monkeydude3690

It also reports a 180solutions and its under the file name zango.exe. I looked for it in the uninstall programs but i didnt find anything. Basically everytime im on a page i get redirected to a page called Anti spyware spyder. Also my initial start up page is changed.
;***********************************************************************************************************************************************************************************
ANALYSIS: 2008-05-12 10:19:36
PROTECTIONS: 1
MALWARE: 227
SUSPECTS: 2
;***********************************************************************************************************************************************************************************
PROTECTIONS
Description Version Active Updated
;===================================================================================================================================================================================
Spy Sweeper with AntiVirus 5.3.2.2361 No Yes
;===================================================================================================================================================================================
MALWARE
Id Description Type Active Severity Disinfectable Disinfected Location
;===================================================================================================================================================================================
00020302 adware/ncase Adware No 0 Yes No c:\windows\didduid.ini
00029767 Adware/DelFinMedia Adware No 1 Yes No F:\Documents and Settings\Rafael\Local Settings\Temp\~MySetup.exe
00048239 adware/adlogix Adware No 0 Yes No HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5FA6752A-C4A0-4222-88C2-928AE5AB4966}
00096188 spyware/searchcentrix Spyware No 1 Yes No HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{4E1075F4-EEC4-4a86-ADD7-CD5F52858C31}
00106761 adware/123mania Adware No 0 Yes No HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9C5B2F29-1F46-4639-A6B4-828942301D3E}
00106761 adware/123mania Adware No 0 Yes No HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{622CC208-B014-4FE0-801B-874A5E5E403A}
00106761 adware/123mania Adware No 0 Yes No HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{15651C7C-E812-44A2-A9AC-B467A2233E7D}
00106761 adware/123mania Adware No 0 Yes No c:\windows\system32\sipspi32.dll
00117710 Adware/WinTools Adware No 0 Yes No F:\Documents and Settings\Rafael\Local Settings\Temp\~701593.TMP
00117710 Adware/WinTools Adware No 0 Yes No F:\Documents and Settings\Rafael\Local Settings\Temp\~751829.TMP
00117710 Adware/WinTools Adware No 0 Yes No F:\Documents and Settings\Rafael\Local Settings\Temp\~455161.TMP
00117710 Adware/WinTools Adware No 0 Yes No F:\Documents and Settings\Rafael\Local Settings\Temp\~596416.TMP
00117710 Adware/WinTools Adware No 0 Yes No F:\Documents and Settings\Rafael\Local Settings\Temp\~603903.TMP
00117710 Adware/WinTools Adware No 0 Yes No F:\Documents and Settings\Rafael\Local Settings\Temp\~836297.TMP
00117710 Adware/WinTools Adware No 0 Yes No F:\Documents and Settings\Rafael\Local Settings\Temp\~669648.TMP
00117710 Adware/WinTools Adware No 0 Yes No F:\Documents and Settings\Rafael\Local Settings\Temp\~491488.TMP
00117710 Adware/WinTools Adware No 0 Yes No F:\Documents and Settings\Rafael\Local Settings\Temp\~513928.TMP
00117710 Adware/WinTools Adware No 0 Yes No F:\Documents and Settings\Rafael\Local Settings\Temp\~606920.TMP
00117710 Adware/WinTools Adware No 0 Yes No F:\Documents and Settings\Rafael\Local Settings\Temp\~732833.TMP
00117710 Adware/WinTools Adware No 0 Yes No F:\Documents and Settings\Rafael\Local Settings\Temp\~885915.TMP
00117710 Adware/WinTools Adware No 0 Yes No F:\Documents and Settings\Rafael\Local Settings\Temp\~638502.TMP
00117710 Adware/WinTools Adware No 0 Yes No F:\Documents and Settings\Rafael\Local Settings\Temp\~725290.TMP
00117710 Adware/WinTools Adware No 0 Yes No F:\Documents and Settings\Rafael\Local Settings\Temp\~606935.TMP
00117710 Adware/WinTools Adware No 0 Yes No F:\Documents and Settings\Rafael\Local Settings\Temp\~666601.TMP
00117710 Adware/WinTools Adware No 0 Yes No F:\Documents and Settings\Rafael\Local Settings\Temp\~402108.TMP
00117710 Adware/WinTools Adware No 0 Yes No F:\Documents and Settings\Rafael\Local Settings\Temp\~584008.TMP
00117710 Adware/WinTools Adware No 0 Yes No F:\Documents and Settings\Rafael\Local Settings\Temp\~590294.TMP
00117710 Adware/WinTools Adware No 0 Yes No F:\Documents and Settings\Rafael\Local Settings\Temp\~368108.TMP
00117710 Adware/WinTools Adware No 0 Yes No F:\Documents and Settings\Rafael\Local Settings\Temp\~881548.TMP
00117710 Adware/WinTools Adware No 0 Yes No F:\Documents and Settings\Yaritza\Local Settings\Temp\~928244.TMP
00117710 Adware/WinTools Adware No 0 Yes No F:\Documents and Settings\Rafael\Local Settings\Temp\~634462.TMP
00117710 Adware/WinTools Adware No 0 Yes No F:\Documents and Settings\Rafael\Local Settings\Temp\~534358.TMP
00117710 Adware/WinTools Adware No 0 Yes No F:\Documents and Settings\Yaritza\Local Settings\Temp\~759709.TMP
00117710 Adware/WinTools Adware No 0 Yes No F:\Documents and Settings\Rafael\Local Settings\Temp\~860153.TMP
00117710 Adware/WinTools Adware No 0 Yes No F:\Documents and Settings\Yaritza\Local Settings\Temp\~713045.TMP
00117710 Adware/WinTools Adware No 0 Yes No F:\Documents and Settings\Yaritza\Local Settings\Temp\~662571.TMP
00117710 Adware/WinTools Adware No 0 Yes No F:\Documents and Settings\Yaritza\Local Settings\Temp\~966248.TMP
00117710 Adware/WinTools Adware No 0 Yes No F:\Documents and Settings\Yaritza\Local Settings\Temp\~924036.TMP
00117710 Adware/WinTools Adware No 0 Yes No F:\Documents and Settings\Rafael\Local Settings\Temp\~754952.TMP
00117710 Adware/WinTools Adware No 0 Yes No F:\Documents and Settings\Rafael\Local Settings\Temp\~722267.TMP
00117710 Adware/WinTools Adware No 0 Yes No F:\Documents and Settings\Rafael\Local Settings\Temp\~623981.TMP
00117710 Adware/WinTools Adware No 0 Yes No F:\Documents and Settings\Yaritza\Local Settings\Temp\~944023.TMP
00117710 Adware/WinTools Adware No 0 Yes No F:\Documents and Settings\Yaritza\Local Settings\Temp\~34334.TMP
00117710 Adware/WinTools Adware No 0 Yes No F:\Documents and Settings\Rafael\Local Settings\Temp\~742252.TMP
00117710 Adware/WinTools Adware No 0 Yes No F:\Documents and Settings\Saviel\Local Settings\Temp\~576559.TMP
00117710 Adware/WinTools Adware No 0 Yes No F:\Documents and Settings\Rafael\Local Settings\Temp\~520980.TMP
00117710 Adware/WinTools Adware No 0 Yes No F:\Documents and Settings\Saviel\Local Settings\Temp\~664478.TMP
00117710 Adware/WinTools Adware No 0 Yes No F:\Documents and Settings\Yaritza\Local Settings\Temp\~623908.TMP
00117710 Adware/WinTools Adware No 0 Yes No F:\Documents and Settings\Yaritza\Local Settings\Temp\~872469.TMP
00117710 Adware/WinTools Adware No 0 Yes No F:\Documents and Settings\Yaritza\Local Settings\Temp\~8695.TMP
00117710 Adware/WinTools Adware No 0 Yes No F:\Documents and Settings\Saviel\Local Settings\Temp\~495034.TMP
00117710 Adware/WinTools Adware No 0 Yes No F:\Documents and Settings\Saviel\Local Settings\Temp\~517683.TMP
00117710 Adware/WinTools Adware No 0 Yes No F:\Documents and Settings\Saviel\Local Settings\Temp\~498920.TMP
00117710 Adware/WinTools Adware No 0 Yes No F:\Documents and Settings\Saviel\Local Settings\Temp\~554926.TMP
00117710 Adware/WinTools Adware No 0 Yes No F:\Documents and Settings\Rafael\Local Settings\Temp\~563553.TMP
00117710 Adware/WinTools Adware No 0 Yes No F:\Documents and Settings\Saviel\Local Settings\Temp\~643848.TMP
00117710 Adware/WinTools Adware No 0 Yes No F:\Documents and Settings\Rafael\Local Settings\Temp\~591043.TMP
00117710 Adware/WinTools Adware No 0 Yes No F:\Documents and Settings\Rafael\Local Settings\Temp\~632317.TMP
00117710 Adware/WinTools Adware No 0 Yes No F:\Documents and Settings\Yaritza\Local Settings\Temp\~936226.TMP
00117710 Adware/WinTools Adware No 0 Yes No F:\Documents and Settings\Yaritza\Local Settings\Temp\~870422.TMP
00117710 Adware/WinTools Adware No 0 Yes No F:\Documents and Settings\Yaritza\Local Settings\Temp\~930211.TMP
00117710 Adware/WinTools Adware No 0 Yes No F:\Documents and Settings\Rafael\Local Settings\Temp\~580604.TMP
00117710 Adware/WinTools Adware No 0 Yes No F:\Documents and Settings\Yaritza\Local Settings\Temp\~541604.TMP
00117710 Adware/WinTools Adware No 0 Yes No F:\Documents and Settings\Rafael\Local Settings\Temp\~863705.TMP
00117710 Adware/WinTools Adware No 0 Yes No F:\Documents and Settings\Rafael\Local Settings\Temp\~583061.TMP
00117710 Adware/WinTools Adware No 0 Yes No F:\Documents and Settings\Rafael\Local Settings\Temp\~714730.TMP
00117710 Adware/WinTools Adware No 0 Yes No F:\Documents and Settings\Rafael\Local Settings\Temp\~510263.TMP
00117710 Adware/WinTools Adware No 0 Yes No F:\Documents and Settings\Yaritza\Local Settings\Temp\~277508.TMP
00117710 Adware/WinTools Adware No 0 Yes No F:\Documents and Settings\Yaritza\Local Settings\Temp\~447209.TMP
00117710 Adware/WinTools Adware No 0 Yes No F:\Documents and Settings\Yaritza\Local Settings\Temp\~602693.TMP
00117710 Adware/WinTools Adware No 0 Yes No F:\Documents and Settings\Yaritza\Local Settings\Temp\~926580.TMP
00117710 Adware/WinTools Adware No 0 Yes No F:\Documents and Settings\Yaritza\Local Settings\Temp\~929945.TMP
00117710 Adware/WinTools Adware No 0 Yes No F:\Documents and Settings\Rafael\Local Settings\Temp\~764550.TMP
00117712 Adware/WinTools Adware No 0 Yes No F:\Documents and Settings\Rafael\Local Settings\Temp\~644763.TMP
00117712 Adware/WinTools Adware No 0 Yes No F:\Documents and Settings\Saviel\Local Settings\Temp\~84949.TMP
00117712 Adware/WinTools Adware No 0 Yes No F:\Documents and Settings\Rafael\Local Settings\Temp\~706621.TMP
00117712 Adware/WinTools Adware No 0 Yes No F:\Documents and Settings\Rafael\Local Settings\Temp\~804756.TMP
00117712 Adware/WinTools Adware No 0 Yes No F:\Documents and Settings\Rafael\Local Settings\Temp\~640054.TMP
00117712 Adware/WinTools Adware No 0 Yes No F:\Documents and Settings\Rafael\Local Settings\Temp\~378427.TMP
00117712 Adware/WinTools Adware No 0 Yes No F:\Documents and Settings\Yaritza\Local Settings\Temp\~959055.TMP
00117712 Adware/WinTools Adware No 0 Yes No F:\Documents and Settings\Saviel\Local Settings\Temp\~998848.TMP
00125073 spyware/fastsearchweb Spyware No 1 Yes No c:\windows\system32\shdocpe.dll
00135099 adware/powerstrip Adware No 0 Yes No HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{965A592F-8EFA-4250-8630-7960230792F1}
00139059 Cookie/Traffic Marketplace TrackingCookie No 0 Yes No C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\4df5thyu.default\cookies.txt[.trafficmp.com/]
00139059 Cookie/Traffic Marketplace TrackingCookie No 0 Yes No C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\4df5thyu.default\cookies.txt[.trafficmp.com/]
00139059 Cookie/Traffic Marketplace TrackingCookie No 0 Yes No C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\4df5thyu.default\cookies.txt[.trafficmp.com/]
00139059 Cookie/Traffic Marketplace TrackingCookie No 0 Yes No F:\Documents and Settings\Rafael\Local Settings\Temp\Cookies\rafael@trafficmp[2].txt
00139059 Cookie/Traffic Marketplace TrackingCookie No 0 Yes No C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\4df5thyu.default\cookies.txt[.trafficmp.com/]
00139059 Cookie/Traffic Marketplace TrackingCookie No 0 Yes No C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\4df5thyu.default\cookies.txt[.trafficmp.com/]
00139060 Cookie/Casalemedia TrackingCookie No 0 Yes No C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\4df5thyu.default\cookies.txt[.casalemedia.com/]
00139061 Cookie/Doubleclick TrackingCookie No 0 Yes No F:\Documents and Settings\Rafael\Local Settings\Temp\Cookies\rafael@doubleclick[1].txt
00139061 Cookie/Doubleclick TrackingCookie No 0 Yes No C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\4df5thyu.default\cookies.txt[.doubleclick.net/]
00139061 Cookie/Doubleclick TrackingCookie No 0 Yes No C:\Documents and Settings\Guest\Cookies\guest@doubleclick[2].txt
00139064 Cookie/Atlas DMT TrackingCookie No 0 Yes No F:\Documents and Settings\Rafael\Local Settings\Temp\Cookies\rafael@atdmt[2].txt
00139064 Cookie/Atlas DMT TrackingCookie No 0 Yes No C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\4df5thyu.default\cookies.txt[.atdmt.com/]
00139535 Application/Processor HackTools No 0 Yes No C:\System Volume Information\_restore{E806BF13-9D4D-42A1-8768-E139158A863F}\RP903\A0060305.exe
00139535 Application/Processor HackTools No 0 Yes No C:\SDFix\apps\Process.exe
00139535 Application/Processor HackTools No 0 No No C:\Documents and Settings\Rafael\Desktop\SDFix.exe[SDFix\apps\Process.exe]
00145348 Cookie/Gator TrackingCookie No 0 Yes No F:\Documents and Settings\Rafael\Local Settings\Temp\Cookies\rafael@gator[1].txt
00145359 Cookie/Sandboxer TrackingCookie No 0 Yes No F:\Documents and Settings\Rafael\Local Settings\Temp\Cookies\rafael@www.sandboxer[1].txt
00145433 Cookie/Mammamediasolutions TrackingCookie No 0 Yes No F:\Documents and Settings\Rafael\Local Settings\Temp\Cookies\rafael@targetnet[1].txt
00145453 Cookie/Bfast TrackingCookie No 0 Yes No C:\Documents and Settings\Guest\Cookies\guest@bfast[1].txt
00145454 Cookie/Centralmedia TrackingCookie No 0 Yes No F:\Documents and Settings\Rafael\Local Settings\Temp\Cookies\rafael@centralmedia[2].txt
00145457 Cookie/FastClick TrackingCookie No 0 Yes No C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\4df5thyu.default\cookies.txt[.fastclick.net/]
00145457 Cookie/FastClick TrackingCookie No 0 Yes No C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\4df5thyu.default\cookies.txt[.fastclick.net/]
00145457 Cookie/FastClick TrackingCookie No 0 Yes No C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\4df5thyu.default\cookies.txt[.fastclick.net/]
00145457 Cookie/FastClick TrackingCookie No 0 Yes No C:\Documents and Settings\Guest\Cookies\guest@fastclick[2].txt
00145457 Cookie/FastClick TrackingCookie No 0 Yes No C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\4df5thyu.default\cookies.txt[.fastclick.net/]
00145466 Cookie/Advertising TrackingCookie No 0 Yes No F:\Documents and Settings\Rafael\Local Settings\Temp\Cookies\rafael@servedby.advertising[2].txt
00145731 Cookie/Tribalfusion TrackingCookie No 0 Yes No C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\4df5thyu.default\cookies.txt[.tribalfusion.com/]
00145738 Cookie/Mediaplex TrackingCookie No 0 Yes No C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\4df5thyu.default\cookies.txt[.mediaplex.com/]
00145738 Cookie/Mediaplex TrackingCookie No 0 Yes No C:\Documents and Settings\Rafael\Cookies\rafael@mediaplex[1].txt
00145738 Cookie/Mediaplex TrackingCookie No 0 Yes No C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\4df5thyu.default\cookies.txt[.mediaplex.com/]
00145770 Cookie/CentrPort TrackingCookie No 0 Yes No F:\Documents and Settings\Rafael\Local Settings\Temp\Cookies\rafael@centrport[1].txt
00145792 Cookie/SexList TrackingCookie No 0 Yes No F:\Documents and Settings\Rafael\Local Settings\Temp\Cookies\rafael@sexlist[2].txt
00145869 Cookie/SpyLog TrackingCookie No 0 Yes No C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\4df5thyu.default\cookies.txt[.spylog.com/]
00146967 Cookie/PayCounter TrackingCookie No 0 Yes No F:\Documents and Settings\Rafael\Local Settings\Temp\Cookies\rafael@paycounter[1].txt
00147036 Cookie/Adverserve TrackingCookie No 0 Yes No C:\Documents and Settings\Guest\Cookies\guest@adverserve[1].txt
00147054 Cookie/Hypercount TrackingCookie No 0 Yes No F:\Documents and Settings\Rafael\Cookies\rafael@hypercount[2].txt
00147796 Cookie/Entrepreneur TrackingCookie No 0 Yes No C:\Documents and Settings\Guest\Cookies\guest@entrepreneur[2].txt
00165384 Cookie/DelfinMedia TrackingCookie No 0 Yes No F:\Documents and Settings\Rafael\Local Settings\Temp\Cookies\rafael@delfinproject[1].txt
00167642 Cookie/Com.com TrackingCookie No 0 Yes No C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\4df5thyu.default\cookies.txt[.com.com/]
00167642 Cookie/Com.com TrackingCookie No 0 Yes No C:\Documents and Settings\Guest\Cookies\guest@com[2].txt
00167647 Cookie/Yadro TrackingCookie No 0 Yes No C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\4df5thyu.default\cookies.txt[.yadro.ru/]
00167690 Cookie/Rightmedia TrackingCookie No 0 Yes No F:\Documents and Settings\Rafael\Local Settings\Temp\Cookies\rafael@rightmedia[2].txt
00167704 Cookie/Xiti TrackingCookie No 0 Yes No C:\Documents and Settings\Rafael\Cookies\rafael@xiti[1].txt
00167704 Cookie/Xiti TrackingCookie No 0 Yes No C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\4df5thyu.default\cookies.txt[.xiti.com/]
00167706 Cookie/Sextracker TrackingCookie No 0 Yes No F:\Documents and Settings\Rafael\Local Settings\Temp\Cookies\rafael@counter3.sextracker[1].txt
00167726 Cookie/Tickle TrackingCookie No 0 Yes No F:\Documents and Settings\Rafael\Local Settings\Temp\Cookies\rafael@tickle[1].txt
00167730 Cookie/Hitbox TrackingCookie No 0 Yes No C:\Documents and Settings\Guest\Cookies\guest@ehg.hitbox[2].txt
00167733 Cookie/Adserver TrackingCookie No 0 Yes No F:\Documents and Settings\Rafael\Local Settings\Temp\Cookies\rafael@z1.adserver[1].txt
00167747 Cookie/Azjmp TrackingCookie No 0 Yes No F:\Documents and Settings\Rafael\Local Settings\Temp\Cookies\rafael@azjmp[2].txt
00167749 Cookie/Toplist TrackingCookie No 0 Yes No C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\4df5thyu.default\cookies.txt[.toplist.cz/]
00167753 Cookie/Statcounter TrackingCookie No 0 Yes No C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\4df5thyu.default\cookies.txt[.statcounter.com/]
00167753 Cookie/Statcounter TrackingCookie No 0 Yes No C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\4df5thyu.default\cookies.txt[.statcounter.com/]
00167753 Cookie/Statcounter TrackingCookie No 0 Yes No C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\4df5thyu.default\cookies.txt[.statcounter.com/]
00167753 Cookie/Statcounter TrackingCookie No 0 Yes No C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\4df5thyu.default\cookies.txt[.statcounter.com/]
00167753 Cookie/Statcounter TrackingCookie No 0 Yes No C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\4df5thyu.default\cookies.txt[.statcounter.com/]
00167753 Cookie/Statcounter TrackingCookie No 0 Yes No C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\4df5thyu.default\cookies.txt[.statcounter.com/]
00167753 Cookie/Statcounter TrackingCookie No 0 Yes No C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\4df5thyu.default\cookies.txt[.statcounter.com/]
00167753 Cookie/Statcounter TrackingCookie No 0 Yes No C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\4df5thyu.default\cookies.txt[.statcounter.com/]
00167760 Cookie/Hitslink TrackingCookie No 0 Yes No C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\4df5thyu.default\cookies.txt[counter.hitslink.com/]
00167761 Cookie/Sextracker TrackingCookie No 0 Yes No F:\Documents and Settings\Rafael\Local Settings\Temp\Cookies\rafael@counter8.sextracker[1].txt
00167762 Cookie/Sextracker TrackingCookie No 0 Yes No F:\Documents and Settings\Rafael\Local Settings\Temp\Cookies\rafael@counter13.sextracker[1].txt
00167764 Cookie/Sextracker TrackingCookie No 0 Yes No F:\Documents and Settings\Rafael\Local Settings\Temp\Cookies\rafael@counter7.sextracker[1].txt
00167783 Cookie/Sextracker TrackingCookie No 0 Yes No F:\Documents and Settings\Rafael\Local Settings\Temp\Cookies\rafael@counter6.sextracker[2].txt
00168056 Cookie/YieldManager TrackingCookie No 0 Yes No C:\Documents and Settings\Rafael\Cookies\rafael@ad.yieldmanager[1].txt
00168056 Cookie/YieldManager TrackingCookie No 0 Yes No C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\4df5thyu.default\cookies.txt[ad.yieldmanager.com/]
00168056 Cookie/YieldManager TrackingCookie No 0 Yes No C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\4df5thyu.default\cookies.txt[ad.yieldmanager.com/]
00168056 Cookie/YieldManager TrackingCookie No 0 Yes No C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\4df5thyu.default\cookies.txt[ad.yieldmanager.com/]
00168056 Cookie/YieldManager TrackingCookie No 0 Yes No C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\4df5thyu.default\cookies.txt[ad.yieldmanager.com/]
00168056 Cookie/YieldManager TrackingCookie No 0 Yes No C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\4df5thyu.default\cookies.txt[.ad.yieldmanager.com/]
00168056 Cookie/YieldManager TrackingCookie No 0 Yes No C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\4df5thyu.default\cookies.txt[ad.yieldmanager.com/]
00168056 Cookie/YieldManager TrackingCookie No 0 Yes No C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\4df5thyu.default\cookies.txt[ad.yieldmanager.com/]
00168056 Cookie/YieldManager TrackingCookie No 0 Yes No C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\4df5thyu.default\cookies.txt[ad.yieldmanager.com/]
00168056 Cookie/YieldManager TrackingCookie No 0 Yes No C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\4df5thyu.default\cookies.txt[ad.yieldmanager.com/]
00168056 Cookie/YieldManager TrackingCookie No 0 Yes No C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\4df5thyu.default\cookies.txt[.ad.yieldmanager.com/]
00168056 Cookie/YieldManager TrackingCookie No 0 Yes No C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\4df5thyu.default\cookies.txt[ad.yieldmanager.com/]
00168056 Cookie/YieldManager TrackingCookie No 0 Yes No C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\4df5thyu.default\cookies.txt[ad.yieldmanager.com/]
00168058 Cookie/Sextracker TrackingCookie No 0 Yes No F:\Documents and Settings\Rafael\Local Settings\Temp\Cookies\rafael@counter4.sextracker[1].txt
00168061 Cookie/Apmebf TrackingCookie No 0 Yes No C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\4df5thyu.default\cookies.txt[.apmebf.com/]
00168090 Cookie/Serving-sys TrackingCookie No 0 Yes No C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\4df5thyu.default\cookies.txt[.serving-sys.com/]
00168090 Cookie/Serving-sys TrackingCookie No 0 Yes No C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\4df5thyu.default\cookies.txt[.serving-sys.com/]
00168090 Cookie/Serving-sys TrackingCookie No 0 Yes No C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\4df5thyu.default\cookies.txt[.serving-sys.com/]
00168090 Cookie/Serving-sys TrackingCookie No 0 Yes No C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\4df5thyu.default\cookies.txt[.serving-sys.com/]
00168090 Cookie/Serving-sys TrackingCookie No 0 Yes No F:\Documents and Settings\Rafael\Local Settings\Temp\Cookies\rafael@serving-sys[2].txt
00168090 Cookie/Serving-sys TrackingCookie No 0 Yes No C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\4df5thyu.default\cookies.txt[.serving-sys.com/]
00168090 Cookie/Serving-sys TrackingCookie No 0 Yes No C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\4df5thyu.default\cookies.txt[.serving-sys.com/]
00168093 Cookie/Serving-sys TrackingCookie No 0 Yes No C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\4df5thyu.default\cookies.txt[.bs.serving-sys.com/]
00168109 Cookie/Adtech TrackingCookie No 0 Yes No C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\4df5thyu.default\cookies.txt[.adtech.de/]
00169190 Cookie/Advertising TrackingCookie No 0 Yes No C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\4df5thyu.default\cookies.txt[.advertising.com/]
00169190 Cookie/Advertising TrackingCookie No 0 Yes No C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\4df5thyu.default\cookies.txt[.advertising.com/]
00169190 Cookie/Advertising TrackingCookie No 0 Yes No C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\4df5thyu.default\cookies.txt[.advertising.com/]
00169190 Cookie/Advertising TrackingCookie No 0 Yes No C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\4df5thyu.default\cookies.txt[.advertising.com/]
00169190 Cookie/Advertising TrackingCookie No 0 Yes No C:\Documents and Settings\Rafael\Cookies\rafael@advertising[1].txt
00169190 Cookie/Advertising TrackingCookie No 0 Yes No F:\Documents and Settings\Rafael\Local Settings\Temp\Cookies\rafael@advertising[2].txt
00169190 Cookie/Advertising TrackingCookie No 0 Yes No C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\4df5thyu.default\cookies.txt[.advertising.com/]
00169286 Cookie/Sextracker TrackingCookie No 0 Yes No F:\Documents and Settings\Rafael\Local Settings\Temp\Cookies\rafael@sextracker[1].txt
00170304 Cookie/WebtrendsLive TrackingCookie No 0 Yes No C:\Deckard\System Scanner\20080409013906\backup\WINDOWS\temp\Cookies\rafael@statse.webtrendslive[1].txt
00170304 Cookie/WebtrendsLive TrackingCookie No 0 Yes No C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\4df5thyu.default\cookies.txt[statse.webtrendslive.com/]
00170495 Cookie/PointRoll TrackingCookie No 0 Yes No C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\4df5thyu.default\cookies.txt[.ads.pointroll.com/]
00170495 Cookie/PointRoll TrackingCookie No 0 Yes No C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\4df5thyu.default\cookies.txt[.ads.pointroll.com/]
00170495 Cookie/PointRoll TrackingCookie No 0 Yes No C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\4df5thyu.default\cookies.txt[.ads.pointroll.com/]
00170495 Cookie/PointRoll TrackingCookie No 0 Yes No C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\4df5thyu.default\cookies.txt[.ads.pointroll.com/]
00170495 Cookie/PointRoll TrackingCookie No 0 Yes No C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\4df5thyu.default\cookies.txt[.ads.pointroll.com/]
00170495 Cookie/PointRoll TrackingCookie No 0 Yes No C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\4df5thyu.default\cookies.txt[.ads.pointroll.com/]
00170495 Cookie/PointRoll TrackingCookie No 0 Yes No C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\4df5thyu.default\cookies.txt[.ads.pointroll.com/]
00170495 Cookie/PointRoll TrackingCookie No 0 Yes No C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\4df5thyu.default\cookies.txt[.ads.pointroll.com/]
00170495 Cookie/PointRoll TrackingCookie No 0 Yes No C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\4df5thyu.default\cookies.txt[.ads.pointroll.com/]
00170495 Cookie/PointRoll TrackingCookie No 0 Yes No C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\4df5thyu.default\cookies.txt[.ads.pointroll.com/]
00170495 Cookie/PointRoll TrackingCookie No 0 Yes No C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\4df5thyu.default\cookies.txt[.ads.pointroll.com/]
00170554 Cookie/Overture TrackingCookie No 0 Yes No C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\4df5thyu.default\cookies.txt[.overture.com/]
00170554 Cookie/Overture TrackingCookie No 0 Yes No C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\4df5thyu.default\cookies.txt[.overture.com/]
00170554 Cookie/Overture TrackingCookie No 0 Yes No C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\4df5thyu.default\cookies.txt[.overture.com/]
00170556 Cookie/RealMedia TrackingCookie No 0 Yes No C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\4df5thyu.default\cookies.txt[.realmedia.com/]
00170556 Cookie/RealMedia TrackingCookie No 0 Yes No C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\4df5thyu.default\cookies.txt[.realmedia.com/]
00170556 Cookie/RealMedia TrackingCookie No 0 Yes No C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\4df5thyu.default\cookies.txt[.realmedia.com/]
00170556 Cookie/RealMedia TrackingCookie No 0 Yes No C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\4df5thyu.default\cookies.txt[.realmedia.com/]
00171982 Cookie/QuestionMarket TrackingCookie No 0 Yes No C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\4df5thyu.default\cookies.txt[.questionmarket.com/]
00171982 Cookie/QuestionMarket TrackingCookie No 0 Yes No C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\4df5thyu.default\cookies.txt[.questionmarket.com/]
00172221 Cookie/Zedo TrackingCookie No 0 Yes No C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\4df5thyu.default\cookies.txt[.zedo.com/]
00172221 Cookie/Zedo TrackingCookie No 0 Yes No C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\4df5thyu.default\cookies.txt[.zedo.com/]
00172221 Cookie/Zedo TrackingCookie No 0 Yes No C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\4df5thyu.default\cookies.txt[.zedo.com/]
00172221 Cookie/Zedo TrackingCookie No 0 Yes No C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\4df5thyu.default\cookies.txt[.zedo.com/]
00172221 Cookie/Zedo TrackingCookie No 0 Yes No C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\4df5thyu.default\cookies.txt[.zedo.com/]
00172221 Cookie/Zedo TrackingCookie No 0 Yes No C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\4df5thyu.default\cookies.txt[.zedo.com/]
00172221 Cookie/Zedo TrackingCookie No 0 Yes No F:\Documents and Settings\Rafael\Local Settings\Temp\Cookies\rafael@zedo[2].txt
00173520 Cookie/Bluestreak TrackingCookie No 0 Yes No C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\4df5thyu.default\cookies.txt[.bluestreak.com/]
00173986 Cookie/421 TrackingCookie No 0 Yes No F:\Documents and Settings\Rafael\Local Settings\Temp\Cookies\rafael@421[2].txt
00173990 Cookie/Sandboxer TrackingCookie No 0 Yes No F:\Documents and Settings\Rafael\Local Settings\Temp\Cookies\rafael@0[1].txt
00175950 Cookie/cs.sexcounter TrackingCookie No 0 Yes No F:\Documents and Settings\Rafael.HOME\Cookies\rafael@cs.sexcounter[2].txt
00175950 Cookie/cs.sexcounter TrackingCookie No 0 Yes No F:\Documents and Settings\Rafael.HOME\Cookies\rafael@cs.sexcounter[1].txt
00175950 Cookie/cs.sexcounter TrackingCookie No 0 Yes No F:\Documents and Settings\Saviel\Cookies\saviel@cs.sexcounter[2].txt
00175950 Cookie/cs.sexcounter TrackingCookie No 0 Yes No F:\Documents and Settings\Rafael\Cookies\rafael@cs.sexcounter[2].txt
00175950 Cookie/cs.sexcounter TrackingCookie No 0 Yes No F:\Documents and Settings\Rafael.HOME\Cookies\rafael@cs.sexcounter[4].txt
00175950 Cookie/cs.sexcounter TrackingCookie No 0 Yes No C:\Documents and Settings\Guest\Cookies\guest@cs.sexcounter[2].txt
00182104 Cookie/Hitbox TrackingCookie No 0 Yes No C:\Documents and Settings\Guest\Cookies\guest@phg.hitbox[2].txt
00184042 adware/startpage.aco Adware No 0 Yes No c:\windows\system32\ntnut32.exe
00184846 Cookie/Adrevolver TrackingCookie No 0 Yes No C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\4df5thyu.default\cookies.txt[.adrevolver.com/]
00184846 Cookie/Adrevolver TrackingCookie No 0 Yes No C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\4df5thyu.default\cookies.txt[.adrevolver.com/]
00184846 Cookie/Adrevolver TrackingCookie No 0 Yes No C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\4df5thyu.default\cookies.txt[.adrevolver.com/]
00191644 Cookie/adultfriendfinder TrackingCookie No 0 Yes No C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\4df5thyu.default\cookies.txt[.adultfriendfinder.com/]
00191644 Cookie/adultfriendfinder TrackingCookie No 0 Yes No C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\4df5thyu.default\cookies.txt[.adultfriendfinder.com/]
00191644 Cookie/adultfriendfinder TrackingCookie No 0 Yes No F:\Documents and Settings\Rafael\Local Settings\Temp\Cookies\rafael@adultfriendfinder[1].txt
00194122 Adware/Look2Me Adware No 0 Yes No F:\Program Files\Picasa\PINSTALL.DLL
00194327 Cookie/Go TrackingCookie No 0 Yes No C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\4df5thyu.default\cookies.txt[.go.com/]
00199984 Cookie/Searchportal TrackingCookie No 0 Yes No C:\Documents and Settings\Guest\Cookies\guest@searchportal.information[2].txt
00207338 Cookie/Target TrackingCookie No 0 Yes No C:\Documents and Settings\Guest\Cookies\guest@target[1].txt
00211457 Cookie/Any-Find TrackingCookie No 0 Yes No F:\Documents and Settings\Rafael\Cookies\rafael@any-find[3].txt
00211457 Cookie/Any-Find TrackingCookie No 0 Yes No F:\Documents and Settings\Rafael\Cookies\rafael@any-find[1].txt
00217430 adware/surfassistant Adware No 0 Yes No HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5dafd089-24b1-4c5e-bd42-8ca72550717b}
00247982 Cookie/TargetSaver TrackingCookie No 0 Yes No C:\Documents and Settings\Guest\Cookies\guest@targetsaver[2].txt
00262020 Cookie/Atwola TrackingCookie No 0 Yes No C:\Documents and Settings\Rafael\Cookies\rafael@atwola[1].txt
00262020 Cookie/Atwola TrackingCookie No 0 Yes No C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\4df5thyu.default\cookies.txt[.atwola.com/]
00262024 Cookie/ErrorSafe TrackingCookie No 0 Yes No C:\Documents and Settings\Guest\Cookies\guest@www.errorsafe[1].txt
00262025 Cookie/ErrorSafe TrackingCookie No 0 Yes No C:\Documents and Settings\Guest\Cookies\guest@errorsafe[2].txt
00263700 Cookie/E-eliminator TrackingCookie No 0 Yes No F:\Documents and Settings\Rafael\Cookies\rafael@evidence-eliminator[2].txt
00286732 Cookie/Cgi-bin TrackingCookie No 0 Yes No C:\Documents and Settings\Guest\Cookies\guest@cgi-bin[9].txt
00286732 Cookie/Cgi-bin TrackingCookie No 0 Yes No F:\Documents and Settings\Yaritza\Cookies\yaritza@cgi-bin[2].txt
00286736 Cookie/Cgi-bin TrackingCookie No 0 Yes No C:\Documents and Settings\Guest\Cookies\guest@cgi-bin[4].txt
00286738 Cookie/Cgi-bin TrackingCookie No 0 Yes No F:\Documents and Settings\Efrain\Cookies\efrain@cgi-bin[1].txt
00286738 Cookie/Cgi-bin TrackingCookie No 0 Yes No C:\Documents and Settings\Guest\Cookies\guest@cgi-bin[3].txt
00286739 Cookie/Hitbox TrackingCookie No 0 Yes No C:\Documents and Settings\Guest\Cookies\guest@ehg-dig.hitbox[1].txt
00296582 Cookie/DriveCleaner TrackingCookie No 0 Yes No C:\Documents and Settings\Guest\Cookies\guest@www.drivecleaner[2].txt
00296583 Cookie/DriveCleaner TrackingCookie No 0 Yes No C:\Documents and Settings\Guest\Cookies\guest@stats.drivecleaner[2].txt
00296584 Cookie/DriveCleaner TrackingCookie No 0 Yes No C:\Documents and Settings\Guest\Cookies\guest@drivecleaner[1].txt
00320978 Cookie/Winantivirus TrackingCookie No 0 Yes No C:\Documents and Settings\Guest\Cookies\guest@winantivirus[1].txt
00325830 Cookie/Bridgetrack TrackingCookie No 0 Yes No C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\4df5thyu.default\cookies.txt[citi.bridgetrack.com/]
00325830 Cookie/Bridgetrack TrackingCookie No 0 Yes No C:\Documents and Settings\Guest\Cookies\guest@citi.bridgetrack[1].txt
00351416 Cookie/Systemdoctor TrackingCookie No 0 Yes No C:\Documents and Settings\Guest\Cookies\guest@systemdoctor[1].txt
00505447 Cookie/Winantivirus TrackingCookie No 0 Yes No C:\Documents and Settings\Guest\Cookies\guest@go.winantispyware[2].txt
00505449 Cookie/Winantivirus TrackingCookie No 0 Yes No C:\Documents and Settings\Guest\Cookies\guest@winantispyware[1].txt
01185375 Application/Psexec.A HackTools No 0 Yes No C:\System Volume Information\_restore{E806BF13-9D4D-42A1-8768-E139158A863F}\RP907\A0063528.EXE
01185375 Application/Psexec.A HackTools No 0 Yes No C:\WINDOWS\PSEXESVC.EXE
01185375 Application/Psexec.A HackTools No 0 Yes No C:\System Volume Information\_restore{E806BF13-9D4D-42A1-8768-E139158A863F}\RP907\A0065629.EXE
01185375 Application/Psexec.A HackTools No 0 Yes No C:\System Volume Information\_restore{E806BF13-9D4D-42A1-8768-E139158A863F}\RP907\A0065648.EXE
01271815 Adware/Zango Adware No 0 Yes No C:\System Volume Information\_restore{E806BF13-9D4D-42A1-8768-E139158A863F}\RP848\A0052375.exe
01271818 Adware/Zango Adware No 0 Yes No C:\System Volume Information\_restore{E806BF13-9D4D-42A1-8768-E139158A863F}\RP848\A0052368.exe
01606636 Cookie/Adserver TrackingCookie No 0 Yes No C:\Documents and Settings\Guest\Cookies\guest@adserver.easyad[2].txt
01606636 Cookie/Adserver TrackingCookie No 0 Yes No C:\Documents and Settings\Guest\Application Data\Mozilla\Firefox\Profiles\4df5thyu.default\cookies.txt[.adserver.easyad.info/]
02261869 Cookie/Sextracker TrackingCookie No 0 Yes No F:\Documents and Settings\Rafael\Local Settings\Temp\Cookies\rafael@counter12.sextracker[1].txt
02885963 Rootkit/Booto.C Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{E806BF13-9D4D-42A1-8768-E139158A863F}\RP907\A0063523.sys
02885963 Rootkit/Booto.C Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{E806BF13-9D4D-42A1-8768-E139158A863F}\RP907\A0065643.sys
02888175 Adware/Zenosearch Adware No 0 Yes No C:\System Volume Information\_restore{E806BF13-9D4D-42A1-8768-E139158A863F}\RP890\A0057070.dll
02897073 Cookie/Revenue TrackingCookie No 0 Yes No C:\Documents and Settings\Guest\Cookies\guest@adsrevenue[2].txt
02902388 Spyware/Virtumonde Spyware No 1 Yes No C:\System Volume Information\_restore{E806BF13-9D4D-42A1-8768-E139158A863F}\RP909\A0065748.dll
02902393 Spyware/Virtumonde Spyware No 1 Yes No C:\System Volume Information\_restore{E806BF13-9D4D-42A1-8768-E139158A863F}\RP907\A0063467.dll
02902393 Spyware/Virtumonde Spyware No 1 Yes No C:\QooBox\Quarantine\C\WINDOWS\system32\mdfsafug.dll.vir
02902397 Spyware/Virtumonde Spyware No 1 Yes No C:\System Volume Information\_restore{E806BF13-9D4D-42A1-8768-E139158A863F}\RP909\A0065751.dll
02903139 Spyware/Virtumonde Spyware No 1 Yes No C:\System Volume Information\_restore{E806BF13-9D4D-42A1-8768-E139158A863F}\RP863\A0054567.dll
02903141 Spyware/Virtumonde Spyware No 1 Yes No C:\System Volume Information\_restore{E806BF13-9D4D-42A1-8768-E139158A863F}\RP909\A0065744.dll
02903391 Spyware/Virtumonde Spyware No 1 Yes No C:\System Volume Information\_restore{E806BF13-9D4D-42A1-8768-E139158A863F}\RP909\A0065746.dll
02903391 Spyware/Virtumonde Spyware No 1 Yes No C:\System Volume Information\_restore{E806BF13-9D4D-42A1-8768-E139158A863F}\RP909\A0065729.dll
02903391 Spyware/Virtumonde Spyware No 1 Yes No C:\System Volume Information\_restore{E806BF13-9D4D-42A1-8768-E139158A863F}\RP909\A0065753.dll
02903391 Spyware/Virtumonde Spyware No 1 Yes No C:\System Volume Information\_restore{E806BF13-9D4D-42A1-8768-E139158A863F}\RP909\A0065747.dll
02903391 Spyware/Virtumonde Spyware No 1 Yes No C:\System Volume Information\_restore{E806BF13-9D4D-42A1-8768-E139158A863F}\RP909\A0065743.dll
02903391 Spyware/Virtumonde Spyware No 1 Yes No C:\System Volume Information\_restore{E806BF13-9D4D-42A1-8768-E139158A863F}\RP909\A0065749.dll
02903391 Spyware/Virtumonde Spyware No 1 Yes No C:\System Volume Information\_restore{E806BF13-9D4D-42A1-8768-E139158A863F}\RP909\A0065728.dll
02903391 Spyware/Virtumonde Spyware No 1 Yes No C:\System Volume Information\_restore{E806BF13-9D4D-42A1-8768-E139158A863F}\RP909\A0065750.dll
02903595 Spyware/Virtumonde Spyware No 1 Yes No C:\System Volume Information\_restore{E806BF13-9D4D-42A1-8768-E139158A863F}\RP859\A0054506.dll
02903964 Spyware/Virtumonde Spyware No 1 Yes No C:\QooBox\Quarantine\C\WINDOWS\system32\rwdshfbo.dll.vir
02903964 Spyware/Virtumonde Spyware No 1 Yes No C:\System Volume Information\_restore{E806BF13-9D4D-42A1-8768-E139158A863F}\RP907\A0063487.dll
02903965 Spyware/Virtumonde Spyware No 1 Yes No C:\System Volume Information\_restore{E806BF13-9D4D-42A1-8768-E139158A863F}\RP907\A0063504.dll
02903965 Spyware/Virtumonde Spyware No 1 Yes No C:\QooBox\Quarantine\C\WINDOWS\system32\yhxyjfem.dll.vir
02903966 Spyware/Virtumonde Spyware No 1 Yes No C:\System Volume Information\_restore{E806BF13-9D4D-42A1-8768-E139158A863F}\RP907\A0063443.dll
02903966 Spyware/Virtumonde Spyware No 1 Yes No C:\QooBox\Quarantine\C\WINDOWS\system32\fpalpdfo.dll.vir
02904061 Adware/BraveSentry Adware No 0 Yes No C:\System Volume Information\_restore{E806BF13-9D4D-42A1-8768-E139158A863F}\RP891\A0057098.dll
02904330 Spyware/Virtumonde Spyware No 1 Yes No C:\System Volume Information\_restore{E806BF13-9D4D-42A1-8768-E139158A863F}\RP907\A0063492.dll
02904330 Spyware/Virtumonde Spyware No 1 Yes No C:\QooBox\Quarantine\C\WINDOWS\system32\ukidxfad.dll.vir
02905017 Spyware/Virtumonde Spyware No 1 Yes No C:\QooBox\Quarantine\C\WINDOWS\system32\itycoych.dll.vir
02905017 Spyware/Virtumonde Spyware No 1 Yes No C:\System Volume Information\_restore{E806BF13-9D4D-42A1-8768-E139158A863F}\RP907\A0063452.dll
02905018 Spyware/Virtumonde Spyware No 1 Yes No C:\System Volume Information\_restore{E806BF13-9D4D-42A1-8768-E139158A863F}\RP909\A0065730.dll
02905019 Spyware/Virtumonde Spyware No 1 Yes No C:\System Volume Information\_restore{E806BF13-9D4D-42A1-8768-E139158A863F}\RP909\A0065727.dll
02905020 Spyware/Virtumonde Spyware No 1 Yes No C:\System Volume Information\_restore{E806BF13-9D4D-42A1-8768-E139158A863F}\RP907\A0063500.dll
02905020 Spyware/Virtumonde Spyware No 1 Yes No C:\QooBox\Quarantine\C\WINDOWS\system32\wkviiemt.dll.vir
02905021 Spyware/Virtumonde Spyware No 1 Yes No C:\System Volume Information\_restore{E806BF13-9D4D-42A1-8768-E139158A863F}\RP871\A0054636.dll
02905027 Spyware/Virtumonde Spyware No 1 Yes No C:\QooBox\Quarantine\C\WINDOWS\system32\dxjcibag.dll.vir
02905027 Spyware/Virtumonde Spyware No 1 Yes No C:\System Volume Information\_restore{E806BF13-9D4D-42A1-8768-E139158A863F}\RP907\A0063438.dll
02905766 Spyware/Virtumonde Spyware No 1 Yes No C:\System Volume Information\_restore{E806BF13-9D4D-42A1-8768-E139158A863F}\RP872\A0054652.dll
02905918 Spyware/Virtumonde Spyware No 1 Yes No C:\System Volume Information\_restore{E806BF13-9D4D-42A1-8768-E139158A863F}\RP907\A0063490.dll
02905918 Spyware/Virtumonde Spyware No 1 Yes No C:\QooBox\Quarantine\C\WINDOWS\system32\tevipnod.dll.vir
02906397 Spyware/Virtumonde Spyware No 1 Yes No C:\QooBox\Quarantine\C\WINDOWS\system32\fmkupxyl.dll.vir
02906397 Spyware/Virtumonde Spyware No 1 Yes No C:\System Volume Information\_restore{E806BF13-9D4D-42A1-8768-E139158A863F}\RP907\A0063442.dll
02906745 Spyware/Virtumonde Spyware No 1 Yes No C:\System Volume Information\_restore{E806BF13-9D4D-42A1-8768-E139158A863F}\RP909\A0065731.dll
02906746 Spyware/Virtumonde Spyware No 1 Yes No C:\System Volume Information\_restore{E806BF13-9D4D-42A1-8768-E139158A863F}\RP909\A0065745.dll
02907095 Spyware/Virtumonde Spyware No 1 Yes No C:\System Volume Information\_restore{E806BF13-9D4D-42A1-8768-E139158A863F}\RP907\A0063495.dll
02907095 Spyware/Virtumonde Spyware No 1 Yes No C:\QooBox\Quarantine\C\WINDOWS\system32\vcirjgki.dll.vir
02907258 Spyware/Virtumonde Spyware No 1 Yes No C:\System Volume Information\_restore{E806BF13-9D4D-42A1-8768-E139158A863F}\RP883\A0056756.dll
02907394 Spyware/Virtumonde Spyware No 1 Yes No C:\System Volume Information\_restore{E806BF13-9D4D-42A1-8768-E139158A863F}\RP873\A0054714.dll
02907395 Spyware/Virtumonde Spyware No 1 Yes No C:\QooBox\Quarantine\C\WINDOWS\system32\nsuglycw.dll.vir
02907395 Spyware/Virtumonde Spyware No 1 Yes No C:\System Volume Information\_restore{E806BF13-9D4D-42A1-8768-E139158A863F}\RP907\A0063475.dll
02907397 Spyware/Virtumonde Spyware No 1 Yes No C:\System Volume Information\_restore{E806BF13-9D4D-42A1-8768-E139158A863F}\RP909\A0065726.dll
02907503 Spyware/Virtumonde Spyware No 1 Yes No C:\QooBox\Quarantine\C\WINDOWS\system32\vltgmqdu.dll.vir
02907503 Spyware/Virtumonde Spyware No 1 Yes No C:\System Volume Information\_restore{E806BF13-9D4D-42A1-8768-E139158A863F}\RP907\A0063498.dll
02907595 Spyware/Virtumonde Spyware No 1 Yes No C:\QooBox\Quarantine\C\WINDOWS\system32\ifgsqpss.dll.vir
02907595 Spyware/Virtumonde Spyware No 1 Yes No C:\System Volume Information\_restore{E806BF13-9D4D-42A1-8768-E139158A863F}\RP907\A0063444.dll
02907595 Spyware/Virtumonde Spyware No 1 Yes No C:\System Volume Information\_restore{E806BF13-9D4D-42A1-8768-E139158A863F}\RP907\A0063451.dll
02907595 Spyware/Virtumonde Spyware No 1 Yes No C:\QooBox\Quarantine\C\WINDOWS\system32\gipgydgg.dll.vir
02907596 Spyware/Virtumonde Spyware No 1 Yes No C:\System Volume Information\_restore{E806BF13-9D4D-42A1-8768-E139158A863F}\RP887\A0056794.dll
02907725 Spyware/Virtumonde Spyware No 1 Yes No C:\QooBox\Quarantine\C\WINDOWS\system32\dxybpksk.dll.vir
02907725 Spyware/Virtumonde Spyware No 1 Yes No C:\System Volume Information\_restore{E806BF13-9D4D-42A1-8768-E139158A863F}\RP907\A0063439.dll
02908062 Spyware/Virtumonde Spyware No 1 Yes No C:\QooBox\Quarantine\C\WINDOWS\system32\jbcvygvr.dll.vir
02908062 Spyware/Virtumonde Spyware No 1 Yes No C:\System Volume Information\_restore{E806BF13-9D4D-42A1-8768-E139158A863F}\RP907\A0063454.dll
02908063 Spyware/Virtumonde Spyware No 1 Yes No C:\System Volume Information\_restore{E806BF13-9D4D-42A1-8768-E139158A863F}\RP907\A0063464.dll
02908063 Spyware/Virtumonde Spyware No 1 Yes No C:\QooBox\Quarantine\C\WINDOWS\system32\lfxrhamp.dll.vir
02908064 Spyware/Virtumonde Spyware No 1 Yes No C:\System Volume Information\_restore{E806BF13-9D4D-42A1-8768-E139158A863F}\RP907\A0063477.dll
02908064 Spyware/Virtumonde Spyware No 1 Yes No C:\QooBox\Quarantine\C\WINDOWS\system32\ocfqaaly.dll.vir
02908065 Spyware/Virtumonde Spyware No 1 Yes No C:\System Volume Information\_restore{E806BF13-9D4D-42A1-8768-E139158A863F}\RP907\A0063479.dll
02908065 Spyware/Virtumonde Spyware No 1 Yes No C:\QooBox\Quarantine\C\WINDOWS\system32\omfyddus.dll.vir
02908066 Spyware/Virtumonde Spyware No 1 Yes No C:\QooBox\Quarantine\C\WINDOWS\system32\lowpuivk.dll.vir
02908066 Spyware/Virtumonde Spyware No 1 Yes No C:\System Volume Information\_restore{E806BF13-9D4D-42A1-8768-E139158A863F}\RP907\A0063465.dll
02908211 Spyware/Virtumonde Spyware No 1 Yes No C:\QooBox\Quarantine\C\WINDOWS\system32\bhcvessw.dll.vir
02908211 Spyware/Virtumonde Spyware No 1 Yes No C:\System Volume Information\_restore{E806BF13-9D4D-42A1-8768-E139158A863F}\RP907\A0063433.dll
02908213 Spyware/Virtumonde Spyware No 1 Yes No C:\QooBox\Quarantine\C\WINDOWS\system32\hlagbpmo.dll.vir
02908213 Spyware/Virtumonde Spyware No 1 Yes No C:\System Volume Information\_restore{E806BF13-9D4D-42A1-8768-E139158A863F}\RP907\A0063446.dll
02908215 Spyware/Virtumonde Spyware No 1 Yes No C:\System Volume Information\_restore{E806BF13-9D4D-42A1-8768-E139158A863F}\RP887\A0056796.dll
02908225 Spyware/Virtumonde Spyware No 1 Yes No C:\QooBox\Quarantine\C\WINDOWS\system32\kfmeduow.dll.vir
02908225 Spyware/Virtumonde Spyware No 1 Yes No C:\System Volume Information\_restore{E806BF13-9D4D-42A1-8768-E139158A863F}\RP907\A0063459.dll
02908240 Adware/WinPerformance Adware No 0 Yes No C:\System Volume Information\_restore{E806BF13-9D4D-42A1-8768-E139158A863F}\RP903\A0060355.exe
02908240 Adware/WinPerformance Adware No 0 Yes No C:\System Volume Information\_restore{E806BF13-9D4D-42A1-8768-E139158A863F}\RP903\A0060363.exe
02908246 Application/XPDefender Spyware No 0 Yes No C:\System Volume Information\_restore{E806BF13-9D4D-42A1-8768-E139158A863F}\RP889\A0056840.exe
02908338 Adware/PurityScan Adware No 0 Yes No C:\System Volume Information\_restore{E806BF13-9D4D-42A1-8768-E139158A863F}\RP898\A0058157.exe
02908562 Spyware/Virtumonde Spyware No 1 Yes No C:\System Volume Information\_restore{E806BF13-9D4D-42A1-8768-E139158A863F}\RP890\A0057039.dll
02908563 Spyware/Virtumonde Spyware No 1 Yes No C:\QooBox\Quarantine\C\WINDOWS\system32\pslfgdin.dll.vir
02908563 Spyware/Virtumonde Spyware No 1 Yes No C:\System Volume Information\_restore{E806BF13-9D4D-42A1-8768-E139158A863F}\RP907\A0063481.dll
02908620 Spyware/Virtumonde Spyware No 1 Yes No C:\System Volume Information\_restore{E806BF13-9D4D-42A1-8768-E139158A863F}\RP907\A0063478.dll
02908620 Spyware/Virtumonde Spyware No 1 Yes No C:\QooBox\Quarantine\C\WINDOWS\system32\oiotvsel.dll.vir
02908623 Spyware/Virtumonde Spyware No 1 Yes No C:\QooBox\Quarantine\C\WINDOWS\system32\ydfxgqex.dll.vir
02908623 Spyware/Virtumonde Spyware No 1 Yes No C:\System Volume Information\_restore{E806BF13-9D4D-42A1-8768-E139158A863F}\RP907\A0063503.dll
02909242 Spyware/Virtumonde Spyware No 1 Yes No C:\System Volume Information\_restore{E806BF13-9D4D-42A1-8768-E139158A863F}\RP907\A0063461.dll
02909242 Spyware/Virtumonde Spyware No 1 Yes No C:\QooBox\Quarantine\C\WINDOWS\system32\kmlmnsly.dll.vir
02909244 Spyware/Virtumonde Spyware No 1 Yes No C:\System Volume Information\_restore{E806BF13-9D4D-42A1-8768-E139158A863F}\RP891\A0057100.dll
02909247 Spyware/Virtumonde Spyware No 1 Yes No C:\System Volume Information\_restore{E806BF13-9D4D-42A1-8768-E139158A863F}\RP871\A0054638.dll
02909249 Spyware/Virtumonde Spyware No 1 Yes No C:\System Volume Information\_restore{E806BF13-9D4D-42A1-8768-E139158A863F}\RP907\A0063440.dll
02909249 Spyware/Virtumonde Spyware No 1 Yes No C:\QooBox\Quarantine\C\WINDOWS\system32\eaebyjbx.dll.vir
02909250 Spyware/Virtumonde Spyware No 1 Yes No C:\QooBox\Quarantine\C\WINDOWS\system32\aogaxics.dll.vir
02909250 Spyware/Virtumonde Spyware No 1 Yes No C:\System Volume Information\_restore{E806BF13-9D4D-42A1-8768-E139158A863F}\RP907\A0063429.dll
02909454 Adware/Insider Adware No 0 Yes No C:\System Volume Information\_restore{E806BF13-9D4D-42A1-8768-E139158A863F}\RP890\A0057044.exe
02909475 Spyware/Virtumonde Spyware No 1 Yes No C:\System Volume Information\_restore{E806BF13-9D4D-42A1-8768-E139158A863F}\RP867\A0054604.dll
02909904 Spyware/Virtumonde Spyware No 1 Yes No C:\System Volume Information\_restore{E806BF13-9D4D-42A1-8768-E139158A863F}\RP907\A0063493.dll
02909904 Spyware/Virtumonde Spyware No 1 Yes No C:\QooBox\Quarantine\C\WINDOWS\system32\uvkhwsdb.dll.vir
02910099 Spyware/Virtumonde Spyware No 1 Yes No C:\System Volume Information\_restore{E806BF13-9D4D-42A1-8768-E139158A863F}\RP907\A0063431.dll
02910099 Spyware/Virtumonde Spyware No 1 Yes No C:\QooBox\Quarantine\C\WINDOWS\system32\aoualuvx.dll.vir
02910318 Spyware/Virtumonde Spyware No 1 Yes No C:\QooBox\Quarantine\C\WINDOWS\system32\uylheena.dll.vir
02910318 Spyware/Virtumonde Spyware No 1 Yes No C:\System Volume Information\_restore{E806BF13-9D4D-42A1-8768-E139158A863F}\RP907\A0063494.dll
02910322 Spyware/Virtumonde Spyware No 1 Yes No C:\System Volume Information\_restore{E806BF13-9D4D-42A1-8768-E139158A863F}\RP907\A0063480.dll
02910322 Spyware/Virtumonde Spyware No 1 Yes No C:\QooBox\Quarantine\C\WINDOWS\system32\oysqsvmf.dll.vir
02910323 Spyware/Virtumonde Spyware No 1 Yes No C:\System Volume Information\_restore{E806BF13-9D4D-42A1-8768-E139158A863F}\RP907\A0063491.dll
02910323 Spyware/Virtumonde Spyware No 1 Yes No C:\QooBox\Quarantine\C\WINDOWS\system32\tlkvwopi.dll.vir
02910327 Spyware/Virtumonde Spyware No 1 Yes No C:\System Volume Information\_restore{E806BF13-9D4D-42A1-8768-E139158A863F}\RP890\A0057045.dll
02910536 Spyware/Virtumonde Spyware No 1 Yes No C:\System Volume Information\_restore{E806BF13-9D4D-42A1-8768-E139158A863F}\RP893\A0057128.dll
02910537 Spyware/Virtumonde Spyware No 1 Yes No C:\System Volume Information\_restore{E806BF13-9D4D-42A1-8768-E139158A863F}\RP881\A0056728.dll
02910541 Spyware/Virtumonde Spyware No 1 Yes No C:\System Volume Information\_restore{E806BF13-9D4D-42A1-8768-E139158A863F}\RP894\A0057139.dll
02910544 Spyware/Virtumonde Spyware No 1 Yes No C:\System Volume Information\_restore{E806BF13-9D4D-42A1-8768-E139158A863F}\RP891\A0057099.dll
02910546 Spyware/Virtumonde Spyware No 1 Yes No C:\System Volume Information\_restore{E806BF13-9D4D-42A1-8768-E139158A863F}\RP907\A0063501.dll
02910546 Spyware/Virtumonde Spyware No 1 Yes No C:\QooBox\Quarantine\C\WINDOWS\system32\xkqjkkjq.dll.vir
02910547 Spyware/Virtumonde Spyware No 1 Yes No C:\System Volume Information\_restore{E806BF13-9D4D-42A1-8768-E139158A863F}\RP907\A0063472.dll
02910547 Spyware/Virtumonde Spyware No 1 Yes No C:\QooBox\Quarantine\C\WINDOWS\system32\mykkubia.dll.vir
02910549 Spyware/Virtumonde Spyware No 1 Yes No C:\System Volume Information\_restore{E806BF13-9D4D-42A1-8768-E139158A863F}\RP907\A0063457.dll
02910549 Spyware/Virtumonde Spyware No 1 Yes No C:\QooBox\Quarantine\C\WINDOWS\system32\jrywfxof.dll.vir
02910550 Spyware/Virtumonde Spyware No 1 Yes No C:\QooBox\Quarantine\C\WINDOWS\system32\luetlfhr.dll.vir
02910550 Spyware/Virtumonde Spyware No 1 Yes No C:\System Volume Information\_restore{E806BF13-9D4D-42A1-8768-E139158A863F}\RP907\A0063466.dll
02910551 Spyware/Virtumonde Spyware No 1 Yes No C:\QooBox\Quarantine\C\WINDOWS\system32\tbnvjptf.dll.vir
02910551 Spyware/Virtumonde Spyware No 1 Yes No C:\System Volume Information\_restore{E806BF13-9D4D-42A1-8768-E139158A863F}\RP907\A0063489.dll
02910553 Spyware/Virtumonde Spyware No 1 Yes No C:\System Volume Information\_restore{E806BF13-9D4D-42A1-8768-E139158A863F}\RP907\A0063463.dll
02910553 Spyware/Virtumonde Spyware No 1 Yes No C:\QooBox\Quarantine\C\WINDOWS\system32\ldqoxwvl.dll.vir
02910554 Spyware/Virtumonde Spyware No 1 Yes No C:\QooBox\Quarantine\C\WINDOWS\system32\mtksypum.dll.vir
02910554 Spyware/Virtumonde Spyware No 1 Yes No C:\System Volume Information\_restore{E806BF13-9D4D-42A1-8768-E139158A863F}\RP907\A0063469.dll
02910555 Spyware/Virtumonde Spyware No 1 Yes No C:\QooBox\Quarantine\C\WINDOWS\system32\mvoevcrq.dll.vir
02910555 Spyware/Virtumonde Spyware No 1 Yes No C:\System Volume Information\_restore{E806BF13-9D4D-42A1-8768-E139158A863F}\RP907\A0063470.dll
02910556 Spyware/Virtumonde Spyware No 1 Yes No C:\QooBox\Quarantine\C\WINDOWS\system32\hhocriyn.dll.vir
02910556 Spyware/Virtumonde Spyware No 1 Yes No C:\System Volume Information\_restore{E806BF13-9D4D-42A1-8768-E139158A863F}\RP907\A0063445.dll
02910557 Spyware/Virtumonde Spyware No 1 Yes No C:\System Volume Information\_restore{E806BF13-9D4D-42A1-8768-E139158A863F}\RP907\A0063488.dll
02910557 Spyware/Virtumonde Spyware No 1 Yes No C:\QooBox\Quarantine\C\WINDOWS\system32\sleqhshc.dll.vir
02910558 Spyware/Virtumonde Spyware No 1 Yes No C:\System Volume Information\_restore{E806BF13-9D4D-42A1-8768-E139158A863F}\RP907\A0063455.dll
02910558 Spyware/Virtumonde Spyware No 1 Yes No C:\QooBox\Quarantine\C\WINDOWS\system32\jbrirlqa.dll.vir
02910561 Spyware/Virtumonde Spyware No 1 Yes No C:\System Volume Information\_restore{E806BF13-9D4D-42A1-8768-E139158A863F}\RP907\A0063496.dll
02910561 Spyware/Virtumonde Spyware No 1 Yes No C:\QooBox\Quarantine\C\WINDOWS\system32\vfvfwxpf.dll.vir
02910754 Spyware/Virtumonde Spyware No 1 Yes No C:\System Volume Information\_restore{E806BF13-9D4D-42A1-8768-E139158A863F}\RP897\A0058141.dll
02910804 Spyware/Virtumonde Spyware No 1 Yes No C:\QooBox\Quarantine\C\WINDOWS\system32\ieblkstm.dll.vir
02910804 Spyware/Virtumonde Spyware No 1 Yes No C:\System Volume Information\_restore{E806BF13-9D4D-42A1-8768-E139158A863F}\RP907\A0063450.dll
02910805 Spyware/Virtumonde Spyware No 1 Yes No C:\System Volume Information\_restore{E806BF13-9D4D-42A1-8768-E139158A863F}\RP907\A0063468.dll
02910805 Spyware/Virtumonde Spyware No 1 Yes No C:\QooBox\Quarantine\C\WINDOWS\system32\mpfwpjyp.dll.vir
02910818 Spyware/Virtumonde Spyware No 1 Yes No C:\QooBox\Quarantine\C\WINDOWS\system32\lawevhyx.dll.vir
02910818 Spyware/Virtumonde Spyware No 1 Yes No C:\System Volume Information\_restore{E806BF13-9D4D-42A1-8768-E139158A863F}\RP907\A0063462.dll
02910849 Spyware/Virtumonde Spyware No 1 Yes No C:\System Volume Information\_restore{E806BF13-9D4D-42A1-8768-E139158A863F}\RP907\A0063486.dll
02910849 Spyware/Virtumonde Spyware No 1 Yes No C:\QooBox\Quarantine\C\WINDOWS\system32\rnhbufgd.dll.vir
02910851 Spyware/Virtumonde Spyware No 1 Yes No C:\System Volume Information\_restore{E806BF13-9D4D-42A1-8768-E139158A863F}\RP907\A0063484.dll
02910851 Spyware/Virtumonde Spyware No 1 Yes No C:\QooBox\Quarantine\C\WINDOWS\system32\qusqmsts.dll.vir
02911849 Adware/PurityScan Adware No 0 Yes No C:\QooBox\Quarantine\C\WINDOWS\system32\namxbkge.dll.vir
02911849 Adware/PurityScan Adware No 0 Yes No C:\System Volume Information\_restore{E806BF13-9D4D-42A1-8768-E139158A863F}\RP907\A0063473.dll
02912122 Spyware/Virtumonde Spyware No 1 Yes No C:\System Volume Information\_restore{E806BF13-9D4D-42A1-8768-E139158A863F}\RP881\A0056727.dll
02912162 Spyware/Virtumonde Spyware No 1 Yes No C:\System Volume Information\_restore{E806BF13-9D4D-42A1-8768-E139158A863F}\RP909\A0065752.dll
02912170 Spyware/Virtumonde Spyware No 1 Yes No C:\QooBox\Quarantine\C\WINDOWS\system32\klgfifrj.dll.vir
02912170 Spyware/Virtumonde Spyware No 1 Yes No C:\System Volume Information\_restore{E806BF13-9D4D-42A1-8768-E139158A863F}\RP907\A0063460.dll
02912306 Spyware/Virtumonde Spyware No 1 Yes No C:\QooBox\Quarantine\C\WINDOWS\system32\nuteoogw.dll.vir
02912306 Spyware/Virtumonde Spyware No 1 Yes No C:\System Volume Information\_restore{E806BF13-9D4D-42A1-8768-E139158A863F}\RP907\A0063476.dll
02912307 Spyware/Virtumonde Spyware No 1 Yes No C:\System Volume Information\_restore{E806BF13-9D4D-42A1-8768-E139158A863F}\RP907\A0063441.dll
02912307 Spyware/Virtumonde Spyware No 1 Yes No C:\QooBox\Quarantine\C\WINDOWS\system32\emnkieuo.dll.vir
02912308 Spyware/Virtumonde Spyware No 1 Yes No C:\System Volume Information\_restore{E806BF13-9D4D-42A1-8768-E139158A863F}\RP907\A0063436.dll
02912308 Spyware/Virtumonde Spyware No 1 Yes No C:\QooBox\Quarantine\C\WINDOWS\system32\ddmjkclx.dll.vir
02912783 Spyware/Virtumonde Spyware No 1 Yes No C:\System Volume Information\_restore{E806BF13-9D4D-42A1-8768-E139158A863F}\RP907\A0063505.dll
02912783 Spyware/Virtumonde Spyware No 1 Yes No C:\QooBox\Quarantine\C\WINDOWS\system32\ypllmfhf.dll.vir
02913189 Spyware/Virtumonde Spyware No 1 Yes No C:\QooBox\Quarantine\C\WINDOWS\system32\yudjayca.dll.vir
02913189 Spyware/Virtumonde Spyware No 1 Yes No C:\System Volume Information\_restore{E806BF13-9D4D-42A1-8768-E139158A863F}\RP907\A0063506.dll
02913311 Adware/Rabio Adware No 0 Yes No C:\System Volume Information\_restore{E806BF13-9D4D-42A1-8768-E139158A863F}\RP890\A0057059.exe
02913311 Adware/Rabio Adware No 0 Yes No C:\System Volume Information\_restore{E806BF13-9D4D-42A1-8768-E139158A863F}\RP888\A0056834.exe
02913311 Adware/Rabio Adware No 0 Yes No C:\System Volume Information\_restore{E806BF13-9D4D-42A1-8768-E139158A863F}\RP890\A0057050.exe
02913311 Adware/Rabio Adware No 0 Yes No C:\System Volume Information\_restore{E806BF13-9D4D-42A1-8768-E139158A863F}\RP891\A0057105.exe
02913315 Adware/Rabio Adware No 0 Yes No C:\Program Files\Bat\Info.dll
02913448 Spyware/Virtumonde Spyware No 1 Yes No C:\QooBox\Quarantine\C\WINDOWS\system32\ixfjgkag.dll.vir
02913448 Spyware/Virtumonde Spyware No 1 Yes No C:\System Volume Information\_restore{E806BF13-9D4D-42A1-8768-E139158A863F}\RP907\A0063453.dll
02913451 Spyware/Virtumonde Spyware No 1 Yes No C:\System Volume Information\_restore{E806BF13-9D4D-42A1-8768-E139158A863F}\RP907\A0063448.dll
02913451 Spyware/Virtumonde Spyware No 1 Yes No C:\QooBox\Quarantine\C\WINDOWS\system32\hpdomnyj.dll.vir
02913453 Spyware/Virtumonde Spyware No 1 Yes No C:\QooBox\Quarantine\C\WINDOWS\system32\bhtywdbp.dll.vir
02913453 Spyware/Virtumonde Spyware No 1 Yes No C:\System Volume Information\_restore{E806BF13-9D4D-42A1-8768-E139158A863F}\RP907\A0063434.dll
02913455 Spyware/Virtumonde Spyware No 1 Yes No C:\System Volume Information\_restore{E806BF13-9D4D-42A1-8768-E139158A863F}\RP907\A0063474.dll
02913455 Spyware/Virtumonde Spyware No 1 Yes No C:\QooBox\Quarantine\C\WINDOWS\system32\jvpydqpy.dll.vir
02913455 Spyware/Virtumonde Spyware No 1 Yes No C:\QooBox\Quarantine\C\WINDOWS\system32\nnimwbkn.dll.vir
02913455 Spyware/Virtumonde Spyware No 1 Yes No C:\System Volume Information\_restore{E806BF13-9D4D-42A1-8768-E139158A863F}\RP907\A0063458.dll
02913456 Spyware/Virtumonde Spyware No 1 Yes No C:\QooBox\Quarantine\C\WINDOWS\system32\bavefxcs.dll.vir
02913456 Spyware/Virtumonde Spyware No 1 Yes No C:\System Volume Information\_restore{E806BF13-9D4D-42A1-8768-E139158A863F}\RP907\A0063432.dll
02914391 Spyware/Vundo Spyware No 0 Yes No C:\System Volume Information\_restore{E806BF13-9D4D-42A1-8768-E139158A863F}\RP907\A0065547.dll
02914393 Spyware/Vundo Spyware No 0 Yes No C:\QooBox\Quarantine\C\WINDOWS\system32\bjtvkqyf.dll.vir
02914393 Spyware/Vundo Spyware No 0 Yes No C:\System Volume Information\_restore{E806BF13-9D4D-42A1-8768-E139158A863F}\RP907\A0063435.dll
02914395 Spyware/Vundo Spyware No 0 Yes No C:\System Volume Information\_restore{E806BF13-9D4D-42A1-8768-E139158A863F}\RP907\A0065635.dll
02914395 Spyware/Vundo Spyware No 0 Yes No C:\QooBox\Quarantine\C\WINDOWS\system32\jgkmlmqw.dll.vir
02914396 Spyware/Vundo Spyware No 0 Yes No C:\System Volume Information\_restore{E806BF13-9D4D-42A1-8768-E139158A863F}\RP907\A0065634.dll
02914396 Spyware/Vundo Spyware No 0 Yes No C:\QooBox\Quarantine\C\WINDOWS\system32\gkpbdwum.dll.vir
02914400 Spyware/Vundo Spyware No 0 Yes No C:\System Volume Information\_restore{E806BF13-9D4D-42A1-8768-E139158A863F}\RP907\A0065703.dll
02914400 Spyware/Vundo Spyware No 0 Yes No C:\System Volume Information\_restore{E806BF13-9D4D-42A1-8768-E139158A863F}\RP907\A0065560.dll
02914481 Spyware/Virtumonde Spyware No 1 Yes No C:\System Volume Information\_restore{E806BF13-9D4D-42A1-8768-E139158A863F}\RP897\A0058142.dll
02914483 Spyware/Virtumonde Spyware No 1 Yes No C:\System Volume Information\_restore{E806BF13-9D4D-42A1-8768-E139158A863F}\RP907\A0063471.dll
02914483 Spyware/Virtumonde Spyware No 1 Yes No C:\QooBox\Quarantine\C\WINDOWS\system32\mwkkfikj.dll.vir
02914484 Spyware/Virtumonde Spyware No 1 Yes No C:\System Volume Information\_restore{E806BF13-9D4D-42A1-8768-E139158A863F}\RP907\A0063437.dll
02914484 Spyware/Virtumonde Spyware No 1 Yes No C:\QooBox\Quarantine\C\WINDOWS\system32\doxmukeh.dll.vir
02915170 Adware/2Search Adware No 0 Yes No C:\Deckard\System Scanner\20080409013906\backup\DOCUME~1\Rafael\LOCALS~1\Temp\IMAdvertiser.exe
02916239 Generic Malware Virus/Trojan No 0 Yes Yes C:\System Volume Information\_restore{E806BF13-9D4D-42A1-8768-E139158A863F}\RP848\A0052376.dll
02916240 Adware/IST Adware No 0 Yes No C:\System Volume Information\_restore{E806BF13-9D4D-42A1-8768-E139158A863F}\RP848\A0052399.dll
02916777 Generic Trojan Virus/Trojan No 0 Yes Yes C:\System Volume Information\_restore{E806BF13-9D4D-42A1-8768-E139158A863F}\RP907\A0063410.dll
02917653 Adware/Zango Adware No 0 Yes No C:\System Volume Information\_restore{E806BF13-9D4D-42A1-8768-E139158A863F}\RP848\A0052369.dll
02917663 Trj/Downloader.MDW Virus/Trojan No 1 Yes Yes C:\System Volume Information\_restore{E806BF13-9D4D-42A1-8768-E139158A863F}\RP890\A0057068.exe
02917992 Adware/Zango Adware No 0 Yes No C:\System Volume Information\_restore{E806BF13-9D4D-42A1-8768-E139158A863F}\RP848\A0052373.exe
02918273 Trj/Downloader.MDW Virus/Trojan No 1 Yes Yes C:\System Volume Information\_restore{E806BF13-9D4D-42A1-8768-E139158A863F}\RP900\A0058182.exe
02918989 Spyware/Virtumonde Spyware No 1 Yes No C:\System Volume Information\_restore{E806BF13-9D4D-42A1-8768-E139158A863F}\RP897\A0058143.dll
02918993 Spyware/Virtumonde Spyware No 1 Yes No C:\QooBox\Quarantine\C\WINDOWS\system32\rjflvrxi.dll.vir
02918993 Spyware/Virtumonde Spyware No 1 Yes No C:\System Volume Information\_restore{E806BF13-9D4D-42A1-8768-E139158A863F}\RP907\A0063485.dll
02919497 Adware/IST Adware No 0 Yes No C:\System Volume Information\_restore{E806BF13-9D4D-42A1-8768-E139158A863F}\RP848\A0052366.dll
02927468 Spyware/Virtumonde Spyware No 1 Yes No C:\System Volume Information\_restore{E806BF13-9D4D-42A1-8768-E139158A863F}\RP907\A0063449.dll
02927468 Spyware/Virtumonde Spyware No 1 Yes No C:\QooBox\Quarantine\C\WINDOWS\system32\hwwdjanq.dll.vir
02927468 Spyware/Virtumonde Spyware No 1 Yes No C:\QooBox\Quarantine\C\WINDOWS\system32\aosvxlqu.dll.vir
02927468 Spyware/Virtumonde Spyware No 1 Yes No C:\System Volume Information\_restore{E806BF13-9D4D-42A1-8768-E139158A863F}\RP907\A0063430.dll
02927522 Spyware/Virtumonde Spyware No 1 Yes No C:\System Volume Information\_restore{E806BF13-9D4D-42A1-8768-E139158A863F}\RP881\A0056729.dll
02927659 Spyware/Virtumonde Spyware No 1 Yes No C:\QooBox\Quarantine\C\WINDOWS\system32\xqjekiee.dll.vir
02927659 Spyware/Virtumonde Spyware No 1 Yes No C:\System Volume Information\_restore{E806BF13-9D4D-42A1-8768-E139158A863F}\RP907\A0063502.dll
02927661 Spyware/Virtumonde Spyware No 1 Yes No C:\QooBox\Quarantine\C\WINDOWS\system32\vvuxnbxm.dll.vir
02927661 Spyware/Virtumonde Spyware No 1 Yes No C:\System Volume Information\_restore{E806BF13-9D4D-42A1-8768-E139158A863F}\RP907\A0063499.dll
02927662 Spyware/Virtumonde Spyware No 1 Yes No C:\QooBox\Quarantine\C\WINDOWS\system32\qbjayjls.dll.vir
02927662 Spyware/Virtumonde Spyware No 1 Yes No C:\System Volume Information\_restore{E806BF13-9D4D-42A1-8768-E139158A863F}\RP907\A0063482.dll
02927695 Spyware/Virtumonde Spyware No 1 Yes No C:\System Volume Information\_restore{E806BF13-9D4D-42A1-8768-E139158A863F}\RP888\A0056818.dll
02930830 Adware/Maxifiles Adware No 1 Yes No C:\System Volume Information\_restore{E806BF13-9D4D-42A1-8768-E139158A863F}\RP903\A0060356.exe
02930830 Adware/Maxifiles Adware No 1 Yes No C:\System Volume Information\_restore{E806BF13-9D4D-42A1-8768-E139158A863F}\RP903\A0060364.exe
02936532 Spyware/Virtumonde Spyware No 1 Yes No C:\System Volume Information\_restore{E806BF13-9D4D-42A1-8768-E139158A863F}\RP887\A0056795.dll
02947106 Generic Trojan Virus/Trojan Yes 0 No No C:\WINDOWS\SYSTEM32\WMSDKNS.EXE

monkeydude3690

;===================================================================================================================================================================================
SUSPECTS
Sent Location
;===================================================================================================================================================================================
No C:\WINDOWS\B2NEW.EXE
No C:\WINDOWS\SYSTEM32\SOCKINS32.DLL
;===================================================================================================================================================================================
VULNERABILITIES
Id Severity Description
;===================================================================================================================================================================================
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 10:32:24 AM, on 5/12/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\WINDOWS\system32\CTsvcCDA.exe
C:\Program Files\Common Files\EPSON\EBAPI\SAgent2.exe
C:\WINDOWS\system32\gearsec.exe
C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\WINDOWS\b2new.exe
C:\WINDOWS\system32\HPZipm12.exe
C:\WINDOWS\System32\svchost.exe
F:\Program Files\Webroot\Spy Sweeper\SpySweeper.exe
C:\WINDOWS\system32\MsPMSPSv.exe
C:\WINDOWS\system32\wmsdkns.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Picasa2\PicasaMediaDetector.exe
C:\Program Files\D-Link\AirPlus Xtreme G\AirPlusCFG.exe
C:\Program Files\Alpha Networks\ANIWZCS Service\WZCSLDR.exe
C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
C:\Program Files\Java\jre1.5.0_09\bin\jusched.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Messenger\MSMSGS.EXE
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Creative\Sync Manager Unicode\CTSyncU.exe
C:\Documents and Settings\Rafael\My Documents\New Folder\VeohClient.exe
C:\Program Files\Creative\MediaSource5\MtdAcqu.exe
C:\Program Files\Adobe\Acrobat 5.0\Distillr\AcroTray.exe
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
C:\Program Files\WinZip\WZQKPICK.EXE
C:\Program Files\iPod\bin\iPodService.exe
C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_S10IC2.EXE
C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_S10IC2.EXE
C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe
C:\PROGRA~1\MI3AA1~1\rapimgr.exe
C:\Program Files\Microsoft ActiveSync\wcescomm.exe
C:\Program Files\Java\jre1.5.0_09\bin\jucheck.exe
C:\Program Files\internet explorer\iexplore.exe
C:\WINDOWS\system32\wscntfy.exe
C:\WINDOWS\system32\notepad.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
F2 - REG:system.ini: UserInit=C:\WINDOWS\system32\userinit.exe,C:\WINDOWS\system32\wmsdkns.exe,
O2 - BHO: (no name) - {00000250-0320-4dd4-be4f-7566d2314352} - (no file)
O2 - BHO: (no name) - {13197ace-6851-45c3-a7ff-c281324d5489} - (no file)
O2 - BHO: (no name) - {15651c7c-e812-44a2-a9ac-b467a2233e7d} - (no file)
O2 - BHO: (no name) - {4e1075f4-eec4-4a86-add7-cd5f52858c31} - (no file)
O2 - BHO: (no name) - {4e7bd74f-2b8d-469e-92c6-ce7eb590a94d} - (no file)
O2 - BHO: (no name) - {5929cd6e-2062-44a4-b2c5-2c7e78fbab38} - (no file)
O2 - BHO: (no name) - {5dafd089-24b1-4c5e-bd42-8ca72550717b} - (no file)
O2 - BHO: (no name) - {5fa6752a-c4a0-4222-88c2-928ae5ab4966} - (no file)
O2 - BHO: (no name) - {622cc208-b014-4fe0-801b-874a5e5e403a} - (no file)
O2 - BHO: (no name) - {8674aea0-9d3d-11d9-99dc-00600f9a01f1} - (no file)
O2 - BHO: (no name) - {965a592f-8efa-4250-8630-7960230792f1} - (no file)
O2 - BHO: (no name) - {9c5b2f29-1f46-4639-a6b4-828942301d3e} - (no file)
O2 - BHO: (no name) - {cf021f40-3e14-23a5-cba2-717765728274} - (no file)
O2 - BHO: (no name) - {fc3a74e5-f281-4f10-ae1e-733078684f3c} - (no file)
O2 - BHO: (no name) - {ffff0001-0002-101a-a3c9-08002b2f49fb} - (no file)
O2 - BHO: (no name) - {FFFFFFFF-BBBB-4146-86FD-A722E8AB3489} - (no file)
O3 - Toolbar: Veoh Browser Plug-in - {D0943516-5076-4020-A3B5-AEFAF26AB263} - C:\Documents and Settings\Rafael\My Documents\New Folder\Plugins\reg\VeohToolbar.dll
O4 - HKLM\..\Run: [Ink Monitor] "C:\Program Files\EPSON\Ink Monitor\InkMonitor.exe"
O4 - HKLM\..\Run: [Picasa Media Detector] "C:\Program Files\Picasa2\PicasaMediaDetector.exe"
O4 - HKLM\..\Run: [D-Link AirPlus Xtreme G] "C:\Program Files\D-Link\AirPlus Xtreme G\AirPlusCFG.exe"
O4 - HKLM\..\Run: [ANIWZCSService] "C:\Program Files\Alpha Networks\ANIWZCS Service\WZCSLDR.exe"
O4 - HKLM\..\Run: [HP Software Update] "C:\Program Files\HP\HP Software Update\HPWuSchd2.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.5.0_09\bin\jusched.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [SpySweeper] F:\Program Files\Webroot\Spy Sweeper\SpySweeperUI.exe /startintray
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\MSMSGS.EXE" /background
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [CTSyncU.exe] "C:\Program Files\Creative\Sync Manager Unicode\CTSyncU.exe"
O4 - HKCU\..\Run: [Veoh] "C:\Documents and Settings\Rafael\My Documents\New Folder\VeohClient.exe" /VeohHide
O4 - HKCU\..\Run: [MtdAcqu] "C:\Program Files\Creative\MediaSource5\MtdAcqu.exe" /s
O4 - Global Startup: Acrobat Assistant.lnk = C:\Program Files\Adobe\Acrobat 5.0\Distillr\AcroTray.exe
O4 - Global Startup: CreataCard Gold 2 Forget Me Not Reminders.lnk = C:\Program Files\CreataCard\Gold\fmrmd32.exe
O4 - Glob