWS\System32\


Warning! Win32.Netlogon.A Object found in memory(C:\WINDOWS\System32\netapi1078a.dll)


#:20 [ctfmon.exe]
FilePath : C:\WINDOWS\System32\
ProcessID : 592
ThreadCreationTime : 7-4-2005 9:49:03 PM
BasePriority : Normal
FileVersion : 5.1.2600.1106 (xpsp1.020828-1920)
ProductVersion : 5.1.2600.1106
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : CTF Loader
InternalName : CTFMON
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : CTFMON.EXE

Win32.Netlogon.A Object Recognized!
Type : Process
Data : netapi1078a.dll
TAC Rating : 8
Category : Malware
Comment : (CSI MATCH)
Object : C:\WINDOWS\System32\


Warning! Win32.Netlogon.A Object found in memory(C:\WINDOWS\System32\netapi1078a.dll)

"C:\WINDOWS\System32\ctfmon.exe"Process terminated successfully

#:21 [ad-aware.exe]
FilePath : C:\Program Files\Lavasoft\Ad-Aware SE Personal\
ProcessID : 2260
ThreadCreationTime : 7-4-2005 10:06:37 PM
BasePriority : Normal
FileVersion : 6.2.0.236
ProductVersion : SE 106
ProductName : Lavasoft Ad-Aware SE
CompanyName : Lavasoft Sweden
FileDescription : Ad-Aware SE Core application
InternalName : Ad-Aware.exe
LegalCopyright : Copyright © Lavasoft AB Sweden
OriginalFilename : Ad-Aware.exe
Comments : All Rights Reserved

Win32.Netlogon.A Object Recognized!
Type : Process
Data : netapi1078a.dll
TAC Rating : 8
Category : Malware
Comment : (CSI MATCH)
Object : C:\WINDOWS\System32\


Warning! Win32.Netlogon.A Object found in memory(C:\WINDOWS\System32\netapi1078a.dll)


Memory scan result:
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
New critical objects: 0
Objects found so far: 18


Started registry scan
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»

TurboDownload Object Recognized!
Type : Regkey
Data :
TAC Rating : 8
Category : Data Miner
Comment :
Rootkey : HKEY_LOCAL_MACHINE
Object : software\microsoft\windows\currentversion\uninstall\{14d108c8-dd97-4b78-8b50-c981500abb8f}

TurboDownload Object Recognized!
Type : RegValue
Data :
TAC Rating : 8
Category : Data Miner
Comment :
Rootkey : HKEY_LOCAL_MACHINE
Object : software\microsoft\windows\currentversion\uninstall\{14d108c8-dd97-4b78-8b50-c981500abb8f}
Value : UninstallString

Alexa Object Recognized!
Type : RegValue
Data :
TAC Rating : 5
Category : Data Miner
Comment : "{c95fe080-8f5d-11d2-a20b-00aa003c157a}"
Rootkey : HKEY_USERS
Object : .DEFAULT\software\microsoft\internet explorer\extensions\cmdmapping
Value : {c95fe080-8f5d-11d2-a20b-00aa003c157a}

Alexa Object Recognized!
Type : RegValue
Data :
TAC Rating : 5
Category : Data Miner
Comment : "{c95fe080-8f5d-11d2-a20b-00aa003c157a}"
Rootkey : HKEY_USERS
Object : S-1-5-18\software\microsoft\internet explorer\extensions\cmdmapping
Value : {c95fe080-8f5d-11d2-a20b-00aa003c157a}

Alexa Object Recognized!
Type : RegValue
Data :
TAC Rating : 5
Category : Data Miner
Comment : "{c95fe080-8f5d-11d2-a20b-00aa003c157a}"
Rootkey : HKEY_USERS
Object : S-1-5-21-1645522239-1229272821-682003330-1003\software\microsoft\internet explorer\extensions\cmdmapping
Value : {c95fe080-8f5d-11d2-a20b-00aa003c157a}

Registry Scan result:
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
New critical objects: 5
Objects found so far: 23


Started deep registry scan
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»

Deep registry scan result:
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
New critical objects: 0
Objects found so far: 23


Started Tracking Cookie scan
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»


Tracking Cookie Object Recognized!
Type : IECache Entry
Data : dennis [email protected][1].txt
TAC Rating : 3
Category : Data Miner
Comment : Hits:1
Value : Cookie:dennis [email protected]/
Expires : 4-5-2035 4:50:38 PM
LastSync : Hits:1
UseCount : 0
Hits : 1

Tracking Cookie Object Recognized!
Type : IECache Entry
Data : dennis martin@oinadserve[1].txt
TAC Rating : 3
Category : Data Miner
Comment : Hits:945
Value : Cookie:dennis [email protected]/
Expires : 12-31-2020 7:00:00 PM
LastSync : Hits:945
UseCount : 0
Hits : 945

Tracking Cookie Object Recognized!
Type : IECache Entry
Data : dennis martin@real[2].txt
TAC Rating : 3
Category : Data Miner
Comment : Hits:2961
Value : Cookie:dennis [email protected]/
Expires : 5-1-2035 8:07:38 PM
LastSync : Hits:2961
UseCount : 0
Hits : 2961

Tracking Cookie Object Recognized!
Type : IECache Entry
Data : dennis martin@live365[1].txt
TAC Rating : 3
Category : Data Miner
Comment : Hits:144
Value : Cookie:dennis [email protected]/
Expires : 3-29-2010 3:01:50 PM
LastSync : Hits:144
UseCount : 0
Hits : 144

Tracking cookie scan result:
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
New critical objects: 4
Objects found so far: 27



Deep scanning and examining files (C:)
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»

MemoryWatcher Object Recognized!
Type : File
Data : mw_4s_stub.exe
TAC Rating : 4
Category : Malware
Comment :
Object : C:\Documents and Settings\Dennis Martin\Local Settings\Temp\



Lycos Sidesearch Object Recognized!
Type : File
Data : SEPinst.exe
TAC Rating : 7
Category : Misc
Comment :
Object : C:\Documents and Settings\Dennis Martin\Local Settings\Temp\


Object "IExploreSkins.exe" found in this archive.

IBIS Toolbar Object Recognized!
Type : File
Data : temp.cab
TAC Rating : 5
Category : Data Miner
Comment : Object "IExploreSkins.exe" found in this archive.
Object : C:\Documents and Settings\Dennis Martin\Local Settings\Temp\


Object "WToolsA.exe" found in this archive.

IBIS Toolbar Object Recognized!
Type : File
Data : WinTA[1].cab
TAC Rating : 5
Category : Data Miner
Comment : Object "WToolsA.exe" found in this archive.
Object : C:\Documents and Settings\Dennis Martin\Local Settings\Temporary Internet Files\Content.IE5\SFOLM3YV\



WindUpdates Object Recognized!
Type : File
Data : AdStatComm.dll
TAC Rating : 8
Category : Malware
Comment :
Object : C:\Program Files\AdStatus Service\



TopMoxie Object Recognized!
Type : File
Data : Dc118.exe
TAC Rating : 3
Category : Data Miner
Comment :
Object : C:\RECYCLER\S-1-5-21-1645522239-1229272821-682003330-1003\



IBIS Toolbar Object Recognized!
Type : File
Data : A0081403.exe
TAC Rating : 5
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{34B36165-D669-49F2-9243-8B37458CC3A2}\RP213\



IBIS Toolbar Object Recognized!
Type : File
Data : A0081424.exe
TAC Rating : 5
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{34B36165-D669-49F2-9243-8B37458CC3A2}\RP214\



IBIS Toolbar Object Recognized!
Type : File
Data : A0081440.exe
TAC Rating : 5
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{34B36165-D669-49F2-9243-8B37458CC3A2}\RP215\



IBIS Toolbar Object Recognized!
Type : File
Data : A0081464.exe
TAC Rating : 5
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{34B36165-D669-49F2-9243-8B37458CC3A2}\RP217\



IBIS Toolbar Object Recognized!
Type : File
Data : A0081479.exe
TAC Rating : 5
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{34B36165-D669-49F2-9243-8B37458CC3A2}\RP217\



IBIS Toolbar Object Recognized!
Type : File
Data : A0081517.exe
TAC Rating : 5
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{34B36165-D669-49F2-9243-8B37458CC3A2}\RP219\



IBIS Toolbar Object Recognized!
Type : File
Data : A0081627.exe
TAC Rating : 5
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{34B36165-D669-49F2-9243-8B37458CC3A2}\RP220\



IBIS Toolbar Object Recognized!
Type : File
Data : A0081648.exe
TAC Rating : 5
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{34B36165-D669-49F2-9243-8B37458CC3A2}\RP220\



IBIS Toolbar Object Recognized!
Type : File
Data : A0082648.exe
TAC Rating : 5
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{34B36165-D669-49F2-9243-8B37458CC3A2}\RP221\



IBIS Toolbar Object Recognized!
Type : File
Data : A0082662.exe
TAC Rating : 5
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{34B36165-D669-49F2-9243-8B37458CC3A2}\RP221\



IBIS Toolbar Object Recognized!
Type : File
Data : A0082687.exe
TAC Rating : 5
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{34B36165-D669-49F2-9243-8B37458CC3A2}\RP223\



IBIS Toolbar Object Recognized!
Type : File
Data : A0082697.exe
TAC Rating : 5
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{34B36165-D669-49F2-9243-8B37458CC3A2}\RP223\



IBIS Toolbar Object Recognized!
Type : File
Data : A0082804.exe
TAC Rating : 5
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{34B36165-D669-49F2-9243-8B37458CC3A2}\RP229\



IBIS Toolbar Object Recognized!
Type : File
Data : A0082817.exe
TAC Rating : 5
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{34B36165-D669-49F2-9243-8B37458CC3A2}\RP229\



IBIS Toolbar Object Recognized!
Type : File
Data : A0082833.exe
TAC Rating : 5
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{34B36165-D669-49F2-9243-8B37458CC3A2}\RP230\



IBIS Toolbar Object Recognized!
Type : File
Data : A0082856.exe
TAC Rating : 5
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{34B36165-D669-49F2-9243-8B37458CC3A2}\RP231\



IBIS Toolbar Object Recognized!
Type : File
Data : A0082922.exe
TAC Rating : 5
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{34B36165-D669-49F2-9243-8B37458CC3A2}\RP233\



IBIS Toolbar Object Recognized!
Type : File
Data : A0082947.exe
TAC Rating : 5
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{34B36165-D669-49F2-9243-8B37458CC3A2}\RP234\



IBIS Toolbar Object Recognized!
Type : File
Data : A0082965.exe
TAC Rating : 5
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{34B36165-D669-49F2-9243-8B37458CC3A2}\RP235\



IBIS Toolbar Object Recognized!
Type : File
Data : A0082988.exe
TAC Rating : 5
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{34B36165-D669-49F2-9243-8B37458CC3A2}\RP236\



IBIS Toolbar Object Recognized!
Type : File
Data : A0083009.exe
TAC Rating : 5
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{34B36165-D669-49F2-9243-8B37458CC3A2}\RP237\



IBIS Toolbar Object Recognized!
Type : File
Data : A0083033.exe
TAC Rating : 5
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{34B36165-D669-49F2-9243-8B37458CC3A2}\RP238\



IBIS Toolbar Object Recognized!
Type : File
Data : A0083083.exe
TAC Rating : 5
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{34B36165-D669-49F2-9243-8B37458CC3A2}\RP240\



IBIS Toolbar Object Recognized!
Type : File
Data : A0083103.exe
TAC Rating : 5
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{34B36165-D669-49F2-9243-8B37458CC3A2}\RP241\



IBIS Toolbar Object Recognized!
Type : File
Data : A0083130.exe
TAC Rating : 5
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{34B36165-D669-49F2-9243-8B37458CC3A2}\RP241\



IBIS Toolbar Object Recognized!
Type : File
Data : A0083159.exe
TAC Rating : 5
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{34B36165-D669-49F2-9243-8B37458CC3A2}\RP243\



IBIS Toolbar Object Recognized!
Type : File
Data : A0084161.exe
TAC Rating : 5
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{34B36165-D669-49F2-9243-8B37458CC3A2}\RP243\



IBIS Toolbar Object Recognized!
Type : File
Data : A0084174.exe
TAC Rating : 5
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{34B36165-D669-49F2-9243-8B37458CC3A2}\RP243\



IBIS Toolbar Object Recognized!
Type : File
Data : A0084192.exe
TAC Rating : 5
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{34B36165-D669-49F2-9243-8B37458CC3A2}\RP244\



IBIS Toolbar Object Recognized!
Type : File
Data : A0084243.exe
TAC Rating : 5
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{34B36165-D669-49F2-9243-8B37458CC3A2}\RP245\



IBIS Toolbar Object Recognized!
Type : File
Data : A0085244.exe
TAC Rating : 5
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{34B36165-D669-49F2-9243-8B37458CC3A2}\RP246\



IBIS Toolbar Object Recognized!
Type : File
Data : A0085257.exe
TAC Rating : 5
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{34B36165-D669-49F2-9243-8B37458CC3A2}\RP246\



IBIS Toolbar Object Recognized!
Type : File
Data : A0085303.exe
TAC Rating : 5
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{34B36165-D669-49F2-9243-8B37458CC3A2}\RP248\



IBIS Toolbar Object Recognized!
Type : File
Data : A0085331.exe
TAC Rating : 5
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{34B36165-D669-49F2-9243-8B37458CC3A2}\RP248\



IBIS Toolbar Object Recognized!
Type : File
Data : A0085375.exe
TAC Rating : 5
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{34B36165-D669-49F2-9243-8B37458CC3A2}\RP248\



IBIS Toolbar Object Recognized!
Type : File
Data : A0085389.exe
TAC Rating : 5
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{34B36165-D669-49F2-9243-8B37458CC3A2}\RP249\



WindUpdates Object Recognized!
Type : File
Data : A0085394.exe
TAC Rating : 8
Category : Malware
Comment :
Object : C:\System Volume Information\_restore{34B36165-D669-49F2-9243-8B37458CC3A2}\RP249\



WindUpdates Object Recognized!
Type : File
Data : A0085395.exe
TAC Rating : 8
Category : Malware
Comment :
Object : C:\System Volume Information\_restore{34B36165-D669-49F2-9243-8B37458CC3A2}\RP249\



IBIS Toolbar Object Recognized!
Type : File
Data : A0085420.exe
TAC Rating : 5
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{34B36165-D669-49F2-9243-8B37458CC3A2}\RP250\



IBIS Toolbar Object Recognized!
Type : File
Data : A0085473.exe
TAC Rating : 5
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{34B36165-D669-49F2-9243-8B37458CC3A2}\RP251\



IBIS Toolbar Object Recognized!
Type : File
Data : A0085510.exe
TAC Rating : 5
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{34B36165-D669-49F2-9243-8B37458CC3A2}\RP251\



IBIS Toolbar Object Recognized!
Type : File
Data : A0085558.exe
TAC Rating : 5
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{34B36165-D669-49F2-9243-8B37458CC3A2}\RP252\



IBIS Toolbar Object Recognized!
Type : File
Data : A0085589.exe
TAC Rating : 5
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{34B36165-D669-49F2-9243-8B37458CC3A2}\RP253\



IBIS Toolbar Object Recognized!
Type : File
Data : A0086589.exe
TAC Rating : 5
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{34B36165-D669-49F2-9243-8B37458CC3A2}\RP253\



IBIS Toolbar Object Recognized!
Type : File
Data : A0086664.exe
TAC Rating : 5
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{34B36165-D669-49F2-9243-8B37458CC3A2}\RP254\



IBIS Toolbar Object Recognized!
Type : File
Data : A0086712.exe
TAC Rating : 5
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{34B36165-D669-49F2-9243-8B37458CC3A2}\RP255\



IBIS Toolbar Object Recognized!
Type : File
Data : A0086754.exe
TAC Rating : 5
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{34B36165-D669-49F2-9243-8B37458CC3A2}\RP257\



IBIS Toolbar Object Recognized!
Type : File
Data : A0086798.exe
TAC Rating : 5
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{34B36165-D669-49F2-9243-8B37458CC3A2}\RP258\



IBIS Toolbar Object Recognized!
Type : File
Data : A0086814.exe
TAC Rating : 5
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{34B36165-D669-49F2-9243-8B37458CC3A2}\RP258\



IBIS Toolbar Object Recognized!
Type : File
Data : A0086870.exe
TAC Rating : 5
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{34B36165-D669-49F2-9243-8B37458CC3A2}\RP259\



IBIS Toolbar Object Recognized!
Type : File
Data : A0086922.exe
TAC Rating : 5
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{34B36165-D669-49F2-9243-8B37458CC3A2}\RP260\



IBIS Toolbar Object Recognized!
Type : File
Data : A0087311.exe
TAC Rating : 5
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{34B36165-D669-49F2-9243-8B37458CC3A2}\RP263\



IBIS Toolbar Object Recognized!
Type : File
Data : A0087416.exe
TAC Rating : 5
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{34B36165-D669-49F2-9243-8B37458CC3A2}\RP263\



IBIS Toolbar Object Recognized!
Type : File
Data : A0087560.exe
TAC Rating : 5
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{34B36165-D669-49F2-9243-8B37458CC3A2}\RP265\



IBIS Toolbar Object Recognized!
Type : File
Data : A0087603.exe
TAC Rating : 5
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{34B36165-D669-49F2-9243-8B37458CC3A2}\RP266\



IBIS Toolbar Object Recognized!
Type : File
Data : A0087714.exe
TAC Rating : 5
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{34B36165-D669-49F2-9243-8B37458CC3A2}\RP268\



IBIS Toolbar Object Recognized!
Type : File
Data : A0087784.exe
TAC Rating : 5
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{34B36165-D669-49F2-9243-8B37458CC3A2}\RP269\



IBIS Toolbar Object Recognized!
Type : File
Data : A0087844.exe
TAC Rating : 5
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{34B36165-D669-49F2-9243-8B37458CC3A2}\RP270\



IBIS Toolbar Object Recognized!
Type : File
Data : A0087930.exe
TAC Rating : 5
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{34B36165-D669-49F2-9243-8B37458CC3A2}\RP271\



IBIS Toolbar Object Recognized!
Type : File
Data : A0087974.exe
TAC Rating : 5
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{34B36165-D669-49F2-9243-8B37458CC3A2}\RP272\



IBIS Toolbar Object Recognized!
Type : File
Data : A0088973.exe
TAC Rating : 5
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{34B36165-D669-49F2-9243-8B37458CC3A2}\RP273\



IBIS Toolbar Object Recognized!
Type : File
Data : A0089019.exe
TAC Rating : 5
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{34B36165-D669-49F2-9243-8B37458CC3A2}\RP274\



IBIS Toolbar Object Recognized!
Type : File
Data : A0089051.exe
TAC Rating : 5
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{34B36165-D669-49F2-9243-8B37458CC3A2}\RP274\



IBIS Toolbar Object Recognized!
Type : File
Data : A0090051.exe
TAC Rating : 5
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{34B36165-D669-49F2-9243-8B37458CC3A2}\RP275\



IBIS Toolbar Object Recognized!
Type : File
Data : A0090073.exe
TAC Rating : 5
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{34B36165-D669-49F2-9243-8B37458CC3A2}\RP275\



IBIS Toolbar Object Recognized!
Type : File
Data : A0091071.exe
TAC Rating : 5
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{34B36165-D669-49F2-9243-8B37458CC3A2}\RP276\



IBIS Toolbar Object Recognized!
Type : File
Data : A0091096.exe
TAC Rating : 5
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{34B36165-D669-49F2-9243-8B37458CC3A2}\RP276\



IBIS Toolbar Object Recognized!
Type : File
Data : A0091125.exe
TAC Rating : 5
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{34B36165-D669-49F2-9243-8B37458CC3A2}\RP277\



IBIS Toolbar Object Recognized!
Type : File
Data : A0091160.exe
TAC Rating : 5
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{34B36165-D669-49F2-9243-8B37458CC3A2}\RP277\



IBIS Toolbar Object Recognized!
Type : File
Data : A0091181.exe
TAC Rating : 5
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{34B36165-D669-49F2-9243-8B37458CC3A2}\RP278\



IBIS Toolbar Object Recognized!
Type : File
Data : A0091218.exe
TAC Rating : 5
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{34B36165-D669-49F2-9243-8B37458CC3A2}\RP278\



IBIS Toolbar Object Recognized!
Type : File
Data : A0091306.exe
TAC Rating : 5
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{34B36165-D669-49F2-9243-8B37458CC3A2}\RP280\



IBIS Toolbar Object Recognized!
Type : File
Data : A0091362.exe
TAC Rating : 5
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{34B36165-D669-49F2-9243-8B37458CC3A2}\RP280\



IBIS Toolbar Object Recognized!
Type : File
Data : A0091413.exe
TAC Rating : 5
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{34B36165-D669-49F2-9243-8B37458CC3A2}\RP281\



IBIS Toolbar Object Recognized!
Type : File
Data : A0091436.exe
TAC Rating : 5
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{34B36165-D669-49F2-9243-8B37458CC3A2}\RP281\



IBIS Toolbar Object Recognized!
Type : File
Data : A0091476.exe
TAC Rating : 5
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{34B36165-D669-49F2-9243-8B37458CC3A2}\RP282\



IBIS Toolbar Object Recognized!
Type : File
Data : A0092475.exe
TAC Rating : 5
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{34B36165-D669-49F2-9243-8B37458CC3A2}\RP282\



IBIS Toolbar Object Recognized!
Type : File
Data : A0092506.exe
TAC Rating : 5
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{34B36165-D669-49F2-9243-8B37458CC3A2}\RP283\



IBIS Toolbar Object Recognized!
Type : File
Data : A0092530.exe
TAC Rating : 5
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{34B36165-D669-49F2-9243-8B37458CC3A2}\RP284\



IBIS Toolbar Object Recognized!
Type : File
Data : A0092581.exe
TAC Rating : 5
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{34B36165-D669-49F2-9243-8B37458CC3A2}\RP285\



IBIS Toolbar Object Recognized!
Type : File
Data : A0092658.exe
TAC Rating : 5
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{34B36165-D669-49F2-9243-8B37458CC3A2}\RP287\



IBIS Toolbar Object Recognized!
Type : File
Data : A0092659.exe
TAC Rating : 5
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{34B36165-D669-49F2-9243-8B37458CC3A2}\RP287\



IBIS Toolbar Object Recognized!
Type : File
Data : A0093651.exe
TAC Rating : 5
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{34B36165-D669-49F2-9243-8B37458CC3A2}\RP288\



IBIS Toolbar Object Recognized!
Type : File
Data : A0093656.exe
TAC Rating : 5
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{34B36165-D669-49F2-9243-8B37458CC3A2}\RP288\



IBIS Toolbar Object Recognized!
Type : File
Data : A0093685.exe
TAC Rating : 5
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{34B36165-D669-49F2-9243-8B37458CC3A2}\RP288\



IBIS Toolbar Object Recognized!
Type : File
Data : A0093690.exe
TAC Rating : 5
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{34B36165-D669-49F2-9243-8B37458CC3A2}\RP288\



IBIS Toolbar Object Recognized!
Type : File
Data : A0094679.exe
TAC Rating : 5
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{34B36165-D669-49F2-9243-8B37458CC3A2}\RP289\



IBIS Toolbar Object Recognized!
Type : File
Data : A0095684.exe
TAC Rating : 5
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{34B36165-D669-49F2-9243-8B37458CC3A2}\RP289\



IBIS Toolbar Object Recognized!
Type : File
Data : A0095731.exe
TAC Rating : 5
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{34B36165-D669-49F2-9243-8B37458CC3A2}\RP289\



IBIS Toolbar Object Recognized!
Type : File
Data : A0095739.exe
TAC Rating : 5
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{34B36165-D669-49F2-9243-8B37458CC3A2}\RP289\



IBIS Toolbar Object Recognized!
Type : File
Data : A0095818.exe
TAC Rating : 5
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{34B36165-D669-49F2-9243-8B37458CC3A2}\RP290\



IBIS Toolbar Object Recognized!
Type : File
Data : A0095823.exe
TAC Rating : 5
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{34B36165-D669-49F2-9243-8B37458CC3A2}\RP290\



IBIS Toolbar Object Recognized!
Type : File
Data : A0095828.exe
TAC Rating : 5
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{34B36165-D669-49F2-9243-8B37458CC3A2}\RP290\



IBIS Toolbar Object Recognized!
Type : File
Data : A0095960.exe
TAC Rating : 5
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{34B36165-D669-49F2-9243-8B37458CC3A2}\RP299\



IBIS Toolbar Object Recognized!
Type : File
Data : A0095972.exe
TAC Rating : 5
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{34B36165-D669-49F2-9243-8B37458CC3A2}\RP299\



IBIS Toolbar Object Recognized
  • 0

#4
cjmdjm
Posted 04 July 2005 - 04:27 PM

cjmdjm

    New Member

  • Topic Starter
  • Member
  • Pip
  • 4 posts
IBIS Toolbar Object Recognized!
Type : File
Data : A0095973.exe
TAC Rating : 5
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{34B36165-D669-49F2-9243-8B37458CC3A2}\RP299\



IBIS Toolbar Object Recognized!
Type : File
Data : A0096026.exe
TAC Rating : 5
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{34B36165-D669-49F2-9243-8B37458CC3A2}\RP300\



ExactSearchBar Object Recognized!
Type : File
Data : A0096027.srg
TAC Rating : 5
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{34B36165-D669-49F2-9243-8B37458CC3A2}\RP300\
FileVersion : 1, 0, 0, 8
ProductVersion : 1, 0, 0, 8
ProductName : Download Module
CompanyName : eXact Advertising
FileDescription : Download Module
InternalName : Download Utility
LegalCopyright : Copyright © 2003, 2004. eXact Advertising, LLC. All Rights Reserved.
OriginalFilename : exdl.exe


IBIS Toolbar Object Recognized!
Type : File
Data : A0096032.exe
TAC Rating : 5
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{34B36165-D669-49F2-9243-8B37458CC3A2}\RP300\



IBIS Toolbar Object Recognized!
Type : File
Data : A0096038.exe
TAC Rating : 5
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{34B36165-D669-49F2-9243-8B37458CC3A2}\RP300\



ExactSearchBar Object Recognized!
Type : File
Data : A0096048.exe
TAC Rating : 5
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{34B36165-D669-49F2-9243-8B37458CC3A2}\RP300\
FileVersion : 1, 0, 0, 8
ProductVersion : 1, 0, 0, 8
ProductName : Download Module
CompanyName : eXact Advertising
FileDescription : Download Module
InternalName : Download Utility
LegalCopyright : Copyright © 2003, 2004. eXact Advertising, LLC. All Rights Reserved.
OriginalFilename : exdl.exe


BargainBuddy Object Recognized!
Type : File
Data : A0096049.exe
TAC Rating : 8
Category : Malware
Comment :
Object : C:\System Volume Information\_restore{34B36165-D669-49F2-9243-8B37458CC3A2}\RP300\
FileVersion : 1, 0, 0, 2
ProductVersion : 1, 0, 0, 2
ProductName : Upload Module
CompanyName : eXact Advertising
FileDescription : Upload Module
InternalName : Upload Utility
LegalCopyright : Copyright © 2003, 2004. eXact Advertising, LLC. All Rights Reserved.
OriginalFilename : exul.exe


ExactSearchBar Object Recognized!
Type : File
Data : MFEX-1.DAT
TAC Rating : 5
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{34B36165-D669-49F2-9243-8B37458CC3A2}\RP300\snapshot\
FileVersion : 1, 0, 0, 8
ProductVersion : 1, 0, 0, 8
ProductName : Download Module
CompanyName : eXact Advertising
FileDescription : Download Module
InternalName : Download Utility
LegalCopyright : Copyright © 2003, 2004. eXact Advertising, LLC. All Rights Reserved.
OriginalFilename : exdl.exe


IBIS Toolbar Object Recognized!
Type : File
Data : A0096076.exe
TAC Rating : 5
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{34B36165-D669-49F2-9243-8B37458CC3A2}\RP301\



IBIS Toolbar Object Recognized!
Type : File
Data : A0096081.exe
TAC Rating : 5
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{34B36165-D669-49F2-9243-8B37458CC3A2}\RP301\



IBIS Toolbar Object Recognized!
Type : File
Data : A0096082.exe
TAC Rating : 5
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{34B36165-D669-49F2-9243-8B37458CC3A2}\RP301\



ExactSearchBar Object Recognized!
Type : File
Data : A0096085.exe
TAC Rating : 5
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{34B36165-D669-49F2-9243-8B37458CC3A2}\RP301\
FileVersion : 1, 0, 0, 8
ProductVersion : 1, 0, 0, 8
ProductName : Download Module
CompanyName : eXact Advertising
FileDescription : Download Module
InternalName : Download Utility
LegalCopyright : Copyright © 2003, 2004. eXact Advertising, LLC. All Rights Reserved.
OriginalFilename : exdl.exe


BargainBuddy Object Recognized!
Type : File
Data : A0096086.exe
TAC Rating : 8
Category : Malware
Comment :
Object : C:\System Volume Information\_restore{34B36165-D669-49F2-9243-8B37458CC3A2}\RP301\
FileVersion : 1, 0, 0, 2
ProductVersion : 1, 0, 0, 2
ProductName : Upload Module
CompanyName : eXact Advertising
FileDescription : Upload Module
InternalName : Upload Utility
LegalCopyright : Copyright © 2003, 2004. eXact Advertising, LLC. All Rights Reserved.
OriginalFilename : exul.exe


IBIS Toolbar Object Recognized!
Type : File
Data : A0096146.exe
TAC Rating : 5
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{34B36165-D669-49F2-9243-8B37458CC3A2}\RP302\



IBIS Toolbar Object Recognized!
Type : File
Data : A0096151.exe
TAC Rating : 5
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{34B36165-D669-49F2-9243-8B37458CC3A2}\RP302\



IBIS Toolbar Object Recognized!
Type : File
Data : A0096156.exe
TAC Rating : 5
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{34B36165-D669-49F2-9243-8B37458CC3A2}\RP302\



ExactSearchBar Object Recognized!
Type : File
Data : A0096172.exe
TAC Rating : 5
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{34B36165-D669-49F2-9243-8B37458CC3A2}\RP302\
FileVersion : 1, 0, 0, 8
ProductVersion : 1, 0, 0, 8
ProductName : Download Module
CompanyName : eXact Advertising
FileDescription : Download Module
InternalName : Download Utility
LegalCopyright : Copyright © 2003, 2004. eXact Advertising, LLC. All Rights Reserved.
OriginalFilename : exdl.exe


BargainBuddy Object Recognized!
Type : File
Data : A0096173.exe
TAC Rating : 8
Category : Malware
Comment :
Object : C:\System Volume Information\_restore{34B36165-D669-49F2-9243-8B37458CC3A2}\RP302\
FileVersion : 1, 0, 0, 2
ProductVersion : 1, 0, 0, 2
ProductName : Upload Module
CompanyName : eXact Advertising
FileDescription : Upload Module
InternalName : Upload Utility
LegalCopyright : Copyright © 2003, 2004. eXact Advertising, LLC. All Rights Reserved.
OriginalFilename : exul.exe


IBIS Toolbar Object Recognized!
Type : File
Data : A0096181.exe
TAC Rating : 5
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{34B36165-D669-49F2-9243-8B37458CC3A2}\RP302\



IBIS Toolbar Object Recognized!
Type : File
Data : A0096186.exe
TAC Rating : 5
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{34B36165-D669-49F2-9243-8B37458CC3A2}\RP303\



ExactSearchBar Object Recognized!
Type : File
Data : A0096191.exe
TAC Rating : 5
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{34B36165-D669-49F2-9243-8B37458CC3A2}\RP303\
FileVersion : 1, 0, 0, 8
ProductVersion : 1, 0, 0, 8
ProductName : Download Module
CompanyName : eXact Advertising
FileDescription : Download Module
InternalName : Download Utility
LegalCopyright : Copyright © 2003, 2004. eXact Advertising, LLC. All Rights Reserved.
OriginalFilename : exdl.exe


BargainBuddy Object Recognized!
Type : File
Data : A0096192.exe
TAC Rating : 8
Category : Malware
Comment :
Object : C:\System Volume Information\_restore{34B36165-D669-49F2-9243-8B37458CC3A2}\RP303\
FileVersion : 1, 0, 0, 2
ProductVersion : 1, 0, 0, 2
ProductName : Upload Module
CompanyName : eXact Advertising
FileDescription : Upload Module
InternalName : Upload Utility
LegalCopyright : Copyright © 2003, 2004. eXact Advertising, LLC. All Rights Reserved.
OriginalFilename : exul.exe


IBIS Toolbar Object Recognized!
Type : File
Data : A0096193.exe
TAC Rating : 5
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{34B36165-D669-49F2-9243-8B37458CC3A2}\RP303\



BargainBuddy Object Recognized!
Type : File
Data : A0096238.exe
TAC Rating : 8
Category : Malware
Comment :
Object : C:\System Volume Information\_restore{34B36165-D669-49F2-9243-8B37458CC3A2}\RP304\
FileVersion : 1, 0, 0, 2
ProductVersion : 1, 0, 0, 2
ProductName : Upload Module
CompanyName : eXact Advertising
FileDescription : Upload Module
InternalName : Upload Utility
LegalCopyright : Copyright © 2003, 2004. eXact Advertising, LLC. All Rights Reserved.
OriginalFilename : exul.exe


BargainBuddy Object Recognized!
Type : File
Data : A0096239.exe
TAC Rating : 8
Category : Malware
Comment :
Object : C:\System Volume Information\_restore{34B36165-D669-49F2-9243-8B37458CC3A2}\RP304\
FileVersion : 1, 0, 0, 2
ProductVersion : 1, 0, 0, 2
ProductName : Upload Module
CompanyName : eXact Advertising
FileDescription : Upload Module
InternalName : Upload Utility
LegalCopyright : Copyright © 2003, 2004. eXact Advertising, LLC. All Rights Reserved.
OriginalFilename : exul.exe


BargainBuddy Object Recognized!
Type : File
Data : A0096240.vxd
TAC Rating : 8
Category : Malware
Comment :
Object : C:\System Volume Information\_restore{34B36165-D669-49F2-9243-8B37458CC3A2}\RP304\
FileVersion : 1, 0, 0, 2
ProductVersion : 1, 0, 0, 2
ProductName : Upload Module
CompanyName : eXact Advertising
FileDescription : Upload Module
InternalName : Upload Utility
LegalCopyright : Copyright © 2003, 2004. eXact Advertising, LLC. All Rights Reserved.
OriginalFilename : exul.exe


BargainBuddy Object Recognized!
Type : File
Data : A0096241.exe
TAC Rating : 8
Category : Malware
Comment :
Object : C:\System Volume Information\_restore{34B36165-D669-49F2-9243-8B37458CC3A2}\RP304\
FileVersion : 1.00
ProductVersion : 1.00
ProductName : adv
CompanyName : eXact Advertising
InternalName : adv
LegalCopyright : Copyright © 2003, 2004. eXact Advertising, LLC. All Rights Reserved.
OriginalFilename : adv.exe


BargainBuddy Object Recognized!
Type : File
Data : A0096242.exe
TAC Rating : 8
Category : Malware
Comment :
Object : C:\System Volume Information\_restore{34B36165-D669-49F2-9243-8B37458CC3A2}\RP304\
FileVersion : 1.00
ProductVersion : 1.00
ProductName : adx
CompanyName : eXact Advertising
InternalName : adx
LegalCopyright : Copyright © 2003, 2004. eXact Advertising, LLC. All Rights Reserved.
OriginalFilename : adx.exe


BargainBuddy Object Recognized!
Type : File
Data : A0096243.exe
TAC Rating : 8
Category : Malware
Comment :
Object : C:\System Volume Information\_restore{34B36165-D669-49F2-9243-8B37458CC3A2}\RP304\
FileVersion : 8, 0, 3, 6
ProductVersion : 8, 0, 3, 6
ProductName : BargainsBuddy ADP Module
CompanyName : eXact Advertising
FileDescription : bargains
InternalName : ADP
LegalCopyright : Copyright © 2003-2005. eXact Advertising, LLC. All Rights Reserved.
OriginalFilename : bargains.exe


DyFuCA Object Recognized!
Type : File
Data : A0096249.dll
TAC Rating : 3
Category : Malware
Comment :
Object : C:\System Volume Information\_restore{34B36165-D669-49F2-9243-8B37458CC3A2}\RP304\
FileVersion : 1, 0, 0, 1
ProductVersion : 1, 0, 0, 1
ProductName : DyFuCA_BH Module
FileDescription : DyFuCA_BH Module
InternalName : DyFuCA_BH
LegalCopyright : Copyright 2002
OriginalFilename : DyFuCA_BH.DLL


SideFind Object Recognized!
Type : File
Data : A0096250.dll
TAC Rating : 5
Category : Malware
Comment :
Object : C:\System Volume Information\_restore{34B36165-D669-49F2-9243-8B37458CC3A2}\RP304\
FileVersion : 1, 0, 0, 1
ProductVersion : 1, 0, 0, 1
ProductName : BrowserHelperObject Module
FileDescription : BrowserHelperObject Module
InternalName : BrowserHelperObject
LegalCopyright : Copyright 2003
OriginalFilename : BrowserHelperObject.DLL


DyFuCA Object Recognized!
Type : File
Data : A0096251.dll
TAC Rating : 3
Category : Malware
Comment :
Object : C:\System Volume Information\_restore{34B36165-D669-49F2-9243-8B37458CC3A2}\RP304\
FileVersion : 1, 0, 0, 1
ProductVersion : 1, 0, 0, 1
ProductName : SideFind Module
CompanyName : IST
FileDescription : SideFind Module
InternalName : SideFind
LegalCopyright : Copyright 2004
OriginalFilename : SideFind.DLL


180Solutions Object Recognized!
Type : File
Data : A0096253.exe
TAC Rating : 6
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{34B36165-D669-49F2-9243-8B37458CC3A2}\RP304\
FileVersion : 5, 15, 0, 15
ProductVersion : 5, 15, 0, 15
ProductName : Search Assistant
CompanyName : 180solutions, Inc.
FileDescription : Search Assistant
LegalCopyright : Copyright © 2004, 180solutions Inc.


Zango Object Recognized!
Type : File
Data : A0096254.dll
TAC Rating : 6
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{34B36165-D669-49F2-9243-8B37458CC3A2}\RP304\



IBIS Toolbar Object Recognized!
Type : File
Data : A0096256.exe
TAC Rating : 5
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{34B36165-D669-49F2-9243-8B37458CC3A2}\RP304\



BargainBuddy Object Recognized!
Type : File
Data : A0096259.exe
TAC Rating : 8
Category : Malware
Comment :
Object : C:\System Volume Information\_restore{34B36165-D669-49F2-9243-8B37458CC3A2}\RP304\



ExactSearchBar Object Recognized!
Type : File
Data : A0096260.exe
TAC Rating : 5
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{34B36165-D669-49F2-9243-8B37458CC3A2}\RP304\
FileVersion : 1, 0, 0, 8
ProductVersion : 1, 0, 0, 8
ProductName : Download Module
CompanyName : eXact Advertising
FileDescription : Download Module
InternalName : Download Utility
LegalCopyright : Copyright © 2003, 2004. eXact Advertising, LLC. All Rights Reserved.
OriginalFilename : exdl.exe


ExactSearchBar Object Recognized!
Type : File
Data : A0096261.exe
TAC Rating : 5
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{34B36165-D669-49F2-9243-8B37458CC3A2}\RP304\
FileVersion : 1, 0, 0, 8
ProductVersion : 1, 0, 0, 8
ProductName : Download Module
CompanyName : eXact Advertising
FileDescription : Download Module
InternalName : Download Utility
LegalCopyright : Copyright © 2003, 2004. eXact Advertising, LLC. All Rights Reserved.
OriginalFilename : exdl.exe


ExactSearchBar Object Recognized!
Type : File
Data : A0096262.exe
TAC Rating : 5
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{34B36165-D669-49F2-9243-8B37458CC3A2}\RP304\
FileVersion : 1, 0, 0, 8
ProductVersion : 1, 0, 0, 8
ProductName : Download Module
CompanyName : eXact Advertising
FileDescription : Download Module
InternalName : Download Utility
LegalCopyright : Copyright © 2003, 2004. eXact Advertising, LLC. All Rights Reserved.
OriginalFilename : exdl.exe


ExactSearchBar Object Recognized!
Type : File
Data : A0096263.srg
TAC Rating : 5
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{34B36165-D669-49F2-9243-8B37458CC3A2}\RP304\
FileVersion : 1, 0, 0, 8
ProductVersion : 1, 0, 0, 8
ProductName : Download Module
CompanyName : eXact Advertising
FileDescription : Download Module
InternalName : Download Utility
LegalCopyright : Copyright © 2003, 2004. eXact Advertising, LLC. All Rights Reserved.
OriginalFilename : exdl.exe


IBIS Toolbar Object Recognized!
Type : File
Data : A0096279.exe
TAC Rating : 5
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{34B36165-D669-49F2-9243-8B37458CC3A2}\RP304\



IBIS Toolbar Object Recognized!
Type : File
Data : A0096280.exe
TAC Rating : 5
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{34B36165-D669-49F2-9243-8B37458CC3A2}\RP304\



IBIS Toolbar Object Recognized!
Type : File
Data : A0096291.exe
TAC Rating : 5
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{34B36165-D669-49F2-9243-8B37458CC3A2}\RP304\



IBIS Toolbar Object Recognized!
Type : File
Data : A0096295.exe
TAC Rating : 5
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{34B36165-D669-49F2-9243-8B37458CC3A2}\RP304\



IBIS Toolbar Object Recognized!
Type : File
Data : A0096299.cfg
TAC Rating : 5
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{34B36165-D669-49F2-9243-8B37458CC3A2}\RP304\



180Solutions Object Recognized!
Type : File
Data : A0096301.exe
TAC Rating : 6
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{34B36165-D669-49F2-9243-8B37458CC3A2}\RP304\



IBIS Toolbar Object Recognized!
Type : File
Data : A0096302.exe
TAC Rating : 5
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{34B36165-D669-49F2-9243-8B37458CC3A2}\RP304\



IBIS Toolbar Object Recognized!
Type : File
Data : A0096307.exe
TAC Rating : 5
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{34B36165-D669-49F2-9243-8B37458CC3A2}\RP305\



IBIS Toolbar Object Recognized!
Type : File
Data : A0096314.exe
TAC Rating : 5
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{34B36165-D669-49F2-9243-8B37458CC3A2}\RP305\



IBIS Toolbar Object Recognized!
Type : File
Data : A0096334.exe
TAC Rating : 5
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{34B36165-D669-49F2-9243-8B37458CC3A2}\RP305\



IBIS Toolbar Object Recognized!
Type : File
Data : A0096339.exe
TAC Rating : 5
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{34B36165-D669-49F2-9243-8B37458CC3A2}\RP305\



IBIS Toolbar Object Recognized!
Type : File
Data : A0096378.exe
TAC Rating : 5
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{34B36165-D669-49F2-9243-8B37458CC3A2}\RP306\



IBIS Toolbar Object Recognized!
Type : File
Data : A0096383.exe
TAC Rating : 5
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{34B36165-D669-49F2-9243-8B37458CC3A2}\RP306\



IBIS Toolbar Object Recognized!
Type : File
Data : A0096391.exe
TAC Rating : 5
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{34B36165-D669-49F2-9243-8B37458CC3A2}\RP306\



IBIS Toolbar Object Recognized!
Type : File
Data : A0096426.exe
TAC Rating : 5
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{34B36165-D669-49F2-9243-8B37458CC3A2}\RP307\



IBIS Toolbar Object Recognized!
Type : File
Data : A0096431.exe
TAC Rating : 5
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{34B36165-D669-49F2-9243-8B37458CC3A2}\RP307\



IBIS Toolbar Object Recognized!
Type : File
Data : A0096436.exe
TAC Rating : 5
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{34B36165-D669-49F2-9243-8B37458CC3A2}\RP307\



IBIS Toolbar Object Recognized!
Type : File
Data : A0096446.exe
TAC Rating : 5
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{34B36165-D669-49F2-9243-8B37458CC3A2}\RP307\



IBIS Toolbar Object Recognized!
Type : File
Data : A0096452.exe
TAC Rating : 5
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{34B36165-D669-49F2-9243-8B37458CC3A2}\RP307\



IBIS Toolbar Object Recognized!
Type : File
Data : A0096464.exe
TAC Rating : 5
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{34B36165-D669-49F2-9243-8B37458CC3A2}\RP308\



IBIS Toolbar Object Recognized!
Type : File
Data : A0096466.exe
TAC Rating : 5
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{34B36165-D669-49F2-9243-8B37458CC3A2}\RP308\



IBIS Toolbar Object Recognized!
Type : File
Data : A0096472.exe
TAC Rating : 5
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{34B36165-D669-49F2-9243-8B37458CC3A2}\RP308\



IBIS Toolbar Object Recognized!
Type : File
Data : A0096477.exe
TAC Rating : 5
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{34B36165-D669-49F2-9243-8B37458CC3A2}\RP308\



IBIS Toolbar Object Recognized!
Type : File
Data : A0096555.exe
TAC Rating : 5
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{34B36165-D669-49F2-9243-8B37458CC3A2}\RP309\



IBIS Toolbar Object Recognized!
Type : File
Data : A0096573.exe
TAC Rating : 5
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{34B36165-D669-49F2-9243-8B37458CC3A2}\RP309\



IBIS Toolbar Object Recognized!
Type : File
Data : A0096594.exe
TAC Rating : 5
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{34B36165-D669-49F2-9243-8B37458CC3A2}\RP310\



IBIS Toolbar Object Recognized!
Type : File
Data : A0096599.exe
TAC Rating : 5
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{34B36165-D669-49F2-9243-8B37458CC3A2}\RP310\



IBIS Toolbar Object Recognized!
Type : File
Data : A0096729.exe
TAC Rating : 5
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{34B36165-D669-49F2-9243-8B37458CC3A2}\RP310\



IBIS Toolbar Object Recognized!
Type : File
Data : A0096730.exe
TAC Rating : 5
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{34B36165-D669-49F2-9243-8B37458CC3A2}\RP310\



IBIS Toolbar Object Recognized!
Type : File
Data : A0096779.exe
TAC Rating : 5
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{34B36165-D669-49F2-9243-8B37458CC3A2}\RP312\



IBIS Toolbar Object Recognized!
Type : File
Data : A0096785.exe
TAC Rating : 5
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{34B36165-D669-49F2-9243-8B37458CC3A2}\RP312\



IBIS Toolbar Object Recognized!
Type : File
Data : A0096797.exe
TAC Rating : 5
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{34B36165-D669-49F2-9243-8B37458CC3A2}\RP312\



IBIS Toolbar Object Recognized!
Type : File
Data : A0096802.exe
TAC Rating : 5
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{34B36165-D669-49F2-9243-8B37458CC3A2}\RP312\



IBIS Toolbar Object Recognized!
Type : File
Data : A0096825.exe
TAC Rating : 5
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{34B36165-D669-49F2-9243-8B37458CC3A2}\RP313\



IBIS Toolbar Object Recognized!
Type : File
Data : A0096826.exe
TAC Rating : 5
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{34B36165-D669-49F2-9243-8B37458CC3A2}\RP313\



IBIS Toolbar Object Recognized!
Type : File
Data : A0096827.exe
TAC Rating : 5
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{34B36165-D669-49F2-9243-8B37458CC3A2}\RP313\



IBIS Toolbar Object Recognized!
Type : File
Data : A0096914.exe
TAC Rating : 5
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{34B36165-D669-49F2-9243-8B37458CC3A2}\RP317\



IBIS Toolbar Object Recognized!
Type : File
Data : A0096919.exe
TAC Rating : 5
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{34B36165-D669-49F2-9243-8B37458CC3A2}\RP317\



IBIS Toolbar Object Recognized!
Type : File
Data : A0096923.exe
TAC Rating : 5
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{34B36165-D669-49F2-9243-8B37458CC3A2}\RP317\



BargainBuddy Object Recognized!
Type : File
Data : A0096959.dll
TAC Rating : 8
Category : Malware
Comment :
Object : C:\System Volume Information\_restore{34B36165-D669-49F2-9243-8B37458CC3A2}\RP317\
FileVersion : 8, 0, 3, 6
ProductVersion : 8, 0, 3, 6
ProductName : ADP Module
CompanyName : eXact Advertising
FileDescription : ADP Module
InternalName : apuc
LegalCopyright : Copyright © 2003-2005 eXact Advertising, LLC. All Rights Reserved.
OriginalFilename : apuc.DLL


BargainBuddy Object Recognized!
Type : File
Data : A0096960.exe
TAC Rating : 8
Category : Malware
Comment :
Object : C:\System Volume Information\_restore{34B36165-D669-49F2-9243-8B37458CC3A2}\RP317\



IBIS Toolbar Object Recognized!
Type : File
Data : A0096962.exe
TAC Rating : 5
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{34B36165-D669-49F2-9243-8B37458CC3A2}\RP317\



IBIS Toolbar Object Recognized!
Type : File
Data : A0096971.exe
TAC Rating : 5
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{34B36165-D669-49F2-9243-8B37458CC3A2}\RP317\



IBIS Toolbar Object Recognized!
Type : File
Data : A0096975.exe
TAC Rating : 5
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{34B36165-D669-49F2-9243-8B37458CC3A2}\RP317\



IBIS Toolbar Object Recognized!
Type : File
Data : A0096978.exe
TAC Rating : 5
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{34B36165-D669-49F2-9243-8B37458CC3A2}\RP317\



IBIS Toolbar Object Recognized!
Type : File
Data : A0096979.exe
TAC Rating : 5
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{34B36165-D669-49F2-9243-8B37458CC3A2}\RP317\



IBIS Toolbar Object Recognized!
Type : File
Data : A0096980.dll
TAC Rating : 5
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{34B36165-D669-49F2-9243-8B37458CC3A2}\RP317\



IBIS Toolbar Object Recognized!
Type : File
Data : A0096982.cfg
TAC Rating : 5
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{34B36165-D669-49F2-9243-8B37458CC3A2}\RP317\



IBIS Toolbar Object Recognized!
Type : File
Data : A0096985.exe
TAC Rating : 5
Category : Data Miner
Comment :
Object : C:\System Volume Information\_restore{34B36165-D669-49F2-9243-8B37458CC3A2}\RP317\



istbar Object Recognized!
Type : File
Data : A0097008.exe
TAC Rating : 7
Category : Malware
Comment :
Object : C:\System Volume Information\_restore{34B36165-D669-49F2-9243-8B37458CC3A2}\RP317\



BookedSpace Object Recognized!
Type : File
Data : bs5-vnbfkp.exe
TAC Rating : 10
Category : Malware
Comment :
Object : C:\WINDOWS\Downloaded Program Files\



CoolWebSearch Object Recognized!
Type : File
Data : CS3.exe
TAC Rating : 10
Category : Malware
Comment :
Object : C:\WINDOWS\Downloaded Program Files\



Win32.Netlogon.A Object Recognized!
Type : File
Data : mprocessor.exe
TAC Rating : 8
Category : Malware
Comment :
Object : C:\WINDOWS\Downloaded Program Files\



StatBlaster Object Recognized!
Type : File
Data : peeimp.exe
TAC Rating : 8
Category : Data Miner
Comment :
Object : C:\WINDOWS\Downloaded Program Files\



Win32.Netlogon.A Object Recognized!
Type : File
Data : atl611o.exe
TAC Rating : 8
Category : Malware
Comment :
Object : C:\WINDOWS\system32\



Win32.Netlogon.A Object Recognized!
Type : File
Data : browser459n.exe
TAC Rating : 8
Category : Malware
Comment :
Object : C:\WINDOWS\system32\



Win32.Netlogon.A Object Recognized!
Type : File
Data : cryptdlg736l.dat
TAC Rating : 8
Category : Malware
Comment :
Object : C:\WINDOWS\system32\



Win32.Netlogon.A Object Recognized!
Type : File
Data : cryptdlg736l.exe
TAC Rating : 8
Category : Malware
Comment :
Object : C:\WINDOWS\system32\



Win32.Netlogon.A Object Recognized!
Type : File
Data : gpkrsrc743l.exe
TAC Rating : 8
Category : Malware
Comment :
Object : C:\WINDOWS\system32\



Win32.Netlogon.A Object Recognized!
Type : File
Data : kbdsp748j.exe
TAC Rating : 8
Category : Malware
Comment :
Object : C:\WINDOWS\system32\



Win32.Netlogon.A Object Recognized!
Type : File
Data : master880p.dat
TAC Rating : 8
Category : Malware
Comment :
Object : C:\WINDOWS\system32\



Win32.Netlogon.A Object Recognized!
Type : File
Data : rtm282r.exe
TAC Rating : 8
Category : Malware
Comment :
Object : C:\WINDOWS\system32\



Win32.Netlogon.A Object Recognized!
Type : File
Data : sbe935u.dat
TAC Rating : 8
Category : Malware
Comment :
Object : C:\WINDOWS\system32\



Win32.Netlogon.A Object Recognized!
Type : File
Data : wmsdmoe2424g.exe
TAC Rating : 8
Category : Malware
Comment :
Object : C:\WINDOWS\system32\


Object "WToolsA.exe" found in this archive.

IBIS Toolbar Object Recognized!
Type : File
Data : down.cab
TAC Rating : 5
Category : Data Miner
Comment : Object "WToolsA.exe" found in this archive.
Object : C:\WINDOWS\Temp\


Object "WToolsB.dll" found in this archive.

IBIS Toolbar Object Recognized!
Type : File
Data : down.cab
TAC Rating : 5
Category : Data Miner
Comment : Object "WToolsB.dll" found in this archive.
Object : C:\WINDOWS\Temp\



BroadCastPC Object Recognized!
Type : File
Data : GLC2A2.tmp
TAC Rating : 7
Category : Data Miner
Comment :
Object : C:\WINDOWS\Temp\



Disk Scan Result for C:\
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
New critical objects: 0
Objects found so far: 235


Scanning Hosts file......
Hosts file location:"C:\WINDOWS\system32\drivers\etc\hosts".
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
Warning!
Bad Hosts file entry:69.20.16.183:auto.search.msn.com


Redirected hostfile entry Object Recognized!
Type : Hosts file
Data : 69.20.16.183
TAC Rating : 4
Category : Misc
Comment : Possible CoolWebSearch Hijack
Bad Hostfile entry : 69.20.16.183:auto.search.msn.com
Warning!
Bad Hosts file entry:69.20.16.183:search.netscape.com


Redirected hostfile entry Object Recognized!
Type : Hosts file
Data : 69.20.16.183
TAC Rating : 4
Category : Misc
Comment : Possible CoolWebSearch Hijack
Bad Hostfile entry : 69.20.16.183:search.netscape.com
Warning!
Bad Hosts file entry:69.20.16.183:ieautosearch


Redirected hostfile entry Object Recognized!
Type : Hosts file
Data : 69.20.16.183
TAC Rating : 4
Category : Misc
Comment : Possible CoolWebSearch Hijack
Bad Hostfile entry : 69.20.16.183:ieautosearch
Warning!
Bad Hosts file entry:69.20.16.183:search.netscape.com


Redirected hostfile entry Object Recognized!
Type : Hosts file
Data : 69.20.16.183
TAC Rating : 4
Category : Misc
Comment : Possible CoolWebSearch Hijack
Bad Hostfile entry : 69.20.16.183:search.netscape.com

Hosts file scan result:
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
801 entries scanned.
New critical objects:4
Objects found so far: 239




Performing conditional scans...
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»

Win32.Netlogon.A Object Recognized!
Type : RegValue
Data :
TAC Rating : 8
Category : Malware
Comment :
Rootkey : HKEY_LOCAL_MACHINE
Object : software\microsoft\windows nt\currentversion\windows
Value : AppInit_DLLs

MemoryWatcher Object Recognized!
Type : RegValue
Data :
TAC Rating : 4
Category : Malware
Comment :
Rootkey : HKEY_LOCAL_MACHINE
Object : software\microsoft\internet explorer\main\featurecontrol\feature_window_restrictions
Value : iexplore.exe

IBIS Toolbar Object Recognized!
Type : Regkey
Data :
TAC Rating : 5
Category : Data Miner
Comment :
Rootkey : HKEY_CURRENT_USER
Object : software\microsoft\mediaplayer\control\playbar

IBIS Toolbar Object Recognized!
Type : RegValue
Data :
TAC Rating : 5
Category : Data Miner
Comment :
Rootkey : HKEY_CURRENT_USER
Object : software\microsoft\mediaplayer\control\playbar
Value : ClrHighlight

IBIS Toolbar Object Recognized!
Type : RegValue
Data :
TAC Rating : 5
Category : Data Miner
Comment :
Rootkey : HKEY_CURRENT_USER
Object : software\microsoft\mediaplayer\control\playbar
Value : ClrForeColor

IBIS Toolbar Object Recognized!
Type : RegValue
Data :
TAC Rating : 5
Category : Data Miner
Comment :
Rootkey : HKEY_CURRENT_USER
Object : software\microsoft\mediaplayer\control\playbar
Value : ClrBackColor

IBIS Toolbar Object Recognized!
Type : RegValue
Data :
TAC Rating : 5
Category : Data Miner
Comment :
Rootkey : HKEY_CURRENT_USER
Object : software\microsoft\mediaplayer\control\playbar
Value : ClrDownload

IBIS Toolbar Object Recognized!
Type : RegValue
Data :
TAC Rating : 5
Category : Data Miner
Comment :
Rootkey : HKEY_CURRENT_USER
Object : software\microsoft\mediaplayer\control\playbar
Value : ClrViewed

IBIS Toolbar Object Recognized!
Type : RegValue
Data :
TAC Rating : 5
Category : Data Miner
Comment :
Rootkey : HKEY_CURRENT_USER
Object : software\microsoft\mediaplayer\control\playbar
Value : ClrStatic

IBIS Toolbar Object Recognized!
Type : Regkey
Data :
TAC Rating : 5
Category : Data Miner
Comment :
Rootkey : HKEY_CURRENT_USER
Object : software\northcode inc

IBIS Toolbar Object Recognized!
Type : Regkey
Data :
TAC Rating : 5
Category : Data Miner
Comment : You will need to restart your computer and rescan in order to complete the removal of this item.
Rootkey : HKEY_LOCAL_MACHINE
Object : system\currentcontrolset\enum\root\legacy_tbpssvc

IBIS Toolbar Object Recognized!
Type : Regkey
Data :
TAC Rating : 5
Category : Data Miner
Comment :
Rootkey : HKEY_LOCAL_MACHINE
Object : system\currentcontrolset\enum\root\legacy_wintoolssvc

IBIS Toolbar Object Recognized!
Type : RegValue
Data :
TAC Rating : 5
Category : Data Miner
Comment :
Rootkey : HKEY_CURRENT_USER
Object : software\microsoft\internet explorer\main
Value : AutoSearch

IBIS Toolbar Object Recognized!
Type : RegValue
Data :
TAC Rating : 5
Category : Data Miner
Comment :
Rootkey : HKEY_LOCAL_MACHINE
Object : software\microsoft\internet explorer\main
Value : CustomizeSearch

IBIS Toolbar Object Recognized!
Type : RegValue
Data :
TAC Rating : 5
Category : Data Miner
Comment :
Rootkey : HKEY_LOCAL_MACHINE
Object : software\microsoft\windows\currentversion\installer\userdata
Value : TUID

IBIS Toolbar Object Recognized!
Type : RegValue
Data :
TAC Rating : 5
Category : Data Miner
Comment :
Rootkey : HKEY_LOCAL_MACHINE
Object : software\microsoft\internet explorer\main
Value : IEWatsonEnabled

IBIS Toolbar Object Recognized!
Type : RegData
Data : no
TAC Rating : 5
Category : Data Miner
Comment :
Rootkey : HKEY_CURRENT_USER
Object : software\microsoft\internet explorer\main
Value : Use Search Asst
Data : no

IBIS Toolbar Object Recognized!
Type : Folder
TAC Rating : 5
Category : Data Miner
Comment : IBIS Toolbar
Object : C:\Program Files\WildArcade

WindUpdates Object Recognized!
Type : Regkey
Data :
TAC Rating : 8
Category : Malware
Comment :
Rootkey : HKEY_LOCAL_MACHINE
Object : software\microsoft\downloadmanager

WindUpdates Object Recognized!
Type : File
Data : ide21201.vxd
TAC Rating : 8
Category : Malware
Comment :
Object : C:\WINDOWS\System32\



TopMoxie Object Recognized!
Type : RegValue
Data :
TAC Rating : 3
Category : Data Miner
Comment :
Rootkey : HKEY_LOCAL_MACHINE
Object : software\microsoft\internet explorer\main\ins
Value : 1150

DyFuCA Object Recognized!
Type : Regkey
Data :
TAC Rating : 3
Category : Malware
Comment :
Rootkey : HKEY_LOCAL_MACHINE
Object : software\microsoft\windows\currentversion\uninstall\rotue

istbar Object Recognized!
Type : Regkey
Data :
TAC Rating : 7
Category : Malware
Comment :
Rootkey : HKEY_CLASSES_ROOT
Object : aspfile\persistenthandler

BookedSpace Object Recognized!
Type : Regkey
Data :
TAC Rating : 10
Category : Malware
Comment :
Rootkey : HKEY_CURRENT_USER
Object : software\microsoft\internet explorer\new windows

BookedSpace Object Recognized!
Type : RegValue
Data :
TAC Rating : 10
Category : Malware
Comment :
Rootkey : HKEY_CURRENT_USER
Object : software\microsoft\internet explorer\new windows
Value : PopupMgr

CoolWebSearch Object Recognized!
Type : Regkey
Data :
TAC Rating : 10
Category : Malware
Comment :
Rootkey : HKEY_LOCAL_MACHINE
Object : software\microsoft\internet explorer\urlsearchhooks

CoolWebSearch Object Recognized!
Type : Regkey
Data :
TAC Rating : 10
Category : Malware
Comment :
Rootkey : HKEY_LOCAL_MACHINE
Object : system\currentcontrolset\enum\root\legacy_zesoft

CoolWebSearch Object Recognized!
Type : RegValue
Data :
TAC Rating : 10
Category : Malware
Comment :
Rootkey : HKEY_CURRENT_USER
Object : software\microsoft\internet explorer\main
Value : Enable Browser Extensions

CoolWebSearch Object Recognized!
Type : RegValue
Data :
TAC Rating : 10
Category : Malware
Comment :
Rootkey : HKEY_CURRENT_USER
Object : software\microsoft\internet explorer\main
Value : Use Custom Search URL

CoolWebSearch Object Recognized!
Type : RegValue
Data :
TAC Rating : 10
Category : Malware
Comment :
Rootkey : HKEY_CURRENT_USER
Object : software\microsoft\internet explorer\main
Value : nid

CoolWebSearch Object Recognized!
Type : RegValue
Data :
TAC Rating : 10
Category : Malware
Comment :
Rootkey : HKEY_CURRENT_USER
Object : software\microsoft\internet explorer\search\searchproperties\en-us
Value : SingleProvider

CoolWebSearch Object Recognized!
Type : RegData
Data : no
TAC Rating : 10
Category : Malware
Comment :
Rootkey : HKEY_CURRENT_USER
Object : software\microsoft\internet explorer\main
Value : Use Search Asst
Data : no

CoolWebSearch Object Recognized!
Type : RegData
Data : about:blank
TAC Rating : 10
Category : Malware
Comment :
Rootkey : HKEY_CURRENT_USER
Object : software\microsoft\internet explorer\main
Value : Start Page
Data : about:blank

CoolWebSearch Object Recognized!
Type : RegData
Data : about:blank
TAC Rating : 10
Category : Malware
Comment :
Rootkey : HKEY_LOCAL_MACHINE
Object : software\microsoft\internet explorer\main
Value : Start Page
Data : about:blank

CoolWebSearch Object Recognized!
Type : File
Data : wplog.txt
TAC Rating : 10
Category : Malware
Comment :
Object : C:\WINDOWS\



CoolWebSearch Object Recognized!
Type : File
Data : wbemess.log
TAC Rating : 10
Category : Malware
Comment :
Object : C:\WINDOWS\System32\wbem\logs\



StatBlaster Object Recognized!
Type : File
Data : update_1.exe
TAC Rating : 8
Category : Data Miner
Comment :
Object : C:\DOCUME~1\DENNIS~1\LOCALS~1\Temp\



Conditional scan result:
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
New critical objects: 37
Objects found so far: 276

5:18:06 PM Scan Complete

Summary Of This Scan
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
  • 0

#5
cjmdjm
Posted 04 July 2005 - 04:28 PM

cjmdjm

    New Member

  • Topic Starter
  • Member
  • Pip
  • 4 posts
Summary Of This Scan
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
Total scanning time:00:11:20.266
Objects scanned:189458
Objects identified:258
Objects ignored:0
New critical objects:258
  • 0

#6
don77
Posted 04 July 2005 - 08:19 PM

don77

    Malware Expert

  • Retired Staff
  • 18,526 posts
Please follow the instructions located in Step Five: Posting a Hijack This Log. Post your HJT log as a reply to this thread, which has been relocated to the Malware Removal Forum for providing you with further assistance.

Kindly note that it is very busy in the Malware Removal Forum, so there may be a delay in receiving a reply. Please also note that HJT logfiles are reviewed on a first come/first served basis.
  • 0
Back to Virus, Spyware, Malware Removal · Next Unread Topic →




Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

  1. Geeks to Go Community
  2. Security
  3. Virus, Spyware, Malware Removal

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP