contents of C:\Program Files\ornu
nothing
DrWeb
install32.exe;C:\;Adware.DollarRevenue;Incurable.Moved.;
install62.exe;C:\;Adware.DollarRevenue;Incurable.Moved.;
install64.exe;C:\;Adware.DollarRevenue;Incurable.Moved.;
msts.com;C:\;Adware.DollarRevenue;Incurable.Moved.;
html1.htm\Javascript.0;C:\Program Files\html1.htm;Trojan.Click.1237;;
html1.htm;C:\Program Files;Archive contains infected objects;Moved.;
html2.htm\Javascript.0;C:\Program Files\html2.htm;Trojan.Click.1237;;
html2.htm;C:\Program Files;Archive contains infected objects;Moved.;
WxBug.EXE;C:\Program Files\AIM\Sysfiles;Adware.Aws;Incurable.Moved.;
Dc10.exe;C:\RECYCLER\S-1-5-21-4132758413-3532774341-1170141040-1009;Adware.DollarRevenue;Incurable.Moved.;
Dc11.exe;C:\RECYCLER\S-1-5-21-4132758413-3532774341-1170141040-1009;Adware.DollarRevenue;Incurable.Moved.;
Dc12.exe;C:\RECYCLER\S-1-5-21-4132758413-3532774341-1170141040-1009;Adware.DollarRevenue;Incurable.Moved.;
Dc13.exe;C:\RECYCLER\S-1-5-21-4132758413-3532774341-1170141040-1009;Adware.DollarRevenue;Incurable.Moved.;
Dc14.exe;C:\RECYCLER\S-1-5-21-4132758413-3532774341-1170141040-1009;Adware.DollarRevenue;Incurable.Moved.;
Dc16.exe;C:\RECYCLER\S-1-5-21-4132758413-3532774341-1170141040-1009;Adware.DollarRevenue;Incurable.Moved.;
Dc17.exe;C:\RECYCLER\S-1-5-21-4132758413-3532774341-1170141040-1009;Adware.DollarRevenue;Incurable.Moved.;
Dc21.exe;C:\RECYCLER\S-1-5-21-4132758413-3532774341-1170141040-1009;Adware.DollarRevenue;Incurable.Moved.;
Dc23.exe;C:\RECYCLER\S-1-5-21-4132758413-3532774341-1170141040-1009;Adware.DollarRevenue;Incurable.Moved.;
Dc24.exe;C:\RECYCLER\S-1-5-21-4132758413-3532774341-1170141040-1009;Adware.DollarRevenue;Incurable.Moved.;
Dc25.exe;C:\RECYCLER\S-1-5-21-4132758413-3532774341-1170141040-1009;Adware.DollarRevenue;Incurable.Moved.;
Dc26.exe;C:\RECYCLER\S-1-5-21-4132758413-3532774341-1170141040-1009;Adware.DollarRevenue;Incurable.Moved.;
Dc6.exe;C:\RECYCLER\S-1-5-21-4132758413-3532774341-1170141040-1009;Adware.DollarRevenue;Incurable.Moved.;
Dc8.exe;C:\RECYCLER\S-1-5-21-4132758413-3532774341-1170141040-1009;Adware.DollarRevenue;Incurable.Moved.;
yakxxuo.exe;C:\RECYCLER\S-1-5-21-4132758413-3532774341-1170141040-1009\Dc5;Trojan.Popuper;Deleted.;
A0152262.exe;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP477;Trojan.DownLoader.9440;Deleted.;
A0152265.exe;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP477;BackDoor.Generic.1219;Deleted.;
A0152271.pif;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP477;Adware.DollarRevenue;Incurable.Moved.;
A0152272.exe;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP477;Adware.DollarRevenue;Incurable.Moved.;
A0152278.exe;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP477;Trojan.Dyfuca;Deleted.;
A0152279.exe;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP477;Trojan.Dyfuca;Deleted.;
A0152280.exe;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP477;Adware.Enbrow;Incurable.Moved.;
A0152281.exe;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP477;BackDoor.Generic.1219;Deleted.;
A0152283.exe;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP477;Trojan.Click.1211;Deleted.;
A0152285.exe;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP477;Trojan.Click.1166;Deleted.;
A0152286.exe\data001;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP477\A0152286.exe;Trojan.Popuper;;
A0152286.exe\data002;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP477\A0152286.exe;Trojan.Popuper;;
A0152286.exe\data004;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP477\A0152286.exe;Trojan.Dyfuca;;
A0152286.exe;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP477;Archive contains infected objects;Moved.;
A0152287.exe;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP477;Trojan.DownLoader.5013;Deleted.;
A0152288.exe;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP477;Trojan.DownLoader.5013;Deleted.;
A0152289.EXE;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP477;Adware.NewDotNet;Incurable.Moved.;
A0152290.exe;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP477;Trojan.Popuper;Deleted.;
A0152291.exe;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP477;Adware.Surfside;Incurable.Moved.;
A0152292.exe;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP477;Adware.TargetServer;Incurable.Moved.;
A0152294.exe;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP477;Adware.Look2me;Incurable.Moved.;
A0152295.exe;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP477;Adware.Look2me;Incurable.Moved.;
A0153269.dll;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP477;Adware.Look2me;Incurable.Moved.;
A0153270.pif;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP477;Adware.DollarRevenue;Incurable.Moved.;
A0153271.exe;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP477;Adware.DollarRevenue;Incurable.Moved.;
A0153292.dll;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP477;Adware.Look2me;Incurable.Moved.;
A0153298.dll;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP477;Adware.Look2me;Incurable.Moved.;
A0153306.exe;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP477;Trojan.DownLoader.10320;Incurable.Moved.;
A0153310.exe;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP478;Adware.DollarRevenue;Incurable.Moved.;
A0153312.exe;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP478;Trojan.DownLoader.10320;Incurable.Moved.;
A0153321.exe;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP478;Trojan.DownLoader.10320;Incurable.Moved.;
A0153324.exe;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP478;Trojan.DownLoader.10320;Incurable.Moved.;
A0153327.exe;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP478;Trojan.DownLoader.10320;Incurable.Moved.;
A0153330.exe;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP478;Trojan.DownLoader.10320;Incurable.Moved.;
A0153333.dll;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP478;Adware.Look2me;Incurable.Moved.;
A0153339.dll;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP478;Adware.Look2me;Incurable.Moved.;
A0153341.exe;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP478;Adware.DollarRevenue;Incurable.Moved.;
A0153343.exe;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP478;Trojan.DownLoader.10320;Incurable.Moved.;
A0153357.dll;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP479;Adware.Look2me;Incurable.Moved.;
A0153363.dll;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP479;Adware.Look2me;Incurable.Moved.;
A0153364.pif;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP479;Adware.DollarRevenue;Incurable.Moved.;
A0153376.dll;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP479;Adware.Look2me;Incurable.Moved.;
A0153384.dll;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP479;Adware.Look2me;Incurable.Moved.;
A0153390.dll;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP480;Adware.Look2me;Incurable.Moved.;
A0153396.dll;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP480;Adware.Look2me;Incurable.Moved.;
A0153403.dll;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP480;Adware.Look2me;Incurable.Moved.;
A0153409.dll;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP480;Adware.Look2me;Incurable.Moved.;
A0153411.exe;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP480;Adware.DollarRevenue;Incurable.Moved.;
A0153417.dll;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP480;Adware.Look2me;Incurable.Moved.;
A0153425.exe;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP480;Adware.DollarRevenue;Incurable.Moved.;
A0153427.exe;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP480;Trojan.DownLoader.10320;Incurable.Moved.;
A0153446.dll;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP481;Adware.Look2me;Incurable.Moved.;
A0153447.dll;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP481;Adware.Look2me;Incurable.Moved.;
A0153459.dll;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP481;Adware.Look2me;Incurable.Moved.;
A0153460.dll;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP481;Adware.Look2me;Incurable.Moved.;
A0154459.dll;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP481;Adware.Look2me;Incurable.Moved.;
A0154487.dll;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP482;Adware.Look2me;Incurable.Moved.;
A0154495.dll;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP482;Adware.Look2me;Incurable.Moved.;
A0154499.exe;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP482;Adware.DollarRevenue;Incurable.Moved.;
A0154500.exe;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP482;Trojan.Click.911;Deleted.;
A0154501.exe;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP482;Trojan.DownLoader.9440;Deleted.;
A0154507.dll;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP482;Adware.Look2me;Incurable.Moved.;
A0154512.dll;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP482;Adware.Look2me;Incurable.Moved.;
A0154523.exe;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP482;Adware.DollarRevenue;Incurable.Moved.;
A0154524.exe;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP482;Adware.DollarRevenue;Incurable.Moved.;
A0154526.exe;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP482;Trojan.DownLoader.10320;Incurable.Moved.;
A0154527.exe;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP482;Adware.DollarRevenue;Incurable.Moved.;
A0154537.dll;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP483;Adware.NewDotNet;Incurable.Moved.;
A0154538.dll;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP483;Adware.Look2me;Incurable.Moved.;
A0154549.dll;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP483;Adware.Look2me;Incurable.Moved.;
A0154556.exe;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP483;Adware.DollarRevenue;Incurable.Moved.;
A0154558.dll;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP483;Adware.Look2me;Incurable.Moved.;
A0154567.exe;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP483;Adware.DollarRevenue;Incurable.Moved.;
A0155558.dll;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP484;Adware.Look2me;Incurable.Moved.;
A0156558.dll;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP485;Adware.Look2me;Incurable.Moved.;
A0156570.exe;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP485;Adware.DollarRevenue;Incurable.Moved.;
A0156571.exe;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP485;Adware.DollarRevenue;Incurable.Moved.;
A0157558.dll;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP486;Adware.Look2me;Incurable.Moved.;
A0158558.dll;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP486;Adware.Look2me;Incurable.Moved.;
A0158577.exe;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP487;Adware.DollarRevenue;Incurable.Moved.;
A0158580.dll;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP487;Adware.Look2me;Incurable.Moved.;
A0158585.dll;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP487;Adware.Look2me;Incurable.Moved.;
A0158595.dll;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP487;Adware.Look2me;Incurable.Moved.;
A0158603.dll;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP487;Adware.Look2me;Incurable.Moved.;
A0158609.dll;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP487;Adware.Look2me;Incurable.Moved.;
A0158617.dll;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP487;Adware.Look2me;Incurable.Moved.;
A0158622.exe;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP487;Adware.DollarRevenue;Incurable.Moved.;
A0158629.dll;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP488;Adware.Look2me;Incurable.Moved.;
A0158633.dll;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP488;Adware.Look2me;Incurable.Moved.;
A0158638.dll;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP488;Adware.Look2me;Incurable.Moved.;
A0158642.com;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP488;Adware.DollarRevenue;Incurable.Moved.;
A0158645.exe;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP488;Adware.DollarRevenue;Incurable.Moved.;
A0158653.EXE;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP488;Adware.NewDotNet;Incurable.Moved.;
A0158654.exe;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP488;Adware.NewDotNet;Incurable.Moved.;
A0158655.exe;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP488;Adware.NewDotNet;Incurable.Moved.;
A0158656.exe;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP488;Adware.NewDotNet;Incurable.Moved.;
A0158657.exe;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP488;Adware.Look2me;Incurable.Moved.;
A0158658.exe;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP488;Adware.Look2me;Incurable.Moved.;
A0158659.exe;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP488;Adware.Look2me;Incurable.Moved.;
A0158660.exe;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP488;Adware.Look2me;Incurable.Moved.;
A0158661.exe;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP488;Adware.Look2me;Incurable.Moved.;
A0158662.dll;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP488;Adware.Look2me;Incurable.Moved.;
A0158663.dll;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP488;Adware.Look2me;Incurable.Moved.;
A0158664.dll;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP488;Adware.Look2me;Incurable.Moved.;
A0158665.dll;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP488;Adware.Look2me;Incurable.Moved.;
A0158666.dll;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP488;Adware.Look2me;Incurable.Moved.;
A0158667.exe;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP488;Trojan.DownLoader.5013;Deleted.;
A0158668.exe;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP488;Trojan.DownLoader.5013;Deleted.;
A0158669.exe;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP488;Adware.Surfside;Incurable.Moved.;
A0158670.exe;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP488;Adware.TargetServer;Incurable.Moved.;
A0158671.exe\data001;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP488\A0158671.exe;Trojan.Popuper;;
A0158671.exe\data002;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP488\A0158671.exe;Trojan.Popuper;;
A0158671.exe\data004;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP488\A0158671.exe;Trojan.Dyfuca;;
A0158671.exe;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP488;Archive contains infected objects;Moved.;
A0158673.dll;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP488;Adware.Look2me;Incurable.Moved.;
A0158681.dll;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP488;Adware.Look2me;Incurable.Moved.;
A0158774.dll;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP488;Adware.Look2me;Incurable.Moved.;
A0158779.dll;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP488;Adware.Look2me;Incurable.Moved.;
A0158781.exe;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP488;Adware.DollarRevenue;Incurable.Moved.;
A0158788.exe;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP488;Adware.DollarRevenue;Incurable.Moved.;
A0158789.exe;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP488;Adware.DollarRevenue;Incurable.Moved.;
A0158791.exe;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP488;Adware.DollarRevenue;Incurable.Moved.;
A0159781.dll;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP488;Adware.Look2me;Incurable.Moved.;
A0159787.exe;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP488;Adware.DollarRevenue;Incurable.Moved.;
A0159788.exe;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP488;Trojan.Starter.65;Deleted.;
A0159791.dll;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP488;Adware.FastSearch;Incurable.Moved.;
A0160778.dll;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP489;Adware.Look2me;Incurable.Moved.;
A0161778.dll;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP489;Adware.Look2me;Incurable.Moved.;
A0161793.dll;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP489;Adware.Look2me;Incurable.Moved.;
A0161801.dll;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP489;Adware.Look2me;Incurable.Moved.;
A0162800.dll;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP489;Adware.Look2me;Incurable.Moved.;
A0162806.dll;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP489;Adware.Look2me;Incurable.Moved.;
A0162812.dll;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP489;Adware.Look2me;Incurable.Moved.;
A0162820.dll;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP489;Adware.Look2me;Incurable.Moved.;
A0162826.dll;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP489;Adware.Look2me;Incurable.Moved.;
A0163824.dll;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP489;Adware.Look2me;Incurable.Moved.;
A0163833.dll;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP489;Adware.Look2me;Incurable.Moved.;
A0163840.dll;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP489;Adware.Look2me;Incurable.Moved.;
A0164838.dll;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP489;Adware.Look2me;Incurable.Moved.;
A0165837.dll;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP489;Adware.Look2me;Incurable.Moved.;
A0166840.dll;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP489;Adware.Look2me;Incurable.Moved.;
A0167837.dll;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP490;Adware.Look2me;Incurable.Moved.;
A0168841.dll;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP490;Adware.Look2me;Incurable.Moved.;
A0168845.dll;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP490;Adware.Look2me;Incurable.Moved.;
A0168853.dll;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP490;Adware.Look2me;Incurable.Moved.;
A0168858.dll;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP490;Adware.Look2me;Incurable.Moved.;
A0168869.dll;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP490;Adware.Look2me;Incurable.Moved.;
A0168874.dll;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP490;Adware.Look2me;Incurable.Moved.;
A0168895.dll;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP490;Adware.Look2me;Incurable.Moved.;
A0168901.dll;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP490;Adware.Look2me;Incurable.Moved.;
A0169900.dll;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP490;Adware.Look2me;Incurable.Moved.;
A0169910.dll;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP490;Adware.Look2me;Incurable.Moved.;
A0169918.dll;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP490;Adware.Look2me;Incurable.Moved.;
A0169924.dll;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP490;Adware.Look2me;Incurable.Moved.;
A0169932.dll;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP490;Adware.Look2me;Incurable.Moved.;
A0169946.dll;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP490;Adware.Look2me;Incurable.Moved.;
A0169954.dll;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP490;Adware.Look2me;Incurable.Moved.;
A0170950.dll;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP490;Adware.Look2me;Incurable.Moved.;
A0170983.dll;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP491;Adware.Look2me;Incurable.Moved.;
A0170989.dll;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP491;Adware.Look2me;Incurable.Moved.;
A0170997.dll;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP491;Adware.Look2me;Incurable.Moved.;
A0171002.dll;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP491;Adware.Look2me;Incurable.Moved.;
A0172004.DLL;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP491;Adware.Look2me;Incurable.Moved.;
A0173001.dll;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP492;Adware.Look2me;Incurable.Moved.;
A0173014.dll;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP493;Adware.Look2me;Incurable.Moved.;
A0173019.dll;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP493;Adware.Look2me;Incurable.Moved.;
A0174018.dll;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP493;Adware.Look2me;Incurable.Moved.;
A0174028.dll;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP493;Adware.Look2me;Incurable.Moved.;
A0174034.dll;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP493;Adware.Look2me;Incurable.Moved.;
A0174044.dll;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP493;Adware.Look2me;Incurable.Moved.;
A0174050.dll;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP493;Adware.Look2me;Incurable.Moved.;
A0175048.dll;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP493;Adware.Look2me;Incurable.Moved.;
A0176048.dll;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP493;Adware.Look2me;Incurable.Moved.;
A0177049.dll;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP494;Adware.Look2me;Incurable.Moved.;
A0177058.dll;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP494;Adware.Look2me;Incurable.Moved.;
A0177064.dll;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP494;Adware.Look2me;Incurable.Moved.;
A0178063.dll;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP494;Adware.Look2me;Incurable.Moved.;
A0178067.dll;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP495;Adware.Look2me;Incurable.Moved.;
A0178072.dll;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP495;Adware.Look2me;Incurable.Moved.;
A0179072.dll;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP495;Adware.Look2me;Incurable.Moved.;
A0180072.dll;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP496;Adware.Look2me;Incurable.Moved.;
A0181072.dll;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP496;Adware.Look2me;Incurable.Moved.;
A0182283.dll;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP497;Adware.Look2me;Incurable.Moved.;
A0182293.exe;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP497;Adware.NewDotNet;Incurable.Moved.;
A0182294.exe;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP497;Adware.Look2me;Incurable.Moved.;
A0182295.exe;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP497;Adware.Look2me;Incurable.Moved.;
A0182296.exe;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP497;Adware.Look2me;Incurable.Moved.;
A0182297.dll;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP497;Adware.Look2me;Incurable.Moved.;
A0182298.dll;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP497;Adware.Look2me;Incurable.Moved.;
A0182299.dll;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP497;Adware.Look2me;Incurable.Moved.;
A0182300.exe;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP497;Trojan.DownLoader.5013;Deleted.;
A0182301.exe;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP497;Trojan.DownLoader.5013;Deleted.;
A0182303.dll;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP497;Adware.Look2me;Incurable.Moved.;
A0182316.dll;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP498;Adware.Look2me;Incurable.Moved.;
A0182326.dll;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP498;Adware.Look2me;Incurable.Moved.;
A0182334.dll;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP498;Adware.Look2me;Incurable.Moved.;
A0182335.dll;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP498;Adware.Look2me;Incurable.Moved.;
A0182336.dll;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP498;Adware.Look2me;Incurable.Moved.;
A0182337.dll;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP498;Adware.Look2me;Incurable.Moved.;
A0182338.dll;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP498;Adware.Look2me;Incurable.Moved.;
A0182339.dll;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP498;Adware.Look2me;Incurable.Moved.;
A0182340.dll;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP498;Adware.Look2me;Incurable.Moved.;
A0182341.dll;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP498;Adware.Look2me;Incurable.Moved.;
A0182342.dll;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP498;Adware.Look2me;Incurable.Moved.;
A0182343.dll;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP498;Adware.Look2me;Incurable.Moved.;
A0182344.dll;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP498;Adware.Look2me;Incurable.Moved.;
A0182345.dll;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP498;Adware.Look2me;Incurable.Moved.;
A0182346.dll;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP498;Adware.Look2me;Incurable.Moved.;
A0182347.dll;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP498;Adware.Look2me;Incurable.Moved.;
A0182348.dll;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP498;Adware.Look2me;Incurable.Moved.;
A0182349.dll;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP498;Adware.Look2me;Incurable.Moved.;
A0182350.dll;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP498;Adware.Look2me;Incurable.Moved.;
A0182351.dll;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP498;Adware.Look2me;Incurable.Moved.;
A0182352.dll;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP498;Adware.Look2me;Incurable.Moved.;
A0182353.dll;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP498;Adware.Look2me;Incurable.Moved.;
A0182354.dll;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP498;Adware.Look2me;Incurable.Moved.;
A0182355.dll;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP498;Adware.Look2me;Incurable.Moved.;
A0182356.dll;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP498;Adware.Look2me;Incurable.Moved.;
A0182357.dll;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP498;Adware.Look2me;Incurable.Moved.;
A0182358.dll;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP498;Adware.Look2me;Incurable.Moved.;
A0182359.dll;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP498;Adware.Look2me;Incurable.Moved.;
A0182360.dll;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP498;Adware.Look2me;Incurable.Moved.;
A0182361.dll;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP498;Adware.Look2me;Incurable.Moved.;
A0182362.dll;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP498;Adware.Look2me;Incurable.Moved.;
A0182363.dll;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP498;Adware.Look2me;Incurable.Moved.;
A0182364.dll;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP498;Adware.Look2me;Incurable.Moved.;
A0182365.dll;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP498;Adware.Look2me;Incurable.Moved.;
A0182366.dll;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP498;Adware.Look2me;Incurable.Moved.;
A0182367.dll;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP498;Adware.Look2me;Incurable.Moved.;
A0182368.exe;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP498;Trojan.DownLoader.5289;Deleted.;
A0182369.exe;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP498;Adware.TargetServer;Incurable.Moved.;
A0182370.exe;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP498;Adware.TargetServer;Incurable.Moved.;
A0182371.exe;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP498;Adware.TargetServer;Incurable.Moved.;
A0182373.dll;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP499;Adware.Look2me;Incurable.Moved.;
A0182374.exe;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP499;Win32.HLLW.MyBot.based;Deleted.;
A0182375.dll;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP499;Adware.Look2me;Incurable.Moved.;
A0182388.exe;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP499;Adware.AddUrl;Incurable.Moved.;
A0182393.dll;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP499;Adware.Look2me;Incurable.Moved.;
A0182394.dll;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP499;Adware.Look2me;Incurable.Moved.;
A0182423.dll;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP499;Adware.Look2me;Incurable.Moved.;
A0182432.dll;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP499;Adware.Look2me;Incurable.Moved.;
A0182474.dll;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP502;Adware.Look2me;Incurable.Moved.;
A0182489.dll;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP502;Adware.Look2me;Incurable.Moved.;
A0182492.exe;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP502;Trojan.DownLoader.9440;Deleted.;
A0182495.dll;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP502;Adware.FastSearch;Incurable.Moved.;
A0182497.exe;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP502;Trojan.Click.686;Deleted.;
A0182498.exe;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP502;Adware.Zesty;Incurable.Moved.;
A0182499.exe;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP502;Trojan.DownLoader.10320;Incurable.Moved.;
A0182507.dll;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP502;Adware.Look2me;Incurable.Moved.;
A0182515.dll;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP502;Adware.Look2me;Incurable.Moved.;
A0182522.dll;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP502;Adware.Look2me;Incurable.Moved.;
A0182523.dll;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP502;Adware.Look2me;Incurable.Moved.;
A0182525.dll;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP502;Adware.Look2me;Incurable.Moved.;
A0182526.dll;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP502;Adware.Look2me;Incurable.Moved.;
A0182531.dll;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP502;Adware.Look2me;Incurable.Moved.;
A0182554.dll;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP503;Adware.Look2me;Incurable.Moved.;
A0182557.exe;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP503;Adware.DollarRevenue;Incurable.Moved.;
A0182558.exe;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP503;Adware.DollarRevenue;Incurable.Moved.;
A0182559.exe;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP503;Adware.DollarRevenue;Incurable.Moved.;
A0182560.exe;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP503;Adware.DollarRevenue;Incurable.Moved.;
A0182561.exe;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP503;Adware.DollarRevenue;Incurable.Moved.;
A0182562.exe;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP503;Adware.DollarRevenue;Incurable.Moved.;
A0182563.exe;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP503;Adware.DollarRevenue;Incurable.Moved.;
A0182564.exe;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP503;Adware.DollarRevenue;Incurable.Moved.;
A0182565.exe;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP503;Adware.DollarRevenue;Incurable.Moved.;
A0182566.exe;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP503;Adware.DollarRevenue;Incurable.Moved.;
A0182567.exe;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP503;Adware.DollarRevenue;Incurable.Moved.;
A0182568.exe;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP503;Adware.DollarRevenue;Incurable.Moved.;
A0182569.exe;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP503;Adware.DollarRevenue;Incurable.Moved.;
A0182570.exe;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP503;Adware.DollarRevenue;Incurable.Moved.;
A0182571.exe;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP503;Adware.DollarRevenue;Incurable.Moved.;
A0182572.exe;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP503;Adware.DollarRevenue;Incurable.Moved.;
A0182573.exe;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP503;Adware.DollarRevenue;Incurable.Moved.;
A0182574.exe;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP503;Adware.DollarRevenue;Incurable.Moved.;
A0182575.exe;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP503;Adware.DollarRevenue;Incurable.Moved.;
A0182576.exe;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP503;Adware.DollarRevenue;Incurable.Moved.;
A0182577.exe;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP503;Adware.DollarRevenue;Incurable.Moved.;
A0182578.exe;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP503;Adware.DollarRevenue;Incurable.Moved.;
A0182579.exe;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP503;Adware.DollarRevenue;Incurable.Moved.;
A0182580.exe;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP503;Adware.DollarRevenue;Incurable.Moved.;
A0182581.exe;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP503;Adware.DollarRevenue;Incurable.Moved.;
A0182582.exe;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP503;Adware.DollarRevenue;Incurable.Moved.;
A0182583.exe;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP503;Trojan.Click.1256;Deleted.;
A0182584.exe;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP503;Adware.DollarRevenue;Incurable.Moved.;
A0182585.exe;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP503;Adware.DollarRevenue;Incurable.Moved.;
A0182586.exe;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP503;Adware.DollarRevenue;Incurable.Moved.;
A0182587.exe;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP503;Trojan.Click.1206;Deleted.;
A0182588.exe;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP503;Trojan.Click.1206;Deleted.;
A0182589.exe;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP503;Trojan.Click.1206;Deleted.;
A0182590.exe;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP503;Trojan.Click.1206;Deleted.;
A0182591.exe;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP503;Trojan.DownLoader.10581;Deleted.;
A0182592.exe;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP503;Adware.DollarRevenue;Incurable.Moved.;
A0182593.exe;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP503;Trojan.DownLoader.10581;Deleted.;
A0182594.exe;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP503;Trojan.DownLoader.10308;Deleted.;
A0182595.exe;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP503;Trojan.DownLoader.10308;Deleted.;
A0182596.exe;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP503;Trojan.DownLoader.10308;Deleted.;
A0182597.exe;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP503;Trojan.DownLoader.10308;Deleted.;
A0182598.exe;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP503;Adware.DollarRevenue;Incurable.Moved.;
A0182599.exe;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP503;Adware.DollarRevenue;Incurable.Moved.;
A0182600.exe;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP503;Adware.DollarRevenue;Incurable.Moved.;
A0182601.exe;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP503;Adware.DollarRevenue;Incurable.Moved.;
A0182602.exe;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP503;Adware.DollarRevenue;Incurable.Moved.;
A0182603.exe;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP503;Trojan.Click.1274;Deleted.;
A0182604.exe;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP503;Adware.DollarRevenue;Incurable.Moved.;
A0182605.exe;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP503;Trojan.DownLoader.8290;Deleted.;
A0182606.exe;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP503;Adware.ZenoSearch;Incurable.Moved.;
A0182607.exe;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP503;Adware.ZenoSearch;Incurable.Moved.;
A0182608.exe;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP503;Adware.ZenoSearch;Incurable.Moved.;
A0182609.exe;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP503;Adware.MediaTicket;Incurable.Moved.;
A0182612.dll;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP503;Adware.Look2me;Incurable.Moved.;
A0182621.dll;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP503;Adware.Look2me;Incurable.Moved.;
A0182630.dll;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP503;Adware.Look2me;Incurable.Moved.;
A0182641.dll;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP503;Adware.Look2me;Incurable.Moved.;
A0182648.dll;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP503;Adware.Look2me;Incurable.Moved.;
A0182724.exe;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP503;Trojan.Qoologic;Deleted.;
A0182725.exe;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP503;Trojan.Qoologic;Deleted.;
A0182727.exe;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP503;Trojan.Qoologic;Deleted.;
A0182728.dll;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP503;Trojan.DownLoader.8933;Deleted.;
A0182730.dll;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP503;Trojan.Qoologic;Deleted.;
A0182731.exe;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP503;Trojan.Qoologic;Deleted.;
A0182800.exe;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP503;Adware.MediaTicket;Incurable.Moved.;
A0182803.dll;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP503;Adware.Look2me;Incurable.Moved.;
A0182804.dll;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP503;Adware.Look2me;Incurable.Moved.;
A0182805.dll;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP503;Adware.Look2me;Incurable.Moved.;
A0182806.dll;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP503;Adware.Look2me;Incurable.Moved.;
A0182807.dll;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP503;Adware.Look2me;Incurable.Moved.;
A0182862.exe;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP503;Adware.Yavak;Incurable.Moved.;
A0182867.exe;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP503;Adware.Yavak;Incurable.Moved.;
A0183078.exe;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP503;Adware.Yavak;Incurable.Moved.;
A0183079.dll;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP503;Trojan.DownLoader.10919;Deleted.;
A0183081.exe\data001;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP503\A0183081.exe;Trojan.Popuper;;
A0183081.exe\data002;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP503\A0183081.exe;Trojan.Popuper;;
A0183081.exe;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP503;Archive contains infected objects;Moved.;
A0183082.exe;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP503;Trojan.DownLoader.10918;Deleted.;
A0183083.exe;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP503;Trojan.MulDrop.2785;Deleted.;
A0183084.exe;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP503;Trojan.MulDrop.2785;Deleted.;
A0183085.exe;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP503;Trojan.MulDrop.2785;Deleted.;
A0183086.exe;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP503;Trojan.MulDrop.2785;Deleted.;
A0183087.pif;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP503;Adware.DollarRevenue;Incurable.Moved.;
A0183088.exe;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP503;Adware.DollarRevenue;Incurable.Moved.;
A0183089.exe;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP503;Adware.Nexus;Incurable.Moved.;
A0183090.reg;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP503;Trojan.LowZones;Deleted.;
A0183091.com;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP503;Adware.DollarRevenue;Incurable.Moved.;
A0183092.com;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP503;Adware.DollarRevenue;Incurable.Moved.;
A0183093.exe;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP503;Adware.DollarRevenue;Incurable.Moved.;
A0183094.exe;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP503;Adware.DollarRevenue;Incurable.Moved.;
A0183095.exe;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP503;Adware.DollarRevenue;Incurable.Moved.;
A0183096.exe;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP503;Trojan.PurityAd;Deleted.;
A0183097.exe;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP503;Trojan.Starter.65;Deleted.;
A0183098.exe;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP503;Adware.DollarRevenue;Incurable.Moved.;
A0183099.exe;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP503;Trojan.DownLoader.3945;Deleted.;
A0183100.exe;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP503;Adware.DollarRevenue;Incurable.Moved.;
A0183101.dll;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP503;Trojan.DownLoader.10662;Deleted.;
A0183103.exe;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP503;Adware.NewDotNet;Incurable.Moved.;
A0183104.dll;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP503;Adware.NewDotNet;Incurable.Moved.;
A0183105.dll;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP503;Adware.TargetServer;Incurable.Moved.;
A0183106.dll;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP503;Adware.Effbar;Incurable.Moved.;
A0183107.exe;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP503;Adware.Effbar;Incurable.Moved.;
A0183108.dll;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP503;Adware.Effbar;Incurable.Moved.;
A0183109.exe;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP503;Trojan.DownLoader.10588;Deleted.;
A0183111.exe;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP503;Adware.Zango;Incurable.Moved.;
A0183113.exe;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP503;Adware.Linkmaker;Incurable.Moved.;
A0183114.exe;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP503;Adware.Linkmaker;Incurable.Moved.;
A0183115.exe;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP503;Adware.Yavak;Incurable.Moved.;
A0183116.dll;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP503;Adware.IEHelper;Incurable.Moved.;
A0183118.exe;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP503;Adware.ZenoSearch;Incurable.Moved.;
A0183128.pif;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP503;Adware.DollarRevenue;Incurable.Moved.;
A0183158.exe;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP504;Adware.DollarRevenue;Incurable.Moved.;
A0183163.exe;C:\System Volume Information\_restore{9E5D6150-43DD-4EFE-BA2E-C2D145F39FFA}\RP504;Trojan.Popuper;Deleted.;
ComboFix
Start Time= Sun 07/30/2006 17:44:14.43
Running from: C:\Documents and Settings\Compaq_Owner\Desktop
QuickScan did not find any signs of infected files
(((((((((((((((((((((((((((((((((((((((((((((((( Find3M Report )))))))))))))))))))))))))))))))))))))))))))))))))))))
2006-07-30 16:52:20 ( .D... ) "C:\Program Files\Spybot - Search & Destroy"
2006-07-30 13:19:14 ( .D... ) "C:\Program Files\Common Files\Java"
2006-07-29 14:46:06 ( .D... ) "C:\Program Files\CleanUp!"
2006-07-29 14:36:48 ( .D... ) "C:\Program Files\ewido anti-spyware 4.0"
2006-07-28 17:26:22 ( .D... ) "C:\Documents and Settings\Compaq_Owner\Application Data\Lavasoft"
2006-07-28 17:26:12 ( .D... ) "C:\Program Files\Lavasoft"
2006-07-28 17:24:16 2855080 ( A.... ) "C:\aawsepersonal.exe"
2006-07-28 17:18:38 857915 ( A.... ) "C:\vx2cleaner_inst.exe"
2006-07-27 19:34:22 ( .D... ) "C:\Program Files\Norton AntiVirus"
2006-07-15 22:30:24 ( .D... ) "C:\Documents and Settings\Compaq_Owner\Application Data\Google"
2006-07-06 09:42:08 202768 ( A.... ) "C:\drwin32.exe"
2006-06-28 19:23:34 ( .D... ) "C:\Program Files\ornu"
2006-06-28 18:13:30 ( .D... ) "C:\Program Files\EngageSidebar"
2006-06-28 18:13:28 133916 ( A.... ) "C:\WINDOWS\system32\2-20060511-1.exe"
2006-06-28 18:12:00 8464 ( A.... ) "C:\WINDOWS\system32\sporder.dll"
2006-06-28 09:29:56 ( .D... ) "C:\Documents and Settings\Compaq_Owner\Application Data\Trevoli"
2006-06-28 09:29:44 ( .D... ) "C:\Program Files\Photo Finale"
2006-06-22 12:08:56 ( .D... ) "C:\Program Files\Common Files\mzko"
2006-06-19 16:20:42 702768 ( ..... ) "C:\WINDOWS\system32\WgaLogon.dll"
2006-05-25 01:22:06 53248 ( A.... ) "C:\WINDOWS\bdoscandel.exe"
2006-05-19 07:59:42 148480 ( A.... ) "C:\WINDOWS\system32\dnsapi.dll"
2006-05-19 07:59:42 111616 ( A.... ) "C:\WINDOWS\system32\dhcpcsvc.dll"
2006-05-19 07:59:42 94720 ( A.... ) "C:\WINDOWS\system32\iphlpapi.dll"
(((((((((((((((((((((((((((((((((((((( Files Created - Last 30days )))))))))))))))))))))))))))))))))))))))))))
2006-07-30 13:52 49,250 C:\WINDOWS\system32\javaw.exe
2006-07-30 13:52 49,248 C:\WINDOWS\system32\java.exe
2006-07-30 13:52 127,078 C:\WINDOWS\system32\javaws.exe
2006-07-29 19:50 73,728 C:\WINDOWS\system32\asuninst.exe
2006-07-29 19:50 11,776 C:\WINDOWS\system32\ZPORT4AS.dll
2006-07-29 19:21 259,379,200 C:\hiberfil.sys
2006-07-28 17:24 2,855,080 C:\aawsepersonal.exe
2006-07-28 17:18 857,915 C:\vx2cleaner_inst.exe
2006-07-05 20:32 202,768 C:\drwin32.exe
2006-06-28 18:13 133,916 C:\WINDOWS\system32\2-20060511-1.exe
2006-06-28 18:11 8,464 C:\WINDOWS\system32\sporder.dll
2006-06-19 16:20 702,768 C:\WINDOWS\system32\WgaLogon.dll
(((((((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))
*Note* empty entries are not shown
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run]
"Recguard"="C:\\WINDOWS\\SMINST\\RECGUARD.EXE"
"hpsysdrv"="c:\\windows\\system\\hpsysdrv.exe"
"AGRSMMSG"="AGRSMMSG.exe"
"TkBellExe"="\"C:\\Program Files\\Common Files\\Real\\Update_OB\\realsched.exe\" -osboot"
"SoundMan"="SOUNDMAN.EXE"
"AlcWzrd"="ALCWZRD.EXE"
"gcasServ"="\"C:\\Program Files\\Microsoft AntiSpyware\\gcasServ.exe\""
"iTunesHelper"="\"C:\\Program Files\\iTunes\\iTunesHelper.exe\""
"QuickTime Task"="\"C:\\Program Files\\QuickTime\\qttask.exe\" -atboottime"
"DIGStream"="C:\\Program Files\\DIGStream\\digstream.exe"
"DIGServices"="C:\\Program Files\\ESPNRunTime\\DIGServices.exe /brand=ESPN /priority=0 /poll=24"
"ccApp"="\"C:\\Program Files\\Common Files\\Symantec Shared\\ccApp.exe\""
"URLLSTCK.exe"="C:\\Program Files\\Norton Internet Security\\UrlLstCk.exe"
"InetCntrl"="C:\\WINDOWS\\system32\\InetCntrl\\InetCntrl.exe"
"NI.UWA6P_0001_N822M1605"="\"C:\\DOCUME~1\\COMPAQ~1\\LOCALS~1\\Temp\\Temporary Internet Files\\Content.IE5\\QV6FYDER\\WinAntiVirusPro2006FreeInstall[1].exe\" -nag "
"!ewido"="\"C:\\Program Files\\ewido anti-spyware 4.0\\ewido.exe\" /minimized"
"SunJavaUpdateSched"="C:\\Program Files\\Java\\jre1.5.0_06\\bin\\jusched.exe"
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\OptionalComponents]
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\OptionalComponents\IMAIL]
"Installed"="1"
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\OptionalComponents\MAPI]
"Installed"="1"
"NoChange"="1"
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\OptionalComponents\MSFS]
"Installed"="1"
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run]
"MSMSGS"="\"C:\\Program Files\\Messenger\\msmsgs.exe\" /background"
"AIM"="C:\\Program Files\\AIM\\aim.exe -cnetwait.odl"
"ctfmon.exe"="C:\\WINDOWS\\system32\\ctfmon.exe"
[HKEY_CURRENT_USER\software\microsoft\internet explorer\desktop\components]
"DeskHtmlVersion"=dword:00000110
"DeskHtmlMinorVersion"=dword:00000005
"Settings"=dword:00000001
"GeneralFlags"=dword:00000005
[HKEY_CURRENT_USER\software\microsoft\internet explorer\desktop\components\0]
"Source"="http://graphics.fansonly.com/photos/schools/iowa/sports/w-track/auto_headshot/p-headobrien.jpg"
"SubscribedURL"="http://graphics.fansonly.com/photos/schools/iowa/sports/w-track/auto_headshot/p-headobrien.jpg"
"FriendlyName"=""
"Flags"=dword:00000001
"Position"=hex:2c,00,00,00,12,03,00,00,19,01,00,00,69,00,00,00,9b,00,00,00,e8,\
03,00,00,01,00,00,00,01,00,00,00,01,00,00,00,00,00,00,00,00,00,00,00
"CurrentState"=hex:01,00,00,00
"OriginalStateInfo"=hex:18,00,00,00,12,03,00,00,19,01,00,00,69,00,00,00,9b,00,\
00,00,01,00,00,40
"RestoredStateInfo"=hex:14,6d,e9,01,41,c0,b4,74,30,f0,d5,03,68,de,e9,01,20,6d,\
e9,01,ab,de,00,00
[HKEY_CURRENT_USER\software\microsoft\internet explorer\desktop\components\1]
"Source"="http://www.lib.utexas.edu/maps/middle_east_and_asia/india_pol01.jpg"
"SubscribedURL"="http://www.lib.utexas.edu/maps/middle_east_and_asia/india_pol01.jpg"
"FriendlyName"=""
"Flags"=dword:00000001
"Position"=hex:2c,00,00,00,12,02,00,00,19,01,00,00,dc,00,00,00,d2,00,00,00,ea,\
03,00,00,01,00,00,00,01,00,00,00,01,00,00,00,00,00,00,00,00,00,00,00
"CurrentState"=hex:01,00,00,40
"OriginalStateInfo"=hex:18,00,00,00,12,02,00,00,23,00,00,00,ee,03,00,00,bc,04,\
00,00,01,00,00,40
"RestoredStateInfo"=hex:14,6d,c8,00,41,c0,b4,74,58,26,20,03,68,de,c8,00,20,6d,\
c8,00,c7,db,00,00
[HKEY_CURRENT_USER\software\microsoft\internet explorer\desktop\components\2]
"Source"="About
:Home"
"SubscribedURL"="About
:Home"
"FriendlyName"="My Current Home Page"
"Flags"=dword:00000002
"Position"=hex:2c,00,00,00,cc,00,00,00,00,00,00,00,34,03,00,00,e2,02,00,00,00,\
00,00,00,01,00,00,00,01,00,00,00,01,00,00,00,00,00,00,00,00,00,00,00
"CurrentState"=hex:04,00,00,40
"OriginalStateInfo"=hex:18,00,00,00,ff,ff,00,00,ff,ff,00,00,ff,ff,ff,ff,ff,ff,\
ff,ff,04,00,00,00
"RestoredStateInfo"=hex:18,00,00,00,6a,02,00,00,23,00,00,00,a4,00,00,00,9a,00,\
00,00,01,00,00,00
[HKEY_USERS\.default\software\microsoft\windows\currentversion\policies\explorer]
"NoDriveTypeAutoRun"=dword:00000091
[HKEY_USERS\.default\software\microsoft\windows\currentversion\policies\explorer\Run]
[HKEY_USERS\s-1-5-18\software\microsoft\windows\currentversion\policies\explorer]
"NoDriveTypeAutoRun"=dword:00000091
[HKEY_USERS\s-1-5-18\software\microsoft\windows\currentversion\policies\explorer\Run]
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\sharedtaskscheduler]
"{438755C2-A8BA-11D1-B96B-00A0C90312E1}"="Browseui preloader"
"{8C7461EF-2B13-11d2-BE35-3078302C2030}"="Component Categories cache daemon"
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shellexecutehooks]
"{AEB6717E-7E19-11d0-97EE-00C04FD91972}"=""
"{9EF34FF2-3396-4527-9D27-04C8C1C67806}"="Microsoft AntiSpyware Service Hook"
"{57B86673-276A-48B2-BAE7-C6DBB3020EB8}"="ewido anti-spyware 4.0"
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^Compaq Connections.lnk]
"path"="C:\\Documents and Settings\\All Users\\Start Menu\\Programs\\Startup\\Compaq Connections.lnk"
"backup"="C:\\WINDOWS\\pss\\Compaq Connections.lnkCommon Startup"
"location"="Common Startup"
"command"="C:\\PROGRA~1\\COMPAQ~1\\6750491\\Program\\COMPAQ~1.EXE -startup"
"item"="Compaq Connections"
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^NkbMonitor.exe.lnk]
"path"="C:\\Documents and Settings\\All Users\\Start Menu\\Programs\\Startup\\NkbMonitor.exe.lnk"
"backup"="C:\\WINDOWS\\pss\\NkbMonitor.exe.lnkCommon Startup"
"location"="Common Startup"
"command"="C:\\PROGRA~1\\Nikon\\PICTUR~1\\NKBMON~1.EXE "
"item"="NkbMonitor.exe"
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^Compaq_Owner^Start Menu^Programs^Startup^Compaq Organize.lnk]
"path"="C:\\Documents and Settings\\Compaq_Owner\\Start Menu\\Programs\\Startup\\Compaq Organize.lnk"
"backup"="C:\\WINDOWS\\pss\\Compaq Organize.lnkStartup"
"location"="Startup"
"command"="C:\\PROGRA~1\\HEWLET~1\\COMPAQ~1\\bin\\DISPLA~1.EXE \"-application\" \"core.hp.main/application.xml\" \"-appname\" \"eLife\""
"item"="Compaq Organize"
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdTools Service]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="AdTools"
"hkey"="HKLM"
"command"="C:\\Program Files\\AdTools Service\\AdTools.exe"
"inimapping"="0"
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AGRSMMSG]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="AGRSMMSG"
"hkey"="HKLM"
"command"="AGRSMMSG.exe"
"inimapping"="0"
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AIM]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="aim"
"hkey"="HKCU"
"command"="C:\\Program Files\\AIM\\aim.exe -cnetwait.odl"
"inimapping"="0"
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Alcmtr]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="ALCMTR"
"hkey"="HKLM"
"command"="ALCMTR.EXE"
"inimapping"="0"
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AlcWzrd]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="ALCWZRD"
"hkey"="HKLM"
"command"="ALCWZRD.EXE"
"inimapping"="0"
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AlcxMonitor]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="ALCXMNTR"
"hkey"="HKLM"
"command"="ALCXMNTR.EXE"
"inimapping"="0"
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AutoLoaderAproposClient]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="CXTPLS~1"
"hkey"="HKLM"
"command"="\"C:\\temp\\CXTPLS~1.EXE\" /PC=CP.CDT3 /ShowLegalNote=nonbranded /ForSupportedBrowsers"
"inimapping"="0"
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AutoUpdater]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="AutoUpdate"
"hkey"="HKLM"
"command"="\"C:\\Program Files\\AutoUpdate\\AutoUpdate.exe\""
"inimapping"="0"
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BullsEye Network]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="bargains"
"hkey"="HKLM"
"command"="C:\\Program Files\\BullsEye Network\\bin\\bargains.exe"
"inimapping"="0"
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ctfmon.exe]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="ctfmon"
"hkey"="HKCU"
"command"="C:\\WINDOWS\\system32\\ctfmon.exe"
"inimapping"="0"
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\dw53RhN5g]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="admppp"
"hkey"="HKCU"
"command"="admppp.exe"
"inimapping"="0"
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\gah95on6]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="gah95on6"
"hkey"="HKLM"
"command"="C:\\WINDOWS\\system32\\gah95on6.exe"
"inimapping"="0"
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HotKeysCmds]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="hkcmd"
"hkey"="HKLM"
"command"="C:\\WINDOWS\\system32\\hkcmd.exe"
"inimapping"="0"
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HPDJ Taskbar Utility]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="hpztsb05"
"hkey"="HKLM"
"command"="C:\\WINDOWS\\system32\\spool\\drivers\\w32x86\\3\\hpztsb05.exe"
"inimapping"="0"
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IgfxTray]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="igfxtray"
"hkey"="HKLM"
"command"="C:\\WINDOWS\\system32\\igfxtray.exe"
"inimapping"="0"
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Internet Optimizer]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="optimize313"
"hkey"="HKLM"
"command"="\"C:\\Program Files\\Internet Optimizer\\optimize313.exe\""
"inimapping"="0"
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="iTunesHelper"
"hkey"="HKLM"
"command"="C:\\Program Files\\iTunes\\iTunesHelper.exe"
"inimapping"="0"
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KBD]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="KBD"
"hkey"="HKLM"
"command"="C:\\HP\\KBD\\KBD.EXE"
"inimapping"="0"
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\mhqhyb]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="mhqhyb"
"hkey"="HKLM"
"command"="C:\\WINDOWS\\mhqhyb.exe"
"inimapping"="0"
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MSMSGS]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="msmsgs"
"hkey"="HKCU"
"command"="\"C:\\Program Files\\Messenger\\msmsgs.exe\" /background"
"inimapping"="0"
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PS2]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="ps2"
"hkey"="HKLM"
"command"="C:\\WINDOWS\\system32\\ps2.exe"
"inimapping"="0"
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="qttask"
"hkey"="HKLM"
"command"="\"C:\\Program Files\\QuickTime\\qttask.exe\" -atboottime"
"inimapping"="0"
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Reminder]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="Remind_XP"
"hkey"="HKLM"
"command"="\"C:\\Windows\\Creator\\Remind_XP.exe\""
"inimapping"="0"
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\s7mT3nh]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="alriscon"
"hkey"="HKLM"
"command"="alriscon.exe"
"inimapping"="0"
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\salm]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="salm"
"hkey"="HKLM"
"command"="c:\\temp\\salm.exe"
"inimapping"="0"
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SoundMan]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="SOUNDMAN"
"hkey"="HKLM"
"command"="SOUNDMAN.EXE"
"inimapping"="0"
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="jusched"
"hkey"="HKLM"
"command"="C:\\Program Files\\Java\\j2re1.4.2_03\\bin\\jusched.exe"
"inimapping"="0"
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Symantec NetDriver Monitor]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="SNDMon"
"hkey"="HKLM"
"command"="C:\\PROGRA~1\\SYMNET~1\\SNDMon.exe"
"inimapping"="0"
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TkBellExe]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="realsched"
"hkey"="HKLM"
"command"="\"C:\\Program Files\\Common Files\\Real\\Update_OB\\realsched.exe\" -osboot"
"inimapping"="0"
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ViewMgr]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="ViewMgr"
"hkey"="HKLM"
"command"="C:\\Program Files\\Viewpoint\\Viewpoint Manager\\ViewMgr.exe"
"inimapping"="0"
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\VTTimer]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="VTTimer"
"hkey"="HKLM"
"command"="VTTimer.exe"
"inimapping"="0"
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Weather]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="Weather"
"hkey"="HKCU"
"command"="C:\\Program Files\\AWS\\WeatherBug\\Weather.exe 1"
"inimapping"="0"
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WildTangent CDA]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="cdaEngine0400"
"hkey"="HKLM"
"command"="RUNDLL32.exe \"C:\\Program Files\\WildTangent\\Apps\\CDA\\cdaEngine0400.dll\",cdaEngineMain"
"inimapping"="0"
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Yzdrx]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="Fcrzq"
"hkey"="HKLM"
"command"="C:\\Program Files\\Yacy\\Fcrzq.exe"
"inimapping"="0"
HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\system
DisableRegistryTools REG_DWORD 0 (0x0)
Contents of the 'Scheduled Tasks' folder
C:\WINDOWS\tasks\Norton AntiVirus - Run Full System Scan - Compaq_Owner.job
C:\WINDOWS\tasks\Symantec NetDetect.job
Completion time: Sun 07/30/2006 17:44:37.21
ComboFix ver 06.07.15/28 - This logfile is located at C:\ComboFix.txt
ComboFix.2006-07-29.150947.txt
ComboFix.2006-07-30.174414.txt
HJT
Logfile of HijackThis v1.99.1
Scan saved at 5:46:07 PM, on 7/30/2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe
C:\Program Files\Common Files\Symantec Shared\ccProxy.exe
C:\Program Files\Norton Internet Security\ISSVC.exe
C:\Program Files\Common Files\Symantec Shared\SNDSrvc.exe
C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCSvc.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\ewido anti-spyware 4.0\guard.exe
C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\Program Files\Norton AntiVirus\navapsvc.exe
C:\Program Files\Norton AntiVirus\IWP\NPFMntor.exe
C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe
C:\WINDOWS\system32\wscntfy.exe
C:\windows\system\hpsysdrv.exe
C:\WINDOWS\AGRSMMSG.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\WINDOWS\ALCWZRD.EXE
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\DIGStream\digstream.exe
C:\Program Files\ESPNRunTime\DIGServices.exe
C:\Program Files\Common Files\Symantec Shared\ccApp.exe
C:\Program Files\ewido anti-spyware 4.0\ewido.exe
C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\AIM\aim.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Microsoft AntiSpyware\gcasDtServ.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\Common Files\Symantec Shared\Security Console\NSCSRVCE.EXE
C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
C:\Documents and Settings\Compaq_Owner\Desktop\HijackThis.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page =
http://www.msnbc.msn.com/
R3 - URLSearchHook: AOLTBSearch Class - {EA756889-2338-43DB-8F07-D1CA6FB9C90D} - C:\Program Files\AOL\AOL Toolbar 2.0\aoltb.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O3 - Toolbar: Yahoo! Companion - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\ycomp5_5_7_0.dll
O3 - Toolbar: AOL Toolbar - {DE9C389F-3316-41A7-809B-AA305ED9D922} - C:\Program Files\AOL\AOL Toolbar 2.0\aoltb.dll
O3 - Toolbar: &ESPN - {AE6F2894-AF10-4C9C-B16E-1DFC6FF8C0C6} - C:\Program Files\ESPN\Toolbar\DIGToolBar.dll
O3 - Toolbar: Norton Internet Security - {0B53EAC3-8D69-4b9e-9B19-A37C9A5676A7} - C:\Program Files\Common Files\Symantec Shared\AdBlocking\NISShExt.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll
O3 - Toolbar: Norton AntiVirus - {C4069E3A-68F1-403E-B40E-20066696354B} - C:\Program Files\Norton AntiVirus\NavShExt.dll
O4 - HKLM\..\Run: [Recguard] C:\WINDOWS\SMINST\RECGUARD.EXE
O4 - HKLM\..\Run: [hpsysdrv] c:\windows\system\hpsysdrv.exe
O4 - HKLM\..\Run: [AGRSMMSG] AGRSMMSG.exe
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [AlcWzrd] ALCWZRD.EXE
O4 - HKLM\..\Run: [gcasServ] "C:\Program Files\Microsoft AntiSpyware\gcasServ.exe"
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [DIGStream] C:\Program Files\DIGStream\digstream.exe
O4 - HKLM\..\Run: [DIGServices] C:\Program Files\ESPNRunTime\DIGServices.exe /brand=ESPN /priority=0 /poll=24
O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Common Files\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [URLLSTCK.exe] C:\Program Files\Norton Internet Security\UrlLstCk.exe
O4 - HKLM\..\Run: [InetCntrl] C:\WINDOWS\system32\InetCntrl\InetCntrl.exe
O4 - HKLM\..\Run: [NI.UWA6P_0001_N822M1605] "C:\DOCUME~1\COMPAQ~1\LOCALS~1\Temp\Temporary Internet Files\Content.IE5\QV6FYDER\WinAntiVirusPro2006FreeInstall[1].exe" -nag
O4 - HKLM\..\Run: [!ewido] "C:\Program Files\ewido anti-spyware 4.0\ewido.exe" /minimized
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [AIM] C:\Program Files\AIM\aim.exe -cnetwait.odl
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O8 - Extra context menu item: &AIM Search - res://C:\Program Files\AIM Toolbar\AIMBar.dll/aimsearch.htm
O8 - Extra context menu item: &AOL Toolbar Search - res://c:\program files\aol\aol toolbar 2.0\aoltbhtml.dll/search.html
O8 - Extra context menu item: &Google Search - res://c:\program files\google\GoogleToolbar2.dll/cmsearch.html
O8 - Extra context menu item: &Translate English Word - res://c:\program files\google\GoogleToolbar2.dll/cmwordtrans.html
O8 - Extra context menu item: Add To Compaq Organize... - C:\PROGRA~1\HEWLET~1\COMPAQ~1\bin\core.hp.main\SendTo.html
O8 - Extra context menu item: Backward Links - res://c:\program files\google\GoogleToolbar2.dll/cmbacklinks.html
O8 - Extra context menu item: Cached Snapshot of Page - res://c:\program files\google\GoogleToolbar2.dll/cmcache.html
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MI1933~1\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: Similar Pages - res://c:\program files\google\GoogleToolbar2.dll/cmsimilar.html
O8 - Extra context menu item: Translate Page into English - res://c:\program files\google\GoogleToolbar2.dll/cmtrans.html
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra button: AOL Toolbar - {3369AF0D-62E9-4bda-8103-B4C75499B578} - C:\Program Files\AOL\AOL Toolbar 2.0\aoltb.dll
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MI1933~1\OFFICE11\REFIEBAR.DLL
O9 - Extra button: AIM - {AC9E2541-2814-11d5-BC6D-00B0D0A1DE45} - C:\Program Files\AIM\aim.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra button: WeatherBug - {AF6CABAB-61F9-4f12-A198-B7D41EF1CB52} - C:\Program Files\AWS\WeatherBug\Weather.exe (file missing) (HKCU)
O12 - Plugin for .spop: C:\Program Files\Internet Explorer\Plugins\NPDocBox.dll
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://download.bitdefender.com/resources/scan8/oscan8.cab
O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) - http://acs.pandasoftware.com/activescan/as5free/asinst.cab
O16 - DPF: {FA3662C3-B8E8-11D6-A667-0010B556D978} (IWinAmpActiveX Class) - http://cdn.digitalcity.com/_media/dalaillama/ampx.cab
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe
O23 - Service: Symantec Network Proxy (ccProxy) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccProxy.exe
O23 - Service: Symantec Password Validation (ccPwdSvc) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccPwdSvc.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe
O23 - Service: ewido anti-spyware 4.0 guard - Anti-Malware Development a.s. - C:\Program Files\ewido anti-spyware 4.0\guard.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iPodService - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: ISSvc (ISSVC) - Symantec Corporation - C:\Program Files\Norton Internet Security\ISSVC.exe
O23 - Service: Norton AntiVirus Auto-Protect Service (navapsvc) - Symantec Corporation - C:\Program Files\Norton AntiVirus\navapsvc.exe
O23 - Service: Norton AntiVirus Firewall Monitor Service (NPFMntor) - Symantec Corporation - C:\Program Files\Norton AntiVirus\IWP\NPFMntor.exe
O23 - Service: Norton Protection Center Service (NSCService) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\Security Console\NSCSRVCE.EXE
O23 - Service: Symantec AVScan (SAVScan) - Symantec Corporation - C:\Program Files\Norton AntiVirus\SAVScan.exe
O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\SNDSrvc.exe
O23 - Service: SPBBCSvc - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCSvc.exe
O23 - Service: Symantec Core LC - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe
jotti scan
C:\msnotify.com
The file you uploaded is 0 bytes. It is very likely a firewall or a piece of malware is prohibiting you from uploading this file
C:\msts.com
Service load: 0% 100%
File: msts.com
Status: INFECTED/MALWARE
MD5 95cf1fe3bad63c419072e18705a6faa5
Packers detected: PE_PATCH.PECOMPACT, PECBUNDLE, PECOMPACT
Scanner results
AntiVir Found nothing
ArcaVir Found nothing
Avast Found nothing
AVG Antivirus Found nothing
BitDefender Found Trojan.Downloader.Adload.BU
ClamAV Found nothing
Dr.Web Found Adware.DollarRevenue
F-Prot Antivirus Found nothing
Fortinet Found nothing
Kaspersky Anti-Virus Found Trojan-Downloader.Win32.VB.afo
NOD32 Found Win32/TrojanDownloader.Adload.NAI
Norman Virus Control Found nothing
UNA Found nothing
VirusBuster Found nothing
VBA32 Found nothing
C:\install64.exe
File: install64.exe
Status: INFECTED/MALWARE
MD5 704665c2e9140978e9c417d995407a77
Packers detected: PE_PATCH.PECOMPACT, PECBUNDLE, PECOMPACT
Scanner results
AntiVir Found Trojan/Dldr.VB.afo.13
ArcaVir Found nothing
Avast Found nothing
AVG Antivirus Found nothing
BitDefender Found Trojan.Downloader.Adload.BU
ClamAV Found nothing
Dr.Web Found Adware.DollarRevenue
F-Prot Antivirus Found nothing
Fortinet Found W32/Adload.HO!tr.dldr
Kaspersky Anti-Virus Found Trojan-Downloader.Win32.VB.afo
NOD32 Found Win32/TrojanDownloader.Adload.NAI
Norman Virus Control Found nothing
UNA Found nothing
VirusBuster Found nothing
VBA32 Found nothing
C:\install62.exe
Service load: 0% 100%
File: install62.exe
Status: INFECTED/MALWARE (Note: this file has been scanned before. Therefore, this file's scan results will not be stored in the database)
MD5 704665c2e9140978e9c417d995407a77
Packers detected: PE_PATCH.PECOMPACT, PECBUNDLE, PECOMPACT
Scanner results
AntiVir Found Trojan/Dldr.VB.afo.13
ArcaVir Found nothing
Avast Found nothing
AVG Antivirus Found nothing
BitDefender Found Trojan.Downloader.Adload.BU
ClamAV Found nothing
Dr.Web Found Adware.DollarRevenue
F-Prot Antivirus Found nothing
Fortinet Found W32/Adload.HO!tr.dldr
Kaspersky Anti-Virus Found Trojan-Downloader.Win32.VB.afo
NOD32 Found Win32/TrojanDownloader.Adload.NAI
Norman Virus Control Found nothing
UNA Found nothing
VirusBuster Found nothing
VBA32 Found nothing
C:\install32.exe
Service load: 0% 100%
File: install32.exe
Status: INFECTED/MALWARE (Note: this file has been scanned before. Therefore, this file's scan results will not be stored in the database)
MD5 704665c2e9140978e9c417d995407a77
Packers detected: PE_PATCH.PECOMPACT, PECBUNDLE, PECOMPACT
Scanner results
AntiVir Found Trojan/Dldr.VB.afo.13
ArcaVir Found nothing
Avast Found nothing
AVG Antivirus Found nothing
BitDefender Found Trojan.Downloader.Adload.BU
ClamAV Found nothing
Dr.Web Found Adware.DollarRevenue
F-Prot Antivirus Found nothing
Fortinet Found W32/Adload.HO!tr.dldr
Kaspersky Anti-Virus Found Trojan-Downloader.Win32.VB.afo
NOD32 Found Win32/TrojanDownloader.Adload.NAI
Norman Virus Control Found nothing
UNA Found nothing
VirusBuster Found nothing
VBA32 Found nothing