Ya tengo el logfile del escaneo del Adware.... ufff... salen más de los que tenía antes.... podéis ayudarme!??
Lavasoft Ad-aware Professional Build 158
Logfile created on :sábado, 10 de abril de 2004 21:23:13
Using reference-file :0R150 05.07.2003
______________________________________________________
Reffile status:
=========================
Reference file loaded:
Reference Number : 01R04 27.01.2003
Internal build : 6
File location : C:\ARCHIVOS DE PROGRAMA\LAVASOFT\AD-
AWARE 6\reflist.ref
Total size : 153846 Bytes
Signature data size : 150039 Bytes
Reference data size : 3743 Bytes
Signatures total : 3806
Target categories : 6
Target families : 71
10-04-04 21:15:16 Performing Webupdate...
10-04-04 21:15:21 Update aborted by user...
No updates installed.
10-04-04 21:15:35 Performing Webupdate...
Installing Update...
Reference file loaded:
Reference Number : 0R150 05.07.2003
Internal build : 683
File location : C:\ARCHIVOS DE PROGRAMA\LAVASOFT\AD-
AWARE 6\reflist.ref
Total size : 417692 Bytes
Signature data size : 409063 Bytes
Reference data size : 8565 Bytes
Signatures total : 9637
Target categories : 6
Target families : 197
10-04-04 21:15:49 Success.
Update successfully downlodaded and installed.
Memory + processor status:
==========================
Number of processors : 1
Processor architecture : Intel Pentium IV
Memory available:0 %
Total physical memory:130140 kb
Available physical memory:2208 kb
Total page file size:1417504 kb
Available on page file:1208848 kb
Total virtual memory:2093056 kb
Available virtual memory:2054592 kb
OS:Windows (98)
Ad-aware Settings
=========================
Set : Activate in-depth scan
Set : Safe mode (always request confirmation)
Set : Scan active processes
Set : Scan registry
Set : Deep scan registry
Set : Scan within archives
Extended Ad-aware Settings
=========================
Set : Unload recognized processes during scanning
Set : Include info about ignored objects in logfile, if detected in scan
Set : Include basic Ad-aware settings in logfile
Set : Include additional Ad-aware settings in logfile
Set : Include used command line parameters in logfile
Set : Automatically mark all objects in result list
Set : XP/2000: Allow unloading explorer to unload shell extensions prior deletion)
Set : Let windows remove files in use at next reboot
Set : Delete quarantined objects after restoring
Set : Block Popups and banned sites
Set : Automatically pop up event log if event occours
Set : Show splash screen
Set : Always back up reference file, before updating
Set : Play sound if scan produced a result
Listing running processes
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
#:1 [kernel32.dll]
FilePath : C:\WINDOWS\SYSTEM\
ProcessID : 4293904281
Threads : 4
Priority : High
FileSize : 468 KB
FileVersion : 4.10.2222
ProductVersion : 4.10.2222
Copyright : Copyright (C) Microsoft Corp. 1991-1999
CompanyName : Microsoft Corporation
FileDescription : Componente del n cleo del kernel Win32
InternalName : KERNEL32
OriginalFilename : KERNEL32.DLL
ProductName : Sistema operativo Microsoft(R) Windows(R)
Created on : 01/01/01
Last accessed : 09/04/04 22:00:00
Last modified : 05/05/99 20:22:00
#:2 [msgsrv32.exe]
FilePath : C:\WINDOWS\SYSTEM\
ProcessID : 4292883213
Threads : 1
Priority : Normal
FileSize : 11 KB
FileVersion : 4.10.2222
ProductVersion : 4.10.2222
Copyright : Copyright (C) Microsoft Corp. 1992-1998
CompanyName : Microsoft Corporation
FileDescription : Servidor de mensajes VxD de 32 bits de Windows
InternalName : MSGSRV32
OriginalFilename : MSGSRV32.EXE
ProductName : Sistema operativo Microsoft(R) Windows(R)
Created on : 01/01/01
Last accessed : 09/04/04 22:00:00
Last modified : 05/05/99 20:22:00
#:3 [mprexe.exe]
FilePath : C:\WINDOWS\SYSTEM\
ProcessID : 4292871933
Threads : 1
Priority : Normal
FileSize : 28 KB
FileVersion : 4.10.1998
ProductVersion : 4.10.1998
Copyright : Copyright (C) Microsoft Corp. 1993-1998
CompanyName : Microsoft Corporation
FileDescription : WIN32 Network Interface Service Process
InternalName : MPREXE
OriginalFilename : MPREXE.EXE
ProductName : Microsoft(R) Windows(R) Operating System
Created on : 01/01/01
Last accessed : 09/04/04 22:00:00
Last modified : 05/05/99 20:22:00
#:4 [mmtask.tsk]
FilePath : C:\WINDOWS\SYSTEM\
ProcessID : 4292896377
Threads : 1
Priority : Normal
FileSize : 1 KB
FileVersion : 4.03.1998
ProductVersion : 4.03.1998
Copyright : Copyright Microsoft Corp. 1991-1998
CompanyName : Microsoft Corporation
FileDescription : Multimedia background task support module
InternalName : mmtask.tsk
OriginalFilename : mmtask.tsk
ProductName : Microsoft Windows
Created on : 01/01/01
Last accessed : 09/04/04 22:00:00
Last modified : 05/05/99 20:22:00
#:5 [mstask.exe]
FilePath : C:\WINDOWS\SYSTEM\
ProcessID : 4292919173
Threads : 2
Priority : Normal
FileSize : 110 KB
FileVersion : 4.71.1968.1
ProductVersion : 4.71.1968.1
Copyright : Copyright (C) Microsoft Corp. 2000
CompanyName : Microsoft Corporation
FileDescription : Motor de Programador de tareas
InternalName : TaskScheduler
OriginalFilename : mstask.exe
ProductName : Programador de tareas de Microsoft Windows
Created on : 18/10/03 10:45:22
Last accessed : 09/04/04 22:00:00
Last modified : 18/10/03 10:45:24
#:6 [sagent2.exe]
FilePath : C:\ARCHIVOS DE PROGRAMA\ARCHIVOS COMUNES\EPSON\EBAPI\
ProcessID : 4292906305
Threads : 8
Priority : Normal
FileSize : 88 KB
FileVersion : 2, 2, 0, 0
ProductVersion : 1, 0, 0, 0
Copyright : Copyright (C) SEIKO EPSON CORP. 2000-2001
CompanyName : SEIKO EPSON CORPORATION
FileDescription : EPSON Printer Status Agent
InternalName : SAgent2
OriginalFilename : SAgent2.exe
ProductName : EPSON Bidirectional Printer
Created on : 13/10/02 12:42:52
Last accessed : 09/04/04 22:00:00
Last modified : 25/10/01 0:02:00
#:7 [imon98.exe]
FilePath : C:\PROGRAM FILES\INTEL\INTEL(R) ACTIVE MONITOR\
ProcessID : 4292910853
Threads : 2
Priority : Normal
FileSize : 60 KB
FileVersion : 1.1.1.113
ProductVersion : 1, 0, 0, 1
Copyright : Copyright Intel Corp. 2000
CompanyName : Intel Corp.
FileDescription : Intel(R) Active Monitor Win9x Background Service
InternalName : imon98
OriginalFilename : imon98.exe
ProductName : Intel(R) Active Monitor
Created on : 01/08/01 21:50:35
Last accessed : 09/04/04 22:00:00
Last modified : 01/02/01 12:22:42
#:8 [ccsetmgr.exe]
FilePath : C:\ARCHIVOS DE PROGRAMA\ARCHIVOS COMUNES\SYMANTEC SHARED\
ProcessID : 4292927089
Threads : 14
Priority : Normal
FileSize : 229 KB
FileVersion : 2.0.0.635
ProductVersion : 2.0.0.635
Copyright : Copyright (c) 2000-2003 Symantec Corporation. All rights reserved.
CompanyName : Symantec Corporation
FileDescription : Common Client Settings Manager Service
InternalName : ccSetMgr
OriginalFilename : ccSetMgr.exe
ProductName : Common Client
Created on : 10/10/03 9:11:50
Last accessed : 09/04/04 22:00:00
Last modified : 10/10/03 9:11:50
#:9 [ccevtmgr.exe]
FilePath : C:\ARCHIVOS DE PROGRAMA\ARCHIVOS COMUNES\SYMANTEC SHARED\
ProcessID : 4292963909
Threads : 30
Priority : Normal
FileSize : 249 KB
FileVersion : 2.0.0.635
ProductVersion : 2.0.0.635
Copyright : Copyright (c) 2000-2003 Symantec Corporation. All rights reserved.
CompanyName : Symantec Corporation
FileDescription : Common Client Event Manager Service
InternalName : ccEvtMgr
OriginalFilename : ccEvtMgr.exe
ProductName : Common Client
Created on : 10/10/03 9:11:48
Last accessed : 09/04/04 22:00:00
Last modified : 10/10/03 9:11:48
#:10 [explorer.exe]
FilePath : C:\WINDOWS\
ProcessID : 4292959297
Threads : 7
Priority : Normal
FileSize : 176 KB
FileVersion : 4.72.3110.1
ProductVersion : 4.72.3110.1
Copyright : (C) Microsoft Corporation 1981-1997
CompanyName : Microsoft Corporation
FileDescription : Explorador de Windows
InternalName : explorer
OriginalFilename : EXPLORER.EXE
ProductName : Sistema operativo Microsoft(R) Windows NT(R)
Created on : 05/05/99 20:22:00
Last accessed : 09/04/04 22:00:00
Last modified : 05/05/99 20:22:00
#:11 [rnaapp.exe]
FilePath : C:\WINDOWS\SYSTEM\
ProcessID : 4293071465
Threads : 3
Priority : Normal
FileSize : 44 KB
FileVersion : 4.10.2222
ProductVersion : 4.10.2222
Copyright : Copyright (C) Microsoft Corp. 1992-1996
CompanyName : Microsoft Corporation
FileDescription : Aplicaci n Acceso telef nico a redes
InternalName : RNAAPP
OriginalFilename : RNAAPP.EXE
ProductName : Sistema operativo Microsoft(R) Windows(R)
Created on : 24/01/04 15:01:15
Last accessed : 09/04/04 22:00:00
Last modified : 05/05/99 20:22:00
#:12 [tapisrv.exe]
FilePath : C:\WINDOWS\SYSTEM\
ProcessID : 4293097697
Threads : 5
Priority : Normal
FileSize : 120 KB
FileVersion : 4.10.2222
ProductVersion : 4.10.2222
Copyright : Copyright (C) Microsoft Corp. 1994-1998
CompanyName : Microsoft Corporation
FileDescription : Servidor de telefon a de Microsoft Windows(TM)
InternalName : Servicio de telefon a
OriginalFilename : TAPISRV.EXE
ProductName : Sistema operativo Microsoft(R) Windows(R)
Created on : 01/01/01
Last accessed : 09/04/04 22:00:00
Last modified : 05/05/99 20:22:00
#:13 [taskmon.exe]
FilePath : C:\WINDOWS\
ProcessID : 4293058433
Threads : 1
Priority : Normal
FileSize : 28 KB
FileVersion : 4.10.1998
ProductVersion : 4.10.1998
Copyright : Copyright (C) Microsoft Corp. 1998
CompanyName : Microsoft Corporation
FileDescription : Task Monitor
InternalName : TaskMon
OriginalFilename : TASKMON.EXE
ProductName : Microsoft(R) Windows(R) Operating System
Created on : 01/01/01
Last accessed : 09/04/04 22:00:00
Last modified : 05/05/99 20:22:00
#:14 [systray.exe]
FilePath : C:\WINDOWS\SYSTEM\
ProcessID : 4293122601
Threads : 2
Priority : Normal
FileSize : 32 KB
FileVersion : 4.10.2222
ProductVersion : 4.10.2222
Copyright : Copyright (C) Microsoft Corp. 1993-1998
CompanyName : Microsoft Corporation
FileDescription : Subprograma Bandeja de sistema
InternalName : SYSTRAY
OriginalFilename : SYSTRAY.EXE
ProductName : Sistema operativo Microsoft(R) Windows(R)
Created on : 01/01/01
Last accessed : 09/04/04 22:00:00
Last modified : 05/05/99 20:22:00
#:15 [e_s10ic2.exe]
FilePath : C:\WINDOWS\SYSTEM\
ProcessID : 4293147193
Threads : 1
Priority : Normal
FileSize : 72 KB
FileVersion : 3.03
ProductVersion : 3.03
Copyright : Copyright (C) SEIKO EPSON CORP. 2002
CompanyName : SEIKO EPSON CORPORATION
FileDescription : EPSON Status Monitor 3
InternalName : E_S10IC2
OriginalFilename : E_S10IC2.EXE
ProductName : EPSON Status Monitor 3
Created on : 12/10/03 21:54:12
Last accessed : 09/04/04 22:00:00
Last modified : 19/02/02 1:03:00
#:16 [newsupd.exe]
FilePath : C:\ARCHIVOS DE PROGRAMA\CREATIVE\NEWS\
ProcessID : 4293132893
Threads : 1
Priority : Normal
FileSize : 43 KB
FileVersion : 2.5.0.9
ProductVersion : 2.5.0.0
Copyright : Copyright (c) Creative Technology Ltd., 2000. All Rights Reserved
CompanyName : Creative Technology Ltd.
FileDescription : News Engine Update Application
InternalName : NewsUpdEXE
OriginalFilename : NewsUpd.EXE
ProductName : Creative News Engine
Created on : 13/10/03 20:26:26
Last accessed : 09/04/04 22:00:00
Last modified : 04/08/00 0:50:00
#:17 [spool32.exe]
FilePath : C:\WINDOWS\SYSTEM\
ProcessID : 4293138929
Threads : 2
Priority : Normal
FileSize : 44 KB
FileVersion : 4.10.1998
ProductVersion : 4.10.1998
Copyright : Copyright (C) Microsoft Corp. 1994 - 1998
CompanyName : Microsoft Corporation
FileDescription : Spooler Sub System Process
InternalName : spool32
OriginalFilename : spool32.exe
ProductName : Microsoft(R) Windows(R) Operating System
Created on : 01/01/01
Last accessed : 09/04/04 22:00:00
Last modified : 05/05/99 20:22:00
#:18 [imontray.exe]
FilePath : C:\PROGRAM FILES\INTEL\INTEL(R) ACTIVE MONITOR\
ProcessID : 4293161933
Threads : 1
Priority : Normal
FileSize : 32 KB
FileVersion : 1.1.1.113
ProductVersion : 1, 0, 0, 1
Copyright : Copyright (C) 2000
FileDescription : imontray MFC Application
InternalName : imontray
OriginalFilename : imontray.EXE
ProductName : imontray Application
Created on : 01/08/01 21:50:35
Last accessed : 09/04/04 22:00:00
Last modified : 01/02/01 12:23:50
#:19 [ccapp.exe]
FilePath : C:\ARCHIVOS DE PROGRAMA\ARCHIVOS COMUNES\SYMANTEC SHARED\
ProcessID : 4293153973
Threads : 27
Priority : Normal
FileSize : 69 KB
FileVersion : 2.0.0.635
ProductVersion : 2.0.0.635
Copyright : Copyright (c) 2000-2003 Symantec Corporation. All rights reserved.
CompanyName : Symantec Corporation
FileDescription : Symantec Common Client User Session
InternalName : ccApp
OriginalFilename : ccApp.exe
ProductName : Common Client
Created on : 10/10/03 9:11:46
Last accessed : 09/04/04 22:00:00
Last modified : 10/10/03 9:11:46
#:20 [projselector.exe]
FilePath : C:\ARCHIVOS DE PROGRAMA\ARCHIVOS COMUNES\ROXIO SHARED\PROJECT SELECTOR\
ProcessID : 4293190113
Threads : 1
Priority : Normal
FileSize : 112 KB
FileVersion : 6.0.0.208
ProductVersion : 6.0.0.208
Copyright : Copyright (c) 1999-2003 Roxio, Inc.
CompanyName : Roxio
FileDescription : Roxio Project Selector
InternalName : projselector.exe
OriginalFilename : projselector.exe
ProductName : Easy CD Creator
Created on : 27/02/03 3:38:24
Last accessed : 09/04/04 22:00:00
Last modified : 27/02/03 3:38:24
#:21 [drgtodsc.exe]
FilePath : C:\ARCHIVOS DE PROGRAMA\ROXIO\EASY CD CREATOR 6\DRAGTODISC\
ProcessID : 4293131101
Threads : 1
Priority : Normal
FileSize : 740 KB
FileVersion : 6.0.0.209
ProductVersion : 6.0.0.209
Copyright : Copyright (c) 1999-2003 Roxio, Inc.
CompanyName : Roxio
FileDescription : Drag To Disc Application
InternalName : D2D
OriginalFilename : BurnCtrl.EXE
ProductName : Drag-to-Disc
Created on : 27/02/03 2:36:06
Last accessed : 09/04/04 22:00:00
Last modified : 27/02/03 2:36:06
#:22 [devdetect.exe]
FilePath : C:\ARCHIVOS DE PROGRAMA\ACD SYSTEMS\DEVDETECT\
ProcessID : 4293200617
Threads : 1
Priority : Normal
FileSize : 204 KB
FileVersion : 1, 3, 0, 1
ProductVersion : 1, 3, 0, 1
Copyright : Copyright 2002
CompanyName : 2000 ACD Systems, Ltd.
FileDescription : Detector de dispositivos
InternalName : DevDetect
OriginalFilename : DevDetect.exe
ProductName : Detector de dispositivos
Created on : 18/12/02 12:12:32
Last accessed : 09/04/04 22:00:00
Last modified : 18/12/02 12:12:32
#:23 [loadqm.exe]
FilePath : C:\WINDOWS\
ProcessID : 4293226509
Threads : 3
Priority : Normal
FileSize : 7 KB
FileVersion : 5.4.1103.3
ProductVersion : 5.4.1103.3
Copyright : Copyright (C) Microsoft Corp. 1981-1999
CompanyName : Microsoft Corporation
FileDescription : Microsoft QMgr
InternalName : LOADQM.EXE
OriginalFilename : LOADQM.EXE
ProductName : QMgr Loader
Created on : 06/02/04 17:35:53
Last accessed : 09/04/04 22:00:00
Last modified : 03/05/00 15:23:10
#:24 [loader.exe]
FilePath : C:\PROGRAM FILES\LYCOS\IEAGENT\
ProcessID : 4293244317
Threads : 1
Priority : Normal
FileSize : 79 KB
FileVersion : 1, 4, 0, 4
ProductVersion : 1, 4, 0, 4
Copyright : Copyright 2003, 2004
CompanyName : Clear Search
FileDescription : Loader
InternalName : Loader
OriginalFilename : Loader.exe
ProductName : Loader
Created on : 08/04/04 20:21:37
Last accessed : 09/04/04 22:00:00
Last modified : 08/04/04 20:21:16
#:25 [dslmon.exe]
FilePath : C:\ARCHIVOS DE PROGRAMA\SAGEM\SAGEM F@ST 800-840\
ProcessID : 4292982041
Threads : 2
Priority : Normal
FileSize : 940 KB
FileVersion : 1, 0, 0, 1
ProductVersion : 1, 0, 0, 1
Copyright : Copyright (C) 2000
FileDescription : ADIMON MFC Application
InternalName : DSLMON
OriginalFilename : ADIMON.EXE
ProductName : DSLMON Application
Created on : 24/01/04 15:21:14
Last accessed : 09/04/04 22:00:00
Last modified : 14/05/03 12:02:04
#:26 [wmiexe.exe]
FilePath : C:\WINDOWS\SYSTEM\
ProcessID : 4293339801
Threads : 3
Priority : Normal
FileSize : 16 KB
FileVersion : 5.00.1755.1
ProductVersion : 5.00.1755.1
Copyright : Copyright (C) Microsoft Corp. 1981-1998
CompanyName : Microsoft Corporation
FileDescription : WMI service exe housing
InternalName : wmiexe
OriginalFilename : wmiexe.exe
ProductName : Microsoft(R) Windows NT(R) Operating System
Created on : 01/01/01
Last accessed : 09/04/04 22:00:00
Last modified : 05/05/99 20:22:00
#:27 [sharev.exe]
FilePath : C:\WINDOWS\SYSTEM\
ProcessID : 4293348745
Threads : 2
Priority : Normal
FileSize : 64 KB
Copyright : leD
Created on : 10/04/04 17:29:31
Last accessed : 09/04/04 22:00:00
Last modified : 26/02/04 14:17:50
#:28 [ddhelp.exe]
FilePath : C:\WINDOWS\SYSTEM\
ProcessID : 4293484549
Threads : 6
Priority : Realtime
FileSize : 41 KB
FileVersion : 4.08.00.0400
ProductVersion : 4.08.00.0400
Copyright : Copyright Microsoft Corp. 1994-2000
CompanyName : Microsoft Corporation
FileDescription : Microsoft DirectX Helper
InternalName : DDHelp.exe
OriginalFilename : DDHelp.exe
ProductName : Microsoft DirectX for Windows 95 and 98
Created on : 13/10/03 20:55:20
Last accessed : 09/04/04 22:00:00
Last modified : 03/11/00 12:35:22
#:29 [iexplore.exe]
FilePath : C:\ARCHIVOS DE PROGRAMA\INTERNET EXPLORER\
ProcessID : 4293277517
Threads : 20
Priority : Normal
FileSize : 89 KB
FileVersion : 6.00.2600.0000
ProductVersion : 6.00.2600.0000
Copyright : Microsoft Corporation. Reservados todos los derechos.
CompanyName : Microsoft Corporation
FileDescription : Internet Explorer
InternalName : iexplore
OriginalFilename : IEXPLORE.EXE
ProductName : Sistema operativo Microsoft Windows
Created on : 20/08/01 22:00:00
Last accessed : 09/04/04 22:00:00
Last modified : 20/08/01 22:00:00
#:30 [emule.exe]
FilePath : C:\ARCHIVOS DE PROGRAMA\EMULE\
ProcessID : 4293489153
Threads : 1
Priority : Normal
FileSize : 2776 KB
FileVersion : 0.30.4
ProductVersion : 0.30.4
Copyright : Copyright 2002-2003 Merkur - read license.txt for more infos
CompanyName :
http://www.emule-project.net FileDescription : eMule
InternalName : emule.exe
OriginalFilename : emule.exe
ProductName : eMule
Created on : 11/12/03 13:09:32
Last accessed : 09/04/04 22:00:00
Last modified : 11/12/03 13:09:32
#:31 [pstores.exe]
FilePath : C:\WINDOWS\SYSTEM\
ProcessID : 4293474125
Threads : 3
Priority : Normal
FileSize : 79 KB
FileVersion : 5.00.1877.3
ProductVersion : 5.00.1877.3
Copyright : Copyright (C) Microsoft Corp. 1981-1998
CompanyName : Microsoft Corporation
FileDescription : Protected storage server
InternalName : Protected storage server
OriginalFilename : Protected storage server
ProductName : Microsoft(R) Windows NT(R) Operating System
Created on : 01/01/01
Last accessed : 09/04/04 22:00:00
Last modified : 05/05/99 20:22:00
#:32 [acrobat.exe]
FilePath : C:\ARCHIVOS DE PROGRAMA\ADOBE\ACROBAT 5.0\ACROBAT\
ProcessID : 4293261837
Threads : 1
Priority : Normal
FileSize : 5168 KB
FileVersion : 5.0.5.2001102600
ProductVersion : 5.0.5.0
Copyright : Copyright 1984-2001 Adobe Systems Incorporated and its licensors. All rights reserved.
CompanyName : Adobe Systems Incorporated
FileDescription : Adobe Acrobat 5.0
InternalName : 5.0.5.2001102600
OriginalFilename : acrobat.exe
ProductName : Adobe Acrobat
Created on : 02/11/01 14:28:32
Last accessed : 09/04/04 22:00:00
Last modified : 26/10/01 11:08:52
#:33 [ad-aware.exe]
FilePath : C:\ARCHIVOS DE PROGRAMA\LAVASOFT\AD-AWARE 6\
ProcessID : 4293684577
Threads : 3
Priority : Normal
FileSize : 760 KB
FileVersion : 6.0.1.158
ProductVersion : 6.0.0.0
Copyright : Copyright Lavasoft Sweden
CompanyName : Lavasoft Sweden
FileDescription : Ad-aware 6 core application
InternalName : Ad-aware.exe
OriginalFilename : Ad-aware.exe
ProductName : Lavasoft Ad-aware Professional
Created on : 10/04/04 19:13:41
Last accessed : 09/04/04 22:00:00
Last modified : 27/01/03 8:42:22
Memory scan result :
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
New objects : 0
Objects found so far: 0
Started registry scan
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
Gator Object recognized!
Type : RegKey
Data :
Category : Data Miner
Comment :
Rootkey : HKEY_CLASSES_ROOT
Object : CLSID\{21FFB6C0-0DA1-11D5-A9D5-00500413153C}
SCBAR Object recognized!
Type : RegKey
Data :
Category : Misc
Comment :
Rootkey : HKEY_CLASSES_ROOT
Object : CLSID\{49de8655-4d15-4536-b67c-2aa6c1106740}
SCBAR Object recognized!
Type : RegKey
Data :
Category : Misc
Comment :
Rootkey : HKEY_CLASSES_ROOT
Object : CLSID\{9368d063-44be-49b9-bd14-bb9663fd38fc}
StopPop Object recognized!
Type : RegKey
Data :
Category : Data Miner
Comment :
Rootkey : HKEY_CLASSES_ROOT
Object : Interface\{4534CD6B-59D6-43FD-864B-06A0D843444A}
NCase Object recognized!
Type : RegKey
Data :
Category : Data Miner
Comment :
Rootkey : HKEY_CURRENT_USER
Object : SOFTWARE\180solutions
NCase Object recognized!
Type : RegKey
Data :
Category : Data Miner
Comment :
Rootkey : HKEY_CURRENT_USER
Object : SOFTWARE\180solutions\msbb
Gator Object recognized!
Type : RegKey
Data :
Category : Data Miner
Comment :
Rootkey : HKEY_LOCAL_MACHINE
Object : SOFTWARE\Gator.com
Alexa Object recognized!
Type : RegKey
Data :
Category : Data Miner
Comment :
Rootkey : HKEY_LOCAL_MACHINE
Object : SOFTWARE\Microsoft\Internet Explorer\Extensions\{c95fe080-8f5d-11d2-a20b-00aa003c157a}
NCase Object recognized!
Type : RegKey
Data :
Category : Data Miner
Comment :
Rootkey : HKEY_LOCAL_MACHINE
Object : Software\Microsoft\Windows\CurrentVersion\Uninstall\msbb
NCase Object recognized!
Type : RegKey
Data :
Category : Data Miner
Comment :
Rootkey : HKEY_LOCAL_MACHINE
Object : Software\Microsoft\Windows\CurrentVersion\Uninstall\nCASE
NetworkEssentials Object recognized!
Type : RegKey
Data :
Category : Data Miner
Comment :
Rootkey : HKEY_CURRENT_USER
Object : Software\WebInstall
MSView Object recognized!
Type : RegKey
Data :
Category : Data Miner
Comment :
Rootkey : HKEY_CLASSES_ROOT
Object : TypeLib\{690BCCB4-6B83-4203-AE77-038C116594EC}
SCBAR Object recognized!
Type : RegKey
Data :
Category : Misc
Comment :
Rootkey : HKEY_CLASSES_ROOT
Object : TYPELIB\{a8f92c35-530b-4907-922c-ce31d4b6b14a}
MSView Object recognized!
Type : RegKey
Data :
Category : Data Miner
Comment :
Rootkey : HKEY_CLASSES_ROOT
Object : VX2.VX2Obj
SCBAR Object recognized!
Type : RegKey
Data :
Category : Misc
Comment :
Rootkey : HKEY_CLASSES_ROOT
Object : webcom.webbho
SCBAR Object recognized!
Type : RegKey
Data :
Category : Misc
Comment :
Rootkey : HKEY_CLASSES_ROOT
Object : webcom.webbho.1
SCBAR Object recognized!
Type : RegKey
Data :
Category : Misc
Comment :
Rootkey : HKEY_CLASSES_ROOT
Object : webcom.webcommand
SCBAR Object recognized!
Type : RegKey
Data :
Category : Misc
Comment :
Rootkey : HKEY_CLASSES_ROOT
Object : webcom.webcommand.1
SCBAR Object recognized!
Type : RegKey
Data :
Category : Misc
Comment :
Rootkey : HKEY_CLASSES_ROOT
Object : webcom.websearch
SCBAR Object recognized!
Type : RegKey
Data :
Category : Misc
Comment :
Rootkey : HKEY_CLASSES_ROOT
Object : webcom.websearch.1
Gator Object recognized!
Type : RegValue
Data :
Category : Data Miner
Comment :
Rootkey : HKEY_LOCAL_MACHINE
Object : SOFTWARE\Microsoft\Windows\CurrentVersion
Value : StashedGEF
Gator Object recognized!
Type : RegValue
Data :
Category : Data Miner
Comment :
Rootkey : HKEY_LOCAL_MACHINE
Object : SOFTWARE\Microsoft\Windows\CurrentVersion
Value : StashedGMG
Web3000 Object recognized!
Type : RegValue
Data :
Category : Data Miner
Comment :
Rootkey : HKEY_LOCAL_MACHINE
Object : software\microsoft\windows\currentversion
Value : stashedGEF
Web3000 Object recognized!
Type : RegValue
Data :
Category : Data Miner
Comment :
Rootkey : HKEY_LOCAL_MACHINE
Object : Software\Microsoft\Windows\CurrentVersion
Value : StashedGMG
Windows Object recognized!
Type : RegData
Data :
Category : Data Miner
Comment : MediaPlayer Unique ID
Rootkey : HKEY_USERS
Object : .DEFAULT\Software\Microsoft\MediaPlayer\Player\Settings
Value : Client ID
Data :
Windows Object recognized!
Type : RegData
Data :
Category : Data Miner
Comment : MediaPlayer Unique ID
Rootkey : HKEY_CURRENT_USER
Object : Software\Microsoft\MediaPlayer\Player\Settings
Value : Client ID
Data :
Registry scan result :
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
New objects : 26
Objects found so far: 26
Started deep registry scan
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
Possible browser hijack attempt : Software\Microsoft\Internet Explorer\MainSearch Pagesearchenhancement.com
ActualNames Object recognized!
Type : RegData
Data : "
http://search.searchenhancement.com/nph-enhanced.cgi?affid=sesm&sstring="
Category : Data Miner
Comment : Possible browser hijack attempt
Rootkey : HKEY_CURRENT_USER
Object : Software\Microsoft\Internet Explorer\Main
Value : Search Page
Data : "
http://search.searchenhancement.com/nph-enhanced.cgi?affid=sesm&sstring="
Possible browser hijack attempt : Software\Microsoft\Internet Explorer\MainSearch Barsearchenhancement.com
ActualNames Object recognized!
Type : RegData
Data : "
http://www.searchenhancement.com/searchbar/iev1.html"
Category : Data Miner
Comment : Possible browser hijack attempt
Rootkey : HKEY_CURRENT_USER
Object : Software\Microsoft\Internet Explorer\Main
Value : Search Bar
Data : "
http://www.searchenhancement.com/searchbar/iev1.html"
Possible browser hijack attempt : Software\Microsoft\Internet Explorer\SearchSearchAssistantsearchenhancement.com
ActualNames Object recognized!
Type : RegData
Data : "
http://search.searchenhancement.com/nph-enhanced.cgi?affid=sesm&sstring="
Category : Data Miner
Comment : Possible browser hijack attempt
Rootkey : HKEY_CURRENT_USER
Object : Software\Microsoft\Internet Explorer\Search
Value : SearchAssistant
Data : "
http://search.searchenhancement.com/nph-enhanced.cgi?affid=sesm&sstring="
Possible browser hijack attempt : Software\Microsoft\Internet Explorer\SearchURLsearchenhancement.com
ActualNames Object recognized!
Type : RegData
Data : "
http://search.searchenhancement.com/nph-enhanced.cgi?affid=sesm&sstring="
Category : Data Miner
Comment : Possible browser hijack attempt
Rootkey : HKEY_CURRENT_USER
Object : Software\Microsoft\Internet Explorer\SearchURL
Value :
Data : "
http://search.searchenhancement.com/nph-enhanced.cgi?affid=sesm&sstring="
Possible browser hijack attempt : Software\Microsoft\Internet Explorer\MainSearch Pagesearchenhancement.com
ActualNames Object recognized!
Type : RegData
Data : "
http://search.searchenhancement.com/nph-enhanced.cgi?affid=sesm&sstring="
Category : Data Miner
Comment : Possible browser hijack attempt
Rootkey : HKEY_LOCAL_MACHINE
Object : Software\Microsoft\Internet Explorer\Main
Value : Search Page
Data : "
http://search.searchenhancement.com/nph-enhanced.cgi?affid=sesm&sstring="
Possible browser hijack attempt : Software\Microsoft\Internet Explorer\MainSearch Barsearchenhancement.com
ActualNames Object recognized!
Type : RegData
Data : "
http://www.searchenhancement.com/searchbar/iev1.html"
Category : Data Miner
Comment : Possible browser hijack attempt
Rootkey : HKEY_LOCAL_MACHINE
Object : Software\Microsoft\Internet Explorer\Main
Value : Search Bar
Data : "
http://www.searchenhancement.com/searchbar/iev1.html"
Possible browser hijack attempt : Software\Microsoft\Internet Explorer\MainDefault_Search_URLsearchenhancement.com
ActualNames Object recognized!
Type : RegData
Data : "
http://search.searchenhancement.com/nph-enhanced.cgi?affid=sesm&sstring="
Category : Data Miner
Comment : Possible browser hijack attempt
Rootkey : HKEY_LOCAL_MACHINE
Object : Software\Microsoft\Internet Explorer\Main
Value : Default_Search_URL
Data : "
http://search.searchenhancement.com/nph-enhanced.cgi?affid=sesm&sstring="
Possible browser hijack attempt : Software\Microsoft\Internet Explorer\SearchSearchAssistantsearchenhancement.com
ActualNames Object recognized!
Type : RegData
Data : "
http://search.searchenhancement.com/nph-enhanced.cgi?affid=sesm&sstring="
Category : Data Miner
Comment : Possible browser hijack attempt
Rootkey : HKEY_LOCAL_MACHINE
Object : Software\Microsoft\Internet Explorer\Search
Value : SearchAssistant
Data : "
http://search.searchenhancement.com/nph-enhanced.cgi?affid=sesm&sstring="
Possible browser hijack attempt : Software\Microsoft\Internet Explorer\SearchURLsearchenhancement.com
ActualNames Object recognized!
Type : RegData
Data : "
http://search.searchenhancement.com/nph-enhanced.cgi?affid=sesm&sstring="
Category : Data Miner
Comment : Possible browser hijack attempt
Rootkey : HKEY_LOCAL_MACHINE
Object : Software\Microsoft\Internet Explorer\SearchURL
Value :
Data : "
http://search.searchenhancement.com/nph-enhanced.cgi?affid=sesm&sstring="
NCase Object recognized!
Type : RegValue
Data : msbb.exe
Category : Data Miner
Comment :
Rootkey : HKEY_LOCAL_MACHINE
Object : Software\Microsoft\Windows\CurrentVersion\Run
Value : msbb
NCase Object recognized!
Type : RegValue
Data : c:\windows\nwt.exe
Category : Data Miner
Comment :
Rootkey : HKEY_LOCAL_MACHINE
Object : Software\Microsoft\Windows\CurrentVersion\Run
Value : nwt
Deep registry scan result :
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
New objects : 11
Objects found so far: 37
Deep scanning and examining files (A:)
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
Disk scan result for A:\
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
New objects : 0
Objects found so far: 37
Deep scanning and examining files (C:)
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
NCase Object recognized!
Type : File
Data : ncmyb.dll
Category : Data Miner
Comment :
Object : C:\Archivos de programa\n-CASE\
FileSize : 40 KB
Created on : 08/04/04 21:27:50
Last accessed : 09/04/04 22:00:00
Last modified : 08/04/04 21:27:50
Tracking Cookie Object recognized!
Type : File
Data : armand@tribalfusion[1].txt
Category : Data Miner
Comment :
Object : C:\WINDOWS\Cookies\
Created on : 10/04/04 18:50:14
Last accessed : 09/04/04 22:00:00
Last modified : 10/04/04 18:50:16
Tracking Cookie Object recognized!
Type : File
Data : armand@qksrv[1].txt
Category : Data Miner
Comment :
Object : C:\WINDOWS\Cookies\
Created on : 10/04/04 18:50:41
Last accessed : 09/04/04 22:00:00
Last modified : 10/04/04 18:50:42
Tracking Cookie Object recognized!
Type : File
Data : armand@adtech[1].txt
Category : Data Miner
Comment :
Object : C:\WINDOWS\Cookies\
Created on : 10/04/04 18:50:34
Last accessed : 09/04/04 22:00:00
Last modified : 10/04/04 18:50:36
NCase Object recognized!
Type : File
Data : nwt.exe
Category : Data Miner
Comment :
Object : C:\WINDOWS\
FileSize : 92 KB
Created on : 08/04/04 21:27:28
Last accessed : 09/04/04 22:00:00
Last modified : 08/04/04 21:27:28
Disk scan result for C:\
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
New objects : 0
Objects found so far: 42
Deep scanning and examining files (D:)
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
Disk scan result for D:\
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
New objects : 0
Objects found so far: 42
Deep scanning and examining files (E:)
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
Disk scan result for E:\
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
New objects : 0
Objects found so far: 42
22:02:30 Scan complete
Summary of this scan
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
Total scanning time :00:39:16:360
Objects scanned :88185
Objects identified :42
Objects ignored :0
New objects :42