#:5 [smc.exe]
FilePath : C:\Archivos de programa\Sygate\SPF\
ThreadCreationTime : 15-12-2004 13:38:37
BasePriority : Normal
FileSize : 2280 KB
FileVersion : 5.5.00.2516
ProductVersion : 5.5.00.2516
Copyright : Copyright
CompanyName : Sygate Technologies, Inc.
FileDescription : Sygate Agent Firewall
InternalName : Smc
OriginalFilename : Smc.EXE
ProductName : Sygate
Created on : 21/10/2003 14:36:22
Last accessed : 15/12/2004 13:39:03
Last modified : 21/10/2003 14:36:22
#:6 [svchost.exe]
FilePath : C:\WINNT\system32\
ThreadCreationTime : 15-12-2004 13:38:39
BasePriority : Normal
FileSize : 7 KB
FileVersion : 5.00.2134.1
ProductVersion : 5.00.2134.1
Copyright : Copyright (C) Microsoft Corp. 1981-1999
CompanyName : Microsoft Corporation
FileDescription : Generic Host Process for Win32 Services
InternalName : svchost.exe
OriginalFilename : svchost.exe
ProductName : Microsoft(R) Windows (R) 2000 Operating System
Created on : 16/12/1999
Last accessed : 15/12/2004 13:39:11
Last modified : 16/12/1999
#:7 [spoolsv.exe]
FilePath : C:\WINNT\system32\
ThreadCreationTime : 15-12-2004 13:38:40
BasePriority : Normal
FileSize : 44 KB
FileVersion : 5.00.2195.4299
ProductVersion : 5.00.2195.4299
Copyright : Copyright (C) Microsoft Corp. 1981-1999
CompanyName : Microsoft Corporation
FileDescription : Spooler SubSystem App
InternalName : spoolss.exe
OriginalFilename : spoolss.exe
ProductName : Microsoft(R) Windows (R) 2000 Operating System
Created on : 23/07/2004 11:43:29
Last accessed : 15/12/2004 13:21:03
Last modified : 19/07/2002 6:34:00
#:8 [ccevtmgr.exe]
FilePath : C:\Archivos de programa\Archivos comunes\Symantec Shared\
ThreadCreationTime : 15-12-2004 13:38:40
BasePriority : Normal
FileSize : 309 KB
FileVersion : 1.03.4
ProductVersion : 1.03.4
Copyright : Copyright (c) 2000-2002 Symantec Corporation. All rights reserved.
CompanyName : Symantec Corporation
FileDescription : Event Manager Service
InternalName : ccEvtMgr
OriginalFilename : ccEvtMgr.exe
ProductName : Event Manager
Created on : 27/07/2004 15:18:58
Last accessed : 15/12/2004 13:21:03
Last modified : 17/07/2003 9:16:38
#:9 [svchost.exe]
FilePath : C:\WINNT\System32\
ThreadCreationTime : 15-12-2004 13:38:41
BasePriority : Normal
FileSize : 7 KB
FileVersion : 5.00.2134.1
ProductVersion : 5.00.2134.1
Copyright : Copyright (C) Microsoft Corp. 1981-1999
CompanyName : Microsoft Corporation
FileDescription : Generic Host Process for Win32 Services
InternalName : svchost.exe
OriginalFilename : svchost.exe
ProductName : Microsoft(R) Windows (R) 2000 Operating System
Created on : 16/12/1999
Last accessed : 15/12/2004 13:39:11
Last modified : 16/12/1999
#:10 [navapsvc.exe]
FilePath : C:\Archivos de programa\Norton AntiVirus\
ThreadCreationTime : 15-12-2004 13:38:41
BasePriority : Normal
FileSize : 113 KB
FileVersion : 9.05.1015
ProductVersion : 9.05.1015
Copyright : Copyright (c) 2000-2002 Symantec Corporation. All rights reserved.
CompanyName : Symantec Corporation
FileDescription : Norton AntiVirus Auto-Protect Service
InternalName : NAVAPSVC
OriginalFilename : NAVAPSVC.EXE
ProductName : Norton AntiVirus
Created on : 27/07/2004 15:18:46
Last accessed : 15/12/2004 13:21:04
Last modified : 14/11/2002 17:41:26
#:11 [nprotect.exe]
FilePath : C:\Archivos de programa\Norton AntiVirus\AdvTools\
ThreadCreationTime : 15-12-2004 13:38:42
BasePriority : Normal
FileSize : 132 KB
FileVersion : 16.00.0.22
ProductVersion : 16.00.0.22
Copyright : Copyright (C) 2003 Symantec Corporation
CompanyName : Symantec Corporation
FileDescription : Norton Protection Status
InternalName : NPROTECT
OriginalFilename : NPROTECT.EXE
ProductName : Norton Utilities
Created on : 23/07/2004 16:30:02
Last accessed : 15/12/2004 13:21:05
Last modified : 14/08/2002 4:03:00
#:12 [nvsvc32.exe]
FilePath : C:\WINNT\System32\
ThreadCreationTime : 15-12-2004 13:38:42
BasePriority : Normal
FileSize : 76 KB
FileVersion : 6.14.10.5303
ProductVersion : 6.14.10.5303
Copyright : (C) NVIDIA Corporation. All rights reserved.
CompanyName : NVIDIA Corporation
FileDescription : NVIDIA Driver Helper Service, Version 53.03
InternalName : NVSVC
OriginalFilename : nvsvc32.exe
ProductName : NVIDIA Driver Helper Service, Version 53.03
Created on : 17/11/2003 8:33:00
Last accessed : 15/12/2004 13:21:06
Last modified : 17/11/2003 8:33:00
#:13 [regsvc.exe]
FilePath : C:\WINNT\system32\
ThreadCreationTime : 15-12-2004 13:38:43
BasePriority : Normal
FileSize : 65 KB
FileVersion : 5.00.2195.3649
ProductVersion : 5.00.2195.3649
Copyright : Copyright (C) Microsoft Corp. 1981-1999
CompanyName : Microsoft Corporation
FileDescription : Remote Registry Service
InternalName : regsvc
OriginalFilename : REGSVC.EXE
ProductName : Microsoft(R) Windows (R) 2000 Operating System
Created on : 24/07/2004 8:09:56
Last accessed : 15/12/2004 13:21:06
Last modified : 19/07/2002 6:34:00
#:14 [mstask.exe]
FilePath : C:\WINNT\system32\
ThreadCreationTime : 15-12-2004 13:38:46
BasePriority : Normal
FileSize : 116 KB
FileVersion : 4.71.2195.1
ProductVersion : 4.71.2195.1
Copyright : Copyright (C) Microsoft Corp. 1997
CompanyName : Microsoft Corporation
FileDescription : Motor de Programador de tareas
InternalName : TaskScheduler
OriginalFilename : mstask.exe
ProductName : Programador de tareas de Microsoft
Created on : 24/07/2004 8:09:50
Last accessed : 15/12/2004 13:39:10
Last modified : 19/07/2002 6:34:00
#:15 [winmgmt.exe]
FilePath : C:\WINNT\System32\WBEM\
ThreadCreationTime : 15-12-2004 13:38:47
BasePriority : Normal
FileSize : 192 KB
FileVersion : 1.50.1085.0070
ProductVersion : 1.50.1085.0070
Copyright : Copyright (C) Microsoft Corp. 1995-1999
CompanyName : Microsoft Corporation
FileDescription : Instrumental de administraci
InternalName : WINMGMT
ProductName : Instrumental de administraci
Created on : 24/07/2004 8:10:08
Last accessed : 15/12/2004 13:21:09
Last modified : 19/07/2002 6:34:00
#:16 [mspmspsv.exe]
FilePath : C:\WINNT\system32\
ThreadCreationTime : 15-12-2004 13:38:47
BasePriority : Normal
FileSize : 52 KB
FileVersion : 7.00.00.1956
ProductVersion : 7.00.00.1956
Copyright : Copyright (C) Microsoft Corp. 1981-2000
CompanyName : Microsoft Corporation
FileDescription : WMDM PMSP Service
InternalName : MSPMSPSV.EXE
OriginalFilename : MSPMSPSV.EXE
ProductName : Microsoft (R) DRM
Created on : 24/07/2004 10:19:49
Last accessed : 15/12/2004 13:21:11
Last modified : 08/08/2000 10:32:12
#:17 [svchost.exe]
FilePath : C:\WINNT\system32\
ThreadCreationTime : 15-12-2004 13:38:47
BasePriority : Normal
FileSize : 7 KB
FileVersion : 5.00.2134.1
ProductVersion : 5.00.2134.1
Copyright : Copyright (C) Microsoft Corp. 1981-1999
CompanyName : Microsoft Corporation
FileDescription : Generic Host Process for Win32 Services
InternalName : svchost.exe
OriginalFilename : svchost.exe
ProductName : Microsoft(R) Windows (R) 2000 Operating System
Created on : 16/12/1999
Last accessed : 15/12/2004 13:44:26
Last modified : 16/12/1999
#:18 [explorer.exe]
FilePath : C:\WINNT\
ThreadCreationTime : 15-12-2004 13:38:49
BasePriority : Normal
FileSize : 238 KB
FileVersion : 5.00.3502.5321
ProductVersion : 5.00.3502.5321
Copyright : Copyright (C) Microsoft Corp. 1981-1999
CompanyName : Microsoft Corporation
FileDescription : Windows Explorer
InternalName : explorer
OriginalFilename : EXPLORER.EXE
ProductName : Microsoft(R) Windows (R) 2000 Operating System
Created on : 24/07/2004 8:10:05
Last accessed : 15/12/2004 13:38:49
Last modified : 19/07/2002 6:34:00
#:19 [soundman.exe]
FilePath : C:\WINNT\
ThreadCreationTime : 15-12-2004 13:39:10
BasePriority : Normal
FileSize : 45 KB
FileVersion : 5.0.02
ProductVersion : 5.0.02
Copyright : Copyright (c) 2001-2002 Avance Logic, Inc.
CompanyName : Avance Logic, Inc.
FileDescription : Avance Sound Manager
InternalName : ALSMTray
OriginalFilename : ALSMTray.exe
ProductName : Avance Sound Manager
Created on : 23/07/2004 12:03:58
Last accessed : 15/12/2004 13:21:35
Last modified : 18/06/2002 10:44:20
#:20 [ccapp.exe]
FilePath : C:\Archivos de programa\Archivos comunes\Symantec Shared\
ThreadCreationTime : 15-12-2004 13:39:12
BasePriority : Normal
FileSize : 53 KB
FileVersion : 1.0.10.006
ProductVersion : 1.0.10.006
Copyright : Copyright (c) 2000-2002 Symantec Corporation. All rights reserved.
CompanyName : Symantec Corporation
FileDescription : Common Client CC App
InternalName : ccApp
OriginalFilename : ccApp.exe
ProductName : Common Client
Created on : 31/08/2004 16:37:27
Last accessed : 15/12/2004 13:39:58
Last modified : 02/12/2003 14:11:04
#:21 [iwctrl.exe]
FilePath : C:\Archivos de programa\Pinnacle\InstantCDDVD\InstantWrite\
ThreadCreationTime : 15-12-2004 13:39:14
BasePriority : Normal
FileSize : 816 KB
FileVersion : 4.0.2.7
ProductVersion : 4.0.0.0
Copyright : Copyright
CompanyName : Pinnacle Systems, Inc.
FileDescription : InstantWrite Control Center
InternalName : iwctrl
ProductName : InstantWrite
Created on : 12/03/2003 9:56:56
Last accessed : 15/12/2004 13:21:39
Last modified : 12/03/2003 9:56:56
#:22 [agrsmmsg.exe]
FilePath : C:\WINNT\
ThreadCreationTime : 15-12-2004 13:39:16
BasePriority : Normal
FileSize : 86 KB
FileVersion : 2.1.34 2.1.34 09/23/2003 17:06:56
ProductVersion : 2.1.34 2.1.34 09/23/2003 17:06:56
Copyright : Copyright
CompanyName : Agere Systems
FileDescription : SoftModem Messaging Applet
InternalName : smdmstat.exe
OriginalFilename : smdmstat.exe
ProductName : Agere SoftModem Messaging Applet
Created on : 05/08/2004 9:12:41
Last accessed : 15/12/2004 13:21:42
Last modified : 23/09/2003 15:06:58
#:23 [clonecdtray.exe]
FilePath : C:\Archivos de programa\Elaborate Bytes\CloneCD\
ThreadCreationTime : 15-12-2004 13:39:17
BasePriority : Normal
FileSize : 72 KB
FileVersion : 4, 1, 0, 0
ProductVersion : 4, 1, 0, 0
Copyright : Copyright
CompanyName : Elaborate Bytes AG
FileDescription : CloneCD Tray
InternalName : CloneCDTray
OriginalFilename : CloneCDTray.exe
ProductName : CloneCD
Created on : 04/11/2002 16:57:31
Last accessed : 15/12/2004 13:39:19
Last modified : 04/11/2002 16:57:31
#:24 [qttask.exe]
FilePath : C:\Archivos de programa\QuickTime\
ThreadCreationTime : 15-12-2004 13:39:18
BasePriority : Normal
FileSize : 76 KB
FileVersion : 6.0
ProductVersion : QuickTime 6.0
CompanyName : Apple Computer, Inc.
InternalName : QuickTime Task
OriginalFilename : QTTask.exe
ProductName : QuickTime
Created on : 26/10/2004 20:56:02
Last accessed : 15/12/2004 13:21:44
Last modified : 26/10/2004 20:56:02
#:25 [ueinf6hztk1thd.exe]
FilePath : C:\WINNT\system32\
ThreadCreationTime : 15-12-2004 13:39:18
BasePriority : Normal
FileSize : 96 KB
FileVersion : 1, 0, 31, 0
ProductVersion : 1, 0, 31, 0
Copyright : Copyright (C) 2004
CompanyName : Melkosoft Corporation
ProductName : Cassandra
Created on : 03/12/2004 15:41:50
Last accessed : 15/12/2004 13:21:45
Last modified : 03/12/2004 15:41:50
#:26 [internat.exe]
FilePath : C:\WINNT\system32\
ThreadCreationTime : 15-12-2004 13:39:19
BasePriority : Normal
FileSize : 20 KB
FileVersion : 5.00.2920.0000
ProductVersion : 5.00.2920.0000
Copyright : Copyright (C) Microsoft Corp. 1994-1999
CompanyName : Microsoft Corporation
FileDescription : Aplicaci
InternalName : INTERNAT
OriginalFilename : INTERNAT.EXE
ProductName : Sistema operativo Microsoft(R) Windows(R) 2000
Created on : 16/12/1999
Last accessed : 15/12/2004 13:21:46
Last modified : 16/12/1999
#:27 [rundll32.exe]
FilePath : C:\WINNT\system32\
ThreadCreationTime : 15-12-2004 13:39:19
BasePriority : Normal
FileSize : 9 KB
FileVersion : 5.00.2134.1
ProductVersion : 5.00.2134.1
Copyright : Copyright (C) Microsoft Corp. 1981-1999
CompanyName : Microsoft Corporation
FileDescription : Ejecutar un archivo DLL como una aplicaci
InternalName : rundll
OriginalFilename : RUNDLL.EXE
ProductName : Sistema operativo Microsoft(R) Windows(R) 2000
Created on : 16/12/1999
Last accessed : 15/12/2004 13:39:11
Last modified : 16/12/1999
#:28 [twalink.exe]
FilePath : C:\Archivos de programa\TEXTware\HotKey\
ThreadCreationTime : 15-12-2004 13:39:21
BasePriority : Normal
FileSize : 19 KB
FileVersion : 1.00
ProductVersion : 1.00
CompanyName : TEXTware A/S
InternalName : twalink
OriginalFilename : twalink.exe
ProductName : twalink
Created on : 08/09/2004 12:19:19
Last accessed : 15/12/2004 13:39:21
Last modified : 10/11/1998 12:47:30
#:29 [pclescheduler.exe]
FilePath : C:\Archivos de programa\Pinnacle\Shared Files\Programs\Scheduler\
ThreadCreationTime : 15-12-2004 13:39:28
BasePriority : Normal
FileSize : 232 KB
FileVersion : 1.0.1.6
ProductVersion : 1.0.1.1
Copyright : Copyright (c) 2002 - 2003
CompanyName : Pinnacle Systems GmbH, Braunschweig
FileDescription : Pinnacle Scheduler Application
InternalName : PCLEScheduler
OriginalFilename : PCLEScheduler.exe
ProductName : Scheduler
Created on : 23/07/2004 12:10:50
Last accessed : 15/12/2004 13:39:26
Last modified : 31/03/2003 15:22:50
#:30 [popsub.exe]
FilePath : C:\Archivos de programa\interMute\PopSubtract\
ThreadCreationTime : 15-12-2004 13:39:36
BasePriority : Normal
FileSize : 228 KB
FileVersion : 1, 3, 8, 0
ProductVersion : 1, 3, 8, 0
Copyright : Copyright 2003 interMute, Inc.
CompanyName : interMute, Inc.
FileDescription : PopSubtract Main Module
InternalName : PopSubtract
OriginalFilename : PopSub.EXE
ProductName : PopSubtract
Created on : 05/08/2004 10:18:39
Last accessed : 15/12/2004 13:39:55
Last modified : 05/09/2003 9:57:58
#:31 [iexplore.exe]
FilePath : C:\Archivos de programa\Internet Explorer\
ThreadCreationTime : 15-12-2004 13:40:39
BasePriority : Normal
FileSize : 89 KB
FileVersion : 6.00.2800.1106
ProductVersion : 6.00.2800.1106
CompanyName : Microsoft Corporation
FileDescription : Internet Explorer
InternalName : iexplore
OriginalFilename : IEXPLORE.EXE
ProductName : Sistema operativo Microsoft
Created on : 30/08/2002 16:56:44
Last accessed : 15/12/2004 13:43:22
Last modified : 30/08/2002 16:56:44
#:32 [wuauclt.exe]
FilePath : C:\WINNT\system32\
ThreadCreationTime : 15-12-2004 13:40:46
BasePriority : Normal
FileSize : 148 KB
FileVersion : 5.4.3790.20 built by: lab04_n
ProductVersion : 5.4.3790.20
CompanyName : Microsoft Corporation
FileDescription : Cliente de actualizaci
InternalName : wuauclt.exe
OriginalFilename : wuauclt.exe
ProductName : Sistema operativo Microsoft
Created on : 24/07/2004 8:10:17
Last accessed : 15/12/2004 13:23:24
Last modified : 09/02/2004 19:09:32
#:33 [iexplore.exe]
FilePath : C:\Archivos de programa\Internet Explorer\
ThreadCreationTime : 15-12-2004 13:42:49
BasePriority : Normal
FileSize : 89 KB
FileVersion : 6.00.2800.1106
ProductVersion : 6.00.2800.1106
CompanyName : Microsoft Corporation
FileDescription : Internet Explorer
InternalName : iexplore
OriginalFilename : IEXPLORE.EXE
ProductName : Sistema operativo Microsoft
Created on : 30/08/2002 16:56:44
Last accessed : 15/12/2004 13:43:22
Last modified : 30/08/2002 16:56:44
#:34 [ad-aware.exe]
FilePath : C:\Archivos de programa\Lavasoft\Ad-aware 6\
ThreadCreationTime : 15-12-2004 13:44:18
BasePriority : Normal
FileSize : 668 KB
FileVersion : 6.0.1.181
ProductVersion : 6.0.0.0
Copyright : Copyright
CompanyName : Lavasoft Sweden
FileDescription : Ad-aware 6 core application
InternalName : Ad-aware.exe
OriginalFilename : Ad-aware.exe
ProductName : Lavasoft Ad-aware Plus
Created on : 23/07/2004 16:28:09
Last accessed : 15/12/2004 13:41:48
Last modified : 12/07/2003 20:00:20
Memory scan result :
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
New objects : 0
Objects found so far: 0
Started registry scan
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
CoolWebSearch Object recognized!
Type : RegKey
Data :
Category : Malware
Comment :
Rootkey : HKEY_CLASSES_ROOT
Object : plugin6.dnserrobj
CoolWebSearch Object recognized!
Type : RegKey
Data :
Category : Malware
Comment :
Rootkey : HKEY_CLASSES_ROOT
Object : plugin6.dnserrobj.1
CoolWebSearch Object recognized!
Type : RegKey
Data :
Category : Malware
Comment :
Rootkey : HKEY_CLASSES_ROOT
Object : TYPELIB\{444a5674-ff85-45d4-9ae2-4199d8d70c85}
CoolWebSearch Object recognized!
Type : RegKey
Data :
Category : Malware
Comment :
Rootkey : HKEY_CLASSES_ROOT
Object : CLSID\{467faeb2-5f5b-4c81-bae0-2a4752ca7f4e}
Registry scan result :
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
New objects : 4
Objects found so far: 4
Started deep registry scan
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
Deep registry scan result :
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
New objects : 0
Objects found so far: 4
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
Deep scanning and examining files (C:)
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
Scanning Hosts file(C:\WINNT\system32\drivers\etc\hosts)
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
Hosts file scan result:
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
1 entries scanned.
New objects :0
Objects found so far: 4
Possible Browser Hijack attempt Object recognized!
Type : File
Data : all crazy sex.url
Category : Misc
Comment : Item referrs to blacklisted Site:
http://allcrazyporn.com/ Object : C:\Documents and Settings\Administrador\Favoritos\
Created on : 15/12/2004 13:24:18
Last accessed : 15/12/2004 13:24:18
Last modified : 15/12/2004 13:24:18
Possible Browser Hijack attempt Object recognized!
Type : File
Data : free xxx pics & movies.url
Category : Misc
Comment : Item referrs to blacklisted Site:
http://gotosex4all.com Object : C:\Documents and Settings\Administrador\Favoritos\
Created on : 15/12/2004 13:24:18
Last accessed : 15/12/2004 13:24:18
Last modified : 15/12/2004 13:24:18
Possible Browser Hijack attempt Object recognized!
Type : File
Data : web anal sex.url
Category : Misc
Comment : Item referrs to blacklisted Site:
http://webanalsex.com Object : C:\Documents and Settings\Administrador\Favoritos\
Created on : 15/12/2004 13:24:18
Last accessed : 15/12/2004 13:24:18
Last modified : 15/12/2004 13:24:18
Performing conditional scans..
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
CoolWebSearch Object recognized!
Type : RegKey
Data :
Category : Malware
Comment :
Rootkey : HKEY_CLASSES_ROOT
Object : redalert.here
CoolWebSearch Object recognized!
Type : RegKey
Data :
Category : Malware
Comment :
Rootkey : HKEY_CLASSES_ROOT
Object : redalert.here.1
CoolWebSearch Object recognized!
Type : RegKey
Data :
Category : Malware
Comment :
Rootkey : HKEY_CLASSES_ROOT
Object : Interface\{0D721150-AEF3-457B-B03A-5097B623CE45}
CoolWebSearch Object recognized!
Type : RegKey
Data :
Category : Malware
Comment :
Rootkey : HKEY_LOCAL_MACHINE
Object : SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{467FAEB2-5F5B-4c81-BAE0-2A4752CA7F4E}
CoolWebSearch Object recognized!
Type : RegValue
Data :
Category : Malware
Comment :
Rootkey : HKEY_CURRENT_USER
Object : Software\Microsoft\Internet Explorer\Toolbar\WebBrowser
Value : ITBarLayout
CoolWebSearch Object recognized!
Type : File
Data : all crazy sex.url
Category : Malware
Comment :
Object : c:\documents and settings\administrador\favoritos\
Created on : 15/12/2004 13:24:18
Last accessed : 15/12/2004 13:24:18
Last modified : 15/12/2004 13:24:18
CoolWebSearch Object recognized!
Type : File
Data : free xxx pics & movies.url
Category : Malware
Comment :
Object : c:\documents and settings\administrador\favoritos\
Created on : 15/12/2004 13:24:18
Last accessed : 15/12/2004 13:24:18
Last modified : 15/12/2004 13:24:18
CoolWebSearch Object recognized!
Type : File
Data : tgp with pics prewiev.url
Category : Malware
Comment :
Object : c:\documents and settings\administrador\favoritos\
Created on : 15/12/2004 13:24:18
Last accessed : 15/12/2004 13:24:18
Last modified : 15/12/2004 13:24:18
CoolWebSearch Object recognized!
Type : File
Data : go to sex.url
Category : Malware
Comment :
Object : c:\documents and settings\administrador\favoritos\
Created on : 15/12/2004 13:24:18
Last accessed : 15/12/2004 13:24:18
Last modified : 15/12/2004 13:24:18
Conditional scan result:
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
New objects : 9
Objects found so far: 16
14:46:03 Scan complete
Summary of this scan
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
Total scanning time :00:01:37:235
Objects scanned :44707
Objects identified :16
Objects ignored :0
New objects :16
Gracias de antemano.
brandi659