Jump to content

Welcome to Geeks to Go - Register now for FREE

Geeks To Go is a helpful hub, where thousands of volunteer geeks quickly serve friendly answers and support. Check out the forums and get free advice from the experts. Register now to gain access to all of our features, it's FREE and only takes one minute. Once registered and logged in, you will be able to create topics, post replies to existing threads, give reputation to your fellow members, get your own private messenger, post status updates, manage your profile and so much more.

Create Account How it Works
Photo

Trek Blue Error Nuker [RESOLVED]


  • This topic is locked This topic is locked

#16
Rawe

Rawe

    Visiting Staff

  • Member
  • PipPipPipPipPipPipPip
  • 4,746 posts
Ok, can you do this. Launch HiJackThis and enter to the "Misc Tools Section". Click "Open ADS Spy" and scan. Save the log, don't remove anything yet. Post it here. :tazz:
  • 0

Advertisements


#17
belle88

belle88

    Member

  • Topic Starter
  • Member
  • PipPip
  • 35 posts
Okay here is the new adsspy log -

C:\WINDOWS\abalp.txt : ytshu (35328 bytes)
C:\WINDOWS\abalp.txt : yuddd (88882 bytes)
C:\WINDOWS\abalp.txt : zspqv (0 bytes)
C:\WINDOWS\ajjpu.log : dqsoo (35328 bytes)
C:\WINDOWS\ajjpu.log : dzbfd (0 bytes)
C:\WINDOWS\ajjpu.log : nqeoq (89936 bytes)
C:\WINDOWS\akhxo.log : zwaulw (0 bytes)
C:\WINDOWS\aootq.log : owhki (89936 bytes)
C:\WINDOWS\aootq.log : tgiog (89520 bytes)
C:\WINDOWS\aoszv.dat : dupnp (35310 bytes)
C:\WINDOWS\aoszv.dat : ecqmo (90041 bytes)
C:\WINDOWS\aoszv.dat : gmveh (35310 bytes)
C:\WINDOWS\aoszv.dat : runjf (0 bytes)
C:\WINDOWS\aoszv.dat : veunj (0 bytes)
C:\WINDOWS\aoszv.dat : zlnfb (0 bytes)
C:\WINDOWS\apdzi.log : bjwod (35310 bytes)
C:\WINDOWS\apdzi.log : fufpk (89139 bytes)
C:\WINDOWS\apdzi.log : hpnjb (89520 bytes)
C:\WINDOWS\apdzi.log : hybwr (89139 bytes)
C:\WINDOWS\apdzi.log : hzttn (0 bytes)
C:\WINDOWS\apdzi.log : shsrm (89139 bytes)
C:\WINDOWS\apdzi.log : snius (89139 bytes)
C:\WINDOWS\apdzi.log : xwiqz (88882 bytes)
C:\WINDOWS\auxef.txt : okauh (90041 bytes)
C:\WINDOWS\avhvz.log : evcaw (89139 bytes)
C:\WINDOWS\awscm.log : prhzm (35310 bytes)
C:\WINDOWS\betqx.dat : gdtxk (35328 bytes)
C:\WINDOWS\betqx.dat : wnvlu (89362 bytes)
C:\WINDOWS\betqx.dat : zqkdf (0 bytes)
C:\WINDOWS\bledt.txt : ganbb (89139 bytes)
C:\WINDOWS\blslu.dat : safpo (35328 bytes)
C:\WINDOWS\blslu.dat : trnyq (89520 bytes)
C:\WINDOWS\Blue Lace 16.bmp : aqzpx (35328 bytes)
C:\WINDOWS\bqlwg.txt : aaawv (89520 bytes)
C:\WINDOWS\bqlwg.txt : hwnkt (35328 bytes)
C:\WINDOWS\bqlwg.txt : zddnd (35328 bytes)
C:\WINDOWS\bqrtl.txt : elrsx (89139 bytes)
C:\WINDOWS\brjjb.dat : dgdhn (89936 bytes)
C:\WINDOWS\bsmlo.log : crwkkt (197755 bytes)
C:\WINDOWS\bsusu.txt : hetuhb (13581 bytes)
C:\WINDOWS\bsusu.txt : smrko (89139 bytes)
C:\WINDOWS\bwhhg.log : elqrn (35328 bytes)
C:\WINDOWS\bwhhg.log : ruqmx (35328 bytes)
C:\WINDOWS\cdPlayer.ini : fftyq (89139 bytes)
C:\WINDOWS\cdPlayer.ini : gobap (89936 bytes)
C:\WINDOWS\cdPlayer.ini : lbegs (35328 bytes)
C:\WINDOWS\CLOCK.AVI : krqon (0 bytes)
C:\WINDOWS\CLOCK.AVI : kyhme (89362 bytes)
C:\WINDOWS\CLOCK.AVI : xxdwyu (88882 bytes)
C:\WINDOWS\CLOCK.AVI : yakpx (89936 bytes)
C:\WINDOWS\cmcep.log : didki (35328 bytes)
C:\WINDOWS\cmxei.txt : napaj (0 bytes)
C:\WINDOWS\cmxei.txt : pmudu (35328 bytes)
C:\WINDOWS\cmxei.txt : vmosy (89936 bytes)
C:\WINDOWS\cmxei.txt : zemzbm (11151 bytes)
C:\WINDOWS\cnzre.txt : eelbh (89139 bytes)
C:\WINDOWS\Coffee Bean.bmp : jthzw (89139 bytes)
C:\WINDOWS\Coffee Bean.bmp : yykat (89362 bytes)
C:\WINDOWS\comsetup.log : dnudk (35328 bytes)
C:\WINDOWS\comsetup.log : sxfedw (3567 bytes)
C:\WINDOWS\CONTROL.INI : ihmll (0 bytes)
C:\WINDOWS\CONTROL.INI : krihz (35328 bytes)
C:\WINDOWS\CONTROL.INI : mnufc (89362 bytes)
C:\WINDOWS\cqmli.log : pxmft (89936 bytes)
C:\WINDOWS\creyn.dat : gnrku (35310 bytes)
C:\WINDOWS\creyn.dat : jcnat (35310 bytes)
C:\WINDOWS\creyn.dat : kypkyz (66560 bytes)
C:\WINDOWS\critj.dat : paglz (89936 bytes)
C:\WINDOWS\cxyot.txt : ogpud (35328 bytes)
C:\WINDOWS\dbjwf.txt : ortoe (89936 bytes)
C:\WINDOWS\dehpl.dat : duhgc (88882 bytes)
C:\WINDOWS\dellstat.ini : fhypm (89139 bytes)
C:\WINDOWS\DESKTOP.INI : azxqq (35310 bytes)
C:\WINDOWS\DESKTOP.INI : izszn (0 bytes)
C:\WINDOWS\DESKTOP.INI : mwpvw (89936 bytes)
C:\WINDOWS\dfwrj.log : oskoj (89936 bytes)
C:\WINDOWS\dlych.txt : zsfza (0 bytes)
C:\WINDOWS\dmnii.dat : svcjq (35310 bytes)
C:\WINDOWS\dsyvg.log : prxiw (89139 bytes)
C:\WINDOWS\dsyvg.log : tdvtm (89936 bytes)
C:\WINDOWS\DtcInstall.log : ryhig (0 bytes)
C:\WINDOWS\dybvl.txt : lcmoc (89520 bytes)
C:\WINDOWS\eacjx.dat : aidew (89139 bytes)
C:\WINDOWS\eacjx.dat : heync (35328 bytes)
C:\WINDOWS\eacjx.dat : mshje (89362 bytes)
C:\WINDOWS\eacjx.dat : ppmdo (89362 bytes)
C:\WINDOWS\eacjx.dat : wzxrm (89139 bytes)
C:\WINDOWS\eacjx.dat : yungf (0 bytes)
C:\WINDOWS\efcma.log : aqzol (89936 bytes)
C:\WINDOWS\ejber.log : zuyed (89362 bytes)
C:\WINDOWS\ekjob.txt : gdgmb (89936 bytes)
C:\WINDOWS\ekjob.txt : lqcls (89362 bytes)
C:\WINDOWS\ekjob.txt : nbgcg (88882 bytes)
C:\WINDOWS\EventSystem.log : xxjjp (89362 bytes)
C:\WINDOWS\exfys.log : eegmi (35310 bytes)
C:\WINDOWS\exfys.log : ssask (35310 bytes)
C:\WINDOWS\exfys.log : xsonu (89936 bytes)
C:\WINDOWS\EXPLORER.SCF : eitzu (35328 bytes)
C:\WINDOWS\EXPLORER.SCF : lkhps (35328 bytes)
C:\WINDOWS\EXPLORER.SCF : qgwin (35328 bytes)
C:\WINDOWS\fapmr.dat : fgqvy (89362 bytes)
C:\WINDOWS\fapmr.dat : gilrs (89936 bytes)
C:\WINDOWS\fapmr.dat : ngwys (89139 bytes)
C:\WINDOWS\fapmr.dat : yncxwi (197755 bytes)
C:\WINDOWS\fapmr.dat : ywytz (89362 bytes)
C:\WINDOWS\FaxSetup.log : kwswa (89936 bytes)
C:\WINDOWS\FaxSetup.log : lscyh (0 bytes)
C:\WINDOWS\FaxSetup.log : mndxm (35328 bytes)
C:\WINDOWS\FaxSetup.log : qbqsp (88882 bytes)
C:\WINDOWS\FaxSetup.log : xiiro (0 bytes)
C:\WINDOWS\FeatherTexture.bmp : basjh (89734 bytes)
C:\WINDOWS\FeatherTexture.bmp : laoiq (89936 bytes)
C:\WINDOWS\FeatherTexture.bmp : wrlkw (89936 bytes)
C:\WINDOWS\fjpwe.log : flmnx (89139 bytes)
C:\WINDOWS\foycf.txt : imrfq (0 bytes)
C:\WINDOWS\foycf.txt : xdmtq (89362 bytes)
C:\WINDOWS\gdwvd.log : hclcp (89936 bytes)
C:\WINDOWS\giuvg.dat : riwas (89936 bytes)
C:\WINDOWS\giuvg.dat : rjoko (0 bytes)
C:\WINDOWS\glcif.dat : rerxx (0 bytes)
C:\WINDOWS\glcif.dat : wbrtm (35310 bytes)
C:\WINDOWS\Gone Fishing.bmp : fkkug (89139 bytes)
C:\WINDOWS\Gone Fishing.bmp : lvztc (0 bytes)
C:\WINDOWS\Gone Fishing.bmp : rvvpuo (12782 bytes)
C:\WINDOWS\Gone Fishing.bmp : vtboo (89734 bytes)
C:\WINDOWS\Greenstone.bmp : qnxgt (35328 bytes)
C:\WINDOWS\Greenstone.bmp : vvscs (89936 bytes)
C:\WINDOWS\Greenstone.bmp : wgrhr (89139 bytes)
C:\WINDOWS\gthpm.log : ahtyr (89362 bytes)
C:\WINDOWS\gtllk.txt : kwouor (0 bytes)
C:\WINDOWS\gtllk.txt : ndnxy (89936 bytes)
C:\WINDOWS\gtllk.txt : oekwm (89362 bytes)
C:\WINDOWS\gtllk.txt : svonl (35310 bytes)
C:\WINDOWS\gtllk.txt : tkaoo (89936 bytes)
C:\WINDOWS\gtllk.txt : vagqj (89362 bytes)
C:\WINDOWS\gyema.dat : ckzso (35310 bytes)
C:\WINDOWS\gyema.dat : ooiko (89139 bytes)
C:\WINDOWS\gzsha.log : zeimw (89936 bytes)
C:\WINDOWS\hbkgo.txt : cpwyb (89362 bytes)
C:\WINDOWS\hbkgo.txt : facia (89936 bytes)
C:\WINDOWS\hcyhn.log : gspvs (0 bytes)
C:\WINDOWS\hcyhn.log : hicsf (35328 bytes)
C:\WINDOWS\hcyhn.log : hsibj (35328 bytes)
C:\WINDOWS\hcyhn.log : ibufd (35328 bytes)
C:\WINDOWS\hcyhn.log : kgitp (89362 bytes)
C:\WINDOWS\hcyhn.log : moylc (89362 bytes)
C:\WINDOWS\hcyhn.log : vsjsk (89936 bytes)
C:\WINDOWS\hcyhn.log : wevdn (35310 bytes)
C:\WINDOWS\hcyhn.log : yizqp (35328 bytes)
C:\WINDOWS\hkxzz.dat : gwvuo (0 bytes)
C:\WINDOWS\hkxzz.dat : mzlze (89936 bytes)
C:\WINDOWS\hndoo.log : jlagz (89362 bytes)
C:\WINDOWS\hqpcp.log : yfqhv (35310 bytes)
C:\WINDOWS\hqvcn.txt : kftes (35310 bytes)
C:\WINDOWS\hqvcn.txt : zplvc (35328 bytes)
C:\WINDOWS\hvkoc.txt : twgjd (35328 bytes)
C:\WINDOWS\hxuxv.log : icftw (35310 bytes)
C:\WINDOWS\hxuxv.log : svvgn (89936 bytes)
C:\WINDOWS\iis6.log : fxvdg (89692 bytes)
C:\WINDOWS\iis6.log : ivjle (89734 bytes)
C:\WINDOWS\iis6.log : jhgtw (90041 bytes)
C:\WINDOWS\iis6.log : sycok (89362 bytes)
C:\WINDOWS\iis6.log : unkocx (197754 bytes)
C:\WINDOWS\iiztm.dat : ugvug (89936 bytes)
C:\WINDOWS\imsins.log : jhmjw (89936 bytes)
C:\WINDOWS\imsins.log : pedis (89755 bytes)
C:\WINDOWS\imwrb.dat : ebfdp (89139 bytes)
C:\WINDOWS\imwrb.dat : ifuim (89139 bytes)
C:\WINDOWS\imwrb.dat : ydkgj (89936 bytes)
C:\WINDOWS\ionbs.txt : kvmal (35328 bytes)
C:\WINDOWS\ivaxs.log : dxyrc (35310 bytes)
C:\WINDOWS\ivaxs.log : qzywc (0 bytes)
C:\WINDOWS\ivaxs.log : sqawl (0 bytes)
C:\WINDOWS\ivaxs.log : uflwb (89362 bytes)
C:\WINDOWS\jdbzm.txt : wnihh (35328 bytes)
C:\WINDOWS\jdbzm.txt : yldtc (89139 bytes)
C:\WINDOWS\jiyzd.dat : guzfc (89936 bytes)
C:\WINDOWS\jiyzd.dat : jwvrx (0 bytes)
C:\WINDOWS\jiyzd.dat : uipts (35310 bytes)
C:\WINDOWS\jiyzd.dat : xtakz (89734 bytes)
C:\WINDOWS\jknxe.txt : kfmoo (88882 bytes)
C:\WINDOWS\jyitu.dat : hdabn (35328 bytes)
C:\WINDOWS\jyitu.dat : tmhun (0 bytes)
C:\WINDOWS\jyxwe.dat : bngdy (35328 bytes)
C:\WINDOWS\kaqgb.dat : dsdgi (0 bytes)
C:\WINDOWS\kaqgb.dat : jakpi (88882 bytes)
C:\WINDOWS\kaqgb.dat : mvxvv (89139 bytes)
C:\WINDOWS\KB823182.log : fhyec (0 bytes)
C:\WINDOWS\KB823182.log : jncqz (35310 bytes)
C:\WINDOWS\KB823182.log : jwbaq (90083 bytes)
C:\WINDOWS\KB823182.log : tlknd (89936 bytes)
C:\WINDOWS\KB823182.log : ysxfa (89936 bytes)
C:\WINDOWS\KB824141.log : vlfkx (89139 bytes)
C:\WINDOWS\KB826939.log : jidwv (0 bytes)
C:\WINDOWS\KB826939.log : xxjgr (35328 bytes)
C:\WINDOWS\KB826959.log : ajjqa (89936 bytes)
C:\WINDOWS\KB826959.log : ciosl (89520 bytes)
C:\WINDOWS\KB826959.log : emogz (0 bytes)
C:\WINDOWS\KB826959.log : zfkxp (89362 bytes)
C:\WINDOWS\KB828741.log : gqmmc (89362 bytes)
C:\WINDOWS\KB828741.log : zihbr (89734 bytes)
C:\WINDOWS\KB833407.log : hnvel (89139 bytes)
C:\WINDOWS\KB833407.log : juayw (0 bytes)
C:\WINDOWS\KB833407.log : rohxb (89362 bytes)
C:\WINDOWS\KB833407.log : uxeln (0 bytes)
C:\WINDOWS\KB835732.log : mcgps (0 bytes)
C:\WINDOWS\KB837001.log : haxsu (89362 bytes)
C:\WINDOWS\KB839643-DirectX9.log : ahjxj (89139 bytes)
C:\WINDOWS\KB839643-DirectX9.log : gejvu (35328 bytes)
C:\WINDOWS\KB839643-DirectX9.log : xaosa (35310 bytes)
C:\WINDOWS\KB839643-DirectX9.log : yobcyv (197751 bytes)
C:\WINDOWS\KB840374.log : eyfhf (89520 bytes)
C:\WINDOWS\KB840374.log : lkujw (35310 bytes)
C:\WINDOWS\KB840374.log : mkolp (88882 bytes)
C:\WINDOWS\KB841873.log : njrlh (35328 bytes)
C:\WINDOWS\KB841873.log : qpthh (89936 bytes)
C:\WINDOWS\KB841873.log : zqcvi (89520 bytes)
C:\WINDOWS\KB842773.log : qrbmj (89936 bytes)
C:\WINDOWS\KB867282.log : axngi (89139 bytes)
C:\WINDOWS\KB885250.log : jvedd (35310 bytes)
C:\WINDOWS\KB885250.log : koyxh (35328 bytes)
C:\WINDOWS\KB885250.log : limpf (35328 bytes)
C:\WINDOWS\KB885250.log : qhjkn (89936 bytes)
C:\WINDOWS\KB885835.log : egycr (89362 bytes)
C:\WINDOWS\KB885835.log : pzjsc (35328 bytes)
C:\WINDOWS\KB885835.log : vcdou (89936 bytes)
C:\WINDOWS\KB885836.log : kknfe (35328 bytes)
C:\WINDOWS\KB885836.log : tread (35310 bytes)
C:\WINDOWS\KB885836.log : vcjiv (89301 bytes)
C:\WINDOWS\KB885836.log : vhtlu (88882 bytes)
C:\WINDOWS\KB887472.log : lzyqe (35328 bytes)
C:\WINDOWS\KB887472.log : uckdi (89362 bytes)
C:\WINDOWS\KB887742.log : bbkqj (89692 bytes)
C:\WINDOWS\KB887742.log : bxtzc (89362 bytes)
C:\WINDOWS\KB890047.log : qnyeup (12425 bytes)
C:\WINDOWS\KB890047.log : qzlwq (89520 bytes)
C:\WINDOWS\KB890047.log : ydgyr (35310 bytes)
C:\WINDOWS\KB890859.log : bjmdj (35310 bytes)
C:\WINDOWS\KB890859.log : etwxd (35328 bytes)
C:\WINDOWS\KB890859.log : uijes (35328 bytes)
C:\WINDOWS\KB890859.log : wxwbxu (197753 bytes)
C:\WINDOWS\KB890923.log : aorjor (0 bytes)
C:\WINDOWS\KB890923.log : dqheh (89362 bytes)
C:\WINDOWS\KB890923.log : mdnbf (0 bytes)
C:\WINDOWS\KB893086.log : aiyem (89139 bytes)
C:\WINDOWS\KB893086.log : baphm (35328 bytes)
C:\WINDOWS\KB893086.log : owgbv (89139 bytes)
C:\WINDOWS\KB893803.log : eiylh (89139 bytes)
C:\WINDOWS\KB898461.log : aazxa (89936 bytes)
C:\WINDOWS\kdglv.log : dsard (89936 bytes)
C:\WINDOWS\kdglv.log : hobwv (89520 bytes)
C:\WINDOWS\kdglv.log : xunvv (35310 bytes)
C:\WINDOWS\kgvir.dat : teaky (89520 bytes)
C:\WINDOWS\kojyr.dat : rekec (89139 bytes)
C:\WINDOWS\kqgkp.dat : ncyng (89936 bytes)
C:\WINDOWS\kqgkp.dat : ulxgv (89520 bytes)
C:\WINDOWS\kqgkp.dat : zpjus (35328 bytes)
C:\WINDOWS\kqzmm.txt : eaorv (89520 bytes)
C:\WINDOWS\kqzmm.txt : elfpv (125074 bytes)
C:\WINDOWS\kqzmm.txt : jujtj (89139 bytes)
C:\WINDOWS\kqzmm.txt : qqczn (89139 bytes)
C:\WINDOWS\krpvm.log : qvdol (89362 bytes)
C:\WINDOWS\kucoq.txt : murnj (89936 bytes)
C:\WINDOWS\kucoq.txt : odqxn (89520 bytes)
C:\WINDOWS\kymyd.dat : dyddv (35328 bytes)
C:\WINDOWS\lexstat.ini : xqslf (88882 bytes)
C:\WINDOWS\lexstat.ini : zvwhb (0 bytes)
C:\WINDOWS\lozxp.txt : fnbzr (35328 bytes)
C:\WINDOWS\lswru.dat : argsk (35328 bytes)
C:\WINDOWS\lswru.dat : ffodd (89139 bytes)
C:\WINDOWS\lswru.dat : lbkip (0 bytes)
C:\WINDOWS\lswru.dat : pcerj (89936 bytes)
C:\WINDOWS\lswru.dat : qywmic (197751 bytes)
C:\WINDOWS\lswru.dat : rhfdg (90041 bytes)
C:\WINDOWS\lswru.dat : yebfc (0 bytes)
C:\WINDOWS\lswru.dat : zmzzq (88882 bytes)
C:\WINDOWS\LUINSTALL.LOG : xilav (89936 bytes)
C:\WINDOWS\mbqnx.txt : kzgql (89936 bytes)
C:\WINDOWS\mbqnx.txt : zdxgj (88882 bytes)
C:\WINDOWS\megog.txt : ictjx (0 bytes)
C:\WINDOWS\megog.txt : zfbij (35328 bytes)
C:\WINDOWS\mfnut.txt : tavqs (89936 bytes)
C:\WINDOWS\mgunm.dat : dseth (89139 bytes)
C:\WINDOWS\mgunm.dat : hwnlz (0 bytes)
C:\WINDOWS\mjhqh.log : egqiu (0 bytes)
C:\WINDOWS\mjhqh.log : fjlmv (89936 bytes)
C:\WINDOWS\mjhqh.log : geybug (66560 bytes)
C:\WINDOWS\mjhqh.log : qslev (89362 bytes)
C:\WINDOWS\mkpqb.txt : axgtp (35310 bytes)
C:\WINDOWS\mkpqb.txt : ieivy (125074 bytes)
C:\WINDOWS\mkpqb.txt : ijwtr (0 bytes)
C:\WINDOWS\mkpqb.txt : lmnzc (89936 bytes)
C:\WINDOWS\mkpqb.txt : myjsa (89936 bytes)
C:\WINDOWS\mkpqb.txt : unmlg (35328 bytes)
C:\WINDOWS\mmhnp.txt : varjh (0 bytes)
C:\WINDOWS\mmhnp.txt : vaukf (89470 bytes)
C:\WINDOWS\mnccg.log : mkbbw (35328 bytes)
C:\WINDOWS\mnvwq.txt : ecyio (0 bytes)
C:\WINDOWS\mozver.dat : ompme (35328 bytes)
C:\WINDOWS\mozver.dat : tncdw (89337 bytes)
C:\WINDOWS\mozver.dat : tobdt (89520 bytes)
C:\WINDOWS\mpvtu.log : aniya (89139 bytes)
C:\WINDOWS\mpvtu.log : bzwou (89362 bytes)
C:\WINDOWS\mpvtu.log : msvqb (90041 bytes)
C:\WINDOWS\mpvtu.log : qlows (35310 bytes)
C:\WINDOWS\mpvtu.log : wnqsy (35310 bytes)
C:\WINDOWS\MSGSOCM.LOG : aerqj (89139 bytes)
C:\WINDOWS\MSGSOCM.LOG : bwghb (89734 bytes)
C:\WINDOWS\MSGSOCM.LOG : kjbpj (35328 bytes)
C:\WINDOWS\MSGSOCM.LOG : ptzkj (35328 bytes)
C:\WINDOWS\MSGSOCM.LOG : uggcb (35310 bytes)
C:\WINDOWS\nlzxs.txt : ieppo (90041 bytes)
C:\WINDOWS\nocba.txt : eqmwq (35328 bytes)
C:\WINDOWS\nocba.txt : zqvzb (89936 bytes)
C:\WINDOWS\nocyl.txt : xmyay (35328 bytes)
C:\WINDOWS\nruna.txt : pzelz (35310 bytes)
C:\WINDOWS\ntbtlog.txt : ehdwq (35328 bytes)
C:\WINDOWS\ntbtlog.txt : qhrva (35328 bytes)
C:\WINDOWS\ntbtlog.txt : tgtak (35328 bytes)
C:\WINDOWS\ntbtlog.txt : wpybm (0 bytes)
C:\WINDOWS\ntdtcsetup.log : avhjg (0 bytes)
C:\WINDOWS\ntdtcsetup.log : jpepr (35328 bytes)
C:\WINDOWS\ntdtcsetup.log : peiis (35310 bytes)
C:\WINDOWS\ntdtcsetup.log : uxels (89755 bytes)
C:\WINDOWS\nyzcf.txt : cryky (0 bytes)
C:\WINDOWS\nyzcf.txt : xjper (89362 bytes)
C:\WINDOWS\n_jvwaia.dat : tflov (35310 bytes)
C:\WINDOWS\n_trgsqu.txt : vjixr (89139 bytes)
C:\WINDOWS\ocgen.log : tbtrd (89362 bytes)
C:\WINDOWS\ocgen.log : uffww (89936 bytes)
C:\WINDOWS\ocgen.log : ystov (89936 bytes)
C:\WINDOWS\ODBC.INI : dbwwo (89362 bytes)
C:\WINDOWS\ODBC.INI : exxwh (89936 bytes)
C:\WINDOWS\ODBC.INI : lyubf (35328 bytes)
C:\WINDOWS\ODBC.INI : rnwyd (89139 bytes)
C:\WINDOWS\ODBCINST.INI : besem (89362 bytes)
C:\WINDOWS\odpls.txt : yctqn (35328 bytes)
C:\WINDOWS\oedqd.log : cyqwt (89936 bytes)
C:\WINDOWS\oedqd.log : pxfne (89139 bytes)
C:\WINDOWS\oflen.log : fgqps (35310 bytes)
C:\WINDOWS\oflen.log : qjhdk (89520 bytes)
C:\WINDOWS\oiqeq.log : jtegs (35310 bytes)
C:\WINDOWS\olswu.log : kpzxf (89337 bytes)
C:\WINDOWS\olytk.dat : dgxsl (89362 bytes)
C:\WINDOWS\olytk.dat : iulwo (89139 bytes)
C:\WINDOWS\OOBEACT.LOG : ayrxa (35310 bytes)
C:\WINDOWS\OOBEACT.LOG : gkmov (89362 bytes)
C:\WINDOWS\OOBEACT.LOG : ppmrf (89936 bytes)
C:\WINDOWS\oooka.dat : mpsob (35328 bytes)
C:\WINDOWS\opaql.txt : bkkog (35328 bytes)
C:\WINDOWS\opaql.txt : nathq (35310 bytes)
C:\WINDOWS\orun32.ini : fhviw (89936 bytes)
C:\WINDOWS\orun32.ini : lskin (89139 bytes)
C:\WINDOWS\orun32.ini : zjnai (89362 bytes)
C:\WINDOWS\orun32.isu : qguxk (89139 bytes)
C:\WINDOWS\orun32.isu : tzbld (89139 bytes)
C:\WINDOWS\pbekd.dat : mrkpc (0 bytes)
C:\WINDOWS\pbekd.dat : topok (35310 bytes)
C:\WINDOWS\pbsnn.dat : dtwgxy (13581 bytes)
C:\WINDOWS\pbsnn.dat : gvswnv (13581 bytes)
C:\WINDOWS\pctmj.dat : hzstf (0 bytes)
C:\WINDOWS\pctmj.dat : mxjax (0 bytes)
C:\WINDOWS\pnbea.txt : esmvr (0 bytes)
C:\WINDOWS\pnbea.txt : rwljhy (197755 bytes)
C:\WINDOWS\ppdlg.dat : wuvtj (35328 bytes)
C:\WINDOWS\Prairie Wind.bmp : jsbay (89362 bytes)
C:\WINDOWS\Prairie Wind.bmp : rfavs (89173 bytes)
C:\WINDOWS\Prairie Wind.bmp : zyxtx (89362 bytes)
C:\WINDOWS\ptutj.log : jxvpji (3567 bytes)
C:\WINDOWS\pxtly.log : dxvwc (89139 bytes)
C:\WINDOWS\pxtly.log : jlsxk (90041 bytes)
C:\WINDOWS\pxtly.log : olhju (89520 bytes)
C:\WINDOWS\pxtly.log : ovzrtl (197755 bytes)
C:\WINDOWS\Q328213.log : jydnl (89520 bytes)
C:\WINDOWS\q329623.log : gupon (87820 bytes)
C:\WINDOWS\q329623.log : gvswnv (13581 bytes)
C:\WINDOWS\q329623.log : nuqil (0 bytes)
C:\WINDOWS\q329623.log : qiyas (35310 bytes)
C:\WINDOWS\Q329909.log : adcez (35310 bytes)
C:\WINDOWS\Q811789.log : xgqaz (89520 bytes)
C:\WINDOWS\q812415.log : fnogk (89139 bytes)
C:\WINDOWS\q812415.log : uqgzgv (66560 bytes)
C:\WINDOWS\q812415.log : xpccn (89362 bytes)
C:\WINDOWS\Q816486.log : cmycp (89139 bytes)
C:\WINDOWS\Q816486.log : uhvti (35328 bytes)
C:\WINDOWS\Q816981.log : fyiwg (35310 bytes)
C:\WINDOWS\Q816981.log : lrwuw (0 bytes)
C:\WINDOWS\Q817472.log : hzqua (35328 bytes)
C:\WINDOWS\Q817472.log : jxvpji (66560 bytes)
C:\WINDOWS\Q817472.log : mxeib (89139 bytes)
C:\WINDOWS\Q817472.log : rhkpt (90041 bytes)
C:\WINDOWS\qeyzr.log : oajfh (89139 bytes)
C:\WINDOWS\qhrkj.dat : vujtt (89362 bytes)
C:\WINDOWS\qlzeq.dat : kwlem (35328 bytes)
C:\WINDOWS\qmlle.log : ajmqq (35328 bytes)
C:\WINDOWS\qnpib.log : aixbt (0 bytes)
C:\WINDOWS\qnpib.log : raznm (35310 bytes)
C:\WINDOWS\qqywk.dat : focnl (35328 bytes)
C:\WINDOWS\qqywk.dat : iprqg (35328 bytes)
C:\WINDOWS\qqywk.dat : xypsx (35328 bytes)
C:\WINDOWS\qyxqf.dat : arneg (89520 bytes)
C:\WINDOWS\rcvfb.dat : magga (35328 bytes)
C:\WINDOWS\rcvfb.dat : nkjinm (0 bytes)
C:\WINDOWS\rcvfb.dat : rlcpx (0 bytes)
C:\WINDOWS\rcvfb.dat : scfdy (35328 bytes)
C:\WINDOWS\rcvfb.dat : uxdsw (89362 bytes)
C:\WINDOWS\REGLOCS.OLD : snzlb (89139 bytes)
C:\WINDOWS\REGLOCS.OLD : zfmni (89936 bytes)
C:\WINDOWS\rhhcd.log : flbopw (0 bytes)
C:\WINDOWS\Rhododendron.bmp : wliek (0 bytes)
C:\WINDOWS\River Sumida.bmp : canzp (35328 bytes)
C:\WINDOWS\River Sumida.bmp : faybc (89936 bytes)
C:\WINDOWS\River Sumida.bmp : jplhx (35310 bytes)
C:\WINDOWS\River Sumida.bmp : lbrly (35328 bytes)
C:\WINDOWS\River Sumida.bmp : wmiuf (35328 bytes)
C:\WINDOWS\rmqlq.dat : kzpfe (35310 bytes)
C:\WINDOWS\rmqlq.dat : vjgey (89936 bytes)
C:\WINDOWS\rmwqc.log : hlnyxm (3567 bytes)
C:\WINDOWS\rxwcu.log : dobbqm (3567 bytes)
C:\WINDOWS\rxwcu.log : qeegmj (13581 bytes)
C:\WINDOWS\rzmns.log : xezlr (89362 bytes)
C:\WINDOWS\Santa Fe Stucco.bmp : algdzp (66560 bytes)
C:\WINDOWS\Santa Fe Stucco.bmp : eelhq (89692 bytes)
C:\WINDOWS\SchedLgU.Txt : lybmz (89139 bytes)
C:\WINDOWS\SchedLgU.Txt : ojjav (89936 bytes)
C:\WINDOWS\SchedLgU.Txt : qubuy (0 bytes)
C:\WINDOWS\SchedLgU.Txt : xruif (89936 bytes)
C:\WINDOWS\setupact.log : ayaqe (90041 bytes)
C:\WINDOWS\setupact.log : gcjxu (35310 bytes)
C:\WINDOWS\setupact.log : rojfv (89936 bytes)
C:\WINDOWS\setupapi.log : bgqriw (13581 bytes)
C:\WINDOWS\setupapi.log : eohjk (89362 bytes)
C:\WINDOWS\setupapi.log : ilfid (89936 bytes)
C:\WINDOWS\setupapi.log : pvyon (90083 bytes)
C:\WINDOWS\setupapi.log : umvqg (35328 bytes)
C:\WINDOWS\setuperr.log : grrmb (89734 bytes)
C:\WINDOWS\SETUPLOG.TXT : uwidx (90041 bytes)
C:\WINDOWS\sgicq.log : kclcm (89520 bytes)
C:\WINDOWS\spupdsvc.log : lgawcg (11151 bytes)
C:\WINDOWS\spupdsvc.log : wrmxw (35328 bytes)
C:\WINDOWS\spupdsvc.log : zkybb (35310 bytes)
C:\WINDOWS\spvln.dat : cdupg (89936 bytes)
C:\WINDOWS\spvln.dat : heznq (89139 bytes)
C:\WINDOWS\spvln.dat : ojunx (89734 bytes)
C:\WINDOWS\Sti_Trace.log : cquxs (0 bytes)
C:\WINDOWS\Sti_Trace.log : dadab (0 bytes)
C:\WINDOWS\Sti_Trace.log : gumch (0 bytes)
C:\WINDOWS\Sti_Trace.log : ktmks (0 bytes)
C:\WINDOWS\Sti_Trace.log : zigbe (89362 bytes)
C:\WINDOWS\svcpack.log : ehtjer (11151 bytes)
C:\WINDOWS\svcpack.log : gcsiu (88882 bytes)
C:\WINDOWS\svcpack.log : pfoam (35310 bytes)
C:\WINDOWS\svcpack.log : xawkx (89362 bytes)
C:\WINDOWS\swpka.dat : dokdx (35328 bytes)
C:\WINDOWS\swpka.dat : hdkyx (89936 bytes)
C:\WINDOWS\swpka.dat : kfdhl (35328 bytes)
C:\WINDOWS\swpka.dat : kiavn (89139 bytes)
C:\WINDOWS\swpka.dat : tlhvu (89139 bytes)
C:\WINDOWS\swpka.dat : xxlot (35328 bytes)
C:\WINDOWS\sxupz.log : ewjek (89139 bytes)
C:\WINDOWS\sxupz.log : vdwui (35328 bytes)
C:\WINDOWS\sxutj.log : txrfk (89936 bytes)
C:\WINDOWS\sxutj.log : wilpzb (3567 bytes)
C:\WINDOWS\SYMEVENT.LOG : kfdyn (35328 bytes)
C:\WINDOWS\SYMEVENT.LOG : lftvn (89362 bytes)
C:\WINDOWS\tchsn.dat : xfhuj (89139 bytes)
C:\WINDOWS\tgkgz.dat : pjeube (66560 bytes)
C:\WINDOWS\tjrsz.dat : nrmoh (89936 bytes)
C:\WINDOWS\tqwmk.log : djehx (89520 bytes)
C:\WINDOWS\tqwmk.log : gxqnw (0 bytes)
C:\WINDOWS\tqwmk.log : hnuuv (89936 bytes)
C:\WINDOWS\tqwmk.log : lalub (89936 bytes)
C:\WINDOWS\tqwmk.log : soncz (89936 bytes)
C:\WINDOWS\tqwmk.log : xyphg (89139 bytes)
C:\WINDOWS\tsoc.log : dmkgq (35328 bytes)
C:\WINDOWS\tsoc.log : kfnru (0 bytes)
C:\WINDOWS\tsoc.log : rdhqd (89520 bytes)
C:\WINDOWS\tsoc.log : rknsj (35310 bytes)
C:\WINDOWS\tsoc.log : tapkq (89936 bytes)
C:\WINDOWS\tsoc.log : vjloj (35328 bytes)
C:\WINDOWS\ueirc.txt : igsmf (35328 bytes)
C:\WINDOWS\ujdau.txt : sglyr (89936 bytes)
C:\WINDOWS\ujdau.txt : xznda (0 bytes)
C:\WINDOWS\ujdau.txt : yzmgx (89362 bytes)
C:\WINDOWS\ukbjz.dat : cxkjz (35328 bytes)
C:\WINDOWS\ukbjz.dat : irtzc (35328 bytes)
C:\WINDOWS\ukbjz.dat : xtphd (0 bytes)
C:\WINDOWS\ukvsn.txt : dpynv (0 bytes)
C:\WINDOWS\ukvsn.txt : pbqes (89139 bytes)
C:\WINDOWS\upkcx.dat : euadn (0 bytes)
C:\WINDOWS\upkcx.dat : ggqhk (89936 bytes)
C:\WINDOWS\uxslw.log : ocgsa (0 bytes)
C:\WINDOWS\uyeeb.txt : ayfcj (35328 bytes)
C:\WINDOWS\uyeeb.txt : bbhny (89936 bytes)
C:\WINDOWS\uyeeb.txt : dbyrj (89362 bytes)
C:\WINDOWS\uyeeb.txt : okpat (35328 bytes)
C:\WINDOWS\uyeeb.txt : rkegd (89362 bytes)
C:\WINDOWS\uyqmm.log : nmfrp (0 bytes)
C:\WINDOWS\vlcno.log : qcwbx (90041 bytes)
C:\WINDOWS\vswfq.log : nqazaj (12311 bytes)
C:\WINDOWS\vvncg.log : auuwp (35328 bytes)
C:\WINDOWS\vvncg.log : vhoro (35310 bytes)
C:\WINDOWS\vwtce.txt : jhuzg (0 bytes)
C:\WINDOWS\vwtce.txt : qcfen (89936 bytes)
C:\WINDOWS\vzbot.log : fqtmut (35310 bytes)
C:\WINDOWS\vzbot.log : jnrwt (0 bytes)
C:\WINDOWS\vzbot.log : spfnr (0 bytes)
C:\WINDOWS\wiaservc.log : behut (35328 bytes)
C:\WINDOWS\wiaservc.log : fgvlfs (197751 bytes)
C:\WINDOWS\wiaservc.log : heflt (89936 bytes)
C:\WINDOWS\WindowsUpdate.log : axkzj (35328 bytes)
C:\WINDOWS\WindowsUpdate.log : eddlx (35310 bytes)
C:\WINDOWS\wininit.ini : tdiok (35310 bytes)
C:\WINDOWS\WINNT.BMP : icugq (89936 bytes)
C:\WINDOWS\WINNT.BMP : tgvau (89362 bytes)
C:\WINDOWS\WINNT256.BMP : aoisz (89139 bytes)
C:\WINDOWS\WINNT256.BMP : huaeu (89936 bytes)
C:\WINDOWS\WINNT256.BMP : lnqta (35310 bytes)
C:\WINDOWS\WINNT256.BMP : lycwi (90041 bytes)
C:\WINDOWS\WINNT256.BMP : mgugq (35328 bytes)
C:\WINDOWS\WINNT256.BMP : mtzyhd (11758 bytes)
C:\WINDOWS\WINNT256.BMP : nygmi (0 bytes)
C:\WINDOWS\WINNT256.BMP : swjkv (88882 bytes)
C:\WINDOWS\WINNT256.BMP : yrtlp (89734 bytes)
C:\WINDOWS\WINNT256.BMP : yuhwk (89139 bytes)
C:\WINDOWS\WINNT256.BMP : zsbzw (90083 bytes)
C:\WINDOWS\WMSysPr9.prx : uumnc (89936 bytes)
C:\WINDOWS\wolss.log : wxtke (35328 bytes)
C:\WINDOWS\wxkew.log : fmslbn (35310 bytes)
C:\WINDOWS\wxkew.log : giosz (0 bytes)
C:\WINDOWS\xalkc.log : eckbsd (13581 bytes)
C:\WINDOWS\xaoju.txt : tdxzm (35310 bytes)
C:\WINDOWS\xaoju.txt : ugfrd (35328 bytes)
C:\WINDOWS\xaoju.txt : vnmkv (89362 bytes)
C:\WINDOWS\xaoju.txt : wznhe (35328 bytes)
C:\WINDOWS\xhgzg.txt : ldnbq (89520 bytes)
C:\WINDOWS\xncqp.txt : lusvpd (66560 bytes)
C:\WINDOWS\xpsp1hfm.log : ajbfk (0 bytes)
C:\WINDOWS\xrjdy.dat : bjwnr (89936 bytes)
C:\WINDOWS\xrjdy.dat : wxbik (90041 bytes)
C:\WINDOWS\yccxy.txt : kfbpd (89936 bytes)
C:\WINDOWS\yccxy.txt : rjzlv (35310 bytes)
C:\WINDOWS\yclsa.log : jrktm (89362 bytes)
C:\WINDOWS\yclsa.log : pdvtpq (197755 bytes)
C:\WINDOWS\yjvef.txt : dlnxg (35328 bytes)
C:\WINDOWS\yjvef.txt : hegzra (3567 bytes)
C:\WINDOWS\yreqs.dat : lsvwp (89936 bytes)
C:\WINDOWS\yreqs.dat : vfqtm (35328 bytes)
C:\WINDOWS\yxglk.txt : hzetg (35328 bytes)
C:\WINDOWS\yxglk.txt : mkhgo (35310 bytes)
C:\WINDOWS\yxglk.txt : nheaa (35310 bytes)
C:\WINDOWS\yxjaw.txt : seyelk (66560 bytes)
C:\WINDOWS\yyuyp.log : swlpq (35310 bytes)
C:\WINDOWS\Zapotec.bmp : cirto (89139 bytes)
C:\WINDOWS\zdflq.log : vugpm (0 bytes)
C:\WINDOWS\zmfnd.dat : itflz (89936 bytes)
C:\WINDOWS\zmfnd.dat : lwyps (89520 bytes)
C:\WINDOWS\zmfnd.dat : reonv (125074 bytes)
C:\WINDOWS\_DEFAULT(2).PIF : aabwg (125074 bytes)
C:\WINDOWS\_DEFAULT(2).PIF : aabyv (125074 bytes)
C:\WINDOWS\_DEFAULT(2).PIF : aafeb (87820 bytes)
C:\WINDOWS\_DEFAULT(2).PIF : aafoa (125074 bytes)
C:\WINDOWS\_DEFAULT(2).PIF : aahob (125074 bytes)
C:\WINDOWS\_DEFAULT(2).PIF : aamgq (32910 bytes)
C:\WINDOWS\_DEFAULT(2).PIF : aaosz (32910 bytes)
C:\WINDOWS\_DEFAULT(2).PIF : aapnq (32910 bytes)
C:\WINDOWS\_DEFAULT(2).PIF : aaqni (125074 bytes)
C:\WINDOWS\_DEFAULT(2).PIF : aaqpv (125074 bytes)
C:\WINDOWS\_DEFAULT(2).PIF : aavkf (32910 bytes)
C:\WINDOWS\_DEFAULT(2).PIF : aazof (32910 bytes)
C:\WINDOWS\_DEFAULT(2).PIF : abdfj (125074 bytes)
C:\WINDOWS\_DEFAULT(2).PIF : abdor (32910 bytes)
C:\WINDOWS\_DEFAULT(2).PIF : abiel (125074 bytes)
C:\WINDOWS\_DEFAULT(2).PIF : abkyd (125074 bytes)
C:\WINDOWS\_DEFAULT(2).PIF : abolg (32910 bytes)
C:\WINDOWS\_DEFAULT(2).PIF : abpry (125074 bytes)
C:\WINDOWS\_DEFAULT(2).PIF : absez (32910 bytes)
C:\WINDOWS\_DEFAULT(2).PIF : abvdi (32910 bytes)
C:\WINDOWS\_DEFAULT(2).PIF : abwzh (125074 bytes)
C:\WINDOWS\_DEFAULT(2).PIF : acamg (125074 bytes)
C:\WINDOWS\_DEFAULT(2).PIF : acbsg (125074 bytes)
C:\WINDOWS\_DEFAULT(2).PIF : acean (32910 bytes)
C:\WINDOWS\_DEFAULT(2).PIF : achhd (32910 bytes)
C:\WINDOWS\_DEFAULT(2).PIF : ackpg (32910 bytes)
C:\WINDOWS\_DEFAULT(2).PIF : acllg (125074 bytes)
C:\WINDOWS\_DEFAULT(2).PIF : acztn (125074 bytes)
C:\WINDOWS\_DEFAULT(2).PIF : aczza (32910 bytes)
C:\WINDOWS\_DEFAULT(2).PIF : adccn (125074 bytes)
C:\WINDOWS\_DEFAULT(2).PIF : adfgi (125074 bytes)
C:\WINDOWS\_DEFAULT(2).PIF : adfri (32910 bytes)
C:\WINDOWS\_DEFAULT(2).PIF : admfj (32910 bytes)
C:\WINDOWS\_DEFAULT(2).PIF : adrvn (32910 bytes)
C:\WINDOWS\_DEFAULT(2).PIF : adugx (32910 bytes)
C:\WINDOWS\_DEFAULT(2).PIF : advcj (32910 bytes)
C:\WINDOWS\_DEFAULT(2).PIF : aefxb (32910 bytes)
C:\WINDOWS\_DEFAULT(2).PIF : aejir (32910 bytes)
C:\WINDOWS\_DEFAULT(2).PIF : aelyh (32910 bytes)
C:\WINDOWS\_DEFAULT(2).PIF : aeody (32910 bytes)
C:\WINDOWS\_DEFAULT(2).PIF : aeuxq (32910 bytes)
C:\WINDOWS\_DEFAULT(2).PIF : aewrv (125074 bytes)
C:\WINDOWS\_DEFAULT(2).PIF : aexuk (32910 bytes)
C:\WINDOWS\_DEFAULT(2).PIF : aeyvg (32910 bytes)
C:\WINDOWS\_DEFAULT(2).PIF : afanf (32910 bytes)
C:\WINDOWS\_DEFAULT(2).PIF : affrs (125074 bytes)
C:\WINDOWS\_DEFAULT(2).PIF : affvn (88278 bytes)
C:\WINDOWS\_DEFAULT(2).PIF : afgnjm (13581 bytes)
C:\WINDOWS\_DEFAULT(2).PIF : afljl (87820 bytes)
C:\WINDOWS\_DEFAULT(2).PIF : afmeg (32910 bytes)
C:\WINDOWS\_DEFAULT(2).PIF : afoas (32910 bytes)
C:\WINDOWS\_DEFAULT(2).PIF : afotv (34959 bytes)
C:\WINDOWS\_DEFAULT(2).PIF : afqer (32910 bytes)
C:\WINDOWS\_DEFAULT(2).PIF : afujm (32910 bytes)
C:\WINDOWS\_DEFAULT(2).PIF : agadk (32910 bytes)
C:\WINDOWS\_DEFAULT(2).PIF : aghmb (87820 bytes)
C:\WINDOWS\_DEFAULT(2).PIF : aglkz (32910 bytes)
C:\WINDOWS\_DEFAULT(2).PIF : agmkh (87820 bytes)
C:\WINDOWS\_DEFAULT(2).PIF : agohc (125074 bytes)
C:\WINDOWS\_DEFAULT(2).PIF : agsvc (32910 bytes)
C:\WINDOWS\_DEFAULT(2).PIF : aguwv (32910 bytes)
C:\WINDOWS\_DEFAULT(2).PIF : agxbk (0 bytes)
C:\WINDOWS\_DEFAULT(2).PIF : ahaat (125074 bytes)
C:\WINDOWS\_DEFAULT(2).PIF : ahbew (32910 bytes)
C:\WINDOWS\_DEFAULT(2).PIF : ahder (125074 bytes)
C:\WINDOWS\_DEFAULT(2).PIF : ahdmv (0 bytes)
C:\WINDOWS\_DEFAULT(2).PIF : ahmxr (32910 bytes)
C:\WINDOWS\_DEFAULT(2).PIF : ahoks (87820 bytes)
C:\WINDOWS\_DEFAULT(2).PIF : ahvpz (32910 bytes)
C:\WINDOWS\_DEFAULT(2).PIF : ahxjl (125074 bytes)
C:\WINDOWS\_DEFAULT(2).PIF : ahzjk (34973 bytes)
C:\WINDOWS\_DEFAULT(2).PIF : aidil (32910 bytes)
C:\WINDOWS\_DEFAULT(2).PIF : aiffl (125074 bytes)
C:\WINDOWS\_DEFAULT(2).PIF : aifhm (0 bytes)
C:\WINDOWS\_DEFAULT(2).PIF : aifun (32910 bytes)
C:\WINDOWS\_DEFAULT(2).PIF : aihaq (32910 bytes)
C:\WINDOWS\_DEFAULT(2).PIF : aihsy (87820 bytes)
C:\WINDOWS\_DEFAULT(2).PIF : aimlb (125074 bytes)
C:\WINDOWS\_DEFAULT(2).PIF : ainly (125074 bytes)
C:\WINDOWS\_DEFAULT(2).PIF : ainpt (0 bytes)
C:\WINDOWS\_DEFAULT(2).PIF : aiozh (125074 bytes)
C:\WINDOWS\_DEFAULT(2).PIF : aiqni (125074 bytes)
C:\WINDOWS\_DEFAULT(2).PIF : airhl (32910 bytes)
C:\WINDOWS\_DEFAULT(2).PIF : airtg (125074 bytes)
C:\WINDOWS\_DEFAULT.PIF : aabwg (125074 bytes)
C:\WINDOWS\_DEFAULT.PIF : aabyv (125074 bytes)
C:\WINDOWS\_DEFAULT.PIF : aafeb (87820 bytes)
C:\WINDOWS\_DEFAULT.PIF : aagmi (87820 bytes)
C:\WINDOWS\_DEFAULT.PIF : aahob (125074 bytes)
C:\WINDOWS\_DEFAULT.PIF : aamgq (32910 bytes)
C:\WINDOWS\_DEFAULT.PIF : aaosz (32910 bytes)
C:\WINDOWS\_DEFAULT.PIF : aapnq (32910 bytes)
C:\WINDOWS\_DEFAULT.PIF : aaqni (125074 bytes)
C:\WINDOWS\_DEFAULT.PIF : aaqpv (125074 bytes)
C:\WINDOWS\_DEFAULT.PIF : aavkf (32910 bytes)
C:\WINDOWS\_DEFAULT.PIF : aazof (32910 bytes)
C:\WINDOWS\_DEFAULT.PIF : abdfj (125074 bytes)
C:\WINDOWS\_DEFAULT.PIF : abdor (32910 bytes)
C:\WINDOWS\_DEFAULT.PIF : abiel (125074 bytes)
C:\WINDOWS\_DEFAULT.PIF : abkyd (125074 bytes)
C:\WINDOWS\_DEFAULT.PIF : abpry (125074 bytes)
C:\WINDOWS\_DEFAULT.PIF : absez (32910 bytes)
C:\WINDOWS\_DEFAULT.PIF : abvdi (32910 bytes)
C:\WINDOWS\_DEFAULT.PIF : abwzh (125074 bytes)
C:\WINDOWS\_DEFAULT.PIF : acamg (125074 bytes)
C:\WINDOWS\_DEFAULT.PIF : acbsg (88709 bytes)
C:\WINDOWS\_DEFAULT.PIF : acdsa (89139 bytes)
C:\WINDOWS\_DEFAULT.PIF : acean (32910 bytes)
C:\WINDOWS\_DEFAULT.PIF : achhd (32910 bytes)
C:\WINDOWS\_DEFAULT.PIF : ackpg (32910 bytes)
C:\WINDOWS\_DEFAULT.PIF : acllg (89936 bytes)
C:\WINDOWS\_DEFAULT.PIF : acztn (89936 bytes)
C:\WINDOWS\_DEFAULT.PIF : aczza (32910 bytes)
C:\WINDOWS\_DEFAULT.PIF : adccn (89362 bytes)
C:\WINDOWS\_DEFAULT.PIF : adfgi (125074 bytes)
C:\WINDOWS\_DEFAULT.PIF : adfri (32910 bytes)
C:\WINDOWS\_DEFAULT.PIF : admfj (32910 bytes)
C:\WINDOWS\_DEFAULT.PIF : adrvn (32910 bytes)
C:\WINDOWS\_DEFAULT.PIF : adugx (32910 bytes)
C:\WINDOWS\_DEFAULT.PIF : advcj (32910 bytes)
C:\WINDOWS\_DEFAULT.PIF : adypv (0 bytes)
C:\WINDOWS\_DEFAULT.PIF : adzia (87820 bytes)
C:\WINDOWS\_DEFAULT.PIF : aefxb (32910 bytes)
C:\WINDOWS\_DEFAULT.PIF : aejir (32910 bytes)
C:\WINDOWS\_DEFAULT.PIF : aelyh (32910 bytes)
C:\WINDOWS\_DEFAULT.PIF : aesnp (89139 bytes)
C:\WINDOWS\_DEFAULT.PIF : aeuxq (32910 bytes)
C:\WINDOWS\_DEFAULT.PIF : aexuk (32910 bytes)
C:\WINDOWS\_DEFAULT.PIF : aeyvg (32910 bytes)
C:\WINDOWS\_DEFAULT.PIF : afanf (32910 bytes)
C:\WINDOWS\_DEFAULT.PIF : affrs (125074 bytes)
C:\WINDOWS\_DEFAULT.PIF : affvn (89520 bytes)
C:\WINDOWS\_DEFAULT.PIF : afgnjm (13581 bytes)
C:\WINDOWS\_DEFAULT.PIF : afljl (87820 bytes)
C:\WINDOWS\_DEFAULT.PIF : afmeg (32910 bytes)
C:\WINDOWS\_DEFAULT.PIF : afoas (32910 bytes)
C:\WINDOWS\_DEFAULT.PIF : afotv (34959 bytes)
C:\WINDOWS\_DEFAULT.PIF : afqer (32910 bytes)
C:\WINDOWS\_DEFAULT.PIF : afujm (32910 bytes)
C:\WINDOWS\_DEFAULT.PIF : agadk (32910 bytes)
C:\WINDOWS\_DEFAULT.PIF : aghmb (0 bytes)
C:\WINDOWS\_DEFAULT.PIF : aglkz (32910 bytes)
C:\WINDOWS\_DEFAULT.PIF : agmkh (87820 bytes)
C:\WINDOWS\_DEFAULT.PIF : agohc (87820 bytes)
C:\WINDOWS\_DEFAULT.PIF : agsvc (32910 bytes)
C:\WINDOWS\_DEFAULT.PIF : aguwv (32910 bytes)
C:\WINDOWS\_DEFAULT.PIF : agxbk (0 bytes)
C:\WINDOWS\_DEFAULT.PIF : agyfw (0 bytes)
C:\WINDOWS\_DEFAULT.PIF : ahaat (87820 bytes)
C:\WINDOWS\_DEFAULT.PIF : ahbew (32910 bytes)
C:\WINDOWS\_DEFAULT.PIF : ahder (125074 bytes)
C:\WINDOWS\_DEFAULT.PIF : ahdmv (0 bytes)
C:\WINDOWS\_DEFAULT.PIF : ahmxr (32910 bytes)
C:\WINDOWS\_DEFAULT.PIF : ahoks (89362 bytes)
C:\WINDOWS\_DEFAULT.PIF : ahvpz (32910 bytes)
C:\WINDOWS\_DEFAULT.PIF : ahxjl (125074 bytes)
C:\WINDOWS\_DEFAULT.PIF : ahzjk (34973 bytes)
C:\WINDOWS\_DEFAULT.PIF : aidil (32910 bytes)
C:\WINDOWS\_DEFAULT.PIF : aiffl (125074 bytes)
C:\WINDOWS\_DEFAULT.PIF : aifhm (0 bytes)
C:\WINDOWS\_DEFAULT.PIF : aifun (32910 bytes)
C:\WINDOWS\_DEFAULT.PIF : aihaq (32910 bytes)
C:\WINDOWS\_DEFAULT.PIF : aihsy (87820 bytes)
C:\WINDOWS\_DEFAULT.PIF : aimlb (125074 bytes)
C:\WINDOWS\_DEFAULT.PIF : ainly (89520 bytes)
C:\WINDOWS\_DEFAULT.PIF : ainpt (0 bytes)
C:\WINDOWS\_DEFAULT.PIF : aiozh (125074 bytes)
C:\WINDOWS\_DEFAULT.PIF : aiqni (125074 bytes)


Wow sure seems like alot. These people really got me. What do you think?

Thanks!
  • 0

#18
Rawe

Rawe

    Visiting Staff

  • Member
  • PipPipPipPipPipPipPip
  • 4,746 posts
Ok, run a new scan with ADS Spy and check the following objects (This will take "some" time. It took me about 20 minutes to research the entries..):

C:\WINDOWS\abalp.txt : ytshu (35328 bytes)
C:\WINDOWS\abalp.txt : yuddd (88882 bytes)
C:\WINDOWS\ajjpu.log : dqsoo (35328 bytes)
C:\WINDOWS\ajjpu.log : nqeoq (89936 bytes)
C:\WINDOWS\aootq.log : owhki (89936 bytes)
C:\WINDOWS\aootq.log : tgiog (89520 bytes)
C:\WINDOWS\aoszv.dat : dupnp (35310 bytes)
C:\WINDOWS\aoszv.dat : ecqmo (90041 bytes)
C:\WINDOWS\aoszv.dat : gmveh (35310 bytes)
C:\WINDOWS\apdzi.log : bjwod (35310 bytes)
C:\WINDOWS\apdzi.log : fufpk (89139 bytes)
C:\WINDOWS\apdzi.log : hpnjb (89520 bytes)
C:\WINDOWS\apdzi.log : hybwr (89139 bytes)
C:\WINDOWS\apdzi.log : shsrm (89139 bytes)
C:\WINDOWS\apdzi.log : snius (89139 bytes)
C:\WINDOWS\apdzi.log : xwiqz (88882 bytes)
C:\WINDOWS\bledt.txt : ganbb (89139 bytes)
C:\WINDOWS\blslu.dat : safpo (35328 bytes)
C:\WINDOWS\blslu.dat : trnyq (89520 bytes)
C:\WINDOWS\bqlwg.txt : aaawv (89520 bytes)
C:\WINDOWS\bqlwg.txt : hwnkt (35328 bytes)
C:\WINDOWS\bqlwg.txt : zddnd (35328 bytes)
C:\WINDOWS\bqrtl.txt : elrsx (89139 bytes)
C:\WINDOWS\brjjb.dat : dgdhn (89936 bytes)
C:\WINDOWS\bsmlo.log : crwkkt (197755 bytes)
C:\WINDOWS\bsusu.txt : hetuhb (13581 bytes)
C:\WINDOWS\bsusu.txt : smrko (89139 bytes)
C:\WINDOWS\bwhhg.log : elqrn (35328 bytes)
C:\WINDOWS\bwhhg.log : ruqmx (35328 bytes)
C:\WINDOWS\auxef.txt : okauh (90041 bytes)
C:\WINDOWS\avhvz.log : evcaw (89139 bytes)
C:\WINDOWS\awscm.log : prhzm (35310 bytes)
C:\WINDOWS\betqx.dat : gdtxk (35328 bytes)
C:\WINDOWS\betqx.dat : wnvlu (89362 bytes)
C:\WINDOWS\kaqgb.dat : jakpi (88882 bytes)
C:\WINDOWS\kaqgb.dat : mvxvv (89139 bytes)
C:\WINDOWS\pnbea.txt : rwljhy (197755 bytes)
C:\WINDOWS\ppdlg.dat : wuvtj (35328 bytes)
C:\WINDOWS\ptutj.log : jxvpji (3567 bytes)
C:\WINDOWS\pxtly.log : dxvwc (89139 bytes)
C:\WINDOWS\pxtly.log : jlsxk (90041 bytes)
C:\WINDOWS\pxtly.log : olhju (89520 bytes)
C:\WINDOWS\pxtly.log : ovzrtl (197755 bytes)
C:\WINDOWS\Q328213.log : jydnl (89520 bytes)
C:\WINDOWS\q329623.log : gupon (87820 bytes)
C:\WINDOWS\q329623.log : gvswnv (13581 bytes)
C:\WINDOWS\q329623.log : qiyas (35310 bytes)
C:\WINDOWS\Q329909.log : adcez (35310 bytes)
C:\WINDOWS\Q811789.log : xgqaz (89520 bytes)
C:\WINDOWS\q812415.log : fnogk (89139 bytes)
C:\WINDOWS\q812415.log : uqgzgv (66560 bytes)
C:\WINDOWS\q812415.log : xpccn (89362 bytes)
C:\WINDOWS\Q816486.log : cmycp (89139 bytes)
C:\WINDOWS\Q816486.log : uhvti (35328 bytes)
C:\WINDOWS\Q816981.log : fyiwg (35310 bytes)
C:\WINDOWS\Q817472.log : hzqua (35328 bytes)
C:\WINDOWS\Q817472.log : jxvpji (66560 bytes)
C:\WINDOWS\Q817472.log : mxeib (89139 bytes)
C:\WINDOWS\Q817472.log : rhkpt (90041 bytes)
C:\WINDOWS\qeyzr.log : oajfh (89139 bytes)
C:\WINDOWS\qhrkj.dat : vujtt (89362 bytes)
C:\WINDOWS\qlzeq.dat : kwlem (35328 bytes)
C:\WINDOWS\qmlle.log : ajmqq (35328 bytes)
C:\WINDOWS\qnpib.log : raznm (35310 bytes)
C:\WINDOWS\qqywk.dat : focnl (35328 bytes)
C:\WINDOWS\qqywk.dat : iprqg (35328 bytes)
C:\WINDOWS\qqywk.dat : xypsx (35328 bytes)
C:\WINDOWS\qyxqf.dat : arneg (89520 bytes)
C:\WINDOWS\rcvfb.dat : magga (35328 bytes)
C:\WINDOWS\rcvfb.dat : scfdy (35328 bytes)
C:\WINDOWS\rcvfb.dat : uxdsw (89362 bytes)
C:\WINDOWS\rmqlq.dat : kzpfe (35310 bytes)
C:\WINDOWS\rmqlq.dat : vjgey (89936 bytes)
C:\WINDOWS\rmwqc.log : hlnyxm (3567 bytes)
C:\WINDOWS\rxwcu.log : dobbqm (3567 bytes)
C:\WINDOWS\rxwcu.log : qeegmj (13581 bytes)
C:\WINDOWS\rzmns.log : xezlr (89362 bytes)
C:\WINDOWS\sgicq.log : kclcm (89520 bytes)
C:\WINDOWS\spupdsvc.log : lgawcg (11151 bytes)
C:\WINDOWS\spupdsvc.log : wrmxw (35328 bytes)
C:\WINDOWS\spupdsvc.log : zkybb (35310 bytes)
C:\WINDOWS\spvln.dat : cdupg (89936 bytes)
C:\WINDOWS\spvln.dat : heznq (89139 bytes)
C:\WINDOWS\spvln.dat : ojunx (89734 bytes)
C:\WINDOWS\swpka.dat : dokdx (35328 bytes)
C:\WINDOWS\swpka.dat : hdkyx (89936 bytes)
C:\WINDOWS\swpka.dat : kfdhl (35328 bytes)
C:\WINDOWS\swpka.dat : kiavn (89139 bytes)
C:\WINDOWS\swpka.dat : tlhvu (89139 bytes)
C:\WINDOWS\swpka.dat : xxlot (35328 bytes)
C:\WINDOWS\sxupz.log : ewjek (89139 bytes)
C:\WINDOWS\sxupz.log : vdwui (35328 bytes)
C:\WINDOWS\sxutj.log : txrfk (89936 bytes)
C:\WINDOWS\sxutj.log : wilpzb (3567 bytes)
C:\WINDOWS\SYMEVENT.LOG : kfdyn (35328 bytes)
C:\WINDOWS\SYMEVENT.LOG : lftvn (89362 bytes)
C:\WINDOWS\tchsn.dat : xfhuj (89139 bytes)
C:\WINDOWS\tgkgz.dat : pjeube (66560 bytes)
C:\WINDOWS\tjrsz.dat : nrmoh (89936 bytes)
C:\WINDOWS\tqwmk.log : djehx (89520 bytes)
C:\WINDOWS\tqwmk.log : hnuuv (89936 bytes)
C:\WINDOWS\tqwmk.log : lalub (89936 bytes)
C:\WINDOWS\tqwmk.log : soncz (89936 bytes)
C:\WINDOWS\tqwmk.log : xyphg (89139 bytes)
C:\WINDOWS\ueirc.txt : igsmf (35328 bytes)
C:\WINDOWS\ujdau.txt : sglyr (89936 bytes)
C:\WINDOWS\ujdau.txt : yzmgx (89362 bytes)
C:\WINDOWS\ukbjz.dat : cxkjz (35328 bytes)
C:\WINDOWS\ukbjz.dat : irtzc (35328 bytes)
C:\WINDOWS\ukvsn.txt : pbqes (89139 bytes)
C:\WINDOWS\upkcx.dat : ggqhk (89936 bytes)
C:\WINDOWS\uyeeb.txt : ayfcj (35328 bytes)
C:\WINDOWS\uyeeb.txt : bbhny (89936 bytes)
C:\WINDOWS\uyeeb.txt : dbyrj (89362 bytes)
C:\WINDOWS\uyeeb.txt : okpat (35328 bytes)
C:\WINDOWS\uyeeb.txt : rkegd (89362 bytes)
C:\WINDOWS\vlcno.log : qcwbx (90041 bytes)
C:\WINDOWS\vswfq.log : nqazaj (12311 bytes)
C:\WINDOWS\vvncg.log : auuwp (35328 bytes)
C:\WINDOWS\vvncg.log : vhoro (35310 bytes)
C:\WINDOWS\vwtce.txt : qcfen (89936 bytes)
C:\WINDOWS\vzbot.log : fqtmut (35310 bytes)
C:\WINDOWS\wolss.log : wxtke (35328 bytes)
C:\WINDOWS\wxkew.log : fmslbn (35310 bytes)
C:\WINDOWS\xalkc.log : eckbsd (13581 bytes)
C:\WINDOWS\xaoju.txt : tdxzm (35310 bytes)
C:\WINDOWS\xaoju.txt : ugfrd (35328 bytes)
C:\WINDOWS\xaoju.txt : vnmkv (89362 bytes)
C:\WINDOWS\xaoju.txt : wznhe (35328 bytes)
C:\WINDOWS\xhgzg.txt : ldnbq (89520 bytes)
C:\WINDOWS\xncqp.txt : lusvpd (66560 bytes)
C:\WINDOWS\xrjdy.dat : bjwnr (89936 bytes)
C:\WINDOWS\xrjdy.dat : wxbik (90041 bytes)
C:\WINDOWS\yccxy.txt : kfbpd (89936 bytes)
C:\WINDOWS\yccxy.txt : rjzlv (35310 bytes)
C:\WINDOWS\yclsa.log : jrktm (89362 bytes)
C:\WINDOWS\yclsa.log : pdvtpq (197755 bytes)
C:\WINDOWS\yjvef.txt : dlnxg (35328 bytes)
C:\WINDOWS\yjvef.txt : hegzra (3567 bytes)
C:\WINDOWS\yreqs.dat : lsvwp (89936 bytes)
C:\WINDOWS\yreqs.dat : vfqtm (35328 bytes)
C:\WINDOWS\yxglk.txt : hzetg (35328 bytes)
C:\WINDOWS\yxglk.txt : mkhgo (35310 bytes)
C:\WINDOWS\yxglk.txt : nheaa (35310 bytes)
C:\WINDOWS\yxjaw.txt : seyelk (66560 bytes)
C:\WINDOWS\yyuyp.log : swlpq (35310 bytes)
C:\WINDOWS\zmfnd.dat : itflz (89936 bytes)
C:\WINDOWS\zmfnd.dat : lwyps (89520 bytes)
C:\WINDOWS\zmfnd.dat : reonv (125074 bytes)
C:\WINDOWS\cmcep.log : didki (35328 bytes)
C:\WINDOWS\cmxei.txt : pmudu (35328 bytes)
C:\WINDOWS\cmxei.txt : vmosy (89936 bytes)
C:\WINDOWS\cmxei.txt : zemzbm (11151 bytes)
C:\WINDOWS\cnzre.txt : eelbh (89139 bytes)
C:\WINDOWS\cqmli.log : pxmft (89936 bytes)
C:\WINDOWS\creyn.dat : gnrku (35310 bytes)
C:\WINDOWS\creyn.dat : jcnat (35310 bytes)
C:\WINDOWS\creyn.dat : kypkyz (66560 bytes)
C:\WINDOWS\critj.dat : paglz (89936 bytes)
C:\WINDOWS\cxyot.txt : ogpud (35328 bytes)
C:\WINDOWS\dbjwf.txt : ortoe (89936 bytes)
C:\WINDOWS\dehpl.dat : duhgc (88882 bytes)
C:\WINDOWS\dfwrj.log : oskoj (89936 bytes)
C:\WINDOWS\dmnii.dat : svcjq (35310 bytes)
C:\WINDOWS\dsyvg.log : prxiw (89139 bytes)
C:\WINDOWS\dsyvg.log : tdvtm (89936 bytes)
C:\WINDOWS\dybvl.txt : lcmoc (89520 bytes)
C:\WINDOWS\eacjx.dat : aidew (89139 bytes)
C:\WINDOWS\eacjx.dat : heync (35328 bytes)
C:\WINDOWS\eacjx.dat : mshje (89362 bytes)
C:\WINDOWS\eacjx.dat : ppmdo (89362 bytes)
C:\WINDOWS\eacjx.dat : wzxrm (89139 bytes)
C:\WINDOWS\efcma.log : aqzol (89936 bytes)
C:\WINDOWS\ejber.log : zuyed (89362 bytes)
C:\WINDOWS\ekjob.txt : gdgmb (89936 bytes)
C:\WINDOWS\ekjob.txt : lqcls (89362 bytes)
C:\WINDOWS\ekjob.txt : nbgcg (88882 bytes)
C:\WINDOWS\EventSystem.log : xxjjp (89362 bytes)
C:\WINDOWS\exfys.log : eegmi (35310 bytes)
C:\WINDOWS\exfys.log : ssask (35310 bytes)
C:\WINDOWS\exfys.log : xsonu (89936 bytes)
C:\WINDOWS\fapmr.dat : fgqvy (89362 bytes)
C:\WINDOWS\fapmr.dat : gilrs (89936 bytes)
C:\WINDOWS\fapmr.dat : ngwys (89139 bytes)
C:\WINDOWS\fapmr.dat : yncxwi (197755 bytes)
C:\WINDOWS\fapmr.dat : ywytz (89362 bytes)
C:\WINDOWS\fjpwe.log : flmnx (89139 bytes)
C:\WINDOWS\foycf.txt : xdmtq (89362 bytes)
C:\WINDOWS\gdwvd.log : hclcp (89936 bytes)
C:\WINDOWS\giuvg.dat : riwas (89936 bytes)
C:\WINDOWS\glcif.dat : wbrtm (35310 bytes)
C:\WINDOWS\gthpm.log : ahtyr (89362 bytes)
C:\WINDOWS\gtllk.txt : ndnxy (89936 bytes)
C:\WINDOWS\gtllk.txt : oekwm (89362 bytes)
C:\WINDOWS\gtllk.txt : svonl (35310 bytes)
C:\WINDOWS\gtllk.txt : tkaoo (89936 bytes)
C:\WINDOWS\gtllk.txt : vagqj (89362 bytes)
C:\WINDOWS\gyema.dat : ckzso (35310 bytes)
C:\WINDOWS\gyema.dat : ooiko (89139 bytes)
C:\WINDOWS\gzsha.log : zeimw (89936 bytes)
C:\WINDOWS\hbkgo.txt : cpwyb (89362 bytes)
C:\WINDOWS\hbkgo.txt : facia (89936 bytes)
C:\WINDOWS\hcyhn.log : hicsf (35328 bytes)
C:\WINDOWS\hcyhn.log : hsibj (35328 bytes)
C:\WINDOWS\hcyhn.log : ibufd (35328 bytes)
C:\WINDOWS\hcyhn.log : kgitp (89362 bytes)
C:\WINDOWS\hcyhn.log : moylc (89362 bytes)
C:\WINDOWS\hcyhn.log : vsjsk (89936 bytes)
C:\WINDOWS\hcyhn.log : wevdn (35310 bytes)
C:\WINDOWS\hcyhn.log : yizqp (35328 bytes)
C:\WINDOWS\hkxzz.dat : mzlze (89936 bytes)
C:\WINDOWS\hndoo.log : jlagz (89362 bytes)
C:\WINDOWS\hqpcp.log : yfqhv (35310 bytes)
C:\WINDOWS\hqvcn.txt : kftes (35310 bytes)
C:\WINDOWS\hqvcn.txt : zplvc (35328 bytes)
C:\WINDOWS\hvkoc.txt : twgjd (35328 bytes)
C:\WINDOWS\hxuxv.log : icftw (35310 bytes)
C:\WINDOWS\hxuxv.log : svvgn (89936 bytes)
C:\WINDOWS\iis6.log : fxvdg (89692 bytes)
C:\WINDOWS\iis6.log : ivjle (89734 bytes)
C:\WINDOWS\iis6.log : jhgtw (90041 bytes)
C:\WINDOWS\iis6.log : sycok (89362 bytes)
C:\WINDOWS\iis6.log : unkocx (197754 bytes)
C:\WINDOWS\iiztm.dat : ugvug (89936 bytes)
C:\WINDOWS\imsins.log : jhmjw (89936 bytes)
C:\WINDOWS\imsins.log : pedis (89755 bytes)
C:\WINDOWS\imwrb.dat : ebfdp (89139 bytes)
C:\WINDOWS\imwrb.dat : ifuim (89139 bytes)
C:\WINDOWS\imwrb.dat : ydkgj (89936 bytes)
C:\WINDOWS\ionbs.txt : kvmal (35328 bytes)
C:\WINDOWS\ivaxs.log : dxyrc (35310 bytes)
C:\WINDOWS\ivaxs.log : uflwb (89362 bytes)
C:\WINDOWS\jdbzm.txt : wnihh (35328 bytes)
C:\WINDOWS\jdbzm.txt : yldtc (89139 bytes)
C:\WINDOWS\jiyzd.dat : guzfc (89936 bytes)
C:\WINDOWS\jiyzd.dat : uipts (35310 bytes)
C:\WINDOWS\jiyzd.dat : xtakz (89734 bytes)
C:\WINDOWS\jknxe.txt : kfmoo (88882 bytes)
C:\WINDOWS\jyitu.dat : hdabn (35328 bytes)
C:\WINDOWS\jyxwe.dat : bngdy (35328 bytes)
C:\WINDOWS\kdglv.log : dsard (89936 bytes)
C:\WINDOWS\kdglv.log : hobwv (89520 bytes)
C:\WINDOWS\kdglv.log : xunvv (35310 bytes)
C:\WINDOWS\kgvir.dat : teaky (89520 bytes)
C:\WINDOWS\kojyr.dat : rekec (89139 bytes)
C:\WINDOWS\kqgkp.dat : ncyng (89936 bytes)
C:\WINDOWS\kqgkp.dat : ulxgv (89520 bytes)
C:\WINDOWS\kqgkp.dat : zpjus (35328 bytes)
C:\WINDOWS\kqzmm.txt : eaorv (89520 bytes)
C:\WINDOWS\kqzmm.txt : elfpv (125074 bytes)
C:\WINDOWS\kqzmm.txt : jujtj (89139 bytes)
C:\WINDOWS\kqzmm.txt : qqczn (89139 bytes)
C:\WINDOWS\krpvm.log : qvdol (89362 bytes)
C:\WINDOWS\kucoq.txt : murnj (89936 bytes)
C:\WINDOWS\kucoq.txt : odqxn (89520 bytes)
C:\WINDOWS\kymyd.dat : dyddv (35328 bytes)
C:\WINDOWS\lozxp.txt : fnbzr (35328 bytes)
C:\WINDOWS\lswru.dat : argsk (35328 bytes)
C:\WINDOWS\lswru.dat : ffodd (89139 bytes)
C:\WINDOWS\lswru.dat : pcerj (89936 bytes)
C:\WINDOWS\lswru.dat : qywmic (197751 bytes)
C:\WINDOWS\lswru.dat : rhfdg (90041 bytes)
C:\WINDOWS\lswru.dat : zmzzq (88882 bytes)
C:\WINDOWS\LUINSTALL.LOG : xilav (89936 bytes)
C:\WINDOWS\mbqnx.txt : kzgql (89936 bytes)
C:\WINDOWS\mbqnx.txt : zdxgj (88882 bytes)
C:\WINDOWS\megog.txt : zfbij (35328 bytes)
C:\WINDOWS\mfnut.txt : tavqs (89936 bytes)
C:\WINDOWS\mgunm.dat : dseth (89139 bytes)
C:\WINDOWS\mjhqh.log : fjlmv (89936 bytes)
C:\WINDOWS\mjhqh.log : geybug (66560 bytes)
C:\WINDOWS\mjhqh.log : qslev (89362 bytes)
C:\WINDOWS\mkpqb.txt : axgtp (35310 bytes)
C:\WINDOWS\mkpqb.txt : ieivy (125074 bytes)
C:\WINDOWS\mkpqb.txt : lmnzc (89936 bytes)
C:\WINDOWS\mkpqb.txt : myjsa (89936 bytes)
C:\WINDOWS\mkpqb.txt : unmlg (35328 bytes)
C:\WINDOWS\mmhnp.txt : vaukf (89470 bytes)
C:\WINDOWS\mnccg.log : mkbbw (35328 bytes)
C:\WINDOWS\mozver.dat : ompme (35328 bytes)
C:\WINDOWS\mozver.dat : tncdw (89337 bytes)
C:\WINDOWS\mozver.dat : tobdt (89520 bytes)
C:\WINDOWS\mpvtu.log : aniya (89139 bytes)
C:\WINDOWS\mpvtu.log : bzwou (89362 bytes)
C:\WINDOWS\mpvtu.log : msvqb (90041 bytes)
C:\WINDOWS\mpvtu.log : qlows (35310 bytes)
C:\WINDOWS\mpvtu.log : wnqsy (35310 bytes)
C:\WINDOWS\MSGSOCM.LOG : aerqj (89139 bytes)
C:\WINDOWS\MSGSOCM.LOG : bwghb (89734 bytes)
C:\WINDOWS\MSGSOCM.LOG : kjbpj (35328 bytes)
C:\WINDOWS\MSGSOCM.LOG : ptzkj (35328 bytes)
C:\WINDOWS\MSGSOCM.LOG : uggcb (35310 bytes)
C:\WINDOWS\nlzxs.txt : ieppo (90041 bytes)
C:\WINDOWS\nocba.txt : eqmwq (35328 bytes)
C:\WINDOWS\nocba.txt : zqvzb (89936 bytes)
C:\WINDOWS\nocyl.txt : xmyay (35328 bytes)
C:\WINDOWS\nruna.txt : pzelz (35310 bytes)
C:\WINDOWS\ntbtlog.txt : ehdwq (35328 bytes)
C:\WINDOWS\ntbtlog.txt : qhrva (35328 bytes)
C:\WINDOWS\ntbtlog.txt : tgtak (35328 bytes)
C:\WINDOWS\ntdtcsetup.log : jpepr (35328 bytes)
C:\WINDOWS\ntdtcsetup.log : peiis (35310 bytes)
C:\WINDOWS\ntdtcsetup.log : uxels (89755 bytes)
C:\WINDOWS\nyzcf.txt : xjper (89362 bytes)
C:\WINDOWS\n_jvwaia.dat : tflov (35310 bytes)
C:\WINDOWS\n_trgsqu.txt : vjixr (89139 bytes)
C:\WINDOWS\ocgen.log : tbtrd (89362 bytes)
C:\WINDOWS\ocgen.log : uffww (89936 bytes)
C:\WINDOWS\ocgen.log : ystov (89936 bytes)
C:\WINDOWS\odpls.txt : yctqn (35328 bytes)
C:\WINDOWS\oedqd.log : cyqwt (89936 bytes)
C:\WINDOWS\oedqd.log : pxfne (89139 bytes)
C:\WINDOWS\oflen.log : fgqps (35310 bytes)
C:\WINDOWS\oflen.log : qjhdk (89520 bytes)
C:\WINDOWS\oiqeq.log : jtegs (35310 bytes)
C:\WINDOWS\olswu.log : kpzxf (89337 bytes)
C:\WINDOWS\olytk.dat : dgxsl (89362 bytes)
C:\WINDOWS\olytk.dat : iulwo (89139 bytes)
C:\WINDOWS\OOBEACT.LOG : ayrxa (35310 bytes)
C:\WINDOWS\OOBEACT.LOG : gkmov (89362 bytes)
C:\WINDOWS\OOBEACT.LOG : ppmrf (89936 bytes)
C:\WINDOWS\oooka.dat : mpsob (35328 bytes)
C:\WINDOWS\opaql.txt : bkkog (35328 bytes)
C:\WINDOWS\opaql.txt : nathq (35310 bytes)
C:\WINDOWS\orun32.ini : fhviw (89936 bytes)
C:\WINDOWS\orun32.ini : lskin (89139 bytes)
C:\WINDOWS\orun32.ini : zjnai (89362 bytes)
C:\WINDOWS\orun32.isu : qguxk (89139 bytes)
C:\WINDOWS\orun32.isu : tzbld (89139 bytes)
C:\WINDOWS\pbekd.dat : topok (35310 bytes)
C:\WINDOWS\pbsnn.dat : dtwgxy (13581 bytes)
C:\WINDOWS\pbsnn.dat : gvswnv (13581 bytes)


And ALL the entries with 0 bytes!

Close ALL open windows except for HiJackThis and hit REMOVE.

Reboot and post a fresh NORMAL HJT log.

- Rawe :tazz:

Edited by Rawe, 27 August 2005 - 01:14 AM.

  • 0

#19
belle88

belle88

    Member

  • Topic Starter
  • Member
  • PipPip
  • 35 posts
It is hit or miss with my internet. I have been trying IE and Mozilla but it is a Virtual memory issue ( I Think). I have been trying to get back on and do those erases above but I cannot seem to clean enough space to do it.

Any ideas on how to get me loaded on the internet for about 20 minutes? I will keep trying and run ADS Spy again when it lets me but in the mean time, if you have anything that can help me get through the initial phase it will be greatly appreciated.

Nick
  • 0

#20
Rawe

Rawe

    Visiting Staff

  • Member
  • PipPipPipPipPipPipPip
  • 4,746 posts
You can print the fix out and do it offline. You don't need online connection for it.. :tazz:

You can also do it in Safe Mode.. (Not sure about that though.)
  • 0

#21
belle88

belle88

    Member

  • Topic Starter
  • Member
  • PipPip
  • 35 posts
OK, I was able to get on my computer this morning through mozilla. I ran the scan and erased all but 28 of the files. These were not located on the last scan.

I ran another regular HiJack This scan and have posted it here. It looks like some of the stuff is gone but as soon as I logged back on I had spysweeper pop up and it immediatly sadi there was spyware and that it was CWS.

Hi Jack this says this now -

Logfile of HijackThis v1.99.1
Scan saved at 2:21:52 PM, on 8/30/2005
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe
C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe
C:\WINDOWS\system32\LEXBCES.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\LEXPPS.EXE
C:\PROGRA~1\COMMON~1\AOL\ACS\acsd.exe
C:\WINDOWS\system32\drivers\dcfssvc.exe
C:\Program Files\ewido\security suite\ewidoctrl.exe
C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe
C:\Program Files\Common Files\Symantec Shared\Security Center\SymWSC.exe
C:\WINDOWS\system32\hkcmd.exe
C:\WINDOWS\System32\DSentry.exe
C:\Program Files\Dell\Media Experience\PCMService.exe
C:\WINDOWS\system32\dla\tfswctrl.exe
C:\Program Files\Real\RealPlayer\RealPlay.exe
C:\Program Files\MUSICMATCH\MUSICMATCH Jukebox\mm_tray.exe
C:\Program Files\Common Files\Symantec Shared\ccApp.exe
C:\WINDOWS\system32\msut.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Dell Support\DSAgnt.exe
C:\Program Files\Digital Line Detect\DLG.exe
C:\Program Files\Norton AntiVirus\navapsvc.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Documents and Settings\Nick H\Desktop\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.dell4me.com/myway
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = res://C:\DOCUME~1\NICKH~1\LOCALS~1\Temp\se.dll/sp.html
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = about:blank
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = about:blank
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = res://C:\WINDOWS\system32\ipcvc.dll/sp.html#37049
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = res://C:\DOCUME~1\NICKH~1\LOCALS~1\Temp\se.dll/sp.html
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = about:blank
R1 - HKCU\Software\Microsoft\Internet Explorer\Search,SearchAssistant = about:blank
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = about:blank
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://red.clientapp...//www.yahoo.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,HomeOldSP = about:blank
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,HomeOldSP = about:blank
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://www.dell4me.com/myway
R3 - Default URLSearchHook is missing
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx (file missing)
O2 - BHO: Class - {24D78427-B916-4EF1-6574-F9CC427F1DFC} - C:\WINDOWS\iepd32.dll
O2 - BHO: Class - {2DC1CC8E-DA42-4D83-4911-CAF35207C15A} - C:\WINDOWS\ipcr32.dll
O2 - BHO: Class - {2E2EB63E-794C-5397-2A8A-6BBD49C235C0} - C:\WINDOWS\appbi32.dll
O2 - BHO: Class - {366B2B49-46A5-CC46-2F98-6DD344CC10DF} - C:\WINDOWS\iezp.dll
O2 - BHO: Class - {7DD77B7C-9B84-72EE-BD55-4F770792CF55} - C:\WINDOWS\sdkbt32.dll
O2 - BHO: Class - {9B6F61D4-C995-3451-2DBF-E3A22ACA0DC7} - C:\WINDOWS\system32\d3uy32.dll
O2 - BHO: Class - {A01140FC-118E-38DC-4ABE-48DD27F0FF8F} - C:\WINDOWS\ietp.dll
O2 - BHO: Class - {B56233F4-AAE8-569E-8370-CAB92BF74D19} - C:\WINDOWS\system32\msxa.dll
O2 - BHO: NAV Helper - {BDF3E430-B101-42AD-A544-FADC6B084872} - C:\Program Files\Norton AntiVirus\NavShExt.dll (file missing)
O2 - BHO: Class - {CE0313BB-3015-D4A8-1854-F6B277DB070A} - C:\WINDOWS\iehq.dll
O2 - BHO: (no name) - {CFD6F93D-ADD0-436F-A44C-F12832487E1E} - C:\WINDOWS\system32\elancaa.dll (file missing)
O2 - BHO: Class - {DB99FC8C-8A73-A988-8229-764512FCAD1B} - C:\WINDOWS\system32\netej32.dll
O2 - BHO: Class - {E8A3A3D2-81BE-F4E1-1930-22B1DD3D9C09} - C:\WINDOWS\d3kq32.dll
O2 - BHO: Class - {FC5DFBE0-2F8E-0D50-0CD8-B9049C45156A} - C:\WINDOWS\javayd.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\ycomp5_6_0_0.dll
O3 - Toolbar: Norton AntiVirus - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - C:\Program Files\Norton AntiVirus\NavShExt.dll (file missing)
O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [DVDSentry] C:\WINDOWS\System32\DSentry.exe
O4 - HKLM\..\Run: [PCMService] "C:\Program Files\Dell\Media Experience\PCMService.exe"
O4 - HKLM\..\Run: [dla] C:\WINDOWS\system32\dla\tfswctrl.exe
O4 - HKLM\..\Run: [UpdateManager] "C:\Program Files\Common Files\Sonic\Update Manager\sgtray.exe" /r
O4 - HKLM\..\Run: [RealTray] C:\Program Files\Real\RealPlayer\RealPlay.exe SYSTEMBOOTHIDEPLAYER
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [mmtask] c:\Program Files\MusicMatch\MusicMatch Jukebox\mmtask.exe
O4 - HKLM\..\Run: [MMTray] C:\Program Files\MUSICMATCH\MUSICMATCH Jukebox\mm_tray.exe
O4 - HKLM\..\Run: [Dell AIO Printer A920] "C:\Program Files\Dell AIO Printer A920\dlbkbmgr.exe"
O4 - HKLM\..\Run: [BearShare] "C:\Program Files\BearShare\BearShare.exe" /pause
O4 - HKLM\..\Run: [Logitech Utility] Logi_MwX.Exe
O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Common Files\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [NAV CfgWiz] C:\Program Files\Common Files\Symantec Shared\CfgWiz.exe /GUID NAV /CMDLINE "REBOOT"
O4 - HKLM\..\Run: [Error Nuker] C:\Program Files\Error Nuker\bin\ErrorNuker.exe autostart
O4 - HKLM\..\Run: [Symantec NetDriver Monitor] C:\PROGRA~1\SYMNET~1\SNDMon.exe /Consumer
O4 - HKLM\..\Run: [msbb.exe] C:\WINDOWS\system32\msbb.exe
O4 - HKLM\..\Run: [msut.exe] C:\WINDOWS\system32\msut.exe
O4 - HKLM\..\Run: [mfcue.exe] C:\WINDOWS\system32\mfcue.exe
O4 - HKLM\..\Run: [sysdk.exe] C:\WINDOWS\system32\sysdk.exe
O4 - HKLM\..\Run: [sdkrf32.exe] C:\WINDOWS\system32\sdkrf32.exe
O4 - HKLM\..\RunOnce: [mstx32.exe] C:\WINDOWS\system32\mstx32.exe
O4 - HKLM\..\RunOnce: [mscn.exe] C:\WINDOWS\mscn.exe
O4 - HKLM\..\RunOnce: [javagw32.exe] C:\WINDOWS\system32\javagw32.exe
O4 - HKLM\..\RunOnce: [netnr.exe] C:\WINDOWS\netnr.exe
O4 - HKLM\..\RunOnce: [appyi.exe] C:\WINDOWS\appyi.exe
O4 - HKLM\..\RunOnce: [ipcs.exe] C:\WINDOWS\system32\ipcs.exe
O4 - HKLM\..\RunOnce: [ipci.exe] C:\WINDOWS\system32\ipci.exe
O4 - HKLM\..\RunOnce: [mfcju32.exe] C:\WINDOWS\mfcju32.exe
O4 - HKLM\..\RunOnce: [atlnj.exe] C:\WINDOWS\atlnj.exe
O4 - HKLM\..\RunOnce: [crgi.exe] C:\WINDOWS\system32\crgi.exe
O4 - HKLM\..\RunOnce: [sdkem.exe] C:\WINDOWS\sdkem.exe
O4 - HKLM\..\RunOnce: [crgd32.exe] C:\WINDOWS\system32\crgd32.exe
O4 - HKLM\..\RunOnce: [d3jm.exe] C:\WINDOWS\system32\d3jm.exe
O4 - HKLM\..\RunOnce: [addww.exe] C:\WINDOWS\system32\addww.exe
O4 - HKLM\..\RunOnce: [apipv.exe] C:\WINDOWS\system32\apipv.exe
O4 - HKLM\..\RunOnce: [ievx.exe] C:\WINDOWS\ievx.exe
O4 - HKLM\..\RunOnce: [mshn.exe] C:\WINDOWS\system32\mshn.exe
O4 - HKLM\..\RunOnce: [applo.exe] C:\WINDOWS\system32\applo.exe
O4 - HKLM\..\RunOnce: [ntpw32.exe] C:\WINDOWS\ntpw32.exe
O4 - HKLM\..\RunOnce: [mfcgj32.exe] C:\WINDOWS\mfcgj32.exe
O4 - HKLM\..\RunOnce: [winex32.exe] C:\WINDOWS\system32\winex32.exe
O4 - HKLM\..\RunOnce: [crhz32.exe] C:\WINDOWS\crhz32.exe
O4 - HKLM\..\RunOnce: [sdkzy32.exe] C:\WINDOWS\sdkzy32.exe
O4 - HKLM\..\RunOnce: [atlwm.exe] C:\WINDOWS\system32\atlwm.exe
O4 - HKLM\..\RunOnce: [d3ch.exe] C:\WINDOWS\d3ch.exe
O4 - HKLM\..\RunOnce: [atlln32.exe] C:\WINDOWS\atlln32.exe
O4 - HKLM\..\RunOnce: [sdkyd32.exe] C:\WINDOWS\sdkyd32.exe
O4 - HKLM\..\RunOnce: [mfcln.exe] C:\WINDOWS\mfcln.exe
O4 - HKLM\..\RunOnce: [sdkky.exe] C:\WINDOWS\sdkky.exe
O4 - HKLM\..\RunOnce: [crkm.exe] C:\WINDOWS\system32\crkm.exe
O4 - HKLM\..\RunOnce: [javatk.exe] C:\WINDOWS\javatk.exe
O4 - HKLM\..\RunOnce: [sysyu.exe] C:\WINDOWS\sysyu.exe
O4 - HKLM\..\RunOnce: [d3fv32.exe] C:\WINDOWS\system32\d3fv32.exe
O4 - HKLM\..\RunOnce: [sdkpt.exe] C:\WINDOWS\system32\sdkpt.exe
O4 - HKLM\..\RunOnce: [mfcxn32.exe] C:\WINDOWS\system32\mfcxn32.exe
O4 - HKLM\..\RunOnce: [crvo.exe] C:\WINDOWS\crvo.exe
O4 - HKLM\..\RunOnce: [ieio32.exe] C:\WINDOWS\system32\ieio32.exe
O4 - HKLM\..\RunOnce: [d3mp.exe] C:\WINDOWS\system32\d3mp.exe
O4 - HKLM\..\RunOnce: [appck.exe] C:\WINDOWS\system32\appck.exe
O4 - HKLM\..\RunOnce: [crqf.exe] C:\WINDOWS\crqf.exe
O4 - HKLM\..\RunOnce: [javauc.exe] C:\WINDOWS\javauc.exe
O4 - HKLM\..\RunOnce: [ieye.exe] C:\WINDOWS\system32\ieye.exe
O4 - HKLM\..\RunOnce: [addhu32.exe] C:\WINDOWS\system32\addhu32.exe
O4 - HKLM\..\RunOnce: [appbr.exe] C:\WINDOWS\system32\appbr.exe
O4 - HKLM\..\RunOnce: [sdkwr32.exe] C:\WINDOWS\system32\sdkwr32.exe
O4 - HKLM\..\RunOnce: [mfcht32.exe] C:\WINDOWS\mfcht32.exe
O4 - HKLM\..\RunOnce: [javacd.exe] C:\WINDOWS\javacd.exe
O4 - HKLM\..\RunOnce: [syshf.exe] C:\WINDOWS\syshf.exe
O4 - HKLM\..\RunOnce: [msqd.exe] C:\WINDOWS\system32\msqd.exe
O4 - HKLM\..\RunOnce: [atluv32.exe] C:\WINDOWS\system32\atluv32.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [SpySweeper] C:\Program Files\Webroot\Spy Sweeper\SpySweeper.exe /0
O4 - HKCU\..\Run: [DellSupport] "C:\Program Files\Dell Support\DSAgnt.exe" /startup
O4 - Global Startup: America Online 9.0 Tray Icon.lnk = C:\Program Files\America Online 9.0\aoltray.exe
O4 - Global Startup: Digital Line Detect.lnk = ?
O4 - Global Startup: Kodak EasyShare software.lnk = C:\Program Files\KODAK\Kodak EasyShare software\bin\EasyShare.exe
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~3\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\WINDOWS\System32\msjava.dll (file missing)
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\WINDOWS\System32\msjava.dll (file missing)
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\OFFICE11\REFIEBAR.DLL
O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\System32\Shdocvw.dll
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O12 - Plugin for .spop: C:\Program Files\Internet Explorer\Plugins\NPDocBox.dll
O16 - DPF: {30528230-99F7-4BB4-88D8-FA1D4F56A2AB} (YInstStarter Class) - http://us.dl1.yimg.c...nst20040510.cab
O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) - http://www.pandasoft...free/asinst.cab
O20 - Winlogon Notify: igfxcui - C:\WINDOWS\SYSTEM32\igfxsrvc.dll
O23 - Service: Workstation NetLogon Service ( 11F#`I) - Unknown owner - C:\WINDOWS\ielg.exe" /s (file missing)
O23 - Service: AOL Connectivity Service (AOL ACS) - America Online, Inc. - C:\PROGRA~1\COMMON~1\AOL\ACS\acsd.exe
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe
O23 - Service: Symantec Password Validation (ccPwdSvc) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccPwdSvc.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe
O23 - Service: Dcfssvc - Eastman Kodak Company - C:\WINDOWS\system32\drivers\dcfssvc.exe
O23 - Service: ewido security suite control - ewido networks - C:\Program Files\ewido\security suite\ewidoctrl.exe
O23 - Service: LexBce Server (LexBceS) - Lexmark International, Inc. - C:\WINDOWS\system32\LEXBCES.EXE
O23 - Service: Norton AntiVirus Auto Protect Service (navapsvc) - Symantec Corporation - C:\Program Files\Norton AntiVirus\navapsvc.exe
O23 - Service: Intel NCS NetService (NetSvc) - Intel® Corporation - C:\Program Files\Intel\NCS\Sync\NetSvc.exe
O23 - Service: SAVScan - Symantec Corporation - C:\Program Files\Norton AntiVirus\SAVScan.exe
O23 - Service: ScriptBlocking Service (SBService) - Symantec Corporation - C:\PROGRA~1\COMMON~1\SYMANT~1\SCRIPT~1\SBServ.exe
O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\SNDSrvc.exe
O23 - Service: Symantec Core LC - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe
O23 - Service: SymWMI Service (SymWSC) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\Security Center\SymWSC.exe
O23 - Service: WAN Miniport (ATW) Service (WANMiniportService) - Unknown owner - C:\WINDOWS\wanmpsvc.exe (file missing)




Any Closer????? :tazz:

Have a good day -

Nick
  • 0

#22
Rawe

Rawe

    Visiting Staff

  • Member
  • PipPipPipPipPipPipPip
  • 4,746 posts
I think this might be doing it.

Let's fix the bad service now, then it'll be easier..


Click Start => Run => and type in;

services.msc

Click "OK".

In the services window find service; Workstation NetLogon Service

Right-click and choose "Properties". On the "General" tab under "Service Status" click the "Stop" button to stop the service. Beside "Startup Type" in the dropdown menu select "Disabled". Click Apply then "Ok". Exit the Services utility.
  • Open HiJackThis
  • Click on the configure button on the bottom right
  • Click on the tab "Misc Tools"
  • Click on "delete an NT service"
  • Copy and paste this in: 11F#`I
    It is IMPORTANT that there is a space in front of the FIRST number 1 or it WON'T work!
  • Click "ok", then reboot

After the reboot, locate the following file and delete if present:

C:\WINDOWS\ielg.exe

Empty recycle bin. Then post a fresh HiJackThis log. :tazz:
  • 0

#23
belle88

belle88

    Member

  • Topic Starter
  • Member
  • PipPip
  • 35 posts
Every Time I go into HiJack This and try to delete this it says that is enabled and or running. It says I must disable it first. I went to the only thing that says workstation and hit deactivate and also hit stop but once I try to hit HiJack This again it says the same thing.

My computer is working better but only through Mozilla. I still cannot get on to IE.

Any ideas on how to complete the step above. It looks a little better so I have found a new source of hope.

Thanks

Nick

Hi Jack This last log

Logfile of HijackThis v1.99.1
Scan saved at 10:43:14 AM, on 8/31/2005
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe
C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe
C:\WINDOWS\system32\LEXBCES.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\LEXPPS.EXE
C:\PROGRA~1\COMMON~1\AOL\ACS\acsd.exe
C:\WINDOWS\system32\drivers\dcfssvc.exe
C:\Program Files\ewido\security suite\ewidoctrl.exe
C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe
C:\Program Files\Common Files\Symantec Shared\Security Center\SymWSC.exe
C:\WINDOWS\system32\hkcmd.exe
C:\WINDOWS\System32\DSentry.exe
C:\Program Files\Dell\Media Experience\PCMService.exe
C:\WINDOWS\system32\dla\tfswctrl.exe
C:\Program Files\Real\RealPlayer\RealPlay.exe
C:\Program Files\MUSICMATCH\MUSICMATCH Jukebox\mm_tray.exe
C:\Program Files\Common Files\Symantec Shared\ccApp.exe
C:\WINDOWS\system32\mfcue.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Webroot\Spy Sweeper\SpySweeper.exe
C:\Program Files\Dell Support\DSAgnt.exe
C:\Program Files\Digital Line Detect\DLG.exe
C:\Program Files\Norton AntiVirus\navapsvc.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Documents and Settings\Nick H\Desktop\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.dell4me.com/myway
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = res://C:\WINDOWS\system32\ipcvc.dll/sp.html#37049
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = res://C:\WINDOWS\system32\ipcvc.dll/sp.html#37049
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = about:blank
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = res://C:\WINDOWS\system32\ipcvc.dll/sp.html#37049
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = res://C:\WINDOWS\system32\ipcvc.dll/sp.html#37049
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = res://C:\WINDOWS\system32\ipcvc.dll/sp.html#37049
R1 - HKCU\Software\Microsoft\Internet Explorer\Search,SearchAssistant = res://C:\WINDOWS\system32\ipcvc.dll/sp.html#37049
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = res://C:\WINDOWS\system32\ipcvc.dll/sp.html#37049
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://red.clientapp...//www.yahoo.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,HomeOldSP = about:blank
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,HomeOldSP = about:blank
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://www.dell4me.com/myway
R3 - Default URLSearchHook is missing
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx (file missing)
O2 - BHO: Class - {24D78427-B916-4EF1-6574-F9CC427F1DFC} - C:\WINDOWS\iepd32.dll
O2 - BHO: Class - {2DC1CC8E-DA42-4D83-4911-CAF35207C15A} - C:\WINDOWS\ipcr32.dll
O2 - BHO: Class - {2E2EB63E-794C-5397-2A8A-6BBD49C235C0} - C:\WINDOWS\appbi32.dll
O2 - BHO: Class - {366B2B49-46A5-CC46-2F98-6DD344CC10DF} - C:\WINDOWS\iezp.dll
O2 - BHO: Class - {7DD77B7C-9B84-72EE-BD55-4F770792CF55} - C:\WINDOWS\sdkbt32.dll
O2 - BHO: Class - {9B6F61D4-C995-3451-2DBF-E3A22ACA0DC7} - C:\WINDOWS\system32\d3uy32.dll
O2 - BHO: Class - {A01140FC-118E-38DC-4ABE-48DD27F0FF8F} - C:\WINDOWS\ietp.dll
O2 - BHO: Class - {B56233F4-AAE8-569E-8370-CAB92BF74D19} - C:\WINDOWS\system32\msxa.dll
O2 - BHO: NAV Helper - {BDF3E430-B101-42AD-A544-FADC6B084872} - C:\Program Files\Norton AntiVirus\NavShExt.dll (file missing)
O2 - BHO: Class - {CE0313BB-3015-D4A8-1854-F6B277DB070A} - C:\WINDOWS\iehq.dll
O2 - BHO: (no name) - {CFD6F93D-ADD0-436F-A44C-F12832487E1E} - C:\WINDOWS\system32\elancaa.dll (file missing)
O2 - BHO: Class - {DB99FC8C-8A73-A988-8229-764512FCAD1B} - C:\WINDOWS\system32\netej32.dll
O2 - BHO: Class - {E8A3A3D2-81BE-F4E1-1930-22B1DD3D9C09} - C:\WINDOWS\d3kq32.dll
O2 - BHO: Class - {FC5DFBE0-2F8E-0D50-0CD8-B9049C45156A} - C:\WINDOWS\javayd.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\ycomp5_6_0_0.dll
O3 - Toolbar: Norton AntiVirus - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - C:\Program Files\Norton AntiVirus\NavShExt.dll (file missing)
O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [DVDSentry] C:\WINDOWS\System32\DSentry.exe
O4 - HKLM\..\Run: [PCMService] "C:\Program Files\Dell\Media Experience\PCMService.exe"
O4 - HKLM\..\Run: [dla] C:\WINDOWS\system32\dla\tfswctrl.exe
O4 - HKLM\..\Run: [UpdateManager] "C:\Program Files\Common Files\Sonic\Update Manager\sgtray.exe" /r
O4 - HKLM\..\Run: [RealTray] C:\Program Files\Real\RealPlayer\RealPlay.exe SYSTEMBOOTHIDEPLAYER
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [mmtask] c:\Program Files\MusicMatch\MusicMatch Jukebox\mmtask.exe
O4 - HKLM\..\Run: [MMTray] C:\Program Files\MUSICMATCH\MUSICMATCH Jukebox\mm_tray.exe
O4 - HKLM\..\Run: [Dell AIO Printer A920] "C:\Program Files\Dell AIO Printer A920\dlbkbmgr.exe"
O4 - HKLM\..\Run: [BearShare] "C:\Program Files\BearShare\BearShare.exe" /pause
O4 - HKLM\..\Run: [Logitech Utility] Logi_MwX.Exe
O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Common Files\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [NAV CfgWiz] C:\Program Files\Common Files\Symantec Shared\CfgWiz.exe /GUID NAV /CMDLINE "REBOOT"
O4 - HKLM\..\Run: [Error Nuker] C:\Program Files\Error Nuker\bin\ErrorNuker.exe autostart
O4 - HKLM\..\Run: [Symantec NetDriver Monitor] C:\PROGRA~1\SYMNET~1\SNDMon.exe /Consumer
O4 - HKLM\..\Run: [msbb.exe] C:\WINDOWS\system32\msbb.exe
O4 - HKLM\..\Run: [msut.exe] C:\WINDOWS\system32\msut.exe
O4 - HKLM\..\Run: [mfcue.exe] C:\WINDOWS\system32\mfcue.exe
O4 - HKLM\..\Run: [sysdk.exe] C:\WINDOWS\system32\sysdk.exe
O4 - HKLM\..\Run: [sdkrf32.exe] C:\WINDOWS\system32\sdkrf32.exe
O4 - HKLM\..\RunOnce: [mstx32.exe] C:\WINDOWS\system32\mstx32.exe
O4 - HKLM\..\RunOnce: [mfchj32.exe] C:\WINDOWS\system32\mfchj32.exe
O4 - HKLM\..\RunOnce: [apisl.exe] C:\WINDOWS\system32\apisl.exe
O4 - HKLM\..\RunOnce: [sysmm32.exe] C:\WINDOWS\sysmm32.exe
O4 - HKLM\..\RunOnce: [crre32.exe] C:\WINDOWS\crre32.exe
O4 - HKLM\..\RunOnce: [ieyz32.exe] C:\WINDOWS\ieyz32.exe
O4 - HKLM\..\RunOnce: [netjb32.exe] C:\WINDOWS\netjb32.exe
O4 - HKLM\..\RunOnce: [sdkqv.exe] C:\WINDOWS\system32\sdkqv.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [SpySweeper] C:\Program Files\Webroot\Spy Sweeper\SpySweeper.exe /0
O4 - HKCU\..\Run: [DellSupport] "C:\Program Files\Dell Support\DSAgnt.exe" /startup
O4 - Global Startup: America Online 9.0 Tray Icon.lnk = C:\Program Files\America Online 9.0\aoltray.exe
O4 - Global Startup: Digital Line Detect.lnk = ?
O4 - Global Startup: Kodak EasyShare software.lnk = C:\Program Files\KODAK\Kodak EasyShare software\bin\EasyShare.exe
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~3\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\WINDOWS\System32\msjava.dll (file missing)
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\WINDOWS\System32\msjava.dll (file missing)
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\OFFICE11\REFIEBAR.DLL
O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\System32\Shdocvw.dll
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O12 - Plugin for .spop: C:\Program Files\Internet Explorer\Plugins\NPDocBox.dll
O16 - DPF: {30528230-99F7-4BB4-88D8-FA1D4F56A2AB} (YInstStarter Class) - http://us.dl1.yimg.c...nst20040510.cab
O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) - http://www.pandasoft...free/asinst.cab
O20 - Winlogon Notify: igfxcui - C:\WINDOWS\SYSTEM32\igfxsrvc.dll
O23 - Service: Network Security Service ( 11F#`I) - Unknown owner - C:\WINDOWS\system32\mstx32.exe" /s (file missing)
O23 - Service: AOL Connectivity Service (AOL ACS) - America Online, Inc. - C:\PROGRA~1\COMMON~1\AOL\ACS\acsd.exe
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe
O23 - Service: Symantec Password Validation (ccPwdSvc) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccPwdSvc.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe
O23 - Service: Dcfssvc - Eastman Kodak Company - C:\WINDOWS\system32\drivers\dcfssvc.exe
O23 - Service: ewido security suite control - ewido networks - C:\Program Files\ewido\security suite\ewidoctrl.exe
O23 - Service: LexBce Server (LexBceS) - Lexmark International, Inc. - C:\WINDOWS\system32\LEXBCES.EXE
O23 - Service: Norton AntiVirus Auto Protect Service (navapsvc) - Symantec Corporation - C:\Program Files\Norton AntiVirus\navapsvc.exe
O23 - Service: Intel NCS NetService (NetSvc) - Intel® Corporation - C:\Program Files\Intel\NCS\Sync\NetSvc.exe
O23 - Service: SAVScan - Symantec Corporation - C:\Program Files\Norton AntiVirus\SAVScan.exe
O23 - Service: ScriptBlocking Service (SBService) - Symantec Corporation - C:\PROGRA~1\COMMON~1\SYMANT~1\SCRIPT~1\SBServ.exe
O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\SNDSrvc.exe
O23 - Service: Symantec Core LC - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe
O23 - Service: SymWMI Service (SymWSC) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\Security Center\SymWSC.exe
O23 - Service: WAN Miniport (ATW) Service (WANMiniportService) - Unknown owner - C:\WINDOWS\wanmpsvc.exe (file missing)
  • 0

#24
Rawe

Rawe

    Visiting Staff

  • Member
  • PipPipPipPipPipPipPip
  • 4,746 posts
Ok.. It changed names on us. This time you're looking for:

Network Security Service in the Services.msc window.. Then delete using the same instructions and delete this file once rebooted: C:\WINDOWS\system32\mstx32.exe. If you disabled some service (what was it?) can you enable it also since it seems it wasn't the right one :tazz:
  • 0

#25
belle88

belle88

    Member

  • Topic Starter
  • Member
  • PipPip
  • 35 posts
I disabled everything but did not need to hit stop. As soon as I hit disable it just went to stop. I then rebooted the workstation one I had previously disabled and moved on to rebooting.
When I got back on it was horiibly slow and kept saying program not responding. After 25 minutes I found mstx32.exe and tried to delete it. When I did this it said it was being used and could not be deleted.

Help!

School is starting in one more week and I really dont want to have to buy a new computer.


Nick
  • 0

Advertisements


#26
Rawe

Rawe

    Visiting Staff

  • Member
  • PipPipPipPipPipPipPip
  • 4,746 posts
Ok, can you post a fresh HiJackThis log. We'll get this sorted.. It's just a stubborn one.. :tazz:
  • 0

#27
belle88

belle88

    Member

  • Topic Starter
  • Member
  • PipPip
  • 35 posts
Hello this Friday!

I tried doing the fix again and it told me I was unable to erase mstx32.exe again.

I have ran off a new HiJack this log and posted here.

Let me know what you think.

HiJack This -

Logfile of HijackThis v1.99.1
Scan saved at 10:07:23 AM, on 9/2/2005
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe
C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe
C:\WINDOWS\system32\LEXBCES.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\LEXPPS.EXE
C:\PROGRA~1\COMMON~1\AOL\ACS\acsd.exe
C:\WINDOWS\system32\drivers\dcfssvc.exe
C:\Program Files\ewido\security suite\ewidoctrl.exe
C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe
C:\Program Files\Common Files\Symantec Shared\Security Center\SymWSC.exe
C:\WINDOWS\system32\hkcmd.exe
C:\WINDOWS\System32\DSentry.exe
C:\Program Files\Dell\Media Experience\PCMService.exe
C:\WINDOWS\system32\dla\tfswctrl.exe
C:\Program Files\Real\RealPlayer\RealPlay.exe
C:\Program Files\MUSICMATCH\MUSICMATCH Jukebox\mm_tray.exe
C:\Program Files\Common Files\Symantec Shared\ccApp.exe
C:\WINDOWS\system32\sysdk.exe
C:\WINDOWS\system32\rundll32.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Dell Support\DSAgnt.exe
C:\Program Files\Digital Line Detect\DLG.exe
C:\Program Files\Norton AntiVirus\navapsvc.exe
C:\Program Files\Messenger\msmsgs.exe
C:\WINDOWS\d3bk32.exe
C:\Documents and Settings\Nick H\Desktop\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.dell4me.com/myway
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = res://C:\WINDOWS\kivig.dll/sp.html#37049
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = res://C:\WINDOWS\kivig.dll/sp.html#37049
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = about:blank
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = res://C:\WINDOWS\kivig.dll/sp.html#37049
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = res://C:\WINDOWS\kivig.dll/sp.html#37049
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = res://C:\WINDOWS\kivig.dll/sp.html#37049
R1 - HKCU\Software\Microsoft\Internet Explorer\Search,SearchAssistant = res://C:\WINDOWS\kivig.dll/sp.html#37049
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = res://C:\WINDOWS\kivig.dll/sp.html#37049
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://red.clientapp...//www.yahoo.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,HomeOldSP = about:blank
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://www.dell4me.com/myway
R3 - Default URLSearchHook is missing
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx (file missing)
O2 - BHO: Class - {AA1795A0-6BE1-73AF-E66B-ED071FF52D80} - C:\WINDOWS\msuf32.dll
O2 - BHO: NAV Helper - {BDF3E430-B101-42AD-A544-FADC6B084872} - C:\Program Files\Norton AntiVirus\NavShExt.dll (file missing)
O2 - BHO: Class - {BE14A955-DD6C-A165-6A81-393FF536A2E2} - C:\WINDOWS\system32\ntbj.dll
O2 - BHO: Class - {D4AC8A5F-A479-B347-A77F-9FA40E14594C} - C:\WINDOWS\system32\addug32.dll
O2 - BHO: Class - {FC5DFBE0-2F8E-0D50-0CD8-B9049C45156A} - C:\WINDOWS\javayd.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\ycomp5_6_0_0.dll
O3 - Toolbar: Norton AntiVirus - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - C:\Program Files\Norton AntiVirus\NavShExt.dll (file missing)
O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [DVDSentry] C:\WINDOWS\System32\DSentry.exe
O4 - HKLM\..\Run: [PCMService] "C:\Program Files\Dell\Media Experience\PCMService.exe"
O4 - HKLM\..\Run: [dla] C:\WINDOWS\system32\dla\tfswctrl.exe
O4 - HKLM\..\Run: [UpdateManager] "C:\Program Files\Common Files\Sonic\Update Manager\sgtray.exe" /r
O4 - HKLM\..\Run: [RealTray] C:\Program Files\Real\RealPlayer\RealPlay.exe SYSTEMBOOTHIDEPLAYER
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [mmtask] c:\Program Files\MusicMatch\MusicMatch Jukebox\mmtask.exe
O4 - HKLM\..\Run: [MMTray] C:\Program Files\MUSICMATCH\MUSICMATCH Jukebox\mm_tray.exe
O4 - HKLM\..\Run: [Dell AIO Printer A920] "C:\Program Files\Dell AIO Printer A920\dlbkbmgr.exe"
O4 - HKLM\..\Run: [BearShare] "C:\Program Files\BearShare\BearShare.exe" /pause
O4 - HKLM\..\Run: [Logitech Utility] Logi_MwX.Exe
O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Common Files\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [NAV CfgWiz] C:\Program Files\Common Files\Symantec Shared\CfgWiz.exe /GUID NAV /CMDLINE "REBOOT"
O4 - HKLM\..\Run: [Error Nuker] C:\Program Files\Error Nuker\bin\ErrorNuker.exe autostart
O4 - HKLM\..\Run: [Symantec NetDriver Monitor] C:\PROGRA~1\SYMNET~1\SNDMon.exe /Consumer
O4 - HKLM\..\Run: [msbb.exe] C:\WINDOWS\system32\msbb.exe
O4 - HKLM\..\Run: [msut.exe] C:\WINDOWS\system32\msut.exe
O4 - HKLM\..\Run: [mfcue.exe] C:\WINDOWS\system32\mfcue.exe
O4 - HKLM\..\Run: [sysdk.exe] C:\WINDOWS\system32\sysdk.exe
O4 - HKLM\..\Run: [sdkrf32.exe] C:\WINDOWS\system32\sdkrf32.exe
O4 - HKLM\..\Run: [sp] rundll32 C:\DOCUME~1\NICKH~1\LOCALS~1\Temp\se.dll,DllInstall
O4 - HKLM\..\RunOnce: [addut.exe] C:\WINDOWS\system32\addut.exe
O4 - HKLM\..\RunOnce: [mstx32.exe] C:\WINDOWS\system32\mstx32.exe
O4 - HKLM\..\RunOnce: [atljc.exe] C:\WINDOWS\atljc.exe
O4 - HKLM\..\RunOnce: [sysar32.exe] C:\WINDOWS\sysar32.exe
O4 - HKLM\..\RunOnce: [syskh.exe] C:\WINDOWS\syskh.exe
O4 - HKLM\..\RunOnce: [msuq.exe] C:\WINDOWS\msuq.exe
O4 - HKLM\..\RunOnce: [sdkqb.exe] C:\WINDOWS\sdkqb.exe
O4 - HKLM\..\RunOnce: [ipzh.exe] C:\WINDOWS\system32\ipzh.exe
O4 - HKLM\..\RunOnce: [d3bk32.exe] C:\WINDOWS\d3bk32.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [SpySweeper] C:\Program Files\Webroot\Spy Sweeper\SpySweeper.exe /0
O4 - HKCU\..\Run: [DellSupport] "C:\Program Files\Dell Support\DSAgnt.exe" /startup
O4 - Global Startup: America Online 9.0 Tray Icon.lnk = C:\Program Files\America Online 9.0\aoltray.exe
O4 - Global Startup: Digital Line Detect.lnk = ?
O4 - Global Startup: Kodak EasyShare software.lnk = C:\Program Files\KODAK\Kodak EasyShare software\bin\EasyShare.exe
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~3\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\WINDOWS\System32\msjava.dll (file missing)
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\WINDOWS\System32\msjava.dll (file missing)
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\OFFICE11\REFIEBAR.DLL
O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\System32\Shdocvw.dll
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O12 - Plugin for .spop: C:\Program Files\Internet Explorer\Plugins\NPDocBox.dll
O16 - DPF: {30528230-99F7-4BB4-88D8-FA1D4F56A2AB} (YInstStarter Class) - http://us.dl1.yimg.c...nst20040510.cab
O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) - http://www.pandasoft...free/asinst.cab
O20 - Winlogon Notify: igfxcui - C:\WINDOWS\SYSTEM32\igfxsrvc.dll
O23 - Service: Network Security Service (NSS) ( 11F#`I) - Unknown owner - C:\WINDOWS\system32\addut.exe" /s (file missing)
O23 - Service: AOL Connectivity Service (AOL ACS) - America Online, Inc. - C:\PROGRA~1\COMMON~1\AOL\ACS\acsd.exe
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe
O23 - Service: Symantec Password Validation (ccPwdSvc) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccPwdSvc.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe
O23 - Service: Dcfssvc - Eastman Kodak Company - C:\WINDOWS\system32\drivers\dcfssvc.exe
O23 - Service: ewido security suite control - ewido networks - C:\Program Files\ewido\security suite\ewidoctrl.exe
O23 - Service: LexBce Server (LexBceS) - Lexmark International, Inc. - C:\WINDOWS\system32\LEXBCES.EXE
O23 - Service: Norton AntiVirus Auto Protect Service (navapsvc) - Symantec Corporation - C:\Program Files\Norton AntiVirus\navapsvc.exe
O23 - Service: Intel NCS NetService (NetSvc) - Intel® Corporation - C:\Program Files\Intel\NCS\Sync\NetSvc.exe
O23 - Service: SAVScan - Symantec Corporation - C:\Program Files\Norton AntiVirus\SAVScan.exe
O23 - Service: ScriptBlocking Service (SBService) - Symantec Corporation - C:\PROGRA~1\COMMON~1\SYMANT~1\SCRIPT~1\SBServ.exe
O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\SNDSrvc.exe
O23 - Service: Symantec Core LC - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe
O23 - Service: SymWMI Service (SymWSC) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\Security Center\SymWSC.exe
O23 - Service: WAN Miniport (ATW) Service (WANMiniportService) - Unknown owner - C:\WINDOWS\wanmpsvc.exe (file missing)

Thanks -
  • 0

#28
Rawe

Rawe

    Visiting Staff

  • Member
  • PipPipPipPipPipPipPip
  • 4,746 posts
Are you able to run Ewido?
  • 0

#29
belle88

belle88

    Member

  • Topic Starter
  • Member
  • PipPip
  • 35 posts
Yes, I ran Ewido and the report is below.

I had to paste it here since it would not allow me to aqttach it. It said the file was to big.

Sorry for the extra long one but it found alot.

Ewido Syas -

---------------------------------------------------------
ewido security suite - Scan report
---------------------------------------------------------

+ Created on: 2:56:13 PM, 9/2/2005
+ Report-Checksum: 702225CC

+ Scan result:

HKLM\SOFTWARE\Classes\CLSID\{10D837D7-D6EA-8BCE-37FB-E58A2E09397B} -> Spyware.CoolWebSearch : Cleaned with backup
HKLM\SOFTWARE\Classes\CLSID\{5E5D127E-33B8-9A98-AF0D-938C370909D5} -> Spyware.CoolWebSearch : Cleaned with backup
HKLM\SOFTWARE\Classes\CLSID\{676575DD-4D46-911D-8037-9B10D6EE8BB5} -> Spyware.CoolWebSearch : Cleaned with backup
HKLM\SOFTWARE\Classes\CLSID\{68005AEB-2632-F033-B29F-EA21C446CA22} -> Spyware.CoolWebSearch : Cleaned with backup
HKLM\SOFTWARE\Classes\CLSID\{6DDF3AF2-CB9D-199D-044C-9941E91E7CFF} -> Spyware.CoolWebSearch : Cleaned with backup
HKLM\SOFTWARE\Classes\CLSID\{8CD1D4D3-8260-44A7-67DD-A71E995AB77F} -> Spyware.CoolWebSearch : Cleaned with backup
HKLM\SOFTWARE\Classes\CLSID\{BD9A8BB0-8BF8-EC2E-5A23-8010E127E35B} -> Spyware.CoolWebSearch : Cleaned with backup
HKLM\SOFTWARE\Classes\CLSID\{CAF35453-A9AB-61D6-E032-1F6CE85168F3} -> Spyware.CoolWebSearch : Cleaned with backup
HKLM\SOFTWARE\Classes\CLSID\{D85FBAA5-5F33-6173-D800-EFD4E38AE63E} -> Spyware.CoolWebSearch : Cleaned with backup
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SE -> Spyware.CoolWebSearch : Cleaned with backup
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SearchAssistant Uninstall -> Spyware.CoolWebSearch : Cleaned with backup
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SW -> Spyware.CoolWebSearch : Cleaned with backup
HKU\S-1-5-21-644844503-1378370990-1860372689-1008\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{1D05B49E-CC14-E11C-706F-60066BD9D4C0} -> Spyware.CoolWebSearch : Cleaned with backup
HKU\S-1-5-21-644844503-1378370990-1860372689-1008\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{50D9F2AB-8EC8-43E6-7C24-956820685690} -> Spyware.CoolWebSearch : Cleaned with backup
HKU\S-1-5-21-644844503-1378370990-1860372689-1008\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{5E5D127E-33B8-9A98-AF0D-938C370909D5} -> Spyware.CoolWebSearch : Cleaned with backup
HKU\S-1-5-21-644844503-1378370990-1860372689-1008\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{E15E5DCD-77AA-5DA2-A9C0-CE958A464979} -> Spyware.CoolWebSearch : Cleaned with backup
[2248] C:\WINDOWS\system32\sysdk.exe -> TrojanDownloader.Agent.bq : Cleaned with backup
:mozilla.6:C:\Documents and Settings\Nick H\Application Data\Mozilla\Firefox\Profiles\9jetwciu.default\cookies.txt -> Spyware.Cookie.Atdmt : Cleaned with backup
:mozilla.12:C:\Documents and Settings\Nick H\Application Data\Mozilla\Firefox\Profiles\9jetwciu.default\cookies.txt -> Spyware.Cookie.Doubleclick : Cleaned with backup
:mozilla.19:C:\Documents and Settings\Nick H\Application Data\Mozilla\Firefox\Profiles\9jetwciu.default\cookies.txt -> Spyware.Cookie.2o7 : Cleaned with backup
:mozilla.20:C:\Documents and Settings\Nick H\Application Data\Mozilla\Firefox\Profiles\9jetwciu.default\cookies.txt -> Spyware.Cookie.2o7 : Cleaned with backup
:mozilla.21:C:\Documents and Settings\Nick H\Application Data\Mozilla\Firefox\Profiles\9jetwciu.default\cookies.txt -> Spyware.Cookie.2o7 : Cleaned with backup
:mozilla.22:C:\Documents and Settings\Nick H\Application Data\Mozilla\Firefox\Profiles\9jetwciu.default\cookies.txt -> Spyware.Cookie.2o7 : Cleaned with backup
:mozilla.23:C:\Documents and Settings\Nick H\Application Data\Mozilla\Firefox\Profiles\9jetwciu.default\cookies.txt -> Spyware.Cookie.2o7 : Cleaned with backup
:mozilla.32:C:\Documents and Settings\Nick H\Application Data\Mozilla\Firefox\Profiles\9jetwciu.default\cookies.txt -> Spyware.Cookie.Mediaplex : Cleaned with backup
:mozilla.33:C:\Documents and Settings\Nick H\Application Data\Mozilla\Firefox\Profiles\9jetwciu.default\cookies.txt -> Spyware.Cookie.Mediaplex : Cleaned with backup
:mozilla.38:C:\Documents and Settings\Nick H\Application Data\Mozilla\Firefox\Profiles\9jetwciu.default\cookies.txt -> Spyware.Cookie.Questionmarket : Cleaned with backup
:mozilla.39:C:\Documents and Settings\Nick H\Application Data\Mozilla\Firefox\Profiles\9jetwciu.default\cookies.txt -> Spyware.Cookie.Questionmarket : Cleaned with backup
:mozilla.41:C:\Documents and Settings\Nick H\Application Data\Mozilla\Firefox\Profiles\9jetwciu.default\cookies.txt -> Spyware.Cookie.Webtrendslive : Cleaned with backup
:mozilla.42:C:\Documents and Settings\Nick H\Application Data\Mozilla\Firefox\Profiles\9jetwciu.default\cookies.txt -> Spyware.Cookie.Webtrendslive : Cleaned with backup
:mozilla.47:C:\Documents and Settings\Nick H\Application Data\Mozilla\Firefox\Profiles\9jetwciu.default\cookies.txt -> Spyware.Cookie.Fastclick : Cleaned with backup
:mozilla.48:C:\Documents and Settings\Nick H\Application Data\Mozilla\Firefox\Profiles\9jetwciu.default\cookies.txt -> Spyware.Cookie.Fastclick : Cleaned with backup
:mozilla.49:C:\Documents and Settings\Nick H\Application Data\Mozilla\Firefox\Profiles\9jetwciu.default\cookies.txt -> Spyware.Cookie.Fastclick : Cleaned with backup
:mozilla.50:C:\Documents and Settings\Nick H\Application Data\Mozilla\Firefox\Profiles\9jetwciu.default\cookies.txt -> Spyware.Cookie.Fastclick : Cleaned with backup
:mozilla.51:C:\Documents and Settings\Nick H\Application Data\Mozilla\Firefox\Profiles\9jetwciu.default\cookies.txt -> Spyware.Cookie.Fastclick : Cleaned with backup
:mozilla.52:C:\Documents and Settings\Nick H\Application Data\Mozilla\Firefox\Profiles\9jetwciu.default\cookies.txt -> Spyware.Cookie.Advertising : Cleaned with backup
:mozilla.53:C:\Documents and Settings\Nick H\Application Data\Mozilla\Firefox\Profiles\9jetwciu.default\cookies.txt -> Spyware.Cookie.Advertising : Cleaned with backup
:mozilla.54:C:\Documents and Settings\Nick H\Application Data\Mozilla\Firefox\Profiles\9jetwciu.default\cookies.txt -> Spyware.Cookie.Advertising : Cleaned with backup
:mozilla.55:C:\Documents and Settings\Nick H\Application Data\Mozilla\Firefox\Profiles\9jetwciu.default\cookies.txt -> Spyware.Cookie.Advertising : Cleaned with backup
:mozilla.56:C:\Documents and Settings\Nick H\Application Data\Mozilla\Firefox\Profiles\9jetwciu.default\cookies.txt -> Spyware.Cookie.Advertising : Cleaned with backup
:mozilla.57:C:\Documents and Settings\Nick H\Application Data\Mozilla\Firefox\Profiles\9jetwciu.default\cookies.txt -> Spyware.Cookie.Advertising : Cleaned with backup
:mozilla.58:C:\Documents and Settings\Nick H\Application Data\Mozilla\Firefox\Profiles\9jetwciu.default\cookies.txt -> Spyware.Cookie.Advertising : Cleaned with backup
:mozilla.59:C:\Documents and Settings\Nick H\Application Data\Mozilla\Firefox\Profiles\9jetwciu.default\cookies.txt -> Spyware.Cookie.Advertising : Cleaned with backup
:mozilla.60:C:\Documents and Settings\Nick H\Application Data\Mozilla\Firefox\Profiles\9jetwciu.default\cookies.txt -> Spyware.Cookie.Advertising : Cleaned with backup
:mozilla.61:C:\Documents and Settings\Nick H\Application Data\Mozilla\Firefox\Profiles\9jetwciu.default\cookies.txt -> Spyware.Cookie.Advertising : Cleaned with backup
:mozilla.62:C:\Documents and Settings\Nick H\Application Data\Mozilla\Firefox\Profiles\9jetwciu.default\cookies.txt -> Spyware.Cookie.Advertising : Cleaned with backup
:mozilla.63:C:\Documents and Settings\Nick H\Application Data\Mozilla\Firefox\Profiles\9jetwciu.default\cookies.txt -> Spyware.Cookie.Advertising : Cleaned with backup
:mozilla.64:C:\Documents and Settings\Nick H\Application Data\Mozilla\Firefox\Profiles\9jetwciu.default\cookies.txt -> Spyware.Cookie.Advertising : Cleaned with backup
:mozilla.65:C:\Documents and Settings\Nick H\Application Data\Mozilla\Firefox\Profiles\9jetwciu.default\cookies.txt -> Spyware.Cookie.Advertising : Cleaned with backup
:mozilla.66:C:\Documents and Settings\Nick H\Application Data\Mozilla\Firefox\Profiles\9jetwciu.default\cookies.txt -> Spyware.Cookie.Advertising : Cleaned with backup
:mozilla.67:C:\Documents and Settings\Nick H\Application Data\Mozilla\Firefox\Profiles\9jetwciu.default\cookies.txt -> Spyware.Cookie.Advertising : Cleaned with backup
:mozilla.68:C:\Documents and Settings\Nick H\Application Data\Mozilla\Firefox\Profiles\9jetwciu.default\cookies.txt -> Spyware.Cookie.Advertising : Cleaned with backup
:mozilla.69:C:\Documents and Settings\Nick H\Application Data\Mozilla\Firefox\Profiles\9jetwciu.default\cookies.txt -> Spyware.Cookie.Advertising : Cleaned with backup
:mozilla.70:C:\Documents and Settings\Nick H\Application Data\Mozilla\Firefox\Profiles\9jetwciu.default\cookies.txt -> Spyware.Cookie.Advertising : Cleaned with backup
:mozilla.71:C:\Documents and Settings\Nick H\Application Data\Mozilla\Firefox\Profiles\9jetwciu.default\cookies.txt -> Spyware.Cookie.Advertising : Cleaned with backup
:mozilla.72:C:\Documents and Settings\Nick H\Application Data\Mozilla\Firefox\Profiles\9jetwciu.default\cookies.txt -> Spyware.Cookie.Advertising : Cleaned with backup
:mozilla.73:C:\Documents and Settings\Nick H\Application Data\Mozilla\Firefox\Profiles\9jetwciu.default\cookies.txt -> Spyware.Cookie.Advertising : Cleaned with backup
:mozilla.74:C:\Documents and Settings\Nick H\Application Data\Mozilla\Firefox\Profiles\9jetwciu.default\cookies.txt -> Spyware.Cookie.Advertising : Cleaned with backup
:mozilla.75:C:\Documents and Settings\Nick H\Application Data\Mozilla\Firefox\Profiles\9jetwciu.default\cookies.txt -> Spyware.Cookie.Advertising : Cleaned with backup
:mozilla.76:C:\Documents and Settings\Nick H\Application Data\Mozilla\Firefox\Profiles\9jetwciu.default\cookies.txt -> Spyware.Cookie.Advertising : Cleaned with backup
:mozilla.77:C:\Documents and Settings\Nick H\Application Data\Mozilla\Firefox\Profiles\9jetwciu.default\cookies.txt -> Spyware.Cookie.Advertising : Cleaned with backup
:mozilla.78:C:\Documents and Settings\Nick H\Application Data\Mozilla\Firefox\Profiles\9jetwciu.default\cookies.txt -> Spyware.Cookie.Advertising : Cleaned with backup
:mozilla.79:C:\Documents and Settings\Nick H\Application Data\Mozilla\Firefox\Profiles\9jetwciu.default\cookies.txt -> Spyware.Cookie.Advertising : Cleaned with backup
:mozilla.80:C:\Documents and Settings\Nick H\Application Data\Mozilla\Firefox\Profiles\9jetwciu.default\cookies.txt -> Spyware.Cookie.Advertising : Cleaned with backup
:mozilla.81:C:\Documents and Settings\Nick H\Application Data\Mozilla\Firefox\Profiles\9jetwciu.default\cookies.txt -> Spyware.Cookie.Advertising : Cleaned with backup
:mozilla.82:C:\Documents and Settings\Nick H\Application Data\Mozilla\Firefox\Profiles\9jetwciu.default\cookies.txt -> Spyware.Cookie.Advertising : Cleaned with backup
:mozilla.83:C:\Documents and Settings\Nick H\Application Data\Mozilla\Firefox\Profiles\9jetwciu.default\cookies.txt -> Spyware.Cookie.Advertising : Cleaned with backup
:mozilla.84:C:\Documents and Settings\Nick H\Application Data\Mozilla\Firefox\Profiles\9jetwciu.default\cookies.txt -> Spyware.Cookie.Advertising : Cleaned with backup
:mozilla.85:C:\Documents and Settings\Nick H\Application Data\Mozilla\Firefox\Profiles\9jetwciu.default\cookies.txt -> Spyware.Cookie.Advertising : Cleaned with backup
:mozilla.86:C:\Documents and Settings\Nick H\Application Data\Mozilla\Firefox\Profiles\9jetwciu.default\cookies.txt -> Spyware.Cookie.Advertising : Cleaned with backup
:mozilla.87:C:\Documents and Settings\Nick H\Application Data\Mozilla\Firefox\Profiles\9jetwciu.default\cookies.txt -> Spyware.Cookie.Advertising : Cleaned with backup
:mozilla.88:C:\Documents and Settings\Nick H\Application Data\Mozilla\Firefox\Profiles\9jetwciu.default\cookies.txt -> Spyware.Cookie.Advertising : Cleaned with backup
:mozilla.89:C:\Documents and Settings\Nick H\Application Data\Mozilla\Firefox\Profiles\9jetwciu.default\cookies.txt -> Spyware.Cookie.Advertising : Cleaned with backup
:mozilla.90:C:\Documents and Settings\Nick H\Application Data\Mozilla\Firefox\Profiles\9jetwciu.default\cookies.txt -> Spyware.Cookie.Advertising : Cleaned with backup
:mozilla.91:C:\Documents and Settings\Nick H\Application Data\Mozilla\Firefox\Profiles\9jetwciu.default\cookies.txt -> Spyware.Cookie.Advertising : Cleaned with backup
:mozilla.92:C:\Documents and Settings\Nick H\Application Data\Mozilla\Firefox\Profiles\9jetwciu.default\cookies.txt -> Spyware.Cookie.Advertising : Cleaned with backup
:mozilla.93:C:\Documents and Settings\Nick H\Application Data\Mozilla\Firefox\Profiles\9jetwciu.default\cookies.txt -> Spyware.Cookie.Advertising : Cleaned with backup
:mozilla.94:C:\Documents and Settings\Nick H\Application Data\Mozilla\Firefox\Profiles\9jetwciu.default\cookies.txt -> Spyware.Cookie.Advertising : Cleaned with backup
:mozilla.95:C:\Documents and Settings\Nick H\Application Data\Mozilla\Firefox\Profiles\9jetwciu.default\cookies.txt -> Spyware.Cookie.Advertising : Cleaned with backup
:mozilla.96:C:\Documents and Settings\Nick H\Application Data\Mozilla\Firefox\Profiles\9jetwciu.default\cookies.txt -> Spyware.Cookie.Advertising : Cleaned with backup
:mozilla.97:C:\Documents and Settings\Nick H\Application Data\Mozilla\Firefox\Profiles\9jetwciu.default\cookies.txt -> Spyware.Cookie.Advertising : Cleaned with backup
:mozilla.98:C:\Documents and Settings\Nick H\Application Data\Mozilla\Firefox\Profiles\9jetwciu.default\cookies.txt -> Spyware.Cookie.Advertising : Cleaned with backup
:mozilla.99:C:\Documents and Settings\Nick H\Application Data\Mozilla\Firefox\Profiles\9jetwciu.default\cookies.txt -> Spyware.Cookie.Advertising : Cleaned with backup
:mozilla.100:C:\Documents and Settings\Nick H\Application Data\Mozilla\Firefox\Profiles\9jetwciu.default\cookies.txt -> Spyware.Cookie.Advertising : Cleaned with backup
:mozilla.101:C:\Documents and Settings\Nick H\Application Data\Mozilla\Firefox\Profiles\9jetwciu.default\cookies.txt -> Spyware.Cookie.Advertising : Cleaned with backup
:mozilla.102:C:\Documents and Settings\Nick H\Application Data\Mozilla\Firefox\Profiles\9jetwciu.default\cookies.txt -> Spyware.Cookie.Pointroll : Cleaned with backup
:mozilla.103:C:\Documents and Settings\Nick H\Application Data\Mozilla\Firefox\Profiles\9jetwciu.default\cookies.txt -> Spyware.Cookie.Pointroll : Cleaned with backup
:mozilla.104:C:\Documents and Settings\Nick H\Application Data\Mozilla\Firefox\Profiles\9jetwciu.default\cookies.txt -> Spyware.Cookie.Pointroll : Cleaned with backup
:mozilla.105:C:\Documents and Settings\Nick H\Application Data\Mozilla\Firefox\Profiles\9jetwciu.default\cookies.txt -> Spyware.Cookie.Pointroll : Cleaned with backup
:mozilla.108:C:\Documents and Settings\Nick H\Application Data\Mozilla\Firefox\Profiles\9jetwciu.default\cookies.txt -> Spyware.Cookie.Burstnet : Cleaned with backup
:mozilla.109:C:\Documents and Settings\Nick H\Application Data\Mozilla\Firefox\Profiles\9jetwciu.default\cookies.txt -> Spyware.Cookie.Burstnet : Cleaned with backup
:mozilla.110:C:\Documents and Settings\Nick H\Application Data\Mozilla\Firefox\Profiles\9jetwciu.default\cookies.txt -> Spyware.Cookie.Burstbeacon : Cleaned with backup
:mozilla.114:C:\Documents and Settings\Nick H\Application Data\Mozilla\Firefox\Profiles\9jetwciu.default\cookies.txt -> Spyware.Cookie.Serving-sys : Cleaned with backup
:mozilla.115:C:\Documents and Settings\Nick H\Application Data\Mozilla\Firefox\Profiles\9jetwciu.default\cookies.txt -> Spyware.Cookie.Serving-sys : Cleaned with backup
:mozilla.116:C:\Documents and Settings\Nick H\Application Data\Mozilla\Firefox\Profiles\9jetwciu.default\cookies.txt -> Spyware.Cookie.Serving-sys : Cleaned with backup
:mozilla.117:C:\Documents and Settings\Nick H\Application Data\Mozilla\Firefox\Profiles\9jetwciu.default\cookies.txt -> Spyware.Cookie.Serving-sys : Cleaned with backup
:mozilla.118:C:\Documents and Settings\Nick H\Application Data\Mozilla\Firefox\Profiles\9jetwciu.default\cookies.txt -> Spyware.Cookie.Serving-sys : Cleaned with backup
:mozilla.139:C:\Documents and Settings\Nick H\Application Data\Mozilla\Firefox\Profiles\9jetwciu.default\cookies.txt -> Spyware.Cookie.2o7 : Cleaned with backup
:mozilla.140:C:\Documents and Settings\Nick H\Application Data\Mozilla\Firefox\Profiles\9jetwciu.default\cookies.txt -> Spyware.Cookie.Yieldmanager : Cleaned with backup
:mozilla.141:C:\Documents and Settings\Nick H\Application Data\Mozilla\Firefox\Profiles\9jetwciu.default\cookies.txt -> Spyware.Cookie.Yieldmanager : Cleaned with backup
:mozilla.143:C:\Documents and Settings\Nick H\Application Data\Mozilla\Firefox\Profiles\9jetwciu.default\cookies.txt -> Spyware.Cookie.Bridgetrack : Cleaned with backup
:mozilla.144:C:\Documents and Settings\Nick H\Application Data\Mozilla\Firefox\Profiles\9jetwciu.default\cookies.txt -> Spyware.Cookie.Bridgetrack : Cleaned with backup
:mozilla.145:C:\Documents and Settings\Nick H\Application Data\Mozilla\Firefox\Profiles\9jetwciu.default\cookies.txt -> Spyware.Cookie.Bridgetrack : Cleaned with backup
:mozilla.146:C:\Documents and Settings\Nick H\Application Data\Mozilla\Firefox\Profiles\9jetwciu.default\cookies.txt -> Spyware.Cookie.Bridgetrack : Cleaned with backup
:mozilla.150:C:\Documents and Settings\Nick H\Application Data\Mozilla\Firefox\Profiles\9jetwciu.default\cookies.txt -> Spyware.Cookie.Hitbox : Cleaned with backup
:mozilla.151:C:\Documents and Settings\Nick H\Application Data\Mozilla\Firefox\Profiles\9jetwciu.default\cookies.txt -> Spyware.Cookie.Hitbox : Cleaned with backup
:mozilla.159:C:\Documents and Settings\Nick H\Application Data\Mozilla\Firefox\Profiles\9jetwciu.default\cookies.txt -> Spyware.Cookie.Hitbox : Cleaned with backup
:mozilla.160:C:\Documents and Settings\Nick H\Application Data\Mozilla\Firefox\Profiles\9jetwciu.default\cookies.txt -> Spyware.Cookie.Hitbox : Cleaned with backup
:mozilla.161:C:\Documents and Settings\Nick H\Application Data\Mozilla\Firefox\Profiles\9jetwciu.default\cookies.txt -> Spyware.Cookie.Hitbox : Cleaned with backup
:mozilla.162:C:\Documents and Settings\Nick H\Application Data\Mozilla\Firefox\Profiles\9jetwciu.default\cookies.txt -> Spyware.Cookie.Hitbox : Cleaned with backup
:mozilla.164:C:\Documents and Settings\Nick H\Application Data\Mozilla\Firefox\Profiles\9jetwciu.default\cookies.txt -> Spyware.Cookie.Tribalfusion : Cleaned with backup
:mozilla.165:C:\Documents and Settings\Nick H\Application Data\Mozilla\Firefox\Profiles\9jetwciu.default\cookies.txt -> Spyware.Cookie.Tribalfusion : Cleaned with backup
:mozilla.168:C:\Documents and Settings\Nick H\Application Data\Mozilla\Firefox\Profiles\9jetwciu.default\cookies.txt -> Spyware.Cookie.Centrport : Cleaned with backup
:mozilla.169:C:\Documents and Settings\Nick H\Application Data\Mozilla\Firefox\Profiles\9jetwciu.default\cookies.txt -> Spyware.Cookie.Centrport : Cleaned with backup
:mozilla.176:C:\Documents and Settings\Nick H\Application Data\Mozilla\Firefox\Profiles\9jetwciu.default\cookies.txt -> Spyware.Cookie.Specificclick : Cleaned with backup
:mozilla.177:C:\Documents and Settings\Nick H\Application Data\Mozilla\Firefox\Profiles\9jetwciu.default\cookies.txt -> Spyware.Cookie.Specificclick : Cleaned with backup
:mozilla.178:C:\Documents and Settings\Nick H\Application Data\Mozilla\Firefox\Profiles\9jetwciu.default\cookies.txt -> Spyware.Cookie.Specificclick : Cleaned with backup
:mozilla.179:C:\Documents and Settings\Nick H\Application Data\Mozilla\Firefox\Profiles\9jetwciu.default\cookies.txt -> Spyware.Cookie.Bluestreak : Cleaned with backup
:mozilla.187:C:\Documents and Settings\Nick H\Application Data\Mozilla\Firefox\Profiles\9jetwciu.default\cookies.txt -> Spyware.Cookie.Valueclick : Cleaned with backup
:mozilla.188:C:\Documents and Settings\Nick H\Application Data\Mozilla\Firefox\Profiles\9jetwciu.default\cookies.txt -> Spyware.Cookie.Valueclick : Cleaned with backup
C:\Documents and Settings\Nick H\Cookies\nick h@fastclick[1].txt -> Spyware.Cookie.Fastclick : Cleaned with backup
C:\System Volume Information\_restore{B37680B2-BA0A-4E5D-BF30-83E44C588624}\RP418\A0114957.ini:fhypm -> TrojanDownloader.Agent.bc : Cleaned with backup
C:\System Volume Information\_restore{B37680B2-BA0A-4E5D-BF30-83E44C588624}\RP418\A0114975.dll -> Spyware.SearchPage : Cleaned with backup
C:\System Volume Information\_restore{B37680B2-BA0A-4E5D-BF30-83E44C588624}\RP418\A0114976.exe -> Trojan.Agent.bi : Cleaned with backup
C:\System Volume Information\_restore{B37680B2-BA0A-4E5D-BF30-83E44C588624}\RP418\A0114981.ini:tdiok -> TrojanDownloader.Agent.bq : Cleaned with backup
C:\System Volume Information\_restore{B37680B2-BA0A-4E5D-BF30-83E44C588624}\RP418\A0114991.exe -> Trojan.Agent.bi : Cleaned with backup
C:\System Volume Information\_restore{B37680B2-BA0A-4E5D-BF30-83E44C588624}\RP418\A0114992.exe -> TrojanDownloader.Agent.bq : Cleaned with backup
C:\System Volume Information\_restore{B37680B2-BA0A-4E5D-BF30-83E44C588624}\RP418\A0114993.exe -> Trojan.Agent.bi : Cleaned with backup
C:\System Volume Information\_restore{B37680B2-BA0A-4E5D-BF30-83E44C588624}\RP418\A0115003.dll -> Spyware.SearchPage : Cleaned with backup
C:\System Volume Information\_restore{B37680B2-BA0A-4E5D-BF30-83E44C588624}\RP418\A0115007.exe -> Trojan.Agent.bi : Cleaned with backup
C:\System Volume Information\_restore{B37680B2-BA0A-4E5D-BF30-83E44C588624}\RP418\A0115008.exe -> Trojan.Agent.bi : Cleaned with backup
C:\System Volume Information\_restore{B37680B2-BA0A-4E5D-BF30-83E44C588624}\RP418\A0115018.dll -> Spyware.SearchPage : Cleaned with backup
C:\System Volume Information\_restore{B37680B2-BA0A-4E5D-BF30-83E44C588624}\RP418\A0115019.exe -> Trojan.Agent.bi : Cleaned with backup
C:\System Volume Information\_restore{B37680B2-BA0A-4E5D-BF30-83E44C588624}\RP418\A0115020.exe -> Trojan.Agent.bi : Cleaned with backup
C:\System Volume Information\_restore{B37680B2-BA0A-4E5D-BF30-83E44C588624}\RP418\A0115021.exe -> Trojan.Agent.bi : Cleaned with backup
C:\System Volume Information\_restore{B37680B2-BA0A-4E5D-BF30-83E44C588624}\RP418\A0115022.exe -> Backdoor.Netag : Cleaned with backup
C:\System Volume Information\_restore{B37680B2-BA0A-4E5D-BF30-83E44C588624}\RP418\A0115023.exe -> Trojan.Agent.bi : Cleaned with backup
C:\System Volume Information\_restore{B37680B2-BA0A-4E5D-BF30-83E44C588624}\RP418\A0115025.exe -> Trojan.Agent.bi : Cleaned with backup
C:\System Volume Information\_restore{B37680B2-BA0A-4E5D-BF30-83E44C588624}\RP418\A0115027.exe -> Trojan.Agent.bi : Cleaned with backup
C:\System Volume Information\_restore{B37680B2-BA0A-4E5D-BF30-83E44C588624}\RP418\A0115028.exe -> Trojan.Agent.bi : Cleaned with backup
C:\System Volume Information\_restore{B37680B2-BA0A-4E5D-BF30-83E44C588624}\RP419\A0115037.dll -> Spyware.SearchPage : Cleaned with backup
C:\System Volume Information\_restore{B37680B2-BA0A-4E5D-BF30-83E44C588624}\RP419\A0115038.exe -> Trojan.Agent.bi : Cleaned with backup
C:\System Volume Information\_restore{B37680B2-BA0A-4E5D-BF30-83E44C588624}\RP419\A0115039.exe -> Trojan.Agent.bi : Cleaned with backup
C:\System Volume Information\_restore{B37680B2-BA0A-4E5D-BF30-83E44C588624}\RP419\A0115040.exe -> TrojanDownloader.Agent.bq : Cleaned with backup
C:\System Volume Information\_restore{B37680B2-BA0A-4E5D-BF30-83E44C588624}\RP419\A0115041.exe -> Trojan.Agent.bi : Cleaned with backup
C:\System Volume Information\_restore{B37680B2-BA0A-4E5D-BF30-83E44C588624}\RP419\A0115042.exe -> Backdoor.Netag : Cleaned with backup
C:\System Volume Information\_restore{B37680B2-BA0A-4E5D-BF30-83E44C588624}\RP419\A0115043.exe -> Trojan.Agent.bi : Cleaned with backup
C:\System Volume Information\_restore{B37680B2-BA0A-4E5D-BF30-83E44C588624}\RP419\A0115044.exe -> Trojan.Agent.bi : Cleaned with backup
C:\System Volume Information\_restore{B37680B2-BA0A-4E5D-BF30-83E44C588624}\RP419\A0115045.exe -> Trojan.Agent.bi : Cleaned with backup
C:\System Volume Information\_restore{B37680B2-BA0A-4E5D-BF30-83E44C588624}\RP419\A0115046.exe -> TrojanDownloader.Agent.bq : Cleaned with backup
C:\System Volume Information\_restore{B37680B2-BA0A-4E5D-BF30-83E44C588624}\RP419\A0115047.exe -> Trojan.Agent.bi : Cleaned with backup
C:\System Volume Information\_restore{B37680B2-BA0A-4E5D-BF30-83E44C588624}\RP419\A0115048.exe -> Trojan.Agent.bi : Cleaned with backup
C:\System Volume Information\_restore{B37680B2-BA0A-4E5D-BF30-83E44C588624}\RP419\A0115049.exe -> Trojan.Agent.bi : Cleaned with backup
C:\System Volume Information\_restore{B37680B2-BA0A-4E5D-BF30-83E44C588624}\RP419\A0115050.exe -> Backdoor.Netag : Cleaned with backup
C:\System Volume Information\_restore{B37680B2-BA0A-4E5D-BF30-83E44C588624}\RP419\A0115051.exe -> Trojan.Agent.bi : Cleaned with backup
C:\System Volume Information\_restore{B37680B2-BA0A-4E5D-BF30-83E44C588624}\RP419\A0115052.exe -> Trojan.Agent.bi : Cleaned with backup
C:\System Volume Information\_restore{B37680B2-BA0A-4E5D-BF30-83E44C588624}\RP419\A0115053.exe -> TrojanDownloader.Agent.bq : Cleaned with backup
C:\System Volume Information\_restore{B37680B2-BA0A-4E5D-BF30-83E44C588624}\RP419\A0115054.exe -> TrojanDownloader.Agent.bq : Cleaned with backup
C:\System Volume Information\_restore{B37680B2-BA0A-4E5D-BF30-83E44C588624}\RP419\A0115055.exe -> Backdoor.Netag : Cleaned with backup
C:\System Volume Information\_restore{B37680B2-BA0A-4E5D-BF30-83E44C588624}\RP419\A0115056.exe -> Trojan.Agent.bi : Cleaned with backup
C:\System Volume Information\_restore{B37680B2-BA0A-4E5D-BF30-83E44C588624}\RP419\A0115057.exe -> Trojan.Agent.bi : Cleaned with backup
C:\System Volume Information\_restore{B37680B2-BA0A-4E5D-BF30-83E44C588624}\RP419\A0115058.exe -> Trojan.Agent.bi : Cleaned with backup
C:\System Volume Information\_restore{B37680B2-BA0A-4E5D-BF30-83E44C588624}\RP419\A0115059.exe -> Trojan.Agent.bi : Cleaned with backup
C:\System Volume Information\_restore{B37680B2-BA0A-4E5D-BF30-83E44C588624}\RP419\A0115060.exe -> Trojan.Agent.bi : Cleaned with backup
C:\System Volume Information\_restore{B37680B2-BA0A-4E5D-BF30-83E44C588624}\RP419\A0115061.exe -> Trojan.Agent.bi : Cleaned with backup
C:\System Volume Information\_restore{B37680B2-BA0A-4E5D-BF30-83E44C588624}\RP419\A0115062.exe -> Trojan.Agent.bi : Cleaned with backup
C:\System Volume Information\_restore{B37680B2-BA0A-4E5D-BF30-83E44C588624}\RP419\A0115063.exe -> Trojan.Agent.bi : Cleaned with backup
C:\System Volume Information\_restore{B37680B2-BA0A-4E5D-BF30-83E44C588624}\RP419\A0115064.exe -> Trojan.Agent.bi : Cleaned with backup
C:\System Volume Information\_restore{B37680B2-BA0A-4E5D-BF30-83E44C588624}\RP419\A0115065.exe -> Backdoor.Netag : Cleaned with backup
C:\System Volume Information\_restore{B37680B2-BA0A-4E5D-BF30-83E44C588624}\RP419\A0115066.exe -> Trojan.Agent.bi : Cleaned with backup
C:\System Volume Information\_restore{B37680B2-BA0A-4E5D-BF30-83E44C588624}\RP419\A0115067.exe -> Trojan.Agent.bi : Cleaned with backup
C:\System Volume Information\_restore{B37680B2-BA0A-4E5D-BF30-83E44C588624}\RP419\A0115068.dll -> TrojanDownloader.Agent.bc : Cleaned with backup
C:\System Volume Information\_restore{B37680B2-BA0A-4E5D-BF30-83E44C588624}\RP419\A0115087.ini:fhypm -> TrojanDownloader.Agent.bc : Cleaned with backup
C:\System Volume Information\_restore{B37680B2-BA0A-4E5D-BF30-83E44C588624}\RP419\A0115090.dll -> TrojanDownloader.Agent.bc : Cleaned with backup
C:\WINDOWS\addac.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addad32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addah.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addah32.exe -> Backdoor.Netag : Cleaned with backup
C:\WINDOWS\addai32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addaj.exe -> Backdoor.Netag : Cleaned with backup
C:\WINDOWS\addal32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addao32.dll -> TrojanDownloader.Agent.bc : Cleaned with backup
C:\WINDOWS\addav32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addaz32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addbe32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addbf.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addbg.exe -> TrojanDownloader.Agent.bq : Cleaned with backup
C:\WINDOWS\addbm32.exe -> TrojanDownloader.Agent.bq : Cleaned with backup
C:\WINDOWS\addbo.exe -> TrojanDownloader.Agent.bq : Cleaned with backup
C:\WINDOWS\addby.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addcc.exe -> TrojanDownloader.Agent.bq : Cleaned with backup
C:\WINDOWS\addce.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addcj32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addcm.exe -> TrojanDownloader.Agent.bq : Cleaned with backup
C:\WINDOWS\addcm32.exe -> TrojanDownloader.Agent.bq : Cleaned with backup
C:\WINDOWS\addco32.dll -> TrojanDownloader.Agent.bc : Cleaned with backup
C:\WINDOWS\addcr.dll -> TrojanDownloader.Agent.bc : Cleaned with backup
C:\WINDOWS\addcu32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addcv.dll -> TrojanDownloader.Agent.bc : Cleaned with backup
C:\WINDOWS\addcw32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addcy32.dll -> TrojanDownloader.Agent.bc : Cleaned with backup
C:\WINDOWS\addcz.exe -> TrojanDownloader.Agent.bq : Cleaned with backup
C:\WINDOWS\addda.dll -> TrojanDownloader.Agent.bc : Cleaned with backup
C:\WINDOWS\adddb32.dll -> TrojanDownloader.Agent.bc : Cleaned with backup
C:\WINDOWS\adddd.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\adddd32.dll -> TrojanDownloader.Agent.bc : Cleaned with backup
C:\WINDOWS\adddf.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\adddh.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\adddi.dll -> TrojanDownloader.Agent.bc : Cleaned with backup
C:\WINDOWS\adddi.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\adddi32.dll -> TrojanDownloader.Agent.bc : Cleaned with backup
C:\WINDOWS\adddj.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\adddo.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\adddo32.exe -> TrojanDownloader.Agent.bq : Cleaned with backup
C:\WINDOWS\adddu.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addee32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addej32.dll -> TrojanDownloader.Agent.bc : Cleaned with backup
C:\WINDOWS\addew32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addfa.dll -> TrojanDownloader.Agent.bc : Cleaned with backup
C:\WINDOWS\addfc.exe -> TrojanDownloader.Agent.bq : Cleaned with backup
C:\WINDOWS\addfh.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addfi32.exe -> TrojanDownloader.Agent.bq : Cleaned with backup
C:\WINDOWS\addfk.dll -> TrojanDownloader.Agent.bc : Cleaned with backup
C:\WINDOWS\addfp32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addfr.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addfs.dll -> TrojanDownloader.Agent.bc : Cleaned with backup
C:\WINDOWS\addfs.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addfz32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addgb.dll -> TrojanDownloader.Agent.bc : Cleaned with backup
C:\WINDOWS\addgn32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addgx32.exe -> Backdoor.Netag : Cleaned with backup
C:\WINDOWS\addhg32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addhj.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addhk32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addhn32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addho.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addia32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addil32.exe -> Backdoor.Netag : Cleaned with backup
C:\WINDOWS\addim.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addio32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addit.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addit32.dll -> TrojanDownloader.Agent.bc : Cleaned with backup
C:\WINDOWS\addit32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addiu.dll -> TrojanDownloader.Agent.bc : Cleaned with backup
C:\WINDOWS\addiu32.dll -> TrojanDownloader.Agent.bc : Cleaned with backup
C:\WINDOWS\addiw32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addiz.dll -> TrojanDownloader.Agent.bc : Cleaned with backup
C:\WINDOWS\addjg.dll -> TrojanDownloader.Agent.bc : Cleaned with backup
C:\WINDOWS\addjg.exe -> TrojanDownloader.Agent.bq : Cleaned with backup
C:\WINDOWS\addjj32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addjm32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addjs.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addjx.exe -> TrojanDownloader.Agent.bq : Cleaned with backup
C:\WINDOWS\addjx32.dll -> TrojanDownloader.Agent.bc : Cleaned with backup
C:\WINDOWS\addjy32.dll -> TrojanDownloader.Agent.bc : Cleaned with backup
C:\WINDOWS\addjz.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addkc.exe -> TrojanDownloader.Agent.bq : Cleaned with backup
C:\WINDOWS\addkc32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addkd.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addkg.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addko32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addkq32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addkt.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addkt32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addku.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addlh.exe -> TrojanDownloader.Agent.bq : Cleaned with backup
C:\WINDOWS\addli.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addlo.exe -> TrojanDownloader.Agent.bq : Cleaned with backup
C:\WINDOWS\addlr.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addls32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addlv.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addlv32.exe -> TrojanDownloader.Agent.bq : Cleaned with backup
C:\WINDOWS\addme32.exe -> Backdoor.Netag : Cleaned with backup
C:\WINDOWS\addmf.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addml.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addmm32.exe -> TrojanDownloader.Agent.bq : Cleaned with backup
C:\WINDOWS\addmr32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addmz32.exe -> TrojanDownloader.Agent.bq : Cleaned with backup
C:\WINDOWS\addnd32.exe -> TrojanDownloader.Agent.bq : Cleaned with backup
C:\WINDOWS\addne.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addnf32.exe -> TrojanDownloader.Agent.bq : Cleaned with backup
C:\WINDOWS\addng.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addnn.exe -> TrojanDownloader.Agent.bq : Cleaned with backup
C:\WINDOWS\addny.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addnz.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addod.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addoe32.exe -> Backdoor.Netag : Cleaned with backup
C:\WINDOWS\addoh.exe -> Backdoor.Netag : Cleaned with backup
C:\WINDOWS\addol.dll -> TrojanDownloader.Agent.bc : Cleaned with backup
C:\WINDOWS\addop.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addos.exe -> Backdoor.Netag : Cleaned with backup
C:\WINDOWS\addot32.exe -> TrojanDownloader.Agent.bq : Cleaned with backup
C:\WINDOWS\addoy.exe -> TrojanDownloader.Agent.bq : Cleaned with backup
C:\WINDOWS\addpa.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addpl32.dll -> TrojanDownloader.Agent.bc : Cleaned with backup
C:\WINDOWS\addpq32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addps32.dll -> TrojanDownloader.Agent.bc : Cleaned with backup
C:\WINDOWS\addpv32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addpw.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addpy32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addpz.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addpz32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addqa32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addqc.exe -> Backdoor.Netag : Cleaned with backup
C:\WINDOWS\addqc32.exe -> Backdoor.Netag : Cleaned with backup
C:\WINDOWS\addqf32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addqj32.exe -> Backdoor.Netag : Cleaned with backup
C:\WINDOWS\addql.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addqm.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addqn.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addqv32.exe -> TrojanDownloader.Agent.bq : Cleaned with backup
C:\WINDOWS\addre32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addrk32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addro.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addrs32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addrw.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addry.exe -> TrojanDownloader.Agent.bq : Cleaned with backup
C:\WINDOWS\addry32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addsh32.dll -> TrojanDownloader.Agent.bc : Cleaned with backup
C:\WINDOWS\addsh32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addsm.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addss.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addtc.exe -> TrojanDownloader.Agent.bq : Cleaned with backup
C:\WINDOWS\addtg.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addtl.dll -> TrojanDownloader.Agent.bc : Cleaned with backup
C:\WINDOWS\addtv32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addtw.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addtx32.dll -> TrojanDownloader.Agent.bc : Cleaned with backup
C:\WINDOWS\addue.dll -> TrojanDownloader.Agent.bc : Cleaned with backup
C:\WINDOWS\adduk32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\adduo32.exe -> TrojanDownloader.Agent.bq : Cleaned with backup
C:\WINDOWS\adduq32.exe -> TrojanDownloader.Agent.bq : Cleaned with backup
C:\WINDOWS\addvb.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addvf.exe -> Backdoor.Netag : Cleaned with backup
C:\WINDOWS\addvk.exe -> TrojanDownloader.Agent.bq : Cleaned with backup
C:\WINDOWS\addvk32.exe -> TrojanDownloader.Agent.bq : Cleaned with backup
C:\WINDOWS\addvl32.exe -> TrojanDownloader.Agent.bq : Cleaned with backup
C:\WINDOWS\addvq.exe -> TrojanDownloader.Agent.bq : Cleaned with backup
C:\WINDOWS\addvs32.exe -> TrojanDownloader.Agent.bq : Cleaned with backup
C:\WINDOWS\addvu.exe -> TrojanDownloader.Agent.bq : Cleaned with backup
C:\WINDOWS\addvz.exe -> TrojanDownloader.Agent.bq : Cleaned with backup
C:\WINDOWS\addvz32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addwe32.exe -> Backdoor.Netag : Cleaned with backup
C:\WINDOWS\addwi32.exe -> TrojanDownloader.Agent.bq : Cleaned with backup
C:\WINDOWS\addwo.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addwp.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addwv.exe -> TrojanDownloader.Agent.bq : Cleaned with backup
C:\WINDOWS\addxk.exe -> TrojanDownloader.Agent.bq : Cleaned with backup
C:\WINDOWS\addxp32.exe -> TrojanDownloader.Agent.bq : Cleaned with backup
C:\WINDOWS\addxq32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addxy32.exe -> TrojanDownloader.Agent.bq : Cleaned with backup
C:\WINDOWS\addxz.dll -> TrojanDownloader.Agent.bc : Cleaned with backup
C:\WINDOWS\addyc.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addyc32.exe -> Backdoor.Netag : Cleaned with backup
C:\WINDOWS\addyd32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addyg.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addyh32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addyj.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addyj32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addyp.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addyw32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addza32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addzb32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addzc32.dll -> TrojanDownloader.Agent.bc : Cleaned with backup
C:\WINDOWS\addzi32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addzj.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addzj32.dll -> TrojanDownloader.Agent.bc : Cleaned with backup
C:\WINDOWS\addzk.dll -> TrojanDownloader.Agent.bc : Cleaned with backup
C:\WINDOWS\addzm.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addzn.exe -> Backdoor.Netag : Cleaned with backup
C:\WINDOWS\addzp32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addzw.dll -> TrojanDownloader.Agent.bc : Cleaned with backup
C:\WINDOWS\addzx32.exe -> TrojanDownloader.Agent.bq : Cleaned with backup
C:\WINDOWS\addzy.exe -> TrojanDownloader.Agent.bq : Cleaned with backup
C:\WINDOWS\addzy32.exe -> Backdoor.Netag : Cleaned with backup
C:\WINDOWS\aootq.log:dnqds -> TrojanDownloader.Agent.bc : Cleaned with backup
C:\WINDOWS\aootq.log:nvmdg -> TrojanDownloader.Agent.bc : Cleaned with backup
C:\WINDOWS\aootq.log:sbile -> TrojanDownloader.Agent.bq : Cleaned with backup
C:\WINDOWS\aoszv.dat:yrqyc -> TrojanDownloader.Agent.bc : Cleaned with backup
C:\WINDOWS\apdzi.log:snius -> TrojanDownloader.Agent.bc : Cleaned with backup
C:\WINDOWS\apdzi.log:xwiqz -> TrojanDownloader.Agent.bc : Cleaned with backup
C:\WINDOWS\apiae.exe -> TrojanDownloader.Agent.bq : Cleaned with backup
C:\WINDOWS\apiak.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apial32.dll -> TrojanDownloader.Agent.bc : Cleaned with backup
C:\WINDOWS\apiat.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apiau.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apibe32.dll -> TrojanDownloader.Agent.bc : Cleaned with backup
C:\WINDOWS\apibg.dll -> TrojanDownloader.Agent.bc : Cleaned with backup
C:\WINDOWS\apibj.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apibn32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apibq.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apiby.exe -> TrojanDownloader.Agent.bq : Cleaned with backup
C:\WINDOWS\apice.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apici.exe -> TrojanDownloader.Agent.bq : Cleaned with backup
C:\WINDOWS\apicj32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apicn32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apicv32.exe -> Backdoor.Netag : Cleaned with backup
C:\WINDOWS\apidc.exe -> TrojanDownloader.Agent.bq : Cleaned with backup
C:\WINDOWS\apide.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apide32.exe -> TrojanDownloader.Agent.bq : Cleaned with backup
C:\WINDOWS\apidj32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apidn32.dll -> TrojanDownloader.Agent.bc : Cleaned with backup
C:\WINDOWS\apidp.exe -> Backdoor.Netag : Cleaned with backup
C:\WINDOWS\apidr.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apidw32.dll -> TrojanDownloader.Agent.bc : Cleaned with backup
C:\WINDOWS\apiec32.exe -> TrojanDownloader.Agent.bq : Cleaned with backup
C:\WINDOWS\apied.exe -> Backdoor.Netag : Cleaned with backup
C:\WINDOWS\apiew.dll -> TrojanDownloader.Agent.bc : Cleaned with backup
C:\WINDOWS\apiey.exe -> TrojanDownloader.Agent.bq : Cleaned with backup
C:\WINDOWS\apifh.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apifl32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apifm32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apifo.dll -> TrojanDownloader.Agent.bc : Cleaned with backup
C:\WINDOWS\apifu32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apifx.exe -> Backdoor.Netag : Cleaned with backup
C:\WINDOWS\apify32.dll -> TrojanDownloader.Agent.bc : Cleaned with backup
C:\WINDOWS\apigf32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apigh.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apigj32.exe -> TrojanDownloader.Agent.bq : Cleaned with backup
C:\WINDOWS\apigm.dll -> TrojanDownloader.Agent.bc : Cleaned with backup
C:\WINDOWS\apign.dll -> TrojanDownloader.Agent.bc : Cleaned with backup
C:\WINDOWS\apigo.dll -> TrojanDownloader.Agent.bc : Cleaned with backup
C:\WINDOWS\apigo.exe -> TrojanDownloader.Agent.bq : Cleaned with backup
C:\WINDOWS\apigq.exe -> TrojanDownloader.Agent.bq : Cleaned with backup
C:\WINDOWS\apigq32.dll -> TrojanDownloader.Agent.bc : Cleaned with backup
C:\WINDOWS\apigs.exe -> TrojanDownloader.Agent.bq : Cleaned with backup
C:\WINDOWS\apigs32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apiha32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apihe32.dll -> TrojanDownloader.Agent.bc : Cleaned with backup
C:\WINDOWS\apihj.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apiho.exe -> Backdoor.Netag : Cleaned with backup
C:\WINDOWS\apihq.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apihv32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apihw.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apihy32.dll -> TrojanDownloader.Agent.bc : Cleaned with backup
C:\WINDOWS\apiib.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apiie.exe -> Backdoor.Netag : Cleaned with backup
C:\WINDOWS\apiil32.dll -> TrojanDownloader.Agent.bc : Cleaned with backup
C:\WINDOWS\apiis32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apiiu32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apiiv.exe -> TrojanDownloader.Agent.bq : Cleaned with backup
C:\WINDOWS\apiiz32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apiju.exe -> TrojanDownloader.Agent.bq : Cleaned with backup
C:\WINDOWS\apiju32.dll -> TrojanDownloader.Agent.bc : Cleaned with backup
C:\WINDOWS\apijz32.exe -> TrojanDownloader.Agent.bq : Cleaned with backup
C:\WINDOWS\apikb.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apikh.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apiki32.exe -> TrojanDownloader.Agent.bq : Cleaned with backup
C:\WINDOWS\apikj.dll -> TrojanDownloader.Agent.bc : Cleaned with backup
C:\WINDOWS\apikj.exe -> Backdoor.Netag : Cleaned with backup
C:\WINDOWS\apikk32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apikr32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apiky32.dll -> TrojanDownloader.Agent.bc : Cleaned with backup
C:\WINDOWS\apilf32.dll -> TrojanDownloader.Agent.bc : Cleaned with backup
C:\WINDOWS\apilh.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apilm.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apils.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apilt32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apilz32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apima32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apimc32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apimf32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apimj32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apimr.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apims32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apimv.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apimv32.dll -> TrojanDownloader.Agent.bc : Cleaned with backup
C:\WINDOWS\apinb.exe -> TrojanDownloader.Agent.bq : Cleaned with backup
C:\WINDOWS\apine32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apinf.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apinm.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apino.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apinp.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apinr.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apinr32.exe -> Backdoor.Netag : Cleaned with backup
C:\WINDOWS\apiny.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apinz.dll -> TrojanDownloader.Agent.bc : Cleaned with backup
C:\WINDOWS\apinz.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apioe32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apiog32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apiok.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apiok32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apiot.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apiou32.dll -> TrojanDownloader.Agent.bc : Cleaned with backup
C:\WINDOWS\apiow32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apioy.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apioy32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apipd32.dll -> TrojanDownloader.Agent.bc : Cleaned with backup
C:\WINDOWS\apipd32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apipe.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apipm.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apipn.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apipt32.dll -> TrojanDownloader.Agent.bc : Cleaned with backup
C:\WINDOWS\apipu.dll -> TrojanDownloader.Agent.bc : Cleaned with backup
C:\WINDOWS\apiqe32.dll -> TrojanDownloader.Agent.bc : Cleaned with backup
C:\WINDOWS\apiqj32.dll -> TrojanDownloader.Agent.bc : Cleaned with backup
C:\WINDOWS\apiql.exe -> TrojanDownloader.Agent.bq : Cleaned with backup
C:\WINDOWS\apiqo.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apiqq.exe -> TrojanDownloader.Agent.bq : Cleaned with backup
C:\WINDOWS\apiqr.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apiqt.dll -> TrojanDownloader.Agent.bc : Cleaned with backup
C:\WINDOWS\apiqt.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apiqu.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apiqv32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apiqy32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apirf32.dll -> TrojanDownloader.Agent.bc : Cleaned with backup
C:\WINDOWS\apirh.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apiri.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apirl32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apirn32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apirs.exe -> Backdoor.Netag : Cleaned with backup
C:\WINDOWS\apisd32.exe -> Backdoor.Netag : Cleaned with backup
C:\WINDOWS\apisf32.dll -> TrojanDownloader.Agent.bc : Cleaned with backup
C:\WINDOWS\apisp32.exe -> Backdoor.Netag : Cleaned with backup
C:\WINDOWS\apisq32.exe -> TrojanDownloader.Agent.bq : Cleaned with backup
C:\WINDOWS\apisv.exe -> TrojanDownloader.Agent.bq : Cleaned with backup
C:\WINDOWS\apisw32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apita.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apitc32.dll -> TrojanDownloader.Agent.bc : Cleaned with backup
C:\WINDOWS\apitr32.exe -> TrojanDownloader.Agent.bq : Cleaned with backup
C:\WINDOWS\apitt32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apitu.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apity.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apiua.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apiug.exe -> TrojanDownloader.Agent.bq : Cleaned with backup
C:\WINDOWS\apiuh.exe -> Backdoor.Netag : Cleaned with backup
C:\WINDOWS\apiuk32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apiul.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apiuu32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apiuw.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apiuy32.dll -> TrojanDownloader.Agent.bc : Cleaned with backup
C:\WINDOWS\apivd.exe -> TrojanDownloader.Agent.bq : Cleaned with backup
C:\WINDOWS\apivh.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apivi.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS&#
  • 0

#30
belle88

belle88

    Member

  • Topic Starter
  • Member
  • PipPip
  • 35 posts
Sorry I did not get them all on the first one. Here is another cut and paste of the report.




---------------------------------------------------------
ewido security suite - Scan report
---------------------------------------------------------

+ Created on: 2:56:13 PM, 9/2/2005
+ Report-Checksum: 702225CC

+ Scan result:

HKLM\SOFTWARE\Classes\CLSID\{10D837D7-D6EA-8BCE-37FB-E58A2E09397B} -> Spyware.CoolWebSearch : Cleaned with backup
HKLM\SOFTWARE\Classes\CLSID\{5E5D127E-33B8-9A98-AF0D-938C370909D5} -> Spyware.CoolWebSearch : Cleaned with backup
HKLM\SOFTWARE\Classes\CLSID\{676575DD-4D46-911D-8037-9B10D6EE8BB5} -> Spyware.CoolWebSearch : Cleaned with backup
HKLM\SOFTWARE\Classes\CLSID\{68005AEB-2632-F033-B29F-EA21C446CA22} -> Spyware.CoolWebSearch : Cleaned with backup
HKLM\SOFTWARE\Classes\CLSID\{6DDF3AF2-CB9D-199D-044C-9941E91E7CFF} -> Spyware.CoolWebSearch : Cleaned with backup
HKLM\SOFTWARE\Classes\CLSID\{8CD1D4D3-8260-44A7-67DD-A71E995AB77F} -> Spyware.CoolWebSearch : Cleaned with backup
HKLM\SOFTWARE\Classes\CLSID\{BD9A8BB0-8BF8-EC2E-5A23-8010E127E35B} -> Spyware.CoolWebSearch : Cleaned with backup
HKLM\SOFTWARE\Classes\CLSID\{CAF35453-A9AB-61D6-E032-1F6CE85168F3} -> Spyware.CoolWebSearch : Cleaned with backup
HKLM\SOFTWARE\Classes\CLSID\{D85FBAA5-5F33-6173-D800-EFD4E38AE63E} -> Spyware.CoolWebSearch : Cleaned with backup
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SE -> Spyware.CoolWebSearch : Cleaned with backup
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SearchAssistant Uninstall -> Spyware.CoolWebSearch : Cleaned with backup
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SW -> Spyware.CoolWebSearch : Cleaned with backup
HKU\S-1-5-21-644844503-1378370990-1860372689-1008\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{1D05B49E-CC14-E11C-706F-60066BD9D4C0} -> Spyware.CoolWebSearch : Cleaned with backup
HKU\S-1-5-21-644844503-1378370990-1860372689-1008\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{50D9F2AB-8EC8-43E6-7C24-956820685690} -> Spyware.CoolWebSearch : Cleaned with backup
HKU\S-1-5-21-644844503-1378370990-1860372689-1008\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{5E5D127E-33B8-9A98-AF0D-938C370909D5} -> Spyware.CoolWebSearch : Cleaned with backup
HKU\S-1-5-21-644844503-1378370990-1860372689-1008\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{E15E5DCD-77AA-5DA2-A9C0-CE958A464979} -> Spyware.CoolWebSearch : Cleaned with backup
[2248] C:\WINDOWS\system32\sysdk.exe -> TrojanDownloader.Agent.bq : Cleaned with backup
:mozilla.6:C:\Documents and Settings\Nick H\Application Data\Mozilla\Firefox\Profiles\9jetwciu.default\cookies.txt -> Spyware.Cookie.Atdmt : Cleaned with backup
:mozilla.12:C:\Documents and Settings\Nick H\Application Data\Mozilla\Firefox\Profiles\9jetwciu.default\cookies.txt -> Spyware.Cookie.Doubleclick : Cleaned with backup
:mozilla.19:C:\Documents and Settings\Nick H\Application Data\Mozilla\Firefox\Profiles\9jetwciu.default\cookies.txt -> Spyware.Cookie.2o7 : Cleaned with backup
:mozilla.20:C:\Documents and Settings\Nick H\Application Data\Mozilla\Firefox\Profiles\9jetwciu.default\cookies.txt -> Spyware.Cookie.2o7 : Cleaned with backup
:mozilla.21:C:\Documents and Settings\Nick H\Application Data\Mozilla\Firefox\Profiles\9jetwciu.default\cookies.txt -> Spyware.Cookie.2o7 : Cleaned with backup
:mozilla.22:C:\Documents and Settings\Nick H\Application Data\Mozilla\Firefox\Profiles\9jetwciu.default\cookies.txt -> Spyware.Cookie.2o7 : Cleaned with backup
:mozilla.23:C:\Documents and Settings\Nick H\Application Data\Mozilla\Firefox\Profiles\9jetwciu.default\cookies.txt -> Spyware.Cookie.2o7 : Cleaned with backup
:mozilla.32:C:\Documents and Settings\Nick H\Application Data\Mozilla\Firefox\Profiles\9jetwciu.default\cookies.txt -> Spyware.Cookie.Mediaplex : Cleaned with backup
:mozilla.33:C:\Documents and Settings\Nick H\Application Data\Mozilla\Firefox\Profiles\9jetwciu.default\cookies.txt -> Spyware.Cookie.Mediaplex : Cleaned with backup
:mozilla.38:C:\Documents and Settings\Nick H\Application Data\Mozilla\Firefox\Profiles\9jetwciu.default\cookies.txt -> Spyware.Cookie.Questionmarket : Cleaned with backup
:mozilla.39:C:\Documents and Settings\Nick H\Application Data\Mozilla\Firefox\Profiles\9jetwciu.default\cookies.txt -> Spyware.Cookie.Questionmarket : Cleaned with backup
:mozilla.41:C:\Documents and Settings\Nick H\Application Data\Mozilla\Firefox\Profiles\9jetwciu.default\cookies.txt -> Spyware.Cookie.Webtrendslive : Cleaned with backup
:mozilla.42:C:\Documents and Settings\Nick H\Application Data\Mozilla\Firefox\Profiles\9jetwciu.default\cookies.txt -> Spyware.Cookie.Webtrendslive : Cleaned with backup
:mozilla.47:C:\Documents and Settings\Nick H\Application Data\Mozilla\Firefox\Profiles\9jetwciu.default\cookies.txt -> Spyware.Cookie.Fastclick : Cleaned with backup
:mozilla.48:C:\Documents and Settings\Nick H\Application Data\Mozilla\Firefox\Profiles\9jetwciu.default\cookies.txt -> Spyware.Cookie.Fastclick : Cleaned with backup
:mozilla.49:C:\Documents and Settings\Nick H\Application Data\Mozilla\Firefox\Profiles\9jetwciu.default\cookies.txt -> Spyware.Cookie.Fastclick : Cleaned with backup
:mozilla.50:C:\Documents and Settings\Nick H\Application Data\Mozilla\Firefox\Profiles\9jetwciu.default\cookies.txt -> Spyware.Cookie.Fastclick : Cleaned with backup
:mozilla.51:C:\Documents and Settings\Nick H\Application Data\Mozilla\Firefox\Profiles\9jetwciu.default\cookies.txt -> Spyware.Cookie.Fastclick : Cleaned with backup
:mozilla.52:C:\Documents and Settings\Nick H\Application Data\Mozilla\Firefox\Profiles\9jetwciu.default\cookies.txt -> Spyware.Cookie.Advertising : Cleaned with backup
:mozilla.53:C:\Documents and Settings\Nick H\Application Data\Mozilla\Firefox\Profiles\9jetwciu.default\cookies.txt -> Spyware.Cookie.Advertising : Cleaned with backup
:mozilla.54:C:\Documents and Settings\Nick H\Application Data\Mozilla\Firefox\Profiles\9jetwciu.default\cookies.txt -> Spyware.Cookie.Advertising : Cleaned with backup
:mozilla.55:C:\Documents and Settings\Nick H\Application Data\Mozilla\Firefox\Profiles\9jetwciu.default\cookies.txt -> Spyware.Cookie.Advertising : Cleaned with backup
:mozilla.56:C:\Documents and Settings\Nick H\Application Data\Mozilla\Firefox\Profiles\9jetwciu.default\cookies.txt -> Spyware.Cookie.Advertising : Cleaned with backup
:mozilla.57:C:\Documents and Settings\Nick H\Application Data\Mozilla\Firefox\Profiles\9jetwciu.default\cookies.txt -> Spyware.Cookie.Advertising : Cleaned with backup
:mozilla.58:C:\Documents and Settings\Nick H\Application Data\Mozilla\Firefox\Profiles\9jetwciu.default\cookies.txt -> Spyware.Cookie.Advertising : Cleaned with backup
:mozilla.59:C:\Documents and Settings\Nick H\Application Data\Mozilla\Firefox\Profiles\9jetwciu.default\cookies.txt -> Spyware.Cookie.Advertising : Cleaned with backup
:mozilla.60:C:\Documents and Settings\Nick H\Application Data\Mozilla\Firefox\Profiles\9jetwciu.default\cookies.txt -> Spyware.Cookie.Advertising : Cleaned with backup
:mozilla.61:C:\Documents and Settings\Nick H\Application Data\Mozilla\Firefox\Profiles\9jetwciu.default\cookies.txt -> Spyware.Cookie.Advertising : Cleaned with backup
:mozilla.62:C:\Documents and Settings\Nick H\Application Data\Mozilla\Firefox\Profiles\9jetwciu.default\cookies.txt -> Spyware.Cookie.Advertising : Cleaned with backup
:mozilla.63:C:\Documents and Settings\Nick H\Application Data\Mozilla\Firefox\Profiles\9jetwciu.default\cookies.txt -> Spyware.Cookie.Advertising : Cleaned with backup
:mozilla.64:C:\Documents and Settings\Nick H\Application Data\Mozilla\Firefox\Profiles\9jetwciu.default\cookies.txt -> Spyware.Cookie.Advertising : Cleaned with backup
:mozilla.65:C:\Documents and Settings\Nick H\Application Data\Mozilla\Firefox\Profiles\9jetwciu.default\cookies.txt -> Spyware.Cookie.Advertising : Cleaned with backup
:mozilla.66:C:\Documents and Settings\Nick H\Application Data\Mozilla\Firefox\Profiles\9jetwciu.default\cookies.txt -> Spyware.Cookie.Advertising : Cleaned with backup
:mozilla.67:C:\Documents and Settings\Nick H\Application Data\Mozilla\Firefox\Profiles\9jetwciu.default\cookies.txt -> Spyware.Cookie.Advertising : Cleaned with backup
:mozilla.68:C:\Documents and Settings\Nick H\Application Data\Mozilla\Firefox\Profiles\9jetwciu.default\cookies.txt -> Spyware.Cookie.Advertising : Cleaned with backup
:mozilla.69:C:\Documents and Settings\Nick H\Application Data\Mozilla\Firefox\Profiles\9jetwciu.default\cookies.txt -> Spyware.Cookie.Advertising : Cleaned with backup
:mozilla.70:C:\Documents and Settings\Nick H\Application Data\Mozilla\Firefox\Profiles\9jetwciu.default\cookies.txt -> Spyware.Cookie.Advertising : Cleaned with backup
:mozilla.71:C:\Documents and Settings\Nick H\Application Data\Mozilla\Firefox\Profiles\9jetwciu.default\cookies.txt -> Spyware.Cookie.Advertising : Cleaned with backup
:mozilla.72:C:\Documents and Settings\Nick H\Application Data\Mozilla\Firefox\Profiles\9jetwciu.default\cookies.txt -> Spyware.Cookie.Advertising : Cleaned with backup
:mozilla.73:C:\Documents and Settings\Nick H\Application Data\Mozilla\Firefox\Profiles\9jetwciu.default\cookies.txt -> Spyware.Cookie.Advertising : Cleaned with backup
:mozilla.74:C:\Documents and Settings\Nick H\Application Data\Mozilla\Firefox\Profiles\9jetwciu.default\cookies.txt -> Spyware.Cookie.Advertising : Cleaned with backup
:mozilla.75:C:\Documents and Settings\Nick H\Application Data\Mozilla\Firefox\Profiles\9jetwciu.default\cookies.txt -> Spyware.Cookie.Advertising : Cleaned with backup
:mozilla.76:C:\Documents and Settings\Nick H\Application Data\Mozilla\Firefox\Profiles\9jetwciu.default\cookies.txt -> Spyware.Cookie.Advertising : Cleaned with backup
:mozilla.77:C:\Documents and Settings\Nick H\Application Data\Mozilla\Firefox\Profiles\9jetwciu.default\cookies.txt -> Spyware.Cookie.Advertising : Cleaned with backup
:mozilla.78:C:\Documents and Settings\Nick H\Application Data\Mozilla\Firefox\Profiles\9jetwciu.default\cookies.txt -> Spyware.Cookie.Advertising : Cleaned with backup
:mozilla.79:C:\Documents and Settings\Nick H\Application Data\Mozilla\Firefox\Profiles\9jetwciu.default\cookies.txt -> Spyware.Cookie.Advertising : Cleaned with backup
:mozilla.80:C:\Documents and Settings\Nick H\Application Data\Mozilla\Firefox\Profiles\9jetwciu.default\cookies.txt -> Spyware.Cookie.Advertising : Cleaned with backup
:mozilla.81:C:\Documents and Settings\Nick H\Application Data\Mozilla\Firefox\Profiles\9jetwciu.default\cookies.txt -> Spyware.Cookie.Advertising : Cleaned with backup
:mozilla.82:C:\Documents and Settings\Nick H\Application Data\Mozilla\Firefox\Profiles\9jetwciu.default\cookies.txt -> Spyware.Cookie.Advertising : Cleaned with backup
:mozilla.83:C:\Documents and Settings\Nick H\Application Data\Mozilla\Firefox\Profiles\9jetwciu.default\cookies.txt -> Spyware.Cookie.Advertising : Cleaned with backup
:mozilla.84:C:\Documents and Settings\Nick H\Application Data\Mozilla\Firefox\Profiles\9jetwciu.default\cookies.txt -> Spyware.Cookie.Advertising : Cleaned with backup
:mozilla.85:C:\Documents and Settings\Nick H\Application Data\Mozilla\Firefox\Profiles\9jetwciu.default\cookies.txt -> Spyware.Cookie.Advertising : Cleaned with backup
:mozilla.86:C:\Documents and Settings\Nick H\Application Data\Mozilla\Firefox\Profiles\9jetwciu.default\cookies.txt -> Spyware.Cookie.Advertising : Cleaned with backup
:mozilla.87:C:\Documents and Settings\Nick H\Application Data\Mozilla\Firefox\Profiles\9jetwciu.default\cookies.txt -> Spyware.Cookie.Advertising : Cleaned with backup
:mozilla.88:C:\Documents and Settings\Nick H\Application Data\Mozilla\Firefox\Profiles\9jetwciu.default\cookies.txt -> Spyware.Cookie.Advertising : Cleaned with backup
:mozilla.89:C:\Documents and Settings\Nick H\Application Data\Mozilla\Firefox\Profiles\9jetwciu.default\cookies.txt -> Spyware.Cookie.Advertising : Cleaned with backup
:mozilla.90:C:\Documents and Settings\Nick H\Application Data\Mozilla\Firefox\Profiles\9jetwciu.default\cookies.txt -> Spyware.Cookie.Advertising : Cleaned with backup
:mozilla.91:C:\Documents and Settings\Nick H\Application Data\Mozilla\Firefox\Profiles\9jetwciu.default\cookies.txt -> Spyware.Cookie.Advertising : Cleaned with backup
:mozilla.92:C:\Documents and Settings\Nick H\Application Data\Mozilla\Firefox\Profiles\9jetwciu.default\cookies.txt -> Spyware.Cookie.Advertising : Cleaned with backup
:mozilla.93:C:\Documents and Settings\Nick H\Application Data\Mozilla\Firefox\Profiles\9jetwciu.default\cookies.txt -> Spyware.Cookie.Advertising : Cleaned with backup
:mozilla.94:C:\Documents and Settings\Nick H\Application Data\Mozilla\Firefox\Profiles\9jetwciu.default\cookies.txt -> Spyware.Cookie.Advertising : Cleaned with backup
:mozilla.95:C:\Documents and Settings\Nick H\Application Data\Mozilla\Firefox\Profiles\9jetwciu.default\cookies.txt -> Spyware.Cookie.Advertising : Cleaned with backup
:mozilla.96:C:\Documents and Settings\Nick H\Application Data\Mozilla\Firefox\Profiles\9jetwciu.default\cookies.txt -> Spyware.Cookie.Advertising : Cleaned with backup
:mozilla.97:C:\Documents and Settings\Nick H\Application Data\Mozilla\Firefox\Profiles\9jetwciu.default\cookies.txt -> Spyware.Cookie.Advertising : Cleaned with backup
:mozilla.98:C:\Documents and Settings\Nick H\Application Data\Mozilla\Firefox\Profiles\9jetwciu.default\cookies.txt -> Spyware.Cookie.Advertising : Cleaned with backup
:mozilla.99:C:\Documents and Settings\Nick H\Application Data\Mozilla\Firefox\Profiles\9jetwciu.default\cookies.txt -> Spyware.Cookie.Advertising : Cleaned with backup
:mozilla.100:C:\Documents and Settings\Nick H\Application Data\Mozilla\Firefox\Profiles\9jetwciu.default\cookies.txt -> Spyware.Cookie.Advertising : Cleaned with backup
:mozilla.101:C:\Documents and Settings\Nick H\Application Data\Mozilla\Firefox\Profiles\9jetwciu.default\cookies.txt -> Spyware.Cookie.Advertising : Cleaned with backup
:mozilla.102:C:\Documents and Settings\Nick H\Application Data\Mozilla\Firefox\Profiles\9jetwciu.default\cookies.txt -> Spyware.Cookie.Pointroll : Cleaned with backup
:mozilla.103:C:\Documents and Settings\Nick H\Application Data\Mozilla\Firefox\Profiles\9jetwciu.default\cookies.txt -> Spyware.Cookie.Pointroll : Cleaned with backup
:mozilla.104:C:\Documents and Settings\Nick H\Application Data\Mozilla\Firefox\Profiles\9jetwciu.default\cookies.txt -> Spyware.Cookie.Pointroll : Cleaned with backup
:mozilla.105:C:\Documents and Settings\Nick H\Application Data\Mozilla\Firefox\Profiles\9jetwciu.default\cookies.txt -> Spyware.Cookie.Pointroll : Cleaned with backup
:mozilla.108:C:\Documents and Settings\Nick H\Application Data\Mozilla\Firefox\Profiles\9jetwciu.default\cookies.txt -> Spyware.Cookie.Burstnet : Cleaned with backup
:mozilla.109:C:\Documents and Settings\Nick H\Application Data\Mozilla\Firefox\Profiles\9jetwciu.default\cookies.txt -> Spyware.Cookie.Burstnet : Cleaned with backup
:mozilla.110:C:\Documents and Settings\Nick H\Application Data\Mozilla\Firefox\Profiles\9jetwciu.default\cookies.txt -> Spyware.Cookie.Burstbeacon : Cleaned with backup
:mozilla.114:C:\Documents and Settings\Nick H\Application Data\Mozilla\Firefox\Profiles\9jetwciu.default\cookies.txt -> Spyware.Cookie.Serving-sys : Cleaned with backup
:mozilla.115:C:\Documents and Settings\Nick H\Application Data\Mozilla\Firefox\Profiles\9jetwciu.default\cookies.txt -> Spyware.Cookie.Serving-sys : Cleaned with backup
:mozilla.116:C:\Documents and Settings\Nick H\Application Data\Mozilla\Firefox\Profiles\9jetwciu.default\cookies.txt -> Spyware.Cookie.Serving-sys : Cleaned with backup
:mozilla.117:C:\Documents and Settings\Nick H\Application Data\Mozilla\Firefox\Profiles\9jetwciu.default\cookies.txt -> Spyware.Cookie.Serving-sys : Cleaned with backup
:mozilla.118:C:\Documents and Settings\Nick H\Application Data\Mozilla\Firefox\Profiles\9jetwciu.default\cookies.txt -> Spyware.Cookie.Serving-sys : Cleaned with backup
:mozilla.139:C:\Documents and Settings\Nick H\Application Data\Mozilla\Firefox\Profiles\9jetwciu.default\cookies.txt -> Spyware.Cookie.2o7 : Cleaned with backup
:mozilla.140:C:\Documents and Settings\Nick H\Application Data\Mozilla\Firefox\Profiles\9jetwciu.default\cookies.txt -> Spyware.Cookie.Yieldmanager : Cleaned with backup
:mozilla.141:C:\Documents and Settings\Nick H\Application Data\Mozilla\Firefox\Profiles\9jetwciu.default\cookies.txt -> Spyware.Cookie.Yieldmanager : Cleaned with backup
:mozilla.143:C:\Documents and Settings\Nick H\Application Data\Mozilla\Firefox\Profiles\9jetwciu.default\cookies.txt -> Spyware.Cookie.Bridgetrack : Cleaned with backup
:mozilla.144:C:\Documents and Settings\Nick H\Application Data\Mozilla\Firefox\Profiles\9jetwciu.default\cookies.txt -> Spyware.Cookie.Bridgetrack : Cleaned with backup
:mozilla.145:C:\Documents and Settings\Nick H\Application Data\Mozilla\Firefox\Profiles\9jetwciu.default\cookies.txt -> Spyware.Cookie.Bridgetrack : Cleaned with backup
:mozilla.146:C:\Documents and Settings\Nick H\Application Data\Mozilla\Firefox\Profiles\9jetwciu.default\cookies.txt -> Spyware.Cookie.Bridgetrack : Cleaned with backup
:mozilla.150:C:\Documents and Settings\Nick H\Application Data\Mozilla\Firefox\Profiles\9jetwciu.default\cookies.txt -> Spyware.Cookie.Hitbox : Cleaned with backup
:mozilla.151:C:\Documents and Settings\Nick H\Application Data\Mozilla\Firefox\Profiles\9jetwciu.default\cookies.txt -> Spyware.Cookie.Hitbox : Cleaned with backup
:mozilla.159:C:\Documents and Settings\Nick H\Application Data\Mozilla\Firefox\Profiles\9jetwciu.default\cookies.txt -> Spyware.Cookie.Hitbox : Cleaned with backup
:mozilla.160:C:\Documents and Settings\Nick H\Application Data\Mozilla\Firefox\Profiles\9jetwciu.default\cookies.txt -> Spyware.Cookie.Hitbox : Cleaned with backup
:mozilla.161:C:\Documents and Settings\Nick H\Application Data\Mozilla\Firefox\Profiles\9jetwciu.default\cookies.txt -> Spyware.Cookie.Hitbox : Cleaned with backup
:mozilla.162:C:\Documents and Settings\Nick H\Application Data\Mozilla\Firefox\Profiles\9jetwciu.default\cookies.txt -> Spyware.Cookie.Hitbox : Cleaned with backup
:mozilla.164:C:\Documents and Settings\Nick H\Application Data\Mozilla\Firefox\Profiles\9jetwciu.default\cookies.txt -> Spyware.Cookie.Tribalfusion : Cleaned with backup
:mozilla.165:C:\Documents and Settings\Nick H\Application Data\Mozilla\Firefox\Profiles\9jetwciu.default\cookies.txt -> Spyware.Cookie.Tribalfusion : Cleaned with backup
:mozilla.168:C:\Documents and Settings\Nick H\Application Data\Mozilla\Firefox\Profiles\9jetwciu.default\cookies.txt -> Spyware.Cookie.Centrport : Cleaned with backup
:mozilla.169:C:\Documents and Settings\Nick H\Application Data\Mozilla\Firefox\Profiles\9jetwciu.default\cookies.txt -> Spyware.Cookie.Centrport : Cleaned with backup
:mozilla.176:C:\Documents and Settings\Nick H\Application Data\Mozilla\Firefox\Profiles\9jetwciu.default\cookies.txt -> Spyware.Cookie.Specificclick : Cleaned with backup
:mozilla.177:C:\Documents and Settings\Nick H\Application Data\Mozilla\Firefox\Profiles\9jetwciu.default\cookies.txt -> Spyware.Cookie.Specificclick : Cleaned with backup
:mozilla.178:C:\Documents and Settings\Nick H\Application Data\Mozilla\Firefox\Profiles\9jetwciu.default\cookies.txt -> Spyware.Cookie.Specificclick : Cleaned with backup
:mozilla.179:C:\Documents and Settings\Nick H\Application Data\Mozilla\Firefox\Profiles\9jetwciu.default\cookies.txt -> Spyware.Cookie.Bluestreak : Cleaned with backup
:mozilla.187:C:\Documents and Settings\Nick H\Application Data\Mozilla\Firefox\Profiles\9jetwciu.default\cookies.txt -> Spyware.Cookie.Valueclick : Cleaned with backup
:mozilla.188:C:\Documents and Settings\Nick H\Application Data\Mozilla\Firefox\Profiles\9jetwciu.default\cookies.txt -> Spyware.Cookie.Valueclick : Cleaned with backup
C:\Documents and Settings\Nick H\Cookies\nick h@fastclick[1].txt -> Spyware.Cookie.Fastclick : Cleaned with backup
C:\System Volume Information\_restore{B37680B2-BA0A-4E5D-BF30-83E44C588624}\RP418\A0114957.ini:fhypm -> TrojanDownloader.Agent.bc : Cleaned with backup
C:\System Volume Information\_restore{B37680B2-BA0A-4E5D-BF30-83E44C588624}\RP418\A0114975.dll -> Spyware.SearchPage : Cleaned with backup
C:\System Volume Information\_restore{B37680B2-BA0A-4E5D-BF30-83E44C588624}\RP418\A0114976.exe -> Trojan.Agent.bi : Cleaned with backup
C:\System Volume Information\_restore{B37680B2-BA0A-4E5D-BF30-83E44C588624}\RP418\A0114981.ini:tdiok -> TrojanDownloader.Agent.bq : Cleaned with backup
C:\System Volume Information\_restore{B37680B2-BA0A-4E5D-BF30-83E44C588624}\RP418\A0114991.exe -> Trojan.Agent.bi : Cleaned with backup
C:\System Volume Information\_restore{B37680B2-BA0A-4E5D-BF30-83E44C588624}\RP418\A0114992.exe -> TrojanDownloader.Agent.bq : Cleaned with backup
C:\System Volume Information\_restore{B37680B2-BA0A-4E5D-BF30-83E44C588624}\RP418\A0114993.exe -> Trojan.Agent.bi : Cleaned with backup
C:\System Volume Information\_restore{B37680B2-BA0A-4E5D-BF30-83E44C588624}\RP418\A0115003.dll -> Spyware.SearchPage : Cleaned with backup
C:\System Volume Information\_restore{B37680B2-BA0A-4E5D-BF30-83E44C588624}\RP418\A0115007.exe -> Trojan.Agent.bi : Cleaned with backup
C:\System Volume Information\_restore{B37680B2-BA0A-4E5D-BF30-83E44C588624}\RP418\A0115008.exe -> Trojan.Agent.bi : Cleaned with backup
C:\System Volume Information\_restore{B37680B2-BA0A-4E5D-BF30-83E44C588624}\RP418\A0115018.dll -> Spyware.SearchPage : Cleaned with backup
C:\System Volume Information\_restore{B37680B2-BA0A-4E5D-BF30-83E44C588624}\RP418\A0115019.exe -> Trojan.Agent.bi : Cleaned with backup
C:\System Volume Information\_restore{B37680B2-BA0A-4E5D-BF30-83E44C588624}\RP418\A0115020.exe -> Trojan.Agent.bi : Cleaned with backup
C:\System Volume Information\_restore{B37680B2-BA0A-4E5D-BF30-83E44C588624}\RP418\A0115021.exe -> Trojan.Agent.bi : Cleaned with backup
C:\System Volume Information\_restore{B37680B2-BA0A-4E5D-BF30-83E44C588624}\RP418\A0115022.exe -> Backdoor.Netag : Cleaned with backup
C:\System Volume Information\_restore{B37680B2-BA0A-4E5D-BF30-83E44C588624}\RP418\A0115023.exe -> Trojan.Agent.bi : Cleaned with backup
C:\System Volume Information\_restore{B37680B2-BA0A-4E5D-BF30-83E44C588624}\RP418\A0115025.exe -> Trojan.Agent.bi : Cleaned with backup
C:\System Volume Information\_restore{B37680B2-BA0A-4E5D-BF30-83E44C588624}\RP418\A0115027.exe -> Trojan.Agent.bi : Cleaned with backup
C:\System Volume Information\_restore{B37680B2-BA0A-4E5D-BF30-83E44C588624}\RP418\A0115028.exe -> Trojan.Agent.bi : Cleaned with backup
C:\System Volume Information\_restore{B37680B2-BA0A-4E5D-BF30-83E44C588624}\RP419\A0115037.dll -> Spyware.SearchPage : Cleaned with backup
C:\System Volume Information\_restore{B37680B2-BA0A-4E5D-BF30-83E44C588624}\RP419\A0115038.exe -> Trojan.Agent.bi : Cleaned with backup
C:\System Volume Information\_restore{B37680B2-BA0A-4E5D-BF30-83E44C588624}\RP419\A0115039.exe -> Trojan.Agent.bi : Cleaned with backup
C:\System Volume Information\_restore{B37680B2-BA0A-4E5D-BF30-83E44C588624}\RP419\A0115040.exe -> TrojanDownloader.Agent.bq : Cleaned with backup
C:\System Volume Information\_restore{B37680B2-BA0A-4E5D-BF30-83E44C588624}\RP419\A0115041.exe -> Trojan.Agent.bi : Cleaned with backup
C:\System Volume Information\_restore{B37680B2-BA0A-4E5D-BF30-83E44C588624}\RP419\A0115042.exe -> Backdoor.Netag : Cleaned with backup
C:\System Volume Information\_restore{B37680B2-BA0A-4E5D-BF30-83E44C588624}\RP419\A0115043.exe -> Trojan.Agent.bi : Cleaned with backup
C:\System Volume Information\_restore{B37680B2-BA0A-4E5D-BF30-83E44C588624}\RP419\A0115044.exe -> Trojan.Agent.bi : Cleaned with backup
C:\System Volume Information\_restore{B37680B2-BA0A-4E5D-BF30-83E44C588624}\RP419\A0115045.exe -> Trojan.Agent.bi : Cleaned with backup
C:\System Volume Information\_restore{B37680B2-BA0A-4E5D-BF30-83E44C588624}\RP419\A0115046.exe -> TrojanDownloader.Agent.bq : Cleaned with backup
C:\System Volume Information\_restore{B37680B2-BA0A-4E5D-BF30-83E44C588624}\RP419\A0115047.exe -> Trojan.Agent.bi : Cleaned with backup
C:\System Volume Information\_restore{B37680B2-BA0A-4E5D-BF30-83E44C588624}\RP419\A0115048.exe -> Trojan.Agent.bi : Cleaned with backup
C:\System Volume Information\_restore{B37680B2-BA0A-4E5D-BF30-83E44C588624}\RP419\A0115049.exe -> Trojan.Agent.bi : Cleaned with backup
C:\System Volume Information\_restore{B37680B2-BA0A-4E5D-BF30-83E44C588624}\RP419\A0115050.exe -> Backdoor.Netag : Cleaned with backup
C:\System Volume Information\_restore{B37680B2-BA0A-4E5D-BF30-83E44C588624}\RP419\A0115051.exe -> Trojan.Agent.bi : Cleaned with backup
C:\System Volume Information\_restore{B37680B2-BA0A-4E5D-BF30-83E44C588624}\RP419\A0115052.exe -> Trojan.Agent.bi : Cleaned with backup
C:\System Volume Information\_restore{B37680B2-BA0A-4E5D-BF30-83E44C588624}\RP419\A0115053.exe -> TrojanDownloader.Agent.bq : Cleaned with backup
C:\System Volume Information\_restore{B37680B2-BA0A-4E5D-BF30-83E44C588624}\RP419\A0115054.exe -> TrojanDownloader.Agent.bq : Cleaned with backup
C:\System Volume Information\_restore{B37680B2-BA0A-4E5D-BF30-83E44C588624}\RP419\A0115055.exe -> Backdoor.Netag : Cleaned with backup
C:\System Volume Information\_restore{B37680B2-BA0A-4E5D-BF30-83E44C588624}\RP419\A0115056.exe -> Trojan.Agent.bi : Cleaned with backup
C:\System Volume Information\_restore{B37680B2-BA0A-4E5D-BF30-83E44C588624}\RP419\A0115057.exe -> Trojan.Agent.bi : Cleaned with backup
C:\System Volume Information\_restore{B37680B2-BA0A-4E5D-BF30-83E44C588624}\RP419\A0115058.exe -> Trojan.Agent.bi : Cleaned with backup
C:\System Volume Information\_restore{B37680B2-BA0A-4E5D-BF30-83E44C588624}\RP419\A0115059.exe -> Trojan.Agent.bi : Cleaned with backup
C:\System Volume Information\_restore{B37680B2-BA0A-4E5D-BF30-83E44C588624}\RP419\A0115060.exe -> Trojan.Agent.bi : Cleaned with backup
C:\System Volume Information\_restore{B37680B2-BA0A-4E5D-BF30-83E44C588624}\RP419\A0115061.exe -> Trojan.Agent.bi : Cleaned with backup
C:\System Volume Information\_restore{B37680B2-BA0A-4E5D-BF30-83E44C588624}\RP419\A0115062.exe -> Trojan.Agent.bi : Cleaned with backup
C:\System Volume Information\_restore{B37680B2-BA0A-4E5D-BF30-83E44C588624}\RP419\A0115063.exe -> Trojan.Agent.bi : Cleaned with backup
C:\System Volume Information\_restore{B37680B2-BA0A-4E5D-BF30-83E44C588624}\RP419\A0115064.exe -> Trojan.Agent.bi : Cleaned with backup
C:\System Volume Information\_restore{B37680B2-BA0A-4E5D-BF30-83E44C588624}\RP419\A0115065.exe -> Backdoor.Netag : Cleaned with backup
C:\System Volume Information\_restore{B37680B2-BA0A-4E5D-BF30-83E44C588624}\RP419\A0115066.exe -> Trojan.Agent.bi : Cleaned with backup
C:\System Volume Information\_restore{B37680B2-BA0A-4E5D-BF30-83E44C588624}\RP419\A0115067.exe -> Trojan.Agent.bi : Cleaned with backup
C:\System Volume Information\_restore{B37680B2-BA0A-4E5D-BF30-83E44C588624}\RP419\A0115068.dll -> TrojanDownloader.Agent.bc : Cleaned with backup
C:\System Volume Information\_restore{B37680B2-BA0A-4E5D-BF30-83E44C588624}\RP419\A0115087.ini:fhypm -> TrojanDownloader.Agent.bc : Cleaned with backup
C:\System Volume Information\_restore{B37680B2-BA0A-4E5D-BF30-83E44C588624}\RP419\A0115090.dll -> TrojanDownloader.Agent.bc : Cleaned with backup
C:\WINDOWS\addac.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addad32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addah.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addah32.exe -> Backdoor.Netag : Cleaned with backup
C:\WINDOWS\addai32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addaj.exe -> Backdoor.Netag : Cleaned with backup
C:\WINDOWS\addal32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addao32.dll -> TrojanDownloader.Agent.bc : Cleaned with backup
C:\WINDOWS\addav32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addaz32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addbe32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addbf.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addbg.exe -> TrojanDownloader.Agent.bq : Cleaned with backup
C:\WINDOWS\addbm32.exe -> TrojanDownloader.Agent.bq : Cleaned with backup
C:\WINDOWS\addbo.exe -> TrojanDownloader.Agent.bq : Cleaned with backup
C:\WINDOWS\addby.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addcc.exe -> TrojanDownloader.Agent.bq : Cleaned with backup
C:\WINDOWS\addce.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addcj32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addcm.exe -> TrojanDownloader.Agent.bq : Cleaned with backup
C:\WINDOWS\addcm32.exe -> TrojanDownloader.Agent.bq : Cleaned with backup
C:\WINDOWS\addco32.dll -> TrojanDownloader.Agent.bc : Cleaned with backup
C:\WINDOWS\addcr.dll -> TrojanDownloader.Agent.bc : Cleaned with backup
C:\WINDOWS\addcu32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addcv.dll -> TrojanDownloader.Agent.bc : Cleaned with backup
C:\WINDOWS\addcw32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addcy32.dll -> TrojanDownloader.Agent.bc : Cleaned with backup
C:\WINDOWS\addcz.exe -> TrojanDownloader.Agent.bq : Cleaned with backup
C:\WINDOWS\addda.dll -> TrojanDownloader.Agent.bc : Cleaned with backup
C:\WINDOWS\adddb32.dll -> TrojanDownloader.Agent.bc : Cleaned with backup
C:\WINDOWS\adddd.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\adddd32.dll -> TrojanDownloader.Agent.bc : Cleaned with backup
C:\WINDOWS\adddf.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\adddh.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\adddi.dll -> TrojanDownloader.Agent.bc : Cleaned with backup
C:\WINDOWS\adddi.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\adddi32.dll -> TrojanDownloader.Agent.bc : Cleaned with backup
C:\WINDOWS\adddj.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\adddo.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\adddo32.exe -> TrojanDownloader.Agent.bq : Cleaned with backup
C:\WINDOWS\adddu.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addee32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addej32.dll -> TrojanDownloader.Agent.bc : Cleaned with backup
C:\WINDOWS\addew32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addfa.dll -> TrojanDownloader.Agent.bc : Cleaned with backup
C:\WINDOWS\addfc.exe -> TrojanDownloader.Agent.bq : Cleaned with backup
C:\WINDOWS\addfh.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addfi32.exe -> TrojanDownloader.Agent.bq : Cleaned with backup
C:\WINDOWS\addfk.dll -> TrojanDownloader.Agent.bc : Cleaned with backup
C:\WINDOWS\addfp32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addfr.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addfs.dll -> TrojanDownloader.Agent.bc : Cleaned with backup
C:\WINDOWS\addfs.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addfz32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addgb.dll -> TrojanDownloader.Agent.bc : Cleaned with backup
C:\WINDOWS\addgn32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addgx32.exe -> Backdoor.Netag : Cleaned with backup
C:\WINDOWS\addhg32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addhj.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addhk32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addhn32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addho.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addia32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addil32.exe -> Backdoor.Netag : Cleaned with backup
C:\WINDOWS\addim.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addio32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addit.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addit32.dll -> TrojanDownloader.Agent.bc : Cleaned with backup
C:\WINDOWS\addit32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addiu.dll -> TrojanDownloader.Agent.bc : Cleaned with backup
C:\WINDOWS\addiu32.dll -> TrojanDownloader.Agent.bc : Cleaned with backup
C:\WINDOWS\addiw32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addiz.dll -> TrojanDownloader.Agent.bc : Cleaned with backup
C:\WINDOWS\addjg.dll -> TrojanDownloader.Agent.bc : Cleaned with backup
C:\WINDOWS\addjg.exe -> TrojanDownloader.Agent.bq : Cleaned with backup
C:\WINDOWS\addjj32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addjm32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addjs.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addjx.exe -> TrojanDownloader.Agent.bq : Cleaned with backup
C:\WINDOWS\addjx32.dll -> TrojanDownloader.Agent.bc : Cleaned with backup
C:\WINDOWS\addjy32.dll -> TrojanDownloader.Agent.bc : Cleaned with backup
C:\WINDOWS\addjz.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addkc.exe -> TrojanDownloader.Agent.bq : Cleaned with backup
C:\WINDOWS\addkc32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addkd.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addkg.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addko32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addkq32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addkt.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addkt32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addku.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addlh.exe -> TrojanDownloader.Agent.bq : Cleaned with backup
C:\WINDOWS\addli.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addlo.exe -> TrojanDownloader.Agent.bq : Cleaned with backup
C:\WINDOWS\addlr.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addls32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addlv.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addlv32.exe -> TrojanDownloader.Agent.bq : Cleaned with backup
C:\WINDOWS\addme32.exe -> Backdoor.Netag : Cleaned with backup
C:\WINDOWS\addmf.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addml.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addmm32.exe -> TrojanDownloader.Agent.bq : Cleaned with backup
C:\WINDOWS\addmr32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addmz32.exe -> TrojanDownloader.Agent.bq : Cleaned with backup
C:\WINDOWS\addnd32.exe -> TrojanDownloader.Agent.bq : Cleaned with backup
C:\WINDOWS\addne.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addnf32.exe -> TrojanDownloader.Agent.bq : Cleaned with backup
C:\WINDOWS\addng.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addnn.exe -> TrojanDownloader.Agent.bq : Cleaned with backup
C:\WINDOWS\addny.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addnz.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addod.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addoe32.exe -> Backdoor.Netag : Cleaned with backup
C:\WINDOWS\addoh.exe -> Backdoor.Netag : Cleaned with backup
C:\WINDOWS\addol.dll -> TrojanDownloader.Agent.bc : Cleaned with backup
C:\WINDOWS\addop.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addos.exe -> Backdoor.Netag : Cleaned with backup
C:\WINDOWS\addot32.exe -> TrojanDownloader.Agent.bq : Cleaned with backup
C:\WINDOWS\addoy.exe -> TrojanDownloader.Agent.bq : Cleaned with backup
C:\WINDOWS\addpa.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addpl32.dll -> TrojanDownloader.Agent.bc : Cleaned with backup
C:\WINDOWS\addpq32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addps32.dll -> TrojanDownloader.Agent.bc : Cleaned with backup
C:\WINDOWS\addpv32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addpw.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addpy32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addpz.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addpz32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addqa32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addqc.exe -> Backdoor.Netag : Cleaned with backup
C:\WINDOWS\addqc32.exe -> Backdoor.Netag : Cleaned with backup
C:\WINDOWS\addqf32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addqj32.exe -> Backdoor.Netag : Cleaned with backup
C:\WINDOWS\addql.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addqm.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addqn.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addqv32.exe -> TrojanDownloader.Agent.bq : Cleaned with backup
C:\WINDOWS\addre32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addrk32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addro.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addrs32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addrw.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addry.exe -> TrojanDownloader.Agent.bq : Cleaned with backup
C:\WINDOWS\addry32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addsh32.dll -> TrojanDownloader.Agent.bc : Cleaned with backup
C:\WINDOWS\addsh32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addsm.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addss.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addtc.exe -> TrojanDownloader.Agent.bq : Cleaned with backup
C:\WINDOWS\addtg.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addtl.dll -> TrojanDownloader.Agent.bc : Cleaned with backup
C:\WINDOWS\addtv32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addtw.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addtx32.dll -> TrojanDownloader.Agent.bc : Cleaned with backup
C:\WINDOWS\addue.dll -> TrojanDownloader.Agent.bc : Cleaned with backup
C:\WINDOWS\adduk32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\adduo32.exe -> TrojanDownloader.Agent.bq : Cleaned with backup
C:\WINDOWS\adduq32.exe -> TrojanDownloader.Agent.bq : Cleaned with backup
C:\WINDOWS\addvb.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addvf.exe -> Backdoor.Netag : Cleaned with backup
C:\WINDOWS\addvk.exe -> TrojanDownloader.Agent.bq : Cleaned with backup
C:\WINDOWS\addvk32.exe -> TrojanDownloader.Agent.bq : Cleaned with backup
C:\WINDOWS\addvl32.exe -> TrojanDownloader.Agent.bq : Cleaned with backup
C:\WINDOWS\addvq.exe -> TrojanDownloader.Agent.bq : Cleaned with backup
C:\WINDOWS\addvs32.exe -> TrojanDownloader.Agent.bq : Cleaned with backup
C:\WINDOWS\addvu.exe -> TrojanDownloader.Agent.bq : Cleaned with backup
C:\WINDOWS\addvz.exe -> TrojanDownloader.Agent.bq : Cleaned with backup
C:\WINDOWS\addvz32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addwe32.exe -> Backdoor.Netag : Cleaned with backup
C:\WINDOWS\addwi32.exe -> TrojanDownloader.Agent.bq : Cleaned with backup
C:\WINDOWS\addwo.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addwp.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addwv.exe -> TrojanDownloader.Agent.bq : Cleaned with backup
C:\WINDOWS\addxk.exe -> TrojanDownloader.Agent.bq : Cleaned with backup
C:\WINDOWS\addxp32.exe -> TrojanDownloader.Agent.bq : Cleaned with backup
C:\WINDOWS\addxq32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addxy32.exe -> TrojanDownloader.Agent.bq : Cleaned with backup
C:\WINDOWS\addxz.dll -> TrojanDownloader.Agent.bc : Cleaned with backup
C:\WINDOWS\addyc.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addyc32.exe -> Backdoor.Netag : Cleaned with backup
C:\WINDOWS\addyd32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addyg.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addyh32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addyj.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addyj32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addyp.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addyw32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addza32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addzb32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addzc32.dll -> TrojanDownloader.Agent.bc : Cleaned with backup
C:\WINDOWS\addzi32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addzj.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addzj32.dll -> TrojanDownloader.Agent.bc : Cleaned with backup
C:\WINDOWS\addzk.dll -> TrojanDownloader.Agent.bc : Cleaned with backup
C:\WINDOWS\addzm.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addzn.exe -> Backdoor.Netag : Cleaned with backup
C:\WINDOWS\addzp32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addzw.dll -> TrojanDownloader.Agent.bc : Cleaned with backup
C:\WINDOWS\addzx32.exe -> TrojanDownloader.Agent.bq : Cleaned with backup
C:\WINDOWS\addzy.exe -> TrojanDownloader.Agent.bq : Cleaned with backup
C:\WINDOWS\addzy32.exe -> Backdoor.Netag : Cleaned with backup
C:\WINDOWS\aootq.log:dnqds -> TrojanDownloader.Agent.bc : Cleaned with backup
C:\WINDOWS\aootq.log:nvmdg -> TrojanDownloader.Agent.bc : Cleaned with backup
C:\WINDOWS\aootq.log:sbile -> TrojanDownloader.Agent.bq : Cleaned with backup
C:\WINDOWS\aoszv.dat:yrqyc -> TrojanDownloader.Agent.bc : Cleaned with backup
C:\WINDOWS\apdzi.log:snius -> TrojanDownloader.Agent.bc : Cleaned with backup
C:\WINDOWS\apdzi.log:xwiqz -> TrojanDownloader.Agent.bc : Cleaned with backup
C:\WINDOWS\apiae.exe -> TrojanDownloader.Agent.bq : Cleaned with backup
C:\WINDOWS\apiak.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apial32.dll -> TrojanDownloader.Agent.bc : Cleaned with backup
C:\WINDOWS\apiat.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apiau.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apibe32.dll -> TrojanDownloader.Agent.bc : Cleaned with backup
C:\WINDOWS\apibg.dll -> TrojanDownloader.Agent.bc : Cleaned with backup
C:\WINDOWS\apibj.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apibn32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apibq.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apiby.exe -> TrojanDownloader.Agent.bq : Cleaned with backup
C:\WINDOWS\apice.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apici.exe -> TrojanDownloader.Agent.bq : Cleaned with backup
C:\WINDOWS\apicj32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apicn32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apicv32.exe -> Backdoor.Netag : Cleaned with backup
C:\WINDOWS\apidc.exe -> TrojanDownloader.Agent.bq : Cleaned with backup
C:\WINDOWS\apide.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apide32.exe -> TrojanDownloader.Agent.bq : Cleaned with backup
C:\WINDOWS\apidj32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apidn32.dll -> TrojanDownloader.Agent.bc : Cleaned with backup
C:\WINDOWS\apidp.exe -> Backdoor.Netag : Cleaned with backup
C:\WINDOWS\apidr.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apidw32.dll -> TrojanDownloader.Agent.bc : Cleaned with backup
C:\WINDOWS\apiec32.exe -> TrojanDownloader.Agent.bq : Cleaned with backup
C:\WINDOWS\apied.exe -> Backdoor.Netag : Cleaned with backup
C:\WINDOWS\apiew.dll -> TrojanDownloader.Agent.bc : Cleaned with backup
C:\WINDOWS\apiey.exe -> TrojanDownloader.Agent.bq : Cleaned with backup
C:\WINDOWS\apifh.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apifl32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apifm32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apifo.dll -> TrojanDownloader.Agent.bc : Cleaned with backup
C:\WINDOWS\apifu32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apifx.exe -> Backdoor.Netag : Cleaned with backup
C:\WINDOWS\apify32.dll -> TrojanDownloader.Agent.bc : Cleaned with backup
C:\WINDOWS\apigf32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apigh.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apigj32.exe -> TrojanDownloader.Agent.bq : Cleaned with backup
C:\WINDOWS\apigm.dll -> TrojanDownloader.Agent.bc : Cleaned with backup
C:\WINDOWS\apign.dll -> TrojanDownloader.Agent.bc : Cleaned with backup
C:\WINDOWS\apigo.dll -> TrojanDownloader.Agent.bc : Cleaned with backup
C:\WINDOWS\apigo.exe -> TrojanDownloader.Agent.bq : Cleaned with backup
C:\WINDOWS\apigq.exe -> TrojanDownloader.Agent.bq : Cleaned with backup
C:\WINDOWS\apigq32.dll -> TrojanDownloader.Agent.bc : Cleaned with backup
C:\WINDOWS\apigs.exe -> TrojanDownloader.Agent.bq : Cleaned with backup
C:\WINDOWS\apigs32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apiha32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apihe32.dll -> TrojanDownloader.Agent.bc : Cleaned with backup
C:\WINDOWS\apihj.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apiho.exe -> Backdoor.Netag : Cleaned with backup
C:\WINDOWS\apihq.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apihv32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apihw.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apihy32.dll -> TrojanDownloader.Agent.bc : Cleaned with backup
C:\WINDOWS\apiib.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apiie.exe -> Backdoor.Netag : Cleaned with backup
C:\WINDOWS\apiil32.dll -> TrojanDownloader.Agent.bc : Cleaned with backup
C:\WINDOWS\apiis32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apiiu32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apiiv.exe -> TrojanDownloader.Agent.bq : Cleaned with backup
C:\WINDOWS\apiiz32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apiju.exe -> TrojanDownloader.Agent.bq : Cleaned with backup
C:\WINDOWS\apiju32.dll -> TrojanDownloader.Agent.bc : Cleaned with backup
C:\WINDOWS\apijz32.exe -> TrojanDownloader.Agent.bq : Cleaned with backup
C:\WINDOWS\apikb.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apikh.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apiki32.exe -> TrojanDownloader.Agent.bq : Cleaned with backup
C:\WINDOWS\apikj.dll -> TrojanDownloader.Agent.bc : Cleaned with backup
C:\WINDOWS\apikj.exe -> Backdoor.Netag : Cleaned with backup
C:\WINDOWS\apikk32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apikr32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apiky32.dll -> TrojanDownloader.Agent.bc : Cleaned with backup
C:\WINDOWS\apilf32.dll -> TrojanDownloader.Agent.bc : Cleaned with backup
C:\WINDOWS\apilh.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apilm.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apils.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apilt32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apilz32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apima32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apimc32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apimf32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apimj32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apimr.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apims32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apimv.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apimv32.dll -> TrojanDownloader.Agent.bc : Cleaned with backup
C:\WINDOWS\apinb.exe -> TrojanDownloader.Agent.bq : Cleaned with backup
C:\WINDOWS\apine32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apinf.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apinm.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apino.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apinp.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apinr.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apinr32.exe -> Backdoor.Netag : Cleaned with backup
C:\WINDOWS\apiny.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apinz.dll -> TrojanDownloader.Agent.bc : Cleaned with backup
C:\WINDOWS\apinz.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apioe32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apiog32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apiok.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apiok32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apiot.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apiou32.dll -> TrojanDownloader.Agent.bc : Cleaned with backup
C:\WINDOWS\apiow32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apioy.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apioy32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apipd32.dll -> TrojanDownloader.Agent.bc : Cleaned with backup
C:\WINDOWS\apipd32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apipe.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apipm.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apipn.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apipt32.dll -> TrojanDownloader.Agent.bc : Cleaned with backup
C:\WINDOWS\apipu.dll -> TrojanDownloader.Agent.bc : Cleaned with backup
C:\WINDOWS\apiqe32.dll -> TrojanDownloader.Agent.bc : Cleaned with backup
C:\WINDOWS\apiqj32.dll -> TrojanDownloader.Agent.bc : Cleaned with backup
C:\WINDOWS\apiql.exe -> TrojanDownloader.Agent.bq : Cleaned with backup
C:\WINDOWS\apiqo.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apiqq.exe -> TrojanDownloader.Agent.bq : Cleaned with backup
C:\WINDOWS\apiqr.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apiqt.dll -> TrojanDownloader.Agent.bc : Cleaned with backup
C:\WINDOWS\apiqt.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apiqu.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apiqv32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apiqy32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apirf32.dll -> TrojanDownloader.Agent.bc : Cleaned with backup
C:\WINDOWS\apirh.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apiri.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apirl32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apirn32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apirs.exe -> Backdoor.Netag : Cleaned with backup
C:\WINDOWS\apisd32.exe -> Backdoor.Netag : Cleaned with backup
C:\WINDOWS\apisf32.dll -> TrojanDownloader.Agent.bc : Cleaned with backup
C:\WINDOWS\apisp32.exe -> Backdoor.Netag : Cleaned with backup
C:\WINDOWS\apisq32.exe -> TrojanDownloader.Agent.bq : Cleaned with backup
C:\WINDOWS\apisv.exe -> TrojanDownloader.Agent.bq : Cleaned with backup
C:\WINDOWS\apisw32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apita.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apitc32.dll -> TrojanDownloader.Agent.bc : Cleaned with backup
C:\WINDOWS\apitr32.exe -> TrojanDownloader.Agent.bq : Cleaned with backup
C:\WINDOWS\apitt32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apitu.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apity.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apiua.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apiug.exe -> TrojanDownloader.Agent.bq : Cleaned with backup
C:\WINDOWS\apiuh.exe -> Backdoor.Netag : Cleaned with backup
C:\WINDOWS\apiuk32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apiul.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apiuu32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apiuw.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apiuy32.dll -> TrojanDownloader.Agent.bc : Cleaned with backup
C:\WINDOWS\apivd.exe -> TrojanDownloader.Agent.bq : Cleaned with backup
C:\WINDOWS\apivh.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apivi.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apivq32.exe -> TrojanDownloader.Agent.bq : Cleaned with backup
C:\WINDOWS\apivs32.dll -> TrojanDo
  • 0






Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP