Tech Support Forum - View Single Post - HJT log....a few things still hanging on :(

bigjohn · 07-15-2005, 12:01 PM

6. Ewido's Log

The log was too long to include.... I just cut and pasted a portion- I can send the entire log if needed.

---------------------------------------------------------
ewido security suite - Scan report
---------------------------------------------------------

+ Created on: 11:17:33 PM, 7/14/2005
+ Report-Checksum: 78446C7A

+ Scan result:

HKLM\SOFTWARE\Classes\CLSID\{04256906-BECE-83AC-2058-27ABA38B11A3} -> Spyware.CoolWebSearch : Cleaned with backup
HKLM\SOFTWARE\Classes\CLSID\{05CFF62B-F8EF-A6A3-C2D8-0649EE07F197} -> Spyware.CoolWebSearch : Cleaned with backup
HKLM\SOFTWARE\Classes\CLSID\{07FF232E-41D0-38A2-6073-6847AD3E6453} -> Spyware.CoolWebSearch : Cleaned with backup
HKLM\SOFTWARE\Classes\CLSID\{09248DC7-285D-A208-7675-8D1BAC7208C9} -> Spyware.CoolWebSearch : Cleaned with backup
HKLM\SOFTWARE\Classes\CLSID\{0FBFA147-FFB4-19A8-49F8-D1A17B80E32D} -> Spyware.CoolWebSearch : Cleaned with backup
HKLM\SOFTWARE\Classes\CLSID\{208BD4D8-3DA2-3736-A8E6-F3AF3479FA31} -> Spyware.CoolWebSearch : Cleaned with backup
HKLM\SOFTWARE\Classes\CLSID\{26F5CDB0-3ADD-70F3-F30F-8DD2B92D52FF} -> Spyware.CoolWebSearch : Cleaned with backup
HKLM\SOFTWARE\Classes\CLSID\{3A044FBA-5DEF-1ECF-55E6-8A9DE3722CEC} -> Spyware.CoolWebSearch : Cleaned with backup
HKLM\SOFTWARE\Classes\CLSID\{3F15B481-32E2-FE85-96FA-A8976289B4FD} -> Spyware.CoolWebSearch : Cleaned with backup
HKLM\SOFTWARE\Classes\CLSID\{4A210C09-C3AE-D36C-3EC5-0D7723985463} -> Spyware.CoolWebSearch : Cleaned with backup
HKLM\SOFTWARE\Classes\CLSID\{4C1CBC17-3C15-343F-1E7C-D8F447935C05} -> Spyware.CoolWebSearch : Cleaned with backup
HKLM\SOFTWARE\Classes\CLSID\{5345A51F-E5D0-5A0D-1418-A1C95C417E3C} -> Spyware.CoolWebSearch : Cleaned with backup
HKLM\SOFTWARE\Classes\CLSID\{5BCC3EE7-9153-E89F-6D4E-9B02B02B4E2E} -> Spyware.CoolWebSearch : Cleaned with backup
HKLM\SOFTWARE\Classes\CLSID\{676575DD-4D46-911D-8037-9B10D6EE8BB5} -> Spyware.CoolWebSearch : Cleaned with backup
HKLM\SOFTWARE\Classes\CLSID\{72071605-48F5-CC68-B374-2CDDF451F27F} -> Spyware.CoolWebSearch : Cleaned with backup
HKLM\SOFTWARE\Classes\CLSID\{735DDAC7-F8F1-47DD-D87A-6AF0100B6A48} -> Spyware.CoolWebSearch : Cleaned with backup
HKLM\SOFTWARE\Classes\CLSID\{7658C68E-7ED4-8476-AC96-729091012307} -> Spyware.CoolWebSearch : Cleaned with backup
HKLM\SOFTWARE\Classes\CLSID\{77CD9B7C-6604-FD84-83FE-47AE9E1477C2} -> Spyware.CoolWebSearch : Cleaned with backup
HKLM\SOFTWARE\Classes\CLSID\{7868EC16-8C67-1DBD-6D5A-EBB325881BD9} -> Spyware.CoolWebSearch : Cleaned with backup
HKLM\SOFTWARE\Classes\CLSID\{8CD1D4D3-8260-44A7-67DD-A71E995AB77F} -> Spyware.CoolWebSearch : Cleaned with backup
HKLM\SOFTWARE\Classes\CLSID\{929F8E8D-2C15-4240-E685-FA3C645381C5} -> Spyware.CoolWebSearch : Cleaned with backup
HKLM\SOFTWARE\Classes\CLSID\{A4405AD1-A13C-E10B-4B57-D5092B102F2B} -> Spyware.CoolWebSearch : Cleaned with backup
HKLM\SOFTWARE\Classes\CLSID\{B78A202C-9FF5-481D-3E8C-0877C167707F} -> Spyware.CoolWebSearch : Cleaned with backup
HKLM\SOFTWARE\Classes\CLSID\{B7C06F7A-7E5B-8248-7CE7-E61C97F1037E} -> Spyware.MidAddle : Cleaned with backup
HKLM\SOFTWARE\Classes\CLSID\{BAA4A995-E881-38F6-1E95-AF9F2785FBB3} -> Spyware.CoolWebSearch : Cleaned with backup
HKLM\SOFTWARE\Classes\CLSID\{BB35FD19-38F4-89DC-FA76-BA6507A5C6D7} -> Spyware.CoolWebSearch : Cleaned with backup
HKLM\SOFTWARE\Classes\CLSID\{BC0DC8BD-646D-FA46-8739-116B4F8B8228} -> Spyware.CoolWebSearch : Cleaned with backup
HKLM\SOFTWARE\Classes\CLSID\{BC0FE7F5-AD1D-A795-C683-F3EB54072EFE} -> Spyware.CoolWebSearch : Cleaned with backup
HKLM\SOFTWARE\Classes\CLSID\{BD00AB82-F105-58F8-2B31-B600383177E6} -> Spyware.CoolWebSearch : Cleaned with backup
HKLM\SOFTWARE\Classes\CLSID\{BEB133E5-FD72-43b7-8AFF-681831CC72D9} -> Spyware.Hijacker.Generic : Cleaned with backup
HKLM\SOFTWARE\Classes\CLSID\{C0E27572-BE10-BE39-5F1B-F26255B8F141} -> Spyware.CoolWebSearch : Cleaned with backup
HKLM\SOFTWARE\Classes\CLSID\{D02510A9-69A7-24D5-85DA-D3EC8E911C73} -> Spyware.CoolWebSearch : Cleaned with backup
HKLM\SOFTWARE\Classes\CLSID\{D775F18B-70E6-FBB1-C13D-52CE71E899B3} -> Spyware.CoolWebSearch : Cleaned with backup
HKLM\SOFTWARE\Classes\CLSID\{E4564D6D-4921-87B7-0C6A-2097D907B4A5} -> Spyware.CoolWebSearch : Cleaned with backup
HKLM\SOFTWARE\Classes\CLSID\{F573A15E-4E08-2CE8-1F75-3F0D794E2E42} -> Spyware.CoolWebSearch : Cleaned with backup
HKLM\SOFTWARE\Classes\CLSID\{FA6A8ADC-5ACF-A739-A8BF-5E4D7B5991C1} -> Spyware.CoolWebSearch : Cleaned with backup
HKLM\SOFTWARE\Classes\CLSID\{FA6A9E8D-BFF9-8822-80F2-D1B507D9FF99} -> Spyware.CoolWebSearch : Cleaned with backup
HKLM\SOFTWARE\Classes\CLSID\{FBD21FB3-D80F-1A9B-2038-2D60684CDEE0} -> Spyware.CoolWebSearch : Cleaned with backup
HKU\S-1-5-21-1935655697-813497703-854245398-1003\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{77CD9B7C-6604-FD84-83FE-47AE9E1477C2} -> Spyware.CoolWebSearch : Cleaned with backup
HKU\S-1-5-21-1935655697-813497703-854245398-1003\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{B78A202C-9FF5-481D-3E8C-0877C167707F} -> Spyware.CoolWebSearch : Cleaned with backup
HKU\S-1-5-21-1935655697-813497703-854245398-1003\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{BB35FD19-38F4-89DC-FA76-BA6507A5C6D7} -> Spyware.CoolWebSearch : Cleaned with backup
HKU\S-1-5-21-1935655697-813497703-854245398-1003\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{E0E5A173-0CF3-BCA9-8543-4B6252CD9DA6} -> Spyware.CoolWebSearch : Cleaned with backup
HKU\S-1-5-21-1935655697-813497703-854245398-1003\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{F573A15E-4E08-2CE8-1F75-3F0D794E2E42} -> Spyware.CoolWebSearch : Cleaned with backup
C:\Program Files\HijackThis\backups\backup-20050713-211723-796.dll -> TrojanDownloader.Agent.bc : Cleaned with backup
C:\WINDOWS\Active Setup Log.txt:kzdtub -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\Active Setup Log.txt:lpkli -> TrojanDownloader.Agent.bc : Cleaned with backup
C:\WINDOWS\Active Setup Log.txt:zpjij -> TrojanDownloader.Agent.bc : Cleaned with backup
C:\WINDOWS\addaa32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addaj.dll -> TrojanDownloader.Agent.bc : Cleaned with backup
C:\WINDOWS\addau32.exe -> TrojanDownloader.Agent.bq : Cleaned with backup
C:\WINDOWS\adday.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addbz32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addcf32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\adddj.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\adddr.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\adddu32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addfb32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addfz.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addge32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addgv32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addhq.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addih.exe -> TrojanDownloader.Agent.bq : Cleaned with backup
C:\WINDOWS\addjt.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addkb32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addke32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addkp.dll -> TrojanDownloader.Agent.bc : Cleaned with backup
C:\WINDOWS\addkp.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addkq32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addky32.dll -> TrojanDownloader.Agent.bc : Cleaned with backup
C:\WINDOWS\addky32.exe -> TrojanDownloader.Agent.bq : Cleaned with backup
C:\WINDOWS\addlc.exe -> TrojanDownloader.Agent.bq : Cleaned with backup
C:\WINDOWS\addle.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addmi.exe -> TrojanDownloader.Agent.bq : Cleaned with backup
C:\WINDOWS\addns32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addoe32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addog32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addoi32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addoo.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addoq32.exe -> TrojanDownloader.Agent.bq : Cleaned with backup
C:\WINDOWS\addqb.exe -> TrojanDownloader.Agent.bq : Cleaned with backup
C:\WINDOWS\addqh32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addqq32.dll -> TrojanDownloader.Agent.bc : Cleaned with backup
C:\WINDOWS\addqt.dll -> TrojanDownloader.Agent.bc : Cleaned with backup
C:\WINDOWS\addqt.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addqx32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addro32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addrt32.dll -> TrojanDownloader.Agent.bc : Cleaned with backup
C:\WINDOWS\addsq32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addtl.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addtr32.exe -> TrojanDownloader.Agent.bq : Cleaned with backup
C:\WINDOWS\addty32.dll -> TrojanDownloader.Agent.bc : Cleaned with backup
C:\WINDOWS\addva.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addvi.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addvk32.exe -> TrojanDownloader.Agent.bq : Cleaned with backup
C:\WINDOWS\addvp.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addvv32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addvy.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addwi.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addwz.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addxo.dll -> TrojanDownloader.Agent.bc : Cleaned with backup
C:\WINDOWS\addxo32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addxu32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addya.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addyh32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addyj32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addyr32.dll -> TrojanDownloader.Agent.bc : Cleaned with backup
C:\WINDOWS\addyr32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addyz.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addzn32.dll -> TrojanDownloader.Agent.bc : Cleaned with backup
C:\WINDOWS\addzq32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\addzv32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\ahdqj.txt:bxllp -> TrojanDownloader.Agent.bc : Cleaned with backup
C:\WINDOWS\ahdqj.txt:hnhvn -> TrojanDownloader.Agent.bq : Cleaned with backup
C:\WINDOWS\ahdqj.txt:jaanj -> TrojanDownloader.Agent.bc : Cleaned with backup
C:\WINDOWS\apiav.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apick32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apicu.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apicw.exe -> TrojanDownloader.Agent.bq : Cleaned with backup
C:\WINDOWS\apidf32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apief.dll -> TrojanDownloader.Agent.bc : Cleaned with backup
C:\WINDOWS\apieh.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apifl32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apifn32.exe -> TrojanDownloader.Agent.bq : Cleaned with backup
C:\WINDOWS\apifw.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apifx.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apigl32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apigs32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apigv.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apigz32.dll -> TrojanDownloader.Agent.bc : Cleaned with backup
C:\WINDOWS\apihc.exe -> TrojanDownloader.Agent.bq : Cleaned with backup
C:\WINDOWS\apihn32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apiii32.dll -> TrojanDownloader.Agent.bc : Cleaned with backup
C:\WINDOWS\apija32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apijg.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apijs32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apikh32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apiks.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apila.dll -> TrojanDownloader.Agent.bc : Cleaned with backup
C:\WINDOWS\apily32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apilz32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apimr32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apimy.exe -> TrojanDownloader.Agent.bq : Cleaned with backup
C:\WINDOWS\apioh.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apioh32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apipf32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apipz32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apiqn.dll -> TrojanDownloader.Agent.bc : Cleaned with backup
C:\WINDOWS\apiqn.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apiqr.exe -> TrojanDownloader.Agent.bq : Cleaned with backup
C:\WINDOWS\apiqr32.dll -> TrojanDownloader.Agent.bc : Cleaned with backup
C:\WINDOWS\apisa32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apise.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apisn.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apiso32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apisq.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apisr32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apisu.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apisz.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apitr32.exe -> TrojanDownloader.Agent.bq : Cleaned with backup
C:\WINDOWS\apiuc.dll -> TrojanDownloader.Agent.bc : Cleaned with backup
C:\WINDOWS\apiuj.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apiuk32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apiux.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apiuy.dll -> TrojanDownloader.Agent.bc : Cleaned with backup
C:\WINDOWS\apiuy.exe -> TrojanDownloader.Agent.bq : Cleaned with backup
C:\WINDOWS\apiuy32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apivv.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apiwg32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apiwi32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apixt.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apixx.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apiyb.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apiyt32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\apizd32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\appab32.exe -> TrojanDownloader.Agent.bq : Cleaned with backup
C:\WINDOWS\appad32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\appaj32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\appbx.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\appcx32.dll -> TrojanDownloader.Agent.bc : Cleaned with backup
C:\WINDOWS\appdd.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\appde.exe -> TrojanDownloader.Agent.bq : Cleaned with backup
C:\WINDOWS\appdp32.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\appef.exe -> Trojan.Agent.bi : Cleaned with backup
C:\WINDOWS\appeu.dll -> TrojanDownloader.Agent.bc : Cleaned with backup

07-15-2005, 12:01 PM	#10 (permalink)
bigjohn Registered User Join Date: Sep 2004 Posts: 11 OS: XP Professional	Ewido's log 6. Ewido's Log The log was too long to include.... I just cut and pasted a portion- I can send the entire log if needed. --------------------------------------------------------- ewido security suite - Scan report --------------------------------------------------------- + Created on: 11:17:33 PM, 7/14/2005 + Report-Checksum: 78446C7A + Scan result: HKLM\SOFTWARE\Classes\CLSID\{04256906-BECE-83AC-2058-27ABA38B11A3} -> Spyware.CoolWebSearch : Cleaned with backup HKLM\SOFTWARE\Classes\CLSID\{05CFF62B-F8EF-A6A3-C2D8-0649EE07F197} -> Spyware.CoolWebSearch : Cleaned with backup HKLM\SOFTWARE\Classes\CLSID\{07FF232E-41D0-38A2-6073-6847AD3E6453} -> Spyware.CoolWebSearch : Cleaned with backup HKLM\SOFTWARE\Classes\CLSID\{09248DC7-285D-A208-7675-8D1BAC7208C9} -> Spyware.CoolWebSearch : Cleaned with backup HKLM\SOFTWARE\Classes\CLSID\{0FBFA147-FFB4-19A8-49F8-D1A17B80E32D} -> Spyware.CoolWebSearch : Cleaned with backup HKLM\SOFTWARE\Classes\CLSID\{208BD4D8-3DA2-3736-A8E6-F3AF3479FA31} -> Spyware.CoolWebSearch : Cleaned with backup HKLM\SOFTWARE\Classes\CLSID\{26F5CDB0-3ADD-70F3-F30F-8DD2B92D52FF} -> Spyware.CoolWebSearch : Cleaned with backup HKLM\SOFTWARE\Classes\CLSID\{3A044FBA-5DEF-1ECF-55E6-8A9DE3722CEC} -> Spyware.CoolWebSearch : Cleaned with backup HKLM\SOFTWARE\Classes\CLSID\{3F15B481-32E2-FE85-96FA-A8976289B4FD} -> Spyware.CoolWebSearch : Cleaned with backup HKLM\SOFTWARE\Classes\CLSID\{4A210C09-C3AE-D36C-3EC5-0D7723985463} -> Spyware.CoolWebSearch : Cleaned with backup HKLM\SOFTWARE\Classes\CLSID\{4C1CBC17-3C15-343F-1E7C-D8F447935C05} -> Spyware.CoolWebSearch : Cleaned with backup HKLM\SOFTWARE\Classes\CLSID\{5345A51F-E5D0-5A0D-1418-A1C95C417E3C} -> Spyware.CoolWebSearch : Cleaned with backup HKLM\SOFTWARE\Classes\CLSID\{5BCC3EE7-9153-E89F-6D4E-9B02B02B4E2E} -> Spyware.CoolWebSearch : Cleaned with backup HKLM\SOFTWARE\Classes\CLSID\{676575DD-4D46-911D-8037-9B10D6EE8BB5} -> Spyware.CoolWebSearch : Cleaned with backup HKLM\SOFTWARE\Classes\CLSID\{72071605-48F5-CC68-B374-2CDDF451F27F} -> Spyware.CoolWebSearch : Cleaned with backup HKLM\SOFTWARE\Classes\CLSID\{735DDAC7-F8F1-47DD-D87A-6AF0100B6A48} -> Spyware.CoolWebSearch : Cleaned with backup HKLM\SOFTWARE\Classes\CLSID\{7658C68E-7ED4-8476-AC96-729091012307} -> Spyware.CoolWebSearch : Cleaned with backup HKLM\SOFTWARE\Classes\CLSID\{77CD9B7C-6604-FD84-83FE-47AE9E1477C2} -> Spyware.CoolWebSearch : Cleaned with backup HKLM\SOFTWARE\Classes\CLSID\{7868EC16-8C67-1DBD-6D5A-EBB325881BD9} -> Spyware.CoolWebSearch : Cleaned with backup HKLM\SOFTWARE\Classes\CLSID\{8CD1D4D3-8260-44A7-67DD-A71E995AB77F} -> Spyware.CoolWebSearch : Cleaned with backup HKLM\SOFTWARE\Classes\CLSID\{929F8E8D-2C15-4240-E685-FA3C645381C5} -> Spyware.CoolWebSearch : Cleaned with backup HKLM\SOFTWARE\Classes\CLSID\{A4405AD1-A13C-E10B-4B57-D5092B102F2B} -> Spyware.CoolWebSearch : Cleaned with backup HKLM\SOFTWARE\Classes\CLSID\{B78A202C-9FF5-481D-3E8C-0877C167707F} -> Spyware.CoolWebSearch : Cleaned with backup HKLM\SOFTWARE\Classes\CLSID\{B7C06F7A-7E5B-8248-7CE7-E61C97F1037E} -> Spyware.MidAddle : Cleaned with backup HKLM\SOFTWARE\Classes\CLSID\{BAA4A995-E881-38F6-1E95-AF9F2785FBB3} -> Spyware.CoolWebSearch : Cleaned with backup HKLM\SOFTWARE\Classes\CLSID\{BB35FD19-38F4-89DC-FA76-BA6507A5C6D7} -> Spyware.CoolWebSearch : Cleaned with backup HKLM\SOFTWARE\Classes\CLSID\{BC0DC8BD-646D-FA46-8739-116B4F8B8228} -> Spyware.CoolWebSearch : Cleaned with backup HKLM\SOFTWARE\Classes\CLSID\{BC0FE7F5-AD1D-A795-C683-F3EB54072EFE} -> Spyware.CoolWebSearch : Cleaned with backup HKLM\SOFTWARE\Classes\CLSID\{BD00AB82-F105-58F8-2B31-B600383177E6} -> Spyware.CoolWebSearch : Cleaned with backup HKLM\SOFTWARE\Classes\CLSID\{BEB133E5-FD72-43b7-8AFF-681831CC72D9} -> Spyware.Hijacker.Generic : Cleaned with backup HKLM\SOFTWARE\Classes\CLSID\{C0E27572-BE10-BE39-5F1B-F26255B8F141} -> Spyware.CoolWebSearch : Cleaned with backup HKLM\SOFTWARE\Classes\CLSID\{D02510A9-69A7-24D5-85DA-D3EC8E911C73} -> Spyware.CoolWebSearch : Cleaned with backup HKLM\SOFTWARE\Classes\CLSID\{D775F18B-70E6-FBB1-C13D-52CE71E899B3} -> Spyware.CoolWebSearch : Cleaned with backup HKLM\SOFTWARE\Classes\CLSID\{E4564D6D-4921-87B7-0C6A-2097D907B4A5} -> Spyware.CoolWebSearch : Cleaned with backup HKLM\SOFTWARE\Classes\CLSID\{F573A15E-4E08-2CE8-1F75-3F0D794E2E42} -> Spyware.CoolWebSearch : Cleaned with backup HKLM\SOFTWARE\Classes\CLSID\{FA6A8ADC-5ACF-A739-A8BF-5E4D7B5991C1} -> Spyware.CoolWebSearch : Cleaned with backup HKLM\SOFTWARE\Classes\CLSID\{FA6A9E8D-BFF9-8822-80F2-D1B507D9FF99} -> Spyware.CoolWebSearch : Cleaned with backup HKLM\SOFTWARE\Classes\CLSID\{FBD21FB3-D80F-1A9B-2038-2D60684CDEE0} -> Spyware.CoolWebSearch : Cleaned with backup HKU\S-1-5-21-1935655697-813497703-854245398-1003\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{77CD9B7C-6604-FD84-83FE-47AE9E1477C2} -> Spyware.CoolWebSearch : Cleaned with backup HKU\S-1-5-21-1935655697-813497703-854245398-1003\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{B78A202C-9FF5-481D-3E8C-0877C167707F} -> Spyware.CoolWebSearch : Cleaned with backup HKU\S-1-5-21-1935655697-813497703-854245398-1003\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{BB35FD19-38F4-89DC-FA76-BA6507A5C6D7} -> Spyware.CoolWebSearch : Cleaned with backup HKU\S-1-5-21-1935655697-813497703-854245398-1003\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{E0E5A173-0CF3-BCA9-8543-4B6252CD9DA6} -> Spyware.CoolWebSearch : Cleaned with backup HKU\S-1-5-21-1935655697-813497703-854245398-1003\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{F573A15E-4E08-2CE8-1F75-3F0D794E2E42} -> Spyware.CoolWebSearch : Cleaned with backup C:\Program Files\HijackThis\backups\backup-20050713-211723-796.dll -> TrojanDownloader.Agent.bc : Cleaned with backup C:\WINDOWS\Active Setup Log.txt:kzdtub -> Trojan.Agent.bi : Cleaned with backup C:\WINDOWS\Active Setup Log.txt:lpkli -> TrojanDownloader.Agent.bc : Cleaned with backup C:\WINDOWS\Active Setup Log.txt:zpjij -> TrojanDownloader.Agent.bc : Cleaned with backup C:\WINDOWS\addaa32.exe -> Trojan.Agent.bi : Cleaned with backup C:\WINDOWS\addaj.dll -> TrojanDownloader.Agent.bc : Cleaned with backup C:\WINDOWS\addau32.exe -> TrojanDownloader.Agent.bq : Cleaned with backup C:\WINDOWS\adday.exe -> Trojan.Agent.bi : Cleaned with backup C:\WINDOWS\addbz32.exe -> Trojan.Agent.bi : Cleaned with backup C:\WINDOWS\addcf32.exe -> Trojan.Agent.bi : Cleaned with backup C:\WINDOWS\adddj.exe -> Trojan.Agent.bi : Cleaned with backup C:\WINDOWS\adddr.exe -> Trojan.Agent.bi : Cleaned with backup C:\WINDOWS\adddu32.exe -> Trojan.Agent.bi : Cleaned with backup C:\WINDOWS\addfb32.exe -> Trojan.Agent.bi : Cleaned with backup C:\WINDOWS\addfz.exe -> Trojan.Agent.bi : Cleaned with backup C:\WINDOWS\addge32.exe -> Trojan.Agent.bi : Cleaned with backup C:\WINDOWS\addgv32.exe -> Trojan.Agent.bi : Cleaned with backup C:\WINDOWS\addhq.exe -> Trojan.Agent.bi : Cleaned with backup C:\WINDOWS\addih.exe -> TrojanDownloader.Agent.bq : Cleaned with backup C:\WINDOWS\addjt.exe -> Trojan.Agent.bi : Cleaned with backup C:\WINDOWS\addkb32.exe -> Trojan.Agent.bi : Cleaned with backup C:\WINDOWS\addke32.exe -> Trojan.Agent.bi : Cleaned with backup C:\WINDOWS\addkp.dll -> TrojanDownloader.Agent.bc : Cleaned with backup C:\WINDOWS\addkp.exe -> Trojan.Agent.bi : Cleaned with backup C:\WINDOWS\addkq32.exe -> Trojan.Agent.bi : Cleaned with backup C:\WINDOWS\addky32.dll -> TrojanDownloader.Agent.bc : Cleaned with backup C:\WINDOWS\addky32.exe -> TrojanDownloader.Agent.bq : Cleaned with backup C:\WINDOWS\addlc.exe -> TrojanDownloader.Agent.bq : Cleaned with backup C:\WINDOWS\addle.exe -> Trojan.Agent.bi : Cleaned with backup C:\WINDOWS\addmi.exe -> TrojanDownloader.Agent.bq : Cleaned with backup C:\WINDOWS\addns32.exe -> Trojan.Agent.bi : Cleaned with backup C:\WINDOWS\addoe32.exe -> Trojan.Agent.bi : Cleaned with backup C:\WINDOWS\addog32.exe -> Trojan.Agent.bi : Cleaned with backup C:\WINDOWS\addoi32.exe -> Trojan.Agent.bi : Cleaned with backup C:\WINDOWS\addoo.exe -> Trojan.Agent.bi : Cleaned with backup C:\WINDOWS\addoq32.exe -> TrojanDownloader.Agent.bq : Cleaned with backup C:\WINDOWS\addqb.exe -> TrojanDownloader.Agent.bq : Cleaned with backup C:\WINDOWS\addqh32.exe -> Trojan.Agent.bi : Cleaned with backup C:\WINDOWS\addqq32.dll -> TrojanDownloader.Agent.bc : Cleaned with backup C:\WINDOWS\addqt.dll -> TrojanDownloader.Agent.bc : Cleaned with backup C:\WINDOWS\addqt.exe -> Trojan.Agent.bi : Cleaned with backup C:\WINDOWS\addqx32.exe -> Trojan.Agent.bi : Cleaned with backup C:\WINDOWS\addro32.exe -> Trojan.Agent.bi : Cleaned with backup C:\WINDOWS\addrt32.dll -> TrojanDownloader.Agent.bc : Cleaned with backup C:\WINDOWS\addsq32.exe -> Trojan.Agent.bi : Cleaned with backup C:\WINDOWS\addtl.exe -> Trojan.Agent.bi : Cleaned with backup C:\WINDOWS\addtr32.exe -> TrojanDownloader.Agent.bq : Cleaned with backup C:\WINDOWS\addty32.dll -> TrojanDownloader.Agent.bc : Cleaned with backup C:\WINDOWS\addva.exe -> Trojan.Agent.bi : Cleaned with backup C:\WINDOWS\addvi.exe -> Trojan.Agent.bi : Cleaned with backup C:\WINDOWS\addvk32.exe -> TrojanDownloader.Agent.bq : Cleaned with backup C:\WINDOWS\addvp.exe -> Trojan.Agent.bi : Cleaned with backup C:\WINDOWS\addvv32.exe -> Trojan.Agent.bi : Cleaned with backup C:\WINDOWS\addvy.exe -> Trojan.Agent.bi : Cleaned with backup C:\WINDOWS\addwi.exe -> Trojan.Agent.bi : Cleaned with backup C:\WINDOWS\addwz.exe -> Trojan.Agent.bi : Cleaned with backup C:\WINDOWS\addxo.dll -> TrojanDownloader.Agent.bc : Cleaned with backup C:\WINDOWS\addxo32.exe -> Trojan.Agent.bi : Cleaned with backup C:\WINDOWS\addxu32.exe -> Trojan.Agent.bi : Cleaned with backup C:\WINDOWS\addya.exe -> Trojan.Agent.bi : Cleaned with backup C:\WINDOWS\addyh32.exe -> Trojan.Agent.bi : Cleaned with backup C:\WINDOWS\addyj32.exe -> Trojan.Agent.bi : Cleaned with backup C:\WINDOWS\addyr32.dll -> TrojanDownloader.Agent.bc : Cleaned with backup C:\WINDOWS\addyr32.exe -> Trojan.Agent.bi : Cleaned with backup C:\WINDOWS\addyz.exe -> Trojan.Agent.bi : Cleaned with backup C:\WINDOWS\addzn32.dll -> TrojanDownloader.Agent.bc : Cleaned with backup C:\WINDOWS\addzq32.exe -> Trojan.Agent.bi : Cleaned with backup C:\WINDOWS\addzv32.exe -> Trojan.Agent.bi : Cleaned with backup C:\WINDOWS\ahdqj.txt:bxllp -> TrojanDownloader.Agent.bc : Cleaned with backup C:\WINDOWS\ahdqj.txt:hnhvn -> TrojanDownloader.Agent.bq : Cleaned with backup C:\WINDOWS\ahdqj.txt:jaanj -> TrojanDownloader.Agent.bc : Cleaned with backup C:\WINDOWS\apiav.exe -> Trojan.Agent.bi : Cleaned with backup C:\WINDOWS\apick32.exe -> Trojan.Agent.bi : Cleaned with backup C:\WINDOWS\apicu.exe -> Trojan.Agent.bi : Cleaned with backup C:\WINDOWS\apicw.exe -> TrojanDownloader.Agent.bq : Cleaned with backup C:\WINDOWS\apidf32.exe -> Trojan.Agent.bi : Cleaned with backup C:\WINDOWS\apief.dll -> TrojanDownloader.Agent.bc : Cleaned with backup C:\WINDOWS\apieh.exe -> Trojan.Agent.bi : Cleaned with backup C:\WINDOWS\apifl32.exe -> Trojan.Agent.bi : Cleaned with backup C:\WINDOWS\apifn32.exe -> TrojanDownloader.Agent.bq : Cleaned with backup C:\WINDOWS\apifw.exe -> Trojan.Agent.bi : Cleaned with backup C:\WINDOWS\apifx.exe -> Trojan.Agent.bi : Cleaned with backup C:\WINDOWS\apigl32.exe -> Trojan.Agent.bi : Cleaned with backup C:\WINDOWS\apigs32.exe -> Trojan.Agent.bi : Cleaned with backup C:\WINDOWS\apigv.exe -> Trojan.Agent.bi : Cleaned with backup C:\WINDOWS\apigz32.dll -> TrojanDownloader.Agent.bc : Cleaned with backup C:\WINDOWS\apihc.exe -> TrojanDownloader.Agent.bq : Cleaned with backup C:\WINDOWS\apihn32.exe -> Trojan.Agent.bi : Cleaned with backup C:\WINDOWS\apiii32.dll -> TrojanDownloader.Agent.bc : Cleaned with backup C:\WINDOWS\apija32.exe -> Trojan.Agent.bi : Cleaned with backup C:\WINDOWS\apijg.exe -> Trojan.Agent.bi : Cleaned with backup C:\WINDOWS\apijs32.exe -> Trojan.Agent.bi : Cleaned with backup C:\WINDOWS\apikh32.exe -> Trojan.Agent.bi : Cleaned with backup C:\WINDOWS\apiks.exe -> Trojan.Agent.bi : Cleaned with backup C:\WINDOWS\apila.dll -> TrojanDownloader.Agent.bc : Cleaned with backup C:\WINDOWS\apily32.exe -> Trojan.Agent.bi : Cleaned with backup C:\WINDOWS\apilz32.exe -> Trojan.Agent.bi : Cleaned with backup C:\WINDOWS\apimr32.exe -> Trojan.Agent.bi : Cleaned with backup C:\WINDOWS\apimy.exe -> TrojanDownloader.Agent.bq : Cleaned with backup C:\WINDOWS\apioh.exe -> Trojan.Agent.bi : Cleaned with backup C:\WINDOWS\apioh32.exe -> Trojan.Agent.bi : Cleaned with backup C:\WINDOWS\apipf32.exe -> Trojan.Agent.bi : Cleaned with backup C:\WINDOWS\apipz32.exe -> Trojan.Agent.bi : Cleaned with backup C:\WINDOWS\apiqn.dll -> TrojanDownloader.Agent.bc : Cleaned with backup C:\WINDOWS\apiqn.exe -> Trojan.Agent.bi : Cleaned with backup C:\WINDOWS\apiqr.exe -> TrojanDownloader.Agent.bq : Cleaned with backup C:\WINDOWS\apiqr32.dll -> TrojanDownloader.Agent.bc : Cleaned with backup C:\WINDOWS\apisa32.exe -> Trojan.Agent.bi : Cleaned with backup C:\WINDOWS\apise.exe -> Trojan.Agent.bi : Cleaned with backup C:\WINDOWS\apisn.exe -> Trojan.Agent.bi : Cleaned with backup C:\WINDOWS\apiso32.exe -> Trojan.Agent.bi : Cleaned with backup C:\WINDOWS\apisq.exe -> Trojan.Agent.bi : Cleaned with backup C:\WINDOWS\apisr32.exe -> Trojan.Agent.bi : Cleaned with backup C:\WINDOWS\apisu.exe -> Trojan.Agent.bi : Cleaned with backup C:\WINDOWS\apisz.exe -> Trojan.Agent.bi : Cleaned with backup C:\WINDOWS\apitr32.exe -> TrojanDownloader.Agent.bq : Cleaned with backup C:\WINDOWS\apiuc.dll -> TrojanDownloader.Agent.bc : Cleaned with backup C:\WINDOWS\apiuj.exe -> Trojan.Agent.bi : Cleaned with backup C:\WINDOWS\apiuk32.exe -> Trojan.Agent.bi : Cleaned with backup C:\WINDOWS\apiux.exe -> Trojan.Agent.bi : Cleaned with backup C:\WINDOWS\apiuy.dll -> TrojanDownloader.Agent.bc : Cleaned with backup C:\WINDOWS\apiuy.exe -> TrojanDownloader.Agent.bq : Cleaned with backup C:\WINDOWS\apiuy32.exe -> Trojan.Agent.bi : Cleaned with backup C:\WINDOWS\apivv.exe -> Trojan.Agent.bi : Cleaned with backup C:\WINDOWS\apiwg32.exe -> Trojan.Agent.bi : Cleaned with backup C:\WINDOWS\apiwi32.exe -> Trojan.Agent.bi : Cleaned with backup C:\WINDOWS\apixt.exe -> Trojan.Agent.bi : Cleaned with backup C:\WINDOWS\apixx.exe -> Trojan.Agent.bi : Cleaned with backup C:\WINDOWS\apiyb.exe -> Trojan.Agent.bi : Cleaned with backup C:\WINDOWS\apiyt32.exe -> Trojan.Agent.bi : Cleaned with backup C:\WINDOWS\apizd32.exe -> Trojan.Agent.bi : Cleaned with backup C:\WINDOWS\appab32.exe -> TrojanDownloader.Agent.bq : Cleaned with backup C:\WINDOWS\appad32.exe -> Trojan.Agent.bi : Cleaned with backup C:\WINDOWS\appaj32.exe -> Trojan.Agent.bi : Cleaned with backup C:\WINDOWS\appbx.exe -> Trojan.Agent.bi : Cleaned with backup C:\WINDOWS\appcx32.dll -> TrojanDownloader.Agent.bc : Cleaned with backup C:\WINDOWS\appdd.exe -> Trojan.Agent.bi : Cleaned with backup C:\WINDOWS\appde.exe -> TrojanDownloader.Agent.bq : Cleaned with backup C:\WINDOWS\appdp32.exe -> Trojan.Agent.bi : Cleaned with backup C:\WINDOWS\appef.exe -> Trojan.Agent.bi : Cleaned with backup C:\WINDOWS\appeu.dll -> TrojanDownloader.Agent.bc : Cleaned with backup